1 // SPDX-License-Identifier: GPL-2.0-only
3 * This is the new netlink-based wireless configuration interface.
5 * Copyright 2006-2010 Johannes Berg <johannes@sipsolutions.net>
6 * Copyright 2013-2014 Intel Mobile Communications GmbH
7 * Copyright 2015-2017 Intel Deutschland GmbH
8 * Copyright (C) 2018-2019 Intel Corporation
12 #include <linux/module.h>
13 #include <linux/err.h>
14 #include <linux/slab.h>
15 #include <linux/list.h>
16 #include <linux/if_ether.h>
17 #include <linux/ieee80211.h>
18 #include <linux/nl80211.h>
19 #include <linux/rtnetlink.h>
20 #include <linux/netlink.h>
21 #include <linux/nospec.h>
22 #include <linux/etherdevice.h>
23 #include <linux/if_vlan.h>
24 #include <net/net_namespace.h>
25 #include <net/genetlink.h>
26 #include <net/cfg80211.h>
28 #include <net/inet_connection_sock.h>
34 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
35 struct genl_info *info,
36 struct cfg80211_crypto_settings *settings,
39 /* the netlink family */
40 static struct genl_family nl80211_fam;
42 /* multicast groups */
43 enum nl80211_multicast_groups {
46 NL80211_MCGRP_REGULATORY,
50 NL80211_MCGRP_TESTMODE /* keep last - ifdef! */
53 static const struct genl_multicast_group nl80211_mcgrps[] = {
54 [NL80211_MCGRP_CONFIG] = { .name = NL80211_MULTICAST_GROUP_CONFIG },
55 [NL80211_MCGRP_SCAN] = { .name = NL80211_MULTICAST_GROUP_SCAN },
56 [NL80211_MCGRP_REGULATORY] = { .name = NL80211_MULTICAST_GROUP_REG },
57 [NL80211_MCGRP_MLME] = { .name = NL80211_MULTICAST_GROUP_MLME },
58 [NL80211_MCGRP_VENDOR] = { .name = NL80211_MULTICAST_GROUP_VENDOR },
59 [NL80211_MCGRP_NAN] = { .name = NL80211_MULTICAST_GROUP_NAN },
60 #ifdef CONFIG_NL80211_TESTMODE
61 [NL80211_MCGRP_TESTMODE] = { .name = NL80211_MULTICAST_GROUP_TESTMODE }
65 /* returns ERR_PTR values */
66 static struct wireless_dev *
67 __cfg80211_wdev_from_attrs(struct net *netns, struct nlattr **attrs)
69 struct cfg80211_registered_device *rdev;
70 struct wireless_dev *result = NULL;
71 bool have_ifidx = attrs[NL80211_ATTR_IFINDEX];
72 bool have_wdev_id = attrs[NL80211_ATTR_WDEV];
79 if (!have_ifidx && !have_wdev_id)
80 return ERR_PTR(-EINVAL);
83 ifidx = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
85 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
86 wiphy_idx = wdev_id >> 32;
89 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
90 struct wireless_dev *wdev;
92 if (wiphy_net(&rdev->wiphy) != netns)
95 if (have_wdev_id && rdev->wiphy_idx != wiphy_idx)
98 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
99 if (have_ifidx && wdev->netdev &&
100 wdev->netdev->ifindex == ifidx) {
104 if (have_wdev_id && wdev->identifier == (u32)wdev_id) {
116 return ERR_PTR(-ENODEV);
119 static struct cfg80211_registered_device *
120 __cfg80211_rdev_from_attrs(struct net *netns, struct nlattr **attrs)
122 struct cfg80211_registered_device *rdev = NULL, *tmp;
123 struct net_device *netdev;
127 if (!attrs[NL80211_ATTR_WIPHY] &&
128 !attrs[NL80211_ATTR_IFINDEX] &&
129 !attrs[NL80211_ATTR_WDEV])
130 return ERR_PTR(-EINVAL);
132 if (attrs[NL80211_ATTR_WIPHY])
133 rdev = cfg80211_rdev_by_wiphy_idx(
134 nla_get_u32(attrs[NL80211_ATTR_WIPHY]));
136 if (attrs[NL80211_ATTR_WDEV]) {
137 u64 wdev_id = nla_get_u64(attrs[NL80211_ATTR_WDEV]);
138 struct wireless_dev *wdev;
141 tmp = cfg80211_rdev_by_wiphy_idx(wdev_id >> 32);
143 /* make sure wdev exists */
144 list_for_each_entry(wdev, &tmp->wiphy.wdev_list, list) {
145 if (wdev->identifier != (u32)wdev_id)
154 if (rdev && tmp != rdev)
155 return ERR_PTR(-EINVAL);
160 if (attrs[NL80211_ATTR_IFINDEX]) {
161 int ifindex = nla_get_u32(attrs[NL80211_ATTR_IFINDEX]);
163 netdev = __dev_get_by_index(netns, ifindex);
165 if (netdev->ieee80211_ptr)
167 netdev->ieee80211_ptr->wiphy);
171 /* not wireless device -- return error */
173 return ERR_PTR(-EINVAL);
175 /* mismatch -- return error */
176 if (rdev && tmp != rdev)
177 return ERR_PTR(-EINVAL);
184 return ERR_PTR(-ENODEV);
186 if (netns != wiphy_net(&rdev->wiphy))
187 return ERR_PTR(-ENODEV);
193 * This function returns a pointer to the driver
194 * that the genl_info item that is passed refers to.
196 * The result of this can be a PTR_ERR and hence must
197 * be checked with IS_ERR() for errors.
199 static struct cfg80211_registered_device *
200 cfg80211_get_dev_from_info(struct net *netns, struct genl_info *info)
202 return __cfg80211_rdev_from_attrs(netns, info->attrs);
205 static int validate_beacon_head(const struct nlattr *attr,
206 struct netlink_ext_ack *extack)
208 const u8 *data = nla_data(attr);
209 unsigned int len = nla_len(attr);
210 const struct element *elem;
211 const struct ieee80211_mgmt *mgmt = (void *)data;
212 unsigned int fixedlen = offsetof(struct ieee80211_mgmt,
218 if (ieee80211_hdrlen(mgmt->frame_control) !=
219 offsetof(struct ieee80211_mgmt, u.beacon))
225 for_each_element(elem, data, len) {
229 if (for_each_element_completed(elem, data, len))
233 NL_SET_ERR_MSG_ATTR(extack, attr, "malformed beacon head");
237 static int validate_ie_attr(const struct nlattr *attr,
238 struct netlink_ext_ack *extack)
240 const u8 *data = nla_data(attr);
241 unsigned int len = nla_len(attr);
242 const struct element *elem;
244 for_each_element(elem, data, len) {
248 if (for_each_element_completed(elem, data, len))
251 NL_SET_ERR_MSG_ATTR(extack, attr, "malformed information elements");
255 /* policy for the attributes */
256 static const struct nla_policy
257 nl80211_ftm_responder_policy[NL80211_FTM_RESP_ATTR_MAX + 1] = {
258 [NL80211_FTM_RESP_ATTR_ENABLED] = { .type = NLA_FLAG, },
259 [NL80211_FTM_RESP_ATTR_LCI] = { .type = NLA_BINARY,
261 [NL80211_FTM_RESP_ATTR_CIVICLOC] = { .type = NLA_BINARY,
265 static const struct nla_policy
266 nl80211_pmsr_ftm_req_attr_policy[NL80211_PMSR_FTM_REQ_ATTR_MAX + 1] = {
267 [NL80211_PMSR_FTM_REQ_ATTR_ASAP] = { .type = NLA_FLAG },
268 [NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE] = { .type = NLA_U32 },
269 [NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP] =
270 NLA_POLICY_MAX(NLA_U8, 15),
271 [NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD] = { .type = NLA_U16 },
272 [NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION] =
273 NLA_POLICY_MAX(NLA_U8, 15),
274 [NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST] =
275 NLA_POLICY_MAX(NLA_U8, 31),
276 [NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES] = { .type = NLA_U8 },
277 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI] = { .type = NLA_FLAG },
278 [NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC] = { .type = NLA_FLAG },
281 static const struct nla_policy
282 nl80211_pmsr_req_data_policy[NL80211_PMSR_TYPE_MAX + 1] = {
283 [NL80211_PMSR_TYPE_FTM] =
284 NLA_POLICY_NESTED(nl80211_pmsr_ftm_req_attr_policy),
287 static const struct nla_policy
288 nl80211_pmsr_req_attr_policy[NL80211_PMSR_REQ_ATTR_MAX + 1] = {
289 [NL80211_PMSR_REQ_ATTR_DATA] =
290 NLA_POLICY_NESTED(nl80211_pmsr_req_data_policy),
291 [NL80211_PMSR_REQ_ATTR_GET_AP_TSF] = { .type = NLA_FLAG },
294 static const struct nla_policy
295 nl80211_psmr_peer_attr_policy[NL80211_PMSR_PEER_ATTR_MAX + 1] = {
296 [NL80211_PMSR_PEER_ATTR_ADDR] = NLA_POLICY_ETH_ADDR,
298 * we could specify this again to be the top-level policy,
299 * but that would open us up to recursion problems ...
301 [NL80211_PMSR_PEER_ATTR_CHAN] = { .type = NLA_NESTED },
302 [NL80211_PMSR_PEER_ATTR_REQ] =
303 NLA_POLICY_NESTED(nl80211_pmsr_req_attr_policy),
304 [NL80211_PMSR_PEER_ATTR_RESP] = { .type = NLA_REJECT },
307 static const struct nla_policy
308 nl80211_pmsr_attr_policy[NL80211_PMSR_ATTR_MAX + 1] = {
309 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_REJECT },
310 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_REJECT },
311 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_REJECT },
312 [NL80211_PMSR_ATTR_TYPE_CAPA] = { .type = NLA_REJECT },
313 [NL80211_PMSR_ATTR_PEERS] =
314 NLA_POLICY_NESTED_ARRAY(nl80211_psmr_peer_attr_policy),
317 static const struct nla_policy
318 he_obss_pd_policy[NL80211_HE_OBSS_PD_ATTR_MAX + 1] = {
319 [NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET] =
320 NLA_POLICY_RANGE(NLA_U8, 1, 20),
321 [NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET] =
322 NLA_POLICY_RANGE(NLA_U8, 1, 20),
325 const struct nla_policy nl80211_policy[NUM_NL80211_ATTR] = {
326 [0] = { .strict_start_type = NL80211_ATTR_HE_OBSS_PD },
327 [NL80211_ATTR_WIPHY] = { .type = NLA_U32 },
328 [NL80211_ATTR_WIPHY_NAME] = { .type = NLA_NUL_STRING,
330 [NL80211_ATTR_WIPHY_TXQ_PARAMS] = { .type = NLA_NESTED },
332 [NL80211_ATTR_WIPHY_FREQ] = { .type = NLA_U32 },
333 [NL80211_ATTR_WIPHY_CHANNEL_TYPE] = { .type = NLA_U32 },
334 [NL80211_ATTR_WIPHY_EDMG_CHANNELS] = NLA_POLICY_RANGE(NLA_U8,
335 NL80211_EDMG_CHANNELS_MIN,
336 NL80211_EDMG_CHANNELS_MAX),
337 [NL80211_ATTR_WIPHY_EDMG_BW_CONFIG] = NLA_POLICY_RANGE(NLA_U8,
338 NL80211_EDMG_BW_CONFIG_MIN,
339 NL80211_EDMG_BW_CONFIG_MAX),
341 [NL80211_ATTR_CHANNEL_WIDTH] = { .type = NLA_U32 },
342 [NL80211_ATTR_CENTER_FREQ1] = { .type = NLA_U32 },
343 [NL80211_ATTR_CENTER_FREQ2] = { .type = NLA_U32 },
345 [NL80211_ATTR_WIPHY_RETRY_SHORT] = NLA_POLICY_MIN(NLA_U8, 1),
346 [NL80211_ATTR_WIPHY_RETRY_LONG] = NLA_POLICY_MIN(NLA_U8, 1),
347 [NL80211_ATTR_WIPHY_FRAG_THRESHOLD] = { .type = NLA_U32 },
348 [NL80211_ATTR_WIPHY_RTS_THRESHOLD] = { .type = NLA_U32 },
349 [NL80211_ATTR_WIPHY_COVERAGE_CLASS] = { .type = NLA_U8 },
350 [NL80211_ATTR_WIPHY_DYN_ACK] = { .type = NLA_FLAG },
352 [NL80211_ATTR_IFTYPE] = NLA_POLICY_MAX(NLA_U32, NL80211_IFTYPE_MAX),
353 [NL80211_ATTR_IFINDEX] = { .type = NLA_U32 },
354 [NL80211_ATTR_IFNAME] = { .type = NLA_NUL_STRING, .len = IFNAMSIZ-1 },
356 [NL80211_ATTR_MAC] = { .type = NLA_EXACT_LEN_WARN, .len = ETH_ALEN },
357 [NL80211_ATTR_PREV_BSSID] = {
358 .type = NLA_EXACT_LEN_WARN,
362 [NL80211_ATTR_KEY] = { .type = NLA_NESTED, },
363 [NL80211_ATTR_KEY_DATA] = { .type = NLA_BINARY,
364 .len = WLAN_MAX_KEY_LEN },
365 [NL80211_ATTR_KEY_IDX] = NLA_POLICY_MAX(NLA_U8, 5),
366 [NL80211_ATTR_KEY_CIPHER] = { .type = NLA_U32 },
367 [NL80211_ATTR_KEY_DEFAULT] = { .type = NLA_FLAG },
368 [NL80211_ATTR_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
369 [NL80211_ATTR_KEY_TYPE] =
370 NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES),
372 [NL80211_ATTR_BEACON_INTERVAL] = { .type = NLA_U32 },
373 [NL80211_ATTR_DTIM_PERIOD] = { .type = NLA_U32 },
374 [NL80211_ATTR_BEACON_HEAD] =
375 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_beacon_head,
376 IEEE80211_MAX_DATA_LEN),
377 [NL80211_ATTR_BEACON_TAIL] =
378 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
379 IEEE80211_MAX_DATA_LEN),
380 [NL80211_ATTR_STA_AID] =
381 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
382 [NL80211_ATTR_STA_FLAGS] = { .type = NLA_NESTED },
383 [NL80211_ATTR_STA_LISTEN_INTERVAL] = { .type = NLA_U16 },
384 [NL80211_ATTR_STA_SUPPORTED_RATES] = { .type = NLA_BINARY,
385 .len = NL80211_MAX_SUPP_RATES },
386 [NL80211_ATTR_STA_PLINK_ACTION] =
387 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_ACTIONS - 1),
388 [NL80211_ATTR_STA_TX_POWER_SETTING] =
389 NLA_POLICY_RANGE(NLA_U8,
390 NL80211_TX_POWER_AUTOMATIC,
391 NL80211_TX_POWER_FIXED),
392 [NL80211_ATTR_STA_TX_POWER] = { .type = NLA_S16 },
393 [NL80211_ATTR_STA_VLAN] = { .type = NLA_U32 },
394 [NL80211_ATTR_MNTR_FLAGS] = { /* NLA_NESTED can't be empty */ },
395 [NL80211_ATTR_MESH_ID] = { .type = NLA_BINARY,
396 .len = IEEE80211_MAX_MESH_ID_LEN },
397 [NL80211_ATTR_MPATH_NEXT_HOP] = NLA_POLICY_ETH_ADDR_COMPAT,
399 [NL80211_ATTR_REG_ALPHA2] = { .type = NLA_STRING, .len = 2 },
400 [NL80211_ATTR_REG_RULES] = { .type = NLA_NESTED },
402 [NL80211_ATTR_BSS_CTS_PROT] = { .type = NLA_U8 },
403 [NL80211_ATTR_BSS_SHORT_PREAMBLE] = { .type = NLA_U8 },
404 [NL80211_ATTR_BSS_SHORT_SLOT_TIME] = { .type = NLA_U8 },
405 [NL80211_ATTR_BSS_BASIC_RATES] = { .type = NLA_BINARY,
406 .len = NL80211_MAX_SUPP_RATES },
407 [NL80211_ATTR_BSS_HT_OPMODE] = { .type = NLA_U16 },
409 [NL80211_ATTR_MESH_CONFIG] = { .type = NLA_NESTED },
410 [NL80211_ATTR_SUPPORT_MESH_AUTH] = { .type = NLA_FLAG },
412 [NL80211_ATTR_HT_CAPABILITY] = {
413 .type = NLA_EXACT_LEN_WARN,
414 .len = NL80211_HT_CAPABILITY_LEN
417 [NL80211_ATTR_MGMT_SUBTYPE] = { .type = NLA_U8 },
418 [NL80211_ATTR_IE] = NLA_POLICY_VALIDATE_FN(NLA_BINARY,
420 IEEE80211_MAX_DATA_LEN),
421 [NL80211_ATTR_SCAN_FREQUENCIES] = { .type = NLA_NESTED },
422 [NL80211_ATTR_SCAN_SSIDS] = { .type = NLA_NESTED },
424 [NL80211_ATTR_SSID] = { .type = NLA_BINARY,
425 .len = IEEE80211_MAX_SSID_LEN },
426 [NL80211_ATTR_AUTH_TYPE] = { .type = NLA_U32 },
427 [NL80211_ATTR_REASON_CODE] = { .type = NLA_U16 },
428 [NL80211_ATTR_FREQ_FIXED] = { .type = NLA_FLAG },
429 [NL80211_ATTR_TIMED_OUT] = { .type = NLA_FLAG },
430 [NL80211_ATTR_USE_MFP] = NLA_POLICY_RANGE(NLA_U32,
432 NL80211_MFP_OPTIONAL),
433 [NL80211_ATTR_STA_FLAGS2] = {
434 .len = sizeof(struct nl80211_sta_flag_update),
436 [NL80211_ATTR_CONTROL_PORT] = { .type = NLA_FLAG },
437 [NL80211_ATTR_CONTROL_PORT_ETHERTYPE] = { .type = NLA_U16 },
438 [NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT] = { .type = NLA_FLAG },
439 [NL80211_ATTR_CONTROL_PORT_OVER_NL80211] = { .type = NLA_FLAG },
440 [NL80211_ATTR_PRIVACY] = { .type = NLA_FLAG },
441 [NL80211_ATTR_STATUS_CODE] = { .type = NLA_U16 },
442 [NL80211_ATTR_CIPHER_SUITE_GROUP] = { .type = NLA_U32 },
443 [NL80211_ATTR_WPA_VERSIONS] = { .type = NLA_U32 },
444 [NL80211_ATTR_PID] = { .type = NLA_U32 },
445 [NL80211_ATTR_4ADDR] = { .type = NLA_U8 },
446 [NL80211_ATTR_PMKID] = {
447 .type = NLA_EXACT_LEN_WARN,
448 .len = WLAN_PMKID_LEN
450 [NL80211_ATTR_DURATION] = { .type = NLA_U32 },
451 [NL80211_ATTR_COOKIE] = { .type = NLA_U64 },
452 [NL80211_ATTR_TX_RATES] = { .type = NLA_NESTED },
453 [NL80211_ATTR_FRAME] = { .type = NLA_BINARY,
454 .len = IEEE80211_MAX_DATA_LEN },
455 [NL80211_ATTR_FRAME_MATCH] = { .type = NLA_BINARY, },
456 [NL80211_ATTR_PS_STATE] = NLA_POLICY_RANGE(NLA_U32,
459 [NL80211_ATTR_CQM] = { .type = NLA_NESTED, },
460 [NL80211_ATTR_LOCAL_STATE_CHANGE] = { .type = NLA_FLAG },
461 [NL80211_ATTR_AP_ISOLATE] = { .type = NLA_U8 },
462 [NL80211_ATTR_WIPHY_TX_POWER_SETTING] = { .type = NLA_U32 },
463 [NL80211_ATTR_WIPHY_TX_POWER_LEVEL] = { .type = NLA_U32 },
464 [NL80211_ATTR_FRAME_TYPE] = { .type = NLA_U16 },
465 [NL80211_ATTR_WIPHY_ANTENNA_TX] = { .type = NLA_U32 },
466 [NL80211_ATTR_WIPHY_ANTENNA_RX] = { .type = NLA_U32 },
467 [NL80211_ATTR_MCAST_RATE] = { .type = NLA_U32 },
468 [NL80211_ATTR_OFFCHANNEL_TX_OK] = { .type = NLA_FLAG },
469 [NL80211_ATTR_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
470 [NL80211_ATTR_WOWLAN_TRIGGERS] = { .type = NLA_NESTED },
471 [NL80211_ATTR_STA_PLINK_STATE] =
472 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_PLINK_STATES - 1),
473 [NL80211_ATTR_MEASUREMENT_DURATION] = { .type = NLA_U16 },
474 [NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY] = { .type = NLA_FLAG },
475 [NL80211_ATTR_MESH_PEER_AID] =
476 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
477 [NL80211_ATTR_SCHED_SCAN_INTERVAL] = { .type = NLA_U32 },
478 [NL80211_ATTR_REKEY_DATA] = { .type = NLA_NESTED },
479 [NL80211_ATTR_SCAN_SUPP_RATES] = { .type = NLA_NESTED },
480 [NL80211_ATTR_HIDDEN_SSID] =
481 NLA_POLICY_RANGE(NLA_U32,
482 NL80211_HIDDEN_SSID_NOT_IN_USE,
483 NL80211_HIDDEN_SSID_ZERO_CONTENTS),
484 [NL80211_ATTR_IE_PROBE_RESP] =
485 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
486 IEEE80211_MAX_DATA_LEN),
487 [NL80211_ATTR_IE_ASSOC_RESP] =
488 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
489 IEEE80211_MAX_DATA_LEN),
490 [NL80211_ATTR_ROAM_SUPPORT] = { .type = NLA_FLAG },
491 [NL80211_ATTR_SCHED_SCAN_MATCH] = { .type = NLA_NESTED },
492 [NL80211_ATTR_TX_NO_CCK_RATE] = { .type = NLA_FLAG },
493 [NL80211_ATTR_TDLS_ACTION] = { .type = NLA_U8 },
494 [NL80211_ATTR_TDLS_DIALOG_TOKEN] = { .type = NLA_U8 },
495 [NL80211_ATTR_TDLS_OPERATION] = { .type = NLA_U8 },
496 [NL80211_ATTR_TDLS_SUPPORT] = { .type = NLA_FLAG },
497 [NL80211_ATTR_TDLS_EXTERNAL_SETUP] = { .type = NLA_FLAG },
498 [NL80211_ATTR_TDLS_INITIATOR] = { .type = NLA_FLAG },
499 [NL80211_ATTR_DONT_WAIT_FOR_ACK] = { .type = NLA_FLAG },
500 [NL80211_ATTR_PROBE_RESP] = { .type = NLA_BINARY,
501 .len = IEEE80211_MAX_DATA_LEN },
502 [NL80211_ATTR_DFS_REGION] = { .type = NLA_U8 },
503 [NL80211_ATTR_DISABLE_HT] = { .type = NLA_FLAG },
504 [NL80211_ATTR_HT_CAPABILITY_MASK] = {
505 .len = NL80211_HT_CAPABILITY_LEN
507 [NL80211_ATTR_NOACK_MAP] = { .type = NLA_U16 },
508 [NL80211_ATTR_INACTIVITY_TIMEOUT] = { .type = NLA_U16 },
509 [NL80211_ATTR_BG_SCAN_PERIOD] = { .type = NLA_U16 },
510 [NL80211_ATTR_WDEV] = { .type = NLA_U64 },
511 [NL80211_ATTR_USER_REG_HINT_TYPE] = { .type = NLA_U32 },
512 [NL80211_ATTR_AUTH_DATA] = { .type = NLA_BINARY, },
513 [NL80211_ATTR_VHT_CAPABILITY] = {
514 .type = NLA_EXACT_LEN_WARN,
515 .len = NL80211_VHT_CAPABILITY_LEN
517 [NL80211_ATTR_SCAN_FLAGS] = { .type = NLA_U32 },
518 [NL80211_ATTR_P2P_CTWINDOW] = NLA_POLICY_MAX(NLA_U8, 127),
519 [NL80211_ATTR_P2P_OPPPS] = NLA_POLICY_MAX(NLA_U8, 1),
520 [NL80211_ATTR_LOCAL_MESH_POWER_MODE] =
521 NLA_POLICY_RANGE(NLA_U32,
522 NL80211_MESH_POWER_UNKNOWN + 1,
523 NL80211_MESH_POWER_MAX),
524 [NL80211_ATTR_ACL_POLICY] = {. type = NLA_U32 },
525 [NL80211_ATTR_MAC_ADDRS] = { .type = NLA_NESTED },
526 [NL80211_ATTR_STA_CAPABILITY] = { .type = NLA_U16 },
527 [NL80211_ATTR_STA_EXT_CAPABILITY] = { .type = NLA_BINARY, },
528 [NL80211_ATTR_SPLIT_WIPHY_DUMP] = { .type = NLA_FLAG, },
529 [NL80211_ATTR_DISABLE_VHT] = { .type = NLA_FLAG },
530 [NL80211_ATTR_VHT_CAPABILITY_MASK] = {
531 .len = NL80211_VHT_CAPABILITY_LEN,
533 [NL80211_ATTR_MDID] = { .type = NLA_U16 },
534 [NL80211_ATTR_IE_RIC] = { .type = NLA_BINARY,
535 .len = IEEE80211_MAX_DATA_LEN },
536 [NL80211_ATTR_CRIT_PROT_ID] = { .type = NLA_U16 },
537 [NL80211_ATTR_MAX_CRIT_PROT_DURATION] = { .type = NLA_U16 },
538 [NL80211_ATTR_PEER_AID] =
539 NLA_POLICY_RANGE(NLA_U16, 1, IEEE80211_MAX_AID),
540 [NL80211_ATTR_CH_SWITCH_COUNT] = { .type = NLA_U32 },
541 [NL80211_ATTR_CH_SWITCH_BLOCK_TX] = { .type = NLA_FLAG },
542 [NL80211_ATTR_CSA_IES] = { .type = NLA_NESTED },
543 [NL80211_ATTR_CSA_C_OFF_BEACON] = { .type = NLA_BINARY },
544 [NL80211_ATTR_CSA_C_OFF_PRESP] = { .type = NLA_BINARY },
545 [NL80211_ATTR_STA_SUPPORTED_CHANNELS] = { .type = NLA_BINARY },
546 [NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES] = { .type = NLA_BINARY },
547 [NL80211_ATTR_HANDLE_DFS] = { .type = NLA_FLAG },
548 [NL80211_ATTR_OPMODE_NOTIF] = { .type = NLA_U8 },
549 [NL80211_ATTR_VENDOR_ID] = { .type = NLA_U32 },
550 [NL80211_ATTR_VENDOR_SUBCMD] = { .type = NLA_U32 },
551 [NL80211_ATTR_VENDOR_DATA] = { .type = NLA_BINARY },
552 [NL80211_ATTR_QOS_MAP] = { .type = NLA_BINARY,
553 .len = IEEE80211_QOS_MAP_LEN_MAX },
554 [NL80211_ATTR_MAC_HINT] = {
555 .type = NLA_EXACT_LEN_WARN,
558 [NL80211_ATTR_WIPHY_FREQ_HINT] = { .type = NLA_U32 },
559 [NL80211_ATTR_TDLS_PEER_CAPABILITY] = { .type = NLA_U32 },
560 [NL80211_ATTR_SOCKET_OWNER] = { .type = NLA_FLAG },
561 [NL80211_ATTR_CSA_C_OFFSETS_TX] = { .type = NLA_BINARY },
562 [NL80211_ATTR_USE_RRM] = { .type = NLA_FLAG },
563 [NL80211_ATTR_TSID] = NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_TIDS - 1),
564 [NL80211_ATTR_USER_PRIO] =
565 NLA_POLICY_MAX(NLA_U8, IEEE80211_NUM_UPS - 1),
566 [NL80211_ATTR_ADMITTED_TIME] = { .type = NLA_U16 },
567 [NL80211_ATTR_SMPS_MODE] = { .type = NLA_U8 },
568 [NL80211_ATTR_OPER_CLASS] = { .type = NLA_U8 },
569 [NL80211_ATTR_MAC_MASK] = {
570 .type = NLA_EXACT_LEN_WARN,
573 [NL80211_ATTR_WIPHY_SELF_MANAGED_REG] = { .type = NLA_FLAG },
574 [NL80211_ATTR_NETNS_FD] = { .type = NLA_U32 },
575 [NL80211_ATTR_SCHED_SCAN_DELAY] = { .type = NLA_U32 },
576 [NL80211_ATTR_REG_INDOOR] = { .type = NLA_FLAG },
577 [NL80211_ATTR_PBSS] = { .type = NLA_FLAG },
578 [NL80211_ATTR_BSS_SELECT] = { .type = NLA_NESTED },
579 [NL80211_ATTR_STA_SUPPORT_P2P_PS] =
580 NLA_POLICY_MAX(NLA_U8, NUM_NL80211_P2P_PS_STATUS - 1),
581 [NL80211_ATTR_MU_MIMO_GROUP_DATA] = {
582 .len = VHT_MUMIMO_GROUPS_DATA_LEN
584 [NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR] = {
585 .type = NLA_EXACT_LEN_WARN,
588 [NL80211_ATTR_NAN_MASTER_PREF] = NLA_POLICY_MIN(NLA_U8, 1),
589 [NL80211_ATTR_BANDS] = { .type = NLA_U32 },
590 [NL80211_ATTR_NAN_FUNC] = { .type = NLA_NESTED },
591 [NL80211_ATTR_FILS_KEK] = { .type = NLA_BINARY,
592 .len = FILS_MAX_KEK_LEN },
593 [NL80211_ATTR_FILS_NONCES] = {
594 .type = NLA_EXACT_LEN_WARN,
595 .len = 2 * FILS_NONCE_LEN
597 [NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED] = { .type = NLA_FLAG, },
598 [NL80211_ATTR_BSSID] = { .type = NLA_EXACT_LEN_WARN, .len = ETH_ALEN },
599 [NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] = { .type = NLA_S8 },
600 [NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST] = {
601 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
603 [NL80211_ATTR_TIMEOUT_REASON] = { .type = NLA_U32 },
604 [NL80211_ATTR_FILS_ERP_USERNAME] = { .type = NLA_BINARY,
605 .len = FILS_ERP_MAX_USERNAME_LEN },
606 [NL80211_ATTR_FILS_ERP_REALM] = { .type = NLA_BINARY,
607 .len = FILS_ERP_MAX_REALM_LEN },
608 [NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] = { .type = NLA_U16 },
609 [NL80211_ATTR_FILS_ERP_RRK] = { .type = NLA_BINARY,
610 .len = FILS_ERP_MAX_RRK_LEN },
611 [NL80211_ATTR_FILS_CACHE_ID] = { .type = NLA_EXACT_LEN_WARN, .len = 2 },
612 [NL80211_ATTR_PMK] = { .type = NLA_BINARY, .len = PMK_MAX_LEN },
613 [NL80211_ATTR_SCHED_SCAN_MULTI] = { .type = NLA_FLAG },
614 [NL80211_ATTR_EXTERNAL_AUTH_SUPPORT] = { .type = NLA_FLAG },
616 [NL80211_ATTR_TXQ_LIMIT] = { .type = NLA_U32 },
617 [NL80211_ATTR_TXQ_MEMORY_LIMIT] = { .type = NLA_U32 },
618 [NL80211_ATTR_TXQ_QUANTUM] = { .type = NLA_U32 },
619 [NL80211_ATTR_HE_CAPABILITY] = { .type = NLA_BINARY,
620 .len = NL80211_HE_MAX_CAPABILITY_LEN },
622 [NL80211_ATTR_FTM_RESPONDER] = {
624 .validation_data = nl80211_ftm_responder_policy,
626 [NL80211_ATTR_TIMEOUT] = NLA_POLICY_MIN(NLA_U32, 1),
627 [NL80211_ATTR_PEER_MEASUREMENTS] =
628 NLA_POLICY_NESTED(nl80211_pmsr_attr_policy),
629 [NL80211_ATTR_AIRTIME_WEIGHT] = NLA_POLICY_MIN(NLA_U16, 1),
630 [NL80211_ATTR_SAE_PASSWORD] = { .type = NLA_BINARY,
631 .len = SAE_PASSWORD_MAX_LEN },
632 [NL80211_ATTR_TWT_RESPONDER] = { .type = NLA_FLAG },
633 [NL80211_ATTR_HE_OBSS_PD] = NLA_POLICY_NESTED(he_obss_pd_policy),
634 [NL80211_ATTR_VLAN_ID] = NLA_POLICY_RANGE(NLA_U16, 1, VLAN_N_VID - 2),
637 /* policy for the key attributes */
638 static const struct nla_policy nl80211_key_policy[NL80211_KEY_MAX + 1] = {
639 [NL80211_KEY_DATA] = { .type = NLA_BINARY, .len = WLAN_MAX_KEY_LEN },
640 [NL80211_KEY_IDX] = { .type = NLA_U8 },
641 [NL80211_KEY_CIPHER] = { .type = NLA_U32 },
642 [NL80211_KEY_SEQ] = { .type = NLA_BINARY, .len = 16 },
643 [NL80211_KEY_DEFAULT] = { .type = NLA_FLAG },
644 [NL80211_KEY_DEFAULT_MGMT] = { .type = NLA_FLAG },
645 [NL80211_KEY_TYPE] = NLA_POLICY_MAX(NLA_U32, NUM_NL80211_KEYTYPES - 1),
646 [NL80211_KEY_DEFAULT_TYPES] = { .type = NLA_NESTED },
647 [NL80211_KEY_MODE] = NLA_POLICY_RANGE(NLA_U8, 0, NL80211_KEY_SET_TX),
650 /* policy for the key default flags */
651 static const struct nla_policy
652 nl80211_key_default_policy[NUM_NL80211_KEY_DEFAULT_TYPES] = {
653 [NL80211_KEY_DEFAULT_TYPE_UNICAST] = { .type = NLA_FLAG },
654 [NL80211_KEY_DEFAULT_TYPE_MULTICAST] = { .type = NLA_FLAG },
658 /* policy for WoWLAN attributes */
659 static const struct nla_policy
660 nl80211_wowlan_policy[NUM_NL80211_WOWLAN_TRIG] = {
661 [NL80211_WOWLAN_TRIG_ANY] = { .type = NLA_FLAG },
662 [NL80211_WOWLAN_TRIG_DISCONNECT] = { .type = NLA_FLAG },
663 [NL80211_WOWLAN_TRIG_MAGIC_PKT] = { .type = NLA_FLAG },
664 [NL80211_WOWLAN_TRIG_PKT_PATTERN] = { .type = NLA_NESTED },
665 [NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE] = { .type = NLA_FLAG },
666 [NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST] = { .type = NLA_FLAG },
667 [NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE] = { .type = NLA_FLAG },
668 [NL80211_WOWLAN_TRIG_RFKILL_RELEASE] = { .type = NLA_FLAG },
669 [NL80211_WOWLAN_TRIG_TCP_CONNECTION] = { .type = NLA_NESTED },
670 [NL80211_WOWLAN_TRIG_NET_DETECT] = { .type = NLA_NESTED },
673 static const struct nla_policy
674 nl80211_wowlan_tcp_policy[NUM_NL80211_WOWLAN_TCP] = {
675 [NL80211_WOWLAN_TCP_SRC_IPV4] = { .type = NLA_U32 },
676 [NL80211_WOWLAN_TCP_DST_IPV4] = { .type = NLA_U32 },
677 [NL80211_WOWLAN_TCP_DST_MAC] = {
678 .type = NLA_EXACT_LEN_WARN,
681 [NL80211_WOWLAN_TCP_SRC_PORT] = { .type = NLA_U16 },
682 [NL80211_WOWLAN_TCP_DST_PORT] = { .type = NLA_U16 },
683 [NL80211_WOWLAN_TCP_DATA_PAYLOAD] = { .type = NLA_MIN_LEN, .len = 1 },
684 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ] = {
685 .len = sizeof(struct nl80211_wowlan_tcp_data_seq)
687 [NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN] = {
688 .len = sizeof(struct nl80211_wowlan_tcp_data_token)
690 [NL80211_WOWLAN_TCP_DATA_INTERVAL] = { .type = NLA_U32 },
691 [NL80211_WOWLAN_TCP_WAKE_PAYLOAD] = { .type = NLA_MIN_LEN, .len = 1 },
692 [NL80211_WOWLAN_TCP_WAKE_MASK] = { .type = NLA_MIN_LEN, .len = 1 },
694 #endif /* CONFIG_PM */
696 /* policy for coalesce rule attributes */
697 static const struct nla_policy
698 nl80211_coalesce_policy[NUM_NL80211_ATTR_COALESCE_RULE] = {
699 [NL80211_ATTR_COALESCE_RULE_DELAY] = { .type = NLA_U32 },
700 [NL80211_ATTR_COALESCE_RULE_CONDITION] =
701 NLA_POLICY_RANGE(NLA_U32,
702 NL80211_COALESCE_CONDITION_MATCH,
703 NL80211_COALESCE_CONDITION_NO_MATCH),
704 [NL80211_ATTR_COALESCE_RULE_PKT_PATTERN] = { .type = NLA_NESTED },
707 /* policy for GTK rekey offload attributes */
708 static const struct nla_policy
709 nl80211_rekey_policy[NUM_NL80211_REKEY_DATA] = {
710 [NL80211_REKEY_DATA_KEK] = {
711 .type = NLA_EXACT_LEN_WARN,
712 .len = NL80211_KEK_LEN,
714 [NL80211_REKEY_DATA_KCK] = {
715 .type = NLA_EXACT_LEN_WARN,
716 .len = NL80211_KCK_LEN,
718 [NL80211_REKEY_DATA_REPLAY_CTR] = {
719 .type = NLA_EXACT_LEN_WARN,
720 .len = NL80211_REPLAY_CTR_LEN
724 static const struct nla_policy
725 nl80211_match_band_rssi_policy[NUM_NL80211_BANDS] = {
726 [NL80211_BAND_2GHZ] = { .type = NLA_S32 },
727 [NL80211_BAND_5GHZ] = { .type = NLA_S32 },
728 [NL80211_BAND_6GHZ] = { .type = NLA_S32 },
729 [NL80211_BAND_60GHZ] = { .type = NLA_S32 },
732 static const struct nla_policy
733 nl80211_match_policy[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1] = {
734 [NL80211_SCHED_SCAN_MATCH_ATTR_SSID] = { .type = NLA_BINARY,
735 .len = IEEE80211_MAX_SSID_LEN },
736 [NL80211_SCHED_SCAN_MATCH_ATTR_BSSID] = {
737 .type = NLA_EXACT_LEN_WARN,
740 [NL80211_SCHED_SCAN_MATCH_ATTR_RSSI] = { .type = NLA_U32 },
741 [NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI] =
742 NLA_POLICY_NESTED(nl80211_match_band_rssi_policy),
745 static const struct nla_policy
746 nl80211_plan_policy[NL80211_SCHED_SCAN_PLAN_MAX + 1] = {
747 [NL80211_SCHED_SCAN_PLAN_INTERVAL] = { .type = NLA_U32 },
748 [NL80211_SCHED_SCAN_PLAN_ITERATIONS] = { .type = NLA_U32 },
751 static const struct nla_policy
752 nl80211_bss_select_policy[NL80211_BSS_SELECT_ATTR_MAX + 1] = {
753 [NL80211_BSS_SELECT_ATTR_RSSI] = { .type = NLA_FLAG },
754 [NL80211_BSS_SELECT_ATTR_BAND_PREF] = { .type = NLA_U32 },
755 [NL80211_BSS_SELECT_ATTR_RSSI_ADJUST] = {
756 .len = sizeof(struct nl80211_bss_select_rssi_adjust)
760 /* policy for NAN function attributes */
761 static const struct nla_policy
762 nl80211_nan_func_policy[NL80211_NAN_FUNC_ATTR_MAX + 1] = {
763 [NL80211_NAN_FUNC_TYPE] = { .type = NLA_U8 },
764 [NL80211_NAN_FUNC_SERVICE_ID] = {
765 .len = NL80211_NAN_FUNC_SERVICE_ID_LEN },
766 [NL80211_NAN_FUNC_PUBLISH_TYPE] = { .type = NLA_U8 },
767 [NL80211_NAN_FUNC_PUBLISH_BCAST] = { .type = NLA_FLAG },
768 [NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE] = { .type = NLA_FLAG },
769 [NL80211_NAN_FUNC_FOLLOW_UP_ID] = { .type = NLA_U8 },
770 [NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] = { .type = NLA_U8 },
771 [NL80211_NAN_FUNC_FOLLOW_UP_DEST] = {
772 .type = NLA_EXACT_LEN_WARN,
775 [NL80211_NAN_FUNC_CLOSE_RANGE] = { .type = NLA_FLAG },
776 [NL80211_NAN_FUNC_TTL] = { .type = NLA_U32 },
777 [NL80211_NAN_FUNC_SERVICE_INFO] = { .type = NLA_BINARY,
778 .len = NL80211_NAN_FUNC_SERVICE_SPEC_INFO_MAX_LEN },
779 [NL80211_NAN_FUNC_SRF] = { .type = NLA_NESTED },
780 [NL80211_NAN_FUNC_RX_MATCH_FILTER] = { .type = NLA_NESTED },
781 [NL80211_NAN_FUNC_TX_MATCH_FILTER] = { .type = NLA_NESTED },
782 [NL80211_NAN_FUNC_INSTANCE_ID] = { .type = NLA_U8 },
783 [NL80211_NAN_FUNC_TERM_REASON] = { .type = NLA_U8 },
786 /* policy for Service Response Filter attributes */
787 static const struct nla_policy
788 nl80211_nan_srf_policy[NL80211_NAN_SRF_ATTR_MAX + 1] = {
789 [NL80211_NAN_SRF_INCLUDE] = { .type = NLA_FLAG },
790 [NL80211_NAN_SRF_BF] = { .type = NLA_BINARY,
791 .len = NL80211_NAN_FUNC_SRF_MAX_LEN },
792 [NL80211_NAN_SRF_BF_IDX] = { .type = NLA_U8 },
793 [NL80211_NAN_SRF_MAC_ADDRS] = { .type = NLA_NESTED },
796 /* policy for packet pattern attributes */
797 static const struct nla_policy
798 nl80211_packet_pattern_policy[MAX_NL80211_PKTPAT + 1] = {
799 [NL80211_PKTPAT_MASK] = { .type = NLA_BINARY, },
800 [NL80211_PKTPAT_PATTERN] = { .type = NLA_BINARY, },
801 [NL80211_PKTPAT_OFFSET] = { .type = NLA_U32 },
804 int nl80211_prepare_wdev_dump(struct netlink_callback *cb,
805 struct cfg80211_registered_device **rdev,
806 struct wireless_dev **wdev)
811 struct nlattr **attrbuf;
813 attrbuf = kcalloc(NUM_NL80211_ATTR, sizeof(*attrbuf),
818 err = nlmsg_parse_deprecated(cb->nlh,
819 GENL_HDRLEN + nl80211_fam.hdrsize,
820 attrbuf, nl80211_fam.maxattr,
821 nl80211_policy, NULL);
827 *wdev = __cfg80211_wdev_from_attrs(sock_net(cb->skb->sk),
831 return PTR_ERR(*wdev);
832 *rdev = wiphy_to_rdev((*wdev)->wiphy);
833 /* 0 is the first index - add 1 to parse only once */
834 cb->args[0] = (*rdev)->wiphy_idx + 1;
835 cb->args[1] = (*wdev)->identifier;
837 /* subtract the 1 again here */
838 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
839 struct wireless_dev *tmp;
843 *rdev = wiphy_to_rdev(wiphy);
846 list_for_each_entry(tmp, &(*rdev)->wiphy.wdev_list, list) {
847 if (tmp->identifier == cb->args[1]) {
860 /* message building helper */
861 void *nl80211hdr_put(struct sk_buff *skb, u32 portid, u32 seq,
864 /* since there is no private header just add the generic one */
865 return genlmsg_put(skb, portid, seq, &nl80211_fam, flags, cmd);
868 static int nl80211_msg_put_wmm_rules(struct sk_buff *msg,
869 const struct ieee80211_reg_rule *rule)
872 struct nlattr *nl_wmm_rules =
873 nla_nest_start_noflag(msg, NL80211_FREQUENCY_ATTR_WMM);
876 goto nla_put_failure;
878 for (j = 0; j < IEEE80211_NUM_ACS; j++) {
879 struct nlattr *nl_wmm_rule = nla_nest_start_noflag(msg, j);
882 goto nla_put_failure;
884 if (nla_put_u16(msg, NL80211_WMMR_CW_MIN,
885 rule->wmm_rule.client[j].cw_min) ||
886 nla_put_u16(msg, NL80211_WMMR_CW_MAX,
887 rule->wmm_rule.client[j].cw_max) ||
888 nla_put_u8(msg, NL80211_WMMR_AIFSN,
889 rule->wmm_rule.client[j].aifsn) ||
890 nla_put_u16(msg, NL80211_WMMR_TXOP,
891 rule->wmm_rule.client[j].cot))
892 goto nla_put_failure;
894 nla_nest_end(msg, nl_wmm_rule);
896 nla_nest_end(msg, nl_wmm_rules);
904 static int nl80211_msg_put_channel(struct sk_buff *msg, struct wiphy *wiphy,
905 struct ieee80211_channel *chan,
908 /* Some channels must be completely excluded from the
909 * list to protect old user-space tools from breaking
911 if (!large && chan->flags &
912 (IEEE80211_CHAN_NO_10MHZ | IEEE80211_CHAN_NO_20MHZ))
915 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_FREQ,
917 goto nla_put_failure;
919 if ((chan->flags & IEEE80211_CHAN_DISABLED) &&
920 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_DISABLED))
921 goto nla_put_failure;
922 if (chan->flags & IEEE80211_CHAN_NO_IR) {
923 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_IR))
924 goto nla_put_failure;
925 if (nla_put_flag(msg, __NL80211_FREQUENCY_ATTR_NO_IBSS))
926 goto nla_put_failure;
928 if (chan->flags & IEEE80211_CHAN_RADAR) {
929 if (nla_put_flag(msg, NL80211_FREQUENCY_ATTR_RADAR))
930 goto nla_put_failure;
934 time = elapsed_jiffies_msecs(chan->dfs_state_entered);
936 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_STATE,
938 goto nla_put_failure;
939 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_DFS_TIME,
941 goto nla_put_failure;
943 NL80211_FREQUENCY_ATTR_DFS_CAC_TIME,
945 goto nla_put_failure;
950 if ((chan->flags & IEEE80211_CHAN_NO_HT40MINUS) &&
951 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_MINUS))
952 goto nla_put_failure;
953 if ((chan->flags & IEEE80211_CHAN_NO_HT40PLUS) &&
954 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_HT40_PLUS))
955 goto nla_put_failure;
956 if ((chan->flags & IEEE80211_CHAN_NO_80MHZ) &&
957 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_80MHZ))
958 goto nla_put_failure;
959 if ((chan->flags & IEEE80211_CHAN_NO_160MHZ) &&
960 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_160MHZ))
961 goto nla_put_failure;
962 if ((chan->flags & IEEE80211_CHAN_INDOOR_ONLY) &&
963 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_INDOOR_ONLY))
964 goto nla_put_failure;
965 if ((chan->flags & IEEE80211_CHAN_IR_CONCURRENT) &&
966 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_IR_CONCURRENT))
967 goto nla_put_failure;
968 if ((chan->flags & IEEE80211_CHAN_NO_20MHZ) &&
969 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_20MHZ))
970 goto nla_put_failure;
971 if ((chan->flags & IEEE80211_CHAN_NO_10MHZ) &&
972 nla_put_flag(msg, NL80211_FREQUENCY_ATTR_NO_10MHZ))
973 goto nla_put_failure;
976 if (nla_put_u32(msg, NL80211_FREQUENCY_ATTR_MAX_TX_POWER,
977 DBM_TO_MBM(chan->max_power)))
978 goto nla_put_failure;
981 const struct ieee80211_reg_rule *rule =
982 freq_reg_info(wiphy, MHZ_TO_KHZ(chan->center_freq));
984 if (!IS_ERR_OR_NULL(rule) && rule->has_wmm) {
985 if (nl80211_msg_put_wmm_rules(msg, rule))
986 goto nla_put_failure;
996 static bool nl80211_put_txq_stats(struct sk_buff *msg,
997 struct cfg80211_txq_stats *txqstats,
1000 struct nlattr *txqattr;
1002 #define PUT_TXQVAL_U32(attr, memb) do { \
1003 if (txqstats->filled & BIT(NL80211_TXQ_STATS_ ## attr) && \
1004 nla_put_u32(msg, NL80211_TXQ_STATS_ ## attr, txqstats->memb)) \
1008 txqattr = nla_nest_start_noflag(msg, attrtype);
1012 PUT_TXQVAL_U32(BACKLOG_BYTES, backlog_bytes);
1013 PUT_TXQVAL_U32(BACKLOG_PACKETS, backlog_packets);
1014 PUT_TXQVAL_U32(FLOWS, flows);
1015 PUT_TXQVAL_U32(DROPS, drops);
1016 PUT_TXQVAL_U32(ECN_MARKS, ecn_marks);
1017 PUT_TXQVAL_U32(OVERLIMIT, overlimit);
1018 PUT_TXQVAL_U32(OVERMEMORY, overmemory);
1019 PUT_TXQVAL_U32(COLLISIONS, collisions);
1020 PUT_TXQVAL_U32(TX_BYTES, tx_bytes);
1021 PUT_TXQVAL_U32(TX_PACKETS, tx_packets);
1022 PUT_TXQVAL_U32(MAX_FLOWS, max_flows);
1023 nla_nest_end(msg, txqattr);
1025 #undef PUT_TXQVAL_U32
1029 /* netlink command implementations */
1032 struct key_params p;
1036 bool def_uni, def_multi;
1039 static int nl80211_parse_key_new(struct genl_info *info, struct nlattr *key,
1040 struct key_parse *k)
1042 struct nlattr *tb[NL80211_KEY_MAX + 1];
1043 int err = nla_parse_nested_deprecated(tb, NL80211_KEY_MAX, key,
1049 k->def = !!tb[NL80211_KEY_DEFAULT];
1050 k->defmgmt = !!tb[NL80211_KEY_DEFAULT_MGMT];
1054 k->def_multi = true;
1057 k->def_multi = true;
1059 if (tb[NL80211_KEY_IDX])
1060 k->idx = nla_get_u8(tb[NL80211_KEY_IDX]);
1062 if (tb[NL80211_KEY_DATA]) {
1063 k->p.key = nla_data(tb[NL80211_KEY_DATA]);
1064 k->p.key_len = nla_len(tb[NL80211_KEY_DATA]);
1067 if (tb[NL80211_KEY_SEQ]) {
1068 k->p.seq = nla_data(tb[NL80211_KEY_SEQ]);
1069 k->p.seq_len = nla_len(tb[NL80211_KEY_SEQ]);
1072 if (tb[NL80211_KEY_CIPHER])
1073 k->p.cipher = nla_get_u32(tb[NL80211_KEY_CIPHER]);
1075 if (tb[NL80211_KEY_TYPE])
1076 k->type = nla_get_u32(tb[NL80211_KEY_TYPE]);
1078 if (tb[NL80211_KEY_DEFAULT_TYPES]) {
1079 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
1081 err = nla_parse_nested_deprecated(kdt,
1082 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
1083 tb[NL80211_KEY_DEFAULT_TYPES],
1084 nl80211_key_default_policy,
1089 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1090 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1093 if (tb[NL80211_KEY_MODE])
1094 k->p.mode = nla_get_u8(tb[NL80211_KEY_MODE]);
1099 static int nl80211_parse_key_old(struct genl_info *info, struct key_parse *k)
1101 if (info->attrs[NL80211_ATTR_KEY_DATA]) {
1102 k->p.key = nla_data(info->attrs[NL80211_ATTR_KEY_DATA]);
1103 k->p.key_len = nla_len(info->attrs[NL80211_ATTR_KEY_DATA]);
1106 if (info->attrs[NL80211_ATTR_KEY_SEQ]) {
1107 k->p.seq = nla_data(info->attrs[NL80211_ATTR_KEY_SEQ]);
1108 k->p.seq_len = nla_len(info->attrs[NL80211_ATTR_KEY_SEQ]);
1111 if (info->attrs[NL80211_ATTR_KEY_IDX])
1112 k->idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
1114 if (info->attrs[NL80211_ATTR_KEY_CIPHER])
1115 k->p.cipher = nla_get_u32(info->attrs[NL80211_ATTR_KEY_CIPHER]);
1117 k->def = !!info->attrs[NL80211_ATTR_KEY_DEFAULT];
1118 k->defmgmt = !!info->attrs[NL80211_ATTR_KEY_DEFAULT_MGMT];
1122 k->def_multi = true;
1125 k->def_multi = true;
1127 if (info->attrs[NL80211_ATTR_KEY_TYPE])
1128 k->type = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
1130 if (info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES]) {
1131 struct nlattr *kdt[NUM_NL80211_KEY_DEFAULT_TYPES];
1132 int err = nla_parse_nested_deprecated(kdt,
1133 NUM_NL80211_KEY_DEFAULT_TYPES - 1,
1134 info->attrs[NL80211_ATTR_KEY_DEFAULT_TYPES],
1135 nl80211_key_default_policy,
1140 k->def_uni = kdt[NL80211_KEY_DEFAULT_TYPE_UNICAST];
1141 k->def_multi = kdt[NL80211_KEY_DEFAULT_TYPE_MULTICAST];
1147 static int nl80211_parse_key(struct genl_info *info, struct key_parse *k)
1151 memset(k, 0, sizeof(*k));
1155 if (info->attrs[NL80211_ATTR_KEY])
1156 err = nl80211_parse_key_new(info, info->attrs[NL80211_ATTR_KEY], k);
1158 err = nl80211_parse_key_old(info, k);
1163 if (k->def && k->defmgmt) {
1164 GENL_SET_ERR_MSG(info, "key with def && defmgmt is invalid");
1169 if (k->def_uni || !k->def_multi) {
1170 GENL_SET_ERR_MSG(info, "defmgmt key must be mcast");
1177 if (k->idx < 4 || k->idx > 5) {
1178 GENL_SET_ERR_MSG(info,
1179 "defmgmt key idx not 4 or 5");
1182 } else if (k->def) {
1183 if (k->idx < 0 || k->idx > 3) {
1184 GENL_SET_ERR_MSG(info, "def key idx not 0-3");
1188 if (k->idx < 0 || k->idx > 5) {
1189 GENL_SET_ERR_MSG(info, "key idx not 0-5");
1198 static struct cfg80211_cached_keys *
1199 nl80211_parse_connkeys(struct cfg80211_registered_device *rdev,
1200 struct genl_info *info, bool *no_ht)
1202 struct nlattr *keys = info->attrs[NL80211_ATTR_KEYS];
1203 struct key_parse parse;
1205 struct cfg80211_cached_keys *result;
1206 int rem, err, def = 0;
1207 bool have_key = false;
1209 nla_for_each_nested(key, keys, rem) {
1217 result = kzalloc(sizeof(*result), GFP_KERNEL);
1219 return ERR_PTR(-ENOMEM);
1223 nla_for_each_nested(key, keys, rem) {
1224 memset(&parse, 0, sizeof(parse));
1227 err = nl80211_parse_key_new(info, key, &parse);
1233 if (parse.idx < 0 || parse.idx > 3) {
1234 GENL_SET_ERR_MSG(info, "key index out of range [0-3]");
1239 GENL_SET_ERR_MSG(info,
1240 "only one key can be default");
1244 result->def = parse.idx;
1245 if (!parse.def_uni || !parse.def_multi)
1247 } else if (parse.defmgmt)
1249 err = cfg80211_validate_key_settings(rdev, &parse.p,
1250 parse.idx, false, NULL);
1253 if (parse.p.cipher != WLAN_CIPHER_SUITE_WEP40 &&
1254 parse.p.cipher != WLAN_CIPHER_SUITE_WEP104) {
1255 GENL_SET_ERR_MSG(info, "connect key must be WEP");
1259 result->params[parse.idx].cipher = parse.p.cipher;
1260 result->params[parse.idx].key_len = parse.p.key_len;
1261 result->params[parse.idx].key = result->data[parse.idx];
1262 memcpy(result->data[parse.idx], parse.p.key, parse.p.key_len);
1264 /* must be WEP key if we got here */
1269 if (result->def < 0) {
1271 GENL_SET_ERR_MSG(info, "need a default/TX key");
1278 return ERR_PTR(err);
1281 static int nl80211_key_allowed(struct wireless_dev *wdev)
1283 ASSERT_WDEV_LOCK(wdev);
1285 switch (wdev->iftype) {
1286 case NL80211_IFTYPE_AP:
1287 case NL80211_IFTYPE_AP_VLAN:
1288 case NL80211_IFTYPE_P2P_GO:
1289 case NL80211_IFTYPE_MESH_POINT:
1291 case NL80211_IFTYPE_ADHOC:
1292 case NL80211_IFTYPE_STATION:
1293 case NL80211_IFTYPE_P2P_CLIENT:
1294 if (!wdev->current_bss)
1297 case NL80211_IFTYPE_UNSPECIFIED:
1298 case NL80211_IFTYPE_OCB:
1299 case NL80211_IFTYPE_MONITOR:
1300 case NL80211_IFTYPE_NAN:
1301 case NL80211_IFTYPE_P2P_DEVICE:
1302 case NL80211_IFTYPE_WDS:
1303 case NUM_NL80211_IFTYPES:
1310 static struct ieee80211_channel *nl80211_get_valid_chan(struct wiphy *wiphy,
1313 struct ieee80211_channel *chan;
1317 chan = ieee80211_get_channel(wiphy, nla_get_u32(tb));
1318 if (!chan || chan->flags & IEEE80211_CHAN_DISABLED)
1323 static int nl80211_put_iftypes(struct sk_buff *msg, u32 attr, u16 ifmodes)
1325 struct nlattr *nl_modes = nla_nest_start_noflag(msg, attr);
1329 goto nla_put_failure;
1333 if ((ifmodes & 1) && nla_put_flag(msg, i))
1334 goto nla_put_failure;
1339 nla_nest_end(msg, nl_modes);
1346 static int nl80211_put_iface_combinations(struct wiphy *wiphy,
1347 struct sk_buff *msg,
1350 struct nlattr *nl_combis;
1353 nl_combis = nla_nest_start_noflag(msg,
1354 NL80211_ATTR_INTERFACE_COMBINATIONS);
1356 goto nla_put_failure;
1358 for (i = 0; i < wiphy->n_iface_combinations; i++) {
1359 const struct ieee80211_iface_combination *c;
1360 struct nlattr *nl_combi, *nl_limits;
1362 c = &wiphy->iface_combinations[i];
1364 nl_combi = nla_nest_start_noflag(msg, i + 1);
1366 goto nla_put_failure;
1368 nl_limits = nla_nest_start_noflag(msg,
1369 NL80211_IFACE_COMB_LIMITS);
1371 goto nla_put_failure;
1373 for (j = 0; j < c->n_limits; j++) {
1374 struct nlattr *nl_limit;
1376 nl_limit = nla_nest_start_noflag(msg, j + 1);
1378 goto nla_put_failure;
1379 if (nla_put_u32(msg, NL80211_IFACE_LIMIT_MAX,
1381 goto nla_put_failure;
1382 if (nl80211_put_iftypes(msg, NL80211_IFACE_LIMIT_TYPES,
1383 c->limits[j].types))
1384 goto nla_put_failure;
1385 nla_nest_end(msg, nl_limit);
1388 nla_nest_end(msg, nl_limits);
1390 if (c->beacon_int_infra_match &&
1391 nla_put_flag(msg, NL80211_IFACE_COMB_STA_AP_BI_MATCH))
1392 goto nla_put_failure;
1393 if (nla_put_u32(msg, NL80211_IFACE_COMB_NUM_CHANNELS,
1394 c->num_different_channels) ||
1395 nla_put_u32(msg, NL80211_IFACE_COMB_MAXNUM,
1397 goto nla_put_failure;
1399 (nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS,
1400 c->radar_detect_widths) ||
1401 nla_put_u32(msg, NL80211_IFACE_COMB_RADAR_DETECT_REGIONS,
1402 c->radar_detect_regions)))
1403 goto nla_put_failure;
1404 if (c->beacon_int_min_gcd &&
1405 nla_put_u32(msg, NL80211_IFACE_COMB_BI_MIN_GCD,
1406 c->beacon_int_min_gcd))
1407 goto nla_put_failure;
1409 nla_nest_end(msg, nl_combi);
1412 nla_nest_end(msg, nl_combis);
1420 static int nl80211_send_wowlan_tcp_caps(struct cfg80211_registered_device *rdev,
1421 struct sk_buff *msg)
1423 const struct wiphy_wowlan_tcp_support *tcp = rdev->wiphy.wowlan->tcp;
1424 struct nlattr *nl_tcp;
1429 nl_tcp = nla_nest_start_noflag(msg,
1430 NL80211_WOWLAN_TRIG_TCP_CONNECTION);
1434 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1435 tcp->data_payload_max))
1438 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
1439 tcp->data_payload_max))
1442 if (tcp->seq && nla_put_flag(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ))
1445 if (tcp->tok && nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
1446 sizeof(*tcp->tok), tcp->tok))
1449 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
1450 tcp->data_interval_max))
1453 if (nla_put_u32(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
1454 tcp->wake_payload_max))
1457 nla_nest_end(msg, nl_tcp);
1461 static int nl80211_send_wowlan(struct sk_buff *msg,
1462 struct cfg80211_registered_device *rdev,
1465 struct nlattr *nl_wowlan;
1467 if (!rdev->wiphy.wowlan)
1470 nl_wowlan = nla_nest_start_noflag(msg,
1471 NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED);
1475 if (((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_ANY) &&
1476 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
1477 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_DISCONNECT) &&
1478 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
1479 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT) &&
1480 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
1481 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_SUPPORTS_GTK_REKEY) &&
1482 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED)) ||
1483 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE) &&
1484 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
1485 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ) &&
1486 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
1487 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE) &&
1488 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
1489 ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE) &&
1490 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
1493 if (rdev->wiphy.wowlan->n_patterns) {
1494 struct nl80211_pattern_support pat = {
1495 .max_patterns = rdev->wiphy.wowlan->n_patterns,
1496 .min_pattern_len = rdev->wiphy.wowlan->pattern_min_len,
1497 .max_pattern_len = rdev->wiphy.wowlan->pattern_max_len,
1498 .max_pkt_offset = rdev->wiphy.wowlan->max_pkt_offset,
1501 if (nla_put(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
1506 if ((rdev->wiphy.wowlan->flags & WIPHY_WOWLAN_NET_DETECT) &&
1507 nla_put_u32(msg, NL80211_WOWLAN_TRIG_NET_DETECT,
1508 rdev->wiphy.wowlan->max_nd_match_sets))
1511 if (large && nl80211_send_wowlan_tcp_caps(rdev, msg))
1514 nla_nest_end(msg, nl_wowlan);
1520 static int nl80211_send_coalesce(struct sk_buff *msg,
1521 struct cfg80211_registered_device *rdev)
1523 struct nl80211_coalesce_rule_support rule;
1525 if (!rdev->wiphy.coalesce)
1528 rule.max_rules = rdev->wiphy.coalesce->n_rules;
1529 rule.max_delay = rdev->wiphy.coalesce->max_delay;
1530 rule.pat.max_patterns = rdev->wiphy.coalesce->n_patterns;
1531 rule.pat.min_pattern_len = rdev->wiphy.coalesce->pattern_min_len;
1532 rule.pat.max_pattern_len = rdev->wiphy.coalesce->pattern_max_len;
1533 rule.pat.max_pkt_offset = rdev->wiphy.coalesce->max_pkt_offset;
1535 if (nla_put(msg, NL80211_ATTR_COALESCE_RULE, sizeof(rule), &rule))
1542 nl80211_send_iftype_data(struct sk_buff *msg,
1543 const struct ieee80211_sband_iftype_data *iftdata)
1545 const struct ieee80211_sta_he_cap *he_cap = &iftdata->he_cap;
1547 if (nl80211_put_iftypes(msg, NL80211_BAND_IFTYPE_ATTR_IFTYPES,
1548 iftdata->types_mask))
1551 if (he_cap->has_he) {
1552 if (nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MAC,
1553 sizeof(he_cap->he_cap_elem.mac_cap_info),
1554 he_cap->he_cap_elem.mac_cap_info) ||
1555 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PHY,
1556 sizeof(he_cap->he_cap_elem.phy_cap_info),
1557 he_cap->he_cap_elem.phy_cap_info) ||
1558 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_MCS_SET,
1559 sizeof(he_cap->he_mcs_nss_supp),
1560 &he_cap->he_mcs_nss_supp) ||
1561 nla_put(msg, NL80211_BAND_IFTYPE_ATTR_HE_CAP_PPE,
1562 sizeof(he_cap->ppe_thres), he_cap->ppe_thres))
1569 static int nl80211_send_band_rateinfo(struct sk_buff *msg,
1570 struct ieee80211_supported_band *sband)
1572 struct nlattr *nl_rates, *nl_rate;
1573 struct ieee80211_rate *rate;
1577 if (sband->ht_cap.ht_supported &&
1578 (nla_put(msg, NL80211_BAND_ATTR_HT_MCS_SET,
1579 sizeof(sband->ht_cap.mcs),
1580 &sband->ht_cap.mcs) ||
1581 nla_put_u16(msg, NL80211_BAND_ATTR_HT_CAPA,
1582 sband->ht_cap.cap) ||
1583 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_FACTOR,
1584 sband->ht_cap.ampdu_factor) ||
1585 nla_put_u8(msg, NL80211_BAND_ATTR_HT_AMPDU_DENSITY,
1586 sband->ht_cap.ampdu_density)))
1590 if (sband->vht_cap.vht_supported &&
1591 (nla_put(msg, NL80211_BAND_ATTR_VHT_MCS_SET,
1592 sizeof(sband->vht_cap.vht_mcs),
1593 &sband->vht_cap.vht_mcs) ||
1594 nla_put_u32(msg, NL80211_BAND_ATTR_VHT_CAPA,
1595 sband->vht_cap.cap)))
1598 if (sband->n_iftype_data) {
1599 struct nlattr *nl_iftype_data =
1600 nla_nest_start_noflag(msg,
1601 NL80211_BAND_ATTR_IFTYPE_DATA);
1604 if (!nl_iftype_data)
1607 for (i = 0; i < sband->n_iftype_data; i++) {
1608 struct nlattr *iftdata;
1610 iftdata = nla_nest_start_noflag(msg, i + 1);
1614 err = nl80211_send_iftype_data(msg,
1615 &sband->iftype_data[i]);
1619 nla_nest_end(msg, iftdata);
1622 nla_nest_end(msg, nl_iftype_data);
1626 if (sband->edmg_cap.channels &&
1627 (nla_put_u8(msg, NL80211_BAND_ATTR_EDMG_CHANNELS,
1628 sband->edmg_cap.channels) ||
1629 nla_put_u8(msg, NL80211_BAND_ATTR_EDMG_BW_CONFIG,
1630 sband->edmg_cap.bw_config)))
1635 nl_rates = nla_nest_start_noflag(msg, NL80211_BAND_ATTR_RATES);
1639 for (i = 0; i < sband->n_bitrates; i++) {
1640 nl_rate = nla_nest_start_noflag(msg, i);
1644 rate = &sband->bitrates[i];
1645 if (nla_put_u32(msg, NL80211_BITRATE_ATTR_RATE,
1648 if ((rate->flags & IEEE80211_RATE_SHORT_PREAMBLE) &&
1650 NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE))
1653 nla_nest_end(msg, nl_rate);
1656 nla_nest_end(msg, nl_rates);
1662 nl80211_send_mgmt_stypes(struct sk_buff *msg,
1663 const struct ieee80211_txrx_stypes *mgmt_stypes)
1666 struct nlattr *nl_ftypes, *nl_ifs;
1667 enum nl80211_iftype ift;
1673 nl_ifs = nla_nest_start_noflag(msg, NL80211_ATTR_TX_FRAME_TYPES);
1677 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1678 nl_ftypes = nla_nest_start_noflag(msg, ift);
1682 stypes = mgmt_stypes[ift].tx;
1685 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1686 (i << 4) | IEEE80211_FTYPE_MGMT))
1691 nla_nest_end(msg, nl_ftypes);
1694 nla_nest_end(msg, nl_ifs);
1696 nl_ifs = nla_nest_start_noflag(msg, NL80211_ATTR_RX_FRAME_TYPES);
1700 for (ift = 0; ift < NUM_NL80211_IFTYPES; ift++) {
1701 nl_ftypes = nla_nest_start_noflag(msg, ift);
1705 stypes = mgmt_stypes[ift].rx;
1708 nla_put_u16(msg, NL80211_ATTR_FRAME_TYPE,
1709 (i << 4) | IEEE80211_FTYPE_MGMT))
1714 nla_nest_end(msg, nl_ftypes);
1716 nla_nest_end(msg, nl_ifs);
1721 #define CMD(op, n) \
1723 if (rdev->ops->op) { \
1725 if (nla_put_u32(msg, i, NL80211_CMD_ ## n)) \
1726 goto nla_put_failure; \
1730 static int nl80211_add_commands_unsplit(struct cfg80211_registered_device *rdev,
1731 struct sk_buff *msg)
1736 * do *NOT* add anything into this function, new things need to be
1737 * advertised only to new versions of userspace that can deal with
1738 * the split (and they can't possibly care about new features...
