2 * Driver interaction with Linux nl80211/cfg80211
3 * Copyright (c) 2002-2014, Jouni Malinen <j@w1.fi>
4 * Copyright (c) 2003-2004, Instant802 Networks, Inc.
5 * Copyright (c) 2005-2006, Devicescape Software, Inc.
6 * Copyright (c) 2007, Johannes Berg <johannes@sipsolutions.net>
7 * Copyright (c) 2009-2010, Atheros Communications
9 * This software may be distributed under the terms of the BSD license.
10 * See README for more details.
14 #include <sys/ioctl.h>
15 #include <sys/types.h>
19 #include <netlink/genl/genl.h>
20 #include <netlink/genl/family.h>
21 #include <netlink/genl/ctrl.h>
22 #ifdef CONFIG_LIBNL3_ROUTE
23 #include <netlink/route/neighbour.h>
24 #endif /* CONFIG_LIBNL3_ROUTE */
25 #include <linux/rtnetlink.h>
26 #include <netpacket/packet.h>
27 #include <linux/filter.h>
28 #include <linux/errqueue.h>
29 #include "nl80211_copy.h"
33 #include "utils/list.h"
34 #include "common/qca-vendor.h"
35 #include "common/qca-vendor-attr.h"
36 #include "common/ieee802_11_defs.h"
37 #include "common/ieee802_11_common.h"
38 #include "l2_packet/l2_packet.h"
40 #include "linux_ioctl.h"
42 #include "radiotap_iter.h"
46 #ifndef SO_WIFI_STATUS
47 # if defined(__sparc__)
48 # define SO_WIFI_STATUS 0x0025
49 # elif defined(__parisc__)
50 # define SO_WIFI_STATUS 0x4022
52 # define SO_WIFI_STATUS 41
55 # define SCM_WIFI_STATUS SO_WIFI_STATUS
58 #ifndef SO_EE_ORIGIN_TXSTATUS
59 #define SO_EE_ORIGIN_TXSTATUS 4
62 #ifndef PACKET_TX_TIMESTAMP
63 #define PACKET_TX_TIMESTAMP 16
67 #include "android_drv.h"
70 /* libnl 2.0 compatibility code */
71 #define nl_handle nl_sock
72 #define nl80211_handle_alloc nl_socket_alloc_cb
73 #define nl80211_handle_destroy nl_socket_free
76 * libnl 1.1 has a bug, it tries to allocate socket numbers densely
77 * but when you free a socket again it will mess up its bitmap and
78 * and use the wrong number the next time it needs a socket ID.
79 * Therefore, we wrap the handle alloc/destroy and add our own pid
82 static uint32_t port_bitmap[32] = { 0 };
84 static struct nl_handle *nl80211_handle_alloc(void *cb)
86 struct nl_handle *handle;
87 uint32_t pid = getpid() & 0x3FFFFF;
90 handle = nl_handle_alloc_cb(cb);
92 for (i = 0; i < 1024; i++) {
93 if (port_bitmap[i / 32] & (1 << (i % 32)))
95 port_bitmap[i / 32] |= 1 << (i % 32);
100 nl_socket_set_local_port(handle, pid);
105 static void nl80211_handle_destroy(struct nl_handle *handle)
107 uint32_t port = nl_socket_get_local_port(handle);
110 port_bitmap[port / 32] &= ~(1 << (port % 32));
112 nl_handle_destroy(handle);
114 #endif /* CONFIG_LIBNL20 */
118 /* system/core/libnl_2 does not include nl_socket_set_nonblocking() */
119 static int android_nl_socket_set_nonblocking(struct nl_handle *handle)
121 return fcntl(nl_socket_get_fd(handle), F_SETFL, O_NONBLOCK);
123 #undef nl_socket_set_nonblocking
124 #define nl_socket_set_nonblocking(h) android_nl_socket_set_nonblocking(h)
128 static struct nl_handle * nl_create_handle(struct nl_cb *cb, const char *dbg)
130 struct nl_handle *handle;
132 handle = nl80211_handle_alloc(cb);
133 if (handle == NULL) {
134 wpa_printf(MSG_ERROR, "nl80211: Failed to allocate netlink "
135 "callbacks (%s)", dbg);
139 if (genl_connect(handle)) {
140 wpa_printf(MSG_ERROR, "nl80211: Failed to connect to generic "
141 "netlink (%s)", dbg);
142 nl80211_handle_destroy(handle);
150 static void nl_destroy_handles(struct nl_handle **handle)
154 nl80211_handle_destroy(*handle);
160 #define ELOOP_SOCKET_INVALID (intptr_t) 0x8888888888888889ULL
162 #define ELOOP_SOCKET_INVALID (intptr_t) 0x88888889ULL
165 static void nl80211_register_eloop_read(struct nl_handle **handle,
166 eloop_sock_handler handler,
169 nl_socket_set_nonblocking(*handle);
170 eloop_register_read_sock(nl_socket_get_fd(*handle), handler,
171 eloop_data, *handle);
172 *handle = (void *) (((intptr_t) *handle) ^ ELOOP_SOCKET_INVALID);
176 static void nl80211_destroy_eloop_handle(struct nl_handle **handle)
178 *handle = (void *) (((intptr_t) *handle) ^ ELOOP_SOCKET_INVALID);
179 eloop_unregister_read_sock(nl_socket_get_fd(*handle));
180 nl_destroy_handles(handle);
185 #define IFF_LOWER_UP 0x10000 /* driver signals L1 up */
188 #define IFF_DORMANT 0x20000 /* driver signals dormant */
191 #ifndef IF_OPER_DORMANT
192 #define IF_OPER_DORMANT 5
198 struct nl80211_global {
199 struct dl_list interfaces;
202 int if_add_wdevid_set;
