2 * Driver interaction with generic Linux Wireless Extensions
3 * Copyright (c) 2003-2010, Jouni Malinen <j@w1.fi>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 2 as
7 * published by the Free Software Foundation.
9 * Alternatively, this software may be distributed under the terms of BSD
12 * See README and COPYING for more details.
14 * This file implements a driver interface for the Linux Wireless Extensions.
15 * When used with WE-18 or newer, this interface can be used as-is with number
16 * of drivers. In addition to this, some of the common functions in this file
17 * can be used by other driver interface implementations that use generic WE
18 * ioctls, but require private ioctls for some of the functionality.
22 #include <sys/ioctl.h>
24 #include <net/if_arp.h>
26 #include "wireless_copy.h"
29 #include "common/ieee802_11_defs.h"
30 #include "common/wpa_common.h"
31 #include "priv_netlink.h"
33 #include "linux_ioctl.h"
36 #include "driver_wext.h"
39 static int wpa_driver_wext_flush_pmkid(void *priv);
40 static int wpa_driver_wext_get_range(void *priv);
41 static int wpa_driver_wext_finish_drv_init(struct wpa_driver_wext_data *drv);
42 static void wpa_driver_wext_disconnect(struct wpa_driver_wext_data *drv);
43 static int wpa_driver_wext_set_auth_alg(void *priv, int auth_alg);
46 int wpa_driver_wext_set_auth_param(struct wpa_driver_wext_data *drv,
52 os_memset(&iwr, 0, sizeof(iwr));
53 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
54 iwr.u.param.flags = idx & IW_AUTH_INDEX;
55 iwr.u.param.value = value;
57 if (ioctl(drv->ioctl_sock, SIOCSIWAUTH, &iwr) < 0) {
58 if (errno != EOPNOTSUPP) {
59 wpa_printf(MSG_DEBUG, "WEXT: SIOCSIWAUTH(param %d "
60 "value 0x%x) failed: %s)",
61 idx, value, strerror(errno));
63 ret = errno == EOPNOTSUPP ? -2 : -1;
71 * wpa_driver_wext_get_bssid - Get BSSID, SIOCGIWAP
72 * @priv: Pointer to private wext data from wpa_driver_wext_init()
73 * @bssid: Buffer for BSSID
74 * Returns: 0 on success, -1 on failure
76 int wpa_driver_wext_get_bssid(void *priv, u8 *bssid)
78 struct wpa_driver_wext_data *drv = priv;
82 os_memset(&iwr, 0, sizeof(iwr));
83 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
85 if (ioctl(drv->ioctl_sock, SIOCGIWAP, &iwr) < 0) {
86 perror("ioctl[SIOCGIWAP]");
89 os_memcpy(bssid, iwr.u.ap_addr.sa_data, ETH_ALEN);
96 * wpa_driver_wext_set_bssid - Set BSSID, SIOCSIWAP
97 * @priv: Pointer to private wext data from wpa_driver_wext_init()
99 * Returns: 0 on success, -1 on failure
101 int wpa_driver_wext_set_bssid(void *priv, const u8 *bssid)
103 struct wpa_driver_wext_data *drv = priv;
107 os_memset(&iwr, 0, sizeof(iwr));
108 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
109 iwr.u.ap_addr.sa_family = ARPHRD_ETHER;
111 os_memcpy(iwr.u.ap_addr.sa_data, bssid, ETH_ALEN);
113 os_memset(iwr.u.ap_addr.sa_data, 0, ETH_ALEN);
115 if (ioctl(drv->ioctl_sock, SIOCSIWAP, &iwr) < 0) {
116 perror("ioctl[SIOCSIWAP]");
125 * wpa_driver_wext_get_ssid - Get SSID, SIOCGIWESSID
126 * @priv: Pointer to private wext data from wpa_driver_wext_init()
127 * @ssid: Buffer for the SSID; must be at least 32 bytes long
128 * Returns: SSID length on success, -1 on failure
130 int wpa_driver_wext_get_ssid(void *priv, u8 *ssid)
132 struct wpa_driver_wext_data *drv = priv;
136 os_memset(&iwr, 0, sizeof(iwr));
137 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
138 iwr.u.essid.pointer = (caddr_t) ssid;
139 iwr.u.essid.length = 32;
141 if (ioctl(drv->ioctl_sock, SIOCGIWESSID, &iwr) < 0) {
142 perror("ioctl[SIOCGIWESSID]");
145 ret = iwr.u.essid.length;
148 /* Some drivers include nul termination in the SSID, so let's
149 * remove it here before further processing. WE-21 changes this
150 * to explicitly require the length _not_ to include nul
152 if (ret > 0 && ssid[ret - 1] == '\0' &&
153 drv->we_version_compiled < 21)
162 * wpa_driver_wext_set_ssid - Set SSID, SIOCSIWESSID
163 * @priv: Pointer to private wext data from wpa_driver_wext_init()
165 * @ssid_len: Length of SSID (0..32)
166 * Returns: 0 on success, -1 on failure
168 int wpa_driver_wext_set_ssid(void *priv, const u8 *ssid, size_t ssid_len)
170 struct wpa_driver_wext_data *drv = priv;
178 os_memset(&iwr, 0, sizeof(iwr));
179 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
180 /* flags: 1 = ESSID is active, 0 = not (promiscuous) */
181 iwr.u.essid.flags = (ssid_len != 0);
182 os_memset(buf, 0, sizeof(buf));
183 os_memcpy(buf, ssid, ssid_len);
184 iwr.u.essid.pointer = (caddr_t) buf;
185 if (drv->we_version_compiled < 21) {
186 /* For historic reasons, set SSID length to include one extra
187 * character, C string nul termination, even though SSID is
188 * really an octet string that should not be presented as a C
189 * string. Some Linux drivers decrement the length by one and
190 * can thus end up missing the last octet of the SSID if the
191 * length is not incremented here. WE-21 changes this to
192 * explicitly require the length _not_ to include nul
197 iwr.u.essid.length = ssid_len;
199 if (ioctl(drv->ioctl_sock, SIOCSIWESSID, &iwr) < 0) {
200 perror("ioctl[SIOCSIWESSID]");
209 * wpa_driver_wext_set_freq - Set frequency/channel, SIOCSIWFREQ
210 * @priv: Pointer to private wext data from wpa_driver_wext_init()
211 * @freq: Frequency in MHz
212 * Returns: 0 on success, -1 on failure
214 int wpa_driver_wext_set_freq(void *priv, int freq)
216 struct wpa_driver_wext_data *drv = priv;
220 os_memset(&iwr, 0, sizeof(iwr));
221 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
222 iwr.u.freq.m = freq * 100000;
225 if (ioctl(drv->ioctl_sock, SIOCSIWFREQ, &iwr) < 0) {
226 perror("ioctl[SIOCSIWFREQ]");
235 wpa_driver_wext_event_wireless_custom(void *ctx, char *custom)
237 union wpa_event_data data;
239 wpa_printf(MSG_MSGDUMP, "WEXT: Custom wireless event: '%s'",
242 os_memset(&data, 0, sizeof(data));
244 if (os_strncmp(custom, "MLME-MICHAELMICFAILURE.indication", 33) == 0) {
245 data.michael_mic_failure.unicast =
246 os_strstr(custom, " unicast ") != NULL;
247 /* TODO: parse parameters(?) */
248 wpa_supplicant_event(ctx, EVENT_MICHAEL_MIC_FAILURE, &data);
249 } else if (os_strncmp(custom, "ASSOCINFO(ReqIEs=", 17) == 0) {
252 u8 *req_ies = NULL, *resp_ies = NULL;
256 bytes = strspn(spos, "0123456789abcdefABCDEF");
257 if (!bytes || (bytes & 1))
261 req_ies = os_malloc(bytes);
262 if (req_ies == NULL ||
263 hexstr2bin(spos, req_ies, bytes) < 0)
265 data.assoc_info.req_ies = req_ies;
266 data.assoc_info.req_ies_len = bytes;
270 data.assoc_info.resp_ies = NULL;
271 data.assoc_info.resp_ies_len = 0;
273 if (os_strncmp(spos, " RespIEs=", 9) == 0) {
276 bytes = strspn(spos, "0123456789abcdefABCDEF");
277 if (!bytes || (bytes & 1))
281 resp_ies = os_malloc(bytes);
282 if (resp_ies == NULL ||
283 hexstr2bin(spos, resp_ies, bytes) < 0)
285 data.assoc_info.resp_ies = resp_ies;
286 data.assoc_info.resp_ies_len = bytes;
289 wpa_supplicant_event(ctx, EVENT_ASSOCINFO, &data);
294 #ifdef CONFIG_PEERKEY
295 } else if (os_strncmp(custom, "STKSTART.request=", 17) == 0) {
296 if (hwaddr_aton(custom + 17, data.stkstart.peer)) {
