2 * This is the new netlink-based wireless configuration interface.
4 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
5 * Copyright 2013-2014 Intel Mobile Communications GmbH
6 * Copyright 2015-2017 Intel Deutschland GmbH
7 * Copyright (C) 2018-2019 Intel Corporation
11 #include <linux/module.h>
12 #include <linux/err.h>
13 #include <linux/slab.h>
14 #include <linux/list.h>
15 #include <linux/if_ether.h>
16 #include <linux/ieee80211.h>
17 #include <linux/nl80211.h>
18 #include <linux/rtnetlink.h>
19 #include <linux/netlink.h>
20 #include <linux/nospec.h>
21 #include <linux/etherdevice.h>
22 #include <net/net_namespace.h>
23 #include <net/genetlink.h>
24 #include <net/cfg80211.h>
26 #include <net/inet_connection_sock.h>
32 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
33 struct genl_info *info,
34 struct cfg80211_crypto_settings *settings,
37 /* the netlink family */
38 static struct genl_family nl80211_fam;
40 /* multicast groups */
41 enum nl80211_multicast_groups {
44 NL80211_MCGRP_REGULATORY,
48 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
51 static const struct genl_multicast_group nl80211_mcgrps[] = {
52 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
53 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
54 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
55 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
56 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
57 [NL80211_MCGRP_NAN] = { .name = NL80211_MULTICAST_GROUP_NAN },
58 #ifdef CONFIG_NL80211_TESTMODE
59 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
63 /* returns ERR_PTR values */
64 static struct wireless_dev *
65 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
67 struct cfg80211_registered_device *rdev;
68 struct wireless_dev *result = NULL;
69 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
70 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
77 if (!have_ifidx && !have_wdev_id)
78 return ERR_PTR(-EINVAL);
81 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
83 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
84 wiphy_idx = wdev_id >> 32;
87 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
88 struct wireless_dev *wdev;
90 if (wiphy_net(&rdev->wiphy) != netns)
93 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
96 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
97 if (have_ifidx && wdev->netdev &&
98 wdev->netdev->ifindex == ifidx) {
102 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
114 return ERR_PTR(-ENODEV);
117 static struct cfg80211_registered_device *
118 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
120 struct cfg80211_registered_device *rdev = NULL, *tmp;
121 struct net_device *netdev;
125 if (!attrs[NL80211_ATTR_WIPHY] &&
126 !attrs[NL80211_ATTR_IFINDEX] &&
127 !attrs[NL80211_ATTR_WDEV])
128 return ERR_PTR(-EINVAL);
130 if (attrs[NL80211_ATTR_WIPHY])
131 rdev = cfg80211_rdev_by_wiphy_idx(
132 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
134 if (attrs[NL80211_ATTR_WDEV]) {
135 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
136 struct wireless_dev *wdev;
139 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
141 /* make sure wdev exists */
142 list_for_each_entry(wdev, &tmp->wiphy.wdev_list, list) {
143 if (wdev->identifier != (u32)wdev_id)
152 if (rdev && tmp != rdev)
153 return ERR_PTR(-EINVAL);
158 if (attrs[NL80211_ATTR_IFINDEX]) {
159 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
161 netdev = __dev_get_by_index(netns, ifindex);
163 if (netdev->ieee80211_ptr)
165 netdev->ieee80211_ptr->wiphy);
169 /* not wireless device -- return error */
171 return ERR_PTR(-EINVAL);
173 /* mismatch -- return error */
174 if (rdev && tmp != rdev)
175 return ERR_PTR(-EINVAL);
182 return ERR_PTR(-ENODEV);
184 if (netns != wiphy_net(&rdev->wiphy))
185 return ERR_PTR(-ENODEV);
191 * This function returns a pointer to the driver
192 * that the genl_info item that is passed refers to.
194 * The result of this can be a PTR_ERR and hence must
195 * be checked with IS_ERR() for errors.
197 static struct cfg80211_registered_device *
198 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
200 return __cfg80211_rdev_from_attrs(netns, info->attrs);
203 static int validate_ie_attr(const struct nlattr *attr,
204 struct netlink_ext_ack *extack)
206 const u8 *data = nla_data(attr);
207 unsigned int len = nla_len(attr);
208 const struct element *elem;
210 for_each_element(elem, data, len) {
214 if (for_each_element_completed(elem, data, len))
217 NL_SET_ERR_MSG_ATTR(extack, attr, "malformed information elements");
221 /* policy for the attributes */
222 static const struct nla_policy
223 nl80211_ftm_responder_policy[NL80211_FTM_RESP_ATTR_MAX + 1] = {
224 [NL80211_FTM_RESP_ATTR_ENABLED] = { .type = NLA_FLAG, },
225 [NL80211_FTM_RESP_ATTR_LCI] = { .type = NLA_BINARY,
227 [NL80211_FTM_RESP_ATTR_CIVICLOC] = { .type = NLA_BINARY,
231 static const struct nla_policy
232 nl80211_pmsr_ftm_req_attr_policy[NL80211_PMSR_FTM_REQ_ATTR_MAX + 1] = {
233 [NL80211_PMSR_FTM_REQ_ATTR_ASAP] = { .type = NLA_FLAG },
234 [NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE] = { .type = NLA_U32 },
235 [NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP] =
236 NLA_POLICY_MAX(NLA_U8, 15),
237 [NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD] = { .type = NLA_U16 },
238 [NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION] =
239 NLA_POLICY_MAX(NLA_U8, 15),
240 [NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST] =
241 NLA_POLICY_MAX(NLA_U8, 31),
242 [NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES] = { .type = NLA_U8 },
243 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI] = { .type = NLA_FLAG },
244 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC] = { .type = NLA_FLAG },
247 static const struct nla_policy
248 nl80211_pmsr_req_data_policy[NL80211_PMSR_TYPE_MAX + 1] = {
249 [NL80211_PMSR_TYPE_FTM] =
250 NLA_POLICY_NESTED(nl80211_pmsr_ftm_req_attr_policy),
253 static const struct nla_policy
254 nl80211_pmsr_req_attr_policy[NL80211_PMSR_REQ_ATTR_MAX + 1] = {
255 [NL80211_PMSR_REQ_ATTR_DATA] =
256 NLA_POLICY_NESTED(nl80211_pmsr_req_data_policy),
257 [NL80211_PMSR_REQ_ATTR_GET_AP_TSF] = { .type = NLA_FLAG },
260 static const struct nla_policy
261 nl80211_psmr_peer_attr_policy[NL80211_PMSR_PEER_ATTR_MAX + 1] = {
262 [NL80211_PMSR_PEER_ATTR_ADDR] = NLA_POLICY_ETH_ADDR,
264 * we could specify this again to be the top-level policy,
265 * but that would open us up to recursion problems ...
267 [NL80211_PMSR_PEER_ATTR_CHAN] = { .type = NLA_NESTED },
268 [NL80211_PMSR_PEER_ATTR_REQ] =
269 NLA_POLICY_NESTED(nl80211_pmsr_req_attr_policy),
270 [NL80211_PMSR_PEER_ATTR_RESP] = { .type = NLA_REJECT },
273 static const struct nla_policy
274 nl80211_pmsr_attr_policy[NL80211_PMSR_ATTR_MAX + 1] = {
275 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_REJECT },
276 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_REJECT },
277 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_REJECT },
278 [NL80211_PMSR_ATTR_TYPE_CAPA] = { .type = NLA_REJECT },
279 [NL80211_PMSR_ATTR_PEERS] =
280 NLA_POLICY_NESTED_ARRAY(nl80211_psmr_peer_attr_policy),
283 const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
284 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
285 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
287 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
289 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
290 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
291 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
292 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
293 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
295 [NL80211_ATTR_WIPHY_RETRY_SHORT] = NLA_POLICY_MIN(NLA_U8, 1),
296 [NL80211_ATTR_WIPHY_RETRY_LONG] = NLA_POLICY_MIN(NLA_U8, 1),
297 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
298 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
299 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
300 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
302 [NL80211_ATTR_IFTYPE] = NLA_POLICY_MAX(NLA_U32, NL80211_IFTYPE_MAX),
303 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
304 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
306 [NL80211_ATTR_MAC] = { .len = ETH_ALEN },
307 [NL80211_ATTR_PREV_BSSID] = { .len = ETH_ALEN },
309 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
310 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
311 .len = WLAN_MAX_KEY_LEN },
312 [NL80211_ATTR_KEY_IDX] = NLA_POLICY_MAX(NLA_U8, 5),
313 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
314 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
315 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
316 [NL80211_ATTR_KEY_TYPE] =
317 NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES),
319 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
320 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
321 [NL80211_ATTR_BEACON_HEAD] = { .type = NLA_BINARY,
322 .len = IEEE80211_MAX_DATA_LEN },
323 [NL80211_ATTR_BEACON_TAIL] =
324 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
325 IEEE80211_MAX_DATA_LEN),
326 [NL80211_ATTR_STA_AID] =
327 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
328 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
329 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
330 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
331 .len = NL80211_MAX_SUPP_RATES },
332 [NL80211_ATTR_STA_PLINK_ACTION] =
333 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_ACTIONS - 1),
334 [NL80211_ATTR_STA_TX_POWER_SETTING] =
335 NLA_POLICY_RANGE(NLA_U8,
336 NL80211_TX_POWER_AUTOMATIC,
337 NL80211_TX_POWER_FIXED),
338 [NL80211_ATTR_STA_TX_POWER] = { .type = NLA_S16 },
339 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
340 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
341 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
342 .len = IEEE80211_MAX_MESH_ID_LEN },
343 [NL80211_ATTR_MPATH_NEXT_HOP] = { .type = NLA_U32 },
345 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
346 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
348 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
349 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
350 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
351 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
352 .len = NL80211_MAX_SUPP_RATES },
353 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
355 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
356 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
358 [NL80211_ATTR_HT_CAPABILITY] = { .len = NL80211_HT_CAPABILITY_LEN },
360 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
361 [NL80211_ATTR_IE] = NLA_POLICY_VALIDATE_FN(NLA_BINARY,
363 IEEE80211_MAX_DATA_LEN),
364 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
365 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
367 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
368 .len = IEEE80211_MAX_SSID_LEN },
369 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
370 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
371 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
372 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
373 [NL80211_ATTR_USE_MFP] = NLA_POLICY_RANGE(NLA_U32,
375 NL80211_MFP_OPTIONAL),
376 [NL80211_ATTR_STA_FLAGS2] = {
377 .len = sizeof(struct nl80211_sta_flag_update),
379 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
380 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
381 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
382 [NL80211_ATTR_CONTROL_PORT_OVER_NL80211] = { .type = NLA_FLAG },
383 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
384 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
385 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
386 [NL80211_ATTR_PID] = { .type = NLA_U32 },
387 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
388 [NL80211_ATTR_PMKID] = { .len = WLAN_PMKID_LEN },
389 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
390 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
391 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
392 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
393 .len = IEEE80211_MAX_DATA_LEN },
394 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
395 [NL80211_ATTR_PS_STATE] = NLA_POLICY_RANGE(NLA_U32,
398 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
399 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
400 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
401 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
402 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
403 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
404 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
405 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
406 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
407 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
408 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
409 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
410 [NL80211_ATTR_STA_PLINK_STATE] =
411 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_STATES - 1),
412 [NL80211_ATTR_MESH_PEER_AID] =
413 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
414 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
415 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
416 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
417 [NL80211_ATTR_HIDDEN_SSID] =
418 NLA_POLICY_RANGE(NLA_U32,
419 NL80211_HIDDEN_SSID_NOT_IN_USE,
420 NL80211_HIDDEN_SSID_ZERO_CONTENTS),
421 [NL80211_ATTR_IE_PROBE_RESP] =
422 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
423 IEEE80211_MAX_DATA_LEN),
424 [NL80211_ATTR_IE_ASSOC_RESP] =
425 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
426 IEEE80211_MAX_DATA_LEN),
427 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
428 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
429 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
430 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
431 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
432 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
433 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
434 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
435 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
436 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
437 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
438 .len = IEEE80211_MAX_DATA_LEN },
439 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
440 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
441 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
442 .len = NL80211_HT_CAPABILITY_LEN
444 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
445 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
446 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
447 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
448 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
449 [NL80211_ATTR_AUTH_DATA] = { .type = NLA_BINARY, },
450 [NL80211_ATTR_VHT_CAPABILITY] = { .len = NL80211_VHT_CAPABILITY_LEN },
451 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
452 [NL80211_ATTR_P2P_CTWINDOW] = NLA_POLICY_MAX(NLA_U8, 127),
453 [NL80211_ATTR_P2P_OPPPS] = NLA_POLICY_MAX(NLA_U8, 1),
454 [NL80211_ATTR_LOCAL_MESH_POWER_MODE] =
455 NLA_POLICY_RANGE(NLA_U32,
456 NL80211_MESH_POWER_UNKNOWN + 1,
457 NL80211_MESH_POWER_MAX),
458 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
459 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
460 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
461 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
462 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
463 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
464 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
465 .len = NL80211_VHT_CAPABILITY_LEN,
467 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
468 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
469 .len = IEEE80211_MAX_DATA_LEN },
470 [NL80211_ATTR_PEER_AID] =
471 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
472 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
473 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
474 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
475 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
476 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
477 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
478 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
479 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
480 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
481 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
482 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
483 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
484 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
485 .len = IEEE80211_QOS_MAP_LEN_MAX },
486 [NL80211_ATTR_MAC_HINT] = { .len = ETH_ALEN },
487 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
488 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
489 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
490 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
491 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
492 [NL80211_ATTR_TSID] = NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_TIDS - 1),
493 [NL80211_ATTR_USER_PRIO] =
494 NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_UPS - 1),
495 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
496 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
497 [NL80211_ATTR_MAC_MASK] = { .len = ETH_ALEN },
498 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
499 [NL80211_ATTR_NETNS_FD] = { .type = NLA_U32 },
500 [NL80211_ATTR_SCHED_SCAN_DELAY] = { .type = NLA_U32 },
501 [NL80211_ATTR_REG_INDOOR] = { .type = NLA_FLAG },
502 [NL80211_ATTR_PBSS] = { .type = NLA_FLAG },
503 [NL80211_ATTR_BSS_SELECT] = { .type = NLA_NESTED },
504 [NL80211_ATTR_STA_SUPPORT_P2P_PS] =
505 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_P2P_PS_STATUS - 1),
506 [NL80211_ATTR_MU_MIMO_GROUP_DATA] = {
507 .len = VHT_MUMIMO_GROUPS_DATA_LEN
509 [NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR] = { .len = ETH_ALEN },
510 [NL80211_ATTR_NAN_MASTER_PREF] = NLA_POLICY_MIN(NLA_U8, 1),
511 [NL80211_ATTR_BANDS] = { .type = NLA_U32 },
512 [NL80211_ATTR_NAN_FUNC] = { .type = NLA_NESTED },
513 [NL80211_ATTR_FILS_KEK] = { .type = NLA_BINARY,
514 .len = FILS_MAX_KEK_LEN },
515 [NL80211_ATTR_FILS_NONCES] = { .len = 2 * FILS_NONCE_LEN },
516 [NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED] = { .type = NLA_FLAG, },
517 [NL80211_ATTR_BSSID] = { .len = ETH_ALEN },
518 [NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] = { .type = NLA_S8 },
519 [NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST] = {
520 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
522 [NL80211_ATTR_TIMEOUT_REASON] = { .type = NLA_U32 },
523 [NL80211_ATTR_FILS_ERP_USERNAME] = { .type = NLA_BINARY,
524 .len = FILS_ERP_MAX_USERNAME_LEN },
525 [NL80211_ATTR_FILS_ERP_REALM] = { .type = NLA_BINARY,
526 .len = FILS_ERP_MAX_REALM_LEN },
527 [NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] = { .type = NLA_U16 },
528 [NL80211_ATTR_FILS_ERP_RRK] = { .type = NLA_BINARY,
529 .len = FILS_ERP_MAX_RRK_LEN },
530 [NL80211_ATTR_FILS_CACHE_ID] = { .len = 2 },
531 [NL80211_ATTR_PMK] = { .type = NLA_BINARY, .len = PMK_MAX_LEN },
532 [NL80211_ATTR_SCHED_SCAN_MULTI] = { .type = NLA_FLAG },
533 [NL80211_ATTR_EXTERNAL_AUTH_SUPPORT] = { .type = NLA_FLAG },
535 [NL80211_ATTR_TXQ_LIMIT] = { .type = NLA_U32 },
536 [NL80211_ATTR_TXQ_MEMORY_LIMIT] = { .type = NLA_U32 },
537 [NL80211_ATTR_TXQ_QUANTUM] = { .type = NLA_U32 },
538 [NL80211_ATTR_HE_CAPABILITY] = { .type = NLA_BINARY,
539 .len = NL80211_HE_MAX_CAPABILITY_LEN },
541 [NL80211_ATTR_FTM_RESPONDER] = {
543 .validation_data = nl80211_ftm_responder_policy,
545 [NL80211_ATTR_TIMEOUT] = NLA_POLICY_MIN(NLA_U32, 1),
546 [NL80211_ATTR_PEER_MEASUREMENTS] =
547 NLA_POLICY_NESTED(nl80211_pmsr_attr_policy),
548 [NL80211_ATTR_AIRTIME_WEIGHT] = NLA_POLICY_MIN(NLA_U16, 1),
551 /* policy for the key attributes */
552 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
553 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
554 [NL80211_KEY_IDX] = { .type = NLA_U8 },
555 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
556 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
557 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
558 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
559 [NL80211_KEY_TYPE] = NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES - 1),
560 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
561 [NL80211_KEY_MODE] = NLA_POLICY_RANGE(NLA_U8, 0, NL80211_KEY_SET_TX),
564 /* policy for the key default flags */
565 static const struct nla_policy
566 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
567 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
568 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
572 /* policy for WoWLAN attributes */
573 static const struct nla_policy
574 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
575 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
576 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
577 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
578 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
579 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
580 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
581 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
582 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
583 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
584 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
587 static const struct nla_policy
588 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
589 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
590 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
591 [NL80211_WOWLAN_TCP_DST_MAC] = { .len = ETH_ALEN },
592 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
593 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
594 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .len = 1 },
595 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
596 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
598 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
599 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
601 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
602 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .len = 1 },
603 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .len = 1 },
605 #endif /* CONFIG_PM */
607 /* policy for coalesce rule attributes */
608 static const struct nla_policy
609 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
610 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
611 [NL80211_ATTR_COALESCE_RULE_CONDITION] =
612 NLA_POLICY_RANGE(NLA_U32,
613 NL80211_COALESCE_CONDITION_MATCH,
614 NL80211_COALESCE_CONDITION_NO_MATCH),
615 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
618 /* policy for GTK rekey offload attributes */
619 static const struct nla_policy
620 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
621 [NL80211_REKEY_DATA_KEK] = { .len = NL80211_KEK_LEN },
622 [NL80211_REKEY_DATA_KCK] = { .len = NL80211_KCK_LEN },
623 [NL80211_REKEY_DATA_REPLAY_CTR] = { .len = NL80211_REPLAY_CTR_LEN },
626 static const struct nla_policy
627 nl80211_match_band_rssi_policy[NUM_NL80211_BANDS] = {
628 [NL80211_BAND_2GHZ] = { .type = NLA_S32 },
629 [NL80211_BAND_5GHZ] = { .type = NLA_S32 },
630 [NL80211_BAND_60GHZ] = { .type = NLA_S32 },
633 static const struct nla_policy
634 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
635 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
636 .len = IEEE80211_MAX_SSID_LEN },
637 [NL80211_SCHED_SCAN_MATCH_ATTR_BSSID] = { .len = ETH_ALEN },
638 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
639 [NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI] =
640 NLA_POLICY_NESTED(nl80211_match_band_rssi_policy),
643 static const struct nla_policy
644 nl80211_plan_policy[NL80211_SCHED_SCAN_PLAN_MAX + 1] = {
645 [NL80211_SCHED_SCAN_PLAN_INTERVAL] = { .type = NLA_U32 },
646 [NL80211_SCHED_SCAN_PLAN_ITERATIONS] = { .type = NLA_U32 },
649 static const struct nla_policy
650 nl80211_bss_select_policy[NL80211_BSS_SELECT_ATTR_MAX + 1] = {
651 [NL80211_BSS_SELECT_ATTR_RSSI] = { .type = NLA_FLAG },
652 [NL80211_BSS_SELECT_ATTR_BAND_PREF] = { .type = NLA_U32 },
653 [NL80211_BSS_SELECT_ATTR_RSSI_ADJUST] = {
654 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
658 /* policy for NAN function attributes */
659 static const struct nla_policy
660 nl80211_nan_func_policy[NL80211_NAN_FUNC_ATTR_MAX + 1] = {
661 [NL80211_NAN_FUNC_TYPE] = { .type = NLA_U8 },
662 [NL80211_NAN_FUNC_SERVICE_ID] = {
663 .len = NL80211_NAN_FUNC_SERVICE_ID_LEN },
664 [NL80211_NAN_FUNC_PUBLISH_TYPE] = { .type = NLA_U8 },
665 [NL80211_NAN_FUNC_PUBLISH_BCAST] = { .type = NLA_FLAG },
666 [NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE] = { .type = NLA_FLAG },
667 [NL80211_NAN_FUNC_FOLLOW_UP_ID] = { .type = NLA_U8 },
668 [NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] = { .type = NLA_U8 },
669 [NL80211_NAN_FUNC_FOLLOW_UP_DEST] = { .len = ETH_ALEN },
670 [NL80211_NAN_FUNC_CLOSE_RANGE] = { .type = NLA_FLAG },
671 [NL80211_NAN_FUNC_TTL] = { .type = NLA_U32 },
672 [NL80211_NAN_FUNC_SERVICE_INFO] = { .type = NLA_BINARY,
673 .len = NL80211_NAN_FUNC_SERVICE_SPEC_INFO_MAX_LEN },
674 [NL80211_NAN_FUNC_SRF] = { .type = NLA_NESTED },
675 [NL80211_NAN_FUNC_RX_MATCH_FILTER] = { .type = NLA_NESTED },
676 [NL80211_NAN_FUNC_TX_MATCH_FILTER] = { .type = NLA_NESTED },
677 [NL80211_NAN_FUNC_INSTANCE_ID] = { .type = NLA_U8 },
678 [NL80211_NAN_FUNC_TERM_REASON] = { .type = NLA_U8 },
681 /* policy for Service Response Filter attributes */
682 static const struct nla_policy
683 nl80211_nan_srf_policy[NL80211_NAN_SRF_ATTR_MAX + 1] = {
684 [NL80211_NAN_SRF_INCLUDE] = { .type = NLA_FLAG },
685 [NL80211_NAN_SRF_BF] = { .type = NLA_BINARY,
686 .len = NL80211_NAN_FUNC_SRF_MAX_LEN },
687 [NL80211_NAN_SRF_BF_IDX] = { .type = NLA_U8 },
688 [NL80211_NAN_SRF_MAC_ADDRS] = { .type = NLA_NESTED },
691 /* policy for packet pattern attributes */
692 static const struct nla_policy
693 nl80211_packet_pattern_policy[MAX_NL80211_PKTPAT + 1] = {
694 [NL80211_PKTPAT_MASK] = { .type = NLA_BINARY, },
695 [NL80211_PKTPAT_PATTERN] = { .type = NLA_BINARY, },
696 [NL80211_PKTPAT_OFFSET] = { .type = NLA_U32 },
699 int nl80211_prepare_wdev_dump(struct netlink_callback *cb,
700 struct cfg80211_registered_device **rdev,
701 struct wireless_dev **wdev)
706 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
707 genl_family_attrbuf(&nl80211_fam),
708 nl80211_fam.maxattr, nl80211_policy, NULL);
712 *wdev = __cfg80211_wdev_from_attrs(
713 sock_net(cb->skb->sk),
714 genl_family_attrbuf(&nl80211_fam));
716 return PTR_ERR(*wdev);
717 *rdev = wiphy_to_rdev((*wdev)->wiphy);
718 /* 0 is the first index - add 1 to parse only once */
719 cb->args[0] = (*rdev)->wiphy_idx + 1;
720 cb->args[1] = (*wdev)->identifier;
722 /* subtract the 1 again here */
723 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
724 struct wireless_dev *tmp;
728 *rdev = wiphy_to_rdev(wiphy);
731 list_for_each_entry(tmp, &(*rdev)->wiphy.wdev_list, list) {
732 if (tmp->identifier == cb->args[1]) {
745 /* message building helper */
746 void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
749 /* since there is no private header just add the generic one */
750 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
753 static int nl80211_msg_put_wmm_rules(struct sk_buff *msg,
754 const struct ieee80211_reg_rule *rule)
757 struct nlattr *nl_wmm_rules =
758 nla_nest_start(msg, NL80211_FREQUENCY_ATTR_WMM);
761 goto nla_put_failure;
763 for (j = 0; j < IEEE80211_NUM_ACS; j++) {
764 struct nlattr *nl_wmm_rule = nla_nest_start(msg, j);
767 goto nla_put_failure;
769 if (nla_put_u16(msg, NL80211_WMMR_CW_MIN,
770 rule->wmm_rule.client[j].cw_min) ||
771 nla_put_u16(msg, NL80211_WMMR_CW_MAX,
772 rule->wmm_rule.client[j].cw_max) ||
773 nla_put_u8(msg, NL80211_WMMR_AIFSN,
774 rule->wmm_rule.client[j].aifsn) ||
775 nla_put_u16(msg, NL80211_WMMR_TXOP,
776 rule->wmm_rule.client[j].cot))
777 goto nla_put_failure;
779 nla_nest_end(msg, nl_wmm_rule);
781 nla_nest_end(msg, nl_wmm_rules);
789 static int nl80211_msg_put_channel(struct sk_buff *msg, struct wiphy *wiphy,
790 struct ieee80211_channel *chan,
793 /* Some channels must be completely excluded from the
794 * list to protect old user-space tools from breaking
796 if (!large && chan->flags &
797 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
800 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
802 goto nla_put_failure;
804 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
805 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
806 goto nla_put_failure;
807 if (chan->flags & IEEE80211_CHAN_NO_IR) {
808 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
809 goto nla_put_failure;
810 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
811 goto nla_put_failure;
813 if (chan->flags & IEEE80211_CHAN_RADAR) {
814 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
815 goto nla_put_failure;
819 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
821 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
823 goto nla_put_failure;
824 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
826 goto nla_put_failure;
828 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
830 goto nla_put_failure;
835 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
836 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
837 goto nla_put_failure;
838 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
839 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
840 goto nla_put_failure;
841 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
842 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
843 goto nla_put_failure;
844 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
845 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
846 goto nla_put_failure;
847 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
848 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
849 goto nla_put_failure;
850 if ((chan->flags & IEEE80211_CHAN_IR_CONCURRENT) &&
851 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_IR_CONCURRENT))
852 goto nla_put_failure;
853 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
854 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
855 goto nla_put_failure;
856 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
857 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
858 goto nla_put_failure;
861 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
862 DBM_TO_MBM(chan->max_power)))
863 goto nla_put_failure;
866 const struct ieee80211_reg_rule *rule =
867 freq_reg_info(wiphy, MHZ_TO_KHZ(chan->center_freq));
869 if (!IS_ERR_OR_NULL(rule) && rule->has_wmm) {
870 if (nl80211_msg_put_wmm_rules(msg, rule))
871 goto nla_put_failure;
881 static bool nl80211_put_txq_stats(struct sk_buff *msg,
882 struct cfg80211_txq_stats *txqstats,
885 struct nlattr *txqattr;
887 #define PUT_TXQVAL_U32(attr, memb) do { \
888 if (txqstats->filled & BIT(NL80211_TXQ_STATS_ ## attr) && \
889 nla_put_u32(msg, NL80211_TXQ_STATS_ ## attr, txqstats->memb)) \
893 txqattr = nla_nest_start(msg, attrtype);
897 PUT_TXQVAL_U32(BACKLOG_BYTES, backlog_bytes);
898 PUT_TXQVAL_U32(BACKLOG_PACKETS, backlog_packets);
899 PUT_TXQVAL_U32(FLOWS, flows);
900 PUT_TXQVAL_U32(DROPS, drops);
901 PUT_TXQVAL_U32(ECN_MARKS, ecn_marks);
902 PUT_TXQVAL_U32(OVERLIMIT, overlimit);
903 PUT_TXQVAL_U32(OVERMEMORY, overmemory);
904 PUT_TXQVAL_U32(COLLISIONS, collisions);
905 PUT_TXQVAL_U32(TX_BYTES, tx_bytes);
906 PUT_TXQVAL_U32(TX_PACKETS, tx_packets);
907 PUT_TXQVAL_U32(MAX_FLOWS, max_flows);
908 nla_nest_end(msg, txqattr);
910 #undef PUT_TXQVAL_U32
914 /* netlink command implementations */
921 bool def_uni, def_multi;
924 static int nl80211_parse_key_new(struct genl_info *info, struct nlattr *key,
927 struct nlattr *tb[NL80211_KEY_MAX + 1];
928 int err = nla_parse_nested(tb, NL80211_KEY_MAX, key,
929 nl80211_key_policy, info->extack);
933 k->def = !!tb[NL80211_KEY_DEFAULT];
934 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
943 if (tb[NL80211_KEY_IDX])
944 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
946 if (tb[NL80211_KEY_DATA]) {
947 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
948 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
951 if (tb[NL80211_KEY_SEQ]) {
952 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
953 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
956 if (tb[NL80211_KEY_CIPHER])
957 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
959 if (tb[NL80211_KEY_TYPE])
960 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
962 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
963 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
965 err = nla_parse_nested(kdt, NUM_NL80211_KEY_DEFAULT_TYPES - 1,
966 tb[NL80211_KEY_DEFAULT_TYPES],
967 nl80211_key_default_policy,
972 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
973 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
976 if (tb[NL80211_KEY_MODE])
977 k->p.mode = nla_get_u8(tb[NL80211_KEY_MODE]);
982 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
984 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
985 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
986 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
989 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
990 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
991 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
994 if (info->attrs[NL80211_ATTR_KEY_IDX])
995 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
997 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
998 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
1000 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
1001 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
1005 k->def_multi = true;
1008 k->def_multi = true;
1010 if (info->attrs[NL80211_ATTR_KEY_TYPE])
1011 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
1013 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
1014 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
1015 int err = nla_parse_nested(kdt,
1016 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
1017 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
1018 nl80211_key_default_policy,
1023 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1024 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1030 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
1034 memset(k, 0, sizeof(*k));
1038 if (info->attrs[NL80211_ATTR_KEY])
1039 err = nl80211_parse_key_new(info, info->attrs[NL80211_ATTR_KEY], k);
1041 err = nl80211_parse_key_old(info, k);
1046 if (k->def && k->defmgmt) {
1047 GENL_SET_ERR_MSG(info, "key with def && defmgmt is invalid");
1052 if (k->def_uni || !k->def_multi) {
1053 GENL_SET_ERR_MSG(info, "defmgmt key must be mcast");
1060 if (k->idx < 4 || k->idx > 5) {
1061 GENL_SET_ERR_MSG(info,
1062 "defmgmt key idx not 4 or 5");
1065 } else if (k->def) {
1066 if (k->idx < 0 || k->idx > 3) {
1067 GENL_SET_ERR_MSG(info, "def key idx not 0-3");
1071 if (k->idx < 0 || k->idx > 5) {
1072 GENL_SET_ERR_MSG(info, "key idx not 0-5");
1081 static struct cfg80211_cached_keys *
1082 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
1083 struct genl_info *info, bool *no_ht)
1085 struct nlattr *keys = info->attrs[NL80211_ATTR_KEYS];
1086 struct key_parse parse;
1088 struct cfg80211_cached_keys *result;
1089 int rem, err, def = 0;
1090 bool have_key = false;
1092 nla_for_each_nested(key, keys, rem) {
1100 result = kzalloc(sizeof(*result), GFP_KERNEL);
1102 return ERR_PTR(-ENOMEM);
1106 nla_for_each_nested(key, keys, rem) {
1107 memset(&parse, 0, sizeof(parse));
1110 err = nl80211_parse_key_new(info, key, &parse);
1116 if (parse.idx < 0 || parse.idx > 3) {
1117 GENL_SET_ERR_MSG(info, "key index out of range [0-3]");
1122 GENL_SET_ERR_MSG(info,
1123 "only one key can be default");
1127 result->def = parse.idx;
1128 if (!parse.def_uni || !parse.def_multi)
1130 } else if (parse.defmgmt)
1132 err = cfg80211_validate_key_settings(rdev, &parse.p,
1133 parse.idx, false, NULL);
1136 if (parse.p.cipher != WLAN_CIPHER_SUITE_WEP40 &&
1137 parse.p.cipher != WLAN_CIPHER_SUITE_WEP104) {
1138 GENL_SET_ERR_MSG(info, "connect key must be WEP");
1142 result->params[parse.idx].cipher = parse.p.cipher;
1143 result->params[parse.idx].key_len = parse.p.key_len;
1144 result->params[parse.idx].key = result->data[parse.idx];
1145 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
1147 /* must be WEP key if we got here */
1152 if (result->def < 0) {
1154 GENL_SET_ERR_MSG(info, "need a default/TX key");
1161 return ERR_PTR(err);
1164 static int nl80211_key_allowed(struct wireless_dev *wdev)
1166 ASSERT_WDEV_LOCK(wdev);
1168 switch (wdev->iftype) {
1169 case NL80211_IFTYPE_AP:
1170 case NL80211_IFTYPE_AP_VLAN:
1171 case NL80211_IFTYPE_P2P_GO:
1172 case NL80211_IFTYPE_MESH_POINT:
1174 case NL80211_IFTYPE_ADHOC:
1175 case NL80211_IFTYPE_STATION:
1176 case NL80211_IFTYPE_P2P_CLIENT:
1177 if (!wdev->current_bss)
1180 case NL80211_IFTYPE_UNSPECIFIED:
1181 case NL80211_IFTYPE_OCB:
1182 case NL80211_IFTYPE_MONITOR:
1183 case NL80211_IFTYPE_NAN:
1184 case NL80211_IFTYPE_P2P_DEVICE:
1185 case NL80211_IFTYPE_WDS:
1186 case NUM_NL80211_IFTYPES:
1193 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
1196 struct ieee80211_channel *chan;
1200 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
1201 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
1206 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
1208 struct nlattr *nl_modes = nla_nest_start(msg, attr);
1212 goto nla_put_failure;
1216 if ((ifmodes & 1) && nla_put_flag(msg, i))
1217 goto nla_put_failure;
1222 nla_nest_end(msg, nl_modes);
1229 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
1230 struct sk_buff *msg,
1233 struct nlattr *nl_combis;
1236 nl_combis = nla_nest_start(msg,
1237 NL80211_ATTR_INTERFACE_COMBINATIONS);
1239 goto nla_put_failure;
1241 for (i = 0; i < wiphy->n_iface_combinations; i++) {
1242 const struct ieee80211_iface_combination *c;
1243 struct nlattr *nl_combi, *nl_limits;
1245 c = &wiphy->iface_combinations[i];
1247 nl_combi = nla_nest_start(msg, i + 1);
1249 goto nla_put_failure;
1251 nl_limits = nla_nest_start(msg, NL80211_IFACE_COMB_LIMITS);
1253 goto nla_put_failure;
1255 for (j = 0; j < c->n_limits; j++) {
1256 struct nlattr *nl_limit;
1258 nl_limit = nla_nest_start(msg, j + 1);
1260 goto nla_put_failure;
1261 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
1263 goto nla_put_failure;
1264 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
1265 c->limits[j].types))
1266 goto nla_put_failure;
1267 nla_nest_end(msg, nl_limit);
1270 nla_nest_end(msg, nl_limits);
1272 if (c->beacon_int_infra_match &&
1273 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
1274 goto nla_put_failure;
1275 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
1276 c->num_different_channels) ||
1277 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
1279 goto nla_put_failure;
1281 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
1282 c->radar_detect_widths) ||
1283 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
1284 c->radar_detect_regions)))
1285 goto nla_put_failure;
1286 if (c->beacon_int_min_gcd &&
1287 nla_put_u32(msg, NL80211_IFACE_COMB_BI_MIN_GCD,
1288 c->beacon_int_min_gcd))
1289 goto nla_put_failure;
1291 nla_nest_end(msg, nl_combi);
1294 nla_nest_end(msg, nl_combis);
1302 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1303 struct sk_buff *msg)
1305 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1306 struct nlattr *nl_tcp;
1311 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1315 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1316 tcp->data_payload_max))
1319 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1320 tcp->data_payload_max))
1323 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1326 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1327 sizeof(*tcp->tok), tcp->tok))
1330 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1331 tcp->data_interval_max))
1334 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1335 tcp->wake_payload_max))
1338 nla_nest_end(msg, nl_tcp);
1342 static int nl80211_send_wowlan(struct sk_buff *msg,
1343 struct cfg80211_registered_device *rdev,
1346 struct nlattr *nl_wowlan;
1348 if (!rdev->wiphy.wowlan)
1351 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1355 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1356 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1357 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1358 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1359 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1360 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1361 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1362 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1363 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1364 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1365 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1366 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1367 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1368 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1369 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1370 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1373 if (rdev->wiphy.wowlan->n_patterns) {
1374 struct nl80211_pattern_support pat = {
1375 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1376 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1377 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1378 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1381 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1386 if ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_NET_DETECT) &&
1387 nla_put_u32(msg, NL80211_WOWLAN_TRIG_NET_DETECT,
1388 rdev->wiphy.wowlan->max_nd_match_sets))
1391 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1394 nla_nest_end(msg, nl_wowlan);
1400 static int nl80211_send_coalesce(struct sk_buff *msg,
1401 struct cfg80211_registered_device *rdev)
1403 struct nl80211_coalesce_rule_support rule;
1405 if (!rdev->wiphy.coalesce)
1408 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1409 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1410 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1411 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1412 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1413 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1415 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1422 nl80211_send_iftype_data(struct sk_buff *msg,
1423 const struct ieee80211_sband_iftype_data *iftdata)
1425 const struct ieee80211_sta_he_cap *he_cap = &iftdata->he_cap;
1427 if (nl80211_put_iftypes(msg, NL80211_BAND_IFTYPE_ATTR_IFTYPES,
1428 iftdata->types_mask))
1431 if (he_cap->has_he) {
1432 if (nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MAC,
1433 sizeof(he_cap->he_cap_elem.mac_cap_info),
1434 he_cap->he_cap_elem.mac_cap_info) ||
1435 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PHY,
1436 sizeof(he_cap->he_cap_elem.phy_cap_info),
1437 he_cap->he_cap_elem.phy_cap_info) ||
1438 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MCS_SET,
1439 sizeof(he_cap->he_mcs_nss_supp),
1440 &he_cap->he_mcs_nss_supp) ||
1441 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PPE,
1442 sizeof(he_cap->ppe_thres), he_cap->ppe_thres))
1449 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1450 struct ieee80211_supported_band *sband)
1452 struct nlattr *nl_rates, *nl_rate;
1453 struct ieee80211_rate *rate;
1457 if (sband->ht_cap.ht_supported &&
1458 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1459 sizeof(sband->ht_cap.mcs),
1460 &sband->ht_cap.mcs) ||
1461 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1462 sband->ht_cap.cap) ||
1463 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1464 sband->ht_cap.ampdu_factor) ||
1465 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1466 sband->ht_cap.ampdu_density)))
1470 if (sband->vht_cap.vht_supported &&
1471 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1472 sizeof(sband->vht_cap.vht_mcs),
1473 &sband->vht_cap.vht_mcs) ||
1474 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1475 sband->vht_cap.cap)))
1478 if (sband->n_iftype_data) {
1479 struct nlattr *nl_iftype_data =
1480 nla_nest_start(msg, NL80211_BAND_ATTR_IFTYPE_DATA);
1483 if (!nl_iftype_data)
1486 for (i = 0; i < sband->n_iftype_data; i++) {
1487 struct nlattr *iftdata;
1489 iftdata = nla_nest_start(msg, i + 1);
1493 err = nl80211_send_iftype_data(msg,
1494 &sband->iftype_data[i]);
1498 nla_nest_end(msg, iftdata);
1501 nla_nest_end(msg, nl_iftype_data);
1505 nl_rates = nla_nest_start(msg, NL80211_BAND_ATTR_RATES);
1509 for (i = 0; i < sband->n_bitrates; i++) {
1510 nl_rate = nla_nest_start(msg, i);
1514 rate = &sband->bitrates[i];
1515 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1518 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1520 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1523 nla_nest_end(msg, nl_rate);
1526 nla_nest_end(msg, nl_rates);
1532 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1533 const struct ieee80211_txrx_stypes *mgmt_stypes)
1536 struct nlattr *nl_ftypes, *nl_ifs;
1537 enum nl80211_iftype ift;
1543 nl_ifs = nla_nest_start(msg, NL80211_ATTR_TX_FRAME_TYPES);
1547 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1548 nl_ftypes = nla_nest_start(msg, ift);
1552 stypes = mgmt_stypes[ift].tx;
1555 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1556 (i << 4) | IEEE80211_FTYPE_MGMT))
1561 nla_nest_end(msg, nl_ftypes);
1564 nla_nest_end(msg, nl_ifs);
1566 nl_ifs = nla_nest_start(msg, NL80211_ATTR_RX_FRAME_TYPES);
1570 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1571 nl_ftypes = nla_nest_start(msg, ift);
1575 stypes = mgmt_stypes[ift].rx;
1578 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1579 (i << 4) | IEEE80211_FTYPE_MGMT))
1584 nla_nest_end(msg, nl_ftypes);
1586 nla_nest_end(msg, nl_ifs);
1591 #define CMD(op, n) \
1593 if (rdev->ops->op) { \
1595 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1596 goto nla_put_failure; \
1600 static int nl80211_add_commands_unsplit(struct cfg80211_registered_device *rdev,
1601 struct sk_buff *msg)
1606 * do *NOT* add anything into this function, new things need to be
1607 * advertised only to new versions of userspace that can deal with
1608 * the split (and they can't possibly care about new features...
