1 // SPDX-License-Identifier: GPL-2.0-only
3 * This is the new netlink-based wireless configuration interface.
5 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
6 * Copyright 2013-2014 Intel Mobile Communications GmbH
7 * Copyright 2015-2017 Intel Deutschland GmbH
8 * Copyright (C) 2018-2019 Intel Corporation
12 #include <linux/module.h>
13 #include <linux/err.h>
14 #include <linux/slab.h>
15 #include <linux/list.h>
16 #include <linux/if_ether.h>
17 #include <linux/ieee80211.h>
18 #include <linux/nl80211.h>
19 #include <linux/rtnetlink.h>
20 #include <linux/netlink.h>
21 #include <linux/nospec.h>
22 #include <linux/etherdevice.h>
23 #include <net/net_namespace.h>
24 #include <net/genetlink.h>
25 #include <net/cfg80211.h>
27 #include <net/inet_connection_sock.h>
33 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
34 struct genl_info *info,
35 struct cfg80211_crypto_settings *settings,
38 /* the netlink family */
39 static struct genl_family nl80211_fam;
41 /* multicast groups */
42 enum nl80211_multicast_groups {
45 NL80211_MCGRP_REGULATORY,
49 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
52 static const struct genl_multicast_group nl80211_mcgrps[] = {
53 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
54 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
55 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
56 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
57 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
58 [NL80211_MCGRP_NAN] = { .name = NL80211_MULTICAST_GROUP_NAN },
59 #ifdef CONFIG_NL80211_TESTMODE
60 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
64 /* returns ERR_PTR values */
65 static struct wireless_dev *
66 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
68 struct cfg80211_registered_device *rdev;
69 struct wireless_dev *result = NULL;
70 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
71 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
78 if (!have_ifidx && !have_wdev_id)
79 return ERR_PTR(-EINVAL);
82 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
84 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
85 wiphy_idx = wdev_id >> 32;
88 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
89 struct wireless_dev *wdev;
91 if (wiphy_net(&rdev->wiphy) != netns)
94 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
97 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
98 if (have_ifidx && wdev->netdev &&
99 wdev->netdev->ifindex == ifidx) {
103 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
115 return ERR_PTR(-ENODEV);
118 static struct cfg80211_registered_device *
119 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
121 struct cfg80211_registered_device *rdev = NULL, *tmp;
122 struct net_device *netdev;
126 if (!attrs[NL80211_ATTR_WIPHY] &&
127 !attrs[NL80211_ATTR_IFINDEX] &&
128 !attrs[NL80211_ATTR_WDEV])
129 return ERR_PTR(-EINVAL);
131 if (attrs[NL80211_ATTR_WIPHY])
132 rdev = cfg80211_rdev_by_wiphy_idx(
133 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
135 if (attrs[NL80211_ATTR_WDEV]) {
136 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
137 struct wireless_dev *wdev;
140 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
142 /* make sure wdev exists */
143 list_for_each_entry(wdev, &tmp->wiphy.wdev_list, list) {
144 if (wdev->identifier != (u32)wdev_id)
153 if (rdev && tmp != rdev)
154 return ERR_PTR(-EINVAL);
159 if (attrs[NL80211_ATTR_IFINDEX]) {
160 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
162 netdev = __dev_get_by_index(netns, ifindex);
164 if (netdev->ieee80211_ptr)
166 netdev->ieee80211_ptr->wiphy);
170 /* not wireless device -- return error */
172 return ERR_PTR(-EINVAL);
174 /* mismatch -- return error */
175 if (rdev && tmp != rdev)
176 return ERR_PTR(-EINVAL);
183 return ERR_PTR(-ENODEV);
185 if (netns != wiphy_net(&rdev->wiphy))
186 return ERR_PTR(-ENODEV);
192 * This function returns a pointer to the driver
193 * that the genl_info item that is passed refers to.
195 * The result of this can be a PTR_ERR and hence must
196 * be checked with IS_ERR() for errors.
198 static struct cfg80211_registered_device *
199 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
201 return __cfg80211_rdev_from_attrs(netns, info->attrs);
204 static int validate_ie_attr(const struct nlattr *attr,
205 struct netlink_ext_ack *extack)
207 const u8 *data = nla_data(attr);
208 unsigned int len = nla_len(attr);
209 const struct element *elem;
211 for_each_element(elem, data, len) {
215 if (for_each_element_completed(elem, data, len))
218 NL_SET_ERR_MSG_ATTR(extack, attr, "malformed information elements");
222 /* policy for the attributes */
223 static const struct nla_policy
224 nl80211_ftm_responder_policy[NL80211_FTM_RESP_ATTR_MAX + 1] = {
225 [NL80211_FTM_RESP_ATTR_ENABLED] = { .type = NLA_FLAG, },
226 [NL80211_FTM_RESP_ATTR_LCI] = { .type = NLA_BINARY,
228 [NL80211_FTM_RESP_ATTR_CIVICLOC] = { .type = NLA_BINARY,
232 static const struct nla_policy
233 nl80211_pmsr_ftm_req_attr_policy[NL80211_PMSR_FTM_REQ_ATTR_MAX + 1] = {
234 [NL80211_PMSR_FTM_REQ_ATTR_ASAP] = { .type = NLA_FLAG },
235 [NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE] = { .type = NLA_U32 },
236 [NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP] =
237 NLA_POLICY_MAX(NLA_U8, 15),
238 [NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD] = { .type = NLA_U16 },
239 [NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION] =
240 NLA_POLICY_MAX(NLA_U8, 15),
241 [NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST] =
242 NLA_POLICY_MAX(NLA_U8, 31),
243 [NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES] = { .type = NLA_U8 },
244 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI] = { .type = NLA_FLAG },
245 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC] = { .type = NLA_FLAG },
248 static const struct nla_policy
249 nl80211_pmsr_req_data_policy[NL80211_PMSR_TYPE_MAX + 1] = {
250 [NL80211_PMSR_TYPE_FTM] =
251 NLA_POLICY_NESTED(nl80211_pmsr_ftm_req_attr_policy),
254 static const struct nla_policy
255 nl80211_pmsr_req_attr_policy[NL80211_PMSR_REQ_ATTR_MAX + 1] = {
256 [NL80211_PMSR_REQ_ATTR_DATA] =
257 NLA_POLICY_NESTED(nl80211_pmsr_req_data_policy),
258 [NL80211_PMSR_REQ_ATTR_GET_AP_TSF] = { .type = NLA_FLAG },
261 static const struct nla_policy
262 nl80211_psmr_peer_attr_policy[NL80211_PMSR_PEER_ATTR_MAX + 1] = {
263 [NL80211_PMSR_PEER_ATTR_ADDR] = NLA_POLICY_ETH_ADDR,
265 * we could specify this again to be the top-level policy,
266 * but that would open us up to recursion problems ...
268 [NL80211_PMSR_PEER_ATTR_CHAN] = { .type = NLA_NESTED },
269 [NL80211_PMSR_PEER_ATTR_REQ] =
270 NLA_POLICY_NESTED(nl80211_pmsr_req_attr_policy),
271 [NL80211_PMSR_PEER_ATTR_RESP] = { .type = NLA_REJECT },
274 static const struct nla_policy
275 nl80211_pmsr_attr_policy[NL80211_PMSR_ATTR_MAX + 1] = {
276 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_REJECT },
277 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_REJECT },
278 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_REJECT },
279 [NL80211_PMSR_ATTR_TYPE_CAPA] = { .type = NLA_REJECT },
280 [NL80211_PMSR_ATTR_PEERS] =
281 NLA_POLICY_NESTED_ARRAY(nl80211_psmr_peer_attr_policy),
284 const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
285 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
286 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
288 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
290 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
291 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
292 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
293 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
294 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
296 [NL80211_ATTR_WIPHY_RETRY_SHORT] = NLA_POLICY_MIN(NLA_U8, 1),
297 [NL80211_ATTR_WIPHY_RETRY_LONG] = NLA_POLICY_MIN(NLA_U8, 1),
298 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
299 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
300 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
301 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
303 [NL80211_ATTR_IFTYPE] = NLA_POLICY_MAX(NLA_U32, NL80211_IFTYPE_MAX),
304 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
305 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
307 [NL80211_ATTR_MAC] = { .type = NLA_EXACT_LEN_WARN, .len = ETH_ALEN },
308 [NL80211_ATTR_PREV_BSSID] = {
309 .type = NLA_EXACT_LEN_WARN,
313 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
314 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
315 .len = WLAN_MAX_KEY_LEN },
316 [NL80211_ATTR_KEY_IDX] = NLA_POLICY_MAX(NLA_U8, 5),
317 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
318 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
319 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
320 [NL80211_ATTR_KEY_TYPE] =
321 NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES),
323 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
324 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
325 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
326 .len = IEEE80211_MAX_DATA_LEN },
327 [NL80211_ATTR_BEACON_TAIL] =
328 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
329 IEEE80211_MAX_DATA_LEN),
330 [NL80211_ATTR_STA_AID] =
331 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
332 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
333 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
334 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
335 .len = NL80211_MAX_SUPP_RATES },
336 [NL80211_ATTR_STA_PLINK_ACTION] =
337 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_ACTIONS - 1),
338 [NL80211_ATTR_STA_TX_POWER_SETTING] =
339 NLA_POLICY_RANGE(NLA_U8,
340 NL80211_TX_POWER_AUTOMATIC,
341 NL80211_TX_POWER_FIXED),
342 [NL80211_ATTR_STA_TX_POWER] = { .type = NLA_S16 },
343 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
344 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
345 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
346 .len = IEEE80211_MAX_MESH_ID_LEN },
347 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
349 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
350 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
352 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
353 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
354 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
355 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
356 .len = NL80211_MAX_SUPP_RATES },
357 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
359 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
360 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
362 [NL80211_ATTR_HT_CAPABILITY] = {
363 .type = NLA_EXACT_LEN_WARN,
364 .len = NL80211_HT_CAPABILITY_LEN
367 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
368 [NL80211_ATTR_IE] = NLA_POLICY_VALIDATE_FN(NLA_BINARY,
370 IEEE80211_MAX_DATA_LEN),
371 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
372 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
374 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
375 .len = IEEE80211_MAX_SSID_LEN },
376 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
377 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
378 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
379 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
380 [NL80211_ATTR_USE_MFP] = NLA_POLICY_RANGE(NLA_U32,
382 NL80211_MFP_OPTIONAL),
383 [NL80211_ATTR_STA_FLAGS2] = {
384 .len = sizeof(struct nl80211_sta_flag_update),
386 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
387 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
388 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
389 [NL80211_ATTR_CONTROL_PORT_OVER_NL80211] = { .type = NLA_FLAG },
390 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
391 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
392 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
393 [NL80211_ATTR_PID] = { .type = NLA_U32 },
394 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
395 [NL80211_ATTR_PMKID] = {
396 .type = NLA_EXACT_LEN_WARN,
397 .len = WLAN_PMKID_LEN
399 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
400 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
401 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
402 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
403 .len = IEEE80211_MAX_DATA_LEN },
404 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
405 [NL80211_ATTR_PS_STATE] = NLA_POLICY_RANGE(NLA_U32,
408 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
409 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
410 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
411 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
412 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
413 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
414 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
415 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
416 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
417 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
418 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
419 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
420 [NL80211_ATTR_STA_PLINK_STATE] =
421 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_STATES - 1),
422 [NL80211_ATTR_MESH_PEER_AID] =
423 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
424 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
425 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
426 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
427 [NL80211_ATTR_HIDDEN_SSID] =
428 NLA_POLICY_RANGE(NLA_U32,
429 NL80211_HIDDEN_SSID_NOT_IN_USE,
430 NL80211_HIDDEN_SSID_ZERO_CONTENTS),
431 [NL80211_ATTR_IE_PROBE_RESP] =
432 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
433 IEEE80211_MAX_DATA_LEN),
434 [NL80211_ATTR_IE_ASSOC_RESP] =
435 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
436 IEEE80211_MAX_DATA_LEN),
437 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
438 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
439 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
440 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
441 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
442 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
443 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
444 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
445 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
446 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
447 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
448 .len = IEEE80211_MAX_DATA_LEN },
449 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
450 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
451 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
452 .len = NL80211_HT_CAPABILITY_LEN
454 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
455 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
456 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
457 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
458 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
459 [NL80211_ATTR_AUTH_DATA] = { .type = NLA_BINARY, },
460 [NL80211_ATTR_VHT_CAPABILITY] = {
461 .type = NLA_EXACT_LEN_WARN,
462 .len = NL80211_VHT_CAPABILITY_LEN
464 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
465 [NL80211_ATTR_P2P_CTWINDOW] = NLA_POLICY_MAX(NLA_U8, 127),
466 [NL80211_ATTR_P2P_OPPPS] = NLA_POLICY_MAX(NLA_U8, 1),
467 [NL80211_ATTR_LOCAL_MESH_POWER_MODE] =
468 NLA_POLICY_RANGE(NLA_U32,
469 NL80211_MESH_POWER_UNKNOWN + 1,
470 NL80211_MESH_POWER_MAX),
471 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
472 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
473 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
474 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
475 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
476 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
477 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
478 .len = NL80211_VHT_CAPABILITY_LEN,
480 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
481 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
482 .len = IEEE80211_MAX_DATA_LEN },
483 [NL80211_ATTR_PEER_AID] =
484 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
485 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
486 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
487 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
488 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
489 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
490 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
491 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
492 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
493 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
494 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
495 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
496 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
497 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
498 .len = IEEE80211_QOS_MAP_LEN_MAX },
499 [NL80211_ATTR_MAC_HINT] = {
500 .type = NLA_EXACT_LEN_WARN,
503 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
504 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
505 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
506 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
507 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
508 [NL80211_ATTR_TSID] = NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_TIDS - 1),
509 [NL80211_ATTR_USER_PRIO] =
510 NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_UPS - 1),
511 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
512 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
513 [NL80211_ATTR_MAC_MASK] = {
514 .type = NLA_EXACT_LEN_WARN,
517 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
518 [NL80211_ATTR_NETNS_FD] = { .type = NLA_U32 },
519 [NL80211_ATTR_SCHED_SCAN_DELAY] = { .type = NLA_U32 },
520 [NL80211_ATTR_REG_INDOOR] = { .type = NLA_FLAG },
521 [NL80211_ATTR_PBSS] = { .type = NLA_FLAG },
522 [NL80211_ATTR_BSS_SELECT] = { .type = NLA_NESTED },
523 [NL80211_ATTR_STA_SUPPORT_P2P_PS] =
524 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_P2P_PS_STATUS - 1),
525 [NL80211_ATTR_MU_MIMO_GROUP_DATA] = {
526 .len = VHT_MUMIMO_GROUPS_DATA_LEN
528 [NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR] = {
529 .type = NLA_EXACT_LEN_WARN,
532 [NL80211_ATTR_NAN_MASTER_PREF] = NLA_POLICY_MIN(NLA_U8, 1),
533 [NL80211_ATTR_BANDS] = { .type = NLA_U32 },
534 [NL80211_ATTR_NAN_FUNC] = { .type = NLA_NESTED },
535 [NL80211_ATTR_FILS_KEK] = { .type = NLA_BINARY,
536 .len = FILS_MAX_KEK_LEN },
537 [NL80211_ATTR_FILS_NONCES] = {
538 .type = NLA_EXACT_LEN_WARN,
539 .len = 2 * FILS_NONCE_LEN
541 [NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED] = { .type = NLA_FLAG, },
542 [NL80211_ATTR_BSSID] = { .type = NLA_EXACT_LEN_WARN, .len = ETH_ALEN },
543 [NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] = { .type = NLA_S8 },
544 [NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST] = {
545 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
547 [NL80211_ATTR_TIMEOUT_REASON] = { .type = NLA_U32 },
548 [NL80211_ATTR_FILS_ERP_USERNAME] = { .type = NLA_BINARY,
549 .len = FILS_ERP_MAX_USERNAME_LEN },
550 [NL80211_ATTR_FILS_ERP_REALM] = { .type = NLA_BINARY,
551 .len = FILS_ERP_MAX_REALM_LEN },
552 [NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] = { .type = NLA_U16 },
553 [NL80211_ATTR_FILS_ERP_RRK] = { .type = NLA_BINARY,
554 .len = FILS_ERP_MAX_RRK_LEN },
555 [NL80211_ATTR_FILS_CACHE_ID] = { .type = NLA_EXACT_LEN_WARN, .len = 2 },
556 [NL80211_ATTR_PMK] = { .type = NLA_BINARY, .len = PMK_MAX_LEN },
557 [NL80211_ATTR_SCHED_SCAN_MULTI] = { .type = NLA_FLAG },
558 [NL80211_ATTR_EXTERNAL_AUTH_SUPPORT] = { .type = NLA_FLAG },
560 [NL80211_ATTR_TXQ_LIMIT] = { .type = NLA_U32 },
561 [NL80211_ATTR_TXQ_MEMORY_LIMIT] = { .type = NLA_U32 },
562 [NL80211_ATTR_TXQ_QUANTUM] = { .type = NLA_U32 },
563 [NL80211_ATTR_HE_CAPABILITY] = { .type = NLA_BINARY,
564 .len = NL80211_HE_MAX_CAPABILITY_LEN },
566 [NL80211_ATTR_FTM_RESPONDER] = {
568 .validation_data = nl80211_ftm_responder_policy,
570 [NL80211_ATTR_TIMEOUT] = NLA_POLICY_MIN(NLA_U32, 1),
571 [NL80211_ATTR_PEER_MEASUREMENTS] =
572 NLA_POLICY_NESTED(nl80211_pmsr_attr_policy),
573 [NL80211_ATTR_AIRTIME_WEIGHT] = NLA_POLICY_MIN(NLA_U16, 1),
574 [NL80211_ATTR_SAE_PASSWORD] = { .type = NLA_BINARY,
575 .len = SAE_PASSWORD_MAX_LEN },
576 [NL80211_ATTR_TWT_RESPONDER] = { .type = NLA_FLAG },
579 /* policy for the key attributes */
580 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
581 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
582 [NL80211_KEY_IDX] = { .type = NLA_U8 },
583 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
584 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
585 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
586 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
587 [NL80211_KEY_TYPE] = NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES - 1),
588 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
589 [NL80211_KEY_MODE] = NLA_POLICY_RANGE(NLA_U8, 0, NL80211_KEY_SET_TX),
592 /* policy for the key default flags */
593 static const struct nla_policy
594 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
595 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
596 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
600 /* policy for WoWLAN attributes */
601 static const struct nla_policy
602 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
603 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
604 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
605 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
606 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
607 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
608 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
609 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
610 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
611 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
612 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
615 static const struct nla_policy
616 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
617 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
618 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
619 [NL80211_WOWLAN_TCP_DST_MAC] = {
620 .type = NLA_EXACT_LEN_WARN,
623 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
624 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
625 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .type = NLA_MIN_LEN, .len = 1 },
626 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
627 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
629 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
630 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
632 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
633 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .type = NLA_MIN_LEN, .len = 1 },
634 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .type = NLA_MIN_LEN, .len = 1 },
636 #endif /* CONFIG_PM */
638 /* policy for coalesce rule attributes */
639 static const struct nla_policy
640 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
641 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
642 [NL80211_ATTR_COALESCE_RULE_CONDITION] =
643 NLA_POLICY_RANGE(NLA_U32,
644 NL80211_COALESCE_CONDITION_MATCH,
645 NL80211_COALESCE_CONDITION_NO_MATCH),
646 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
649 /* policy for GTK rekey offload attributes */
650 static const struct nla_policy
651 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
652 [NL80211_REKEY_DATA_KEK] = { .type = NLA_EXACT_LEN_WARN, .len = NL80211_KEK_LEN },
653 [NL80211_REKEY_DATA_KCK] = { .type = NLA_EXACT_LEN_WARN, .len = NL80211_KCK_LEN },
654 [NL80211_REKEY_DATA_REPLAY_CTR] = {
655 .type = NLA_EXACT_LEN_WARN,
656 .len = NL80211_REPLAY_CTR_LEN
660 static const struct nla_policy
661 nl80211_match_band_rssi_policy[NUM_NL80211_BANDS] = {
662 [NL80211_BAND_2GHZ] = { .type = NLA_S32 },
663 [NL80211_BAND_5GHZ] = { .type = NLA_S32 },
664 [NL80211_BAND_60GHZ] = { .type = NLA_S32 },
667 static const struct nla_policy
668 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
669 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
670 .len = IEEE80211_MAX_SSID_LEN },
671 [NL80211_SCHED_SCAN_MATCH_ATTR_BSSID] = {
672 .type = NLA_EXACT_LEN_WARN,
675 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
676 [NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI] =
677 NLA_POLICY_NESTED(nl80211_match_band_rssi_policy),
680 static const struct nla_policy
681 nl80211_plan_policy[NL80211_SCHED_SCAN_PLAN_MAX + 1] = {
682 [NL80211_SCHED_SCAN_PLAN_INTERVAL] = { .type = NLA_U32 },
683 [NL80211_SCHED_SCAN_PLAN_ITERATIONS] = { .type = NLA_U32 },
686 static const struct nla_policy
687 nl80211_bss_select_policy[NL80211_BSS_SELECT_ATTR_MAX + 1] = {
688 [NL80211_BSS_SELECT_ATTR_RSSI] = { .type = NLA_FLAG },
689 [NL80211_BSS_SELECT_ATTR_BAND_PREF] = { .type = NLA_U32 },
690 [NL80211_BSS_SELECT_ATTR_RSSI_ADJUST] = {
691 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
695 /* policy for NAN function attributes */
696 static const struct nla_policy
697 nl80211_nan_func_policy[NL80211_NAN_FUNC_ATTR_MAX + 1] = {
698 [NL80211_NAN_FUNC_TYPE] = { .type = NLA_U8 },
699 [NL80211_NAN_FUNC_SERVICE_ID] = {
700 .len = NL80211_NAN_FUNC_SERVICE_ID_LEN },
701 [NL80211_NAN_FUNC_PUBLISH_TYPE] = { .type = NLA_U8 },
702 [NL80211_NAN_FUNC_PUBLISH_BCAST] = { .type = NLA_FLAG },
703 [NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE] = { .type = NLA_FLAG },
704 [NL80211_NAN_FUNC_FOLLOW_UP_ID] = { .type = NLA_U8 },
705 [NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] = { .type = NLA_U8 },
706 [NL80211_NAN_FUNC_FOLLOW_UP_DEST] = {
707 .type = NLA_EXACT_LEN_WARN,
710 [NL80211_NAN_FUNC_CLOSE_RANGE] = { .type = NLA_FLAG },
711 [NL80211_NAN_FUNC_TTL] = { .type = NLA_U32 },
712 [NL80211_NAN_FUNC_SERVICE_INFO] = { .type = NLA_BINARY,
713 .len = NL80211_NAN_FUNC_SERVICE_SPEC_INFO_MAX_LEN },
714 [NL80211_NAN_FUNC_SRF] = { .type = NLA_NESTED },
715 [NL80211_NAN_FUNC_RX_MATCH_FILTER] = { .type = NLA_NESTED },
716 [NL80211_NAN_FUNC_TX_MATCH_FILTER] = { .type = NLA_NESTED },
717 [NL80211_NAN_FUNC_INSTANCE_ID] = { .type = NLA_U8 },
718 [NL80211_NAN_FUNC_TERM_REASON] = { .type = NLA_U8 },
721 /* policy for Service Response Filter attributes */
722 static const struct nla_policy
723 nl80211_nan_srf_policy[NL80211_NAN_SRF_ATTR_MAX + 1] = {
724 [NL80211_NAN_SRF_INCLUDE] = { .type = NLA_FLAG },
725 [NL80211_NAN_SRF_BF] = { .type = NLA_BINARY,
726 .len = NL80211_NAN_FUNC_SRF_MAX_LEN },
727 [NL80211_NAN_SRF_BF_IDX] = { .type = NLA_U8 },
728 [NL80211_NAN_SRF_MAC_ADDRS] = { .type = NLA_NESTED },
731 /* policy for packet pattern attributes */
732 static const struct nla_policy
733 nl80211_packet_pattern_policy[MAX_NL80211_PKTPAT + 1] = {
734 [NL80211_PKTPAT_MASK] = { .type = NLA_BINARY, },
735 [NL80211_PKTPAT_PATTERN] = { .type = NLA_BINARY, },
736 [NL80211_PKTPAT_OFFSET] = { .type = NLA_U32 },
739 int nl80211_prepare_wdev_dump(struct netlink_callback *cb,
740 struct cfg80211_registered_device **rdev,
741 struct wireless_dev **wdev)
746 err = nlmsg_parse_deprecated(cb->nlh,
747 GENL_HDRLEN + nl80211_fam.hdrsize,
748 genl_family_attrbuf(&nl80211_fam),
750 nl80211_policy, NULL);
754 *wdev = __cfg80211_wdev_from_attrs(
755 sock_net(cb->skb->sk),
756 genl_family_attrbuf(&nl80211_fam));
758 return PTR_ERR(*wdev);
759 *rdev = wiphy_to_rdev((*wdev)->wiphy);
760 /* 0 is the first index - add 1 to parse only once */
761 cb->args[0] = (*rdev)->wiphy_idx + 1;
762 cb->args[1] = (*wdev)->identifier;
764 /* subtract the 1 again here */
765 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
766 struct wireless_dev *tmp;
770 *rdev = wiphy_to_rdev(wiphy);
773 list_for_each_entry(tmp, &(*rdev)->wiphy.wdev_list, list) {
774 if (tmp->identifier == cb->args[1]) {
787 /* message building helper */
788 void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
791 /* since there is no private header just add the generic one */
792 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
795 static int nl80211_msg_put_wmm_rules(struct sk_buff *msg,
796 const struct ieee80211_reg_rule *rule)
799 struct nlattr *nl_wmm_rules =
800 nla_nest_start_noflag(msg, NL80211_FREQUENCY_ATTR_WMM);
803 goto nla_put_failure;
805 for (j = 0; j < IEEE80211_NUM_ACS; j++) {
806 struct nlattr *nl_wmm_rule = nla_nest_start_noflag(msg, j);
809 goto nla_put_failure;
811 if (nla_put_u16(msg, NL80211_WMMR_CW_MIN,
812 rule->wmm_rule.client[j].cw_min) ||
813 nla_put_u16(msg, NL80211_WMMR_CW_MAX,
814 rule->wmm_rule.client[j].cw_max) ||
815 nla_put_u8(msg, NL80211_WMMR_AIFSN,
816 rule->wmm_rule.client[j].aifsn) ||
817 nla_put_u16(msg, NL80211_WMMR_TXOP,
818 rule->wmm_rule.client[j].cot))
819 goto nla_put_failure;
821 nla_nest_end(msg, nl_wmm_rule);
823 nla_nest_end(msg, nl_wmm_rules);
831 static int nl80211_msg_put_channel(struct sk_buff *msg, struct wiphy *wiphy,
832 struct ieee80211_channel *chan,
835 /* Some channels must be completely excluded from the
836 * list to protect old user-space tools from breaking
838 if (!large && chan->flags &
839 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
842 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
844 goto nla_put_failure;
846 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
847 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
848 goto nla_put_failure;
849 if (chan->flags & IEEE80211_CHAN_NO_IR) {
850 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
851 goto nla_put_failure;
852 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
853 goto nla_put_failure;
855 if (chan->flags & IEEE80211_CHAN_RADAR) {
856 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
857 goto nla_put_failure;
861 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
863 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
865 goto nla_put_failure;
866 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
868 goto nla_put_failure;
870 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
872 goto nla_put_failure;
877 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
878 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
879 goto nla_put_failure;
880 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
881 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
882 goto nla_put_failure;
883 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
884 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
885 goto nla_put_failure;
886 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
887 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
888 goto nla_put_failure;
889 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
890 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
891 goto nla_put_failure;
892 if ((chan->flags & IEEE80211_CHAN_IR_CONCURRENT) &&
893 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_IR_CONCURRENT))
894 goto nla_put_failure;
895 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
896 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
897 goto nla_put_failure;
898 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
899 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
900 goto nla_put_failure;
903 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
904 DBM_TO_MBM(chan->max_power)))
905 goto nla_put_failure;
908 const struct ieee80211_reg_rule *rule =
909 freq_reg_info(wiphy, MHZ_TO_KHZ(chan->center_freq));
911 if (!IS_ERR_OR_NULL(rule) && rule->has_wmm) {
912 if (nl80211_msg_put_wmm_rules(msg, rule))
913 goto nla_put_failure;
923 static bool nl80211_put_txq_stats(struct sk_buff *msg,
924 struct cfg80211_txq_stats *txqstats,
927 struct nlattr *txqattr;
929 #define PUT_TXQVAL_U32(attr, memb) do { \
930 if (txqstats->filled & BIT(NL80211_TXQ_STATS_ ## attr) && \
931 nla_put_u32(msg, NL80211_TXQ_STATS_ ## attr, txqstats->memb)) \
935 txqattr = nla_nest_start_noflag(msg, attrtype);
939 PUT_TXQVAL_U32(BACKLOG_BYTES, backlog_bytes);
940 PUT_TXQVAL_U32(BACKLOG_PACKETS, backlog_packets);
941 PUT_TXQVAL_U32(FLOWS, flows);
942 PUT_TXQVAL_U32(DROPS, drops);
943 PUT_TXQVAL_U32(ECN_MARKS, ecn_marks);
944 PUT_TXQVAL_U32(OVERLIMIT, overlimit);
945 PUT_TXQVAL_U32(OVERMEMORY, overmemory);
946 PUT_TXQVAL_U32(COLLISIONS, collisions);
947 PUT_TXQVAL_U32(TX_BYTES, tx_bytes);
948 PUT_TXQVAL_U32(TX_PACKETS, tx_packets);
949 PUT_TXQVAL_U32(MAX_FLOWS, max_flows);
950 nla_nest_end(msg, txqattr);
952 #undef PUT_TXQVAL_U32
956 /* netlink command implementations */
963 bool def_uni, def_multi;
966 static int nl80211_parse_key_new(struct genl_info *info, struct nlattr *key,
969 struct nlattr *tb[NL80211_KEY_MAX + 1];
970 int err = nla_parse_nested_deprecated(tb, NL80211_KEY_MAX, key,
976 k->def = !!tb[NL80211_KEY_DEFAULT];
977 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
986 if (tb[NL80211_KEY_IDX])
987 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
989 if (tb[NL80211_KEY_DATA]) {
990 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
991 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
994 if (tb[NL80211_KEY_SEQ]) {
995 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
996 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
999 if (tb[NL80211_KEY_CIPHER])
1000 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
1002 if (tb[NL80211_KEY_TYPE])
1003 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
1005 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
1006 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
1008 err = nla_parse_nested_deprecated(kdt,
1009 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
1010 tb[NL80211_KEY_DEFAULT_TYPES],
1011 nl80211_key_default_policy,
1016 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1017 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1020 if (tb[NL80211_KEY_MODE])
1021 k->p.mode = nla_get_u8(tb[NL80211_KEY_MODE]);
1026 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
1028 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
1029 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
1030 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
1033 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
1034 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
1035 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
1038 if (info->attrs[NL80211_ATTR_KEY_IDX])
1039 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
1041 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
1042 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
1044 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
1045 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
1049 k->def_multi = true;
1052 k->def_multi = true;
1054 if (info->attrs[NL80211_ATTR_KEY_TYPE])
1055 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
1057 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
1058 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
1059 int err = nla_parse_nested_deprecated(kdt,
1060 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
1061 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
1062 nl80211_key_default_policy,
1067 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1068 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1074 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
1078 memset(k, 0, sizeof(*k));
1082 if (info->attrs[NL80211_ATTR_KEY])
1083 err = nl80211_parse_key_new(info, info->attrs[NL80211_ATTR_KEY], k);
1085 err = nl80211_parse_key_old(info, k);
1090 if (k->def && k->defmgmt) {
1091 GENL_SET_ERR_MSG(info, "key with def && defmgmt is invalid");
1096 if (k->def_uni || !k->def_multi) {
1097 GENL_SET_ERR_MSG(info, "defmgmt key must be mcast");
1104 if (k->idx < 4 || k->idx > 5) {
1105 GENL_SET_ERR_MSG(info,
1106 "defmgmt key idx not 4 or 5");
1109 } else if (k->def) {
1110 if (k->idx < 0 || k->idx > 3) {
1111 GENL_SET_ERR_MSG(info, "def key idx not 0-3");
1115 if (k->idx < 0 || k->idx > 5) {
1116 GENL_SET_ERR_MSG(info, "key idx not 0-5");
1125 static struct cfg80211_cached_keys *
1126 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
1127 struct genl_info *info, bool *no_ht)
1129 struct nlattr *keys = info->attrs[NL80211_ATTR_KEYS];
1130 struct key_parse parse;
1132 struct cfg80211_cached_keys *result;
1133 int rem, err, def = 0;
1134 bool have_key = false;
1136 nla_for_each_nested(key, keys, rem) {
1144 result = kzalloc(sizeof(*result), GFP_KERNEL);
1146 return ERR_PTR(-ENOMEM);
1150 nla_for_each_nested(key, keys, rem) {
1151 memset(&parse, 0, sizeof(parse));
1154 err = nl80211_parse_key_new(info, key, &parse);
1160 if (parse.idx < 0 || parse.idx > 3) {
1161 GENL_SET_ERR_MSG(info, "key index out of range [0-3]");
1166 GENL_SET_ERR_MSG(info,
1167 "only one key can be default");
1171 result->def = parse.idx;
1172 if (!parse.def_uni || !parse.def_multi)
1174 } else if (parse.defmgmt)
1176 err = cfg80211_validate_key_settings(rdev, &parse.p,
1177 parse.idx, false, NULL);
1180 if (parse.p.cipher != WLAN_CIPHER_SUITE_WEP40 &&
1181 parse.p.cipher != WLAN_CIPHER_SUITE_WEP104) {
1182 GENL_SET_ERR_MSG(info, "connect key must be WEP");
1186 result->params[parse.idx].cipher = parse.p.cipher;
1187 result->params[parse.idx].key_len = parse.p.key_len;
1188 result->params[parse.idx].key = result->data[parse.idx];
1189 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
1191 /* must be WEP key if we got here */
1196 if (result->def < 0) {
1198 GENL_SET_ERR_MSG(info, "need a default/TX key");
1205 return ERR_PTR(err);
1208 static int nl80211_key_allowed(struct wireless_dev *wdev)
1210 ASSERT_WDEV_LOCK(wdev);
1212 switch (wdev->iftype) {
1213 case NL80211_IFTYPE_AP:
1214 case NL80211_IFTYPE_AP_VLAN:
1215 case NL80211_IFTYPE_P2P_GO:
1216 case NL80211_IFTYPE_MESH_POINT:
1218 case NL80211_IFTYPE_ADHOC:
1219 case NL80211_IFTYPE_STATION:
1220 case NL80211_IFTYPE_P2P_CLIENT:
1221 if (!wdev->current_bss)
1224 case NL80211_IFTYPE_UNSPECIFIED:
1225 case NL80211_IFTYPE_OCB:
1226 case NL80211_IFTYPE_MONITOR:
1227 case NL80211_IFTYPE_NAN:
1228 case NL80211_IFTYPE_P2P_DEVICE:
1229 case NL80211_IFTYPE_WDS:
1230 case NUM_NL80211_IFTYPES:
1237 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
1240 struct ieee80211_channel *chan;
1244 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
1245 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
1250 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
1252 struct nlattr *nl_modes = nla_nest_start_noflag(msg, attr);
1256 goto nla_put_failure;
1260 if ((ifmodes & 1) && nla_put_flag(msg, i))
1261 goto nla_put_failure;
1266 nla_nest_end(msg, nl_modes);
1273 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
1274 struct sk_buff *msg,
1277 struct nlattr *nl_combis;
1280 nl_combis = nla_nest_start_noflag(msg,
1281 NL80211_ATTR_INTERFACE_COMBINATIONS);
1283 goto nla_put_failure;
1285 for (i = 0; i < wiphy->n_iface_combinations; i++) {
1286 const struct ieee80211_iface_combination *c;
1287 struct nlattr *nl_combi, *nl_limits;
1289 c = &wiphy->iface_combinations[i];
1291 nl_combi = nla_nest_start_noflag(msg, i + 1);
1293 goto nla_put_failure;
1295 nl_limits = nla_nest_start_noflag(msg,
1296 NL80211_IFACE_COMB_LIMITS);
1298 goto nla_put_failure;
1300 for (j = 0; j < c->n_limits; j++) {
1301 struct nlattr *nl_limit;
1303 nl_limit = nla_nest_start_noflag(msg, j + 1);
1305 goto nla_put_failure;
1306 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
1308 goto nla_put_failure;
1309 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
1310 c->limits[j].types))
1311 goto nla_put_failure;
1312 nla_nest_end(msg, nl_limit);
1315 nla_nest_end(msg, nl_limits);
1317 if (c->beacon_int_infra_match &&
1318 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
1319 goto nla_put_failure;
1320 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
1321 c->num_different_channels) ||
1322 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
1324 goto nla_put_failure;
1326 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
1327 c->radar_detect_widths) ||
1328 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
1329 c->radar_detect_regions)))
1330 goto nla_put_failure;
1331 if (c->beacon_int_min_gcd &&
1332 nla_put_u32(msg, NL80211_IFACE_COMB_BI_MIN_GCD,
1333 c->beacon_int_min_gcd))
1334 goto nla_put_failure;
1336 nla_nest_end(msg, nl_combi);
1339 nla_nest_end(msg, nl_combis);
1347 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1348 struct sk_buff *msg)
1350 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1351 struct nlattr *nl_tcp;
1356 nl_tcp = nla_nest_start_noflag(msg,
1357 NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1361 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1362 tcp->data_payload_max))
1365 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1366 tcp->data_payload_max))
1369 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1372 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1373 sizeof(*tcp->tok), tcp->tok))
1376 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1377 tcp->data_interval_max))
1380 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1381 tcp->wake_payload_max))
1384 nla_nest_end(msg, nl_tcp);
1388 static int nl80211_send_wowlan(struct sk_buff *msg,
1389 struct cfg80211_registered_device *rdev,
1392 struct nlattr *nl_wowlan;
1394 if (!rdev->wiphy.wowlan)
1397 nl_wowlan = nla_nest_start_noflag(msg,
1398 NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1402 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1403 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1404 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1405 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1406 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1407 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1408 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1409 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1410 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1411 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1412 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1413 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1414 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1415 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1416 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1417 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1420 if (rdev->wiphy.wowlan->n_patterns) {
1421 struct nl80211_pattern_support pat = {
1422 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1423 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1424 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1425 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1428 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1433 if ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_NET_DETECT) &&
1434 nla_put_u32(msg, NL80211_WOWLAN_TRIG_NET_DETECT,
1435 rdev->wiphy.wowlan->max_nd_match_sets))
1438 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1441 nla_nest_end(msg, nl_wowlan);
1447 static int nl80211_send_coalesce(struct sk_buff *msg,
1448 struct cfg80211_registered_device *rdev)
1450 struct nl80211_coalesce_rule_support rule;
1452 if (!rdev->wiphy.coalesce)
1455 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1456 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1457 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1458 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1459 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1460 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1462 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1469 nl80211_send_iftype_data(struct sk_buff *msg,
1470 const struct ieee80211_sband_iftype_data *iftdata)
1472 const struct ieee80211_sta_he_cap *he_cap = &iftdata->he_cap;
1474 if (nl80211_put_iftypes(msg, NL80211_BAND_IFTYPE_ATTR_IFTYPES,
1475 iftdata->types_mask))
1478 if (he_cap->has_he) {
1479 if (nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MAC,
1480 sizeof(he_cap->he_cap_elem.mac_cap_info),
1481 he_cap->he_cap_elem.mac_cap_info) ||
1482 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PHY,
1483 sizeof(he_cap->he_cap_elem.phy_cap_info),
1484 he_cap->he_cap_elem.phy_cap_info) ||
1485 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MCS_SET,
1486 sizeof(he_cap->he_mcs_nss_supp),
1487 &he_cap->he_mcs_nss_supp) ||
1488 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PPE,
1489 sizeof(he_cap->ppe_thres), he_cap->ppe_thres))
1496 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1497 struct ieee80211_supported_band *sband)
1499 struct nlattr *nl_rates, *nl_rate;
1500 struct ieee80211_rate *rate;
1504 if (sband->ht_cap.ht_supported &&
1505 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1506 sizeof(sband->ht_cap.mcs),
1507 &sband->ht_cap.mcs) ||
1508 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1509 sband->ht_cap.cap) ||
1510 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1511 sband->ht_cap.ampdu_factor) ||
1512 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1513 sband->ht_cap.ampdu_density)))
1517 if (sband->vht_cap.vht_supported &&
1518 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1519 sizeof(sband->vht_cap.vht_mcs),
1520 &sband->vht_cap.vht_mcs) ||
1521 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1522 sband->vht_cap.cap)))
1525 if (sband->n_iftype_data) {
1526 struct nlattr *nl_iftype_data =
1527 nla_nest_start_noflag(msg,
1528 NL80211_BAND_ATTR_IFTYPE_DATA);
1531 if (!nl_iftype_data)
1534 for (i = 0; i < sband->n_iftype_data; i++) {
1535 struct nlattr *iftdata;
1537 iftdata = nla_nest_start_noflag(msg, i + 1);
1541 err = nl80211_send_iftype_data(msg,
1542 &sband->iftype_data[i]);
1546 nla_nest_end(msg, iftdata);
1549 nla_nest_end(msg, nl_iftype_data);
1553 nl_rates = nla_nest_start_noflag(msg, NL80211_BAND_ATTR_RATES);
1557 for (i = 0; i < sband->n_bitrates; i++) {
1558 nl_rate = nla_nest_start_noflag(msg, i);
1562 rate = &sband->bitrates[i];
1563 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1566 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1568 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1571 nla_nest_end(msg, nl_rate);
1574 nla_nest_end(msg, nl_rates);
1580 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1581 const struct ieee80211_txrx_stypes *mgmt_stypes)
1584 struct nlattr *nl_ftypes, *nl_ifs;
1585 enum nl80211_iftype ift;
1591 nl_ifs = nla_nest_start_noflag(msg, NL80211_ATTR_TX_FRAME_TYPES);
1595 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1596 nl_ftypes = nla_nest_start_noflag(msg, ift);
1600 stypes = mgmt_stypes[ift].tx;
1603 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1604 (i << 4) | IEEE80211_FTYPE_MGMT))
1609 nla_nest_end(msg, nl_ftypes);
1612 nla_nest_end(msg, nl_ifs);
1614 nl_ifs = nla_nest_start_noflag(msg, NL80211_ATTR_RX_FRAME_TYPES);
1618 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1619 nl_ftypes = nla_nest_start_noflag(msg, ift);
1623 stypes = mgmt_stypes[ift].rx;
1626 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1627 (i << 4) | IEEE80211_FTYPE_MGMT))
1632 nla_nest_end(msg, nl_ftypes);
1634 nla_nest_end(msg, nl_ifs);
1639 #define CMD(op, n) \
1641 if (rdev->ops->op) { \
1643 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1644 goto nla_put_failure; \
1648 static int nl80211_add_commands_unsplit(struct cfg80211_registered_device *rdev,
1649 struct sk_buff *msg)
1654 * do *NOT* add anything into this function, new things need to be
1655 * advertised only to new versions of userspace that can deal with
1656 * the split (and they can't possibly care about new features...
