1 // SPDX-License-Identifier: GPL-2.0-only
3 * This is the new netlink-based wireless configuration interface.
5 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
6 * Copyright 2013-2014 Intel Mobile Communications GmbH
7 * Copyright 2015-2017 Intel Deutschland GmbH
8 * Copyright (C) 2018-2019 Intel Corporation
12 #include <linux/module.h>
13 #include <linux/err.h>
14 #include <linux/slab.h>
15 #include <linux/list.h>
16 #include <linux/if_ether.h>
17 #include <linux/ieee80211.h>
18 #include <linux/nl80211.h>
19 #include <linux/rtnetlink.h>
20 #include <linux/netlink.h>
21 #include <linux/nospec.h>
22 #include <linux/etherdevice.h>
23 #include <net/net_namespace.h>
24 #include <net/genetlink.h>
25 #include <net/cfg80211.h>
27 #include <net/inet_connection_sock.h>
33 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
34 struct genl_info *info,
35 struct cfg80211_crypto_settings *settings,
38 /* the netlink family */
39 static struct genl_family nl80211_fam;
41 /* multicast groups */
42 enum nl80211_multicast_groups {
45 NL80211_MCGRP_REGULATORY,
49 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
52 static const struct genl_multicast_group nl80211_mcgrps[] = {
53 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
54 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
55 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
56 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
57 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
58 [NL80211_MCGRP_NAN] = { .name = NL80211_MULTICAST_GROUP_NAN },
59 #ifdef CONFIG_NL80211_TESTMODE
60 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
64 /* returns ERR_PTR values */
65 static struct wireless_dev *
66 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
68 struct cfg80211_registered_device *rdev;
69 struct wireless_dev *result = NULL;
70 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
71 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
78 if (!have_ifidx && !have_wdev_id)
79 return ERR_PTR(-EINVAL);
82 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
84 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
85 wiphy_idx = wdev_id >> 32;
88 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
89 struct wireless_dev *wdev;
91 if (wiphy_net(&rdev->wiphy) != netns)
94 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
97 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
98 if (have_ifidx && wdev->netdev &&
99 wdev->netdev->ifindex == ifidx) {
103 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
115 return ERR_PTR(-ENODEV);
118 static struct cfg80211_registered_device *
119 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
121 struct cfg80211_registered_device *rdev = NULL, *tmp;
122 struct net_device *netdev;
126 if (!attrs[NL80211_ATTR_WIPHY] &&
127 !attrs[NL80211_ATTR_IFINDEX] &&
128 !attrs[NL80211_ATTR_WDEV])
129 return ERR_PTR(-EINVAL);
131 if (attrs[NL80211_ATTR_WIPHY])
132 rdev = cfg80211_rdev_by_wiphy_idx(
133 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
135 if (attrs[NL80211_ATTR_WDEV]) {
136 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
137 struct wireless_dev *wdev;
140 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
142 /* make sure wdev exists */
143 list_for_each_entry(wdev, &tmp->wiphy.wdev_list, list) {
144 if (wdev->identifier != (u32)wdev_id)
153 if (rdev && tmp != rdev)
154 return ERR_PTR(-EINVAL);
159 if (attrs[NL80211_ATTR_IFINDEX]) {
160 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
162 netdev = __dev_get_by_index(netns, ifindex);
164 if (netdev->ieee80211_ptr)
166 netdev->ieee80211_ptr->wiphy);
170 /* not wireless device -- return error */
172 return ERR_PTR(-EINVAL);
174 /* mismatch -- return error */
175 if (rdev && tmp != rdev)
176 return ERR_PTR(-EINVAL);
183 return ERR_PTR(-ENODEV);
185 if (netns != wiphy_net(&rdev->wiphy))
186 return ERR_PTR(-ENODEV);
192 * This function returns a pointer to the driver
193 * that the genl_info item that is passed refers to.
195 * The result of this can be a PTR_ERR and hence must
196 * be checked with IS_ERR() for errors.
198 static struct cfg80211_registered_device *
199 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
201 return __cfg80211_rdev_from_attrs(netns, info->attrs);
204 static int validate_ie_attr(const struct nlattr *attr,
205 struct netlink_ext_ack *extack)
207 const u8 *data = nla_data(attr);
208 unsigned int len = nla_len(attr);
209 const struct element *elem;
211 for_each_element(elem, data, len) {
215 if (for_each_element_completed(elem, data, len))
218 NL_SET_ERR_MSG_ATTR(extack, attr, "malformed information elements");
222 /* policy for the attributes */
223 static const struct nla_policy
224 nl80211_ftm_responder_policy[NL80211_FTM_RESP_ATTR_MAX + 1] = {
225 [NL80211_FTM_RESP_ATTR_ENABLED] = { .type = NLA_FLAG, },
226 [NL80211_FTM_RESP_ATTR_LCI] = { .type = NLA_BINARY,
228 [NL80211_FTM_RESP_ATTR_CIVICLOC] = { .type = NLA_BINARY,
232 static const struct nla_policy
233 nl80211_pmsr_ftm_req_attr_policy[NL80211_PMSR_FTM_REQ_ATTR_MAX + 1] = {
234 [NL80211_PMSR_FTM_REQ_ATTR_ASAP] = { .type = NLA_FLAG },
235 [NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE] = { .type = NLA_U32 },
236 [NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP] =
237 NLA_POLICY_MAX(NLA_U8, 15),
238 [NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD] = { .type = NLA_U16 },
239 [NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION] =
240 NLA_POLICY_MAX(NLA_U8, 15),
241 [NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST] =
242 NLA_POLICY_MAX(NLA_U8, 31),
243 [NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES] = { .type = NLA_U8 },
244 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI] = { .type = NLA_FLAG },
245 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC] = { .type = NLA_FLAG },
248 static const struct nla_policy
249 nl80211_pmsr_req_data_policy[NL80211_PMSR_TYPE_MAX + 1] = {
250 [NL80211_PMSR_TYPE_FTM] =
251 NLA_POLICY_NESTED(nl80211_pmsr_ftm_req_attr_policy),
254 static const struct nla_policy
255 nl80211_pmsr_req_attr_policy[NL80211_PMSR_REQ_ATTR_MAX + 1] = {
256 [NL80211_PMSR_REQ_ATTR_DATA] =
257 NLA_POLICY_NESTED(nl80211_pmsr_req_data_policy),
258 [NL80211_PMSR_REQ_ATTR_GET_AP_TSF] = { .type = NLA_FLAG },
261 static const struct nla_policy
262 nl80211_psmr_peer_attr_policy[NL80211_PMSR_PEER_ATTR_MAX + 1] = {
263 [NL80211_PMSR_PEER_ATTR_ADDR] = NLA_POLICY_ETH_ADDR,
265 * we could specify this again to be the top-level policy,
266 * but that would open us up to recursion problems ...
268 [NL80211_PMSR_PEER_ATTR_CHAN] = { .type = NLA_NESTED },
269 [NL80211_PMSR_PEER_ATTR_REQ] =
270 NLA_POLICY_NESTED(nl80211_pmsr_req_attr_policy),
271 [NL80211_PMSR_PEER_ATTR_RESP] = { .type = NLA_REJECT },
274 static const struct nla_policy
275 nl80211_pmsr_attr_policy[NL80211_PMSR_ATTR_MAX + 1] = {
276 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_REJECT },
277 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_REJECT },
278 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_REJECT },
279 [NL80211_PMSR_ATTR_TYPE_CAPA] = { .type = NLA_REJECT },
280 [NL80211_PMSR_ATTR_PEERS] =
281 NLA_POLICY_NESTED_ARRAY(nl80211_psmr_peer_attr_policy),
284 const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
285 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
286 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
288 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
290 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
291 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
292 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
293 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
294 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
296 [NL80211_ATTR_WIPHY_RETRY_SHORT] = NLA_POLICY_MIN(NLA_U8, 1),
297 [NL80211_ATTR_WIPHY_RETRY_LONG] = NLA_POLICY_MIN(NLA_U8, 1),
298 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
299 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
300 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
301 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
303 [NL80211_ATTR_IFTYPE] = NLA_POLICY_MAX(NLA_U32, NL80211_IFTYPE_MAX),
304 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
305 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
307 [NL80211_ATTR_MAC] = { .type = NLA_EXACT_LEN_WARN, .len = ETH_ALEN },
308 [NL80211_ATTR_PREV_BSSID] = {
309 .type = NLA_EXACT_LEN_WARN,
313 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
314 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
315 .len = WLAN_MAX_KEY_LEN },
316 [NL80211_ATTR_KEY_IDX] = NLA_POLICY_MAX(NLA_U8, 5),
317 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
318 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
319 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
320 [NL80211_ATTR_KEY_TYPE] =
321 NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES),
323 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
324 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
325 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
326 .len = IEEE80211_MAX_DATA_LEN },
327 [NL80211_ATTR_BEACON_TAIL] =
328 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
329 IEEE80211_MAX_DATA_LEN),
330 [NL80211_ATTR_STA_AID] =
331 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
332 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
333 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
334 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
335 .len = NL80211_MAX_SUPP_RATES },
336 [NL80211_ATTR_STA_PLINK_ACTION] =
337 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_ACTIONS - 1),
338 [NL80211_ATTR_STA_TX_POWER_SETTING] =
339 NLA_POLICY_RANGE(NLA_U8,
340 NL80211_TX_POWER_AUTOMATIC,
341 NL80211_TX_POWER_FIXED),
342 [NL80211_ATTR_STA_TX_POWER] = { .type = NLA_S16 },
343 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
344 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
345 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
346 .len = IEEE80211_MAX_MESH_ID_LEN },
347 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
349 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
350 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
352 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
353 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
354 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
355 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
356 .len = NL80211_MAX_SUPP_RATES },
357 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
359 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
360 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
362 [NL80211_ATTR_HT_CAPABILITY] = {
363 .type = NLA_EXACT_LEN_WARN,
364 .len = NL80211_HT_CAPABILITY_LEN
367 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
368 [NL80211_ATTR_IE] = NLA_POLICY_VALIDATE_FN(NLA_BINARY,
370 IEEE80211_MAX_DATA_LEN),
371 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
372 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
374 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
375 .len = IEEE80211_MAX_SSID_LEN },
376 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
377 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
378 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
379 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
380 [NL80211_ATTR_USE_MFP] = NLA_POLICY_RANGE(NLA_U32,
382 NL80211_MFP_OPTIONAL),
383 [NL80211_ATTR_STA_FLAGS2] = {
384 .len = sizeof(struct nl80211_sta_flag_update),
386 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
387 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
388 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
389 [NL80211_ATTR_CONTROL_PORT_OVER_NL80211] = { .type = NLA_FLAG },
390 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
391 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
392 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
393 [NL80211_ATTR_PID] = { .type = NLA_U32 },
394 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
395 [NL80211_ATTR_PMKID] = {
396 .type = NLA_EXACT_LEN_WARN,
397 .len = WLAN_PMKID_LEN
399 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
400 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
401 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
402 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
403 .len = IEEE80211_MAX_DATA_LEN },
404 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
405 [NL80211_ATTR_PS_STATE] = NLA_POLICY_RANGE(NLA_U32,
408 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
409 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
410 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
411 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
412 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
413 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
414 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
415 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
416 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
417 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
418 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
419 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
420 [NL80211_ATTR_STA_PLINK_STATE] =
421 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_STATES - 1),
422 [NL80211_ATTR_MESH_PEER_AID] =
423 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
424 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
425 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
426 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
427 [NL80211_ATTR_HIDDEN_SSID] =
428 NLA_POLICY_RANGE(NLA_U32,
429 NL80211_HIDDEN_SSID_NOT_IN_USE,
430 NL80211_HIDDEN_SSID_ZERO_CONTENTS),
431 [NL80211_ATTR_IE_PROBE_RESP] =
432 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
433 IEEE80211_MAX_DATA_LEN),
434 [NL80211_ATTR_IE_ASSOC_RESP] =
435 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
436 IEEE80211_MAX_DATA_LEN),
437 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
438 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
439 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
440 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
441 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
442 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
443 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
444 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
445 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
446 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
447 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
448 .len = IEEE80211_MAX_DATA_LEN },
449 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
450 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
451 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
452 .len = NL80211_HT_CAPABILITY_LEN
454 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
455 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
456 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
457 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
458 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
459 [NL80211_ATTR_AUTH_DATA] = { .type = NLA_BINARY, },
460 [NL80211_ATTR_VHT_CAPABILITY] = {
461 .type = NLA_EXACT_LEN_WARN,
462 .len = NL80211_VHT_CAPABILITY_LEN
464 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
465 [NL80211_ATTR_P2P_CTWINDOW] = NLA_POLICY_MAX(NLA_U8, 127),
466 [NL80211_ATTR_P2P_OPPPS] = NLA_POLICY_MAX(NLA_U8, 1),
467 [NL80211_ATTR_LOCAL_MESH_POWER_MODE] =
468 NLA_POLICY_RANGE(NLA_U32,
469 NL80211_MESH_POWER_UNKNOWN + 1,
470 NL80211_MESH_POWER_MAX),
471 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
472 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
473 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
474 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
475 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
476 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
477 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
478 .len = NL80211_VHT_CAPABILITY_LEN,
480 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
481 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
482 .len = IEEE80211_MAX_DATA_LEN },
483 [NL80211_ATTR_PEER_AID] =
484 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
485 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
486 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
487 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
488 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
489 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
490 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
491 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
492 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
493 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
494 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
495 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
496 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
497 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
498 .len = IEEE80211_QOS_MAP_LEN_MAX },
499 [NL80211_ATTR_MAC_HINT] = {
500 .type = NLA_EXACT_LEN_WARN,
503 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
504 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
505 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
506 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
507 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
508 [NL80211_ATTR_TSID] = NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_TIDS - 1),
509 [NL80211_ATTR_USER_PRIO] =
510 NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_UPS - 1),
511 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
512 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
513 [NL80211_ATTR_MAC_MASK] = {
514 .type = NLA_EXACT_LEN_WARN,
517 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
518 [NL80211_ATTR_NETNS_FD] = { .type = NLA_U32 },
519 [NL80211_ATTR_SCHED_SCAN_DELAY] = { .type = NLA_U32 },
520 [NL80211_ATTR_REG_INDOOR] = { .type = NLA_FLAG },
521 [NL80211_ATTR_PBSS] = { .type = NLA_FLAG },
522 [NL80211_ATTR_BSS_SELECT] = { .type = NLA_NESTED },
523 [NL80211_ATTR_STA_SUPPORT_P2P_PS] =
524 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_P2P_PS_STATUS - 1),
525 [NL80211_ATTR_MU_MIMO_GROUP_DATA] = {
526 .len = VHT_MUMIMO_GROUPS_DATA_LEN
528 [NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR] = {
529 .type = NLA_EXACT_LEN_WARN,
532 [NL80211_ATTR_NAN_MASTER_PREF] = NLA_POLICY_MIN(NLA_U8, 1),
533 [NL80211_ATTR_BANDS] = { .type = NLA_U32 },
534 [NL80211_ATTR_NAN_FUNC] = { .type = NLA_NESTED },
535 [NL80211_ATTR_FILS_KEK] = { .type = NLA_BINARY,
536 .len = FILS_MAX_KEK_LEN },
537 [NL80211_ATTR_FILS_NONCES] = {
538 .type = NLA_EXACT_LEN_WARN,
539 .len = 2 * FILS_NONCE_LEN
541 [NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED] = { .type = NLA_FLAG, },
542 [NL80211_ATTR_BSSID] = { .type = NLA_EXACT_LEN_WARN, .len = ETH_ALEN },
543 [NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] = { .type = NLA_S8 },
544 [NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST] = {
545 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
547 [NL80211_ATTR_TIMEOUT_REASON] = { .type = NLA_U32 },
548 [NL80211_ATTR_FILS_ERP_USERNAME] = { .type = NLA_BINARY,
549 .len = FILS_ERP_MAX_USERNAME_LEN },
550 [NL80211_ATTR_FILS_ERP_REALM] = { .type = NLA_BINARY,
551 .len = FILS_ERP_MAX_REALM_LEN },
552 [NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] = { .type = NLA_U16 },
553 [NL80211_ATTR_FILS_ERP_RRK] = { .type = NLA_BINARY,
554 .len = FILS_ERP_MAX_RRK_LEN },
555 [NL80211_ATTR_FILS_CACHE_ID] = { .type = NLA_EXACT_LEN_WARN, .len = 2 },
556 [NL80211_ATTR_PMK] = { .type = NLA_BINARY, .len = PMK_MAX_LEN },
557 [NL80211_ATTR_SCHED_SCAN_MULTI] = { .type = NLA_FLAG },
558 [NL80211_ATTR_EXTERNAL_AUTH_SUPPORT] = { .type = NLA_FLAG },
560 [NL80211_ATTR_TXQ_LIMIT] = { .type = NLA_U32 },
561 [NL80211_ATTR_TXQ_MEMORY_LIMIT] = { .type = NLA_U32 },
562 [NL80211_ATTR_TXQ_QUANTUM] = { .type = NLA_U32 },
563 [NL80211_ATTR_HE_CAPABILITY] = { .type = NLA_BINARY,
564 .len = NL80211_HE_MAX_CAPABILITY_LEN },
566 [NL80211_ATTR_FTM_RESPONDER] = {
568 .validation_data = nl80211_ftm_responder_policy,
570 [NL80211_ATTR_TIMEOUT] = NLA_POLICY_MIN(NLA_U32, 1),
571 [NL80211_ATTR_PEER_MEASUREMENTS] =
572 NLA_POLICY_NESTED(nl80211_pmsr_attr_policy),
573 [NL80211_ATTR_AIRTIME_WEIGHT] = NLA_POLICY_MIN(NLA_U16, 1),
574 [NL80211_ATTR_SAE_PASSWORD] = { .type = NLA_BINARY,
575 .len = SAE_PASSWORD_MAX_LEN },
576 [NL80211_ATTR_TWT_RESPONDER] = { .type = NLA_FLAG },
579 /* policy for the key attributes */
580 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
581 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
582 [NL80211_KEY_IDX] = { .type = NLA_U8 },
583 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
584 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
585 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
586 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
587 [NL80211_KEY_TYPE] = NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES - 1),
588 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
589 [NL80211_KEY_MODE] = NLA_POLICY_RANGE(NLA_U8, 0, NL80211_KEY_SET_TX),
592 /* policy for the key default flags */
593 static const struct nla_policy
594 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
595 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
596 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
600 /* policy for WoWLAN attributes */
601 static const struct nla_policy
602 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
603 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
604 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
605 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
606 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
607 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
608 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
609 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
610 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
611 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
612 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
615 static const struct nla_policy
616 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
617 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
618 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
619 [NL80211_WOWLAN_TCP_DST_MAC] = {
620 .type = NLA_EXACT_LEN_WARN,
623 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
624 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
625 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .type = NLA_MIN_LEN, .len = 1 },
626 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
627 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
629 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
630 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
632 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
633 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .type = NLA_MIN_LEN, .len = 1 },
634 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .type = NLA_MIN_LEN, .len = 1 },
636 #endif /* CONFIG_PM */
638 /* policy for coalesce rule attributes */
639 static const struct nla_policy
640 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
641 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
642 [NL80211_ATTR_COALESCE_RULE_CONDITION] =
643 NLA_POLICY_RANGE(NLA_U32,
644 NL80211_COALESCE_CONDITION_MATCH,
645 NL80211_COALESCE_CONDITION_NO_MATCH),
646 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
649 /* policy for GTK rekey offload attributes */
650 static const struct nla_policy
651 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
652 [NL80211_REKEY_DATA_KEK] = {
653 .type = NLA_EXACT_LEN_WARN,
654 .len = NL80211_KEK_LEN,
656 [NL80211_REKEY_DATA_KCK] = {
657 .type = NLA_EXACT_LEN_WARN,
658 .len = NL80211_KCK_LEN,
660 [NL80211_REKEY_DATA_REPLAY_CTR] = {
661 .type = NLA_EXACT_LEN_WARN,
662 .len = NL80211_REPLAY_CTR_LEN
666 static const struct nla_policy
667 nl80211_match_band_rssi_policy[NUM_NL80211_BANDS] = {
668 [NL80211_BAND_2GHZ] = { .type = NLA_S32 },
669 [NL80211_BAND_5GHZ] = { .type = NLA_S32 },
670 [NL80211_BAND_60GHZ] = { .type = NLA_S32 },
673 static const struct nla_policy
674 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
675 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
676 .len = IEEE80211_MAX_SSID_LEN },
677 [NL80211_SCHED_SCAN_MATCH_ATTR_BSSID] = {
678 .type = NLA_EXACT_LEN_WARN,
681 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
682 [NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI] =
683 NLA_POLICY_NESTED(nl80211_match_band_rssi_policy),
686 static const struct nla_policy
687 nl80211_plan_policy[NL80211_SCHED_SCAN_PLAN_MAX + 1] = {
688 [NL80211_SCHED_SCAN_PLAN_INTERVAL] = { .type = NLA_U32 },
689 [NL80211_SCHED_SCAN_PLAN_ITERATIONS] = { .type = NLA_U32 },
692 static const struct nla_policy
693 nl80211_bss_select_policy[NL80211_BSS_SELECT_ATTR_MAX + 1] = {
694 [NL80211_BSS_SELECT_ATTR_RSSI] = { .type = NLA_FLAG },
695 [NL80211_BSS_SELECT_ATTR_BAND_PREF] = { .type = NLA_U32 },
696 [NL80211_BSS_SELECT_ATTR_RSSI_ADJUST] = {
697 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
701 /* policy for NAN function attributes */
702 static const struct nla_policy
703 nl80211_nan_func_policy[NL80211_NAN_FUNC_ATTR_MAX + 1] = {
704 [NL80211_NAN_FUNC_TYPE] = { .type = NLA_U8 },
705 [NL80211_NAN_FUNC_SERVICE_ID] = {
706 .len = NL80211_NAN_FUNC_SERVICE_ID_LEN },
707 [NL80211_NAN_FUNC_PUBLISH_TYPE] = { .type = NLA_U8 },
708 [NL80211_NAN_FUNC_PUBLISH_BCAST] = { .type = NLA_FLAG },
709 [NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE] = { .type = NLA_FLAG },
710 [NL80211_NAN_FUNC_FOLLOW_UP_ID] = { .type = NLA_U8 },
711 [NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] = { .type = NLA_U8 },
712 [NL80211_NAN_FUNC_FOLLOW_UP_DEST] = {
713 .type = NLA_EXACT_LEN_WARN,
716 [NL80211_NAN_FUNC_CLOSE_RANGE] = { .type = NLA_FLAG },
717 [NL80211_NAN_FUNC_TTL] = { .type = NLA_U32 },
718 [NL80211_NAN_FUNC_SERVICE_INFO] = { .type = NLA_BINARY,
719 .len = NL80211_NAN_FUNC_SERVICE_SPEC_INFO_MAX_LEN },
720 [NL80211_NAN_FUNC_SRF] = { .type = NLA_NESTED },
721 [NL80211_NAN_FUNC_RX_MATCH_FILTER] = { .type = NLA_NESTED },
722 [NL80211_NAN_FUNC_TX_MATCH_FILTER] = { .type = NLA_NESTED },
723 [NL80211_NAN_FUNC_INSTANCE_ID] = { .type = NLA_U8 },
724 [NL80211_NAN_FUNC_TERM_REASON] = { .type = NLA_U8 },
727 /* policy for Service Response Filter attributes */
728 static const struct nla_policy
729 nl80211_nan_srf_policy[NL80211_NAN_SRF_ATTR_MAX + 1] = {
730 [NL80211_NAN_SRF_INCLUDE] = { .type = NLA_FLAG },
731 [NL80211_NAN_SRF_BF] = { .type = NLA_BINARY,
732 .len = NL80211_NAN_FUNC_SRF_MAX_LEN },
733 [NL80211_NAN_SRF_BF_IDX] = { .type = NLA_U8 },
734 [NL80211_NAN_SRF_MAC_ADDRS] = { .type = NLA_NESTED },
737 /* policy for packet pattern attributes */
738 static const struct nla_policy
739 nl80211_packet_pattern_policy[MAX_NL80211_PKTPAT + 1] = {
740 [NL80211_PKTPAT_MASK] = { .type = NLA_BINARY, },
741 [NL80211_PKTPAT_PATTERN] = { .type = NLA_BINARY, },
742 [NL80211_PKTPAT_OFFSET] = { .type = NLA_U32 },
745 int nl80211_prepare_wdev_dump(struct netlink_callback *cb,
746 struct cfg80211_registered_device **rdev,
747 struct wireless_dev **wdev)
752 err = nlmsg_parse_deprecated(cb->nlh,
753 GENL_HDRLEN + nl80211_fam.hdrsize,
754 genl_family_attrbuf(&nl80211_fam),
756 nl80211_policy, NULL);
760 *wdev = __cfg80211_wdev_from_attrs(
761 sock_net(cb->skb->sk),
762 genl_family_attrbuf(&nl80211_fam));
764 return PTR_ERR(*wdev);
765 *rdev = wiphy_to_rdev((*wdev)->wiphy);
766 /* 0 is the first index - add 1 to parse only once */
767 cb->args[0] = (*rdev)->wiphy_idx + 1;
768 cb->args[1] = (*wdev)->identifier;
770 /* subtract the 1 again here */
771 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
772 struct wireless_dev *tmp;
776 *rdev = wiphy_to_rdev(wiphy);
779 list_for_each_entry(tmp, &(*rdev)->wiphy.wdev_list, list) {
780 if (tmp->identifier == cb->args[1]) {
793 /* message building helper */
794 void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
797 /* since there is no private header just add the generic one */
798 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
801 static int nl80211_msg_put_wmm_rules(struct sk_buff *msg,
802 const struct ieee80211_reg_rule *rule)
805 struct nlattr *nl_wmm_rules =
806 nla_nest_start_noflag(msg, NL80211_FREQUENCY_ATTR_WMM);
809 goto nla_put_failure;
811 for (j = 0; j < IEEE80211_NUM_ACS; j++) {
812 struct nlattr *nl_wmm_rule = nla_nest_start_noflag(msg, j);
815 goto nla_put_failure;
817 if (nla_put_u16(msg, NL80211_WMMR_CW_MIN,
818 rule->wmm_rule.client[j].cw_min) ||
819 nla_put_u16(msg, NL80211_WMMR_CW_MAX,
820 rule->wmm_rule.client[j].cw_max) ||
821 nla_put_u8(msg, NL80211_WMMR_AIFSN,
822 rule->wmm_rule.client[j].aifsn) ||
823 nla_put_u16(msg, NL80211_WMMR_TXOP,
824 rule->wmm_rule.client[j].cot))
825 goto nla_put_failure;
827 nla_nest_end(msg, nl_wmm_rule);
829 nla_nest_end(msg, nl_wmm_rules);
837 static int nl80211_msg_put_channel(struct sk_buff *msg, struct wiphy *wiphy,
838 struct ieee80211_channel *chan,
841 /* Some channels must be completely excluded from the
842 * list to protect old user-space tools from breaking
844 if (!large && chan->flags &
845 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
848 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
850 goto nla_put_failure;
852 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
853 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
854 goto nla_put_failure;
855 if (chan->flags & IEEE80211_CHAN_NO_IR) {
856 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
857 goto nla_put_failure;
858 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
859 goto nla_put_failure;
861 if (chan->flags & IEEE80211_CHAN_RADAR) {
862 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
863 goto nla_put_failure;
867 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
869 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
871 goto nla_put_failure;
872 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
874 goto nla_put_failure;
876 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
878 goto nla_put_failure;
883 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
884 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
885 goto nla_put_failure;
886 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
887 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
888 goto nla_put_failure;
889 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
890 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
891 goto nla_put_failure;
892 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
893 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
894 goto nla_put_failure;
895 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
896 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
897 goto nla_put_failure;
898 if ((chan->flags & IEEE80211_CHAN_IR_CONCURRENT) &&
899 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_IR_CONCURRENT))
900 goto nla_put_failure;
901 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
902 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
903 goto nla_put_failure;
904 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
905 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
906 goto nla_put_failure;
909 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
910 DBM_TO_MBM(chan->max_power)))
911 goto nla_put_failure;
914 const struct ieee80211_reg_rule *rule =
915 freq_reg_info(wiphy, MHZ_TO_KHZ(chan->center_freq));
917 if (!IS_ERR_OR_NULL(rule) && rule->has_wmm) {
918 if (nl80211_msg_put_wmm_rules(msg, rule))
919 goto nla_put_failure;
929 static bool nl80211_put_txq_stats(struct sk_buff *msg,
930 struct cfg80211_txq_stats *txqstats,
933 struct nlattr *txqattr;
935 #define PUT_TXQVAL_U32(attr, memb) do { \
936 if (txqstats->filled & BIT(NL80211_TXQ_STATS_ ## attr) && \
937 nla_put_u32(msg, NL80211_TXQ_STATS_ ## attr, txqstats->memb)) \
941 txqattr = nla_nest_start_noflag(msg, attrtype);
945 PUT_TXQVAL_U32(BACKLOG_BYTES, backlog_bytes);
946 PUT_TXQVAL_U32(BACKLOG_PACKETS, backlog_packets);
947 PUT_TXQVAL_U32(FLOWS, flows);
948 PUT_TXQVAL_U32(DROPS, drops);
949 PUT_TXQVAL_U32(ECN_MARKS, ecn_marks);
950 PUT_TXQVAL_U32(OVERLIMIT, overlimit);
951 PUT_TXQVAL_U32(OVERMEMORY, overmemory);
952 PUT_TXQVAL_U32(COLLISIONS, collisions);
953 PUT_TXQVAL_U32(TX_BYTES, tx_bytes);
954 PUT_TXQVAL_U32(TX_PACKETS, tx_packets);
955 PUT_TXQVAL_U32(MAX_FLOWS, max_flows);
956 nla_nest_end(msg, txqattr);
958 #undef PUT_TXQVAL_U32
962 /* netlink command implementations */
969 bool def_uni, def_multi;
972 static int nl80211_parse_key_new(struct genl_info *info, struct nlattr *key,
975 struct nlattr *tb[NL80211_KEY_MAX + 1];
976 int err = nla_parse_nested_deprecated(tb, NL80211_KEY_MAX, key,
982 k->def = !!tb[NL80211_KEY_DEFAULT];
983 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
992 if (tb[NL80211_KEY_IDX])
993 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
995 if (tb[NL80211_KEY_DATA]) {
996 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
997 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
1000 if (tb[NL80211_KEY_SEQ]) {
1001 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
1002 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
1005 if (tb[NL80211_KEY_CIPHER])
1006 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
1008 if (tb[NL80211_KEY_TYPE])
1009 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
1011 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
1012 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
1014 err = nla_parse_nested_deprecated(kdt,
1015 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
1016 tb[NL80211_KEY_DEFAULT_TYPES],
1017 nl80211_key_default_policy,
1022 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1023 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1026 if (tb[NL80211_KEY_MODE])
1027 k->p.mode = nla_get_u8(tb[NL80211_KEY_MODE]);
1032 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
1034 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
1035 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
1036 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
1039 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
1040 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
1041 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
1044 if (info->attrs[NL80211_ATTR_KEY_IDX])
1045 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
1047 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
1048 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
1050 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
1051 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
1055 k->def_multi = true;
1058 k->def_multi = true;
1060 if (info->attrs[NL80211_ATTR_KEY_TYPE])
1061 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
1063 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
1064 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
1065 int err = nla_parse_nested_deprecated(kdt,
1066 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
1067 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
1068 nl80211_key_default_policy,
1073 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1074 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1080 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
1084 memset(k, 0, sizeof(*k));
1088 if (info->attrs[NL80211_ATTR_KEY])
1089 err = nl80211_parse_key_new(info, info->attrs[NL80211_ATTR_KEY], k);
1091 err = nl80211_parse_key_old(info, k);
1096 if (k->def && k->defmgmt) {
1097 GENL_SET_ERR_MSG(info, "key with def && defmgmt is invalid");
1102 if (k->def_uni || !k->def_multi) {
1103 GENL_SET_ERR_MSG(info, "defmgmt key must be mcast");
1110 if (k->idx < 4 || k->idx > 5) {
1111 GENL_SET_ERR_MSG(info,
1112 "defmgmt key idx not 4 or 5");
1115 } else if (k->def) {
1116 if (k->idx < 0 || k->idx > 3) {
1117 GENL_SET_ERR_MSG(info, "def key idx not 0-3");
1121 if (k->idx < 0 || k->idx > 5) {
1122 GENL_SET_ERR_MSG(info, "key idx not 0-5");
1131 static struct cfg80211_cached_keys *
1132 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
1133 struct genl_info *info, bool *no_ht)
1135 struct nlattr *keys = info->attrs[NL80211_ATTR_KEYS];
1136 struct key_parse parse;
1138 struct cfg80211_cached_keys *result;
1139 int rem, err, def = 0;
1140 bool have_key = false;
1142 nla_for_each_nested(key, keys, rem) {
1150 result = kzalloc(sizeof(*result), GFP_KERNEL);
1152 return ERR_PTR(-ENOMEM);
1156 nla_for_each_nested(key, keys, rem) {
1157 memset(&parse, 0, sizeof(parse));
1160 err = nl80211_parse_key_new(info, key, &parse);
1166 if (parse.idx < 0 || parse.idx > 3) {
1167 GENL_SET_ERR_MSG(info, "key index out of range [0-3]");
1172 GENL_SET_ERR_MSG(info,
1173 "only one key can be default");
1177 result->def = parse.idx;
1178 if (!parse.def_uni || !parse.def_multi)
1180 } else if (parse.defmgmt)
1182 err = cfg80211_validate_key_settings(rdev, &parse.p,
1183 parse.idx, false, NULL);
1186 if (parse.p.cipher != WLAN_CIPHER_SUITE_WEP40 &&
1187 parse.p.cipher != WLAN_CIPHER_SUITE_WEP104) {
1188 GENL_SET_ERR_MSG(info, "connect key must be WEP");
1192 result->params[parse.idx].cipher = parse.p.cipher;
1193 result->params[parse.idx].key_len = parse.p.key_len;
1194 result->params[parse.idx].key = result->data[parse.idx];
1195 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
1197 /* must be WEP key if we got here */
1202 if (result->def < 0) {
1204 GENL_SET_ERR_MSG(info, "need a default/TX key");
1211 return ERR_PTR(err);
1214 static int nl80211_key_allowed(struct wireless_dev *wdev)
1216 ASSERT_WDEV_LOCK(wdev);
1218 switch (wdev->iftype) {
1219 case NL80211_IFTYPE_AP:
1220 case NL80211_IFTYPE_AP_VLAN:
1221 case NL80211_IFTYPE_P2P_GO:
1222 case NL80211_IFTYPE_MESH_POINT:
1224 case NL80211_IFTYPE_ADHOC:
1225 case NL80211_IFTYPE_STATION:
1226 case NL80211_IFTYPE_P2P_CLIENT:
1227 if (!wdev->current_bss)
1230 case NL80211_IFTYPE_UNSPECIFIED:
1231 case NL80211_IFTYPE_OCB:
1232 case NL80211_IFTYPE_MONITOR:
1233 case NL80211_IFTYPE_NAN:
1234 case NL80211_IFTYPE_P2P_DEVICE:
1235 case NL80211_IFTYPE_WDS:
1236 case NUM_NL80211_IFTYPES:
1243 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
1246 struct ieee80211_channel *chan;
1250 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
1251 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
1256 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
1258 struct nlattr *nl_modes = nla_nest_start_noflag(msg, attr);
1262 goto nla_put_failure;
1266 if ((ifmodes & 1) && nla_put_flag(msg, i))
1267 goto nla_put_failure;
1272 nla_nest_end(msg, nl_modes);
1279 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
1280 struct sk_buff *msg,
1283 struct nlattr *nl_combis;
1286 nl_combis = nla_nest_start_noflag(msg,
1287 NL80211_ATTR_INTERFACE_COMBINATIONS);
1289 goto nla_put_failure;
1291 for (i = 0; i < wiphy->n_iface_combinations; i++) {
1292 const struct ieee80211_iface_combination *c;
1293 struct nlattr *nl_combi, *nl_limits;
1295 c = &wiphy->iface_combinations[i];
1297 nl_combi = nla_nest_start_noflag(msg, i + 1);
1299 goto nla_put_failure;
1301 nl_limits = nla_nest_start_noflag(msg,
1302 NL80211_IFACE_COMB_LIMITS);
1304 goto nla_put_failure;
1306 for (j = 0; j < c->n_limits; j++) {
1307 struct nlattr *nl_limit;
1309 nl_limit = nla_nest_start_noflag(msg, j + 1);
1311 goto nla_put_failure;
1312 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
1314 goto nla_put_failure;
1315 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
1316 c->limits[j].types))
1317 goto nla_put_failure;
1318 nla_nest_end(msg, nl_limit);
1321 nla_nest_end(msg, nl_limits);
1323 if (c->beacon_int_infra_match &&
1324 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
1325 goto nla_put_failure;
1326 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
1327 c->num_different_channels) ||
1328 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
1330 goto nla_put_failure;
1332 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
1333 c->radar_detect_widths) ||
1334 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
1335 c->radar_detect_regions)))
1336 goto nla_put_failure;
1337 if (c->beacon_int_min_gcd &&
1338 nla_put_u32(msg, NL80211_IFACE_COMB_BI_MIN_GCD,
1339 c->beacon_int_min_gcd))
1340 goto nla_put_failure;
1342 nla_nest_end(msg, nl_combi);
1345 nla_nest_end(msg, nl_combis);
1353 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1354 struct sk_buff *msg)
1356 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1357 struct nlattr *nl_tcp;
1362 nl_tcp = nla_nest_start_noflag(msg,
1363 NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1367 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1368 tcp->data_payload_max))
1371 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1372 tcp->data_payload_max))
1375 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1378 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1379 sizeof(*tcp->tok), tcp->tok))
1382 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1383 tcp->data_interval_max))
1386 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1387 tcp->wake_payload_max))
1390 nla_nest_end(msg, nl_tcp);
1394 static int nl80211_send_wowlan(struct sk_buff *msg,
1395 struct cfg80211_registered_device *rdev,
1398 struct nlattr *nl_wowlan;
1400 if (!rdev->wiphy.wowlan)
1403 nl_wowlan = nla_nest_start_noflag(msg,
1404 NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1408 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1409 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1410 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1411 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1412 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1413 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1414 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1415 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1416 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1417 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1418 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1419 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1420 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1421 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1422 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1423 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1426 if (rdev->wiphy.wowlan->n_patterns) {
1427 struct nl80211_pattern_support pat = {
1428 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1429 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1430 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1431 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1434 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1439 if ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_NET_DETECT) &&
1440 nla_put_u32(msg, NL80211_WOWLAN_TRIG_NET_DETECT,
1441 rdev->wiphy.wowlan->max_nd_match_sets))
1444 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1447 nla_nest_end(msg, nl_wowlan);
1453 static int nl80211_send_coalesce(struct sk_buff *msg,
1454 struct cfg80211_registered_device *rdev)
1456 struct nl80211_coalesce_rule_support rule;
1458 if (!rdev->wiphy.coalesce)
1461 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1462 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1463 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1464 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1465 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1466 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1468 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1475 nl80211_send_iftype_data(struct sk_buff *msg,
1476 const struct ieee80211_sband_iftype_data *iftdata)
1478 const struct ieee80211_sta_he_cap *he_cap = &iftdata->he_cap;
1480 if (nl80211_put_iftypes(msg, NL80211_BAND_IFTYPE_ATTR_IFTYPES,
1481 iftdata->types_mask))
1484 if (he_cap->has_he) {
1485 if (nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MAC,
1486 sizeof(he_cap->he_cap_elem.mac_cap_info),
1487 he_cap->he_cap_elem.mac_cap_info) ||
1488 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PHY,
1489 sizeof(he_cap->he_cap_elem.phy_cap_info),
1490 he_cap->he_cap_elem.phy_cap_info) ||
1491 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MCS_SET,
1492 sizeof(he_cap->he_mcs_nss_supp),
1493 &he_cap->he_mcs_nss_supp) ||
1494 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PPE,
1495 sizeof(he_cap->ppe_thres), he_cap->ppe_thres))
1502 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1503 struct ieee80211_supported_band *sband)
1505 struct nlattr *nl_rates, *nl_rate;
1506 struct ieee80211_rate *rate;
1510 if (sband->ht_cap.ht_supported &&
1511 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1512 sizeof(sband->ht_cap.mcs),
1513 &sband->ht_cap.mcs) ||
1514 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1515 sband->ht_cap.cap) ||
1516 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1517 sband->ht_cap.ampdu_factor) ||
1518 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1519 sband->ht_cap.ampdu_density)))
1523 if (sband->vht_cap.vht_supported &&
1524 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1525 sizeof(sband->vht_cap.vht_mcs),
1526 &sband->vht_cap.vht_mcs) ||
1527 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1528 sband->vht_cap.cap)))
1531 if (sband->n_iftype_data) {
1532 struct nlattr *nl_iftype_data =
1533 nla_nest_start_noflag(msg,
1534 NL80211_BAND_ATTR_IFTYPE_DATA);
1537 if (!nl_iftype_data)
1540 for (i = 0; i < sband->n_iftype_data; i++) {
1541 struct nlattr *iftdata;
1543 iftdata = nla_nest_start_noflag(msg, i + 1);
1547 err = nl80211_send_iftype_data(msg,
1548 &sband->iftype_data[i]);
1552 nla_nest_end(msg, iftdata);
1555 nla_nest_end(msg, nl_iftype_data);
1559 nl_rates = nla_nest_start_noflag(msg, NL80211_BAND_ATTR_RATES);
1563 for (i = 0; i < sband->n_bitrates; i++) {
1564 nl_rate = nla_nest_start_noflag(msg, i);
1568 rate = &sband->bitrates[i];
1569 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1572 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1574 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1577 nla_nest_end(msg, nl_rate);
1580 nla_nest_end(msg, nl_rates);
1586 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1587 const struct ieee80211_txrx_stypes *mgmt_stypes)
1590 struct nlattr *nl_ftypes, *nl_ifs;
1591 enum nl80211_iftype ift;
1597 nl_ifs = nla_nest_start_noflag(msg, NL80211_ATTR_TX_FRAME_TYPES);
1601 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1602 nl_ftypes = nla_nest_start_noflag(msg, ift);
1606 stypes = mgmt_stypes[ift].tx;
1609 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1610 (i << 4) | IEEE80211_FTYPE_MGMT))
1615 nla_nest_end(msg, nl_ftypes);
1618 nla_nest_end(msg, nl_ifs);
1620 nl_ifs = nla_nest_start_noflag(msg, NL80211_ATTR_RX_FRAME_TYPES);
1624 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1625 nl_ftypes = nla_nest_start_noflag(msg, ift);
1629 stypes = mgmt_stypes[ift].rx;
1632 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1633 (i << 4) | IEEE80211_FTYPE_MGMT))
1638 nla_nest_end(msg, nl_ftypes);
1640 nla_nest_end(msg, nl_ifs);
1645 #define CMD(op, n) \
1647 if (rdev->ops->op) { \
1649 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1650 goto nla_put_failure; \
1654 static int nl80211_add_commands_unsplit(struct cfg80211_registered_device *rdev,
1655 struct sk_buff *msg)
1660 * do *NOT* add anything into this function, new things need to be
1661 * advertised only to new versions of userspace that can deal with
1662 * the split (and they can't possibly care about new features...