1610 CMD(add_virtual_intf, NEW_INTERFACE);
1611 CMD(change_virtual_intf, SET_INTERFACE);
1612 CMD(add_key, NEW_KEY);
1613 CMD(start_ap, START_AP);
1614 CMD(add_station, NEW_STATION);
1615 CMD(add_mpath, NEW_MPATH);
1616 CMD(update_mesh_config, SET_MESH_CONFIG);
1617 CMD(change_bss, SET_BSS);
1618 CMD(auth, AUTHENTICATE);
1619 CMD(assoc, ASSOCIATE);
1620 CMD(deauth, DEAUTHENTICATE);
1621 CMD(disassoc, DISASSOCIATE);
1622 CMD(join_ibss, JOIN_IBSS);
1623 CMD(join_mesh, JOIN_MESH);
1624 CMD(set_pmksa, SET_PMKSA);
1625 CMD(del_pmksa, DEL_PMKSA);
1626 CMD(flush_pmksa, FLUSH_PMKSA);
1627 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1628 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1629 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1630 CMD(mgmt_tx, FRAME);
1631 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1632 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1634 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1635 goto nla_put_failure;
1637 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1638 rdev->ops->join_mesh) {
1640 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1641 goto nla_put_failure;
1643 CMD(set_wds_peer, SET_WDS_PEER);
1644 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1645 CMD(tdls_mgmt, TDLS_MGMT);
1646 CMD(tdls_oper, TDLS_OPER);
1648 if (rdev->wiphy.max_sched_scan_reqs)
1649 CMD(sched_scan_start, START_SCHED_SCAN);
1650 CMD(probe_client, PROBE_CLIENT);
1651 CMD(set_noack_map, SET_NOACK_MAP);
1652 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1654 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1655 goto nla_put_failure;
1657 CMD(start_p2p_device, START_P2P_DEVICE);
1658 CMD(set_mcast_rate, SET_MCAST_RATE);
1659 #ifdef CONFIG_NL80211_TESTMODE
1660 CMD(testmode_cmd, TESTMODE);
1663 if (rdev->ops->connect || rdev->ops->auth) {
1665 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1666 goto nla_put_failure;
1669 if (rdev->ops->disconnect || rdev->ops->deauth) {
1671 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1672 goto nla_put_failure;
1681 nl80211_send_pmsr_ftm_capa(const struct cfg80211_pmsr_capabilities *cap,
1682 struct sk_buff *msg)
1686 if (!cap->ftm.supported)
1689 ftm = nla_nest_start(msg, NL80211_PMSR_TYPE_FTM);
1693 if (cap->ftm.asap && nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_ASAP))
1695 if (cap->ftm.non_asap &&
1696 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP))
1698 if (cap->ftm.request_lci &&
1699 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI))
1701 if (cap->ftm.request_civicloc &&
1702 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC))
1704 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES,
1705 cap->ftm.preambles))
1707 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS,
1708 cap->ftm.bandwidths))
1710 if (cap->ftm.max_bursts_exponent >= 0 &&
1711 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT,
1712 cap->ftm.max_bursts_exponent))
1714 if (cap->ftm.max_ftms_per_burst &&
1715 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST,
1716 cap->ftm.max_ftms_per_burst))
1719 nla_nest_end(msg, ftm);
1723 static int nl80211_send_pmsr_capa(struct cfg80211_registered_device *rdev,
1724 struct sk_buff *msg)
1726 const struct cfg80211_pmsr_capabilities *cap = rdev->wiphy.pmsr_capa;
1727 struct nlattr *pmsr, *caps;
1733 * we don't need to clean up anything here since the caller
1734 * will genlmsg_cancel() if we fail
1737 pmsr = nla_nest_start(msg, NL80211_ATTR_PEER_MEASUREMENTS);
1741 if (nla_put_u32(msg, NL80211_PMSR_ATTR_MAX_PEERS, cap->max_peers))
1744 if (cap->report_ap_tsf &&
1745 nla_put_flag(msg, NL80211_PMSR_ATTR_REPORT_AP_TSF))
1748 if (cap->randomize_mac_addr &&
1749 nla_put_flag(msg, NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR))
1752 caps = nla_nest_start(msg, NL80211_PMSR_ATTR_TYPE_CAPA);
1756 if (nl80211_send_pmsr_ftm_capa(cap, msg))
1759 nla_nest_end(msg, caps);
1760 nla_nest_end(msg, pmsr);
1765 struct nl80211_dump_wiphy_state {
1768 long split_start, band_start, chan_start, capa_start;
1772 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1773 enum nl80211_commands cmd,
1774 struct sk_buff *msg, u32 portid, u32 seq,
1775 int flags, struct nl80211_dump_wiphy_state *state)
1778 struct nlattr *nl_bands, *nl_band;
1779 struct nlattr *nl_freqs, *nl_freq;
1780 struct nlattr *nl_cmds;
1781 enum nl80211_band band;
1782 struct ieee80211_channel *chan;
1784 const struct ieee80211_txrx_stypes *mgmt_stypes =
1785 rdev->wiphy.mgmt_stypes;
1788 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1792 if (WARN_ON(!state))
1795 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1796 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1797 wiphy_name(&rdev->wiphy)) ||
1798 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1799 cfg80211_rdev_list_generation))
1800 goto nla_put_failure;
1802 if (cmd != NL80211_CMD_NEW_WIPHY)
1805 switch (state->split_start) {
1807 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1808 rdev->wiphy.retry_short) ||
1809 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1810 rdev->wiphy.retry_long) ||
1811 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1812 rdev->wiphy.frag_threshold) ||
1813 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1814 rdev->wiphy.rts_threshold) ||
1815 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1816 rdev->wiphy.coverage_class) ||
1817 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1818 rdev->wiphy.max_scan_ssids) ||
1819 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1820 rdev->wiphy.max_sched_scan_ssids) ||
1821 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1822 rdev->wiphy.max_scan_ie_len) ||
1823 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1824 rdev->wiphy.max_sched_scan_ie_len) ||
1825 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1826 rdev->wiphy.max_match_sets) ||
1827 nla_put_u32(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_PLANS,
1828 rdev->wiphy.max_sched_scan_plans) ||
1829 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_INTERVAL,
1830 rdev->wiphy.max_sched_scan_plan_interval) ||
1831 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_ITERATIONS,
1832 rdev->wiphy.max_sched_scan_plan_iterations))
1833 goto nla_put_failure;
1835 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1836 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1837 goto nla_put_failure;
1838 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1839 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1840 goto nla_put_failure;
1841 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1842 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1843 goto nla_put_failure;
1844 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1845 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1846 goto nla_put_failure;
1847 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1848 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1849 goto nla_put_failure;
1850 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1851 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1852 goto nla_put_failure;
1853 state->split_start++;
1858 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1859 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1860 rdev->wiphy.cipher_suites))
1861 goto nla_put_failure;
1863 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1864 rdev->wiphy.max_num_pmkids))
1865 goto nla_put_failure;
1867 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1868 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1869 goto nla_put_failure;
1871 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
1872 rdev->wiphy.available_antennas_tx) ||
1873 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
1874 rdev->wiphy.available_antennas_rx))
1875 goto nla_put_failure;
1877 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
1878 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
1879 rdev->wiphy.probe_resp_offload))
1880 goto nla_put_failure;
1882 if ((rdev->wiphy.available_antennas_tx ||
1883 rdev->wiphy.available_antennas_rx) &&
1884 rdev->ops->get_antenna) {
1885 u32 tx_ant = 0, rx_ant = 0;
1888 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
1890 if (nla_put_u32(msg,
1891 NL80211_ATTR_WIPHY_ANTENNA_TX,
1894 NL80211_ATTR_WIPHY_ANTENNA_RX,
1896 goto nla_put_failure;
1900 state->split_start++;
1905 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
1906 rdev->wiphy.interface_modes))
1907 goto nla_put_failure;
1908 state->split_start++;
1913 nl_bands = nla_nest_start(msg, NL80211_ATTR_WIPHY_BANDS);
1915 goto nla_put_failure;
1917 for (band = state->band_start;
1918 band < NUM_NL80211_BANDS; band++) {
1919 struct ieee80211_supported_band *sband;
1921 sband = rdev->wiphy.bands[band];
1926 nl_band = nla_nest_start(msg, band);
1928 goto nla_put_failure;
1930 switch (state->chan_start) {
1932 if (nl80211_send_band_rateinfo(msg, sband))
1933 goto nla_put_failure;
1934 state->chan_start++;
1939 /* add frequencies */
1940 nl_freqs = nla_nest_start(
1941 msg, NL80211_BAND_ATTR_FREQS);
1943 goto nla_put_failure;
1945 for (i = state->chan_start - 1;
1946 i < sband->n_channels;
1948 nl_freq = nla_nest_start(msg, i);
1950 goto nla_put_failure;
1952 chan = &sband->channels[i];
1954 if (nl80211_msg_put_channel(
1955 msg, &rdev->wiphy, chan,
1957 goto nla_put_failure;
1959 nla_nest_end(msg, nl_freq);
1963 if (i < sband->n_channels)
1964 state->chan_start = i + 2;
1966 state->chan_start = 0;
1967 nla_nest_end(msg, nl_freqs);
1970 nla_nest_end(msg, nl_band);
1973 /* start again here */
1974 if (state->chan_start)
1979 nla_nest_end(msg, nl_bands);
1981 if (band < NUM_NL80211_BANDS)
1982 state->band_start = band + 1;
1984 state->band_start = 0;
1986 /* if bands & channels are done, continue outside */
1987 if (state->band_start == 0 && state->chan_start == 0)
1988 state->split_start++;
1993 nl_cmds = nla_nest_start(msg, NL80211_ATTR_SUPPORTED_COMMANDS);
1995 goto nla_put_failure;
1997 i = nl80211_add_commands_unsplit(rdev, msg);
1999 goto nla_put_failure;
2001 CMD(crit_proto_start, CRIT_PROTOCOL_START);
2002 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
2003 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
2004 CMD(channel_switch, CHANNEL_SWITCH);
2005 CMD(set_qos_map, SET_QOS_MAP);
2006 if (rdev->wiphy.features &
2007 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
2008 CMD(add_tx_ts, ADD_TX_TS);
2009 CMD(set_multicast_to_unicast, SET_MULTICAST_TO_UNICAST);
2010 CMD(update_connect_params, UPDATE_CONNECT_PARAMS);
2014 nla_nest_end(msg, nl_cmds);
2015 state->split_start++;
2020 if (rdev->ops->remain_on_channel &&
2021 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
2023 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
2024 rdev->wiphy.max_remain_on_channel_duration))
2025 goto nla_put_failure;
2027 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
2028 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
2029 goto nla_put_failure;
2031 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
2032 goto nla_put_failure;
2033 state->split_start++;
2039 if (nl80211_send_wowlan(msg, rdev, state->split))
2040 goto nla_put_failure;
2041 state->split_start++;
2045 state->split_start++;
2049 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
2050 rdev->wiphy.software_iftypes))
2051 goto nla_put_failure;
2053 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
2055 goto nla_put_failure;
2057 state->split_start++;
2062 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
2063 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
2064 rdev->wiphy.ap_sme_capa))
2065 goto nla_put_failure;
2067 features = rdev->wiphy.features;
2069 * We can only add the per-channel limit information if the
2070 * dump is split, otherwise it makes it too big. Therefore
2071 * only advertise it in that case.
2074 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
2075 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
2076 goto nla_put_failure;
2078 if (rdev->wiphy.ht_capa_mod_mask &&
2079 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
2080 sizeof(*rdev->wiphy.ht_capa_mod_mask),
2081 rdev->wiphy.ht_capa_mod_mask))
2082 goto nla_put_failure;
2084 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
2085 rdev->wiphy.max_acl_mac_addrs &&
2086 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
2087 rdev->wiphy.max_acl_mac_addrs))
2088 goto nla_put_failure;
2091 * Any information below this point is only available to
2092 * applications that can deal with it being split. This
2093 * helps ensure that newly added capabilities don't break
2094 * older tools by overrunning their buffers.
2096 * We still increment split_start so that in the split
2097 * case we'll continue with more data in the next round,
2098 * but break unconditionally so unsplit data stops here.
2100 state->split_start++;
2103 if (rdev->wiphy.extended_capabilities &&
2104 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
2105 rdev->wiphy.extended_capabilities_len,
2106 rdev->wiphy.extended_capabilities) ||
2107 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2108 rdev->wiphy.extended_capabilities_len,
2109 rdev->wiphy.extended_capabilities_mask)))
2110 goto nla_put_failure;
2112 if (rdev->wiphy.vht_capa_mod_mask &&
2113 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
2114 sizeof(*rdev->wiphy.vht_capa_mod_mask),
2115 rdev->wiphy.vht_capa_mod_mask))
2116 goto nla_put_failure;
2118 state->split_start++;
2121 if (nl80211_send_coalesce(msg, rdev))
2122 goto nla_put_failure;
2124 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
2125 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
2126 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
2127 goto nla_put_failure;
2129 if (rdev->wiphy.max_ap_assoc_sta &&
2130 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
2131 rdev->wiphy.max_ap_assoc_sta))
2132 goto nla_put_failure;
2134 state->split_start++;
2137 if (rdev->wiphy.n_vendor_commands) {
2138 const struct nl80211_vendor_cmd_info *info;
2139 struct nlattr *nested;
2141 nested = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
2143 goto nla_put_failure;
2145 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
2146 info = &rdev->wiphy.vendor_commands[i].info;
2147 if (nla_put(msg, i + 1, sizeof(*info), info))
2148 goto nla_put_failure;
2150 nla_nest_end(msg, nested);
2153 if (rdev->wiphy.n_vendor_events) {
2154 const struct nl80211_vendor_cmd_info *info;
2155 struct nlattr *nested;
2157 nested = nla_nest_start(msg,
2158 NL80211_ATTR_VENDOR_EVENTS);
2160 goto nla_put_failure;
2162 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
2163 info = &rdev->wiphy.vendor_events[i];
2164 if (nla_put(msg, i + 1, sizeof(*info), info))
2165 goto nla_put_failure;
2167 nla_nest_end(msg, nested);
2169 state->split_start++;
2172 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
2173 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
2174 rdev->wiphy.max_num_csa_counters))
2175 goto nla_put_failure;
2177 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
2178 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
2179 goto nla_put_failure;
2181 if (rdev->wiphy.max_sched_scan_reqs &&
2182 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_MAX_REQS,
2183 rdev->wiphy.max_sched_scan_reqs))
2184 goto nla_put_failure;
2186 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
2187 sizeof(rdev->wiphy.ext_features),
2188 rdev->wiphy.ext_features))
2189 goto nla_put_failure;
2191 if (rdev->wiphy.bss_select_support) {
2192 struct nlattr *nested;
2193 u32 bss_select_support = rdev->wiphy.bss_select_support;
2195 nested = nla_nest_start(msg, NL80211_ATTR_BSS_SELECT);
2197 goto nla_put_failure;
2200 while (bss_select_support) {
2201 if ((bss_select_support & 1) &&
2202 nla_put_flag(msg, i))
2203 goto nla_put_failure;
2205 bss_select_support >>= 1;
2207 nla_nest_end(msg, nested);
2210 state->split_start++;
2213 if (rdev->wiphy.num_iftype_ext_capab &&
2214 rdev->wiphy.iftype_ext_capab) {
2215 struct nlattr *nested_ext_capab, *nested;
2217 nested = nla_nest_start(msg,
2218 NL80211_ATTR_IFTYPE_EXT_CAPA);
2220 goto nla_put_failure;
2222 for (i = state->capa_start;
2223 i < rdev->wiphy.num_iftype_ext_capab; i++) {
2224 const struct wiphy_iftype_ext_capab *capab;
2226 capab = &rdev->wiphy.iftype_ext_capab[i];
2228 nested_ext_capab = nla_nest_start(msg, i);
2229 if (!nested_ext_capab ||
2230 nla_put_u32(msg, NL80211_ATTR_IFTYPE,
2232 nla_put(msg, NL80211_ATTR_EXT_CAPA,
2233 capab->extended_capabilities_len,
2234 capab->extended_capabilities) ||
2235 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2236 capab->extended_capabilities_len,
2237 capab->extended_capabilities_mask))
2238 goto nla_put_failure;
2240 nla_nest_end(msg, nested_ext_capab);
2244 nla_nest_end(msg, nested);
2245 if (i < rdev->wiphy.num_iftype_ext_capab) {
2246 state->capa_start = i + 1;
2251 if (nla_put_u32(msg, NL80211_ATTR_BANDS,
2252 rdev->wiphy.nan_supported_bands))
2253 goto nla_put_failure;
2255 if (wiphy_ext_feature_isset(&rdev->wiphy,
2256 NL80211_EXT_FEATURE_TXQS)) {
2257 struct cfg80211_txq_stats txqstats = {};
2260 res = rdev_get_txq_stats(rdev, NULL, &txqstats);
2262 !nl80211_put_txq_stats(msg, &txqstats,
2263 NL80211_ATTR_TXQ_STATS))
2264 goto nla_put_failure;
2266 if (nla_put_u32(msg, NL80211_ATTR_TXQ_LIMIT,
2267 rdev->wiphy.txq_limit))
2268 goto nla_put_failure;
2269 if (nla_put_u32(msg, NL80211_ATTR_TXQ_MEMORY_LIMIT,
2270 rdev->wiphy.txq_memory_limit))
2271 goto nla_put_failure;
2272 if (nla_put_u32(msg, NL80211_ATTR_TXQ_QUANTUM,
2273 rdev->wiphy.txq_quantum))
2274 goto nla_put_failure;
2277 state->split_start++;
2280 if (nl80211_send_pmsr_capa(rdev, msg))
2281 goto nla_put_failure;
2283 state->split_start++;
2286 if (rdev->wiphy.akm_suites &&
2287 nla_put(msg, NL80211_ATTR_AKM_SUITES,
2288 sizeof(u32) * rdev->wiphy.n_akm_suites,
2289 rdev->wiphy.akm_suites))
2290 goto nla_put_failure;
2293 state->split_start = 0;
2297 genlmsg_end(msg, hdr);
2301 genlmsg_cancel(msg, hdr);
2305 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
2306 struct netlink_callback *cb,
2307 struct nl80211_dump_wiphy_state *state)
2309 struct nlattr **tb = genl_family_attrbuf(&nl80211_fam);
2310 int ret = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize, tb,
2311 nl80211_fam.maxattr, nl80211_policy, NULL);
2312 /* ignore parse errors for backward compatibility */
2316 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
2317 if (tb[NL80211_ATTR_WIPHY])
2318 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
2319 if (tb[NL80211_ATTR_WDEV])
2320 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
2321 if (tb[NL80211_ATTR_IFINDEX]) {
2322 struct net_device *netdev;
2323 struct cfg80211_registered_device *rdev;
2324 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
2326 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
2329 if (netdev->ieee80211_ptr) {
2330 rdev = wiphy_to_rdev(
2331 netdev->ieee80211_ptr->wiphy);
2332 state->filter_wiphy = rdev->wiphy_idx;
2339 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
2342 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
2343 struct cfg80211_registered_device *rdev;
2347 state = kzalloc(sizeof(*state), GFP_KERNEL);
2352 state->filter_wiphy = -1;
2353 ret = nl80211_dump_wiphy_parse(skb, cb, state);
2359 cb->args[0] = (long)state;
2362 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2363 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2365 if (++idx <= state->start)
2367 if (state->filter_wiphy != -1 &&
2368 state->filter_wiphy != rdev->wiphy_idx)
2370 /* attempt to fit multiple wiphy data chunks into the skb */
2372 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
2374 NETLINK_CB(cb->skb).portid,
2376 NLM_F_MULTI, state);
2379 * If sending the wiphy data didn't fit (ENOBUFS
2380 * or EMSGSIZE returned), this SKB is still
2381 * empty (so it's not too big because another
2382 * wiphy dataset is already in the skb) and
2383 * we've not tried to adjust the dump allocation
2384 * yet ... then adjust the alloc size to be
2385 * bigger, and return 1 but with the empty skb.
2386 * This results in an empty message being RX'ed
2387 * in userspace, but that is ignored.
2389 * We can then retry with the larger buffer.
2391 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
2392 !skb->len && !state->split &&
2393 cb->min_dump_alloc < 4096) {
2394 cb->min_dump_alloc = 4096;
2395 state->split_start = 0;
2402 } while (state->split_start > 0);
2412 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
2414 kfree((void *)cb->args[0]);
2418 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
2420 struct sk_buff *msg;
2421 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2422 struct nl80211_dump_wiphy_state state = {};
2424 msg = nlmsg_new(4096, GFP_KERNEL);
2428 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
2429 info->snd_portid, info->snd_seq, 0,
2435 return genlmsg_reply(msg, info);
2438 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
2439 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
2440 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
2441 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
2442 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
2443 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
2446 static int parse_txq_params(struct nlattr *tb[],
2447 struct ieee80211_txq_params *txq_params)
2451 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
2452 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
2453 !tb[NL80211_TXQ_ATTR_AIFS])
2456 ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
2457 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
2458 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
2459 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
2460 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
2462 if (ac >= NL80211_NUM_ACS)
2464 txq_params->ac = array_index_nospec(ac, NL80211_NUM_ACS);
2468 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
2471 * You can only set the channel explicitly for WDS interfaces,
2472 * all others have their channel managed via their respective
2473 * "establish a connection" command (connect, join, ...)
2475 * For AP/GO and mesh mode, the channel can be set with the
2476 * channel userspace API, but is only stored and passed to the
2477 * low-level driver when the AP starts or the mesh is joined.
2478 * This is for backward compatibility, userspace can also give
2479 * the channel in the start-ap or join-mesh commands instead.
2481 * Monitors are special as they are normally slaved to
2482 * whatever else is going on, so they have their own special
2483 * operation to set the monitor channel if possible.
2486 wdev->iftype == NL80211_IFTYPE_AP ||
2487 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
2488 wdev->iftype == NL80211_IFTYPE_MONITOR ||
2489 wdev->iftype == NL80211_IFTYPE_P2P_GO;
2492 int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
2493 struct genl_info *info,
2494 struct cfg80211_chan_def *chandef)
2496 struct netlink_ext_ack *extack = info->extack;
2497 struct nlattr **attrs = info->attrs;
2500 if (!attrs[NL80211_ATTR_WIPHY_FREQ])
2503 control_freq = nla_get_u32(attrs[NL80211_ATTR_WIPHY_FREQ]);
2505 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
2506 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
2507 chandef->center_freq1 = control_freq;
2508 chandef->center_freq2 = 0;
2510 /* Primary channel not allowed */
2511 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED) {
2512 NL_SET_ERR_MSG_ATTR(extack, attrs[NL80211_ATTR_WIPHY_FREQ],
2513 "Channel is disabled");
2517 if (attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
2518 enum nl80211_channel_type chantype;
2520 chantype = nla_get_u32(attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
2523 case NL80211_CHAN_NO_HT:
2524 case NL80211_CHAN_HT20:
2525 case NL80211_CHAN_HT40PLUS:
2526 case NL80211_CHAN_HT40MINUS:
2527 cfg80211_chandef_create(chandef, chandef->chan,
2529 /* user input for center_freq is incorrect */
2530 if (attrs[NL80211_ATTR_CENTER_FREQ1] &&
2531 chandef->center_freq1 != nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1])) {
2532 NL_SET_ERR_MSG_ATTR(extack,
2533 attrs[NL80211_ATTR_CENTER_FREQ1],
2534 "bad center frequency 1");
2537 /* center_freq2 must be zero */
2538 if (attrs[NL80211_ATTR_CENTER_FREQ2] &&
2539 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2])) {
2540 NL_SET_ERR_MSG_ATTR(extack,
2541 attrs[NL80211_ATTR_CENTER_FREQ2],
2542 "center frequency 2 can't be used");
2547 NL_SET_ERR_MSG_ATTR(extack,
2548 attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE],
2549 "invalid channel type");
2552 } else if (attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
2554 nla_get_u32(attrs[NL80211_ATTR_CHANNEL_WIDTH]);
2555 if (attrs[NL80211_ATTR_CENTER_FREQ1])
2556 chandef->center_freq1 =
2557 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1]);
2558 if (attrs[NL80211_ATTR_CENTER_FREQ2])
2559 chandef->center_freq2 =
2560 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2]);
2563 if (!cfg80211_chandef_valid(chandef)) {
2564 NL_SET_ERR_MSG(extack, "invalid channel definition");
2568 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
2569 IEEE80211_CHAN_DISABLED)) {
2570 NL_SET_ERR_MSG(extack, "(extension) channel is disabled");
2574 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
2575 chandef->width == NL80211_CHAN_WIDTH_10) &&
2576 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ)) {
2577 NL_SET_ERR_MSG(extack, "5/10 MHz not supported");
2584 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
2585 struct net_device *dev,
2586 struct genl_info *info)
2588 struct cfg80211_chan_def chandef;
2590 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
2591 struct wireless_dev *wdev = NULL;
2594 wdev = dev->ieee80211_ptr;
2595 if (!nl80211_can_set_dev_channel(wdev))
2598 iftype = wdev->iftype;
2600 result = nl80211_parse_chandef(rdev, info, &chandef);
2605 case NL80211_IFTYPE_AP:
2606 case NL80211_IFTYPE_P2P_GO:
2607 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
2612 if (wdev->beacon_interval) {
2613 if (!dev || !rdev->ops->set_ap_chanwidth ||
2614 !(rdev->wiphy.features &
2615 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2620 /* Only allow dynamic channel width changes */
2621 if (chandef.chan != wdev->preset_chandef.chan) {
2625 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2629 wdev->preset_chandef = chandef;
2632 case NL80211_IFTYPE_MESH_POINT:
2633 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2635 case NL80211_IFTYPE_MONITOR:
2636 result = cfg80211_set_monitor_channel(rdev, &chandef);
2645 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2647 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2648 struct net_device *netdev = info->user_ptr[1];
2650 return __nl80211_set_channel(rdev, netdev, info);
2653 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2655 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2656 struct net_device *dev = info->user_ptr[1];
2657 struct wireless_dev *wdev = dev->ieee80211_ptr;
2660 if (!info->attrs[NL80211_ATTR_MAC])
2663 if (netif_running(dev))
2666 if (!rdev->ops->set_wds_peer)
2669 if (wdev->iftype != NL80211_IFTYPE_WDS)
2672 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2673 return rdev_set_wds_peer(rdev, dev, bssid);
2676 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2678 struct cfg80211_registered_device *rdev;
2679 struct net_device *netdev = NULL;
2680 struct wireless_dev *wdev;
2681 int result = 0, rem_txq_params = 0;
2682 struct nlattr *nl_txq_params;
2684 u8 retry_short = 0, retry_long = 0;
2685 u32 frag_threshold = 0, rts_threshold = 0;
2686 u8 coverage_class = 0;
2687 u32 txq_limit = 0, txq_memory_limit = 0, txq_quantum = 0;
2692 * Try to find the wiphy and netdev. Normally this
2693 * function shouldn't need the netdev, but this is
2694 * done for backward compatibility -- previously
2695 * setting the channel was done per wiphy, but now
2696 * it is per netdev. Previous userland like hostapd
2697 * also passed a netdev to set_wiphy, so that it is
2698 * possible to let that go to the right netdev!
2701 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2702 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2704 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2705 if (netdev && netdev->ieee80211_ptr)
2706 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2712 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2715 return PTR_ERR(rdev);
2720 wdev = netdev->ieee80211_ptr;
2723 * end workaround code, by now the rdev is available
2724 * and locked, and wdev may or may not be NULL.
2727 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2728 result = cfg80211_dev_rename(
2729 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2734 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2735 struct ieee80211_txq_params txq_params;
2736 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2738 if (!rdev->ops->set_txq_params)
2744 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2745 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2748 if (!netif_running(netdev))
2751 nla_for_each_nested(nl_txq_params,
2752 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2754 result = nla_parse_nested(tb, NL80211_TXQ_ATTR_MAX,
2760 result = parse_txq_params(tb, &txq_params);
2764 result = rdev_set_txq_params(rdev, netdev,
2771 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2772 result = __nl80211_set_channel(
2774 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2780 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2781 struct wireless_dev *txp_wdev = wdev;
2782 enum nl80211_tx_power_setting type;
2785 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2788 if (!rdev->ops->set_tx_power)
2791 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2792 type = nla_get_u32(info->attrs[idx]);
2794 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2795 (type != NL80211_TX_POWER_AUTOMATIC))
2798 if (type != NL80211_TX_POWER_AUTOMATIC) {
2799 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2800 mbm = nla_get_u32(info->attrs[idx]);
2803 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2808 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2809 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
2812 if ((!rdev->wiphy.available_antennas_tx &&
2813 !rdev->wiphy.available_antennas_rx) ||
2814 !rdev->ops->set_antenna)
2817 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
2818 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
2820 /* reject antenna configurations which don't match the
2821 * available antenna masks, except for the "all" mask */
2822 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
2823 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
2826 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
2827 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
2829 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
2836 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
2837 retry_short = nla_get_u8(
2838 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
2840 changed |= WIPHY_PARAM_RETRY_SHORT;
2843 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
2844 retry_long = nla_get_u8(
2845 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
2847 changed |= WIPHY_PARAM_RETRY_LONG;
2850 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
2851 frag_threshold = nla_get_u32(
2852 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
2853 if (frag_threshold < 256)
2856 if (frag_threshold != (u32) -1) {
2858 * Fragments (apart from the last one) are required to
2859 * have even length. Make the fragmentation code
2860 * simpler by stripping LSB should someone try to use
2861 * odd threshold value.
2863 frag_threshold &= ~0x1;
2865 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
2868 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
2869 rts_threshold = nla_get_u32(
2870 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
2871 changed |= WIPHY_PARAM_RTS_THRESHOLD;
2874 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
2875 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
2878 coverage_class = nla_get_u8(
2879 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
2880 changed |= WIPHY_PARAM_COVERAGE_CLASS;
2883 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
2884 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
2887 changed |= WIPHY_PARAM_DYN_ACK;
2890 if (info->attrs[NL80211_ATTR_TXQ_LIMIT]) {
2891 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2892 NL80211_EXT_FEATURE_TXQS))
2894 txq_limit = nla_get_u32(
2895 info->attrs[NL80211_ATTR_TXQ_LIMIT]);
2896 changed |= WIPHY_PARAM_TXQ_LIMIT;
2899 if (info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]) {
2900 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2901 NL80211_EXT_FEATURE_TXQS))
2903 txq_memory_limit = nla_get_u32(
2904 info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]);
2905 changed |= WIPHY_PARAM_TXQ_MEMORY_LIMIT;
2908 if (info->attrs[NL80211_ATTR_TXQ_QUANTUM]) {
2909 if (!wiphy_ext_feature_isset(&rdev->wiphy,
2910 NL80211_EXT_FEATURE_TXQS))
2912 txq_quantum = nla_get_u32(
2913 info->attrs[NL80211_ATTR_TXQ_QUANTUM]);
2914 changed |= WIPHY_PARAM_TXQ_QUANTUM;
2918 u8 old_retry_short, old_retry_long;
2919 u32 old_frag_threshold, old_rts_threshold;
2920 u8 old_coverage_class;
2921 u32 old_txq_limit, old_txq_memory_limit, old_txq_quantum;
2923 if (!rdev->ops->set_wiphy_params)
2926 old_retry_short = rdev->wiphy.retry_short;
2927 old_retry_long = rdev->wiphy.retry_long;
2928 old_frag_threshold = rdev->wiphy.frag_threshold;
2929 old_rts_threshold = rdev->wiphy.rts_threshold;
2930 old_coverage_class = rdev->wiphy.coverage_class;
2931 old_txq_limit = rdev->wiphy.txq_limit;
2932 old_txq_memory_limit = rdev->wiphy.txq_memory_limit;
2933 old_txq_quantum = rdev->wiphy.txq_quantum;
2935 if (changed & WIPHY_PARAM_RETRY_SHORT)
2936 rdev->wiphy.retry_short = retry_short;
2937 if (changed & WIPHY_PARAM_RETRY_LONG)
2938 rdev->wiphy.retry_long = retry_long;
2939 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
2940 rdev->wiphy.frag_threshold = frag_threshold;
2941 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
2942 rdev->wiphy.rts_threshold = rts_threshold;
2943 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
2944 rdev->wiphy.coverage_class = coverage_class;
2945 if (changed & WIPHY_PARAM_TXQ_LIMIT)
2946 rdev->wiphy.txq_limit = txq_limit;
2947 if (changed & WIPHY_PARAM_TXQ_MEMORY_LIMIT)
2948 rdev->wiphy.txq_memory_limit = txq_memory_limit;
2949 if (changed & WIPHY_PARAM_TXQ_QUANTUM)
2950 rdev->wiphy.txq_quantum = txq_quantum;
2952 result = rdev_set_wiphy_params(rdev, changed);
2954 rdev->wiphy.retry_short = old_retry_short;
2955 rdev->wiphy.retry_long = old_retry_long;
2956 rdev->wiphy.frag_threshold = old_frag_threshold;
2957 rdev->wiphy.rts_threshold = old_rts_threshold;
2958 rdev->wiphy.coverage_class = old_coverage_class;
2959 rdev->wiphy.txq_limit = old_txq_limit;
2960 rdev->wiphy.txq_memory_limit = old_txq_memory_limit;
2961 rdev->wiphy.txq_quantum = old_txq_quantum;
2968 static int nl80211_send_chandef(struct sk_buff *msg,
2969 const struct cfg80211_chan_def *chandef)
2971 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
2974 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
2975 chandef->chan->center_freq))
2977 switch (chandef->width) {
2978 case NL80211_CHAN_WIDTH_20_NOHT:
2979 case NL80211_CHAN_WIDTH_20:
2980 case NL80211_CHAN_WIDTH_40:
2981 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
2982 cfg80211_get_chandef_type(chandef)))
2988 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
2990 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
2992 if (chandef->center_freq2 &&
2993 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
2998 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
2999 struct cfg80211_registered_device *rdev,
3000 struct wireless_dev *wdev,
3001 enum nl80211_commands cmd)
3003 struct net_device *dev = wdev->netdev;
3006 WARN_ON(cmd != NL80211_CMD_NEW_INTERFACE &&
3007 cmd != NL80211_CMD_DEL_INTERFACE &&
3008 cmd != NL80211_CMD_SET_INTERFACE);
3010 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
3015 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3016 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
3017 goto nla_put_failure;
3019 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
3020 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
3021 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
3022 NL80211_ATTR_PAD) ||
3023 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
3024 nla_put_u32(msg, NL80211_ATTR_GENERATION,
3025 rdev->devlist_generation ^
3026 (cfg80211_rdev_list_generation << 2)) ||
3027 nla_put_u8(msg, NL80211_ATTR_4ADDR, wdev->use_4addr))
3028 goto nla_put_failure;
3030 if (rdev->ops->get_channel) {
3032 struct cfg80211_chan_def chandef;
3034 ret = rdev_get_channel(rdev, wdev, &chandef);
3036 if (nl80211_send_chandef(msg, &chandef))
3037 goto nla_put_failure;
3041 if (rdev->ops->get_tx_power) {
3044 ret = rdev_get_tx_power(rdev, wdev, &dbm);
3046 nla_put_u32(msg, NL80211_ATTR_WIPHY_TX_POWER_LEVEL,
3048 goto nla_put_failure;
3052 switch (wdev->iftype) {
3053 case NL80211_IFTYPE_AP:
3054 if (wdev->ssid_len &&
3055 nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
3056 goto nla_put_failure_locked;
3058 case NL80211_IFTYPE_STATION:
3059 case NL80211_IFTYPE_P2P_CLIENT:
3060 case NL80211_IFTYPE_ADHOC: {
3062 if (!wdev->current_bss)
3065 ssid_ie = ieee80211_bss_get_ie(&wdev->current_bss->pub,
3068 nla_put(msg, NL80211_ATTR_SSID, ssid_ie[1], ssid_ie + 2))
3069 goto nla_put_failure_rcu_locked;
3079 if (rdev->ops->get_txq_stats) {
3080 struct cfg80211_txq_stats txqstats = {};
3081 int ret = rdev_get_txq_stats(rdev, wdev, &txqstats);
3084 !nl80211_put_txq_stats(msg, &txqstats,
3085 NL80211_ATTR_TXQ_STATS))
3086 goto nla_put_failure;
3089 genlmsg_end(msg, hdr);
3092 nla_put_failure_rcu_locked:
3094 nla_put_failure_locked:
3097 genlmsg_cancel(msg, hdr);
3101 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
3105 int wp_start = cb->args[0];
3106 int if_start = cb->args[1];
3107 int filter_wiphy = -1;
3108 struct cfg80211_registered_device *rdev;
3109 struct wireless_dev *wdev;
3114 struct nl80211_dump_wiphy_state state = {
3118 ret = nl80211_dump_wiphy_parse(skb, cb, &state);
3122 filter_wiphy = state.filter_wiphy;
3125 * if filtering, set cb->args[2] to +1 since 0 is the default
3126 * value needed to determine that parsing is necessary.
3128 if (filter_wiphy >= 0)
3129 cb->args[2] = filter_wiphy + 1;
3132 } else if (cb->args[2] > 0) {
3133 filter_wiphy = cb->args[2] - 1;
3136 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
3137 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
3139 if (wp_idx < wp_start) {
3144 if (filter_wiphy >= 0 && filter_wiphy != rdev->wiphy_idx)
3149 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
3150 if (if_idx < if_start) {
3154 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
3155 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3157 NL80211_CMD_NEW_INTERFACE) < 0) {
3166 cb->args[0] = wp_idx;
3167 cb->args[1] = if_idx;
3176 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
3178 struct sk_buff *msg;
3179 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3180 struct wireless_dev *wdev = info->user_ptr[1];
3182 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3186 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3187 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3192 return genlmsg_reply(msg, info);
3195 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
3196 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
3197 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
3198 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
3199 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
3200 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
3201 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
3204 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
3206 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
3214 if (nla_parse_nested(flags, NL80211_MNTR_FLAG_MAX, nla,
3215 mntr_flags_policy, NULL))
3218 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
3220 *mntrflags |= (1<<flag);
3222 *mntrflags |= MONITOR_FLAG_CHANGED;
3227 static int nl80211_parse_mon_options(struct cfg80211_registered_device *rdev,
3228 enum nl80211_iftype type,
3229 struct genl_info *info,
3230 struct vif_params *params)
3232 bool change = false;
3235 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
3236 if (type != NL80211_IFTYPE_MONITOR)
3239 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
3247 if (params->flags & MONITOR_FLAG_ACTIVE &&
3248 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
3251 if (info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]) {
3252 const u8 *mumimo_groups;
3253 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3255 if (type != NL80211_IFTYPE_MONITOR)
3258 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3262 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]);
3264 /* bits 0 and 63 are reserved and must be zero */
3265 if ((mumimo_groups[0] & BIT(0)) ||
3266 (mumimo_groups[VHT_MUMIMO_GROUPS_DATA_LEN - 1] & BIT(7)))
3269 params->vht_mumimo_groups = mumimo_groups;
3273 if (info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]) {
3274 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3276 if (type != NL80211_IFTYPE_MONITOR)
3279 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3282 params->vht_mumimo_follow_addr =
3283 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]);
3287 return change ? 1 : 0;
3290 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
3291 struct net_device *netdev, u8 use_4addr,
3292 enum nl80211_iftype iftype)
3295 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
3301 case NL80211_IFTYPE_AP_VLAN:
3302 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
3305 case NL80211_IFTYPE_STATION:
3306 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
3316 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
3318 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3319 struct vif_params params;
3321 enum nl80211_iftype otype, ntype;
3322 struct net_device *dev = info->user_ptr[1];
3323 bool change = false;
3325 memset(¶ms, 0, sizeof(params));
3327 otype = ntype = dev->ieee80211_ptr->iftype;
3329 if (info->attrs[NL80211_ATTR_IFTYPE]) {
3330 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3335 if (info->attrs[NL80211_ATTR_MESH_ID]) {
3336 struct wireless_dev *wdev = dev->ieee80211_ptr;
3338 if (ntype != NL80211_IFTYPE_MESH_POINT)
3340 if (netif_running(dev))
3344 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3345 IEEE80211_MAX_MESH_ID_LEN);
3346 wdev->mesh_id_up_len =
3347 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3348 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3349 wdev->mesh_id_up_len);
3353 if (info->attrs[NL80211_ATTR_4ADDR]) {
3354 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3356 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
3360 params.use_4addr = -1;
3363 err = nl80211_parse_mon_options(rdev, ntype, info, ¶ms);
3370 err = cfg80211_change_iface(rdev, dev, ntype, ¶ms);
3374 if (!err && params.use_4addr != -1)
3375 dev->ieee80211_ptr->use_4addr = params.use_4addr;
3377 if (change && !err) {
3378 struct wireless_dev *wdev = dev->ieee80211_ptr;
3380 nl80211_notify_iface(rdev, wdev, NL80211_CMD_SET_INTERFACE);
3386 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
3388 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3389 struct vif_params params;
3390 struct wireless_dev *wdev;
3391 struct sk_buff *msg;
3393 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
3395 /* to avoid failing a new interface creation due to pending removal */
3396 cfg80211_destroy_ifaces(rdev);
3398 memset(¶ms, 0, sizeof(params));
3400 if (!info->attrs[NL80211_ATTR_IFNAME])
3403 if (info->attrs[NL80211_ATTR_IFTYPE])
3404 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3406 if (!rdev->ops->add_virtual_intf ||
3407 !(rdev->wiphy.interface_modes & (1 << type)))
3410 if ((type == NL80211_IFTYPE_P2P_DEVICE || type == NL80211_IFTYPE_NAN ||
3411 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
3412 info->attrs[NL80211_ATTR_MAC]) {
3413 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
3415 if (!is_valid_ether_addr(params.macaddr))
3416 return -EADDRNOTAVAIL;
3419 if (info->attrs[NL80211_ATTR_4ADDR]) {
3420 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3421 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
3426 err = nl80211_parse_mon_options(rdev, type, info, ¶ms);
3430 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3434 wdev = rdev_add_virtual_intf(rdev,
3435 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
3436 NET_NAME_USER, type, ¶ms);
3437 if (WARN_ON(!wdev)) {
3440 } else if (IS_ERR(wdev)) {
3442 return PTR_ERR(wdev);
3445 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
3446 wdev->owner_nlportid = info->snd_portid;
3449 case NL80211_IFTYPE_MESH_POINT:
3450 if (!info->attrs[NL80211_ATTR_MESH_ID])
3453 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3454 IEEE80211_MAX_MESH_ID_LEN);
3455 wdev->mesh_id_up_len =
3456 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3457 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3458 wdev->mesh_id_up_len);
3461 case NL80211_IFTYPE_NAN:
3462 case NL80211_IFTYPE_P2P_DEVICE:
3464 * P2P Device and NAN do not have a netdev, so don't go
3465 * through the netdev notifier and must be added here
3467 cfg80211_init_wdev(rdev, wdev);
3473 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3474 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3479 return genlmsg_reply(msg, info);
3482 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
3484 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3485 struct wireless_dev *wdev = info->user_ptr[1];
3487 if (!rdev->ops->del_virtual_intf)
3491 * If we remove a wireless device without a netdev then clear
3492 * user_ptr[1] so that nl80211_post_doit won't dereference it
3493 * to check if it needs to do dev_put(). Otherwise it crashes
3494 * since the wdev has been freed, unlike with a netdev where
3495 * we need the dev_put() for the netdev to really be freed.
3498 info->user_ptr[1] = NULL;
3500 return rdev_del_virtual_intf(rdev, wdev);
3503 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
3505 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3506 struct net_device *dev = info->user_ptr[1];
3509 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
3512 if (!rdev->ops->set_noack_map)
3515 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
3517 return rdev_set_noack_map(rdev, dev, noack_map);
3520 struct get_key_cookie {
3521 struct sk_buff *msg;
3526 static void get_key_callback(void *c, struct key_params *params)
3529 struct get_key_cookie *cookie = c;
3532 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
3533 params->key_len, params->key)) ||
3535 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
3536 params->seq_len, params->seq)) ||
3538 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
3540 goto nla_put_failure;
3542 key = nla_nest_start(cookie->msg, NL80211_ATTR_KEY);
3544 goto nla_put_failure;
3547 nla_put(cookie->msg, NL80211_KEY_DATA,
3548 params->key_len, params->key)) ||
3550 nla_put(cookie->msg, NL80211_KEY_SEQ,
3551 params->seq_len, params->seq)) ||
3553 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
3555 goto nla_put_failure;
3557 if (nla_put_u8(cookie->msg, NL80211_KEY_IDX, cookie->idx))
3558 goto nla_put_failure;
3560 nla_nest_end(cookie->msg, key);
3567 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
3569 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3571 struct net_device *dev = info->user_ptr[1];
3573 const u8 *mac_addr = NULL;
3575 struct get_key_cookie cookie = {
3579 struct sk_buff *msg;
3581 if (info->attrs[NL80211_ATTR_KEY_IDX])
3582 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
3584 if (info->attrs[NL80211_ATTR_MAC])
3585 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3587 pairwise = !!mac_addr;
3588 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
3589 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
3591 if (kt != NL80211_KEYTYPE_GROUP &&
3592 kt != NL80211_KEYTYPE_PAIRWISE)
3594 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
3597 if (!rdev->ops->get_key)
3600 if (!pairwise && mac_addr && !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3603 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3607 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
3608 NL80211_CMD_NEW_KEY);
3610 goto nla_put_failure;
3613 cookie.idx = key_idx;
3615 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3616 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
3617 goto nla_put_failure;
3619 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
3620 goto nla_put_failure;
3622 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
3629 goto nla_put_failure;
3631 genlmsg_end(msg, hdr);
3632 return genlmsg_reply(msg, info);
3641 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
3643 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3644 struct key_parse key;
3646 struct net_device *dev = info->user_ptr[1];
3648 err = nl80211_parse_key(info, &key);
3655 /* Only support setting default key and
3656 * Extended Key ID action NL80211_KEY_SET_TX.
3658 if (!key.def && !key.defmgmt &&
3659 !(key.p.mode == NL80211_KEY_SET_TX))
3662 wdev_lock(dev->ieee80211_ptr);
3665 if (!rdev->ops->set_default_key) {
3670 err = nl80211_key_allowed(dev->ieee80211_ptr);
3674 err = rdev_set_default_key(rdev, dev, key.idx,
3675 key.def_uni, key.def_multi);
3680 #ifdef CONFIG_CFG80211_WEXT
3681 dev->ieee80211_ptr->wext.default_key = key.idx;
3683 } else if (key.defmgmt) {
3684 if (key.def_uni || !key.def_multi) {
3689 if (!rdev->ops->set_default_mgmt_key) {
3694 err = nl80211_key_allowed(dev->ieee80211_ptr);
3698 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
3702 #ifdef CONFIG_CFG80211_WEXT
3703 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
3705 } else if (key.p.mode == NL80211_KEY_SET_TX &&
3706 wiphy_ext_feature_isset(&rdev->wiphy,
3707 NL80211_EXT_FEATURE_EXT_KEY_ID)) {
3708 u8 *mac_addr = NULL;
3710 if (info->attrs[NL80211_ATTR_MAC])
3711 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3713 if (!mac_addr || key.idx < 0 || key.idx > 1) {
3718 err = rdev_add_key(rdev, dev, key.idx,
3719 NL80211_KEYTYPE_PAIRWISE,
3725 wdev_unlock(dev->ieee80211_ptr);
3730 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
3732 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3734 struct net_device *dev = info->user_ptr[1];
3735 struct key_parse key;
3736 const u8 *mac_addr = NULL;
3738 err = nl80211_parse_key(info, &key);
3745 if (info->attrs[NL80211_ATTR_MAC])
3746 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3748 if (key.type == -1) {
3750 key.type = NL80211_KEYTYPE_PAIRWISE;
3752 key.type = NL80211_KEYTYPE_GROUP;
3756 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3757 key.type != NL80211_KEYTYPE_GROUP)
3760 if (!rdev->ops->add_key)
3763 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3764 key.type == NL80211_KEYTYPE_PAIRWISE,
3768 wdev_lock(dev->ieee80211_ptr);
3769 err = nl80211_key_allowed(dev->ieee80211_ptr);
3771 err = rdev_add_key(rdev, dev, key.idx,
3772 key.type == NL80211_KEYTYPE_PAIRWISE,
3774 wdev_unlock(dev->ieee80211_ptr);
3779 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3781 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3783 struct net_device *dev = info->user_ptr[1];
3784 u8 *mac_addr = NULL;
3785 struct key_parse key;
3787 err = nl80211_parse_key(info, &key);
3791 if (info->attrs[NL80211_ATTR_MAC])
3792 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3794 if (key.type == -1) {
3796 key.type = NL80211_KEYTYPE_PAIRWISE;
3798 key.type = NL80211_KEYTYPE_GROUP;
3802 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3803 key.type != NL80211_KEYTYPE_GROUP)
3806 if (!rdev->ops->del_key)
3809 wdev_lock(dev->ieee80211_ptr);
3810 err = nl80211_key_allowed(dev->ieee80211_ptr);
3812 if (key.type == NL80211_KEYTYPE_GROUP && mac_addr &&
3813 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3817 err = rdev_del_key(rdev, dev, key.idx,
3818 key.type == NL80211_KEYTYPE_PAIRWISE,
3821 #ifdef CONFIG_CFG80211_WEXT
3823 if (key.idx == dev->ieee80211_ptr->wext.default_key)
3824 dev->ieee80211_ptr->wext.default_key = -1;
3825 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
3826 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
3829 wdev_unlock(dev->ieee80211_ptr);
3834 /* This function returns an error or the number of nested attributes */
3835 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
3837 struct nlattr *attr;
3838 int n_entries = 0, tmp;
3840 nla_for_each_nested(attr, nl_attr, tmp) {
3841 if (nla_len(attr) != ETH_ALEN)
3851 * This function parses ACL information and allocates memory for ACL data.