1658 CMD(add_virtual_intf, NEW_INTERFACE);
1659 CMD(change_virtual_intf, SET_INTERFACE);
1660 CMD(add_key, NEW_KEY);
1661 CMD(start_ap, START_AP);
1662 CMD(add_station, NEW_STATION);
1663 CMD(add_mpath, NEW_MPATH);
1664 CMD(update_mesh_config, SET_MESH_CONFIG);
1665 CMD(change_bss, SET_BSS);
1666 CMD(auth, AUTHENTICATE);
1667 CMD(assoc, ASSOCIATE);
1668 CMD(deauth, DEAUTHENTICATE);
1669 CMD(disassoc, DISASSOCIATE);
1670 CMD(join_ibss, JOIN_IBSS);
1671 CMD(join_mesh, JOIN_MESH);
1672 CMD(set_pmksa, SET_PMKSA);
1673 CMD(del_pmksa, DEL_PMKSA);
1674 CMD(flush_pmksa, FLUSH_PMKSA);
1675 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1676 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1677 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1678 CMD(mgmt_tx, FRAME);
1679 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1680 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1682 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1683 goto nla_put_failure;
1685 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1686 rdev->ops->join_mesh) {
1688 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1689 goto nla_put_failure;
1691 CMD(set_wds_peer, SET_WDS_PEER);
1692 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1693 CMD(tdls_mgmt, TDLS_MGMT);
1694 CMD(tdls_oper, TDLS_OPER);
1696 if (rdev->wiphy.max_sched_scan_reqs)
1697 CMD(sched_scan_start, START_SCHED_SCAN);
1698 CMD(probe_client, PROBE_CLIENT);
1699 CMD(set_noack_map, SET_NOACK_MAP);
1700 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1702 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1703 goto nla_put_failure;
1705 CMD(start_p2p_device, START_P2P_DEVICE);
1706 CMD(set_mcast_rate, SET_MCAST_RATE);
1707 #ifdef CONFIG_NL80211_TESTMODE
1708 CMD(testmode_cmd, TESTMODE);
1711 if (rdev->ops->connect || rdev->ops->auth) {
1713 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1714 goto nla_put_failure;
1717 if (rdev->ops->disconnect || rdev->ops->deauth) {
1719 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1720 goto nla_put_failure;
1729 nl80211_send_pmsr_ftm_capa(const struct cfg80211_pmsr_capabilities *cap,
1730 struct sk_buff *msg)
1734 if (!cap->ftm.supported)
1737 ftm = nla_nest_start_noflag(msg, NL80211_PMSR_TYPE_FTM);
1741 if (cap->ftm.asap && nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_ASAP))
1743 if (cap->ftm.non_asap &&
1744 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP))
1746 if (cap->ftm.request_lci &&
1747 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI))
1749 if (cap->ftm.request_civicloc &&
1750 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC))
1752 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES,
1753 cap->ftm.preambles))
1755 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS,
1756 cap->ftm.bandwidths))
1758 if (cap->ftm.max_bursts_exponent >= 0 &&
1759 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT,
1760 cap->ftm.max_bursts_exponent))
1762 if (cap->ftm.max_ftms_per_burst &&
1763 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST,
1764 cap->ftm.max_ftms_per_burst))
1767 nla_nest_end(msg, ftm);
1771 static int nl80211_send_pmsr_capa(struct cfg80211_registered_device *rdev,
1772 struct sk_buff *msg)
1774 const struct cfg80211_pmsr_capabilities *cap = rdev->wiphy.pmsr_capa;
1775 struct nlattr *pmsr, *caps;
1781 * we don't need to clean up anything here since the caller
1782 * will genlmsg_cancel() if we fail
1785 pmsr = nla_nest_start_noflag(msg, NL80211_ATTR_PEER_MEASUREMENTS);
1789 if (nla_put_u32(msg, NL80211_PMSR_ATTR_MAX_PEERS, cap->max_peers))
1792 if (cap->report_ap_tsf &&
1793 nla_put_flag(msg, NL80211_PMSR_ATTR_REPORT_AP_TSF))
1796 if (cap->randomize_mac_addr &&
1797 nla_put_flag(msg, NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR))
1800 caps = nla_nest_start_noflag(msg, NL80211_PMSR_ATTR_TYPE_CAPA);
1804 if (nl80211_send_pmsr_ftm_capa(cap, msg))
1807 nla_nest_end(msg, caps);
1808 nla_nest_end(msg, pmsr);
1813 struct nl80211_dump_wiphy_state {
1816 long split_start, band_start, chan_start, capa_start;
1820 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1821 enum nl80211_commands cmd,
1822 struct sk_buff *msg, u32 portid, u32 seq,
1823 int flags, struct nl80211_dump_wiphy_state *state)
1826 struct nlattr *nl_bands, *nl_band;
1827 struct nlattr *nl_freqs, *nl_freq;
1828 struct nlattr *nl_cmds;
1829 enum nl80211_band band;
1830 struct ieee80211_channel *chan;
1832 const struct ieee80211_txrx_stypes *mgmt_stypes =
1833 rdev->wiphy.mgmt_stypes;
1836 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1840 if (WARN_ON(!state))
1843 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1844 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1845 wiphy_name(&rdev->wiphy)) ||
1846 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1847 cfg80211_rdev_list_generation))
1848 goto nla_put_failure;
1850 if (cmd != NL80211_CMD_NEW_WIPHY)
1853 switch (state->split_start) {
1855 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1856 rdev->wiphy.retry_short) ||
1857 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1858 rdev->wiphy.retry_long) ||
1859 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1860 rdev->wiphy.frag_threshold) ||
1861 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1862 rdev->wiphy.rts_threshold) ||
1863 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1864 rdev->wiphy.coverage_class) ||
1865 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1866 rdev->wiphy.max_scan_ssids) ||
1867 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1868 rdev->wiphy.max_sched_scan_ssids) ||
1869 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1870 rdev->wiphy.max_scan_ie_len) ||
1871 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1872 rdev->wiphy.max_sched_scan_ie_len) ||
1873 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1874 rdev->wiphy.max_match_sets) ||
1875 nla_put_u32(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_PLANS,
1876 rdev->wiphy.max_sched_scan_plans) ||
1877 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_INTERVAL,
1878 rdev->wiphy.max_sched_scan_plan_interval) ||
1879 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_ITERATIONS,
1880 rdev->wiphy.max_sched_scan_plan_iterations))
1881 goto nla_put_failure;
1883 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1884 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1885 goto nla_put_failure;
1886 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1887 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1888 goto nla_put_failure;
1889 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1890 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1891 goto nla_put_failure;
1892 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1893 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1894 goto nla_put_failure;
1895 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1896 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1897 goto nla_put_failure;
1898 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1899 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1900 goto nla_put_failure;
1901 state->split_start++;
1906 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1907 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1908 rdev->wiphy.cipher_suites))
1909 goto nla_put_failure;
1911 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1912 rdev->wiphy.max_num_pmkids))
1913 goto nla_put_failure;
1915 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1916 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1917 goto nla_put_failure;
1919 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1920 rdev->wiphy.available_antennas_tx) ||
1921 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1922 rdev->wiphy.available_antennas_rx))
1923 goto nla_put_failure;
1925 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1926 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1927 rdev->wiphy.probe_resp_offload))
1928 goto nla_put_failure;
1930 if ((rdev->wiphy.available_antennas_tx ||
1931 rdev->wiphy.available_antennas_rx) &&
1932 rdev->ops->get_antenna) {
1933 u32 tx_ant = 0, rx_ant = 0;
1936 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
1938 if (nla_put_u32(msg,
1939 NL80211_ATTR_WIPHY_ANTENNA_TX,
1942 NL80211_ATTR_WIPHY_ANTENNA_RX,
1944 goto nla_put_failure;
1948 state->split_start++;
1953 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1954 rdev->wiphy.interface_modes))
1955 goto nla_put_failure;
1956 state->split_start++;
1961 nl_bands = nla_nest_start_noflag(msg,
1962 NL80211_ATTR_WIPHY_BANDS);
1964 goto nla_put_failure;
1966 for (band = state->band_start;
1967 band < NUM_NL80211_BANDS; band++) {
1968 struct ieee80211_supported_band *sband;
1970 sband = rdev->wiphy.bands[band];
1975 nl_band = nla_nest_start_noflag(msg, band);
1977 goto nla_put_failure;
1979 switch (state->chan_start) {
1981 if (nl80211_send_band_rateinfo(msg, sband))
1982 goto nla_put_failure;
1983 state->chan_start++;
1988 /* add frequencies */
1989 nl_freqs = nla_nest_start_noflag(msg,
1990 NL80211_BAND_ATTR_FREQS);
1992 goto nla_put_failure;
1994 for (i = state->chan_start - 1;
1995 i < sband->n_channels;
1997 nl_freq = nla_nest_start_noflag(msg,
2000 goto nla_put_failure;
2002 chan = &sband->channels[i];
2004 if (nl80211_msg_put_channel(
2005 msg, &rdev->wiphy, chan,
2007 goto nla_put_failure;
2009 nla_nest_end(msg, nl_freq);
2013 if (i < sband->n_channels)
2014 state->chan_start = i + 2;
2016 state->chan_start = 0;
2017 nla_nest_end(msg, nl_freqs);
2020 nla_nest_end(msg, nl_band);
2023 /* start again here */
2024 if (state->chan_start)
2029 nla_nest_end(msg, nl_bands);
2031 if (band < NUM_NL80211_BANDS)
2032 state->band_start = band + 1;
2034 state->band_start = 0;
2036 /* if bands & channels are done, continue outside */
2037 if (state->band_start == 0 && state->chan_start == 0)
2038 state->split_start++;
2043 nl_cmds = nla_nest_start_noflag(msg,
2044 NL80211_ATTR_SUPPORTED_COMMANDS);
2046 goto nla_put_failure;
2048 i = nl80211_add_commands_unsplit(rdev, msg);
2050 goto nla_put_failure;
2052 CMD(crit_proto_start, CRIT_PROTOCOL_START);
2053 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
2054 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
2055 CMD(channel_switch, CHANNEL_SWITCH);
2056 CMD(set_qos_map, SET_QOS_MAP);
2057 if (rdev->wiphy.features &
2058 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
2059 CMD(add_tx_ts, ADD_TX_TS);
2060 CMD(set_multicast_to_unicast, SET_MULTICAST_TO_UNICAST);
2061 CMD(update_connect_params, UPDATE_CONNECT_PARAMS);
2065 nla_nest_end(msg, nl_cmds);
2066 state->split_start++;
2071 if (rdev->ops->remain_on_channel &&
2072 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
2074 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
2075 rdev->wiphy.max_remain_on_channel_duration))
2076 goto nla_put_failure;
2078 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
2079 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
2080 goto nla_put_failure;
2082 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
2083 goto nla_put_failure;
2084 state->split_start++;
2090 if (nl80211_send_wowlan(msg, rdev, state->split))
2091 goto nla_put_failure;
2092 state->split_start++;
2096 state->split_start++;
2100 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
2101 rdev->wiphy.software_iftypes))
2102 goto nla_put_failure;
2104 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
2106 goto nla_put_failure;
2108 state->split_start++;
2113 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
2114 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
2115 rdev->wiphy.ap_sme_capa))
2116 goto nla_put_failure;
2118 features = rdev->wiphy.features;
2120 * We can only add the per-channel limit information if the
2121 * dump is split, otherwise it makes it too big. Therefore
2122 * only advertise it in that case.
2125 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
2126 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
2127 goto nla_put_failure;
2129 if (rdev->wiphy.ht_capa_mod_mask &&
2130 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
2131 sizeof(*rdev->wiphy.ht_capa_mod_mask),
2132 rdev->wiphy.ht_capa_mod_mask))
2133 goto nla_put_failure;
2135 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
2136 rdev->wiphy.max_acl_mac_addrs &&
2137 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
2138 rdev->wiphy.max_acl_mac_addrs))
2139 goto nla_put_failure;
2142 * Any information below this point is only available to
2143 * applications that can deal with it being split. This
2144 * helps ensure that newly added capabilities don't break
2145 * older tools by overrunning their buffers.
2147 * We still increment split_start so that in the split
2148 * case we'll continue with more data in the next round,
2149 * but break unconditionally so unsplit data stops here.
2151 state->split_start++;
2154 if (rdev->wiphy.extended_capabilities &&
2155 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
2156 rdev->wiphy.extended_capabilities_len,
2157 rdev->wiphy.extended_capabilities) ||
2158 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2159 rdev->wiphy.extended_capabilities_len,
2160 rdev->wiphy.extended_capabilities_mask)))
2161 goto nla_put_failure;
2163 if (rdev->wiphy.vht_capa_mod_mask &&
2164 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
2165 sizeof(*rdev->wiphy.vht_capa_mod_mask),
2166 rdev->wiphy.vht_capa_mod_mask))
2167 goto nla_put_failure;
2169 state->split_start++;
2172 if (nl80211_send_coalesce(msg, rdev))
2173 goto nla_put_failure;
2175 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
2176 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
2177 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
2178 goto nla_put_failure;
2180 if (rdev->wiphy.max_ap_assoc_sta &&
2181 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
2182 rdev->wiphy.max_ap_assoc_sta))
2183 goto nla_put_failure;
2185 state->split_start++;
2188 if (rdev->wiphy.n_vendor_commands) {
2189 const struct nl80211_vendor_cmd_info *info;
2190 struct nlattr *nested;
2192 nested = nla_nest_start_noflag(msg,
2193 NL80211_ATTR_VENDOR_DATA);
2195 goto nla_put_failure;
2197 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
2198 info = &rdev->wiphy.vendor_commands[i].info;
2199 if (nla_put(msg, i + 1, sizeof(*info), info))
2200 goto nla_put_failure;
2202 nla_nest_end(msg, nested);
2205 if (rdev->wiphy.n_vendor_events) {
2206 const struct nl80211_vendor_cmd_info *info;
2207 struct nlattr *nested;
2209 nested = nla_nest_start_noflag(msg,
2210 NL80211_ATTR_VENDOR_EVENTS);
2212 goto nla_put_failure;
2214 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
2215 info = &rdev->wiphy.vendor_events[i];
2216 if (nla_put(msg, i + 1, sizeof(*info), info))
2217 goto nla_put_failure;
2219 nla_nest_end(msg, nested);
2221 state->split_start++;
2224 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
2225 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
2226 rdev->wiphy.max_num_csa_counters))
2227 goto nla_put_failure;
2229 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
2230 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
2231 goto nla_put_failure;
2233 if (rdev->wiphy.max_sched_scan_reqs &&
2234 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_MAX_REQS,
2235 rdev->wiphy.max_sched_scan_reqs))
2236 goto nla_put_failure;
2238 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
2239 sizeof(rdev->wiphy.ext_features),
2240 rdev->wiphy.ext_features))
2241 goto nla_put_failure;
2243 if (rdev->wiphy.bss_select_support) {
2244 struct nlattr *nested;
2245 u32 bss_select_support = rdev->wiphy.bss_select_support;
2247 nested = nla_nest_start_noflag(msg,
2248 NL80211_ATTR_BSS_SELECT);
2250 goto nla_put_failure;
2253 while (bss_select_support) {
2254 if ((bss_select_support & 1) &&
2255 nla_put_flag(msg, i))
2256 goto nla_put_failure;
2258 bss_select_support >>= 1;
2260 nla_nest_end(msg, nested);
2263 state->split_start++;
2266 if (rdev->wiphy.num_iftype_ext_capab &&
2267 rdev->wiphy.iftype_ext_capab) {
2268 struct nlattr *nested_ext_capab, *nested;
2270 nested = nla_nest_start_noflag(msg,
2271 NL80211_ATTR_IFTYPE_EXT_CAPA);
2273 goto nla_put_failure;
2275 for (i = state->capa_start;
2276 i < rdev->wiphy.num_iftype_ext_capab; i++) {
2277 const struct wiphy_iftype_ext_capab *capab;
2279 capab = &rdev->wiphy.iftype_ext_capab[i];
2281 nested_ext_capab = nla_nest_start_noflag(msg,
2283 if (!nested_ext_capab ||
2284 nla_put_u32(msg, NL80211_ATTR_IFTYPE,
2286 nla_put(msg, NL80211_ATTR_EXT_CAPA,
2287 capab->extended_capabilities_len,
2288 capab->extended_capabilities) ||
2289 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2290 capab->extended_capabilities_len,
2291 capab->extended_capabilities_mask))
2292 goto nla_put_failure;
2294 nla_nest_end(msg, nested_ext_capab);
2298 nla_nest_end(msg, nested);
2299 if (i < rdev->wiphy.num_iftype_ext_capab) {
2300 state->capa_start = i + 1;
2305 if (nla_put_u32(msg, NL80211_ATTR_BANDS,
2306 rdev->wiphy.nan_supported_bands))
2307 goto nla_put_failure;
2309 if (wiphy_ext_feature_isset(&rdev->wiphy,
2310 NL80211_EXT_FEATURE_TXQS)) {
2311 struct cfg80211_txq_stats txqstats = {};
2314 res = rdev_get_txq_stats(rdev, NULL, &txqstats);
2316 !nl80211_put_txq_stats(msg, &txqstats,
2317 NL80211_ATTR_TXQ_STATS))
2318 goto nla_put_failure;
2320 if (nla_put_u32(msg, NL80211_ATTR_TXQ_LIMIT,
2321 rdev->wiphy.txq_limit))
2322 goto nla_put_failure;
2323 if (nla_put_u32(msg, NL80211_ATTR_TXQ_MEMORY_LIMIT,
2324 rdev->wiphy.txq_memory_limit))
2325 goto nla_put_failure;
2326 if (nla_put_u32(msg, NL80211_ATTR_TXQ_QUANTUM,
2327 rdev->wiphy.txq_quantum))
2328 goto nla_put_failure;
2331 state->split_start++;
2334 if (nl80211_send_pmsr_capa(rdev, msg))
2335 goto nla_put_failure;
2337 state->split_start++;
2340 if (rdev->wiphy.akm_suites &&
2341 nla_put(msg, NL80211_ATTR_AKM_SUITES,
2342 sizeof(u32) * rdev->wiphy.n_akm_suites,
2343 rdev->wiphy.akm_suites))
2344 goto nla_put_failure;
2347 state->split_start = 0;
2351 genlmsg_end(msg, hdr);
2355 genlmsg_cancel(msg, hdr);
2359 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
2360 struct netlink_callback *cb,
2361 struct nl80211_dump_wiphy_state *state)
2363 struct nlattr **tb = genl_family_attrbuf(&nl80211_fam);
2364 int ret = nlmsg_parse_deprecated(cb->nlh,
2365 GENL_HDRLEN + nl80211_fam.hdrsize,
2366 tb, nl80211_fam.maxattr,
2367 nl80211_policy, NULL);
2368 /* ignore parse errors for backward compatibility */
2372 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
2373 if (tb[NL80211_ATTR_WIPHY])
2374 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
2375 if (tb[NL80211_ATTR_WDEV])
2376 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
2377 if (tb[NL80211_ATTR_IFINDEX]) {
2378 struct net_device *netdev;
2379 struct cfg80211_registered_device *rdev;
2380 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
2382 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
2385 if (netdev->ieee80211_ptr) {
2386 rdev = wiphy_to_rdev(
2387 netdev->ieee80211_ptr->wiphy);
2388 state->filter_wiphy = rdev->wiphy_idx;
2395 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
2398 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
2399 struct cfg80211_registered_device *rdev;
2403 state = kzalloc(sizeof(*state), GFP_KERNEL);
2408 state->filter_wiphy = -1;
2409 ret = nl80211_dump_wiphy_parse(skb, cb, state);
2415 cb->args[0] = (long)state;
2418 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2419 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2421 if (++idx <= state->start)
2423 if (state->filter_wiphy != -1 &&
2424 state->filter_wiphy != rdev->wiphy_idx)
2426 /* attempt to fit multiple wiphy data chunks into the skb */
2428 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
2430 NETLINK_CB(cb->skb).portid,
2432 NLM_F_MULTI, state);
2435 * If sending the wiphy data didn't fit (ENOBUFS
2436 * or EMSGSIZE returned), this SKB is still
2437 * empty (so it's not too big because another
2438 * wiphy dataset is already in the skb) and
2439 * we've not tried to adjust the dump allocation
2440 * yet ... then adjust the alloc size to be
2441 * bigger, and return 1 but with the empty skb.
2442 * This results in an empty message being RX'ed
2443 * in userspace, but that is ignored.
2445 * We can then retry with the larger buffer.
2447 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
2448 !skb->len && !state->split &&
2449 cb->min_dump_alloc < 4096) {
2450 cb->min_dump_alloc = 4096;
2451 state->split_start = 0;
2458 } while (state->split_start > 0);
2468 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
2470 kfree((void *)cb->args[0]);
2474 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
2476 struct sk_buff *msg;
2477 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2478 struct nl80211_dump_wiphy_state state = {};
2480 msg = nlmsg_new(4096, GFP_KERNEL);
2484 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
2485 info->snd_portid, info->snd_seq, 0,
2491 return genlmsg_reply(msg, info);
2494 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
2495 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
2496 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
2497 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
2498 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
2499 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
2502 static int parse_txq_params(struct nlattr *tb[],
2503 struct ieee80211_txq_params *txq_params)
2507 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
2508 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
2509 !tb[NL80211_TXQ_ATTR_AIFS])
2512 ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
2513 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
2514 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
2515 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
2516 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
2518 if (ac >= NL80211_NUM_ACS)
2520 txq_params->ac = array_index_nospec(ac, NL80211_NUM_ACS);
2524 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
2527 * You can only set the channel explicitly for WDS interfaces,
2528 * all others have their channel managed via their respective
2529 * "establish a connection" command (connect, join, ...)
2531 * For AP/GO and mesh mode, the channel can be set with the
2532 * channel userspace API, but is only stored and passed to the
2533 * low-level driver when the AP starts or the mesh is joined.
2534 * This is for backward compatibility, userspace can also give
2535 * the channel in the start-ap or join-mesh commands instead.
2537 * Monitors are special as they are normally slaved to
2538 * whatever else is going on, so they have their own special
2539 * operation to set the monitor channel if possible.
2542 wdev->iftype == NL80211_IFTYPE_AP ||
2543 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
2544 wdev->iftype == NL80211_IFTYPE_MONITOR ||
2545 wdev->iftype == NL80211_IFTYPE_P2P_GO;
2548 int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
2549 struct genl_info *info,
2550 struct cfg80211_chan_def *chandef)
2552 struct netlink_ext_ack *extack = info->extack;
2553 struct nlattr **attrs = info->attrs;
2556 if (!attrs[NL80211_ATTR_WIPHY_FREQ])
2559 control_freq = nla_get_u32(attrs[NL80211_ATTR_WIPHY_FREQ]);
2561 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
2562 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
2563 chandef->center_freq1 = control_freq;
2564 chandef->center_freq2 = 0;
2566 /* Primary channel not allowed */
2567 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED) {
2568 NL_SET_ERR_MSG_ATTR(extack, attrs[NL80211_ATTR_WIPHY_FREQ],
2569 "Channel is disabled");
2573 if (attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
2574 enum nl80211_channel_type chantype;
2576 chantype = nla_get_u32(attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
2579 case NL80211_CHAN_NO_HT:
2580 case NL80211_CHAN_HT20:
2581 case NL80211_CHAN_HT40PLUS:
2582 case NL80211_CHAN_HT40MINUS:
2583 cfg80211_chandef_create(chandef, chandef->chan,
2585 /* user input for center_freq is incorrect */
2586 if (attrs[NL80211_ATTR_CENTER_FREQ1] &&
2587 chandef->center_freq1 != nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1])) {
2588 NL_SET_ERR_MSG_ATTR(extack,
2589 attrs[NL80211_ATTR_CENTER_FREQ1],
2590 "bad center frequency 1");
2593 /* center_freq2 must be zero */
2594 if (attrs[NL80211_ATTR_CENTER_FREQ2] &&
2595 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2])) {
2596 NL_SET_ERR_MSG_ATTR(extack,
2597 attrs[NL80211_ATTR_CENTER_FREQ2],
2598 "center frequency 2 can't be used");
2603 NL_SET_ERR_MSG_ATTR(extack,
2604 attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE],
2605 "invalid channel type");
2608 } else if (attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
2610 nla_get_u32(attrs[NL80211_ATTR_CHANNEL_WIDTH]);
2611 if (attrs[NL80211_ATTR_CENTER_FREQ1])
2612 chandef->center_freq1 =
2613 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1]);
2614 if (attrs[NL80211_ATTR_CENTER_FREQ2])
2615 chandef->center_freq2 =
2616 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2]);
2619 if (!cfg80211_chandef_valid(chandef)) {
2620 NL_SET_ERR_MSG(extack, "invalid channel definition");
2624 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
2625 IEEE80211_CHAN_DISABLED)) {
2626 NL_SET_ERR_MSG(extack, "(extension) channel is disabled");
2630 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
2631 chandef->width == NL80211_CHAN_WIDTH_10) &&
2632 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ)) {
2633 NL_SET_ERR_MSG(extack, "5/10 MHz not supported");
2640 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
2641 struct net_device *dev,
2642 struct genl_info *info)
2644 struct cfg80211_chan_def chandef;
2646 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
2647 struct wireless_dev *wdev = NULL;
2650 wdev = dev->ieee80211_ptr;
2651 if (!nl80211_can_set_dev_channel(wdev))
2654 iftype = wdev->iftype;
2656 result = nl80211_parse_chandef(rdev, info, &chandef);
2661 case NL80211_IFTYPE_AP:
2662 case NL80211_IFTYPE_P2P_GO:
2663 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
2668 if (wdev->beacon_interval) {
2669 if (!dev || !rdev->ops->set_ap_chanwidth ||
2670 !(rdev->wiphy.features &
2671 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2676 /* Only allow dynamic channel width changes */
2677 if (chandef.chan != wdev->preset_chandef.chan) {
2681 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2685 wdev->preset_chandef = chandef;
2688 case NL80211_IFTYPE_MESH_POINT:
2689 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2691 case NL80211_IFTYPE_MONITOR:
2692 result = cfg80211_set_monitor_channel(rdev, &chandef);
2701 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2703 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2704 struct net_device *netdev = info->user_ptr[1];
2706 return __nl80211_set_channel(rdev, netdev, info);
2709 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2711 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2712 struct net_device *dev = info->user_ptr[1];
2713 struct wireless_dev *wdev = dev->ieee80211_ptr;
2716 if (!info->attrs[NL80211_ATTR_MAC])
2719 if (netif_running(dev))
2722 if (!rdev->ops->set_wds_peer)
2725 if (wdev->iftype != NL80211_IFTYPE_WDS)
2728 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2729 return rdev_set_wds_peer(rdev, dev, bssid);
2732 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2734 struct cfg80211_registered_device *rdev;
2735 struct net_device *netdev = NULL;
2736 struct wireless_dev *wdev;
2737 int result = 0, rem_txq_params = 0;
2738 struct nlattr *nl_txq_params;
2740 u8 retry_short = 0, retry_long = 0;
2741 u32 frag_threshold = 0, rts_threshold = 0;
2742 u8 coverage_class = 0;
2743 u32 txq_limit = 0, txq_memory_limit = 0, txq_quantum = 0;
2748 * Try to find the wiphy and netdev. Normally this
2749 * function shouldn't need the netdev, but this is
2750 * done for backward compatibility -- previously
2751 * setting the channel was done per wiphy, but now
2752 * it is per netdev. Previous userland like hostapd
2753 * also passed a netdev to set_wiphy, so that it is
2754 * possible to let that go to the right netdev!
2757 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2758 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2760 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2761 if (netdev && netdev->ieee80211_ptr)
2762 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2768 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2771 return PTR_ERR(rdev);
2776 wdev = netdev->ieee80211_ptr;
2779 * end workaround code, by now the rdev is available
2780 * and locked, and wdev may or may not be NULL.
2783 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2784 result = cfg80211_dev_rename(
2785 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2790 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2791 struct ieee80211_txq_params txq_params;
2792 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2794 if (!rdev->ops->set_txq_params)
2800 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2801 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2804 if (!netif_running(netdev))
2807 nla_for_each_nested(nl_txq_params,
2808 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2810 result = nla_parse_nested_deprecated(tb,
2811 NL80211_TXQ_ATTR_MAX,
2817 result = parse_txq_params(tb, &txq_params);
2821 result = rdev_set_txq_params(rdev, netdev,
2828 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2829 result = __nl80211_set_channel(
2831 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2837 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2838 struct wireless_dev *txp_wdev = wdev;
2839 enum nl80211_tx_power_setting type;
2842 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2845 if (!rdev->ops->set_tx_power)
2848 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2849 type = nla_get_u32(info->attrs[idx]);
2851 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2852 (type != NL80211_TX_POWER_AUTOMATIC))
2855 if (type != NL80211_TX_POWER_AUTOMATIC) {
2856 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2857 mbm = nla_get_u32(info->attrs[idx]);
2860 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2865 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2866 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2869 if ((!rdev->wiphy.available_antennas_tx &&
2870 !rdev->wiphy.available_antennas_rx) ||
2871 !rdev->ops->set_antenna)
2874 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2875 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2877 /* reject antenna configurations which don't match the
2878 * available antenna masks, except for the "all" mask */
2879 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2880 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2883 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2884 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2886 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2893 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2894 retry_short = nla_get_u8(
2895 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2897 changed |= WIPHY_PARAM_RETRY_SHORT;
2900 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2901 retry_long = nla_get_u8(
2902 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2904 changed |= WIPHY_PARAM_RETRY_LONG;
2907 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2908 frag_threshold = nla_get_u32(
2909 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2910 if (frag_threshold < 256)
2913 if (frag_threshold != (u32) -1) {
2915 * Fragments (apart from the last one) are required to
2916 * have even length. Make the fragmentation code
2917 * simpler by stripping LSB should someone try to use
2918 * odd threshold value.
2920 frag_threshold &= ~0x1;
2922 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2925 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2926 rts_threshold = nla_get_u32(
2927 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2928 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2931 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2932 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
2935 coverage_class = nla_get_u8(
2936 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2937 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2940 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
2941 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
2944 changed |= WIPHY_PARAM_DYN_ACK;
2947 if (info->attrs[NL80211_ATTR_TXQ_LIMIT]) {
2948 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2949 NL80211_EXT_FEATURE_TXQS))
2951 txq_limit = nla_get_u32(
2952 info->attrs[NL80211_ATTR_TXQ_LIMIT]);
2953 changed |= WIPHY_PARAM_TXQ_LIMIT;
2956 if (info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]) {
2957 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2958 NL80211_EXT_FEATURE_TXQS))
2960 txq_memory_limit = nla_get_u32(
2961 info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]);
2962 changed |= WIPHY_PARAM_TXQ_MEMORY_LIMIT;
2965 if (info->attrs[NL80211_ATTR_TXQ_QUANTUM]) {
2966 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2967 NL80211_EXT_FEATURE_TXQS))
2969 txq_quantum = nla_get_u32(
2970 info->attrs[NL80211_ATTR_TXQ_QUANTUM]);
2971 changed |= WIPHY_PARAM_TXQ_QUANTUM;
2975 u8 old_retry_short, old_retry_long;
2976 u32 old_frag_threshold, old_rts_threshold;
2977 u8 old_coverage_class;
2978 u32 old_txq_limit, old_txq_memory_limit, old_txq_quantum;
2980 if (!rdev->ops->set_wiphy_params)
2983 old_retry_short = rdev->wiphy.retry_short;
2984 old_retry_long = rdev->wiphy.retry_long;
2985 old_frag_threshold = rdev->wiphy.frag_threshold;
2986 old_rts_threshold = rdev->wiphy.rts_threshold;
2987 old_coverage_class = rdev->wiphy.coverage_class;
2988 old_txq_limit = rdev->wiphy.txq_limit;
2989 old_txq_memory_limit = rdev->wiphy.txq_memory_limit;
2990 old_txq_quantum = rdev->wiphy.txq_quantum;
2992 if (changed & WIPHY_PARAM_RETRY_SHORT)
2993 rdev->wiphy.retry_short = retry_short;
2994 if (changed & WIPHY_PARAM_RETRY_LONG)
2995 rdev->wiphy.retry_long = retry_long;
2996 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2997 rdev->wiphy.frag_threshold = frag_threshold;
2998 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2999 rdev->wiphy.rts_threshold = rts_threshold;
3000 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
3001 rdev->wiphy.coverage_class = coverage_class;
3002 if (changed & WIPHY_PARAM_TXQ_LIMIT)
3003 rdev->wiphy.txq_limit = txq_limit;
3004 if (changed & WIPHY_PARAM_TXQ_MEMORY_LIMIT)
3005 rdev->wiphy.txq_memory_limit = txq_memory_limit;
3006 if (changed & WIPHY_PARAM_TXQ_QUANTUM)
3007 rdev->wiphy.txq_quantum = txq_quantum;
3009 result = rdev_set_wiphy_params(rdev, changed);
3011 rdev->wiphy.retry_short = old_retry_short;
3012 rdev->wiphy.retry_long = old_retry_long;
3013 rdev->wiphy.frag_threshold = old_frag_threshold;
3014 rdev->wiphy.rts_threshold = old_rts_threshold;
3015 rdev->wiphy.coverage_class = old_coverage_class;
3016 rdev->wiphy.txq_limit = old_txq_limit;
3017 rdev->wiphy.txq_memory_limit = old_txq_memory_limit;
3018 rdev->wiphy.txq_quantum = old_txq_quantum;
3025 static int nl80211_send_chandef(struct sk_buff *msg,
3026 const struct cfg80211_chan_def *chandef)
3028 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
3031 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
3032 chandef->chan->center_freq))
3034 switch (chandef->width) {
3035 case NL80211_CHAN_WIDTH_20_NOHT:
3036 case NL80211_CHAN_WIDTH_20:
3037 case NL80211_CHAN_WIDTH_40:
3038 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
3039 cfg80211_get_chandef_type(chandef)))
3045 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
3047 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
3049 if (chandef->center_freq2 &&
3050 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
3055 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
3056 struct cfg80211_registered_device *rdev,
3057 struct wireless_dev *wdev,
3058 enum nl80211_commands cmd)
3060 struct net_device *dev = wdev->netdev;
3063 WARN_ON(cmd != NL80211_CMD_NEW_INTERFACE &&
3064 cmd != NL80211_CMD_DEL_INTERFACE &&
3065 cmd != NL80211_CMD_SET_INTERFACE);
3067 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
3072 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3073 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
3074 goto nla_put_failure;
3076 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
3077 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
3078 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
3079 NL80211_ATTR_PAD) ||
3080 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
3081 nla_put_u32(msg, NL80211_ATTR_GENERATION,
3082 rdev->devlist_generation ^
3083 (cfg80211_rdev_list_generation << 2)) ||
3084 nla_put_u8(msg, NL80211_ATTR_4ADDR, wdev->use_4addr))
3085 goto nla_put_failure;
3087 if (rdev->ops->get_channel) {
3089 struct cfg80211_chan_def chandef;
3091 ret = rdev_get_channel(rdev, wdev, &chandef);
3093 if (nl80211_send_chandef(msg, &chandef))
3094 goto nla_put_failure;
3098 if (rdev->ops->get_tx_power) {
3101 ret = rdev_get_tx_power(rdev, wdev, &dbm);
3103 nla_put_u32(msg, NL80211_ATTR_WIPHY_TX_POWER_LEVEL,
3105 goto nla_put_failure;
3109 switch (wdev->iftype) {
3110 case NL80211_IFTYPE_AP:
3111 if (wdev->ssid_len &&
3112 nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
3113 goto nla_put_failure_locked;
3115 case NL80211_IFTYPE_STATION:
3116 case NL80211_IFTYPE_P2P_CLIENT:
3117 case NL80211_IFTYPE_ADHOC: {
3119 if (!wdev->current_bss)
3122 ssid_ie = ieee80211_bss_get_ie(&wdev->current_bss->pub,
3125 nla_put(msg, NL80211_ATTR_SSID, ssid_ie[1], ssid_ie + 2))
3126 goto nla_put_failure_rcu_locked;
3136 if (rdev->ops->get_txq_stats) {
3137 struct cfg80211_txq_stats txqstats = {};
3138 int ret = rdev_get_txq_stats(rdev, wdev, &txqstats);
3141 !nl80211_put_txq_stats(msg, &txqstats,
3142 NL80211_ATTR_TXQ_STATS))
3143 goto nla_put_failure;
3146 genlmsg_end(msg, hdr);
3149 nla_put_failure_rcu_locked:
3151 nla_put_failure_locked:
3154 genlmsg_cancel(msg, hdr);
3158 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
3162 int wp_start = cb->args[0];
3163 int if_start = cb->args[1];
3164 int filter_wiphy = -1;
3165 struct cfg80211_registered_device *rdev;
3166 struct wireless_dev *wdev;
3171 struct nl80211_dump_wiphy_state state = {
3175 ret = nl80211_dump_wiphy_parse(skb, cb, &state);
3179 filter_wiphy = state.filter_wiphy;
3182 * if filtering, set cb->args[2] to +1 since 0 is the default
3183 * value needed to determine that parsing is necessary.
3185 if (filter_wiphy >= 0)
3186 cb->args[2] = filter_wiphy + 1;
3189 } else if (cb->args[2] > 0) {
3190 filter_wiphy = cb->args[2] - 1;
3193 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
3194 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
3196 if (wp_idx < wp_start) {
3201 if (filter_wiphy >= 0 && filter_wiphy != rdev->wiphy_idx)
3206 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
3207 if (if_idx < if_start) {
3211 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
3212 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3214 NL80211_CMD_NEW_INTERFACE) < 0) {
3223 cb->args[0] = wp_idx;
3224 cb->args[1] = if_idx;
3233 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
3235 struct sk_buff *msg;
3236 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3237 struct wireless_dev *wdev = info->user_ptr[1];
3239 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3243 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3244 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3249 return genlmsg_reply(msg, info);
3252 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
3253 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
3254 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
3255 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
3256 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
3257 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
3258 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
3261 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
3263 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
3271 if (nla_parse_nested_deprecated(flags, NL80211_MNTR_FLAG_MAX, nla, mntr_flags_policy, NULL))
3274 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
3276 *mntrflags |= (1<<flag);
3278 *mntrflags |= MONITOR_FLAG_CHANGED;
3283 static int nl80211_parse_mon_options(struct cfg80211_registered_device *rdev,
3284 enum nl80211_iftype type,
3285 struct genl_info *info,
3286 struct vif_params *params)
3288 bool change = false;
3291 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
3292 if (type != NL80211_IFTYPE_MONITOR)
3295 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
3303 if (params->flags & MONITOR_FLAG_ACTIVE &&
3304 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
3307 if (info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]) {
3308 const u8 *mumimo_groups;
3309 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3311 if (type != NL80211_IFTYPE_MONITOR)
3314 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3318 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]);
3320 /* bits 0 and 63 are reserved and must be zero */
3321 if ((mumimo_groups[0] & BIT(0)) ||
3322 (mumimo_groups[VHT_MUMIMO_GROUPS_DATA_LEN - 1] & BIT(7)))
3325 params->vht_mumimo_groups = mumimo_groups;
3329 if (info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]) {
3330 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3332 if (type != NL80211_IFTYPE_MONITOR)
3335 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3338 params->vht_mumimo_follow_addr =
3339 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]);
3343 return change ? 1 : 0;
3346 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
3347 struct net_device *netdev, u8 use_4addr,
3348 enum nl80211_iftype iftype)
3351 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
3357 case NL80211_IFTYPE_AP_VLAN:
3358 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
3361 case NL80211_IFTYPE_STATION:
3362 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
3372 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
3374 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3375 struct vif_params params;
3377 enum nl80211_iftype otype, ntype;
3378 struct net_device *dev = info->user_ptr[1];
3379 bool change = false;
3381 memset(¶ms, 0, sizeof(params));
3383 otype = ntype = dev->ieee80211_ptr->iftype;
3385 if (info->attrs[NL80211_ATTR_IFTYPE]) {
3386 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3391 if (info->attrs[NL80211_ATTR_MESH_ID]) {
3392 struct wireless_dev *wdev = dev->ieee80211_ptr;
3394 if (ntype != NL80211_IFTYPE_MESH_POINT)
3396 if (netif_running(dev))
3400 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3401 IEEE80211_MAX_MESH_ID_LEN);
3402 wdev->mesh_id_up_len =
3403 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3404 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3405 wdev->mesh_id_up_len);
3409 if (info->attrs[NL80211_ATTR_4ADDR]) {
3410 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3412 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
3416 params.use_4addr = -1;
3419 err = nl80211_parse_mon_options(rdev, ntype, info, ¶ms);
3426 err = cfg80211_change_iface(rdev, dev, ntype, ¶ms);
3430 if (!err && params.use_4addr != -1)
3431 dev->ieee80211_ptr->use_4addr = params.use_4addr;
3433 if (change && !err) {
3434 struct wireless_dev *wdev = dev->ieee80211_ptr;
3436 nl80211_notify_iface(rdev, wdev, NL80211_CMD_SET_INTERFACE);
3442 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
3444 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3445 struct vif_params params;
3446 struct wireless_dev *wdev;
3447 struct sk_buff *msg;
3449 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
3451 /* to avoid failing a new interface creation due to pending removal */
3452 cfg80211_destroy_ifaces(rdev);
3454 memset(¶ms, 0, sizeof(params));
3456 if (!info->attrs[NL80211_ATTR_IFNAME])
3459 if (info->attrs[NL80211_ATTR_IFTYPE])
3460 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3462 if (!rdev->ops->add_virtual_intf ||
3463 !(rdev->wiphy.interface_modes & (1 << type)))
3466 if ((type == NL80211_IFTYPE_P2P_DEVICE || type == NL80211_IFTYPE_NAN ||
3467 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
3468 info->attrs[NL80211_ATTR_MAC]) {
3469 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
3471 if (!is_valid_ether_addr(params.macaddr))
3472 return -EADDRNOTAVAIL;
3475 if (info->attrs[NL80211_ATTR_4ADDR]) {
3476 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3477 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
3482 err = nl80211_parse_mon_options(rdev, type, info, ¶ms);
3486 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3490 wdev = rdev_add_virtual_intf(rdev,
3491 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
3492 NET_NAME_USER, type, ¶ms);
3493 if (WARN_ON(!wdev)) {
3496 } else if (IS_ERR(wdev)) {
3498 return PTR_ERR(wdev);
3501 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
3502 wdev->owner_nlportid = info->snd_portid;
3505 case NL80211_IFTYPE_MESH_POINT:
3506 if (!info->attrs[NL80211_ATTR_MESH_ID])
3509 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3510 IEEE80211_MAX_MESH_ID_LEN);
3511 wdev->mesh_id_up_len =
3512 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3513 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3514 wdev->mesh_id_up_len);
3517 case NL80211_IFTYPE_NAN:
3518 case NL80211_IFTYPE_P2P_DEVICE:
3520 * P2P Device and NAN do not have a netdev, so don't go
3521 * through the netdev notifier and must be added here
3523 cfg80211_init_wdev(rdev, wdev);
3529 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3530 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3535 return genlmsg_reply(msg, info);
3538 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
3540 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3541 struct wireless_dev *wdev = info->user_ptr[1];
3543 if (!rdev->ops->del_virtual_intf)
3547 * If we remove a wireless device without a netdev then clear
3548 * user_ptr[1] so that nl80211_post_doit won't dereference it
3549 * to check if it needs to do dev_put(). Otherwise it crashes
3550 * since the wdev has been freed, unlike with a netdev where
3551 * we need the dev_put() for the netdev to really be freed.
3554 info->user_ptr[1] = NULL;
3556 return rdev_del_virtual_intf(rdev, wdev);
3559 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
3561 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3562 struct net_device *dev = info->user_ptr[1];
3565 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
3568 if (!rdev->ops->set_noack_map)
3571 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
3573 return rdev_set_noack_map(rdev, dev, noack_map);
3576 struct get_key_cookie {
3577 struct sk_buff *msg;
3582 static void get_key_callback(void *c, struct key_params *params)
3585 struct get_key_cookie *cookie = c;
3588 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
3589 params->key_len, params->key)) ||
3591 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
3592 params->seq_len, params->seq)) ||
3594 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
3596 goto nla_put_failure;
3598 key = nla_nest_start_noflag(cookie->msg, NL80211_ATTR_KEY);
3600 goto nla_put_failure;
3603 nla_put(cookie->msg, NL80211_KEY_DATA,
3604 params->key_len, params->key)) ||
3606 nla_put(cookie->msg, NL80211_KEY_SEQ,
3607 params->seq_len, params->seq)) ||
3609 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
3611 goto nla_put_failure;
3613 if (nla_put_u8(cookie->msg, NL80211_KEY_IDX, cookie->idx))
3614 goto nla_put_failure;
3616 nla_nest_end(cookie->msg, key);
3623 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
3625 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3627 struct net_device *dev = info->user_ptr[1];
3629 const u8 *mac_addr = NULL;
3631 struct get_key_cookie cookie = {
3635 struct sk_buff *msg;
3637 if (info->attrs[NL80211_ATTR_KEY_IDX])
3638 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
3640 if (info->attrs[NL80211_ATTR_MAC])
3641 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3643 pairwise = !!mac_addr;
3644 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
3645 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
3647 if (kt != NL80211_KEYTYPE_GROUP &&
3648 kt != NL80211_KEYTYPE_PAIRWISE)
3650 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
3653 if (!rdev->ops->get_key)
3656 if (!pairwise && mac_addr && !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3659 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3663 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
3664 NL80211_CMD_NEW_KEY);
3666 goto nla_put_failure;
3669 cookie.idx = key_idx;
3671 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3672 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
3673 goto nla_put_failure;
3675 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
3676 goto nla_put_failure;
3678 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
3685 goto nla_put_failure;
3687 genlmsg_end(msg, hdr);
3688 return genlmsg_reply(msg, info);
3697 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
3699 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3700 struct key_parse key;
3702 struct net_device *dev = info->user_ptr[1];
3704 err = nl80211_parse_key(info, &key);
3711 /* Only support setting default key and
3712 * Extended Key ID action NL80211_KEY_SET_TX.
3714 if (!key.def && !key.defmgmt &&
3715 !(key.p.mode == NL80211_KEY_SET_TX))
3718 wdev_lock(dev->ieee80211_ptr);
3721 if (!rdev->ops->set_default_key) {
3726 err = nl80211_key_allowed(dev->ieee80211_ptr);
3730 err = rdev_set_default_key(rdev, dev, key.idx,
3731 key.def_uni, key.def_multi);
3736 #ifdef CONFIG_CFG80211_WEXT
3737 dev->ieee80211_ptr->wext.default_key = key.idx;
3739 } else if (key.defmgmt) {
3740 if (key.def_uni || !key.def_multi) {
3745 if (!rdev->ops->set_default_mgmt_key) {
3750 err = nl80211_key_allowed(dev->ieee80211_ptr);
3754 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
3758 #ifdef CONFIG_CFG80211_WEXT
3759 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
3761 } else if (key.p.mode == NL80211_KEY_SET_TX &&
3762 wiphy_ext_feature_isset(&rdev->wiphy,
3763 NL80211_EXT_FEATURE_EXT_KEY_ID)) {
3764 u8 *mac_addr = NULL;
3766 if (info->attrs[NL80211_ATTR_MAC])
3767 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3769 if (!mac_addr || key.idx < 0 || key.idx > 1) {
3774 err = rdev_add_key(rdev, dev, key.idx,
3775 NL80211_KEYTYPE_PAIRWISE,
3781 wdev_unlock(dev->ieee80211_ptr);
3786 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
3788 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3790 struct net_device *dev = info->user_ptr[1];
3791 struct key_parse key;
3792 const u8 *mac_addr = NULL;
3794 err = nl80211_parse_key(info, &key);
3801 if (info->attrs[NL80211_ATTR_MAC])
3802 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3804 if (key.type == -1) {
3806 key.type = NL80211_KEYTYPE_PAIRWISE;
3808 key.type = NL80211_KEYTYPE_GROUP;
3812 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3813 key.type != NL80211_KEYTYPE_GROUP)
3816 if (!rdev->ops->add_key)
3819 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3820 key.type == NL80211_KEYTYPE_PAIRWISE,
3824 wdev_lock(dev->ieee80211_ptr);
3825 err = nl80211_key_allowed(dev->ieee80211_ptr);
3827 err = rdev_add_key(rdev, dev, key.idx,
3828 key.type == NL80211_KEYTYPE_PAIRWISE,
3830 wdev_unlock(dev->ieee80211_ptr);
3835 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3837 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3839 struct net_device *dev = info->user_ptr[1];
3840 u8 *mac_addr = NULL;
3841 struct key_parse key;
3843 err = nl80211_parse_key(info, &key);
3847 if (info->attrs[NL80211_ATTR_MAC])
3848 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3850 if (key.type == -1) {
3852 key.type = NL80211_KEYTYPE_PAIRWISE;
3854 key.type = NL80211_KEYTYPE_GROUP;
3858 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3859 key.type != NL80211_KEYTYPE_GROUP)
3862 if (!rdev->ops->del_key)
3865 wdev_lock(dev->ieee80211_ptr);
3866 err = nl80211_key_allowed(dev->ieee80211_ptr);
3868 if (key.type == NL80211_KEYTYPE_GROUP && mac_addr &&
3869 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3873 err = rdev_del_key(rdev, dev, key.idx,
3874 key.type == NL80211_KEYTYPE_PAIRWISE,
3877 #ifdef CONFIG_CFG80211_WEXT
3879 if (key.idx == dev->ieee80211_ptr->wext.default_key)
3880 dev->ieee80211_ptr->wext.default_key = -1;
3881 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
3882 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
3885 wdev_unlock(dev->ieee80211_ptr);
3890 /* This function returns an error or the number of nested attributes */
3891 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
3893 struct nlattr *attr;
3894 int n_entries = 0, tmp;
3896 nla_for_each_nested(attr, nl_attr, tmp) {
3897 if (nla_len(attr) != ETH_ALEN)
3907 * This function parses ACL information and allocates memory for ACL data.
