2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
5 * Copyright 2013-2014 Intel Mobile Communications GmbH
6 * Copyright 2015-2017 Intel Deutschland GmbH
7 * Copyright (C) 2018-2019 Intel Corporation
11 #include <linux/module.h>
12 #include <linux/err.h>
13 #include <linux/slab.h>
14 #include <linux/list.h>
15 #include <linux/if_ether.h>
16 #include <linux/ieee80211.h>
17 #include <linux/nl80211.h>
18 #include <linux/rtnetlink.h>
19 #include <linux/netlink.h>
20 #include <linux/nospec.h>
21 #include <linux/etherdevice.h>
22 #include <net/net_namespace.h>
23 #include <net/genetlink.h>
24 #include <net/cfg80211.h>
26 #include <net/inet_connection_sock.h>
32 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
33 struct genl_info *info,
34 struct cfg80211_crypto_settings *settings,
37 /* the netlink family */
38 static struct genl_family nl80211_fam;
40 /* multicast groups */
41 enum nl80211_multicast_groups {
44 NL80211_MCGRP_REGULATORY,
48 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
51 static const struct genl_multicast_group nl80211_mcgrps[] = {
52 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
53 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
54 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
55 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
56 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
57 [NL80211_MCGRP_NAN] = { .name = NL80211_MULTICAST_GROUP_NAN },
58 #ifdef CONFIG_NL80211_TESTMODE
59 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
63 /* returns ERR_PTR values */
64 static struct wireless_dev *
65 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
67 struct cfg80211_registered_device *rdev;
68 struct wireless_dev *result = NULL;
69 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
70 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
77 if (!have_ifidx && !have_wdev_id)
78 return ERR_PTR(-EINVAL);
81 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
83 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
84 wiphy_idx = wdev_id >> 32;
87 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
88 struct wireless_dev *wdev;
90 if (wiphy_net(&rdev->wiphy) != netns)
93 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
96 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
97 if (have_ifidx && wdev->netdev &&
98 wdev->netdev->ifindex == ifidx) {
102 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
114 return ERR_PTR(-ENODEV);
117 static struct cfg80211_registered_device *
118 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
120 struct cfg80211_registered_device *rdev = NULL, *tmp;
121 struct net_device *netdev;
125 if (!attrs[NL80211_ATTR_WIPHY] &&
126 !attrs[NL80211_ATTR_IFINDEX] &&
127 !attrs[NL80211_ATTR_WDEV])
128 return ERR_PTR(-EINVAL);
130 if (attrs[NL80211_ATTR_WIPHY])
131 rdev = cfg80211_rdev_by_wiphy_idx(
132 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
134 if (attrs[NL80211_ATTR_WDEV]) {
135 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
136 struct wireless_dev *wdev;
139 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
141 /* make sure wdev exists */
142 list_for_each_entry(wdev, &tmp->wiphy.wdev_list, list) {
143 if (wdev->identifier != (u32)wdev_id)
152 if (rdev && tmp != rdev)
153 return ERR_PTR(-EINVAL);
158 if (attrs[NL80211_ATTR_IFINDEX]) {
159 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
161 netdev = __dev_get_by_index(netns, ifindex);
163 if (netdev->ieee80211_ptr)
165 netdev->ieee80211_ptr->wiphy);
169 /* not wireless device -- return error */
171 return ERR_PTR(-EINVAL);
173 /* mismatch -- return error */
174 if (rdev && tmp != rdev)
175 return ERR_PTR(-EINVAL);
182 return ERR_PTR(-ENODEV);
184 if (netns != wiphy_net(&rdev->wiphy))
185 return ERR_PTR(-ENODEV);
191 * This function returns a pointer to the driver
192 * that the genl_info item that is passed refers to.
194 * The result of this can be a PTR_ERR and hence must
195 * be checked with IS_ERR() for errors.
197 static struct cfg80211_registered_device *
198 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
200 return __cfg80211_rdev_from_attrs(netns, info->attrs);
203 static int validate_ie_attr(const struct nlattr *attr,
204 struct netlink_ext_ack *extack)
206 const u8 *data = nla_data(attr);
207 unsigned int len = nla_len(attr);
208 const struct element *elem;
210 for_each_element(elem, data, len) {
214 if (for_each_element_completed(elem, data, len))
217 NL_SET_ERR_MSG_ATTR(extack, attr, "malformed information elements");
221 /* policy for the attributes */
222 static const struct nla_policy
223 nl80211_ftm_responder_policy[NL80211_FTM_RESP_ATTR_MAX + 1] = {
224 [NL80211_FTM_RESP_ATTR_ENABLED] = { .type = NLA_FLAG, },
225 [NL80211_FTM_RESP_ATTR_LCI] = { .type = NLA_BINARY,
227 [NL80211_FTM_RESP_ATTR_CIVICLOC] = { .type = NLA_BINARY,
231 static const struct nla_policy
232 nl80211_pmsr_ftm_req_attr_policy[NL80211_PMSR_FTM_REQ_ATTR_MAX + 1] = {
233 [NL80211_PMSR_FTM_REQ_ATTR_ASAP] = { .type = NLA_FLAG },
234 [NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE] = { .type = NLA_U32 },
235 [NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP] =
236 NLA_POLICY_MAX(NLA_U8, 15),
237 [NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD] = { .type = NLA_U16 },
238 [NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION] =
239 NLA_POLICY_MAX(NLA_U8, 15),
240 [NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST] =
241 NLA_POLICY_MAX(NLA_U8, 31),
242 [NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES] = { .type = NLA_U8 },
243 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI] = { .type = NLA_FLAG },
244 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC] = { .type = NLA_FLAG },
247 static const struct nla_policy
248 nl80211_pmsr_req_data_policy[NL80211_PMSR_TYPE_MAX + 1] = {
249 [NL80211_PMSR_TYPE_FTM] =
250 NLA_POLICY_NESTED(nl80211_pmsr_ftm_req_attr_policy),
253 static const struct nla_policy
254 nl80211_pmsr_req_attr_policy[NL80211_PMSR_REQ_ATTR_MAX + 1] = {
255 [NL80211_PMSR_REQ_ATTR_DATA] =
256 NLA_POLICY_NESTED(nl80211_pmsr_req_data_policy),
257 [NL80211_PMSR_REQ_ATTR_GET_AP_TSF] = { .type = NLA_FLAG },
260 static const struct nla_policy
261 nl80211_psmr_peer_attr_policy[NL80211_PMSR_PEER_ATTR_MAX + 1] = {
262 [NL80211_PMSR_PEER_ATTR_ADDR] = NLA_POLICY_ETH_ADDR,
264 * we could specify this again to be the top-level policy,
265 * but that would open us up to recursion problems ...
267 [NL80211_PMSR_PEER_ATTR_CHAN] = { .type = NLA_NESTED },
268 [NL80211_PMSR_PEER_ATTR_REQ] =
269 NLA_POLICY_NESTED(nl80211_pmsr_req_attr_policy),
270 [NL80211_PMSR_PEER_ATTR_RESP] = { .type = NLA_REJECT },
273 static const struct nla_policy
274 nl80211_pmsr_attr_policy[NL80211_PMSR_ATTR_MAX + 1] = {
275 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_REJECT },
276 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_REJECT },
277 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_REJECT },
278 [NL80211_PMSR_ATTR_TYPE_CAPA] = { .type = NLA_REJECT },
279 [NL80211_PMSR_ATTR_PEERS] =
280 NLA_POLICY_NESTED_ARRAY(nl80211_psmr_peer_attr_policy),
283 const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
284 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
285 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
287 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
289 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
290 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
291 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
292 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
293 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
295 [NL80211_ATTR_WIPHY_RETRY_SHORT] = NLA_POLICY_MIN(NLA_U8, 1),
296 [NL80211_ATTR_WIPHY_RETRY_LONG] = NLA_POLICY_MIN(NLA_U8, 1),
297 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
298 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
299 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
300 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
302 [NL80211_ATTR_IFTYPE] = NLA_POLICY_MAX(NLA_U32, NL80211_IFTYPE_MAX),
303 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
304 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
306 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
307 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
309 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
310 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
311 .len = WLAN_MAX_KEY_LEN },
312 [NL80211_ATTR_KEY_IDX] = NLA_POLICY_MAX(NLA_U8, 5),
313 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
314 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
315 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
316 [NL80211_ATTR_KEY_TYPE] =
317 NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES),
319 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
320 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
321 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
322 .len = IEEE80211_MAX_DATA_LEN },
323 [NL80211_ATTR_BEACON_TAIL] =
324 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
325 IEEE80211_MAX_DATA_LEN),
326 [NL80211_ATTR_STA_AID] =
327 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
328 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
329 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
330 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
331 .len = NL80211_MAX_SUPP_RATES },
332 [NL80211_ATTR_STA_PLINK_ACTION] =
333 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_ACTIONS - 1),
334 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
335 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
336 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
337 .len = IEEE80211_MAX_MESH_ID_LEN },
338 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
340 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
341 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
343 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
344 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
345 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
346 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
347 .len = NL80211_MAX_SUPP_RATES },
348 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
350 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
351 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
353 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
355 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
356 [NL80211_ATTR_IE] = NLA_POLICY_VALIDATE_FN(NLA_BINARY,
358 IEEE80211_MAX_DATA_LEN),
359 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
360 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
362 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
363 .len = IEEE80211_MAX_SSID_LEN },
364 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
365 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
366 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
367 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
368 [NL80211_ATTR_USE_MFP] = NLA_POLICY_RANGE(NLA_U32,
370 NL80211_MFP_OPTIONAL),
371 [NL80211_ATTR_STA_FLAGS2] = {
372 .len = sizeof(struct nl80211_sta_flag_update),
374 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
375 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
376 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
377 [NL80211_ATTR_CONTROL_PORT_OVER_NL80211] = { .type = NLA_FLAG },
378 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
379 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
380 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
381 [NL80211_ATTR_PID] = { .type = NLA_U32 },
382 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
383 [NL80211_ATTR_PMKID] = { .len = WLAN_PMKID_LEN },
384 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
385 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
386 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
387 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
388 .len = IEEE80211_MAX_DATA_LEN },
389 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
390 [NL80211_ATTR_PS_STATE] = NLA_POLICY_RANGE(NLA_U32,
393 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
394 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
395 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
396 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
397 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
398 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
399 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
400 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
401 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
402 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
403 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
404 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
405 [NL80211_ATTR_STA_PLINK_STATE] =
406 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_STATES - 1),
407 [NL80211_ATTR_MESH_PEER_AID] =
408 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
409 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
410 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
411 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
412 [NL80211_ATTR_HIDDEN_SSID] =
413 NLA_POLICY_RANGE(NLA_U32,
414 NL80211_HIDDEN_SSID_NOT_IN_USE,
415 NL80211_HIDDEN_SSID_ZERO_CONTENTS),
416 [NL80211_ATTR_IE_PROBE_RESP] =
417 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
418 IEEE80211_MAX_DATA_LEN),
419 [NL80211_ATTR_IE_ASSOC_RESP] =
420 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
421 IEEE80211_MAX_DATA_LEN),
422 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
423 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
424 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
425 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
426 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
427 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
428 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
429 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
430 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
431 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
432 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
433 .len = IEEE80211_MAX_DATA_LEN },
434 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
435 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
436 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
437 .len = NL80211_HT_CAPABILITY_LEN
439 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
440 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
441 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
442 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
443 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
444 [NL80211_ATTR_AUTH_DATA] = { .type = NLA_BINARY, },
445 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
446 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
447 [NL80211_ATTR_P2P_CTWINDOW] = NLA_POLICY_MAX(NLA_U8, 127),
448 [NL80211_ATTR_P2P_OPPPS] = NLA_POLICY_MAX(NLA_U8, 1),
449 [NL80211_ATTR_LOCAL_MESH_POWER_MODE] =
450 NLA_POLICY_RANGE(NLA_U32,
451 NL80211_MESH_POWER_UNKNOWN + 1,
452 NL80211_MESH_POWER_MAX),
453 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
454 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
455 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
456 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
457 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
458 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
459 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
460 .len = NL80211_VHT_CAPABILITY_LEN,
462 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
463 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
464 .len = IEEE80211_MAX_DATA_LEN },
465 [NL80211_ATTR_PEER_AID] =
466 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
467 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
468 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
469 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
470 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
471 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
472 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
473 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
474 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
475 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
476 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
477 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
478 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
479 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
480 .len = IEEE80211_QOS_MAP_LEN_MAX },
481 [NL80211_ATTR_MAC_HINT] = { .len = ETH_ALEN },
482 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
483 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
484 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
485 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
486 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
487 [NL80211_ATTR_TSID] = NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_TIDS - 1),
488 [NL80211_ATTR_USER_PRIO] =
489 NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_UPS - 1),
490 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
491 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
492 [NL80211_ATTR_MAC_MASK] = { .len = ETH_ALEN },
493 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
494 [NL80211_ATTR_NETNS_FD] = { .type = NLA_U32 },
495 [NL80211_ATTR_SCHED_SCAN_DELAY] = { .type = NLA_U32 },
496 [NL80211_ATTR_REG_INDOOR] = { .type = NLA_FLAG },
497 [NL80211_ATTR_PBSS] = { .type = NLA_FLAG },
498 [NL80211_ATTR_BSS_SELECT] = { .type = NLA_NESTED },
499 [NL80211_ATTR_STA_SUPPORT_P2P_PS] =
500 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_P2P_PS_STATUS - 1),
501 [NL80211_ATTR_MU_MIMO_GROUP_DATA] = {
502 .len = VHT_MUMIMO_GROUPS_DATA_LEN
504 [NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR] = { .len = ETH_ALEN },
505 [NL80211_ATTR_NAN_MASTER_PREF] = NLA_POLICY_MIN(NLA_U8, 1),
506 [NL80211_ATTR_BANDS] = { .type = NLA_U32 },
507 [NL80211_ATTR_NAN_FUNC] = { .type = NLA_NESTED },
508 [NL80211_ATTR_FILS_KEK] = { .type = NLA_BINARY,
509 .len = FILS_MAX_KEK_LEN },
510 [NL80211_ATTR_FILS_NONCES] = { .len = 2 * FILS_NONCE_LEN },
511 [NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED] = { .type = NLA_FLAG, },
512 [NL80211_ATTR_BSSID] = { .len = ETH_ALEN },
513 [NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] = { .type = NLA_S8 },
514 [NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST] = {
515 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
517 [NL80211_ATTR_TIMEOUT_REASON] = { .type = NLA_U32 },
518 [NL80211_ATTR_FILS_ERP_USERNAME] = { .type = NLA_BINARY,
519 .len = FILS_ERP_MAX_USERNAME_LEN },
520 [NL80211_ATTR_FILS_ERP_REALM] = { .type = NLA_BINARY,
521 .len = FILS_ERP_MAX_REALM_LEN },
522 [NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] = { .type = NLA_U16 },
523 [NL80211_ATTR_FILS_ERP_RRK] = { .type = NLA_BINARY,
524 .len = FILS_ERP_MAX_RRK_LEN },
525 [NL80211_ATTR_FILS_CACHE_ID] = { .len = 2 },
526 [NL80211_ATTR_PMK] = { .type = NLA_BINARY, .len = PMK_MAX_LEN },
527 [NL80211_ATTR_SCHED_SCAN_MULTI] = { .type = NLA_FLAG },
528 [NL80211_ATTR_EXTERNAL_AUTH_SUPPORT] = { .type = NLA_FLAG },
530 [NL80211_ATTR_TXQ_LIMIT] = { .type = NLA_U32 },
531 [NL80211_ATTR_TXQ_MEMORY_LIMIT] = { .type = NLA_U32 },
532 [NL80211_ATTR_TXQ_QUANTUM] = { .type = NLA_U32 },
533 [NL80211_ATTR_HE_CAPABILITY] = { .type = NLA_BINARY,
534 .len = NL80211_HE_MAX_CAPABILITY_LEN },
536 [NL80211_ATTR_FTM_RESPONDER] = {
538 .validation_data = nl80211_ftm_responder_policy,
540 [NL80211_ATTR_TIMEOUT] = NLA_POLICY_MIN(NLA_U32, 1),
541 [NL80211_ATTR_PEER_MEASUREMENTS] =
542 NLA_POLICY_NESTED(nl80211_pmsr_attr_policy),
543 [NL80211_ATTR_AIRTIME_WEIGHT] = NLA_POLICY_MIN(NLA_U16, 1),
546 /* policy for the key attributes */
547 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
548 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
549 [NL80211_KEY_IDX] = { .type = NLA_U8 },
550 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
551 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
552 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
553 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
554 [NL80211_KEY_TYPE] = NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES - 1),
555 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
558 /* policy for the key default flags */
559 static const struct nla_policy
560 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
561 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
562 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
566 /* policy for WoWLAN attributes */
567 static const struct nla_policy
568 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
569 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
570 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
571 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
572 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
573 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
574 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
575 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
576 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
577 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
578 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
581 static const struct nla_policy
582 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
583 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
584 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
585 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
586 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
587 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
588 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
589 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
590 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
592 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
593 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
595 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
596 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
597 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
599 #endif /* CONFIG_PM */
601 /* policy for coalesce rule attributes */
602 static const struct nla_policy
603 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
604 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
605 [NL80211_ATTR_COALESCE_RULE_CONDITION] =
606 NLA_POLICY_RANGE(NLA_U32,
607 NL80211_COALESCE_CONDITION_MATCH,
608 NL80211_COALESCE_CONDITION_NO_MATCH),
609 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
612 /* policy for GTK rekey offload attributes */
613 static const struct nla_policy
614 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
615 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
616 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
617 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
620 static const struct nla_policy
621 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
622 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
623 .len = IEEE80211_MAX_SSID_LEN },
624 [NL80211_SCHED_SCAN_MATCH_ATTR_BSSID] = { .len = ETH_ALEN },
625 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
628 static const struct nla_policy
629 nl80211_plan_policy[NL80211_SCHED_SCAN_PLAN_MAX + 1] = {
630 [NL80211_SCHED_SCAN_PLAN_INTERVAL] = { .type = NLA_U32 },
631 [NL80211_SCHED_SCAN_PLAN_ITERATIONS] = { .type = NLA_U32 },
634 static const struct nla_policy
635 nl80211_bss_select_policy[NL80211_BSS_SELECT_ATTR_MAX + 1] = {
636 [NL80211_BSS_SELECT_ATTR_RSSI] = { .type = NLA_FLAG },
637 [NL80211_BSS_SELECT_ATTR_BAND_PREF] = { .type = NLA_U32 },
638 [NL80211_BSS_SELECT_ATTR_RSSI_ADJUST] = {
639 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
643 /* policy for NAN function attributes */
644 static const struct nla_policy
645 nl80211_nan_func_policy[NL80211_NAN_FUNC_ATTR_MAX + 1] = {
646 [NL80211_NAN_FUNC_TYPE] = { .type = NLA_U8 },
647 [NL80211_NAN_FUNC_SERVICE_ID] = {
648 .len = NL80211_NAN_FUNC_SERVICE_ID_LEN },
649 [NL80211_NAN_FUNC_PUBLISH_TYPE] = { .type = NLA_U8 },
650 [NL80211_NAN_FUNC_PUBLISH_BCAST] = { .type = NLA_FLAG },
651 [NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE] = { .type = NLA_FLAG },
652 [NL80211_NAN_FUNC_FOLLOW_UP_ID] = { .type = NLA_U8 },
653 [NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] = { .type = NLA_U8 },
654 [NL80211_NAN_FUNC_FOLLOW_UP_DEST] = { .len = ETH_ALEN },
655 [NL80211_NAN_FUNC_CLOSE_RANGE] = { .type = NLA_FLAG },
656 [NL80211_NAN_FUNC_TTL] = { .type = NLA_U32 },
657 [NL80211_NAN_FUNC_SERVICE_INFO] = { .type = NLA_BINARY,
658 .len = NL80211_NAN_FUNC_SERVICE_SPEC_INFO_MAX_LEN },
659 [NL80211_NAN_FUNC_SRF] = { .type = NLA_NESTED },
660 [NL80211_NAN_FUNC_RX_MATCH_FILTER] = { .type = NLA_NESTED },
661 [NL80211_NAN_FUNC_TX_MATCH_FILTER] = { .type = NLA_NESTED },
662 [NL80211_NAN_FUNC_INSTANCE_ID] = { .type = NLA_U8 },
663 [NL80211_NAN_FUNC_TERM_REASON] = { .type = NLA_U8 },
666 /* policy for Service Response Filter attributes */
667 static const struct nla_policy
668 nl80211_nan_srf_policy[NL80211_NAN_SRF_ATTR_MAX + 1] = {
669 [NL80211_NAN_SRF_INCLUDE] = { .type = NLA_FLAG },
670 [NL80211_NAN_SRF_BF] = { .type = NLA_BINARY,
671 .len = NL80211_NAN_FUNC_SRF_MAX_LEN },
672 [NL80211_NAN_SRF_BF_IDX] = { .type = NLA_U8 },
673 [NL80211_NAN_SRF_MAC_ADDRS] = { .type = NLA_NESTED },
676 /* policy for packet pattern attributes */
677 static const struct nla_policy
678 nl80211_packet_pattern_policy[MAX_NL80211_PKTPAT + 1] = {
679 [NL80211_PKTPAT_MASK] = { .type = NLA_BINARY, },
680 [NL80211_PKTPAT_PATTERN] = { .type = NLA_BINARY, },
681 [NL80211_PKTPAT_OFFSET] = { .type = NLA_U32 },
684 int nl80211_prepare_wdev_dump(struct netlink_callback *cb,
685 struct cfg80211_registered_device **rdev,
686 struct wireless_dev **wdev)
691 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
692 genl_family_attrbuf(&nl80211_fam),
693 nl80211_fam.maxattr, nl80211_policy, NULL);
697 *wdev = __cfg80211_wdev_from_attrs(
698 sock_net(cb->skb->sk),
699 genl_family_attrbuf(&nl80211_fam));
701 return PTR_ERR(*wdev);
702 *rdev = wiphy_to_rdev((*wdev)->wiphy);
703 /* 0 is the first index - add 1 to parse only once */
704 cb->args[0] = (*rdev)->wiphy_idx + 1;
705 cb->args[1] = (*wdev)->identifier;
707 /* subtract the 1 again here */
708 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
709 struct wireless_dev *tmp;
713 *rdev = wiphy_to_rdev(wiphy);
716 list_for_each_entry(tmp, &(*rdev)->wiphy.wdev_list, list) {
717 if (tmp->identifier == cb->args[1]) {
730 /* message building helper */
731 void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
734 /* since there is no private header just add the generic one */
735 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
738 static int nl80211_msg_put_wmm_rules(struct sk_buff *msg,
739 const struct ieee80211_reg_rule *rule)
742 struct nlattr *nl_wmm_rules =
743 nla_nest_start(msg, NL80211_FREQUENCY_ATTR_WMM);
746 goto nla_put_failure;
748 for (j = 0; j < IEEE80211_NUM_ACS; j++) {
749 struct nlattr *nl_wmm_rule = nla_nest_start(msg, j);
752 goto nla_put_failure;
754 if (nla_put_u16(msg, NL80211_WMMR_CW_MIN,
755 rule->wmm_rule.client[j].cw_min) ||
756 nla_put_u16(msg, NL80211_WMMR_CW_MAX,
757 rule->wmm_rule.client[j].cw_max) ||
758 nla_put_u8(msg, NL80211_WMMR_AIFSN,
759 rule->wmm_rule.client[j].aifsn) ||
760 nla_put_u16(msg, NL80211_WMMR_TXOP,
761 rule->wmm_rule.client[j].cot))
762 goto nla_put_failure;
764 nla_nest_end(msg, nl_wmm_rule);
766 nla_nest_end(msg, nl_wmm_rules);
774 static int nl80211_msg_put_channel(struct sk_buff *msg, struct wiphy *wiphy,
775 struct ieee80211_channel *chan,
778 /* Some channels must be completely excluded from the
779 * list to protect old user-space tools from breaking
781 if (!large && chan->flags &
782 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
785 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
787 goto nla_put_failure;
789 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
790 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
791 goto nla_put_failure;
792 if (chan->flags & IEEE80211_CHAN_NO_IR) {
793 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
794 goto nla_put_failure;
795 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
796 goto nla_put_failure;
798 if (chan->flags & IEEE80211_CHAN_RADAR) {
799 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
800 goto nla_put_failure;
804 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
806 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
808 goto nla_put_failure;
809 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
811 goto nla_put_failure;
813 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
815 goto nla_put_failure;
820 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
821 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
822 goto nla_put_failure;
823 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
824 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
825 goto nla_put_failure;
826 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
827 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
828 goto nla_put_failure;
829 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
830 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
831 goto nla_put_failure;
832 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
833 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
834 goto nla_put_failure;
835 if ((chan->flags & IEEE80211_CHAN_IR_CONCURRENT) &&
836 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_IR_CONCURRENT))
837 goto nla_put_failure;
838 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
839 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
840 goto nla_put_failure;
841 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
842 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
843 goto nla_put_failure;
846 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
847 DBM_TO_MBM(chan->max_power)))
848 goto nla_put_failure;
851 const struct ieee80211_reg_rule *rule =
852 freq_reg_info(wiphy, MHZ_TO_KHZ(chan->center_freq));
854 if (!IS_ERR_OR_NULL(rule) && rule->has_wmm) {
855 if (nl80211_msg_put_wmm_rules(msg, rule))
856 goto nla_put_failure;
866 static bool nl80211_put_txq_stats(struct sk_buff *msg,
867 struct cfg80211_txq_stats *txqstats,
870 struct nlattr *txqattr;
872 #define PUT_TXQVAL_U32(attr, memb) do { \
873 if (txqstats->filled & BIT(NL80211_TXQ_STATS_ ## attr) && \
874 nla_put_u32(msg, NL80211_TXQ_STATS_ ## attr, txqstats->memb)) \
878 txqattr = nla_nest_start(msg, attrtype);
882 PUT_TXQVAL_U32(BACKLOG_BYTES, backlog_bytes);
883 PUT_TXQVAL_U32(BACKLOG_PACKETS, backlog_packets);
884 PUT_TXQVAL_U32(FLOWS, flows);
885 PUT_TXQVAL_U32(DROPS, drops);
886 PUT_TXQVAL_U32(ECN_MARKS, ecn_marks);
887 PUT_TXQVAL_U32(OVERLIMIT, overlimit);
888 PUT_TXQVAL_U32(OVERMEMORY, overmemory);
889 PUT_TXQVAL_U32(COLLISIONS, collisions);
890 PUT_TXQVAL_U32(TX_BYTES, tx_bytes);
891 PUT_TXQVAL_U32(TX_PACKETS, tx_packets);
892 PUT_TXQVAL_U32(MAX_FLOWS, max_flows);
893 nla_nest_end(msg, txqattr);
895 #undef PUT_TXQVAL_U32
899 /* netlink command implementations */
906 bool def_uni, def_multi;
909 static int nl80211_parse_key_new(struct genl_info *info, struct nlattr *key,
912 struct nlattr *tb[NL80211_KEY_MAX + 1];
913 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
914 nl80211_key_policy, info->extack);
918 k->def = !!tb[NL80211_KEY_DEFAULT];
919 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
928 if (tb[NL80211_KEY_IDX])
929 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
931 if (tb[NL80211_KEY_DATA]) {
932 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
933 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
936 if (tb[NL80211_KEY_SEQ]) {
937 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
938 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
941 if (tb[NL80211_KEY_CIPHER])
942 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
944 if (tb[NL80211_KEY_TYPE])
945 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
947 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
948 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
950 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
951 tb[NL80211_KEY_DEFAULT_TYPES],
952 nl80211_key_default_policy,
957 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
958 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
964 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
966 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
967 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
968 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
971 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
972 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
973 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
976 if (info->attrs[NL80211_ATTR_KEY_IDX])
977 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
979 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
980 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
982 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
983 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
992 if (info->attrs[NL80211_ATTR_KEY_TYPE])
993 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
995 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
996 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
997 int err = nla_parse_nested(kdt,
998 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
999 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
1000 nl80211_key_default_policy,
1005 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1006 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1012 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
1016 memset(k, 0, sizeof(*k));
1020 if (info->attrs[NL80211_ATTR_KEY])
1021 err = nl80211_parse_key_new(info, info->attrs[NL80211_ATTR_KEY], k);
1023 err = nl80211_parse_key_old(info, k);
1028 if (k->def && k->defmgmt) {
1029 GENL_SET_ERR_MSG(info, "key with def && defmgmt is invalid");
1034 if (k->def_uni || !k->def_multi) {
1035 GENL_SET_ERR_MSG(info, "defmgmt key must be mcast");
1042 if (k->idx < 4 || k->idx > 5) {
1043 GENL_SET_ERR_MSG(info,
1044 "defmgmt key idx not 4 or 5");
1047 } else if (k->def) {
1048 if (k->idx < 0 || k->idx > 3) {
1049 GENL_SET_ERR_MSG(info, "def key idx not 0-3");
1053 if (k->idx < 0 || k->idx > 5) {
1054 GENL_SET_ERR_MSG(info, "key idx not 0-5");
1063 static struct cfg80211_cached_keys *
1064 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
1065 struct genl_info *info, bool *no_ht)
1067 struct nlattr *keys = info->attrs[NL80211_ATTR_KEYS];
1068 struct key_parse parse;
1070 struct cfg80211_cached_keys *result;
1071 int rem, err, def = 0;
1072 bool have_key = false;
1074 nla_for_each_nested(key, keys, rem) {
1082 result = kzalloc(sizeof(*result), GFP_KERNEL);
1084 return ERR_PTR(-ENOMEM);
1088 nla_for_each_nested(key, keys, rem) {
1089 memset(&parse, 0, sizeof(parse));
1092 err = nl80211_parse_key_new(info, key, &parse);
1098 if (parse.idx < 0 || parse.idx > 3) {
1099 GENL_SET_ERR_MSG(info, "key index out of range [0-3]");
1104 GENL_SET_ERR_MSG(info,
1105 "only one key can be default");
1109 result->def = parse.idx;
1110 if (!parse.def_uni || !parse.def_multi)
1112 } else if (parse.defmgmt)
1114 err = cfg80211_validate_key_settings(rdev, &parse.p,
1115 parse.idx, false, NULL);
1118 if (parse.p.cipher != WLAN_CIPHER_SUITE_WEP40 &&
1119 parse.p.cipher != WLAN_CIPHER_SUITE_WEP104) {
1120 GENL_SET_ERR_MSG(info, "connect key must be WEP");
1124 result->params[parse.idx].cipher = parse.p.cipher;
1125 result->params[parse.idx].key_len = parse.p.key_len;
1126 result->params[parse.idx].key = result->data[parse.idx];
1127 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
1129 /* must be WEP key if we got here */
1134 if (result->def < 0) {
1136 GENL_SET_ERR_MSG(info, "need a default/TX key");
1143 return ERR_PTR(err);
1146 static int nl80211_key_allowed(struct wireless_dev *wdev)
1148 ASSERT_WDEV_LOCK(wdev);
1150 switch (wdev->iftype) {
1151 case NL80211_IFTYPE_AP:
1152 case NL80211_IFTYPE_AP_VLAN:
1153 case NL80211_IFTYPE_P2P_GO:
1154 case NL80211_IFTYPE_MESH_POINT:
1156 case NL80211_IFTYPE_ADHOC:
1157 case NL80211_IFTYPE_STATION:
1158 case NL80211_IFTYPE_P2P_CLIENT:
1159 if (!wdev->current_bss)
1162 case NL80211_IFTYPE_UNSPECIFIED:
1163 case NL80211_IFTYPE_OCB:
1164 case NL80211_IFTYPE_MONITOR:
1165 case NL80211_IFTYPE_NAN:
1166 case NL80211_IFTYPE_P2P_DEVICE:
1167 case NL80211_IFTYPE_WDS:
1168 case NUM_NL80211_IFTYPES:
1175 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
1178 struct ieee80211_channel *chan;
1182 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
1183 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
1188 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
1190 struct nlattr *nl_modes = nla_nest_start(msg, attr);
1194 goto nla_put_failure;
1198 if ((ifmodes & 1) && nla_put_flag(msg, i))
1199 goto nla_put_failure;
1204 nla_nest_end(msg, nl_modes);
1211 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
1212 struct sk_buff *msg,
1215 struct nlattr *nl_combis;
1218 nl_combis = nla_nest_start(msg,
1219 NL80211_ATTR_INTERFACE_COMBINATIONS);
1221 goto nla_put_failure;
1223 for (i = 0; i < wiphy->n_iface_combinations; i++) {
1224 const struct ieee80211_iface_combination *c;
1225 struct nlattr *nl_combi, *nl_limits;
1227 c = &wiphy->iface_combinations[i];
1229 nl_combi = nla_nest_start(msg, i + 1);
1231 goto nla_put_failure;
1233 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
1235 goto nla_put_failure;
1237 for (j = 0; j < c->n_limits; j++) {
1238 struct nlattr *nl_limit;
1240 nl_limit = nla_nest_start(msg, j + 1);
1242 goto nla_put_failure;
1243 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
1245 goto nla_put_failure;
1246 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
1247 c->limits[j].types))
1248 goto nla_put_failure;
1249 nla_nest_end(msg, nl_limit);
1252 nla_nest_end(msg, nl_limits);
1254 if (c->beacon_int_infra_match &&
1255 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
1256 goto nla_put_failure;
1257 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
1258 c->num_different_channels) ||
1259 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
1261 goto nla_put_failure;
1263 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
1264 c->radar_detect_widths) ||
1265 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
1266 c->radar_detect_regions)))
1267 goto nla_put_failure;
1268 if (c->beacon_int_min_gcd &&
1269 nla_put_u32(msg, NL80211_IFACE_COMB_BI_MIN_GCD,
1270 c->beacon_int_min_gcd))
1271 goto nla_put_failure;
1273 nla_nest_end(msg, nl_combi);
1276 nla_nest_end(msg, nl_combis);
1284 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1285 struct sk_buff *msg)
1287 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1288 struct nlattr *nl_tcp;
1293 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1297 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1298 tcp->data_payload_max))
1301 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1302 tcp->data_payload_max))
1305 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1308 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1309 sizeof(*tcp->tok), tcp->tok))
1312 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1313 tcp->data_interval_max))
1316 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1317 tcp->wake_payload_max))
1320 nla_nest_end(msg, nl_tcp);
1324 static int nl80211_send_wowlan(struct sk_buff *msg,
1325 struct cfg80211_registered_device *rdev,
1328 struct nlattr *nl_wowlan;
1330 if (!rdev->wiphy.wowlan)
1333 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1337 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1338 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1339 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1340 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1341 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1342 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1343 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1344 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1345 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1346 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1347 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1348 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1349 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1350 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1351 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1352 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1355 if (rdev->wiphy.wowlan->n_patterns) {
1356 struct nl80211_pattern_support pat = {
1357 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1358 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1359 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1360 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1363 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1368 if ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_NET_DETECT) &&
1369 nla_put_u32(msg, NL80211_WOWLAN_TRIG_NET_DETECT,
1370 rdev->wiphy.wowlan->max_nd_match_sets))
1373 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1376 nla_nest_end(msg, nl_wowlan);
1382 static int nl80211_send_coalesce(struct sk_buff *msg,
1383 struct cfg80211_registered_device *rdev)
1385 struct nl80211_coalesce_rule_support rule;
1387 if (!rdev->wiphy.coalesce)
1390 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1391 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1392 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1393 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1394 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1395 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1397 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1404 nl80211_send_iftype_data(struct sk_buff *msg,
1405 const struct ieee80211_sband_iftype_data *iftdata)
1407 const struct ieee80211_sta_he_cap *he_cap = &iftdata->he_cap;
1409 if (nl80211_put_iftypes(msg, NL80211_BAND_IFTYPE_ATTR_IFTYPES,
1410 iftdata->types_mask))
1413 if (he_cap->has_he) {
1414 if (nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MAC,
1415 sizeof(he_cap->he_cap_elem.mac_cap_info),
1416 he_cap->he_cap_elem.mac_cap_info) ||
1417 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PHY,
1418 sizeof(he_cap->he_cap_elem.phy_cap_info),
1419 he_cap->he_cap_elem.phy_cap_info) ||
1420 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MCS_SET,
1421 sizeof(he_cap->he_mcs_nss_supp),
1422 &he_cap->he_mcs_nss_supp) ||
1423 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PPE,
1424 sizeof(he_cap->ppe_thres), he_cap->ppe_thres))
1431 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1432 struct ieee80211_supported_band *sband)
1434 struct nlattr *nl_rates, *nl_rate;
1435 struct ieee80211_rate *rate;
1439 if (sband->ht_cap.ht_supported &&
1440 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1441 sizeof(sband->ht_cap.mcs),
1442 &sband->ht_cap.mcs) ||
1443 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1444 sband->ht_cap.cap) ||
1445 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1446 sband->ht_cap.ampdu_factor) ||
1447 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1448 sband->ht_cap.ampdu_density)))
1452 if (sband->vht_cap.vht_supported &&
1453 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1454 sizeof(sband->vht_cap.vht_mcs),
1455 &sband->vht_cap.vht_mcs) ||
1456 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1457 sband->vht_cap.cap)))
1460 if (sband->n_iftype_data) {
1461 struct nlattr *nl_iftype_data =
1462 nla_nest_start(msg, NL80211_BAND_ATTR_IFTYPE_DATA);
1465 if (!nl_iftype_data)
1468 for (i = 0; i < sband->n_iftype_data; i++) {
1469 struct nlattr *iftdata;
1471 iftdata = nla_nest_start(msg, i + 1);
1475 err = nl80211_send_iftype_data(msg,
1476 &sband->iftype_data[i]);
1480 nla_nest_end(msg, iftdata);
1483 nla_nest_end(msg, nl_iftype_data);
1487 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1491 for (i = 0; i < sband->n_bitrates; i++) {
1492 nl_rate = nla_nest_start(msg, i);
1496 rate = &sband->bitrates[i];
1497 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1500 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1502 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1505 nla_nest_end(msg, nl_rate);
1508 nla_nest_end(msg, nl_rates);
1514 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1515 const struct ieee80211_txrx_stypes *mgmt_stypes)
1518 struct nlattr *nl_ftypes, *nl_ifs;
1519 enum nl80211_iftype ift;
1525 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1529 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1530 nl_ftypes = nla_nest_start(msg, ift);
1534 stypes = mgmt_stypes[ift].tx;
1537 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1538 (i << 4) | IEEE80211_FTYPE_MGMT))
1543 nla_nest_end(msg, nl_ftypes);
1546 nla_nest_end(msg, nl_ifs);
1548 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1552 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1553 nl_ftypes = nla_nest_start(msg, ift);
1557 stypes = mgmt_stypes[ift].rx;
1560 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1561 (i << 4) | IEEE80211_FTYPE_MGMT))
1566 nla_nest_end(msg, nl_ftypes);
1568 nla_nest_end(msg, nl_ifs);
1573 #define CMD(op, n) \
1575 if (rdev->ops->op) { \
1577 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1578 goto nla_put_failure; \
1582 static int nl80211_add_commands_unsplit(struct cfg80211_registered_device *rdev,
1583 struct sk_buff *msg)
1588 * do *NOT* add anything into this function, new things need to be
1589 * advertised only to new versions of userspace that can deal with
1590 * the split (and they can't possibly care about new features...