1664 CMD(add_virtual_intf, NEW_INTERFACE);
1665 CMD(change_virtual_intf, SET_INTERFACE);
1666 CMD(add_key, NEW_KEY);
1667 CMD(start_ap, START_AP);
1668 CMD(add_station, NEW_STATION);
1669 CMD(add_mpath, NEW_MPATH);
1670 CMD(update_mesh_config, SET_MESH_CONFIG);
1671 CMD(change_bss, SET_BSS);
1672 CMD(auth, AUTHENTICATE);
1673 CMD(assoc, ASSOCIATE);
1674 CMD(deauth, DEAUTHENTICATE);
1675 CMD(disassoc, DISASSOCIATE);
1676 CMD(join_ibss, JOIN_IBSS);
1677 CMD(join_mesh, JOIN_MESH);
1678 CMD(set_pmksa, SET_PMKSA);
1679 CMD(del_pmksa, DEL_PMKSA);
1680 CMD(flush_pmksa, FLUSH_PMKSA);
1681 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1682 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1683 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1684 CMD(mgmt_tx, FRAME);
1685 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1686 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1688 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1689 goto nla_put_failure;
1691 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1692 rdev->ops->join_mesh) {
1694 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1695 goto nla_put_failure;
1697 CMD(set_wds_peer, SET_WDS_PEER);
1698 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1699 CMD(tdls_mgmt, TDLS_MGMT);
1700 CMD(tdls_oper, TDLS_OPER);
1702 if (rdev->wiphy.max_sched_scan_reqs)
1703 CMD(sched_scan_start, START_SCHED_SCAN);
1704 CMD(probe_client, PROBE_CLIENT);
1705 CMD(set_noack_map, SET_NOACK_MAP);
1706 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1708 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1709 goto nla_put_failure;
1711 CMD(start_p2p_device, START_P2P_DEVICE);
1712 CMD(set_mcast_rate, SET_MCAST_RATE);
1713 #ifdef CONFIG_NL80211_TESTMODE
1714 CMD(testmode_cmd, TESTMODE);
1717 if (rdev->ops->connect || rdev->ops->auth) {
1719 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1720 goto nla_put_failure;
1723 if (rdev->ops->disconnect || rdev->ops->deauth) {
1725 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1726 goto nla_put_failure;
1735 nl80211_send_pmsr_ftm_capa(const struct cfg80211_pmsr_capabilities *cap,
1736 struct sk_buff *msg)
1740 if (!cap->ftm.supported)
1743 ftm = nla_nest_start_noflag(msg, NL80211_PMSR_TYPE_FTM);
1747 if (cap->ftm.asap && nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_ASAP))
1749 if (cap->ftm.non_asap &&
1750 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP))
1752 if (cap->ftm.request_lci &&
1753 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI))
1755 if (cap->ftm.request_civicloc &&
1756 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC))
1758 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES,
1759 cap->ftm.preambles))
1761 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS,
1762 cap->ftm.bandwidths))
1764 if (cap->ftm.max_bursts_exponent >= 0 &&
1765 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT,
1766 cap->ftm.max_bursts_exponent))
1768 if (cap->ftm.max_ftms_per_burst &&
1769 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST,
1770 cap->ftm.max_ftms_per_burst))
1773 nla_nest_end(msg, ftm);
1777 static int nl80211_send_pmsr_capa(struct cfg80211_registered_device *rdev,
1778 struct sk_buff *msg)
1780 const struct cfg80211_pmsr_capabilities *cap = rdev->wiphy.pmsr_capa;
1781 struct nlattr *pmsr, *caps;
1787 * we don't need to clean up anything here since the caller
1788 * will genlmsg_cancel() if we fail
1791 pmsr = nla_nest_start_noflag(msg, NL80211_ATTR_PEER_MEASUREMENTS);
1795 if (nla_put_u32(msg, NL80211_PMSR_ATTR_MAX_PEERS, cap->max_peers))
1798 if (cap->report_ap_tsf &&
1799 nla_put_flag(msg, NL80211_PMSR_ATTR_REPORT_AP_TSF))
1802 if (cap->randomize_mac_addr &&
1803 nla_put_flag(msg, NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR))
1806 caps = nla_nest_start_noflag(msg, NL80211_PMSR_ATTR_TYPE_CAPA);
1810 if (nl80211_send_pmsr_ftm_capa(cap, msg))
1813 nla_nest_end(msg, caps);
1814 nla_nest_end(msg, pmsr);
1819 struct nl80211_dump_wiphy_state {
1822 long split_start, band_start, chan_start, capa_start;
1826 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1827 enum nl80211_commands cmd,
1828 struct sk_buff *msg, u32 portid, u32 seq,
1829 int flags, struct nl80211_dump_wiphy_state *state)
1832 struct nlattr *nl_bands, *nl_band;
1833 struct nlattr *nl_freqs, *nl_freq;
1834 struct nlattr *nl_cmds;
1835 enum nl80211_band band;
1836 struct ieee80211_channel *chan;
1838 const struct ieee80211_txrx_stypes *mgmt_stypes =
1839 rdev->wiphy.mgmt_stypes;
1842 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1846 if (WARN_ON(!state))
1849 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1850 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1851 wiphy_name(&rdev->wiphy)) ||
1852 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1853 cfg80211_rdev_list_generation))
1854 goto nla_put_failure;
1856 if (cmd != NL80211_CMD_NEW_WIPHY)
1859 switch (state->split_start) {
1861 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1862 rdev->wiphy.retry_short) ||
1863 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1864 rdev->wiphy.retry_long) ||
1865 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1866 rdev->wiphy.frag_threshold) ||
1867 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1868 rdev->wiphy.rts_threshold) ||
1869 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1870 rdev->wiphy.coverage_class) ||
1871 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1872 rdev->wiphy.max_scan_ssids) ||
1873 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1874 rdev->wiphy.max_sched_scan_ssids) ||
1875 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1876 rdev->wiphy.max_scan_ie_len) ||
1877 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1878 rdev->wiphy.max_sched_scan_ie_len) ||
1879 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1880 rdev->wiphy.max_match_sets) ||
1881 nla_put_u32(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_PLANS,
1882 rdev->wiphy.max_sched_scan_plans) ||
1883 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_INTERVAL,
1884 rdev->wiphy.max_sched_scan_plan_interval) ||
1885 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_ITERATIONS,
1886 rdev->wiphy.max_sched_scan_plan_iterations))
1887 goto nla_put_failure;
1889 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1890 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1891 goto nla_put_failure;
1892 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1893 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1894 goto nla_put_failure;
1895 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1896 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1897 goto nla_put_failure;
1898 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1899 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1900 goto nla_put_failure;
1901 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1902 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1903 goto nla_put_failure;
1904 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1905 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1906 goto nla_put_failure;
1907 state->split_start++;
1912 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1913 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1914 rdev->wiphy.cipher_suites))
1915 goto nla_put_failure;
1917 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1918 rdev->wiphy.max_num_pmkids))
1919 goto nla_put_failure;
1921 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1922 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1923 goto nla_put_failure;
1925 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1926 rdev->wiphy.available_antennas_tx) ||
1927 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1928 rdev->wiphy.available_antennas_rx))
1929 goto nla_put_failure;
1931 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1932 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1933 rdev->wiphy.probe_resp_offload))
1934 goto nla_put_failure;
1936 if ((rdev->wiphy.available_antennas_tx ||
1937 rdev->wiphy.available_antennas_rx) &&
1938 rdev->ops->get_antenna) {
1939 u32 tx_ant = 0, rx_ant = 0;
1942 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
1944 if (nla_put_u32(msg,
1945 NL80211_ATTR_WIPHY_ANTENNA_TX,
1948 NL80211_ATTR_WIPHY_ANTENNA_RX,
1950 goto nla_put_failure;
1954 state->split_start++;
1959 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1960 rdev->wiphy.interface_modes))
1961 goto nla_put_failure;
1962 state->split_start++;
1967 nl_bands = nla_nest_start_noflag(msg,
1968 NL80211_ATTR_WIPHY_BANDS);
1970 goto nla_put_failure;
1972 for (band = state->band_start;
1973 band < NUM_NL80211_BANDS; band++) {
1974 struct ieee80211_supported_band *sband;
1976 sband = rdev->wiphy.bands[band];
1981 nl_band = nla_nest_start_noflag(msg, band);
1983 goto nla_put_failure;
1985 switch (state->chan_start) {
1987 if (nl80211_send_band_rateinfo(msg, sband))
1988 goto nla_put_failure;
1989 state->chan_start++;
1994 /* add frequencies */
1995 nl_freqs = nla_nest_start_noflag(msg,
1996 NL80211_BAND_ATTR_FREQS);
1998 goto nla_put_failure;
2000 for (i = state->chan_start - 1;
2001 i < sband->n_channels;
2003 nl_freq = nla_nest_start_noflag(msg,
2006 goto nla_put_failure;
2008 chan = &sband->channels[i];
2010 if (nl80211_msg_put_channel(
2011 msg, &rdev->wiphy, chan,
2013 goto nla_put_failure;
2015 nla_nest_end(msg, nl_freq);
2019 if (i < sband->n_channels)
2020 state->chan_start = i + 2;
2022 state->chan_start = 0;
2023 nla_nest_end(msg, nl_freqs);
2026 nla_nest_end(msg, nl_band);
2029 /* start again here */
2030 if (state->chan_start)
2035 nla_nest_end(msg, nl_bands);
2037 if (band < NUM_NL80211_BANDS)
2038 state->band_start = band + 1;
2040 state->band_start = 0;
2042 /* if bands & channels are done, continue outside */
2043 if (state->band_start == 0 && state->chan_start == 0)
2044 state->split_start++;
2049 nl_cmds = nla_nest_start_noflag(msg,
2050 NL80211_ATTR_SUPPORTED_COMMANDS);
2052 goto nla_put_failure;
2054 i = nl80211_add_commands_unsplit(rdev, msg);
2056 goto nla_put_failure;
2058 CMD(crit_proto_start, CRIT_PROTOCOL_START);
2059 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
2060 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
2061 CMD(channel_switch, CHANNEL_SWITCH);
2062 CMD(set_qos_map, SET_QOS_MAP);
2063 if (rdev->wiphy.features &
2064 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
2065 CMD(add_tx_ts, ADD_TX_TS);
2066 CMD(set_multicast_to_unicast, SET_MULTICAST_TO_UNICAST);
2067 CMD(update_connect_params, UPDATE_CONNECT_PARAMS);
2071 nla_nest_end(msg, nl_cmds);
2072 state->split_start++;
2077 if (rdev->ops->remain_on_channel &&
2078 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
2080 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
2081 rdev->wiphy.max_remain_on_channel_duration))
2082 goto nla_put_failure;
2084 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
2085 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
2086 goto nla_put_failure;
2088 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
2089 goto nla_put_failure;
2090 state->split_start++;
2096 if (nl80211_send_wowlan(msg, rdev, state->split))
2097 goto nla_put_failure;
2098 state->split_start++;
2102 state->split_start++;
2106 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
2107 rdev->wiphy.software_iftypes))
2108 goto nla_put_failure;
2110 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
2112 goto nla_put_failure;
2114 state->split_start++;
2119 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
2120 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
2121 rdev->wiphy.ap_sme_capa))
2122 goto nla_put_failure;
2124 features = rdev->wiphy.features;
2126 * We can only add the per-channel limit information if the
2127 * dump is split, otherwise it makes it too big. Therefore
2128 * only advertise it in that case.
2131 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
2132 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
2133 goto nla_put_failure;
2135 if (rdev->wiphy.ht_capa_mod_mask &&
2136 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
2137 sizeof(*rdev->wiphy.ht_capa_mod_mask),
2138 rdev->wiphy.ht_capa_mod_mask))
2139 goto nla_put_failure;
2141 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
2142 rdev->wiphy.max_acl_mac_addrs &&
2143 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
2144 rdev->wiphy.max_acl_mac_addrs))
2145 goto nla_put_failure;
2148 * Any information below this point is only available to
2149 * applications that can deal with it being split. This
2150 * helps ensure that newly added capabilities don't break
2151 * older tools by overrunning their buffers.
2153 * We still increment split_start so that in the split
2154 * case we'll continue with more data in the next round,
2155 * but break unconditionally so unsplit data stops here.
2157 state->split_start++;
2160 if (rdev->wiphy.extended_capabilities &&
2161 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
2162 rdev->wiphy.extended_capabilities_len,
2163 rdev->wiphy.extended_capabilities) ||
2164 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2165 rdev->wiphy.extended_capabilities_len,
2166 rdev->wiphy.extended_capabilities_mask)))
2167 goto nla_put_failure;
2169 if (rdev->wiphy.vht_capa_mod_mask &&
2170 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
2171 sizeof(*rdev->wiphy.vht_capa_mod_mask),
2172 rdev->wiphy.vht_capa_mod_mask))
2173 goto nla_put_failure;
2175 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN,
2176 rdev->wiphy.perm_addr))
2177 goto nla_put_failure;
2179 if (!is_zero_ether_addr(rdev->wiphy.addr_mask) &&
2180 nla_put(msg, NL80211_ATTR_MAC_MASK, ETH_ALEN,
2181 rdev->wiphy.addr_mask))
2182 goto nla_put_failure;
2184 if (rdev->wiphy.n_addresses > 1) {
2187 attr = nla_nest_start(msg, NL80211_ATTR_MAC_ADDRS);
2189 goto nla_put_failure;
2191 for (i = 0; i < rdev->wiphy.n_addresses; i++)
2192 if (nla_put(msg, i + 1, ETH_ALEN,
2193 rdev->wiphy.addresses[i].addr))
2194 goto nla_put_failure;
2196 nla_nest_end(msg, attr);
2199 state->split_start++;
2202 if (nl80211_send_coalesce(msg, rdev))
2203 goto nla_put_failure;
2205 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
2206 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
2207 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
2208 goto nla_put_failure;
2210 if (rdev->wiphy.max_ap_assoc_sta &&
2211 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
2212 rdev->wiphy.max_ap_assoc_sta))
2213 goto nla_put_failure;
2215 state->split_start++;
2218 if (rdev->wiphy.n_vendor_commands) {
2219 const struct nl80211_vendor_cmd_info *info;
2220 struct nlattr *nested;
2222 nested = nla_nest_start_noflag(msg,
2223 NL80211_ATTR_VENDOR_DATA);
2225 goto nla_put_failure;
2227 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
2228 info = &rdev->wiphy.vendor_commands[i].info;
2229 if (nla_put(msg, i + 1, sizeof(*info), info))
2230 goto nla_put_failure;
2232 nla_nest_end(msg, nested);
2235 if (rdev->wiphy.n_vendor_events) {
2236 const struct nl80211_vendor_cmd_info *info;
2237 struct nlattr *nested;
2239 nested = nla_nest_start_noflag(msg,
2240 NL80211_ATTR_VENDOR_EVENTS);
2242 goto nla_put_failure;
2244 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
2245 info = &rdev->wiphy.vendor_events[i];
2246 if (nla_put(msg, i + 1, sizeof(*info), info))
2247 goto nla_put_failure;
2249 nla_nest_end(msg, nested);
2251 state->split_start++;
2254 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
2255 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
2256 rdev->wiphy.max_num_csa_counters))
2257 goto nla_put_failure;
2259 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
2260 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
2261 goto nla_put_failure;
2263 if (rdev->wiphy.max_sched_scan_reqs &&
2264 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_MAX_REQS,
2265 rdev->wiphy.max_sched_scan_reqs))
2266 goto nla_put_failure;
2268 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
2269 sizeof(rdev->wiphy.ext_features),
2270 rdev->wiphy.ext_features))
2271 goto nla_put_failure;
2273 if (rdev->wiphy.bss_select_support) {
2274 struct nlattr *nested;
2275 u32 bss_select_support = rdev->wiphy.bss_select_support;
2277 nested = nla_nest_start_noflag(msg,
2278 NL80211_ATTR_BSS_SELECT);
2280 goto nla_put_failure;
2283 while (bss_select_support) {
2284 if ((bss_select_support & 1) &&
2285 nla_put_flag(msg, i))
2286 goto nla_put_failure;
2288 bss_select_support >>= 1;
2290 nla_nest_end(msg, nested);
2293 state->split_start++;
2296 if (rdev->wiphy.num_iftype_ext_capab &&
2297 rdev->wiphy.iftype_ext_capab) {
2298 struct nlattr *nested_ext_capab, *nested;
2300 nested = nla_nest_start_noflag(msg,
2301 NL80211_ATTR_IFTYPE_EXT_CAPA);
2303 goto nla_put_failure;
2305 for (i = state->capa_start;
2306 i < rdev->wiphy.num_iftype_ext_capab; i++) {
2307 const struct wiphy_iftype_ext_capab *capab;
2309 capab = &rdev->wiphy.iftype_ext_capab[i];
2311 nested_ext_capab = nla_nest_start_noflag(msg,
2313 if (!nested_ext_capab ||
2314 nla_put_u32(msg, NL80211_ATTR_IFTYPE,
2316 nla_put(msg, NL80211_ATTR_EXT_CAPA,
2317 capab->extended_capabilities_len,
2318 capab->extended_capabilities) ||
2319 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2320 capab->extended_capabilities_len,
2321 capab->extended_capabilities_mask))
2322 goto nla_put_failure;
2324 nla_nest_end(msg, nested_ext_capab);
2328 nla_nest_end(msg, nested);
2329 if (i < rdev->wiphy.num_iftype_ext_capab) {
2330 state->capa_start = i + 1;
2335 if (nla_put_u32(msg, NL80211_ATTR_BANDS,
2336 rdev->wiphy.nan_supported_bands))
2337 goto nla_put_failure;
2339 if (wiphy_ext_feature_isset(&rdev->wiphy,
2340 NL80211_EXT_FEATURE_TXQS)) {
2341 struct cfg80211_txq_stats txqstats = {};
2344 res = rdev_get_txq_stats(rdev, NULL, &txqstats);
2346 !nl80211_put_txq_stats(msg, &txqstats,
2347 NL80211_ATTR_TXQ_STATS))
2348 goto nla_put_failure;
2350 if (nla_put_u32(msg, NL80211_ATTR_TXQ_LIMIT,
2351 rdev->wiphy.txq_limit))
2352 goto nla_put_failure;
2353 if (nla_put_u32(msg, NL80211_ATTR_TXQ_MEMORY_LIMIT,
2354 rdev->wiphy.txq_memory_limit))
2355 goto nla_put_failure;
2356 if (nla_put_u32(msg, NL80211_ATTR_TXQ_QUANTUM,
2357 rdev->wiphy.txq_quantum))
2358 goto nla_put_failure;
2361 state->split_start++;
2364 if (nl80211_send_pmsr_capa(rdev, msg))
2365 goto nla_put_failure;
2367 state->split_start++;
2370 if (rdev->wiphy.akm_suites &&
2371 nla_put(msg, NL80211_ATTR_AKM_SUITES,
2372 sizeof(u32) * rdev->wiphy.n_akm_suites,
2373 rdev->wiphy.akm_suites))
2374 goto nla_put_failure;
2377 state->split_start = 0;
2381 genlmsg_end(msg, hdr);
2385 genlmsg_cancel(msg, hdr);
2389 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
2390 struct netlink_callback *cb,
2391 struct nl80211_dump_wiphy_state *state)
2393 struct nlattr **tb = genl_family_attrbuf(&nl80211_fam);
2394 int ret = nlmsg_parse_deprecated(cb->nlh,
2395 GENL_HDRLEN + nl80211_fam.hdrsize,
2396 tb, nl80211_fam.maxattr,
2397 nl80211_policy, NULL);
2398 /* ignore parse errors for backward compatibility */
2402 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
2403 if (tb[NL80211_ATTR_WIPHY])
2404 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
2405 if (tb[NL80211_ATTR_WDEV])
2406 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
2407 if (tb[NL80211_ATTR_IFINDEX]) {
2408 struct net_device *netdev;
2409 struct cfg80211_registered_device *rdev;
2410 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
2412 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
2415 if (netdev->ieee80211_ptr) {
2416 rdev = wiphy_to_rdev(
2417 netdev->ieee80211_ptr->wiphy);
2418 state->filter_wiphy = rdev->wiphy_idx;
2425 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
2428 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
2429 struct cfg80211_registered_device *rdev;
2433 state = kzalloc(sizeof(*state), GFP_KERNEL);
2438 state->filter_wiphy = -1;
2439 ret = nl80211_dump_wiphy_parse(skb, cb, state);
2445 cb->args[0] = (long)state;
2448 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2449 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2451 if (++idx <= state->start)
2453 if (state->filter_wiphy != -1 &&
2454 state->filter_wiphy != rdev->wiphy_idx)
2456 /* attempt to fit multiple wiphy data chunks into the skb */
2458 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
2460 NETLINK_CB(cb->skb).portid,
2462 NLM_F_MULTI, state);
2465 * If sending the wiphy data didn't fit (ENOBUFS
2466 * or EMSGSIZE returned), this SKB is still
2467 * empty (so it's not too big because another
2468 * wiphy dataset is already in the skb) and
2469 * we've not tried to adjust the dump allocation
2470 * yet ... then adjust the alloc size to be
2471 * bigger, and return 1 but with the empty skb.
2472 * This results in an empty message being RX'ed
2473 * in userspace, but that is ignored.
2475 * We can then retry with the larger buffer.
2477 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
2478 !skb->len && !state->split &&
2479 cb->min_dump_alloc < 4096) {
2480 cb->min_dump_alloc = 4096;
2481 state->split_start = 0;
2488 } while (state->split_start > 0);
2498 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
2500 kfree((void *)cb->args[0]);
2504 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
2506 struct sk_buff *msg;
2507 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2508 struct nl80211_dump_wiphy_state state = {};
2510 msg = nlmsg_new(4096, GFP_KERNEL);
2514 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
2515 info->snd_portid, info->snd_seq, 0,
2521 return genlmsg_reply(msg, info);
2524 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
2525 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
2526 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
2527 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
2528 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
2529 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
2532 static int parse_txq_params(struct nlattr *tb[],
2533 struct ieee80211_txq_params *txq_params)
2537 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
2538 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
2539 !tb[NL80211_TXQ_ATTR_AIFS])
2542 ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
2543 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
2544 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
2545 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
2546 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
2548 if (ac >= NL80211_NUM_ACS)
2550 txq_params->ac = array_index_nospec(ac, NL80211_NUM_ACS);
2554 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
2557 * You can only set the channel explicitly for WDS interfaces,
2558 * all others have their channel managed via their respective
2559 * "establish a connection" command (connect, join, ...)
2561 * For AP/GO and mesh mode, the channel can be set with the
2562 * channel userspace API, but is only stored and passed to the
2563 * low-level driver when the AP starts or the mesh is joined.
2564 * This is for backward compatibility, userspace can also give
2565 * the channel in the start-ap or join-mesh commands instead.
2567 * Monitors are special as they are normally slaved to
2568 * whatever else is going on, so they have their own special
2569 * operation to set the monitor channel if possible.
2572 wdev->iftype == NL80211_IFTYPE_AP ||
2573 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
2574 wdev->iftype == NL80211_IFTYPE_MONITOR ||
2575 wdev->iftype == NL80211_IFTYPE_P2P_GO;
2578 int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
2579 struct genl_info *info,
2580 struct cfg80211_chan_def *chandef)
2582 struct netlink_ext_ack *extack = info->extack;
2583 struct nlattr **attrs = info->attrs;
2586 if (!attrs[NL80211_ATTR_WIPHY_FREQ])
2589 control_freq = nla_get_u32(attrs[NL80211_ATTR_WIPHY_FREQ]);
2591 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
2592 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
2593 chandef->center_freq1 = control_freq;
2594 chandef->center_freq2 = 0;
2596 /* Primary channel not allowed */
2597 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED) {
2598 NL_SET_ERR_MSG_ATTR(extack, attrs[NL80211_ATTR_WIPHY_FREQ],
2599 "Channel is disabled");
2603 if (attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
2604 enum nl80211_channel_type chantype;
2606 chantype = nla_get_u32(attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
2609 case NL80211_CHAN_NO_HT:
2610 case NL80211_CHAN_HT20:
2611 case NL80211_CHAN_HT40PLUS:
2612 case NL80211_CHAN_HT40MINUS:
2613 cfg80211_chandef_create(chandef, chandef->chan,
2615 /* user input for center_freq is incorrect */
2616 if (attrs[NL80211_ATTR_CENTER_FREQ1] &&
2617 chandef->center_freq1 != nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1])) {
2618 NL_SET_ERR_MSG_ATTR(extack,
2619 attrs[NL80211_ATTR_CENTER_FREQ1],
2620 "bad center frequency 1");
2623 /* center_freq2 must be zero */
2624 if (attrs[NL80211_ATTR_CENTER_FREQ2] &&
2625 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2])) {
2626 NL_SET_ERR_MSG_ATTR(extack,
2627 attrs[NL80211_ATTR_CENTER_FREQ2],
2628 "center frequency 2 can't be used");
2633 NL_SET_ERR_MSG_ATTR(extack,
2634 attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE],
2635 "invalid channel type");
2638 } else if (attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
2640 nla_get_u32(attrs[NL80211_ATTR_CHANNEL_WIDTH]);
2641 if (attrs[NL80211_ATTR_CENTER_FREQ1])
2642 chandef->center_freq1 =
2643 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1]);
2644 if (attrs[NL80211_ATTR_CENTER_FREQ2])
2645 chandef->center_freq2 =
2646 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2]);
2649 if (!cfg80211_chandef_valid(chandef)) {
2650 NL_SET_ERR_MSG(extack, "invalid channel definition");
2654 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
2655 IEEE80211_CHAN_DISABLED)) {
2656 NL_SET_ERR_MSG(extack, "(extension) channel is disabled");
2660 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
2661 chandef->width == NL80211_CHAN_WIDTH_10) &&
2662 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ)) {
2663 NL_SET_ERR_MSG(extack, "5/10 MHz not supported");
2670 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
2671 struct net_device *dev,
2672 struct genl_info *info)
2674 struct cfg80211_chan_def chandef;
2676 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
2677 struct wireless_dev *wdev = NULL;
2680 wdev = dev->ieee80211_ptr;
2681 if (!nl80211_can_set_dev_channel(wdev))
2684 iftype = wdev->iftype;
2686 result = nl80211_parse_chandef(rdev, info, &chandef);
2691 case NL80211_IFTYPE_AP:
2692 case NL80211_IFTYPE_P2P_GO:
2693 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
2698 if (wdev->beacon_interval) {
2699 if (!dev || !rdev->ops->set_ap_chanwidth ||
2700 !(rdev->wiphy.features &
2701 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2706 /* Only allow dynamic channel width changes */
2707 if (chandef.chan != wdev->preset_chandef.chan) {
2711 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2715 wdev->preset_chandef = chandef;
2718 case NL80211_IFTYPE_MESH_POINT:
2719 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2721 case NL80211_IFTYPE_MONITOR:
2722 result = cfg80211_set_monitor_channel(rdev, &chandef);
2731 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2733 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2734 struct net_device *netdev = info->user_ptr[1];
2736 return __nl80211_set_channel(rdev, netdev, info);
2739 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2741 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2742 struct net_device *dev = info->user_ptr[1];
2743 struct wireless_dev *wdev = dev->ieee80211_ptr;
2746 if (!info->attrs[NL80211_ATTR_MAC])
2749 if (netif_running(dev))
2752 if (!rdev->ops->set_wds_peer)
2755 if (wdev->iftype != NL80211_IFTYPE_WDS)
2758 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2759 return rdev_set_wds_peer(rdev, dev, bssid);
2762 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2764 struct cfg80211_registered_device *rdev;
2765 struct net_device *netdev = NULL;
2766 struct wireless_dev *wdev;
2767 int result = 0, rem_txq_params = 0;
2768 struct nlattr *nl_txq_params;
2770 u8 retry_short = 0, retry_long = 0;
2771 u32 frag_threshold = 0, rts_threshold = 0;
2772 u8 coverage_class = 0;
2773 u32 txq_limit = 0, txq_memory_limit = 0, txq_quantum = 0;
2778 * Try to find the wiphy and netdev. Normally this
2779 * function shouldn't need the netdev, but this is
2780 * done for backward compatibility -- previously
2781 * setting the channel was done per wiphy, but now
2782 * it is per netdev. Previous userland like hostapd
2783 * also passed a netdev to set_wiphy, so that it is
2784 * possible to let that go to the right netdev!
2787 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2788 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2790 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2791 if (netdev && netdev->ieee80211_ptr)
2792 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2798 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2801 return PTR_ERR(rdev);
2806 wdev = netdev->ieee80211_ptr;
2809 * end workaround code, by now the rdev is available
2810 * and locked, and wdev may or may not be NULL.
2813 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2814 result = cfg80211_dev_rename(
2815 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2820 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2821 struct ieee80211_txq_params txq_params;
2822 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2824 if (!rdev->ops->set_txq_params)
2830 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2831 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2834 if (!netif_running(netdev))
2837 nla_for_each_nested(nl_txq_params,
2838 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2840 result = nla_parse_nested_deprecated(tb,
2841 NL80211_TXQ_ATTR_MAX,
2847 result = parse_txq_params(tb, &txq_params);
2851 result = rdev_set_txq_params(rdev, netdev,
2858 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2859 result = __nl80211_set_channel(
2861 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2867 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2868 struct wireless_dev *txp_wdev = wdev;
2869 enum nl80211_tx_power_setting type;
2872 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2875 if (!rdev->ops->set_tx_power)
2878 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2879 type = nla_get_u32(info->attrs[idx]);
2881 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2882 (type != NL80211_TX_POWER_AUTOMATIC))
2885 if (type != NL80211_TX_POWER_AUTOMATIC) {
2886 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2887 mbm = nla_get_u32(info->attrs[idx]);
2890 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2895 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2896 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2899 if ((!rdev->wiphy.available_antennas_tx &&
2900 !rdev->wiphy.available_antennas_rx) ||
2901 !rdev->ops->set_antenna)
2904 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2905 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2907 /* reject antenna configurations which don't match the
2908 * available antenna masks, except for the "all" mask */
2909 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2910 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2913 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2914 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2916 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2923 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2924 retry_short = nla_get_u8(
2925 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2927 changed |= WIPHY_PARAM_RETRY_SHORT;
2930 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2931 retry_long = nla_get_u8(
2932 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2934 changed |= WIPHY_PARAM_RETRY_LONG;
2937 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2938 frag_threshold = nla_get_u32(
2939 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2940 if (frag_threshold < 256)
2943 if (frag_threshold != (u32) -1) {
2945 * Fragments (apart from the last one) are required to
2946 * have even length. Make the fragmentation code
2947 * simpler by stripping LSB should someone try to use
2948 * odd threshold value.
2950 frag_threshold &= ~0x1;
2952 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2955 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2956 rts_threshold = nla_get_u32(
2957 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2958 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2961 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2962 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
2965 coverage_class = nla_get_u8(
2966 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2967 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2970 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
2971 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
2974 changed |= WIPHY_PARAM_DYN_ACK;
2977 if (info->attrs[NL80211_ATTR_TXQ_LIMIT]) {
2978 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2979 NL80211_EXT_FEATURE_TXQS))
2981 txq_limit = nla_get_u32(
2982 info->attrs[NL80211_ATTR_TXQ_LIMIT]);
2983 changed |= WIPHY_PARAM_TXQ_LIMIT;
2986 if (info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]) {
2987 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2988 NL80211_EXT_FEATURE_TXQS))
2990 txq_memory_limit = nla_get_u32(
2991 info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]);
2992 changed |= WIPHY_PARAM_TXQ_MEMORY_LIMIT;
2995 if (info->attrs[NL80211_ATTR_TXQ_QUANTUM]) {
2996 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2997 NL80211_EXT_FEATURE_TXQS))
2999 txq_quantum = nla_get_u32(
3000 info->attrs[NL80211_ATTR_TXQ_QUANTUM]);
3001 changed |= WIPHY_PARAM_TXQ_QUANTUM;
3005 u8 old_retry_short, old_retry_long;
3006 u32 old_frag_threshold, old_rts_threshold;
3007 u8 old_coverage_class;
3008 u32 old_txq_limit, old_txq_memory_limit, old_txq_quantum;
3010 if (!rdev->ops->set_wiphy_params)
3013 old_retry_short = rdev->wiphy.retry_short;
3014 old_retry_long = rdev->wiphy.retry_long;
3015 old_frag_threshold = rdev->wiphy.frag_threshold;
3016 old_rts_threshold = rdev->wiphy.rts_threshold;
3017 old_coverage_class = rdev->wiphy.coverage_class;
3018 old_txq_limit = rdev->wiphy.txq_limit;
3019 old_txq_memory_limit = rdev->wiphy.txq_memory_limit;
3020 old_txq_quantum = rdev->wiphy.txq_quantum;
3022 if (changed & WIPHY_PARAM_RETRY_SHORT)
3023 rdev->wiphy.retry_short = retry_short;
3024 if (changed & WIPHY_PARAM_RETRY_LONG)
3025 rdev->wiphy.retry_long = retry_long;
3026 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
3027 rdev->wiphy.frag_threshold = frag_threshold;
3028 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
3029 rdev->wiphy.rts_threshold = rts_threshold;
3030 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
3031 rdev->wiphy.coverage_class = coverage_class;
3032 if (changed & WIPHY_PARAM_TXQ_LIMIT)
3033 rdev->wiphy.txq_limit = txq_limit;
3034 if (changed & WIPHY_PARAM_TXQ_MEMORY_LIMIT)
3035 rdev->wiphy.txq_memory_limit = txq_memory_limit;
3036 if (changed & WIPHY_PARAM_TXQ_QUANTUM)
3037 rdev->wiphy.txq_quantum = txq_quantum;
3039 result = rdev_set_wiphy_params(rdev, changed);
3041 rdev->wiphy.retry_short = old_retry_short;
3042 rdev->wiphy.retry_long = old_retry_long;
3043 rdev->wiphy.frag_threshold = old_frag_threshold;
3044 rdev->wiphy.rts_threshold = old_rts_threshold;
3045 rdev->wiphy.coverage_class = old_coverage_class;
3046 rdev->wiphy.txq_limit = old_txq_limit;
3047 rdev->wiphy.txq_memory_limit = old_txq_memory_limit;
3048 rdev->wiphy.txq_quantum = old_txq_quantum;
3055 static int nl80211_send_chandef(struct sk_buff *msg,
3056 const struct cfg80211_chan_def *chandef)
3058 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
3061 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
3062 chandef->chan->center_freq))
3064 switch (chandef->width) {
3065 case NL80211_CHAN_WIDTH_20_NOHT:
3066 case NL80211_CHAN_WIDTH_20:
3067 case NL80211_CHAN_WIDTH_40:
3068 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
3069 cfg80211_get_chandef_type(chandef)))
3075 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
3077 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
3079 if (chandef->center_freq2 &&
3080 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
3085 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
3086 struct cfg80211_registered_device *rdev,
3087 struct wireless_dev *wdev,
3088 enum nl80211_commands cmd)
3090 struct net_device *dev = wdev->netdev;
3093 WARN_ON(cmd != NL80211_CMD_NEW_INTERFACE &&
3094 cmd != NL80211_CMD_DEL_INTERFACE &&
3095 cmd != NL80211_CMD_SET_INTERFACE);
3097 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
3102 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3103 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
3104 goto nla_put_failure;
3106 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
3107 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
3108 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
3109 NL80211_ATTR_PAD) ||
3110 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
3111 nla_put_u32(msg, NL80211_ATTR_GENERATION,
3112 rdev->devlist_generation ^
3113 (cfg80211_rdev_list_generation << 2)) ||
3114 nla_put_u8(msg, NL80211_ATTR_4ADDR, wdev->use_4addr))
3115 goto nla_put_failure;
3117 if (rdev->ops->get_channel) {
3119 struct cfg80211_chan_def chandef;
3121 ret = rdev_get_channel(rdev, wdev, &chandef);
3123 if (nl80211_send_chandef(msg, &chandef))
3124 goto nla_put_failure;
3128 if (rdev->ops->get_tx_power) {
3131 ret = rdev_get_tx_power(rdev, wdev, &dbm);
3133 nla_put_u32(msg, NL80211_ATTR_WIPHY_TX_POWER_LEVEL,
3135 goto nla_put_failure;
3139 switch (wdev->iftype) {
3140 case NL80211_IFTYPE_AP:
3141 if (wdev->ssid_len &&
3142 nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
3143 goto nla_put_failure_locked;
3145 case NL80211_IFTYPE_STATION:
3146 case NL80211_IFTYPE_P2P_CLIENT:
3147 case NL80211_IFTYPE_ADHOC: {
3149 if (!wdev->current_bss)
3152 ssid_ie = ieee80211_bss_get_ie(&wdev->current_bss->pub,
3155 nla_put(msg, NL80211_ATTR_SSID, ssid_ie[1], ssid_ie + 2))
3156 goto nla_put_failure_rcu_locked;
3166 if (rdev->ops->get_txq_stats) {
3167 struct cfg80211_txq_stats txqstats = {};
3168 int ret = rdev_get_txq_stats(rdev, wdev, &txqstats);
3171 !nl80211_put_txq_stats(msg, &txqstats,
3172 NL80211_ATTR_TXQ_STATS))
3173 goto nla_put_failure;
3176 genlmsg_end(msg, hdr);
3179 nla_put_failure_rcu_locked:
3181 nla_put_failure_locked:
3184 genlmsg_cancel(msg, hdr);
3188 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
3192 int wp_start = cb->args[0];
3193 int if_start = cb->args[1];
3194 int filter_wiphy = -1;
3195 struct cfg80211_registered_device *rdev;
3196 struct wireless_dev *wdev;
3201 struct nl80211_dump_wiphy_state state = {
3205 ret = nl80211_dump_wiphy_parse(skb, cb, &state);
3209 filter_wiphy = state.filter_wiphy;
3212 * if filtering, set cb->args[2] to +1 since 0 is the default
3213 * value needed to determine that parsing is necessary.
3215 if (filter_wiphy >= 0)
3216 cb->args[2] = filter_wiphy + 1;
3219 } else if (cb->args[2] > 0) {
3220 filter_wiphy = cb->args[2] - 1;
3223 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
3224 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
3226 if (wp_idx < wp_start) {
3231 if (filter_wiphy >= 0 && filter_wiphy != rdev->wiphy_idx)
3236 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
3237 if (if_idx < if_start) {
3241 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
3242 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3244 NL80211_CMD_NEW_INTERFACE) < 0) {
3253 cb->args[0] = wp_idx;
3254 cb->args[1] = if_idx;
3263 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
3265 struct sk_buff *msg;
3266 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3267 struct wireless_dev *wdev = info->user_ptr[1];
3269 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3273 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3274 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3279 return genlmsg_reply(msg, info);
3282 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
3283 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
3284 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
3285 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
3286 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
3287 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
3288 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
3291 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
3293 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
3301 if (nla_parse_nested_deprecated(flags, NL80211_MNTR_FLAG_MAX, nla, mntr_flags_policy, NULL))
3304 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
3306 *mntrflags |= (1<<flag);
3308 *mntrflags |= MONITOR_FLAG_CHANGED;
3313 static int nl80211_parse_mon_options(struct cfg80211_registered_device *rdev,
3314 enum nl80211_iftype type,
3315 struct genl_info *info,
3316 struct vif_params *params)
3318 bool change = false;
3321 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
3322 if (type != NL80211_IFTYPE_MONITOR)
3325 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
3333 if (params->flags & MONITOR_FLAG_ACTIVE &&
3334 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
3337 if (info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]) {
3338 const u8 *mumimo_groups;
3339 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3341 if (type != NL80211_IFTYPE_MONITOR)
3344 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3348 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]);
3350 /* bits 0 and 63 are reserved and must be zero */
3351 if ((mumimo_groups[0] & BIT(0)) ||
3352 (mumimo_groups[VHT_MUMIMO_GROUPS_DATA_LEN - 1] & BIT(7)))
3355 params->vht_mumimo_groups = mumimo_groups;
3359 if (info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]) {
3360 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3362 if (type != NL80211_IFTYPE_MONITOR)
3365 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3368 params->vht_mumimo_follow_addr =
3369 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]);
3373 return change ? 1 : 0;
3376 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
3377 struct net_device *netdev, u8 use_4addr,
3378 enum nl80211_iftype iftype)
3381 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
3387 case NL80211_IFTYPE_AP_VLAN:
3388 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
3391 case NL80211_IFTYPE_STATION:
3392 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
3402 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
3404 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3405 struct vif_params params;
3407 enum nl80211_iftype otype, ntype;
3408 struct net_device *dev = info->user_ptr[1];
3409 bool change = false;
3411 memset(¶ms, 0, sizeof(params));
3413 otype = ntype = dev->ieee80211_ptr->iftype;
3415 if (info->attrs[NL80211_ATTR_IFTYPE]) {
3416 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3421 if (info->attrs[NL80211_ATTR_MESH_ID]) {
3422 struct wireless_dev *wdev = dev->ieee80211_ptr;
3424 if (ntype != NL80211_IFTYPE_MESH_POINT)
3426 if (netif_running(dev))
3430 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3431 IEEE80211_MAX_MESH_ID_LEN);
3432 wdev->mesh_id_up_len =
3433 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3434 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3435 wdev->mesh_id_up_len);
3439 if (info->attrs[NL80211_ATTR_4ADDR]) {
3440 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3442 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
3446 params.use_4addr = -1;
3449 err = nl80211_parse_mon_options(rdev, ntype, info, ¶ms);
3456 err = cfg80211_change_iface(rdev, dev, ntype, ¶ms);
3460 if (!err && params.use_4addr != -1)
3461 dev->ieee80211_ptr->use_4addr = params.use_4addr;
3463 if (change && !err) {
3464 struct wireless_dev *wdev = dev->ieee80211_ptr;
3466 nl80211_notify_iface(rdev, wdev, NL80211_CMD_SET_INTERFACE);
3472 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
3474 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3475 struct vif_params params;
3476 struct wireless_dev *wdev;
3477 struct sk_buff *msg;
3479 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
3481 /* to avoid failing a new interface creation due to pending removal */
3482 cfg80211_destroy_ifaces(rdev);
3484 memset(¶ms, 0, sizeof(params));
3486 if (!info->attrs[NL80211_ATTR_IFNAME])
3489 if (info->attrs[NL80211_ATTR_IFTYPE])
3490 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3492 if (!rdev->ops->add_virtual_intf)
3495 if ((type == NL80211_IFTYPE_P2P_DEVICE || type == NL80211_IFTYPE_NAN ||
3496 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
3497 info->attrs[NL80211_ATTR_MAC]) {
3498 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
3500 if (!is_valid_ether_addr(params.macaddr))
3501 return -EADDRNOTAVAIL;
3504 if (info->attrs[NL80211_ATTR_4ADDR]) {
3505 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3506 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
3511 if (!(rdev->wiphy.interface_modes & (1 << type)) &&
3512 !(type == NL80211_IFTYPE_AP_VLAN && params.use_4addr &&
3513 rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP))
3516 err = nl80211_parse_mon_options(rdev, type, info, ¶ms);
3520 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3524 wdev = rdev_add_virtual_intf(rdev,
3525 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
3526 NET_NAME_USER, type, ¶ms);
3527 if (WARN_ON(!wdev)) {
3530 } else if (IS_ERR(wdev)) {
3532 return PTR_ERR(wdev);
3535 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
3536 wdev->owner_nlportid = info->snd_portid;
3539 case NL80211_IFTYPE_MESH_POINT:
3540 if (!info->attrs[NL80211_ATTR_MESH_ID])
3543 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3544 IEEE80211_MAX_MESH_ID_LEN);
3545 wdev->mesh_id_up_len =
3546 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3547 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3548 wdev->mesh_id_up_len);
3551 case NL80211_IFTYPE_NAN:
3552 case NL80211_IFTYPE_P2P_DEVICE:
3554 * P2P Device and NAN do not have a netdev, so don't go
3555 * through the netdev notifier and must be added here
3557 cfg80211_init_wdev(rdev, wdev);
3563 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3564 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3569 return genlmsg_reply(msg, info);
3572 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
3574 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3575 struct wireless_dev *wdev = info->user_ptr[1];
3577 if (!rdev->ops->del_virtual_intf)
3581 * If we remove a wireless device without a netdev then clear
3582 * user_ptr[1] so that nl80211_post_doit won't dereference it
3583 * to check if it needs to do dev_put(). Otherwise it crashes
3584 * since the wdev has been freed, unlike with a netdev where
3585 * we need the dev_put() for the netdev to really be freed.
3588 info->user_ptr[1] = NULL;
3590 return rdev_del_virtual_intf(rdev, wdev);
3593 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
3595 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3596 struct net_device *dev = info->user_ptr[1];
3599 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
3602 if (!rdev->ops->set_noack_map)
3605 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
3607 return rdev_set_noack_map(rdev, dev, noack_map);
3610 struct get_key_cookie {
3611 struct sk_buff *msg;
3616 static void get_key_callback(void *c, struct key_params *params)
3619 struct get_key_cookie *cookie = c;
3622 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
3623 params->key_len, params->key)) ||
3625 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
3626 params->seq_len, params->seq)) ||
3628 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
3630 goto nla_put_failure;
3632 key = nla_nest_start_noflag(cookie->msg, NL80211_ATTR_KEY);
3634 goto nla_put_failure;
3637 nla_put(cookie->msg, NL80211_KEY_DATA,
3638 params->key_len, params->key)) ||
3640 nla_put(cookie->msg, NL80211_KEY_SEQ,
3641 params->seq_len, params->seq)) ||
3643 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
3645 goto nla_put_failure;
3647 if (nla_put_u8(cookie->msg, NL80211_KEY_IDX, cookie->idx))
3648 goto nla_put_failure;
3650 nla_nest_end(cookie->msg, key);
3657 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
3659 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3661 struct net_device *dev = info->user_ptr[1];
3663 const u8 *mac_addr = NULL;
3665 struct get_key_cookie cookie = {
3669 struct sk_buff *msg;
3671 if (info->attrs[NL80211_ATTR_KEY_IDX])
3672 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
3674 if (info->attrs[NL80211_ATTR_MAC])
3675 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3677 pairwise = !!mac_addr;
3678 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
3679 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
3681 if (kt != NL80211_KEYTYPE_GROUP &&
3682 kt != NL80211_KEYTYPE_PAIRWISE)
3684 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
3687 if (!rdev->ops->get_key)
3690 if (!pairwise && mac_addr && !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3693 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3697 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
3698 NL80211_CMD_NEW_KEY);
3700 goto nla_put_failure;
3703 cookie.idx = key_idx;
3705 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3706 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
3707 goto nla_put_failure;
3709 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
3710 goto nla_put_failure;
3712 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
3719 goto nla_put_failure;
3721 genlmsg_end(msg, hdr);
3722 return genlmsg_reply(msg, info);
3731 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
3733 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3734 struct key_parse key;
3736 struct net_device *dev = info->user_ptr[1];
3738 err = nl80211_parse_key(info, &key);
3745 /* Only support setting default key and
3746 * Extended Key ID action NL80211_KEY_SET_TX.
3748 if (!key.def && !key.defmgmt &&
3749 !(key.p.mode == NL80211_KEY_SET_TX))
3752 wdev_lock(dev->ieee80211_ptr);
3755 if (!rdev->ops->set_default_key) {
3760 err = nl80211_key_allowed(dev->ieee80211_ptr);
3764 err = rdev_set_default_key(rdev, dev, key.idx,
3765 key.def_uni, key.def_multi);
3770 #ifdef CONFIG_CFG80211_WEXT
3771 dev->ieee80211_ptr->wext.default_key = key.idx;
3773 } else if (key.defmgmt) {
3774 if (key.def_uni || !key.def_multi) {
3779 if (!rdev->ops->set_default_mgmt_key) {
3784 err = nl80211_key_allowed(dev->ieee80211_ptr);
3788 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
3792 #ifdef CONFIG_CFG80211_WEXT
3793 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
3795 } else if (key.p.mode == NL80211_KEY_SET_TX &&
3796 wiphy_ext_feature_isset(&rdev->wiphy,
3797 NL80211_EXT_FEATURE_EXT_KEY_ID)) {
3798 u8 *mac_addr = NULL;
3800 if (info->attrs[NL80211_ATTR_MAC])
3801 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3803 if (!mac_addr || key.idx < 0 || key.idx > 1) {
3808 err = rdev_add_key(rdev, dev, key.idx,
3809 NL80211_KEYTYPE_PAIRWISE,
3815 wdev_unlock(dev->ieee80211_ptr);
3820 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
3822 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3824 struct net_device *dev = info->user_ptr[1];
3825 struct key_parse key;
3826 const u8 *mac_addr = NULL;
3828 err = nl80211_parse_key(info, &key);
3835 if (info->attrs[NL80211_ATTR_MAC])
3836 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3838 if (key.type == -1) {
3840 key.type = NL80211_KEYTYPE_PAIRWISE;
3842 key.type = NL80211_KEYTYPE_GROUP;
3846 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3847 key.type != NL80211_KEYTYPE_GROUP)
3850 if (!rdev->ops->add_key)
3853 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3854 key.type == NL80211_KEYTYPE_PAIRWISE,
3858 wdev_lock(dev->ieee80211_ptr);
3859 err = nl80211_key_allowed(dev->ieee80211_ptr);
3861 err = rdev_add_key(rdev, dev, key.idx,
3862 key.type == NL80211_KEYTYPE_PAIRWISE,
3864 wdev_unlock(dev->ieee80211_ptr);
3869 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3871 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3873 struct net_device *dev = info->user_ptr[1];
3874 u8 *mac_addr = NULL;
3875 struct key_parse key;
3877 err = nl80211_parse_key(info, &key);
3881 if (info->attrs[NL80211_ATTR_MAC])
3882 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3884 if (key.type == -1) {
3886 key.type = NL80211_KEYTYPE_PAIRWISE;
3888 key.type = NL80211_KEYTYPE_GROUP;
3892 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3893 key.type != NL80211_KEYTYPE_GROUP)
3896 if (!rdev->ops->del_key)
3899 wdev_lock(dev->ieee80211_ptr);
3900 err = nl80211_key_allowed(dev->ieee80211_ptr);
3902 if (key.type == NL80211_KEYTYPE_GROUP && mac_addr &&
3903 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3907 err = rdev_del_key(rdev, dev, key.idx,
3908 key.type == NL80211_KEYTYPE_PAIRWISE,
3911 #ifdef CONFIG_CFG80211_WEXT
3913 if (key.idx == dev->ieee80211_ptr->wext.default_key)
3914 dev->ieee80211_ptr->wext.default_key = -1;
3915 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
3916 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
3919 wdev_unlock(dev->ieee80211_ptr);
3924 /* This function returns an error or the number of nested attributes */
3925 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
3927 struct nlattr *attr;
3928 int n_entries = 0, tmp;
3930 nla_for_each_nested(attr, nl_attr, tmp) {
3931 if (nla_len(attr) != ETH_ALEN)
3941 * This function parses ACL information and allocates memory for ACL data.
