2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
5 * Copyright 2013-2014 Intel Mobile Communications GmbH
6 * Copyright 2015-2017 Intel Deutschland GmbH
7 * Copyright (C) 2018-2019 Intel Corporation
11 #include <linux/module.h>
12 #include <linux/err.h>
13 #include <linux/slab.h>
14 #include <linux/list.h>
15 #include <linux/if_ether.h>
16 #include <linux/ieee80211.h>
17 #include <linux/nl80211.h>
18 #include <linux/rtnetlink.h>
19 #include <linux/netlink.h>
20 #include <linux/nospec.h>
21 #include <linux/etherdevice.h>
22 #include <net/net_namespace.h>
23 #include <net/genetlink.h>
24 #include <net/cfg80211.h>
26 #include <net/inet_connection_sock.h>
32 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
33 struct genl_info *info,
34 struct cfg80211_crypto_settings *settings,
37 /* the netlink family */
38 static struct genl_family nl80211_fam;
40 /* multicast groups */
41 enum nl80211_multicast_groups {
44 NL80211_MCGRP_REGULATORY,
48 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
51 static const struct genl_multicast_group nl80211_mcgrps[] = {
52 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
53 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
54 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
55 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
56 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
57 [NL80211_MCGRP_NAN] = { .name = NL80211_MULTICAST_GROUP_NAN },
58 #ifdef CONFIG_NL80211_TESTMODE
59 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
63 /* returns ERR_PTR values */
64 static struct wireless_dev *
65 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
67 struct cfg80211_registered_device *rdev;
68 struct wireless_dev *result = NULL;
69 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
70 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
77 if (!have_ifidx && !have_wdev_id)
78 return ERR_PTR(-EINVAL);
81 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
83 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
84 wiphy_idx = wdev_id >> 32;
87 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
88 struct wireless_dev *wdev;
90 if (wiphy_net(&rdev->wiphy) != netns)
93 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
96 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
97 if (have_ifidx && wdev->netdev &&
98 wdev->netdev->ifindex == ifidx) {
102 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
114 return ERR_PTR(-ENODEV);
117 static struct cfg80211_registered_device *
118 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
120 struct cfg80211_registered_device *rdev = NULL, *tmp;
121 struct net_device *netdev;
125 if (!attrs[NL80211_ATTR_WIPHY] &&
126 !attrs[NL80211_ATTR_IFINDEX] &&
127 !attrs[NL80211_ATTR_WDEV])
128 return ERR_PTR(-EINVAL);
130 if (attrs[NL80211_ATTR_WIPHY])
131 rdev = cfg80211_rdev_by_wiphy_idx(
132 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
134 if (attrs[NL80211_ATTR_WDEV]) {
135 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
136 struct wireless_dev *wdev;
139 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
141 /* make sure wdev exists */
142 list_for_each_entry(wdev, &tmp->wiphy.wdev_list, list) {
143 if (wdev->identifier != (u32)wdev_id)
152 if (rdev && tmp != rdev)
153 return ERR_PTR(-EINVAL);
158 if (attrs[NL80211_ATTR_IFINDEX]) {
159 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
161 netdev = __dev_get_by_index(netns, ifindex);
163 if (netdev->ieee80211_ptr)
165 netdev->ieee80211_ptr->wiphy);
169 /* not wireless device -- return error */
171 return ERR_PTR(-EINVAL);
173 /* mismatch -- return error */
174 if (rdev && tmp != rdev)
175 return ERR_PTR(-EINVAL);
182 return ERR_PTR(-ENODEV);
184 if (netns != wiphy_net(&rdev->wiphy))
185 return ERR_PTR(-ENODEV);
191 * This function returns a pointer to the driver
192 * that the genl_info item that is passed refers to.
194 * The result of this can be a PTR_ERR and hence must
195 * be checked with IS_ERR() for errors.
197 static struct cfg80211_registered_device *
198 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
200 return __cfg80211_rdev_from_attrs(netns, info->attrs);
203 static int validate_ie_attr(const struct nlattr *attr,
204 struct netlink_ext_ack *extack)
206 const u8 *data = nla_data(attr);
207 unsigned int len = nla_len(attr);
208 const struct element *elem;
210 for_each_element(elem, data, len) {
214 if (for_each_element_completed(elem, data, len))
217 NL_SET_ERR_MSG_ATTR(extack, attr, "malformed information elements");
221 /* policy for the attributes */
222 static const struct nla_policy
223 nl80211_ftm_responder_policy[NL80211_FTM_RESP_ATTR_MAX + 1] = {
224 [NL80211_FTM_RESP_ATTR_ENABLED] = { .type = NLA_FLAG, },
225 [NL80211_FTM_RESP_ATTR_LCI] = { .type = NLA_BINARY,
227 [NL80211_FTM_RESP_ATTR_CIVICLOC] = { .type = NLA_BINARY,
231 static const struct nla_policy
232 nl80211_pmsr_ftm_req_attr_policy[NL80211_PMSR_FTM_REQ_ATTR_MAX + 1] = {
233 [NL80211_PMSR_FTM_REQ_ATTR_ASAP] = { .type = NLA_FLAG },
234 [NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE] = { .type = NLA_U32 },
235 [NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP] =
236 NLA_POLICY_MAX(NLA_U8, 15),
237 [NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD] = { .type = NLA_U16 },
238 [NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION] =
239 NLA_POLICY_MAX(NLA_U8, 15),
240 [NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST] =
241 NLA_POLICY_MAX(NLA_U8, 31),
242 [NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES] = { .type = NLA_U8 },
243 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI] = { .type = NLA_FLAG },
244 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC] = { .type = NLA_FLAG },
247 static const struct nla_policy
248 nl80211_pmsr_req_data_policy[NL80211_PMSR_TYPE_MAX + 1] = {
249 [NL80211_PMSR_TYPE_FTM] =
250 NLA_POLICY_NESTED(nl80211_pmsr_ftm_req_attr_policy),
253 static const struct nla_policy
254 nl80211_pmsr_req_attr_policy[NL80211_PMSR_REQ_ATTR_MAX + 1] = {
255 [NL80211_PMSR_REQ_ATTR_DATA] =
256 NLA_POLICY_NESTED(nl80211_pmsr_req_data_policy),
257 [NL80211_PMSR_REQ_ATTR_GET_AP_TSF] = { .type = NLA_FLAG },
260 static const struct nla_policy
261 nl80211_psmr_peer_attr_policy[NL80211_PMSR_PEER_ATTR_MAX + 1] = {
262 [NL80211_PMSR_PEER_ATTR_ADDR] = NLA_POLICY_ETH_ADDR,
264 * we could specify this again to be the top-level policy,
265 * but that would open us up to recursion problems ...
267 [NL80211_PMSR_PEER_ATTR_CHAN] = { .type = NLA_NESTED },
268 [NL80211_PMSR_PEER_ATTR_REQ] =
269 NLA_POLICY_NESTED(nl80211_pmsr_req_attr_policy),
270 [NL80211_PMSR_PEER_ATTR_RESP] = { .type = NLA_REJECT },
273 static const struct nla_policy
274 nl80211_pmsr_attr_policy[NL80211_PMSR_ATTR_MAX + 1] = {
275 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_REJECT },
276 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_REJECT },
277 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_REJECT },
278 [NL80211_PMSR_ATTR_TYPE_CAPA] = { .type = NLA_REJECT },
279 [NL80211_PMSR_ATTR_PEERS] =
280 NLA_POLICY_NESTED_ARRAY(nl80211_psmr_peer_attr_policy),
283 const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
284 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
285 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
287 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
289 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
290 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
291 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
292 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
293 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
295 [NL80211_ATTR_WIPHY_RETRY_SHORT] = NLA_POLICY_MIN(NLA_U8, 1),
296 [NL80211_ATTR_WIPHY_RETRY_LONG] = NLA_POLICY_MIN(NLA_U8, 1),
297 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
298 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
299 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
300 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
302 [NL80211_ATTR_IFTYPE] = NLA_POLICY_MAX(NLA_U32, NL80211_IFTYPE_MAX),
303 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
304 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
306 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
307 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
309 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
310 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
311 .len = WLAN_MAX_KEY_LEN },
312 [NL80211_ATTR_KEY_IDX] = NLA_POLICY_MAX(NLA_U8, 5),
313 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
314 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
315 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
316 [NL80211_ATTR_KEY_TYPE] =
317 NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES),
319 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
320 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
321 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
322 .len = IEEE80211_MAX_DATA_LEN },
323 [NL80211_ATTR_BEACON_TAIL] =
324 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
325 IEEE80211_MAX_DATA_LEN),
326 [NL80211_ATTR_STA_AID] =
327 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
328 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
329 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
330 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
331 .len = NL80211_MAX_SUPP_RATES },
332 [NL80211_ATTR_STA_PLINK_ACTION] =
333 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_ACTIONS - 1),
334 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
335 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
336 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
337 .len = IEEE80211_MAX_MESH_ID_LEN },
338 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
340 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
341 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
343 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
344 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
345 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
346 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
347 .len = NL80211_MAX_SUPP_RATES },
348 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
350 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
351 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
353 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
355 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
356 [NL80211_ATTR_IE] = NLA_POLICY_VALIDATE_FN(NLA_BINARY,
358 IEEE80211_MAX_DATA_LEN),
359 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
360 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
362 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
363 .len = IEEE80211_MAX_SSID_LEN },
364 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
365 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
366 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
367 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
368 [NL80211_ATTR_USE_MFP] = NLA_POLICY_RANGE(NLA_U32,
370 NL80211_MFP_OPTIONAL),
371 [NL80211_ATTR_STA_FLAGS2] = {
372 .len = sizeof(struct nl80211_sta_flag_update),
374 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
375 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
376 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
377 [NL80211_ATTR_CONTROL_PORT_OVER_NL80211] = { .type = NLA_FLAG },
378 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
379 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
380 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
381 [NL80211_ATTR_PID] = { .type = NLA_U32 },
382 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
383 [NL80211_ATTR_PMKID] = { .len = WLAN_PMKID_LEN },
384 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
385 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
386 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
387 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
388 .len = IEEE80211_MAX_DATA_LEN },
389 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
390 [NL80211_ATTR_PS_STATE] = NLA_POLICY_RANGE(NLA_U32,
393 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
394 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
395 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
396 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
397 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
398 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
399 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
400 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
401 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
402 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
403 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
404 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
405 [NL80211_ATTR_STA_PLINK_STATE] =
406 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_STATES - 1),
407 [NL80211_ATTR_MESH_PEER_AID] =
408 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
409 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
410 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
411 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
412 [NL80211_ATTR_HIDDEN_SSID] =
413 NLA_POLICY_RANGE(NLA_U32,
414 NL80211_HIDDEN_SSID_NOT_IN_USE,
415 NL80211_HIDDEN_SSID_ZERO_CONTENTS),
416 [NL80211_ATTR_IE_PROBE_RESP] =
417 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
418 IEEE80211_MAX_DATA_LEN),
419 [NL80211_ATTR_IE_ASSOC_RESP] =
420 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
421 IEEE80211_MAX_DATA_LEN),
422 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
423 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
424 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
425 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
426 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
427 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
428 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
429 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
430 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
431 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
432 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
433 .len = IEEE80211_MAX_DATA_LEN },
434 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
435 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
436 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
437 .len = NL80211_HT_CAPABILITY_LEN
439 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
440 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
441 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
442 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
443 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
444 [NL80211_ATTR_AUTH_DATA] = { .type = NLA_BINARY, },
445 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
446 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
447 [NL80211_ATTR_P2P_CTWINDOW] = NLA_POLICY_MAX(NLA_U8, 127),
448 [NL80211_ATTR_P2P_OPPPS] = NLA_POLICY_MAX(NLA_U8, 1),
449 [NL80211_ATTR_LOCAL_MESH_POWER_MODE] =
450 NLA_POLICY_RANGE(NLA_U32,
451 NL80211_MESH_POWER_UNKNOWN + 1,
452 NL80211_MESH_POWER_MAX),
453 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
454 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
455 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
456 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
457 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
458 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
459 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
460 .len = NL80211_VHT_CAPABILITY_LEN,
462 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
463 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
464 .len = IEEE80211_MAX_DATA_LEN },
465 [NL80211_ATTR_PEER_AID] =
466 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
467 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
468 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
469 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
470 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
471 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
472 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
473 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
474 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
475 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
476 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
477 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
478 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
479 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
480 .len = IEEE80211_QOS_MAP_LEN_MAX },
481 [NL80211_ATTR_MAC_HINT] = { .len = ETH_ALEN },
482 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
483 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
484 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
485 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
486 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
487 [NL80211_ATTR_TSID] = NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_TIDS - 1),
488 [NL80211_ATTR_USER_PRIO] =
489 NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_UPS - 1),
490 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
491 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
492 [NL80211_ATTR_MAC_MASK] = { .len = ETH_ALEN },
493 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
494 [NL80211_ATTR_NETNS_FD] = { .type = NLA_U32 },
495 [NL80211_ATTR_SCHED_SCAN_DELAY] = { .type = NLA_U32 },
496 [NL80211_ATTR_REG_INDOOR] = { .type = NLA_FLAG },
497 [NL80211_ATTR_PBSS] = { .type = NLA_FLAG },
498 [NL80211_ATTR_BSS_SELECT] = { .type = NLA_NESTED },
499 [NL80211_ATTR_STA_SUPPORT_P2P_PS] =
500 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_P2P_PS_STATUS - 1),
501 [NL80211_ATTR_MU_MIMO_GROUP_DATA] = {
502 .len = VHT_MUMIMO_GROUPS_DATA_LEN
504 [NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR] = { .len = ETH_ALEN },
505 [NL80211_ATTR_NAN_MASTER_PREF] = NLA_POLICY_MIN(NLA_U8, 1),
506 [NL80211_ATTR_BANDS] = { .type = NLA_U32 },
507 [NL80211_ATTR_NAN_FUNC] = { .type = NLA_NESTED },
508 [NL80211_ATTR_FILS_KEK] = { .type = NLA_BINARY,
509 .len = FILS_MAX_KEK_LEN },
510 [NL80211_ATTR_FILS_NONCES] = { .len = 2 * FILS_NONCE_LEN },
511 [NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED] = { .type = NLA_FLAG, },
512 [NL80211_ATTR_BSSID] = { .len = ETH_ALEN },
513 [NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] = { .type = NLA_S8 },
514 [NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST] = {
515 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
517 [NL80211_ATTR_TIMEOUT_REASON] = { .type = NLA_U32 },
518 [NL80211_ATTR_FILS_ERP_USERNAME] = { .type = NLA_BINARY,
519 .len = FILS_ERP_MAX_USERNAME_LEN },
520 [NL80211_ATTR_FILS_ERP_REALM] = { .type = NLA_BINARY,
521 .len = FILS_ERP_MAX_REALM_LEN },
522 [NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] = { .type = NLA_U16 },
523 [NL80211_ATTR_FILS_ERP_RRK] = { .type = NLA_BINARY,
524 .len = FILS_ERP_MAX_RRK_LEN },
525 [NL80211_ATTR_FILS_CACHE_ID] = { .len = 2 },
526 [NL80211_ATTR_PMK] = { .type = NLA_BINARY, .len = PMK_MAX_LEN },
527 [NL80211_ATTR_SCHED_SCAN_MULTI] = { .type = NLA_FLAG },
528 [NL80211_ATTR_EXTERNAL_AUTH_SUPPORT] = { .type = NLA_FLAG },
530 [NL80211_ATTR_TXQ_LIMIT] = { .type = NLA_U32 },
531 [NL80211_ATTR_TXQ_MEMORY_LIMIT] = { .type = NLA_U32 },
532 [NL80211_ATTR_TXQ_QUANTUM] = { .type = NLA_U32 },
533 [NL80211_ATTR_HE_CAPABILITY] = { .type = NLA_BINARY,
534 .len = NL80211_HE_MAX_CAPABILITY_LEN },
536 [NL80211_ATTR_FTM_RESPONDER] = {
538 .validation_data = nl80211_ftm_responder_policy,
540 [NL80211_ATTR_TIMEOUT] = NLA_POLICY_MIN(NLA_U32, 1),
541 [NL80211_ATTR_PEER_MEASUREMENTS] =
542 NLA_POLICY_NESTED(nl80211_pmsr_attr_policy),
543 [NL80211_ATTR_AIRTIME_WEIGHT] = NLA_POLICY_MIN(NLA_U16, 1),
546 /* policy for the key attributes */
547 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
548 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
549 [NL80211_KEY_IDX] = { .type = NLA_U8 },
550 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
551 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
552 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
553 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
554 [NL80211_KEY_TYPE] = NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES - 1),
555 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
556 [NL80211_KEY_MODE] = NLA_POLICY_RANGE(NLA_U8, 0, NL80211_KEY_SET_TX),
559 /* policy for the key default flags */
560 static const struct nla_policy
561 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
562 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
563 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
567 /* policy for WoWLAN attributes */
568 static const struct nla_policy
569 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
570 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
571 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
572 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
573 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
574 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
575 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
576 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
577 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
578 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
579 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
582 static const struct nla_policy
583 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
584 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
585 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
586 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
587 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
588 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
589 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
590 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
591 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
593 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
594 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
596 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
597 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
598 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
600 #endif /* CONFIG_PM */
602 /* policy for coalesce rule attributes */
603 static const struct nla_policy
604 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
605 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
606 [NL80211_ATTR_COALESCE_RULE_CONDITION] =
607 NLA_POLICY_RANGE(NLA_U32,
608 NL80211_COALESCE_CONDITION_MATCH,
609 NL80211_COALESCE_CONDITION_NO_MATCH),
610 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
613 /* policy for GTK rekey offload attributes */
614 static const struct nla_policy
615 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
616 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
617 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
618 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
621 static const struct nla_policy
622 nl80211_match_band_rssi_policy[NUM_NL80211_BANDS] = {
623 [NL80211_BAND_2GHZ] = { .type = NLA_S32 },
624 [NL80211_BAND_5GHZ] = { .type = NLA_S32 },
625 [NL80211_BAND_60GHZ] = { .type = NLA_S32 },
628 static const struct nla_policy
629 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
630 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
631 .len = IEEE80211_MAX_SSID_LEN },
632 [NL80211_SCHED_SCAN_MATCH_ATTR_BSSID] = { .len = ETH_ALEN },
633 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
634 [NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI] =
635 NLA_POLICY_NESTED(nl80211_match_band_rssi_policy),
638 static const struct nla_policy
639 nl80211_plan_policy[NL80211_SCHED_SCAN_PLAN_MAX + 1] = {
640 [NL80211_SCHED_SCAN_PLAN_INTERVAL] = { .type = NLA_U32 },
641 [NL80211_SCHED_SCAN_PLAN_ITERATIONS] = { .type = NLA_U32 },
644 static const struct nla_policy
645 nl80211_bss_select_policy[NL80211_BSS_SELECT_ATTR_MAX + 1] = {
646 [NL80211_BSS_SELECT_ATTR_RSSI] = { .type = NLA_FLAG },
647 [NL80211_BSS_SELECT_ATTR_BAND_PREF] = { .type = NLA_U32 },
648 [NL80211_BSS_SELECT_ATTR_RSSI_ADJUST] = {
649 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
653 /* policy for NAN function attributes */
654 static const struct nla_policy
655 nl80211_nan_func_policy[NL80211_NAN_FUNC_ATTR_MAX + 1] = {
656 [NL80211_NAN_FUNC_TYPE] = { .type = NLA_U8 },
657 [NL80211_NAN_FUNC_SERVICE_ID] = {
658 .len = NL80211_NAN_FUNC_SERVICE_ID_LEN },
659 [NL80211_NAN_FUNC_PUBLISH_TYPE] = { .type = NLA_U8 },
660 [NL80211_NAN_FUNC_PUBLISH_BCAST] = { .type = NLA_FLAG },
661 [NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE] = { .type = NLA_FLAG },
662 [NL80211_NAN_FUNC_FOLLOW_UP_ID] = { .type = NLA_U8 },
663 [NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] = { .type = NLA_U8 },
664 [NL80211_NAN_FUNC_FOLLOW_UP_DEST] = { .len = ETH_ALEN },
665 [NL80211_NAN_FUNC_CLOSE_RANGE] = { .type = NLA_FLAG },
666 [NL80211_NAN_FUNC_TTL] = { .type = NLA_U32 },
667 [NL80211_NAN_FUNC_SERVICE_INFO] = { .type = NLA_BINARY,
668 .len = NL80211_NAN_FUNC_SERVICE_SPEC_INFO_MAX_LEN },
669 [NL80211_NAN_FUNC_SRF] = { .type = NLA_NESTED },
670 [NL80211_NAN_FUNC_RX_MATCH_FILTER] = { .type = NLA_NESTED },
671 [NL80211_NAN_FUNC_TX_MATCH_FILTER] = { .type = NLA_NESTED },
672 [NL80211_NAN_FUNC_INSTANCE_ID] = { .type = NLA_U8 },
673 [NL80211_NAN_FUNC_TERM_REASON] = { .type = NLA_U8 },
676 /* policy for Service Response Filter attributes */
677 static const struct nla_policy
678 nl80211_nan_srf_policy[NL80211_NAN_SRF_ATTR_MAX + 1] = {
679 [NL80211_NAN_SRF_INCLUDE] = { .type = NLA_FLAG },
680 [NL80211_NAN_SRF_BF] = { .type = NLA_BINARY,
681 .len = NL80211_NAN_FUNC_SRF_MAX_LEN },
682 [NL80211_NAN_SRF_BF_IDX] = { .type = NLA_U8 },
683 [NL80211_NAN_SRF_MAC_ADDRS] = { .type = NLA_NESTED },
686 /* policy for packet pattern attributes */
687 static const struct nla_policy
688 nl80211_packet_pattern_policy[MAX_NL80211_PKTPAT + 1] = {
689 [NL80211_PKTPAT_MASK] = { .type = NLA_BINARY, },
690 [NL80211_PKTPAT_PATTERN] = { .type = NLA_BINARY, },
691 [NL80211_PKTPAT_OFFSET] = { .type = NLA_U32 },
694 int nl80211_prepare_wdev_dump(struct netlink_callback *cb,
695 struct cfg80211_registered_device **rdev,
696 struct wireless_dev **wdev)
701 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
702 genl_family_attrbuf(&nl80211_fam),
703 nl80211_fam.maxattr, nl80211_policy, NULL);
707 *wdev = __cfg80211_wdev_from_attrs(
708 sock_net(cb->skb->sk),
709 genl_family_attrbuf(&nl80211_fam));
711 return PTR_ERR(*wdev);
712 *rdev = wiphy_to_rdev((*wdev)->wiphy);
713 /* 0 is the first index - add 1 to parse only once */
714 cb->args[0] = (*rdev)->wiphy_idx + 1;
715 cb->args[1] = (*wdev)->identifier;
717 /* subtract the 1 again here */
718 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
719 struct wireless_dev *tmp;
723 *rdev = wiphy_to_rdev(wiphy);
726 list_for_each_entry(tmp, &(*rdev)->wiphy.wdev_list, list) {
727 if (tmp->identifier == cb->args[1]) {
740 /* message building helper */
741 void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
744 /* since there is no private header just add the generic one */
745 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
748 static int nl80211_msg_put_wmm_rules(struct sk_buff *msg,
749 const struct ieee80211_reg_rule *rule)
752 struct nlattr *nl_wmm_rules =
753 nla_nest_start(msg, NL80211_FREQUENCY_ATTR_WMM);
756 goto nla_put_failure;
758 for (j = 0; j < IEEE80211_NUM_ACS; j++) {
759 struct nlattr *nl_wmm_rule = nla_nest_start(msg, j);
762 goto nla_put_failure;
764 if (nla_put_u16(msg, NL80211_WMMR_CW_MIN,
765 rule->wmm_rule.client[j].cw_min) ||
766 nla_put_u16(msg, NL80211_WMMR_CW_MAX,
767 rule->wmm_rule.client[j].cw_max) ||
768 nla_put_u8(msg, NL80211_WMMR_AIFSN,
769 rule->wmm_rule.client[j].aifsn) ||
770 nla_put_u16(msg, NL80211_WMMR_TXOP,
771 rule->wmm_rule.client[j].cot))
772 goto nla_put_failure;
774 nla_nest_end(msg, nl_wmm_rule);
776 nla_nest_end(msg, nl_wmm_rules);
784 static int nl80211_msg_put_channel(struct sk_buff *msg, struct wiphy *wiphy,
785 struct ieee80211_channel *chan,
788 /* Some channels must be completely excluded from the
789 * list to protect old user-space tools from breaking
791 if (!large && chan->flags &
792 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
795 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
797 goto nla_put_failure;
799 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
800 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
801 goto nla_put_failure;
802 if (chan->flags & IEEE80211_CHAN_NO_IR) {
803 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
804 goto nla_put_failure;
805 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
806 goto nla_put_failure;
808 if (chan->flags & IEEE80211_CHAN_RADAR) {
809 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
810 goto nla_put_failure;
814 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
816 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
818 goto nla_put_failure;
819 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
821 goto nla_put_failure;
823 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
825 goto nla_put_failure;
830 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
831 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
832 goto nla_put_failure;
833 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
834 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
835 goto nla_put_failure;
836 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
837 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
838 goto nla_put_failure;
839 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
840 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
841 goto nla_put_failure;
842 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
843 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
844 goto nla_put_failure;
845 if ((chan->flags & IEEE80211_CHAN_IR_CONCURRENT) &&
846 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_IR_CONCURRENT))
847 goto nla_put_failure;
848 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
849 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
850 goto nla_put_failure;
851 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
852 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
853 goto nla_put_failure;
856 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
857 DBM_TO_MBM(chan->max_power)))
858 goto nla_put_failure;
861 const struct ieee80211_reg_rule *rule =
862 freq_reg_info(wiphy, MHZ_TO_KHZ(chan->center_freq));
864 if (!IS_ERR_OR_NULL(rule) && rule->has_wmm) {
865 if (nl80211_msg_put_wmm_rules(msg, rule))
866 goto nla_put_failure;
876 static bool nl80211_put_txq_stats(struct sk_buff *msg,
877 struct cfg80211_txq_stats *txqstats,
880 struct nlattr *txqattr;
882 #define PUT_TXQVAL_U32(attr, memb) do { \
883 if (txqstats->filled & BIT(NL80211_TXQ_STATS_ ## attr) && \
884 nla_put_u32(msg, NL80211_TXQ_STATS_ ## attr, txqstats->memb)) \
888 txqattr = nla_nest_start(msg, attrtype);
892 PUT_TXQVAL_U32(BACKLOG_BYTES, backlog_bytes);
893 PUT_TXQVAL_U32(BACKLOG_PACKETS, backlog_packets);
894 PUT_TXQVAL_U32(FLOWS, flows);
895 PUT_TXQVAL_U32(DROPS, drops);
896 PUT_TXQVAL_U32(ECN_MARKS, ecn_marks);
897 PUT_TXQVAL_U32(OVERLIMIT, overlimit);
898 PUT_TXQVAL_U32(OVERMEMORY, overmemory);
899 PUT_TXQVAL_U32(COLLISIONS, collisions);
900 PUT_TXQVAL_U32(TX_BYTES, tx_bytes);
901 PUT_TXQVAL_U32(TX_PACKETS, tx_packets);
902 PUT_TXQVAL_U32(MAX_FLOWS, max_flows);
903 nla_nest_end(msg, txqattr);
905 #undef PUT_TXQVAL_U32
909 /* netlink command implementations */
916 bool def_uni, def_multi;
919 static int nl80211_parse_key_new(struct genl_info *info, struct nlattr *key,
922 struct nlattr *tb[NL80211_KEY_MAX + 1];
923 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
924 nl80211_key_policy, info->extack);
928 k->def = !!tb[NL80211_KEY_DEFAULT];
929 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
938 if (tb[NL80211_KEY_IDX])
939 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
941 if (tb[NL80211_KEY_DATA]) {
942 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
943 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
946 if (tb[NL80211_KEY_SEQ]) {
947 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
948 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
951 if (tb[NL80211_KEY_CIPHER])
952 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
954 if (tb[NL80211_KEY_TYPE])
955 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
957 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
958 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
960 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
961 tb[NL80211_KEY_DEFAULT_TYPES],
962 nl80211_key_default_policy,
967 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
968 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
971 if (tb[NL80211_KEY_MODE])
972 k->p.mode = nla_get_u8(tb[NL80211_KEY_MODE]);
977 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
979 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
980 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
981 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
984 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
985 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
986 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
989 if (info->attrs[NL80211_ATTR_KEY_IDX])
990 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
992 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
993 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
995 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
996 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
1000 k->def_multi = true;
1003 k->def_multi = true;
1005 if (info->attrs[NL80211_ATTR_KEY_TYPE])
1006 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
1008 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
1009 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
1010 int err = nla_parse_nested(kdt,
1011 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
1012 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
1013 nl80211_key_default_policy,
1018 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1019 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1025 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
1029 memset(k, 0, sizeof(*k));
1033 if (info->attrs[NL80211_ATTR_KEY])
1034 err = nl80211_parse_key_new(info, info->attrs[NL80211_ATTR_KEY], k);
1036 err = nl80211_parse_key_old(info, k);
1041 if (k->def && k->defmgmt) {
1042 GENL_SET_ERR_MSG(info, "key with def && defmgmt is invalid");
1047 if (k->def_uni || !k->def_multi) {
1048 GENL_SET_ERR_MSG(info, "defmgmt key must be mcast");
1055 if (k->idx < 4 || k->idx > 5) {
1056 GENL_SET_ERR_MSG(info,
1057 "defmgmt key idx not 4 or 5");
1060 } else if (k->def) {
1061 if (k->idx < 0 || k->idx > 3) {
1062 GENL_SET_ERR_MSG(info, "def key idx not 0-3");
1066 if (k->idx < 0 || k->idx > 5) {
1067 GENL_SET_ERR_MSG(info, "key idx not 0-5");
1076 static struct cfg80211_cached_keys *
1077 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
1078 struct genl_info *info, bool *no_ht)
1080 struct nlattr *keys = info->attrs[NL80211_ATTR_KEYS];
1081 struct key_parse parse;
1083 struct cfg80211_cached_keys *result;
1084 int rem, err, def = 0;
1085 bool have_key = false;
1087 nla_for_each_nested(key, keys, rem) {
1095 result = kzalloc(sizeof(*result), GFP_KERNEL);
1097 return ERR_PTR(-ENOMEM);
1101 nla_for_each_nested(key, keys, rem) {
1102 memset(&parse, 0, sizeof(parse));
1105 err = nl80211_parse_key_new(info, key, &parse);
1111 if (parse.idx < 0 || parse.idx > 3) {
1112 GENL_SET_ERR_MSG(info, "key index out of range [0-3]");
1117 GENL_SET_ERR_MSG(info,
1118 "only one key can be default");
1122 result->def = parse.idx;
1123 if (!parse.def_uni || !parse.def_multi)
1125 } else if (parse.defmgmt)
1127 err = cfg80211_validate_key_settings(rdev, &parse.p,
1128 parse.idx, false, NULL);
1131 if (parse.p.cipher != WLAN_CIPHER_SUITE_WEP40 &&
1132 parse.p.cipher != WLAN_CIPHER_SUITE_WEP104) {
1133 GENL_SET_ERR_MSG(info, "connect key must be WEP");
1137 result->params[parse.idx].cipher = parse.p.cipher;
1138 result->params[parse.idx].key_len = parse.p.key_len;
1139 result->params[parse.idx].key = result->data[parse.idx];
1140 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
1142 /* must be WEP key if we got here */
1147 if (result->def < 0) {
1149 GENL_SET_ERR_MSG(info, "need a default/TX key");
1156 return ERR_PTR(err);
1159 static int nl80211_key_allowed(struct wireless_dev *wdev)
1161 ASSERT_WDEV_LOCK(wdev);
1163 switch (wdev->iftype) {
1164 case NL80211_IFTYPE_AP:
1165 case NL80211_IFTYPE_AP_VLAN:
1166 case NL80211_IFTYPE_P2P_GO:
1167 case NL80211_IFTYPE_MESH_POINT:
1169 case NL80211_IFTYPE_ADHOC:
1170 case NL80211_IFTYPE_STATION:
1171 case NL80211_IFTYPE_P2P_CLIENT:
1172 if (!wdev->current_bss)
1175 case NL80211_IFTYPE_UNSPECIFIED:
1176 case NL80211_IFTYPE_OCB:
1177 case NL80211_IFTYPE_MONITOR:
1178 case NL80211_IFTYPE_NAN:
1179 case NL80211_IFTYPE_P2P_DEVICE:
1180 case NL80211_IFTYPE_WDS:
1181 case NUM_NL80211_IFTYPES:
1188 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
1191 struct ieee80211_channel *chan;
1195 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
1196 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
1201 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
1203 struct nlattr *nl_modes = nla_nest_start(msg, attr);
1207 goto nla_put_failure;
1211 if ((ifmodes & 1) && nla_put_flag(msg, i))
1212 goto nla_put_failure;
1217 nla_nest_end(msg, nl_modes);
1224 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
1225 struct sk_buff *msg,
1228 struct nlattr *nl_combis;
1231 nl_combis = nla_nest_start(msg,
1232 NL80211_ATTR_INTERFACE_COMBINATIONS);
1234 goto nla_put_failure;
1236 for (i = 0; i < wiphy->n_iface_combinations; i++) {
1237 const struct ieee80211_iface_combination *c;
1238 struct nlattr *nl_combi, *nl_limits;
1240 c = &wiphy->iface_combinations[i];
1242 nl_combi = nla_nest_start(msg, i + 1);
1244 goto nla_put_failure;
1246 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
1248 goto nla_put_failure;
1250 for (j = 0; j < c->n_limits; j++) {
1251 struct nlattr *nl_limit;
1253 nl_limit = nla_nest_start(msg, j + 1);
1255 goto nla_put_failure;
1256 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
1258 goto nla_put_failure;
1259 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
1260 c->limits[j].types))
1261 goto nla_put_failure;
1262 nla_nest_end(msg, nl_limit);
1265 nla_nest_end(msg, nl_limits);
1267 if (c->beacon_int_infra_match &&
1268 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
1269 goto nla_put_failure;
1270 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
1271 c->num_different_channels) ||
1272 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
1274 goto nla_put_failure;
1276 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
1277 c->radar_detect_widths) ||
1278 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
1279 c->radar_detect_regions)))
1280 goto nla_put_failure;
1281 if (c->beacon_int_min_gcd &&
1282 nla_put_u32(msg, NL80211_IFACE_COMB_BI_MIN_GCD,
1283 c->beacon_int_min_gcd))
1284 goto nla_put_failure;
1286 nla_nest_end(msg, nl_combi);
1289 nla_nest_end(msg, nl_combis);
1297 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1298 struct sk_buff *msg)
1300 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1301 struct nlattr *nl_tcp;
1306 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1310 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1311 tcp->data_payload_max))
1314 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1315 tcp->data_payload_max))
1318 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1321 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1322 sizeof(*tcp->tok), tcp->tok))
1325 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1326 tcp->data_interval_max))
1329 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1330 tcp->wake_payload_max))
1333 nla_nest_end(msg, nl_tcp);
1337 static int nl80211_send_wowlan(struct sk_buff *msg,
1338 struct cfg80211_registered_device *rdev,
1341 struct nlattr *nl_wowlan;
1343 if (!rdev->wiphy.wowlan)
1346 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1350 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1351 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1352 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1353 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1354 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1355 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1356 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1357 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1358 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1359 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1360 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1361 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1362 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1363 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1364 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1365 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1368 if (rdev->wiphy.wowlan->n_patterns) {
1369 struct nl80211_pattern_support pat = {
1370 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1371 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1372 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1373 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1376 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1381 if ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_NET_DETECT) &&
1382 nla_put_u32(msg, NL80211_WOWLAN_TRIG_NET_DETECT,
1383 rdev->wiphy.wowlan->max_nd_match_sets))
1386 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1389 nla_nest_end(msg, nl_wowlan);
1395 static int nl80211_send_coalesce(struct sk_buff *msg,
1396 struct cfg80211_registered_device *rdev)
1398 struct nl80211_coalesce_rule_support rule;
1400 if (!rdev->wiphy.coalesce)
1403 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1404 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1405 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1406 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1407 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1408 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1410 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1417 nl80211_send_iftype_data(struct sk_buff *msg,
1418 const struct ieee80211_sband_iftype_data *iftdata)
1420 const struct ieee80211_sta_he_cap *he_cap = &iftdata->he_cap;
1422 if (nl80211_put_iftypes(msg, NL80211_BAND_IFTYPE_ATTR_IFTYPES,
1423 iftdata->types_mask))
1426 if (he_cap->has_he) {
1427 if (nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MAC,
1428 sizeof(he_cap->he_cap_elem.mac_cap_info),
1429 he_cap->he_cap_elem.mac_cap_info) ||
1430 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PHY,
1431 sizeof(he_cap->he_cap_elem.phy_cap_info),
1432 he_cap->he_cap_elem.phy_cap_info) ||
1433 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MCS_SET,
1434 sizeof(he_cap->he_mcs_nss_supp),
1435 &he_cap->he_mcs_nss_supp) ||
1436 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PPE,
1437 sizeof(he_cap->ppe_thres), he_cap->ppe_thres))
1444 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1445 struct ieee80211_supported_band *sband)
1447 struct nlattr *nl_rates, *nl_rate;
1448 struct ieee80211_rate *rate;
1452 if (sband->ht_cap.ht_supported &&
1453 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1454 sizeof(sband->ht_cap.mcs),
1455 &sband->ht_cap.mcs) ||
1456 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1457 sband->ht_cap.cap) ||
1458 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1459 sband->ht_cap.ampdu_factor) ||
1460 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1461 sband->ht_cap.ampdu_density)))
1465 if (sband->vht_cap.vht_supported &&
1466 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1467 sizeof(sband->vht_cap.vht_mcs),
1468 &sband->vht_cap.vht_mcs) ||
1469 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1470 sband->vht_cap.cap)))
1473 if (sband->n_iftype_data) {
1474 struct nlattr *nl_iftype_data =
1475 nla_nest_start(msg, NL80211_BAND_ATTR_IFTYPE_DATA);
1478 if (!nl_iftype_data)
1481 for (i = 0; i < sband->n_iftype_data; i++) {
1482 struct nlattr *iftdata;
1484 iftdata = nla_nest_start(msg, i + 1);
1488 err = nl80211_send_iftype_data(msg,
1489 &sband->iftype_data[i]);
1493 nla_nest_end(msg, iftdata);
1496 nla_nest_end(msg, nl_iftype_data);
1500 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1504 for (i = 0; i < sband->n_bitrates; i++) {
1505 nl_rate = nla_nest_start(msg, i);
1509 rate = &sband->bitrates[i];
1510 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1513 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1515 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1518 nla_nest_end(msg, nl_rate);
1521 nla_nest_end(msg, nl_rates);
1527 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1528 const struct ieee80211_txrx_stypes *mgmt_stypes)
1531 struct nlattr *nl_ftypes, *nl_ifs;
1532 enum nl80211_iftype ift;
1538 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1542 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1543 nl_ftypes = nla_nest_start(msg, ift);
1547 stypes = mgmt_stypes[ift].tx;
1550 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1551 (i << 4) | IEEE80211_FTYPE_MGMT))
1556 nla_nest_end(msg, nl_ftypes);
1559 nla_nest_end(msg, nl_ifs);
1561 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1565 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1566 nl_ftypes = nla_nest_start(msg, ift);
1570 stypes = mgmt_stypes[ift].rx;
1573 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1574 (i << 4) | IEEE80211_FTYPE_MGMT))
1579 nla_nest_end(msg, nl_ftypes);
1581 nla_nest_end(msg, nl_ifs);
1586 #define CMD(op, n) \
1588 if (rdev->ops->op) { \
1590 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1591 goto nla_put_failure; \
1595 static int nl80211_add_commands_unsplit(struct cfg80211_registered_device *rdev,
1596 struct sk_buff *msg)
1601 * do *NOT* add anything into this function, new things need to be
1602 * advertised only to new versions of userspace that can deal with
1603 * the split (and they can't possibly care about new features...