203 struct netlink_data *netlink;
205 struct nl_handle *nl;
207 int ioctl_sock; /* socket for ioctl() use */
209 struct nl_handle *nl_event;
212 struct nl80211_wiphy_data {
217 struct nl_handle *nl_beacons;
223 static void nl80211_global_deinit(void *priv);
226 struct wpa_driver_nl80211_data *drv;
227 struct i802_bss *next;
230 char ifname[IFNAMSIZ + 1];
231 char brname[IFNAMSIZ];
232 unsigned int beacon_set:1;
233 unsigned int added_if_into_bridge:1;
234 unsigned int added_bridge:1;
235 unsigned int in_deinit:1;
236 unsigned int wdev_id_set:1;
237 unsigned int added_if:1;
238 unsigned int static_ap:1;
247 struct nl_handle *nl_preq, *nl_mgmt;
250 struct nl80211_wiphy_data *wiphy_data;
251 struct dl_list wiphy_list;
254 struct wpa_driver_nl80211_data {
255 struct nl80211_global *global;
257 struct dl_list wiphy_list;
259 u8 perm_addr[ETH_ALEN];
264 int ignore_if_down_event;
265 struct rfkill_data *rfkill;
266 struct wpa_driver_capa capa;
267 u8 *extended_capa, *extended_capa_mask;
268 unsigned int extended_capa_len;
273 int scan_complete_events;
275 NO_SCAN, SCAN_REQUESTED, SCAN_STARTED, SCAN_COMPLETED,
276 SCAN_ABORTED, SCHED_SCAN_STARTED, SCHED_SCAN_STOPPED,
282 u8 auth_bssid[ETH_ALEN];
283 u8 auth_attempt_bssid[ETH_ALEN];
285 u8 prev_bssid[ETH_ALEN];
289 enum nl80211_iftype nlmode;
290 enum nl80211_iftype ap_scan_as_station;
291 unsigned int assoc_freq;
295 int monitor_refcount;
297 unsigned int disabled_11b_rates:1;
298 unsigned int pending_remain_on_chan:1;
299 unsigned int in_interface_list:1;
300 unsigned int device_ap_sme:1;
301 unsigned int poll_command_supported:1;
302 unsigned int data_tx_status:1;
303 unsigned int scan_for_auth:1;
304 unsigned int retry_auth:1;
305 unsigned int use_monitor:1;
306 unsigned int ignore_next_local_disconnect:1;
307 unsigned int ignore_next_local_deauth:1;
308 unsigned int allow_p2p_device:1;
309 unsigned int hostapd:1;
310 unsigned int start_mode_ap:1;
311 unsigned int start_iface_up:1;
312 unsigned int test_use_roc_tx:1;
313 unsigned int ignore_deauth_event:1;
314 unsigned int roaming_vendor_cmd_avail:1;
315 unsigned int dfs_vendor_cmd_avail:1;
316 unsigned int have_low_prio_scan:1;
317 unsigned int force_connect_cmd:1;
318 unsigned int addr_changed:1;
320 u64 remain_on_chan_cookie;
321 u64 send_action_cookie;
323 unsigned int last_mgmt_freq;
325 struct wpa_driver_scan_filter *filter_ssids;
326 size_t num_filter_ssids;
328 struct i802_bss *first_bss;
332 int eapol_sock; /* socket for EAPOL frames */
334 struct nl_handle *rtnl_sk; /* nl_sock for NETLINK_ROUTE */
336 int default_if_indices[16];
340 /* From failed authentication command */
342 u8 auth_bssid_[ETH_ALEN];
344 size_t auth_ssid_len;
348 u8 auth_wep_key[4][16];
349 size_t auth_wep_key_len[4];
350 int auth_wep_tx_keyidx;
351 int auth_local_state_change;
356 static void wpa_driver_nl80211_deinit(struct i802_bss *bss);
357 static void wpa_driver_nl80211_scan_timeout(void *eloop_ctx,
359 static int wpa_driver_nl80211_set_mode(struct i802_bss *bss,
360 enum nl80211_iftype nlmode);
361 static int wpa_driver_nl80211_set_mode_ibss(struct i802_bss *bss, int freq);
364 wpa_driver_nl80211_finish_drv_init(struct wpa_driver_nl80211_data *drv,
365 const u8 *set_addr, int first);
366 static int wpa_driver_nl80211_mlme(struct wpa_driver_nl80211_data *drv,
367 const u8 *addr, int cmd, u16 reason_code,
368 int local_state_change);
369 static void nl80211_remove_monitor_interface(
370 struct wpa_driver_nl80211_data *drv);
371 static int nl80211_send_frame_cmd(struct i802_bss *bss,
372 unsigned int freq, unsigned int wait,
373 const u8 *buf, size_t buf_len, u64 *cookie,
374 int no_cck, int no_ack, int offchanok);
375 static int nl80211_register_frame(struct i802_bss *bss,
376 struct nl_handle *hl_handle,
377 u16 type, const u8 *match, size_t match_len);
378 static int wpa_driver_nl80211_probe_req_report(struct i802_bss *bss,
381 static int android_pno_start(struct i802_bss *bss,
382 struct wpa_driver_scan_params *params);
383 static int android_pno_stop(struct i802_bss *bss);
384 extern int wpa_driver_nl80211_driver_cmd(void *priv, char *cmd, char *buf,
388 #ifdef ANDROID_P2P_STUB
389 int wpa_driver_set_p2p_noa(void *priv, u8 count, int start, int duration) {
392 int wpa_driver_get_p2p_noa(void *priv, u8 *buf, size_t len) {
395 int wpa_driver_set_p2p_ps(void *priv, int legacy_ps, int opp_ps, int ctwindow) {