3942 * On successful return, the calling function is responsible to free the
3943 * ACL buffer returned by this function.
3945 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
3946 struct genl_info *info)
3948 enum nl80211_acl_policy acl_policy;
3949 struct nlattr *attr;
3950 struct cfg80211_acl_data *acl;
3951 int i = 0, n_entries, tmp;
3953 if (!wiphy->max_acl_mac_addrs)
3954 return ERR_PTR(-EOPNOTSUPP);
3956 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
3957 return ERR_PTR(-EINVAL);
3959 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
3960 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
3961 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
3962 return ERR_PTR(-EINVAL);
3964 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
3965 return ERR_PTR(-EINVAL);
3967 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
3969 return ERR_PTR(n_entries);
3971 if (n_entries > wiphy->max_acl_mac_addrs)
3972 return ERR_PTR(-ENOTSUPP);
3974 acl = kzalloc(struct_size(acl, mac_addrs, n_entries), GFP_KERNEL);
3976 return ERR_PTR(-ENOMEM);
3978 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
3979 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3983 acl->n_acl_entries = n_entries;
3984 acl->acl_policy = acl_policy;
3989 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3991 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3992 struct net_device *dev = info->user_ptr[1];
3993 struct cfg80211_acl_data *acl;
3996 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3997 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4000 if (!dev->ieee80211_ptr->beacon_interval)
4003 acl = parse_acl_data(&rdev->wiphy, info);
4005 return PTR_ERR(acl);
4007 err = rdev_set_mac_acl(rdev, dev, acl);
4014 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
4015 u8 *rates, u8 rates_len)
4020 for (i = 0; i < rates_len; i++) {
4021 int rate = (rates[i] & 0x7f) * 5;
4024 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
4025 struct ieee80211_rate *srate =
4026 &sband->bitrates[ridx];
4027 if (rate == srate->bitrate) {
4032 if (ridx == sband->n_bitrates)
4033 return 0; /* rate not found */
4039 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
4040 u8 *rates, u8 rates_len,
4041 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
4045 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
4047 for (i = 0; i < rates_len; i++) {
4050 ridx = rates[i] / 8;
4051 rbit = BIT(rates[i] % 8);
4053 /* check validity */
4054 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
4057 /* check availability */
4058 ridx = array_index_nospec(ridx, IEEE80211_HT_MCS_MASK_LEN);
4059 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
4068 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
4072 switch (vht_mcs_map) {
4073 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
4075 case IEEE80211_VHT_MCS_SUPPORT_0_7:
4078 case IEEE80211_VHT_MCS_SUPPORT_0_8:
4081 case IEEE80211_VHT_MCS_SUPPORT_0_9:
4091 static void vht_build_mcs_mask(u16 vht_mcs_map,
4092 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
4096 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
4097 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
4102 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
4103 struct nl80211_txrate_vht *txrate,
4104 u16 mcs[NL80211_VHT_NSS_MAX])
4106 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4107 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
4110 if (!sband->vht_cap.vht_supported)
4113 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
4115 /* Build vht_mcs_mask from VHT capabilities */
4116 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
4118 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4119 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
4120 mcs[i] = txrate->mcs[i];
4128 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
4129 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
4130 .len = NL80211_MAX_SUPP_RATES },
4131 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
4132 .len = NL80211_MAX_SUPP_HT_RATES },
4133 [NL80211_TXRATE_VHT] = {
4134 .type = NLA_EXACT_LEN_WARN,
4135 .len = sizeof(struct nl80211_txrate_vht),
4137 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
4140 static int nl80211_parse_tx_bitrate_mask(struct genl_info *info,
4141 struct cfg80211_bitrate_mask *mask)
4143 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
4144 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4146 struct nlattr *tx_rates;
4147 struct ieee80211_supported_band *sband;
4150 memset(mask, 0, sizeof(*mask));
4151 /* Default to all rates enabled */
4152 for (i = 0; i < NUM_NL80211_BANDS; i++) {
4153 sband = rdev->wiphy.bands[i];
4158 mask->control[i].legacy = (1 << sband->n_bitrates) - 1;
4159 memcpy(mask->control[i].ht_mcs,
4160 sband->ht_cap.mcs.rx_mask,
4161 sizeof(mask->control[i].ht_mcs));
4163 if (!sband->vht_cap.vht_supported)
4166 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4167 vht_build_mcs_mask(vht_tx_mcs_map, mask->control[i].vht_mcs);
4170 /* if no rates are given set it back to the defaults */
4171 if (!info->attrs[NL80211_ATTR_TX_RATES])
4174 /* The nested attribute uses enum nl80211_band as the index. This maps
4175 * directly to the enum nl80211_band values used in cfg80211.
4177 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
4178 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
4179 enum nl80211_band band = nla_type(tx_rates);
4182 if (band < 0 || band >= NUM_NL80211_BANDS)
4184 sband = rdev->wiphy.bands[band];
4187 err = nla_parse_nested_deprecated(tb, NL80211_TXRATE_MAX,
4189 nl80211_txattr_policy,
4193 if (tb[NL80211_TXRATE_LEGACY]) {
4194 mask->control[band].legacy = rateset_to_mask(
4196 nla_data(tb[NL80211_TXRATE_LEGACY]),
4197 nla_len(tb[NL80211_TXRATE_LEGACY]));
4198 if ((mask->control[band].legacy == 0) &&
4199 nla_len(tb[NL80211_TXRATE_LEGACY]))
4202 if (tb[NL80211_TXRATE_HT]) {
4203 if (!ht_rateset_to_mask(
4205 nla_data(tb[NL80211_TXRATE_HT]),
4206 nla_len(tb[NL80211_TXRATE_HT]),
4207 mask->control[band].ht_mcs))
4210 if (tb[NL80211_TXRATE_VHT]) {
4211 if (!vht_set_mcs_mask(
4213 nla_data(tb[NL80211_TXRATE_VHT]),
4214 mask->control[band].vht_mcs))
4217 if (tb[NL80211_TXRATE_GI]) {
4218 mask->control[band].gi =
4219 nla_get_u8(tb[NL80211_TXRATE_GI]);
4220 if (mask->control[band].gi > NL80211_TXRATE_FORCE_LGI)
4224 if (mask->control[band].legacy == 0) {
4225 /* don't allow empty legacy rates if HT or VHT
4226 * are not even supported.
4228 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
4229 rdev->wiphy.bands[band]->vht_cap.vht_supported))
4232 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
4233 if (mask->control[band].ht_mcs[i])
4236 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
4237 if (mask->control[band].vht_mcs[i])
4240 /* legacy and mcs rates may not be both empty */
4249 static int validate_beacon_tx_rate(struct cfg80211_registered_device *rdev,
4250 enum nl80211_band band,
4251 struct cfg80211_bitrate_mask *beacon_rate)
4253 u32 count_ht, count_vht, i;
4254 u32 rate = beacon_rate->control[band].legacy;
4256 /* Allow only one rate */
4257 if (hweight32(rate) > 1)
4261 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
4262 if (hweight8(beacon_rate->control[band].ht_mcs[i]) > 1) {
4264 } else if (beacon_rate->control[band].ht_mcs[i]) {
4269 if (count_ht && rate)
4274 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4275 if (hweight16(beacon_rate->control[band].vht_mcs[i]) > 1) {
4277 } else if (beacon_rate->control[band].vht_mcs[i]) {
4282 if (count_vht && rate)
4286 if ((count_ht && count_vht) || (!rate && !count_ht && !count_vht))
4290 !wiphy_ext_feature_isset(&rdev->wiphy,
4291 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY))
4294 !wiphy_ext_feature_isset(&rdev->wiphy,
4295 NL80211_EXT_FEATURE_BEACON_RATE_HT))
4298 !wiphy_ext_feature_isset(&rdev->wiphy,
4299 NL80211_EXT_FEATURE_BEACON_RATE_VHT))
4305 static int nl80211_parse_beacon(struct cfg80211_registered_device *rdev,
4306 struct nlattr *attrs[],
4307 struct cfg80211_beacon_data *bcn)
4309 bool haveinfo = false;
4312 memset(bcn, 0, sizeof(*bcn));
4314 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
4315 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
4316 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
4322 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
4323 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
4324 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
4331 if (attrs[NL80211_ATTR_IE]) {
4332 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
4333 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
4336 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
4337 bcn->proberesp_ies =
4338 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4339 bcn->proberesp_ies_len =
4340 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4343 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
4344 bcn->assocresp_ies =
4345 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4346 bcn->assocresp_ies_len =
4347 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4350 if (attrs[NL80211_ATTR_PROBE_RESP]) {
4351 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
4352 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
4355 if (attrs[NL80211_ATTR_FTM_RESPONDER]) {
4356 struct nlattr *tb[NL80211_FTM_RESP_ATTR_MAX + 1];
4358 err = nla_parse_nested_deprecated(tb,
4359 NL80211_FTM_RESP_ATTR_MAX,
4360 attrs[NL80211_ATTR_FTM_RESPONDER],
4365 if (tb[NL80211_FTM_RESP_ATTR_ENABLED] &&
4366 wiphy_ext_feature_isset(&rdev->wiphy,
4367 NL80211_EXT_FEATURE_ENABLE_FTM_RESPONDER))
4368 bcn->ftm_responder = 1;
4372 if (tb[NL80211_FTM_RESP_ATTR_LCI]) {
4373 bcn->lci = nla_data(tb[NL80211_FTM_RESP_ATTR_LCI]);
4374 bcn->lci_len = nla_len(tb[NL80211_FTM_RESP_ATTR_LCI]);
4377 if (tb[NL80211_FTM_RESP_ATTR_CIVICLOC]) {
4378 bcn->civicloc = nla_data(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4379 bcn->civicloc_len = nla_len(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4382 bcn->ftm_responder = -1;
4388 static void nl80211_check_ap_rate_selectors(struct cfg80211_ap_settings *params,
4396 for (i = 0; i < rates[1]; i++) {
4397 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_HT_PHY)
4398 params->ht_required = true;
4399 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_VHT_PHY)
4400 params->vht_required = true;
4405 * Since the nl80211 API didn't include, from the beginning, attributes about
4406 * HT/VHT requirements/capabilities, we parse them out of the IEs for the
4407 * benefit of drivers that rebuild IEs in the firmware.
4409 static void nl80211_calculate_ap_params(struct cfg80211_ap_settings *params)
4411 const struct cfg80211_beacon_data *bcn = ¶ms->beacon;
4412 size_t ies_len = bcn->tail_len;
4413 const u8 *ies = bcn->tail;
4417 rates = cfg80211_find_ie(WLAN_EID_SUPP_RATES, ies, ies_len);
4418 nl80211_check_ap_rate_selectors(params, rates);
4420 rates = cfg80211_find_ie(WLAN_EID_EXT_SUPP_RATES, ies, ies_len);
4421 nl80211_check_ap_rate_selectors(params, rates);
4423 cap = cfg80211_find_ie(WLAN_EID_HT_CAPABILITY, ies, ies_len);
4424 if (cap && cap[1] >= sizeof(*params->ht_cap))
4425 params->ht_cap = (void *)(cap + 2);
4426 cap = cfg80211_find_ie(WLAN_EID_VHT_CAPABILITY, ies, ies_len);
4427 if (cap && cap[1] >= sizeof(*params->vht_cap))
4428 params->vht_cap = (void *)(cap + 2);
4429 cap = cfg80211_find_ext_ie(WLAN_EID_EXT_HE_CAPABILITY, ies, ies_len);
4430 if (cap && cap[1] >= sizeof(*params->he_cap) + 1)
4431 params->he_cap = (void *)(cap + 3);
4434 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
4435 struct cfg80211_ap_settings *params)
4437 struct wireless_dev *wdev;
4440 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
4441 if (wdev->iftype != NL80211_IFTYPE_AP &&
4442 wdev->iftype != NL80211_IFTYPE_P2P_GO)
4445 if (!wdev->preset_chandef.chan)
4448 params->chandef = wdev->preset_chandef;
4456 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
4457 enum nl80211_auth_type auth_type,
4458 enum nl80211_commands cmd)
4460 if (auth_type > NL80211_AUTHTYPE_MAX)
4464 case NL80211_CMD_AUTHENTICATE:
4465 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4466 auth_type == NL80211_AUTHTYPE_SAE)
4468 if (!wiphy_ext_feature_isset(&rdev->wiphy,
4469 NL80211_EXT_FEATURE_FILS_STA) &&
4470 (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4471 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4472 auth_type == NL80211_AUTHTYPE_FILS_PK))
4475 case NL80211_CMD_CONNECT:
4476 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4477 !wiphy_ext_feature_isset(&rdev->wiphy,
4478 NL80211_EXT_FEATURE_SAE_OFFLOAD) &&
4479 auth_type == NL80211_AUTHTYPE_SAE)
4482 /* FILS with SK PFS or PK not supported yet */
4483 if (auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4484 auth_type == NL80211_AUTHTYPE_FILS_PK)
4486 if (!wiphy_ext_feature_isset(
4488 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
4489 auth_type == NL80211_AUTHTYPE_FILS_SK)
4492 case NL80211_CMD_START_AP:
4493 /* SAE not supported yet */
4494 if (auth_type == NL80211_AUTHTYPE_SAE)
4496 /* FILS not supported yet */
4497 if (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4498 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4499 auth_type == NL80211_AUTHTYPE_FILS_PK)
4507 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
4509 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4510 struct net_device *dev = info->user_ptr[1];
4511 struct wireless_dev *wdev = dev->ieee80211_ptr;
4512 struct cfg80211_ap_settings params;
4515 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4516 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4519 if (!rdev->ops->start_ap)
4522 if (wdev->beacon_interval)
4525 memset(¶ms, 0, sizeof(params));
4527 /* these are required for START_AP */
4528 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
4529 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
4530 !info->attrs[NL80211_ATTR_BEACON_HEAD])
4533 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon);
4537 params.beacon_interval =
4538 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
4539 params.dtim_period =
4540 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
4542 err = cfg80211_validate_beacon_int(rdev, dev->ieee80211_ptr->iftype,
4543 params.beacon_interval);
4548 * In theory, some of these attributes should be required here
4549 * but since they were not used when the command was originally
4550 * added, keep them optional for old user space programs to let
4551 * them continue to work with drivers that do not need the
4552 * additional information -- drivers must check!
4554 if (info->attrs[NL80211_ATTR_SSID]) {
4555 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
4557 nla_len(info->attrs[NL80211_ATTR_SSID]);
4558 if (params.ssid_len == 0 ||
4559 params.ssid_len > IEEE80211_MAX_SSID_LEN)
4563 if (info->attrs[NL80211_ATTR_HIDDEN_SSID])
4564 params.hidden_ssid = nla_get_u32(
4565 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
4567 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
4569 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
4570 params.auth_type = nla_get_u32(
4571 info->attrs[NL80211_ATTR_AUTH_TYPE]);
4572 if (!nl80211_valid_auth_type(rdev, params.auth_type,
4573 NL80211_CMD_START_AP))
4576 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
4578 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
4579 NL80211_MAX_NR_CIPHER_SUITES);
4583 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
4584 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
4586 params.inactivity_timeout = nla_get_u16(
4587 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
4590 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4591 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4593 params.p2p_ctwindow =
4594 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4595 if (params.p2p_ctwindow != 0 &&
4596 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4600 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4603 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4605 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4606 params.p2p_opp_ps = tmp;
4607 if (params.p2p_opp_ps != 0 &&
4608 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4612 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
4613 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
4616 } else if (wdev->preset_chandef.chan) {
4617 params.chandef = wdev->preset_chandef;
4618 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
4621 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
4625 if (info->attrs[NL80211_ATTR_TX_RATES]) {
4626 err = nl80211_parse_tx_bitrate_mask(info, ¶ms.beacon_rate);
4630 err = validate_beacon_tx_rate(rdev, params.chandef.chan->band,
4631 ¶ms.beacon_rate);
4636 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
4638 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
4639 switch (params.smps_mode) {
4640 case NL80211_SMPS_OFF:
4642 case NL80211_SMPS_STATIC:
4643 if (!(rdev->wiphy.features &
4644 NL80211_FEATURE_STATIC_SMPS))
4647 case NL80211_SMPS_DYNAMIC:
4648 if (!(rdev->wiphy.features &
4649 NL80211_FEATURE_DYNAMIC_SMPS))
4656 params.smps_mode = NL80211_SMPS_OFF;
4659 params.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
4660 if (params.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ])
4663 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
4664 params.acl = parse_acl_data(&rdev->wiphy, info);
4665 if (IS_ERR(params.acl))
4666 return PTR_ERR(params.acl);
4669 params.twt_responder =
4670 nla_get_flag(info->attrs[NL80211_ATTR_TWT_RESPONDER]);
4672 nl80211_calculate_ap_params(¶ms);
4674 if (info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])
4675 params.flags |= AP_SETTINGS_EXTERNAL_AUTH_SUPPORT;
4678 err = rdev_start_ap(rdev, dev, ¶ms);
4680 wdev->preset_chandef = params.chandef;
4681 wdev->beacon_interval = params.beacon_interval;
4682 wdev->chandef = params.chandef;
4683 wdev->ssid_len = params.ssid_len;
4684 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
4686 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
4687 wdev->conn_owner_nlportid = info->snd_portid;
4696 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
4698 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4699 struct net_device *dev = info->user_ptr[1];
4700 struct wireless_dev *wdev = dev->ieee80211_ptr;
4701 struct cfg80211_beacon_data params;
4704 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4705 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4708 if (!rdev->ops->change_beacon)
4711 if (!wdev->beacon_interval)
4714 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms);
4719 err = rdev_change_beacon(rdev, dev, ¶ms);
4725 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
4727 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4728 struct net_device *dev = info->user_ptr[1];
4730 return cfg80211_stop_ap(rdev, dev, false);
4733 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
4734 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
4735 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
4736 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
4737 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
4738 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
4739 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
4742 static int parse_station_flags(struct genl_info *info,
4743 enum nl80211_iftype iftype,
4744 struct station_parameters *params)
4746 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
4751 * Try parsing the new attribute first so userspace
4752 * can specify both for older kernels.
4754 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
4756 struct nl80211_sta_flag_update *sta_flags;
4758 sta_flags = nla_data(nla);
4759 params->sta_flags_mask = sta_flags->mask;
4760 params->sta_flags_set = sta_flags->set;
4761 params->sta_flags_set &= params->sta_flags_mask;
4762 if ((params->sta_flags_mask |
4763 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
4768 /* if present, parse the old attribute */
4770 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
4774 if (nla_parse_nested_deprecated(flags, NL80211_STA_FLAG_MAX, nla, sta_flags_policy, info->extack))
4778 * Only allow certain flags for interface types so that
4779 * other attributes are silently ignored. Remember that
4780 * this is backward compatibility code with old userspace
4781 * and shouldn't be hit in other cases anyway.
4784 case NL80211_IFTYPE_AP:
4785 case NL80211_IFTYPE_AP_VLAN:
4786 case NL80211_IFTYPE_P2P_GO:
4787 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4788 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4789 BIT(NL80211_STA_FLAG_WME) |
4790 BIT(NL80211_STA_FLAG_MFP);
4792 case NL80211_IFTYPE_P2P_CLIENT:
4793 case NL80211_IFTYPE_STATION:
4794 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4795 BIT(NL80211_STA_FLAG_TDLS_PEER);
4797 case NL80211_IFTYPE_MESH_POINT:
4798 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4799 BIT(NL80211_STA_FLAG_MFP) |
4800 BIT(NL80211_STA_FLAG_AUTHORIZED);
4806 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
4808 params->sta_flags_set |= (1<<flag);
4810 /* no longer support new API additions in old API */
4811 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
4819 bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info, int attr)
4821 struct nlattr *rate;
4824 enum nl80211_rate_info rate_flg;
4826 rate = nla_nest_start_noflag(msg, attr);
4830 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
4831 bitrate = cfg80211_calculate_bitrate(info);
4832 /* report 16-bit bitrate only if we can */
4833 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
4835 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
4837 if (bitrate_compat > 0 &&
4838 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
4842 case RATE_INFO_BW_5:
4843 rate_flg = NL80211_RATE_INFO_5_MHZ_WIDTH;
4845 case RATE_INFO_BW_10:
4846 rate_flg = NL80211_RATE_INFO_10_MHZ_WIDTH;
4851 case RATE_INFO_BW_20:
4854 case RATE_INFO_BW_40:
4855 rate_flg = NL80211_RATE_INFO_40_MHZ_WIDTH;
4857 case RATE_INFO_BW_80:
4858 rate_flg = NL80211_RATE_INFO_80_MHZ_WIDTH;
4860 case RATE_INFO_BW_160:
4861 rate_flg = NL80211_RATE_INFO_160_MHZ_WIDTH;
4863 case RATE_INFO_BW_HE_RU:
4865 WARN_ON(!(info->flags & RATE_INFO_FLAGS_HE_MCS));
4868 if (rate_flg && nla_put_flag(msg, rate_flg))
4871 if (info->flags & RATE_INFO_FLAGS_MCS) {
4872 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
4874 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4875 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4877 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
4878 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
4880 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
4882 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4883 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4885 } else if (info->flags & RATE_INFO_FLAGS_HE_MCS) {
4886 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_MCS, info->mcs))
4888 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_NSS, info->nss))
4890 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_GI, info->he_gi))
4892 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_DCM, info->he_dcm))
4894 if (info->bw == RATE_INFO_BW_HE_RU &&
4895 nla_put_u8(msg, NL80211_RATE_INFO_HE_RU_ALLOC,
4900 nla_nest_end(msg, rate);
4904 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
4913 attr = nla_nest_start_noflag(msg, id);
4917 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
4918 if (!(mask & BIT(i)))
4921 if (nla_put_u8(msg, i, signal[i]))
4925 nla_nest_end(msg, attr);
4930 static int nl80211_send_station(struct sk_buff *msg, u32 cmd, u32 portid,
4932 struct cfg80211_registered_device *rdev,
4933 struct net_device *dev,
4934 const u8 *mac_addr, struct station_info *sinfo)
4937 struct nlattr *sinfoattr, *bss_param;
4939 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
4941 cfg80211_sinfo_release_content(sinfo);
4945 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4946 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
4947 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
4948 goto nla_put_failure;
4950 sinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_STA_INFO);
4952 goto nla_put_failure;
4954 #define PUT_SINFO(attr, memb, type) do { \
4955 BUILD_BUG_ON(sizeof(type) == sizeof(u64)); \
4956 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4957 nla_put_ ## type(msg, NL80211_STA_INFO_ ## attr, \
4959 goto nla_put_failure; \
4961 #define PUT_SINFO_U64(attr, memb) do { \
4962 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4963 nla_put_u64_64bit(msg, NL80211_STA_INFO_ ## attr, \
4964 sinfo->memb, NL80211_STA_INFO_PAD)) \
4965 goto nla_put_failure; \
4968 PUT_SINFO(CONNECTED_TIME, connected_time, u32);
4969 PUT_SINFO(INACTIVE_TIME, inactive_time, u32);
4971 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_RX_BYTES) |
4972 BIT_ULL(NL80211_STA_INFO_RX_BYTES64)) &&
4973 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
4974 (u32)sinfo->rx_bytes))
4975 goto nla_put_failure;
4977 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_TX_BYTES) |
4978 BIT_ULL(NL80211_STA_INFO_TX_BYTES64)) &&
4979 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
4980 (u32)sinfo->tx_bytes))
4981 goto nla_put_failure;
4983 PUT_SINFO_U64(RX_BYTES64, rx_bytes);
4984 PUT_SINFO_U64(TX_BYTES64, tx_bytes);
4985 PUT_SINFO(LLID, llid, u16);
4986 PUT_SINFO(PLID, plid, u16);
4987 PUT_SINFO(PLINK_STATE, plink_state, u8);
4988 PUT_SINFO_U64(RX_DURATION, rx_duration);
4989 PUT_SINFO_U64(TX_DURATION, tx_duration);
4991 if (wiphy_ext_feature_isset(&rdev->wiphy,
4992 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
4993 PUT_SINFO(AIRTIME_WEIGHT, airtime_weight, u16);
4995 switch (rdev->wiphy.signal_type) {
4996 case CFG80211_SIGNAL_TYPE_MBM:
4997 PUT_SINFO(SIGNAL, signal, u8);
4998 PUT_SINFO(SIGNAL_AVG, signal_avg, u8);
5003 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL)) {
5004 if (!nl80211_put_signal(msg, sinfo->chains,
5005 sinfo->chain_signal,
5006 NL80211_STA_INFO_CHAIN_SIGNAL))
5007 goto nla_put_failure;
5009 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL_AVG)) {
5010 if (!nl80211_put_signal(msg, sinfo->chains,
5011 sinfo->chain_signal_avg,
5012 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
5013 goto nla_put_failure;
5015 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_TX_BITRATE)) {
5016 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
5017 NL80211_STA_INFO_TX_BITRATE))
5018 goto nla_put_failure;
5020 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_RX_BITRATE)) {
5021 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
5022 NL80211_STA_INFO_RX_BITRATE))
5023 goto nla_put_failure;
5026 PUT_SINFO(RX_PACKETS, rx_packets, u32);
5027 PUT_SINFO(TX_PACKETS, tx_packets, u32);
5028 PUT_SINFO(TX_RETRIES, tx_retries, u32);
5029 PUT_SINFO(TX_FAILED, tx_failed, u32);
5030 PUT_SINFO(EXPECTED_THROUGHPUT, expected_throughput, u32);
5031 PUT_SINFO(AIRTIME_LINK_METRIC, airtime_link_metric, u32);
5032 PUT_SINFO(BEACON_LOSS, beacon_loss_count, u32);
5033 PUT_SINFO(LOCAL_PM, local_pm, u32);
5034 PUT_SINFO(PEER_PM, peer_pm, u32);
5035 PUT_SINFO(NONPEER_PM, nonpeer_pm, u32);
5036 PUT_SINFO(CONNECTED_TO_GATE, connected_to_gate, u8);
5038 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_BSS_PARAM)) {
5039 bss_param = nla_nest_start_noflag(msg,
5040 NL80211_STA_INFO_BSS_PARAM);
5042 goto nla_put_failure;
5044 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
5045 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
5046 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
5047 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
5048 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
5049 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
5050 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
5051 sinfo->bss_param.dtim_period) ||
5052 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
5053 sinfo->bss_param.beacon_interval))
5054 goto nla_put_failure;
5056 nla_nest_end(msg, bss_param);
5058 if ((sinfo->filled & BIT_ULL(NL80211_STA_INFO_STA_FLAGS)) &&
5059 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
5060 sizeof(struct nl80211_sta_flag_update),
5062 goto nla_put_failure;
5064 PUT_SINFO_U64(T_OFFSET, t_offset);
5065 PUT_SINFO_U64(RX_DROP_MISC, rx_dropped_misc);
5066 PUT_SINFO_U64(BEACON_RX, rx_beacon);
5067 PUT_SINFO(BEACON_SIGNAL_AVG, rx_beacon_signal_avg, u8);
5068 PUT_SINFO(RX_MPDUS, rx_mpdu_count, u32);
5069 PUT_SINFO(FCS_ERROR_COUNT, fcs_err_count, u32);
5070 if (wiphy_ext_feature_isset(&rdev->wiphy,
5071 NL80211_EXT_FEATURE_ACK_SIGNAL_SUPPORT)) {
5072 PUT_SINFO(ACK_SIGNAL, ack_signal, u8);
5073 PUT_SINFO(ACK_SIGNAL_AVG, avg_ack_signal, s8);
5077 #undef PUT_SINFO_U64
5079 if (sinfo->pertid) {
5080 struct nlattr *tidsattr;
5083 tidsattr = nla_nest_start_noflag(msg,
5084 NL80211_STA_INFO_TID_STATS);
5086 goto nla_put_failure;
5088 for (tid = 0; tid < IEEE80211_NUM_TIDS + 1; tid++) {
5089 struct cfg80211_tid_stats *tidstats;
5090 struct nlattr *tidattr;
5092 tidstats = &sinfo->pertid[tid];
5094 if (!tidstats->filled)
5097 tidattr = nla_nest_start_noflag(msg, tid + 1);
5099 goto nla_put_failure;
5101 #define PUT_TIDVAL_U64(attr, memb) do { \
5102 if (tidstats->filled & BIT(NL80211_TID_STATS_ ## attr) && \
5103 nla_put_u64_64bit(msg, NL80211_TID_STATS_ ## attr, \
5104 tidstats->memb, NL80211_TID_STATS_PAD)) \
5105 goto nla_put_failure; \
5108 PUT_TIDVAL_U64(RX_MSDU, rx_msdu);
5109 PUT_TIDVAL_U64(TX_MSDU, tx_msdu);
5110 PUT_TIDVAL_U64(TX_MSDU_RETRIES, tx_msdu_retries);
5111 PUT_TIDVAL_U64(TX_MSDU_FAILED, tx_msdu_failed);
5113 #undef PUT_TIDVAL_U64
5114 if ((tidstats->filled &
5115 BIT(NL80211_TID_STATS_TXQ_STATS)) &&
5116 !nl80211_put_txq_stats(msg, &tidstats->txq_stats,
5117 NL80211_TID_STATS_TXQ_STATS))
5118 goto nla_put_failure;
5120 nla_nest_end(msg, tidattr);
5123 nla_nest_end(msg, tidsattr);
5126 nla_nest_end(msg, sinfoattr);
5128 if (sinfo->assoc_req_ies_len &&
5129 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
5130 sinfo->assoc_req_ies))
5131 goto nla_put_failure;
5133 cfg80211_sinfo_release_content(sinfo);
5134 genlmsg_end(msg, hdr);
5138 cfg80211_sinfo_release_content(sinfo);
5139 genlmsg_cancel(msg, hdr);
5143 static int nl80211_dump_station(struct sk_buff *skb,
5144 struct netlink_callback *cb)
5146 struct station_info sinfo;
5147 struct cfg80211_registered_device *rdev;
5148 struct wireless_dev *wdev;
5149 u8 mac_addr[ETH_ALEN];
5150 int sta_idx = cb->args[2];
5154 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5158 if (!wdev->netdev) {
5163 if (!rdev->ops->dump_station) {
5169 memset(&sinfo, 0, sizeof(sinfo));
5170 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
5177 if (nl80211_send_station(skb, NL80211_CMD_NEW_STATION,
5178 NETLINK_CB(cb->skb).portid,
5179 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5180 rdev, wdev->netdev, mac_addr,
5188 cb->args[2] = sta_idx;
5196 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
5198 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5199 struct net_device *dev = info->user_ptr[1];
5200 struct station_info sinfo;
5201 struct sk_buff *msg;
5202 u8 *mac_addr = NULL;
5205 memset(&sinfo, 0, sizeof(sinfo));
5207 if (!info->attrs[NL80211_ATTR_MAC])
5210 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5212 if (!rdev->ops->get_station)
5215 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
5219 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5221 cfg80211_sinfo_release_content(&sinfo);
5225 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION,
5226 info->snd_portid, info->snd_seq, 0,
5227 rdev, dev, mac_addr, &sinfo) < 0) {
5232 return genlmsg_reply(msg, info);
5235 int cfg80211_check_station_change(struct wiphy *wiphy,
5236 struct station_parameters *params,
5237 enum cfg80211_station_type statype)
5239 if (params->listen_interval != -1 &&
5240 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5243 if (params->support_p2p_ps != -1 &&
5244 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5248 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) &&
5249 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5252 /* When you run into this, adjust the code below for the new flag */
5253 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5256 case CFG80211_STA_MESH_PEER_KERNEL:
5257 case CFG80211_STA_MESH_PEER_USER:
5259 * No ignoring the TDLS flag here -- the userspace mesh
5260 * code doesn't have the bug of including TDLS in the
5263 if (params->sta_flags_mask &
5264 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5265 BIT(NL80211_STA_FLAG_MFP) |
5266 BIT(NL80211_STA_FLAG_AUTHORIZED)))
5269 case CFG80211_STA_TDLS_PEER_SETUP:
5270 case CFG80211_STA_TDLS_PEER_ACTIVE:
5271 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5273 /* ignore since it can't change */
5274 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5277 /* disallow mesh-specific things */
5278 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
5280 if (params->local_pm)
5282 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5286 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5287 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
5288 /* TDLS can't be set, ... */
5289 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
5292 * ... but don't bother the driver with it. This works around
5293 * a hostapd/wpa_supplicant issue -- it always includes the
5294 * TLDS_PEER flag in the mask even for AP mode.
5296 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5299 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5300 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5301 /* reject other things that can't change */
5302 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
5304 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
5306 if (params->supported_rates)
5308 if (params->ext_capab || params->ht_capa || params->vht_capa ||
5313 if (statype != CFG80211_STA_AP_CLIENT &&
5314 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5320 case CFG80211_STA_AP_MLME_CLIENT:
5321 /* Use this only for authorizing/unauthorizing a station */
5322 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
5325 case CFG80211_STA_AP_CLIENT:
5326 case CFG80211_STA_AP_CLIENT_UNASSOC:
5327 /* accept only the listed bits */
5328 if (params->sta_flags_mask &
5329 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5330 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5331 BIT(NL80211_STA_FLAG_ASSOCIATED) |
5332 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
5333 BIT(NL80211_STA_FLAG_WME) |
5334 BIT(NL80211_STA_FLAG_MFP)))
5337 /* but authenticated/associated only if driver handles it */
5338 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5339 params->sta_flags_mask &
5340 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5341 BIT(NL80211_STA_FLAG_ASSOCIATED)))
5344 case CFG80211_STA_IBSS:
5345 case CFG80211_STA_AP_STA:
5346 /* reject any changes other than AUTHORIZED */
5347 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
5350 case CFG80211_STA_TDLS_PEER_SETUP:
5351 /* reject any changes other than AUTHORIZED or WME */
5352 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5353 BIT(NL80211_STA_FLAG_WME)))
5355 /* force (at least) rates when authorizing */
5356 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
5357 !params->supported_rates)
5360 case CFG80211_STA_TDLS_PEER_ACTIVE:
5361 /* reject any changes */
5363 case CFG80211_STA_MESH_PEER_KERNEL:
5364 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5367 case CFG80211_STA_MESH_PEER_USER:
5368 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION &&
5369 params->plink_action != NL80211_PLINK_ACTION_BLOCK)
5375 * Older kernel versions ignored this attribute entirely, so don't
5376 * reject attempts to update it but mark it as unused instead so the
5377 * driver won't look at the data.
5379 if (statype != CFG80211_STA_AP_CLIENT_UNASSOC &&
5380 statype != CFG80211_STA_TDLS_PEER_SETUP)
5381 params->opmode_notif_used = false;
5385 EXPORT_SYMBOL(cfg80211_check_station_change);
5388 * Get vlan interface making sure it is running and on the right wiphy.
5390 static struct net_device *get_vlan(struct genl_info *info,
5391 struct cfg80211_registered_device *rdev)
5393 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
5394 struct net_device *v;
5400 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
5402 return ERR_PTR(-ENODEV);
5404 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
5409 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5410 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5411 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
5416 if (!netif_running(v)) {
5424 return ERR_PTR(ret);
5427 static const struct nla_policy
5428 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
5429 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
5430 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
5433 static int nl80211_parse_sta_wme(struct genl_info *info,
5434 struct station_parameters *params)
5436 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
5440 /* parse WME attributes if present */
5441 if (!info->attrs[NL80211_ATTR_STA_WME])
5444 nla = info->attrs[NL80211_ATTR_STA_WME];
5445 err = nla_parse_nested_deprecated(tb, NL80211_STA_WME_MAX, nla,
5446 nl80211_sta_wme_policy,
5451 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
5452 params->uapsd_queues = nla_get_u8(
5453 tb[NL80211_STA_WME_UAPSD_QUEUES]);
5454 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
5457 if (tb[NL80211_STA_WME_MAX_SP])
5458 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
5460 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
5463 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
5468 static int nl80211_parse_sta_channel_info(struct genl_info *info,
5469 struct station_parameters *params)
5471 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
5472 params->supported_channels =
5473 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5474 params->supported_channels_len =
5475 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5477 * Need to include at least one (first channel, number of
5478 * channels) tuple for each subband, and must have proper
5479 * tuples for the rest of the data as well.
5481 if (params->supported_channels_len < 2)
5483 if (params->supported_channels_len % 2)
5487 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
5488 params->supported_oper_classes =
5489 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5490 params->supported_oper_classes_len =
5491 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5493 * The value of the Length field of the Supported Operating
5494 * Classes element is between 2 and 253.
5496 if (params->supported_oper_classes_len < 2 ||
5497 params->supported_oper_classes_len > 253)
5503 static int nl80211_set_station_tdls(struct genl_info *info,
5504 struct station_parameters *params)
5507 /* Dummy STA entry gets updated once the peer capabilities are known */
5508 if (info->attrs[NL80211_ATTR_PEER_AID])
5509 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5510 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5512 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5513 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5515 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5516 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5518 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5519 params->he_capa_len =
5520 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5522 if (params->he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5526 err = nl80211_parse_sta_channel_info(info, params);
5530 return nl80211_parse_sta_wme(info, params);
5533 static int nl80211_parse_sta_txpower_setting(struct genl_info *info,
5534 struct station_parameters *params)
5536 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5539 if (info->attrs[NL80211_ATTR_STA_TX_POWER_SETTING]) {
5540 if (!rdev->ops->set_tx_power ||
5541 !wiphy_ext_feature_isset(&rdev->wiphy,
5542 NL80211_EXT_FEATURE_STA_TX_PWR))
5545 idx = NL80211_ATTR_STA_TX_POWER_SETTING;
5546 params->txpwr.type = nla_get_u8(info->attrs[idx]);
5548 if (params->txpwr.type == NL80211_TX_POWER_LIMITED) {
5549 idx = NL80211_ATTR_STA_TX_POWER;
5551 if (info->attrs[idx])
5552 params->txpwr.power =
5553 nla_get_s16(info->attrs[idx]);
5557 params->sta_modify_mask |= STATION_PARAM_APPLY_STA_TXPOWER;
5563 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
5565 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5566 struct net_device *dev = info->user_ptr[1];
5567 struct station_parameters params;
5571 memset(¶ms, 0, sizeof(params));
5573 if (!rdev->ops->change_station)
5577 * AID and listen_interval properties can be set only for unassociated
5578 * station. Include these parameters here and will check them in
5579 * cfg80211_check_station_change().
5581 if (info->attrs[NL80211_ATTR_STA_AID])
5582 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5584 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5585 params.listen_interval =
5586 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5588 params.listen_interval = -1;
5590 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS])
5591 params.support_p2p_ps =
5592 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5594 params.support_p2p_ps = -1;
5596 if (!info->attrs[NL80211_ATTR_MAC])
5599 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5601 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
5602 params.supported_rates =
5603 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5604 params.supported_rates_len =
5605 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5608 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5610 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5611 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5614 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5616 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5617 params.ext_capab_len =
5618 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5621 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5624 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5625 params.plink_action =
5626 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5628 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
5629 params.plink_state =
5630 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
5631 if (info->attrs[NL80211_ATTR_MESH_PEER_AID])
5632 params.peer_aid = nla_get_u16(
5633 info->attrs[NL80211_ATTR_MESH_PEER_AID]);
5634 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
5637 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE])
5638 params.local_pm = nla_get_u32(
5639 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
5641 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5642 params.opmode_notif_used = true;
5643 params.opmode_notif =
5644 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5647 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5648 params.airtime_weight =
5649 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5651 if (params.airtime_weight &&
5652 !wiphy_ext_feature_isset(&rdev->wiphy,
5653 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5656 err = nl80211_parse_sta_txpower_setting(info, ¶ms);
5660 /* Include parameters for TDLS peer (will check later) */
5661 err = nl80211_set_station_tdls(info, ¶ms);
5665 params.vlan = get_vlan(info, rdev);
5666 if (IS_ERR(params.vlan))
5667 return PTR_ERR(params.vlan);
5669 switch (dev->ieee80211_ptr->iftype) {
5670 case NL80211_IFTYPE_AP:
5671 case NL80211_IFTYPE_AP_VLAN:
5672 case NL80211_IFTYPE_P2P_GO:
5673 case NL80211_IFTYPE_P2P_CLIENT:
5674 case NL80211_IFTYPE_STATION:
5675 case NL80211_IFTYPE_ADHOC:
5676 case NL80211_IFTYPE_MESH_POINT:
5683 /* driver will call cfg80211_check_station_change() */
5684 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
5688 dev_put(params.vlan);
5693 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
5695 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5697 struct net_device *dev = info->user_ptr[1];
5698 struct station_parameters params;
5699 u8 *mac_addr = NULL;
5700 u32 auth_assoc = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5701 BIT(NL80211_STA_FLAG_ASSOCIATED);
5703 memset(¶ms, 0, sizeof(params));
5705 if (!rdev->ops->add_station)
5708 if (!info->attrs[NL80211_ATTR_MAC])
5711 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5714 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
5717 if (!info->attrs[NL80211_ATTR_STA_AID] &&
5718 !info->attrs[NL80211_ATTR_PEER_AID])
5721 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5722 params.supported_rates =
5723 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5724 params.supported_rates_len =
5725 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5726 params.listen_interval =
5727 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5729 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]) {
5730 params.support_p2p_ps =
5731 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5734 * if not specified, assume it's supported for P2P GO interface,
5735 * and is NOT supported for AP interface
5737 params.support_p2p_ps =
5738 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO;
5741 if (info->attrs[NL80211_ATTR_PEER_AID])
5742 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5744 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5746 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5748 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5749 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5752 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5754 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5755 params.ext_capab_len =
5756 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5759 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5761 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5763 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5765 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5767 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5769 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5770 params.he_capa_len =
5771 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5773 /* max len is validated in nla policy */
5774 if (params.he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5778 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5779 params.opmode_notif_used = true;
5780 params.opmode_notif =
5781 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5784 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5785 params.plink_action =
5786 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5788 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5789 params.airtime_weight =
5790 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5792 if (params.airtime_weight &&
5793 !wiphy_ext_feature_isset(&rdev->wiphy,
5794 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5797 err = nl80211_parse_sta_txpower_setting(info, ¶ms);
5801 err = nl80211_parse_sta_channel_info(info, ¶ms);
5805 err = nl80211_parse_sta_wme(info, ¶ms);
5809 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5812 /* HT/VHT requires QoS, but if we don't have that just ignore HT/VHT
5813 * as userspace might just pass through the capabilities from the IEs
5814 * directly, rather than enforcing this restriction and returning an
5815 * error in this case.
5817 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME))) {
5818 params.ht_capa = NULL;
5819 params.vht_capa = NULL;
5821 /* HE requires WME */
5822 if (params.he_capa_len)
5826 /* When you run into this, adjust the code below for the new flag */
5827 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5829 switch (dev->ieee80211_ptr->iftype) {
5830 case NL80211_IFTYPE_AP:
5831 case NL80211_IFTYPE_AP_VLAN:
5832 case NL80211_IFTYPE_P2P_GO:
5833 /* ignore WME attributes if iface/sta is not capable */
5834 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
5835 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
5836 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5838 /* TDLS peers cannot be added */
5839 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5840 info->attrs[NL80211_ATTR_PEER_AID])
5842 /* but don't bother the driver with it */
5843 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5845 /* allow authenticated/associated only if driver handles it */
5846 if (!(rdev->wiphy.features &
5847 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5848 params.sta_flags_mask & auth_assoc)
5851 /* Older userspace, or userspace wanting to be compatible with
5852 * !NL80211_FEATURE_FULL_AP_CLIENT_STATE, will not set the auth
5853 * and assoc flags in the mask, but assumes the station will be
5854 * added as associated anyway since this was the required driver
5855 * behaviour before NL80211_FEATURE_FULL_AP_CLIENT_STATE was
5857 * In order to not bother drivers with this quirk in the API
5858 * set the flags in both the mask and set for new stations in
5861 if (!(params.sta_flags_mask & auth_assoc)) {
5862 params.sta_flags_mask |= auth_assoc;
5863 params.sta_flags_set |= auth_assoc;
5866 /* must be last in here for error handling */
5867 params.vlan = get_vlan(info, rdev);
5868 if (IS_ERR(params.vlan))
5869 return PTR_ERR(params.vlan);
5871 case NL80211_IFTYPE_MESH_POINT:
5872 /* ignore uAPSD data */
5873 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5875 /* associated is disallowed */
5876 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
5878 /* TDLS peers cannot be added */
5879 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5880 info->attrs[NL80211_ATTR_PEER_AID])
5883 case NL80211_IFTYPE_STATION:
5884 case NL80211_IFTYPE_P2P_CLIENT:
5885 /* ignore uAPSD data */
5886 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5888 /* these are disallowed */
5889 if (params.sta_flags_mask &
5890 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
5891 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
5893 /* Only TDLS peers can be added */
5894 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5896 /* Can only add if TDLS ... */
5897 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
5899 /* ... with external setup is supported */
5900 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
5903 * Older wpa_supplicant versions always mark the TDLS peer
5904 * as authorized, but it shouldn't yet be.