1605 CMD(add_virtual_intf, NEW_INTERFACE);
1606 CMD(change_virtual_intf, SET_INTERFACE);
1607 CMD(add_key, NEW_KEY);
1608 CMD(start_ap, START_AP);
1609 CMD(add_station, NEW_STATION);
1610 CMD(add_mpath, NEW_MPATH);
1611 CMD(update_mesh_config, SET_MESH_CONFIG);
1612 CMD(change_bss, SET_BSS);
1613 CMD(auth, AUTHENTICATE);
1614 CMD(assoc, ASSOCIATE);
1615 CMD(deauth, DEAUTHENTICATE);
1616 CMD(disassoc, DISASSOCIATE);
1617 CMD(join_ibss, JOIN_IBSS);
1618 CMD(join_mesh, JOIN_MESH);
1619 CMD(set_pmksa, SET_PMKSA);
1620 CMD(del_pmksa, DEL_PMKSA);
1621 CMD(flush_pmksa, FLUSH_PMKSA);
1622 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1623 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1624 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1625 CMD(mgmt_tx, FRAME);
1626 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1627 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1629 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1630 goto nla_put_failure;
1632 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1633 rdev->ops->join_mesh) {
1635 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1636 goto nla_put_failure;
1638 CMD(set_wds_peer, SET_WDS_PEER);
1639 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1640 CMD(tdls_mgmt, TDLS_MGMT);
1641 CMD(tdls_oper, TDLS_OPER);
1643 if (rdev->wiphy.max_sched_scan_reqs)
1644 CMD(sched_scan_start, START_SCHED_SCAN);
1645 CMD(probe_client, PROBE_CLIENT);
1646 CMD(set_noack_map, SET_NOACK_MAP);
1647 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1649 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1650 goto nla_put_failure;
1652 CMD(start_p2p_device, START_P2P_DEVICE);
1653 CMD(set_mcast_rate, SET_MCAST_RATE);
1654 #ifdef CONFIG_NL80211_TESTMODE
1655 CMD(testmode_cmd, TESTMODE);
1658 if (rdev->ops->connect || rdev->ops->auth) {
1660 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1661 goto nla_put_failure;
1664 if (rdev->ops->disconnect || rdev->ops->deauth) {
1666 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1667 goto nla_put_failure;
1676 nl80211_send_pmsr_ftm_capa(const struct cfg80211_pmsr_capabilities *cap,
1677 struct sk_buff *msg)
1681 if (!cap->ftm.supported)
1684 ftm = nla_nest_start(msg, NL80211_PMSR_TYPE_FTM);
1688 if (cap->ftm.asap && nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_ASAP))
1690 if (cap->ftm.non_asap &&
1691 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP))
1693 if (cap->ftm.request_lci &&
1694 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI))
1696 if (cap->ftm.request_civicloc &&
1697 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC))
1699 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES,
1700 cap->ftm.preambles))
1702 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS,
1703 cap->ftm.bandwidths))
1705 if (cap->ftm.max_bursts_exponent >= 0 &&
1706 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT,
1707 cap->ftm.max_bursts_exponent))
1709 if (cap->ftm.max_ftms_per_burst &&
1710 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST,
1711 cap->ftm.max_ftms_per_burst))
1714 nla_nest_end(msg, ftm);
1718 static int nl80211_send_pmsr_capa(struct cfg80211_registered_device *rdev,
1719 struct sk_buff *msg)
1721 const struct cfg80211_pmsr_capabilities *cap = rdev->wiphy.pmsr_capa;
1722 struct nlattr *pmsr, *caps;
1728 * we don't need to clean up anything here since the caller
1729 * will genlmsg_cancel() if we fail
1732 pmsr = nla_nest_start(msg, NL80211_ATTR_PEER_MEASUREMENTS);
1736 if (nla_put_u32(msg, NL80211_PMSR_ATTR_MAX_PEERS, cap->max_peers))
1739 if (cap->report_ap_tsf &&
1740 nla_put_flag(msg, NL80211_PMSR_ATTR_REPORT_AP_TSF))
1743 if (cap->randomize_mac_addr &&
1744 nla_put_flag(msg, NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR))
1747 caps = nla_nest_start(msg, NL80211_PMSR_ATTR_TYPE_CAPA);
1751 if (nl80211_send_pmsr_ftm_capa(cap, msg))
1754 nla_nest_end(msg, caps);
1755 nla_nest_end(msg, pmsr);
1760 struct nl80211_dump_wiphy_state {
1763 long split_start, band_start, chan_start, capa_start;
1767 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1768 enum nl80211_commands cmd,
1769 struct sk_buff *msg, u32 portid, u32 seq,
1770 int flags, struct nl80211_dump_wiphy_state *state)
1773 struct nlattr *nl_bands, *nl_band;
1774 struct nlattr *nl_freqs, *nl_freq;
1775 struct nlattr *nl_cmds;
1776 enum nl80211_band band;
1777 struct ieee80211_channel *chan;
1779 const struct ieee80211_txrx_stypes *mgmt_stypes =
1780 rdev->wiphy.mgmt_stypes;
1783 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1787 if (WARN_ON(!state))
1790 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1791 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1792 wiphy_name(&rdev->wiphy)) ||
1793 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1794 cfg80211_rdev_list_generation))
1795 goto nla_put_failure;
1797 if (cmd != NL80211_CMD_NEW_WIPHY)
1800 switch (state->split_start) {
1802 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1803 rdev->wiphy.retry_short) ||
1804 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1805 rdev->wiphy.retry_long) ||
1806 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1807 rdev->wiphy.frag_threshold) ||
1808 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1809 rdev->wiphy.rts_threshold) ||
1810 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1811 rdev->wiphy.coverage_class) ||
1812 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1813 rdev->wiphy.max_scan_ssids) ||
1814 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1815 rdev->wiphy.max_sched_scan_ssids) ||
1816 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1817 rdev->wiphy.max_scan_ie_len) ||
1818 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1819 rdev->wiphy.max_sched_scan_ie_len) ||
1820 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1821 rdev->wiphy.max_match_sets) ||
1822 nla_put_u32(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_PLANS,
1823 rdev->wiphy.max_sched_scan_plans) ||
1824 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_INTERVAL,
1825 rdev->wiphy.max_sched_scan_plan_interval) ||
1826 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_ITERATIONS,
1827 rdev->wiphy.max_sched_scan_plan_iterations))
1828 goto nla_put_failure;
1830 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1831 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1832 goto nla_put_failure;
1833 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1834 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1835 goto nla_put_failure;
1836 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1837 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1838 goto nla_put_failure;
1839 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1840 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1841 goto nla_put_failure;
1842 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1843 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1844 goto nla_put_failure;
1845 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1846 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1847 goto nla_put_failure;
1848 state->split_start++;
1853 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1854 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1855 rdev->wiphy.cipher_suites))
1856 goto nla_put_failure;
1858 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1859 rdev->wiphy.max_num_pmkids))
1860 goto nla_put_failure;
1862 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1863 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1864 goto nla_put_failure;
1866 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1867 rdev->wiphy.available_antennas_tx) ||
1868 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1869 rdev->wiphy.available_antennas_rx))
1870 goto nla_put_failure;
1872 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1873 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1874 rdev->wiphy.probe_resp_offload))
1875 goto nla_put_failure;
1877 if ((rdev->wiphy.available_antennas_tx ||
1878 rdev->wiphy.available_antennas_rx) &&
1879 rdev->ops->get_antenna) {
1880 u32 tx_ant = 0, rx_ant = 0;
1883 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
1885 if (nla_put_u32(msg,
1886 NL80211_ATTR_WIPHY_ANTENNA_TX,
1889 NL80211_ATTR_WIPHY_ANTENNA_RX,
1891 goto nla_put_failure;
1895 state->split_start++;
1900 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1901 rdev->wiphy.interface_modes))
1902 goto nla_put_failure;
1903 state->split_start++;
1908 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1910 goto nla_put_failure;
1912 for (band = state->band_start;
1913 band < NUM_NL80211_BANDS; band++) {
1914 struct ieee80211_supported_band *sband;
1916 sband = rdev->wiphy.bands[band];
1921 nl_band = nla_nest_start(msg, band);
1923 goto nla_put_failure;
1925 switch (state->chan_start) {
1927 if (nl80211_send_band_rateinfo(msg, sband))
1928 goto nla_put_failure;
1929 state->chan_start++;
1934 /* add frequencies */
1935 nl_freqs = nla_nest_start(
1936 msg, NL80211_BAND_ATTR_FREQS);
1938 goto nla_put_failure;
1940 for (i = state->chan_start - 1;
1941 i < sband->n_channels;
1943 nl_freq = nla_nest_start(msg, i);
1945 goto nla_put_failure;
1947 chan = &sband->channels[i];
1949 if (nl80211_msg_put_channel(
1950 msg, &rdev->wiphy, chan,
1952 goto nla_put_failure;
1954 nla_nest_end(msg, nl_freq);
1958 if (i < sband->n_channels)
1959 state->chan_start = i + 2;
1961 state->chan_start = 0;
1962 nla_nest_end(msg, nl_freqs);
1965 nla_nest_end(msg, nl_band);
1968 /* start again here */
1969 if (state->chan_start)
1974 nla_nest_end(msg, nl_bands);
1976 if (band < NUM_NL80211_BANDS)
1977 state->band_start = band + 1;
1979 state->band_start = 0;
1981 /* if bands & channels are done, continue outside */
1982 if (state->band_start == 0 && state->chan_start == 0)
1983 state->split_start++;
1988 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1990 goto nla_put_failure;
1992 i = nl80211_add_commands_unsplit(rdev, msg);
1994 goto nla_put_failure;
1996 CMD(crit_proto_start, CRIT_PROTOCOL_START);
1997 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
1998 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
1999 CMD(channel_switch, CHANNEL_SWITCH);
2000 CMD(set_qos_map, SET_QOS_MAP);
2001 if (rdev->wiphy.features &
2002 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
2003 CMD(add_tx_ts, ADD_TX_TS);
2004 CMD(set_multicast_to_unicast, SET_MULTICAST_TO_UNICAST);
2005 CMD(update_connect_params, UPDATE_CONNECT_PARAMS);
2009 nla_nest_end(msg, nl_cmds);
2010 state->split_start++;
2015 if (rdev->ops->remain_on_channel &&
2016 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
2018 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
2019 rdev->wiphy.max_remain_on_channel_duration))
2020 goto nla_put_failure;
2022 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
2023 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
2024 goto nla_put_failure;
2026 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
2027 goto nla_put_failure;
2028 state->split_start++;
2034 if (nl80211_send_wowlan(msg, rdev, state->split))
2035 goto nla_put_failure;
2036 state->split_start++;
2040 state->split_start++;
2044 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
2045 rdev->wiphy.software_iftypes))
2046 goto nla_put_failure;
2048 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
2050 goto nla_put_failure;
2052 state->split_start++;
2057 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
2058 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
2059 rdev->wiphy.ap_sme_capa))
2060 goto nla_put_failure;
2062 features = rdev->wiphy.features;
2064 * We can only add the per-channel limit information if the
2065 * dump is split, otherwise it makes it too big. Therefore
2066 * only advertise it in that case.
2069 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
2070 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
2071 goto nla_put_failure;
2073 if (rdev->wiphy.ht_capa_mod_mask &&
2074 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
2075 sizeof(*rdev->wiphy.ht_capa_mod_mask),
2076 rdev->wiphy.ht_capa_mod_mask))
2077 goto nla_put_failure;
2079 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
2080 rdev->wiphy.max_acl_mac_addrs &&
2081 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
2082 rdev->wiphy.max_acl_mac_addrs))
2083 goto nla_put_failure;
2086 * Any information below this point is only available to
2087 * applications that can deal with it being split. This
2088 * helps ensure that newly added capabilities don't break
2089 * older tools by overrunning their buffers.
2091 * We still increment split_start so that in the split
2092 * case we'll continue with more data in the next round,
2093 * but break unconditionally so unsplit data stops here.
2095 state->split_start++;
2098 if (rdev->wiphy.extended_capabilities &&
2099 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
2100 rdev->wiphy.extended_capabilities_len,
2101 rdev->wiphy.extended_capabilities) ||
2102 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2103 rdev->wiphy.extended_capabilities_len,
2104 rdev->wiphy.extended_capabilities_mask)))
2105 goto nla_put_failure;
2107 if (rdev->wiphy.vht_capa_mod_mask &&
2108 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
2109 sizeof(*rdev->wiphy.vht_capa_mod_mask),
2110 rdev->wiphy.vht_capa_mod_mask))
2111 goto nla_put_failure;
2113 state->split_start++;
2116 if (nl80211_send_coalesce(msg, rdev))
2117 goto nla_put_failure;
2119 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
2120 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
2121 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
2122 goto nla_put_failure;
2124 if (rdev->wiphy.max_ap_assoc_sta &&
2125 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
2126 rdev->wiphy.max_ap_assoc_sta))
2127 goto nla_put_failure;
2129 state->split_start++;
2132 if (rdev->wiphy.n_vendor_commands) {
2133 const struct nl80211_vendor_cmd_info *info;
2134 struct nlattr *nested;
2136 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
2138 goto nla_put_failure;
2140 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
2141 info = &rdev->wiphy.vendor_commands[i].info;
2142 if (nla_put(msg, i + 1, sizeof(*info), info))
2143 goto nla_put_failure;
2145 nla_nest_end(msg, nested);
2148 if (rdev->wiphy.n_vendor_events) {
2149 const struct nl80211_vendor_cmd_info *info;
2150 struct nlattr *nested;
2152 nested = nla_nest_start(msg,
2153 NL80211_ATTR_VENDOR_EVENTS);
2155 goto nla_put_failure;
2157 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
2158 info = &rdev->wiphy.vendor_events[i];
2159 if (nla_put(msg, i + 1, sizeof(*info), info))
2160 goto nla_put_failure;
2162 nla_nest_end(msg, nested);
2164 state->split_start++;
2167 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
2168 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
2169 rdev->wiphy.max_num_csa_counters))
2170 goto nla_put_failure;
2172 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
2173 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
2174 goto nla_put_failure;
2176 if (rdev->wiphy.max_sched_scan_reqs &&
2177 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_MAX_REQS,
2178 rdev->wiphy.max_sched_scan_reqs))
2179 goto nla_put_failure;
2181 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
2182 sizeof(rdev->wiphy.ext_features),
2183 rdev->wiphy.ext_features))
2184 goto nla_put_failure;
2186 if (rdev->wiphy.bss_select_support) {
2187 struct nlattr *nested;
2188 u32 bss_select_support = rdev->wiphy.bss_select_support;
2190 nested = nla_nest_start(msg, NL80211_ATTR_BSS_SELECT);
2192 goto nla_put_failure;
2195 while (bss_select_support) {
2196 if ((bss_select_support & 1) &&
2197 nla_put_flag(msg, i))
2198 goto nla_put_failure;
2200 bss_select_support >>= 1;
2202 nla_nest_end(msg, nested);
2205 state->split_start++;
2208 if (rdev->wiphy.num_iftype_ext_capab &&
2209 rdev->wiphy.iftype_ext_capab) {
2210 struct nlattr *nested_ext_capab, *nested;
2212 nested = nla_nest_start(msg,
2213 NL80211_ATTR_IFTYPE_EXT_CAPA);
2215 goto nla_put_failure;
2217 for (i = state->capa_start;
2218 i < rdev->wiphy.num_iftype_ext_capab; i++) {
2219 const struct wiphy_iftype_ext_capab *capab;
2221 capab = &rdev->wiphy.iftype_ext_capab[i];
2223 nested_ext_capab = nla_nest_start(msg, i);
2224 if (!nested_ext_capab ||
2225 nla_put_u32(msg, NL80211_ATTR_IFTYPE,
2227 nla_put(msg, NL80211_ATTR_EXT_CAPA,
2228 capab->extended_capabilities_len,
2229 capab->extended_capabilities) ||
2230 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2231 capab->extended_capabilities_len,
2232 capab->extended_capabilities_mask))
2233 goto nla_put_failure;
2235 nla_nest_end(msg, nested_ext_capab);
2239 nla_nest_end(msg, nested);
2240 if (i < rdev->wiphy.num_iftype_ext_capab) {
2241 state->capa_start = i + 1;
2246 if (nla_put_u32(msg, NL80211_ATTR_BANDS,
2247 rdev->wiphy.nan_supported_bands))
2248 goto nla_put_failure;
2250 if (wiphy_ext_feature_isset(&rdev->wiphy,
2251 NL80211_EXT_FEATURE_TXQS)) {
2252 struct cfg80211_txq_stats txqstats = {};
2255 res = rdev_get_txq_stats(rdev, NULL, &txqstats);
2257 !nl80211_put_txq_stats(msg, &txqstats,
2258 NL80211_ATTR_TXQ_STATS))
2259 goto nla_put_failure;
2261 if (nla_put_u32(msg, NL80211_ATTR_TXQ_LIMIT,
2262 rdev->wiphy.txq_limit))
2263 goto nla_put_failure;
2264 if (nla_put_u32(msg, NL80211_ATTR_TXQ_MEMORY_LIMIT,
2265 rdev->wiphy.txq_memory_limit))
2266 goto nla_put_failure;
2267 if (nla_put_u32(msg, NL80211_ATTR_TXQ_QUANTUM,
2268 rdev->wiphy.txq_quantum))
2269 goto nla_put_failure;
2272 state->split_start++;
2275 if (nl80211_send_pmsr_capa(rdev, msg))
2276 goto nla_put_failure;
2278 state->split_start++;
2281 if (rdev->wiphy.akm_suites &&
2282 nla_put(msg, NL80211_ATTR_AKM_SUITES,
2283 sizeof(u32) * rdev->wiphy.n_akm_suites,
2284 rdev->wiphy.akm_suites))
2285 goto nla_put_failure;
2288 state->split_start = 0;
2292 genlmsg_end(msg, hdr);
2296 genlmsg_cancel(msg, hdr);
2300 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
2301 struct netlink_callback *cb,
2302 struct nl80211_dump_wiphy_state *state)
2304 struct nlattr **tb = genl_family_attrbuf(&nl80211_fam);
2305 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize, tb,
2306 nl80211_fam.maxattr, nl80211_policy, NULL);
2307 /* ignore parse errors for backward compatibility */
2311 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
2312 if (tb[NL80211_ATTR_WIPHY])
2313 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
2314 if (tb[NL80211_ATTR_WDEV])
2315 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
2316 if (tb[NL80211_ATTR_IFINDEX]) {
2317 struct net_device *netdev;
2318 struct cfg80211_registered_device *rdev;
2319 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
2321 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
2324 if (netdev->ieee80211_ptr) {
2325 rdev = wiphy_to_rdev(
2326 netdev->ieee80211_ptr->wiphy);
2327 state->filter_wiphy = rdev->wiphy_idx;
2334 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
2337 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
2338 struct cfg80211_registered_device *rdev;
2342 state = kzalloc(sizeof(*state), GFP_KERNEL);
2347 state->filter_wiphy = -1;
2348 ret = nl80211_dump_wiphy_parse(skb, cb, state);
2354 cb->args[0] = (long)state;
2357 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2358 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2360 if (++idx <= state->start)
2362 if (state->filter_wiphy != -1 &&
2363 state->filter_wiphy != rdev->wiphy_idx)
2365 /* attempt to fit multiple wiphy data chunks into the skb */
2367 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
2369 NETLINK_CB(cb->skb).portid,
2371 NLM_F_MULTI, state);
2374 * If sending the wiphy data didn't fit (ENOBUFS
2375 * or EMSGSIZE returned), this SKB is still
2376 * empty (so it's not too big because another
2377 * wiphy dataset is already in the skb) and
2378 * we've not tried to adjust the dump allocation
2379 * yet ... then adjust the alloc size to be
2380 * bigger, and return 1 but with the empty skb.
2381 * This results in an empty message being RX'ed
2382 * in userspace, but that is ignored.
2384 * We can then retry with the larger buffer.
2386 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
2387 !skb->len && !state->split &&
2388 cb->min_dump_alloc < 4096) {
2389 cb->min_dump_alloc = 4096;
2390 state->split_start = 0;
2397 } while (state->split_start > 0);
2407 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
2409 kfree((void *)cb->args[0]);
2413 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
2415 struct sk_buff *msg;
2416 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2417 struct nl80211_dump_wiphy_state state = {};
2419 msg = nlmsg_new(4096, GFP_KERNEL);
2423 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
2424 info->snd_portid, info->snd_seq, 0,
2430 return genlmsg_reply(msg, info);
2433 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
2434 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
2435 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
2436 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
2437 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
2438 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
2441 static int parse_txq_params(struct nlattr *tb[],
2442 struct ieee80211_txq_params *txq_params)
2446 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
2447 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
2448 !tb[NL80211_TXQ_ATTR_AIFS])
2451 ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
2452 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
2453 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
2454 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
2455 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
2457 if (ac >= NL80211_NUM_ACS)
2459 txq_params->ac = array_index_nospec(ac, NL80211_NUM_ACS);
2463 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
2466 * You can only set the channel explicitly for WDS interfaces,
2467 * all others have their channel managed via their respective
2468 * "establish a connection" command (connect, join, ...)
2470 * For AP/GO and mesh mode, the channel can be set with the
2471 * channel userspace API, but is only stored and passed to the
2472 * low-level driver when the AP starts or the mesh is joined.
2473 * This is for backward compatibility, userspace can also give
2474 * the channel in the start-ap or join-mesh commands instead.
2476 * Monitors are special as they are normally slaved to
2477 * whatever else is going on, so they have their own special
2478 * operation to set the monitor channel if possible.
2481 wdev->iftype == NL80211_IFTYPE_AP ||
2482 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
2483 wdev->iftype == NL80211_IFTYPE_MONITOR ||
2484 wdev->iftype == NL80211_IFTYPE_P2P_GO;
2487 int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
2488 struct genl_info *info,
2489 struct cfg80211_chan_def *chandef)
2491 struct netlink_ext_ack *extack = info->extack;
2492 struct nlattr **attrs = info->attrs;
2495 if (!attrs[NL80211_ATTR_WIPHY_FREQ])
2498 control_freq = nla_get_u32(attrs[NL80211_ATTR_WIPHY_FREQ]);
2500 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
2501 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
2502 chandef->center_freq1 = control_freq;
2503 chandef->center_freq2 = 0;
2505 /* Primary channel not allowed */
2506 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED) {
2507 NL_SET_ERR_MSG_ATTR(extack, attrs[NL80211_ATTR_WIPHY_FREQ],
2508 "Channel is disabled");
2512 if (attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
2513 enum nl80211_channel_type chantype;
2515 chantype = nla_get_u32(attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
2518 case NL80211_CHAN_NO_HT:
2519 case NL80211_CHAN_HT20:
2520 case NL80211_CHAN_HT40PLUS:
2521 case NL80211_CHAN_HT40MINUS:
2522 cfg80211_chandef_create(chandef, chandef->chan,
2524 /* user input for center_freq is incorrect */
2525 if (attrs[NL80211_ATTR_CENTER_FREQ1] &&
2526 chandef->center_freq1 != nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1])) {
2527 NL_SET_ERR_MSG_ATTR(extack,
2528 attrs[NL80211_ATTR_CENTER_FREQ1],
2529 "bad center frequency 1");
2532 /* center_freq2 must be zero */
2533 if (attrs[NL80211_ATTR_CENTER_FREQ2] &&
2534 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2])) {
2535 NL_SET_ERR_MSG_ATTR(extack,
2536 attrs[NL80211_ATTR_CENTER_FREQ2],
2537 "center frequency 2 can't be used");
2542 NL_SET_ERR_MSG_ATTR(extack,
2543 attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE],
2544 "invalid channel type");
2547 } else if (attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
2549 nla_get_u32(attrs[NL80211_ATTR_CHANNEL_WIDTH]);
2550 if (attrs[NL80211_ATTR_CENTER_FREQ1])
2551 chandef->center_freq1 =
2552 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1]);
2553 if (attrs[NL80211_ATTR_CENTER_FREQ2])
2554 chandef->center_freq2 =
2555 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2]);
2558 if (!cfg80211_chandef_valid(chandef)) {
2559 NL_SET_ERR_MSG(extack, "invalid channel definition");
2563 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
2564 IEEE80211_CHAN_DISABLED)) {
2565 NL_SET_ERR_MSG(extack, "(extension) channel is disabled");
2569 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
2570 chandef->width == NL80211_CHAN_WIDTH_10) &&
2571 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ)) {
2572 NL_SET_ERR_MSG(extack, "5/10 MHz not supported");
2579 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
2580 struct net_device *dev,
2581 struct genl_info *info)
2583 struct cfg80211_chan_def chandef;
2585 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
2586 struct wireless_dev *wdev = NULL;
2589 wdev = dev->ieee80211_ptr;
2590 if (!nl80211_can_set_dev_channel(wdev))
2593 iftype = wdev->iftype;
2595 result = nl80211_parse_chandef(rdev, info, &chandef);
2600 case NL80211_IFTYPE_AP:
2601 case NL80211_IFTYPE_P2P_GO:
2602 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
2607 if (wdev->beacon_interval) {
2608 if (!dev || !rdev->ops->set_ap_chanwidth ||
2609 !(rdev->wiphy.features &
2610 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2615 /* Only allow dynamic channel width changes */
2616 if (chandef.chan != wdev->preset_chandef.chan) {
2620 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2624 wdev->preset_chandef = chandef;
2627 case NL80211_IFTYPE_MESH_POINT:
2628 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2630 case NL80211_IFTYPE_MONITOR:
2631 result = cfg80211_set_monitor_channel(rdev, &chandef);
2640 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2642 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2643 struct net_device *netdev = info->user_ptr[1];
2645 return __nl80211_set_channel(rdev, netdev, info);
2648 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2650 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2651 struct net_device *dev = info->user_ptr[1];
2652 struct wireless_dev *wdev = dev->ieee80211_ptr;
2655 if (!info->attrs[NL80211_ATTR_MAC])
2658 if (netif_running(dev))
2661 if (!rdev->ops->set_wds_peer)
2664 if (wdev->iftype != NL80211_IFTYPE_WDS)
2667 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2668 return rdev_set_wds_peer(rdev, dev, bssid);
2671 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2673 struct cfg80211_registered_device *rdev;
2674 struct net_device *netdev = NULL;
2675 struct wireless_dev *wdev;
2676 int result = 0, rem_txq_params = 0;
2677 struct nlattr *nl_txq_params;
2679 u8 retry_short = 0, retry_long = 0;
2680 u32 frag_threshold = 0, rts_threshold = 0;
2681 u8 coverage_class = 0;
2682 u32 txq_limit = 0, txq_memory_limit = 0, txq_quantum = 0;
2687 * Try to find the wiphy and netdev. Normally this
2688 * function shouldn't need the netdev, but this is
2689 * done for backward compatibility -- previously
2690 * setting the channel was done per wiphy, but now
2691 * it is per netdev. Previous userland like hostapd
2692 * also passed a netdev to set_wiphy, so that it is
2693 * possible to let that go to the right netdev!
2696 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2697 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2699 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2700 if (netdev && netdev->ieee80211_ptr)
2701 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2707 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2710 return PTR_ERR(rdev);
2715 wdev = netdev->ieee80211_ptr;
2718 * end workaround code, by now the rdev is available
2719 * and locked, and wdev may or may not be NULL.
2722 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2723 result = cfg80211_dev_rename(
2724 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2729 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2730 struct ieee80211_txq_params txq_params;
2731 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2733 if (!rdev->ops->set_txq_params)
2739 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2740 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2743 if (!netif_running(netdev))
2746 nla_for_each_nested(nl_txq_params,
2747 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2749 result = nla_parse_nested(tb, NL80211_TXQ_ATTR_MAX,
2755 result = parse_txq_params(tb, &txq_params);
2759 result = rdev_set_txq_params(rdev, netdev,
2766 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2767 result = __nl80211_set_channel(
2769 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2775 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2776 struct wireless_dev *txp_wdev = wdev;
2777 enum nl80211_tx_power_setting type;
2780 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2783 if (!rdev->ops->set_tx_power)
2786 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2787 type = nla_get_u32(info->attrs[idx]);
2789 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2790 (type != NL80211_TX_POWER_AUTOMATIC))
2793 if (type != NL80211_TX_POWER_AUTOMATIC) {
2794 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2795 mbm = nla_get_u32(info->attrs[idx]);
2798 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2803 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2804 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2807 if ((!rdev->wiphy.available_antennas_tx &&
2808 !rdev->wiphy.available_antennas_rx) ||
2809 !rdev->ops->set_antenna)
2812 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2813 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2815 /* reject antenna configurations which don't match the
2816 * available antenna masks, except for the "all" mask */
2817 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2818 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2821 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2822 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2824 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2831 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2832 retry_short = nla_get_u8(
2833 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2835 changed |= WIPHY_PARAM_RETRY_SHORT;
2838 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2839 retry_long = nla_get_u8(
2840 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2842 changed |= WIPHY_PARAM_RETRY_LONG;
2845 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2846 frag_threshold = nla_get_u32(
2847 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2848 if (frag_threshold < 256)
2851 if (frag_threshold != (u32) -1) {
2853 * Fragments (apart from the last one) are required to
2854 * have even length. Make the fragmentation code
2855 * simpler by stripping LSB should someone try to use
2856 * odd threshold value.
2858 frag_threshold &= ~0x1;
2860 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2863 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2864 rts_threshold = nla_get_u32(
2865 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2866 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2869 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2870 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
2873 coverage_class = nla_get_u8(
2874 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2875 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2878 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
2879 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
2882 changed |= WIPHY_PARAM_DYN_ACK;
2885 if (info->attrs[NL80211_ATTR_TXQ_LIMIT]) {
2886 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2887 NL80211_EXT_FEATURE_TXQS))
2889 txq_limit = nla_get_u32(
2890 info->attrs[NL80211_ATTR_TXQ_LIMIT]);
2891 changed |= WIPHY_PARAM_TXQ_LIMIT;
2894 if (info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]) {
2895 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2896 NL80211_EXT_FEATURE_TXQS))
2898 txq_memory_limit = nla_get_u32(
2899 info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]);
2900 changed |= WIPHY_PARAM_TXQ_MEMORY_LIMIT;
2903 if (info->attrs[NL80211_ATTR_TXQ_QUANTUM]) {
2904 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2905 NL80211_EXT_FEATURE_TXQS))
2907 txq_quantum = nla_get_u32(
2908 info->attrs[NL80211_ATTR_TXQ_QUANTUM]);
2909 changed |= WIPHY_PARAM_TXQ_QUANTUM;
2913 u8 old_retry_short, old_retry_long;
2914 u32 old_frag_threshold, old_rts_threshold;
2915 u8 old_coverage_class;
2916 u32 old_txq_limit, old_txq_memory_limit, old_txq_quantum;
2918 if (!rdev->ops->set_wiphy_params)
2921 old_retry_short = rdev->wiphy.retry_short;
2922 old_retry_long = rdev->wiphy.retry_long;
2923 old_frag_threshold = rdev->wiphy.frag_threshold;
2924 old_rts_threshold = rdev->wiphy.rts_threshold;
2925 old_coverage_class = rdev->wiphy.coverage_class;
2926 old_txq_limit = rdev->wiphy.txq_limit;
2927 old_txq_memory_limit = rdev->wiphy.txq_memory_limit;
2928 old_txq_quantum = rdev->wiphy.txq_quantum;
2930 if (changed & WIPHY_PARAM_RETRY_SHORT)
2931 rdev->wiphy.retry_short = retry_short;
2932 if (changed & WIPHY_PARAM_RETRY_LONG)
2933 rdev->wiphy.retry_long = retry_long;
2934 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2935 rdev->wiphy.frag_threshold = frag_threshold;
2936 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2937 rdev->wiphy.rts_threshold = rts_threshold;
2938 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2939 rdev->wiphy.coverage_class = coverage_class;
2940 if (changed & WIPHY_PARAM_TXQ_LIMIT)
2941 rdev->wiphy.txq_limit = txq_limit;
2942 if (changed & WIPHY_PARAM_TXQ_MEMORY_LIMIT)
2943 rdev->wiphy.txq_memory_limit = txq_memory_limit;
2944 if (changed & WIPHY_PARAM_TXQ_QUANTUM)
2945 rdev->wiphy.txq_quantum = txq_quantum;
2947 result = rdev_set_wiphy_params(rdev, changed);
2949 rdev->wiphy.retry_short = old_retry_short;
2950 rdev->wiphy.retry_long = old_retry_long;
2951 rdev->wiphy.frag_threshold = old_frag_threshold;
2952 rdev->wiphy.rts_threshold = old_rts_threshold;
2953 rdev->wiphy.coverage_class = old_coverage_class;
2954 rdev->wiphy.txq_limit = old_txq_limit;
2955 rdev->wiphy.txq_memory_limit = old_txq_memory_limit;
2956 rdev->wiphy.txq_quantum = old_txq_quantum;
2963 static int nl80211_send_chandef(struct sk_buff *msg,
2964 const struct cfg80211_chan_def *chandef)
2966 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
2969 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2970 chandef->chan->center_freq))
2972 switch (chandef->width) {
2973 case NL80211_CHAN_WIDTH_20_NOHT:
2974 case NL80211_CHAN_WIDTH_20:
2975 case NL80211_CHAN_WIDTH_40:
2976 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2977 cfg80211_get_chandef_type(chandef)))
2983 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2985 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2987 if (chandef->center_freq2 &&
2988 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2993 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2994 struct cfg80211_registered_device *rdev,
2995 struct wireless_dev *wdev,
2996 enum nl80211_commands cmd)
2998 struct net_device *dev = wdev->netdev;
3001 WARN_ON(cmd != NL80211_CMD_NEW_INTERFACE &&
3002 cmd != NL80211_CMD_DEL_INTERFACE &&
3003 cmd != NL80211_CMD_SET_INTERFACE);
3005 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
3010 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3011 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
3012 goto nla_put_failure;
3014 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
3015 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
3016 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
3017 NL80211_ATTR_PAD) ||
3018 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
3019 nla_put_u32(msg, NL80211_ATTR_GENERATION,
3020 rdev->devlist_generation ^
3021 (cfg80211_rdev_list_generation << 2)) ||
3022 nla_put_u8(msg, NL80211_ATTR_4ADDR, wdev->use_4addr))
3023 goto nla_put_failure;
3025 if (rdev->ops->get_channel) {
3027 struct cfg80211_chan_def chandef;
3029 ret = rdev_get_channel(rdev, wdev, &chandef);
3031 if (nl80211_send_chandef(msg, &chandef))
3032 goto nla_put_failure;
3036 if (rdev->ops->get_tx_power) {
3039 ret = rdev_get_tx_power(rdev, wdev, &dbm);
3041 nla_put_u32(msg, NL80211_ATTR_WIPHY_TX_POWER_LEVEL,
3043 goto nla_put_failure;
3047 switch (wdev->iftype) {
3048 case NL80211_IFTYPE_AP:
3049 if (wdev->ssid_len &&
3050 nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
3051 goto nla_put_failure_locked;
3053 case NL80211_IFTYPE_STATION:
3054 case NL80211_IFTYPE_P2P_CLIENT:
3055 case NL80211_IFTYPE_ADHOC: {
3057 if (!wdev->current_bss)
3060 ssid_ie = ieee80211_bss_get_ie(&wdev->current_bss->pub,
3063 nla_put(msg, NL80211_ATTR_SSID, ssid_ie[1], ssid_ie + 2))
3064 goto nla_put_failure_rcu_locked;
3074 if (rdev->ops->get_txq_stats) {
3075 struct cfg80211_txq_stats txqstats = {};
3076 int ret = rdev_get_txq_stats(rdev, wdev, &txqstats);
3079 !nl80211_put_txq_stats(msg, &txqstats,
3080 NL80211_ATTR_TXQ_STATS))
3081 goto nla_put_failure;
3084 genlmsg_end(msg, hdr);
3087 nla_put_failure_rcu_locked:
3089 nla_put_failure_locked:
3092 genlmsg_cancel(msg, hdr);
3096 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
3100 int wp_start = cb->args[0];
3101 int if_start = cb->args[1];
3102 int filter_wiphy = -1;
3103 struct cfg80211_registered_device *rdev;
3104 struct wireless_dev *wdev;
3109 struct nl80211_dump_wiphy_state state = {
3113 ret = nl80211_dump_wiphy_parse(skb, cb, &state);
3117 filter_wiphy = state.filter_wiphy;
3120 * if filtering, set cb->args[2] to +1 since 0 is the default
3121 * value needed to determine that parsing is necessary.
3123 if (filter_wiphy >= 0)
3124 cb->args[2] = filter_wiphy + 1;
3127 } else if (cb->args[2] > 0) {
3128 filter_wiphy = cb->args[2] - 1;
3131 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
3132 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
3134 if (wp_idx < wp_start) {
3139 if (filter_wiphy >= 0 && filter_wiphy != rdev->wiphy_idx)
3144 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
3145 if (if_idx < if_start) {
3149 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
3150 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3152 NL80211_CMD_NEW_INTERFACE) < 0) {
3161 cb->args[0] = wp_idx;
3162 cb->args[1] = if_idx;
3171 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
3173 struct sk_buff *msg;
3174 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3175 struct wireless_dev *wdev = info->user_ptr[1];
3177 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3181 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3182 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3187 return genlmsg_reply(msg, info);
3190 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
3191 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
3192 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
3193 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
3194 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
3195 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
3196 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
3199 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
3201 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
3209 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX, nla,
3210 mntr_flags_policy, NULL))
3213 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
3215 *mntrflags |= (1<<flag);
3217 *mntrflags |= MONITOR_FLAG_CHANGED;
3222 static int nl80211_parse_mon_options(struct cfg80211_registered_device *rdev,
3223 enum nl80211_iftype type,
3224 struct genl_info *info,
3225 struct vif_params *params)
3227 bool change = false;
3230 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
3231 if (type != NL80211_IFTYPE_MONITOR)
3234 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
3242 if (params->flags & MONITOR_FLAG_ACTIVE &&
3243 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
3246 if (info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]) {
3247 const u8 *mumimo_groups;
3248 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3250 if (type != NL80211_IFTYPE_MONITOR)
3253 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3257 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]);
3259 /* bits 0 and 63 are reserved and must be zero */
3260 if ((mumimo_groups[0] & BIT(0)) ||
3261 (mumimo_groups[VHT_MUMIMO_GROUPS_DATA_LEN - 1] & BIT(7)))
3264 params->vht_mumimo_groups = mumimo_groups;
3268 if (info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]) {
3269 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3271 if (type != NL80211_IFTYPE_MONITOR)
3274 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3277 params->vht_mumimo_follow_addr =
3278 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]);
3282 return change ? 1 : 0;
3285 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
3286 struct net_device *netdev, u8 use_4addr,
3287 enum nl80211_iftype iftype)
3290 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
3296 case NL80211_IFTYPE_AP_VLAN:
3297 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
3300 case NL80211_IFTYPE_STATION:
3301 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
3311 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
3313 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3314 struct vif_params params;
3316 enum nl80211_iftype otype, ntype;
3317 struct net_device *dev = info->user_ptr[1];
3318 bool change = false;
3320 memset(¶ms, 0, sizeof(params));
3322 otype = ntype = dev->ieee80211_ptr->iftype;
3324 if (info->attrs[NL80211_ATTR_IFTYPE]) {
3325 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3330 if (info->attrs[NL80211_ATTR_MESH_ID]) {
3331 struct wireless_dev *wdev = dev->ieee80211_ptr;
3333 if (ntype != NL80211_IFTYPE_MESH_POINT)
3335 if (netif_running(dev))
3339 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3340 IEEE80211_MAX_MESH_ID_LEN);
3341 wdev->mesh_id_up_len =
3342 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3343 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3344 wdev->mesh_id_up_len);
3348 if (info->attrs[NL80211_ATTR_4ADDR]) {
3349 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3351 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
3355 params.use_4addr = -1;
3358 err = nl80211_parse_mon_options(rdev, ntype, info, ¶ms);
3365 err = cfg80211_change_iface(rdev, dev, ntype, ¶ms);
3369 if (!err && params.use_4addr != -1)
3370 dev->ieee80211_ptr->use_4addr = params.use_4addr;
3372 if (change && !err) {
3373 struct wireless_dev *wdev = dev->ieee80211_ptr;
3375 nl80211_notify_iface(rdev, wdev, NL80211_CMD_SET_INTERFACE);
3381 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
3383 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3384 struct vif_params params;
3385 struct wireless_dev *wdev;
3386 struct sk_buff *msg;
3388 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
3390 /* to avoid failing a new interface creation due to pending removal */
3391 cfg80211_destroy_ifaces(rdev);
3393 memset(¶ms, 0, sizeof(params));
3395 if (!info->attrs[NL80211_ATTR_IFNAME])
3398 if (info->attrs[NL80211_ATTR_IFTYPE])
3399 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3401 if (!rdev->ops->add_virtual_intf ||
3402 !(rdev->wiphy.interface_modes & (1 << type)))
3405 if ((type == NL80211_IFTYPE_P2P_DEVICE || type == NL80211_IFTYPE_NAN ||
3406 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
3407 info->attrs[NL80211_ATTR_MAC]) {
3408 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
3410 if (!is_valid_ether_addr(params.macaddr))
3411 return -EADDRNOTAVAIL;
3414 if (info->attrs[NL80211_ATTR_4ADDR]) {
3415 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3416 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
3421 err = nl80211_parse_mon_options(rdev, type, info, ¶ms);
3425 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3429 wdev = rdev_add_virtual_intf(rdev,
3430 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
3431 NET_NAME_USER, type, ¶ms);
3432 if (WARN_ON(!wdev)) {
3435 } else if (IS_ERR(wdev)) {
3437 return PTR_ERR(wdev);
3440 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
3441 wdev->owner_nlportid = info->snd_portid;
3444 case NL80211_IFTYPE_MESH_POINT:
3445 if (!info->attrs[NL80211_ATTR_MESH_ID])
3448 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3449 IEEE80211_MAX_MESH_ID_LEN);
3450 wdev->mesh_id_up_len =
3451 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3452 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3453 wdev->mesh_id_up_len);
3456 case NL80211_IFTYPE_NAN:
3457 case NL80211_IFTYPE_P2P_DEVICE:
3459 * P2P Device and NAN do not have a netdev, so don't go
3460 * through the netdev notifier and must be added here
3462 cfg80211_init_wdev(rdev, wdev);
3468 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3469 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3474 return genlmsg_reply(msg, info);
3477 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
3479 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3480 struct wireless_dev *wdev = info->user_ptr[1];
3482 if (!rdev->ops->del_virtual_intf)
3486 * If we remove a wireless device without a netdev then clear
3487 * user_ptr[1] so that nl80211_post_doit won't dereference it
3488 * to check if it needs to do dev_put(). Otherwise it crashes
3489 * since the wdev has been freed, unlike with a netdev where
3490 * we need the dev_put() for the netdev to really be freed.
3493 info->user_ptr[1] = NULL;
3495 return rdev_del_virtual_intf(rdev, wdev);
3498 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
3500 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3501 struct net_device *dev = info->user_ptr[1];
3504 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
3507 if (!rdev->ops->set_noack_map)
3510 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
3512 return rdev_set_noack_map(rdev, dev, noack_map);
3515 struct get_key_cookie {
3516 struct sk_buff *msg;
3521 static void get_key_callback(void *c, struct key_params *params)
3524 struct get_key_cookie *cookie = c;
3527 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
3528 params->key_len, params->key)) ||
3530 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
3531 params->seq_len, params->seq)) ||
3533 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
3535 goto nla_put_failure;
3537 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
3539 goto nla_put_failure;
3542 nla_put(cookie->msg, NL80211_KEY_DATA,
3543 params->key_len, params->key)) ||
3545 nla_put(cookie->msg, NL80211_KEY_SEQ,
3546 params->seq_len, params->seq)) ||
3548 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
3550 goto nla_put_failure;
3552 if (nla_put_u8(cookie->msg, NL80211_KEY_IDX, cookie->idx))
3553 goto nla_put_failure;
3555 nla_nest_end(cookie->msg, key);
3562 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
3564 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3566 struct net_device *dev = info->user_ptr[1];
3568 const u8 *mac_addr = NULL;
3570 struct get_key_cookie cookie = {
3574 struct sk_buff *msg;
3576 if (info->attrs[NL80211_ATTR_KEY_IDX])
3577 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
3579 if (info->attrs[NL80211_ATTR_MAC])
3580 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3582 pairwise = !!mac_addr;
3583 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
3584 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
3586 if (kt != NL80211_KEYTYPE_GROUP &&
3587 kt != NL80211_KEYTYPE_PAIRWISE)
3589 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
3592 if (!rdev->ops->get_key)
3595 if (!pairwise && mac_addr && !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3598 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3602 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
3603 NL80211_CMD_NEW_KEY);
3605 goto nla_put_failure;
3608 cookie.idx = key_idx;
3610 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3611 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
3612 goto nla_put_failure;
3614 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
3615 goto nla_put_failure;
3617 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
3624 goto nla_put_failure;
3626 genlmsg_end(msg, hdr);
3627 return genlmsg_reply(msg, info);
3636 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
3638 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3639 struct key_parse key;
3641 struct net_device *dev = info->user_ptr[1];
3643 err = nl80211_parse_key(info, &key);
3650 /* Only support setting default key and
3651 * Extended Key ID action NL80211_KEY_SET_TX.
3653 if (!key.def && !key.defmgmt &&
3654 !(key.p.mode == NL80211_KEY_SET_TX))
3657 wdev_lock(dev->ieee80211_ptr);
3660 if (!rdev->ops->set_default_key) {
3665 err = nl80211_key_allowed(dev->ieee80211_ptr);
3669 err = rdev_set_default_key(rdev, dev, key.idx,
3670 key.def_uni, key.def_multi);
3675 #ifdef CONFIG_CFG80211_WEXT
3676 dev->ieee80211_ptr->wext.default_key = key.idx;
3678 } else if (key.defmgmt) {
3679 if (key.def_uni || !key.def_multi) {
3684 if (!rdev->ops->set_default_mgmt_key) {
3689 err = nl80211_key_allowed(dev->ieee80211_ptr);
3693 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
3697 #ifdef CONFIG_CFG80211_WEXT
3698 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
3700 } else if (key.p.mode == NL80211_KEY_SET_TX &&
3701 wiphy_ext_feature_isset(&rdev->wiphy,
3702 NL80211_EXT_FEATURE_EXT_KEY_ID)) {
3703 u8 *mac_addr = NULL;
3705 if (info->attrs[NL80211_ATTR_MAC])
3706 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3708 if (!mac_addr || key.idx < 0 || key.idx > 1) {
3713 err = rdev_add_key(rdev, dev, key.idx,
3714 NL80211_KEYTYPE_PAIRWISE,
3720 wdev_unlock(dev->ieee80211_ptr);
3725 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
3727 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3729 struct net_device *dev = info->user_ptr[1];
3730 struct key_parse key;
3731 const u8 *mac_addr = NULL;
3733 err = nl80211_parse_key(info, &key);
3740 if (info->attrs[NL80211_ATTR_MAC])
3741 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3743 if (key.type == -1) {
3745 key.type = NL80211_KEYTYPE_PAIRWISE;
3747 key.type = NL80211_KEYTYPE_GROUP;
3751 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3752 key.type != NL80211_KEYTYPE_GROUP)
3755 if (!rdev->ops->add_key)
3758 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3759 key.type == NL80211_KEYTYPE_PAIRWISE,
3763 wdev_lock(dev->ieee80211_ptr);
3764 err = nl80211_key_allowed(dev->ieee80211_ptr);
3766 err = rdev_add_key(rdev, dev, key.idx,
3767 key.type == NL80211_KEYTYPE_PAIRWISE,
3769 wdev_unlock(dev->ieee80211_ptr);
3774 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3776 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3778 struct net_device *dev = info->user_ptr[1];
3779 u8 *mac_addr = NULL;
3780 struct key_parse key;
3782 err = nl80211_parse_key(info, &key);
3786 if (info->attrs[NL80211_ATTR_MAC])
3787 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3789 if (key.type == -1) {
3791 key.type = NL80211_KEYTYPE_PAIRWISE;
3793 key.type = NL80211_KEYTYPE_GROUP;
3797 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3798 key.type != NL80211_KEYTYPE_GROUP)
3801 if (!rdev->ops->del_key)
3804 wdev_lock(dev->ieee80211_ptr);
3805 err = nl80211_key_allowed(dev->ieee80211_ptr);
3807 if (key.type == NL80211_KEYTYPE_GROUP && mac_addr &&
3808 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3812 err = rdev_del_key(rdev, dev, key.idx,
3813 key.type == NL80211_KEYTYPE_PAIRWISE,
3816 #ifdef CONFIG_CFG80211_WEXT
3818 if (key.idx == dev->ieee80211_ptr->wext.default_key)
3819 dev->ieee80211_ptr->wext.default_key = -1;
3820 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
3821 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
3824 wdev_unlock(dev->ieee80211_ptr);
3829 /* This function returns an error or the number of nested attributes */
3830 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
3832 struct nlattr *attr;
3833 int n_entries = 0, tmp;
3835 nla_for_each_nested(attr, nl_attr, tmp) {
3836 if (nla_len(attr) != ETH_ALEN)
3846 * This function parses ACL information and allocates memory for ACL data.
3847 * On successful return, the calling function is responsible to free the
3848 * ACL buffer returned by this function.