3852 * On successful return, the calling function is responsible to free the
3853 * ACL buffer returned by this function.
3855 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
3856 struct genl_info *info)
3858 enum nl80211_acl_policy acl_policy;
3859 struct nlattr *attr;
3860 struct cfg80211_acl_data *acl;
3861 int i = 0, n_entries, tmp;
3863 if (!wiphy->max_acl_mac_addrs)
3864 return ERR_PTR(-EOPNOTSUPP);
3866 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
3867 return ERR_PTR(-EINVAL);
3869 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
3870 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
3871 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
3872 return ERR_PTR(-EINVAL);
3874 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
3875 return ERR_PTR(-EINVAL);
3877 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
3879 return ERR_PTR(n_entries);
3881 if (n_entries > wiphy->max_acl_mac_addrs)
3882 return ERR_PTR(-ENOTSUPP);
3884 acl = kzalloc(struct_size(acl, mac_addrs, n_entries), GFP_KERNEL);
3886 return ERR_PTR(-ENOMEM);
3888 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
3889 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
3893 acl->n_acl_entries = n_entries;
3894 acl->acl_policy = acl_policy;
3899 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
3901 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3902 struct net_device *dev = info->user_ptr[1];
3903 struct cfg80211_acl_data *acl;
3906 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
3907 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
3910 if (!dev->ieee80211_ptr->beacon_interval)
3913 acl = parse_acl_data(&rdev->wiphy, info);
3915 return PTR_ERR(acl);
3917 err = rdev_set_mac_acl(rdev, dev, acl);
3924 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
3925 u8 *rates, u8 rates_len)
3930 for (i = 0; i < rates_len; i++) {
3931 int rate = (rates[i] & 0x7f) * 5;
3934 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
3935 struct ieee80211_rate *srate =
3936 &sband->bitrates[ridx];
3937 if (rate == srate->bitrate) {
3942 if (ridx == sband->n_bitrates)
3943 return 0; /* rate not found */
3949 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
3950 u8 *rates, u8 rates_len,
3951 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
3955 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
3957 for (i = 0; i < rates_len; i++) {
3960 ridx = rates[i] / 8;
3961 rbit = BIT(rates[i] % 8);
3963 /* check validity */
3964 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
3967 /* check availability */
3968 ridx = array_index_nospec(ridx, IEEE80211_HT_MCS_MASK_LEN);
3969 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
3978 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
3982 switch (vht_mcs_map) {
3983 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
3985 case IEEE80211_VHT_MCS_SUPPORT_0_7:
3988 case IEEE80211_VHT_MCS_SUPPORT_0_8:
3991 case IEEE80211_VHT_MCS_SUPPORT_0_9:
4001 static void vht_build_mcs_mask(u16 vht_mcs_map,
4002 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
4006 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
4007 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
4012 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
4013 struct nl80211_txrate_vht *txrate,
4014 u16 mcs[NL80211_VHT_NSS_MAX])
4016 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4017 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
4020 if (!sband->vht_cap.vht_supported)
4023 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
4025 /* Build vht_mcs_mask from VHT capabilities */
4026 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
4028 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4029 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
4030 mcs[i] = txrate->mcs[i];
4038 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
4039 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
4040 .len = NL80211_MAX_SUPP_RATES },
4041 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
4042 .len = NL80211_MAX_SUPP_HT_RATES },
4043 [NL80211_TXRATE_VHT] = { .len = sizeof(struct nl80211_txrate_vht)},
4044 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
4047 static int nl80211_parse_tx_bitrate_mask(struct genl_info *info,
4048 struct cfg80211_bitrate_mask *mask)
4050 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
4051 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4053 struct nlattr *tx_rates;
4054 struct ieee80211_supported_band *sband;
4057 memset(mask, 0, sizeof(*mask));
4058 /* Default to all rates enabled */
4059 for (i = 0; i < NUM_NL80211_BANDS; i++) {
4060 sband = rdev->wiphy.bands[i];
4065 mask->control[i].legacy = (1 << sband->n_bitrates) - 1;
4066 memcpy(mask->control[i].ht_mcs,
4067 sband->ht_cap.mcs.rx_mask,
4068 sizeof(mask->control[i].ht_mcs));
4070 if (!sband->vht_cap.vht_supported)
4073 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4074 vht_build_mcs_mask(vht_tx_mcs_map, mask->control[i].vht_mcs);
4077 /* if no rates are given set it back to the defaults */
4078 if (!info->attrs[NL80211_ATTR_TX_RATES])
4081 /* The nested attribute uses enum nl80211_band as the index. This maps
4082 * directly to the enum nl80211_band values used in cfg80211.
4084 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
4085 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
4086 enum nl80211_band band = nla_type(tx_rates);
4089 if (band < 0 || band >= NUM_NL80211_BANDS)
4091 sband = rdev->wiphy.bands[band];
4094 err = nla_parse_nested(tb, NL80211_TXRATE_MAX, tx_rates,
4095 nl80211_txattr_policy, info->extack);
4098 if (tb[NL80211_TXRATE_LEGACY]) {
4099 mask->control[band].legacy = rateset_to_mask(
4101 nla_data(tb[NL80211_TXRATE_LEGACY]),
4102 nla_len(tb[NL80211_TXRATE_LEGACY]));
4103 if ((mask->control[band].legacy == 0) &&
4104 nla_len(tb[NL80211_TXRATE_LEGACY]))
4107 if (tb[NL80211_TXRATE_HT]) {
4108 if (!ht_rateset_to_mask(
4110 nla_data(tb[NL80211_TXRATE_HT]),
4111 nla_len(tb[NL80211_TXRATE_HT]),
4112 mask->control[band].ht_mcs))
4115 if (tb[NL80211_TXRATE_VHT]) {
4116 if (!vht_set_mcs_mask(
4118 nla_data(tb[NL80211_TXRATE_VHT]),
4119 mask->control[band].vht_mcs))
4122 if (tb[NL80211_TXRATE_GI]) {
4123 mask->control[band].gi =
4124 nla_get_u8(tb[NL80211_TXRATE_GI]);
4125 if (mask->control[band].gi > NL80211_TXRATE_FORCE_LGI)
4129 if (mask->control[band].legacy == 0) {
4130 /* don't allow empty legacy rates if HT or VHT
4131 * are not even supported.
4133 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
4134 rdev->wiphy.bands[band]->vht_cap.vht_supported))
4137 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
4138 if (mask->control[band].ht_mcs[i])
4141 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
4142 if (mask->control[band].vht_mcs[i])
4145 /* legacy and mcs rates may not be both empty */
4154 static int validate_beacon_tx_rate(struct cfg80211_registered_device *rdev,
4155 enum nl80211_band band,
4156 struct cfg80211_bitrate_mask *beacon_rate)
4158 u32 count_ht, count_vht, i;
4159 u32 rate = beacon_rate->control[band].legacy;
4161 /* Allow only one rate */
4162 if (hweight32(rate) > 1)
4166 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
4167 if (hweight8(beacon_rate->control[band].ht_mcs[i]) > 1) {
4169 } else if (beacon_rate->control[band].ht_mcs[i]) {
4174 if (count_ht && rate)
4179 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4180 if (hweight16(beacon_rate->control[band].vht_mcs[i]) > 1) {
4182 } else if (beacon_rate->control[band].vht_mcs[i]) {
4187 if (count_vht && rate)
4191 if ((count_ht && count_vht) || (!rate && !count_ht && !count_vht))
4195 !wiphy_ext_feature_isset(&rdev->wiphy,
4196 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY))
4199 !wiphy_ext_feature_isset(&rdev->wiphy,
4200 NL80211_EXT_FEATURE_BEACON_RATE_HT))
4203 !wiphy_ext_feature_isset(&rdev->wiphy,
4204 NL80211_EXT_FEATURE_BEACON_RATE_VHT))
4210 static int nl80211_parse_beacon(struct cfg80211_registered_device *rdev,
4211 struct nlattr *attrs[],
4212 struct cfg80211_beacon_data *bcn)
4214 bool haveinfo = false;
4217 memset(bcn, 0, sizeof(*bcn));
4219 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
4220 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
4221 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
4227 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
4228 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
4229 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
4236 if (attrs[NL80211_ATTR_IE]) {
4237 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
4238 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
4241 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
4242 bcn->proberesp_ies =
4243 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4244 bcn->proberesp_ies_len =
4245 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4248 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
4249 bcn->assocresp_ies =
4250 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4251 bcn->assocresp_ies_len =
4252 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4255 if (attrs[NL80211_ATTR_PROBE_RESP]) {
4256 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
4257 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
4260 if (attrs[NL80211_ATTR_FTM_RESPONDER]) {
4261 struct nlattr *tb[NL80211_FTM_RESP_ATTR_MAX + 1];
4263 err = nla_parse_nested(tb, NL80211_FTM_RESP_ATTR_MAX,
4264 attrs[NL80211_ATTR_FTM_RESPONDER],
4269 if (tb[NL80211_FTM_RESP_ATTR_ENABLED] &&
4270 wiphy_ext_feature_isset(&rdev->wiphy,
4271 NL80211_EXT_FEATURE_ENABLE_FTM_RESPONDER))
4272 bcn->ftm_responder = 1;
4276 if (tb[NL80211_FTM_RESP_ATTR_LCI]) {
4277 bcn->lci = nla_data(tb[NL80211_FTM_RESP_ATTR_LCI]);
4278 bcn->lci_len = nla_len(tb[NL80211_FTM_RESP_ATTR_LCI]);
4281 if (tb[NL80211_FTM_RESP_ATTR_CIVICLOC]) {
4282 bcn->civicloc = nla_data(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4283 bcn->civicloc_len = nla_len(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4286 bcn->ftm_responder = -1;
4292 static void nl80211_check_ap_rate_selectors(struct cfg80211_ap_settings *params,
4300 for (i = 0; i < rates[1]; i++) {
4301 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_HT_PHY)
4302 params->ht_required = true;
4303 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_VHT_PHY)
4304 params->vht_required = true;
4309 * Since the nl80211 API didn't include, from the beginning, attributes about
4310 * HT/VHT requirements/capabilities, we parse them out of the IEs for the
4311 * benefit of drivers that rebuild IEs in the firmware.
4313 static void nl80211_calculate_ap_params(struct cfg80211_ap_settings *params)
4315 const struct cfg80211_beacon_data *bcn = ¶ms->beacon;
4316 size_t ies_len = bcn->tail_len;
4317 const u8 *ies = bcn->tail;
4321 rates = cfg80211_find_ie(WLAN_EID_SUPP_RATES, ies, ies_len);
4322 nl80211_check_ap_rate_selectors(params, rates);
4324 rates = cfg80211_find_ie(WLAN_EID_EXT_SUPP_RATES, ies, ies_len);
4325 nl80211_check_ap_rate_selectors(params, rates);
4327 cap = cfg80211_find_ie(WLAN_EID_HT_CAPABILITY, ies, ies_len);
4328 if (cap && cap[1] >= sizeof(*params->ht_cap))
4329 params->ht_cap = (void *)(cap + 2);
4330 cap = cfg80211_find_ie(WLAN_EID_VHT_CAPABILITY, ies, ies_len);
4331 if (cap && cap[1] >= sizeof(*params->vht_cap))
4332 params->vht_cap = (void *)(cap + 2);
4333 cap = cfg80211_find_ext_ie(WLAN_EID_EXT_HE_CAPABILITY, ies, ies_len);
4334 if (cap && cap[1] >= sizeof(*params->he_cap) + 1)
4335 params->he_cap = (void *)(cap + 3);
4338 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
4339 struct cfg80211_ap_settings *params)
4341 struct wireless_dev *wdev;
4344 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
4345 if (wdev->iftype != NL80211_IFTYPE_AP &&
4346 wdev->iftype != NL80211_IFTYPE_P2P_GO)
4349 if (!wdev->preset_chandef.chan)
4352 params->chandef = wdev->preset_chandef;
4360 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
4361 enum nl80211_auth_type auth_type,
4362 enum nl80211_commands cmd)
4364 if (auth_type > NL80211_AUTHTYPE_MAX)
4368 case NL80211_CMD_AUTHENTICATE:
4369 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4370 auth_type == NL80211_AUTHTYPE_SAE)
4372 if (!wiphy_ext_feature_isset(&rdev->wiphy,
4373 NL80211_EXT_FEATURE_FILS_STA) &&
4374 (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4375 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4376 auth_type == NL80211_AUTHTYPE_FILS_PK))
4379 case NL80211_CMD_CONNECT:
4380 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4381 auth_type == NL80211_AUTHTYPE_SAE)
4384 /* FILS with SK PFS or PK not supported yet */
4385 if (auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4386 auth_type == NL80211_AUTHTYPE_FILS_PK)
4388 if (!wiphy_ext_feature_isset(
4390 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
4391 auth_type == NL80211_AUTHTYPE_FILS_SK)
4394 case NL80211_CMD_START_AP:
4395 /* SAE not supported yet */
4396 if (auth_type == NL80211_AUTHTYPE_SAE)
4398 /* FILS not supported yet */
4399 if (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4400 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4401 auth_type == NL80211_AUTHTYPE_FILS_PK)
4409 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
4411 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4412 struct net_device *dev = info->user_ptr[1];
4413 struct wireless_dev *wdev = dev->ieee80211_ptr;
4414 struct cfg80211_ap_settings params;
4417 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4418 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4421 if (!rdev->ops->start_ap)
4424 if (wdev->beacon_interval)
4427 memset(¶ms, 0, sizeof(params));
4429 /* these are required for START_AP */
4430 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
4431 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
4432 !info->attrs[NL80211_ATTR_BEACON_HEAD])
4435 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon);
4439 params.beacon_interval =
4440 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
4441 params.dtim_period =
4442 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
4444 err = cfg80211_validate_beacon_int(rdev, dev->ieee80211_ptr->iftype,
4445 params.beacon_interval);
4450 * In theory, some of these attributes should be required here
4451 * but since they were not used when the command was originally
4452 * added, keep them optional for old user space programs to let
4453 * them continue to work with drivers that do not need the
4454 * additional information -- drivers must check!
4456 if (info->attrs[NL80211_ATTR_SSID]) {
4457 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
4459 nla_len(info->attrs[NL80211_ATTR_SSID]);
4460 if (params.ssid_len == 0 ||
4461 params.ssid_len > IEEE80211_MAX_SSID_LEN)
4465 if (info->attrs[NL80211_ATTR_HIDDEN_SSID])
4466 params.hidden_ssid = nla_get_u32(
4467 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
4469 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
4471 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
4472 params.auth_type = nla_get_u32(
4473 info->attrs[NL80211_ATTR_AUTH_TYPE]);
4474 if (!nl80211_valid_auth_type(rdev, params.auth_type,
4475 NL80211_CMD_START_AP))
4478 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
4480 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
4481 NL80211_MAX_NR_CIPHER_SUITES);
4485 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
4486 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
4488 params.inactivity_timeout = nla_get_u16(
4489 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
4492 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4493 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4495 params.p2p_ctwindow =
4496 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4497 if (params.p2p_ctwindow != 0 &&
4498 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4502 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4505 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4507 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4508 params.p2p_opp_ps = tmp;
4509 if (params.p2p_opp_ps != 0 &&
4510 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4514 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
4515 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
4518 } else if (wdev->preset_chandef.chan) {
4519 params.chandef = wdev->preset_chandef;
4520 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
4523 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
4527 if (info->attrs[NL80211_ATTR_TX_RATES]) {
4528 err = nl80211_parse_tx_bitrate_mask(info, ¶ms.beacon_rate);
4532 err = validate_beacon_tx_rate(rdev, params.chandef.chan->band,
4533 ¶ms.beacon_rate);
4538 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
4540 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
4541 switch (params.smps_mode) {
4542 case NL80211_SMPS_OFF:
4544 case NL80211_SMPS_STATIC:
4545 if (!(rdev->wiphy.features &
4546 NL80211_FEATURE_STATIC_SMPS))
4549 case NL80211_SMPS_DYNAMIC:
4550 if (!(rdev->wiphy.features &
4551 NL80211_FEATURE_DYNAMIC_SMPS))
4558 params.smps_mode = NL80211_SMPS_OFF;
4561 params.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
4562 if (params.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ])
4565 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
4566 params.acl = parse_acl_data(&rdev->wiphy, info);
4567 if (IS_ERR(params.acl))
4568 return PTR_ERR(params.acl);
4571 nl80211_calculate_ap_params(¶ms);
4573 if (info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])
4574 params.flags |= AP_SETTINGS_EXTERNAL_AUTH_SUPPORT;
4577 err = rdev_start_ap(rdev, dev, ¶ms);
4579 wdev->preset_chandef = params.chandef;
4580 wdev->beacon_interval = params.beacon_interval;
4581 wdev->chandef = params.chandef;
4582 wdev->ssid_len = params.ssid_len;
4583 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
4585 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
4586 wdev->conn_owner_nlportid = info->snd_portid;
4595 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
4597 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4598 struct net_device *dev = info->user_ptr[1];
4599 struct wireless_dev *wdev = dev->ieee80211_ptr;
4600 struct cfg80211_beacon_data params;
4603 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4604 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4607 if (!rdev->ops->change_beacon)
4610 if (!wdev->beacon_interval)
4613 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms);
4618 err = rdev_change_beacon(rdev, dev, ¶ms);
4624 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
4626 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4627 struct net_device *dev = info->user_ptr[1];
4629 return cfg80211_stop_ap(rdev, dev, false);
4632 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
4633 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
4634 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
4635 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
4636 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
4637 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
4638 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
4641 static int parse_station_flags(struct genl_info *info,
4642 enum nl80211_iftype iftype,
4643 struct station_parameters *params)
4645 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
4650 * Try parsing the new attribute first so userspace
4651 * can specify both for older kernels.
4653 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
4655 struct nl80211_sta_flag_update *sta_flags;
4657 sta_flags = nla_data(nla);
4658 params->sta_flags_mask = sta_flags->mask;
4659 params->sta_flags_set = sta_flags->set;
4660 params->sta_flags_set &= params->sta_flags_mask;
4661 if ((params->sta_flags_mask |
4662 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
4667 /* if present, parse the old attribute */
4669 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
4673 if (nla_parse_nested(flags, NL80211_STA_FLAG_MAX, nla,
4674 sta_flags_policy, info->extack))
4678 * Only allow certain flags for interface types so that
4679 * other attributes are silently ignored. Remember that
4680 * this is backward compatibility code with old userspace
4681 * and shouldn't be hit in other cases anyway.
4684 case NL80211_IFTYPE_AP:
4685 case NL80211_IFTYPE_AP_VLAN:
4686 case NL80211_IFTYPE_P2P_GO:
4687 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4688 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4689 BIT(NL80211_STA_FLAG_WME) |
4690 BIT(NL80211_STA_FLAG_MFP);
4692 case NL80211_IFTYPE_P2P_CLIENT:
4693 case NL80211_IFTYPE_STATION:
4694 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4695 BIT(NL80211_STA_FLAG_TDLS_PEER);
4697 case NL80211_IFTYPE_MESH_POINT:
4698 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4699 BIT(NL80211_STA_FLAG_MFP) |
4700 BIT(NL80211_STA_FLAG_AUTHORIZED);
4706 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
4708 params->sta_flags_set |= (1<<flag);
4710 /* no longer support new API additions in old API */
4711 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
4719 bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info, int attr)
4721 struct nlattr *rate;
4724 enum nl80211_rate_info rate_flg;
4726 rate = nla_nest_start(msg, attr);
4730 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
4731 bitrate = cfg80211_calculate_bitrate(info);
4732 /* report 16-bit bitrate only if we can */
4733 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
4735 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
4737 if (bitrate_compat > 0 &&
4738 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
4742 case RATE_INFO_BW_5:
4743 rate_flg = NL80211_RATE_INFO_5_MHZ_WIDTH;
4745 case RATE_INFO_BW_10:
4746 rate_flg = NL80211_RATE_INFO_10_MHZ_WIDTH;
4751 case RATE_INFO_BW_20:
4754 case RATE_INFO_BW_40:
4755 rate_flg = NL80211_RATE_INFO_40_MHZ_WIDTH;
4757 case RATE_INFO_BW_80:
4758 rate_flg = NL80211_RATE_INFO_80_MHZ_WIDTH;
4760 case RATE_INFO_BW_160:
4761 rate_flg = NL80211_RATE_INFO_160_MHZ_WIDTH;
4763 case RATE_INFO_BW_HE_RU:
4765 WARN_ON(!(info->flags & RATE_INFO_FLAGS_HE_MCS));
4768 if (rate_flg && nla_put_flag(msg, rate_flg))
4771 if (info->flags & RATE_INFO_FLAGS_MCS) {
4772 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
4774 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4775 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4777 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
4778 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
4780 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
4782 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
4783 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
4785 } else if (info->flags & RATE_INFO_FLAGS_HE_MCS) {
4786 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_MCS, info->mcs))
4788 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_NSS, info->nss))
4790 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_GI, info->he_gi))
4792 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_DCM, info->he_dcm))
4794 if (info->bw == RATE_INFO_BW_HE_RU &&
4795 nla_put_u8(msg, NL80211_RATE_INFO_HE_RU_ALLOC,
4800 nla_nest_end(msg, rate);
4804 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
4813 attr = nla_nest_start(msg, id);
4817 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
4818 if (!(mask & BIT(i)))
4821 if (nla_put_u8(msg, i, signal[i]))
4825 nla_nest_end(msg, attr);
4830 static int nl80211_send_station(struct sk_buff *msg, u32 cmd, u32 portid,
4832 struct cfg80211_registered_device *rdev,
4833 struct net_device *dev,
4834 const u8 *mac_addr, struct station_info *sinfo)
4837 struct nlattr *sinfoattr, *bss_param;
4839 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
4843 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
4844 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
4845 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
4846 goto nla_put_failure;
4848 sinfoattr = nla_nest_start(msg, NL80211_ATTR_STA_INFO);
4850 goto nla_put_failure;
4852 #define PUT_SINFO(attr, memb, type) do { \
4853 BUILD_BUG_ON(sizeof(type) == sizeof(u64)); \
4854 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4855 nla_put_ ## type(msg, NL80211_STA_INFO_ ## attr, \
4857 goto nla_put_failure; \
4859 #define PUT_SINFO_U64(attr, memb) do { \
4860 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
4861 nla_put_u64_64bit(msg, NL80211_STA_INFO_ ## attr, \
4862 sinfo->memb, NL80211_STA_INFO_PAD)) \
4863 goto nla_put_failure; \
4866 PUT_SINFO(CONNECTED_TIME, connected_time, u32);
4867 PUT_SINFO(INACTIVE_TIME, inactive_time, u32);
4869 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_RX_BYTES) |
4870 BIT_ULL(NL80211_STA_INFO_RX_BYTES64)) &&
4871 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
4872 (u32)sinfo->rx_bytes))
4873 goto nla_put_failure;
4875 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_TX_BYTES) |
4876 BIT_ULL(NL80211_STA_INFO_TX_BYTES64)) &&
4877 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
4878 (u32)sinfo->tx_bytes))
4879 goto nla_put_failure;
4881 PUT_SINFO_U64(RX_BYTES64, rx_bytes);
4882 PUT_SINFO_U64(TX_BYTES64, tx_bytes);
4883 PUT_SINFO(LLID, llid, u16);
4884 PUT_SINFO(PLID, plid, u16);
4885 PUT_SINFO(PLINK_STATE, plink_state, u8);
4886 PUT_SINFO_U64(RX_DURATION, rx_duration);
4887 PUT_SINFO_U64(TX_DURATION, tx_duration);
4889 if (wiphy_ext_feature_isset(&rdev->wiphy,
4890 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
4891 PUT_SINFO(AIRTIME_WEIGHT, airtime_weight, u16);
4893 switch (rdev->wiphy.signal_type) {
4894 case CFG80211_SIGNAL_TYPE_MBM:
4895 PUT_SINFO(SIGNAL, signal, u8);
4896 PUT_SINFO(SIGNAL_AVG, signal_avg, u8);
4901 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL)) {
4902 if (!nl80211_put_signal(msg, sinfo->chains,
4903 sinfo->chain_signal,
4904 NL80211_STA_INFO_CHAIN_SIGNAL))
4905 goto nla_put_failure;
4907 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL_AVG)) {
4908 if (!nl80211_put_signal(msg, sinfo->chains,
4909 sinfo->chain_signal_avg,
4910 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
4911 goto nla_put_failure;
4913 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_TX_BITRATE)) {
4914 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
4915 NL80211_STA_INFO_TX_BITRATE))
4916 goto nla_put_failure;
4918 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_RX_BITRATE)) {
4919 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
4920 NL80211_STA_INFO_RX_BITRATE))
4921 goto nla_put_failure;
4924 PUT_SINFO(RX_PACKETS, rx_packets, u32);
4925 PUT_SINFO(TX_PACKETS, tx_packets, u32);
4926 PUT_SINFO(TX_RETRIES, tx_retries, u32);
4927 PUT_SINFO(TX_FAILED, tx_failed, u32);
4928 PUT_SINFO(EXPECTED_THROUGHPUT, expected_throughput, u32);
4929 PUT_SINFO(AIRTIME_LINK_METRIC, airtime_link_metric, u32);
4930 PUT_SINFO(BEACON_LOSS, beacon_loss_count, u32);
4931 PUT_SINFO(LOCAL_PM, local_pm, u32);
4932 PUT_SINFO(PEER_PM, peer_pm, u32);
4933 PUT_SINFO(NONPEER_PM, nonpeer_pm, u32);
4934 PUT_SINFO(CONNECTED_TO_GATE, connected_to_gate, u8);
4936 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_BSS_PARAM)) {
4937 bss_param = nla_nest_start(msg, NL80211_STA_INFO_BSS_PARAM);
4939 goto nla_put_failure;
4941 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
4942 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
4943 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
4944 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
4945 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
4946 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
4947 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
4948 sinfo->bss_param.dtim_period) ||
4949 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
4950 sinfo->bss_param.beacon_interval))
4951 goto nla_put_failure;
4953 nla_nest_end(msg, bss_param);
4955 if ((sinfo->filled & BIT_ULL(NL80211_STA_INFO_STA_FLAGS)) &&
4956 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
4957 sizeof(struct nl80211_sta_flag_update),
4959 goto nla_put_failure;
4961 PUT_SINFO_U64(T_OFFSET, t_offset);
4962 PUT_SINFO_U64(RX_DROP_MISC, rx_dropped_misc);
4963 PUT_SINFO_U64(BEACON_RX, rx_beacon);
4964 PUT_SINFO(BEACON_SIGNAL_AVG, rx_beacon_signal_avg, u8);
4965 PUT_SINFO(RX_MPDUS, rx_mpdu_count, u32);
4966 PUT_SINFO(FCS_ERROR_COUNT, fcs_err_count, u32);
4967 if (wiphy_ext_feature_isset(&rdev->wiphy,
4968 NL80211_EXT_FEATURE_ACK_SIGNAL_SUPPORT)) {
4969 PUT_SINFO(ACK_SIGNAL, ack_signal, u8);
4970 PUT_SINFO(ACK_SIGNAL_AVG, avg_ack_signal, s8);
4974 #undef PUT_SINFO_U64
4976 if (sinfo->pertid) {
4977 struct nlattr *tidsattr;
4980 tidsattr = nla_nest_start(msg, NL80211_STA_INFO_TID_STATS);
4982 goto nla_put_failure;
4984 for (tid = 0; tid < IEEE80211_NUM_TIDS + 1; tid++) {
4985 struct cfg80211_tid_stats *tidstats;
4986 struct nlattr *tidattr;
4988 tidstats = &sinfo->pertid[tid];
4990 if (!tidstats->filled)
4993 tidattr = nla_nest_start(msg, tid + 1);
4995 goto nla_put_failure;
4997 #define PUT_TIDVAL_U64(attr, memb) do { \
4998 if (tidstats->filled & BIT(NL80211_TID_STATS_ ## attr) && \
4999 nla_put_u64_64bit(msg, NL80211_TID_STATS_ ## attr, \
5000 tidstats->memb, NL80211_TID_STATS_PAD)) \
5001 goto nla_put_failure; \
5004 PUT_TIDVAL_U64(RX_MSDU, rx_msdu);
5005 PUT_TIDVAL_U64(TX_MSDU, tx_msdu);
5006 PUT_TIDVAL_U64(TX_MSDU_RETRIES, tx_msdu_retries);
5007 PUT_TIDVAL_U64(TX_MSDU_FAILED, tx_msdu_failed);
5009 #undef PUT_TIDVAL_U64
5010 if ((tidstats->filled &
5011 BIT(NL80211_TID_STATS_TXQ_STATS)) &&
5012 !nl80211_put_txq_stats(msg, &tidstats->txq_stats,
5013 NL80211_TID_STATS_TXQ_STATS))
5014 goto nla_put_failure;
5016 nla_nest_end(msg, tidattr);
5019 nla_nest_end(msg, tidsattr);
5022 nla_nest_end(msg, sinfoattr);
5024 if (sinfo->assoc_req_ies_len &&
5025 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
5026 sinfo->assoc_req_ies))
5027 goto nla_put_failure;
5029 cfg80211_sinfo_release_content(sinfo);
5030 genlmsg_end(msg, hdr);
5034 cfg80211_sinfo_release_content(sinfo);
5035 genlmsg_cancel(msg, hdr);
5039 static int nl80211_dump_station(struct sk_buff *skb,
5040 struct netlink_callback *cb)
5042 struct station_info sinfo;
5043 struct cfg80211_registered_device *rdev;
5044 struct wireless_dev *wdev;
5045 u8 mac_addr[ETH_ALEN];
5046 int sta_idx = cb->args[2];
5050 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5054 if (!wdev->netdev) {
5059 if (!rdev->ops->dump_station) {
5065 memset(&sinfo, 0, sizeof(sinfo));
5066 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
5073 if (nl80211_send_station(skb, NL80211_CMD_NEW_STATION,
5074 NETLINK_CB(cb->skb).portid,
5075 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5076 rdev, wdev->netdev, mac_addr,
5084 cb->args[2] = sta_idx;
5092 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
5094 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5095 struct net_device *dev = info->user_ptr[1];
5096 struct station_info sinfo;
5097 struct sk_buff *msg;
5098 u8 *mac_addr = NULL;
5101 memset(&sinfo, 0, sizeof(sinfo));
5103 if (!info->attrs[NL80211_ATTR_MAC])
5106 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5108 if (!rdev->ops->get_station)
5111 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
5115 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5117 cfg80211_sinfo_release_content(&sinfo);
5121 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION,
5122 info->snd_portid, info->snd_seq, 0,
5123 rdev, dev, mac_addr, &sinfo) < 0) {
5128 return genlmsg_reply(msg, info);
5131 int cfg80211_check_station_change(struct wiphy *wiphy,
5132 struct station_parameters *params,
5133 enum cfg80211_station_type statype)
5135 if (params->listen_interval != -1 &&
5136 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5139 if (params->support_p2p_ps != -1 &&
5140 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5144 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) &&
5145 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5148 /* When you run into this, adjust the code below for the new flag */
5149 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5152 case CFG80211_STA_MESH_PEER_KERNEL:
5153 case CFG80211_STA_MESH_PEER_USER:
5155 * No ignoring the TDLS flag here -- the userspace mesh
5156 * code doesn't have the bug of including TDLS in the
5159 if (params->sta_flags_mask &
5160 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5161 BIT(NL80211_STA_FLAG_MFP) |
5162 BIT(NL80211_STA_FLAG_AUTHORIZED)))
5165 case CFG80211_STA_TDLS_PEER_SETUP:
5166 case CFG80211_STA_TDLS_PEER_ACTIVE:
5167 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5169 /* ignore since it can't change */
5170 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5173 /* disallow mesh-specific things */
5174 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
5176 if (params->local_pm)
5178 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5182 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5183 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
5184 /* TDLS can't be set, ... */
5185 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
5188 * ... but don't bother the driver with it. This works around
5189 * a hostapd/wpa_supplicant issue -- it always includes the
5190 * TLDS_PEER flag in the mask even for AP mode.
5192 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5195 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5196 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5197 /* reject other things that can't change */
5198 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
5200 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
5202 if (params->supported_rates)
5204 if (params->ext_capab || params->ht_capa || params->vht_capa ||
5209 if (statype != CFG80211_STA_AP_CLIENT &&
5210 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5216 case CFG80211_STA_AP_MLME_CLIENT:
5217 /* Use this only for authorizing/unauthorizing a station */
5218 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
5221 case CFG80211_STA_AP_CLIENT:
5222 case CFG80211_STA_AP_CLIENT_UNASSOC:
5223 /* accept only the listed bits */
5224 if (params->sta_flags_mask &
5225 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5226 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5227 BIT(NL80211_STA_FLAG_ASSOCIATED) |
5228 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
5229 BIT(NL80211_STA_FLAG_WME) |
5230 BIT(NL80211_STA_FLAG_MFP)))
5233 /* but authenticated/associated only if driver handles it */
5234 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5235 params->sta_flags_mask &
5236 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5237 BIT(NL80211_STA_FLAG_ASSOCIATED)))
5240 case CFG80211_STA_IBSS:
5241 case CFG80211_STA_AP_STA:
5242 /* reject any changes other than AUTHORIZED */
5243 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
5246 case CFG80211_STA_TDLS_PEER_SETUP:
5247 /* reject any changes other than AUTHORIZED or WME */
5248 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5249 BIT(NL80211_STA_FLAG_WME)))
5251 /* force (at least) rates when authorizing */
5252 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
5253 !params->supported_rates)
5256 case CFG80211_STA_TDLS_PEER_ACTIVE:
5257 /* reject any changes */
5259 case CFG80211_STA_MESH_PEER_KERNEL:
5260 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5263 case CFG80211_STA_MESH_PEER_USER:
5264 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION &&
5265 params->plink_action != NL80211_PLINK_ACTION_BLOCK)
5271 * Older kernel versions ignored this attribute entirely, so don't
5272 * reject attempts to update it but mark it as unused instead so the
5273 * driver won't look at the data.
5275 if (statype != CFG80211_STA_AP_CLIENT_UNASSOC &&
5276 statype != CFG80211_STA_TDLS_PEER_SETUP)
5277 params->opmode_notif_used = false;
5281 EXPORT_SYMBOL(cfg80211_check_station_change);
5284 * Get vlan interface making sure it is running and on the right wiphy.
5286 static struct net_device *get_vlan(struct genl_info *info,
5287 struct cfg80211_registered_device *rdev)
5289 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
5290 struct net_device *v;
5296 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
5298 return ERR_PTR(-ENODEV);
5300 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
5305 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5306 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5307 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
5312 if (!netif_running(v)) {
5320 return ERR_PTR(ret);
5323 static const struct nla_policy
5324 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
5325 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
5326 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
5329 static int nl80211_parse_sta_wme(struct genl_info *info,
5330 struct station_parameters *params)
5332 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
5336 /* parse WME attributes if present */
5337 if (!info->attrs[NL80211_ATTR_STA_WME])
5340 nla = info->attrs[NL80211_ATTR_STA_WME];
5341 err = nla_parse_nested(tb, NL80211_STA_WME_MAX, nla,
5342 nl80211_sta_wme_policy, info->extack);
5346 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
5347 params->uapsd_queues = nla_get_u8(
5348 tb[NL80211_STA_WME_UAPSD_QUEUES]);
5349 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
5352 if (tb[NL80211_STA_WME_MAX_SP])
5353 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
5355 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
5358 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
5363 static int nl80211_parse_sta_channel_info(struct genl_info *info,
5364 struct station_parameters *params)
5366 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
5367 params->supported_channels =
5368 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5369 params->supported_channels_len =
5370 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5372 * Need to include at least one (first channel, number of
5373 * channels) tuple for each subband, and must have proper
5374 * tuples for the rest of the data as well.
5376 if (params->supported_channels_len < 2)
5378 if (params->supported_channels_len % 2)
5382 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
5383 params->supported_oper_classes =
5384 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5385 params->supported_oper_classes_len =
5386 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5388 * The value of the Length field of the Supported Operating
5389 * Classes element is between 2 and 253.
5391 if (params->supported_oper_classes_len < 2 ||
5392 params->supported_oper_classes_len > 253)
5398 static int nl80211_set_station_tdls(struct genl_info *info,
5399 struct station_parameters *params)
5402 /* Dummy STA entry gets updated once the peer capabilities are known */
5403 if (info->attrs[NL80211_ATTR_PEER_AID])
5404 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5405 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5407 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5408 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5410 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5411 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5413 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5414 params->he_capa_len =
5415 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5417 if (params->he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5421 err = nl80211_parse_sta_channel_info(info, params);
5425 return nl80211_parse_sta_wme(info, params);
5428 static int nl80211_parse_sta_txpower_setting(struct genl_info *info,
5429 struct station_parameters *params)
5431 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5434 if (info->attrs[NL80211_ATTR_STA_TX_POWER_SETTING]) {
5435 if (!rdev->ops->set_tx_power ||
5436 !wiphy_ext_feature_isset(&rdev->wiphy,
5437 NL80211_EXT_FEATURE_STA_TX_PWR))
5440 idx = NL80211_ATTR_STA_TX_POWER_SETTING;
5441 params->txpwr.type = nla_get_u8(info->attrs[idx]);
5443 if (params->txpwr.type == NL80211_TX_POWER_LIMITED) {
5444 idx = NL80211_ATTR_STA_TX_POWER;
5446 if (info->attrs[idx])
5447 params->txpwr.power =
5448 nla_get_s16(info->attrs[idx]);
5452 params->sta_modify_mask |= STATION_PARAM_APPLY_STA_TXPOWER;
5458 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
5460 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5461 struct net_device *dev = info->user_ptr[1];
5462 struct station_parameters params;
5466 memset(¶ms, 0, sizeof(params));
5468 if (!rdev->ops->change_station)
5472 * AID and listen_interval properties can be set only for unassociated
5473 * station. Include these parameters here and will check them in
5474 * cfg80211_check_station_change().
5476 if (info->attrs[NL80211_ATTR_STA_AID])
5477 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5479 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5480 params.listen_interval =
5481 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5483 params.listen_interval = -1;
5485 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS])
5486 params.support_p2p_ps =
5487 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5489 params.support_p2p_ps = -1;
5491 if (!info->attrs[NL80211_ATTR_MAC])
5494 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5496 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
5497 params.supported_rates =
5498 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5499 params.supported_rates_len =
5500 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5503 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5505 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5506 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5509 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5511 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5512 params.ext_capab_len =
5513 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5516 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5519 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5520 params.plink_action =
5521 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5523 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
5524 params.plink_state =
5525 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
5526 if (info->attrs[NL80211_ATTR_MESH_PEER_AID])
5527 params.peer_aid = nla_get_u16(
5528 info->attrs[NL80211_ATTR_MESH_PEER_AID]);
5529 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
5532 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE])
5533 params.local_pm = nla_get_u32(
5534 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
5536 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5537 params.opmode_notif_used = true;
5538 params.opmode_notif =
5539 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5542 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5543 params.airtime_weight =
5544 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5546 if (params.airtime_weight &&
5547 !wiphy_ext_feature_isset(&rdev->wiphy,
5548 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5551 err = nl80211_parse_sta_txpower_setting(info, ¶ms);
5555 /* Include parameters for TDLS peer (will check later) */
5556 err = nl80211_set_station_tdls(info, ¶ms);
5560 params.vlan = get_vlan(info, rdev);
5561 if (IS_ERR(params.vlan))
5562 return PTR_ERR(params.vlan);
5564 switch (dev->ieee80211_ptr->iftype) {
5565 case NL80211_IFTYPE_AP:
5566 case NL80211_IFTYPE_AP_VLAN:
5567 case NL80211_IFTYPE_P2P_GO:
5568 case NL80211_IFTYPE_P2P_CLIENT:
5569 case NL80211_IFTYPE_STATION:
5570 case NL80211_IFTYPE_ADHOC:
5571 case NL80211_IFTYPE_MESH_POINT:
5578 /* driver will call cfg80211_check_station_change() */
5579 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
5583 dev_put(params.vlan);
5588 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
5590 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5592 struct net_device *dev = info->user_ptr[1];
5593 struct station_parameters params;
5594 u8 *mac_addr = NULL;
5595 u32 auth_assoc = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5596 BIT(NL80211_STA_FLAG_ASSOCIATED);
5598 memset(¶ms, 0, sizeof(params));
5600 if (!rdev->ops->add_station)
5603 if (!info->attrs[NL80211_ATTR_MAC])
5606 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5609 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
5612 if (!info->attrs[NL80211_ATTR_STA_AID] &&
5613 !info->attrs[NL80211_ATTR_PEER_AID])
5616 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5617 params.supported_rates =
5618 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5619 params.supported_rates_len =
5620 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5621 params.listen_interval =
5622 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5624 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]) {
5625 params.support_p2p_ps =
5626 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5629 * if not specified, assume it's supported for P2P GO interface,
5630 * and is NOT supported for AP interface
5632 params.support_p2p_ps =
5633 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO;
5636 if (info->attrs[NL80211_ATTR_PEER_AID])
5637 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5639 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5641 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5643 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5644 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5647 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5649 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5650 params.ext_capab_len =
5651 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5654 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5656 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5658 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5660 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5662 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5664 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5665 params.he_capa_len =
5666 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5668 /* max len is validated in nla policy */
5669 if (params.he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5673 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5674 params.opmode_notif_used = true;
5675 params.opmode_notif =
5676 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5679 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5680 params.plink_action =
5681 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5683 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5684 params.airtime_weight =
5685 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5687 if (params.airtime_weight &&
5688 !wiphy_ext_feature_isset(&rdev->wiphy,
5689 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5692 err = nl80211_parse_sta_txpower_setting(info, ¶ms);
5696 err = nl80211_parse_sta_channel_info(info, ¶ms);
5700 err = nl80211_parse_sta_wme(info, ¶ms);
5704 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5707 /* HT/VHT requires QoS, but if we don't have that just ignore HT/VHT
5708 * as userspace might just pass through the capabilities from the IEs
5709 * directly, rather than enforcing this restriction and returning an
5710 * error in this case.
5712 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME))) {
5713 params.ht_capa = NULL;
5714 params.vht_capa = NULL;
5716 /* HE requires WME */
5717 if (params.he_capa_len)
5721 /* When you run into this, adjust the code below for the new flag */
5722 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5724 switch (dev->ieee80211_ptr->iftype) {
5725 case NL80211_IFTYPE_AP:
5726 case NL80211_IFTYPE_AP_VLAN:
5727 case NL80211_IFTYPE_P2P_GO:
5728 /* ignore WME attributes if iface/sta is not capable */
5729 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
5730 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
5731 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5733 /* TDLS peers cannot be added */
5734 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5735 info->attrs[NL80211_ATTR_PEER_AID])
5737 /* but don't bother the driver with it */
5738 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5740 /* allow authenticated/associated only if driver handles it */
5741 if (!(rdev->wiphy.features &
5742 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5743 params.sta_flags_mask & auth_assoc)
5746 /* Older userspace, or userspace wanting to be compatible with
5747 * !NL80211_FEATURE_FULL_AP_CLIENT_STATE, will not set the auth
5748 * and assoc flags in the mask, but assumes the station will be
5749 * added as associated anyway since this was the required driver
5750 * behaviour before NL80211_FEATURE_FULL_AP_CLIENT_STATE was
5752 * In order to not bother drivers with this quirk in the API
5753 * set the flags in both the mask and set for new stations in
5756 if (!(params.sta_flags_mask & auth_assoc)) {
5757 params.sta_flags_mask |= auth_assoc;
5758 params.sta_flags_set |= auth_assoc;
5761 /* must be last in here for error handling */
5762 params.vlan = get_vlan(info, rdev);
5763 if (IS_ERR(params.vlan))
5764 return PTR_ERR(params.vlan);
5766 case NL80211_IFTYPE_MESH_POINT:
5767 /* ignore uAPSD data */
5768 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5770 /* associated is disallowed */
5771 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
5773 /* TDLS peers cannot be added */
5774 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5775 info->attrs[NL80211_ATTR_PEER_AID])
5778 case NL80211_IFTYPE_STATION:
5779 case NL80211_IFTYPE_P2P_CLIENT:
5780 /* ignore uAPSD data */
5781 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5783 /* these are disallowed */
5784 if (params.sta_flags_mask &
5785 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
5786 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
5788 /* Only TDLS peers can be added */
5789 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5791 /* Can only add if TDLS ... */
5792 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
5794 /* ... with external setup is supported */
5795 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
5798 * Older wpa_supplicant versions always mark the TDLS peer
5799 * as authorized, but it shouldn't yet be.