398 int wpa_driver_set_ap_wps_p2p_ie(void *priv, const struct wpabuf *beacon,
399 const struct wpabuf *proberesp,
400 const struct wpabuf *assocresp) {
403 #else /* ANDROID_P2P_STUB */
404 int wpa_driver_set_p2p_noa(void *priv, u8 count, int start, int duration);
405 int wpa_driver_get_p2p_noa(void *priv, u8 *buf, size_t len);
406 int wpa_driver_set_p2p_ps(void *priv, int legacy_ps, int opp_ps, int ctwindow);
407 int wpa_driver_set_ap_wps_p2p_ie(void *priv, const struct wpabuf *beacon,
408 const struct wpabuf *proberesp,
409 const struct wpabuf *assocresp);
410 #endif /* ANDROID_P2P_STUB */
411 #endif /* ANDROID_P2P */
413 static void add_ifidx(struct wpa_driver_nl80211_data *drv, int ifidx);
414 static void del_ifidx(struct wpa_driver_nl80211_data *drv, int ifidx);
415 static int have_ifidx(struct wpa_driver_nl80211_data *drv, int ifidx);
416 static int wpa_driver_nl80211_if_remove(struct i802_bss *bss,
417 enum wpa_driver_if_type type,
420 static int nl80211_set_channel(struct i802_bss *bss,
421 struct hostapd_freq_params *freq, int set_chan);
422 static int nl80211_disable_11b_rates(struct wpa_driver_nl80211_data *drv,
423 int ifindex, int disabled);
425 static int nl80211_leave_ibss(struct wpa_driver_nl80211_data *drv);
426 static int wpa_driver_nl80211_authenticate_retry(
427 struct wpa_driver_nl80211_data *drv);
429 static int i802_set_freq(void *priv, struct hostapd_freq_params *freq);
430 static int i802_set_iface_flags(struct i802_bss *bss, int up);
433 static const char * nl80211_command_to_string(enum nl80211_commands cmd)
435 #define C2S(x) case x: return #x;
437 C2S(NL80211_CMD_UNSPEC)
438 C2S(NL80211_CMD_GET_WIPHY)
439 C2S(NL80211_CMD_SET_WIPHY)
440 C2S(NL80211_CMD_NEW_WIPHY)
441 C2S(NL80211_CMD_DEL_WIPHY)
442 C2S(NL80211_CMD_GET_INTERFACE)
443 C2S(NL80211_CMD_SET_INTERFACE)
444 C2S(NL80211_CMD_NEW_INTERFACE)
445 C2S(NL80211_CMD_DEL_INTERFACE)
446 C2S(NL80211_CMD_GET_KEY)
447 C2S(NL80211_CMD_SET_KEY)
448 C2S(NL80211_CMD_NEW_KEY)
449 C2S(NL80211_CMD_DEL_KEY)
450 C2S(NL80211_CMD_GET_BEACON)
451 C2S(NL80211_CMD_SET_BEACON)
452 C2S(NL80211_CMD_START_AP)
453 C2S(NL80211_CMD_STOP_AP)
454 C2S(NL80211_CMD_GET_STATION)
455 C2S(NL80211_CMD_SET_STATION)
456 C2S(NL80211_CMD_NEW_STATION)
457 C2S(NL80211_CMD_DEL_STATION)
458 C2S(NL80211_CMD_GET_MPATH)
459 C2S(NL80211_CMD_SET_MPATH)
460 C2S(NL80211_CMD_NEW_MPATH)
461 C2S(NL80211_CMD_DEL_MPATH)
462 C2S(NL80211_CMD_SET_BSS)
463 C2S(NL80211_CMD_SET_REG)
464 C2S(NL80211_CMD_REQ_SET_REG)
465 C2S(NL80211_CMD_GET_MESH_CONFIG)
466 C2S(NL80211_CMD_SET_MESH_CONFIG)
467 C2S(NL80211_CMD_SET_MGMT_EXTRA_IE)
468 C2S(NL80211_CMD_GET_REG)
469 C2S(NL80211_CMD_GET_SCAN)
470 C2S(NL80211_CMD_TRIGGER_SCAN)
471 C2S(NL80211_CMD_NEW_SCAN_RESULTS)
472 C2S(NL80211_CMD_SCAN_ABORTED)
473 C2S(NL80211_CMD_REG_CHANGE)
474 C2S(NL80211_CMD_AUTHENTICATE)
475 C2S(NL80211_CMD_ASSOCIATE)
476 C2S(NL80211_CMD_DEAUTHENTICATE)
477 C2S(NL80211_CMD_DISASSOCIATE)
478 C2S(NL80211_CMD_MICHAEL_MIC_FAILURE)
479 C2S(NL80211_CMD_REG_BEACON_HINT)
480 C2S(NL80211_CMD_JOIN_IBSS)
481 C2S(NL80211_CMD_LEAVE_IBSS)
482 C2S(NL80211_CMD_TESTMODE)
483 C2S(NL80211_CMD_CONNECT)
484 C2S(NL80211_CMD_ROAM)
485 C2S(NL80211_CMD_DISCONNECT)
486 C2S(NL80211_CMD_SET_WIPHY_NETNS)
487 C2S(NL80211_CMD_GET_SURVEY)
488 C2S(NL80211_CMD_NEW_SURVEY_RESULTS)
489 C2S(NL80211_CMD_SET_PMKSA)
490 C2S(NL80211_CMD_DEL_PMKSA)
491 C2S(NL80211_CMD_FLUSH_PMKSA)
492 C2S(NL80211_CMD_REMAIN_ON_CHANNEL)
493 C2S(NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL)
494 C2S(NL80211_CMD_SET_TX_BITRATE_MASK)
495 C2S(NL80211_CMD_REGISTER_FRAME)
496 C2S(NL80211_CMD_FRAME)
497 C2S(NL80211_CMD_FRAME_TX_STATUS)
498 C2S(NL80211_CMD_SET_POWER_SAVE)
499 C2S(NL80211_CMD_GET_POWER_SAVE)
500 C2S(NL80211_CMD_SET_CQM)
501 C2S(NL80211_CMD_NOTIFY_CQM)
502 C2S(NL80211_CMD_SET_CHANNEL)
503 C2S(NL80211_CMD_SET_WDS_PEER)
504 C2S(NL80211_CMD_FRAME_WAIT_CANCEL)
505 C2S(NL80211_CMD_JOIN_MESH)
506 C2S(NL80211_CMD_LEAVE_MESH)
507 C2S(NL80211_CMD_UNPROT_DEAUTHENTICATE)
508 C2S(NL80211_CMD_UNPROT_DISASSOCIATE)
509 C2S(NL80211_CMD_NEW_PEER_CANDIDATE)
510 C2S(NL80211_CMD_GET_WOWLAN)
511 C2S(NL80211_CMD_SET_WOWLAN)
512 C2S(NL80211_CMD_START_SCHED_SCAN)
513 C2S(NL80211_CMD_STOP_SCHED_SCAN)
514 C2S(NL80211_CMD_SCHED_SCAN_RESULTS)
515 C2S(NL80211_CMD_SCHED_SCAN_STOPPED)
516 C2S(NL80211_CMD_SET_REKEY_OFFLOAD)