3850 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
3851 struct genl_info *info)
3853 enum nl80211_acl_policy acl_policy;
3854 struct nlattr *attr;
3855 struct cfg80211_acl_data *acl;
3856 int i = 0, n_entries, tmp;
3858 if (!wiphy->max_acl_mac_addrs)
3859 return ERR_PTR(-EOPNOTSUPP);
3861 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
3862 return ERR_PTR(-EINVAL);
3864 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
3865 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
3866 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
3867 return ERR_PTR(-EINVAL);
3869 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
3870 return ERR_PTR(-EINVAL);
3872 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
3874 return ERR_PTR(n_entries);
3876 if (n_entries > wiphy->max_acl_mac_addrs)
3877 return ERR_PTR(-ENOTSUPP);
3879 acl = kzalloc(sizeof(*acl) + (sizeof(struct mac_address) * n_entries),
3882 return ERR_PTR(-ENOMEM);
3884 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
3885 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3889 acl->n_acl_entries = n_entries;
3890 acl->acl_policy = acl_policy;
3895 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3897 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3898 struct net_device *dev = info->user_ptr[1];
3899 struct cfg80211_acl_data *acl;
3902 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3903 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3906 if (!dev->ieee80211_ptr->beacon_interval)
3909 acl = parse_acl_data(&rdev->wiphy, info);
3911 return PTR_ERR(acl);
3913 err = rdev_set_mac_acl(rdev, dev, acl);
3920 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
3921 u8 *rates, u8 rates_len)
3926 for (i = 0; i < rates_len; i++) {
3927 int rate = (rates[i] & 0x7f) * 5;
3930 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
3931 struct ieee80211_rate *srate =
3932 &sband->bitrates[ridx];
3933 if (rate == srate->bitrate) {
3938 if (ridx == sband->n_bitrates)
3939 return 0; /* rate not found */
3945 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
3946 u8 *rates, u8 rates_len,
3947 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
3951 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
3953 for (i = 0; i < rates_len; i++) {
3956 ridx = rates[i] / 8;
3957 rbit = BIT(rates[i] % 8);
3959 /* check validity */
3960 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
3963 /* check availability */
3964 ridx = array_index_nospec(ridx, IEEE80211_HT_MCS_MASK_LEN);
3965 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
3974 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
3978 switch (vht_mcs_map) {
3979 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
3981 case IEEE80211_VHT_MCS_SUPPORT_0_7:
3984 case IEEE80211_VHT_MCS_SUPPORT_0_8:
3987 case IEEE80211_VHT_MCS_SUPPORT_0_9:
3997 static void vht_build_mcs_mask(u16 vht_mcs_map,
3998 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
4002 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
4003 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
4008 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
4009 struct nl80211_txrate_vht *txrate,
4010 u16 mcs[NL80211_VHT_NSS_MAX])
4012 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4013 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
4016 if (!sband->vht_cap.vht_supported)
4019 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
4021 /* Build vht_mcs_mask from VHT capabilities */
4022 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
4024 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4025 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
4026 mcs[i] = txrate->mcs[i];
4034 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
4035 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
4036 .len = NL80211_MAX_SUPP_RATES },
4037 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
4038 .len = NL80211_MAX_SUPP_HT_RATES },
4039 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
4040 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
4043 static int nl80211_parse_tx_bitrate_mask(struct genl_info *info,
4044 struct cfg80211_bitrate_mask *mask)
4046 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
4047 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4049 struct nlattr *tx_rates;
4050 struct ieee80211_supported_band *sband;
4053 memset(mask, 0, sizeof(*mask));
4054 /* Default to all rates enabled */
4055 for (i = 0; i < NUM_NL80211_BANDS; i++) {
4056 sband = rdev->wiphy.bands[i];
4061 mask->control[i].legacy = (1 << sband->n_bitrates) - 1;
4062 memcpy(mask->control[i].ht_mcs,
4063 sband->ht_cap.mcs.rx_mask,
4064 sizeof(mask->control[i].ht_mcs));
4066 if (!sband->vht_cap.vht_supported)
4069 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4070 vht_build_mcs_mask(vht_tx_mcs_map, mask->control[i].vht_mcs);
4073 /* if no rates are given set it back to the defaults */
4074 if (!info->attrs[NL80211_ATTR_TX_RATES])
4077 /* The nested attribute uses enum nl80211_band as the index. This maps
4078 * directly to the enum nl80211_band values used in cfg80211.
4080 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
4081 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
4082 enum nl80211_band band = nla_type(tx_rates);
4085 if (band < 0 || band >= NUM_NL80211_BANDS)
4087 sband = rdev->wiphy.bands[band];
4090 err = nla_parse_nested(tb, NL80211_TXRATE_MAX, tx_rates,
4091 nl80211_txattr_policy, info->extack);
4094 if (tb[NL80211_TXRATE_LEGACY]) {
4095 mask->control[band].legacy = rateset_to_mask(
4097 nla_data(tb[NL80211_TXRATE_LEGACY]),
4098 nla_len(tb[NL80211_TXRATE_LEGACY]));
4099 if ((mask->control[band].legacy == 0) &&
4100 nla_len(tb[NL80211_TXRATE_LEGACY]))
4103 if (tb[NL80211_TXRATE_HT]) {
4104 if (!ht_rateset_to_mask(
4106 nla_data(tb[NL80211_TXRATE_HT]),
4107 nla_len(tb[NL80211_TXRATE_HT]),
4108 mask->control[band].ht_mcs))
4111 if (tb[NL80211_TXRATE_VHT]) {
4112 if (!vht_set_mcs_mask(
4114 nla_data(tb[NL80211_TXRATE_VHT]),
4115 mask->control[band].vht_mcs))
4118 if (tb[NL80211_TXRATE_GI]) {
4119 mask->control[band].gi =
4120 nla_get_u8(tb[NL80211_TXRATE_GI]);
4121 if (mask->control[band].gi > NL80211_TXRATE_FORCE_LGI)
4125 if (mask->control[band].legacy == 0) {
4126 /* don't allow empty legacy rates if HT or VHT
4127 * are not even supported.
4129 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
4130 rdev->wiphy.bands[band]->vht_cap.vht_supported))
4133 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
4134 if (mask->control[band].ht_mcs[i])
4137 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
4138 if (mask->control[band].vht_mcs[i])
4141 /* legacy and mcs rates may not be both empty */
4150 static int validate_beacon_tx_rate(struct cfg80211_registered_device *rdev,
4151 enum nl80211_band band,
4152 struct cfg80211_bitrate_mask *beacon_rate)
4154 u32 count_ht, count_vht, i;
4155 u32 rate = beacon_rate->control[band].legacy;
4157 /* Allow only one rate */
4158 if (hweight32(rate) > 1)
4162 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
4163 if (hweight8(beacon_rate->control[band].ht_mcs[i]) > 1) {
4165 } else if (beacon_rate->control[band].ht_mcs[i]) {
4170 if (count_ht && rate)
4175 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4176 if (hweight16(beacon_rate->control[band].vht_mcs[i]) > 1) {
4178 } else if (beacon_rate->control[band].vht_mcs[i]) {
4183 if (count_vht && rate)
4187 if ((count_ht && count_vht) || (!rate && !count_ht && !count_vht))
4191 !wiphy_ext_feature_isset(&rdev->wiphy,
4192 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY))
4195 !wiphy_ext_feature_isset(&rdev->wiphy,
4196 NL80211_EXT_FEATURE_BEACON_RATE_HT))
4199 !wiphy_ext_feature_isset(&rdev->wiphy,
4200 NL80211_EXT_FEATURE_BEACON_RATE_VHT))
4206 static int nl80211_parse_beacon(struct cfg80211_registered_device *rdev,
4207 struct nlattr *attrs[],
4208 struct cfg80211_beacon_data *bcn)
4210 bool haveinfo = false;
4213 memset(bcn, 0, sizeof(*bcn));
4215 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
4216 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
4217 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
4223 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
4224 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
4225 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
4232 if (attrs[NL80211_ATTR_IE]) {
4233 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
4234 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
4237 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
4238 bcn->proberesp_ies =
4239 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4240 bcn->proberesp_ies_len =
4241 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4244 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
4245 bcn->assocresp_ies =
4246 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4247 bcn->assocresp_ies_len =
4248 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4251 if (attrs[NL80211_ATTR_PROBE_RESP]) {
4252 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
4253 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
4256 if (attrs[NL80211_ATTR_FTM_RESPONDER]) {
4257 struct nlattr *tb[NL80211_FTM_RESP_ATTR_MAX + 1];
4259 err = nla_parse_nested(tb, NL80211_FTM_RESP_ATTR_MAX,
4260 attrs[NL80211_ATTR_FTM_RESPONDER],
4265 if (tb[NL80211_FTM_RESP_ATTR_ENABLED] &&
4266 wiphy_ext_feature_isset(&rdev->wiphy,
4267 NL80211_EXT_FEATURE_ENABLE_FTM_RESPONDER))
4268 bcn->ftm_responder = 1;
4272 if (tb[NL80211_FTM_RESP_ATTR_LCI]) {
4273 bcn->lci = nla_data(tb[NL80211_FTM_RESP_ATTR_LCI]);
4274 bcn->lci_len = nla_len(tb[NL80211_FTM_RESP_ATTR_LCI]);
4277 if (tb[NL80211_FTM_RESP_ATTR_CIVICLOC]) {
4278 bcn->civicloc = nla_data(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4279 bcn->civicloc_len = nla_len(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4282 bcn->ftm_responder = -1;
4288 static void nl80211_check_ap_rate_selectors(struct cfg80211_ap_settings *params,
4296 for (i = 0; i < rates[1]; i++) {
4297 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_HT_PHY)
4298 params->ht_required = true;
4299 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_VHT_PHY)
4300 params->vht_required = true;
4305 * Since the nl80211 API didn't include, from the beginning, attributes about
4306 * HT/VHT requirements/capabilities, we parse them out of the IEs for the
4307 * benefit of drivers that rebuild IEs in the firmware.
4309 static void nl80211_calculate_ap_params(struct cfg80211_ap_settings *params)
4311 const struct cfg80211_beacon_data *bcn = ¶ms->beacon;
4312 size_t ies_len = bcn->tail_len;
4313 const u8 *ies = bcn->tail;
4317 rates = cfg80211_find_ie(WLAN_EID_SUPP_RATES, ies, ies_len);
4318 nl80211_check_ap_rate_selectors(params, rates);
4320 rates = cfg80211_find_ie(WLAN_EID_EXT_SUPP_RATES, ies, ies_len);
4321 nl80211_check_ap_rate_selectors(params, rates);
4323 cap = cfg80211_find_ie(WLAN_EID_HT_CAPABILITY, ies, ies_len);
4324 if (cap && cap[1] >= sizeof(*params->ht_cap))
4325 params->ht_cap = (void *)(cap + 2);
4326 cap = cfg80211_find_ie(WLAN_EID_VHT_CAPABILITY, ies, ies_len);
4327 if (cap && cap[1] >= sizeof(*params->vht_cap))
4328 params->vht_cap = (void *)(cap + 2);
4329 cap = cfg80211_find_ext_ie(WLAN_EID_EXT_HE_CAPABILITY, ies, ies_len);
4330 if (cap && cap[1] >= sizeof(*params->he_cap) + 1)
4331 params->he_cap = (void *)(cap + 3);
4334 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
4335 struct cfg80211_ap_settings *params)
4337 struct wireless_dev *wdev;
4340 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
4341 if (wdev->iftype != NL80211_IFTYPE_AP &&
4342 wdev->iftype != NL80211_IFTYPE_P2P_GO)
4345 if (!wdev->preset_chandef.chan)
4348 params->chandef = wdev->preset_chandef;
4356 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
4357 enum nl80211_auth_type auth_type,
4358 enum nl80211_commands cmd)
4360 if (auth_type > NL80211_AUTHTYPE_MAX)
4364 case NL80211_CMD_AUTHENTICATE:
4365 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4366 auth_type == NL80211_AUTHTYPE_SAE)
4368 if (!wiphy_ext_feature_isset(&rdev->wiphy,
4369 NL80211_EXT_FEATURE_FILS_STA) &&
4370 (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4371 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4372 auth_type == NL80211_AUTHTYPE_FILS_PK))
4375 case NL80211_CMD_CONNECT:
4376 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4377 auth_type == NL80211_AUTHTYPE_SAE)
4380 /* FILS with SK PFS or PK not supported yet */
4381 if (auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4382 auth_type == NL80211_AUTHTYPE_FILS_PK)
4384 if (!wiphy_ext_feature_isset(
4386 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
4387 auth_type == NL80211_AUTHTYPE_FILS_SK)
4390 case NL80211_CMD_START_AP:
4391 /* SAE not supported yet */
4392 if (auth_type == NL80211_AUTHTYPE_SAE)
4394 /* FILS not supported yet */
4395 if (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4396 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4397 auth_type == NL80211_AUTHTYPE_FILS_PK)
4405 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
4407 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4408 struct net_device *dev = info->user_ptr[1];
4409 struct wireless_dev *wdev = dev->ieee80211_ptr;
4410 struct cfg80211_ap_settings params;
4413 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4414 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4417 if (!rdev->ops->start_ap)
4420 if (wdev->beacon_interval)
4423 memset(¶ms, 0, sizeof(params));
4425 /* these are required for START_AP */
4426 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
4427 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
4428 !info->attrs[NL80211_ATTR_BEACON_HEAD])
4431 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon);
4435 params.beacon_interval =
4436 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
4437 params.dtim_period =
4438 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
4440 err = cfg80211_validate_beacon_int(rdev, dev->ieee80211_ptr->iftype,
4441 params.beacon_interval);
4446 * In theory, some of these attributes should be required here
4447 * but since they were not used when the command was originally
4448 * added, keep them optional for old user space programs to let
4449 * them continue to work with drivers that do not need the
4450 * additional information -- drivers must check!
4452 if (info->attrs[NL80211_ATTR_SSID]) {
4453 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
4455 nla_len(info->attrs[NL80211_ATTR_SSID]);
4456 if (params.ssid_len == 0 ||
4457 params.ssid_len > IEEE80211_MAX_SSID_LEN)
4461 if (info->attrs[NL80211_ATTR_HIDDEN_SSID])
4462 params.hidden_ssid = nla_get_u32(
4463 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
4465 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
4467 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
4468 params.auth_type = nla_get_u32(
4469 info->attrs[NL80211_ATTR_AUTH_TYPE]);
4470 if (!nl80211_valid_auth_type(rdev, params.auth_type,
4471 NL80211_CMD_START_AP))
4474 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
4476 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
4477 NL80211_MAX_NR_CIPHER_SUITES);
4481 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
4482 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
4484 params.inactivity_timeout = nla_get_u16(
4485 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
4488 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4489 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4491 params.p2p_ctwindow =
4492 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4493 if (params.p2p_ctwindow != 0 &&
4494 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4498 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4501 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4503 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4504 params.p2p_opp_ps = tmp;
4505 if (params.p2p_opp_ps != 0 &&
4506 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4510 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
4511 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
4514 } else if (wdev->preset_chandef.chan) {
4515 params.chandef = wdev->preset_chandef;
4516 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
4519 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
4523 if (info->attrs[NL80211_ATTR_TX_RATES]) {
4524 err = nl80211_parse_tx_bitrate_mask(info, ¶ms.beacon_rate);
4528 err = validate_beacon_tx_rate(rdev, params.chandef.chan->band,
4529 ¶ms.beacon_rate);
4534 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
4536 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
4537 switch (params.smps_mode) {
4538 case NL80211_SMPS_OFF:
4540 case NL80211_SMPS_STATIC:
4541 if (!(rdev->wiphy.features &
4542 NL80211_FEATURE_STATIC_SMPS))
4545 case NL80211_SMPS_DYNAMIC:
4546 if (!(rdev->wiphy.features &
4547 NL80211_FEATURE_DYNAMIC_SMPS))
4554 params.smps_mode = NL80211_SMPS_OFF;
4557 params.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
4558 if (params.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ])
4561 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
4562 params.acl = parse_acl_data(&rdev->wiphy, info);
4563 if (IS_ERR(params.acl))
4564 return PTR_ERR(params.acl);
4567 nl80211_calculate_ap_params(¶ms);
4569 if (info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])
4570 params.flags |= AP_SETTINGS_EXTERNAL_AUTH_SUPPORT;
4573 err = rdev_start_ap(rdev, dev, ¶ms);
4575 wdev->preset_chandef = params.chandef;
4576 wdev->beacon_interval = params.beacon_interval;
4577 wdev->chandef = params.chandef;
4578 wdev->ssid_len = params.ssid_len;
4579 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
4581 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
4582 wdev->conn_owner_nlportid = info->snd_portid;
4591 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
4593 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4594 struct net_device *dev = info->user_ptr[1];
4595 struct wireless_dev *wdev = dev->ieee80211_ptr;
4596 struct cfg80211_beacon_data params;
4599 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4600 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4603 if (!rdev->ops->change_beacon)
4606 if (!wdev->beacon_interval)
4609 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms);
4614 err = rdev_change_beacon(rdev, dev, ¶ms);
4620 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
4622 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4623 struct net_device *dev = info->user_ptr[1];
4625 return cfg80211_stop_ap(rdev, dev, false);
4628 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
4629 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
4630 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
4631 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
4632 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
4633 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
4634 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
4637 static int parse_station_flags(struct genl_info *info,
4638 enum nl80211_iftype iftype,
4639 struct station_parameters *params)
4641 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
4646 * Try parsing the new attribute first so userspace
4647 * can specify both for older kernels.
4649 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
4651 struct nl80211_sta_flag_update *sta_flags;
4653 sta_flags = nla_data(nla);
4654 params->sta_flags_mask = sta_flags->mask;
4655 params->sta_flags_set = sta_flags->set;
4656 params->sta_flags_set &= params->sta_flags_mask;
4657 if ((params->sta_flags_mask |
4658 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
4663 /* if present, parse the old attribute */
4665 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
4669 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX, nla,
4670 sta_flags_policy, info->extack))
4674 * Only allow certain flags for interface types so that
4675 * other attributes are silently ignored. Remember that
4676 * this is backward compatibility code with old userspace
4677 * and shouldn't be hit in other cases anyway.
4680 case NL80211_IFTYPE_AP:
4681 case NL80211_IFTYPE_AP_VLAN:
4682 case NL80211_IFTYPE_P2P_GO:
4683 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4684 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4685 BIT(NL80211_STA_FLAG_WME) |
4686 BIT(NL80211_STA_FLAG_MFP);
4688 case NL80211_IFTYPE_P2P_CLIENT:
4689 case NL80211_IFTYPE_STATION:
4690 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4691 BIT(NL80211_STA_FLAG_TDLS_PEER);
4693 case NL80211_IFTYPE_MESH_POINT:
4694 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4695 BIT(NL80211_STA_FLAG_MFP) |
4696 BIT(NL80211_STA_FLAG_AUTHORIZED);
4702 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
4704 params->sta_flags_set |= (1<<flag);
4706 /* no longer support new API additions in old API */
4707 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
4715 bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info, int attr)
4717 struct nlattr *rate;
4720 enum nl80211_rate_info rate_flg;
4722 rate = nla_nest_start(msg, attr);
4726 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
4727 bitrate = cfg80211_calculate_bitrate(info);
4728 /* report 16-bit bitrate only if we can */
4729 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
4731 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
4733 if (bitrate_compat > 0 &&
4734 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
4738 case RATE_INFO_BW_5:
4739 rate_flg = NL80211_RATE_INFO_5_MHZ_WIDTH;
4741 case RATE_INFO_BW_10:
4742 rate_flg = NL80211_RATE_INFO_10_MHZ_WIDTH;
4747 case RATE_INFO_BW_20:
4750 case RATE_INFO_BW_40:
4751 rate_flg = NL80211_RATE_INFO_40_MHZ_WIDTH;
4753 case RATE_INFO_BW_80:
4754 rate_flg = NL80211_RATE_INFO_80_MHZ_WIDTH;
4756 case RATE_INFO_BW_160:
4757 rate_flg = NL80211_RATE_INFO_160_MHZ_WIDTH;
4759 case RATE_INFO_BW_HE_RU:
4761 WARN_ON(!(info->flags & RATE_INFO_FLAGS_HE_MCS));
4764 if (rate_flg && nla_put_flag(msg, rate_flg))
4767 if (info->flags & RATE_INFO_FLAGS_MCS) {
4768 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
4770 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4771 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4773 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
4774 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
4776 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
4778 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4779 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4781 } else if (info->flags & RATE_INFO_FLAGS_HE_MCS) {
4782 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_MCS, info->mcs))
4784 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_NSS, info->nss))
4786 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_GI, info->he_gi))
4788 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_DCM, info->he_dcm))
4790 if (info->bw == RATE_INFO_BW_HE_RU &&
4791 nla_put_u8(msg, NL80211_RATE_INFO_HE_RU_ALLOC,
4796 nla_nest_end(msg, rate);
4800 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
4809 attr = nla_nest_start(msg, id);
4813 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
4814 if (!(mask & BIT(i)))
4817 if (nla_put_u8(msg, i, signal[i]))
4821 nla_nest_end(msg, attr);
4826 static int nl80211_send_station(struct sk_buff *msg, u32 cmd, u32 portid,
4828 struct cfg80211_registered_device *rdev,
4829 struct net_device *dev,
4830 const u8 *mac_addr, struct station_info *sinfo)
4833 struct nlattr *sinfoattr, *bss_param;
4835 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
4839 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4840 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
4841 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
4842 goto nla_put_failure;
4844 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
4846 goto nla_put_failure;
4848 #define PUT_SINFO(attr, memb, type) do { \
4849 BUILD_BUG_ON(sizeof(type) == sizeof(u64)); \
4850 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4851 nla_put_ ## type(msg, NL80211_STA_INFO_ ## attr, \
4853 goto nla_put_failure; \
4855 #define PUT_SINFO_U64(attr, memb) do { \
4856 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4857 nla_put_u64_64bit(msg, NL80211_STA_INFO_ ## attr, \
4858 sinfo->memb, NL80211_STA_INFO_PAD)) \
4859 goto nla_put_failure; \
4862 PUT_SINFO(CONNECTED_TIME, connected_time, u32);
4863 PUT_SINFO(INACTIVE_TIME, inactive_time, u32);
4865 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_RX_BYTES) |
4866 BIT_ULL(NL80211_STA_INFO_RX_BYTES64)) &&
4867 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
4868 (u32)sinfo->rx_bytes))
4869 goto nla_put_failure;
4871 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_TX_BYTES) |
4872 BIT_ULL(NL80211_STA_INFO_TX_BYTES64)) &&
4873 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
4874 (u32)sinfo->tx_bytes))
4875 goto nla_put_failure;
4877 PUT_SINFO_U64(RX_BYTES64, rx_bytes);
4878 PUT_SINFO_U64(TX_BYTES64, tx_bytes);
4879 PUT_SINFO(LLID, llid, u16);
4880 PUT_SINFO(PLID, plid, u16);
4881 PUT_SINFO(PLINK_STATE, plink_state, u8);
4882 PUT_SINFO_U64(RX_DURATION, rx_duration);
4883 PUT_SINFO_U64(TX_DURATION, tx_duration);
4885 if (wiphy_ext_feature_isset(&rdev->wiphy,
4886 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
4887 PUT_SINFO(AIRTIME_WEIGHT, airtime_weight, u16);
4889 switch (rdev->wiphy.signal_type) {
4890 case CFG80211_SIGNAL_TYPE_MBM:
4891 PUT_SINFO(SIGNAL, signal, u8);
4892 PUT_SINFO(SIGNAL_AVG, signal_avg, u8);
4897 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL)) {
4898 if (!nl80211_put_signal(msg, sinfo->chains,
4899 sinfo->chain_signal,
4900 NL80211_STA_INFO_CHAIN_SIGNAL))
4901 goto nla_put_failure;
4903 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL_AVG)) {
4904 if (!nl80211_put_signal(msg, sinfo->chains,
4905 sinfo->chain_signal_avg,
4906 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
4907 goto nla_put_failure;
4909 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_TX_BITRATE)) {
4910 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
4911 NL80211_STA_INFO_TX_BITRATE))
4912 goto nla_put_failure;
4914 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_RX_BITRATE)) {
4915 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
4916 NL80211_STA_INFO_RX_BITRATE))
4917 goto nla_put_failure;
4920 PUT_SINFO(RX_PACKETS, rx_packets, u32);
4921 PUT_SINFO(TX_PACKETS, tx_packets, u32);
4922 PUT_SINFO(TX_RETRIES, tx_retries, u32);
4923 PUT_SINFO(TX_FAILED, tx_failed, u32);
4924 PUT_SINFO(EXPECTED_THROUGHPUT, expected_throughput, u32);
4925 PUT_SINFO(AIRTIME_LINK_METRIC, airtime_link_metric, u32);
4926 PUT_SINFO(BEACON_LOSS, beacon_loss_count, u32);
4927 PUT_SINFO(LOCAL_PM, local_pm, u32);
4928 PUT_SINFO(PEER_PM, peer_pm, u32);
4929 PUT_SINFO(NONPEER_PM, nonpeer_pm, u32);
4930 PUT_SINFO(CONNECTED_TO_GATE, connected_to_gate, u8);
4932 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_BSS_PARAM)) {
4933 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
4935 goto nla_put_failure;
4937 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
4938 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
4939 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
4940 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
4941 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
4942 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
4943 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
4944 sinfo->bss_param.dtim_period) ||
4945 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
4946 sinfo->bss_param.beacon_interval))
4947 goto nla_put_failure;
4949 nla_nest_end(msg, bss_param);
4951 if ((sinfo->filled & BIT_ULL(NL80211_STA_INFO_STA_FLAGS)) &&
4952 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
4953 sizeof(struct nl80211_sta_flag_update),
4955 goto nla_put_failure;
4957 PUT_SINFO_U64(T_OFFSET, t_offset);
4958 PUT_SINFO_U64(RX_DROP_MISC, rx_dropped_misc);
4959 PUT_SINFO_U64(BEACON_RX, rx_beacon);
4960 PUT_SINFO(BEACON_SIGNAL_AVG, rx_beacon_signal_avg, u8);
4961 PUT_SINFO(RX_MPDUS, rx_mpdu_count, u32);
4962 PUT_SINFO(FCS_ERROR_COUNT, fcs_err_count, u32);
4963 if (wiphy_ext_feature_isset(&rdev->wiphy,
4964 NL80211_EXT_FEATURE_ACK_SIGNAL_SUPPORT)) {
4965 PUT_SINFO(ACK_SIGNAL, ack_signal, u8);
4966 PUT_SINFO(ACK_SIGNAL_AVG, avg_ack_signal, s8);
4970 #undef PUT_SINFO_U64
4972 if (sinfo->pertid) {
4973 struct nlattr *tidsattr;
4976 tidsattr = nla_nest_start(msg, NL80211_STA_INFO_TID_STATS);
4978 goto nla_put_failure;
4980 for (tid = 0; tid < IEEE80211_NUM_TIDS + 1; tid++) {
4981 struct cfg80211_tid_stats *tidstats;
4982 struct nlattr *tidattr;
4984 tidstats = &sinfo->pertid[tid];
4986 if (!tidstats->filled)
4989 tidattr = nla_nest_start(msg, tid + 1);
4991 goto nla_put_failure;
4993 #define PUT_TIDVAL_U64(attr, memb) do { \
4994 if (tidstats->filled & BIT(NL80211_TID_STATS_ ## attr) && \
4995 nla_put_u64_64bit(msg, NL80211_TID_STATS_ ## attr, \
4996 tidstats->memb, NL80211_TID_STATS_PAD)) \
4997 goto nla_put_failure; \
5000 PUT_TIDVAL_U64(RX_MSDU, rx_msdu);
5001 PUT_TIDVAL_U64(TX_MSDU, tx_msdu);
5002 PUT_TIDVAL_U64(TX_MSDU_RETRIES, tx_msdu_retries);
5003 PUT_TIDVAL_U64(TX_MSDU_FAILED, tx_msdu_failed);
5005 #undef PUT_TIDVAL_U64
5006 if ((tidstats->filled &
5007 BIT(NL80211_TID_STATS_TXQ_STATS)) &&
5008 !nl80211_put_txq_stats(msg, &tidstats->txq_stats,
5009 NL80211_TID_STATS_TXQ_STATS))
5010 goto nla_put_failure;
5012 nla_nest_end(msg, tidattr);
5015 nla_nest_end(msg, tidsattr);
5018 nla_nest_end(msg, sinfoattr);
5020 if (sinfo->assoc_req_ies_len &&
5021 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
5022 sinfo->assoc_req_ies))
5023 goto nla_put_failure;
5025 cfg80211_sinfo_release_content(sinfo);
5026 genlmsg_end(msg, hdr);
5030 cfg80211_sinfo_release_content(sinfo);
5031 genlmsg_cancel(msg, hdr);
5035 static int nl80211_dump_station(struct sk_buff *skb,
5036 struct netlink_callback *cb)
5038 struct station_info sinfo;
5039 struct cfg80211_registered_device *rdev;
5040 struct wireless_dev *wdev;
5041 u8 mac_addr[ETH_ALEN];
5042 int sta_idx = cb->args[2];
5046 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5050 if (!wdev->netdev) {
5055 if (!rdev->ops->dump_station) {
5061 memset(&sinfo, 0, sizeof(sinfo));
5062 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
5069 if (nl80211_send_station(skb, NL80211_CMD_NEW_STATION,
5070 NETLINK_CB(cb->skb).portid,
5071 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5072 rdev, wdev->netdev, mac_addr,
5080 cb->args[2] = sta_idx;
5088 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
5090 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5091 struct net_device *dev = info->user_ptr[1];
5092 struct station_info sinfo;
5093 struct sk_buff *msg;
5094 u8 *mac_addr = NULL;
5097 memset(&sinfo, 0, sizeof(sinfo));
5099 if (!info->attrs[NL80211_ATTR_MAC])
5102 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5104 if (!rdev->ops->get_station)
5107 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
5111 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5113 cfg80211_sinfo_release_content(&sinfo);
5117 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION,
5118 info->snd_portid, info->snd_seq, 0,
5119 rdev, dev, mac_addr, &sinfo) < 0) {
5124 return genlmsg_reply(msg, info);
5127 int cfg80211_check_station_change(struct wiphy *wiphy,
5128 struct station_parameters *params,
5129 enum cfg80211_station_type statype)
5131 if (params->listen_interval != -1 &&
5132 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5135 if (params->support_p2p_ps != -1 &&
5136 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5140 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) &&
5141 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5144 /* When you run into this, adjust the code below for the new flag */
5145 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5148 case CFG80211_STA_MESH_PEER_KERNEL:
5149 case CFG80211_STA_MESH_PEER_USER:
5151 * No ignoring the TDLS flag here -- the userspace mesh
5152 * code doesn't have the bug of including TDLS in the
5155 if (params->sta_flags_mask &
5156 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5157 BIT(NL80211_STA_FLAG_MFP) |
5158 BIT(NL80211_STA_FLAG_AUTHORIZED)))
5161 case CFG80211_STA_TDLS_PEER_SETUP:
5162 case CFG80211_STA_TDLS_PEER_ACTIVE:
5163 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5165 /* ignore since it can't change */
5166 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5169 /* disallow mesh-specific things */
5170 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
5172 if (params->local_pm)
5174 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5178 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5179 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
5180 /* TDLS can't be set, ... */
5181 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
5184 * ... but don't bother the driver with it. This works around
5185 * a hostapd/wpa_supplicant issue -- it always includes the
5186 * TLDS_PEER flag in the mask even for AP mode.
5188 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5191 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5192 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5193 /* reject other things that can't change */
5194 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
5196 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
5198 if (params->supported_rates)
5200 if (params->ext_capab || params->ht_capa || params->vht_capa ||
5205 if (statype != CFG80211_STA_AP_CLIENT &&
5206 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5212 case CFG80211_STA_AP_MLME_CLIENT:
5213 /* Use this only for authorizing/unauthorizing a station */
5214 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
5217 case CFG80211_STA_AP_CLIENT:
5218 case CFG80211_STA_AP_CLIENT_UNASSOC:
5219 /* accept only the listed bits */
5220 if (params->sta_flags_mask &
5221 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5222 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5223 BIT(NL80211_STA_FLAG_ASSOCIATED) |
5224 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
5225 BIT(NL80211_STA_FLAG_WME) |
5226 BIT(NL80211_STA_FLAG_MFP)))
5229 /* but authenticated/associated only if driver handles it */
5230 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5231 params->sta_flags_mask &
5232 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5233 BIT(NL80211_STA_FLAG_ASSOCIATED)))
5236 case CFG80211_STA_IBSS:
5237 case CFG80211_STA_AP_STA:
5238 /* reject any changes other than AUTHORIZED */
5239 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
5242 case CFG80211_STA_TDLS_PEER_SETUP:
5243 /* reject any changes other than AUTHORIZED or WME */
5244 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5245 BIT(NL80211_STA_FLAG_WME)))
5247 /* force (at least) rates when authorizing */
5248 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
5249 !params->supported_rates)
5252 case CFG80211_STA_TDLS_PEER_ACTIVE:
5253 /* reject any changes */
5255 case CFG80211_STA_MESH_PEER_KERNEL:
5256 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5259 case CFG80211_STA_MESH_PEER_USER:
5260 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION &&
5261 params->plink_action != NL80211_PLINK_ACTION_BLOCK)
5267 * Older kernel versions ignored this attribute entirely, so don't
5268 * reject attempts to update it but mark it as unused instead so the
5269 * driver won't look at the data.
5271 if (statype != CFG80211_STA_AP_CLIENT_UNASSOC &&
5272 statype != CFG80211_STA_TDLS_PEER_SETUP)
5273 params->opmode_notif_used = false;
5277 EXPORT_SYMBOL(cfg80211_check_station_change);
5280 * Get vlan interface making sure it is running and on the right wiphy.
5282 static struct net_device *get_vlan(struct genl_info *info,
5283 struct cfg80211_registered_device *rdev)
5285 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
5286 struct net_device *v;
5292 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
5294 return ERR_PTR(-ENODEV);
5296 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
5301 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5302 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5303 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
5308 if (!netif_running(v)) {
5316 return ERR_PTR(ret);
5319 static const struct nla_policy
5320 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
5321 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
5322 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
5325 static int nl80211_parse_sta_wme(struct genl_info *info,
5326 struct station_parameters *params)
5328 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
5332 /* parse WME attributes if present */
5333 if (!info->attrs[NL80211_ATTR_STA_WME])
5336 nla = info->attrs[NL80211_ATTR_STA_WME];
5337 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
5338 nl80211_sta_wme_policy, info->extack);
5342 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
5343 params->uapsd_queues = nla_get_u8(
5344 tb[NL80211_STA_WME_UAPSD_QUEUES]);
5345 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
5348 if (tb[NL80211_STA_WME_MAX_SP])
5349 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
5351 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
5354 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
5359 static int nl80211_parse_sta_channel_info(struct genl_info *info,
5360 struct station_parameters *params)
5362 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
5363 params->supported_channels =
5364 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5365 params->supported_channels_len =
5366 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5368 * Need to include at least one (first channel, number of
5369 * channels) tuple for each subband, and must have proper
5370 * tuples for the rest of the data as well.
5372 if (params->supported_channels_len < 2)
5374 if (params->supported_channels_len % 2)
5378 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
5379 params->supported_oper_classes =
5380 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5381 params->supported_oper_classes_len =
5382 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5384 * The value of the Length field of the Supported Operating
5385 * Classes element is between 2 and 253.
5387 if (params->supported_oper_classes_len < 2 ||
5388 params->supported_oper_classes_len > 253)
5394 static int nl80211_set_station_tdls(struct genl_info *info,
5395 struct station_parameters *params)
5398 /* Dummy STA entry gets updated once the peer capabilities are known */
5399 if (info->attrs[NL80211_ATTR_PEER_AID])
5400 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5401 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5403 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5404 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5406 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5407 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5409 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5410 params->he_capa_len =
5411 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5413 if (params->he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5417 err = nl80211_parse_sta_channel_info(info, params);
5421 return nl80211_parse_sta_wme(info, params);
5424 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
5426 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5427 struct net_device *dev = info->user_ptr[1];
5428 struct station_parameters params;
5432 memset(¶ms, 0, sizeof(params));
5434 if (!rdev->ops->change_station)
5438 * AID and listen_interval properties can be set only for unassociated
5439 * station. Include these parameters here and will check them in
5440 * cfg80211_check_station_change().
5442 if (info->attrs[NL80211_ATTR_STA_AID])
5443 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5445 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5446 params.listen_interval =
5447 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5449 params.listen_interval = -1;
5451 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS])
5452 params.support_p2p_ps =
5453 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5455 params.support_p2p_ps = -1;
5457 if (!info->attrs[NL80211_ATTR_MAC])
5460 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5462 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
5463 params.supported_rates =
5464 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5465 params.supported_rates_len =
5466 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5469 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5471 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5472 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5475 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5477 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5478 params.ext_capab_len =
5479 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5482 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5485 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5486 params.plink_action =
5487 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5489 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
5490 params.plink_state =
5491 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
5492 if (info->attrs[NL80211_ATTR_MESH_PEER_AID])
5493 params.peer_aid = nla_get_u16(
5494 info->attrs[NL80211_ATTR_MESH_PEER_AID]);
5495 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
5498 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE])
5499 params.local_pm = nla_get_u32(
5500 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
5502 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5503 params.opmode_notif_used = true;
5504 params.opmode_notif =
5505 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5508 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5509 params.airtime_weight =
5510 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5512 if (params.airtime_weight &&
5513 !wiphy_ext_feature_isset(&rdev->wiphy,
5514 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5517 /* Include parameters for TDLS peer (will check later) */
5518 err = nl80211_set_station_tdls(info, ¶ms);
5522 params.vlan = get_vlan(info, rdev);
5523 if (IS_ERR(params.vlan))
5524 return PTR_ERR(params.vlan);
5526 switch (dev->ieee80211_ptr->iftype) {
5527 case NL80211_IFTYPE_AP:
5528 case NL80211_IFTYPE_AP_VLAN:
5529 case NL80211_IFTYPE_P2P_GO:
5530 case NL80211_IFTYPE_P2P_CLIENT:
5531 case NL80211_IFTYPE_STATION:
5532 case NL80211_IFTYPE_ADHOC:
5533 case NL80211_IFTYPE_MESH_POINT:
5540 /* driver will call cfg80211_check_station_change() */
5541 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
5545 dev_put(params.vlan);
5550 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
5552 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5554 struct net_device *dev = info->user_ptr[1];
5555 struct station_parameters params;
5556 u8 *mac_addr = NULL;
5557 u32 auth_assoc = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5558 BIT(NL80211_STA_FLAG_ASSOCIATED);
5560 memset(¶ms, 0, sizeof(params));
5562 if (!rdev->ops->add_station)
5565 if (!info->attrs[NL80211_ATTR_MAC])
5568 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5571 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
5574 if (!info->attrs[NL80211_ATTR_STA_AID] &&
5575 !info->attrs[NL80211_ATTR_PEER_AID])
5578 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5579 params.supported_rates =
5580 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5581 params.supported_rates_len =
5582 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5583 params.listen_interval =
5584 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5586 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]) {
5587 params.support_p2p_ps =
5588 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5591 * if not specified, assume it's supported for P2P GO interface,
5592 * and is NOT supported for AP interface
5594 params.support_p2p_ps =
5595 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO;
5598 if (info->attrs[NL80211_ATTR_PEER_AID])
5599 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5601 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5603 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5605 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5606 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5609 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5611 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5612 params.ext_capab_len =
5613 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5616 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5618 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5620 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5622 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5624 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5626 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5627 params.he_capa_len =
5628 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5630 /* max len is validated in nla policy */
5631 if (params.he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5635 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5636 params.opmode_notif_used = true;
5637 params.opmode_notif =
5638 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5641 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5642 params.plink_action =
5643 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5645 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5646 params.airtime_weight =
5647 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5649 if (params.airtime_weight &&
5650 !wiphy_ext_feature_isset(&rdev->wiphy,
5651 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5654 err = nl80211_parse_sta_channel_info(info, ¶ms);
5658 err = nl80211_parse_sta_wme(info, ¶ms);
5662 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5665 /* HT/VHT requires QoS, but if we don't have that just ignore HT/VHT
5666 * as userspace might just pass through the capabilities from the IEs
5667 * directly, rather than enforcing this restriction and returning an
5668 * error in this case.
5670 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME))) {
5671 params.ht_capa = NULL;
5672 params.vht_capa = NULL;
5674 /* HE requires WME */
5675 if (params.he_capa_len)
5679 /* When you run into this, adjust the code below for the new flag */
5680 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5682 switch (dev->ieee80211_ptr->iftype) {
5683 case NL80211_IFTYPE_AP:
5684 case NL80211_IFTYPE_AP_VLAN:
5685 case NL80211_IFTYPE_P2P_GO:
5686 /* ignore WME attributes if iface/sta is not capable */
5687 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
5688 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
5689 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5691 /* TDLS peers cannot be added */
5692 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5693 info->attrs[NL80211_ATTR_PEER_AID])
5695 /* but don't bother the driver with it */
5696 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5698 /* allow authenticated/associated only if driver handles it */
5699 if (!(rdev->wiphy.features &
5700 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5701 params.sta_flags_mask & auth_assoc)
5704 /* Older userspace, or userspace wanting to be compatible with
5705 * !NL80211_FEATURE_FULL_AP_CLIENT_STATE, will not set the auth
5706 * and assoc flags in the mask, but assumes the station will be
5707 * added as associated anyway since this was the required driver
5708 * behaviour before NL80211_FEATURE_FULL_AP_CLIENT_STATE was
5710 * In order to not bother drivers with this quirk in the API
5711 * set the flags in both the mask and set for new stations in
5714 if (!(params.sta_flags_mask & auth_assoc)) {
5715 params.sta_flags_mask |= auth_assoc;
5716 params.sta_flags_set |= auth_assoc;
5719 /* must be last in here for error handling */
5720 params.vlan = get_vlan(info, rdev);
5721 if (IS_ERR(params.vlan))
5722 return PTR_ERR(params.vlan);
5724 case NL80211_IFTYPE_MESH_POINT:
5725 /* ignore uAPSD data */
5726 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5728 /* associated is disallowed */
5729 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
5731 /* TDLS peers cannot be added */
5732 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5733 info->attrs[NL80211_ATTR_PEER_AID])
5736 case NL80211_IFTYPE_STATION:
5737 case NL80211_IFTYPE_P2P_CLIENT:
5738 /* ignore uAPSD data */
5739 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5741 /* these are disallowed */
5742 if (params.sta_flags_mask &
5743 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
5744 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
5746 /* Only TDLS peers can be added */
5747 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5749 /* Can only add if TDLS ... */
5750 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
5752 /* ... with external setup is supported */
5753 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
5756 * Older wpa_supplicant versions always mark the TDLS peer
5757 * as authorized, but it shouldn't yet be.