297 wpa_printf(MSG_DEBUG, "WEXT: unrecognized "
298 "STKSTART.request '%s'", custom + 17);
301 wpa_supplicant_event(ctx, EVENT_STKSTART, &data);
302 #endif /* CONFIG_PEERKEY */
307 static int wpa_driver_wext_event_wireless_michaelmicfailure(
308 void *ctx, const char *ev, size_t len)
310 const struct iw_michaelmicfailure *mic;
311 union wpa_event_data data;
313 if (len < sizeof(*mic))
316 mic = (const struct iw_michaelmicfailure *) ev;
318 wpa_printf(MSG_DEBUG, "Michael MIC failure wireless event: "
319 "flags=0x%x src_addr=" MACSTR, mic->flags,
320 MAC2STR(mic->src_addr.sa_data));
322 os_memset(&data, 0, sizeof(data));
323 data.michael_mic_failure.unicast = !(mic->flags & IW_MICFAILURE_GROUP);
324 wpa_supplicant_event(ctx, EVENT_MICHAEL_MIC_FAILURE, &data);
330 static int wpa_driver_wext_event_wireless_pmkidcand(
331 struct wpa_driver_wext_data *drv, const char *ev, size_t len)
333 const struct iw_pmkid_cand *cand;
334 union wpa_event_data data;
337 if (len < sizeof(*cand))
340 cand = (const struct iw_pmkid_cand *) ev;
341 addr = (const u8 *) cand->bssid.sa_data;
343 wpa_printf(MSG_DEBUG, "PMKID candidate wireless event: "
344 "flags=0x%x index=%d bssid=" MACSTR, cand->flags,
345 cand->index, MAC2STR(addr));
347 os_memset(&data, 0, sizeof(data));
348 os_memcpy(data.pmkid_candidate.bssid, addr, ETH_ALEN);
349 data.pmkid_candidate.index = cand->index;
350 data.pmkid_candidate.preauth = cand->flags & IW_PMKID_CAND_PREAUTH;
351 wpa_supplicant_event(drv->ctx, EVENT_PMKID_CANDIDATE, &data);
357 static int wpa_driver_wext_event_wireless_assocreqie(
358 struct wpa_driver_wext_data *drv, const char *ev, int len)
363 wpa_hexdump(MSG_DEBUG, "AssocReq IE wireless event", (const u8 *) ev,
365 os_free(drv->assoc_req_ies);
366 drv->assoc_req_ies = os_malloc(len);
367 if (drv->assoc_req_ies == NULL) {
368 drv->assoc_req_ies_len = 0;
371 os_memcpy(drv->assoc_req_ies, ev, len);
372 drv->assoc_req_ies_len = len;
378 static int wpa_driver_wext_event_wireless_assocrespie(
379 struct wpa_driver_wext_data *drv, const char *ev, int len)
384 wpa_hexdump(MSG_DEBUG, "AssocResp IE wireless event", (const u8 *) ev,
386 os_free(drv->assoc_resp_ies);
387 drv->assoc_resp_ies = os_malloc(len);
388 if (drv->assoc_resp_ies == NULL) {
389 drv->assoc_resp_ies_len = 0;
392 os_memcpy(drv->assoc_resp_ies, ev, len);
393 drv->assoc_resp_ies_len = len;
399 static void wpa_driver_wext_event_assoc_ies(struct wpa_driver_wext_data *drv)
401 union wpa_event_data data;
403 if (drv->assoc_req_ies == NULL && drv->assoc_resp_ies == NULL)
406 os_memset(&data, 0, sizeof(data));
407 if (drv->assoc_req_ies) {
408 data.assoc_info.req_ies = drv->assoc_req_ies;
409 data.assoc_info.req_ies_len = drv->assoc_req_ies_len;
411 if (drv->assoc_resp_ies) {
412 data.assoc_info.resp_ies = drv->assoc_resp_ies;
413 data.assoc_info.resp_ies_len = drv->assoc_resp_ies_len;
416 wpa_supplicant_event(drv->ctx, EVENT_ASSOCINFO, &data);
418 os_free(drv->assoc_req_ies);
419 drv->assoc_req_ies = NULL;
420 os_free(drv->assoc_resp_ies);
421 drv->assoc_resp_ies = NULL;
425 static void wpa_driver_wext_event_wireless(struct wpa_driver_wext_data *drv,
428 struct iw_event iwe_buf, *iwe = &iwe_buf;
429 char *pos, *end, *custom, *buf;
434 while (pos + IW_EV_LCP_LEN <= end) {
435 /* Event data may be unaligned, so make a local, aligned copy
436 * before processing. */
437 os_memcpy(&iwe_buf, pos, IW_EV_LCP_LEN);
438 wpa_printf(MSG_DEBUG, "Wireless event: cmd=0x%x len=%d",
440 if (iwe->len <= IW_EV_LCP_LEN)
443 custom = pos + IW_EV_POINT_LEN;
444 if (drv->we_version_compiled > 18 &&
445 (iwe->cmd == IWEVMICHAELMICFAILURE ||
446 iwe->cmd == IWEVCUSTOM ||
447 iwe->cmd == IWEVASSOCREQIE ||
448 iwe->cmd == IWEVASSOCRESPIE ||
449 iwe->cmd == IWEVPMKIDCAND)) {
450 /* WE-19 removed the pointer from struct iw_point */
451 char *dpos = (char *) &iwe_buf.u.data.length;
452 int dlen = dpos - (char *) &iwe_buf;
453 os_memcpy(dpos, pos + IW_EV_LCP_LEN,
454 sizeof(struct iw_event) - dlen);
456 os_memcpy(&iwe_buf, pos, sizeof(struct iw_event));
457 custom += IW_EV_POINT_OFF;
462 wpa_printf(MSG_DEBUG, "Wireless event: new AP: "
464 MAC2STR((u8 *) iwe->u.ap_addr.sa_data));
465 if (is_zero_ether_addr(
466 (const u8 *) iwe->u.ap_addr.sa_data) ||
467 os_memcmp(iwe->u.ap_addr.sa_data,
468 "\x44\x44\x44\x44\x44\x44", ETH_ALEN) ==
470 os_free(drv->assoc_req_ies);
471 drv->assoc_req_ies = NULL;
472 os_free(drv->assoc_resp_ies);
473 drv->assoc_resp_ies = NULL;
474 wpa_supplicant_event(drv->ctx, EVENT_DISASSOC,
478 wpa_driver_wext_event_assoc_ies(drv);
479 wpa_supplicant_event(drv->ctx, EVENT_ASSOC,
483 case IWEVMICHAELMICFAILURE:
484 if (custom + iwe->u.data.length > end) {
485 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
486 "IWEVMICHAELMICFAILURE length");
489 wpa_driver_wext_event_wireless_michaelmicfailure(
490 drv->ctx, custom, iwe->u.data.length);
493 if (custom + iwe->u.data.length > end) {
494 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
495 "IWEVCUSTOM length");
498 buf = os_malloc(iwe->u.data.length + 1);
501 os_memcpy(buf, custom, iwe->u.data.length);
502 buf[iwe->u.data.length] = '\0';
503 wpa_driver_wext_event_wireless_custom(drv->ctx, buf);
507 drv->scan_complete_events = 1;
508 eloop_cancel_timeout(wpa_driver_wext_scan_timeout,
510 wpa_supplicant_event(drv->ctx, EVENT_SCAN_RESULTS,
514 if (custom + iwe->u.data.length > end) {
515 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
516 "IWEVASSOCREQIE length");
519 wpa_driver_wext_event_wireless_assocreqie(
520 drv, custom, iwe->u.data.length);
522 case IWEVASSOCRESPIE:
523 if (custom + iwe->u.data.length > end) {
524 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
525 "IWEVASSOCRESPIE length");
528 wpa_driver_wext_event_wireless_assocrespie(
529 drv, custom, iwe->u.data.length);
532 if (custom + iwe->u.data.length > end) {
533 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
534 "IWEVPMKIDCAND length");
537 wpa_driver_wext_event_wireless_pmkidcand(
538 drv, custom, iwe->u.data.length);
547 static void wpa_driver_wext_event_link(struct wpa_driver_wext_data *drv,
548 char *buf, size_t len, int del)
550 union wpa_event_data event;
552 os_memset(&event, 0, sizeof(event));
553 if (len > sizeof(event.interface_status.ifname))
554 len = sizeof(event.interface_status.ifname) - 1;
555 os_memcpy(event.interface_status.ifname, buf, len);
556 event.interface_status.ievent = del ? EVENT_INTERFACE_REMOVED :
557 EVENT_INTERFACE_ADDED;
559 wpa_printf(MSG_DEBUG, "RTM_%sLINK, IFLA_IFNAME: Interface '%s' %s",
561 event.interface_status.ifname,
562 del ? "removed" : "added");
564 if (os_strcmp(drv->ifname, event.interface_status.ifname) == 0) {
571 wpa_supplicant_event(drv->ctx, EVENT_INTERFACE_STATUS, &event);
575 static int wpa_driver_wext_own_ifname(struct wpa_driver_wext_data *drv,
578 int attrlen, rta_len;
582 attr = (struct rtattr *) buf;
584 rta_len = RTA_ALIGN(sizeof(struct rtattr));
585 while (RTA_OK(attr, attrlen)) {
586 if (attr->rta_type == IFLA_IFNAME) {
587 if (os_strcmp(((char *) attr) + rta_len, drv->ifname)
593 attr = RTA_NEXT(attr, attrlen);