3908 * On successful return, the calling function is responsible to free the
3909 * ACL buffer returned by this function.
3911 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
3912 struct genl_info *info)
3914 enum nl80211_acl_policy acl_policy;
3915 struct nlattr *attr;
3916 struct cfg80211_acl_data *acl;
3917 int i = 0, n_entries, tmp;
3919 if (!wiphy->max_acl_mac_addrs)
3920 return ERR_PTR(-EOPNOTSUPP);
3922 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
3923 return ERR_PTR(-EINVAL);
3925 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
3926 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
3927 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
3928 return ERR_PTR(-EINVAL);
3930 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
3931 return ERR_PTR(-EINVAL);
3933 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
3935 return ERR_PTR(n_entries);
3937 if (n_entries > wiphy->max_acl_mac_addrs)
3938 return ERR_PTR(-ENOTSUPP);
3940 acl = kzalloc(struct_size(acl, mac_addrs, n_entries), GFP_KERNEL);
3942 return ERR_PTR(-ENOMEM);
3944 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
3945 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3949 acl->n_acl_entries = n_entries;
3950 acl->acl_policy = acl_policy;
3955 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3957 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3958 struct net_device *dev = info->user_ptr[1];
3959 struct cfg80211_acl_data *acl;
3962 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3963 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3966 if (!dev->ieee80211_ptr->beacon_interval)
3969 acl = parse_acl_data(&rdev->wiphy, info);
3971 return PTR_ERR(acl);
3973 err = rdev_set_mac_acl(rdev, dev, acl);
3980 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
3981 u8 *rates, u8 rates_len)
3986 for (i = 0; i < rates_len; i++) {
3987 int rate = (rates[i] & 0x7f) * 5;
3990 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
3991 struct ieee80211_rate *srate =
3992 &sband->bitrates[ridx];
3993 if (rate == srate->bitrate) {
3998 if (ridx == sband->n_bitrates)
3999 return 0; /* rate not found */
4005 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
4006 u8 *rates, u8 rates_len,
4007 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
4011 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
4013 for (i = 0; i < rates_len; i++) {
4016 ridx = rates[i] / 8;
4017 rbit = BIT(rates[i] % 8);
4019 /* check validity */
4020 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
4023 /* check availability */
4024 ridx = array_index_nospec(ridx, IEEE80211_HT_MCS_MASK_LEN);
4025 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
4034 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
4038 switch (vht_mcs_map) {
4039 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
4041 case IEEE80211_VHT_MCS_SUPPORT_0_7:
4044 case IEEE80211_VHT_MCS_SUPPORT_0_8:
4047 case IEEE80211_VHT_MCS_SUPPORT_0_9:
4057 static void vht_build_mcs_mask(u16 vht_mcs_map,
4058 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
4062 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
4063 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
4068 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
4069 struct nl80211_txrate_vht *txrate,
4070 u16 mcs[NL80211_VHT_NSS_MAX])
4072 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4073 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
4076 if (!sband->vht_cap.vht_supported)
4079 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
4081 /* Build vht_mcs_mask from VHT capabilities */
4082 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
4084 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4085 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
4086 mcs[i] = txrate->mcs[i];
4094 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
4095 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
4096 .len = NL80211_MAX_SUPP_RATES },
4097 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
4098 .len = NL80211_MAX_SUPP_HT_RATES },
4099 [NL80211_TXRATE_VHT] = { .type = NLA_EXACT_LEN_WARN, .len = sizeof(struct nl80211_txrate_vht)},
4100 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
4103 static int nl80211_parse_tx_bitrate_mask(struct genl_info *info,
4104 struct cfg80211_bitrate_mask *mask)
4106 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
4107 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4109 struct nlattr *tx_rates;
4110 struct ieee80211_supported_band *sband;
4113 memset(mask, 0, sizeof(*mask));
4114 /* Default to all rates enabled */
4115 for (i = 0; i < NUM_NL80211_BANDS; i++) {
4116 sband = rdev->wiphy.bands[i];
4121 mask->control[i].legacy = (1 << sband->n_bitrates) - 1;
4122 memcpy(mask->control[i].ht_mcs,
4123 sband->ht_cap.mcs.rx_mask,
4124 sizeof(mask->control[i].ht_mcs));
4126 if (!sband->vht_cap.vht_supported)
4129 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4130 vht_build_mcs_mask(vht_tx_mcs_map, mask->control[i].vht_mcs);
4133 /* if no rates are given set it back to the defaults */
4134 if (!info->attrs[NL80211_ATTR_TX_RATES])
4137 /* The nested attribute uses enum nl80211_band as the index. This maps
4138 * directly to the enum nl80211_band values used in cfg80211.
4140 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
4141 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
4142 enum nl80211_band band = nla_type(tx_rates);
4145 if (band < 0 || band >= NUM_NL80211_BANDS)
4147 sband = rdev->wiphy.bands[band];
4150 err = nla_parse_nested_deprecated(tb, NL80211_TXRATE_MAX,
4152 nl80211_txattr_policy,
4156 if (tb[NL80211_TXRATE_LEGACY]) {
4157 mask->control[band].legacy = rateset_to_mask(
4159 nla_data(tb[NL80211_TXRATE_LEGACY]),
4160 nla_len(tb[NL80211_TXRATE_LEGACY]));
4161 if ((mask->control[band].legacy == 0) &&
4162 nla_len(tb[NL80211_TXRATE_LEGACY]))
4165 if (tb[NL80211_TXRATE_HT]) {
4166 if (!ht_rateset_to_mask(
4168 nla_data(tb[NL80211_TXRATE_HT]),
4169 nla_len(tb[NL80211_TXRATE_HT]),
4170 mask->control[band].ht_mcs))
4173 if (tb[NL80211_TXRATE_VHT]) {
4174 if (!vht_set_mcs_mask(
4176 nla_data(tb[NL80211_TXRATE_VHT]),
4177 mask->control[band].vht_mcs))
4180 if (tb[NL80211_TXRATE_GI]) {
4181 mask->control[band].gi =
4182 nla_get_u8(tb[NL80211_TXRATE_GI]);
4183 if (mask->control[band].gi > NL80211_TXRATE_FORCE_LGI)
4187 if (mask->control[band].legacy == 0) {
4188 /* don't allow empty legacy rates if HT or VHT
4189 * are not even supported.
4191 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
4192 rdev->wiphy.bands[band]->vht_cap.vht_supported))
4195 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
4196 if (mask->control[band].ht_mcs[i])
4199 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
4200 if (mask->control[band].vht_mcs[i])
4203 /* legacy and mcs rates may not be both empty */
4212 static int validate_beacon_tx_rate(struct cfg80211_registered_device *rdev,
4213 enum nl80211_band band,
4214 struct cfg80211_bitrate_mask *beacon_rate)
4216 u32 count_ht, count_vht, i;
4217 u32 rate = beacon_rate->control[band].legacy;
4219 /* Allow only one rate */
4220 if (hweight32(rate) > 1)
4224 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
4225 if (hweight8(beacon_rate->control[band].ht_mcs[i]) > 1) {
4227 } else if (beacon_rate->control[band].ht_mcs[i]) {
4232 if (count_ht && rate)
4237 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4238 if (hweight16(beacon_rate->control[band].vht_mcs[i]) > 1) {
4240 } else if (beacon_rate->control[band].vht_mcs[i]) {
4245 if (count_vht && rate)
4249 if ((count_ht && count_vht) || (!rate && !count_ht && !count_vht))
4253 !wiphy_ext_feature_isset(&rdev->wiphy,
4254 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY))
4257 !wiphy_ext_feature_isset(&rdev->wiphy,
4258 NL80211_EXT_FEATURE_BEACON_RATE_HT))
4261 !wiphy_ext_feature_isset(&rdev->wiphy,
4262 NL80211_EXT_FEATURE_BEACON_RATE_VHT))
4268 static int nl80211_parse_beacon(struct cfg80211_registered_device *rdev,
4269 struct nlattr *attrs[],
4270 struct cfg80211_beacon_data *bcn)
4272 bool haveinfo = false;
4275 memset(bcn, 0, sizeof(*bcn));
4277 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
4278 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
4279 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
4285 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
4286 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
4287 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
4294 if (attrs[NL80211_ATTR_IE]) {
4295 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
4296 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
4299 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
4300 bcn->proberesp_ies =
4301 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4302 bcn->proberesp_ies_len =
4303 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4306 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
4307 bcn->assocresp_ies =
4308 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4309 bcn->assocresp_ies_len =
4310 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4313 if (attrs[NL80211_ATTR_PROBE_RESP]) {
4314 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
4315 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
4318 if (attrs[NL80211_ATTR_FTM_RESPONDER]) {
4319 struct nlattr *tb[NL80211_FTM_RESP_ATTR_MAX + 1];
4321 err = nla_parse_nested_deprecated(tb,
4322 NL80211_FTM_RESP_ATTR_MAX,
4323 attrs[NL80211_ATTR_FTM_RESPONDER],
4328 if (tb[NL80211_FTM_RESP_ATTR_ENABLED] &&
4329 wiphy_ext_feature_isset(&rdev->wiphy,
4330 NL80211_EXT_FEATURE_ENABLE_FTM_RESPONDER))
4331 bcn->ftm_responder = 1;
4335 if (tb[NL80211_FTM_RESP_ATTR_LCI]) {
4336 bcn->lci = nla_data(tb[NL80211_FTM_RESP_ATTR_LCI]);
4337 bcn->lci_len = nla_len(tb[NL80211_FTM_RESP_ATTR_LCI]);
4340 if (tb[NL80211_FTM_RESP_ATTR_CIVICLOC]) {
4341 bcn->civicloc = nla_data(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4342 bcn->civicloc_len = nla_len(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4345 bcn->ftm_responder = -1;
4351 static void nl80211_check_ap_rate_selectors(struct cfg80211_ap_settings *params,
4359 for (i = 0; i < rates[1]; i++) {
4360 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_HT_PHY)
4361 params->ht_required = true;
4362 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_VHT_PHY)
4363 params->vht_required = true;
4368 * Since the nl80211 API didn't include, from the beginning, attributes about
4369 * HT/VHT requirements/capabilities, we parse them out of the IEs for the
4370 * benefit of drivers that rebuild IEs in the firmware.
4372 static void nl80211_calculate_ap_params(struct cfg80211_ap_settings *params)
4374 const struct cfg80211_beacon_data *bcn = ¶ms->beacon;
4375 size_t ies_len = bcn->tail_len;
4376 const u8 *ies = bcn->tail;
4380 rates = cfg80211_find_ie(WLAN_EID_SUPP_RATES, ies, ies_len);
4381 nl80211_check_ap_rate_selectors(params, rates);
4383 rates = cfg80211_find_ie(WLAN_EID_EXT_SUPP_RATES, ies, ies_len);
4384 nl80211_check_ap_rate_selectors(params, rates);
4386 cap = cfg80211_find_ie(WLAN_EID_HT_CAPABILITY, ies, ies_len);
4387 if (cap && cap[1] >= sizeof(*params->ht_cap))
4388 params->ht_cap = (void *)(cap + 2);
4389 cap = cfg80211_find_ie(WLAN_EID_VHT_CAPABILITY, ies, ies_len);
4390 if (cap && cap[1] >= sizeof(*params->vht_cap))
4391 params->vht_cap = (void *)(cap + 2);
4392 cap = cfg80211_find_ext_ie(WLAN_EID_EXT_HE_CAPABILITY, ies, ies_len);
4393 if (cap && cap[1] >= sizeof(*params->he_cap) + 1)
4394 params->he_cap = (void *)(cap + 3);
4397 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
4398 struct cfg80211_ap_settings *params)
4400 struct wireless_dev *wdev;
4403 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
4404 if (wdev->iftype != NL80211_IFTYPE_AP &&
4405 wdev->iftype != NL80211_IFTYPE_P2P_GO)
4408 if (!wdev->preset_chandef.chan)
4411 params->chandef = wdev->preset_chandef;
4419 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
4420 enum nl80211_auth_type auth_type,
4421 enum nl80211_commands cmd)
4423 if (auth_type > NL80211_AUTHTYPE_MAX)
4427 case NL80211_CMD_AUTHENTICATE:
4428 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4429 auth_type == NL80211_AUTHTYPE_SAE)
4431 if (!wiphy_ext_feature_isset(&rdev->wiphy,
4432 NL80211_EXT_FEATURE_FILS_STA) &&
4433 (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4434 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4435 auth_type == NL80211_AUTHTYPE_FILS_PK))
4438 case NL80211_CMD_CONNECT:
4439 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4440 !wiphy_ext_feature_isset(&rdev->wiphy,
4441 NL80211_EXT_FEATURE_SAE_OFFLOAD) &&
4442 auth_type == NL80211_AUTHTYPE_SAE)
4445 /* FILS with SK PFS or PK not supported yet */
4446 if (auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4447 auth_type == NL80211_AUTHTYPE_FILS_PK)
4449 if (!wiphy_ext_feature_isset(
4451 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
4452 auth_type == NL80211_AUTHTYPE_FILS_SK)
4455 case NL80211_CMD_START_AP:
4456 /* SAE not supported yet */
4457 if (auth_type == NL80211_AUTHTYPE_SAE)
4459 /* FILS not supported yet */
4460 if (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4461 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4462 auth_type == NL80211_AUTHTYPE_FILS_PK)
4470 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
4472 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4473 struct net_device *dev = info->user_ptr[1];
4474 struct wireless_dev *wdev = dev->ieee80211_ptr;
4475 struct cfg80211_ap_settings params;
4478 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4479 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4482 if (!rdev->ops->start_ap)
4485 if (wdev->beacon_interval)
4488 memset(¶ms, 0, sizeof(params));
4490 /* these are required for START_AP */
4491 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
4492 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
4493 !info->attrs[NL80211_ATTR_BEACON_HEAD])
4496 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon);
4500 params.beacon_interval =
4501 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
4502 params.dtim_period =
4503 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
4505 err = cfg80211_validate_beacon_int(rdev, dev->ieee80211_ptr->iftype,
4506 params.beacon_interval);
4511 * In theory, some of these attributes should be required here
4512 * but since they were not used when the command was originally
4513 * added, keep them optional for old user space programs to let
4514 * them continue to work with drivers that do not need the
4515 * additional information -- drivers must check!
4517 if (info->attrs[NL80211_ATTR_SSID]) {
4518 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
4520 nla_len(info->attrs[NL80211_ATTR_SSID]);
4521 if (params.ssid_len == 0 ||
4522 params.ssid_len > IEEE80211_MAX_SSID_LEN)
4526 if (info->attrs[NL80211_ATTR_HIDDEN_SSID])
4527 params.hidden_ssid = nla_get_u32(
4528 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
4530 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
4532 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
4533 params.auth_type = nla_get_u32(
4534 info->attrs[NL80211_ATTR_AUTH_TYPE]);
4535 if (!nl80211_valid_auth_type(rdev, params.auth_type,
4536 NL80211_CMD_START_AP))
4539 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
4541 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
4542 NL80211_MAX_NR_CIPHER_SUITES);
4546 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
4547 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
4549 params.inactivity_timeout = nla_get_u16(
4550 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
4553 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4554 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4556 params.p2p_ctwindow =
4557 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4558 if (params.p2p_ctwindow != 0 &&
4559 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4563 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4566 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4568 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4569 params.p2p_opp_ps = tmp;
4570 if (params.p2p_opp_ps != 0 &&
4571 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4575 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
4576 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
4579 } else if (wdev->preset_chandef.chan) {
4580 params.chandef = wdev->preset_chandef;
4581 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
4584 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
4588 if (info->attrs[NL80211_ATTR_TX_RATES]) {
4589 err = nl80211_parse_tx_bitrate_mask(info, ¶ms.beacon_rate);
4593 err = validate_beacon_tx_rate(rdev, params.chandef.chan->band,
4594 ¶ms.beacon_rate);
4599 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
4601 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
4602 switch (params.smps_mode) {
4603 case NL80211_SMPS_OFF:
4605 case NL80211_SMPS_STATIC:
4606 if (!(rdev->wiphy.features &
4607 NL80211_FEATURE_STATIC_SMPS))
4610 case NL80211_SMPS_DYNAMIC:
4611 if (!(rdev->wiphy.features &
4612 NL80211_FEATURE_DYNAMIC_SMPS))
4619 params.smps_mode = NL80211_SMPS_OFF;
4622 params.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
4623 if (params.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ])
4626 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
4627 params.acl = parse_acl_data(&rdev->wiphy, info);
4628 if (IS_ERR(params.acl))
4629 return PTR_ERR(params.acl);
4632 params.twt_responder =
4633 nla_get_flag(info->attrs[NL80211_ATTR_TWT_RESPONDER]);
4635 nl80211_calculate_ap_params(¶ms);
4637 if (info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])
4638 params.flags |= AP_SETTINGS_EXTERNAL_AUTH_SUPPORT;
4641 err = rdev_start_ap(rdev, dev, ¶ms);
4643 wdev->preset_chandef = params.chandef;
4644 wdev->beacon_interval = params.beacon_interval;
4645 wdev->chandef = params.chandef;
4646 wdev->ssid_len = params.ssid_len;
4647 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
4649 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
4650 wdev->conn_owner_nlportid = info->snd_portid;
4659 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
4661 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4662 struct net_device *dev = info->user_ptr[1];
4663 struct wireless_dev *wdev = dev->ieee80211_ptr;
4664 struct cfg80211_beacon_data params;
4667 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4668 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4671 if (!rdev->ops->change_beacon)
4674 if (!wdev->beacon_interval)
4677 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms);
4682 err = rdev_change_beacon(rdev, dev, ¶ms);
4688 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
4690 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4691 struct net_device *dev = info->user_ptr[1];
4693 return cfg80211_stop_ap(rdev, dev, false);
4696 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
4697 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
4698 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
4699 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
4700 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
4701 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
4702 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
4705 static int parse_station_flags(struct genl_info *info,
4706 enum nl80211_iftype iftype,
4707 struct station_parameters *params)
4709 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
4714 * Try parsing the new attribute first so userspace
4715 * can specify both for older kernels.
4717 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
4719 struct nl80211_sta_flag_update *sta_flags;
4721 sta_flags = nla_data(nla);
4722 params->sta_flags_mask = sta_flags->mask;
4723 params->sta_flags_set = sta_flags->set;
4724 params->sta_flags_set &= params->sta_flags_mask;
4725 if ((params->sta_flags_mask |
4726 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
4731 /* if present, parse the old attribute */
4733 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
4737 if (nla_parse_nested_deprecated(flags, NL80211_STA_FLAG_MAX, nla, sta_flags_policy, info->extack))
4741 * Only allow certain flags for interface types so that
4742 * other attributes are silently ignored. Remember that
4743 * this is backward compatibility code with old userspace
4744 * and shouldn't be hit in other cases anyway.
4747 case NL80211_IFTYPE_AP:
4748 case NL80211_IFTYPE_AP_VLAN:
4749 case NL80211_IFTYPE_P2P_GO:
4750 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4751 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4752 BIT(NL80211_STA_FLAG_WME) |
4753 BIT(NL80211_STA_FLAG_MFP);
4755 case NL80211_IFTYPE_P2P_CLIENT:
4756 case NL80211_IFTYPE_STATION:
4757 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4758 BIT(NL80211_STA_FLAG_TDLS_PEER);
4760 case NL80211_IFTYPE_MESH_POINT:
4761 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4762 BIT(NL80211_STA_FLAG_MFP) |
4763 BIT(NL80211_STA_FLAG_AUTHORIZED);
4769 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
4771 params->sta_flags_set |= (1<<flag);
4773 /* no longer support new API additions in old API */
4774 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
4782 bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info, int attr)
4784 struct nlattr *rate;
4787 enum nl80211_rate_info rate_flg;
4789 rate = nla_nest_start_noflag(msg, attr);
4793 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
4794 bitrate = cfg80211_calculate_bitrate(info);
4795 /* report 16-bit bitrate only if we can */
4796 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
4798 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
4800 if (bitrate_compat > 0 &&
4801 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
4805 case RATE_INFO_BW_5:
4806 rate_flg = NL80211_RATE_INFO_5_MHZ_WIDTH;
4808 case RATE_INFO_BW_10:
4809 rate_flg = NL80211_RATE_INFO_10_MHZ_WIDTH;
4814 case RATE_INFO_BW_20:
4817 case RATE_INFO_BW_40:
4818 rate_flg = NL80211_RATE_INFO_40_MHZ_WIDTH;
4820 case RATE_INFO_BW_80:
4821 rate_flg = NL80211_RATE_INFO_80_MHZ_WIDTH;
4823 case RATE_INFO_BW_160:
4824 rate_flg = NL80211_RATE_INFO_160_MHZ_WIDTH;
4826 case RATE_INFO_BW_HE_RU:
4828 WARN_ON(!(info->flags & RATE_INFO_FLAGS_HE_MCS));
4831 if (rate_flg && nla_put_flag(msg, rate_flg))
4834 if (info->flags & RATE_INFO_FLAGS_MCS) {
4835 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
4837 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4838 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4840 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
4841 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
4843 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
4845 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4846 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4848 } else if (info->flags & RATE_INFO_FLAGS_HE_MCS) {
4849 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_MCS, info->mcs))
4851 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_NSS, info->nss))
4853 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_GI, info->he_gi))
4855 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_DCM, info->he_dcm))
4857 if (info->bw == RATE_INFO_BW_HE_RU &&
4858 nla_put_u8(msg, NL80211_RATE_INFO_HE_RU_ALLOC,
4863 nla_nest_end(msg, rate);
4867 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
4876 attr = nla_nest_start_noflag(msg, id);
4880 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
4881 if (!(mask & BIT(i)))
4884 if (nla_put_u8(msg, i, signal[i]))
4888 nla_nest_end(msg, attr);
4893 static int nl80211_send_station(struct sk_buff *msg, u32 cmd, u32 portid,
4895 struct cfg80211_registered_device *rdev,
4896 struct net_device *dev,
4897 const u8 *mac_addr, struct station_info *sinfo)
4900 struct nlattr *sinfoattr, *bss_param;
4902 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
4906 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4907 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
4908 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
4909 goto nla_put_failure;
4911 sinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_STA_INFO);
4913 goto nla_put_failure;
4915 #define PUT_SINFO(attr, memb, type) do { \
4916 BUILD_BUG_ON(sizeof(type) == sizeof(u64)); \
4917 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4918 nla_put_ ## type(msg, NL80211_STA_INFO_ ## attr, \
4920 goto nla_put_failure; \
4922 #define PUT_SINFO_U64(attr, memb) do { \
4923 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4924 nla_put_u64_64bit(msg, NL80211_STA_INFO_ ## attr, \
4925 sinfo->memb, NL80211_STA_INFO_PAD)) \
4926 goto nla_put_failure; \
4929 PUT_SINFO(CONNECTED_TIME, connected_time, u32);
4930 PUT_SINFO(INACTIVE_TIME, inactive_time, u32);
4932 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_RX_BYTES) |
4933 BIT_ULL(NL80211_STA_INFO_RX_BYTES64)) &&
4934 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
4935 (u32)sinfo->rx_bytes))
4936 goto nla_put_failure;
4938 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_TX_BYTES) |
4939 BIT_ULL(NL80211_STA_INFO_TX_BYTES64)) &&
4940 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
4941 (u32)sinfo->tx_bytes))
4942 goto nla_put_failure;
4944 PUT_SINFO_U64(RX_BYTES64, rx_bytes);
4945 PUT_SINFO_U64(TX_BYTES64, tx_bytes);
4946 PUT_SINFO(LLID, llid, u16);
4947 PUT_SINFO(PLID, plid, u16);
4948 PUT_SINFO(PLINK_STATE, plink_state, u8);
4949 PUT_SINFO_U64(RX_DURATION, rx_duration);
4950 PUT_SINFO_U64(TX_DURATION, tx_duration);
4952 if (wiphy_ext_feature_isset(&rdev->wiphy,
4953 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
4954 PUT_SINFO(AIRTIME_WEIGHT, airtime_weight, u16);
4956 switch (rdev->wiphy.signal_type) {
4957 case CFG80211_SIGNAL_TYPE_MBM:
4958 PUT_SINFO(SIGNAL, signal, u8);
4959 PUT_SINFO(SIGNAL_AVG, signal_avg, u8);
4964 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL)) {
4965 if (!nl80211_put_signal(msg, sinfo->chains,
4966 sinfo->chain_signal,
4967 NL80211_STA_INFO_CHAIN_SIGNAL))
4968 goto nla_put_failure;
4970 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL_AVG)) {
4971 if (!nl80211_put_signal(msg, sinfo->chains,
4972 sinfo->chain_signal_avg,
4973 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
4974 goto nla_put_failure;
4976 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_TX_BITRATE)) {
4977 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
4978 NL80211_STA_INFO_TX_BITRATE))
4979 goto nla_put_failure;
4981 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_RX_BITRATE)) {
4982 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
4983 NL80211_STA_INFO_RX_BITRATE))
4984 goto nla_put_failure;
4987 PUT_SINFO(RX_PACKETS, rx_packets, u32);
4988 PUT_SINFO(TX_PACKETS, tx_packets, u32);
4989 PUT_SINFO(TX_RETRIES, tx_retries, u32);
4990 PUT_SINFO(TX_FAILED, tx_failed, u32);
4991 PUT_SINFO(EXPECTED_THROUGHPUT, expected_throughput, u32);
4992 PUT_SINFO(AIRTIME_LINK_METRIC, airtime_link_metric, u32);
4993 PUT_SINFO(BEACON_LOSS, beacon_loss_count, u32);
4994 PUT_SINFO(LOCAL_PM, local_pm, u32);
4995 PUT_SINFO(PEER_PM, peer_pm, u32);
4996 PUT_SINFO(NONPEER_PM, nonpeer_pm, u32);
4997 PUT_SINFO(CONNECTED_TO_GATE, connected_to_gate, u8);
4999 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_BSS_PARAM)) {
5000 bss_param = nla_nest_start_noflag(msg,
5001 NL80211_STA_INFO_BSS_PARAM);
5003 goto nla_put_failure;
5005 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
5006 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
5007 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
5008 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
5009 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
5010 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
5011 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
5012 sinfo->bss_param.dtim_period) ||
5013 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
5014 sinfo->bss_param.beacon_interval))
5015 goto nla_put_failure;
5017 nla_nest_end(msg, bss_param);
5019 if ((sinfo->filled & BIT_ULL(NL80211_STA_INFO_STA_FLAGS)) &&
5020 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
5021 sizeof(struct nl80211_sta_flag_update),
5023 goto nla_put_failure;
5025 PUT_SINFO_U64(T_OFFSET, t_offset);
5026 PUT_SINFO_U64(RX_DROP_MISC, rx_dropped_misc);
5027 PUT_SINFO_U64(BEACON_RX, rx_beacon);
5028 PUT_SINFO(BEACON_SIGNAL_AVG, rx_beacon_signal_avg, u8);
5029 PUT_SINFO(RX_MPDUS, rx_mpdu_count, u32);
5030 PUT_SINFO(FCS_ERROR_COUNT, fcs_err_count, u32);
5031 if (wiphy_ext_feature_isset(&rdev->wiphy,
5032 NL80211_EXT_FEATURE_ACK_SIGNAL_SUPPORT)) {
5033 PUT_SINFO(ACK_SIGNAL, ack_signal, u8);
5034 PUT_SINFO(ACK_SIGNAL_AVG, avg_ack_signal, s8);
5038 #undef PUT_SINFO_U64
5040 if (sinfo->pertid) {
5041 struct nlattr *tidsattr;
5044 tidsattr = nla_nest_start_noflag(msg,
5045 NL80211_STA_INFO_TID_STATS);
5047 goto nla_put_failure;
5049 for (tid = 0; tid < IEEE80211_NUM_TIDS + 1; tid++) {
5050 struct cfg80211_tid_stats *tidstats;
5051 struct nlattr *tidattr;
5053 tidstats = &sinfo->pertid[tid];
5055 if (!tidstats->filled)
5058 tidattr = nla_nest_start_noflag(msg, tid + 1);
5060 goto nla_put_failure;
5062 #define PUT_TIDVAL_U64(attr, memb) do { \
5063 if (tidstats->filled & BIT(NL80211_TID_STATS_ ## attr) && \
5064 nla_put_u64_64bit(msg, NL80211_TID_STATS_ ## attr, \
5065 tidstats->memb, NL80211_TID_STATS_PAD)) \
5066 goto nla_put_failure; \
5069 PUT_TIDVAL_U64(RX_MSDU, rx_msdu);
5070 PUT_TIDVAL_U64(TX_MSDU, tx_msdu);
5071 PUT_TIDVAL_U64(TX_MSDU_RETRIES, tx_msdu_retries);
5072 PUT_TIDVAL_U64(TX_MSDU_FAILED, tx_msdu_failed);
5074 #undef PUT_TIDVAL_U64
5075 if ((tidstats->filled &
5076 BIT(NL80211_TID_STATS_TXQ_STATS)) &&
5077 !nl80211_put_txq_stats(msg, &tidstats->txq_stats,
5078 NL80211_TID_STATS_TXQ_STATS))
5079 goto nla_put_failure;
5081 nla_nest_end(msg, tidattr);
5084 nla_nest_end(msg, tidsattr);
5087 nla_nest_end(msg, sinfoattr);
5089 if (sinfo->assoc_req_ies_len &&
5090 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
5091 sinfo->assoc_req_ies))
5092 goto nla_put_failure;
5094 cfg80211_sinfo_release_content(sinfo);
5095 genlmsg_end(msg, hdr);
5099 cfg80211_sinfo_release_content(sinfo);
5100 genlmsg_cancel(msg, hdr);
5104 static int nl80211_dump_station(struct sk_buff *skb,
5105 struct netlink_callback *cb)
5107 struct station_info sinfo;
5108 struct cfg80211_registered_device *rdev;
5109 struct wireless_dev *wdev;
5110 u8 mac_addr[ETH_ALEN];
5111 int sta_idx = cb->args[2];
5115 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5119 if (!wdev->netdev) {
5124 if (!rdev->ops->dump_station) {
5130 memset(&sinfo, 0, sizeof(sinfo));
5131 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
5138 if (nl80211_send_station(skb, NL80211_CMD_NEW_STATION,
5139 NETLINK_CB(cb->skb).portid,
5140 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5141 rdev, wdev->netdev, mac_addr,
5149 cb->args[2] = sta_idx;
5157 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
5159 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5160 struct net_device *dev = info->user_ptr[1];
5161 struct station_info sinfo;
5162 struct sk_buff *msg;
5163 u8 *mac_addr = NULL;
5166 memset(&sinfo, 0, sizeof(sinfo));
5168 if (!info->attrs[NL80211_ATTR_MAC])
5171 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5173 if (!rdev->ops->get_station)
5176 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
5180 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5182 cfg80211_sinfo_release_content(&sinfo);
5186 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION,
5187 info->snd_portid, info->snd_seq, 0,
5188 rdev, dev, mac_addr, &sinfo) < 0) {
5193 return genlmsg_reply(msg, info);
5196 int cfg80211_check_station_change(struct wiphy *wiphy,
5197 struct station_parameters *params,
5198 enum cfg80211_station_type statype)
5200 if (params->listen_interval != -1 &&
5201 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5204 if (params->support_p2p_ps != -1 &&
5205 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5209 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) &&
5210 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5213 /* When you run into this, adjust the code below for the new flag */
5214 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5217 case CFG80211_STA_MESH_PEER_KERNEL:
5218 case CFG80211_STA_MESH_PEER_USER:
5220 * No ignoring the TDLS flag here -- the userspace mesh
5221 * code doesn't have the bug of including TDLS in the
5224 if (params->sta_flags_mask &
5225 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5226 BIT(NL80211_STA_FLAG_MFP) |
5227 BIT(NL80211_STA_FLAG_AUTHORIZED)))
5230 case CFG80211_STA_TDLS_PEER_SETUP:
5231 case CFG80211_STA_TDLS_PEER_ACTIVE:
5232 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5234 /* ignore since it can't change */
5235 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5238 /* disallow mesh-specific things */
5239 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
5241 if (params->local_pm)
5243 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5247 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5248 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
5249 /* TDLS can't be set, ... */
5250 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
5253 * ... but don't bother the driver with it. This works around
5254 * a hostapd/wpa_supplicant issue -- it always includes the
5255 * TLDS_PEER flag in the mask even for AP mode.
5257 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5260 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5261 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5262 /* reject other things that can't change */
5263 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
5265 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
5267 if (params->supported_rates)
5269 if (params->ext_capab || params->ht_capa || params->vht_capa ||
5274 if (statype != CFG80211_STA_AP_CLIENT &&
5275 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5281 case CFG80211_STA_AP_MLME_CLIENT:
5282 /* Use this only for authorizing/unauthorizing a station */
5283 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
5286 case CFG80211_STA_AP_CLIENT:
5287 case CFG80211_STA_AP_CLIENT_UNASSOC:
5288 /* accept only the listed bits */
5289 if (params->sta_flags_mask &
5290 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5291 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5292 BIT(NL80211_STA_FLAG_ASSOCIATED) |
5293 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
5294 BIT(NL80211_STA_FLAG_WME) |
5295 BIT(NL80211_STA_FLAG_MFP)))
5298 /* but authenticated/associated only if driver handles it */
5299 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5300 params->sta_flags_mask &
5301 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5302 BIT(NL80211_STA_FLAG_ASSOCIATED)))
5305 case CFG80211_STA_IBSS:
5306 case CFG80211_STA_AP_STA:
5307 /* reject any changes other than AUTHORIZED */
5308 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
5311 case CFG80211_STA_TDLS_PEER_SETUP:
5312 /* reject any changes other than AUTHORIZED or WME */
5313 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5314 BIT(NL80211_STA_FLAG_WME)))
5316 /* force (at least) rates when authorizing */
5317 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
5318 !params->supported_rates)
5321 case CFG80211_STA_TDLS_PEER_ACTIVE:
5322 /* reject any changes */
5324 case CFG80211_STA_MESH_PEER_KERNEL:
5325 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5328 case CFG80211_STA_MESH_PEER_USER:
5329 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION &&
5330 params->plink_action != NL80211_PLINK_ACTION_BLOCK)
5336 * Older kernel versions ignored this attribute entirely, so don't
5337 * reject attempts to update it but mark it as unused instead so the
5338 * driver won't look at the data.
5340 if (statype != CFG80211_STA_AP_CLIENT_UNASSOC &&
5341 statype != CFG80211_STA_TDLS_PEER_SETUP)
5342 params->opmode_notif_used = false;
5346 EXPORT_SYMBOL(cfg80211_check_station_change);
5349 * Get vlan interface making sure it is running and on the right wiphy.
5351 static struct net_device *get_vlan(struct genl_info *info,
5352 struct cfg80211_registered_device *rdev)
5354 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
5355 struct net_device *v;
5361 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
5363 return ERR_PTR(-ENODEV);
5365 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
5370 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5371 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5372 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
5377 if (!netif_running(v)) {
5385 return ERR_PTR(ret);
5388 static const struct nla_policy
5389 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
5390 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
5391 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
5394 static int nl80211_parse_sta_wme(struct genl_info *info,
5395 struct station_parameters *params)
5397 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
5401 /* parse WME attributes if present */
5402 if (!info->attrs[NL80211_ATTR_STA_WME])
5405 nla = info->attrs[NL80211_ATTR_STA_WME];
5406 err = nla_parse_nested_deprecated(tb, NL80211_STA_WME_MAX, nla,
5407 nl80211_sta_wme_policy,
5412 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
5413 params->uapsd_queues = nla_get_u8(
5414 tb[NL80211_STA_WME_UAPSD_QUEUES]);
5415 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
5418 if (tb[NL80211_STA_WME_MAX_SP])
5419 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
5421 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
5424 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
5429 static int nl80211_parse_sta_channel_info(struct genl_info *info,
5430 struct station_parameters *params)
5432 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
5433 params->supported_channels =
5434 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5435 params->supported_channels_len =
5436 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5438 * Need to include at least one (first channel, number of
5439 * channels) tuple for each subband, and must have proper
5440 * tuples for the rest of the data as well.
5442 if (params->supported_channels_len < 2)
5444 if (params->supported_channels_len % 2)
5448 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
5449 params->supported_oper_classes =
5450 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5451 params->supported_oper_classes_len =
5452 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5454 * The value of the Length field of the Supported Operating
5455 * Classes element is between 2 and 253.
5457 if (params->supported_oper_classes_len < 2 ||
5458 params->supported_oper_classes_len > 253)
5464 static int nl80211_set_station_tdls(struct genl_info *info,
5465 struct station_parameters *params)
5468 /* Dummy STA entry gets updated once the peer capabilities are known */
5469 if (info->attrs[NL80211_ATTR_PEER_AID])
5470 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5471 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5473 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5474 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5476 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5477 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5479 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5480 params->he_capa_len =
5481 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5483 if (params->he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5487 err = nl80211_parse_sta_channel_info(info, params);
5491 return nl80211_parse_sta_wme(info, params);
5494 static int nl80211_parse_sta_txpower_setting(struct genl_info *info,
5495 struct station_parameters *params)
5497 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5500 if (info->attrs[NL80211_ATTR_STA_TX_POWER_SETTING]) {
5501 if (!rdev->ops->set_tx_power ||
5502 !wiphy_ext_feature_isset(&rdev->wiphy,
5503 NL80211_EXT_FEATURE_STA_TX_PWR))
5506 idx = NL80211_ATTR_STA_TX_POWER_SETTING;
5507 params->txpwr.type = nla_get_u8(info->attrs[idx]);
5509 if (params->txpwr.type == NL80211_TX_POWER_LIMITED) {
5510 idx = NL80211_ATTR_STA_TX_POWER;
5512 if (info->attrs[idx])
5513 params->txpwr.power =
5514 nla_get_s16(info->attrs[idx]);
5518 params->sta_modify_mask |= STATION_PARAM_APPLY_STA_TXPOWER;
5524 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
5526 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5527 struct net_device *dev = info->user_ptr[1];
5528 struct station_parameters params;
5532 memset(¶ms, 0, sizeof(params));
5534 if (!rdev->ops->change_station)
5538 * AID and listen_interval properties can be set only for unassociated
5539 * station. Include these parameters here and will check them in
5540 * cfg80211_check_station_change().
5542 if (info->attrs[NL80211_ATTR_STA_AID])
5543 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5545 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5546 params.listen_interval =
5547 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5549 params.listen_interval = -1;
5551 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS])
5552 params.support_p2p_ps =
5553 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5555 params.support_p2p_ps = -1;
5557 if (!info->attrs[NL80211_ATTR_MAC])
5560 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5562 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
5563 params.supported_rates =
5564 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5565 params.supported_rates_len =
5566 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5569 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5571 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5572 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5575 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5577 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5578 params.ext_capab_len =
5579 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5582 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5585 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5586 params.plink_action =
5587 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5589 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
5590 params.plink_state =
5591 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
5592 if (info->attrs[NL80211_ATTR_MESH_PEER_AID])
5593 params.peer_aid = nla_get_u16(
5594 info->attrs[NL80211_ATTR_MESH_PEER_AID]);
5595 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
5598 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE])
5599 params.local_pm = nla_get_u32(
5600 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
5602 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5603 params.opmode_notif_used = true;
5604 params.opmode_notif =
5605 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5608 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5609 params.airtime_weight =
5610 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5612 if (params.airtime_weight &&
5613 !wiphy_ext_feature_isset(&rdev->wiphy,
5614 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5617 err = nl80211_parse_sta_txpower_setting(info, ¶ms);
5621 /* Include parameters for TDLS peer (will check later) */
5622 err = nl80211_set_station_tdls(info, ¶ms);
5626 params.vlan = get_vlan(info, rdev);
5627 if (IS_ERR(params.vlan))
5628 return PTR_ERR(params.vlan);
5630 switch (dev->ieee80211_ptr->iftype) {
5631 case NL80211_IFTYPE_AP:
5632 case NL80211_IFTYPE_AP_VLAN:
5633 case NL80211_IFTYPE_P2P_GO:
5634 case NL80211_IFTYPE_P2P_CLIENT:
5635 case NL80211_IFTYPE_STATION:
5636 case NL80211_IFTYPE_ADHOC:
5637 case NL80211_IFTYPE_MESH_POINT:
5644 /* driver will call cfg80211_check_station_change() */
5645 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
5649 dev_put(params.vlan);
5654 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
5656 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5658 struct net_device *dev = info->user_ptr[1];
5659 struct station_parameters params;
5660 u8 *mac_addr = NULL;
5661 u32 auth_assoc = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5662 BIT(NL80211_STA_FLAG_ASSOCIATED);
5664 memset(¶ms, 0, sizeof(params));
5666 if (!rdev->ops->add_station)
5669 if (!info->attrs[NL80211_ATTR_MAC])
5672 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5675 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
5678 if (!info->attrs[NL80211_ATTR_STA_AID] &&
5679 !info->attrs[NL80211_ATTR_PEER_AID])
5682 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5683 params.supported_rates =
5684 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5685 params.supported_rates_len =
5686 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5687 params.listen_interval =
5688 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5690 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]) {
5691 params.support_p2p_ps =
5692 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5695 * if not specified, assume it's supported for P2P GO interface,
5696 * and is NOT supported for AP interface
5698 params.support_p2p_ps =
5699 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO;
5702 if (info->attrs[NL80211_ATTR_PEER_AID])
5703 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5705 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5707 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5709 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5710 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5713 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5715 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5716 params.ext_capab_len =
5717 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5720 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5722 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5724 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5726 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5728 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5730 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5731 params.he_capa_len =
5732 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5734 /* max len is validated in nla policy */
5735 if (params.he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5739 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5740 params.opmode_notif_used = true;
5741 params.opmode_notif =
5742 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5745 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5746 params.plink_action =
5747 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5749 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5750 params.airtime_weight =
5751 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5753 if (params.airtime_weight &&
5754 !wiphy_ext_feature_isset(&rdev->wiphy,
5755 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5758 err = nl80211_parse_sta_txpower_setting(info, ¶ms);
5762 err = nl80211_parse_sta_channel_info(info, ¶ms);
5766 err = nl80211_parse_sta_wme(info, ¶ms);
5770 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5773 /* HT/VHT requires QoS, but if we don't have that just ignore HT/VHT
5774 * as userspace might just pass through the capabilities from the IEs
5775 * directly, rather than enforcing this restriction and returning an
5776 * error in this case.
5778 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME))) {
5779 params.ht_capa = NULL;
5780 params.vht_capa = NULL;
5782 /* HE requires WME */
5783 if (params.he_capa_len)
5787 /* When you run into this, adjust the code below for the new flag */
5788 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5790 switch (dev->ieee80211_ptr->iftype) {
5791 case NL80211_IFTYPE_AP:
5792 case NL80211_IFTYPE_AP_VLAN:
5793 case NL80211_IFTYPE_P2P_GO:
5794 /* ignore WME attributes if iface/sta is not capable */
5795 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
5796 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
5797 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5799 /* TDLS peers cannot be added */
5800 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5801 info->attrs[NL80211_ATTR_PEER_AID])
5803 /* but don't bother the driver with it */
5804 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5806 /* allow authenticated/associated only if driver handles it */
5807 if (!(rdev->wiphy.features &
5808 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5809 params.sta_flags_mask & auth_assoc)
5812 /* Older userspace, or userspace wanting to be compatible with
5813 * !NL80211_FEATURE_FULL_AP_CLIENT_STATE, will not set the auth
5814 * and assoc flags in the mask, but assumes the station will be
5815 * added as associated anyway since this was the required driver
5816 * behaviour before NL80211_FEATURE_FULL_AP_CLIENT_STATE was
5818 * In order to not bother drivers with this quirk in the API
5819 * set the flags in both the mask and set for new stations in
5822 if (!(params.sta_flags_mask & auth_assoc)) {
5823 params.sta_flags_mask |= auth_assoc;
5824 params.sta_flags_set |= auth_assoc;
5827 /* must be last in here for error handling */
5828 params.vlan = get_vlan(info, rdev);
5829 if (IS_ERR(params.vlan))
5830 return PTR_ERR(params.vlan);
5832 case NL80211_IFTYPE_MESH_POINT:
5833 /* ignore uAPSD data */
5834 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5836 /* associated is disallowed */
5837 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
5839 /* TDLS peers cannot be added */
5840 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5841 info->attrs[NL80211_ATTR_PEER_AID])
5844 case NL80211_IFTYPE_STATION:
5845 case NL80211_IFTYPE_P2P_CLIENT:
5846 /* ignore uAPSD data */
5847 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5849 /* these are disallowed */
5850 if (params.sta_flags_mask &
5851 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
5852 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
5854 /* Only TDLS peers can be added */
5855 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5857 /* Can only add if TDLS ... */
5858 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
5860 /* ... with external setup is supported */
5861 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
5864 * Older wpa_supplicant versions always mark the TDLS peer
5865 * as authorized, but it shouldn't yet be.