1740 CMD(add_virtual_intf, NEW_INTERFACE);
1741 CMD(change_virtual_intf, SET_INTERFACE);
1742 CMD(add_key, NEW_KEY);
1743 CMD(start_ap, START_AP);
1744 CMD(add_station, NEW_STATION);
1745 CMD(add_mpath, NEW_MPATH);
1746 CMD(update_mesh_config, SET_MESH_CONFIG);
1747 CMD(change_bss, SET_BSS);
1748 CMD(auth, AUTHENTICATE);
1749 CMD(assoc, ASSOCIATE);
1750 CMD(deauth, DEAUTHENTICATE);
1751 CMD(disassoc, DISASSOCIATE);
1752 CMD(join_ibss, JOIN_IBSS);
1753 CMD(join_mesh, JOIN_MESH);
1754 CMD(set_pmksa, SET_PMKSA);
1755 CMD(del_pmksa, DEL_PMKSA);
1756 CMD(flush_pmksa, FLUSH_PMKSA);
1757 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL)
1758 CMD(remain_on_channel, REMAIN_ON_CHANNEL);
1759 CMD(set_bitrate_mask, SET_TX_BITRATE_MASK);
1760 CMD(mgmt_tx, FRAME);
1761 CMD(mgmt_tx_cancel_wait, FRAME_WAIT_CANCEL);
1762 if (rdev->wiphy.flags & WIPHY_FLAG_NETNS_OK) {
1764 if (nla_put_u32(msg, i, NL80211_CMD_SET_WIPHY_NETNS))
1765 goto nla_put_failure;
1767 if (rdev->ops->set_monitor_channel || rdev->ops->start_ap ||
1768 rdev->ops->join_mesh) {
1770 if (nla_put_u32(msg, i, NL80211_CMD_SET_CHANNEL))
1771 goto nla_put_failure;
1773 CMD(set_wds_peer, SET_WDS_PEER);
1774 if (rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) {
1775 CMD(tdls_mgmt, TDLS_MGMT);
1776 CMD(tdls_oper, TDLS_OPER);
1778 if (rdev->wiphy.max_sched_scan_reqs)
1779 CMD(sched_scan_start, START_SCHED_SCAN);
1780 CMD(probe_client, PROBE_CLIENT);
1781 CMD(set_noack_map, SET_NOACK_MAP);
1782 if (rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS) {
1784 if (nla_put_u32(msg, i, NL80211_CMD_REGISTER_BEACONS))
1785 goto nla_put_failure;
1787 CMD(start_p2p_device, START_P2P_DEVICE);
1788 CMD(set_mcast_rate, SET_MCAST_RATE);
1789 #ifdef CONFIG_NL80211_TESTMODE
1790 CMD(testmode_cmd, TESTMODE);
1793 if (rdev->ops->connect || rdev->ops->auth) {
1795 if (nla_put_u32(msg, i, NL80211_CMD_CONNECT))
1796 goto nla_put_failure;
1799 if (rdev->ops->disconnect || rdev->ops->deauth) {
1801 if (nla_put_u32(msg, i, NL80211_CMD_DISCONNECT))
1802 goto nla_put_failure;
1811 nl80211_send_pmsr_ftm_capa(const struct cfg80211_pmsr_capabilities *cap,
1812 struct sk_buff *msg)
1816 if (!cap->ftm.supported)
1819 ftm = nla_nest_start_noflag(msg, NL80211_PMSR_TYPE_FTM);
1823 if (cap->ftm.asap && nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_ASAP))
1825 if (cap->ftm.non_asap &&
1826 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP))
1828 if (cap->ftm.request_lci &&
1829 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI))
1831 if (cap->ftm.request_civicloc &&
1832 nla_put_flag(msg, NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC))
1834 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES,
1835 cap->ftm.preambles))
1837 if (nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS,
1838 cap->ftm.bandwidths))
1840 if (cap->ftm.max_bursts_exponent >= 0 &&
1841 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT,
1842 cap->ftm.max_bursts_exponent))
1844 if (cap->ftm.max_ftms_per_burst &&
1845 nla_put_u32(msg, NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST,
1846 cap->ftm.max_ftms_per_burst))
1849 nla_nest_end(msg, ftm);
1853 static int nl80211_send_pmsr_capa(struct cfg80211_registered_device *rdev,
1854 struct sk_buff *msg)
1856 const struct cfg80211_pmsr_capabilities *cap = rdev->wiphy.pmsr_capa;
1857 struct nlattr *pmsr, *caps;
1863 * we don't need to clean up anything here since the caller
1864 * will genlmsg_cancel() if we fail
1867 pmsr = nla_nest_start_noflag(msg, NL80211_ATTR_PEER_MEASUREMENTS);
1871 if (nla_put_u32(msg, NL80211_PMSR_ATTR_MAX_PEERS, cap->max_peers))
1874 if (cap->report_ap_tsf &&
1875 nla_put_flag(msg, NL80211_PMSR_ATTR_REPORT_AP_TSF))
1878 if (cap->randomize_mac_addr &&
1879 nla_put_flag(msg, NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR))
1882 caps = nla_nest_start_noflag(msg, NL80211_PMSR_ATTR_TYPE_CAPA);
1886 if (nl80211_send_pmsr_ftm_capa(cap, msg))
1889 nla_nest_end(msg, caps);
1890 nla_nest_end(msg, pmsr);
1895 struct nl80211_dump_wiphy_state {
1898 long split_start, band_start, chan_start, capa_start;
1902 static int nl80211_send_wiphy(struct cfg80211_registered_device *rdev,
1903 enum nl80211_commands cmd,
1904 struct sk_buff *msg, u32 portid, u32 seq,
1905 int flags, struct nl80211_dump_wiphy_state *state)
1908 struct nlattr *nl_bands, *nl_band;
1909 struct nlattr *nl_freqs, *nl_freq;
1910 struct nlattr *nl_cmds;
1911 enum nl80211_band band;
1912 struct ieee80211_channel *chan;
1914 const struct ieee80211_txrx_stypes *mgmt_stypes =
1915 rdev->wiphy.mgmt_stypes;
1918 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
1922 if (WARN_ON(!state))
1925 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
1926 nla_put_string(msg, NL80211_ATTR_WIPHY_NAME,
1927 wiphy_name(&rdev->wiphy)) ||
1928 nla_put_u32(msg, NL80211_ATTR_GENERATION,
1929 cfg80211_rdev_list_generation))
1930 goto nla_put_failure;
1932 if (cmd != NL80211_CMD_NEW_WIPHY)
1935 switch (state->split_start) {
1937 if (nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_SHORT,
1938 rdev->wiphy.retry_short) ||
1939 nla_put_u8(msg, NL80211_ATTR_WIPHY_RETRY_LONG,
1940 rdev->wiphy.retry_long) ||
1941 nla_put_u32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD,
1942 rdev->wiphy.frag_threshold) ||
1943 nla_put_u32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD,
1944 rdev->wiphy.rts_threshold) ||
1945 nla_put_u8(msg, NL80211_ATTR_WIPHY_COVERAGE_CLASS,
1946 rdev->wiphy.coverage_class) ||
1947 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCAN_SSIDS,
1948 rdev->wiphy.max_scan_ssids) ||
1949 nla_put_u8(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS,
1950 rdev->wiphy.max_sched_scan_ssids) ||
1951 nla_put_u16(msg, NL80211_ATTR_MAX_SCAN_IE_LEN,
1952 rdev->wiphy.max_scan_ie_len) ||
1953 nla_put_u16(msg, NL80211_ATTR_MAX_SCHED_SCAN_IE_LEN,
1954 rdev->wiphy.max_sched_scan_ie_len) ||
1955 nla_put_u8(msg, NL80211_ATTR_MAX_MATCH_SETS,
1956 rdev->wiphy.max_match_sets) ||
1957 nla_put_u32(msg, NL80211_ATTR_MAX_NUM_SCHED_SCAN_PLANS,
1958 rdev->wiphy.max_sched_scan_plans) ||
1959 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_INTERVAL,
1960 rdev->wiphy.max_sched_scan_plan_interval) ||
1961 nla_put_u32(msg, NL80211_ATTR_MAX_SCAN_PLAN_ITERATIONS,
1962 rdev->wiphy.max_sched_scan_plan_iterations))
1963 goto nla_put_failure;
1965 if ((rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN) &&
1966 nla_put_flag(msg, NL80211_ATTR_SUPPORT_IBSS_RSN))
1967 goto nla_put_failure;
1968 if ((rdev->wiphy.flags & WIPHY_FLAG_MESH_AUTH) &&
1969 nla_put_flag(msg, NL80211_ATTR_SUPPORT_MESH_AUTH))
1970 goto nla_put_failure;
1971 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) &&
1972 nla_put_flag(msg, NL80211_ATTR_SUPPORT_AP_UAPSD))
1973 goto nla_put_failure;
1974 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_FW_ROAM) &&
1975 nla_put_flag(msg, NL80211_ATTR_ROAM_SUPPORT))
1976 goto nla_put_failure;
1977 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) &&
1978 nla_put_flag(msg, NL80211_ATTR_TDLS_SUPPORT))
1979 goto nla_put_failure;
1980 if ((rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP) &&
1981 nla_put_flag(msg, NL80211_ATTR_TDLS_EXTERNAL_SETUP))
1982 goto nla_put_failure;
1983 state->split_start++;
1988 if (nla_put(msg, NL80211_ATTR_CIPHER_SUITES,
1989 sizeof(u32) * rdev->wiphy.n_cipher_suites,
1990 rdev->wiphy.cipher_suites))
1991 goto nla_put_failure;
1993 if (nla_put_u8(msg, NL80211_ATTR_MAX_NUM_PMKIDS,
1994 rdev->wiphy.max_num_pmkids))
1995 goto nla_put_failure;
1997 if ((rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
1998 nla_put_flag(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE))
1999 goto nla_put_failure;
2001 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_TX,
2002 rdev->wiphy.available_antennas_tx) ||
2003 nla_put_u32(msg, NL80211_ATTR_WIPHY_ANTENNA_AVAIL_RX,
2004 rdev->wiphy.available_antennas_rx))
2005 goto nla_put_failure;
2007 if ((rdev->wiphy.flags & WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD) &&
2008 nla_put_u32(msg, NL80211_ATTR_PROBE_RESP_OFFLOAD,
2009 rdev->wiphy.probe_resp_offload))
2010 goto nla_put_failure;
2012 if ((rdev->wiphy.available_antennas_tx ||
2013 rdev->wiphy.available_antennas_rx) &&
2014 rdev->ops->get_antenna) {
2015 u32 tx_ant = 0, rx_ant = 0;
2018 res = rdev_get_antenna(rdev, &tx_ant, &rx_ant);
2020 if (nla_put_u32(msg,
2021 NL80211_ATTR_WIPHY_ANTENNA_TX,
2024 NL80211_ATTR_WIPHY_ANTENNA_RX,
2026 goto nla_put_failure;
2030 state->split_start++;
2035 if (nl80211_put_iftypes(msg, NL80211_ATTR_SUPPORTED_IFTYPES,
2036 rdev->wiphy.interface_modes))
2037 goto nla_put_failure;
2038 state->split_start++;
2043 nl_bands = nla_nest_start_noflag(msg,
2044 NL80211_ATTR_WIPHY_BANDS);
2046 goto nla_put_failure;
2048 for (band = state->band_start;
2049 band < NUM_NL80211_BANDS; band++) {
2050 struct ieee80211_supported_band *sband;
2052 sband = rdev->wiphy.bands[band];
2057 nl_band = nla_nest_start_noflag(msg, band);
2059 goto nla_put_failure;
2061 switch (state->chan_start) {
2063 if (nl80211_send_band_rateinfo(msg, sband))
2064 goto nla_put_failure;
2065 state->chan_start++;
2070 /* add frequencies */
2071 nl_freqs = nla_nest_start_noflag(msg,
2072 NL80211_BAND_ATTR_FREQS);
2074 goto nla_put_failure;
2076 for (i = state->chan_start - 1;
2077 i < sband->n_channels;
2079 nl_freq = nla_nest_start_noflag(msg,
2082 goto nla_put_failure;
2084 chan = &sband->channels[i];
2086 if (nl80211_msg_put_channel(
2087 msg, &rdev->wiphy, chan,
2089 goto nla_put_failure;
2091 nla_nest_end(msg, nl_freq);
2095 if (i < sband->n_channels)
2096 state->chan_start = i + 2;
2098 state->chan_start = 0;
2099 nla_nest_end(msg, nl_freqs);
2102 nla_nest_end(msg, nl_band);
2105 /* start again here */
2106 if (state->chan_start)
2111 nla_nest_end(msg, nl_bands);
2113 if (band < NUM_NL80211_BANDS)
2114 state->band_start = band + 1;
2116 state->band_start = 0;
2118 /* if bands & channels are done, continue outside */
2119 if (state->band_start == 0 && state->chan_start == 0)
2120 state->split_start++;
2125 nl_cmds = nla_nest_start_noflag(msg,
2126 NL80211_ATTR_SUPPORTED_COMMANDS);
2128 goto nla_put_failure;
2130 i = nl80211_add_commands_unsplit(rdev, msg);
2132 goto nla_put_failure;
2134 CMD(crit_proto_start, CRIT_PROTOCOL_START);
2135 CMD(crit_proto_stop, CRIT_PROTOCOL_STOP);
2136 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH)
2137 CMD(channel_switch, CHANNEL_SWITCH);
2138 CMD(set_qos_map, SET_QOS_MAP);
2139 if (rdev->wiphy.features &
2140 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION)
2141 CMD(add_tx_ts, ADD_TX_TS);
2142 CMD(set_multicast_to_unicast, SET_MULTICAST_TO_UNICAST);
2143 CMD(update_connect_params, UPDATE_CONNECT_PARAMS);
2144 CMD(update_ft_ies, UPDATE_FT_IES);
2148 nla_nest_end(msg, nl_cmds);
2149 state->split_start++;
2154 if (rdev->ops->remain_on_channel &&
2155 (rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL) &&
2157 NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION,
2158 rdev->wiphy.max_remain_on_channel_duration))
2159 goto nla_put_failure;
2161 if ((rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX) &&
2162 nla_put_flag(msg, NL80211_ATTR_OFFCHANNEL_TX_OK))
2163 goto nla_put_failure;
2165 if (nl80211_send_mgmt_stypes(msg, mgmt_stypes))
2166 goto nla_put_failure;
2167 state->split_start++;
2173 if (nl80211_send_wowlan(msg, rdev, state->split))
2174 goto nla_put_failure;
2175 state->split_start++;
2179 state->split_start++;
2183 if (nl80211_put_iftypes(msg, NL80211_ATTR_SOFTWARE_IFTYPES,
2184 rdev->wiphy.software_iftypes))
2185 goto nla_put_failure;
2187 if (nl80211_put_iface_combinations(&rdev->wiphy, msg,
2189 goto nla_put_failure;
2191 state->split_start++;
2196 if ((rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME) &&
2197 nla_put_u32(msg, NL80211_ATTR_DEVICE_AP_SME,
2198 rdev->wiphy.ap_sme_capa))
2199 goto nla_put_failure;
2201 features = rdev->wiphy.features;
2203 * We can only add the per-channel limit information if the
2204 * dump is split, otherwise it makes it too big. Therefore
2205 * only advertise it in that case.
2208 features |= NL80211_FEATURE_ADVERTISE_CHAN_LIMITS;
2209 if (nla_put_u32(msg, NL80211_ATTR_FEATURE_FLAGS, features))
2210 goto nla_put_failure;
2212 if (rdev->wiphy.ht_capa_mod_mask &&
2213 nla_put(msg, NL80211_ATTR_HT_CAPABILITY_MASK,
2214 sizeof(*rdev->wiphy.ht_capa_mod_mask),
2215 rdev->wiphy.ht_capa_mod_mask))
2216 goto nla_put_failure;
2218 if (rdev->wiphy.flags & WIPHY_FLAG_HAVE_AP_SME &&
2219 rdev->wiphy.max_acl_mac_addrs &&
2220 nla_put_u32(msg, NL80211_ATTR_MAC_ACL_MAX,
2221 rdev->wiphy.max_acl_mac_addrs))
2222 goto nla_put_failure;
2225 * Any information below this point is only available to
2226 * applications that can deal with it being split. This
2227 * helps ensure that newly added capabilities don't break
2228 * older tools by overrunning their buffers.
2230 * We still increment split_start so that in the split
2231 * case we'll continue with more data in the next round,
2232 * but break unconditionally so unsplit data stops here.
2234 state->split_start++;
2237 if (rdev->wiphy.extended_capabilities &&
2238 (nla_put(msg, NL80211_ATTR_EXT_CAPA,
2239 rdev->wiphy.extended_capabilities_len,
2240 rdev->wiphy.extended_capabilities) ||
2241 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2242 rdev->wiphy.extended_capabilities_len,
2243 rdev->wiphy.extended_capabilities_mask)))
2244 goto nla_put_failure;
2246 if (rdev->wiphy.vht_capa_mod_mask &&
2247 nla_put(msg, NL80211_ATTR_VHT_CAPABILITY_MASK,
2248 sizeof(*rdev->wiphy.vht_capa_mod_mask),
2249 rdev->wiphy.vht_capa_mod_mask))
2250 goto nla_put_failure;
2252 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN,
2253 rdev->wiphy.perm_addr))
2254 goto nla_put_failure;
2256 if (!is_zero_ether_addr(rdev->wiphy.addr_mask) &&
2257 nla_put(msg, NL80211_ATTR_MAC_MASK, ETH_ALEN,
2258 rdev->wiphy.addr_mask))
2259 goto nla_put_failure;
2261 if (rdev->wiphy.n_addresses > 1) {
2264 attr = nla_nest_start(msg, NL80211_ATTR_MAC_ADDRS);
2266 goto nla_put_failure;
2268 for (i = 0; i < rdev->wiphy.n_addresses; i++)
2269 if (nla_put(msg, i + 1, ETH_ALEN,
2270 rdev->wiphy.addresses[i].addr))
2271 goto nla_put_failure;
2273 nla_nest_end(msg, attr);
2276 state->split_start++;
2279 if (nl80211_send_coalesce(msg, rdev))
2280 goto nla_put_failure;
2282 if ((rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ) &&
2283 (nla_put_flag(msg, NL80211_ATTR_SUPPORT_5_MHZ) ||
2284 nla_put_flag(msg, NL80211_ATTR_SUPPORT_10_MHZ)))
2285 goto nla_put_failure;
2287 if (rdev->wiphy.max_ap_assoc_sta &&
2288 nla_put_u32(msg, NL80211_ATTR_MAX_AP_ASSOC_STA,
2289 rdev->wiphy.max_ap_assoc_sta))
2290 goto nla_put_failure;
2292 state->split_start++;
2295 if (rdev->wiphy.n_vendor_commands) {
2296 const struct nl80211_vendor_cmd_info *info;
2297 struct nlattr *nested;
2299 nested = nla_nest_start_noflag(msg,
2300 NL80211_ATTR_VENDOR_DATA);
2302 goto nla_put_failure;
2304 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
2305 info = &rdev->wiphy.vendor_commands[i].info;
2306 if (nla_put(msg, i + 1, sizeof(*info), info))
2307 goto nla_put_failure;
2309 nla_nest_end(msg, nested);
2312 if (rdev->wiphy.n_vendor_events) {
2313 const struct nl80211_vendor_cmd_info *info;
2314 struct nlattr *nested;
2316 nested = nla_nest_start_noflag(msg,
2317 NL80211_ATTR_VENDOR_EVENTS);
2319 goto nla_put_failure;
2321 for (i = 0; i < rdev->wiphy.n_vendor_events; i++) {
2322 info = &rdev->wiphy.vendor_events[i];
2323 if (nla_put(msg, i + 1, sizeof(*info), info))
2324 goto nla_put_failure;
2326 nla_nest_end(msg, nested);
2328 state->split_start++;
2331 if (rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH &&
2332 nla_put_u8(msg, NL80211_ATTR_MAX_CSA_COUNTERS,
2333 rdev->wiphy.max_num_csa_counters))
2334 goto nla_put_failure;
2336 if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
2337 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
2338 goto nla_put_failure;
2340 if (rdev->wiphy.max_sched_scan_reqs &&
2341 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_MAX_REQS,
2342 rdev->wiphy.max_sched_scan_reqs))
2343 goto nla_put_failure;
2345 if (nla_put(msg, NL80211_ATTR_EXT_FEATURES,
2346 sizeof(rdev->wiphy.ext_features),
2347 rdev->wiphy.ext_features))
2348 goto nla_put_failure;
2350 if (rdev->wiphy.bss_select_support) {
2351 struct nlattr *nested;
2352 u32 bss_select_support = rdev->wiphy.bss_select_support;
2354 nested = nla_nest_start_noflag(msg,
2355 NL80211_ATTR_BSS_SELECT);
2357 goto nla_put_failure;
2360 while (bss_select_support) {
2361 if ((bss_select_support & 1) &&
2362 nla_put_flag(msg, i))
2363 goto nla_put_failure;
2365 bss_select_support >>= 1;
2367 nla_nest_end(msg, nested);
2370 state->split_start++;
2373 if (rdev->wiphy.num_iftype_ext_capab &&
2374 rdev->wiphy.iftype_ext_capab) {
2375 struct nlattr *nested_ext_capab, *nested;
2377 nested = nla_nest_start_noflag(msg,
2378 NL80211_ATTR_IFTYPE_EXT_CAPA);
2380 goto nla_put_failure;
2382 for (i = state->capa_start;
2383 i < rdev->wiphy.num_iftype_ext_capab; i++) {
2384 const struct wiphy_iftype_ext_capab *capab;
2386 capab = &rdev->wiphy.iftype_ext_capab[i];
2388 nested_ext_capab = nla_nest_start_noflag(msg,
2390 if (!nested_ext_capab ||
2391 nla_put_u32(msg, NL80211_ATTR_IFTYPE,
2393 nla_put(msg, NL80211_ATTR_EXT_CAPA,
2394 capab->extended_capabilities_len,
2395 capab->extended_capabilities) ||
2396 nla_put(msg, NL80211_ATTR_EXT_CAPA_MASK,
2397 capab->extended_capabilities_len,
2398 capab->extended_capabilities_mask))
2399 goto nla_put_failure;
2401 nla_nest_end(msg, nested_ext_capab);
2405 nla_nest_end(msg, nested);
2406 if (i < rdev->wiphy.num_iftype_ext_capab) {
2407 state->capa_start = i + 1;
2412 if (nla_put_u32(msg, NL80211_ATTR_BANDS,
2413 rdev->wiphy.nan_supported_bands))
2414 goto nla_put_failure;
2416 if (wiphy_ext_feature_isset(&rdev->wiphy,
2417 NL80211_EXT_FEATURE_TXQS)) {
2418 struct cfg80211_txq_stats txqstats = {};
2421 res = rdev_get_txq_stats(rdev, NULL, &txqstats);
2423 !nl80211_put_txq_stats(msg, &txqstats,
2424 NL80211_ATTR_TXQ_STATS))
2425 goto nla_put_failure;
2427 if (nla_put_u32(msg, NL80211_ATTR_TXQ_LIMIT,
2428 rdev->wiphy.txq_limit))
2429 goto nla_put_failure;
2430 if (nla_put_u32(msg, NL80211_ATTR_TXQ_MEMORY_LIMIT,
2431 rdev->wiphy.txq_memory_limit))
2432 goto nla_put_failure;
2433 if (nla_put_u32(msg, NL80211_ATTR_TXQ_QUANTUM,
2434 rdev->wiphy.txq_quantum))
2435 goto nla_put_failure;
2438 state->split_start++;
2441 if (nl80211_send_pmsr_capa(rdev, msg))
2442 goto nla_put_failure;
2444 state->split_start++;
2447 if (rdev->wiphy.akm_suites &&
2448 nla_put(msg, NL80211_ATTR_AKM_SUITES,
2449 sizeof(u32) * rdev->wiphy.n_akm_suites,
2450 rdev->wiphy.akm_suites))
2451 goto nla_put_failure;
2454 state->split_start = 0;
2458 genlmsg_end(msg, hdr);
2462 genlmsg_cancel(msg, hdr);
2466 static int nl80211_dump_wiphy_parse(struct sk_buff *skb,
2467 struct netlink_callback *cb,
2468 struct nl80211_dump_wiphy_state *state)
2470 struct nlattr **tb = kcalloc(NUM_NL80211_ATTR, sizeof(*tb), GFP_KERNEL);
2476 ret = nlmsg_parse_deprecated(cb->nlh,
2477 GENL_HDRLEN + nl80211_fam.hdrsize,
2478 tb, nl80211_fam.maxattr,
2479 nl80211_policy, NULL);
2480 /* ignore parse errors for backward compatibility */
2486 state->split = tb[NL80211_ATTR_SPLIT_WIPHY_DUMP];
2487 if (tb[NL80211_ATTR_WIPHY])
2488 state->filter_wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
2489 if (tb[NL80211_ATTR_WDEV])
2490 state->filter_wiphy = nla_get_u64(tb[NL80211_ATTR_WDEV]) >> 32;
2491 if (tb[NL80211_ATTR_IFINDEX]) {
2492 struct net_device *netdev;
2493 struct cfg80211_registered_device *rdev;
2494 int ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
2496 netdev = __dev_get_by_index(sock_net(skb->sk), ifidx);
2501 if (netdev->ieee80211_ptr) {
2502 rdev = wiphy_to_rdev(
2503 netdev->ieee80211_ptr->wiphy);
2504 state->filter_wiphy = rdev->wiphy_idx;
2514 static int nl80211_dump_wiphy(struct sk_buff *skb, struct netlink_callback *cb)
2517 struct nl80211_dump_wiphy_state *state = (void *)cb->args[0];
2518 struct cfg80211_registered_device *rdev;
2522 state = kzalloc(sizeof(*state), GFP_KERNEL);
2527 state->filter_wiphy = -1;
2528 ret = nl80211_dump_wiphy_parse(skb, cb, state);
2534 cb->args[0] = (long)state;
2537 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
2538 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
2540 if (++idx <= state->start)
2542 if (state->filter_wiphy != -1 &&
2543 state->filter_wiphy != rdev->wiphy_idx)
2545 /* attempt to fit multiple wiphy data chunks into the skb */
2547 ret = nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY,
2549 NETLINK_CB(cb->skb).portid,
2551 NLM_F_MULTI, state);
2554 * If sending the wiphy data didn't fit (ENOBUFS
2555 * or EMSGSIZE returned), this SKB is still
2556 * empty (so it's not too big because another
2557 * wiphy dataset is already in the skb) and
2558 * we've not tried to adjust the dump allocation
2559 * yet ... then adjust the alloc size to be
2560 * bigger, and return 1 but with the empty skb.
2561 * This results in an empty message being RX'ed
2562 * in userspace, but that is ignored.
2564 * We can then retry with the larger buffer.
2566 if ((ret == -ENOBUFS || ret == -EMSGSIZE) &&
2567 !skb->len && !state->split &&
2568 cb->min_dump_alloc < 4096) {
2569 cb->min_dump_alloc = 4096;
2570 state->split_start = 0;
2577 } while (state->split_start > 0);
2587 static int nl80211_dump_wiphy_done(struct netlink_callback *cb)
2589 kfree((void *)cb->args[0]);
2593 static int nl80211_get_wiphy(struct sk_buff *skb, struct genl_info *info)
2595 struct sk_buff *msg;
2596 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2597 struct nl80211_dump_wiphy_state state = {};
2599 msg = nlmsg_new(4096, GFP_KERNEL);
2603 if (nl80211_send_wiphy(rdev, NL80211_CMD_NEW_WIPHY, msg,
2604 info->snd_portid, info->snd_seq, 0,
2610 return genlmsg_reply(msg, info);
2613 static const struct nla_policy txq_params_policy[NL80211_TXQ_ATTR_MAX + 1] = {
2614 [NL80211_TXQ_ATTR_QUEUE] = { .type = NLA_U8 },
2615 [NL80211_TXQ_ATTR_TXOP] = { .type = NLA_U16 },
2616 [NL80211_TXQ_ATTR_CWMIN] = { .type = NLA_U16 },
2617 [NL80211_TXQ_ATTR_CWMAX] = { .type = NLA_U16 },
2618 [NL80211_TXQ_ATTR_AIFS] = { .type = NLA_U8 },
2621 static int parse_txq_params(struct nlattr *tb[],
2622 struct ieee80211_txq_params *txq_params)
2626 if (!tb[NL80211_TXQ_ATTR_AC] || !tb[NL80211_TXQ_ATTR_TXOP] ||
2627 !tb[NL80211_TXQ_ATTR_CWMIN] || !tb[NL80211_TXQ_ATTR_CWMAX] ||
2628 !tb[NL80211_TXQ_ATTR_AIFS])
2631 ac = nla_get_u8(tb[NL80211_TXQ_ATTR_AC]);
2632 txq_params->txop = nla_get_u16(tb[NL80211_TXQ_ATTR_TXOP]);
2633 txq_params->cwmin = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMIN]);
2634 txq_params->cwmax = nla_get_u16(tb[NL80211_TXQ_ATTR_CWMAX]);
2635 txq_params->aifs = nla_get_u8(tb[NL80211_TXQ_ATTR_AIFS]);
2637 if (ac >= NL80211_NUM_ACS)
2639 txq_params->ac = array_index_nospec(ac, NL80211_NUM_ACS);
2643 static bool nl80211_can_set_dev_channel(struct wireless_dev *wdev)
2646 * You can only set the channel explicitly for WDS interfaces,
2647 * all others have their channel managed via their respective
2648 * "establish a connection" command (connect, join, ...)
2650 * For AP/GO and mesh mode, the channel can be set with the
2651 * channel userspace API, but is only stored and passed to the
2652 * low-level driver when the AP starts or the mesh is joined.
2653 * This is for backward compatibility, userspace can also give
2654 * the channel in the start-ap or join-mesh commands instead.
2656 * Monitors are special as they are normally slaved to
2657 * whatever else is going on, so they have their own special
2658 * operation to set the monitor channel if possible.
2661 wdev->iftype == NL80211_IFTYPE_AP ||
2662 wdev->iftype == NL80211_IFTYPE_MESH_POINT ||
2663 wdev->iftype == NL80211_IFTYPE_MONITOR ||
2664 wdev->iftype == NL80211_IFTYPE_P2P_GO;
2667 int nl80211_parse_chandef(struct cfg80211_registered_device *rdev,
2668 struct genl_info *info,
2669 struct cfg80211_chan_def *chandef)
2671 struct netlink_ext_ack *extack = info->extack;
2672 struct nlattr **attrs = info->attrs;
2675 if (!attrs[NL80211_ATTR_WIPHY_FREQ])
2678 control_freq = nla_get_u32(attrs[NL80211_ATTR_WIPHY_FREQ]);
2680 memset(chandef, 0, sizeof(*chandef));
2682 chandef->chan = ieee80211_get_channel(&rdev->wiphy, control_freq);
2683 chandef->width = NL80211_CHAN_WIDTH_20_NOHT;
2684 chandef->center_freq1 = control_freq;
2685 chandef->center_freq2 = 0;
2687 /* Primary channel not allowed */
2688 if (!chandef->chan || chandef->chan->flags & IEEE80211_CHAN_DISABLED) {
2689 NL_SET_ERR_MSG_ATTR(extack, attrs[NL80211_ATTR_WIPHY_FREQ],
2690 "Channel is disabled");
2694 if (attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
2695 enum nl80211_channel_type chantype;
2697 chantype = nla_get_u32(attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
2700 case NL80211_CHAN_NO_HT:
2701 case NL80211_CHAN_HT20:
2702 case NL80211_CHAN_HT40PLUS:
2703 case NL80211_CHAN_HT40MINUS:
2704 cfg80211_chandef_create(chandef, chandef->chan,
2706 /* user input for center_freq is incorrect */
2707 if (attrs[NL80211_ATTR_CENTER_FREQ1] &&
2708 chandef->center_freq1 != nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1])) {
2709 NL_SET_ERR_MSG_ATTR(extack,
2710 attrs[NL80211_ATTR_CENTER_FREQ1],
2711 "bad center frequency 1");
2714 /* center_freq2 must be zero */
2715 if (attrs[NL80211_ATTR_CENTER_FREQ2] &&
2716 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2])) {
2717 NL_SET_ERR_MSG_ATTR(extack,
2718 attrs[NL80211_ATTR_CENTER_FREQ2],
2719 "center frequency 2 can't be used");
2724 NL_SET_ERR_MSG_ATTR(extack,
2725 attrs[NL80211_ATTR_WIPHY_CHANNEL_TYPE],
2726 "invalid channel type");
2729 } else if (attrs[NL80211_ATTR_CHANNEL_WIDTH]) {
2731 nla_get_u32(attrs[NL80211_ATTR_CHANNEL_WIDTH]);
2732 if (attrs[NL80211_ATTR_CENTER_FREQ1])
2733 chandef->center_freq1 =
2734 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ1]);
2735 if (attrs[NL80211_ATTR_CENTER_FREQ2])
2736 chandef->center_freq2 =
2737 nla_get_u32(attrs[NL80211_ATTR_CENTER_FREQ2]);
2740 if (info->attrs[NL80211_ATTR_WIPHY_EDMG_CHANNELS]) {
2741 chandef->edmg.channels =
2742 nla_get_u8(info->attrs[NL80211_ATTR_WIPHY_EDMG_CHANNELS]);
2744 if (info->attrs[NL80211_ATTR_WIPHY_EDMG_BW_CONFIG])
2745 chandef->edmg.bw_config =
2746 nla_get_u8(info->attrs[NL80211_ATTR_WIPHY_EDMG_BW_CONFIG]);
2748 chandef->edmg.bw_config = 0;
2749 chandef->edmg.channels = 0;
2752 if (!cfg80211_chandef_valid(chandef)) {
2753 NL_SET_ERR_MSG(extack, "invalid channel definition");
2757 if (!cfg80211_chandef_usable(&rdev->wiphy, chandef,
2758 IEEE80211_CHAN_DISABLED)) {
2759 NL_SET_ERR_MSG(extack, "(extension) channel is disabled");
2763 if ((chandef->width == NL80211_CHAN_WIDTH_5 ||
2764 chandef->width == NL80211_CHAN_WIDTH_10) &&
2765 !(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_5_10_MHZ)) {
2766 NL_SET_ERR_MSG(extack, "5/10 MHz not supported");
2773 static int __nl80211_set_channel(struct cfg80211_registered_device *rdev,
2774 struct net_device *dev,
2775 struct genl_info *info)
2777 struct cfg80211_chan_def chandef;
2779 enum nl80211_iftype iftype = NL80211_IFTYPE_MONITOR;
2780 struct wireless_dev *wdev = NULL;
2783 wdev = dev->ieee80211_ptr;
2784 if (!nl80211_can_set_dev_channel(wdev))
2787 iftype = wdev->iftype;
2789 result = nl80211_parse_chandef(rdev, info, &chandef);
2794 case NL80211_IFTYPE_AP:
2795 case NL80211_IFTYPE_P2P_GO:
2796 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
2801 if (wdev->beacon_interval) {
2802 if (!dev || !rdev->ops->set_ap_chanwidth ||
2803 !(rdev->wiphy.features &
2804 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)) {
2809 /* Only allow dynamic channel width changes */
2810 if (chandef.chan != wdev->preset_chandef.chan) {
2814 result = rdev_set_ap_chanwidth(rdev, dev, &chandef);
2818 wdev->preset_chandef = chandef;
2821 case NL80211_IFTYPE_MESH_POINT:
2822 result = cfg80211_set_mesh_channel(rdev, wdev, &chandef);
2824 case NL80211_IFTYPE_MONITOR:
2825 result = cfg80211_set_monitor_channel(rdev, &chandef);
2834 static int nl80211_set_channel(struct sk_buff *skb, struct genl_info *info)
2836 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2837 struct net_device *netdev = info->user_ptr[1];
2839 return __nl80211_set_channel(rdev, netdev, info);
2842 static int nl80211_set_wds_peer(struct sk_buff *skb, struct genl_info *info)
2844 struct cfg80211_registered_device *rdev = info->user_ptr[0];
2845 struct net_device *dev = info->user_ptr[1];
2846 struct wireless_dev *wdev = dev->ieee80211_ptr;
2849 if (!info->attrs[NL80211_ATTR_MAC])
2852 if (netif_running(dev))
2855 if (!rdev->ops->set_wds_peer)
2858 if (wdev->iftype != NL80211_IFTYPE_WDS)
2861 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
2862 return rdev_set_wds_peer(rdev, dev, bssid);
2865 static int nl80211_set_wiphy(struct sk_buff *skb, struct genl_info *info)
2867 struct cfg80211_registered_device *rdev;
2868 struct net_device *netdev = NULL;
2869 struct wireless_dev *wdev;
2870 int result = 0, rem_txq_params = 0;
2871 struct nlattr *nl_txq_params;
2873 u8 retry_short = 0, retry_long = 0;
2874 u32 frag_threshold = 0, rts_threshold = 0;
2875 u8 coverage_class = 0;
2876 u32 txq_limit = 0, txq_memory_limit = 0, txq_quantum = 0;
2881 * Try to find the wiphy and netdev. Normally this
2882 * function shouldn't need the netdev, but this is
2883 * done for backward compatibility -- previously
2884 * setting the channel was done per wiphy, but now
2885 * it is per netdev. Previous userland like hostapd
2886 * also passed a netdev to set_wiphy, so that it is
2887 * possible to let that go to the right netdev!
2890 if (info->attrs[NL80211_ATTR_IFINDEX]) {
2891 int ifindex = nla_get_u32(info->attrs[NL80211_ATTR_IFINDEX]);
2893 netdev = __dev_get_by_index(genl_info_net(info), ifindex);
2894 if (netdev && netdev->ieee80211_ptr)
2895 rdev = wiphy_to_rdev(netdev->ieee80211_ptr->wiphy);
2901 rdev = __cfg80211_rdev_from_attrs(genl_info_net(info),
2904 return PTR_ERR(rdev);
2909 wdev = netdev->ieee80211_ptr;
2912 * end workaround code, by now the rdev is available
2913 * and locked, and wdev may or may not be NULL.
2916 if (info->attrs[NL80211_ATTR_WIPHY_NAME])
2917 result = cfg80211_dev_rename(
2918 rdev, nla_data(info->attrs[NL80211_ATTR_WIPHY_NAME]));
2923 if (info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS]) {
2924 struct ieee80211_txq_params txq_params;
2925 struct nlattr *tb[NL80211_TXQ_ATTR_MAX + 1];
2927 if (!rdev->ops->set_txq_params)
2933 if (netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
2934 netdev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
2937 if (!netif_running(netdev))
2940 nla_for_each_nested(nl_txq_params,
2941 info->attrs[NL80211_ATTR_WIPHY_TXQ_PARAMS],
2943 result = nla_parse_nested_deprecated(tb,
2944 NL80211_TXQ_ATTR_MAX,
2950 result = parse_txq_params(tb, &txq_params);
2954 result = rdev_set_txq_params(rdev, netdev,
2961 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
2962 result = __nl80211_set_channel(
2964 nl80211_can_set_dev_channel(wdev) ? netdev : NULL,
2970 if (info->attrs[NL80211_ATTR_WIPHY_TX_POWER_SETTING]) {
2971 struct wireless_dev *txp_wdev = wdev;
2972 enum nl80211_tx_power_setting type;
2975 if (!(rdev->wiphy.features & NL80211_FEATURE_VIF_TXPOWER))
2978 if (!rdev->ops->set_tx_power)
2981 idx = NL80211_ATTR_WIPHY_TX_POWER_SETTING;
2982 type = nla_get_u32(info->attrs[idx]);
2984 if (!info->attrs[NL80211_ATTR_WIPHY_TX_POWER_LEVEL] &&
2985 (type != NL80211_TX_POWER_AUTOMATIC))
2988 if (type != NL80211_TX_POWER_AUTOMATIC) {
2989 idx = NL80211_ATTR_WIPHY_TX_POWER_LEVEL;
2990 mbm = nla_get_u32(info->attrs[idx]);
2993 result = rdev_set_tx_power(rdev, txp_wdev, type, mbm);
2998 if (info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX] &&
2999 info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]) {
3002 if ((!rdev->wiphy.available_antennas_tx &&
3003 !rdev->wiphy.available_antennas_rx) ||
3004 !rdev->ops->set_antenna)
3007 tx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_TX]);
3008 rx_ant = nla_get_u32(info->attrs[NL80211_ATTR_WIPHY_ANTENNA_RX]);
3010 /* reject antenna configurations which don't match the
3011 * available antenna masks, except for the "all" mask */
3012 if ((~tx_ant && (tx_ant & ~rdev->wiphy.available_antennas_tx)) ||
3013 (~rx_ant && (rx_ant & ~rdev->wiphy.available_antennas_rx)))
3016 tx_ant = tx_ant & rdev->wiphy.available_antennas_tx;
3017 rx_ant = rx_ant & rdev->wiphy.available_antennas_rx;
3019 result = rdev_set_antenna(rdev, tx_ant, rx_ant);
3026 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]) {
3027 retry_short = nla_get_u8(
3028 info->attrs[NL80211_ATTR_WIPHY_RETRY_SHORT]);
3030 changed |= WIPHY_PARAM_RETRY_SHORT;
3033 if (info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]) {
3034 retry_long = nla_get_u8(
3035 info->attrs[NL80211_ATTR_WIPHY_RETRY_LONG]);
3037 changed |= WIPHY_PARAM_RETRY_LONG;
3040 if (info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]) {
3041 frag_threshold = nla_get_u32(
3042 info->attrs[NL80211_ATTR_WIPHY_FRAG_THRESHOLD]);
3043 if (frag_threshold < 256)
3046 if (frag_threshold != (u32) -1) {
3048 * Fragments (apart from the last one) are required to
3049 * have even length. Make the fragmentation code
3050 * simpler by stripping LSB should someone try to use
3051 * odd threshold value.
3053 frag_threshold &= ~0x1;
3055 changed |= WIPHY_PARAM_FRAG_THRESHOLD;
3058 if (info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]) {
3059 rts_threshold = nla_get_u32(
3060 info->attrs[NL80211_ATTR_WIPHY_RTS_THRESHOLD]);
3061 changed |= WIPHY_PARAM_RTS_THRESHOLD;
3064 if (info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]) {
3065 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK])
3068 coverage_class = nla_get_u8(
3069 info->attrs[NL80211_ATTR_WIPHY_COVERAGE_CLASS]);
3070 changed |= WIPHY_PARAM_COVERAGE_CLASS;
3073 if (info->attrs[NL80211_ATTR_WIPHY_DYN_ACK]) {
3074 if (!(rdev->wiphy.features & NL80211_FEATURE_ACKTO_ESTIMATION))
3077 changed |= WIPHY_PARAM_DYN_ACK;
3080 if (info->attrs[NL80211_ATTR_TXQ_LIMIT]) {
3081 if (!wiphy_ext_feature_isset(&rdev->wiphy,
3082 NL80211_EXT_FEATURE_TXQS))
3084 txq_limit = nla_get_u32(
3085 info->attrs[NL80211_ATTR_TXQ_LIMIT]);
3086 changed |= WIPHY_PARAM_TXQ_LIMIT;
3089 if (info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]) {
3090 if (!wiphy_ext_feature_isset(&rdev->wiphy,
3091 NL80211_EXT_FEATURE_TXQS))
3093 txq_memory_limit = nla_get_u32(
3094 info->attrs[NL80211_ATTR_TXQ_MEMORY_LIMIT]);
3095 changed |= WIPHY_PARAM_TXQ_MEMORY_LIMIT;
3098 if (info->attrs[NL80211_ATTR_TXQ_QUANTUM]) {
3099 if (!wiphy_ext_feature_isset(&rdev->wiphy,
3100 NL80211_EXT_FEATURE_TXQS))
3102 txq_quantum = nla_get_u32(
3103 info->attrs[NL80211_ATTR_TXQ_QUANTUM]);
3104 changed |= WIPHY_PARAM_TXQ_QUANTUM;
3108 u8 old_retry_short, old_retry_long;
3109 u32 old_frag_threshold, old_rts_threshold;
3110 u8 old_coverage_class;
3111 u32 old_txq_limit, old_txq_memory_limit, old_txq_quantum;
3113 if (!rdev->ops->set_wiphy_params)
3116 old_retry_short = rdev->wiphy.retry_short;
3117 old_retry_long = rdev->wiphy.retry_long;
3118 old_frag_threshold = rdev->wiphy.frag_threshold;
3119 old_rts_threshold = rdev->wiphy.rts_threshold;
3120 old_coverage_class = rdev->wiphy.coverage_class;
3121 old_txq_limit = rdev->wiphy.txq_limit;
3122 old_txq_memory_limit = rdev->wiphy.txq_memory_limit;
3123 old_txq_quantum = rdev->wiphy.txq_quantum;
3125 if (changed & WIPHY_PARAM_RETRY_SHORT)
3126 rdev->wiphy.retry_short = retry_short;
3127 if (changed & WIPHY_PARAM_RETRY_LONG)
3128 rdev->wiphy.retry_long = retry_long;
3129 if (changed & WIPHY_PARAM_FRAG_THRESHOLD)
3130 rdev->wiphy.frag_threshold = frag_threshold;
3131 if (changed & WIPHY_PARAM_RTS_THRESHOLD)
3132 rdev->wiphy.rts_threshold = rts_threshold;
3133 if (changed & WIPHY_PARAM_COVERAGE_CLASS)
3134 rdev->wiphy.coverage_class = coverage_class;
3135 if (changed & WIPHY_PARAM_TXQ_LIMIT)
3136 rdev->wiphy.txq_limit = txq_limit;
3137 if (changed & WIPHY_PARAM_TXQ_MEMORY_LIMIT)
3138 rdev->wiphy.txq_memory_limit = txq_memory_limit;
3139 if (changed & WIPHY_PARAM_TXQ_QUANTUM)
3140 rdev->wiphy.txq_quantum = txq_quantum;
3142 result = rdev_set_wiphy_params(rdev, changed);
3144 rdev->wiphy.retry_short = old_retry_short;
3145 rdev->wiphy.retry_long = old_retry_long;
3146 rdev->wiphy.frag_threshold = old_frag_threshold;
3147 rdev->wiphy.rts_threshold = old_rts_threshold;
3148 rdev->wiphy.coverage_class = old_coverage_class;
3149 rdev->wiphy.txq_limit = old_txq_limit;
3150 rdev->wiphy.txq_memory_limit = old_txq_memory_limit;
3151 rdev->wiphy.txq_quantum = old_txq_quantum;
3158 static int nl80211_send_chandef(struct sk_buff *msg,
3159 const struct cfg80211_chan_def *chandef)
3161 if (WARN_ON(!cfg80211_chandef_valid(chandef)))
3164 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ,
3165 chandef->chan->center_freq))
3167 switch (chandef->width) {
3168 case NL80211_CHAN_WIDTH_20_NOHT:
3169 case NL80211_CHAN_WIDTH_20:
3170 case NL80211_CHAN_WIDTH_40:
3171 if (nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
3172 cfg80211_get_chandef_type(chandef)))
3178 if (nla_put_u32(msg, NL80211_ATTR_CHANNEL_WIDTH, chandef->width))
3180 if (nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ1, chandef->center_freq1))
3182 if (chandef->center_freq2 &&
3183 nla_put_u32(msg, NL80211_ATTR_CENTER_FREQ2, chandef->center_freq2))
3188 static int nl80211_send_iface(struct sk_buff *msg, u32 portid, u32 seq, int flags,
3189 struct cfg80211_registered_device *rdev,
3190 struct wireless_dev *wdev,
3191 enum nl80211_commands cmd)
3193 struct net_device *dev = wdev->netdev;
3196 WARN_ON(cmd != NL80211_CMD_NEW_INTERFACE &&
3197 cmd != NL80211_CMD_DEL_INTERFACE &&
3198 cmd != NL80211_CMD_SET_INTERFACE);
3200 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
3205 (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3206 nla_put_string(msg, NL80211_ATTR_IFNAME, dev->name)))
3207 goto nla_put_failure;
3209 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
3210 nla_put_u32(msg, NL80211_ATTR_IFTYPE, wdev->iftype) ||
3211 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
3212 NL80211_ATTR_PAD) ||
3213 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, wdev_address(wdev)) ||
3214 nla_put_u32(msg, NL80211_ATTR_GENERATION,
3215 rdev->devlist_generation ^
3216 (cfg80211_rdev_list_generation << 2)) ||
3217 nla_put_u8(msg, NL80211_ATTR_4ADDR, wdev->use_4addr))
3218 goto nla_put_failure;
3220 if (rdev->ops->get_channel) {
3222 struct cfg80211_chan_def chandef = {};
3224 ret = rdev_get_channel(rdev, wdev, &chandef);
3226 if (nl80211_send_chandef(msg, &chandef))
3227 goto nla_put_failure;
3231 if (rdev->ops->get_tx_power) {
3234 ret = rdev_get_tx_power(rdev, wdev, &dbm);
3236 nla_put_u32(msg, NL80211_ATTR_WIPHY_TX_POWER_LEVEL,
3238 goto nla_put_failure;
3242 switch (wdev->iftype) {
3243 case NL80211_IFTYPE_AP:
3244 if (wdev->ssid_len &&
3245 nla_put(msg, NL80211_ATTR_SSID, wdev->ssid_len, wdev->ssid))
3246 goto nla_put_failure_locked;
3248 case NL80211_IFTYPE_STATION:
3249 case NL80211_IFTYPE_P2P_CLIENT:
3250 case NL80211_IFTYPE_ADHOC: {
3252 if (!wdev->current_bss)
3255 ssid_ie = ieee80211_bss_get_ie(&wdev->current_bss->pub,
3258 nla_put(msg, NL80211_ATTR_SSID, ssid_ie[1], ssid_ie + 2))
3259 goto nla_put_failure_rcu_locked;
3269 if (rdev->ops->get_txq_stats) {
3270 struct cfg80211_txq_stats txqstats = {};
3271 int ret = rdev_get_txq_stats(rdev, wdev, &txqstats);
3274 !nl80211_put_txq_stats(msg, &txqstats,
3275 NL80211_ATTR_TXQ_STATS))
3276 goto nla_put_failure;
3279 genlmsg_end(msg, hdr);
3282 nla_put_failure_rcu_locked:
3284 nla_put_failure_locked:
3287 genlmsg_cancel(msg, hdr);
3291 static int nl80211_dump_interface(struct sk_buff *skb, struct netlink_callback *cb)
3295 int wp_start = cb->args[0];
3296 int if_start = cb->args[1];
3297 int filter_wiphy = -1;
3298 struct cfg80211_registered_device *rdev;
3299 struct wireless_dev *wdev;
3304 struct nl80211_dump_wiphy_state state = {
3308 ret = nl80211_dump_wiphy_parse(skb, cb, &state);
3312 filter_wiphy = state.filter_wiphy;
3315 * if filtering, set cb->args[2] to +1 since 0 is the default
3316 * value needed to determine that parsing is necessary.
3318 if (filter_wiphy >= 0)
3319 cb->args[2] = filter_wiphy + 1;
3322 } else if (cb->args[2] > 0) {
3323 filter_wiphy = cb->args[2] - 1;
3326 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
3327 if (!net_eq(wiphy_net(&rdev->wiphy), sock_net(skb->sk)))
3329 if (wp_idx < wp_start) {
3334 if (filter_wiphy >= 0 && filter_wiphy != rdev->wiphy_idx)
3339 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
3340 if (if_idx < if_start) {
3344 if (nl80211_send_iface(skb, NETLINK_CB(cb->skb).portid,
3345 cb->nlh->nlmsg_seq, NLM_F_MULTI,
3347 NL80211_CMD_NEW_INTERFACE) < 0) {
3356 cb->args[0] = wp_idx;
3357 cb->args[1] = if_idx;
3366 static int nl80211_get_interface(struct sk_buff *skb, struct genl_info *info)
3368 struct sk_buff *msg;
3369 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3370 struct wireless_dev *wdev = info->user_ptr[1];
3372 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3376 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3377 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3382 return genlmsg_reply(msg, info);
3385 static const struct nla_policy mntr_flags_policy[NL80211_MNTR_FLAG_MAX + 1] = {
3386 [NL80211_MNTR_FLAG_FCSFAIL] = { .type = NLA_FLAG },
3387 [NL80211_MNTR_FLAG_PLCPFAIL] = { .type = NLA_FLAG },
3388 [NL80211_MNTR_FLAG_CONTROL] = { .type = NLA_FLAG },
3389 [NL80211_MNTR_FLAG_OTHER_BSS] = { .type = NLA_FLAG },
3390 [NL80211_MNTR_FLAG_COOK_FRAMES] = { .type = NLA_FLAG },
3391 [NL80211_MNTR_FLAG_ACTIVE] = { .type = NLA_FLAG },
3394 static int parse_monitor_flags(struct nlattr *nla, u32 *mntrflags)
3396 struct nlattr *flags[NL80211_MNTR_FLAG_MAX + 1];
3404 if (nla_parse_nested_deprecated(flags, NL80211_MNTR_FLAG_MAX, nla, mntr_flags_policy, NULL))
3407 for (flag = 1; flag <= NL80211_MNTR_FLAG_MAX; flag++)
3409 *mntrflags |= (1<<flag);
3411 *mntrflags |= MONITOR_FLAG_CHANGED;
3416 static int nl80211_parse_mon_options(struct cfg80211_registered_device *rdev,
3417 enum nl80211_iftype type,
3418 struct genl_info *info,
3419 struct vif_params *params)
3421 bool change = false;
3424 if (info->attrs[NL80211_ATTR_MNTR_FLAGS]) {
3425 if (type != NL80211_IFTYPE_MONITOR)
3428 err = parse_monitor_flags(info->attrs[NL80211_ATTR_MNTR_FLAGS],
3436 if (params->flags & MONITOR_FLAG_ACTIVE &&
3437 !(rdev->wiphy.features & NL80211_FEATURE_ACTIVE_MONITOR))
3440 if (info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]) {
3441 const u8 *mumimo_groups;
3442 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3444 if (type != NL80211_IFTYPE_MONITOR)
3447 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3451 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_GROUP_DATA]);
3453 /* bits 0 and 63 are reserved and must be zero */
3454 if ((mumimo_groups[0] & BIT(0)) ||
3455 (mumimo_groups[VHT_MUMIMO_GROUPS_DATA_LEN - 1] & BIT(7)))
3458 params->vht_mumimo_groups = mumimo_groups;
3462 if (info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]) {
3463 u32 cap_flag = NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER;
3465 if (type != NL80211_IFTYPE_MONITOR)
3468 if (!wiphy_ext_feature_isset(&rdev->wiphy, cap_flag))
3471 params->vht_mumimo_follow_addr =
3472 nla_data(info->attrs[NL80211_ATTR_MU_MIMO_FOLLOW_MAC_ADDR]);
3476 return change ? 1 : 0;
3479 static int nl80211_valid_4addr(struct cfg80211_registered_device *rdev,
3480 struct net_device *netdev, u8 use_4addr,
3481 enum nl80211_iftype iftype)
3484 if (netdev && (netdev->priv_flags & IFF_BRIDGE_PORT))
3490 case NL80211_IFTYPE_AP_VLAN:
3491 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_AP)
3494 case NL80211_IFTYPE_STATION:
3495 if (rdev->wiphy.flags & WIPHY_FLAG_4ADDR_STATION)
3505 static int nl80211_set_interface(struct sk_buff *skb, struct genl_info *info)
3507 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3508 struct vif_params params;
3510 enum nl80211_iftype otype, ntype;
3511 struct net_device *dev = info->user_ptr[1];
3512 bool change = false;
3514 memset(¶ms, 0, sizeof(params));
3516 otype = ntype = dev->ieee80211_ptr->iftype;
3518 if (info->attrs[NL80211_ATTR_IFTYPE]) {
3519 ntype = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3524 if (info->attrs[NL80211_ATTR_MESH_ID]) {
3525 struct wireless_dev *wdev = dev->ieee80211_ptr;
3527 if (ntype != NL80211_IFTYPE_MESH_POINT)
3529 if (netif_running(dev))
3533 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3534 IEEE80211_MAX_MESH_ID_LEN);
3535 wdev->mesh_id_up_len =
3536 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3537 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3538 wdev->mesh_id_up_len);
3542 if (info->attrs[NL80211_ATTR_4ADDR]) {
3543 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3545 err = nl80211_valid_4addr(rdev, dev, params.use_4addr, ntype);
3549 params.use_4addr = -1;
3552 err = nl80211_parse_mon_options(rdev, ntype, info, ¶ms);
3559 err = cfg80211_change_iface(rdev, dev, ntype, ¶ms);
3563 if (!err && params.use_4addr != -1)
3564 dev->ieee80211_ptr->use_4addr = params.use_4addr;
3566 if (change && !err) {
3567 struct wireless_dev *wdev = dev->ieee80211_ptr;
3569 nl80211_notify_iface(rdev, wdev, NL80211_CMD_SET_INTERFACE);
3575 static int nl80211_new_interface(struct sk_buff *skb, struct genl_info *info)
3577 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3578 struct vif_params params;
3579 struct wireless_dev *wdev;
3580 struct sk_buff *msg;
3582 enum nl80211_iftype type = NL80211_IFTYPE_UNSPECIFIED;
3584 /* to avoid failing a new interface creation due to pending removal */
3585 cfg80211_destroy_ifaces(rdev);
3587 memset(¶ms, 0, sizeof(params));
3589 if (!info->attrs[NL80211_ATTR_IFNAME])
3592 if (info->attrs[NL80211_ATTR_IFTYPE])
3593 type = nla_get_u32(info->attrs[NL80211_ATTR_IFTYPE]);
3595 if (!rdev->ops->add_virtual_intf)
3598 if ((type == NL80211_IFTYPE_P2P_DEVICE || type == NL80211_IFTYPE_NAN ||
3599 rdev->wiphy.features & NL80211_FEATURE_MAC_ON_CREATE) &&
3600 info->attrs[NL80211_ATTR_MAC]) {
3601 nla_memcpy(params.macaddr, info->attrs[NL80211_ATTR_MAC],
3603 if (!is_valid_ether_addr(params.macaddr))
3604 return -EADDRNOTAVAIL;
3607 if (info->attrs[NL80211_ATTR_4ADDR]) {
3608 params.use_4addr = !!nla_get_u8(info->attrs[NL80211_ATTR_4ADDR]);
3609 err = nl80211_valid_4addr(rdev, NULL, params.use_4addr, type);
3614 if (!cfg80211_iftype_allowed(&rdev->wiphy, type, params.use_4addr, 0))
3617 err = nl80211_parse_mon_options(rdev, type, info, ¶ms);
3621 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3625 wdev = rdev_add_virtual_intf(rdev,
3626 nla_data(info->attrs[NL80211_ATTR_IFNAME]),
3627 NET_NAME_USER, type, ¶ms);
3628 if (WARN_ON(!wdev)) {
3631 } else if (IS_ERR(wdev)) {
3633 return PTR_ERR(wdev);
3636 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
3637 wdev->owner_nlportid = info->snd_portid;
3640 case NL80211_IFTYPE_MESH_POINT:
3641 if (!info->attrs[NL80211_ATTR_MESH_ID])
3644 BUILD_BUG_ON(IEEE80211_MAX_SSID_LEN !=
3645 IEEE80211_MAX_MESH_ID_LEN);
3646 wdev->mesh_id_up_len =
3647 nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
3648 memcpy(wdev->ssid, nla_data(info->attrs[NL80211_ATTR_MESH_ID]),
3649 wdev->mesh_id_up_len);
3652 case NL80211_IFTYPE_NAN:
3653 case NL80211_IFTYPE_P2P_DEVICE:
3655 * P2P Device and NAN do not have a netdev, so don't go
3656 * through the netdev notifier and must be added here
3658 cfg80211_init_wdev(rdev, wdev);
3664 if (nl80211_send_iface(msg, info->snd_portid, info->snd_seq, 0,
3665 rdev, wdev, NL80211_CMD_NEW_INTERFACE) < 0) {
3670 return genlmsg_reply(msg, info);
3673 static int nl80211_del_interface(struct sk_buff *skb, struct genl_info *info)
3675 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3676 struct wireless_dev *wdev = info->user_ptr[1];
3678 if (!rdev->ops->del_virtual_intf)
3682 * If we remove a wireless device without a netdev then clear
3683 * user_ptr[1] so that nl80211_post_doit won't dereference it
3684 * to check if it needs to do dev_put(). Otherwise it crashes
3685 * since the wdev has been freed, unlike with a netdev where
3686 * we need the dev_put() for the netdev to really be freed.