5906 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
5912 /* be aware of params.vlan when changing code here */
5914 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
5917 dev_put(params.vlan);
5921 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
5923 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5924 struct net_device *dev = info->user_ptr[1];
5925 struct station_del_parameters params;
5927 memset(¶ms, 0, sizeof(params));
5929 if (info->attrs[NL80211_ATTR_MAC])
5930 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
5932 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5933 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5934 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
5935 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5938 if (!rdev->ops->del_station)
5941 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
5943 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
5944 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
5945 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
5948 /* Default to Deauthentication frame */
5949 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
5952 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
5953 params.reason_code =
5954 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
5955 if (params.reason_code == 0)
5956 return -EINVAL; /* 0 is reserved */
5958 /* Default to reason code 2 */
5959 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
5962 return rdev_del_station(rdev, dev, ¶ms);
5965 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
5966 int flags, struct net_device *dev,
5967 u8 *dst, u8 *next_hop,
5968 struct mpath_info *pinfo)
5971 struct nlattr *pinfoattr;
5973 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
5977 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5978 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
5979 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
5980 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
5981 goto nla_put_failure;
5983 pinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_MPATH_INFO);
5985 goto nla_put_failure;
5986 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
5987 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
5989 goto nla_put_failure;
5990 if (((pinfo->filled & MPATH_INFO_SN) &&
5991 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
5992 ((pinfo->filled & MPATH_INFO_METRIC) &&
5993 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
5995 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
5996 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
5998 ((pinfo->filled & MPATH_INFO_FLAGS) &&
5999 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
6001 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
6002 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
6003 pinfo->discovery_timeout)) ||
6004 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
6005 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
6006 pinfo->discovery_retries)) ||
6007 ((pinfo->filled & MPATH_INFO_HOP_COUNT) &&
6008 nla_put_u8(msg, NL80211_MPATH_INFO_HOP_COUNT,
6009 pinfo->hop_count)) ||
6010 ((pinfo->filled & MPATH_INFO_PATH_CHANGE) &&
6011 nla_put_u32(msg, NL80211_MPATH_INFO_PATH_CHANGE,
6012 pinfo->path_change_count)))
6013 goto nla_put_failure;
6015 nla_nest_end(msg, pinfoattr);
6017 genlmsg_end(msg, hdr);
6021 genlmsg_cancel(msg, hdr);
6025 static int nl80211_dump_mpath(struct sk_buff *skb,
6026 struct netlink_callback *cb)
6028 struct mpath_info pinfo;
6029 struct cfg80211_registered_device *rdev;
6030 struct wireless_dev *wdev;
6032 u8 next_hop[ETH_ALEN];
6033 int path_idx = cb->args[2];
6037 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6041 if (!rdev->ops->dump_mpath) {
6046 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6052 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
6059 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6060 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6061 wdev->netdev, dst, next_hop,
6069 cb->args[2] = path_idx;
6076 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
6078 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6080 struct net_device *dev = info->user_ptr[1];
6081 struct mpath_info pinfo;
6082 struct sk_buff *msg;
6084 u8 next_hop[ETH_ALEN];
6086 memset(&pinfo, 0, sizeof(pinfo));
6088 if (!info->attrs[NL80211_ATTR_MAC])
6091 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6093 if (!rdev->ops->get_mpath)
6096 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6099 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
6103 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6107 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6108 dev, dst, next_hop, &pinfo) < 0) {
6113 return genlmsg_reply(msg, info);
6116 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
6118 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6119 struct net_device *dev = info->user_ptr[1];
6121 u8 *next_hop = NULL;
6123 if (!info->attrs[NL80211_ATTR_MAC])
6126 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6129 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6130 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6132 if (!rdev->ops->change_mpath)
6135 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6138 return rdev_change_mpath(rdev, dev, dst, next_hop);
6141 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
6143 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6144 struct net_device *dev = info->user_ptr[1];
6146 u8 *next_hop = NULL;
6148 if (!info->attrs[NL80211_ATTR_MAC])
6151 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6154 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6155 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6157 if (!rdev->ops->add_mpath)
6160 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6163 return rdev_add_mpath(rdev, dev, dst, next_hop);
6166 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
6168 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6169 struct net_device *dev = info->user_ptr[1];
6172 if (info->attrs[NL80211_ATTR_MAC])
6173 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6175 if (!rdev->ops->del_mpath)
6178 return rdev_del_mpath(rdev, dev, dst);
6181 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
6183 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6185 struct net_device *dev = info->user_ptr[1];
6186 struct mpath_info pinfo;
6187 struct sk_buff *msg;
6191 memset(&pinfo, 0, sizeof(pinfo));
6193 if (!info->attrs[NL80211_ATTR_MAC])
6196 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6198 if (!rdev->ops->get_mpp)
6201 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6204 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
6208 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6212 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6213 dev, dst, mpp, &pinfo) < 0) {
6218 return genlmsg_reply(msg, info);
6221 static int nl80211_dump_mpp(struct sk_buff *skb,
6222 struct netlink_callback *cb)
6224 struct mpath_info pinfo;
6225 struct cfg80211_registered_device *rdev;
6226 struct wireless_dev *wdev;
6229 int path_idx = cb->args[2];
6233 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6237 if (!rdev->ops->dump_mpp) {
6242 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6248 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
6255 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6256 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6257 wdev->netdev, dst, mpp,
6265 cb->args[2] = path_idx;
6272 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
6274 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6275 struct net_device *dev = info->user_ptr[1];
6276 struct wireless_dev *wdev = dev->ieee80211_ptr;
6277 struct bss_parameters params;
6280 memset(¶ms, 0, sizeof(params));
6281 /* default to not changing parameters */
6282 params.use_cts_prot = -1;
6283 params.use_short_preamble = -1;
6284 params.use_short_slot_time = -1;
6285 params.ap_isolate = -1;
6286 params.ht_opmode = -1;
6287 params.p2p_ctwindow = -1;
6288 params.p2p_opp_ps = -1;
6290 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
6291 params.use_cts_prot =
6292 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
6293 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
6294 params.use_short_preamble =
6295 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
6296 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
6297 params.use_short_slot_time =
6298 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
6299 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6300 params.basic_rates =
6301 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6302 params.basic_rates_len =
6303 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6305 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
6306 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
6307 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
6309 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
6311 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
6312 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6314 params.p2p_ctwindow =
6315 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
6316 if (params.p2p_ctwindow != 0 &&
6317 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
6321 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
6324 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6326 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
6327 params.p2p_opp_ps = tmp;
6328 if (params.p2p_opp_ps &&
6329 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
6333 if (!rdev->ops->change_bss)
6336 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
6337 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6341 err = rdev_change_bss(rdev, dev, ¶ms);
6347 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
6351 enum nl80211_user_reg_hint_type user_reg_hint_type;
6355 * You should only get this when cfg80211 hasn't yet initialized
6356 * completely when built-in to the kernel right between the time
6357 * window between nl80211_init() and regulatory_init(), if that is
6360 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
6361 return -EINPROGRESS;
6363 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
6364 user_reg_hint_type =
6365 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
6367 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
6369 switch (user_reg_hint_type) {
6370 case NL80211_USER_REG_HINT_USER:
6371 case NL80211_USER_REG_HINT_CELL_BASE:
6372 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6375 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6376 return regulatory_hint_user(data, user_reg_hint_type);
6377 case NL80211_USER_REG_HINT_INDOOR:
6378 if (info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
6379 owner_nlportid = info->snd_portid;
6380 is_indoor = !!info->attrs[NL80211_ATTR_REG_INDOOR];
6386 return regulatory_hint_indoor(is_indoor, owner_nlportid);
6392 static int nl80211_reload_regdb(struct sk_buff *skb, struct genl_info *info)
6394 return reg_reload_regdb();
6397 static int nl80211_get_mesh_config(struct sk_buff *skb,
6398 struct genl_info *info)
6400 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6401 struct net_device *dev = info->user_ptr[1];
6402 struct wireless_dev *wdev = dev->ieee80211_ptr;
6403 struct mesh_config cur_params;
6406 struct nlattr *pinfoattr;
6407 struct sk_buff *msg;
6409 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6412 if (!rdev->ops->get_mesh_config)
6416 /* If not connected, get default parameters */
6417 if (!wdev->mesh_id_len)
6418 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
6420 err = rdev_get_mesh_config(rdev, dev, &cur_params);
6426 /* Draw up a netlink message to send back */
6427 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6430 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6431 NL80211_CMD_GET_MESH_CONFIG);
6434 pinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_MESH_CONFIG);
6436 goto nla_put_failure;
6437 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
6438 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
6439 cur_params.dot11MeshRetryTimeout) ||
6440 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
6441 cur_params.dot11MeshConfirmTimeout) ||
6442 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
6443 cur_params.dot11MeshHoldingTimeout) ||
6444 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
6445 cur_params.dot11MeshMaxPeerLinks) ||
6446 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
6447 cur_params.dot11MeshMaxRetries) ||
6448 nla_put_u8(msg, NL80211_MESHCONF_TTL,
6449 cur_params.dot11MeshTTL) ||
6450 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
6451 cur_params.element_ttl) ||
6452 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6453 cur_params.auto_open_plinks) ||
6454 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6455 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
6456 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6457 cur_params.dot11MeshHWMPmaxPREQretries) ||
6458 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
6459 cur_params.path_refresh_time) ||
6460 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6461 cur_params.min_discovery_timeout) ||
6462 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6463 cur_params.dot11MeshHWMPactivePathTimeout) ||
6464 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6465 cur_params.dot11MeshHWMPpreqMinInterval) ||
6466 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6467 cur_params.dot11MeshHWMPperrMinInterval) ||
6468 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6469 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
6470 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
6471 cur_params.dot11MeshHWMPRootMode) ||
6472 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6473 cur_params.dot11MeshHWMPRannInterval) ||
6474 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6475 cur_params.dot11MeshGateAnnouncementProtocol) ||
6476 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
6477 cur_params.dot11MeshForwarding) ||
6478 nla_put_s32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
6479 cur_params.rssi_threshold) ||
6480 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
6481 cur_params.ht_opmode) ||
6482 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6483 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
6484 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6485 cur_params.dot11MeshHWMProotInterval) ||
6486 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6487 cur_params.dot11MeshHWMPconfirmationInterval) ||
6488 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
6489 cur_params.power_mode) ||
6490 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
6491 cur_params.dot11MeshAwakeWindowDuration) ||
6492 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
6493 cur_params.plink_timeout) ||
6494 nla_put_u8(msg, NL80211_MESHCONF_CONNECTED_TO_GATE,
6495 cur_params.dot11MeshConnectedToMeshGate))
6496 goto nla_put_failure;
6497 nla_nest_end(msg, pinfoattr);
6498 genlmsg_end(msg, hdr);
6499 return genlmsg_reply(msg, info);
6507 static const struct nla_policy
6508 nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
6509 [NL80211_MESHCONF_RETRY_TIMEOUT] =
6510 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6511 [NL80211_MESHCONF_CONFIRM_TIMEOUT] =
6512 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6513 [NL80211_MESHCONF_HOLDING_TIMEOUT] =
6514 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6515 [NL80211_MESHCONF_MAX_PEER_LINKS] =
6516 NLA_POLICY_RANGE(NLA_U16, 0, 255),
6517 [NL80211_MESHCONF_MAX_RETRIES] = NLA_POLICY_MAX(NLA_U8, 16),
6518 [NL80211_MESHCONF_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6519 [NL80211_MESHCONF_ELEMENT_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6520 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = NLA_POLICY_MAX(NLA_U8, 1),
6521 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] =
6522 NLA_POLICY_RANGE(NLA_U32, 1, 255),
6523 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
6524 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
6525 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = NLA_POLICY_MIN(NLA_U16, 1),
6526 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
6527 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] =
6528 NLA_POLICY_MIN(NLA_U16, 1),
6529 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] =
6530 NLA_POLICY_MIN(NLA_U16, 1),
6531 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] =
6532 NLA_POLICY_MIN(NLA_U16, 1),
6533 [NL80211_MESHCONF_HWMP_ROOTMODE] = NLA_POLICY_MAX(NLA_U8, 4),
6534 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] =
6535 NLA_POLICY_MIN(NLA_U16, 1),
6536 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = NLA_POLICY_MAX(NLA_U8, 1),
6537 [NL80211_MESHCONF_FORWARDING] = NLA_POLICY_MAX(NLA_U8, 1),
6538 [NL80211_MESHCONF_RSSI_THRESHOLD] =
6539 NLA_POLICY_RANGE(NLA_S32, -255, 0),
6540 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
6541 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
6542 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] =
6543 NLA_POLICY_MIN(NLA_U16, 1),
6544 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] =
6545 NLA_POLICY_MIN(NLA_U16, 1),
6546 [NL80211_MESHCONF_POWER_MODE] =
6547 NLA_POLICY_RANGE(NLA_U32,
6548 NL80211_MESH_POWER_ACTIVE,
6549 NL80211_MESH_POWER_MAX),
6550 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
6551 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
6552 [NL80211_MESHCONF_CONNECTED_TO_GATE] = NLA_POLICY_RANGE(NLA_U8, 0, 1),
6555 static const struct nla_policy
6556 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
6557 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
6558 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
6559 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
6560 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
6561 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
6562 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
6563 [NL80211_MESH_SETUP_IE] =
6564 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
6565 IEEE80211_MAX_DATA_LEN),
6566 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
6569 static int nl80211_parse_mesh_config(struct genl_info *info,
6570 struct mesh_config *cfg,
6573 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
6577 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, mask, attr, fn) \
6580 cfg->param = fn(tb[attr]); \
6581 mask |= BIT((attr) - 1); \
6585 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
6587 if (nla_parse_nested_deprecated(tb, NL80211_MESHCONF_ATTR_MAX, info->attrs[NL80211_ATTR_MESH_CONFIG], nl80211_meshconf_params_policy, info->extack))
6590 /* This makes sure that there aren't more than 32 mesh config
6591 * parameters (otherwise our bitfield scheme would not work.) */
6592 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
6594 /* Fill in the params struct */
6595 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, mask,
6596 NL80211_MESHCONF_RETRY_TIMEOUT, nla_get_u16);
6597 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, mask,
6598 NL80211_MESHCONF_CONFIRM_TIMEOUT,
6600 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, mask,
6601 NL80211_MESHCONF_HOLDING_TIMEOUT,
6603 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, mask,
6604 NL80211_MESHCONF_MAX_PEER_LINKS,
6606 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, mask,
6607 NL80211_MESHCONF_MAX_RETRIES, nla_get_u8);
6608 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, mask,
6609 NL80211_MESHCONF_TTL, nla_get_u8);
6610 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, mask,
6611 NL80211_MESHCONF_ELEMENT_TTL, nla_get_u8);
6612 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, mask,
6613 NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6615 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
6617 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6619 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, mask,
6620 NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6622 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, mask,
6623 NL80211_MESHCONF_PATH_REFRESH_TIME,
6625 if (mask & BIT(NL80211_MESHCONF_PATH_REFRESH_TIME) &&
6626 (cfg->path_refresh_time < 1 || cfg->path_refresh_time > 65535))
6628 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, mask,
6629 NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6631 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
6633 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6635 if (mask & BIT(NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT) &&
6636 (cfg->dot11MeshHWMPactivePathTimeout < 1 ||
6637 cfg->dot11MeshHWMPactivePathTimeout > 65535))
6639 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval, mask,
6640 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6642 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval, mask,
6643 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6645 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6646 dot11MeshHWMPnetDiameterTraversalTime, mask,
6647 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6649 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, mask,
6650 NL80211_MESHCONF_HWMP_ROOTMODE, nla_get_u8);
6651 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, mask,
6652 NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6654 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshGateAnnouncementProtocol,
6655 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6657 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, mask,
6658 NL80211_MESHCONF_FORWARDING, nla_get_u8);
6659 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, mask,
6660 NL80211_MESHCONF_RSSI_THRESHOLD,
6662 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConnectedToMeshGate, mask,
6663 NL80211_MESHCONF_CONNECTED_TO_GATE,
6666 * Check HT operation mode based on
6667 * IEEE 802.11-2016 9.4.2.57 HT Operation element.
6669 if (tb[NL80211_MESHCONF_HT_OPMODE]) {
6670 ht_opmode = nla_get_u16(tb[NL80211_MESHCONF_HT_OPMODE]);
6672 if (ht_opmode & ~(IEEE80211_HT_OP_MODE_PROTECTION |
6673 IEEE80211_HT_OP_MODE_NON_GF_STA_PRSNT |
6674 IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT))
6677 /* NON_HT_STA bit is reserved, but some programs set it */
6678 ht_opmode &= ~IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT;
6680 cfg->ht_opmode = ht_opmode;
6681 mask |= (1 << (NL80211_MESHCONF_HT_OPMODE - 1));
6683 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6684 dot11MeshHWMPactivePathToRootTimeout, mask,
6685 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6687 if (mask & BIT(NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT) &&
6688 (cfg->dot11MeshHWMPactivePathToRootTimeout < 1 ||
6689 cfg->dot11MeshHWMPactivePathToRootTimeout > 65535))
6691 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, mask,
6692 NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6694 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPconfirmationInterval,
6696 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6698 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode, mask,
6699 NL80211_MESHCONF_POWER_MODE, nla_get_u32);
6700 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration, mask,
6701 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
6702 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, mask,
6703 NL80211_MESHCONF_PLINK_TIMEOUT, nla_get_u32);
6709 #undef FILL_IN_MESH_PARAM_IF_SET
6712 static int nl80211_parse_mesh_setup(struct genl_info *info,
6713 struct mesh_setup *setup)
6715 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6716 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
6718 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
6720 if (nla_parse_nested_deprecated(tb, NL80211_MESH_SETUP_ATTR_MAX, info->attrs[NL80211_ATTR_MESH_SETUP], nl80211_mesh_setup_params_policy, info->extack))
6723 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
6724 setup->sync_method =
6725 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
6726 IEEE80211_SYNC_METHOD_VENDOR :
6727 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
6729 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
6730 setup->path_sel_proto =
6731 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
6732 IEEE80211_PATH_PROTOCOL_VENDOR :
6733 IEEE80211_PATH_PROTOCOL_HWMP;
6735 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
6736 setup->path_metric =
6737 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
6738 IEEE80211_PATH_METRIC_VENDOR :
6739 IEEE80211_PATH_METRIC_AIRTIME;
6741 if (tb[NL80211_MESH_SETUP_IE]) {
6742 struct nlattr *ieattr =
6743 tb[NL80211_MESH_SETUP_IE];
6744 setup->ie = nla_data(ieattr);
6745 setup->ie_len = nla_len(ieattr);
6747 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
6748 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
6750 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
6751 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
6752 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
6753 if (setup->is_secure)
6754 setup->user_mpm = true;
6756 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
6757 if (!setup->user_mpm)
6760 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
6766 static int nl80211_update_mesh_config(struct sk_buff *skb,
6767 struct genl_info *info)
6769 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6770 struct net_device *dev = info->user_ptr[1];
6771 struct wireless_dev *wdev = dev->ieee80211_ptr;
6772 struct mesh_config cfg;
6776 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6779 if (!rdev->ops->update_mesh_config)
6782 err = nl80211_parse_mesh_config(info, &cfg, &mask);
6787 if (!wdev->mesh_id_len)
6791 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
6798 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
6799 struct sk_buff *msg)
6801 struct nlattr *nl_reg_rules;
6804 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
6805 (regdom->dfs_region &&
6806 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
6807 goto nla_put_failure;
6809 nl_reg_rules = nla_nest_start_noflag(msg, NL80211_ATTR_REG_RULES);
6811 goto nla_put_failure;
6813 for (i = 0; i < regdom->n_reg_rules; i++) {
6814 struct nlattr *nl_reg_rule;
6815 const struct ieee80211_reg_rule *reg_rule;
6816 const struct ieee80211_freq_range *freq_range;
6817 const struct ieee80211_power_rule *power_rule;
6818 unsigned int max_bandwidth_khz;
6820 reg_rule = ®dom->reg_rules[i];
6821 freq_range = ®_rule->freq_range;
6822 power_rule = ®_rule->power_rule;
6824 nl_reg_rule = nla_nest_start_noflag(msg, i);
6826 goto nla_put_failure;
6828 max_bandwidth_khz = freq_range->max_bandwidth_khz;
6829 if (!max_bandwidth_khz)
6830 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
6833 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
6835 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
6836 freq_range->start_freq_khz) ||
6837 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
6838 freq_range->end_freq_khz) ||
6839 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
6840 max_bandwidth_khz) ||
6841 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
6842 power_rule->max_antenna_gain) ||
6843 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
6844 power_rule->max_eirp) ||
6845 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
6846 reg_rule->dfs_cac_ms))
6847 goto nla_put_failure;
6849 nla_nest_end(msg, nl_reg_rule);
6852 nla_nest_end(msg, nl_reg_rules);
6859 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
6861 const struct ieee80211_regdomain *regdom = NULL;
6862 struct cfg80211_registered_device *rdev;
6863 struct wiphy *wiphy = NULL;
6864 struct sk_buff *msg;
6867 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6871 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6872 NL80211_CMD_GET_REG);
6876 if (info->attrs[NL80211_ATTR_WIPHY]) {
6879 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
6882 return PTR_ERR(rdev);
6885 wiphy = &rdev->wiphy;
6886 self_managed = wiphy->regulatory_flags &
6887 REGULATORY_WIPHY_SELF_MANAGED;
6888 regdom = get_wiphy_regdom(wiphy);
6890 /* a self-managed-reg device must have a private regdom */
6891 if (WARN_ON(!regdom && self_managed)) {
6897 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6898 goto nla_put_failure;
6901 if (!wiphy && reg_last_request_cell_base() &&
6902 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6903 NL80211_USER_REG_HINT_CELL_BASE))
6904 goto nla_put_failure;
6909 regdom = rcu_dereference(cfg80211_regdomain);
6911 if (nl80211_put_regdom(regdom, msg))
6912 goto nla_put_failure_rcu;
6916 genlmsg_end(msg, hdr);
6917 return genlmsg_reply(msg, info);
6919 nla_put_failure_rcu:
6927 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
6928 u32 seq, int flags, struct wiphy *wiphy,
6929 const struct ieee80211_regdomain *regdom)
6931 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
6932 NL80211_CMD_GET_REG);
6937 genl_dump_check_consistent(cb, hdr);
6939 if (nl80211_put_regdom(regdom, msg))
6940 goto nla_put_failure;
6942 if (!wiphy && reg_last_request_cell_base() &&
6943 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6944 NL80211_USER_REG_HINT_CELL_BASE))
6945 goto nla_put_failure;
6948 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6949 goto nla_put_failure;
6951 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
6952 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
6953 goto nla_put_failure;
6955 genlmsg_end(msg, hdr);
6959 genlmsg_cancel(msg, hdr);
6963 static int nl80211_get_reg_dump(struct sk_buff *skb,
6964 struct netlink_callback *cb)
6966 const struct ieee80211_regdomain *regdom = NULL;
6967 struct cfg80211_registered_device *rdev;
6968 int err, reg_idx, start = cb->args[2];
6972 if (cfg80211_regdomain && start == 0) {
6973 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6975 rtnl_dereference(cfg80211_regdomain));
6980 /* the global regdom is idx 0 */
6982 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
6983 regdom = get_wiphy_regdom(&rdev->wiphy);
6987 if (++reg_idx <= start)
6990 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6991 NLM_F_MULTI, &rdev->wiphy, regdom);
6998 cb->args[2] = reg_idx;
7005 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
7006 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
7007 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
7008 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
7009 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
7010 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
7011 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
7012 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
7013 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
7016 static int parse_reg_rule(struct nlattr *tb[],
7017 struct ieee80211_reg_rule *reg_rule)
7019 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
7020 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
7022 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
7024 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
7026 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
7028 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
7030 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
7033 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
7035 freq_range->start_freq_khz =
7036 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
7037 freq_range->end_freq_khz =
7038 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
7039 freq_range->max_bandwidth_khz =
7040 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
7042 power_rule->max_eirp =
7043 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
7045 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
7046 power_rule->max_antenna_gain =
7047 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
7049 if (tb[NL80211_ATTR_DFS_CAC_TIME])
7050 reg_rule->dfs_cac_ms =
7051 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
7056 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
7058 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
7059 struct nlattr *nl_reg_rule;
7061 int rem_reg_rules, r;
7062 u32 num_rules = 0, rule_idx = 0;
7063 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
7064 struct ieee80211_regdomain *rd;
7066 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
7069 if (!info->attrs[NL80211_ATTR_REG_RULES])
7072 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
7074 if (info->attrs[NL80211_ATTR_DFS_REGION])
7075 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
7077 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
7080 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
7084 if (!reg_is_valid_request(alpha2))
7087 rd = kzalloc(struct_size(rd, reg_rules, num_rules), GFP_KERNEL);
7091 rd->n_reg_rules = num_rules;
7092 rd->alpha2[0] = alpha2[0];
7093 rd->alpha2[1] = alpha2[1];
7096 * Disable DFS master mode if the DFS region was
7097 * not supported or known on this kernel.
7099 if (reg_supported_dfs_region(dfs_region))
7100 rd->dfs_region = dfs_region;
7102 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
7104 r = nla_parse_nested_deprecated(tb, NL80211_REG_RULE_ATTR_MAX,
7105 nl_reg_rule, reg_rule_policy,
7109 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
7115 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
7121 /* set_regdom takes ownership of rd */
7122 return set_regdom(rd, REGD_SOURCE_CRDA);
7127 #endif /* CONFIG_CFG80211_CRDA_SUPPORT */
7129 static int validate_scan_freqs(struct nlattr *freqs)
7131 struct nlattr *attr1, *attr2;
7132 int n_channels = 0, tmp1, tmp2;
7134 nla_for_each_nested(attr1, freqs, tmp1)
7135 if (nla_len(attr1) != sizeof(u32))
7138 nla_for_each_nested(attr1, freqs, tmp1) {
7141 * Some hardware has a limited channel list for
7142 * scanning, and it is pretty much nonsensical
7143 * to scan for a channel twice, so disallow that
7144 * and don't require drivers to check that the
7145 * channel list they get isn't longer than what
7146 * they can scan, as long as they can scan all
7147 * the channels they registered at once.
7149 nla_for_each_nested(attr2, freqs, tmp2)
7150 if (attr1 != attr2 &&
7151 nla_get_u32(attr1) == nla_get_u32(attr2))
7158 static bool is_band_valid(struct wiphy *wiphy, enum nl80211_band b)
7160 return b < NUM_NL80211_BANDS && wiphy->bands[b];
7163 static int parse_bss_select(struct nlattr *nla, struct wiphy *wiphy,
7164 struct cfg80211_bss_selection *bss_select)
7166 struct nlattr *attr[NL80211_BSS_SELECT_ATTR_MAX + 1];
7167 struct nlattr *nest;
7172 /* only process one nested attribute */
7173 nest = nla_data(nla);
7174 if (!nla_ok(nest, nla_len(nest)))
7177 err = nla_parse_nested_deprecated(attr, NL80211_BSS_SELECT_ATTR_MAX,
7178 nest, nl80211_bss_select_policy,
7183 /* only one attribute may be given */
7184 for (i = 0; i <= NL80211_BSS_SELECT_ATTR_MAX; i++) {
7192 bss_select->behaviour = __NL80211_BSS_SELECT_ATTR_INVALID;
7194 if (attr[NL80211_BSS_SELECT_ATTR_RSSI])
7195 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI;
7197 if (attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]) {
7198 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_BAND_PREF;
7199 bss_select->param.band_pref =
7200 nla_get_u32(attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]);
7201 if (!is_band_valid(wiphy, bss_select->param.band_pref))
7205 if (attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]) {
7206 struct nl80211_bss_select_rssi_adjust *adj_param;
7208 adj_param = nla_data(attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]);
7209 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI_ADJUST;
7210 bss_select->param.adjust.band = adj_param->band;
7211 bss_select->param.adjust.delta = adj_param->delta;
7212 if (!is_band_valid(wiphy, bss_select->param.adjust.band))
7216 /* user-space did not provide behaviour attribute */
7217 if (bss_select->behaviour == __NL80211_BSS_SELECT_ATTR_INVALID)
7220 if (!(wiphy->bss_select_support & BIT(bss_select->behaviour)))
7226 int nl80211_parse_random_mac(struct nlattr **attrs,
7227 u8 *mac_addr, u8 *mac_addr_mask)
7231 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
7232 eth_zero_addr(mac_addr);
7233 eth_zero_addr(mac_addr_mask);
7235 mac_addr_mask[0] = 0x3;
7240 /* need both or none */
7241 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
7244 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
7245 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
7247 /* don't allow or configure an mcast address */
7248 if (!is_multicast_ether_addr(mac_addr_mask) ||
7249 is_multicast_ether_addr(mac_addr))
7253 * allow users to pass a MAC address that has bits set outside
7254 * of the mask, but don't bother drivers with having to deal
7257 for (i = 0; i < ETH_ALEN; i++)
7258 mac_addr[i] &= mac_addr_mask[i];
7263 static bool cfg80211_off_channel_oper_allowed(struct wireless_dev *wdev)
7265 ASSERT_WDEV_LOCK(wdev);
7267 if (!cfg80211_beaconing_iface_active(wdev))
7270 if (!(wdev->chandef.chan->flags & IEEE80211_CHAN_RADAR))
7273 return regulatory_pre_cac_allowed(wdev->wiphy);
7276 static bool nl80211_check_scan_feat(struct wiphy *wiphy, u32 flags, u32 flag,
7277 enum nl80211_ext_feature_index feat)
7279 if (!(flags & flag))
7281 if (wiphy_ext_feature_isset(wiphy, feat))
7287 nl80211_check_scan_flags(struct wiphy *wiphy, struct wireless_dev *wdev,
7288 void *request, struct nlattr **attrs,
7291 u8 *mac_addr, *mac_addr_mask;
7293 enum nl80211_feature_flags randomness_flag;
7295 if (!attrs[NL80211_ATTR_SCAN_FLAGS])
7298 if (is_sched_scan) {
7299 struct cfg80211_sched_scan_request *req = request;
7301 randomness_flag = wdev ?
7302 NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR :
7303 NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7304 flags = &req->flags;
7305 mac_addr = req->mac_addr;
7306 mac_addr_mask = req->mac_addr_mask;
7308 struct cfg80211_scan_request *req = request;
7310 randomness_flag = NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
7311 flags = &req->flags;
7312 mac_addr = req->mac_addr;
7313 mac_addr_mask = req->mac_addr_mask;
7316 *flags = nla_get_u32(attrs[NL80211_ATTR_SCAN_FLAGS]);
7318 if (((*flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
7319 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) ||
7320 !nl80211_check_scan_feat(wiphy, *flags,
7321 NL80211_SCAN_FLAG_LOW_SPAN,
7322 NL80211_EXT_FEATURE_LOW_SPAN_SCAN) ||
7323 !nl80211_check_scan_feat(wiphy, *flags,
7324 NL80211_SCAN_FLAG_LOW_POWER,
7325 NL80211_EXT_FEATURE_LOW_POWER_SCAN) ||
7326 !nl80211_check_scan_feat(wiphy, *flags,
7327 NL80211_SCAN_FLAG_HIGH_ACCURACY,
7328 NL80211_EXT_FEATURE_HIGH_ACCURACY_SCAN) ||
7329 !nl80211_check_scan_feat(wiphy, *flags,
7330 NL80211_SCAN_FLAG_FILS_MAX_CHANNEL_TIME,
7331 NL80211_EXT_FEATURE_FILS_MAX_CHANNEL_TIME) ||
7332 !nl80211_check_scan_feat(wiphy, *flags,
7333 NL80211_SCAN_FLAG_ACCEPT_BCAST_PROBE_RESP,
7334 NL80211_EXT_FEATURE_ACCEPT_BCAST_PROBE_RESP) ||
7335 !nl80211_check_scan_feat(wiphy, *flags,
7336 NL80211_SCAN_FLAG_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION,
7337 NL80211_EXT_FEATURE_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION) ||
7338 !nl80211_check_scan_feat(wiphy, *flags,
7339 NL80211_SCAN_FLAG_OCE_PROBE_REQ_HIGH_TX_RATE,
7340 NL80211_EXT_FEATURE_OCE_PROBE_REQ_HIGH_TX_RATE) ||
7341 !nl80211_check_scan_feat(wiphy, *flags,
7342 NL80211_SCAN_FLAG_RANDOM_SN,
7343 NL80211_EXT_FEATURE_SCAN_RANDOM_SN) ||
7344 !nl80211_check_scan_feat(wiphy, *flags,
7345 NL80211_SCAN_FLAG_MIN_PREQ_CONTENT,
7346 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT))
7349 if (*flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
7352 if (!(wiphy->features & randomness_flag) ||
7353 (wdev && wdev->current_bss))
7356 err = nl80211_parse_random_mac(attrs, mac_addr, mac_addr_mask);
7364 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
7366 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7367 struct wireless_dev *wdev = info->user_ptr[1];
7368 struct cfg80211_scan_request *request;
7369 struct nlattr *attr;
7370 struct wiphy *wiphy;
7371 int err, tmp, n_ssids = 0, n_channels, i;
7374 wiphy = &rdev->wiphy;
7376 if (wdev->iftype == NL80211_IFTYPE_NAN)
7379 if (!rdev->ops->scan)
7382 if (rdev->scan_req || rdev->scan_msg) {
7387 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7388 n_channels = validate_scan_freqs(
7389 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7395 n_channels = ieee80211_get_num_supported_channels(wiphy);
7398 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
7399 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
7402 if (n_ssids > wiphy->max_scan_ssids) {
7407 if (info->attrs[NL80211_ATTR_IE])
7408 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7412 if (ie_len > wiphy->max_scan_ie_len) {
7417 request = kzalloc(sizeof(*request)
7418 + sizeof(*request->ssids) * n_ssids
7419 + sizeof(*request->channels) * n_channels
7420 + ie_len, GFP_KERNEL);
7427 request->ssids = (void *)&request->channels[n_channels];
7428 request->n_ssids = n_ssids;
7431 request->ie = (void *)(request->ssids + n_ssids);
7433 request->ie = (void *)(request->channels + n_channels);
7437 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7438 /* user specified, bail out if channel not found */
7439 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
7440 struct ieee80211_channel *chan;
7442 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7449 /* ignore disabled channels */
7450 if (chan->flags & IEEE80211_CHAN_DISABLED)
7453 request->channels[i] = chan;
7457 enum nl80211_band band;
7460 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7463 if (!wiphy->bands[band])
7465 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7466 struct ieee80211_channel *chan;
7468 chan = &wiphy->bands[band]->channels[j];
7470 if (chan->flags & IEEE80211_CHAN_DISABLED)
7473 request->channels[i] = chan;
7484 request->n_channels = i;
7487 if (!cfg80211_off_channel_oper_allowed(wdev)) {
7488 struct ieee80211_channel *chan;
7490 if (request->n_channels != 1) {
7496 chan = request->channels[0];
7497 if (chan->center_freq != wdev->chandef.chan->center_freq) {
7507 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
7508 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7512 request->ssids[i].ssid_len = nla_len(attr);
7513 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
7518 if (info->attrs[NL80211_ATTR_IE]) {
7519 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7520 memcpy((void *)request->ie,
7521 nla_data(info->attrs[NL80211_ATTR_IE]),
7525 for (i = 0; i < NUM_NL80211_BANDS; i++)
7526 if (wiphy->bands[i])
7528 (1 << wiphy->bands[i]->n_bitrates) - 1;
7530 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
7531 nla_for_each_nested(attr,
7532 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
7534 enum nl80211_band band = nla_type(attr);
7536 if (band < 0 || band >= NUM_NL80211_BANDS) {
7541 if (!wiphy->bands[band])
7544 err = ieee80211_get_ratemask(wiphy->bands[band],
7547 &request->rates[band]);
7553 if (info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]) {
7554 if (!wiphy_ext_feature_isset(wiphy,
7555 NL80211_EXT_FEATURE_SET_SCAN_DWELL)) {
7561 nla_get_u16(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]);
7562 request->duration_mandatory =
7563 nla_get_flag(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY]);
7566 err = nl80211_check_scan_flags(wiphy, wdev, request, info->attrs,
7572 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7574 /* Initial implementation used NL80211_ATTR_MAC to set the specific
7575 * BSSID to scan for. This was problematic because that same attribute
7576 * was already used for another purpose (local random MAC address). The
7577 * NL80211_ATTR_BSSID attribute was added to fix this. For backwards
7578 * compatibility with older userspace components, also use the
7579 * NL80211_ATTR_MAC value here if it can be determined to be used for
7580 * the specific BSSID use case instead of the random MAC address
7581 * (NL80211_ATTR_SCAN_FLAGS is used to enable random MAC address use).
7583 if (info->attrs[NL80211_ATTR_BSSID])
7584 memcpy(request->bssid,
7585 nla_data(info->attrs[NL80211_ATTR_BSSID]), ETH_ALEN);
7586 else if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) &&
7587 info->attrs[NL80211_ATTR_MAC])
7588 memcpy(request->bssid, nla_data(info->attrs[NL80211_ATTR_MAC]),
7591 eth_broadcast_addr(request->bssid);
7593 request->wdev = wdev;
7594 request->wiphy = &rdev->wiphy;
7595 request->scan_start = jiffies;
7597 rdev->scan_req = request;
7598 err = rdev_scan(rdev, request);
7601 nl80211_send_scan_start(rdev, wdev);
7603 dev_hold(wdev->netdev);
7606 rdev->scan_req = NULL;
7614 static int nl80211_abort_scan(struct sk_buff *skb, struct genl_info *info)
7616 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7617 struct wireless_dev *wdev = info->user_ptr[1];
7619 if (!rdev->ops->abort_scan)
7625 if (!rdev->scan_req)
7628 rdev_abort_scan(rdev, wdev);
7633 nl80211_parse_sched_scan_plans(struct wiphy *wiphy, int n_plans,
7634 struct cfg80211_sched_scan_request *request,
7635 struct nlattr **attrs)
7637 int tmp, err, i = 0;
7638 struct nlattr *attr;
7640 if (!attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7644 * If scan plans are not specified,
7645 * %NL80211_ATTR_SCHED_SCAN_INTERVAL will be specified. In this
7646 * case one scan plan will be set with the specified scan
7647 * interval and infinite number of iterations.
7649 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
7653 request->scan_plans[0].interval =
7654 DIV_ROUND_UP(interval, MSEC_PER_SEC);
7655 if (!request->scan_plans[0].interval)
7658 if (request->scan_plans[0].interval >
7659 wiphy->max_sched_scan_plan_interval)
7660 request->scan_plans[0].interval =
7661 wiphy->max_sched_scan_plan_interval;
7666 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp) {
7667 struct nlattr *plan[NL80211_SCHED_SCAN_PLAN_MAX + 1];
7669 if (WARN_ON(i >= n_plans))
7672 err = nla_parse_nested_deprecated(plan,
7673 NL80211_SCHED_SCAN_PLAN_MAX,
7674 attr, nl80211_plan_policy,
7679 if (!plan[NL80211_SCHED_SCAN_PLAN_INTERVAL])
7682 request->scan_plans[i].interval =
7683 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_INTERVAL]);
7684 if (!request->scan_plans[i].interval ||
7685 request->scan_plans[i].interval >
7686 wiphy->max_sched_scan_plan_interval)
7689 if (plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]) {
7690 request->scan_plans[i].iterations =
7691 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]);
7692 if (!request->scan_plans[i].iterations ||
7693 (request->scan_plans[i].iterations >
7694 wiphy->max_sched_scan_plan_iterations))
7696 } else if (i < n_plans - 1) {
7698 * All scan plans but the last one must specify
7699 * a finite number of iterations
7708 * The last scan plan must not specify the number of
7709 * iterations, it is supposed to run infinitely
7711 if (request->scan_plans[n_plans - 1].iterations)
7718 nl80211_parse_sched_scan_per_band_rssi(struct wiphy *wiphy,
7719 struct cfg80211_match_set *match_sets,
7720 struct nlattr *tb_band_rssi,
7723 struct nlattr *attr;
7724 int i, tmp, ret = 0;
7726 if (!wiphy_ext_feature_isset(wiphy,
7727 NL80211_EXT_FEATURE_SCHED_SCAN_BAND_SPECIFIC_RSSI_THOLD)) {
7731 for (i = 0; i < NUM_NL80211_BANDS; i++)
7732 match_sets->per_band_rssi_thold[i] =
7733 NL80211_SCAN_RSSI_THOLD_OFF;
7737 for (i = 0; i < NUM_NL80211_BANDS; i++)
7738 match_sets->per_band_rssi_thold[i] = rssi_thold;
7740 nla_for_each_nested(attr, tb_band_rssi, tmp) {
7741 enum nl80211_band band = nla_type(attr);
7743 if (band < 0 || band >= NUM_NL80211_BANDS)
7746 match_sets->per_band_rssi_thold[band] = nla_get_s32(attr);
7752 static struct cfg80211_sched_scan_request *
7753 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
7754 struct nlattr **attrs, int max_match_sets)
7756 struct cfg80211_sched_scan_request *request;
7757 struct nlattr *attr;
7758 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i, n_plans = 0;
7759 enum nl80211_band band;
7761 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
7762 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
7764 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7765 n_channels = validate_scan_freqs(
7766 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7768 return ERR_PTR(-EINVAL);
7770 n_channels = ieee80211_get_num_supported_channels(wiphy);
7773 if (attrs[NL80211_ATTR_SCAN_SSIDS])
7774 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7778 if (n_ssids > wiphy->max_sched_scan_ssids)
7779 return ERR_PTR(-EINVAL);
7782 * First, count the number of 'real' matchsets. Due to an issue with
7783 * the old implementation, matchsets containing only the RSSI attribute
7784 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
7785 * RSSI for all matchsets, rather than their own matchset for reporting
7786 * all APs with a strong RSSI. This is needed to be compatible with
7787 * older userspace that treated a matchset with only the RSSI as the
7788 * global RSSI for all other matchsets - if there are other matchsets.
7790 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7791 nla_for_each_nested(attr,
7792 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7794 struct nlattr *rssi;
7796 err = nla_parse_nested_deprecated(tb,
7797 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7799 nl80211_match_policy,
7802 return ERR_PTR(err);
7804 /* SSID and BSSID are mutually exclusive */
7805 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] &&
7806 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID])
7807 return ERR_PTR(-EINVAL);
7809 /* add other standalone attributes here */
7810 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] ||
7811 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID]) {
7815 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7817 default_match_rssi = nla_get_s32(rssi);
7821 /* However, if there's no other matchset, add the RSSI one */
7822 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
7825 if (n_match_sets > max_match_sets)
7826 return ERR_PTR(-EINVAL);
7828 if (attrs[NL80211_ATTR_IE])
7829 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
7833 if (ie_len > wiphy->max_sched_scan_ie_len)
7834 return ERR_PTR(-EINVAL);
7836 if (attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7838 * NL80211_ATTR_SCHED_SCAN_INTERVAL must not be specified since
7839 * each scan plan already specifies its own interval
7841 if (attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7842 return ERR_PTR(-EINVAL);
7844 nla_for_each_nested(attr,
7845 attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp)
7849 * The scan interval attribute is kept for backward
7850 * compatibility. If no scan plans are specified and sched scan
7851 * interval is specified, one scan plan will be set with this
7852 * scan interval and infinite number of iterations.