5867 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
5873 /* be aware of params.vlan when changing code here */
5875 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
5878 dev_put(params.vlan);
5882 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
5884 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5885 struct net_device *dev = info->user_ptr[1];
5886 struct station_del_parameters params;
5888 memset(¶ms, 0, sizeof(params));
5890 if (info->attrs[NL80211_ATTR_MAC])
5891 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
5893 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5894 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5895 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
5896 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5899 if (!rdev->ops->del_station)
5902 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
5904 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
5905 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
5906 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
5909 /* Default to Deauthentication frame */
5910 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
5913 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
5914 params.reason_code =
5915 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
5916 if (params.reason_code == 0)
5917 return -EINVAL; /* 0 is reserved */
5919 /* Default to reason code 2 */
5920 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
5923 return rdev_del_station(rdev, dev, ¶ms);
5926 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
5927 int flags, struct net_device *dev,
5928 u8 *dst, u8 *next_hop,
5929 struct mpath_info *pinfo)
5932 struct nlattr *pinfoattr;
5934 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
5938 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5939 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
5940 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
5941 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
5942 goto nla_put_failure;
5944 pinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_MPATH_INFO);
5946 goto nla_put_failure;
5947 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
5948 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
5950 goto nla_put_failure;
5951 if (((pinfo->filled & MPATH_INFO_SN) &&
5952 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
5953 ((pinfo->filled & MPATH_INFO_METRIC) &&
5954 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
5956 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
5957 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
5959 ((pinfo->filled & MPATH_INFO_FLAGS) &&
5960 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
5962 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
5963 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
5964 pinfo->discovery_timeout)) ||
5965 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
5966 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
5967 pinfo->discovery_retries)) ||
5968 ((pinfo->filled & MPATH_INFO_HOP_COUNT) &&
5969 nla_put_u8(msg, NL80211_MPATH_INFO_HOP_COUNT,
5970 pinfo->hop_count)) ||
5971 ((pinfo->filled & MPATH_INFO_PATH_CHANGE) &&
5972 nla_put_u32(msg, NL80211_MPATH_INFO_PATH_CHANGE,
5973 pinfo->path_change_count)))
5974 goto nla_put_failure;
5976 nla_nest_end(msg, pinfoattr);
5978 genlmsg_end(msg, hdr);
5982 genlmsg_cancel(msg, hdr);
5986 static int nl80211_dump_mpath(struct sk_buff *skb,
5987 struct netlink_callback *cb)
5989 struct mpath_info pinfo;
5990 struct cfg80211_registered_device *rdev;
5991 struct wireless_dev *wdev;
5993 u8 next_hop[ETH_ALEN];
5994 int path_idx = cb->args[2];
5998 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6002 if (!rdev->ops->dump_mpath) {
6007 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6013 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
6020 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6021 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6022 wdev->netdev, dst, next_hop,
6030 cb->args[2] = path_idx;
6037 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
6039 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6041 struct net_device *dev = info->user_ptr[1];
6042 struct mpath_info pinfo;
6043 struct sk_buff *msg;
6045 u8 next_hop[ETH_ALEN];
6047 memset(&pinfo, 0, sizeof(pinfo));
6049 if (!info->attrs[NL80211_ATTR_MAC])
6052 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6054 if (!rdev->ops->get_mpath)
6057 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6060 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
6064 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6068 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6069 dev, dst, next_hop, &pinfo) < 0) {
6074 return genlmsg_reply(msg, info);
6077 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
6079 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6080 struct net_device *dev = info->user_ptr[1];
6082 u8 *next_hop = NULL;
6084 if (!info->attrs[NL80211_ATTR_MAC])
6087 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6090 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6091 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6093 if (!rdev->ops->change_mpath)
6096 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6099 return rdev_change_mpath(rdev, dev, dst, next_hop);
6102 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
6104 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6105 struct net_device *dev = info->user_ptr[1];
6107 u8 *next_hop = NULL;
6109 if (!info->attrs[NL80211_ATTR_MAC])
6112 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6115 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6116 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6118 if (!rdev->ops->add_mpath)
6121 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6124 return rdev_add_mpath(rdev, dev, dst, next_hop);
6127 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
6129 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6130 struct net_device *dev = info->user_ptr[1];
6133 if (info->attrs[NL80211_ATTR_MAC])
6134 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6136 if (!rdev->ops->del_mpath)
6139 return rdev_del_mpath(rdev, dev, dst);
6142 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
6144 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6146 struct net_device *dev = info->user_ptr[1];
6147 struct mpath_info pinfo;
6148 struct sk_buff *msg;
6152 memset(&pinfo, 0, sizeof(pinfo));
6154 if (!info->attrs[NL80211_ATTR_MAC])
6157 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6159 if (!rdev->ops->get_mpp)
6162 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6165 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
6169 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6173 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6174 dev, dst, mpp, &pinfo) < 0) {
6179 return genlmsg_reply(msg, info);
6182 static int nl80211_dump_mpp(struct sk_buff *skb,
6183 struct netlink_callback *cb)
6185 struct mpath_info pinfo;
6186 struct cfg80211_registered_device *rdev;
6187 struct wireless_dev *wdev;
6190 int path_idx = cb->args[2];
6194 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6198 if (!rdev->ops->dump_mpp) {
6203 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6209 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
6216 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6217 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6218 wdev->netdev, dst, mpp,
6226 cb->args[2] = path_idx;
6233 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
6235 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6236 struct net_device *dev = info->user_ptr[1];
6237 struct wireless_dev *wdev = dev->ieee80211_ptr;
6238 struct bss_parameters params;
6241 memset(¶ms, 0, sizeof(params));
6242 /* default to not changing parameters */
6243 params.use_cts_prot = -1;
6244 params.use_short_preamble = -1;
6245 params.use_short_slot_time = -1;
6246 params.ap_isolate = -1;
6247 params.ht_opmode = -1;
6248 params.p2p_ctwindow = -1;
6249 params.p2p_opp_ps = -1;
6251 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
6252 params.use_cts_prot =
6253 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
6254 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
6255 params.use_short_preamble =
6256 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
6257 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
6258 params.use_short_slot_time =
6259 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
6260 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6261 params.basic_rates =
6262 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6263 params.basic_rates_len =
6264 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6266 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
6267 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
6268 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
6270 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
6272 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
6273 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6275 params.p2p_ctwindow =
6276 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
6277 if (params.p2p_ctwindow != 0 &&
6278 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
6282 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
6285 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6287 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
6288 params.p2p_opp_ps = tmp;
6289 if (params.p2p_opp_ps &&
6290 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
6294 if (!rdev->ops->change_bss)
6297 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
6298 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6302 err = rdev_change_bss(rdev, dev, ¶ms);
6308 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
6312 enum nl80211_user_reg_hint_type user_reg_hint_type;
6316 * You should only get this when cfg80211 hasn't yet initialized
6317 * completely when built-in to the kernel right between the time
6318 * window between nl80211_init() and regulatory_init(), if that is
6321 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
6322 return -EINPROGRESS;
6324 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
6325 user_reg_hint_type =
6326 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
6328 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
6330 switch (user_reg_hint_type) {
6331 case NL80211_USER_REG_HINT_USER:
6332 case NL80211_USER_REG_HINT_CELL_BASE:
6333 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6336 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6337 return regulatory_hint_user(data, user_reg_hint_type);
6338 case NL80211_USER_REG_HINT_INDOOR:
6339 if (info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
6340 owner_nlportid = info->snd_portid;
6341 is_indoor = !!info->attrs[NL80211_ATTR_REG_INDOOR];
6347 return regulatory_hint_indoor(is_indoor, owner_nlportid);
6353 static int nl80211_reload_regdb(struct sk_buff *skb, struct genl_info *info)
6355 return reg_reload_regdb();
6358 static int nl80211_get_mesh_config(struct sk_buff *skb,
6359 struct genl_info *info)
6361 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6362 struct net_device *dev = info->user_ptr[1];
6363 struct wireless_dev *wdev = dev->ieee80211_ptr;
6364 struct mesh_config cur_params;
6367 struct nlattr *pinfoattr;
6368 struct sk_buff *msg;
6370 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6373 if (!rdev->ops->get_mesh_config)
6377 /* If not connected, get default parameters */
6378 if (!wdev->mesh_id_len)
6379 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
6381 err = rdev_get_mesh_config(rdev, dev, &cur_params);
6387 /* Draw up a netlink message to send back */
6388 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6391 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6392 NL80211_CMD_GET_MESH_CONFIG);
6395 pinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_MESH_CONFIG);
6397 goto nla_put_failure;
6398 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
6399 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
6400 cur_params.dot11MeshRetryTimeout) ||
6401 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
6402 cur_params.dot11MeshConfirmTimeout) ||
6403 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
6404 cur_params.dot11MeshHoldingTimeout) ||
6405 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
6406 cur_params.dot11MeshMaxPeerLinks) ||
6407 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
6408 cur_params.dot11MeshMaxRetries) ||
6409 nla_put_u8(msg, NL80211_MESHCONF_TTL,
6410 cur_params.dot11MeshTTL) ||
6411 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
6412 cur_params.element_ttl) ||
6413 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6414 cur_params.auto_open_plinks) ||
6415 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6416 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
6417 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6418 cur_params.dot11MeshHWMPmaxPREQretries) ||
6419 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
6420 cur_params.path_refresh_time) ||
6421 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6422 cur_params.min_discovery_timeout) ||
6423 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6424 cur_params.dot11MeshHWMPactivePathTimeout) ||
6425 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6426 cur_params.dot11MeshHWMPpreqMinInterval) ||
6427 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6428 cur_params.dot11MeshHWMPperrMinInterval) ||
6429 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6430 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
6431 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
6432 cur_params.dot11MeshHWMPRootMode) ||
6433 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6434 cur_params.dot11MeshHWMPRannInterval) ||
6435 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6436 cur_params.dot11MeshGateAnnouncementProtocol) ||
6437 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
6438 cur_params.dot11MeshForwarding) ||
6439 nla_put_s32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
6440 cur_params.rssi_threshold) ||
6441 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
6442 cur_params.ht_opmode) ||
6443 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6444 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
6445 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6446 cur_params.dot11MeshHWMProotInterval) ||
6447 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6448 cur_params.dot11MeshHWMPconfirmationInterval) ||
6449 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
6450 cur_params.power_mode) ||
6451 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
6452 cur_params.dot11MeshAwakeWindowDuration) ||
6453 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
6454 cur_params.plink_timeout) ||
6455 nla_put_u8(msg, NL80211_MESHCONF_CONNECTED_TO_GATE,
6456 cur_params.dot11MeshConnectedToMeshGate))
6457 goto nla_put_failure;
6458 nla_nest_end(msg, pinfoattr);
6459 genlmsg_end(msg, hdr);
6460 return genlmsg_reply(msg, info);
6468 static const struct nla_policy
6469 nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
6470 [NL80211_MESHCONF_RETRY_TIMEOUT] =
6471 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6472 [NL80211_MESHCONF_CONFIRM_TIMEOUT] =
6473 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6474 [NL80211_MESHCONF_HOLDING_TIMEOUT] =
6475 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6476 [NL80211_MESHCONF_MAX_PEER_LINKS] =
6477 NLA_POLICY_RANGE(NLA_U16, 0, 255),
6478 [NL80211_MESHCONF_MAX_RETRIES] = NLA_POLICY_MAX(NLA_U8, 16),
6479 [NL80211_MESHCONF_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6480 [NL80211_MESHCONF_ELEMENT_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6481 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = NLA_POLICY_MAX(NLA_U8, 1),
6482 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] =
6483 NLA_POLICY_RANGE(NLA_U32, 1, 255),
6484 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
6485 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
6486 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = NLA_POLICY_MIN(NLA_U16, 1),
6487 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
6488 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] =
6489 NLA_POLICY_MIN(NLA_U16, 1),
6490 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] =
6491 NLA_POLICY_MIN(NLA_U16, 1),
6492 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] =
6493 NLA_POLICY_MIN(NLA_U16, 1),
6494 [NL80211_MESHCONF_HWMP_ROOTMODE] = NLA_POLICY_MAX(NLA_U8, 4),
6495 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] =
6496 NLA_POLICY_MIN(NLA_U16, 1),
6497 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = NLA_POLICY_MAX(NLA_U8, 1),
6498 [NL80211_MESHCONF_FORWARDING] = NLA_POLICY_MAX(NLA_U8, 1),
6499 [NL80211_MESHCONF_RSSI_THRESHOLD] =
6500 NLA_POLICY_RANGE(NLA_S32, -255, 0),
6501 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
6502 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
6503 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] =
6504 NLA_POLICY_MIN(NLA_U16, 1),
6505 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] =
6506 NLA_POLICY_MIN(NLA_U16, 1),
6507 [NL80211_MESHCONF_POWER_MODE] =
6508 NLA_POLICY_RANGE(NLA_U32,
6509 NL80211_MESH_POWER_ACTIVE,
6510 NL80211_MESH_POWER_MAX),
6511 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
6512 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
6513 [NL80211_MESHCONF_CONNECTED_TO_GATE] = NLA_POLICY_RANGE(NLA_U8, 0, 1),
6516 static const struct nla_policy
6517 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
6518 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
6519 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
6520 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
6521 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
6522 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
6523 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
6524 [NL80211_MESH_SETUP_IE] =
6525 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
6526 IEEE80211_MAX_DATA_LEN),
6527 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
6530 static int nl80211_parse_mesh_config(struct genl_info *info,
6531 struct mesh_config *cfg,
6534 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
6538 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, mask, attr, fn) \
6541 cfg->param = fn(tb[attr]); \
6542 mask |= BIT((attr) - 1); \
6546 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
6548 if (nla_parse_nested_deprecated(tb, NL80211_MESHCONF_ATTR_MAX, info->attrs[NL80211_ATTR_MESH_CONFIG], nl80211_meshconf_params_policy, info->extack))
6551 /* This makes sure that there aren't more than 32 mesh config
6552 * parameters (otherwise our bitfield scheme would not work.) */
6553 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
6555 /* Fill in the params struct */
6556 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, mask,
6557 NL80211_MESHCONF_RETRY_TIMEOUT, nla_get_u16);
6558 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, mask,
6559 NL80211_MESHCONF_CONFIRM_TIMEOUT,
6561 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, mask,
6562 NL80211_MESHCONF_HOLDING_TIMEOUT,
6564 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, mask,
6565 NL80211_MESHCONF_MAX_PEER_LINKS,
6567 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, mask,
6568 NL80211_MESHCONF_MAX_RETRIES, nla_get_u8);
6569 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, mask,
6570 NL80211_MESHCONF_TTL, nla_get_u8);
6571 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, mask,
6572 NL80211_MESHCONF_ELEMENT_TTL, nla_get_u8);
6573 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, mask,
6574 NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6576 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
6578 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6580 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, mask,
6581 NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6583 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, mask,
6584 NL80211_MESHCONF_PATH_REFRESH_TIME,
6586 if (mask & BIT(NL80211_MESHCONF_PATH_REFRESH_TIME) &&
6587 (cfg->path_refresh_time < 1 || cfg->path_refresh_time > 65535))
6589 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, mask,
6590 NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6592 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
6594 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6596 if (mask & BIT(NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT) &&
6597 (cfg->dot11MeshHWMPactivePathTimeout < 1 ||
6598 cfg->dot11MeshHWMPactivePathTimeout > 65535))
6600 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval, mask,
6601 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6603 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval, mask,
6604 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6606 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6607 dot11MeshHWMPnetDiameterTraversalTime, mask,
6608 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6610 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, mask,
6611 NL80211_MESHCONF_HWMP_ROOTMODE, nla_get_u8);
6612 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, mask,
6613 NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6615 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshGateAnnouncementProtocol,
6616 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6618 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, mask,
6619 NL80211_MESHCONF_FORWARDING, nla_get_u8);
6620 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, mask,
6621 NL80211_MESHCONF_RSSI_THRESHOLD,
6623 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConnectedToMeshGate, mask,
6624 NL80211_MESHCONF_CONNECTED_TO_GATE,
6627 * Check HT operation mode based on
6628 * IEEE 802.11-2016 9.4.2.57 HT Operation element.
6630 if (tb[NL80211_MESHCONF_HT_OPMODE]) {
6631 ht_opmode = nla_get_u16(tb[NL80211_MESHCONF_HT_OPMODE]);
6633 if (ht_opmode & ~(IEEE80211_HT_OP_MODE_PROTECTION |
6634 IEEE80211_HT_OP_MODE_NON_GF_STA_PRSNT |
6635 IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT))
6638 /* NON_HT_STA bit is reserved, but some programs set it */
6639 ht_opmode &= ~IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT;
6641 cfg->ht_opmode = ht_opmode;
6642 mask |= (1 << (NL80211_MESHCONF_HT_OPMODE - 1));
6644 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6645 dot11MeshHWMPactivePathToRootTimeout, mask,
6646 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6648 if (mask & BIT(NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT) &&
6649 (cfg->dot11MeshHWMPactivePathToRootTimeout < 1 ||
6650 cfg->dot11MeshHWMPactivePathToRootTimeout > 65535))
6652 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, mask,
6653 NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6655 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPconfirmationInterval,
6657 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6659 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode, mask,
6660 NL80211_MESHCONF_POWER_MODE, nla_get_u32);
6661 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration, mask,
6662 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
6663 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, mask,
6664 NL80211_MESHCONF_PLINK_TIMEOUT, nla_get_u32);
6670 #undef FILL_IN_MESH_PARAM_IF_SET
6673 static int nl80211_parse_mesh_setup(struct genl_info *info,
6674 struct mesh_setup *setup)
6676 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6677 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
6679 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
6681 if (nla_parse_nested_deprecated(tb, NL80211_MESH_SETUP_ATTR_MAX, info->attrs[NL80211_ATTR_MESH_SETUP], nl80211_mesh_setup_params_policy, info->extack))
6684 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
6685 setup->sync_method =
6686 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
6687 IEEE80211_SYNC_METHOD_VENDOR :
6688 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
6690 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
6691 setup->path_sel_proto =
6692 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
6693 IEEE80211_PATH_PROTOCOL_VENDOR :
6694 IEEE80211_PATH_PROTOCOL_HWMP;
6696 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
6697 setup->path_metric =
6698 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
6699 IEEE80211_PATH_METRIC_VENDOR :
6700 IEEE80211_PATH_METRIC_AIRTIME;
6702 if (tb[NL80211_MESH_SETUP_IE]) {
6703 struct nlattr *ieattr =
6704 tb[NL80211_MESH_SETUP_IE];
6705 setup->ie = nla_data(ieattr);
6706 setup->ie_len = nla_len(ieattr);
6708 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
6709 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
6711 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
6712 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
6713 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
6714 if (setup->is_secure)
6715 setup->user_mpm = true;
6717 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
6718 if (!setup->user_mpm)
6721 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
6727 static int nl80211_update_mesh_config(struct sk_buff *skb,
6728 struct genl_info *info)
6730 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6731 struct net_device *dev = info->user_ptr[1];
6732 struct wireless_dev *wdev = dev->ieee80211_ptr;
6733 struct mesh_config cfg;
6737 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6740 if (!rdev->ops->update_mesh_config)
6743 err = nl80211_parse_mesh_config(info, &cfg, &mask);
6748 if (!wdev->mesh_id_len)
6752 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
6759 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
6760 struct sk_buff *msg)
6762 struct nlattr *nl_reg_rules;
6765 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
6766 (regdom->dfs_region &&
6767 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
6768 goto nla_put_failure;
6770 nl_reg_rules = nla_nest_start_noflag(msg, NL80211_ATTR_REG_RULES);
6772 goto nla_put_failure;
6774 for (i = 0; i < regdom->n_reg_rules; i++) {
6775 struct nlattr *nl_reg_rule;
6776 const struct ieee80211_reg_rule *reg_rule;
6777 const struct ieee80211_freq_range *freq_range;
6778 const struct ieee80211_power_rule *power_rule;
6779 unsigned int max_bandwidth_khz;
6781 reg_rule = ®dom->reg_rules[i];
6782 freq_range = ®_rule->freq_range;
6783 power_rule = ®_rule->power_rule;
6785 nl_reg_rule = nla_nest_start_noflag(msg, i);
6787 goto nla_put_failure;
6789 max_bandwidth_khz = freq_range->max_bandwidth_khz;
6790 if (!max_bandwidth_khz)
6791 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
6794 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
6796 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
6797 freq_range->start_freq_khz) ||
6798 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
6799 freq_range->end_freq_khz) ||
6800 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
6801 max_bandwidth_khz) ||
6802 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
6803 power_rule->max_antenna_gain) ||
6804 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
6805 power_rule->max_eirp) ||
6806 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
6807 reg_rule->dfs_cac_ms))
6808 goto nla_put_failure;
6810 nla_nest_end(msg, nl_reg_rule);
6813 nla_nest_end(msg, nl_reg_rules);
6820 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
6822 const struct ieee80211_regdomain *regdom = NULL;
6823 struct cfg80211_registered_device *rdev;
6824 struct wiphy *wiphy = NULL;
6825 struct sk_buff *msg;
6828 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6832 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6833 NL80211_CMD_GET_REG);
6837 if (info->attrs[NL80211_ATTR_WIPHY]) {
6840 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
6843 return PTR_ERR(rdev);
6846 wiphy = &rdev->wiphy;
6847 self_managed = wiphy->regulatory_flags &
6848 REGULATORY_WIPHY_SELF_MANAGED;
6849 regdom = get_wiphy_regdom(wiphy);
6851 /* a self-managed-reg device must have a private regdom */
6852 if (WARN_ON(!regdom && self_managed)) {
6858 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6859 goto nla_put_failure;
6862 if (!wiphy && reg_last_request_cell_base() &&
6863 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6864 NL80211_USER_REG_HINT_CELL_BASE))
6865 goto nla_put_failure;
6870 regdom = rcu_dereference(cfg80211_regdomain);
6872 if (nl80211_put_regdom(regdom, msg))
6873 goto nla_put_failure_rcu;
6877 genlmsg_end(msg, hdr);
6878 return genlmsg_reply(msg, info);
6880 nla_put_failure_rcu:
6888 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
6889 u32 seq, int flags, struct wiphy *wiphy,
6890 const struct ieee80211_regdomain *regdom)
6892 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
6893 NL80211_CMD_GET_REG);
6898 genl_dump_check_consistent(cb, hdr);
6900 if (nl80211_put_regdom(regdom, msg))
6901 goto nla_put_failure;
6903 if (!wiphy && reg_last_request_cell_base() &&
6904 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6905 NL80211_USER_REG_HINT_CELL_BASE))
6906 goto nla_put_failure;
6909 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6910 goto nla_put_failure;
6912 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
6913 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
6914 goto nla_put_failure;
6916 genlmsg_end(msg, hdr);
6920 genlmsg_cancel(msg, hdr);
6924 static int nl80211_get_reg_dump(struct sk_buff *skb,
6925 struct netlink_callback *cb)
6927 const struct ieee80211_regdomain *regdom = NULL;
6928 struct cfg80211_registered_device *rdev;
6929 int err, reg_idx, start = cb->args[2];
6933 if (cfg80211_regdomain && start == 0) {
6934 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6936 rtnl_dereference(cfg80211_regdomain));
6941 /* the global regdom is idx 0 */
6943 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
6944 regdom = get_wiphy_regdom(&rdev->wiphy);
6948 if (++reg_idx <= start)
6951 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6952 NLM_F_MULTI, &rdev->wiphy, regdom);
6959 cb->args[2] = reg_idx;
6966 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
6967 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
6968 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
6969 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
6970 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
6971 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
6972 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
6973 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
6974 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
6977 static int parse_reg_rule(struct nlattr *tb[],
6978 struct ieee80211_reg_rule *reg_rule)
6980 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
6981 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
6983 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
6985 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
6987 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
6989 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
6991 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
6994 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
6996 freq_range->start_freq_khz =
6997 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
6998 freq_range->end_freq_khz =
6999 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
7000 freq_range->max_bandwidth_khz =
7001 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
7003 power_rule->max_eirp =
7004 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
7006 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
7007 power_rule->max_antenna_gain =
7008 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
7010 if (tb[NL80211_ATTR_DFS_CAC_TIME])
7011 reg_rule->dfs_cac_ms =
7012 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
7017 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
7019 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
7020 struct nlattr *nl_reg_rule;
7022 int rem_reg_rules, r;
7023 u32 num_rules = 0, rule_idx = 0;
7024 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
7025 struct ieee80211_regdomain *rd;
7027 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
7030 if (!info->attrs[NL80211_ATTR_REG_RULES])
7033 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
7035 if (info->attrs[NL80211_ATTR_DFS_REGION])
7036 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
7038 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
7041 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
7045 if (!reg_is_valid_request(alpha2))
7048 rd = kzalloc(struct_size(rd, reg_rules, num_rules), GFP_KERNEL);
7052 rd->n_reg_rules = num_rules;
7053 rd->alpha2[0] = alpha2[0];
7054 rd->alpha2[1] = alpha2[1];
7057 * Disable DFS master mode if the DFS region was
7058 * not supported or known on this kernel.
7060 if (reg_supported_dfs_region(dfs_region))
7061 rd->dfs_region = dfs_region;
7063 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
7065 r = nla_parse_nested_deprecated(tb, NL80211_REG_RULE_ATTR_MAX,
7066 nl_reg_rule, reg_rule_policy,
7070 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
7076 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
7082 /* set_regdom takes ownership of rd */
7083 return set_regdom(rd, REGD_SOURCE_CRDA);
7088 #endif /* CONFIG_CFG80211_CRDA_SUPPORT */
7090 static int validate_scan_freqs(struct nlattr *freqs)
7092 struct nlattr *attr1, *attr2;
7093 int n_channels = 0, tmp1, tmp2;
7095 nla_for_each_nested(attr1, freqs, tmp1)
7096 if (nla_len(attr1) != sizeof(u32))
7099 nla_for_each_nested(attr1, freqs, tmp1) {
7102 * Some hardware has a limited channel list for
7103 * scanning, and it is pretty much nonsensical
7104 * to scan for a channel twice, so disallow that
7105 * and don't require drivers to check that the
7106 * channel list they get isn't longer than what
7107 * they can scan, as long as they can scan all
7108 * the channels they registered at once.
7110 nla_for_each_nested(attr2, freqs, tmp2)
7111 if (attr1 != attr2 &&
7112 nla_get_u32(attr1) == nla_get_u32(attr2))
7119 static bool is_band_valid(struct wiphy *wiphy, enum nl80211_band b)
7121 return b < NUM_NL80211_BANDS && wiphy->bands[b];
7124 static int parse_bss_select(struct nlattr *nla, struct wiphy *wiphy,
7125 struct cfg80211_bss_selection *bss_select)
7127 struct nlattr *attr[NL80211_BSS_SELECT_ATTR_MAX + 1];
7128 struct nlattr *nest;
7133 /* only process one nested attribute */
7134 nest = nla_data(nla);
7135 if (!nla_ok(nest, nla_len(nest)))
7138 err = nla_parse_nested_deprecated(attr, NL80211_BSS_SELECT_ATTR_MAX,
7139 nest, nl80211_bss_select_policy,
7144 /* only one attribute may be given */
7145 for (i = 0; i <= NL80211_BSS_SELECT_ATTR_MAX; i++) {
7153 bss_select->behaviour = __NL80211_BSS_SELECT_ATTR_INVALID;
7155 if (attr[NL80211_BSS_SELECT_ATTR_RSSI])
7156 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI;
7158 if (attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]) {
7159 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_BAND_PREF;
7160 bss_select->param.band_pref =
7161 nla_get_u32(attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]);
7162 if (!is_band_valid(wiphy, bss_select->param.band_pref))
7166 if (attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]) {
7167 struct nl80211_bss_select_rssi_adjust *adj_param;
7169 adj_param = nla_data(attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]);
7170 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI_ADJUST;
7171 bss_select->param.adjust.band = adj_param->band;
7172 bss_select->param.adjust.delta = adj_param->delta;
7173 if (!is_band_valid(wiphy, bss_select->param.adjust.band))
7177 /* user-space did not provide behaviour attribute */
7178 if (bss_select->behaviour == __NL80211_BSS_SELECT_ATTR_INVALID)
7181 if (!(wiphy->bss_select_support & BIT(bss_select->behaviour)))
7187 int nl80211_parse_random_mac(struct nlattr **attrs,
7188 u8 *mac_addr, u8 *mac_addr_mask)
7192 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
7193 eth_zero_addr(mac_addr);
7194 eth_zero_addr(mac_addr_mask);
7196 mac_addr_mask[0] = 0x3;
7201 /* need both or none */
7202 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
7205 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
7206 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
7208 /* don't allow or configure an mcast address */
7209 if (!is_multicast_ether_addr(mac_addr_mask) ||
7210 is_multicast_ether_addr(mac_addr))
7214 * allow users to pass a MAC address that has bits set outside
7215 * of the mask, but don't bother drivers with having to deal
7218 for (i = 0; i < ETH_ALEN; i++)
7219 mac_addr[i] &= mac_addr_mask[i];
7224 static bool cfg80211_off_channel_oper_allowed(struct wireless_dev *wdev)
7226 ASSERT_WDEV_LOCK(wdev);
7228 if (!cfg80211_beaconing_iface_active(wdev))
7231 if (!(wdev->chandef.chan->flags & IEEE80211_CHAN_RADAR))
7234 return regulatory_pre_cac_allowed(wdev->wiphy);
7237 static bool nl80211_check_scan_feat(struct wiphy *wiphy, u32 flags, u32 flag,
7238 enum nl80211_ext_feature_index feat)
7240 if (!(flags & flag))
7242 if (wiphy_ext_feature_isset(wiphy, feat))
7248 nl80211_check_scan_flags(struct wiphy *wiphy, struct wireless_dev *wdev,
7249 void *request, struct nlattr **attrs,
7252 u8 *mac_addr, *mac_addr_mask;
7254 enum nl80211_feature_flags randomness_flag;
7256 if (!attrs[NL80211_ATTR_SCAN_FLAGS])
7259 if (is_sched_scan) {
7260 struct cfg80211_sched_scan_request *req = request;
7262 randomness_flag = wdev ?
7263 NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR :
7264 NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7265 flags = &req->flags;
7266 mac_addr = req->mac_addr;
7267 mac_addr_mask = req->mac_addr_mask;
7269 struct cfg80211_scan_request *req = request;
7271 randomness_flag = NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
7272 flags = &req->flags;
7273 mac_addr = req->mac_addr;
7274 mac_addr_mask = req->mac_addr_mask;
7277 *flags = nla_get_u32(attrs[NL80211_ATTR_SCAN_FLAGS]);
7279 if (((*flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
7280 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) ||
7281 !nl80211_check_scan_feat(wiphy, *flags,
7282 NL80211_SCAN_FLAG_LOW_SPAN,
7283 NL80211_EXT_FEATURE_LOW_SPAN_SCAN) ||
7284 !nl80211_check_scan_feat(wiphy, *flags,
7285 NL80211_SCAN_FLAG_LOW_POWER,
7286 NL80211_EXT_FEATURE_LOW_POWER_SCAN) ||
7287 !nl80211_check_scan_feat(wiphy, *flags,
7288 NL80211_SCAN_FLAG_HIGH_ACCURACY,
7289 NL80211_EXT_FEATURE_HIGH_ACCURACY_SCAN) ||
7290 !nl80211_check_scan_feat(wiphy, *flags,
7291 NL80211_SCAN_FLAG_FILS_MAX_CHANNEL_TIME,
7292 NL80211_EXT_FEATURE_FILS_MAX_CHANNEL_TIME) ||
7293 !nl80211_check_scan_feat(wiphy, *flags,
7294 NL80211_SCAN_FLAG_ACCEPT_BCAST_PROBE_RESP,
7295 NL80211_EXT_FEATURE_ACCEPT_BCAST_PROBE_RESP) ||
7296 !nl80211_check_scan_feat(wiphy, *flags,
7297 NL80211_SCAN_FLAG_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION,
7298 NL80211_EXT_FEATURE_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION) ||
7299 !nl80211_check_scan_feat(wiphy, *flags,
7300 NL80211_SCAN_FLAG_OCE_PROBE_REQ_HIGH_TX_RATE,
7301 NL80211_EXT_FEATURE_OCE_PROBE_REQ_HIGH_TX_RATE) ||
7302 !nl80211_check_scan_feat(wiphy, *flags,
7303 NL80211_SCAN_FLAG_RANDOM_SN,
7304 NL80211_EXT_FEATURE_SCAN_RANDOM_SN) ||
7305 !nl80211_check_scan_feat(wiphy, *flags,
7306 NL80211_SCAN_FLAG_MIN_PREQ_CONTENT,
7307 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT))
7310 if (*flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
7313 if (!(wiphy->features & randomness_flag) ||
7314 (wdev && wdev->current_bss))
7317 err = nl80211_parse_random_mac(attrs, mac_addr, mac_addr_mask);
7325 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
7327 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7328 struct wireless_dev *wdev = info->user_ptr[1];
7329 struct cfg80211_scan_request *request;
7330 struct nlattr *attr;
7331 struct wiphy *wiphy;
7332 int err, tmp, n_ssids = 0, n_channels, i;
7335 wiphy = &rdev->wiphy;
7337 if (wdev->iftype == NL80211_IFTYPE_NAN)
7340 if (!rdev->ops->scan)
7343 if (rdev->scan_req || rdev->scan_msg) {
7348 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7349 n_channels = validate_scan_freqs(
7350 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7356 n_channels = ieee80211_get_num_supported_channels(wiphy);
7359 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
7360 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
7363 if (n_ssids > wiphy->max_scan_ssids) {
7368 if (info->attrs[NL80211_ATTR_IE])
7369 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7373 if (ie_len > wiphy->max_scan_ie_len) {
7378 request = kzalloc(sizeof(*request)
7379 + sizeof(*request->ssids) * n_ssids
7380 + sizeof(*request->channels) * n_channels
7381 + ie_len, GFP_KERNEL);
7388 request->ssids = (void *)&request->channels[n_channels];
7389 request->n_ssids = n_ssids;
7392 request->ie = (void *)(request->ssids + n_ssids);
7394 request->ie = (void *)(request->channels + n_channels);
7398 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7399 /* user specified, bail out if channel not found */
7400 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
7401 struct ieee80211_channel *chan;
7403 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7410 /* ignore disabled channels */
7411 if (chan->flags & IEEE80211_CHAN_DISABLED)
7414 request->channels[i] = chan;
7418 enum nl80211_band band;
7421 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7424 if (!wiphy->bands[band])
7426 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7427 struct ieee80211_channel *chan;
7429 chan = &wiphy->bands[band]->channels[j];
7431 if (chan->flags & IEEE80211_CHAN_DISABLED)
7434 request->channels[i] = chan;
7445 request->n_channels = i;
7448 if (!cfg80211_off_channel_oper_allowed(wdev)) {
7449 struct ieee80211_channel *chan;
7451 if (request->n_channels != 1) {
7457 chan = request->channels[0];
7458 if (chan->center_freq != wdev->chandef.chan->center_freq) {
7468 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
7469 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7473 request->ssids[i].ssid_len = nla_len(attr);
7474 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
7479 if (info->attrs[NL80211_ATTR_IE]) {
7480 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7481 memcpy((void *)request->ie,
7482 nla_data(info->attrs[NL80211_ATTR_IE]),
7486 for (i = 0; i < NUM_NL80211_BANDS; i++)
7487 if (wiphy->bands[i])
7489 (1 << wiphy->bands[i]->n_bitrates) - 1;
7491 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
7492 nla_for_each_nested(attr,
7493 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
7495 enum nl80211_band band = nla_type(attr);
7497 if (band < 0 || band >= NUM_NL80211_BANDS) {
7502 if (!wiphy->bands[band])
7505 err = ieee80211_get_ratemask(wiphy->bands[band],
7508 &request->rates[band]);
7514 if (info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]) {
7515 if (!wiphy_ext_feature_isset(wiphy,
7516 NL80211_EXT_FEATURE_SET_SCAN_DWELL)) {
7522 nla_get_u16(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]);
7523 request->duration_mandatory =
7524 nla_get_flag(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY]);
7527 err = nl80211_check_scan_flags(wiphy, wdev, request, info->attrs,
7533 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7535 /* Initial implementation used NL80211_ATTR_MAC to set the specific
7536 * BSSID to scan for. This was problematic because that same attribute
7537 * was already used for another purpose (local random MAC address). The
7538 * NL80211_ATTR_BSSID attribute was added to fix this. For backwards
7539 * compatibility with older userspace components, also use the
7540 * NL80211_ATTR_MAC value here if it can be determined to be used for
7541 * the specific BSSID use case instead of the random MAC address
7542 * (NL80211_ATTR_SCAN_FLAGS is used to enable random MAC address use).
7544 if (info->attrs[NL80211_ATTR_BSSID])
7545 memcpy(request->bssid,
7546 nla_data(info->attrs[NL80211_ATTR_BSSID]), ETH_ALEN);
7547 else if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) &&
7548 info->attrs[NL80211_ATTR_MAC])
7549 memcpy(request->bssid, nla_data(info->attrs[NL80211_ATTR_MAC]),
7552 eth_broadcast_addr(request->bssid);
7554 request->wdev = wdev;
7555 request->wiphy = &rdev->wiphy;
7556 request->scan_start = jiffies;
7558 rdev->scan_req = request;
7559 err = rdev_scan(rdev, request);
7562 nl80211_send_scan_start(rdev, wdev);
7564 dev_hold(wdev->netdev);
7567 rdev->scan_req = NULL;
7575 static int nl80211_abort_scan(struct sk_buff *skb, struct genl_info *info)
7577 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7578 struct wireless_dev *wdev = info->user_ptr[1];
7580 if (!rdev->ops->abort_scan)
7586 if (!rdev->scan_req)
7589 rdev_abort_scan(rdev, wdev);
7594 nl80211_parse_sched_scan_plans(struct wiphy *wiphy, int n_plans,
7595 struct cfg80211_sched_scan_request *request,
7596 struct nlattr **attrs)
7598 int tmp, err, i = 0;
7599 struct nlattr *attr;
7601 if (!attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7605 * If scan plans are not specified,
7606 * %NL80211_ATTR_SCHED_SCAN_INTERVAL will be specified. In this
7607 * case one scan plan will be set with the specified scan
7608 * interval and infinite number of iterations.
7610 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
7614 request->scan_plans[0].interval =
7615 DIV_ROUND_UP(interval, MSEC_PER_SEC);
7616 if (!request->scan_plans[0].interval)
7619 if (request->scan_plans[0].interval >
7620 wiphy->max_sched_scan_plan_interval)
7621 request->scan_plans[0].interval =
7622 wiphy->max_sched_scan_plan_interval;
7627 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp) {
7628 struct nlattr *plan[NL80211_SCHED_SCAN_PLAN_MAX + 1];
7630 if (WARN_ON(i >= n_plans))
7633 err = nla_parse_nested_deprecated(plan,
7634 NL80211_SCHED_SCAN_PLAN_MAX,
7635 attr, nl80211_plan_policy,
7640 if (!plan[NL80211_SCHED_SCAN_PLAN_INTERVAL])
7643 request->scan_plans[i].interval =
7644 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_INTERVAL]);
7645 if (!request->scan_plans[i].interval ||
7646 request->scan_plans[i].interval >
7647 wiphy->max_sched_scan_plan_interval)
7650 if (plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]) {
7651 request->scan_plans[i].iterations =
7652 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]);
7653 if (!request->scan_plans[i].iterations ||
7654 (request->scan_plans[i].iterations >
7655 wiphy->max_sched_scan_plan_iterations))
7657 } else if (i < n_plans - 1) {
7659 * All scan plans but the last one must specify
7660 * a finite number of iterations
7669 * The last scan plan must not specify the number of
7670 * iterations, it is supposed to run infinitely
7672 if (request->scan_plans[n_plans - 1].iterations)
7679 nl80211_parse_sched_scan_per_band_rssi(struct wiphy *wiphy,
7680 struct cfg80211_match_set *match_sets,
7681 struct nlattr *tb_band_rssi,
7684 struct nlattr *attr;
7685 int i, tmp, ret = 0;
7687 if (!wiphy_ext_feature_isset(wiphy,
7688 NL80211_EXT_FEATURE_SCHED_SCAN_BAND_SPECIFIC_RSSI_THOLD)) {
7692 for (i = 0; i < NUM_NL80211_BANDS; i++)
7693 match_sets->per_band_rssi_thold[i] =
7694 NL80211_SCAN_RSSI_THOLD_OFF;
7698 for (i = 0; i < NUM_NL80211_BANDS; i++)
7699 match_sets->per_band_rssi_thold[i] = rssi_thold;
7701 nla_for_each_nested(attr, tb_band_rssi, tmp) {
7702 enum nl80211_band band = nla_type(attr);
7704 if (band < 0 || band >= NUM_NL80211_BANDS)
7707 match_sets->per_band_rssi_thold[band] = nla_get_s32(attr);
7713 static struct cfg80211_sched_scan_request *
7714 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
7715 struct nlattr **attrs, int max_match_sets)
7717 struct cfg80211_sched_scan_request *request;
7718 struct nlattr *attr;
7719 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i, n_plans = 0;
7720 enum nl80211_band band;
7722 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
7723 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
7725 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7726 n_channels = validate_scan_freqs(
7727 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7729 return ERR_PTR(-EINVAL);
7731 n_channels = ieee80211_get_num_supported_channels(wiphy);
7734 if (attrs[NL80211_ATTR_SCAN_SSIDS])
7735 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7739 if (n_ssids > wiphy->max_sched_scan_ssids)
7740 return ERR_PTR(-EINVAL);
7743 * First, count the number of 'real' matchsets. Due to an issue with
7744 * the old implementation, matchsets containing only the RSSI attribute
7745 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
7746 * RSSI for all matchsets, rather than their own matchset for reporting
7747 * all APs with a strong RSSI. This is needed to be compatible with
7748 * older userspace that treated a matchset with only the RSSI as the
7749 * global RSSI for all other matchsets - if there are other matchsets.
7751 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7752 nla_for_each_nested(attr,
7753 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7755 struct nlattr *rssi;
7757 err = nla_parse_nested_deprecated(tb,
7758 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7760 nl80211_match_policy,
7763 return ERR_PTR(err);
7765 /* SSID and BSSID are mutually exclusive */
7766 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] &&
7767 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID])
7768 return ERR_PTR(-EINVAL);
7770 /* add other standalone attributes here */
7771 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] ||
7772 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID]) {
7776 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7778 default_match_rssi = nla_get_s32(rssi);
7782 /* However, if there's no other matchset, add the RSSI one */
7783 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
7786 if (n_match_sets > max_match_sets)
7787 return ERR_PTR(-EINVAL);
7789 if (attrs[NL80211_ATTR_IE])
7790 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
7794 if (ie_len > wiphy->max_sched_scan_ie_len)
7795 return ERR_PTR(-EINVAL);
7797 if (attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7799 * NL80211_ATTR_SCHED_SCAN_INTERVAL must not be specified since
7800 * each scan plan already specifies its own interval
7802 if (attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7803 return ERR_PTR(-EINVAL);
7805 nla_for_each_nested(attr,
7806 attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp)
7810 * The scan interval attribute is kept for backward
7811 * compatibility. If no scan plans are specified and sched scan
7812 * interval is specified, one scan plan will be set with this
7813 * scan interval and infinite number of iterations.