5759 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
5765 /* be aware of params.vlan when changing code here */
5767 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
5770 dev_put(params.vlan);
5774 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
5776 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5777 struct net_device *dev = info->user_ptr[1];
5778 struct station_del_parameters params;
5780 memset(¶ms, 0, sizeof(params));
5782 if (info->attrs[NL80211_ATTR_MAC])
5783 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
5785 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5786 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5787 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
5788 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5791 if (!rdev->ops->del_station)
5794 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
5796 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
5797 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
5798 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
5801 /* Default to Deauthentication frame */
5802 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
5805 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
5806 params.reason_code =
5807 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
5808 if (params.reason_code == 0)
5809 return -EINVAL; /* 0 is reserved */
5811 /* Default to reason code 2 */
5812 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
5815 return rdev_del_station(rdev, dev, ¶ms);
5818 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
5819 int flags, struct net_device *dev,
5820 u8 *dst, u8 *next_hop,
5821 struct mpath_info *pinfo)
5824 struct nlattr *pinfoattr;
5826 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
5830 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5831 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
5832 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
5833 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
5834 goto nla_put_failure;
5836 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
5838 goto nla_put_failure;
5839 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
5840 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
5842 goto nla_put_failure;
5843 if (((pinfo->filled & MPATH_INFO_SN) &&
5844 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
5845 ((pinfo->filled & MPATH_INFO_METRIC) &&
5846 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
5848 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
5849 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
5851 ((pinfo->filled & MPATH_INFO_FLAGS) &&
5852 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
5854 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
5855 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
5856 pinfo->discovery_timeout)) ||
5857 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
5858 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
5859 pinfo->discovery_retries)) ||
5860 ((pinfo->filled & MPATH_INFO_HOP_COUNT) &&
5861 nla_put_u8(msg, NL80211_MPATH_INFO_HOP_COUNT,
5862 pinfo->hop_count)) ||
5863 ((pinfo->filled & MPATH_INFO_PATH_CHANGE) &&
5864 nla_put_u32(msg, NL80211_MPATH_INFO_PATH_CHANGE,
5865 pinfo->path_change_count)))
5866 goto nla_put_failure;
5868 nla_nest_end(msg, pinfoattr);
5870 genlmsg_end(msg, hdr);
5874 genlmsg_cancel(msg, hdr);
5878 static int nl80211_dump_mpath(struct sk_buff *skb,
5879 struct netlink_callback *cb)
5881 struct mpath_info pinfo;
5882 struct cfg80211_registered_device *rdev;
5883 struct wireless_dev *wdev;
5885 u8 next_hop[ETH_ALEN];
5886 int path_idx = cb->args[2];
5890 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5894 if (!rdev->ops->dump_mpath) {
5899 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
5905 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
5912 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
5913 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5914 wdev->netdev, dst, next_hop,
5922 cb->args[2] = path_idx;
5929 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
5931 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5933 struct net_device *dev = info->user_ptr[1];
5934 struct mpath_info pinfo;
5935 struct sk_buff *msg;
5937 u8 next_hop[ETH_ALEN];
5939 memset(&pinfo, 0, sizeof(pinfo));
5941 if (!info->attrs[NL80211_ATTR_MAC])
5944 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5946 if (!rdev->ops->get_mpath)
5949 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5952 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
5956 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5960 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
5961 dev, dst, next_hop, &pinfo) < 0) {
5966 return genlmsg_reply(msg, info);
5969 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
5971 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5972 struct net_device *dev = info->user_ptr[1];
5974 u8 *next_hop = NULL;
5976 if (!info->attrs[NL80211_ATTR_MAC])
5979 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
5982 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5983 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
5985 if (!rdev->ops->change_mpath)
5988 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5991 return rdev_change_mpath(rdev, dev, dst, next_hop);
5994 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
5996 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5997 struct net_device *dev = info->user_ptr[1];
5999 u8 *next_hop = NULL;
6001 if (!info->attrs[NL80211_ATTR_MAC])
6004 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6007 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6008 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6010 if (!rdev->ops->add_mpath)
6013 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6016 return rdev_add_mpath(rdev, dev, dst, next_hop);
6019 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
6021 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6022 struct net_device *dev = info->user_ptr[1];
6025 if (info->attrs[NL80211_ATTR_MAC])
6026 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6028 if (!rdev->ops->del_mpath)
6031 return rdev_del_mpath(rdev, dev, dst);
6034 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
6036 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6038 struct net_device *dev = info->user_ptr[1];
6039 struct mpath_info pinfo;
6040 struct sk_buff *msg;
6044 memset(&pinfo, 0, sizeof(pinfo));
6046 if (!info->attrs[NL80211_ATTR_MAC])
6049 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6051 if (!rdev->ops->get_mpp)
6054 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6057 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
6061 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6065 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6066 dev, dst, mpp, &pinfo) < 0) {
6071 return genlmsg_reply(msg, info);
6074 static int nl80211_dump_mpp(struct sk_buff *skb,
6075 struct netlink_callback *cb)
6077 struct mpath_info pinfo;
6078 struct cfg80211_registered_device *rdev;
6079 struct wireless_dev *wdev;
6082 int path_idx = cb->args[2];
6086 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6090 if (!rdev->ops->dump_mpp) {
6095 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6101 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
6108 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6109 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6110 wdev->netdev, dst, mpp,
6118 cb->args[2] = path_idx;
6125 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
6127 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6128 struct net_device *dev = info->user_ptr[1];
6129 struct wireless_dev *wdev = dev->ieee80211_ptr;
6130 struct bss_parameters params;
6133 memset(¶ms, 0, sizeof(params));
6134 /* default to not changing parameters */
6135 params.use_cts_prot = -1;
6136 params.use_short_preamble = -1;
6137 params.use_short_slot_time = -1;
6138 params.ap_isolate = -1;
6139 params.ht_opmode = -1;
6140 params.p2p_ctwindow = -1;
6141 params.p2p_opp_ps = -1;
6143 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
6144 params.use_cts_prot =
6145 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
6146 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
6147 params.use_short_preamble =
6148 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
6149 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
6150 params.use_short_slot_time =
6151 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
6152 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6153 params.basic_rates =
6154 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6155 params.basic_rates_len =
6156 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6158 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
6159 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
6160 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
6162 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
6164 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
6165 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6167 params.p2p_ctwindow =
6168 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
6169 if (params.p2p_ctwindow != 0 &&
6170 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
6174 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
6177 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6179 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
6180 params.p2p_opp_ps = tmp;
6181 if (params.p2p_opp_ps &&
6182 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
6186 if (!rdev->ops->change_bss)
6189 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
6190 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6194 err = rdev_change_bss(rdev, dev, ¶ms);
6200 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
6204 enum nl80211_user_reg_hint_type user_reg_hint_type;
6208 * You should only get this when cfg80211 hasn't yet initialized
6209 * completely when built-in to the kernel right between the time
6210 * window between nl80211_init() and regulatory_init(), if that is
6213 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
6214 return -EINPROGRESS;
6216 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
6217 user_reg_hint_type =
6218 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
6220 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
6222 switch (user_reg_hint_type) {
6223 case NL80211_USER_REG_HINT_USER:
6224 case NL80211_USER_REG_HINT_CELL_BASE:
6225 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6228 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6229 return regulatory_hint_user(data, user_reg_hint_type);
6230 case NL80211_USER_REG_HINT_INDOOR:
6231 if (info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
6232 owner_nlportid = info->snd_portid;
6233 is_indoor = !!info->attrs[NL80211_ATTR_REG_INDOOR];
6239 return regulatory_hint_indoor(is_indoor, owner_nlportid);
6245 static int nl80211_reload_regdb(struct sk_buff *skb, struct genl_info *info)
6247 return reg_reload_regdb();
6250 static int nl80211_get_mesh_config(struct sk_buff *skb,
6251 struct genl_info *info)
6253 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6254 struct net_device *dev = info->user_ptr[1];
6255 struct wireless_dev *wdev = dev->ieee80211_ptr;
6256 struct mesh_config cur_params;
6259 struct nlattr *pinfoattr;
6260 struct sk_buff *msg;
6262 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6265 if (!rdev->ops->get_mesh_config)
6269 /* If not connected, get default parameters */
6270 if (!wdev->mesh_id_len)
6271 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
6273 err = rdev_get_mesh_config(rdev, dev, &cur_params);
6279 /* Draw up a netlink message to send back */
6280 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6283 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6284 NL80211_CMD_GET_MESH_CONFIG);
6287 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
6289 goto nla_put_failure;
6290 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
6291 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
6292 cur_params.dot11MeshRetryTimeout) ||
6293 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
6294 cur_params.dot11MeshConfirmTimeout) ||
6295 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
6296 cur_params.dot11MeshHoldingTimeout) ||
6297 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
6298 cur_params.dot11MeshMaxPeerLinks) ||
6299 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
6300 cur_params.dot11MeshMaxRetries) ||
6301 nla_put_u8(msg, NL80211_MESHCONF_TTL,
6302 cur_params.dot11MeshTTL) ||
6303 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
6304 cur_params.element_ttl) ||
6305 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6306 cur_params.auto_open_plinks) ||
6307 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6308 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
6309 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6310 cur_params.dot11MeshHWMPmaxPREQretries) ||
6311 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
6312 cur_params.path_refresh_time) ||
6313 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6314 cur_params.min_discovery_timeout) ||
6315 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6316 cur_params.dot11MeshHWMPactivePathTimeout) ||
6317 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6318 cur_params.dot11MeshHWMPpreqMinInterval) ||
6319 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6320 cur_params.dot11MeshHWMPperrMinInterval) ||
6321 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6322 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
6323 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
6324 cur_params.dot11MeshHWMPRootMode) ||
6325 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6326 cur_params.dot11MeshHWMPRannInterval) ||
6327 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6328 cur_params.dot11MeshGateAnnouncementProtocol) ||
6329 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
6330 cur_params.dot11MeshForwarding) ||
6331 nla_put_s32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
6332 cur_params.rssi_threshold) ||
6333 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
6334 cur_params.ht_opmode) ||
6335 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6336 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
6337 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6338 cur_params.dot11MeshHWMProotInterval) ||
6339 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6340 cur_params.dot11MeshHWMPconfirmationInterval) ||
6341 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
6342 cur_params.power_mode) ||
6343 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
6344 cur_params.dot11MeshAwakeWindowDuration) ||
6345 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
6346 cur_params.plink_timeout) ||
6347 nla_put_u8(msg, NL80211_MESHCONF_CONNECTED_TO_GATE,
6348 cur_params.dot11MeshConnectedToMeshGate))
6349 goto nla_put_failure;
6350 nla_nest_end(msg, pinfoattr);
6351 genlmsg_end(msg, hdr);
6352 return genlmsg_reply(msg, info);
6360 static const struct nla_policy
6361 nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
6362 [NL80211_MESHCONF_RETRY_TIMEOUT] =
6363 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6364 [NL80211_MESHCONF_CONFIRM_TIMEOUT] =
6365 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6366 [NL80211_MESHCONF_HOLDING_TIMEOUT] =
6367 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6368 [NL80211_MESHCONF_MAX_PEER_LINKS] =
6369 NLA_POLICY_RANGE(NLA_U16, 0, 255),
6370 [NL80211_MESHCONF_MAX_RETRIES] = NLA_POLICY_MAX(NLA_U8, 16),
6371 [NL80211_MESHCONF_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6372 [NL80211_MESHCONF_ELEMENT_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6373 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = NLA_POLICY_MAX(NLA_U8, 1),
6374 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] =
6375 NLA_POLICY_RANGE(NLA_U32, 1, 255),
6376 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
6377 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
6378 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = NLA_POLICY_MIN(NLA_U16, 1),
6379 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
6380 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] =
6381 NLA_POLICY_MIN(NLA_U16, 1),
6382 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] =
6383 NLA_POLICY_MIN(NLA_U16, 1),
6384 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] =
6385 NLA_POLICY_MIN(NLA_U16, 1),
6386 [NL80211_MESHCONF_HWMP_ROOTMODE] = NLA_POLICY_MAX(NLA_U8, 4),
6387 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] =
6388 NLA_POLICY_MIN(NLA_U16, 1),
6389 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = NLA_POLICY_MAX(NLA_U8, 1),
6390 [NL80211_MESHCONF_FORWARDING] = NLA_POLICY_MAX(NLA_U8, 1),
6391 [NL80211_MESHCONF_RSSI_THRESHOLD] =
6392 NLA_POLICY_RANGE(NLA_S32, -255, 0),
6393 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
6394 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
6395 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] =
6396 NLA_POLICY_MIN(NLA_U16, 1),
6397 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] =
6398 NLA_POLICY_MIN(NLA_U16, 1),
6399 [NL80211_MESHCONF_POWER_MODE] =
6400 NLA_POLICY_RANGE(NLA_U32,
6401 NL80211_MESH_POWER_ACTIVE,
6402 NL80211_MESH_POWER_MAX),
6403 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
6404 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
6405 [NL80211_MESHCONF_CONNECTED_TO_GATE] = NLA_POLICY_RANGE(NLA_U8, 0, 1),
6408 static const struct nla_policy
6409 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
6410 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
6411 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
6412 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
6413 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
6414 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
6415 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
6416 [NL80211_MESH_SETUP_IE] =
6417 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
6418 IEEE80211_MAX_DATA_LEN),
6419 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
6422 static int nl80211_parse_mesh_config(struct genl_info *info,
6423 struct mesh_config *cfg,
6426 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
6430 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, mask, attr, fn) \
6433 cfg->param = fn(tb[attr]); \
6434 mask |= BIT((attr) - 1); \
6438 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
6440 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
6441 info->attrs[NL80211_ATTR_MESH_CONFIG],
6442 nl80211_meshconf_params_policy, info->extack))
6445 /* This makes sure that there aren't more than 32 mesh config
6446 * parameters (otherwise our bitfield scheme would not work.) */
6447 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
6449 /* Fill in the params struct */
6450 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, mask,
6451 NL80211_MESHCONF_RETRY_TIMEOUT, nla_get_u16);
6452 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, mask,
6453 NL80211_MESHCONF_CONFIRM_TIMEOUT,
6455 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, mask,
6456 NL80211_MESHCONF_HOLDING_TIMEOUT,
6458 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, mask,
6459 NL80211_MESHCONF_MAX_PEER_LINKS,
6461 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, mask,
6462 NL80211_MESHCONF_MAX_RETRIES, nla_get_u8);
6463 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, mask,
6464 NL80211_MESHCONF_TTL, nla_get_u8);
6465 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, mask,
6466 NL80211_MESHCONF_ELEMENT_TTL, nla_get_u8);
6467 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, mask,
6468 NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6470 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
6472 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6474 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, mask,
6475 NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6477 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, mask,
6478 NL80211_MESHCONF_PATH_REFRESH_TIME,
6480 if (mask & BIT(NL80211_MESHCONF_PATH_REFRESH_TIME) &&
6481 (cfg->path_refresh_time < 1 || cfg->path_refresh_time > 65535))
6483 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, mask,
6484 NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6486 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
6488 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6490 if (mask & BIT(NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT) &&
6491 (cfg->dot11MeshHWMPactivePathTimeout < 1 ||
6492 cfg->dot11MeshHWMPactivePathTimeout > 65535))
6494 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval, mask,
6495 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6497 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval, mask,
6498 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6500 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6501 dot11MeshHWMPnetDiameterTraversalTime, mask,
6502 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6504 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, mask,
6505 NL80211_MESHCONF_HWMP_ROOTMODE, nla_get_u8);
6506 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, mask,
6507 NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6509 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshGateAnnouncementProtocol,
6510 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6512 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, mask,
6513 NL80211_MESHCONF_FORWARDING, nla_get_u8);
6514 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, mask,
6515 NL80211_MESHCONF_RSSI_THRESHOLD,
6517 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConnectedToMeshGate, mask,
6518 NL80211_MESHCONF_CONNECTED_TO_GATE,
6521 * Check HT operation mode based on
6522 * IEEE 802.11-2016 9.4.2.57 HT Operation element.
6524 if (tb[NL80211_MESHCONF_HT_OPMODE]) {
6525 ht_opmode = nla_get_u16(tb[NL80211_MESHCONF_HT_OPMODE]);
6527 if (ht_opmode & ~(IEEE80211_HT_OP_MODE_PROTECTION |
6528 IEEE80211_HT_OP_MODE_NON_GF_STA_PRSNT |
6529 IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT))
6532 /* NON_HT_STA bit is reserved, but some programs set it */
6533 ht_opmode &= ~IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT;
6535 cfg->ht_opmode = ht_opmode;
6536 mask |= (1 << (NL80211_MESHCONF_HT_OPMODE - 1));
6538 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6539 dot11MeshHWMPactivePathToRootTimeout, mask,
6540 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6542 if (mask & BIT(NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT) &&
6543 (cfg->dot11MeshHWMPactivePathToRootTimeout < 1 ||
6544 cfg->dot11MeshHWMPactivePathToRootTimeout > 65535))
6546 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, mask,
6547 NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6549 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPconfirmationInterval,
6551 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6553 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode, mask,
6554 NL80211_MESHCONF_POWER_MODE, nla_get_u32);
6555 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration, mask,
6556 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
6557 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, mask,
6558 NL80211_MESHCONF_PLINK_TIMEOUT, nla_get_u32);
6564 #undef FILL_IN_MESH_PARAM_IF_SET
6567 static int nl80211_parse_mesh_setup(struct genl_info *info,
6568 struct mesh_setup *setup)
6570 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6571 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
6573 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
6575 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
6576 info->attrs[NL80211_ATTR_MESH_SETUP],
6577 nl80211_mesh_setup_params_policy, info->extack))
6580 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
6581 setup->sync_method =
6582 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
6583 IEEE80211_SYNC_METHOD_VENDOR :
6584 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
6586 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
6587 setup->path_sel_proto =
6588 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
6589 IEEE80211_PATH_PROTOCOL_VENDOR :
6590 IEEE80211_PATH_PROTOCOL_HWMP;
6592 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
6593 setup->path_metric =
6594 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
6595 IEEE80211_PATH_METRIC_VENDOR :
6596 IEEE80211_PATH_METRIC_AIRTIME;
6598 if (tb[NL80211_MESH_SETUP_IE]) {
6599 struct nlattr *ieattr =
6600 tb[NL80211_MESH_SETUP_IE];
6601 setup->ie = nla_data(ieattr);
6602 setup->ie_len = nla_len(ieattr);
6604 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
6605 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
6607 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
6608 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
6609 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
6610 if (setup->is_secure)
6611 setup->user_mpm = true;
6613 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
6614 if (!setup->user_mpm)
6617 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
6623 static int nl80211_update_mesh_config(struct sk_buff *skb,
6624 struct genl_info *info)
6626 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6627 struct net_device *dev = info->user_ptr[1];
6628 struct wireless_dev *wdev = dev->ieee80211_ptr;
6629 struct mesh_config cfg;
6633 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6636 if (!rdev->ops->update_mesh_config)
6639 err = nl80211_parse_mesh_config(info, &cfg, &mask);
6644 if (!wdev->mesh_id_len)
6648 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
6655 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
6656 struct sk_buff *msg)
6658 struct nlattr *nl_reg_rules;
6661 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
6662 (regdom->dfs_region &&
6663 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
6664 goto nla_put_failure;
6666 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
6668 goto nla_put_failure;
6670 for (i = 0; i < regdom->n_reg_rules; i++) {
6671 struct nlattr *nl_reg_rule;
6672 const struct ieee80211_reg_rule *reg_rule;
6673 const struct ieee80211_freq_range *freq_range;
6674 const struct ieee80211_power_rule *power_rule;
6675 unsigned int max_bandwidth_khz;
6677 reg_rule = ®dom->reg_rules[i];
6678 freq_range = ®_rule->freq_range;
6679 power_rule = ®_rule->power_rule;
6681 nl_reg_rule = nla_nest_start(msg, i);
6683 goto nla_put_failure;
6685 max_bandwidth_khz = freq_range->max_bandwidth_khz;
6686 if (!max_bandwidth_khz)
6687 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
6690 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
6692 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
6693 freq_range->start_freq_khz) ||
6694 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
6695 freq_range->end_freq_khz) ||
6696 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
6697 max_bandwidth_khz) ||
6698 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
6699 power_rule->max_antenna_gain) ||
6700 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
6701 power_rule->max_eirp) ||
6702 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
6703 reg_rule->dfs_cac_ms))
6704 goto nla_put_failure;
6706 nla_nest_end(msg, nl_reg_rule);
6709 nla_nest_end(msg, nl_reg_rules);
6716 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
6718 const struct ieee80211_regdomain *regdom = NULL;
6719 struct cfg80211_registered_device *rdev;
6720 struct wiphy *wiphy = NULL;
6721 struct sk_buff *msg;
6724 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6728 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6729 NL80211_CMD_GET_REG);
6733 if (info->attrs[NL80211_ATTR_WIPHY]) {
6736 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
6739 return PTR_ERR(rdev);
6742 wiphy = &rdev->wiphy;
6743 self_managed = wiphy->regulatory_flags &
6744 REGULATORY_WIPHY_SELF_MANAGED;
6745 regdom = get_wiphy_regdom(wiphy);
6747 /* a self-managed-reg device must have a private regdom */
6748 if (WARN_ON(!regdom && self_managed)) {
6754 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6755 goto nla_put_failure;
6758 if (!wiphy && reg_last_request_cell_base() &&
6759 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6760 NL80211_USER_REG_HINT_CELL_BASE))
6761 goto nla_put_failure;
6766 regdom = rcu_dereference(cfg80211_regdomain);
6768 if (nl80211_put_regdom(regdom, msg))
6769 goto nla_put_failure_rcu;
6773 genlmsg_end(msg, hdr);
6774 return genlmsg_reply(msg, info);
6776 nla_put_failure_rcu:
6784 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
6785 u32 seq, int flags, struct wiphy *wiphy,
6786 const struct ieee80211_regdomain *regdom)
6788 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
6789 NL80211_CMD_GET_REG);
6794 genl_dump_check_consistent(cb, hdr);
6796 if (nl80211_put_regdom(regdom, msg))
6797 goto nla_put_failure;
6799 if (!wiphy && reg_last_request_cell_base() &&
6800 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6801 NL80211_USER_REG_HINT_CELL_BASE))
6802 goto nla_put_failure;
6805 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6806 goto nla_put_failure;
6808 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
6809 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
6810 goto nla_put_failure;
6812 genlmsg_end(msg, hdr);
6816 genlmsg_cancel(msg, hdr);
6820 static int nl80211_get_reg_dump(struct sk_buff *skb,
6821 struct netlink_callback *cb)
6823 const struct ieee80211_regdomain *regdom = NULL;
6824 struct cfg80211_registered_device *rdev;
6825 int err, reg_idx, start = cb->args[2];
6829 if (cfg80211_regdomain && start == 0) {
6830 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6832 rtnl_dereference(cfg80211_regdomain));
6837 /* the global regdom is idx 0 */
6839 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
6840 regdom = get_wiphy_regdom(&rdev->wiphy);
6844 if (++reg_idx <= start)
6847 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6848 NLM_F_MULTI, &rdev->wiphy, regdom);
6855 cb->args[2] = reg_idx;
6862 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
6863 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
6864 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
6865 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
6866 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
6867 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
6868 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
6869 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
6870 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
6873 static int parse_reg_rule(struct nlattr *tb[],
6874 struct ieee80211_reg_rule *reg_rule)
6876 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
6877 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
6879 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
6881 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
6883 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
6885 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
6887 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
6890 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
6892 freq_range->start_freq_khz =
6893 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
6894 freq_range->end_freq_khz =
6895 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
6896 freq_range->max_bandwidth_khz =
6897 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
6899 power_rule->max_eirp =
6900 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
6902 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
6903 power_rule->max_antenna_gain =
6904 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
6906 if (tb[NL80211_ATTR_DFS_CAC_TIME])
6907 reg_rule->dfs_cac_ms =
6908 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
6913 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
6915 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
6916 struct nlattr *nl_reg_rule;
6918 int rem_reg_rules, r;
6919 u32 num_rules = 0, rule_idx = 0, size_of_regd;
6920 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
6921 struct ieee80211_regdomain *rd;
6923 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6926 if (!info->attrs[NL80211_ATTR_REG_RULES])
6929 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6931 if (info->attrs[NL80211_ATTR_DFS_REGION])
6932 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
6934 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
6937 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
6941 if (!reg_is_valid_request(alpha2))
6944 size_of_regd = sizeof(struct ieee80211_regdomain) +
6945 num_rules * sizeof(struct ieee80211_reg_rule);
6947 rd = kzalloc(size_of_regd, GFP_KERNEL);
6951 rd->n_reg_rules = num_rules;
6952 rd->alpha2[0] = alpha2[0];
6953 rd->alpha2[1] = alpha2[1];
6956 * Disable DFS master mode if the DFS region was
6957 * not supported or known on this kernel.
6959 if (reg_supported_dfs_region(dfs_region))
6960 rd->dfs_region = dfs_region;
6962 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
6964 r = nla_parse_nested(tb, NL80211_REG_RULE_ATTR_MAX,
6965 nl_reg_rule, reg_rule_policy,
6969 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
6975 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
6981 /* set_regdom takes ownership of rd */
6982 return set_regdom(rd, REGD_SOURCE_CRDA);
6987 #endif /* CONFIG_CFG80211_CRDA_SUPPORT */
6989 static int validate_scan_freqs(struct nlattr *freqs)
6991 struct nlattr *attr1, *attr2;
6992 int n_channels = 0, tmp1, tmp2;
6994 nla_for_each_nested(attr1, freqs, tmp1)
6995 if (nla_len(attr1) != sizeof(u32))
6998 nla_for_each_nested(attr1, freqs, tmp1) {
7001 * Some hardware has a limited channel list for
7002 * scanning, and it is pretty much nonsensical
7003 * to scan for a channel twice, so disallow that
7004 * and don't require drivers to check that the
7005 * channel list they get isn't longer than what
7006 * they can scan, as long as they can scan all
7007 * the channels they registered at once.
7009 nla_for_each_nested(attr2, freqs, tmp2)
7010 if (attr1 != attr2 &&
7011 nla_get_u32(attr1) == nla_get_u32(attr2))
7018 static bool is_band_valid(struct wiphy *wiphy, enum nl80211_band b)
7020 return b < NUM_NL80211_BANDS && wiphy->bands[b];
7023 static int parse_bss_select(struct nlattr *nla, struct wiphy *wiphy,
7024 struct cfg80211_bss_selection *bss_select)
7026 struct nlattr *attr[NL80211_BSS_SELECT_ATTR_MAX + 1];
7027 struct nlattr *nest;
7032 /* only process one nested attribute */
7033 nest = nla_data(nla);
7034 if (!nla_ok(nest, nla_len(nest)))
7037 err = nla_parse_nested(attr, NL80211_BSS_SELECT_ATTR_MAX, nest,
7038 nl80211_bss_select_policy, NULL);
7042 /* only one attribute may be given */
7043 for (i = 0; i <= NL80211_BSS_SELECT_ATTR_MAX; i++) {
7051 bss_select->behaviour = __NL80211_BSS_SELECT_ATTR_INVALID;
7053 if (attr[NL80211_BSS_SELECT_ATTR_RSSI])
7054 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI;
7056 if (attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]) {
7057 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_BAND_PREF;
7058 bss_select->param.band_pref =
7059 nla_get_u32(attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]);
7060 if (!is_band_valid(wiphy, bss_select->param.band_pref))
7064 if (attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]) {
7065 struct nl80211_bss_select_rssi_adjust *adj_param;
7067 adj_param = nla_data(attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]);
7068 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI_ADJUST;
7069 bss_select->param.adjust.band = adj_param->band;
7070 bss_select->param.adjust.delta = adj_param->delta;
7071 if (!is_band_valid(wiphy, bss_select->param.adjust.band))
7075 /* user-space did not provide behaviour attribute */
7076 if (bss_select->behaviour == __NL80211_BSS_SELECT_ATTR_INVALID)
7079 if (!(wiphy->bss_select_support & BIT(bss_select->behaviour)))
7085 int nl80211_parse_random_mac(struct nlattr **attrs,
7086 u8 *mac_addr, u8 *mac_addr_mask)
7090 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
7091 eth_zero_addr(mac_addr);
7092 eth_zero_addr(mac_addr_mask);
7094 mac_addr_mask[0] = 0x3;
7099 /* need both or none */
7100 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
7103 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
7104 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
7106 /* don't allow or configure an mcast address */
7107 if (!is_multicast_ether_addr(mac_addr_mask) ||
7108 is_multicast_ether_addr(mac_addr))
7112 * allow users to pass a MAC address that has bits set outside
7113 * of the mask, but don't bother drivers with having to deal
7116 for (i = 0; i < ETH_ALEN; i++)
7117 mac_addr[i] &= mac_addr_mask[i];
7122 static bool cfg80211_off_channel_oper_allowed(struct wireless_dev *wdev)
7124 ASSERT_WDEV_LOCK(wdev);
7126 if (!cfg80211_beaconing_iface_active(wdev))
7129 if (!(wdev->chandef.chan->flags & IEEE80211_CHAN_RADAR))
7132 return regulatory_pre_cac_allowed(wdev->wiphy);
7135 static bool nl80211_check_scan_feat(struct wiphy *wiphy, u32 flags, u32 flag,
7136 enum nl80211_ext_feature_index feat)
7138 if (!(flags & flag))
7140 if (wiphy_ext_feature_isset(wiphy, feat))
7146 nl80211_check_scan_flags(struct wiphy *wiphy, struct wireless_dev *wdev,
7147 void *request, struct nlattr **attrs,
7150 u8 *mac_addr, *mac_addr_mask;
7152 enum nl80211_feature_flags randomness_flag;
7154 if (!attrs[NL80211_ATTR_SCAN_FLAGS])
7157 if (is_sched_scan) {
7158 struct cfg80211_sched_scan_request *req = request;
7160 randomness_flag = wdev ?
7161 NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR :
7162 NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7163 flags = &req->flags;
7164 mac_addr = req->mac_addr;
7165 mac_addr_mask = req->mac_addr_mask;
7167 struct cfg80211_scan_request *req = request;
7169 randomness_flag = NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
7170 flags = &req->flags;
7171 mac_addr = req->mac_addr;
7172 mac_addr_mask = req->mac_addr_mask;
7175 *flags = nla_get_u32(attrs[NL80211_ATTR_SCAN_FLAGS]);
7177 if (((*flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
7178 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) ||
7179 !nl80211_check_scan_feat(wiphy, *flags,
7180 NL80211_SCAN_FLAG_LOW_SPAN,
7181 NL80211_EXT_FEATURE_LOW_SPAN_SCAN) ||
7182 !nl80211_check_scan_feat(wiphy, *flags,
7183 NL80211_SCAN_FLAG_LOW_POWER,
7184 NL80211_EXT_FEATURE_LOW_POWER_SCAN) ||
7185 !nl80211_check_scan_feat(wiphy, *flags,
7186 NL80211_SCAN_FLAG_HIGH_ACCURACY,
7187 NL80211_EXT_FEATURE_HIGH_ACCURACY_SCAN) ||
7188 !nl80211_check_scan_feat(wiphy, *flags,
7189 NL80211_SCAN_FLAG_FILS_MAX_CHANNEL_TIME,
7190 NL80211_EXT_FEATURE_FILS_MAX_CHANNEL_TIME) ||
7191 !nl80211_check_scan_feat(wiphy, *flags,
7192 NL80211_SCAN_FLAG_ACCEPT_BCAST_PROBE_RESP,
7193 NL80211_EXT_FEATURE_ACCEPT_BCAST_PROBE_RESP) ||
7194 !nl80211_check_scan_feat(wiphy, *flags,
7195 NL80211_SCAN_FLAG_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION,
7196 NL80211_EXT_FEATURE_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION) ||
7197 !nl80211_check_scan_feat(wiphy, *flags,
7198 NL80211_SCAN_FLAG_OCE_PROBE_REQ_HIGH_TX_RATE,
7199 NL80211_EXT_FEATURE_OCE_PROBE_REQ_HIGH_TX_RATE) ||
7200 !nl80211_check_scan_feat(wiphy, *flags,
7201 NL80211_SCAN_FLAG_RANDOM_SN,
7202 NL80211_EXT_FEATURE_SCAN_RANDOM_SN) ||
7203 !nl80211_check_scan_feat(wiphy, *flags,
7204 NL80211_SCAN_FLAG_MIN_PREQ_CONTENT,
7205 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT))
7208 if (*flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
7211 if (!(wiphy->features & randomness_flag) ||
7212 (wdev && wdev->current_bss))
7215 err = nl80211_parse_random_mac(attrs, mac_addr, mac_addr_mask);
7223 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
7225 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7226 struct wireless_dev *wdev = info->user_ptr[1];
7227 struct cfg80211_scan_request *request;
7228 struct nlattr *attr;
7229 struct wiphy *wiphy;
7230 int err, tmp, n_ssids = 0, n_channels, i;
7233 wiphy = &rdev->wiphy;
7235 if (wdev->iftype == NL80211_IFTYPE_NAN)
7238 if (!rdev->ops->scan)
7241 if (rdev->scan_req || rdev->scan_msg) {
7246 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7247 n_channels = validate_scan_freqs(
7248 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7254 n_channels = ieee80211_get_num_supported_channels(wiphy);
7257 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
7258 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
7261 if (n_ssids > wiphy->max_scan_ssids) {
7266 if (info->attrs[NL80211_ATTR_IE])
7267 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7271 if (ie_len > wiphy->max_scan_ie_len) {
7276 request = kzalloc(sizeof(*request)
7277 + sizeof(*request->ssids) * n_ssids
7278 + sizeof(*request->channels) * n_channels
7279 + ie_len, GFP_KERNEL);
7286 request->ssids = (void *)&request->channels[n_channels];
7287 request->n_ssids = n_ssids;
7290 request->ie = (void *)(request->ssids + n_ssids);
7292 request->ie = (void *)(request->channels + n_channels);
7296 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7297 /* user specified, bail out if channel not found */
7298 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
7299 struct ieee80211_channel *chan;
7301 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7308 /* ignore disabled channels */
7309 if (chan->flags & IEEE80211_CHAN_DISABLED)
7312 request->channels[i] = chan;
7316 enum nl80211_band band;
7319 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7322 if (!wiphy->bands[band])
7324 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7325 struct ieee80211_channel *chan;
7327 chan = &wiphy->bands[band]->channels[j];
7329 if (chan->flags & IEEE80211_CHAN_DISABLED)
7332 request->channels[i] = chan;
7343 request->n_channels = i;
7346 if (!cfg80211_off_channel_oper_allowed(wdev)) {
7347 struct ieee80211_channel *chan;
7349 if (request->n_channels != 1) {
7355 chan = request->channels[0];
7356 if (chan->center_freq != wdev->chandef.chan->center_freq) {
7366 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
7367 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7371 request->ssids[i].ssid_len = nla_len(attr);
7372 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
7377 if (info->attrs[NL80211_ATTR_IE]) {
7378 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7379 memcpy((void *)request->ie,
7380 nla_data(info->attrs[NL80211_ATTR_IE]),
7384 for (i = 0; i < NUM_NL80211_BANDS; i++)
7385 if (wiphy->bands[i])
7387 (1 << wiphy->bands[i]->n_bitrates) - 1;
7389 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
7390 nla_for_each_nested(attr,
7391 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
7393 enum nl80211_band band = nla_type(attr);
7395 if (band < 0 || band >= NUM_NL80211_BANDS) {
7400 if (!wiphy->bands[band])
7403 err = ieee80211_get_ratemask(wiphy->bands[band],
7406 &request->rates[band]);
7412 if (info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]) {
7413 if (!wiphy_ext_feature_isset(wiphy,
7414 NL80211_EXT_FEATURE_SET_SCAN_DWELL)) {
7420 nla_get_u16(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]);
7421 request->duration_mandatory =
7422 nla_get_flag(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY]);
7425 err = nl80211_check_scan_flags(wiphy, wdev, request, info->attrs,
7431 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7433 /* Initial implementation used NL80211_ATTR_MAC to set the specific
7434 * BSSID to scan for. This was problematic because that same attribute
7435 * was already used for another purpose (local random MAC address). The
7436 * NL80211_ATTR_BSSID attribute was added to fix this. For backwards
7437 * compatibility with older userspace components, also use the
7438 * NL80211_ATTR_MAC value here if it can be determined to be used for
7439 * the specific BSSID use case instead of the random MAC address
7440 * (NL80211_ATTR_SCAN_FLAGS is used to enable random MAC address use).
7442 if (info->attrs[NL80211_ATTR_BSSID])
7443 memcpy(request->bssid,
7444 nla_data(info->attrs[NL80211_ATTR_BSSID]), ETH_ALEN);
7445 else if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) &&
7446 info->attrs[NL80211_ATTR_MAC])
7447 memcpy(request->bssid, nla_data(info->attrs[NL80211_ATTR_MAC]),
7450 eth_broadcast_addr(request->bssid);
7452 request->wdev = wdev;
7453 request->wiphy = &rdev->wiphy;
7454 request->scan_start = jiffies;
7456 rdev->scan_req = request;
7457 err = rdev_scan(rdev, request);
7460 nl80211_send_scan_start(rdev, wdev);
7462 dev_hold(wdev->netdev);
7465 rdev->scan_req = NULL;
7473 static int nl80211_abort_scan(struct sk_buff *skb, struct genl_info *info)
7475 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7476 struct wireless_dev *wdev = info->user_ptr[1];
7478 if (!rdev->ops->abort_scan)
7484 if (!rdev->scan_req)
7487 rdev_abort_scan(rdev, wdev);
7492 nl80211_parse_sched_scan_plans(struct wiphy *wiphy, int n_plans,
7493 struct cfg80211_sched_scan_request *request,
7494 struct nlattr **attrs)
7496 int tmp, err, i = 0;
7497 struct nlattr *attr;
7499 if (!attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7503 * If scan plans are not specified,
7504 * %NL80211_ATTR_SCHED_SCAN_INTERVAL will be specified. In this
7505 * case one scan plan will be set with the specified scan
7506 * interval and infinite number of iterations.
7508 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
7512 request->scan_plans[0].interval =
7513 DIV_ROUND_UP(interval, MSEC_PER_SEC);
7514 if (!request->scan_plans[0].interval)
7517 if (request->scan_plans[0].interval >
7518 wiphy->max_sched_scan_plan_interval)
7519 request->scan_plans[0].interval =
7520 wiphy->max_sched_scan_plan_interval;
7525 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp) {
7526 struct nlattr *plan[NL80211_SCHED_SCAN_PLAN_MAX + 1];
7528 if (WARN_ON(i >= n_plans))
7531 err = nla_parse_nested(plan, NL80211_SCHED_SCAN_PLAN_MAX,
7532 attr, nl80211_plan_policy, NULL);
7536 if (!plan[NL80211_SCHED_SCAN_PLAN_INTERVAL])
7539 request->scan_plans[i].interval =
7540 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_INTERVAL]);
7541 if (!request->scan_plans[i].interval ||
7542 request->scan_plans[i].interval >
7543 wiphy->max_sched_scan_plan_interval)
7546 if (plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]) {
7547 request->scan_plans[i].iterations =
7548 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]);
7549 if (!request->scan_plans[i].iterations ||
7550 (request->scan_plans[i].iterations >
7551 wiphy->max_sched_scan_plan_iterations))
7553 } else if (i < n_plans - 1) {
7555 * All scan plans but the last one must specify
7556 * a finite number of iterations
7565 * The last scan plan must not specify the number of
7566 * iterations, it is supposed to run infinitely
7568 if (request->scan_plans[n_plans - 1].iterations)
7575 nl80211_parse_sched_scan_per_band_rssi(struct wiphy *wiphy,
7576 struct cfg80211_match_set *match_sets,
7577 struct nlattr *tb_band_rssi,
7580 struct nlattr *attr;
7581 int i, tmp, ret = 0;
7583 if (!wiphy_ext_feature_isset(wiphy,
7584 NL80211_EXT_FEATURE_SCHED_SCAN_BAND_SPECIFIC_RSSI_THOLD)) {
7588 for (i = 0; i < NUM_NL80211_BANDS; i++)
7589 match_sets->per_band_rssi_thold[i] =
7590 NL80211_SCAN_RSSI_THOLD_OFF;
7594 for (i = 0; i < NUM_NL80211_BANDS; i++)
7595 match_sets->per_band_rssi_thold[i] = rssi_thold;
7597 nla_for_each_nested(attr, tb_band_rssi, tmp) {
7598 enum nl80211_band band = nla_type(attr);
7600 if (band < 0 || band >= NUM_NL80211_BANDS)
7603 match_sets->per_band_rssi_thold[band] = nla_get_s32(attr);
7609 static struct cfg80211_sched_scan_request *
7610 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
7611 struct nlattr **attrs, int max_match_sets)
7613 struct cfg80211_sched_scan_request *request;
7614 struct nlattr *attr;
7615 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i, n_plans = 0;
7616 enum nl80211_band band;
7618 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
7619 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
7621 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7622 n_channels = validate_scan_freqs(
7623 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7625 return ERR_PTR(-EINVAL);
7627 n_channels = ieee80211_get_num_supported_channels(wiphy);
7630 if (attrs[NL80211_ATTR_SCAN_SSIDS])
7631 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7635 if (n_ssids > wiphy->max_sched_scan_ssids)
7636 return ERR_PTR(-EINVAL);
7639 * First, count the number of 'real' matchsets. Due to an issue with
7640 * the old implementation, matchsets containing only the RSSI attribute
7641 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
7642 * RSSI for all matchsets, rather than their own matchset for reporting
7643 * all APs with a strong RSSI. This is needed to be compatible with
7644 * older userspace that treated a matchset with only the RSSI as the
7645 * global RSSI for all other matchsets - if there are other matchsets.
7647 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7648 nla_for_each_nested(attr,
7649 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7651 struct nlattr *rssi;
7653 err = nla_parse_nested(tb,
7654 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7655 attr, nl80211_match_policy,
7658 return ERR_PTR(err);
7660 /* SSID and BSSID are mutually exclusive */
7661 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] &&
7662 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID])
7663 return ERR_PTR(-EINVAL);
7665 /* add other standalone attributes here */
7666 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] ||
7667 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID]) {
7671 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7673 default_match_rssi = nla_get_s32(rssi);
7677 /* However, if there's no other matchset, add the RSSI one */
7678 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
7681 if (n_match_sets > max_match_sets)
7682 return ERR_PTR(-EINVAL);
7684 if (attrs[NL80211_ATTR_IE])
7685 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
7689 if (ie_len > wiphy->max_sched_scan_ie_len)
7690 return ERR_PTR(-EINVAL);
7692 if (attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7694 * NL80211_ATTR_SCHED_SCAN_INTERVAL must not be specified since
7695 * each scan plan already specifies its own interval
7697 if (attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7698 return ERR_PTR(-EINVAL);
7700 nla_for_each_nested(attr,
7701 attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp)
7705 * The scan interval attribute is kept for backward
7706 * compatibility. If no scan plans are specified and sched scan
7707 * interval is specified, one scan plan will be set with this
7708 * scan interval and infinite number of iterations.