5801 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
5807 /* be aware of params.vlan when changing code here */
5809 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
5812 dev_put(params.vlan);
5816 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
5818 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5819 struct net_device *dev = info->user_ptr[1];
5820 struct station_del_parameters params;
5822 memset(¶ms, 0, sizeof(params));
5824 if (info->attrs[NL80211_ATTR_MAC])
5825 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
5827 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5828 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5829 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
5830 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
5833 if (!rdev->ops->del_station)
5836 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
5838 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
5839 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
5840 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
5843 /* Default to Deauthentication frame */
5844 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
5847 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
5848 params.reason_code =
5849 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
5850 if (params.reason_code == 0)
5851 return -EINVAL; /* 0 is reserved */
5853 /* Default to reason code 2 */
5854 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
5857 return rdev_del_station(rdev, dev, ¶ms);
5860 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
5861 int flags, struct net_device *dev,
5862 u8 *dst, u8 *next_hop,
5863 struct mpath_info *pinfo)
5866 struct nlattr *pinfoattr;
5868 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
5872 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5873 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
5874 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
5875 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
5876 goto nla_put_failure;
5878 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MPATH_INFO);
5880 goto nla_put_failure;
5881 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
5882 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
5884 goto nla_put_failure;
5885 if (((pinfo->filled & MPATH_INFO_SN) &&
5886 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
5887 ((pinfo->filled & MPATH_INFO_METRIC) &&
5888 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
5890 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
5891 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
5893 ((pinfo->filled & MPATH_INFO_FLAGS) &&
5894 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
5896 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
5897 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
5898 pinfo->discovery_timeout)) ||
5899 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
5900 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
5901 pinfo->discovery_retries)) ||
5902 ((pinfo->filled & MPATH_INFO_HOP_COUNT) &&
5903 nla_put_u8(msg, NL80211_MPATH_INFO_HOP_COUNT,
5904 pinfo->hop_count)) ||
5905 ((pinfo->filled & MPATH_INFO_PATH_CHANGE) &&
5906 nla_put_u32(msg, NL80211_MPATH_INFO_PATH_CHANGE,
5907 pinfo->path_change_count)))
5908 goto nla_put_failure;
5910 nla_nest_end(msg, pinfoattr);
5912 genlmsg_end(msg, hdr);
5916 genlmsg_cancel(msg, hdr);
5920 static int nl80211_dump_mpath(struct sk_buff *skb,
5921 struct netlink_callback *cb)
5923 struct mpath_info pinfo;
5924 struct cfg80211_registered_device *rdev;
5925 struct wireless_dev *wdev;
5927 u8 next_hop[ETH_ALEN];
5928 int path_idx = cb->args[2];
5932 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5936 if (!rdev->ops->dump_mpath) {
5941 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
5947 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
5954 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
5955 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5956 wdev->netdev, dst, next_hop,
5964 cb->args[2] = path_idx;
5971 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
5973 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5975 struct net_device *dev = info->user_ptr[1];
5976 struct mpath_info pinfo;
5977 struct sk_buff *msg;
5979 u8 next_hop[ETH_ALEN];
5981 memset(&pinfo, 0, sizeof(pinfo));
5983 if (!info->attrs[NL80211_ATTR_MAC])
5986 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
5988 if (!rdev->ops->get_mpath)
5991 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
5994 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
5998 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6002 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6003 dev, dst, next_hop, &pinfo) < 0) {
6008 return genlmsg_reply(msg, info);
6011 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
6013 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6014 struct net_device *dev = info->user_ptr[1];
6016 u8 *next_hop = NULL;
6018 if (!info->attrs[NL80211_ATTR_MAC])
6021 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6024 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6025 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6027 if (!rdev->ops->change_mpath)
6030 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6033 return rdev_change_mpath(rdev, dev, dst, next_hop);
6036 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
6038 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6039 struct net_device *dev = info->user_ptr[1];
6041 u8 *next_hop = NULL;
6043 if (!info->attrs[NL80211_ATTR_MAC])
6046 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6049 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6050 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6052 if (!rdev->ops->add_mpath)
6055 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6058 return rdev_add_mpath(rdev, dev, dst, next_hop);
6061 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
6063 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6064 struct net_device *dev = info->user_ptr[1];
6067 if (info->attrs[NL80211_ATTR_MAC])
6068 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6070 if (!rdev->ops->del_mpath)
6073 return rdev_del_mpath(rdev, dev, dst);
6076 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
6078 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6080 struct net_device *dev = info->user_ptr[1];
6081 struct mpath_info pinfo;
6082 struct sk_buff *msg;
6086 memset(&pinfo, 0, sizeof(pinfo));
6088 if (!info->attrs[NL80211_ATTR_MAC])
6091 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6093 if (!rdev->ops->get_mpp)
6096 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6099 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
6103 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6107 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6108 dev, dst, mpp, &pinfo) < 0) {
6113 return genlmsg_reply(msg, info);
6116 static int nl80211_dump_mpp(struct sk_buff *skb,
6117 struct netlink_callback *cb)
6119 struct mpath_info pinfo;
6120 struct cfg80211_registered_device *rdev;
6121 struct wireless_dev *wdev;
6124 int path_idx = cb->args[2];
6128 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6132 if (!rdev->ops->dump_mpp) {
6137 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6143 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
6150 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6151 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6152 wdev->netdev, dst, mpp,
6160 cb->args[2] = path_idx;
6167 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
6169 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6170 struct net_device *dev = info->user_ptr[1];
6171 struct wireless_dev *wdev = dev->ieee80211_ptr;
6172 struct bss_parameters params;
6175 memset(¶ms, 0, sizeof(params));
6176 /* default to not changing parameters */
6177 params.use_cts_prot = -1;
6178 params.use_short_preamble = -1;
6179 params.use_short_slot_time = -1;
6180 params.ap_isolate = -1;
6181 params.ht_opmode = -1;
6182 params.p2p_ctwindow = -1;
6183 params.p2p_opp_ps = -1;
6185 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
6186 params.use_cts_prot =
6187 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
6188 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
6189 params.use_short_preamble =
6190 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
6191 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
6192 params.use_short_slot_time =
6193 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
6194 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6195 params.basic_rates =
6196 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6197 params.basic_rates_len =
6198 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6200 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
6201 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
6202 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
6204 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
6206 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
6207 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6209 params.p2p_ctwindow =
6210 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
6211 if (params.p2p_ctwindow != 0 &&
6212 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
6216 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
6219 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6221 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
6222 params.p2p_opp_ps = tmp;
6223 if (params.p2p_opp_ps &&
6224 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
6228 if (!rdev->ops->change_bss)
6231 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
6232 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6236 err = rdev_change_bss(rdev, dev, ¶ms);
6242 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
6246 enum nl80211_user_reg_hint_type user_reg_hint_type;
6250 * You should only get this when cfg80211 hasn't yet initialized
6251 * completely when built-in to the kernel right between the time
6252 * window between nl80211_init() and regulatory_init(), if that is
6255 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
6256 return -EINPROGRESS;
6258 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
6259 user_reg_hint_type =
6260 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
6262 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
6264 switch (user_reg_hint_type) {
6265 case NL80211_USER_REG_HINT_USER:
6266 case NL80211_USER_REG_HINT_CELL_BASE:
6267 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6270 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6271 return regulatory_hint_user(data, user_reg_hint_type);
6272 case NL80211_USER_REG_HINT_INDOOR:
6273 if (info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
6274 owner_nlportid = info->snd_portid;
6275 is_indoor = !!info->attrs[NL80211_ATTR_REG_INDOOR];
6281 return regulatory_hint_indoor(is_indoor, owner_nlportid);
6287 static int nl80211_reload_regdb(struct sk_buff *skb, struct genl_info *info)
6289 return reg_reload_regdb();
6292 static int nl80211_get_mesh_config(struct sk_buff *skb,
6293 struct genl_info *info)
6295 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6296 struct net_device *dev = info->user_ptr[1];
6297 struct wireless_dev *wdev = dev->ieee80211_ptr;
6298 struct mesh_config cur_params;
6301 struct nlattr *pinfoattr;
6302 struct sk_buff *msg;
6304 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6307 if (!rdev->ops->get_mesh_config)
6311 /* If not connected, get default parameters */
6312 if (!wdev->mesh_id_len)
6313 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
6315 err = rdev_get_mesh_config(rdev, dev, &cur_params);
6321 /* Draw up a netlink message to send back */
6322 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6325 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6326 NL80211_CMD_GET_MESH_CONFIG);
6329 pinfoattr = nla_nest_start(msg, NL80211_ATTR_MESH_CONFIG);
6331 goto nla_put_failure;
6332 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
6333 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
6334 cur_params.dot11MeshRetryTimeout) ||
6335 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
6336 cur_params.dot11MeshConfirmTimeout) ||
6337 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
6338 cur_params.dot11MeshHoldingTimeout) ||
6339 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
6340 cur_params.dot11MeshMaxPeerLinks) ||
6341 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
6342 cur_params.dot11MeshMaxRetries) ||
6343 nla_put_u8(msg, NL80211_MESHCONF_TTL,
6344 cur_params.dot11MeshTTL) ||
6345 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
6346 cur_params.element_ttl) ||
6347 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6348 cur_params.auto_open_plinks) ||
6349 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6350 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
6351 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6352 cur_params.dot11MeshHWMPmaxPREQretries) ||
6353 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
6354 cur_params.path_refresh_time) ||
6355 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6356 cur_params.min_discovery_timeout) ||
6357 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6358 cur_params.dot11MeshHWMPactivePathTimeout) ||
6359 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6360 cur_params.dot11MeshHWMPpreqMinInterval) ||
6361 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6362 cur_params.dot11MeshHWMPperrMinInterval) ||
6363 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6364 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
6365 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
6366 cur_params.dot11MeshHWMPRootMode) ||
6367 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6368 cur_params.dot11MeshHWMPRannInterval) ||
6369 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6370 cur_params.dot11MeshGateAnnouncementProtocol) ||
6371 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
6372 cur_params.dot11MeshForwarding) ||
6373 nla_put_s32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
6374 cur_params.rssi_threshold) ||
6375 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
6376 cur_params.ht_opmode) ||
6377 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6378 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
6379 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6380 cur_params.dot11MeshHWMProotInterval) ||
6381 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6382 cur_params.dot11MeshHWMPconfirmationInterval) ||
6383 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
6384 cur_params.power_mode) ||
6385 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
6386 cur_params.dot11MeshAwakeWindowDuration) ||
6387 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
6388 cur_params.plink_timeout) ||
6389 nla_put_u8(msg, NL80211_MESHCONF_CONNECTED_TO_GATE,
6390 cur_params.dot11MeshConnectedToMeshGate))
6391 goto nla_put_failure;
6392 nla_nest_end(msg, pinfoattr);
6393 genlmsg_end(msg, hdr);
6394 return genlmsg_reply(msg, info);
6402 static const struct nla_policy
6403 nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
6404 [NL80211_MESHCONF_RETRY_TIMEOUT] =
6405 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6406 [NL80211_MESHCONF_CONFIRM_TIMEOUT] =
6407 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6408 [NL80211_MESHCONF_HOLDING_TIMEOUT] =
6409 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6410 [NL80211_MESHCONF_MAX_PEER_LINKS] =
6411 NLA_POLICY_RANGE(NLA_U16, 0, 255),
6412 [NL80211_MESHCONF_MAX_RETRIES] = NLA_POLICY_MAX(NLA_U8, 16),
6413 [NL80211_MESHCONF_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6414 [NL80211_MESHCONF_ELEMENT_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6415 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = NLA_POLICY_MAX(NLA_U8, 1),
6416 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] =
6417 NLA_POLICY_RANGE(NLA_U32, 1, 255),
6418 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
6419 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
6420 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = NLA_POLICY_MIN(NLA_U16, 1),
6421 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
6422 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] =
6423 NLA_POLICY_MIN(NLA_U16, 1),
6424 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] =
6425 NLA_POLICY_MIN(NLA_U16, 1),
6426 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] =
6427 NLA_POLICY_MIN(NLA_U16, 1),
6428 [NL80211_MESHCONF_HWMP_ROOTMODE] = NLA_POLICY_MAX(NLA_U8, 4),
6429 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] =
6430 NLA_POLICY_MIN(NLA_U16, 1),
6431 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = NLA_POLICY_MAX(NLA_U8, 1),
6432 [NL80211_MESHCONF_FORWARDING] = NLA_POLICY_MAX(NLA_U8, 1),
6433 [NL80211_MESHCONF_RSSI_THRESHOLD] =
6434 NLA_POLICY_RANGE(NLA_S32, -255, 0),
6435 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
6436 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
6437 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] =
6438 NLA_POLICY_MIN(NLA_U16, 1),
6439 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] =
6440 NLA_POLICY_MIN(NLA_U16, 1),
6441 [NL80211_MESHCONF_POWER_MODE] =
6442 NLA_POLICY_RANGE(NLA_U32,
6443 NL80211_MESH_POWER_ACTIVE,
6444 NL80211_MESH_POWER_MAX),
6445 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
6446 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
6447 [NL80211_MESHCONF_CONNECTED_TO_GATE] = NLA_POLICY_RANGE(NLA_U8, 0, 1),
6450 static const struct nla_policy
6451 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
6452 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
6453 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
6454 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
6455 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
6456 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
6457 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
6458 [NL80211_MESH_SETUP_IE] =
6459 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
6460 IEEE80211_MAX_DATA_LEN),
6461 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
6464 static int nl80211_parse_mesh_config(struct genl_info *info,
6465 struct mesh_config *cfg,
6468 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
6472 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, mask, attr, fn) \
6475 cfg->param = fn(tb[attr]); \
6476 mask |= BIT((attr) - 1); \
6480 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
6482 if (nla_parse_nested(tb, NL80211_MESHCONF_ATTR_MAX,
6483 info->attrs[NL80211_ATTR_MESH_CONFIG],
6484 nl80211_meshconf_params_policy, info->extack))
6487 /* This makes sure that there aren't more than 32 mesh config
6488 * parameters (otherwise our bitfield scheme would not work.) */
6489 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
6491 /* Fill in the params struct */
6492 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, mask,
6493 NL80211_MESHCONF_RETRY_TIMEOUT, nla_get_u16);
6494 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, mask,
6495 NL80211_MESHCONF_CONFIRM_TIMEOUT,
6497 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, mask,
6498 NL80211_MESHCONF_HOLDING_TIMEOUT,
6500 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, mask,
6501 NL80211_MESHCONF_MAX_PEER_LINKS,
6503 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, mask,
6504 NL80211_MESHCONF_MAX_RETRIES, nla_get_u8);
6505 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, mask,
6506 NL80211_MESHCONF_TTL, nla_get_u8);
6507 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, mask,
6508 NL80211_MESHCONF_ELEMENT_TTL, nla_get_u8);
6509 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, mask,
6510 NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6512 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
6514 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6516 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, mask,
6517 NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6519 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, mask,
6520 NL80211_MESHCONF_PATH_REFRESH_TIME,
6522 if (mask & BIT(NL80211_MESHCONF_PATH_REFRESH_TIME) &&
6523 (cfg->path_refresh_time < 1 || cfg->path_refresh_time > 65535))
6525 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, mask,
6526 NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6528 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
6530 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6532 if (mask & BIT(NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT) &&
6533 (cfg->dot11MeshHWMPactivePathTimeout < 1 ||
6534 cfg->dot11MeshHWMPactivePathTimeout > 65535))
6536 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval, mask,
6537 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6539 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval, mask,
6540 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6542 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6543 dot11MeshHWMPnetDiameterTraversalTime, mask,
6544 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6546 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, mask,
6547 NL80211_MESHCONF_HWMP_ROOTMODE, nla_get_u8);
6548 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, mask,
6549 NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6551 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshGateAnnouncementProtocol,
6552 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6554 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, mask,
6555 NL80211_MESHCONF_FORWARDING, nla_get_u8);
6556 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, mask,
6557 NL80211_MESHCONF_RSSI_THRESHOLD,
6559 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConnectedToMeshGate, mask,
6560 NL80211_MESHCONF_CONNECTED_TO_GATE,
6563 * Check HT operation mode based on
6564 * IEEE 802.11-2016 9.4.2.57 HT Operation element.
6566 if (tb[NL80211_MESHCONF_HT_OPMODE]) {
6567 ht_opmode = nla_get_u16(tb[NL80211_MESHCONF_HT_OPMODE]);
6569 if (ht_opmode & ~(IEEE80211_HT_OP_MODE_PROTECTION |
6570 IEEE80211_HT_OP_MODE_NON_GF_STA_PRSNT |
6571 IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT))
6574 /* NON_HT_STA bit is reserved, but some programs set it */
6575 ht_opmode &= ~IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT;
6577 cfg->ht_opmode = ht_opmode;
6578 mask |= (1 << (NL80211_MESHCONF_HT_OPMODE - 1));
6580 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6581 dot11MeshHWMPactivePathToRootTimeout, mask,
6582 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6584 if (mask & BIT(NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT) &&
6585 (cfg->dot11MeshHWMPactivePathToRootTimeout < 1 ||
6586 cfg->dot11MeshHWMPactivePathToRootTimeout > 65535))
6588 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, mask,
6589 NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6591 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPconfirmationInterval,
6593 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6595 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode, mask,
6596 NL80211_MESHCONF_POWER_MODE, nla_get_u32);
6597 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration, mask,
6598 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
6599 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, mask,
6600 NL80211_MESHCONF_PLINK_TIMEOUT, nla_get_u32);
6606 #undef FILL_IN_MESH_PARAM_IF_SET
6609 static int nl80211_parse_mesh_setup(struct genl_info *info,
6610 struct mesh_setup *setup)
6612 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6613 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
6615 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
6617 if (nla_parse_nested(tb, NL80211_MESH_SETUP_ATTR_MAX,
6618 info->attrs[NL80211_ATTR_MESH_SETUP],
6619 nl80211_mesh_setup_params_policy, info->extack))
6622 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
6623 setup->sync_method =
6624 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
6625 IEEE80211_SYNC_METHOD_VENDOR :
6626 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
6628 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
6629 setup->path_sel_proto =
6630 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
6631 IEEE80211_PATH_PROTOCOL_VENDOR :
6632 IEEE80211_PATH_PROTOCOL_HWMP;
6634 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
6635 setup->path_metric =
6636 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
6637 IEEE80211_PATH_METRIC_VENDOR :
6638 IEEE80211_PATH_METRIC_AIRTIME;
6640 if (tb[NL80211_MESH_SETUP_IE]) {
6641 struct nlattr *ieattr =
6642 tb[NL80211_MESH_SETUP_IE];
6643 setup->ie = nla_data(ieattr);
6644 setup->ie_len = nla_len(ieattr);
6646 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
6647 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
6649 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
6650 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
6651 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
6652 if (setup->is_secure)
6653 setup->user_mpm = true;
6655 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
6656 if (!setup->user_mpm)
6659 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
6665 static int nl80211_update_mesh_config(struct sk_buff *skb,
6666 struct genl_info *info)
6668 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6669 struct net_device *dev = info->user_ptr[1];
6670 struct wireless_dev *wdev = dev->ieee80211_ptr;
6671 struct mesh_config cfg;
6675 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6678 if (!rdev->ops->update_mesh_config)
6681 err = nl80211_parse_mesh_config(info, &cfg, &mask);
6686 if (!wdev->mesh_id_len)
6690 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
6697 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
6698 struct sk_buff *msg)
6700 struct nlattr *nl_reg_rules;
6703 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
6704 (regdom->dfs_region &&
6705 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
6706 goto nla_put_failure;
6708 nl_reg_rules = nla_nest_start(msg, NL80211_ATTR_REG_RULES);
6710 goto nla_put_failure;
6712 for (i = 0; i < regdom->n_reg_rules; i++) {
6713 struct nlattr *nl_reg_rule;
6714 const struct ieee80211_reg_rule *reg_rule;
6715 const struct ieee80211_freq_range *freq_range;
6716 const struct ieee80211_power_rule *power_rule;
6717 unsigned int max_bandwidth_khz;
6719 reg_rule = ®dom->reg_rules[i];
6720 freq_range = ®_rule->freq_range;
6721 power_rule = ®_rule->power_rule;
6723 nl_reg_rule = nla_nest_start(msg, i);
6725 goto nla_put_failure;
6727 max_bandwidth_khz = freq_range->max_bandwidth_khz;
6728 if (!max_bandwidth_khz)
6729 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
6732 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
6734 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
6735 freq_range->start_freq_khz) ||
6736 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
6737 freq_range->end_freq_khz) ||
6738 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
6739 max_bandwidth_khz) ||
6740 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
6741 power_rule->max_antenna_gain) ||
6742 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
6743 power_rule->max_eirp) ||
6744 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
6745 reg_rule->dfs_cac_ms))
6746 goto nla_put_failure;
6748 nla_nest_end(msg, nl_reg_rule);
6751 nla_nest_end(msg, nl_reg_rules);
6758 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
6760 const struct ieee80211_regdomain *regdom = NULL;
6761 struct cfg80211_registered_device *rdev;
6762 struct wiphy *wiphy = NULL;
6763 struct sk_buff *msg;
6766 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6770 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6771 NL80211_CMD_GET_REG);
6775 if (info->attrs[NL80211_ATTR_WIPHY]) {
6778 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
6781 return PTR_ERR(rdev);
6784 wiphy = &rdev->wiphy;
6785 self_managed = wiphy->regulatory_flags &
6786 REGULATORY_WIPHY_SELF_MANAGED;
6787 regdom = get_wiphy_regdom(wiphy);
6789 /* a self-managed-reg device must have a private regdom */
6790 if (WARN_ON(!regdom && self_managed)) {
6796 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6797 goto nla_put_failure;
6800 if (!wiphy && reg_last_request_cell_base() &&
6801 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6802 NL80211_USER_REG_HINT_CELL_BASE))
6803 goto nla_put_failure;
6808 regdom = rcu_dereference(cfg80211_regdomain);
6810 if (nl80211_put_regdom(regdom, msg))
6811 goto nla_put_failure_rcu;
6815 genlmsg_end(msg, hdr);
6816 return genlmsg_reply(msg, info);
6818 nla_put_failure_rcu:
6826 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
6827 u32 seq, int flags, struct wiphy *wiphy,
6828 const struct ieee80211_regdomain *regdom)
6830 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
6831 NL80211_CMD_GET_REG);
6836 genl_dump_check_consistent(cb, hdr);
6838 if (nl80211_put_regdom(regdom, msg))
6839 goto nla_put_failure;
6841 if (!wiphy && reg_last_request_cell_base() &&
6842 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
6843 NL80211_USER_REG_HINT_CELL_BASE))
6844 goto nla_put_failure;
6847 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
6848 goto nla_put_failure;
6850 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
6851 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
6852 goto nla_put_failure;
6854 genlmsg_end(msg, hdr);
6858 genlmsg_cancel(msg, hdr);
6862 static int nl80211_get_reg_dump(struct sk_buff *skb,
6863 struct netlink_callback *cb)
6865 const struct ieee80211_regdomain *regdom = NULL;
6866 struct cfg80211_registered_device *rdev;
6867 int err, reg_idx, start = cb->args[2];
6871 if (cfg80211_regdomain && start == 0) {
6872 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6874 rtnl_dereference(cfg80211_regdomain));
6879 /* the global regdom is idx 0 */
6881 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
6882 regdom = get_wiphy_regdom(&rdev->wiphy);
6886 if (++reg_idx <= start)
6889 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
6890 NLM_F_MULTI, &rdev->wiphy, regdom);
6897 cb->args[2] = reg_idx;
6904 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
6905 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
6906 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
6907 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
6908 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
6909 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
6910 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
6911 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
6912 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
6915 static int parse_reg_rule(struct nlattr *tb[],
6916 struct ieee80211_reg_rule *reg_rule)
6918 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
6919 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
6921 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
6923 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
6925 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
6927 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
6929 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
6932 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
6934 freq_range->start_freq_khz =
6935 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
6936 freq_range->end_freq_khz =
6937 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
6938 freq_range->max_bandwidth_khz =
6939 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
6941 power_rule->max_eirp =
6942 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
6944 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
6945 power_rule->max_antenna_gain =
6946 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
6948 if (tb[NL80211_ATTR_DFS_CAC_TIME])
6949 reg_rule->dfs_cac_ms =
6950 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
6955 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
6957 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
6958 struct nlattr *nl_reg_rule;
6960 int rem_reg_rules, r;
6961 u32 num_rules = 0, rule_idx = 0;
6962 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
6963 struct ieee80211_regdomain *rd;
6965 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6968 if (!info->attrs[NL80211_ATTR_REG_RULES])
6971 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6973 if (info->attrs[NL80211_ATTR_DFS_REGION])
6974 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
6976 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
6979 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
6983 if (!reg_is_valid_request(alpha2))
6986 rd = kzalloc(struct_size(rd, reg_rules, num_rules), GFP_KERNEL);
6990 rd->n_reg_rules = num_rules;
6991 rd->alpha2[0] = alpha2[0];
6992 rd->alpha2[1] = alpha2[1];
6995 * Disable DFS master mode if the DFS region was
6996 * not supported or known on this kernel.
6998 if (reg_supported_dfs_region(dfs_region))
6999 rd->dfs_region = dfs_region;
7001 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
7003 r = nla_parse_nested(tb, NL80211_REG_RULE_ATTR_MAX,
7004 nl_reg_rule, reg_rule_policy,
7008 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
7014 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
7020 /* set_regdom takes ownership of rd */
7021 return set_regdom(rd, REGD_SOURCE_CRDA);
7026 #endif /* CONFIG_CFG80211_CRDA_SUPPORT */
7028 static int validate_scan_freqs(struct nlattr *freqs)
7030 struct nlattr *attr1, *attr2;
7031 int n_channels = 0, tmp1, tmp2;
7033 nla_for_each_nested(attr1, freqs, tmp1)
7034 if (nla_len(attr1) != sizeof(u32))
7037 nla_for_each_nested(attr1, freqs, tmp1) {
7040 * Some hardware has a limited channel list for
7041 * scanning, and it is pretty much nonsensical
7042 * to scan for a channel twice, so disallow that
7043 * and don't require drivers to check that the
7044 * channel list they get isn't longer than what
7045 * they can scan, as long as they can scan all
7046 * the channels they registered at once.
7048 nla_for_each_nested(attr2, freqs, tmp2)
7049 if (attr1 != attr2 &&
7050 nla_get_u32(attr1) == nla_get_u32(attr2))
7057 static bool is_band_valid(struct wiphy *wiphy, enum nl80211_band b)
7059 return b < NUM_NL80211_BANDS && wiphy->bands[b];
7062 static int parse_bss_select(struct nlattr *nla, struct wiphy *wiphy,
7063 struct cfg80211_bss_selection *bss_select)
7065 struct nlattr *attr[NL80211_BSS_SELECT_ATTR_MAX + 1];
7066 struct nlattr *nest;
7071 /* only process one nested attribute */
7072 nest = nla_data(nla);
7073 if (!nla_ok(nest, nla_len(nest)))
7076 err = nla_parse_nested(attr, NL80211_BSS_SELECT_ATTR_MAX, nest,
7077 nl80211_bss_select_policy, NULL);
7081 /* only one attribute may be given */
7082 for (i = 0; i <= NL80211_BSS_SELECT_ATTR_MAX; i++) {
7090 bss_select->behaviour = __NL80211_BSS_SELECT_ATTR_INVALID;
7092 if (attr[NL80211_BSS_SELECT_ATTR_RSSI])
7093 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI;
7095 if (attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]) {
7096 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_BAND_PREF;
7097 bss_select->param.band_pref =
7098 nla_get_u32(attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]);
7099 if (!is_band_valid(wiphy, bss_select->param.band_pref))
7103 if (attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]) {
7104 struct nl80211_bss_select_rssi_adjust *adj_param;
7106 adj_param = nla_data(attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]);
7107 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI_ADJUST;
7108 bss_select->param.adjust.band = adj_param->band;
7109 bss_select->param.adjust.delta = adj_param->delta;
7110 if (!is_band_valid(wiphy, bss_select->param.adjust.band))
7114 /* user-space did not provide behaviour attribute */
7115 if (bss_select->behaviour == __NL80211_BSS_SELECT_ATTR_INVALID)
7118 if (!(wiphy->bss_select_support & BIT(bss_select->behaviour)))
7124 int nl80211_parse_random_mac(struct nlattr **attrs,
7125 u8 *mac_addr, u8 *mac_addr_mask)
7129 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
7130 eth_zero_addr(mac_addr);
7131 eth_zero_addr(mac_addr_mask);
7133 mac_addr_mask[0] = 0x3;
7138 /* need both or none */
7139 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
7142 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
7143 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
7145 /* don't allow or configure an mcast address */
7146 if (!is_multicast_ether_addr(mac_addr_mask) ||
7147 is_multicast_ether_addr(mac_addr))
7151 * allow users to pass a MAC address that has bits set outside
7152 * of the mask, but don't bother drivers with having to deal
7155 for (i = 0; i < ETH_ALEN; i++)
7156 mac_addr[i] &= mac_addr_mask[i];
7161 static bool cfg80211_off_channel_oper_allowed(struct wireless_dev *wdev)
7163 ASSERT_WDEV_LOCK(wdev);
7165 if (!cfg80211_beaconing_iface_active(wdev))
7168 if (!(wdev->chandef.chan->flags & IEEE80211_CHAN_RADAR))
7171 return regulatory_pre_cac_allowed(wdev->wiphy);
7174 static bool nl80211_check_scan_feat(struct wiphy *wiphy, u32 flags, u32 flag,
7175 enum nl80211_ext_feature_index feat)
7177 if (!(flags & flag))
7179 if (wiphy_ext_feature_isset(wiphy, feat))
7185 nl80211_check_scan_flags(struct wiphy *wiphy, struct wireless_dev *wdev,
7186 void *request, struct nlattr **attrs,
7189 u8 *mac_addr, *mac_addr_mask;
7191 enum nl80211_feature_flags randomness_flag;
7193 if (!attrs[NL80211_ATTR_SCAN_FLAGS])
7196 if (is_sched_scan) {
7197 struct cfg80211_sched_scan_request *req = request;
7199 randomness_flag = wdev ?
7200 NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR :
7201 NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7202 flags = &req->flags;
7203 mac_addr = req->mac_addr;
7204 mac_addr_mask = req->mac_addr_mask;
7206 struct cfg80211_scan_request *req = request;
7208 randomness_flag = NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
7209 flags = &req->flags;
7210 mac_addr = req->mac_addr;
7211 mac_addr_mask = req->mac_addr_mask;
7214 *flags = nla_get_u32(attrs[NL80211_ATTR_SCAN_FLAGS]);
7216 if (((*flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
7217 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) ||
7218 !nl80211_check_scan_feat(wiphy, *flags,
7219 NL80211_SCAN_FLAG_LOW_SPAN,
7220 NL80211_EXT_FEATURE_LOW_SPAN_SCAN) ||
7221 !nl80211_check_scan_feat(wiphy, *flags,
7222 NL80211_SCAN_FLAG_LOW_POWER,
7223 NL80211_EXT_FEATURE_LOW_POWER_SCAN) ||
7224 !nl80211_check_scan_feat(wiphy, *flags,
7225 NL80211_SCAN_FLAG_HIGH_ACCURACY,
7226 NL80211_EXT_FEATURE_HIGH_ACCURACY_SCAN) ||
7227 !nl80211_check_scan_feat(wiphy, *flags,
7228 NL80211_SCAN_FLAG_FILS_MAX_CHANNEL_TIME,
7229 NL80211_EXT_FEATURE_FILS_MAX_CHANNEL_TIME) ||
7230 !nl80211_check_scan_feat(wiphy, *flags,
7231 NL80211_SCAN_FLAG_ACCEPT_BCAST_PROBE_RESP,
7232 NL80211_EXT_FEATURE_ACCEPT_BCAST_PROBE_RESP) ||
7233 !nl80211_check_scan_feat(wiphy, *flags,
7234 NL80211_SCAN_FLAG_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION,
7235 NL80211_EXT_FEATURE_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION) ||
7236 !nl80211_check_scan_feat(wiphy, *flags,
7237 NL80211_SCAN_FLAG_OCE_PROBE_REQ_HIGH_TX_RATE,
7238 NL80211_EXT_FEATURE_OCE_PROBE_REQ_HIGH_TX_RATE) ||
7239 !nl80211_check_scan_feat(wiphy, *flags,
7240 NL80211_SCAN_FLAG_RANDOM_SN,
7241 NL80211_EXT_FEATURE_SCAN_RANDOM_SN) ||
7242 !nl80211_check_scan_feat(wiphy, *flags,
7243 NL80211_SCAN_FLAG_MIN_PREQ_CONTENT,
7244 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT))
7247 if (*flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
7250 if (!(wiphy->features & randomness_flag) ||
7251 (wdev && wdev->current_bss))
7254 err = nl80211_parse_random_mac(attrs, mac_addr, mac_addr_mask);
7262 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
7264 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7265 struct wireless_dev *wdev = info->user_ptr[1];
7266 struct cfg80211_scan_request *request;
7267 struct nlattr *attr;
7268 struct wiphy *wiphy;
7269 int err, tmp, n_ssids = 0, n_channels, i;
7272 wiphy = &rdev->wiphy;
7274 if (wdev->iftype == NL80211_IFTYPE_NAN)
7277 if (!rdev->ops->scan)
7280 if (rdev->scan_req || rdev->scan_msg) {
7285 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7286 n_channels = validate_scan_freqs(
7287 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7293 n_channels = ieee80211_get_num_supported_channels(wiphy);
7296 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
7297 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
7300 if (n_ssids > wiphy->max_scan_ssids) {
7305 if (info->attrs[NL80211_ATTR_IE])
7306 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7310 if (ie_len > wiphy->max_scan_ie_len) {
7315 request = kzalloc(sizeof(*request)
7316 + sizeof(*request->ssids) * n_ssids
7317 + sizeof(*request->channels) * n_channels
7318 + ie_len, GFP_KERNEL);
7325 request->ssids = (void *)&request->channels[n_channels];
7326 request->n_ssids = n_ssids;
7329 request->ie = (void *)(request->ssids + n_ssids);
7331 request->ie = (void *)(request->channels + n_channels);
7335 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7336 /* user specified, bail out if channel not found */
7337 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
7338 struct ieee80211_channel *chan;
7340 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7347 /* ignore disabled channels */
7348 if (chan->flags & IEEE80211_CHAN_DISABLED)
7351 request->channels[i] = chan;
7355 enum nl80211_band band;
7358 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7361 if (!wiphy->bands[band])
7363 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7364 struct ieee80211_channel *chan;
7366 chan = &wiphy->bands[band]->channels[j];
7368 if (chan->flags & IEEE80211_CHAN_DISABLED)
7371 request->channels[i] = chan;
7382 request->n_channels = i;
7385 if (!cfg80211_off_channel_oper_allowed(wdev)) {
7386 struct ieee80211_channel *chan;
7388 if (request->n_channels != 1) {
7394 chan = request->channels[0];
7395 if (chan->center_freq != wdev->chandef.chan->center_freq) {
7405 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
7406 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7410 request->ssids[i].ssid_len = nla_len(attr);
7411 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
7416 if (info->attrs[NL80211_ATTR_IE]) {
7417 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7418 memcpy((void *)request->ie,
7419 nla_data(info->attrs[NL80211_ATTR_IE]),
7423 for (i = 0; i < NUM_NL80211_BANDS; i++)
7424 if (wiphy->bands[i])
7426 (1 << wiphy->bands[i]->n_bitrates) - 1;
7428 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
7429 nla_for_each_nested(attr,
7430 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
7432 enum nl80211_band band = nla_type(attr);
7434 if (band < 0 || band >= NUM_NL80211_BANDS) {
7439 if (!wiphy->bands[band])
7442 err = ieee80211_get_ratemask(wiphy->bands[band],
7445 &request->rates[band]);
7451 if (info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]) {
7452 if (!wiphy_ext_feature_isset(wiphy,
7453 NL80211_EXT_FEATURE_SET_SCAN_DWELL)) {
7459 nla_get_u16(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]);
7460 request->duration_mandatory =
7461 nla_get_flag(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY]);
7464 err = nl80211_check_scan_flags(wiphy, wdev, request, info->attrs,
7470 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7472 /* Initial implementation used NL80211_ATTR_MAC to set the specific
7473 * BSSID to scan for. This was problematic because that same attribute
7474 * was already used for another purpose (local random MAC address). The
7475 * NL80211_ATTR_BSSID attribute was added to fix this. For backwards
7476 * compatibility with older userspace components, also use the
7477 * NL80211_ATTR_MAC value here if it can be determined to be used for
7478 * the specific BSSID use case instead of the random MAC address
7479 * (NL80211_ATTR_SCAN_FLAGS is used to enable random MAC address use).
7481 if (info->attrs[NL80211_ATTR_BSSID])
7482 memcpy(request->bssid,
7483 nla_data(info->attrs[NL80211_ATTR_BSSID]), ETH_ALEN);
7484 else if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) &&
7485 info->attrs[NL80211_ATTR_MAC])
7486 memcpy(request->bssid, nla_data(info->attrs[NL80211_ATTR_MAC]),
7489 eth_broadcast_addr(request->bssid);
7491 request->wdev = wdev;
7492 request->wiphy = &rdev->wiphy;
7493 request->scan_start = jiffies;
7495 rdev->scan_req = request;
7496 err = rdev_scan(rdev, request);
7499 nl80211_send_scan_start(rdev, wdev);
7501 dev_hold(wdev->netdev);
7504 rdev->scan_req = NULL;
7512 static int nl80211_abort_scan(struct sk_buff *skb, struct genl_info *info)
7514 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7515 struct wireless_dev *wdev = info->user_ptr[1];
7517 if (!rdev->ops->abort_scan)
7523 if (!rdev->scan_req)
7526 rdev_abort_scan(rdev, wdev);
7531 nl80211_parse_sched_scan_plans(struct wiphy *wiphy, int n_plans,
7532 struct cfg80211_sched_scan_request *request,
7533 struct nlattr **attrs)
7535 int tmp, err, i = 0;
7536 struct nlattr *attr;
7538 if (!attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7542 * If scan plans are not specified,
7543 * %NL80211_ATTR_SCHED_SCAN_INTERVAL will be specified. In this
7544 * case one scan plan will be set with the specified scan
7545 * interval and infinite number of iterations.
7547 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
7551 request->scan_plans[0].interval =
7552 DIV_ROUND_UP(interval, MSEC_PER_SEC);
7553 if (!request->scan_plans[0].interval)
7556 if (request->scan_plans[0].interval >
7557 wiphy->max_sched_scan_plan_interval)
7558 request->scan_plans[0].interval =
7559 wiphy->max_sched_scan_plan_interval;
7564 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp) {
7565 struct nlattr *plan[NL80211_SCHED_SCAN_PLAN_MAX + 1];
7567 if (WARN_ON(i >= n_plans))
7570 err = nla_parse_nested(plan, NL80211_SCHED_SCAN_PLAN_MAX,
7571 attr, nl80211_plan_policy, NULL);
7575 if (!plan[NL80211_SCHED_SCAN_PLAN_INTERVAL])
7578 request->scan_plans[i].interval =
7579 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_INTERVAL]);
7580 if (!request->scan_plans[i].interval ||
7581 request->scan_plans[i].interval >
7582 wiphy->max_sched_scan_plan_interval)
7585 if (plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]) {
7586 request->scan_plans[i].iterations =
7587 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]);
7588 if (!request->scan_plans[i].iterations ||
7589 (request->scan_plans[i].iterations >
7590 wiphy->max_sched_scan_plan_iterations))
7592 } else if (i < n_plans - 1) {
7594 * All scan plans but the last one must specify
7595 * a finite number of iterations
7604 * The last scan plan must not specify the number of
7605 * iterations, it is supposed to run infinitely
7607 if (request->scan_plans[n_plans - 1].iterations)
7614 nl80211_parse_sched_scan_per_band_rssi(struct wiphy *wiphy,
7615 struct cfg80211_match_set *match_sets,
7616 struct nlattr *tb_band_rssi,
7619 struct nlattr *attr;
7620 int i, tmp, ret = 0;
7622 if (!wiphy_ext_feature_isset(wiphy,
7623 NL80211_EXT_FEATURE_SCHED_SCAN_BAND_SPECIFIC_RSSI_THOLD)) {
7627 for (i = 0; i < NUM_NL80211_BANDS; i++)
7628 match_sets->per_band_rssi_thold[i] =
7629 NL80211_SCAN_RSSI_THOLD_OFF;
7633 for (i = 0; i < NUM_NL80211_BANDS; i++)
7634 match_sets->per_band_rssi_thold[i] = rssi_thold;
7636 nla_for_each_nested(attr, tb_band_rssi, tmp) {
7637 enum nl80211_band band = nla_type(attr);
7639 if (band < 0 || band >= NUM_NL80211_BANDS)
7642 match_sets->per_band_rssi_thold[band] = nla_get_s32(attr);
7648 static struct cfg80211_sched_scan_request *
7649 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
7650 struct nlattr **attrs, int max_match_sets)
7652 struct cfg80211_sched_scan_request *request;
7653 struct nlattr *attr;
7654 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i, n_plans = 0;
7655 enum nl80211_band band;
7657 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
7658 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
7660 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7661 n_channels = validate_scan_freqs(
7662 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7664 return ERR_PTR(-EINVAL);
7666 n_channels = ieee80211_get_num_supported_channels(wiphy);
7669 if (attrs[NL80211_ATTR_SCAN_SSIDS])
7670 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7674 if (n_ssids > wiphy->max_sched_scan_ssids)
7675 return ERR_PTR(-EINVAL);
7678 * First, count the number of 'real' matchsets. Due to an issue with
7679 * the old implementation, matchsets containing only the RSSI attribute
7680 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
7681 * RSSI for all matchsets, rather than their own matchset for reporting
7682 * all APs with a strong RSSI. This is needed to be compatible with
7683 * older userspace that treated a matchset with only the RSSI as the
7684 * global RSSI for all other matchsets - if there are other matchsets.
7686 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7687 nla_for_each_nested(attr,
7688 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7690 struct nlattr *rssi;
7692 err = nla_parse_nested(tb,
7693 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7694 attr, nl80211_match_policy,
7697 return ERR_PTR(err);
7699 /* SSID and BSSID are mutually exclusive */
7700 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] &&
7701 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID])
7702 return ERR_PTR(-EINVAL);
7704 /* add other standalone attributes here */
7705 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] ||
7706 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID]) {
7710 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7712 default_match_rssi = nla_get_s32(rssi);
7716 /* However, if there's no other matchset, add the RSSI one */
7717 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
7720 if (n_match_sets > max_match_sets)
7721 return ERR_PTR(-EINVAL);
7723 if (attrs[NL80211_ATTR_IE])
7724 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
7728 if (ie_len > wiphy->max_sched_scan_ie_len)
7729 return ERR_PTR(-EINVAL);
7731 if (attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7733 * NL80211_ATTR_SCHED_SCAN_INTERVAL must not be specified since
7734 * each scan plan already specifies its own interval
7736 if (attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7737 return ERR_PTR(-EINVAL);
7739 nla_for_each_nested(attr,
7740 attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp)
7744 * The scan interval attribute is kept for backward
7745 * compatibility. If no scan plans are specified and sched scan
7746 * interval is specified, one scan plan will be set with this
7747 * scan interval and infinite number of iterations.