1592 CMD(add_virtual_intf, NEW_INTERFACE);
1593 CMD(change_virtual_intf, SET_INTERFACE);
1594 CMD(add_key, NEW_KEY);
1595 CMD(start_ap, START_AP);
1596 CMD(add_station, NEW_STATION);
1597 CMD(add_mpath, NEW_MPATH);
1598 CMD(update_mesh_config, SET_MESH_CONFIG);
1599 CMD(change_bss, SET_BSS);
1600 CMD(auth, AUTHENTICATE);
1601 CMD(assoc, ASSOCIATE);
1602 CMD(deauth, DEAUTHENTICATE);
1603 CMD(disassoc, DISASSOCIATE);
1604 CMD(join_ibss, JOIN_IBSS);
1605 CMD(join_mesh, JOIN_MESH);
1606 CMD(set_pmksa, SET_PMKSA);
1607 CMD(del_pmksa, DEL_PMKSA);
1608 CMD(flush_pmksa, FLUSH_PMKSA);
1609 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1610 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1611 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1612 CMD(mgmt_tx, FRAME);
1613 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1614 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1616 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1617 goto nla_put_failure;
1619 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1620 rdev->ops->join_mesh) {
1622 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1623 goto nla_put_failure;
1625 CMD(set_wds_peer, SET_WDS_PEER);
1626 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1627 CMD(tdls_mgmt, TDLS_MGMT);
1628 CMD(tdls_oper, TDLS_OPER);
1630 if (rdev->wiphy.max_sched_scan_reqs)
1631 CMD(sched_scan_start, START_SCHED_SCAN);
1632 CMD(probe_client, PROBE_CLIENT);
1633 CMD(set_noack_map, SET_NOACK_MAP);
1634 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1636 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1637 goto nla_put_failure;
1639 CMD(start_p2p_device, START_P2P_DEVICE);
1640 CMD(set_mcast_rate, SET_MCAST_RATE);
1641 #ifdef CONFIG_NL80211_TESTMODE
1642 CMD(testmode_cmd, TESTMODE);
1645 if (rdev->ops->connect || rdev->ops->auth) {
1647 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1648 goto nla_put_failure;
1651 if (rdev->ops->disconnect || rdev->ops->deauth) {
1653 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1654 goto nla_put_failure;
1663 nl80211_send_pmsr_ftm_capa(const struct cfg80211_pmsr_capabilities *cap,
1664 struct sk_buff *msg)
1668 if (!cap->ftm.supported)
1671 ftm = nla_nest_start(msg, NL80211_PMSR_TYPE_FTM);
1675 if (cap->ftm.asap && nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_ASAP))
1677 if (cap->ftm.non_asap &&
1678 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP))
1680 if (cap->ftm.request_lci &&
1681 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI))
1683 if (cap->ftm.request_civicloc &&
1684 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC))
1686 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES,
1687 cap->ftm.preambles))
1689 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS,
1690 cap->ftm.bandwidths))
1692 if (cap->ftm.max_bursts_exponent >= 0 &&
1693 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT,
1694 cap->ftm.max_bursts_exponent))
1696 if (cap->ftm.max_ftms_per_burst &&
1697 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST,
1698 cap->ftm.max_ftms_per_burst))
1701 nla_nest_end(msg, ftm);
1705 static int nl80211_send_pmsr_capa(struct cfg80211_registered_device *rdev,
1706 struct sk_buff *msg)
1708 const struct cfg80211_pmsr_capabilities *cap = rdev->wiphy.pmsr_capa;
1709 struct nlattr *pmsr, *caps;
1715 * we don't need to clean up anything here since the caller
1716 * will genlmsg_cancel() if we fail
1719 pmsr = nla_nest_start(msg, NL80211_ATTR_PEER_MEASUREMENTS);
1723 if (nla_put_u32(msg, NL80211_PMSR_ATTR_MAX_PEERS, cap->max_peers))
1726 if (cap->report_ap_tsf &&
1727 nla_put_flag(msg, NL80211_PMSR_ATTR_REPORT_AP_TSF))
1730 if (cap->randomize_mac_addr &&
1731 nla_put_flag(msg, NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR))
1734 caps = nla_nest_start(msg, NL80211_PMSR_ATTR_TYPE_CAPA);
1738 if (nl80211_send_pmsr_ftm_capa(cap, msg))
1741 nla_nest_end(msg, caps);
1742 nla_nest_end(msg, pmsr);
1747 struct nl80211_dump_wiphy_state {
1750 long split_start, band_start, chan_start, capa_start;
1754 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1755 enum nl80211_commands cmd,
1756 struct sk_buff *msg, u32 portid, u32 seq,
1757 int flags, struct nl80211_dump_wiphy_state *state)
1760 struct nlattr *nl_bands, *nl_band;
1761 struct nlattr *nl_freqs, *nl_freq;
1762 struct nlattr *nl_cmds;
1763 enum nl80211_band band;
1764 struct ieee80211_channel *chan;
1766 const struct ieee80211_txrx_stypes *mgmt_stypes =
1767 rdev->wiphy.mgmt_stypes;
1770 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1774 if (WARN_ON(!state))
1777 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1778 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1779 wiphy_name(&rdev->wiphy)) ||
1780 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1781 cfg80211_rdev_list_generation))
1782 goto nla_put_failure;
1784 if (cmd != NL80211_CMD_NEW_WIPHY)
1787 switch (state->split_start) {
1789 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1790 rdev->wiphy.retry_short) ||
1791 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1792 rdev->wiphy.retry_long) ||
1793 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1794 rdev->wiphy.frag_threshold) ||
1795 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1796 rdev->wiphy.rts_threshold) ||
1797 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1798 rdev->wiphy.coverage_class) ||
1799 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1800 rdev->wiphy.max_scan_ssids) ||
1801 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1802 rdev->wiphy.max_sched_scan_ssids) ||
1803 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1804 rdev->wiphy.max_scan_ie_len) ||
1805 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1806 rdev->wiphy.max_sched_scan_ie_len) ||
1807 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1808 rdev->wiphy.max_match_sets) ||
1809 nla_put_u32(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_PLANS,
1810 rdev->wiphy.max_sched_scan_plans) ||
1811 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_INTERVAL,
1812 rdev->wiphy.max_sched_scan_plan_interval) ||
1813 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_ITERATIONS,
1814 rdev->wiphy.max_sched_scan_plan_iterations))
1815 goto nla_put_failure;
1817 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1818 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1819 goto nla_put_failure;
1820 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1821 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1822 goto nla_put_failure;
1823 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1824 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1825 goto nla_put_failure;
1826 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1827 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1828 goto nla_put_failure;
1829 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1830 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1831 goto nla_put_failure;
1832 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1833 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1834 goto nla_put_failure;
1835 state->split_start++;
1840 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1841 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1842 rdev->wiphy.cipher_suites))
1843 goto nla_put_failure;
1845 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1846 rdev->wiphy.max_num_pmkids))
1847 goto nla_put_failure;
1849 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1850 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1851 goto nla_put_failure;
1853 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1854 rdev->wiphy.available_antennas_tx) ||
1855 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1856 rdev->wiphy.available_antennas_rx))
1857 goto nla_put_failure;
1859 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1860 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1861 rdev->wiphy.probe_resp_offload))
1862 goto nla_put_failure;
1864 if ((rdev->wiphy.available_antennas_tx ||
1865 rdev->wiphy.available_antennas_rx) &&
1866 rdev->ops->get_antenna) {
1867 u32 tx_ant = 0, rx_ant = 0;
1870 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
1872 if (nla_put_u32(msg,
1873 NL80211_ATTR_WIPHY_ANTENNA_TX,
1876 NL80211_ATTR_WIPHY_ANTENNA_RX,
1878 goto nla_put_failure;
1882 state->split_start++;
1887 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1888 rdev->wiphy.interface_modes))
1889 goto nla_put_failure;
1890 state->split_start++;
1895 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1897 goto nla_put_failure;
1899 for (band = state->band_start;
1900 band < NUM_NL80211_BANDS; band++) {
1901 struct ieee80211_supported_band *sband;
1903 sband = rdev->wiphy.bands[band];
1908 nl_band = nla_nest_start(msg, band);
1910 goto nla_put_failure;
1912 switch (state->chan_start) {
1914 if (nl80211_send_band_rateinfo(msg, sband))
1915 goto nla_put_failure;
1916 state->chan_start++;
1921 /* add frequencies */
1922 nl_freqs = nla_nest_start(
1923 msg, NL80211_BAND_ATTR_FREQS);
1925 goto nla_put_failure;
1927 for (i = state->chan_start - 1;
1928 i < sband->n_channels;
1930 nl_freq = nla_nest_start(msg, i);
1932 goto nla_put_failure;
1934 chan = &sband->channels[i];
1936 if (nl80211_msg_put_channel(
1937 msg, &rdev->wiphy, chan,
1939 goto nla_put_failure;
1941 nla_nest_end(msg, nl_freq);
1945 if (i < sband->n_channels)
1946 state->chan_start = i + 2;
1948 state->chan_start = 0;
1949 nla_nest_end(msg, nl_freqs);
1952 nla_nest_end(msg, nl_band);
1955 /* start again here */
1956 if (state->chan_start)
1961 nla_nest_end(msg, nl_bands);
1963 if (band < NUM_NL80211_BANDS)
1964 state->band_start = band + 1;
1966 state->band_start = 0;
1968 /* if bands & channels are done, continue outside */
1969 if (state->band_start == 0 && state->chan_start == 0)
1970 state->split_start++;
1975 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1977 goto nla_put_failure;
1979 i = nl80211_add_commands_unsplit(rdev, msg);
1981 goto nla_put_failure;
1983 CMD(crit_proto_start, CRIT_PROTOCOL_START);
1984 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
1985 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
1986 CMD(channel_switch, CHANNEL_SWITCH);
1987 CMD(set_qos_map, SET_QOS_MAP);
1988 if (rdev->wiphy.features &
1989 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
1990 CMD(add_tx_ts, ADD_TX_TS);
1991 CMD(set_multicast_to_unicast, SET_MULTICAST_TO_UNICAST);
1992 CMD(update_connect_params, UPDATE_CONNECT_PARAMS);
1996 nla_nest_end(msg, nl_cmds);
1997 state->split_start++;
2002 if (rdev->ops->remain_on_channel &&
2003 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
2005 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
2006 rdev->wiphy.max_remain_on_channel_duration))
2007 goto nla_put_failure;
2009 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
2010 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
2011 goto nla_put_failure;
2013 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
2014 goto nla_put_failure;
2015 state->split_start++;
2021 if (nl80211_send_wowlan(msg, rdev, state->split))
2022 goto nla_put_failure;
2023 state->split_start++;
2027 state->split_start++;
2031 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
2032 rdev->wiphy.software_iftypes))
2033 goto nla_put_failure;
2035 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
2037 goto nla_put_failure;
2039 state->split_start++;
2044 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
2045 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
2046 rdev->wiphy.ap_sme_capa))
2047 goto nla_put_failure;
2049 features = rdev->wiphy.features;
2051 * We can only add the per-channel limit information if the
2052 * dump is split, otherwise it makes it too big. Therefore
2053 * only advertise it in that case.
2056 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
2057 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
2058 goto nla_put_failure;
2060 if (rdev->wiphy.ht_capa_mod_mask &&
2061 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
2062 sizeof(*rdev->wiphy.ht_capa_mod_mask),
2063 rdev->wiphy.ht_capa_mod_mask))
2064 goto nla_put_failure;
2066 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
2067 rdev->wiphy.max_acl_mac_addrs &&
2068 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
2069 rdev->wiphy.max_acl_mac_addrs))
2070 goto nla_put_failure;
2073 * Any information below this point is only available to
2074 * applications that can deal with it being split. This
2075 * helps ensure that newly added capabilities don't break
2076 * older tools by overrunning their buffers.
2078 * We still increment split_start so that in the split
2079 * case we'll continue with more data in the next round,
2080 * but break unconditionally so unsplit data stops here.
2082 state->split_start++;
2085 if (rdev->wiphy.extended_capabilities &&
2086 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
2087 rdev->wiphy.extended_capabilities_len,
2088 rdev->wiphy.extended_capabilities) ||
2089 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2090 rdev->wiphy.extended_capabilities_len,
2091 rdev->wiphy.extended_capabilities_mask)))
2092 goto nla_put_failure;
2094 if (rdev->wiphy.vht_capa_mod_mask &&
2095 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
2096 sizeof(*rdev->wiphy.vht_capa_mod_mask),
2097 rdev->wiphy.vht_capa_mod_mask))
2098 goto nla_put_failure;
2100 state->split_start++;
2103 if (nl80211_send_coalesce(msg, rdev))
2104 goto nla_put_failure;
2106 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
2107 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
2108 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
2109 goto nla_put_failure;
2111 if (rdev->wiphy.max_ap_assoc_sta &&
2112 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
2113 rdev->wiphy.max_ap_assoc_sta))
2114 goto nla_put_failure;
2116 state->split_start++;
2119 if (rdev->wiphy.n_vendor_commands) {
2120 const struct nl80211_vendor_cmd_info *info;
2121 struct nlattr *nested;
2123 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
2125 goto nla_put_failure;
2127 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
2128 info = &rdev->wiphy.vendor_commands[i].info;
2129 if (nla_put(msg, i + 1, sizeof(*info), info))
2130 goto nla_put_failure;
2132 nla_nest_end(msg, nested);
2135 if (rdev->wiphy.n_vendor_events) {
2136 const struct nl80211_vendor_cmd_info *info;
2137 struct nlattr *nested;
2139 nested = nla_nest_start(msg,
2140 NL80211_ATTR_VENDOR_EVENTS);
2142 goto nla_put_failure;
2144 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
2145 info = &rdev->wiphy.vendor_events[i];
2146 if (nla_put(msg, i + 1, sizeof(*info), info))
2147 goto nla_put_failure;
2149 nla_nest_end(msg, nested);
2151 state->split_start++;
2154 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
2155 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
2156 rdev->wiphy.max_num_csa_counters))
2157 goto nla_put_failure;
2159 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
2160 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
2161 goto nla_put_failure;
2163 if (rdev->wiphy.max_sched_scan_reqs &&
2164 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_MAX_REQS,
2165 rdev->wiphy.max_sched_scan_reqs))
2166 goto nla_put_failure;
2168 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
2169 sizeof(rdev->wiphy.ext_features),
2170 rdev->wiphy.ext_features))
2171 goto nla_put_failure;
2173 if (rdev->wiphy.bss_select_support) {
2174 struct nlattr *nested;
2175 u32 bss_select_support = rdev->wiphy.bss_select_support;
2177 nested = nla_nest_start(msg, NL80211_ATTR_BSS_SELECT);
2179 goto nla_put_failure;
2182 while (bss_select_support) {
2183 if ((bss_select_support & 1) &&
2184 nla_put_flag(msg, i))
2185 goto nla_put_failure;
2187 bss_select_support >>= 1;
2189 nla_nest_end(msg, nested);
2192 state->split_start++;
2195 if (rdev->wiphy.num_iftype_ext_capab &&
2196 rdev->wiphy.iftype_ext_capab) {
2197 struct nlattr *nested_ext_capab, *nested;
2199 nested = nla_nest_start(msg,
2200 NL80211_ATTR_IFTYPE_EXT_CAPA);
2202 goto nla_put_failure;
2204 for (i = state->capa_start;
2205 i < rdev->wiphy.num_iftype_ext_capab; i++) {
2206 const struct wiphy_iftype_ext_capab *capab;
2208 capab = &rdev->wiphy.iftype_ext_capab[i];
2210 nested_ext_capab = nla_nest_start(msg, i);
2211 if (!nested_ext_capab ||
2212 nla_put_u32(msg, NL80211_ATTR_IFTYPE,
2214 nla_put(msg, NL80211_ATTR_EXT_CAPA,
2215 capab->extended_capabilities_len,
2216 capab->extended_capabilities) ||
2217 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2218 capab->extended_capabilities_len,
2219 capab->extended_capabilities_mask))
2220 goto nla_put_failure;
2222 nla_nest_end(msg, nested_ext_capab);
2226 nla_nest_end(msg, nested);
2227 if (i < rdev->wiphy.num_iftype_ext_capab) {
2228 state->capa_start = i + 1;
2233 if (nla_put_u32(msg, NL80211_ATTR_BANDS,
2234 rdev->wiphy.nan_supported_bands))
2235 goto nla_put_failure;
2237 if (wiphy_ext_feature_isset(&rdev->wiphy,
2238 NL80211_EXT_FEATURE_TXQS)) {
2239 struct cfg80211_txq_stats txqstats = {};
2242 res = rdev_get_txq_stats(rdev, NULL, &txqstats);
2244 !nl80211_put_txq_stats(msg, &txqstats,
2245 NL80211_ATTR_TXQ_STATS))
2246 goto nla_put_failure;
2248 if (nla_put_u32(msg, NL80211_ATTR_TXQ_LIMIT,
2249 rdev->wiphy.txq_limit))
2250 goto nla_put_failure;
2251 if (nla_put_u32(msg, NL80211_ATTR_TXQ_MEMORY_LIMIT,
2252 rdev->wiphy.txq_memory_limit))
2253 goto nla_put_failure;
2254 if (nla_put_u32(msg, NL80211_ATTR_TXQ_QUANTUM,
2255 rdev->wiphy.txq_quantum))
2256 goto nla_put_failure;
2259 state->split_start++;
2262 if (nl80211_send_pmsr_capa(rdev, msg))
2263 goto nla_put_failure;
2265 state->split_start++;
2268 if (rdev->wiphy.akm_suites &&
2269 nla_put(msg, NL80211_ATTR_AKM_SUITES,
2270 sizeof(u32) * rdev->wiphy.n_akm_suites,
2271 rdev->wiphy.akm_suites))
2272 goto nla_put_failure;
2275 state->split_start = 0;
2279 genlmsg_end(msg, hdr);
2283 genlmsg_cancel(msg, hdr);
2287 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
2288 struct netlink_callback *cb,
2289 struct nl80211_dump_wiphy_state *state)
2291 struct nlattr **tb = genl_family_attrbuf(&nl80211_fam);
2292 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize, tb,
2293 nl80211_fam.maxattr, nl80211_policy, NULL);
2294 /* ignore parse errors for backward compatibility */
2298 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
2299 if (tb[NL80211_ATTR_WIPHY])
2300 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
2301 if (tb[NL80211_ATTR_WDEV])
2302 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
2303 if (tb[NL80211_ATTR_IFINDEX]) {
2304 struct net_device *netdev;
2305 struct cfg80211_registered_device *rdev;
2306 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
2308 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
2311 if (netdev->ieee80211_ptr) {
2312 rdev = wiphy_to_rdev(
2313 netdev->ieee80211_ptr->wiphy);
2314 state->filter_wiphy = rdev->wiphy_idx;
2321 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
2324 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
2325 struct cfg80211_registered_device *rdev;
2329 state = kzalloc(sizeof(*state), GFP_KERNEL);
2334 state->filter_wiphy = -1;
2335 ret = nl80211_dump_wiphy_parse(skb, cb, state);
2341 cb->args[0] = (long)state;
2344 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2345 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2347 if (++idx <= state->start)
2349 if (state->filter_wiphy != -1 &&
2350 state->filter_wiphy != rdev->wiphy_idx)
2352 /* attempt to fit multiple wiphy data chunks into the skb */
2354 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
2356 NETLINK_CB(cb->skb).portid,
2358 NLM_F_MULTI, state);
2361 * If sending the wiphy data didn't fit (ENOBUFS
2362 * or EMSGSIZE returned), this SKB is still
2363 * empty (so it's not too big because another
2364 * wiphy dataset is already in the skb) and
2365 * we've not tried to adjust the dump allocation
2366 * yet ... then adjust the alloc size to be
2367 * bigger, and return 1 but with the empty skb.
2368 * This results in an empty message being RX'ed
2369 * in userspace, but that is ignored.
2371 * We can then retry with the larger buffer.
2373 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
2374 !skb->len && !state->split &&
2375 cb->min_dump_alloc < 4096) {
2376 cb->min_dump_alloc = 4096;
2377 state->split_start = 0;
2384 } while (state->split_start > 0);
2394 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
2396 kfree((void *)cb->args[0]);
2400 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
2402 struct sk_buff *msg;
2403 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2404 struct nl80211_dump_wiphy_state state = {};
2406 msg = nlmsg_new(4096, GFP_KERNEL);
2410 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
2411 info->snd_portid, info->snd_seq, 0,
2417 return genlmsg_reply(msg, info);
2420 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
2421 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
2422 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
2423 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
2424 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
2425 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
2428 static int parse_txq_params(struct nlattr *tb[],
2429 struct ieee80211_txq_params *txq_params)
2433 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
2434 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
2435 !tb[NL80211_TXQ_ATTR_AIFS])
2438 ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
2439 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
2440 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
2441 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
2442 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
2444 if (ac >= NL80211_NUM_ACS)
2446 txq_params->ac = array_index_nospec(ac, NL80211_NUM_ACS);
2450 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
2453 * You can only set the channel explicitly for WDS interfaces,
2454 * all others have their channel managed via their respective
2455 * "establish a connection" command (connect, join, ...)
2457 * For AP/GO and mesh mode, the channel can be set with the
2458 * channel userspace API, but is only stored and passed to the
2459 * low-level driver when the AP starts or the mesh is joined.
2460 * This is for backward compatibility, userspace can also give
2461 * the channel in the start-ap or join-mesh commands instead.
2463 * Monitors are special as they are normally slaved to
2464 * whatever else is going on, so they have their own special
2465 * operation to set the monitor channel if possible.
2468 wdev->iftype == NL80211_IFTYPE_AP ||
2469 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
2470 wdev->iftype == NL80211_IFTYPE_MONITOR ||
2471 wdev->iftype == NL80211_IFTYPE_P2P_GO;
2474 int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
2475 struct genl_info *info,
2476 struct cfg80211_chan_def *chandef)
2478 struct netlink_ext_ack *extack = info->extack;
2479 struct nlattr **attrs = info->attrs;
2482 if (!attrs[NL80211_ATTR_WIPHY_FREQ])
2485 control_freq = nla_get_u32(attrs[NL80211_ATTR_WIPHY_FREQ]);
2487 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
2488 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
2489 chandef->center_freq1 = control_freq;
2490 chandef->center_freq2 = 0;
2492 /* Primary channel not allowed */
2493 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED) {
2494 NL_SET_ERR_MSG_ATTR(extack, attrs[NL80211_ATTR_WIPHY_FREQ],
2495 "Channel is disabled");
2499 if (attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
2500 enum nl80211_channel_type chantype;
2502 chantype = nla_get_u32(attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
2505 case NL80211_CHAN_NO_HT:
2506 case NL80211_CHAN_HT20:
2507 case NL80211_CHAN_HT40PLUS:
2508 case NL80211_CHAN_HT40MINUS:
2509 cfg80211_chandef_create(chandef, chandef->chan,
2511 /* user input for center_freq is incorrect */
2512 if (attrs[NL80211_ATTR_CENTER_FREQ1] &&
2513 chandef->center_freq1 != nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1])) {
2514 NL_SET_ERR_MSG_ATTR(extack,
2515 attrs[NL80211_ATTR_CENTER_FREQ1],
2516 "bad center frequency 1");
2519 /* center_freq2 must be zero */
2520 if (attrs[NL80211_ATTR_CENTER_FREQ2] &&
2521 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2])) {
2522 NL_SET_ERR_MSG_ATTR(extack,
2523 attrs[NL80211_ATTR_CENTER_FREQ2],
2524 "center frequency 2 can't be used");
2529 NL_SET_ERR_MSG_ATTR(extack,
2530 attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE],
2531 "invalid channel type");
2534 } else if (attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
2536 nla_get_u32(attrs[NL80211_ATTR_CHANNEL_WIDTH]);
2537 if (attrs[NL80211_ATTR_CENTER_FREQ1])
2538 chandef->center_freq1 =
2539 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1]);
2540 if (attrs[NL80211_ATTR_CENTER_FREQ2])
2541 chandef->center_freq2 =
2542 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2]);
2545 if (!cfg80211_chandef_valid(chandef)) {
2546 NL_SET_ERR_MSG(extack, "invalid channel definition");
2550 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
2551 IEEE80211_CHAN_DISABLED)) {
2552 NL_SET_ERR_MSG(extack, "(extension) channel is disabled");
2556 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
2557 chandef->width == NL80211_CHAN_WIDTH_10) &&
2558 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ)) {
2559 NL_SET_ERR_MSG(extack, "5/10 MHz not supported");
2566 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
2567 struct net_device *dev,
2568 struct genl_info *info)
2570 struct cfg80211_chan_def chandef;
2572 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
2573 struct wireless_dev *wdev = NULL;
2576 wdev = dev->ieee80211_ptr;
2577 if (!nl80211_can_set_dev_channel(wdev))
2580 iftype = wdev->iftype;
2582 result = nl80211_parse_chandef(rdev, info, &chandef);
2587 case NL80211_IFTYPE_AP:
2588 case NL80211_IFTYPE_P2P_GO:
2589 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
2594 if (wdev->beacon_interval) {
2595 if (!dev || !rdev->ops->set_ap_chanwidth ||
2596 !(rdev->wiphy.features &
2597 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2602 /* Only allow dynamic channel width changes */
2603 if (chandef.chan != wdev->preset_chandef.chan) {
2607 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2611 wdev->preset_chandef = chandef;
2614 case NL80211_IFTYPE_MESH_POINT:
2615 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2617 case NL80211_IFTYPE_MONITOR:
2618 result = cfg80211_set_monitor_channel(rdev, &chandef);
2627 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2629 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2630 struct net_device *netdev = info->user_ptr[1];
2632 return __nl80211_set_channel(rdev, netdev, info);
2635 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2637 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2638 struct net_device *dev = info->user_ptr[1];
2639 struct wireless_dev *wdev = dev->ieee80211_ptr;
2642 if (!info->attrs[NL80211_ATTR_MAC])
2645 if (netif_running(dev))
2648 if (!rdev->ops->set_wds_peer)
2651 if (wdev->iftype != NL80211_IFTYPE_WDS)
2654 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2655 return rdev_set_wds_peer(rdev, dev, bssid);
2658 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2660 struct cfg80211_registered_device *rdev;
2661 struct net_device *netdev = NULL;
2662 struct wireless_dev *wdev;
2663 int result = 0, rem_txq_params = 0;
2664 struct nlattr *nl_txq_params;
2666 u8 retry_short = 0, retry_long = 0;
2667 u32 frag_threshold = 0, rts_threshold = 0;
2668 u8 coverage_class = 0;
2669 u32 txq_limit = 0, txq_memory_limit = 0, txq_quantum = 0;
2674 * Try to find the wiphy and netdev. Normally this
2675 * function shouldn't need the netdev, but this is
2676 * done for backward compatibility -- previously
2677 * setting the channel was done per wiphy, but now
2678 * it is per netdev. Previous userland like hostapd
2679 * also passed a netdev to set_wiphy, so that it is
2680 * possible to let that go to the right netdev!
2683 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2684 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2686 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2687 if (netdev && netdev->ieee80211_ptr)
2688 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2694 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2697 return PTR_ERR(rdev);
2702 wdev = netdev->ieee80211_ptr;
2705 * end workaround code, by now the rdev is available
2706 * and locked, and wdev may or may not be NULL.
2709 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2710 result = cfg80211_dev_rename(
2711 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2716 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2717 struct ieee80211_txq_params txq_params;
2718 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2720 if (!rdev->ops->set_txq_params)
2726 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2727 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2730 if (!netif_running(netdev))
2733 nla_for_each_nested(nl_txq_params,
2734 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2736 result = nla_parse_nested(tb, NL80211_TXQ_ATTR_MAX,
2742 result = parse_txq_params(tb, &txq_params);
2746 result = rdev_set_txq_params(rdev, netdev,
2753 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2754 result = __nl80211_set_channel(
2756 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2762 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2763 struct wireless_dev *txp_wdev = wdev;
2764 enum nl80211_tx_power_setting type;
2767 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2770 if (!rdev->ops->set_tx_power)
2773 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2774 type = nla_get_u32(info->attrs[idx]);
2776 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2777 (type != NL80211_TX_POWER_AUTOMATIC))
2780 if (type != NL80211_TX_POWER_AUTOMATIC) {
2781 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2782 mbm = nla_get_u32(info->attrs[idx]);
2785 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2790 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2791 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2794 if ((!rdev->wiphy.available_antennas_tx &&
2795 !rdev->wiphy.available_antennas_rx) ||
2796 !rdev->ops->set_antenna)
2799 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2800 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2802 /* reject antenna configurations which don't match the
2803 * available antenna masks, except for the "all" mask */
2804 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2805 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2808 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2809 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2811 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2818 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2819 retry_short = nla_get_u8(
2820 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2822 changed |= WIPHY_PARAM_RETRY_SHORT;
2825 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2826 retry_long = nla_get_u8(
2827 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2829 changed |= WIPHY_PARAM_RETRY_LONG;
2832 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2833 frag_threshold = nla_get_u32(
2834 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2835 if (frag_threshold < 256)
2838 if (frag_threshold != (u32) -1) {
2840 * Fragments (apart from the last one) are required to
2841 * have even length. Make the fragmentation code
2842 * simpler by stripping LSB should someone try to use
2843 * odd threshold value.
2845 frag_threshold &= ~0x1;
2847 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2850 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2851 rts_threshold = nla_get_u32(
2852 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2853 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2856 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2857 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
2860 coverage_class = nla_get_u8(
2861 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2862 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2865 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
2866 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
2869 changed |= WIPHY_PARAM_DYN_ACK;
2872 if (info->attrs[NL80211_ATTR_TXQ_LIMIT]) {
2873 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2874 NL80211_EXT_FEATURE_TXQS))
2876 txq_limit = nla_get_u32(
2877 info->attrs[NL80211_ATTR_TXQ_LIMIT]);
2878 changed |= WIPHY_PARAM_TXQ_LIMIT;
2881 if (info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]) {
2882 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2883 NL80211_EXT_FEATURE_TXQS))
2885 txq_memory_limit = nla_get_u32(
2886 info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]);
2887 changed |= WIPHY_PARAM_TXQ_MEMORY_LIMIT;
2890 if (info->attrs[NL80211_ATTR_TXQ_QUANTUM]) {
2891 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2892 NL80211_EXT_FEATURE_TXQS))
2894 txq_quantum = nla_get_u32(
2895 info->attrs[NL80211_ATTR_TXQ_QUANTUM]);
2896 changed |= WIPHY_PARAM_TXQ_QUANTUM;
2900 u8 old_retry_short, old_retry_long;
2901 u32 old_frag_threshold, old_rts_threshold;
2902 u8 old_coverage_class;
2903 u32 old_txq_limit, old_txq_memory_limit, old_txq_quantum;
2905 if (!rdev->ops->set_wiphy_params)
2908 old_retry_short = rdev->wiphy.retry_short;
2909 old_retry_long = rdev->wiphy.retry_long;
2910 old_frag_threshold = rdev->wiphy.frag_threshold;
2911 old_rts_threshold = rdev->wiphy.rts_threshold;
2912 old_coverage_class = rdev->wiphy.coverage_class;
2913 old_txq_limit = rdev->wiphy.txq_limit;
2914 old_txq_memory_limit = rdev->wiphy.txq_memory_limit;
2915 old_txq_quantum = rdev->wiphy.txq_quantum;
2917 if (changed & WIPHY_PARAM_RETRY_SHORT)
2918 rdev->wiphy.retry_short = retry_short;
2919 if (changed & WIPHY_PARAM_RETRY_LONG)
2920 rdev->wiphy.retry_long = retry_long;
2921 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2922 rdev->wiphy.frag_threshold = frag_threshold;
2923 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2924 rdev->wiphy.rts_threshold = rts_threshold;
2925 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2926 rdev->wiphy.coverage_class = coverage_class;
2927 if (changed & WIPHY_PARAM_TXQ_LIMIT)
2928 rdev->wiphy.txq_limit = txq_limit;
2929 if (changed & WIPHY_PARAM_TXQ_MEMORY_LIMIT)
2930 rdev->wiphy.txq_memory_limit = txq_memory_limit;
2931 if (changed & WIPHY_PARAM_TXQ_QUANTUM)
2932 rdev->wiphy.txq_quantum = txq_quantum;
2934 result = rdev_set_wiphy_params(rdev, changed);
2936 rdev->wiphy.retry_short = old_retry_short;
2937 rdev->wiphy.retry_long = old_retry_long;
2938 rdev->wiphy.frag_threshold = old_frag_threshold;
2939 rdev->wiphy.rts_threshold = old_rts_threshold;
2940 rdev->wiphy.coverage_class = old_coverage_class;
2941 rdev->wiphy.txq_limit = old_txq_limit;
2942 rdev->wiphy.txq_memory_limit = old_txq_memory_limit;
2943 rdev->wiphy.txq_quantum = old_txq_quantum;
2950 static int nl80211_send_chandef(struct sk_buff *msg,
2951 const struct cfg80211_chan_def *chandef)
2953 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
2956 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2957 chandef->chan->center_freq))
2959 switch (chandef->width) {
2960 case NL80211_CHAN_WIDTH_20_NOHT:
2961 case NL80211_CHAN_WIDTH_20:
2962 case NL80211_CHAN_WIDTH_40:
2963 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2964 cfg80211_get_chandef_type(chandef)))
2970 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2972 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2974 if (chandef->center_freq2 &&
2975 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2980 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2981 struct cfg80211_registered_device *rdev,
2982 struct wireless_dev *wdev,
2983 enum nl80211_commands cmd)
2985 struct net_device *dev = wdev->netdev;
2988 WARN_ON(cmd != NL80211_CMD_NEW_INTERFACE &&
2989 cmd != NL80211_CMD_DEL_INTERFACE &&
2990 cmd != NL80211_CMD_SET_INTERFACE);
2992 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
2997 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
2998 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
2999 goto nla_put_failure;
3001 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
3002 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
3003 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
3004 NL80211_ATTR_PAD) ||
3005 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
3006 nla_put_u32(msg, NL80211_ATTR_GENERATION,
3007 rdev->devlist_generation ^
3008 (cfg80211_rdev_list_generation << 2)) ||
3009 nla_put_u8(msg, NL80211_ATTR_4ADDR, wdev->use_4addr))
3010 goto nla_put_failure;
3012 if (rdev->ops->get_channel) {
3014 struct cfg80211_chan_def chandef;
3016 ret = rdev_get_channel(rdev, wdev, &chandef);
3018 if (nl80211_send_chandef(msg, &chandef))
3019 goto nla_put_failure;
3023 if (rdev->ops->get_tx_power) {
3026 ret = rdev_get_tx_power(rdev, wdev, &dbm);
3028 nla_put_u32(msg, NL80211_ATTR_WIPHY_TX_POWER_LEVEL,
3030 goto nla_put_failure;
3034 switch (wdev->iftype) {
3035 case NL80211_IFTYPE_AP:
3036 if (wdev->ssid_len &&
3037 nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
3038 goto nla_put_failure_locked;
3040 case NL80211_IFTYPE_STATION:
3041 case NL80211_IFTYPE_P2P_CLIENT:
3042 case NL80211_IFTYPE_ADHOC: {
3044 if (!wdev->current_bss)
3047 ssid_ie = ieee80211_bss_get_ie(&wdev->current_bss->pub,
3050 nla_put(msg, NL80211_ATTR_SSID, ssid_ie[1], ssid_ie + 2))
3051 goto nla_put_failure_rcu_locked;
3061 if (rdev->ops->get_txq_stats) {
3062 struct cfg80211_txq_stats txqstats = {};
3063 int ret = rdev_get_txq_stats(rdev, wdev, &txqstats);
3066 !nl80211_put_txq_stats(msg, &txqstats,
3067 NL80211_ATTR_TXQ_STATS))
3068 goto nla_put_failure;
3071 genlmsg_end(msg, hdr);
3074 nla_put_failure_rcu_locked:
3076 nla_put_failure_locked:
3079 genlmsg_cancel(msg, hdr);
3083 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
3087 int wp_start = cb->args[0];
3088 int if_start = cb->args[1];
3089 int filter_wiphy = -1;
3090 struct cfg80211_registered_device *rdev;
3091 struct wireless_dev *wdev;
3096 struct nl80211_dump_wiphy_state state = {
3100 ret = nl80211_dump_wiphy_parse(skb, cb, &state);
3104 filter_wiphy = state.filter_wiphy;
3107 * if filtering, set cb->args[2] to +1 since 0 is the default
3108 * value needed to determine that parsing is necessary.
3110 if (filter_wiphy >= 0)
3111 cb->args[2] = filter_wiphy + 1;
3114 } else if (cb->args[2] > 0) {
3115 filter_wiphy = cb->args[2] - 1;
3118 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
3119 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
3121 if (wp_idx < wp_start) {
3126 if (filter_wiphy >= 0 && filter_wiphy != rdev->wiphy_idx)
3131 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
3132 if (if_idx < if_start) {
3136 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
3137 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3139 NL80211_CMD_NEW_INTERFACE) < 0) {
3148 cb->args[0] = wp_idx;
3149 cb->args[1] = if_idx;
3158 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
3160 struct sk_buff *msg;
3161 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3162 struct wireless_dev *wdev = info->user_ptr[1];
3164 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3168 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3169 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3174 return genlmsg_reply(msg, info);
3177 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
3178 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
3179 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
3180 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
3181 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
3182 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
3183 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
3186 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
3188 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
3196 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX, nla,
3197 mntr_flags_policy, NULL))
3200 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
3202 *mntrflags |= (1<<flag);
3204 *mntrflags |= MONITOR_FLAG_CHANGED;
3209 static int nl80211_parse_mon_options(struct cfg80211_registered_device *rdev,
3210 enum nl80211_iftype type,
3211 struct genl_info *info,
3212 struct vif_params *params)
3214 bool change = false;
3217 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
3218 if (type != NL80211_IFTYPE_MONITOR)
3221 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
3229 if (params->flags & MONITOR_FLAG_ACTIVE &&
3230 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
3233 if (info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]) {
3234 const u8 *mumimo_groups;
3235 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3237 if (type != NL80211_IFTYPE_MONITOR)
3240 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3244 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]);
3246 /* bits 0 and 63 are reserved and must be zero */
3247 if ((mumimo_groups[0] & BIT(0)) ||
3248 (mumimo_groups[VHT_MUMIMO_GROUPS_DATA_LEN - 1] & BIT(7)))
3251 params->vht_mumimo_groups = mumimo_groups;
3255 if (info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]) {
3256 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3258 if (type != NL80211_IFTYPE_MONITOR)
3261 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3264 params->vht_mumimo_follow_addr =
3265 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]);
3269 return change ? 1 : 0;
3272 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
3273 struct net_device *netdev, u8 use_4addr,
3274 enum nl80211_iftype iftype)
3277 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
3283 case NL80211_IFTYPE_AP_VLAN:
3284 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
3287 case NL80211_IFTYPE_STATION:
3288 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
3298 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
3300 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3301 struct vif_params params;
3303 enum nl80211_iftype otype, ntype;
3304 struct net_device *dev = info->user_ptr[1];
3305 bool change = false;
3307 memset(¶ms, 0, sizeof(params));
3309 otype = ntype = dev->ieee80211_ptr->iftype;
3311 if (info->attrs[NL80211_ATTR_IFTYPE]) {
3312 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3317 if (info->attrs[NL80211_ATTR_MESH_ID]) {
3318 struct wireless_dev *wdev = dev->ieee80211_ptr;
3320 if (ntype != NL80211_IFTYPE_MESH_POINT)
3322 if (netif_running(dev))
3326 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3327 IEEE80211_MAX_MESH_ID_LEN);
3328 wdev->mesh_id_up_len =
3329 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3330 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3331 wdev->mesh_id_up_len);
3335 if (info->attrs[NL80211_ATTR_4ADDR]) {
3336 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3338 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
3342 params.use_4addr = -1;
3345 err = nl80211_parse_mon_options(rdev, ntype, info, ¶ms);
3352 err = cfg80211_change_iface(rdev, dev, ntype, ¶ms);
3356 if (!err && params.use_4addr != -1)
3357 dev->ieee80211_ptr->use_4addr = params.use_4addr;
3359 if (change && !err) {
3360 struct wireless_dev *wdev = dev->ieee80211_ptr;
3362 nl80211_notify_iface(rdev, wdev, NL80211_CMD_SET_INTERFACE);
3368 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
3370 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3371 struct vif_params params;
3372 struct wireless_dev *wdev;
3373 struct sk_buff *msg;
3375 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
3377 /* to avoid failing a new interface creation due to pending removal */
3378 cfg80211_destroy_ifaces(rdev);
3380 memset(¶ms, 0, sizeof(params));
3382 if (!info->attrs[NL80211_ATTR_IFNAME])
3385 if (info->attrs[NL80211_ATTR_IFTYPE])
3386 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3388 if (!rdev->ops->add_virtual_intf ||
3389 !(rdev->wiphy.interface_modes & (1 << type)))
3392 if ((type == NL80211_IFTYPE_P2P_DEVICE || type == NL80211_IFTYPE_NAN ||
3393 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
3394 info->attrs[NL80211_ATTR_MAC]) {
3395 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
3397 if (!is_valid_ether_addr(params.macaddr))
3398 return -EADDRNOTAVAIL;
3401 if (info->attrs[NL80211_ATTR_4ADDR]) {
3402 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3403 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
3408 err = nl80211_parse_mon_options(rdev, type, info, ¶ms);
3412 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3416 wdev = rdev_add_virtual_intf(rdev,
3417 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
3418 NET_NAME_USER, type, ¶ms);
3419 if (WARN_ON(!wdev)) {
3422 } else if (IS_ERR(wdev)) {
3424 return PTR_ERR(wdev);
3427 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
3428 wdev->owner_nlportid = info->snd_portid;
3431 case NL80211_IFTYPE_MESH_POINT:
3432 if (!info->attrs[NL80211_ATTR_MESH_ID])
3435 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3436 IEEE80211_MAX_MESH_ID_LEN);
3437 wdev->mesh_id_up_len =
3438 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3439 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3440 wdev->mesh_id_up_len);
3443 case NL80211_IFTYPE_NAN:
3444 case NL80211_IFTYPE_P2P_DEVICE:
3446 * P2P Device and NAN do not have a netdev, so don't go
3447 * through the netdev notifier and must be added here
3449 cfg80211_init_wdev(rdev, wdev);
3455 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3456 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3461 return genlmsg_reply(msg, info);
3464 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
3466 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3467 struct wireless_dev *wdev = info->user_ptr[1];
3469 if (!rdev->ops->del_virtual_intf)
3473 * If we remove a wireless device without a netdev then clear
3474 * user_ptr[1] so that nl80211_post_doit won't dereference it
3475 * to check if it needs to do dev_put(). Otherwise it crashes
3476 * since the wdev has been freed, unlike with a netdev where
3477 * we need the dev_put() for the netdev to really be freed.
3480 info->user_ptr[1] = NULL;
3482 return rdev_del_virtual_intf(rdev, wdev);
3485 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
3487 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3488 struct net_device *dev = info->user_ptr[1];
3491 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
3494 if (!rdev->ops->set_noack_map)
3497 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
3499 return rdev_set_noack_map(rdev, dev, noack_map);
3502 struct get_key_cookie {
3503 struct sk_buff *msg;
3508 static void get_key_callback(void *c, struct key_params *params)
3511 struct get_key_cookie *cookie = c;
3514 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
3515 params->key_len, params->key)) ||
3517 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
3518 params->seq_len, params->seq)) ||
3520 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
3522 goto nla_put_failure;
3524 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
3526 goto nla_put_failure;
3529 nla_put(cookie->msg, NL80211_KEY_DATA,
3530 params->key_len, params->key)) ||
3532 nla_put(cookie->msg, NL80211_KEY_SEQ,
3533 params->seq_len, params->seq)) ||
3535 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
3537 goto nla_put_failure;
3539 if (nla_put_u8(cookie->msg, NL80211_KEY_IDX, cookie->idx))
3540 goto nla_put_failure;
3542 nla_nest_end(cookie->msg, key);
3549 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
3551 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3553 struct net_device *dev = info->user_ptr[1];
3555 const u8 *mac_addr = NULL;
3557 struct get_key_cookie cookie = {
3561 struct sk_buff *msg;
3563 if (info->attrs[NL80211_ATTR_KEY_IDX])
3564 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
3566 if (info->attrs[NL80211_ATTR_MAC])
3567 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3569 pairwise = !!mac_addr;
3570 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
3571 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
3573 if (kt != NL80211_KEYTYPE_GROUP &&
3574 kt != NL80211_KEYTYPE_PAIRWISE)
3576 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
3579 if (!rdev->ops->get_key)
3582 if (!pairwise && mac_addr && !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3585 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3589 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
3590 NL80211_CMD_NEW_KEY);
3592 goto nla_put_failure;
3595 cookie.idx = key_idx;
3597 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3598 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
3599 goto nla_put_failure;
3601 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
3602 goto nla_put_failure;
3604 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
3611 goto nla_put_failure;
3613 genlmsg_end(msg, hdr);
3614 return genlmsg_reply(msg, info);
3623 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
3625 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3626 struct key_parse key;
3628 struct net_device *dev = info->user_ptr[1];
3630 err = nl80211_parse_key(info, &key);
3637 /* only support setting default key */
3638 if (!key.def && !key.defmgmt)
3641 wdev_lock(dev->ieee80211_ptr);
3644 if (!rdev->ops->set_default_key) {
3649 err = nl80211_key_allowed(dev->ieee80211_ptr);
3653 err = rdev_set_default_key(rdev, dev, key.idx,
3654 key.def_uni, key.def_multi);
3659 #ifdef CONFIG_CFG80211_WEXT
3660 dev->ieee80211_ptr->wext.default_key = key.idx;
3663 if (key.def_uni || !key.def_multi) {
3668 if (!rdev->ops->set_default_mgmt_key) {
3673 err = nl80211_key_allowed(dev->ieee80211_ptr);
3677 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
3681 #ifdef CONFIG_CFG80211_WEXT
3682 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
3687 wdev_unlock(dev->ieee80211_ptr);
3692 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
3694 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3696 struct net_device *dev = info->user_ptr[1];
3697 struct key_parse key;
3698 const u8 *mac_addr = NULL;
3700 err = nl80211_parse_key(info, &key);
3707 if (info->attrs[NL80211_ATTR_MAC])
3708 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3710 if (key.type == -1) {
3712 key.type = NL80211_KEYTYPE_PAIRWISE;
3714 key.type = NL80211_KEYTYPE_GROUP;
3718 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3719 key.type != NL80211_KEYTYPE_GROUP)
3722 if (!rdev->ops->add_key)
3725 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3726 key.type == NL80211_KEYTYPE_PAIRWISE,
3730 wdev_lock(dev->ieee80211_ptr);
3731 err = nl80211_key_allowed(dev->ieee80211_ptr);
3733 err = rdev_add_key(rdev, dev, key.idx,
3734 key.type == NL80211_KEYTYPE_PAIRWISE,
3736 wdev_unlock(dev->ieee80211_ptr);
3741 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3743 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3745 struct net_device *dev = info->user_ptr[1];
3746 u8 *mac_addr = NULL;
3747 struct key_parse key;
3749 err = nl80211_parse_key(info, &key);
3753 if (info->attrs[NL80211_ATTR_MAC])
3754 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3756 if (key.type == -1) {
3758 key.type = NL80211_KEYTYPE_PAIRWISE;
3760 key.type = NL80211_KEYTYPE_GROUP;
3764 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3765 key.type != NL80211_KEYTYPE_GROUP)
3768 if (!rdev->ops->del_key)
3771 wdev_lock(dev->ieee80211_ptr);
3772 err = nl80211_key_allowed(dev->ieee80211_ptr);
3774 if (key.type == NL80211_KEYTYPE_GROUP && mac_addr &&
3775 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3779 err = rdev_del_key(rdev, dev, key.idx,
3780 key.type == NL80211_KEYTYPE_PAIRWISE,
3783 #ifdef CONFIG_CFG80211_WEXT
3785 if (key.idx == dev->ieee80211_ptr->wext.default_key)
3786 dev->ieee80211_ptr->wext.default_key = -1;
3787 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
3788 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
3791 wdev_unlock(dev->ieee80211_ptr);
3796 /* This function returns an error or the number of nested attributes */
3797 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
3799 struct nlattr *attr;
3800 int n_entries = 0, tmp;
3802 nla_for_each_nested(attr, nl_attr, tmp) {
3803 if (nla_len(attr) != ETH_ALEN)
3813 * This function parses ACL information and allocates memory for ACL data.
3814 * On successful return, the calling function is responsible to free the
3815 * ACL buffer returned by this function.