7854 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7855 return ERR_PTR(-EINVAL);
7860 if (!n_plans || n_plans > wiphy->max_sched_scan_plans)
7861 return ERR_PTR(-EINVAL);
7863 if (!wiphy_ext_feature_isset(
7864 wiphy, NL80211_EXT_FEATURE_SCHED_SCAN_RELATIVE_RSSI) &&
7865 (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] ||
7866 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]))
7867 return ERR_PTR(-EINVAL);
7869 request = kzalloc(sizeof(*request)
7870 + sizeof(*request->ssids) * n_ssids
7871 + sizeof(*request->match_sets) * n_match_sets
7872 + sizeof(*request->scan_plans) * n_plans
7873 + sizeof(*request->channels) * n_channels
7874 + ie_len, GFP_KERNEL);
7876 return ERR_PTR(-ENOMEM);
7879 request->ssids = (void *)&request->channels[n_channels];
7880 request->n_ssids = n_ssids;
7883 request->ie = (void *)(request->ssids + n_ssids);
7885 request->ie = (void *)(request->channels + n_channels);
7890 request->match_sets = (void *)(request->ie + ie_len);
7892 request->match_sets =
7893 (void *)(request->ssids + n_ssids);
7895 request->match_sets =
7896 (void *)(request->channels + n_channels);
7898 request->n_match_sets = n_match_sets;
7901 request->scan_plans = (void *)(request->match_sets +
7903 else if (request->ie)
7904 request->scan_plans = (void *)(request->ie + ie_len);
7906 request->scan_plans = (void *)(request->ssids + n_ssids);
7908 request->scan_plans = (void *)(request->channels + n_channels);
7910 request->n_scan_plans = n_plans;
7913 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7914 /* user specified, bail out if channel not found */
7915 nla_for_each_nested(attr,
7916 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
7918 struct ieee80211_channel *chan;
7920 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7927 /* ignore disabled channels */
7928 if (chan->flags & IEEE80211_CHAN_DISABLED)
7931 request->channels[i] = chan;
7936 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7939 if (!wiphy->bands[band])
7941 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7942 struct ieee80211_channel *chan;
7944 chan = &wiphy->bands[band]->channels[j];
7946 if (chan->flags & IEEE80211_CHAN_DISABLED)
7949 request->channels[i] = chan;
7960 request->n_channels = i;
7964 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7966 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7970 request->ssids[i].ssid_len = nla_len(attr);
7971 memcpy(request->ssids[i].ssid, nla_data(attr),
7978 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7979 nla_for_each_nested(attr,
7980 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7982 struct nlattr *ssid, *bssid, *rssi;
7984 err = nla_parse_nested_deprecated(tb,
7985 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7987 nl80211_match_policy,
7991 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
7992 bssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID];
7994 if (!ssid && !bssid) {
7999 if (WARN_ON(i >= n_match_sets)) {
8000 /* this indicates a programming error,
8001 * the loop above should have verified
8009 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
8013 memcpy(request->match_sets[i].ssid.ssid,
8014 nla_data(ssid), nla_len(ssid));
8015 request->match_sets[i].ssid.ssid_len =
8019 if (nla_len(bssid) != ETH_ALEN) {
8023 memcpy(request->match_sets[i].bssid,
8024 nla_data(bssid), ETH_ALEN);
8027 /* special attribute - old implementation w/a */
8028 request->match_sets[i].rssi_thold = default_match_rssi;
8029 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
8031 request->match_sets[i].rssi_thold =
8034 /* Parse per band RSSI attribute */
8035 err = nl80211_parse_sched_scan_per_band_rssi(wiphy,
8036 &request->match_sets[i],
8037 tb[NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI],
8038 request->match_sets[i].rssi_thold);
8045 /* there was no other matchset, so the RSSI one is alone */
8046 if (i == 0 && n_match_sets)
8047 request->match_sets[0].rssi_thold = default_match_rssi;
8049 request->min_rssi_thold = INT_MAX;
8050 for (i = 0; i < n_match_sets; i++)
8051 request->min_rssi_thold =
8052 min(request->match_sets[i].rssi_thold,
8053 request->min_rssi_thold);
8055 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
8059 request->ie_len = ie_len;
8060 memcpy((void *)request->ie,
8061 nla_data(attrs[NL80211_ATTR_IE]),
8065 err = nl80211_check_scan_flags(wiphy, wdev, request, attrs, true);
8069 if (attrs[NL80211_ATTR_SCHED_SCAN_DELAY])
8071 nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_DELAY]);
8073 if (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]) {
8074 request->relative_rssi = nla_get_s8(
8075 attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]);
8076 request->relative_rssi_set = true;
8079 if (request->relative_rssi_set &&
8080 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]) {
8081 struct nl80211_bss_select_rssi_adjust *rssi_adjust;
8083 rssi_adjust = nla_data(
8084 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]);
8085 request->rssi_adjust.band = rssi_adjust->band;
8086 request->rssi_adjust.delta = rssi_adjust->delta;
8087 if (!is_band_valid(wiphy, request->rssi_adjust.band)) {
8093 err = nl80211_parse_sched_scan_plans(wiphy, n_plans, request, attrs);
8097 request->scan_start = jiffies;
8103 return ERR_PTR(err);
8106 static int nl80211_start_sched_scan(struct sk_buff *skb,
8107 struct genl_info *info)
8109 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8110 struct net_device *dev = info->user_ptr[1];
8111 struct wireless_dev *wdev = dev->ieee80211_ptr;
8112 struct cfg80211_sched_scan_request *sched_scan_req;
8116 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_start)
8119 want_multi = info->attrs[NL80211_ATTR_SCHED_SCAN_MULTI];
8120 err = cfg80211_sched_scan_req_possible(rdev, want_multi);
8124 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
8126 rdev->wiphy.max_match_sets);
8128 err = PTR_ERR_OR_ZERO(sched_scan_req);
8132 /* leave request id zero for legacy request
8133 * or if driver does not support multi-scheduled scan
8135 if (want_multi && rdev->wiphy.max_sched_scan_reqs > 1) {
8136 while (!sched_scan_req->reqid)
8137 sched_scan_req->reqid = cfg80211_assign_cookie(rdev);
8140 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
8144 sched_scan_req->dev = dev;
8145 sched_scan_req->wiphy = &rdev->wiphy;
8147 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
8148 sched_scan_req->owner_nlportid = info->snd_portid;
8150 cfg80211_add_sched_scan_req(rdev, sched_scan_req);
8152 nl80211_send_sched_scan(sched_scan_req, NL80211_CMD_START_SCHED_SCAN);
8156 kfree(sched_scan_req);
8161 static int nl80211_stop_sched_scan(struct sk_buff *skb,
8162 struct genl_info *info)
8164 struct cfg80211_sched_scan_request *req;
8165 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8168 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_stop)
8171 if (info->attrs[NL80211_ATTR_COOKIE]) {
8172 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
8173 return __cfg80211_stop_sched_scan(rdev, cookie, false);
8176 req = list_first_or_null_rcu(&rdev->sched_scan_req_list,
8177 struct cfg80211_sched_scan_request,
8179 if (!req || req->reqid ||
8180 (req->owner_nlportid &&
8181 req->owner_nlportid != info->snd_portid))
8184 return cfg80211_stop_sched_scan_req(rdev, req, false);
8187 static int nl80211_start_radar_detection(struct sk_buff *skb,
8188 struct genl_info *info)
8190 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8191 struct net_device *dev = info->user_ptr[1];
8192 struct wireless_dev *wdev = dev->ieee80211_ptr;
8193 struct wiphy *wiphy = wdev->wiphy;
8194 struct cfg80211_chan_def chandef;
8195 enum nl80211_dfs_regions dfs_region;
8196 unsigned int cac_time_ms;
8199 dfs_region = reg_get_dfs_region(wiphy);
8200 if (dfs_region == NL80211_DFS_UNSET)
8203 err = nl80211_parse_chandef(rdev, info, &chandef);
8207 if (netif_carrier_ok(dev))
8210 if (wdev->cac_started)
8213 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8220 if (!cfg80211_chandef_dfs_usable(wiphy, &chandef))
8223 /* CAC start is offloaded to HW and can't be started manually */
8224 if (wiphy_ext_feature_isset(wiphy, NL80211_EXT_FEATURE_DFS_OFFLOAD))
8227 if (!rdev->ops->start_radar_detection)
8230 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
8231 if (WARN_ON(!cac_time_ms))
8232 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
8234 err = rdev_start_radar_detection(rdev, dev, &chandef, cac_time_ms);
8236 wdev->chandef = chandef;
8237 wdev->cac_started = true;
8238 wdev->cac_start_time = jiffies;
8239 wdev->cac_time_ms = cac_time_ms;
8244 static int nl80211_notify_radar_detection(struct sk_buff *skb,
8245 struct genl_info *info)
8247 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8248 struct net_device *dev = info->user_ptr[1];
8249 struct wireless_dev *wdev = dev->ieee80211_ptr;
8250 struct wiphy *wiphy = wdev->wiphy;
8251 struct cfg80211_chan_def chandef;
8252 enum nl80211_dfs_regions dfs_region;
8255 dfs_region = reg_get_dfs_region(wiphy);
8256 if (dfs_region == NL80211_DFS_UNSET) {
8257 GENL_SET_ERR_MSG(info,
8258 "DFS Region is not set. Unexpected Radar indication");
8262 err = nl80211_parse_chandef(rdev, info, &chandef);
8264 GENL_SET_ERR_MSG(info, "Unable to extract chandef info");
8268 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8270 GENL_SET_ERR_MSG(info, "chandef is invalid");
8275 GENL_SET_ERR_MSG(info,
8276 "Unexpected Radar indication for chandef/iftype");
8280 /* Do not process this notification if radar is already detected
8281 * by kernel on this channel, and return success.
8283 if (chandef.chan->dfs_state == NL80211_DFS_UNAVAILABLE)
8286 cfg80211_set_dfs_state(wiphy, &chandef, NL80211_DFS_UNAVAILABLE);
8288 cfg80211_sched_dfs_chan_update(rdev);
8290 rdev->radar_chandef = chandef;
8292 /* Propagate this notification to other radios as well */
8293 queue_work(cfg80211_wq, &rdev->propagate_radar_detect_wk);
8298 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
8300 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8301 struct net_device *dev = info->user_ptr[1];
8302 struct wireless_dev *wdev = dev->ieee80211_ptr;
8303 struct cfg80211_csa_settings params;
8304 /* csa_attrs is defined static to avoid waste of stack size - this
8305 * function is called under RTNL lock, so this should not be a problem.
8307 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
8309 bool need_new_beacon = false;
8310 bool need_handle_dfs_flag = true;
8314 if (!rdev->ops->channel_switch ||
8315 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
8318 switch (dev->ieee80211_ptr->iftype) {
8319 case NL80211_IFTYPE_AP:
8320 case NL80211_IFTYPE_P2P_GO:
8321 need_new_beacon = true;
8322 /* For all modes except AP the handle_dfs flag needs to be
8323 * supplied to tell the kernel that userspace will handle radar
8324 * events when they happen. Otherwise a switch to a channel
8325 * requiring DFS will be rejected.
8327 need_handle_dfs_flag = false;
8329 /* useless if AP is not running */
8330 if (!wdev->beacon_interval)
8333 case NL80211_IFTYPE_ADHOC:
8334 if (!wdev->ssid_len)
8337 case NL80211_IFTYPE_MESH_POINT:
8338 if (!wdev->mesh_id_len)
8345 memset(¶ms, 0, sizeof(params));
8346 params.beacon_csa.ftm_responder = -1;
8348 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
8349 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
8352 /* only important for AP, IBSS and mesh create IEs internally */
8353 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
8356 /* Even though the attribute is u32, the specification says
8357 * u8, so let's make sure we don't overflow.
8359 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
8363 params.count = cs_count;
8365 if (!need_new_beacon)
8368 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon_after);
8372 err = nla_parse_nested_deprecated(csa_attrs, NL80211_ATTR_MAX,
8373 info->attrs[NL80211_ATTR_CSA_IES],
8374 nl80211_policy, info->extack);
8378 err = nl80211_parse_beacon(rdev, csa_attrs, ¶ms.beacon_csa);
8382 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
8385 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8386 if (!len || (len % sizeof(u16)))
8389 params.n_counter_offsets_beacon = len / sizeof(u16);
8390 if (rdev->wiphy.max_num_csa_counters &&
8391 (params.n_counter_offsets_beacon >
8392 rdev->wiphy.max_num_csa_counters))
8395 params.counter_offsets_beacon =
8396 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8398 /* sanity checks - counters should fit and be the same */
8399 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
8400 u16 offset = params.counter_offsets_beacon[i];
8402 if (offset >= params.beacon_csa.tail_len)
8405 if (params.beacon_csa.tail[offset] != params.count)
8409 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
8410 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8411 if (!len || (len % sizeof(u16)))
8414 params.n_counter_offsets_presp = len / sizeof(u16);
8415 if (rdev->wiphy.max_num_csa_counters &&
8416 (params.n_counter_offsets_presp >
8417 rdev->wiphy.max_num_csa_counters))
8420 params.counter_offsets_presp =
8421 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8423 /* sanity checks - counters should fit and be the same */
8424 for (i = 0; i < params.n_counter_offsets_presp; i++) {
8425 u16 offset = params.counter_offsets_presp[i];
8427 if (offset >= params.beacon_csa.probe_resp_len)
8430 if (params.beacon_csa.probe_resp[offset] !=
8437 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
8441 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
8445 err = cfg80211_chandef_dfs_required(wdev->wiphy,
8452 params.radar_required = true;
8453 if (need_handle_dfs_flag &&
8454 !nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS])) {
8459 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
8460 params.block_tx = true;
8463 err = rdev_channel_switch(rdev, dev, ¶ms);
8469 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
8471 struct cfg80211_registered_device *rdev,
8472 struct wireless_dev *wdev,
8473 struct cfg80211_internal_bss *intbss)
8475 struct cfg80211_bss *res = &intbss->pub;
8476 const struct cfg80211_bss_ies *ies;
8480 ASSERT_WDEV_LOCK(wdev);
8482 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
8483 NL80211_CMD_NEW_SCAN_RESULTS);
8487 genl_dump_check_consistent(cb, hdr);
8489 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
8490 goto nla_put_failure;
8492 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
8493 goto nla_put_failure;
8494 if (nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
8496 goto nla_put_failure;
8498 bss = nla_nest_start_noflag(msg, NL80211_ATTR_BSS);
8500 goto nla_put_failure;
8501 if ((!is_zero_ether_addr(res->bssid) &&
8502 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
8503 goto nla_put_failure;
8506 /* indicate whether we have probe response data or not */
8507 if (rcu_access_pointer(res->proberesp_ies) &&
8508 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
8509 goto fail_unlock_rcu;
8511 /* this pointer prefers to be pointed to probe response data
8512 * but is always valid
8514 ies = rcu_dereference(res->ies);
8516 if (nla_put_u64_64bit(msg, NL80211_BSS_TSF, ies->tsf,
8518 goto fail_unlock_rcu;
8519 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
8520 ies->len, ies->data))
8521 goto fail_unlock_rcu;
8524 /* and this pointer is always (unless driver didn't know) beacon data */
8525 ies = rcu_dereference(res->beacon_ies);
8526 if (ies && ies->from_beacon) {
8527 if (nla_put_u64_64bit(msg, NL80211_BSS_BEACON_TSF, ies->tsf,
8529 goto fail_unlock_rcu;
8530 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
8531 ies->len, ies->data))
8532 goto fail_unlock_rcu;
8536 if (res->beacon_interval &&
8537 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
8538 goto nla_put_failure;
8539 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
8540 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
8541 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
8542 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
8543 jiffies_to_msecs(jiffies - intbss->ts)))
8544 goto nla_put_failure;
8546 if (intbss->parent_tsf &&
8547 (nla_put_u64_64bit(msg, NL80211_BSS_PARENT_TSF,
8548 intbss->parent_tsf, NL80211_BSS_PAD) ||
8549 nla_put(msg, NL80211_BSS_PARENT_BSSID, ETH_ALEN,
8550 intbss->parent_bssid)))
8551 goto nla_put_failure;
8553 if (intbss->ts_boottime &&
8554 nla_put_u64_64bit(msg, NL80211_BSS_LAST_SEEN_BOOTTIME,
8555 intbss->ts_boottime, NL80211_BSS_PAD))
8556 goto nla_put_failure;
8558 if (!nl80211_put_signal(msg, intbss->pub.chains,
8559 intbss->pub.chain_signal,
8560 NL80211_BSS_CHAIN_SIGNAL))
8561 goto nla_put_failure;
8563 switch (rdev->wiphy.signal_type) {
8564 case CFG80211_SIGNAL_TYPE_MBM:
8565 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
8566 goto nla_put_failure;
8568 case CFG80211_SIGNAL_TYPE_UNSPEC:
8569 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
8570 goto nla_put_failure;
8576 switch (wdev->iftype) {
8577 case NL80211_IFTYPE_P2P_CLIENT:
8578 case NL80211_IFTYPE_STATION:
8579 if (intbss == wdev->current_bss &&
8580 nla_put_u32(msg, NL80211_BSS_STATUS,
8581 NL80211_BSS_STATUS_ASSOCIATED))
8582 goto nla_put_failure;
8584 case NL80211_IFTYPE_ADHOC:
8585 if (intbss == wdev->current_bss &&
8586 nla_put_u32(msg, NL80211_BSS_STATUS,
8587 NL80211_BSS_STATUS_IBSS_JOINED))
8588 goto nla_put_failure;
8594 nla_nest_end(msg, bss);
8596 genlmsg_end(msg, hdr);
8602 genlmsg_cancel(msg, hdr);
8606 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
8608 struct cfg80211_registered_device *rdev;
8609 struct cfg80211_internal_bss *scan;
8610 struct wireless_dev *wdev;
8611 int start = cb->args[2], idx = 0;
8615 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8622 spin_lock_bh(&rdev->bss_lock);
8625 * dump_scan will be called multiple times to break up the scan results
8626 * into multiple messages. It is unlikely that any more bss-es will be
8627 * expired after the first call, so only call only call this on the
8628 * first dump_scan invocation.
8631 cfg80211_bss_expire(rdev);
8633 cb->seq = rdev->bss_generation;
8635 list_for_each_entry(scan, &rdev->bss_list, list) {
8638 if (nl80211_send_bss(skb, cb,
8639 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8640 rdev, wdev, scan) < 0) {
8646 spin_unlock_bh(&rdev->bss_lock);
8655 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
8656 int flags, struct net_device *dev,
8657 bool allow_radio_stats,
8658 struct survey_info *survey)
8661 struct nlattr *infoattr;
8663 /* skip radio stats if userspace didn't request them */
8664 if (!survey->channel && !allow_radio_stats)
8667 hdr = nl80211hdr_put(msg, portid, seq, flags,
8668 NL80211_CMD_NEW_SURVEY_RESULTS);
8672 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
8673 goto nla_put_failure;
8675 infoattr = nla_nest_start_noflag(msg, NL80211_ATTR_SURVEY_INFO);
8677 goto nla_put_failure;
8679 if (survey->channel &&
8680 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
8681 survey->channel->center_freq))
8682 goto nla_put_failure;
8684 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
8685 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
8686 goto nla_put_failure;
8687 if ((survey->filled & SURVEY_INFO_IN_USE) &&
8688 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
8689 goto nla_put_failure;
8690 if ((survey->filled & SURVEY_INFO_TIME) &&
8691 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME,
8692 survey->time, NL80211_SURVEY_INFO_PAD))
8693 goto nla_put_failure;
8694 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
8695 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_BUSY,
8696 survey->time_busy, NL80211_SURVEY_INFO_PAD))
8697 goto nla_put_failure;
8698 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
8699 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
8700 survey->time_ext_busy, NL80211_SURVEY_INFO_PAD))
8701 goto nla_put_failure;
8702 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
8703 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_RX,
8704 survey->time_rx, NL80211_SURVEY_INFO_PAD))
8705 goto nla_put_failure;
8706 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
8707 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_TX,
8708 survey->time_tx, NL80211_SURVEY_INFO_PAD))
8709 goto nla_put_failure;
8710 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
8711 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_SCAN,
8712 survey->time_scan, NL80211_SURVEY_INFO_PAD))
8713 goto nla_put_failure;
8715 nla_nest_end(msg, infoattr);
8717 genlmsg_end(msg, hdr);
8721 genlmsg_cancel(msg, hdr);
8725 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
8727 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
8728 struct survey_info survey;
8729 struct cfg80211_registered_device *rdev;
8730 struct wireless_dev *wdev;
8731 int survey_idx = cb->args[2];
8736 res = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8740 /* prepare_wdev_dump parsed the attributes */
8741 radio_stats = attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
8743 if (!wdev->netdev) {
8748 if (!rdev->ops->dump_survey) {
8754 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
8760 /* don't send disabled channels, but do send non-channel data */
8761 if (survey.channel &&
8762 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
8767 if (nl80211_send_survey(skb,
8768 NETLINK_CB(cb->skb).portid,
8769 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8770 wdev->netdev, radio_stats, &survey) < 0)
8776 cb->args[2] = survey_idx;
8783 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
8785 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
8786 NL80211_WPA_VERSION_2 |
8787 NL80211_WPA_VERSION_3));
8790 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
8792 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8793 struct net_device *dev = info->user_ptr[1];
8794 struct ieee80211_channel *chan;
8795 const u8 *bssid, *ssid, *ie = NULL, *auth_data = NULL;
8796 int err, ssid_len, ie_len = 0, auth_data_len = 0;
8797 enum nl80211_auth_type auth_type;
8798 struct key_parse key;
8799 bool local_state_change;
8801 if (!info->attrs[NL80211_ATTR_MAC])
8804 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
8807 if (!info->attrs[NL80211_ATTR_SSID])
8810 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8813 err = nl80211_parse_key(info, &key);
8818 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
8820 if (!key.p.key || !key.p.key_len)
8822 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
8823 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
8824 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
8825 key.p.key_len != WLAN_KEY_LEN_WEP104))
8838 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
8839 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
8848 if (!rdev->ops->auth)
8851 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8852 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8855 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8856 chan = nl80211_get_valid_chan(&rdev->wiphy,
8857 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8861 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8862 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8864 if (info->attrs[NL80211_ATTR_IE]) {
8865 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8866 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8869 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
8870 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
8873 if ((auth_type == NL80211_AUTHTYPE_SAE ||
8874 auth_type == NL80211_AUTHTYPE_FILS_SK ||
8875 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
8876 auth_type == NL80211_AUTHTYPE_FILS_PK) &&
8877 !info->attrs[NL80211_ATTR_AUTH_DATA])
8880 if (info->attrs[NL80211_ATTR_AUTH_DATA]) {
8881 if (auth_type != NL80211_AUTHTYPE_SAE &&
8882 auth_type != NL80211_AUTHTYPE_FILS_SK &&
8883 auth_type != NL80211_AUTHTYPE_FILS_SK_PFS &&
8884 auth_type != NL80211_AUTHTYPE_FILS_PK)
8886 auth_data = nla_data(info->attrs[NL80211_ATTR_AUTH_DATA]);
8887 auth_data_len = nla_len(info->attrs[NL80211_ATTR_AUTH_DATA]);
8888 /* need to include at least Auth Transaction and Status Code */
8889 if (auth_data_len < 4)
8893 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8896 * Since we no longer track auth state, ignore
8897 * requests to only change local state.
8899 if (local_state_change)
8902 wdev_lock(dev->ieee80211_ptr);
8903 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
8904 ssid, ssid_len, ie, ie_len,
8905 key.p.key, key.p.key_len, key.idx,
8906 auth_data, auth_data_len);
8907 wdev_unlock(dev->ieee80211_ptr);
8911 static int validate_pae_over_nl80211(struct cfg80211_registered_device *rdev,
8912 struct genl_info *info)
8914 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8915 GENL_SET_ERR_MSG(info, "SOCKET_OWNER not set");
8919 if (!rdev->ops->tx_control_port ||
8920 !wiphy_ext_feature_isset(&rdev->wiphy,
8921 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
8927 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
8928 struct genl_info *info,
8929 struct cfg80211_crypto_settings *settings,
8932 memset(settings, 0, sizeof(*settings));
8934 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
8936 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
8939 proto = nla_get_u16(
8940 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
8941 settings->control_port_ethertype = cpu_to_be16(proto);
8942 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
8945 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
8946 settings->control_port_no_encrypt = true;
8948 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
8950 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
8951 int r = validate_pae_over_nl80211(rdev, info);
8956 settings->control_port_over_nl80211 = true;
8959 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
8963 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8964 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8965 settings->n_ciphers_pairwise = len / sizeof(u32);
8967 if (len % sizeof(u32))
8970 if (settings->n_ciphers_pairwise > cipher_limit)
8973 memcpy(settings->ciphers_pairwise, data, len);
8975 for (i = 0; i < settings->n_ciphers_pairwise; i++)
8976 if (!cfg80211_supported_cipher_suite(
8978 settings->ciphers_pairwise[i]))
8982 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
8983 settings->cipher_group =
8984 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
8985 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
8986 settings->cipher_group))
8990 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
8991 settings->wpa_versions =
8992 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
8993 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
8997 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
9001 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
9002 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
9003 settings->n_akm_suites = len / sizeof(u32);
9005 if (len % sizeof(u32))
9008 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
9011 memcpy(settings->akm_suites, data, len);
9014 if (info->attrs[NL80211_ATTR_PMK]) {
9015 if (nla_len(info->attrs[NL80211_ATTR_PMK]) != WLAN_PMK_LEN)
9017 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9018 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK))
9020 settings->psk = nla_data(info->attrs[NL80211_ATTR_PMK]);
9023 if (info->attrs[NL80211_ATTR_SAE_PASSWORD]) {
9024 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9025 NL80211_EXT_FEATURE_SAE_OFFLOAD))
9028 nla_data(info->attrs[NL80211_ATTR_SAE_PASSWORD]);
9029 settings->sae_pwd_len =
9030 nla_len(info->attrs[NL80211_ATTR_SAE_PASSWORD]);
9036 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
9038 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9039 struct net_device *dev = info->user_ptr[1];
9040 struct ieee80211_channel *chan;
9041 struct cfg80211_assoc_request req = {};
9042 const u8 *bssid, *ssid;
9043 int err, ssid_len = 0;
9045 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9046 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9049 if (!info->attrs[NL80211_ATTR_MAC] ||
9050 !info->attrs[NL80211_ATTR_SSID] ||
9051 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
9054 if (!rdev->ops->assoc)
9057 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9058 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9061 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9063 chan = nl80211_get_valid_chan(&rdev->wiphy,
9064 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9068 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9069 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9071 if (info->attrs[NL80211_ATTR_IE]) {
9072 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9073 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9076 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9077 enum nl80211_mfp mfp =
9078 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9079 if (mfp == NL80211_MFP_REQUIRED)
9081 else if (mfp != NL80211_MFP_NO)
9085 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9086 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9088 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9089 req.flags |= ASSOC_REQ_DISABLE_HT;
9091 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9092 memcpy(&req.ht_capa_mask,
9093 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9094 sizeof(req.ht_capa_mask));
9096 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9097 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9099 memcpy(&req.ht_capa,
9100 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9101 sizeof(req.ht_capa));
9104 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9105 req.flags |= ASSOC_REQ_DISABLE_VHT;
9107 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9108 memcpy(&req.vht_capa_mask,
9109 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9110 sizeof(req.vht_capa_mask));
9112 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9113 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9115 memcpy(&req.vht_capa,
9116 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9117 sizeof(req.vht_capa));
9120 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9121 if (!((rdev->wiphy.features &
9122 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9123 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9124 !wiphy_ext_feature_isset(&rdev->wiphy,
9125 NL80211_EXT_FEATURE_RRM))
9127 req.flags |= ASSOC_REQ_USE_RRM;
9130 if (info->attrs[NL80211_ATTR_FILS_KEK]) {
9131 req.fils_kek = nla_data(info->attrs[NL80211_ATTR_FILS_KEK]);
9132 req.fils_kek_len = nla_len(info->attrs[NL80211_ATTR_FILS_KEK]);
9133 if (!info->attrs[NL80211_ATTR_FILS_NONCES])
9136 nla_data(info->attrs[NL80211_ATTR_FILS_NONCES]);
9139 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
9141 wdev_lock(dev->ieee80211_ptr);
9143 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
9144 ssid, ssid_len, &req);
9146 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9147 dev->ieee80211_ptr->conn_owner_nlportid =
9149 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9153 wdev_unlock(dev->ieee80211_ptr);
9159 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
9161 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9162 struct net_device *dev = info->user_ptr[1];
9163 const u8 *ie = NULL, *bssid;
9164 int ie_len = 0, err;
9166 bool local_state_change;
9168 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9169 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9172 if (!info->attrs[NL80211_ATTR_MAC])
9175 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9178 if (!rdev->ops->deauth)
9181 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9182 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9185 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9187 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9188 if (reason_code == 0) {
9189 /* Reason Code 0 is reserved */
9193 if (info->attrs[NL80211_ATTR_IE]) {
9194 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9195 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9198 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9200 wdev_lock(dev->ieee80211_ptr);
9201 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
9202 local_state_change);
9203 wdev_unlock(dev->ieee80211_ptr);
9207 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
9209 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9210 struct net_device *dev = info->user_ptr[1];
9211 const u8 *ie = NULL, *bssid;
9212 int ie_len = 0, err;
9214 bool local_state_change;
9216 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9217 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9220 if (!info->attrs[NL80211_ATTR_MAC])
9223 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9226 if (!rdev->ops->disassoc)
9229 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9230 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9233 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9235 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9236 if (reason_code == 0) {
9237 /* Reason Code 0 is reserved */
9241 if (info->attrs[NL80211_ATTR_IE]) {
9242 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9243 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9246 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9248 wdev_lock(dev->ieee80211_ptr);
9249 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
9250 local_state_change);
9251 wdev_unlock(dev->ieee80211_ptr);
9256 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
9257 int mcast_rate[NUM_NL80211_BANDS],
9260 struct wiphy *wiphy = &rdev->wiphy;
9264 for (band = 0; band < NUM_NL80211_BANDS; band++) {
9265 struct ieee80211_supported_band *sband;
9267 sband = wiphy->bands[band];
9271 for (i = 0; i < sband->n_bitrates; i++) {
9272 if (sband->bitrates[i].bitrate == rateval) {
9273 mcast_rate[band] = i + 1;
9283 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
9285 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9286 struct net_device *dev = info->user_ptr[1];
9287 struct cfg80211_ibss_params ibss;
9288 struct wiphy *wiphy;
9289 struct cfg80211_cached_keys *connkeys = NULL;
9292 memset(&ibss, 0, sizeof(ibss));
9294 if (!info->attrs[NL80211_ATTR_SSID] ||
9295 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9298 ibss.beacon_interval = 100;
9300 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL])
9301 ibss.beacon_interval =
9302 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
9304 err = cfg80211_validate_beacon_int(rdev, NL80211_IFTYPE_ADHOC,
9305 ibss.beacon_interval);
9309 if (!rdev->ops->join_ibss)
9312 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9315 wiphy = &rdev->wiphy;
9317 if (info->attrs[NL80211_ATTR_MAC]) {
9318 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9320 if (!is_valid_ether_addr(ibss.bssid))
9323 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9324 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9326 if (info->attrs[NL80211_ATTR_IE]) {
9327 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9328 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9331 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
9335 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
9336 NL80211_IFTYPE_ADHOC))
9339 switch (ibss.chandef.width) {
9340 case NL80211_CHAN_WIDTH_5:
9341 case NL80211_CHAN_WIDTH_10:
9342 case NL80211_CHAN_WIDTH_20_NOHT:
9344 case NL80211_CHAN_WIDTH_20:
9345 case NL80211_CHAN_WIDTH_40:
9346 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9349 case NL80211_CHAN_WIDTH_80:
9350 case NL80211_CHAN_WIDTH_80P80:
9351 case NL80211_CHAN_WIDTH_160:
9352 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9354 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9355 NL80211_EXT_FEATURE_VHT_IBSS))
9362 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
9363 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
9365 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
9367 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9369 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9370 struct ieee80211_supported_band *sband =
9371 wiphy->bands[ibss.chandef.chan->band];
9373 err = ieee80211_get_ratemask(sband, rates, n_rates,
9379 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9380 memcpy(&ibss.ht_capa_mask,
9381 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9382 sizeof(ibss.ht_capa_mask));
9384 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9385 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9387 memcpy(&ibss.ht_capa,
9388 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9389 sizeof(ibss.ht_capa));
9392 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
9393 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
9394 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
9397 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9400 connkeys = nl80211_parse_connkeys(rdev, info, &no_ht);
9401 if (IS_ERR(connkeys))
9402 return PTR_ERR(connkeys);
9404 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
9412 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
9414 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
9415 int r = validate_pae_over_nl80211(rdev, info);
9422 ibss.control_port_over_nl80211 = true;
9425 ibss.userspace_handles_dfs =
9426 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
9428 wdev_lock(dev->ieee80211_ptr);
9429 err = __cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
9432 else if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
9433 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9434 wdev_unlock(dev->ieee80211_ptr);
9439 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
9441 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9442 struct net_device *dev = info->user_ptr[1];
9444 if (!rdev->ops->leave_ibss)
9447 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9450 return cfg80211_leave_ibss(rdev, dev, false);
9453 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
9455 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9456 struct net_device *dev = info->user_ptr[1];
9457 int mcast_rate[NUM_NL80211_BANDS];
9461 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
9462 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
9463 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_OCB)
9466 if (!rdev->ops->set_mcast_rate)
9469 memset(mcast_rate, 0, sizeof(mcast_rate));
9471 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
9474 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
9475 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
9478 err = rdev_set_mcast_rate(rdev, dev, mcast_rate);
9483 static struct sk_buff *
9484 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
9485 struct wireless_dev *wdev, int approxlen,
9486 u32 portid, u32 seq, enum nl80211_commands cmd,
9487 enum nl80211_attrs attr,
9488 const struct nl80211_vendor_cmd_info *info,
9491 struct sk_buff *skb;
9493 struct nlattr *data;
9495 skb = nlmsg_new(approxlen + 100, gfp);
9499 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
9505 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
9506 goto nla_put_failure;
9509 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
9511 goto nla_put_failure;
9512 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
9514 goto nla_put_failure;
9518 if (nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
9519 wdev_id(wdev), NL80211_ATTR_PAD))
9520 goto nla_put_failure;
9522 nla_put_u32(skb, NL80211_ATTR_IFINDEX,
9523 wdev->netdev->ifindex))
9524 goto nla_put_failure;
9527 data = nla_nest_start_noflag(skb, attr);
9529 goto nla_put_failure;
9531 ((void **)skb->cb)[0] = rdev;
9532 ((void **)skb->cb)[1] = hdr;
9533 ((void **)skb->cb)[2] = data;
9542 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
9543 struct wireless_dev *wdev,
9544 enum nl80211_commands cmd,
9545 enum nl80211_attrs attr,
9546 unsigned int portid,
9547 int vendor_event_idx,
9548 int approxlen, gfp_t gfp)
9550 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9551 const struct nl80211_vendor_cmd_info *info;
9554 case NL80211_CMD_TESTMODE:
9555 if (WARN_ON(vendor_event_idx != -1))
9559 case NL80211_CMD_VENDOR:
9560 if (WARN_ON(vendor_event_idx < 0 ||
9561 vendor_event_idx >= wiphy->n_vendor_events))
9563 info = &wiphy->vendor_events[vendor_event_idx];
9570 return __cfg80211_alloc_vendor_skb(rdev, wdev, approxlen, portid, 0,
9571 cmd, attr, info, gfp);
9573 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
9575 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
9577 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9578 void *hdr = ((void **)skb->cb)[1];
9579 struct nlmsghdr *nlhdr = nlmsg_hdr(skb);
9580 struct nlattr *data = ((void **)skb->cb)[2];
9581 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
9583 /* clear CB data for netlink core to own from now on */
9584 memset(skb->cb, 0, sizeof(skb->cb));
9586 nla_nest_end(skb, data);
9587 genlmsg_end(skb, hdr);
9589 if (nlhdr->nlmsg_pid) {
9590 genlmsg_unicast(wiphy_net(&rdev->wiphy), skb,
9593 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
9594 mcgrp = NL80211_MCGRP_VENDOR;
9596 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
9597 skb, 0, mcgrp, gfp);
9600 EXPORT_SYMBOL(__cfg80211_send_event_skb);
9602 #ifdef CONFIG_NL80211_TESTMODE
9603 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
9605 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9606 struct wireless_dev *wdev =
9607 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9610 if (!rdev->ops->testmode_cmd)
9614 err = PTR_ERR(wdev);
9618 } else if (wdev->wiphy != &rdev->wiphy) {
9622 if (!info->attrs[NL80211_ATTR_TESTDATA])
9625 rdev->cur_cmd_info = info;
9626 err = rdev_testmode_cmd(rdev, wdev,
9627 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
9628 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
9629 rdev->cur_cmd_info = NULL;
9634 static int nl80211_testmode_dump(struct sk_buff *skb,
9635 struct netlink_callback *cb)
9637 struct cfg80211_registered_device *rdev;
9647 * 0 is a valid index, but not valid for args[0],
9648 * so we need to offset by 1.
9650 phy_idx = cb->args[0] - 1;
9652 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
9658 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
9660 err = nlmsg_parse_deprecated(cb->nlh,
9661 GENL_HDRLEN + nl80211_fam.hdrsize,
9662 attrbuf, nl80211_fam.maxattr,
9663 nl80211_policy, NULL);
9667 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
9669 err = PTR_ERR(rdev);
9672 phy_idx = rdev->wiphy_idx;
9674 if (attrbuf[NL80211_ATTR_TESTDATA])
9675 cb->args[1] = (long)attrbuf[NL80211_ATTR_TESTDATA];
9679 data = nla_data((void *)cb->args[1]);
9680 data_len = nla_len((void *)cb->args[1]);
9683 if (!rdev->ops->testmode_dump) {
9689 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
9690 cb->nlh->nlmsg_seq, NLM_F_MULTI,
9691 NL80211_CMD_TESTMODE);
9692 struct nlattr *tmdata;
9697 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
9698 genlmsg_cancel(skb, hdr);
9702 tmdata = nla_nest_start_noflag(skb, NL80211_ATTR_TESTDATA);
9704 genlmsg_cancel(skb, hdr);
9707 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
9708 nla_nest_end(skb, tmdata);
9710 if (err == -ENOBUFS || err == -ENOENT) {
9711 genlmsg_cancel(skb, hdr);
9714 genlmsg_cancel(skb, hdr);
9718 genlmsg_end(skb, hdr);
9723 cb->args[0] = phy_idx + 1;
9730 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
9732 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9733 struct net_device *dev = info->user_ptr[1];
9734 struct cfg80211_connect_params connect;
9735 struct wiphy *wiphy;
9736 struct cfg80211_cached_keys *connkeys = NULL;
9739 memset(&connect, 0, sizeof(connect));
9741 if (!info->attrs[NL80211_ATTR_SSID] ||
9742 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9745 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9747 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9748 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
9749 NL80211_CMD_CONNECT))
9752 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
9754 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
9756 if (info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS] &&
9757 !wiphy_ext_feature_isset(&rdev->wiphy,
9758 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
9760 connect.want_1x = info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS];
9762 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
9763 NL80211_MAX_NR_CIPHER_SUITES);
9767 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9768 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9771 wiphy = &rdev->wiphy;
9773 connect.bg_scan_period = -1;
9774 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
9775 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
9776 connect.bg_scan_period =
9777 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
9780 if (info->attrs[NL80211_ATTR_MAC])
9781 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9782 else if (info->attrs[NL80211_ATTR_MAC_HINT])
9783 connect.bssid_hint =
9784 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
9785 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9786 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9788 if (info->attrs[NL80211_ATTR_IE]) {
9789 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9790 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9793 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9794 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9795 if (connect.mfp == NL80211_MFP_OPTIONAL &&
9796 !wiphy_ext_feature_isset(&rdev->wiphy,
9797 NL80211_EXT_FEATURE_MFP_OPTIONAL))
9800 connect.mfp = NL80211_MFP_NO;
9803 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9804 connect.prev_bssid =
9805 nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9807 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
9808 connect.channel = nl80211_get_valid_chan(
9809 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9810 if (!connect.channel)
9812 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
9813 connect.channel_hint = nl80211_get_valid_chan(
9814 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
9815 if (!connect.channel_hint)
9819 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9820 connkeys = nl80211_parse_connkeys(rdev, info, NULL);
9821 if (IS_ERR(connkeys))
9822 return PTR_ERR(connkeys);
9825 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9826 connect.flags |= ASSOC_REQ_DISABLE_HT;
9828 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9829 memcpy(&connect.ht_capa_mask,
9830 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9831 sizeof(connect.ht_capa_mask));
9833 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9834 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
9838 memcpy(&connect.ht_capa,
9839 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9840 sizeof(connect.ht_capa));
9843 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9844 connect.flags |= ASSOC_REQ_DISABLE_VHT;
9846 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9847 memcpy(&connect.vht_capa_mask,
9848 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9849 sizeof(connect.vht_capa_mask));
9851 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9852 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
9856 memcpy(&connect.vht_capa,
9857 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9858 sizeof(connect.vht_capa));
9861 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9862 if (!((rdev->wiphy.features &
9863 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9864 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9865 !wiphy_ext_feature_isset(&rdev->wiphy,
9866 NL80211_EXT_FEATURE_RRM)) {
9870 connect.flags |= ASSOC_REQ_USE_RRM;
9873 connect.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
9874 if (connect.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ]) {
9879 if (info->attrs[NL80211_ATTR_BSS_SELECT]) {
9880 /* bss selection makes no sense if bssid is set */
9881 if (connect.bssid) {
9886 err = parse_bss_select(info->attrs[NL80211_ATTR_BSS_SELECT],
9887 wiphy, &connect.bss_select);
9894 if (wiphy_ext_feature_isset(&rdev->wiphy,
9895 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
9896 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9897 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9898 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9899 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9900 connect.fils_erp_username =
9901 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9902 connect.fils_erp_username_len =
9903 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9904 connect.fils_erp_realm =
9905 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9906 connect.fils_erp_realm_len =
9907 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9908 connect.fils_erp_next_seq_num =
9910 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9911 connect.fils_erp_rrk =
9912 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9913 connect.fils_erp_rrk_len =
9914 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9915 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9916 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9917 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9918 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9923 if (nla_get_flag(info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])) {
9924 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9926 GENL_SET_ERR_MSG(info,
9927 "external auth requires connection ownership");
9930 connect.flags |= CONNECT_REQ_EXTERNAL_AUTH_SUPPORT;
9933 wdev_lock(dev->ieee80211_ptr);
9935 err = cfg80211_connect(rdev, dev, &connect, connkeys,
9936 connect.prev_bssid);
9940 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9941 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9943 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9944 connect.bssid, ETH_ALEN);
9946 memset(dev->ieee80211_ptr->disconnect_bssid,
9950 wdev_unlock(dev->ieee80211_ptr);
9955 static int nl80211_update_connect_params(struct sk_buff *skb,
9956 struct genl_info *info)
9958 struct cfg80211_connect_params connect = {};
9959 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9960 struct net_device *dev = info->user_ptr[1];
9961 struct wireless_dev *wdev = dev->ieee80211_ptr;
9962 bool fils_sk_offload;
9967 if (!rdev->ops->update_connect_params)
9970 if (info->attrs[NL80211_ATTR_IE]) {
9971 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9972 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9973 changed |= UPDATE_ASSOC_IES;
9976 fils_sk_offload = wiphy_ext_feature_isset(&rdev->wiphy,
9977 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD);
9980 * when driver supports fils-sk offload all attributes must be
9981 * provided. So the else covers "fils-sk-not-all" and
9984 if (fils_sk_offload &&
9985 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9986 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9987 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9988 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9989 connect.fils_erp_username =
9990 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9991 connect.fils_erp_username_len =
9992 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9993 connect.fils_erp_realm =
9994 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9995 connect.fils_erp_realm_len =
9996 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9997 connect.fils_erp_next_seq_num =
9999 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
10000 connect.fils_erp_rrk =
10001 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
10002 connect.fils_erp_rrk_len =
10003 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
10004 changed |= UPDATE_FILS_ERP_INFO;
10005 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
10006 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
10007 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
10008 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
10012 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
10013 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
10014 if (!nl80211_valid_auth_type(rdev, auth_type,
10015 NL80211_CMD_CONNECT))
10018 if (auth_type == NL80211_AUTHTYPE_FILS_SK &&
10019 fils_sk_offload && !(changed & UPDATE_FILS_ERP_INFO))
10022 connect.auth_type = auth_type;
10023 changed |= UPDATE_AUTH_TYPE;
10026 wdev_lock(dev->ieee80211_ptr);
10027 if (!wdev->current_bss)
10030 ret = rdev_update_connect_params(rdev, dev, &connect, changed);
10031 wdev_unlock(dev->ieee80211_ptr);
10036 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
10038 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10039 struct net_device *dev = info->user_ptr[1];
10043 if (dev->ieee80211_ptr->conn_owner_nlportid &&
10044 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
10047 if (!info->attrs[NL80211_ATTR_REASON_CODE])
10048 reason = WLAN_REASON_DEAUTH_LEAVING;
10050 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
10055 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10056 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
10057 return -EOPNOTSUPP;
10059 wdev_lock(dev->ieee80211_ptr);
10060 ret = cfg80211_disconnect(rdev, dev, reason, true);
10061 wdev_unlock(dev->ieee80211_ptr);
10065 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
10067 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10071 if (info->attrs[NL80211_ATTR_PID]) {
10072 u32 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
10074 net = get_net_ns_by_pid(pid);
10075 } else if (info->attrs[NL80211_ATTR_NETNS_FD]) {
10076 u32 fd = nla_get_u32(info->attrs[NL80211_ATTR_NETNS_FD]);
10078 net = get_net_ns_by_fd(fd);
10084 return PTR_ERR(net);
10088 /* check if anything to do */
10089 if (!net_eq(wiphy_net(&rdev->wiphy), net))
10090 err = cfg80211_switch_netns(rdev, net);
10096 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
10098 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10099 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
10100 struct cfg80211_pmksa *pmksa) = NULL;
10101 struct net_device *dev = info->user_ptr[1];
10102 struct cfg80211_pmksa pmksa;
10104 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
10106 if (!info->attrs[NL80211_ATTR_PMKID])
10109 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
10111 if (info->attrs[NL80211_ATTR_MAC]) {
10112 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
10113 } else if (info->attrs[NL80211_ATTR_SSID] &&
10114 info->attrs[NL80211_ATTR_FILS_CACHE_ID] &&
10115 (info->genlhdr->cmd == NL80211_CMD_DEL_PMKSA ||
10116 info->attrs[NL80211_ATTR_PMK])) {
10117 pmksa.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
10118 pmksa.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
10120 nla_data(info->attrs[NL80211_ATTR_FILS_CACHE_ID]);
10124 if (info->attrs[NL80211_ATTR_PMK]) {
10125 pmksa.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
10126 pmksa.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
10129 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10130 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT &&
10131 !(dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP &&
10132 wiphy_ext_feature_isset(&rdev->wiphy,
10133 NL80211_EXT_FEATURE_AP_PMKSA_CACHING)))
10134 return -EOPNOTSUPP;
10136 switch (info->genlhdr->cmd) {
10137 case NL80211_CMD_SET_PMKSA:
10138 rdev_ops = rdev->ops->set_pmksa;
10140 case NL80211_CMD_DEL_PMKSA:
10141 rdev_ops = rdev->ops->del_pmksa;
10149 return -EOPNOTSUPP;
10151 return rdev_ops(&rdev->wiphy, dev, &pmksa);
10154 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
10156 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10157 struct net_device *dev = info->user_ptr[1];
10159 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10160 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
10161 return -EOPNOTSUPP;
10163 if (!rdev->ops->flush_pmksa)
10164 return -EOPNOTSUPP;
10166 return rdev_flush_pmksa(rdev, dev);
10169 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
10171 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10172 struct net_device *dev = info->user_ptr[1];
10173 u8 action_code, dialog_token;
10174 u32 peer_capability = 0;
10179 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10180 !rdev->ops->tdls_mgmt)
10181 return -EOPNOTSUPP;
10183 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
10184 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
10185 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
10186 !info->attrs[NL80211_ATTR_IE] ||
10187 !info->attrs[NL80211_ATTR_MAC])
10190 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10191 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
10192 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
10193 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
10194 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
10195 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
10197 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
10199 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
10200 dialog_token, status_code, peer_capability,
10202 nla_data(info->attrs[NL80211_ATTR_IE]),
10203 nla_len(info->attrs[NL80211_ATTR_IE]));
10206 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
10208 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10209 struct net_device *dev = info->user_ptr[1];
10210 enum nl80211_tdls_operation operation;
10213 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10214 !rdev->ops->tdls_oper)
10215 return -EOPNOTSUPP;
10217 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
10218 !info->attrs[NL80211_ATTR_MAC])
10221 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
10222 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10224 return rdev_tdls_oper(rdev, dev, peer, operation);
10227 static int nl80211_remain_on_channel(struct sk_buff *skb,
10228 struct genl_info *info)
10230 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10231 struct wireless_dev *wdev = info->user_ptr[1];
10232 struct cfg80211_chan_def chandef;
10233 const struct cfg80211_chan_def *compat_chandef;
10234 struct sk_buff *msg;
10240 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
10241 !info->attrs[NL80211_ATTR_DURATION])
10244 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10246 if (!rdev->ops->remain_on_channel ||
10247 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
10248 return -EOPNOTSUPP;
10251 * We should be on that channel for at least a minimum amount of
10252 * time (10ms) but no longer than the driver supports.