3689 info->user_ptr[1] = NULL;
3691 return rdev_del_virtual_intf(rdev, wdev);
3694 static int nl80211_set_noack_map(struct sk_buff *skb, struct genl_info *info)
3696 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3697 struct net_device *dev = info->user_ptr[1];
3700 if (!info->attrs[NL80211_ATTR_NOACK_MAP])
3703 if (!rdev->ops->set_noack_map)
3706 noack_map = nla_get_u16(info->attrs[NL80211_ATTR_NOACK_MAP]);
3708 return rdev_set_noack_map(rdev, dev, noack_map);
3711 struct get_key_cookie {
3712 struct sk_buff *msg;
3717 static void get_key_callback(void *c, struct key_params *params)
3720 struct get_key_cookie *cookie = c;
3723 nla_put(cookie->msg, NL80211_ATTR_KEY_DATA,
3724 params->key_len, params->key)) ||
3726 nla_put(cookie->msg, NL80211_ATTR_KEY_SEQ,
3727 params->seq_len, params->seq)) ||
3729 nla_put_u32(cookie->msg, NL80211_ATTR_KEY_CIPHER,
3731 goto nla_put_failure;
3733 key = nla_nest_start_noflag(cookie->msg, NL80211_ATTR_KEY);
3735 goto nla_put_failure;
3738 nla_put(cookie->msg, NL80211_KEY_DATA,
3739 params->key_len, params->key)) ||
3741 nla_put(cookie->msg, NL80211_KEY_SEQ,
3742 params->seq_len, params->seq)) ||
3744 nla_put_u32(cookie->msg, NL80211_KEY_CIPHER,
3746 goto nla_put_failure;
3748 if (nla_put_u8(cookie->msg, NL80211_KEY_IDX, cookie->idx))
3749 goto nla_put_failure;
3751 nla_nest_end(cookie->msg, key);
3758 static int nl80211_get_key(struct sk_buff *skb, struct genl_info *info)
3760 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3762 struct net_device *dev = info->user_ptr[1];
3764 const u8 *mac_addr = NULL;
3766 struct get_key_cookie cookie = {
3770 struct sk_buff *msg;
3772 if (info->attrs[NL80211_ATTR_KEY_IDX])
3773 key_idx = nla_get_u8(info->attrs[NL80211_ATTR_KEY_IDX]);
3775 if (info->attrs[NL80211_ATTR_MAC])
3776 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3778 pairwise = !!mac_addr;
3779 if (info->attrs[NL80211_ATTR_KEY_TYPE]) {
3780 u32 kt = nla_get_u32(info->attrs[NL80211_ATTR_KEY_TYPE]);
3782 if (kt != NL80211_KEYTYPE_GROUP &&
3783 kt != NL80211_KEYTYPE_PAIRWISE)
3785 pairwise = kt == NL80211_KEYTYPE_PAIRWISE;
3788 if (!rdev->ops->get_key)
3791 if (!pairwise && mac_addr && !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
3794 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
3798 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
3799 NL80211_CMD_NEW_KEY);
3801 goto nla_put_failure;
3804 cookie.idx = key_idx;
3806 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
3807 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_idx))
3808 goto nla_put_failure;
3810 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr))
3811 goto nla_put_failure;
3813 err = rdev_get_key(rdev, dev, key_idx, pairwise, mac_addr, &cookie,
3820 goto nla_put_failure;
3822 genlmsg_end(msg, hdr);
3823 return genlmsg_reply(msg, info);
3832 static int nl80211_set_key(struct sk_buff *skb, struct genl_info *info)
3834 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3835 struct key_parse key;
3837 struct net_device *dev = info->user_ptr[1];
3839 err = nl80211_parse_key(info, &key);
3846 /* Only support setting default key and
3847 * Extended Key ID action NL80211_KEY_SET_TX.
3849 if (!key.def && !key.defmgmt &&
3850 !(key.p.mode == NL80211_KEY_SET_TX))
3853 wdev_lock(dev->ieee80211_ptr);
3856 if (!rdev->ops->set_default_key) {
3861 err = nl80211_key_allowed(dev->ieee80211_ptr);
3865 err = rdev_set_default_key(rdev, dev, key.idx,
3866 key.def_uni, key.def_multi);
3871 #ifdef CONFIG_CFG80211_WEXT
3872 dev->ieee80211_ptr->wext.default_key = key.idx;
3874 } else if (key.defmgmt) {
3875 if (key.def_uni || !key.def_multi) {
3880 if (!rdev->ops->set_default_mgmt_key) {
3885 err = nl80211_key_allowed(dev->ieee80211_ptr);
3889 err = rdev_set_default_mgmt_key(rdev, dev, key.idx);
3893 #ifdef CONFIG_CFG80211_WEXT
3894 dev->ieee80211_ptr->wext.default_mgmt_key = key.idx;
3896 } else if (key.p.mode == NL80211_KEY_SET_TX &&
3897 wiphy_ext_feature_isset(&rdev->wiphy,
3898 NL80211_EXT_FEATURE_EXT_KEY_ID)) {
3899 u8 *mac_addr = NULL;
3901 if (info->attrs[NL80211_ATTR_MAC])
3902 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3904 if (!mac_addr || key.idx < 0 || key.idx > 1) {
3909 err = rdev_add_key(rdev, dev, key.idx,
3910 NL80211_KEYTYPE_PAIRWISE,
3916 wdev_unlock(dev->ieee80211_ptr);
3921 static int nl80211_new_key(struct sk_buff *skb, struct genl_info *info)
3923 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3925 struct net_device *dev = info->user_ptr[1];
3926 struct key_parse key;
3927 const u8 *mac_addr = NULL;
3929 err = nl80211_parse_key(info, &key);
3936 if (info->attrs[NL80211_ATTR_MAC])
3937 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3939 if (key.type == -1) {
3941 key.type = NL80211_KEYTYPE_PAIRWISE;
3943 key.type = NL80211_KEYTYPE_GROUP;
3947 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3948 key.type != NL80211_KEYTYPE_GROUP)
3951 if (key.type == NL80211_KEYTYPE_GROUP &&
3952 info->attrs[NL80211_ATTR_VLAN_ID])
3953 key.p.vlan_id = nla_get_u16(info->attrs[NL80211_ATTR_VLAN_ID]);
3955 if (!rdev->ops->add_key)
3958 if (cfg80211_validate_key_settings(rdev, &key.p, key.idx,
3959 key.type == NL80211_KEYTYPE_PAIRWISE,
3963 wdev_lock(dev->ieee80211_ptr);
3964 err = nl80211_key_allowed(dev->ieee80211_ptr);
3966 err = rdev_add_key(rdev, dev, key.idx,
3967 key.type == NL80211_KEYTYPE_PAIRWISE,
3969 wdev_unlock(dev->ieee80211_ptr);
3974 static int nl80211_del_key(struct sk_buff *skb, struct genl_info *info)
3976 struct cfg80211_registered_device *rdev = info->user_ptr[0];
3978 struct net_device *dev = info->user_ptr[1];
3979 u8 *mac_addr = NULL;
3980 struct key_parse key;
3982 err = nl80211_parse_key(info, &key);
3986 if (info->attrs[NL80211_ATTR_MAC])
3987 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
3989 if (key.type == -1) {
3991 key.type = NL80211_KEYTYPE_PAIRWISE;
3993 key.type = NL80211_KEYTYPE_GROUP;
3997 if (key.type != NL80211_KEYTYPE_PAIRWISE &&
3998 key.type != NL80211_KEYTYPE_GROUP)
4001 if (!rdev->ops->del_key)
4004 wdev_lock(dev->ieee80211_ptr);
4005 err = nl80211_key_allowed(dev->ieee80211_ptr);
4007 if (key.type == NL80211_KEYTYPE_GROUP && mac_addr &&
4008 !(rdev->wiphy.flags & WIPHY_FLAG_IBSS_RSN))
4012 err = rdev_del_key(rdev, dev, key.idx,
4013 key.type == NL80211_KEYTYPE_PAIRWISE,
4016 #ifdef CONFIG_CFG80211_WEXT
4018 if (key.idx == dev->ieee80211_ptr->wext.default_key)
4019 dev->ieee80211_ptr->wext.default_key = -1;
4020 else if (key.idx == dev->ieee80211_ptr->wext.default_mgmt_key)
4021 dev->ieee80211_ptr->wext.default_mgmt_key = -1;
4024 wdev_unlock(dev->ieee80211_ptr);
4029 /* This function returns an error or the number of nested attributes */
4030 static int validate_acl_mac_addrs(struct nlattr *nl_attr)
4032 struct nlattr *attr;
4033 int n_entries = 0, tmp;
4035 nla_for_each_nested(attr, nl_attr, tmp) {
4036 if (nla_len(attr) != ETH_ALEN)
4046 * This function parses ACL information and allocates memory for ACL data.
4047 * On successful return, the calling function is responsible to free the
4048 * ACL buffer returned by this function.
4050 static struct cfg80211_acl_data *parse_acl_data(struct wiphy *wiphy,
4051 struct genl_info *info)
4053 enum nl80211_acl_policy acl_policy;
4054 struct nlattr *attr;
4055 struct cfg80211_acl_data *acl;
4056 int i = 0, n_entries, tmp;
4058 if (!wiphy->max_acl_mac_addrs)
4059 return ERR_PTR(-EOPNOTSUPP);
4061 if (!info->attrs[NL80211_ATTR_ACL_POLICY])
4062 return ERR_PTR(-EINVAL);
4064 acl_policy = nla_get_u32(info->attrs[NL80211_ATTR_ACL_POLICY]);
4065 if (acl_policy != NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED &&
4066 acl_policy != NL80211_ACL_POLICY_DENY_UNLESS_LISTED)
4067 return ERR_PTR(-EINVAL);
4069 if (!info->attrs[NL80211_ATTR_MAC_ADDRS])
4070 return ERR_PTR(-EINVAL);
4072 n_entries = validate_acl_mac_addrs(info->attrs[NL80211_ATTR_MAC_ADDRS]);
4074 return ERR_PTR(n_entries);
4076 if (n_entries > wiphy->max_acl_mac_addrs)
4077 return ERR_PTR(-ENOTSUPP);
4079 acl = kzalloc(struct_size(acl, mac_addrs, n_entries), GFP_KERNEL);
4081 return ERR_PTR(-ENOMEM);
4083 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_MAC_ADDRS], tmp) {
4084 memcpy(acl->mac_addrs[i].addr, nla_data(attr), ETH_ALEN);
4088 acl->n_acl_entries = n_entries;
4089 acl->acl_policy = acl_policy;
4094 static int nl80211_set_mac_acl(struct sk_buff *skb, struct genl_info *info)
4096 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4097 struct net_device *dev = info->user_ptr[1];
4098 struct cfg80211_acl_data *acl;
4101 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4102 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4105 if (!dev->ieee80211_ptr->beacon_interval)
4108 acl = parse_acl_data(&rdev->wiphy, info);
4110 return PTR_ERR(acl);
4112 err = rdev_set_mac_acl(rdev, dev, acl);
4119 static u32 rateset_to_mask(struct ieee80211_supported_band *sband,
4120 u8 *rates, u8 rates_len)
4125 for (i = 0; i < rates_len; i++) {
4126 int rate = (rates[i] & 0x7f) * 5;
4129 for (ridx = 0; ridx < sband->n_bitrates; ridx++) {
4130 struct ieee80211_rate *srate =
4131 &sband->bitrates[ridx];
4132 if (rate == srate->bitrate) {
4137 if (ridx == sband->n_bitrates)
4138 return 0; /* rate not found */
4144 static bool ht_rateset_to_mask(struct ieee80211_supported_band *sband,
4145 u8 *rates, u8 rates_len,
4146 u8 mcs[IEEE80211_HT_MCS_MASK_LEN])
4150 memset(mcs, 0, IEEE80211_HT_MCS_MASK_LEN);
4152 for (i = 0; i < rates_len; i++) {
4155 ridx = rates[i] / 8;
4156 rbit = BIT(rates[i] % 8);
4158 /* check validity */
4159 if ((ridx < 0) || (ridx >= IEEE80211_HT_MCS_MASK_LEN))
4162 /* check availability */
4163 ridx = array_index_nospec(ridx, IEEE80211_HT_MCS_MASK_LEN);
4164 if (sband->ht_cap.mcs.rx_mask[ridx] & rbit)
4173 static u16 vht_mcs_map_to_mcs_mask(u8 vht_mcs_map)
4177 switch (vht_mcs_map) {
4178 case IEEE80211_VHT_MCS_NOT_SUPPORTED:
4180 case IEEE80211_VHT_MCS_SUPPORT_0_7:
4183 case IEEE80211_VHT_MCS_SUPPORT_0_8:
4186 case IEEE80211_VHT_MCS_SUPPORT_0_9:
4196 static void vht_build_mcs_mask(u16 vht_mcs_map,
4197 u16 vht_mcs_mask[NL80211_VHT_NSS_MAX])
4201 for (nss = 0; nss < NL80211_VHT_NSS_MAX; nss++) {
4202 vht_mcs_mask[nss] = vht_mcs_map_to_mcs_mask(vht_mcs_map & 0x03);
4207 static bool vht_set_mcs_mask(struct ieee80211_supported_band *sband,
4208 struct nl80211_txrate_vht *txrate,
4209 u16 mcs[NL80211_VHT_NSS_MAX])
4211 u16 tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4212 u16 tx_mcs_mask[NL80211_VHT_NSS_MAX] = {};
4215 if (!sband->vht_cap.vht_supported)
4218 memset(mcs, 0, sizeof(u16) * NL80211_VHT_NSS_MAX);
4220 /* Build vht_mcs_mask from VHT capabilities */
4221 vht_build_mcs_mask(tx_mcs_map, tx_mcs_mask);
4223 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4224 if ((tx_mcs_mask[i] & txrate->mcs[i]) == txrate->mcs[i])
4225 mcs[i] = txrate->mcs[i];
4233 static const struct nla_policy nl80211_txattr_policy[NL80211_TXRATE_MAX + 1] = {
4234 [NL80211_TXRATE_LEGACY] = { .type = NLA_BINARY,
4235 .len = NL80211_MAX_SUPP_RATES },
4236 [NL80211_TXRATE_HT] = { .type = NLA_BINARY,
4237 .len = NL80211_MAX_SUPP_HT_RATES },
4238 [NL80211_TXRATE_VHT] = {
4239 .type = NLA_EXACT_LEN_WARN,
4240 .len = sizeof(struct nl80211_txrate_vht),
4242 [NL80211_TXRATE_GI] = { .type = NLA_U8 },
4245 static int nl80211_parse_tx_bitrate_mask(struct genl_info *info,
4246 struct cfg80211_bitrate_mask *mask)
4248 struct nlattr *tb[NL80211_TXRATE_MAX + 1];
4249 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4251 struct nlattr *tx_rates;
4252 struct ieee80211_supported_band *sband;
4255 memset(mask, 0, sizeof(*mask));
4256 /* Default to all rates enabled */
4257 for (i = 0; i < NUM_NL80211_BANDS; i++) {
4258 sband = rdev->wiphy.bands[i];
4263 mask->control[i].legacy = (1 << sband->n_bitrates) - 1;
4264 memcpy(mask->control[i].ht_mcs,
4265 sband->ht_cap.mcs.rx_mask,
4266 sizeof(mask->control[i].ht_mcs));
4268 if (!sband->vht_cap.vht_supported)
4271 vht_tx_mcs_map = le16_to_cpu(sband->vht_cap.vht_mcs.tx_mcs_map);
4272 vht_build_mcs_mask(vht_tx_mcs_map, mask->control[i].vht_mcs);
4275 /* if no rates are given set it back to the defaults */
4276 if (!info->attrs[NL80211_ATTR_TX_RATES])
4279 /* The nested attribute uses enum nl80211_band as the index. This maps
4280 * directly to the enum nl80211_band values used in cfg80211.
4282 BUILD_BUG_ON(NL80211_MAX_SUPP_HT_RATES > IEEE80211_HT_MCS_MASK_LEN * 8);
4283 nla_for_each_nested(tx_rates, info->attrs[NL80211_ATTR_TX_RATES], rem) {
4284 enum nl80211_band band = nla_type(tx_rates);
4287 if (band < 0 || band >= NUM_NL80211_BANDS)
4289 sband = rdev->wiphy.bands[band];
4292 err = nla_parse_nested_deprecated(tb, NL80211_TXRATE_MAX,
4294 nl80211_txattr_policy,
4298 if (tb[NL80211_TXRATE_LEGACY]) {
4299 mask->control[band].legacy = rateset_to_mask(
4301 nla_data(tb[NL80211_TXRATE_LEGACY]),
4302 nla_len(tb[NL80211_TXRATE_LEGACY]));
4303 if ((mask->control[band].legacy == 0) &&
4304 nla_len(tb[NL80211_TXRATE_LEGACY]))
4307 if (tb[NL80211_TXRATE_HT]) {
4308 if (!ht_rateset_to_mask(
4310 nla_data(tb[NL80211_TXRATE_HT]),
4311 nla_len(tb[NL80211_TXRATE_HT]),
4312 mask->control[band].ht_mcs))
4315 if (tb[NL80211_TXRATE_VHT]) {
4316 if (!vht_set_mcs_mask(
4318 nla_data(tb[NL80211_TXRATE_VHT]),
4319 mask->control[band].vht_mcs))
4322 if (tb[NL80211_TXRATE_GI]) {
4323 mask->control[band].gi =
4324 nla_get_u8(tb[NL80211_TXRATE_GI]);
4325 if (mask->control[band].gi > NL80211_TXRATE_FORCE_LGI)
4329 if (mask->control[band].legacy == 0) {
4330 /* don't allow empty legacy rates if HT or VHT
4331 * are not even supported.
4333 if (!(rdev->wiphy.bands[band]->ht_cap.ht_supported ||
4334 rdev->wiphy.bands[band]->vht_cap.vht_supported))
4337 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++)
4338 if (mask->control[band].ht_mcs[i])
4341 for (i = 0; i < NL80211_VHT_NSS_MAX; i++)
4342 if (mask->control[band].vht_mcs[i])
4345 /* legacy and mcs rates may not be both empty */
4354 static int validate_beacon_tx_rate(struct cfg80211_registered_device *rdev,
4355 enum nl80211_band band,
4356 struct cfg80211_bitrate_mask *beacon_rate)
4358 u32 count_ht, count_vht, i;
4359 u32 rate = beacon_rate->control[band].legacy;
4361 /* Allow only one rate */
4362 if (hweight32(rate) > 1)
4366 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
4367 if (hweight8(beacon_rate->control[band].ht_mcs[i]) > 1) {
4369 } else if (beacon_rate->control[band].ht_mcs[i]) {
4374 if (count_ht && rate)
4379 for (i = 0; i < NL80211_VHT_NSS_MAX; i++) {
4380 if (hweight16(beacon_rate->control[band].vht_mcs[i]) > 1) {
4382 } else if (beacon_rate->control[band].vht_mcs[i]) {
4387 if (count_vht && rate)
4391 if ((count_ht && count_vht) || (!rate && !count_ht && !count_vht))
4395 !wiphy_ext_feature_isset(&rdev->wiphy,
4396 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY))
4399 !wiphy_ext_feature_isset(&rdev->wiphy,
4400 NL80211_EXT_FEATURE_BEACON_RATE_HT))
4403 !wiphy_ext_feature_isset(&rdev->wiphy,
4404 NL80211_EXT_FEATURE_BEACON_RATE_VHT))
4410 static int nl80211_parse_beacon(struct cfg80211_registered_device *rdev,
4411 struct nlattr *attrs[],
4412 struct cfg80211_beacon_data *bcn)
4414 bool haveinfo = false;
4417 memset(bcn, 0, sizeof(*bcn));
4419 if (attrs[NL80211_ATTR_BEACON_HEAD]) {
4420 bcn->head = nla_data(attrs[NL80211_ATTR_BEACON_HEAD]);
4421 bcn->head_len = nla_len(attrs[NL80211_ATTR_BEACON_HEAD]);
4427 if (attrs[NL80211_ATTR_BEACON_TAIL]) {
4428 bcn->tail = nla_data(attrs[NL80211_ATTR_BEACON_TAIL]);
4429 bcn->tail_len = nla_len(attrs[NL80211_ATTR_BEACON_TAIL]);
4436 if (attrs[NL80211_ATTR_IE]) {
4437 bcn->beacon_ies = nla_data(attrs[NL80211_ATTR_IE]);
4438 bcn->beacon_ies_len = nla_len(attrs[NL80211_ATTR_IE]);
4441 if (attrs[NL80211_ATTR_IE_PROBE_RESP]) {
4442 bcn->proberesp_ies =
4443 nla_data(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4444 bcn->proberesp_ies_len =
4445 nla_len(attrs[NL80211_ATTR_IE_PROBE_RESP]);
4448 if (attrs[NL80211_ATTR_IE_ASSOC_RESP]) {
4449 bcn->assocresp_ies =
4450 nla_data(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4451 bcn->assocresp_ies_len =
4452 nla_len(attrs[NL80211_ATTR_IE_ASSOC_RESP]);
4455 if (attrs[NL80211_ATTR_PROBE_RESP]) {
4456 bcn->probe_resp = nla_data(attrs[NL80211_ATTR_PROBE_RESP]);
4457 bcn->probe_resp_len = nla_len(attrs[NL80211_ATTR_PROBE_RESP]);
4460 if (attrs[NL80211_ATTR_FTM_RESPONDER]) {
4461 struct nlattr *tb[NL80211_FTM_RESP_ATTR_MAX + 1];
4463 err = nla_parse_nested_deprecated(tb,
4464 NL80211_FTM_RESP_ATTR_MAX,
4465 attrs[NL80211_ATTR_FTM_RESPONDER],
4470 if (tb[NL80211_FTM_RESP_ATTR_ENABLED] &&
4471 wiphy_ext_feature_isset(&rdev->wiphy,
4472 NL80211_EXT_FEATURE_ENABLE_FTM_RESPONDER))
4473 bcn->ftm_responder = 1;
4477 if (tb[NL80211_FTM_RESP_ATTR_LCI]) {
4478 bcn->lci = nla_data(tb[NL80211_FTM_RESP_ATTR_LCI]);
4479 bcn->lci_len = nla_len(tb[NL80211_FTM_RESP_ATTR_LCI]);
4482 if (tb[NL80211_FTM_RESP_ATTR_CIVICLOC]) {
4483 bcn->civicloc = nla_data(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4484 bcn->civicloc_len = nla_len(tb[NL80211_FTM_RESP_ATTR_CIVICLOC]);
4487 bcn->ftm_responder = -1;
4493 static int nl80211_parse_he_obss_pd(struct nlattr *attrs,
4494 struct ieee80211_he_obss_pd *he_obss_pd)
4496 struct nlattr *tb[NL80211_HE_OBSS_PD_ATTR_MAX + 1];
4499 err = nla_parse_nested(tb, NL80211_HE_OBSS_PD_ATTR_MAX, attrs,
4500 he_obss_pd_policy, NULL);
4504 if (!tb[NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET] ||
4505 !tb[NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET])
4508 he_obss_pd->min_offset =
4509 nla_get_u32(tb[NL80211_HE_OBSS_PD_ATTR_MIN_OFFSET]);
4510 he_obss_pd->max_offset =
4511 nla_get_u32(tb[NL80211_HE_OBSS_PD_ATTR_MAX_OFFSET]);
4513 if (he_obss_pd->min_offset >= he_obss_pd->max_offset)
4516 he_obss_pd->enable = true;
4521 static void nl80211_check_ap_rate_selectors(struct cfg80211_ap_settings *params,
4529 for (i = 0; i < rates[1]; i++) {
4530 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_HT_PHY)
4531 params->ht_required = true;
4532 if (rates[2 + i] == BSS_MEMBERSHIP_SELECTOR_VHT_PHY)
4533 params->vht_required = true;
4538 * Since the nl80211 API didn't include, from the beginning, attributes about
4539 * HT/VHT requirements/capabilities, we parse them out of the IEs for the
4540 * benefit of drivers that rebuild IEs in the firmware.
4542 static void nl80211_calculate_ap_params(struct cfg80211_ap_settings *params)
4544 const struct cfg80211_beacon_data *bcn = ¶ms->beacon;
4545 size_t ies_len = bcn->tail_len;
4546 const u8 *ies = bcn->tail;
4550 rates = cfg80211_find_ie(WLAN_EID_SUPP_RATES, ies, ies_len);
4551 nl80211_check_ap_rate_selectors(params, rates);
4553 rates = cfg80211_find_ie(WLAN_EID_EXT_SUPP_RATES, ies, ies_len);
4554 nl80211_check_ap_rate_selectors(params, rates);
4556 cap = cfg80211_find_ie(WLAN_EID_HT_CAPABILITY, ies, ies_len);
4557 if (cap && cap[1] >= sizeof(*params->ht_cap))
4558 params->ht_cap = (void *)(cap + 2);
4559 cap = cfg80211_find_ie(WLAN_EID_VHT_CAPABILITY, ies, ies_len);
4560 if (cap && cap[1] >= sizeof(*params->vht_cap))
4561 params->vht_cap = (void *)(cap + 2);
4562 cap = cfg80211_find_ext_ie(WLAN_EID_EXT_HE_CAPABILITY, ies, ies_len);
4563 if (cap && cap[1] >= sizeof(*params->he_cap) + 1)
4564 params->he_cap = (void *)(cap + 3);
4567 static bool nl80211_get_ap_channel(struct cfg80211_registered_device *rdev,
4568 struct cfg80211_ap_settings *params)
4570 struct wireless_dev *wdev;
4573 list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
4574 if (wdev->iftype != NL80211_IFTYPE_AP &&
4575 wdev->iftype != NL80211_IFTYPE_P2P_GO)
4578 if (!wdev->preset_chandef.chan)
4581 params->chandef = wdev->preset_chandef;
4589 static bool nl80211_valid_auth_type(struct cfg80211_registered_device *rdev,
4590 enum nl80211_auth_type auth_type,
4591 enum nl80211_commands cmd)
4593 if (auth_type > NL80211_AUTHTYPE_MAX)
4597 case NL80211_CMD_AUTHENTICATE:
4598 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4599 auth_type == NL80211_AUTHTYPE_SAE)
4601 if (!wiphy_ext_feature_isset(&rdev->wiphy,
4602 NL80211_EXT_FEATURE_FILS_STA) &&
4603 (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4604 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4605 auth_type == NL80211_AUTHTYPE_FILS_PK))
4608 case NL80211_CMD_CONNECT:
4609 if (!(rdev->wiphy.features & NL80211_FEATURE_SAE) &&
4610 !wiphy_ext_feature_isset(&rdev->wiphy,
4611 NL80211_EXT_FEATURE_SAE_OFFLOAD) &&
4612 auth_type == NL80211_AUTHTYPE_SAE)
4615 /* FILS with SK PFS or PK not supported yet */
4616 if (auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4617 auth_type == NL80211_AUTHTYPE_FILS_PK)
4619 if (!wiphy_ext_feature_isset(
4621 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
4622 auth_type == NL80211_AUTHTYPE_FILS_SK)
4625 case NL80211_CMD_START_AP:
4626 /* SAE not supported yet */
4627 if (auth_type == NL80211_AUTHTYPE_SAE)
4629 /* FILS not supported yet */
4630 if (auth_type == NL80211_AUTHTYPE_FILS_SK ||
4631 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
4632 auth_type == NL80211_AUTHTYPE_FILS_PK)
4640 static int nl80211_start_ap(struct sk_buff *skb, struct genl_info *info)
4642 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4643 struct net_device *dev = info->user_ptr[1];
4644 struct wireless_dev *wdev = dev->ieee80211_ptr;
4645 struct cfg80211_ap_settings params;
4648 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4649 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4652 if (!rdev->ops->start_ap)
4655 if (wdev->beacon_interval)
4658 memset(¶ms, 0, sizeof(params));
4660 /* these are required for START_AP */
4661 if (!info->attrs[NL80211_ATTR_BEACON_INTERVAL] ||
4662 !info->attrs[NL80211_ATTR_DTIM_PERIOD] ||
4663 !info->attrs[NL80211_ATTR_BEACON_HEAD])
4666 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon);
4670 params.beacon_interval =
4671 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
4672 params.dtim_period =
4673 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
4675 err = cfg80211_validate_beacon_int(rdev, dev->ieee80211_ptr->iftype,
4676 params.beacon_interval);
4681 * In theory, some of these attributes should be required here
4682 * but since they were not used when the command was originally
4683 * added, keep them optional for old user space programs to let
4684 * them continue to work with drivers that do not need the
4685 * additional information -- drivers must check!
4687 if (info->attrs[NL80211_ATTR_SSID]) {
4688 params.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
4690 nla_len(info->attrs[NL80211_ATTR_SSID]);
4691 if (params.ssid_len == 0 ||
4692 params.ssid_len > IEEE80211_MAX_SSID_LEN)
4696 if (info->attrs[NL80211_ATTR_HIDDEN_SSID])
4697 params.hidden_ssid = nla_get_u32(
4698 info->attrs[NL80211_ATTR_HIDDEN_SSID]);
4700 params.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
4702 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
4703 params.auth_type = nla_get_u32(
4704 info->attrs[NL80211_ATTR_AUTH_TYPE]);
4705 if (!nl80211_valid_auth_type(rdev, params.auth_type,
4706 NL80211_CMD_START_AP))
4709 params.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
4711 err = nl80211_crypto_settings(rdev, info, ¶ms.crypto,
4712 NL80211_MAX_NR_CIPHER_SUITES);
4716 if (info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]) {
4717 if (!(rdev->wiphy.features & NL80211_FEATURE_INACTIVITY_TIMER))
4719 params.inactivity_timeout = nla_get_u16(
4720 info->attrs[NL80211_ATTR_INACTIVITY_TIMEOUT]);
4723 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
4724 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4726 params.p2p_ctwindow =
4727 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
4728 if (params.p2p_ctwindow != 0 &&
4729 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
4733 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
4736 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4738 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
4739 params.p2p_opp_ps = tmp;
4740 if (params.p2p_opp_ps != 0 &&
4741 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
4745 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
4746 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
4749 } else if (wdev->preset_chandef.chan) {
4750 params.chandef = wdev->preset_chandef;
4751 } else if (!nl80211_get_ap_channel(rdev, ¶ms))
4754 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
4758 if (info->attrs[NL80211_ATTR_TX_RATES]) {
4759 err = nl80211_parse_tx_bitrate_mask(info, ¶ms.beacon_rate);
4763 err = validate_beacon_tx_rate(rdev, params.chandef.chan->band,
4764 ¶ms.beacon_rate);
4769 if (info->attrs[NL80211_ATTR_SMPS_MODE]) {
4771 nla_get_u8(info->attrs[NL80211_ATTR_SMPS_MODE]);
4772 switch (params.smps_mode) {
4773 case NL80211_SMPS_OFF:
4775 case NL80211_SMPS_STATIC:
4776 if (!(rdev->wiphy.features &
4777 NL80211_FEATURE_STATIC_SMPS))
4780 case NL80211_SMPS_DYNAMIC:
4781 if (!(rdev->wiphy.features &
4782 NL80211_FEATURE_DYNAMIC_SMPS))
4789 params.smps_mode = NL80211_SMPS_OFF;
4792 params.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
4793 if (params.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ])
4796 if (info->attrs[NL80211_ATTR_ACL_POLICY]) {
4797 params.acl = parse_acl_data(&rdev->wiphy, info);
4798 if (IS_ERR(params.acl))
4799 return PTR_ERR(params.acl);
4802 params.twt_responder =
4803 nla_get_flag(info->attrs[NL80211_ATTR_TWT_RESPONDER]);
4805 if (info->attrs[NL80211_ATTR_HE_OBSS_PD]) {
4806 err = nl80211_parse_he_obss_pd(
4807 info->attrs[NL80211_ATTR_HE_OBSS_PD],
4808 ¶ms.he_obss_pd);
4812 nl80211_calculate_ap_params(¶ms);
4814 if (info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])
4815 params.flags |= AP_SETTINGS_EXTERNAL_AUTH_SUPPORT;
4818 err = rdev_start_ap(rdev, dev, ¶ms);
4820 wdev->preset_chandef = params.chandef;
4821 wdev->beacon_interval = params.beacon_interval;
4822 wdev->chandef = params.chandef;
4823 wdev->ssid_len = params.ssid_len;
4824 memcpy(wdev->ssid, params.ssid, wdev->ssid_len);
4826 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
4827 wdev->conn_owner_nlportid = info->snd_portid;
4837 static int nl80211_set_beacon(struct sk_buff *skb, struct genl_info *info)
4839 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4840 struct net_device *dev = info->user_ptr[1];
4841 struct wireless_dev *wdev = dev->ieee80211_ptr;
4842 struct cfg80211_beacon_data params;
4845 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
4846 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
4849 if (!rdev->ops->change_beacon)
4852 if (!wdev->beacon_interval)
4855 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms);
4860 err = rdev_change_beacon(rdev, dev, ¶ms);
4866 static int nl80211_stop_ap(struct sk_buff *skb, struct genl_info *info)
4868 struct cfg80211_registered_device *rdev = info->user_ptr[0];
4869 struct net_device *dev = info->user_ptr[1];
4871 return cfg80211_stop_ap(rdev, dev, false);
4874 static const struct nla_policy sta_flags_policy[NL80211_STA_FLAG_MAX + 1] = {
4875 [NL80211_STA_FLAG_AUTHORIZED] = { .type = NLA_FLAG },
4876 [NL80211_STA_FLAG_SHORT_PREAMBLE] = { .type = NLA_FLAG },
4877 [NL80211_STA_FLAG_WME] = { .type = NLA_FLAG },
4878 [NL80211_STA_FLAG_MFP] = { .type = NLA_FLAG },
4879 [NL80211_STA_FLAG_AUTHENTICATED] = { .type = NLA_FLAG },
4880 [NL80211_STA_FLAG_TDLS_PEER] = { .type = NLA_FLAG },
4883 static int parse_station_flags(struct genl_info *info,
4884 enum nl80211_iftype iftype,
4885 struct station_parameters *params)
4887 struct nlattr *flags[NL80211_STA_FLAG_MAX + 1];
4892 * Try parsing the new attribute first so userspace
4893 * can specify both for older kernels.
4895 nla = info->attrs[NL80211_ATTR_STA_FLAGS2];
4897 struct nl80211_sta_flag_update *sta_flags;
4899 sta_flags = nla_data(nla);
4900 params->sta_flags_mask = sta_flags->mask;
4901 params->sta_flags_set = sta_flags->set;
4902 params->sta_flags_set &= params->sta_flags_mask;
4903 if ((params->sta_flags_mask |
4904 params->sta_flags_set) & BIT(__NL80211_STA_FLAG_INVALID))
4909 /* if present, parse the old attribute */
4911 nla = info->attrs[NL80211_ATTR_STA_FLAGS];
4915 if (nla_parse_nested_deprecated(flags, NL80211_STA_FLAG_MAX, nla, sta_flags_policy, info->extack))
4919 * Only allow certain flags for interface types so that
4920 * other attributes are silently ignored. Remember that
4921 * this is backward compatibility code with old userspace
4922 * and shouldn't be hit in other cases anyway.
4925 case NL80211_IFTYPE_AP:
4926 case NL80211_IFTYPE_AP_VLAN:
4927 case NL80211_IFTYPE_P2P_GO:
4928 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4929 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
4930 BIT(NL80211_STA_FLAG_WME) |
4931 BIT(NL80211_STA_FLAG_MFP);
4933 case NL80211_IFTYPE_P2P_CLIENT:
4934 case NL80211_IFTYPE_STATION:
4935 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHORIZED) |
4936 BIT(NL80211_STA_FLAG_TDLS_PEER);
4938 case NL80211_IFTYPE_MESH_POINT:
4939 params->sta_flags_mask = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
4940 BIT(NL80211_STA_FLAG_MFP) |
4941 BIT(NL80211_STA_FLAG_AUTHORIZED);
4947 for (flag = 1; flag <= NL80211_STA_FLAG_MAX; flag++) {
4949 params->sta_flags_set |= (1<<flag);
4951 /* no longer support new API additions in old API */
4952 if (flag > NL80211_STA_FLAG_MAX_OLD_API)
4960 bool nl80211_put_sta_rate(struct sk_buff *msg, struct rate_info *info, int attr)
4962 struct nlattr *rate;
4965 enum nl80211_rate_info rate_flg;
4967 rate = nla_nest_start_noflag(msg, attr);
4971 /* cfg80211_calculate_bitrate will return 0 for mcs >= 32 */
4972 bitrate = cfg80211_calculate_bitrate(info);
4973 /* report 16-bit bitrate only if we can */
4974 bitrate_compat = bitrate < (1UL << 16) ? bitrate : 0;
4976 nla_put_u32(msg, NL80211_RATE_INFO_BITRATE32, bitrate))
4978 if (bitrate_compat > 0 &&
4979 nla_put_u16(msg, NL80211_RATE_INFO_BITRATE, bitrate_compat))
4983 case RATE_INFO_BW_5:
4984 rate_flg = NL80211_RATE_INFO_5_MHZ_WIDTH;
4986 case RATE_INFO_BW_10:
4987 rate_flg = NL80211_RATE_INFO_10_MHZ_WIDTH;
4992 case RATE_INFO_BW_20:
4995 case RATE_INFO_BW_40:
4996 rate_flg = NL80211_RATE_INFO_40_MHZ_WIDTH;
4998 case RATE_INFO_BW_80:
4999 rate_flg = NL80211_RATE_INFO_80_MHZ_WIDTH;
5001 case RATE_INFO_BW_160:
5002 rate_flg = NL80211_RATE_INFO_160_MHZ_WIDTH;
5004 case RATE_INFO_BW_HE_RU:
5006 WARN_ON(!(info->flags & RATE_INFO_FLAGS_HE_MCS));
5009 if (rate_flg && nla_put_flag(msg, rate_flg))
5012 if (info->flags & RATE_INFO_FLAGS_MCS) {
5013 if (nla_put_u8(msg, NL80211_RATE_INFO_MCS, info->mcs))
5015 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
5016 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
5018 } else if (info->flags & RATE_INFO_FLAGS_VHT_MCS) {
5019 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_MCS, info->mcs))
5021 if (nla_put_u8(msg, NL80211_RATE_INFO_VHT_NSS, info->nss))
5023 if (info->flags & RATE_INFO_FLAGS_SHORT_GI &&
5024 nla_put_flag(msg, NL80211_RATE_INFO_SHORT_GI))
5026 } else if (info->flags & RATE_INFO_FLAGS_HE_MCS) {
5027 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_MCS, info->mcs))
5029 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_NSS, info->nss))
5031 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_GI, info->he_gi))
5033 if (nla_put_u8(msg, NL80211_RATE_INFO_HE_DCM, info->he_dcm))
5035 if (info->bw == RATE_INFO_BW_HE_RU &&
5036 nla_put_u8(msg, NL80211_RATE_INFO_HE_RU_ALLOC,
5041 nla_nest_end(msg, rate);
5045 static bool nl80211_put_signal(struct sk_buff *msg, u8 mask, s8 *signal,
5054 attr = nla_nest_start_noflag(msg, id);
5058 for (i = 0; i < IEEE80211_MAX_CHAINS; i++) {
5059 if (!(mask & BIT(i)))
5062 if (nla_put_u8(msg, i, signal[i]))
5066 nla_nest_end(msg, attr);
5071 static int nl80211_send_station(struct sk_buff *msg, u32 cmd, u32 portid,
5073 struct cfg80211_registered_device *rdev,
5074 struct net_device *dev,
5075 const u8 *mac_addr, struct station_info *sinfo)
5078 struct nlattr *sinfoattr, *bss_param;
5080 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
5082 cfg80211_sinfo_release_content(sinfo);
5086 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
5087 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
5088 nla_put_u32(msg, NL80211_ATTR_GENERATION, sinfo->generation))
5089 goto nla_put_failure;
5091 sinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_STA_INFO);
5093 goto nla_put_failure;
5095 #define PUT_SINFO(attr, memb, type) do { \
5096 BUILD_BUG_ON(sizeof(type) == sizeof(u64)); \
5097 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
5098 nla_put_ ## type(msg, NL80211_STA_INFO_ ## attr, \
5100 goto nla_put_failure; \
5102 #define PUT_SINFO_U64(attr, memb) do { \
5103 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_ ## attr) && \
5104 nla_put_u64_64bit(msg, NL80211_STA_INFO_ ## attr, \
5105 sinfo->memb, NL80211_STA_INFO_PAD)) \
5106 goto nla_put_failure; \
5109 PUT_SINFO(CONNECTED_TIME, connected_time, u32);
5110 PUT_SINFO(INACTIVE_TIME, inactive_time, u32);
5111 PUT_SINFO_U64(ASSOC_AT_BOOTTIME, assoc_at);
5113 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_RX_BYTES) |
5114 BIT_ULL(NL80211_STA_INFO_RX_BYTES64)) &&
5115 nla_put_u32(msg, NL80211_STA_INFO_RX_BYTES,
5116 (u32)sinfo->rx_bytes))
5117 goto nla_put_failure;
5119 if (sinfo->filled & (BIT_ULL(NL80211_STA_INFO_TX_BYTES) |
5120 BIT_ULL(NL80211_STA_INFO_TX_BYTES64)) &&
5121 nla_put_u32(msg, NL80211_STA_INFO_TX_BYTES,
5122 (u32)sinfo->tx_bytes))
5123 goto nla_put_failure;
5125 PUT_SINFO_U64(RX_BYTES64, rx_bytes);
5126 PUT_SINFO_U64(TX_BYTES64, tx_bytes);
5127 PUT_SINFO(LLID, llid, u16);
5128 PUT_SINFO(PLID, plid, u16);
5129 PUT_SINFO(PLINK_STATE, plink_state, u8);
5130 PUT_SINFO_U64(RX_DURATION, rx_duration);
5131 PUT_SINFO_U64(TX_DURATION, tx_duration);
5133 if (wiphy_ext_feature_isset(&rdev->wiphy,
5134 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5135 PUT_SINFO(AIRTIME_WEIGHT, airtime_weight, u16);
5137 switch (rdev->wiphy.signal_type) {
5138 case CFG80211_SIGNAL_TYPE_MBM:
5139 PUT_SINFO(SIGNAL, signal, u8);
5140 PUT_SINFO(SIGNAL_AVG, signal_avg, u8);
5145 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL)) {
5146 if (!nl80211_put_signal(msg, sinfo->chains,
5147 sinfo->chain_signal,
5148 NL80211_STA_INFO_CHAIN_SIGNAL))
5149 goto nla_put_failure;
5151 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL_AVG)) {
5152 if (!nl80211_put_signal(msg, sinfo->chains,
5153 sinfo->chain_signal_avg,
5154 NL80211_STA_INFO_CHAIN_SIGNAL_AVG))
5155 goto nla_put_failure;
5157 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_TX_BITRATE)) {
5158 if (!nl80211_put_sta_rate(msg, &sinfo->txrate,
5159 NL80211_STA_INFO_TX_BITRATE))
5160 goto nla_put_failure;
5162 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_RX_BITRATE)) {
5163 if (!nl80211_put_sta_rate(msg, &sinfo->rxrate,
5164 NL80211_STA_INFO_RX_BITRATE))
5165 goto nla_put_failure;
5168 PUT_SINFO(RX_PACKETS, rx_packets, u32);
5169 PUT_SINFO(TX_PACKETS, tx_packets, u32);
5170 PUT_SINFO(TX_RETRIES, tx_retries, u32);
5171 PUT_SINFO(TX_FAILED, tx_failed, u32);
5172 PUT_SINFO(EXPECTED_THROUGHPUT, expected_throughput, u32);
5173 PUT_SINFO(AIRTIME_LINK_METRIC, airtime_link_metric, u32);
5174 PUT_SINFO(BEACON_LOSS, beacon_loss_count, u32);
5175 PUT_SINFO(LOCAL_PM, local_pm, u32);
5176 PUT_SINFO(PEER_PM, peer_pm, u32);
5177 PUT_SINFO(NONPEER_PM, nonpeer_pm, u32);
5178 PUT_SINFO(CONNECTED_TO_GATE, connected_to_gate, u8);
5180 if (sinfo->filled & BIT_ULL(NL80211_STA_INFO_BSS_PARAM)) {
5181 bss_param = nla_nest_start_noflag(msg,
5182 NL80211_STA_INFO_BSS_PARAM);
5184 goto nla_put_failure;
5186 if (((sinfo->bss_param.flags & BSS_PARAM_FLAGS_CTS_PROT) &&
5187 nla_put_flag(msg, NL80211_STA_BSS_PARAM_CTS_PROT)) ||
5188 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_PREAMBLE) &&
5189 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_PREAMBLE)) ||
5190 ((sinfo->bss_param.flags & BSS_PARAM_FLAGS_SHORT_SLOT_TIME) &&
5191 nla_put_flag(msg, NL80211_STA_BSS_PARAM_SHORT_SLOT_TIME)) ||
5192 nla_put_u8(msg, NL80211_STA_BSS_PARAM_DTIM_PERIOD,
5193 sinfo->bss_param.dtim_period) ||
5194 nla_put_u16(msg, NL80211_STA_BSS_PARAM_BEACON_INTERVAL,
5195 sinfo->bss_param.beacon_interval))
5196 goto nla_put_failure;
5198 nla_nest_end(msg, bss_param);
5200 if ((sinfo->filled & BIT_ULL(NL80211_STA_INFO_STA_FLAGS)) &&
5201 nla_put(msg, NL80211_STA_INFO_STA_FLAGS,
5202 sizeof(struct nl80211_sta_flag_update),
5204 goto nla_put_failure;
5206 PUT_SINFO_U64(T_OFFSET, t_offset);
5207 PUT_SINFO_U64(RX_DROP_MISC, rx_dropped_misc);
5208 PUT_SINFO_U64(BEACON_RX, rx_beacon);
5209 PUT_SINFO(BEACON_SIGNAL_AVG, rx_beacon_signal_avg, u8);
5210 PUT_SINFO(RX_MPDUS, rx_mpdu_count, u32);
5211 PUT_SINFO(FCS_ERROR_COUNT, fcs_err_count, u32);
5212 if (wiphy_ext_feature_isset(&rdev->wiphy,
5213 NL80211_EXT_FEATURE_ACK_SIGNAL_SUPPORT)) {
5214 PUT_SINFO(ACK_SIGNAL, ack_signal, u8);
5215 PUT_SINFO(ACK_SIGNAL_AVG, avg_ack_signal, s8);
5219 #undef PUT_SINFO_U64
5221 if (sinfo->pertid) {
5222 struct nlattr *tidsattr;
5225 tidsattr = nla_nest_start_noflag(msg,
5226 NL80211_STA_INFO_TID_STATS);
5228 goto nla_put_failure;
5230 for (tid = 0; tid < IEEE80211_NUM_TIDS + 1; tid++) {
5231 struct cfg80211_tid_stats *tidstats;
5232 struct nlattr *tidattr;
5234 tidstats = &sinfo->pertid[tid];
5236 if (!tidstats->filled)
5239 tidattr = nla_nest_start_noflag(msg, tid + 1);
5241 goto nla_put_failure;
5243 #define PUT_TIDVAL_U64(attr, memb) do { \
5244 if (tidstats->filled & BIT(NL80211_TID_STATS_ ## attr) && \
5245 nla_put_u64_64bit(msg, NL80211_TID_STATS_ ## attr, \
5246 tidstats->memb, NL80211_TID_STATS_PAD)) \
5247 goto nla_put_failure; \
5250 PUT_TIDVAL_U64(RX_MSDU, rx_msdu);
5251 PUT_TIDVAL_U64(TX_MSDU, tx_msdu);
5252 PUT_TIDVAL_U64(TX_MSDU_RETRIES, tx_msdu_retries);
5253 PUT_TIDVAL_U64(TX_MSDU_FAILED, tx_msdu_failed);
5255 #undef PUT_TIDVAL_U64
5256 if ((tidstats->filled &
5257 BIT(NL80211_TID_STATS_TXQ_STATS)) &&
5258 !nl80211_put_txq_stats(msg, &tidstats->txq_stats,
5259 NL80211_TID_STATS_TXQ_STATS))
5260 goto nla_put_failure;
5262 nla_nest_end(msg, tidattr);
5265 nla_nest_end(msg, tidsattr);
5268 nla_nest_end(msg, sinfoattr);
5270 if (sinfo->assoc_req_ies_len &&
5271 nla_put(msg, NL80211_ATTR_IE, sinfo->assoc_req_ies_len,
5272 sinfo->assoc_req_ies))
5273 goto nla_put_failure;
5275 cfg80211_sinfo_release_content(sinfo);
5276 genlmsg_end(msg, hdr);
5280 cfg80211_sinfo_release_content(sinfo);
5281 genlmsg_cancel(msg, hdr);
5285 static int nl80211_dump_station(struct sk_buff *skb,
5286 struct netlink_callback *cb)
5288 struct station_info sinfo;
5289 struct cfg80211_registered_device *rdev;
5290 struct wireless_dev *wdev;
5291 u8 mac_addr[ETH_ALEN];
5292 int sta_idx = cb->args[2];
5296 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
5300 if (!wdev->netdev) {
5305 if (!rdev->ops->dump_station) {
5311 memset(&sinfo, 0, sizeof(sinfo));
5312 err = rdev_dump_station(rdev, wdev->netdev, sta_idx,
5319 if (nl80211_send_station(skb, NL80211_CMD_NEW_STATION,
5320 NETLINK_CB(cb->skb).portid,
5321 cb->nlh->nlmsg_seq, NLM_F_MULTI,
5322 rdev, wdev->netdev, mac_addr,
5330 cb->args[2] = sta_idx;
5338 static int nl80211_get_station(struct sk_buff *skb, struct genl_info *info)
5340 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5341 struct net_device *dev = info->user_ptr[1];
5342 struct station_info sinfo;
5343 struct sk_buff *msg;
5344 u8 *mac_addr = NULL;
5347 memset(&sinfo, 0, sizeof(sinfo));
5349 if (!info->attrs[NL80211_ATTR_MAC])
5352 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5354 if (!rdev->ops->get_station)
5357 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
5361 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
5363 cfg80211_sinfo_release_content(&sinfo);
5367 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION,
5368 info->snd_portid, info->snd_seq, 0,
5369 rdev, dev, mac_addr, &sinfo) < 0) {
5374 return genlmsg_reply(msg, info);
5377 int cfg80211_check_station_change(struct wiphy *wiphy,
5378 struct station_parameters *params,
5379 enum cfg80211_station_type statype)
5381 if (params->listen_interval != -1 &&
5382 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5385 if (params->support_p2p_ps != -1 &&
5386 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5390 !(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) &&
5391 statype != CFG80211_STA_AP_CLIENT_UNASSOC)
5394 /* When you run into this, adjust the code below for the new flag */
5395 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5398 case CFG80211_STA_MESH_PEER_KERNEL:
5399 case CFG80211_STA_MESH_PEER_USER:
5401 * No ignoring the TDLS flag here -- the userspace mesh
5402 * code doesn't have the bug of including TDLS in the
5405 if (params->sta_flags_mask &
5406 ~(BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5407 BIT(NL80211_STA_FLAG_MFP) |
5408 BIT(NL80211_STA_FLAG_AUTHORIZED)))
5411 case CFG80211_STA_TDLS_PEER_SETUP:
5412 case CFG80211_STA_TDLS_PEER_ACTIVE:
5413 if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
5415 /* ignore since it can't change */
5416 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5419 /* disallow mesh-specific things */
5420 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION)
5422 if (params->local_pm)
5424 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5428 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5429 statype != CFG80211_STA_TDLS_PEER_ACTIVE) {
5430 /* TDLS can't be set, ... */
5431 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER))
5434 * ... but don't bother the driver with it. This works around
5435 * a hostapd/wpa_supplicant issue -- it always includes the
5436 * TLDS_PEER flag in the mask even for AP mode.
5438 params->sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5441 if (statype != CFG80211_STA_TDLS_PEER_SETUP &&
5442 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5443 /* reject other things that can't change */
5444 if (params->sta_modify_mask & STATION_PARAM_APPLY_UAPSD)
5446 if (params->sta_modify_mask & STATION_PARAM_APPLY_CAPABILITY)
5448 if (params->supported_rates)
5450 if (params->ext_capab || params->ht_capa || params->vht_capa ||
5455 if (statype != CFG80211_STA_AP_CLIENT &&
5456 statype != CFG80211_STA_AP_CLIENT_UNASSOC) {
5462 case CFG80211_STA_AP_MLME_CLIENT:
5463 /* Use this only for authorizing/unauthorizing a station */
5464 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
5467 case CFG80211_STA_AP_CLIENT:
5468 case CFG80211_STA_AP_CLIENT_UNASSOC:
5469 /* accept only the listed bits */
5470 if (params->sta_flags_mask &
5471 ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5472 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5473 BIT(NL80211_STA_FLAG_ASSOCIATED) |
5474 BIT(NL80211_STA_FLAG_SHORT_PREAMBLE) |
5475 BIT(NL80211_STA_FLAG_WME) |
5476 BIT(NL80211_STA_FLAG_MFP)))
5479 /* but authenticated/associated only if driver handles it */
5480 if (!(wiphy->features & NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5481 params->sta_flags_mask &
5482 (BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5483 BIT(NL80211_STA_FLAG_ASSOCIATED)))
5486 case CFG80211_STA_IBSS:
5487 case CFG80211_STA_AP_STA:
5488 /* reject any changes other than AUTHORIZED */
5489 if (params->sta_flags_mask & ~BIT(NL80211_STA_FLAG_AUTHORIZED))
5492 case CFG80211_STA_TDLS_PEER_SETUP:
5493 /* reject any changes other than AUTHORIZED or WME */
5494 if (params->sta_flags_mask & ~(BIT(NL80211_STA_FLAG_AUTHORIZED) |
5495 BIT(NL80211_STA_FLAG_WME)))
5497 /* force (at least) rates when authorizing */
5498 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED) &&
5499 !params->supported_rates)
5502 case CFG80211_STA_TDLS_PEER_ACTIVE:
5503 /* reject any changes */
5505 case CFG80211_STA_MESH_PEER_KERNEL:
5506 if (params->sta_modify_mask & STATION_PARAM_APPLY_PLINK_STATE)
5509 case CFG80211_STA_MESH_PEER_USER:
5510 if (params->plink_action != NL80211_PLINK_ACTION_NO_ACTION &&
5511 params->plink_action != NL80211_PLINK_ACTION_BLOCK)
5517 * Older kernel versions ignored this attribute entirely, so don't
5518 * reject attempts to update it but mark it as unused instead so the
5519 * driver won't look at the data.
5521 if (statype != CFG80211_STA_AP_CLIENT_UNASSOC &&
5522 statype != CFG80211_STA_TDLS_PEER_SETUP)
5523 params->opmode_notif_used = false;
5527 EXPORT_SYMBOL(cfg80211_check_station_change);
5530 * Get vlan interface making sure it is running and on the right wiphy.
5532 static struct net_device *get_vlan(struct genl_info *info,
5533 struct cfg80211_registered_device *rdev)
5535 struct nlattr *vlanattr = info->attrs[NL80211_ATTR_STA_VLAN];
5536 struct net_device *v;
5542 v = dev_get_by_index(genl_info_net(info), nla_get_u32(vlanattr));
5544 return ERR_PTR(-ENODEV);
5546 if (!v->ieee80211_ptr || v->ieee80211_ptr->wiphy != &rdev->wiphy) {
5551 if (v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
5552 v->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
5553 v->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO) {
5558 if (!netif_running(v)) {
5566 return ERR_PTR(ret);
5569 static const struct nla_policy
5570 nl80211_sta_wme_policy[NL80211_STA_WME_MAX + 1] = {
5571 [NL80211_STA_WME_UAPSD_QUEUES] = { .type = NLA_U8 },
5572 [NL80211_STA_WME_MAX_SP] = { .type = NLA_U8 },
5575 static int nl80211_parse_sta_wme(struct genl_info *info,
5576 struct station_parameters *params)
5578 struct nlattr *tb[NL80211_STA_WME_MAX + 1];
5582 /* parse WME attributes if present */
5583 if (!info->attrs[NL80211_ATTR_STA_WME])
5586 nla = info->attrs[NL80211_ATTR_STA_WME];
5587 err = nla_parse_nested_deprecated(tb, NL80211_STA_WME_MAX, nla,
5588 nl80211_sta_wme_policy,
5593 if (tb[NL80211_STA_WME_UAPSD_QUEUES])
5594 params->uapsd_queues = nla_get_u8(
5595 tb[NL80211_STA_WME_UAPSD_QUEUES]);
5596 if (params->uapsd_queues & ~IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK)
5599 if (tb[NL80211_STA_WME_MAX_SP])
5600 params->max_sp = nla_get_u8(tb[NL80211_STA_WME_MAX_SP]);
5602 if (params->max_sp & ~IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK)
5605 params->sta_modify_mask |= STATION_PARAM_APPLY_UAPSD;
5610 static int nl80211_parse_sta_channel_info(struct genl_info *info,
5611 struct station_parameters *params)
5613 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]) {
5614 params->supported_channels =
5615 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5616 params->supported_channels_len =
5617 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_CHANNELS]);
5619 * Need to include at least one (first channel, number of
5620 * channels) tuple for each subband, and must have proper
5621 * tuples for the rest of the data as well.
5623 if (params->supported_channels_len < 2)
5625 if (params->supported_channels_len % 2)
5629 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]) {
5630 params->supported_oper_classes =
5631 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5632 params->supported_oper_classes_len =
5633 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES]);
5635 * The value of the Length field of the Supported Operating
5636 * Classes element is between 2 and 253.
5638 if (params->supported_oper_classes_len < 2 ||
5639 params->supported_oper_classes_len > 253)
5645 static int nl80211_set_station_tdls(struct genl_info *info,
5646 struct station_parameters *params)
5649 /* Dummy STA entry gets updated once the peer capabilities are known */
5650 if (info->attrs[NL80211_ATTR_PEER_AID])
5651 params->aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5652 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5654 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5655 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5657 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5658 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5660 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5661 params->he_capa_len =
5662 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5664 if (params->he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5668 err = nl80211_parse_sta_channel_info(info, params);
5672 return nl80211_parse_sta_wme(info, params);
5675 static int nl80211_parse_sta_txpower_setting(struct genl_info *info,
5676 struct station_parameters *params)
5678 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5681 if (info->attrs[NL80211_ATTR_STA_TX_POWER_SETTING]) {
5682 if (!rdev->ops->set_tx_power ||
5683 !wiphy_ext_feature_isset(&rdev->wiphy,
5684 NL80211_EXT_FEATURE_STA_TX_PWR))
5687 idx = NL80211_ATTR_STA_TX_POWER_SETTING;
5688 params->txpwr.type = nla_get_u8(info->attrs[idx]);
5690 if (params->txpwr.type == NL80211_TX_POWER_LIMITED) {
5691 idx = NL80211_ATTR_STA_TX_POWER;
5693 if (info->attrs[idx])
5694 params->txpwr.power =
5695 nla_get_s16(info->attrs[idx]);
5699 params->sta_modify_mask |= STATION_PARAM_APPLY_STA_TXPOWER;
5705 static int nl80211_set_station(struct sk_buff *skb, struct genl_info *info)
5707 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5708 struct net_device *dev = info->user_ptr[1];
5709 struct station_parameters params;
5713 memset(¶ms, 0, sizeof(params));
5715 if (!rdev->ops->change_station)
5719 * AID and listen_interval properties can be set only for unassociated
5720 * station. Include these parameters here and will check them in
5721 * cfg80211_check_station_change().