7749 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7750 return ERR_PTR(-EINVAL);
7755 if (!n_plans || n_plans > wiphy->max_sched_scan_plans)
7756 return ERR_PTR(-EINVAL);
7758 if (!wiphy_ext_feature_isset(
7759 wiphy, NL80211_EXT_FEATURE_SCHED_SCAN_RELATIVE_RSSI) &&
7760 (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] ||
7761 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]))
7762 return ERR_PTR(-EINVAL);
7764 request = kzalloc(sizeof(*request)
7765 + sizeof(*request->ssids) * n_ssids
7766 + sizeof(*request->match_sets) * n_match_sets
7767 + sizeof(*request->scan_plans) * n_plans
7768 + sizeof(*request->channels) * n_channels
7769 + ie_len, GFP_KERNEL);
7771 return ERR_PTR(-ENOMEM);
7774 request->ssids = (void *)&request->channels[n_channels];
7775 request->n_ssids = n_ssids;
7778 request->ie = (void *)(request->ssids + n_ssids);
7780 request->ie = (void *)(request->channels + n_channels);
7785 request->match_sets = (void *)(request->ie + ie_len);
7787 request->match_sets =
7788 (void *)(request->ssids + n_ssids);
7790 request->match_sets =
7791 (void *)(request->channels + n_channels);
7793 request->n_match_sets = n_match_sets;
7796 request->scan_plans = (void *)(request->match_sets +
7798 else if (request->ie)
7799 request->scan_plans = (void *)(request->ie + ie_len);
7801 request->scan_plans = (void *)(request->ssids + n_ssids);
7803 request->scan_plans = (void *)(request->channels + n_channels);
7805 request->n_scan_plans = n_plans;
7808 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7809 /* user specified, bail out if channel not found */
7810 nla_for_each_nested(attr,
7811 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
7813 struct ieee80211_channel *chan;
7815 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7822 /* ignore disabled channels */
7823 if (chan->flags & IEEE80211_CHAN_DISABLED)
7826 request->channels[i] = chan;
7831 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7834 if (!wiphy->bands[band])
7836 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7837 struct ieee80211_channel *chan;
7839 chan = &wiphy->bands[band]->channels[j];
7841 if (chan->flags & IEEE80211_CHAN_DISABLED)
7844 request->channels[i] = chan;
7855 request->n_channels = i;
7859 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7861 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7865 request->ssids[i].ssid_len = nla_len(attr);
7866 memcpy(request->ssids[i].ssid, nla_data(attr),
7873 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7874 nla_for_each_nested(attr,
7875 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7877 struct nlattr *ssid, *bssid, *rssi;
7879 err = nla_parse_nested(tb,
7880 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7881 attr, nl80211_match_policy,
7885 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
7886 bssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID];
7888 if (!ssid && !bssid) {
7893 if (WARN_ON(i >= n_match_sets)) {
7894 /* this indicates a programming error,
7895 * the loop above should have verified
7903 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
7907 memcpy(request->match_sets[i].ssid.ssid,
7908 nla_data(ssid), nla_len(ssid));
7909 request->match_sets[i].ssid.ssid_len =
7913 if (nla_len(bssid) != ETH_ALEN) {
7917 memcpy(request->match_sets[i].bssid,
7918 nla_data(bssid), ETH_ALEN);
7921 /* special attribute - old implementation w/a */
7922 request->match_sets[i].rssi_thold = default_match_rssi;
7923 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7925 request->match_sets[i].rssi_thold =
7928 /* Parse per band RSSI attribute */
7929 err = nl80211_parse_sched_scan_per_band_rssi(wiphy,
7930 &request->match_sets[i],
7931 tb[NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI],
7932 request->match_sets[i].rssi_thold);
7939 /* there was no other matchset, so the RSSI one is alone */
7940 if (i == 0 && n_match_sets)
7941 request->match_sets[0].rssi_thold = default_match_rssi;
7943 request->min_rssi_thold = INT_MAX;
7944 for (i = 0; i < n_match_sets; i++)
7945 request->min_rssi_thold =
7946 min(request->match_sets[i].rssi_thold,
7947 request->min_rssi_thold);
7949 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
7953 request->ie_len = ie_len;
7954 memcpy((void *)request->ie,
7955 nla_data(attrs[NL80211_ATTR_IE]),
7959 err = nl80211_check_scan_flags(wiphy, wdev, request, attrs, true);
7963 if (attrs[NL80211_ATTR_SCHED_SCAN_DELAY])
7965 nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_DELAY]);
7967 if (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]) {
7968 request->relative_rssi = nla_get_s8(
7969 attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]);
7970 request->relative_rssi_set = true;
7973 if (request->relative_rssi_set &&
7974 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]) {
7975 struct nl80211_bss_select_rssi_adjust *rssi_adjust;
7977 rssi_adjust = nla_data(
7978 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]);
7979 request->rssi_adjust.band = rssi_adjust->band;
7980 request->rssi_adjust.delta = rssi_adjust->delta;
7981 if (!is_band_valid(wiphy, request->rssi_adjust.band)) {
7987 err = nl80211_parse_sched_scan_plans(wiphy, n_plans, request, attrs);
7991 request->scan_start = jiffies;
7997 return ERR_PTR(err);
8000 static int nl80211_start_sched_scan(struct sk_buff *skb,
8001 struct genl_info *info)
8003 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8004 struct net_device *dev = info->user_ptr[1];
8005 struct wireless_dev *wdev = dev->ieee80211_ptr;
8006 struct cfg80211_sched_scan_request *sched_scan_req;
8010 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_start)
8013 want_multi = info->attrs[NL80211_ATTR_SCHED_SCAN_MULTI];
8014 err = cfg80211_sched_scan_req_possible(rdev, want_multi);
8018 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
8020 rdev->wiphy.max_match_sets);
8022 err = PTR_ERR_OR_ZERO(sched_scan_req);
8026 /* leave request id zero for legacy request
8027 * or if driver does not support multi-scheduled scan
8029 if (want_multi && rdev->wiphy.max_sched_scan_reqs > 1) {
8030 while (!sched_scan_req->reqid)
8031 sched_scan_req->reqid = cfg80211_assign_cookie(rdev);
8034 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
8038 sched_scan_req->dev = dev;
8039 sched_scan_req->wiphy = &rdev->wiphy;
8041 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
8042 sched_scan_req->owner_nlportid = info->snd_portid;
8044 cfg80211_add_sched_scan_req(rdev, sched_scan_req);
8046 nl80211_send_sched_scan(sched_scan_req, NL80211_CMD_START_SCHED_SCAN);
8050 kfree(sched_scan_req);
8055 static int nl80211_stop_sched_scan(struct sk_buff *skb,
8056 struct genl_info *info)
8058 struct cfg80211_sched_scan_request *req;
8059 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8062 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_stop)
8065 if (info->attrs[NL80211_ATTR_COOKIE]) {
8066 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
8067 return __cfg80211_stop_sched_scan(rdev, cookie, false);
8070 req = list_first_or_null_rcu(&rdev->sched_scan_req_list,
8071 struct cfg80211_sched_scan_request,
8073 if (!req || req->reqid ||
8074 (req->owner_nlportid &&
8075 req->owner_nlportid != info->snd_portid))
8078 return cfg80211_stop_sched_scan_req(rdev, req, false);
8081 static int nl80211_start_radar_detection(struct sk_buff *skb,
8082 struct genl_info *info)
8084 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8085 struct net_device *dev = info->user_ptr[1];
8086 struct wireless_dev *wdev = dev->ieee80211_ptr;
8087 struct wiphy *wiphy = wdev->wiphy;
8088 struct cfg80211_chan_def chandef;
8089 enum nl80211_dfs_regions dfs_region;
8090 unsigned int cac_time_ms;
8093 dfs_region = reg_get_dfs_region(wiphy);
8094 if (dfs_region == NL80211_DFS_UNSET)
8097 err = nl80211_parse_chandef(rdev, info, &chandef);
8101 if (netif_carrier_ok(dev))
8104 if (wdev->cac_started)
8107 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8114 if (!cfg80211_chandef_dfs_usable(wiphy, &chandef))
8117 /* CAC start is offloaded to HW and can't be started manually */
8118 if (wiphy_ext_feature_isset(wiphy, NL80211_EXT_FEATURE_DFS_OFFLOAD))
8121 if (!rdev->ops->start_radar_detection)
8124 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
8125 if (WARN_ON(!cac_time_ms))
8126 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
8128 err = rdev_start_radar_detection(rdev, dev, &chandef, cac_time_ms);
8130 wdev->chandef = chandef;
8131 wdev->cac_started = true;
8132 wdev->cac_start_time = jiffies;
8133 wdev->cac_time_ms = cac_time_ms;
8138 static int nl80211_notify_radar_detection(struct sk_buff *skb,
8139 struct genl_info *info)
8141 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8142 struct net_device *dev = info->user_ptr[1];
8143 struct wireless_dev *wdev = dev->ieee80211_ptr;
8144 struct wiphy *wiphy = wdev->wiphy;
8145 struct cfg80211_chan_def chandef;
8146 enum nl80211_dfs_regions dfs_region;
8149 dfs_region = reg_get_dfs_region(wiphy);
8150 if (dfs_region == NL80211_DFS_UNSET) {
8151 GENL_SET_ERR_MSG(info,
8152 "DFS Region is not set. Unexpected Radar indication");
8156 err = nl80211_parse_chandef(rdev, info, &chandef);
8158 GENL_SET_ERR_MSG(info, "Unable to extract chandef info");
8162 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8164 GENL_SET_ERR_MSG(info, "chandef is invalid");
8169 GENL_SET_ERR_MSG(info,
8170 "Unexpected Radar indication for chandef/iftype");
8174 /* Do not process this notification if radar is already detected
8175 * by kernel on this channel, and return success.
8177 if (chandef.chan->dfs_state == NL80211_DFS_UNAVAILABLE)
8180 cfg80211_set_dfs_state(wiphy, &chandef, NL80211_DFS_UNAVAILABLE);
8182 cfg80211_sched_dfs_chan_update(rdev);
8184 memcpy(&rdev->radar_chandef, &chandef, sizeof(chandef));
8186 /* Propagate this notification to other radios as well */
8187 queue_work(cfg80211_wq, &rdev->propagate_radar_detect_wk);
8192 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
8194 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8195 struct net_device *dev = info->user_ptr[1];
8196 struct wireless_dev *wdev = dev->ieee80211_ptr;
8197 struct cfg80211_csa_settings params;
8198 /* csa_attrs is defined static to avoid waste of stack size - this
8199 * function is called under RTNL lock, so this should not be a problem.
8201 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
8203 bool need_new_beacon = false;
8204 bool need_handle_dfs_flag = true;
8208 if (!rdev->ops->channel_switch ||
8209 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
8212 switch (dev->ieee80211_ptr->iftype) {
8213 case NL80211_IFTYPE_AP:
8214 case NL80211_IFTYPE_P2P_GO:
8215 need_new_beacon = true;
8216 /* For all modes except AP the handle_dfs flag needs to be
8217 * supplied to tell the kernel that userspace will handle radar
8218 * events when they happen. Otherwise a switch to a channel
8219 * requiring DFS will be rejected.
8221 need_handle_dfs_flag = false;
8223 /* useless if AP is not running */
8224 if (!wdev->beacon_interval)
8227 case NL80211_IFTYPE_ADHOC:
8228 if (!wdev->ssid_len)
8231 case NL80211_IFTYPE_MESH_POINT:
8232 if (!wdev->mesh_id_len)
8239 memset(¶ms, 0, sizeof(params));
8240 params.beacon_csa.ftm_responder = -1;
8242 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
8243 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
8246 /* only important for AP, IBSS and mesh create IEs internally */
8247 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
8250 /* Even though the attribute is u32, the specification says
8251 * u8, so let's make sure we don't overflow.
8253 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
8257 params.count = cs_count;
8259 if (!need_new_beacon)
8262 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon_after);
8266 err = nla_parse_nested(csa_attrs, NL80211_ATTR_MAX,
8267 info->attrs[NL80211_ATTR_CSA_IES],
8268 nl80211_policy, info->extack);
8272 err = nl80211_parse_beacon(rdev, csa_attrs, ¶ms.beacon_csa);
8276 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
8279 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8280 if (!len || (len % sizeof(u16)))
8283 params.n_counter_offsets_beacon = len / sizeof(u16);
8284 if (rdev->wiphy.max_num_csa_counters &&
8285 (params.n_counter_offsets_beacon >
8286 rdev->wiphy.max_num_csa_counters))
8289 params.counter_offsets_beacon =
8290 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8292 /* sanity checks - counters should fit and be the same */
8293 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
8294 u16 offset = params.counter_offsets_beacon[i];
8296 if (offset >= params.beacon_csa.tail_len)
8299 if (params.beacon_csa.tail[offset] != params.count)
8303 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
8304 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8305 if (!len || (len % sizeof(u16)))
8308 params.n_counter_offsets_presp = len / sizeof(u16);
8309 if (rdev->wiphy.max_num_csa_counters &&
8310 (params.n_counter_offsets_presp >
8311 rdev->wiphy.max_num_csa_counters))
8314 params.counter_offsets_presp =
8315 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8317 /* sanity checks - counters should fit and be the same */
8318 for (i = 0; i < params.n_counter_offsets_presp; i++) {
8319 u16 offset = params.counter_offsets_presp[i];
8321 if (offset >= params.beacon_csa.probe_resp_len)
8324 if (params.beacon_csa.probe_resp[offset] !=
8331 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
8335 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
8339 err = cfg80211_chandef_dfs_required(wdev->wiphy,
8346 params.radar_required = true;
8347 if (need_handle_dfs_flag &&
8348 !nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS])) {
8353 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
8354 params.block_tx = true;
8357 err = rdev_channel_switch(rdev, dev, ¶ms);
8363 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
8365 struct cfg80211_registered_device *rdev,
8366 struct wireless_dev *wdev,
8367 struct cfg80211_internal_bss *intbss)
8369 struct cfg80211_bss *res = &intbss->pub;
8370 const struct cfg80211_bss_ies *ies;
8374 ASSERT_WDEV_LOCK(wdev);
8376 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
8377 NL80211_CMD_NEW_SCAN_RESULTS);
8381 genl_dump_check_consistent(cb, hdr);
8383 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
8384 goto nla_put_failure;
8386 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
8387 goto nla_put_failure;
8388 if (nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
8390 goto nla_put_failure;
8392 bss = nla_nest_start(msg, NL80211_ATTR_BSS);
8394 goto nla_put_failure;
8395 if ((!is_zero_ether_addr(res->bssid) &&
8396 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
8397 goto nla_put_failure;
8400 /* indicate whether we have probe response data or not */
8401 if (rcu_access_pointer(res->proberesp_ies) &&
8402 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
8403 goto fail_unlock_rcu;
8405 /* this pointer prefers to be pointed to probe response data
8406 * but is always valid
8408 ies = rcu_dereference(res->ies);
8410 if (nla_put_u64_64bit(msg, NL80211_BSS_TSF, ies->tsf,
8412 goto fail_unlock_rcu;
8413 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
8414 ies->len, ies->data))
8415 goto fail_unlock_rcu;
8418 /* and this pointer is always (unless driver didn't know) beacon data */
8419 ies = rcu_dereference(res->beacon_ies);
8420 if (ies && ies->from_beacon) {
8421 if (nla_put_u64_64bit(msg, NL80211_BSS_BEACON_TSF, ies->tsf,
8423 goto fail_unlock_rcu;
8424 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
8425 ies->len, ies->data))
8426 goto fail_unlock_rcu;
8430 if (res->beacon_interval &&
8431 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
8432 goto nla_put_failure;
8433 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
8434 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
8435 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
8436 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
8437 jiffies_to_msecs(jiffies - intbss->ts)))
8438 goto nla_put_failure;
8440 if (intbss->parent_tsf &&
8441 (nla_put_u64_64bit(msg, NL80211_BSS_PARENT_TSF,
8442 intbss->parent_tsf, NL80211_BSS_PAD) ||
8443 nla_put(msg, NL80211_BSS_PARENT_BSSID, ETH_ALEN,
8444 intbss->parent_bssid)))
8445 goto nla_put_failure;
8447 if (intbss->ts_boottime &&
8448 nla_put_u64_64bit(msg, NL80211_BSS_LAST_SEEN_BOOTTIME,
8449 intbss->ts_boottime, NL80211_BSS_PAD))
8450 goto nla_put_failure;
8452 if (!nl80211_put_signal(msg, intbss->pub.chains,
8453 intbss->pub.chain_signal,
8454 NL80211_BSS_CHAIN_SIGNAL))
8455 goto nla_put_failure;
8457 switch (rdev->wiphy.signal_type) {
8458 case CFG80211_SIGNAL_TYPE_MBM:
8459 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
8460 goto nla_put_failure;
8462 case CFG80211_SIGNAL_TYPE_UNSPEC:
8463 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
8464 goto nla_put_failure;
8470 switch (wdev->iftype) {
8471 case NL80211_IFTYPE_P2P_CLIENT:
8472 case NL80211_IFTYPE_STATION:
8473 if (intbss == wdev->current_bss &&
8474 nla_put_u32(msg, NL80211_BSS_STATUS,
8475 NL80211_BSS_STATUS_ASSOCIATED))
8476 goto nla_put_failure;
8478 case NL80211_IFTYPE_ADHOC:
8479 if (intbss == wdev->current_bss &&
8480 nla_put_u32(msg, NL80211_BSS_STATUS,
8481 NL80211_BSS_STATUS_IBSS_JOINED))
8482 goto nla_put_failure;
8488 nla_nest_end(msg, bss);
8490 genlmsg_end(msg, hdr);
8496 genlmsg_cancel(msg, hdr);
8500 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
8502 struct cfg80211_registered_device *rdev;
8503 struct cfg80211_internal_bss *scan;
8504 struct wireless_dev *wdev;
8505 int start = cb->args[2], idx = 0;
8509 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8516 spin_lock_bh(&rdev->bss_lock);
8519 * dump_scan will be called multiple times to break up the scan results
8520 * into multiple messages. It is unlikely that any more bss-es will be
8521 * expired after the first call, so only call only call this on the
8522 * first dump_scan invocation.
8525 cfg80211_bss_expire(rdev);
8527 cb->seq = rdev->bss_generation;
8529 list_for_each_entry(scan, &rdev->bss_list, list) {
8532 if (nl80211_send_bss(skb, cb,
8533 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8534 rdev, wdev, scan) < 0) {
8540 spin_unlock_bh(&rdev->bss_lock);
8549 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
8550 int flags, struct net_device *dev,
8551 bool allow_radio_stats,
8552 struct survey_info *survey)
8555 struct nlattr *infoattr;
8557 /* skip radio stats if userspace didn't request them */
8558 if (!survey->channel && !allow_radio_stats)
8561 hdr = nl80211hdr_put(msg, portid, seq, flags,
8562 NL80211_CMD_NEW_SURVEY_RESULTS);
8566 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
8567 goto nla_put_failure;
8569 infoattr = nla_nest_start(msg, NL80211_ATTR_SURVEY_INFO);
8571 goto nla_put_failure;
8573 if (survey->channel &&
8574 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
8575 survey->channel->center_freq))
8576 goto nla_put_failure;
8578 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
8579 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
8580 goto nla_put_failure;
8581 if ((survey->filled & SURVEY_INFO_IN_USE) &&
8582 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
8583 goto nla_put_failure;
8584 if ((survey->filled & SURVEY_INFO_TIME) &&
8585 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME,
8586 survey->time, NL80211_SURVEY_INFO_PAD))
8587 goto nla_put_failure;
8588 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
8589 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_BUSY,
8590 survey->time_busy, NL80211_SURVEY_INFO_PAD))
8591 goto nla_put_failure;
8592 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
8593 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
8594 survey->time_ext_busy, NL80211_SURVEY_INFO_PAD))
8595 goto nla_put_failure;
8596 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
8597 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_RX,
8598 survey->time_rx, NL80211_SURVEY_INFO_PAD))
8599 goto nla_put_failure;
8600 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
8601 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_TX,
8602 survey->time_tx, NL80211_SURVEY_INFO_PAD))
8603 goto nla_put_failure;
8604 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
8605 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_SCAN,
8606 survey->time_scan, NL80211_SURVEY_INFO_PAD))
8607 goto nla_put_failure;
8609 nla_nest_end(msg, infoattr);
8611 genlmsg_end(msg, hdr);
8615 genlmsg_cancel(msg, hdr);
8619 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
8621 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
8622 struct survey_info survey;
8623 struct cfg80211_registered_device *rdev;
8624 struct wireless_dev *wdev;
8625 int survey_idx = cb->args[2];
8630 res = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8634 /* prepare_wdev_dump parsed the attributes */
8635 radio_stats = attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
8637 if (!wdev->netdev) {
8642 if (!rdev->ops->dump_survey) {
8648 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
8654 /* don't send disabled channels, but do send non-channel data */
8655 if (survey.channel &&
8656 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
8661 if (nl80211_send_survey(skb,
8662 NETLINK_CB(cb->skb).portid,
8663 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8664 wdev->netdev, radio_stats, &survey) < 0)
8670 cb->args[2] = survey_idx;
8677 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
8679 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
8680 NL80211_WPA_VERSION_2));
8683 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
8685 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8686 struct net_device *dev = info->user_ptr[1];
8687 struct ieee80211_channel *chan;
8688 const u8 *bssid, *ssid, *ie = NULL, *auth_data = NULL;
8689 int err, ssid_len, ie_len = 0, auth_data_len = 0;
8690 enum nl80211_auth_type auth_type;
8691 struct key_parse key;
8692 bool local_state_change;
8694 if (!info->attrs[NL80211_ATTR_MAC])
8697 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
8700 if (!info->attrs[NL80211_ATTR_SSID])
8703 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8706 err = nl80211_parse_key(info, &key);
8711 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
8713 if (!key.p.key || !key.p.key_len)
8715 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
8716 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
8717 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
8718 key.p.key_len != WLAN_KEY_LEN_WEP104))
8731 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
8732 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
8741 if (!rdev->ops->auth)
8744 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8745 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8748 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8749 chan = nl80211_get_valid_chan(&rdev->wiphy,
8750 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8754 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8755 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8757 if (info->attrs[NL80211_ATTR_IE]) {
8758 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8759 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8762 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
8763 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
8766 if ((auth_type == NL80211_AUTHTYPE_SAE ||
8767 auth_type == NL80211_AUTHTYPE_FILS_SK ||
8768 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
8769 auth_type == NL80211_AUTHTYPE_FILS_PK) &&
8770 !info->attrs[NL80211_ATTR_AUTH_DATA])
8773 if (info->attrs[NL80211_ATTR_AUTH_DATA]) {
8774 if (auth_type != NL80211_AUTHTYPE_SAE &&
8775 auth_type != NL80211_AUTHTYPE_FILS_SK &&
8776 auth_type != NL80211_AUTHTYPE_FILS_SK_PFS &&
8777 auth_type != NL80211_AUTHTYPE_FILS_PK)
8779 auth_data = nla_data(info->attrs[NL80211_ATTR_AUTH_DATA]);
8780 auth_data_len = nla_len(info->attrs[NL80211_ATTR_AUTH_DATA]);
8781 /* need to include at least Auth Transaction and Status Code */
8782 if (auth_data_len < 4)
8786 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
8789 * Since we no longer track auth state, ignore
8790 * requests to only change local state.
8792 if (local_state_change)
8795 wdev_lock(dev->ieee80211_ptr);
8796 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
8797 ssid, ssid_len, ie, ie_len,
8798 key.p.key, key.p.key_len, key.idx,
8799 auth_data, auth_data_len);
8800 wdev_unlock(dev->ieee80211_ptr);
8804 static int validate_pae_over_nl80211(struct cfg80211_registered_device *rdev,
8805 struct genl_info *info)
8807 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
8808 GENL_SET_ERR_MSG(info, "SOCKET_OWNER not set");
8812 if (!rdev->ops->tx_control_port ||
8813 !wiphy_ext_feature_isset(&rdev->wiphy,
8814 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
8820 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
8821 struct genl_info *info,
8822 struct cfg80211_crypto_settings *settings,
8825 memset(settings, 0, sizeof(*settings));
8827 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
8829 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
8832 proto = nla_get_u16(
8833 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
8834 settings->control_port_ethertype = cpu_to_be16(proto);
8835 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
8838 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
8839 settings->control_port_no_encrypt = true;
8841 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
8843 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
8844 int r = validate_pae_over_nl80211(rdev, info);
8849 settings->control_port_over_nl80211 = true;
8852 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
8856 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8857 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
8858 settings->n_ciphers_pairwise = len / sizeof(u32);
8860 if (len % sizeof(u32))
8863 if (settings->n_ciphers_pairwise > cipher_limit)
8866 memcpy(settings->ciphers_pairwise, data, len);
8868 for (i = 0; i < settings->n_ciphers_pairwise; i++)
8869 if (!cfg80211_supported_cipher_suite(
8871 settings->ciphers_pairwise[i]))
8875 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
8876 settings->cipher_group =
8877 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
8878 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
8879 settings->cipher_group))
8883 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
8884 settings->wpa_versions =
8885 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
8886 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
8890 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
8894 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
8895 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
8896 settings->n_akm_suites = len / sizeof(u32);
8898 if (len % sizeof(u32))
8901 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
8904 memcpy(settings->akm_suites, data, len);
8907 if (info->attrs[NL80211_ATTR_PMK]) {
8908 if (nla_len(info->attrs[NL80211_ATTR_PMK]) != WLAN_PMK_LEN)
8910 if (!wiphy_ext_feature_isset(&rdev->wiphy,
8911 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK))
8913 settings->psk = nla_data(info->attrs[NL80211_ATTR_PMK]);
8919 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
8921 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8922 struct net_device *dev = info->user_ptr[1];
8923 struct ieee80211_channel *chan;
8924 struct cfg80211_assoc_request req = {};
8925 const u8 *bssid, *ssid;
8926 int err, ssid_len = 0;
8928 if (dev->ieee80211_ptr->conn_owner_nlportid &&
8929 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
8932 if (!info->attrs[NL80211_ATTR_MAC] ||
8933 !info->attrs[NL80211_ATTR_SSID] ||
8934 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
8937 if (!rdev->ops->assoc)
8940 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
8941 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
8944 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
8946 chan = nl80211_get_valid_chan(&rdev->wiphy,
8947 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
8951 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
8952 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
8954 if (info->attrs[NL80211_ATTR_IE]) {
8955 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
8956 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
8959 if (info->attrs[NL80211_ATTR_USE_MFP]) {
8960 enum nl80211_mfp mfp =
8961 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
8962 if (mfp == NL80211_MFP_REQUIRED)
8964 else if (mfp != NL80211_MFP_NO)
8968 if (info->attrs[NL80211_ATTR_PREV_BSSID])
8969 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
8971 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
8972 req.flags |= ASSOC_REQ_DISABLE_HT;
8974 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8975 memcpy(&req.ht_capa_mask,
8976 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
8977 sizeof(req.ht_capa_mask));
8979 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
8980 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
8982 memcpy(&req.ht_capa,
8983 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
8984 sizeof(req.ht_capa));
8987 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
8988 req.flags |= ASSOC_REQ_DISABLE_VHT;
8990 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
8991 memcpy(&req.vht_capa_mask,
8992 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
8993 sizeof(req.vht_capa_mask));
8995 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
8996 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
8998 memcpy(&req.vht_capa,
8999 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9000 sizeof(req.vht_capa));
9003 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9004 if (!((rdev->wiphy.features &
9005 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9006 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9007 !wiphy_ext_feature_isset(&rdev->wiphy,
9008 NL80211_EXT_FEATURE_RRM))
9010 req.flags |= ASSOC_REQ_USE_RRM;
9013 if (info->attrs[NL80211_ATTR_FILS_KEK]) {
9014 req.fils_kek = nla_data(info->attrs[NL80211_ATTR_FILS_KEK]);
9015 req.fils_kek_len = nla_len(info->attrs[NL80211_ATTR_FILS_KEK]);
9016 if (!info->attrs[NL80211_ATTR_FILS_NONCES])
9019 nla_data(info->attrs[NL80211_ATTR_FILS_NONCES]);
9022 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
9024 wdev_lock(dev->ieee80211_ptr);
9026 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
9027 ssid, ssid_len, &req);
9029 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9030 dev->ieee80211_ptr->conn_owner_nlportid =
9032 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9036 wdev_unlock(dev->ieee80211_ptr);
9042 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
9044 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9045 struct net_device *dev = info->user_ptr[1];
9046 const u8 *ie = NULL, *bssid;
9047 int ie_len = 0, err;
9049 bool local_state_change;
9051 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9052 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9055 if (!info->attrs[NL80211_ATTR_MAC])
9058 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9061 if (!rdev->ops->deauth)
9064 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9065 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9068 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9070 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9071 if (reason_code == 0) {
9072 /* Reason Code 0 is reserved */
9076 if (info->attrs[NL80211_ATTR_IE]) {
9077 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9078 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9081 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9083 wdev_lock(dev->ieee80211_ptr);
9084 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
9085 local_state_change);
9086 wdev_unlock(dev->ieee80211_ptr);
9090 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
9092 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9093 struct net_device *dev = info->user_ptr[1];
9094 const u8 *ie = NULL, *bssid;
9095 int ie_len = 0, err;
9097 bool local_state_change;
9099 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9100 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9103 if (!info->attrs[NL80211_ATTR_MAC])
9106 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9109 if (!rdev->ops->disassoc)
9112 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9113 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9116 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9118 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9119 if (reason_code == 0) {
9120 /* Reason Code 0 is reserved */
9124 if (info->attrs[NL80211_ATTR_IE]) {
9125 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9126 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9129 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9131 wdev_lock(dev->ieee80211_ptr);
9132 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
9133 local_state_change);
9134 wdev_unlock(dev->ieee80211_ptr);
9139 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
9140 int mcast_rate[NUM_NL80211_BANDS],
9143 struct wiphy *wiphy = &rdev->wiphy;
9147 for (band = 0; band < NUM_NL80211_BANDS; band++) {
9148 struct ieee80211_supported_band *sband;
9150 sband = wiphy->bands[band];
9154 for (i = 0; i < sband->n_bitrates; i++) {
9155 if (sband->bitrates[i].bitrate == rateval) {
9156 mcast_rate[band] = i + 1;
9166 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
9168 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9169 struct net_device *dev = info->user_ptr[1];
9170 struct cfg80211_ibss_params ibss;
9171 struct wiphy *wiphy;
9172 struct cfg80211_cached_keys *connkeys = NULL;
9175 memset(&ibss, 0, sizeof(ibss));
9177 if (!info->attrs[NL80211_ATTR_SSID] ||
9178 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9181 ibss.beacon_interval = 100;
9183 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL])
9184 ibss.beacon_interval =
9185 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
9187 err = cfg80211_validate_beacon_int(rdev, NL80211_IFTYPE_ADHOC,
9188 ibss.beacon_interval);
9192 if (!rdev->ops->join_ibss)
9195 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9198 wiphy = &rdev->wiphy;
9200 if (info->attrs[NL80211_ATTR_MAC]) {
9201 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9203 if (!is_valid_ether_addr(ibss.bssid))
9206 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9207 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9209 if (info->attrs[NL80211_ATTR_IE]) {
9210 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9211 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9214 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
9218 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
9219 NL80211_IFTYPE_ADHOC))
9222 switch (ibss.chandef.width) {
9223 case NL80211_CHAN_WIDTH_5:
9224 case NL80211_CHAN_WIDTH_10:
9225 case NL80211_CHAN_WIDTH_20_NOHT:
9227 case NL80211_CHAN_WIDTH_20:
9228 case NL80211_CHAN_WIDTH_40:
9229 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9232 case NL80211_CHAN_WIDTH_80:
9233 case NL80211_CHAN_WIDTH_80P80:
9234 case NL80211_CHAN_WIDTH_160:
9235 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9237 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9238 NL80211_EXT_FEATURE_VHT_IBSS))
9245 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
9246 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
9248 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
9250 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9252 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9253 struct ieee80211_supported_band *sband =
9254 wiphy->bands[ibss.chandef.chan->band];
9256 err = ieee80211_get_ratemask(sband, rates, n_rates,
9262 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9263 memcpy(&ibss.ht_capa_mask,
9264 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9265 sizeof(ibss.ht_capa_mask));
9267 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9268 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9270 memcpy(&ibss.ht_capa,
9271 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9272 sizeof(ibss.ht_capa));
9275 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
9276 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
9277 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
9280 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9283 connkeys = nl80211_parse_connkeys(rdev, info, &no_ht);
9284 if (IS_ERR(connkeys))
9285 return PTR_ERR(connkeys);
9287 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
9295 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
9297 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
9298 int r = validate_pae_over_nl80211(rdev, info);
9305 ibss.control_port_over_nl80211 = true;
9308 ibss.userspace_handles_dfs =
9309 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
9311 wdev_lock(dev->ieee80211_ptr);
9312 err = __cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
9315 else if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
9316 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9317 wdev_unlock(dev->ieee80211_ptr);
9322 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
9324 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9325 struct net_device *dev = info->user_ptr[1];
9327 if (!rdev->ops->leave_ibss)
9330 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9333 return cfg80211_leave_ibss(rdev, dev, false);
9336 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
9338 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9339 struct net_device *dev = info->user_ptr[1];
9340 int mcast_rate[NUM_NL80211_BANDS];
9344 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
9345 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
9346 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_OCB)
9349 if (!rdev->ops->set_mcast_rate)
9352 memset(mcast_rate, 0, sizeof(mcast_rate));
9354 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
9357 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
9358 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
9361 err = rdev_set_mcast_rate(rdev, dev, mcast_rate);
9366 static struct sk_buff *
9367 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
9368 struct wireless_dev *wdev, int approxlen,
9369 u32 portid, u32 seq, enum nl80211_commands cmd,
9370 enum nl80211_attrs attr,
9371 const struct nl80211_vendor_cmd_info *info,
9374 struct sk_buff *skb;
9376 struct nlattr *data;
9378 skb = nlmsg_new(approxlen + 100, gfp);
9382 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
9388 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
9389 goto nla_put_failure;
9392 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
9394 goto nla_put_failure;
9395 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
9397 goto nla_put_failure;
9401 if (nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
9402 wdev_id(wdev), NL80211_ATTR_PAD))
9403 goto nla_put_failure;
9405 nla_put_u32(skb, NL80211_ATTR_IFINDEX,
9406 wdev->netdev->ifindex))
9407 goto nla_put_failure;
9410 data = nla_nest_start(skb, attr);
9412 goto nla_put_failure;
9414 ((void **)skb->cb)[0] = rdev;
9415 ((void **)skb->cb)[1] = hdr;
9416 ((void **)skb->cb)[2] = data;
9425 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
9426 struct wireless_dev *wdev,
9427 enum nl80211_commands cmd,
9428 enum nl80211_attrs attr,
9429 unsigned int portid,
9430 int vendor_event_idx,
9431 int approxlen, gfp_t gfp)
9433 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9434 const struct nl80211_vendor_cmd_info *info;
9437 case NL80211_CMD_TESTMODE:
9438 if (WARN_ON(vendor_event_idx != -1))
9442 case NL80211_CMD_VENDOR:
9443 if (WARN_ON(vendor_event_idx < 0 ||
9444 vendor_event_idx >= wiphy->n_vendor_events))
9446 info = &wiphy->vendor_events[vendor_event_idx];
9453 return __cfg80211_alloc_vendor_skb(rdev, wdev, approxlen, portid, 0,
9454 cmd, attr, info, gfp);
9456 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
9458 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
9460 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9461 void *hdr = ((void **)skb->cb)[1];
9462 struct nlmsghdr *nlhdr = nlmsg_hdr(skb);
9463 struct nlattr *data = ((void **)skb->cb)[2];
9464 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
9466 /* clear CB data for netlink core to own from now on */
9467 memset(skb->cb, 0, sizeof(skb->cb));
9469 nla_nest_end(skb, data);
9470 genlmsg_end(skb, hdr);
9472 if (nlhdr->nlmsg_pid) {
9473 genlmsg_unicast(wiphy_net(&rdev->wiphy), skb,
9476 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
9477 mcgrp = NL80211_MCGRP_VENDOR;
9479 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
9480 skb, 0, mcgrp, gfp);
9483 EXPORT_SYMBOL(__cfg80211_send_event_skb);
9485 #ifdef CONFIG_NL80211_TESTMODE
9486 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
9488 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9489 struct wireless_dev *wdev =
9490 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9493 if (!rdev->ops->testmode_cmd)
9497 err = PTR_ERR(wdev);
9501 } else if (wdev->wiphy != &rdev->wiphy) {
9505 if (!info->attrs[NL80211_ATTR_TESTDATA])
9508 rdev->cur_cmd_info = info;
9509 err = rdev_testmode_cmd(rdev, wdev,
9510 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
9511 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
9512 rdev->cur_cmd_info = NULL;
9517 static int nl80211_testmode_dump(struct sk_buff *skb,
9518 struct netlink_callback *cb)
9520 struct cfg80211_registered_device *rdev;
9530 * 0 is a valid index, but not valid for args[0],
9531 * so we need to offset by 1.
9533 phy_idx = cb->args[0] - 1;
9535 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
9541 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
9543 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize,
9544 attrbuf, nl80211_fam.maxattr,
9545 nl80211_policy, NULL);
9549 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
9551 err = PTR_ERR(rdev);
9554 phy_idx = rdev->wiphy_idx;
9556 if (attrbuf[NL80211_ATTR_TESTDATA])
9557 cb->args[1] = (long)attrbuf[NL80211_ATTR_TESTDATA];
9561 data = nla_data((void *)cb->args[1]);
9562 data_len = nla_len((void *)cb->args[1]);
9565 if (!rdev->ops->testmode_dump) {
9571 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
9572 cb->nlh->nlmsg_seq, NLM_F_MULTI,
9573 NL80211_CMD_TESTMODE);
9574 struct nlattr *tmdata;
9579 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
9580 genlmsg_cancel(skb, hdr);
9584 tmdata = nla_nest_start(skb, NL80211_ATTR_TESTDATA);
9586 genlmsg_cancel(skb, hdr);
9589 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
9590 nla_nest_end(skb, tmdata);
9592 if (err == -ENOBUFS || err == -ENOENT) {
9593 genlmsg_cancel(skb, hdr);
9596 genlmsg_cancel(skb, hdr);
9600 genlmsg_end(skb, hdr);
9605 cb->args[0] = phy_idx + 1;
9612 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
9614 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9615 struct net_device *dev = info->user_ptr[1];
9616 struct cfg80211_connect_params connect;
9617 struct wiphy *wiphy;
9618 struct cfg80211_cached_keys *connkeys = NULL;
9621 memset(&connect, 0, sizeof(connect));
9623 if (!info->attrs[NL80211_ATTR_SSID] ||
9624 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9627 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9629 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9630 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
9631 NL80211_CMD_CONNECT))
9634 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
9636 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
9638 if (info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS] &&
9639 !wiphy_ext_feature_isset(&rdev->wiphy,
9640 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
9642 connect.want_1x = info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS];
9644 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
9645 NL80211_MAX_NR_CIPHER_SUITES);
9649 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9650 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9653 wiphy = &rdev->wiphy;
9655 connect.bg_scan_period = -1;
9656 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
9657 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
9658 connect.bg_scan_period =
9659 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
9662 if (info->attrs[NL80211_ATTR_MAC])
9663 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9664 else if (info->attrs[NL80211_ATTR_MAC_HINT])
9665 connect.bssid_hint =
9666 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
9667 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9668 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9670 if (info->attrs[NL80211_ATTR_IE]) {
9671 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9672 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9675 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9676 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9677 if (connect.mfp == NL80211_MFP_OPTIONAL &&
9678 !wiphy_ext_feature_isset(&rdev->wiphy,
9679 NL80211_EXT_FEATURE_MFP_OPTIONAL))
9682 connect.mfp = NL80211_MFP_NO;
9685 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9686 connect.prev_bssid =
9687 nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9689 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
9690 connect.channel = nl80211_get_valid_chan(
9691 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9692 if (!connect.channel)
9694 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
9695 connect.channel_hint = nl80211_get_valid_chan(
9696 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
9697 if (!connect.channel_hint)
9701 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9702 connkeys = nl80211_parse_connkeys(rdev, info, NULL);
9703 if (IS_ERR(connkeys))
9704 return PTR_ERR(connkeys);
9707 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9708 connect.flags |= ASSOC_REQ_DISABLE_HT;
9710 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9711 memcpy(&connect.ht_capa_mask,
9712 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9713 sizeof(connect.ht_capa_mask));
9715 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9716 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
9720 memcpy(&connect.ht_capa,
9721 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9722 sizeof(connect.ht_capa));
9725 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9726 connect.flags |= ASSOC_REQ_DISABLE_VHT;
9728 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9729 memcpy(&connect.vht_capa_mask,
9730 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9731 sizeof(connect.vht_capa_mask));
9733 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9734 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
9738 memcpy(&connect.vht_capa,
9739 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9740 sizeof(connect.vht_capa));
9743 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9744 if (!((rdev->wiphy.features &
9745 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9746 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9747 !wiphy_ext_feature_isset(&rdev->wiphy,
9748 NL80211_EXT_FEATURE_RRM)) {
9752 connect.flags |= ASSOC_REQ_USE_RRM;
9755 connect.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
9756 if (connect.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ]) {
9761 if (info->attrs[NL80211_ATTR_BSS_SELECT]) {
9762 /* bss selection makes no sense if bssid is set */
9763 if (connect.bssid) {
9768 err = parse_bss_select(info->attrs[NL80211_ATTR_BSS_SELECT],
9769 wiphy, &connect.bss_select);
9776 if (wiphy_ext_feature_isset(&rdev->wiphy,
9777 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
9778 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9779 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9780 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9781 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9782 connect.fils_erp_username =
9783 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9784 connect.fils_erp_username_len =
9785 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9786 connect.fils_erp_realm =
9787 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9788 connect.fils_erp_realm_len =
9789 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9790 connect.fils_erp_next_seq_num =
9792 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9793 connect.fils_erp_rrk =
9794 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9795 connect.fils_erp_rrk_len =
9796 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9797 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9798 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9799 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9800 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9805 if (nla_get_flag(info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])) {
9806 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9808 GENL_SET_ERR_MSG(info,
9809 "external auth requires connection ownership");
9812 connect.flags |= CONNECT_REQ_EXTERNAL_AUTH_SUPPORT;
9815 wdev_lock(dev->ieee80211_ptr);
9817 err = cfg80211_connect(rdev, dev, &connect, connkeys,
9818 connect.prev_bssid);
9822 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9823 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9825 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9826 connect.bssid, ETH_ALEN);
9828 memset(dev->ieee80211_ptr->disconnect_bssid,
9832 wdev_unlock(dev->ieee80211_ptr);
9837 static int nl80211_update_connect_params(struct sk_buff *skb,
9838 struct genl_info *info)
9840 struct cfg80211_connect_params connect = {};
9841 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9842 struct net_device *dev = info->user_ptr[1];
9843 struct wireless_dev *wdev = dev->ieee80211_ptr;
9844 bool fils_sk_offload;
9849 if (!rdev->ops->update_connect_params)
9852 if (info->attrs[NL80211_ATTR_IE]) {
9853 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9854 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9855 changed |= UPDATE_ASSOC_IES;
9858 fils_sk_offload = wiphy_ext_feature_isset(&rdev->wiphy,
9859 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD);
9862 * when driver supports fils-sk offload all attributes must be
9863 * provided. So the else covers "fils-sk-not-all" and
9866 if (fils_sk_offload &&
9867 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
9868 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
9869 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
9870 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9871 connect.fils_erp_username =
9872 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9873 connect.fils_erp_username_len =
9874 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
9875 connect.fils_erp_realm =
9876 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9877 connect.fils_erp_realm_len =
9878 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
9879 connect.fils_erp_next_seq_num =
9881 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
9882 connect.fils_erp_rrk =
9883 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9884 connect.fils_erp_rrk_len =
9885 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
9886 changed |= UPDATE_FILS_ERP_INFO;
9887 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
9888 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
9889 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
9890 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
9894 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9895 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9896 if (!nl80211_valid_auth_type(rdev, auth_type,
9897 NL80211_CMD_CONNECT))
9900 if (auth_type == NL80211_AUTHTYPE_FILS_SK &&
9901 fils_sk_offload && !(changed & UPDATE_FILS_ERP_INFO))
9904 connect.auth_type = auth_type;
9905 changed |= UPDATE_AUTH_TYPE;
9908 wdev_lock(dev->ieee80211_ptr);
9909 if (!wdev->current_bss)
9912 ret = rdev_update_connect_params(rdev, dev, &connect, changed);
9913 wdev_unlock(dev->ieee80211_ptr);
9918 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
9920 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9921 struct net_device *dev = info->user_ptr[1];
9925 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9926 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9929 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9930 reason = WLAN_REASON_DEAUTH_LEAVING;
9932 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9937 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9938 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9941 wdev_lock(dev->ieee80211_ptr);
9942 ret = cfg80211_disconnect(rdev, dev, reason, true);
9943 wdev_unlock(dev->ieee80211_ptr);
9947 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
9949 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9953 if (info->attrs[NL80211_ATTR_PID]) {
9954 u32 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
9956 net = get_net_ns_by_pid(pid);
9957 } else if (info->attrs[NL80211_ATTR_NETNS_FD]) {
9958 u32 fd = nla_get_u32(info->attrs[NL80211_ATTR_NETNS_FD]);
9960 net = get_net_ns_by_fd(fd);
9966 return PTR_ERR(net);
9970 /* check if anything to do */
9971 if (!net_eq(wiphy_net(&rdev->wiphy), net))
9972 err = cfg80211_switch_netns(rdev, net);
9978 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
9980 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9981 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
9982 struct cfg80211_pmksa *pmksa) = NULL;
9983 struct net_device *dev = info->user_ptr[1];
9984 struct cfg80211_pmksa pmksa;
9986 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
9988 if (!info->attrs[NL80211_ATTR_PMKID])
9991 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
9993 if (info->attrs[NL80211_ATTR_MAC]) {
9994 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9995 } else if (info->attrs[NL80211_ATTR_SSID] &&
9996 info->attrs[NL80211_ATTR_FILS_CACHE_ID] &&
9997 (info->genlhdr->cmd == NL80211_CMD_DEL_PMKSA ||
9998 info->attrs[NL80211_ATTR_PMK])) {
9999 pmksa.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
10000 pmksa.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
10002 nla_data(info->attrs[NL80211_ATTR_FILS_CACHE_ID]);
10006 if (info->attrs[NL80211_ATTR_PMK]) {
10007 pmksa.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
10008 pmksa.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
10011 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10012 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT &&
10013 !(dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP &&
10014 wiphy_ext_feature_isset(&rdev->wiphy,
10015 NL80211_EXT_FEATURE_AP_PMKSA_CACHING)))
10016 return -EOPNOTSUPP;
10018 switch (info->genlhdr->cmd) {
10019 case NL80211_CMD_SET_PMKSA:
10020 rdev_ops = rdev->ops->set_pmksa;
10022 case NL80211_CMD_DEL_PMKSA:
10023 rdev_ops = rdev->ops->del_pmksa;
10031 return -EOPNOTSUPP;
10033 return rdev_ops(&rdev->wiphy, dev, &pmksa);
10036 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
10038 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10039 struct net_device *dev = info->user_ptr[1];
10041 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10042 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
10043 return -EOPNOTSUPP;
10045 if (!rdev->ops->flush_pmksa)
10046 return -EOPNOTSUPP;
10048 return rdev_flush_pmksa(rdev, dev);
10051 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
10053 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10054 struct net_device *dev = info->user_ptr[1];
10055 u8 action_code, dialog_token;
10056 u32 peer_capability = 0;
10061 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10062 !rdev->ops->tdls_mgmt)
10063 return -EOPNOTSUPP;
10065 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
10066 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
10067 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
10068 !info->attrs[NL80211_ATTR_IE] ||
10069 !info->attrs[NL80211_ATTR_MAC])
10072 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10073 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
10074 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
10075 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
10076 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
10077 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
10079 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
10081 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
10082 dialog_token, status_code, peer_capability,
10084 nla_data(info->attrs[NL80211_ATTR_IE]),
10085 nla_len(info->attrs[NL80211_ATTR_IE]));
10088 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
10090 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10091 struct net_device *dev = info->user_ptr[1];
10092 enum nl80211_tdls_operation operation;
10095 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10096 !rdev->ops->tdls_oper)
10097 return -EOPNOTSUPP;
10099 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
10100 !info->attrs[NL80211_ATTR_MAC])
10103 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
10104 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10106 return rdev_tdls_oper(rdev, dev, peer, operation);
10109 static int nl80211_remain_on_channel(struct sk_buff *skb,
10110 struct genl_info *info)
10112 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10113 struct wireless_dev *wdev = info->user_ptr[1];
10114 struct cfg80211_chan_def chandef;
10115 const struct cfg80211_chan_def *compat_chandef;
10116 struct sk_buff *msg;
10122 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
10123 !info->attrs[NL80211_ATTR_DURATION])
10126 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10128 if (!rdev->ops->remain_on_channel ||
10129 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
10130 return -EOPNOTSUPP;
10133 * We should be on that channel for at least a minimum amount of
10134 * time (10ms) but no longer than the driver supports.