3817 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
3818 struct genl_info *info)
3820 enum nl80211_acl_policy acl_policy;
3821 struct nlattr *attr;
3822 struct cfg80211_acl_data *acl;
3823 int i = 0, n_entries, tmp;
3825 if (!wiphy->max_acl_mac_addrs)
3826 return ERR_PTR(-EOPNOTSUPP);
3828 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
3829 return ERR_PTR(-EINVAL);
3831 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
3832 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
3833 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
3834 return ERR_PTR(-EINVAL);
3836 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
3837 return ERR_PTR(-EINVAL);
3839 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
3841 return ERR_PTR(n_entries);
3843 if (n_entries > wiphy->max_acl_mac_addrs)
3844 return ERR_PTR(-ENOTSUPP);
3846 acl = kzalloc(sizeof(*acl) + (sizeof(struct mac_address) * n_entries),
3849 return ERR_PTR(-ENOMEM);
3851 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
3852 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3856 acl->n_acl_entries = n_entries;
3857 acl->acl_policy = acl_policy;
3862 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3864 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3865 struct net_device *dev = info->user_ptr[1];
3866 struct cfg80211_acl_data *acl;
3869 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3870 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3873 if (!dev->ieee80211_ptr->beacon_interval)
3876 acl = parse_acl_data(&rdev->wiphy, info);
3878 return PTR_ERR(acl);
3880 err = rdev_set_mac_acl(rdev, dev, acl);
3887 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
3888 u8 *rates, u8 rates_len)
3893 for (i = 0; i < rates_len; i++) {
3894 int rate = (rates[i] & 0x7f) * 5;
3897 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
3898 struct ieee80211_rate *srate =
3899 &sband->bitrates[ridx];
3900 if (rate == srate->bitrate) {
3905 if (ridx == sband->n_bitrates)
3906 return 0; /* rate not found */
3912 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
3913 u8 *rates, u8 rates_len,
3914 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
3918 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
3920 for (i = 0; i < rates_len; i++) {
3923 ridx = rates[i] / 8;
3924 rbit = BIT(rates[i] % 8);
3926 /* check validity */
3927 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
3930 /* check availability */
3931 ridx = array_index_nospec(ridx, IEEE80211_HT_MCS_MASK_LEN);
3932 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
3941 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
3945 switch (vht_mcs_map) {
3946 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
3948 case IEEE80211_VHT_MCS_SUPPORT_0_7:
3951 case IEEE80211_VHT_MCS_SUPPORT_0_8:
3954 case IEEE80211_VHT_MCS_SUPPORT_0_9:
3964 static void vht_build_mcs_mask(u16 vht_mcs_map,
3965 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
3969 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
3970 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
3975 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
3976 struct nl80211_txrate_vht *txrate,
3977 u16 mcs[NL80211_VHT_NSS_MAX])
3979 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
3980 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
3983 if (!sband->vht_cap.vht_supported)
3986 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
3988 /* Build vht_mcs_mask from VHT capabilities */
3989 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
3991 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
3992 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
3993 mcs[i] = txrate->mcs[i];
4001 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
4002 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
4003 .len = NL80211_MAX_SUPP_RATES },
4004 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
4005 .len = NL80211_MAX_SUPP_HT_RATES },
4006 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
4007 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
4010 static int nl80211_parse_tx_bitrate_mask(struct genl_info *info,
4011 struct cfg80211_bitrate_mask *mask)
4013 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
4014 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4016 struct nlattr *tx_rates;
4017 struct ieee80211_supported_band *sband;
4020 memset(mask, 0, sizeof(*mask));
4021 /* Default to all rates enabled */
4022 for (i = 0; i < NUM_NL80211_BANDS; i++) {
4023 sband = rdev->wiphy.bands[i];
4028 mask->control[i].legacy = (1 << sband->n_bitrates) - 1;
4029 memcpy(mask->control[i].ht_mcs,
4030 sband->ht_cap.mcs.rx_mask,
4031 sizeof(mask->control[i].ht_mcs));
4033 if (!sband->vht_cap.vht_supported)
4036 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4037 vht_build_mcs_mask(vht_tx_mcs_map, mask->control[i].vht_mcs);
4040 /* if no rates are given set it back to the defaults */
4041 if (!info->attrs[NL80211_ATTR_TX_RATES])
4044 /* The nested attribute uses enum nl80211_band as the index. This maps
4045 * directly to the enum nl80211_band values used in cfg80211.
4047 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
4048 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
4049 enum nl80211_band band = nla_type(tx_rates);
4052 if (band < 0 || band >= NUM_NL80211_BANDS)
4054 sband = rdev->wiphy.bands[band];
4057 err = nla_parse_nested(tb, NL80211_TXRATE_MAX, tx_rates,
4058 nl80211_txattr_policy, info->extack);
4061 if (tb[NL80211_TXRATE_LEGACY]) {
4062 mask->control[band].legacy = rateset_to_mask(
4064 nla_data(tb[NL80211_TXRATE_LEGACY]),
4065 nla_len(tb[NL80211_TXRATE_LEGACY]));
4066 if ((mask->control[band].legacy == 0) &&
4067 nla_len(tb[NL80211_TXRATE_LEGACY]))
4070 if (tb[NL80211_TXRATE_HT]) {
4071 if (!ht_rateset_to_mask(
4073 nla_data(tb[NL80211_TXRATE_HT]),
4074 nla_len(tb[NL80211_TXRATE_HT]),
4075 mask->control[band].ht_mcs))
4078 if (tb[NL80211_TXRATE_VHT]) {
4079 if (!vht_set_mcs_mask(
4081 nla_data(tb[NL80211_TXRATE_VHT]),
4082 mask->control[band].vht_mcs))
4085 if (tb[NL80211_TXRATE_GI]) {
4086 mask->control[band].gi =
4087 nla_get_u8(tb[NL80211_TXRATE_GI]);
4088 if (mask->control[band].gi > NL80211_TXRATE_FORCE_LGI)
4092 if (mask->control[band].legacy == 0) {
4093 /* don't allow empty legacy rates if HT or VHT
4094 * are not even supported.
4096 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
4097 rdev->wiphy.bands[band]->vht_cap.vht_supported))
4100 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
4101 if (mask->control[band].ht_mcs[i])
4104 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
4105 if (mask->control[band].vht_mcs[i])
4108 /* legacy and mcs rates may not be both empty */
4117 static int validate_beacon_tx_rate(struct cfg80211_registered_device *rdev,
4118 enum nl80211_band band,
4119 struct cfg80211_bitrate_mask *beacon_rate)
4121 u32 count_ht, count_vht, i;
4122 u32 rate = beacon_rate->control[band].legacy;
4124 /* Allow only one rate */
4125 if (hweight32(rate) > 1)
4129 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
4130 if (hweight8(beacon_rate->control[band].ht_mcs[i]) > 1) {
4132 } else if (beacon_rate->control[band].ht_mcs[i]) {
4137 if (count_ht && rate)
4142 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4143 if (hweight16(beacon_rate->control[band].vht_mcs[i]) > 1) {
4145 } else if (beacon_rate->control[band].vht_mcs[i]) {
4150 if (count_vht && rate)
4154 if ((count_ht && count_vht) || (!rate && !count_ht && !count_vht))
4158 !wiphy_ext_feature_isset(&rdev->wiphy,
4159 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY))
4162 !wiphy_ext_feature_isset(&rdev->wiphy,
4163 NL80211_EXT_FEATURE_BEACON_RATE_HT))
4166 !wiphy_ext_feature_isset(&rdev->wiphy,
4167 NL80211_EXT_FEATURE_BEACON_RATE_VHT))
4173 static int nl80211_parse_beacon(struct cfg80211_registered_device *rdev,
4174 struct nlattr *attrs[],
4175 struct cfg80211_beacon_data *bcn)
4177 bool haveinfo = false;
4180 memset(bcn, 0, sizeof(*bcn));
4182 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
4183 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
4184 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
4190 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
4191 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
4192 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
4199 if (attrs[NL80211_ATTR_IE]) {
4200 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
4201 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
4204 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
4205 bcn->proberesp_ies =
4206 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4207 bcn->proberesp_ies_len =
4208 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4211 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
4212 bcn->assocresp_ies =
4213 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4214 bcn->assocresp_ies_len =
4215 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4218 if (attrs[NL80211_ATTR_PROBE_RESP]) {
4219 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
4220 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
4223 if (attrs[NL80211_ATTR_FTM_RESPONDER]) {
4224 struct nlattr *tb[NL80211_FTM_RESP_ATTR_MAX + 1];
4226 err = nla_parse_nested(tb, NL80211_FTM_RESP_ATTR_MAX,
4227 attrs[NL80211_ATTR_FTM_RESPONDER],
4232 if (tb[NL80211_FTM_RESP_ATTR_ENABLED] &&
4233 wiphy_ext_feature_isset(&rdev->wiphy,
4234 NL80211_EXT_FEATURE_ENABLE_FTM_RESPONDER))
4235 bcn->ftm_responder = 1;
4239 if (tb[NL80211_FTM_RESP_ATTR_LCI]) {
4240 bcn->lci = nla_data(tb[NL80211_FTM_RESP_ATTR_LCI]);
4241 bcn->lci_len = nla_len(tb[NL80211_FTM_RESP_ATTR_LCI]);
4244 if (tb[NL80211_FTM_RESP_ATTR_CIVICLOC]) {
4245 bcn->civicloc = nla_data(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4246 bcn->civicloc_len = nla_len(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4249 bcn->ftm_responder = -1;
4255 static void nl80211_check_ap_rate_selectors(struct cfg80211_ap_settings *params,
4263 for (i = 0; i < rates[1]; i++) {
4264 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_HT_PHY)
4265 params->ht_required = true;
4266 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_VHT_PHY)
4267 params->vht_required = true;
4272 * Since the nl80211 API didn't include, from the beginning, attributes about
4273 * HT/VHT requirements/capabilities, we parse them out of the IEs for the
4274 * benefit of drivers that rebuild IEs in the firmware.
4276 static void nl80211_calculate_ap_params(struct cfg80211_ap_settings *params)
4278 const struct cfg80211_beacon_data *bcn = ¶ms->beacon;
4279 size_t ies_len = bcn->tail_len;
4280 const u8 *ies = bcn->tail;
4284 rates = cfg80211_find_ie(WLAN_EID_SUPP_RATES, ies, ies_len);
4285 nl80211_check_ap_rate_selectors(params, rates);
4287 rates = cfg80211_find_ie(WLAN_EID_EXT_SUPP_RATES, ies, ies_len);
4288 nl80211_check_ap_rate_selectors(params, rates);
4290 cap = cfg80211_find_ie(WLAN_EID_HT_CAPABILITY, ies, ies_len);
4291 if (cap && cap[1] >= sizeof(*params->ht_cap))
4292 params->ht_cap = (void *)(cap + 2);
4293 cap = cfg80211_find_ie(WLAN_EID_VHT_CAPABILITY, ies, ies_len);
4294 if (cap && cap[1] >= sizeof(*params->vht_cap))
4295 params->vht_cap = (void *)(cap + 2);
4296 cap = cfg80211_find_ext_ie(WLAN_EID_EXT_HE_CAPABILITY, ies, ies_len);
4297 if (cap && cap[1] >= sizeof(*params->he_cap) + 1)
4298 params->he_cap = (void *)(cap + 3);
4301 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
4302 struct cfg80211_ap_settings *params)
4304 struct wireless_dev *wdev;
4307 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
4308 if (wdev->iftype != NL80211_IFTYPE_AP &&
4309 wdev->iftype != NL80211_IFTYPE_P2P_GO)
4312 if (!wdev->preset_chandef.chan)
4315 params->chandef = wdev->preset_chandef;
4323 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
4324 enum nl80211_auth_type auth_type,
4325 enum nl80211_commands cmd)
4327 if (auth_type > NL80211_AUTHTYPE_MAX)
4331 case NL80211_CMD_AUTHENTICATE:
4332 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4333 auth_type == NL80211_AUTHTYPE_SAE)
4335 if (!wiphy_ext_feature_isset(&rdev->wiphy,
4336 NL80211_EXT_FEATURE_FILS_STA) &&
4337 (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4338 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4339 auth_type == NL80211_AUTHTYPE_FILS_PK))
4342 case NL80211_CMD_CONNECT:
4343 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4344 auth_type == NL80211_AUTHTYPE_SAE)
4347 /* FILS with SK PFS or PK not supported yet */
4348 if (auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4349 auth_type == NL80211_AUTHTYPE_FILS_PK)
4351 if (!wiphy_ext_feature_isset(
4353 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
4354 auth_type == NL80211_AUTHTYPE_FILS_SK)
4357 case NL80211_CMD_START_AP:
4358 /* SAE not supported yet */
4359 if (auth_type == NL80211_AUTHTYPE_SAE)
4361 /* FILS not supported yet */
4362 if (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4363 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4364 auth_type == NL80211_AUTHTYPE_FILS_PK)
4372 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
4374 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4375 struct net_device *dev = info->user_ptr[1];
4376 struct wireless_dev *wdev = dev->ieee80211_ptr;
4377 struct cfg80211_ap_settings params;
4380 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4381 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4384 if (!rdev->ops->start_ap)
4387 if (wdev->beacon_interval)
4390 memset(¶ms, 0, sizeof(params));
4392 /* these are required for START_AP */
4393 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
4394 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
4395 !info->attrs[NL80211_ATTR_BEACON_HEAD])
4398 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon);
4402 params.beacon_interval =
4403 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
4404 params.dtim_period =
4405 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
4407 err = cfg80211_validate_beacon_int(rdev, dev->ieee80211_ptr->iftype,
4408 params.beacon_interval);
4413 * In theory, some of these attributes should be required here
4414 * but since they were not used when the command was originally
4415 * added, keep them optional for old user space programs to let
4416 * them continue to work with drivers that do not need the
4417 * additional information -- drivers must check!
4419 if (info->attrs[NL80211_ATTR_SSID]) {
4420 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
4422 nla_len(info->attrs[NL80211_ATTR_SSID]);
4423 if (params.ssid_len == 0 ||
4424 params.ssid_len > IEEE80211_MAX_SSID_LEN)
4428 if (info->attrs[NL80211_ATTR_HIDDEN_SSID])
4429 params.hidden_ssid = nla_get_u32(
4430 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
4432 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
4434 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
4435 params.auth_type = nla_get_u32(
4436 info->attrs[NL80211_ATTR_AUTH_TYPE]);
4437 if (!nl80211_valid_auth_type(rdev, params.auth_type,
4438 NL80211_CMD_START_AP))
4441 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
4443 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
4444 NL80211_MAX_NR_CIPHER_SUITES);
4448 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
4449 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
4451 params.inactivity_timeout = nla_get_u16(
4452 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
4455 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4456 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4458 params.p2p_ctwindow =
4459 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4460 if (params.p2p_ctwindow != 0 &&
4461 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4465 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4468 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4470 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4471 params.p2p_opp_ps = tmp;
4472 if (params.p2p_opp_ps != 0 &&
4473 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4477 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
4478 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
4481 } else if (wdev->preset_chandef.chan) {
4482 params.chandef = wdev->preset_chandef;
4483 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
4486 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
4490 if (info->attrs[NL80211_ATTR_TX_RATES]) {
4491 err = nl80211_parse_tx_bitrate_mask(info, ¶ms.beacon_rate);
4495 err = validate_beacon_tx_rate(rdev, params.chandef.chan->band,
4496 ¶ms.beacon_rate);
4501 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
4503 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
4504 switch (params.smps_mode) {
4505 case NL80211_SMPS_OFF:
4507 case NL80211_SMPS_STATIC:
4508 if (!(rdev->wiphy.features &
4509 NL80211_FEATURE_STATIC_SMPS))
4512 case NL80211_SMPS_DYNAMIC:
4513 if (!(rdev->wiphy.features &
4514 NL80211_FEATURE_DYNAMIC_SMPS))
4521 params.smps_mode = NL80211_SMPS_OFF;
4524 params.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
4525 if (params.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ])
4528 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
4529 params.acl = parse_acl_data(&rdev->wiphy, info);
4530 if (IS_ERR(params.acl))
4531 return PTR_ERR(params.acl);
4534 nl80211_calculate_ap_params(¶ms);
4536 if (info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])
4537 params.flags |= AP_SETTINGS_EXTERNAL_AUTH_SUPPORT;
4540 err = rdev_start_ap(rdev, dev, ¶ms);
4542 wdev->preset_chandef = params.chandef;
4543 wdev->beacon_interval = params.beacon_interval;
4544 wdev->chandef = params.chandef;
4545 wdev->ssid_len = params.ssid_len;
4546 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
4548 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
4549 wdev->conn_owner_nlportid = info->snd_portid;
4558 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
4560 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4561 struct net_device *dev = info->user_ptr[1];
4562 struct wireless_dev *wdev = dev->ieee80211_ptr;
4563 struct cfg80211_beacon_data params;
4566 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4567 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4570 if (!rdev->ops->change_beacon)
4573 if (!wdev->beacon_interval)
4576 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms);
4581 err = rdev_change_beacon(rdev, dev, ¶ms);
4587 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
4589 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4590 struct net_device *dev = info->user_ptr[1];
4592 return cfg80211_stop_ap(rdev, dev, false);
4595 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
4596 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
4597 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
4598 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
4599 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
4600 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
4601 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
4604 static int parse_station_flags(struct genl_info *info,
4605 enum nl80211_iftype iftype,
4606 struct station_parameters *params)
4608 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
4613 * Try parsing the new attribute first so userspace
4614 * can specify both for older kernels.
4616 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
4618 struct nl80211_sta_flag_update *sta_flags;
4620 sta_flags = nla_data(nla);
4621 params->sta_flags_mask = sta_flags->mask;
4622 params->sta_flags_set = sta_flags->set;
4623 params->sta_flags_set &= params->sta_flags_mask;
4624 if ((params->sta_flags_mask |
4625 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
4630 /* if present, parse the old attribute */
4632 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
4636 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX, nla,
4637 sta_flags_policy, info->extack))
4641 * Only allow certain flags for interface types so that
4642 * other attributes are silently ignored. Remember that
4643 * this is backward compatibility code with old userspace
4644 * and shouldn't be hit in other cases anyway.
4647 case NL80211_IFTYPE_AP:
4648 case NL80211_IFTYPE_AP_VLAN:
4649 case NL80211_IFTYPE_P2P_GO:
4650 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4651 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4652 BIT(NL80211_STA_FLAG_WME) |
4653 BIT(NL80211_STA_FLAG_MFP);
4655 case NL80211_IFTYPE_P2P_CLIENT:
4656 case NL80211_IFTYPE_STATION:
4657 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4658 BIT(NL80211_STA_FLAG_TDLS_PEER);
4660 case NL80211_IFTYPE_MESH_POINT:
4661 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4662 BIT(NL80211_STA_FLAG_MFP) |
4663 BIT(NL80211_STA_FLAG_AUTHORIZED);
4669 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
4671 params->sta_flags_set |= (1<<flag);
4673 /* no longer support new API additions in old API */
4674 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
4682 bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info, int attr)
4684 struct nlattr *rate;
4687 enum nl80211_rate_info rate_flg;
4689 rate = nla_nest_start(msg, attr);
4693 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
4694 bitrate = cfg80211_calculate_bitrate(info);
4695 /* report 16-bit bitrate only if we can */
4696 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
4698 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
4700 if (bitrate_compat > 0 &&
4701 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
4705 case RATE_INFO_BW_5:
4706 rate_flg = NL80211_RATE_INFO_5_MHZ_WIDTH;
4708 case RATE_INFO_BW_10:
4709 rate_flg = NL80211_RATE_INFO_10_MHZ_WIDTH;
4714 case RATE_INFO_BW_20:
4717 case RATE_INFO_BW_40:
4718 rate_flg = NL80211_RATE_INFO_40_MHZ_WIDTH;
4720 case RATE_INFO_BW_80:
4721 rate_flg = NL80211_RATE_INFO_80_MHZ_WIDTH;
4723 case RATE_INFO_BW_160:
4724 rate_flg = NL80211_RATE_INFO_160_MHZ_WIDTH;
4726 case RATE_INFO_BW_HE_RU:
4728 WARN_ON(!(info->flags & RATE_INFO_FLAGS_HE_MCS));
4731 if (rate_flg && nla_put_flag(msg, rate_flg))
4734 if (info->flags & RATE_INFO_FLAGS_MCS) {
4735 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
4737 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4738 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4740 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
4741 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
4743 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
4745 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4746 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4748 } else if (info->flags & RATE_INFO_FLAGS_HE_MCS) {
4749 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_MCS, info->mcs))
4751 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_NSS, info->nss))
4753 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_GI, info->he_gi))
4755 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_DCM, info->he_dcm))
4757 if (info->bw == RATE_INFO_BW_HE_RU &&
4758 nla_put_u8(msg, NL80211_RATE_INFO_HE_RU_ALLOC,
4763 nla_nest_end(msg, rate);
4767 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
4776 attr = nla_nest_start(msg, id);
4780 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
4781 if (!(mask & BIT(i)))
4784 if (nla_put_u8(msg, i, signal[i]))
4788 nla_nest_end(msg, attr);
4793 static int nl80211_send_station(struct sk_buff *msg, u32 cmd, u32 portid,
4795 struct cfg80211_registered_device *rdev,
4796 struct net_device *dev,
4797 const u8 *mac_addr, struct station_info *sinfo)
4800 struct nlattr *sinfoattr, *bss_param;
4802 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
4806 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4807 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
4808 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
4809 goto nla_put_failure;
4811 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
4813 goto nla_put_failure;
4815 #define PUT_SINFO(attr, memb, type) do { \
4816 BUILD_BUG_ON(sizeof(type) == sizeof(u64)); \
4817 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4818 nla_put_ ## type(msg, NL80211_STA_INFO_ ## attr, \
4820 goto nla_put_failure; \
4822 #define PUT_SINFO_U64(attr, memb) do { \
4823 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4824 nla_put_u64_64bit(msg, NL80211_STA_INFO_ ## attr, \
4825 sinfo->memb, NL80211_STA_INFO_PAD)) \
4826 goto nla_put_failure; \
4829 PUT_SINFO(CONNECTED_TIME, connected_time, u32);
4830 PUT_SINFO(INACTIVE_TIME, inactive_time, u32);
4832 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_RX_BYTES) |
4833 BIT_ULL(NL80211_STA_INFO_RX_BYTES64)) &&
4834 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
4835 (u32)sinfo->rx_bytes))
4836 goto nla_put_failure;
4838 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_TX_BYTES) |
4839 BIT_ULL(NL80211_STA_INFO_TX_BYTES64)) &&
4840 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
4841 (u32)sinfo->tx_bytes))
4842 goto nla_put_failure;
4844 PUT_SINFO_U64(RX_BYTES64, rx_bytes);
4845 PUT_SINFO_U64(TX_BYTES64, tx_bytes);
4846 PUT_SINFO(LLID, llid, u16);
4847 PUT_SINFO(PLID, plid, u16);
4848 PUT_SINFO(PLINK_STATE, plink_state, u8);
4849 PUT_SINFO_U64(RX_DURATION, rx_duration);
4850 PUT_SINFO_U64(TX_DURATION, tx_duration);
4852 if (wiphy_ext_feature_isset(&rdev->wiphy,
4853 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
4854 PUT_SINFO(AIRTIME_WEIGHT, airtime_weight, u16);
4856 switch (rdev->wiphy.signal_type) {
4857 case CFG80211_SIGNAL_TYPE_MBM:
4858 PUT_SINFO(SIGNAL, signal, u8);
4859 PUT_SINFO(SIGNAL_AVG, signal_avg, u8);
4864 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL)) {
4865 if (!nl80211_put_signal(msg, sinfo->chains,
4866 sinfo->chain_signal,
4867 NL80211_STA_INFO_CHAIN_SIGNAL))
4868 goto nla_put_failure;
4870 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL_AVG)) {
4871 if (!nl80211_put_signal(msg, sinfo->chains,
4872 sinfo->chain_signal_avg,
4873 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
4874 goto nla_put_failure;
4876 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_TX_BITRATE)) {
4877 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
4878 NL80211_STA_INFO_TX_BITRATE))
4879 goto nla_put_failure;
4881 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_RX_BITRATE)) {
4882 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
4883 NL80211_STA_INFO_RX_BITRATE))
4884 goto nla_put_failure;
4887 PUT_SINFO(RX_PACKETS, rx_packets, u32);
4888 PUT_SINFO(TX_PACKETS, tx_packets, u32);
4889 PUT_SINFO(TX_RETRIES, tx_retries, u32);
4890 PUT_SINFO(TX_FAILED, tx_failed, u32);
4891 PUT_SINFO(EXPECTED_THROUGHPUT, expected_throughput, u32);
4892 PUT_SINFO(BEACON_LOSS, beacon_loss_count, u32);
4893 PUT_SINFO(LOCAL_PM, local_pm, u32);
4894 PUT_SINFO(PEER_PM, peer_pm, u32);
4895 PUT_SINFO(NONPEER_PM, nonpeer_pm, u32);
4896 PUT_SINFO(CONNECTED_TO_GATE, connected_to_gate, u8);
4898 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_BSS_PARAM)) {
4899 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
4901 goto nla_put_failure;
4903 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
4904 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
4905 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
4906 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
4907 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
4908 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
4909 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
4910 sinfo->bss_param.dtim_period) ||
4911 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
4912 sinfo->bss_param.beacon_interval))
4913 goto nla_put_failure;
4915 nla_nest_end(msg, bss_param);
4917 if ((sinfo->filled & BIT_ULL(NL80211_STA_INFO_STA_FLAGS)) &&
4918 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
4919 sizeof(struct nl80211_sta_flag_update),
4921 goto nla_put_failure;
4923 PUT_SINFO_U64(T_OFFSET, t_offset);
4924 PUT_SINFO_U64(RX_DROP_MISC, rx_dropped_misc);
4925 PUT_SINFO_U64(BEACON_RX, rx_beacon);
4926 PUT_SINFO(BEACON_SIGNAL_AVG, rx_beacon_signal_avg, u8);
4927 PUT_SINFO(RX_MPDUS, rx_mpdu_count, u32);
4928 PUT_SINFO(FCS_ERROR_COUNT, fcs_err_count, u32);
4929 if (wiphy_ext_feature_isset(&rdev->wiphy,
4930 NL80211_EXT_FEATURE_ACK_SIGNAL_SUPPORT)) {
4931 PUT_SINFO(ACK_SIGNAL, ack_signal, u8);
4932 PUT_SINFO(ACK_SIGNAL_AVG, avg_ack_signal, s8);
4936 #undef PUT_SINFO_U64
4938 if (sinfo->pertid) {
4939 struct nlattr *tidsattr;
4942 tidsattr = nla_nest_start(msg, NL80211_STA_INFO_TID_STATS);
4944 goto nla_put_failure;
4946 for (tid = 0; tid < IEEE80211_NUM_TIDS + 1; tid++) {
4947 struct cfg80211_tid_stats *tidstats;
4948 struct nlattr *tidattr;
4950 tidstats = &sinfo->pertid[tid];
4952 if (!tidstats->filled)
4955 tidattr = nla_nest_start(msg, tid + 1);
4957 goto nla_put_failure;
4959 #define PUT_TIDVAL_U64(attr, memb) do { \
4960 if (tidstats->filled & BIT(NL80211_TID_STATS_ ## attr) && \
4961 nla_put_u64_64bit(msg, NL80211_TID_STATS_ ## attr, \
4962 tidstats->memb, NL80211_TID_STATS_PAD)) \
4963 goto nla_put_failure; \
4966 PUT_TIDVAL_U64(RX_MSDU, rx_msdu);
4967 PUT_TIDVAL_U64(TX_MSDU, tx_msdu);
4968 PUT_TIDVAL_U64(TX_MSDU_RETRIES, tx_msdu_retries);
4969 PUT_TIDVAL_U64(TX_MSDU_FAILED, tx_msdu_failed);
4971 #undef PUT_TIDVAL_U64
4972 if ((tidstats->filled &
4973 BIT(NL80211_TID_STATS_TXQ_STATS)) &&
4974 !nl80211_put_txq_stats(msg, &tidstats->txq_stats,
4975 NL80211_TID_STATS_TXQ_STATS))
4976 goto nla_put_failure;
4978 nla_nest_end(msg, tidattr);
4981 nla_nest_end(msg, tidsattr);
4984 nla_nest_end(msg, sinfoattr);
4986 if (sinfo->assoc_req_ies_len &&
4987 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
4988 sinfo->assoc_req_ies))
4989 goto nla_put_failure;
4991 cfg80211_sinfo_release_content(sinfo);
4992 genlmsg_end(msg, hdr);
4996 cfg80211_sinfo_release_content(sinfo);
4997 genlmsg_cancel(msg, hdr);
5001 static int nl80211_dump_station(struct sk_buff *skb,
5002 struct netlink_callback *cb)
5004 struct station_info sinfo;
5005 struct cfg80211_registered_device *rdev;
5006 struct wireless_dev *wdev;
5007 u8 mac_addr[ETH_ALEN];
5008 int sta_idx = cb->args[2];
5012 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5016 if (!wdev->netdev) {
5021 if (!rdev->ops->dump_station) {
5027 memset(&sinfo, 0, sizeof(sinfo));
5028 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
5035 if (nl80211_send_station(skb, NL80211_CMD_NEW_STATION,
5036 NETLINK_CB(cb->skb).portid,
5037 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5038 rdev, wdev->netdev, mac_addr,
5046 cb->args[2] = sta_idx;
5054 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
5056 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5057 struct net_device *dev = info->user_ptr[1];
5058 struct station_info sinfo;
5059 struct sk_buff *msg;
5060 u8 *mac_addr = NULL;
5063 memset(&sinfo, 0, sizeof(sinfo));
5065 if (!info->attrs[NL80211_ATTR_MAC])
5068 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5070 if (!rdev->ops->get_station)
5073 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
5077 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5079 cfg80211_sinfo_release_content(&sinfo);
5083 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION,
5084 info->snd_portid, info->snd_seq, 0,
5085 rdev, dev, mac_addr, &sinfo) < 0) {
5090 return genlmsg_reply(msg, info);
5093 int cfg80211_check_station_change(struct wiphy *wiphy,
5094 struct station_parameters *params,
5095 enum cfg80211_station_type statype)
5097 if (params->listen_interval != -1 &&
5098 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5101 if (params->support_p2p_ps != -1 &&
5102 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5106 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) &&
5107 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5110 /* When you run into this, adjust the code below for the new flag */
5111 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5114 case CFG80211_STA_MESH_PEER_KERNEL:
5115 case CFG80211_STA_MESH_PEER_USER:
5117 * No ignoring the TDLS flag here -- the userspace mesh
5118 * code doesn't have the bug of including TDLS in the
5121 if (params->sta_flags_mask &
5122 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5123 BIT(NL80211_STA_FLAG_MFP) |
5124 BIT(NL80211_STA_FLAG_AUTHORIZED)))
5127 case CFG80211_STA_TDLS_PEER_SETUP:
5128 case CFG80211_STA_TDLS_PEER_ACTIVE:
5129 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5131 /* ignore since it can't change */
5132 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5135 /* disallow mesh-specific things */
5136 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
5138 if (params->local_pm)
5140 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5144 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5145 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
5146 /* TDLS can't be set, ... */
5147 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
5150 * ... but don't bother the driver with it. This works around
5151 * a hostapd/wpa_supplicant issue -- it always includes the
5152 * TLDS_PEER flag in the mask even for AP mode.
5154 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5157 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5158 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5159 /* reject other things that can't change */
5160 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
5162 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
5164 if (params->supported_rates)
5166 if (params->ext_capab || params->ht_capa || params->vht_capa ||
5171 if (statype != CFG80211_STA_AP_CLIENT &&
5172 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5178 case CFG80211_STA_AP_MLME_CLIENT:
5179 /* Use this only for authorizing/unauthorizing a station */
5180 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
5183 case CFG80211_STA_AP_CLIENT:
5184 case CFG80211_STA_AP_CLIENT_UNASSOC:
5185 /* accept only the listed bits */
5186 if (params->sta_flags_mask &
5187 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5188 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5189 BIT(NL80211_STA_FLAG_ASSOCIATED) |
5190 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
5191 BIT(NL80211_STA_FLAG_WME) |
5192 BIT(NL80211_STA_FLAG_MFP)))
5195 /* but authenticated/associated only if driver handles it */
5196 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5197 params->sta_flags_mask &
5198 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5199 BIT(NL80211_STA_FLAG_ASSOCIATED)))
5202 case CFG80211_STA_IBSS:
5203 case CFG80211_STA_AP_STA:
5204 /* reject any changes other than AUTHORIZED */
5205 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
5208 case CFG80211_STA_TDLS_PEER_SETUP:
5209 /* reject any changes other than AUTHORIZED or WME */
5210 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5211 BIT(NL80211_STA_FLAG_WME)))
5213 /* force (at least) rates when authorizing */
5214 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
5215 !params->supported_rates)
5218 case CFG80211_STA_TDLS_PEER_ACTIVE:
5219 /* reject any changes */
5221 case CFG80211_STA_MESH_PEER_KERNEL:
5222 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5225 case CFG80211_STA_MESH_PEER_USER:
5226 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION &&
5227 params->plink_action != NL80211_PLINK_ACTION_BLOCK)
5233 * Older kernel versions ignored this attribute entirely, so don't
5234 * reject attempts to update it but mark it as unused instead so the
5235 * driver won't look at the data.
5237 if (statype != CFG80211_STA_AP_CLIENT_UNASSOC &&
5238 statype != CFG80211_STA_TDLS_PEER_SETUP)
5239 params->opmode_notif_used = false;
5243 EXPORT_SYMBOL(cfg80211_check_station_change);
5246 * Get vlan interface making sure it is running and on the right wiphy.
5248 static struct net_device *get_vlan(struct genl_info *info,
5249 struct cfg80211_registered_device *rdev)
5251 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
5252 struct net_device *v;
5258 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
5260 return ERR_PTR(-ENODEV);
5262 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
5267 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5268 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5269 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
5274 if (!netif_running(v)) {
5282 return ERR_PTR(ret);
5285 static const struct nla_policy
5286 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
5287 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
5288 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
5291 static int nl80211_parse_sta_wme(struct genl_info *info,
5292 struct station_parameters *params)
5294 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
5298 /* parse WME attributes if present */
5299 if (!info->attrs[NL80211_ATTR_STA_WME])
5302 nla = info->attrs[NL80211_ATTR_STA_WME];
5303 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
5304 nl80211_sta_wme_policy, info->extack);
5308 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
5309 params->uapsd_queues = nla_get_u8(
5310 tb[NL80211_STA_WME_UAPSD_QUEUES]);
5311 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
5314 if (tb[NL80211_STA_WME_MAX_SP])
5315 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
5317 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
5320 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
5325 static int nl80211_parse_sta_channel_info(struct genl_info *info,
5326 struct station_parameters *params)
5328 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
5329 params->supported_channels =
5330 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5331 params->supported_channels_len =
5332 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5334 * Need to include at least one (first channel, number of
5335 * channels) tuple for each subband, and must have proper
5336 * tuples for the rest of the data as well.
5338 if (params->supported_channels_len < 2)
5340 if (params->supported_channels_len % 2)
5344 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
5345 params->supported_oper_classes =
5346 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5347 params->supported_oper_classes_len =
5348 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5350 * The value of the Length field of the Supported Operating
5351 * Classes element is between 2 and 253.
5353 if (params->supported_oper_classes_len < 2 ||
5354 params->supported_oper_classes_len > 253)
5360 static int nl80211_set_station_tdls(struct genl_info *info,
5361 struct station_parameters *params)
5364 /* Dummy STA entry gets updated once the peer capabilities are known */
5365 if (info->attrs[NL80211_ATTR_PEER_AID])
5366 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5367 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5369 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5370 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5372 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5373 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5375 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5376 params->he_capa_len =
5377 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5379 if (params->he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5383 err = nl80211_parse_sta_channel_info(info, params);
5387 return nl80211_parse_sta_wme(info, params);
5390 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
5392 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5393 struct net_device *dev = info->user_ptr[1];
5394 struct station_parameters params;
5398 memset(¶ms, 0, sizeof(params));
5400 if (!rdev->ops->change_station)
5404 * AID and listen_interval properties can be set only for unassociated
5405 * station. Include these parameters here and will check them in
5406 * cfg80211_check_station_change().
5408 if (info->attrs[NL80211_ATTR_STA_AID])
5409 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5411 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5412 params.listen_interval =
5413 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5415 params.listen_interval = -1;
5417 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS])
5418 params.support_p2p_ps =
5419 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5421 params.support_p2p_ps = -1;
5423 if (!info->attrs[NL80211_ATTR_MAC])
5426 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5428 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
5429 params.supported_rates =
5430 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5431 params.supported_rates_len =
5432 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5435 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5437 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5438 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5441 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5443 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5444 params.ext_capab_len =
5445 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5448 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5451 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5452 params.plink_action =
5453 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5455 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
5456 params.plink_state =
5457 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
5458 if (info->attrs[NL80211_ATTR_MESH_PEER_AID])
5459 params.peer_aid = nla_get_u16(
5460 info->attrs[NL80211_ATTR_MESH_PEER_AID]);
5461 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
5464 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE])
5465 params.local_pm = nla_get_u32(
5466 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
5468 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5469 params.opmode_notif_used = true;
5470 params.opmode_notif =
5471 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5474 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5475 params.airtime_weight =
5476 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5478 if (params.airtime_weight &&
5479 !wiphy_ext_feature_isset(&rdev->wiphy,
5480 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5483 /* Include parameters for TDLS peer (will check later) */
5484 err = nl80211_set_station_tdls(info, ¶ms);
5488 params.vlan = get_vlan(info, rdev);
5489 if (IS_ERR(params.vlan))
5490 return PTR_ERR(params.vlan);
5492 switch (dev->ieee80211_ptr->iftype) {
5493 case NL80211_IFTYPE_AP:
5494 case NL80211_IFTYPE_AP_VLAN:
5495 case NL80211_IFTYPE_P2P_GO:
5496 case NL80211_IFTYPE_P2P_CLIENT:
5497 case NL80211_IFTYPE_STATION:
5498 case NL80211_IFTYPE_ADHOC:
5499 case NL80211_IFTYPE_MESH_POINT:
5506 /* driver will call cfg80211_check_station_change() */
5507 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
5511 dev_put(params.vlan);
5516 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
5518 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5520 struct net_device *dev = info->user_ptr[1];
5521 struct station_parameters params;
5522 u8 *mac_addr = NULL;
5523 u32 auth_assoc = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5524 BIT(NL80211_STA_FLAG_ASSOCIATED);
5526 memset(¶ms, 0, sizeof(params));
5528 if (!rdev->ops->add_station)
5531 if (!info->attrs[NL80211_ATTR_MAC])
5534 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5537 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
5540 if (!info->attrs[NL80211_ATTR_STA_AID] &&
5541 !info->attrs[NL80211_ATTR_PEER_AID])
5544 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5545 params.supported_rates =
5546 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5547 params.supported_rates_len =
5548 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5549 params.listen_interval =
5550 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5552 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]) {
5553 params.support_p2p_ps =
5554 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5557 * if not specified, assume it's supported for P2P GO interface,
5558 * and is NOT supported for AP interface
5560 params.support_p2p_ps =
5561 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO;
5564 if (info->attrs[NL80211_ATTR_PEER_AID])
5565 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5567 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5569 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5571 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5572 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5575 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5577 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5578 params.ext_capab_len =
5579 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5582 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5584 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5586 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5588 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5590 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5592 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5593 params.he_capa_len =
5594 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5596 /* max len is validated in nla policy */
5597 if (params.he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5601 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5602 params.opmode_notif_used = true;
5603 params.opmode_notif =
5604 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5607 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5608 params.plink_action =
5609 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5611 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5612 params.airtime_weight =
5613 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5615 if (params.airtime_weight &&
5616 !wiphy_ext_feature_isset(&rdev->wiphy,
5617 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5620 err = nl80211_parse_sta_channel_info(info, ¶ms);
5624 err = nl80211_parse_sta_wme(info, ¶ms);
5628 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5631 /* HT/VHT requires QoS, but if we don't have that just ignore HT/VHT
5632 * as userspace might just pass through the capabilities from the IEs
5633 * directly, rather than enforcing this restriction and returning an
5634 * error in this case.
5636 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME))) {
5637 params.ht_capa = NULL;
5638 params.vht_capa = NULL;
5640 /* HE requires WME */
5641 if (params.he_capa_len)
5645 /* When you run into this, adjust the code below for the new flag */
5646 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5648 switch (dev->ieee80211_ptr->iftype) {
5649 case NL80211_IFTYPE_AP:
5650 case NL80211_IFTYPE_AP_VLAN:
5651 case NL80211_IFTYPE_P2P_GO:
5652 /* ignore WME attributes if iface/sta is not capable */
5653 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
5654 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
5655 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5657 /* TDLS peers cannot be added */
5658 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5659 info->attrs[NL80211_ATTR_PEER_AID])
5661 /* but don't bother the driver with it */
5662 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5664 /* allow authenticated/associated only if driver handles it */
5665 if (!(rdev->wiphy.features &
5666 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5667 params.sta_flags_mask & auth_assoc)
5670 /* Older userspace, or userspace wanting to be compatible with
5671 * !NL80211_FEATURE_FULL_AP_CLIENT_STATE, will not set the auth
5672 * and assoc flags in the mask, but assumes the station will be
5673 * added as associated anyway since this was the required driver
5674 * behaviour before NL80211_FEATURE_FULL_AP_CLIENT_STATE was
5676 * In order to not bother drivers with this quirk in the API
5677 * set the flags in both the mask and set for new stations in
5680 if (!(params.sta_flags_mask & auth_assoc)) {
5681 params.sta_flags_mask |= auth_assoc;
5682 params.sta_flags_set |= auth_assoc;
5685 /* must be last in here for error handling */
5686 params.vlan = get_vlan(info, rdev);
5687 if (IS_ERR(params.vlan))
5688 return PTR_ERR(params.vlan);
5690 case NL80211_IFTYPE_MESH_POINT:
5691 /* ignore uAPSD data */
5692 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5694 /* associated is disallowed */
5695 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
5697 /* TDLS peers cannot be added */
5698 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5699 info->attrs[NL80211_ATTR_PEER_AID])
5702 case NL80211_IFTYPE_STATION:
5703 case NL80211_IFTYPE_P2P_CLIENT:
5704 /* ignore uAPSD data */
5705 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5707 /* these are disallowed */
5708 if (params.sta_flags_mask &
5709 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
5710 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
5712 /* Only TDLS peers can be added */
5713 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5715 /* Can only add if TDLS ... */
5716 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
5718 /* ... with external setup is supported */
5719 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
5722 * Older wpa_supplicant versions always mark the TDLS peer
5723 * as authorized, but it shouldn't yet be.