5723 if (info->attrs[NL80211_ATTR_STA_AID])
5724 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5726 if (info->attrs[NL80211_ATTR_VLAN_ID])
5727 params.vlan_id = nla_get_u16(info->attrs[NL80211_ATTR_VLAN_ID]);
5729 if (info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5730 params.listen_interval =
5731 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5733 params.listen_interval = -1;
5735 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS])
5736 params.support_p2p_ps =
5737 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5739 params.support_p2p_ps = -1;
5741 if (!info->attrs[NL80211_ATTR_MAC])
5744 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5746 if (info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]) {
5747 params.supported_rates =
5748 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5749 params.supported_rates_len =
5750 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5753 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5755 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5756 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5759 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5761 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5762 params.ext_capab_len =
5763 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5766 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5769 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5770 params.plink_action =
5771 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5773 if (info->attrs[NL80211_ATTR_STA_PLINK_STATE]) {
5774 params.plink_state =
5775 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_STATE]);
5776 if (info->attrs[NL80211_ATTR_MESH_PEER_AID])
5777 params.peer_aid = nla_get_u16(
5778 info->attrs[NL80211_ATTR_MESH_PEER_AID]);
5779 params.sta_modify_mask |= STATION_PARAM_APPLY_PLINK_STATE;
5782 if (info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE])
5783 params.local_pm = nla_get_u32(
5784 info->attrs[NL80211_ATTR_LOCAL_MESH_POWER_MODE]);
5786 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5787 params.opmode_notif_used = true;
5788 params.opmode_notif =
5789 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5792 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5793 params.airtime_weight =
5794 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5796 if (params.airtime_weight &&
5797 !wiphy_ext_feature_isset(&rdev->wiphy,
5798 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5801 err = nl80211_parse_sta_txpower_setting(info, ¶ms);
5805 /* Include parameters for TDLS peer (will check later) */
5806 err = nl80211_set_station_tdls(info, ¶ms);
5810 params.vlan = get_vlan(info, rdev);
5811 if (IS_ERR(params.vlan))
5812 return PTR_ERR(params.vlan);
5814 switch (dev->ieee80211_ptr->iftype) {
5815 case NL80211_IFTYPE_AP:
5816 case NL80211_IFTYPE_AP_VLAN:
5817 case NL80211_IFTYPE_P2P_GO:
5818 case NL80211_IFTYPE_P2P_CLIENT:
5819 case NL80211_IFTYPE_STATION:
5820 case NL80211_IFTYPE_ADHOC:
5821 case NL80211_IFTYPE_MESH_POINT:
5828 /* driver will call cfg80211_check_station_change() */
5829 err = rdev_change_station(rdev, dev, mac_addr, ¶ms);
5833 dev_put(params.vlan);
5838 static int nl80211_new_station(struct sk_buff *skb, struct genl_info *info)
5840 struct cfg80211_registered_device *rdev = info->user_ptr[0];
5842 struct net_device *dev = info->user_ptr[1];
5843 struct station_parameters params;
5844 u8 *mac_addr = NULL;
5845 u32 auth_assoc = BIT(NL80211_STA_FLAG_AUTHENTICATED) |
5846 BIT(NL80211_STA_FLAG_ASSOCIATED);
5848 memset(¶ms, 0, sizeof(params));
5850 if (!rdev->ops->add_station)
5853 if (!info->attrs[NL80211_ATTR_MAC])
5856 if (!info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL])
5859 if (!info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES])
5862 if (!info->attrs[NL80211_ATTR_STA_AID] &&
5863 !info->attrs[NL80211_ATTR_PEER_AID])
5866 mac_addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
5867 params.supported_rates =
5868 nla_data(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5869 params.supported_rates_len =
5870 nla_len(info->attrs[NL80211_ATTR_STA_SUPPORTED_RATES]);
5871 params.listen_interval =
5872 nla_get_u16(info->attrs[NL80211_ATTR_STA_LISTEN_INTERVAL]);
5874 if (info->attrs[NL80211_ATTR_VLAN_ID])
5875 params.vlan_id = nla_get_u16(info->attrs[NL80211_ATTR_VLAN_ID]);
5877 if (info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]) {
5878 params.support_p2p_ps =
5879 nla_get_u8(info->attrs[NL80211_ATTR_STA_SUPPORT_P2P_PS]);
5882 * if not specified, assume it's supported for P2P GO interface,
5883 * and is NOT supported for AP interface
5885 params.support_p2p_ps =
5886 dev->ieee80211_ptr->iftype == NL80211_IFTYPE_P2P_GO;
5889 if (info->attrs[NL80211_ATTR_PEER_AID])
5890 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_PEER_AID]);
5892 params.aid = nla_get_u16(info->attrs[NL80211_ATTR_STA_AID]);
5894 if (info->attrs[NL80211_ATTR_STA_CAPABILITY]) {
5896 nla_get_u16(info->attrs[NL80211_ATTR_STA_CAPABILITY]);
5897 params.sta_modify_mask |= STATION_PARAM_APPLY_CAPABILITY;
5900 if (info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]) {
5902 nla_data(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5903 params.ext_capab_len =
5904 nla_len(info->attrs[NL80211_ATTR_STA_EXT_CAPABILITY]);
5907 if (info->attrs[NL80211_ATTR_HT_CAPABILITY])
5909 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]);
5911 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY])
5913 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]);
5915 if (info->attrs[NL80211_ATTR_HE_CAPABILITY]) {
5917 nla_data(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5918 params.he_capa_len =
5919 nla_len(info->attrs[NL80211_ATTR_HE_CAPABILITY]);
5921 /* max len is validated in nla policy */
5922 if (params.he_capa_len < NL80211_HE_MIN_CAPABILITY_LEN)
5926 if (info->attrs[NL80211_ATTR_OPMODE_NOTIF]) {
5927 params.opmode_notif_used = true;
5928 params.opmode_notif =
5929 nla_get_u8(info->attrs[NL80211_ATTR_OPMODE_NOTIF]);
5932 if (info->attrs[NL80211_ATTR_STA_PLINK_ACTION])
5933 params.plink_action =
5934 nla_get_u8(info->attrs[NL80211_ATTR_STA_PLINK_ACTION]);
5936 if (info->attrs[NL80211_ATTR_AIRTIME_WEIGHT])
5937 params.airtime_weight =
5938 nla_get_u16(info->attrs[NL80211_ATTR_AIRTIME_WEIGHT]);
5940 if (params.airtime_weight &&
5941 !wiphy_ext_feature_isset(&rdev->wiphy,
5942 NL80211_EXT_FEATURE_AIRTIME_FAIRNESS))
5945 err = nl80211_parse_sta_txpower_setting(info, ¶ms);
5949 err = nl80211_parse_sta_channel_info(info, ¶ms);
5953 err = nl80211_parse_sta_wme(info, ¶ms);
5957 if (parse_station_flags(info, dev->ieee80211_ptr->iftype, ¶ms))
5960 /* HT/VHT requires QoS, but if we don't have that just ignore HT/VHT
5961 * as userspace might just pass through the capabilities from the IEs
5962 * directly, rather than enforcing this restriction and returning an
5963 * error in this case.
5965 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME))) {
5966 params.ht_capa = NULL;
5967 params.vht_capa = NULL;
5969 /* HE requires WME */
5970 if (params.he_capa_len)
5974 /* When you run into this, adjust the code below for the new flag */
5975 BUILD_BUG_ON(NL80211_STA_FLAG_MAX != 7);
5977 switch (dev->ieee80211_ptr->iftype) {
5978 case NL80211_IFTYPE_AP:
5979 case NL80211_IFTYPE_AP_VLAN:
5980 case NL80211_IFTYPE_P2P_GO:
5981 /* ignore WME attributes if iface/sta is not capable */
5982 if (!(rdev->wiphy.flags & WIPHY_FLAG_AP_UAPSD) ||
5983 !(params.sta_flags_set & BIT(NL80211_STA_FLAG_WME)))
5984 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
5986 /* TDLS peers cannot be added */
5987 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
5988 info->attrs[NL80211_ATTR_PEER_AID])
5990 /* but don't bother the driver with it */
5991 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
5993 /* allow authenticated/associated only if driver handles it */
5994 if (!(rdev->wiphy.features &
5995 NL80211_FEATURE_FULL_AP_CLIENT_STATE) &&
5996 params.sta_flags_mask & auth_assoc)
5999 /* Older userspace, or userspace wanting to be compatible with
6000 * !NL80211_FEATURE_FULL_AP_CLIENT_STATE, will not set the auth
6001 * and assoc flags in the mask, but assumes the station will be
6002 * added as associated anyway since this was the required driver
6003 * behaviour before NL80211_FEATURE_FULL_AP_CLIENT_STATE was
6005 * In order to not bother drivers with this quirk in the API
6006 * set the flags in both the mask and set for new stations in
6009 if (!(params.sta_flags_mask & auth_assoc)) {
6010 params.sta_flags_mask |= auth_assoc;
6011 params.sta_flags_set |= auth_assoc;
6014 /* must be last in here for error handling */
6015 params.vlan = get_vlan(info, rdev);
6016 if (IS_ERR(params.vlan))
6017 return PTR_ERR(params.vlan);
6019 case NL80211_IFTYPE_MESH_POINT:
6020 /* ignore uAPSD data */
6021 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
6023 /* associated is disallowed */
6024 if (params.sta_flags_mask & BIT(NL80211_STA_FLAG_ASSOCIATED))
6026 /* TDLS peers cannot be added */
6027 if ((params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)) ||
6028 info->attrs[NL80211_ATTR_PEER_AID])
6031 case NL80211_IFTYPE_STATION:
6032 case NL80211_IFTYPE_P2P_CLIENT:
6033 /* ignore uAPSD data */
6034 params.sta_modify_mask &= ~STATION_PARAM_APPLY_UAPSD;
6036 /* these are disallowed */
6037 if (params.sta_flags_mask &
6038 (BIT(NL80211_STA_FLAG_ASSOCIATED) |
6039 BIT(NL80211_STA_FLAG_AUTHENTICATED)))
6041 /* Only TDLS peers can be added */
6042 if (!(params.sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
6044 /* Can only add if TDLS ... */
6045 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS))
6047 /* ... with external setup is supported */
6048 if (!(rdev->wiphy.flags & WIPHY_FLAG_TDLS_EXTERNAL_SETUP))
6051 * Older wpa_supplicant versions always mark the TDLS peer
6052 * as authorized, but it shouldn't yet be.
6054 params.sta_flags_mask &= ~BIT(NL80211_STA_FLAG_AUTHORIZED);
6060 /* be aware of params.vlan when changing code here */
6062 err = rdev_add_station(rdev, dev, mac_addr, ¶ms);
6065 dev_put(params.vlan);
6069 static int nl80211_del_station(struct sk_buff *skb, struct genl_info *info)
6071 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6072 struct net_device *dev = info->user_ptr[1];
6073 struct station_del_parameters params;
6075 memset(¶ms, 0, sizeof(params));
6077 if (info->attrs[NL80211_ATTR_MAC])
6078 params.mac = nla_data(info->attrs[NL80211_ATTR_MAC]);
6080 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
6081 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP_VLAN &&
6082 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
6083 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6086 if (!rdev->ops->del_station)
6089 if (info->attrs[NL80211_ATTR_MGMT_SUBTYPE]) {
6091 nla_get_u8(info->attrs[NL80211_ATTR_MGMT_SUBTYPE]);
6092 if (params.subtype != IEEE80211_STYPE_DISASSOC >> 4 &&
6093 params.subtype != IEEE80211_STYPE_DEAUTH >> 4)
6096 /* Default to Deauthentication frame */
6097 params.subtype = IEEE80211_STYPE_DEAUTH >> 4;
6100 if (info->attrs[NL80211_ATTR_REASON_CODE]) {
6101 params.reason_code =
6102 nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
6103 if (params.reason_code == 0)
6104 return -EINVAL; /* 0 is reserved */
6106 /* Default to reason code 2 */
6107 params.reason_code = WLAN_REASON_PREV_AUTH_NOT_VALID;
6110 return rdev_del_station(rdev, dev, ¶ms);
6113 static int nl80211_send_mpath(struct sk_buff *msg, u32 portid, u32 seq,
6114 int flags, struct net_device *dev,
6115 u8 *dst, u8 *next_hop,
6116 struct mpath_info *pinfo)
6119 struct nlattr *pinfoattr;
6121 hdr = nl80211hdr_put(msg, portid, seq, flags, NL80211_CMD_NEW_MPATH);
6125 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
6126 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, dst) ||
6127 nla_put(msg, NL80211_ATTR_MPATH_NEXT_HOP, ETH_ALEN, next_hop) ||
6128 nla_put_u32(msg, NL80211_ATTR_GENERATION, pinfo->generation))
6129 goto nla_put_failure;
6131 pinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_MPATH_INFO);
6133 goto nla_put_failure;
6134 if ((pinfo->filled & MPATH_INFO_FRAME_QLEN) &&
6135 nla_put_u32(msg, NL80211_MPATH_INFO_FRAME_QLEN,
6137 goto nla_put_failure;
6138 if (((pinfo->filled & MPATH_INFO_SN) &&
6139 nla_put_u32(msg, NL80211_MPATH_INFO_SN, pinfo->sn)) ||
6140 ((pinfo->filled & MPATH_INFO_METRIC) &&
6141 nla_put_u32(msg, NL80211_MPATH_INFO_METRIC,
6143 ((pinfo->filled & MPATH_INFO_EXPTIME) &&
6144 nla_put_u32(msg, NL80211_MPATH_INFO_EXPTIME,
6146 ((pinfo->filled & MPATH_INFO_FLAGS) &&
6147 nla_put_u8(msg, NL80211_MPATH_INFO_FLAGS,
6149 ((pinfo->filled & MPATH_INFO_DISCOVERY_TIMEOUT) &&
6150 nla_put_u32(msg, NL80211_MPATH_INFO_DISCOVERY_TIMEOUT,
6151 pinfo->discovery_timeout)) ||
6152 ((pinfo->filled & MPATH_INFO_DISCOVERY_RETRIES) &&
6153 nla_put_u8(msg, NL80211_MPATH_INFO_DISCOVERY_RETRIES,
6154 pinfo->discovery_retries)) ||
6155 ((pinfo->filled & MPATH_INFO_HOP_COUNT) &&
6156 nla_put_u8(msg, NL80211_MPATH_INFO_HOP_COUNT,
6157 pinfo->hop_count)) ||
6158 ((pinfo->filled & MPATH_INFO_PATH_CHANGE) &&
6159 nla_put_u32(msg, NL80211_MPATH_INFO_PATH_CHANGE,
6160 pinfo->path_change_count)))
6161 goto nla_put_failure;
6163 nla_nest_end(msg, pinfoattr);
6165 genlmsg_end(msg, hdr);
6169 genlmsg_cancel(msg, hdr);
6173 static int nl80211_dump_mpath(struct sk_buff *skb,
6174 struct netlink_callback *cb)
6176 struct mpath_info pinfo;
6177 struct cfg80211_registered_device *rdev;
6178 struct wireless_dev *wdev;
6180 u8 next_hop[ETH_ALEN];
6181 int path_idx = cb->args[2];
6185 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6189 if (!rdev->ops->dump_mpath) {
6194 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6200 err = rdev_dump_mpath(rdev, wdev->netdev, path_idx, dst,
6207 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6208 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6209 wdev->netdev, dst, next_hop,
6217 cb->args[2] = path_idx;
6224 static int nl80211_get_mpath(struct sk_buff *skb, struct genl_info *info)
6226 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6228 struct net_device *dev = info->user_ptr[1];
6229 struct mpath_info pinfo;
6230 struct sk_buff *msg;
6232 u8 next_hop[ETH_ALEN];
6234 memset(&pinfo, 0, sizeof(pinfo));
6236 if (!info->attrs[NL80211_ATTR_MAC])
6239 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6241 if (!rdev->ops->get_mpath)
6244 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6247 err = rdev_get_mpath(rdev, dev, dst, next_hop, &pinfo);
6251 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6255 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6256 dev, dst, next_hop, &pinfo) < 0) {
6261 return genlmsg_reply(msg, info);
6264 static int nl80211_set_mpath(struct sk_buff *skb, struct genl_info *info)
6266 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6267 struct net_device *dev = info->user_ptr[1];
6269 u8 *next_hop = NULL;
6271 if (!info->attrs[NL80211_ATTR_MAC])
6274 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6277 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6278 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6280 if (!rdev->ops->change_mpath)
6283 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6286 return rdev_change_mpath(rdev, dev, dst, next_hop);
6289 static int nl80211_new_mpath(struct sk_buff *skb, struct genl_info *info)
6291 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6292 struct net_device *dev = info->user_ptr[1];
6294 u8 *next_hop = NULL;
6296 if (!info->attrs[NL80211_ATTR_MAC])
6299 if (!info->attrs[NL80211_ATTR_MPATH_NEXT_HOP])
6302 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6303 next_hop = nla_data(info->attrs[NL80211_ATTR_MPATH_NEXT_HOP]);
6305 if (!rdev->ops->add_mpath)
6308 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6311 return rdev_add_mpath(rdev, dev, dst, next_hop);
6314 static int nl80211_del_mpath(struct sk_buff *skb, struct genl_info *info)
6316 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6317 struct net_device *dev = info->user_ptr[1];
6320 if (info->attrs[NL80211_ATTR_MAC])
6321 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6323 if (!rdev->ops->del_mpath)
6326 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6329 return rdev_del_mpath(rdev, dev, dst);
6332 static int nl80211_get_mpp(struct sk_buff *skb, struct genl_info *info)
6334 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6336 struct net_device *dev = info->user_ptr[1];
6337 struct mpath_info pinfo;
6338 struct sk_buff *msg;
6342 memset(&pinfo, 0, sizeof(pinfo));
6344 if (!info->attrs[NL80211_ATTR_MAC])
6347 dst = nla_data(info->attrs[NL80211_ATTR_MAC]);
6349 if (!rdev->ops->get_mpp)
6352 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT)
6355 err = rdev_get_mpp(rdev, dev, dst, mpp, &pinfo);
6359 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6363 if (nl80211_send_mpath(msg, info->snd_portid, info->snd_seq, 0,
6364 dev, dst, mpp, &pinfo) < 0) {
6369 return genlmsg_reply(msg, info);
6372 static int nl80211_dump_mpp(struct sk_buff *skb,
6373 struct netlink_callback *cb)
6375 struct mpath_info pinfo;
6376 struct cfg80211_registered_device *rdev;
6377 struct wireless_dev *wdev;
6380 int path_idx = cb->args[2];
6384 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
6388 if (!rdev->ops->dump_mpp) {
6393 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT) {
6399 err = rdev_dump_mpp(rdev, wdev->netdev, path_idx, dst,
6406 if (nl80211_send_mpath(skb, NETLINK_CB(cb->skb).portid,
6407 cb->nlh->nlmsg_seq, NLM_F_MULTI,
6408 wdev->netdev, dst, mpp,
6416 cb->args[2] = path_idx;
6423 static int nl80211_set_bss(struct sk_buff *skb, struct genl_info *info)
6425 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6426 struct net_device *dev = info->user_ptr[1];
6427 struct wireless_dev *wdev = dev->ieee80211_ptr;
6428 struct bss_parameters params;
6431 memset(¶ms, 0, sizeof(params));
6432 /* default to not changing parameters */
6433 params.use_cts_prot = -1;
6434 params.use_short_preamble = -1;
6435 params.use_short_slot_time = -1;
6436 params.ap_isolate = -1;
6437 params.ht_opmode = -1;
6438 params.p2p_ctwindow = -1;
6439 params.p2p_opp_ps = -1;
6441 if (info->attrs[NL80211_ATTR_BSS_CTS_PROT])
6442 params.use_cts_prot =
6443 nla_get_u8(info->attrs[NL80211_ATTR_BSS_CTS_PROT]);
6444 if (info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE])
6445 params.use_short_preamble =
6446 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_PREAMBLE]);
6447 if (info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME])
6448 params.use_short_slot_time =
6449 nla_get_u8(info->attrs[NL80211_ATTR_BSS_SHORT_SLOT_TIME]);
6450 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
6451 params.basic_rates =
6452 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6453 params.basic_rates_len =
6454 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
6456 if (info->attrs[NL80211_ATTR_AP_ISOLATE])
6457 params.ap_isolate = !!nla_get_u8(info->attrs[NL80211_ATTR_AP_ISOLATE]);
6458 if (info->attrs[NL80211_ATTR_BSS_HT_OPMODE])
6460 nla_get_u16(info->attrs[NL80211_ATTR_BSS_HT_OPMODE]);
6462 if (info->attrs[NL80211_ATTR_P2P_CTWINDOW]) {
6463 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6465 params.p2p_ctwindow =
6466 nla_get_u8(info->attrs[NL80211_ATTR_P2P_CTWINDOW]);
6467 if (params.p2p_ctwindow != 0 &&
6468 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_CTWIN))
6472 if (info->attrs[NL80211_ATTR_P2P_OPPPS]) {
6475 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6477 tmp = nla_get_u8(info->attrs[NL80211_ATTR_P2P_OPPPS]);
6478 params.p2p_opp_ps = tmp;
6479 if (params.p2p_opp_ps &&
6480 !(rdev->wiphy.features & NL80211_FEATURE_P2P_GO_OPPPS))
6484 if (!rdev->ops->change_bss)
6487 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
6488 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
6492 err = rdev_change_bss(rdev, dev, ¶ms);
6498 static int nl80211_req_set_reg(struct sk_buff *skb, struct genl_info *info)
6502 enum nl80211_user_reg_hint_type user_reg_hint_type;
6506 * You should only get this when cfg80211 hasn't yet initialized
6507 * completely when built-in to the kernel right between the time
6508 * window between nl80211_init() and regulatory_init(), if that is
6511 if (unlikely(!rcu_access_pointer(cfg80211_regdomain)))
6512 return -EINPROGRESS;
6514 if (info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE])
6515 user_reg_hint_type =
6516 nla_get_u32(info->attrs[NL80211_ATTR_USER_REG_HINT_TYPE]);
6518 user_reg_hint_type = NL80211_USER_REG_HINT_USER;
6520 switch (user_reg_hint_type) {
6521 case NL80211_USER_REG_HINT_USER:
6522 case NL80211_USER_REG_HINT_CELL_BASE:
6523 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
6526 data = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
6527 return regulatory_hint_user(data, user_reg_hint_type);
6528 case NL80211_USER_REG_HINT_INDOOR:
6529 if (info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
6530 owner_nlportid = info->snd_portid;
6531 is_indoor = !!info->attrs[NL80211_ATTR_REG_INDOOR];
6537 return regulatory_hint_indoor(is_indoor, owner_nlportid);
6543 static int nl80211_reload_regdb(struct sk_buff *skb, struct genl_info *info)
6545 return reg_reload_regdb();
6548 static int nl80211_get_mesh_config(struct sk_buff *skb,
6549 struct genl_info *info)
6551 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6552 struct net_device *dev = info->user_ptr[1];
6553 struct wireless_dev *wdev = dev->ieee80211_ptr;
6554 struct mesh_config cur_params;
6557 struct nlattr *pinfoattr;
6558 struct sk_buff *msg;
6560 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6563 if (!rdev->ops->get_mesh_config)
6567 /* If not connected, get default parameters */
6568 if (!wdev->mesh_id_len)
6569 memcpy(&cur_params, &default_mesh_config, sizeof(cur_params));
6571 err = rdev_get_mesh_config(rdev, dev, &cur_params);
6577 /* Draw up a netlink message to send back */
6578 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
6581 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
6582 NL80211_CMD_GET_MESH_CONFIG);
6585 pinfoattr = nla_nest_start_noflag(msg, NL80211_ATTR_MESH_CONFIG);
6587 goto nla_put_failure;
6588 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
6589 nla_put_u16(msg, NL80211_MESHCONF_RETRY_TIMEOUT,
6590 cur_params.dot11MeshRetryTimeout) ||
6591 nla_put_u16(msg, NL80211_MESHCONF_CONFIRM_TIMEOUT,
6592 cur_params.dot11MeshConfirmTimeout) ||
6593 nla_put_u16(msg, NL80211_MESHCONF_HOLDING_TIMEOUT,
6594 cur_params.dot11MeshHoldingTimeout) ||
6595 nla_put_u16(msg, NL80211_MESHCONF_MAX_PEER_LINKS,
6596 cur_params.dot11MeshMaxPeerLinks) ||
6597 nla_put_u8(msg, NL80211_MESHCONF_MAX_RETRIES,
6598 cur_params.dot11MeshMaxRetries) ||
6599 nla_put_u8(msg, NL80211_MESHCONF_TTL,
6600 cur_params.dot11MeshTTL) ||
6601 nla_put_u8(msg, NL80211_MESHCONF_ELEMENT_TTL,
6602 cur_params.element_ttl) ||
6603 nla_put_u8(msg, NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6604 cur_params.auto_open_plinks) ||
6605 nla_put_u32(msg, NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6606 cur_params.dot11MeshNbrOffsetMaxNeighbor) ||
6607 nla_put_u8(msg, NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6608 cur_params.dot11MeshHWMPmaxPREQretries) ||
6609 nla_put_u32(msg, NL80211_MESHCONF_PATH_REFRESH_TIME,
6610 cur_params.path_refresh_time) ||
6611 nla_put_u16(msg, NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6612 cur_params.min_discovery_timeout) ||
6613 nla_put_u32(msg, NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6614 cur_params.dot11MeshHWMPactivePathTimeout) ||
6615 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6616 cur_params.dot11MeshHWMPpreqMinInterval) ||
6617 nla_put_u16(msg, NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6618 cur_params.dot11MeshHWMPperrMinInterval) ||
6619 nla_put_u16(msg, NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6620 cur_params.dot11MeshHWMPnetDiameterTraversalTime) ||
6621 nla_put_u8(msg, NL80211_MESHCONF_HWMP_ROOTMODE,
6622 cur_params.dot11MeshHWMPRootMode) ||
6623 nla_put_u16(msg, NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6624 cur_params.dot11MeshHWMPRannInterval) ||
6625 nla_put_u8(msg, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6626 cur_params.dot11MeshGateAnnouncementProtocol) ||
6627 nla_put_u8(msg, NL80211_MESHCONF_FORWARDING,
6628 cur_params.dot11MeshForwarding) ||
6629 nla_put_s32(msg, NL80211_MESHCONF_RSSI_THRESHOLD,
6630 cur_params.rssi_threshold) ||
6631 nla_put_u32(msg, NL80211_MESHCONF_HT_OPMODE,
6632 cur_params.ht_opmode) ||
6633 nla_put_u32(msg, NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6634 cur_params.dot11MeshHWMPactivePathToRootTimeout) ||
6635 nla_put_u16(msg, NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6636 cur_params.dot11MeshHWMProotInterval) ||
6637 nla_put_u16(msg, NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6638 cur_params.dot11MeshHWMPconfirmationInterval) ||
6639 nla_put_u32(msg, NL80211_MESHCONF_POWER_MODE,
6640 cur_params.power_mode) ||
6641 nla_put_u16(msg, NL80211_MESHCONF_AWAKE_WINDOW,
6642 cur_params.dot11MeshAwakeWindowDuration) ||
6643 nla_put_u32(msg, NL80211_MESHCONF_PLINK_TIMEOUT,
6644 cur_params.plink_timeout) ||
6645 nla_put_u8(msg, NL80211_MESHCONF_CONNECTED_TO_GATE,
6646 cur_params.dot11MeshConnectedToMeshGate))
6647 goto nla_put_failure;
6648 nla_nest_end(msg, pinfoattr);
6649 genlmsg_end(msg, hdr);
6650 return genlmsg_reply(msg, info);
6658 static const struct nla_policy
6659 nl80211_meshconf_params_policy[NL80211_MESHCONF_ATTR_MAX+1] = {
6660 [NL80211_MESHCONF_RETRY_TIMEOUT] =
6661 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6662 [NL80211_MESHCONF_CONFIRM_TIMEOUT] =
6663 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6664 [NL80211_MESHCONF_HOLDING_TIMEOUT] =
6665 NLA_POLICY_RANGE(NLA_U16, 1, 255),
6666 [NL80211_MESHCONF_MAX_PEER_LINKS] =
6667 NLA_POLICY_RANGE(NLA_U16, 0, 255),
6668 [NL80211_MESHCONF_MAX_RETRIES] = NLA_POLICY_MAX(NLA_U8, 16),
6669 [NL80211_MESHCONF_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6670 [NL80211_MESHCONF_ELEMENT_TTL] = NLA_POLICY_MIN(NLA_U8, 1),
6671 [NL80211_MESHCONF_AUTO_OPEN_PLINKS] = NLA_POLICY_MAX(NLA_U8, 1),
6672 [NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR] =
6673 NLA_POLICY_RANGE(NLA_U32, 1, 255),
6674 [NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES] = { .type = NLA_U8 },
6675 [NL80211_MESHCONF_PATH_REFRESH_TIME] = { .type = NLA_U32 },
6676 [NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT] = NLA_POLICY_MIN(NLA_U16, 1),
6677 [NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT] = { .type = NLA_U32 },
6678 [NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL] =
6679 NLA_POLICY_MIN(NLA_U16, 1),
6680 [NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL] =
6681 NLA_POLICY_MIN(NLA_U16, 1),
6682 [NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME] =
6683 NLA_POLICY_MIN(NLA_U16, 1),
6684 [NL80211_MESHCONF_HWMP_ROOTMODE] = NLA_POLICY_MAX(NLA_U8, 4),
6685 [NL80211_MESHCONF_HWMP_RANN_INTERVAL] =
6686 NLA_POLICY_MIN(NLA_U16, 1),
6687 [NL80211_MESHCONF_GATE_ANNOUNCEMENTS] = NLA_POLICY_MAX(NLA_U8, 1),
6688 [NL80211_MESHCONF_FORWARDING] = NLA_POLICY_MAX(NLA_U8, 1),
6689 [NL80211_MESHCONF_RSSI_THRESHOLD] =
6690 NLA_POLICY_RANGE(NLA_S32, -255, 0),
6691 [NL80211_MESHCONF_HT_OPMODE] = { .type = NLA_U16 },
6692 [NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT] = { .type = NLA_U32 },
6693 [NL80211_MESHCONF_HWMP_ROOT_INTERVAL] =
6694 NLA_POLICY_MIN(NLA_U16, 1),
6695 [NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL] =
6696 NLA_POLICY_MIN(NLA_U16, 1),
6697 [NL80211_MESHCONF_POWER_MODE] =
6698 NLA_POLICY_RANGE(NLA_U32,
6699 NL80211_MESH_POWER_ACTIVE,
6700 NL80211_MESH_POWER_MAX),
6701 [NL80211_MESHCONF_AWAKE_WINDOW] = { .type = NLA_U16 },
6702 [NL80211_MESHCONF_PLINK_TIMEOUT] = { .type = NLA_U32 },
6703 [NL80211_MESHCONF_CONNECTED_TO_GATE] = NLA_POLICY_RANGE(NLA_U8, 0, 1),
6706 static const struct nla_policy
6707 nl80211_mesh_setup_params_policy[NL80211_MESH_SETUP_ATTR_MAX+1] = {
6708 [NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC] = { .type = NLA_U8 },
6709 [NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL] = { .type = NLA_U8 },
6710 [NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC] = { .type = NLA_U8 },
6711 [NL80211_MESH_SETUP_USERSPACE_AUTH] = { .type = NLA_FLAG },
6712 [NL80211_MESH_SETUP_AUTH_PROTOCOL] = { .type = NLA_U8 },
6713 [NL80211_MESH_SETUP_USERSPACE_MPM] = { .type = NLA_FLAG },
6714 [NL80211_MESH_SETUP_IE] =
6715 NLA_POLICY_VALIDATE_FN(NLA_BINARY, validate_ie_attr,
6716 IEEE80211_MAX_DATA_LEN),
6717 [NL80211_MESH_SETUP_USERSPACE_AMPE] = { .type = NLA_FLAG },
6720 static int nl80211_parse_mesh_config(struct genl_info *info,
6721 struct mesh_config *cfg,
6724 struct nlattr *tb[NL80211_MESHCONF_ATTR_MAX + 1];
6728 #define FILL_IN_MESH_PARAM_IF_SET(tb, cfg, param, mask, attr, fn) \
6731 cfg->param = fn(tb[attr]); \
6732 mask |= BIT((attr) - 1); \
6736 if (!info->attrs[NL80211_ATTR_MESH_CONFIG])
6738 if (nla_parse_nested_deprecated(tb, NL80211_MESHCONF_ATTR_MAX, info->attrs[NL80211_ATTR_MESH_CONFIG], nl80211_meshconf_params_policy, info->extack))
6741 /* This makes sure that there aren't more than 32 mesh config
6742 * parameters (otherwise our bitfield scheme would not work.) */
6743 BUILD_BUG_ON(NL80211_MESHCONF_ATTR_MAX > 32);
6745 /* Fill in the params struct */
6746 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshRetryTimeout, mask,
6747 NL80211_MESHCONF_RETRY_TIMEOUT, nla_get_u16);
6748 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConfirmTimeout, mask,
6749 NL80211_MESHCONF_CONFIRM_TIMEOUT,
6751 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHoldingTimeout, mask,
6752 NL80211_MESHCONF_HOLDING_TIMEOUT,
6754 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxPeerLinks, mask,
6755 NL80211_MESHCONF_MAX_PEER_LINKS,
6757 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshMaxRetries, mask,
6758 NL80211_MESHCONF_MAX_RETRIES, nla_get_u8);
6759 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshTTL, mask,
6760 NL80211_MESHCONF_TTL, nla_get_u8);
6761 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, element_ttl, mask,
6762 NL80211_MESHCONF_ELEMENT_TTL, nla_get_u8);
6763 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, auto_open_plinks, mask,
6764 NL80211_MESHCONF_AUTO_OPEN_PLINKS,
6766 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshNbrOffsetMaxNeighbor,
6768 NL80211_MESHCONF_SYNC_OFFSET_MAX_NEIGHBOR,
6770 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPmaxPREQretries, mask,
6771 NL80211_MESHCONF_HWMP_MAX_PREQ_RETRIES,
6773 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, path_refresh_time, mask,
6774 NL80211_MESHCONF_PATH_REFRESH_TIME,
6776 if (mask & BIT(NL80211_MESHCONF_PATH_REFRESH_TIME) &&
6777 (cfg->path_refresh_time < 1 || cfg->path_refresh_time > 65535))
6779 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, min_discovery_timeout, mask,
6780 NL80211_MESHCONF_MIN_DISCOVERY_TIMEOUT,
6782 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPactivePathTimeout,
6784 NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT,
6786 if (mask & BIT(NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT) &&
6787 (cfg->dot11MeshHWMPactivePathTimeout < 1 ||
6788 cfg->dot11MeshHWMPactivePathTimeout > 65535))
6790 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPpreqMinInterval, mask,
6791 NL80211_MESHCONF_HWMP_PREQ_MIN_INTERVAL,
6793 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPperrMinInterval, mask,
6794 NL80211_MESHCONF_HWMP_PERR_MIN_INTERVAL,
6796 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6797 dot11MeshHWMPnetDiameterTraversalTime, mask,
6798 NL80211_MESHCONF_HWMP_NET_DIAM_TRVS_TIME,
6800 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRootMode, mask,
6801 NL80211_MESHCONF_HWMP_ROOTMODE, nla_get_u8);
6802 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPRannInterval, mask,
6803 NL80211_MESHCONF_HWMP_RANN_INTERVAL,
6805 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshGateAnnouncementProtocol,
6806 mask, NL80211_MESHCONF_GATE_ANNOUNCEMENTS,
6808 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshForwarding, mask,
6809 NL80211_MESHCONF_FORWARDING, nla_get_u8);
6810 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, rssi_threshold, mask,
6811 NL80211_MESHCONF_RSSI_THRESHOLD,
6813 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshConnectedToMeshGate, mask,
6814 NL80211_MESHCONF_CONNECTED_TO_GATE,
6817 * Check HT operation mode based on
6818 * IEEE 802.11-2016 9.4.2.57 HT Operation element.
6820 if (tb[NL80211_MESHCONF_HT_OPMODE]) {
6821 ht_opmode = nla_get_u16(tb[NL80211_MESHCONF_HT_OPMODE]);
6823 if (ht_opmode & ~(IEEE80211_HT_OP_MODE_PROTECTION |
6824 IEEE80211_HT_OP_MODE_NON_GF_STA_PRSNT |
6825 IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT))
6828 /* NON_HT_STA bit is reserved, but some programs set it */
6829 ht_opmode &= ~IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT;
6831 cfg->ht_opmode = ht_opmode;
6832 mask |= (1 << (NL80211_MESHCONF_HT_OPMODE - 1));
6834 FILL_IN_MESH_PARAM_IF_SET(tb, cfg,
6835 dot11MeshHWMPactivePathToRootTimeout, mask,
6836 NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT,
6838 if (mask & BIT(NL80211_MESHCONF_HWMP_PATH_TO_ROOT_TIMEOUT) &&
6839 (cfg->dot11MeshHWMPactivePathToRootTimeout < 1 ||
6840 cfg->dot11MeshHWMPactivePathToRootTimeout > 65535))
6842 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMProotInterval, mask,
6843 NL80211_MESHCONF_HWMP_ROOT_INTERVAL,
6845 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshHWMPconfirmationInterval,
6847 NL80211_MESHCONF_HWMP_CONFIRMATION_INTERVAL,
6849 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, power_mode, mask,
6850 NL80211_MESHCONF_POWER_MODE, nla_get_u32);
6851 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, dot11MeshAwakeWindowDuration, mask,
6852 NL80211_MESHCONF_AWAKE_WINDOW, nla_get_u16);
6853 FILL_IN_MESH_PARAM_IF_SET(tb, cfg, plink_timeout, mask,
6854 NL80211_MESHCONF_PLINK_TIMEOUT, nla_get_u32);
6860 #undef FILL_IN_MESH_PARAM_IF_SET
6863 static int nl80211_parse_mesh_setup(struct genl_info *info,
6864 struct mesh_setup *setup)
6866 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6867 struct nlattr *tb[NL80211_MESH_SETUP_ATTR_MAX + 1];
6869 if (!info->attrs[NL80211_ATTR_MESH_SETUP])
6871 if (nla_parse_nested_deprecated(tb, NL80211_MESH_SETUP_ATTR_MAX, info->attrs[NL80211_ATTR_MESH_SETUP], nl80211_mesh_setup_params_policy, info->extack))
6874 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])
6875 setup->sync_method =
6876 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_SYNC])) ?
6877 IEEE80211_SYNC_METHOD_VENDOR :
6878 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET;
6880 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])
6881 setup->path_sel_proto =
6882 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_PATH_SEL])) ?
6883 IEEE80211_PATH_PROTOCOL_VENDOR :
6884 IEEE80211_PATH_PROTOCOL_HWMP;
6886 if (tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])
6887 setup->path_metric =
6888 (nla_get_u8(tb[NL80211_MESH_SETUP_ENABLE_VENDOR_METRIC])) ?
6889 IEEE80211_PATH_METRIC_VENDOR :
6890 IEEE80211_PATH_METRIC_AIRTIME;
6892 if (tb[NL80211_MESH_SETUP_IE]) {
6893 struct nlattr *ieattr =
6894 tb[NL80211_MESH_SETUP_IE];
6895 setup->ie = nla_data(ieattr);
6896 setup->ie_len = nla_len(ieattr);
6898 if (tb[NL80211_MESH_SETUP_USERSPACE_MPM] &&
6899 !(rdev->wiphy.features & NL80211_FEATURE_USERSPACE_MPM))
6901 setup->user_mpm = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_MPM]);
6902 setup->is_authenticated = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AUTH]);
6903 setup->is_secure = nla_get_flag(tb[NL80211_MESH_SETUP_USERSPACE_AMPE]);
6904 if (setup->is_secure)
6905 setup->user_mpm = true;
6907 if (tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]) {
6908 if (!setup->user_mpm)
6911 nla_get_u8(tb[NL80211_MESH_SETUP_AUTH_PROTOCOL]);
6917 static int nl80211_update_mesh_config(struct sk_buff *skb,
6918 struct genl_info *info)
6920 struct cfg80211_registered_device *rdev = info->user_ptr[0];
6921 struct net_device *dev = info->user_ptr[1];
6922 struct wireless_dev *wdev = dev->ieee80211_ptr;
6923 struct mesh_config cfg;
6927 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
6930 if (!rdev->ops->update_mesh_config)
6933 err = nl80211_parse_mesh_config(info, &cfg, &mask);
6938 if (!wdev->mesh_id_len)
6942 err = rdev_update_mesh_config(rdev, dev, mask, &cfg);
6949 static int nl80211_put_regdom(const struct ieee80211_regdomain *regdom,
6950 struct sk_buff *msg)
6952 struct nlattr *nl_reg_rules;
6955 if (nla_put_string(msg, NL80211_ATTR_REG_ALPHA2, regdom->alpha2) ||
6956 (regdom->dfs_region &&
6957 nla_put_u8(msg, NL80211_ATTR_DFS_REGION, regdom->dfs_region)))
6958 goto nla_put_failure;
6960 nl_reg_rules = nla_nest_start_noflag(msg, NL80211_ATTR_REG_RULES);
6962 goto nla_put_failure;
6964 for (i = 0; i < regdom->n_reg_rules; i++) {
6965 struct nlattr *nl_reg_rule;
6966 const struct ieee80211_reg_rule *reg_rule;
6967 const struct ieee80211_freq_range *freq_range;
6968 const struct ieee80211_power_rule *power_rule;
6969 unsigned int max_bandwidth_khz;
6971 reg_rule = ®dom->reg_rules[i];
6972 freq_range = ®_rule->freq_range;
6973 power_rule = ®_rule->power_rule;
6975 nl_reg_rule = nla_nest_start_noflag(msg, i);
6977 goto nla_put_failure;
6979 max_bandwidth_khz = freq_range->max_bandwidth_khz;
6980 if (!max_bandwidth_khz)
6981 max_bandwidth_khz = reg_get_max_bandwidth(regdom,
6984 if (nla_put_u32(msg, NL80211_ATTR_REG_RULE_FLAGS,
6986 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_START,
6987 freq_range->start_freq_khz) ||
6988 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_END,
6989 freq_range->end_freq_khz) ||
6990 nla_put_u32(msg, NL80211_ATTR_FREQ_RANGE_MAX_BW,
6991 max_bandwidth_khz) ||
6992 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN,
6993 power_rule->max_antenna_gain) ||
6994 nla_put_u32(msg, NL80211_ATTR_POWER_RULE_MAX_EIRP,
6995 power_rule->max_eirp) ||
6996 nla_put_u32(msg, NL80211_ATTR_DFS_CAC_TIME,
6997 reg_rule->dfs_cac_ms))
6998 goto nla_put_failure;
7000 nla_nest_end(msg, nl_reg_rule);
7003 nla_nest_end(msg, nl_reg_rules);
7010 static int nl80211_get_reg_do(struct sk_buff *skb, struct genl_info *info)
7012 const struct ieee80211_regdomain *regdom = NULL;
7013 struct cfg80211_registered_device *rdev;
7014 struct wiphy *wiphy = NULL;
7015 struct sk_buff *msg;
7018 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
7022 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
7023 NL80211_CMD_GET_REG);
7027 if (info->attrs[NL80211_ATTR_WIPHY]) {
7030 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
7033 return PTR_ERR(rdev);
7036 wiphy = &rdev->wiphy;
7037 self_managed = wiphy->regulatory_flags &
7038 REGULATORY_WIPHY_SELF_MANAGED;
7039 regdom = get_wiphy_regdom(wiphy);
7041 /* a self-managed-reg device must have a private regdom */
7042 if (WARN_ON(!regdom && self_managed)) {
7048 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
7049 goto nla_put_failure;
7052 if (!wiphy && reg_last_request_cell_base() &&
7053 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
7054 NL80211_USER_REG_HINT_CELL_BASE))
7055 goto nla_put_failure;
7060 regdom = rcu_dereference(cfg80211_regdomain);
7062 if (nl80211_put_regdom(regdom, msg))
7063 goto nla_put_failure_rcu;
7067 genlmsg_end(msg, hdr);
7068 return genlmsg_reply(msg, info);
7070 nla_put_failure_rcu:
7078 static int nl80211_send_regdom(struct sk_buff *msg, struct netlink_callback *cb,
7079 u32 seq, int flags, struct wiphy *wiphy,
7080 const struct ieee80211_regdomain *regdom)
7082 void *hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
7083 NL80211_CMD_GET_REG);
7088 genl_dump_check_consistent(cb, hdr);
7090 if (nl80211_put_regdom(regdom, msg))
7091 goto nla_put_failure;
7093 if (!wiphy && reg_last_request_cell_base() &&
7094 nla_put_u32(msg, NL80211_ATTR_USER_REG_HINT_TYPE,
7095 NL80211_USER_REG_HINT_CELL_BASE))
7096 goto nla_put_failure;
7099 nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
7100 goto nla_put_failure;
7102 if (wiphy && wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
7103 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
7104 goto nla_put_failure;
7106 genlmsg_end(msg, hdr);
7110 genlmsg_cancel(msg, hdr);
7114 static int nl80211_get_reg_dump(struct sk_buff *skb,
7115 struct netlink_callback *cb)
7117 const struct ieee80211_regdomain *regdom = NULL;
7118 struct cfg80211_registered_device *rdev;
7119 int err, reg_idx, start = cb->args[2];
7123 if (cfg80211_regdomain && start == 0) {
7124 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
7126 rtnl_dereference(cfg80211_regdomain));
7131 /* the global regdom is idx 0 */
7133 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
7134 regdom = get_wiphy_regdom(&rdev->wiphy);
7138 if (++reg_idx <= start)
7141 err = nl80211_send_regdom(skb, cb, cb->nlh->nlmsg_seq,
7142 NLM_F_MULTI, &rdev->wiphy, regdom);
7149 cb->args[2] = reg_idx;
7156 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
7157 static const struct nla_policy reg_rule_policy[NL80211_REG_RULE_ATTR_MAX + 1] = {
7158 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
7159 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
7160 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
7161 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
7162 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
7163 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
7164 [NL80211_ATTR_DFS_CAC_TIME] = { .type = NLA_U32 },
7167 static int parse_reg_rule(struct nlattr *tb[],
7168 struct ieee80211_reg_rule *reg_rule)
7170 struct ieee80211_freq_range *freq_range = ®_rule->freq_range;
7171 struct ieee80211_power_rule *power_rule = ®_rule->power_rule;
7173 if (!tb[NL80211_ATTR_REG_RULE_FLAGS])
7175 if (!tb[NL80211_ATTR_FREQ_RANGE_START])
7177 if (!tb[NL80211_ATTR_FREQ_RANGE_END])
7179 if (!tb[NL80211_ATTR_FREQ_RANGE_MAX_BW])
7181 if (!tb[NL80211_ATTR_POWER_RULE_MAX_EIRP])
7184 reg_rule->flags = nla_get_u32(tb[NL80211_ATTR_REG_RULE_FLAGS]);
7186 freq_range->start_freq_khz =
7187 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]);
7188 freq_range->end_freq_khz =
7189 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]);
7190 freq_range->max_bandwidth_khz =
7191 nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]);
7193 power_rule->max_eirp =
7194 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_EIRP]);
7196 if (tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN])
7197 power_rule->max_antenna_gain =
7198 nla_get_u32(tb[NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN]);
7200 if (tb[NL80211_ATTR_DFS_CAC_TIME])
7201 reg_rule->dfs_cac_ms =
7202 nla_get_u32(tb[NL80211_ATTR_DFS_CAC_TIME]);
7207 static int nl80211_set_reg(struct sk_buff *skb, struct genl_info *info)
7209 struct nlattr *tb[NL80211_REG_RULE_ATTR_MAX + 1];
7210 struct nlattr *nl_reg_rule;
7212 int rem_reg_rules, r;
7213 u32 num_rules = 0, rule_idx = 0;
7214 enum nl80211_dfs_regions dfs_region = NL80211_DFS_UNSET;
7215 struct ieee80211_regdomain *rd;
7217 if (!info->attrs[NL80211_ATTR_REG_ALPHA2])
7220 if (!info->attrs[NL80211_ATTR_REG_RULES])
7223 alpha2 = nla_data(info->attrs[NL80211_ATTR_REG_ALPHA2]);
7225 if (info->attrs[NL80211_ATTR_DFS_REGION])
7226 dfs_region = nla_get_u8(info->attrs[NL80211_ATTR_DFS_REGION]);
7228 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
7231 if (num_rules > NL80211_MAX_SUPP_REG_RULES)
7235 if (!reg_is_valid_request(alpha2))
7238 rd = kzalloc(struct_size(rd, reg_rules, num_rules), GFP_KERNEL);
7242 rd->n_reg_rules = num_rules;
7243 rd->alpha2[0] = alpha2[0];
7244 rd->alpha2[1] = alpha2[1];
7247 * Disable DFS master mode if the DFS region was
7248 * not supported or known on this kernel.
7250 if (reg_supported_dfs_region(dfs_region))
7251 rd->dfs_region = dfs_region;
7253 nla_for_each_nested(nl_reg_rule, info->attrs[NL80211_ATTR_REG_RULES],
7255 r = nla_parse_nested_deprecated(tb, NL80211_REG_RULE_ATTR_MAX,
7256 nl_reg_rule, reg_rule_policy,
7260 r = parse_reg_rule(tb, &rd->reg_rules[rule_idx]);
7266 if (rule_idx > NL80211_MAX_SUPP_REG_RULES) {
7272 /* set_regdom takes ownership of rd */
7273 return set_regdom(rd, REGD_SOURCE_CRDA);
7278 #endif /* CONFIG_CFG80211_CRDA_SUPPORT */
7280 static int validate_scan_freqs(struct nlattr *freqs)
7282 struct nlattr *attr1, *attr2;
7283 int n_channels = 0, tmp1, tmp2;
7285 nla_for_each_nested(attr1, freqs, tmp1)
7286 if (nla_len(attr1) != sizeof(u32))
7289 nla_for_each_nested(attr1, freqs, tmp1) {
7292 * Some hardware has a limited channel list for
7293 * scanning, and it is pretty much nonsensical
7294 * to scan for a channel twice, so disallow that
7295 * and don't require drivers to check that the
7296 * channel list they get isn't longer than what
7297 * they can scan, as long as they can scan all
7298 * the channels they registered at once.
7300 nla_for_each_nested(attr2, freqs, tmp2)
7301 if (attr1 != attr2 &&
7302 nla_get_u32(attr1) == nla_get_u32(attr2))
7309 static bool is_band_valid(struct wiphy *wiphy, enum nl80211_band b)
7311 return b < NUM_NL80211_BANDS && wiphy->bands[b];
7314 static int parse_bss_select(struct nlattr *nla, struct wiphy *wiphy,
7315 struct cfg80211_bss_selection *bss_select)
7317 struct nlattr *attr[NL80211_BSS_SELECT_ATTR_MAX + 1];
7318 struct nlattr *nest;
7323 /* only process one nested attribute */
7324 nest = nla_data(nla);
7325 if (!nla_ok(nest, nla_len(nest)))
7328 err = nla_parse_nested_deprecated(attr, NL80211_BSS_SELECT_ATTR_MAX,
7329 nest, nl80211_bss_select_policy,
7334 /* only one attribute may be given */
7335 for (i = 0; i <= NL80211_BSS_SELECT_ATTR_MAX; i++) {
7343 bss_select->behaviour = __NL80211_BSS_SELECT_ATTR_INVALID;
7345 if (attr[NL80211_BSS_SELECT_ATTR_RSSI])
7346 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI;
7348 if (attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]) {
7349 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_BAND_PREF;
7350 bss_select->param.band_pref =
7351 nla_get_u32(attr[NL80211_BSS_SELECT_ATTR_BAND_PREF]);
7352 if (!is_band_valid(wiphy, bss_select->param.band_pref))
7356 if (attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]) {
7357 struct nl80211_bss_select_rssi_adjust *adj_param;
7359 adj_param = nla_data(attr[NL80211_BSS_SELECT_ATTR_RSSI_ADJUST]);
7360 bss_select->behaviour = NL80211_BSS_SELECT_ATTR_RSSI_ADJUST;
7361 bss_select->param.adjust.band = adj_param->band;
7362 bss_select->param.adjust.delta = adj_param->delta;
7363 if (!is_band_valid(wiphy, bss_select->param.adjust.band))
7367 /* user-space did not provide behaviour attribute */
7368 if (bss_select->behaviour == __NL80211_BSS_SELECT_ATTR_INVALID)
7371 if (!(wiphy->bss_select_support & BIT(bss_select->behaviour)))
7377 int nl80211_parse_random_mac(struct nlattr **attrs,
7378 u8 *mac_addr, u8 *mac_addr_mask)
7382 if (!attrs[NL80211_ATTR_MAC] && !attrs[NL80211_ATTR_MAC_MASK]) {
7383 eth_zero_addr(mac_addr);
7384 eth_zero_addr(mac_addr_mask);
7386 mac_addr_mask[0] = 0x3;
7391 /* need both or none */
7392 if (!attrs[NL80211_ATTR_MAC] || !attrs[NL80211_ATTR_MAC_MASK])
7395 memcpy(mac_addr, nla_data(attrs[NL80211_ATTR_MAC]), ETH_ALEN);
7396 memcpy(mac_addr_mask, nla_data(attrs[NL80211_ATTR_MAC_MASK]), ETH_ALEN);
7398 /* don't allow or configure an mcast address */
7399 if (!is_multicast_ether_addr(mac_addr_mask) ||
7400 is_multicast_ether_addr(mac_addr))
7404 * allow users to pass a MAC address that has bits set outside
7405 * of the mask, but don't bother drivers with having to deal
7408 for (i = 0; i < ETH_ALEN; i++)
7409 mac_addr[i] &= mac_addr_mask[i];
7414 static bool cfg80211_off_channel_oper_allowed(struct wireless_dev *wdev)
7416 ASSERT_WDEV_LOCK(wdev);
7418 if (!cfg80211_beaconing_iface_active(wdev))
7421 if (!(wdev->chandef.chan->flags & IEEE80211_CHAN_RADAR))
7424 return regulatory_pre_cac_allowed(wdev->wiphy);
7427 static bool nl80211_check_scan_feat(struct wiphy *wiphy, u32 flags, u32 flag,
7428 enum nl80211_ext_feature_index feat)
7430 if (!(flags & flag))
7432 if (wiphy_ext_feature_isset(wiphy, feat))
7438 nl80211_check_scan_flags(struct wiphy *wiphy, struct wireless_dev *wdev,
7439 void *request, struct nlattr **attrs,
7442 u8 *mac_addr, *mac_addr_mask;
7444 enum nl80211_feature_flags randomness_flag;
7446 if (!attrs[NL80211_ATTR_SCAN_FLAGS])
7449 if (is_sched_scan) {
7450 struct cfg80211_sched_scan_request *req = request;
7452 randomness_flag = wdev ?
7453 NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR :
7454 NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7455 flags = &req->flags;
7456 mac_addr = req->mac_addr;
7457 mac_addr_mask = req->mac_addr_mask;
7459 struct cfg80211_scan_request *req = request;
7461 randomness_flag = NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
7462 flags = &req->flags;
7463 mac_addr = req->mac_addr;
7464 mac_addr_mask = req->mac_addr_mask;
7467 *flags = nla_get_u32(attrs[NL80211_ATTR_SCAN_FLAGS]);
7469 if (((*flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
7470 !(wiphy->features & NL80211_FEATURE_LOW_PRIORITY_SCAN)) ||
7471 !nl80211_check_scan_feat(wiphy, *flags,
7472 NL80211_SCAN_FLAG_LOW_SPAN,
7473 NL80211_EXT_FEATURE_LOW_SPAN_SCAN) ||
7474 !nl80211_check_scan_feat(wiphy, *flags,
7475 NL80211_SCAN_FLAG_LOW_POWER,
7476 NL80211_EXT_FEATURE_LOW_POWER_SCAN) ||
7477 !nl80211_check_scan_feat(wiphy, *flags,
7478 NL80211_SCAN_FLAG_HIGH_ACCURACY,
7479 NL80211_EXT_FEATURE_HIGH_ACCURACY_SCAN) ||
7480 !nl80211_check_scan_feat(wiphy, *flags,
7481 NL80211_SCAN_FLAG_FILS_MAX_CHANNEL_TIME,
7482 NL80211_EXT_FEATURE_FILS_MAX_CHANNEL_TIME) ||
7483 !nl80211_check_scan_feat(wiphy, *flags,
7484 NL80211_SCAN_FLAG_ACCEPT_BCAST_PROBE_RESP,
7485 NL80211_EXT_FEATURE_ACCEPT_BCAST_PROBE_RESP) ||
7486 !nl80211_check_scan_feat(wiphy, *flags,
7487 NL80211_SCAN_FLAG_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION,
7488 NL80211_EXT_FEATURE_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION) ||
7489 !nl80211_check_scan_feat(wiphy, *flags,
7490 NL80211_SCAN_FLAG_OCE_PROBE_REQ_HIGH_TX_RATE,
7491 NL80211_EXT_FEATURE_OCE_PROBE_REQ_HIGH_TX_RATE) ||
7492 !nl80211_check_scan_feat(wiphy, *flags,
7493 NL80211_SCAN_FLAG_RANDOM_SN,
7494 NL80211_EXT_FEATURE_SCAN_RANDOM_SN) ||
7495 !nl80211_check_scan_feat(wiphy, *flags,
7496 NL80211_SCAN_FLAG_MIN_PREQ_CONTENT,
7497 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT))
7500 if (*flags & NL80211_SCAN_FLAG_RANDOM_ADDR) {
7503 if (!(wiphy->features & randomness_flag) ||
7504 (wdev && wdev->current_bss))
7507 err = nl80211_parse_random_mac(attrs, mac_addr, mac_addr_mask);
7515 static int nl80211_trigger_scan(struct sk_buff *skb, struct genl_info *info)
7517 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7518 struct wireless_dev *wdev = info->user_ptr[1];
7519 struct cfg80211_scan_request *request;
7520 struct nlattr *attr;
7521 struct wiphy *wiphy;
7522 int err, tmp, n_ssids = 0, n_channels, i;
7525 wiphy = &rdev->wiphy;
7527 if (wdev->iftype == NL80211_IFTYPE_NAN)
7530 if (!rdev->ops->scan)
7533 if (rdev->scan_req || rdev->scan_msg) {
7538 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7539 n_channels = validate_scan_freqs(
7540 info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7546 n_channels = ieee80211_get_num_supported_channels(wiphy);
7549 if (info->attrs[NL80211_ATTR_SCAN_SSIDS])
7550 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp)
7553 if (n_ssids > wiphy->max_scan_ssids) {
7558 if (info->attrs[NL80211_ATTR_IE])
7559 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7563 if (ie_len > wiphy->max_scan_ie_len) {
7568 request = kzalloc(sizeof(*request)
7569 + sizeof(*request->ssids) * n_ssids
7570 + sizeof(*request->channels) * n_channels
7571 + ie_len, GFP_KERNEL);
7578 request->ssids = (void *)&request->channels[n_channels];
7579 request->n_ssids = n_ssids;
7582 request->ie = (void *)(request->ssids + n_ssids);
7584 request->ie = (void *)(request->channels + n_channels);
7588 if (info->attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7589 /* user specified, bail out if channel not found */
7590 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_FREQUENCIES], tmp) {
7591 struct ieee80211_channel *chan;
7593 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
7600 /* ignore disabled channels */
7601 if (chan->flags & IEEE80211_CHAN_DISABLED)
7604 request->channels[i] = chan;
7608 enum nl80211_band band;
7611 for (band = 0; band < NUM_NL80211_BANDS; band++) {
7614 if (!wiphy->bands[band])
7616 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
7617 struct ieee80211_channel *chan;
7619 chan = &wiphy->bands[band]->channels[j];
7621 if (chan->flags & IEEE80211_CHAN_DISABLED)
7624 request->channels[i] = chan;
7635 request->n_channels = i;
7638 if (!cfg80211_off_channel_oper_allowed(wdev)) {
7639 struct ieee80211_channel *chan;
7641 if (request->n_channels != 1) {
7647 chan = request->channels[0];
7648 if (chan->center_freq != wdev->chandef.chan->center_freq) {
7658 nla_for_each_nested(attr, info->attrs[NL80211_ATTR_SCAN_SSIDS], tmp) {
7659 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
7663 request->ssids[i].ssid_len = nla_len(attr);
7664 memcpy(request->ssids[i].ssid, nla_data(attr), nla_len(attr));
7669 if (info->attrs[NL80211_ATTR_IE]) {
7670 request->ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
7671 memcpy((void *)request->ie,
7672 nla_data(info->attrs[NL80211_ATTR_IE]),
7676 for (i = 0; i < NUM_NL80211_BANDS; i++)
7677 if (wiphy->bands[i])
7679 (1 << wiphy->bands[i]->n_bitrates) - 1;
7681 if (info->attrs[NL80211_ATTR_SCAN_SUPP_RATES]) {
7682 nla_for_each_nested(attr,
7683 info->attrs[NL80211_ATTR_SCAN_SUPP_RATES],
7685 enum nl80211_band band = nla_type(attr);
7687 if (band < 0 || band >= NUM_NL80211_BANDS) {
7692 if (!wiphy->bands[band])
7695 err = ieee80211_get_ratemask(wiphy->bands[band],
7698 &request->rates[band]);
7704 if (info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]) {
7705 if (!wiphy_ext_feature_isset(wiphy,
7706 NL80211_EXT_FEATURE_SET_SCAN_DWELL)) {
7712 nla_get_u16(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION]);
7713 request->duration_mandatory =
7714 nla_get_flag(info->attrs[NL80211_ATTR_MEASUREMENT_DURATION_MANDATORY]);
7717 err = nl80211_check_scan_flags(wiphy, wdev, request, info->attrs,
7723 nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
7725 /* Initial implementation used NL80211_ATTR_MAC to set the specific
7726 * BSSID to scan for. This was problematic because that same attribute
7727 * was already used for another purpose (local random MAC address). The
7728 * NL80211_ATTR_BSSID attribute was added to fix this. For backwards
7729 * compatibility with older userspace components, also use the
7730 * NL80211_ATTR_MAC value here if it can be determined to be used for
7731 * the specific BSSID use case instead of the random MAC address
7732 * (NL80211_ATTR_SCAN_FLAGS is used to enable random MAC address use).
7734 if (info->attrs[NL80211_ATTR_BSSID])
7735 memcpy(request->bssid,
7736 nla_data(info->attrs[NL80211_ATTR_BSSID]), ETH_ALEN);
7737 else if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR) &&
7738 info->attrs[NL80211_ATTR_MAC])
7739 memcpy(request->bssid, nla_data(info->attrs[NL80211_ATTR_MAC]),
7742 eth_broadcast_addr(request->bssid);
7744 request->wdev = wdev;
7745 request->wiphy = &rdev->wiphy;
7746 request->scan_start = jiffies;
7748 rdev->scan_req = request;
7749 err = rdev_scan(rdev, request);
7752 nl80211_send_scan_start(rdev, wdev);
7754 dev_hold(wdev->netdev);
7757 rdev->scan_req = NULL;
7765 static int nl80211_abort_scan(struct sk_buff *skb, struct genl_info *info)
7767 struct cfg80211_registered_device *rdev = info->user_ptr[0];
7768 struct wireless_dev *wdev = info->user_ptr[1];
7770 if (!rdev->ops->abort_scan)
7776 if (!rdev->scan_req)
7779 rdev_abort_scan(rdev, wdev);
7784 nl80211_parse_sched_scan_plans(struct wiphy *wiphy, int n_plans,
7785 struct cfg80211_sched_scan_request *request,
7786 struct nlattr **attrs)
7788 int tmp, err, i = 0;
7789 struct nlattr *attr;
7791 if (!attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7795 * If scan plans are not specified,
7796 * %NL80211_ATTR_SCHED_SCAN_INTERVAL will be specified. In this
7797 * case one scan plan will be set with the specified scan
7798 * interval and infinite number of iterations.