10136 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10137 duration > rdev->wiphy.max_remain_on_channel_duration)
10140 err = nl80211_parse_chandef(rdev, info, &chandef);
10145 if (!cfg80211_off_channel_oper_allowed(wdev) &&
10146 !cfg80211_chandef_identical(&wdev->chandef, &chandef)) {
10147 compat_chandef = cfg80211_chandef_compatible(&wdev->chandef,
10149 if (compat_chandef != &chandef) {
10156 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10160 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10161 NL80211_CMD_REMAIN_ON_CHANNEL);
10167 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
10168 duration, &cookie);
10173 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10175 goto nla_put_failure;
10177 genlmsg_end(msg, hdr);
10179 return genlmsg_reply(msg, info);
10188 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
10189 struct genl_info *info)
10191 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10192 struct wireless_dev *wdev = info->user_ptr[1];
10195 if (!info->attrs[NL80211_ATTR_COOKIE])
10198 if (!rdev->ops->cancel_remain_on_channel)
10199 return -EOPNOTSUPP;
10201 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10203 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
10206 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
10207 struct genl_info *info)
10209 struct cfg80211_bitrate_mask mask;
10210 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10211 struct net_device *dev = info->user_ptr[1];
10214 if (!rdev->ops->set_bitrate_mask)
10215 return -EOPNOTSUPP;
10217 err = nl80211_parse_tx_bitrate_mask(info, &mask);
10221 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
10224 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
10226 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10227 struct wireless_dev *wdev = info->user_ptr[1];
10228 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
10230 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
10233 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
10234 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
10236 switch (wdev->iftype) {
10237 case NL80211_IFTYPE_STATION:
10238 case NL80211_IFTYPE_ADHOC:
10239 case NL80211_IFTYPE_P2P_CLIENT:
10240 case NL80211_IFTYPE_AP:
10241 case NL80211_IFTYPE_AP_VLAN:
10242 case NL80211_IFTYPE_MESH_POINT:
10243 case NL80211_IFTYPE_P2P_GO:
10244 case NL80211_IFTYPE_P2P_DEVICE:
10246 case NL80211_IFTYPE_NAN:
10248 return -EOPNOTSUPP;
10251 /* not much point in registering if we can't reply */
10252 if (!rdev->ops->mgmt_tx)
10253 return -EOPNOTSUPP;
10255 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
10256 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
10257 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
10260 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
10262 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10263 struct wireless_dev *wdev = info->user_ptr[1];
10264 struct cfg80211_chan_def chandef;
10268 struct sk_buff *msg = NULL;
10269 struct cfg80211_mgmt_tx_params params = {
10270 .dont_wait_for_ack =
10271 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
10274 if (!info->attrs[NL80211_ATTR_FRAME])
10277 if (!rdev->ops->mgmt_tx)
10278 return -EOPNOTSUPP;
10280 switch (wdev->iftype) {
10281 case NL80211_IFTYPE_P2P_DEVICE:
10282 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
10284 case NL80211_IFTYPE_STATION:
10285 case NL80211_IFTYPE_ADHOC:
10286 case NL80211_IFTYPE_P2P_CLIENT:
10287 case NL80211_IFTYPE_AP:
10288 case NL80211_IFTYPE_AP_VLAN:
10289 case NL80211_IFTYPE_MESH_POINT:
10290 case NL80211_IFTYPE_P2P_GO:
10292 case NL80211_IFTYPE_NAN:
10294 return -EOPNOTSUPP;
10297 if (info->attrs[NL80211_ATTR_DURATION]) {
10298 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10300 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10303 * We should wait on the channel for at least a minimum amount
10304 * of time (10ms) but no longer than the driver supports.
10306 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10307 params.wait > rdev->wiphy.max_remain_on_channel_duration)
10311 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
10313 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10316 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
10318 /* get the channel if any has been specified, otherwise pass NULL to
10319 * the driver. The latter will use the current one
10321 chandef.chan = NULL;
10322 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10323 err = nl80211_parse_chandef(rdev, info, &chandef);
10328 if (!chandef.chan && params.offchan)
10332 if (params.offchan && !cfg80211_off_channel_oper_allowed(wdev)) {
10338 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
10339 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
10341 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
10342 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10345 if (len % sizeof(u16))
10348 params.n_csa_offsets = len / sizeof(u16);
10349 params.csa_offsets =
10350 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10352 /* check that all the offsets fit the frame */
10353 for (i = 0; i < params.n_csa_offsets; i++) {
10354 if (params.csa_offsets[i] >= params.len)
10359 if (!params.dont_wait_for_ack) {
10360 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10364 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10365 NL80211_CMD_FRAME);
10372 params.chan = chandef.chan;
10373 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
10378 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10380 goto nla_put_failure;
10382 genlmsg_end(msg, hdr);
10383 return genlmsg_reply(msg, info);
10395 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
10397 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10398 struct wireless_dev *wdev = info->user_ptr[1];
10401 if (!info->attrs[NL80211_ATTR_COOKIE])
10404 if (!rdev->ops->mgmt_tx_cancel_wait)
10405 return -EOPNOTSUPP;
10407 switch (wdev->iftype) {
10408 case NL80211_IFTYPE_STATION:
10409 case NL80211_IFTYPE_ADHOC:
10410 case NL80211_IFTYPE_P2P_CLIENT:
10411 case NL80211_IFTYPE_AP:
10412 case NL80211_IFTYPE_AP_VLAN:
10413 case NL80211_IFTYPE_P2P_GO:
10414 case NL80211_IFTYPE_P2P_DEVICE:
10416 case NL80211_IFTYPE_NAN:
10418 return -EOPNOTSUPP;
10421 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10423 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
10426 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
10428 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10429 struct wireless_dev *wdev;
10430 struct net_device *dev = info->user_ptr[1];
10435 if (!info->attrs[NL80211_ATTR_PS_STATE])
10438 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
10440 wdev = dev->ieee80211_ptr;
10442 if (!rdev->ops->set_power_mgmt)
10443 return -EOPNOTSUPP;
10445 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
10447 if (state == wdev->ps)
10450 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
10456 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
10458 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10459 enum nl80211_ps_state ps_state;
10460 struct wireless_dev *wdev;
10461 struct net_device *dev = info->user_ptr[1];
10462 struct sk_buff *msg;
10466 wdev = dev->ieee80211_ptr;
10468 if (!rdev->ops->set_power_mgmt)
10469 return -EOPNOTSUPP;
10471 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10475 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10476 NL80211_CMD_GET_POWER_SAVE);
10483 ps_state = NL80211_PS_ENABLED;
10485 ps_state = NL80211_PS_DISABLED;
10487 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
10488 goto nla_put_failure;
10490 genlmsg_end(msg, hdr);
10491 return genlmsg_reply(msg, info);
10500 static const struct nla_policy
10501 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
10502 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_BINARY },
10503 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
10504 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
10505 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
10506 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
10507 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
10508 [NL80211_ATTR_CQM_RSSI_LEVEL] = { .type = NLA_S32 },
10511 static int nl80211_set_cqm_txe(struct genl_info *info,
10512 u32 rate, u32 pkts, u32 intvl)
10514 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10515 struct net_device *dev = info->user_ptr[1];
10516 struct wireless_dev *wdev = dev->ieee80211_ptr;
10518 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
10521 if (!rdev->ops->set_cqm_txe_config)
10522 return -EOPNOTSUPP;
10524 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10525 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10526 return -EOPNOTSUPP;
10528 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
10531 static int cfg80211_cqm_rssi_update(struct cfg80211_registered_device *rdev,
10532 struct net_device *dev)
10534 struct wireless_dev *wdev = dev->ieee80211_ptr;
10535 s32 last, low, high;
10537 int i, n, low_index;
10540 /* RSSI reporting disabled? */
10541 if (!wdev->cqm_config)
10542 return rdev_set_cqm_rssi_range_config(rdev, dev, 0, 0);
10545 * Obtain current RSSI value if possible, if not and no RSSI threshold
10546 * event has been received yet, we should receive an event after a
10547 * connection is established and enough beacons received to calculate
10550 if (!wdev->cqm_config->last_rssi_event_value && wdev->current_bss &&
10551 rdev->ops->get_station) {
10552 struct station_info sinfo = {};
10555 mac_addr = wdev->current_bss->pub.bssid;
10557 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
10561 if (sinfo.filled & BIT_ULL(NL80211_STA_INFO_BEACON_SIGNAL_AVG))
10562 wdev->cqm_config->last_rssi_event_value =
10563 (s8) sinfo.rx_beacon_signal_avg;
10566 last = wdev->cqm_config->last_rssi_event_value;
10567 hyst = wdev->cqm_config->rssi_hyst;
10568 n = wdev->cqm_config->n_rssi_thresholds;
10570 for (i = 0; i < n; i++)
10571 if (last < wdev->cqm_config->rssi_thresholds[i])
10575 if (low_index >= 0) {
10576 low_index = array_index_nospec(low_index, n);
10577 low = wdev->cqm_config->rssi_thresholds[low_index] - hyst;
10582 i = array_index_nospec(i, n);
10583 high = wdev->cqm_config->rssi_thresholds[i] + hyst - 1;
10588 return rdev_set_cqm_rssi_range_config(rdev, dev, low, high);
10591 static int nl80211_set_cqm_rssi(struct genl_info *info,
10592 const s32 *thresholds, int n_thresholds,
10595 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10596 struct net_device *dev = info->user_ptr[1];
10597 struct wireless_dev *wdev = dev->ieee80211_ptr;
10599 s32 prev = S32_MIN;
10601 /* Check all values negative and sorted */
10602 for (i = 0; i < n_thresholds; i++) {
10603 if (thresholds[i] > 0 || thresholds[i] <= prev)
10606 prev = thresholds[i];
10609 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10610 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10611 return -EOPNOTSUPP;
10614 cfg80211_cqm_config_free(wdev);
10617 if (n_thresholds <= 1 && rdev->ops->set_cqm_rssi_config) {
10618 if (n_thresholds == 0 || thresholds[0] == 0) /* Disabling */
10619 return rdev_set_cqm_rssi_config(rdev, dev, 0, 0);
10621 return rdev_set_cqm_rssi_config(rdev, dev,
10622 thresholds[0], hysteresis);
10625 if (!wiphy_ext_feature_isset(&rdev->wiphy,
10626 NL80211_EXT_FEATURE_CQM_RSSI_LIST))
10627 return -EOPNOTSUPP;
10629 if (n_thresholds == 1 && thresholds[0] == 0) /* Disabling */
10633 if (n_thresholds) {
10634 struct cfg80211_cqm_config *cqm_config;
10636 cqm_config = kzalloc(sizeof(struct cfg80211_cqm_config) +
10637 n_thresholds * sizeof(s32), GFP_KERNEL);
10643 cqm_config->rssi_hyst = hysteresis;
10644 cqm_config->n_rssi_thresholds = n_thresholds;
10645 memcpy(cqm_config->rssi_thresholds, thresholds,
10646 n_thresholds * sizeof(s32));
10648 wdev->cqm_config = cqm_config;
10651 err = cfg80211_cqm_rssi_update(rdev, dev);
10659 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
10661 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
10662 struct nlattr *cqm;
10665 cqm = info->attrs[NL80211_ATTR_CQM];
10669 err = nla_parse_nested(attrs, NL80211_ATTR_CQM_MAX, cqm,
10670 nl80211_attr_cqm_policy, info->extack);
10674 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
10675 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
10676 const s32 *thresholds =
10677 nla_data(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10678 int len = nla_len(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10679 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
10684 return nl80211_set_cqm_rssi(info, thresholds, len / 4,
10688 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
10689 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
10690 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
10691 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
10692 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
10693 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
10695 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
10701 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
10703 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10704 struct net_device *dev = info->user_ptr[1];
10705 struct ocb_setup setup = {};
10708 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10712 return cfg80211_join_ocb(rdev, dev, &setup);
10715 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
10717 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10718 struct net_device *dev = info->user_ptr[1];
10720 return cfg80211_leave_ocb(rdev, dev);
10723 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
10725 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10726 struct net_device *dev = info->user_ptr[1];
10727 struct mesh_config cfg;
10728 struct mesh_setup setup;
10731 /* start with default */
10732 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
10733 memcpy(&setup, &default_mesh_setup, sizeof(setup));
10735 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
10736 /* and parse parameters if given */
10737 err = nl80211_parse_mesh_config(info, &cfg, NULL);
10742 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
10743 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
10746 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
10747 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
10749 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
10750 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
10751 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
10754 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
10755 setup.beacon_interval =
10756 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
10758 err = cfg80211_validate_beacon_int(rdev,
10759 NL80211_IFTYPE_MESH_POINT,
10760 setup.beacon_interval);
10765 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
10766 setup.dtim_period =
10767 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
10768 if (setup.dtim_period < 1 || setup.dtim_period > 100)
10772 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
10773 /* parse additional setup parameters if given */
10774 err = nl80211_parse_mesh_setup(info, &setup);
10779 if (setup.user_mpm)
10780 cfg.auto_open_plinks = false;
10782 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10783 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
10787 /* __cfg80211_join_mesh() will sort it out */
10788 setup.chandef.chan = NULL;
10791 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
10792 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10794 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
10795 struct ieee80211_supported_band *sband;
10797 if (!setup.chandef.chan)
10800 sband = rdev->wiphy.bands[setup.chandef.chan->band];
10802 err = ieee80211_get_ratemask(sband, rates, n_rates,
10803 &setup.basic_rates);
10808 if (info->attrs[NL80211_ATTR_TX_RATES]) {
10809 err = nl80211_parse_tx_bitrate_mask(info, &setup.beacon_rate);
10813 if (!setup.chandef.chan)
10816 err = validate_beacon_tx_rate(rdev, setup.chandef.chan->band,
10817 &setup.beacon_rate);
10822 setup.userspace_handles_dfs =
10823 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
10825 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
10826 int r = validate_pae_over_nl80211(rdev, info);
10831 setup.control_port_over_nl80211 = true;
10834 wdev_lock(dev->ieee80211_ptr);
10835 err = __cfg80211_join_mesh(rdev, dev, &setup, &cfg);
10836 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER])
10837 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
10838 wdev_unlock(dev->ieee80211_ptr);
10843 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
10845 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10846 struct net_device *dev = info->user_ptr[1];
10848 return cfg80211_leave_mesh(rdev, dev);
10852 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
10853 struct cfg80211_registered_device *rdev)
10855 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
10856 struct nlattr *nl_pats, *nl_pat;
10859 if (!wowlan->n_patterns)
10862 nl_pats = nla_nest_start(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
10866 for (i = 0; i < wowlan->n_patterns; i++) {
10867 nl_pat = nla_nest_start(msg, i + 1);
10870 pat_len = wowlan->patterns[i].pattern_len;
10871 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
10872 wowlan->patterns[i].mask) ||
10873 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
10874 wowlan->patterns[i].pattern) ||
10875 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
10876 wowlan->patterns[i].pkt_offset))
10878 nla_nest_end(msg, nl_pat);
10880 nla_nest_end(msg, nl_pats);
10885 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
10886 struct cfg80211_wowlan_tcp *tcp)
10888 struct nlattr *nl_tcp;
10893 nl_tcp = nla_nest_start(msg, NL80211_WOWLAN_TRIG_TCP_CONNECTION);
10897 if (nla_put_in_addr(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
10898 nla_put_in_addr(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
10899 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
10900 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
10901 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
10902 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
10903 tcp->payload_len, tcp->payload) ||
10904 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
10905 tcp->data_interval) ||
10906 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
10907 tcp->wake_len, tcp->wake_data) ||
10908 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
10909 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
10912 if (tcp->payload_seq.len &&
10913 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
10914 sizeof(tcp->payload_seq), &tcp->payload_seq))
10917 if (tcp->payload_tok.len &&
10918 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
10919 sizeof(tcp->payload_tok) + tcp->tokens_size,
10920 &tcp->payload_tok))
10923 nla_nest_end(msg, nl_tcp);
10928 static int nl80211_send_wowlan_nd(struct sk_buff *msg,
10929 struct cfg80211_sched_scan_request *req)
10931 struct nlattr *nd, *freqs, *matches, *match, *scan_plans, *scan_plan;
10937 nd = nla_nest_start(msg, NL80211_WOWLAN_TRIG_NET_DETECT);
10941 if (req->n_scan_plans == 1 &&
10942 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL,
10943 req->scan_plans[0].interval * 1000))
10946 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_DELAY, req->delay))
10949 if (req->relative_rssi_set) {
10950 struct nl80211_bss_select_rssi_adjust rssi_adjust;
10952 if (nla_put_s8(msg, NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI,
10953 req->relative_rssi))
10956 rssi_adjust.band = req->rssi_adjust.band;
10957 rssi_adjust.delta = req->rssi_adjust.delta;
10958 if (nla_put(msg, NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST,
10959 sizeof(rssi_adjust), &rssi_adjust))
10963 freqs = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
10967 for (i = 0; i < req->n_channels; i++) {
10968 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
10972 nla_nest_end(msg, freqs);
10974 if (req->n_match_sets) {
10975 matches = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_MATCH);
10979 for (i = 0; i < req->n_match_sets; i++) {
10980 match = nla_nest_start(msg, i);
10984 if (nla_put(msg, NL80211_SCHED_SCAN_MATCH_ATTR_SSID,
10985 req->match_sets[i].ssid.ssid_len,
10986 req->match_sets[i].ssid.ssid))
10988 nla_nest_end(msg, match);
10990 nla_nest_end(msg, matches);
10993 scan_plans = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_PLANS);
10997 for (i = 0; i < req->n_scan_plans; i++) {
10998 scan_plan = nla_nest_start(msg, i + 1);
11002 if (nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_INTERVAL,
11003 req->scan_plans[i].interval) ||
11004 (req->scan_plans[i].iterations &&
11005 nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_ITERATIONS,
11006 req->scan_plans[i].iterations)))
11008 nla_nest_end(msg, scan_plan);
11010 nla_nest_end(msg, scan_plans);
11012 nla_nest_end(msg, nd);
11017 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
11019 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11020 struct sk_buff *msg;
11022 u32 size = NLMSG_DEFAULT_SIZE;
11024 if (!rdev->wiphy.wowlan)
11025 return -EOPNOTSUPP;
11027 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
11028 /* adjust size to have room for all the data */
11029 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
11030 rdev->wiphy.wowlan_config->tcp->payload_len +
11031 rdev->wiphy.wowlan_config->tcp->wake_len +
11032 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
11035 msg = nlmsg_new(size, GFP_KERNEL);
11039 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11040 NL80211_CMD_GET_WOWLAN);
11042 goto nla_put_failure;
11044 if (rdev->wiphy.wowlan_config) {
11045 struct nlattr *nl_wowlan;
11047 nl_wowlan = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
11049 goto nla_put_failure;
11051 if ((rdev->wiphy.wowlan_config->any &&
11052 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
11053 (rdev->wiphy.wowlan_config->disconnect &&
11054 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
11055 (rdev->wiphy.wowlan_config->magic_pkt &&
11056 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
11057 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
11058 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
11059 (rdev->wiphy.wowlan_config->eap_identity_req &&
11060 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
11061 (rdev->wiphy.wowlan_config->four_way_handshake &&
11062 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
11063 (rdev->wiphy.wowlan_config->rfkill_release &&
11064 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
11065 goto nla_put_failure;
11067 if (nl80211_send_wowlan_patterns(msg, rdev))
11068 goto nla_put_failure;
11070 if (nl80211_send_wowlan_tcp(msg,
11071 rdev->wiphy.wowlan_config->tcp))
11072 goto nla_put_failure;
11074 if (nl80211_send_wowlan_nd(
11076 rdev->wiphy.wowlan_config->nd_config))
11077 goto nla_put_failure;
11079 nla_nest_end(msg, nl_wowlan);
11082 genlmsg_end(msg, hdr);
11083 return genlmsg_reply(msg, info);
11090 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
11091 struct nlattr *attr,
11092 struct cfg80211_wowlan *trig)
11094 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
11095 struct cfg80211_wowlan_tcp *cfg;
11096 struct nl80211_wowlan_tcp_data_token *tok = NULL;
11097 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
11099 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
11102 if (!rdev->wiphy.wowlan->tcp)
11105 err = nla_parse_nested(tb, MAX_NL80211_WOWLAN_TCP, attr,
11106 nl80211_wowlan_tcp_policy, NULL);
11110 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
11111 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
11112 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
11113 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
11114 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
11115 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
11116 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
11117 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
11120 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
11121 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
11124 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
11125 rdev->wiphy.wowlan->tcp->data_interval_max ||
11126 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
11129 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
11130 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
11133 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
11134 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
11137 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
11138 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11140 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11141 tokens_size = tokln - sizeof(*tok);
11143 if (!tok->len || tokens_size % tok->len)
11145 if (!rdev->wiphy.wowlan->tcp->tok)
11147 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
11149 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
11151 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
11153 if (tok->offset + tok->len > data_size)
11157 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
11158 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
11159 if (!rdev->wiphy.wowlan->tcp->seq)
11161 if (seq->len == 0 || seq->len > 4)
11163 if (seq->len + seq->offset > data_size)
11167 size = sizeof(*cfg);
11169 size += wake_size + wake_mask_size;
11170 size += tokens_size;
11172 cfg = kzalloc(size, GFP_KERNEL);
11175 cfg->src = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
11176 cfg->dst = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
11177 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
11179 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
11180 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
11184 /* allocate a socket and port for it and use it */
11185 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
11186 IPPROTO_TCP, &cfg->sock, 1);
11191 if (inet_csk_get_port(cfg->sock->sk, port)) {
11192 sock_release(cfg->sock);
11194 return -EADDRINUSE;
11196 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
11202 cfg->src_port = port;
11205 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
11206 cfg->payload_len = data_size;
11207 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
11208 memcpy((void *)cfg->payload,
11209 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
11212 cfg->payload_seq = *seq;
11213 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
11214 cfg->wake_len = wake_size;
11215 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
11216 memcpy((void *)cfg->wake_data,
11217 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
11219 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
11220 data_size + wake_size;
11221 memcpy((void *)cfg->wake_mask,
11222 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
11225 cfg->tokens_size = tokens_size;
11226 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
11234 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
11235 const struct wiphy_wowlan_support *wowlan,
11236 struct nlattr *attr,
11237 struct cfg80211_wowlan *trig)
11239 struct nlattr **tb;
11242 tb = kcalloc(NUM_NL80211_ATTR, sizeof(*tb), GFP_KERNEL);
11246 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
11251 err = nla_parse_nested(tb, NL80211_ATTR_MAX, attr, nl80211_policy,
11256 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb,
11257 wowlan->max_nd_match_sets);
11258 err = PTR_ERR_OR_ZERO(trig->nd_config);
11260 trig->nd_config = NULL;
11267 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
11269 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11270 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
11271 struct cfg80211_wowlan new_triggers = {};
11272 struct cfg80211_wowlan *ntrig;
11273 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
11275 bool prev_enabled = rdev->wiphy.wowlan_config;
11276 bool regular = false;
11279 return -EOPNOTSUPP;
11281 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
11282 cfg80211_rdev_free_wowlan(rdev);
11283 rdev->wiphy.wowlan_config = NULL;
11287 err = nla_parse_nested(tb, MAX_NL80211_WOWLAN_TRIG,
11288 info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS],
11289 nl80211_wowlan_policy, info->extack);
11293 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
11294 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
11296 new_triggers.any = true;
11299 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
11300 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
11302 new_triggers.disconnect = true;
11306 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
11307 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
11309 new_triggers.magic_pkt = true;
11313 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
11316 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
11317 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
11319 new_triggers.gtk_rekey_failure = true;
11323 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
11324 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
11326 new_triggers.eap_identity_req = true;
11330 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
11331 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
11333 new_triggers.four_way_handshake = true;
11337 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
11338 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
11340 new_triggers.rfkill_release = true;
11344 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
11345 struct nlattr *pat;
11346 int n_patterns = 0;
11347 int rem, pat_len, mask_len, pkt_offset;
11348 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11352 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11355 if (n_patterns > wowlan->n_patterns)
11358 new_triggers.patterns = kcalloc(n_patterns,
11359 sizeof(new_triggers.patterns[0]),
11361 if (!new_triggers.patterns)
11364 new_triggers.n_patterns = n_patterns;
11367 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11371 err = nla_parse_nested(pat_tb, MAX_NL80211_PKTPAT, pat,
11372 nl80211_packet_pattern_policy,
11378 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11379 !pat_tb[NL80211_PKTPAT_PATTERN])
11381 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11382 mask_len = DIV_ROUND_UP(pat_len, 8);
11383 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11385 if (pat_len > wowlan->pattern_max_len ||
11386 pat_len < wowlan->pattern_min_len)
11389 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11392 pkt_offset = nla_get_u32(
11393 pat_tb[NL80211_PKTPAT_OFFSET]);
11394 if (pkt_offset > wowlan->max_pkt_offset)
11396 new_triggers.patterns[i].pkt_offset = pkt_offset;
11398 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11403 new_triggers.patterns[i].mask = mask_pat;
11404 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11406 mask_pat += mask_len;
11407 new_triggers.patterns[i].pattern = mask_pat;
11408 new_triggers.patterns[i].pattern_len = pat_len;
11410 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11416 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
11418 err = nl80211_parse_wowlan_tcp(
11419 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
11425 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
11427 err = nl80211_parse_wowlan_nd(
11428 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
11434 /* The 'any' trigger means the device continues operating more or less
11435 * as in its normal operation mode and wakes up the host on most of the
11436 * normal interrupts (like packet RX, ...)
11437 * It therefore makes little sense to combine with the more constrained
11438 * wakeup trigger modes.
11440 if (new_triggers.any && regular) {
11445 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
11450 cfg80211_rdev_free_wowlan(rdev);
11451 rdev->wiphy.wowlan_config = ntrig;
11454 if (rdev->ops->set_wakeup &&
11455 prev_enabled != !!rdev->wiphy.wowlan_config)
11456 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
11460 for (i = 0; i < new_triggers.n_patterns; i++)
11461 kfree(new_triggers.patterns[i].mask);
11462 kfree(new_triggers.patterns);
11463 if (new_triggers.tcp && new_triggers.tcp->sock)
11464 sock_release(new_triggers.tcp->sock);
11465 kfree(new_triggers.tcp);
11466 kfree(new_triggers.nd_config);
11471 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
11472 struct cfg80211_registered_device *rdev)
11474 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
11476 struct cfg80211_coalesce_rules *rule;
11478 if (!rdev->coalesce->n_rules)
11481 nl_rules = nla_nest_start(msg, NL80211_ATTR_COALESCE_RULE);
11485 for (i = 0; i < rdev->coalesce->n_rules; i++) {
11486 nl_rule = nla_nest_start(msg, i + 1);
11490 rule = &rdev->coalesce->rules[i];
11491 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
11495 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
11499 nl_pats = nla_nest_start(msg,
11500 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
11504 for (j = 0; j < rule->n_patterns; j++) {
11505 nl_pat = nla_nest_start(msg, j + 1);
11508 pat_len = rule->patterns[j].pattern_len;
11509 if (nla_put(msg, NL80211_PKTPAT_MASK,
11510 DIV_ROUND_UP(pat_len, 8),
11511 rule->patterns[j].mask) ||
11512 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
11513 rule->patterns[j].pattern) ||
11514 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
11515 rule->patterns[j].pkt_offset))
11517 nla_nest_end(msg, nl_pat);
11519 nla_nest_end(msg, nl_pats);
11520 nla_nest_end(msg, nl_rule);
11522 nla_nest_end(msg, nl_rules);
11527 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
11529 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11530 struct sk_buff *msg;
11533 if (!rdev->wiphy.coalesce)
11534 return -EOPNOTSUPP;
11536 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11540 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11541 NL80211_CMD_GET_COALESCE);
11543 goto nla_put_failure;
11545 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
11546 goto nla_put_failure;
11548 genlmsg_end(msg, hdr);
11549 return genlmsg_reply(msg, info);
11556 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
11558 struct cfg80211_coalesce *coalesce = rdev->coalesce;
11560 struct cfg80211_coalesce_rules *rule;
11565 for (i = 0; i < coalesce->n_rules; i++) {
11566 rule = &coalesce->rules[i];
11567 for (j = 0; j < rule->n_patterns; j++)
11568 kfree(rule->patterns[j].mask);
11569 kfree(rule->patterns);
11571 kfree(coalesce->rules);
11573 rdev->coalesce = NULL;
11576 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
11577 struct nlattr *rule,
11578 struct cfg80211_coalesce_rules *new_rule)
11581 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11582 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
11583 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
11584 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11586 err = nla_parse_nested(tb, NL80211_ATTR_COALESCE_RULE_MAX, rule,
11587 nl80211_coalesce_policy, NULL);
11591 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
11593 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
11594 if (new_rule->delay > coalesce->max_delay)
11597 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
11598 new_rule->condition =
11599 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
11601 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
11604 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11607 if (n_patterns > coalesce->n_patterns)
11610 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
11612 if (!new_rule->patterns)
11615 new_rule->n_patterns = n_patterns;
11618 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11622 err = nla_parse_nested(pat_tb, MAX_NL80211_PKTPAT, pat,
11623 nl80211_packet_pattern_policy, NULL);
11627 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11628 !pat_tb[NL80211_PKTPAT_PATTERN])
11630 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11631 mask_len = DIV_ROUND_UP(pat_len, 8);
11632 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11634 if (pat_len > coalesce->pattern_max_len ||
11635 pat_len < coalesce->pattern_min_len)
11638 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11641 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
11642 if (pkt_offset > coalesce->max_pkt_offset)
11644 new_rule->patterns[i].pkt_offset = pkt_offset;
11646 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11650 new_rule->patterns[i].mask = mask_pat;
11651 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11654 mask_pat += mask_len;
11655 new_rule->patterns[i].pattern = mask_pat;
11656 new_rule->patterns[i].pattern_len = pat_len;
11657 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11665 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
11667 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11668 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11669 struct cfg80211_coalesce new_coalesce = {};
11670 struct cfg80211_coalesce *n_coalesce;
11671 int err, rem_rule, n_rules = 0, i, j;
11672 struct nlattr *rule;
11673 struct cfg80211_coalesce_rules *tmp_rule;
11675 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
11676 return -EOPNOTSUPP;
11678 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
11679 cfg80211_rdev_free_coalesce(rdev);
11680 rdev_set_coalesce(rdev, NULL);
11684 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11687 if (n_rules > coalesce->n_rules)
11690 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
11692 if (!new_coalesce.rules)
11695 new_coalesce.n_rules = n_rules;
11698 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11700 err = nl80211_parse_coalesce_rule(rdev, rule,
11701 &new_coalesce.rules[i]);
11708 err = rdev_set_coalesce(rdev, &new_coalesce);
11712 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
11717 cfg80211_rdev_free_coalesce(rdev);
11718 rdev->coalesce = n_coalesce;
11722 for (i = 0; i < new_coalesce.n_rules; i++) {
11723 tmp_rule = &new_coalesce.rules[i];
11724 for (j = 0; j < tmp_rule->n_patterns; j++)
11725 kfree(tmp_rule->patterns[j].mask);
11726 kfree(tmp_rule->patterns);
11728 kfree(new_coalesce.rules);
11733 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
11735 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11736 struct net_device *dev = info->user_ptr[1];
11737 struct wireless_dev *wdev = dev->ieee80211_ptr;
11738 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
11739 struct cfg80211_gtk_rekey_data rekey_data;
11742 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
11745 err = nla_parse_nested(tb, MAX_NL80211_REKEY_DATA,
11746 info->attrs[NL80211_ATTR_REKEY_DATA],
11747 nl80211_rekey_policy, info->extack);
11751 if (!tb[NL80211_REKEY_DATA_REPLAY_CTR] || !tb[NL80211_REKEY_DATA_KEK] ||
11752 !tb[NL80211_REKEY_DATA_KCK])
11754 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
11756 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
11758 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
11761 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
11762 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
11763 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
11766 if (!wdev->current_bss) {
11771 if (!rdev->ops->set_rekey_data) {
11776 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
11782 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
11783 struct genl_info *info)
11785 struct net_device *dev = info->user_ptr[1];
11786 struct wireless_dev *wdev = dev->ieee80211_ptr;
11788 if (wdev->iftype != NL80211_IFTYPE_AP &&
11789 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11792 if (wdev->ap_unexpected_nlportid)
11795 wdev->ap_unexpected_nlportid = info->snd_portid;
11799 static int nl80211_probe_client(struct sk_buff *skb,
11800 struct genl_info *info)
11802 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11803 struct net_device *dev = info->user_ptr[1];
11804 struct wireless_dev *wdev = dev->ieee80211_ptr;
11805 struct sk_buff *msg;
11811 if (wdev->iftype != NL80211_IFTYPE_AP &&
11812 wdev->iftype != NL80211_IFTYPE_P2P_GO)
11813 return -EOPNOTSUPP;
11815 if (!info->attrs[NL80211_ATTR_MAC])
11818 if (!rdev->ops->probe_client)
11819 return -EOPNOTSUPP;
11821 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11825 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11826 NL80211_CMD_PROBE_CLIENT);
11832 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
11834 err = rdev_probe_client(rdev, dev, addr, &cookie);
11838 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
11840 goto nla_put_failure;
11842 genlmsg_end(msg, hdr);
11844 return genlmsg_reply(msg, info);
11853 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
11855 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11856 struct cfg80211_beacon_registration *reg, *nreg;
11859 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
11860 return -EOPNOTSUPP;
11862 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
11866 /* First, check if already registered. */
11867 spin_lock_bh(&rdev->beacon_registrations_lock);
11868 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
11869 if (reg->nlportid == info->snd_portid) {
11874 /* Add it to the list */
11875 nreg->nlportid = info->snd_portid;
11876 list_add(&nreg->list, &rdev->beacon_registrations);
11878 spin_unlock_bh(&rdev->beacon_registrations_lock);
11882 spin_unlock_bh(&rdev->beacon_registrations_lock);
11887 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
11889 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11890 struct wireless_dev *wdev = info->user_ptr[1];
11893 if (!rdev->ops->start_p2p_device)
11894 return -EOPNOTSUPP;
11896 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11897 return -EOPNOTSUPP;
11899 if (wdev_running(wdev))
11902 if (rfkill_blocked(rdev->rfkill))
11905 err = rdev_start_p2p_device(rdev, wdev);
11909 wdev->is_running = true;
11915 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
11917 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11918 struct wireless_dev *wdev = info->user_ptr[1];
11920 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
11921 return -EOPNOTSUPP;
11923 if (!rdev->ops->stop_p2p_device)
11924 return -EOPNOTSUPP;
11926 cfg80211_stop_p2p_device(rdev, wdev);
11931 static int nl80211_start_nan(struct sk_buff *skb, struct genl_info *info)
11933 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11934 struct wireless_dev *wdev = info->user_ptr[1];
11935 struct cfg80211_nan_conf conf = {};
11938 if (wdev->iftype != NL80211_IFTYPE_NAN)
11939 return -EOPNOTSUPP;
11941 if (wdev_running(wdev))
11944 if (rfkill_blocked(rdev->rfkill))
11947 if (!info->attrs[NL80211_ATTR_NAN_MASTER_PREF])
11951 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
11953 if (info->attrs[NL80211_ATTR_BANDS]) {
11954 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
11956 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
11957 return -EOPNOTSUPP;
11959 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
11962 conf.bands = bands;
11965 err = rdev_start_nan(rdev, wdev, &conf);
11969 wdev->is_running = true;
11975 static int nl80211_stop_nan(struct sk_buff *skb, struct genl_info *info)
11977 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11978 struct wireless_dev *wdev = info->user_ptr[1];
11980 if (wdev->iftype != NL80211_IFTYPE_NAN)
11981 return -EOPNOTSUPP;
11983 cfg80211_stop_nan(rdev, wdev);
11988 static int validate_nan_filter(struct nlattr *filter_attr)
11990 struct nlattr *attr;
11991 int len = 0, n_entries = 0, rem;
11993 nla_for_each_nested(attr, filter_attr, rem) {
11994 len += nla_len(attr);
12004 static int handle_nan_filter(struct nlattr *attr_filter,
12005 struct cfg80211_nan_func *func,
12008 struct nlattr *attr;
12009 int n_entries, rem, i;
12010 struct cfg80211_nan_func_filter *filter;
12012 n_entries = validate_nan_filter(attr_filter);
12016 BUILD_BUG_ON(sizeof(*func->rx_filters) != sizeof(*func->tx_filters));
12018 filter = kcalloc(n_entries, sizeof(*func->rx_filters), GFP_KERNEL);
12023 nla_for_each_nested(attr, attr_filter, rem) {
12024 filter[i].filter = nla_memdup(attr, GFP_KERNEL);
12025 filter[i].len = nla_len(attr);
12029 func->num_tx_filters = n_entries;
12030 func->tx_filters = filter;
12032 func->num_rx_filters = n_entries;
12033 func->rx_filters = filter;
12039 static int nl80211_nan_add_func(struct sk_buff *skb,
12040 struct genl_info *info)
12042 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12043 struct wireless_dev *wdev = info->user_ptr[1];
12044 struct nlattr *tb[NUM_NL80211_NAN_FUNC_ATTR], *func_attr;
12045 struct cfg80211_nan_func *func;
12046 struct sk_buff *msg = NULL;
12050 if (wdev->iftype != NL80211_IFTYPE_NAN)
12051 return -EOPNOTSUPP;
12053 if (!wdev_running(wdev))
12056 if (!info->attrs[NL80211_ATTR_NAN_FUNC])
12059 err = nla_parse_nested(tb, NL80211_NAN_FUNC_ATTR_MAX,
12060 info->attrs[NL80211_ATTR_NAN_FUNC],
12061 nl80211_nan_func_policy, info->extack);
12065 func = kzalloc(sizeof(*func), GFP_KERNEL);
12069 func->cookie = cfg80211_assign_cookie(rdev);
12071 if (!tb[NL80211_NAN_FUNC_TYPE] ||
12072 nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]) > NL80211_NAN_FUNC_MAX_TYPE) {
12078 func->type = nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]);
12080 if (!tb[NL80211_NAN_FUNC_SERVICE_ID]) {
12085 memcpy(func->service_id, nla_data(tb[NL80211_NAN_FUNC_SERVICE_ID]),
12086 sizeof(func->service_id));
12088 func->close_range =
12089 nla_get_flag(tb[NL80211_NAN_FUNC_CLOSE_RANGE]);
12091 if (tb[NL80211_NAN_FUNC_SERVICE_INFO]) {
12092 func->serv_spec_info_len =
12093 nla_len(tb[NL80211_NAN_FUNC_SERVICE_INFO]);
12094 func->serv_spec_info =
12095 kmemdup(nla_data(tb[NL80211_NAN_FUNC_SERVICE_INFO]),
12096 func->serv_spec_info_len,
12098 if (!func->serv_spec_info) {
12104 if (tb[NL80211_NAN_FUNC_TTL])
12105 func->ttl = nla_get_u32(tb[NL80211_NAN_FUNC_TTL]);
12107 switch (func->type) {
12108 case NL80211_NAN_FUNC_PUBLISH:
12109 if (!tb[NL80211_NAN_FUNC_PUBLISH_TYPE]) {
12114 func->publish_type =
12115 nla_get_u8(tb[NL80211_NAN_FUNC_PUBLISH_TYPE]);
12116 func->publish_bcast =
12117 nla_get_flag(tb[NL80211_NAN_FUNC_PUBLISH_BCAST]);
12119 if ((!(func->publish_type & NL80211_NAN_SOLICITED_PUBLISH)) &&
12120 func->publish_bcast) {
12125 case NL80211_NAN_FUNC_SUBSCRIBE:
12126 func->subscribe_active =
12127 nla_get_flag(tb[NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE]);
12129 case NL80211_NAN_FUNC_FOLLOW_UP:
12130 if (!tb[NL80211_NAN_FUNC_FOLLOW_UP_ID] ||
12131 !tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] ||
12132 !tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]) {
12137 func->followup_id =
12138 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_ID]);
12139 func->followup_reqid =
12140 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID]);
12141 memcpy(func->followup_dest.addr,
12142 nla_data(tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]),
12143 sizeof(func->followup_dest.addr));
12154 if (tb[NL80211_NAN_FUNC_SRF]) {
12155 struct nlattr *srf_tb[NUM_NL80211_NAN_SRF_ATTR];
12157 err = nla_parse_nested(srf_tb, NL80211_NAN_SRF_ATTR_MAX,
12158 tb[NL80211_NAN_FUNC_SRF],
12159 nl80211_nan_srf_policy, info->extack);
12163 func->srf_include =
12164 nla_get_flag(srf_tb[NL80211_NAN_SRF_INCLUDE]);
12166 if (srf_tb[NL80211_NAN_SRF_BF]) {
12167 if (srf_tb[NL80211_NAN_SRF_MAC_ADDRS] ||
12168 !srf_tb[NL80211_NAN_SRF_BF_IDX]) {
12174 nla_len(srf_tb[NL80211_NAN_SRF_BF]);
12176 kmemdup(nla_data(srf_tb[NL80211_NAN_SRF_BF]),
12177 func->srf_bf_len, GFP_KERNEL);
12178 if (!func->srf_bf) {
12184 nla_get_u8(srf_tb[NL80211_NAN_SRF_BF_IDX]);
12186 struct nlattr *attr, *mac_attr =
12187 srf_tb[NL80211_NAN_SRF_MAC_ADDRS];
12188 int n_entries, rem, i = 0;
12195 n_entries = validate_acl_mac_addrs(mac_attr);
12196 if (n_entries <= 0) {
12201 func->srf_num_macs = n_entries;
12203 kcalloc(n_entries, sizeof(*func->srf_macs),
12205 if (!func->srf_macs) {
12210 nla_for_each_nested(attr, mac_attr, rem)
12211 memcpy(func->srf_macs[i++].addr, nla_data(attr),
12212 sizeof(*func->srf_macs));
12216 if (tb[NL80211_NAN_FUNC_TX_MATCH_FILTER]) {
12217 err = handle_nan_filter(tb[NL80211_NAN_FUNC_TX_MATCH_FILTER],
12223 if (tb[NL80211_NAN_FUNC_RX_MATCH_FILTER]) {
12224 err = handle_nan_filter(tb[NL80211_NAN_FUNC_RX_MATCH_FILTER],
12230 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12236 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12237 NL80211_CMD_ADD_NAN_FUNCTION);
12238 /* This can't really happen - we just allocated 4KB */
12239 if (WARN_ON(!hdr)) {
12244 err = rdev_add_nan_func(rdev, wdev, func);
12247 cfg80211_free_nan_func(func);
12252 /* propagate the instance id and cookie to userspace */
12253 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, func->cookie,
12255 goto nla_put_failure;
12257 func_attr = nla_nest_start(msg, NL80211_ATTR_NAN_FUNC);
12259 goto nla_put_failure;
12261 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID,
12262 func->instance_id))
12263 goto nla_put_failure;
12265 nla_nest_end(msg, func_attr);
12267 genlmsg_end(msg, hdr);
12268 return genlmsg_reply(msg, info);
12275 static int nl80211_nan_del_func(struct sk_buff *skb,
12276 struct genl_info *info)
12278 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12279 struct wireless_dev *wdev = info->user_ptr[1];
12282 if (wdev->iftype != NL80211_IFTYPE_NAN)
12283 return -EOPNOTSUPP;
12285 if (!wdev_running(wdev))
12288 if (!info->attrs[NL80211_ATTR_COOKIE])
12291 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
12293 rdev_del_nan_func(rdev, wdev, cookie);
12298 static int nl80211_nan_change_config(struct sk_buff *skb,
12299 struct genl_info *info)
12301 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12302 struct wireless_dev *wdev = info->user_ptr[1];
12303 struct cfg80211_nan_conf conf = {};
12306 if (wdev->iftype != NL80211_IFTYPE_NAN)
12307 return -EOPNOTSUPP;
12309 if (!wdev_running(wdev))
12312 if (info->attrs[NL80211_ATTR_NAN_MASTER_PREF]) {
12314 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12315 if (conf.master_pref <= 1 || conf.master_pref == 255)
12318 changed |= CFG80211_NAN_CONF_CHANGED_PREF;
12321 if (info->attrs[NL80211_ATTR_BANDS]) {
12322 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12324 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12325 return -EOPNOTSUPP;
12327 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12330 conf.bands = bands;
12331 changed |= CFG80211_NAN_CONF_CHANGED_BANDS;
12337 return rdev_nan_change_conf(rdev, wdev, &conf, changed);
12340 void cfg80211_nan_match(struct wireless_dev *wdev,
12341 struct cfg80211_nan_match_params *match, gfp_t gfp)
12343 struct wiphy *wiphy = wdev->wiphy;
12344 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12345 struct nlattr *match_attr, *local_func_attr, *peer_func_attr;
12346 struct sk_buff *msg;
12349 if (WARN_ON(!match->inst_id || !match->peer_inst_id || !match->addr))
12352 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12356 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NAN_MATCH);
12362 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12363 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12364 wdev->netdev->ifindex)) ||
12365 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12367 goto nla_put_failure;
12369 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, match->cookie,
12370 NL80211_ATTR_PAD) ||
12371 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, match->addr))
12372 goto nla_put_failure;
12374 match_attr = nla_nest_start(msg, NL80211_ATTR_NAN_MATCH);
12376 goto nla_put_failure;
12378 local_func_attr = nla_nest_start(msg, NL80211_NAN_MATCH_FUNC_LOCAL);
12379 if (!local_func_attr)
12380 goto nla_put_failure;
12382 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->inst_id))
12383 goto nla_put_failure;
12385 nla_nest_end(msg, local_func_attr);
12387 peer_func_attr = nla_nest_start(msg, NL80211_NAN_MATCH_FUNC_PEER);
12388 if (!peer_func_attr)
12389 goto nla_put_failure;
12391 if (nla_put_u8(msg, NL80211_NAN_FUNC_TYPE, match->type) ||
12392 nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->peer_inst_id))
12393 goto nla_put_failure;
12395 if (match->info && match->info_len &&
12396 nla_put(msg, NL80211_NAN_FUNC_SERVICE_INFO, match->info_len,
12398 goto nla_put_failure;
12400 nla_nest_end(msg, peer_func_attr);
12401 nla_nest_end(msg, match_attr);
12402 genlmsg_end(msg, hdr);
12404 if (!wdev->owner_nlportid)
12405 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12406 msg, 0, NL80211_MCGRP_NAN, gfp);
12408 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12409 wdev->owner_nlportid);
12416 EXPORT_SYMBOL(cfg80211_nan_match);
12418 void cfg80211_nan_func_terminated(struct wireless_dev *wdev,
12420 enum nl80211_nan_func_term_reason reason,
12421 u64 cookie, gfp_t gfp)
12423 struct wiphy *wiphy = wdev->wiphy;
12424 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12425 struct sk_buff *msg;
12426 struct nlattr *func_attr;
12429 if (WARN_ON(!inst_id))
12432 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12436 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_NAN_FUNCTION);