7815 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7816 return ERR_PTR(-EINVAL);
7821 if (!n_plans || n_plans > wiphy->max_sched_scan_plans)
7822 return ERR_PTR(-EINVAL);
7824 if (!wiphy_ext_feature_isset(
7825 wiphy, NL80211_EXT_FEATURE_SCHED_SCAN_RELATIVE_RSSI) &&
7826 (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] ||
7827 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]))
7828 return ERR_PTR(-EINVAL);
7830 request = kzalloc(sizeof(*request)
7831 + sizeof(*request->ssids) * n_ssids
7832 + sizeof(*request->match_sets) * n_match_sets
7833 + sizeof(*request->scan_plans) * n_plans
7834 + sizeof(*request->channels) * n_channels
7835 + ie_len, GFP_KERNEL);
7837 return ERR_PTR(-ENOMEM);
7840 request->ssids = (void *)&request->channels[n_channels];
7841 request->n_ssids = n_ssids;
7844 request->ie = (void *)(request->ssids + n_ssids);
7846 request->ie = (void *)(request->channels + n_channels);
7851 request->match_sets = (void *)(request->ie + ie_len);
7853 request->match_sets =
7854 (void *)(request->ssids + n_ssids);
7856 request->match_sets =
7857 (void *)(request->channels + n_channels);
7859 request->n_match_sets = n_match_sets;
7862 request->scan_plans = (void *)(request->match_sets +
7864 else if (request->ie)
7865 request->scan_plans = (void *)(request->ie + ie_len);
7867 request->scan_plans = (void *)(request->ssids + n_ssids);
7869 request->scan_plans = (void *)(request->channels + n_channels);
7871 request->n_scan_plans = n_plans;
7874 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7875 /* user specified, bail out if channel not found */
7876 nla_for_each_nested(attr,
7877 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
7879 struct ieee80211_channel *chan;
7881 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7888 /* ignore disabled channels */
7889 if (chan->flags & IEEE80211_CHAN_DISABLED)
7892 request->channels[i] = chan;
7897 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7900 if (!wiphy->bands[band])
7902 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7903 struct ieee80211_channel *chan;
7905 chan = &wiphy->bands[band]->channels[j];
7907 if (chan->flags & IEEE80211_CHAN_DISABLED)
7910 request->channels[i] = chan;
7921 request->n_channels = i;
7925 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7927 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7931 request->ssids[i].ssid_len = nla_len(attr);
7932 memcpy(request->ssids[i].ssid, nla_data(attr),
7939 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7940 nla_for_each_nested(attr,
7941 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7943 struct nlattr *ssid, *bssid, *rssi;
7945 err = nla_parse_nested_deprecated(tb,
7946 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7948 nl80211_match_policy,
7952 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
7953 bssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID];
7955 if (!ssid && !bssid) {
7960 if (WARN_ON(i >= n_match_sets)) {
7961 /* this indicates a programming error,
7962 * the loop above should have verified
7970 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
7974 memcpy(request->match_sets[i].ssid.ssid,
7975 nla_data(ssid), nla_len(ssid));
7976 request->match_sets[i].ssid.ssid_len =
7980 if (nla_len(bssid) != ETH_ALEN) {
7984 memcpy(request->match_sets[i].bssid,
7985 nla_data(bssid), ETH_ALEN);
7988 /* special attribute - old implementation w/a */
7989 request->match_sets[i].rssi_thold = default_match_rssi;
7990 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7992 request->match_sets[i].rssi_thold =
7995 /* Parse per band RSSI attribute */
7996 err = nl80211_parse_sched_scan_per_band_rssi(wiphy,
7997 &request->match_sets[i],
7998 tb[NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI],
7999 request->match_sets[i].rssi_thold);
8006 /* there was no other matchset, so the RSSI one is alone */
8007 if (i == 0 && n_match_sets)
8008 request->match_sets[0].rssi_thold = default_match_rssi;
8010 request->min_rssi_thold = INT_MAX;
8011 for (i = 0; i < n_match_sets; i++)
8012 request->min_rssi_thold =
8013 min(request->match_sets[i].rssi_thold,
8014 request->min_rssi_thold);
8016 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
8020 request->ie_len = ie_len;
8021 memcpy((void *)request->ie,
8022 nla_data(attrs[NL80211_ATTR_IE]),
8026 err = nl80211_check_scan_flags(wiphy, wdev, request, attrs, true);
8030 if (attrs[NL80211_ATTR_SCHED_SCAN_DELAY])
8032 nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_DELAY]);
8034 if (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]) {
8035 request->relative_rssi = nla_get_s8(
8036 attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]);
8037 request->relative_rssi_set = true;
8040 if (request->relative_rssi_set &&
8041 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]) {
8042 struct nl80211_bss_select_rssi_adjust *rssi_adjust;
8044 rssi_adjust = nla_data(
8045 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]);
8046 request->rssi_adjust.band = rssi_adjust->band;
8047 request->rssi_adjust.delta = rssi_adjust->delta;
8048 if (!is_band_valid(wiphy, request->rssi_adjust.band)) {
8054 err = nl80211_parse_sched_scan_plans(wiphy, n_plans, request, attrs);
8058 request->scan_start = jiffies;
8064 return ERR_PTR(err);
8067 static int nl80211_start_sched_scan(struct sk_buff *skb,
8068 struct genl_info *info)
8070 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8071 struct net_device *dev = info->user_ptr[1];
8072 struct wireless_dev *wdev = dev->ieee80211_ptr;
8073 struct cfg80211_sched_scan_request *sched_scan_req;
8077 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_start)
8080 want_multi = info->attrs[NL80211_ATTR_SCHED_SCAN_MULTI];
8081 err = cfg80211_sched_scan_req_possible(rdev, want_multi);
8085 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
8087 rdev->wiphy.max_match_sets);
8089 err = PTR_ERR_OR_ZERO(sched_scan_req);
8093 /* leave request id zero for legacy request
8094 * or if driver does not support multi-scheduled scan
8096 if (want_multi && rdev->wiphy.max_sched_scan_reqs > 1) {
8097 while (!sched_scan_req->reqid)
8098 sched_scan_req->reqid = cfg80211_assign_cookie(rdev);
8101 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
8105 sched_scan_req->dev = dev;
8106 sched_scan_req->wiphy = &rdev->wiphy;
8108 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
8109 sched_scan_req->owner_nlportid = info->snd_portid;
8111 cfg80211_add_sched_scan_req(rdev, sched_scan_req);
8113 nl80211_send_sched_scan(sched_scan_req, NL80211_CMD_START_SCHED_SCAN);
8117 kfree(sched_scan_req);
8122 static int nl80211_stop_sched_scan(struct sk_buff *skb,
8123 struct genl_info *info)
8125 struct cfg80211_sched_scan_request *req;
8126 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8129 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_stop)
8132 if (info->attrs[NL80211_ATTR_COOKIE]) {
8133 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
8134 return __cfg80211_stop_sched_scan(rdev, cookie, false);
8137 req = list_first_or_null_rcu(&rdev->sched_scan_req_list,
8138 struct cfg80211_sched_scan_request,
8140 if (!req || req->reqid ||
8141 (req->owner_nlportid &&
8142 req->owner_nlportid != info->snd_portid))
8145 return cfg80211_stop_sched_scan_req(rdev, req, false);
8148 static int nl80211_start_radar_detection(struct sk_buff *skb,
8149 struct genl_info *info)
8151 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8152 struct net_device *dev = info->user_ptr[1];
8153 struct wireless_dev *wdev = dev->ieee80211_ptr;
8154 struct wiphy *wiphy = wdev->wiphy;
8155 struct cfg80211_chan_def chandef;
8156 enum nl80211_dfs_regions dfs_region;
8157 unsigned int cac_time_ms;
8160 dfs_region = reg_get_dfs_region(wiphy);
8161 if (dfs_region == NL80211_DFS_UNSET)
8164 err = nl80211_parse_chandef(rdev, info, &chandef);
8168 if (netif_carrier_ok(dev))
8171 if (wdev->cac_started)
8174 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8181 if (!cfg80211_chandef_dfs_usable(wiphy, &chandef))
8184 /* CAC start is offloaded to HW and can't be started manually */
8185 if (wiphy_ext_feature_isset(wiphy, NL80211_EXT_FEATURE_DFS_OFFLOAD))
8188 if (!rdev->ops->start_radar_detection)
8191 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
8192 if (WARN_ON(!cac_time_ms))
8193 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
8195 err = rdev_start_radar_detection(rdev, dev, &chandef, cac_time_ms);
8197 wdev->chandef = chandef;
8198 wdev->cac_started = true;
8199 wdev->cac_start_time = jiffies;
8200 wdev->cac_time_ms = cac_time_ms;
8205 static int nl80211_notify_radar_detection(struct sk_buff *skb,
8206 struct genl_info *info)
8208 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8209 struct net_device *dev = info->user_ptr[1];
8210 struct wireless_dev *wdev = dev->ieee80211_ptr;
8211 struct wiphy *wiphy = wdev->wiphy;
8212 struct cfg80211_chan_def chandef;
8213 enum nl80211_dfs_regions dfs_region;
8216 dfs_region = reg_get_dfs_region(wiphy);
8217 if (dfs_region == NL80211_DFS_UNSET) {
8218 GENL_SET_ERR_MSG(info,
8219 "DFS Region is not set. Unexpected Radar indication");
8223 err = nl80211_parse_chandef(rdev, info, &chandef);
8225 GENL_SET_ERR_MSG(info, "Unable to extract chandef info");
8229 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8231 GENL_SET_ERR_MSG(info, "chandef is invalid");
8236 GENL_SET_ERR_MSG(info,
8237 "Unexpected Radar indication for chandef/iftype");
8241 /* Do not process this notification if radar is already detected
8242 * by kernel on this channel, and return success.
8244 if (chandef.chan->dfs_state == NL80211_DFS_UNAVAILABLE)
8247 cfg80211_set_dfs_state(wiphy, &chandef, NL80211_DFS_UNAVAILABLE);
8249 cfg80211_sched_dfs_chan_update(rdev);
8251 rdev->radar_chandef = chandef;
8253 /* Propagate this notification to other radios as well */
8254 queue_work(cfg80211_wq, &rdev->propagate_radar_detect_wk);
8259 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
8261 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8262 struct net_device *dev = info->user_ptr[1];
8263 struct wireless_dev *wdev = dev->ieee80211_ptr;
8264 struct cfg80211_csa_settings params;
8265 /* csa_attrs is defined static to avoid waste of stack size - this
8266 * function is called under RTNL lock, so this should not be a problem.
8268 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
8270 bool need_new_beacon = false;
8271 bool need_handle_dfs_flag = true;
8275 if (!rdev->ops->channel_switch ||
8276 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
8279 switch (dev->ieee80211_ptr->iftype) {
8280 case NL80211_IFTYPE_AP:
8281 case NL80211_IFTYPE_P2P_GO:
8282 need_new_beacon = true;
8283 /* For all modes except AP the handle_dfs flag needs to be
8284 * supplied to tell the kernel that userspace will handle radar
8285 * events when they happen. Otherwise a switch to a channel
8286 * requiring DFS will be rejected.
8288 need_handle_dfs_flag = false;
8290 /* useless if AP is not running */
8291 if (!wdev->beacon_interval)
8294 case NL80211_IFTYPE_ADHOC:
8295 if (!wdev->ssid_len)
8298 case NL80211_IFTYPE_MESH_POINT:
8299 if (!wdev->mesh_id_len)
8306 memset(¶ms, 0, sizeof(params));
8307 params.beacon_csa.ftm_responder = -1;
8309 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
8310 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
8313 /* only important for AP, IBSS and mesh create IEs internally */
8314 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
8317 /* Even though the attribute is u32, the specification says
8318 * u8, so let's make sure we don't overflow.
8320 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
8324 params.count = cs_count;
8326 if (!need_new_beacon)
8329 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon_after);
8333 err = nla_parse_nested_deprecated(csa_attrs, NL80211_ATTR_MAX,
8334 info->attrs[NL80211_ATTR_CSA_IES],
8335 nl80211_policy, info->extack);
8339 err = nl80211_parse_beacon(rdev, csa_attrs, ¶ms.beacon_csa);
8343 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
8346 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8347 if (!len || (len % sizeof(u16)))
8350 params.n_counter_offsets_beacon = len / sizeof(u16);
8351 if (rdev->wiphy.max_num_csa_counters &&
8352 (params.n_counter_offsets_beacon >
8353 rdev->wiphy.max_num_csa_counters))
8356 params.counter_offsets_beacon =
8357 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8359 /* sanity checks - counters should fit and be the same */
8360 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
8361 u16 offset = params.counter_offsets_beacon[i];
8363 if (offset >= params.beacon_csa.tail_len)
8366 if (params.beacon_csa.tail[offset] != params.count)
8370 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
8371 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8372 if (!len || (len % sizeof(u16)))
8375 params.n_counter_offsets_presp = len / sizeof(u16);
8376 if (rdev->wiphy.max_num_csa_counters &&
8377 (params.n_counter_offsets_presp >
8378 rdev->wiphy.max_num_csa_counters))
8381 params.counter_offsets_presp =
8382 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8384 /* sanity checks - counters should fit and be the same */
8385 for (i = 0; i < params.n_counter_offsets_presp; i++) {
8386 u16 offset = params.counter_offsets_presp[i];
8388 if (offset >= params.beacon_csa.probe_resp_len)
8391 if (params.beacon_csa.probe_resp[offset] !=
8398 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
8402 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
8406 err = cfg80211_chandef_dfs_required(wdev->wiphy,
8413 params.radar_required = true;
8414 if (need_handle_dfs_flag &&
8415 !nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS])) {
8420 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
8421 params.block_tx = true;
8424 err = rdev_channel_switch(rdev, dev, ¶ms);
8430 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
8432 struct cfg80211_registered_device *rdev,
8433 struct wireless_dev *wdev,
8434 struct cfg80211_internal_bss *intbss)
8436 struct cfg80211_bss *res = &intbss->pub;
8437 const struct cfg80211_bss_ies *ies;
8441 ASSERT_WDEV_LOCK(wdev);
8443 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
8444 NL80211_CMD_NEW_SCAN_RESULTS);
8448 genl_dump_check_consistent(cb, hdr);
8450 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
8451 goto nla_put_failure;
8453 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
8454 goto nla_put_failure;
8455 if (nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
8457 goto nla_put_failure;
8459 bss = nla_nest_start_noflag(msg, NL80211_ATTR_BSS);
8461 goto nla_put_failure;
8462 if ((!is_zero_ether_addr(res->bssid) &&
8463 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
8464 goto nla_put_failure;
8467 /* indicate whether we have probe response data or not */
8468 if (rcu_access_pointer(res->proberesp_ies) &&
8469 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
8470 goto fail_unlock_rcu;
8472 /* this pointer prefers to be pointed to probe response data
8473 * but is always valid
8475 ies = rcu_dereference(res->ies);
8477 if (nla_put_u64_64bit(msg, NL80211_BSS_TSF, ies->tsf,
8479 goto fail_unlock_rcu;
8480 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
8481 ies->len, ies->data))
8482 goto fail_unlock_rcu;
8485 /* and this pointer is always (unless driver didn't know) beacon data */
8486 ies = rcu_dereference(res->beacon_ies);
8487 if (ies && ies->from_beacon) {
8488 if (nla_put_u64_64bit(msg, NL80211_BSS_BEACON_TSF, ies->tsf,
8490 goto fail_unlock_rcu;
8491 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
8492 ies->len, ies->data))
8493 goto fail_unlock_rcu;
8497 if (res->beacon_interval &&
8498 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
8499 goto nla_put_failure;
8500 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
8501 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
8502 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
8503 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
8504 jiffies_to_msecs(jiffies - intbss->ts)))
8505 goto nla_put_failure;
8507 if (intbss->parent_tsf &&
8508 (nla_put_u64_64bit(msg, NL80211_BSS_PARENT_TSF,
8509 intbss->parent_tsf, NL80211_BSS_PAD) ||
8510 nla_put(msg, NL80211_BSS_PARENT_BSSID, ETH_ALEN,
8511 intbss->parent_bssid)))
8512 goto nla_put_failure;
8514 if (intbss->ts_boottime &&
8515 nla_put_u64_64bit(msg, NL80211_BSS_LAST_SEEN_BOOTTIME,
8516 intbss->ts_boottime, NL80211_BSS_PAD))
8517 goto nla_put_failure;
8519 if (!nl80211_put_signal(msg, intbss->pub.chains,
8520 intbss->pub.chain_signal,
8521 NL80211_BSS_CHAIN_SIGNAL))
8522 goto nla_put_failure;
8524 switch (rdev->wiphy.signal_type) {
8525 case CFG80211_SIGNAL_TYPE_MBM:
8526 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
8527 goto nla_put_failure;
8529 case CFG80211_SIGNAL_TYPE_UNSPEC:
8530 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
8531 goto nla_put_failure;
8537 switch (wdev->iftype) {
8538 case NL80211_IFTYPE_P2P_CLIENT:
8539 case NL80211_IFTYPE_STATION:
8540 if (intbss == wdev->current_bss &&
8541 nla_put_u32(msg, NL80211_BSS_STATUS,
8542 NL80211_BSS_STATUS_ASSOCIATED))
8543 goto nla_put_failure;
8545 case NL80211_IFTYPE_ADHOC:
8546 if (intbss == wdev->current_bss &&
8547 nla_put_u32(msg, NL80211_BSS_STATUS,
8548 NL80211_BSS_STATUS_IBSS_JOINED))
8549 goto nla_put_failure;
8555 nla_nest_end(msg, bss);
8557 genlmsg_end(msg, hdr);
8563 genlmsg_cancel(msg, hdr);
8567 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
8569 struct cfg80211_registered_device *rdev;
8570 struct cfg80211_internal_bss *scan;
8571 struct wireless_dev *wdev;
8572 int start = cb->args[2], idx = 0;
8576 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8583 spin_lock_bh(&rdev->bss_lock);
8586 * dump_scan will be called multiple times to break up the scan results
8587 * into multiple messages. It is unlikely that any more bss-es will be
8588 * expired after the first call, so only call only call this on the
8589 * first dump_scan invocation.
8592 cfg80211_bss_expire(rdev);
8594 cb->seq = rdev->bss_generation;
8596 list_for_each_entry(scan, &rdev->bss_list, list) {
8599 if (nl80211_send_bss(skb, cb,
8600 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8601 rdev, wdev, scan) < 0) {
8607 spin_unlock_bh(&rdev->bss_lock);
8616 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
8617 int flags, struct net_device *dev,
8618 bool allow_radio_stats,
8619 struct survey_info *survey)
8622 struct nlattr *infoattr;
8624 /* skip radio stats if userspace didn't request them */
8625 if (!survey->channel && !allow_radio_stats)
8628 hdr = nl80211hdr_put(msg, portid, seq, flags,
8629 NL80211_CMD_NEW_SURVEY_RESULTS);
8633 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
8634 goto nla_put_failure;
8636 infoattr = nla_nest_start_noflag(msg, NL80211_ATTR_SURVEY_INFO);
8638 goto nla_put_failure;
8640 if (survey->channel &&
8641 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
8642 survey->channel->center_freq))
8643 goto nla_put_failure;
8645 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
8646 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
8647 goto nla_put_failure;
8648 if ((survey->filled & SURVEY_INFO_IN_USE) &&
8649 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
8650 goto nla_put_failure;
8651 if ((survey->filled & SURVEY_INFO_TIME) &&
8652 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME,
8653 survey->time, NL80211_SURVEY_INFO_PAD))
8654 goto nla_put_failure;
8655 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
8656 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_BUSY,
8657 survey->time_busy, NL80211_SURVEY_INFO_PAD))
8658 goto nla_put_failure;
8659 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
8660 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
8661 survey->time_ext_busy, NL80211_SURVEY_INFO_PAD))
8662 goto nla_put_failure;
8663 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
8664 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_RX,
8665 survey->time_rx, NL80211_SURVEY_INFO_PAD))
8666 goto nla_put_failure;
8667 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
8668 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_TX,
8669 survey->time_tx, NL80211_SURVEY_INFO_PAD))
8670 goto nla_put_failure;
8671 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
8672 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_SCAN,
8673 survey->time_scan, NL80211_SURVEY_INFO_PAD))
8674 goto nla_put_failure;
8676 nla_nest_end(msg, infoattr);
8678 genlmsg_end(msg, hdr);
8682 genlmsg_cancel(msg, hdr);
8686 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
8688 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
8689 struct survey_info survey;
8690 struct cfg80211_registered_device *rdev;
8691 struct wireless_dev *wdev;
8692 int survey_idx = cb->args[2];
8697 res = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8701 /* prepare_wdev_dump parsed the attributes */
8702 radio_stats = attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
8704 if (!wdev->netdev) {
8709 if (!rdev->ops->dump_survey) {
8715 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
8721 /* don't send disabled channels, but do send non-channel data */
8722 if (survey.channel &&
8723 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
8728 if (nl80211_send_survey(skb,
8729 NETLINK_CB(cb->skb).portid,
8730 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8731 wdev->netdev, radio_stats, &survey) < 0)
8737 cb->args[2] = survey_idx;
8744 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
8746 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
8747 NL80211_WPA_VERSION_2 |
8748 NL80211_WPA_VERSION_3));
8751 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
8753 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8754 struct net_device *dev = info->user_ptr[1];
8755 struct ieee80211_channel *chan;
8756 const u8 *bssid, *ssid, *ie = NULL, *auth_data = NULL;
8757 int err, ssid_len, ie_len = 0, auth_data_len = 0;
8758 enum nl80211_auth_type auth_type;
8759 struct key_parse key;
8760 bool local_state_change;
8762 if (!info->attrs[NL80211_ATTR_MAC])
8765 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
8768 if (!info->attrs[NL80211_ATTR_SSID])
8771 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8774 err = nl80211_parse_key(info, &key);
8779 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
8781 if (!key.p.key || !key.p.key_len)
8783 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
8784 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
8785 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
8786 key.p.key_len != WLAN_KEY_LEN_WEP104))
8799 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
8800 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
8809 if (!rdev->ops->auth)
8812 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8813 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8816 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8817 chan = nl80211_get_valid_chan(&rdev->wiphy,
8818 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8822 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8823 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8825 if (info->attrs[NL80211_ATTR_IE]) {
8826 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8827 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8830 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
8831 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
8834 if ((auth_type == NL80211_AUTHTYPE_SAE ||
8835 auth_type == NL80211_AUTHTYPE_FILS_SK ||
8836 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
8837 auth_type == NL80211_AUTHTYPE_FILS_PK) &&
8838 !info->attrs[NL80211_ATTR_AUTH_DATA])
8841 if (info->attrs[NL80211_ATTR_AUTH_DATA]) {
8842 if (auth_type != NL80211_AUTHTYPE_SAE &&
8843 auth_type != NL80211_AUTHTYPE_FILS_SK &&
8844 auth_type != NL80211_AUTHTYPE_FILS_SK_PFS &&
8845 auth_type != NL80211_AUTHTYPE_FILS_PK)
8847 auth_data = nla_data(info->attrs[NL80211_ATTR_AUTH_DATA]);
8848 auth_data_len = nla_len(info->attrs[NL80211_ATTR_AUTH_DATA]);
8849 /* need to include at least Auth Transaction and Status Code */
8850 if (auth_data_len < 4)
8854 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8857 * Since we no longer track auth state, ignore
8858 * requests to only change local state.
8860 if (local_state_change)
8863 wdev_lock(dev->ieee80211_ptr);
8864 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
8865 ssid, ssid_len, ie, ie_len,
8866 key.p.key, key.p.key_len, key.idx,
8867 auth_data, auth_data_len);
8868 wdev_unlock(dev->ieee80211_ptr);
8872 static int validate_pae_over_nl80211(struct cfg80211_registered_device *rdev,
8873 struct genl_info *info)
8875 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8876 GENL_SET_ERR_MSG(info, "SOCKET_OWNER not set");
8880 if (!rdev->ops->tx_control_port ||
8881 !wiphy_ext_feature_isset(&rdev->wiphy,
8882 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
8888 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
8889 struct genl_info *info,
8890 struct cfg80211_crypto_settings *settings,
8893 memset(settings, 0, sizeof(*settings));
8895 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
8897 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
8900 proto = nla_get_u16(
8901 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
8902 settings->control_port_ethertype = cpu_to_be16(proto);
8903 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
8906 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
8907 settings->control_port_no_encrypt = true;
8909 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
8911 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
8912 int r = validate_pae_over_nl80211(rdev, info);
8917 settings->control_port_over_nl80211 = true;
8920 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
8924 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8925 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8926 settings->n_ciphers_pairwise = len / sizeof(u32);
8928 if (len % sizeof(u32))
8931 if (settings->n_ciphers_pairwise > cipher_limit)
8934 memcpy(settings->ciphers_pairwise, data, len);
8936 for (i = 0; i < settings->n_ciphers_pairwise; i++)
8937 if (!cfg80211_supported_cipher_suite(
8939 settings->ciphers_pairwise[i]))
8943 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
8944 settings->cipher_group =
8945 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
8946 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
8947 settings->cipher_group))
8951 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
8952 settings->wpa_versions =
8953 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
8954 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
8958 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
8962 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
8963 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
8964 settings->n_akm_suites = len / sizeof(u32);
8966 if (len % sizeof(u32))
8969 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
8972 memcpy(settings->akm_suites, data, len);
8975 if (info->attrs[NL80211_ATTR_PMK]) {
8976 if (nla_len(info->attrs[NL80211_ATTR_PMK]) != WLAN_PMK_LEN)
8978 if (!wiphy_ext_feature_isset(&rdev->wiphy,
8979 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK))
8981 settings->psk = nla_data(info->attrs[NL80211_ATTR_PMK]);
8984 if (info->attrs[NL80211_ATTR_SAE_PASSWORD]) {
8985 if (!wiphy_ext_feature_isset(&rdev->wiphy,
8986 NL80211_EXT_FEATURE_SAE_OFFLOAD))
8989 nla_data(info->attrs[NL80211_ATTR_SAE_PASSWORD]);
8990 settings->sae_pwd_len =
8991 nla_len(info->attrs[NL80211_ATTR_SAE_PASSWORD]);
8997 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
8999 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9000 struct net_device *dev = info->user_ptr[1];
9001 struct ieee80211_channel *chan;
9002 struct cfg80211_assoc_request req = {};
9003 const u8 *bssid, *ssid;
9004 int err, ssid_len = 0;
9006 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9007 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9010 if (!info->attrs[NL80211_ATTR_MAC] ||
9011 !info->attrs[NL80211_ATTR_SSID] ||
9012 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
9015 if (!rdev->ops->assoc)
9018 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9019 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9022 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9024 chan = nl80211_get_valid_chan(&rdev->wiphy,
9025 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9029 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9030 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9032 if (info->attrs[NL80211_ATTR_IE]) {
9033 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9034 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9037 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9038 enum nl80211_mfp mfp =
9039 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9040 if (mfp == NL80211_MFP_REQUIRED)
9042 else if (mfp != NL80211_MFP_NO)
9046 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9047 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9049 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9050 req.flags |= ASSOC_REQ_DISABLE_HT;
9052 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9053 memcpy(&req.ht_capa_mask,
9054 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9055 sizeof(req.ht_capa_mask));
9057 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9058 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9060 memcpy(&req.ht_capa,
9061 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9062 sizeof(req.ht_capa));
9065 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9066 req.flags |= ASSOC_REQ_DISABLE_VHT;
9068 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9069 memcpy(&req.vht_capa_mask,
9070 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9071 sizeof(req.vht_capa_mask));
9073 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9074 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9076 memcpy(&req.vht_capa,
9077 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9078 sizeof(req.vht_capa));
9081 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9082 if (!((rdev->wiphy.features &
9083 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9084 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9085 !wiphy_ext_feature_isset(&rdev->wiphy,
9086 NL80211_EXT_FEATURE_RRM))
9088 req.flags |= ASSOC_REQ_USE_RRM;
9091 if (info->attrs[NL80211_ATTR_FILS_KEK]) {
9092 req.fils_kek = nla_data(info->attrs[NL80211_ATTR_FILS_KEK]);
9093 req.fils_kek_len = nla_len(info->attrs[NL80211_ATTR_FILS_KEK]);
9094 if (!info->attrs[NL80211_ATTR_FILS_NONCES])
9097 nla_data(info->attrs[NL80211_ATTR_FILS_NONCES]);
9100 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
9102 wdev_lock(dev->ieee80211_ptr);
9104 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
9105 ssid, ssid_len, &req);
9107 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9108 dev->ieee80211_ptr->conn_owner_nlportid =
9110 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9114 wdev_unlock(dev->ieee80211_ptr);
9120 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
9122 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9123 struct net_device *dev = info->user_ptr[1];
9124 const u8 *ie = NULL, *bssid;
9125 int ie_len = 0, err;
9127 bool local_state_change;
9129 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9130 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9133 if (!info->attrs[NL80211_ATTR_MAC])
9136 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9139 if (!rdev->ops->deauth)
9142 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9143 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9146 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9148 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9149 if (reason_code == 0) {
9150 /* Reason Code 0 is reserved */
9154 if (info->attrs[NL80211_ATTR_IE]) {
9155 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9156 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9159 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9161 wdev_lock(dev->ieee80211_ptr);
9162 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
9163 local_state_change);
9164 wdev_unlock(dev->ieee80211_ptr);
9168 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
9170 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9171 struct net_device *dev = info->user_ptr[1];
9172 const u8 *ie = NULL, *bssid;
9173 int ie_len = 0, err;
9175 bool local_state_change;
9177 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9178 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9181 if (!info->attrs[NL80211_ATTR_MAC])
9184 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9187 if (!rdev->ops->disassoc)
9190 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9191 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9194 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9196 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9197 if (reason_code == 0) {
9198 /* Reason Code 0 is reserved */
9202 if (info->attrs[NL80211_ATTR_IE]) {
9203 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9204 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9207 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9209 wdev_lock(dev->ieee80211_ptr);
9210 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
9211 local_state_change);
9212 wdev_unlock(dev->ieee80211_ptr);
9217 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
9218 int mcast_rate[NUM_NL80211_BANDS],
9221 struct wiphy *wiphy = &rdev->wiphy;
9225 for (band = 0; band < NUM_NL80211_BANDS; band++) {
9226 struct ieee80211_supported_band *sband;
9228 sband = wiphy->bands[band];
9232 for (i = 0; i < sband->n_bitrates; i++) {
9233 if (sband->bitrates[i].bitrate == rateval) {
9234 mcast_rate[band] = i + 1;
9244 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
9246 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9247 struct net_device *dev = info->user_ptr[1];
9248 struct cfg80211_ibss_params ibss;
9249 struct wiphy *wiphy;
9250 struct cfg80211_cached_keys *connkeys = NULL;
9253 memset(&ibss, 0, sizeof(ibss));
9255 if (!info->attrs[NL80211_ATTR_SSID] ||
9256 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9259 ibss.beacon_interval = 100;
9261 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL])
9262 ibss.beacon_interval =
9263 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
9265 err = cfg80211_validate_beacon_int(rdev, NL80211_IFTYPE_ADHOC,
9266 ibss.beacon_interval);
9270 if (!rdev->ops->join_ibss)
9273 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9276 wiphy = &rdev->wiphy;
9278 if (info->attrs[NL80211_ATTR_MAC]) {
9279 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9281 if (!is_valid_ether_addr(ibss.bssid))
9284 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9285 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9287 if (info->attrs[NL80211_ATTR_IE]) {
9288 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9289 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9292 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
9296 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
9297 NL80211_IFTYPE_ADHOC))
9300 switch (ibss.chandef.width) {
9301 case NL80211_CHAN_WIDTH_5:
9302 case NL80211_CHAN_WIDTH_10:
9303 case NL80211_CHAN_WIDTH_20_NOHT:
9305 case NL80211_CHAN_WIDTH_20:
9306 case NL80211_CHAN_WIDTH_40:
9307 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9310 case NL80211_CHAN_WIDTH_80:
9311 case NL80211_CHAN_WIDTH_80P80:
9312 case NL80211_CHAN_WIDTH_160:
9313 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9315 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9316 NL80211_EXT_FEATURE_VHT_IBSS))
9323 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
9324 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
9326 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
9328 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9330 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9331 struct ieee80211_supported_band *sband =
9332 wiphy->bands[ibss.chandef.chan->band];
9334 err = ieee80211_get_ratemask(sband, rates, n_rates,
9340 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9341 memcpy(&ibss.ht_capa_mask,
9342 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9343 sizeof(ibss.ht_capa_mask));
9345 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9346 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9348 memcpy(&ibss.ht_capa,
9349 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9350 sizeof(ibss.ht_capa));
9353 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
9354 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
9355 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
9358 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9361 connkeys = nl80211_parse_connkeys(rdev, info, &no_ht);
9362 if (IS_ERR(connkeys))
9363 return PTR_ERR(connkeys);
9365 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
9373 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
9375 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
9376 int r = validate_pae_over_nl80211(rdev, info);
9383 ibss.control_port_over_nl80211 = true;
9386 ibss.userspace_handles_dfs =
9387 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
9389 wdev_lock(dev->ieee80211_ptr);
9390 err = __cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
9393 else if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
9394 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9395 wdev_unlock(dev->ieee80211_ptr);
9400 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
9402 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9403 struct net_device *dev = info->user_ptr[1];
9405 if (!rdev->ops->leave_ibss)
9408 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9411 return cfg80211_leave_ibss(rdev, dev, false);
9414 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
9416 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9417 struct net_device *dev = info->user_ptr[1];
9418 int mcast_rate[NUM_NL80211_BANDS];
9422 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
9423 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
9424 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_OCB)
9427 if (!rdev->ops->set_mcast_rate)
9430 memset(mcast_rate, 0, sizeof(mcast_rate));
9432 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
9435 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
9436 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
9439 err = rdev_set_mcast_rate(rdev, dev, mcast_rate);
9444 static struct sk_buff *
9445 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
9446 struct wireless_dev *wdev, int approxlen,
9447 u32 portid, u32 seq, enum nl80211_commands cmd,
9448 enum nl80211_attrs attr,
9449 const struct nl80211_vendor_cmd_info *info,
9452 struct sk_buff *skb;
9454 struct nlattr *data;
9456 skb = nlmsg_new(approxlen + 100, gfp);
9460 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
9466 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
9467 goto nla_put_failure;
9470 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
9472 goto nla_put_failure;
9473 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
9475 goto nla_put_failure;
9479 if (nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
9480 wdev_id(wdev), NL80211_ATTR_PAD))
9481 goto nla_put_failure;
9483 nla_put_u32(skb, NL80211_ATTR_IFINDEX,
9484 wdev->netdev->ifindex))
9485 goto nla_put_failure;
9488 data = nla_nest_start_noflag(skb, attr);
9490 goto nla_put_failure;
9492 ((void **)skb->cb)[0] = rdev;
9493 ((void **)skb->cb)[1] = hdr;
9494 ((void **)skb->cb)[2] = data;
9503 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
9504 struct wireless_dev *wdev,
9505 enum nl80211_commands cmd,
9506 enum nl80211_attrs attr,
9507 unsigned int portid,
9508 int vendor_event_idx,
9509 int approxlen, gfp_t gfp)
9511 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9512 const struct nl80211_vendor_cmd_info *info;
9515 case NL80211_CMD_TESTMODE:
9516 if (WARN_ON(vendor_event_idx != -1))
9520 case NL80211_CMD_VENDOR:
9521 if (WARN_ON(vendor_event_idx < 0 ||
9522 vendor_event_idx >= wiphy->n_vendor_events))
9524 info = &wiphy->vendor_events[vendor_event_idx];
9531 return __cfg80211_alloc_vendor_skb(rdev, wdev, approxlen, portid, 0,
9532 cmd, attr, info, gfp);
9534 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
9536 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
9538 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9539 void *hdr = ((void **)skb->cb)[1];
9540 struct nlmsghdr *nlhdr = nlmsg_hdr(skb);
9541 struct nlattr *data = ((void **)skb->cb)[2];
9542 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
9544 /* clear CB data for netlink core to own from now on */
9545 memset(skb->cb, 0, sizeof(skb->cb));
9547 nla_nest_end(skb, data);
9548 genlmsg_end(skb, hdr);
9550 if (nlhdr->nlmsg_pid) {
9551 genlmsg_unicast(wiphy_net(&rdev->wiphy), skb,
9554 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
9555 mcgrp = NL80211_MCGRP_VENDOR;
9557 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
9558 skb, 0, mcgrp, gfp);
9561 EXPORT_SYMBOL(__cfg80211_send_event_skb);
9563 #ifdef CONFIG_NL80211_TESTMODE
9564 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
9566 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9567 struct wireless_dev *wdev =
9568 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9571 if (!rdev->ops->testmode_cmd)
9575 err = PTR_ERR(wdev);
9579 } else if (wdev->wiphy != &rdev->wiphy) {
9583 if (!info->attrs[NL80211_ATTR_TESTDATA])
9586 rdev->cur_cmd_info = info;
9587 err = rdev_testmode_cmd(rdev, wdev,
9588 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
9589 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
9590 rdev->cur_cmd_info = NULL;
9595 static int nl80211_testmode_dump(struct sk_buff *skb,
9596 struct netlink_callback *cb)
9598 struct cfg80211_registered_device *rdev;
9608 * 0 is a valid index, but not valid for args[0],
9609 * so we need to offset by 1.
9611 phy_idx = cb->args[0] - 1;
9613 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
9619 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
9621 err = nlmsg_parse_deprecated(cb->nlh,
9622 GENL_HDRLEN + nl80211_fam.hdrsize,
9623 attrbuf, nl80211_fam.maxattr,
9624 nl80211_policy, NULL);
9628 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
9630 err = PTR_ERR(rdev);
9633 phy_idx = rdev->wiphy_idx;
9635 if (attrbuf[NL80211_ATTR_TESTDATA])
9636 cb->args[1] = (long)attrbuf[NL80211_ATTR_TESTDATA];
9640 data = nla_data((void *)cb->args[1]);
9641 data_len = nla_len((void *)cb->args[1]);
9644 if (!rdev->ops->testmode_dump) {
9650 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
9651 cb->nlh->nlmsg_seq, NLM_F_MULTI,
9652 NL80211_CMD_TESTMODE);
9653 struct nlattr *tmdata;
9658 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
9659 genlmsg_cancel(skb, hdr);
9663 tmdata = nla_nest_start_noflag(skb, NL80211_ATTR_TESTDATA);
9665 genlmsg_cancel(skb, hdr);
9668 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
9669 nla_nest_end(skb, tmdata);
9671 if (err == -ENOBUFS || err == -ENOENT) {
9672 genlmsg_cancel(skb, hdr);
9675 genlmsg_cancel(skb, hdr);
9679 genlmsg_end(skb, hdr);
9684 cb->args[0] = phy_idx + 1;
9691 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
9693 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9694 struct net_device *dev = info->user_ptr[1];
9695 struct cfg80211_connect_params connect;
9696 struct wiphy *wiphy;
9697 struct cfg80211_cached_keys *connkeys = NULL;
9700 memset(&connect, 0, sizeof(connect));
9702 if (!info->attrs[NL80211_ATTR_SSID] ||
9703 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9706 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9708 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9709 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
9710 NL80211_CMD_CONNECT))
9713 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
9715 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
9717 if (info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS] &&
9718 !wiphy_ext_feature_isset(&rdev->wiphy,
9719 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
9721 connect.want_1x = info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS];
9723 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
9724 NL80211_MAX_NR_CIPHER_SUITES);
9728 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9729 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9732 wiphy = &rdev->wiphy;
9734 connect.bg_scan_period = -1;
9735 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
9736 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
9737 connect.bg_scan_period =
9738 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
9741 if (info->attrs[NL80211_ATTR_MAC])
9742 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9743 else if (info->attrs[NL80211_ATTR_MAC_HINT])
9744 connect.bssid_hint =
9745 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
9746 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9747 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9749 if (info->attrs[NL80211_ATTR_IE]) {
9750 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9751 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9754 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9755 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9756 if (connect.mfp == NL80211_MFP_OPTIONAL &&
9757 !wiphy_ext_feature_isset(&rdev->wiphy,
9758 NL80211_EXT_FEATURE_MFP_OPTIONAL))
9761 connect.mfp = NL80211_MFP_NO;
9764 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9765 connect.prev_bssid =
9766 nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9768 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
9769 connect.channel = nl80211_get_valid_chan(
9770 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9771 if (!connect.channel)
9773 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
9774 connect.channel_hint = nl80211_get_valid_chan(
9775 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
9776 if (!connect.channel_hint)
9780 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9781 connkeys = nl80211_parse_connkeys(rdev, info, NULL);
9782 if (IS_ERR(connkeys))
9783 return PTR_ERR(connkeys);
9786 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9787 connect.flags |= ASSOC_REQ_DISABLE_HT;
9789 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9790 memcpy(&connect.ht_capa_mask,
9791 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9792 sizeof(connect.ht_capa_mask));
9794 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9795 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
9799 memcpy(&connect.ht_capa,
9800 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9801 sizeof(connect.ht_capa));
9804 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9805 connect.flags |= ASSOC_REQ_DISABLE_VHT;
9807 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9808 memcpy(&connect.vht_capa_mask,
9809 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9810 sizeof(connect.vht_capa_mask));
9812 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9813 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
9817 memcpy(&connect.vht_capa,
9818 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9819 sizeof(connect.vht_capa));
9822 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9823 if (!((rdev->wiphy.features &
9824 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9825 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9826 !wiphy_ext_feature_isset(&rdev->wiphy,
9827 NL80211_EXT_FEATURE_RRM)) {
9831 connect.flags |= ASSOC_REQ_USE_RRM;
9834 connect.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
9835 if (connect.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ]) {
9840 if (info->attrs[NL80211_ATTR_BSS_SELECT]) {
9841 /* bss selection makes no sense if bssid is set */
9842 if (connect.bssid) {
9847 err = parse_bss_select(info->attrs[NL80211_ATTR_BSS_SELECT],
9848 wiphy, &connect.bss_select);
9855 if (wiphy_ext_feature_isset(&rdev->wiphy,
9856 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
9857 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9858 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9859 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9860 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9861 connect.fils_erp_username =
9862 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9863 connect.fils_erp_username_len =
9864 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9865 connect.fils_erp_realm =
9866 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9867 connect.fils_erp_realm_len =
9868 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9869 connect.fils_erp_next_seq_num =
9871 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9872 connect.fils_erp_rrk =
9873 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9874 connect.fils_erp_rrk_len =
9875 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9876 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9877 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9878 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9879 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9884 if (nla_get_flag(info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])) {
9885 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9887 GENL_SET_ERR_MSG(info,
9888 "external auth requires connection ownership");
9891 connect.flags |= CONNECT_REQ_EXTERNAL_AUTH_SUPPORT;
9894 wdev_lock(dev->ieee80211_ptr);
9896 err = cfg80211_connect(rdev, dev, &connect, connkeys,
9897 connect.prev_bssid);
9901 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9902 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9904 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9905 connect.bssid, ETH_ALEN);
9907 memset(dev->ieee80211_ptr->disconnect_bssid,
9911 wdev_unlock(dev->ieee80211_ptr);
9916 static int nl80211_update_connect_params(struct sk_buff *skb,
9917 struct genl_info *info)
9919 struct cfg80211_connect_params connect = {};
9920 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9921 struct net_device *dev = info->user_ptr[1];
9922 struct wireless_dev *wdev = dev->ieee80211_ptr;
9923 bool fils_sk_offload;
9928 if (!rdev->ops->update_connect_params)
9931 if (info->attrs[NL80211_ATTR_IE]) {
9932 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9933 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9934 changed |= UPDATE_ASSOC_IES;
9937 fils_sk_offload = wiphy_ext_feature_isset(&rdev->wiphy,
9938 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD);
9941 * when driver supports fils-sk offload all attributes must be
9942 * provided. So the else covers "fils-sk-not-all" and
9945 if (fils_sk_offload &&
9946 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9947 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9948 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9949 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9950 connect.fils_erp_username =
9951 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9952 connect.fils_erp_username_len =
9953 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9954 connect.fils_erp_realm =
9955 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9956 connect.fils_erp_realm_len =
9957 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9958 connect.fils_erp_next_seq_num =
9960 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9961 connect.fils_erp_rrk =
9962 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9963 connect.fils_erp_rrk_len =
9964 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9965 changed |= UPDATE_FILS_ERP_INFO;
9966 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9967 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9968 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9969 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9973 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9974 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9975 if (!nl80211_valid_auth_type(rdev, auth_type,
9976 NL80211_CMD_CONNECT))
9979 if (auth_type == NL80211_AUTHTYPE_FILS_SK &&
9980 fils_sk_offload && !(changed & UPDATE_FILS_ERP_INFO))
9983 connect.auth_type = auth_type;
9984 changed |= UPDATE_AUTH_TYPE;
9987 wdev_lock(dev->ieee80211_ptr);
9988 if (!wdev->current_bss)
9991 ret = rdev_update_connect_params(rdev, dev, &connect, changed);
9992 wdev_unlock(dev->ieee80211_ptr);
9997 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
9999 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10000 struct net_device *dev = info->user_ptr[1];
10004 if (dev->ieee80211_ptr->conn_owner_nlportid &&
10005 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
10008 if (!info->attrs[NL80211_ATTR_REASON_CODE])
10009 reason = WLAN_REASON_DEAUTH_LEAVING;
10011 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
10016 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10017 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
10018 return -EOPNOTSUPP;
10020 wdev_lock(dev->ieee80211_ptr);
10021 ret = cfg80211_disconnect(rdev, dev, reason, true);
10022 wdev_unlock(dev->ieee80211_ptr);
10026 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
10028 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10032 if (info->attrs[NL80211_ATTR_PID]) {
10033 u32 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
10035 net = get_net_ns_by_pid(pid);
10036 } else if (info->attrs[NL80211_ATTR_NETNS_FD]) {
10037 u32 fd = nla_get_u32(info->attrs[NL80211_ATTR_NETNS_FD]);
10039 net = get_net_ns_by_fd(fd);
10045 return PTR_ERR(net);
10049 /* check if anything to do */
10050 if (!net_eq(wiphy_net(&rdev->wiphy), net))
10051 err = cfg80211_switch_netns(rdev, net);
10057 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
10059 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10060 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
10061 struct cfg80211_pmksa *pmksa) = NULL;
10062 struct net_device *dev = info->user_ptr[1];
10063 struct cfg80211_pmksa pmksa;
10065 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
10067 if (!info->attrs[NL80211_ATTR_PMKID])
10070 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
10072 if (info->attrs[NL80211_ATTR_MAC]) {
10073 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
10074 } else if (info->attrs[NL80211_ATTR_SSID] &&
10075 info->attrs[NL80211_ATTR_FILS_CACHE_ID] &&
10076 (info->genlhdr->cmd == NL80211_CMD_DEL_PMKSA ||
10077 info->attrs[NL80211_ATTR_PMK])) {
10078 pmksa.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
10079 pmksa.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
10081 nla_data(info->attrs[NL80211_ATTR_FILS_CACHE_ID]);
10085 if (info->attrs[NL80211_ATTR_PMK]) {
10086 pmksa.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
10087 pmksa.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
10090 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10091 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT &&
10092 !(dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP &&
10093 wiphy_ext_feature_isset(&rdev->wiphy,
10094 NL80211_EXT_FEATURE_AP_PMKSA_CACHING)))
10095 return -EOPNOTSUPP;
10097 switch (info->genlhdr->cmd) {
10098 case NL80211_CMD_SET_PMKSA:
10099 rdev_ops = rdev->ops->set_pmksa;
10101 case NL80211_CMD_DEL_PMKSA:
10102 rdev_ops = rdev->ops->del_pmksa;
10110 return -EOPNOTSUPP;
10112 return rdev_ops(&rdev->wiphy, dev, &pmksa);
10115 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
10117 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10118 struct net_device *dev = info->user_ptr[1];
10120 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10121 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
10122 return -EOPNOTSUPP;
10124 if (!rdev->ops->flush_pmksa)
10125 return -EOPNOTSUPP;
10127 return rdev_flush_pmksa(rdev, dev);
10130 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
10132 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10133 struct net_device *dev = info->user_ptr[1];
10134 u8 action_code, dialog_token;
10135 u32 peer_capability = 0;
10140 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10141 !rdev->ops->tdls_mgmt)
10142 return -EOPNOTSUPP;
10144 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
10145 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
10146 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
10147 !info->attrs[NL80211_ATTR_IE] ||
10148 !info->attrs[NL80211_ATTR_MAC])
10151 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10152 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
10153 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
10154 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
10155 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
10156 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
10158 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
10160 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
10161 dialog_token, status_code, peer_capability,
10163 nla_data(info->attrs[NL80211_ATTR_IE]),
10164 nla_len(info->attrs[NL80211_ATTR_IE]));
10167 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
10169 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10170 struct net_device *dev = info->user_ptr[1];
10171 enum nl80211_tdls_operation operation;
10174 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10175 !rdev->ops->tdls_oper)
10176 return -EOPNOTSUPP;
10178 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
10179 !info->attrs[NL80211_ATTR_MAC])
10182 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
10183 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10185 return rdev_tdls_oper(rdev, dev, peer, operation);
10188 static int nl80211_remain_on_channel(struct sk_buff *skb,
10189 struct genl_info *info)
10191 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10192 struct wireless_dev *wdev = info->user_ptr[1];
10193 struct cfg80211_chan_def chandef;
10194 const struct cfg80211_chan_def *compat_chandef;
10195 struct sk_buff *msg;
10201 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
10202 !info->attrs[NL80211_ATTR_DURATION])
10205 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10207 if (!rdev->ops->remain_on_channel ||
10208 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
10209 return -EOPNOTSUPP;
10212 * We should be on that channel for at least a minimum amount of
10213 * time (10ms) but no longer than the driver supports.