7800 interval = nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL]);
7804 request->scan_plans[0].interval =
7805 DIV_ROUND_UP(interval, MSEC_PER_SEC);
7806 if (!request->scan_plans[0].interval)
7809 if (request->scan_plans[0].interval >
7810 wiphy->max_sched_scan_plan_interval)
7811 request->scan_plans[0].interval =
7812 wiphy->max_sched_scan_plan_interval;
7817 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp) {
7818 struct nlattr *plan[NL80211_SCHED_SCAN_PLAN_MAX + 1];
7820 if (WARN_ON(i >= n_plans))
7823 err = nla_parse_nested_deprecated(plan,
7824 NL80211_SCHED_SCAN_PLAN_MAX,
7825 attr, nl80211_plan_policy,
7830 if (!plan[NL80211_SCHED_SCAN_PLAN_INTERVAL])
7833 request->scan_plans[i].interval =
7834 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_INTERVAL]);
7835 if (!request->scan_plans[i].interval ||
7836 request->scan_plans[i].interval >
7837 wiphy->max_sched_scan_plan_interval)
7840 if (plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]) {
7841 request->scan_plans[i].iterations =
7842 nla_get_u32(plan[NL80211_SCHED_SCAN_PLAN_ITERATIONS]);
7843 if (!request->scan_plans[i].iterations ||
7844 (request->scan_plans[i].iterations >
7845 wiphy->max_sched_scan_plan_iterations))
7847 } else if (i < n_plans - 1) {
7849 * All scan plans but the last one must specify
7850 * a finite number of iterations
7859 * The last scan plan must not specify the number of
7860 * iterations, it is supposed to run infinitely
7862 if (request->scan_plans[n_plans - 1].iterations)
7869 nl80211_parse_sched_scan_per_band_rssi(struct wiphy *wiphy,
7870 struct cfg80211_match_set *match_sets,
7871 struct nlattr *tb_band_rssi,
7874 struct nlattr *attr;
7875 int i, tmp, ret = 0;
7877 if (!wiphy_ext_feature_isset(wiphy,
7878 NL80211_EXT_FEATURE_SCHED_SCAN_BAND_SPECIFIC_RSSI_THOLD)) {
7882 for (i = 0; i < NUM_NL80211_BANDS; i++)
7883 match_sets->per_band_rssi_thold[i] =
7884 NL80211_SCAN_RSSI_THOLD_OFF;
7888 for (i = 0; i < NUM_NL80211_BANDS; i++)
7889 match_sets->per_band_rssi_thold[i] = rssi_thold;
7891 nla_for_each_nested(attr, tb_band_rssi, tmp) {
7892 enum nl80211_band band = nla_type(attr);
7894 if (band < 0 || band >= NUM_NL80211_BANDS)
7897 match_sets->per_band_rssi_thold[band] = nla_get_s32(attr);
7903 static struct cfg80211_sched_scan_request *
7904 nl80211_parse_sched_scan(struct wiphy *wiphy, struct wireless_dev *wdev,
7905 struct nlattr **attrs, int max_match_sets)
7907 struct cfg80211_sched_scan_request *request;
7908 struct nlattr *attr;
7909 int err, tmp, n_ssids = 0, n_match_sets = 0, n_channels, i, n_plans = 0;
7910 enum nl80211_band band;
7912 struct nlattr *tb[NL80211_SCHED_SCAN_MATCH_ATTR_MAX + 1];
7913 s32 default_match_rssi = NL80211_SCAN_RSSI_THOLD_OFF;
7915 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
7916 n_channels = validate_scan_freqs(
7917 attrs[NL80211_ATTR_SCAN_FREQUENCIES]);
7919 return ERR_PTR(-EINVAL);
7921 n_channels = ieee80211_get_num_supported_channels(wiphy);
7924 if (attrs[NL80211_ATTR_SCAN_SSIDS])
7925 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
7929 if (n_ssids > wiphy->max_sched_scan_ssids)
7930 return ERR_PTR(-EINVAL);
7933 * First, count the number of 'real' matchsets. Due to an issue with
7934 * the old implementation, matchsets containing only the RSSI attribute
7935 * (NL80211_SCHED_SCAN_MATCH_ATTR_RSSI) are considered as the 'default'
7936 * RSSI for all matchsets, rather than their own matchset for reporting
7937 * all APs with a strong RSSI. This is needed to be compatible with
7938 * older userspace that treated a matchset with only the RSSI as the
7939 * global RSSI for all other matchsets - if there are other matchsets.
7941 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
7942 nla_for_each_nested(attr,
7943 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
7945 struct nlattr *rssi;
7947 err = nla_parse_nested_deprecated(tb,
7948 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
7950 nl80211_match_policy,
7953 return ERR_PTR(err);
7955 /* SSID and BSSID are mutually exclusive */
7956 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] &&
7957 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID])
7958 return ERR_PTR(-EINVAL);
7960 /* add other standalone attributes here */
7961 if (tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID] ||
7962 tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID]) {
7966 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
7968 default_match_rssi = nla_get_s32(rssi);
7972 /* However, if there's no other matchset, add the RSSI one */
7973 if (!n_match_sets && default_match_rssi != NL80211_SCAN_RSSI_THOLD_OFF)
7976 if (n_match_sets > max_match_sets)
7977 return ERR_PTR(-EINVAL);
7979 if (attrs[NL80211_ATTR_IE])
7980 ie_len = nla_len(attrs[NL80211_ATTR_IE]);
7984 if (ie_len > wiphy->max_sched_scan_ie_len)
7985 return ERR_PTR(-EINVAL);
7987 if (attrs[NL80211_ATTR_SCHED_SCAN_PLANS]) {
7989 * NL80211_ATTR_SCHED_SCAN_INTERVAL must not be specified since
7990 * each scan plan already specifies its own interval
7992 if (attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
7993 return ERR_PTR(-EINVAL);
7995 nla_for_each_nested(attr,
7996 attrs[NL80211_ATTR_SCHED_SCAN_PLANS], tmp)
8000 * The scan interval attribute is kept for backward
8001 * compatibility. If no scan plans are specified and sched scan
8002 * interval is specified, one scan plan will be set with this
8003 * scan interval and infinite number of iterations.
8005 if (!attrs[NL80211_ATTR_SCHED_SCAN_INTERVAL])
8006 return ERR_PTR(-EINVAL);
8011 if (!n_plans || n_plans > wiphy->max_sched_scan_plans)
8012 return ERR_PTR(-EINVAL);
8014 if (!wiphy_ext_feature_isset(
8015 wiphy, NL80211_EXT_FEATURE_SCHED_SCAN_RELATIVE_RSSI) &&
8016 (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI] ||
8017 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]))
8018 return ERR_PTR(-EINVAL);
8020 request = kzalloc(sizeof(*request)
8021 + sizeof(*request->ssids) * n_ssids
8022 + sizeof(*request->match_sets) * n_match_sets
8023 + sizeof(*request->scan_plans) * n_plans
8024 + sizeof(*request->channels) * n_channels
8025 + ie_len, GFP_KERNEL);
8027 return ERR_PTR(-ENOMEM);
8030 request->ssids = (void *)&request->channels[n_channels];
8031 request->n_ssids = n_ssids;
8034 request->ie = (void *)(request->ssids + n_ssids);
8036 request->ie = (void *)(request->channels + n_channels);
8041 request->match_sets = (void *)(request->ie + ie_len);
8043 request->match_sets =
8044 (void *)(request->ssids + n_ssids);
8046 request->match_sets =
8047 (void *)(request->channels + n_channels);
8049 request->n_match_sets = n_match_sets;
8052 request->scan_plans = (void *)(request->match_sets +
8054 else if (request->ie)
8055 request->scan_plans = (void *)(request->ie + ie_len);
8057 request->scan_plans = (void *)(request->ssids + n_ssids);
8059 request->scan_plans = (void *)(request->channels + n_channels);
8061 request->n_scan_plans = n_plans;
8064 if (attrs[NL80211_ATTR_SCAN_FREQUENCIES]) {
8065 /* user specified, bail out if channel not found */
8066 nla_for_each_nested(attr,
8067 attrs[NL80211_ATTR_SCAN_FREQUENCIES],
8069 struct ieee80211_channel *chan;
8071 chan = ieee80211_get_channel(wiphy, nla_get_u32(attr));
8078 /* ignore disabled channels */
8079 if (chan->flags & IEEE80211_CHAN_DISABLED)
8082 request->channels[i] = chan;
8087 for (band = 0; band < NUM_NL80211_BANDS; band++) {
8090 if (!wiphy->bands[band])
8092 for (j = 0; j < wiphy->bands[band]->n_channels; j++) {
8093 struct ieee80211_channel *chan;
8095 chan = &wiphy->bands[band]->channels[j];
8097 if (chan->flags & IEEE80211_CHAN_DISABLED)
8100 request->channels[i] = chan;
8111 request->n_channels = i;
8115 nla_for_each_nested(attr, attrs[NL80211_ATTR_SCAN_SSIDS],
8117 if (nla_len(attr) > IEEE80211_MAX_SSID_LEN) {
8121 request->ssids[i].ssid_len = nla_len(attr);
8122 memcpy(request->ssids[i].ssid, nla_data(attr),
8129 if (attrs[NL80211_ATTR_SCHED_SCAN_MATCH]) {
8130 nla_for_each_nested(attr,
8131 attrs[NL80211_ATTR_SCHED_SCAN_MATCH],
8133 struct nlattr *ssid, *bssid, *rssi;
8135 err = nla_parse_nested_deprecated(tb,
8136 NL80211_SCHED_SCAN_MATCH_ATTR_MAX,
8138 nl80211_match_policy,
8142 ssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_SSID];
8143 bssid = tb[NL80211_SCHED_SCAN_MATCH_ATTR_BSSID];
8145 if (!ssid && !bssid) {
8150 if (WARN_ON(i >= n_match_sets)) {
8151 /* this indicates a programming error,
8152 * the loop above should have verified
8160 if (nla_len(ssid) > IEEE80211_MAX_SSID_LEN) {
8164 memcpy(request->match_sets[i].ssid.ssid,
8165 nla_data(ssid), nla_len(ssid));
8166 request->match_sets[i].ssid.ssid_len =
8170 if (nla_len(bssid) != ETH_ALEN) {
8174 memcpy(request->match_sets[i].bssid,
8175 nla_data(bssid), ETH_ALEN);
8178 /* special attribute - old implementation w/a */
8179 request->match_sets[i].rssi_thold = default_match_rssi;
8180 rssi = tb[NL80211_SCHED_SCAN_MATCH_ATTR_RSSI];
8182 request->match_sets[i].rssi_thold =
8185 /* Parse per band RSSI attribute */
8186 err = nl80211_parse_sched_scan_per_band_rssi(wiphy,
8187 &request->match_sets[i],
8188 tb[NL80211_SCHED_SCAN_MATCH_PER_BAND_RSSI],
8189 request->match_sets[i].rssi_thold);
8196 /* there was no other matchset, so the RSSI one is alone */
8197 if (i == 0 && n_match_sets)
8198 request->match_sets[0].rssi_thold = default_match_rssi;
8200 request->min_rssi_thold = INT_MAX;
8201 for (i = 0; i < n_match_sets; i++)
8202 request->min_rssi_thold =
8203 min(request->match_sets[i].rssi_thold,
8204 request->min_rssi_thold);
8206 request->min_rssi_thold = NL80211_SCAN_RSSI_THOLD_OFF;
8210 request->ie_len = ie_len;
8211 memcpy((void *)request->ie,
8212 nla_data(attrs[NL80211_ATTR_IE]),
8216 err = nl80211_check_scan_flags(wiphy, wdev, request, attrs, true);
8220 if (attrs[NL80211_ATTR_SCHED_SCAN_DELAY])
8222 nla_get_u32(attrs[NL80211_ATTR_SCHED_SCAN_DELAY]);
8224 if (attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]) {
8225 request->relative_rssi = nla_get_s8(
8226 attrs[NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI]);
8227 request->relative_rssi_set = true;
8230 if (request->relative_rssi_set &&
8231 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]) {
8232 struct nl80211_bss_select_rssi_adjust *rssi_adjust;
8234 rssi_adjust = nla_data(
8235 attrs[NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST]);
8236 request->rssi_adjust.band = rssi_adjust->band;
8237 request->rssi_adjust.delta = rssi_adjust->delta;
8238 if (!is_band_valid(wiphy, request->rssi_adjust.band)) {
8244 err = nl80211_parse_sched_scan_plans(wiphy, n_plans, request, attrs);
8248 request->scan_start = jiffies;
8254 return ERR_PTR(err);
8257 static int nl80211_start_sched_scan(struct sk_buff *skb,
8258 struct genl_info *info)
8260 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8261 struct net_device *dev = info->user_ptr[1];
8262 struct wireless_dev *wdev = dev->ieee80211_ptr;
8263 struct cfg80211_sched_scan_request *sched_scan_req;
8267 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_start)
8270 want_multi = info->attrs[NL80211_ATTR_SCHED_SCAN_MULTI];
8271 err = cfg80211_sched_scan_req_possible(rdev, want_multi);
8275 sched_scan_req = nl80211_parse_sched_scan(&rdev->wiphy, wdev,
8277 rdev->wiphy.max_match_sets);
8279 err = PTR_ERR_OR_ZERO(sched_scan_req);
8283 /* leave request id zero for legacy request
8284 * or if driver does not support multi-scheduled scan
8286 if (want_multi && rdev->wiphy.max_sched_scan_reqs > 1)
8287 sched_scan_req->reqid = cfg80211_assign_cookie(rdev);
8289 err = rdev_sched_scan_start(rdev, dev, sched_scan_req);
8293 sched_scan_req->dev = dev;
8294 sched_scan_req->wiphy = &rdev->wiphy;
8296 if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
8297 sched_scan_req->owner_nlportid = info->snd_portid;
8299 cfg80211_add_sched_scan_req(rdev, sched_scan_req);
8301 nl80211_send_sched_scan(sched_scan_req, NL80211_CMD_START_SCHED_SCAN);
8305 kfree(sched_scan_req);
8310 static int nl80211_stop_sched_scan(struct sk_buff *skb,
8311 struct genl_info *info)
8313 struct cfg80211_sched_scan_request *req;
8314 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8317 if (!rdev->wiphy.max_sched_scan_reqs || !rdev->ops->sched_scan_stop)
8320 if (info->attrs[NL80211_ATTR_COOKIE]) {
8321 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
8322 return __cfg80211_stop_sched_scan(rdev, cookie, false);
8325 req = list_first_or_null_rcu(&rdev->sched_scan_req_list,
8326 struct cfg80211_sched_scan_request,
8328 if (!req || req->reqid ||
8329 (req->owner_nlportid &&
8330 req->owner_nlportid != info->snd_portid))
8333 return cfg80211_stop_sched_scan_req(rdev, req, false);
8336 static int nl80211_start_radar_detection(struct sk_buff *skb,
8337 struct genl_info *info)
8339 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8340 struct net_device *dev = info->user_ptr[1];
8341 struct wireless_dev *wdev = dev->ieee80211_ptr;
8342 struct wiphy *wiphy = wdev->wiphy;
8343 struct cfg80211_chan_def chandef;
8344 enum nl80211_dfs_regions dfs_region;
8345 unsigned int cac_time_ms;
8348 dfs_region = reg_get_dfs_region(wiphy);
8349 if (dfs_region == NL80211_DFS_UNSET)
8352 err = nl80211_parse_chandef(rdev, info, &chandef);
8356 if (netif_carrier_ok(dev))
8359 if (wdev->cac_started)
8362 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8369 if (!cfg80211_chandef_dfs_usable(wiphy, &chandef))
8372 /* CAC start is offloaded to HW and can't be started manually */
8373 if (wiphy_ext_feature_isset(wiphy, NL80211_EXT_FEATURE_DFS_OFFLOAD))
8376 if (!rdev->ops->start_radar_detection)
8379 cac_time_ms = cfg80211_chandef_dfs_cac_time(&rdev->wiphy, &chandef);
8380 if (WARN_ON(!cac_time_ms))
8381 cac_time_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
8383 err = rdev_start_radar_detection(rdev, dev, &chandef, cac_time_ms);
8385 wdev->chandef = chandef;
8386 wdev->cac_started = true;
8387 wdev->cac_start_time = jiffies;
8388 wdev->cac_time_ms = cac_time_ms;
8393 static int nl80211_notify_radar_detection(struct sk_buff *skb,
8394 struct genl_info *info)
8396 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8397 struct net_device *dev = info->user_ptr[1];
8398 struct wireless_dev *wdev = dev->ieee80211_ptr;
8399 struct wiphy *wiphy = wdev->wiphy;
8400 struct cfg80211_chan_def chandef;
8401 enum nl80211_dfs_regions dfs_region;
8404 dfs_region = reg_get_dfs_region(wiphy);
8405 if (dfs_region == NL80211_DFS_UNSET) {
8406 GENL_SET_ERR_MSG(info,
8407 "DFS Region is not set. Unexpected Radar indication");
8411 err = nl80211_parse_chandef(rdev, info, &chandef);
8413 GENL_SET_ERR_MSG(info, "Unable to extract chandef info");
8417 err = cfg80211_chandef_dfs_required(wiphy, &chandef, wdev->iftype);
8419 GENL_SET_ERR_MSG(info, "chandef is invalid");
8424 GENL_SET_ERR_MSG(info,
8425 "Unexpected Radar indication for chandef/iftype");
8429 /* Do not process this notification if radar is already detected
8430 * by kernel on this channel, and return success.
8432 if (chandef.chan->dfs_state == NL80211_DFS_UNAVAILABLE)
8435 cfg80211_set_dfs_state(wiphy, &chandef, NL80211_DFS_UNAVAILABLE);
8437 cfg80211_sched_dfs_chan_update(rdev);
8439 rdev->radar_chandef = chandef;
8441 /* Propagate this notification to other radios as well */
8442 queue_work(cfg80211_wq, &rdev->propagate_radar_detect_wk);
8447 static int nl80211_channel_switch(struct sk_buff *skb, struct genl_info *info)
8449 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8450 struct net_device *dev = info->user_ptr[1];
8451 struct wireless_dev *wdev = dev->ieee80211_ptr;
8452 struct cfg80211_csa_settings params;
8453 /* csa_attrs is defined static to avoid waste of stack size - this
8454 * function is called under RTNL lock, so this should not be a problem.
8456 static struct nlattr *csa_attrs[NL80211_ATTR_MAX+1];
8458 bool need_new_beacon = false;
8459 bool need_handle_dfs_flag = true;
8463 if (!rdev->ops->channel_switch ||
8464 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_CHANNEL_SWITCH))
8467 switch (dev->ieee80211_ptr->iftype) {
8468 case NL80211_IFTYPE_AP:
8469 case NL80211_IFTYPE_P2P_GO:
8470 need_new_beacon = true;
8471 /* For all modes except AP the handle_dfs flag needs to be
8472 * supplied to tell the kernel that userspace will handle radar
8473 * events when they happen. Otherwise a switch to a channel
8474 * requiring DFS will be rejected.
8476 need_handle_dfs_flag = false;
8478 /* useless if AP is not running */
8479 if (!wdev->beacon_interval)
8482 case NL80211_IFTYPE_ADHOC:
8483 if (!wdev->ssid_len)
8486 case NL80211_IFTYPE_MESH_POINT:
8487 if (!wdev->mesh_id_len)
8494 memset(¶ms, 0, sizeof(params));
8495 params.beacon_csa.ftm_responder = -1;
8497 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
8498 !info->attrs[NL80211_ATTR_CH_SWITCH_COUNT])
8501 /* only important for AP, IBSS and mesh create IEs internally */
8502 if (need_new_beacon && !info->attrs[NL80211_ATTR_CSA_IES])
8505 /* Even though the attribute is u32, the specification says
8506 * u8, so let's make sure we don't overflow.
8508 cs_count = nla_get_u32(info->attrs[NL80211_ATTR_CH_SWITCH_COUNT]);
8512 params.count = cs_count;
8514 if (!need_new_beacon)
8517 err = nl80211_parse_beacon(rdev, info->attrs, ¶ms.beacon_after);
8521 err = nla_parse_nested_deprecated(csa_attrs, NL80211_ATTR_MAX,
8522 info->attrs[NL80211_ATTR_CSA_IES],
8523 nl80211_policy, info->extack);
8527 err = nl80211_parse_beacon(rdev, csa_attrs, ¶ms.beacon_csa);
8531 if (!csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON])
8534 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8535 if (!len || (len % sizeof(u16)))
8538 params.n_counter_offsets_beacon = len / sizeof(u16);
8539 if (rdev->wiphy.max_num_csa_counters &&
8540 (params.n_counter_offsets_beacon >
8541 rdev->wiphy.max_num_csa_counters))
8544 params.counter_offsets_beacon =
8545 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_BEACON]);
8547 /* sanity checks - counters should fit and be the same */
8548 for (i = 0; i < params.n_counter_offsets_beacon; i++) {
8549 u16 offset = params.counter_offsets_beacon[i];
8551 if (offset >= params.beacon_csa.tail_len)
8554 if (params.beacon_csa.tail[offset] != params.count)
8558 if (csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]) {
8559 len = nla_len(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8560 if (!len || (len % sizeof(u16)))
8563 params.n_counter_offsets_presp = len / sizeof(u16);
8564 if (rdev->wiphy.max_num_csa_counters &&
8565 (params.n_counter_offsets_presp >
8566 rdev->wiphy.max_num_csa_counters))
8569 params.counter_offsets_presp =
8570 nla_data(csa_attrs[NL80211_ATTR_CSA_C_OFF_PRESP]);
8572 /* sanity checks - counters should fit and be the same */
8573 for (i = 0; i < params.n_counter_offsets_presp; i++) {
8574 u16 offset = params.counter_offsets_presp[i];
8576 if (offset >= params.beacon_csa.probe_resp_len)
8579 if (params.beacon_csa.probe_resp[offset] !=
8586 err = nl80211_parse_chandef(rdev, info, ¶ms.chandef);
8590 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, ¶ms.chandef,
8594 err = cfg80211_chandef_dfs_required(wdev->wiphy,
8601 params.radar_required = true;
8602 if (need_handle_dfs_flag &&
8603 !nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS])) {
8608 if (info->attrs[NL80211_ATTR_CH_SWITCH_BLOCK_TX])
8609 params.block_tx = true;
8612 err = rdev_channel_switch(rdev, dev, ¶ms);
8618 static int nl80211_send_bss(struct sk_buff *msg, struct netlink_callback *cb,
8620 struct cfg80211_registered_device *rdev,
8621 struct wireless_dev *wdev,
8622 struct cfg80211_internal_bss *intbss)
8624 struct cfg80211_bss *res = &intbss->pub;
8625 const struct cfg80211_bss_ies *ies;
8629 ASSERT_WDEV_LOCK(wdev);
8631 hdr = nl80211hdr_put(msg, NETLINK_CB(cb->skb).portid, seq, flags,
8632 NL80211_CMD_NEW_SCAN_RESULTS);
8636 genl_dump_check_consistent(cb, hdr);
8638 if (nla_put_u32(msg, NL80211_ATTR_GENERATION, rdev->bss_generation))
8639 goto nla_put_failure;
8641 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex))
8642 goto nla_put_failure;
8643 if (nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
8645 goto nla_put_failure;
8647 bss = nla_nest_start_noflag(msg, NL80211_ATTR_BSS);
8649 goto nla_put_failure;
8650 if ((!is_zero_ether_addr(res->bssid) &&
8651 nla_put(msg, NL80211_BSS_BSSID, ETH_ALEN, res->bssid)))
8652 goto nla_put_failure;
8655 /* indicate whether we have probe response data or not */
8656 if (rcu_access_pointer(res->proberesp_ies) &&
8657 nla_put_flag(msg, NL80211_BSS_PRESP_DATA))
8658 goto fail_unlock_rcu;
8660 /* this pointer prefers to be pointed to probe response data
8661 * but is always valid
8663 ies = rcu_dereference(res->ies);
8665 if (nla_put_u64_64bit(msg, NL80211_BSS_TSF, ies->tsf,
8667 goto fail_unlock_rcu;
8668 if (ies->len && nla_put(msg, NL80211_BSS_INFORMATION_ELEMENTS,
8669 ies->len, ies->data))
8670 goto fail_unlock_rcu;
8673 /* and this pointer is always (unless driver didn't know) beacon data */
8674 ies = rcu_dereference(res->beacon_ies);
8675 if (ies && ies->from_beacon) {
8676 if (nla_put_u64_64bit(msg, NL80211_BSS_BEACON_TSF, ies->tsf,
8678 goto fail_unlock_rcu;
8679 if (ies->len && nla_put(msg, NL80211_BSS_BEACON_IES,
8680 ies->len, ies->data))
8681 goto fail_unlock_rcu;
8685 if (res->beacon_interval &&
8686 nla_put_u16(msg, NL80211_BSS_BEACON_INTERVAL, res->beacon_interval))
8687 goto nla_put_failure;
8688 if (nla_put_u16(msg, NL80211_BSS_CAPABILITY, res->capability) ||
8689 nla_put_u32(msg, NL80211_BSS_FREQUENCY, res->channel->center_freq) ||
8690 nla_put_u32(msg, NL80211_BSS_CHAN_WIDTH, res->scan_width) ||
8691 nla_put_u32(msg, NL80211_BSS_SEEN_MS_AGO,
8692 jiffies_to_msecs(jiffies - intbss->ts)))
8693 goto nla_put_failure;
8695 if (intbss->parent_tsf &&
8696 (nla_put_u64_64bit(msg, NL80211_BSS_PARENT_TSF,
8697 intbss->parent_tsf, NL80211_BSS_PAD) ||
8698 nla_put(msg, NL80211_BSS_PARENT_BSSID, ETH_ALEN,
8699 intbss->parent_bssid)))
8700 goto nla_put_failure;
8702 if (intbss->ts_boottime &&
8703 nla_put_u64_64bit(msg, NL80211_BSS_LAST_SEEN_BOOTTIME,
8704 intbss->ts_boottime, NL80211_BSS_PAD))
8705 goto nla_put_failure;
8707 if (!nl80211_put_signal(msg, intbss->pub.chains,
8708 intbss->pub.chain_signal,
8709 NL80211_BSS_CHAIN_SIGNAL))
8710 goto nla_put_failure;
8712 switch (rdev->wiphy.signal_type) {
8713 case CFG80211_SIGNAL_TYPE_MBM:
8714 if (nla_put_u32(msg, NL80211_BSS_SIGNAL_MBM, res->signal))
8715 goto nla_put_failure;
8717 case CFG80211_SIGNAL_TYPE_UNSPEC:
8718 if (nla_put_u8(msg, NL80211_BSS_SIGNAL_UNSPEC, res->signal))
8719 goto nla_put_failure;
8725 switch (wdev->iftype) {
8726 case NL80211_IFTYPE_P2P_CLIENT:
8727 case NL80211_IFTYPE_STATION:
8728 if (intbss == wdev->current_bss &&
8729 nla_put_u32(msg, NL80211_BSS_STATUS,
8730 NL80211_BSS_STATUS_ASSOCIATED))
8731 goto nla_put_failure;
8733 case NL80211_IFTYPE_ADHOC:
8734 if (intbss == wdev->current_bss &&
8735 nla_put_u32(msg, NL80211_BSS_STATUS,
8736 NL80211_BSS_STATUS_IBSS_JOINED))
8737 goto nla_put_failure;
8743 nla_nest_end(msg, bss);
8745 genlmsg_end(msg, hdr);
8751 genlmsg_cancel(msg, hdr);
8755 static int nl80211_dump_scan(struct sk_buff *skb, struct netlink_callback *cb)
8757 struct cfg80211_registered_device *rdev;
8758 struct cfg80211_internal_bss *scan;
8759 struct wireless_dev *wdev;
8760 int start = cb->args[2], idx = 0;
8764 err = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8771 spin_lock_bh(&rdev->bss_lock);
8774 * dump_scan will be called multiple times to break up the scan results
8775 * into multiple messages. It is unlikely that any more bss-es will be
8776 * expired after the first call, so only call only call this on the
8777 * first dump_scan invocation.
8780 cfg80211_bss_expire(rdev);
8782 cb->seq = rdev->bss_generation;
8784 list_for_each_entry(scan, &rdev->bss_list, list) {
8787 if (nl80211_send_bss(skb, cb,
8788 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8789 rdev, wdev, scan) < 0) {
8795 spin_unlock_bh(&rdev->bss_lock);
8804 static int nl80211_send_survey(struct sk_buff *msg, u32 portid, u32 seq,
8805 int flags, struct net_device *dev,
8806 bool allow_radio_stats,
8807 struct survey_info *survey)
8810 struct nlattr *infoattr;
8812 /* skip radio stats if userspace didn't request them */
8813 if (!survey->channel && !allow_radio_stats)
8816 hdr = nl80211hdr_put(msg, portid, seq, flags,
8817 NL80211_CMD_NEW_SURVEY_RESULTS);
8821 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
8822 goto nla_put_failure;
8824 infoattr = nla_nest_start_noflag(msg, NL80211_ATTR_SURVEY_INFO);
8826 goto nla_put_failure;
8828 if (survey->channel &&
8829 nla_put_u32(msg, NL80211_SURVEY_INFO_FREQUENCY,
8830 survey->channel->center_freq))
8831 goto nla_put_failure;
8833 if ((survey->filled & SURVEY_INFO_NOISE_DBM) &&
8834 nla_put_u8(msg, NL80211_SURVEY_INFO_NOISE, survey->noise))
8835 goto nla_put_failure;
8836 if ((survey->filled & SURVEY_INFO_IN_USE) &&
8837 nla_put_flag(msg, NL80211_SURVEY_INFO_IN_USE))
8838 goto nla_put_failure;
8839 if ((survey->filled & SURVEY_INFO_TIME) &&
8840 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME,
8841 survey->time, NL80211_SURVEY_INFO_PAD))
8842 goto nla_put_failure;
8843 if ((survey->filled & SURVEY_INFO_TIME_BUSY) &&
8844 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_BUSY,
8845 survey->time_busy, NL80211_SURVEY_INFO_PAD))
8846 goto nla_put_failure;
8847 if ((survey->filled & SURVEY_INFO_TIME_EXT_BUSY) &&
8848 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_EXT_BUSY,
8849 survey->time_ext_busy, NL80211_SURVEY_INFO_PAD))
8850 goto nla_put_failure;
8851 if ((survey->filled & SURVEY_INFO_TIME_RX) &&
8852 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_RX,
8853 survey->time_rx, NL80211_SURVEY_INFO_PAD))
8854 goto nla_put_failure;
8855 if ((survey->filled & SURVEY_INFO_TIME_TX) &&
8856 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_TX,
8857 survey->time_tx, NL80211_SURVEY_INFO_PAD))
8858 goto nla_put_failure;
8859 if ((survey->filled & SURVEY_INFO_TIME_SCAN) &&
8860 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_SCAN,
8861 survey->time_scan, NL80211_SURVEY_INFO_PAD))
8862 goto nla_put_failure;
8863 if ((survey->filled & SURVEY_INFO_TIME_BSS_RX) &&
8864 nla_put_u64_64bit(msg, NL80211_SURVEY_INFO_TIME_BSS_RX,
8865 survey->time_bss_rx, NL80211_SURVEY_INFO_PAD))
8866 goto nla_put_failure;
8868 nla_nest_end(msg, infoattr);
8870 genlmsg_end(msg, hdr);
8874 genlmsg_cancel(msg, hdr);
8878 static int nl80211_dump_survey(struct sk_buff *skb, struct netlink_callback *cb)
8880 struct nlattr **attrbuf;
8881 struct survey_info survey;
8882 struct cfg80211_registered_device *rdev;
8883 struct wireless_dev *wdev;
8884 int survey_idx = cb->args[2];
8888 attrbuf = kcalloc(NUM_NL80211_ATTR, sizeof(*attrbuf), GFP_KERNEL);
8893 res = nl80211_prepare_wdev_dump(cb, &rdev, &wdev);
8897 /* prepare_wdev_dump parsed the attributes */
8898 radio_stats = attrbuf[NL80211_ATTR_SURVEY_RADIO_STATS];
8900 if (!wdev->netdev) {
8905 if (!rdev->ops->dump_survey) {
8911 res = rdev_dump_survey(rdev, wdev->netdev, survey_idx, &survey);
8917 /* don't send disabled channels, but do send non-channel data */
8918 if (survey.channel &&
8919 survey.channel->flags & IEEE80211_CHAN_DISABLED) {
8924 if (nl80211_send_survey(skb,
8925 NETLINK_CB(cb->skb).portid,
8926 cb->nlh->nlmsg_seq, NLM_F_MULTI,
8927 wdev->netdev, radio_stats, &survey) < 0)
8933 cb->args[2] = survey_idx;
8941 static bool nl80211_valid_wpa_versions(u32 wpa_versions)
8943 return !(wpa_versions & ~(NL80211_WPA_VERSION_1 |
8944 NL80211_WPA_VERSION_2 |
8945 NL80211_WPA_VERSION_3));
8948 static int nl80211_authenticate(struct sk_buff *skb, struct genl_info *info)
8950 struct cfg80211_registered_device *rdev = info->user_ptr[0];
8951 struct net_device *dev = info->user_ptr[1];
8952 struct ieee80211_channel *chan;
8953 const u8 *bssid, *ssid, *ie = NULL, *auth_data = NULL;
8954 int err, ssid_len, ie_len = 0, auth_data_len = 0;
8955 enum nl80211_auth_type auth_type;
8956 struct key_parse key;
8957 bool local_state_change;
8959 if (!info->attrs[NL80211_ATTR_MAC])
8962 if (!info->attrs[NL80211_ATTR_AUTH_TYPE])
8965 if (!info->attrs[NL80211_ATTR_SSID])
8968 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
8971 err = nl80211_parse_key(info, &key);
8976 if (key.type != -1 && key.type != NL80211_KEYTYPE_GROUP)
8978 if (!key.p.key || !key.p.key_len)
8980 if ((key.p.cipher != WLAN_CIPHER_SUITE_WEP40 ||
8981 key.p.key_len != WLAN_KEY_LEN_WEP40) &&
8982 (key.p.cipher != WLAN_CIPHER_SUITE_WEP104 ||
8983 key.p.key_len != WLAN_KEY_LEN_WEP104))
8996 for (i = 0; i < rdev->wiphy.n_cipher_suites; i++) {
8997 if (key.p.cipher == rdev->wiphy.cipher_suites[i]) {
9006 if (!rdev->ops->auth)
9009 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9010 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9013 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9014 chan = nl80211_get_valid_chan(&rdev->wiphy,
9015 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9019 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9020 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9022 if (info->attrs[NL80211_ATTR_IE]) {
9023 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9024 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9027 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9028 if (!nl80211_valid_auth_type(rdev, auth_type, NL80211_CMD_AUTHENTICATE))
9031 if ((auth_type == NL80211_AUTHTYPE_SAE ||
9032 auth_type == NL80211_AUTHTYPE_FILS_SK ||
9033 auth_type == NL80211_AUTHTYPE_FILS_SK_PFS ||
9034 auth_type == NL80211_AUTHTYPE_FILS_PK) &&
9035 !info->attrs[NL80211_ATTR_AUTH_DATA])
9038 if (info->attrs[NL80211_ATTR_AUTH_DATA]) {
9039 if (auth_type != NL80211_AUTHTYPE_SAE &&
9040 auth_type != NL80211_AUTHTYPE_FILS_SK &&
9041 auth_type != NL80211_AUTHTYPE_FILS_SK_PFS &&
9042 auth_type != NL80211_AUTHTYPE_FILS_PK)
9044 auth_data = nla_data(info->attrs[NL80211_ATTR_AUTH_DATA]);
9045 auth_data_len = nla_len(info->attrs[NL80211_ATTR_AUTH_DATA]);
9046 /* need to include at least Auth Transaction and Status Code */
9047 if (auth_data_len < 4)
9051 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9054 * Since we no longer track auth state, ignore
9055 * requests to only change local state.
9057 if (local_state_change)
9060 wdev_lock(dev->ieee80211_ptr);
9061 err = cfg80211_mlme_auth(rdev, dev, chan, auth_type, bssid,
9062 ssid, ssid_len, ie, ie_len,
9063 key.p.key, key.p.key_len, key.idx,
9064 auth_data, auth_data_len);
9065 wdev_unlock(dev->ieee80211_ptr);
9069 static int validate_pae_over_nl80211(struct cfg80211_registered_device *rdev,
9070 struct genl_info *info)
9072 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9073 GENL_SET_ERR_MSG(info, "SOCKET_OWNER not set");
9077 if (!rdev->ops->tx_control_port ||
9078 !wiphy_ext_feature_isset(&rdev->wiphy,
9079 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
9085 static int nl80211_crypto_settings(struct cfg80211_registered_device *rdev,
9086 struct genl_info *info,
9087 struct cfg80211_crypto_settings *settings,
9090 memset(settings, 0, sizeof(*settings));
9092 settings->control_port = info->attrs[NL80211_ATTR_CONTROL_PORT];
9094 if (info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
9097 proto = nla_get_u16(
9098 info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
9099 settings->control_port_ethertype = cpu_to_be16(proto);
9100 if (!(rdev->wiphy.flags & WIPHY_FLAG_CONTROL_PORT_PROTOCOL) &&
9103 if (info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT])
9104 settings->control_port_no_encrypt = true;
9106 settings->control_port_ethertype = cpu_to_be16(ETH_P_PAE);
9108 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
9109 int r = validate_pae_over_nl80211(rdev, info);
9114 settings->control_port_over_nl80211 = true;
9117 if (info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]) {
9121 data = nla_data(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
9122 len = nla_len(info->attrs[NL80211_ATTR_CIPHER_SUITES_PAIRWISE]);
9123 settings->n_ciphers_pairwise = len / sizeof(u32);
9125 if (len % sizeof(u32))
9128 if (settings->n_ciphers_pairwise > cipher_limit)
9131 memcpy(settings->ciphers_pairwise, data, len);
9133 for (i = 0; i < settings->n_ciphers_pairwise; i++)
9134 if (!cfg80211_supported_cipher_suite(
9136 settings->ciphers_pairwise[i]))
9140 if (info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]) {
9141 settings->cipher_group =
9142 nla_get_u32(info->attrs[NL80211_ATTR_CIPHER_SUITE_GROUP]);
9143 if (!cfg80211_supported_cipher_suite(&rdev->wiphy,
9144 settings->cipher_group))
9148 if (info->attrs[NL80211_ATTR_WPA_VERSIONS]) {
9149 settings->wpa_versions =
9150 nla_get_u32(info->attrs[NL80211_ATTR_WPA_VERSIONS]);
9151 if (!nl80211_valid_wpa_versions(settings->wpa_versions))
9155 if (info->attrs[NL80211_ATTR_AKM_SUITES]) {
9159 data = nla_data(info->attrs[NL80211_ATTR_AKM_SUITES]);
9160 len = nla_len(info->attrs[NL80211_ATTR_AKM_SUITES]);
9161 settings->n_akm_suites = len / sizeof(u32);
9163 if (len % sizeof(u32))
9166 if (settings->n_akm_suites > NL80211_MAX_NR_AKM_SUITES)
9169 memcpy(settings->akm_suites, data, len);
9172 if (info->attrs[NL80211_ATTR_PMK]) {
9173 if (nla_len(info->attrs[NL80211_ATTR_PMK]) != WLAN_PMK_LEN)
9175 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9176 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK))
9178 settings->psk = nla_data(info->attrs[NL80211_ATTR_PMK]);
9181 if (info->attrs[NL80211_ATTR_SAE_PASSWORD]) {
9182 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9183 NL80211_EXT_FEATURE_SAE_OFFLOAD))
9186 nla_data(info->attrs[NL80211_ATTR_SAE_PASSWORD]);
9187 settings->sae_pwd_len =
9188 nla_len(info->attrs[NL80211_ATTR_SAE_PASSWORD]);
9194 static int nl80211_associate(struct sk_buff *skb, struct genl_info *info)
9196 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9197 struct net_device *dev = info->user_ptr[1];
9198 struct ieee80211_channel *chan;
9199 struct cfg80211_assoc_request req = {};
9200 const u8 *bssid, *ssid;
9201 int err, ssid_len = 0;
9203 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9204 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9207 if (!info->attrs[NL80211_ATTR_MAC] ||
9208 !info->attrs[NL80211_ATTR_SSID] ||
9209 !info->attrs[NL80211_ATTR_WIPHY_FREQ])
9212 if (!rdev->ops->assoc)
9215 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9216 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9219 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9221 chan = nl80211_get_valid_chan(&rdev->wiphy,
9222 info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9226 ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9227 ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9229 if (info->attrs[NL80211_ATTR_IE]) {
9230 req.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9231 req.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9234 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9235 enum nl80211_mfp mfp =
9236 nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9237 if (mfp == NL80211_MFP_REQUIRED)
9239 else if (mfp != NL80211_MFP_NO)
9243 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9244 req.prev_bssid = nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9246 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
9247 req.flags |= ASSOC_REQ_DISABLE_HT;
9249 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9250 memcpy(&req.ht_capa_mask,
9251 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9252 sizeof(req.ht_capa_mask));
9254 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9255 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9257 memcpy(&req.ht_capa,
9258 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9259 sizeof(req.ht_capa));
9262 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
9263 req.flags |= ASSOC_REQ_DISABLE_VHT;
9265 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9266 memcpy(&req.vht_capa_mask,
9267 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
9268 sizeof(req.vht_capa_mask));
9270 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
9271 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
9273 memcpy(&req.vht_capa,
9274 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
9275 sizeof(req.vht_capa));
9278 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
9279 if (!((rdev->wiphy.features &
9280 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
9281 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
9282 !wiphy_ext_feature_isset(&rdev->wiphy,
9283 NL80211_EXT_FEATURE_RRM))
9285 req.flags |= ASSOC_REQ_USE_RRM;
9288 if (info->attrs[NL80211_ATTR_FILS_KEK]) {
9289 req.fils_kek = nla_data(info->attrs[NL80211_ATTR_FILS_KEK]);
9290 req.fils_kek_len = nla_len(info->attrs[NL80211_ATTR_FILS_KEK]);
9291 if (!info->attrs[NL80211_ATTR_FILS_NONCES])
9294 nla_data(info->attrs[NL80211_ATTR_FILS_NONCES]);
9297 err = nl80211_crypto_settings(rdev, info, &req.crypto, 1);
9299 wdev_lock(dev->ieee80211_ptr);
9301 err = cfg80211_mlme_assoc(rdev, dev, chan, bssid,
9302 ssid, ssid_len, &req);
9304 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
9305 dev->ieee80211_ptr->conn_owner_nlportid =
9307 memcpy(dev->ieee80211_ptr->disconnect_bssid,
9311 wdev_unlock(dev->ieee80211_ptr);
9317 static int nl80211_deauthenticate(struct sk_buff *skb, struct genl_info *info)
9319 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9320 struct net_device *dev = info->user_ptr[1];
9321 const u8 *ie = NULL, *bssid;
9322 int ie_len = 0, err;
9324 bool local_state_change;
9326 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9327 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9330 if (!info->attrs[NL80211_ATTR_MAC])
9333 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9336 if (!rdev->ops->deauth)
9339 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9340 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9343 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9345 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9346 if (reason_code == 0) {
9347 /* Reason Code 0 is reserved */
9351 if (info->attrs[NL80211_ATTR_IE]) {
9352 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9353 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9356 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9358 wdev_lock(dev->ieee80211_ptr);
9359 err = cfg80211_mlme_deauth(rdev, dev, bssid, ie, ie_len, reason_code,
9360 local_state_change);
9361 wdev_unlock(dev->ieee80211_ptr);
9365 static int nl80211_disassociate(struct sk_buff *skb, struct genl_info *info)
9367 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9368 struct net_device *dev = info->user_ptr[1];
9369 const u8 *ie = NULL, *bssid;
9370 int ie_len = 0, err;
9372 bool local_state_change;
9374 if (dev->ieee80211_ptr->conn_owner_nlportid &&
9375 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
9378 if (!info->attrs[NL80211_ATTR_MAC])
9381 if (!info->attrs[NL80211_ATTR_REASON_CODE])
9384 if (!rdev->ops->disassoc)
9387 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9388 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9391 bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9393 reason_code = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
9394 if (reason_code == 0) {
9395 /* Reason Code 0 is reserved */
9399 if (info->attrs[NL80211_ATTR_IE]) {
9400 ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9401 ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9404 local_state_change = !!info->attrs[NL80211_ATTR_LOCAL_STATE_CHANGE];
9406 wdev_lock(dev->ieee80211_ptr);
9407 err = cfg80211_mlme_disassoc(rdev, dev, bssid, ie, ie_len, reason_code,
9408 local_state_change);
9409 wdev_unlock(dev->ieee80211_ptr);
9414 nl80211_parse_mcast_rate(struct cfg80211_registered_device *rdev,
9415 int mcast_rate[NUM_NL80211_BANDS],
9418 struct wiphy *wiphy = &rdev->wiphy;
9422 for (band = 0; band < NUM_NL80211_BANDS; band++) {
9423 struct ieee80211_supported_band *sband;
9425 sband = wiphy->bands[band];
9429 for (i = 0; i < sband->n_bitrates; i++) {
9430 if (sband->bitrates[i].bitrate == rateval) {
9431 mcast_rate[band] = i + 1;
9441 static int nl80211_join_ibss(struct sk_buff *skb, struct genl_info *info)
9443 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9444 struct net_device *dev = info->user_ptr[1];
9445 struct cfg80211_ibss_params ibss;
9446 struct wiphy *wiphy;
9447 struct cfg80211_cached_keys *connkeys = NULL;
9450 memset(&ibss, 0, sizeof(ibss));
9452 if (!info->attrs[NL80211_ATTR_SSID] ||
9453 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9456 ibss.beacon_interval = 100;
9458 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL])
9459 ibss.beacon_interval =
9460 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
9462 err = cfg80211_validate_beacon_int(rdev, NL80211_IFTYPE_ADHOC,
9463 ibss.beacon_interval);
9467 if (!rdev->ops->join_ibss)
9470 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9473 wiphy = &rdev->wiphy;
9475 if (info->attrs[NL80211_ATTR_MAC]) {
9476 ibss.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9478 if (!is_valid_ether_addr(ibss.bssid))
9481 ibss.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9482 ibss.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9484 if (info->attrs[NL80211_ATTR_IE]) {
9485 ibss.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9486 ibss.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9489 err = nl80211_parse_chandef(rdev, info, &ibss.chandef);
9493 if (!cfg80211_reg_can_beacon(&rdev->wiphy, &ibss.chandef,
9494 NL80211_IFTYPE_ADHOC))
9497 switch (ibss.chandef.width) {
9498 case NL80211_CHAN_WIDTH_5:
9499 case NL80211_CHAN_WIDTH_10:
9500 case NL80211_CHAN_WIDTH_20_NOHT:
9502 case NL80211_CHAN_WIDTH_20:
9503 case NL80211_CHAN_WIDTH_40:
9504 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9507 case NL80211_CHAN_WIDTH_80:
9508 case NL80211_CHAN_WIDTH_80P80:
9509 case NL80211_CHAN_WIDTH_160:
9510 if (!(rdev->wiphy.features & NL80211_FEATURE_HT_IBSS))
9512 if (!wiphy_ext_feature_isset(&rdev->wiphy,
9513 NL80211_EXT_FEATURE_VHT_IBSS))
9520 ibss.channel_fixed = !!info->attrs[NL80211_ATTR_FREQ_FIXED];
9521 ibss.privacy = !!info->attrs[NL80211_ATTR_PRIVACY];
9523 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
9525 nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9527 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
9528 struct ieee80211_supported_band *sband =
9529 wiphy->bands[ibss.chandef.chan->band];
9531 err = ieee80211_get_ratemask(sband, rates, n_rates,
9537 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9538 memcpy(&ibss.ht_capa_mask,
9539 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
9540 sizeof(ibss.ht_capa_mask));
9542 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
9543 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
9545 memcpy(&ibss.ht_capa,
9546 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
9547 sizeof(ibss.ht_capa));
9550 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
9551 !nl80211_parse_mcast_rate(rdev, ibss.mcast_rate,
9552 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
9555 if (ibss.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9558 connkeys = nl80211_parse_connkeys(rdev, info, &no_ht);
9559 if (IS_ERR(connkeys))
9560 return PTR_ERR(connkeys);
9562 if ((ibss.chandef.width != NL80211_CHAN_WIDTH_20_NOHT) &&
9570 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT]);
9572 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
9573 int r = validate_pae_over_nl80211(rdev, info);
9580 ibss.control_port_over_nl80211 = true;
9583 ibss.userspace_handles_dfs =
9584 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
9586 wdev_lock(dev->ieee80211_ptr);
9587 err = __cfg80211_join_ibss(rdev, dev, &ibss, connkeys);
9590 else if (info->attrs[NL80211_ATTR_SOCKET_OWNER])
9591 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
9592 wdev_unlock(dev->ieee80211_ptr);
9597 static int nl80211_leave_ibss(struct sk_buff *skb, struct genl_info *info)
9599 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9600 struct net_device *dev = info->user_ptr[1];
9602 if (!rdev->ops->leave_ibss)
9605 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC)
9608 return cfg80211_leave_ibss(rdev, dev, false);
9611 static int nl80211_set_mcast_rate(struct sk_buff *skb, struct genl_info *info)
9613 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9614 struct net_device *dev = info->user_ptr[1];
9615 int mcast_rate[NUM_NL80211_BANDS];
9619 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_ADHOC &&
9620 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_MESH_POINT &&
9621 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_OCB)
9624 if (!rdev->ops->set_mcast_rate)
9627 memset(mcast_rate, 0, sizeof(mcast_rate));
9629 if (!info->attrs[NL80211_ATTR_MCAST_RATE])
9632 nla_rate = nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE]);
9633 if (!nl80211_parse_mcast_rate(rdev, mcast_rate, nla_rate))
9636 err = rdev_set_mcast_rate(rdev, dev, mcast_rate);
9641 static struct sk_buff *
9642 __cfg80211_alloc_vendor_skb(struct cfg80211_registered_device *rdev,
9643 struct wireless_dev *wdev, int approxlen,
9644 u32 portid, u32 seq, enum nl80211_commands cmd,
9645 enum nl80211_attrs attr,
9646 const struct nl80211_vendor_cmd_info *info,
9649 struct sk_buff *skb;
9651 struct nlattr *data;
9653 skb = nlmsg_new(approxlen + 100, gfp);
9657 hdr = nl80211hdr_put(skb, portid, seq, 0, cmd);
9663 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
9664 goto nla_put_failure;
9667 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_ID,
9669 goto nla_put_failure;
9670 if (nla_put_u32(skb, NL80211_ATTR_VENDOR_SUBCMD,
9672 goto nla_put_failure;
9676 if (nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
9677 wdev_id(wdev), NL80211_ATTR_PAD))
9678 goto nla_put_failure;
9680 nla_put_u32(skb, NL80211_ATTR_IFINDEX,
9681 wdev->netdev->ifindex))
9682 goto nla_put_failure;
9685 data = nla_nest_start_noflag(skb, attr);
9687 goto nla_put_failure;
9689 ((void **)skb->cb)[0] = rdev;
9690 ((void **)skb->cb)[1] = hdr;
9691 ((void **)skb->cb)[2] = data;
9700 struct sk_buff *__cfg80211_alloc_event_skb(struct wiphy *wiphy,
9701 struct wireless_dev *wdev,
9702 enum nl80211_commands cmd,
9703 enum nl80211_attrs attr,
9704 unsigned int portid,
9705 int vendor_event_idx,
9706 int approxlen, gfp_t gfp)
9708 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
9709 const struct nl80211_vendor_cmd_info *info;
9712 case NL80211_CMD_TESTMODE:
9713 if (WARN_ON(vendor_event_idx != -1))
9717 case NL80211_CMD_VENDOR:
9718 if (WARN_ON(vendor_event_idx < 0 ||
9719 vendor_event_idx >= wiphy->n_vendor_events))
9721 info = &wiphy->vendor_events[vendor_event_idx];
9728 return __cfg80211_alloc_vendor_skb(rdev, wdev, approxlen, portid, 0,
9729 cmd, attr, info, gfp);
9731 EXPORT_SYMBOL(__cfg80211_alloc_event_skb);
9733 void __cfg80211_send_event_skb(struct sk_buff *skb, gfp_t gfp)
9735 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
9736 void *hdr = ((void **)skb->cb)[1];
9737 struct nlmsghdr *nlhdr = nlmsg_hdr(skb);
9738 struct nlattr *data = ((void **)skb->cb)[2];
9739 enum nl80211_multicast_groups mcgrp = NL80211_MCGRP_TESTMODE;
9741 /* clear CB data for netlink core to own from now on */
9742 memset(skb->cb, 0, sizeof(skb->cb));
9744 nla_nest_end(skb, data);
9745 genlmsg_end(skb, hdr);
9747 if (nlhdr->nlmsg_pid) {
9748 genlmsg_unicast(wiphy_net(&rdev->wiphy), skb,
9751 if (data->nla_type == NL80211_ATTR_VENDOR_DATA)
9752 mcgrp = NL80211_MCGRP_VENDOR;
9754 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
9755 skb, 0, mcgrp, gfp);
9758 EXPORT_SYMBOL(__cfg80211_send_event_skb);
9760 #ifdef CONFIG_NL80211_TESTMODE
9761 static int nl80211_testmode_do(struct sk_buff *skb, struct genl_info *info)
9763 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9764 struct wireless_dev *wdev =
9765 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
9768 if (!rdev->ops->testmode_cmd)
9772 err = PTR_ERR(wdev);
9776 } else if (wdev->wiphy != &rdev->wiphy) {
9780 if (!info->attrs[NL80211_ATTR_TESTDATA])
9783 rdev->cur_cmd_info = info;
9784 err = rdev_testmode_cmd(rdev, wdev,
9785 nla_data(info->attrs[NL80211_ATTR_TESTDATA]),
9786 nla_len(info->attrs[NL80211_ATTR_TESTDATA]));
9787 rdev->cur_cmd_info = NULL;
9792 static int nl80211_testmode_dump(struct sk_buff *skb,
9793 struct netlink_callback *cb)
9795 struct cfg80211_registered_device *rdev;
9796 struct nlattr **attrbuf = NULL;
9806 * 0 is a valid index, but not valid for args[0],
9807 * so we need to offset by 1.
9809 phy_idx = cb->args[0] - 1;
9811 rdev = cfg80211_rdev_by_wiphy_idx(phy_idx);
9817 attrbuf = kcalloc(NUM_NL80211_ATTR, sizeof(*attrbuf),
9824 err = nlmsg_parse_deprecated(cb->nlh,
9825 GENL_HDRLEN + nl80211_fam.hdrsize,
9826 attrbuf, nl80211_fam.maxattr,
9827 nl80211_policy, NULL);
9831 rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
9833 err = PTR_ERR(rdev);
9836 phy_idx = rdev->wiphy_idx;
9838 if (attrbuf[NL80211_ATTR_TESTDATA])
9839 cb->args[1] = (long)attrbuf[NL80211_ATTR_TESTDATA];
9843 data = nla_data((void *)cb->args[1]);
9844 data_len = nla_len((void *)cb->args[1]);
9847 if (!rdev->ops->testmode_dump) {
9853 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
9854 cb->nlh->nlmsg_seq, NLM_F_MULTI,
9855 NL80211_CMD_TESTMODE);
9856 struct nlattr *tmdata;
9861 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, phy_idx)) {
9862 genlmsg_cancel(skb, hdr);
9866 tmdata = nla_nest_start_noflag(skb, NL80211_ATTR_TESTDATA);
9868 genlmsg_cancel(skb, hdr);
9871 err = rdev_testmode_dump(rdev, skb, cb, data, data_len);
9872 nla_nest_end(skb, tmdata);
9874 if (err == -ENOBUFS || err == -ENOENT) {
9875 genlmsg_cancel(skb, hdr);
9878 genlmsg_cancel(skb, hdr);
9882 genlmsg_end(skb, hdr);
9887 cb->args[0] = phy_idx + 1;
9895 static int nl80211_connect(struct sk_buff *skb, struct genl_info *info)
9897 struct cfg80211_registered_device *rdev = info->user_ptr[0];
9898 struct net_device *dev = info->user_ptr[1];
9899 struct cfg80211_connect_params connect;
9900 struct wiphy *wiphy;
9901 struct cfg80211_cached_keys *connkeys = NULL;
9904 memset(&connect, 0, sizeof(connect));
9906 if (!info->attrs[NL80211_ATTR_SSID] ||
9907 !nla_len(info->attrs[NL80211_ATTR_SSID]))
9910 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
9912 nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
9913 if (!nl80211_valid_auth_type(rdev, connect.auth_type,
9914 NL80211_CMD_CONNECT))
9917 connect.auth_type = NL80211_AUTHTYPE_AUTOMATIC;
9919 connect.privacy = info->attrs[NL80211_ATTR_PRIVACY];
9921 if (info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS] &&
9922 !wiphy_ext_feature_isset(&rdev->wiphy,
9923 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
9925 connect.want_1x = info->attrs[NL80211_ATTR_WANT_1X_4WAY_HS];
9927 err = nl80211_crypto_settings(rdev, info, &connect.crypto,
9928 NL80211_MAX_NR_CIPHER_SUITES);
9932 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
9933 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
9936 wiphy = &rdev->wiphy;
9938 connect.bg_scan_period = -1;
9939 if (info->attrs[NL80211_ATTR_BG_SCAN_PERIOD] &&
9940 (wiphy->flags & WIPHY_FLAG_SUPPORTS_FW_ROAM)) {
9941 connect.bg_scan_period =
9942 nla_get_u16(info->attrs[NL80211_ATTR_BG_SCAN_PERIOD]);
9945 if (info->attrs[NL80211_ATTR_MAC])
9946 connect.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
9947 else if (info->attrs[NL80211_ATTR_MAC_HINT])
9948 connect.bssid_hint =
9949 nla_data(info->attrs[NL80211_ATTR_MAC_HINT]);
9950 connect.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
9951 connect.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
9953 if (info->attrs[NL80211_ATTR_IE]) {
9954 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
9955 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
9958 if (info->attrs[NL80211_ATTR_USE_MFP]) {
9959 connect.mfp = nla_get_u32(info->attrs[NL80211_ATTR_USE_MFP]);
9960 if (connect.mfp == NL80211_MFP_OPTIONAL &&
9961 !wiphy_ext_feature_isset(&rdev->wiphy,
9962 NL80211_EXT_FEATURE_MFP_OPTIONAL))
9965 connect.mfp = NL80211_MFP_NO;
9968 if (info->attrs[NL80211_ATTR_PREV_BSSID])
9969 connect.prev_bssid =
9970 nla_data(info->attrs[NL80211_ATTR_PREV_BSSID]);
9972 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
9973 connect.channel = nl80211_get_valid_chan(
9974 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ]);
9975 if (!connect.channel)
9977 } else if (info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]) {
9978 connect.channel_hint = nl80211_get_valid_chan(
9979 wiphy, info->attrs[NL80211_ATTR_WIPHY_FREQ_HINT]);
9980 if (!connect.channel_hint)
9984 if (info->attrs[NL80211_ATTR_WIPHY_EDMG_CHANNELS]) {
9985 connect.edmg.channels =
9986 nla_get_u8(info->attrs[NL80211_ATTR_WIPHY_EDMG_CHANNELS]);
9988 if (info->attrs[NL80211_ATTR_WIPHY_EDMG_BW_CONFIG])
9989 connect.edmg.bw_config =
9990 nla_get_u8(info->attrs[NL80211_ATTR_WIPHY_EDMG_BW_CONFIG]);
9993 if (connect.privacy && info->attrs[NL80211_ATTR_KEYS]) {
9994 connkeys = nl80211_parse_connkeys(rdev, info, NULL);
9995 if (IS_ERR(connkeys))
9996 return PTR_ERR(connkeys);
9999 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_HT]))
10000 connect.flags |= ASSOC_REQ_DISABLE_HT;
10002 if (info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK])
10003 memcpy(&connect.ht_capa_mask,
10004 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]),
10005 sizeof(connect.ht_capa_mask));
10007 if (info->attrs[NL80211_ATTR_HT_CAPABILITY]) {
10008 if (!info->attrs[NL80211_ATTR_HT_CAPABILITY_MASK]) {
10012 memcpy(&connect.ht_capa,
10013 nla_data(info->attrs[NL80211_ATTR_HT_CAPABILITY]),
10014 sizeof(connect.ht_capa));
10017 if (nla_get_flag(info->attrs[NL80211_ATTR_DISABLE_VHT]))
10018 connect.flags |= ASSOC_REQ_DISABLE_VHT;
10020 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK])
10021 memcpy(&connect.vht_capa_mask,
10022 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]),
10023 sizeof(connect.vht_capa_mask));
10025 if (info->attrs[NL80211_ATTR_VHT_CAPABILITY]) {
10026 if (!info->attrs[NL80211_ATTR_VHT_CAPABILITY_MASK]) {
10030 memcpy(&connect.vht_capa,
10031 nla_data(info->attrs[NL80211_ATTR_VHT_CAPABILITY]),
10032 sizeof(connect.vht_capa));
10035 if (nla_get_flag(info->attrs[NL80211_ATTR_USE_RRM])) {
10036 if (!((rdev->wiphy.features &
10037 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES) &&
10038 (rdev->wiphy.features & NL80211_FEATURE_QUIET)) &&
10039 !wiphy_ext_feature_isset(&rdev->wiphy,
10040 NL80211_EXT_FEATURE_RRM)) {
10044 connect.flags |= ASSOC_REQ_USE_RRM;
10047 connect.pbss = nla_get_flag(info->attrs[NL80211_ATTR_PBSS]);
10048 if (connect.pbss && !rdev->wiphy.bands[NL80211_BAND_60GHZ]) {
10050 return -EOPNOTSUPP;
10053 if (info->attrs[NL80211_ATTR_BSS_SELECT]) {
10054 /* bss selection makes no sense if bssid is set */
10055 if (connect.bssid) {
10060 err = parse_bss_select(info->attrs[NL80211_ATTR_BSS_SELECT],
10061 wiphy, &connect.bss_select);
10068 if (wiphy_ext_feature_isset(&rdev->wiphy,
10069 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD) &&
10070 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
10071 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
10072 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
10073 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
10074 connect.fils_erp_username =
10075 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
10076 connect.fils_erp_username_len =
10077 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
10078 connect.fils_erp_realm =
10079 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
10080 connect.fils_erp_realm_len =
10081 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
10082 connect.fils_erp_next_seq_num =
10084 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
10085 connect.fils_erp_rrk =
10086 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
10087 connect.fils_erp_rrk_len =
10088 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
10089 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
10090 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
10091 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
10092 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
10097 if (nla_get_flag(info->attrs[NL80211_ATTR_EXTERNAL_AUTH_SUPPORT])) {
10098 if (!info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
10100 GENL_SET_ERR_MSG(info,
10101 "external auth requires connection ownership");
10104 connect.flags |= CONNECT_REQ_EXTERNAL_AUTH_SUPPORT;
10107 wdev_lock(dev->ieee80211_ptr);
10109 err = cfg80211_connect(rdev, dev, &connect, connkeys,
10110 connect.prev_bssid);
10114 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER]) {
10115 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
10117 memcpy(dev->ieee80211_ptr->disconnect_bssid,
10118 connect.bssid, ETH_ALEN);
10120 memset(dev->ieee80211_ptr->disconnect_bssid,
10124 wdev_unlock(dev->ieee80211_ptr);
10129 static int nl80211_update_connect_params(struct sk_buff *skb,
10130 struct genl_info *info)
10132 struct cfg80211_connect_params connect = {};
10133 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10134 struct net_device *dev = info->user_ptr[1];
10135 struct wireless_dev *wdev = dev->ieee80211_ptr;
10136 bool fils_sk_offload;
10141 if (!rdev->ops->update_connect_params)
10142 return -EOPNOTSUPP;
10144 if (info->attrs[NL80211_ATTR_IE]) {
10145 connect.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
10146 connect.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
10147 changed |= UPDATE_ASSOC_IES;
10150 fils_sk_offload = wiphy_ext_feature_isset(&rdev->wiphy,
10151 NL80211_EXT_FEATURE_FILS_SK_OFFLOAD);
10154 * when driver supports fils-sk offload all attributes must be
10155 * provided. So the else covers "fils-sk-not-all" and
10156 * "no-fils-sk-any".