5725 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
5731 /* be aware of params.vlan when changing code here */
5733 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
5736 dev_put(params.vlan);
5740 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
5742 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5743 struct net_device *dev = info->user_ptr[1];
5744 struct station_del_parameters params;
5746 memset(¶ms, 0, sizeof(params));
5748 if (info->attrs[NL80211_ATTR_MAC])
5749 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
5751 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5752 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5753 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
5754 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5757 if (!rdev->ops->del_station)
5760 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
5762 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
5763 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
5764 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
5767 /* Default to Deauthentication frame */
5768 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
5771 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
5772 params.reason_code =
5773 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
5774 if (params.reason_code == 0)
5775 return -EINVAL; /* 0 is reserved */
5777 /* Default to reason code 2 */
5778 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
5781 return rdev_del_station(rdev, dev, ¶ms);
5784 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
5785 int flags, struct net_device *dev,
5786 u8 *dst, u8 *next_hop,
5787 struct mpath_info *pinfo)
5790 struct nlattr *pinfoattr;
5792 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
5796 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5797 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
5798 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
5799 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
5800 goto nla_put_failure;
5802 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
5804 goto nla_put_failure;
5805 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
5806 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
5808 goto nla_put_failure;
5809 if (((pinfo->filled & MPATH_INFO_SN) &&
5810 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
5811 ((pinfo->filled & MPATH_INFO_METRIC) &&
5812 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
5814 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
5815 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
5817 ((pinfo->filled & MPATH_INFO_FLAGS) &&
5818 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
5820 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
5821 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
5822 pinfo->discovery_timeout)) ||
5823 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
5824 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
5825 pinfo->discovery_retries)) ||
5826 ((pinfo->filled & MPATH_INFO_HOP_COUNT) &&
5827 nla_put_u8(msg, NL80211_MPATH_INFO_HOP_COUNT,
5828 pinfo->hop_count)) ||
5829 ((pinfo->filled & MPATH_INFO_PATH_CHANGE) &&
5830 nla_put_u32(msg, NL80211_MPATH_INFO_PATH_CHANGE,
5831 pinfo->path_change_count)))
5832 goto nla_put_failure;
5834 nla_nest_end(msg, pinfoattr);
5836 genlmsg_end(msg, hdr);
5840 genlmsg_cancel(msg, hdr);
5844 static int nl80211_dump_mpath(struct sk_buff *skb,
5845 struct netlink_callback *cb)
5847 struct mpath_info pinfo;
5848 struct cfg80211_registered_device *rdev;
5849 struct wireless_dev *wdev;
5851 u8 next_hop[ETH_ALEN];
5852 int path_idx = cb->args[2];
5856 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5860 if (!rdev->ops->dump_mpath) {
5865 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
5871 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
5878 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
5879 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5880 wdev->netdev, dst, next_hop,
5888 cb->args[2] = path_idx;
5895 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
5897 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5899 struct net_device *dev = info->user_ptr[1];
5900 struct mpath_info pinfo;
5901 struct sk_buff *msg;
5903 u8 next_hop[ETH_ALEN];
5905 memset(&pinfo, 0, sizeof(pinfo));
5907 if (!info->attrs[NL80211_ATTR_MAC])
5910 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5912 if (!rdev->ops->get_mpath)
5915 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5918 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
5922 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5926 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
5927 dev, dst, next_hop, &pinfo) < 0) {
5932 return genlmsg_reply(msg, info);
5935 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
5937 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5938 struct net_device *dev = info->user_ptr[1];
5940 u8 *next_hop = NULL;
5942 if (!info->attrs[NL80211_ATTR_MAC])
5945 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
5948 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5949 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
5951 if (!rdev->ops->change_mpath)
5954 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5957 return rdev_change_mpath(rdev, dev, dst, next_hop);
5960 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
5962 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5963 struct net_device *dev = info->user_ptr[1];
5965 u8 *next_hop = NULL;
5967 if (!info->attrs[NL80211_ATTR_MAC])
5970 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
5973 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5974 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
5976 if (!rdev->ops->add_mpath)
5979 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5982 return rdev_add_mpath(rdev, dev, dst, next_hop);
5985 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
5987 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5988 struct net_device *dev = info->user_ptr[1];
5991 if (info->attrs[NL80211_ATTR_MAC])
5992 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5994 if (!rdev->ops->del_mpath)
5997 return rdev_del_mpath(rdev, dev, dst);
6000 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
6002 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6004 struct net_device *dev = info->user_ptr[1];
6005 struct mpath_info pinfo;
6006 struct sk_buff *msg;
6010 memset(&pinfo, 0, sizeof(pinfo));
6012 if (!info->attrs[NL80211_ATTR_MAC])
6015 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6017 if (!rdev->ops->get_mpp)
6020 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6023 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
6027 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6031 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6032 dev, dst, mpp, &pinfo) < 0) {
6037 return genlmsg_reply(msg, info);
6040 static int nl80211_dump_mpp(struct sk_buff *skb,
6041 struct netlink_callback *cb)
6043 struct mpath_info pinfo;
6044 struct cfg80211_registered_device *rdev;
6045 struct wireless_dev *wdev;
6048 int path_idx = cb->args[2];
6052 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6056 if (!rdev->ops->dump_mpp) {
6061 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6067 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
6074 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6075 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6076 wdev->netdev, dst, mpp,
6084 cb->args[2] = path_idx;
6091 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
6093 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6094 struct net_device *dev = info->user_ptr[1];
6095 struct wireless_dev *wdev = dev->ieee80211_ptr;
6096 struct bss_parameters params;
6099 memset(¶ms, 0, sizeof(params));
6100 /* default to not changing parameters */
6101 params.use_cts_prot = -1;
6102 params.use_short_preamble = -1;
6103 params.use_short_slot_time = -1;
6104 params.ap_isolate = -1;
6105 params.ht_opmode = -1;
6106 params.p2p_ctwindow = -1;
6107 params.p2p_opp_ps = -1;
6109 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
6110 params.use_cts_prot =
6111 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
6112 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
6113 params.use_short_preamble =
6114 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
6115 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
6116 params.use_short_slot_time =
6117 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
6118 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6119 params.basic_rates =
6120 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6121 params.basic_rates_len =
6122 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6124 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
6125 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
6126 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
6128 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
6130 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
6131 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6133 params.p2p_ctwindow =
6134 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
6135 if (params.p2p_ctwindow != 0 &&
6136 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
6140 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
6143 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6145 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
6146 params.p2p_opp_ps = tmp;
6147 if (params.p2p_opp_ps &&
6148 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
6152 if (!rdev->ops->change_bss)
6155 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
6156 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6160 err = rdev_change_bss(rdev, dev, ¶ms);
6166 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
6170 enum nl80211_user_reg_hint_type user_reg_hint_type;
6174 * You should only get this when cfg80211 hasn't yet initialized
6175 * completely when built-in to the kernel right between the time
6176 * window between nl80211_init() and regulatory_init(), if that is
6179 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
6180 return -EINPROGRESS;
6182 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
6183 user_reg_hint_type =
6184 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
6186 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
6188 switch (user_reg_hint_type) {
6189 case NL80211_USER_REG_HINT_USER:
6190 case NL80211_USER_REG_HINT_CELL_BASE:
6191 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6194 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6195 return regulatory_hint_user(data, user_reg_hint_type);
6196 case NL80211_USER_REG_HINT_INDOOR:
6197 if (info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
6198 owner_nlportid = info->snd_portid;
6199 is_indoor = !!info->attrs[NL80211_ATTR_REG_INDOOR];
6205 return regulatory_hint_indoor(is_indoor, owner_nlportid);
6211 static int nl80211_reload_regdb(struct sk_buff *skb, struct genl_info *info)
6213 return reg_reload_regdb();
6216 static int nl80211_get_mesh_config(struct sk_buff *skb,
6217 struct genl_info *info)
6219 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6220 struct net_device *dev = info->user_ptr[1];
6221 struct wireless_dev *wdev = dev->ieee80211_ptr;
6222 struct mesh_config cur_params;
6225 struct nlattr *pinfoattr;
6226 struct sk_buff *msg;
6228 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6231 if (!rdev->ops->get_mesh_config)
6235 /* If not connected, get default parameters */
6236 if (!wdev->mesh_id_len)
6237 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
6239 err = rdev_get_mesh_config(rdev, dev, &cur_params);
6245 /* Draw up a netlink message to send back */
6246 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6249 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6250 NL80211_CMD_GET_MESH_CONFIG);
6253 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
6255 goto nla_put_failure;
6256 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
6257 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
6258 cur_params.dot11MeshRetryTimeout) ||
6259 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
6260 cur_params.dot11MeshConfirmTimeout) ||
6261 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
6262 cur_params.dot11MeshHoldingTimeout) ||
6263 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
6264 cur_params.dot11MeshMaxPeerLinks) ||
6265 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
6266 cur_params.dot11MeshMaxRetries) ||
6267 nla_put_u8(msg, NL80211_MESHCONF_TTL,
6268 cur_params.dot11MeshTTL) ||
6269 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
6270 cur_params.element_ttl) ||
6271 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6272 cur_params.auto_open_plinks) ||
6273 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6274 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
6275 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6276 cur_params.dot11MeshHWMPmaxPREQretries) ||
6277 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
6278 cur_params.path_refresh_time) ||
6279 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6280 cur_params.min_discovery_timeout) ||
6281 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6282 cur_params.dot11MeshHWMPactivePathTimeout) ||
6283 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6284 cur_params.dot11MeshHWMPpreqMinInterval) ||
6285 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6286 cur_params.dot11MeshHWMPperrMinInterval) ||
6287 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6288 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
6289 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
6290 cur_params.dot11MeshHWMPRootMode) ||
6291 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6292 cur_params.dot11MeshHWMPRannInterval) ||
6293 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6294 cur_params.dot11MeshGateAnnouncementProtocol) ||
6295 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
6296 cur_params.dot11MeshForwarding) ||
6297 nla_put_s32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
6298 cur_params.rssi_threshold) ||
6299 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
6300 cur_params.ht_opmode) ||
6301 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6302 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
6303 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6304 cur_params.dot11MeshHWMProotInterval) ||
6305 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6306 cur_params.dot11MeshHWMPconfirmationInterval) ||
6307 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
6308 cur_params.power_mode) ||
6309 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
6310 cur_params.dot11MeshAwakeWindowDuration) ||
6311 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
6312 cur_params.plink_timeout) ||
6313 nla_put_u8(msg, NL80211_MESHCONF_CONNECTED_TO_GATE,
6314 cur_params.dot11MeshConnectedToMeshGate))
6315 goto nla_put_failure;
6316 nla_nest_end(msg, pinfoattr);
6317 genlmsg_end(msg, hdr);
6318 return genlmsg_reply(msg, info);
6326 static const struct nla_policy
6327 nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
6328 [NL80211_MESHCONF_RETRY_TIMEOUT] =
6329 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6330 [NL80211_MESHCONF_CONFIRM_TIMEOUT] =
6331 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6332 [NL80211_MESHCONF_HOLDING_TIMEOUT] =
6333 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6334 [NL80211_MESHCONF_MAX_PEER_LINKS] =
6335 NLA_POLICY_RANGE(NLA_U16, 0, 255),
6336 [NL80211_MESHCONF_MAX_RETRIES] = NLA_POLICY_MAX(NLA_U8, 16),
6337 [NL80211_MESHCONF_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6338 [NL80211_MESHCONF_ELEMENT_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6339 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = NLA_POLICY_MAX(NLA_U8, 1),
6340 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] =
6341 NLA_POLICY_RANGE(NLA_U32, 1, 255),
6342 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
6343 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
6344 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = NLA_POLICY_MIN(NLA_U16, 1),
6345 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
6346 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] =
6347 NLA_POLICY_MIN(NLA_U16, 1),
6348 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] =
6349 NLA_POLICY_MIN(NLA_U16, 1),
6350 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] =
6351 NLA_POLICY_MIN(NLA_U16, 1),
6352 [NL80211_MESHCONF_HWMP_ROOTMODE] = NLA_POLICY_MAX(NLA_U8, 4),
6353 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] =
6354 NLA_POLICY_MIN(NLA_U16, 1),
6355 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = NLA_POLICY_MAX(NLA_U8, 1),
6356 [NL80211_MESHCONF_FORWARDING] = NLA_POLICY_MAX(NLA_U8, 1),
6357 [NL80211_MESHCONF_RSSI_THRESHOLD] =
6358 NLA_POLICY_RANGE(NLA_S32, -255, 0),
6359 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
6360 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
6361 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] =
6362 NLA_POLICY_MIN(NLA_U16, 1),
6363 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] =
6364 NLA_POLICY_MIN(NLA_U16, 1),
6365 [NL80211_MESHCONF_POWER_MODE] =
6366 NLA_POLICY_RANGE(NLA_U32,
6367 NL80211_MESH_POWER_ACTIVE,
6368 NL80211_MESH_POWER_MAX),
6369 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
6370 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
6371 [NL80211_MESHCONF_CONNECTED_TO_GATE] = NLA_POLICY_RANGE(NLA_U8, 0, 1),
6374 static const struct nla_policy
6375 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
6376 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
6377 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
6378 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
6379 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
6380 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
6381 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
6382 [NL80211_MESH_SETUP_IE] =
6383 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
6384 IEEE80211_MAX_DATA_LEN),
6385 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
6388 static int nl80211_parse_mesh_config(struct genl_info *info,
6389 struct mesh_config *cfg,
6392 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
6396 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, mask, attr, fn) \
6399 cfg->param = fn(tb[attr]); \
6400 mask |= BIT((attr) - 1); \
6404 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
6406 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
6407 info->attrs[NL80211_ATTR_MESH_CONFIG],
6408 nl80211_meshconf_params_policy, info->extack))
6411 /* This makes sure that there aren't more than 32 mesh config
6412 * parameters (otherwise our bitfield scheme would not work.) */
6413 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
6415 /* Fill in the params struct */
6416 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, mask,
6417 NL80211_MESHCONF_RETRY_TIMEOUT, nla_get_u16);
6418 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, mask,
6419 NL80211_MESHCONF_CONFIRM_TIMEOUT,
6421 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, mask,
6422 NL80211_MESHCONF_HOLDING_TIMEOUT,
6424 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, mask,
6425 NL80211_MESHCONF_MAX_PEER_LINKS,
6427 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, mask,
6428 NL80211_MESHCONF_MAX_RETRIES, nla_get_u8);
6429 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, mask,
6430 NL80211_MESHCONF_TTL, nla_get_u8);
6431 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, mask,
6432 NL80211_MESHCONF_ELEMENT_TTL, nla_get_u8);
6433 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, mask,
6434 NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6436 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
6438 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6440 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, mask,
6441 NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6443 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, mask,
6444 NL80211_MESHCONF_PATH_REFRESH_TIME,
6446 if (mask & BIT(NL80211_MESHCONF_PATH_REFRESH_TIME) &&
6447 (cfg->path_refresh_time < 1 || cfg->path_refresh_time > 65535))
6449 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, mask,
6450 NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6452 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
6454 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6456 if (mask & BIT(NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT) &&
6457 (cfg->dot11MeshHWMPactivePathTimeout < 1 ||
6458 cfg->dot11MeshHWMPactivePathTimeout > 65535))
6460 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval, mask,
6461 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6463 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval, mask,
6464 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6466 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6467 dot11MeshHWMPnetDiameterTraversalTime, mask,
6468 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6470 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, mask,
6471 NL80211_MESHCONF_HWMP_ROOTMODE, nla_get_u8);
6472 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, mask,
6473 NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6475 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshGateAnnouncementProtocol,
6476 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6478 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, mask,
6479 NL80211_MESHCONF_FORWARDING, nla_get_u8);
6480 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, mask,
6481 NL80211_MESHCONF_RSSI_THRESHOLD,
6483 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConnectedToMeshGate, mask,
6484 NL80211_MESHCONF_CONNECTED_TO_GATE,
6487 * Check HT operation mode based on
6488 * IEEE 802.11-2016 9.4.2.57 HT Operation element.
6490 if (tb[NL80211_MESHCONF_HT_OPMODE]) {
6491 ht_opmode = nla_get_u16(tb[NL80211_MESHCONF_HT_OPMODE]);
6493 if (ht_opmode & ~(IEEE80211_HT_OP_MODE_PROTECTION |
6494 IEEE80211_HT_OP_MODE_NON_GF_STA_PRSNT |
6495 IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT))
6498 /* NON_HT_STA bit is reserved, but some programs set it */
6499 ht_opmode &= ~IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT;
6501 cfg->ht_opmode = ht_opmode;
6502 mask |= (1 << (NL80211_MESHCONF_HT_OPMODE - 1));
6504 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6505 dot11MeshHWMPactivePathToRootTimeout, mask,
6506 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6508 if (mask & BIT(NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT) &&
6509 (cfg->dot11MeshHWMPactivePathToRootTimeout < 1 ||
6510 cfg->dot11MeshHWMPactivePathToRootTimeout > 65535))
6512 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, mask,
6513 NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6515 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPconfirmationInterval,
6517 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6519 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode, mask,
6520 NL80211_MESHCONF_POWER_MODE, nla_get_u32);
6521 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration, mask,
6522 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
6523 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, mask,
6524 NL80211_MESHCONF_PLINK_TIMEOUT, nla_get_u32);
6530 #undef FILL_IN_MESH_PARAM_IF_SET
6533 static int nl80211_parse_mesh_setup(struct genl_info *info,
6534 struct mesh_setup *setup)
6536 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6537 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
6539 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
6541 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
6542 info->attrs[NL80211_ATTR_MESH_SETUP],
6543 nl80211_mesh_setup_params_policy, info->extack))
6546 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
6547 setup->sync_method =
6548 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
6549 IEEE80211_SYNC_METHOD_VENDOR :
6550 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
6552 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
6553 setup->path_sel_proto =
6554 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
6555 IEEE80211_PATH_PROTOCOL_VENDOR :
6556 IEEE80211_PATH_PROTOCOL_HWMP;
6558 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
6559 setup->path_metric =
6560 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
6561 IEEE80211_PATH_METRIC_VENDOR :
6562 IEEE80211_PATH_METRIC_AIRTIME;
6564 if (tb[NL80211_MESH_SETUP_IE]) {
6565 struct nlattr *ieattr =
6566 tb[NL80211_MESH_SETUP_IE];
6567 setup->ie = nla_data(ieattr);
6568 setup->ie_len = nla_len(ieattr);
6570 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
6571 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
6573 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
6574 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
6575 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
6576 if (setup->is_secure)
6577 setup->user_mpm = true;
6579 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
6580 if (!setup->user_mpm)
6583 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
6589 static int nl80211_update_mesh_config(struct sk_buff *skb,
6590 struct genl_info *info)
6592 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6593 struct net_device *dev = info->user_ptr[1];
6594 struct wireless_dev *wdev = dev->ieee80211_ptr;
6595 struct mesh_config cfg;
6599 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6602 if (!rdev->ops->update_mesh_config)
6605 err = nl80211_parse_mesh_config(info, &cfg, &mask);
6610 if (!wdev->mesh_id_len)
6614 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
6621 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
6622 struct sk_buff *msg)
6624 struct nlattr *nl_reg_rules;
6627 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
6628 (regdom->dfs_region &&
6629 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
6630 goto nla_put_failure;
6632 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
6634 goto nla_put_failure;
6636 for (i = 0; i < regdom->n_reg_rules; i++) {
6637 struct nlattr *nl_reg_rule;
6638 const struct ieee80211_reg_rule *reg_rule;
6639 const struct ieee80211_freq_range *freq_range;
6640 const struct ieee80211_power_rule *power_rule;
6641 unsigned int max_bandwidth_khz;
6643 reg_rule = ®dom->reg_rules[i];
6644 freq_range = ®_rule->freq_range;
6645 power_rule = ®_rule->power_rule;
6647 nl_reg_rule = nla_nest_start(msg, i);
6649 goto nla_put_failure;
6651 max_bandwidth_khz = freq_range->max_bandwidth_khz;
6652 if (!max_bandwidth_khz)
6653 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
6656 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
6658 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
6659 freq_range->start_freq_khz) ||
6660 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
6661 freq_range->end_freq_khz) ||
6662 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
6663 max_bandwidth_khz) ||
6664 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
6665 power_rule->max_antenna_gain) ||
6666 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
6667 power_rule->max_eirp) ||
6668 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
6669 reg_rule->dfs_cac_ms))
6670 goto nla_put_failure;
6672 nla_nest_end(msg, nl_reg_rule);
6675 nla_nest_end(msg, nl_reg_rules);
6682 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
6684 const struct ieee80211_regdomain *regdom = NULL;
6685 struct cfg80211_registered_device *rdev;
6686 struct wiphy *wiphy = NULL;
6687 struct sk_buff *msg;
6690 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6694 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6695 NL80211_CMD_GET_REG);
6699 if (info->attrs[NL80211_ATTR_WIPHY]) {
6702 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
6705 return PTR_ERR(rdev);
6708 wiphy = &rdev->wiphy;
6709 self_managed = wiphy->regulatory_flags &
6710 REGULATORY_WIPHY_SELF_MANAGED;
6711 regdom = get_wiphy_regdom(wiphy);
6713 /* a self-managed-reg device must have a private regdom */
6714 if (WARN_ON(!regdom && self_managed)) {
6720 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6721 goto nla_put_failure;
6724 if (!wiphy && reg_last_request_cell_base() &&
6725 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6726 NL80211_USER_REG_HINT_CELL_BASE))
6727 goto nla_put_failure;
6732 regdom = rcu_dereference(cfg80211_regdomain);
6734 if (nl80211_put_regdom(regdom, msg))
6735 goto nla_put_failure_rcu;
6739 genlmsg_end(msg, hdr);
6740 return genlmsg_reply(msg, info);
6742 nla_put_failure_rcu:
6750 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
6751 u32 seq, int flags, struct wiphy *wiphy,
6752 const struct ieee80211_regdomain *regdom)
6754 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
6755 NL80211_CMD_GET_REG);
6760 genl_dump_check_consistent(cb, hdr);
6762 if (nl80211_put_regdom(regdom, msg))
6763 goto nla_put_failure;
6765 if (!wiphy && reg_last_request_cell_base() &&
6766 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6767 NL80211_USER_REG_HINT_CELL_BASE))
6768 goto nla_put_failure;
6771 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6772 goto nla_put_failure;
6774 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
6775 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
6776 goto nla_put_failure;
6778 genlmsg_end(msg, hdr);
6782 genlmsg_cancel(msg, hdr);
6786 static int nl80211_get_reg_dump(struct sk_buff *skb,
6787 struct netlink_callback *cb)
6789 const struct ieee80211_regdomain *regdom = NULL;
6790 struct cfg80211_registered_device *rdev;
6791 int err, reg_idx, start = cb->args[2];
6795 if (cfg80211_regdomain && start == 0) {
6796 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6798 rtnl_dereference(cfg80211_regdomain));
6803 /* the global regdom is idx 0 */
6805 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
6806 regdom = get_wiphy_regdom(&rdev->wiphy);
6810 if (++reg_idx <= start)
6813 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6814 NLM_F_MULTI, &rdev->wiphy, regdom);
6821 cb->args[2] = reg_idx;
6828 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
6829 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
6830 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
6831 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
6832 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
6833 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
6834 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
6835 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
6836 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
6839 static int parse_reg_rule(struct nlattr *tb[],
6840 struct ieee80211_reg_rule *reg_rule)
6842 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
6843 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
6845 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
6847 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
6849 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
6851 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
6853 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
6856 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
6858 freq_range->start_freq_khz =
6859 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
6860 freq_range->end_freq_khz =
6861 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
6862 freq_range->max_bandwidth_khz =
6863 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
6865 power_rule->max_eirp =
6866 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
6868 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
6869 power_rule->max_antenna_gain =
6870 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
6872 if (tb[NL80211_ATTR_DFS_CAC_TIME])
6873 reg_rule->dfs_cac_ms =
6874 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
6879 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
6881 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
6882 struct nlattr *nl_reg_rule;
6884 int rem_reg_rules, r;
6885 u32 num_rules = 0, rule_idx = 0, size_of_regd;
6886 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
6887 struct ieee80211_regdomain *rd;
6889 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6892 if (!info->attrs[NL80211_ATTR_REG_RULES])
6895 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6897 if (info->attrs[NL80211_ATTR_DFS_REGION])
6898 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
6900 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
6903 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
6907 if (!reg_is_valid_request(alpha2))
6910 size_of_regd = sizeof(struct ieee80211_regdomain) +
6911 num_rules * sizeof(struct ieee80211_reg_rule);
6913 rd = kzalloc(size_of_regd, GFP_KERNEL);
6917 rd->n_reg_rules = num_rules;
6918 rd->alpha2[0] = alpha2[0];
6919 rd->alpha2[1] = alpha2[1];
6922 * Disable DFS master mode if the DFS region was
6923 * not supported or known on this kernel.
6925 if (reg_supported_dfs_region(dfs_region))
6926 rd->dfs_region = dfs_region;
6928 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
6930 r = nla_parse_nested(tb, NL80211_REG_RULE_ATTR_MAX,
6931 nl_reg_rule, reg_rule_policy,
6935 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
6941 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
6947 /* set_regdom takes ownership of rd */
6948 return set_regdom(rd, REGD_SOURCE_CRDA);
6953 #endif /* CONFIG_CFG80211_CRDA_SUPPORT */
6955 static int validate_scan_freqs(struct nlattr *freqs)
6957 struct nlattr *attr1, *attr2;
6958 int n_channels = 0, tmp1, tmp2;
6960 nla_for_each_nested(attr1, freqs, tmp1)
6961 if (nla_len(attr1) != sizeof(u32))
6964 nla_for_each_nested(attr1, freqs, tmp1) {
6967 * Some hardware has a limited channel list for
6968 * scanning, and it is pretty much nonsensical
6969 * to scan for a channel twice, so disallow that
6970 * and don't require drivers to check that the
6971 * channel list they get isn't longer than what
6972 * they can scan, as long as they can scan all
6973 * the channels they registered at once.
6975 nla_for_each_nested(attr2, freqs, tmp2)
6976 if (attr1 != attr2 &&
6977 nla_get_u32(attr1) == nla_get_u32(attr2))
6984 static bool is_band_valid(struct wiphy *wiphy, enum nl80211_band b)
6986 return b < NUM_NL80211_BANDS && wiphy->bands[b];
6989 static int parse_bss_select(struct nlattr *nla, struct wiphy *wiphy,
6990 struct cfg80211_bss_selection *bss_select)
6992 struct nlattr *attr[NL80211_BSS_SELECT_ATTR_MAX + 1];
6993 struct nlattr *nest;
6998 /* only process one nested attribute */
6999 nest = nla_data(nla);
7000 if (!nla_ok(nest, nla_len(nest)))
7003 err = nla_parse_nested(attr, NL80211_BSS_SELECT_ATTR_MAX, nest,
7004 nl80211_bss_select_policy, NULL);
7008 /* only one attribute may be given */
7009 for (i = 0; i <= NL80211_BSS_SELECT_ATTR_MAX; i++) {
7017 bss_select->behaviour = __NL80211_BSS_SELECT_ATTR_INVALID;
7019 if (attr[NL80211_BSS_SELECT_ATTR_RSSI])
7020 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI;
7022 if (attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]) {
7023 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_BAND_PREF;
7024 bss_select->param.band_pref =
7025 nla_get_u32(attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]);
7026 if (!is_band_valid(wiphy, bss_select->param.band_pref))
7030 if (attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]) {
7031 struct nl80211_bss_select_rssi_adjust *adj_param;
7033 adj_param = nla_data(attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]);
7034 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI_ADJUST;
7035 bss_select->param.adjust.band = adj_param->band;
7036 bss_select->param.adjust.delta = adj_param->delta;
7037 if (!is_band_valid(wiphy, bss_select->param.adjust.band))
7041 /* user-space did not provide behaviour attribute */
7042 if (bss_select->behaviour == __NL80211_BSS_SELECT_ATTR_INVALID)
7045 if (!(wiphy->bss_select_support & BIT(bss_select->behaviour)))
7051 int nl80211_parse_random_mac(struct nlattr **attrs,
7052 u8 *mac_addr, u8 *mac_addr_mask)
7056 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
7057 eth_zero_addr(mac_addr);
7058 eth_zero_addr(mac_addr_mask);
7060 mac_addr_mask[0] = 0x3;
7065 /* need both or none */
7066 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
7069 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
7070 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
7072 /* don't allow or configure an mcast address */
7073 if (!is_multicast_ether_addr(mac_addr_mask) ||
7074 is_multicast_ether_addr(mac_addr))
7078 * allow users to pass a MAC address that has bits set outside
7079 * of the mask, but don't bother drivers with having to deal
7082 for (i = 0; i < ETH_ALEN; i++)
7083 mac_addr[i] &= mac_addr_mask[i];
7088 static bool cfg80211_off_channel_oper_allowed(struct wireless_dev *wdev)
7090 ASSERT_WDEV_LOCK(wdev);
7092 if (!cfg80211_beaconing_iface_active(wdev))
7095 if (!(wdev->chandef.chan->flags & IEEE80211_CHAN_RADAR))
7098 return regulatory_pre_cac_allowed(wdev->wiphy);
7101 static bool nl80211_check_scan_feat(struct wiphy *wiphy, u32 flags, u32 flag,
7102 enum nl80211_ext_feature_index feat)
7104 if (!(flags & flag))
7106 if (wiphy_ext_feature_isset(wiphy, feat))
7112 nl80211_check_scan_flags(struct wiphy *wiphy, struct wireless_dev *wdev,
7113 void *request, struct nlattr **attrs,
7116 u8 *mac_addr, *mac_addr_mask;
7118 enum nl80211_feature_flags randomness_flag;
7120 if (!attrs[NL80211_ATTR_SCAN_FLAGS])
7123 if (is_sched_scan) {
7124 struct cfg80211_sched_scan_request *req = request;
7126 randomness_flag = wdev ?
7127 NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR :
7128 NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7129 flags = &req->flags;
7130 mac_addr = req->mac_addr;
7131 mac_addr_mask = req->mac_addr_mask;
7133 struct cfg80211_scan_request *req = request;
7135 randomness_flag = NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
7136 flags = &req->flags;
7137 mac_addr = req->mac_addr;
7138 mac_addr_mask = req->mac_addr_mask;
7141 *flags = nla_get_u32(attrs[NL80211_ATTR_SCAN_FLAGS]);
7143 if (((*flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
7144 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) ||
7145 !nl80211_check_scan_feat(wiphy, *flags,
7146 NL80211_SCAN_FLAG_LOW_SPAN,
7147 NL80211_EXT_FEATURE_LOW_SPAN_SCAN) ||
7148 !nl80211_check_scan_feat(wiphy, *flags,
7149 NL80211_SCAN_FLAG_LOW_POWER,
7150 NL80211_EXT_FEATURE_LOW_POWER_SCAN) ||
7151 !nl80211_check_scan_feat(wiphy, *flags,
7152 NL80211_SCAN_FLAG_HIGH_ACCURACY,
7153 NL80211_EXT_FEATURE_HIGH_ACCURACY_SCAN) ||
7154 !nl80211_check_scan_feat(wiphy, *flags,
7155 NL80211_SCAN_FLAG_FILS_MAX_CHANNEL_TIME,
7156 NL80211_EXT_FEATURE_FILS_MAX_CHANNEL_TIME) ||
7157 !nl80211_check_scan_feat(wiphy, *flags,
7158 NL80211_SCAN_FLAG_ACCEPT_BCAST_PROBE_RESP,
7159 NL80211_EXT_FEATURE_ACCEPT_BCAST_PROBE_RESP) ||
7160 !nl80211_check_scan_feat(wiphy, *flags,
7161 NL80211_SCAN_FLAG_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION,
7162 NL80211_EXT_FEATURE_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION) ||
7163 !nl80211_check_scan_feat(wiphy, *flags,
7164 NL80211_SCAN_FLAG_OCE_PROBE_REQ_HIGH_TX_RATE,
7165 NL80211_EXT_FEATURE_OCE_PROBE_REQ_HIGH_TX_RATE) ||
7166 !nl80211_check_scan_feat(wiphy, *flags,
7167 NL80211_SCAN_FLAG_RANDOM_SN,
7168 NL80211_EXT_FEATURE_SCAN_RANDOM_SN) ||
7169 !nl80211_check_scan_feat(wiphy, *flags,
7170 NL80211_SCAN_FLAG_MIN_PREQ_CONTENT,
7171 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT))
7174 if (*flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
7177 if (!(wiphy->features & randomness_flag) ||
7178 (wdev && wdev->current_bss))
7181 err = nl80211_parse_random_mac(attrs, mac_addr, mac_addr_mask);
7189 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
7191 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7192 struct wireless_dev *wdev = info->user_ptr[1];
7193 struct cfg80211_scan_request *request;
7194 struct nlattr *attr;
7195 struct wiphy *wiphy;
7196 int err, tmp, n_ssids = 0, n_channels, i;
7199 wiphy = &rdev->wiphy;
7201 if (wdev->iftype == NL80211_IFTYPE_NAN)
7204 if (!rdev->ops->scan)
7207 if (rdev->scan_req || rdev->scan_msg) {
7212 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7213 n_channels = validate_scan_freqs(
7214 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7220 n_channels = ieee80211_get_num_supported_channels(wiphy);
7223 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
7224 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
7227 if (n_ssids > wiphy->max_scan_ssids) {
7232 if (info->attrs[NL80211_ATTR_IE])
7233 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7237 if (ie_len > wiphy->max_scan_ie_len) {
7242 request = kzalloc(sizeof(*request)
7243 + sizeof(*request->ssids) * n_ssids
7244 + sizeof(*request->channels) * n_channels
7245 + ie_len, GFP_KERNEL);
7252 request->ssids = (void *)&request->channels[n_channels];
7253 request->n_ssids = n_ssids;
7256 request->ie = (void *)(request->ssids + n_ssids);
7258 request->ie = (void *)(request->channels + n_channels);
7262 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7263 /* user specified, bail out if channel not found */
7264 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
7265 struct ieee80211_channel *chan;
7267 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7274 /* ignore disabled channels */
7275 if (chan->flags & IEEE80211_CHAN_DISABLED)
7278 request->channels[i] = chan;
7282 enum nl80211_band band;
7285 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7288 if (!wiphy->bands[band])
7290 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7291 struct ieee80211_channel *chan;
7293 chan = &wiphy->bands[band]->channels[j];
7295 if (chan->flags & IEEE80211_CHAN_DISABLED)
7298 request->channels[i] = chan;
7309 request->n_channels = i;
7312 if (!cfg80211_off_channel_oper_allowed(wdev)) {
7313 struct ieee80211_channel *chan;
7315 if (request->n_channels != 1) {
7321 chan = request->channels[0];
7322 if (chan->center_freq != wdev->chandef.chan->center_freq) {
7332 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
7333 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7337 request->ssids[i].ssid_len = nla_len(attr);
7338 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
7343 if (info->attrs[NL80211_ATTR_IE]) {
7344 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7345 memcpy((void *)request->ie,
7346 nla_data(info->attrs[NL80211_ATTR_IE]),
7350 for (i = 0; i < NUM_NL80211_BANDS; i++)
7351 if (wiphy->bands[i])
7353 (1 << wiphy->bands[i]->n_bitrates) - 1;
7355 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
7356 nla_for_each_nested(attr,
7357 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
7359 enum nl80211_band band = nla_type(attr);
7361 if (band < 0 || band >= NUM_NL80211_BANDS) {
7366 if (!wiphy->bands[band])
7369 err = ieee80211_get_ratemask(wiphy->bands[band],
7372 &request->rates[band]);
7378 if (info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]) {
7379 if (!wiphy_ext_feature_isset(wiphy,
7380 NL80211_EXT_FEATURE_SET_SCAN_DWELL)) {
7386 nla_get_u16(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]);
7387 request->duration_mandatory =
7388 nla_get_flag(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY]);
7391 err = nl80211_check_scan_flags(wiphy, wdev, request, info->attrs,
7397 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7399 /* Initial implementation used NL80211_ATTR_MAC to set the specific
7400 * BSSID to scan for. This was problematic because that same attribute
7401 * was already used for another purpose (local random MAC address). The
7402 * NL80211_ATTR_BSSID attribute was added to fix this. For backwards
7403 * compatibility with older userspace components, also use the
7404 * NL80211_ATTR_MAC value here if it can be determined to be used for
7405 * the specific BSSID use case instead of the random MAC address
7406 * (NL80211_ATTR_SCAN_FLAGS is used to enable random MAC address use).
7408 if (info->attrs[NL80211_ATTR_BSSID])
7409 memcpy(request->bssid,
7410 nla_data(info->attrs[NL80211_ATTR_BSSID]), ETH_ALEN);
7411 else if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) &&
7412 info->attrs[NL80211_ATTR_MAC])
7413 memcpy(request->bssid, nla_data(info->attrs[NL80211_ATTR_MAC]),
7416 eth_broadcast_addr(request->bssid);
7418 request->wdev = wdev;
7419 request->wiphy = &rdev->wiphy;
7420 request->scan_start = jiffies;
7422 rdev->scan_req = request;
7423 err = rdev_scan(rdev, request);
7426 nl80211_send_scan_start(rdev, wdev);
7428 dev_hold(wdev->netdev);
7431 rdev->scan_req = NULL;
7439 static int nl80211_abort_scan(struct sk_buff *skb, struct genl_info *info)
7441 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7442 struct wireless_dev *wdev = info->user_ptr[1];
7444 if (!rdev->ops->abort_scan)
7450 if (!rdev->scan_req)
7453 rdev_abort_scan(rdev, wdev);
7458 nl80211_parse_sched_scan_plans(struct wiphy *wiphy, int n_plans,
7459 struct cfg80211_sched_scan_request *request,
7460 struct nlattr **attrs)
7462 int tmp, err, i = 0;
7463 struct nlattr *attr;
7465 if (!attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7469 * If scan plans are not specified,
7470 * %NL80211_ATTR_SCHED_SCAN_INTERVAL will be specified. In this
7471 * case one scan plan will be set with the specified scan
7472 * interval and infinite number of iterations.
7474 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
7478 request->scan_plans[0].interval =
7479 DIV_ROUND_UP(interval, MSEC_PER_SEC);
7480 if (!request->scan_plans[0].interval)
7483 if (request->scan_plans[0].interval >
7484 wiphy->max_sched_scan_plan_interval)
7485 request->scan_plans[0].interval =
7486 wiphy->max_sched_scan_plan_interval;
7491 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp) {
7492 struct nlattr *plan[NL80211_SCHED_SCAN_PLAN_MAX + 1];
7494 if (WARN_ON(i >= n_plans))
7497 err = nla_parse_nested(plan, NL80211_SCHED_SCAN_PLAN_MAX,
7498 attr, nl80211_plan_policy, NULL);
7502 if (!plan[NL80211_SCHED_SCAN_PLAN_INTERVAL])
7505 request->scan_plans[i].interval =
7506 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_INTERVAL]);
7507 if (!request->scan_plans[i].interval ||
7508 request->scan_plans[i].interval >
7509 wiphy->max_sched_scan_plan_interval)
7512 if (plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]) {
7513 request->scan_plans[i].iterations =
7514 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]);
7515 if (!request->scan_plans[i].iterations ||
7516 (request->scan_plans[i].iterations >
7517 wiphy->max_sched_scan_plan_iterations))
7519 } else if (i < n_plans - 1) {
7521 * All scan plans but the last one must specify
7522 * a finite number of iterations
7531 * The last scan plan must not specify the number of
7532 * iterations, it is supposed to run infinitely
7534 if (request->scan_plans[n_plans - 1].iterations)
7540 static struct cfg80211_sched_scan_request *
7541 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
7542 struct nlattr **attrs, int max_match_sets)
7544 struct cfg80211_sched_scan_request *request;
7545 struct nlattr *attr;
7546 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i, n_plans = 0;
7547 enum nl80211_band band;
7549 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
7550 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
7552 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7553 n_channels = validate_scan_freqs(
7554 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7556 return ERR_PTR(-EINVAL);
7558 n_channels = ieee80211_get_num_supported_channels(wiphy);
7561 if (attrs[NL80211_ATTR_SCAN_SSIDS])
7562 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7566 if (n_ssids > wiphy->max_sched_scan_ssids)
7567 return ERR_PTR(-EINVAL);
7570 * First, count the number of 'real' matchsets. Due to an issue with
7571 * the old implementation, matchsets containing only the RSSI attribute
7572 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
7573 * RSSI for all matchsets, rather than their own matchset for reporting
7574 * all APs with a strong RSSI. This is needed to be compatible with
7575 * older userspace that treated a matchset with only the RSSI as the
7576 * global RSSI for all other matchsets - if there are other matchsets.
7578 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7579 nla_for_each_nested(attr,
7580 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7582 struct nlattr *rssi;
7584 err = nla_parse_nested(tb,
7585 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7586 attr, nl80211_match_policy,
7589 return ERR_PTR(err);
7591 /* SSID and BSSID are mutually exclusive */
7592 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] &&
7593 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID])
7594 return ERR_PTR(-EINVAL);
7596 /* add other standalone attributes here */
7597 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] ||
7598 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID]) {
7602 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7604 default_match_rssi = nla_get_s32(rssi);
7608 /* However, if there's no other matchset, add the RSSI one */
7609 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
7612 if (n_match_sets > max_match_sets)
7613 return ERR_PTR(-EINVAL);
7615 if (attrs[NL80211_ATTR_IE])
7616 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
7620 if (ie_len > wiphy->max_sched_scan_ie_len)
7621 return ERR_PTR(-EINVAL);
7623 if (attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7625 * NL80211_ATTR_SCHED_SCAN_INTERVAL must not be specified since
7626 * each scan plan already specifies its own interval
7628 if (attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7629 return ERR_PTR(-EINVAL);
7631 nla_for_each_nested(attr,
7632 attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp)
7636 * The scan interval attribute is kept for backward
7637 * compatibility. If no scan plans are specified and sched scan
7638 * interval is specified, one scan plan will be set with this
7639 * scan interval and infinite number of iterations.