7710 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7711 return ERR_PTR(-EINVAL);
7716 if (!n_plans || n_plans > wiphy->max_sched_scan_plans)
7717 return ERR_PTR(-EINVAL);
7719 if (!wiphy_ext_feature_isset(
7720 wiphy, NL80211_EXT_FEATURE_SCHED_SCAN_RELATIVE_RSSI) &&
7721 (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] ||
7722 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]))
7723 return ERR_PTR(-EINVAL);
7725 request = kzalloc(sizeof(*request)
7726 + sizeof(*request->ssids) * n_ssids
7727 + sizeof(*request->match_sets) * n_match_sets
7728 + sizeof(*request->scan_plans) * n_plans
7729 + sizeof(*request->channels) * n_channels
7730 + ie_len, GFP_KERNEL);
7732 return ERR_PTR(-ENOMEM);
7735 request->ssids = (void *)&request->channels[n_channels];
7736 request->n_ssids = n_ssids;
7739 request->ie = (void *)(request->ssids + n_ssids);
7741 request->ie = (void *)(request->channels + n_channels);
7746 request->match_sets = (void *)(request->ie + ie_len);
7748 request->match_sets =
7749 (void *)(request->ssids + n_ssids);
7751 request->match_sets =
7752 (void *)(request->channels + n_channels);
7754 request->n_match_sets = n_match_sets;
7757 request->scan_plans = (void *)(request->match_sets +
7759 else if (request->ie)
7760 request->scan_plans = (void *)(request->ie + ie_len);
7762 request->scan_plans = (void *)(request->ssids + n_ssids);
7764 request->scan_plans = (void *)(request->channels + n_channels);
7766 request->n_scan_plans = n_plans;
7769 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7770 /* user specified, bail out if channel not found */
7771 nla_for_each_nested(attr,
7772 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
7774 struct ieee80211_channel *chan;
7776 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7783 /* ignore disabled channels */
7784 if (chan->flags & IEEE80211_CHAN_DISABLED)
7787 request->channels[i] = chan;
7792 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7795 if (!wiphy->bands[band])
7797 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7798 struct ieee80211_channel *chan;
7800 chan = &wiphy->bands[band]->channels[j];
7802 if (chan->flags & IEEE80211_CHAN_DISABLED)
7805 request->channels[i] = chan;
7816 request->n_channels = i;
7820 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7822 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7826 request->ssids[i].ssid_len = nla_len(attr);
7827 memcpy(request->ssids[i].ssid, nla_data(attr),
7834 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7835 nla_for_each_nested(attr,
7836 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7838 struct nlattr *ssid, *bssid, *rssi;
7840 err = nla_parse_nested(tb,
7841 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7842 attr, nl80211_match_policy,
7846 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
7847 bssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID];
7849 if (!ssid && !bssid) {
7854 if (WARN_ON(i >= n_match_sets)) {
7855 /* this indicates a programming error,
7856 * the loop above should have verified
7864 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
7868 memcpy(request->match_sets[i].ssid.ssid,
7869 nla_data(ssid), nla_len(ssid));
7870 request->match_sets[i].ssid.ssid_len =
7874 if (nla_len(bssid) != ETH_ALEN) {
7878 memcpy(request->match_sets[i].bssid,
7879 nla_data(bssid), ETH_ALEN);
7882 /* special attribute - old implementation w/a */
7883 request->match_sets[i].rssi_thold = default_match_rssi;
7884 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7886 request->match_sets[i].rssi_thold =
7889 /* Parse per band RSSI attribute */
7890 err = nl80211_parse_sched_scan_per_band_rssi(wiphy,
7891 &request->match_sets[i],
7892 tb[NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI],
7893 request->match_sets[i].rssi_thold);
7900 /* there was no other matchset, so the RSSI one is alone */
7901 if (i == 0 && n_match_sets)
7902 request->match_sets[0].rssi_thold = default_match_rssi;
7904 request->min_rssi_thold = INT_MAX;
7905 for (i = 0; i < n_match_sets; i++)
7906 request->min_rssi_thold =
7907 min(request->match_sets[i].rssi_thold,
7908 request->min_rssi_thold);
7910 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
7914 request->ie_len = ie_len;
7915 memcpy((void *)request->ie,
7916 nla_data(attrs[NL80211_ATTR_IE]),
7920 err = nl80211_check_scan_flags(wiphy, wdev, request, attrs, true);
7924 if (attrs[NL80211_ATTR_SCHED_SCAN_DELAY])
7926 nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_DELAY]);
7928 if (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]) {
7929 request->relative_rssi = nla_get_s8(
7930 attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]);
7931 request->relative_rssi_set = true;
7934 if (request->relative_rssi_set &&
7935 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]) {
7936 struct nl80211_bss_select_rssi_adjust *rssi_adjust;
7938 rssi_adjust = nla_data(
7939 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]);
7940 request->rssi_adjust.band = rssi_adjust->band;
7941 request->rssi_adjust.delta = rssi_adjust->delta;
7942 if (!is_band_valid(wiphy, request->rssi_adjust.band)) {
7948 err = nl80211_parse_sched_scan_plans(wiphy, n_plans, request, attrs);
7952 request->scan_start = jiffies;
7958 return ERR_PTR(err);
7961 static int nl80211_start_sched_scan(struct sk_buff *skb,
7962 struct genl_info *info)
7964 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7965 struct net_device *dev = info->user_ptr[1];
7966 struct wireless_dev *wdev = dev->ieee80211_ptr;
7967 struct cfg80211_sched_scan_request *sched_scan_req;
7971 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_start)
7974 want_multi = info->attrs[NL80211_ATTR_SCHED_SCAN_MULTI];
7975 err = cfg80211_sched_scan_req_possible(rdev, want_multi);
7979 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
7981 rdev->wiphy.max_match_sets);
7983 err = PTR_ERR_OR_ZERO(sched_scan_req);
7987 /* leave request id zero for legacy request
7988 * or if driver does not support multi-scheduled scan
7990 if (want_multi && rdev->wiphy.max_sched_scan_reqs > 1) {
7991 while (!sched_scan_req->reqid)
7992 sched_scan_req->reqid = cfg80211_assign_cookie(rdev);
7995 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
7999 sched_scan_req->dev = dev;
8000 sched_scan_req->wiphy = &rdev->wiphy;
8002 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
8003 sched_scan_req->owner_nlportid = info->snd_portid;
8005 cfg80211_add_sched_scan_req(rdev, sched_scan_req);
8007 nl80211_send_sched_scan(sched_scan_req, NL80211_CMD_START_SCHED_SCAN);
8011 kfree(sched_scan_req);
8016 static int nl80211_stop_sched_scan(struct sk_buff *skb,
8017 struct genl_info *info)
8019 struct cfg80211_sched_scan_request *req;
8020 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8023 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_stop)
8026 if (info->attrs[NL80211_ATTR_COOKIE]) {
8027 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
8028 return __cfg80211_stop_sched_scan(rdev, cookie, false);
8031 req = list_first_or_null_rcu(&rdev->sched_scan_req_list,
8032 struct cfg80211_sched_scan_request,
8034 if (!req || req->reqid ||
8035 (req->owner_nlportid &&
8036 req->owner_nlportid != info->snd_portid))
8039 return cfg80211_stop_sched_scan_req(rdev, req, false);
8042 static int nl80211_start_radar_detection(struct sk_buff *skb,
8043 struct genl_info *info)
8045 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8046 struct net_device *dev = info->user_ptr[1];
8047 struct wireless_dev *wdev = dev->ieee80211_ptr;
8048 struct wiphy *wiphy = wdev->wiphy;
8049 struct cfg80211_chan_def chandef;
8050 enum nl80211_dfs_regions dfs_region;
8051 unsigned int cac_time_ms;
8054 dfs_region = reg_get_dfs_region(wiphy);
8055 if (dfs_region == NL80211_DFS_UNSET)
8058 err = nl80211_parse_chandef(rdev, info, &chandef);
8062 if (netif_carrier_ok(dev))
8065 if (wdev->cac_started)
8068 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8075 if (!cfg80211_chandef_dfs_usable(wiphy, &chandef))
8078 /* CAC start is offloaded to HW and can't be started manually */
8079 if (wiphy_ext_feature_isset(wiphy, NL80211_EXT_FEATURE_DFS_OFFLOAD))
8082 if (!rdev->ops->start_radar_detection)
8085 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
8086 if (WARN_ON(!cac_time_ms))
8087 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
8089 err = rdev_start_radar_detection(rdev, dev, &chandef, cac_time_ms);
8091 wdev->chandef = chandef;
8092 wdev->cac_started = true;
8093 wdev->cac_start_time = jiffies;
8094 wdev->cac_time_ms = cac_time_ms;
8099 static int nl80211_notify_radar_detection(struct sk_buff *skb,
8100 struct genl_info *info)
8102 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8103 struct net_device *dev = info->user_ptr[1];
8104 struct wireless_dev *wdev = dev->ieee80211_ptr;
8105 struct wiphy *wiphy = wdev->wiphy;
8106 struct cfg80211_chan_def chandef;
8107 enum nl80211_dfs_regions dfs_region;
8110 dfs_region = reg_get_dfs_region(wiphy);
8111 if (dfs_region == NL80211_DFS_UNSET) {
8112 GENL_SET_ERR_MSG(info,
8113 "DFS Region is not set. Unexpected Radar indication");
8117 err = nl80211_parse_chandef(rdev, info, &chandef);
8119 GENL_SET_ERR_MSG(info, "Unable to extract chandef info");
8123 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8125 GENL_SET_ERR_MSG(info, "chandef is invalid");
8130 GENL_SET_ERR_MSG(info,
8131 "Unexpected Radar indication for chandef/iftype");
8135 /* Do not process this notification if radar is already detected
8136 * by kernel on this channel, and return success.
8138 if (chandef.chan->dfs_state == NL80211_DFS_UNAVAILABLE)
8141 cfg80211_set_dfs_state(wiphy, &chandef, NL80211_DFS_UNAVAILABLE);
8143 cfg80211_sched_dfs_chan_update(rdev);
8145 memcpy(&rdev->radar_chandef, &chandef, sizeof(chandef));
8147 /* Propagate this notification to other radios as well */
8148 queue_work(cfg80211_wq, &rdev->propagate_radar_detect_wk);
8153 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
8155 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8156 struct net_device *dev = info->user_ptr[1];
8157 struct wireless_dev *wdev = dev->ieee80211_ptr;
8158 struct cfg80211_csa_settings params;
8159 /* csa_attrs is defined static to avoid waste of stack size - this
8160 * function is called under RTNL lock, so this should not be a problem.
8162 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
8164 bool need_new_beacon = false;
8165 bool need_handle_dfs_flag = true;
8169 if (!rdev->ops->channel_switch ||
8170 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
8173 switch (dev->ieee80211_ptr->iftype) {
8174 case NL80211_IFTYPE_AP:
8175 case NL80211_IFTYPE_P2P_GO:
8176 need_new_beacon = true;
8177 /* For all modes except AP the handle_dfs flag needs to be
8178 * supplied to tell the kernel that userspace will handle radar
8179 * events when they happen. Otherwise a switch to a channel
8180 * requiring DFS will be rejected.
8182 need_handle_dfs_flag = false;
8184 /* useless if AP is not running */
8185 if (!wdev->beacon_interval)
8188 case NL80211_IFTYPE_ADHOC:
8189 if (!wdev->ssid_len)
8192 case NL80211_IFTYPE_MESH_POINT:
8193 if (!wdev->mesh_id_len)
8200 memset(¶ms, 0, sizeof(params));
8201 params.beacon_csa.ftm_responder = -1;
8203 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
8204 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
8207 /* only important for AP, IBSS and mesh create IEs internally */
8208 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
8211 /* Even though the attribute is u32, the specification says
8212 * u8, so let's make sure we don't overflow.
8214 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
8218 params.count = cs_count;
8220 if (!need_new_beacon)
8223 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon_after);
8227 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
8228 info->attrs[NL80211_ATTR_CSA_IES],
8229 nl80211_policy, info->extack);
8233 err = nl80211_parse_beacon(rdev, csa_attrs, ¶ms.beacon_csa);
8237 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
8240 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8241 if (!len || (len % sizeof(u16)))
8244 params.n_counter_offsets_beacon = len / sizeof(u16);
8245 if (rdev->wiphy.max_num_csa_counters &&
8246 (params.n_counter_offsets_beacon >
8247 rdev->wiphy.max_num_csa_counters))
8250 params.counter_offsets_beacon =
8251 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8253 /* sanity checks - counters should fit and be the same */
8254 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
8255 u16 offset = params.counter_offsets_beacon[i];
8257 if (offset >= params.beacon_csa.tail_len)
8260 if (params.beacon_csa.tail[offset] != params.count)
8264 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
8265 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8266 if (!len || (len % sizeof(u16)))
8269 params.n_counter_offsets_presp = len / sizeof(u16);
8270 if (rdev->wiphy.max_num_csa_counters &&
8271 (params.n_counter_offsets_presp >
8272 rdev->wiphy.max_num_csa_counters))
8275 params.counter_offsets_presp =
8276 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8278 /* sanity checks - counters should fit and be the same */
8279 for (i = 0; i < params.n_counter_offsets_presp; i++) {
8280 u16 offset = params.counter_offsets_presp[i];
8282 if (offset >= params.beacon_csa.probe_resp_len)
8285 if (params.beacon_csa.probe_resp[offset] !=
8292 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
8296 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
8300 err = cfg80211_chandef_dfs_required(wdev->wiphy,
8307 params.radar_required = true;
8308 if (need_handle_dfs_flag &&
8309 !nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS])) {
8314 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
8315 params.block_tx = true;
8318 err = rdev_channel_switch(rdev, dev, ¶ms);
8324 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
8326 struct cfg80211_registered_device *rdev,
8327 struct wireless_dev *wdev,
8328 struct cfg80211_internal_bss *intbss)
8330 struct cfg80211_bss *res = &intbss->pub;
8331 const struct cfg80211_bss_ies *ies;
8335 ASSERT_WDEV_LOCK(wdev);
8337 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
8338 NL80211_CMD_NEW_SCAN_RESULTS);
8342 genl_dump_check_consistent(cb, hdr);
8344 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
8345 goto nla_put_failure;
8347 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
8348 goto nla_put_failure;
8349 if (nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
8351 goto nla_put_failure;
8353 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
8355 goto nla_put_failure;
8356 if ((!is_zero_ether_addr(res->bssid) &&
8357 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
8358 goto nla_put_failure;
8361 /* indicate whether we have probe response data or not */
8362 if (rcu_access_pointer(res->proberesp_ies) &&
8363 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
8364 goto fail_unlock_rcu;
8366 /* this pointer prefers to be pointed to probe response data
8367 * but is always valid
8369 ies = rcu_dereference(res->ies);
8371 if (nla_put_u64_64bit(msg, NL80211_BSS_TSF, ies->tsf,
8373 goto fail_unlock_rcu;
8374 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
8375 ies->len, ies->data))
8376 goto fail_unlock_rcu;
8379 /* and this pointer is always (unless driver didn't know) beacon data */
8380 ies = rcu_dereference(res->beacon_ies);
8381 if (ies && ies->from_beacon) {
8382 if (nla_put_u64_64bit(msg, NL80211_BSS_BEACON_TSF, ies->tsf,
8384 goto fail_unlock_rcu;
8385 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
8386 ies->len, ies->data))
8387 goto fail_unlock_rcu;
8391 if (res->beacon_interval &&
8392 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
8393 goto nla_put_failure;
8394 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
8395 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
8396 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
8397 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
8398 jiffies_to_msecs(jiffies - intbss->ts)))
8399 goto nla_put_failure;
8401 if (intbss->parent_tsf &&
8402 (nla_put_u64_64bit(msg, NL80211_BSS_PARENT_TSF,
8403 intbss->parent_tsf, NL80211_BSS_PAD) ||
8404 nla_put(msg, NL80211_BSS_PARENT_BSSID, ETH_ALEN,
8405 intbss->parent_bssid)))
8406 goto nla_put_failure;
8408 if (intbss->ts_boottime &&
8409 nla_put_u64_64bit(msg, NL80211_BSS_LAST_SEEN_BOOTTIME,
8410 intbss->ts_boottime, NL80211_BSS_PAD))
8411 goto nla_put_failure;
8413 if (!nl80211_put_signal(msg, intbss->pub.chains,
8414 intbss->pub.chain_signal,
8415 NL80211_BSS_CHAIN_SIGNAL))
8416 goto nla_put_failure;
8418 switch (rdev->wiphy.signal_type) {
8419 case CFG80211_SIGNAL_TYPE_MBM:
8420 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
8421 goto nla_put_failure;
8423 case CFG80211_SIGNAL_TYPE_UNSPEC:
8424 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
8425 goto nla_put_failure;
8431 switch (wdev->iftype) {
8432 case NL80211_IFTYPE_P2P_CLIENT:
8433 case NL80211_IFTYPE_STATION:
8434 if (intbss == wdev->current_bss &&
8435 nla_put_u32(msg, NL80211_BSS_STATUS,
8436 NL80211_BSS_STATUS_ASSOCIATED))
8437 goto nla_put_failure;
8439 case NL80211_IFTYPE_ADHOC:
8440 if (intbss == wdev->current_bss &&
8441 nla_put_u32(msg, NL80211_BSS_STATUS,
8442 NL80211_BSS_STATUS_IBSS_JOINED))
8443 goto nla_put_failure;
8449 nla_nest_end(msg, bss);
8451 genlmsg_end(msg, hdr);
8457 genlmsg_cancel(msg, hdr);
8461 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
8463 struct cfg80211_registered_device *rdev;
8464 struct cfg80211_internal_bss *scan;
8465 struct wireless_dev *wdev;
8466 int start = cb->args[2], idx = 0;
8470 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8477 spin_lock_bh(&rdev->bss_lock);
8480 * dump_scan will be called multiple times to break up the scan results
8481 * into multiple messages. It is unlikely that any more bss-es will be
8482 * expired after the first call, so only call only call this on the
8483 * first dump_scan invocation.
8486 cfg80211_bss_expire(rdev);
8488 cb->seq = rdev->bss_generation;
8490 list_for_each_entry(scan, &rdev->bss_list, list) {
8493 if (nl80211_send_bss(skb, cb,
8494 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8495 rdev, wdev, scan) < 0) {
8501 spin_unlock_bh(&rdev->bss_lock);
8510 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
8511 int flags, struct net_device *dev,
8512 bool allow_radio_stats,
8513 struct survey_info *survey)
8516 struct nlattr *infoattr;
8518 /* skip radio stats if userspace didn't request them */
8519 if (!survey->channel && !allow_radio_stats)
8522 hdr = nl80211hdr_put(msg, portid, seq, flags,
8523 NL80211_CMD_NEW_SURVEY_RESULTS);
8527 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
8528 goto nla_put_failure;
8530 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
8532 goto nla_put_failure;
8534 if (survey->channel &&
8535 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
8536 survey->channel->center_freq))
8537 goto nla_put_failure;
8539 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
8540 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
8541 goto nla_put_failure;
8542 if ((survey->filled & SURVEY_INFO_IN_USE) &&
8543 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
8544 goto nla_put_failure;
8545 if ((survey->filled & SURVEY_INFO_TIME) &&
8546 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME,
8547 survey->time, NL80211_SURVEY_INFO_PAD))
8548 goto nla_put_failure;
8549 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
8550 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_BUSY,
8551 survey->time_busy, NL80211_SURVEY_INFO_PAD))
8552 goto nla_put_failure;
8553 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
8554 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
8555 survey->time_ext_busy, NL80211_SURVEY_INFO_PAD))
8556 goto nla_put_failure;
8557 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
8558 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_RX,
8559 survey->time_rx, NL80211_SURVEY_INFO_PAD))
8560 goto nla_put_failure;
8561 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
8562 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_TX,
8563 survey->time_tx, NL80211_SURVEY_INFO_PAD))
8564 goto nla_put_failure;
8565 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
8566 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_SCAN,
8567 survey->time_scan, NL80211_SURVEY_INFO_PAD))
8568 goto nla_put_failure;
8570 nla_nest_end(msg, infoattr);
8572 genlmsg_end(msg, hdr);
8576 genlmsg_cancel(msg, hdr);
8580 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
8582 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
8583 struct survey_info survey;
8584 struct cfg80211_registered_device *rdev;
8585 struct wireless_dev *wdev;
8586 int survey_idx = cb->args[2];
8591 res = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8595 /* prepare_wdev_dump parsed the attributes */
8596 radio_stats = attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
8598 if (!wdev->netdev) {
8603 if (!rdev->ops->dump_survey) {
8609 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
8615 /* don't send disabled channels, but do send non-channel data */
8616 if (survey.channel &&
8617 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
8622 if (nl80211_send_survey(skb,
8623 NETLINK_CB(cb->skb).portid,
8624 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8625 wdev->netdev, radio_stats, &survey) < 0)
8631 cb->args[2] = survey_idx;
8638 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
8640 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
8641 NL80211_WPA_VERSION_2));
8644 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
8646 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8647 struct net_device *dev = info->user_ptr[1];
8648 struct ieee80211_channel *chan;
8649 const u8 *bssid, *ssid, *ie = NULL, *auth_data = NULL;
8650 int err, ssid_len, ie_len = 0, auth_data_len = 0;
8651 enum nl80211_auth_type auth_type;
8652 struct key_parse key;
8653 bool local_state_change;
8655 if (!info->attrs[NL80211_ATTR_MAC])
8658 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
8661 if (!info->attrs[NL80211_ATTR_SSID])
8664 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8667 err = nl80211_parse_key(info, &key);
8672 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
8674 if (!key.p.key || !key.p.key_len)
8676 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
8677 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
8678 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
8679 key.p.key_len != WLAN_KEY_LEN_WEP104))
8692 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
8693 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
8702 if (!rdev->ops->auth)
8705 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8706 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8709 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8710 chan = nl80211_get_valid_chan(&rdev->wiphy,
8711 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8715 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8716 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8718 if (info->attrs[NL80211_ATTR_IE]) {
8719 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8720 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8723 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
8724 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
8727 if ((auth_type == NL80211_AUTHTYPE_SAE ||
8728 auth_type == NL80211_AUTHTYPE_FILS_SK ||
8729 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
8730 auth_type == NL80211_AUTHTYPE_FILS_PK) &&
8731 !info->attrs[NL80211_ATTR_AUTH_DATA])
8734 if (info->attrs[NL80211_ATTR_AUTH_DATA]) {
8735 if (auth_type != NL80211_AUTHTYPE_SAE &&
8736 auth_type != NL80211_AUTHTYPE_FILS_SK &&
8737 auth_type != NL80211_AUTHTYPE_FILS_SK_PFS &&
8738 auth_type != NL80211_AUTHTYPE_FILS_PK)
8740 auth_data = nla_data(info->attrs[NL80211_ATTR_AUTH_DATA]);
8741 auth_data_len = nla_len(info->attrs[NL80211_ATTR_AUTH_DATA]);
8742 /* need to include at least Auth Transaction and Status Code */
8743 if (auth_data_len < 4)
8747 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8750 * Since we no longer track auth state, ignore
8751 * requests to only change local state.
8753 if (local_state_change)
8756 wdev_lock(dev->ieee80211_ptr);
8757 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
8758 ssid, ssid_len, ie, ie_len,
8759 key.p.key, key.p.key_len, key.idx,
8760 auth_data, auth_data_len);
8761 wdev_unlock(dev->ieee80211_ptr);
8765 static int validate_pae_over_nl80211(struct cfg80211_registered_device *rdev,
8766 struct genl_info *info)
8768 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8769 GENL_SET_ERR_MSG(info, "SOCKET_OWNER not set");
8773 if (!rdev->ops->tx_control_port ||
8774 !wiphy_ext_feature_isset(&rdev->wiphy,
8775 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
8781 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
8782 struct genl_info *info,
8783 struct cfg80211_crypto_settings *settings,
8786 memset(settings, 0, sizeof(*settings));
8788 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
8790 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
8793 proto = nla_get_u16(
8794 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
8795 settings->control_port_ethertype = cpu_to_be16(proto);
8796 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
8799 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
8800 settings->control_port_no_encrypt = true;
8802 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
8804 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
8805 int r = validate_pae_over_nl80211(rdev, info);
8810 settings->control_port_over_nl80211 = true;
8813 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
8817 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8818 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8819 settings->n_ciphers_pairwise = len / sizeof(u32);
8821 if (len % sizeof(u32))
8824 if (settings->n_ciphers_pairwise > cipher_limit)
8827 memcpy(settings->ciphers_pairwise, data, len);
8829 for (i = 0; i < settings->n_ciphers_pairwise; i++)
8830 if (!cfg80211_supported_cipher_suite(
8832 settings->ciphers_pairwise[i]))
8836 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
8837 settings->cipher_group =
8838 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
8839 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
8840 settings->cipher_group))
8844 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
8845 settings->wpa_versions =
8846 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
8847 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
8851 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
8855 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
8856 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
8857 settings->n_akm_suites = len / sizeof(u32);
8859 if (len % sizeof(u32))
8862 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
8865 memcpy(settings->akm_suites, data, len);
8868 if (info->attrs[NL80211_ATTR_PMK]) {
8869 if (nla_len(info->attrs[NL80211_ATTR_PMK]) != WLAN_PMK_LEN)
8871 if (!wiphy_ext_feature_isset(&rdev->wiphy,
8872 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK))
8874 settings->psk = nla_data(info->attrs[NL80211_ATTR_PMK]);
8880 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
8882 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8883 struct net_device *dev = info->user_ptr[1];
8884 struct ieee80211_channel *chan;
8885 struct cfg80211_assoc_request req = {};
8886 const u8 *bssid, *ssid;
8887 int err, ssid_len = 0;
8889 if (dev->ieee80211_ptr->conn_owner_nlportid &&
8890 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
8893 if (!info->attrs[NL80211_ATTR_MAC] ||
8894 !info->attrs[NL80211_ATTR_SSID] ||
8895 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
8898 if (!rdev->ops->assoc)
8901 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8902 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8905 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8907 chan = nl80211_get_valid_chan(&rdev->wiphy,
8908 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8912 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8913 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8915 if (info->attrs[NL80211_ATTR_IE]) {
8916 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8917 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8920 if (info->attrs[NL80211_ATTR_USE_MFP]) {
8921 enum nl80211_mfp mfp =
8922 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
8923 if (mfp == NL80211_MFP_REQUIRED)
8925 else if (mfp != NL80211_MFP_NO)
8929 if (info->attrs[NL80211_ATTR_PREV_BSSID])
8930 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
8932 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
8933 req.flags |= ASSOC_REQ_DISABLE_HT;
8935 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8936 memcpy(&req.ht_capa_mask,
8937 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
8938 sizeof(req.ht_capa_mask));
8940 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
8941 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8943 memcpy(&req.ht_capa,
8944 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
8945 sizeof(req.ht_capa));
8948 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
8949 req.flags |= ASSOC_REQ_DISABLE_VHT;
8951 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
8952 memcpy(&req.vht_capa_mask,
8953 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
8954 sizeof(req.vht_capa_mask));
8956 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
8957 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
8959 memcpy(&req.vht_capa,
8960 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
8961 sizeof(req.vht_capa));
8964 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
8965 if (!((rdev->wiphy.features &
8966 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
8967 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
8968 !wiphy_ext_feature_isset(&rdev->wiphy,
8969 NL80211_EXT_FEATURE_RRM))
8971 req.flags |= ASSOC_REQ_USE_RRM;
8974 if (info->attrs[NL80211_ATTR_FILS_KEK]) {
8975 req.fils_kek = nla_data(info->attrs[NL80211_ATTR_FILS_KEK]);
8976 req.fils_kek_len = nla_len(info->attrs[NL80211_ATTR_FILS_KEK]);
8977 if (!info->attrs[NL80211_ATTR_FILS_NONCES])
8980 nla_data(info->attrs[NL80211_ATTR_FILS_NONCES]);
8983 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
8985 wdev_lock(dev->ieee80211_ptr);
8987 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
8988 ssid, ssid_len, &req);
8990 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8991 dev->ieee80211_ptr->conn_owner_nlportid =
8993 memcpy(dev->ieee80211_ptr->disconnect_bssid,
8997 wdev_unlock(dev->ieee80211_ptr);
9003 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
9005 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9006 struct net_device *dev = info->user_ptr[1];
9007 const u8 *ie = NULL, *bssid;
9008 int ie_len = 0, err;
9010 bool local_state_change;
9012 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9013 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9016 if (!info->attrs[NL80211_ATTR_MAC])
9019 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9022 if (!rdev->ops->deauth)
9025 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9026 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9029 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9031 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9032 if (reason_code == 0) {
9033 /* Reason Code 0 is reserved */
9037 if (info->attrs[NL80211_ATTR_IE]) {
9038 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9039 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9042 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9044 wdev_lock(dev->ieee80211_ptr);
9045 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
9046 local_state_change);
9047 wdev_unlock(dev->ieee80211_ptr);
9051 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
9053 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9054 struct net_device *dev = info->user_ptr[1];
9055 const u8 *ie = NULL, *bssid;
9056 int ie_len = 0, err;
9058 bool local_state_change;
9060 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9061 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9064 if (!info->attrs[NL80211_ATTR_MAC])
9067 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9070 if (!rdev->ops->disassoc)
9073 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9074 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9077 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9079 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9080 if (reason_code == 0) {
9081 /* Reason Code 0 is reserved */
9085 if (info->attrs[NL80211_ATTR_IE]) {
9086 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9087 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9090 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9092 wdev_lock(dev->ieee80211_ptr);
9093 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
9094 local_state_change);
9095 wdev_unlock(dev->ieee80211_ptr);
9100 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
9101 int mcast_rate[NUM_NL80211_BANDS],
9104 struct wiphy *wiphy = &rdev->wiphy;
9108 for (band = 0; band < NUM_NL80211_BANDS; band++) {
9109 struct ieee80211_supported_band *sband;
9111 sband = wiphy->bands[band];
9115 for (i = 0; i < sband->n_bitrates; i++) {
9116 if (sband->bitrates[i].bitrate == rateval) {
9117 mcast_rate[band] = i + 1;
9127 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
9129 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9130 struct net_device *dev = info->user_ptr[1];
9131 struct cfg80211_ibss_params ibss;
9132 struct wiphy *wiphy;
9133 struct cfg80211_cached_keys *connkeys = NULL;
9136 memset(&ibss, 0, sizeof(ibss));
9138 if (!info->attrs[NL80211_ATTR_SSID] ||
9139 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9142 ibss.beacon_interval = 100;
9144 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL])
9145 ibss.beacon_interval =
9146 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
9148 err = cfg80211_validate_beacon_int(rdev, NL80211_IFTYPE_ADHOC,
9149 ibss.beacon_interval);
9153 if (!rdev->ops->join_ibss)
9156 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9159 wiphy = &rdev->wiphy;
9161 if (info->attrs[NL80211_ATTR_MAC]) {
9162 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9164 if (!is_valid_ether_addr(ibss.bssid))
9167 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9168 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9170 if (info->attrs[NL80211_ATTR_IE]) {
9171 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9172 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9175 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
9179 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
9180 NL80211_IFTYPE_ADHOC))
9183 switch (ibss.chandef.width) {
9184 case NL80211_CHAN_WIDTH_5:
9185 case NL80211_CHAN_WIDTH_10:
9186 case NL80211_CHAN_WIDTH_20_NOHT:
9188 case NL80211_CHAN_WIDTH_20:
9189 case NL80211_CHAN_WIDTH_40:
9190 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9193 case NL80211_CHAN_WIDTH_80:
9194 case NL80211_CHAN_WIDTH_80P80:
9195 case NL80211_CHAN_WIDTH_160:
9196 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9198 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9199 NL80211_EXT_FEATURE_VHT_IBSS))
9206 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
9207 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
9209 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
9211 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9213 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9214 struct ieee80211_supported_band *sband =
9215 wiphy->bands[ibss.chandef.chan->band];
9217 err = ieee80211_get_ratemask(sband, rates, n_rates,
9223 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9224 memcpy(&ibss.ht_capa_mask,
9225 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9226 sizeof(ibss.ht_capa_mask));
9228 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9229 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9231 memcpy(&ibss.ht_capa,
9232 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9233 sizeof(ibss.ht_capa));
9236 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
9237 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
9238 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
9241 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9244 connkeys = nl80211_parse_connkeys(rdev, info, &no_ht);
9245 if (IS_ERR(connkeys))
9246 return PTR_ERR(connkeys);
9248 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
9256 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
9258 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
9259 int r = validate_pae_over_nl80211(rdev, info);
9266 ibss.control_port_over_nl80211 = true;
9269 ibss.userspace_handles_dfs =
9270 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
9272 wdev_lock(dev->ieee80211_ptr);
9273 err = __cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
9276 else if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
9277 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9278 wdev_unlock(dev->ieee80211_ptr);
9283 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
9285 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9286 struct net_device *dev = info->user_ptr[1];
9288 if (!rdev->ops->leave_ibss)
9291 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9294 return cfg80211_leave_ibss(rdev, dev, false);
9297 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
9299 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9300 struct net_device *dev = info->user_ptr[1];
9301 int mcast_rate[NUM_NL80211_BANDS];
9305 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
9306 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
9307 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_OCB)
9310 if (!rdev->ops->set_mcast_rate)
9313 memset(mcast_rate, 0, sizeof(mcast_rate));
9315 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
9318 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
9319 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
9322 err = rdev_set_mcast_rate(rdev, dev, mcast_rate);
9327 static struct sk_buff *
9328 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
9329 struct wireless_dev *wdev, int approxlen,
9330 u32 portid, u32 seq, enum nl80211_commands cmd,
9331 enum nl80211_attrs attr,
9332 const struct nl80211_vendor_cmd_info *info,
9335 struct sk_buff *skb;
9337 struct nlattr *data;
9339 skb = nlmsg_new(approxlen + 100, gfp);
9343 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
9349 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
9350 goto nla_put_failure;
9353 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
9355 goto nla_put_failure;
9356 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
9358 goto nla_put_failure;
9362 if (nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
9363 wdev_id(wdev), NL80211_ATTR_PAD))
9364 goto nla_put_failure;
9366 nla_put_u32(skb, NL80211_ATTR_IFINDEX,
9367 wdev->netdev->ifindex))
9368 goto nla_put_failure;
9371 data = nla_nest_start(skb, attr);
9373 goto nla_put_failure;
9375 ((void **)skb->cb)[0] = rdev;
9376 ((void **)skb->cb)[1] = hdr;
9377 ((void **)skb->cb)[2] = data;
9386 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
9387 struct wireless_dev *wdev,
9388 enum nl80211_commands cmd,
9389 enum nl80211_attrs attr,
9390 unsigned int portid,
9391 int vendor_event_idx,
9392 int approxlen, gfp_t gfp)
9394 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9395 const struct nl80211_vendor_cmd_info *info;
9398 case NL80211_CMD_TESTMODE:
9399 if (WARN_ON(vendor_event_idx != -1))
9403 case NL80211_CMD_VENDOR:
9404 if (WARN_ON(vendor_event_idx < 0 ||
9405 vendor_event_idx >= wiphy->n_vendor_events))
9407 info = &wiphy->vendor_events[vendor_event_idx];
9414 return __cfg80211_alloc_vendor_skb(rdev, wdev, approxlen, portid, 0,
9415 cmd, attr, info, gfp);
9417 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
9419 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
9421 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9422 void *hdr = ((void **)skb->cb)[1];
9423 struct nlmsghdr *nlhdr = nlmsg_hdr(skb);
9424 struct nlattr *data = ((void **)skb->cb)[2];
9425 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
9427 /* clear CB data for netlink core to own from now on */
9428 memset(skb->cb, 0, sizeof(skb->cb));
9430 nla_nest_end(skb, data);
9431 genlmsg_end(skb, hdr);
9433 if (nlhdr->nlmsg_pid) {
9434 genlmsg_unicast(wiphy_net(&rdev->wiphy), skb,
9437 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
9438 mcgrp = NL80211_MCGRP_VENDOR;
9440 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
9441 skb, 0, mcgrp, gfp);
9444 EXPORT_SYMBOL(__cfg80211_send_event_skb);
9446 #ifdef CONFIG_NL80211_TESTMODE
9447 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
9449 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9450 struct wireless_dev *wdev =
9451 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9454 if (!rdev->ops->testmode_cmd)
9458 err = PTR_ERR(wdev);
9462 } else if (wdev->wiphy != &rdev->wiphy) {
9466 if (!info->attrs[NL80211_ATTR_TESTDATA])
9469 rdev->cur_cmd_info = info;
9470 err = rdev_testmode_cmd(rdev, wdev,
9471 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
9472 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
9473 rdev->cur_cmd_info = NULL;
9478 static int nl80211_testmode_dump(struct sk_buff *skb,
9479 struct netlink_callback *cb)
9481 struct cfg80211_registered_device *rdev;
9491 * 0 is a valid index, but not valid for args[0],
9492 * so we need to offset by 1.
9494 phy_idx = cb->args[0] - 1;
9496 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
9502 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
9504 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
9505 attrbuf, nl80211_fam.maxattr,
9506 nl80211_policy, NULL);
9510 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
9512 err = PTR_ERR(rdev);
9515 phy_idx = rdev->wiphy_idx;
9517 if (attrbuf[NL80211_ATTR_TESTDATA])
9518 cb->args[1] = (long)attrbuf[NL80211_ATTR_TESTDATA];
9522 data = nla_data((void *)cb->args[1]);
9523 data_len = nla_len((void *)cb->args[1]);
9526 if (!rdev->ops->testmode_dump) {
9532 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
9533 cb->nlh->nlmsg_seq, NLM_F_MULTI,
9534 NL80211_CMD_TESTMODE);
9535 struct nlattr *tmdata;
9540 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
9541 genlmsg_cancel(skb, hdr);
9545 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
9547 genlmsg_cancel(skb, hdr);
9550 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
9551 nla_nest_end(skb, tmdata);
9553 if (err == -ENOBUFS || err == -ENOENT) {
9554 genlmsg_cancel(skb, hdr);
9557 genlmsg_cancel(skb, hdr);
9561 genlmsg_end(skb, hdr);
9566 cb->args[0] = phy_idx + 1;
9573 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
9575 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9576 struct net_device *dev = info->user_ptr[1];
9577 struct cfg80211_connect_params connect;
9578 struct wiphy *wiphy;
9579 struct cfg80211_cached_keys *connkeys = NULL;
9582 memset(&connect, 0, sizeof(connect));
9584 if (!info->attrs[NL80211_ATTR_SSID] ||
9585 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9588 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9590 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9591 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
9592 NL80211_CMD_CONNECT))
9595 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
9597 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
9599 if (info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS] &&
9600 !wiphy_ext_feature_isset(&rdev->wiphy,
9601 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
9603 connect.want_1x = info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS];
9605 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
9606 NL80211_MAX_NR_CIPHER_SUITES);
9610 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9611 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9614 wiphy = &rdev->wiphy;
9616 connect.bg_scan_period = -1;
9617 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
9618 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
9619 connect.bg_scan_period =
9620 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
9623 if (info->attrs[NL80211_ATTR_MAC])
9624 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9625 else if (info->attrs[NL80211_ATTR_MAC_HINT])
9626 connect.bssid_hint =
9627 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
9628 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9629 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9631 if (info->attrs[NL80211_ATTR_IE]) {
9632 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9633 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9636 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9637 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9638 if (connect.mfp == NL80211_MFP_OPTIONAL &&
9639 !wiphy_ext_feature_isset(&rdev->wiphy,
9640 NL80211_EXT_FEATURE_MFP_OPTIONAL))
9643 connect.mfp = NL80211_MFP_NO;
9646 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9647 connect.prev_bssid =
9648 nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9650 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
9651 connect.channel = nl80211_get_valid_chan(
9652 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9653 if (!connect.channel)
9655 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
9656 connect.channel_hint = nl80211_get_valid_chan(
9657 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
9658 if (!connect.channel_hint)
9662 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9663 connkeys = nl80211_parse_connkeys(rdev, info, NULL);
9664 if (IS_ERR(connkeys))
9665 return PTR_ERR(connkeys);
9668 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9669 connect.flags |= ASSOC_REQ_DISABLE_HT;
9671 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9672 memcpy(&connect.ht_capa_mask,
9673 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9674 sizeof(connect.ht_capa_mask));
9676 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9677 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
9681 memcpy(&connect.ht_capa,
9682 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9683 sizeof(connect.ht_capa));
9686 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9687 connect.flags |= ASSOC_REQ_DISABLE_VHT;
9689 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9690 memcpy(&connect.vht_capa_mask,
9691 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9692 sizeof(connect.vht_capa_mask));
9694 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9695 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
9699 memcpy(&connect.vht_capa,
9700 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9701 sizeof(connect.vht_capa));
9704 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9705 if (!((rdev->wiphy.features &
9706 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9707 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9708 !wiphy_ext_feature_isset(&rdev->wiphy,
9709 NL80211_EXT_FEATURE_RRM)) {
9713 connect.flags |= ASSOC_REQ_USE_RRM;
9716 connect.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
9717 if (connect.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ]) {
9722 if (info->attrs[NL80211_ATTR_BSS_SELECT]) {
9723 /* bss selection makes no sense if bssid is set */
9724 if (connect.bssid) {
9729 err = parse_bss_select(info->attrs[NL80211_ATTR_BSS_SELECT],
9730 wiphy, &connect.bss_select);
9737 if (wiphy_ext_feature_isset(&rdev->wiphy,
9738 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
9739 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9740 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9741 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9742 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9743 connect.fils_erp_username =
9744 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9745 connect.fils_erp_username_len =
9746 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9747 connect.fils_erp_realm =
9748 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9749 connect.fils_erp_realm_len =
9750 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9751 connect.fils_erp_next_seq_num =
9753 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9754 connect.fils_erp_rrk =
9755 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9756 connect.fils_erp_rrk_len =
9757 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9758 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9759 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9760 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9761 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9766 if (nla_get_flag(info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])) {
9767 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9769 GENL_SET_ERR_MSG(info,
9770 "external auth requires connection ownership");
9773 connect.flags |= CONNECT_REQ_EXTERNAL_AUTH_SUPPORT;
9776 wdev_lock(dev->ieee80211_ptr);
9778 err = cfg80211_connect(rdev, dev, &connect, connkeys,
9779 connect.prev_bssid);
9783 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9784 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9786 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9787 connect.bssid, ETH_ALEN);
9789 memset(dev->ieee80211_ptr->disconnect_bssid,
9793 wdev_unlock(dev->ieee80211_ptr);
9798 static int nl80211_update_connect_params(struct sk_buff *skb,
9799 struct genl_info *info)
9801 struct cfg80211_connect_params connect = {};
9802 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9803 struct net_device *dev = info->user_ptr[1];
9804 struct wireless_dev *wdev = dev->ieee80211_ptr;
9805 bool fils_sk_offload;
9810 if (!rdev->ops->update_connect_params)
9813 if (info->attrs[NL80211_ATTR_IE]) {
9814 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9815 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9816 changed |= UPDATE_ASSOC_IES;
9819 fils_sk_offload = wiphy_ext_feature_isset(&rdev->wiphy,
9820 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD);
9823 * when driver supports fils-sk offload all attributes must be
9824 * provided. So the else covers "fils-sk-not-all" and
9827 if (fils_sk_offload &&
9828 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9829 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9830 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9831 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9832 connect.fils_erp_username =
9833 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9834 connect.fils_erp_username_len =
9835 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9836 connect.fils_erp_realm =
9837 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9838 connect.fils_erp_realm_len =
9839 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9840 connect.fils_erp_next_seq_num =
9842 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9843 connect.fils_erp_rrk =
9844 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9845 connect.fils_erp_rrk_len =
9846 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9847 changed |= UPDATE_FILS_ERP_INFO;
9848 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9849 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9850 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9851 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9855 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9856 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9857 if (!nl80211_valid_auth_type(rdev, auth_type,
9858 NL80211_CMD_CONNECT))
9861 if (auth_type == NL80211_AUTHTYPE_FILS_SK &&
9862 fils_sk_offload && !(changed & UPDATE_FILS_ERP_INFO))
9865 connect.auth_type = auth_type;
9866 changed |= UPDATE_AUTH_TYPE;
9869 wdev_lock(dev->ieee80211_ptr);
9870 if (!wdev->current_bss)
9873 ret = rdev_update_connect_params(rdev, dev, &connect, changed);
9874 wdev_unlock(dev->ieee80211_ptr);
9879 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
9881 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9882 struct net_device *dev = info->user_ptr[1];
9886 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9887 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9890 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9891 reason = WLAN_REASON_DEAUTH_LEAVING;
9893 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9898 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9899 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9902 wdev_lock(dev->ieee80211_ptr);
9903 ret = cfg80211_disconnect(rdev, dev, reason, true);
9904 wdev_unlock(dev->ieee80211_ptr);
9908 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
9910 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9914 if (info->attrs[NL80211_ATTR_PID]) {
9915 u32 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
9917 net = get_net_ns_by_pid(pid);
9918 } else if (info->attrs[NL80211_ATTR_NETNS_FD]) {
9919 u32 fd = nla_get_u32(info->attrs[NL80211_ATTR_NETNS_FD]);
9921 net = get_net_ns_by_fd(fd);
9927 return PTR_ERR(net);
9931 /* check if anything to do */
9932 if (!net_eq(wiphy_net(&rdev->wiphy), net))
9933 err = cfg80211_switch_netns(rdev, net);
9939 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
9941 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9942 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
9943 struct cfg80211_pmksa *pmksa) = NULL;
9944 struct net_device *dev = info->user_ptr[1];
9945 struct cfg80211_pmksa pmksa;
9947 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
9949 if (!info->attrs[NL80211_ATTR_PMKID])
9952 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
9954 if (info->attrs[NL80211_ATTR_MAC]) {
9955 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9956 } else if (info->attrs[NL80211_ATTR_SSID] &&
9957 info->attrs[NL80211_ATTR_FILS_CACHE_ID] &&
9958 (info->genlhdr->cmd == NL80211_CMD_DEL_PMKSA ||
9959 info->attrs[NL80211_ATTR_PMK])) {
9960 pmksa.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9961 pmksa.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9963 nla_data(info->attrs[NL80211_ATTR_FILS_CACHE_ID]);
9967 if (info->attrs[NL80211_ATTR_PMK]) {
9968 pmksa.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
9969 pmksa.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
9972 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9973 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT &&
9974 !(dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP &&
9975 wiphy_ext_feature_isset(&rdev->wiphy,
9976 NL80211_EXT_FEATURE_AP_PMKSA_CACHING)))
9979 switch (info->genlhdr->cmd) {
9980 case NL80211_CMD_SET_PMKSA:
9981 rdev_ops = rdev->ops->set_pmksa;
9983 case NL80211_CMD_DEL_PMKSA:
9984 rdev_ops = rdev->ops->del_pmksa;
9994 return rdev_ops(&rdev->wiphy, dev, &pmksa);
9997 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
9999 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10000 struct net_device *dev = info->user_ptr[1];
10002 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10003 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
10004 return -EOPNOTSUPP;
10006 if (!rdev->ops->flush_pmksa)
10007 return -EOPNOTSUPP;
10009 return rdev_flush_pmksa(rdev, dev);
10012 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
10014 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10015 struct net_device *dev = info->user_ptr[1];
10016 u8 action_code, dialog_token;
10017 u32 peer_capability = 0;
10022 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10023 !rdev->ops->tdls_mgmt)
10024 return -EOPNOTSUPP;
10026 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
10027 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
10028 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
10029 !info->attrs[NL80211_ATTR_IE] ||
10030 !info->attrs[NL80211_ATTR_MAC])
10033 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10034 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
10035 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
10036 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
10037 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
10038 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
10040 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
10042 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
10043 dialog_token, status_code, peer_capability,
10045 nla_data(info->attrs[NL80211_ATTR_IE]),
10046 nla_len(info->attrs[NL80211_ATTR_IE]));
10049 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
10051 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10052 struct net_device *dev = info->user_ptr[1];
10053 enum nl80211_tdls_operation operation;
10056 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10057 !rdev->ops->tdls_oper)
10058 return -EOPNOTSUPP;
10060 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
10061 !info->attrs[NL80211_ATTR_MAC])
10064 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
10065 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10067 return rdev_tdls_oper(rdev, dev, peer, operation);
10070 static int nl80211_remain_on_channel(struct sk_buff *skb,
10071 struct genl_info *info)
10073 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10074 struct wireless_dev *wdev = info->user_ptr[1];
10075 struct cfg80211_chan_def chandef;
10076 const struct cfg80211_chan_def *compat_chandef;
10077 struct sk_buff *msg;
10083 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
10084 !info->attrs[NL80211_ATTR_DURATION])
10087 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10089 if (!rdev->ops->remain_on_channel ||
10090 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
10091 return -EOPNOTSUPP;
10094 * We should be on that channel for at least a minimum amount of
10095 * time (10ms) but no longer than the driver supports.