10254 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10255 duration > rdev->wiphy.max_remain_on_channel_duration)
10258 err = nl80211_parse_chandef(rdev, info, &chandef);
10263 if (!cfg80211_off_channel_oper_allowed(wdev) &&
10264 !cfg80211_chandef_identical(&wdev->chandef, &chandef)) {
10265 compat_chandef = cfg80211_chandef_compatible(&wdev->chandef,
10267 if (compat_chandef != &chandef) {
10274 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10278 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10279 NL80211_CMD_REMAIN_ON_CHANNEL);
10285 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
10286 duration, &cookie);
10291 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10293 goto nla_put_failure;
10295 genlmsg_end(msg, hdr);
10297 return genlmsg_reply(msg, info);
10306 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
10307 struct genl_info *info)
10309 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10310 struct wireless_dev *wdev = info->user_ptr[1];
10313 if (!info->attrs[NL80211_ATTR_COOKIE])
10316 if (!rdev->ops->cancel_remain_on_channel)
10317 return -EOPNOTSUPP;
10319 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10321 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
10324 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
10325 struct genl_info *info)
10327 struct cfg80211_bitrate_mask mask;
10328 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10329 struct net_device *dev = info->user_ptr[1];
10332 if (!rdev->ops->set_bitrate_mask)
10333 return -EOPNOTSUPP;
10335 err = nl80211_parse_tx_bitrate_mask(info, &mask);
10339 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
10342 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
10344 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10345 struct wireless_dev *wdev = info->user_ptr[1];
10346 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
10348 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
10351 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
10352 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
10354 switch (wdev->iftype) {
10355 case NL80211_IFTYPE_STATION:
10356 case NL80211_IFTYPE_ADHOC:
10357 case NL80211_IFTYPE_P2P_CLIENT:
10358 case NL80211_IFTYPE_AP:
10359 case NL80211_IFTYPE_AP_VLAN:
10360 case NL80211_IFTYPE_MESH_POINT:
10361 case NL80211_IFTYPE_P2P_GO:
10362 case NL80211_IFTYPE_P2P_DEVICE:
10364 case NL80211_IFTYPE_NAN:
10366 return -EOPNOTSUPP;
10369 /* not much point in registering if we can't reply */
10370 if (!rdev->ops->mgmt_tx)
10371 return -EOPNOTSUPP;
10373 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
10374 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
10375 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
10378 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
10380 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10381 struct wireless_dev *wdev = info->user_ptr[1];
10382 struct cfg80211_chan_def chandef;
10386 struct sk_buff *msg = NULL;
10387 struct cfg80211_mgmt_tx_params params = {
10388 .dont_wait_for_ack =
10389 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
10392 if (!info->attrs[NL80211_ATTR_FRAME])
10395 if (!rdev->ops->mgmt_tx)
10396 return -EOPNOTSUPP;
10398 switch (wdev->iftype) {
10399 case NL80211_IFTYPE_P2P_DEVICE:
10400 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
10402 case NL80211_IFTYPE_STATION:
10403 case NL80211_IFTYPE_ADHOC:
10404 case NL80211_IFTYPE_P2P_CLIENT:
10405 case NL80211_IFTYPE_AP:
10406 case NL80211_IFTYPE_AP_VLAN:
10407 case NL80211_IFTYPE_MESH_POINT:
10408 case NL80211_IFTYPE_P2P_GO:
10410 case NL80211_IFTYPE_NAN:
10412 return -EOPNOTSUPP;
10415 if (info->attrs[NL80211_ATTR_DURATION]) {
10416 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10418 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10421 * We should wait on the channel for at least a minimum amount
10422 * of time (10ms) but no longer than the driver supports.
10424 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10425 params.wait > rdev->wiphy.max_remain_on_channel_duration)
10429 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
10431 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10434 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
10436 /* get the channel if any has been specified, otherwise pass NULL to
10437 * the driver. The latter will use the current one
10439 chandef.chan = NULL;
10440 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10441 err = nl80211_parse_chandef(rdev, info, &chandef);
10446 if (!chandef.chan && params.offchan)
10450 if (params.offchan && !cfg80211_off_channel_oper_allowed(wdev)) {
10456 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
10457 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
10459 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
10460 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10463 if (len % sizeof(u16))
10466 params.n_csa_offsets = len / sizeof(u16);
10467 params.csa_offsets =
10468 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10470 /* check that all the offsets fit the frame */
10471 for (i = 0; i < params.n_csa_offsets; i++) {
10472 if (params.csa_offsets[i] >= params.len)
10477 if (!params.dont_wait_for_ack) {
10478 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10482 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10483 NL80211_CMD_FRAME);
10490 params.chan = chandef.chan;
10491 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
10496 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10498 goto nla_put_failure;
10500 genlmsg_end(msg, hdr);
10501 return genlmsg_reply(msg, info);
10513 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
10515 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10516 struct wireless_dev *wdev = info->user_ptr[1];
10519 if (!info->attrs[NL80211_ATTR_COOKIE])
10522 if (!rdev->ops->mgmt_tx_cancel_wait)
10523 return -EOPNOTSUPP;
10525 switch (wdev->iftype) {
10526 case NL80211_IFTYPE_STATION:
10527 case NL80211_IFTYPE_ADHOC:
10528 case NL80211_IFTYPE_P2P_CLIENT:
10529 case NL80211_IFTYPE_AP:
10530 case NL80211_IFTYPE_AP_VLAN:
10531 case NL80211_IFTYPE_P2P_GO:
10532 case NL80211_IFTYPE_P2P_DEVICE:
10534 case NL80211_IFTYPE_NAN:
10536 return -EOPNOTSUPP;
10539 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10541 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
10544 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
10546 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10547 struct wireless_dev *wdev;
10548 struct net_device *dev = info->user_ptr[1];
10553 if (!info->attrs[NL80211_ATTR_PS_STATE])
10556 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
10558 wdev = dev->ieee80211_ptr;
10560 if (!rdev->ops->set_power_mgmt)
10561 return -EOPNOTSUPP;
10563 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
10565 if (state == wdev->ps)
10568 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
10574 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
10576 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10577 enum nl80211_ps_state ps_state;
10578 struct wireless_dev *wdev;
10579 struct net_device *dev = info->user_ptr[1];
10580 struct sk_buff *msg;
10584 wdev = dev->ieee80211_ptr;
10586 if (!rdev->ops->set_power_mgmt)
10587 return -EOPNOTSUPP;
10589 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10593 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10594 NL80211_CMD_GET_POWER_SAVE);
10601 ps_state = NL80211_PS_ENABLED;
10603 ps_state = NL80211_PS_DISABLED;
10605 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
10606 goto nla_put_failure;
10608 genlmsg_end(msg, hdr);
10609 return genlmsg_reply(msg, info);
10618 static const struct nla_policy
10619 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
10620 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_BINARY },
10621 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
10622 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
10623 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
10624 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
10625 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
10626 [NL80211_ATTR_CQM_RSSI_LEVEL] = { .type = NLA_S32 },
10629 static int nl80211_set_cqm_txe(struct genl_info *info,
10630 u32 rate, u32 pkts, u32 intvl)
10632 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10633 struct net_device *dev = info->user_ptr[1];
10634 struct wireless_dev *wdev = dev->ieee80211_ptr;
10636 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
10639 if (!rdev->ops->set_cqm_txe_config)
10640 return -EOPNOTSUPP;
10642 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10643 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10644 return -EOPNOTSUPP;
10646 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
10649 static int cfg80211_cqm_rssi_update(struct cfg80211_registered_device *rdev,
10650 struct net_device *dev)
10652 struct wireless_dev *wdev = dev->ieee80211_ptr;
10653 s32 last, low, high;
10655 int i, n, low_index;
10658 /* RSSI reporting disabled? */
10659 if (!wdev->cqm_config)
10660 return rdev_set_cqm_rssi_range_config(rdev, dev, 0, 0);
10663 * Obtain current RSSI value if possible, if not and no RSSI threshold
10664 * event has been received yet, we should receive an event after a
10665 * connection is established and enough beacons received to calculate
10668 if (!wdev->cqm_config->last_rssi_event_value && wdev->current_bss &&
10669 rdev->ops->get_station) {
10670 struct station_info sinfo = {};
10673 mac_addr = wdev->current_bss->pub.bssid;
10675 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
10679 if (sinfo.filled & BIT_ULL(NL80211_STA_INFO_BEACON_SIGNAL_AVG))
10680 wdev->cqm_config->last_rssi_event_value =
10681 (s8) sinfo.rx_beacon_signal_avg;
10684 last = wdev->cqm_config->last_rssi_event_value;
10685 hyst = wdev->cqm_config->rssi_hyst;
10686 n = wdev->cqm_config->n_rssi_thresholds;
10688 for (i = 0; i < n; i++)
10689 if (last < wdev->cqm_config->rssi_thresholds[i])
10693 if (low_index >= 0) {
10694 low_index = array_index_nospec(low_index, n);
10695 low = wdev->cqm_config->rssi_thresholds[low_index] - hyst;
10700 i = array_index_nospec(i, n);
10701 high = wdev->cqm_config->rssi_thresholds[i] + hyst - 1;
10706 return rdev_set_cqm_rssi_range_config(rdev, dev, low, high);
10709 static int nl80211_set_cqm_rssi(struct genl_info *info,
10710 const s32 *thresholds, int n_thresholds,
10713 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10714 struct net_device *dev = info->user_ptr[1];
10715 struct wireless_dev *wdev = dev->ieee80211_ptr;
10717 s32 prev = S32_MIN;
10719 /* Check all values negative and sorted */
10720 for (i = 0; i < n_thresholds; i++) {
10721 if (thresholds[i] > 0 || thresholds[i] <= prev)
10724 prev = thresholds[i];
10727 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10728 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10729 return -EOPNOTSUPP;
10732 cfg80211_cqm_config_free(wdev);
10735 if (n_thresholds <= 1 && rdev->ops->set_cqm_rssi_config) {
10736 if (n_thresholds == 0 || thresholds[0] == 0) /* Disabling */
10737 return rdev_set_cqm_rssi_config(rdev, dev, 0, 0);
10739 return rdev_set_cqm_rssi_config(rdev, dev,
10740 thresholds[0], hysteresis);
10743 if (!wiphy_ext_feature_isset(&rdev->wiphy,
10744 NL80211_EXT_FEATURE_CQM_RSSI_LIST))
10745 return -EOPNOTSUPP;
10747 if (n_thresholds == 1 && thresholds[0] == 0) /* Disabling */
10751 if (n_thresholds) {
10752 struct cfg80211_cqm_config *cqm_config;
10754 cqm_config = kzalloc(sizeof(struct cfg80211_cqm_config) +
10755 n_thresholds * sizeof(s32), GFP_KERNEL);
10761 cqm_config->rssi_hyst = hysteresis;
10762 cqm_config->n_rssi_thresholds = n_thresholds;
10763 memcpy(cqm_config->rssi_thresholds, thresholds,
10764 n_thresholds * sizeof(s32));
10766 wdev->cqm_config = cqm_config;
10769 err = cfg80211_cqm_rssi_update(rdev, dev);
10777 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
10779 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
10780 struct nlattr *cqm;
10783 cqm = info->attrs[NL80211_ATTR_CQM];
10787 err = nla_parse_nested_deprecated(attrs, NL80211_ATTR_CQM_MAX, cqm,
10788 nl80211_attr_cqm_policy,
10793 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
10794 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
10795 const s32 *thresholds =
10796 nla_data(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10797 int len = nla_len(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10798 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
10803 return nl80211_set_cqm_rssi(info, thresholds, len / 4,
10807 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
10808 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
10809 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
10810 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
10811 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
10812 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
10814 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
10820 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
10822 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10823 struct net_device *dev = info->user_ptr[1];
10824 struct ocb_setup setup = {};
10827 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10831 return cfg80211_join_ocb(rdev, dev, &setup);
10834 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
10836 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10837 struct net_device *dev = info->user_ptr[1];
10839 return cfg80211_leave_ocb(rdev, dev);
10842 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
10844 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10845 struct net_device *dev = info->user_ptr[1];
10846 struct mesh_config cfg;
10847 struct mesh_setup setup;
10850 /* start with default */
10851 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
10852 memcpy(&setup, &default_mesh_setup, sizeof(setup));
10854 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
10855 /* and parse parameters if given */
10856 err = nl80211_parse_mesh_config(info, &cfg, NULL);
10861 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
10862 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
10865 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
10866 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
10868 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
10869 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
10870 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
10873 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
10874 setup.beacon_interval =
10875 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
10877 err = cfg80211_validate_beacon_int(rdev,
10878 NL80211_IFTYPE_MESH_POINT,
10879 setup.beacon_interval);
10884 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
10885 setup.dtim_period =
10886 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
10887 if (setup.dtim_period < 1 || setup.dtim_period > 100)
10891 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
10892 /* parse additional setup parameters if given */
10893 err = nl80211_parse_mesh_setup(info, &setup);
10898 if (setup.user_mpm)
10899 cfg.auto_open_plinks = false;
10901 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10902 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10906 /* __cfg80211_join_mesh() will sort it out */
10907 setup.chandef.chan = NULL;
10910 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
10911 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10913 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10914 struct ieee80211_supported_band *sband;
10916 if (!setup.chandef.chan)
10919 sband = rdev->wiphy.bands[setup.chandef.chan->band];
10921 err = ieee80211_get_ratemask(sband, rates, n_rates,
10922 &setup.basic_rates);
10927 if (info->attrs[NL80211_ATTR_TX_RATES]) {
10928 err = nl80211_parse_tx_bitrate_mask(info, &setup.beacon_rate);
10932 if (!setup.chandef.chan)
10935 err = validate_beacon_tx_rate(rdev, setup.chandef.chan->band,
10936 &setup.beacon_rate);
10941 setup.userspace_handles_dfs =
10942 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
10944 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
10945 int r = validate_pae_over_nl80211(rdev, info);
10950 setup.control_port_over_nl80211 = true;
10953 wdev_lock(dev->ieee80211_ptr);
10954 err = __cfg80211_join_mesh(rdev, dev, &setup, &cfg);
10955 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER])
10956 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
10957 wdev_unlock(dev->ieee80211_ptr);
10962 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
10964 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10965 struct net_device *dev = info->user_ptr[1];
10967 return cfg80211_leave_mesh(rdev, dev);
10971 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
10972 struct cfg80211_registered_device *rdev)
10974 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
10975 struct nlattr *nl_pats, *nl_pat;
10978 if (!wowlan->n_patterns)
10981 nl_pats = nla_nest_start_noflag(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
10985 for (i = 0; i < wowlan->n_patterns; i++) {
10986 nl_pat = nla_nest_start_noflag(msg, i + 1);
10989 pat_len = wowlan->patterns[i].pattern_len;
10990 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
10991 wowlan->patterns[i].mask) ||
10992 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
10993 wowlan->patterns[i].pattern) ||
10994 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
10995 wowlan->patterns[i].pkt_offset))
10997 nla_nest_end(msg, nl_pat);
10999 nla_nest_end(msg, nl_pats);
11004 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
11005 struct cfg80211_wowlan_tcp *tcp)
11007 struct nlattr *nl_tcp;
11012 nl_tcp = nla_nest_start_noflag(msg,
11013 NL80211_WOWLAN_TRIG_TCP_CONNECTION);
11017 if (nla_put_in_addr(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
11018 nla_put_in_addr(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
11019 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
11020 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
11021 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
11022 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
11023 tcp->payload_len, tcp->payload) ||
11024 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
11025 tcp->data_interval) ||
11026 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
11027 tcp->wake_len, tcp->wake_data) ||
11028 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
11029 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
11032 if (tcp->payload_seq.len &&
11033 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
11034 sizeof(tcp->payload_seq), &tcp->payload_seq))
11037 if (tcp->payload_tok.len &&
11038 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
11039 sizeof(tcp->payload_tok) + tcp->tokens_size,
11040 &tcp->payload_tok))
11043 nla_nest_end(msg, nl_tcp);
11048 static int nl80211_send_wowlan_nd(struct sk_buff *msg,
11049 struct cfg80211_sched_scan_request *req)
11051 struct nlattr *nd, *freqs, *matches, *match, *scan_plans, *scan_plan;
11057 nd = nla_nest_start_noflag(msg, NL80211_WOWLAN_TRIG_NET_DETECT);
11061 if (req->n_scan_plans == 1 &&
11062 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL,
11063 req->scan_plans[0].interval * 1000))
11066 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_DELAY, req->delay))
11069 if (req->relative_rssi_set) {
11070 struct nl80211_bss_select_rssi_adjust rssi_adjust;
11072 if (nla_put_s8(msg, NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI,
11073 req->relative_rssi))
11076 rssi_adjust.band = req->rssi_adjust.band;
11077 rssi_adjust.delta = req->rssi_adjust.delta;
11078 if (nla_put(msg, NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST,
11079 sizeof(rssi_adjust), &rssi_adjust))
11083 freqs = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_FREQUENCIES);
11087 for (i = 0; i < req->n_channels; i++) {
11088 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
11092 nla_nest_end(msg, freqs);
11094 if (req->n_match_sets) {
11095 matches = nla_nest_start_noflag(msg,
11096 NL80211_ATTR_SCHED_SCAN_MATCH);
11100 for (i = 0; i < req->n_match_sets; i++) {
11101 match = nla_nest_start_noflag(msg, i);
11105 if (nla_put(msg, NL80211_SCHED_SCAN_MATCH_ATTR_SSID,
11106 req->match_sets[i].ssid.ssid_len,
11107 req->match_sets[i].ssid.ssid))
11109 nla_nest_end(msg, match);
11111 nla_nest_end(msg, matches);
11114 scan_plans = nla_nest_start_noflag(msg, NL80211_ATTR_SCHED_SCAN_PLANS);
11118 for (i = 0; i < req->n_scan_plans; i++) {
11119 scan_plan = nla_nest_start_noflag(msg, i + 1);
11123 if (nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_INTERVAL,
11124 req->scan_plans[i].interval) ||
11125 (req->scan_plans[i].iterations &&
11126 nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_ITERATIONS,
11127 req->scan_plans[i].iterations)))
11129 nla_nest_end(msg, scan_plan);
11131 nla_nest_end(msg, scan_plans);
11133 nla_nest_end(msg, nd);
11138 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
11140 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11141 struct sk_buff *msg;
11143 u32 size = NLMSG_DEFAULT_SIZE;
11145 if (!rdev->wiphy.wowlan)
11146 return -EOPNOTSUPP;
11148 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
11149 /* adjust size to have room for all the data */
11150 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
11151 rdev->wiphy.wowlan_config->tcp->payload_len +
11152 rdev->wiphy.wowlan_config->tcp->wake_len +
11153 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
11156 msg = nlmsg_new(size, GFP_KERNEL);
11160 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11161 NL80211_CMD_GET_WOWLAN);
11163 goto nla_put_failure;
11165 if (rdev->wiphy.wowlan_config) {
11166 struct nlattr *nl_wowlan;
11168 nl_wowlan = nla_nest_start_noflag(msg,
11169 NL80211_ATTR_WOWLAN_TRIGGERS);
11171 goto nla_put_failure;
11173 if ((rdev->wiphy.wowlan_config->any &&
11174 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
11175 (rdev->wiphy.wowlan_config->disconnect &&
11176 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
11177 (rdev->wiphy.wowlan_config->magic_pkt &&
11178 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
11179 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
11180 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
11181 (rdev->wiphy.wowlan_config->eap_identity_req &&
11182 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
11183 (rdev->wiphy.wowlan_config->four_way_handshake &&
11184 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
11185 (rdev->wiphy.wowlan_config->rfkill_release &&
11186 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
11187 goto nla_put_failure;
11189 if (nl80211_send_wowlan_patterns(msg, rdev))
11190 goto nla_put_failure;
11192 if (nl80211_send_wowlan_tcp(msg,
11193 rdev->wiphy.wowlan_config->tcp))
11194 goto nla_put_failure;
11196 if (nl80211_send_wowlan_nd(
11198 rdev->wiphy.wowlan_config->nd_config))
11199 goto nla_put_failure;
11201 nla_nest_end(msg, nl_wowlan);
11204 genlmsg_end(msg, hdr);
11205 return genlmsg_reply(msg, info);
11212 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
11213 struct nlattr *attr,
11214 struct cfg80211_wowlan *trig)
11216 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
11217 struct cfg80211_wowlan_tcp *cfg;
11218 struct nl80211_wowlan_tcp_data_token *tok = NULL;
11219 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
11221 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
11224 if (!rdev->wiphy.wowlan->tcp)
11227 err = nla_parse_nested_deprecated(tb, MAX_NL80211_WOWLAN_TCP, attr,
11228 nl80211_wowlan_tcp_policy, NULL);
11232 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
11233 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
11234 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
11235 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
11236 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
11237 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
11238 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
11239 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
11242 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
11243 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
11246 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
11247 rdev->wiphy.wowlan->tcp->data_interval_max ||
11248 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
11251 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
11252 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
11255 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
11256 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
11259 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
11260 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11262 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11263 tokens_size = tokln - sizeof(*tok);
11265 if (!tok->len || tokens_size % tok->len)
11267 if (!rdev->wiphy.wowlan->tcp->tok)
11269 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
11271 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
11273 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
11275 if (tok->offset + tok->len > data_size)
11279 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
11280 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
11281 if (!rdev->wiphy.wowlan->tcp->seq)
11283 if (seq->len == 0 || seq->len > 4)
11285 if (seq->len + seq->offset > data_size)
11289 size = sizeof(*cfg);
11291 size += wake_size + wake_mask_size;
11292 size += tokens_size;
11294 cfg = kzalloc(size, GFP_KERNEL);
11297 cfg->src = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
11298 cfg->dst = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
11299 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
11301 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
11302 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
11306 /* allocate a socket and port for it and use it */
11307 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
11308 IPPROTO_TCP, &cfg->sock, 1);
11313 if (inet_csk_get_port(cfg->sock->sk, port)) {
11314 sock_release(cfg->sock);
11316 return -EADDRINUSE;
11318 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
11324 cfg->src_port = port;
11327 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
11328 cfg->payload_len = data_size;
11329 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
11330 memcpy((void *)cfg->payload,
11331 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
11334 cfg->payload_seq = *seq;
11335 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
11336 cfg->wake_len = wake_size;
11337 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
11338 memcpy((void *)cfg->wake_data,
11339 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
11341 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
11342 data_size + wake_size;
11343 memcpy((void *)cfg->wake_mask,
11344 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
11347 cfg->tokens_size = tokens_size;
11348 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
11356 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
11357 const struct wiphy_wowlan_support *wowlan,
11358 struct nlattr *attr,
11359 struct cfg80211_wowlan *trig)
11361 struct nlattr **tb;
11364 tb = kcalloc(NUM_NL80211_ATTR, sizeof(*tb), GFP_KERNEL);
11368 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
11373 err = nla_parse_nested_deprecated(tb, NL80211_ATTR_MAX, attr,
11374 nl80211_policy, NULL);
11378 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb,
11379 wowlan->max_nd_match_sets);
11380 err = PTR_ERR_OR_ZERO(trig->nd_config);
11382 trig->nd_config = NULL;
11389 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
11391 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11392 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
11393 struct cfg80211_wowlan new_triggers = {};
11394 struct cfg80211_wowlan *ntrig;
11395 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
11397 bool prev_enabled = rdev->wiphy.wowlan_config;
11398 bool regular = false;
11401 return -EOPNOTSUPP;
11403 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
11404 cfg80211_rdev_free_wowlan(rdev);
11405 rdev->wiphy.wowlan_config = NULL;
11409 err = nla_parse_nested_deprecated(tb, MAX_NL80211_WOWLAN_TRIG,
11410 info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS],
11411 nl80211_wowlan_policy, info->extack);
11415 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
11416 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
11418 new_triggers.any = true;
11421 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
11422 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
11424 new_triggers.disconnect = true;
11428 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
11429 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
11431 new_triggers.magic_pkt = true;
11435 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
11438 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
11439 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
11441 new_triggers.gtk_rekey_failure = true;
11445 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
11446 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
11448 new_triggers.eap_identity_req = true;
11452 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
11453 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
11455 new_triggers.four_way_handshake = true;
11459 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
11460 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
11462 new_triggers.rfkill_release = true;
11466 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
11467 struct nlattr *pat;
11468 int n_patterns = 0;
11469 int rem, pat_len, mask_len, pkt_offset;
11470 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11474 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11477 if (n_patterns > wowlan->n_patterns)
11480 new_triggers.patterns = kcalloc(n_patterns,
11481 sizeof(new_triggers.patterns[0]),
11483 if (!new_triggers.patterns)
11486 new_triggers.n_patterns = n_patterns;
11489 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11493 err = nla_parse_nested_deprecated(pat_tb,
11494 MAX_NL80211_PKTPAT,
11496 nl80211_packet_pattern_policy,
11502 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11503 !pat_tb[NL80211_PKTPAT_PATTERN])
11505 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11506 mask_len = DIV_ROUND_UP(pat_len, 8);
11507 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11509 if (pat_len > wowlan->pattern_max_len ||
11510 pat_len < wowlan->pattern_min_len)
11513 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11516 pkt_offset = nla_get_u32(
11517 pat_tb[NL80211_PKTPAT_OFFSET]);
11518 if (pkt_offset > wowlan->max_pkt_offset)
11520 new_triggers.patterns[i].pkt_offset = pkt_offset;
11522 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11527 new_triggers.patterns[i].mask = mask_pat;
11528 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11530 mask_pat += mask_len;
11531 new_triggers.patterns[i].pattern = mask_pat;
11532 new_triggers.patterns[i].pattern_len = pat_len;
11534 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11540 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
11542 err = nl80211_parse_wowlan_tcp(
11543 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
11549 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
11551 err = nl80211_parse_wowlan_nd(
11552 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
11558 /* The 'any' trigger means the device continues operating more or less
11559 * as in its normal operation mode and wakes up the host on most of the
11560 * normal interrupts (like packet RX, ...)
11561 * It therefore makes little sense to combine with the more constrained
11562 * wakeup trigger modes.
11564 if (new_triggers.any && regular) {
11569 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
11574 cfg80211_rdev_free_wowlan(rdev);
11575 rdev->wiphy.wowlan_config = ntrig;
11578 if (rdev->ops->set_wakeup &&
11579 prev_enabled != !!rdev->wiphy.wowlan_config)
11580 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
11584 for (i = 0; i < new_triggers.n_patterns; i++)
11585 kfree(new_triggers.patterns[i].mask);
11586 kfree(new_triggers.patterns);
11587 if (new_triggers.tcp && new_triggers.tcp->sock)
11588 sock_release(new_triggers.tcp->sock);
11589 kfree(new_triggers.tcp);
11590 kfree(new_triggers.nd_config);
11595 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
11596 struct cfg80211_registered_device *rdev)
11598 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
11600 struct cfg80211_coalesce_rules *rule;
11602 if (!rdev->coalesce->n_rules)
11605 nl_rules = nla_nest_start_noflag(msg, NL80211_ATTR_COALESCE_RULE);
11609 for (i = 0; i < rdev->coalesce->n_rules; i++) {
11610 nl_rule = nla_nest_start_noflag(msg, i + 1);
11614 rule = &rdev->coalesce->rules[i];
11615 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
11619 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
11623 nl_pats = nla_nest_start_noflag(msg,
11624 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
11628 for (j = 0; j < rule->n_patterns; j++) {
11629 nl_pat = nla_nest_start_noflag(msg, j + 1);
11632 pat_len = rule->patterns[j].pattern_len;
11633 if (nla_put(msg, NL80211_PKTPAT_MASK,
11634 DIV_ROUND_UP(pat_len, 8),
11635 rule->patterns[j].mask) ||
11636 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
11637 rule->patterns[j].pattern) ||
11638 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
11639 rule->patterns[j].pkt_offset))
11641 nla_nest_end(msg, nl_pat);
11643 nla_nest_end(msg, nl_pats);
11644 nla_nest_end(msg, nl_rule);
11646 nla_nest_end(msg, nl_rules);
11651 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
11653 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11654 struct sk_buff *msg;
11657 if (!rdev->wiphy.coalesce)
11658 return -EOPNOTSUPP;
11660 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11664 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11665 NL80211_CMD_GET_COALESCE);
11667 goto nla_put_failure;
11669 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
11670 goto nla_put_failure;
11672 genlmsg_end(msg, hdr);
11673 return genlmsg_reply(msg, info);
11680 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
11682 struct cfg80211_coalesce *coalesce = rdev->coalesce;
11684 struct cfg80211_coalesce_rules *rule;
11689 for (i = 0; i < coalesce->n_rules; i++) {
11690 rule = &coalesce->rules[i];
11691 for (j = 0; j < rule->n_patterns; j++)
11692 kfree(rule->patterns[j].mask);
11693 kfree(rule->patterns);
11695 kfree(coalesce->rules);
11697 rdev->coalesce = NULL;
11700 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
11701 struct nlattr *rule,
11702 struct cfg80211_coalesce_rules *new_rule)
11705 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11706 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
11707 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
11708 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11710 err = nla_parse_nested_deprecated(tb, NL80211_ATTR_COALESCE_RULE_MAX,
11711 rule, nl80211_coalesce_policy, NULL);
11715 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
11717 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
11718 if (new_rule->delay > coalesce->max_delay)
11721 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
11722 new_rule->condition =
11723 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
11725 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
11728 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11731 if (n_patterns > coalesce->n_patterns)
11734 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
11736 if (!new_rule->patterns)
11739 new_rule->n_patterns = n_patterns;
11742 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11746 err = nla_parse_nested_deprecated(pat_tb, MAX_NL80211_PKTPAT,
11748 nl80211_packet_pattern_policy,
11753 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11754 !pat_tb[NL80211_PKTPAT_PATTERN])
11756 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11757 mask_len = DIV_ROUND_UP(pat_len, 8);
11758 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11760 if (pat_len > coalesce->pattern_max_len ||
11761 pat_len < coalesce->pattern_min_len)
11764 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11767 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
11768 if (pkt_offset > coalesce->max_pkt_offset)
11770 new_rule->patterns[i].pkt_offset = pkt_offset;
11772 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11776 new_rule->patterns[i].mask = mask_pat;
11777 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11780 mask_pat += mask_len;
11781 new_rule->patterns[i].pattern = mask_pat;
11782 new_rule->patterns[i].pattern_len = pat_len;
11783 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11791 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
11793 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11794 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11795 struct cfg80211_coalesce new_coalesce = {};
11796 struct cfg80211_coalesce *n_coalesce;
11797 int err, rem_rule, n_rules = 0, i, j;
11798 struct nlattr *rule;
11799 struct cfg80211_coalesce_rules *tmp_rule;
11801 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
11802 return -EOPNOTSUPP;
11804 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
11805 cfg80211_rdev_free_coalesce(rdev);
11806 rdev_set_coalesce(rdev, NULL);
11810 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11813 if (n_rules > coalesce->n_rules)
11816 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
11818 if (!new_coalesce.rules)
11821 new_coalesce.n_rules = n_rules;
11824 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11826 err = nl80211_parse_coalesce_rule(rdev, rule,
11827 &new_coalesce.rules[i]);
11834 err = rdev_set_coalesce(rdev, &new_coalesce);
11838 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
11843 cfg80211_rdev_free_coalesce(rdev);
11844 rdev->coalesce = n_coalesce;
11848 for (i = 0; i < new_coalesce.n_rules; i++) {
11849 tmp_rule = &new_coalesce.rules[i];
11850 for (j = 0; j < tmp_rule->n_patterns; j++)
11851 kfree(tmp_rule->patterns[j].mask);
11852 kfree(tmp_rule->patterns);
11854 kfree(new_coalesce.rules);
11859 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
11861 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11862 struct net_device *dev = info->user_ptr[1];
11863 struct wireless_dev *wdev = dev->ieee80211_ptr;
11864 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
11865 struct cfg80211_gtk_rekey_data rekey_data;
11868 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
11871 err = nla_parse_nested_deprecated(tb, MAX_NL80211_REKEY_DATA,
11872 info->attrs[NL80211_ATTR_REKEY_DATA],
11873 nl80211_rekey_policy, info->extack);
11877 if (!tb[NL80211_REKEY_DATA_REPLAY_CTR] || !tb[NL80211_REKEY_DATA_KEK] ||
11878 !tb[NL80211_REKEY_DATA_KCK])
11880 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
11882 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
11884 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
11887 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
11888 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
11889 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
11892 if (!wdev->current_bss) {
11897 if (!rdev->ops->set_rekey_data) {
11902 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
11908 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
11909 struct genl_info *info)
11911 struct net_device *dev = info->user_ptr[1];
11912 struct wireless_dev *wdev = dev->ieee80211_ptr;
11914 if (wdev->iftype != NL80211_IFTYPE_AP &&
11915 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11918 if (wdev->ap_unexpected_nlportid)
11921 wdev->ap_unexpected_nlportid = info->snd_portid;
11925 static int nl80211_probe_client(struct sk_buff *skb,
11926 struct genl_info *info)
11928 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11929 struct net_device *dev = info->user_ptr[1];
11930 struct wireless_dev *wdev = dev->ieee80211_ptr;
11931 struct sk_buff *msg;
11937 if (wdev->iftype != NL80211_IFTYPE_AP &&
11938 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11939 return -EOPNOTSUPP;
11941 if (!info->attrs[NL80211_ATTR_MAC])
11944 if (!rdev->ops->probe_client)
11945 return -EOPNOTSUPP;
11947 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11951 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11952 NL80211_CMD_PROBE_CLIENT);
11958 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
11960 err = rdev_probe_client(rdev, dev, addr, &cookie);
11964 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
11966 goto nla_put_failure;
11968 genlmsg_end(msg, hdr);
11970 return genlmsg_reply(msg, info);
11979 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
11981 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11982 struct cfg80211_beacon_registration *reg, *nreg;
11985 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
11986 return -EOPNOTSUPP;
11988 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
11992 /* First, check if already registered. */
11993 spin_lock_bh(&rdev->beacon_registrations_lock);
11994 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11995 if (reg->nlportid == info->snd_portid) {
12000 /* Add it to the list */
12001 nreg->nlportid = info->snd_portid;
12002 list_add(&nreg->list, &rdev->beacon_registrations);
12004 spin_unlock_bh(&rdev->beacon_registrations_lock);
12008 spin_unlock_bh(&rdev->beacon_registrations_lock);
12013 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
12015 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12016 struct wireless_dev *wdev = info->user_ptr[1];
12019 if (!rdev->ops->start_p2p_device)
12020 return -EOPNOTSUPP;
12022 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
12023 return -EOPNOTSUPP;
12025 if (wdev_running(wdev))
12028 if (rfkill_blocked(rdev->rfkill))
12031 err = rdev_start_p2p_device(rdev, wdev);
12035 wdev->is_running = true;
12041 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
12043 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12044 struct wireless_dev *wdev = info->user_ptr[1];
12046 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
12047 return -EOPNOTSUPP;
12049 if (!rdev->ops->stop_p2p_device)
12050 return -EOPNOTSUPP;
12052 cfg80211_stop_p2p_device(rdev, wdev);
12057 static int nl80211_start_nan(struct sk_buff *skb, struct genl_info *info)
12059 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12060 struct wireless_dev *wdev = info->user_ptr[1];
12061 struct cfg80211_nan_conf conf = {};
12064 if (wdev->iftype != NL80211_IFTYPE_NAN)
12065 return -EOPNOTSUPP;
12067 if (wdev_running(wdev))
12070 if (rfkill_blocked(rdev->rfkill))
12073 if (!info->attrs[NL80211_ATTR_NAN_MASTER_PREF])
12077 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12079 if (info->attrs[NL80211_ATTR_BANDS]) {
12080 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12082 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12083 return -EOPNOTSUPP;
12085 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12088 conf.bands = bands;
12091 err = rdev_start_nan(rdev, wdev, &conf);
12095 wdev->is_running = true;
12101 static int nl80211_stop_nan(struct sk_buff *skb, struct genl_info *info)
12103 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12104 struct wireless_dev *wdev = info->user_ptr[1];
12106 if (wdev->iftype != NL80211_IFTYPE_NAN)
12107 return -EOPNOTSUPP;
12109 cfg80211_stop_nan(rdev, wdev);
12114 static int validate_nan_filter(struct nlattr *filter_attr)
12116 struct nlattr *attr;
12117 int len = 0, n_entries = 0, rem;
12119 nla_for_each_nested(attr, filter_attr, rem) {
12120 len += nla_len(attr);
12130 static int handle_nan_filter(struct nlattr *attr_filter,
12131 struct cfg80211_nan_func *func,
12134 struct nlattr *attr;
12135 int n_entries, rem, i;
12136 struct cfg80211_nan_func_filter *filter;
12138 n_entries = validate_nan_filter(attr_filter);
12142 BUILD_BUG_ON(sizeof(*func->rx_filters) != sizeof(*func->tx_filters));
12144 filter = kcalloc(n_entries, sizeof(*func->rx_filters), GFP_KERNEL);
12149 nla_for_each_nested(attr, attr_filter, rem) {
12150 filter[i].filter = nla_memdup(attr, GFP_KERNEL);
12151 filter[i].len = nla_len(attr);
12155 func->num_tx_filters = n_entries;
12156 func->tx_filters = filter;
12158 func->num_rx_filters = n_entries;
12159 func->rx_filters = filter;
12165 static int nl80211_nan_add_func(struct sk_buff *skb,
12166 struct genl_info *info)
12168 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12169 struct wireless_dev *wdev = info->user_ptr[1];
12170 struct nlattr *tb[NUM_NL80211_NAN_FUNC_ATTR], *func_attr;
12171 struct cfg80211_nan_func *func;
12172 struct sk_buff *msg = NULL;
12176 if (wdev->iftype != NL80211_IFTYPE_NAN)
12177 return -EOPNOTSUPP;
12179 if (!wdev_running(wdev))
12182 if (!info->attrs[NL80211_ATTR_NAN_FUNC])
12185 err = nla_parse_nested_deprecated(tb, NL80211_NAN_FUNC_ATTR_MAX,
12186 info->attrs[NL80211_ATTR_NAN_FUNC],
12187 nl80211_nan_func_policy,
12192 func = kzalloc(sizeof(*func), GFP_KERNEL);
12196 func->cookie = cfg80211_assign_cookie(rdev);
12198 if (!tb[NL80211_NAN_FUNC_TYPE] ||
12199 nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]) > NL80211_NAN_FUNC_MAX_TYPE) {
12205 func->type = nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]);
12207 if (!tb[NL80211_NAN_FUNC_SERVICE_ID]) {
12212 memcpy(func->service_id, nla_data(tb[NL80211_NAN_FUNC_SERVICE_ID]),
12213 sizeof(func->service_id));
12215 func->close_range =
12216 nla_get_flag(tb[NL80211_NAN_FUNC_CLOSE_RANGE]);
12218 if (tb[NL80211_NAN_FUNC_SERVICE_INFO]) {
12219 func->serv_spec_info_len =
12220 nla_len(tb[NL80211_NAN_FUNC_SERVICE_INFO]);
12221 func->serv_spec_info =
12222 kmemdup(nla_data(tb[NL80211_NAN_FUNC_SERVICE_INFO]),
12223 func->serv_spec_info_len,
12225 if (!func->serv_spec_info) {
12231 if (tb[NL80211_NAN_FUNC_TTL])
12232 func->ttl = nla_get_u32(tb[NL80211_NAN_FUNC_TTL]);
12234 switch (func->type) {
12235 case NL80211_NAN_FUNC_PUBLISH:
12236 if (!tb[NL80211_NAN_FUNC_PUBLISH_TYPE]) {
12241 func->publish_type =
12242 nla_get_u8(tb[NL80211_NAN_FUNC_PUBLISH_TYPE]);
12243 func->publish_bcast =
12244 nla_get_flag(tb[NL80211_NAN_FUNC_PUBLISH_BCAST]);
12246 if ((!(func->publish_type & NL80211_NAN_SOLICITED_PUBLISH)) &&
12247 func->publish_bcast) {
12252 case NL80211_NAN_FUNC_SUBSCRIBE:
12253 func->subscribe_active =
12254 nla_get_flag(tb[NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE]);
12256 case NL80211_NAN_FUNC_FOLLOW_UP:
12257 if (!tb[NL80211_NAN_FUNC_FOLLOW_UP_ID] ||
12258 !tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] ||
12259 !tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]) {
12264 func->followup_id =
12265 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_ID]);
12266 func->followup_reqid =
12267 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID]);
12268 memcpy(func->followup_dest.addr,
12269 nla_data(tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]),
12270 sizeof(func->followup_dest.addr));
12281 if (tb[NL80211_NAN_FUNC_SRF]) {
12282 struct nlattr *srf_tb[NUM_NL80211_NAN_SRF_ATTR];
12284 err = nla_parse_nested_deprecated(srf_tb,
12285 NL80211_NAN_SRF_ATTR_MAX,
12286 tb[NL80211_NAN_FUNC_SRF],
12287 nl80211_nan_srf_policy,
12292 func->srf_include =
12293 nla_get_flag(srf_tb[NL80211_NAN_SRF_INCLUDE]);
12295 if (srf_tb[NL80211_NAN_SRF_BF]) {
12296 if (srf_tb[NL80211_NAN_SRF_MAC_ADDRS] ||
12297 !srf_tb[NL80211_NAN_SRF_BF_IDX]) {
12303 nla_len(srf_tb[NL80211_NAN_SRF_BF]);
12305 kmemdup(nla_data(srf_tb[NL80211_NAN_SRF_BF]),
12306 func->srf_bf_len, GFP_KERNEL);
12307 if (!func->srf_bf) {
12313 nla_get_u8(srf_tb[NL80211_NAN_SRF_BF_IDX]);
12315 struct nlattr *attr, *mac_attr =
12316 srf_tb[NL80211_NAN_SRF_MAC_ADDRS];
12317 int n_entries, rem, i = 0;
12324 n_entries = validate_acl_mac_addrs(mac_attr);
12325 if (n_entries <= 0) {
12330 func->srf_num_macs = n_entries;
12332 kcalloc(n_entries, sizeof(*func->srf_macs),
12334 if (!func->srf_macs) {
12339 nla_for_each_nested(attr, mac_attr, rem)
12340 memcpy(func->srf_macs[i++].addr, nla_data(attr),
12341 sizeof(*func->srf_macs));
12345 if (tb[NL80211_NAN_FUNC_TX_MATCH_FILTER]) {
12346 err = handle_nan_filter(tb[NL80211_NAN_FUNC_TX_MATCH_FILTER],
12352 if (tb[NL80211_NAN_FUNC_RX_MATCH_FILTER]) {
12353 err = handle_nan_filter(tb[NL80211_NAN_FUNC_RX_MATCH_FILTER],
12359 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12365 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12366 NL80211_CMD_ADD_NAN_FUNCTION);
12367 /* This can't really happen - we just allocated 4KB */
12368 if (WARN_ON(!hdr)) {
12373 err = rdev_add_nan_func(rdev, wdev, func);
12376 cfg80211_free_nan_func(func);
12381 /* propagate the instance id and cookie to userspace */
12382 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, func->cookie,
12384 goto nla_put_failure;
12386 func_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_FUNC);
12388 goto nla_put_failure;
12390 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID,
12391 func->instance_id))
12392 goto nla_put_failure;
12394 nla_nest_end(msg, func_attr);
12396 genlmsg_end(msg, hdr);
12397 return genlmsg_reply(msg, info);
12404 static int nl80211_nan_del_func(struct sk_buff *skb,
12405 struct genl_info *info)
12407 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12408 struct wireless_dev *wdev = info->user_ptr[1];
12411 if (wdev->iftype != NL80211_IFTYPE_NAN)
12412 return -EOPNOTSUPP;
12414 if (!wdev_running(wdev))
12417 if (!info->attrs[NL80211_ATTR_COOKIE])
12420 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
12422 rdev_del_nan_func(rdev, wdev, cookie);
12427 static int nl80211_nan_change_config(struct sk_buff *skb,
12428 struct genl_info *info)
12430 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12431 struct wireless_dev *wdev = info->user_ptr[1];
12432 struct cfg80211_nan_conf conf = {};
12435 if (wdev->iftype != NL80211_IFTYPE_NAN)
12436 return -EOPNOTSUPP;
12438 if (!wdev_running(wdev))
12441 if (info->attrs[NL80211_ATTR_NAN_MASTER_PREF]) {
12443 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12444 if (conf.master_pref <= 1 || conf.master_pref == 255)
12447 changed |= CFG80211_NAN_CONF_CHANGED_PREF;
12450 if (info->attrs[NL80211_ATTR_BANDS]) {
12451 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12453 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12454 return -EOPNOTSUPP;
12456 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12459 conf.bands = bands;
12460 changed |= CFG80211_NAN_CONF_CHANGED_BANDS;
12466 return rdev_nan_change_conf(rdev, wdev, &conf, changed);
12469 void cfg80211_nan_match(struct wireless_dev *wdev,
12470 struct cfg80211_nan_match_params *match, gfp_t gfp)
12472 struct wiphy *wiphy = wdev->wiphy;
12473 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12474 struct nlattr *match_attr, *local_func_attr, *peer_func_attr;
12475 struct sk_buff *msg;
12478 if (WARN_ON(!match->inst_id || !match->peer_inst_id || !match->addr))
12481 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12485 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NAN_MATCH);
12491 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12492 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12493 wdev->netdev->ifindex)) ||
12494 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12496 goto nla_put_failure;
12498 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, match->cookie,
12499 NL80211_ATTR_PAD) ||
12500 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, match->addr))
12501 goto nla_put_failure;
12503 match_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_MATCH);
12505 goto nla_put_failure;
12507 local_func_attr = nla_nest_start_noflag(msg,
12508 NL80211_NAN_MATCH_FUNC_LOCAL);
12509 if (!local_func_attr)
12510 goto nla_put_failure;
12512 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->inst_id))
12513 goto nla_put_failure;
12515 nla_nest_end(msg, local_func_attr);
12517 peer_func_attr = nla_nest_start_noflag(msg,
12518 NL80211_NAN_MATCH_FUNC_PEER);
12519 if (!peer_func_attr)
12520 goto nla_put_failure;
12522 if (nla_put_u8(msg, NL80211_NAN_FUNC_TYPE, match->type) ||
12523 nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->peer_inst_id))
12524 goto nla_put_failure;
12526 if (match->info && match->info_len &&
12527 nla_put(msg, NL80211_NAN_FUNC_SERVICE_INFO, match->info_len,
12529 goto nla_put_failure;
12531 nla_nest_end(msg, peer_func_attr);
12532 nla_nest_end(msg, match_attr);
12533 genlmsg_end(msg, hdr);
12535 if (!wdev->owner_nlportid)
12536 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12537 msg, 0, NL80211_MCGRP_NAN, gfp);
12539 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12540 wdev->owner_nlportid);
12547 EXPORT_SYMBOL(cfg80211_nan_match);
12549 void cfg80211_nan_func_terminated(struct wireless_dev *wdev,
12551 enum nl80211_nan_func_term_reason reason,
12552 u64 cookie, gfp_t gfp)
12554 struct wiphy *wiphy = wdev->wiphy;
12555 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12556 struct sk_buff *msg;
12557 struct nlattr *func_attr;
12560 if (WARN_ON(!inst_id))
12563 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12567 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_NAN_FUNCTION);
12573 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12574 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12575 wdev->netdev->ifindex)) ||
12576 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12578 goto nla_put_failure;
12580 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
12582 goto nla_put_failure;
12584 func_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_FUNC);
12586 goto nla_put_failure;
12588 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, inst_id) ||
12589 nla_put_u8(msg, NL80211_NAN_FUNC_TERM_REASON, reason))
12590 goto nla_put_failure;
12592 nla_nest_end(msg, func_attr);
12593 genlmsg_end(msg, hdr);
12595 if (!wdev->owner_nlportid)
12596 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12597 msg, 0, NL80211_MCGRP_NAN, gfp);
12599 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12600 wdev->owner_nlportid);
12607 EXPORT_SYMBOL(cfg80211_nan_func_terminated);
12609 static int nl80211_get_protocol_features(struct sk_buff *skb,
12610 struct genl_info *info)
12613 struct sk_buff *msg;
12615 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12619 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12620 NL80211_CMD_GET_PROTOCOL_FEATURES);
12622 goto nla_put_failure;
12624 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
12625 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
12626 goto nla_put_failure;
12628 genlmsg_end(msg, hdr);
12629 return genlmsg_reply(msg, info);
12636 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
12638 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12639 struct cfg80211_update_ft_ies_params ft_params;
12640 struct net_device *dev = info->user_ptr[1];
12642 if (!rdev->ops->update_ft_ies)
12643 return -EOPNOTSUPP;
12645 if (!info->attrs[NL80211_ATTR_MDID] ||
12646 !info->attrs[NL80211_ATTR_IE])
12649 memset(&ft_params, 0, sizeof(ft_params));
12650 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
12651 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
12652 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
12654 return rdev_update_ft_ies(rdev, dev, &ft_params);
12657 static int nl80211_crit_protocol_start(struct sk_buff *skb,
12658 struct genl_info *info)
12660 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12661 struct wireless_dev *wdev = info->user_ptr[1];
12662 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
12666 if (!rdev->ops->crit_proto_start)
12667 return -EOPNOTSUPP;
12669 if (WARN_ON(!rdev->ops->crit_proto_stop))
12672 if (rdev->crit_proto_nlportid)
12675 /* determine protocol if provided */
12676 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
12677 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
12679 if (proto >= NUM_NL80211_CRIT_PROTO)
12682 /* timeout must be provided */
12683 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
12687 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
12689 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
12692 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
12694 rdev->crit_proto_nlportid = info->snd_portid;
12699 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
12700 struct genl_info *info)
12702 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12703 struct wireless_dev *wdev = info->user_ptr[1];
12705 if (!rdev->ops->crit_proto_stop)
12706 return -EOPNOTSUPP;
12708 if (rdev->crit_proto_nlportid) {
12709 rdev->crit_proto_nlportid = 0;
12710 rdev_crit_proto_stop(rdev, wdev);
12715 static int nl80211_vendor_check_policy(const struct wiphy_vendor_command *vcmd,
12716 struct nlattr *attr,
12717 struct netlink_ext_ack *extack)
12719 if (vcmd->policy == VENDOR_CMD_RAW_DATA) {
12720 if (attr->nla_type & NLA_F_NESTED) {
12721 NL_SET_ERR_MSG_ATTR(extack, attr,
12722 "unexpected nested data");
12729 if (!(attr->nla_type & NLA_F_NESTED)) {
12730 NL_SET_ERR_MSG_ATTR(extack, attr, "expected nested data");
12734 return nl80211_validate_nested(attr, vcmd->maxattr, vcmd->policy,
12738 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
12740 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12741 struct wireless_dev *wdev =
12742 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
12746 if (!rdev->wiphy.vendor_commands)
12747 return -EOPNOTSUPP;
12749 if (IS_ERR(wdev)) {
12750 err = PTR_ERR(wdev);
12751 if (err != -EINVAL)
12754 } else if (wdev->wiphy != &rdev->wiphy) {
12758 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
12759 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
12762 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
12763 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
12764 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
12765 const struct wiphy_vendor_command *vcmd;
12769 vcmd = &rdev->wiphy.vendor_commands[i];
12771 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12774 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12775 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12778 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12782 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12783 if (!wdev_running(wdev))
12788 return -EOPNOTSUPP;
12793 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
12794 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12795 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12797 err = nl80211_vendor_check_policy(vcmd,
12798 info->attrs[NL80211_ATTR_VENDOR_DATA],
12804 rdev->cur_cmd_info = info;
12805 err = vcmd->doit(&rdev->wiphy, wdev, data, len);
12806 rdev->cur_cmd_info = NULL;
12810 return -EOPNOTSUPP;
12813 static int nl80211_prepare_vendor_dump(struct sk_buff *skb,
12814 struct netlink_callback *cb,
12815 struct cfg80211_registered_device **rdev,
12816 struct wireless_dev **wdev)
12818 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
12824 unsigned int data_len = 0;
12827 /* subtract the 1 again here */
12828 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
12829 struct wireless_dev *tmp;
12833 *rdev = wiphy_to_rdev(wiphy);
12837 list_for_each_entry(tmp, &wiphy->wdev_list, list) {
12838 if (tmp->identifier == cb->args[1] - 1) {
12845 /* keep rtnl locked in successful case */
12849 err = nlmsg_parse_deprecated(cb->nlh,
12850 GENL_HDRLEN + nl80211_fam.hdrsize,
12851 attrbuf, nl80211_fam.maxattr,
12852 nl80211_policy, NULL);
12856 if (!attrbuf[NL80211_ATTR_VENDOR_ID] ||
12857 !attrbuf[NL80211_ATTR_VENDOR_SUBCMD])
12860 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk), attrbuf);
12864 *rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
12866 return PTR_ERR(*rdev);
12868 vid = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_ID]);
12869 subcmd = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_SUBCMD]);
12871 for (i = 0; i < (*rdev)->wiphy.n_vendor_commands; i++) {
12872 const struct wiphy_vendor_command *vcmd;
12874 vcmd = &(*rdev)->wiphy.vendor_commands[i];
12876 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12880 return -EOPNOTSUPP;
12887 return -EOPNOTSUPP;
12889 if (attrbuf[NL80211_ATTR_VENDOR_DATA]) {
12890 data = nla_data(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12891 data_len = nla_len(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12893 err = nl80211_vendor_check_policy(
12894 &(*rdev)->wiphy.vendor_commands[vcmd_idx],
12895 attrbuf[NL80211_ATTR_VENDOR_DATA],
12901 /* 0 is the first index - add 1 to parse only once */
12902 cb->args[0] = (*rdev)->wiphy_idx + 1;
12903 /* add 1 to know if it was NULL */
12904 cb->args[1] = *wdev ? (*wdev)->identifier + 1 : 0;
12905 cb->args[2] = vcmd_idx;
12906 cb->args[3] = (unsigned long)data;
12907 cb->args[4] = data_len;
12909 /* keep rtnl locked in successful case */
12913 static int nl80211_vendor_cmd_dump(struct sk_buff *skb,
12914 struct netlink_callback *cb)
12916 struct cfg80211_registered_device *rdev;
12917 struct wireless_dev *wdev;
12918 unsigned int vcmd_idx;
12919 const struct wiphy_vendor_command *vcmd;
12923 struct nlattr *vendor_data;
12926 err = nl80211_prepare_vendor_dump(skb, cb, &rdev, &wdev);
12930 vcmd_idx = cb->args[2];
12931 data = (void *)cb->args[3];
12932 data_len = cb->args[4];
12933 vcmd = &rdev->wiphy.vendor_commands[vcmd_idx];
12935 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12936 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12941 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12947 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12948 if (!wdev_running(wdev)) {
12956 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
12957 cb->nlh->nlmsg_seq, NLM_F_MULTI,
12958 NL80211_CMD_VENDOR);
12962 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12963 (wdev && nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
12965 NL80211_ATTR_PAD))) {
12966 genlmsg_cancel(skb, hdr);
12970 vendor_data = nla_nest_start_noflag(skb,
12971 NL80211_ATTR_VENDOR_DATA);
12972 if (!vendor_data) {
12973 genlmsg_cancel(skb, hdr);
12977 err = vcmd->dumpit(&rdev->wiphy, wdev, skb, data, data_len,
12978 (unsigned long *)&cb->args[5]);
12979 nla_nest_end(skb, vendor_data);
12981 if (err == -ENOBUFS || err == -ENOENT) {
12982 genlmsg_cancel(skb, hdr);
12985 genlmsg_cancel(skb, hdr);
12989 genlmsg_end(skb, hdr);
12998 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
12999 enum nl80211_commands cmd,
13000 enum nl80211_attrs attr,
13003 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
13005 if (WARN_ON(!rdev->cur_cmd_info))
13008 return __cfg80211_alloc_vendor_skb(rdev, NULL, approxlen,
13009 rdev->cur_cmd_info->snd_portid,
13010 rdev->cur_cmd_info->snd_seq,
13011 cmd, attr, NULL, GFP_KERNEL);
13013 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
13015 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
13017 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
13018 void *hdr = ((void **)skb->cb)[1];
13019 struct nlattr *data = ((void **)skb->cb)[2];
13021 /* clear CB data for netlink core to own from now on */
13022 memset(skb->cb, 0, sizeof(skb->cb));
13024 if (WARN_ON(!rdev->cur_cmd_info)) {
13029 nla_nest_end(skb, data);
13030 genlmsg_end(skb, hdr);
13031 return genlmsg_reply(skb, rdev->cur_cmd_info);
13033 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
13035 unsigned int cfg80211_vendor_cmd_get_sender(struct wiphy *wiphy)
13037 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
13039 if (WARN_ON(!rdev->cur_cmd_info))
13042 return rdev->cur_cmd_info->snd_portid;
13044 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_get_sender);
13046 static int nl80211_set_qos_map(struct sk_buff *skb,
13047 struct genl_info *info)
13049 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13050 struct cfg80211_qos_map *qos_map = NULL;
13051 struct net_device *dev = info->user_ptr[1];
13052 u8 *pos, len, num_des, des_len, des;
13055 if (!rdev->ops->set_qos_map)
13056 return -EOPNOTSUPP;
13058 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
13059 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
13060 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
13062 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
13063 len > IEEE80211_QOS_MAP_LEN_MAX)
13066 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
13070 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
13072 des_len = num_des *
13073 sizeof(struct cfg80211_dscp_exception);
13074 memcpy(qos_map->dscp_exception, pos, des_len);
13075 qos_map->num_des = num_des;
13076 for (des = 0; des < num_des; des++) {
13077 if (qos_map->dscp_exception[des].up > 7) {
13084 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
13087 wdev_lock(dev->ieee80211_ptr);
13088 ret = nl80211_key_allowed(dev->ieee80211_ptr);
13090 ret = rdev_set_qos_map(rdev, dev, qos_map);
13091 wdev_unlock(dev->ieee80211_ptr);
13097 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
13099 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13100 struct net_device *dev = info->user_ptr[1];
13101 struct wireless_dev *wdev = dev->ieee80211_ptr;
13104 u16 admitted_time = 0;
13107 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
13108 return -EOPNOTSUPP;
13110 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
13111 !info->attrs[NL80211_ATTR_USER_PRIO])
13114 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
13115 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
13117 /* WMM uses TIDs 0-7 even for TSPEC */
13118 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
13119 /* TODO: handle 802.11 TSPEC/admission control
13120 * need more attributes for that (e.g. BA session requirement);
13121 * change the WMM adminssion test above to allow both then
13126 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
13128 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
13130 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
13131 if (!admitted_time)
13136 switch (wdev->iftype) {
13137 case NL80211_IFTYPE_STATION:
13138 case NL80211_IFTYPE_P2P_CLIENT:
13139 if (wdev->current_bss)
13148 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
13155 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
13157 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13158 struct net_device *dev = info->user_ptr[1];
13159 struct wireless_dev *wdev = dev->ieee80211_ptr;
13164 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
13167 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
13168 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
13171 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
13177 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
13178 struct genl_info *info)
13180 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13181 struct net_device *dev = info->user_ptr[1];
13182 struct wireless_dev *wdev = dev->ieee80211_ptr;
13183 struct cfg80211_chan_def chandef = {};
13188 if (!rdev->ops->tdls_channel_switch ||
13189 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13190 return -EOPNOTSUPP;
13192 switch (dev->ieee80211_ptr->iftype) {
13193 case NL80211_IFTYPE_STATION:
13194 case NL80211_IFTYPE_P2P_CLIENT:
13197 return -EOPNOTSUPP;
13200 if (!info->attrs[NL80211_ATTR_MAC] ||
13201 !info->attrs[NL80211_ATTR_OPER_CLASS])
13204 err = nl80211_parse_chandef(rdev, info, &chandef);
13209 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
13210 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
13211 * specification is not defined for them.