517 C2S(NL80211_CMD_PMKSA_CANDIDATE)
518 C2S(NL80211_CMD_TDLS_OPER)
519 C2S(NL80211_CMD_TDLS_MGMT)
520 C2S(NL80211_CMD_UNEXPECTED_FRAME)
521 C2S(NL80211_CMD_PROBE_CLIENT)
522 C2S(NL80211_CMD_REGISTER_BEACONS)
523 C2S(NL80211_CMD_UNEXPECTED_4ADDR_FRAME)
524 C2S(NL80211_CMD_SET_NOACK_MAP)
525 C2S(NL80211_CMD_CH_SWITCH_NOTIFY)
526 C2S(NL80211_CMD_START_P2P_DEVICE)
527 C2S(NL80211_CMD_STOP_P2P_DEVICE)
528 C2S(NL80211_CMD_CONN_FAILED)
529 C2S(NL80211_CMD_SET_MCAST_RATE)
530 C2S(NL80211_CMD_SET_MAC_ACL)
531 C2S(NL80211_CMD_RADAR_DETECT)
532 C2S(NL80211_CMD_GET_PROTOCOL_FEATURES)
533 C2S(NL80211_CMD_UPDATE_FT_IES)
534 C2S(NL80211_CMD_FT_EVENT)
535 C2S(NL80211_CMD_CRIT_PROTOCOL_START)
536 C2S(NL80211_CMD_CRIT_PROTOCOL_STOP)
537 C2S(NL80211_CMD_GET_COALESCE)
538 C2S(NL80211_CMD_SET_COALESCE)
539 C2S(NL80211_CMD_CHANNEL_SWITCH)
540 C2S(NL80211_CMD_VENDOR)
541 C2S(NL80211_CMD_SET_QOS_MAP)
543 return "NL80211_CMD_UNKNOWN";
549 /* Converts nl80211_chan_width to a common format */
550 static enum chan_width convert2width(int width)
553 case NL80211_CHAN_WIDTH_20_NOHT:
554 return CHAN_WIDTH_20_NOHT;
555 case NL80211_CHAN_WIDTH_20:
556 return CHAN_WIDTH_20;
557 case NL80211_CHAN_WIDTH_40:
558 return CHAN_WIDTH_40;
559 case NL80211_CHAN_WIDTH_80:
560 return CHAN_WIDTH_80;
561 case NL80211_CHAN_WIDTH_80P80:
562 return CHAN_WIDTH_80P80;
563 case NL80211_CHAN_WIDTH_160:
564 return CHAN_WIDTH_160;
566 return CHAN_WIDTH_UNKNOWN;
570 static int is_ap_interface(enum nl80211_iftype nlmode)
572 return nlmode == NL80211_IFTYPE_AP ||
573 nlmode == NL80211_IFTYPE_P2P_GO;
577 static int is_sta_interface(enum nl80211_iftype nlmode)
579 return nlmode == NL80211_IFTYPE_STATION ||
580 nlmode == NL80211_IFTYPE_P2P_CLIENT;
584 static int is_p2p_net_interface(enum nl80211_iftype nlmode)
586 return nlmode == NL80211_IFTYPE_P2P_CLIENT ||
587 nlmode == NL80211_IFTYPE_P2P_GO;
591 static struct i802_bss * get_bss_ifindex(struct wpa_driver_nl80211_data *drv,
594 struct i802_bss *bss;
596 for (bss = drv->first_bss; bss; bss = bss->next) {
597 if (bss->ifindex == ifindex)
605 static void nl80211_mark_disconnected(struct wpa_driver_nl80211_data *drv)
608 os_memcpy(drv->prev_bssid, drv->bssid, ETH_ALEN);
610 os_memset(drv->bssid, 0, ETH_ALEN);
614 struct nl80211_bss_info_arg {
615 struct wpa_driver_nl80211_data *drv;
616 struct wpa_scan_results *res;
617 unsigned int assoc_freq;
618 unsigned int ibss_freq;
619 u8 assoc_bssid[ETH_ALEN];
622 static int bss_info_handler(struct nl_msg *msg, void *arg);
626 static int ack_handler(struct nl_msg *msg, void *arg)
633 static int finish_handler(struct nl_msg *msg, void *arg)
640 static int error_handler(struct sockaddr_nl *nla, struct nlmsgerr *err,
649 static int no_seq_check(struct nl_msg *msg, void *arg)
655 static int send_and_recv(struct nl80211_global *global,
656 struct nl_handle *nl_handle, struct nl_msg *msg,
657 int (*valid_handler)(struct nl_msg *, void *),
663 cb = nl_cb_clone(global->nl_cb);
667 err = nl_send_auto_complete(nl_handle, msg);
673 nl_cb_err(cb, NL_CB_CUSTOM, error_handler, &err);
674 nl_cb_set(cb, NL_CB_FINISH, NL_CB_CUSTOM, finish_handler, &err);
675 nl_cb_set(cb, NL_CB_ACK, NL_CB_CUSTOM, ack_handler, &err);
678 nl_cb_set(cb, NL_CB_VALID, NL_CB_CUSTOM,
679 valid_handler, valid_data);
682 int res = nl_recvmsgs(nl_handle, cb);
685 "nl80211: %s->nl_recvmsgs failed: %d",
696 static int send_and_recv_msgs_global(struct nl80211_global *global,
698 int (*valid_handler)(struct nl_msg *, void *),
701 return send_and_recv(global, global->nl, msg, valid_handler,
706 static int send_and_recv_msgs(struct wpa_driver_nl80211_data *drv,
708 int (*valid_handler)(struct nl_msg *, void *),
711 return send_and_recv(drv->global, drv->global->nl, msg,
712 valid_handler, valid_data);
722 static int nl80211_set_iface_id(struct nl_msg *msg, struct i802_bss *bss)
724 if (bss->wdev_id_set)
725 NLA_PUT_U64(msg, NL80211_ATTR_WDEV, bss->wdev_id);
727 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, bss->ifindex);
735 static int family_handler(struct nl_msg *msg, void *arg)
737 struct family_data *res = arg;
738 struct nlattr *tb[CTRL_ATTR_MAX + 1];
739 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
740 struct nlattr *mcgrp;
743 nla_parse(tb, CTRL_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
744 genlmsg_attrlen(gnlh, 0), NULL);
745 if (!tb[CTRL_ATTR_MCAST_GROUPS])