600 static int wpa_driver_wext_own_ifindex(struct wpa_driver_wext_data *drv,
601 int ifindex, u8 *buf, size_t len)
603 if (drv->ifindex == ifindex || drv->ifindex2 == ifindex)
606 if (drv->if_removed && wpa_driver_wext_own_ifname(drv, buf, len)) {
607 drv->ifindex = if_nametoindex(drv->ifname);
608 wpa_printf(MSG_DEBUG, "WEXT: Update ifindex for a removed "
610 wpa_driver_wext_finish_drv_init(drv);
618 static void wpa_driver_wext_event_rtm_newlink(void *ctx, struct ifinfomsg *ifi,
621 struct wpa_driver_wext_data *drv = ctx;
622 int attrlen, rta_len;
625 if (!wpa_driver_wext_own_ifindex(drv, ifi->ifi_index, buf, len)) {
626 wpa_printf(MSG_DEBUG, "Ignore event for foreign ifindex %d",
631 wpa_printf(MSG_DEBUG, "RTM_NEWLINK: operstate=%d ifi_flags=0x%x "
633 drv->operstate, ifi->ifi_flags,
634 (ifi->ifi_flags & IFF_UP) ? "[UP]" : "",
635 (ifi->ifi_flags & IFF_RUNNING) ? "[RUNNING]" : "",
636 (ifi->ifi_flags & IFF_LOWER_UP) ? "[LOWER_UP]" : "",
637 (ifi->ifi_flags & IFF_DORMANT) ? "[DORMANT]" : "");
639 if (!drv->if_disabled && !(ifi->ifi_flags & IFF_UP)) {
640 wpa_printf(MSG_DEBUG, "WEXT: Interface down");
641 drv->if_disabled = 1;
642 wpa_supplicant_event(drv->ctx, EVENT_INTERFACE_DISABLED, NULL);
645 if (drv->if_disabled && (ifi->ifi_flags & IFF_UP)) {
646 wpa_printf(MSG_DEBUG, "WEXT: Interface up");
647 drv->if_disabled = 0;
648 wpa_supplicant_event(drv->ctx, EVENT_INTERFACE_ENABLED, NULL);
652 * Some drivers send the association event before the operup event--in
653 * this case, lifting operstate in wpa_driver_wext_set_operstate()
654 * fails. This will hit us when wpa_supplicant does not need to do
655 * IEEE 802.1X authentication
657 if (drv->operstate == 1 &&
658 (ifi->ifi_flags & (IFF_LOWER_UP | IFF_DORMANT)) == IFF_LOWER_UP &&
659 !(ifi->ifi_flags & IFF_RUNNING))
660 netlink_send_oper_ifla(drv->netlink, drv->ifindex,
664 attr = (struct rtattr *) buf;
666 rta_len = RTA_ALIGN(sizeof(struct rtattr));
667 while (RTA_OK(attr, attrlen)) {
668 if (attr->rta_type == IFLA_WIRELESS) {
669 wpa_driver_wext_event_wireless(
670 drv, ((char *) attr) + rta_len,
671 attr->rta_len - rta_len);
672 } else if (attr->rta_type == IFLA_IFNAME) {
673 wpa_driver_wext_event_link(drv,
674 ((char *) attr) + rta_len,
675 attr->rta_len - rta_len, 0);
677 attr = RTA_NEXT(attr, attrlen);
682 static void wpa_driver_wext_event_rtm_dellink(void *ctx, struct ifinfomsg *ifi,
685 struct wpa_driver_wext_data *drv = ctx;
686 int attrlen, rta_len;
690 attr = (struct rtattr *) buf;
692 rta_len = RTA_ALIGN(sizeof(struct rtattr));
693 while (RTA_OK(attr, attrlen)) {
694 if (attr->rta_type == IFLA_IFNAME) {
695 wpa_driver_wext_event_link(drv,
696 ((char *) attr) + rta_len,
697 attr->rta_len - rta_len, 1);
699 attr = RTA_NEXT(attr, attrlen);
704 static void wpa_driver_wext_rfkill_blocked(void *ctx)
706 wpa_printf(MSG_DEBUG, "WEXT: RFKILL blocked");
708 * This may be for any interface; use ifdown event to disable
714 static void wpa_driver_wext_rfkill_unblocked(void *ctx)
716 struct wpa_driver_wext_data *drv = ctx;
717 wpa_printf(MSG_DEBUG, "WEXT: RFKILL unblocked");
718 if (linux_set_iface_flags(drv->ioctl_sock, drv->ifname, 1)) {
719 wpa_printf(MSG_DEBUG, "WEXT: Could not set interface UP "
720 "after rfkill unblock");
723 /* rtnetlink ifup handler will report interface as enabled */
728 * wpa_driver_wext_init - Initialize WE driver interface
729 * @ctx: context to be used when calling wpa_supplicant functions,
730 * e.g., wpa_supplicant_event()
731 * @ifname: interface name, e.g., wlan0
732 * Returns: Pointer to private data, %NULL on failure
734 void * wpa_driver_wext_init(void *ctx, const char *ifname)
736 struct wpa_driver_wext_data *drv;
737 struct netlink_config *cfg;
738 struct rfkill_config *rcfg;
742 drv = os_zalloc(sizeof(*drv));
746 os_strlcpy(drv->ifname, ifname, sizeof(drv->ifname));
748 os_snprintf(path, sizeof(path), "/sys/class/net/%s/phy80211", ifname);
749 if (stat(path, &buf) == 0) {
750 wpa_printf(MSG_DEBUG, "WEXT: cfg80211-based driver detected");
754 drv->ioctl_sock = socket(PF_INET, SOCK_DGRAM, 0);
755 if (drv->ioctl_sock < 0) {
756 perror("socket(PF_INET,SOCK_DGRAM)");
760 cfg = os_zalloc(sizeof(*cfg));
764 cfg->newlink_cb = wpa_driver_wext_event_rtm_newlink;
765 cfg->dellink_cb = wpa_driver_wext_event_rtm_dellink;
766 drv->netlink = netlink_init(cfg);
767 if (drv->netlink == NULL) {
772 rcfg = os_zalloc(sizeof(*rcfg));
776 os_strlcpy(rcfg->ifname, ifname, sizeof(rcfg->ifname));
777 rcfg->blocked_cb = wpa_driver_wext_rfkill_blocked;
778 rcfg->unblocked_cb = wpa_driver_wext_rfkill_unblocked;
779 drv->rfkill = rfkill_init(rcfg);
780 if (drv->rfkill == NULL) {
781 wpa_printf(MSG_DEBUG, "WEXT: RFKILL status not available");
787 if (wpa_driver_wext_finish_drv_init(drv) < 0)
790 wpa_driver_wext_set_auth_param(drv, IW_AUTH_WPA_ENABLED, 1);
795 rfkill_deinit(drv->rfkill);
796 netlink_deinit(drv->netlink);
798 close(drv->ioctl_sock);
805 static void wpa_driver_wext_send_rfkill(void *eloop_ctx, void *timeout_ctx)
807 wpa_supplicant_event(timeout_ctx, EVENT_INTERFACE_DISABLED, NULL);
811 static int wpa_driver_wext_finish_drv_init(struct wpa_driver_wext_data *drv)
813 int send_rfkill_event = 0;
815 if (linux_set_iface_flags(drv->ioctl_sock, drv->ifname, 1) < 0) {
816 if (rfkill_is_blocked(drv->rfkill)) {
817 wpa_printf(MSG_DEBUG, "WEXT: Could not yet enable "
818 "interface '%s' due to rfkill",
820 drv->if_disabled = 1;
821 send_rfkill_event = 1;
823 wpa_printf(MSG_ERROR, "WEXT: Could not set "
824 "interface '%s' UP", drv->ifname);
830 * Make sure that the driver does not have any obsolete PMKID entries.
832 wpa_driver_wext_flush_pmkid(drv);
834 if (wpa_driver_wext_set_mode(drv, 0) < 0) {
835 wpa_printf(MSG_DEBUG, "Could not configure driver to use "
837 /* Try to use it anyway */
840 wpa_driver_wext_get_range(drv);
843 * Unlock the driver's BSSID and force to a random SSID to clear any
844 * previous association the driver might have when the supplicant
847 wpa_driver_wext_disconnect(drv);
849 drv->ifindex = if_nametoindex(drv->ifname);
851 if (os_strncmp(drv->ifname, "wlan", 4) == 0) {
853 * Host AP driver may use both wlan# and wifi# interface in
854 * wireless events. Since some of the versions included WE-18
855 * support, let's add the alternative ifindex also from
856 * driver_wext.c for the time being. This may be removed at
857 * some point once it is believed that old versions of the
858 * driver are not in use anymore.
860 char ifname2[IFNAMSIZ + 1];
861 os_strlcpy(ifname2, drv->ifname, sizeof(ifname2));
862 os_memcpy(ifname2, "wifi", 4);
863 wpa_driver_wext_alternative_ifindex(drv, ifname2);
866 netlink_send_oper_ifla(drv->netlink, drv->ifindex,
869 if (send_rfkill_event) {
870 eloop_register_timeout(0, 0, wpa_driver_wext_send_rfkill,
879 * wpa_driver_wext_deinit - Deinitialize WE driver interface
880 * @priv: Pointer to private wext data from wpa_driver_wext_init()
882 * Shut down driver interface and processing of driver events. Free
883 * private data buffer if one was allocated in wpa_driver_wext_init().