7641 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7642 return ERR_PTR(-EINVAL);
7647 if (!n_plans || n_plans > wiphy->max_sched_scan_plans)
7648 return ERR_PTR(-EINVAL);
7650 if (!wiphy_ext_feature_isset(
7651 wiphy, NL80211_EXT_FEATURE_SCHED_SCAN_RELATIVE_RSSI) &&
7652 (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] ||
7653 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]))
7654 return ERR_PTR(-EINVAL);
7656 request = kzalloc(sizeof(*request)
7657 + sizeof(*request->ssids) * n_ssids
7658 + sizeof(*request->match_sets) * n_match_sets
7659 + sizeof(*request->scan_plans) * n_plans
7660 + sizeof(*request->channels) * n_channels
7661 + ie_len, GFP_KERNEL);
7663 return ERR_PTR(-ENOMEM);
7666 request->ssids = (void *)&request->channels[n_channels];
7667 request->n_ssids = n_ssids;
7670 request->ie = (void *)(request->ssids + n_ssids);
7672 request->ie = (void *)(request->channels + n_channels);
7677 request->match_sets = (void *)(request->ie + ie_len);
7679 request->match_sets =
7680 (void *)(request->ssids + n_ssids);
7682 request->match_sets =
7683 (void *)(request->channels + n_channels);
7685 request->n_match_sets = n_match_sets;
7688 request->scan_plans = (void *)(request->match_sets +
7690 else if (request->ie)
7691 request->scan_plans = (void *)(request->ie + ie_len);
7693 request->scan_plans = (void *)(request->ssids + n_ssids);
7695 request->scan_plans = (void *)(request->channels + n_channels);
7697 request->n_scan_plans = n_plans;
7700 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7701 /* user specified, bail out if channel not found */
7702 nla_for_each_nested(attr,
7703 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
7705 struct ieee80211_channel *chan;
7707 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7714 /* ignore disabled channels */
7715 if (chan->flags & IEEE80211_CHAN_DISABLED)
7718 request->channels[i] = chan;
7723 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7726 if (!wiphy->bands[band])
7728 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7729 struct ieee80211_channel *chan;
7731 chan = &wiphy->bands[band]->channels[j];
7733 if (chan->flags & IEEE80211_CHAN_DISABLED)
7736 request->channels[i] = chan;
7747 request->n_channels = i;
7751 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7753 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7757 request->ssids[i].ssid_len = nla_len(attr);
7758 memcpy(request->ssids[i].ssid, nla_data(attr),
7765 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7766 nla_for_each_nested(attr,
7767 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7769 struct nlattr *ssid, *bssid, *rssi;
7771 err = nla_parse_nested(tb,
7772 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7773 attr, nl80211_match_policy,
7777 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
7778 bssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID];
7779 if (ssid || bssid) {
7780 if (WARN_ON(i >= n_match_sets)) {
7781 /* this indicates a programming error,
7782 * the loop above should have verified
7790 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
7794 memcpy(request->match_sets[i].ssid.ssid,
7795 nla_data(ssid), nla_len(ssid));
7796 request->match_sets[i].ssid.ssid_len =
7800 if (nla_len(bssid) != ETH_ALEN) {
7804 memcpy(request->match_sets[i].bssid,
7805 nla_data(bssid), ETH_ALEN);
7808 /* special attribute - old implementation w/a */
7809 request->match_sets[i].rssi_thold =
7811 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7813 request->match_sets[i].rssi_thold =
7819 /* there was no other matchset, so the RSSI one is alone */
7820 if (i == 0 && n_match_sets)
7821 request->match_sets[0].rssi_thold = default_match_rssi;
7823 request->min_rssi_thold = INT_MAX;
7824 for (i = 0; i < n_match_sets; i++)
7825 request->min_rssi_thold =
7826 min(request->match_sets[i].rssi_thold,
7827 request->min_rssi_thold);
7829 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
7833 request->ie_len = ie_len;
7834 memcpy((void *)request->ie,
7835 nla_data(attrs[NL80211_ATTR_IE]),
7839 err = nl80211_check_scan_flags(wiphy, wdev, request, attrs, true);
7843 if (attrs[NL80211_ATTR_SCHED_SCAN_DELAY])
7845 nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_DELAY]);
7847 if (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]) {
7848 request->relative_rssi = nla_get_s8(
7849 attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]);
7850 request->relative_rssi_set = true;
7853 if (request->relative_rssi_set &&
7854 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]) {
7855 struct nl80211_bss_select_rssi_adjust *rssi_adjust;
7857 rssi_adjust = nla_data(
7858 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]);
7859 request->rssi_adjust.band = rssi_adjust->band;
7860 request->rssi_adjust.delta = rssi_adjust->delta;
7861 if (!is_band_valid(wiphy, request->rssi_adjust.band)) {
7867 err = nl80211_parse_sched_scan_plans(wiphy, n_plans, request, attrs);
7871 request->scan_start = jiffies;
7877 return ERR_PTR(err);
7880 static int nl80211_start_sched_scan(struct sk_buff *skb,
7881 struct genl_info *info)
7883 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7884 struct net_device *dev = info->user_ptr[1];
7885 struct wireless_dev *wdev = dev->ieee80211_ptr;
7886 struct cfg80211_sched_scan_request *sched_scan_req;
7890 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_start)
7893 want_multi = info->attrs[NL80211_ATTR_SCHED_SCAN_MULTI];
7894 err = cfg80211_sched_scan_req_possible(rdev, want_multi);
7898 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
7900 rdev->wiphy.max_match_sets);
7902 err = PTR_ERR_OR_ZERO(sched_scan_req);
7906 /* leave request id zero for legacy request
7907 * or if driver does not support multi-scheduled scan
7909 if (want_multi && rdev->wiphy.max_sched_scan_reqs > 1) {
7910 while (!sched_scan_req->reqid)
7911 sched_scan_req->reqid = cfg80211_assign_cookie(rdev);
7914 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
7918 sched_scan_req->dev = dev;
7919 sched_scan_req->wiphy = &rdev->wiphy;
7921 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
7922 sched_scan_req->owner_nlportid = info->snd_portid;
7924 cfg80211_add_sched_scan_req(rdev, sched_scan_req);
7926 nl80211_send_sched_scan(sched_scan_req, NL80211_CMD_START_SCHED_SCAN);
7930 kfree(sched_scan_req);
7935 static int nl80211_stop_sched_scan(struct sk_buff *skb,
7936 struct genl_info *info)
7938 struct cfg80211_sched_scan_request *req;
7939 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7942 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_stop)
7945 if (info->attrs[NL80211_ATTR_COOKIE]) {
7946 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
7947 return __cfg80211_stop_sched_scan(rdev, cookie, false);
7950 req = list_first_or_null_rcu(&rdev->sched_scan_req_list,
7951 struct cfg80211_sched_scan_request,
7953 if (!req || req->reqid ||
7954 (req->owner_nlportid &&
7955 req->owner_nlportid != info->snd_portid))
7958 return cfg80211_stop_sched_scan_req(rdev, req, false);
7961 static int nl80211_start_radar_detection(struct sk_buff *skb,
7962 struct genl_info *info)
7964 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7965 struct net_device *dev = info->user_ptr[1];
7966 struct wireless_dev *wdev = dev->ieee80211_ptr;
7967 struct wiphy *wiphy = wdev->wiphy;
7968 struct cfg80211_chan_def chandef;
7969 enum nl80211_dfs_regions dfs_region;
7970 unsigned int cac_time_ms;
7973 dfs_region = reg_get_dfs_region(wiphy);
7974 if (dfs_region == NL80211_DFS_UNSET)
7977 err = nl80211_parse_chandef(rdev, info, &chandef);
7981 if (netif_carrier_ok(dev))
7984 if (wdev->cac_started)
7987 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
7994 if (!cfg80211_chandef_dfs_usable(wiphy, &chandef))
7997 /* CAC start is offloaded to HW and can't be started manually */
7998 if (wiphy_ext_feature_isset(wiphy, NL80211_EXT_FEATURE_DFS_OFFLOAD))
8001 if (!rdev->ops->start_radar_detection)
8004 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
8005 if (WARN_ON(!cac_time_ms))
8006 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
8008 err = rdev_start_radar_detection(rdev, dev, &chandef, cac_time_ms);
8010 wdev->chandef = chandef;
8011 wdev->cac_started = true;
8012 wdev->cac_start_time = jiffies;
8013 wdev->cac_time_ms = cac_time_ms;
8018 static int nl80211_notify_radar_detection(struct sk_buff *skb,
8019 struct genl_info *info)
8021 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8022 struct net_device *dev = info->user_ptr[1];
8023 struct wireless_dev *wdev = dev->ieee80211_ptr;
8024 struct wiphy *wiphy = wdev->wiphy;
8025 struct cfg80211_chan_def chandef;
8026 enum nl80211_dfs_regions dfs_region;
8029 dfs_region = reg_get_dfs_region(wiphy);
8030 if (dfs_region == NL80211_DFS_UNSET) {
8031 GENL_SET_ERR_MSG(info,
8032 "DFS Region is not set. Unexpected Radar indication");
8036 err = nl80211_parse_chandef(rdev, info, &chandef);
8038 GENL_SET_ERR_MSG(info, "Unable to extract chandef info");
8042 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8044 GENL_SET_ERR_MSG(info, "chandef is invalid");
8049 GENL_SET_ERR_MSG(info,
8050 "Unexpected Radar indication for chandef/iftype");
8054 /* Do not process this notification if radar is already detected
8055 * by kernel on this channel, and return success.
8057 if (chandef.chan->dfs_state == NL80211_DFS_UNAVAILABLE)
8060 cfg80211_set_dfs_state(wiphy, &chandef, NL80211_DFS_UNAVAILABLE);
8062 cfg80211_sched_dfs_chan_update(rdev);
8064 memcpy(&rdev->radar_chandef, &chandef, sizeof(chandef));
8066 /* Propagate this notification to other radios as well */
8067 queue_work(cfg80211_wq, &rdev->propagate_radar_detect_wk);
8072 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
8074 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8075 struct net_device *dev = info->user_ptr[1];
8076 struct wireless_dev *wdev = dev->ieee80211_ptr;
8077 struct cfg80211_csa_settings params;
8078 /* csa_attrs is defined static to avoid waste of stack size - this
8079 * function is called under RTNL lock, so this should not be a problem.
8081 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
8083 bool need_new_beacon = false;
8084 bool need_handle_dfs_flag = true;
8088 if (!rdev->ops->channel_switch ||
8089 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
8092 switch (dev->ieee80211_ptr->iftype) {
8093 case NL80211_IFTYPE_AP:
8094 case NL80211_IFTYPE_P2P_GO:
8095 need_new_beacon = true;
8096 /* For all modes except AP the handle_dfs flag needs to be
8097 * supplied to tell the kernel that userspace will handle radar
8098 * events when they happen. Otherwise a switch to a channel
8099 * requiring DFS will be rejected.
8101 need_handle_dfs_flag = false;
8103 /* useless if AP is not running */
8104 if (!wdev->beacon_interval)
8107 case NL80211_IFTYPE_ADHOC:
8108 if (!wdev->ssid_len)
8111 case NL80211_IFTYPE_MESH_POINT:
8112 if (!wdev->mesh_id_len)
8119 memset(¶ms, 0, sizeof(params));
8120 params.beacon_csa.ftm_responder = -1;
8122 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
8123 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
8126 /* only important for AP, IBSS and mesh create IEs internally */
8127 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
8130 /* Even though the attribute is u32, the specification says
8131 * u8, so let's make sure we don't overflow.
8133 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
8137 params.count = cs_count;
8139 if (!need_new_beacon)
8142 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon_after);
8146 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
8147 info->attrs[NL80211_ATTR_CSA_IES],
8148 nl80211_policy, info->extack);
8152 err = nl80211_parse_beacon(rdev, csa_attrs, ¶ms.beacon_csa);
8156 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
8159 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8160 if (!len || (len % sizeof(u16)))
8163 params.n_counter_offsets_beacon = len / sizeof(u16);
8164 if (rdev->wiphy.max_num_csa_counters &&
8165 (params.n_counter_offsets_beacon >
8166 rdev->wiphy.max_num_csa_counters))
8169 params.counter_offsets_beacon =
8170 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8172 /* sanity checks - counters should fit and be the same */
8173 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
8174 u16 offset = params.counter_offsets_beacon[i];
8176 if (offset >= params.beacon_csa.tail_len)
8179 if (params.beacon_csa.tail[offset] != params.count)
8183 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
8184 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8185 if (!len || (len % sizeof(u16)))
8188 params.n_counter_offsets_presp = len / sizeof(u16);
8189 if (rdev->wiphy.max_num_csa_counters &&
8190 (params.n_counter_offsets_presp >
8191 rdev->wiphy.max_num_csa_counters))
8194 params.counter_offsets_presp =
8195 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8197 /* sanity checks - counters should fit and be the same */
8198 for (i = 0; i < params.n_counter_offsets_presp; i++) {
8199 u16 offset = params.counter_offsets_presp[i];
8201 if (offset >= params.beacon_csa.probe_resp_len)
8204 if (params.beacon_csa.probe_resp[offset] !=
8211 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
8215 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
8219 err = cfg80211_chandef_dfs_required(wdev->wiphy,
8226 params.radar_required = true;
8227 if (need_handle_dfs_flag &&
8228 !nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS])) {
8233 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
8234 params.block_tx = true;
8237 err = rdev_channel_switch(rdev, dev, ¶ms);
8243 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
8245 struct cfg80211_registered_device *rdev,
8246 struct wireless_dev *wdev,
8247 struct cfg80211_internal_bss *intbss)
8249 struct cfg80211_bss *res = &intbss->pub;
8250 const struct cfg80211_bss_ies *ies;
8254 ASSERT_WDEV_LOCK(wdev);
8256 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
8257 NL80211_CMD_NEW_SCAN_RESULTS);
8261 genl_dump_check_consistent(cb, hdr);
8263 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
8264 goto nla_put_failure;
8266 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
8267 goto nla_put_failure;
8268 if (nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
8270 goto nla_put_failure;
8272 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
8274 goto nla_put_failure;
8275 if ((!is_zero_ether_addr(res->bssid) &&
8276 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
8277 goto nla_put_failure;
8280 /* indicate whether we have probe response data or not */
8281 if (rcu_access_pointer(res->proberesp_ies) &&
8282 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
8283 goto fail_unlock_rcu;
8285 /* this pointer prefers to be pointed to probe response data
8286 * but is always valid
8288 ies = rcu_dereference(res->ies);
8290 if (nla_put_u64_64bit(msg, NL80211_BSS_TSF, ies->tsf,
8292 goto fail_unlock_rcu;
8293 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
8294 ies->len, ies->data))
8295 goto fail_unlock_rcu;
8298 /* and this pointer is always (unless driver didn't know) beacon data */
8299 ies = rcu_dereference(res->beacon_ies);
8300 if (ies && ies->from_beacon) {
8301 if (nla_put_u64_64bit(msg, NL80211_BSS_BEACON_TSF, ies->tsf,
8303 goto fail_unlock_rcu;
8304 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
8305 ies->len, ies->data))
8306 goto fail_unlock_rcu;
8310 if (res->beacon_interval &&
8311 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
8312 goto nla_put_failure;
8313 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
8314 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
8315 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
8316 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
8317 jiffies_to_msecs(jiffies - intbss->ts)))
8318 goto nla_put_failure;
8320 if (intbss->parent_tsf &&
8321 (nla_put_u64_64bit(msg, NL80211_BSS_PARENT_TSF,
8322 intbss->parent_tsf, NL80211_BSS_PAD) ||
8323 nla_put(msg, NL80211_BSS_PARENT_BSSID, ETH_ALEN,
8324 intbss->parent_bssid)))
8325 goto nla_put_failure;
8327 if (intbss->ts_boottime &&
8328 nla_put_u64_64bit(msg, NL80211_BSS_LAST_SEEN_BOOTTIME,
8329 intbss->ts_boottime, NL80211_BSS_PAD))
8330 goto nla_put_failure;
8332 if (!nl80211_put_signal(msg, intbss->pub.chains,
8333 intbss->pub.chain_signal,
8334 NL80211_BSS_CHAIN_SIGNAL))
8335 goto nla_put_failure;
8337 switch (rdev->wiphy.signal_type) {
8338 case CFG80211_SIGNAL_TYPE_MBM:
8339 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
8340 goto nla_put_failure;
8342 case CFG80211_SIGNAL_TYPE_UNSPEC:
8343 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
8344 goto nla_put_failure;
8350 switch (wdev->iftype) {
8351 case NL80211_IFTYPE_P2P_CLIENT:
8352 case NL80211_IFTYPE_STATION:
8353 if (intbss == wdev->current_bss &&
8354 nla_put_u32(msg, NL80211_BSS_STATUS,
8355 NL80211_BSS_STATUS_ASSOCIATED))
8356 goto nla_put_failure;
8358 case NL80211_IFTYPE_ADHOC:
8359 if (intbss == wdev->current_bss &&
8360 nla_put_u32(msg, NL80211_BSS_STATUS,
8361 NL80211_BSS_STATUS_IBSS_JOINED))
8362 goto nla_put_failure;
8368 nla_nest_end(msg, bss);
8370 genlmsg_end(msg, hdr);
8376 genlmsg_cancel(msg, hdr);
8380 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
8382 struct cfg80211_registered_device *rdev;
8383 struct cfg80211_internal_bss *scan;
8384 struct wireless_dev *wdev;
8385 int start = cb->args[2], idx = 0;
8389 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8396 spin_lock_bh(&rdev->bss_lock);
8399 * dump_scan will be called multiple times to break up the scan results
8400 * into multiple messages. It is unlikely that any more bss-es will be
8401 * expired after the first call, so only call only call this on the
8402 * first dump_scan invocation.
8405 cfg80211_bss_expire(rdev);
8407 cb->seq = rdev->bss_generation;
8409 list_for_each_entry(scan, &rdev->bss_list, list) {
8412 if (nl80211_send_bss(skb, cb,
8413 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8414 rdev, wdev, scan) < 0) {
8420 spin_unlock_bh(&rdev->bss_lock);
8429 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
8430 int flags, struct net_device *dev,
8431 bool allow_radio_stats,
8432 struct survey_info *survey)
8435 struct nlattr *infoattr;
8437 /* skip radio stats if userspace didn't request them */
8438 if (!survey->channel && !allow_radio_stats)
8441 hdr = nl80211hdr_put(msg, portid, seq, flags,
8442 NL80211_CMD_NEW_SURVEY_RESULTS);
8446 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
8447 goto nla_put_failure;
8449 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
8451 goto nla_put_failure;
8453 if (survey->channel &&
8454 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
8455 survey->channel->center_freq))
8456 goto nla_put_failure;
8458 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
8459 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
8460 goto nla_put_failure;
8461 if ((survey->filled & SURVEY_INFO_IN_USE) &&
8462 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
8463 goto nla_put_failure;
8464 if ((survey->filled & SURVEY_INFO_TIME) &&
8465 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME,
8466 survey->time, NL80211_SURVEY_INFO_PAD))
8467 goto nla_put_failure;
8468 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
8469 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_BUSY,
8470 survey->time_busy, NL80211_SURVEY_INFO_PAD))
8471 goto nla_put_failure;
8472 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
8473 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
8474 survey->time_ext_busy, NL80211_SURVEY_INFO_PAD))
8475 goto nla_put_failure;
8476 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
8477 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_RX,
8478 survey->time_rx, NL80211_SURVEY_INFO_PAD))
8479 goto nla_put_failure;
8480 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
8481 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_TX,
8482 survey->time_tx, NL80211_SURVEY_INFO_PAD))
8483 goto nla_put_failure;
8484 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
8485 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_SCAN,
8486 survey->time_scan, NL80211_SURVEY_INFO_PAD))
8487 goto nla_put_failure;
8489 nla_nest_end(msg, infoattr);
8491 genlmsg_end(msg, hdr);
8495 genlmsg_cancel(msg, hdr);
8499 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
8501 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
8502 struct survey_info survey;
8503 struct cfg80211_registered_device *rdev;
8504 struct wireless_dev *wdev;
8505 int survey_idx = cb->args[2];
8510 res = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8514 /* prepare_wdev_dump parsed the attributes */
8515 radio_stats = attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
8517 if (!wdev->netdev) {
8522 if (!rdev->ops->dump_survey) {
8528 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
8534 /* don't send disabled channels, but do send non-channel data */
8535 if (survey.channel &&
8536 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
8541 if (nl80211_send_survey(skb,
8542 NETLINK_CB(cb->skb).portid,
8543 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8544 wdev->netdev, radio_stats, &survey) < 0)
8550 cb->args[2] = survey_idx;
8557 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
8559 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
8560 NL80211_WPA_VERSION_2));
8563 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
8565 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8566 struct net_device *dev = info->user_ptr[1];
8567 struct ieee80211_channel *chan;
8568 const u8 *bssid, *ssid, *ie = NULL, *auth_data = NULL;
8569 int err, ssid_len, ie_len = 0, auth_data_len = 0;
8570 enum nl80211_auth_type auth_type;
8571 struct key_parse key;
8572 bool local_state_change;
8574 if (!info->attrs[NL80211_ATTR_MAC])
8577 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
8580 if (!info->attrs[NL80211_ATTR_SSID])
8583 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8586 err = nl80211_parse_key(info, &key);
8591 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
8593 if (!key.p.key || !key.p.key_len)
8595 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
8596 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
8597 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
8598 key.p.key_len != WLAN_KEY_LEN_WEP104))
8611 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
8612 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
8621 if (!rdev->ops->auth)
8624 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8625 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8628 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8629 chan = nl80211_get_valid_chan(&rdev->wiphy,
8630 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8634 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8635 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8637 if (info->attrs[NL80211_ATTR_IE]) {
8638 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8639 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8642 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
8643 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
8646 if ((auth_type == NL80211_AUTHTYPE_SAE ||
8647 auth_type == NL80211_AUTHTYPE_FILS_SK ||
8648 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
8649 auth_type == NL80211_AUTHTYPE_FILS_PK) &&
8650 !info->attrs[NL80211_ATTR_AUTH_DATA])
8653 if (info->attrs[NL80211_ATTR_AUTH_DATA]) {
8654 if (auth_type != NL80211_AUTHTYPE_SAE &&
8655 auth_type != NL80211_AUTHTYPE_FILS_SK &&
8656 auth_type != NL80211_AUTHTYPE_FILS_SK_PFS &&
8657 auth_type != NL80211_AUTHTYPE_FILS_PK)
8659 auth_data = nla_data(info->attrs[NL80211_ATTR_AUTH_DATA]);
8660 auth_data_len = nla_len(info->attrs[NL80211_ATTR_AUTH_DATA]);
8661 /* need to include at least Auth Transaction and Status Code */
8662 if (auth_data_len < 4)
8666 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8669 * Since we no longer track auth state, ignore
8670 * requests to only change local state.
8672 if (local_state_change)
8675 wdev_lock(dev->ieee80211_ptr);
8676 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
8677 ssid, ssid_len, ie, ie_len,
8678 key.p.key, key.p.key_len, key.idx,
8679 auth_data, auth_data_len);
8680 wdev_unlock(dev->ieee80211_ptr);
8684 static int validate_pae_over_nl80211(struct cfg80211_registered_device *rdev,
8685 struct genl_info *info)
8687 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8688 GENL_SET_ERR_MSG(info, "SOCKET_OWNER not set");
8692 if (!rdev->ops->tx_control_port ||
8693 !wiphy_ext_feature_isset(&rdev->wiphy,
8694 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
8700 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
8701 struct genl_info *info,
8702 struct cfg80211_crypto_settings *settings,
8705 memset(settings, 0, sizeof(*settings));
8707 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
8709 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
8712 proto = nla_get_u16(
8713 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
8714 settings->control_port_ethertype = cpu_to_be16(proto);
8715 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
8718 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
8719 settings->control_port_no_encrypt = true;
8721 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
8723 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
8724 int r = validate_pae_over_nl80211(rdev, info);
8729 settings->control_port_over_nl80211 = true;
8732 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
8736 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8737 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8738 settings->n_ciphers_pairwise = len / sizeof(u32);
8740 if (len % sizeof(u32))
8743 if (settings->n_ciphers_pairwise > cipher_limit)
8746 memcpy(settings->ciphers_pairwise, data, len);
8748 for (i = 0; i < settings->n_ciphers_pairwise; i++)
8749 if (!cfg80211_supported_cipher_suite(
8751 settings->ciphers_pairwise[i]))
8755 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
8756 settings->cipher_group =
8757 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
8758 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
8759 settings->cipher_group))
8763 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
8764 settings->wpa_versions =
8765 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
8766 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
8770 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
8774 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
8775 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
8776 settings->n_akm_suites = len / sizeof(u32);
8778 if (len % sizeof(u32))
8781 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
8784 memcpy(settings->akm_suites, data, len);
8787 if (info->attrs[NL80211_ATTR_PMK]) {
8788 if (nla_len(info->attrs[NL80211_ATTR_PMK]) != WLAN_PMK_LEN)
8790 if (!wiphy_ext_feature_isset(&rdev->wiphy,
8791 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK))
8793 settings->psk = nla_data(info->attrs[NL80211_ATTR_PMK]);
8799 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
8801 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8802 struct net_device *dev = info->user_ptr[1];
8803 struct ieee80211_channel *chan;
8804 struct cfg80211_assoc_request req = {};
8805 const u8 *bssid, *ssid;
8806 int err, ssid_len = 0;
8808 if (dev->ieee80211_ptr->conn_owner_nlportid &&
8809 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
8812 if (!info->attrs[NL80211_ATTR_MAC] ||
8813 !info->attrs[NL80211_ATTR_SSID] ||
8814 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
8817 if (!rdev->ops->assoc)
8820 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8821 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8824 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8826 chan = nl80211_get_valid_chan(&rdev->wiphy,
8827 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8831 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8832 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8834 if (info->attrs[NL80211_ATTR_IE]) {
8835 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8836 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8839 if (info->attrs[NL80211_ATTR_USE_MFP]) {
8840 enum nl80211_mfp mfp =
8841 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
8842 if (mfp == NL80211_MFP_REQUIRED)
8844 else if (mfp != NL80211_MFP_NO)
8848 if (info->attrs[NL80211_ATTR_PREV_BSSID])
8849 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
8851 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
8852 req.flags |= ASSOC_REQ_DISABLE_HT;
8854 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8855 memcpy(&req.ht_capa_mask,
8856 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
8857 sizeof(req.ht_capa_mask));
8859 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
8860 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8862 memcpy(&req.ht_capa,
8863 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
8864 sizeof(req.ht_capa));
8867 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
8868 req.flags |= ASSOC_REQ_DISABLE_VHT;
8870 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
8871 memcpy(&req.vht_capa_mask,
8872 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
8873 sizeof(req.vht_capa_mask));
8875 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
8876 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
8878 memcpy(&req.vht_capa,
8879 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
8880 sizeof(req.vht_capa));
8883 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
8884 if (!((rdev->wiphy.features &
8885 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
8886 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
8887 !wiphy_ext_feature_isset(&rdev->wiphy,
8888 NL80211_EXT_FEATURE_RRM))
8890 req.flags |= ASSOC_REQ_USE_RRM;
8893 if (info->attrs[NL80211_ATTR_FILS_KEK]) {
8894 req.fils_kek = nla_data(info->attrs[NL80211_ATTR_FILS_KEK]);
8895 req.fils_kek_len = nla_len(info->attrs[NL80211_ATTR_FILS_KEK]);
8896 if (!info->attrs[NL80211_ATTR_FILS_NONCES])
8899 nla_data(info->attrs[NL80211_ATTR_FILS_NONCES]);
8902 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
8904 wdev_lock(dev->ieee80211_ptr);
8906 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
8907 ssid, ssid_len, &req);
8909 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8910 dev->ieee80211_ptr->conn_owner_nlportid =
8912 memcpy(dev->ieee80211_ptr->disconnect_bssid,
8916 wdev_unlock(dev->ieee80211_ptr);
8922 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
8924 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8925 struct net_device *dev = info->user_ptr[1];
8926 const u8 *ie = NULL, *bssid;
8927 int ie_len = 0, err;
8929 bool local_state_change;
8931 if (dev->ieee80211_ptr->conn_owner_nlportid &&
8932 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
8935 if (!info->attrs[NL80211_ATTR_MAC])
8938 if (!info->attrs[NL80211_ATTR_REASON_CODE])
8941 if (!rdev->ops->deauth)
8944 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8945 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8948 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8950 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
8951 if (reason_code == 0) {
8952 /* Reason Code 0 is reserved */
8956 if (info->attrs[NL80211_ATTR_IE]) {
8957 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8958 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8961 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8963 wdev_lock(dev->ieee80211_ptr);
8964 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
8965 local_state_change);
8966 wdev_unlock(dev->ieee80211_ptr);
8970 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
8972 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8973 struct net_device *dev = info->user_ptr[1];
8974 const u8 *ie = NULL, *bssid;
8975 int ie_len = 0, err;
8977 bool local_state_change;
8979 if (dev->ieee80211_ptr->conn_owner_nlportid &&
8980 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
8983 if (!info->attrs[NL80211_ATTR_MAC])
8986 if (!info->attrs[NL80211_ATTR_REASON_CODE])
8989 if (!rdev->ops->disassoc)
8992 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8993 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8996 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8998 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
8999 if (reason_code == 0) {
9000 /* Reason Code 0 is reserved */
9004 if (info->attrs[NL80211_ATTR_IE]) {
9005 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9006 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9009 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9011 wdev_lock(dev->ieee80211_ptr);
9012 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
9013 local_state_change);
9014 wdev_unlock(dev->ieee80211_ptr);
9019 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
9020 int mcast_rate[NUM_NL80211_BANDS],
9023 struct wiphy *wiphy = &rdev->wiphy;
9027 for (band = 0; band < NUM_NL80211_BANDS; band++) {
9028 struct ieee80211_supported_band *sband;
9030 sband = wiphy->bands[band];
9034 for (i = 0; i < sband->n_bitrates; i++) {
9035 if (sband->bitrates[i].bitrate == rateval) {
9036 mcast_rate[band] = i + 1;
9046 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
9048 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9049 struct net_device *dev = info->user_ptr[1];
9050 struct cfg80211_ibss_params ibss;
9051 struct wiphy *wiphy;
9052 struct cfg80211_cached_keys *connkeys = NULL;
9055 memset(&ibss, 0, sizeof(ibss));
9057 if (!info->attrs[NL80211_ATTR_SSID] ||
9058 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9061 ibss.beacon_interval = 100;
9063 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL])
9064 ibss.beacon_interval =
9065 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
9067 err = cfg80211_validate_beacon_int(rdev, NL80211_IFTYPE_ADHOC,
9068 ibss.beacon_interval);
9072 if (!rdev->ops->join_ibss)
9075 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9078 wiphy = &rdev->wiphy;
9080 if (info->attrs[NL80211_ATTR_MAC]) {
9081 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9083 if (!is_valid_ether_addr(ibss.bssid))
9086 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9087 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9089 if (info->attrs[NL80211_ATTR_IE]) {
9090 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9091 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9094 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
9098 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
9099 NL80211_IFTYPE_ADHOC))
9102 switch (ibss.chandef.width) {
9103 case NL80211_CHAN_WIDTH_5:
9104 case NL80211_CHAN_WIDTH_10:
9105 case NL80211_CHAN_WIDTH_20_NOHT:
9107 case NL80211_CHAN_WIDTH_20:
9108 case NL80211_CHAN_WIDTH_40:
9109 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9112 case NL80211_CHAN_WIDTH_80:
9113 case NL80211_CHAN_WIDTH_80P80:
9114 case NL80211_CHAN_WIDTH_160:
9115 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9117 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9118 NL80211_EXT_FEATURE_VHT_IBSS))
9125 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
9126 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
9128 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
9130 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9132 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9133 struct ieee80211_supported_band *sband =
9134 wiphy->bands[ibss.chandef.chan->band];
9136 err = ieee80211_get_ratemask(sband, rates, n_rates,
9142 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9143 memcpy(&ibss.ht_capa_mask,
9144 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9145 sizeof(ibss.ht_capa_mask));
9147 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9148 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9150 memcpy(&ibss.ht_capa,
9151 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9152 sizeof(ibss.ht_capa));
9155 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
9156 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
9157 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
9160 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9163 connkeys = nl80211_parse_connkeys(rdev, info, &no_ht);
9164 if (IS_ERR(connkeys))
9165 return PTR_ERR(connkeys);
9167 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
9175 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
9177 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
9178 int r = validate_pae_over_nl80211(rdev, info);
9185 ibss.control_port_over_nl80211 = true;
9188 ibss.userspace_handles_dfs =
9189 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
9191 wdev_lock(dev->ieee80211_ptr);
9192 err = __cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
9195 else if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
9196 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9197 wdev_unlock(dev->ieee80211_ptr);
9202 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
9204 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9205 struct net_device *dev = info->user_ptr[1];
9207 if (!rdev->ops->leave_ibss)
9210 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9213 return cfg80211_leave_ibss(rdev, dev, false);
9216 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
9218 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9219 struct net_device *dev = info->user_ptr[1];
9220 int mcast_rate[NUM_NL80211_BANDS];
9224 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
9225 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
9226 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_OCB)
9229 if (!rdev->ops->set_mcast_rate)
9232 memset(mcast_rate, 0, sizeof(mcast_rate));
9234 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
9237 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
9238 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
9241 err = rdev_set_mcast_rate(rdev, dev, mcast_rate);
9246 static struct sk_buff *
9247 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
9248 struct wireless_dev *wdev, int approxlen,
9249 u32 portid, u32 seq, enum nl80211_commands cmd,
9250 enum nl80211_attrs attr,
9251 const struct nl80211_vendor_cmd_info *info,
9254 struct sk_buff *skb;
9256 struct nlattr *data;
9258 skb = nlmsg_new(approxlen + 100, gfp);
9262 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
9268 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
9269 goto nla_put_failure;
9272 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
9274 goto nla_put_failure;
9275 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
9277 goto nla_put_failure;
9281 if (nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
9282 wdev_id(wdev), NL80211_ATTR_PAD))
9283 goto nla_put_failure;
9285 nla_put_u32(skb, NL80211_ATTR_IFINDEX,
9286 wdev->netdev->ifindex))
9287 goto nla_put_failure;
9290 data = nla_nest_start(skb, attr);
9292 goto nla_put_failure;
9294 ((void **)skb->cb)[0] = rdev;
9295 ((void **)skb->cb)[1] = hdr;
9296 ((void **)skb->cb)[2] = data;
9305 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
9306 struct wireless_dev *wdev,
9307 enum nl80211_commands cmd,
9308 enum nl80211_attrs attr,
9309 unsigned int portid,
9310 int vendor_event_idx,
9311 int approxlen, gfp_t gfp)
9313 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9314 const struct nl80211_vendor_cmd_info *info;
9317 case NL80211_CMD_TESTMODE:
9318 if (WARN_ON(vendor_event_idx != -1))
9322 case NL80211_CMD_VENDOR:
9323 if (WARN_ON(vendor_event_idx < 0 ||
9324 vendor_event_idx >= wiphy->n_vendor_events))
9326 info = &wiphy->vendor_events[vendor_event_idx];
9333 return __cfg80211_alloc_vendor_skb(rdev, wdev, approxlen, portid, 0,
9334 cmd, attr, info, gfp);
9336 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
9338 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
9340 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9341 void *hdr = ((void **)skb->cb)[1];
9342 struct nlmsghdr *nlhdr = nlmsg_hdr(skb);
9343 struct nlattr *data = ((void **)skb->cb)[2];
9344 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
9346 /* clear CB data for netlink core to own from now on */
9347 memset(skb->cb, 0, sizeof(skb->cb));
9349 nla_nest_end(skb, data);
9350 genlmsg_end(skb, hdr);
9352 if (nlhdr->nlmsg_pid) {
9353 genlmsg_unicast(wiphy_net(&rdev->wiphy), skb,
9356 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
9357 mcgrp = NL80211_MCGRP_VENDOR;
9359 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
9360 skb, 0, mcgrp, gfp);
9363 EXPORT_SYMBOL(__cfg80211_send_event_skb);
9365 #ifdef CONFIG_NL80211_TESTMODE
9366 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
9368 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9369 struct wireless_dev *wdev =
9370 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9373 if (!rdev->ops->testmode_cmd)
9377 err = PTR_ERR(wdev);
9381 } else if (wdev->wiphy != &rdev->wiphy) {
9385 if (!info->attrs[NL80211_ATTR_TESTDATA])
9388 rdev->cur_cmd_info = info;
9389 err = rdev_testmode_cmd(rdev, wdev,
9390 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
9391 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
9392 rdev->cur_cmd_info = NULL;
9397 static int nl80211_testmode_dump(struct sk_buff *skb,
9398 struct netlink_callback *cb)
9400 struct cfg80211_registered_device *rdev;
9410 * 0 is a valid index, but not valid for args[0],
9411 * so we need to offset by 1.
9413 phy_idx = cb->args[0] - 1;
9415 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
9421 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
9423 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
9424 attrbuf, nl80211_fam.maxattr,
9425 nl80211_policy, NULL);
9429 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
9431 err = PTR_ERR(rdev);
9434 phy_idx = rdev->wiphy_idx;
9436 if (attrbuf[NL80211_ATTR_TESTDATA])
9437 cb->args[1] = (long)attrbuf[NL80211_ATTR_TESTDATA];
9441 data = nla_data((void *)cb->args[1]);
9442 data_len = nla_len((void *)cb->args[1]);
9445 if (!rdev->ops->testmode_dump) {
9451 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
9452 cb->nlh->nlmsg_seq, NLM_F_MULTI,
9453 NL80211_CMD_TESTMODE);
9454 struct nlattr *tmdata;
9459 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
9460 genlmsg_cancel(skb, hdr);
9464 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
9466 genlmsg_cancel(skb, hdr);
9469 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
9470 nla_nest_end(skb, tmdata);
9472 if (err == -ENOBUFS || err == -ENOENT) {
9473 genlmsg_cancel(skb, hdr);
9476 genlmsg_cancel(skb, hdr);
9480 genlmsg_end(skb, hdr);
9485 cb->args[0] = phy_idx + 1;
9492 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
9494 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9495 struct net_device *dev = info->user_ptr[1];
9496 struct cfg80211_connect_params connect;
9497 struct wiphy *wiphy;
9498 struct cfg80211_cached_keys *connkeys = NULL;
9501 memset(&connect, 0, sizeof(connect));
9503 if (!info->attrs[NL80211_ATTR_SSID] ||
9504 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9507 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9509 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9510 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
9511 NL80211_CMD_CONNECT))
9514 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
9516 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
9518 if (info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS] &&
9519 !wiphy_ext_feature_isset(&rdev->wiphy,
9520 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
9522 connect.want_1x = info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS];
9524 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
9525 NL80211_MAX_NR_CIPHER_SUITES);
9529 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9530 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9533 wiphy = &rdev->wiphy;
9535 connect.bg_scan_period = -1;
9536 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
9537 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
9538 connect.bg_scan_period =
9539 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
9542 if (info->attrs[NL80211_ATTR_MAC])
9543 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9544 else if (info->attrs[NL80211_ATTR_MAC_HINT])
9545 connect.bssid_hint =
9546 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
9547 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9548 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9550 if (info->attrs[NL80211_ATTR_IE]) {
9551 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9552 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9555 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9556 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9557 if (connect.mfp == NL80211_MFP_OPTIONAL &&
9558 !wiphy_ext_feature_isset(&rdev->wiphy,
9559 NL80211_EXT_FEATURE_MFP_OPTIONAL))
9562 connect.mfp = NL80211_MFP_NO;
9565 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9566 connect.prev_bssid =
9567 nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9569 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
9570 connect.channel = nl80211_get_valid_chan(
9571 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9572 if (!connect.channel)
9574 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
9575 connect.channel_hint = nl80211_get_valid_chan(
9576 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
9577 if (!connect.channel_hint)
9581 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9582 connkeys = nl80211_parse_connkeys(rdev, info, NULL);
9583 if (IS_ERR(connkeys))
9584 return PTR_ERR(connkeys);
9587 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9588 connect.flags |= ASSOC_REQ_DISABLE_HT;
9590 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9591 memcpy(&connect.ht_capa_mask,
9592 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9593 sizeof(connect.ht_capa_mask));
9595 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9596 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
9600 memcpy(&connect.ht_capa,
9601 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9602 sizeof(connect.ht_capa));
9605 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9606 connect.flags |= ASSOC_REQ_DISABLE_VHT;
9608 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9609 memcpy(&connect.vht_capa_mask,
9610 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9611 sizeof(connect.vht_capa_mask));
9613 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9614 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
9618 memcpy(&connect.vht_capa,
9619 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9620 sizeof(connect.vht_capa));
9623 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9624 if (!((rdev->wiphy.features &
9625 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9626 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9627 !wiphy_ext_feature_isset(&rdev->wiphy,
9628 NL80211_EXT_FEATURE_RRM)) {
9632 connect.flags |= ASSOC_REQ_USE_RRM;
9635 connect.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
9636 if (connect.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ]) {
9641 if (info->attrs[NL80211_ATTR_BSS_SELECT]) {
9642 /* bss selection makes no sense if bssid is set */
9643 if (connect.bssid) {
9648 err = parse_bss_select(info->attrs[NL80211_ATTR_BSS_SELECT],
9649 wiphy, &connect.bss_select);
9656 if (wiphy_ext_feature_isset(&rdev->wiphy,
9657 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
9658 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9659 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9660 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9661 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9662 connect.fils_erp_username =
9663 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9664 connect.fils_erp_username_len =
9665 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9666 connect.fils_erp_realm =
9667 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9668 connect.fils_erp_realm_len =
9669 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9670 connect.fils_erp_next_seq_num =
9672 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9673 connect.fils_erp_rrk =
9674 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9675 connect.fils_erp_rrk_len =
9676 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9677 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9678 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9679 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9680 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9685 if (nla_get_flag(info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])) {
9686 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9688 GENL_SET_ERR_MSG(info,
9689 "external auth requires connection ownership");
9692 connect.flags |= CONNECT_REQ_EXTERNAL_AUTH_SUPPORT;
9695 wdev_lock(dev->ieee80211_ptr);
9697 err = cfg80211_connect(rdev, dev, &connect, connkeys,
9698 connect.prev_bssid);
9702 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9703 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9705 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9706 connect.bssid, ETH_ALEN);
9708 memset(dev->ieee80211_ptr->disconnect_bssid,
9712 wdev_unlock(dev->ieee80211_ptr);
9717 static int nl80211_update_connect_params(struct sk_buff *skb,
9718 struct genl_info *info)
9720 struct cfg80211_connect_params connect = {};
9721 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9722 struct net_device *dev = info->user_ptr[1];
9723 struct wireless_dev *wdev = dev->ieee80211_ptr;
9724 bool fils_sk_offload;
9729 if (!rdev->ops->update_connect_params)
9732 if (info->attrs[NL80211_ATTR_IE]) {
9733 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9734 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9735 changed |= UPDATE_ASSOC_IES;
9738 fils_sk_offload = wiphy_ext_feature_isset(&rdev->wiphy,
9739 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD);
9742 * when driver supports fils-sk offload all attributes must be
9743 * provided. So the else covers "fils-sk-not-all" and
9746 if (fils_sk_offload &&
9747 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9748 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9749 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9750 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9751 connect.fils_erp_username =
9752 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9753 connect.fils_erp_username_len =
9754 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9755 connect.fils_erp_realm =
9756 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9757 connect.fils_erp_realm_len =
9758 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9759 connect.fils_erp_next_seq_num =
9761 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9762 connect.fils_erp_rrk =
9763 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9764 connect.fils_erp_rrk_len =
9765 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9766 changed |= UPDATE_FILS_ERP_INFO;
9767 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9768 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9769 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9770 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9774 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9775 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9776 if (!nl80211_valid_auth_type(rdev, auth_type,
9777 NL80211_CMD_CONNECT))
9780 if (auth_type == NL80211_AUTHTYPE_FILS_SK &&
9781 fils_sk_offload && !(changed & UPDATE_FILS_ERP_INFO))
9784 connect.auth_type = auth_type;
9785 changed |= UPDATE_AUTH_TYPE;
9788 wdev_lock(dev->ieee80211_ptr);
9789 if (!wdev->current_bss)
9792 ret = rdev_update_connect_params(rdev, dev, &connect, changed);
9793 wdev_unlock(dev->ieee80211_ptr);
9798 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
9800 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9801 struct net_device *dev = info->user_ptr[1];
9805 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9806 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9809 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9810 reason = WLAN_REASON_DEAUTH_LEAVING;
9812 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9817 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9818 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9821 wdev_lock(dev->ieee80211_ptr);
9822 ret = cfg80211_disconnect(rdev, dev, reason, true);
9823 wdev_unlock(dev->ieee80211_ptr);
9827 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
9829 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9833 if (info->attrs[NL80211_ATTR_PID]) {
9834 u32 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
9836 net = get_net_ns_by_pid(pid);
9837 } else if (info->attrs[NL80211_ATTR_NETNS_FD]) {
9838 u32 fd = nla_get_u32(info->attrs[NL80211_ATTR_NETNS_FD]);
9840 net = get_net_ns_by_fd(fd);
9846 return PTR_ERR(net);
9850 /* check if anything to do */
9851 if (!net_eq(wiphy_net(&rdev->wiphy), net))
9852 err = cfg80211_switch_netns(rdev, net);
9858 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
9860 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9861 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
9862 struct cfg80211_pmksa *pmksa) = NULL;
9863 struct net_device *dev = info->user_ptr[1];
9864 struct cfg80211_pmksa pmksa;
9866 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
9868 if (!info->attrs[NL80211_ATTR_PMKID])
9871 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
9873 if (info->attrs[NL80211_ATTR_MAC]) {
9874 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9875 } else if (info->attrs[NL80211_ATTR_SSID] &&
9876 info->attrs[NL80211_ATTR_FILS_CACHE_ID] &&
9877 (info->genlhdr->cmd == NL80211_CMD_DEL_PMKSA ||
9878 info->attrs[NL80211_ATTR_PMK])) {
9879 pmksa.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9880 pmksa.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9882 nla_data(info->attrs[NL80211_ATTR_FILS_CACHE_ID]);
9886 if (info->attrs[NL80211_ATTR_PMK]) {
9887 pmksa.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
9888 pmksa.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
9891 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9892 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT &&
9893 !(dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP &&
9894 wiphy_ext_feature_isset(&rdev->wiphy,
9895 NL80211_EXT_FEATURE_AP_PMKSA_CACHING)))
9898 switch (info->genlhdr->cmd) {
9899 case NL80211_CMD_SET_PMKSA:
9900 rdev_ops = rdev->ops->set_pmksa;
9902 case NL80211_CMD_DEL_PMKSA:
9903 rdev_ops = rdev->ops->del_pmksa;
9913 return rdev_ops(&rdev->wiphy, dev, &pmksa);
9916 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
9918 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9919 struct net_device *dev = info->user_ptr[1];
9921 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9922 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9925 if (!rdev->ops->flush_pmksa)
9928 return rdev_flush_pmksa(rdev, dev);
9931 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
9933 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9934 struct net_device *dev = info->user_ptr[1];
9935 u8 action_code, dialog_token;
9936 u32 peer_capability = 0;
9941 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
9942 !rdev->ops->tdls_mgmt)
9945 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
9946 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
9947 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
9948 !info->attrs[NL80211_ATTR_IE] ||
9949 !info->attrs[NL80211_ATTR_MAC])
9952 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
9953 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
9954 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
9955 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
9956 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
9957 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
9959 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
9961 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
9962 dialog_token, status_code, peer_capability,
9964 nla_data(info->attrs[NL80211_ATTR_IE]),
9965 nla_len(info->attrs[NL80211_ATTR_IE]));
9968 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
9970 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9971 struct net_device *dev = info->user_ptr[1];
9972 enum nl80211_tdls_operation operation;
9975 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
9976 !rdev->ops->tdls_oper)
9979 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
9980 !info->attrs[NL80211_ATTR_MAC])
9983 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
9984 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
9986 return rdev_tdls_oper(rdev, dev, peer, operation);
9989 static int nl80211_remain_on_channel(struct sk_buff *skb,
9990 struct genl_info *info)
9992 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9993 struct wireless_dev *wdev = info->user_ptr[1];
9994 struct cfg80211_chan_def chandef;
9995 const struct cfg80211_chan_def *compat_chandef;
9996 struct sk_buff *msg;
10002 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
10003 !info->attrs[NL80211_ATTR_DURATION])
10006 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10008 if (!rdev->ops->remain_on_channel ||
10009 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
10010 return -EOPNOTSUPP;
10013 * We should be on that channel for at least a minimum amount of
10014 * time (10ms) but no longer than the driver supports.