10215 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10216 duration > rdev->wiphy.max_remain_on_channel_duration)
10219 err = nl80211_parse_chandef(rdev, info, &chandef);
10224 if (!cfg80211_off_channel_oper_allowed(wdev) &&
10225 !cfg80211_chandef_identical(&wdev->chandef, &chandef)) {
10226 compat_chandef = cfg80211_chandef_compatible(&wdev->chandef,
10228 if (compat_chandef != &chandef) {
10235 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10239 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10240 NL80211_CMD_REMAIN_ON_CHANNEL);
10246 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
10247 duration, &cookie);
10252 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10254 goto nla_put_failure;
10256 genlmsg_end(msg, hdr);
10258 return genlmsg_reply(msg, info);
10267 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
10268 struct genl_info *info)
10270 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10271 struct wireless_dev *wdev = info->user_ptr[1];
10274 if (!info->attrs[NL80211_ATTR_COOKIE])
10277 if (!rdev->ops->cancel_remain_on_channel)
10278 return -EOPNOTSUPP;
10280 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10282 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
10285 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
10286 struct genl_info *info)
10288 struct cfg80211_bitrate_mask mask;
10289 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10290 struct net_device *dev = info->user_ptr[1];
10293 if (!rdev->ops->set_bitrate_mask)
10294 return -EOPNOTSUPP;
10296 err = nl80211_parse_tx_bitrate_mask(info, &mask);
10300 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
10303 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
10305 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10306 struct wireless_dev *wdev = info->user_ptr[1];
10307 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
10309 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
10312 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
10313 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
10315 switch (wdev->iftype) {
10316 case NL80211_IFTYPE_STATION:
10317 case NL80211_IFTYPE_ADHOC:
10318 case NL80211_IFTYPE_P2P_CLIENT:
10319 case NL80211_IFTYPE_AP:
10320 case NL80211_IFTYPE_AP_VLAN:
10321 case NL80211_IFTYPE_MESH_POINT:
10322 case NL80211_IFTYPE_P2P_GO:
10323 case NL80211_IFTYPE_P2P_DEVICE:
10325 case NL80211_IFTYPE_NAN:
10327 return -EOPNOTSUPP;
10330 /* not much point in registering if we can't reply */
10331 if (!rdev->ops->mgmt_tx)
10332 return -EOPNOTSUPP;
10334 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
10335 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
10336 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
10339 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
10341 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10342 struct wireless_dev *wdev = info->user_ptr[1];
10343 struct cfg80211_chan_def chandef;
10347 struct sk_buff *msg = NULL;
10348 struct cfg80211_mgmt_tx_params params = {
10349 .dont_wait_for_ack =
10350 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
10353 if (!info->attrs[NL80211_ATTR_FRAME])
10356 if (!rdev->ops->mgmt_tx)
10357 return -EOPNOTSUPP;
10359 switch (wdev->iftype) {
10360 case NL80211_IFTYPE_P2P_DEVICE:
10361 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
10363 case NL80211_IFTYPE_STATION:
10364 case NL80211_IFTYPE_ADHOC:
10365 case NL80211_IFTYPE_P2P_CLIENT:
10366 case NL80211_IFTYPE_AP:
10367 case NL80211_IFTYPE_AP_VLAN:
10368 case NL80211_IFTYPE_MESH_POINT:
10369 case NL80211_IFTYPE_P2P_GO:
10371 case NL80211_IFTYPE_NAN:
10373 return -EOPNOTSUPP;
10376 if (info->attrs[NL80211_ATTR_DURATION]) {
10377 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10379 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10382 * We should wait on the channel for at least a minimum amount
10383 * of time (10ms) but no longer than the driver supports.
10385 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10386 params.wait > rdev->wiphy.max_remain_on_channel_duration)
10390 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
10392 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10395 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
10397 /* get the channel if any has been specified, otherwise pass NULL to
10398 * the driver. The latter will use the current one
10400 chandef.chan = NULL;
10401 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10402 err = nl80211_parse_chandef(rdev, info, &chandef);
10407 if (!chandef.chan && params.offchan)
10411 if (params.offchan && !cfg80211_off_channel_oper_allowed(wdev)) {
10417 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
10418 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
10420 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
10421 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10424 if (len % sizeof(u16))
10427 params.n_csa_offsets = len / sizeof(u16);
10428 params.csa_offsets =
10429 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10431 /* check that all the offsets fit the frame */
10432 for (i = 0; i < params.n_csa_offsets; i++) {
10433 if (params.csa_offsets[i] >= params.len)
10438 if (!params.dont_wait_for_ack) {
10439 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10443 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10444 NL80211_CMD_FRAME);
10451 params.chan = chandef.chan;
10452 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
10457 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10459 goto nla_put_failure;
10461 genlmsg_end(msg, hdr);
10462 return genlmsg_reply(msg, info);
10474 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
10476 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10477 struct wireless_dev *wdev = info->user_ptr[1];
10480 if (!info->attrs[NL80211_ATTR_COOKIE])
10483 if (!rdev->ops->mgmt_tx_cancel_wait)
10484 return -EOPNOTSUPP;
10486 switch (wdev->iftype) {
10487 case NL80211_IFTYPE_STATION:
10488 case NL80211_IFTYPE_ADHOC:
10489 case NL80211_IFTYPE_P2P_CLIENT:
10490 case NL80211_IFTYPE_AP:
10491 case NL80211_IFTYPE_AP_VLAN:
10492 case NL80211_IFTYPE_P2P_GO:
10493 case NL80211_IFTYPE_P2P_DEVICE:
10495 case NL80211_IFTYPE_NAN:
10497 return -EOPNOTSUPP;
10500 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10502 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
10505 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
10507 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10508 struct wireless_dev *wdev;
10509 struct net_device *dev = info->user_ptr[1];
10514 if (!info->attrs[NL80211_ATTR_PS_STATE])
10517 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
10519 wdev = dev->ieee80211_ptr;
10521 if (!rdev->ops->set_power_mgmt)
10522 return -EOPNOTSUPP;
10524 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
10526 if (state == wdev->ps)
10529 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
10535 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
10537 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10538 enum nl80211_ps_state ps_state;
10539 struct wireless_dev *wdev;
10540 struct net_device *dev = info->user_ptr[1];
10541 struct sk_buff *msg;
10545 wdev = dev->ieee80211_ptr;
10547 if (!rdev->ops->set_power_mgmt)
10548 return -EOPNOTSUPP;
10550 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10554 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10555 NL80211_CMD_GET_POWER_SAVE);
10562 ps_state = NL80211_PS_ENABLED;
10564 ps_state = NL80211_PS_DISABLED;
10566 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
10567 goto nla_put_failure;
10569 genlmsg_end(msg, hdr);
10570 return genlmsg_reply(msg, info);
10579 static const struct nla_policy
10580 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
10581 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_BINARY },
10582 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
10583 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
10584 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
10585 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
10586 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
10587 [NL80211_ATTR_CQM_RSSI_LEVEL] = { .type = NLA_S32 },
10590 static int nl80211_set_cqm_txe(struct genl_info *info,
10591 u32 rate, u32 pkts, u32 intvl)
10593 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10594 struct net_device *dev = info->user_ptr[1];
10595 struct wireless_dev *wdev = dev->ieee80211_ptr;
10597 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
10600 if (!rdev->ops->set_cqm_txe_config)
10601 return -EOPNOTSUPP;
10603 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10604 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10605 return -EOPNOTSUPP;
10607 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
10610 static int cfg80211_cqm_rssi_update(struct cfg80211_registered_device *rdev,
10611 struct net_device *dev)
10613 struct wireless_dev *wdev = dev->ieee80211_ptr;
10614 s32 last, low, high;
10616 int i, n, low_index;
10619 /* RSSI reporting disabled? */
10620 if (!wdev->cqm_config)
10621 return rdev_set_cqm_rssi_range_config(rdev, dev, 0, 0);
10624 * Obtain current RSSI value if possible, if not and no RSSI threshold
10625 * event has been received yet, we should receive an event after a
10626 * connection is established and enough beacons received to calculate
10629 if (!wdev->cqm_config->last_rssi_event_value && wdev->current_bss &&
10630 rdev->ops->get_station) {
10631 struct station_info sinfo = {};
10634 mac_addr = wdev->current_bss->pub.bssid;
10636 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
10640 if (sinfo.filled & BIT_ULL(NL80211_STA_INFO_BEACON_SIGNAL_AVG))
10641 wdev->cqm_config->last_rssi_event_value =
10642 (s8) sinfo.rx_beacon_signal_avg;
10645 last = wdev->cqm_config->last_rssi_event_value;
10646 hyst = wdev->cqm_config->rssi_hyst;
10647 n = wdev->cqm_config->n_rssi_thresholds;
10649 for (i = 0; i < n; i++)
10650 if (last < wdev->cqm_config->rssi_thresholds[i])
10654 if (low_index >= 0) {
10655 low_index = array_index_nospec(low_index, n);
10656 low = wdev->cqm_config->rssi_thresholds[low_index] - hyst;
10661 i = array_index_nospec(i, n);
10662 high = wdev->cqm_config->rssi_thresholds[i] + hyst - 1;
10667 return rdev_set_cqm_rssi_range_config(rdev, dev, low, high);
10670 static int nl80211_set_cqm_rssi(struct genl_info *info,
10671 const s32 *thresholds, int n_thresholds,
10674 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10675 struct net_device *dev = info->user_ptr[1];
10676 struct wireless_dev *wdev = dev->ieee80211_ptr;
10678 s32 prev = S32_MIN;
10680 /* Check all values negative and sorted */
10681 for (i = 0; i < n_thresholds; i++) {
10682 if (thresholds[i] > 0 || thresholds[i] <= prev)
10685 prev = thresholds[i];
10688 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10689 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10690 return -EOPNOTSUPP;
10693 cfg80211_cqm_config_free(wdev);
10696 if (n_thresholds <= 1 && rdev->ops->set_cqm_rssi_config) {
10697 if (n_thresholds == 0 || thresholds[0] == 0) /* Disabling */
10698 return rdev_set_cqm_rssi_config(rdev, dev, 0, 0);
10700 return rdev_set_cqm_rssi_config(rdev, dev,
10701 thresholds[0], hysteresis);
10704 if (!wiphy_ext_feature_isset(&rdev->wiphy,
10705 NL80211_EXT_FEATURE_CQM_RSSI_LIST))
10706 return -EOPNOTSUPP;
10708 if (n_thresholds == 1 && thresholds[0] == 0) /* Disabling */
10712 if (n_thresholds) {
10713 struct cfg80211_cqm_config *cqm_config;
10715 cqm_config = kzalloc(sizeof(struct cfg80211_cqm_config) +
10716 n_thresholds * sizeof(s32), GFP_KERNEL);
10722 cqm_config->rssi_hyst = hysteresis;
10723 cqm_config->n_rssi_thresholds = n_thresholds;
10724 memcpy(cqm_config->rssi_thresholds, thresholds,
10725 n_thresholds * sizeof(s32));
10727 wdev->cqm_config = cqm_config;
10730 err = cfg80211_cqm_rssi_update(rdev, dev);
10738 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
10740 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
10741 struct nlattr *cqm;
10744 cqm = info->attrs[NL80211_ATTR_CQM];
10748 err = nla_parse_nested_deprecated(attrs, NL80211_ATTR_CQM_MAX, cqm,
10749 nl80211_attr_cqm_policy,
10754 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
10755 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
10756 const s32 *thresholds =
10757 nla_data(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10758 int len = nla_len(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10759 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
10764 return nl80211_set_cqm_rssi(info, thresholds, len / 4,
10768 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
10769 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
10770 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
10771 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
10772 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
10773 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
10775 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
10781 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
10783 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10784 struct net_device *dev = info->user_ptr[1];
10785 struct ocb_setup setup = {};
10788 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10792 return cfg80211_join_ocb(rdev, dev, &setup);
10795 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
10797 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10798 struct net_device *dev = info->user_ptr[1];
10800 return cfg80211_leave_ocb(rdev, dev);
10803 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
10805 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10806 struct net_device *dev = info->user_ptr[1];
10807 struct mesh_config cfg;
10808 struct mesh_setup setup;
10811 /* start with default */
10812 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
10813 memcpy(&setup, &default_mesh_setup, sizeof(setup));
10815 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
10816 /* and parse parameters if given */
10817 err = nl80211_parse_mesh_config(info, &cfg, NULL);
10822 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
10823 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
10826 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
10827 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
10829 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
10830 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
10831 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
10834 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
10835 setup.beacon_interval =
10836 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
10838 err = cfg80211_validate_beacon_int(rdev,
10839 NL80211_IFTYPE_MESH_POINT,
10840 setup.beacon_interval);
10845 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
10846 setup.dtim_period =
10847 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
10848 if (setup.dtim_period < 1 || setup.dtim_period > 100)
10852 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
10853 /* parse additional setup parameters if given */
10854 err = nl80211_parse_mesh_setup(info, &setup);
10859 if (setup.user_mpm)
10860 cfg.auto_open_plinks = false;
10862 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10863 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10867 /* __cfg80211_join_mesh() will sort it out */
10868 setup.chandef.chan = NULL;
10871 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
10872 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10874 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10875 struct ieee80211_supported_band *sband;
10877 if (!setup.chandef.chan)
10880 sband = rdev->wiphy.bands[setup.chandef.chan->band];
10882 err = ieee80211_get_ratemask(sband, rates, n_rates,
10883 &setup.basic_rates);
10888 if (info->attrs[NL80211_ATTR_TX_RATES]) {
10889 err = nl80211_parse_tx_bitrate_mask(info, &setup.beacon_rate);
10893 if (!setup.chandef.chan)
10896 err = validate_beacon_tx_rate(rdev, setup.chandef.chan->band,
10897 &setup.beacon_rate);
10902 setup.userspace_handles_dfs =
10903 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
10905 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
10906 int r = validate_pae_over_nl80211(rdev, info);
10911 setup.control_port_over_nl80211 = true;
10914 wdev_lock(dev->ieee80211_ptr);
10915 err = __cfg80211_join_mesh(rdev, dev, &setup, &cfg);
10916 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER])
10917 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
10918 wdev_unlock(dev->ieee80211_ptr);
10923 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
10925 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10926 struct net_device *dev = info->user_ptr[1];
10928 return cfg80211_leave_mesh(rdev, dev);
10932 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
10933 struct cfg80211_registered_device *rdev)
10935 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
10936 struct nlattr *nl_pats, *nl_pat;
10939 if (!wowlan->n_patterns)
10942 nl_pats = nla_nest_start_noflag(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
10946 for (i = 0; i < wowlan->n_patterns; i++) {
10947 nl_pat = nla_nest_start_noflag(msg, i + 1);
10950 pat_len = wowlan->patterns[i].pattern_len;
10951 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
10952 wowlan->patterns[i].mask) ||
10953 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
10954 wowlan->patterns[i].pattern) ||
10955 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
10956 wowlan->patterns[i].pkt_offset))
10958 nla_nest_end(msg, nl_pat);
10960 nla_nest_end(msg, nl_pats);
10965 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
10966 struct cfg80211_wowlan_tcp *tcp)
10968 struct nlattr *nl_tcp;
10973 nl_tcp = nla_nest_start_noflag(msg,
10974 NL80211_WOWLAN_TRIG_TCP_CONNECTION);
10978 if (nla_put_in_addr(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
10979 nla_put_in_addr(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
10980 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
10981 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
10982 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
10983 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
10984 tcp->payload_len, tcp->payload) ||
10985 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
10986 tcp->data_interval) ||
10987 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
10988 tcp->wake_len, tcp->wake_data) ||
10989 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
10990 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
10993 if (tcp->payload_seq.len &&
10994 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
10995 sizeof(tcp->payload_seq), &tcp->payload_seq))
10998 if (tcp->payload_tok.len &&
10999 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
11000 sizeof(tcp->payload_tok) + tcp->tokens_size,
11001 &tcp->payload_tok))
11004 nla_nest_end(msg, nl_tcp);
11009 static int nl80211_send_wowlan_nd(struct sk_buff *msg,
11010 struct cfg80211_sched_scan_request *req)
11012 struct nlattr *nd, *freqs, *matches, *match, *scan_plans, *scan_plan;
11018 nd = nla_nest_start_noflag(msg, NL80211_WOWLAN_TRIG_NET_DETECT);
11022 if (req->n_scan_plans == 1 &&
11023 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL,
11024 req->scan_plans[0].interval * 1000))
11027 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_DELAY, req->delay))
11030 if (req->relative_rssi_set) {
11031 struct nl80211_bss_select_rssi_adjust rssi_adjust;
11033 if (nla_put_s8(msg, NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI,
11034 req->relative_rssi))
11037 rssi_adjust.band = req->rssi_adjust.band;
11038 rssi_adjust.delta = req->rssi_adjust.delta;
11039 if (nla_put(msg, NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST,
11040 sizeof(rssi_adjust), &rssi_adjust))
11044 freqs = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_FREQUENCIES);
11048 for (i = 0; i < req->n_channels; i++) {
11049 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
11053 nla_nest_end(msg, freqs);
11055 if (req->n_match_sets) {
11056 matches = nla_nest_start_noflag(msg,
11057 NL80211_ATTR_SCHED_SCAN_MATCH);
11061 for (i = 0; i < req->n_match_sets; i++) {
11062 match = nla_nest_start_noflag(msg, i);
11066 if (nla_put(msg, NL80211_SCHED_SCAN_MATCH_ATTR_SSID,
11067 req->match_sets[i].ssid.ssid_len,
11068 req->match_sets[i].ssid.ssid))
11070 nla_nest_end(msg, match);
11072 nla_nest_end(msg, matches);
11075 scan_plans = nla_nest_start_noflag(msg, NL80211_ATTR_SCHED_SCAN_PLANS);
11079 for (i = 0; i < req->n_scan_plans; i++) {
11080 scan_plan = nla_nest_start_noflag(msg, i + 1);
11084 if (nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_INTERVAL,
11085 req->scan_plans[i].interval) ||
11086 (req->scan_plans[i].iterations &&
11087 nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_ITERATIONS,
11088 req->scan_plans[i].iterations)))
11090 nla_nest_end(msg, scan_plan);
11092 nla_nest_end(msg, scan_plans);
11094 nla_nest_end(msg, nd);
11099 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
11101 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11102 struct sk_buff *msg;
11104 u32 size = NLMSG_DEFAULT_SIZE;
11106 if (!rdev->wiphy.wowlan)
11107 return -EOPNOTSUPP;
11109 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
11110 /* adjust size to have room for all the data */
11111 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
11112 rdev->wiphy.wowlan_config->tcp->payload_len +
11113 rdev->wiphy.wowlan_config->tcp->wake_len +
11114 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
11117 msg = nlmsg_new(size, GFP_KERNEL);
11121 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11122 NL80211_CMD_GET_WOWLAN);
11124 goto nla_put_failure;
11126 if (rdev->wiphy.wowlan_config) {
11127 struct nlattr *nl_wowlan;
11129 nl_wowlan = nla_nest_start_noflag(msg,
11130 NL80211_ATTR_WOWLAN_TRIGGERS);
11132 goto nla_put_failure;
11134 if ((rdev->wiphy.wowlan_config->any &&
11135 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
11136 (rdev->wiphy.wowlan_config->disconnect &&
11137 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
11138 (rdev->wiphy.wowlan_config->magic_pkt &&
11139 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
11140 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
11141 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
11142 (rdev->wiphy.wowlan_config->eap_identity_req &&
11143 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
11144 (rdev->wiphy.wowlan_config->four_way_handshake &&
11145 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
11146 (rdev->wiphy.wowlan_config->rfkill_release &&
11147 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
11148 goto nla_put_failure;
11150 if (nl80211_send_wowlan_patterns(msg, rdev))
11151 goto nla_put_failure;
11153 if (nl80211_send_wowlan_tcp(msg,
11154 rdev->wiphy.wowlan_config->tcp))
11155 goto nla_put_failure;
11157 if (nl80211_send_wowlan_nd(
11159 rdev->wiphy.wowlan_config->nd_config))
11160 goto nla_put_failure;
11162 nla_nest_end(msg, nl_wowlan);
11165 genlmsg_end(msg, hdr);
11166 return genlmsg_reply(msg, info);
11173 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
11174 struct nlattr *attr,
11175 struct cfg80211_wowlan *trig)
11177 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
11178 struct cfg80211_wowlan_tcp *cfg;
11179 struct nl80211_wowlan_tcp_data_token *tok = NULL;
11180 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
11182 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
11185 if (!rdev->wiphy.wowlan->tcp)
11188 err = nla_parse_nested_deprecated(tb, MAX_NL80211_WOWLAN_TCP, attr,
11189 nl80211_wowlan_tcp_policy, NULL);
11193 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
11194 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
11195 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
11196 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
11197 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
11198 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
11199 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
11200 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
11203 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
11204 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
11207 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
11208 rdev->wiphy.wowlan->tcp->data_interval_max ||
11209 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
11212 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
11213 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
11216 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
11217 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
11220 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
11221 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11223 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11224 tokens_size = tokln - sizeof(*tok);
11226 if (!tok->len || tokens_size % tok->len)
11228 if (!rdev->wiphy.wowlan->tcp->tok)
11230 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
11232 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
11234 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
11236 if (tok->offset + tok->len > data_size)
11240 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
11241 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
11242 if (!rdev->wiphy.wowlan->tcp->seq)
11244 if (seq->len == 0 || seq->len > 4)
11246 if (seq->len + seq->offset > data_size)
11250 size = sizeof(*cfg);
11252 size += wake_size + wake_mask_size;
11253 size += tokens_size;
11255 cfg = kzalloc(size, GFP_KERNEL);
11258 cfg->src = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
11259 cfg->dst = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
11260 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
11262 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
11263 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
11267 /* allocate a socket and port for it and use it */
11268 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
11269 IPPROTO_TCP, &cfg->sock, 1);
11274 if (inet_csk_get_port(cfg->sock->sk, port)) {
11275 sock_release(cfg->sock);
11277 return -EADDRINUSE;
11279 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
11285 cfg->src_port = port;
11288 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
11289 cfg->payload_len = data_size;
11290 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
11291 memcpy((void *)cfg->payload,
11292 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
11295 cfg->payload_seq = *seq;
11296 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
11297 cfg->wake_len = wake_size;
11298 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
11299 memcpy((void *)cfg->wake_data,
11300 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
11302 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
11303 data_size + wake_size;
11304 memcpy((void *)cfg->wake_mask,
11305 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
11308 cfg->tokens_size = tokens_size;
11309 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
11317 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
11318 const struct wiphy_wowlan_support *wowlan,
11319 struct nlattr *attr,
11320 struct cfg80211_wowlan *trig)
11322 struct nlattr **tb;
11325 tb = kcalloc(NUM_NL80211_ATTR, sizeof(*tb), GFP_KERNEL);
11329 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
11334 err = nla_parse_nested_deprecated(tb, NL80211_ATTR_MAX, attr,
11335 nl80211_policy, NULL);
11339 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb,
11340 wowlan->max_nd_match_sets);
11341 err = PTR_ERR_OR_ZERO(trig->nd_config);
11343 trig->nd_config = NULL;
11350 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
11352 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11353 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
11354 struct cfg80211_wowlan new_triggers = {};
11355 struct cfg80211_wowlan *ntrig;
11356 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
11358 bool prev_enabled = rdev->wiphy.wowlan_config;
11359 bool regular = false;
11362 return -EOPNOTSUPP;
11364 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
11365 cfg80211_rdev_free_wowlan(rdev);
11366 rdev->wiphy.wowlan_config = NULL;
11370 err = nla_parse_nested_deprecated(tb, MAX_NL80211_WOWLAN_TRIG,
11371 info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS],
11372 nl80211_wowlan_policy, info->extack);
11376 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
11377 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
11379 new_triggers.any = true;
11382 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
11383 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
11385 new_triggers.disconnect = true;
11389 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
11390 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
11392 new_triggers.magic_pkt = true;
11396 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
11399 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
11400 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
11402 new_triggers.gtk_rekey_failure = true;
11406 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
11407 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
11409 new_triggers.eap_identity_req = true;
11413 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
11414 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
11416 new_triggers.four_way_handshake = true;
11420 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
11421 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
11423 new_triggers.rfkill_release = true;
11427 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
11428 struct nlattr *pat;
11429 int n_patterns = 0;
11430 int rem, pat_len, mask_len, pkt_offset;
11431 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11435 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11438 if (n_patterns > wowlan->n_patterns)
11441 new_triggers.patterns = kcalloc(n_patterns,
11442 sizeof(new_triggers.patterns[0]),
11444 if (!new_triggers.patterns)
11447 new_triggers.n_patterns = n_patterns;
11450 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11454 err = nla_parse_nested_deprecated(pat_tb,
11455 MAX_NL80211_PKTPAT,
11457 nl80211_packet_pattern_policy,
11463 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11464 !pat_tb[NL80211_PKTPAT_PATTERN])
11466 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11467 mask_len = DIV_ROUND_UP(pat_len, 8);
11468 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11470 if (pat_len > wowlan->pattern_max_len ||
11471 pat_len < wowlan->pattern_min_len)
11474 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11477 pkt_offset = nla_get_u32(
11478 pat_tb[NL80211_PKTPAT_OFFSET]);
11479 if (pkt_offset > wowlan->max_pkt_offset)
11481 new_triggers.patterns[i].pkt_offset = pkt_offset;
11483 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11488 new_triggers.patterns[i].mask = mask_pat;
11489 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11491 mask_pat += mask_len;
11492 new_triggers.patterns[i].pattern = mask_pat;
11493 new_triggers.patterns[i].pattern_len = pat_len;
11495 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11501 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
11503 err = nl80211_parse_wowlan_tcp(
11504 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
11510 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
11512 err = nl80211_parse_wowlan_nd(
11513 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
11519 /* The 'any' trigger means the device continues operating more or less
11520 * as in its normal operation mode and wakes up the host on most of the
11521 * normal interrupts (like packet RX, ...)
11522 * It therefore makes little sense to combine with the more constrained
11523 * wakeup trigger modes.
11525 if (new_triggers.any && regular) {
11530 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
11535 cfg80211_rdev_free_wowlan(rdev);
11536 rdev->wiphy.wowlan_config = ntrig;
11539 if (rdev->ops->set_wakeup &&
11540 prev_enabled != !!rdev->wiphy.wowlan_config)
11541 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
11545 for (i = 0; i < new_triggers.n_patterns; i++)
11546 kfree(new_triggers.patterns[i].mask);
11547 kfree(new_triggers.patterns);
11548 if (new_triggers.tcp && new_triggers.tcp->sock)
11549 sock_release(new_triggers.tcp->sock);
11550 kfree(new_triggers.tcp);
11551 kfree(new_triggers.nd_config);
11556 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
11557 struct cfg80211_registered_device *rdev)
11559 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
11561 struct cfg80211_coalesce_rules *rule;
11563 if (!rdev->coalesce->n_rules)
11566 nl_rules = nla_nest_start_noflag(msg, NL80211_ATTR_COALESCE_RULE);
11570 for (i = 0; i < rdev->coalesce->n_rules; i++) {
11571 nl_rule = nla_nest_start_noflag(msg, i + 1);
11575 rule = &rdev->coalesce->rules[i];
11576 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
11580 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
11584 nl_pats = nla_nest_start_noflag(msg,
11585 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
11589 for (j = 0; j < rule->n_patterns; j++) {
11590 nl_pat = nla_nest_start_noflag(msg, j + 1);
11593 pat_len = rule->patterns[j].pattern_len;
11594 if (nla_put(msg, NL80211_PKTPAT_MASK,
11595 DIV_ROUND_UP(pat_len, 8),
11596 rule->patterns[j].mask) ||
11597 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
11598 rule->patterns[j].pattern) ||
11599 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
11600 rule->patterns[j].pkt_offset))
11602 nla_nest_end(msg, nl_pat);
11604 nla_nest_end(msg, nl_pats);
11605 nla_nest_end(msg, nl_rule);
11607 nla_nest_end(msg, nl_rules);
11612 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
11614 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11615 struct sk_buff *msg;
11618 if (!rdev->wiphy.coalesce)
11619 return -EOPNOTSUPP;
11621 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11625 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11626 NL80211_CMD_GET_COALESCE);
11628 goto nla_put_failure;
11630 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
11631 goto nla_put_failure;
11633 genlmsg_end(msg, hdr);
11634 return genlmsg_reply(msg, info);
11641 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
11643 struct cfg80211_coalesce *coalesce = rdev->coalesce;
11645 struct cfg80211_coalesce_rules *rule;
11650 for (i = 0; i < coalesce->n_rules; i++) {
11651 rule = &coalesce->rules[i];
11652 for (j = 0; j < rule->n_patterns; j++)
11653 kfree(rule->patterns[j].mask);
11654 kfree(rule->patterns);
11656 kfree(coalesce->rules);
11658 rdev->coalesce = NULL;
11661 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
11662 struct nlattr *rule,
11663 struct cfg80211_coalesce_rules *new_rule)
11666 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11667 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
11668 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
11669 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11671 err = nla_parse_nested_deprecated(tb, NL80211_ATTR_COALESCE_RULE_MAX,
11672 rule, nl80211_coalesce_policy, NULL);
11676 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
11678 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
11679 if (new_rule->delay > coalesce->max_delay)
11682 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
11683 new_rule->condition =
11684 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
11686 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
11689 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11692 if (n_patterns > coalesce->n_patterns)
11695 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
11697 if (!new_rule->patterns)
11700 new_rule->n_patterns = n_patterns;
11703 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11707 err = nla_parse_nested_deprecated(pat_tb, MAX_NL80211_PKTPAT,
11709 nl80211_packet_pattern_policy,
11714 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11715 !pat_tb[NL80211_PKTPAT_PATTERN])
11717 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11718 mask_len = DIV_ROUND_UP(pat_len, 8);
11719 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11721 if (pat_len > coalesce->pattern_max_len ||
11722 pat_len < coalesce->pattern_min_len)
11725 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11728 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
11729 if (pkt_offset > coalesce->max_pkt_offset)
11731 new_rule->patterns[i].pkt_offset = pkt_offset;
11733 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11737 new_rule->patterns[i].mask = mask_pat;
11738 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11741 mask_pat += mask_len;
11742 new_rule->patterns[i].pattern = mask_pat;
11743 new_rule->patterns[i].pattern_len = pat_len;
11744 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11752 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
11754 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11755 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11756 struct cfg80211_coalesce new_coalesce = {};
11757 struct cfg80211_coalesce *n_coalesce;
11758 int err, rem_rule, n_rules = 0, i, j;
11759 struct nlattr *rule;
11760 struct cfg80211_coalesce_rules *tmp_rule;
11762 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
11763 return -EOPNOTSUPP;
11765 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
11766 cfg80211_rdev_free_coalesce(rdev);
11767 rdev_set_coalesce(rdev, NULL);
11771 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11774 if (n_rules > coalesce->n_rules)
11777 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
11779 if (!new_coalesce.rules)
11782 new_coalesce.n_rules = n_rules;
11785 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11787 err = nl80211_parse_coalesce_rule(rdev, rule,
11788 &new_coalesce.rules[i]);
11795 err = rdev_set_coalesce(rdev, &new_coalesce);
11799 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
11804 cfg80211_rdev_free_coalesce(rdev);
11805 rdev->coalesce = n_coalesce;
11809 for (i = 0; i < new_coalesce.n_rules; i++) {
11810 tmp_rule = &new_coalesce.rules[i];
11811 for (j = 0; j < tmp_rule->n_patterns; j++)
11812 kfree(tmp_rule->patterns[j].mask);
11813 kfree(tmp_rule->patterns);
11815 kfree(new_coalesce.rules);
11820 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
11822 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11823 struct net_device *dev = info->user_ptr[1];
11824 struct wireless_dev *wdev = dev->ieee80211_ptr;
11825 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
11826 struct cfg80211_gtk_rekey_data rekey_data;
11829 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
11832 err = nla_parse_nested_deprecated(tb, MAX_NL80211_REKEY_DATA,
11833 info->attrs[NL80211_ATTR_REKEY_DATA],
11834 nl80211_rekey_policy, info->extack);
11838 if (!tb[NL80211_REKEY_DATA_REPLAY_CTR] || !tb[NL80211_REKEY_DATA_KEK] ||
11839 !tb[NL80211_REKEY_DATA_KCK])
11841 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
11843 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
11845 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
11848 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
11849 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
11850 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
11853 if (!wdev->current_bss) {
11858 if (!rdev->ops->set_rekey_data) {
11863 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
11869 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
11870 struct genl_info *info)
11872 struct net_device *dev = info->user_ptr[1];
11873 struct wireless_dev *wdev = dev->ieee80211_ptr;
11875 if (wdev->iftype != NL80211_IFTYPE_AP &&
11876 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11879 if (wdev->ap_unexpected_nlportid)
11882 wdev->ap_unexpected_nlportid = info->snd_portid;
11886 static int nl80211_probe_client(struct sk_buff *skb,
11887 struct genl_info *info)
11889 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11890 struct net_device *dev = info->user_ptr[1];
11891 struct wireless_dev *wdev = dev->ieee80211_ptr;
11892 struct sk_buff *msg;
11898 if (wdev->iftype != NL80211_IFTYPE_AP &&
11899 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11900 return -EOPNOTSUPP;
11902 if (!info->attrs[NL80211_ATTR_MAC])
11905 if (!rdev->ops->probe_client)
11906 return -EOPNOTSUPP;
11908 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11912 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11913 NL80211_CMD_PROBE_CLIENT);
11919 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
11921 err = rdev_probe_client(rdev, dev, addr, &cookie);
11925 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
11927 goto nla_put_failure;
11929 genlmsg_end(msg, hdr);
11931 return genlmsg_reply(msg, info);
11940 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
11942 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11943 struct cfg80211_beacon_registration *reg, *nreg;
11946 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
11947 return -EOPNOTSUPP;
11949 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
11953 /* First, check if already registered. */
11954 spin_lock_bh(&rdev->beacon_registrations_lock);
11955 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11956 if (reg->nlportid == info->snd_portid) {
11961 /* Add it to the list */
11962 nreg->nlportid = info->snd_portid;
11963 list_add(&nreg->list, &rdev->beacon_registrations);
11965 spin_unlock_bh(&rdev->beacon_registrations_lock);
11969 spin_unlock_bh(&rdev->beacon_registrations_lock);
11974 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
11976 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11977 struct wireless_dev *wdev = info->user_ptr[1];
11980 if (!rdev->ops->start_p2p_device)
11981 return -EOPNOTSUPP;
11983 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11984 return -EOPNOTSUPP;
11986 if (wdev_running(wdev))
11989 if (rfkill_blocked(rdev->rfkill))
11992 err = rdev_start_p2p_device(rdev, wdev);
11996 wdev->is_running = true;
12002 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
12004 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12005 struct wireless_dev *wdev = info->user_ptr[1];
12007 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
12008 return -EOPNOTSUPP;
12010 if (!rdev->ops->stop_p2p_device)
12011 return -EOPNOTSUPP;
12013 cfg80211_stop_p2p_device(rdev, wdev);
12018 static int nl80211_start_nan(struct sk_buff *skb, struct genl_info *info)
12020 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12021 struct wireless_dev *wdev = info->user_ptr[1];
12022 struct cfg80211_nan_conf conf = {};
12025 if (wdev->iftype != NL80211_IFTYPE_NAN)
12026 return -EOPNOTSUPP;
12028 if (wdev_running(wdev))
12031 if (rfkill_blocked(rdev->rfkill))
12034 if (!info->attrs[NL80211_ATTR_NAN_MASTER_PREF])
12038 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12040 if (info->attrs[NL80211_ATTR_BANDS]) {
12041 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12043 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12044 return -EOPNOTSUPP;
12046 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12049 conf.bands = bands;
12052 err = rdev_start_nan(rdev, wdev, &conf);
12056 wdev->is_running = true;
12062 static int nl80211_stop_nan(struct sk_buff *skb, struct genl_info *info)
12064 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12065 struct wireless_dev *wdev = info->user_ptr[1];
12067 if (wdev->iftype != NL80211_IFTYPE_NAN)
12068 return -EOPNOTSUPP;
12070 cfg80211_stop_nan(rdev, wdev);
12075 static int validate_nan_filter(struct nlattr *filter_attr)
12077 struct nlattr *attr;
12078 int len = 0, n_entries = 0, rem;
12080 nla_for_each_nested(attr, filter_attr, rem) {
12081 len += nla_len(attr);
12091 static int handle_nan_filter(struct nlattr *attr_filter,
12092 struct cfg80211_nan_func *func,
12095 struct nlattr *attr;
12096 int n_entries, rem, i;
12097 struct cfg80211_nan_func_filter *filter;
12099 n_entries = validate_nan_filter(attr_filter);
12103 BUILD_BUG_ON(sizeof(*func->rx_filters) != sizeof(*func->tx_filters));
12105 filter = kcalloc(n_entries, sizeof(*func->rx_filters), GFP_KERNEL);
12110 nla_for_each_nested(attr, attr_filter, rem) {
12111 filter[i].filter = nla_memdup(attr, GFP_KERNEL);
12112 filter[i].len = nla_len(attr);
12116 func->num_tx_filters = n_entries;
12117 func->tx_filters = filter;
12119 func->num_rx_filters = n_entries;
12120 func->rx_filters = filter;
12126 static int nl80211_nan_add_func(struct sk_buff *skb,
12127 struct genl_info *info)
12129 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12130 struct wireless_dev *wdev = info->user_ptr[1];
12131 struct nlattr *tb[NUM_NL80211_NAN_FUNC_ATTR], *func_attr;
12132 struct cfg80211_nan_func *func;
12133 struct sk_buff *msg = NULL;
12137 if (wdev->iftype != NL80211_IFTYPE_NAN)
12138 return -EOPNOTSUPP;
12140 if (!wdev_running(wdev))
12143 if (!info->attrs[NL80211_ATTR_NAN_FUNC])
12146 err = nla_parse_nested_deprecated(tb, NL80211_NAN_FUNC_ATTR_MAX,
12147 info->attrs[NL80211_ATTR_NAN_FUNC],
12148 nl80211_nan_func_policy,
12153 func = kzalloc(sizeof(*func), GFP_KERNEL);
12157 func->cookie = cfg80211_assign_cookie(rdev);
12159 if (!tb[NL80211_NAN_FUNC_TYPE] ||
12160 nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]) > NL80211_NAN_FUNC_MAX_TYPE) {
12166 func->type = nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]);
12168 if (!tb[NL80211_NAN_FUNC_SERVICE_ID]) {
12173 memcpy(func->service_id, nla_data(tb[NL80211_NAN_FUNC_SERVICE_ID]),
12174 sizeof(func->service_id));
12176 func->close_range =
12177 nla_get_flag(tb[NL80211_NAN_FUNC_CLOSE_RANGE]);
12179 if (tb[NL80211_NAN_FUNC_SERVICE_INFO]) {
12180 func->serv_spec_info_len =
12181 nla_len(tb[NL80211_NAN_FUNC_SERVICE_INFO]);
12182 func->serv_spec_info =
12183 kmemdup(nla_data(tb[NL80211_NAN_FUNC_SERVICE_INFO]),
12184 func->serv_spec_info_len,
12186 if (!func->serv_spec_info) {
12192 if (tb[NL80211_NAN_FUNC_TTL])
12193 func->ttl = nla_get_u32(tb[NL80211_NAN_FUNC_TTL]);
12195 switch (func->type) {
12196 case NL80211_NAN_FUNC_PUBLISH:
12197 if (!tb[NL80211_NAN_FUNC_PUBLISH_TYPE]) {
12202 func->publish_type =
12203 nla_get_u8(tb[NL80211_NAN_FUNC_PUBLISH_TYPE]);
12204 func->publish_bcast =
12205 nla_get_flag(tb[NL80211_NAN_FUNC_PUBLISH_BCAST]);
12207 if ((!(func->publish_type & NL80211_NAN_SOLICITED_PUBLISH)) &&
12208 func->publish_bcast) {
12213 case NL80211_NAN_FUNC_SUBSCRIBE:
12214 func->subscribe_active =
12215 nla_get_flag(tb[NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE]);
12217 case NL80211_NAN_FUNC_FOLLOW_UP:
12218 if (!tb[NL80211_NAN_FUNC_FOLLOW_UP_ID] ||
12219 !tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] ||
12220 !tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]) {
12225 func->followup_id =
12226 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_ID]);
12227 func->followup_reqid =
12228 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID]);
12229 memcpy(func->followup_dest.addr,
12230 nla_data(tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]),
12231 sizeof(func->followup_dest.addr));
12242 if (tb[NL80211_NAN_FUNC_SRF]) {
12243 struct nlattr *srf_tb[NUM_NL80211_NAN_SRF_ATTR];
12245 err = nla_parse_nested_deprecated(srf_tb,
12246 NL80211_NAN_SRF_ATTR_MAX,
12247 tb[NL80211_NAN_FUNC_SRF],
12248 nl80211_nan_srf_policy,
12253 func->srf_include =
12254 nla_get_flag(srf_tb[NL80211_NAN_SRF_INCLUDE]);
12256 if (srf_tb[NL80211_NAN_SRF_BF]) {
12257 if (srf_tb[NL80211_NAN_SRF_MAC_ADDRS] ||
12258 !srf_tb[NL80211_NAN_SRF_BF_IDX]) {
12264 nla_len(srf_tb[NL80211_NAN_SRF_BF]);
12266 kmemdup(nla_data(srf_tb[NL80211_NAN_SRF_BF]),
12267 func->srf_bf_len, GFP_KERNEL);
12268 if (!func->srf_bf) {
12274 nla_get_u8(srf_tb[NL80211_NAN_SRF_BF_IDX]);
12276 struct nlattr *attr, *mac_attr =
12277 srf_tb[NL80211_NAN_SRF_MAC_ADDRS];
12278 int n_entries, rem, i = 0;
12285 n_entries = validate_acl_mac_addrs(mac_attr);
12286 if (n_entries <= 0) {
12291 func->srf_num_macs = n_entries;
12293 kcalloc(n_entries, sizeof(*func->srf_macs),
12295 if (!func->srf_macs) {
12300 nla_for_each_nested(attr, mac_attr, rem)
12301 memcpy(func->srf_macs[i++].addr, nla_data(attr),
12302 sizeof(*func->srf_macs));
12306 if (tb[NL80211_NAN_FUNC_TX_MATCH_FILTER]) {
12307 err = handle_nan_filter(tb[NL80211_NAN_FUNC_TX_MATCH_FILTER],
12313 if (tb[NL80211_NAN_FUNC_RX_MATCH_FILTER]) {
12314 err = handle_nan_filter(tb[NL80211_NAN_FUNC_RX_MATCH_FILTER],
12320 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12326 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12327 NL80211_CMD_ADD_NAN_FUNCTION);
12328 /* This can't really happen - we just allocated 4KB */
12329 if (WARN_ON(!hdr)) {
12334 err = rdev_add_nan_func(rdev, wdev, func);
12337 cfg80211_free_nan_func(func);
12342 /* propagate the instance id and cookie to userspace */
12343 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, func->cookie,
12345 goto nla_put_failure;
12347 func_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_FUNC);
12349 goto nla_put_failure;
12351 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID,
12352 func->instance_id))
12353 goto nla_put_failure;
12355 nla_nest_end(msg, func_attr);
12357 genlmsg_end(msg, hdr);
12358 return genlmsg_reply(msg, info);
12365 static int nl80211_nan_del_func(struct sk_buff *skb,
12366 struct genl_info *info)
12368 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12369 struct wireless_dev *wdev = info->user_ptr[1];
12372 if (wdev->iftype != NL80211_IFTYPE_NAN)
12373 return -EOPNOTSUPP;
12375 if (!wdev_running(wdev))
12378 if (!info->attrs[NL80211_ATTR_COOKIE])
12381 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
12383 rdev_del_nan_func(rdev, wdev, cookie);
12388 static int nl80211_nan_change_config(struct sk_buff *skb,
12389 struct genl_info *info)
12391 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12392 struct wireless_dev *wdev = info->user_ptr[1];
12393 struct cfg80211_nan_conf conf = {};
12396 if (wdev->iftype != NL80211_IFTYPE_NAN)
12397 return -EOPNOTSUPP;
12399 if (!wdev_running(wdev))
12402 if (info->attrs[NL80211_ATTR_NAN_MASTER_PREF]) {
12404 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12405 if (conf.master_pref <= 1 || conf.master_pref == 255)
12408 changed |= CFG80211_NAN_CONF_CHANGED_PREF;
12411 if (info->attrs[NL80211_ATTR_BANDS]) {
12412 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12414 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12415 return -EOPNOTSUPP;
12417 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12420 conf.bands = bands;
12421 changed |= CFG80211_NAN_CONF_CHANGED_BANDS;
12427 return rdev_nan_change_conf(rdev, wdev, &conf, changed);
12430 void cfg80211_nan_match(struct wireless_dev *wdev,
12431 struct cfg80211_nan_match_params *match, gfp_t gfp)
12433 struct wiphy *wiphy = wdev->wiphy;
12434 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12435 struct nlattr *match_attr, *local_func_attr, *peer_func_attr;
12436 struct sk_buff *msg;
12439 if (WARN_ON(!match->inst_id || !match->peer_inst_id || !match->addr))
12442 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12446 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NAN_MATCH);
12452 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12453 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12454 wdev->netdev->ifindex)) ||
12455 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12457 goto nla_put_failure;
12459 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, match->cookie,
12460 NL80211_ATTR_PAD) ||
12461 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, match->addr))
12462 goto nla_put_failure;
12464 match_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_MATCH);
12466 goto nla_put_failure;
12468 local_func_attr = nla_nest_start_noflag(msg,
12469 NL80211_NAN_MATCH_FUNC_LOCAL);
12470 if (!local_func_attr)
12471 goto nla_put_failure;
12473 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->inst_id))
12474 goto nla_put_failure;
12476 nla_nest_end(msg, local_func_attr);
12478 peer_func_attr = nla_nest_start_noflag(msg,
12479 NL80211_NAN_MATCH_FUNC_PEER);
12480 if (!peer_func_attr)
12481 goto nla_put_failure;
12483 if (nla_put_u8(msg, NL80211_NAN_FUNC_TYPE, match->type) ||
12484 nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->peer_inst_id))
12485 goto nla_put_failure;
12487 if (match->info && match->info_len &&
12488 nla_put(msg, NL80211_NAN_FUNC_SERVICE_INFO, match->info_len,
12490 goto nla_put_failure;
12492 nla_nest_end(msg, peer_func_attr);
12493 nla_nest_end(msg, match_attr);
12494 genlmsg_end(msg, hdr);
12496 if (!wdev->owner_nlportid)
12497 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12498 msg, 0, NL80211_MCGRP_NAN, gfp);
12500 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12501 wdev->owner_nlportid);
12508 EXPORT_SYMBOL(cfg80211_nan_match);
12510 void cfg80211_nan_func_terminated(struct wireless_dev *wdev,
12512 enum nl80211_nan_func_term_reason reason,
12513 u64 cookie, gfp_t gfp)
12515 struct wiphy *wiphy = wdev->wiphy;
12516 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12517 struct sk_buff *msg;
12518 struct nlattr *func_attr;
12521 if (WARN_ON(!inst_id))
12524 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12528 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_NAN_FUNCTION);
12534 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12535 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12536 wdev->netdev->ifindex)) ||
12537 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12539 goto nla_put_failure;
12541 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
12543 goto nla_put_failure;
12545 func_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_FUNC);
12547 goto nla_put_failure;
12549 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, inst_id) ||
12550 nla_put_u8(msg, NL80211_NAN_FUNC_TERM_REASON, reason))
12551 goto nla_put_failure;
12553 nla_nest_end(msg, func_attr);
12554 genlmsg_end(msg, hdr);
12556 if (!wdev->owner_nlportid)
12557 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12558 msg, 0, NL80211_MCGRP_NAN, gfp);
12560 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12561 wdev->owner_nlportid);
12568 EXPORT_SYMBOL(cfg80211_nan_func_terminated);
12570 static int nl80211_get_protocol_features(struct sk_buff *skb,
12571 struct genl_info *info)
12574 struct sk_buff *msg;
12576 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12580 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12581 NL80211_CMD_GET_PROTOCOL_FEATURES);
12583 goto nla_put_failure;
12585 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
12586 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
12587 goto nla_put_failure;
12589 genlmsg_end(msg, hdr);
12590 return genlmsg_reply(msg, info);
12597 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
12599 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12600 struct cfg80211_update_ft_ies_params ft_params;
12601 struct net_device *dev = info->user_ptr[1];
12603 if (!rdev->ops->update_ft_ies)
12604 return -EOPNOTSUPP;
12606 if (!info->attrs[NL80211_ATTR_MDID] ||
12607 !info->attrs[NL80211_ATTR_IE])
12610 memset(&ft_params, 0, sizeof(ft_params));
12611 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
12612 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
12613 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
12615 return rdev_update_ft_ies(rdev, dev, &ft_params);
12618 static int nl80211_crit_protocol_start(struct sk_buff *skb,
12619 struct genl_info *info)
12621 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12622 struct wireless_dev *wdev = info->user_ptr[1];
12623 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
12627 if (!rdev->ops->crit_proto_start)
12628 return -EOPNOTSUPP;
12630 if (WARN_ON(!rdev->ops->crit_proto_stop))
12633 if (rdev->crit_proto_nlportid)
12636 /* determine protocol if provided */
12637 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
12638 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
12640 if (proto >= NUM_NL80211_CRIT_PROTO)
12643 /* timeout must be provided */
12644 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
12648 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
12650 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
12653 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
12655 rdev->crit_proto_nlportid = info->snd_portid;
12660 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
12661 struct genl_info *info)
12663 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12664 struct wireless_dev *wdev = info->user_ptr[1];
12666 if (!rdev->ops->crit_proto_stop)
12667 return -EOPNOTSUPP;
12669 if (rdev->crit_proto_nlportid) {
12670 rdev->crit_proto_nlportid = 0;
12671 rdev_crit_proto_stop(rdev, wdev);
12676 static int nl80211_vendor_check_policy(const struct wiphy_vendor_command *vcmd,
12677 struct nlattr *attr,
12678 struct netlink_ext_ack *extack)
12680 if (vcmd->policy == VENDOR_CMD_RAW_DATA) {
12681 if (attr->nla_type & NLA_F_NESTED) {
12682 NL_SET_ERR_MSG_ATTR(extack, attr,
12683 "unexpected nested data");
12690 if (!(attr->nla_type & NLA_F_NESTED)) {
12691 NL_SET_ERR_MSG_ATTR(extack, attr, "expected nested data");
12695 return nl80211_validate_nested(attr, vcmd->maxattr, vcmd->policy,
12699 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
12701 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12702 struct wireless_dev *wdev =
12703 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
12707 if (!rdev->wiphy.vendor_commands)
12708 return -EOPNOTSUPP;
12710 if (IS_ERR(wdev)) {
12711 err = PTR_ERR(wdev);
12712 if (err != -EINVAL)
12715 } else if (wdev->wiphy != &rdev->wiphy) {
12719 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
12720 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
12723 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
12724 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
12725 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
12726 const struct wiphy_vendor_command *vcmd;
12730 vcmd = &rdev->wiphy.vendor_commands[i];
12732 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12735 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12736 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12739 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12743 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12744 if (!wdev_running(wdev))
12749 return -EOPNOTSUPP;
12754 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
12755 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12756 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12758 err = nl80211_vendor_check_policy(vcmd,
12759 info->attrs[NL80211_ATTR_VENDOR_DATA],
12765 rdev->cur_cmd_info = info;
12766 err = vcmd->doit(&rdev->wiphy, wdev, data, len);
12767 rdev->cur_cmd_info = NULL;
12771 return -EOPNOTSUPP;
12774 static int nl80211_prepare_vendor_dump(struct sk_buff *skb,
12775 struct netlink_callback *cb,
12776 struct cfg80211_registered_device **rdev,
12777 struct wireless_dev **wdev)
12779 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
12785 unsigned int data_len = 0;
12788 /* subtract the 1 again here */
12789 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
12790 struct wireless_dev *tmp;
12794 *rdev = wiphy_to_rdev(wiphy);
12798 list_for_each_entry(tmp, &wiphy->wdev_list, list) {
12799 if (tmp->identifier == cb->args[1] - 1) {
12806 /* keep rtnl locked in successful case */
12810 err = nlmsg_parse_deprecated(cb->nlh,
12811 GENL_HDRLEN + nl80211_fam.hdrsize,
12812 attrbuf, nl80211_fam.maxattr,
12813 nl80211_policy, NULL);
12817 if (!attrbuf[NL80211_ATTR_VENDOR_ID] ||
12818 !attrbuf[NL80211_ATTR_VENDOR_SUBCMD])
12821 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk), attrbuf);
12825 *rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
12827 return PTR_ERR(*rdev);
12829 vid = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_ID]);
12830 subcmd = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_SUBCMD]);
12832 for (i = 0; i < (*rdev)->wiphy.n_vendor_commands; i++) {
12833 const struct wiphy_vendor_command *vcmd;
12835 vcmd = &(*rdev)->wiphy.vendor_commands[i];
12837 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12841 return -EOPNOTSUPP;
12848 return -EOPNOTSUPP;
12850 if (attrbuf[NL80211_ATTR_VENDOR_DATA]) {
12851 data = nla_data(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12852 data_len = nla_len(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12854 err = nl80211_vendor_check_policy(
12855 &(*rdev)->wiphy.vendor_commands[vcmd_idx],
12856 attrbuf[NL80211_ATTR_VENDOR_DATA],
12862 /* 0 is the first index - add 1 to parse only once */
12863 cb->args[0] = (*rdev)->wiphy_idx + 1;
12864 /* add 1 to know if it was NULL */
12865 cb->args[1] = *wdev ? (*wdev)->identifier + 1 : 0;
12866 cb->args[2] = vcmd_idx;
12867 cb->args[3] = (unsigned long)data;
12868 cb->args[4] = data_len;
12870 /* keep rtnl locked in successful case */
12874 static int nl80211_vendor_cmd_dump(struct sk_buff *skb,
12875 struct netlink_callback *cb)
12877 struct cfg80211_registered_device *rdev;
12878 struct wireless_dev *wdev;
12879 unsigned int vcmd_idx;
12880 const struct wiphy_vendor_command *vcmd;
12884 struct nlattr *vendor_data;
12887 err = nl80211_prepare_vendor_dump(skb, cb, &rdev, &wdev);
12891 vcmd_idx = cb->args[2];
12892 data = (void *)cb->args[3];
12893 data_len = cb->args[4];
12894 vcmd = &rdev->wiphy.vendor_commands[vcmd_idx];
12896 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12897 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12902 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12908 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12909 if (!wdev_running(wdev)) {
12917 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
12918 cb->nlh->nlmsg_seq, NLM_F_MULTI,
12919 NL80211_CMD_VENDOR);
12923 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12924 (wdev && nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
12926 NL80211_ATTR_PAD))) {
12927 genlmsg_cancel(skb, hdr);
12931 vendor_data = nla_nest_start_noflag(skb,
12932 NL80211_ATTR_VENDOR_DATA);
12933 if (!vendor_data) {
12934 genlmsg_cancel(skb, hdr);
12938 err = vcmd->dumpit(&rdev->wiphy, wdev, skb, data, data_len,
12939 (unsigned long *)&cb->args[5]);
12940 nla_nest_end(skb, vendor_data);
12942 if (err == -ENOBUFS || err == -ENOENT) {
12943 genlmsg_cancel(skb, hdr);
12946 genlmsg_cancel(skb, hdr);
12950 genlmsg_end(skb, hdr);
12959 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
12960 enum nl80211_commands cmd,
12961 enum nl80211_attrs attr,
12964 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12966 if (WARN_ON(!rdev->cur_cmd_info))
12969 return __cfg80211_alloc_vendor_skb(rdev, NULL, approxlen,
12970 rdev->cur_cmd_info->snd_portid,
12971 rdev->cur_cmd_info->snd_seq,
12972 cmd, attr, NULL, GFP_KERNEL);
12974 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
12976 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
12978 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
12979 void *hdr = ((void **)skb->cb)[1];
12980 struct nlattr *data = ((void **)skb->cb)[2];
12982 /* clear CB data for netlink core to own from now on */
12983 memset(skb->cb, 0, sizeof(skb->cb));
12985 if (WARN_ON(!rdev->cur_cmd_info)) {
12990 nla_nest_end(skb, data);
12991 genlmsg_end(skb, hdr);
12992 return genlmsg_reply(skb, rdev->cur_cmd_info);
12994 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
12996 unsigned int cfg80211_vendor_cmd_get_sender(struct wiphy *wiphy)
12998 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
13000 if (WARN_ON(!rdev->cur_cmd_info))
13003 return rdev->cur_cmd_info->snd_portid;
13005 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_get_sender);
13007 static int nl80211_set_qos_map(struct sk_buff *skb,
13008 struct genl_info *info)
13010 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13011 struct cfg80211_qos_map *qos_map = NULL;
13012 struct net_device *dev = info->user_ptr[1];
13013 u8 *pos, len, num_des, des_len, des;
13016 if (!rdev->ops->set_qos_map)
13017 return -EOPNOTSUPP;
13019 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
13020 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
13021 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
13023 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
13024 len > IEEE80211_QOS_MAP_LEN_MAX)
13027 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
13031 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
13033 des_len = num_des *
13034 sizeof(struct cfg80211_dscp_exception);
13035 memcpy(qos_map->dscp_exception, pos, des_len);
13036 qos_map->num_des = num_des;
13037 for (des = 0; des < num_des; des++) {
13038 if (qos_map->dscp_exception[des].up > 7) {
13045 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
13048 wdev_lock(dev->ieee80211_ptr);
13049 ret = nl80211_key_allowed(dev->ieee80211_ptr);
13051 ret = rdev_set_qos_map(rdev, dev, qos_map);
13052 wdev_unlock(dev->ieee80211_ptr);
13058 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
13060 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13061 struct net_device *dev = info->user_ptr[1];
13062 struct wireless_dev *wdev = dev->ieee80211_ptr;
13065 u16 admitted_time = 0;
13068 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
13069 return -EOPNOTSUPP;
13071 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
13072 !info->attrs[NL80211_ATTR_USER_PRIO])
13075 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
13076 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
13078 /* WMM uses TIDs 0-7 even for TSPEC */
13079 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
13080 /* TODO: handle 802.11 TSPEC/admission control
13081 * need more attributes for that (e.g. BA session requirement);
13082 * change the WMM adminssion test above to allow both then
13087 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
13089 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
13091 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
13092 if (!admitted_time)
13097 switch (wdev->iftype) {
13098 case NL80211_IFTYPE_STATION:
13099 case NL80211_IFTYPE_P2P_CLIENT:
13100 if (wdev->current_bss)
13109 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
13116 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
13118 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13119 struct net_device *dev = info->user_ptr[1];
13120 struct wireless_dev *wdev = dev->ieee80211_ptr;
13125 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
13128 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
13129 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
13132 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
13138 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
13139 struct genl_info *info)
13141 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13142 struct net_device *dev = info->user_ptr[1];
13143 struct wireless_dev *wdev = dev->ieee80211_ptr;
13144 struct cfg80211_chan_def chandef = {};
13149 if (!rdev->ops->tdls_channel_switch ||
13150 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13151 return -EOPNOTSUPP;
13153 switch (dev->ieee80211_ptr->iftype) {
13154 case NL80211_IFTYPE_STATION:
13155 case NL80211_IFTYPE_P2P_CLIENT:
13158 return -EOPNOTSUPP;
13161 if (!info->attrs[NL80211_ATTR_MAC] ||
13162 !info->attrs[NL80211_ATTR_OPER_CLASS])
13165 err = nl80211_parse_chandef(rdev, info, &chandef);
13170 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
13171 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
13172 * specification is not defined for them.