885 void wpa_driver_wext_deinit(void *priv)
887 struct wpa_driver_wext_data *drv = priv;
889 wpa_driver_wext_set_auth_param(drv, IW_AUTH_WPA_ENABLED, 0);
891 eloop_cancel_timeout(wpa_driver_wext_scan_timeout, drv, drv->ctx);
894 * Clear possibly configured driver parameters in order to make it
895 * easier to use the driver after wpa_supplicant has been terminated.
897 wpa_driver_wext_disconnect(drv);
899 netlink_send_oper_ifla(drv->netlink, drv->ifindex, 0, IF_OPER_UP);
900 netlink_deinit(drv->netlink);
901 rfkill_deinit(drv->rfkill);
903 if (drv->mlme_sock >= 0)
904 eloop_unregister_read_sock(drv->mlme_sock);
906 (void) linux_set_iface_flags(drv->ioctl_sock, drv->ifname, 0);
908 close(drv->ioctl_sock);
909 if (drv->mlme_sock >= 0)
910 close(drv->mlme_sock);
911 os_free(drv->assoc_req_ies);
912 os_free(drv->assoc_resp_ies);
918 * wpa_driver_wext_scan_timeout - Scan timeout to report scan completion
920 * @timeout_ctx: ctx argument given to wpa_driver_wext_init()
922 * This function can be used as registered timeout when starting a scan to
923 * generate a scan completed event if the driver does not report this.
925 void wpa_driver_wext_scan_timeout(void *eloop_ctx, void *timeout_ctx)
927 wpa_printf(MSG_DEBUG, "Scan timeout - try to get results");
928 wpa_supplicant_event(timeout_ctx, EVENT_SCAN_RESULTS, NULL);
933 * wpa_driver_wext_scan - Request the driver to initiate scan
934 * @priv: Pointer to private wext data from wpa_driver_wext_init()
935 * @param: Scan parameters (specific SSID to scan for (ProbeReq), etc.)
936 * Returns: 0 on success, -1 on failure
938 int wpa_driver_wext_scan(void *priv, struct wpa_driver_scan_params *params)
940 struct wpa_driver_wext_data *drv = priv;
942 int ret = 0, timeout;
943 struct iw_scan_req req;
944 const u8 *ssid = params->ssids[0].ssid;
945 size_t ssid_len = params->ssids[0].ssid_len;
947 if (ssid_len > IW_ESSID_MAX_SIZE) {
948 wpa_printf(MSG_DEBUG, "%s: too long SSID (%lu)",
949 __FUNCTION__, (unsigned long) ssid_len);
953 os_memset(&iwr, 0, sizeof(iwr));
954 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
956 if (ssid && ssid_len) {
957 os_memset(&req, 0, sizeof(req));
958 req.essid_len = ssid_len;
959 req.bssid.sa_family = ARPHRD_ETHER;
960 os_memset(req.bssid.sa_data, 0xff, ETH_ALEN);
961 os_memcpy(req.essid, ssid, ssid_len);
962 iwr.u.data.pointer = (caddr_t) &req;
963 iwr.u.data.length = sizeof(req);
964 iwr.u.data.flags = IW_SCAN_THIS_ESSID;
967 if (ioctl(drv->ioctl_sock, SIOCSIWSCAN, &iwr) < 0) {
968 perror("ioctl[SIOCSIWSCAN]");
972 /* Not all drivers generate "scan completed" wireless event, so try to
973 * read results after a timeout. */
975 if (drv->scan_complete_events) {
977 * The driver seems to deliver SIOCGIWSCAN events to notify
978 * when scan is complete, so use longer timeout to avoid race
979 * conditions with scanning and following association request.
983 wpa_printf(MSG_DEBUG, "Scan requested (ret=%d) - scan timeout %d "
984 "seconds", ret, timeout);
985 eloop_cancel_timeout(wpa_driver_wext_scan_timeout, drv, drv->ctx);
986 eloop_register_timeout(timeout, 0, wpa_driver_wext_scan_timeout, drv,
993 static u8 * wpa_driver_wext_giwscan(struct wpa_driver_wext_data *drv,
1000 res_buf_len = IW_SCAN_MAX_DATA;
1002 res_buf = os_malloc(res_buf_len);
1003 if (res_buf == NULL)
1005 os_memset(&iwr, 0, sizeof(iwr));
1006 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1007 iwr.u.data.pointer = res_buf;
1008 iwr.u.data.length = res_buf_len;
1010 if (ioctl(drv->ioctl_sock, SIOCGIWSCAN, &iwr) == 0)
1013 if (errno == E2BIG && res_buf_len < 65535) {
1017 if (res_buf_len > 65535)
1018 res_buf_len = 65535; /* 16-bit length field */
1019 wpa_printf(MSG_DEBUG, "Scan results did not fit - "
1020 "trying larger buffer (%lu bytes)",
1021 (unsigned long) res_buf_len);
1023 perror("ioctl[SIOCGIWSCAN]");
1029 if (iwr.u.data.length > res_buf_len) {
1033 *len = iwr.u.data.length;
1040 * Data structure for collecting WEXT scan results. This is needed to allow
1041 * the various methods of reporting IEs to be combined into a single IE buffer.
1043 struct wext_scan_data {
1044 struct wpa_scan_res res;
1053 static void wext_get_scan_mode(struct iw_event *iwe,
1054 struct wext_scan_data *res)
1056 if (iwe->u.mode == IW_MODE_ADHOC)
1057 res->res.caps |= IEEE80211_CAP_IBSS;
1058 else if (iwe->u.mode == IW_MODE_MASTER || iwe->u.mode == IW_MODE_INFRA)
1059 res->res.caps |= IEEE80211_CAP_ESS;
1063 static void wext_get_scan_ssid(struct iw_event *iwe,
1064 struct wext_scan_data *res, char *custom,
1067 int ssid_len = iwe->u.essid.length;
1068 if (custom + ssid_len > end)
1070 if (iwe->u.essid.flags &&
1072 ssid_len <= IW_ESSID_MAX_SIZE) {
1073 os_memcpy(res->ssid, custom, ssid_len);
1074 res->ssid_len = ssid_len;
1079 static void wext_get_scan_freq(struct iw_event *iwe,
1080 struct wext_scan_data *res)
1082 int divi = 1000000, i;
1084 if (iwe->u.freq.e == 0) {
1086 * Some drivers do not report frequency, but a channel.
1087 * Try to map this to frequency by assuming they are using
1088 * IEEE 802.11b/g. But don't overwrite a previously parsed
1089 * frequency if the driver sends both frequency and channel,
1090 * since the driver may be sending an A-band channel that we
1091 * don't handle here.
1097 if (iwe->u.freq.m >= 1 && iwe->u.freq.m <= 13) {
1098 res->res.freq = 2407 + 5 * iwe->u.freq.m;
1100 } else if (iwe->u.freq.m == 14) {
1101 res->res.freq = 2484;
1106 if (iwe->u.freq.e > 6) {
1107 wpa_printf(MSG_DEBUG, "Invalid freq in scan results (BSSID="
1108 MACSTR " m=%d e=%d)",
1109 MAC2STR(res->res.bssid), iwe->u.freq.m,
1114 for (i = 0; i < iwe->u.freq.e; i++)
1116 res->res.freq = iwe->u.freq.m / divi;
1120 static void wext_get_scan_qual(struct wpa_driver_wext_data *drv,
1121 struct iw_event *iwe,
1122 struct wext_scan_data *res)
1124 res->res.qual = iwe->u.qual.qual;
1125 res->res.noise = iwe->u.qual.noise;
1126 res->res.level = iwe->u.qual.level;
1127 if (iwe->u.qual.updated & IW_QUAL_QUAL_INVALID)
1128 res->res.flags |= WPA_SCAN_QUAL_INVALID;
1129 if (iwe->u.qual.updated & IW_QUAL_LEVEL_INVALID)
1130 res->res.flags |= WPA_SCAN_LEVEL_INVALID;
1131 if (iwe->u.qual.updated & IW_QUAL_NOISE_INVALID)
1132 res->res.flags |= WPA_SCAN_NOISE_INVALID;
1133 if (iwe->u.qual.updated & IW_QUAL_DBM)
1134 res->res.flags |= WPA_SCAN_LEVEL_DBM;
1135 if ((iwe->u.qual.updated & IW_QUAL_DBM) ||
1136 ((iwe->u.qual.level != 0) &&
1137 (iwe->u.qual.level > drv->max_level))) {
1138 if (iwe->u.qual.level >= 64)
1139 res->res.level -= 0x100;
1140 if (iwe->u.qual.noise >= 64)
1141 res->res.noise -= 0x100;
1146 static void wext_get_scan_encode(struct iw_event *iwe,
1147 struct wext_scan_data *res)
1149 if (!(iwe->u.data.flags & IW_ENCODE_DISABLED))
1150 res->res.caps |= IEEE80211_CAP_PRIVACY;
1154 static void wext_get_scan_rate(struct iw_event *iwe,
1155 struct wext_scan_data *res, char *pos,
1159 char *custom = pos + IW_EV_LCP_LEN;
1164 if (custom + clen > end)
1167 while (((ssize_t) clen) >= (ssize_t) sizeof(struct iw_param)) {
1168 /* Note: may be misaligned, make a local, aligned copy */
1169 os_memcpy(&p, custom, sizeof(struct iw_param));
1170 if (p.value > maxrate)
1172 clen -= sizeof(struct iw_param);
1173 custom += sizeof(struct iw_param);
1176 /* Convert the maxrate from WE-style (b/s units) to
1177 * 802.11 rates (500000 b/s units).