10097 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10098 duration > rdev->wiphy.max_remain_on_channel_duration)
10101 err = nl80211_parse_chandef(rdev, info, &chandef);
10106 if (!cfg80211_off_channel_oper_allowed(wdev) &&
10107 !cfg80211_chandef_identical(&wdev->chandef, &chandef)) {
10108 compat_chandef = cfg80211_chandef_compatible(&wdev->chandef,
10110 if (compat_chandef != &chandef) {
10117 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10121 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10122 NL80211_CMD_REMAIN_ON_CHANNEL);
10128 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
10129 duration, &cookie);
10134 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10136 goto nla_put_failure;
10138 genlmsg_end(msg, hdr);
10140 return genlmsg_reply(msg, info);
10149 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
10150 struct genl_info *info)
10152 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10153 struct wireless_dev *wdev = info->user_ptr[1];
10156 if (!info->attrs[NL80211_ATTR_COOKIE])
10159 if (!rdev->ops->cancel_remain_on_channel)
10160 return -EOPNOTSUPP;
10162 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10164 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
10167 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
10168 struct genl_info *info)
10170 struct cfg80211_bitrate_mask mask;
10171 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10172 struct net_device *dev = info->user_ptr[1];
10175 if (!rdev->ops->set_bitrate_mask)
10176 return -EOPNOTSUPP;
10178 err = nl80211_parse_tx_bitrate_mask(info, &mask);
10182 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
10185 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
10187 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10188 struct wireless_dev *wdev = info->user_ptr[1];
10189 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
10191 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
10194 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
10195 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
10197 switch (wdev->iftype) {
10198 case NL80211_IFTYPE_STATION:
10199 case NL80211_IFTYPE_ADHOC:
10200 case NL80211_IFTYPE_P2P_CLIENT:
10201 case NL80211_IFTYPE_AP:
10202 case NL80211_IFTYPE_AP_VLAN:
10203 case NL80211_IFTYPE_MESH_POINT:
10204 case NL80211_IFTYPE_P2P_GO:
10205 case NL80211_IFTYPE_P2P_DEVICE:
10207 case NL80211_IFTYPE_NAN:
10209 return -EOPNOTSUPP;
10212 /* not much point in registering if we can't reply */
10213 if (!rdev->ops->mgmt_tx)
10214 return -EOPNOTSUPP;
10216 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
10217 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
10218 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
10221 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
10223 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10224 struct wireless_dev *wdev = info->user_ptr[1];
10225 struct cfg80211_chan_def chandef;
10229 struct sk_buff *msg = NULL;
10230 struct cfg80211_mgmt_tx_params params = {
10231 .dont_wait_for_ack =
10232 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
10235 if (!info->attrs[NL80211_ATTR_FRAME])
10238 if (!rdev->ops->mgmt_tx)
10239 return -EOPNOTSUPP;
10241 switch (wdev->iftype) {
10242 case NL80211_IFTYPE_P2P_DEVICE:
10243 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
10245 case NL80211_IFTYPE_STATION:
10246 case NL80211_IFTYPE_ADHOC:
10247 case NL80211_IFTYPE_P2P_CLIENT:
10248 case NL80211_IFTYPE_AP:
10249 case NL80211_IFTYPE_AP_VLAN:
10250 case NL80211_IFTYPE_MESH_POINT:
10251 case NL80211_IFTYPE_P2P_GO:
10253 case NL80211_IFTYPE_NAN:
10255 return -EOPNOTSUPP;
10258 if (info->attrs[NL80211_ATTR_DURATION]) {
10259 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10261 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10264 * We should wait on the channel for at least a minimum amount
10265 * of time (10ms) but no longer than the driver supports.
10267 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10268 params.wait > rdev->wiphy.max_remain_on_channel_duration)
10272 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
10274 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10277 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
10279 /* get the channel if any has been specified, otherwise pass NULL to
10280 * the driver. The latter will use the current one
10282 chandef.chan = NULL;
10283 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10284 err = nl80211_parse_chandef(rdev, info, &chandef);
10289 if (!chandef.chan && params.offchan)
10293 if (params.offchan && !cfg80211_off_channel_oper_allowed(wdev)) {
10299 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
10300 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
10302 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
10303 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10306 if (len % sizeof(u16))
10309 params.n_csa_offsets = len / sizeof(u16);
10310 params.csa_offsets =
10311 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10313 /* check that all the offsets fit the frame */
10314 for (i = 0; i < params.n_csa_offsets; i++) {
10315 if (params.csa_offsets[i] >= params.len)
10320 if (!params.dont_wait_for_ack) {
10321 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10325 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10326 NL80211_CMD_FRAME);
10333 params.chan = chandef.chan;
10334 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
10339 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10341 goto nla_put_failure;
10343 genlmsg_end(msg, hdr);
10344 return genlmsg_reply(msg, info);
10356 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
10358 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10359 struct wireless_dev *wdev = info->user_ptr[1];
10362 if (!info->attrs[NL80211_ATTR_COOKIE])
10365 if (!rdev->ops->mgmt_tx_cancel_wait)
10366 return -EOPNOTSUPP;
10368 switch (wdev->iftype) {
10369 case NL80211_IFTYPE_STATION:
10370 case NL80211_IFTYPE_ADHOC:
10371 case NL80211_IFTYPE_P2P_CLIENT:
10372 case NL80211_IFTYPE_AP:
10373 case NL80211_IFTYPE_AP_VLAN:
10374 case NL80211_IFTYPE_P2P_GO:
10375 case NL80211_IFTYPE_P2P_DEVICE:
10377 case NL80211_IFTYPE_NAN:
10379 return -EOPNOTSUPP;
10382 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10384 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
10387 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
10389 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10390 struct wireless_dev *wdev;
10391 struct net_device *dev = info->user_ptr[1];
10396 if (!info->attrs[NL80211_ATTR_PS_STATE])
10399 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
10401 wdev = dev->ieee80211_ptr;
10403 if (!rdev->ops->set_power_mgmt)
10404 return -EOPNOTSUPP;
10406 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
10408 if (state == wdev->ps)
10411 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
10417 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
10419 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10420 enum nl80211_ps_state ps_state;
10421 struct wireless_dev *wdev;
10422 struct net_device *dev = info->user_ptr[1];
10423 struct sk_buff *msg;
10427 wdev = dev->ieee80211_ptr;
10429 if (!rdev->ops->set_power_mgmt)
10430 return -EOPNOTSUPP;
10432 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10436 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10437 NL80211_CMD_GET_POWER_SAVE);
10444 ps_state = NL80211_PS_ENABLED;
10446 ps_state = NL80211_PS_DISABLED;
10448 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
10449 goto nla_put_failure;
10451 genlmsg_end(msg, hdr);
10452 return genlmsg_reply(msg, info);
10461 static const struct nla_policy
10462 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
10463 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_BINARY },
10464 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
10465 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
10466 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
10467 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
10468 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
10469 [NL80211_ATTR_CQM_RSSI_LEVEL] = { .type = NLA_S32 },
10472 static int nl80211_set_cqm_txe(struct genl_info *info,
10473 u32 rate, u32 pkts, u32 intvl)
10475 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10476 struct net_device *dev = info->user_ptr[1];
10477 struct wireless_dev *wdev = dev->ieee80211_ptr;
10479 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
10482 if (!rdev->ops->set_cqm_txe_config)
10483 return -EOPNOTSUPP;
10485 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10486 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10487 return -EOPNOTSUPP;
10489 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
10492 static int cfg80211_cqm_rssi_update(struct cfg80211_registered_device *rdev,
10493 struct net_device *dev)
10495 struct wireless_dev *wdev = dev->ieee80211_ptr;
10496 s32 last, low, high;
10498 int i, n, low_index;
10501 /* RSSI reporting disabled? */
10502 if (!wdev->cqm_config)
10503 return rdev_set_cqm_rssi_range_config(rdev, dev, 0, 0);
10506 * Obtain current RSSI value if possible, if not and no RSSI threshold
10507 * event has been received yet, we should receive an event after a
10508 * connection is established and enough beacons received to calculate
10511 if (!wdev->cqm_config->last_rssi_event_value && wdev->current_bss &&
10512 rdev->ops->get_station) {
10513 struct station_info sinfo = {};
10516 mac_addr = wdev->current_bss->pub.bssid;
10518 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
10522 if (sinfo.filled & BIT_ULL(NL80211_STA_INFO_BEACON_SIGNAL_AVG))
10523 wdev->cqm_config->last_rssi_event_value =
10524 (s8) sinfo.rx_beacon_signal_avg;
10527 last = wdev->cqm_config->last_rssi_event_value;
10528 hyst = wdev->cqm_config->rssi_hyst;
10529 n = wdev->cqm_config->n_rssi_thresholds;
10531 for (i = 0; i < n; i++)
10532 if (last < wdev->cqm_config->rssi_thresholds[i])
10536 if (low_index >= 0) {
10537 low_index = array_index_nospec(low_index, n);
10538 low = wdev->cqm_config->rssi_thresholds[low_index] - hyst;
10543 i = array_index_nospec(i, n);
10544 high = wdev->cqm_config->rssi_thresholds[i] + hyst - 1;
10549 return rdev_set_cqm_rssi_range_config(rdev, dev, low, high);
10552 static int nl80211_set_cqm_rssi(struct genl_info *info,
10553 const s32 *thresholds, int n_thresholds,
10556 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10557 struct net_device *dev = info->user_ptr[1];
10558 struct wireless_dev *wdev = dev->ieee80211_ptr;
10560 s32 prev = S32_MIN;
10562 /* Check all values negative and sorted */
10563 for (i = 0; i < n_thresholds; i++) {
10564 if (thresholds[i] > 0 || thresholds[i] <= prev)
10567 prev = thresholds[i];
10570 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10571 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10572 return -EOPNOTSUPP;
10575 cfg80211_cqm_config_free(wdev);
10578 if (n_thresholds <= 1 && rdev->ops->set_cqm_rssi_config) {
10579 if (n_thresholds == 0 || thresholds[0] == 0) /* Disabling */
10580 return rdev_set_cqm_rssi_config(rdev, dev, 0, 0);
10582 return rdev_set_cqm_rssi_config(rdev, dev,
10583 thresholds[0], hysteresis);
10586 if (!wiphy_ext_feature_isset(&rdev->wiphy,
10587 NL80211_EXT_FEATURE_CQM_RSSI_LIST))
10588 return -EOPNOTSUPP;
10590 if (n_thresholds == 1 && thresholds[0] == 0) /* Disabling */
10594 if (n_thresholds) {
10595 struct cfg80211_cqm_config *cqm_config;
10597 cqm_config = kzalloc(sizeof(struct cfg80211_cqm_config) +
10598 n_thresholds * sizeof(s32), GFP_KERNEL);
10604 cqm_config->rssi_hyst = hysteresis;
10605 cqm_config->n_rssi_thresholds = n_thresholds;
10606 memcpy(cqm_config->rssi_thresholds, thresholds,
10607 n_thresholds * sizeof(s32));
10609 wdev->cqm_config = cqm_config;
10612 err = cfg80211_cqm_rssi_update(rdev, dev);
10620 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
10622 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
10623 struct nlattr *cqm;
10626 cqm = info->attrs[NL80211_ATTR_CQM];
10630 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
10631 nl80211_attr_cqm_policy, info->extack);
10635 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
10636 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
10637 const s32 *thresholds =
10638 nla_data(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10639 int len = nla_len(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10640 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
10645 return nl80211_set_cqm_rssi(info, thresholds, len / 4,
10649 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
10650 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
10651 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
10652 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
10653 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
10654 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
10656 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
10662 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
10664 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10665 struct net_device *dev = info->user_ptr[1];
10666 struct ocb_setup setup = {};
10669 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10673 return cfg80211_join_ocb(rdev, dev, &setup);
10676 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
10678 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10679 struct net_device *dev = info->user_ptr[1];
10681 return cfg80211_leave_ocb(rdev, dev);
10684 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
10686 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10687 struct net_device *dev = info->user_ptr[1];
10688 struct mesh_config cfg;
10689 struct mesh_setup setup;
10692 /* start with default */
10693 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
10694 memcpy(&setup, &default_mesh_setup, sizeof(setup));
10696 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
10697 /* and parse parameters if given */
10698 err = nl80211_parse_mesh_config(info, &cfg, NULL);
10703 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
10704 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
10707 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
10708 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
10710 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
10711 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
10712 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
10715 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
10716 setup.beacon_interval =
10717 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
10719 err = cfg80211_validate_beacon_int(rdev,
10720 NL80211_IFTYPE_MESH_POINT,
10721 setup.beacon_interval);
10726 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
10727 setup.dtim_period =
10728 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
10729 if (setup.dtim_period < 1 || setup.dtim_period > 100)
10733 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
10734 /* parse additional setup parameters if given */
10735 err = nl80211_parse_mesh_setup(info, &setup);
10740 if (setup.user_mpm)
10741 cfg.auto_open_plinks = false;
10743 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10744 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10748 /* __cfg80211_join_mesh() will sort it out */
10749 setup.chandef.chan = NULL;
10752 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
10753 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10755 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10756 struct ieee80211_supported_band *sband;
10758 if (!setup.chandef.chan)
10761 sband = rdev->wiphy.bands[setup.chandef.chan->band];
10763 err = ieee80211_get_ratemask(sband, rates, n_rates,
10764 &setup.basic_rates);
10769 if (info->attrs[NL80211_ATTR_TX_RATES]) {
10770 err = nl80211_parse_tx_bitrate_mask(info, &setup.beacon_rate);
10774 if (!setup.chandef.chan)
10777 err = validate_beacon_tx_rate(rdev, setup.chandef.chan->band,
10778 &setup.beacon_rate);
10783 setup.userspace_handles_dfs =
10784 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
10786 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
10787 int r = validate_pae_over_nl80211(rdev, info);
10792 setup.control_port_over_nl80211 = true;
10795 wdev_lock(dev->ieee80211_ptr);
10796 err = __cfg80211_join_mesh(rdev, dev, &setup, &cfg);
10797 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER])
10798 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
10799 wdev_unlock(dev->ieee80211_ptr);
10804 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
10806 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10807 struct net_device *dev = info->user_ptr[1];
10809 return cfg80211_leave_mesh(rdev, dev);
10813 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
10814 struct cfg80211_registered_device *rdev)
10816 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
10817 struct nlattr *nl_pats, *nl_pat;
10820 if (!wowlan->n_patterns)
10823 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
10827 for (i = 0; i < wowlan->n_patterns; i++) {
10828 nl_pat = nla_nest_start(msg, i + 1);
10831 pat_len = wowlan->patterns[i].pattern_len;
10832 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
10833 wowlan->patterns[i].mask) ||
10834 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
10835 wowlan->patterns[i].pattern) ||
10836 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
10837 wowlan->patterns[i].pkt_offset))
10839 nla_nest_end(msg, nl_pat);
10841 nla_nest_end(msg, nl_pats);
10846 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
10847 struct cfg80211_wowlan_tcp *tcp)
10849 struct nlattr *nl_tcp;
10854 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
10858 if (nla_put_in_addr(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
10859 nla_put_in_addr(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
10860 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
10861 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
10862 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
10863 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
10864 tcp->payload_len, tcp->payload) ||
10865 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
10866 tcp->data_interval) ||
10867 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
10868 tcp->wake_len, tcp->wake_data) ||
10869 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
10870 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
10873 if (tcp->payload_seq.len &&
10874 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
10875 sizeof(tcp->payload_seq), &tcp->payload_seq))
10878 if (tcp->payload_tok.len &&
10879 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
10880 sizeof(tcp->payload_tok) + tcp->tokens_size,
10881 &tcp->payload_tok))
10884 nla_nest_end(msg, nl_tcp);
10889 static int nl80211_send_wowlan_nd(struct sk_buff *msg,
10890 struct cfg80211_sched_scan_request *req)
10892 struct nlattr *nd, *freqs, *matches, *match, *scan_plans, *scan_plan;
10898 nd = nla_nest_start(msg, NL80211_WOWLAN_TRIG_NET_DETECT);
10902 if (req->n_scan_plans == 1 &&
10903 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL,
10904 req->scan_plans[0].interval * 1000))
10907 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_DELAY, req->delay))
10910 if (req->relative_rssi_set) {
10911 struct nl80211_bss_select_rssi_adjust rssi_adjust;
10913 if (nla_put_s8(msg, NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI,
10914 req->relative_rssi))
10917 rssi_adjust.band = req->rssi_adjust.band;
10918 rssi_adjust.delta = req->rssi_adjust.delta;
10919 if (nla_put(msg, NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST,
10920 sizeof(rssi_adjust), &rssi_adjust))
10924 freqs = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
10928 for (i = 0; i < req->n_channels; i++) {
10929 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
10933 nla_nest_end(msg, freqs);
10935 if (req->n_match_sets) {
10936 matches = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_MATCH);
10940 for (i = 0; i < req->n_match_sets; i++) {
10941 match = nla_nest_start(msg, i);
10945 if (nla_put(msg, NL80211_SCHED_SCAN_MATCH_ATTR_SSID,
10946 req->match_sets[i].ssid.ssid_len,
10947 req->match_sets[i].ssid.ssid))
10949 nla_nest_end(msg, match);
10951 nla_nest_end(msg, matches);
10954 scan_plans = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_PLANS);
10958 for (i = 0; i < req->n_scan_plans; i++) {
10959 scan_plan = nla_nest_start(msg, i + 1);
10963 if (nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_INTERVAL,
10964 req->scan_plans[i].interval) ||
10965 (req->scan_plans[i].iterations &&
10966 nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_ITERATIONS,
10967 req->scan_plans[i].iterations)))
10969 nla_nest_end(msg, scan_plan);
10971 nla_nest_end(msg, scan_plans);
10973 nla_nest_end(msg, nd);
10978 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
10980 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10981 struct sk_buff *msg;
10983 u32 size = NLMSG_DEFAULT_SIZE;
10985 if (!rdev->wiphy.wowlan)
10986 return -EOPNOTSUPP;
10988 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
10989 /* adjust size to have room for all the data */
10990 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
10991 rdev->wiphy.wowlan_config->tcp->payload_len +
10992 rdev->wiphy.wowlan_config->tcp->wake_len +
10993 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
10996 msg = nlmsg_new(size, GFP_KERNEL);
11000 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11001 NL80211_CMD_GET_WOWLAN);
11003 goto nla_put_failure;
11005 if (rdev->wiphy.wowlan_config) {
11006 struct nlattr *nl_wowlan;
11008 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
11010 goto nla_put_failure;
11012 if ((rdev->wiphy.wowlan_config->any &&
11013 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
11014 (rdev->wiphy.wowlan_config->disconnect &&
11015 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
11016 (rdev->wiphy.wowlan_config->magic_pkt &&
11017 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
11018 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
11019 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
11020 (rdev->wiphy.wowlan_config->eap_identity_req &&
11021 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
11022 (rdev->wiphy.wowlan_config->four_way_handshake &&
11023 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
11024 (rdev->wiphy.wowlan_config->rfkill_release &&
11025 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
11026 goto nla_put_failure;
11028 if (nl80211_send_wowlan_patterns(msg, rdev))
11029 goto nla_put_failure;
11031 if (nl80211_send_wowlan_tcp(msg,
11032 rdev->wiphy.wowlan_config->tcp))
11033 goto nla_put_failure;
11035 if (nl80211_send_wowlan_nd(
11037 rdev->wiphy.wowlan_config->nd_config))
11038 goto nla_put_failure;
11040 nla_nest_end(msg, nl_wowlan);
11043 genlmsg_end(msg, hdr);
11044 return genlmsg_reply(msg, info);
11051 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
11052 struct nlattr *attr,
11053 struct cfg80211_wowlan *trig)
11055 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
11056 struct cfg80211_wowlan_tcp *cfg;
11057 struct nl80211_wowlan_tcp_data_token *tok = NULL;
11058 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
11060 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
11063 if (!rdev->wiphy.wowlan->tcp)
11066 err = nla_parse_nested(tb, MAX_NL80211_WOWLAN_TCP, attr,
11067 nl80211_wowlan_tcp_policy, NULL);
11071 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
11072 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
11073 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
11074 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
11075 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
11076 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
11077 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
11078 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
11081 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
11082 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
11085 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
11086 rdev->wiphy.wowlan->tcp->data_interval_max ||
11087 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
11090 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
11091 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
11094 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
11095 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
11098 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
11099 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11101 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11102 tokens_size = tokln - sizeof(*tok);
11104 if (!tok->len || tokens_size % tok->len)
11106 if (!rdev->wiphy.wowlan->tcp->tok)
11108 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
11110 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
11112 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
11114 if (tok->offset + tok->len > data_size)
11118 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
11119 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
11120 if (!rdev->wiphy.wowlan->tcp->seq)
11122 if (seq->len == 0 || seq->len > 4)
11124 if (seq->len + seq->offset > data_size)
11128 size = sizeof(*cfg);
11130 size += wake_size + wake_mask_size;
11131 size += tokens_size;
11133 cfg = kzalloc(size, GFP_KERNEL);
11136 cfg->src = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
11137 cfg->dst = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
11138 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
11140 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
11141 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
11145 /* allocate a socket and port for it and use it */
11146 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
11147 IPPROTO_TCP, &cfg->sock, 1);
11152 if (inet_csk_get_port(cfg->sock->sk, port)) {
11153 sock_release(cfg->sock);
11155 return -EADDRINUSE;
11157 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
11163 cfg->src_port = port;
11166 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
11167 cfg->payload_len = data_size;
11168 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
11169 memcpy((void *)cfg->payload,
11170 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
11173 cfg->payload_seq = *seq;
11174 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
11175 cfg->wake_len = wake_size;
11176 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
11177 memcpy((void *)cfg->wake_data,
11178 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
11180 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
11181 data_size + wake_size;
11182 memcpy((void *)cfg->wake_mask,
11183 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
11186 cfg->tokens_size = tokens_size;
11187 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
11195 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
11196 const struct wiphy_wowlan_support *wowlan,
11197 struct nlattr *attr,
11198 struct cfg80211_wowlan *trig)
11200 struct nlattr **tb;
11203 tb = kcalloc(NUM_NL80211_ATTR, sizeof(*tb), GFP_KERNEL);
11207 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
11212 err = nla_parse_nested(tb, NL80211_ATTR_MAX, attr, nl80211_policy,
11217 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb,
11218 wowlan->max_nd_match_sets);
11219 err = PTR_ERR_OR_ZERO(trig->nd_config);
11221 trig->nd_config = NULL;
11228 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
11230 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11231 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
11232 struct cfg80211_wowlan new_triggers = {};
11233 struct cfg80211_wowlan *ntrig;
11234 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
11236 bool prev_enabled = rdev->wiphy.wowlan_config;
11237 bool regular = false;
11240 return -EOPNOTSUPP;
11242 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
11243 cfg80211_rdev_free_wowlan(rdev);
11244 rdev->wiphy.wowlan_config = NULL;
11248 err = nla_parse_nested(tb, MAX_NL80211_WOWLAN_TRIG,
11249 info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS],
11250 nl80211_wowlan_policy, info->extack);
11254 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
11255 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
11257 new_triggers.any = true;
11260 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
11261 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
11263 new_triggers.disconnect = true;
11267 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
11268 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
11270 new_triggers.magic_pkt = true;
11274 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
11277 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
11278 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
11280 new_triggers.gtk_rekey_failure = true;
11284 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
11285 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
11287 new_triggers.eap_identity_req = true;
11291 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
11292 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
11294 new_triggers.four_way_handshake = true;
11298 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
11299 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
11301 new_triggers.rfkill_release = true;
11305 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
11306 struct nlattr *pat;
11307 int n_patterns = 0;
11308 int rem, pat_len, mask_len, pkt_offset;
11309 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11313 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11316 if (n_patterns > wowlan->n_patterns)
11319 new_triggers.patterns = kcalloc(n_patterns,
11320 sizeof(new_triggers.patterns[0]),
11322 if (!new_triggers.patterns)
11325 new_triggers.n_patterns = n_patterns;
11328 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11332 err = nla_parse_nested(pat_tb, MAX_NL80211_PKTPAT, pat,
11333 nl80211_packet_pattern_policy,
11339 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11340 !pat_tb[NL80211_PKTPAT_PATTERN])
11342 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11343 mask_len = DIV_ROUND_UP(pat_len, 8);
11344 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11346 if (pat_len > wowlan->pattern_max_len ||
11347 pat_len < wowlan->pattern_min_len)
11350 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11353 pkt_offset = nla_get_u32(
11354 pat_tb[NL80211_PKTPAT_OFFSET]);
11355 if (pkt_offset > wowlan->max_pkt_offset)
11357 new_triggers.patterns[i].pkt_offset = pkt_offset;
11359 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11364 new_triggers.patterns[i].mask = mask_pat;
11365 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11367 mask_pat += mask_len;
11368 new_triggers.patterns[i].pattern = mask_pat;
11369 new_triggers.patterns[i].pattern_len = pat_len;
11371 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11377 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
11379 err = nl80211_parse_wowlan_tcp(
11380 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
11386 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
11388 err = nl80211_parse_wowlan_nd(
11389 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
11395 /* The 'any' trigger means the device continues operating more or less
11396 * as in its normal operation mode and wakes up the host on most of the
11397 * normal interrupts (like packet RX, ...)
11398 * It therefore makes little sense to combine with the more constrained
11399 * wakeup trigger modes.
11401 if (new_triggers.any && regular) {
11406 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
11411 cfg80211_rdev_free_wowlan(rdev);
11412 rdev->wiphy.wowlan_config = ntrig;
11415 if (rdev->ops->set_wakeup &&
11416 prev_enabled != !!rdev->wiphy.wowlan_config)
11417 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
11421 for (i = 0; i < new_triggers.n_patterns; i++)
11422 kfree(new_triggers.patterns[i].mask);
11423 kfree(new_triggers.patterns);
11424 if (new_triggers.tcp && new_triggers.tcp->sock)
11425 sock_release(new_triggers.tcp->sock);
11426 kfree(new_triggers.tcp);
11427 kfree(new_triggers.nd_config);
11432 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
11433 struct cfg80211_registered_device *rdev)
11435 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
11437 struct cfg80211_coalesce_rules *rule;
11439 if (!rdev->coalesce->n_rules)
11442 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
11446 for (i = 0; i < rdev->coalesce->n_rules; i++) {
11447 nl_rule = nla_nest_start(msg, i + 1);
11451 rule = &rdev->coalesce->rules[i];
11452 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
11456 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
11460 nl_pats = nla_nest_start(msg,
11461 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
11465 for (j = 0; j < rule->n_patterns; j++) {
11466 nl_pat = nla_nest_start(msg, j + 1);
11469 pat_len = rule->patterns[j].pattern_len;
11470 if (nla_put(msg, NL80211_PKTPAT_MASK,
11471 DIV_ROUND_UP(pat_len, 8),
11472 rule->patterns[j].mask) ||
11473 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
11474 rule->patterns[j].pattern) ||
11475 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
11476 rule->patterns[j].pkt_offset))
11478 nla_nest_end(msg, nl_pat);
11480 nla_nest_end(msg, nl_pats);
11481 nla_nest_end(msg, nl_rule);
11483 nla_nest_end(msg, nl_rules);
11488 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
11490 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11491 struct sk_buff *msg;
11494 if (!rdev->wiphy.coalesce)
11495 return -EOPNOTSUPP;
11497 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11501 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11502 NL80211_CMD_GET_COALESCE);
11504 goto nla_put_failure;
11506 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
11507 goto nla_put_failure;
11509 genlmsg_end(msg, hdr);
11510 return genlmsg_reply(msg, info);
11517 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
11519 struct cfg80211_coalesce *coalesce = rdev->coalesce;
11521 struct cfg80211_coalesce_rules *rule;
11526 for (i = 0; i < coalesce->n_rules; i++) {
11527 rule = &coalesce->rules[i];
11528 for (j = 0; j < rule->n_patterns; j++)
11529 kfree(rule->patterns[j].mask);
11530 kfree(rule->patterns);
11532 kfree(coalesce->rules);
11534 rdev->coalesce = NULL;
11537 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
11538 struct nlattr *rule,
11539 struct cfg80211_coalesce_rules *new_rule)
11542 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11543 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
11544 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
11545 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11547 err = nla_parse_nested(tb, NL80211_ATTR_COALESCE_RULE_MAX, rule,
11548 nl80211_coalesce_policy, NULL);
11552 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
11554 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
11555 if (new_rule->delay > coalesce->max_delay)
11558 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
11559 new_rule->condition =
11560 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
11562 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
11565 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11568 if (n_patterns > coalesce->n_patterns)
11571 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
11573 if (!new_rule->patterns)
11576 new_rule->n_patterns = n_patterns;
11579 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11583 err = nla_parse_nested(pat_tb, MAX_NL80211_PKTPAT, pat,
11584 nl80211_packet_pattern_policy, NULL);
11588 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11589 !pat_tb[NL80211_PKTPAT_PATTERN])
11591 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11592 mask_len = DIV_ROUND_UP(pat_len, 8);
11593 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11595 if (pat_len > coalesce->pattern_max_len ||
11596 pat_len < coalesce->pattern_min_len)
11599 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11602 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
11603 if (pkt_offset > coalesce->max_pkt_offset)
11605 new_rule->patterns[i].pkt_offset = pkt_offset;
11607 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11611 new_rule->patterns[i].mask = mask_pat;
11612 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11615 mask_pat += mask_len;
11616 new_rule->patterns[i].pattern = mask_pat;
11617 new_rule->patterns[i].pattern_len = pat_len;
11618 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11626 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
11628 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11629 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11630 struct cfg80211_coalesce new_coalesce = {};
11631 struct cfg80211_coalesce *n_coalesce;
11632 int err, rem_rule, n_rules = 0, i, j;
11633 struct nlattr *rule;
11634 struct cfg80211_coalesce_rules *tmp_rule;
11636 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
11637 return -EOPNOTSUPP;
11639 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
11640 cfg80211_rdev_free_coalesce(rdev);
11641 rdev_set_coalesce(rdev, NULL);
11645 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11648 if (n_rules > coalesce->n_rules)
11651 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
11653 if (!new_coalesce.rules)
11656 new_coalesce.n_rules = n_rules;
11659 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11661 err = nl80211_parse_coalesce_rule(rdev, rule,
11662 &new_coalesce.rules[i]);
11669 err = rdev_set_coalesce(rdev, &new_coalesce);
11673 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
11678 cfg80211_rdev_free_coalesce(rdev);
11679 rdev->coalesce = n_coalesce;
11683 for (i = 0; i < new_coalesce.n_rules; i++) {
11684 tmp_rule = &new_coalesce.rules[i];
11685 for (j = 0; j < tmp_rule->n_patterns; j++)
11686 kfree(tmp_rule->patterns[j].mask);
11687 kfree(tmp_rule->patterns);
11689 kfree(new_coalesce.rules);
11694 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
11696 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11697 struct net_device *dev = info->user_ptr[1];
11698 struct wireless_dev *wdev = dev->ieee80211_ptr;
11699 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
11700 struct cfg80211_gtk_rekey_data rekey_data;
11703 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
11706 err = nla_parse_nested(tb, MAX_NL80211_REKEY_DATA,
11707 info->attrs[NL80211_ATTR_REKEY_DATA],
11708 nl80211_rekey_policy, info->extack);
11712 if (!tb[NL80211_REKEY_DATA_REPLAY_CTR] || !tb[NL80211_REKEY_DATA_KEK] ||
11713 !tb[NL80211_REKEY_DATA_KCK])
11715 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
11717 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
11719 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
11722 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
11723 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
11724 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
11727 if (!wdev->current_bss) {
11732 if (!rdev->ops->set_rekey_data) {
11737 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
11743 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
11744 struct genl_info *info)
11746 struct net_device *dev = info->user_ptr[1];
11747 struct wireless_dev *wdev = dev->ieee80211_ptr;
11749 if (wdev->iftype != NL80211_IFTYPE_AP &&
11750 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11753 if (wdev->ap_unexpected_nlportid)
11756 wdev->ap_unexpected_nlportid = info->snd_portid;
11760 static int nl80211_probe_client(struct sk_buff *skb,
11761 struct genl_info *info)
11763 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11764 struct net_device *dev = info->user_ptr[1];
11765 struct wireless_dev *wdev = dev->ieee80211_ptr;
11766 struct sk_buff *msg;
11772 if (wdev->iftype != NL80211_IFTYPE_AP &&
11773 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11774 return -EOPNOTSUPP;
11776 if (!info->attrs[NL80211_ATTR_MAC])
11779 if (!rdev->ops->probe_client)
11780 return -EOPNOTSUPP;
11782 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11786 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11787 NL80211_CMD_PROBE_CLIENT);
11793 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
11795 err = rdev_probe_client(rdev, dev, addr, &cookie);
11799 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
11801 goto nla_put_failure;
11803 genlmsg_end(msg, hdr);
11805 return genlmsg_reply(msg, info);
11814 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
11816 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11817 struct cfg80211_beacon_registration *reg, *nreg;
11820 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
11821 return -EOPNOTSUPP;
11823 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
11827 /* First, check if already registered. */
11828 spin_lock_bh(&rdev->beacon_registrations_lock);
11829 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11830 if (reg->nlportid == info->snd_portid) {
11835 /* Add it to the list */
11836 nreg->nlportid = info->snd_portid;
11837 list_add(&nreg->list, &rdev->beacon_registrations);
11839 spin_unlock_bh(&rdev->beacon_registrations_lock);
11843 spin_unlock_bh(&rdev->beacon_registrations_lock);
11848 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
11850 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11851 struct wireless_dev *wdev = info->user_ptr[1];
11854 if (!rdev->ops->start_p2p_device)
11855 return -EOPNOTSUPP;
11857 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11858 return -EOPNOTSUPP;
11860 if (wdev_running(wdev))
11863 if (rfkill_blocked(rdev->rfkill))
11866 err = rdev_start_p2p_device(rdev, wdev);
11870 wdev->is_running = true;
11876 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
11878 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11879 struct wireless_dev *wdev = info->user_ptr[1];
11881 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11882 return -EOPNOTSUPP;
11884 if (!rdev->ops->stop_p2p_device)
11885 return -EOPNOTSUPP;
11887 cfg80211_stop_p2p_device(rdev, wdev);
11892 static int nl80211_start_nan(struct sk_buff *skb, struct genl_info *info)
11894 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11895 struct wireless_dev *wdev = info->user_ptr[1];
11896 struct cfg80211_nan_conf conf = {};
11899 if (wdev->iftype != NL80211_IFTYPE_NAN)
11900 return -EOPNOTSUPP;
11902 if (wdev_running(wdev))
11905 if (rfkill_blocked(rdev->rfkill))
11908 if (!info->attrs[NL80211_ATTR_NAN_MASTER_PREF])
11912 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
11914 if (info->attrs[NL80211_ATTR_BANDS]) {
11915 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
11917 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
11918 return -EOPNOTSUPP;
11920 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
11923 conf.bands = bands;
11926 err = rdev_start_nan(rdev, wdev, &conf);
11930 wdev->is_running = true;
11936 static int nl80211_stop_nan(struct sk_buff *skb, struct genl_info *info)
11938 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11939 struct wireless_dev *wdev = info->user_ptr[1];
11941 if (wdev->iftype != NL80211_IFTYPE_NAN)
11942 return -EOPNOTSUPP;
11944 cfg80211_stop_nan(rdev, wdev);
11949 static int validate_nan_filter(struct nlattr *filter_attr)
11951 struct nlattr *attr;
11952 int len = 0, n_entries = 0, rem;
11954 nla_for_each_nested(attr, filter_attr, rem) {
11955 len += nla_len(attr);
11965 static int handle_nan_filter(struct nlattr *attr_filter,
11966 struct cfg80211_nan_func *func,
11969 struct nlattr *attr;
11970 int n_entries, rem, i;
11971 struct cfg80211_nan_func_filter *filter;
11973 n_entries = validate_nan_filter(attr_filter);
11977 BUILD_BUG_ON(sizeof(*func->rx_filters) != sizeof(*func->tx_filters));
11979 filter = kcalloc(n_entries, sizeof(*func->rx_filters), GFP_KERNEL);
11984 nla_for_each_nested(attr, attr_filter, rem) {
11985 filter[i].filter = nla_memdup(attr, GFP_KERNEL);
11986 filter[i].len = nla_len(attr);
11990 func->num_tx_filters = n_entries;
11991 func->tx_filters = filter;
11993 func->num_rx_filters = n_entries;
11994 func->rx_filters = filter;
12000 static int nl80211_nan_add_func(struct sk_buff *skb,
12001 struct genl_info *info)
12003 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12004 struct wireless_dev *wdev = info->user_ptr[1];
12005 struct nlattr *tb[NUM_NL80211_NAN_FUNC_ATTR], *func_attr;
12006 struct cfg80211_nan_func *func;
12007 struct sk_buff *msg = NULL;
12011 if (wdev->iftype != NL80211_IFTYPE_NAN)
12012 return -EOPNOTSUPP;
12014 if (!wdev_running(wdev))
12017 if (!info->attrs[NL80211_ATTR_NAN_FUNC])
12020 err = nla_parse_nested(tb, NL80211_NAN_FUNC_ATTR_MAX,
12021 info->attrs[NL80211_ATTR_NAN_FUNC],
12022 nl80211_nan_func_policy, info->extack);
12026 func = kzalloc(sizeof(*func), GFP_KERNEL);
12030 func->cookie = cfg80211_assign_cookie(rdev);
12032 if (!tb[NL80211_NAN_FUNC_TYPE] ||
12033 nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]) > NL80211_NAN_FUNC_MAX_TYPE) {
12039 func->type = nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]);
12041 if (!tb[NL80211_NAN_FUNC_SERVICE_ID]) {
12046 memcpy(func->service_id, nla_data(tb[NL80211_NAN_FUNC_SERVICE_ID]),
12047 sizeof(func->service_id));
12049 func->close_range =
12050 nla_get_flag(tb[NL80211_NAN_FUNC_CLOSE_RANGE]);
12052 if (tb[NL80211_NAN_FUNC_SERVICE_INFO]) {
12053 func->serv_spec_info_len =
12054 nla_len(tb[NL80211_NAN_FUNC_SERVICE_INFO]);
12055 func->serv_spec_info =
12056 kmemdup(nla_data(tb[NL80211_NAN_FUNC_SERVICE_INFO]),
12057 func->serv_spec_info_len,
12059 if (!func->serv_spec_info) {
12065 if (tb[NL80211_NAN_FUNC_TTL])
12066 func->ttl = nla_get_u32(tb[NL80211_NAN_FUNC_TTL]);
12068 switch (func->type) {
12069 case NL80211_NAN_FUNC_PUBLISH:
12070 if (!tb[NL80211_NAN_FUNC_PUBLISH_TYPE]) {
12075 func->publish_type =
12076 nla_get_u8(tb[NL80211_NAN_FUNC_PUBLISH_TYPE]);
12077 func->publish_bcast =
12078 nla_get_flag(tb[NL80211_NAN_FUNC_PUBLISH_BCAST]);
12080 if ((!(func->publish_type & NL80211_NAN_SOLICITED_PUBLISH)) &&
12081 func->publish_bcast) {
12086 case NL80211_NAN_FUNC_SUBSCRIBE:
12087 func->subscribe_active =
12088 nla_get_flag(tb[NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE]);
12090 case NL80211_NAN_FUNC_FOLLOW_UP:
12091 if (!tb[NL80211_NAN_FUNC_FOLLOW_UP_ID] ||
12092 !tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] ||
12093 !tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]) {
12098 func->followup_id =
12099 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_ID]);
12100 func->followup_reqid =
12101 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID]);
12102 memcpy(func->followup_dest.addr,
12103 nla_data(tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]),
12104 sizeof(func->followup_dest.addr));
12115 if (tb[NL80211_NAN_FUNC_SRF]) {
12116 struct nlattr *srf_tb[NUM_NL80211_NAN_SRF_ATTR];
12118 err = nla_parse_nested(srf_tb, NL80211_NAN_SRF_ATTR_MAX,
12119 tb[NL80211_NAN_FUNC_SRF],
12120 nl80211_nan_srf_policy, info->extack);
12124 func->srf_include =
12125 nla_get_flag(srf_tb[NL80211_NAN_SRF_INCLUDE]);
12127 if (srf_tb[NL80211_NAN_SRF_BF]) {
12128 if (srf_tb[NL80211_NAN_SRF_MAC_ADDRS] ||
12129 !srf_tb[NL80211_NAN_SRF_BF_IDX]) {
12135 nla_len(srf_tb[NL80211_NAN_SRF_BF]);
12137 kmemdup(nla_data(srf_tb[NL80211_NAN_SRF_BF]),
12138 func->srf_bf_len, GFP_KERNEL);
12139 if (!func->srf_bf) {
12145 nla_get_u8(srf_tb[NL80211_NAN_SRF_BF_IDX]);
12147 struct nlattr *attr, *mac_attr =
12148 srf_tb[NL80211_NAN_SRF_MAC_ADDRS];
12149 int n_entries, rem, i = 0;
12156 n_entries = validate_acl_mac_addrs(mac_attr);
12157 if (n_entries <= 0) {
12162 func->srf_num_macs = n_entries;
12164 kcalloc(n_entries, sizeof(*func->srf_macs),
12166 if (!func->srf_macs) {
12171 nla_for_each_nested(attr, mac_attr, rem)
12172 memcpy(func->srf_macs[i++].addr, nla_data(attr),
12173 sizeof(*func->srf_macs));
12177 if (tb[NL80211_NAN_FUNC_TX_MATCH_FILTER]) {
12178 err = handle_nan_filter(tb[NL80211_NAN_FUNC_TX_MATCH_FILTER],
12184 if (tb[NL80211_NAN_FUNC_RX_MATCH_FILTER]) {
12185 err = handle_nan_filter(tb[NL80211_NAN_FUNC_RX_MATCH_FILTER],
12191 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12197 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12198 NL80211_CMD_ADD_NAN_FUNCTION);
12199 /* This can't really happen - we just allocated 4KB */
12200 if (WARN_ON(!hdr)) {
12205 err = rdev_add_nan_func(rdev, wdev, func);
12208 cfg80211_free_nan_func(func);
12213 /* propagate the instance id and cookie to userspace */
12214 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, func->cookie,
12216 goto nla_put_failure;
12218 func_attr = nla_nest_start(msg, NL80211_ATTR_NAN_FUNC);
12220 goto nla_put_failure;
12222 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID,
12223 func->instance_id))
12224 goto nla_put_failure;
12226 nla_nest_end(msg, func_attr);
12228 genlmsg_end(msg, hdr);
12229 return genlmsg_reply(msg, info);
12236 static int nl80211_nan_del_func(struct sk_buff *skb,
12237 struct genl_info *info)
12239 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12240 struct wireless_dev *wdev = info->user_ptr[1];
12243 if (wdev->iftype != NL80211_IFTYPE_NAN)
12244 return -EOPNOTSUPP;
12246 if (!wdev_running(wdev))
12249 if (!info->attrs[NL80211_ATTR_COOKIE])
12252 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
12254 rdev_del_nan_func(rdev, wdev, cookie);
12259 static int nl80211_nan_change_config(struct sk_buff *skb,
12260 struct genl_info *info)
12262 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12263 struct wireless_dev *wdev = info->user_ptr[1];
12264 struct cfg80211_nan_conf conf = {};
12267 if (wdev->iftype != NL80211_IFTYPE_NAN)
12268 return -EOPNOTSUPP;
12270 if (!wdev_running(wdev))
12273 if (info->attrs[NL80211_ATTR_NAN_MASTER_PREF]) {
12275 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12276 if (conf.master_pref <= 1 || conf.master_pref == 255)
12279 changed |= CFG80211_NAN_CONF_CHANGED_PREF;
12282 if (info->attrs[NL80211_ATTR_BANDS]) {
12283 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12285 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12286 return -EOPNOTSUPP;
12288 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12291 conf.bands = bands;
12292 changed |= CFG80211_NAN_CONF_CHANGED_BANDS;
12298 return rdev_nan_change_conf(rdev, wdev, &conf, changed);
12301 void cfg80211_nan_match(struct wireless_dev *wdev,
12302 struct cfg80211_nan_match_params *match, gfp_t gfp)
12304 struct wiphy *wiphy = wdev->wiphy;
12305 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12306 struct nlattr *match_attr, *local_func_attr, *peer_func_attr;
12307 struct sk_buff *msg;
12310 if (WARN_ON(!match->inst_id || !match->peer_inst_id || !match->addr))
12313 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12317 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NAN_MATCH);
12323 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12324 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12325 wdev->netdev->ifindex)) ||
12326 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12328 goto nla_put_failure;
12330 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, match->cookie,
12331 NL80211_ATTR_PAD) ||
12332 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, match->addr))
12333 goto nla_put_failure;
12335 match_attr = nla_nest_start(msg, NL80211_ATTR_NAN_MATCH);
12337 goto nla_put_failure;
12339 local_func_attr = nla_nest_start(msg, NL80211_NAN_MATCH_FUNC_LOCAL);
12340 if (!local_func_attr)
12341 goto nla_put_failure;
12343 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->inst_id))
12344 goto nla_put_failure;
12346 nla_nest_end(msg, local_func_attr);
12348 peer_func_attr = nla_nest_start(msg, NL80211_NAN_MATCH_FUNC_PEER);
12349 if (!peer_func_attr)
12350 goto nla_put_failure;
12352 if (nla_put_u8(msg, NL80211_NAN_FUNC_TYPE, match->type) ||
12353 nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->peer_inst_id))
12354 goto nla_put_failure;
12356 if (match->info && match->info_len &&
12357 nla_put(msg, NL80211_NAN_FUNC_SERVICE_INFO, match->info_len,
12359 goto nla_put_failure;
12361 nla_nest_end(msg, peer_func_attr);
12362 nla_nest_end(msg, match_attr);
12363 genlmsg_end(msg, hdr);
12365 if (!wdev->owner_nlportid)
12366 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12367 msg, 0, NL80211_MCGRP_NAN, gfp);
12369 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12370 wdev->owner_nlportid);
12377 EXPORT_SYMBOL(cfg80211_nan_match);
12379 void cfg80211_nan_func_terminated(struct wireless_dev *wdev,
12381 enum nl80211_nan_func_term_reason reason,
12382 u64 cookie, gfp_t gfp)
12384 struct wiphy *wiphy = wdev->wiphy;
12385 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12386 struct sk_buff *msg;
12387 struct nlattr *func_attr;
12390 if (WARN_ON(!inst_id))
12393 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12397 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_NAN_FUNCTION);
12403 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12404 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12405 wdev->netdev->ifindex)) ||
12406 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12408 goto nla_put_failure;
12410 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
12412 goto nla_put_failure;
12414 func_attr = nla_nest_start(msg, NL80211_ATTR_NAN_FUNC);
12416 goto nla_put_failure;
12418 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, inst_id) ||
12419 nla_put_u8(msg, NL80211_NAN_FUNC_TERM_REASON, reason))
12420 goto nla_put_failure;
12422 nla_nest_end(msg, func_attr);
12423 genlmsg_end(msg, hdr);
12425 if (!wdev->owner_nlportid)
12426 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12427 msg, 0, NL80211_MCGRP_NAN, gfp);
12429 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12430 wdev->owner_nlportid);
12437 EXPORT_SYMBOL(cfg80211_nan_func_terminated);
12439 static int nl80211_get_protocol_features(struct sk_buff *skb,
12440 struct genl_info *info)
12443 struct sk_buff *msg;
12445 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12449 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12450 NL80211_CMD_GET_PROTOCOL_FEATURES);
12452 goto nla_put_failure;
12454 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
12455 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
12456 goto nla_put_failure;
12458 genlmsg_end(msg, hdr);
12459 return genlmsg_reply(msg, info);
12466 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
12468 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12469 struct cfg80211_update_ft_ies_params ft_params;
12470 struct net_device *dev = info->user_ptr[1];
12472 if (!rdev->ops->update_ft_ies)
12473 return -EOPNOTSUPP;
12475 if (!info->attrs[NL80211_ATTR_MDID] ||
12476 !info->attrs[NL80211_ATTR_IE])
12479 memset(&ft_params, 0, sizeof(ft_params));
12480 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
12481 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
12482 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
12484 return rdev_update_ft_ies(rdev, dev, &ft_params);
12487 static int nl80211_crit_protocol_start(struct sk_buff *skb,
12488 struct genl_info *info)
12490 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12491 struct wireless_dev *wdev = info->user_ptr[1];
12492 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
12496 if (!rdev->ops->crit_proto_start)
12497 return -EOPNOTSUPP;
12499 if (WARN_ON(!rdev->ops->crit_proto_stop))
12502 if (rdev->crit_proto_nlportid)
12505 /* determine protocol if provided */
12506 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
12507 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
12509 if (proto >= NUM_NL80211_CRIT_PROTO)
12512 /* timeout must be provided */
12513 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
12517 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
12519 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
12522 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
12524 rdev->crit_proto_nlportid = info->snd_portid;
12529 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
12530 struct genl_info *info)
12532 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12533 struct wireless_dev *wdev = info->user_ptr[1];
12535 if (!rdev->ops->crit_proto_stop)
12536 return -EOPNOTSUPP;
12538 if (rdev->crit_proto_nlportid) {
12539 rdev->crit_proto_nlportid = 0;
12540 rdev_crit_proto_stop(rdev, wdev);
12545 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
12547 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12548 struct wireless_dev *wdev =
12549 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
12553 if (!rdev->wiphy.vendor_commands)
12554 return -EOPNOTSUPP;
12556 if (IS_ERR(wdev)) {
12557 err = PTR_ERR(wdev);
12558 if (err != -EINVAL)
12561 } else if (wdev->wiphy != &rdev->wiphy) {
12565 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
12566 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
12569 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
12570 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
12571 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
12572 const struct wiphy_vendor_command *vcmd;
12576 vcmd = &rdev->wiphy.vendor_commands[i];
12578 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12581 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12582 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12585 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12589 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12590 if (!wdev_running(wdev))
12595 return -EOPNOTSUPP;
12600 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
12601 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12602 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12605 rdev->cur_cmd_info = info;
12606 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
12608 rdev->cur_cmd_info = NULL;
12612 return -EOPNOTSUPP;
12615 static int nl80211_prepare_vendor_dump(struct sk_buff *skb,
12616 struct netlink_callback *cb,
12617 struct cfg80211_registered_device **rdev,
12618 struct wireless_dev **wdev)
12620 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
12626 unsigned int data_len = 0;
12629 /* subtract the 1 again here */
12630 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
12631 struct wireless_dev *tmp;
12635 *rdev = wiphy_to_rdev(wiphy);
12639 list_for_each_entry(tmp, &wiphy->wdev_list, list) {
12640 if (tmp->identifier == cb->args[1] - 1) {
12647 /* keep rtnl locked in successful case */
12651 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize, attrbuf,
12652 nl80211_fam.maxattr, nl80211_policy, NULL);
12656 if (!attrbuf[NL80211_ATTR_VENDOR_ID] ||
12657 !attrbuf[NL80211_ATTR_VENDOR_SUBCMD])
12660 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk), attrbuf);
12664 *rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
12666 return PTR_ERR(*rdev);
12668 vid = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_ID]);
12669 subcmd = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_SUBCMD]);
12671 for (i = 0; i < (*rdev)->wiphy.n_vendor_commands; i++) {
12672 const struct wiphy_vendor_command *vcmd;
12674 vcmd = &(*rdev)->wiphy.vendor_commands[i];
12676 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12680 return -EOPNOTSUPP;
12687 return -EOPNOTSUPP;
12689 if (attrbuf[NL80211_ATTR_VENDOR_DATA]) {
12690 data = nla_data(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12691 data_len = nla_len(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12694 /* 0 is the first index - add 1 to parse only once */
12695 cb->args[0] = (*rdev)->wiphy_idx + 1;
12696 /* add 1 to know if it was NULL */
12697 cb->args[1] = *wdev ? (*wdev)->identifier + 1 : 0;
12698 cb->args[2] = vcmd_idx;
12699 cb->args[3] = (unsigned long)data;
12700 cb->args[4] = data_len;
12702 /* keep rtnl locked in successful case */
12706 static int nl80211_vendor_cmd_dump(struct sk_buff *skb,
12707 struct netlink_callback *cb)
12709 struct cfg80211_registered_device *rdev;
12710 struct wireless_dev *wdev;
12711 unsigned int vcmd_idx;
12712 const struct wiphy_vendor_command *vcmd;
12716 struct nlattr *vendor_data;
12719 err = nl80211_prepare_vendor_dump(skb, cb, &rdev, &wdev);
12723 vcmd_idx = cb->args[2];
12724 data = (void *)cb->args[3];
12725 data_len = cb->args[4];
12726 vcmd = &rdev->wiphy.vendor_commands[vcmd_idx];
12728 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12729 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12734 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12740 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12741 if (!wdev_running(wdev)) {
12749 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
12750 cb->nlh->nlmsg_seq, NLM_F_MULTI,
12751 NL80211_CMD_VENDOR);
12755 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12756 (wdev && nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
12758 NL80211_ATTR_PAD))) {
12759 genlmsg_cancel(skb, hdr);
12763 vendor_data = nla_nest_start(skb, NL80211_ATTR_VENDOR_DATA);
12764 if (!vendor_data) {
12765 genlmsg_cancel(skb, hdr);
12769 err = vcmd->dumpit(&rdev->wiphy, wdev, skb, data, data_len,
12770 (unsigned long *)&cb->args[5]);
12771 nla_nest_end(skb, vendor_data);
12773 if (err == -ENOBUFS || err == -ENOENT) {
12774 genlmsg_cancel(skb, hdr);
12777 genlmsg_cancel(skb, hdr);
12781 genlmsg_end(skb, hdr);
12790 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
12791 enum nl80211_commands cmd,
12792 enum nl80211_attrs attr,
12795 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12797 if (WARN_ON(!rdev->cur_cmd_info))
12800 return __cfg80211_alloc_vendor_skb(rdev, NULL, approxlen,
12801 rdev->cur_cmd_info->snd_portid,
12802 rdev->cur_cmd_info->snd_seq,
12803 cmd, attr, NULL, GFP_KERNEL);
12805 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
12807 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
12809 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
12810 void *hdr = ((void **)skb->cb)[1];
12811 struct nlattr *data = ((void **)skb->cb)[2];
12813 /* clear CB data for netlink core to own from now on */
12814 memset(skb->cb, 0, sizeof(skb->cb));
12816 if (WARN_ON(!rdev->cur_cmd_info)) {
12821 nla_nest_end(skb, data);
12822 genlmsg_end(skb, hdr);
12823 return genlmsg_reply(skb, rdev->cur_cmd_info);
12825 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
12827 unsigned int cfg80211_vendor_cmd_get_sender(struct wiphy *wiphy)
12829 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12831 if (WARN_ON(!rdev->cur_cmd_info))
12834 return rdev->cur_cmd_info->snd_portid;
12836 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_get_sender);
12838 static int nl80211_set_qos_map(struct sk_buff *skb,
12839 struct genl_info *info)
12841 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12842 struct cfg80211_qos_map *qos_map = NULL;
12843 struct net_device *dev = info->user_ptr[1];
12844 u8 *pos, len, num_des, des_len, des;
12847 if (!rdev->ops->set_qos_map)
12848 return -EOPNOTSUPP;
12850 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
12851 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
12852 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
12854 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
12855 len > IEEE80211_QOS_MAP_LEN_MAX)
12858 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
12862 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
12864 des_len = num_des *
12865 sizeof(struct cfg80211_dscp_exception);
12866 memcpy(qos_map->dscp_exception, pos, des_len);
12867 qos_map->num_des = num_des;
12868 for (des = 0; des < num_des; des++) {
12869 if (qos_map->dscp_exception[des].up > 7) {
12876 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
12879 wdev_lock(dev->ieee80211_ptr);
12880 ret = nl80211_key_allowed(dev->ieee80211_ptr);
12882 ret = rdev_set_qos_map(rdev, dev, qos_map);
12883 wdev_unlock(dev->ieee80211_ptr);
12889 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
12891 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12892 struct net_device *dev = info->user_ptr[1];
12893 struct wireless_dev *wdev = dev->ieee80211_ptr;
12896 u16 admitted_time = 0;
12899 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
12900 return -EOPNOTSUPP;
12902 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
12903 !info->attrs[NL80211_ATTR_USER_PRIO])
12906 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
12907 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
12909 /* WMM uses TIDs 0-7 even for TSPEC */
12910 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
12911 /* TODO: handle 802.11 TSPEC/admission control
12912 * need more attributes for that (e.g. BA session requirement);
12913 * change the WMM adminssion test above to allow both then
12918 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
12920 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
12922 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
12923 if (!admitted_time)
12928 switch (wdev->iftype) {
12929 case NL80211_IFTYPE_STATION:
12930 case NL80211_IFTYPE_P2P_CLIENT:
12931 if (wdev->current_bss)
12940 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
12947 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
12949 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12950 struct net_device *dev = info->user_ptr[1];
12951 struct wireless_dev *wdev = dev->ieee80211_ptr;
12956 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
12959 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
12960 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
12963 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
12969 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
12970 struct genl_info *info)
12972 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12973 struct net_device *dev = info->user_ptr[1];
12974 struct wireless_dev *wdev = dev->ieee80211_ptr;
12975 struct cfg80211_chan_def chandef = {};
12980 if (!rdev->ops->tdls_channel_switch ||
12981 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
12982 return -EOPNOTSUPP;
12984 switch (dev->ieee80211_ptr->iftype) {
12985 case NL80211_IFTYPE_STATION:
12986 case NL80211_IFTYPE_P2P_CLIENT:
12989 return -EOPNOTSUPP;
12992 if (!info->attrs[NL80211_ATTR_MAC] ||
12993 !info->attrs[NL80211_ATTR_OPER_CLASS])
12996 err = nl80211_parse_chandef(rdev, info, &chandef);
13001 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
13002 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
13003 * specification is not defined for them.