10158 if (fils_sk_offload &&
10159 info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] &&
10160 info->attrs[NL80211_ATTR_FILS_ERP_REALM] &&
10161 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] &&
10162 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
10163 connect.fils_erp_username =
10164 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
10165 connect.fils_erp_username_len =
10166 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_USERNAME]);
10167 connect.fils_erp_realm =
10168 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
10169 connect.fils_erp_realm_len =
10170 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_REALM]);
10171 connect.fils_erp_next_seq_num =
10173 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM]);
10174 connect.fils_erp_rrk =
10175 nla_data(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
10176 connect.fils_erp_rrk_len =
10177 nla_len(info->attrs[NL80211_ATTR_FILS_ERP_RRK]);
10178 changed |= UPDATE_FILS_ERP_INFO;
10179 } else if (info->attrs[NL80211_ATTR_FILS_ERP_USERNAME] ||
10180 info->attrs[NL80211_ATTR_FILS_ERP_REALM] ||
10181 info->attrs[NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM] ||
10182 info->attrs[NL80211_ATTR_FILS_ERP_RRK]) {
10186 if (info->attrs[NL80211_ATTR_AUTH_TYPE]) {
10187 auth_type = nla_get_u32(info->attrs[NL80211_ATTR_AUTH_TYPE]);
10188 if (!nl80211_valid_auth_type(rdev, auth_type,
10189 NL80211_CMD_CONNECT))
10192 if (auth_type == NL80211_AUTHTYPE_FILS_SK &&
10193 fils_sk_offload && !(changed & UPDATE_FILS_ERP_INFO))
10196 connect.auth_type = auth_type;
10197 changed |= UPDATE_AUTH_TYPE;
10200 wdev_lock(dev->ieee80211_ptr);
10201 if (!wdev->current_bss)
10204 ret = rdev_update_connect_params(rdev, dev, &connect, changed);
10205 wdev_unlock(dev->ieee80211_ptr);
10210 static int nl80211_disconnect(struct sk_buff *skb, struct genl_info *info)
10212 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10213 struct net_device *dev = info->user_ptr[1];
10217 if (dev->ieee80211_ptr->conn_owner_nlportid &&
10218 dev->ieee80211_ptr->conn_owner_nlportid != info->snd_portid)
10221 if (!info->attrs[NL80211_ATTR_REASON_CODE])
10222 reason = WLAN_REASON_DEAUTH_LEAVING;
10224 reason = nla_get_u16(info->attrs[NL80211_ATTR_REASON_CODE]);
10229 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10230 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
10231 return -EOPNOTSUPP;
10233 wdev_lock(dev->ieee80211_ptr);
10234 ret = cfg80211_disconnect(rdev, dev, reason, true);
10235 wdev_unlock(dev->ieee80211_ptr);
10239 static int nl80211_wiphy_netns(struct sk_buff *skb, struct genl_info *info)
10241 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10245 if (info->attrs[NL80211_ATTR_PID]) {
10246 u32 pid = nla_get_u32(info->attrs[NL80211_ATTR_PID]);
10248 net = get_net_ns_by_pid(pid);
10249 } else if (info->attrs[NL80211_ATTR_NETNS_FD]) {
10250 u32 fd = nla_get_u32(info->attrs[NL80211_ATTR_NETNS_FD]);
10252 net = get_net_ns_by_fd(fd);
10258 return PTR_ERR(net);
10262 /* check if anything to do */
10263 if (!net_eq(wiphy_net(&rdev->wiphy), net))
10264 err = cfg80211_switch_netns(rdev, net);
10270 static int nl80211_setdel_pmksa(struct sk_buff *skb, struct genl_info *info)
10272 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10273 int (*rdev_ops)(struct wiphy *wiphy, struct net_device *dev,
10274 struct cfg80211_pmksa *pmksa) = NULL;
10275 struct net_device *dev = info->user_ptr[1];
10276 struct cfg80211_pmksa pmksa;
10278 memset(&pmksa, 0, sizeof(struct cfg80211_pmksa));
10280 if (!info->attrs[NL80211_ATTR_PMKID])
10283 pmksa.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
10285 if (info->attrs[NL80211_ATTR_MAC]) {
10286 pmksa.bssid = nla_data(info->attrs[NL80211_ATTR_MAC]);
10287 } else if (info->attrs[NL80211_ATTR_SSID] &&
10288 info->attrs[NL80211_ATTR_FILS_CACHE_ID] &&
10289 (info->genlhdr->cmd == NL80211_CMD_DEL_PMKSA ||
10290 info->attrs[NL80211_ATTR_PMK])) {
10291 pmksa.ssid = nla_data(info->attrs[NL80211_ATTR_SSID]);
10292 pmksa.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
10294 nla_data(info->attrs[NL80211_ATTR_FILS_CACHE_ID]);
10298 if (info->attrs[NL80211_ATTR_PMK]) {
10299 pmksa.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
10300 pmksa.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
10303 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10304 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT &&
10305 !(dev->ieee80211_ptr->iftype == NL80211_IFTYPE_AP &&
10306 wiphy_ext_feature_isset(&rdev->wiphy,
10307 NL80211_EXT_FEATURE_AP_PMKSA_CACHING)))
10308 return -EOPNOTSUPP;
10310 switch (info->genlhdr->cmd) {
10311 case NL80211_CMD_SET_PMKSA:
10312 rdev_ops = rdev->ops->set_pmksa;
10314 case NL80211_CMD_DEL_PMKSA:
10315 rdev_ops = rdev->ops->del_pmksa;
10323 return -EOPNOTSUPP;
10325 return rdev_ops(&rdev->wiphy, dev, &pmksa);
10328 static int nl80211_flush_pmksa(struct sk_buff *skb, struct genl_info *info)
10330 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10331 struct net_device *dev = info->user_ptr[1];
10333 if (dev->ieee80211_ptr->iftype != NL80211_IFTYPE_STATION &&
10334 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_CLIENT)
10335 return -EOPNOTSUPP;
10337 if (!rdev->ops->flush_pmksa)
10338 return -EOPNOTSUPP;
10340 return rdev_flush_pmksa(rdev, dev);
10343 static int nl80211_tdls_mgmt(struct sk_buff *skb, struct genl_info *info)
10345 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10346 struct net_device *dev = info->user_ptr[1];
10347 u8 action_code, dialog_token;
10348 u32 peer_capability = 0;
10353 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10354 !rdev->ops->tdls_mgmt)
10355 return -EOPNOTSUPP;
10357 if (!info->attrs[NL80211_ATTR_TDLS_ACTION] ||
10358 !info->attrs[NL80211_ATTR_STATUS_CODE] ||
10359 !info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN] ||
10360 !info->attrs[NL80211_ATTR_IE] ||
10361 !info->attrs[NL80211_ATTR_MAC])
10364 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10365 action_code = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_ACTION]);
10366 status_code = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
10367 dialog_token = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_DIALOG_TOKEN]);
10368 initiator = nla_get_flag(info->attrs[NL80211_ATTR_TDLS_INITIATOR]);
10369 if (info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY])
10371 nla_get_u32(info->attrs[NL80211_ATTR_TDLS_PEER_CAPABILITY]);
10373 return rdev_tdls_mgmt(rdev, dev, peer, action_code,
10374 dialog_token, status_code, peer_capability,
10376 nla_data(info->attrs[NL80211_ATTR_IE]),
10377 nla_len(info->attrs[NL80211_ATTR_IE]));
10380 static int nl80211_tdls_oper(struct sk_buff *skb, struct genl_info *info)
10382 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10383 struct net_device *dev = info->user_ptr[1];
10384 enum nl80211_tdls_operation operation;
10387 if (!(rdev->wiphy.flags & WIPHY_FLAG_SUPPORTS_TDLS) ||
10388 !rdev->ops->tdls_oper)
10389 return -EOPNOTSUPP;
10391 if (!info->attrs[NL80211_ATTR_TDLS_OPERATION] ||
10392 !info->attrs[NL80211_ATTR_MAC])
10395 operation = nla_get_u8(info->attrs[NL80211_ATTR_TDLS_OPERATION]);
10396 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
10398 return rdev_tdls_oper(rdev, dev, peer, operation);
10401 static int nl80211_remain_on_channel(struct sk_buff *skb,
10402 struct genl_info *info)
10404 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10405 struct wireless_dev *wdev = info->user_ptr[1];
10406 struct cfg80211_chan_def chandef;
10407 const struct cfg80211_chan_def *compat_chandef;
10408 struct sk_buff *msg;
10414 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ] ||
10415 !info->attrs[NL80211_ATTR_DURATION])
10418 duration = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10420 if (!rdev->ops->remain_on_channel ||
10421 !(rdev->wiphy.flags & WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL))
10422 return -EOPNOTSUPP;
10425 * We should be on that channel for at least a minimum amount of
10426 * time (10ms) but no longer than the driver supports.
10428 if (duration < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10429 duration > rdev->wiphy.max_remain_on_channel_duration)
10432 err = nl80211_parse_chandef(rdev, info, &chandef);
10437 if (!cfg80211_off_channel_oper_allowed(wdev) &&
10438 !cfg80211_chandef_identical(&wdev->chandef, &chandef)) {
10439 compat_chandef = cfg80211_chandef_compatible(&wdev->chandef,
10441 if (compat_chandef != &chandef) {
10448 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10452 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10453 NL80211_CMD_REMAIN_ON_CHANNEL);
10459 err = rdev_remain_on_channel(rdev, wdev, chandef.chan,
10460 duration, &cookie);
10465 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10467 goto nla_put_failure;
10469 genlmsg_end(msg, hdr);
10471 return genlmsg_reply(msg, info);
10480 static int nl80211_cancel_remain_on_channel(struct sk_buff *skb,
10481 struct genl_info *info)
10483 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10484 struct wireless_dev *wdev = info->user_ptr[1];
10487 if (!info->attrs[NL80211_ATTR_COOKIE])
10490 if (!rdev->ops->cancel_remain_on_channel)
10491 return -EOPNOTSUPP;
10493 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10495 return rdev_cancel_remain_on_channel(rdev, wdev, cookie);
10498 static int nl80211_set_tx_bitrate_mask(struct sk_buff *skb,
10499 struct genl_info *info)
10501 struct cfg80211_bitrate_mask mask;
10502 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10503 struct net_device *dev = info->user_ptr[1];
10506 if (!rdev->ops->set_bitrate_mask)
10507 return -EOPNOTSUPP;
10509 err = nl80211_parse_tx_bitrate_mask(info, &mask);
10513 return rdev_set_bitrate_mask(rdev, dev, NULL, &mask);
10516 static int nl80211_register_mgmt(struct sk_buff *skb, struct genl_info *info)
10518 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10519 struct wireless_dev *wdev = info->user_ptr[1];
10520 u16 frame_type = IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION;
10522 if (!info->attrs[NL80211_ATTR_FRAME_MATCH])
10525 if (info->attrs[NL80211_ATTR_FRAME_TYPE])
10526 frame_type = nla_get_u16(info->attrs[NL80211_ATTR_FRAME_TYPE]);
10528 switch (wdev->iftype) {
10529 case NL80211_IFTYPE_STATION:
10530 case NL80211_IFTYPE_ADHOC:
10531 case NL80211_IFTYPE_P2P_CLIENT:
10532 case NL80211_IFTYPE_AP:
10533 case NL80211_IFTYPE_AP_VLAN:
10534 case NL80211_IFTYPE_MESH_POINT:
10535 case NL80211_IFTYPE_P2P_GO:
10536 case NL80211_IFTYPE_P2P_DEVICE:
10538 case NL80211_IFTYPE_NAN:
10540 return -EOPNOTSUPP;
10543 /* not much point in registering if we can't reply */
10544 if (!rdev->ops->mgmt_tx)
10545 return -EOPNOTSUPP;
10547 return cfg80211_mlme_register_mgmt(wdev, info->snd_portid, frame_type,
10548 nla_data(info->attrs[NL80211_ATTR_FRAME_MATCH]),
10549 nla_len(info->attrs[NL80211_ATTR_FRAME_MATCH]));
10552 static int nl80211_tx_mgmt(struct sk_buff *skb, struct genl_info *info)
10554 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10555 struct wireless_dev *wdev = info->user_ptr[1];
10556 struct cfg80211_chan_def chandef;
10560 struct sk_buff *msg = NULL;
10561 struct cfg80211_mgmt_tx_params params = {
10562 .dont_wait_for_ack =
10563 info->attrs[NL80211_ATTR_DONT_WAIT_FOR_ACK],
10566 if (!info->attrs[NL80211_ATTR_FRAME])
10569 if (!rdev->ops->mgmt_tx)
10570 return -EOPNOTSUPP;
10572 switch (wdev->iftype) {
10573 case NL80211_IFTYPE_P2P_DEVICE:
10574 if (!info->attrs[NL80211_ATTR_WIPHY_FREQ])
10576 case NL80211_IFTYPE_STATION:
10577 case NL80211_IFTYPE_ADHOC:
10578 case NL80211_IFTYPE_P2P_CLIENT:
10579 case NL80211_IFTYPE_AP:
10580 case NL80211_IFTYPE_AP_VLAN:
10581 case NL80211_IFTYPE_MESH_POINT:
10582 case NL80211_IFTYPE_P2P_GO:
10584 case NL80211_IFTYPE_NAN:
10586 return -EOPNOTSUPP;
10589 if (info->attrs[NL80211_ATTR_DURATION]) {
10590 if (!(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10592 params.wait = nla_get_u32(info->attrs[NL80211_ATTR_DURATION]);
10595 * We should wait on the channel for at least a minimum amount
10596 * of time (10ms) but no longer than the driver supports.
10598 if (params.wait < NL80211_MIN_REMAIN_ON_CHANNEL_TIME ||
10599 params.wait > rdev->wiphy.max_remain_on_channel_duration)
10603 params.offchan = info->attrs[NL80211_ATTR_OFFCHANNEL_TX_OK];
10605 if (params.offchan && !(rdev->wiphy.flags & WIPHY_FLAG_OFFCHAN_TX))
10608 params.no_cck = nla_get_flag(info->attrs[NL80211_ATTR_TX_NO_CCK_RATE]);
10610 /* get the channel if any has been specified, otherwise pass NULL to
10611 * the driver. The latter will use the current one
10613 chandef.chan = NULL;
10614 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
10615 err = nl80211_parse_chandef(rdev, info, &chandef);
10620 if (!chandef.chan && params.offchan)
10624 if (params.offchan && !cfg80211_off_channel_oper_allowed(wdev)) {
10630 params.buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
10631 params.len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
10633 if (info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]) {
10634 int len = nla_len(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10637 if (len % sizeof(u16))
10640 params.n_csa_offsets = len / sizeof(u16);
10641 params.csa_offsets =
10642 nla_data(info->attrs[NL80211_ATTR_CSA_C_OFFSETS_TX]);
10644 /* check that all the offsets fit the frame */
10645 for (i = 0; i < params.n_csa_offsets; i++) {
10646 if (params.csa_offsets[i] >= params.len)
10651 if (!params.dont_wait_for_ack) {
10652 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10656 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10657 NL80211_CMD_FRAME);
10664 params.chan = chandef.chan;
10665 err = cfg80211_mlme_mgmt_tx(rdev, wdev, ¶ms, &cookie);
10670 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
10672 goto nla_put_failure;
10674 genlmsg_end(msg, hdr);
10675 return genlmsg_reply(msg, info);
10687 static int nl80211_tx_mgmt_cancel_wait(struct sk_buff *skb, struct genl_info *info)
10689 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10690 struct wireless_dev *wdev = info->user_ptr[1];
10693 if (!info->attrs[NL80211_ATTR_COOKIE])
10696 if (!rdev->ops->mgmt_tx_cancel_wait)
10697 return -EOPNOTSUPP;
10699 switch (wdev->iftype) {
10700 case NL80211_IFTYPE_STATION:
10701 case NL80211_IFTYPE_ADHOC:
10702 case NL80211_IFTYPE_P2P_CLIENT:
10703 case NL80211_IFTYPE_AP:
10704 case NL80211_IFTYPE_AP_VLAN:
10705 case NL80211_IFTYPE_P2P_GO:
10706 case NL80211_IFTYPE_P2P_DEVICE:
10708 case NL80211_IFTYPE_NAN:
10710 return -EOPNOTSUPP;
10713 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
10715 return rdev_mgmt_tx_cancel_wait(rdev, wdev, cookie);
10718 static int nl80211_set_power_save(struct sk_buff *skb, struct genl_info *info)
10720 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10721 struct wireless_dev *wdev;
10722 struct net_device *dev = info->user_ptr[1];
10727 if (!info->attrs[NL80211_ATTR_PS_STATE])
10730 ps_state = nla_get_u32(info->attrs[NL80211_ATTR_PS_STATE]);
10732 wdev = dev->ieee80211_ptr;
10734 if (!rdev->ops->set_power_mgmt)
10735 return -EOPNOTSUPP;
10737 state = (ps_state == NL80211_PS_ENABLED) ? true : false;
10739 if (state == wdev->ps)
10742 err = rdev_set_power_mgmt(rdev, dev, state, wdev->ps_timeout);
10748 static int nl80211_get_power_save(struct sk_buff *skb, struct genl_info *info)
10750 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10751 enum nl80211_ps_state ps_state;
10752 struct wireless_dev *wdev;
10753 struct net_device *dev = info->user_ptr[1];
10754 struct sk_buff *msg;
10758 wdev = dev->ieee80211_ptr;
10760 if (!rdev->ops->set_power_mgmt)
10761 return -EOPNOTSUPP;
10763 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
10767 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
10768 NL80211_CMD_GET_POWER_SAVE);
10775 ps_state = NL80211_PS_ENABLED;
10777 ps_state = NL80211_PS_DISABLED;
10779 if (nla_put_u32(msg, NL80211_ATTR_PS_STATE, ps_state))
10780 goto nla_put_failure;
10782 genlmsg_end(msg, hdr);
10783 return genlmsg_reply(msg, info);
10792 static const struct nla_policy
10793 nl80211_attr_cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
10794 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_BINARY },
10795 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U32 },
10796 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
10797 [NL80211_ATTR_CQM_TXE_RATE] = { .type = NLA_U32 },
10798 [NL80211_ATTR_CQM_TXE_PKTS] = { .type = NLA_U32 },
10799 [NL80211_ATTR_CQM_TXE_INTVL] = { .type = NLA_U32 },
10800 [NL80211_ATTR_CQM_RSSI_LEVEL] = { .type = NLA_S32 },
10803 static int nl80211_set_cqm_txe(struct genl_info *info,
10804 u32 rate, u32 pkts, u32 intvl)
10806 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10807 struct net_device *dev = info->user_ptr[1];
10808 struct wireless_dev *wdev = dev->ieee80211_ptr;
10810 if (rate > 100 || intvl > NL80211_CQM_TXE_MAX_INTVL)
10813 if (!rdev->ops->set_cqm_txe_config)
10814 return -EOPNOTSUPP;
10816 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10817 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10818 return -EOPNOTSUPP;
10820 return rdev_set_cqm_txe_config(rdev, dev, rate, pkts, intvl);
10823 static int cfg80211_cqm_rssi_update(struct cfg80211_registered_device *rdev,
10824 struct net_device *dev)
10826 struct wireless_dev *wdev = dev->ieee80211_ptr;
10827 s32 last, low, high;
10829 int i, n, low_index;
10832 /* RSSI reporting disabled? */
10833 if (!wdev->cqm_config)
10834 return rdev_set_cqm_rssi_range_config(rdev, dev, 0, 0);
10837 * Obtain current RSSI value if possible, if not and no RSSI threshold
10838 * event has been received yet, we should receive an event after a
10839 * connection is established and enough beacons received to calculate
10842 if (!wdev->cqm_config->last_rssi_event_value && wdev->current_bss &&
10843 rdev->ops->get_station) {
10844 struct station_info sinfo = {};
10847 mac_addr = wdev->current_bss->pub.bssid;
10849 err = rdev_get_station(rdev, dev, mac_addr, &sinfo);
10853 cfg80211_sinfo_release_content(&sinfo);
10854 if (sinfo.filled & BIT_ULL(NL80211_STA_INFO_BEACON_SIGNAL_AVG))
10855 wdev->cqm_config->last_rssi_event_value =
10856 (s8) sinfo.rx_beacon_signal_avg;
10859 last = wdev->cqm_config->last_rssi_event_value;
10860 hyst = wdev->cqm_config->rssi_hyst;
10861 n = wdev->cqm_config->n_rssi_thresholds;
10863 for (i = 0; i < n; i++) {
10864 i = array_index_nospec(i, n);
10865 if (last < wdev->cqm_config->rssi_thresholds[i])
10870 if (low_index >= 0) {
10871 low_index = array_index_nospec(low_index, n);
10872 low = wdev->cqm_config->rssi_thresholds[low_index] - hyst;
10877 i = array_index_nospec(i, n);
10878 high = wdev->cqm_config->rssi_thresholds[i] + hyst - 1;
10883 return rdev_set_cqm_rssi_range_config(rdev, dev, low, high);
10886 static int nl80211_set_cqm_rssi(struct genl_info *info,
10887 const s32 *thresholds, int n_thresholds,
10890 struct cfg80211_registered_device *rdev = info->user_ptr[0];
10891 struct net_device *dev = info->user_ptr[1];
10892 struct wireless_dev *wdev = dev->ieee80211_ptr;
10894 s32 prev = S32_MIN;
10896 /* Check all values negative and sorted */
10897 for (i = 0; i < n_thresholds; i++) {
10898 if (thresholds[i] > 0 || thresholds[i] <= prev)
10901 prev = thresholds[i];
10904 if (wdev->iftype != NL80211_IFTYPE_STATION &&
10905 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
10906 return -EOPNOTSUPP;
10909 cfg80211_cqm_config_free(wdev);
10912 if (n_thresholds <= 1 && rdev->ops->set_cqm_rssi_config) {
10913 if (n_thresholds == 0 || thresholds[0] == 0) /* Disabling */
10914 return rdev_set_cqm_rssi_config(rdev, dev, 0, 0);
10916 return rdev_set_cqm_rssi_config(rdev, dev,
10917 thresholds[0], hysteresis);
10920 if (!wiphy_ext_feature_isset(&rdev->wiphy,
10921 NL80211_EXT_FEATURE_CQM_RSSI_LIST))
10922 return -EOPNOTSUPP;
10924 if (n_thresholds == 1 && thresholds[0] == 0) /* Disabling */
10928 if (n_thresholds) {
10929 struct cfg80211_cqm_config *cqm_config;
10931 cqm_config = kzalloc(sizeof(struct cfg80211_cqm_config) +
10932 n_thresholds * sizeof(s32), GFP_KERNEL);
10938 cqm_config->rssi_hyst = hysteresis;
10939 cqm_config->n_rssi_thresholds = n_thresholds;
10940 memcpy(cqm_config->rssi_thresholds, thresholds,
10941 n_thresholds * sizeof(s32));
10943 wdev->cqm_config = cqm_config;
10946 err = cfg80211_cqm_rssi_update(rdev, dev);
10954 static int nl80211_set_cqm(struct sk_buff *skb, struct genl_info *info)
10956 struct nlattr *attrs[NL80211_ATTR_CQM_MAX + 1];
10957 struct nlattr *cqm;
10960 cqm = info->attrs[NL80211_ATTR_CQM];
10964 err = nla_parse_nested_deprecated(attrs, NL80211_ATTR_CQM_MAX, cqm,
10965 nl80211_attr_cqm_policy,
10970 if (attrs[NL80211_ATTR_CQM_RSSI_THOLD] &&
10971 attrs[NL80211_ATTR_CQM_RSSI_HYST]) {
10972 const s32 *thresholds =
10973 nla_data(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10974 int len = nla_len(attrs[NL80211_ATTR_CQM_RSSI_THOLD]);
10975 u32 hysteresis = nla_get_u32(attrs[NL80211_ATTR_CQM_RSSI_HYST]);
10980 return nl80211_set_cqm_rssi(info, thresholds, len / 4,
10984 if (attrs[NL80211_ATTR_CQM_TXE_RATE] &&
10985 attrs[NL80211_ATTR_CQM_TXE_PKTS] &&
10986 attrs[NL80211_ATTR_CQM_TXE_INTVL]) {
10987 u32 rate = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_RATE]);
10988 u32 pkts = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_PKTS]);
10989 u32 intvl = nla_get_u32(attrs[NL80211_ATTR_CQM_TXE_INTVL]);
10991 return nl80211_set_cqm_txe(info, rate, pkts, intvl);
10997 static int nl80211_join_ocb(struct sk_buff *skb, struct genl_info *info)
10999 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11000 struct net_device *dev = info->user_ptr[1];
11001 struct ocb_setup setup = {};
11004 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
11008 return cfg80211_join_ocb(rdev, dev, &setup);
11011 static int nl80211_leave_ocb(struct sk_buff *skb, struct genl_info *info)
11013 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11014 struct net_device *dev = info->user_ptr[1];
11016 return cfg80211_leave_ocb(rdev, dev);
11019 static int nl80211_join_mesh(struct sk_buff *skb, struct genl_info *info)
11021 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11022 struct net_device *dev = info->user_ptr[1];
11023 struct mesh_config cfg;
11024 struct mesh_setup setup;
11027 /* start with default */
11028 memcpy(&cfg, &default_mesh_config, sizeof(cfg));
11029 memcpy(&setup, &default_mesh_setup, sizeof(setup));
11031 if (info->attrs[NL80211_ATTR_MESH_CONFIG]) {
11032 /* and parse parameters if given */
11033 err = nl80211_parse_mesh_config(info, &cfg, NULL);
11038 if (!info->attrs[NL80211_ATTR_MESH_ID] ||
11039 !nla_len(info->attrs[NL80211_ATTR_MESH_ID]))
11042 setup.mesh_id = nla_data(info->attrs[NL80211_ATTR_MESH_ID]);
11043 setup.mesh_id_len = nla_len(info->attrs[NL80211_ATTR_MESH_ID]);
11045 if (info->attrs[NL80211_ATTR_MCAST_RATE] &&
11046 !nl80211_parse_mcast_rate(rdev, setup.mcast_rate,
11047 nla_get_u32(info->attrs[NL80211_ATTR_MCAST_RATE])))
11050 if (info->attrs[NL80211_ATTR_BEACON_INTERVAL]) {
11051 setup.beacon_interval =
11052 nla_get_u32(info->attrs[NL80211_ATTR_BEACON_INTERVAL]);
11054 err = cfg80211_validate_beacon_int(rdev,
11055 NL80211_IFTYPE_MESH_POINT,
11056 setup.beacon_interval);
11061 if (info->attrs[NL80211_ATTR_DTIM_PERIOD]) {
11062 setup.dtim_period =
11063 nla_get_u32(info->attrs[NL80211_ATTR_DTIM_PERIOD]);
11064 if (setup.dtim_period < 1 || setup.dtim_period > 100)
11068 if (info->attrs[NL80211_ATTR_MESH_SETUP]) {
11069 /* parse additional setup parameters if given */
11070 err = nl80211_parse_mesh_setup(info, &setup);
11075 if (setup.user_mpm)
11076 cfg.auto_open_plinks = false;
11078 if (info->attrs[NL80211_ATTR_WIPHY_FREQ]) {
11079 err = nl80211_parse_chandef(rdev, info, &setup.chandef);
11083 /* __cfg80211_join_mesh() will sort it out */
11084 setup.chandef.chan = NULL;
11087 if (info->attrs[NL80211_ATTR_BSS_BASIC_RATES]) {
11088 u8 *rates = nla_data(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
11090 nla_len(info->attrs[NL80211_ATTR_BSS_BASIC_RATES]);
11091 struct ieee80211_supported_band *sband;
11093 if (!setup.chandef.chan)
11096 sband = rdev->wiphy.bands[setup.chandef.chan->band];
11098 err = ieee80211_get_ratemask(sband, rates, n_rates,
11099 &setup.basic_rates);
11104 if (info->attrs[NL80211_ATTR_TX_RATES]) {
11105 err = nl80211_parse_tx_bitrate_mask(info, &setup.beacon_rate);
11109 if (!setup.chandef.chan)
11112 err = validate_beacon_tx_rate(rdev, setup.chandef.chan->band,
11113 &setup.beacon_rate);
11118 setup.userspace_handles_dfs =
11119 nla_get_flag(info->attrs[NL80211_ATTR_HANDLE_DFS]);
11121 if (info->attrs[NL80211_ATTR_CONTROL_PORT_OVER_NL80211]) {
11122 int r = validate_pae_over_nl80211(rdev, info);
11127 setup.control_port_over_nl80211 = true;
11130 wdev_lock(dev->ieee80211_ptr);
11131 err = __cfg80211_join_mesh(rdev, dev, &setup, &cfg);
11132 if (!err && info->attrs[NL80211_ATTR_SOCKET_OWNER])
11133 dev->ieee80211_ptr->conn_owner_nlportid = info->snd_portid;
11134 wdev_unlock(dev->ieee80211_ptr);
11139 static int nl80211_leave_mesh(struct sk_buff *skb, struct genl_info *info)
11141 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11142 struct net_device *dev = info->user_ptr[1];
11144 return cfg80211_leave_mesh(rdev, dev);
11148 static int nl80211_send_wowlan_patterns(struct sk_buff *msg,
11149 struct cfg80211_registered_device *rdev)
11151 struct cfg80211_wowlan *wowlan = rdev->wiphy.wowlan_config;
11152 struct nlattr *nl_pats, *nl_pat;
11155 if (!wowlan->n_patterns)
11158 nl_pats = nla_nest_start_noflag(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN);
11162 for (i = 0; i < wowlan->n_patterns; i++) {
11163 nl_pat = nla_nest_start_noflag(msg, i + 1);
11166 pat_len = wowlan->patterns[i].pattern_len;
11167 if (nla_put(msg, NL80211_PKTPAT_MASK, DIV_ROUND_UP(pat_len, 8),
11168 wowlan->patterns[i].mask) ||
11169 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
11170 wowlan->patterns[i].pattern) ||
11171 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
11172 wowlan->patterns[i].pkt_offset))
11174 nla_nest_end(msg, nl_pat);
11176 nla_nest_end(msg, nl_pats);
11181 static int nl80211_send_wowlan_tcp(struct sk_buff *msg,
11182 struct cfg80211_wowlan_tcp *tcp)
11184 struct nlattr *nl_tcp;
11189 nl_tcp = nla_nest_start_noflag(msg,
11190 NL80211_WOWLAN_TRIG_TCP_CONNECTION);
11194 if (nla_put_in_addr(msg, NL80211_WOWLAN_TCP_SRC_IPV4, tcp->src) ||
11195 nla_put_in_addr(msg, NL80211_WOWLAN_TCP_DST_IPV4, tcp->dst) ||
11196 nla_put(msg, NL80211_WOWLAN_TCP_DST_MAC, ETH_ALEN, tcp->dst_mac) ||
11197 nla_put_u16(msg, NL80211_WOWLAN_TCP_SRC_PORT, tcp->src_port) ||
11198 nla_put_u16(msg, NL80211_WOWLAN_TCP_DST_PORT, tcp->dst_port) ||
11199 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD,
11200 tcp->payload_len, tcp->payload) ||
11201 nla_put_u32(msg, NL80211_WOWLAN_TCP_DATA_INTERVAL,
11202 tcp->data_interval) ||
11203 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_PAYLOAD,
11204 tcp->wake_len, tcp->wake_data) ||
11205 nla_put(msg, NL80211_WOWLAN_TCP_WAKE_MASK,
11206 DIV_ROUND_UP(tcp->wake_len, 8), tcp->wake_mask))
11209 if (tcp->payload_seq.len &&
11210 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ,
11211 sizeof(tcp->payload_seq), &tcp->payload_seq))
11214 if (tcp->payload_tok.len &&
11215 nla_put(msg, NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN,
11216 sizeof(tcp->payload_tok) + tcp->tokens_size,
11217 &tcp->payload_tok))
11220 nla_nest_end(msg, nl_tcp);
11225 static int nl80211_send_wowlan_nd(struct sk_buff *msg,
11226 struct cfg80211_sched_scan_request *req)
11228 struct nlattr *nd, *freqs, *matches, *match, *scan_plans, *scan_plan;
11234 nd = nla_nest_start_noflag(msg, NL80211_WOWLAN_TRIG_NET_DETECT);
11238 if (req->n_scan_plans == 1 &&
11239 nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL,
11240 req->scan_plans[0].interval * 1000))
11243 if (nla_put_u32(msg, NL80211_ATTR_SCHED_SCAN_DELAY, req->delay))
11246 if (req->relative_rssi_set) {
11247 struct nl80211_bss_select_rssi_adjust rssi_adjust;
11249 if (nla_put_s8(msg, NL80211_ATTR_SCHED_SCAN_RELATIVE_RSSI,
11250 req->relative_rssi))
11253 rssi_adjust.band = req->rssi_adjust.band;
11254 rssi_adjust.delta = req->rssi_adjust.delta;
11255 if (nla_put(msg, NL80211_ATTR_SCHED_SCAN_RSSI_ADJUST,
11256 sizeof(rssi_adjust), &rssi_adjust))
11260 freqs = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_FREQUENCIES);
11264 for (i = 0; i < req->n_channels; i++) {
11265 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
11269 nla_nest_end(msg, freqs);
11271 if (req->n_match_sets) {
11272 matches = nla_nest_start_noflag(msg,
11273 NL80211_ATTR_SCHED_SCAN_MATCH);
11277 for (i = 0; i < req->n_match_sets; i++) {
11278 match = nla_nest_start_noflag(msg, i);
11282 if (nla_put(msg, NL80211_SCHED_SCAN_MATCH_ATTR_SSID,
11283 req->match_sets[i].ssid.ssid_len,
11284 req->match_sets[i].ssid.ssid))
11286 nla_nest_end(msg, match);
11288 nla_nest_end(msg, matches);
11291 scan_plans = nla_nest_start_noflag(msg, NL80211_ATTR_SCHED_SCAN_PLANS);
11295 for (i = 0; i < req->n_scan_plans; i++) {
11296 scan_plan = nla_nest_start_noflag(msg, i + 1);
11300 if (nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_INTERVAL,
11301 req->scan_plans[i].interval) ||
11302 (req->scan_plans[i].iterations &&
11303 nla_put_u32(msg, NL80211_SCHED_SCAN_PLAN_ITERATIONS,
11304 req->scan_plans[i].iterations)))
11306 nla_nest_end(msg, scan_plan);
11308 nla_nest_end(msg, scan_plans);
11310 nla_nest_end(msg, nd);
11315 static int nl80211_get_wowlan(struct sk_buff *skb, struct genl_info *info)
11317 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11318 struct sk_buff *msg;
11320 u32 size = NLMSG_DEFAULT_SIZE;
11322 if (!rdev->wiphy.wowlan)
11323 return -EOPNOTSUPP;
11325 if (rdev->wiphy.wowlan_config && rdev->wiphy.wowlan_config->tcp) {
11326 /* adjust size to have room for all the data */
11327 size += rdev->wiphy.wowlan_config->tcp->tokens_size +
11328 rdev->wiphy.wowlan_config->tcp->payload_len +
11329 rdev->wiphy.wowlan_config->tcp->wake_len +
11330 rdev->wiphy.wowlan_config->tcp->wake_len / 8;
11333 msg = nlmsg_new(size, GFP_KERNEL);
11337 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11338 NL80211_CMD_GET_WOWLAN);
11340 goto nla_put_failure;
11342 if (rdev->wiphy.wowlan_config) {
11343 struct nlattr *nl_wowlan;
11345 nl_wowlan = nla_nest_start_noflag(msg,
11346 NL80211_ATTR_WOWLAN_TRIGGERS);
11348 goto nla_put_failure;
11350 if ((rdev->wiphy.wowlan_config->any &&
11351 nla_put_flag(msg, NL80211_WOWLAN_TRIG_ANY)) ||
11352 (rdev->wiphy.wowlan_config->disconnect &&
11353 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT)) ||
11354 (rdev->wiphy.wowlan_config->magic_pkt &&
11355 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT)) ||
11356 (rdev->wiphy.wowlan_config->gtk_rekey_failure &&
11357 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE)) ||
11358 (rdev->wiphy.wowlan_config->eap_identity_req &&
11359 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST)) ||
11360 (rdev->wiphy.wowlan_config->four_way_handshake &&
11361 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE)) ||
11362 (rdev->wiphy.wowlan_config->rfkill_release &&
11363 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE)))
11364 goto nla_put_failure;
11366 if (nl80211_send_wowlan_patterns(msg, rdev))
11367 goto nla_put_failure;
11369 if (nl80211_send_wowlan_tcp(msg,
11370 rdev->wiphy.wowlan_config->tcp))
11371 goto nla_put_failure;
11373 if (nl80211_send_wowlan_nd(
11375 rdev->wiphy.wowlan_config->nd_config))
11376 goto nla_put_failure;
11378 nla_nest_end(msg, nl_wowlan);
11381 genlmsg_end(msg, hdr);
11382 return genlmsg_reply(msg, info);
11389 static int nl80211_parse_wowlan_tcp(struct cfg80211_registered_device *rdev,
11390 struct nlattr *attr,
11391 struct cfg80211_wowlan *trig)
11393 struct nlattr *tb[NUM_NL80211_WOWLAN_TCP];
11394 struct cfg80211_wowlan_tcp *cfg;
11395 struct nl80211_wowlan_tcp_data_token *tok = NULL;
11396 struct nl80211_wowlan_tcp_data_seq *seq = NULL;
11398 u32 data_size, wake_size, tokens_size = 0, wake_mask_size;
11401 if (!rdev->wiphy.wowlan->tcp)
11404 err = nla_parse_nested_deprecated(tb, MAX_NL80211_WOWLAN_TCP, attr,
11405 nl80211_wowlan_tcp_policy, NULL);
11409 if (!tb[NL80211_WOWLAN_TCP_SRC_IPV4] ||
11410 !tb[NL80211_WOWLAN_TCP_DST_IPV4] ||
11411 !tb[NL80211_WOWLAN_TCP_DST_MAC] ||
11412 !tb[NL80211_WOWLAN_TCP_DST_PORT] ||
11413 !tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD] ||
11414 !tb[NL80211_WOWLAN_TCP_DATA_INTERVAL] ||
11415 !tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD] ||
11416 !tb[NL80211_WOWLAN_TCP_WAKE_MASK])
11419 data_size = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]);
11420 if (data_size > rdev->wiphy.wowlan->tcp->data_payload_max)
11423 if (nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) >
11424 rdev->wiphy.wowlan->tcp->data_interval_max ||
11425 nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]) == 0)
11428 wake_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]);
11429 if (wake_size > rdev->wiphy.wowlan->tcp->wake_payload_max)
11432 wake_mask_size = nla_len(tb[NL80211_WOWLAN_TCP_WAKE_MASK]);
11433 if (wake_mask_size != DIV_ROUND_UP(wake_size, 8))
11436 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]) {
11437 u32 tokln = nla_len(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11439 tok = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_TOKEN]);
11440 tokens_size = tokln - sizeof(*tok);
11442 if (!tok->len || tokens_size % tok->len)
11444 if (!rdev->wiphy.wowlan->tcp->tok)
11446 if (tok->len > rdev->wiphy.wowlan->tcp->tok->max_len)
11448 if (tok->len < rdev->wiphy.wowlan->tcp->tok->min_len)
11450 if (tokens_size > rdev->wiphy.wowlan->tcp->tok->bufsize)
11452 if (tok->offset + tok->len > data_size)
11456 if (tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]) {
11457 seq = nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD_SEQ]);
11458 if (!rdev->wiphy.wowlan->tcp->seq)
11460 if (seq->len == 0 || seq->len > 4)
11462 if (seq->len + seq->offset > data_size)
11466 size = sizeof(*cfg);
11468 size += wake_size + wake_mask_size;
11469 size += tokens_size;
11471 cfg = kzalloc(size, GFP_KERNEL);
11474 cfg->src = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_SRC_IPV4]);
11475 cfg->dst = nla_get_in_addr(tb[NL80211_WOWLAN_TCP_DST_IPV4]);
11476 memcpy(cfg->dst_mac, nla_data(tb[NL80211_WOWLAN_TCP_DST_MAC]),
11478 if (tb[NL80211_WOWLAN_TCP_SRC_PORT])
11479 port = nla_get_u16(tb[NL80211_WOWLAN_TCP_SRC_PORT]);
11483 /* allocate a socket and port for it and use it */
11484 err = __sock_create(wiphy_net(&rdev->wiphy), PF_INET, SOCK_STREAM,
11485 IPPROTO_TCP, &cfg->sock, 1);
11490 if (inet_csk_get_port(cfg->sock->sk, port)) {
11491 sock_release(cfg->sock);
11493 return -EADDRINUSE;
11495 cfg->src_port = inet_sk(cfg->sock->sk)->inet_num;
11501 cfg->src_port = port;
11504 cfg->dst_port = nla_get_u16(tb[NL80211_WOWLAN_TCP_DST_PORT]);
11505 cfg->payload_len = data_size;
11506 cfg->payload = (u8 *)cfg + sizeof(*cfg) + tokens_size;
11507 memcpy((void *)cfg->payload,
11508 nla_data(tb[NL80211_WOWLAN_TCP_DATA_PAYLOAD]),
11511 cfg->payload_seq = *seq;
11512 cfg->data_interval = nla_get_u32(tb[NL80211_WOWLAN_TCP_DATA_INTERVAL]);
11513 cfg->wake_len = wake_size;
11514 cfg->wake_data = (u8 *)cfg + sizeof(*cfg) + tokens_size + data_size;
11515 memcpy((void *)cfg->wake_data,
11516 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_PAYLOAD]),
11518 cfg->wake_mask = (u8 *)cfg + sizeof(*cfg) + tokens_size +
11519 data_size + wake_size;
11520 memcpy((void *)cfg->wake_mask,
11521 nla_data(tb[NL80211_WOWLAN_TCP_WAKE_MASK]),
11524 cfg->tokens_size = tokens_size;
11525 memcpy(&cfg->payload_tok, tok, sizeof(*tok) + tokens_size);
11533 static int nl80211_parse_wowlan_nd(struct cfg80211_registered_device *rdev,
11534 const struct wiphy_wowlan_support *wowlan,
11535 struct nlattr *attr,
11536 struct cfg80211_wowlan *trig)
11538 struct nlattr **tb;
11541 tb = kcalloc(NUM_NL80211_ATTR, sizeof(*tb), GFP_KERNEL);
11545 if (!(wowlan->flags & WIPHY_WOWLAN_NET_DETECT)) {
11550 err = nla_parse_nested_deprecated(tb, NL80211_ATTR_MAX, attr,
11551 nl80211_policy, NULL);
11555 trig->nd_config = nl80211_parse_sched_scan(&rdev->wiphy, NULL, tb,
11556 wowlan->max_nd_match_sets);
11557 err = PTR_ERR_OR_ZERO(trig->nd_config);
11559 trig->nd_config = NULL;
11566 static int nl80211_set_wowlan(struct sk_buff *skb, struct genl_info *info)
11568 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11569 struct nlattr *tb[NUM_NL80211_WOWLAN_TRIG];
11570 struct cfg80211_wowlan new_triggers = {};
11571 struct cfg80211_wowlan *ntrig;
11572 const struct wiphy_wowlan_support *wowlan = rdev->wiphy.wowlan;
11574 bool prev_enabled = rdev->wiphy.wowlan_config;
11575 bool regular = false;
11578 return -EOPNOTSUPP;
11580 if (!info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS]) {
11581 cfg80211_rdev_free_wowlan(rdev);
11582 rdev->wiphy.wowlan_config = NULL;
11586 err = nla_parse_nested_deprecated(tb, MAX_NL80211_WOWLAN_TRIG,
11587 info->attrs[NL80211_ATTR_WOWLAN_TRIGGERS],
11588 nl80211_wowlan_policy, info->extack);
11592 if (tb[NL80211_WOWLAN_TRIG_ANY]) {
11593 if (!(wowlan->flags & WIPHY_WOWLAN_ANY))
11595 new_triggers.any = true;
11598 if (tb[NL80211_WOWLAN_TRIG_DISCONNECT]) {
11599 if (!(wowlan->flags & WIPHY_WOWLAN_DISCONNECT))
11601 new_triggers.disconnect = true;
11605 if (tb[NL80211_WOWLAN_TRIG_MAGIC_PKT]) {
11606 if (!(wowlan->flags & WIPHY_WOWLAN_MAGIC_PKT))
11608 new_triggers.magic_pkt = true;
11612 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_SUPPORTED])
11615 if (tb[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE]) {
11616 if (!(wowlan->flags & WIPHY_WOWLAN_GTK_REKEY_FAILURE))
11618 new_triggers.gtk_rekey_failure = true;
11622 if (tb[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST]) {
11623 if (!(wowlan->flags & WIPHY_WOWLAN_EAP_IDENTITY_REQ))
11625 new_triggers.eap_identity_req = true;
11629 if (tb[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE]) {
11630 if (!(wowlan->flags & WIPHY_WOWLAN_4WAY_HANDSHAKE))
11632 new_triggers.four_way_handshake = true;
11636 if (tb[NL80211_WOWLAN_TRIG_RFKILL_RELEASE]) {
11637 if (!(wowlan->flags & WIPHY_WOWLAN_RFKILL_RELEASE))
11639 new_triggers.rfkill_release = true;
11643 if (tb[NL80211_WOWLAN_TRIG_PKT_PATTERN]) {
11644 struct nlattr *pat;
11645 int n_patterns = 0;
11646 int rem, pat_len, mask_len, pkt_offset;
11647 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11651 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11654 if (n_patterns > wowlan->n_patterns)
11657 new_triggers.patterns = kcalloc(n_patterns,
11658 sizeof(new_triggers.patterns[0]),
11660 if (!new_triggers.patterns)
11663 new_triggers.n_patterns = n_patterns;
11666 nla_for_each_nested(pat, tb[NL80211_WOWLAN_TRIG_PKT_PATTERN],
11670 err = nla_parse_nested_deprecated(pat_tb,
11671 MAX_NL80211_PKTPAT,
11673 nl80211_packet_pattern_policy,
11679 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11680 !pat_tb[NL80211_PKTPAT_PATTERN])
11682 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11683 mask_len = DIV_ROUND_UP(pat_len, 8);
11684 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11686 if (pat_len > wowlan->pattern_max_len ||
11687 pat_len < wowlan->pattern_min_len)
11690 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11693 pkt_offset = nla_get_u32(
11694 pat_tb[NL80211_PKTPAT_OFFSET]);
11695 if (pkt_offset > wowlan->max_pkt_offset)
11697 new_triggers.patterns[i].pkt_offset = pkt_offset;
11699 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11704 new_triggers.patterns[i].mask = mask_pat;
11705 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11707 mask_pat += mask_len;
11708 new_triggers.patterns[i].pattern = mask_pat;
11709 new_triggers.patterns[i].pattern_len = pat_len;
11711 nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11717 if (tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION]) {
11719 err = nl80211_parse_wowlan_tcp(
11720 rdev, tb[NL80211_WOWLAN_TRIG_TCP_CONNECTION],
11726 if (tb[NL80211_WOWLAN_TRIG_NET_DETECT]) {
11728 err = nl80211_parse_wowlan_nd(
11729 rdev, wowlan, tb[NL80211_WOWLAN_TRIG_NET_DETECT],
11735 /* The 'any' trigger means the device continues operating more or less
11736 * as in its normal operation mode and wakes up the host on most of the
11737 * normal interrupts (like packet RX, ...)
11738 * It therefore makes little sense to combine with the more constrained
11739 * wakeup trigger modes.