748 nla_for_each_nested(mcgrp, tb[CTRL_ATTR_MCAST_GROUPS], i) {
749 struct nlattr *tb2[CTRL_ATTR_MCAST_GRP_MAX + 1];
750 nla_parse(tb2, CTRL_ATTR_MCAST_GRP_MAX, nla_data(mcgrp),
751 nla_len(mcgrp), NULL);
752 if (!tb2[CTRL_ATTR_MCAST_GRP_NAME] ||
753 !tb2[CTRL_ATTR_MCAST_GRP_ID] ||
754 os_strncmp(nla_data(tb2[CTRL_ATTR_MCAST_GRP_NAME]),
756 nla_len(tb2[CTRL_ATTR_MCAST_GRP_NAME])) != 0)
758 res->id = nla_get_u32(tb2[CTRL_ATTR_MCAST_GRP_ID]);
766 static int nl_get_multicast_id(struct nl80211_global *global,
767 const char *family, const char *group)
771 struct family_data res = { group, -ENOENT };
776 genlmsg_put(msg, 0, 0, genl_ctrl_resolve(global->nl, "nlctrl"),
777 0, 0, CTRL_CMD_GETFAMILY, 0);
778 NLA_PUT_STRING(msg, CTRL_ATTR_FAMILY_NAME, family);
780 ret = send_and_recv_msgs_global(global, msg, family_handler, &res);
791 static void * nl80211_cmd(struct wpa_driver_nl80211_data *drv,
792 struct nl_msg *msg, int flags, uint8_t cmd)
794 return genlmsg_put(msg, 0, 0, drv->global->nl80211_id,
799 struct wiphy_idx_data {
801 enum nl80211_iftype nlmode;
806 static int netdev_info_handler(struct nl_msg *msg, void *arg)
808 struct nlattr *tb[NL80211_ATTR_MAX + 1];
809 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
810 struct wiphy_idx_data *info = arg;
812 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
813 genlmsg_attrlen(gnlh, 0), NULL);
815 if (tb[NL80211_ATTR_WIPHY])
816 info->wiphy_idx = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
818 if (tb[NL80211_ATTR_IFTYPE])
819 info->nlmode = nla_get_u32(tb[NL80211_ATTR_IFTYPE]);
821 if (tb[NL80211_ATTR_MAC] && info->macaddr)
822 os_memcpy(info->macaddr, nla_data(tb[NL80211_ATTR_MAC]),
829 static int nl80211_get_wiphy_index(struct i802_bss *bss)
832 struct wiphy_idx_data data = {
839 return NL80211_IFTYPE_UNSPECIFIED;
841 nl80211_cmd(bss->drv, msg, 0, NL80211_CMD_GET_INTERFACE);
843 if (nl80211_set_iface_id(msg, bss) < 0)
844 goto nla_put_failure;
846 if (send_and_recv_msgs(bss->drv, msg, netdev_info_handler, &data) == 0)
847 return data.wiphy_idx;
855 static enum nl80211_iftype nl80211_get_ifmode(struct i802_bss *bss)
858 struct wiphy_idx_data data = {
859 .nlmode = NL80211_IFTYPE_UNSPECIFIED,
867 nl80211_cmd(bss->drv, msg, 0, NL80211_CMD_GET_INTERFACE);
869 if (nl80211_set_iface_id(msg, bss) < 0)
870 goto nla_put_failure;
872 if (send_and_recv_msgs(bss->drv, msg, netdev_info_handler, &data) == 0)
877 return NL80211_IFTYPE_UNSPECIFIED;
881 static int nl80211_get_macaddr(struct i802_bss *bss)
884 struct wiphy_idx_data data = {
885 .macaddr = bss->addr,
890 return NL80211_IFTYPE_UNSPECIFIED;
892 nl80211_cmd(bss->drv, msg, 0, NL80211_CMD_GET_INTERFACE);
893 if (nl80211_set_iface_id(msg, bss) < 0)
894 goto nla_put_failure;
896 return send_and_recv_msgs(bss->drv, msg, netdev_info_handler, &data);
900 return NL80211_IFTYPE_UNSPECIFIED;
904 static int nl80211_register_beacons(struct wpa_driver_nl80211_data *drv,
905 struct nl80211_wiphy_data *w)
914 nl80211_cmd(drv, msg, 0, NL80211_CMD_REGISTER_BEACONS);
916 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY, w->wiphy_idx);
918 ret = send_and_recv(drv->global, w->nl_beacons, msg, NULL, NULL);
921 wpa_printf(MSG_DEBUG, "nl80211: Register beacons command "
922 "failed: ret=%d (%s)",
923 ret, strerror(-ret));
924 goto nla_put_failure;
933 static void nl80211_recv_beacons(int sock, void *eloop_ctx, void *handle)
935 struct nl80211_wiphy_data *w = eloop_ctx;
938 wpa_printf(MSG_EXCESSIVE, "nl80211: Beacon event message available");
940 res = nl_recvmsgs(handle, w->nl_cb);
942 wpa_printf(MSG_INFO, "nl80211: %s->nl_recvmsgs failed: %d",
948 static int process_beacon_event(struct nl_msg *msg, void *arg)
950 struct nl80211_wiphy_data *w = arg;
951 struct wpa_driver_nl80211_data *drv;
952 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
953 struct nlattr *tb[NL80211_ATTR_MAX + 1];
954 union wpa_event_data event;
956 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
957 genlmsg_attrlen(gnlh, 0), NULL);
959 if (gnlh->cmd != NL80211_CMD_FRAME) {
960 wpa_printf(MSG_DEBUG, "nl80211: Unexpected beacon event? (%d)",
965 if (!tb[NL80211_ATTR_FRAME])
968 dl_list_for_each(drv, &w->drvs, struct wpa_driver_nl80211_data,
970 os_memset(&event, 0, sizeof(event));
971 event.rx_mgmt.frame = nla_data(tb[NL80211_ATTR_FRAME]);
972 event.rx_mgmt.frame_len = nla_len(tb[NL80211_ATTR_FRAME]);