13213 if (chandef.chan->band == NL80211_BAND_2GHZ &&
13214 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
13215 chandef.width != NL80211_CHAN_WIDTH_20)
13218 /* we will be active on the TDLS link */
13219 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
13223 /* don't allow switching to DFS channels */
13224 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
13227 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13228 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
13231 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
13237 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
13238 struct genl_info *info)
13240 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13241 struct net_device *dev = info->user_ptr[1];
13242 struct wireless_dev *wdev = dev->ieee80211_ptr;
13245 if (!rdev->ops->tdls_channel_switch ||
13246 !rdev->ops->tdls_cancel_channel_switch ||
13247 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13248 return -EOPNOTSUPP;
13250 switch (dev->ieee80211_ptr->iftype) {
13251 case NL80211_IFTYPE_STATION:
13252 case NL80211_IFTYPE_P2P_CLIENT:
13255 return -EOPNOTSUPP;
13258 if (!info->attrs[NL80211_ATTR_MAC])
13261 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13264 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
13270 static int nl80211_set_multicast_to_unicast(struct sk_buff *skb,
13271 struct genl_info *info)
13273 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13274 struct net_device *dev = info->user_ptr[1];
13275 struct wireless_dev *wdev = dev->ieee80211_ptr;
13276 const struct nlattr *nla;
13279 if (!rdev->ops->set_multicast_to_unicast)
13280 return -EOPNOTSUPP;
13282 if (wdev->iftype != NL80211_IFTYPE_AP &&
13283 wdev->iftype != NL80211_IFTYPE_P2P_GO)
13284 return -EOPNOTSUPP;
13286 nla = info->attrs[NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED];
13287 enabled = nla_get_flag(nla);
13289 return rdev_set_multicast_to_unicast(rdev, dev, enabled);
13292 static int nl80211_set_pmk(struct sk_buff *skb, struct genl_info *info)
13294 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13295 struct net_device *dev = info->user_ptr[1];
13296 struct wireless_dev *wdev = dev->ieee80211_ptr;
13297 struct cfg80211_pmk_conf pmk_conf = {};
13300 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13301 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13302 return -EOPNOTSUPP;
13304 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13305 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13306 return -EOPNOTSUPP;
13308 if (!info->attrs[NL80211_ATTR_MAC] || !info->attrs[NL80211_ATTR_PMK])
13312 if (!wdev->current_bss) {
13317 pmk_conf.aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13318 if (memcmp(pmk_conf.aa, wdev->current_bss->pub.bssid, ETH_ALEN)) {
13323 pmk_conf.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
13324 pmk_conf.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
13325 if (pmk_conf.pmk_len != WLAN_PMK_LEN &&
13326 pmk_conf.pmk_len != WLAN_PMK_LEN_SUITE_B_192) {
13331 if (info->attrs[NL80211_ATTR_PMKR0_NAME]) {
13332 int r0_name_len = nla_len(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13334 if (r0_name_len != WLAN_PMK_NAME_LEN) {
13339 pmk_conf.pmk_r0_name =
13340 nla_data(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13343 ret = rdev_set_pmk(rdev, dev, &pmk_conf);
13349 static int nl80211_del_pmk(struct sk_buff *skb, struct genl_info *info)
13351 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13352 struct net_device *dev = info->user_ptr[1];
13353 struct wireless_dev *wdev = dev->ieee80211_ptr;
13357 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13358 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13359 return -EOPNOTSUPP;
13361 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13362 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13363 return -EOPNOTSUPP;
13365 if (!info->attrs[NL80211_ATTR_MAC])
13369 aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13370 ret = rdev_del_pmk(rdev, dev, aa);
13376 static int nl80211_external_auth(struct sk_buff *skb, struct genl_info *info)
13378 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13379 struct net_device *dev = info->user_ptr[1];
13380 struct cfg80211_external_auth_params params;
13382 if (!rdev->ops->external_auth)
13383 return -EOPNOTSUPP;
13385 if (!info->attrs[NL80211_ATTR_SSID] &&
13386 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
13387 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
13390 if (!info->attrs[NL80211_ATTR_BSSID])
13393 if (!info->attrs[NL80211_ATTR_STATUS_CODE])
13396 memset(¶ms, 0, sizeof(params));
13398 if (info->attrs[NL80211_ATTR_SSID]) {
13399 params.ssid.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
13400 if (params.ssid.ssid_len == 0 ||
13401 params.ssid.ssid_len > IEEE80211_MAX_SSID_LEN)
13403 memcpy(params.ssid.ssid,
13404 nla_data(info->attrs[NL80211_ATTR_SSID]),
13405 params.ssid.ssid_len);
13408 memcpy(params.bssid, nla_data(info->attrs[NL80211_ATTR_BSSID]),
13411 params.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13413 if (info->attrs[NL80211_ATTR_PMKID])
13414 params.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
13416 return rdev_external_auth(rdev, dev, ¶ms);
13419 static int nl80211_tx_control_port(struct sk_buff *skb, struct genl_info *info)
13421 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13422 struct net_device *dev = info->user_ptr[1];
13423 struct wireless_dev *wdev = dev->ieee80211_ptr;
13431 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13432 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
13433 return -EOPNOTSUPP;
13435 if (!rdev->ops->tx_control_port)
13436 return -EOPNOTSUPP;
13438 if (!info->attrs[NL80211_ATTR_FRAME] ||
13439 !info->attrs[NL80211_ATTR_MAC] ||
13440 !info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
13441 GENL_SET_ERR_MSG(info, "Frame, MAC or ethertype missing");
13447 switch (wdev->iftype) {
13448 case NL80211_IFTYPE_AP:
13449 case NL80211_IFTYPE_P2P_GO:
13450 case NL80211_IFTYPE_MESH_POINT:
13452 case NL80211_IFTYPE_ADHOC:
13453 case NL80211_IFTYPE_STATION:
13454 case NL80211_IFTYPE_P2P_CLIENT:
13455 if (wdev->current_bss)
13466 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13467 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13468 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13469 proto = nla_get_u16(info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
13471 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT]);
13473 return rdev_tx_control_port(rdev, dev, buf, len,
13474 dest, cpu_to_be16(proto), noencrypt);
13481 static int nl80211_get_ftm_responder_stats(struct sk_buff *skb,
13482 struct genl_info *info)
13484 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13485 struct net_device *dev = info->user_ptr[1];
13486 struct wireless_dev *wdev = dev->ieee80211_ptr;
13487 struct cfg80211_ftm_responder_stats ftm_stats = {};
13488 struct sk_buff *msg;
13490 struct nlattr *ftm_stats_attr;
13493 if (wdev->iftype != NL80211_IFTYPE_AP || !wdev->beacon_interval)
13494 return -EOPNOTSUPP;
13496 err = rdev_get_ftm_responder_stats(rdev, dev, &ftm_stats);
13500 if (!ftm_stats.filled)
13503 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
13507 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
13508 NL80211_CMD_GET_FTM_RESPONDER_STATS);
13512 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
13513 goto nla_put_failure;
13515 ftm_stats_attr = nla_nest_start_noflag(msg,
13516 NL80211_ATTR_FTM_RESPONDER_STATS);
13517 if (!ftm_stats_attr)
13518 goto nla_put_failure;
13520 #define SET_FTM(field, name, type) \
13521 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13522 nla_put_ ## type(msg, NL80211_FTM_STATS_ ## name, \
13523 ftm_stats.field)) \
13524 goto nla_put_failure; } while (0)
13525 #define SET_FTM_U64(field, name) \
13526 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13527 nla_put_u64_64bit(msg, NL80211_FTM_STATS_ ## name, \
13528 ftm_stats.field, NL80211_FTM_STATS_PAD)) \
13529 goto nla_put_failure; } while (0)
13531 SET_FTM(success_num, SUCCESS_NUM, u32);
13532 SET_FTM(partial_num, PARTIAL_NUM, u32);
13533 SET_FTM(failed_num, FAILED_NUM, u32);
13534 SET_FTM(asap_num, ASAP_NUM, u32);
13535 SET_FTM(non_asap_num, NON_ASAP_NUM, u32);
13536 SET_FTM_U64(total_duration_ms, TOTAL_DURATION_MSEC);
13537 SET_FTM(unknown_triggers_num, UNKNOWN_TRIGGERS_NUM, u32);
13538 SET_FTM(reschedule_requests_num, RESCHEDULE_REQUESTS_NUM, u32);
13539 SET_FTM(out_of_window_triggers_num, OUT_OF_WINDOW_TRIGGERS_NUM, u32);
13542 nla_nest_end(msg, ftm_stats_attr);
13544 genlmsg_end(msg, hdr);
13545 return genlmsg_reply(msg, info);
13552 static int nl80211_update_owe_info(struct sk_buff *skb, struct genl_info *info)
13554 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13555 struct cfg80211_update_owe_info owe_info;
13556 struct net_device *dev = info->user_ptr[1];
13558 if (!rdev->ops->update_owe_info)
13559 return -EOPNOTSUPP;
13561 if (!info->attrs[NL80211_ATTR_STATUS_CODE] ||
13562 !info->attrs[NL80211_ATTR_MAC])
13565 memset(&owe_info, 0, sizeof(owe_info));
13566 owe_info.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13567 nla_memcpy(owe_info.peer, info->attrs[NL80211_ATTR_MAC], ETH_ALEN);
13569 if (info->attrs[NL80211_ATTR_IE]) {
13570 owe_info.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
13571 owe_info.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
13574 return rdev_update_owe_info(rdev, dev, &owe_info);
13577 static int nl80211_probe_mesh_link(struct sk_buff *skb, struct genl_info *info)
13579 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13580 struct net_device *dev = info->user_ptr[1];
13581 struct wireless_dev *wdev = dev->ieee80211_ptr;
13582 struct station_info sinfo = {};
13588 if (!rdev->ops->probe_mesh_link || !rdev->ops->get_station)
13589 return -EOPNOTSUPP;
13591 if (!info->attrs[NL80211_ATTR_MAC] ||
13592 !info->attrs[NL80211_ATTR_FRAME]) {
13593 GENL_SET_ERR_MSG(info, "Frame or MAC missing");
13597 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
13598 return -EOPNOTSUPP;
13600 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13601 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13602 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13604 if (len < sizeof(struct ethhdr))
13607 if (!ether_addr_equal(buf, dest) || is_multicast_ether_addr(buf) ||
13608 !ether_addr_equal(buf + ETH_ALEN, dev->dev_addr))
13611 err = rdev_get_station(rdev, dev, dest, &sinfo);
13615 return rdev_probe_mesh_link(rdev, dev, dest, buf, len);
13618 #define NL80211_FLAG_NEED_WIPHY 0x01
13619 #define NL80211_FLAG_NEED_NETDEV 0x02
13620 #define NL80211_FLAG_NEED_RTNL 0x04
13621 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
13622 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
13623 NL80211_FLAG_CHECK_NETDEV_UP)
13624 #define NL80211_FLAG_NEED_WDEV 0x10
13625 /* If a netdev is associated, it must be UP, P2P must be started */
13626 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
13627 NL80211_FLAG_CHECK_NETDEV_UP)
13628 #define NL80211_FLAG_CLEAR_SKB 0x20
13630 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
13631 struct genl_info *info)
13633 struct cfg80211_registered_device *rdev;
13634 struct wireless_dev *wdev;
13635 struct net_device *dev;
13636 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
13641 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
13642 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
13643 if (IS_ERR(rdev)) {
13646 return PTR_ERR(rdev);
13648 info->user_ptr[0] = rdev;
13649 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
13650 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13653 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
13655 if (IS_ERR(wdev)) {
13658 return PTR_ERR(wdev);
13661 dev = wdev->netdev;
13662 rdev = wiphy_to_rdev(wdev->wiphy);
13664 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
13671 info->user_ptr[1] = dev;
13673 info->user_ptr[1] = wdev;
13676 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
13677 !wdev_running(wdev)) {
13686 info->user_ptr[0] = rdev;
13692 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
13693 struct genl_info *info)
13695 if (info->user_ptr[1]) {
13696 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13697 struct wireless_dev *wdev = info->user_ptr[1];
13700 dev_put(wdev->netdev);
13702 dev_put(info->user_ptr[1]);
13706 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
13709 /* If needed, clear the netlink message payload from the SKB
13710 * as it might contain key data that shouldn't stick around on
13711 * the heap after the SKB is freed. The netlink message header
13712 * is still needed for further processing, so leave it intact.
13714 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
13715 struct nlmsghdr *nlh = nlmsg_hdr(skb);
13717 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
13721 static const struct genl_ops nl80211_ops[] = {
13723 .cmd = NL80211_CMD_GET_WIPHY,
13724 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13725 .doit = nl80211_get_wiphy,
13726 .dumpit = nl80211_dump_wiphy,
13727 .done = nl80211_dump_wiphy_done,
13728 /* can be retrieved by unprivileged users */
13729 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13730 NL80211_FLAG_NEED_RTNL,
13733 .cmd = NL80211_CMD_SET_WIPHY,
13734 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13735 .doit = nl80211_set_wiphy,
13736 .flags = GENL_UNS_ADMIN_PERM,
13737 .internal_flags = NL80211_FLAG_NEED_RTNL,
13740 .cmd = NL80211_CMD_GET_INTERFACE,
13741 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13742 .doit = nl80211_get_interface,
13743 .dumpit = nl80211_dump_interface,
13744 /* can be retrieved by unprivileged users */
13745 .internal_flags = NL80211_FLAG_NEED_WDEV |
13746 NL80211_FLAG_NEED_RTNL,
13749 .cmd = NL80211_CMD_SET_INTERFACE,
13750 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13751 .doit = nl80211_set_interface,
13752 .flags = GENL_UNS_ADMIN_PERM,
13753 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13754 NL80211_FLAG_NEED_RTNL,
13757 .cmd = NL80211_CMD_NEW_INTERFACE,
13758 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13759 .doit = nl80211_new_interface,
13760 .flags = GENL_UNS_ADMIN_PERM,
13761 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13762 NL80211_FLAG_NEED_RTNL,
13765 .cmd = NL80211_CMD_DEL_INTERFACE,
13766 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13767 .doit = nl80211_del_interface,
13768 .flags = GENL_UNS_ADMIN_PERM,
13769 .internal_flags = NL80211_FLAG_NEED_WDEV |
13770 NL80211_FLAG_NEED_RTNL,
13773 .cmd = NL80211_CMD_GET_KEY,
13774 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13775 .doit = nl80211_get_key,
13776 .flags = GENL_UNS_ADMIN_PERM,
13777 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13778 NL80211_FLAG_NEED_RTNL,
13781 .cmd = NL80211_CMD_SET_KEY,
13782 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13783 .doit = nl80211_set_key,
13784 .flags = GENL_UNS_ADMIN_PERM,
13785 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13786 NL80211_FLAG_NEED_RTNL |
13787 NL80211_FLAG_CLEAR_SKB,
13790 .cmd = NL80211_CMD_NEW_KEY,
13791 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13792 .doit = nl80211_new_key,
13793 .flags = GENL_UNS_ADMIN_PERM,
13794 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13795 NL80211_FLAG_NEED_RTNL |
13796 NL80211_FLAG_CLEAR_SKB,
13799 .cmd = NL80211_CMD_DEL_KEY,
13800 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13801 .doit = nl80211_del_key,
13802 .flags = GENL_UNS_ADMIN_PERM,
13803 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13804 NL80211_FLAG_NEED_RTNL,
13807 .cmd = NL80211_CMD_SET_BEACON,
13808 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13809 .flags = GENL_UNS_ADMIN_PERM,
13810 .doit = nl80211_set_beacon,
13811 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13812 NL80211_FLAG_NEED_RTNL,
13815 .cmd = NL80211_CMD_START_AP,
13816 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13817 .flags = GENL_UNS_ADMIN_PERM,
13818 .doit = nl80211_start_ap,
13819 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13820 NL80211_FLAG_NEED_RTNL,
13823 .cmd = NL80211_CMD_STOP_AP,
13824 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13825 .flags = GENL_UNS_ADMIN_PERM,
13826 .doit = nl80211_stop_ap,
13827 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13828 NL80211_FLAG_NEED_RTNL,
13831 .cmd = NL80211_CMD_GET_STATION,
13832 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13833 .doit = nl80211_get_station,
13834 .dumpit = nl80211_dump_station,
13835 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13836 NL80211_FLAG_NEED_RTNL,
13839 .cmd = NL80211_CMD_SET_STATION,
13840 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13841 .doit = nl80211_set_station,
13842 .flags = GENL_UNS_ADMIN_PERM,
13843 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13844 NL80211_FLAG_NEED_RTNL,
13847 .cmd = NL80211_CMD_NEW_STATION,
13848 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13849 .doit = nl80211_new_station,
13850 .flags = GENL_UNS_ADMIN_PERM,
13851 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13852 NL80211_FLAG_NEED_RTNL,
13855 .cmd = NL80211_CMD_DEL_STATION,
13856 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13857 .doit = nl80211_del_station,
13858 .flags = GENL_UNS_ADMIN_PERM,
13859 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13860 NL80211_FLAG_NEED_RTNL,
13863 .cmd = NL80211_CMD_GET_MPATH,
13864 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13865 .doit = nl80211_get_mpath,
13866 .dumpit = nl80211_dump_mpath,
13867 .flags = GENL_UNS_ADMIN_PERM,
13868 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13869 NL80211_FLAG_NEED_RTNL,
13872 .cmd = NL80211_CMD_GET_MPP,
13873 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13874 .doit = nl80211_get_mpp,
13875 .dumpit = nl80211_dump_mpp,
13876 .flags = GENL_UNS_ADMIN_PERM,
13877 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13878 NL80211_FLAG_NEED_RTNL,
13881 .cmd = NL80211_CMD_SET_MPATH,
13882 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13883 .doit = nl80211_set_mpath,
13884 .flags = GENL_UNS_ADMIN_PERM,
13885 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13886 NL80211_FLAG_NEED_RTNL,
13889 .cmd = NL80211_CMD_NEW_MPATH,
13890 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13891 .doit = nl80211_new_mpath,
13892 .flags = GENL_UNS_ADMIN_PERM,
13893 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13894 NL80211_FLAG_NEED_RTNL,
13897 .cmd = NL80211_CMD_DEL_MPATH,
13898 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13899 .doit = nl80211_del_mpath,
13900 .flags = GENL_UNS_ADMIN_PERM,
13901 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13902 NL80211_FLAG_NEED_RTNL,
13905 .cmd = NL80211_CMD_SET_BSS,
13906 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13907 .doit = nl80211_set_bss,
13908 .flags = GENL_UNS_ADMIN_PERM,
13909 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13910 NL80211_FLAG_NEED_RTNL,
13913 .cmd = NL80211_CMD_GET_REG,
13914 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13915 .doit = nl80211_get_reg_do,
13916 .dumpit = nl80211_get_reg_dump,
13917 .internal_flags = NL80211_FLAG_NEED_RTNL,
13918 /* can be retrieved by unprivileged users */
13920 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
13922 .cmd = NL80211_CMD_SET_REG,
13923 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13924 .doit = nl80211_set_reg,
13925 .flags = GENL_ADMIN_PERM,
13926 .internal_flags = NL80211_FLAG_NEED_RTNL,
13930 .cmd = NL80211_CMD_REQ_SET_REG,
13931 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13932 .doit = nl80211_req_set_reg,
13933 .flags = GENL_ADMIN_PERM,
13936 .cmd = NL80211_CMD_RELOAD_REGDB,
13937 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13938 .doit = nl80211_reload_regdb,
13939 .flags = GENL_ADMIN_PERM,
13942 .cmd = NL80211_CMD_GET_MESH_CONFIG,
13943 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13944 .doit = nl80211_get_mesh_config,
13945 /* can be retrieved by unprivileged users */
13946 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13947 NL80211_FLAG_NEED_RTNL,
13950 .cmd = NL80211_CMD_SET_MESH_CONFIG,
13951 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13952 .doit = nl80211_update_mesh_config,
13953 .flags = GENL_UNS_ADMIN_PERM,
13954 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13955 NL80211_FLAG_NEED_RTNL,
13958 .cmd = NL80211_CMD_TRIGGER_SCAN,
13959 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13960 .doit = nl80211_trigger_scan,
13961 .flags = GENL_UNS_ADMIN_PERM,
13962 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13963 NL80211_FLAG_NEED_RTNL,
13966 .cmd = NL80211_CMD_ABORT_SCAN,
13967 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13968 .doit = nl80211_abort_scan,
13969 .flags = GENL_UNS_ADMIN_PERM,
13970 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13971 NL80211_FLAG_NEED_RTNL,
13974 .cmd = NL80211_CMD_GET_SCAN,
13975 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13976 .dumpit = nl80211_dump_scan,
13979 .cmd = NL80211_CMD_START_SCHED_SCAN,
13980 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13981 .doit = nl80211_start_sched_scan,
13982 .flags = GENL_UNS_ADMIN_PERM,
13983 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13984 NL80211_FLAG_NEED_RTNL,
13987 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
13988 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13989 .doit = nl80211_stop_sched_scan,
13990 .flags = GENL_UNS_ADMIN_PERM,
13991 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13992 NL80211_FLAG_NEED_RTNL,
13995 .cmd = NL80211_CMD_AUTHENTICATE,
13996 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13997 .doit = nl80211_authenticate,
13998 .flags = GENL_UNS_ADMIN_PERM,
13999 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14000 NL80211_FLAG_NEED_RTNL |
14001 NL80211_FLAG_CLEAR_SKB,
14004 .cmd = NL80211_CMD_ASSOCIATE,
14005 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14006 .doit = nl80211_associate,
14007 .flags = GENL_UNS_ADMIN_PERM,
14008 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14009 NL80211_FLAG_NEED_RTNL |
14010 NL80211_FLAG_CLEAR_SKB,
14013 .cmd = NL80211_CMD_DEAUTHENTICATE,
14014 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14015 .doit = nl80211_deauthenticate,
14016 .flags = GENL_UNS_ADMIN_PERM,
14017 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14018 NL80211_FLAG_NEED_RTNL,
14021 .cmd = NL80211_CMD_DISASSOCIATE,
14022 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14023 .doit = nl80211_disassociate,
14024 .flags = GENL_UNS_ADMIN_PERM,
14025 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14026 NL80211_FLAG_NEED_RTNL,
14029 .cmd = NL80211_CMD_JOIN_IBSS,
14030 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14031 .doit = nl80211_join_ibss,
14032 .flags = GENL_UNS_ADMIN_PERM,
14033 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14034 NL80211_FLAG_NEED_RTNL,
14037 .cmd = NL80211_CMD_LEAVE_IBSS,
14038 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14039 .doit = nl80211_leave_ibss,
14040 .flags = GENL_UNS_ADMIN_PERM,
14041 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14042 NL80211_FLAG_NEED_RTNL,
14044 #ifdef CONFIG_NL80211_TESTMODE
14046 .cmd = NL80211_CMD_TESTMODE,
14047 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14048 .doit = nl80211_testmode_do,
14049 .dumpit = nl80211_testmode_dump,
14050 .flags = GENL_UNS_ADMIN_PERM,
14051 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14052 NL80211_FLAG_NEED_RTNL,
14056 .cmd = NL80211_CMD_CONNECT,
14057 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14058 .doit = nl80211_connect,
14059 .flags = GENL_UNS_ADMIN_PERM,
14060 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14061 NL80211_FLAG_NEED_RTNL |
14062 NL80211_FLAG_CLEAR_SKB,
14065 .cmd = NL80211_CMD_UPDATE_CONNECT_PARAMS,
14066 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14067 .doit = nl80211_update_connect_params,
14068 .flags = GENL_ADMIN_PERM,
14069 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14070 NL80211_FLAG_NEED_RTNL |
14071 NL80211_FLAG_CLEAR_SKB,
14074 .cmd = NL80211_CMD_DISCONNECT,
14075 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14076 .doit = nl80211_disconnect,
14077 .flags = GENL_UNS_ADMIN_PERM,
14078 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14079 NL80211_FLAG_NEED_RTNL,
14082 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
14083 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14084 .doit = nl80211_wiphy_netns,
14085 .flags = GENL_UNS_ADMIN_PERM,
14086 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14087 NL80211_FLAG_NEED_RTNL,
14090 .cmd = NL80211_CMD_GET_SURVEY,
14091 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14092 .dumpit = nl80211_dump_survey,
14095 .cmd = NL80211_CMD_SET_PMKSA,
14096 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14097 .doit = nl80211_setdel_pmksa,
14098 .flags = GENL_UNS_ADMIN_PERM,
14099 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14100 NL80211_FLAG_NEED_RTNL |
14101 NL80211_FLAG_CLEAR_SKB,
14104 .cmd = NL80211_CMD_DEL_PMKSA,
14105 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14106 .doit = nl80211_setdel_pmksa,
14107 .flags = GENL_UNS_ADMIN_PERM,
14108 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14109 NL80211_FLAG_NEED_RTNL,
14112 .cmd = NL80211_CMD_FLUSH_PMKSA,
14113 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14114 .doit = nl80211_flush_pmksa,
14115 .flags = GENL_UNS_ADMIN_PERM,
14116 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14117 NL80211_FLAG_NEED_RTNL,
14120 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
14121 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14122 .doit = nl80211_remain_on_channel,
14123 .flags = GENL_UNS_ADMIN_PERM,
14124 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14125 NL80211_FLAG_NEED_RTNL,
14128 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
14129 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14130 .doit = nl80211_cancel_remain_on_channel,
14131 .flags = GENL_UNS_ADMIN_PERM,
14132 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14133 NL80211_FLAG_NEED_RTNL,
14136 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
14137 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14138 .doit = nl80211_set_tx_bitrate_mask,
14139 .flags = GENL_UNS_ADMIN_PERM,
14140 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14141 NL80211_FLAG_NEED_RTNL,
14144 .cmd = NL80211_CMD_REGISTER_FRAME,
14145 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14146 .doit = nl80211_register_mgmt,
14147 .flags = GENL_UNS_ADMIN_PERM,
14148 .internal_flags = NL80211_FLAG_NEED_WDEV |
14149 NL80211_FLAG_NEED_RTNL,
14152 .cmd = NL80211_CMD_FRAME,
14153 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14154 .doit = nl80211_tx_mgmt,
14155 .flags = GENL_UNS_ADMIN_PERM,
14156 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14157 NL80211_FLAG_NEED_RTNL,
14160 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
14161 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14162 .doit = nl80211_tx_mgmt_cancel_wait,
14163 .flags = GENL_UNS_ADMIN_PERM,
14164 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14165 NL80211_FLAG_NEED_RTNL,
14168 .cmd = NL80211_CMD_SET_POWER_SAVE,
14169 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14170 .doit = nl80211_set_power_save,
14171 .flags = GENL_UNS_ADMIN_PERM,
14172 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14173 NL80211_FLAG_NEED_RTNL,
14176 .cmd = NL80211_CMD_GET_POWER_SAVE,
14177 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14178 .doit = nl80211_get_power_save,
14179 /* can be retrieved by unprivileged users */
14180 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14181 NL80211_FLAG_NEED_RTNL,
14184 .cmd = NL80211_CMD_SET_CQM,
14185 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14186 .doit = nl80211_set_cqm,
14187 .flags = GENL_UNS_ADMIN_PERM,
14188 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14189 NL80211_FLAG_NEED_RTNL,
14192 .cmd = NL80211_CMD_SET_CHANNEL,
14193 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14194 .doit = nl80211_set_channel,
14195 .flags = GENL_UNS_ADMIN_PERM,
14196 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14197 NL80211_FLAG_NEED_RTNL,
14200 .cmd = NL80211_CMD_SET_WDS_PEER,
14201 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14202 .doit = nl80211_set_wds_peer,
14203 .flags = GENL_UNS_ADMIN_PERM,
14204 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14205 NL80211_FLAG_NEED_RTNL,
14208 .cmd = NL80211_CMD_JOIN_MESH,
14209 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14210 .doit = nl80211_join_mesh,
14211 .flags = GENL_UNS_ADMIN_PERM,
14212 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14213 NL80211_FLAG_NEED_RTNL,
14216 .cmd = NL80211_CMD_LEAVE_MESH,
14217 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14218 .doit = nl80211_leave_mesh,
14219 .flags = GENL_UNS_ADMIN_PERM,
14220 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14221 NL80211_FLAG_NEED_RTNL,
14224 .cmd = NL80211_CMD_JOIN_OCB,
14225 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14226 .doit = nl80211_join_ocb,
14227 .flags = GENL_UNS_ADMIN_PERM,
14228 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14229 NL80211_FLAG_NEED_RTNL,
14232 .cmd = NL80211_CMD_LEAVE_OCB,
14233 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14234 .doit = nl80211_leave_ocb,
14235 .flags = GENL_UNS_ADMIN_PERM,
14236 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14237 NL80211_FLAG_NEED_RTNL,
14241 .cmd = NL80211_CMD_GET_WOWLAN,
14242 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14243 .doit = nl80211_get_wowlan,
14244 /* can be retrieved by unprivileged users */
14245 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14246 NL80211_FLAG_NEED_RTNL,
14249 .cmd = NL80211_CMD_SET_WOWLAN,
14250 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14251 .doit = nl80211_set_wowlan,
14252 .flags = GENL_UNS_ADMIN_PERM,
14253 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14254 NL80211_FLAG_NEED_RTNL,
14258 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
14259 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14260 .doit = nl80211_set_rekey_data,
14261 .flags = GENL_UNS_ADMIN_PERM,
14262 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14263 NL80211_FLAG_NEED_RTNL |
14264 NL80211_FLAG_CLEAR_SKB,
14267 .cmd = NL80211_CMD_TDLS_MGMT,
14268 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14269 .doit = nl80211_tdls_mgmt,
14270 .flags = GENL_UNS_ADMIN_PERM,
14271 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14272 NL80211_FLAG_NEED_RTNL,
14275 .cmd = NL80211_CMD_TDLS_OPER,
14276 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14277 .doit = nl80211_tdls_oper,
14278 .flags = GENL_UNS_ADMIN_PERM,
14279 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14280 NL80211_FLAG_NEED_RTNL,
14283 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
14284 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14285 .doit = nl80211_register_unexpected_frame,
14286 .flags = GENL_UNS_ADMIN_PERM,
14287 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14288 NL80211_FLAG_NEED_RTNL,
14291 .cmd = NL80211_CMD_PROBE_CLIENT,
14292 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14293 .doit = nl80211_probe_client,
14294 .flags = GENL_UNS_ADMIN_PERM,
14295 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14296 NL80211_FLAG_NEED_RTNL,
14299 .cmd = NL80211_CMD_REGISTER_BEACONS,
14300 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14301 .doit = nl80211_register_beacons,
14302 .flags = GENL_UNS_ADMIN_PERM,
14303 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14304 NL80211_FLAG_NEED_RTNL,
14307 .cmd = NL80211_CMD_SET_NOACK_MAP,
14308 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14309 .doit = nl80211_set_noack_map,
14310 .flags = GENL_UNS_ADMIN_PERM,
14311 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14312 NL80211_FLAG_NEED_RTNL,
14315 .cmd = NL80211_CMD_START_P2P_DEVICE,
14316 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14317 .doit = nl80211_start_p2p_device,
14318 .flags = GENL_UNS_ADMIN_PERM,
14319 .internal_flags = NL80211_FLAG_NEED_WDEV |
14320 NL80211_FLAG_NEED_RTNL,
14323 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
14324 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14325 .doit = nl80211_stop_p2p_device,
14326 .flags = GENL_UNS_ADMIN_PERM,
14327 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14328 NL80211_FLAG_NEED_RTNL,
14331 .cmd = NL80211_CMD_START_NAN,
14332 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14333 .doit = nl80211_start_nan,
14334 .flags = GENL_ADMIN_PERM,
14335 .internal_flags = NL80211_FLAG_NEED_WDEV |
14336 NL80211_FLAG_NEED_RTNL,
14339 .cmd = NL80211_CMD_STOP_NAN,
14340 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14341 .doit = nl80211_stop_nan,
14342 .flags = GENL_ADMIN_PERM,
14343 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14344 NL80211_FLAG_NEED_RTNL,
14347 .cmd = NL80211_CMD_ADD_NAN_FUNCTION,
14348 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14349 .doit = nl80211_nan_add_func,
14350 .flags = GENL_ADMIN_PERM,
14351 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14352 NL80211_FLAG_NEED_RTNL,
14355 .cmd = NL80211_CMD_DEL_NAN_FUNCTION,
14356 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14357 .doit = nl80211_nan_del_func,
14358 .flags = GENL_ADMIN_PERM,
14359 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14360 NL80211_FLAG_NEED_RTNL,
14363 .cmd = NL80211_CMD_CHANGE_NAN_CONFIG,
14364 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14365 .doit = nl80211_nan_change_config,
14366 .flags = GENL_ADMIN_PERM,
14367 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14368 NL80211_FLAG_NEED_RTNL,
14371 .cmd = NL80211_CMD_SET_MCAST_RATE,
14372 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14373 .doit = nl80211_set_mcast_rate,
14374 .flags = GENL_UNS_ADMIN_PERM,
14375 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14376 NL80211_FLAG_NEED_RTNL,
14379 .cmd = NL80211_CMD_SET_MAC_ACL,
14380 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14381 .doit = nl80211_set_mac_acl,
14382 .flags = GENL_UNS_ADMIN_PERM,
14383 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14384 NL80211_FLAG_NEED_RTNL,
14387 .cmd = NL80211_CMD_RADAR_DETECT,
14388 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14389 .doit = nl80211_start_radar_detection,
14390 .flags = GENL_UNS_ADMIN_PERM,
14391 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14392 NL80211_FLAG_NEED_RTNL,
14395 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
14396 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14397 .doit = nl80211_get_protocol_features,
14400 .cmd = NL80211_CMD_UPDATE_FT_IES,
14401 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14402 .doit = nl80211_update_ft_ies,
14403 .flags = GENL_UNS_ADMIN_PERM,
14404 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14405 NL80211_FLAG_NEED_RTNL,
14408 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
14409 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14410 .doit = nl80211_crit_protocol_start,
14411 .flags = GENL_UNS_ADMIN_PERM,
14412 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14413 NL80211_FLAG_NEED_RTNL,
14416 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
14417 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14418 .doit = nl80211_crit_protocol_stop,
14419 .flags = GENL_UNS_ADMIN_PERM,
14420 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14421 NL80211_FLAG_NEED_RTNL,
14424 .cmd = NL80211_CMD_GET_COALESCE,
14425 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14426 .doit = nl80211_get_coalesce,
14427 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14428 NL80211_FLAG_NEED_RTNL,
14431 .cmd = NL80211_CMD_SET_COALESCE,
14432 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14433 .doit = nl80211_set_coalesce,
14434 .flags = GENL_UNS_ADMIN_PERM,
14435 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14436 NL80211_FLAG_NEED_RTNL,
14439 .cmd = NL80211_CMD_CHANNEL_SWITCH,
14440 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14441 .doit = nl80211_channel_switch,
14442 .flags = GENL_UNS_ADMIN_PERM,
14443 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14444 NL80211_FLAG_NEED_RTNL,
14447 .cmd = NL80211_CMD_VENDOR,
14448 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14449 .doit = nl80211_vendor_cmd,
14450 .dumpit = nl80211_vendor_cmd_dump,
14451 .flags = GENL_UNS_ADMIN_PERM,
14452 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14453 NL80211_FLAG_NEED_RTNL |
14454 NL80211_FLAG_CLEAR_SKB,
14457 .cmd = NL80211_CMD_SET_QOS_MAP,
14458 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14459 .doit = nl80211_set_qos_map,
14460 .flags = GENL_UNS_ADMIN_PERM,
14461 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14462 NL80211_FLAG_NEED_RTNL,
14465 .cmd = NL80211_CMD_ADD_TX_TS,
14466 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14467 .doit = nl80211_add_tx_ts,
14468 .flags = GENL_UNS_ADMIN_PERM,
14469 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14470 NL80211_FLAG_NEED_RTNL,
14473 .cmd = NL80211_CMD_DEL_TX_TS,
14474 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14475 .doit = nl80211_del_tx_ts,
14476 .flags = GENL_UNS_ADMIN_PERM,
14477 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14478 NL80211_FLAG_NEED_RTNL,
14481 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
14482 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14483 .doit = nl80211_tdls_channel_switch,
14484 .flags = GENL_UNS_ADMIN_PERM,
14485 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14486 NL80211_FLAG_NEED_RTNL,
14489 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
14490 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14491 .doit = nl80211_tdls_cancel_channel_switch,
14492 .flags = GENL_UNS_ADMIN_PERM,
14493 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14494 NL80211_FLAG_NEED_RTNL,
14497 .cmd = NL80211_CMD_SET_MULTICAST_TO_UNICAST,
14498 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14499 .doit = nl80211_set_multicast_to_unicast,
14500 .flags = GENL_UNS_ADMIN_PERM,
14501 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14502 NL80211_FLAG_NEED_RTNL,
14505 .cmd = NL80211_CMD_SET_PMK,
14506 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14507 .doit = nl80211_set_pmk,
14508 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14509 NL80211_FLAG_NEED_RTNL |
14510 NL80211_FLAG_CLEAR_SKB,
14513 .cmd = NL80211_CMD_DEL_PMK,
14514 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14515 .doit = nl80211_del_pmk,
14516 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14517 NL80211_FLAG_NEED_RTNL,
14520 .cmd = NL80211_CMD_EXTERNAL_AUTH,
14521 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14522 .doit = nl80211_external_auth,
14523 .flags = GENL_ADMIN_PERM,
14524 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14525 NL80211_FLAG_NEED_RTNL,
14528 .cmd = NL80211_CMD_CONTROL_PORT_FRAME,
14529 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14530 .doit = nl80211_tx_control_port,
14531 .flags = GENL_UNS_ADMIN_PERM,
14532 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14533 NL80211_FLAG_NEED_RTNL,
14536 .cmd = NL80211_CMD_GET_FTM_RESPONDER_STATS,
14537 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14538 .doit = nl80211_get_ftm_responder_stats,
14539 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14540 NL80211_FLAG_NEED_RTNL,
14543 .cmd = NL80211_CMD_PEER_MEASUREMENT_START,
14544 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14545 .doit = nl80211_pmsr_start,
14546 .flags = GENL_UNS_ADMIN_PERM,
14547 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14548 NL80211_FLAG_NEED_RTNL,
14551 .cmd = NL80211_CMD_NOTIFY_RADAR,
14552 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14553 .doit = nl80211_notify_radar_detection,
14554 .flags = GENL_UNS_ADMIN_PERM,
14555 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14556 NL80211_FLAG_NEED_RTNL,
14559 .cmd = NL80211_CMD_UPDATE_OWE_INFO,
14560 .doit = nl80211_update_owe_info,
14561 .flags = GENL_ADMIN_PERM,
14562 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14563 NL80211_FLAG_NEED_RTNL,
14566 .cmd = NL80211_CMD_PROBE_MESH_LINK,
14567 .doit = nl80211_probe_mesh_link,
14568 .flags = GENL_UNS_ADMIN_PERM,
14569 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14570 NL80211_FLAG_NEED_RTNL,
14574 static struct genl_family nl80211_fam __ro_after_init = {
14575 .name = NL80211_GENL_NAME, /* have users key off the name instead */
14576 .hdrsize = 0, /* no private header */
14577 .version = 1, /* no particular meaning now */
14578 .maxattr = NL80211_ATTR_MAX,
14579 .policy = nl80211_policy,
14581 .pre_doit = nl80211_pre_doit,
14582 .post_doit = nl80211_post_doit,
14583 .module = THIS_MODULE,
14584 .ops = nl80211_ops,
14585 .n_ops = ARRAY_SIZE(nl80211_ops),
14586 .mcgrps = nl80211_mcgrps,
14587 .n_mcgrps = ARRAY_SIZE(nl80211_mcgrps),
14590 /* notification functions */
14592 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
14593 enum nl80211_commands cmd)
14595 struct sk_buff *msg;
14596 struct nl80211_dump_wiphy_state state = {};
14598 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
14599 cmd != NL80211_CMD_DEL_WIPHY);
14601 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14605 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
14610 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14611 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14614 void nl80211_notify_iface(struct cfg80211_registered_device *rdev,
14615 struct wireless_dev *wdev,
14616 enum nl80211_commands cmd)
14618 struct sk_buff *msg;
14620 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14624 if (nl80211_send_iface(msg, 0, 0, 0, rdev, wdev, cmd) < 0) {
14629 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14630 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14633 static int nl80211_add_scan_req(struct sk_buff *msg,
14634 struct cfg80211_registered_device *rdev)
14636 struct cfg80211_scan_request *req = rdev->scan_req;
14637 struct nlattr *nest;
14643 nest = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_SSIDS);
14645 goto nla_put_failure;
14646 for (i = 0; i < req->n_ssids; i++) {
14647 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
14648 goto nla_put_failure;
14650 nla_nest_end(msg, nest);
14652 nest = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_FREQUENCIES);
14654 goto nla_put_failure;
14655 for (i = 0; i < req->n_channels; i++) {
14656 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
14657 goto nla_put_failure;
14659 nla_nest_end(msg, nest);
14662 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
14663 goto nla_put_failure;
14666 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
14667 goto nla_put_failure;
14669 if (req->info.scan_start_tsf &&
14670 (nla_put_u64_64bit(msg, NL80211_ATTR_SCAN_START_TIME_TSF,
14671 req->info.scan_start_tsf, NL80211_BSS_PAD) ||
14672 nla_put(msg, NL80211_ATTR_SCAN_START_TIME_TSF_BSSID, ETH_ALEN,
14673 req->info.tsf_bssid)))
14674 goto nla_put_failure;
14681 static int nl80211_prep_scan_msg(struct sk_buff *msg,
14682 struct cfg80211_registered_device *rdev,
14683 struct wireless_dev *wdev,
14684 u32 portid, u32 seq, int flags,
14689 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
14693 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14694 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14695 wdev->netdev->ifindex)) ||
14696 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14698 goto nla_put_failure;
14700 /* ignore errors and send incomplete event anyway */
14701 nl80211_add_scan_req(msg, rdev);
14703 genlmsg_end(msg, hdr);
14707 genlmsg_cancel(msg, hdr);
14712 nl80211_prep_sched_scan_msg(struct sk_buff *msg,
14713 struct cfg80211_sched_scan_request *req, u32 cmd)
14717 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14721 if (nla_put_u32(msg, NL80211_ATTR_WIPHY,
14722 wiphy_to_rdev(req->wiphy)->wiphy_idx) ||
14723 nla_put_u32(msg, NL80211_ATTR_IFINDEX, req->dev->ifindex) ||
14724 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, req->reqid,
14726 goto nla_put_failure;
14728 genlmsg_end(msg, hdr);
14732 genlmsg_cancel(msg, hdr);
14736 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
14737 struct wireless_dev *wdev)
14739 struct sk_buff *msg;
14741 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14745 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14746 NL80211_CMD_TRIGGER_SCAN) < 0) {
14751 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14752 NL80211_MCGRP_SCAN, GFP_KERNEL);
14755 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
14756 struct wireless_dev *wdev, bool aborted)
14758 struct sk_buff *msg;
14760 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14764 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14765 aborted ? NL80211_CMD_SCAN_ABORTED :
14766 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
14774 /* send message created by nl80211_build_scan_msg() */
14775 void nl80211_send_scan_msg(struct cfg80211_registered_device *rdev,
14776 struct sk_buff *msg)
14781 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14782 NL80211_MCGRP_SCAN, GFP_KERNEL);
14785 void nl80211_send_sched_scan(struct cfg80211_sched_scan_request *req, u32 cmd)
14787 struct sk_buff *msg;
14789 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14793 if (nl80211_prep_sched_scan_msg(msg, req, cmd) < 0) {
14798 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(req->wiphy), msg, 0,
14799 NL80211_MCGRP_SCAN, GFP_KERNEL);
14802 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
14803 struct regulatory_request *request)
14805 /* Userspace can always count this one always being set */
14806 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
14807 goto nla_put_failure;
14809 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
14810 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14811 NL80211_REGDOM_TYPE_WORLD))
14812 goto nla_put_failure;
14813 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
14814 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14815 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
14816 goto nla_put_failure;
14817 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
14818 request->intersect) {
14819 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14820 NL80211_REGDOM_TYPE_INTERSECTION))
14821 goto nla_put_failure;
14823 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14824 NL80211_REGDOM_TYPE_COUNTRY) ||
14825 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
14827 goto nla_put_failure;
14830 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
14831 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
14834 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
14835 goto nla_put_failure;
14838 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
14839 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
14840 goto nla_put_failure;
14850 * This can happen on global regulatory changes or device specific settings
14851 * based on custom regulatory domains.