11741 if (new_triggers.any && regular) {
11746 ntrig = kmemdup(&new_triggers, sizeof(new_triggers), GFP_KERNEL);
11751 cfg80211_rdev_free_wowlan(rdev);
11752 rdev->wiphy.wowlan_config = ntrig;
11755 if (rdev->ops->set_wakeup &&
11756 prev_enabled != !!rdev->wiphy.wowlan_config)
11757 rdev_set_wakeup(rdev, rdev->wiphy.wowlan_config);
11761 for (i = 0; i < new_triggers.n_patterns; i++)
11762 kfree(new_triggers.patterns[i].mask);
11763 kfree(new_triggers.patterns);
11764 if (new_triggers.tcp && new_triggers.tcp->sock)
11765 sock_release(new_triggers.tcp->sock);
11766 kfree(new_triggers.tcp);
11767 kfree(new_triggers.nd_config);
11772 static int nl80211_send_coalesce_rules(struct sk_buff *msg,
11773 struct cfg80211_registered_device *rdev)
11775 struct nlattr *nl_pats, *nl_pat, *nl_rule, *nl_rules;
11777 struct cfg80211_coalesce_rules *rule;
11779 if (!rdev->coalesce->n_rules)
11782 nl_rules = nla_nest_start_noflag(msg, NL80211_ATTR_COALESCE_RULE);
11786 for (i = 0; i < rdev->coalesce->n_rules; i++) {
11787 nl_rule = nla_nest_start_noflag(msg, i + 1);
11791 rule = &rdev->coalesce->rules[i];
11792 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_DELAY,
11796 if (nla_put_u32(msg, NL80211_ATTR_COALESCE_RULE_CONDITION,
11800 nl_pats = nla_nest_start_noflag(msg,
11801 NL80211_ATTR_COALESCE_RULE_PKT_PATTERN);
11805 for (j = 0; j < rule->n_patterns; j++) {
11806 nl_pat = nla_nest_start_noflag(msg, j + 1);
11809 pat_len = rule->patterns[j].pattern_len;
11810 if (nla_put(msg, NL80211_PKTPAT_MASK,
11811 DIV_ROUND_UP(pat_len, 8),
11812 rule->patterns[j].mask) ||
11813 nla_put(msg, NL80211_PKTPAT_PATTERN, pat_len,
11814 rule->patterns[j].pattern) ||
11815 nla_put_u32(msg, NL80211_PKTPAT_OFFSET,
11816 rule->patterns[j].pkt_offset))
11818 nla_nest_end(msg, nl_pat);
11820 nla_nest_end(msg, nl_pats);
11821 nla_nest_end(msg, nl_rule);
11823 nla_nest_end(msg, nl_rules);
11828 static int nl80211_get_coalesce(struct sk_buff *skb, struct genl_info *info)
11830 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11831 struct sk_buff *msg;
11834 if (!rdev->wiphy.coalesce)
11835 return -EOPNOTSUPP;
11837 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
11841 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
11842 NL80211_CMD_GET_COALESCE);
11844 goto nla_put_failure;
11846 if (rdev->coalesce && nl80211_send_coalesce_rules(msg, rdev))
11847 goto nla_put_failure;
11849 genlmsg_end(msg, hdr);
11850 return genlmsg_reply(msg, info);
11857 void cfg80211_rdev_free_coalesce(struct cfg80211_registered_device *rdev)
11859 struct cfg80211_coalesce *coalesce = rdev->coalesce;
11861 struct cfg80211_coalesce_rules *rule;
11866 for (i = 0; i < coalesce->n_rules; i++) {
11867 rule = &coalesce->rules[i];
11868 for (j = 0; j < rule->n_patterns; j++)
11869 kfree(rule->patterns[j].mask);
11870 kfree(rule->patterns);
11872 kfree(coalesce->rules);
11874 rdev->coalesce = NULL;
11877 static int nl80211_parse_coalesce_rule(struct cfg80211_registered_device *rdev,
11878 struct nlattr *rule,
11879 struct cfg80211_coalesce_rules *new_rule)
11882 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11883 struct nlattr *tb[NUM_NL80211_ATTR_COALESCE_RULE], *pat;
11884 int rem, pat_len, mask_len, pkt_offset, n_patterns = 0;
11885 struct nlattr *pat_tb[NUM_NL80211_PKTPAT];
11887 err = nla_parse_nested_deprecated(tb, NL80211_ATTR_COALESCE_RULE_MAX,
11888 rule, nl80211_coalesce_policy, NULL);
11892 if (tb[NL80211_ATTR_COALESCE_RULE_DELAY])
11894 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_DELAY]);
11895 if (new_rule->delay > coalesce->max_delay)
11898 if (tb[NL80211_ATTR_COALESCE_RULE_CONDITION])
11899 new_rule->condition =
11900 nla_get_u32(tb[NL80211_ATTR_COALESCE_RULE_CONDITION]);
11902 if (!tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN])
11905 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11908 if (n_patterns > coalesce->n_patterns)
11911 new_rule->patterns = kcalloc(n_patterns, sizeof(new_rule->patterns[0]),
11913 if (!new_rule->patterns)
11916 new_rule->n_patterns = n_patterns;
11919 nla_for_each_nested(pat, tb[NL80211_ATTR_COALESCE_RULE_PKT_PATTERN],
11923 err = nla_parse_nested_deprecated(pat_tb, MAX_NL80211_PKTPAT,
11925 nl80211_packet_pattern_policy,
11930 if (!pat_tb[NL80211_PKTPAT_MASK] ||
11931 !pat_tb[NL80211_PKTPAT_PATTERN])
11933 pat_len = nla_len(pat_tb[NL80211_PKTPAT_PATTERN]);
11934 mask_len = DIV_ROUND_UP(pat_len, 8);
11935 if (nla_len(pat_tb[NL80211_PKTPAT_MASK]) != mask_len)
11937 if (pat_len > coalesce->pattern_max_len ||
11938 pat_len < coalesce->pattern_min_len)
11941 if (!pat_tb[NL80211_PKTPAT_OFFSET])
11944 pkt_offset = nla_get_u32(pat_tb[NL80211_PKTPAT_OFFSET]);
11945 if (pkt_offset > coalesce->max_pkt_offset)
11947 new_rule->patterns[i].pkt_offset = pkt_offset;
11949 mask_pat = kmalloc(mask_len + pat_len, GFP_KERNEL);
11953 new_rule->patterns[i].mask = mask_pat;
11954 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_MASK]),
11957 mask_pat += mask_len;
11958 new_rule->patterns[i].pattern = mask_pat;
11959 new_rule->patterns[i].pattern_len = pat_len;
11960 memcpy(mask_pat, nla_data(pat_tb[NL80211_PKTPAT_PATTERN]),
11968 static int nl80211_set_coalesce(struct sk_buff *skb, struct genl_info *info)
11970 struct cfg80211_registered_device *rdev = info->user_ptr[0];
11971 const struct wiphy_coalesce_support *coalesce = rdev->wiphy.coalesce;
11972 struct cfg80211_coalesce new_coalesce = {};
11973 struct cfg80211_coalesce *n_coalesce;
11974 int err, rem_rule, n_rules = 0, i, j;
11975 struct nlattr *rule;
11976 struct cfg80211_coalesce_rules *tmp_rule;
11978 if (!rdev->wiphy.coalesce || !rdev->ops->set_coalesce)
11979 return -EOPNOTSUPP;
11981 if (!info->attrs[NL80211_ATTR_COALESCE_RULE]) {
11982 cfg80211_rdev_free_coalesce(rdev);
11983 rdev_set_coalesce(rdev, NULL);
11987 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
11990 if (n_rules > coalesce->n_rules)
11993 new_coalesce.rules = kcalloc(n_rules, sizeof(new_coalesce.rules[0]),
11995 if (!new_coalesce.rules)
11998 new_coalesce.n_rules = n_rules;
12001 nla_for_each_nested(rule, info->attrs[NL80211_ATTR_COALESCE_RULE],
12003 err = nl80211_parse_coalesce_rule(rdev, rule,
12004 &new_coalesce.rules[i]);
12011 err = rdev_set_coalesce(rdev, &new_coalesce);
12015 n_coalesce = kmemdup(&new_coalesce, sizeof(new_coalesce), GFP_KERNEL);
12020 cfg80211_rdev_free_coalesce(rdev);
12021 rdev->coalesce = n_coalesce;
12025 for (i = 0; i < new_coalesce.n_rules; i++) {
12026 tmp_rule = &new_coalesce.rules[i];
12027 for (j = 0; j < tmp_rule->n_patterns; j++)
12028 kfree(tmp_rule->patterns[j].mask);
12029 kfree(tmp_rule->patterns);
12031 kfree(new_coalesce.rules);
12036 static int nl80211_set_rekey_data(struct sk_buff *skb, struct genl_info *info)
12038 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12039 struct net_device *dev = info->user_ptr[1];
12040 struct wireless_dev *wdev = dev->ieee80211_ptr;
12041 struct nlattr *tb[NUM_NL80211_REKEY_DATA];
12042 struct cfg80211_gtk_rekey_data rekey_data;
12045 if (!info->attrs[NL80211_ATTR_REKEY_DATA])
12048 err = nla_parse_nested_deprecated(tb, MAX_NL80211_REKEY_DATA,
12049 info->attrs[NL80211_ATTR_REKEY_DATA],
12050 nl80211_rekey_policy, info->extack);
12054 if (!tb[NL80211_REKEY_DATA_REPLAY_CTR] || !tb[NL80211_REKEY_DATA_KEK] ||
12055 !tb[NL80211_REKEY_DATA_KCK])
12057 if (nla_len(tb[NL80211_REKEY_DATA_REPLAY_CTR]) != NL80211_REPLAY_CTR_LEN)
12059 if (nla_len(tb[NL80211_REKEY_DATA_KEK]) != NL80211_KEK_LEN)
12061 if (nla_len(tb[NL80211_REKEY_DATA_KCK]) != NL80211_KCK_LEN)
12064 rekey_data.kek = nla_data(tb[NL80211_REKEY_DATA_KEK]);
12065 rekey_data.kck = nla_data(tb[NL80211_REKEY_DATA_KCK]);
12066 rekey_data.replay_ctr = nla_data(tb[NL80211_REKEY_DATA_REPLAY_CTR]);
12069 if (!wdev->current_bss) {
12074 if (!rdev->ops->set_rekey_data) {
12079 err = rdev_set_rekey_data(rdev, dev, &rekey_data);
12085 static int nl80211_register_unexpected_frame(struct sk_buff *skb,
12086 struct genl_info *info)
12088 struct net_device *dev = info->user_ptr[1];
12089 struct wireless_dev *wdev = dev->ieee80211_ptr;
12091 if (wdev->iftype != NL80211_IFTYPE_AP &&
12092 wdev->iftype != NL80211_IFTYPE_P2P_GO)
12095 if (wdev->ap_unexpected_nlportid)
12098 wdev->ap_unexpected_nlportid = info->snd_portid;
12102 static int nl80211_probe_client(struct sk_buff *skb,
12103 struct genl_info *info)
12105 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12106 struct net_device *dev = info->user_ptr[1];
12107 struct wireless_dev *wdev = dev->ieee80211_ptr;
12108 struct sk_buff *msg;
12114 if (wdev->iftype != NL80211_IFTYPE_AP &&
12115 wdev->iftype != NL80211_IFTYPE_P2P_GO)
12116 return -EOPNOTSUPP;
12118 if (!info->attrs[NL80211_ATTR_MAC])
12121 if (!rdev->ops->probe_client)
12122 return -EOPNOTSUPP;
12124 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12128 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12129 NL80211_CMD_PROBE_CLIENT);
12135 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
12137 err = rdev_probe_client(rdev, dev, addr, &cookie);
12141 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
12143 goto nla_put_failure;
12145 genlmsg_end(msg, hdr);
12147 return genlmsg_reply(msg, info);
12156 static int nl80211_register_beacons(struct sk_buff *skb, struct genl_info *info)
12158 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12159 struct cfg80211_beacon_registration *reg, *nreg;
12162 if (!(rdev->wiphy.flags & WIPHY_FLAG_REPORTS_OBSS))
12163 return -EOPNOTSUPP;
12165 nreg = kzalloc(sizeof(*nreg), GFP_KERNEL);
12169 /* First, check if already registered. */
12170 spin_lock_bh(&rdev->beacon_registrations_lock);
12171 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
12172 if (reg->nlportid == info->snd_portid) {
12177 /* Add it to the list */
12178 nreg->nlportid = info->snd_portid;
12179 list_add(&nreg->list, &rdev->beacon_registrations);
12181 spin_unlock_bh(&rdev->beacon_registrations_lock);
12185 spin_unlock_bh(&rdev->beacon_registrations_lock);
12190 static int nl80211_start_p2p_device(struct sk_buff *skb, struct genl_info *info)
12192 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12193 struct wireless_dev *wdev = info->user_ptr[1];
12196 if (!rdev->ops->start_p2p_device)
12197 return -EOPNOTSUPP;
12199 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
12200 return -EOPNOTSUPP;
12202 if (wdev_running(wdev))
12205 if (rfkill_blocked(rdev->rfkill))
12208 err = rdev_start_p2p_device(rdev, wdev);
12212 wdev->is_running = true;
12218 static int nl80211_stop_p2p_device(struct sk_buff *skb, struct genl_info *info)
12220 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12221 struct wireless_dev *wdev = info->user_ptr[1];
12223 if (wdev->iftype != NL80211_IFTYPE_P2P_DEVICE)
12224 return -EOPNOTSUPP;
12226 if (!rdev->ops->stop_p2p_device)
12227 return -EOPNOTSUPP;
12229 cfg80211_stop_p2p_device(rdev, wdev);
12234 static int nl80211_start_nan(struct sk_buff *skb, struct genl_info *info)
12236 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12237 struct wireless_dev *wdev = info->user_ptr[1];
12238 struct cfg80211_nan_conf conf = {};
12241 if (wdev->iftype != NL80211_IFTYPE_NAN)
12242 return -EOPNOTSUPP;
12244 if (wdev_running(wdev))
12247 if (rfkill_blocked(rdev->rfkill))
12250 if (!info->attrs[NL80211_ATTR_NAN_MASTER_PREF])
12254 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12256 if (info->attrs[NL80211_ATTR_BANDS]) {
12257 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12259 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12260 return -EOPNOTSUPP;
12262 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12265 conf.bands = bands;
12268 err = rdev_start_nan(rdev, wdev, &conf);
12272 wdev->is_running = true;
12278 static int nl80211_stop_nan(struct sk_buff *skb, struct genl_info *info)
12280 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12281 struct wireless_dev *wdev = info->user_ptr[1];
12283 if (wdev->iftype != NL80211_IFTYPE_NAN)
12284 return -EOPNOTSUPP;
12286 cfg80211_stop_nan(rdev, wdev);
12291 static int validate_nan_filter(struct nlattr *filter_attr)
12293 struct nlattr *attr;
12294 int len = 0, n_entries = 0, rem;
12296 nla_for_each_nested(attr, filter_attr, rem) {
12297 len += nla_len(attr);
12307 static int handle_nan_filter(struct nlattr *attr_filter,
12308 struct cfg80211_nan_func *func,
12311 struct nlattr *attr;
12312 int n_entries, rem, i;
12313 struct cfg80211_nan_func_filter *filter;
12315 n_entries = validate_nan_filter(attr_filter);
12319 BUILD_BUG_ON(sizeof(*func->rx_filters) != sizeof(*func->tx_filters));
12321 filter = kcalloc(n_entries, sizeof(*func->rx_filters), GFP_KERNEL);
12326 nla_for_each_nested(attr, attr_filter, rem) {
12327 filter[i].filter = nla_memdup(attr, GFP_KERNEL);
12328 filter[i].len = nla_len(attr);
12332 func->num_tx_filters = n_entries;
12333 func->tx_filters = filter;
12335 func->num_rx_filters = n_entries;
12336 func->rx_filters = filter;
12342 static int nl80211_nan_add_func(struct sk_buff *skb,
12343 struct genl_info *info)
12345 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12346 struct wireless_dev *wdev = info->user_ptr[1];
12347 struct nlattr *tb[NUM_NL80211_NAN_FUNC_ATTR], *func_attr;
12348 struct cfg80211_nan_func *func;
12349 struct sk_buff *msg = NULL;
12353 if (wdev->iftype != NL80211_IFTYPE_NAN)
12354 return -EOPNOTSUPP;
12356 if (!wdev_running(wdev))
12359 if (!info->attrs[NL80211_ATTR_NAN_FUNC])
12362 err = nla_parse_nested_deprecated(tb, NL80211_NAN_FUNC_ATTR_MAX,
12363 info->attrs[NL80211_ATTR_NAN_FUNC],
12364 nl80211_nan_func_policy,
12369 func = kzalloc(sizeof(*func), GFP_KERNEL);
12373 func->cookie = cfg80211_assign_cookie(rdev);
12375 if (!tb[NL80211_NAN_FUNC_TYPE] ||
12376 nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]) > NL80211_NAN_FUNC_MAX_TYPE) {
12382 func->type = nla_get_u8(tb[NL80211_NAN_FUNC_TYPE]);
12384 if (!tb[NL80211_NAN_FUNC_SERVICE_ID]) {
12389 memcpy(func->service_id, nla_data(tb[NL80211_NAN_FUNC_SERVICE_ID]),
12390 sizeof(func->service_id));
12392 func->close_range =
12393 nla_get_flag(tb[NL80211_NAN_FUNC_CLOSE_RANGE]);
12395 if (tb[NL80211_NAN_FUNC_SERVICE_INFO]) {
12396 func->serv_spec_info_len =
12397 nla_len(tb[NL80211_NAN_FUNC_SERVICE_INFO]);
12398 func->serv_spec_info =
12399 kmemdup(nla_data(tb[NL80211_NAN_FUNC_SERVICE_INFO]),
12400 func->serv_spec_info_len,
12402 if (!func->serv_spec_info) {
12408 if (tb[NL80211_NAN_FUNC_TTL])
12409 func->ttl = nla_get_u32(tb[NL80211_NAN_FUNC_TTL]);
12411 switch (func->type) {
12412 case NL80211_NAN_FUNC_PUBLISH:
12413 if (!tb[NL80211_NAN_FUNC_PUBLISH_TYPE]) {
12418 func->publish_type =
12419 nla_get_u8(tb[NL80211_NAN_FUNC_PUBLISH_TYPE]);
12420 func->publish_bcast =
12421 nla_get_flag(tb[NL80211_NAN_FUNC_PUBLISH_BCAST]);
12423 if ((!(func->publish_type & NL80211_NAN_SOLICITED_PUBLISH)) &&
12424 func->publish_bcast) {
12429 case NL80211_NAN_FUNC_SUBSCRIBE:
12430 func->subscribe_active =
12431 nla_get_flag(tb[NL80211_NAN_FUNC_SUBSCRIBE_ACTIVE]);
12433 case NL80211_NAN_FUNC_FOLLOW_UP:
12434 if (!tb[NL80211_NAN_FUNC_FOLLOW_UP_ID] ||
12435 !tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID] ||
12436 !tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]) {
12441 func->followup_id =
12442 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_ID]);
12443 func->followup_reqid =
12444 nla_get_u8(tb[NL80211_NAN_FUNC_FOLLOW_UP_REQ_ID]);
12445 memcpy(func->followup_dest.addr,
12446 nla_data(tb[NL80211_NAN_FUNC_FOLLOW_UP_DEST]),
12447 sizeof(func->followup_dest.addr));
12458 if (tb[NL80211_NAN_FUNC_SRF]) {
12459 struct nlattr *srf_tb[NUM_NL80211_NAN_SRF_ATTR];
12461 err = nla_parse_nested_deprecated(srf_tb,
12462 NL80211_NAN_SRF_ATTR_MAX,
12463 tb[NL80211_NAN_FUNC_SRF],
12464 nl80211_nan_srf_policy,
12469 func->srf_include =
12470 nla_get_flag(srf_tb[NL80211_NAN_SRF_INCLUDE]);
12472 if (srf_tb[NL80211_NAN_SRF_BF]) {
12473 if (srf_tb[NL80211_NAN_SRF_MAC_ADDRS] ||
12474 !srf_tb[NL80211_NAN_SRF_BF_IDX]) {
12480 nla_len(srf_tb[NL80211_NAN_SRF_BF]);
12482 kmemdup(nla_data(srf_tb[NL80211_NAN_SRF_BF]),
12483 func->srf_bf_len, GFP_KERNEL);
12484 if (!func->srf_bf) {
12490 nla_get_u8(srf_tb[NL80211_NAN_SRF_BF_IDX]);
12492 struct nlattr *attr, *mac_attr =
12493 srf_tb[NL80211_NAN_SRF_MAC_ADDRS];
12494 int n_entries, rem, i = 0;
12501 n_entries = validate_acl_mac_addrs(mac_attr);
12502 if (n_entries <= 0) {
12507 func->srf_num_macs = n_entries;
12509 kcalloc(n_entries, sizeof(*func->srf_macs),
12511 if (!func->srf_macs) {
12516 nla_for_each_nested(attr, mac_attr, rem)
12517 memcpy(func->srf_macs[i++].addr, nla_data(attr),
12518 sizeof(*func->srf_macs));
12522 if (tb[NL80211_NAN_FUNC_TX_MATCH_FILTER]) {
12523 err = handle_nan_filter(tb[NL80211_NAN_FUNC_TX_MATCH_FILTER],
12529 if (tb[NL80211_NAN_FUNC_RX_MATCH_FILTER]) {
12530 err = handle_nan_filter(tb[NL80211_NAN_FUNC_RX_MATCH_FILTER],
12536 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12542 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12543 NL80211_CMD_ADD_NAN_FUNCTION);
12544 /* This can't really happen - we just allocated 4KB */
12545 if (WARN_ON(!hdr)) {
12550 err = rdev_add_nan_func(rdev, wdev, func);
12553 cfg80211_free_nan_func(func);
12558 /* propagate the instance id and cookie to userspace */
12559 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, func->cookie,
12561 goto nla_put_failure;
12563 func_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_FUNC);
12565 goto nla_put_failure;
12567 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID,
12568 func->instance_id))
12569 goto nla_put_failure;
12571 nla_nest_end(msg, func_attr);
12573 genlmsg_end(msg, hdr);
12574 return genlmsg_reply(msg, info);
12581 static int nl80211_nan_del_func(struct sk_buff *skb,
12582 struct genl_info *info)
12584 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12585 struct wireless_dev *wdev = info->user_ptr[1];
12588 if (wdev->iftype != NL80211_IFTYPE_NAN)
12589 return -EOPNOTSUPP;
12591 if (!wdev_running(wdev))
12594 if (!info->attrs[NL80211_ATTR_COOKIE])
12597 cookie = nla_get_u64(info->attrs[NL80211_ATTR_COOKIE]);
12599 rdev_del_nan_func(rdev, wdev, cookie);
12604 static int nl80211_nan_change_config(struct sk_buff *skb,
12605 struct genl_info *info)
12607 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12608 struct wireless_dev *wdev = info->user_ptr[1];
12609 struct cfg80211_nan_conf conf = {};
12612 if (wdev->iftype != NL80211_IFTYPE_NAN)
12613 return -EOPNOTSUPP;
12615 if (!wdev_running(wdev))
12618 if (info->attrs[NL80211_ATTR_NAN_MASTER_PREF]) {
12620 nla_get_u8(info->attrs[NL80211_ATTR_NAN_MASTER_PREF]);
12621 if (conf.master_pref <= 1 || conf.master_pref == 255)
12624 changed |= CFG80211_NAN_CONF_CHANGED_PREF;
12627 if (info->attrs[NL80211_ATTR_BANDS]) {
12628 u32 bands = nla_get_u32(info->attrs[NL80211_ATTR_BANDS]);
12630 if (bands & ~(u32)wdev->wiphy->nan_supported_bands)
12631 return -EOPNOTSUPP;
12633 if (bands && !(bands & BIT(NL80211_BAND_2GHZ)))
12636 conf.bands = bands;
12637 changed |= CFG80211_NAN_CONF_CHANGED_BANDS;
12643 return rdev_nan_change_conf(rdev, wdev, &conf, changed);
12646 void cfg80211_nan_match(struct wireless_dev *wdev,
12647 struct cfg80211_nan_match_params *match, gfp_t gfp)
12649 struct wiphy *wiphy = wdev->wiphy;
12650 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12651 struct nlattr *match_attr, *local_func_attr, *peer_func_attr;
12652 struct sk_buff *msg;
12655 if (WARN_ON(!match->inst_id || !match->peer_inst_id || !match->addr))
12658 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12662 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NAN_MATCH);
12668 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12669 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12670 wdev->netdev->ifindex)) ||
12671 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12673 goto nla_put_failure;
12675 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, match->cookie,
12676 NL80211_ATTR_PAD) ||
12677 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, match->addr))
12678 goto nla_put_failure;
12680 match_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_MATCH);
12682 goto nla_put_failure;
12684 local_func_attr = nla_nest_start_noflag(msg,
12685 NL80211_NAN_MATCH_FUNC_LOCAL);
12686 if (!local_func_attr)
12687 goto nla_put_failure;
12689 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->inst_id))
12690 goto nla_put_failure;
12692 nla_nest_end(msg, local_func_attr);
12694 peer_func_attr = nla_nest_start_noflag(msg,
12695 NL80211_NAN_MATCH_FUNC_PEER);
12696 if (!peer_func_attr)
12697 goto nla_put_failure;
12699 if (nla_put_u8(msg, NL80211_NAN_FUNC_TYPE, match->type) ||
12700 nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, match->peer_inst_id))
12701 goto nla_put_failure;
12703 if (match->info && match->info_len &&
12704 nla_put(msg, NL80211_NAN_FUNC_SERVICE_INFO, match->info_len,
12706 goto nla_put_failure;
12708 nla_nest_end(msg, peer_func_attr);
12709 nla_nest_end(msg, match_attr);
12710 genlmsg_end(msg, hdr);
12712 if (!wdev->owner_nlportid)
12713 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12714 msg, 0, NL80211_MCGRP_NAN, gfp);
12716 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12717 wdev->owner_nlportid);
12724 EXPORT_SYMBOL(cfg80211_nan_match);
12726 void cfg80211_nan_func_terminated(struct wireless_dev *wdev,
12728 enum nl80211_nan_func_term_reason reason,
12729 u64 cookie, gfp_t gfp)
12731 struct wiphy *wiphy = wdev->wiphy;
12732 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
12733 struct sk_buff *msg;
12734 struct nlattr *func_attr;
12737 if (WARN_ON(!inst_id))
12740 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
12744 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DEL_NAN_FUNCTION);
12750 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
12751 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
12752 wdev->netdev->ifindex)) ||
12753 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
12755 goto nla_put_failure;
12757 if (nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
12759 goto nla_put_failure;
12761 func_attr = nla_nest_start_noflag(msg, NL80211_ATTR_NAN_FUNC);
12763 goto nla_put_failure;
12765 if (nla_put_u8(msg, NL80211_NAN_FUNC_INSTANCE_ID, inst_id) ||
12766 nla_put_u8(msg, NL80211_NAN_FUNC_TERM_REASON, reason))
12767 goto nla_put_failure;
12769 nla_nest_end(msg, func_attr);
12770 genlmsg_end(msg, hdr);
12772 if (!wdev->owner_nlportid)
12773 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy),
12774 msg, 0, NL80211_MCGRP_NAN, gfp);
12776 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
12777 wdev->owner_nlportid);
12784 EXPORT_SYMBOL(cfg80211_nan_func_terminated);
12786 static int nl80211_get_protocol_features(struct sk_buff *skb,
12787 struct genl_info *info)
12790 struct sk_buff *msg;
12792 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
12796 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
12797 NL80211_CMD_GET_PROTOCOL_FEATURES);
12799 goto nla_put_failure;
12801 if (nla_put_u32(msg, NL80211_ATTR_PROTOCOL_FEATURES,
12802 NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP))
12803 goto nla_put_failure;
12805 genlmsg_end(msg, hdr);
12806 return genlmsg_reply(msg, info);
12813 static int nl80211_update_ft_ies(struct sk_buff *skb, struct genl_info *info)
12815 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12816 struct cfg80211_update_ft_ies_params ft_params;
12817 struct net_device *dev = info->user_ptr[1];
12819 if (!rdev->ops->update_ft_ies)
12820 return -EOPNOTSUPP;
12822 if (!info->attrs[NL80211_ATTR_MDID] ||
12823 !info->attrs[NL80211_ATTR_IE])
12826 memset(&ft_params, 0, sizeof(ft_params));
12827 ft_params.md = nla_get_u16(info->attrs[NL80211_ATTR_MDID]);
12828 ft_params.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
12829 ft_params.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
12831 return rdev_update_ft_ies(rdev, dev, &ft_params);
12834 static int nl80211_crit_protocol_start(struct sk_buff *skb,
12835 struct genl_info *info)
12837 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12838 struct wireless_dev *wdev = info->user_ptr[1];
12839 enum nl80211_crit_proto_id proto = NL80211_CRIT_PROTO_UNSPEC;
12843 if (!rdev->ops->crit_proto_start)
12844 return -EOPNOTSUPP;
12846 if (WARN_ON(!rdev->ops->crit_proto_stop))
12849 if (rdev->crit_proto_nlportid)
12852 /* determine protocol if provided */
12853 if (info->attrs[NL80211_ATTR_CRIT_PROT_ID])
12854 proto = nla_get_u16(info->attrs[NL80211_ATTR_CRIT_PROT_ID]);
12856 if (proto >= NUM_NL80211_CRIT_PROTO)
12859 /* timeout must be provided */
12860 if (!info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION])
12864 nla_get_u16(info->attrs[NL80211_ATTR_MAX_CRIT_PROT_DURATION]);
12866 if (duration > NL80211_CRIT_PROTO_MAX_DURATION)
12869 ret = rdev_crit_proto_start(rdev, wdev, proto, duration);
12871 rdev->crit_proto_nlportid = info->snd_portid;
12876 static int nl80211_crit_protocol_stop(struct sk_buff *skb,
12877 struct genl_info *info)
12879 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12880 struct wireless_dev *wdev = info->user_ptr[1];
12882 if (!rdev->ops->crit_proto_stop)
12883 return -EOPNOTSUPP;
12885 if (rdev->crit_proto_nlportid) {
12886 rdev->crit_proto_nlportid = 0;
12887 rdev_crit_proto_stop(rdev, wdev);
12892 static int nl80211_vendor_check_policy(const struct wiphy_vendor_command *vcmd,
12893 struct nlattr *attr,
12894 struct netlink_ext_ack *extack)
12896 if (vcmd->policy == VENDOR_CMD_RAW_DATA) {
12897 if (attr->nla_type & NLA_F_NESTED) {
12898 NL_SET_ERR_MSG_ATTR(extack, attr,
12899 "unexpected nested data");
12906 if (!(attr->nla_type & NLA_F_NESTED)) {
12907 NL_SET_ERR_MSG_ATTR(extack, attr, "expected nested data");
12911 return nla_validate_nested(attr, vcmd->maxattr, vcmd->policy, extack);
12914 static int nl80211_vendor_cmd(struct sk_buff *skb, struct genl_info *info)
12916 struct cfg80211_registered_device *rdev = info->user_ptr[0];
12917 struct wireless_dev *wdev =
12918 __cfg80211_wdev_from_attrs(genl_info_net(info), info->attrs);
12922 if (!rdev->wiphy.vendor_commands)
12923 return -EOPNOTSUPP;
12925 if (IS_ERR(wdev)) {
12926 err = PTR_ERR(wdev);
12927 if (err != -EINVAL)
12930 } else if (wdev->wiphy != &rdev->wiphy) {
12934 if (!info->attrs[NL80211_ATTR_VENDOR_ID] ||
12935 !info->attrs[NL80211_ATTR_VENDOR_SUBCMD])
12938 vid = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_ID]);
12939 subcmd = nla_get_u32(info->attrs[NL80211_ATTR_VENDOR_SUBCMD]);
12940 for (i = 0; i < rdev->wiphy.n_vendor_commands; i++) {
12941 const struct wiphy_vendor_command *vcmd;
12945 vcmd = &rdev->wiphy.vendor_commands[i];
12947 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
12950 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
12951 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
12954 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
12958 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
12959 if (!wdev_running(wdev))
12964 return -EOPNOTSUPP;
12969 if (info->attrs[NL80211_ATTR_VENDOR_DATA]) {
12970 data = nla_data(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12971 len = nla_len(info->attrs[NL80211_ATTR_VENDOR_DATA]);
12973 err = nl80211_vendor_check_policy(vcmd,
12974 info->attrs[NL80211_ATTR_VENDOR_DATA],
12980 rdev->cur_cmd_info = info;
12981 err = vcmd->doit(&rdev->wiphy, wdev, data, len);
12982 rdev->cur_cmd_info = NULL;
12986 return -EOPNOTSUPP;
12989 static int nl80211_prepare_vendor_dump(struct sk_buff *skb,
12990 struct netlink_callback *cb,
12991 struct cfg80211_registered_device **rdev,
12992 struct wireless_dev **wdev)
12994 struct nlattr **attrbuf;
13000 unsigned int data_len = 0;
13003 /* subtract the 1 again here */
13004 struct wiphy *wiphy = wiphy_idx_to_wiphy(cb->args[0] - 1);
13005 struct wireless_dev *tmp;
13009 *rdev = wiphy_to_rdev(wiphy);
13013 list_for_each_entry(tmp, &wiphy->wdev_list, list) {
13014 if (tmp->identifier == cb->args[1] - 1) {
13021 /* keep rtnl locked in successful case */
13025 attrbuf = kcalloc(NUM_NL80211_ATTR, sizeof(*attrbuf), GFP_KERNEL);
13029 err = nlmsg_parse_deprecated(cb->nlh,
13030 GENL_HDRLEN + nl80211_fam.hdrsize,
13031 attrbuf, nl80211_fam.maxattr,
13032 nl80211_policy, NULL);
13036 if (!attrbuf[NL80211_ATTR_VENDOR_ID] ||
13037 !attrbuf[NL80211_ATTR_VENDOR_SUBCMD]) {
13042 *wdev = __cfg80211_wdev_from_attrs(sock_net(skb->sk), attrbuf);
13046 *rdev = __cfg80211_rdev_from_attrs(sock_net(skb->sk), attrbuf);
13047 if (IS_ERR(*rdev)) {
13048 err = PTR_ERR(*rdev);
13052 vid = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_ID]);
13053 subcmd = nla_get_u32(attrbuf[NL80211_ATTR_VENDOR_SUBCMD]);
13055 for (i = 0; i < (*rdev)->wiphy.n_vendor_commands; i++) {
13056 const struct wiphy_vendor_command *vcmd;
13058 vcmd = &(*rdev)->wiphy.vendor_commands[i];
13060 if (vcmd->info.vendor_id != vid || vcmd->info.subcmd != subcmd)
13063 if (!vcmd->dumpit) {
13072 if (vcmd_idx < 0) {
13077 if (attrbuf[NL80211_ATTR_VENDOR_DATA]) {
13078 data = nla_data(attrbuf[NL80211_ATTR_VENDOR_DATA]);
13079 data_len = nla_len(attrbuf[NL80211_ATTR_VENDOR_DATA]);
13081 err = nl80211_vendor_check_policy(
13082 &(*rdev)->wiphy.vendor_commands[vcmd_idx],
13083 attrbuf[NL80211_ATTR_VENDOR_DATA],
13089 /* 0 is the first index - add 1 to parse only once */
13090 cb->args[0] = (*rdev)->wiphy_idx + 1;
13091 /* add 1 to know if it was NULL */
13092 cb->args[1] = *wdev ? (*wdev)->identifier + 1 : 0;
13093 cb->args[2] = vcmd_idx;
13094 cb->args[3] = (unsigned long)data;
13095 cb->args[4] = data_len;
13097 /* keep rtnl locked in successful case */
13104 static int nl80211_vendor_cmd_dump(struct sk_buff *skb,
13105 struct netlink_callback *cb)
13107 struct cfg80211_registered_device *rdev;
13108 struct wireless_dev *wdev;
13109 unsigned int vcmd_idx;
13110 const struct wiphy_vendor_command *vcmd;
13114 struct nlattr *vendor_data;
13117 err = nl80211_prepare_vendor_dump(skb, cb, &rdev, &wdev);
13121 vcmd_idx = cb->args[2];
13122 data = (void *)cb->args[3];
13123 data_len = cb->args[4];
13124 vcmd = &rdev->wiphy.vendor_commands[vcmd_idx];
13126 if (vcmd->flags & (WIPHY_VENDOR_CMD_NEED_WDEV |
13127 WIPHY_VENDOR_CMD_NEED_NETDEV)) {
13132 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_NETDEV &&
13138 if (vcmd->flags & WIPHY_VENDOR_CMD_NEED_RUNNING) {
13139 if (!wdev_running(wdev)) {
13147 void *hdr = nl80211hdr_put(skb, NETLINK_CB(cb->skb).portid,
13148 cb->nlh->nlmsg_seq, NLM_F_MULTI,
13149 NL80211_CMD_VENDOR);
13153 if (nla_put_u32(skb, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
13154 (wdev && nla_put_u64_64bit(skb, NL80211_ATTR_WDEV,
13156 NL80211_ATTR_PAD))) {
13157 genlmsg_cancel(skb, hdr);
13161 vendor_data = nla_nest_start_noflag(skb,
13162 NL80211_ATTR_VENDOR_DATA);
13163 if (!vendor_data) {
13164 genlmsg_cancel(skb, hdr);
13168 err = vcmd->dumpit(&rdev->wiphy, wdev, skb, data, data_len,
13169 (unsigned long *)&cb->args[5]);
13170 nla_nest_end(skb, vendor_data);
13172 if (err == -ENOBUFS || err == -ENOENT) {
13173 genlmsg_cancel(skb, hdr);
13176 genlmsg_cancel(skb, hdr);
13180 genlmsg_end(skb, hdr);
13189 struct sk_buff *__cfg80211_alloc_reply_skb(struct wiphy *wiphy,
13190 enum nl80211_commands cmd,
13191 enum nl80211_attrs attr,
13194 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
13196 if (WARN_ON(!rdev->cur_cmd_info))
13199 return __cfg80211_alloc_vendor_skb(rdev, NULL, approxlen,
13200 rdev->cur_cmd_info->snd_portid,
13201 rdev->cur_cmd_info->snd_seq,
13202 cmd, attr, NULL, GFP_KERNEL);
13204 EXPORT_SYMBOL(__cfg80211_alloc_reply_skb);
13206 int cfg80211_vendor_cmd_reply(struct sk_buff *skb)
13208 struct cfg80211_registered_device *rdev = ((void **)skb->cb)[0];
13209 void *hdr = ((void **)skb->cb)[1];
13210 struct nlattr *data = ((void **)skb->cb)[2];
13212 /* clear CB data for netlink core to own from now on */
13213 memset(skb->cb, 0, sizeof(skb->cb));
13215 if (WARN_ON(!rdev->cur_cmd_info)) {
13220 nla_nest_end(skb, data);
13221 genlmsg_end(skb, hdr);
13222 return genlmsg_reply(skb, rdev->cur_cmd_info);
13224 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_reply);
13226 unsigned int cfg80211_vendor_cmd_get_sender(struct wiphy *wiphy)
13228 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
13230 if (WARN_ON(!rdev->cur_cmd_info))
13233 return rdev->cur_cmd_info->snd_portid;
13235 EXPORT_SYMBOL_GPL(cfg80211_vendor_cmd_get_sender);
13237 static int nl80211_set_qos_map(struct sk_buff *skb,
13238 struct genl_info *info)
13240 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13241 struct cfg80211_qos_map *qos_map = NULL;
13242 struct net_device *dev = info->user_ptr[1];
13243 u8 *pos, len, num_des, des_len, des;
13246 if (!rdev->ops->set_qos_map)
13247 return -EOPNOTSUPP;
13249 if (info->attrs[NL80211_ATTR_QOS_MAP]) {
13250 pos = nla_data(info->attrs[NL80211_ATTR_QOS_MAP]);
13251 len = nla_len(info->attrs[NL80211_ATTR_QOS_MAP]);
13253 if (len % 2 || len < IEEE80211_QOS_MAP_LEN_MIN ||
13254 len > IEEE80211_QOS_MAP_LEN_MAX)
13257 qos_map = kzalloc(sizeof(struct cfg80211_qos_map), GFP_KERNEL);
13261 num_des = (len - IEEE80211_QOS_MAP_LEN_MIN) >> 1;
13263 des_len = num_des *
13264 sizeof(struct cfg80211_dscp_exception);
13265 memcpy(qos_map->dscp_exception, pos, des_len);
13266 qos_map->num_des = num_des;
13267 for (des = 0; des < num_des; des++) {
13268 if (qos_map->dscp_exception[des].up > 7) {
13275 memcpy(qos_map->up, pos, IEEE80211_QOS_MAP_LEN_MIN);
13278 wdev_lock(dev->ieee80211_ptr);
13279 ret = nl80211_key_allowed(dev->ieee80211_ptr);
13281 ret = rdev_set_qos_map(rdev, dev, qos_map);
13282 wdev_unlock(dev->ieee80211_ptr);
13288 static int nl80211_add_tx_ts(struct sk_buff *skb, struct genl_info *info)
13290 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13291 struct net_device *dev = info->user_ptr[1];
13292 struct wireless_dev *wdev = dev->ieee80211_ptr;
13295 u16 admitted_time = 0;
13298 if (!(rdev->wiphy.features & NL80211_FEATURE_SUPPORTS_WMM_ADMISSION))
13299 return -EOPNOTSUPP;
13301 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC] ||
13302 !info->attrs[NL80211_ATTR_USER_PRIO])
13305 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
13306 up = nla_get_u8(info->attrs[NL80211_ATTR_USER_PRIO]);
13308 /* WMM uses TIDs 0-7 even for TSPEC */
13309 if (tsid >= IEEE80211_FIRST_TSPEC_TSID) {
13310 /* TODO: handle 802.11 TSPEC/admission control
13311 * need more attributes for that (e.g. BA session requirement);
13312 * change the WMM adminssion test above to allow both then
13317 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
13319 if (info->attrs[NL80211_ATTR_ADMITTED_TIME]) {
13321 nla_get_u16(info->attrs[NL80211_ATTR_ADMITTED_TIME]);
13322 if (!admitted_time)
13327 switch (wdev->iftype) {
13328 case NL80211_IFTYPE_STATION:
13329 case NL80211_IFTYPE_P2P_CLIENT:
13330 if (wdev->current_bss)
13339 err = rdev_add_tx_ts(rdev, dev, tsid, peer, up, admitted_time);
13346 static int nl80211_del_tx_ts(struct sk_buff *skb, struct genl_info *info)
13348 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13349 struct net_device *dev = info->user_ptr[1];
13350 struct wireless_dev *wdev = dev->ieee80211_ptr;
13355 if (!info->attrs[NL80211_ATTR_TSID] || !info->attrs[NL80211_ATTR_MAC])
13358 tsid = nla_get_u8(info->attrs[NL80211_ATTR_TSID]);
13359 peer = nla_data(info->attrs[NL80211_ATTR_MAC]);
13362 err = rdev_del_tx_ts(rdev, dev, tsid, peer);
13368 static int nl80211_tdls_channel_switch(struct sk_buff *skb,
13369 struct genl_info *info)
13371 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13372 struct net_device *dev = info->user_ptr[1];
13373 struct wireless_dev *wdev = dev->ieee80211_ptr;
13374 struct cfg80211_chan_def chandef = {};
13379 if (!rdev->ops->tdls_channel_switch ||
13380 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13381 return -EOPNOTSUPP;
13383 switch (dev->ieee80211_ptr->iftype) {
13384 case NL80211_IFTYPE_STATION:
13385 case NL80211_IFTYPE_P2P_CLIENT:
13388 return -EOPNOTSUPP;
13391 if (!info->attrs[NL80211_ATTR_MAC] ||
13392 !info->attrs[NL80211_ATTR_OPER_CLASS])
13395 err = nl80211_parse_chandef(rdev, info, &chandef);
13400 * Don't allow wide channels on the 2.4Ghz band, as per IEEE802.11-2012
13401 * section 10.22.6.2.1. Disallow 5/10Mhz channels as well for now, the
13402 * specification is not defined for them.
13404 if (chandef.chan->band == NL80211_BAND_2GHZ &&
13405 chandef.width != NL80211_CHAN_WIDTH_20_NOHT &&
13406 chandef.width != NL80211_CHAN_WIDTH_20)
13409 /* we will be active on the TDLS link */
13410 if (!cfg80211_reg_can_beacon_relax(&rdev->wiphy, &chandef,
13414 /* don't allow switching to DFS channels */
13415 if (cfg80211_chandef_dfs_required(wdev->wiphy, &chandef, wdev->iftype))
13418 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13419 oper_class = nla_get_u8(info->attrs[NL80211_ATTR_OPER_CLASS]);
13422 err = rdev_tdls_channel_switch(rdev, dev, addr, oper_class, &chandef);
13428 static int nl80211_tdls_cancel_channel_switch(struct sk_buff *skb,
13429 struct genl_info *info)
13431 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13432 struct net_device *dev = info->user_ptr[1];
13433 struct wireless_dev *wdev = dev->ieee80211_ptr;
13436 if (!rdev->ops->tdls_channel_switch ||
13437 !rdev->ops->tdls_cancel_channel_switch ||
13438 !(rdev->wiphy.features & NL80211_FEATURE_TDLS_CHANNEL_SWITCH))
13439 return -EOPNOTSUPP;
13441 switch (dev->ieee80211_ptr->iftype) {
13442 case NL80211_IFTYPE_STATION:
13443 case NL80211_IFTYPE_P2P_CLIENT:
13446 return -EOPNOTSUPP;
13449 if (!info->attrs[NL80211_ATTR_MAC])
13452 addr = nla_data(info->attrs[NL80211_ATTR_MAC]);
13455 rdev_tdls_cancel_channel_switch(rdev, dev, addr);
13461 static int nl80211_set_multicast_to_unicast(struct sk_buff *skb,
13462 struct genl_info *info)
13464 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13465 struct net_device *dev = info->user_ptr[1];
13466 struct wireless_dev *wdev = dev->ieee80211_ptr;
13467 const struct nlattr *nla;
13470 if (!rdev->ops->set_multicast_to_unicast)
13471 return -EOPNOTSUPP;
13473 if (wdev->iftype != NL80211_IFTYPE_AP &&
13474 wdev->iftype != NL80211_IFTYPE_P2P_GO)
13475 return -EOPNOTSUPP;
13477 nla = info->attrs[NL80211_ATTR_MULTICAST_TO_UNICAST_ENABLED];
13478 enabled = nla_get_flag(nla);
13480 return rdev_set_multicast_to_unicast(rdev, dev, enabled);
13483 static int nl80211_set_pmk(struct sk_buff *skb, struct genl_info *info)
13485 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13486 struct net_device *dev = info->user_ptr[1];
13487 struct wireless_dev *wdev = dev->ieee80211_ptr;
13488 struct cfg80211_pmk_conf pmk_conf = {};
13491 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13492 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13493 return -EOPNOTSUPP;
13495 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13496 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13497 return -EOPNOTSUPP;
13499 if (!info->attrs[NL80211_ATTR_MAC] || !info->attrs[NL80211_ATTR_PMK])
13503 if (!wdev->current_bss) {
13508 pmk_conf.aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13509 if (memcmp(pmk_conf.aa, wdev->current_bss->pub.bssid, ETH_ALEN)) {
13514 pmk_conf.pmk = nla_data(info->attrs[NL80211_ATTR_PMK]);
13515 pmk_conf.pmk_len = nla_len(info->attrs[NL80211_ATTR_PMK]);
13516 if (pmk_conf.pmk_len != WLAN_PMK_LEN &&
13517 pmk_conf.pmk_len != WLAN_PMK_LEN_SUITE_B_192) {
13522 if (info->attrs[NL80211_ATTR_PMKR0_NAME]) {
13523 int r0_name_len = nla_len(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13525 if (r0_name_len != WLAN_PMK_NAME_LEN) {
13530 pmk_conf.pmk_r0_name =
13531 nla_data(info->attrs[NL80211_ATTR_PMKR0_NAME]);
13534 ret = rdev_set_pmk(rdev, dev, &pmk_conf);
13540 static int nl80211_del_pmk(struct sk_buff *skb, struct genl_info *info)
13542 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13543 struct net_device *dev = info->user_ptr[1];
13544 struct wireless_dev *wdev = dev->ieee80211_ptr;
13548 if (wdev->iftype != NL80211_IFTYPE_STATION &&
13549 wdev->iftype != NL80211_IFTYPE_P2P_CLIENT)
13550 return -EOPNOTSUPP;
13552 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13553 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X))
13554 return -EOPNOTSUPP;
13556 if (!info->attrs[NL80211_ATTR_MAC])
13560 aa = nla_data(info->attrs[NL80211_ATTR_MAC]);
13561 ret = rdev_del_pmk(rdev, dev, aa);
13567 static int nl80211_external_auth(struct sk_buff *skb, struct genl_info *info)
13569 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13570 struct net_device *dev = info->user_ptr[1];
13571 struct cfg80211_external_auth_params params;
13573 if (!rdev->ops->external_auth)
13574 return -EOPNOTSUPP;
13576 if (!info->attrs[NL80211_ATTR_SSID] &&
13577 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_AP &&
13578 dev->ieee80211_ptr->iftype != NL80211_IFTYPE_P2P_GO)
13581 if (!info->attrs[NL80211_ATTR_BSSID])
13584 if (!info->attrs[NL80211_ATTR_STATUS_CODE])
13587 memset(¶ms, 0, sizeof(params));
13589 if (info->attrs[NL80211_ATTR_SSID]) {
13590 params.ssid.ssid_len = nla_len(info->attrs[NL80211_ATTR_SSID]);
13591 if (params.ssid.ssid_len == 0 ||
13592 params.ssid.ssid_len > IEEE80211_MAX_SSID_LEN)
13594 memcpy(params.ssid.ssid,
13595 nla_data(info->attrs[NL80211_ATTR_SSID]),
13596 params.ssid.ssid_len);
13599 memcpy(params.bssid, nla_data(info->attrs[NL80211_ATTR_BSSID]),
13602 params.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13604 if (info->attrs[NL80211_ATTR_PMKID])
13605 params.pmkid = nla_data(info->attrs[NL80211_ATTR_PMKID]);
13607 return rdev_external_auth(rdev, dev, ¶ms);
13610 static int nl80211_tx_control_port(struct sk_buff *skb, struct genl_info *info)
13612 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13613 struct net_device *dev = info->user_ptr[1];
13614 struct wireless_dev *wdev = dev->ieee80211_ptr;
13622 if (!wiphy_ext_feature_isset(&rdev->wiphy,
13623 NL80211_EXT_FEATURE_CONTROL_PORT_OVER_NL80211))
13624 return -EOPNOTSUPP;
13626 if (!rdev->ops->tx_control_port)
13627 return -EOPNOTSUPP;
13629 if (!info->attrs[NL80211_ATTR_FRAME] ||
13630 !info->attrs[NL80211_ATTR_MAC] ||
13631 !info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]) {
13632 GENL_SET_ERR_MSG(info, "Frame, MAC or ethertype missing");
13638 switch (wdev->iftype) {
13639 case NL80211_IFTYPE_AP:
13640 case NL80211_IFTYPE_P2P_GO:
13641 case NL80211_IFTYPE_MESH_POINT:
13643 case NL80211_IFTYPE_ADHOC:
13644 case NL80211_IFTYPE_STATION:
13645 case NL80211_IFTYPE_P2P_CLIENT:
13646 if (wdev->current_bss)
13657 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13658 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13659 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13660 proto = nla_get_u16(info->attrs[NL80211_ATTR_CONTROL_PORT_ETHERTYPE]);
13662 nla_get_flag(info->attrs[NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT]);
13664 return rdev_tx_control_port(rdev, dev, buf, len,
13665 dest, cpu_to_be16(proto), noencrypt);
13672 static int nl80211_get_ftm_responder_stats(struct sk_buff *skb,
13673 struct genl_info *info)
13675 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13676 struct net_device *dev = info->user_ptr[1];
13677 struct wireless_dev *wdev = dev->ieee80211_ptr;
13678 struct cfg80211_ftm_responder_stats ftm_stats = {};
13679 struct sk_buff *msg;
13681 struct nlattr *ftm_stats_attr;
13684 if (wdev->iftype != NL80211_IFTYPE_AP || !wdev->beacon_interval)
13685 return -EOPNOTSUPP;
13687 err = rdev_get_ftm_responder_stats(rdev, dev, &ftm_stats);
13691 if (!ftm_stats.filled)
13694 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
13698 hdr = nl80211hdr_put(msg, info->snd_portid, info->snd_seq, 0,
13699 NL80211_CMD_GET_FTM_RESPONDER_STATS);
13701 goto nla_put_failure;
13703 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
13704 goto nla_put_failure;
13706 ftm_stats_attr = nla_nest_start_noflag(msg,
13707 NL80211_ATTR_FTM_RESPONDER_STATS);
13708 if (!ftm_stats_attr)
13709 goto nla_put_failure;
13711 #define SET_FTM(field, name, type) \
13712 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13713 nla_put_ ## type(msg, NL80211_FTM_STATS_ ## name, \
13714 ftm_stats.field)) \
13715 goto nla_put_failure; } while (0)
13716 #define SET_FTM_U64(field, name) \
13717 do { if ((ftm_stats.filled & BIT(NL80211_FTM_STATS_ ## name)) && \
13718 nla_put_u64_64bit(msg, NL80211_FTM_STATS_ ## name, \
13719 ftm_stats.field, NL80211_FTM_STATS_PAD)) \
13720 goto nla_put_failure; } while (0)
13722 SET_FTM(success_num, SUCCESS_NUM, u32);
13723 SET_FTM(partial_num, PARTIAL_NUM, u32);
13724 SET_FTM(failed_num, FAILED_NUM, u32);
13725 SET_FTM(asap_num, ASAP_NUM, u32);
13726 SET_FTM(non_asap_num, NON_ASAP_NUM, u32);
13727 SET_FTM_U64(total_duration_ms, TOTAL_DURATION_MSEC);
13728 SET_FTM(unknown_triggers_num, UNKNOWN_TRIGGERS_NUM, u32);
13729 SET_FTM(reschedule_requests_num, RESCHEDULE_REQUESTS_NUM, u32);
13730 SET_FTM(out_of_window_triggers_num, OUT_OF_WINDOW_TRIGGERS_NUM, u32);
13733 nla_nest_end(msg, ftm_stats_attr);
13735 genlmsg_end(msg, hdr);
13736 return genlmsg_reply(msg, info);
13743 static int nl80211_update_owe_info(struct sk_buff *skb, struct genl_info *info)
13745 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13746 struct cfg80211_update_owe_info owe_info;
13747 struct net_device *dev = info->user_ptr[1];
13749 if (!rdev->ops->update_owe_info)
13750 return -EOPNOTSUPP;
13752 if (!info->attrs[NL80211_ATTR_STATUS_CODE] ||
13753 !info->attrs[NL80211_ATTR_MAC])
13756 memset(&owe_info, 0, sizeof(owe_info));
13757 owe_info.status = nla_get_u16(info->attrs[NL80211_ATTR_STATUS_CODE]);
13758 nla_memcpy(owe_info.peer, info->attrs[NL80211_ATTR_MAC], ETH_ALEN);
13760 if (info->attrs[NL80211_ATTR_IE]) {
13761 owe_info.ie = nla_data(info->attrs[NL80211_ATTR_IE]);
13762 owe_info.ie_len = nla_len(info->attrs[NL80211_ATTR_IE]);
13765 return rdev_update_owe_info(rdev, dev, &owe_info);
13768 static int nl80211_probe_mesh_link(struct sk_buff *skb, struct genl_info *info)
13770 struct cfg80211_registered_device *rdev = info->user_ptr[0];
13771 struct net_device *dev = info->user_ptr[1];
13772 struct wireless_dev *wdev = dev->ieee80211_ptr;
13773 struct station_info sinfo = {};
13779 if (!rdev->ops->probe_mesh_link || !rdev->ops->get_station)
13780 return -EOPNOTSUPP;
13782 if (!info->attrs[NL80211_ATTR_MAC] ||
13783 !info->attrs[NL80211_ATTR_FRAME]) {
13784 GENL_SET_ERR_MSG(info, "Frame or MAC missing");
13788 if (wdev->iftype != NL80211_IFTYPE_MESH_POINT)
13789 return -EOPNOTSUPP;
13791 dest = nla_data(info->attrs[NL80211_ATTR_MAC]);
13792 buf = nla_data(info->attrs[NL80211_ATTR_FRAME]);
13793 len = nla_len(info->attrs[NL80211_ATTR_FRAME]);
13795 if (len < sizeof(struct ethhdr))
13798 if (!ether_addr_equal(buf, dest) || is_multicast_ether_addr(buf) ||
13799 !ether_addr_equal(buf + ETH_ALEN, dev->dev_addr))
13802 err = rdev_get_station(rdev, dev, dest, &sinfo);
13806 cfg80211_sinfo_release_content(&sinfo);
13808 return rdev_probe_mesh_link(rdev, dev, dest, buf, len);
13811 #define NL80211_FLAG_NEED_WIPHY 0x01
13812 #define NL80211_FLAG_NEED_NETDEV 0x02
13813 #define NL80211_FLAG_NEED_RTNL 0x04
13814 #define NL80211_FLAG_CHECK_NETDEV_UP 0x08
13815 #define NL80211_FLAG_NEED_NETDEV_UP (NL80211_FLAG_NEED_NETDEV |\
13816 NL80211_FLAG_CHECK_NETDEV_UP)
13817 #define NL80211_FLAG_NEED_WDEV 0x10
13818 /* If a netdev is associated, it must be UP, P2P must be started */
13819 #define NL80211_FLAG_NEED_WDEV_UP (NL80211_FLAG_NEED_WDEV |\
13820 NL80211_FLAG_CHECK_NETDEV_UP)
13821 #define NL80211_FLAG_CLEAR_SKB 0x20
13823 static int nl80211_pre_doit(const struct genl_ops *ops, struct sk_buff *skb,
13824 struct genl_info *info)
13826 struct cfg80211_registered_device *rdev;
13827 struct wireless_dev *wdev;
13828 struct net_device *dev;
13829 bool rtnl = ops->internal_flags & NL80211_FLAG_NEED_RTNL;
13834 if (ops->internal_flags & NL80211_FLAG_NEED_WIPHY) {
13835 rdev = cfg80211_get_dev_from_info(genl_info_net(info), info);
13836 if (IS_ERR(rdev)) {
13839 return PTR_ERR(rdev);
13841 info->user_ptr[0] = rdev;
13842 } else if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV ||
13843 ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13846 wdev = __cfg80211_wdev_from_attrs(genl_info_net(info),
13848 if (IS_ERR(wdev)) {
13851 return PTR_ERR(wdev);
13854 dev = wdev->netdev;
13855 rdev = wiphy_to_rdev(wdev->wiphy);
13857 if (ops->internal_flags & NL80211_FLAG_NEED_NETDEV) {
13864 info->user_ptr[1] = dev;
13866 info->user_ptr[1] = wdev;
13869 if (ops->internal_flags & NL80211_FLAG_CHECK_NETDEV_UP &&
13870 !wdev_running(wdev)) {
13879 info->user_ptr[0] = rdev;
13885 static void nl80211_post_doit(const struct genl_ops *ops, struct sk_buff *skb,
13886 struct genl_info *info)
13888 if (info->user_ptr[1]) {
13889 if (ops->internal_flags & NL80211_FLAG_NEED_WDEV) {
13890 struct wireless_dev *wdev = info->user_ptr[1];
13893 dev_put(wdev->netdev);
13895 dev_put(info->user_ptr[1]);
13899 if (ops->internal_flags & NL80211_FLAG_NEED_RTNL)
13902 /* If needed, clear the netlink message payload from the SKB
13903 * as it might contain key data that shouldn't stick around on
13904 * the heap after the SKB is freed. The netlink message header
13905 * is still needed for further processing, so leave it intact.
13907 if (ops->internal_flags & NL80211_FLAG_CLEAR_SKB) {
13908 struct nlmsghdr *nlh = nlmsg_hdr(skb);
13910 memset(nlmsg_data(nlh), 0, nlmsg_len(nlh));
13914 static const struct genl_ops nl80211_ops[] = {
13916 .cmd = NL80211_CMD_GET_WIPHY,
13917 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13918 .doit = nl80211_get_wiphy,
13919 .dumpit = nl80211_dump_wiphy,
13920 .done = nl80211_dump_wiphy_done,
13921 /* can be retrieved by unprivileged users */
13922 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13923 NL80211_FLAG_NEED_RTNL,
13926 .cmd = NL80211_CMD_SET_WIPHY,
13927 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13928 .doit = nl80211_set_wiphy,
13929 .flags = GENL_UNS_ADMIN_PERM,
13930 .internal_flags = NL80211_FLAG_NEED_RTNL,
13933 .cmd = NL80211_CMD_GET_INTERFACE,
13934 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13935 .doit = nl80211_get_interface,
13936 .dumpit = nl80211_dump_interface,
13937 /* can be retrieved by unprivileged users */
13938 .internal_flags = NL80211_FLAG_NEED_WDEV |
13939 NL80211_FLAG_NEED_RTNL,
13942 .cmd = NL80211_CMD_SET_INTERFACE,
13943 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13944 .doit = nl80211_set_interface,
13945 .flags = GENL_UNS_ADMIN_PERM,
13946 .internal_flags = NL80211_FLAG_NEED_NETDEV |
13947 NL80211_FLAG_NEED_RTNL,
13950 .cmd = NL80211_CMD_NEW_INTERFACE,
13951 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13952 .doit = nl80211_new_interface,
13953 .flags = GENL_UNS_ADMIN_PERM,
13954 .internal_flags = NL80211_FLAG_NEED_WIPHY |
13955 NL80211_FLAG_NEED_RTNL,
13958 .cmd = NL80211_CMD_DEL_INTERFACE,
13959 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13960 .doit = nl80211_del_interface,
13961 .flags = GENL_UNS_ADMIN_PERM,
13962 .internal_flags = NL80211_FLAG_NEED_WDEV |
13963 NL80211_FLAG_NEED_RTNL,
13966 .cmd = NL80211_CMD_GET_KEY,
13967 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13968 .doit = nl80211_get_key,
13969 .flags = GENL_UNS_ADMIN_PERM,
13970 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13971 NL80211_FLAG_NEED_RTNL,
13974 .cmd = NL80211_CMD_SET_KEY,
13975 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13976 .doit = nl80211_set_key,
13977 .flags = GENL_UNS_ADMIN_PERM,
13978 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13979 NL80211_FLAG_NEED_RTNL |
13980 NL80211_FLAG_CLEAR_SKB,
13983 .cmd = NL80211_CMD_NEW_KEY,
13984 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13985 .doit = nl80211_new_key,
13986 .flags = GENL_UNS_ADMIN_PERM,
13987 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13988 NL80211_FLAG_NEED_RTNL |
13989 NL80211_FLAG_CLEAR_SKB,
13992 .cmd = NL80211_CMD_DEL_KEY,
13993 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
13994 .doit = nl80211_del_key,
13995 .flags = GENL_UNS_ADMIN_PERM,
13996 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
13997 NL80211_FLAG_NEED_RTNL,
14000 .cmd = NL80211_CMD_SET_BEACON,
14001 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14002 .flags = GENL_UNS_ADMIN_PERM,
14003 .doit = nl80211_set_beacon,
14004 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14005 NL80211_FLAG_NEED_RTNL,
14008 .cmd = NL80211_CMD_START_AP,
14009 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14010 .flags = GENL_UNS_ADMIN_PERM,
14011 .doit = nl80211_start_ap,
14012 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14013 NL80211_FLAG_NEED_RTNL,
14016 .cmd = NL80211_CMD_STOP_AP,
14017 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14018 .flags = GENL_UNS_ADMIN_PERM,
14019 .doit = nl80211_stop_ap,
14020 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14021 NL80211_FLAG_NEED_RTNL,
14024 .cmd = NL80211_CMD_GET_STATION,
14025 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14026 .doit = nl80211_get_station,
14027 .dumpit = nl80211_dump_station,
14028 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14029 NL80211_FLAG_NEED_RTNL,
14032 .cmd = NL80211_CMD_SET_STATION,
14033 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14034 .doit = nl80211_set_station,
14035 .flags = GENL_UNS_ADMIN_PERM,
14036 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14037 NL80211_FLAG_NEED_RTNL,
14040 .cmd = NL80211_CMD_NEW_STATION,
14041 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14042 .doit = nl80211_new_station,
14043 .flags = GENL_UNS_ADMIN_PERM,
14044 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14045 NL80211_FLAG_NEED_RTNL,
14048 .cmd = NL80211_CMD_DEL_STATION,
14049 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14050 .doit = nl80211_del_station,
14051 .flags = GENL_UNS_ADMIN_PERM,
14052 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14053 NL80211_FLAG_NEED_RTNL,
14056 .cmd = NL80211_CMD_GET_MPATH,
14057 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14058 .doit = nl80211_get_mpath,
14059 .dumpit = nl80211_dump_mpath,
14060 .flags = GENL_UNS_ADMIN_PERM,
14061 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14062 NL80211_FLAG_NEED_RTNL,
14065 .cmd = NL80211_CMD_GET_MPP,
14066 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14067 .doit = nl80211_get_mpp,
14068 .dumpit = nl80211_dump_mpp,
14069 .flags = GENL_UNS_ADMIN_PERM,
14070 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14071 NL80211_FLAG_NEED_RTNL,
14074 .cmd = NL80211_CMD_SET_MPATH,
14075 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14076 .doit = nl80211_set_mpath,
14077 .flags = GENL_UNS_ADMIN_PERM,
14078 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14079 NL80211_FLAG_NEED_RTNL,
14082 .cmd = NL80211_CMD_NEW_MPATH,
14083 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14084 .doit = nl80211_new_mpath,
14085 .flags = GENL_UNS_ADMIN_PERM,
14086 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14087 NL80211_FLAG_NEED_RTNL,
14090 .cmd = NL80211_CMD_DEL_MPATH,
14091 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14092 .doit = nl80211_del_mpath,
14093 .flags = GENL_UNS_ADMIN_PERM,
14094 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14095 NL80211_FLAG_NEED_RTNL,
14098 .cmd = NL80211_CMD_SET_BSS,
14099 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14100 .doit = nl80211_set_bss,
14101 .flags = GENL_UNS_ADMIN_PERM,
14102 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14103 NL80211_FLAG_NEED_RTNL,
14106 .cmd = NL80211_CMD_GET_REG,
14107 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14108 .doit = nl80211_get_reg_do,
14109 .dumpit = nl80211_get_reg_dump,
14110 .internal_flags = NL80211_FLAG_NEED_RTNL,
14111 /* can be retrieved by unprivileged users */
14113 #ifdef CONFIG_CFG80211_CRDA_SUPPORT
14115 .cmd = NL80211_CMD_SET_REG,
14116 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14117 .doit = nl80211_set_reg,
14118 .flags = GENL_ADMIN_PERM,
14119 .internal_flags = NL80211_FLAG_NEED_RTNL,
14123 .cmd = NL80211_CMD_REQ_SET_REG,
14124 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14125 .doit = nl80211_req_set_reg,
14126 .flags = GENL_ADMIN_PERM,
14129 .cmd = NL80211_CMD_RELOAD_REGDB,
14130 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14131 .doit = nl80211_reload_regdb,
14132 .flags = GENL_ADMIN_PERM,
14135 .cmd = NL80211_CMD_GET_MESH_CONFIG,
14136 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14137 .doit = nl80211_get_mesh_config,
14138 /* can be retrieved by unprivileged users */
14139 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14140 NL80211_FLAG_NEED_RTNL,
14143 .cmd = NL80211_CMD_SET_MESH_CONFIG,
14144 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14145 .doit = nl80211_update_mesh_config,
14146 .flags = GENL_UNS_ADMIN_PERM,
14147 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14148 NL80211_FLAG_NEED_RTNL,
14151 .cmd = NL80211_CMD_TRIGGER_SCAN,
14152 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14153 .doit = nl80211_trigger_scan,
14154 .flags = GENL_UNS_ADMIN_PERM,
14155 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14156 NL80211_FLAG_NEED_RTNL,
14159 .cmd = NL80211_CMD_ABORT_SCAN,
14160 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14161 .doit = nl80211_abort_scan,
14162 .flags = GENL_UNS_ADMIN_PERM,
14163 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14164 NL80211_FLAG_NEED_RTNL,
14167 .cmd = NL80211_CMD_GET_SCAN,
14168 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14169 .dumpit = nl80211_dump_scan,
14172 .cmd = NL80211_CMD_START_SCHED_SCAN,
14173 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14174 .doit = nl80211_start_sched_scan,
14175 .flags = GENL_UNS_ADMIN_PERM,
14176 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14177 NL80211_FLAG_NEED_RTNL,
14180 .cmd = NL80211_CMD_STOP_SCHED_SCAN,
14181 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14182 .doit = nl80211_stop_sched_scan,
14183 .flags = GENL_UNS_ADMIN_PERM,
14184 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14185 NL80211_FLAG_NEED_RTNL,
14188 .cmd = NL80211_CMD_AUTHENTICATE,
14189 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14190 .doit = nl80211_authenticate,
14191 .flags = GENL_UNS_ADMIN_PERM,
14192 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14193 NL80211_FLAG_NEED_RTNL |
14194 NL80211_FLAG_CLEAR_SKB,
14197 .cmd = NL80211_CMD_ASSOCIATE,
14198 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14199 .doit = nl80211_associate,
14200 .flags = GENL_UNS_ADMIN_PERM,
14201 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14202 NL80211_FLAG_NEED_RTNL |
14203 NL80211_FLAG_CLEAR_SKB,
14206 .cmd = NL80211_CMD_DEAUTHENTICATE,
14207 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14208 .doit = nl80211_deauthenticate,
14209 .flags = GENL_UNS_ADMIN_PERM,
14210 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14211 NL80211_FLAG_NEED_RTNL,
14214 .cmd = NL80211_CMD_DISASSOCIATE,
14215 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14216 .doit = nl80211_disassociate,
14217 .flags = GENL_UNS_ADMIN_PERM,
14218 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14219 NL80211_FLAG_NEED_RTNL,
14222 .cmd = NL80211_CMD_JOIN_IBSS,
14223 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14224 .doit = nl80211_join_ibss,
14225 .flags = GENL_UNS_ADMIN_PERM,
14226 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14227 NL80211_FLAG_NEED_RTNL,
14230 .cmd = NL80211_CMD_LEAVE_IBSS,
14231 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14232 .doit = nl80211_leave_ibss,
14233 .flags = GENL_UNS_ADMIN_PERM,
14234 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14235 NL80211_FLAG_NEED_RTNL,
14237 #ifdef CONFIG_NL80211_TESTMODE
14239 .cmd = NL80211_CMD_TESTMODE,
14240 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14241 .doit = nl80211_testmode_do,
14242 .dumpit = nl80211_testmode_dump,
14243 .flags = GENL_UNS_ADMIN_PERM,
14244 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14245 NL80211_FLAG_NEED_RTNL,
14249 .cmd = NL80211_CMD_CONNECT,
14250 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14251 .doit = nl80211_connect,
14252 .flags = GENL_UNS_ADMIN_PERM,
14253 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14254 NL80211_FLAG_NEED_RTNL |
14255 NL80211_FLAG_CLEAR_SKB,
14258 .cmd = NL80211_CMD_UPDATE_CONNECT_PARAMS,
14259 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14260 .doit = nl80211_update_connect_params,
14261 .flags = GENL_ADMIN_PERM,
14262 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14263 NL80211_FLAG_NEED_RTNL |
14264 NL80211_FLAG_CLEAR_SKB,
14267 .cmd = NL80211_CMD_DISCONNECT,
14268 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14269 .doit = nl80211_disconnect,
14270 .flags = GENL_UNS_ADMIN_PERM,
14271 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14272 NL80211_FLAG_NEED_RTNL,
14275 .cmd = NL80211_CMD_SET_WIPHY_NETNS,
14276 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14277 .doit = nl80211_wiphy_netns,
14278 .flags = GENL_UNS_ADMIN_PERM,
14279 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14280 NL80211_FLAG_NEED_RTNL,
14283 .cmd = NL80211_CMD_GET_SURVEY,
14284 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14285 .dumpit = nl80211_dump_survey,
14288 .cmd = NL80211_CMD_SET_PMKSA,
14289 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14290 .doit = nl80211_setdel_pmksa,
14291 .flags = GENL_UNS_ADMIN_PERM,
14292 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14293 NL80211_FLAG_NEED_RTNL |
14294 NL80211_FLAG_CLEAR_SKB,
14297 .cmd = NL80211_CMD_DEL_PMKSA,
14298 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14299 .doit = nl80211_setdel_pmksa,
14300 .flags = GENL_UNS_ADMIN_PERM,
14301 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14302 NL80211_FLAG_NEED_RTNL,
14305 .cmd = NL80211_CMD_FLUSH_PMKSA,
14306 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14307 .doit = nl80211_flush_pmksa,
14308 .flags = GENL_UNS_ADMIN_PERM,
14309 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14310 NL80211_FLAG_NEED_RTNL,
14313 .cmd = NL80211_CMD_REMAIN_ON_CHANNEL,
14314 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14315 .doit = nl80211_remain_on_channel,
14316 .flags = GENL_UNS_ADMIN_PERM,
14317 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14318 NL80211_FLAG_NEED_RTNL,
14321 .cmd = NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
14322 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14323 .doit = nl80211_cancel_remain_on_channel,
14324 .flags = GENL_UNS_ADMIN_PERM,
14325 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14326 NL80211_FLAG_NEED_RTNL,
14329 .cmd = NL80211_CMD_SET_TX_BITRATE_MASK,
14330 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14331 .doit = nl80211_set_tx_bitrate_mask,
14332 .flags = GENL_UNS_ADMIN_PERM,
14333 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14334 NL80211_FLAG_NEED_RTNL,
14337 .cmd = NL80211_CMD_REGISTER_FRAME,
14338 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14339 .doit = nl80211_register_mgmt,
14340 .flags = GENL_UNS_ADMIN_PERM,
14341 .internal_flags = NL80211_FLAG_NEED_WDEV |
14342 NL80211_FLAG_NEED_RTNL,
14345 .cmd = NL80211_CMD_FRAME,
14346 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14347 .doit = nl80211_tx_mgmt,
14348 .flags = GENL_UNS_ADMIN_PERM,
14349 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14350 NL80211_FLAG_NEED_RTNL,
14353 .cmd = NL80211_CMD_FRAME_WAIT_CANCEL,
14354 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14355 .doit = nl80211_tx_mgmt_cancel_wait,
14356 .flags = GENL_UNS_ADMIN_PERM,
14357 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14358 NL80211_FLAG_NEED_RTNL,
14361 .cmd = NL80211_CMD_SET_POWER_SAVE,
14362 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14363 .doit = nl80211_set_power_save,
14364 .flags = GENL_UNS_ADMIN_PERM,
14365 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14366 NL80211_FLAG_NEED_RTNL,
14369 .cmd = NL80211_CMD_GET_POWER_SAVE,
14370 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14371 .doit = nl80211_get_power_save,
14372 /* can be retrieved by unprivileged users */
14373 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14374 NL80211_FLAG_NEED_RTNL,
14377 .cmd = NL80211_CMD_SET_CQM,
14378 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14379 .doit = nl80211_set_cqm,
14380 .flags = GENL_UNS_ADMIN_PERM,
14381 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14382 NL80211_FLAG_NEED_RTNL,
14385 .cmd = NL80211_CMD_SET_CHANNEL,
14386 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14387 .doit = nl80211_set_channel,
14388 .flags = GENL_UNS_ADMIN_PERM,
14389 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14390 NL80211_FLAG_NEED_RTNL,
14393 .cmd = NL80211_CMD_SET_WDS_PEER,
14394 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14395 .doit = nl80211_set_wds_peer,
14396 .flags = GENL_UNS_ADMIN_PERM,
14397 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14398 NL80211_FLAG_NEED_RTNL,
14401 .cmd = NL80211_CMD_JOIN_MESH,
14402 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14403 .doit = nl80211_join_mesh,
14404 .flags = GENL_UNS_ADMIN_PERM,
14405 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14406 NL80211_FLAG_NEED_RTNL,
14409 .cmd = NL80211_CMD_LEAVE_MESH,
14410 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14411 .doit = nl80211_leave_mesh,
14412 .flags = GENL_UNS_ADMIN_PERM,
14413 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14414 NL80211_FLAG_NEED_RTNL,
14417 .cmd = NL80211_CMD_JOIN_OCB,
14418 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14419 .doit = nl80211_join_ocb,
14420 .flags = GENL_UNS_ADMIN_PERM,
14421 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14422 NL80211_FLAG_NEED_RTNL,
14425 .cmd = NL80211_CMD_LEAVE_OCB,
14426 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14427 .doit = nl80211_leave_ocb,
14428 .flags = GENL_UNS_ADMIN_PERM,
14429 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14430 NL80211_FLAG_NEED_RTNL,
14434 .cmd = NL80211_CMD_GET_WOWLAN,
14435 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14436 .doit = nl80211_get_wowlan,
14437 /* can be retrieved by unprivileged users */
14438 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14439 NL80211_FLAG_NEED_RTNL,
14442 .cmd = NL80211_CMD_SET_WOWLAN,
14443 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14444 .doit = nl80211_set_wowlan,
14445 .flags = GENL_UNS_ADMIN_PERM,
14446 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14447 NL80211_FLAG_NEED_RTNL,
14451 .cmd = NL80211_CMD_SET_REKEY_OFFLOAD,
14452 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14453 .doit = nl80211_set_rekey_data,
14454 .flags = GENL_UNS_ADMIN_PERM,
14455 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14456 NL80211_FLAG_NEED_RTNL |
14457 NL80211_FLAG_CLEAR_SKB,
14460 .cmd = NL80211_CMD_TDLS_MGMT,
14461 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14462 .doit = nl80211_tdls_mgmt,
14463 .flags = GENL_UNS_ADMIN_PERM,
14464 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14465 NL80211_FLAG_NEED_RTNL,
14468 .cmd = NL80211_CMD_TDLS_OPER,
14469 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14470 .doit = nl80211_tdls_oper,
14471 .flags = GENL_UNS_ADMIN_PERM,
14472 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14473 NL80211_FLAG_NEED_RTNL,
14476 .cmd = NL80211_CMD_UNEXPECTED_FRAME,
14477 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14478 .doit = nl80211_register_unexpected_frame,
14479 .flags = GENL_UNS_ADMIN_PERM,
14480 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14481 NL80211_FLAG_NEED_RTNL,
14484 .cmd = NL80211_CMD_PROBE_CLIENT,
14485 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14486 .doit = nl80211_probe_client,
14487 .flags = GENL_UNS_ADMIN_PERM,
14488 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14489 NL80211_FLAG_NEED_RTNL,
14492 .cmd = NL80211_CMD_REGISTER_BEACONS,
14493 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14494 .doit = nl80211_register_beacons,
14495 .flags = GENL_UNS_ADMIN_PERM,
14496 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14497 NL80211_FLAG_NEED_RTNL,
14500 .cmd = NL80211_CMD_SET_NOACK_MAP,
14501 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14502 .doit = nl80211_set_noack_map,
14503 .flags = GENL_UNS_ADMIN_PERM,
14504 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14505 NL80211_FLAG_NEED_RTNL,
14508 .cmd = NL80211_CMD_START_P2P_DEVICE,
14509 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14510 .doit = nl80211_start_p2p_device,
14511 .flags = GENL_UNS_ADMIN_PERM,
14512 .internal_flags = NL80211_FLAG_NEED_WDEV |
14513 NL80211_FLAG_NEED_RTNL,
14516 .cmd = NL80211_CMD_STOP_P2P_DEVICE,
14517 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14518 .doit = nl80211_stop_p2p_device,
14519 .flags = GENL_UNS_ADMIN_PERM,
14520 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14521 NL80211_FLAG_NEED_RTNL,
14524 .cmd = NL80211_CMD_START_NAN,
14525 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14526 .doit = nl80211_start_nan,
14527 .flags = GENL_ADMIN_PERM,
14528 .internal_flags = NL80211_FLAG_NEED_WDEV |
14529 NL80211_FLAG_NEED_RTNL,
14532 .cmd = NL80211_CMD_STOP_NAN,
14533 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14534 .doit = nl80211_stop_nan,
14535 .flags = GENL_ADMIN_PERM,
14536 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14537 NL80211_FLAG_NEED_RTNL,
14540 .cmd = NL80211_CMD_ADD_NAN_FUNCTION,
14541 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14542 .doit = nl80211_nan_add_func,
14543 .flags = GENL_ADMIN_PERM,
14544 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14545 NL80211_FLAG_NEED_RTNL,
14548 .cmd = NL80211_CMD_DEL_NAN_FUNCTION,
14549 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14550 .doit = nl80211_nan_del_func,
14551 .flags = GENL_ADMIN_PERM,
14552 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14553 NL80211_FLAG_NEED_RTNL,
14556 .cmd = NL80211_CMD_CHANGE_NAN_CONFIG,
14557 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14558 .doit = nl80211_nan_change_config,
14559 .flags = GENL_ADMIN_PERM,
14560 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14561 NL80211_FLAG_NEED_RTNL,
14564 .cmd = NL80211_CMD_SET_MCAST_RATE,
14565 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14566 .doit = nl80211_set_mcast_rate,
14567 .flags = GENL_UNS_ADMIN_PERM,
14568 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14569 NL80211_FLAG_NEED_RTNL,
14572 .cmd = NL80211_CMD_SET_MAC_ACL,
14573 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14574 .doit = nl80211_set_mac_acl,
14575 .flags = GENL_UNS_ADMIN_PERM,
14576 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14577 NL80211_FLAG_NEED_RTNL,
14580 .cmd = NL80211_CMD_RADAR_DETECT,
14581 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14582 .doit = nl80211_start_radar_detection,
14583 .flags = GENL_UNS_ADMIN_PERM,
14584 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14585 NL80211_FLAG_NEED_RTNL,
14588 .cmd = NL80211_CMD_GET_PROTOCOL_FEATURES,
14589 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14590 .doit = nl80211_get_protocol_features,
14593 .cmd = NL80211_CMD_UPDATE_FT_IES,
14594 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14595 .doit = nl80211_update_ft_ies,
14596 .flags = GENL_UNS_ADMIN_PERM,
14597 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14598 NL80211_FLAG_NEED_RTNL,
14601 .cmd = NL80211_CMD_CRIT_PROTOCOL_START,
14602 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14603 .doit = nl80211_crit_protocol_start,
14604 .flags = GENL_UNS_ADMIN_PERM,
14605 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14606 NL80211_FLAG_NEED_RTNL,
14609 .cmd = NL80211_CMD_CRIT_PROTOCOL_STOP,
14610 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14611 .doit = nl80211_crit_protocol_stop,
14612 .flags = GENL_UNS_ADMIN_PERM,
14613 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14614 NL80211_FLAG_NEED_RTNL,
14617 .cmd = NL80211_CMD_GET_COALESCE,
14618 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14619 .doit = nl80211_get_coalesce,
14620 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14621 NL80211_FLAG_NEED_RTNL,
14624 .cmd = NL80211_CMD_SET_COALESCE,
14625 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14626 .doit = nl80211_set_coalesce,
14627 .flags = GENL_UNS_ADMIN_PERM,
14628 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14629 NL80211_FLAG_NEED_RTNL,
14632 .cmd = NL80211_CMD_CHANNEL_SWITCH,
14633 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14634 .doit = nl80211_channel_switch,
14635 .flags = GENL_UNS_ADMIN_PERM,
14636 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14637 NL80211_FLAG_NEED_RTNL,
14640 .cmd = NL80211_CMD_VENDOR,
14641 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14642 .doit = nl80211_vendor_cmd,
14643 .dumpit = nl80211_vendor_cmd_dump,
14644 .flags = GENL_UNS_ADMIN_PERM,
14645 .internal_flags = NL80211_FLAG_NEED_WIPHY |
14646 NL80211_FLAG_NEED_RTNL |
14647 NL80211_FLAG_CLEAR_SKB,
14650 .cmd = NL80211_CMD_SET_QOS_MAP,
14651 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14652 .doit = nl80211_set_qos_map,
14653 .flags = GENL_UNS_ADMIN_PERM,
14654 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14655 NL80211_FLAG_NEED_RTNL,
14658 .cmd = NL80211_CMD_ADD_TX_TS,
14659 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14660 .doit = nl80211_add_tx_ts,
14661 .flags = GENL_UNS_ADMIN_PERM,
14662 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14663 NL80211_FLAG_NEED_RTNL,
14666 .cmd = NL80211_CMD_DEL_TX_TS,
14667 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14668 .doit = nl80211_del_tx_ts,
14669 .flags = GENL_UNS_ADMIN_PERM,
14670 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14671 NL80211_FLAG_NEED_RTNL,
14674 .cmd = NL80211_CMD_TDLS_CHANNEL_SWITCH,
14675 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14676 .doit = nl80211_tdls_channel_switch,
14677 .flags = GENL_UNS_ADMIN_PERM,
14678 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14679 NL80211_FLAG_NEED_RTNL,
14682 .cmd = NL80211_CMD_TDLS_CANCEL_CHANNEL_SWITCH,
14683 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14684 .doit = nl80211_tdls_cancel_channel_switch,
14685 .flags = GENL_UNS_ADMIN_PERM,
14686 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14687 NL80211_FLAG_NEED_RTNL,
14690 .cmd = NL80211_CMD_SET_MULTICAST_TO_UNICAST,
14691 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14692 .doit = nl80211_set_multicast_to_unicast,
14693 .flags = GENL_UNS_ADMIN_PERM,
14694 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14695 NL80211_FLAG_NEED_RTNL,
14698 .cmd = NL80211_CMD_SET_PMK,
14699 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14700 .doit = nl80211_set_pmk,
14701 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14702 NL80211_FLAG_NEED_RTNL |
14703 NL80211_FLAG_CLEAR_SKB,
14706 .cmd = NL80211_CMD_DEL_PMK,
14707 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14708 .doit = nl80211_del_pmk,
14709 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14710 NL80211_FLAG_NEED_RTNL,
14713 .cmd = NL80211_CMD_EXTERNAL_AUTH,
14714 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14715 .doit = nl80211_external_auth,
14716 .flags = GENL_ADMIN_PERM,
14717 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14718 NL80211_FLAG_NEED_RTNL,
14721 .cmd = NL80211_CMD_CONTROL_PORT_FRAME,
14722 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14723 .doit = nl80211_tx_control_port,
14724 .flags = GENL_UNS_ADMIN_PERM,
14725 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14726 NL80211_FLAG_NEED_RTNL,
14729 .cmd = NL80211_CMD_GET_FTM_RESPONDER_STATS,
14730 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14731 .doit = nl80211_get_ftm_responder_stats,
14732 .internal_flags = NL80211_FLAG_NEED_NETDEV |
14733 NL80211_FLAG_NEED_RTNL,
14736 .cmd = NL80211_CMD_PEER_MEASUREMENT_START,
14737 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14738 .doit = nl80211_pmsr_start,
14739 .flags = GENL_UNS_ADMIN_PERM,
14740 .internal_flags = NL80211_FLAG_NEED_WDEV_UP |
14741 NL80211_FLAG_NEED_RTNL,
14744 .cmd = NL80211_CMD_NOTIFY_RADAR,
14745 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
14746 .doit = nl80211_notify_radar_detection,
14747 .flags = GENL_UNS_ADMIN_PERM,
14748 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14749 NL80211_FLAG_NEED_RTNL,
14752 .cmd = NL80211_CMD_UPDATE_OWE_INFO,
14753 .doit = nl80211_update_owe_info,
14754 .flags = GENL_ADMIN_PERM,
14755 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14756 NL80211_FLAG_NEED_RTNL,
14759 .cmd = NL80211_CMD_PROBE_MESH_LINK,
14760 .doit = nl80211_probe_mesh_link,
14761 .flags = GENL_UNS_ADMIN_PERM,
14762 .internal_flags = NL80211_FLAG_NEED_NETDEV_UP |
14763 NL80211_FLAG_NEED_RTNL,
14767 static struct genl_family nl80211_fam __ro_after_init = {
14768 .name = NL80211_GENL_NAME, /* have users key off the name instead */
14769 .hdrsize = 0, /* no private header */
14770 .version = 1, /* no particular meaning now */
14771 .maxattr = NL80211_ATTR_MAX,
14772 .policy = nl80211_policy,
14774 .pre_doit = nl80211_pre_doit,
14775 .post_doit = nl80211_post_doit,
14776 .module = THIS_MODULE,
14777 .ops = nl80211_ops,
14778 .n_ops = ARRAY_SIZE(nl80211_ops),
14779 .mcgrps = nl80211_mcgrps,
14780 .n_mcgrps = ARRAY_SIZE(nl80211_mcgrps),
14781 .parallel_ops = true,
14784 /* notification functions */
14786 void nl80211_notify_wiphy(struct cfg80211_registered_device *rdev,
14787 enum nl80211_commands cmd)
14789 struct sk_buff *msg;
14790 struct nl80211_dump_wiphy_state state = {};
14792 WARN_ON(cmd != NL80211_CMD_NEW_WIPHY &&
14793 cmd != NL80211_CMD_DEL_WIPHY);
14795 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14799 if (nl80211_send_wiphy(rdev, cmd, msg, 0, 0, 0, &state) < 0) {
14804 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14805 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14808 void nl80211_notify_iface(struct cfg80211_registered_device *rdev,
14809 struct wireless_dev *wdev,
14810 enum nl80211_commands cmd)
14812 struct sk_buff *msg;
14814 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14818 if (nl80211_send_iface(msg, 0, 0, 0, rdev, wdev, cmd) < 0) {
14823 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14824 NL80211_MCGRP_CONFIG, GFP_KERNEL);
14827 static int nl80211_add_scan_req(struct sk_buff *msg,
14828 struct cfg80211_registered_device *rdev)
14830 struct cfg80211_scan_request *req = rdev->scan_req;
14831 struct nlattr *nest;
14837 nest = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_SSIDS);
14839 goto nla_put_failure;
14840 for (i = 0; i < req->n_ssids; i++) {
14841 if (nla_put(msg, i, req->ssids[i].ssid_len, req->ssids[i].ssid))
14842 goto nla_put_failure;
14844 nla_nest_end(msg, nest);
14846 nest = nla_nest_start_noflag(msg, NL80211_ATTR_SCAN_FREQUENCIES);
14848 goto nla_put_failure;
14849 for (i = 0; i < req->n_channels; i++) {
14850 if (nla_put_u32(msg, i, req->channels[i]->center_freq))
14851 goto nla_put_failure;
14853 nla_nest_end(msg, nest);
14856 nla_put(msg, NL80211_ATTR_IE, req->ie_len, req->ie))
14857 goto nla_put_failure;
14860 nla_put_u32(msg, NL80211_ATTR_SCAN_FLAGS, req->flags))
14861 goto nla_put_failure;
14863 if (req->info.scan_start_tsf &&
14864 (nla_put_u64_64bit(msg, NL80211_ATTR_SCAN_START_TIME_TSF,
14865 req->info.scan_start_tsf, NL80211_BSS_PAD) ||
14866 nla_put(msg, NL80211_ATTR_SCAN_START_TIME_TSF_BSSID, ETH_ALEN,
14867 req->info.tsf_bssid)))
14868 goto nla_put_failure;
14875 static int nl80211_prep_scan_msg(struct sk_buff *msg,
14876 struct cfg80211_registered_device *rdev,
14877 struct wireless_dev *wdev,
14878 u32 portid, u32 seq, int flags,
14883 hdr = nl80211hdr_put(msg, portid, seq, flags, cmd);
14887 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
14888 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
14889 wdev->netdev->ifindex)) ||
14890 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
14892 goto nla_put_failure;
14894 /* ignore errors and send incomplete event anyway */
14895 nl80211_add_scan_req(msg, rdev);
14897 genlmsg_end(msg, hdr);
14901 genlmsg_cancel(msg, hdr);
14906 nl80211_prep_sched_scan_msg(struct sk_buff *msg,
14907 struct cfg80211_sched_scan_request *req, u32 cmd)
14911 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
14915 if (nla_put_u32(msg, NL80211_ATTR_WIPHY,
14916 wiphy_to_rdev(req->wiphy)->wiphy_idx) ||
14917 nla_put_u32(msg, NL80211_ATTR_IFINDEX, req->dev->ifindex) ||
14918 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, req->reqid,
14920 goto nla_put_failure;
14922 genlmsg_end(msg, hdr);
14926 genlmsg_cancel(msg, hdr);
14930 void nl80211_send_scan_start(struct cfg80211_registered_device *rdev,
14931 struct wireless_dev *wdev)
14933 struct sk_buff *msg;
14935 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14939 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14940 NL80211_CMD_TRIGGER_SCAN) < 0) {
14945 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14946 NL80211_MCGRP_SCAN, GFP_KERNEL);
14949 struct sk_buff *nl80211_build_scan_msg(struct cfg80211_registered_device *rdev,
14950 struct wireless_dev *wdev, bool aborted)
14952 struct sk_buff *msg;
14954 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14958 if (nl80211_prep_scan_msg(msg, rdev, wdev, 0, 0, 0,
14959 aborted ? NL80211_CMD_SCAN_ABORTED :
14960 NL80211_CMD_NEW_SCAN_RESULTS) < 0) {
14968 /* send message created by nl80211_build_scan_msg() */
14969 void nl80211_send_scan_msg(struct cfg80211_registered_device *rdev,
14970 struct sk_buff *msg)
14975 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
14976 NL80211_MCGRP_SCAN, GFP_KERNEL);
14979 void nl80211_send_sched_scan(struct cfg80211_sched_scan_request *req, u32 cmd)
14981 struct sk_buff *msg;
14983 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
14987 if (nl80211_prep_sched_scan_msg(msg, req, cmd) < 0) {
14992 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(req->wiphy), msg, 0,
14993 NL80211_MCGRP_SCAN, GFP_KERNEL);
14996 static bool nl80211_reg_change_event_fill(struct sk_buff *msg,
14997 struct regulatory_request *request)
14999 /* Userspace can always count this one always being set */
15000 if (nla_put_u8(msg, NL80211_ATTR_REG_INITIATOR, request->initiator))
15001 goto nla_put_failure;
15003 if (request->alpha2[0] == '0' && request->alpha2[1] == '0') {
15004 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
15005 NL80211_REGDOM_TYPE_WORLD))
15006 goto nla_put_failure;
15007 } else if (request->alpha2[0] == '9' && request->alpha2[1] == '9') {
15008 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
15009 NL80211_REGDOM_TYPE_CUSTOM_WORLD))
15010 goto nla_put_failure;
15011 } else if ((request->alpha2[0] == '9' && request->alpha2[1] == '8') ||
15012 request->intersect) {
15013 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
15014 NL80211_REGDOM_TYPE_INTERSECTION))
15015 goto nla_put_failure;
15017 if (nla_put_u8(msg, NL80211_ATTR_REG_TYPE,
15018 NL80211_REGDOM_TYPE_COUNTRY) ||
15019 nla_put_string(msg, NL80211_ATTR_REG_ALPHA2,
15021 goto nla_put_failure;
15024 if (request->wiphy_idx != WIPHY_IDX_INVALID) {
15025 struct wiphy *wiphy = wiphy_idx_to_wiphy(request->wiphy_idx);
15028 nla_put_u32(msg, NL80211_ATTR_WIPHY, request->wiphy_idx))
15029 goto nla_put_failure;
15032 wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
15033 nla_put_flag(msg, NL80211_ATTR_WIPHY_SELF_MANAGED_REG))
15034 goto nla_put_failure;
15044 * This can happen on global regulatory changes or device specific settings
15045 * based on custom regulatory domains.