1179 res->maxrate = maxrate / 500000;
1183 static void wext_get_scan_iwevgenie(struct iw_event *iwe,
1184 struct wext_scan_data *res, char *custom,
1187 char *genie, *gpos, *gend;
1190 if (iwe->u.data.length == 0)
1193 gpos = genie = custom;
1194 gend = genie + iwe->u.data.length;
1196 wpa_printf(MSG_INFO, "IWEVGENIE overflow");
1200 tmp = os_realloc(res->ie, res->ie_len + gend - gpos);
1203 os_memcpy(tmp + res->ie_len, gpos, gend - gpos);
1205 res->ie_len += gend - gpos;
1209 static void wext_get_scan_custom(struct iw_event *iwe,
1210 struct wext_scan_data *res, char *custom,
1216 clen = iwe->u.data.length;
1217 if (custom + clen > end)
1220 if (clen > 7 && os_strncmp(custom, "wpa_ie=", 7) == 0) {
1224 bytes = custom + clen - spos;
1225 if (bytes & 1 || bytes == 0)
1228 tmp = os_realloc(res->ie, res->ie_len + bytes);
1232 if (hexstr2bin(spos, tmp + res->ie_len, bytes) < 0)
1234 res->ie_len += bytes;
1235 } else if (clen > 7 && os_strncmp(custom, "rsn_ie=", 7) == 0) {
1239 bytes = custom + clen - spos;
1240 if (bytes & 1 || bytes == 0)
1243 tmp = os_realloc(res->ie, res->ie_len + bytes);
1247 if (hexstr2bin(spos, tmp + res->ie_len, bytes) < 0)
1249 res->ie_len += bytes;
1250 } else if (clen > 4 && os_strncmp(custom, "tsf=", 4) == 0) {
1255 bytes = custom + clen - spos;
1257 wpa_printf(MSG_INFO, "Invalid TSF length (%d)", bytes);
1261 if (hexstr2bin(spos, bin, bytes) < 0) {
1262 wpa_printf(MSG_DEBUG, "WEXT: Invalid TSF value");
1265 res->res.tsf += WPA_GET_BE64(bin);
1270 static int wext_19_iw_point(struct wpa_driver_wext_data *drv, u16 cmd)
1272 return drv->we_version_compiled > 18 &&
1273 (cmd == SIOCGIWESSID || cmd == SIOCGIWENCODE ||
1274 cmd == IWEVGENIE || cmd == IWEVCUSTOM);
1278 static void wpa_driver_wext_add_scan_entry(struct wpa_scan_results *res,
1279 struct wext_scan_data *data)
1281 struct wpa_scan_res **tmp;
1282 struct wpa_scan_res *r;
1284 u8 *pos, *end, *ssid_ie = NULL, *rate_ie = NULL;
1286 /* Figure out whether we need to fake any IEs */
1288 end = pos + data->ie_len;
1289 while (pos && pos + 1 < end) {
1290 if (pos + 2 + pos[1] > end)
1292 if (pos[0] == WLAN_EID_SSID)
1294 else if (pos[0] == WLAN_EID_SUPP_RATES)
1296 else if (pos[0] == WLAN_EID_EXT_SUPP_RATES)
1302 if (ssid_ie == NULL)
1303 extra_len += 2 + data->ssid_len;
1304 if (rate_ie == NULL && data->maxrate)
1307 r = os_zalloc(sizeof(*r) + extra_len + data->ie_len);
1310 os_memcpy(r, &data->res, sizeof(*r));
1311 r->ie_len = extra_len + data->ie_len;
1312 pos = (u8 *) (r + 1);
1313 if (ssid_ie == NULL) {
1315 * Generate a fake SSID IE since the driver did not report
1318 *pos++ = WLAN_EID_SSID;
1319 *pos++ = data->ssid_len;
1320 os_memcpy(pos, data->ssid, data->ssid_len);
1321 pos += data->ssid_len;
1323 if (rate_ie == NULL && data->maxrate) {
1325 * Generate a fake Supported Rates IE since the driver did not
1326 * report a full IE list.
1328 *pos++ = WLAN_EID_SUPP_RATES;
1330 *pos++ = data->maxrate;
1333 os_memcpy(pos, data->ie, data->ie_len);
1335 tmp = os_realloc(res->res,
1336 (res->num + 1) * sizeof(struct wpa_scan_res *));
1341 tmp[res->num++] = r;
1347 * wpa_driver_wext_get_scan_results - Fetch the latest scan results
1348 * @priv: Pointer to private wext data from wpa_driver_wext_init()
1349 * Returns: Scan results on success, -1 on failure
1351 struct wpa_scan_results * wpa_driver_wext_get_scan_results(void *priv)
1353 struct wpa_driver_wext_data *drv = priv;
1354 size_t ap_num = 0, len;
1357 struct iw_event iwe_buf, *iwe = &iwe_buf;
1358 char *pos, *end, *custom;
1359 struct wpa_scan_results *res;
1360 struct wext_scan_data data;
1362 res_buf = wpa_driver_wext_giwscan(drv, &len);
1363 if (res_buf == NULL)
1369 res = os_zalloc(sizeof(*res));
1375 pos = (char *) res_buf;
1376 end = (char *) res_buf + len;
1377 os_memset(&data, 0, sizeof(data));
1379 while (pos + IW_EV_LCP_LEN <= end) {
1380 /* Event data may be unaligned, so make a local, aligned copy
1381 * before processing. */
1382 os_memcpy(&iwe_buf, pos, IW_EV_LCP_LEN);
1383 if (iwe->len <= IW_EV_LCP_LEN)
1386 custom = pos + IW_EV_POINT_LEN;
1387 if (wext_19_iw_point(drv, iwe->cmd)) {
1388 /* WE-19 removed the pointer from struct iw_point */
1389 char *dpos = (char *) &iwe_buf.u.data.length;
1390 int dlen = dpos - (char *) &iwe_buf;
1391 os_memcpy(dpos, pos + IW_EV_LCP_LEN,
1392 sizeof(struct iw_event) - dlen);
1394 os_memcpy(&iwe_buf, pos, sizeof(struct iw_event));
1395 custom += IW_EV_POINT_OFF;
1401 wpa_driver_wext_add_scan_entry(res, &data);
1404 os_memset(&data, 0, sizeof(data));
1405 os_memcpy(data.res.bssid,
1406 iwe->u.ap_addr.sa_data, ETH_ALEN);
1409 wext_get_scan_mode(iwe, &data);
1412 wext_get_scan_ssid(iwe, &data, custom, end);
1415 wext_get_scan_freq(iwe, &data);
1418 wext_get_scan_qual(drv, iwe, &data);
1421 wext_get_scan_encode(iwe, &data);
1424 wext_get_scan_rate(iwe, &data, pos, end);
1427 wext_get_scan_iwevgenie(iwe, &data, custom, end);
1430 wext_get_scan_custom(iwe, &data, custom, end);
1439 wpa_driver_wext_add_scan_entry(res, &data);
1442 wpa_printf(MSG_DEBUG, "Received %lu bytes of scan results (%lu BSSes)",
1443 (unsigned long) len, (unsigned long) res->num);
1449 static int wpa_driver_wext_get_range(void *priv)
1451 struct wpa_driver_wext_data *drv = priv;
1452 struct iw_range *range;
1458 * Use larger buffer than struct iw_range in order to allow the
1459 * structure to grow in the future.