10016 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10017 duration > rdev->wiphy.max_remain_on_channel_duration)
10020 err = nl80211_parse_chandef(rdev, info, &chandef);
10025 if (!cfg80211_off_channel_oper_allowed(wdev) &&
10026 !cfg80211_chandef_identical(&wdev->chandef, &chandef)) {
10027 compat_chandef = cfg80211_chandef_compatible(&wdev->chandef,
10029 if (compat_chandef != &chandef) {
10036 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10040 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10041 NL80211_CMD_REMAIN_ON_CHANNEL);
10047 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
10048 duration, &cookie);
10053 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10055 goto nla_put_failure;
10057 genlmsg_end(msg, hdr);
10059 return genlmsg_reply(msg, info);
10068 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
10069 struct genl_info *info)
10071 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10072 struct wireless_dev *wdev = info->user_ptr[1];
10075 if (!info->attrs[NL80211_ATTR_COOKIE])
10078 if (!rdev->ops->cancel_remain_on_channel)
10079 return -EOPNOTSUPP;
10081 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10083 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
10086 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
10087 struct genl_info *info)
10089 struct cfg80211_bitrate_mask mask;
10090 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10091 struct net_device *dev = info->user_ptr[1];
10094 if (!rdev->ops->set_bitrate_mask)
10095 return -EOPNOTSUPP;
10097 err = nl80211_parse_tx_bitrate_mask(info, &mask);
10101 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
10104 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
10106 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10107 struct wireless_dev *wdev = info->user_ptr[1];
10108 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
10110 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
10113 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
10114 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
10116 switch (wdev->iftype) {
10117 case NL80211_IFTYPE_STATION:
10118 case NL80211_IFTYPE_ADHOC:
10119 case NL80211_IFTYPE_P2P_CLIENT:
10120 case NL80211_IFTYPE_AP:
10121 case NL80211_IFTYPE_AP_VLAN:
10122 case NL80211_IFTYPE_MESH_POINT:
10123 case NL80211_IFTYPE_P2P_GO:
10124 case NL80211_IFTYPE_P2P_DEVICE:
10126 case NL80211_IFTYPE_NAN:
10128 return -EOPNOTSUPP;
10131 /* not much point in registering if we can't reply */
10132 if (!rdev->ops->mgmt_tx)
10133 return -EOPNOTSUPP;
10135 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
10136 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
10137 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
10140 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
10142 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10143 struct wireless_dev *wdev = info->user_ptr[1];
10144 struct cfg80211_chan_def chandef;
10148 struct sk_buff *msg = NULL;
10149 struct cfg80211_mgmt_tx_params params = {
10150 .dont_wait_for_ack =
10151 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
10154 if (!info->attrs[NL80211_ATTR_FRAME])
10157 if (!rdev->ops->mgmt_tx)
10158 return -EOPNOTSUPP;
10160 switch (wdev->iftype) {
10161 case NL80211_IFTYPE_P2P_DEVICE:
10162 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
10164 case NL80211_IFTYPE_STATION:
10165 case NL80211_IFTYPE_ADHOC:
10166 case NL80211_IFTYPE_P2P_CLIENT:
10167 case NL80211_IFTYPE_AP:
10168 case NL80211_IFTYPE_AP_VLAN:
10169 case NL80211_IFTYPE_MESH_POINT:
10170 case NL80211_IFTYPE_P2P_GO:
10172 case NL80211_IFTYPE_NAN:
10174 return -EOPNOTSUPP;
10177 if (info->attrs[NL80211_ATTR_DURATION]) {
10178 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10180 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10183 * We should wait on the channel for at least a minimum amount
10184 * of time (10ms) but no longer than the driver supports.
10186 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10187 params.wait > rdev->wiphy.max_remain_on_channel_duration)
10191 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
10193 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10196 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
10198 /* get the channel if any has been specified, otherwise pass NULL to
10199 * the driver. The latter will use the current one
10201 chandef.chan = NULL;
10202 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10203 err = nl80211_parse_chandef(rdev, info, &chandef);
10208 if (!chandef.chan && params.offchan)
10212 if (params.offchan && !cfg80211_off_channel_oper_allowed(wdev)) {
10218 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
10219 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
10221 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
10222 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10225 if (len % sizeof(u16))
10228 params.n_csa_offsets = len / sizeof(u16);
10229 params.csa_offsets =
10230 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10232 /* check that all the offsets fit the frame */
10233 for (i = 0; i < params.n_csa_offsets; i++) {
10234 if (params.csa_offsets[i] >= params.len)
10239 if (!params.dont_wait_for_ack) {
10240 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10244 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10245 NL80211_CMD_FRAME);
10252 params.chan = chandef.chan;
10253 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
10258 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10260 goto nla_put_failure;
10262 genlmsg_end(msg, hdr);
10263 return genlmsg_reply(msg, info);
10275 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
10277 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10278 struct wireless_dev *wdev = info->user_ptr[1];
10281 if (!info->attrs[NL80211_ATTR_COOKIE])
10284 if (!rdev->ops->mgmt_tx_cancel_wait)
10285 return -EOPNOTSUPP;
10287 switch (wdev->iftype) {
10288 case NL80211_IFTYPE_STATION:
10289 case NL80211_IFTYPE_ADHOC:
10290 case NL80211_IFTYPE_P2P_CLIENT:
10291 case NL80211_IFTYPE_AP:
10292 case NL80211_IFTYPE_AP_VLAN:
10293 case NL80211_IFTYPE_P2P_GO:
10294 case NL80211_IFTYPE_P2P_DEVICE:
10296 case NL80211_IFTYPE_NAN:
10298 return -EOPNOTSUPP;
10301 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10303 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
10306 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
10308 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10309 struct wireless_dev *wdev;
10310 struct net_device *dev = info->user_ptr[1];
10315 if (!info->attrs[NL80211_ATTR_PS_STATE])
10318 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
10320 wdev = dev->ieee80211_ptr;
10322 if (!rdev->ops->set_power_mgmt)
10323 return -EOPNOTSUPP;
10325 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
10327 if (state == wdev->ps)
10330 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
10336 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
10338 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10339 enum nl80211_ps_state ps_state;
10340 struct wireless_dev *wdev;
10341 struct net_device *dev = info->user_ptr[1];
10342 struct sk_buff *msg;
10346 wdev = dev->ieee80211_ptr;
10348 if (!rdev->ops->set_power_mgmt)
10349 return -EOPNOTSUPP;
10351 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10355 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10356 NL80211_CMD_GET_POWER_SAVE);
10363 ps_state = NL80211_PS_ENABLED;
10365 ps_state = NL80211_PS_DISABLED;
10367 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
10368 goto nla_put_failure;
10370 genlmsg_end(msg, hdr);
10371 return genlmsg_reply(msg, info);
10380 static const struct nla_policy
10381 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
10382 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_BINARY },
10383 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
10384 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
10385 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
10386 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
10387 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
10388 [NL80211_ATTR_CQM_RSSI_LEVEL] = { .type = NLA_S32 },
10391 static int nl80211_set_cqm_txe(struct genl_info *info,
10392 u32 rate, u32 pkts, u32 intvl)
10394 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10395 struct net_device *dev = info->user_ptr[1];
10396 struct wireless_dev *wdev = dev->ieee80211_ptr;
10398 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
10401 if (!rdev->ops->set_cqm_txe_config)
10402 return -EOPNOTSUPP;
10404 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10405 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10406 return -EOPNOTSUPP;
10408 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
10411 static int cfg80211_cqm_rssi_update(struct cfg80211_registered_device *rdev,
10412 struct net_device *dev)
10414 struct wireless_dev *wdev = dev->ieee80211_ptr;
10415 s32 last, low, high;
10417 int i, n, low_index;
10420 /* RSSI reporting disabled? */
10421 if (!wdev->cqm_config)
10422 return rdev_set_cqm_rssi_range_config(rdev, dev, 0, 0);
10425 * Obtain current RSSI value if possible, if not and no RSSI threshold
10426 * event has been received yet, we should receive an event after a
10427 * connection is established and enough beacons received to calculate
10430 if (!wdev->cqm_config->last_rssi_event_value && wdev->current_bss &&
10431 rdev->ops->get_station) {
10432 struct station_info sinfo = {};
10435 mac_addr = wdev->current_bss->pub.bssid;
10437 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
10441 if (sinfo.filled & BIT_ULL(NL80211_STA_INFO_BEACON_SIGNAL_AVG))
10442 wdev->cqm_config->last_rssi_event_value =
10443 (s8) sinfo.rx_beacon_signal_avg;
10446 last = wdev->cqm_config->last_rssi_event_value;
10447 hyst = wdev->cqm_config->rssi_hyst;
10448 n = wdev->cqm_config->n_rssi_thresholds;
10450 for (i = 0; i < n; i++)
10451 if (last < wdev->cqm_config->rssi_thresholds[i])
10455 if (low_index >= 0) {
10456 low_index = array_index_nospec(low_index, n);
10457 low = wdev->cqm_config->rssi_thresholds[low_index] - hyst;
10462 i = array_index_nospec(i, n);
10463 high = wdev->cqm_config->rssi_thresholds[i] + hyst - 1;
10468 return rdev_set_cqm_rssi_range_config(rdev, dev, low, high);
10471 static int nl80211_set_cqm_rssi(struct genl_info *info,
10472 const s32 *thresholds, int n_thresholds,
10475 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10476 struct net_device *dev = info->user_ptr[1];
10477 struct wireless_dev *wdev = dev->ieee80211_ptr;
10479 s32 prev = S32_MIN;
10481 /* Check all values negative and sorted */
10482 for (i = 0; i < n_thresholds; i++) {
10483 if (thresholds[i] > 0 || thresholds[i] <= prev)
10486 prev = thresholds[i];
10489 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10490 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10491 return -EOPNOTSUPP;
10494 cfg80211_cqm_config_free(wdev);
10497 if (n_thresholds <= 1 && rdev->ops->set_cqm_rssi_config) {
10498 if (n_thresholds == 0 || thresholds[0] == 0) /* Disabling */
10499 return rdev_set_cqm_rssi_config(rdev, dev, 0, 0);
10501 return rdev_set_cqm_rssi_config(rdev, dev,
10502 thresholds[0], hysteresis);
10505 if (!wiphy_ext_feature_isset(&rdev->wiphy,
10506 NL80211_EXT_FEATURE_CQM_RSSI_LIST))
10507 return -EOPNOTSUPP;
10509 if (n_thresholds == 1 && thresholds[0] == 0) /* Disabling */
10513 if (n_thresholds) {
10514 struct cfg80211_cqm_config *cqm_config;
10516 cqm_config = kzalloc(sizeof(struct cfg80211_cqm_config) +
10517 n_thresholds * sizeof(s32), GFP_KERNEL);
10523 cqm_config->rssi_hyst = hysteresis;
10524 cqm_config->n_rssi_thresholds = n_thresholds;
10525 memcpy(cqm_config->rssi_thresholds, thresholds,
10526 n_thresholds * sizeof(s32));
10528 wdev->cqm_config = cqm_config;
10531 err = cfg80211_cqm_rssi_update(rdev, dev);
10539 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
10541 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
10542 struct nlattr *cqm;
10545 cqm = info->attrs[NL80211_ATTR_CQM];
10549 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
10550 nl80211_attr_cqm_policy, info->extack);
10554 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
10555 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
10556 const s32 *thresholds =
10557 nla_data(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10558 int len = nla_len(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10559 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
10564 return nl80211_set_cqm_rssi(info, thresholds, len / 4,
10568 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
10569 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
10570 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
10571 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
10572 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
10573 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
10575 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
10581 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
10583 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10584 struct net_device *dev = info->user_ptr[1];
10585 struct ocb_setup setup = {};
10588 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10592 return cfg80211_join_ocb(rdev, dev, &setup);
10595 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
10597 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10598 struct net_device *dev = info->user_ptr[1];
10600 return cfg80211_leave_ocb(rdev, dev);
10603 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
10605 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10606 struct net_device *dev = info->user_ptr[1];
10607 struct mesh_config cfg;
10608 struct mesh_setup setup;
10611 /* start with default */
10612 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
10613 memcpy(&setup, &default_mesh_setup, sizeof(setup));
10615 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
10616 /* and parse parameters if given */
10617 err = nl80211_parse_mesh_config(info, &cfg, NULL);
10622 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
10623 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
10626 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
10627 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
10629 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
10630 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
10631 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
10634 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
10635 setup.beacon_interval =
10636 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
10638 err = cfg80211_validate_beacon_int(rdev,
10639 NL80211_IFTYPE_MESH_POINT,
10640 setup.beacon_interval);
10645 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
10646 setup.dtim_period =
10647 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
10648 if (setup.dtim_period < 1 || setup.dtim_period > 100)
10652 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
10653 /* parse additional setup parameters if given */
10654 err = nl80211_parse_mesh_setup(info, &setup);
10659 if (setup.user_mpm)
10660 cfg.auto_open_plinks = false;
10662 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10663 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10667 /* __cfg80211_join_mesh() will sort it out */
10668 setup.chandef.chan = NULL;
10671 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
10672 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10674 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10675 struct ieee80211_supported_band *sband;
10677 if (!setup.chandef.chan)
10680 sband = rdev->wiphy.bands[setup.chandef.chan->band];
10682 err = ieee80211_get_ratemask(sband, rates, n_rates,
10683 &setup.basic_rates);
10688 if (info->attrs[NL80211_ATTR_TX_RATES]) {
10689 err = nl80211_parse_tx_bitrate_mask(info, &setup.beacon_rate);
10693 if (!setup.chandef.chan)
10696 err = validate_beacon_tx_rate(rdev, setup.chandef.chan->band,
10697 &setup.beacon_rate);
10702 setup.userspace_handles_dfs =
10703 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
10705 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
10706 int r = validate_pae_over_nl80211(rdev, info);
10711 setup.control_port_over_nl80211 = true;
10714 wdev_lock(dev->ieee80211_ptr);
10715 err = __cfg80211_join_mesh(rdev, dev, &setup, &cfg);
10716 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER])
10717 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
10718 wdev_unlock(dev->ieee80211_ptr);
10723 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
10725 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10726 struct net_device *dev = info->user_ptr[1];
10728 return cfg80211_leave_mesh(rdev, dev);
10732 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
10733 struct cfg80211_registered_device *rdev)
10735 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
10736 struct nlattr *nl_pats, *nl_pat;
10739 if (!wowlan->n_patterns)
10742 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
10746 for (i = 0; i < wowlan->n_patterns; i++) {
10747 nl_pat = nla_nest_start(msg, i + 1);
10750 pat_len = wowlan->patterns[i].pattern_len;
10751 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
10752 wowlan->patterns[i].mask) ||
10753 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
10754 wowlan->patterns[i].pattern) ||
10755 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
10756 wowlan->patterns[i].pkt_offset))
10758 nla_nest_end(msg, nl_pat);
10760 nla_nest_end(msg, nl_pats);
10765 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
10766 struct cfg80211_wowlan_tcp *tcp)
10768 struct nlattr *nl_tcp;
10773 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
10777 if (nla_put_in_addr(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
10778 nla_put_in_addr(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
10779 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
10780 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
10781 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
10782 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
10783 tcp->payload_len, tcp->payload) ||
10784 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
10785 tcp->data_interval) ||
10786 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
10787 tcp->wake_len, tcp->wake_data) ||
10788 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
10789 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
10792 if (tcp->payload_seq.len &&
10793 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
10794 sizeof(tcp->payload_seq), &tcp->payload_seq))
10797 if (tcp->payload_tok.len &&
10798 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
10799 sizeof(tcp->payload_tok) + tcp->tokens_size,
10800 &tcp->payload_tok))
10803 nla_nest_end(msg, nl_tcp);
10808 static int nl80211_send_wowlan_nd(struct sk_buff *msg,
10809 struct cfg80211_sched_scan_request *req)
10811 struct nlattr *nd, *freqs, *matches, *match, *scan_plans, *scan_plan;
10817 nd = nla_nest_start(msg, NL80211_WOWLAN_TRIG_NET_DETECT);
10821 if (req->n_scan_plans == 1 &&
10822 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL,
10823 req->scan_plans[0].interval * 1000))
10826 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_DELAY, req->delay))
10829 if (req->relative_rssi_set) {
10830 struct nl80211_bss_select_rssi_adjust rssi_adjust;
10832 if (nla_put_s8(msg, NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI,
10833 req->relative_rssi))
10836 rssi_adjust.band = req->rssi_adjust.band;
10837 rssi_adjust.delta = req->rssi_adjust.delta;
10838 if (nla_put(msg, NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST,
10839 sizeof(rssi_adjust), &rssi_adjust))
10843 freqs = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
10847 for (i = 0; i < req->n_channels; i++) {
10848 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
10852 nla_nest_end(msg, freqs);
10854 if (req->n_match_sets) {
10855 matches = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_MATCH);
10859 for (i = 0; i < req->n_match_sets; i++) {
10860 match = nla_nest_start(msg, i);
10864 if (nla_put(msg, NL80211_SCHED_SCAN_MATCH_ATTR_SSID,
10865 req->match_sets[i].ssid.ssid_len,
10866 req->match_sets[i].ssid.ssid))
10868 nla_nest_end(msg, match);
10870 nla_nest_end(msg, matches);
10873 scan_plans = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_PLANS);
10877 for (i = 0; i < req->n_scan_plans; i++) {
10878 scan_plan = nla_nest_start(msg, i + 1);
10882 if (nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_INTERVAL,
10883 req->scan_plans[i].interval) ||
10884 (req->scan_plans[i].iterations &&
10885 nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_ITERATIONS,
10886 req->scan_plans[i].iterations)))
10888 nla_nest_end(msg, scan_plan);
10890 nla_nest_end(msg, scan_plans);
10892 nla_nest_end(msg, nd);
10897 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
10899 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10900 struct sk_buff *msg;
10902 u32 size = NLMSG_DEFAULT_SIZE;
10904 if (!rdev->wiphy.wowlan)
10905 return -EOPNOTSUPP;
10907 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
10908 /* adjust size to have room for all the data */
10909 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
10910 rdev->wiphy.wowlan_config->tcp->payload_len +
10911 rdev->wiphy.wowlan_config->tcp->wake_len +
10912 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
10915 msg = nlmsg_new(size, GFP_KERNEL);
10919 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10920 NL80211_CMD_GET_WOWLAN);
10922 goto nla_put_failure;
10924 if (rdev->wiphy.wowlan_config) {
10925 struct nlattr *nl_wowlan;
10927 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
10929 goto nla_put_failure;
10931 if ((rdev->wiphy.wowlan_config->any &&
10932 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
10933 (rdev->wiphy.wowlan_config->disconnect &&
10934 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
10935 (rdev->wiphy.wowlan_config->magic_pkt &&
10936 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
10937 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
10938 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
10939 (rdev->wiphy.wowlan_config->eap_identity_req &&
10940 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
10941 (rdev->wiphy.wowlan_config->four_way_handshake &&
10942 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
10943 (rdev->wiphy.wowlan_config->rfkill_release &&
10944 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
10945 goto nla_put_failure;
10947 if (nl80211_send_wowlan_patterns(msg, rdev))
10948 goto nla_put_failure;
10950 if (nl80211_send_wowlan_tcp(msg,
10951 rdev->wiphy.wowlan_config->tcp))
10952 goto nla_put_failure;
10954 if (nl80211_send_wowlan_nd(
10956 rdev->wiphy.wowlan_config->nd_config))
10957 goto nla_put_failure;
10959 nla_nest_end(msg, nl_wowlan);
10962 genlmsg_end(msg, hdr);
10963 return genlmsg_reply(msg, info);
10970 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
10971 struct nlattr *attr,
10972 struct cfg80211_wowlan *trig)
10974 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
10975 struct cfg80211_wowlan_tcp *cfg;
10976 struct nl80211_wowlan_tcp_data_token *tok = NULL;
10977 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
10979 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
10982 if (!rdev->wiphy.wowlan->tcp)
10985 err = nla_parse_nested(tb, MAX_NL80211_WOWLAN_TCP, attr,
10986 nl80211_wowlan_tcp_policy, NULL);
10990 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
10991 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
10992 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
10993 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
10994 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
10995 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
10996 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
10997 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
11000 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
11001 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
11004 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
11005 rdev->wiphy.wowlan->tcp->data_interval_max ||
11006 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
11009 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
11010 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
11013 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
11014 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
11017 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
11018 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11020 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11021 tokens_size = tokln - sizeof(*tok);
11023 if (!tok->len || tokens_size % tok->len)
11025 if (!rdev->wiphy.wowlan->tcp->tok)
11027 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
11029 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
11031 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
11033 if (tok->offset + tok->len > data_size)
11037 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
11038 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
11039 if (!rdev->wiphy.wowlan->tcp->seq)
11041 if (seq->len == 0 || seq->len > 4)
11043 if (seq->len + seq->offset > data_size)
11047 size = sizeof(*cfg);
11049 size += wake_size + wake_mask_size;
11050 size += tokens_size;
11052 cfg = kzalloc(size, GFP_KERNEL);
11055 cfg->src = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
11056 cfg->dst = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
11057 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
11059 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
11060 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
11064 /* allocate a socket and port for it and use it */
11065 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
11066 IPPROTO_TCP, &cfg->sock, 1);
11071 if (inet_csk_get_port(cfg->sock->sk, port)) {
11072 sock_release(cfg->sock);
11074 return -EADDRINUSE;
11076 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
11082 cfg->src_port = port;
11085 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
11086 cfg->payload_len = data_size;
11087 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
11088 memcpy((void *)cfg->payload,
11089 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
11092 cfg->payload_seq = *seq;
11093 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
11094 cfg->wake_len = wake_size;
11095 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
11096 memcpy((void *)cfg->wake_data,
11097 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
11099 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
11100 data_size + wake_size;
11101 memcpy((void *)cfg->wake_mask,
11102 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
11105 cfg->tokens_size = tokens_size;
11106 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
11114 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
11115 const struct wiphy_wowlan_support *wowlan,
11116 struct nlattr *attr,
11117 struct cfg80211_wowlan *trig)
11119 struct nlattr **tb;
11122 tb = kcalloc(NUM_NL80211_ATTR, sizeof(*tb), GFP_KERNEL);
11126 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
11131 err = nla_parse_nested(tb, NL80211_ATTR_MAX, attr, nl80211_policy,
11136 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb,
11137 wowlan->max_nd_match_sets);
11138 err = PTR_ERR_OR_ZERO(trig->nd_config);
11140 trig->nd_config = NULL;
11147 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
11149 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11150 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
11151 struct cfg80211_wowlan new_triggers = {};
11152 struct cfg80211_wowlan *ntrig;
11153 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
11155 bool prev_enabled = rdev->wiphy.wowlan_config;
11156 bool regular = false;
11159 return -EOPNOTSUPP;
11161 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
11162 cfg80211_rdev_free_wowlan(rdev);
11163 rdev->wiphy.wowlan_config = NULL;
11167 err = nla_parse_nested(tb, MAX_NL80211_WOWLAN_TRIG,
11168 info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS],
11169 nl80211_wowlan_policy, info->extack);
11173 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
11174 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
11176 new_triggers.any = true;
11179 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
11180 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
11182 new_triggers.disconnect = true;
11186 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
11187 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
11189 new_triggers.magic_pkt = true;
11193 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
11196 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
11197 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
11199 new_triggers.gtk_rekey_failure = true;
11203 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
11204 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
11206 new_triggers.eap_identity_req = true;
11210 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
11211 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
11213 new_triggers.four_way_handshake = true;
11217 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
11218 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
11220 new_triggers.rfkill_release = true;
11224 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
11225 struct nlattr *pat;
11226 int n_patterns = 0;
11227 int rem, pat_len, mask_len, pkt_offset;
11228 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11232 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11235 if (n_patterns > wowlan->n_patterns)
11238 new_triggers.patterns = kcalloc(n_patterns,
11239 sizeof(new_triggers.patterns[0]),
11241 if (!new_triggers.patterns)
11244 new_triggers.n_patterns = n_patterns;
11247 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11251 err = nla_parse_nested(pat_tb, MAX_NL80211_PKTPAT, pat,
11252 nl80211_packet_pattern_policy,
11258 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11259 !pat_tb[NL80211_PKTPAT_PATTERN])
11261 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11262 mask_len = DIV_ROUND_UP(pat_len, 8);
11263 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11265 if (pat_len > wowlan->pattern_max_len ||
11266 pat_len < wowlan->pattern_min_len)
11269 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11272 pkt_offset = nla_get_u32(
11273 pat_tb[NL80211_PKTPAT_OFFSET]);
11274 if (pkt_offset > wowlan->max_pkt_offset)
11276 new_triggers.patterns[i].pkt_offset = pkt_offset;
11278 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11283 new_triggers.patterns[i].mask = mask_pat;
11284 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11286 mask_pat += mask_len;
11287 new_triggers.patterns[i].pattern = mask_pat;
11288 new_triggers.patterns[i].pattern_len = pat_len;
11290 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11296 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
11298 err = nl80211_parse_wowlan_tcp(
11299 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
11305 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
11307 err = nl80211_parse_wowlan_nd(
11308 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
11314 /* The 'any' trigger means the device continues operating more or less
11315 * as in its normal operation mode and wakes up the host on most of the
11316 * normal interrupts (like packet RX, ...)
11317 * It therefore makes little sense to combine with the more constrained
11318 * wakeup trigger modes.
11320 if (new_triggers.any && regular) {
11325 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
11330 cfg80211_rdev_free_wowlan(rdev);
11331 rdev->wiphy.wowlan_config = ntrig;
11334 if (rdev->ops->set_wakeup &&
11335 prev_enabled != !!rdev->wiphy.wowlan_config)
11336 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
11340 for (i = 0; i < new_triggers.n_patterns; i++)
11341 kfree(new_triggers.patterns[i].mask);
11342 kfree(new_triggers.patterns);
11343 if (new_triggers.tcp && new_triggers.tcp->sock)
11344 sock_release(new_triggers.tcp->sock);
11345 kfree(new_triggers.tcp);
11346 kfree(new_triggers.nd_config);
11351 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
11352 struct cfg80211_registered_device *rdev)
11354 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
11356 struct cfg80211_coalesce_rules *rule;
11358 if (!rdev->coalesce->n_rules)
11361 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
11365 for (i = 0; i < rdev->coalesce->n_rules; i++) {
11366 nl_rule = nla_nest_start(msg, i + 1);
11370 rule = &rdev->coalesce->rules[i];
11371 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
11375 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
11379 nl_pats = nla_nest_start(msg,
11380 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
11384 for (j = 0; j < rule->n_patterns; j++) {
11385 nl_pat = nla_nest_start(msg, j + 1);
11388 pat_len = rule->patterns[j].pattern_len;
11389 if (nla_put(msg, NL80211_PKTPAT_MASK,
11390 DIV_ROUND_UP(pat_len, 8),
11391 rule->patterns[j].mask) ||
11392 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
11393 rule->patterns[j].pattern) ||
11394 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
11395 rule->patterns[j].pkt_offset))
11397 nla_nest_end(msg, nl_pat);
11399 nla_nest_end(msg, nl_pats);
11400 nla_nest_end(msg, nl_rule);
11402 nla_nest_end(msg, nl_rules);
11407 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
11409 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11410 struct sk_buff *msg;
11413 if (!rdev->wiphy.coalesce)
11414 return -EOPNOTSUPP;
11416 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11420 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11421 NL80211_CMD_GET_COALESCE);
11423 goto nla_put_failure;
11425 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
11426 goto nla_put_failure;
11428 genlmsg_end(msg, hdr);
11429 return genlmsg_reply(msg, info);
11436 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
11438 struct cfg80211_coalesce *coalesce = rdev->coalesce;
11440 struct cfg80211_coalesce_rules *rule;
11445 for (i = 0; i < coalesce->n_rules; i++) {
11446 rule = &coalesce->rules[i];
11447 for (j = 0; j < rule->n_patterns; j++)
11448 kfree(rule->patterns[j].mask);
11449 kfree(rule->patterns);
11451 kfree(coalesce->rules);
11453 rdev->coalesce = NULL;
11456 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
11457 struct nlattr *rule,
11458 struct cfg80211_coalesce_rules *new_rule)
11461 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11462 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
11463 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
11464 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11466 err = nla_parse_nested(tb, NL80211_ATTR_COALESCE_RULE_MAX, rule,
11467 nl80211_coalesce_policy, NULL);
11471 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
11473 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
11474 if (new_rule->delay > coalesce->max_delay)
11477 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
11478 new_rule->condition =
11479 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
11481 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
11484 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11487 if (n_patterns > coalesce->n_patterns)
11490 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
11492 if (!new_rule->patterns)
11495 new_rule->n_patterns = n_patterns;
11498 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11502 err = nla_parse_nested(pat_tb, MAX_NL80211_PKTPAT, pat,
11503 nl80211_packet_pattern_policy, NULL);
11507 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11508 !pat_tb[NL80211_PKTPAT_PATTERN])
11510 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11511 mask_len = DIV_ROUND_UP(pat_len, 8);
11512 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11514 if (pat_len > coalesce->pattern_max_len ||
11515 pat_len < coalesce->pattern_min_len)
11518 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11521 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
11522 if (pkt_offset > coalesce->max_pkt_offset)
11524 new_rule->patterns[i].pkt_offset = pkt_offset;
11526 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11530 new_rule->patterns[i].mask = mask_pat;
11531 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11534 mask_pat += mask_len;
11535 new_rule->patterns[i].pattern = mask_pat;
11536 new_rule->patterns[i].pattern_len = pat_len;
11537 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11545 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
11547 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11548 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11549 struct cfg80211_coalesce new_coalesce = {};
11550 struct cfg80211_coalesce *n_coalesce;
11551 int err, rem_rule, n_rules = 0, i, j;
11552 struct nlattr *rule;
11553 struct cfg80211_coalesce_rules *tmp_rule;
11555 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
11556 return -EOPNOTSUPP;
11558 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
11559 cfg80211_rdev_free_coalesce(rdev);
11560 rdev_set_coalesce(rdev, NULL);
11564 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11567 if (n_rules > coalesce->n_rules)
11570 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
11572 if (!new_coalesce.rules)
11575 new_coalesce.n_rules = n_rules;
11578 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11580 err = nl80211_parse_coalesce_rule(rdev, rule,
11581 &new_coalesce.rules[i]);
11588 err = rdev_set_coalesce(rdev, &new_coalesce);
11592 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
11597 cfg80211_rdev_free_coalesce(rdev);
11598 rdev->coalesce = n_coalesce;
11602 for (i = 0; i < new_coalesce.n_rules; i++) {
11603 tmp_rule = &new_coalesce.rules[i];
11604 for (j = 0; j < tmp_rule->n_patterns; j++)
11605 kfree(tmp_rule->patterns[j].mask);
11606 kfree(tmp_rule->patterns);
11608 kfree(new_coalesce.rules);
11613 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
11615 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11616 struct net_device *dev = info->user_ptr[1];
11617 struct wireless_dev *wdev = dev->ieee80211_ptr;
11618 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
11619 struct cfg80211_gtk_rekey_data rekey_data;
11622 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
11625 err = nla_parse_nested(tb, MAX_NL80211_REKEY_DATA,
11626 info->attrs[NL80211_ATTR_REKEY_DATA],
11627 nl80211_rekey_policy, info->extack);
11631 if (!tb[NL80211_REKEY_DATA_REPLAY_CTR] || !tb[NL80211_REKEY_DATA_KEK] ||
11632 !tb[NL80211_REKEY_DATA_KCK])
11634 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
11636 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
11638 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
11641 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
11642 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
11643 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
11646 if (!wdev->current_bss) {
11651 if (!rdev->ops->set_rekey_data) {
11656 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
11662 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
11663 struct genl_info *info)
11665 struct net_device *dev = info->user_ptr[1];
11666 struct wireless_dev *wdev = dev->ieee80211_ptr;
11668 if (wdev->iftype != NL80211_IFTYPE_AP &&
11669 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11672 if (wdev->ap_unexpected_nlportid)
11675 wdev->ap_unexpected_nlportid = info->snd_portid;
11679 static int nl80211_probe_client(struct sk_buff *skb,
11680 struct genl_info *info)
11682 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11683 struct net_device *dev = info->user_ptr[1];
11684 struct wireless_dev *wdev = dev->ieee80211_ptr;
11685 struct sk_buff *msg;
11691 if (wdev->iftype != NL80211_IFTYPE_AP &&
11692 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11693 return -EOPNOTSUPP;
11695 if (!info->attrs[NL80211_ATTR_MAC])
11698 if (!rdev->ops->probe_client)
11699 return -EOPNOTSUPP;
11701 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11705 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11706 NL80211_CMD_PROBE_CLIENT);
11712 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
11714 err = rdev_probe_client(rdev, dev, addr, &cookie);
11718 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
11720 goto nla_put_failure;
11722 genlmsg_end(msg, hdr);
11724 return genlmsg_reply(msg, info);
11733 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
11735 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11736 struct cfg80211_beacon_registration *reg, *nreg;
11739 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
11740 return -EOPNOTSUPP;
11742 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
11746 /* First, check if already registered. */
11747 spin_lock_bh(&rdev->beacon_registrations_lock);
11748 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11749 if (reg->nlportid == info->snd_portid) {
11754 /* Add it to the list */
11755 nreg->nlportid = info->snd_portid;
11756 list_add(&nreg->list, &rdev->beacon_registrations);
11758 spin_unlock_bh(&rdev->beacon_registrations_lock);
11762 spin_unlock_bh(&rdev->beacon_registrations_lock);
11767 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
11769 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11770 struct wireless_dev *wdev = info->user_ptr[1];
11773 if (!rdev->ops->start_p2p_device)
11774 return -EOPNOTSUPP;
11776 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11777 return -EOPNOTSUPP;
11779 if (wdev_running(wdev))
11782 if (rfkill_blocked(rdev->rfkill))
11785 err = rdev_start_p2p_device(rdev, wdev);
11789 wdev->is_running = true;
11795 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
11797 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11798 struct wireless_dev *wdev = info->user_ptr[1];
11800 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11801 return -EOPNOTSUPP;
11803 if (!rdev->ops->stop_p2p_device)
11804 return -EOPNOTSUPP;
11806 cfg80211_stop_p2p_device(rdev, wdev);
11811 static int nl80211_start_nan(struct sk_buff *skb, struct genl_info *info)
11813 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11814 struct wireless_dev *wdev = info->user_ptr[1];
11815 struct cfg80211_nan_conf conf = {};
11818 if (wdev->iftype != NL80211_IFTYPE_NAN)
11819 return -EOPNOTSUPP;
11821 if (wdev_running(wdev))
11824 if (rfkill_blocked(rdev->rfkill))
11827 if (!info->attrs[NL80211_ATTR_NAN_MASTER_PREF])
11831 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
11833 if (info->attrs[NL80211_ATTR_BANDS]) {
11834 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
11836 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
11837 return -EOPNOTSUPP;
11839 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
11842 conf.bands = bands;
11845 err = rdev_start_nan(rdev, wdev, &conf);
11849 wdev->is_running = true;
11855 static int nl80211_stop_nan(struct sk_buff *skb, struct genl_info *info)
11857 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11858 struct wireless_dev *wdev = info->user_ptr[1];
11860 if (wdev->iftype != NL80211_IFTYPE_NAN)
11861 return -EOPNOTSUPP;
11863 cfg80211_stop_nan(rdev, wdev);
11868 static int validate_nan_filter(struct nlattr *filter_attr)
11870 struct nlattr *attr;
11871 int len = 0, n_entries = 0, rem;
11873 nla_for_each_nested(attr, filter_attr, rem) {
11874 len += nla_len(attr);
11884 static int handle_nan_filter(struct nlattr *attr_filter,
11885 struct cfg80211_nan_func *func,
11888 struct nlattr *attr;
11889 int n_entries, rem, i;
11890 struct cfg80211_nan_func_filter *filter;
11892 n_entries = validate_nan_filter(attr_filter);
11896 BUILD_BUG_ON(sizeof(*func->rx_filters) != sizeof(*func->tx_filters));
11898 filter = kcalloc(n_entries, sizeof(*func->rx_filters), GFP_KERNEL);
11903 nla_for_each_nested(attr, attr_filter, rem) {
11904 filter[i].filter = nla_memdup(attr, GFP_KERNEL);
11905 filter[i].len = nla_len(attr);
11909 func->num_tx_filters = n_entries;
11910 func->tx_filters = filter;
11912 func->num_rx_filters = n_entries;
11913 func->rx_filters = filter;
11919 static int nl80211_nan_add_func(struct sk_buff *skb,
11920 struct genl_info *info)
11922 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11923 struct wireless_dev *wdev = info->user_ptr[1];
11924 struct nlattr *tb[NUM_NL80211_NAN_FUNC_ATTR], *func_attr;
11925 struct cfg80211_nan_func *func;
11926 struct sk_buff *msg = NULL;
11930 if (wdev->iftype != NL80211_IFTYPE_NAN)
11931 return -EOPNOTSUPP;
11933 if (!wdev_running(wdev))
11936 if (!info->attrs[NL80211_ATTR_NAN_FUNC])
11939 err = nla_parse_nested(tb, NL80211_NAN_FUNC_ATTR_MAX,
11940 info->attrs[NL80211_ATTR_NAN_FUNC],
11941 nl80211_nan_func_policy, info->extack);
11945 func = kzalloc(sizeof(*func), GFP_KERNEL);
11949 func->cookie = cfg80211_assign_cookie(rdev);
11951 if (!tb[NL80211_NAN_FUNC_TYPE] ||
11952 nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]) > NL80211_NAN_FUNC_MAX_TYPE) {
11958 func->type = nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]);
11960 if (!tb[NL80211_NAN_FUNC_SERVICE_ID]) {
11965 memcpy(func->service_id, nla_data(tb[NL80211_NAN_FUNC_SERVICE_ID]),
11966 sizeof(func->service_id));
11968 func->close_range =
11969 nla_get_flag(tb[NL80211_NAN_FUNC_CLOSE_RANGE]);
11971 if (tb[NL80211_NAN_FUNC_SERVICE_INFO]) {
11972 func->serv_spec_info_len =
11973 nla_len(tb[NL80211_NAN_FUNC_SERVICE_INFO]);
11974 func->serv_spec_info =
11975 kmemdup(nla_data(tb[NL80211_NAN_FUNC_SERVICE_INFO]),
11976 func->serv_spec_info_len,
11978 if (!func->serv_spec_info) {
11984 if (tb[NL80211_NAN_FUNC_TTL])
11985 func->ttl = nla_get_u32(tb[NL80211_NAN_FUNC_TTL]);
11987 switch (func->type) {
11988 case NL80211_NAN_FUNC_PUBLISH:
11989 if (!tb[NL80211_NAN_FUNC_PUBLISH_TYPE]) {
11994 func->publish_type =
11995 nla_get_u8(tb[NL80211_NAN_FUNC_PUBLISH_TYPE]);
11996 func->publish_bcast =
11997 nla_get_flag(tb[NL80211_NAN_FUNC_PUBLISH_BCAST]);
11999 if ((!(func->publish_type & NL80211_NAN_SOLICITED_PUBLISH)) &&
12000 func->publish_bcast) {
12005 case NL80211_NAN_FUNC_SUBSCRIBE:
12006 func->subscribe_active =
12007 nla_get_flag(tb[NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE]);
12009 case NL80211_NAN_FUNC_FOLLOW_UP:
12010 if (!tb[NL80211_NAN_FUNC_FOLLOW_UP_ID] ||
12011 !tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] ||
12012 !tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]) {
12017 func->followup_id =
12018 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_ID]);
12019 func->followup_reqid =
12020 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID]);
12021 memcpy(func->followup_dest.addr,
12022 nla_data(tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]),
12023 sizeof(func->followup_dest.addr));
12034 if (tb[NL80211_NAN_FUNC_SRF]) {
12035 struct nlattr *srf_tb[NUM_NL80211_NAN_SRF_ATTR];
12037 err = nla_parse_nested(srf_tb, NL80211_NAN_SRF_ATTR_MAX,
12038 tb[NL80211_NAN_FUNC_SRF],
12039 nl80211_nan_srf_policy, info->extack);
12043 func->srf_include =
12044 nla_get_flag(srf_tb[NL80211_NAN_SRF_INCLUDE]);
12046 if (srf_tb[NL80211_NAN_SRF_BF]) {
12047 if (srf_tb[NL80211_NAN_SRF_MAC_ADDRS] ||
12048 !srf_tb[NL80211_NAN_SRF_BF_IDX]) {
12054 nla_len(srf_tb[NL80211_NAN_SRF_BF]);
12056 kmemdup(nla_data(srf_tb[NL80211_NAN_SRF_BF]),
12057 func->srf_bf_len, GFP_KERNEL);
12058 if (!func->srf_bf) {
12064 nla_get_u8(srf_tb[NL80211_NAN_SRF_BF_IDX]);
12066 struct nlattr *attr, *mac_attr =
12067 srf_tb[NL80211_NAN_SRF_MAC_ADDRS];
12068 int n_entries, rem, i = 0;
12075 n_entries = validate_acl_mac_addrs(mac_attr);
12076 if (n_entries <= 0) {
12081 func->srf_num_macs = n_entries;
12083 kcalloc(n_entries, sizeof(*func->srf_macs),
12085 if (!func->srf_macs) {
12090 nla_for_each_nested(attr, mac_attr, rem)
12091 memcpy(func->srf_macs[i++].addr, nla_data(attr),
12092 sizeof(*func->srf_macs));
12096 if (tb[NL80211_NAN_FUNC_TX_MATCH_FILTER]) {
12097 err = handle_nan_filter(tb[NL80211_NAN_FUNC_TX_MATCH_FILTER],
12103 if (tb[NL80211_NAN_FUNC_RX_MATCH_FILTER]) {
12104 err = handle_nan_filter(tb[NL80211_NAN_FUNC_RX_MATCH_FILTER],
12110 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12116 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12117 NL80211_CMD_ADD_NAN_FUNCTION);
12118 /* This can't really happen - we just allocated 4KB */
12119 if (WARN_ON(!hdr)) {
12124 err = rdev_add_nan_func(rdev, wdev, func);
12127 cfg80211_free_nan_func(func);
12132 /* propagate the instance id and cookie to userspace */
12133 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, func->cookie,
12135 goto nla_put_failure;
12137 func_attr = nla_nest_start(msg, NL80211_ATTR_NAN_FUNC);
12139 goto nla_put_failure;
12141 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID,
12142 func->instance_id))
12143 goto nla_put_failure;
12145 nla_nest_end(msg, func_attr);
12147 genlmsg_end(msg, hdr);
12148 return genlmsg_reply(msg, info);
12155 static int nl80211_nan_del_func(struct sk_buff *skb,
12156 struct genl_info *info)
12158 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12159 struct wireless_dev *wdev = info->user_ptr[1];
12162 if (wdev->iftype != NL80211_IFTYPE_NAN)
12163 return -EOPNOTSUPP;
12165 if (!wdev_running(wdev))
12168 if (!info->attrs[NL80211_ATTR_COOKIE])
12171 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
12173 rdev_del_nan_func(rdev, wdev, cookie);
12178 static int nl80211_nan_change_config(struct sk_buff *skb,
12179 struct genl_info *info)
12181 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12182 struct wireless_dev *wdev = info->user_ptr[1];
12183 struct cfg80211_nan_conf conf = {};
12186 if (wdev->iftype != NL80211_IFTYPE_NAN)
12187 return -EOPNOTSUPP;
12189 if (!wdev_running(wdev))
12192 if (info->attrs[NL80211_ATTR_NAN_MASTER_PREF]) {
12194 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12195 if (conf.master_pref <= 1 || conf.master_pref == 255)
12198 changed |= CFG80211_NAN_CONF_CHANGED_PREF;
12201 if (info->attrs[NL80211_ATTR_BANDS]) {
12202 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12204 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12205 return -EOPNOTSUPP;
12207 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12210 conf.bands = bands;
12211 changed |= CFG80211_NAN_CONF_CHANGED_BANDS;
12217 return rdev_nan_change_conf(rdev, wdev, &conf, changed);
12220 void cfg80211_nan_match(struct wireless_dev *wdev,
12221 struct cfg80211_nan_match_params *match, gfp_t gfp)
12223 struct wiphy *wiphy = wdev->wiphy;
12224 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12225 struct nlattr *match_attr, *local_func_attr, *peer_func_attr;
12226 struct sk_buff *msg;
12229 if (WARN_ON(!match->inst_id || !match->peer_inst_id || !match->addr))
12232 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12236 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NAN_MATCH);
12242 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12243 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12244 wdev->netdev->ifindex)) ||
12245 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12247 goto nla_put_failure;
12249 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, match->cookie,
12250 NL80211_ATTR_PAD) ||
12251 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, match->addr))
12252 goto nla_put_failure;
12254 match_attr = nla_nest_start(msg, NL80211_ATTR_NAN_MATCH);
12256 goto nla_put_failure;
12258 local_func_attr = nla_nest_start(msg, NL80211_NAN_MATCH_FUNC_LOCAL);
12259 if (!local_func_attr)
12260 goto nla_put_failure;
12262 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->inst_id))
12263 goto nla_put_failure;
12265 nla_nest_end(msg, local_func_attr);
12267 peer_func_attr = nla_nest_start(msg, NL80211_NAN_MATCH_FUNC_PEER);
12268 if (!peer_func_attr)
12269 goto nla_put_failure;
12271 if (nla_put_u8(msg, NL80211_NAN_FUNC_TYPE, match->type) ||
12272 nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->peer_inst_id))
12273 goto nla_put_failure;
12275 if (match->info && match->info_len &&
12276 nla_put(msg, NL80211_NAN_FUNC_SERVICE_INFO, match->info_len,
12278 goto nla_put_failure;
12280 nla_nest_end(msg, peer_func_attr);
12281 nla_nest_end(msg, match_attr);
12282 genlmsg_end(msg, hdr);
12284 if (!wdev->owner_nlportid)
12285 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12286 msg, 0, NL80211_MCGRP_NAN, gfp);
12288 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12289 wdev->owner_nlportid);
12296 EXPORT_SYMBOL(cfg80211_nan_match);
12298 void cfg80211_nan_func_terminated(struct wireless_dev *wdev,