12442 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12443 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12444 wdev->netdev->ifindex)) ||
12445 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12447 goto nla_put_failure;
12449 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
12451 goto nla_put_failure;
12453 func_attr = nla_nest_start(msg, NL80211_ATTR_NAN_FUNC);
12455 goto nla_put_failure;
12457 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, inst_id) ||
12458 nla_put_u8(msg, NL80211_NAN_FUNC_TERM_REASON, reason))
12459 goto nla_put_failure;
12461 nla_nest_end(msg, func_attr);
12462 genlmsg_end(msg, hdr);
12464 if (!wdev->owner_nlportid)
12465 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12466 msg, 0, NL80211_MCGRP_NAN, gfp);
12468 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12469 wdev->owner_nlportid);
12476 EXPORT_SYMBOL(cfg80211_nan_func_terminated);
12478 static int nl80211_get_protocol_features(struct sk_buff *skb,
12479 struct genl_info *info)
12482 struct sk_buff *msg;
12484 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12488 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12489 NL80211_CMD_GET_PROTOCOL_FEATURES);
12491 goto nla_put_failure;
12493 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
12494 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
12495 goto nla_put_failure;
12497 genlmsg_end(msg, hdr);
12498 return genlmsg_reply(msg, info);
12505 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
12507 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12508 struct cfg80211_update_ft_ies_params ft_params;
12509 struct net_device *dev = info->user_ptr[1];
12511 if (!rdev->ops->update_ft_ies)
12512 return -EOPNOTSUPP;
12514 if (!info->attrs[NL80211_ATTR_MDID] ||
12515 !info->attrs[NL80211_ATTR_IE])
12518 memset(&ft_params, 0, sizeof(ft_params));
12519 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
12520 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
12521 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
12523 return rdev_update_ft_ies(rdev, dev, &ft_params);
12526 static int nl80211_crit_protocol_start(struct sk_buff *skb,
12527 struct genl_info *info)
12529 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12530 struct wireless_dev *wdev = info->user_ptr[1];
12531 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
12535 if (!rdev->ops->crit_proto_start)
12536 return -EOPNOTSUPP;
12538 if (WARN_ON(!rdev->ops->crit_proto_stop))
12541 if (rdev->crit_proto_nlportid)
12544 /* determine protocol if provided */
12545 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
12546 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
12548 if (proto >= NUM_NL80211_CRIT_PROTO)
12551 /* timeout must be provided */
12552 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
12556 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
12558 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
12561 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
12563 rdev->crit_proto_nlportid = info->snd_portid;
12568 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
12569 struct genl_info *info)
12571 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12572 struct wireless_dev *wdev = info->user_ptr[1];
12574 if (!rdev->ops->crit_proto_stop)
12575 return -EOPNOTSUPP;
12577 if (rdev->crit_proto_nlportid) {
12578 rdev->crit_proto_nlportid = 0;
12579 rdev_crit_proto_stop(rdev, wdev);
12584 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
12586 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12587 struct wireless_dev *wdev =
12588 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
12592 if (!rdev->wiphy.vendor_commands)
12593 return -EOPNOTSUPP;
12595 if (IS_ERR(wdev)) {
12596 err = PTR_ERR(wdev);
12597 if (err != -EINVAL)
12600 } else if (wdev->wiphy != &rdev->wiphy) {
12604 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
12605 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
12608 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
12609 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
12610 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
12611 const struct wiphy_vendor_command *vcmd;
12615 vcmd = &rdev->wiphy.vendor_commands[i];
12617 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12620 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12621 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12624 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12628 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12629 if (!wdev_running(wdev))
12634 return -EOPNOTSUPP;
12639 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
12640 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12641 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12644 rdev->cur_cmd_info = info;
12645 err = rdev->wiphy.vendor_commands[i].doit(&rdev->wiphy, wdev,
12647 rdev->cur_cmd_info = NULL;
12651 return -EOPNOTSUPP;
12654 static int nl80211_prepare_vendor_dump(struct sk_buff *skb,
12655 struct netlink_callback *cb,
12656 struct cfg80211_registered_device **rdev,
12657 struct wireless_dev **wdev)
12659 struct nlattr **attrbuf = genl_family_attrbuf(&nl80211_fam);
12665 unsigned int data_len = 0;
12668 /* subtract the 1 again here */
12669 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
12670 struct wireless_dev *tmp;
12674 *rdev = wiphy_to_rdev(wiphy);
12678 list_for_each_entry(tmp, &wiphy->wdev_list, list) {
12679 if (tmp->identifier == cb->args[1] - 1) {
12686 /* keep rtnl locked in successful case */
12690 err = nlmsg_parse(cb->nlh, GENL_HDRLEN + nl80211_fam.hdrsize, attrbuf,
12691 nl80211_fam.maxattr, nl80211_policy, NULL);
12695 if (!attrbuf[NL80211_ATTR_VENDOR_ID] ||
12696 !attrbuf[NL80211_ATTR_VENDOR_SUBCMD])
12699 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk), attrbuf);
12703 *rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
12705 return PTR_ERR(*rdev);
12707 vid = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_ID]);
12708 subcmd = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_SUBCMD]);
12710 for (i = 0; i < (*rdev)->wiphy.n_vendor_commands; i++) {
12711 const struct wiphy_vendor_command *vcmd;
12713 vcmd = &(*rdev)->wiphy.vendor_commands[i];
12715 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12719 return -EOPNOTSUPP;
12726 return -EOPNOTSUPP;
12728 if (attrbuf[NL80211_ATTR_VENDOR_DATA]) {
12729 data = nla_data(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12730 data_len = nla_len(attrbuf[NL80211_ATTR_VENDOR_DATA]);
12733 /* 0 is the first index - add 1 to parse only once */
12734 cb->args[0] = (*rdev)->wiphy_idx + 1;
12735 /* add 1 to know if it was NULL */
12736 cb->args[1] = *wdev ? (*wdev)->identifier + 1 : 0;
12737 cb->args[2] = vcmd_idx;
12738 cb->args[3] = (unsigned long)data;
12739 cb->args[4] = data_len;
12741 /* keep rtnl locked in successful case */
12745 static int nl80211_vendor_cmd_dump(struct sk_buff *skb,
12746 struct netlink_callback *cb)
12748 struct cfg80211_registered_device *rdev;
12749 struct wireless_dev *wdev;
12750 unsigned int vcmd_idx;
12751 const struct wiphy_vendor_command *vcmd;
12755 struct nlattr *vendor_data;
12758 err = nl80211_prepare_vendor_dump(skb, cb, &rdev, &wdev);
12762 vcmd_idx = cb->args[2];
12763 data = (void *)cb->args[3];
12764 data_len = cb->args[4];
12765 vcmd = &rdev->wiphy.vendor_commands[vcmd_idx];
12767 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12768 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12773 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12779 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12780 if (!wdev_running(wdev)) {
12788 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
12789 cb->nlh->nlmsg_seq, NLM_F_MULTI,
12790 NL80211_CMD_VENDOR);
12794 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12795 (wdev && nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
12797 NL80211_ATTR_PAD))) {
12798 genlmsg_cancel(skb, hdr);
12802 vendor_data = nla_nest_start(skb, NL80211_ATTR_VENDOR_DATA);
12803 if (!vendor_data) {
12804 genlmsg_cancel(skb, hdr);
12808 err = vcmd->dumpit(&rdev->wiphy, wdev, skb, data, data_len,
12809 (unsigned long *)&cb->args[5]);
12810 nla_nest_end(skb, vendor_data);
12812 if (err == -ENOBUFS || err == -ENOENT) {
12813 genlmsg_cancel(skb, hdr);
12816 genlmsg_cancel(skb, hdr);
12820 genlmsg_end(skb, hdr);
12829 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
12830 enum nl80211_commands cmd,
12831 enum nl80211_attrs attr,
12834 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12836 if (WARN_ON(!rdev->cur_cmd_info))
12839 return __cfg80211_alloc_vendor_skb(rdev, NULL, approxlen,
12840 rdev->cur_cmd_info->snd_portid,
12841 rdev->cur_cmd_info->snd_seq,
12842 cmd, attr, NULL, GFP_KERNEL);
12844 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
12846 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
12848 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
12849 void *hdr = ((void **)skb->cb)[1];
12850 struct nlattr *data = ((void **)skb->cb)[2];
12852 /* clear CB data for netlink core to own from now on */
12853 memset(skb->cb, 0, sizeof(skb->cb));
12855 if (WARN_ON(!rdev->cur_cmd_info)) {
12860 nla_nest_end(skb, data);
12861 genlmsg_end(skb, hdr);
12862 return genlmsg_reply(skb, rdev->cur_cmd_info);
12864 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
12866 unsigned int cfg80211_vendor_cmd_get_sender(struct wiphy *wiphy)
12868 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12870 if (WARN_ON(!rdev->cur_cmd_info))
12873 return rdev->cur_cmd_info->snd_portid;
12875 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_get_sender);
12877 static int nl80211_set_qos_map(struct sk_buff *skb,
12878 struct genl_info *info)
12880 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12881 struct cfg80211_qos_map *qos_map = NULL;
12882 struct net_device *dev = info->user_ptr[1];
12883 u8 *pos, len, num_des, des_len, des;
12886 if (!rdev->ops->set_qos_map)
12887 return -EOPNOTSUPP;
12889 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
12890 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
12891 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
12893 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
12894 len > IEEE80211_QOS_MAP_LEN_MAX)
12897 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
12901 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
12903 des_len = num_des *
12904 sizeof(struct cfg80211_dscp_exception);
12905 memcpy(qos_map->dscp_exception, pos, des_len);
12906 qos_map->num_des = num_des;
12907 for (des = 0; des < num_des; des++) {
12908 if (qos_map->dscp_exception[des].up > 7) {
12915 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
12918 wdev_lock(dev->ieee80211_ptr);
12919 ret = nl80211_key_allowed(dev->ieee80211_ptr);
12921 ret = rdev_set_qos_map(rdev, dev, qos_map);
12922 wdev_unlock(dev->ieee80211_ptr);
12928 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
12930 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12931 struct net_device *dev = info->user_ptr[1];
12932 struct wireless_dev *wdev = dev->ieee80211_ptr;
12935 u16 admitted_time = 0;
12938 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
12939 return -EOPNOTSUPP;
12941 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
12942 !info->attrs[NL80211_ATTR_USER_PRIO])
12945 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
12946 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
12948 /* WMM uses TIDs 0-7 even for TSPEC */
12949 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
12950 /* TODO: handle 802.11 TSPEC/admission control
12951 * need more attributes for that (e.g. BA session requirement);
12952 * change the WMM adminssion test above to allow both then
12957 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
12959 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
12961 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
12962 if (!admitted_time)
12967 switch (wdev->iftype) {
12968 case NL80211_IFTYPE_STATION:
12969 case NL80211_IFTYPE_P2P_CLIENT:
12970 if (wdev->current_bss)
12979 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
12986 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
12988 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12989 struct net_device *dev = info->user_ptr[1];
12990 struct wireless_dev *wdev = dev->ieee80211_ptr;
12995 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
12998 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
12999 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
13002 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
13008 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
13009 struct genl_info *info)
13011 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13012 struct net_device *dev = info->user_ptr[1];
13013 struct wireless_dev *wdev = dev->ieee80211_ptr;
13014 struct cfg80211_chan_def chandef = {};
13019 if (!rdev->ops->tdls_channel_switch ||
13020 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13021 return -EOPNOTSUPP;
13023 switch (dev->ieee80211_ptr->iftype) {
13024 case NL80211_IFTYPE_STATION:
13025 case NL80211_IFTYPE_P2P_CLIENT:
13028 return -EOPNOTSUPP;
13031 if (!info->attrs[NL80211_ATTR_MAC] ||
13032 !info->attrs[NL80211_ATTR_OPER_CLASS])
13035 err = nl80211_parse_chandef(rdev, info, &chandef);
13040 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
13041 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
13042 * specification is not defined for them.
13044 if (chandef.chan->band == NL80211_BAND_2GHZ &&
13045 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
13046 chandef.width != NL80211_CHAN_WIDTH_20)
13049 /* we will be active on the TDLS link */
13050 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
13054 /* don't allow switching to DFS channels */
13055 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
13058 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13059 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
13062 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
13068 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
13069 struct genl_info *info)
13071 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13072 struct net_device *dev = info->user_ptr[1];
13073 struct wireless_dev *wdev = dev->ieee80211_ptr;
13076 if (!rdev->ops->tdls_channel_switch ||
13077 !rdev->ops->tdls_cancel_channel_switch ||
13078 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13079 return -EOPNOTSUPP;
13081 switch (dev->ieee80211_ptr->iftype) {
13082 case NL80211_IFTYPE_STATION:
13083 case NL80211_IFTYPE_P2P_CLIENT:
13086 return -EOPNOTSUPP;
13089 if (!info->attrs[NL80211_ATTR_MAC])
13092 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13095 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
13101 static int nl80211_set_multicast_to_unicast(struct sk_buff *skb,
13102 struct genl_info *info)
13104 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13105 struct net_device *dev = info->user_ptr[1];
13106 struct wireless_dev *wdev = dev->ieee80211_ptr;
13107 const struct nlattr *nla;
13110 if (!rdev->ops->set_multicast_to_unicast)
13111 return -EOPNOTSUPP;
13113 if (wdev->iftype != NL80211_IFTYPE_AP &&
13114 wdev->iftype != NL80211_IFTYPE_P2P_GO)
13115 return -EOPNOTSUPP;
13117 nla = info->attrs[NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED];
13118 enabled = nla_get_flag(nla);
13120 return rdev_set_multicast_to_unicast(rdev, dev, enabled);
13123 static int nl80211_set_pmk(struct sk_buff *skb, struct genl_info *info)
13125 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13126 struct net_device *dev = info->user_ptr[1];
13127 struct wireless_dev *wdev = dev->ieee80211_ptr;
13128 struct cfg80211_pmk_conf pmk_conf = {};
13131 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13132 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13133 return -EOPNOTSUPP;
13135 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13136 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13137 return -EOPNOTSUPP;
13139 if (!info->attrs[NL80211_ATTR_MAC] || !info->attrs[NL80211_ATTR_PMK])
13143 if (!wdev->current_bss) {
13148 pmk_conf.aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13149 if (memcmp(pmk_conf.aa, wdev->current_bss->pub.bssid, ETH_ALEN)) {
13154 pmk_conf.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
13155 pmk_conf.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
13156 if (pmk_conf.pmk_len != WLAN_PMK_LEN &&
13157 pmk_conf.pmk_len != WLAN_PMK_LEN_SUITE_B_192) {
13162 if (info->attrs[NL80211_ATTR_PMKR0_NAME]) {
13163 int r0_name_len = nla_len(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13165 if (r0_name_len != WLAN_PMK_NAME_LEN) {
13170 pmk_conf.pmk_r0_name =
13171 nla_data(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13174 ret = rdev_set_pmk(rdev, dev, &pmk_conf);
13180 static int nl80211_del_pmk(struct sk_buff *skb, struct genl_info *info)
13182 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13183 struct net_device *dev = info->user_ptr[1];
13184 struct wireless_dev *wdev = dev->ieee80211_ptr;
13188 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13189 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13190 return -EOPNOTSUPP;
13192 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13193 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13194 return -EOPNOTSUPP;
13196 if (!info->attrs[NL80211_ATTR_MAC])
13200 aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13201 ret = rdev_del_pmk(rdev, dev, aa);
13207 static int nl80211_external_auth(struct sk_buff *skb, struct genl_info *info)
13209 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13210 struct net_device *dev = info->user_ptr[1];
13211 struct cfg80211_external_auth_params params;
13213 if (!rdev->ops->external_auth)
13214 return -EOPNOTSUPP;
13216 if (!info->attrs[NL80211_ATTR_SSID] &&
13217 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
13218 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
13221 if (!info->attrs[NL80211_ATTR_BSSID])
13224 if (!info->attrs[NL80211_ATTR_STATUS_CODE])
13227 memset(¶ms, 0, sizeof(params));
13229 if (info->attrs[NL80211_ATTR_SSID]) {
13230 params.ssid.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
13231 if (params.ssid.ssid_len == 0 ||
13232 params.ssid.ssid_len > IEEE80211_MAX_SSID_LEN)
13234 memcpy(params.ssid.ssid,
13235 nla_data(info->attrs[NL80211_ATTR_SSID]),
13236 params.ssid.ssid_len);
13239 memcpy(params.bssid, nla_data(info->attrs[NL80211_ATTR_BSSID]),
13242 params.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13244 if (info->attrs[NL80211_ATTR_PMKID])
13245 params.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
13247 return rdev_external_auth(rdev, dev, ¶ms);
13250 static int nl80211_tx_control_port(struct sk_buff *skb, struct genl_info *info)
13252 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13253 struct net_device *dev = info->user_ptr[1];
13254 struct wireless_dev *wdev = dev->ieee80211_ptr;
13262 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13263 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
13264 return -EOPNOTSUPP;
13266 if (!rdev->ops->tx_control_port)
13267 return -EOPNOTSUPP;
13269 if (!info->attrs[NL80211_ATTR_FRAME] ||
13270 !info->attrs[NL80211_ATTR_MAC] ||
13271 !info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
13272 GENL_SET_ERR_MSG(info, "Frame, MAC or ethertype missing");
13278 switch (wdev->iftype) {
13279 case NL80211_IFTYPE_AP:
13280 case NL80211_IFTYPE_P2P_GO:
13281 case NL80211_IFTYPE_MESH_POINT:
13283 case NL80211_IFTYPE_ADHOC:
13284 case NL80211_IFTYPE_STATION:
13285 case NL80211_IFTYPE_P2P_CLIENT:
13286 if (wdev->current_bss)
13297 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13298 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13299 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13300 proto = nla_get_u16(info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
13302 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT]);
13304 return rdev_tx_control_port(rdev, dev, buf, len,
13305 dest, cpu_to_be16(proto), noencrypt);
13312 static int nl80211_get_ftm_responder_stats(struct sk_buff *skb,
13313 struct genl_info *info)
13315 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13316 struct net_device *dev = info->user_ptr[1];
13317 struct wireless_dev *wdev = dev->ieee80211_ptr;
13318 struct cfg80211_ftm_responder_stats ftm_stats = {};
13319 struct sk_buff *msg;
13321 struct nlattr *ftm_stats_attr;
13324 if (wdev->iftype != NL80211_IFTYPE_AP || !wdev->beacon_interval)
13325 return -EOPNOTSUPP;
13327 err = rdev_get_ftm_responder_stats(rdev, dev, &ftm_stats);
13331 if (!ftm_stats.filled)
13334 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
13338 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
13339 NL80211_CMD_GET_FTM_RESPONDER_STATS);
13343 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
13344 goto nla_put_failure;
13346 ftm_stats_attr = nla_nest_start(msg, NL80211_ATTR_FTM_RESPONDER_STATS);
13347 if (!ftm_stats_attr)
13348 goto nla_put_failure;
13350 #define SET_FTM(field, name, type) \
13351 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13352 nla_put_ ## type(msg, NL80211_FTM_STATS_ ## name, \
13353 ftm_stats.field)) \
13354 goto nla_put_failure; } while (0)
13355 #define SET_FTM_U64(field, name) \
13356 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13357 nla_put_u64_64bit(msg, NL80211_FTM_STATS_ ## name, \
13358 ftm_stats.field, NL80211_FTM_STATS_PAD)) \
13359 goto nla_put_failure; } while (0)
13361 SET_FTM(success_num, SUCCESS_NUM, u32);
13362 SET_FTM(partial_num, PARTIAL_NUM, u32);
13363 SET_FTM(failed_num, FAILED_NUM, u32);
13364 SET_FTM(asap_num, ASAP_NUM, u32);
13365 SET_FTM(non_asap_num, NON_ASAP_NUM, u32);
13366 SET_FTM_U64(total_duration_ms, TOTAL_DURATION_MSEC);
13367 SET_FTM(unknown_triggers_num, UNKNOWN_TRIGGERS_NUM, u32);
13368 SET_FTM(reschedule_requests_num, RESCHEDULE_REQUESTS_NUM, u32);
13369 SET_FTM(out_of_window_triggers_num, OUT_OF_WINDOW_TRIGGERS_NUM, u32);
13372 nla_nest_end(msg, ftm_stats_attr);
13374 genlmsg_end(msg, hdr);
13375 return genlmsg_reply(msg, info);
13382 static int nl80211_update_owe_info(struct sk_buff *skb, struct genl_info *info)
13384 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13385 struct cfg80211_update_owe_info owe_info;
13386 struct net_device *dev = info->user_ptr[1];
13388 if (!rdev->ops->update_owe_info)
13389 return -EOPNOTSUPP;
13391 if (!info->attrs[NL80211_ATTR_STATUS_CODE] ||
13392 !info->attrs[NL80211_ATTR_MAC])
13395 memset(&owe_info, 0, sizeof(owe_info));
13396 owe_info.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13397 nla_memcpy(owe_info.peer, info->attrs[NL80211_ATTR_MAC], ETH_ALEN);
13399 if (info->attrs[NL80211_ATTR_IE]) {
13400 owe_info.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
13401 owe_info.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
13404 return rdev_update_owe_info(rdev, dev, &owe_info);
13407 #define NL80211_FLAG_NEED_WIPHY 0x01
13408 #define NL80211_FLAG_NEED_NETDEV 0x02
13409 #define NL80211_FLAG_NEED_RTNL 0x04
13410 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
13411 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
13412 NL80211_FLAG_CHECK_NETDEV_UP)
13413 #define NL80211_FLAG_NEED_WDEV 0x10
13414 /* If a netdev is associated, it must be UP, P2P must be started */
13415 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
13416 NL80211_FLAG_CHECK_NETDEV_UP)
13417 #define NL80211_FLAG_CLEAR_SKB 0x20
13419 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
13420 struct genl_info *info)
13422 struct cfg80211_registered_device *rdev;
13423 struct wireless_dev *wdev;
13424 struct net_device *dev;
13425 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
13430 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
13431 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
13432 if (IS_ERR(rdev)) {
13435 return PTR_ERR(rdev);
13437 info->user_ptr[0] = rdev;
13438 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
13439 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13442 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
13444 if (IS_ERR(wdev)) {
13447 return PTR_ERR(wdev);
13450 dev = wdev->netdev;
13451 rdev = wiphy_to_rdev(wdev->wiphy);
13453 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
13460 info->user_ptr[1] = dev;
13462 info->user_ptr[1] = wdev;
13465 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
13466 !wdev_running(wdev)) {
13475 info->user_ptr[0] = rdev;
13481 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
13482 struct genl_info *info)
13484 if (info->user_ptr[1]) {
13485 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13486 struct wireless_dev *wdev = info->user_ptr[1];
13489 dev_put(wdev->netdev);
13491 dev_put(info->user_ptr[1]);
13495 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
13498 /* If needed, clear the netlink message payload from the SKB
13499 * as it might contain key data that shouldn't stick around on
13500 * the heap after the SKB is freed. The netlink message header
13501 * is still needed for further processing, so leave it intact.
13503 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
13504 struct nlmsghdr *nlh = nlmsg_hdr(skb);
13506 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
13510 static const struct genl_ops nl80211_ops[] = {
13512 .cmd = NL80211_CMD_GET_WIPHY,
13513 .doit = nl80211_get_wiphy,
13514 .dumpit = nl80211_dump_wiphy,
13515 .done = nl80211_dump_wiphy_done,
13516 /* can be retrieved by unprivileged users */
13517 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13518 NL80211_FLAG_NEED_RTNL,
13521 .cmd = NL80211_CMD_SET_WIPHY,
13522 .doit = nl80211_set_wiphy,
13523 .flags = GENL_UNS_ADMIN_PERM,
13524 .internal_flags = NL80211_FLAG_NEED_RTNL,
13527 .cmd = NL80211_CMD_GET_INTERFACE,
13528 .doit = nl80211_get_interface,
13529 .dumpit = nl80211_dump_interface,
13530 /* can be retrieved by unprivileged users */
13531 .internal_flags = NL80211_FLAG_NEED_WDEV |
13532 NL80211_FLAG_NEED_RTNL,
13535 .cmd = NL80211_CMD_SET_INTERFACE,
13536 .doit = nl80211_set_interface,
13537 .flags = GENL_UNS_ADMIN_PERM,
13538 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13539 NL80211_FLAG_NEED_RTNL,
13542 .cmd = NL80211_CMD_NEW_INTERFACE,
13543 .doit = nl80211_new_interface,
13544 .flags = GENL_UNS_ADMIN_PERM,
13545 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13546 NL80211_FLAG_NEED_RTNL,
13549 .cmd = NL80211_CMD_DEL_INTERFACE,
13550 .doit = nl80211_del_interface,
13551 .flags = GENL_UNS_ADMIN_PERM,
13552 .internal_flags = NL80211_FLAG_NEED_WDEV |
13553 NL80211_FLAG_NEED_RTNL,
13556 .cmd = NL80211_CMD_GET_KEY,
13557 .doit = nl80211_get_key,
13558 .flags = GENL_UNS_ADMIN_PERM,
13559 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13560 NL80211_FLAG_NEED_RTNL,
13563 .cmd = NL80211_CMD_SET_KEY,
13564 .doit = nl80211_set_key,
13565 .flags = GENL_UNS_ADMIN_PERM,
13566 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13567 NL80211_FLAG_NEED_RTNL |
13568 NL80211_FLAG_CLEAR_SKB,
13571 .cmd = NL80211_CMD_NEW_KEY,
13572 .doit = nl80211_new_key,
13573 .flags = GENL_UNS_ADMIN_PERM,
13574 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13575 NL80211_FLAG_NEED_RTNL |
13576 NL80211_FLAG_CLEAR_SKB,
13579 .cmd = NL80211_CMD_DEL_KEY,
13580 .doit = nl80211_del_key,
13581 .flags = GENL_UNS_ADMIN_PERM,
13582 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13583 NL80211_FLAG_NEED_RTNL,
13586 .cmd = NL80211_CMD_SET_BEACON,
13587 .flags = GENL_UNS_ADMIN_PERM,
13588 .doit = nl80211_set_beacon,
13589 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13590 NL80211_FLAG_NEED_RTNL,
13593 .cmd = NL80211_CMD_START_AP,
13594 .flags = GENL_UNS_ADMIN_PERM,
13595 .doit = nl80211_start_ap,
13596 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13597 NL80211_FLAG_NEED_RTNL,
13600 .cmd = NL80211_CMD_STOP_AP,
13601 .flags = GENL_UNS_ADMIN_PERM,
13602 .doit = nl80211_stop_ap,
13603 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13604 NL80211_FLAG_NEED_RTNL,
13607 .cmd = NL80211_CMD_GET_STATION,
13608 .doit = nl80211_get_station,
13609 .dumpit = nl80211_dump_station,
13610 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13611 NL80211_FLAG_NEED_RTNL,
13614 .cmd = NL80211_CMD_SET_STATION,
13615 .doit = nl80211_set_station,
13616 .flags = GENL_UNS_ADMIN_PERM,
13617 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13618 NL80211_FLAG_NEED_RTNL,
13621 .cmd = NL80211_CMD_NEW_STATION,
13622 .doit = nl80211_new_station,
13623 .flags = GENL_UNS_ADMIN_PERM,
13624 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13625 NL80211_FLAG_NEED_RTNL,
13628 .cmd = NL80211_CMD_DEL_STATION,
13629 .doit = nl80211_del_station,
13630 .flags = GENL_UNS_ADMIN_PERM,
13631 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13632 NL80211_FLAG_NEED_RTNL,
13635 .cmd = NL80211_CMD_GET_MPATH,
13636 .doit = nl80211_get_mpath,
13637 .dumpit = nl80211_dump_mpath,
13638 .flags = GENL_UNS_ADMIN_PERM,
13639 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13640 NL80211_FLAG_NEED_RTNL,
13643 .cmd = NL80211_CMD_GET_MPP,
13644 .doit = nl80211_get_mpp,
13645 .dumpit = nl80211_dump_mpp,
13646 .flags = GENL_UNS_ADMIN_PERM,
13647 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13648 NL80211_FLAG_NEED_RTNL,
13651 .cmd = NL80211_CMD_SET_MPATH,
13652 .doit = nl80211_set_mpath,
13653 .flags = GENL_UNS_ADMIN_PERM,
13654 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13655 NL80211_FLAG_NEED_RTNL,
13658 .cmd = NL80211_CMD_NEW_MPATH,
13659 .doit = nl80211_new_mpath,
13660 .flags = GENL_UNS_ADMIN_PERM,
13661 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13662 NL80211_FLAG_NEED_RTNL,
13665 .cmd = NL80211_CMD_DEL_MPATH,
13666 .doit = nl80211_del_mpath,
13667 .flags = GENL_UNS_ADMIN_PERM,
13668 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13669 NL80211_FLAG_NEED_RTNL,
13672 .cmd = NL80211_CMD_SET_BSS,
13673 .doit = nl80211_set_bss,
13674 .flags = GENL_UNS_ADMIN_PERM,
13675 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13676 NL80211_FLAG_NEED_RTNL,
13679 .cmd = NL80211_CMD_GET_REG,
13680 .doit = nl80211_get_reg_do,
13681 .dumpit = nl80211_get_reg_dump,
13682 .internal_flags = NL80211_FLAG_NEED_RTNL,
13683 /* can be retrieved by unprivileged users */
13685 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
13687 .cmd = NL80211_CMD_SET_REG,
13688 .doit = nl80211_set_reg,
13689 .flags = GENL_ADMIN_PERM,
13690 .internal_flags = NL80211_FLAG_NEED_RTNL,
13694 .cmd = NL80211_CMD_REQ_SET_REG,
13695 .doit = nl80211_req_set_reg,
13696 .flags = GENL_ADMIN_PERM,
13699 .cmd = NL80211_CMD_RELOAD_REGDB,
13700 .doit = nl80211_reload_regdb,
13701 .flags = GENL_ADMIN_PERM,
13704 .cmd = NL80211_CMD_GET_MESH_CONFIG,
13705 .doit = nl80211_get_mesh_config,
13706 /* can be retrieved by unprivileged users */
13707 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13708 NL80211_FLAG_NEED_RTNL,
13711 .cmd = NL80211_CMD_SET_MESH_CONFIG,
13712 .doit = nl80211_update_mesh_config,
13713 .flags = GENL_UNS_ADMIN_PERM,
13714 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13715 NL80211_FLAG_NEED_RTNL,
13718 .cmd = NL80211_CMD_TRIGGER_SCAN,
13719 .doit = nl80211_trigger_scan,
13720 .flags = GENL_UNS_ADMIN_PERM,
13721 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13722 NL80211_FLAG_NEED_RTNL,
13725 .cmd = NL80211_CMD_ABORT_SCAN,
13726 .doit = nl80211_abort_scan,
13727 .flags = GENL_UNS_ADMIN_PERM,
13728 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13729 NL80211_FLAG_NEED_RTNL,
13732 .cmd = NL80211_CMD_GET_SCAN,
13733 .dumpit = nl80211_dump_scan,
13736 .cmd = NL80211_CMD_START_SCHED_SCAN,
13737 .doit = nl80211_start_sched_scan,
13738 .flags = GENL_UNS_ADMIN_PERM,
13739 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13740 NL80211_FLAG_NEED_RTNL,
13743 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
13744 .doit = nl80211_stop_sched_scan,
13745 .flags = GENL_UNS_ADMIN_PERM,
13746 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13747 NL80211_FLAG_NEED_RTNL,
13750 .cmd = NL80211_CMD_AUTHENTICATE,
13751 .doit = nl80211_authenticate,
13752 .flags = GENL_UNS_ADMIN_PERM,
13753 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13754 NL80211_FLAG_NEED_RTNL |
13755 NL80211_FLAG_CLEAR_SKB,
13758 .cmd = NL80211_CMD_ASSOCIATE,
13759 .doit = nl80211_associate,
13760 .flags = GENL_UNS_ADMIN_PERM,
13761 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13762 NL80211_FLAG_NEED_RTNL,
13765 .cmd = NL80211_CMD_DEAUTHENTICATE,
13766 .doit = nl80211_deauthenticate,
13767 .flags = GENL_UNS_ADMIN_PERM,
13768 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13769 NL80211_FLAG_NEED_RTNL,
13772 .cmd = NL80211_CMD_DISASSOCIATE,
13773 .doit = nl80211_disassociate,
13774 .flags = GENL_UNS_ADMIN_PERM,
13775 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13776 NL80211_FLAG_NEED_RTNL,
13779 .cmd = NL80211_CMD_JOIN_IBSS,
13780 .doit = nl80211_join_ibss,
13781 .flags = GENL_UNS_ADMIN_PERM,
13782 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13783 NL80211_FLAG_NEED_RTNL,
13786 .cmd = NL80211_CMD_LEAVE_IBSS,
13787 .doit = nl80211_leave_ibss,
13788 .flags = GENL_UNS_ADMIN_PERM,
13789 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13790 NL80211_FLAG_NEED_RTNL,
13792 #ifdef CONFIG_NL80211_TESTMODE
13794 .cmd = NL80211_CMD_TESTMODE,
13795 .doit = nl80211_testmode_do,
13796 .dumpit = nl80211_testmode_dump,
13797 .flags = GENL_UNS_ADMIN_PERM,
13798 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13799 NL80211_FLAG_NEED_RTNL,
13803 .cmd = NL80211_CMD_CONNECT,
13804 .doit = nl80211_connect,
13805 .flags = GENL_UNS_ADMIN_PERM,
13806 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13807 NL80211_FLAG_NEED_RTNL,
13810 .cmd = NL80211_CMD_UPDATE_CONNECT_PARAMS,
13811 .doit = nl80211_update_connect_params,
13812 .flags = GENL_ADMIN_PERM,
13813 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13814 NL80211_FLAG_NEED_RTNL,
13817 .cmd = NL80211_CMD_DISCONNECT,
13818 .doit = nl80211_disconnect,
13819 .flags = GENL_UNS_ADMIN_PERM,
13820 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13821 NL80211_FLAG_NEED_RTNL,
13824 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
13825 .doit = nl80211_wiphy_netns,
13826 .flags = GENL_UNS_ADMIN_PERM,
13827 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13828 NL80211_FLAG_NEED_RTNL,
13831 .cmd = NL80211_CMD_GET_SURVEY,
13832 .dumpit = nl80211_dump_survey,
13835 .cmd = NL80211_CMD_SET_PMKSA,
13836 .doit = nl80211_setdel_pmksa,
13837 .flags = GENL_UNS_ADMIN_PERM,
13838 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13839 NL80211_FLAG_NEED_RTNL,
13842 .cmd = NL80211_CMD_DEL_PMKSA,
13843 .doit = nl80211_setdel_pmksa,
13844 .flags = GENL_UNS_ADMIN_PERM,
13845 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13846 NL80211_FLAG_NEED_RTNL,
13849 .cmd = NL80211_CMD_FLUSH_PMKSA,
13850 .doit = nl80211_flush_pmksa,
13851 .flags = GENL_UNS_ADMIN_PERM,
13852 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13853 NL80211_FLAG_NEED_RTNL,
13856 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
13857 .doit = nl80211_remain_on_channel,
13858 .flags = GENL_UNS_ADMIN_PERM,
13859 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13860 NL80211_FLAG_NEED_RTNL,
13863 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
13864 .doit = nl80211_cancel_remain_on_channel,
13865 .flags = GENL_UNS_ADMIN_PERM,
13866 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13867 NL80211_FLAG_NEED_RTNL,
13870 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
13871 .doit = nl80211_set_tx_bitrate_mask,
13872 .flags = GENL_UNS_ADMIN_PERM,
13873 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13874 NL80211_FLAG_NEED_RTNL,
13877 .cmd = NL80211_CMD_REGISTER_FRAME,
13878 .doit = nl80211_register_mgmt,
13879 .flags = GENL_UNS_ADMIN_PERM,
13880 .internal_flags = NL80211_FLAG_NEED_WDEV |
13881 NL80211_FLAG_NEED_RTNL,
13884 .cmd = NL80211_CMD_FRAME,
13885 .doit = nl80211_tx_mgmt,
13886 .flags = GENL_UNS_ADMIN_PERM,
13887 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13888 NL80211_FLAG_NEED_RTNL,
13891 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
13892 .doit = nl80211_tx_mgmt_cancel_wait,
13893 .flags = GENL_UNS_ADMIN_PERM,
13894 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
13895 NL80211_FLAG_NEED_RTNL,
13898 .cmd = NL80211_CMD_SET_POWER_SAVE,
13899 .doit = nl80211_set_power_save,
13900 .flags = GENL_UNS_ADMIN_PERM,
13901 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13902 NL80211_FLAG_NEED_RTNL,
13905 .cmd = NL80211_CMD_GET_POWER_SAVE,
13906 .doit = nl80211_get_power_save,
13907 /* can be retrieved by unprivileged users */
13908 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13909 NL80211_FLAG_NEED_RTNL,
13912 .cmd = NL80211_CMD_SET_CQM,
13913 .doit = nl80211_set_cqm,
13914 .flags = GENL_UNS_ADMIN_PERM,
13915 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13916 NL80211_FLAG_NEED_RTNL,
13919 .cmd = NL80211_CMD_SET_CHANNEL,
13920 .doit = nl80211_set_channel,
13921 .flags = GENL_UNS_ADMIN_PERM,
13922 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13923 NL80211_FLAG_NEED_RTNL,
13926 .cmd = NL80211_CMD_SET_WDS_PEER,
13927 .doit = nl80211_set_wds_peer,
13928 .flags = GENL_UNS_ADMIN_PERM,
13929 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13930 NL80211_FLAG_NEED_RTNL,
13933 .cmd = NL80211_CMD_JOIN_MESH,
13934 .doit = nl80211_join_mesh,
13935 .flags = GENL_UNS_ADMIN_PERM,
13936 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13937 NL80211_FLAG_NEED_RTNL,
13940 .cmd = NL80211_CMD_LEAVE_MESH,
13941 .doit = nl80211_leave_mesh,
13942 .flags = GENL_UNS_ADMIN_PERM,
13943 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13944 NL80211_FLAG_NEED_RTNL,
13947 .cmd = NL80211_CMD_JOIN_OCB,
13948 .doit = nl80211_join_ocb,
13949 .flags = GENL_UNS_ADMIN_PERM,
13950 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13951 NL80211_FLAG_NEED_RTNL,
13954 .cmd = NL80211_CMD_LEAVE_OCB,
13955 .doit = nl80211_leave_ocb,
13956 .flags = GENL_UNS_ADMIN_PERM,
13957 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13958 NL80211_FLAG_NEED_RTNL,
13962 .cmd = NL80211_CMD_GET_WOWLAN,
13963 .doit = nl80211_get_wowlan,
13964 /* can be retrieved by unprivileged users */
13965 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13966 NL80211_FLAG_NEED_RTNL,
13969 .cmd = NL80211_CMD_SET_WOWLAN,
13970 .doit = nl80211_set_wowlan,
13971 .flags = GENL_UNS_ADMIN_PERM,
13972 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13973 NL80211_FLAG_NEED_RTNL,
13977 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
13978 .doit = nl80211_set_rekey_data,
13979 .flags = GENL_UNS_ADMIN_PERM,
13980 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13981 NL80211_FLAG_NEED_RTNL |
13982 NL80211_FLAG_CLEAR_SKB,
13985 .cmd = NL80211_CMD_TDLS_MGMT,
13986 .doit = nl80211_tdls_mgmt,
13987 .flags = GENL_UNS_ADMIN_PERM,
13988 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13989 NL80211_FLAG_NEED_RTNL,
13992 .cmd = NL80211_CMD_TDLS_OPER,
13993 .doit = nl80211_tdls_oper,
13994 .flags = GENL_UNS_ADMIN_PERM,
13995 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13996 NL80211_FLAG_NEED_RTNL,
13999 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
14000 .doit = nl80211_register_unexpected_frame,
14001 .flags = GENL_UNS_ADMIN_PERM,
14002 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14003 NL80211_FLAG_NEED_RTNL,
14006 .cmd = NL80211_CMD_PROBE_CLIENT,
14007 .doit = nl80211_probe_client,
14008 .flags = GENL_UNS_ADMIN_PERM,
14009 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14010 NL80211_FLAG_NEED_RTNL,
14013 .cmd = NL80211_CMD_REGISTER_BEACONS,
14014 .doit = nl80211_register_beacons,
14015 .flags = GENL_UNS_ADMIN_PERM,
14016 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14017 NL80211_FLAG_NEED_RTNL,
14020 .cmd = NL80211_CMD_SET_NOACK_MAP,
14021 .doit = nl80211_set_noack_map,
14022 .flags = GENL_UNS_ADMIN_PERM,
14023 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14024 NL80211_FLAG_NEED_RTNL,
14027 .cmd = NL80211_CMD_START_P2P_DEVICE,
14028 .doit = nl80211_start_p2p_device,
14029 .flags = GENL_UNS_ADMIN_PERM,
14030 .internal_flags = NL80211_FLAG_NEED_WDEV |
14031 NL80211_FLAG_NEED_RTNL,
14034 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
14035 .doit = nl80211_stop_p2p_device,
14036 .flags = GENL_UNS_ADMIN_PERM,
14037 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14038 NL80211_FLAG_NEED_RTNL,
14041 .cmd = NL80211_CMD_START_NAN,
14042 .doit = nl80211_start_nan,
14043 .flags = GENL_ADMIN_PERM,
14044 .internal_flags = NL80211_FLAG_NEED_WDEV |
14045 NL80211_FLAG_NEED_RTNL,
14048 .cmd = NL80211_CMD_STOP_NAN,
14049 .doit = nl80211_stop_nan,
14050 .flags = GENL_ADMIN_PERM,
14051 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14052 NL80211_FLAG_NEED_RTNL,
14055 .cmd = NL80211_CMD_ADD_NAN_FUNCTION,
14056 .doit = nl80211_nan_add_func,
14057 .flags = GENL_ADMIN_PERM,
14058 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14059 NL80211_FLAG_NEED_RTNL,
14062 .cmd = NL80211_CMD_DEL_NAN_FUNCTION,
14063 .doit = nl80211_nan_del_func,
14064 .flags = GENL_ADMIN_PERM,
14065 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14066 NL80211_FLAG_NEED_RTNL,
14069 .cmd = NL80211_CMD_CHANGE_NAN_CONFIG,
14070 .doit = nl80211_nan_change_config,
14071 .flags = GENL_ADMIN_PERM,
14072 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14073 NL80211_FLAG_NEED_RTNL,
14076 .cmd = NL80211_CMD_SET_MCAST_RATE,
14077 .doit = nl80211_set_mcast_rate,
14078 .flags = GENL_UNS_ADMIN_PERM,
14079 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14080 NL80211_FLAG_NEED_RTNL,
14083 .cmd = NL80211_CMD_SET_MAC_ACL,
14084 .doit = nl80211_set_mac_acl,
14085 .flags = GENL_UNS_ADMIN_PERM,
14086 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14087 NL80211_FLAG_NEED_RTNL,
14090 .cmd = NL80211_CMD_RADAR_DETECT,
14091 .doit = nl80211_start_radar_detection,
14092 .flags = GENL_UNS_ADMIN_PERM,
14093 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14094 NL80211_FLAG_NEED_RTNL,
14097 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
14098 .doit = nl80211_get_protocol_features,
14101 .cmd = NL80211_CMD_UPDATE_FT_IES,
14102 .doit = nl80211_update_ft_ies,
14103 .flags = GENL_UNS_ADMIN_PERM,
14104 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14105 NL80211_FLAG_NEED_RTNL,
14108 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
14109 .doit = nl80211_crit_protocol_start,
14110 .flags = GENL_UNS_ADMIN_PERM,
14111 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14112 NL80211_FLAG_NEED_RTNL,
14115 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
14116 .doit = nl80211_crit_protocol_stop,
14117 .flags = GENL_UNS_ADMIN_PERM,
14118 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14119 NL80211_FLAG_NEED_RTNL,
14122 .cmd = NL80211_CMD_GET_COALESCE,
14123 .doit = nl80211_get_coalesce,
14124 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14125 NL80211_FLAG_NEED_RTNL,
14128 .cmd = NL80211_CMD_SET_COALESCE,
14129 .doit = nl80211_set_coalesce,
14130 .flags = GENL_UNS_ADMIN_PERM,
14131 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14132 NL80211_FLAG_NEED_RTNL,
14135 .cmd = NL80211_CMD_CHANNEL_SWITCH,
14136 .doit = nl80211_channel_switch,
14137 .flags = GENL_UNS_ADMIN_PERM,
14138 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14139 NL80211_FLAG_NEED_RTNL,
14142 .cmd = NL80211_CMD_VENDOR,
14143 .doit = nl80211_vendor_cmd,
14144 .dumpit = nl80211_vendor_cmd_dump,
14145 .flags = GENL_UNS_ADMIN_PERM,
14146 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14147 NL80211_FLAG_NEED_RTNL,
14150 .cmd = NL80211_CMD_SET_QOS_MAP,
14151 .doit = nl80211_set_qos_map,
14152 .flags = GENL_UNS_ADMIN_PERM,
14153 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14154 NL80211_FLAG_NEED_RTNL,
14157 .cmd = NL80211_CMD_ADD_TX_TS,
14158 .doit = nl80211_add_tx_ts,
14159 .flags = GENL_UNS_ADMIN_PERM,
14160 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14161 NL80211_FLAG_NEED_RTNL,
14164 .cmd = NL80211_CMD_DEL_TX_TS,
14165 .doit = nl80211_del_tx_ts,
14166 .flags = GENL_UNS_ADMIN_PERM,
14167 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14168 NL80211_FLAG_NEED_RTNL,
14171 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
14172 .doit = nl80211_tdls_channel_switch,
14173 .flags = GENL_UNS_ADMIN_PERM,
14174 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14175 NL80211_FLAG_NEED_RTNL,
14178 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
14179 .doit = nl80211_tdls_cancel_channel_switch,
14180 .flags = GENL_UNS_ADMIN_PERM,
14181 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14182 NL80211_FLAG_NEED_RTNL,
14185 .cmd = NL80211_CMD_SET_MULTICAST_TO_UNICAST,
14186 .doit = nl80211_set_multicast_to_unicast,
14187 .flags = GENL_UNS_ADMIN_PERM,
14188 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14189 NL80211_FLAG_NEED_RTNL,
14192 .cmd = NL80211_CMD_SET_PMK,
14193 .doit = nl80211_set_pmk,
14194 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14195 NL80211_FLAG_NEED_RTNL,
14198 .cmd = NL80211_CMD_DEL_PMK,
14199 .doit = nl80211_del_pmk,
14200 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14201 NL80211_FLAG_NEED_RTNL,
14204 .cmd = NL80211_CMD_EXTERNAL_AUTH,
14205 .doit = nl80211_external_auth,
14206 .flags = GENL_ADMIN_PERM,
14207 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14208 NL80211_FLAG_NEED_RTNL,
14211 .cmd = NL80211_CMD_CONTROL_PORT_FRAME,
14212 .doit = nl80211_tx_control_port,
14213 .flags = GENL_UNS_ADMIN_PERM,
14214 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14215 NL80211_FLAG_NEED_RTNL,
14218 .cmd = NL80211_CMD_GET_FTM_RESPONDER_STATS,
14219 .doit = nl80211_get_ftm_responder_stats,
14220 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14221 NL80211_FLAG_NEED_RTNL,
14224 .cmd = NL80211_CMD_PEER_MEASUREMENT_START,
14225 .doit = nl80211_pmsr_start,
14226 .flags = GENL_UNS_ADMIN_PERM,
14227 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14228 NL80211_FLAG_NEED_RTNL,
14231 .cmd = NL80211_CMD_NOTIFY_RADAR,
14232 .doit = nl80211_notify_radar_detection,
14233 .flags = GENL_UNS_ADMIN_PERM,
14234 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14235 NL80211_FLAG_NEED_RTNL,
14238 .cmd = NL80211_CMD_UPDATE_OWE_INFO,
14239 .doit = nl80211_update_owe_info,
14240 .flags = GENL_ADMIN_PERM,
14241 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14242 NL80211_FLAG_NEED_RTNL,
14246 static struct genl_family nl80211_fam __ro_after_init = {
14247 .name = NL80211_GENL_NAME, /* have users key off the name instead */
14248 .hdrsize = 0, /* no private header */
14249 .version = 1, /* no particular meaning now */
14250 .maxattr = NL80211_ATTR_MAX,
14251 .policy = nl80211_policy,
14253 .pre_doit = nl80211_pre_doit,
14254 .post_doit = nl80211_post_doit,
14255 .module = THIS_MODULE,
14256 .ops = nl80211_ops,
14257 .n_ops = ARRAY_SIZE(nl80211_ops),
14258 .mcgrps = nl80211_mcgrps,
14259 .n_mcgrps = ARRAY_SIZE(nl80211_mcgrps),
14262 /* notification functions */
14264 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
14265 enum nl80211_commands cmd)
14267 struct sk_buff *msg;
14268 struct nl80211_dump_wiphy_state state = {};
14270 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
14271 cmd != NL80211_CMD_DEL_WIPHY);
14273 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14277 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
14282 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14283 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14286 void nl80211_notify_iface(struct cfg80211_registered_device *rdev,
14287 struct wireless_dev *wdev,
14288 enum nl80211_commands cmd)
14290 struct sk_buff *msg;
14292 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14296 if (nl80211_send_iface(msg, 0, 0, 0, rdev, wdev, cmd) < 0) {
14301 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14302 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14305 static int nl80211_add_scan_req(struct sk_buff *msg,
14306 struct cfg80211_registered_device *rdev)
14308 struct cfg80211_scan_request *req = rdev->scan_req;
14309 struct nlattr *nest;
14315 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
14317 goto nla_put_failure;
14318 for (i = 0; i < req->n_ssids; i++) {
14319 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
14320 goto nla_put_failure;
14322 nla_nest_end(msg, nest);
14324 nest = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
14326 goto nla_put_failure;
14327 for (i = 0; i < req->n_channels; i++) {
14328 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
14329 goto nla_put_failure;
14331 nla_nest_end(msg, nest);
14334 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
14335 goto nla_put_failure;
14338 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
14339 goto nla_put_failure;
14341 if (req->info.scan_start_tsf &&
14342 (nla_put_u64_64bit(msg, NL80211_ATTR_SCAN_START_TIME_TSF,
14343 req->info.scan_start_tsf, NL80211_BSS_PAD) ||
14344 nla_put(msg, NL80211_ATTR_SCAN_START_TIME_TSF_BSSID, ETH_ALEN,
14345 req->info.tsf_bssid)))
14346 goto nla_put_failure;
14353 static int nl80211_prep_scan_msg(struct sk_buff *msg,
14354 struct cfg80211_registered_device *rdev,
14355 struct wireless_dev *wdev,
14356 u32 portid, u32 seq, int flags,
14361 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
14365 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14366 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14367 wdev->netdev->ifindex)) ||
14368 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14370 goto nla_put_failure;
14372 /* ignore errors and send incomplete event anyway */
14373 nl80211_add_scan_req(msg, rdev);
14375 genlmsg_end(msg, hdr);
14379 genlmsg_cancel(msg, hdr);
14384 nl80211_prep_sched_scan_msg(struct sk_buff *msg,
14385 struct cfg80211_sched_scan_request *req, u32 cmd)
14389 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14393 if (nla_put_u32(msg, NL80211_ATTR_WIPHY,
14394 wiphy_to_rdev(req->wiphy)->wiphy_idx) ||
14395 nla_put_u32(msg, NL80211_ATTR_IFINDEX, req->dev->ifindex) ||
14396 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, req->reqid,
14398 goto nla_put_failure;
14400 genlmsg_end(msg, hdr);
14404 genlmsg_cancel(msg, hdr);
14408 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
14409 struct wireless_dev *wdev)
14411 struct sk_buff *msg;
14413 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14417 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14418 NL80211_CMD_TRIGGER_SCAN) < 0) {
14423 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14424 NL80211_MCGRP_SCAN, GFP_KERNEL);
14427 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
14428 struct wireless_dev *wdev, bool aborted)
14430 struct sk_buff *msg;
14432 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14436 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14437 aborted ? NL80211_CMD_SCAN_ABORTED :
14438 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
14446 /* send message created by nl80211_build_scan_msg() */
14447 void nl80211_send_scan_msg(struct cfg80211_registered_device *rdev,
14448 struct sk_buff *msg)
14453 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14454 NL80211_MCGRP_SCAN, GFP_KERNEL);
14457 void nl80211_send_sched_scan(struct cfg80211_sched_scan_request *req, u32 cmd)
14459 struct sk_buff *msg;
14461 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14465 if (nl80211_prep_sched_scan_msg(msg, req, cmd) < 0) {
14470 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(req->wiphy), msg, 0,
14471 NL80211_MCGRP_SCAN, GFP_KERNEL);
14474 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
14475 struct regulatory_request *request)
14477 /* Userspace can always count this one always being set */
14478 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
14479 goto nla_put_failure;
14481 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
14482 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14483 NL80211_REGDOM_TYPE_WORLD))
14484 goto nla_put_failure;
14485 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
14486 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14487 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
14488 goto nla_put_failure;
14489 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
14490 request->intersect) {
14491 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14492 NL80211_REGDOM_TYPE_INTERSECTION))
14493 goto nla_put_failure;
14495 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
14496 NL80211_REGDOM_TYPE_COUNTRY) ||
14497 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
14499 goto nla_put_failure;
14502 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
14503 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
14506 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
14507 goto nla_put_failure;
14510 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
14511 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
14512 goto nla_put_failure;
14522 * This can happen on global regulatory changes or device specific settings
14523 * based on custom regulatory domains.