973 wpa_supplicant_event(drv->ctx, EVENT_RX_MGMT, &event);
980 static struct nl80211_wiphy_data *
981 nl80211_get_wiphy_data_ap(struct i802_bss *bss)
983 static DEFINE_DL_LIST(nl80211_wiphys);
984 struct nl80211_wiphy_data *w;
985 int wiphy_idx, found = 0;
986 struct i802_bss *tmp_bss;
988 if (bss->wiphy_data != NULL)
989 return bss->wiphy_data;
991 wiphy_idx = nl80211_get_wiphy_index(bss);
993 dl_list_for_each(w, &nl80211_wiphys, struct nl80211_wiphy_data, list) {
994 if (w->wiphy_idx == wiphy_idx)
999 w = os_zalloc(sizeof(*w));
1002 w->wiphy_idx = wiphy_idx;
1003 dl_list_init(&w->bsss);
1004 dl_list_init(&w->drvs);
1006 w->nl_cb = nl_cb_alloc(NL_CB_DEFAULT);
1011 nl_cb_set(w->nl_cb, NL_CB_SEQ_CHECK, NL_CB_CUSTOM, no_seq_check, NULL);
1012 nl_cb_set(w->nl_cb, NL_CB_VALID, NL_CB_CUSTOM, process_beacon_event,
1015 w->nl_beacons = nl_create_handle(bss->drv->global->nl_cb,
1017 if (w->nl_beacons == NULL) {
1022 if (nl80211_register_beacons(bss->drv, w)) {
1023 nl_destroy_handles(&w->nl_beacons);
1028 nl80211_register_eloop_read(&w->nl_beacons, nl80211_recv_beacons, w);
1030 dl_list_add(&nl80211_wiphys, &w->list);
1033 /* drv entry for this bss already there? */
1034 dl_list_for_each(tmp_bss, &w->bsss, struct i802_bss, wiphy_list) {
1035 if (tmp_bss->drv == bss->drv) {
1042 dl_list_add(&w->drvs, &bss->drv->wiphy_list);
1044 dl_list_add(&w->bsss, &bss->wiphy_list);
1045 bss->wiphy_data = w;
1050 static void nl80211_put_wiphy_data_ap(struct i802_bss *bss)
1052 struct nl80211_wiphy_data *w = bss->wiphy_data;
1053 struct i802_bss *tmp_bss;
1058 bss->wiphy_data = NULL;
1059 dl_list_del(&bss->wiphy_list);
1061 /* still any for this drv present? */
1062 dl_list_for_each(tmp_bss, &w->bsss, struct i802_bss, wiphy_list) {
1063 if (tmp_bss->drv == bss->drv) {
1068 /* if not remove it */
1070 dl_list_del(&bss->drv->wiphy_list);
1072 if (!dl_list_empty(&w->bsss))
1075 nl80211_destroy_eloop_handle(&w->nl_beacons);
1077 nl_cb_put(w->nl_cb);
1078 dl_list_del(&w->list);
1083 static int wpa_driver_nl80211_get_bssid(void *priv, u8 *bssid)
1085 struct i802_bss *bss = priv;
1086 struct wpa_driver_nl80211_data *drv = bss->drv;
1087 if (!drv->associated)
1089 os_memcpy(bssid, drv->bssid, ETH_ALEN);
1094 static int wpa_driver_nl80211_get_ssid(void *priv, u8 *ssid)
1096 struct i802_bss *bss = priv;
1097 struct wpa_driver_nl80211_data *drv = bss->drv;
1098 if (!drv->associated)
1100 os_memcpy(ssid, drv->ssid, drv->ssid_len);
1101 return drv->ssid_len;
1105 static void wpa_driver_nl80211_event_newlink(
1106 struct wpa_driver_nl80211_data *drv, char *ifname)
1108 union wpa_event_data event;
1110 if (os_strcmp(drv->first_bss->ifname, ifname) == 0) {
1111 if (if_nametoindex(drv->first_bss->ifname) == 0) {
1112 wpa_printf(MSG_DEBUG, "nl80211: Interface %s does not exist - ignore RTM_NEWLINK",
1113 drv->first_bss->ifname);
1116 if (!drv->if_removed)
1118 wpa_printf(MSG_DEBUG, "nl80211: Mark if_removed=0 for %s based on RTM_NEWLINK event",
1119 drv->first_bss->ifname);
1120 drv->if_removed = 0;
1123 os_memset(&event, 0, sizeof(event));
1124 os_strlcpy(event.interface_status.ifname, ifname,
1125 sizeof(event.interface_status.ifname));
1126 event.interface_status.ievent = EVENT_INTERFACE_ADDED;
1127 wpa_supplicant_event(drv->ctx, EVENT_INTERFACE_STATUS, &event);
1131 static void wpa_driver_nl80211_event_dellink(
1132 struct wpa_driver_nl80211_data *drv, char *ifname)
1134 union wpa_event_data event;
1136 if (os_strcmp(drv->first_bss->ifname, ifname) == 0) {
1137 if (drv->if_removed) {
1138 wpa_printf(MSG_DEBUG, "nl80211: if_removed already set - ignore RTM_DELLINK event for %s",
1142 wpa_printf(MSG_DEBUG, "RTM_DELLINK: Interface '%s' removed - mark if_removed=1",
1144 drv->if_removed = 1;
1146 wpa_printf(MSG_DEBUG, "RTM_DELLINK: Interface '%s' removed",
1150 os_memset(&event, 0, sizeof(event));
1151 os_strlcpy(event.interface_status.ifname, ifname,
1152 sizeof(event.interface_status.ifname));
1153 event.interface_status.ievent = EVENT_INTERFACE_REMOVED;
1154 wpa_supplicant_event(drv->ctx, EVENT_INTERFACE_STATUS, &event);
1158 static int wpa_driver_nl80211_own_ifname(struct wpa_driver_nl80211_data *drv,
1159 u8 *buf, size_t len)
1161 int attrlen, rta_len;
1162 struct rtattr *attr;
1165 attr = (struct rtattr *) buf;
1167 rta_len = RTA_ALIGN(sizeof(struct rtattr));
1168 while (RTA_OK(attr, attrlen)) {