13174 if (chandef.chan->band == NL80211_BAND_2GHZ &&
13175 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
13176 chandef.width != NL80211_CHAN_WIDTH_20)
13179 /* we will be active on the TDLS link */
13180 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
13184 /* don't allow switching to DFS channels */
13185 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
13188 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13189 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
13192 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
13198 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
13199 struct genl_info *info)
13201 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13202 struct net_device *dev = info->user_ptr[1];
13203 struct wireless_dev *wdev = dev->ieee80211_ptr;
13206 if (!rdev->ops->tdls_channel_switch ||
13207 !rdev->ops->tdls_cancel_channel_switch ||
13208 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13209 return -EOPNOTSUPP;
13211 switch (dev->ieee80211_ptr->iftype) {
13212 case NL80211_IFTYPE_STATION:
13213 case NL80211_IFTYPE_P2P_CLIENT:
13216 return -EOPNOTSUPP;
13219 if (!info->attrs[NL80211_ATTR_MAC])
13222 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13225 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
13231 static int nl80211_set_multicast_to_unicast(struct sk_buff *skb,
13232 struct genl_info *info)
13234 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13235 struct net_device *dev = info->user_ptr[1];
13236 struct wireless_dev *wdev = dev->ieee80211_ptr;
13237 const struct nlattr *nla;
13240 if (!rdev->ops->set_multicast_to_unicast)
13241 return -EOPNOTSUPP;
13243 if (wdev->iftype != NL80211_IFTYPE_AP &&
13244 wdev->iftype != NL80211_IFTYPE_P2P_GO)
13245 return -EOPNOTSUPP;
13247 nla = info->attrs[NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED];
13248 enabled = nla_get_flag(nla);
13250 return rdev_set_multicast_to_unicast(rdev, dev, enabled);
13253 static int nl80211_set_pmk(struct sk_buff *skb, struct genl_info *info)
13255 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13256 struct net_device *dev = info->user_ptr[1];
13257 struct wireless_dev *wdev = dev->ieee80211_ptr;
13258 struct cfg80211_pmk_conf pmk_conf = {};
13261 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13262 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13263 return -EOPNOTSUPP;
13265 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13266 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13267 return -EOPNOTSUPP;
13269 if (!info->attrs[NL80211_ATTR_MAC] || !info->attrs[NL80211_ATTR_PMK])
13273 if (!wdev->current_bss) {
13278 pmk_conf.aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13279 if (memcmp(pmk_conf.aa, wdev->current_bss->pub.bssid, ETH_ALEN)) {
13284 pmk_conf.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
13285 pmk_conf.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
13286 if (pmk_conf.pmk_len != WLAN_PMK_LEN &&
13287 pmk_conf.pmk_len != WLAN_PMK_LEN_SUITE_B_192) {
13292 if (info->attrs[NL80211_ATTR_PMKR0_NAME]) {
13293 int r0_name_len = nla_len(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13295 if (r0_name_len != WLAN_PMK_NAME_LEN) {
13300 pmk_conf.pmk_r0_name =
13301 nla_data(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13304 ret = rdev_set_pmk(rdev, dev, &pmk_conf);
13310 static int nl80211_del_pmk(struct sk_buff *skb, struct genl_info *info)
13312 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13313 struct net_device *dev = info->user_ptr[1];
13314 struct wireless_dev *wdev = dev->ieee80211_ptr;
13318 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13319 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13320 return -EOPNOTSUPP;
13322 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13323 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13324 return -EOPNOTSUPP;
13326 if (!info->attrs[NL80211_ATTR_MAC])
13330 aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13331 ret = rdev_del_pmk(rdev, dev, aa);
13337 static int nl80211_external_auth(struct sk_buff *skb, struct genl_info *info)
13339 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13340 struct net_device *dev = info->user_ptr[1];
13341 struct cfg80211_external_auth_params params;
13343 if (!rdev->ops->external_auth)
13344 return -EOPNOTSUPP;
13346 if (!info->attrs[NL80211_ATTR_SSID] &&
13347 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
13348 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
13351 if (!info->attrs[NL80211_ATTR_BSSID])
13354 if (!info->attrs[NL80211_ATTR_STATUS_CODE])
13357 memset(¶ms, 0, sizeof(params));
13359 if (info->attrs[NL80211_ATTR_SSID]) {
13360 params.ssid.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
13361 if (params.ssid.ssid_len == 0 ||
13362 params.ssid.ssid_len > IEEE80211_MAX_SSID_LEN)
13364 memcpy(params.ssid.ssid,
13365 nla_data(info->attrs[NL80211_ATTR_SSID]),
13366 params.ssid.ssid_len);
13369 memcpy(params.bssid, nla_data(info->attrs[NL80211_ATTR_BSSID]),
13372 params.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13374 if (info->attrs[NL80211_ATTR_PMKID])
13375 params.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
13377 return rdev_external_auth(rdev, dev, ¶ms);
13380 static int nl80211_tx_control_port(struct sk_buff *skb, struct genl_info *info)
13382 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13383 struct net_device *dev = info->user_ptr[1];
13384 struct wireless_dev *wdev = dev->ieee80211_ptr;
13392 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13393 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
13394 return -EOPNOTSUPP;
13396 if (!rdev->ops->tx_control_port)
13397 return -EOPNOTSUPP;
13399 if (!info->attrs[NL80211_ATTR_FRAME] ||
13400 !info->attrs[NL80211_ATTR_MAC] ||
13401 !info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
13402 GENL_SET_ERR_MSG(info, "Frame, MAC or ethertype missing");
13408 switch (wdev->iftype) {
13409 case NL80211_IFTYPE_AP:
13410 case NL80211_IFTYPE_P2P_GO:
13411 case NL80211_IFTYPE_MESH_POINT:
13413 case NL80211_IFTYPE_ADHOC:
13414 case NL80211_IFTYPE_STATION:
13415 case NL80211_IFTYPE_P2P_CLIENT:
13416 if (wdev->current_bss)
13427 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13428 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13429 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13430 proto = nla_get_u16(info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
13432 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT]);
13434 return rdev_tx_control_port(rdev, dev, buf, len,
13435 dest, cpu_to_be16(proto), noencrypt);
13442 static int nl80211_get_ftm_responder_stats(struct sk_buff *skb,
13443 struct genl_info *info)
13445 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13446 struct net_device *dev = info->user_ptr[1];
13447 struct wireless_dev *wdev = dev->ieee80211_ptr;
13448 struct cfg80211_ftm_responder_stats ftm_stats = {};
13449 struct sk_buff *msg;
13451 struct nlattr *ftm_stats_attr;
13454 if (wdev->iftype != NL80211_IFTYPE_AP || !wdev->beacon_interval)
13455 return -EOPNOTSUPP;
13457 err = rdev_get_ftm_responder_stats(rdev, dev, &ftm_stats);
13461 if (!ftm_stats.filled)
13464 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
13468 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
13469 NL80211_CMD_GET_FTM_RESPONDER_STATS);
13473 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
13474 goto nla_put_failure;
13476 ftm_stats_attr = nla_nest_start_noflag(msg,
13477 NL80211_ATTR_FTM_RESPONDER_STATS);
13478 if (!ftm_stats_attr)
13479 goto nla_put_failure;
13481 #define SET_FTM(field, name, type) \
13482 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13483 nla_put_ ## type(msg, NL80211_FTM_STATS_ ## name, \
13484 ftm_stats.field)) \
13485 goto nla_put_failure; } while (0)
13486 #define SET_FTM_U64(field, name) \
13487 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13488 nla_put_u64_64bit(msg, NL80211_FTM_STATS_ ## name, \
13489 ftm_stats.field, NL80211_FTM_STATS_PAD)) \
13490 goto nla_put_failure; } while (0)
13492 SET_FTM(success_num, SUCCESS_NUM, u32);
13493 SET_FTM(partial_num, PARTIAL_NUM, u32);
13494 SET_FTM(failed_num, FAILED_NUM, u32);
13495 SET_FTM(asap_num, ASAP_NUM, u32);
13496 SET_FTM(non_asap_num, NON_ASAP_NUM, u32);
13497 SET_FTM_U64(total_duration_ms, TOTAL_DURATION_MSEC);
13498 SET_FTM(unknown_triggers_num, UNKNOWN_TRIGGERS_NUM, u32);
13499 SET_FTM(reschedule_requests_num, RESCHEDULE_REQUESTS_NUM, u32);
13500 SET_FTM(out_of_window_triggers_num, OUT_OF_WINDOW_TRIGGERS_NUM, u32);
13503 nla_nest_end(msg, ftm_stats_attr);
13505 genlmsg_end(msg, hdr);
13506 return genlmsg_reply(msg, info);
13513 static int nl80211_update_owe_info(struct sk_buff *skb, struct genl_info *info)
13515 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13516 struct cfg80211_update_owe_info owe_info;
13517 struct net_device *dev = info->user_ptr[1];
13519 if (!rdev->ops->update_owe_info)
13520 return -EOPNOTSUPP;
13522 if (!info->attrs[NL80211_ATTR_STATUS_CODE] ||
13523 !info->attrs[NL80211_ATTR_MAC])
13526 memset(&owe_info, 0, sizeof(owe_info));
13527 owe_info.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13528 nla_memcpy(owe_info.peer, info->attrs[NL80211_ATTR_MAC], ETH_ALEN);
13530 if (info->attrs[NL80211_ATTR_IE]) {
13531 owe_info.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
13532 owe_info.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
13535 return rdev_update_owe_info(rdev, dev, &owe_info);
13538 static int nl80211_probe_mesh_link(struct sk_buff *skb, struct genl_info *info)
13540 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13541 struct net_device *dev = info->user_ptr[1];
13542 struct wireless_dev *wdev = dev->ieee80211_ptr;
13543 struct station_info sinfo = {};
13549 if (!rdev->ops->probe_mesh_link || !rdev->ops->get_station)
13550 return -EOPNOTSUPP;
13552 if (!info->attrs[NL80211_ATTR_MAC] ||
13553 !info->attrs[NL80211_ATTR_FRAME]) {
13554 GENL_SET_ERR_MSG(info, "Frame or MAC missing");
13558 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
13559 return -EOPNOTSUPP;
13561 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13562 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13563 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13565 if (len < sizeof(struct ethhdr))
13568 if (!ether_addr_equal(buf, dest) || is_multicast_ether_addr(buf) ||
13569 !ether_addr_equal(buf + ETH_ALEN, dev->dev_addr))
13572 err = rdev_get_station(rdev, dev, dest, &sinfo);
13576 return rdev_probe_mesh_link(rdev, dev, dest, buf, len);
13579 #define NL80211_FLAG_NEED_WIPHY 0x01
13580 #define NL80211_FLAG_NEED_NETDEV 0x02
13581 #define NL80211_FLAG_NEED_RTNL 0x04
13582 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
13583 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
13584 NL80211_FLAG_CHECK_NETDEV_UP)
13585 #define NL80211_FLAG_NEED_WDEV 0x10
13586 /* If a netdev is associated, it must be UP, P2P must be started */
13587 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
13588 NL80211_FLAG_CHECK_NETDEV_UP)
13589 #define NL80211_FLAG_CLEAR_SKB 0x20
13591 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
13592 struct genl_info *info)
13594 struct cfg80211_registered_device *rdev;
13595 struct wireless_dev *wdev;
13596 struct net_device *dev;
13597 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
13602 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
13603 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
13604 if (IS_ERR(rdev)) {
13607 return PTR_ERR(rdev);
13609 info->user_ptr[0] = rdev;
13610 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
13611 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13614 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
13616 if (IS_ERR(wdev)) {
13619 return PTR_ERR(wdev);
13622 dev = wdev->netdev;
13623 rdev = wiphy_to_rdev(wdev->wiphy);
13625 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
13632 info->user_ptr[1] = dev;
13634 info->user_ptr[1] = wdev;
13637 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
13638 !wdev_running(wdev)) {
13647 info->user_ptr[0] = rdev;
13653 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
13654 struct genl_info *info)
13656 if (info->user_ptr[1]) {
13657 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13658 struct wireless_dev *wdev = info->user_ptr[1];
13661 dev_put(wdev->netdev);
13663 dev_put(info->user_ptr[1]);
13667 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
13670 /* If needed, clear the netlink message payload from the SKB
13671 * as it might contain key data that shouldn't stick around on
13672 * the heap after the SKB is freed. The netlink message header
13673 * is still needed for further processing, so leave it intact.
13675 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
13676 struct nlmsghdr *nlh = nlmsg_hdr(skb);
13678 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
13682 static const struct genl_ops nl80211_ops[] = {
13684 .cmd = NL80211_CMD_GET_WIPHY,
13685 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13686 .doit = nl80211_get_wiphy,
13687 .dumpit = nl80211_dump_wiphy,
13688 .done = nl80211_dump_wiphy_done,
13689 /* can be retrieved by unprivileged users */
13690 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13691 NL80211_FLAG_NEED_RTNL,
13694 .cmd = NL80211_CMD_SET_WIPHY,
13695 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13696 .doit = nl80211_set_wiphy,
13697 .flags = GENL_UNS_ADMIN_PERM,
13698 .internal_flags = NL80211_FLAG_NEED_RTNL,
13701 .cmd = NL80211_CMD_GET_INTERFACE,
13702 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13703 .doit = nl80211_get_interface,
13704 .dumpit = nl80211_dump_interface,
13705 /* can be retrieved by unprivileged users */
13706 .internal_flags = NL80211_FLAG_NEED_WDEV |
13707 NL80211_FLAG_NEED_RTNL,
13710 .cmd = NL80211_CMD_SET_INTERFACE,
13711 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13712 .doit = nl80211_set_interface,
13713 .flags = GENL_UNS_ADMIN_PERM,
13714 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13715 NL80211_FLAG_NEED_RTNL,
13718 .cmd = NL80211_CMD_NEW_INTERFACE,
13719 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13720 .doit = nl80211_new_interface,
13721 .flags = GENL_UNS_ADMIN_PERM,
13722 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13723 NL80211_FLAG_NEED_RTNL,
13726 .cmd = NL80211_CMD_DEL_INTERFACE,
13727 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13728 .doit = nl80211_del_interface,
13729 .flags = GENL_UNS_ADMIN_PERM,
13730 .internal_flags = NL80211_FLAG_NEED_WDEV |
13731 NL80211_FLAG_NEED_RTNL,
13734 .cmd = NL80211_CMD_GET_KEY,
13735 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13736 .doit = nl80211_get_key,
13737 .flags = GENL_UNS_ADMIN_PERM,
13738 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13739 NL80211_FLAG_NEED_RTNL,
13742 .cmd = NL80211_CMD_SET_KEY,
13743 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13744 .doit = nl80211_set_key,
13745 .flags = GENL_UNS_ADMIN_PERM,
13746 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13747 NL80211_FLAG_NEED_RTNL |
13748 NL80211_FLAG_CLEAR_SKB,
13751 .cmd = NL80211_CMD_NEW_KEY,
13752 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13753 .doit = nl80211_new_key,
13754 .flags = GENL_UNS_ADMIN_PERM,
13755 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13756 NL80211_FLAG_NEED_RTNL |
13757 NL80211_FLAG_CLEAR_SKB,
13760 .cmd = NL80211_CMD_DEL_KEY,
13761 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13762 .doit = nl80211_del_key,
13763 .flags = GENL_UNS_ADMIN_PERM,
13764 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13765 NL80211_FLAG_NEED_RTNL,
13768 .cmd = NL80211_CMD_SET_BEACON,
13769 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13770 .flags = GENL_UNS_ADMIN_PERM,
13771 .doit = nl80211_set_beacon,
13772 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13773 NL80211_FLAG_NEED_RTNL,
13776 .cmd = NL80211_CMD_START_AP,
13777 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13778 .flags = GENL_UNS_ADMIN_PERM,
13779 .doit = nl80211_start_ap,
13780 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13781 NL80211_FLAG_NEED_RTNL,
13784 .cmd = NL80211_CMD_STOP_AP,
13785 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13786 .flags = GENL_UNS_ADMIN_PERM,
13787 .doit = nl80211_stop_ap,
13788 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13789 NL80211_FLAG_NEED_RTNL,
13792 .cmd = NL80211_CMD_GET_STATION,
13793 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13794 .doit = nl80211_get_station,
13795 .dumpit = nl80211_dump_station,
13796 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13797 NL80211_FLAG_NEED_RTNL,
13800 .cmd = NL80211_CMD_SET_STATION,
13801 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13802 .doit = nl80211_set_station,
13803 .flags = GENL_UNS_ADMIN_PERM,
13804 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13805 NL80211_FLAG_NEED_RTNL,
13808 .cmd = NL80211_CMD_NEW_STATION,
13809 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13810 .doit = nl80211_new_station,
13811 .flags = GENL_UNS_ADMIN_PERM,
13812 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13813 NL80211_FLAG_NEED_RTNL,
13816 .cmd = NL80211_CMD_DEL_STATION,
13817 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13818 .doit = nl80211_del_station,
13819 .flags = GENL_UNS_ADMIN_PERM,
13820 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13821 NL80211_FLAG_NEED_RTNL,
13824 .cmd = NL80211_CMD_GET_MPATH,
13825 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13826 .doit = nl80211_get_mpath,
13827 .dumpit = nl80211_dump_mpath,
13828 .flags = GENL_UNS_ADMIN_PERM,
13829 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13830 NL80211_FLAG_NEED_RTNL,
13833 .cmd = NL80211_CMD_GET_MPP,
13834 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13835 .doit = nl80211_get_mpp,
13836 .dumpit = nl80211_dump_mpp,
13837 .flags = GENL_UNS_ADMIN_PERM,
13838 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13839 NL80211_FLAG_NEED_RTNL,
13842 .cmd = NL80211_CMD_SET_MPATH,
13843 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13844 .doit = nl80211_set_mpath,
13845 .flags = GENL_UNS_ADMIN_PERM,
13846 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13847 NL80211_FLAG_NEED_RTNL,
13850 .cmd = NL80211_CMD_NEW_MPATH,
13851 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13852 .doit = nl80211_new_mpath,
13853 .flags = GENL_UNS_ADMIN_PERM,
13854 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13855 NL80211_FLAG_NEED_RTNL,
13858 .cmd = NL80211_CMD_DEL_MPATH,
13859 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13860 .doit = nl80211_del_mpath,
13861 .flags = GENL_UNS_ADMIN_PERM,
13862 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13863 NL80211_FLAG_NEED_RTNL,
13866 .cmd = NL80211_CMD_SET_BSS,
13867 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13868 .doit = nl80211_set_bss,
13869 .flags = GENL_UNS_ADMIN_PERM,
13870 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13871 NL80211_FLAG_NEED_RTNL,
13874 .cmd = NL80211_CMD_GET_REG,
13875 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13876 .doit = nl80211_get_reg_do,
13877 .dumpit = nl80211_get_reg_dump,
13878 .internal_flags = NL80211_FLAG_NEED_RTNL,
13879 /* can be retrieved by unprivileged users */
13881 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
13883 .cmd = NL80211_CMD_SET_REG,
13884 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13885 .doit = nl80211_set_reg,
13886 .flags = GENL_ADMIN_PERM,
13887 .internal_flags = NL80211_FLAG_NEED_RTNL,
13891 .cmd = NL80211_CMD_REQ_SET_REG,
13892 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13893 .doit = nl80211_req_set_reg,
13894 .flags = GENL_ADMIN_PERM,
13897 .cmd = NL80211_CMD_RELOAD_REGDB,
13898 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13899 .doit = nl80211_reload_regdb,
13900 .flags = GENL_ADMIN_PERM,
13903 .cmd = NL80211_CMD_GET_MESH_CONFIG,
13904 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13905 .doit = nl80211_get_mesh_config,
13906 /* can be retrieved by unprivileged users */
13907 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13908 NL80211_FLAG_NEED_RTNL,
13911 .cmd = NL80211_CMD_SET_MESH_CONFIG,
13912 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13913 .doit = nl80211_update_mesh_config,
13914 .flags = GENL_UNS_ADMIN_PERM,
13915 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13916 NL80211_FLAG_NEED_RTNL,
13919 .cmd = NL80211_CMD_TRIGGER_SCAN,
13920 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13921 .doit = nl80211_trigger_scan,
13922 .flags = GENL_UNS_ADMIN_PERM,
13923 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13924 NL80211_FLAG_NEED_RTNL,
13927 .cmd = NL80211_CMD_ABORT_SCAN,
13928 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13929 .doit = nl80211_abort_scan,
13930 .flags = GENL_UNS_ADMIN_PERM,
13931 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13932 NL80211_FLAG_NEED_RTNL,
13935 .cmd = NL80211_CMD_GET_SCAN,
13936 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13937 .dumpit = nl80211_dump_scan,
13940 .cmd = NL80211_CMD_START_SCHED_SCAN,
13941 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13942 .doit = nl80211_start_sched_scan,
13943 .flags = GENL_UNS_ADMIN_PERM,
13944 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13945 NL80211_FLAG_NEED_RTNL,
13948 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
13949 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13950 .doit = nl80211_stop_sched_scan,
13951 .flags = GENL_UNS_ADMIN_PERM,
13952 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13953 NL80211_FLAG_NEED_RTNL,
13956 .cmd = NL80211_CMD_AUTHENTICATE,
13957 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13958 .doit = nl80211_authenticate,
13959 .flags = GENL_UNS_ADMIN_PERM,
13960 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13961 NL80211_FLAG_NEED_RTNL |
13962 NL80211_FLAG_CLEAR_SKB,
13965 .cmd = NL80211_CMD_ASSOCIATE,
13966 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13967 .doit = nl80211_associate,
13968 .flags = GENL_UNS_ADMIN_PERM,
13969 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13970 NL80211_FLAG_NEED_RTNL |
13971 NL80211_FLAG_CLEAR_SKB,
13974 .cmd = NL80211_CMD_DEAUTHENTICATE,
13975 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13976 .doit = nl80211_deauthenticate,
13977 .flags = GENL_UNS_ADMIN_PERM,
13978 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13979 NL80211_FLAG_NEED_RTNL,
13982 .cmd = NL80211_CMD_DISASSOCIATE,
13983 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13984 .doit = nl80211_disassociate,
13985 .flags = GENL_UNS_ADMIN_PERM,
13986 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13987 NL80211_FLAG_NEED_RTNL,
13990 .cmd = NL80211_CMD_JOIN_IBSS,
13991 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13992 .doit = nl80211_join_ibss,
13993 .flags = GENL_UNS_ADMIN_PERM,
13994 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13995 NL80211_FLAG_NEED_RTNL,
13998 .cmd = NL80211_CMD_LEAVE_IBSS,
13999 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14000 .doit = nl80211_leave_ibss,
14001 .flags = GENL_UNS_ADMIN_PERM,
14002 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14003 NL80211_FLAG_NEED_RTNL,
14005 #ifdef CONFIG_NL80211_TESTMODE
14007 .cmd = NL80211_CMD_TESTMODE,
14008 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14009 .doit = nl80211_testmode_do,
14010 .dumpit = nl80211_testmode_dump,
14011 .flags = GENL_UNS_ADMIN_PERM,
14012 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14013 NL80211_FLAG_NEED_RTNL,
14017 .cmd = NL80211_CMD_CONNECT,
14018 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14019 .doit = nl80211_connect,
14020 .flags = GENL_UNS_ADMIN_PERM,
14021 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14022 NL80211_FLAG_NEED_RTNL |
14023 NL80211_FLAG_CLEAR_SKB,
14026 .cmd = NL80211_CMD_UPDATE_CONNECT_PARAMS,
14027 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14028 .doit = nl80211_update_connect_params,
14029 .flags = GENL_ADMIN_PERM,
14030 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14031 NL80211_FLAG_NEED_RTNL |
14032 NL80211_FLAG_CLEAR_SKB,
14035 .cmd = NL80211_CMD_DISCONNECT,
14036 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14037 .doit = nl80211_disconnect,
14038 .flags = GENL_UNS_ADMIN_PERM,
14039 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14040 NL80211_FLAG_NEED_RTNL,
14043 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
14044 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14045 .doit = nl80211_wiphy_netns,
14046 .flags = GENL_UNS_ADMIN_PERM,
14047 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14048 NL80211_FLAG_NEED_RTNL,
14051 .cmd = NL80211_CMD_GET_SURVEY,
14052 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14053 .dumpit = nl80211_dump_survey,
14056 .cmd = NL80211_CMD_SET_PMKSA,
14057 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14058 .doit = nl80211_setdel_pmksa,
14059 .flags = GENL_UNS_ADMIN_PERM,
14060 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14061 NL80211_FLAG_NEED_RTNL |
14062 NL80211_FLAG_CLEAR_SKB,
14065 .cmd = NL80211_CMD_DEL_PMKSA,
14066 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14067 .doit = nl80211_setdel_pmksa,
14068 .flags = GENL_UNS_ADMIN_PERM,
14069 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14070 NL80211_FLAG_NEED_RTNL,
14073 .cmd = NL80211_CMD_FLUSH_PMKSA,
14074 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14075 .doit = nl80211_flush_pmksa,
14076 .flags = GENL_UNS_ADMIN_PERM,
14077 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14078 NL80211_FLAG_NEED_RTNL,
14081 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
14082 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14083 .doit = nl80211_remain_on_channel,
14084 .flags = GENL_UNS_ADMIN_PERM,
14085 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14086 NL80211_FLAG_NEED_RTNL,
14089 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
14090 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14091 .doit = nl80211_cancel_remain_on_channel,
14092 .flags = GENL_UNS_ADMIN_PERM,
14093 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14094 NL80211_FLAG_NEED_RTNL,
14097 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
14098 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14099 .doit = nl80211_set_tx_bitrate_mask,
14100 .flags = GENL_UNS_ADMIN_PERM,
14101 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14102 NL80211_FLAG_NEED_RTNL,
14105 .cmd = NL80211_CMD_REGISTER_FRAME,
14106 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14107 .doit = nl80211_register_mgmt,
14108 .flags = GENL_UNS_ADMIN_PERM,
14109 .internal_flags = NL80211_FLAG_NEED_WDEV |
14110 NL80211_FLAG_NEED_RTNL,
14113 .cmd = NL80211_CMD_FRAME,
14114 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14115 .doit = nl80211_tx_mgmt,
14116 .flags = GENL_UNS_ADMIN_PERM,
14117 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14118 NL80211_FLAG_NEED_RTNL,
14121 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
14122 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14123 .doit = nl80211_tx_mgmt_cancel_wait,
14124 .flags = GENL_UNS_ADMIN_PERM,
14125 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14126 NL80211_FLAG_NEED_RTNL,
14129 .cmd = NL80211_CMD_SET_POWER_SAVE,
14130 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14131 .doit = nl80211_set_power_save,
14132 .flags = GENL_UNS_ADMIN_PERM,
14133 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14134 NL80211_FLAG_NEED_RTNL,
14137 .cmd = NL80211_CMD_GET_POWER_SAVE,
14138 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14139 .doit = nl80211_get_power_save,
14140 /* can be retrieved by unprivileged users */
14141 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14142 NL80211_FLAG_NEED_RTNL,
14145 .cmd = NL80211_CMD_SET_CQM,
14146 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14147 .doit = nl80211_set_cqm,
14148 .flags = GENL_UNS_ADMIN_PERM,
14149 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14150 NL80211_FLAG_NEED_RTNL,
14153 .cmd = NL80211_CMD_SET_CHANNEL,
14154 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14155 .doit = nl80211_set_channel,
14156 .flags = GENL_UNS_ADMIN_PERM,
14157 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14158 NL80211_FLAG_NEED_RTNL,
14161 .cmd = NL80211_CMD_SET_WDS_PEER,
14162 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14163 .doit = nl80211_set_wds_peer,
14164 .flags = GENL_UNS_ADMIN_PERM,
14165 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14166 NL80211_FLAG_NEED_RTNL,
14169 .cmd = NL80211_CMD_JOIN_MESH,
14170 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14171 .doit = nl80211_join_mesh,
14172 .flags = GENL_UNS_ADMIN_PERM,
14173 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14174 NL80211_FLAG_NEED_RTNL,
14177 .cmd = NL80211_CMD_LEAVE_MESH,
14178 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14179 .doit = nl80211_leave_mesh,
14180 .flags = GENL_UNS_ADMIN_PERM,
14181 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14182 NL80211_FLAG_NEED_RTNL,
14185 .cmd = NL80211_CMD_JOIN_OCB,
14186 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14187 .doit = nl80211_join_ocb,
14188 .flags = GENL_UNS_ADMIN_PERM,
14189 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14190 NL80211_FLAG_NEED_RTNL,
14193 .cmd = NL80211_CMD_LEAVE_OCB,
14194 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14195 .doit = nl80211_leave_ocb,
14196 .flags = GENL_UNS_ADMIN_PERM,
14197 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14198 NL80211_FLAG_NEED_RTNL,
14202 .cmd = NL80211_CMD_GET_WOWLAN,
14203 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14204 .doit = nl80211_get_wowlan,
14205 /* can be retrieved by unprivileged users */
14206 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14207 NL80211_FLAG_NEED_RTNL,
14210 .cmd = NL80211_CMD_SET_WOWLAN,
14211 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14212 .doit = nl80211_set_wowlan,
14213 .flags = GENL_UNS_ADMIN_PERM,
14214 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14215 NL80211_FLAG_NEED_RTNL,
14219 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
14220 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14221 .doit = nl80211_set_rekey_data,
14222 .flags = GENL_UNS_ADMIN_PERM,
14223 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14224 NL80211_FLAG_NEED_RTNL |
14225 NL80211_FLAG_CLEAR_SKB,
14228 .cmd = NL80211_CMD_TDLS_MGMT,
14229 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14230 .doit = nl80211_tdls_mgmt,
14231 .flags = GENL_UNS_ADMIN_PERM,
14232 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14233 NL80211_FLAG_NEED_RTNL,
14236 .cmd = NL80211_CMD_TDLS_OPER,
14237 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14238 .doit = nl80211_tdls_oper,
14239 .flags = GENL_UNS_ADMIN_PERM,
14240 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14241 NL80211_FLAG_NEED_RTNL,
14244 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
14245 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14246 .doit = nl80211_register_unexpected_frame,
14247 .flags = GENL_UNS_ADMIN_PERM,
14248 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14249 NL80211_FLAG_NEED_RTNL,
14252 .cmd = NL80211_CMD_PROBE_CLIENT,
14253 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14254 .doit = nl80211_probe_client,
14255 .flags = GENL_UNS_ADMIN_PERM,
14256 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14257 NL80211_FLAG_NEED_RTNL,
14260 .cmd = NL80211_CMD_REGISTER_BEACONS,
14261 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14262 .doit = nl80211_register_beacons,
14263 .flags = GENL_UNS_ADMIN_PERM,
14264 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14265 NL80211_FLAG_NEED_RTNL,
14268 .cmd = NL80211_CMD_SET_NOACK_MAP,
14269 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14270 .doit = nl80211_set_noack_map,
14271 .flags = GENL_UNS_ADMIN_PERM,
14272 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14273 NL80211_FLAG_NEED_RTNL,
14276 .cmd = NL80211_CMD_START_P2P_DEVICE,
14277 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14278 .doit = nl80211_start_p2p_device,
14279 .flags = GENL_UNS_ADMIN_PERM,
14280 .internal_flags = NL80211_FLAG_NEED_WDEV |
14281 NL80211_FLAG_NEED_RTNL,
14284 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
14285 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14286 .doit = nl80211_stop_p2p_device,
14287 .flags = GENL_UNS_ADMIN_PERM,
14288 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14289 NL80211_FLAG_NEED_RTNL,
14292 .cmd = NL80211_CMD_START_NAN,
14293 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14294 .doit = nl80211_start_nan,
14295 .flags = GENL_ADMIN_PERM,
14296 .internal_flags = NL80211_FLAG_NEED_WDEV |
14297 NL80211_FLAG_NEED_RTNL,
14300 .cmd = NL80211_CMD_STOP_NAN,
14301 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14302 .doit = nl80211_stop_nan,
14303 .flags = GENL_ADMIN_PERM,
14304 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14305 NL80211_FLAG_NEED_RTNL,
14308 .cmd = NL80211_CMD_ADD_NAN_FUNCTION,
14309 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14310 .doit = nl80211_nan_add_func,
14311 .flags = GENL_ADMIN_PERM,
14312 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14313 NL80211_FLAG_NEED_RTNL,
14316 .cmd = NL80211_CMD_DEL_NAN_FUNCTION,
14317 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14318 .doit = nl80211_nan_del_func,
14319 .flags = GENL_ADMIN_PERM,
14320 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14321 NL80211_FLAG_NEED_RTNL,
14324 .cmd = NL80211_CMD_CHANGE_NAN_CONFIG,
14325 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14326 .doit = nl80211_nan_change_config,
14327 .flags = GENL_ADMIN_PERM,
14328 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14329 NL80211_FLAG_NEED_RTNL,
14332 .cmd = NL80211_CMD_SET_MCAST_RATE,
14333 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14334 .doit = nl80211_set_mcast_rate,
14335 .flags = GENL_UNS_ADMIN_PERM,
14336 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14337 NL80211_FLAG_NEED_RTNL,
14340 .cmd = NL80211_CMD_SET_MAC_ACL,
14341 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14342 .doit = nl80211_set_mac_acl,
14343 .flags = GENL_UNS_ADMIN_PERM,
14344 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14345 NL80211_FLAG_NEED_RTNL,
14348 .cmd = NL80211_CMD_RADAR_DETECT,
14349 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14350 .doit = nl80211_start_radar_detection,
14351 .flags = GENL_UNS_ADMIN_PERM,
14352 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14353 NL80211_FLAG_NEED_RTNL,
14356 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
14357 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14358 .doit = nl80211_get_protocol_features,
14361 .cmd = NL80211_CMD_UPDATE_FT_IES,
14362 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14363 .doit = nl80211_update_ft_ies,
14364 .flags = GENL_UNS_ADMIN_PERM,
14365 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14366 NL80211_FLAG_NEED_RTNL,
14369 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
14370 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14371 .doit = nl80211_crit_protocol_start,
14372 .flags = GENL_UNS_ADMIN_PERM,
14373 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14374 NL80211_FLAG_NEED_RTNL,
14377 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
14378 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14379 .doit = nl80211_crit_protocol_stop,
14380 .flags = GENL_UNS_ADMIN_PERM,
14381 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14382 NL80211_FLAG_NEED_RTNL,
14385 .cmd = NL80211_CMD_GET_COALESCE,
14386 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14387 .doit = nl80211_get_coalesce,
14388 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14389 NL80211_FLAG_NEED_RTNL,
14392 .cmd = NL80211_CMD_SET_COALESCE,
14393 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14394 .doit = nl80211_set_coalesce,
14395 .flags = GENL_UNS_ADMIN_PERM,
14396 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14397 NL80211_FLAG_NEED_RTNL,
14400 .cmd = NL80211_CMD_CHANNEL_SWITCH,
14401 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14402 .doit = nl80211_channel_switch,
14403 .flags = GENL_UNS_ADMIN_PERM,
14404 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14405 NL80211_FLAG_NEED_RTNL,
14408 .cmd = NL80211_CMD_VENDOR,
14409 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14410 .doit = nl80211_vendor_cmd,
14411 .dumpit = nl80211_vendor_cmd_dump,
14412 .flags = GENL_UNS_ADMIN_PERM,
14413 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14414 NL80211_FLAG_NEED_RTNL |
14415 NL80211_FLAG_CLEAR_SKB,
14418 .cmd = NL80211_CMD_SET_QOS_MAP,
14419 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14420 .doit = nl80211_set_qos_map,
14421 .flags = GENL_UNS_ADMIN_PERM,
14422 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14423 NL80211_FLAG_NEED_RTNL,
14426 .cmd = NL80211_CMD_ADD_TX_TS,
14427 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14428 .doit = nl80211_add_tx_ts,
14429 .flags = GENL_UNS_ADMIN_PERM,
14430 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14431 NL80211_FLAG_NEED_RTNL,
14434 .cmd = NL80211_CMD_DEL_TX_TS,
14435 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14436 .doit = nl80211_del_tx_ts,
14437 .flags = GENL_UNS_ADMIN_PERM,
14438 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14439 NL80211_FLAG_NEED_RTNL,
14442 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
14443 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14444 .doit = nl80211_tdls_channel_switch,
14445 .flags = GENL_UNS_ADMIN_PERM,
14446 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14447 NL80211_FLAG_NEED_RTNL,
14450 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
14451 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14452 .doit = nl80211_tdls_cancel_channel_switch,
14453 .flags = GENL_UNS_ADMIN_PERM,
14454 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14455 NL80211_FLAG_NEED_RTNL,
14458 .cmd = NL80211_CMD_SET_MULTICAST_TO_UNICAST,
14459 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14460 .doit = nl80211_set_multicast_to_unicast,
14461 .flags = GENL_UNS_ADMIN_PERM,
14462 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14463 NL80211_FLAG_NEED_RTNL,
14466 .cmd = NL80211_CMD_SET_PMK,
14467 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14468 .doit = nl80211_set_pmk,
14469 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14470 NL80211_FLAG_NEED_RTNL |
14471 NL80211_FLAG_CLEAR_SKB,
14474 .cmd = NL80211_CMD_DEL_PMK,
14475 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14476 .doit = nl80211_del_pmk,
14477 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14478 NL80211_FLAG_NEED_RTNL,
14481 .cmd = NL80211_CMD_EXTERNAL_AUTH,
14482 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14483 .doit = nl80211_external_auth,
14484 .flags = GENL_ADMIN_PERM,
14485 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14486 NL80211_FLAG_NEED_RTNL,
14489 .cmd = NL80211_CMD_CONTROL_PORT_FRAME,
14490 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14491 .doit = nl80211_tx_control_port,
14492 .flags = GENL_UNS_ADMIN_PERM,
14493 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14494 NL80211_FLAG_NEED_RTNL,
14497 .cmd = NL80211_CMD_GET_FTM_RESPONDER_STATS,
14498 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14499 .doit = nl80211_get_ftm_responder_stats,
14500 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14501 NL80211_FLAG_NEED_RTNL,
14504 .cmd = NL80211_CMD_PEER_MEASUREMENT_START,
14505 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14506 .doit = nl80211_pmsr_start,
14507 .flags = GENL_UNS_ADMIN_PERM,
14508 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14509 NL80211_FLAG_NEED_RTNL,
14512 .cmd = NL80211_CMD_NOTIFY_RADAR,
14513 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14514 .doit = nl80211_notify_radar_detection,
14515 .flags = GENL_UNS_ADMIN_PERM,
14516 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14517 NL80211_FLAG_NEED_RTNL,
14520 .cmd = NL80211_CMD_UPDATE_OWE_INFO,
14521 .doit = nl80211_update_owe_info,
14522 .flags = GENL_ADMIN_PERM,
14523 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14524 NL80211_FLAG_NEED_RTNL,
14527 .cmd = NL80211_CMD_PROBE_MESH_LINK,
14528 .doit = nl80211_probe_mesh_link,
14529 .flags = GENL_UNS_ADMIN_PERM,
14530 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14531 NL80211_FLAG_NEED_RTNL,
14535 static struct genl_family nl80211_fam __ro_after_init = {
14536 .name = NL80211_GENL_NAME, /* have users key off the name instead */
14537 .hdrsize = 0, /* no private header */
14538 .version = 1, /* no particular meaning now */
14539 .maxattr = NL80211_ATTR_MAX,
14540 .policy = nl80211_policy,
14542 .pre_doit = nl80211_pre_doit,
14543 .post_doit = nl80211_post_doit,
14544 .module = THIS_MODULE,
14545 .ops = nl80211_ops,
14546 .n_ops = ARRAY_SIZE(nl80211_ops),
14547 .mcgrps = nl80211_mcgrps,
14548 .n_mcgrps = ARRAY_SIZE(nl80211_mcgrps),
14551 /* notification functions */
14553 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
14554 enum nl80211_commands cmd)
14556 struct sk_buff *msg;
14557 struct nl80211_dump_wiphy_state state = {};
14559 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
14560 cmd != NL80211_CMD_DEL_WIPHY);
14562 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14566 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
14571 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14572 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14575 void nl80211_notify_iface(struct cfg80211_registered_device *rdev,
14576 struct wireless_dev *wdev,
14577 enum nl80211_commands cmd)
14579 struct sk_buff *msg;
14581 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14585 if (nl80211_send_iface(msg, 0, 0, 0, rdev, wdev, cmd) < 0) {
14590 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14591 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14594 static int nl80211_add_scan_req(struct sk_buff *msg,
14595 struct cfg80211_registered_device *rdev)
14597 struct cfg80211_scan_request *req = rdev->scan_req;
14598 struct nlattr *nest;
14604 nest = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_SSIDS);
14606 goto nla_put_failure;
14607 for (i = 0; i < req->n_ssids; i++) {
14608 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
14609 goto nla_put_failure;
14611 nla_nest_end(msg, nest);
14613 nest = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_FREQUENCIES);
14615 goto nla_put_failure;
14616 for (i = 0; i < req->n_channels; i++) {
14617 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
14618 goto nla_put_failure;
14620 nla_nest_end(msg, nest);
14623 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
14624 goto nla_put_failure;
14627 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
14628 goto nla_put_failure;
14630 if (req->info.scan_start_tsf &&
14631 (nla_put_u64_64bit(msg, NL80211_ATTR_SCAN_START_TIME_TSF,
14632 req->info.scan_start_tsf, NL80211_BSS_PAD) ||
14633 nla_put(msg, NL80211_ATTR_SCAN_START_TIME_TSF_BSSID, ETH_ALEN,
14634 req->info.tsf_bssid)))
14635 goto nla_put_failure;
14642 static int nl80211_prep_scan_msg(struct sk_buff *msg,
14643 struct cfg80211_registered_device *rdev,
14644 struct wireless_dev *wdev,
14645 u32 portid, u32 seq, int flags,
14650 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
14654 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14655 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14656 wdev->netdev->ifindex)) ||
14657 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14659 goto nla_put_failure;
14661 /* ignore errors and send incomplete event anyway */
14662 nl80211_add_scan_req(msg, rdev);
14664 genlmsg_end(msg, hdr);
14668 genlmsg_cancel(msg, hdr);
14673 nl80211_prep_sched_scan_msg(struct sk_buff *msg,
14674 struct cfg80211_sched_scan_request *req, u32 cmd)
14678 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14682 if (nla_put_u32(msg, NL80211_ATTR_WIPHY,
14683 wiphy_to_rdev(req->wiphy)->wiphy_idx) ||
14684 nla_put_u32(msg, NL80211_ATTR_IFINDEX, req->dev->ifindex) ||
14685 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, req->reqid,
14687 goto nla_put_failure;
14689 genlmsg_end(msg, hdr);
14693 genlmsg_cancel(msg, hdr);
14697 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
14698 struct wireless_dev *wdev)
14700 struct sk_buff *msg;
14702 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14706 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14707 NL80211_CMD_TRIGGER_SCAN) < 0) {
14712 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14713 NL80211_MCGRP_SCAN, GFP_KERNEL);
14716 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
14717 struct wireless_dev *wdev, bool aborted)
14719 struct sk_buff *msg;
14721 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14725 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14726 aborted ? NL80211_CMD_SCAN_ABORTED :
14727 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
14735 /* send message created by nl80211_build_scan_msg() */
14736 void nl80211_send_scan_msg(struct cfg80211_registered_device *rdev,
14737 struct sk_buff *msg)
14742 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14743 NL80211_MCGRP_SCAN, GFP_KERNEL);
14746 void nl80211_send_sched_scan(struct cfg80211_sched_scan_request *req, u32 cmd)
14748 struct sk_buff *msg;
14750 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14754 if (nl80211_prep_sched_scan_msg(msg, req, cmd) < 0) {
14759 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(req->wiphy), msg, 0,
14760 NL80211_MCGRP_SCAN, GFP_KERNEL);
14763 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
14764 struct regulatory_request *request)
14766 /* Userspace can always count this one always being set */
14767 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
14768 goto nla_put_failure;
14770 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
14771 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14772 NL80211_REGDOM_TYPE_WORLD))
14773 goto nla_put_failure;
14774 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
14775 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14776 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
14777 goto nla_put_failure;
14778 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
14779 request->intersect) {
14780 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14781 NL80211_REGDOM_TYPE_INTERSECTION))
14782 goto nla_put_failure;
14784 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14785 NL80211_REGDOM_TYPE_COUNTRY) ||
14786 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
14788 goto nla_put_failure;
14791 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
14792 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
14795 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
14796 goto nla_put_failure;
14799 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
14800 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
14801 goto nla_put_failure;
14811 * This can happen on global regulatory changes or device specific settings
14812 * based on custom regulatory domains.