1461 buflen = sizeof(struct iw_range) + 500;
1462 range = os_zalloc(buflen);
1466 os_memset(&iwr, 0, sizeof(iwr));
1467 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1468 iwr.u.data.pointer = (caddr_t) range;
1469 iwr.u.data.length = buflen;
1471 minlen = ((char *) &range->enc_capa) - (char *) range +
1472 sizeof(range->enc_capa);
1474 if (ioctl(drv->ioctl_sock, SIOCGIWRANGE, &iwr) < 0) {
1475 perror("ioctl[SIOCGIWRANGE]");
1478 } else if (iwr.u.data.length >= minlen &&
1479 range->we_version_compiled >= 18) {
1480 wpa_printf(MSG_DEBUG, "SIOCGIWRANGE: WE(compiled)=%d "
1481 "WE(source)=%d enc_capa=0x%x",
1482 range->we_version_compiled,
1483 range->we_version_source,
1485 drv->has_capability = 1;
1486 drv->we_version_compiled = range->we_version_compiled;
1487 if (range->enc_capa & IW_ENC_CAPA_WPA) {
1488 drv->capa.key_mgmt |= WPA_DRIVER_CAPA_KEY_MGMT_WPA |
1489 WPA_DRIVER_CAPA_KEY_MGMT_WPA_PSK;
1491 if (range->enc_capa & IW_ENC_CAPA_WPA2) {
1492 drv->capa.key_mgmt |= WPA_DRIVER_CAPA_KEY_MGMT_WPA2 |
1493 WPA_DRIVER_CAPA_KEY_MGMT_WPA2_PSK;
1495 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_WEP40 |
1496 WPA_DRIVER_CAPA_ENC_WEP104;
1497 if (range->enc_capa & IW_ENC_CAPA_CIPHER_TKIP)
1498 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_TKIP;
1499 if (range->enc_capa & IW_ENC_CAPA_CIPHER_CCMP)
1500 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_CCMP;
1501 if (range->enc_capa & IW_ENC_CAPA_4WAY_HANDSHAKE)
1502 drv->capa.flags |= WPA_DRIVER_FLAGS_4WAY_HANDSHAKE;
1503 drv->capa.auth = WPA_DRIVER_AUTH_OPEN |
1504 WPA_DRIVER_AUTH_SHARED |
1505 WPA_DRIVER_AUTH_LEAP;
1506 drv->capa.max_scan_ssids = 1;
1508 wpa_printf(MSG_DEBUG, " capabilities: key_mgmt 0x%x enc 0x%x "
1510 drv->capa.key_mgmt, drv->capa.enc, drv->capa.flags);
1512 wpa_printf(MSG_DEBUG, "SIOCGIWRANGE: too old (short) data - "
1513 "assuming WPA is not supported");
1516 drv->max_level = range->max_qual.level;
1523 static int wpa_driver_wext_set_psk(struct wpa_driver_wext_data *drv,
1526 struct iw_encode_ext *ext;
1530 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1532 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
1538 os_memset(&iwr, 0, sizeof(iwr));
1539 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1541 ext = os_zalloc(sizeof(*ext) + PMK_LEN);
1545 iwr.u.encoding.pointer = (caddr_t) ext;
1546 iwr.u.encoding.length = sizeof(*ext) + PMK_LEN;
1547 ext->key_len = PMK_LEN;
1548 os_memcpy(&ext->key, psk, ext->key_len);
1549 ext->alg = IW_ENCODE_ALG_PMK;
1551 ret = ioctl(drv->ioctl_sock, SIOCSIWENCODEEXT, &iwr);
1553 perror("ioctl[SIOCSIWENCODEEXT] PMK");
1560 static int wpa_driver_wext_set_key_ext(void *priv, enum wpa_alg alg,
1561 const u8 *addr, int key_idx,
1562 int set_tx, const u8 *seq,
1564 const u8 *key, size_t key_len)
1566 struct wpa_driver_wext_data *drv = priv;
1569 struct iw_encode_ext *ext;
1571 if (seq_len > IW_ENCODE_SEQ_MAX_SIZE) {
1572 wpa_printf(MSG_DEBUG, "%s: Invalid seq_len %lu",
1573 __FUNCTION__, (unsigned long) seq_len);
1577 ext = os_zalloc(sizeof(*ext) + key_len);
1580 os_memset(&iwr, 0, sizeof(iwr));
1581 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1582 iwr.u.encoding.flags = key_idx + 1;
1583 iwr.u.encoding.flags |= IW_ENCODE_TEMP;
1584 if (alg == WPA_ALG_NONE)
1585 iwr.u.encoding.flags |= IW_ENCODE_DISABLED;
1586 iwr.u.encoding.pointer = (caddr_t) ext;
1587 iwr.u.encoding.length = sizeof(*ext) + key_len;
1590 os_memcmp(addr, "\xff\xff\xff\xff\xff\xff", ETH_ALEN) == 0)
1591 ext->ext_flags |= IW_ENCODE_EXT_GROUP_KEY;
1593 ext->ext_flags |= IW_ENCODE_EXT_SET_TX_KEY;
1595 ext->addr.sa_family = ARPHRD_ETHER;
1597 os_memcpy(ext->addr.sa_data, addr, ETH_ALEN);
1599 os_memset(ext->addr.sa_data, 0xff, ETH_ALEN);
1600 if (key && key_len) {
1601 os_memcpy(ext + 1, key, key_len);
1602 ext->key_len = key_len;
1606 ext->alg = IW_ENCODE_ALG_NONE;
1609 ext->alg = IW_ENCODE_ALG_WEP;
1612 ext->alg = IW_ENCODE_ALG_TKIP;
1615 ext->alg = IW_ENCODE_ALG_CCMP;
1618 ext->alg = IW_ENCODE_ALG_PMK;
1620 #ifdef CONFIG_IEEE80211W
1622 ext->alg = IW_ENCODE_ALG_AES_CMAC;
1624 #endif /* CONFIG_IEEE80211W */
1626 wpa_printf(MSG_DEBUG, "%s: Unknown algorithm %d",
1632 if (seq && seq_len) {
1633 ext->ext_flags |= IW_ENCODE_EXT_RX_SEQ_VALID;
1634 os_memcpy(ext->rx_seq, seq, seq_len);
1637 if (ioctl(drv->ioctl_sock, SIOCSIWENCODEEXT, &iwr) < 0) {
1638 ret = errno == EOPNOTSUPP ? -2 : -1;
1639 if (errno == ENODEV) {
1641 * ndiswrapper seems to be returning incorrect error
1646 perror("ioctl[SIOCSIWENCODEEXT]");
1655 * wpa_driver_wext_set_key - Configure encryption key
1656 * @priv: Pointer to private wext data from wpa_driver_wext_init()
1657 * @priv: Private driver interface data
1658 * @alg: Encryption algorithm (%WPA_ALG_NONE, %WPA_ALG_WEP,
1659 * %WPA_ALG_TKIP, %WPA_ALG_CCMP); %WPA_ALG_NONE clears the key.
1660 * @addr: Address of the peer STA or ff:ff:ff:ff:ff:ff for
1661 * broadcast/default keys
1662 * @key_idx: key index (0..3), usually 0 for unicast keys
1663 * @set_tx: Configure this key as the default Tx key (only used when
1664 * driver does not support separate unicast/individual key
1665 * @seq: Sequence number/packet number, seq_len octets, the next
1666 * packet number to be used for in replay protection; configured
1667 * for Rx keys (in most cases, this is only used with broadcast
1668 * keys and set to zero for unicast keys)
1669 * @seq_len: Length of the seq, depends on the algorithm:
1670 * TKIP: 6 octets, CCMP: 6 octets
1671 * @key: Key buffer; TKIP: 16-byte temporal key, 8-byte Tx Mic key,
1673 * @key_len: Length of the key buffer in octets (WEP: 5 or 13,
1674 * TKIP: 32, CCMP: 16)
1675 * Returns: 0 on success, -1 on failure
1677 * This function uses SIOCSIWENCODEEXT by default, but tries to use
1678 * SIOCSIWENCODE if the extended ioctl fails when configuring a WEP key.
1680 int wpa_driver_wext_set_key(const char *ifname, void *priv, enum wpa_alg alg,
1681 const u8 *addr, int key_idx,
1682 int set_tx, const u8 *seq, size_t seq_len,
1683 const u8 *key, size_t key_len)
1685 struct wpa_driver_wext_data *drv = priv;
1689 wpa_printf(MSG_DEBUG, "%s: alg=%d key_idx=%d set_tx=%d seq_len=%lu "
1691 __FUNCTION__, alg, key_idx, set_tx,
1692 (unsigned long) seq_len, (unsigned long) key_len);
1694 ret = wpa_driver_wext_set_key_ext(drv, alg, addr, key_idx, set_tx,
1695 seq, seq_len, key, key_len);
1700 (alg == WPA_ALG_NONE || alg == WPA_ALG_WEP)) {
1701 wpa_printf(MSG_DEBUG, "Driver did not support "
1702 "SIOCSIWENCODEEXT, trying SIOCSIWENCODE");
1705 wpa_printf(MSG_DEBUG, "Driver did not support "
1706 "SIOCSIWENCODEEXT");
1710 os_memset(&iwr, 0, sizeof(iwr));
1711 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1712 iwr.u.encoding.flags = key_idx + 1;
1713 iwr.u.encoding.flags |= IW_ENCODE_TEMP;
1714 if (alg == WPA_ALG_NONE)
1715 iwr.u.encoding.flags |= IW_ENCODE_DISABLED;
1716 iwr.u.encoding.pointer = (caddr_t) key;
1717 iwr.u.encoding.length = key_len;
1719 if (ioctl(drv->ioctl_sock, SIOCSIWENCODE, &iwr) < 0) {
1720 perror("ioctl[SIOCSIWENCODE]");
1724 if (set_tx && alg != WPA_ALG_NONE) {
1725 os_memset(&iwr, 0, sizeof(iwr));
1726 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1727 iwr.u.encoding.flags = key_idx + 1;
1728 iwr.u.encoding.flags |= IW_ENCODE_TEMP;
1729 iwr.u.encoding.pointer = (caddr_t) NULL;
1730 iwr.u.encoding.length = 0;
1731 if (ioctl(drv->ioctl_sock, SIOCSIWENCODE, &iwr) < 0) {
1732 perror("ioctl[SIOCSIWENCODE] (set_tx)");
1741 static int wpa_driver_wext_set_countermeasures(void *priv,
1744 struct wpa_driver_wext_data *drv = priv;
1745 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1746 return wpa_driver_wext_set_auth_param(drv,
1747 IW_AUTH_TKIP_COUNTERMEASURES,
1752 static int wpa_driver_wext_set_drop_unencrypted(void *priv,
1755 struct wpa_driver_wext_data *drv = priv;
1756 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1757 drv->use_crypt = enabled;
1758 return wpa_driver_wext_set_auth_param(drv, IW_AUTH_DROP_UNENCRYPTED,
1763 static int wpa_driver_wext_mlme(struct wpa_driver_wext_data *drv,
1764 const u8 *addr, int cmd, int reason_code)
1767 struct iw_mlme mlme;
1770 os_memset(&iwr, 0, sizeof(iwr));
1771 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1772 os_memset(&mlme, 0, sizeof(mlme));
1774 mlme.reason_code = reason_code;
1775 mlme.addr.sa_family = ARPHRD_ETHER;
1776 os_memcpy(mlme.addr.sa_data, addr, ETH_ALEN);
1777 iwr.u.data.pointer = (caddr_t) &mlme;
1778 iwr.u.data.length = sizeof(mlme);
1780 if (ioctl(drv->ioctl_sock, SIOCSIWMLME, &iwr) < 0) {
1781 perror("ioctl[SIOCSIWMLME]");
1789 static void wpa_driver_wext_disconnect(struct wpa_driver_wext_data *drv)
1792 const u8 null_bssid[ETH_ALEN] = { 0, 0, 0, 0, 0, 0 };
1797 * Only force-disconnect when the card is in infrastructure mode,
1798 * otherwise the driver might interpret the cleared BSSID and random
1799 * SSID as an attempt to create a new ad-hoc network.