1169 if (attr->rta_type == IFLA_IFNAME) {
1170 if (os_strcmp(((char *) attr) + rta_len,
1171 drv->first_bss->ifname) == 0)
1176 attr = RTA_NEXT(attr, attrlen);
1183 static int wpa_driver_nl80211_own_ifindex(struct wpa_driver_nl80211_data *drv,
1184 int ifindex, u8 *buf, size_t len)
1186 if (drv->ifindex == ifindex)
1189 if (drv->if_removed && wpa_driver_nl80211_own_ifname(drv, buf, len)) {
1190 wpa_printf(MSG_DEBUG, "nl80211: Update ifindex for a removed "
1192 wpa_driver_nl80211_finish_drv_init(drv, NULL, 0);
1200 static struct wpa_driver_nl80211_data *
1201 nl80211_find_drv(struct nl80211_global *global, int idx, u8 *buf, size_t len)
1203 struct wpa_driver_nl80211_data *drv;
1204 dl_list_for_each(drv, &global->interfaces,
1205 struct wpa_driver_nl80211_data, list) {
1206 if (wpa_driver_nl80211_own_ifindex(drv, idx, buf, len) ||
1207 have_ifidx(drv, idx))
1214 static void wpa_driver_nl80211_event_rtm_newlink(void *ctx,
1215 struct ifinfomsg *ifi,
1216 u8 *buf, size_t len)
1218 struct nl80211_global *global = ctx;
1219 struct wpa_driver_nl80211_data *drv;
1221 struct rtattr *attr;
1223 char namebuf[IFNAMSIZ];
1224 char ifname[IFNAMSIZ + 1];
1225 char extra[100], *pos, *end;
1227 drv = nl80211_find_drv(global, ifi->ifi_index, buf, len);
1229 wpa_printf(MSG_DEBUG, "nl80211: Ignore RTM_NEWLINK event for foreign ifindex %d",
1236 end = pos + sizeof(extra);
1240 attr = (struct rtattr *) buf;
1241 while (RTA_OK(attr, attrlen)) {
1242 switch (attr->rta_type) {
1244 if (RTA_PAYLOAD(attr) >= IFNAMSIZ)
1246 os_memcpy(ifname, RTA_DATA(attr), RTA_PAYLOAD(attr));
1247 ifname[RTA_PAYLOAD(attr)] = '\0';
1250 brid = nla_get_u32((struct nlattr *) attr);
1251 pos += os_snprintf(pos, end - pos, " master=%u", brid);
1254 pos += os_snprintf(pos, end - pos, " wext");
1256 case IFLA_OPERSTATE:
1257 pos += os_snprintf(pos, end - pos, " operstate=%u",
1258 nla_get_u32((struct nlattr *) attr));
1261 pos += os_snprintf(pos, end - pos, " linkmode=%u",
1262 nla_get_u32((struct nlattr *) attr));
1265 attr = RTA_NEXT(attr, attrlen);
1267 extra[sizeof(extra) - 1] = '\0';
1269 wpa_printf(MSG_DEBUG, "RTM_NEWLINK: ifi_index=%d ifname=%s%s ifi_family=%d ifi_flags=0x%x (%s%s%s%s)",
1270 ifi->ifi_index, ifname, extra, ifi->ifi_family,
1272 (ifi->ifi_flags & IFF_UP) ? "[UP]" : "",
1273 (ifi->ifi_flags & IFF_RUNNING) ? "[RUNNING]" : "",
1274 (ifi->ifi_flags & IFF_LOWER_UP) ? "[LOWER_UP]" : "",
1275 (ifi->ifi_flags & IFF_DORMANT) ? "[DORMANT]" : "");
1277 if (!drv->if_disabled && !(ifi->ifi_flags & IFF_UP)) {
1278 if (if_indextoname(ifi->ifi_index, namebuf) &&
1279 linux_iface_up(drv->global->ioctl_sock,
1280 drv->first_bss->ifname) > 0) {
1281 wpa_printf(MSG_DEBUG, "nl80211: Ignore interface down "
1282 "event since interface %s is up", namebuf);
1285 wpa_printf(MSG_DEBUG, "nl80211: Interface down");
1286 if (drv->ignore_if_down_event) {
1287 wpa_printf(MSG_DEBUG, "nl80211: Ignore interface down "
1288 "event generated by mode change");
1289 drv->ignore_if_down_event = 0;
1291 drv->if_disabled = 1;
1292 wpa_supplicant_event(drv->ctx,
1293 EVENT_INTERFACE_DISABLED, NULL);
1296 * Try to get drv again, since it may be removed as
1297 * part of the EVENT_INTERFACE_DISABLED handling for
1298 * dynamic interfaces
1300 drv = nl80211_find_drv(global, ifi->ifi_index,
1307 if (drv->if_disabled && (ifi->ifi_flags & IFF_UP)) {
1308 if (if_indextoname(ifi->ifi_index, namebuf) &&
1309 linux_iface_up(drv->global->ioctl_sock,
1310 drv->first_bss->ifname) == 0) {
1311 wpa_printf(MSG_DEBUG, "nl80211: Ignore interface up "
1312 "event since interface %s is down",
1314 } else if (if_nametoindex(drv->first_bss->ifname) == 0) {
1315 wpa_printf(MSG_DEBUG, "nl80211: Ignore interface up "
1316 "event since interface %s does not exist",
1317 drv->first_bss->ifname);
1318 } else if (drv->if_removed) {
1319 wpa_printf(MSG_DEBUG, "nl80211: Ignore interface up "
1320 "event since interface %s is marked "
1321 "removed", drv->first_bss->ifname);
1323 struct i802_bss *bss;
1326 /* Re-read MAC address as it may have changed */
1327 bss = get_bss_ifindex(drv, ifi->ifi_index);
1329 linux_get_ifhwaddr(drv->global->ioctl_sock,
1330 bss->ifname, addr) < 0) {
1331 wpa_printf(MSG_DEBUG,
1332 "nl80211: %s: failed to re-read MAC address",
1335 os_memcmp(addr, bss->addr, ETH_ALEN) != 0) {
1336 wpa_printf(MSG_DEBUG,