12300 enum nl80211_nan_func_term_reason reason,
12301 u64 cookie, gfp_t gfp)
12303 struct wiphy *wiphy = wdev->wiphy;
12304 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12305 struct sk_buff *msg;
12306 struct nlattr *func_attr;
12309 if (WARN_ON(!inst_id))
12312 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12316 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_NAN_FUNCTION);
12322 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12323 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12324 wdev->netdev->ifindex)) ||
12325 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12327 goto nla_put_failure;
12329 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
12331 goto nla_put_failure;
12333 func_attr = nla_nest_start(msg, NL80211_ATTR_NAN_FUNC);
12335 goto nla_put_failure;
12337 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, inst_id) ||
12338 nla_put_u8(msg, NL80211_NAN_FUNC_TERM_REASON, reason))
12339 goto nla_put_failure;
12341 nla_nest_end(msg, func_attr);
12342 genlmsg_end(msg, hdr);
12344 if (!wdev->owner_nlportid)
12345 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12346 msg, 0, NL80211_MCGRP_NAN, gfp);
12348 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12349 wdev->owner_nlportid);
12356 EXPORT_SYMBOL(cfg80211_nan_func_terminated);
12358 static int nl80211_get_protocol_features(struct sk_buff *skb,
12359 struct genl_info *info)
12362 struct sk_buff *msg;
12364 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12368 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12369 NL80211_CMD_GET_PROTOCOL_FEATURES);
12371 goto nla_put_failure;
12373 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
12374 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
12375 goto nla_put_failure;
12377 genlmsg_end(msg, hdr);
12378 return genlmsg_reply(msg, info);
12385 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
12387 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12388 struct cfg80211_update_ft_ies_params ft_params;
12389 struct net_device *dev = info->user_ptr[1];
12391 if (!rdev->ops->update_ft_ies)
12392 return -EOPNOTSUPP;
12394 if (!info->attrs[NL80211_ATTR_MDID] ||
12395 !info->attrs[NL80211_ATTR_IE])
12398 memset(&ft_params, 0, sizeof(ft_params));
12399 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
12400 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
12401 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
12403 return rdev_update_ft_ies(rdev, dev, &ft_params);
12406 static int nl80211_crit_protocol_start(struct sk_buff *skb,
12407 struct genl_info *info)
12409 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12410 struct wireless_dev *wdev = info->user_ptr[1];
12411 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
12415 if (!rdev->ops->crit_proto_start)
12416 return -EOPNOTSUPP;
12418 if (WARN_ON(!rdev->ops->crit_proto_stop))
12421 if (rdev->crit_proto_nlportid)
12424 /* determine protocol if provided */
12425 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
12426 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
12428 if (proto >= NUM_NL80211_CRIT_PROTO)
12431 /* timeout must be provided */
12432 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
12436 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
12438 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
12441 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
12443 rdev->crit_proto_nlportid = info->snd_portid;
12448 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
12449 struct genl_info *info)
12451 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12452 struct wireless_dev *wdev = info->user_ptr[1];
12454 if (!rdev->ops->crit_proto_stop)
12455 return -EOPNOTSUPP;
12457 if (rdev->crit_proto_nlportid) {
12458 rdev->crit_proto_nlportid = 0;
12459 rdev_crit_proto_stop(rdev, wdev);
12464 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
12466 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12467 struct wireless_dev *wdev =
12468 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
12472 if (!rdev->wiphy.vendor_commands)
12473 return -EOPNOTSUPP;
12475 if (IS_ERR(wdev)) {
12476 err = PTR_ERR(wdev);
12477 if (err != -EINVAL)
12480 } else if (wdev->wiphy != &rdev->wiphy) {
12484 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
12485 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
12488 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
12489 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
12490 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
12491 const struct wiphy_vendor_command *vcmd;
12495 vcmd = &rdev->wiphy.vendor_commands[i];
12497 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12500 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12501 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12504 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12508 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12509 if (!wdev_running(wdev))
12514 return -EOPNOTSUPP;
12519 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
12520 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12521 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12524 rdev->cur_cmd_info = info;
12525 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
12527 rdev->cur_cmd_info = NULL;
12531 return -EOPNOTSUPP;
12534 static int nl80211_prepare_vendor_dump(struct sk_buff *skb,
12535 struct netlink_callback *cb,
12536 struct cfg80211_registered_device **rdev,
12537 struct wireless_dev **wdev)
12539 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
12545 unsigned int data_len = 0;
12548 /* subtract the 1 again here */
12549 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
12550 struct wireless_dev *tmp;
12554 *rdev = wiphy_to_rdev(wiphy);
12558 list_for_each_entry(tmp, &wiphy->wdev_list, list) {
12559 if (tmp->identifier == cb->args[1] - 1) {
12566 /* keep rtnl locked in successful case */
12570 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize, attrbuf,
12571 nl80211_fam.maxattr, nl80211_policy, NULL);
12575 if (!attrbuf[NL80211_ATTR_VENDOR_ID] ||
12576 !attrbuf[NL80211_ATTR_VENDOR_SUBCMD])
12579 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk), attrbuf);
12583 *rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
12585 return PTR_ERR(*rdev);
12587 vid = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_ID]);
12588 subcmd = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_SUBCMD]);
12590 for (i = 0; i < (*rdev)->wiphy.n_vendor_commands; i++) {
12591 const struct wiphy_vendor_command *vcmd;
12593 vcmd = &(*rdev)->wiphy.vendor_commands[i];
12595 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12599 return -EOPNOTSUPP;
12606 return -EOPNOTSUPP;
12608 if (attrbuf[NL80211_ATTR_VENDOR_DATA]) {
12609 data = nla_data(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12610 data_len = nla_len(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12613 /* 0 is the first index - add 1 to parse only once */
12614 cb->args[0] = (*rdev)->wiphy_idx + 1;
12615 /* add 1 to know if it was NULL */
12616 cb->args[1] = *wdev ? (*wdev)->identifier + 1 : 0;
12617 cb->args[2] = vcmd_idx;
12618 cb->args[3] = (unsigned long)data;
12619 cb->args[4] = data_len;
12621 /* keep rtnl locked in successful case */
12625 static int nl80211_vendor_cmd_dump(struct sk_buff *skb,
12626 struct netlink_callback *cb)
12628 struct cfg80211_registered_device *rdev;
12629 struct wireless_dev *wdev;
12630 unsigned int vcmd_idx;
12631 const struct wiphy_vendor_command *vcmd;
12635 struct nlattr *vendor_data;
12638 err = nl80211_prepare_vendor_dump(skb, cb, &rdev, &wdev);
12642 vcmd_idx = cb->args[2];
12643 data = (void *)cb->args[3];
12644 data_len = cb->args[4];
12645 vcmd = &rdev->wiphy.vendor_commands[vcmd_idx];
12647 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12648 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12653 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12659 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12660 if (!wdev_running(wdev)) {
12668 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
12669 cb->nlh->nlmsg_seq, NLM_F_MULTI,
12670 NL80211_CMD_VENDOR);
12674 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12675 (wdev && nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
12677 NL80211_ATTR_PAD))) {
12678 genlmsg_cancel(skb, hdr);
12682 vendor_data = nla_nest_start(skb, NL80211_ATTR_VENDOR_DATA);
12683 if (!vendor_data) {
12684 genlmsg_cancel(skb, hdr);
12688 err = vcmd->dumpit(&rdev->wiphy, wdev, skb, data, data_len,
12689 (unsigned long *)&cb->args[5]);
12690 nla_nest_end(skb, vendor_data);
12692 if (err == -ENOBUFS || err == -ENOENT) {
12693 genlmsg_cancel(skb, hdr);
12696 genlmsg_cancel(skb, hdr);
12700 genlmsg_end(skb, hdr);
12709 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
12710 enum nl80211_commands cmd,
12711 enum nl80211_attrs attr,
12714 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12716 if (WARN_ON(!rdev->cur_cmd_info))
12719 return __cfg80211_alloc_vendor_skb(rdev, NULL, approxlen,
12720 rdev->cur_cmd_info->snd_portid,
12721 rdev->cur_cmd_info->snd_seq,
12722 cmd, attr, NULL, GFP_KERNEL);
12724 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
12726 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
12728 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
12729 void *hdr = ((void **)skb->cb)[1];
12730 struct nlattr *data = ((void **)skb->cb)[2];
12732 /* clear CB data for netlink core to own from now on */
12733 memset(skb->cb, 0, sizeof(skb->cb));
12735 if (WARN_ON(!rdev->cur_cmd_info)) {
12740 nla_nest_end(skb, data);
12741 genlmsg_end(skb, hdr);
12742 return genlmsg_reply(skb, rdev->cur_cmd_info);
12744 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
12746 unsigned int cfg80211_vendor_cmd_get_sender(struct wiphy *wiphy)
12748 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12750 if (WARN_ON(!rdev->cur_cmd_info))
12753 return rdev->cur_cmd_info->snd_portid;
12755 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_get_sender);
12757 static int nl80211_set_qos_map(struct sk_buff *skb,
12758 struct genl_info *info)
12760 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12761 struct cfg80211_qos_map *qos_map = NULL;
12762 struct net_device *dev = info->user_ptr[1];
12763 u8 *pos, len, num_des, des_len, des;
12766 if (!rdev->ops->set_qos_map)
12767 return -EOPNOTSUPP;
12769 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
12770 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
12771 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
12773 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
12774 len > IEEE80211_QOS_MAP_LEN_MAX)
12777 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
12781 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
12783 des_len = num_des *
12784 sizeof(struct cfg80211_dscp_exception);
12785 memcpy(qos_map->dscp_exception, pos, des_len);
12786 qos_map->num_des = num_des;
12787 for (des = 0; des < num_des; des++) {
12788 if (qos_map->dscp_exception[des].up > 7) {
12795 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
12798 wdev_lock(dev->ieee80211_ptr);
12799 ret = nl80211_key_allowed(dev->ieee80211_ptr);
12801 ret = rdev_set_qos_map(rdev, dev, qos_map);
12802 wdev_unlock(dev->ieee80211_ptr);
12808 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
12810 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12811 struct net_device *dev = info->user_ptr[1];
12812 struct wireless_dev *wdev = dev->ieee80211_ptr;
12815 u16 admitted_time = 0;
12818 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
12819 return -EOPNOTSUPP;
12821 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
12822 !info->attrs[NL80211_ATTR_USER_PRIO])
12825 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
12826 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
12828 /* WMM uses TIDs 0-7 even for TSPEC */
12829 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
12830 /* TODO: handle 802.11 TSPEC/admission control
12831 * need more attributes for that (e.g. BA session requirement);
12832 * change the WMM adminssion test above to allow both then
12837 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
12839 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
12841 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
12842 if (!admitted_time)
12847 switch (wdev->iftype) {
12848 case NL80211_IFTYPE_STATION:
12849 case NL80211_IFTYPE_P2P_CLIENT:
12850 if (wdev->current_bss)
12859 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
12866 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
12868 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12869 struct net_device *dev = info->user_ptr[1];
12870 struct wireless_dev *wdev = dev->ieee80211_ptr;
12875 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
12878 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
12879 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
12882 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
12888 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
12889 struct genl_info *info)
12891 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12892 struct net_device *dev = info->user_ptr[1];
12893 struct wireless_dev *wdev = dev->ieee80211_ptr;
12894 struct cfg80211_chan_def chandef = {};
12899 if (!rdev->ops->tdls_channel_switch ||
12900 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
12901 return -EOPNOTSUPP;
12903 switch (dev->ieee80211_ptr->iftype) {
12904 case NL80211_IFTYPE_STATION:
12905 case NL80211_IFTYPE_P2P_CLIENT:
12908 return -EOPNOTSUPP;
12911 if (!info->attrs[NL80211_ATTR_MAC] ||
12912 !info->attrs[NL80211_ATTR_OPER_CLASS])
12915 err = nl80211_parse_chandef(rdev, info, &chandef);
12920 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
12921 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
12922 * specification is not defined for them.
12924 if (chandef.chan->band == NL80211_BAND_2GHZ &&
12925 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
12926 chandef.width != NL80211_CHAN_WIDTH_20)
12929 /* we will be active on the TDLS link */
12930 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
12934 /* don't allow switching to DFS channels */
12935 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
12938 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
12939 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
12942 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
12948 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
12949 struct genl_info *info)
12951 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12952 struct net_device *dev = info->user_ptr[1];
12953 struct wireless_dev *wdev = dev->ieee80211_ptr;
12956 if (!rdev->ops->tdls_channel_switch ||
12957 !rdev->ops->tdls_cancel_channel_switch ||
12958 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
12959 return -EOPNOTSUPP;
12961 switch (dev->ieee80211_ptr->iftype) {
12962 case NL80211_IFTYPE_STATION:
12963 case NL80211_IFTYPE_P2P_CLIENT:
12966 return -EOPNOTSUPP;
12969 if (!info->attrs[NL80211_ATTR_MAC])
12972 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
12975 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
12981 static int nl80211_set_multicast_to_unicast(struct sk_buff *skb,
12982 struct genl_info *info)
12984 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12985 struct net_device *dev = info->user_ptr[1];
12986 struct wireless_dev *wdev = dev->ieee80211_ptr;
12987 const struct nlattr *nla;
12990 if (!rdev->ops->set_multicast_to_unicast)
12991 return -EOPNOTSUPP;
12993 if (wdev->iftype != NL80211_IFTYPE_AP &&
12994 wdev->iftype != NL80211_IFTYPE_P2P_GO)
12995 return -EOPNOTSUPP;
12997 nla = info->attrs[NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED];
12998 enabled = nla_get_flag(nla);
13000 return rdev_set_multicast_to_unicast(rdev, dev, enabled);
13003 static int nl80211_set_pmk(struct sk_buff *skb, struct genl_info *info)
13005 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13006 struct net_device *dev = info->user_ptr[1];
13007 struct wireless_dev *wdev = dev->ieee80211_ptr;
13008 struct cfg80211_pmk_conf pmk_conf = {};
13011 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13012 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13013 return -EOPNOTSUPP;
13015 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13016 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13017 return -EOPNOTSUPP;
13019 if (!info->attrs[NL80211_ATTR_MAC] || !info->attrs[NL80211_ATTR_PMK])
13023 if (!wdev->current_bss) {
13028 pmk_conf.aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13029 if (memcmp(pmk_conf.aa, wdev->current_bss->pub.bssid, ETH_ALEN)) {
13034 pmk_conf.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
13035 pmk_conf.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
13036 if (pmk_conf.pmk_len != WLAN_PMK_LEN &&
13037 pmk_conf.pmk_len != WLAN_PMK_LEN_SUITE_B_192) {
13042 if (info->attrs[NL80211_ATTR_PMKR0_NAME]) {
13043 int r0_name_len = nla_len(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13045 if (r0_name_len != WLAN_PMK_NAME_LEN) {
13050 pmk_conf.pmk_r0_name =
13051 nla_data(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13054 ret = rdev_set_pmk(rdev, dev, &pmk_conf);
13060 static int nl80211_del_pmk(struct sk_buff *skb, struct genl_info *info)
13062 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13063 struct net_device *dev = info->user_ptr[1];
13064 struct wireless_dev *wdev = dev->ieee80211_ptr;
13068 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13069 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13070 return -EOPNOTSUPP;
13072 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13073 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13074 return -EOPNOTSUPP;
13076 if (!info->attrs[NL80211_ATTR_MAC])
13080 aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13081 ret = rdev_del_pmk(rdev, dev, aa);
13087 static int nl80211_external_auth(struct sk_buff *skb, struct genl_info *info)
13089 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13090 struct net_device *dev = info->user_ptr[1];
13091 struct cfg80211_external_auth_params params;
13093 if (!rdev->ops->external_auth)
13094 return -EOPNOTSUPP;
13096 if (!info->attrs[NL80211_ATTR_SSID] &&
13097 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
13098 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
13101 if (!info->attrs[NL80211_ATTR_BSSID])
13104 if (!info->attrs[NL80211_ATTR_STATUS_CODE])
13107 memset(¶ms, 0, sizeof(params));
13109 if (info->attrs[NL80211_ATTR_SSID]) {
13110 params.ssid.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
13111 if (params.ssid.ssid_len == 0 ||
13112 params.ssid.ssid_len > IEEE80211_MAX_SSID_LEN)
13114 memcpy(params.ssid.ssid,
13115 nla_data(info->attrs[NL80211_ATTR_SSID]),
13116 params.ssid.ssid_len);
13119 memcpy(params.bssid, nla_data(info->attrs[NL80211_ATTR_BSSID]),
13122 params.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13124 if (info->attrs[NL80211_ATTR_PMKID])
13125 params.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
13127 return rdev_external_auth(rdev, dev, ¶ms);
13130 static int nl80211_tx_control_port(struct sk_buff *skb, struct genl_info *info)
13132 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13133 struct net_device *dev = info->user_ptr[1];
13134 struct wireless_dev *wdev = dev->ieee80211_ptr;
13142 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13143 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
13144 return -EOPNOTSUPP;
13146 if (!rdev->ops->tx_control_port)
13147 return -EOPNOTSUPP;
13149 if (!info->attrs[NL80211_ATTR_FRAME] ||
13150 !info->attrs[NL80211_ATTR_MAC] ||
13151 !info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
13152 GENL_SET_ERR_MSG(info, "Frame, MAC or ethertype missing");
13158 switch (wdev->iftype) {
13159 case NL80211_IFTYPE_AP:
13160 case NL80211_IFTYPE_P2P_GO:
13161 case NL80211_IFTYPE_MESH_POINT:
13163 case NL80211_IFTYPE_ADHOC:
13164 case NL80211_IFTYPE_STATION:
13165 case NL80211_IFTYPE_P2P_CLIENT:
13166 if (wdev->current_bss)
13177 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13178 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13179 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13180 proto = nla_get_u16(info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
13182 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT]);
13184 return rdev_tx_control_port(rdev, dev, buf, len,
13185 dest, cpu_to_be16(proto), noencrypt);
13192 static int nl80211_get_ftm_responder_stats(struct sk_buff *skb,
13193 struct genl_info *info)
13195 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13196 struct net_device *dev = info->user_ptr[1];
13197 struct wireless_dev *wdev = dev->ieee80211_ptr;
13198 struct cfg80211_ftm_responder_stats ftm_stats = {};
13199 struct sk_buff *msg;
13201 struct nlattr *ftm_stats_attr;
13204 if (wdev->iftype != NL80211_IFTYPE_AP || !wdev->beacon_interval)
13205 return -EOPNOTSUPP;
13207 err = rdev_get_ftm_responder_stats(rdev, dev, &ftm_stats);
13211 if (!ftm_stats.filled)
13214 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
13218 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
13219 NL80211_CMD_GET_FTM_RESPONDER_STATS);
13223 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
13224 goto nla_put_failure;
13226 ftm_stats_attr = nla_nest_start(msg, NL80211_ATTR_FTM_RESPONDER_STATS);
13227 if (!ftm_stats_attr)
13228 goto nla_put_failure;
13230 #define SET_FTM(field, name, type) \
13231 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13232 nla_put_ ## type(msg, NL80211_FTM_STATS_ ## name, \
13233 ftm_stats.field)) \
13234 goto nla_put_failure; } while (0)
13235 #define SET_FTM_U64(field, name) \
13236 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13237 nla_put_u64_64bit(msg, NL80211_FTM_STATS_ ## name, \
13238 ftm_stats.field, NL80211_FTM_STATS_PAD)) \
13239 goto nla_put_failure; } while (0)
13241 SET_FTM(success_num, SUCCESS_NUM, u32);
13242 SET_FTM(partial_num, PARTIAL_NUM, u32);
13243 SET_FTM(failed_num, FAILED_NUM, u32);
13244 SET_FTM(asap_num, ASAP_NUM, u32);
13245 SET_FTM(non_asap_num, NON_ASAP_NUM, u32);
13246 SET_FTM_U64(total_duration_ms, TOTAL_DURATION_MSEC);
13247 SET_FTM(unknown_triggers_num, UNKNOWN_TRIGGERS_NUM, u32);
13248 SET_FTM(reschedule_requests_num, RESCHEDULE_REQUESTS_NUM, u32);
13249 SET_FTM(out_of_window_triggers_num, OUT_OF_WINDOW_TRIGGERS_NUM, u32);
13252 nla_nest_end(msg, ftm_stats_attr);
13254 genlmsg_end(msg, hdr);
13255 return genlmsg_reply(msg, info);
13262 #define NL80211_FLAG_NEED_WIPHY 0x01
13263 #define NL80211_FLAG_NEED_NETDEV 0x02
13264 #define NL80211_FLAG_NEED_RTNL 0x04
13265 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
13266 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
13267 NL80211_FLAG_CHECK_NETDEV_UP)
13268 #define NL80211_FLAG_NEED_WDEV 0x10
13269 /* If a netdev is associated, it must be UP, P2P must be started */
13270 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
13271 NL80211_FLAG_CHECK_NETDEV_UP)
13272 #define NL80211_FLAG_CLEAR_SKB 0x20
13274 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
13275 struct genl_info *info)
13277 struct cfg80211_registered_device *rdev;
13278 struct wireless_dev *wdev;
13279 struct net_device *dev;
13280 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
13285 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
13286 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
13287 if (IS_ERR(rdev)) {
13290 return PTR_ERR(rdev);
13292 info->user_ptr[0] = rdev;
13293 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
13294 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13297 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
13299 if (IS_ERR(wdev)) {
13302 return PTR_ERR(wdev);
13305 dev = wdev->netdev;
13306 rdev = wiphy_to_rdev(wdev->wiphy);
13308 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
13315 info->user_ptr[1] = dev;
13317 info->user_ptr[1] = wdev;
13320 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
13321 !wdev_running(wdev)) {
13330 info->user_ptr[0] = rdev;
13336 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
13337 struct genl_info *info)
13339 if (info->user_ptr[1]) {
13340 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13341 struct wireless_dev *wdev = info->user_ptr[1];
13344 dev_put(wdev->netdev);
13346 dev_put(info->user_ptr[1]);
13350 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
13353 /* If needed, clear the netlink message payload from the SKB
13354 * as it might contain key data that shouldn't stick around on
13355 * the heap after the SKB is freed. The netlink message header
13356 * is still needed for further processing, so leave it intact.
13358 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
13359 struct nlmsghdr *nlh = nlmsg_hdr(skb);
13361 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
13365 static const struct genl_ops nl80211_ops[] = {
13367 .cmd = NL80211_CMD_GET_WIPHY,
13368 .doit = nl80211_get_wiphy,
13369 .dumpit = nl80211_dump_wiphy,
13370 .done = nl80211_dump_wiphy_done,
13371 /* can be retrieved by unprivileged users */
13372 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13373 NL80211_FLAG_NEED_RTNL,
13376 .cmd = NL80211_CMD_SET_WIPHY,
13377 .doit = nl80211_set_wiphy,
13378 .flags = GENL_UNS_ADMIN_PERM,
13379 .internal_flags = NL80211_FLAG_NEED_RTNL,
13382 .cmd = NL80211_CMD_GET_INTERFACE,
13383 .doit = nl80211_get_interface,
13384 .dumpit = nl80211_dump_interface,
13385 /* can be retrieved by unprivileged users */
13386 .internal_flags = NL80211_FLAG_NEED_WDEV |
13387 NL80211_FLAG_NEED_RTNL,
13390 .cmd = NL80211_CMD_SET_INTERFACE,
13391 .doit = nl80211_set_interface,
13392 .flags = GENL_UNS_ADMIN_PERM,
13393 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13394 NL80211_FLAG_NEED_RTNL,
13397 .cmd = NL80211_CMD_NEW_INTERFACE,
13398 .doit = nl80211_new_interface,
13399 .flags = GENL_UNS_ADMIN_PERM,
13400 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13401 NL80211_FLAG_NEED_RTNL,
13404 .cmd = NL80211_CMD_DEL_INTERFACE,
13405 .doit = nl80211_del_interface,
13406 .flags = GENL_UNS_ADMIN_PERM,
13407 .internal_flags = NL80211_FLAG_NEED_WDEV |
13408 NL80211_FLAG_NEED_RTNL,
13411 .cmd = NL80211_CMD_GET_KEY,
13412 .doit = nl80211_get_key,
13413 .flags = GENL_UNS_ADMIN_PERM,
13414 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13415 NL80211_FLAG_NEED_RTNL,
13418 .cmd = NL80211_CMD_SET_KEY,
13419 .doit = nl80211_set_key,
13420 .flags = GENL_UNS_ADMIN_PERM,
13421 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13422 NL80211_FLAG_NEED_RTNL |
13423 NL80211_FLAG_CLEAR_SKB,
13426 .cmd = NL80211_CMD_NEW_KEY,
13427 .doit = nl80211_new_key,
13428 .flags = GENL_UNS_ADMIN_PERM,
13429 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13430 NL80211_FLAG_NEED_RTNL |
13431 NL80211_FLAG_CLEAR_SKB,
13434 .cmd = NL80211_CMD_DEL_KEY,
13435 .doit = nl80211_del_key,
13436 .flags = GENL_UNS_ADMIN_PERM,
13437 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13438 NL80211_FLAG_NEED_RTNL,
13441 .cmd = NL80211_CMD_SET_BEACON,
13442 .flags = GENL_UNS_ADMIN_PERM,
13443 .doit = nl80211_set_beacon,
13444 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13445 NL80211_FLAG_NEED_RTNL,
13448 .cmd = NL80211_CMD_START_AP,
13449 .flags = GENL_UNS_ADMIN_PERM,
13450 .doit = nl80211_start_ap,
13451 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13452 NL80211_FLAG_NEED_RTNL,
13455 .cmd = NL80211_CMD_STOP_AP,
13456 .flags = GENL_UNS_ADMIN_PERM,
13457 .doit = nl80211_stop_ap,
13458 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13459 NL80211_FLAG_NEED_RTNL,
13462 .cmd = NL80211_CMD_GET_STATION,
13463 .doit = nl80211_get_station,
13464 .dumpit = nl80211_dump_station,
13465 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13466 NL80211_FLAG_NEED_RTNL,
13469 .cmd = NL80211_CMD_SET_STATION,
13470 .doit = nl80211_set_station,
13471 .flags = GENL_UNS_ADMIN_PERM,
13472 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13473 NL80211_FLAG_NEED_RTNL,
13476 .cmd = NL80211_CMD_NEW_STATION,
13477 .doit = nl80211_new_station,
13478 .flags = GENL_UNS_ADMIN_PERM,
13479 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13480 NL80211_FLAG_NEED_RTNL,
13483 .cmd = NL80211_CMD_DEL_STATION,
13484 .doit = nl80211_del_station,
13485 .flags = GENL_UNS_ADMIN_PERM,
13486 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13487 NL80211_FLAG_NEED_RTNL,
13490 .cmd = NL80211_CMD_GET_MPATH,
13491 .doit = nl80211_get_mpath,
13492 .dumpit = nl80211_dump_mpath,
13493 .flags = GENL_UNS_ADMIN_PERM,
13494 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13495 NL80211_FLAG_NEED_RTNL,
13498 .cmd = NL80211_CMD_GET_MPP,
13499 .doit = nl80211_get_mpp,
13500 .dumpit = nl80211_dump_mpp,
13501 .flags = GENL_UNS_ADMIN_PERM,
13502 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13503 NL80211_FLAG_NEED_RTNL,
13506 .cmd = NL80211_CMD_SET_MPATH,
13507 .doit = nl80211_set_mpath,
13508 .flags = GENL_UNS_ADMIN_PERM,
13509 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13510 NL80211_FLAG_NEED_RTNL,
13513 .cmd = NL80211_CMD_NEW_MPATH,
13514 .doit = nl80211_new_mpath,
13515 .flags = GENL_UNS_ADMIN_PERM,
13516 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13517 NL80211_FLAG_NEED_RTNL,
13520 .cmd = NL80211_CMD_DEL_MPATH,
13521 .doit = nl80211_del_mpath,
13522 .flags = GENL_UNS_ADMIN_PERM,
13523 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13524 NL80211_FLAG_NEED_RTNL,
13527 .cmd = NL80211_CMD_SET_BSS,
13528 .doit = nl80211_set_bss,
13529 .flags = GENL_UNS_ADMIN_PERM,
13530 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13531 NL80211_FLAG_NEED_RTNL,
13534 .cmd = NL80211_CMD_GET_REG,
13535 .doit = nl80211_get_reg_do,
13536 .dumpit = nl80211_get_reg_dump,
13537 .internal_flags = NL80211_FLAG_NEED_RTNL,
13538 /* can be retrieved by unprivileged users */
13540 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
13542 .cmd = NL80211_CMD_SET_REG,
13543 .doit = nl80211_set_reg,
13544 .flags = GENL_ADMIN_PERM,
13545 .internal_flags = NL80211_FLAG_NEED_RTNL,
13549 .cmd = NL80211_CMD_REQ_SET_REG,
13550 .doit = nl80211_req_set_reg,
13551 .flags = GENL_ADMIN_PERM,
13554 .cmd = NL80211_CMD_RELOAD_REGDB,
13555 .doit = nl80211_reload_regdb,
13556 .flags = GENL_ADMIN_PERM,
13559 .cmd = NL80211_CMD_GET_MESH_CONFIG,
13560 .doit = nl80211_get_mesh_config,
13561 /* can be retrieved by unprivileged users */
13562 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13563 NL80211_FLAG_NEED_RTNL,
13566 .cmd = NL80211_CMD_SET_MESH_CONFIG,
13567 .doit = nl80211_update_mesh_config,
13568 .flags = GENL_UNS_ADMIN_PERM,
13569 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13570 NL80211_FLAG_NEED_RTNL,
13573 .cmd = NL80211_CMD_TRIGGER_SCAN,
13574 .doit = nl80211_trigger_scan,
13575 .flags = GENL_UNS_ADMIN_PERM,
13576 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13577 NL80211_FLAG_NEED_RTNL,
13580 .cmd = NL80211_CMD_ABORT_SCAN,
13581 .doit = nl80211_abort_scan,
13582 .flags = GENL_UNS_ADMIN_PERM,
13583 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13584 NL80211_FLAG_NEED_RTNL,
13587 .cmd = NL80211_CMD_GET_SCAN,
13588 .dumpit = nl80211_dump_scan,
13591 .cmd = NL80211_CMD_START_SCHED_SCAN,
13592 .doit = nl80211_start_sched_scan,
13593 .flags = GENL_UNS_ADMIN_PERM,
13594 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13595 NL80211_FLAG_NEED_RTNL,
13598 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
13599 .doit = nl80211_stop_sched_scan,
13600 .flags = GENL_UNS_ADMIN_PERM,
13601 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13602 NL80211_FLAG_NEED_RTNL,
13605 .cmd = NL80211_CMD_AUTHENTICATE,
13606 .doit = nl80211_authenticate,
13607 .flags = GENL_UNS_ADMIN_PERM,
13608 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13609 NL80211_FLAG_NEED_RTNL |
13610 NL80211_FLAG_CLEAR_SKB,
13613 .cmd = NL80211_CMD_ASSOCIATE,
13614 .doit = nl80211_associate,
13615 .flags = GENL_UNS_ADMIN_PERM,
13616 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13617 NL80211_FLAG_NEED_RTNL |
13618 NL80211_FLAG_CLEAR_SKB,
13621 .cmd = NL80211_CMD_DEAUTHENTICATE,
13622 .doit = nl80211_deauthenticate,
13623 .flags = GENL_UNS_ADMIN_PERM,
13624 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13625 NL80211_FLAG_NEED_RTNL,
13628 .cmd = NL80211_CMD_DISASSOCIATE,
13629 .doit = nl80211_disassociate,
13630 .flags = GENL_UNS_ADMIN_PERM,
13631 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13632 NL80211_FLAG_NEED_RTNL,
13635 .cmd = NL80211_CMD_JOIN_IBSS,
13636 .doit = nl80211_join_ibss,
13637 .flags = GENL_UNS_ADMIN_PERM,
13638 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13639 NL80211_FLAG_NEED_RTNL,
13642 .cmd = NL80211_CMD_LEAVE_IBSS,
13643 .doit = nl80211_leave_ibss,
13644 .flags = GENL_UNS_ADMIN_PERM,
13645 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13646 NL80211_FLAG_NEED_RTNL,
13648 #ifdef CONFIG_NL80211_TESTMODE
13650 .cmd = NL80211_CMD_TESTMODE,
13651 .doit = nl80211_testmode_do,
13652 .dumpit = nl80211_testmode_dump,
13653 .flags = GENL_UNS_ADMIN_PERM,
13654 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13655 NL80211_FLAG_NEED_RTNL,
13659 .cmd = NL80211_CMD_CONNECT,
13660 .doit = nl80211_connect,
13661 .flags = GENL_UNS_ADMIN_PERM,
13662 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13663 NL80211_FLAG_NEED_RTNL |
13664 NL80211_FLAG_CLEAR_SKB,
13667 .cmd = NL80211_CMD_UPDATE_CONNECT_PARAMS,
13668 .doit = nl80211_update_connect_params,
13669 .flags = GENL_ADMIN_PERM,
13670 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13671 NL80211_FLAG_NEED_RTNL |
13672 NL80211_FLAG_CLEAR_SKB,
13675 .cmd = NL80211_CMD_DISCONNECT,
13676 .doit = nl80211_disconnect,
13677 .flags = GENL_UNS_ADMIN_PERM,
13678 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13679 NL80211_FLAG_NEED_RTNL,
13682 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
13683 .doit = nl80211_wiphy_netns,
13684 .flags = GENL_UNS_ADMIN_PERM,
13685 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13686 NL80211_FLAG_NEED_RTNL,
13689 .cmd = NL80211_CMD_GET_SURVEY,
13690 .dumpit = nl80211_dump_survey,
13693 .cmd = NL80211_CMD_SET_PMKSA,
13694 .doit = nl80211_setdel_pmksa,
13695 .flags = GENL_UNS_ADMIN_PERM,
13696 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13697 NL80211_FLAG_NEED_RTNL |
13698 NL80211_FLAG_CLEAR_SKB,
13701 .cmd = NL80211_CMD_DEL_PMKSA,
13702 .doit = nl80211_setdel_pmksa,
13703 .flags = GENL_UNS_ADMIN_PERM,
13704 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13705 NL80211_FLAG_NEED_RTNL,
13708 .cmd = NL80211_CMD_FLUSH_PMKSA,
13709 .doit = nl80211_flush_pmksa,
13710 .flags = GENL_UNS_ADMIN_PERM,
13711 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13712 NL80211_FLAG_NEED_RTNL,
13715 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
13716 .doit = nl80211_remain_on_channel,
13717 .flags = GENL_UNS_ADMIN_PERM,
13718 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13719 NL80211_FLAG_NEED_RTNL,
13722 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
13723 .doit = nl80211_cancel_remain_on_channel,
13724 .flags = GENL_UNS_ADMIN_PERM,
13725 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13726 NL80211_FLAG_NEED_RTNL,
13729 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
13730 .doit = nl80211_set_tx_bitrate_mask,
13731 .flags = GENL_UNS_ADMIN_PERM,
13732 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13733 NL80211_FLAG_NEED_RTNL,
13736 .cmd = NL80211_CMD_REGISTER_FRAME,
13737 .doit = nl80211_register_mgmt,
13738 .flags = GENL_UNS_ADMIN_PERM,
13739 .internal_flags = NL80211_FLAG_NEED_WDEV |
13740 NL80211_FLAG_NEED_RTNL,
13743 .cmd = NL80211_CMD_FRAME,
13744 .doit = nl80211_tx_mgmt,
13745 .flags = GENL_UNS_ADMIN_PERM,
13746 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13747 NL80211_FLAG_NEED_RTNL,
13750 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
13751 .doit = nl80211_tx_mgmt_cancel_wait,
13752 .flags = GENL_UNS_ADMIN_PERM,
13753 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13754 NL80211_FLAG_NEED_RTNL,
13757 .cmd = NL80211_CMD_SET_POWER_SAVE,
13758 .doit = nl80211_set_power_save,
13759 .flags = GENL_UNS_ADMIN_PERM,
13760 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13761 NL80211_FLAG_NEED_RTNL,
13764 .cmd = NL80211_CMD_GET_POWER_SAVE,
13765 .doit = nl80211_get_power_save,
13766 /* can be retrieved by unprivileged users */
13767 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13768 NL80211_FLAG_NEED_RTNL,
13771 .cmd = NL80211_CMD_SET_CQM,
13772 .doit = nl80211_set_cqm,
13773 .flags = GENL_UNS_ADMIN_PERM,
13774 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13775 NL80211_FLAG_NEED_RTNL,
13778 .cmd = NL80211_CMD_SET_CHANNEL,
13779 .doit = nl80211_set_channel,
13780 .flags = GENL_UNS_ADMIN_PERM,
13781 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13782 NL80211_FLAG_NEED_RTNL,
13785 .cmd = NL80211_CMD_SET_WDS_PEER,
13786 .doit = nl80211_set_wds_peer,
13787 .flags = GENL_UNS_ADMIN_PERM,
13788 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13789 NL80211_FLAG_NEED_RTNL,
13792 .cmd = NL80211_CMD_JOIN_MESH,
13793 .doit = nl80211_join_mesh,
13794 .flags = GENL_UNS_ADMIN_PERM,
13795 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13796 NL80211_FLAG_NEED_RTNL,
13799 .cmd = NL80211_CMD_LEAVE_MESH,
13800 .doit = nl80211_leave_mesh,
13801 .flags = GENL_UNS_ADMIN_PERM,
13802 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13803 NL80211_FLAG_NEED_RTNL,
13806 .cmd = NL80211_CMD_JOIN_OCB,
13807 .doit = nl80211_join_ocb,
13808 .flags = GENL_UNS_ADMIN_PERM,
13809 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13810 NL80211_FLAG_NEED_RTNL,
13813 .cmd = NL80211_CMD_LEAVE_OCB,
13814 .doit = nl80211_leave_ocb,
13815 .flags = GENL_UNS_ADMIN_PERM,
13816 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13817 NL80211_FLAG_NEED_RTNL,
13821 .cmd = NL80211_CMD_GET_WOWLAN,
13822 .doit = nl80211_get_wowlan,
13823 /* can be retrieved by unprivileged users */
13824 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13825 NL80211_FLAG_NEED_RTNL,
13828 .cmd = NL80211_CMD_SET_WOWLAN,
13829 .doit = nl80211_set_wowlan,
13830 .flags = GENL_UNS_ADMIN_PERM,
13831 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13832 NL80211_FLAG_NEED_RTNL,
13836 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
13837 .doit = nl80211_set_rekey_data,
13838 .flags = GENL_UNS_ADMIN_PERM,
13839 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13840 NL80211_FLAG_NEED_RTNL |
13841 NL80211_FLAG_CLEAR_SKB,
13844 .cmd = NL80211_CMD_TDLS_MGMT,
13845 .doit = nl80211_tdls_mgmt,
13846 .flags = GENL_UNS_ADMIN_PERM,
13847 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13848 NL80211_FLAG_NEED_RTNL,
13851 .cmd = NL80211_CMD_TDLS_OPER,
13852 .doit = nl80211_tdls_oper,
13853 .flags = GENL_UNS_ADMIN_PERM,
13854 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13855 NL80211_FLAG_NEED_RTNL,
13858 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
13859 .doit = nl80211_register_unexpected_frame,
13860 .flags = GENL_UNS_ADMIN_PERM,
13861 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13862 NL80211_FLAG_NEED_RTNL,
13865 .cmd = NL80211_CMD_PROBE_CLIENT,
13866 .doit = nl80211_probe_client,
13867 .flags = GENL_UNS_ADMIN_PERM,
13868 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13869 NL80211_FLAG_NEED_RTNL,
13872 .cmd = NL80211_CMD_REGISTER_BEACONS,
13873 .doit = nl80211_register_beacons,
13874 .flags = GENL_UNS_ADMIN_PERM,
13875 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13876 NL80211_FLAG_NEED_RTNL,
13879 .cmd = NL80211_CMD_SET_NOACK_MAP,
13880 .doit = nl80211_set_noack_map,
13881 .flags = GENL_UNS_ADMIN_PERM,
13882 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13883 NL80211_FLAG_NEED_RTNL,
13886 .cmd = NL80211_CMD_START_P2P_DEVICE,
13887 .doit = nl80211_start_p2p_device,
13888 .flags = GENL_UNS_ADMIN_PERM,
13889 .internal_flags = NL80211_FLAG_NEED_WDEV |
13890 NL80211_FLAG_NEED_RTNL,
13893 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
13894 .doit = nl80211_stop_p2p_device,
13895 .flags = GENL_UNS_ADMIN_PERM,
13896 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13897 NL80211_FLAG_NEED_RTNL,
13900 .cmd = NL80211_CMD_START_NAN,
13901 .doit = nl80211_start_nan,
13902 .flags = GENL_ADMIN_PERM,
13903 .internal_flags = NL80211_FLAG_NEED_WDEV |
13904 NL80211_FLAG_NEED_RTNL,
13907 .cmd = NL80211_CMD_STOP_NAN,
13908 .doit = nl80211_stop_nan,
13909 .flags = GENL_ADMIN_PERM,
13910 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13911 NL80211_FLAG_NEED_RTNL,
13914 .cmd = NL80211_CMD_ADD_NAN_FUNCTION,
13915 .doit = nl80211_nan_add_func,
13916 .flags = GENL_ADMIN_PERM,
13917 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13918 NL80211_FLAG_NEED_RTNL,
13921 .cmd = NL80211_CMD_DEL_NAN_FUNCTION,
13922 .doit = nl80211_nan_del_func,
13923 .flags = GENL_ADMIN_PERM,
13924 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13925 NL80211_FLAG_NEED_RTNL,
13928 .cmd = NL80211_CMD_CHANGE_NAN_CONFIG,
13929 .doit = nl80211_nan_change_config,
13930 .flags = GENL_ADMIN_PERM,
13931 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13932 NL80211_FLAG_NEED_RTNL,
13935 .cmd = NL80211_CMD_SET_MCAST_RATE,
13936 .doit = nl80211_set_mcast_rate,
13937 .flags = GENL_UNS_ADMIN_PERM,
13938 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13939 NL80211_FLAG_NEED_RTNL,
13942 .cmd = NL80211_CMD_SET_MAC_ACL,
13943 .doit = nl80211_set_mac_acl,
13944 .flags = GENL_UNS_ADMIN_PERM,
13945 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13946 NL80211_FLAG_NEED_RTNL,
13949 .cmd = NL80211_CMD_RADAR_DETECT,
13950 .doit = nl80211_start_radar_detection,
13951 .flags = GENL_UNS_ADMIN_PERM,
13952 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13953 NL80211_FLAG_NEED_RTNL,
13956 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
13957 .doit = nl80211_get_protocol_features,
13960 .cmd = NL80211_CMD_UPDATE_FT_IES,
13961 .doit = nl80211_update_ft_ies,
13962 .flags = GENL_UNS_ADMIN_PERM,
13963 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13964 NL80211_FLAG_NEED_RTNL,
13967 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
13968 .doit = nl80211_crit_protocol_start,
13969 .flags = GENL_UNS_ADMIN_PERM,
13970 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13971 NL80211_FLAG_NEED_RTNL,
13974 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
13975 .doit = nl80211_crit_protocol_stop,
13976 .flags = GENL_UNS_ADMIN_PERM,
13977 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13978 NL80211_FLAG_NEED_RTNL,
13981 .cmd = NL80211_CMD_GET_COALESCE,
13982 .doit = nl80211_get_coalesce,
13983 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13984 NL80211_FLAG_NEED_RTNL,
13987 .cmd = NL80211_CMD_SET_COALESCE,
13988 .doit = nl80211_set_coalesce,
13989 .flags = GENL_UNS_ADMIN_PERM,
13990 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13991 NL80211_FLAG_NEED_RTNL,
13994 .cmd = NL80211_CMD_CHANNEL_SWITCH,
13995 .doit = nl80211_channel_switch,
13996 .flags = GENL_UNS_ADMIN_PERM,
13997 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13998 NL80211_FLAG_NEED_RTNL,
14001 .cmd = NL80211_CMD_VENDOR,
14002 .doit = nl80211_vendor_cmd,
14003 .dumpit = nl80211_vendor_cmd_dump,
14004 .flags = GENL_UNS_ADMIN_PERM,
14005 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14006 NL80211_FLAG_NEED_RTNL |
14007 NL80211_FLAG_CLEAR_SKB,
14010 .cmd = NL80211_CMD_SET_QOS_MAP,
14011 .doit = nl80211_set_qos_map,
14012 .flags = GENL_UNS_ADMIN_PERM,
14013 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14014 NL80211_FLAG_NEED_RTNL,
14017 .cmd = NL80211_CMD_ADD_TX_TS,
14018 .doit = nl80211_add_tx_ts,
14019 .flags = GENL_UNS_ADMIN_PERM,
14020 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14021 NL80211_FLAG_NEED_RTNL,
14024 .cmd = NL80211_CMD_DEL_TX_TS,
14025 .doit = nl80211_del_tx_ts,
14026 .flags = GENL_UNS_ADMIN_PERM,
14027 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14028 NL80211_FLAG_NEED_RTNL,
14031 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
14032 .doit = nl80211_tdls_channel_switch,
14033 .flags = GENL_UNS_ADMIN_PERM,
14034 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14035 NL80211_FLAG_NEED_RTNL,
14038 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
14039 .doit = nl80211_tdls_cancel_channel_switch,
14040 .flags = GENL_UNS_ADMIN_PERM,
14041 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14042 NL80211_FLAG_NEED_RTNL,
14045 .cmd = NL80211_CMD_SET_MULTICAST_TO_UNICAST,
14046 .doit = nl80211_set_multicast_to_unicast,
14047 .flags = GENL_UNS_ADMIN_PERM,
14048 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14049 NL80211_FLAG_NEED_RTNL,
14052 .cmd = NL80211_CMD_SET_PMK,
14053 .doit = nl80211_set_pmk,
14054 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14055 NL80211_FLAG_NEED_RTNL |
14056 NL80211_FLAG_CLEAR_SKB,
14059 .cmd = NL80211_CMD_DEL_PMK,
14060 .doit = nl80211_del_pmk,
14061 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14062 NL80211_FLAG_NEED_RTNL,
14065 .cmd = NL80211_CMD_EXTERNAL_AUTH,
14066 .doit = nl80211_external_auth,
14067 .flags = GENL_ADMIN_PERM,
14068 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14069 NL80211_FLAG_NEED_RTNL,
14072 .cmd = NL80211_CMD_CONTROL_PORT_FRAME,
14073 .doit = nl80211_tx_control_port,
14074 .flags = GENL_UNS_ADMIN_PERM,
14075 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14076 NL80211_FLAG_NEED_RTNL,
14079 .cmd = NL80211_CMD_GET_FTM_RESPONDER_STATS,
14080 .doit = nl80211_get_ftm_responder_stats,
14081 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14082 NL80211_FLAG_NEED_RTNL,
14085 .cmd = NL80211_CMD_PEER_MEASUREMENT_START,
14086 .doit = nl80211_pmsr_start,
14087 .flags = GENL_UNS_ADMIN_PERM,
14088 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14089 NL80211_FLAG_NEED_RTNL,
14092 .cmd = NL80211_CMD_NOTIFY_RADAR,
14093 .doit = nl80211_notify_radar_detection,
14094 .flags = GENL_UNS_ADMIN_PERM,
14095 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14096 NL80211_FLAG_NEED_RTNL,
14100 static struct genl_family nl80211_fam __ro_after_init = {
14101 .name = NL80211_GENL_NAME, /* have users key off the name instead */
14102 .hdrsize = 0, /* no private header */
14103 .version = 1, /* no particular meaning now */
14104 .maxattr = NL80211_ATTR_MAX,
14105 .policy = nl80211_policy,
14107 .pre_doit = nl80211_pre_doit,
14108 .post_doit = nl80211_post_doit,
14109 .module = THIS_MODULE,
14110 .ops = nl80211_ops,
14111 .n_ops = ARRAY_SIZE(nl80211_ops),
14112 .mcgrps = nl80211_mcgrps,
14113 .n_mcgrps = ARRAY_SIZE(nl80211_mcgrps),
14116 /* notification functions */
14118 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
14119 enum nl80211_commands cmd)
14121 struct sk_buff *msg;
14122 struct nl80211_dump_wiphy_state state = {};
14124 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
14125 cmd != NL80211_CMD_DEL_WIPHY);
14127 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14131 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
14136 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14137 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14140 void nl80211_notify_iface(struct cfg80211_registered_device *rdev,
14141 struct wireless_dev *wdev,
14142 enum nl80211_commands cmd)
14144 struct sk_buff *msg;
14146 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14150 if (nl80211_send_iface(msg, 0, 0, 0, rdev, wdev, cmd) < 0) {
14155 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14156 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14159 static int nl80211_add_scan_req(struct sk_buff *msg,
14160 struct cfg80211_registered_device *rdev)
14162 struct cfg80211_scan_request *req = rdev->scan_req;
14163 struct nlattr *nest;
14169 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
14171 goto nla_put_failure;
14172 for (i = 0; i < req->n_ssids; i++) {
14173 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
14174 goto nla_put_failure;
14176 nla_nest_end(msg, nest);
14178 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
14180 goto nla_put_failure;
14181 for (i = 0; i < req->n_channels; i++) {
14182 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
14183 goto nla_put_failure;
14185 nla_nest_end(msg, nest);
14188 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
14189 goto nla_put_failure;
14192 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
14193 goto nla_put_failure;
14195 if (req->info.scan_start_tsf &&
14196 (nla_put_u64_64bit(msg, NL80211_ATTR_SCAN_START_TIME_TSF,
14197 req->info.scan_start_tsf, NL80211_BSS_PAD) ||
14198 nla_put(msg, NL80211_ATTR_SCAN_START_TIME_TSF_BSSID, ETH_ALEN,
14199 req->info.tsf_bssid)))
14200 goto nla_put_failure;
14207 static int nl80211_prep_scan_msg(struct sk_buff *msg,
14208 struct cfg80211_registered_device *rdev,
14209 struct wireless_dev *wdev,
14210 u32 portid, u32 seq, int flags,
14215 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
14219 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14220 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14221 wdev->netdev->ifindex)) ||
14222 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14224 goto nla_put_failure;
14226 /* ignore errors and send incomplete event anyway */
14227 nl80211_add_scan_req(msg, rdev);
14229 genlmsg_end(msg, hdr);
14233 genlmsg_cancel(msg, hdr);
14238 nl80211_prep_sched_scan_msg(struct sk_buff *msg,
14239 struct cfg80211_sched_scan_request *req, u32 cmd)
14243 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14247 if (nla_put_u32(msg, NL80211_ATTR_WIPHY,
14248 wiphy_to_rdev(req->wiphy)->wiphy_idx) ||
14249 nla_put_u32(msg, NL80211_ATTR_IFINDEX, req->dev->ifindex) ||
14250 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, req->reqid,
14252 goto nla_put_failure;
14254 genlmsg_end(msg, hdr);
14258 genlmsg_cancel(msg, hdr);
14262 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
14263 struct wireless_dev *wdev)
14265 struct sk_buff *msg;
14267 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14271 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14272 NL80211_CMD_TRIGGER_SCAN) < 0) {
14277 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14278 NL80211_MCGRP_SCAN, GFP_KERNEL);
14281 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
14282 struct wireless_dev *wdev, bool aborted)
14284 struct sk_buff *msg;
14286 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14290 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14291 aborted ? NL80211_CMD_SCAN_ABORTED :
14292 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
14300 /* send message created by nl80211_build_scan_msg() */
14301 void nl80211_send_scan_msg(struct cfg80211_registered_device *rdev,
14302 struct sk_buff *msg)
14307 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14308 NL80211_MCGRP_SCAN, GFP_KERNEL);
14311 void nl80211_send_sched_scan(struct cfg80211_sched_scan_request *req, u32 cmd)
14313 struct sk_buff *msg;
14315 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14319 if (nl80211_prep_sched_scan_msg(msg, req, cmd) < 0) {
14324 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(req->wiphy), msg, 0,
14325 NL80211_MCGRP_SCAN, GFP_KERNEL);
14328 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
14329 struct regulatory_request *request)
14331 /* Userspace can always count this one always being set */
14332 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
14333 goto nla_put_failure;
14335 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
14336 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14337 NL80211_REGDOM_TYPE_WORLD))
14338 goto nla_put_failure;
14339 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
14340 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14341 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
14342 goto nla_put_failure;
14343 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
14344 request->intersect) {
14345 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14346 NL80211_REGDOM_TYPE_INTERSECTION))
14347 goto nla_put_failure;
14349 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14350 NL80211_REGDOM_TYPE_COUNTRY) ||
14351 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
14353 goto nla_put_failure;
14356 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
14357 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
14360 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
14361 goto nla_put_failure;
14364 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
14365 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
14366 goto nla_put_failure;
14376 * This can happen on global regulatory changes or device specific settings
14377 * based on custom regulatory domains.