14814 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
14815 struct regulatory_request *request)
14817 struct sk_buff *msg;
14820 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14824 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
14830 if (nl80211_reg_change_event_fill(msg, request) == false)
14831 goto nla_put_failure;
14833 genlmsg_end(msg, hdr);
14836 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
14837 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
14846 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
14847 struct net_device *netdev,
14848 const u8 *buf, size_t len,
14849 enum nl80211_commands cmd, gfp_t gfp,
14850 int uapsd_queues, const u8 *req_ies,
14851 size_t req_ies_len)
14853 struct sk_buff *msg;
14856 msg = nlmsg_new(100 + len + req_ies_len, gfp);
14860 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14866 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14867 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14868 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
14870 nla_put(msg, NL80211_ATTR_REQ_IE, req_ies_len, req_ies)))
14871 goto nla_put_failure;
14873 if (uapsd_queues >= 0) {
14874 struct nlattr *nla_wmm =
14875 nla_nest_start_noflag(msg, NL80211_ATTR_STA_WME);
14877 goto nla_put_failure;
14879 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
14881 goto nla_put_failure;
14883 nla_nest_end(msg, nla_wmm);
14886 genlmsg_end(msg, hdr);
14888 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14889 NL80211_MCGRP_MLME, gfp);
14896 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
14897 struct net_device *netdev, const u8 *buf,
14898 size_t len, gfp_t gfp)
14900 nl80211_send_mlme_event(rdev, netdev, buf, len,
14901 NL80211_CMD_AUTHENTICATE, gfp, -1, NULL, 0);
14904 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
14905 struct net_device *netdev, const u8 *buf,
14906 size_t len, gfp_t gfp, int uapsd_queues,
14907 const u8 *req_ies, size_t req_ies_len)
14909 nl80211_send_mlme_event(rdev, netdev, buf, len,
14910 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues,
14911 req_ies, req_ies_len);
14914 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
14915 struct net_device *netdev, const u8 *buf,
14916 size_t len, gfp_t gfp)
14918 nl80211_send_mlme_event(rdev, netdev, buf, len,
14919 NL80211_CMD_DEAUTHENTICATE, gfp, -1, NULL, 0);
14922 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
14923 struct net_device *netdev, const u8 *buf,
14924 size_t len, gfp_t gfp)
14926 nl80211_send_mlme_event(rdev, netdev, buf, len,
14927 NL80211_CMD_DISASSOCIATE, gfp, -1, NULL, 0);
14930 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
14933 struct wireless_dev *wdev = dev->ieee80211_ptr;
14934 struct wiphy *wiphy = wdev->wiphy;
14935 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14936 const struct ieee80211_mgmt *mgmt = (void *)buf;
14939 if (WARN_ON(len < 2))
14942 if (ieee80211_is_deauth(mgmt->frame_control))
14943 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
14945 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
14947 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
14948 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1,
14951 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
14953 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
14954 struct net_device *netdev, int cmd,
14955 const u8 *addr, gfp_t gfp)
14957 struct sk_buff *msg;
14960 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14964 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14970 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14971 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14972 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14973 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
14974 goto nla_put_failure;
14976 genlmsg_end(msg, hdr);
14978 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14979 NL80211_MCGRP_MLME, gfp);
14986 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
14987 struct net_device *netdev, const u8 *addr,
14990 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
14994 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
14995 struct net_device *netdev, const u8 *addr,
14998 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
15002 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
15003 struct net_device *netdev,
15004 struct cfg80211_connect_resp_params *cr,
15007 struct sk_buff *msg;
15010 msg = nlmsg_new(100 + cr->req_ie_len + cr->resp_ie_len +
15011 cr->fils.kek_len + cr->fils.pmk_len +
15012 (cr->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
15016 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
15022 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15023 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15025 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, cr->bssid)) ||
15026 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE,
15027 cr->status < 0 ? WLAN_STATUS_UNSPECIFIED_FAILURE :
15030 (nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
15031 nla_put_u32(msg, NL80211_ATTR_TIMEOUT_REASON,
15032 cr->timeout_reason))) ||
15034 nla_put(msg, NL80211_ATTR_REQ_IE, cr->req_ie_len, cr->req_ie)) ||
15036 nla_put(msg, NL80211_ATTR_RESP_IE, cr->resp_ie_len,
15038 (cr->fils.update_erp_next_seq_num &&
15039 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
15040 cr->fils.erp_next_seq_num)) ||
15041 (cr->status == WLAN_STATUS_SUCCESS &&
15043 nla_put(msg, NL80211_ATTR_FILS_KEK, cr->fils.kek_len,
15046 nla_put(msg, NL80211_ATTR_PMK, cr->fils.pmk_len, cr->fils.pmk)) ||
15048 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, cr->fils.pmkid)))))
15049 goto nla_put_failure;
15051 genlmsg_end(msg, hdr);
15053 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15054 NL80211_MCGRP_MLME, gfp);
15061 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
15062 struct net_device *netdev,
15063 struct cfg80211_roam_info *info, gfp_t gfp)
15065 struct sk_buff *msg;
15067 const u8 *bssid = info->bss ? info->bss->bssid : info->bssid;
15069 msg = nlmsg_new(100 + info->req_ie_len + info->resp_ie_len +
15070 info->fils.kek_len + info->fils.pmk_len +
15071 (info->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
15075 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
15081 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15082 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15083 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
15085 nla_put(msg, NL80211_ATTR_REQ_IE, info->req_ie_len,
15088 nla_put(msg, NL80211_ATTR_RESP_IE, info->resp_ie_len,
15090 (info->fils.update_erp_next_seq_num &&
15091 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
15092 info->fils.erp_next_seq_num)) ||
15094 nla_put(msg, NL80211_ATTR_FILS_KEK, info->fils.kek_len,
15095 info->fils.kek)) ||
15097 nla_put(msg, NL80211_ATTR_PMK, info->fils.pmk_len, info->fils.pmk)) ||
15098 (info->fils.pmkid &&
15099 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, info->fils.pmkid)))
15100 goto nla_put_failure;
15102 genlmsg_end(msg, hdr);
15104 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15105 NL80211_MCGRP_MLME, gfp);
15112 void nl80211_send_port_authorized(struct cfg80211_registered_device *rdev,
15113 struct net_device *netdev, const u8 *bssid)
15115 struct sk_buff *msg;
15118 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
15122 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PORT_AUTHORIZED);
15128 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15129 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15130 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15131 goto nla_put_failure;
15133 genlmsg_end(msg, hdr);
15135 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15136 NL80211_MCGRP_MLME, GFP_KERNEL);
15143 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
15144 struct net_device *netdev, u16 reason,
15145 const u8 *ie, size_t ie_len, bool from_ap)
15147 struct sk_buff *msg;
15150 msg = nlmsg_new(100 + ie_len, GFP_KERNEL);
15154 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
15160 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15161 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15163 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
15165 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
15166 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
15167 goto nla_put_failure;
15169 genlmsg_end(msg, hdr);
15171 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15172 NL80211_MCGRP_MLME, GFP_KERNEL);
15179 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
15180 struct net_device *netdev, const u8 *bssid,
15183 struct sk_buff *msg;
15186 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15190 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
15196 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15197 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15198 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15199 goto nla_put_failure;
15201 genlmsg_end(msg, hdr);
15203 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15204 NL80211_MCGRP_MLME, gfp);
15211 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
15212 const u8 *ie, u8 ie_len,
15213 int sig_dbm, gfp_t gfp)
15215 struct wireless_dev *wdev = dev->ieee80211_ptr;
15216 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15217 struct sk_buff *msg;
15220 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
15223 trace_cfg80211_notify_new_peer_candidate(dev, addr);
15225 msg = nlmsg_new(100 + ie_len, gfp);
15229 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
15235 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15236 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15237 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15239 nla_put(msg, NL80211_ATTR_IE, ie_len, ie)) ||
15241 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)))
15242 goto nla_put_failure;
15244 genlmsg_end(msg, hdr);
15246 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15247 NL80211_MCGRP_MLME, gfp);
15253 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
15255 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
15256 struct net_device *netdev, const u8 *addr,
15257 enum nl80211_key_type key_type, int key_id,
15258 const u8 *tsc, gfp_t gfp)
15260 struct sk_buff *msg;
15263 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15267 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
15273 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15274 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15275 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
15276 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
15278 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
15279 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
15280 goto nla_put_failure;
15282 genlmsg_end(msg, hdr);
15284 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15285 NL80211_MCGRP_MLME, gfp);
15292 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
15293 struct ieee80211_channel *channel_before,
15294 struct ieee80211_channel *channel_after)
15296 struct sk_buff *msg;
15298 struct nlattr *nl_freq;
15300 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
15304 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
15311 * Since we are applying the beacon hint to a wiphy we know its
15312 * wiphy_idx is valid
15314 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
15315 goto nla_put_failure;
15318 nl_freq = nla_nest_start_noflag(msg, NL80211_ATTR_FREQ_BEFORE);
15320 goto nla_put_failure;
15322 if (nl80211_msg_put_channel(msg, wiphy, channel_before, false))
15323 goto nla_put_failure;
15324 nla_nest_end(msg, nl_freq);
15327 nl_freq = nla_nest_start_noflag(msg, NL80211_ATTR_FREQ_AFTER);
15329 goto nla_put_failure;
15331 if (nl80211_msg_put_channel(msg, wiphy, channel_after, false))
15332 goto nla_put_failure;
15333 nla_nest_end(msg, nl_freq);
15335 genlmsg_end(msg, hdr);
15338 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
15339 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
15348 static void nl80211_send_remain_on_chan_event(
15349 int cmd, struct cfg80211_registered_device *rdev,
15350 struct wireless_dev *wdev, u64 cookie,
15351 struct ieee80211_channel *chan,
15352 unsigned int duration, gfp_t gfp)
15354 struct sk_buff *msg;
15357 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15361 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15367 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15368 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15369 wdev->netdev->ifindex)) ||
15370 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15371 NL80211_ATTR_PAD) ||
15372 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
15373 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
15374 NL80211_CHAN_NO_HT) ||
15375 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15377 goto nla_put_failure;
15379 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
15380 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
15381 goto nla_put_failure;
15383 genlmsg_end(msg, hdr);
15385 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15386 NL80211_MCGRP_MLME, gfp);
15393 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
15394 struct ieee80211_channel *chan,
15395 unsigned int duration, gfp_t gfp)
15397 struct wiphy *wiphy = wdev->wiphy;
15398 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15400 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
15401 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
15402 rdev, wdev, cookie, chan,
15405 EXPORT_SYMBOL(cfg80211_ready_on_channel);
15407 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
15408 struct ieee80211_channel *chan,
15411 struct wiphy *wiphy = wdev->wiphy;
15412 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15414 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
15415 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
15416 rdev, wdev, cookie, chan, 0, gfp);
15418 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
15420 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
15421 struct station_info *sinfo, gfp_t gfp)
15423 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15424 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15425 struct sk_buff *msg;
15427 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
15429 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15433 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION, 0, 0, 0,
15434 rdev, dev, mac_addr, sinfo) < 0) {
15439 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15440 NL80211_MCGRP_MLME, gfp);
15442 EXPORT_SYMBOL(cfg80211_new_sta);
15444 void cfg80211_del_sta_sinfo(struct net_device *dev, const u8 *mac_addr,
15445 struct station_info *sinfo, gfp_t gfp)
15447 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15448 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15449 struct sk_buff *msg;
15450 struct station_info empty_sinfo = {};
15453 sinfo = &empty_sinfo;
15455 trace_cfg80211_del_sta(dev, mac_addr);
15457 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15459 cfg80211_sinfo_release_content(sinfo);
15463 if (nl80211_send_station(msg, NL80211_CMD_DEL_STATION, 0, 0, 0,
15464 rdev, dev, mac_addr, sinfo) < 0) {
15469 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15470 NL80211_MCGRP_MLME, gfp);
15472 EXPORT_SYMBOL(cfg80211_del_sta_sinfo);
15474 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
15475 enum nl80211_connect_failed_reason reason,
15478 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15479 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15480 struct sk_buff *msg;
15483 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
15487 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
15493 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15494 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
15495 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
15496 goto nla_put_failure;
15498 genlmsg_end(msg, hdr);
15500 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15501 NL80211_MCGRP_MLME, gfp);
15507 EXPORT_SYMBOL(cfg80211_conn_failed);
15509 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
15510 const u8 *addr, gfp_t gfp)
15512 struct wireless_dev *wdev = dev->ieee80211_ptr;
15513 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15514 struct sk_buff *msg;
15516 u32 nlportid = READ_ONCE(wdev->ap_unexpected_nlportid);
15521 msg = nlmsg_new(100, gfp);
15525 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15531 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15532 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15533 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
15534 goto nla_put_failure;
15536 genlmsg_end(msg, hdr);
15537 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15545 bool cfg80211_rx_spurious_frame(struct net_device *dev,
15546 const u8 *addr, gfp_t gfp)
15548 struct wireless_dev *wdev = dev->ieee80211_ptr;
15551 trace_cfg80211_rx_spurious_frame(dev, addr);
15553 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15554 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
15555 trace_cfg80211_return_bool(false);
15558 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
15560 trace_cfg80211_return_bool(ret);
15563 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
15565 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
15566 const u8 *addr, gfp_t gfp)
15568 struct wireless_dev *wdev = dev->ieee80211_ptr;
15571 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
15573 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15574 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
15575 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
15576 trace_cfg80211_return_bool(false);
15579 ret = __nl80211_unexpected_frame(dev,
15580 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
15582 trace_cfg80211_return_bool(ret);
15585 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
15587 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
15588 struct wireless_dev *wdev, u32 nlportid,
15589 int freq, int sig_dbm,
15590 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
15592 struct net_device *netdev = wdev->netdev;
15593 struct sk_buff *msg;
15596 msg = nlmsg_new(100 + len, gfp);
15600 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15606 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15607 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15608 netdev->ifindex)) ||
15609 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15610 NL80211_ATTR_PAD) ||
15611 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
15613 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15614 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15616 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
15617 goto nla_put_failure;
15619 genlmsg_end(msg, hdr);
15621 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15628 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
15629 const u8 *buf, size_t len, bool ack, gfp_t gfp)
15631 struct wiphy *wiphy = wdev->wiphy;
15632 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15633 struct net_device *netdev = wdev->netdev;
15634 struct sk_buff *msg;
15637 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
15639 msg = nlmsg_new(100 + len, gfp);
15643 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
15649 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15650 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15651 netdev->ifindex)) ||
15652 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15653 NL80211_ATTR_PAD) ||
15654 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15655 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15656 NL80211_ATTR_PAD) ||
15657 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
15658 goto nla_put_failure;
15660 genlmsg_end(msg, hdr);
15662 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15663 NL80211_MCGRP_MLME, gfp);
15669 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
15671 static int __nl80211_rx_control_port(struct net_device *dev,
15672 struct sk_buff *skb,
15673 bool unencrypted, gfp_t gfp)
15675 struct wireless_dev *wdev = dev->ieee80211_ptr;
15676 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15677 struct ethhdr *ehdr = eth_hdr(skb);
15678 const u8 *addr = ehdr->h_source;
15679 u16 proto = be16_to_cpu(skb->protocol);
15680 struct sk_buff *msg;
15682 struct nlattr *frame;
15684 u32 nlportid = READ_ONCE(wdev->conn_owner_nlportid);
15689 msg = nlmsg_new(100 + skb->len, gfp);
15693 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONTROL_PORT_FRAME);
15699 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15700 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15701 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15702 NL80211_ATTR_PAD) ||
15703 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15704 nla_put_u16(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE, proto) ||
15705 (unencrypted && nla_put_flag(msg,
15706 NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT)))
15707 goto nla_put_failure;
15709 frame = nla_reserve(msg, NL80211_ATTR_FRAME, skb->len);
15711 goto nla_put_failure;
15713 skb_copy_bits(skb, 0, nla_data(frame), skb->len);
15714 genlmsg_end(msg, hdr);
15716 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15723 bool cfg80211_rx_control_port(struct net_device *dev,
15724 struct sk_buff *skb, bool unencrypted)
15728 trace_cfg80211_rx_control_port(dev, skb, unencrypted);
15729 ret = __nl80211_rx_control_port(dev, skb, unencrypted, GFP_ATOMIC);
15730 trace_cfg80211_return_bool(ret == 0);
15733 EXPORT_SYMBOL(cfg80211_rx_control_port);
15735 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
15736 const char *mac, gfp_t gfp)
15738 struct wireless_dev *wdev = dev->ieee80211_ptr;
15739 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15740 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15746 cb = (void **)msg->cb;
15748 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
15754 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15755 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15756 goto nla_put_failure;
15758 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15759 goto nla_put_failure;
15761 cb[1] = nla_nest_start_noflag(msg, NL80211_ATTR_CQM);
15763 goto nla_put_failure;
15773 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
15775 void **cb = (void **)msg->cb;
15776 struct cfg80211_registered_device *rdev = cb[2];
15778 nla_nest_end(msg, cb[1]);
15779 genlmsg_end(msg, cb[0]);
15781 memset(msg->cb, 0, sizeof(msg->cb));
15783 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15784 NL80211_MCGRP_MLME, gfp);
15787 void cfg80211_cqm_rssi_notify(struct net_device *dev,
15788 enum nl80211_cqm_rssi_threshold_event rssi_event,
15789 s32 rssi_level, gfp_t gfp)
15791 struct sk_buff *msg;
15792 struct wireless_dev *wdev = dev->ieee80211_ptr;
15793 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15795 trace_cfg80211_cqm_rssi_notify(dev, rssi_event, rssi_level);
15797 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
15798 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
15801 if (wdev->cqm_config) {
15802 wdev->cqm_config->last_rssi_event_value = rssi_level;
15804 cfg80211_cqm_rssi_update(rdev, dev);
15806 if (rssi_level == 0)
15807 rssi_level = wdev->cqm_config->last_rssi_event_value;
15810 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15814 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
15816 goto nla_put_failure;
15818 if (rssi_level && nla_put_s32(msg, NL80211_ATTR_CQM_RSSI_LEVEL,
15820 goto nla_put_failure;
15822 cfg80211_send_cqm(msg, gfp);
15829 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
15831 void cfg80211_cqm_txe_notify(struct net_device *dev,
15832 const u8 *peer, u32 num_packets,
15833 u32 rate, u32 intvl, gfp_t gfp)
15835 struct sk_buff *msg;
15837 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15841 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
15842 goto nla_put_failure;
15844 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
15845 goto nla_put_failure;
15847 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
15848 goto nla_put_failure;
15850 cfg80211_send_cqm(msg, gfp);
15856 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
15858 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
15859 const u8 *peer, u32 num_packets, gfp_t gfp)
15861 struct sk_buff *msg;
15863 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
15865 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15869 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
15870 goto nla_put_failure;
15872 cfg80211_send_cqm(msg, gfp);
15878 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
15880 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
15882 struct sk_buff *msg;
15884 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15888 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
15889 goto nla_put_failure;
15891 cfg80211_send_cqm(msg, gfp);
15897 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
15899 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
15900 struct net_device *netdev, const u8 *bssid,
15901 const u8 *replay_ctr, gfp_t gfp)
15903 struct sk_buff *msg;
15904 struct nlattr *rekey_attr;
15907 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15911 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
15917 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15918 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15919 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15920 goto nla_put_failure;
15922 rekey_attr = nla_nest_start_noflag(msg, NL80211_ATTR_REKEY_DATA);
15924 goto nla_put_failure;
15926 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
15927 NL80211_REPLAY_CTR_LEN, replay_ctr))
15928 goto nla_put_failure;
15930 nla_nest_end(msg, rekey_attr);
15932 genlmsg_end(msg, hdr);
15934 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15935 NL80211_MCGRP_MLME, gfp);
15942 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
15943 const u8 *replay_ctr, gfp_t gfp)
15945 struct wireless_dev *wdev = dev->ieee80211_ptr;
15946 struct wiphy *wiphy = wdev->wiphy;
15947 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15949 trace_cfg80211_gtk_rekey_notify(dev, bssid);
15950 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
15952 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
15955 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
15956 struct net_device *netdev, int index,
15957 const u8 *bssid, bool preauth, gfp_t gfp)
15959 struct sk_buff *msg;
15960 struct nlattr *attr;
15963 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15967 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
15973 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15974 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15975 goto nla_put_failure;
15977 attr = nla_nest_start_noflag(msg, NL80211_ATTR_PMKSA_CANDIDATE);
15979 goto nla_put_failure;
15981 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
15982 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
15984 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
15985 goto nla_put_failure;
15987 nla_nest_end(msg, attr);
15989 genlmsg_end(msg, hdr);
15991 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15992 NL80211_MCGRP_MLME, gfp);
15999 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
16000 const u8 *bssid, bool preauth, gfp_t gfp)
16002 struct wireless_dev *wdev = dev->ieee80211_ptr;
16003 struct wiphy *wiphy = wdev->wiphy;
16004 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16006 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
16007 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
16009 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
16011 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
16012 struct net_device *netdev,
16013 struct cfg80211_chan_def *chandef,
16015 enum nl80211_commands notif,
16018 struct sk_buff *msg;
16021 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16025 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
16031 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
16032 goto nla_put_failure;
16034 if (nl80211_send_chandef(msg, chandef))
16035 goto nla_put_failure;
16037 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
16038 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
16039 goto nla_put_failure;
16041 genlmsg_end(msg, hdr);
16043 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16044 NL80211_MCGRP_MLME, gfp);
16051 void cfg80211_ch_switch_notify(struct net_device *dev,
16052 struct cfg80211_chan_def *chandef)
16054 struct wireless_dev *wdev = dev->ieee80211_ptr;
16055 struct wiphy *wiphy = wdev->wiphy;
16056 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16058 ASSERT_WDEV_LOCK(wdev);
16060 trace_cfg80211_ch_switch_notify(dev, chandef);
16062 wdev->chandef = *chandef;
16063 wdev->preset_chandef = *chandef;
16065 if (wdev->iftype == NL80211_IFTYPE_STATION &&
16066 !WARN_ON(!wdev->current_bss))
16067 wdev->current_bss->pub.channel = chandef->chan;
16069 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
16070 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
16072 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
16074 void cfg80211_ch_switch_started_notify(struct net_device *dev,
16075 struct cfg80211_chan_def *chandef,
16078 struct wireless_dev *wdev = dev->ieee80211_ptr;
16079 struct wiphy *wiphy = wdev->wiphy;
16080 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16082 trace_cfg80211_ch_switch_started_notify(dev, chandef);
16084 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
16085 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
16087 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
16090 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
16091 const struct cfg80211_chan_def *chandef,
16092 enum nl80211_radar_event event,
16093 struct net_device *netdev, gfp_t gfp)
16095 struct sk_buff *msg;
16098 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16102 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
16108 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
16109 goto nla_put_failure;
16111 /* NOP and radar events don't need a netdev parameter */
16113 struct wireless_dev *wdev = netdev->ieee80211_ptr;
16115 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16116 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16118 goto nla_put_failure;
16121 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
16122 goto nla_put_failure;
16124 if (nl80211_send_chandef(msg, chandef))
16125 goto nla_put_failure;
16127 genlmsg_end(msg, hdr);
16129 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16130 NL80211_MCGRP_MLME, gfp);
16137 void cfg80211_sta_opmode_change_notify(struct net_device *dev, const u8 *mac,
16138 struct sta_opmode_info *sta_opmode,
16141 struct sk_buff *msg;
16142 struct wireless_dev *wdev = dev->ieee80211_ptr;
16143 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16149 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16153 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STA_OPMODE_CHANGED);
16159 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
16160 goto nla_put_failure;
16162 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
16163 goto nla_put_failure;
16165 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
16166 goto nla_put_failure;
16168 if ((sta_opmode->changed & STA_OPMODE_SMPS_MODE_CHANGED) &&
16169 nla_put_u8(msg, NL80211_ATTR_SMPS_MODE, sta_opmode->smps_mode))
16170 goto nla_put_failure;
16172 if ((sta_opmode->changed & STA_OPMODE_MAX_BW_CHANGED) &&
16173 nla_put_u8(msg, NL80211_ATTR_CHANNEL_WIDTH, sta_opmode->bw))
16174 goto nla_put_failure;
16176 if ((sta_opmode->changed & STA_OPMODE_N_SS_CHANGED) &&
16177 nla_put_u8(msg, NL80211_ATTR_NSS, sta_opmode->rx_nss))
16178 goto nla_put_failure;
16180 genlmsg_end(msg, hdr);
16182 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16183 NL80211_MCGRP_MLME, gfp);
16190 EXPORT_SYMBOL(cfg80211_sta_opmode_change_notify);
16192 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
16193 u64 cookie, bool acked, s32 ack_signal,
16194 bool is_valid_ack_signal, gfp_t gfp)
16196 struct wireless_dev *wdev = dev->ieee80211_ptr;
16197 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16198 struct sk_buff *msg;
16201 trace_cfg80211_probe_status(dev, addr, cookie, acked);
16203 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16208 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
16214 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16215 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16216 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
16217 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
16218 NL80211_ATTR_PAD) ||
16219 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)) ||
16220 (is_valid_ack_signal && nla_put_s32(msg, NL80211_ATTR_ACK_SIGNAL,
16222 goto nla_put_failure;
16224 genlmsg_end(msg, hdr);
16226 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16227 NL80211_MCGRP_MLME, gfp);
16233 EXPORT_SYMBOL(cfg80211_probe_status);
16235 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
16236 const u8 *frame, size_t len,
16237 int freq, int sig_dbm)
16239 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16240 struct sk_buff *msg;
16242 struct cfg80211_beacon_registration *reg;
16244 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
16246 spin_lock_bh(&rdev->beacon_registrations_lock);
16247 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
16248 msg = nlmsg_new(len + 100, GFP_ATOMIC);
16250 spin_unlock_bh(&rdev->beacon_registrations_lock);
16254 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
16256 goto nla_put_failure;
16258 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16260 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
16262 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
16263 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
16264 goto nla_put_failure;
16266 genlmsg_end(msg, hdr);
16268 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
16270 spin_unlock_bh(&rdev->beacon_registrations_lock);
16274 spin_unlock_bh(&rdev->beacon_registrations_lock);
16277 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
16280 static int cfg80211_net_detect_results(struct sk_buff *msg,
16281 struct cfg80211_wowlan_wakeup *wakeup)
16283 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
16284 struct nlattr *nl_results, *nl_match, *nl_freqs;
16287 nl_results = nla_nest_start_noflag(msg,
16288 NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
16292 for (i = 0; i < nd->n_matches; i++) {
16293 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
16295 nl_match = nla_nest_start_noflag(msg, i);
16299 /* The SSID attribute is optional in nl80211, but for
16300 * simplicity reasons it's always present in the
16301 * cfg80211 structure. If a driver can't pass the
16302 * SSID, that needs to be changed. A zero length SSID
16303 * is still a valid SSID (wildcard), so it cannot be
16304 * used for this purpose.
16306 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
16307 match->ssid.ssid)) {
16308 nla_nest_cancel(msg, nl_match);
16312 if (match->n_channels) {
16313 nl_freqs = nla_nest_start_noflag(msg,
16314 NL80211_ATTR_SCAN_FREQUENCIES);
16316 nla_nest_cancel(msg, nl_match);
16320 for (j = 0; j < match->n_channels; j++) {
16321 if (nla_put_u32(msg, j, match->channels[j])) {
16322 nla_nest_cancel(msg, nl_freqs);
16323 nla_nest_cancel(msg, nl_match);
16328 nla_nest_end(msg, nl_freqs);
16331 nla_nest_end(msg, nl_match);
16335 nla_nest_end(msg, nl_results);
16339 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
16340 struct cfg80211_wowlan_wakeup *wakeup,
16343 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16344 struct sk_buff *msg;
16348 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
16351 size += wakeup->packet_present_len;
16353 msg = nlmsg_new(size, gfp);
16357 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
16361 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16362 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16366 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
16367 wdev->netdev->ifindex))
16371 struct nlattr *reasons;
16373 reasons = nla_nest_start_noflag(msg,
16374 NL80211_ATTR_WOWLAN_TRIGGERS);
16378 if (wakeup->disconnect &&
16379 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
16381 if (wakeup->magic_pkt &&
16382 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
16384 if (wakeup->gtk_rekey_failure &&
16385 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
16387 if (wakeup->eap_identity_req &&
16388 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
16390 if (wakeup->four_way_handshake &&
16391 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
16393 if (wakeup->rfkill_release &&
16394 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
16397 if (wakeup->pattern_idx >= 0 &&
16398 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
16399 wakeup->pattern_idx))
16402 if (wakeup->tcp_match &&
16403 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
16406 if (wakeup->tcp_connlost &&
16407 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
16410 if (wakeup->tcp_nomoretokens &&
16412 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
16415 if (wakeup->packet) {
16416 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
16417 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
16419 if (!wakeup->packet_80211) {
16421 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
16423 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
16426 if (wakeup->packet_len &&
16427 nla_put_u32(msg, len_attr, wakeup->packet_len))
16430 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
16435 if (wakeup->net_detect &&
16436 cfg80211_net_detect_results(msg, wakeup))
16439 nla_nest_end(msg, reasons);
16442 genlmsg_end(msg, hdr);
16444 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16445 NL80211_MCGRP_MLME, gfp);
16451 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
16454 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
16455 enum nl80211_tdls_operation oper,
16456 u16 reason_code, gfp_t gfp)
16458 struct wireless_dev *wdev = dev->ieee80211_ptr;
16459 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16460 struct sk_buff *msg;
16463 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
16466 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16470 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
16476 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16477 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16478 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
16479 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
16480 (reason_code > 0 &&
16481 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
16482 goto nla_put_failure;
16484 genlmsg_end(msg, hdr);
16486 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16487 NL80211_MCGRP_MLME, gfp);
16493 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
16495 static int nl80211_netlink_notify(struct notifier_block * nb,
16496 unsigned long state,
16499 struct netlink_notify *notify = _notify;
16500 struct cfg80211_registered_device *rdev;
16501 struct wireless_dev *wdev;
16502 struct cfg80211_beacon_registration *reg, *tmp;
16504 if (state != NETLINK_URELEASE || notify->protocol != NETLINK_GENERIC)
16505 return NOTIFY_DONE;
16509 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
16510 struct cfg80211_sched_scan_request *sched_scan_req;
16512 list_for_each_entry_rcu(sched_scan_req,
16513 &rdev->sched_scan_req_list,
16515 if (sched_scan_req->owner_nlportid == notify->portid) {
16516 sched_scan_req->nl_owner_dead = true;
16517 schedule_work(&rdev->sched_scan_stop_wk);
16521 list_for_each_entry_rcu(wdev, &rdev->wiphy.wdev_list, list) {
16522 cfg80211_mlme_unregister_socket(wdev, notify->portid);
16524 if (wdev->owner_nlportid == notify->portid) {
16525 wdev->nl_owner_dead = true;
16526 schedule_work(&rdev->destroy_work);
16527 } else if (wdev->conn_owner_nlportid == notify->portid) {
16528 schedule_work(&wdev->disconnect_wk);
16531 cfg80211_release_pmsr(wdev, notify->portid);
16534 spin_lock_bh(&rdev->beacon_registrations_lock);
16535 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
16537 if (reg->nlportid == notify->portid) {
16538 list_del(®->list);
16543 spin_unlock_bh(&rdev->beacon_registrations_lock);
16549 * It is possible that the user space process that is controlling the
16550 * indoor setting disappeared, so notify the regulatory core.
16552 regulatory_netlink_notify(notify->portid);
16556 static struct notifier_block nl80211_netlink_notifier = {
16557 .notifier_call = nl80211_netlink_notify,
16560 void cfg80211_ft_event(struct net_device *netdev,
16561 struct cfg80211_ft_event_params *ft_event)
16563 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16564 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16565 struct sk_buff *msg;
16568 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
16570 if (!ft_event->target_ap)
16573 msg = nlmsg_new(100 + ft_event->ies_len + ft_event->ric_ies_len,
16578 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
16582 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16583 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16584 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
16587 if (ft_event->ies &&
16588 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
16590 if (ft_event->ric_ies &&
16591 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
16592 ft_event->ric_ies))
16595 genlmsg_end(msg, hdr);
16597 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16598 NL80211_MCGRP_MLME, GFP_KERNEL);
16603 EXPORT_SYMBOL(cfg80211_ft_event);
16605 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
16607 struct cfg80211_registered_device *rdev;
16608 struct sk_buff *msg;
16612 rdev = wiphy_to_rdev(wdev->wiphy);
16613 if (!rdev->crit_proto_nlportid)
16616 nlportid = rdev->crit_proto_nlportid;
16617 rdev->crit_proto_nlportid = 0;
16619 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16623 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
16625 goto nla_put_failure;
16627 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16628 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16630 goto nla_put_failure;
16632 genlmsg_end(msg, hdr);
16634 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
16640 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
16642 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
16644 struct wiphy *wiphy = wdev->wiphy;
16645 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16646 struct sk_buff *msg;
16649 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
16653 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
16657 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16658 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
16659 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16663 genlmsg_end(msg, hdr);
16665 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
16666 NL80211_MCGRP_MLME, GFP_KERNEL);
16672 int cfg80211_external_auth_request(struct net_device *dev,
16673 struct cfg80211_external_auth_params *params,
16676 struct wireless_dev *wdev = dev->ieee80211_ptr;
16677 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16678 struct sk_buff *msg;
16681 if (!wdev->conn_owner_nlportid)
16684 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16688 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_EXTERNAL_AUTH);
16690 goto nla_put_failure;
16692 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16693 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16694 nla_put_u32(msg, NL80211_ATTR_AKM_SUITES, params->key_mgmt_suite) ||
16695 nla_put_u32(msg, NL80211_ATTR_EXTERNAL_AUTH_ACTION,
16697 nla_put(msg, NL80211_ATTR_BSSID, ETH_ALEN, params->bssid) ||
16698 nla_put(msg, NL80211_ATTR_SSID, params->ssid.ssid_len,
16699 params->ssid.ssid))
16700 goto nla_put_failure;
16702 genlmsg_end(msg, hdr);
16703 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
16704 wdev->conn_owner_nlportid);
16711 EXPORT_SYMBOL(cfg80211_external_auth_request);
16713 void cfg80211_update_owe_info_event(struct net_device *netdev,
16714 struct cfg80211_update_owe_info *owe_info,
16717 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16718 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16719 struct sk_buff *msg;
16722 trace_cfg80211_update_owe_info_event(wiphy, netdev, owe_info);
16724 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16728 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_UPDATE_OWE_INFO);
16730 goto nla_put_failure;
16732 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16733 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16734 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, owe_info->peer))
16735 goto nla_put_failure;
16737 if (!owe_info->ie_len ||
16738 nla_put(msg, NL80211_ATTR_IE, owe_info->ie_len, owe_info->ie))
16739 goto nla_put_failure;
16741 genlmsg_end(msg, hdr);
16743 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16744 NL80211_MCGRP_MLME, gfp);
16748 genlmsg_cancel(msg, hdr);
16751 EXPORT_SYMBOL(cfg80211_update_owe_info_event);
16753 /* initialisation/exit functions */
16755 int __init nl80211_init(void)
16759 err = genl_register_family(&nl80211_fam);
16763 err = netlink_register_notifier(&nl80211_netlink_notifier);
16769 genl_unregister_family(&nl80211_fam);
16773 void nl80211_exit(void)
16775 netlink_unregister_notifier(&nl80211_netlink_notifier);
16776 genl_unregister_family(&nl80211_fam);
projects / linux.git / blob