14525 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
14526 struct regulatory_request *request)
14528 struct sk_buff *msg;
14531 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14535 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
14541 if (nl80211_reg_change_event_fill(msg, request) == false)
14542 goto nla_put_failure;
14544 genlmsg_end(msg, hdr);
14547 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
14548 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
14557 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
14558 struct net_device *netdev,
14559 const u8 *buf, size_t len,
14560 enum nl80211_commands cmd, gfp_t gfp,
14561 int uapsd_queues, const u8 *req_ies,
14562 size_t req_ies_len)
14564 struct sk_buff *msg;
14567 msg = nlmsg_new(100 + len + req_ies_len, gfp);
14571 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14577 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14578 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14579 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
14581 nla_put(msg, NL80211_ATTR_REQ_IE, req_ies_len, req_ies)))
14582 goto nla_put_failure;
14584 if (uapsd_queues >= 0) {
14585 struct nlattr *nla_wmm =
14586 nla_nest_start(msg, NL80211_ATTR_STA_WME);
14588 goto nla_put_failure;
14590 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
14592 goto nla_put_failure;
14594 nla_nest_end(msg, nla_wmm);
14597 genlmsg_end(msg, hdr);
14599 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14600 NL80211_MCGRP_MLME, gfp);
14607 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
14608 struct net_device *netdev, const u8 *buf,
14609 size_t len, gfp_t gfp)
14611 nl80211_send_mlme_event(rdev, netdev, buf, len,
14612 NL80211_CMD_AUTHENTICATE, gfp, -1, NULL, 0);
14615 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
14616 struct net_device *netdev, const u8 *buf,
14617 size_t len, gfp_t gfp, int uapsd_queues,
14618 const u8 *req_ies, size_t req_ies_len)
14620 nl80211_send_mlme_event(rdev, netdev, buf, len,
14621 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues,
14622 req_ies, req_ies_len);
14625 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
14626 struct net_device *netdev, const u8 *buf,
14627 size_t len, gfp_t gfp)
14629 nl80211_send_mlme_event(rdev, netdev, buf, len,
14630 NL80211_CMD_DEAUTHENTICATE, gfp, -1, NULL, 0);
14633 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
14634 struct net_device *netdev, const u8 *buf,
14635 size_t len, gfp_t gfp)
14637 nl80211_send_mlme_event(rdev, netdev, buf, len,
14638 NL80211_CMD_DISASSOCIATE, gfp, -1, NULL, 0);
14641 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
14644 struct wireless_dev *wdev = dev->ieee80211_ptr;
14645 struct wiphy *wiphy = wdev->wiphy;
14646 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
14647 const struct ieee80211_mgmt *mgmt = (void *)buf;
14650 if (WARN_ON(len < 2))
14653 if (ieee80211_is_deauth(mgmt->frame_control))
14654 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
14656 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
14658 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
14659 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1,
14662 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
14664 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
14665 struct net_device *netdev, int cmd,
14666 const u8 *addr, gfp_t gfp)
14668 struct sk_buff *msg;
14671 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14675 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14681 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14682 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14683 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14684 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
14685 goto nla_put_failure;
14687 genlmsg_end(msg, hdr);
14689 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14690 NL80211_MCGRP_MLME, gfp);
14697 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
14698 struct net_device *netdev, const u8 *addr,
14701 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
14705 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
14706 struct net_device *netdev, const u8 *addr,
14709 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
14713 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
14714 struct net_device *netdev,
14715 struct cfg80211_connect_resp_params *cr,
14718 struct sk_buff *msg;
14721 msg = nlmsg_new(100 + cr->req_ie_len + cr->resp_ie_len +
14722 cr->fils.kek_len + cr->fils.pmk_len +
14723 (cr->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
14727 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
14733 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14734 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14736 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, cr->bssid)) ||
14737 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE,
14738 cr->status < 0 ? WLAN_STATUS_UNSPECIFIED_FAILURE :
14741 (nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
14742 nla_put_u32(msg, NL80211_ATTR_TIMEOUT_REASON,
14743 cr->timeout_reason))) ||
14745 nla_put(msg, NL80211_ATTR_REQ_IE, cr->req_ie_len, cr->req_ie)) ||
14747 nla_put(msg, NL80211_ATTR_RESP_IE, cr->resp_ie_len,
14749 (cr->fils.update_erp_next_seq_num &&
14750 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
14751 cr->fils.erp_next_seq_num)) ||
14752 (cr->status == WLAN_STATUS_SUCCESS &&
14754 nla_put(msg, NL80211_ATTR_FILS_KEK, cr->fils.kek_len,
14757 nla_put(msg, NL80211_ATTR_PMK, cr->fils.pmk_len, cr->fils.pmk)) ||
14759 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, cr->fils.pmkid)))))
14760 goto nla_put_failure;
14762 genlmsg_end(msg, hdr);
14764 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14765 NL80211_MCGRP_MLME, gfp);
14772 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
14773 struct net_device *netdev,
14774 struct cfg80211_roam_info *info, gfp_t gfp)
14776 struct sk_buff *msg;
14778 const u8 *bssid = info->bss ? info->bss->bssid : info->bssid;
14780 msg = nlmsg_new(100 + info->req_ie_len + info->resp_ie_len +
14781 info->fils.kek_len + info->fils.pmk_len +
14782 (info->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
14786 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
14792 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14793 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14794 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
14796 nla_put(msg, NL80211_ATTR_REQ_IE, info->req_ie_len,
14799 nla_put(msg, NL80211_ATTR_RESP_IE, info->resp_ie_len,
14801 (info->fils.update_erp_next_seq_num &&
14802 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
14803 info->fils.erp_next_seq_num)) ||
14805 nla_put(msg, NL80211_ATTR_FILS_KEK, info->fils.kek_len,
14806 info->fils.kek)) ||
14808 nla_put(msg, NL80211_ATTR_PMK, info->fils.pmk_len, info->fils.pmk)) ||
14809 (info->fils.pmkid &&
14810 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, info->fils.pmkid)))
14811 goto nla_put_failure;
14813 genlmsg_end(msg, hdr);
14815 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14816 NL80211_MCGRP_MLME, gfp);
14823 void nl80211_send_port_authorized(struct cfg80211_registered_device *rdev,
14824 struct net_device *netdev, const u8 *bssid)
14826 struct sk_buff *msg;
14829 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14833 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PORT_AUTHORIZED);
14839 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
14840 goto nla_put_failure;
14842 genlmsg_end(msg, hdr);
14844 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14845 NL80211_MCGRP_MLME, GFP_KERNEL);
14852 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
14853 struct net_device *netdev, u16 reason,
14854 const u8 *ie, size_t ie_len, bool from_ap)
14856 struct sk_buff *msg;
14859 msg = nlmsg_new(100 + ie_len, GFP_KERNEL);
14863 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
14869 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14870 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14872 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
14874 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
14875 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
14876 goto nla_put_failure;
14878 genlmsg_end(msg, hdr);
14880 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14881 NL80211_MCGRP_MLME, GFP_KERNEL);
14888 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
14889 struct net_device *netdev, const u8 *bssid,
14892 struct sk_buff *msg;
14895 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14899 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
14905 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14906 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14907 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
14908 goto nla_put_failure;
14910 genlmsg_end(msg, hdr);
14912 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14913 NL80211_MCGRP_MLME, gfp);
14920 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
14921 const u8 *ie, u8 ie_len,
14922 int sig_dbm, gfp_t gfp)
14924 struct wireless_dev *wdev = dev->ieee80211_ptr;
14925 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
14926 struct sk_buff *msg;
14929 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
14932 trace_cfg80211_notify_new_peer_candidate(dev, addr);
14934 msg = nlmsg_new(100 + ie_len, gfp);
14938 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
14944 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14945 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
14946 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
14948 nla_put(msg, NL80211_ATTR_IE, ie_len, ie)) ||
14950 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)))
14951 goto nla_put_failure;
14953 genlmsg_end(msg, hdr);
14955 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14956 NL80211_MCGRP_MLME, gfp);
14962 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
14964 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
14965 struct net_device *netdev, const u8 *addr,
14966 enum nl80211_key_type key_type, int key_id,
14967 const u8 *tsc, gfp_t gfp)
14969 struct sk_buff *msg;
14972 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
14976 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
14982 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14983 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
14984 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
14985 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
14987 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
14988 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
14989 goto nla_put_failure;
14991 genlmsg_end(msg, hdr);
14993 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14994 NL80211_MCGRP_MLME, gfp);
15001 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
15002 struct ieee80211_channel *channel_before,
15003 struct ieee80211_channel *channel_after)
15005 struct sk_buff *msg;
15007 struct nlattr *nl_freq;
15009 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
15013 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
15020 * Since we are applying the beacon hint to a wiphy we know its
15021 * wiphy_idx is valid
15023 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
15024 goto nla_put_failure;
15027 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_BEFORE);
15029 goto nla_put_failure;
15031 if (nl80211_msg_put_channel(msg, wiphy, channel_before, false))
15032 goto nla_put_failure;
15033 nla_nest_end(msg, nl_freq);
15036 nl_freq = nla_nest_start(msg, NL80211_ATTR_FREQ_AFTER);
15038 goto nla_put_failure;
15040 if (nl80211_msg_put_channel(msg, wiphy, channel_after, false))
15041 goto nla_put_failure;
15042 nla_nest_end(msg, nl_freq);
15044 genlmsg_end(msg, hdr);
15047 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
15048 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
15057 static void nl80211_send_remain_on_chan_event(
15058 int cmd, struct cfg80211_registered_device *rdev,
15059 struct wireless_dev *wdev, u64 cookie,
15060 struct ieee80211_channel *chan,
15061 unsigned int duration, gfp_t gfp)
15063 struct sk_buff *msg;
15066 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15070 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15076 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15077 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15078 wdev->netdev->ifindex)) ||
15079 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15080 NL80211_ATTR_PAD) ||
15081 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
15082 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
15083 NL80211_CHAN_NO_HT) ||
15084 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15086 goto nla_put_failure;
15088 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
15089 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
15090 goto nla_put_failure;
15092 genlmsg_end(msg, hdr);
15094 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15095 NL80211_MCGRP_MLME, gfp);
15102 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
15103 struct ieee80211_channel *chan,
15104 unsigned int duration, gfp_t gfp)
15106 struct wiphy *wiphy = wdev->wiphy;
15107 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15109 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
15110 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
15111 rdev, wdev, cookie, chan,
15114 EXPORT_SYMBOL(cfg80211_ready_on_channel);
15116 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
15117 struct ieee80211_channel *chan,
15120 struct wiphy *wiphy = wdev->wiphy;
15121 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15123 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
15124 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
15125 rdev, wdev, cookie, chan, 0, gfp);
15127 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
15129 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
15130 struct station_info *sinfo, gfp_t gfp)
15132 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15133 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15134 struct sk_buff *msg;
15136 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
15138 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15142 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION, 0, 0, 0,
15143 rdev, dev, mac_addr, sinfo) < 0) {
15148 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15149 NL80211_MCGRP_MLME, gfp);
15151 EXPORT_SYMBOL(cfg80211_new_sta);
15153 void cfg80211_del_sta_sinfo(struct net_device *dev, const u8 *mac_addr,
15154 struct station_info *sinfo, gfp_t gfp)
15156 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15157 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15158 struct sk_buff *msg;
15159 struct station_info empty_sinfo = {};
15162 sinfo = &empty_sinfo;
15164 trace_cfg80211_del_sta(dev, mac_addr);
15166 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15168 cfg80211_sinfo_release_content(sinfo);
15172 if (nl80211_send_station(msg, NL80211_CMD_DEL_STATION, 0, 0, 0,
15173 rdev, dev, mac_addr, sinfo) < 0) {
15178 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15179 NL80211_MCGRP_MLME, gfp);
15181 EXPORT_SYMBOL(cfg80211_del_sta_sinfo);
15183 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
15184 enum nl80211_connect_failed_reason reason,
15187 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15188 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15189 struct sk_buff *msg;
15192 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
15196 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
15202 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15203 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
15204 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
15205 goto nla_put_failure;
15207 genlmsg_end(msg, hdr);
15209 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15210 NL80211_MCGRP_MLME, gfp);
15216 EXPORT_SYMBOL(cfg80211_conn_failed);
15218 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
15219 const u8 *addr, gfp_t gfp)
15221 struct wireless_dev *wdev = dev->ieee80211_ptr;
15222 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15223 struct sk_buff *msg;
15225 u32 nlportid = READ_ONCE(wdev->ap_unexpected_nlportid);
15230 msg = nlmsg_new(100, gfp);
15234 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15240 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15241 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15242 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
15243 goto nla_put_failure;
15245 genlmsg_end(msg, hdr);
15246 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15254 bool cfg80211_rx_spurious_frame(struct net_device *dev,
15255 const u8 *addr, gfp_t gfp)
15257 struct wireless_dev *wdev = dev->ieee80211_ptr;
15260 trace_cfg80211_rx_spurious_frame(dev, addr);
15262 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15263 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
15264 trace_cfg80211_return_bool(false);
15267 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
15269 trace_cfg80211_return_bool(ret);
15272 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
15274 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
15275 const u8 *addr, gfp_t gfp)
15277 struct wireless_dev *wdev = dev->ieee80211_ptr;
15280 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
15282 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15283 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
15284 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
15285 trace_cfg80211_return_bool(false);
15288 ret = __nl80211_unexpected_frame(dev,
15289 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
15291 trace_cfg80211_return_bool(ret);
15294 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
15296 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
15297 struct wireless_dev *wdev, u32 nlportid,
15298 int freq, int sig_dbm,
15299 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
15301 struct net_device *netdev = wdev->netdev;
15302 struct sk_buff *msg;
15305 msg = nlmsg_new(100 + len, gfp);
15309 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15315 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15316 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15317 netdev->ifindex)) ||
15318 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15319 NL80211_ATTR_PAD) ||
15320 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
15322 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15323 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15325 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
15326 goto nla_put_failure;
15328 genlmsg_end(msg, hdr);
15330 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15337 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
15338 const u8 *buf, size_t len, bool ack, gfp_t gfp)
15340 struct wiphy *wiphy = wdev->wiphy;
15341 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15342 struct net_device *netdev = wdev->netdev;
15343 struct sk_buff *msg;
15346 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
15348 msg = nlmsg_new(100 + len, gfp);
15352 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
15358 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15359 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15360 netdev->ifindex)) ||
15361 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15362 NL80211_ATTR_PAD) ||
15363 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15364 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15365 NL80211_ATTR_PAD) ||
15366 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
15367 goto nla_put_failure;
15369 genlmsg_end(msg, hdr);
15371 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15372 NL80211_MCGRP_MLME, gfp);
15378 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
15380 static int __nl80211_rx_control_port(struct net_device *dev,
15381 struct sk_buff *skb,
15382 bool unencrypted, gfp_t gfp)
15384 struct wireless_dev *wdev = dev->ieee80211_ptr;
15385 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15386 struct ethhdr *ehdr = eth_hdr(skb);
15387 const u8 *addr = ehdr->h_source;
15388 u16 proto = be16_to_cpu(skb->protocol);
15389 struct sk_buff *msg;
15391 struct nlattr *frame;
15393 u32 nlportid = READ_ONCE(wdev->conn_owner_nlportid);
15398 msg = nlmsg_new(100 + skb->len, gfp);
15402 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONTROL_PORT_FRAME);
15408 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15409 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15410 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15411 NL80211_ATTR_PAD) ||
15412 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15413 nla_put_u16(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE, proto) ||
15414 (unencrypted && nla_put_flag(msg,
15415 NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT)))
15416 goto nla_put_failure;
15418 frame = nla_reserve(msg, NL80211_ATTR_FRAME, skb->len);
15420 goto nla_put_failure;
15422 skb_copy_bits(skb, 0, nla_data(frame), skb->len);
15423 genlmsg_end(msg, hdr);
15425 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15432 bool cfg80211_rx_control_port(struct net_device *dev,
15433 struct sk_buff *skb, bool unencrypted)
15437 trace_cfg80211_rx_control_port(dev, skb, unencrypted);
15438 ret = __nl80211_rx_control_port(dev, skb, unencrypted, GFP_ATOMIC);
15439 trace_cfg80211_return_bool(ret == 0);
15442 EXPORT_SYMBOL(cfg80211_rx_control_port);
15444 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
15445 const char *mac, gfp_t gfp)
15447 struct wireless_dev *wdev = dev->ieee80211_ptr;
15448 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15449 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15455 cb = (void **)msg->cb;
15457 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
15463 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15464 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15465 goto nla_put_failure;
15467 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15468 goto nla_put_failure;
15470 cb[1] = nla_nest_start(msg, NL80211_ATTR_CQM);
15472 goto nla_put_failure;
15482 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
15484 void **cb = (void **)msg->cb;
15485 struct cfg80211_registered_device *rdev = cb[2];
15487 nla_nest_end(msg, cb[1]);
15488 genlmsg_end(msg, cb[0]);
15490 memset(msg->cb, 0, sizeof(msg->cb));
15492 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15493 NL80211_MCGRP_MLME, gfp);
15496 void cfg80211_cqm_rssi_notify(struct net_device *dev,
15497 enum nl80211_cqm_rssi_threshold_event rssi_event,
15498 s32 rssi_level, gfp_t gfp)
15500 struct sk_buff *msg;
15501 struct wireless_dev *wdev = dev->ieee80211_ptr;
15502 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15504 trace_cfg80211_cqm_rssi_notify(dev, rssi_event, rssi_level);
15506 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
15507 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
15510 if (wdev->cqm_config) {
15511 wdev->cqm_config->last_rssi_event_value = rssi_level;
15513 cfg80211_cqm_rssi_update(rdev, dev);
15515 if (rssi_level == 0)
15516 rssi_level = wdev->cqm_config->last_rssi_event_value;
15519 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15523 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
15525 goto nla_put_failure;
15527 if (rssi_level && nla_put_s32(msg, NL80211_ATTR_CQM_RSSI_LEVEL,
15529 goto nla_put_failure;
15531 cfg80211_send_cqm(msg, gfp);
15538 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
15540 void cfg80211_cqm_txe_notify(struct net_device *dev,
15541 const u8 *peer, u32 num_packets,
15542 u32 rate, u32 intvl, gfp_t gfp)
15544 struct sk_buff *msg;
15546 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15550 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
15551 goto nla_put_failure;
15553 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
15554 goto nla_put_failure;
15556 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
15557 goto nla_put_failure;
15559 cfg80211_send_cqm(msg, gfp);
15565 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
15567 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
15568 const u8 *peer, u32 num_packets, gfp_t gfp)
15570 struct sk_buff *msg;
15572 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
15574 msg = cfg80211_prepare_cqm(dev, peer, gfp);
15578 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
15579 goto nla_put_failure;
15581 cfg80211_send_cqm(msg, gfp);
15587 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
15589 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
15591 struct sk_buff *msg;
15593 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
15597 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
15598 goto nla_put_failure;
15600 cfg80211_send_cqm(msg, gfp);
15606 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
15608 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
15609 struct net_device *netdev, const u8 *bssid,
15610 const u8 *replay_ctr, gfp_t gfp)
15612 struct sk_buff *msg;
15613 struct nlattr *rekey_attr;
15616 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15620 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
15626 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15627 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15628 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15629 goto nla_put_failure;
15631 rekey_attr = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
15633 goto nla_put_failure;
15635 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
15636 NL80211_REPLAY_CTR_LEN, replay_ctr))
15637 goto nla_put_failure;
15639 nla_nest_end(msg, rekey_attr);
15641 genlmsg_end(msg, hdr);
15643 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15644 NL80211_MCGRP_MLME, gfp);
15651 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
15652 const u8 *replay_ctr, gfp_t gfp)
15654 struct wireless_dev *wdev = dev->ieee80211_ptr;
15655 struct wiphy *wiphy = wdev->wiphy;
15656 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15658 trace_cfg80211_gtk_rekey_notify(dev, bssid);
15659 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
15661 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
15664 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
15665 struct net_device *netdev, int index,
15666 const u8 *bssid, bool preauth, gfp_t gfp)
15668 struct sk_buff *msg;
15669 struct nlattr *attr;
15672 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15676 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
15682 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15683 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15684 goto nla_put_failure;
15686 attr = nla_nest_start(msg, NL80211_ATTR_PMKSA_CANDIDATE);
15688 goto nla_put_failure;
15690 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
15691 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
15693 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
15694 goto nla_put_failure;
15696 nla_nest_end(msg, attr);
15698 genlmsg_end(msg, hdr);
15700 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15701 NL80211_MCGRP_MLME, gfp);
15708 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
15709 const u8 *bssid, bool preauth, gfp_t gfp)
15711 struct wireless_dev *wdev = dev->ieee80211_ptr;
15712 struct wiphy *wiphy = wdev->wiphy;
15713 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15715 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
15716 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
15718 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
15720 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
15721 struct net_device *netdev,
15722 struct cfg80211_chan_def *chandef,
15724 enum nl80211_commands notif,
15727 struct sk_buff *msg;
15730 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15734 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
15740 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
15741 goto nla_put_failure;
15743 if (nl80211_send_chandef(msg, chandef))
15744 goto nla_put_failure;
15746 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
15747 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
15748 goto nla_put_failure;
15750 genlmsg_end(msg, hdr);
15752 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15753 NL80211_MCGRP_MLME, gfp);
15760 void cfg80211_ch_switch_notify(struct net_device *dev,
15761 struct cfg80211_chan_def *chandef)
15763 struct wireless_dev *wdev = dev->ieee80211_ptr;
15764 struct wiphy *wiphy = wdev->wiphy;
15765 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15767 ASSERT_WDEV_LOCK(wdev);
15769 trace_cfg80211_ch_switch_notify(dev, chandef);
15771 wdev->chandef = *chandef;
15772 wdev->preset_chandef = *chandef;
15774 if (wdev->iftype == NL80211_IFTYPE_STATION &&
15775 !WARN_ON(!wdev->current_bss))
15776 wdev->current_bss->pub.channel = chandef->chan;
15778 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
15779 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
15781 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
15783 void cfg80211_ch_switch_started_notify(struct net_device *dev,
15784 struct cfg80211_chan_def *chandef,
15787 struct wireless_dev *wdev = dev->ieee80211_ptr;
15788 struct wiphy *wiphy = wdev->wiphy;
15789 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15791 trace_cfg80211_ch_switch_started_notify(dev, chandef);
15793 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
15794 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
15796 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
15799 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
15800 const struct cfg80211_chan_def *chandef,
15801 enum nl80211_radar_event event,
15802 struct net_device *netdev, gfp_t gfp)
15804 struct sk_buff *msg;
15807 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15811 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
15817 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
15818 goto nla_put_failure;
15820 /* NOP and radar events don't need a netdev parameter */
15822 struct wireless_dev *wdev = netdev->ieee80211_ptr;
15824 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15825 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15827 goto nla_put_failure;
15830 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
15831 goto nla_put_failure;
15833 if (nl80211_send_chandef(msg, chandef))
15834 goto nla_put_failure;
15836 genlmsg_end(msg, hdr);
15838 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15839 NL80211_MCGRP_MLME, gfp);
15846 void cfg80211_sta_opmode_change_notify(struct net_device *dev, const u8 *mac,
15847 struct sta_opmode_info *sta_opmode,
15850 struct sk_buff *msg;
15851 struct wireless_dev *wdev = dev->ieee80211_ptr;
15852 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15858 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15862 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STA_OPMODE_CHANGED);
15868 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
15869 goto nla_put_failure;
15871 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
15872 goto nla_put_failure;
15874 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
15875 goto nla_put_failure;
15877 if ((sta_opmode->changed & STA_OPMODE_SMPS_MODE_CHANGED) &&
15878 nla_put_u8(msg, NL80211_ATTR_SMPS_MODE, sta_opmode->smps_mode))
15879 goto nla_put_failure;
15881 if ((sta_opmode->changed & STA_OPMODE_MAX_BW_CHANGED) &&
15882 nla_put_u8(msg, NL80211_ATTR_CHANNEL_WIDTH, sta_opmode->bw))
15883 goto nla_put_failure;
15885 if ((sta_opmode->changed & STA_OPMODE_N_SS_CHANGED) &&
15886 nla_put_u8(msg, NL80211_ATTR_NSS, sta_opmode->rx_nss))
15887 goto nla_put_failure;
15889 genlmsg_end(msg, hdr);
15891 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15892 NL80211_MCGRP_MLME, gfp);
15899 EXPORT_SYMBOL(cfg80211_sta_opmode_change_notify);
15901 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
15902 u64 cookie, bool acked, s32 ack_signal,
15903 bool is_valid_ack_signal, gfp_t gfp)
15905 struct wireless_dev *wdev = dev->ieee80211_ptr;
15906 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15907 struct sk_buff *msg;
15910 trace_cfg80211_probe_status(dev, addr, cookie, acked);
15912 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15917 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
15923 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15924 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15925 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15926 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15927 NL80211_ATTR_PAD) ||
15928 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)) ||
15929 (is_valid_ack_signal && nla_put_s32(msg, NL80211_ATTR_ACK_SIGNAL,
15931 goto nla_put_failure;
15933 genlmsg_end(msg, hdr);
15935 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15936 NL80211_MCGRP_MLME, gfp);
15942 EXPORT_SYMBOL(cfg80211_probe_status);
15944 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
15945 const u8 *frame, size_t len,
15946 int freq, int sig_dbm)
15948 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15949 struct sk_buff *msg;
15951 struct cfg80211_beacon_registration *reg;
15953 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
15955 spin_lock_bh(&rdev->beacon_registrations_lock);
15956 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
15957 msg = nlmsg_new(len + 100, GFP_ATOMIC);
15959 spin_unlock_bh(&rdev->beacon_registrations_lock);
15963 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15965 goto nla_put_failure;
15967 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15969 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
15971 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15972 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
15973 goto nla_put_failure;
15975 genlmsg_end(msg, hdr);
15977 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
15979 spin_unlock_bh(&rdev->beacon_registrations_lock);
15983 spin_unlock_bh(&rdev->beacon_registrations_lock);
15986 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
15989 static int cfg80211_net_detect_results(struct sk_buff *msg,
15990 struct cfg80211_wowlan_wakeup *wakeup)
15992 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
15993 struct nlattr *nl_results, *nl_match, *nl_freqs;
15996 nl_results = nla_nest_start(
15997 msg, NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
16001 for (i = 0; i < nd->n_matches; i++) {
16002 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
16004 nl_match = nla_nest_start(msg, i);
16008 /* The SSID attribute is optional in nl80211, but for
16009 * simplicity reasons it's always present in the
16010 * cfg80211 structure. If a driver can't pass the
16011 * SSID, that needs to be changed. A zero length SSID
16012 * is still a valid SSID (wildcard), so it cannot be
16013 * used for this purpose.
16015 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
16016 match->ssid.ssid)) {
16017 nla_nest_cancel(msg, nl_match);
16021 if (match->n_channels) {
16022 nl_freqs = nla_nest_start(
16023 msg, NL80211_ATTR_SCAN_FREQUENCIES);
16025 nla_nest_cancel(msg, nl_match);
16029 for (j = 0; j < match->n_channels; j++) {
16030 if (nla_put_u32(msg, j, match->channels[j])) {
16031 nla_nest_cancel(msg, nl_freqs);
16032 nla_nest_cancel(msg, nl_match);
16037 nla_nest_end(msg, nl_freqs);
16040 nla_nest_end(msg, nl_match);
16044 nla_nest_end(msg, nl_results);
16048 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
16049 struct cfg80211_wowlan_wakeup *wakeup,
16052 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16053 struct sk_buff *msg;
16057 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
16060 size += wakeup->packet_present_len;
16062 msg = nlmsg_new(size, gfp);
16066 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
16070 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16071 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16075 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
16076 wdev->netdev->ifindex))
16080 struct nlattr *reasons;
16082 reasons = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
16086 if (wakeup->disconnect &&
16087 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
16089 if (wakeup->magic_pkt &&
16090 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
16092 if (wakeup->gtk_rekey_failure &&
16093 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
16095 if (wakeup->eap_identity_req &&
16096 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
16098 if (wakeup->four_way_handshake &&
16099 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
16101 if (wakeup->rfkill_release &&
16102 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
16105 if (wakeup->pattern_idx >= 0 &&
16106 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
16107 wakeup->pattern_idx))
16110 if (wakeup->tcp_match &&
16111 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
16114 if (wakeup->tcp_connlost &&
16115 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
16118 if (wakeup->tcp_nomoretokens &&
16120 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
16123 if (wakeup->packet) {
16124 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
16125 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
16127 if (!wakeup->packet_80211) {
16129 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
16131 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
16134 if (wakeup->packet_len &&
16135 nla_put_u32(msg, len_attr, wakeup->packet_len))
16138 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
16143 if (wakeup->net_detect &&
16144 cfg80211_net_detect_results(msg, wakeup))
16147 nla_nest_end(msg, reasons);
16150 genlmsg_end(msg, hdr);
16152 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16153 NL80211_MCGRP_MLME, gfp);
16159 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
16162 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
16163 enum nl80211_tdls_operation oper,
16164 u16 reason_code, gfp_t gfp)
16166 struct wireless_dev *wdev = dev->ieee80211_ptr;
16167 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16168 struct sk_buff *msg;
16171 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
16174 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16178 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
16184 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16185 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16186 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
16187 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
16188 (reason_code > 0 &&
16189 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
16190 goto nla_put_failure;
16192 genlmsg_end(msg, hdr);
16194 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16195 NL80211_MCGRP_MLME, gfp);
16201 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
16203 static int nl80211_netlink_notify(struct notifier_block * nb,
16204 unsigned long state,
16207 struct netlink_notify *notify = _notify;
16208 struct cfg80211_registered_device *rdev;
16209 struct wireless_dev *wdev;
16210 struct cfg80211_beacon_registration *reg, *tmp;
16212 if (state != NETLINK_URELEASE || notify->protocol != NETLINK_GENERIC)
16213 return NOTIFY_DONE;
16217 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
16218 struct cfg80211_sched_scan_request *sched_scan_req;
16220 list_for_each_entry_rcu(sched_scan_req,
16221 &rdev->sched_scan_req_list,
16223 if (sched_scan_req->owner_nlportid == notify->portid) {
16224 sched_scan_req->nl_owner_dead = true;
16225 schedule_work(&rdev->sched_scan_stop_wk);
16229 list_for_each_entry_rcu(wdev, &rdev->wiphy.wdev_list, list) {
16230 cfg80211_mlme_unregister_socket(wdev, notify->portid);
16232 if (wdev->owner_nlportid == notify->portid) {
16233 wdev->nl_owner_dead = true;
16234 schedule_work(&rdev->destroy_work);
16235 } else if (wdev->conn_owner_nlportid == notify->portid) {
16236 schedule_work(&wdev->disconnect_wk);
16239 cfg80211_release_pmsr(wdev, notify->portid);
16242 spin_lock_bh(&rdev->beacon_registrations_lock);
16243 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
16245 if (reg->nlportid == notify->portid) {
16246 list_del(®->list);
16251 spin_unlock_bh(&rdev->beacon_registrations_lock);
16257 * It is possible that the user space process that is controlling the
16258 * indoor setting disappeared, so notify the regulatory core.
16260 regulatory_netlink_notify(notify->portid);
16264 static struct notifier_block nl80211_netlink_notifier = {
16265 .notifier_call = nl80211_netlink_notify,
16268 void cfg80211_ft_event(struct net_device *netdev,
16269 struct cfg80211_ft_event_params *ft_event)
16271 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16272 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16273 struct sk_buff *msg;
16276 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
16278 if (!ft_event->target_ap)
16281 msg = nlmsg_new(100 + ft_event->ies_len + ft_event->ric_ies_len,
16286 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
16290 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16291 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16292 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
16295 if (ft_event->ies &&
16296 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
16298 if (ft_event->ric_ies &&
16299 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
16300 ft_event->ric_ies))
16303 genlmsg_end(msg, hdr);
16305 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16306 NL80211_MCGRP_MLME, GFP_KERNEL);
16311 EXPORT_SYMBOL(cfg80211_ft_event);
16313 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
16315 struct cfg80211_registered_device *rdev;
16316 struct sk_buff *msg;
16320 rdev = wiphy_to_rdev(wdev->wiphy);
16321 if (!rdev->crit_proto_nlportid)
16324 nlportid = rdev->crit_proto_nlportid;
16325 rdev->crit_proto_nlportid = 0;
16327 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16331 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
16333 goto nla_put_failure;
16335 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16336 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16338 goto nla_put_failure;
16340 genlmsg_end(msg, hdr);
16342 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
16348 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
16350 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
16352 struct wiphy *wiphy = wdev->wiphy;
16353 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16354 struct sk_buff *msg;
16357 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
16361 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
16365 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16366 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
16367 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16371 genlmsg_end(msg, hdr);
16373 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
16374 NL80211_MCGRP_MLME, GFP_KERNEL);
16380 int cfg80211_external_auth_request(struct net_device *dev,
16381 struct cfg80211_external_auth_params *params,
16384 struct wireless_dev *wdev = dev->ieee80211_ptr;
16385 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16386 struct sk_buff *msg;
16389 if (!wdev->conn_owner_nlportid)
16392 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16396 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_EXTERNAL_AUTH);
16398 goto nla_put_failure;
16400 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16401 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16402 nla_put_u32(msg, NL80211_ATTR_AKM_SUITES, params->key_mgmt_suite) ||
16403 nla_put_u32(msg, NL80211_ATTR_EXTERNAL_AUTH_ACTION,
16405 nla_put(msg, NL80211_ATTR_BSSID, ETH_ALEN, params->bssid) ||
16406 nla_put(msg, NL80211_ATTR_SSID, params->ssid.ssid_len,
16407 params->ssid.ssid))
16408 goto nla_put_failure;
16410 genlmsg_end(msg, hdr);
16411 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
16412 wdev->conn_owner_nlportid);
16419 EXPORT_SYMBOL(cfg80211_external_auth_request);
16421 void cfg80211_update_owe_info_event(struct net_device *netdev,
16422 struct cfg80211_update_owe_info *owe_info,
16425 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16426 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16427 struct sk_buff *msg;
16430 trace_cfg80211_update_owe_info_event(wiphy, netdev, owe_info);
16432 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16436 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_UPDATE_OWE_INFO);
16438 goto nla_put_failure;
16440 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16441 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16442 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, owe_info->peer))
16443 goto nla_put_failure;
16445 if (!owe_info->ie_len ||
16446 nla_put(msg, NL80211_ATTR_IE, owe_info->ie_len, owe_info->ie))
16447 goto nla_put_failure;
16449 genlmsg_end(msg, hdr);
16451 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16452 NL80211_MCGRP_MLME, gfp);
16456 genlmsg_cancel(msg, hdr);
16459 EXPORT_SYMBOL(cfg80211_update_owe_info_event);
16461 /* initialisation/exit functions */
16463 int __init nl80211_init(void)
16467 err = genl_register_family(&nl80211_fam);
16471 err = netlink_register_notifier(&nl80211_netlink_notifier);
16477 genl_unregister_family(&nl80211_fam);
16481 void nl80211_exit(void)
16483 netlink_unregister_notifier(&nl80211_netlink_notifier);
16484 genl_unregister_family(&nl80211_fam);
projects / linux.git / blob