1801 os_memset(&iwr, 0, sizeof(iwr));
1802 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1803 if (ioctl(drv->ioctl_sock, SIOCGIWMODE, &iwr) < 0) {
1804 perror("ioctl[SIOCGIWMODE]");
1805 iwr.u.mode = IW_MODE_INFRA;
1808 if (iwr.u.mode == IW_MODE_INFRA) {
1809 if (drv->cfg80211) {
1811 * cfg80211 supports SIOCSIWMLME commands, so there is
1812 * no need for the random SSID hack, but clear the
1815 if (wpa_driver_wext_set_bssid(drv, null_bssid) < 0 ||
1816 wpa_driver_wext_set_ssid(drv, (u8 *) "", 0) < 0) {
1817 wpa_printf(MSG_DEBUG, "WEXT: Failed to clear "
1823 * Clear the BSSID selection and set a random SSID to make sure
1824 * the driver will not be trying to associate with something
1825 * even if it does not understand SIOCSIWMLME commands (or
1826 * tries to associate automatically after deauth/disassoc).
1828 for (i = 0; i < 32; i++)
1829 ssid[i] = rand() & 0xFF;
1830 if (wpa_driver_wext_set_bssid(drv, null_bssid) < 0 ||
1831 wpa_driver_wext_set_ssid(drv, ssid, 32) < 0) {
1832 wpa_printf(MSG_DEBUG, "WEXT: Failed to set bogus "
1833 "BSSID/SSID to disconnect");
1839 static int wpa_driver_wext_deauthenticate(void *priv, const u8 *addr,
1842 struct wpa_driver_wext_data *drv = priv;
1844 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1845 ret = wpa_driver_wext_mlme(drv, addr, IW_MLME_DEAUTH, reason_code);
1846 wpa_driver_wext_disconnect(drv);
1851 static int wpa_driver_wext_disassociate(void *priv, const u8 *addr,
1854 struct wpa_driver_wext_data *drv = priv;
1856 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1857 ret = wpa_driver_wext_mlme(drv, addr, IW_MLME_DISASSOC, reason_code);
1858 wpa_driver_wext_disconnect(drv);
1863 static int wpa_driver_wext_set_gen_ie(void *priv, const u8 *ie,
1866 struct wpa_driver_wext_data *drv = priv;
1870 os_memset(&iwr, 0, sizeof(iwr));
1871 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1872 iwr.u.data.pointer = (caddr_t) ie;
1873 iwr.u.data.length = ie_len;
1875 if (ioctl(drv->ioctl_sock, SIOCSIWGENIE, &iwr) < 0) {
1876 perror("ioctl[SIOCSIWGENIE]");
1884 int wpa_driver_wext_cipher2wext(int cipher)
1888 return IW_AUTH_CIPHER_NONE;
1890 return IW_AUTH_CIPHER_WEP40;
1892 return IW_AUTH_CIPHER_TKIP;
1894 return IW_AUTH_CIPHER_CCMP;
1896 return IW_AUTH_CIPHER_WEP104;
1903 int wpa_driver_wext_keymgmt2wext(int keymgmt)
1906 case KEY_MGMT_802_1X:
1907 case KEY_MGMT_802_1X_NO_WPA:
1908 return IW_AUTH_KEY_MGMT_802_1X;
1910 return IW_AUTH_KEY_MGMT_PSK;
1918 wpa_driver_wext_auth_alg_fallback(struct wpa_driver_wext_data *drv,
1919 struct wpa_driver_associate_params *params)
1924 wpa_printf(MSG_DEBUG, "WEXT: Driver did not support "
1925 "SIOCSIWAUTH for AUTH_ALG, trying SIOCSIWENCODE");
1927 os_memset(&iwr, 0, sizeof(iwr));
1928 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1929 /* Just changing mode, not actual keys */
1930 iwr.u.encoding.flags = 0;
1931 iwr.u.encoding.pointer = (caddr_t) NULL;
1932 iwr.u.encoding.length = 0;
1935 * Note: IW_ENCODE_{OPEN,RESTRICTED} can be interpreted to mean two
1936 * different things. Here they are used to indicate Open System vs.
1937 * Shared Key authentication algorithm. However, some drivers may use
1938 * them to select between open/restricted WEP encrypted (open = allow
1939 * both unencrypted and encrypted frames; restricted = only allow
1940 * encrypted frames).
1943 if (!drv->use_crypt) {
1944 iwr.u.encoding.flags |= IW_ENCODE_DISABLED;
1946 if (params->auth_alg & WPA_AUTH_ALG_OPEN)
1947 iwr.u.encoding.flags |= IW_ENCODE_OPEN;
1948 if (params->auth_alg & WPA_AUTH_ALG_SHARED)
1949 iwr.u.encoding.flags |= IW_ENCODE_RESTRICTED;
1952 if (ioctl(drv->ioctl_sock, SIOCSIWENCODE, &iwr) < 0) {
1953 perror("ioctl[SIOCSIWENCODE]");
1961 int wpa_driver_wext_associate(void *priv,
1962 struct wpa_driver_associate_params *params)
1964 struct wpa_driver_wext_data *drv = priv;
1966 int allow_unencrypted_eapol;
1969 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1971 if (drv->cfg80211) {
1973 * Stop cfg80211 from trying to associate before we are done
1974 * with all parameters.
1976 wpa_driver_wext_set_ssid(drv, (u8 *) "", 0);
1979 if (wpa_driver_wext_set_drop_unencrypted(drv, params->drop_unencrypted)
1982 if (wpa_driver_wext_set_auth_alg(drv, params->auth_alg) < 0)
1984 if (wpa_driver_wext_set_mode(drv, params->mode) < 0)
1988 * If the driver did not support SIOCSIWAUTH, fallback to
1989 * SIOCSIWENCODE here.