15047 void nl80211_common_reg_change_event(enum nl80211_commands cmd_id,
15048 struct regulatory_request *request)
15050 struct sk_buff *msg;
15053 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
15057 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd_id);
15059 goto nla_put_failure;
15061 if (!nl80211_reg_change_event_fill(msg, request))
15062 goto nla_put_failure;
15064 genlmsg_end(msg, hdr);
15067 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
15068 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
15077 static void nl80211_send_mlme_event(struct cfg80211_registered_device *rdev,
15078 struct net_device *netdev,
15079 const u8 *buf, size_t len,
15080 enum nl80211_commands cmd, gfp_t gfp,
15081 int uapsd_queues, const u8 *req_ies,
15082 size_t req_ies_len)
15084 struct sk_buff *msg;
15087 msg = nlmsg_new(100 + len + req_ies_len, gfp);
15091 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15097 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15098 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15099 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15101 nla_put(msg, NL80211_ATTR_REQ_IE, req_ies_len, req_ies)))
15102 goto nla_put_failure;
15104 if (uapsd_queues >= 0) {
15105 struct nlattr *nla_wmm =
15106 nla_nest_start_noflag(msg, NL80211_ATTR_STA_WME);
15108 goto nla_put_failure;
15110 if (nla_put_u8(msg, NL80211_STA_WME_UAPSD_QUEUES,
15112 goto nla_put_failure;
15114 nla_nest_end(msg, nla_wmm);
15117 genlmsg_end(msg, hdr);
15119 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15120 NL80211_MCGRP_MLME, gfp);
15127 void nl80211_send_rx_auth(struct cfg80211_registered_device *rdev,
15128 struct net_device *netdev, const u8 *buf,
15129 size_t len, gfp_t gfp)
15131 nl80211_send_mlme_event(rdev, netdev, buf, len,
15132 NL80211_CMD_AUTHENTICATE, gfp, -1, NULL, 0);
15135 void nl80211_send_rx_assoc(struct cfg80211_registered_device *rdev,
15136 struct net_device *netdev, const u8 *buf,
15137 size_t len, gfp_t gfp, int uapsd_queues,
15138 const u8 *req_ies, size_t req_ies_len)
15140 nl80211_send_mlme_event(rdev, netdev, buf, len,
15141 NL80211_CMD_ASSOCIATE, gfp, uapsd_queues,
15142 req_ies, req_ies_len);
15145 void nl80211_send_deauth(struct cfg80211_registered_device *rdev,
15146 struct net_device *netdev, const u8 *buf,
15147 size_t len, gfp_t gfp)
15149 nl80211_send_mlme_event(rdev, netdev, buf, len,
15150 NL80211_CMD_DEAUTHENTICATE, gfp, -1, NULL, 0);
15153 void nl80211_send_disassoc(struct cfg80211_registered_device *rdev,
15154 struct net_device *netdev, const u8 *buf,
15155 size_t len, gfp_t gfp)
15157 nl80211_send_mlme_event(rdev, netdev, buf, len,
15158 NL80211_CMD_DISASSOCIATE, gfp, -1, NULL, 0);
15161 void cfg80211_rx_unprot_mlme_mgmt(struct net_device *dev, const u8 *buf,
15164 struct wireless_dev *wdev = dev->ieee80211_ptr;
15165 struct wiphy *wiphy = wdev->wiphy;
15166 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15167 const struct ieee80211_mgmt *mgmt = (void *)buf;
15170 if (WARN_ON(len < 2))
15173 if (ieee80211_is_deauth(mgmt->frame_control))
15174 cmd = NL80211_CMD_UNPROT_DEAUTHENTICATE;
15176 cmd = NL80211_CMD_UNPROT_DISASSOCIATE;
15178 trace_cfg80211_rx_unprot_mlme_mgmt(dev, buf, len);
15179 nl80211_send_mlme_event(rdev, dev, buf, len, cmd, GFP_ATOMIC, -1,
15182 EXPORT_SYMBOL(cfg80211_rx_unprot_mlme_mgmt);
15184 static void nl80211_send_mlme_timeout(struct cfg80211_registered_device *rdev,
15185 struct net_device *netdev, int cmd,
15186 const u8 *addr, gfp_t gfp)
15188 struct sk_buff *msg;
15191 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15195 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15201 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15202 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15203 nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
15204 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
15205 goto nla_put_failure;
15207 genlmsg_end(msg, hdr);
15209 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15210 NL80211_MCGRP_MLME, gfp);
15217 void nl80211_send_auth_timeout(struct cfg80211_registered_device *rdev,
15218 struct net_device *netdev, const u8 *addr,
15221 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_AUTHENTICATE,
15225 void nl80211_send_assoc_timeout(struct cfg80211_registered_device *rdev,
15226 struct net_device *netdev, const u8 *addr,
15229 nl80211_send_mlme_timeout(rdev, netdev, NL80211_CMD_ASSOCIATE,
15233 void nl80211_send_connect_result(struct cfg80211_registered_device *rdev,
15234 struct net_device *netdev,
15235 struct cfg80211_connect_resp_params *cr,
15238 struct sk_buff *msg;
15241 msg = nlmsg_new(100 + cr->req_ie_len + cr->resp_ie_len +
15242 cr->fils.kek_len + cr->fils.pmk_len +
15243 (cr->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
15247 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONNECT);
15253 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15254 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15256 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, cr->bssid)) ||
15257 nla_put_u16(msg, NL80211_ATTR_STATUS_CODE,
15258 cr->status < 0 ? WLAN_STATUS_UNSPECIFIED_FAILURE :
15261 (nla_put_flag(msg, NL80211_ATTR_TIMED_OUT) ||
15262 nla_put_u32(msg, NL80211_ATTR_TIMEOUT_REASON,
15263 cr->timeout_reason))) ||
15265 nla_put(msg, NL80211_ATTR_REQ_IE, cr->req_ie_len, cr->req_ie)) ||
15267 nla_put(msg, NL80211_ATTR_RESP_IE, cr->resp_ie_len,
15269 (cr->fils.update_erp_next_seq_num &&
15270 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
15271 cr->fils.erp_next_seq_num)) ||
15272 (cr->status == WLAN_STATUS_SUCCESS &&
15274 nla_put(msg, NL80211_ATTR_FILS_KEK, cr->fils.kek_len,
15277 nla_put(msg, NL80211_ATTR_PMK, cr->fils.pmk_len, cr->fils.pmk)) ||
15279 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, cr->fils.pmkid)))))
15280 goto nla_put_failure;
15282 genlmsg_end(msg, hdr);
15284 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15285 NL80211_MCGRP_MLME, gfp);
15292 void nl80211_send_roamed(struct cfg80211_registered_device *rdev,
15293 struct net_device *netdev,
15294 struct cfg80211_roam_info *info, gfp_t gfp)
15296 struct sk_buff *msg;
15298 const u8 *bssid = info->bss ? info->bss->bssid : info->bssid;
15300 msg = nlmsg_new(100 + info->req_ie_len + info->resp_ie_len +
15301 info->fils.kek_len + info->fils.pmk_len +
15302 (info->fils.pmkid ? WLAN_PMKID_LEN : 0), gfp);
15306 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_ROAM);
15312 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15313 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15314 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid) ||
15316 nla_put(msg, NL80211_ATTR_REQ_IE, info->req_ie_len,
15319 nla_put(msg, NL80211_ATTR_RESP_IE, info->resp_ie_len,
15321 (info->fils.update_erp_next_seq_num &&
15322 nla_put_u16(msg, NL80211_ATTR_FILS_ERP_NEXT_SEQ_NUM,
15323 info->fils.erp_next_seq_num)) ||
15325 nla_put(msg, NL80211_ATTR_FILS_KEK, info->fils.kek_len,
15326 info->fils.kek)) ||
15328 nla_put(msg, NL80211_ATTR_PMK, info->fils.pmk_len, info->fils.pmk)) ||
15329 (info->fils.pmkid &&
15330 nla_put(msg, NL80211_ATTR_PMKID, WLAN_PMKID_LEN, info->fils.pmkid)))
15331 goto nla_put_failure;
15333 genlmsg_end(msg, hdr);
15335 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15336 NL80211_MCGRP_MLME, gfp);
15343 void nl80211_send_port_authorized(struct cfg80211_registered_device *rdev,
15344 struct net_device *netdev, const u8 *bssid)
15346 struct sk_buff *msg;
15349 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
15353 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PORT_AUTHORIZED);
15359 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15360 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15361 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15362 goto nla_put_failure;
15364 genlmsg_end(msg, hdr);
15366 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15367 NL80211_MCGRP_MLME, GFP_KERNEL);
15374 void nl80211_send_disconnected(struct cfg80211_registered_device *rdev,
15375 struct net_device *netdev, u16 reason,
15376 const u8 *ie, size_t ie_len, bool from_ap)
15378 struct sk_buff *msg;
15381 msg = nlmsg_new(100 + ie_len, GFP_KERNEL);
15385 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_DISCONNECT);
15391 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15392 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15394 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason)) ||
15396 nla_put_flag(msg, NL80211_ATTR_DISCONNECTED_BY_AP)) ||
15397 (ie && nla_put(msg, NL80211_ATTR_IE, ie_len, ie)))
15398 goto nla_put_failure;
15400 genlmsg_end(msg, hdr);
15402 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15403 NL80211_MCGRP_MLME, GFP_KERNEL);
15410 void nl80211_send_ibss_bssid(struct cfg80211_registered_device *rdev,
15411 struct net_device *netdev, const u8 *bssid,
15414 struct sk_buff *msg;
15417 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15421 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_JOIN_IBSS);
15427 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15428 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15429 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
15430 goto nla_put_failure;
15432 genlmsg_end(msg, hdr);
15434 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15435 NL80211_MCGRP_MLME, gfp);
15442 void cfg80211_notify_new_peer_candidate(struct net_device *dev, const u8 *addr,
15443 const u8 *ie, u8 ie_len,
15444 int sig_dbm, gfp_t gfp)
15446 struct wireless_dev *wdev = dev->ieee80211_ptr;
15447 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15448 struct sk_buff *msg;
15451 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_MESH_POINT))
15454 trace_cfg80211_notify_new_peer_candidate(dev, addr);
15456 msg = nlmsg_new(100 + ie_len, gfp);
15460 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NEW_PEER_CANDIDATE);
15466 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15467 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15468 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15470 nla_put(msg, NL80211_ATTR_IE, ie_len, ie)) ||
15472 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)))
15473 goto nla_put_failure;
15475 genlmsg_end(msg, hdr);
15477 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15478 NL80211_MCGRP_MLME, gfp);
15484 EXPORT_SYMBOL(cfg80211_notify_new_peer_candidate);
15486 void nl80211_michael_mic_failure(struct cfg80211_registered_device *rdev,
15487 struct net_device *netdev, const u8 *addr,
15488 enum nl80211_key_type key_type, int key_id,
15489 const u8 *tsc, gfp_t gfp)
15491 struct sk_buff *msg;
15494 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15498 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_MICHAEL_MIC_FAILURE);
15504 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15505 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
15506 (addr && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr)) ||
15507 nla_put_u32(msg, NL80211_ATTR_KEY_TYPE, key_type) ||
15509 nla_put_u8(msg, NL80211_ATTR_KEY_IDX, key_id)) ||
15510 (tsc && nla_put(msg, NL80211_ATTR_KEY_SEQ, 6, tsc)))
15511 goto nla_put_failure;
15513 genlmsg_end(msg, hdr);
15515 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15516 NL80211_MCGRP_MLME, gfp);
15523 void nl80211_send_beacon_hint_event(struct wiphy *wiphy,
15524 struct ieee80211_channel *channel_before,
15525 struct ieee80211_channel *channel_after)
15527 struct sk_buff *msg;
15529 struct nlattr *nl_freq;
15531 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
15535 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_REG_BEACON_HINT);
15542 * Since we are applying the beacon hint to a wiphy we know its
15543 * wiphy_idx is valid
15545 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, get_wiphy_idx(wiphy)))
15546 goto nla_put_failure;
15549 nl_freq = nla_nest_start_noflag(msg, NL80211_ATTR_FREQ_BEFORE);
15551 goto nla_put_failure;
15553 if (nl80211_msg_put_channel(msg, wiphy, channel_before, false))
15554 goto nla_put_failure;
15555 nla_nest_end(msg, nl_freq);
15558 nl_freq = nla_nest_start_noflag(msg, NL80211_ATTR_FREQ_AFTER);
15560 goto nla_put_failure;
15562 if (nl80211_msg_put_channel(msg, wiphy, channel_after, false))
15563 goto nla_put_failure;
15564 nla_nest_end(msg, nl_freq);
15566 genlmsg_end(msg, hdr);
15569 genlmsg_multicast_allns(&nl80211_fam, msg, 0,
15570 NL80211_MCGRP_REGULATORY, GFP_ATOMIC);
15579 static void nl80211_send_remain_on_chan_event(
15580 int cmd, struct cfg80211_registered_device *rdev,
15581 struct wireless_dev *wdev, u64 cookie,
15582 struct ieee80211_channel *chan,
15583 unsigned int duration, gfp_t gfp)
15585 struct sk_buff *msg;
15588 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15592 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15598 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15599 (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15600 wdev->netdev->ifindex)) ||
15601 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15602 NL80211_ATTR_PAD) ||
15603 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, chan->center_freq) ||
15604 nla_put_u32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
15605 NL80211_CHAN_NO_HT) ||
15606 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15608 goto nla_put_failure;
15610 if (cmd == NL80211_CMD_REMAIN_ON_CHANNEL &&
15611 nla_put_u32(msg, NL80211_ATTR_DURATION, duration))
15612 goto nla_put_failure;
15614 genlmsg_end(msg, hdr);
15616 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15617 NL80211_MCGRP_MLME, gfp);
15624 void cfg80211_ready_on_channel(struct wireless_dev *wdev, u64 cookie,
15625 struct ieee80211_channel *chan,
15626 unsigned int duration, gfp_t gfp)
15628 struct wiphy *wiphy = wdev->wiphy;
15629 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15631 trace_cfg80211_ready_on_channel(wdev, cookie, chan, duration);
15632 nl80211_send_remain_on_chan_event(NL80211_CMD_REMAIN_ON_CHANNEL,
15633 rdev, wdev, cookie, chan,
15636 EXPORT_SYMBOL(cfg80211_ready_on_channel);
15638 void cfg80211_remain_on_channel_expired(struct wireless_dev *wdev, u64 cookie,
15639 struct ieee80211_channel *chan,
15642 struct wiphy *wiphy = wdev->wiphy;
15643 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15645 trace_cfg80211_ready_on_channel_expired(wdev, cookie, chan);
15646 nl80211_send_remain_on_chan_event(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL,
15647 rdev, wdev, cookie, chan, 0, gfp);
15649 EXPORT_SYMBOL(cfg80211_remain_on_channel_expired);
15651 void cfg80211_tx_mgmt_expired(struct wireless_dev *wdev, u64 cookie,
15652 struct ieee80211_channel *chan,
15655 struct wiphy *wiphy = wdev->wiphy;
15656 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15658 trace_cfg80211_tx_mgmt_expired(wdev, cookie, chan);
15659 nl80211_send_remain_on_chan_event(NL80211_CMD_FRAME_WAIT_CANCEL,
15660 rdev, wdev, cookie, chan, 0, gfp);
15662 EXPORT_SYMBOL(cfg80211_tx_mgmt_expired);
15664 void cfg80211_new_sta(struct net_device *dev, const u8 *mac_addr,
15665 struct station_info *sinfo, gfp_t gfp)
15667 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15668 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15669 struct sk_buff *msg;
15671 trace_cfg80211_new_sta(dev, mac_addr, sinfo);
15673 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15677 if (nl80211_send_station(msg, NL80211_CMD_NEW_STATION, 0, 0, 0,
15678 rdev, dev, mac_addr, sinfo) < 0) {
15683 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15684 NL80211_MCGRP_MLME, gfp);
15686 EXPORT_SYMBOL(cfg80211_new_sta);
15688 void cfg80211_del_sta_sinfo(struct net_device *dev, const u8 *mac_addr,
15689 struct station_info *sinfo, gfp_t gfp)
15691 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15692 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15693 struct sk_buff *msg;
15694 struct station_info empty_sinfo = {};
15697 sinfo = &empty_sinfo;
15699 trace_cfg80211_del_sta(dev, mac_addr);
15701 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15703 cfg80211_sinfo_release_content(sinfo);
15707 if (nl80211_send_station(msg, NL80211_CMD_DEL_STATION, 0, 0, 0,
15708 rdev, dev, mac_addr, sinfo) < 0) {
15713 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15714 NL80211_MCGRP_MLME, gfp);
15716 EXPORT_SYMBOL(cfg80211_del_sta_sinfo);
15718 void cfg80211_conn_failed(struct net_device *dev, const u8 *mac_addr,
15719 enum nl80211_connect_failed_reason reason,
15722 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
15723 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15724 struct sk_buff *msg;
15727 msg = nlmsg_new(NLMSG_GOODSIZE, gfp);
15731 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONN_FAILED);
15737 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15738 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac_addr) ||
15739 nla_put_u32(msg, NL80211_ATTR_CONN_FAILED_REASON, reason))
15740 goto nla_put_failure;
15742 genlmsg_end(msg, hdr);
15744 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15745 NL80211_MCGRP_MLME, gfp);
15751 EXPORT_SYMBOL(cfg80211_conn_failed);
15753 static bool __nl80211_unexpected_frame(struct net_device *dev, u8 cmd,
15754 const u8 *addr, gfp_t gfp)
15756 struct wireless_dev *wdev = dev->ieee80211_ptr;
15757 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15758 struct sk_buff *msg;
15760 u32 nlportid = READ_ONCE(wdev->ap_unexpected_nlportid);
15765 msg = nlmsg_new(100, gfp);
15769 hdr = nl80211hdr_put(msg, 0, 0, 0, cmd);
15775 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15776 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15777 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr))
15778 goto nla_put_failure;
15780 genlmsg_end(msg, hdr);
15781 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15789 bool cfg80211_rx_spurious_frame(struct net_device *dev,
15790 const u8 *addr, gfp_t gfp)
15792 struct wireless_dev *wdev = dev->ieee80211_ptr;
15795 trace_cfg80211_rx_spurious_frame(dev, addr);
15797 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15798 wdev->iftype != NL80211_IFTYPE_P2P_GO)) {
15799 trace_cfg80211_return_bool(false);
15802 ret = __nl80211_unexpected_frame(dev, NL80211_CMD_UNEXPECTED_FRAME,
15804 trace_cfg80211_return_bool(ret);
15807 EXPORT_SYMBOL(cfg80211_rx_spurious_frame);
15809 bool cfg80211_rx_unexpected_4addr_frame(struct net_device *dev,
15810 const u8 *addr, gfp_t gfp)
15812 struct wireless_dev *wdev = dev->ieee80211_ptr;
15815 trace_cfg80211_rx_unexpected_4addr_frame(dev, addr);
15817 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_AP &&
15818 wdev->iftype != NL80211_IFTYPE_P2P_GO &&
15819 wdev->iftype != NL80211_IFTYPE_AP_VLAN)) {
15820 trace_cfg80211_return_bool(false);
15823 ret = __nl80211_unexpected_frame(dev,
15824 NL80211_CMD_UNEXPECTED_4ADDR_FRAME,
15826 trace_cfg80211_return_bool(ret);
15829 EXPORT_SYMBOL(cfg80211_rx_unexpected_4addr_frame);
15831 int nl80211_send_mgmt(struct cfg80211_registered_device *rdev,
15832 struct wireless_dev *wdev, u32 nlportid,
15833 int freq, int sig_dbm,
15834 const u8 *buf, size_t len, u32 flags, gfp_t gfp)
15836 struct net_device *netdev = wdev->netdev;
15837 struct sk_buff *msg;
15840 msg = nlmsg_new(100 + len, gfp);
15844 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
15850 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15851 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15852 netdev->ifindex)) ||
15853 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15854 NL80211_ATTR_PAD) ||
15855 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq) ||
15857 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
15858 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15860 nla_put_u32(msg, NL80211_ATTR_RXMGMT_FLAGS, flags)))
15861 goto nla_put_failure;
15863 genlmsg_end(msg, hdr);
15865 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15872 void cfg80211_mgmt_tx_status(struct wireless_dev *wdev, u64 cookie,
15873 const u8 *buf, size_t len, bool ack, gfp_t gfp)
15875 struct wiphy *wiphy = wdev->wiphy;
15876 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
15877 struct net_device *netdev = wdev->netdev;
15878 struct sk_buff *msg;
15881 trace_cfg80211_mgmt_tx_status(wdev, cookie, ack);
15883 msg = nlmsg_new(100 + len, gfp);
15887 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME_TX_STATUS);
15893 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15894 (netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
15895 netdev->ifindex)) ||
15896 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15897 NL80211_ATTR_PAD) ||
15898 nla_put(msg, NL80211_ATTR_FRAME, len, buf) ||
15899 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
15900 NL80211_ATTR_PAD) ||
15901 (ack && nla_put_flag(msg, NL80211_ATTR_ACK)))
15902 goto nla_put_failure;
15904 genlmsg_end(msg, hdr);
15906 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
15907 NL80211_MCGRP_MLME, gfp);
15913 EXPORT_SYMBOL(cfg80211_mgmt_tx_status);
15915 static int __nl80211_rx_control_port(struct net_device *dev,
15916 struct sk_buff *skb,
15917 bool unencrypted, gfp_t gfp)
15919 struct wireless_dev *wdev = dev->ieee80211_ptr;
15920 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15921 struct ethhdr *ehdr = eth_hdr(skb);
15922 const u8 *addr = ehdr->h_source;
15923 u16 proto = be16_to_cpu(skb->protocol);
15924 struct sk_buff *msg;
15926 struct nlattr *frame;
15928 u32 nlportid = READ_ONCE(wdev->conn_owner_nlportid);
15933 msg = nlmsg_new(100 + skb->len, gfp);
15937 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CONTROL_PORT_FRAME);
15943 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15944 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
15945 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
15946 NL80211_ATTR_PAD) ||
15947 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
15948 nla_put_u16(msg, NL80211_ATTR_CONTROL_PORT_ETHERTYPE, proto) ||
15949 (unencrypted && nla_put_flag(msg,
15950 NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT)))
15951 goto nla_put_failure;
15953 frame = nla_reserve(msg, NL80211_ATTR_FRAME, skb->len);
15955 goto nla_put_failure;
15957 skb_copy_bits(skb, 0, nla_data(frame), skb->len);
15958 genlmsg_end(msg, hdr);
15960 return genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
15967 bool cfg80211_rx_control_port(struct net_device *dev,
15968 struct sk_buff *skb, bool unencrypted)
15972 trace_cfg80211_rx_control_port(dev, skb, unencrypted);
15973 ret = __nl80211_rx_control_port(dev, skb, unencrypted, GFP_ATOMIC);
15974 trace_cfg80211_return_bool(ret == 0);
15977 EXPORT_SYMBOL(cfg80211_rx_control_port);
15979 static struct sk_buff *cfg80211_prepare_cqm(struct net_device *dev,
15980 const char *mac, gfp_t gfp)
15982 struct wireless_dev *wdev = dev->ieee80211_ptr;
15983 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
15984 struct sk_buff *msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
15990 cb = (void **)msg->cb;
15992 cb[0] = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_NOTIFY_CQM);
15998 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
15999 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
16000 goto nla_put_failure;
16002 if (mac && nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
16003 goto nla_put_failure;
16005 cb[1] = nla_nest_start_noflag(msg, NL80211_ATTR_CQM);
16007 goto nla_put_failure;
16017 static void cfg80211_send_cqm(struct sk_buff *msg, gfp_t gfp)
16019 void **cb = (void **)msg->cb;
16020 struct cfg80211_registered_device *rdev = cb[2];
16022 nla_nest_end(msg, cb[1]);
16023 genlmsg_end(msg, cb[0]);
16025 memset(msg->cb, 0, sizeof(msg->cb));
16027 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16028 NL80211_MCGRP_MLME, gfp);
16031 void cfg80211_cqm_rssi_notify(struct net_device *dev,
16032 enum nl80211_cqm_rssi_threshold_event rssi_event,
16033 s32 rssi_level, gfp_t gfp)
16035 struct sk_buff *msg;
16036 struct wireless_dev *wdev = dev->ieee80211_ptr;
16037 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16039 trace_cfg80211_cqm_rssi_notify(dev, rssi_event, rssi_level);
16041 if (WARN_ON(rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW &&
16042 rssi_event != NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH))
16045 if (wdev->cqm_config) {
16046 wdev->cqm_config->last_rssi_event_value = rssi_level;
16048 cfg80211_cqm_rssi_update(rdev, dev);
16050 if (rssi_level == 0)
16051 rssi_level = wdev->cqm_config->last_rssi_event_value;
16054 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
16058 if (nla_put_u32(msg, NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT,
16060 goto nla_put_failure;
16062 if (rssi_level && nla_put_s32(msg, NL80211_ATTR_CQM_RSSI_LEVEL,
16064 goto nla_put_failure;
16066 cfg80211_send_cqm(msg, gfp);
16073 EXPORT_SYMBOL(cfg80211_cqm_rssi_notify);
16075 void cfg80211_cqm_txe_notify(struct net_device *dev,
16076 const u8 *peer, u32 num_packets,
16077 u32 rate, u32 intvl, gfp_t gfp)
16079 struct sk_buff *msg;
16081 msg = cfg80211_prepare_cqm(dev, peer, gfp);
16085 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_PKTS, num_packets))
16086 goto nla_put_failure;
16088 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_RATE, rate))
16089 goto nla_put_failure;
16091 if (nla_put_u32(msg, NL80211_ATTR_CQM_TXE_INTVL, intvl))
16092 goto nla_put_failure;
16094 cfg80211_send_cqm(msg, gfp);
16100 EXPORT_SYMBOL(cfg80211_cqm_txe_notify);
16102 void cfg80211_cqm_pktloss_notify(struct net_device *dev,
16103 const u8 *peer, u32 num_packets, gfp_t gfp)
16105 struct sk_buff *msg;
16107 trace_cfg80211_cqm_pktloss_notify(dev, peer, num_packets);
16109 msg = cfg80211_prepare_cqm(dev, peer, gfp);
16113 if (nla_put_u32(msg, NL80211_ATTR_CQM_PKT_LOSS_EVENT, num_packets))
16114 goto nla_put_failure;
16116 cfg80211_send_cqm(msg, gfp);
16122 EXPORT_SYMBOL(cfg80211_cqm_pktloss_notify);
16124 void cfg80211_cqm_beacon_loss_notify(struct net_device *dev, gfp_t gfp)
16126 struct sk_buff *msg;
16128 msg = cfg80211_prepare_cqm(dev, NULL, gfp);
16132 if (nla_put_flag(msg, NL80211_ATTR_CQM_BEACON_LOSS_EVENT))
16133 goto nla_put_failure;
16135 cfg80211_send_cqm(msg, gfp);
16141 EXPORT_SYMBOL(cfg80211_cqm_beacon_loss_notify);
16143 static void nl80211_gtk_rekey_notify(struct cfg80211_registered_device *rdev,
16144 struct net_device *netdev, const u8 *bssid,
16145 const u8 *replay_ctr, gfp_t gfp)
16147 struct sk_buff *msg;
16148 struct nlattr *rekey_attr;
16151 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16155 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
16161 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16162 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16163 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid))
16164 goto nla_put_failure;
16166 rekey_attr = nla_nest_start_noflag(msg, NL80211_ATTR_REKEY_DATA);
16168 goto nla_put_failure;
16170 if (nla_put(msg, NL80211_REKEY_DATA_REPLAY_CTR,
16171 NL80211_REPLAY_CTR_LEN, replay_ctr))
16172 goto nla_put_failure;
16174 nla_nest_end(msg, rekey_attr);
16176 genlmsg_end(msg, hdr);
16178 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16179 NL80211_MCGRP_MLME, gfp);
16186 void cfg80211_gtk_rekey_notify(struct net_device *dev, const u8 *bssid,
16187 const u8 *replay_ctr, gfp_t gfp)
16189 struct wireless_dev *wdev = dev->ieee80211_ptr;
16190 struct wiphy *wiphy = wdev->wiphy;
16191 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16193 trace_cfg80211_gtk_rekey_notify(dev, bssid);
16194 nl80211_gtk_rekey_notify(rdev, dev, bssid, replay_ctr, gfp);
16196 EXPORT_SYMBOL(cfg80211_gtk_rekey_notify);
16199 nl80211_pmksa_candidate_notify(struct cfg80211_registered_device *rdev,
16200 struct net_device *netdev, int index,
16201 const u8 *bssid, bool preauth, gfp_t gfp)
16203 struct sk_buff *msg;
16204 struct nlattr *attr;
16207 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16211 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PMKSA_CANDIDATE);
16217 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16218 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
16219 goto nla_put_failure;
16221 attr = nla_nest_start_noflag(msg, NL80211_ATTR_PMKSA_CANDIDATE);
16223 goto nla_put_failure;
16225 if (nla_put_u32(msg, NL80211_PMKSA_CANDIDATE_INDEX, index) ||
16226 nla_put(msg, NL80211_PMKSA_CANDIDATE_BSSID, ETH_ALEN, bssid) ||
16228 nla_put_flag(msg, NL80211_PMKSA_CANDIDATE_PREAUTH)))
16229 goto nla_put_failure;
16231 nla_nest_end(msg, attr);
16233 genlmsg_end(msg, hdr);
16235 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16236 NL80211_MCGRP_MLME, gfp);
16243 void cfg80211_pmksa_candidate_notify(struct net_device *dev, int index,
16244 const u8 *bssid, bool preauth, gfp_t gfp)
16246 struct wireless_dev *wdev = dev->ieee80211_ptr;
16247 struct wiphy *wiphy = wdev->wiphy;
16248 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16250 trace_cfg80211_pmksa_candidate_notify(dev, index, bssid, preauth);
16251 nl80211_pmksa_candidate_notify(rdev, dev, index, bssid, preauth, gfp);
16253 EXPORT_SYMBOL(cfg80211_pmksa_candidate_notify);
16255 static void nl80211_ch_switch_notify(struct cfg80211_registered_device *rdev,
16256 struct net_device *netdev,
16257 struct cfg80211_chan_def *chandef,
16259 enum nl80211_commands notif,
16262 struct sk_buff *msg;
16265 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16269 hdr = nl80211hdr_put(msg, 0, 0, 0, notif);
16275 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex))
16276 goto nla_put_failure;
16278 if (nl80211_send_chandef(msg, chandef))
16279 goto nla_put_failure;
16281 if ((notif == NL80211_CMD_CH_SWITCH_STARTED_NOTIFY) &&
16282 (nla_put_u32(msg, NL80211_ATTR_CH_SWITCH_COUNT, count)))
16283 goto nla_put_failure;
16285 genlmsg_end(msg, hdr);
16287 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16288 NL80211_MCGRP_MLME, gfp);
16295 void cfg80211_ch_switch_notify(struct net_device *dev,
16296 struct cfg80211_chan_def *chandef)
16298 struct wireless_dev *wdev = dev->ieee80211_ptr;
16299 struct wiphy *wiphy = wdev->wiphy;
16300 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16302 ASSERT_WDEV_LOCK(wdev);
16304 trace_cfg80211_ch_switch_notify(dev, chandef);
16306 wdev->chandef = *chandef;
16307 wdev->preset_chandef = *chandef;
16309 if (wdev->iftype == NL80211_IFTYPE_STATION &&
16310 !WARN_ON(!wdev->current_bss))
16311 cfg80211_update_assoc_bss_entry(wdev, chandef->chan);
16313 cfg80211_sched_dfs_chan_update(rdev);
16315 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
16316 NL80211_CMD_CH_SWITCH_NOTIFY, 0);
16318 EXPORT_SYMBOL(cfg80211_ch_switch_notify);
16320 void cfg80211_ch_switch_started_notify(struct net_device *dev,
16321 struct cfg80211_chan_def *chandef,
16324 struct wireless_dev *wdev = dev->ieee80211_ptr;
16325 struct wiphy *wiphy = wdev->wiphy;
16326 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16328 trace_cfg80211_ch_switch_started_notify(dev, chandef);
16330 nl80211_ch_switch_notify(rdev, dev, chandef, GFP_KERNEL,
16331 NL80211_CMD_CH_SWITCH_STARTED_NOTIFY, count);
16333 EXPORT_SYMBOL(cfg80211_ch_switch_started_notify);
16336 nl80211_radar_notify(struct cfg80211_registered_device *rdev,
16337 const struct cfg80211_chan_def *chandef,
16338 enum nl80211_radar_event event,
16339 struct net_device *netdev, gfp_t gfp)
16341 struct sk_buff *msg;
16344 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16348 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_RADAR_DETECT);
16354 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
16355 goto nla_put_failure;
16357 /* NOP and radar events don't need a netdev parameter */
16359 struct wireless_dev *wdev = netdev->ieee80211_ptr;
16361 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16362 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16364 goto nla_put_failure;
16367 if (nla_put_u32(msg, NL80211_ATTR_RADAR_EVENT, event))
16368 goto nla_put_failure;
16370 if (nl80211_send_chandef(msg, chandef))
16371 goto nla_put_failure;
16373 genlmsg_end(msg, hdr);
16375 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16376 NL80211_MCGRP_MLME, gfp);
16383 void cfg80211_sta_opmode_change_notify(struct net_device *dev, const u8 *mac,
16384 struct sta_opmode_info *sta_opmode,
16387 struct sk_buff *msg;
16388 struct wireless_dev *wdev = dev->ieee80211_ptr;
16389 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16395 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16399 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STA_OPMODE_CHANGED);
16405 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx))
16406 goto nla_put_failure;
16408 if (nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex))
16409 goto nla_put_failure;
16411 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, mac))
16412 goto nla_put_failure;
16414 if ((sta_opmode->changed & STA_OPMODE_SMPS_MODE_CHANGED) &&
16415 nla_put_u8(msg, NL80211_ATTR_SMPS_MODE, sta_opmode->smps_mode))
16416 goto nla_put_failure;
16418 if ((sta_opmode->changed & STA_OPMODE_MAX_BW_CHANGED) &&
16419 nla_put_u8(msg, NL80211_ATTR_CHANNEL_WIDTH, sta_opmode->bw))
16420 goto nla_put_failure;
16422 if ((sta_opmode->changed & STA_OPMODE_N_SS_CHANGED) &&
16423 nla_put_u8(msg, NL80211_ATTR_NSS, sta_opmode->rx_nss))
16424 goto nla_put_failure;
16426 genlmsg_end(msg, hdr);
16428 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16429 NL80211_MCGRP_MLME, gfp);
16436 EXPORT_SYMBOL(cfg80211_sta_opmode_change_notify);
16438 void cfg80211_probe_status(struct net_device *dev, const u8 *addr,
16439 u64 cookie, bool acked, s32 ack_signal,
16440 bool is_valid_ack_signal, gfp_t gfp)
16442 struct wireless_dev *wdev = dev->ieee80211_ptr;
16443 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16444 struct sk_buff *msg;
16447 trace_cfg80211_probe_status(dev, addr, cookie, acked);
16449 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16454 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_PROBE_CLIENT);
16460 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16461 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16462 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, addr) ||
16463 nla_put_u64_64bit(msg, NL80211_ATTR_COOKIE, cookie,
16464 NL80211_ATTR_PAD) ||
16465 (acked && nla_put_flag(msg, NL80211_ATTR_ACK)) ||
16466 (is_valid_ack_signal && nla_put_s32(msg, NL80211_ATTR_ACK_SIGNAL,
16468 goto nla_put_failure;
16470 genlmsg_end(msg, hdr);
16472 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16473 NL80211_MCGRP_MLME, gfp);
16479 EXPORT_SYMBOL(cfg80211_probe_status);
16481 void cfg80211_report_obss_beacon(struct wiphy *wiphy,
16482 const u8 *frame, size_t len,
16483 int freq, int sig_dbm)
16485 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16486 struct sk_buff *msg;
16488 struct cfg80211_beacon_registration *reg;
16490 trace_cfg80211_report_obss_beacon(wiphy, frame, len, freq, sig_dbm);
16492 spin_lock_bh(&rdev->beacon_registrations_lock);
16493 list_for_each_entry(reg, &rdev->beacon_registrations, list) {
16494 msg = nlmsg_new(len + 100, GFP_ATOMIC);
16496 spin_unlock_bh(&rdev->beacon_registrations_lock);
16500 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FRAME);
16502 goto nla_put_failure;
16504 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16506 nla_put_u32(msg, NL80211_ATTR_WIPHY_FREQ, freq)) ||
16508 nla_put_u32(msg, NL80211_ATTR_RX_SIGNAL_DBM, sig_dbm)) ||
16509 nla_put(msg, NL80211_ATTR_FRAME, len, frame))
16510 goto nla_put_failure;
16512 genlmsg_end(msg, hdr);
16514 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, reg->nlportid);
16516 spin_unlock_bh(&rdev->beacon_registrations_lock);
16520 spin_unlock_bh(&rdev->beacon_registrations_lock);
16523 EXPORT_SYMBOL(cfg80211_report_obss_beacon);
16526 static int cfg80211_net_detect_results(struct sk_buff *msg,
16527 struct cfg80211_wowlan_wakeup *wakeup)
16529 struct cfg80211_wowlan_nd_info *nd = wakeup->net_detect;
16530 struct nlattr *nl_results, *nl_match, *nl_freqs;
16533 nl_results = nla_nest_start_noflag(msg,
16534 NL80211_WOWLAN_TRIG_NET_DETECT_RESULTS);
16538 for (i = 0; i < nd->n_matches; i++) {
16539 struct cfg80211_wowlan_nd_match *match = nd->matches[i];
16541 nl_match = nla_nest_start_noflag(msg, i);
16545 /* The SSID attribute is optional in nl80211, but for
16546 * simplicity reasons it's always present in the
16547 * cfg80211 structure. If a driver can't pass the
16548 * SSID, that needs to be changed. A zero length SSID
16549 * is still a valid SSID (wildcard), so it cannot be
16550 * used for this purpose.
16552 if (nla_put(msg, NL80211_ATTR_SSID, match->ssid.ssid_len,
16553 match->ssid.ssid)) {
16554 nla_nest_cancel(msg, nl_match);
16558 if (match->n_channels) {
16559 nl_freqs = nla_nest_start_noflag(msg,
16560 NL80211_ATTR_SCAN_FREQUENCIES);
16562 nla_nest_cancel(msg, nl_match);
16566 for (j = 0; j < match->n_channels; j++) {
16567 if (nla_put_u32(msg, j, match->channels[j])) {
16568 nla_nest_cancel(msg, nl_freqs);
16569 nla_nest_cancel(msg, nl_match);
16574 nla_nest_end(msg, nl_freqs);
16577 nla_nest_end(msg, nl_match);
16581 nla_nest_end(msg, nl_results);
16585 void cfg80211_report_wowlan_wakeup(struct wireless_dev *wdev,
16586 struct cfg80211_wowlan_wakeup *wakeup,
16589 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16590 struct sk_buff *msg;
16594 trace_cfg80211_report_wowlan_wakeup(wdev->wiphy, wdev, wakeup);
16597 size += wakeup->packet_present_len;
16599 msg = nlmsg_new(size, gfp);
16603 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_SET_WOWLAN);
16607 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16608 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16612 if (wdev->netdev && nla_put_u32(msg, NL80211_ATTR_IFINDEX,
16613 wdev->netdev->ifindex))
16617 struct nlattr *reasons;
16619 reasons = nla_nest_start_noflag(msg,
16620 NL80211_ATTR_WOWLAN_TRIGGERS);
16624 if (wakeup->disconnect &&
16625 nla_put_flag(msg, NL80211_WOWLAN_TRIG_DISCONNECT))
16627 if (wakeup->magic_pkt &&
16628 nla_put_flag(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT))
16630 if (wakeup->gtk_rekey_failure &&
16631 nla_put_flag(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE))
16633 if (wakeup->eap_identity_req &&
16634 nla_put_flag(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST))
16636 if (wakeup->four_way_handshake &&
16637 nla_put_flag(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE))
16639 if (wakeup->rfkill_release &&
16640 nla_put_flag(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE))
16643 if (wakeup->pattern_idx >= 0 &&
16644 nla_put_u32(msg, NL80211_WOWLAN_TRIG_PKT_PATTERN,
16645 wakeup->pattern_idx))
16648 if (wakeup->tcp_match &&
16649 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_MATCH))
16652 if (wakeup->tcp_connlost &&
16653 nla_put_flag(msg, NL80211_WOWLAN_TRIG_WAKEUP_TCP_CONNLOST))
16656 if (wakeup->tcp_nomoretokens &&
16658 NL80211_WOWLAN_TRIG_WAKEUP_TCP_NOMORETOKENS))
16661 if (wakeup->packet) {
16662 u32 pkt_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211;
16663 u32 len_attr = NL80211_WOWLAN_TRIG_WAKEUP_PKT_80211_LEN;
16665 if (!wakeup->packet_80211) {
16667 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023;
16669 NL80211_WOWLAN_TRIG_WAKEUP_PKT_8023_LEN;
16672 if (wakeup->packet_len &&
16673 nla_put_u32(msg, len_attr, wakeup->packet_len))
16676 if (nla_put(msg, pkt_attr, wakeup->packet_present_len,
16681 if (wakeup->net_detect &&
16682 cfg80211_net_detect_results(msg, wakeup))
16685 nla_nest_end(msg, reasons);
16688 genlmsg_end(msg, hdr);
16690 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16691 NL80211_MCGRP_MLME, gfp);
16697 EXPORT_SYMBOL(cfg80211_report_wowlan_wakeup);
16700 void cfg80211_tdls_oper_request(struct net_device *dev, const u8 *peer,
16701 enum nl80211_tdls_operation oper,
16702 u16 reason_code, gfp_t gfp)
16704 struct wireless_dev *wdev = dev->ieee80211_ptr;
16705 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16706 struct sk_buff *msg;
16709 trace_cfg80211_tdls_oper_request(wdev->wiphy, dev, peer, oper,
16712 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16716 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_TDLS_OPER);
16722 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16723 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16724 nla_put_u8(msg, NL80211_ATTR_TDLS_OPERATION, oper) ||
16725 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, peer) ||
16726 (reason_code > 0 &&
16727 nla_put_u16(msg, NL80211_ATTR_REASON_CODE, reason_code)))
16728 goto nla_put_failure;
16730 genlmsg_end(msg, hdr);
16732 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16733 NL80211_MCGRP_MLME, gfp);
16739 EXPORT_SYMBOL(cfg80211_tdls_oper_request);
16741 static int nl80211_netlink_notify(struct notifier_block * nb,
16742 unsigned long state,
16745 struct netlink_notify *notify = _notify;
16746 struct cfg80211_registered_device *rdev;
16747 struct wireless_dev *wdev;
16748 struct cfg80211_beacon_registration *reg, *tmp;
16750 if (state != NETLINK_URELEASE || notify->protocol != NETLINK_GENERIC)
16751 return NOTIFY_DONE;
16755 list_for_each_entry_rcu(rdev, &cfg80211_rdev_list, list) {
16756 struct cfg80211_sched_scan_request *sched_scan_req;
16758 list_for_each_entry_rcu(sched_scan_req,
16759 &rdev->sched_scan_req_list,
16761 if (sched_scan_req->owner_nlportid == notify->portid) {
16762 sched_scan_req->nl_owner_dead = true;
16763 schedule_work(&rdev->sched_scan_stop_wk);
16767 list_for_each_entry_rcu(wdev, &rdev->wiphy.wdev_list, list) {
16768 cfg80211_mlme_unregister_socket(wdev, notify->portid);
16770 if (wdev->owner_nlportid == notify->portid) {
16771 wdev->nl_owner_dead = true;
16772 schedule_work(&rdev->destroy_work);
16773 } else if (wdev->conn_owner_nlportid == notify->portid) {
16774 schedule_work(&wdev->disconnect_wk);
16777 cfg80211_release_pmsr(wdev, notify->portid);
16780 spin_lock_bh(&rdev->beacon_registrations_lock);
16781 list_for_each_entry_safe(reg, tmp, &rdev->beacon_registrations,
16783 if (reg->nlportid == notify->portid) {
16784 list_del(®->list);
16789 spin_unlock_bh(&rdev->beacon_registrations_lock);
16795 * It is possible that the user space process that is controlling the
16796 * indoor setting disappeared, so notify the regulatory core.
16798 regulatory_netlink_notify(notify->portid);
16802 static struct notifier_block nl80211_netlink_notifier = {
16803 .notifier_call = nl80211_netlink_notify,
16806 void cfg80211_ft_event(struct net_device *netdev,
16807 struct cfg80211_ft_event_params *ft_event)
16809 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16810 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16811 struct sk_buff *msg;
16814 trace_cfg80211_ft_event(wiphy, netdev, ft_event);
16816 if (!ft_event->target_ap)
16819 msg = nlmsg_new(100 + ft_event->ies_len + ft_event->ric_ies_len,
16824 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_FT_EVENT);
16828 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16829 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16830 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, ft_event->target_ap))
16833 if (ft_event->ies &&
16834 nla_put(msg, NL80211_ATTR_IE, ft_event->ies_len, ft_event->ies))
16836 if (ft_event->ric_ies &&
16837 nla_put(msg, NL80211_ATTR_IE_RIC, ft_event->ric_ies_len,
16838 ft_event->ric_ies))
16841 genlmsg_end(msg, hdr);
16843 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16844 NL80211_MCGRP_MLME, GFP_KERNEL);
16849 EXPORT_SYMBOL(cfg80211_ft_event);
16851 void cfg80211_crit_proto_stopped(struct wireless_dev *wdev, gfp_t gfp)
16853 struct cfg80211_registered_device *rdev;
16854 struct sk_buff *msg;
16858 rdev = wiphy_to_rdev(wdev->wiphy);
16859 if (!rdev->crit_proto_nlportid)
16862 nlportid = rdev->crit_proto_nlportid;
16863 rdev->crit_proto_nlportid = 0;
16865 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16869 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_CRIT_PROTOCOL_STOP);
16871 goto nla_put_failure;
16873 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16874 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16876 goto nla_put_failure;
16878 genlmsg_end(msg, hdr);
16880 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg, nlportid);
16886 EXPORT_SYMBOL(cfg80211_crit_proto_stopped);
16888 void nl80211_send_ap_stopped(struct wireless_dev *wdev)
16890 struct wiphy *wiphy = wdev->wiphy;
16891 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16892 struct sk_buff *msg;
16895 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_KERNEL);
16899 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_STOP_AP);
16903 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16904 nla_put_u32(msg, NL80211_ATTR_IFINDEX, wdev->netdev->ifindex) ||
16905 nla_put_u64_64bit(msg, NL80211_ATTR_WDEV, wdev_id(wdev),
16909 genlmsg_end(msg, hdr);
16911 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(wiphy), msg, 0,
16912 NL80211_MCGRP_MLME, GFP_KERNEL);
16918 int cfg80211_external_auth_request(struct net_device *dev,
16919 struct cfg80211_external_auth_params *params,
16922 struct wireless_dev *wdev = dev->ieee80211_ptr;
16923 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wdev->wiphy);
16924 struct sk_buff *msg;
16927 if (!wdev->conn_owner_nlportid)
16930 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16934 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_EXTERNAL_AUTH);
16936 goto nla_put_failure;
16938 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16939 nla_put_u32(msg, NL80211_ATTR_IFINDEX, dev->ifindex) ||
16940 nla_put_u32(msg, NL80211_ATTR_AKM_SUITES, params->key_mgmt_suite) ||
16941 nla_put_u32(msg, NL80211_ATTR_EXTERNAL_AUTH_ACTION,
16943 nla_put(msg, NL80211_ATTR_BSSID, ETH_ALEN, params->bssid) ||
16944 nla_put(msg, NL80211_ATTR_SSID, params->ssid.ssid_len,
16945 params->ssid.ssid))
16946 goto nla_put_failure;
16948 genlmsg_end(msg, hdr);
16949 genlmsg_unicast(wiphy_net(&rdev->wiphy), msg,
16950 wdev->conn_owner_nlportid);
16957 EXPORT_SYMBOL(cfg80211_external_auth_request);
16959 void cfg80211_update_owe_info_event(struct net_device *netdev,
16960 struct cfg80211_update_owe_info *owe_info,
16963 struct wiphy *wiphy = netdev->ieee80211_ptr->wiphy;
16964 struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
16965 struct sk_buff *msg;
16968 trace_cfg80211_update_owe_info_event(wiphy, netdev, owe_info);
16970 msg = nlmsg_new(NLMSG_DEFAULT_SIZE, gfp);
16974 hdr = nl80211hdr_put(msg, 0, 0, 0, NL80211_CMD_UPDATE_OWE_INFO);
16976 goto nla_put_failure;
16978 if (nla_put_u32(msg, NL80211_ATTR_WIPHY, rdev->wiphy_idx) ||
16979 nla_put_u32(msg, NL80211_ATTR_IFINDEX, netdev->ifindex) ||
16980 nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, owe_info->peer))
16981 goto nla_put_failure;
16983 if (!owe_info->ie_len ||
16984 nla_put(msg, NL80211_ATTR_IE, owe_info->ie_len, owe_info->ie))
16985 goto nla_put_failure;
16987 genlmsg_end(msg, hdr);
16989 genlmsg_multicast_netns(&nl80211_fam, wiphy_net(&rdev->wiphy), msg, 0,
16990 NL80211_MCGRP_MLME, gfp);
16994 genlmsg_cancel(msg, hdr);
16997 EXPORT_SYMBOL(cfg80211_update_owe_info_event);
16999 /* initialisation/exit functions */
17001 int __init nl80211_init(void)
17005 err = genl_register_family(&nl80211_fam);
17009 err = netlink_register_notifier(&nl80211_netlink_notifier);
17015 genl_unregister_family(&nl80211_fam);
17019 void nl80211_exit(void)
17021 netlink_unregister_notifier(&nl80211_netlink_notifier);
17022 genl_unregister_family(&nl80211_fam);
OSDN Git Service