14379 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
14380 struct regulatory_request *request)
14382 struct sk_buff *msg;
14385 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14389 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
14395 if (nl80211_reg_change_event_fill(msg, request) == false)
14396 goto nla_put_failure;
14398 genlmsg_end(msg, hdr);
14401 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
14402 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
14411 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
14412 struct net_device *netdev,
14413 const u8 *buf, size_t len,
14414 enum nl80211_commands cmd, gfp_t gfp,
14415 int uapsd_queues, const u8 *req_ies,
14416 size_t req_ies_len)
14418 struct sk_buff *msg;
14421 msg = nlmsg_new(100 + len + req_ies_len, gfp);
14425 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14431 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14432 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14433 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
14435 nla_put(msg, NL80211_ATTR_REQ_IE, req_ies_len, req_ies)))
14436 goto nla_put_failure;
14438 if (uapsd_queues >= 0) {
14439 struct nlattr *nla_wmm =
14440 nla_nest_start(msg, NL80211_ATTR_STA_WME);
14442 goto nla_put_failure;
14444 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
14446 goto nla_put_failure;
14448 nla_nest_end(msg, nla_wmm);
14451 genlmsg_end(msg, hdr);
14453 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14454 NL80211_MCGRP_MLME, gfp);
14461 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
14462 struct net_device *netdev, const u8 *buf,
14463 size_t len, gfp_t gfp)
14465 nl80211_send_mlme_event(rdev, netdev, buf, len,
14466 NL80211_CMD_AUTHENTICATE, gfp, -1, NULL, 0);
14469 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
14470 struct net_device *netdev, const u8 *buf,
14471 size_t len, gfp_t gfp, int uapsd_queues,
14472 const u8 *req_ies, size_t req_ies_len)
14474 nl80211_send_mlme_event(rdev, netdev, buf, len,
14475 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues,
14476 req_ies, req_ies_len);
14479 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
14480 struct net_device *netdev, const u8 *buf,
14481 size_t len, gfp_t gfp)
14483 nl80211_send_mlme_event(rdev, netdev, buf, len,
14484 NL80211_CMD_DEAUTHENTICATE, gfp, -1, NULL, 0);
14487 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
14488 struct net_device *netdev, const u8 *buf,
14489 size_t len, gfp_t gfp)
14491 nl80211_send_mlme_event(rdev, netdev, buf, len,
14492 NL80211_CMD_DISASSOCIATE, gfp, -1, NULL, 0);
14495 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
14498 struct wireless_dev *wdev = dev->ieee80211_ptr;
14499 struct wiphy *wiphy = wdev->wiphy;
14500 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14501 const struct ieee80211_mgmt *mgmt = (void *)buf;
14504 if (WARN_ON(len < 2))
14507 if (ieee80211_is_deauth(mgmt->frame_control))
14508 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
14510 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
14512 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
14513 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1,
14516 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
14518 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
14519 struct net_device *netdev, int cmd,
14520 const u8 *addr, gfp_t gfp)
14522 struct sk_buff *msg;
14525 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14529 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14535 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14536 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14537 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14538 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
14539 goto nla_put_failure;
14541 genlmsg_end(msg, hdr);
14543 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14544 NL80211_MCGRP_MLME, gfp);
14551 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
14552 struct net_device *netdev, const u8 *addr,
14555 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
14559 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
14560 struct net_device *netdev, const u8 *addr,
14563 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
14567 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
14568 struct net_device *netdev,
14569 struct cfg80211_connect_resp_params *cr,
14572 struct sk_buff *msg;
14575 msg = nlmsg_new(100 + cr->req_ie_len + cr->resp_ie_len +
14576 cr->fils.kek_len + cr->fils.pmk_len +
14577 (cr->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
14581 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
14587 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14588 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14590 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, cr->bssid)) ||
14591 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE,
14592 cr->status < 0 ? WLAN_STATUS_UNSPECIFIED_FAILURE :
14595 (nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14596 nla_put_u32(msg, NL80211_ATTR_TIMEOUT_REASON,
14597 cr->timeout_reason))) ||
14599 nla_put(msg, NL80211_ATTR_REQ_IE, cr->req_ie_len, cr->req_ie)) ||
14601 nla_put(msg, NL80211_ATTR_RESP_IE, cr->resp_ie_len,
14603 (cr->fils.update_erp_next_seq_num &&
14604 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
14605 cr->fils.erp_next_seq_num)) ||
14606 (cr->status == WLAN_STATUS_SUCCESS &&
14608 nla_put(msg, NL80211_ATTR_FILS_KEK, cr->fils.kek_len,
14611 nla_put(msg, NL80211_ATTR_PMK, cr->fils.pmk_len, cr->fils.pmk)) ||
14613 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, cr->fils.pmkid)))))
14614 goto nla_put_failure;
14616 genlmsg_end(msg, hdr);
14618 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14619 NL80211_MCGRP_MLME, gfp);
14626 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
14627 struct net_device *netdev,
14628 struct cfg80211_roam_info *info, gfp_t gfp)
14630 struct sk_buff *msg;
14632 const u8 *bssid = info->bss ? info->bss->bssid : info->bssid;
14634 msg = nlmsg_new(100 + info->req_ie_len + info->resp_ie_len +
14635 info->fils.kek_len + info->fils.pmk_len +
14636 (info->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
14640 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
14646 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14647 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14648 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
14650 nla_put(msg, NL80211_ATTR_REQ_IE, info->req_ie_len,
14653 nla_put(msg, NL80211_ATTR_RESP_IE, info->resp_ie_len,
14655 (info->fils.update_erp_next_seq_num &&
14656 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
14657 info->fils.erp_next_seq_num)) ||
14659 nla_put(msg, NL80211_ATTR_FILS_KEK, info->fils.kek_len,
14660 info->fils.kek)) ||
14662 nla_put(msg, NL80211_ATTR_PMK, info->fils.pmk_len, info->fils.pmk)) ||
14663 (info->fils.pmkid &&
14664 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, info->fils.pmkid)))
14665 goto nla_put_failure;
14667 genlmsg_end(msg, hdr);
14669 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14670 NL80211_MCGRP_MLME, gfp);
14677 void nl80211_send_port_authorized(struct cfg80211_registered_device *rdev,
14678 struct net_device *netdev, const u8 *bssid)
14680 struct sk_buff *msg;
14683 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14687 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PORT_AUTHORIZED);
14693 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
14694 goto nla_put_failure;
14696 genlmsg_end(msg, hdr);
14698 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14699 NL80211_MCGRP_MLME, GFP_KERNEL);
14706 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
14707 struct net_device *netdev, u16 reason,
14708 const u8 *ie, size_t ie_len, bool from_ap)
14710 struct sk_buff *msg;
14713 msg = nlmsg_new(100 + ie_len, GFP_KERNEL);
14717 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
14723 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14724 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14726 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
14728 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
14729 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
14730 goto nla_put_failure;
14732 genlmsg_end(msg, hdr);
14734 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14735 NL80211_MCGRP_MLME, GFP_KERNEL);
14742 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
14743 struct net_device *netdev, const u8 *bssid,
14746 struct sk_buff *msg;
14749 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14753 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
14759 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14760 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14761 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
14762 goto nla_put_failure;
14764 genlmsg_end(msg, hdr);
14766 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14767 NL80211_MCGRP_MLME, gfp);
14774 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
14775 const u8 *ie, u8 ie_len,
14776 int sig_dbm, gfp_t gfp)
14778 struct wireless_dev *wdev = dev->ieee80211_ptr;
14779 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
14780 struct sk_buff *msg;
14783 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
14786 trace_cfg80211_notify_new_peer_candidate(dev, addr);
14788 msg = nlmsg_new(100 + ie_len, gfp);
14792 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
14798 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14799 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
14800 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
14802 nla_put(msg, NL80211_ATTR_IE, ie_len, ie)) ||
14804 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)))
14805 goto nla_put_failure;
14807 genlmsg_end(msg, hdr);
14809 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14810 NL80211_MCGRP_MLME, gfp);
14816 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
14818 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
14819 struct net_device *netdev, const u8 *addr,
14820 enum nl80211_key_type key_type, int key_id,
14821 const u8 *tsc, gfp_t gfp)
14823 struct sk_buff *msg;
14826 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14830 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
14836 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14837 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14838 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
14839 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
14841 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
14842 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
14843 goto nla_put_failure;
14845 genlmsg_end(msg, hdr);
14847 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14848 NL80211_MCGRP_MLME, gfp);
14855 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
14856 struct ieee80211_channel *channel_before,
14857 struct ieee80211_channel *channel_after)
14859 struct sk_buff *msg;
14861 struct nlattr *nl_freq;
14863 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
14867 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
14874 * Since we are applying the beacon hint to a wiphy we know its
14875 * wiphy_idx is valid
14877 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
14878 goto nla_put_failure;
14881 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
14883 goto nla_put_failure;
14885 if (nl80211_msg_put_channel(msg, wiphy, channel_before, false))
14886 goto nla_put_failure;
14887 nla_nest_end(msg, nl_freq);
14890 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
14892 goto nla_put_failure;
14894 if (nl80211_msg_put_channel(msg, wiphy, channel_after, false))
14895 goto nla_put_failure;
14896 nla_nest_end(msg, nl_freq);
14898 genlmsg_end(msg, hdr);
14901 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
14902 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
14911 static void nl80211_send_remain_on_chan_event(
14912 int cmd, struct cfg80211_registered_device *rdev,
14913 struct wireless_dev *wdev, u64 cookie,
14914 struct ieee80211_channel *chan,
14915 unsigned int duration, gfp_t gfp)
14917 struct sk_buff *msg;
14920 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14924 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14930 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14931 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14932 wdev->netdev->ifindex)) ||
14933 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14934 NL80211_ATTR_PAD) ||
14935 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
14936 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
14937 NL80211_CHAN_NO_HT) ||
14938 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
14940 goto nla_put_failure;
14942 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
14943 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
14944 goto nla_put_failure;
14946 genlmsg_end(msg, hdr);
14948 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14949 NL80211_MCGRP_MLME, gfp);
14956 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
14957 struct ieee80211_channel *chan,
14958 unsigned int duration, gfp_t gfp)
14960 struct wiphy *wiphy = wdev->wiphy;
14961 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14963 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
14964 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
14965 rdev, wdev, cookie, chan,
14968 EXPORT_SYMBOL(cfg80211_ready_on_channel);
14970 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
14971 struct ieee80211_channel *chan,
14974 struct wiphy *wiphy = wdev->wiphy;
14975 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14977 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
14978 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
14979 rdev, wdev, cookie, chan, 0, gfp);
14981 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
14983 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
14984 struct station_info *sinfo, gfp_t gfp)
14986 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
14987 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14988 struct sk_buff *msg;
14990 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
14992 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14996 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION, 0, 0, 0,
14997 rdev, dev, mac_addr, sinfo) < 0) {
15002 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15003 NL80211_MCGRP_MLME, gfp);
15005 EXPORT_SYMBOL(cfg80211_new_sta);
15007 void cfg80211_del_sta_sinfo(struct net_device *dev, const u8 *mac_addr,
15008 struct station_info *sinfo, gfp_t gfp)
15010 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15011 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15012 struct sk_buff *msg;
15013 struct station_info empty_sinfo = {};
15016 sinfo = &empty_sinfo;
15018 trace_cfg80211_del_sta(dev, mac_addr);
15020 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15022 cfg80211_sinfo_release_content(sinfo);
15026 if (nl80211_send_station(msg, NL80211_CMD_DEL_STATION, 0, 0, 0,
15027 rdev, dev, mac_addr, sinfo) < 0) {
15032 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15033 NL80211_MCGRP_MLME, gfp);
15035 EXPORT_SYMBOL(cfg80211_del_sta_sinfo);
15037 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
15038 enum nl80211_connect_failed_reason reason,
15041 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15042 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15043 struct sk_buff *msg;
15046 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
15050 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
15056 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15057 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
15058 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
15059 goto nla_put_failure;
15061 genlmsg_end(msg, hdr);
15063 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15064 NL80211_MCGRP_MLME, gfp);
15070 EXPORT_SYMBOL(cfg80211_conn_failed);
15072 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
15073 const u8 *addr, gfp_t gfp)
15075 struct wireless_dev *wdev = dev->ieee80211_ptr;
15076 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15077 struct sk_buff *msg;
15079 u32 nlportid = READ_ONCE(wdev->ap_unexpected_nlportid);
15084 msg = nlmsg_new(100, gfp);
15088 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15094 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15095 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15096 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
15097 goto nla_put_failure;
15099 genlmsg_end(msg, hdr);
15100 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15108 bool cfg80211_rx_spurious_frame(struct net_device *dev,
15109 const u8 *addr, gfp_t gfp)
15111 struct wireless_dev *wdev = dev->ieee80211_ptr;
15114 trace_cfg80211_rx_spurious_frame(dev, addr);
15116 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15117 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
15118 trace_cfg80211_return_bool(false);
15121 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
15123 trace_cfg80211_return_bool(ret);
15126 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
15128 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
15129 const u8 *addr, gfp_t gfp)
15131 struct wireless_dev *wdev = dev->ieee80211_ptr;
15134 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
15136 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15137 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
15138 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
15139 trace_cfg80211_return_bool(false);
15142 ret = __nl80211_unexpected_frame(dev,
15143 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
15145 trace_cfg80211_return_bool(ret);
15148 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
15150 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
15151 struct wireless_dev *wdev, u32 nlportid,
15152 int freq, int sig_dbm,
15153 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
15155 struct net_device *netdev = wdev->netdev;
15156 struct sk_buff *msg;
15159 msg = nlmsg_new(100 + len, gfp);
15163 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15169 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15170 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15171 netdev->ifindex)) ||
15172 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15173 NL80211_ATTR_PAD) ||
15174 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
15176 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15177 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15179 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
15180 goto nla_put_failure;
15182 genlmsg_end(msg, hdr);
15184 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15191 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
15192 const u8 *buf, size_t len, bool ack, gfp_t gfp)
15194 struct wiphy *wiphy = wdev->wiphy;
15195 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15196 struct net_device *netdev = wdev->netdev;
15197 struct sk_buff *msg;
15200 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
15202 msg = nlmsg_new(100 + len, gfp);
15206 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
15212 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15213 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15214 netdev->ifindex)) ||
15215 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15216 NL80211_ATTR_PAD) ||
15217 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15218 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15219 NL80211_ATTR_PAD) ||
15220 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
15221 goto nla_put_failure;
15223 genlmsg_end(msg, hdr);
15225 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15226 NL80211_MCGRP_MLME, gfp);
15232 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
15234 static int __nl80211_rx_control_port(struct net_device *dev,
15235 struct sk_buff *skb,
15236 bool unencrypted, gfp_t gfp)
15238 struct wireless_dev *wdev = dev->ieee80211_ptr;
15239 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15240 struct ethhdr *ehdr = eth_hdr(skb);
15241 const u8 *addr = ehdr->h_source;
15242 u16 proto = be16_to_cpu(skb->protocol);
15243 struct sk_buff *msg;
15245 struct nlattr *frame;
15247 u32 nlportid = READ_ONCE(wdev->conn_owner_nlportid);
15252 msg = nlmsg_new(100 + skb->len, gfp);
15256 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONTROL_PORT_FRAME);
15262 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15263 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15264 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15265 NL80211_ATTR_PAD) ||
15266 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15267 nla_put_u16(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE, proto) ||
15268 (unencrypted && nla_put_flag(msg,
15269 NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT)))
15270 goto nla_put_failure;
15272 frame = nla_reserve(msg, NL80211_ATTR_FRAME, skb->len);
15274 goto nla_put_failure;
15276 skb_copy_bits(skb, 0, nla_data(frame), skb->len);
15277 genlmsg_end(msg, hdr);
15279 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15286 bool cfg80211_rx_control_port(struct net_device *dev,
15287 struct sk_buff *skb, bool unencrypted)
15291 trace_cfg80211_rx_control_port(dev, skb, unencrypted);
15292 ret = __nl80211_rx_control_port(dev, skb, unencrypted, GFP_ATOMIC);
15293 trace_cfg80211_return_bool(ret == 0);
15296 EXPORT_SYMBOL(cfg80211_rx_control_port);
15298 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
15299 const char *mac, gfp_t gfp)
15301 struct wireless_dev *wdev = dev->ieee80211_ptr;
15302 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15303 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15309 cb = (void **)msg->cb;
15311 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
15317 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15318 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15319 goto nla_put_failure;
15321 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15322 goto nla_put_failure;
15324 cb[1] = nla_nest_start(msg, NL80211_ATTR_CQM);
15326 goto nla_put_failure;
15336 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
15338 void **cb = (void **)msg->cb;
15339 struct cfg80211_registered_device *rdev = cb[2];
15341 nla_nest_end(msg, cb[1]);
15342 genlmsg_end(msg, cb[0]);
15344 memset(msg->cb, 0, sizeof(msg->cb));
15346 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15347 NL80211_MCGRP_MLME, gfp);
15350 void cfg80211_cqm_rssi_notify(struct net_device *dev,
15351 enum nl80211_cqm_rssi_threshold_event rssi_event,
15352 s32 rssi_level, gfp_t gfp)
15354 struct sk_buff *msg;
15355 struct wireless_dev *wdev = dev->ieee80211_ptr;
15356 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15358 trace_cfg80211_cqm_rssi_notify(dev, rssi_event, rssi_level);
15360 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
15361 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
15364 if (wdev->cqm_config) {
15365 wdev->cqm_config->last_rssi_event_value = rssi_level;
15367 cfg80211_cqm_rssi_update(rdev, dev);
15369 if (rssi_level == 0)
15370 rssi_level = wdev->cqm_config->last_rssi_event_value;
15373 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15377 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
15379 goto nla_put_failure;
15381 if (rssi_level && nla_put_s32(msg, NL80211_ATTR_CQM_RSSI_LEVEL,
15383 goto nla_put_failure;
15385 cfg80211_send_cqm(msg, gfp);
15392 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
15394 void cfg80211_cqm_txe_notify(struct net_device *dev,
15395 const u8 *peer, u32 num_packets,
15396 u32 rate, u32 intvl, gfp_t gfp)
15398 struct sk_buff *msg;
15400 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15404 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
15405 goto nla_put_failure;
15407 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
15408 goto nla_put_failure;
15410 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
15411 goto nla_put_failure;
15413 cfg80211_send_cqm(msg, gfp);
15419 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
15421 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
15422 const u8 *peer, u32 num_packets, gfp_t gfp)
15424 struct sk_buff *msg;
15426 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
15428 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15432 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
15433 goto nla_put_failure;
15435 cfg80211_send_cqm(msg, gfp);
15441 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
15443 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
15445 struct sk_buff *msg;
15447 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15451 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
15452 goto nla_put_failure;
15454 cfg80211_send_cqm(msg, gfp);
15460 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
15462 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
15463 struct net_device *netdev, const u8 *bssid,
15464 const u8 *replay_ctr, gfp_t gfp)
15466 struct sk_buff *msg;
15467 struct nlattr *rekey_attr;
15470 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15474 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
15480 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15481 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15482 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15483 goto nla_put_failure;
15485 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
15487 goto nla_put_failure;
15489 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
15490 NL80211_REPLAY_CTR_LEN, replay_ctr))
15491 goto nla_put_failure;
15493 nla_nest_end(msg, rekey_attr);
15495 genlmsg_end(msg, hdr);
15497 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15498 NL80211_MCGRP_MLME, gfp);
15505 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
15506 const u8 *replay_ctr, gfp_t gfp)
15508 struct wireless_dev *wdev = dev->ieee80211_ptr;
15509 struct wiphy *wiphy = wdev->wiphy;
15510 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15512 trace_cfg80211_gtk_rekey_notify(dev, bssid);
15513 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
15515 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
15518 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
15519 struct net_device *netdev, int index,
15520 const u8 *bssid, bool preauth, gfp_t gfp)
15522 struct sk_buff *msg;
15523 struct nlattr *attr;
15526 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15530 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
15536 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15537 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15538 goto nla_put_failure;
15540 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
15542 goto nla_put_failure;
15544 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
15545 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
15547 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
15548 goto nla_put_failure;
15550 nla_nest_end(msg, attr);
15552 genlmsg_end(msg, hdr);
15554 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15555 NL80211_MCGRP_MLME, gfp);
15562 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
15563 const u8 *bssid, bool preauth, gfp_t gfp)
15565 struct wireless_dev *wdev = dev->ieee80211_ptr;
15566 struct wiphy *wiphy = wdev->wiphy;
15567 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15569 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
15570 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
15572 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
15574 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
15575 struct net_device *netdev,
15576 struct cfg80211_chan_def *chandef,
15578 enum nl80211_commands notif,
15581 struct sk_buff *msg;
15584 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15588 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
15594 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15595 goto nla_put_failure;
15597 if (nl80211_send_chandef(msg, chandef))
15598 goto nla_put_failure;
15600 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
15601 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
15602 goto nla_put_failure;
15604 genlmsg_end(msg, hdr);
15606 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15607 NL80211_MCGRP_MLME, gfp);
15614 void cfg80211_ch_switch_notify(struct net_device *dev,
15615 struct cfg80211_chan_def *chandef)
15617 struct wireless_dev *wdev = dev->ieee80211_ptr;
15618 struct wiphy *wiphy = wdev->wiphy;
15619 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15621 ASSERT_WDEV_LOCK(wdev);
15623 trace_cfg80211_ch_switch_notify(dev, chandef);
15625 wdev->chandef = *chandef;
15626 wdev->preset_chandef = *chandef;
15627 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
15628 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
15630 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
15632 void cfg80211_ch_switch_started_notify(struct net_device *dev,
15633 struct cfg80211_chan_def *chandef,
15636 struct wireless_dev *wdev = dev->ieee80211_ptr;
15637 struct wiphy *wiphy = wdev->wiphy;
15638 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15640 trace_cfg80211_ch_switch_started_notify(dev, chandef);
15642 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
15643 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
15645 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
15648 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
15649 const struct cfg80211_chan_def *chandef,
15650 enum nl80211_radar_event event,
15651 struct net_device *netdev, gfp_t gfp)
15653 struct sk_buff *msg;
15656 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15660 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
15666 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
15667 goto nla_put_failure;
15669 /* NOP and radar events don't need a netdev parameter */
15671 struct wireless_dev *wdev = netdev->ieee80211_ptr;
15673 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15674 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15676 goto nla_put_failure;
15679 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
15680 goto nla_put_failure;
15682 if (nl80211_send_chandef(msg, chandef))
15683 goto nla_put_failure;
15685 genlmsg_end(msg, hdr);
15687 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15688 NL80211_MCGRP_MLME, gfp);
15695 void cfg80211_sta_opmode_change_notify(struct net_device *dev, const u8 *mac,
15696 struct sta_opmode_info *sta_opmode,
15699 struct sk_buff *msg;
15700 struct wireless_dev *wdev = dev->ieee80211_ptr;
15701 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15707 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15711 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STA_OPMODE_CHANGED);
15717 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
15718 goto nla_put_failure;
15720 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15721 goto nla_put_failure;
15723 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15724 goto nla_put_failure;
15726 if ((sta_opmode->changed & STA_OPMODE_SMPS_MODE_CHANGED) &&
15727 nla_put_u8(msg, NL80211_ATTR_SMPS_MODE, sta_opmode->smps_mode))
15728 goto nla_put_failure;
15730 if ((sta_opmode->changed & STA_OPMODE_MAX_BW_CHANGED) &&
15731 nla_put_u8(msg, NL80211_ATTR_CHANNEL_WIDTH, sta_opmode->bw))
15732 goto nla_put_failure;
15734 if ((sta_opmode->changed & STA_OPMODE_N_SS_CHANGED) &&
15735 nla_put_u8(msg, NL80211_ATTR_NSS, sta_opmode->rx_nss))
15736 goto nla_put_failure;
15738 genlmsg_end(msg, hdr);
15740 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15741 NL80211_MCGRP_MLME, gfp);
15748 EXPORT_SYMBOL(cfg80211_sta_opmode_change_notify);
15750 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
15751 u64 cookie, bool acked, s32 ack_signal,
15752 bool is_valid_ack_signal, gfp_t gfp)
15754 struct wireless_dev *wdev = dev->ieee80211_ptr;
15755 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15756 struct sk_buff *msg;
15759 trace_cfg80211_probe_status(dev, addr, cookie, acked);
15761 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15766 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
15772 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15773 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15774 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15775 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15776 NL80211_ATTR_PAD) ||
15777 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)) ||
15778 (is_valid_ack_signal && nla_put_s32(msg, NL80211_ATTR_ACK_SIGNAL,
15780 goto nla_put_failure;
15782 genlmsg_end(msg, hdr);
15784 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15785 NL80211_MCGRP_MLME, gfp);
15791 EXPORT_SYMBOL(cfg80211_probe_status);
15793 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
15794 const u8 *frame, size_t len,
15795 int freq, int sig_dbm)
15797 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15798 struct sk_buff *msg;
15800 struct cfg80211_beacon_registration *reg;
15802 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
15804 spin_lock_bh(&rdev->beacon_registrations_lock);
15805 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
15806 msg = nlmsg_new(len + 100, GFP_ATOMIC);
15808 spin_unlock_bh(&rdev->beacon_registrations_lock);
15812 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15814 goto nla_put_failure;
15816 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15818 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
15820 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15821 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
15822 goto nla_put_failure;
15824 genlmsg_end(msg, hdr);
15826 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
15828 spin_unlock_bh(&rdev->beacon_registrations_lock);
15832 spin_unlock_bh(&rdev->beacon_registrations_lock);
15835 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
15838 static int cfg80211_net_detect_results(struct sk_buff *msg,
15839 struct cfg80211_wowlan_wakeup *wakeup)
15841 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
15842 struct nlattr *nl_results, *nl_match, *nl_freqs;
15845 nl_results = nla_nest_start(
15846 msg, NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
15850 for (i = 0; i < nd->n_matches; i++) {
15851 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
15853 nl_match = nla_nest_start(msg, i);
15857 /* The SSID attribute is optional in nl80211, but for
15858 * simplicity reasons it's always present in the
15859 * cfg80211 structure. If a driver can't pass the
15860 * SSID, that needs to be changed. A zero length SSID
15861 * is still a valid SSID (wildcard), so it cannot be
15862 * used for this purpose.
15864 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
15865 match->ssid.ssid)) {
15866 nla_nest_cancel(msg, nl_match);
15870 if (match->n_channels) {
15871 nl_freqs = nla_nest_start(
15872 msg, NL80211_ATTR_SCAN_FREQUENCIES);
15874 nla_nest_cancel(msg, nl_match);
15878 for (j = 0; j < match->n_channels; j++) {
15879 if (nla_put_u32(msg, j, match->channels[j])) {
15880 nla_nest_cancel(msg, nl_freqs);
15881 nla_nest_cancel(msg, nl_match);
15886 nla_nest_end(msg, nl_freqs);
15889 nla_nest_end(msg, nl_match);
15893 nla_nest_end(msg, nl_results);
15897 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
15898 struct cfg80211_wowlan_wakeup *wakeup,
15901 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15902 struct sk_buff *msg;
15906 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
15909 size += wakeup->packet_present_len;
15911 msg = nlmsg_new(size, gfp);
15915 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
15919 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15920 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15924 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15925 wdev->netdev->ifindex))
15929 struct nlattr *reasons;
15931 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
15935 if (wakeup->disconnect &&
15936 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
15938 if (wakeup->magic_pkt &&
15939 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
15941 if (wakeup->gtk_rekey_failure &&
15942 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
15944 if (wakeup->eap_identity_req &&
15945 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
15947 if (wakeup->four_way_handshake &&
15948 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
15950 if (wakeup->rfkill_release &&
15951 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
15954 if (wakeup->pattern_idx >= 0 &&
15955 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
15956 wakeup->pattern_idx))
15959 if (wakeup->tcp_match &&
15960 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
15963 if (wakeup->tcp_connlost &&
15964 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
15967 if (wakeup->tcp_nomoretokens &&
15969 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
15972 if (wakeup->packet) {
15973 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
15974 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
15976 if (!wakeup->packet_80211) {
15978 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
15980 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
15983 if (wakeup->packet_len &&
15984 nla_put_u32(msg, len_attr, wakeup->packet_len))
15987 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
15992 if (wakeup->net_detect &&
15993 cfg80211_net_detect_results(msg, wakeup))
15996 nla_nest_end(msg, reasons);
15999 genlmsg_end(msg, hdr);
16001 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16002 NL80211_MCGRP_MLME, gfp);
16008 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
16011 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
16012 enum nl80211_tdls_operation oper,
16013 u16 reason_code, gfp_t gfp)
16015 struct wireless_dev *wdev = dev->ieee80211_ptr;
16016 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16017 struct sk_buff *msg;
16020 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
16023 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16027 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
16033 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16034 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16035 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
16036 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
16037 (reason_code > 0 &&
16038 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
16039 goto nla_put_failure;
16041 genlmsg_end(msg, hdr);
16043 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16044 NL80211_MCGRP_MLME, gfp);
16050 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
16052 static int nl80211_netlink_notify(struct notifier_block * nb,
16053 unsigned long state,
16056 struct netlink_notify *notify = _notify;
16057 struct cfg80211_registered_device *rdev;
16058 struct wireless_dev *wdev;
16059 struct cfg80211_beacon_registration *reg, *tmp;
16061 if (state != NETLINK_URELEASE || notify->protocol != NETLINK_GENERIC)
16062 return NOTIFY_DONE;
16066 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
16067 struct cfg80211_sched_scan_request *sched_scan_req;
16069 list_for_each_entry_rcu(sched_scan_req,
16070 &rdev->sched_scan_req_list,
16072 if (sched_scan_req->owner_nlportid == notify->portid) {
16073 sched_scan_req->nl_owner_dead = true;
16074 schedule_work(&rdev->sched_scan_stop_wk);
16078 list_for_each_entry_rcu(wdev, &rdev->wiphy.wdev_list, list) {
16079 cfg80211_mlme_unregister_socket(wdev, notify->portid);
16081 if (wdev->owner_nlportid == notify->portid) {
16082 wdev->nl_owner_dead = true;
16083 schedule_work(&rdev->destroy_work);
16084 } else if (wdev->conn_owner_nlportid == notify->portid) {
16085 schedule_work(&wdev->disconnect_wk);
16088 cfg80211_release_pmsr(wdev, notify->portid);
16091 spin_lock_bh(&rdev->beacon_registrations_lock);
16092 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
16094 if (reg->nlportid == notify->portid) {
16095 list_del(®->list);
16100 spin_unlock_bh(&rdev->beacon_registrations_lock);
16106 * It is possible that the user space process that is controlling the
16107 * indoor setting disappeared, so notify the regulatory core.
16109 regulatory_netlink_notify(notify->portid);
16113 static struct notifier_block nl80211_netlink_notifier = {
16114 .notifier_call = nl80211_netlink_notify,
16117 void cfg80211_ft_event(struct net_device *netdev,
16118 struct cfg80211_ft_event_params *ft_event)
16120 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16121 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16122 struct sk_buff *msg;
16125 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
16127 if (!ft_event->target_ap)
16130 msg = nlmsg_new(100 + ft_event->ies_len + ft_event->ric_ies_len,
16135 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
16139 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16140 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16141 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
16144 if (ft_event->ies &&
16145 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
16147 if (ft_event->ric_ies &&
16148 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
16149 ft_event->ric_ies))
16152 genlmsg_end(msg, hdr);
16154 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16155 NL80211_MCGRP_MLME, GFP_KERNEL);
16160 EXPORT_SYMBOL(cfg80211_ft_event);
16162 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
16164 struct cfg80211_registered_device *rdev;
16165 struct sk_buff *msg;
16169 rdev = wiphy_to_rdev(wdev->wiphy);
16170 if (!rdev->crit_proto_nlportid)
16173 nlportid = rdev->crit_proto_nlportid;
16174 rdev->crit_proto_nlportid = 0;
16176 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16180 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
16182 goto nla_put_failure;
16184 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16185 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16187 goto nla_put_failure;
16189 genlmsg_end(msg, hdr);
16191 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
16197 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
16199 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
16201 struct wiphy *wiphy = wdev->wiphy;
16202 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16203 struct sk_buff *msg;
16206 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
16210 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
16214 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16215 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
16216 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16220 genlmsg_end(msg, hdr);
16222 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
16223 NL80211_MCGRP_MLME, GFP_KERNEL);
16229 int cfg80211_external_auth_request(struct net_device *dev,
16230 struct cfg80211_external_auth_params *params,
16233 struct wireless_dev *wdev = dev->ieee80211_ptr;
16234 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16235 struct sk_buff *msg;
16238 if (!wdev->conn_owner_nlportid)
16241 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16245 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_EXTERNAL_AUTH);
16247 goto nla_put_failure;
16249 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16250 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16251 nla_put_u32(msg, NL80211_ATTR_AKM_SUITES, params->key_mgmt_suite) ||
16252 nla_put_u32(msg, NL80211_ATTR_EXTERNAL_AUTH_ACTION,
16254 nla_put(msg, NL80211_ATTR_BSSID, ETH_ALEN, params->bssid) ||
16255 nla_put(msg, NL80211_ATTR_SSID, params->ssid.ssid_len,
16256 params->ssid.ssid))
16257 goto nla_put_failure;
16259 genlmsg_end(msg, hdr);
16260 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
16261 wdev->conn_owner_nlportid);
16268 EXPORT_SYMBOL(cfg80211_external_auth_request);
16270 /* initialisation/exit functions */
16272 int __init nl80211_init(void)
16276 err = genl_register_family(&nl80211_fam);
16280 err = netlink_register_notifier(&nl80211_netlink_notifier);
16286 genl_unregister_family(&nl80211_fam);
16290 void nl80211_exit(void)
16292 netlink_unregister_notifier(&nl80211_netlink_notifier);
16293 genl_unregister_family(&nl80211_fam);
projects / linux.git / blob