14853 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
14854 struct regulatory_request *request)
14856 struct sk_buff *msg;
14859 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14863 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
14869 if (nl80211_reg_change_event_fill(msg, request) == false)
14870 goto nla_put_failure;
14872 genlmsg_end(msg, hdr);
14875 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
14876 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
14885 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
14886 struct net_device *netdev,
14887 const u8 *buf, size_t len,
14888 enum nl80211_commands cmd, gfp_t gfp,
14889 int uapsd_queues, const u8 *req_ies,
14890 size_t req_ies_len)
14892 struct sk_buff *msg;
14895 msg = nlmsg_new(100 + len + req_ies_len, gfp);
14899 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14905 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14906 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14907 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
14909 nla_put(msg, NL80211_ATTR_REQ_IE, req_ies_len, req_ies)))
14910 goto nla_put_failure;
14912 if (uapsd_queues >= 0) {
14913 struct nlattr *nla_wmm =
14914 nla_nest_start_noflag(msg, NL80211_ATTR_STA_WME);
14916 goto nla_put_failure;
14918 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
14920 goto nla_put_failure;
14922 nla_nest_end(msg, nla_wmm);
14925 genlmsg_end(msg, hdr);
14927 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14928 NL80211_MCGRP_MLME, gfp);
14935 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
14936 struct net_device *netdev, const u8 *buf,
14937 size_t len, gfp_t gfp)
14939 nl80211_send_mlme_event(rdev, netdev, buf, len,
14940 NL80211_CMD_AUTHENTICATE, gfp, -1, NULL, 0);
14943 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
14944 struct net_device *netdev, const u8 *buf,
14945 size_t len, gfp_t gfp, int uapsd_queues,
14946 const u8 *req_ies, size_t req_ies_len)
14948 nl80211_send_mlme_event(rdev, netdev, buf, len,
14949 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues,
14950 req_ies, req_ies_len);
14953 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
14954 struct net_device *netdev, const u8 *buf,
14955 size_t len, gfp_t gfp)
14957 nl80211_send_mlme_event(rdev, netdev, buf, len,
14958 NL80211_CMD_DEAUTHENTICATE, gfp, -1, NULL, 0);
14961 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
14962 struct net_device *netdev, const u8 *buf,
14963 size_t len, gfp_t gfp)
14965 nl80211_send_mlme_event(rdev, netdev, buf, len,
14966 NL80211_CMD_DISASSOCIATE, gfp, -1, NULL, 0);
14969 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
14972 struct wireless_dev *wdev = dev->ieee80211_ptr;
14973 struct wiphy *wiphy = wdev->wiphy;
14974 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14975 const struct ieee80211_mgmt *mgmt = (void *)buf;
14978 if (WARN_ON(len < 2))
14981 if (ieee80211_is_deauth(mgmt->frame_control))
14982 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
14984 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
14986 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
14987 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1,
14990 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
14992 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
14993 struct net_device *netdev, int cmd,
14994 const u8 *addr, gfp_t gfp)
14996 struct sk_buff *msg;
14999 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15003 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15009 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15010 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15011 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
15012 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
15013 goto nla_put_failure;
15015 genlmsg_end(msg, hdr);
15017 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15018 NL80211_MCGRP_MLME, gfp);
15025 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
15026 struct net_device *netdev, const u8 *addr,
15029 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
15033 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
15034 struct net_device *netdev, const u8 *addr,
15037 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
15041 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
15042 struct net_device *netdev,
15043 struct cfg80211_connect_resp_params *cr,
15046 struct sk_buff *msg;
15049 msg = nlmsg_new(100 + cr->req_ie_len + cr->resp_ie_len +
15050 cr->fils.kek_len + cr->fils.pmk_len +
15051 (cr->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
15055 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
15061 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15062 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15064 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, cr->bssid)) ||
15065 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE,
15066 cr->status < 0 ? WLAN_STATUS_UNSPECIFIED_FAILURE :
15069 (nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
15070 nla_put_u32(msg, NL80211_ATTR_TIMEOUT_REASON,
15071 cr->timeout_reason))) ||
15073 nla_put(msg, NL80211_ATTR_REQ_IE, cr->req_ie_len, cr->req_ie)) ||
15075 nla_put(msg, NL80211_ATTR_RESP_IE, cr->resp_ie_len,
15077 (cr->fils.update_erp_next_seq_num &&
15078 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
15079 cr->fils.erp_next_seq_num)) ||
15080 (cr->status == WLAN_STATUS_SUCCESS &&
15082 nla_put(msg, NL80211_ATTR_FILS_KEK, cr->fils.kek_len,
15085 nla_put(msg, NL80211_ATTR_PMK, cr->fils.pmk_len, cr->fils.pmk)) ||
15087 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, cr->fils.pmkid)))))
15088 goto nla_put_failure;
15090 genlmsg_end(msg, hdr);
15092 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15093 NL80211_MCGRP_MLME, gfp);
15100 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
15101 struct net_device *netdev,
15102 struct cfg80211_roam_info *info, gfp_t gfp)
15104 struct sk_buff *msg;
15106 const u8 *bssid = info->bss ? info->bss->bssid : info->bssid;
15108 msg = nlmsg_new(100 + info->req_ie_len + info->resp_ie_len +
15109 info->fils.kek_len + info->fils.pmk_len +
15110 (info->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
15114 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
15120 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15121 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15122 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
15124 nla_put(msg, NL80211_ATTR_REQ_IE, info->req_ie_len,
15127 nla_put(msg, NL80211_ATTR_RESP_IE, info->resp_ie_len,
15129 (info->fils.update_erp_next_seq_num &&
15130 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
15131 info->fils.erp_next_seq_num)) ||
15133 nla_put(msg, NL80211_ATTR_FILS_KEK, info->fils.kek_len,
15134 info->fils.kek)) ||
15136 nla_put(msg, NL80211_ATTR_PMK, info->fils.pmk_len, info->fils.pmk)) ||
15137 (info->fils.pmkid &&
15138 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, info->fils.pmkid)))
15139 goto nla_put_failure;
15141 genlmsg_end(msg, hdr);
15143 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15144 NL80211_MCGRP_MLME, gfp);
15151 void nl80211_send_port_authorized(struct cfg80211_registered_device *rdev,
15152 struct net_device *netdev, const u8 *bssid)
15154 struct sk_buff *msg;
15157 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
15161 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PORT_AUTHORIZED);
15167 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15168 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15169 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15170 goto nla_put_failure;
15172 genlmsg_end(msg, hdr);
15174 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15175 NL80211_MCGRP_MLME, GFP_KERNEL);
15182 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
15183 struct net_device *netdev, u16 reason,
15184 const u8 *ie, size_t ie_len, bool from_ap)
15186 struct sk_buff *msg;
15189 msg = nlmsg_new(100 + ie_len, GFP_KERNEL);
15193 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
15199 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15200 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15202 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
15204 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
15205 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
15206 goto nla_put_failure;
15208 genlmsg_end(msg, hdr);
15210 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15211 NL80211_MCGRP_MLME, GFP_KERNEL);
15218 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
15219 struct net_device *netdev, const u8 *bssid,
15222 struct sk_buff *msg;
15225 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15229 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
15235 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15236 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15237 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15238 goto nla_put_failure;
15240 genlmsg_end(msg, hdr);
15242 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15243 NL80211_MCGRP_MLME, gfp);
15250 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
15251 const u8 *ie, u8 ie_len,
15252 int sig_dbm, gfp_t gfp)
15254 struct wireless_dev *wdev = dev->ieee80211_ptr;
15255 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15256 struct sk_buff *msg;
15259 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
15262 trace_cfg80211_notify_new_peer_candidate(dev, addr);
15264 msg = nlmsg_new(100 + ie_len, gfp);
15268 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
15274 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15275 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15276 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15278 nla_put(msg, NL80211_ATTR_IE, ie_len, ie)) ||
15280 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)))
15281 goto nla_put_failure;
15283 genlmsg_end(msg, hdr);
15285 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15286 NL80211_MCGRP_MLME, gfp);
15292 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
15294 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
15295 struct net_device *netdev, const u8 *addr,
15296 enum nl80211_key_type key_type, int key_id,
15297 const u8 *tsc, gfp_t gfp)
15299 struct sk_buff *msg;
15302 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15306 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
15312 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15313 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15314 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
15315 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
15317 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
15318 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
15319 goto nla_put_failure;
15321 genlmsg_end(msg, hdr);
15323 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15324 NL80211_MCGRP_MLME, gfp);
15331 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
15332 struct ieee80211_channel *channel_before,
15333 struct ieee80211_channel *channel_after)
15335 struct sk_buff *msg;
15337 struct nlattr *nl_freq;
15339 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
15343 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
15350 * Since we are applying the beacon hint to a wiphy we know its
15351 * wiphy_idx is valid
15353 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
15354 goto nla_put_failure;
15357 nl_freq = nla_nest_start_noflag(msg, NL80211_ATTR_FREQ_BEFORE);
15359 goto nla_put_failure;
15361 if (nl80211_msg_put_channel(msg, wiphy, channel_before, false))
15362 goto nla_put_failure;
15363 nla_nest_end(msg, nl_freq);
15366 nl_freq = nla_nest_start_noflag(msg, NL80211_ATTR_FREQ_AFTER);
15368 goto nla_put_failure;
15370 if (nl80211_msg_put_channel(msg, wiphy, channel_after, false))
15371 goto nla_put_failure;
15372 nla_nest_end(msg, nl_freq);
15374 genlmsg_end(msg, hdr);
15377 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
15378 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
15387 static void nl80211_send_remain_on_chan_event(
15388 int cmd, struct cfg80211_registered_device *rdev,
15389 struct wireless_dev *wdev, u64 cookie,
15390 struct ieee80211_channel *chan,
15391 unsigned int duration, gfp_t gfp)
15393 struct sk_buff *msg;
15396 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15400 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15406 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15407 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15408 wdev->netdev->ifindex)) ||
15409 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15410 NL80211_ATTR_PAD) ||
15411 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
15412 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
15413 NL80211_CHAN_NO_HT) ||
15414 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15416 goto nla_put_failure;
15418 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
15419 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
15420 goto nla_put_failure;
15422 genlmsg_end(msg, hdr);
15424 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15425 NL80211_MCGRP_MLME, gfp);
15432 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
15433 struct ieee80211_channel *chan,
15434 unsigned int duration, gfp_t gfp)
15436 struct wiphy *wiphy = wdev->wiphy;
15437 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15439 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
15440 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
15441 rdev, wdev, cookie, chan,
15444 EXPORT_SYMBOL(cfg80211_ready_on_channel);
15446 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
15447 struct ieee80211_channel *chan,
15450 struct wiphy *wiphy = wdev->wiphy;
15451 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15453 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
15454 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
15455 rdev, wdev, cookie, chan, 0, gfp);
15457 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
15459 void cfg80211_tx_mgmt_expired(struct wireless_dev *wdev, u64 cookie,
15460 struct ieee80211_channel *chan,
15463 struct wiphy *wiphy = wdev->wiphy;
15464 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15466 trace_cfg80211_tx_mgmt_expired(wdev, cookie, chan);
15467 nl80211_send_remain_on_chan_event(NL80211_CMD_FRAME_WAIT_CANCEL,
15468 rdev, wdev, cookie, chan, 0, gfp);
15470 EXPORT_SYMBOL(cfg80211_tx_mgmt_expired);
15472 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
15473 struct station_info *sinfo, gfp_t gfp)
15475 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15476 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15477 struct sk_buff *msg;
15479 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
15481 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15485 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION, 0, 0, 0,
15486 rdev, dev, mac_addr, sinfo) < 0) {
15491 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15492 NL80211_MCGRP_MLME, gfp);
15494 EXPORT_SYMBOL(cfg80211_new_sta);
15496 void cfg80211_del_sta_sinfo(struct net_device *dev, const u8 *mac_addr,
15497 struct station_info *sinfo, gfp_t gfp)
15499 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15500 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15501 struct sk_buff *msg;
15502 struct station_info empty_sinfo = {};
15505 sinfo = &empty_sinfo;
15507 trace_cfg80211_del_sta(dev, mac_addr);
15509 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15511 cfg80211_sinfo_release_content(sinfo);
15515 if (nl80211_send_station(msg, NL80211_CMD_DEL_STATION, 0, 0, 0,
15516 rdev, dev, mac_addr, sinfo) < 0) {
15521 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15522 NL80211_MCGRP_MLME, gfp);
15524 EXPORT_SYMBOL(cfg80211_del_sta_sinfo);
15526 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
15527 enum nl80211_connect_failed_reason reason,
15530 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15531 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15532 struct sk_buff *msg;
15535 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
15539 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
15545 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15546 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
15547 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
15548 goto nla_put_failure;
15550 genlmsg_end(msg, hdr);
15552 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15553 NL80211_MCGRP_MLME, gfp);
15559 EXPORT_SYMBOL(cfg80211_conn_failed);
15561 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
15562 const u8 *addr, gfp_t gfp)
15564 struct wireless_dev *wdev = dev->ieee80211_ptr;
15565 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15566 struct sk_buff *msg;
15568 u32 nlportid = READ_ONCE(wdev->ap_unexpected_nlportid);
15573 msg = nlmsg_new(100, gfp);
15577 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15583 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15584 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15585 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
15586 goto nla_put_failure;
15588 genlmsg_end(msg, hdr);
15589 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15597 bool cfg80211_rx_spurious_frame(struct net_device *dev,
15598 const u8 *addr, gfp_t gfp)
15600 struct wireless_dev *wdev = dev->ieee80211_ptr;
15603 trace_cfg80211_rx_spurious_frame(dev, addr);
15605 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15606 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
15607 trace_cfg80211_return_bool(false);
15610 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
15612 trace_cfg80211_return_bool(ret);
15615 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
15617 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
15618 const u8 *addr, gfp_t gfp)
15620 struct wireless_dev *wdev = dev->ieee80211_ptr;
15623 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
15625 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15626 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
15627 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
15628 trace_cfg80211_return_bool(false);
15631 ret = __nl80211_unexpected_frame(dev,
15632 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
15634 trace_cfg80211_return_bool(ret);
15637 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
15639 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
15640 struct wireless_dev *wdev, u32 nlportid,
15641 int freq, int sig_dbm,
15642 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
15644 struct net_device *netdev = wdev->netdev;
15645 struct sk_buff *msg;
15648 msg = nlmsg_new(100 + len, gfp);
15652 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15658 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15659 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15660 netdev->ifindex)) ||
15661 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15662 NL80211_ATTR_PAD) ||
15663 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
15665 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15666 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15668 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
15669 goto nla_put_failure;
15671 genlmsg_end(msg, hdr);
15673 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15680 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
15681 const u8 *buf, size_t len, bool ack, gfp_t gfp)
15683 struct wiphy *wiphy = wdev->wiphy;
15684 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15685 struct net_device *netdev = wdev->netdev;
15686 struct sk_buff *msg;
15689 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
15691 msg = nlmsg_new(100 + len, gfp);
15695 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
15701 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15702 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15703 netdev->ifindex)) ||
15704 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15705 NL80211_ATTR_PAD) ||
15706 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15707 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15708 NL80211_ATTR_PAD) ||
15709 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
15710 goto nla_put_failure;
15712 genlmsg_end(msg, hdr);
15714 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15715 NL80211_MCGRP_MLME, gfp);
15721 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
15723 static int __nl80211_rx_control_port(struct net_device *dev,
15724 struct sk_buff *skb,
15725 bool unencrypted, gfp_t gfp)
15727 struct wireless_dev *wdev = dev->ieee80211_ptr;
15728 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15729 struct ethhdr *ehdr = eth_hdr(skb);
15730 const u8 *addr = ehdr->h_source;
15731 u16 proto = be16_to_cpu(skb->protocol);
15732 struct sk_buff *msg;
15734 struct nlattr *frame;
15736 u32 nlportid = READ_ONCE(wdev->conn_owner_nlportid);
15741 msg = nlmsg_new(100 + skb->len, gfp);
15745 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONTROL_PORT_FRAME);
15751 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15752 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15753 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15754 NL80211_ATTR_PAD) ||
15755 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15756 nla_put_u16(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE, proto) ||
15757 (unencrypted && nla_put_flag(msg,
15758 NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT)))
15759 goto nla_put_failure;
15761 frame = nla_reserve(msg, NL80211_ATTR_FRAME, skb->len);
15763 goto nla_put_failure;
15765 skb_copy_bits(skb, 0, nla_data(frame), skb->len);
15766 genlmsg_end(msg, hdr);
15768 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15775 bool cfg80211_rx_control_port(struct net_device *dev,
15776 struct sk_buff *skb, bool unencrypted)
15780 trace_cfg80211_rx_control_port(dev, skb, unencrypted);
15781 ret = __nl80211_rx_control_port(dev, skb, unencrypted, GFP_ATOMIC);
15782 trace_cfg80211_return_bool(ret == 0);
15785 EXPORT_SYMBOL(cfg80211_rx_control_port);
15787 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
15788 const char *mac, gfp_t gfp)
15790 struct wireless_dev *wdev = dev->ieee80211_ptr;
15791 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15792 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15798 cb = (void **)msg->cb;
15800 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
15806 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15807 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15808 goto nla_put_failure;
15810 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15811 goto nla_put_failure;
15813 cb[1] = nla_nest_start_noflag(msg, NL80211_ATTR_CQM);
15815 goto nla_put_failure;
15825 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
15827 void **cb = (void **)msg->cb;
15828 struct cfg80211_registered_device *rdev = cb[2];
15830 nla_nest_end(msg, cb[1]);
15831 genlmsg_end(msg, cb[0]);
15833 memset(msg->cb, 0, sizeof(msg->cb));
15835 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15836 NL80211_MCGRP_MLME, gfp);
15839 void cfg80211_cqm_rssi_notify(struct net_device *dev,
15840 enum nl80211_cqm_rssi_threshold_event rssi_event,
15841 s32 rssi_level, gfp_t gfp)
15843 struct sk_buff *msg;
15844 struct wireless_dev *wdev = dev->ieee80211_ptr;
15845 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15847 trace_cfg80211_cqm_rssi_notify(dev, rssi_event, rssi_level);
15849 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
15850 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
15853 if (wdev->cqm_config) {
15854 wdev->cqm_config->last_rssi_event_value = rssi_level;
15856 cfg80211_cqm_rssi_update(rdev, dev);
15858 if (rssi_level == 0)
15859 rssi_level = wdev->cqm_config->last_rssi_event_value;
15862 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15866 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
15868 goto nla_put_failure;
15870 if (rssi_level && nla_put_s32(msg, NL80211_ATTR_CQM_RSSI_LEVEL,
15872 goto nla_put_failure;
15874 cfg80211_send_cqm(msg, gfp);
15881 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
15883 void cfg80211_cqm_txe_notify(struct net_device *dev,
15884 const u8 *peer, u32 num_packets,
15885 u32 rate, u32 intvl, gfp_t gfp)
15887 struct sk_buff *msg;
15889 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15893 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
15894 goto nla_put_failure;
15896 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
15897 goto nla_put_failure;
15899 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
15900 goto nla_put_failure;
15902 cfg80211_send_cqm(msg, gfp);
15908 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
15910 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
15911 const u8 *peer, u32 num_packets, gfp_t gfp)
15913 struct sk_buff *msg;
15915 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
15917 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15921 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
15922 goto nla_put_failure;
15924 cfg80211_send_cqm(msg, gfp);
15930 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
15932 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
15934 struct sk_buff *msg;
15936 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15940 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
15941 goto nla_put_failure;
15943 cfg80211_send_cqm(msg, gfp);
15949 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
15951 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
15952 struct net_device *netdev, const u8 *bssid,
15953 const u8 *replay_ctr, gfp_t gfp)
15955 struct sk_buff *msg;
15956 struct nlattr *rekey_attr;
15959 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15963 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
15969 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15970 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15971 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15972 goto nla_put_failure;
15974 rekey_attr = nla_nest_start_noflag(msg, NL80211_ATTR_REKEY_DATA);
15976 goto nla_put_failure;
15978 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
15979 NL80211_REPLAY_CTR_LEN, replay_ctr))
15980 goto nla_put_failure;
15982 nla_nest_end(msg, rekey_attr);
15984 genlmsg_end(msg, hdr);
15986 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15987 NL80211_MCGRP_MLME, gfp);
15994 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
15995 const u8 *replay_ctr, gfp_t gfp)
15997 struct wireless_dev *wdev = dev->ieee80211_ptr;
15998 struct wiphy *wiphy = wdev->wiphy;
15999 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16001 trace_cfg80211_gtk_rekey_notify(dev, bssid);
16002 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
16004 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
16007 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
16008 struct net_device *netdev, int index,
16009 const u8 *bssid, bool preauth, gfp_t gfp)
16011 struct sk_buff *msg;
16012 struct nlattr *attr;
16015 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16019 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
16025 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16026 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
16027 goto nla_put_failure;
16029 attr = nla_nest_start_noflag(msg, NL80211_ATTR_PMKSA_CANDIDATE);
16031 goto nla_put_failure;
16033 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
16034 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
16036 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
16037 goto nla_put_failure;
16039 nla_nest_end(msg, attr);
16041 genlmsg_end(msg, hdr);
16043 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16044 NL80211_MCGRP_MLME, gfp);
16051 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
16052 const u8 *bssid, bool preauth, gfp_t gfp)
16054 struct wireless_dev *wdev = dev->ieee80211_ptr;
16055 struct wiphy *wiphy = wdev->wiphy;
16056 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16058 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
16059 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
16061 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
16063 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
16064 struct net_device *netdev,
16065 struct cfg80211_chan_def *chandef,
16067 enum nl80211_commands notif,
16070 struct sk_buff *msg;
16073 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16077 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
16083 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
16084 goto nla_put_failure;
16086 if (nl80211_send_chandef(msg, chandef))
16087 goto nla_put_failure;
16089 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
16090 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
16091 goto nla_put_failure;
16093 genlmsg_end(msg, hdr);
16095 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16096 NL80211_MCGRP_MLME, gfp);
16103 void cfg80211_ch_switch_notify(struct net_device *dev,
16104 struct cfg80211_chan_def *chandef)
16106 struct wireless_dev *wdev = dev->ieee80211_ptr;
16107 struct wiphy *wiphy = wdev->wiphy;
16108 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16110 ASSERT_WDEV_LOCK(wdev);
16112 trace_cfg80211_ch_switch_notify(dev, chandef);
16114 wdev->chandef = *chandef;
16115 wdev->preset_chandef = *chandef;
16117 if (wdev->iftype == NL80211_IFTYPE_STATION &&
16118 !WARN_ON(!wdev->current_bss))
16119 cfg80211_update_assoc_bss_entry(wdev, chandef->chan);
16121 cfg80211_sched_dfs_chan_update(rdev);
16123 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
16124 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
16126 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
16128 void cfg80211_ch_switch_started_notify(struct net_device *dev,
16129 struct cfg80211_chan_def *chandef,
16132 struct wireless_dev *wdev = dev->ieee80211_ptr;
16133 struct wiphy *wiphy = wdev->wiphy;
16134 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16136 trace_cfg80211_ch_switch_started_notify(dev, chandef);
16138 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
16139 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
16141 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
16144 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
16145 const struct cfg80211_chan_def *chandef,
16146 enum nl80211_radar_event event,
16147 struct net_device *netdev, gfp_t gfp)
16149 struct sk_buff *msg;
16152 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16156 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
16162 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
16163 goto nla_put_failure;
16165 /* NOP and radar events don't need a netdev parameter */
16167 struct wireless_dev *wdev = netdev->ieee80211_ptr;
16169 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16170 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16172 goto nla_put_failure;
16175 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
16176 goto nla_put_failure;
16178 if (nl80211_send_chandef(msg, chandef))
16179 goto nla_put_failure;
16181 genlmsg_end(msg, hdr);
16183 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16184 NL80211_MCGRP_MLME, gfp);
16191 void cfg80211_sta_opmode_change_notify(struct net_device *dev, const u8 *mac,
16192 struct sta_opmode_info *sta_opmode,
16195 struct sk_buff *msg;
16196 struct wireless_dev *wdev = dev->ieee80211_ptr;
16197 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16203 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16207 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STA_OPMODE_CHANGED);
16213 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
16214 goto nla_put_failure;
16216 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
16217 goto nla_put_failure;
16219 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
16220 goto nla_put_failure;
16222 if ((sta_opmode->changed & STA_OPMODE_SMPS_MODE_CHANGED) &&
16223 nla_put_u8(msg, NL80211_ATTR_SMPS_MODE, sta_opmode->smps_mode))
16224 goto nla_put_failure;
16226 if ((sta_opmode->changed & STA_OPMODE_MAX_BW_CHANGED) &&
16227 nla_put_u8(msg, NL80211_ATTR_CHANNEL_WIDTH, sta_opmode->bw))
16228 goto nla_put_failure;
16230 if ((sta_opmode->changed & STA_OPMODE_N_SS_CHANGED) &&
16231 nla_put_u8(msg, NL80211_ATTR_NSS, sta_opmode->rx_nss))
16232 goto nla_put_failure;
16234 genlmsg_end(msg, hdr);
16236 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16237 NL80211_MCGRP_MLME, gfp);
16244 EXPORT_SYMBOL(cfg80211_sta_opmode_change_notify);
16246 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
16247 u64 cookie, bool acked, s32 ack_signal,
16248 bool is_valid_ack_signal, gfp_t gfp)
16250 struct wireless_dev *wdev = dev->ieee80211_ptr;
16251 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16252 struct sk_buff *msg;
16255 trace_cfg80211_probe_status(dev, addr, cookie, acked);
16257 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16262 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
16268 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16269 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16270 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
16271 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
16272 NL80211_ATTR_PAD) ||
16273 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)) ||
16274 (is_valid_ack_signal && nla_put_s32(msg, NL80211_ATTR_ACK_SIGNAL,
16276 goto nla_put_failure;
16278 genlmsg_end(msg, hdr);
16280 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16281 NL80211_MCGRP_MLME, gfp);
16287 EXPORT_SYMBOL(cfg80211_probe_status);
16289 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
16290 const u8 *frame, size_t len,
16291 int freq, int sig_dbm)
16293 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16294 struct sk_buff *msg;
16296 struct cfg80211_beacon_registration *reg;
16298 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
16300 spin_lock_bh(&rdev->beacon_registrations_lock);
16301 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
16302 msg = nlmsg_new(len + 100, GFP_ATOMIC);
16304 spin_unlock_bh(&rdev->beacon_registrations_lock);
16308 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
16310 goto nla_put_failure;
16312 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16314 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
16316 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
16317 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
16318 goto nla_put_failure;
16320 genlmsg_end(msg, hdr);
16322 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
16324 spin_unlock_bh(&rdev->beacon_registrations_lock);
16328 spin_unlock_bh(&rdev->beacon_registrations_lock);
16331 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
16334 static int cfg80211_net_detect_results(struct sk_buff *msg,
16335 struct cfg80211_wowlan_wakeup *wakeup)
16337 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
16338 struct nlattr *nl_results, *nl_match, *nl_freqs;
16341 nl_results = nla_nest_start_noflag(msg,
16342 NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
16346 for (i = 0; i < nd->n_matches; i++) {
16347 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
16349 nl_match = nla_nest_start_noflag(msg, i);
16353 /* The SSID attribute is optional in nl80211, but for
16354 * simplicity reasons it's always present in the
16355 * cfg80211 structure. If a driver can't pass the
16356 * SSID, that needs to be changed. A zero length SSID
16357 * is still a valid SSID (wildcard), so it cannot be
16358 * used for this purpose.
16360 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
16361 match->ssid.ssid)) {
16362 nla_nest_cancel(msg, nl_match);
16366 if (match->n_channels) {
16367 nl_freqs = nla_nest_start_noflag(msg,
16368 NL80211_ATTR_SCAN_FREQUENCIES);
16370 nla_nest_cancel(msg, nl_match);
16374 for (j = 0; j < match->n_channels; j++) {
16375 if (nla_put_u32(msg, j, match->channels[j])) {
16376 nla_nest_cancel(msg, nl_freqs);
16377 nla_nest_cancel(msg, nl_match);
16382 nla_nest_end(msg, nl_freqs);
16385 nla_nest_end(msg, nl_match);
16389 nla_nest_end(msg, nl_results);
16393 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
16394 struct cfg80211_wowlan_wakeup *wakeup,
16397 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16398 struct sk_buff *msg;
16402 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
16405 size += wakeup->packet_present_len;
16407 msg = nlmsg_new(size, gfp);
16411 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
16415 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16416 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16420 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
16421 wdev->netdev->ifindex))
16425 struct nlattr *reasons;
16427 reasons = nla_nest_start_noflag(msg,
16428 NL80211_ATTR_WOWLAN_TRIGGERS);
16432 if (wakeup->disconnect &&
16433 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
16435 if (wakeup->magic_pkt &&
16436 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
16438 if (wakeup->gtk_rekey_failure &&
16439 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
16441 if (wakeup->eap_identity_req &&
16442 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
16444 if (wakeup->four_way_handshake &&
16445 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
16447 if (wakeup->rfkill_release &&
16448 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
16451 if (wakeup->pattern_idx >= 0 &&
16452 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
16453 wakeup->pattern_idx))
16456 if (wakeup->tcp_match &&
16457 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
16460 if (wakeup->tcp_connlost &&
16461 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
16464 if (wakeup->tcp_nomoretokens &&
16466 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
16469 if (wakeup->packet) {
16470 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
16471 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
16473 if (!wakeup->packet_80211) {
16475 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
16477 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
16480 if (wakeup->packet_len &&
16481 nla_put_u32(msg, len_attr, wakeup->packet_len))
16484 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
16489 if (wakeup->net_detect &&
16490 cfg80211_net_detect_results(msg, wakeup))
16493 nla_nest_end(msg, reasons);
16496 genlmsg_end(msg, hdr);
16498 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16499 NL80211_MCGRP_MLME, gfp);
16505 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
16508 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
16509 enum nl80211_tdls_operation oper,
16510 u16 reason_code, gfp_t gfp)
16512 struct wireless_dev *wdev = dev->ieee80211_ptr;
16513 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16514 struct sk_buff *msg;
16517 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
16520 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16524 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
16530 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16531 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16532 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
16533 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
16534 (reason_code > 0 &&
16535 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
16536 goto nla_put_failure;
16538 genlmsg_end(msg, hdr);
16540 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16541 NL80211_MCGRP_MLME, gfp);
16547 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
16549 static int nl80211_netlink_notify(struct notifier_block * nb,
16550 unsigned long state,
16553 struct netlink_notify *notify = _notify;
16554 struct cfg80211_registered_device *rdev;
16555 struct wireless_dev *wdev;
16556 struct cfg80211_beacon_registration *reg, *tmp;
16558 if (state != NETLINK_URELEASE || notify->protocol != NETLINK_GENERIC)
16559 return NOTIFY_DONE;
16563 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
16564 struct cfg80211_sched_scan_request *sched_scan_req;
16566 list_for_each_entry_rcu(sched_scan_req,
16567 &rdev->sched_scan_req_list,
16569 if (sched_scan_req->owner_nlportid == notify->portid) {
16570 sched_scan_req->nl_owner_dead = true;
16571 schedule_work(&rdev->sched_scan_stop_wk);
16575 list_for_each_entry_rcu(wdev, &rdev->wiphy.wdev_list, list) {
16576 cfg80211_mlme_unregister_socket(wdev, notify->portid);
16578 if (wdev->owner_nlportid == notify->portid) {
16579 wdev->nl_owner_dead = true;
16580 schedule_work(&rdev->destroy_work);
16581 } else if (wdev->conn_owner_nlportid == notify->portid) {
16582 schedule_work(&wdev->disconnect_wk);
16585 cfg80211_release_pmsr(wdev, notify->portid);
16588 spin_lock_bh(&rdev->beacon_registrations_lock);
16589 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
16591 if (reg->nlportid == notify->portid) {
16592 list_del(®->list);
16597 spin_unlock_bh(&rdev->beacon_registrations_lock);
16603 * It is possible that the user space process that is controlling the
16604 * indoor setting disappeared, so notify the regulatory core.
16606 regulatory_netlink_notify(notify->portid);
16610 static struct notifier_block nl80211_netlink_notifier = {
16611 .notifier_call = nl80211_netlink_notify,
16614 void cfg80211_ft_event(struct net_device *netdev,
16615 struct cfg80211_ft_event_params *ft_event)
16617 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16618 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16619 struct sk_buff *msg;
16622 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
16624 if (!ft_event->target_ap)
16627 msg = nlmsg_new(100 + ft_event->ies_len + ft_event->ric_ies_len,
16632 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
16636 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16637 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16638 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
16641 if (ft_event->ies &&
16642 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
16644 if (ft_event->ric_ies &&
16645 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
16646 ft_event->ric_ies))
16649 genlmsg_end(msg, hdr);
16651 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16652 NL80211_MCGRP_MLME, GFP_KERNEL);
16657 EXPORT_SYMBOL(cfg80211_ft_event);
16659 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
16661 struct cfg80211_registered_device *rdev;
16662 struct sk_buff *msg;
16666 rdev = wiphy_to_rdev(wdev->wiphy);
16667 if (!rdev->crit_proto_nlportid)
16670 nlportid = rdev->crit_proto_nlportid;
16671 rdev->crit_proto_nlportid = 0;
16673 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16677 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
16679 goto nla_put_failure;
16681 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16682 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16684 goto nla_put_failure;
16686 genlmsg_end(msg, hdr);
16688 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
16694 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
16696 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
16698 struct wiphy *wiphy = wdev->wiphy;
16699 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16700 struct sk_buff *msg;
16703 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
16707 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
16711 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16712 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
16713 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16717 genlmsg_end(msg, hdr);
16719 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
16720 NL80211_MCGRP_MLME, GFP_KERNEL);
16726 int cfg80211_external_auth_request(struct net_device *dev,
16727 struct cfg80211_external_auth_params *params,
16730 struct wireless_dev *wdev = dev->ieee80211_ptr;
16731 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16732 struct sk_buff *msg;
16735 if (!wdev->conn_owner_nlportid)
16738 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16742 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_EXTERNAL_AUTH);
16744 goto nla_put_failure;
16746 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16747 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16748 nla_put_u32(msg, NL80211_ATTR_AKM_SUITES, params->key_mgmt_suite) ||
16749 nla_put_u32(msg, NL80211_ATTR_EXTERNAL_AUTH_ACTION,
16751 nla_put(msg, NL80211_ATTR_BSSID, ETH_ALEN, params->bssid) ||
16752 nla_put(msg, NL80211_ATTR_SSID, params->ssid.ssid_len,
16753 params->ssid.ssid))
16754 goto nla_put_failure;
16756 genlmsg_end(msg, hdr);
16757 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
16758 wdev->conn_owner_nlportid);
16765 EXPORT_SYMBOL(cfg80211_external_auth_request);
16767 void cfg80211_update_owe_info_event(struct net_device *netdev,
16768 struct cfg80211_update_owe_info *owe_info,
16771 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16772 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16773 struct sk_buff *msg;
16776 trace_cfg80211_update_owe_info_event(wiphy, netdev, owe_info);
16778 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16782 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_UPDATE_OWE_INFO);
16784 goto nla_put_failure;
16786 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16787 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16788 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, owe_info->peer))
16789 goto nla_put_failure;
16791 if (!owe_info->ie_len ||
16792 nla_put(msg, NL80211_ATTR_IE, owe_info->ie_len, owe_info->ie))
16793 goto nla_put_failure;
16795 genlmsg_end(msg, hdr);
16797 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16798 NL80211_MCGRP_MLME, gfp);
16802 genlmsg_cancel(msg, hdr);
16805 EXPORT_SYMBOL(cfg80211_update_owe_info_event);
16807 /* initialisation/exit functions */
16809 int __init nl80211_init(void)
16813 err = genl_register_family(&nl80211_fam);
16817 err = netlink_register_notifier(&nl80211_netlink_notifier);
16823 genl_unregister_family(&nl80211_fam);
16827 void nl80211_exit(void)
16829 netlink_unregister_notifier(&nl80211_netlink_notifier);
16830 genl_unregister_family(&nl80211_fam);
projects / linux.git / blob