13005 if (chandef.chan->band == NL80211_BAND_2GHZ &&
13006 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
13007 chandef.width != NL80211_CHAN_WIDTH_20)
13010 /* we will be active on the TDLS link */
13011 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
13015 /* don't allow switching to DFS channels */
13016 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
13019 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13020 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
13023 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
13029 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
13030 struct genl_info *info)
13032 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13033 struct net_device *dev = info->user_ptr[1];
13034 struct wireless_dev *wdev = dev->ieee80211_ptr;
13037 if (!rdev->ops->tdls_channel_switch ||
13038 !rdev->ops->tdls_cancel_channel_switch ||
13039 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13040 return -EOPNOTSUPP;
13042 switch (dev->ieee80211_ptr->iftype) {
13043 case NL80211_IFTYPE_STATION:
13044 case NL80211_IFTYPE_P2P_CLIENT:
13047 return -EOPNOTSUPP;
13050 if (!info->attrs[NL80211_ATTR_MAC])
13053 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13056 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
13062 static int nl80211_set_multicast_to_unicast(struct sk_buff *skb,
13063 struct genl_info *info)
13065 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13066 struct net_device *dev = info->user_ptr[1];
13067 struct wireless_dev *wdev = dev->ieee80211_ptr;
13068 const struct nlattr *nla;
13071 if (!rdev->ops->set_multicast_to_unicast)
13072 return -EOPNOTSUPP;
13074 if (wdev->iftype != NL80211_IFTYPE_AP &&
13075 wdev->iftype != NL80211_IFTYPE_P2P_GO)
13076 return -EOPNOTSUPP;
13078 nla = info->attrs[NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED];
13079 enabled = nla_get_flag(nla);
13081 return rdev_set_multicast_to_unicast(rdev, dev, enabled);
13084 static int nl80211_set_pmk(struct sk_buff *skb, struct genl_info *info)
13086 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13087 struct net_device *dev = info->user_ptr[1];
13088 struct wireless_dev *wdev = dev->ieee80211_ptr;
13089 struct cfg80211_pmk_conf pmk_conf = {};
13092 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13093 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13094 return -EOPNOTSUPP;
13096 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13097 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13098 return -EOPNOTSUPP;
13100 if (!info->attrs[NL80211_ATTR_MAC] || !info->attrs[NL80211_ATTR_PMK])
13104 if (!wdev->current_bss) {
13109 pmk_conf.aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13110 if (memcmp(pmk_conf.aa, wdev->current_bss->pub.bssid, ETH_ALEN)) {
13115 pmk_conf.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
13116 pmk_conf.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
13117 if (pmk_conf.pmk_len != WLAN_PMK_LEN &&
13118 pmk_conf.pmk_len != WLAN_PMK_LEN_SUITE_B_192) {
13123 if (info->attrs[NL80211_ATTR_PMKR0_NAME]) {
13124 int r0_name_len = nla_len(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13126 if (r0_name_len != WLAN_PMK_NAME_LEN) {
13131 pmk_conf.pmk_r0_name =
13132 nla_data(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13135 ret = rdev_set_pmk(rdev, dev, &pmk_conf);
13141 static int nl80211_del_pmk(struct sk_buff *skb, struct genl_info *info)
13143 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13144 struct net_device *dev = info->user_ptr[1];
13145 struct wireless_dev *wdev = dev->ieee80211_ptr;
13149 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13150 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13151 return -EOPNOTSUPP;
13153 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13154 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13155 return -EOPNOTSUPP;
13157 if (!info->attrs[NL80211_ATTR_MAC])
13161 aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13162 ret = rdev_del_pmk(rdev, dev, aa);
13168 static int nl80211_external_auth(struct sk_buff *skb, struct genl_info *info)
13170 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13171 struct net_device *dev = info->user_ptr[1];
13172 struct cfg80211_external_auth_params params;
13174 if (!rdev->ops->external_auth)
13175 return -EOPNOTSUPP;
13177 if (!info->attrs[NL80211_ATTR_SSID] &&
13178 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
13179 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
13182 if (!info->attrs[NL80211_ATTR_BSSID])
13185 if (!info->attrs[NL80211_ATTR_STATUS_CODE])
13188 memset(¶ms, 0, sizeof(params));
13190 if (info->attrs[NL80211_ATTR_SSID]) {
13191 params.ssid.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
13192 if (params.ssid.ssid_len == 0 ||
13193 params.ssid.ssid_len > IEEE80211_MAX_SSID_LEN)
13195 memcpy(params.ssid.ssid,
13196 nla_data(info->attrs[NL80211_ATTR_SSID]),
13197 params.ssid.ssid_len);
13200 memcpy(params.bssid, nla_data(info->attrs[NL80211_ATTR_BSSID]),
13203 params.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13205 if (info->attrs[NL80211_ATTR_PMKID])
13206 params.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
13208 return rdev_external_auth(rdev, dev, ¶ms);
13211 static int nl80211_tx_control_port(struct sk_buff *skb, struct genl_info *info)
13213 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13214 struct net_device *dev = info->user_ptr[1];
13215 struct wireless_dev *wdev = dev->ieee80211_ptr;
13223 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13224 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
13225 return -EOPNOTSUPP;
13227 if (!rdev->ops->tx_control_port)
13228 return -EOPNOTSUPP;
13230 if (!info->attrs[NL80211_ATTR_FRAME] ||
13231 !info->attrs[NL80211_ATTR_MAC] ||
13232 !info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
13233 GENL_SET_ERR_MSG(info, "Frame, MAC or ethertype missing");
13239 switch (wdev->iftype) {
13240 case NL80211_IFTYPE_AP:
13241 case NL80211_IFTYPE_P2P_GO:
13242 case NL80211_IFTYPE_MESH_POINT:
13244 case NL80211_IFTYPE_ADHOC:
13245 case NL80211_IFTYPE_STATION:
13246 case NL80211_IFTYPE_P2P_CLIENT:
13247 if (wdev->current_bss)
13258 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13259 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13260 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13261 proto = nla_get_u16(info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
13263 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT]);
13265 return rdev_tx_control_port(rdev, dev, buf, len,
13266 dest, cpu_to_be16(proto), noencrypt);
13273 static int nl80211_get_ftm_responder_stats(struct sk_buff *skb,
13274 struct genl_info *info)
13276 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13277 struct net_device *dev = info->user_ptr[1];
13278 struct wireless_dev *wdev = dev->ieee80211_ptr;
13279 struct cfg80211_ftm_responder_stats ftm_stats = {};
13280 struct sk_buff *msg;
13282 struct nlattr *ftm_stats_attr;
13285 if (wdev->iftype != NL80211_IFTYPE_AP || !wdev->beacon_interval)
13286 return -EOPNOTSUPP;
13288 err = rdev_get_ftm_responder_stats(rdev, dev, &ftm_stats);
13292 if (!ftm_stats.filled)
13295 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
13299 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
13300 NL80211_CMD_GET_FTM_RESPONDER_STATS);
13304 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
13305 goto nla_put_failure;
13307 ftm_stats_attr = nla_nest_start(msg, NL80211_ATTR_FTM_RESPONDER_STATS);
13308 if (!ftm_stats_attr)
13309 goto nla_put_failure;
13311 #define SET_FTM(field, name, type) \
13312 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13313 nla_put_ ## type(msg, NL80211_FTM_STATS_ ## name, \
13314 ftm_stats.field)) \
13315 goto nla_put_failure; } while (0)
13316 #define SET_FTM_U64(field, name) \
13317 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13318 nla_put_u64_64bit(msg, NL80211_FTM_STATS_ ## name, \
13319 ftm_stats.field, NL80211_FTM_STATS_PAD)) \
13320 goto nla_put_failure; } while (0)
13322 SET_FTM(success_num, SUCCESS_NUM, u32);
13323 SET_FTM(partial_num, PARTIAL_NUM, u32);
13324 SET_FTM(failed_num, FAILED_NUM, u32);
13325 SET_FTM(asap_num, ASAP_NUM, u32);
13326 SET_FTM(non_asap_num, NON_ASAP_NUM, u32);
13327 SET_FTM_U64(total_duration_ms, TOTAL_DURATION_MSEC);
13328 SET_FTM(unknown_triggers_num, UNKNOWN_TRIGGERS_NUM, u32);
13329 SET_FTM(reschedule_requests_num, RESCHEDULE_REQUESTS_NUM, u32);
13330 SET_FTM(out_of_window_triggers_num, OUT_OF_WINDOW_TRIGGERS_NUM, u32);
13333 nla_nest_end(msg, ftm_stats_attr);
13335 genlmsg_end(msg, hdr);
13336 return genlmsg_reply(msg, info);
13343 static int nl80211_update_owe_info(struct sk_buff *skb, struct genl_info *info)
13345 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13346 struct cfg80211_update_owe_info owe_info;
13347 struct net_device *dev = info->user_ptr[1];
13349 if (!rdev->ops->update_owe_info)
13350 return -EOPNOTSUPP;
13352 if (!info->attrs[NL80211_ATTR_STATUS_CODE] ||
13353 !info->attrs[NL80211_ATTR_MAC])
13356 memset(&owe_info, 0, sizeof(owe_info));
13357 owe_info.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13358 nla_memcpy(owe_info.peer, info->attrs[NL80211_ATTR_MAC], ETH_ALEN);
13360 if (info->attrs[NL80211_ATTR_IE]) {
13361 owe_info.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
13362 owe_info.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
13365 return rdev_update_owe_info(rdev, dev, &owe_info);
13368 #define NL80211_FLAG_NEED_WIPHY 0x01
13369 #define NL80211_FLAG_NEED_NETDEV 0x02
13370 #define NL80211_FLAG_NEED_RTNL 0x04
13371 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
13372 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
13373 NL80211_FLAG_CHECK_NETDEV_UP)
13374 #define NL80211_FLAG_NEED_WDEV 0x10
13375 /* If a netdev is associated, it must be UP, P2P must be started */
13376 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
13377 NL80211_FLAG_CHECK_NETDEV_UP)
13378 #define NL80211_FLAG_CLEAR_SKB 0x20
13380 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
13381 struct genl_info *info)
13383 struct cfg80211_registered_device *rdev;
13384 struct wireless_dev *wdev;
13385 struct net_device *dev;
13386 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
13391 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
13392 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
13393 if (IS_ERR(rdev)) {
13396 return PTR_ERR(rdev);
13398 info->user_ptr[0] = rdev;
13399 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
13400 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13403 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
13405 if (IS_ERR(wdev)) {
13408 return PTR_ERR(wdev);
13411 dev = wdev->netdev;
13412 rdev = wiphy_to_rdev(wdev->wiphy);
13414 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
13421 info->user_ptr[1] = dev;
13423 info->user_ptr[1] = wdev;
13426 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
13427 !wdev_running(wdev)) {
13436 info->user_ptr[0] = rdev;
13442 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
13443 struct genl_info *info)
13445 if (info->user_ptr[1]) {
13446 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13447 struct wireless_dev *wdev = info->user_ptr[1];
13450 dev_put(wdev->netdev);
13452 dev_put(info->user_ptr[1]);
13456 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
13459 /* If needed, clear the netlink message payload from the SKB
13460 * as it might contain key data that shouldn't stick around on
13461 * the heap after the SKB is freed. The netlink message header
13462 * is still needed for further processing, so leave it intact.
13464 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
13465 struct nlmsghdr *nlh = nlmsg_hdr(skb);
13467 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
13471 static const struct genl_ops nl80211_ops[] = {
13473 .cmd = NL80211_CMD_GET_WIPHY,
13474 .doit = nl80211_get_wiphy,
13475 .dumpit = nl80211_dump_wiphy,
13476 .done = nl80211_dump_wiphy_done,
13477 /* can be retrieved by unprivileged users */
13478 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13479 NL80211_FLAG_NEED_RTNL,
13482 .cmd = NL80211_CMD_SET_WIPHY,
13483 .doit = nl80211_set_wiphy,
13484 .flags = GENL_UNS_ADMIN_PERM,
13485 .internal_flags = NL80211_FLAG_NEED_RTNL,
13488 .cmd = NL80211_CMD_GET_INTERFACE,
13489 .doit = nl80211_get_interface,
13490 .dumpit = nl80211_dump_interface,
13491 /* can be retrieved by unprivileged users */
13492 .internal_flags = NL80211_FLAG_NEED_WDEV |
13493 NL80211_FLAG_NEED_RTNL,
13496 .cmd = NL80211_CMD_SET_INTERFACE,
13497 .doit = nl80211_set_interface,
13498 .flags = GENL_UNS_ADMIN_PERM,
13499 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13500 NL80211_FLAG_NEED_RTNL,
13503 .cmd = NL80211_CMD_NEW_INTERFACE,
13504 .doit = nl80211_new_interface,
13505 .flags = GENL_UNS_ADMIN_PERM,
13506 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13507 NL80211_FLAG_NEED_RTNL,
13510 .cmd = NL80211_CMD_DEL_INTERFACE,
13511 .doit = nl80211_del_interface,
13512 .flags = GENL_UNS_ADMIN_PERM,
13513 .internal_flags = NL80211_FLAG_NEED_WDEV |
13514 NL80211_FLAG_NEED_RTNL,
13517 .cmd = NL80211_CMD_GET_KEY,
13518 .doit = nl80211_get_key,
13519 .flags = GENL_UNS_ADMIN_PERM,
13520 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13521 NL80211_FLAG_NEED_RTNL,
13524 .cmd = NL80211_CMD_SET_KEY,
13525 .doit = nl80211_set_key,
13526 .flags = GENL_UNS_ADMIN_PERM,
13527 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13528 NL80211_FLAG_NEED_RTNL |
13529 NL80211_FLAG_CLEAR_SKB,
13532 .cmd = NL80211_CMD_NEW_KEY,
13533 .doit = nl80211_new_key,
13534 .flags = GENL_UNS_ADMIN_PERM,
13535 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13536 NL80211_FLAG_NEED_RTNL |
13537 NL80211_FLAG_CLEAR_SKB,
13540 .cmd = NL80211_CMD_DEL_KEY,
13541 .doit = nl80211_del_key,
13542 .flags = GENL_UNS_ADMIN_PERM,
13543 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13544 NL80211_FLAG_NEED_RTNL,
13547 .cmd = NL80211_CMD_SET_BEACON,
13548 .flags = GENL_UNS_ADMIN_PERM,
13549 .doit = nl80211_set_beacon,
13550 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13551 NL80211_FLAG_NEED_RTNL,
13554 .cmd = NL80211_CMD_START_AP,
13555 .flags = GENL_UNS_ADMIN_PERM,
13556 .doit = nl80211_start_ap,
13557 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13558 NL80211_FLAG_NEED_RTNL,
13561 .cmd = NL80211_CMD_STOP_AP,
13562 .flags = GENL_UNS_ADMIN_PERM,
13563 .doit = nl80211_stop_ap,
13564 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13565 NL80211_FLAG_NEED_RTNL,
13568 .cmd = NL80211_CMD_GET_STATION,
13569 .doit = nl80211_get_station,
13570 .dumpit = nl80211_dump_station,
13571 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13572 NL80211_FLAG_NEED_RTNL,
13575 .cmd = NL80211_CMD_SET_STATION,
13576 .doit = nl80211_set_station,
13577 .flags = GENL_UNS_ADMIN_PERM,
13578 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13579 NL80211_FLAG_NEED_RTNL,
13582 .cmd = NL80211_CMD_NEW_STATION,
13583 .doit = nl80211_new_station,
13584 .flags = GENL_UNS_ADMIN_PERM,
13585 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13586 NL80211_FLAG_NEED_RTNL,
13589 .cmd = NL80211_CMD_DEL_STATION,
13590 .doit = nl80211_del_station,
13591 .flags = GENL_UNS_ADMIN_PERM,
13592 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13593 NL80211_FLAG_NEED_RTNL,
13596 .cmd = NL80211_CMD_GET_MPATH,
13597 .doit = nl80211_get_mpath,
13598 .dumpit = nl80211_dump_mpath,
13599 .flags = GENL_UNS_ADMIN_PERM,
13600 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13601 NL80211_FLAG_NEED_RTNL,
13604 .cmd = NL80211_CMD_GET_MPP,
13605 .doit = nl80211_get_mpp,
13606 .dumpit = nl80211_dump_mpp,
13607 .flags = GENL_UNS_ADMIN_PERM,
13608 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13609 NL80211_FLAG_NEED_RTNL,
13612 .cmd = NL80211_CMD_SET_MPATH,
13613 .doit = nl80211_set_mpath,
13614 .flags = GENL_UNS_ADMIN_PERM,
13615 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13616 NL80211_FLAG_NEED_RTNL,
13619 .cmd = NL80211_CMD_NEW_MPATH,
13620 .doit = nl80211_new_mpath,
13621 .flags = GENL_UNS_ADMIN_PERM,
13622 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13623 NL80211_FLAG_NEED_RTNL,
13626 .cmd = NL80211_CMD_DEL_MPATH,
13627 .doit = nl80211_del_mpath,
13628 .flags = GENL_UNS_ADMIN_PERM,
13629 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13630 NL80211_FLAG_NEED_RTNL,
13633 .cmd = NL80211_CMD_SET_BSS,
13634 .doit = nl80211_set_bss,
13635 .flags = GENL_UNS_ADMIN_PERM,
13636 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13637 NL80211_FLAG_NEED_RTNL,
13640 .cmd = NL80211_CMD_GET_REG,
13641 .doit = nl80211_get_reg_do,
13642 .dumpit = nl80211_get_reg_dump,
13643 .internal_flags = NL80211_FLAG_NEED_RTNL,
13644 /* can be retrieved by unprivileged users */
13646 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
13648 .cmd = NL80211_CMD_SET_REG,
13649 .doit = nl80211_set_reg,
13650 .flags = GENL_ADMIN_PERM,
13651 .internal_flags = NL80211_FLAG_NEED_RTNL,
13655 .cmd = NL80211_CMD_REQ_SET_REG,
13656 .doit = nl80211_req_set_reg,
13657 .flags = GENL_ADMIN_PERM,
13660 .cmd = NL80211_CMD_RELOAD_REGDB,
13661 .doit = nl80211_reload_regdb,
13662 .flags = GENL_ADMIN_PERM,
13665 .cmd = NL80211_CMD_GET_MESH_CONFIG,
13666 .doit = nl80211_get_mesh_config,
13667 /* can be retrieved by unprivileged users */
13668 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13669 NL80211_FLAG_NEED_RTNL,
13672 .cmd = NL80211_CMD_SET_MESH_CONFIG,
13673 .doit = nl80211_update_mesh_config,
13674 .flags = GENL_UNS_ADMIN_PERM,
13675 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13676 NL80211_FLAG_NEED_RTNL,
13679 .cmd = NL80211_CMD_TRIGGER_SCAN,
13680 .doit = nl80211_trigger_scan,
13681 .flags = GENL_UNS_ADMIN_PERM,
13682 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13683 NL80211_FLAG_NEED_RTNL,
13686 .cmd = NL80211_CMD_ABORT_SCAN,
13687 .doit = nl80211_abort_scan,
13688 .flags = GENL_UNS_ADMIN_PERM,
13689 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13690 NL80211_FLAG_NEED_RTNL,
13693 .cmd = NL80211_CMD_GET_SCAN,
13694 .dumpit = nl80211_dump_scan,
13697 .cmd = NL80211_CMD_START_SCHED_SCAN,
13698 .doit = nl80211_start_sched_scan,
13699 .flags = GENL_UNS_ADMIN_PERM,
13700 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13701 NL80211_FLAG_NEED_RTNL,
13704 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
13705 .doit = nl80211_stop_sched_scan,
13706 .flags = GENL_UNS_ADMIN_PERM,
13707 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13708 NL80211_FLAG_NEED_RTNL,
13711 .cmd = NL80211_CMD_AUTHENTICATE,
13712 .doit = nl80211_authenticate,
13713 .flags = GENL_UNS_ADMIN_PERM,
13714 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13715 NL80211_FLAG_NEED_RTNL |
13716 NL80211_FLAG_CLEAR_SKB,
13719 .cmd = NL80211_CMD_ASSOCIATE,
13720 .doit = nl80211_associate,
13721 .flags = GENL_UNS_ADMIN_PERM,
13722 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13723 NL80211_FLAG_NEED_RTNL,
13726 .cmd = NL80211_CMD_DEAUTHENTICATE,
13727 .doit = nl80211_deauthenticate,
13728 .flags = GENL_UNS_ADMIN_PERM,
13729 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13730 NL80211_FLAG_NEED_RTNL,
13733 .cmd = NL80211_CMD_DISASSOCIATE,
13734 .doit = nl80211_disassociate,
13735 .flags = GENL_UNS_ADMIN_PERM,
13736 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13737 NL80211_FLAG_NEED_RTNL,
13740 .cmd = NL80211_CMD_JOIN_IBSS,
13741 .doit = nl80211_join_ibss,
13742 .flags = GENL_UNS_ADMIN_PERM,
13743 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13744 NL80211_FLAG_NEED_RTNL,
13747 .cmd = NL80211_CMD_LEAVE_IBSS,
13748 .doit = nl80211_leave_ibss,
13749 .flags = GENL_UNS_ADMIN_PERM,
13750 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13751 NL80211_FLAG_NEED_RTNL,
13753 #ifdef CONFIG_NL80211_TESTMODE
13755 .cmd = NL80211_CMD_TESTMODE,
13756 .doit = nl80211_testmode_do,
13757 .dumpit = nl80211_testmode_dump,
13758 .flags = GENL_UNS_ADMIN_PERM,
13759 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13760 NL80211_FLAG_NEED_RTNL,
13764 .cmd = NL80211_CMD_CONNECT,
13765 .doit = nl80211_connect,
13766 .flags = GENL_UNS_ADMIN_PERM,
13767 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13768 NL80211_FLAG_NEED_RTNL,
13771 .cmd = NL80211_CMD_UPDATE_CONNECT_PARAMS,
13772 .doit = nl80211_update_connect_params,
13773 .flags = GENL_ADMIN_PERM,
13774 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13775 NL80211_FLAG_NEED_RTNL,
13778 .cmd = NL80211_CMD_DISCONNECT,
13779 .doit = nl80211_disconnect,
13780 .flags = GENL_UNS_ADMIN_PERM,
13781 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13782 NL80211_FLAG_NEED_RTNL,
13785 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
13786 .doit = nl80211_wiphy_netns,
13787 .flags = GENL_UNS_ADMIN_PERM,
13788 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13789 NL80211_FLAG_NEED_RTNL,
13792 .cmd = NL80211_CMD_GET_SURVEY,
13793 .dumpit = nl80211_dump_survey,
13796 .cmd = NL80211_CMD_SET_PMKSA,
13797 .doit = nl80211_setdel_pmksa,
13798 .flags = GENL_UNS_ADMIN_PERM,
13799 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13800 NL80211_FLAG_NEED_RTNL,
13803 .cmd = NL80211_CMD_DEL_PMKSA,
13804 .doit = nl80211_setdel_pmksa,
13805 .flags = GENL_UNS_ADMIN_PERM,
13806 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13807 NL80211_FLAG_NEED_RTNL,
13810 .cmd = NL80211_CMD_FLUSH_PMKSA,
13811 .doit = nl80211_flush_pmksa,
13812 .flags = GENL_UNS_ADMIN_PERM,
13813 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13814 NL80211_FLAG_NEED_RTNL,
13817 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
13818 .doit = nl80211_remain_on_channel,
13819 .flags = GENL_UNS_ADMIN_PERM,
13820 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13821 NL80211_FLAG_NEED_RTNL,
13824 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
13825 .doit = nl80211_cancel_remain_on_channel,
13826 .flags = GENL_UNS_ADMIN_PERM,
13827 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13828 NL80211_FLAG_NEED_RTNL,
13831 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
13832 .doit = nl80211_set_tx_bitrate_mask,
13833 .flags = GENL_UNS_ADMIN_PERM,
13834 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13835 NL80211_FLAG_NEED_RTNL,
13838 .cmd = NL80211_CMD_REGISTER_FRAME,
13839 .doit = nl80211_register_mgmt,
13840 .flags = GENL_UNS_ADMIN_PERM,
13841 .internal_flags = NL80211_FLAG_NEED_WDEV |
13842 NL80211_FLAG_NEED_RTNL,
13845 .cmd = NL80211_CMD_FRAME,
13846 .doit = nl80211_tx_mgmt,
13847 .flags = GENL_UNS_ADMIN_PERM,
13848 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13849 NL80211_FLAG_NEED_RTNL,
13852 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
13853 .doit = nl80211_tx_mgmt_cancel_wait,
13854 .flags = GENL_UNS_ADMIN_PERM,
13855 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13856 NL80211_FLAG_NEED_RTNL,
13859 .cmd = NL80211_CMD_SET_POWER_SAVE,
13860 .doit = nl80211_set_power_save,
13861 .flags = GENL_UNS_ADMIN_PERM,
13862 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13863 NL80211_FLAG_NEED_RTNL,
13866 .cmd = NL80211_CMD_GET_POWER_SAVE,
13867 .doit = nl80211_get_power_save,
13868 /* can be retrieved by unprivileged users */
13869 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13870 NL80211_FLAG_NEED_RTNL,
13873 .cmd = NL80211_CMD_SET_CQM,
13874 .doit = nl80211_set_cqm,
13875 .flags = GENL_UNS_ADMIN_PERM,
13876 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13877 NL80211_FLAG_NEED_RTNL,
13880 .cmd = NL80211_CMD_SET_CHANNEL,
13881 .doit = nl80211_set_channel,
13882 .flags = GENL_UNS_ADMIN_PERM,
13883 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13884 NL80211_FLAG_NEED_RTNL,
13887 .cmd = NL80211_CMD_SET_WDS_PEER,
13888 .doit = nl80211_set_wds_peer,
13889 .flags = GENL_UNS_ADMIN_PERM,
13890 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13891 NL80211_FLAG_NEED_RTNL,
13894 .cmd = NL80211_CMD_JOIN_MESH,
13895 .doit = nl80211_join_mesh,
13896 .flags = GENL_UNS_ADMIN_PERM,
13897 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13898 NL80211_FLAG_NEED_RTNL,
13901 .cmd = NL80211_CMD_LEAVE_MESH,
13902 .doit = nl80211_leave_mesh,
13903 .flags = GENL_UNS_ADMIN_PERM,
13904 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13905 NL80211_FLAG_NEED_RTNL,
13908 .cmd = NL80211_CMD_JOIN_OCB,
13909 .doit = nl80211_join_ocb,
13910 .flags = GENL_UNS_ADMIN_PERM,
13911 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13912 NL80211_FLAG_NEED_RTNL,
13915 .cmd = NL80211_CMD_LEAVE_OCB,
13916 .doit = nl80211_leave_ocb,
13917 .flags = GENL_UNS_ADMIN_PERM,
13918 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13919 NL80211_FLAG_NEED_RTNL,
13923 .cmd = NL80211_CMD_GET_WOWLAN,
13924 .doit = nl80211_get_wowlan,
13925 /* can be retrieved by unprivileged users */
13926 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13927 NL80211_FLAG_NEED_RTNL,
13930 .cmd = NL80211_CMD_SET_WOWLAN,
13931 .doit = nl80211_set_wowlan,
13932 .flags = GENL_UNS_ADMIN_PERM,
13933 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13934 NL80211_FLAG_NEED_RTNL,
13938 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
13939 .doit = nl80211_set_rekey_data,
13940 .flags = GENL_UNS_ADMIN_PERM,
13941 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13942 NL80211_FLAG_NEED_RTNL |
13943 NL80211_FLAG_CLEAR_SKB,
13946 .cmd = NL80211_CMD_TDLS_MGMT,
13947 .doit = nl80211_tdls_mgmt,
13948 .flags = GENL_UNS_ADMIN_PERM,
13949 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13950 NL80211_FLAG_NEED_RTNL,
13953 .cmd = NL80211_CMD_TDLS_OPER,
13954 .doit = nl80211_tdls_oper,
13955 .flags = GENL_UNS_ADMIN_PERM,
13956 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13957 NL80211_FLAG_NEED_RTNL,
13960 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
13961 .doit = nl80211_register_unexpected_frame,
13962 .flags = GENL_UNS_ADMIN_PERM,
13963 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13964 NL80211_FLAG_NEED_RTNL,
13967 .cmd = NL80211_CMD_PROBE_CLIENT,
13968 .doit = nl80211_probe_client,
13969 .flags = GENL_UNS_ADMIN_PERM,
13970 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13971 NL80211_FLAG_NEED_RTNL,
13974 .cmd = NL80211_CMD_REGISTER_BEACONS,
13975 .doit = nl80211_register_beacons,
13976 .flags = GENL_UNS_ADMIN_PERM,
13977 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13978 NL80211_FLAG_NEED_RTNL,
13981 .cmd = NL80211_CMD_SET_NOACK_MAP,
13982 .doit = nl80211_set_noack_map,
13983 .flags = GENL_UNS_ADMIN_PERM,
13984 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13985 NL80211_FLAG_NEED_RTNL,
13988 .cmd = NL80211_CMD_START_P2P_DEVICE,
13989 .doit = nl80211_start_p2p_device,
13990 .flags = GENL_UNS_ADMIN_PERM,
13991 .internal_flags = NL80211_FLAG_NEED_WDEV |
13992 NL80211_FLAG_NEED_RTNL,
13995 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
13996 .doit = nl80211_stop_p2p_device,
13997 .flags = GENL_UNS_ADMIN_PERM,
13998 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13999 NL80211_FLAG_NEED_RTNL,
14002 .cmd = NL80211_CMD_START_NAN,
14003 .doit = nl80211_start_nan,
14004 .flags = GENL_ADMIN_PERM,
14005 .internal_flags = NL80211_FLAG_NEED_WDEV |
14006 NL80211_FLAG_NEED_RTNL,
14009 .cmd = NL80211_CMD_STOP_NAN,
14010 .doit = nl80211_stop_nan,
14011 .flags = GENL_ADMIN_PERM,
14012 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14013 NL80211_FLAG_NEED_RTNL,
14016 .cmd = NL80211_CMD_ADD_NAN_FUNCTION,
14017 .doit = nl80211_nan_add_func,
14018 .flags = GENL_ADMIN_PERM,
14019 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14020 NL80211_FLAG_NEED_RTNL,
14023 .cmd = NL80211_CMD_DEL_NAN_FUNCTION,
14024 .doit = nl80211_nan_del_func,
14025 .flags = GENL_ADMIN_PERM,
14026 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14027 NL80211_FLAG_NEED_RTNL,
14030 .cmd = NL80211_CMD_CHANGE_NAN_CONFIG,
14031 .doit = nl80211_nan_change_config,
14032 .flags = GENL_ADMIN_PERM,
14033 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14034 NL80211_FLAG_NEED_RTNL,
14037 .cmd = NL80211_CMD_SET_MCAST_RATE,
14038 .doit = nl80211_set_mcast_rate,
14039 .flags = GENL_UNS_ADMIN_PERM,
14040 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14041 NL80211_FLAG_NEED_RTNL,
14044 .cmd = NL80211_CMD_SET_MAC_ACL,
14045 .doit = nl80211_set_mac_acl,
14046 .flags = GENL_UNS_ADMIN_PERM,
14047 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14048 NL80211_FLAG_NEED_RTNL,
14051 .cmd = NL80211_CMD_RADAR_DETECT,
14052 .doit = nl80211_start_radar_detection,
14053 .flags = GENL_UNS_ADMIN_PERM,
14054 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14055 NL80211_FLAG_NEED_RTNL,
14058 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
14059 .doit = nl80211_get_protocol_features,
14062 .cmd = NL80211_CMD_UPDATE_FT_IES,
14063 .doit = nl80211_update_ft_ies,
14064 .flags = GENL_UNS_ADMIN_PERM,
14065 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14066 NL80211_FLAG_NEED_RTNL,
14069 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
14070 .doit = nl80211_crit_protocol_start,
14071 .flags = GENL_UNS_ADMIN_PERM,
14072 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14073 NL80211_FLAG_NEED_RTNL,
14076 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
14077 .doit = nl80211_crit_protocol_stop,
14078 .flags = GENL_UNS_ADMIN_PERM,
14079 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14080 NL80211_FLAG_NEED_RTNL,
14083 .cmd = NL80211_CMD_GET_COALESCE,
14084 .doit = nl80211_get_coalesce,
14085 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14086 NL80211_FLAG_NEED_RTNL,
14089 .cmd = NL80211_CMD_SET_COALESCE,
14090 .doit = nl80211_set_coalesce,
14091 .flags = GENL_UNS_ADMIN_PERM,
14092 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14093 NL80211_FLAG_NEED_RTNL,
14096 .cmd = NL80211_CMD_CHANNEL_SWITCH,
14097 .doit = nl80211_channel_switch,
14098 .flags = GENL_UNS_ADMIN_PERM,
14099 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14100 NL80211_FLAG_NEED_RTNL,
14103 .cmd = NL80211_CMD_VENDOR,
14104 .doit = nl80211_vendor_cmd,
14105 .dumpit = nl80211_vendor_cmd_dump,
14106 .flags = GENL_UNS_ADMIN_PERM,
14107 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14108 NL80211_FLAG_NEED_RTNL,
14111 .cmd = NL80211_CMD_SET_QOS_MAP,
14112 .doit = nl80211_set_qos_map,
14113 .flags = GENL_UNS_ADMIN_PERM,
14114 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14115 NL80211_FLAG_NEED_RTNL,
14118 .cmd = NL80211_CMD_ADD_TX_TS,
14119 .doit = nl80211_add_tx_ts,
14120 .flags = GENL_UNS_ADMIN_PERM,
14121 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14122 NL80211_FLAG_NEED_RTNL,
14125 .cmd = NL80211_CMD_DEL_TX_TS,
14126 .doit = nl80211_del_tx_ts,
14127 .flags = GENL_UNS_ADMIN_PERM,
14128 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14129 NL80211_FLAG_NEED_RTNL,
14132 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
14133 .doit = nl80211_tdls_channel_switch,
14134 .flags = GENL_UNS_ADMIN_PERM,
14135 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14136 NL80211_FLAG_NEED_RTNL,
14139 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
14140 .doit = nl80211_tdls_cancel_channel_switch,
14141 .flags = GENL_UNS_ADMIN_PERM,
14142 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14143 NL80211_FLAG_NEED_RTNL,
14146 .cmd = NL80211_CMD_SET_MULTICAST_TO_UNICAST,
14147 .doit = nl80211_set_multicast_to_unicast,
14148 .flags = GENL_UNS_ADMIN_PERM,
14149 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14150 NL80211_FLAG_NEED_RTNL,
14153 .cmd = NL80211_CMD_SET_PMK,
14154 .doit = nl80211_set_pmk,
14155 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14156 NL80211_FLAG_NEED_RTNL,
14159 .cmd = NL80211_CMD_DEL_PMK,
14160 .doit = nl80211_del_pmk,
14161 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14162 NL80211_FLAG_NEED_RTNL,
14165 .cmd = NL80211_CMD_EXTERNAL_AUTH,
14166 .doit = nl80211_external_auth,
14167 .flags = GENL_ADMIN_PERM,
14168 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14169 NL80211_FLAG_NEED_RTNL,
14172 .cmd = NL80211_CMD_CONTROL_PORT_FRAME,
14173 .doit = nl80211_tx_control_port,
14174 .flags = GENL_UNS_ADMIN_PERM,
14175 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14176 NL80211_FLAG_NEED_RTNL,
14179 .cmd = NL80211_CMD_GET_FTM_RESPONDER_STATS,
14180 .doit = nl80211_get_ftm_responder_stats,
14181 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14182 NL80211_FLAG_NEED_RTNL,
14185 .cmd = NL80211_CMD_PEER_MEASUREMENT_START,
14186 .doit = nl80211_pmsr_start,
14187 .flags = GENL_UNS_ADMIN_PERM,
14188 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14189 NL80211_FLAG_NEED_RTNL,
14192 .cmd = NL80211_CMD_NOTIFY_RADAR,
14193 .doit = nl80211_notify_radar_detection,
14194 .flags = GENL_UNS_ADMIN_PERM,
14195 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14196 NL80211_FLAG_NEED_RTNL,
14199 .cmd = NL80211_CMD_UPDATE_OWE_INFO,
14200 .doit = nl80211_update_owe_info,
14201 .flags = GENL_ADMIN_PERM,
14202 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14203 NL80211_FLAG_NEED_RTNL,
14207 static struct genl_family nl80211_fam __ro_after_init = {
14208 .name = NL80211_GENL_NAME, /* have users key off the name instead */
14209 .hdrsize = 0, /* no private header */
14210 .version = 1, /* no particular meaning now */
14211 .maxattr = NL80211_ATTR_MAX,
14212 .policy = nl80211_policy,
14214 .pre_doit = nl80211_pre_doit,
14215 .post_doit = nl80211_post_doit,
14216 .module = THIS_MODULE,
14217 .ops = nl80211_ops,
14218 .n_ops = ARRAY_SIZE(nl80211_ops),
14219 .mcgrps = nl80211_mcgrps,
14220 .n_mcgrps = ARRAY_SIZE(nl80211_mcgrps),
14223 /* notification functions */
14225 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
14226 enum nl80211_commands cmd)
14228 struct sk_buff *msg;
14229 struct nl80211_dump_wiphy_state state = {};
14231 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
14232 cmd != NL80211_CMD_DEL_WIPHY);
14234 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14238 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
14243 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14244 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14247 void nl80211_notify_iface(struct cfg80211_registered_device *rdev,
14248 struct wireless_dev *wdev,
14249 enum nl80211_commands cmd)
14251 struct sk_buff *msg;
14253 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14257 if (nl80211_send_iface(msg, 0, 0, 0, rdev, wdev, cmd) < 0) {
14262 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14263 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14266 static int nl80211_add_scan_req(struct sk_buff *msg,
14267 struct cfg80211_registered_device *rdev)
14269 struct cfg80211_scan_request *req = rdev->scan_req;
14270 struct nlattr *nest;
14276 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
14278 goto nla_put_failure;
14279 for (i = 0; i < req->n_ssids; i++) {
14280 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
14281 goto nla_put_failure;
14283 nla_nest_end(msg, nest);
14285 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
14287 goto nla_put_failure;
14288 for (i = 0; i < req->n_channels; i++) {
14289 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
14290 goto nla_put_failure;
14292 nla_nest_end(msg, nest);
14295 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
14296 goto nla_put_failure;
14299 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
14300 goto nla_put_failure;
14302 if (req->info.scan_start_tsf &&
14303 (nla_put_u64_64bit(msg, NL80211_ATTR_SCAN_START_TIME_TSF,
14304 req->info.scan_start_tsf, NL80211_BSS_PAD) ||
14305 nla_put(msg, NL80211_ATTR_SCAN_START_TIME_TSF_BSSID, ETH_ALEN,
14306 req->info.tsf_bssid)))
14307 goto nla_put_failure;
14314 static int nl80211_prep_scan_msg(struct sk_buff *msg,
14315 struct cfg80211_registered_device *rdev,
14316 struct wireless_dev *wdev,
14317 u32 portid, u32 seq, int flags,
14322 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
14326 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14327 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14328 wdev->netdev->ifindex)) ||
14329 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14331 goto nla_put_failure;
14333 /* ignore errors and send incomplete event anyway */
14334 nl80211_add_scan_req(msg, rdev);
14336 genlmsg_end(msg, hdr);
14340 genlmsg_cancel(msg, hdr);
14345 nl80211_prep_sched_scan_msg(struct sk_buff *msg,
14346 struct cfg80211_sched_scan_request *req, u32 cmd)
14350 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14354 if (nla_put_u32(msg, NL80211_ATTR_WIPHY,
14355 wiphy_to_rdev(req->wiphy)->wiphy_idx) ||
14356 nla_put_u32(msg, NL80211_ATTR_IFINDEX, req->dev->ifindex) ||
14357 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, req->reqid,
14359 goto nla_put_failure;
14361 genlmsg_end(msg, hdr);
14365 genlmsg_cancel(msg, hdr);
14369 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
14370 struct wireless_dev *wdev)
14372 struct sk_buff *msg;
14374 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14378 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14379 NL80211_CMD_TRIGGER_SCAN) < 0) {
14384 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14385 NL80211_MCGRP_SCAN, GFP_KERNEL);
14388 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
14389 struct wireless_dev *wdev, bool aborted)
14391 struct sk_buff *msg;
14393 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14397 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14398 aborted ? NL80211_CMD_SCAN_ABORTED :
14399 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
14407 /* send message created by nl80211_build_scan_msg() */
14408 void nl80211_send_scan_msg(struct cfg80211_registered_device *rdev,
14409 struct sk_buff *msg)
14414 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14415 NL80211_MCGRP_SCAN, GFP_KERNEL);
14418 void nl80211_send_sched_scan(struct cfg80211_sched_scan_request *req, u32 cmd)
14420 struct sk_buff *msg;
14422 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14426 if (nl80211_prep_sched_scan_msg(msg, req, cmd) < 0) {
14431 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(req->wiphy), msg, 0,
14432 NL80211_MCGRP_SCAN, GFP_KERNEL);
14435 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
14436 struct regulatory_request *request)
14438 /* Userspace can always count this one always being set */
14439 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
14440 goto nla_put_failure;
14442 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
14443 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14444 NL80211_REGDOM_TYPE_WORLD))
14445 goto nla_put_failure;
14446 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
14447 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14448 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
14449 goto nla_put_failure;
14450 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
14451 request->intersect) {
14452 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14453 NL80211_REGDOM_TYPE_INTERSECTION))
14454 goto nla_put_failure;
14456 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14457 NL80211_REGDOM_TYPE_COUNTRY) ||
14458 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
14460 goto nla_put_failure;
14463 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
14464 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
14467 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
14468 goto nla_put_failure;
14471 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
14472 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
14473 goto nla_put_failure;
14483 * This can happen on global regulatory changes or device specific settings
14484 * based on custom regulatory domains.