1991 if (drv->auth_alg_fallback &&
1992 wpa_driver_wext_auth_alg_fallback(drv, params) < 0)
1995 if (!params->bssid &&
1996 wpa_driver_wext_set_bssid(drv, NULL) < 0)
1999 /* TODO: should consider getting wpa version and cipher/key_mgmt suites
2000 * from configuration, not from here, where only the selected suite is
2002 if (wpa_driver_wext_set_gen_ie(drv, params->wpa_ie, params->wpa_ie_len)
2005 if (params->wpa_ie == NULL || params->wpa_ie_len == 0)
2006 value = IW_AUTH_WPA_VERSION_DISABLED;
2007 else if (params->wpa_ie[0] == WLAN_EID_RSN)
2008 value = IW_AUTH_WPA_VERSION_WPA2;
2010 value = IW_AUTH_WPA_VERSION_WPA;
2011 if (wpa_driver_wext_set_auth_param(drv,
2012 IW_AUTH_WPA_VERSION, value) < 0)
2014 value = wpa_driver_wext_cipher2wext(params->pairwise_suite);
2015 if (wpa_driver_wext_set_auth_param(drv,
2016 IW_AUTH_CIPHER_PAIRWISE, value) < 0)
2018 value = wpa_driver_wext_cipher2wext(params->group_suite);
2019 if (wpa_driver_wext_set_auth_param(drv,
2020 IW_AUTH_CIPHER_GROUP, value) < 0)
2022 value = wpa_driver_wext_keymgmt2wext(params->key_mgmt_suite);
2023 if (wpa_driver_wext_set_auth_param(drv,
2024 IW_AUTH_KEY_MGMT, value) < 0)
2026 value = params->key_mgmt_suite != KEY_MGMT_NONE ||
2027 params->pairwise_suite != CIPHER_NONE ||
2028 params->group_suite != CIPHER_NONE ||
2030 if (wpa_driver_wext_set_auth_param(drv,
2031 IW_AUTH_PRIVACY_INVOKED, value) < 0)
2034 /* Allow unencrypted EAPOL messages even if pairwise keys are set when
2035 * not using WPA. IEEE 802.1X specifies that these frames are not
2036 * encrypted, but WPA encrypts them when pairwise keys are in use. */
2037 if (params->key_mgmt_suite == KEY_MGMT_802_1X ||
2038 params->key_mgmt_suite == KEY_MGMT_PSK)
2039 allow_unencrypted_eapol = 0;
2041 allow_unencrypted_eapol = 1;
2043 if (wpa_driver_wext_set_psk(drv, params->psk) < 0)
2045 if (wpa_driver_wext_set_auth_param(drv,
2046 IW_AUTH_RX_UNENCRYPTED_EAPOL,
2047 allow_unencrypted_eapol) < 0)
2049 #ifdef CONFIG_IEEE80211W
2050 switch (params->mgmt_frame_protection) {
2051 case NO_MGMT_FRAME_PROTECTION:
2052 value = IW_AUTH_MFP_DISABLED;
2054 case MGMT_FRAME_PROTECTION_OPTIONAL:
2055 value = IW_AUTH_MFP_OPTIONAL;
2057 case MGMT_FRAME_PROTECTION_REQUIRED:
2058 value = IW_AUTH_MFP_REQUIRED;
2061 if (wpa_driver_wext_set_auth_param(drv, IW_AUTH_MFP, value) < 0)
2063 #endif /* CONFIG_IEEE80211W */
2064 if (params->freq && wpa_driver_wext_set_freq(drv, params->freq) < 0)
2066 if (!drv->cfg80211 &&
2067 wpa_driver_wext_set_ssid(drv, params->ssid, params->ssid_len) < 0)
2069 if (params->bssid &&
2070 wpa_driver_wext_set_bssid(drv, params->bssid) < 0)
2072 if (drv->cfg80211 &&
2073 wpa_driver_wext_set_ssid(drv, params->ssid, params->ssid_len) < 0)
2080 static int wpa_driver_wext_set_auth_alg(void *priv, int auth_alg)
2082 struct wpa_driver_wext_data *drv = priv;
2085 if (auth_alg & WPA_AUTH_ALG_OPEN)
2086 algs |= IW_AUTH_ALG_OPEN_SYSTEM;
2087 if (auth_alg & WPA_AUTH_ALG_SHARED)
2088 algs |= IW_AUTH_ALG_SHARED_KEY;
2089 if (auth_alg & WPA_AUTH_ALG_LEAP)
2090 algs |= IW_AUTH_ALG_LEAP;
2092 /* at least one algorithm should be set */
2093 algs = IW_AUTH_ALG_OPEN_SYSTEM;
2096 res = wpa_driver_wext_set_auth_param(drv, IW_AUTH_80211_AUTH_ALG,
2098 drv->auth_alg_fallback = res == -2;
2104 * wpa_driver_wext_set_mode - Set wireless mode (infra/adhoc), SIOCSIWMODE
2105 * @priv: Pointer to private wext data from wpa_driver_wext_init()
2106 * @mode: 0 = infra/BSS (associate with an AP), 1 = adhoc/IBSS
2107 * Returns: 0 on success, -1 on failure
2109 int wpa_driver_wext_set_mode(void *priv, int mode)
2111 struct wpa_driver_wext_data *drv = priv;
2114 unsigned int new_mode = mode ? IW_MODE_ADHOC : IW_MODE_INFRA;
2116 os_memset(&iwr, 0, sizeof(iwr));
2117 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
2118 iwr.u.mode = new_mode;
2119 if (ioctl(drv->ioctl_sock, SIOCSIWMODE, &iwr) == 0) {
2124 if (errno != EBUSY) {
2125 perror("ioctl[SIOCSIWMODE]");
2129 /* mac80211 doesn't allow mode changes while the device is up, so if
2130 * the device isn't in the mode we're about to change to, take device
2131 * down, try to set the mode again, and bring it back up.
2133 if (ioctl(drv->ioctl_sock, SIOCGIWMODE, &iwr) < 0) {
2134 perror("ioctl[SIOCGIWMODE]");
2138 if (iwr.u.mode == new_mode) {
2143 if (linux_set_iface_flags(drv->ioctl_sock, drv->ifname, 0) == 0) {
2144 /* Try to set the mode again while the interface is down */
2145 iwr.u.mode = new_mode;
2146 if (ioctl(drv->ioctl_sock, SIOCSIWMODE, &iwr) < 0)
2147 perror("ioctl[SIOCSIWMODE]");
2151 (void) linux_set_iface_flags(drv->ioctl_sock, drv->ifname, 1);
2159 static int wpa_driver_wext_pmksa(struct wpa_driver_wext_data *drv,
2160 u32 cmd, const u8 *bssid, const u8 *pmkid)
2163 struct iw_pmksa pmksa;
2166 os_memset(&iwr, 0, sizeof(iwr));
2167 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
2168 os_memset(&pmksa, 0, sizeof(pmksa));
2170 pmksa.bssid.sa_family = ARPHRD_ETHER;
2172 os_memcpy(pmksa.bssid.sa_data, bssid, ETH_ALEN);
2174 os_memcpy(pmksa.pmkid, pmkid, IW_PMKID_LEN);
2175 iwr.u.data.pointer = (caddr_t) &pmksa;
2176 iwr.u.data.length = sizeof(pmksa);
2178 if (ioctl(drv->ioctl_sock, SIOCSIWPMKSA, &iwr) < 0) {
2179 if (errno != EOPNOTSUPP)
2180 perror("ioctl[SIOCSIWPMKSA]");
2188 static int wpa_driver_wext_add_pmkid(void *priv, const u8 *bssid,
2191 struct wpa_driver_wext_data *drv = priv;
2192 return wpa_driver_wext_pmksa(drv, IW_PMKSA_ADD, bssid, pmkid);
2196 static int wpa_driver_wext_remove_pmkid(void *priv, const u8 *bssid,
2199 struct wpa_driver_wext_data *drv = priv;
2200 return wpa_driver_wext_pmksa(drv, IW_PMKSA_REMOVE, bssid, pmkid);
2204 static int wpa_driver_wext_flush_pmkid(void *priv)
2206 struct wpa_driver_wext_data *drv = priv;
2207 return wpa_driver_wext_pmksa(drv, IW_PMKSA_FLUSH, NULL, NULL);
2211 int wpa_driver_wext_get_capa(void *priv, struct wpa_driver_capa *capa)
2213 struct wpa_driver_wext_data *drv = priv;
2214 if (!drv->has_capability)
2216 os_memcpy(capa, &drv->capa, sizeof(*capa));
2221 int wpa_driver_wext_alternative_ifindex(struct wpa_driver_wext_data *drv,
2224 if (ifname == NULL) {
2229 drv->ifindex2 = if_nametoindex(ifname);
2230 if (drv->ifindex2 <= 0)
2233 wpa_printf(MSG_DEBUG, "Added alternative ifindex %d (%s) for "
2234 "wireless events", drv->ifindex2, ifname);
2240 int wpa_driver_wext_set_operstate(void *priv, int state)
2242 struct wpa_driver_wext_data *drv = priv;
2244 wpa_printf(MSG_DEBUG, "%s: operstate %d->%d (%s)",
2245 __func__, drv->operstate, state, state ? "UP" : "DORMANT");
2246 drv->operstate = state;
2247 return netlink_send_oper_ifla(drv->netlink, drv->ifindex, -1,
2248 state ? IF_OPER_UP : IF_OPER_DORMANT);
2252 int wpa_driver_wext_get_version(struct wpa_driver_wext_data *drv)
2254 return drv->we_version_compiled;
2258 const struct wpa_driver_ops wpa_driver_wext_ops = {
2260 .desc = "Linux wireless extensions (generic)",
2261 .get_bssid = wpa_driver_wext_get_bssid,
2262 .get_ssid = wpa_driver_wext_get_ssid,
2263 .set_key = wpa_driver_wext_set_key,
2264 .set_countermeasures = wpa_driver_wext_set_countermeasures,
2265 .scan2 = wpa_driver_wext_scan,
2266 .get_scan_results2 = wpa_driver_wext_get_scan_results,
2267 .deauthenticate = wpa_driver_wext_deauthenticate,
2268 .disassociate = wpa_driver_wext_disassociate,
2269 .associate = wpa_driver_wext_associate,
2270 .init = wpa_driver_wext_init,
2271 .deinit = wpa_driver_wext_deinit,
2272 .add_pmkid = wpa_driver_wext_add_pmkid,
2273 .remove_pmkid = wpa_driver_wext_remove_pmkid,
2274 .flush_pmkid = wpa_driver_wext_flush_pmkid,
2275 .get_capa = wpa_driver_wext_get_capa,
2276 .set_operstate = wpa_driver_wext_set_operstate,