14486 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
14487 struct regulatory_request *request)
14489 struct sk_buff *msg;
14492 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14496 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
14502 if (nl80211_reg_change_event_fill(msg, request) == false)
14503 goto nla_put_failure;
14505 genlmsg_end(msg, hdr);
14508 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
14509 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
14518 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
14519 struct net_device *netdev,
14520 const u8 *buf, size_t len,
14521 enum nl80211_commands cmd, gfp_t gfp,
14522 int uapsd_queues, const u8 *req_ies,
14523 size_t req_ies_len)
14525 struct sk_buff *msg;
14528 msg = nlmsg_new(100 + len + req_ies_len, gfp);
14532 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14538 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14539 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14540 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
14542 nla_put(msg, NL80211_ATTR_REQ_IE, req_ies_len, req_ies)))
14543 goto nla_put_failure;
14545 if (uapsd_queues >= 0) {
14546 struct nlattr *nla_wmm =
14547 nla_nest_start(msg, NL80211_ATTR_STA_WME);
14549 goto nla_put_failure;
14551 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
14553 goto nla_put_failure;
14555 nla_nest_end(msg, nla_wmm);
14558 genlmsg_end(msg, hdr);
14560 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14561 NL80211_MCGRP_MLME, gfp);
14568 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
14569 struct net_device *netdev, const u8 *buf,
14570 size_t len, gfp_t gfp)
14572 nl80211_send_mlme_event(rdev, netdev, buf, len,
14573 NL80211_CMD_AUTHENTICATE, gfp, -1, NULL, 0);
14576 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
14577 struct net_device *netdev, const u8 *buf,
14578 size_t len, gfp_t gfp, int uapsd_queues,
14579 const u8 *req_ies, size_t req_ies_len)
14581 nl80211_send_mlme_event(rdev, netdev, buf, len,
14582 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues,
14583 req_ies, req_ies_len);
14586 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
14587 struct net_device *netdev, const u8 *buf,
14588 size_t len, gfp_t gfp)
14590 nl80211_send_mlme_event(rdev, netdev, buf, len,
14591 NL80211_CMD_DEAUTHENTICATE, gfp, -1, NULL, 0);
14594 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
14595 struct net_device *netdev, const u8 *buf,
14596 size_t len, gfp_t gfp)
14598 nl80211_send_mlme_event(rdev, netdev, buf, len,
14599 NL80211_CMD_DISASSOCIATE, gfp, -1, NULL, 0);
14602 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
14605 struct wireless_dev *wdev = dev->ieee80211_ptr;
14606 struct wiphy *wiphy = wdev->wiphy;
14607 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14608 const struct ieee80211_mgmt *mgmt = (void *)buf;
14611 if (WARN_ON(len < 2))
14614 if (ieee80211_is_deauth(mgmt->frame_control))
14615 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
14617 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
14619 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
14620 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1,
14623 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
14625 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
14626 struct net_device *netdev, int cmd,
14627 const u8 *addr, gfp_t gfp)
14629 struct sk_buff *msg;
14632 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14636 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14642 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14643 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14644 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14645 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
14646 goto nla_put_failure;
14648 genlmsg_end(msg, hdr);
14650 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14651 NL80211_MCGRP_MLME, gfp);
14658 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
14659 struct net_device *netdev, const u8 *addr,
14662 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
14666 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
14667 struct net_device *netdev, const u8 *addr,
14670 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
14674 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
14675 struct net_device *netdev,
14676 struct cfg80211_connect_resp_params *cr,
14679 struct sk_buff *msg;
14682 msg = nlmsg_new(100 + cr->req_ie_len + cr->resp_ie_len +
14683 cr->fils.kek_len + cr->fils.pmk_len +
14684 (cr->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
14688 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
14694 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14695 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14697 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, cr->bssid)) ||
14698 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE,
14699 cr->status < 0 ? WLAN_STATUS_UNSPECIFIED_FAILURE :
14702 (nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14703 nla_put_u32(msg, NL80211_ATTR_TIMEOUT_REASON,
14704 cr->timeout_reason))) ||
14706 nla_put(msg, NL80211_ATTR_REQ_IE, cr->req_ie_len, cr->req_ie)) ||
14708 nla_put(msg, NL80211_ATTR_RESP_IE, cr->resp_ie_len,
14710 (cr->fils.update_erp_next_seq_num &&
14711 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
14712 cr->fils.erp_next_seq_num)) ||
14713 (cr->status == WLAN_STATUS_SUCCESS &&
14715 nla_put(msg, NL80211_ATTR_FILS_KEK, cr->fils.kek_len,
14718 nla_put(msg, NL80211_ATTR_PMK, cr->fils.pmk_len, cr->fils.pmk)) ||
14720 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, cr->fils.pmkid)))))
14721 goto nla_put_failure;
14723 genlmsg_end(msg, hdr);
14725 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14726 NL80211_MCGRP_MLME, gfp);
14733 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
14734 struct net_device *netdev,
14735 struct cfg80211_roam_info *info, gfp_t gfp)
14737 struct sk_buff *msg;
14739 const u8 *bssid = info->bss ? info->bss->bssid : info->bssid;
14741 msg = nlmsg_new(100 + info->req_ie_len + info->resp_ie_len +
14742 info->fils.kek_len + info->fils.pmk_len +
14743 (info->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
14747 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
14753 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14754 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14755 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
14757 nla_put(msg, NL80211_ATTR_REQ_IE, info->req_ie_len,
14760 nla_put(msg, NL80211_ATTR_RESP_IE, info->resp_ie_len,
14762 (info->fils.update_erp_next_seq_num &&
14763 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
14764 info->fils.erp_next_seq_num)) ||
14766 nla_put(msg, NL80211_ATTR_FILS_KEK, info->fils.kek_len,
14767 info->fils.kek)) ||
14769 nla_put(msg, NL80211_ATTR_PMK, info->fils.pmk_len, info->fils.pmk)) ||
14770 (info->fils.pmkid &&
14771 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, info->fils.pmkid)))
14772 goto nla_put_failure;
14774 genlmsg_end(msg, hdr);
14776 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14777 NL80211_MCGRP_MLME, gfp);
14784 void nl80211_send_port_authorized(struct cfg80211_registered_device *rdev,
14785 struct net_device *netdev, const u8 *bssid)
14787 struct sk_buff *msg;
14790 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14794 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PORT_AUTHORIZED);
14800 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
14801 goto nla_put_failure;
14803 genlmsg_end(msg, hdr);
14805 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14806 NL80211_MCGRP_MLME, GFP_KERNEL);
14813 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
14814 struct net_device *netdev, u16 reason,
14815 const u8 *ie, size_t ie_len, bool from_ap)
14817 struct sk_buff *msg;
14820 msg = nlmsg_new(100 + ie_len, GFP_KERNEL);
14824 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
14830 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14831 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14833 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
14835 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
14836 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
14837 goto nla_put_failure;
14839 genlmsg_end(msg, hdr);
14841 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14842 NL80211_MCGRP_MLME, GFP_KERNEL);
14849 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
14850 struct net_device *netdev, const u8 *bssid,
14853 struct sk_buff *msg;
14856 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14860 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
14866 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14867 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14868 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
14869 goto nla_put_failure;
14871 genlmsg_end(msg, hdr);
14873 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14874 NL80211_MCGRP_MLME, gfp);
14881 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
14882 const u8 *ie, u8 ie_len,
14883 int sig_dbm, gfp_t gfp)
14885 struct wireless_dev *wdev = dev->ieee80211_ptr;
14886 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
14887 struct sk_buff *msg;
14890 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
14893 trace_cfg80211_notify_new_peer_candidate(dev, addr);
14895 msg = nlmsg_new(100 + ie_len, gfp);
14899 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
14905 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14906 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
14907 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
14909 nla_put(msg, NL80211_ATTR_IE, ie_len, ie)) ||
14911 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)))
14912 goto nla_put_failure;
14914 genlmsg_end(msg, hdr);
14916 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14917 NL80211_MCGRP_MLME, gfp);
14923 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
14925 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
14926 struct net_device *netdev, const u8 *addr,
14927 enum nl80211_key_type key_type, int key_id,
14928 const u8 *tsc, gfp_t gfp)
14930 struct sk_buff *msg;
14933 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14937 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
14943 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14944 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14945 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
14946 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
14948 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
14949 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
14950 goto nla_put_failure;
14952 genlmsg_end(msg, hdr);
14954 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14955 NL80211_MCGRP_MLME, gfp);
14962 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
14963 struct ieee80211_channel *channel_before,
14964 struct ieee80211_channel *channel_after)
14966 struct sk_buff *msg;
14968 struct nlattr *nl_freq;
14970 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
14974 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
14981 * Since we are applying the beacon hint to a wiphy we know its
14982 * wiphy_idx is valid
14984 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
14985 goto nla_put_failure;
14988 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
14990 goto nla_put_failure;
14992 if (nl80211_msg_put_channel(msg, wiphy, channel_before, false))
14993 goto nla_put_failure;
14994 nla_nest_end(msg, nl_freq);
14997 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
14999 goto nla_put_failure;
15001 if (nl80211_msg_put_channel(msg, wiphy, channel_after, false))
15002 goto nla_put_failure;
15003 nla_nest_end(msg, nl_freq);
15005 genlmsg_end(msg, hdr);
15008 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
15009 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
15018 static void nl80211_send_remain_on_chan_event(
15019 int cmd, struct cfg80211_registered_device *rdev,
15020 struct wireless_dev *wdev, u64 cookie,
15021 struct ieee80211_channel *chan,
15022 unsigned int duration, gfp_t gfp)
15024 struct sk_buff *msg;
15027 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15031 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15037 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15038 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15039 wdev->netdev->ifindex)) ||
15040 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15041 NL80211_ATTR_PAD) ||
15042 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
15043 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
15044 NL80211_CHAN_NO_HT) ||
15045 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15047 goto nla_put_failure;
15049 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
15050 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
15051 goto nla_put_failure;
15053 genlmsg_end(msg, hdr);
15055 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15056 NL80211_MCGRP_MLME, gfp);
15063 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
15064 struct ieee80211_channel *chan,
15065 unsigned int duration, gfp_t gfp)
15067 struct wiphy *wiphy = wdev->wiphy;
15068 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15070 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
15071 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
15072 rdev, wdev, cookie, chan,
15075 EXPORT_SYMBOL(cfg80211_ready_on_channel);
15077 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
15078 struct ieee80211_channel *chan,
15081 struct wiphy *wiphy = wdev->wiphy;
15082 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15084 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
15085 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
15086 rdev, wdev, cookie, chan, 0, gfp);
15088 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
15090 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
15091 struct station_info *sinfo, gfp_t gfp)
15093 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15094 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15095 struct sk_buff *msg;
15097 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
15099 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15103 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION, 0, 0, 0,
15104 rdev, dev, mac_addr, sinfo) < 0) {
15109 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15110 NL80211_MCGRP_MLME, gfp);
15112 EXPORT_SYMBOL(cfg80211_new_sta);
15114 void cfg80211_del_sta_sinfo(struct net_device *dev, const u8 *mac_addr,
15115 struct station_info *sinfo, gfp_t gfp)
15117 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15118 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15119 struct sk_buff *msg;
15120 struct station_info empty_sinfo = {};
15123 sinfo = &empty_sinfo;
15125 trace_cfg80211_del_sta(dev, mac_addr);
15127 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15129 cfg80211_sinfo_release_content(sinfo);
15133 if (nl80211_send_station(msg, NL80211_CMD_DEL_STATION, 0, 0, 0,
15134 rdev, dev, mac_addr, sinfo) < 0) {
15139 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15140 NL80211_MCGRP_MLME, gfp);
15142 EXPORT_SYMBOL(cfg80211_del_sta_sinfo);
15144 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
15145 enum nl80211_connect_failed_reason reason,
15148 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15149 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15150 struct sk_buff *msg;
15153 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
15157 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
15163 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15164 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
15165 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
15166 goto nla_put_failure;
15168 genlmsg_end(msg, hdr);
15170 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15171 NL80211_MCGRP_MLME, gfp);
15177 EXPORT_SYMBOL(cfg80211_conn_failed);
15179 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
15180 const u8 *addr, gfp_t gfp)
15182 struct wireless_dev *wdev = dev->ieee80211_ptr;
15183 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15184 struct sk_buff *msg;
15186 u32 nlportid = READ_ONCE(wdev->ap_unexpected_nlportid);
15191 msg = nlmsg_new(100, gfp);
15195 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15201 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15202 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15203 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
15204 goto nla_put_failure;
15206 genlmsg_end(msg, hdr);
15207 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15215 bool cfg80211_rx_spurious_frame(struct net_device *dev,
15216 const u8 *addr, gfp_t gfp)
15218 struct wireless_dev *wdev = dev->ieee80211_ptr;
15221 trace_cfg80211_rx_spurious_frame(dev, addr);
15223 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15224 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
15225 trace_cfg80211_return_bool(false);
15228 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
15230 trace_cfg80211_return_bool(ret);
15233 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
15235 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
15236 const u8 *addr, gfp_t gfp)
15238 struct wireless_dev *wdev = dev->ieee80211_ptr;
15241 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
15243 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15244 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
15245 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
15246 trace_cfg80211_return_bool(false);
15249 ret = __nl80211_unexpected_frame(dev,
15250 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
15252 trace_cfg80211_return_bool(ret);
15255 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
15257 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
15258 struct wireless_dev *wdev, u32 nlportid,
15259 int freq, int sig_dbm,
15260 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
15262 struct net_device *netdev = wdev->netdev;
15263 struct sk_buff *msg;
15266 msg = nlmsg_new(100 + len, gfp);
15270 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15276 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15277 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15278 netdev->ifindex)) ||
15279 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15280 NL80211_ATTR_PAD) ||
15281 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
15283 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15284 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15286 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
15287 goto nla_put_failure;
15289 genlmsg_end(msg, hdr);
15291 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15298 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
15299 const u8 *buf, size_t len, bool ack, gfp_t gfp)
15301 struct wiphy *wiphy = wdev->wiphy;
15302 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15303 struct net_device *netdev = wdev->netdev;
15304 struct sk_buff *msg;
15307 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
15309 msg = nlmsg_new(100 + len, gfp);
15313 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
15319 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15320 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15321 netdev->ifindex)) ||
15322 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15323 NL80211_ATTR_PAD) ||
15324 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15325 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15326 NL80211_ATTR_PAD) ||
15327 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
15328 goto nla_put_failure;
15330 genlmsg_end(msg, hdr);
15332 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15333 NL80211_MCGRP_MLME, gfp);
15339 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
15341 static int __nl80211_rx_control_port(struct net_device *dev,
15342 struct sk_buff *skb,
15343 bool unencrypted, gfp_t gfp)
15345 struct wireless_dev *wdev = dev->ieee80211_ptr;
15346 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15347 struct ethhdr *ehdr = eth_hdr(skb);
15348 const u8 *addr = ehdr->h_source;
15349 u16 proto = be16_to_cpu(skb->protocol);
15350 struct sk_buff *msg;
15352 struct nlattr *frame;
15354 u32 nlportid = READ_ONCE(wdev->conn_owner_nlportid);
15359 msg = nlmsg_new(100 + skb->len, gfp);
15363 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONTROL_PORT_FRAME);
15369 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15370 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15371 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15372 NL80211_ATTR_PAD) ||
15373 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15374 nla_put_u16(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE, proto) ||
15375 (unencrypted && nla_put_flag(msg,
15376 NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT)))
15377 goto nla_put_failure;
15379 frame = nla_reserve(msg, NL80211_ATTR_FRAME, skb->len);
15381 goto nla_put_failure;
15383 skb_copy_bits(skb, 0, nla_data(frame), skb->len);
15384 genlmsg_end(msg, hdr);
15386 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15393 bool cfg80211_rx_control_port(struct net_device *dev,
15394 struct sk_buff *skb, bool unencrypted)
15398 trace_cfg80211_rx_control_port(dev, skb, unencrypted);
15399 ret = __nl80211_rx_control_port(dev, skb, unencrypted, GFP_ATOMIC);
15400 trace_cfg80211_return_bool(ret == 0);
15403 EXPORT_SYMBOL(cfg80211_rx_control_port);
15405 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
15406 const char *mac, gfp_t gfp)
15408 struct wireless_dev *wdev = dev->ieee80211_ptr;
15409 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15410 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15416 cb = (void **)msg->cb;
15418 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
15424 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15425 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15426 goto nla_put_failure;
15428 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15429 goto nla_put_failure;
15431 cb[1] = nla_nest_start(msg, NL80211_ATTR_CQM);
15433 goto nla_put_failure;
15443 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
15445 void **cb = (void **)msg->cb;
15446 struct cfg80211_registered_device *rdev = cb[2];
15448 nla_nest_end(msg, cb[1]);
15449 genlmsg_end(msg, cb[0]);
15451 memset(msg->cb, 0, sizeof(msg->cb));
15453 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15454 NL80211_MCGRP_MLME, gfp);
15457 void cfg80211_cqm_rssi_notify(struct net_device *dev,
15458 enum nl80211_cqm_rssi_threshold_event rssi_event,
15459 s32 rssi_level, gfp_t gfp)
15461 struct sk_buff *msg;
15462 struct wireless_dev *wdev = dev->ieee80211_ptr;
15463 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15465 trace_cfg80211_cqm_rssi_notify(dev, rssi_event, rssi_level);
15467 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
15468 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
15471 if (wdev->cqm_config) {
15472 wdev->cqm_config->last_rssi_event_value = rssi_level;
15474 cfg80211_cqm_rssi_update(rdev, dev);
15476 if (rssi_level == 0)
15477 rssi_level = wdev->cqm_config->last_rssi_event_value;
15480 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15484 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
15486 goto nla_put_failure;
15488 if (rssi_level && nla_put_s32(msg, NL80211_ATTR_CQM_RSSI_LEVEL,
15490 goto nla_put_failure;
15492 cfg80211_send_cqm(msg, gfp);
15499 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
15501 void cfg80211_cqm_txe_notify(struct net_device *dev,
15502 const u8 *peer, u32 num_packets,
15503 u32 rate, u32 intvl, gfp_t gfp)
15505 struct sk_buff *msg;
15507 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15511 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
15512 goto nla_put_failure;
15514 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
15515 goto nla_put_failure;
15517 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
15518 goto nla_put_failure;
15520 cfg80211_send_cqm(msg, gfp);
15526 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
15528 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
15529 const u8 *peer, u32 num_packets, gfp_t gfp)
15531 struct sk_buff *msg;
15533 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
15535 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15539 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
15540 goto nla_put_failure;
15542 cfg80211_send_cqm(msg, gfp);
15548 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
15550 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
15552 struct sk_buff *msg;
15554 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15558 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
15559 goto nla_put_failure;
15561 cfg80211_send_cqm(msg, gfp);
15567 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
15569 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
15570 struct net_device *netdev, const u8 *bssid,
15571 const u8 *replay_ctr, gfp_t gfp)
15573 struct sk_buff *msg;
15574 struct nlattr *rekey_attr;
15577 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15581 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
15587 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15588 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15589 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15590 goto nla_put_failure;
15592 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
15594 goto nla_put_failure;
15596 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
15597 NL80211_REPLAY_CTR_LEN, replay_ctr))
15598 goto nla_put_failure;
15600 nla_nest_end(msg, rekey_attr);
15602 genlmsg_end(msg, hdr);
15604 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15605 NL80211_MCGRP_MLME, gfp);
15612 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
15613 const u8 *replay_ctr, gfp_t gfp)
15615 struct wireless_dev *wdev = dev->ieee80211_ptr;
15616 struct wiphy *wiphy = wdev->wiphy;
15617 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15619 trace_cfg80211_gtk_rekey_notify(dev, bssid);
15620 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
15622 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
15625 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
15626 struct net_device *netdev, int index,
15627 const u8 *bssid, bool preauth, gfp_t gfp)
15629 struct sk_buff *msg;
15630 struct nlattr *attr;
15633 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15637 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
15643 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15644 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15645 goto nla_put_failure;
15647 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
15649 goto nla_put_failure;
15651 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
15652 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
15654 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
15655 goto nla_put_failure;
15657 nla_nest_end(msg, attr);
15659 genlmsg_end(msg, hdr);
15661 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15662 NL80211_MCGRP_MLME, gfp);
15669 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
15670 const u8 *bssid, bool preauth, gfp_t gfp)
15672 struct wireless_dev *wdev = dev->ieee80211_ptr;
15673 struct wiphy *wiphy = wdev->wiphy;
15674 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15676 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
15677 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
15679 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
15681 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
15682 struct net_device *netdev,
15683 struct cfg80211_chan_def *chandef,
15685 enum nl80211_commands notif,
15688 struct sk_buff *msg;
15691 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15695 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
15701 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15702 goto nla_put_failure;
15704 if (nl80211_send_chandef(msg, chandef))
15705 goto nla_put_failure;
15707 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
15708 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
15709 goto nla_put_failure;
15711 genlmsg_end(msg, hdr);
15713 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15714 NL80211_MCGRP_MLME, gfp);
15721 void cfg80211_ch_switch_notify(struct net_device *dev,
15722 struct cfg80211_chan_def *chandef)
15724 struct wireless_dev *wdev = dev->ieee80211_ptr;
15725 struct wiphy *wiphy = wdev->wiphy;
15726 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15728 ASSERT_WDEV_LOCK(wdev);
15730 trace_cfg80211_ch_switch_notify(dev, chandef);
15732 wdev->chandef = *chandef;
15733 wdev->preset_chandef = *chandef;
15735 if (wdev->iftype == NL80211_IFTYPE_STATION &&
15736 !WARN_ON(!wdev->current_bss))
15737 wdev->current_bss->pub.channel = chandef->chan;
15739 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
15740 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
15742 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
15744 void cfg80211_ch_switch_started_notify(struct net_device *dev,
15745 struct cfg80211_chan_def *chandef,
15748 struct wireless_dev *wdev = dev->ieee80211_ptr;
15749 struct wiphy *wiphy = wdev->wiphy;
15750 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15752 trace_cfg80211_ch_switch_started_notify(dev, chandef);
15754 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
15755 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
15757 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
15760 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
15761 const struct cfg80211_chan_def *chandef,
15762 enum nl80211_radar_event event,
15763 struct net_device *netdev, gfp_t gfp)
15765 struct sk_buff *msg;
15768 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15772 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
15778 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
15779 goto nla_put_failure;
15781 /* NOP and radar events don't need a netdev parameter */
15783 struct wireless_dev *wdev = netdev->ieee80211_ptr;
15785 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15786 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15788 goto nla_put_failure;
15791 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
15792 goto nla_put_failure;
15794 if (nl80211_send_chandef(msg, chandef))
15795 goto nla_put_failure;
15797 genlmsg_end(msg, hdr);
15799 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15800 NL80211_MCGRP_MLME, gfp);
15807 void cfg80211_sta_opmode_change_notify(struct net_device *dev, const u8 *mac,
15808 struct sta_opmode_info *sta_opmode,
15811 struct sk_buff *msg;
15812 struct wireless_dev *wdev = dev->ieee80211_ptr;
15813 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15819 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15823 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STA_OPMODE_CHANGED);
15829 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
15830 goto nla_put_failure;
15832 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15833 goto nla_put_failure;
15835 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15836 goto nla_put_failure;
15838 if ((sta_opmode->changed & STA_OPMODE_SMPS_MODE_CHANGED) &&
15839 nla_put_u8(msg, NL80211_ATTR_SMPS_MODE, sta_opmode->smps_mode))
15840 goto nla_put_failure;
15842 if ((sta_opmode->changed & STA_OPMODE_MAX_BW_CHANGED) &&
15843 nla_put_u8(msg, NL80211_ATTR_CHANNEL_WIDTH, sta_opmode->bw))
15844 goto nla_put_failure;
15846 if ((sta_opmode->changed & STA_OPMODE_N_SS_CHANGED) &&
15847 nla_put_u8(msg, NL80211_ATTR_NSS, sta_opmode->rx_nss))
15848 goto nla_put_failure;
15850 genlmsg_end(msg, hdr);
15852 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15853 NL80211_MCGRP_MLME, gfp);
15860 EXPORT_SYMBOL(cfg80211_sta_opmode_change_notify);
15862 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
15863 u64 cookie, bool acked, s32 ack_signal,
15864 bool is_valid_ack_signal, gfp_t gfp)
15866 struct wireless_dev *wdev = dev->ieee80211_ptr;
15867 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15868 struct sk_buff *msg;
15871 trace_cfg80211_probe_status(dev, addr, cookie, acked);
15873 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15878 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
15884 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15885 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15886 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15887 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15888 NL80211_ATTR_PAD) ||
15889 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)) ||
15890 (is_valid_ack_signal && nla_put_s32(msg, NL80211_ATTR_ACK_SIGNAL,
15892 goto nla_put_failure;
15894 genlmsg_end(msg, hdr);
15896 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15897 NL80211_MCGRP_MLME, gfp);
15903 EXPORT_SYMBOL(cfg80211_probe_status);
15905 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
15906 const u8 *frame, size_t len,
15907 int freq, int sig_dbm)
15909 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15910 struct sk_buff *msg;
15912 struct cfg80211_beacon_registration *reg;
15914 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
15916 spin_lock_bh(&rdev->beacon_registrations_lock);
15917 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
15918 msg = nlmsg_new(len + 100, GFP_ATOMIC);
15920 spin_unlock_bh(&rdev->beacon_registrations_lock);
15924 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15926 goto nla_put_failure;
15928 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15930 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
15932 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15933 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
15934 goto nla_put_failure;
15936 genlmsg_end(msg, hdr);
15938 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
15940 spin_unlock_bh(&rdev->beacon_registrations_lock);
15944 spin_unlock_bh(&rdev->beacon_registrations_lock);
15947 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
15950 static int cfg80211_net_detect_results(struct sk_buff *msg,
15951 struct cfg80211_wowlan_wakeup *wakeup)
15953 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
15954 struct nlattr *nl_results, *nl_match, *nl_freqs;
15957 nl_results = nla_nest_start(
15958 msg, NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
15962 for (i = 0; i < nd->n_matches; i++) {
15963 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
15965 nl_match = nla_nest_start(msg, i);
15969 /* The SSID attribute is optional in nl80211, but for
15970 * simplicity reasons it's always present in the
15971 * cfg80211 structure. If a driver can't pass the
15972 * SSID, that needs to be changed. A zero length SSID
15973 * is still a valid SSID (wildcard), so it cannot be
15974 * used for this purpose.
15976 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
15977 match->ssid.ssid)) {
15978 nla_nest_cancel(msg, nl_match);
15982 if (match->n_channels) {
15983 nl_freqs = nla_nest_start(
15984 msg, NL80211_ATTR_SCAN_FREQUENCIES);
15986 nla_nest_cancel(msg, nl_match);
15990 for (j = 0; j < match->n_channels; j++) {
15991 if (nla_put_u32(msg, j, match->channels[j])) {
15992 nla_nest_cancel(msg, nl_freqs);
15993 nla_nest_cancel(msg, nl_match);
15998 nla_nest_end(msg, nl_freqs);
16001 nla_nest_end(msg, nl_match);
16005 nla_nest_end(msg, nl_results);
16009 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
16010 struct cfg80211_wowlan_wakeup *wakeup,
16013 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16014 struct sk_buff *msg;
16018 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
16021 size += wakeup->packet_present_len;
16023 msg = nlmsg_new(size, gfp);
16027 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
16031 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16032 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16036 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
16037 wdev->netdev->ifindex))
16041 struct nlattr *reasons;
16043 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
16047 if (wakeup->disconnect &&
16048 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
16050 if (wakeup->magic_pkt &&
16051 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
16053 if (wakeup->gtk_rekey_failure &&
16054 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
16056 if (wakeup->eap_identity_req &&
16057 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
16059 if (wakeup->four_way_handshake &&
16060 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
16062 if (wakeup->rfkill_release &&
16063 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
16066 if (wakeup->pattern_idx >= 0 &&
16067 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
16068 wakeup->pattern_idx))
16071 if (wakeup->tcp_match &&
16072 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
16075 if (wakeup->tcp_connlost &&
16076 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
16079 if (wakeup->tcp_nomoretokens &&
16081 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
16084 if (wakeup->packet) {
16085 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
16086 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
16088 if (!wakeup->packet_80211) {
16090 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
16092 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
16095 if (wakeup->packet_len &&
16096 nla_put_u32(msg, len_attr, wakeup->packet_len))
16099 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
16104 if (wakeup->net_detect &&
16105 cfg80211_net_detect_results(msg, wakeup))
16108 nla_nest_end(msg, reasons);
16111 genlmsg_end(msg, hdr);
16113 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16114 NL80211_MCGRP_MLME, gfp);
16120 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
16123 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
16124 enum nl80211_tdls_operation oper,
16125 u16 reason_code, gfp_t gfp)
16127 struct wireless_dev *wdev = dev->ieee80211_ptr;
16128 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16129 struct sk_buff *msg;
16132 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
16135 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16139 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
16145 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16146 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16147 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
16148 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
16149 (reason_code > 0 &&
16150 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
16151 goto nla_put_failure;
16153 genlmsg_end(msg, hdr);
16155 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16156 NL80211_MCGRP_MLME, gfp);
16162 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
16164 static int nl80211_netlink_notify(struct notifier_block * nb,
16165 unsigned long state,
16168 struct netlink_notify *notify = _notify;
16169 struct cfg80211_registered_device *rdev;
16170 struct wireless_dev *wdev;
16171 struct cfg80211_beacon_registration *reg, *tmp;
16173 if (state != NETLINK_URELEASE || notify->protocol != NETLINK_GENERIC)
16174 return NOTIFY_DONE;
16178 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
16179 struct cfg80211_sched_scan_request *sched_scan_req;
16181 list_for_each_entry_rcu(sched_scan_req,
16182 &rdev->sched_scan_req_list,
16184 if (sched_scan_req->owner_nlportid == notify->portid) {
16185 sched_scan_req->nl_owner_dead = true;
16186 schedule_work(&rdev->sched_scan_stop_wk);
16190 list_for_each_entry_rcu(wdev, &rdev->wiphy.wdev_list, list) {
16191 cfg80211_mlme_unregister_socket(wdev, notify->portid);
16193 if (wdev->owner_nlportid == notify->portid) {
16194 wdev->nl_owner_dead = true;
16195 schedule_work(&rdev->destroy_work);
16196 } else if (wdev->conn_owner_nlportid == notify->portid) {
16197 schedule_work(&wdev->disconnect_wk);
16200 cfg80211_release_pmsr(wdev, notify->portid);
16203 spin_lock_bh(&rdev->beacon_registrations_lock);
16204 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
16206 if (reg->nlportid == notify->portid) {
16207 list_del(®->list);
16212 spin_unlock_bh(&rdev->beacon_registrations_lock);
16218 * It is possible that the user space process that is controlling the
16219 * indoor setting disappeared, so notify the regulatory core.
16221 regulatory_netlink_notify(notify->portid);
16225 static struct notifier_block nl80211_netlink_notifier = {
16226 .notifier_call = nl80211_netlink_notify,
16229 void cfg80211_ft_event(struct net_device *netdev,
16230 struct cfg80211_ft_event_params *ft_event)
16232 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16233 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16234 struct sk_buff *msg;
16237 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
16239 if (!ft_event->target_ap)
16242 msg = nlmsg_new(100 + ft_event->ies_len + ft_event->ric_ies_len,
16247 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
16251 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16252 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16253 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
16256 if (ft_event->ies &&
16257 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
16259 if (ft_event->ric_ies &&
16260 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
16261 ft_event->ric_ies))
16264 genlmsg_end(msg, hdr);
16266 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16267 NL80211_MCGRP_MLME, GFP_KERNEL);
16272 EXPORT_SYMBOL(cfg80211_ft_event);
16274 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
16276 struct cfg80211_registered_device *rdev;
16277 struct sk_buff *msg;
16281 rdev = wiphy_to_rdev(wdev->wiphy);
16282 if (!rdev->crit_proto_nlportid)
16285 nlportid = rdev->crit_proto_nlportid;
16286 rdev->crit_proto_nlportid = 0;
16288 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16292 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
16294 goto nla_put_failure;
16296 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16297 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16299 goto nla_put_failure;
16301 genlmsg_end(msg, hdr);
16303 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
16309 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
16311 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
16313 struct wiphy *wiphy = wdev->wiphy;
16314 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16315 struct sk_buff *msg;
16318 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
16322 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
16326 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16327 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
16328 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16332 genlmsg_end(msg, hdr);
16334 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
16335 NL80211_MCGRP_MLME, GFP_KERNEL);
16341 int cfg80211_external_auth_request(struct net_device *dev,
16342 struct cfg80211_external_auth_params *params,
16345 struct wireless_dev *wdev = dev->ieee80211_ptr;
16346 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16347 struct sk_buff *msg;
16350 if (!wdev->conn_owner_nlportid)
16353 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16357 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_EXTERNAL_AUTH);
16359 goto nla_put_failure;
16361 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16362 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16363 nla_put_u32(msg, NL80211_ATTR_AKM_SUITES, params->key_mgmt_suite) ||
16364 nla_put_u32(msg, NL80211_ATTR_EXTERNAL_AUTH_ACTION,
16366 nla_put(msg, NL80211_ATTR_BSSID, ETH_ALEN, params->bssid) ||
16367 nla_put(msg, NL80211_ATTR_SSID, params->ssid.ssid_len,
16368 params->ssid.ssid))
16369 goto nla_put_failure;
16371 genlmsg_end(msg, hdr);
16372 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
16373 wdev->conn_owner_nlportid);
16380 EXPORT_SYMBOL(cfg80211_external_auth_request);
16382 void cfg80211_update_owe_info_event(struct net_device *netdev,
16383 struct cfg80211_update_owe_info *owe_info,
16386 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16387 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16388 struct sk_buff *msg;
16391 trace_cfg80211_update_owe_info_event(wiphy, netdev, owe_info);
16393 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16397 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_UPDATE_OWE_INFO);
16399 goto nla_put_failure;
16401 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16402 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16403 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, owe_info->peer))
16404 goto nla_put_failure;
16406 if (!owe_info->ie_len ||
16407 nla_put(msg, NL80211_ATTR_IE, owe_info->ie_len, owe_info->ie))
16408 goto nla_put_failure;
16410 genlmsg_end(msg, hdr);
16412 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16413 NL80211_MCGRP_MLME, gfp);
16417 genlmsg_cancel(msg, hdr);
16420 EXPORT_SYMBOL(cfg80211_update_owe_info_event);
16422 /* initialisation/exit functions */
16424 int __init nl80211_init(void)
16428 err = genl_register_family(&nl80211_fam);
16432 err = netlink_register_notifier(&nl80211_netlink_notifier);
16438 genl_unregister_family(&nl80211_fam);
16442 void nl80211_exit(void)
16444 netlink_unregister_notifier(&nl80211_netlink_notifier);
16445 genl_unregister_family(&nl80211_fam);
projects / linux.git / blob