1337 "nl80211: Own MAC address on ifindex %d (%s) changed from "
1338 MACSTR " to " MACSTR,
1339 ifi->ifi_index, bss->ifname,
1342 os_memcpy(bss->addr, addr, ETH_ALEN);
1345 wpa_printf(MSG_DEBUG, "nl80211: Interface up");
1346 drv->if_disabled = 0;
1347 wpa_supplicant_event(drv->ctx, EVENT_INTERFACE_ENABLED,
1353 * Some drivers send the association event before the operup event--in
1354 * this case, lifting operstate in wpa_driver_nl80211_set_operstate()
1355 * fails. This will hit us when wpa_supplicant does not need to do
1356 * IEEE 802.1X authentication
1358 if (drv->operstate == 1 &&
1359 (ifi->ifi_flags & (IFF_LOWER_UP | IFF_DORMANT)) == IFF_LOWER_UP &&
1360 !(ifi->ifi_flags & IFF_RUNNING)) {
1361 wpa_printf(MSG_DEBUG, "nl80211: Set IF_OPER_UP again based on ifi_flags and expected operstate");
1362 netlink_send_oper_ifla(drv->global->netlink, drv->ifindex,
1367 wpa_driver_nl80211_event_newlink(drv, ifname);
1369 if (ifi->ifi_family == AF_BRIDGE && brid) {
1370 /* device has been added to bridge */
1371 if_indextoname(brid, namebuf);
1372 wpa_printf(MSG_DEBUG, "nl80211: Add ifindex %u for bridge %s",
1374 add_ifidx(drv, brid);
1379 static void wpa_driver_nl80211_event_rtm_dellink(void *ctx,
1380 struct ifinfomsg *ifi,
1381 u8 *buf, size_t len)
1383 struct nl80211_global *global = ctx;
1384 struct wpa_driver_nl80211_data *drv;
1386 struct rtattr *attr;
1388 char ifname[IFNAMSIZ + 1];
1389 char extra[100], *pos, *end;
1391 drv = nl80211_find_drv(global, ifi->ifi_index, buf, len);
1393 wpa_printf(MSG_DEBUG, "nl80211: Ignore RTM_DELLINK event for foreign ifindex %d",
1400 end = pos + sizeof(extra);
1404 attr = (struct rtattr *) buf;
1405 while (RTA_OK(attr, attrlen)) {
1406 switch (attr->rta_type) {
1408 if (RTA_PAYLOAD(attr) >= IFNAMSIZ)
1410 os_memcpy(ifname, RTA_DATA(attr), RTA_PAYLOAD(attr));
1411 ifname[RTA_PAYLOAD(attr)] = '\0';
1414 brid = nla_get_u32((struct nlattr *) attr);
1415 pos += os_snprintf(pos, end - pos, " master=%u", brid);
1417 case IFLA_OPERSTATE:
1418 pos += os_snprintf(pos, end - pos, " operstate=%u",
1419 nla_get_u32((struct nlattr *) attr));
1422 pos += os_snprintf(pos, end - pos, " linkmode=%u",
1423 nla_get_u32((struct nlattr *) attr));
1426 attr = RTA_NEXT(attr, attrlen);
1428 extra[sizeof(extra) - 1] = '\0';
1430 wpa_printf(MSG_DEBUG, "RTM_DELLINK: ifi_index=%d ifname=%s%s ifi_family=%d ifi_flags=0x%x (%s%s%s%s)",
1431 ifi->ifi_index, ifname, extra, ifi->ifi_family,
1433 (ifi->ifi_flags & IFF_UP) ? "[UP]" : "",
1434 (ifi->ifi_flags & IFF_RUNNING) ? "[RUNNING]" : "",
1435 (ifi->ifi_flags & IFF_LOWER_UP) ? "[LOWER_UP]" : "",
1436 (ifi->ifi_flags & IFF_DORMANT) ? "[DORMANT]" : "");
1438 if (ifname[0] && (ifi->ifi_family != AF_BRIDGE || !brid))
1439 wpa_driver_nl80211_event_dellink(drv, ifname);
1441 if (ifi->ifi_family == AF_BRIDGE && brid) {
1442 /* device has been removed from bridge */
1443 char namebuf[IFNAMSIZ];
1444 if_indextoname(brid, namebuf);
1445 wpa_printf(MSG_DEBUG, "nl80211: Remove ifindex %u for bridge "
1446 "%s", brid, namebuf);
1447 del_ifidx(drv, brid);
1452 static void mlme_event_auth(struct wpa_driver_nl80211_data *drv,
1453 const u8 *frame, size_t len)
1455 const struct ieee80211_mgmt *mgmt;
1456 union wpa_event_data event;
1458 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME) &&
1459 drv->force_connect_cmd) {
1461 * Avoid reporting two association events that would confuse
1464 wpa_printf(MSG_DEBUG,
1465 "nl80211: Ignore auth event when using driver SME");
1469 wpa_printf(MSG_DEBUG, "nl80211: Authenticate event");
1470 mgmt = (const struct ieee80211_mgmt *) frame;
1471 if (len < 24 + sizeof(mgmt->u.auth)) {
1472 wpa_printf(MSG_DEBUG, "nl80211: Too short association event "
1477 os_memcpy(drv->auth_bssid, mgmt->sa, ETH_ALEN);
1478 os_memset(drv->auth_attempt_bssid, 0, ETH_ALEN);
1479 os_memset(&event, 0, sizeof(event));
1480 os_memcpy(event.auth.peer, mgmt->sa, ETH_ALEN);
1481 event.auth.auth_type = le_to_host16(mgmt->u.auth.auth_alg);
1482 event.auth.auth_transaction =
1483 le_to_host16(mgmt->u.auth.auth_transaction);
1484 event.auth.status_code = le_to_host16(mgmt->u.auth.status_code);
1485 if (len > 24 + sizeof(mgmt->u.auth)) {
1486 event.auth.ies = mgmt->u.auth.variable;
1487 event.auth.ies_len = len - 24 - sizeof(mgmt->u.auth);
1490 wpa_supplicant_event(drv->ctx, EVENT_AUTH, &event);
1494 static unsigned int nl80211_get_assoc_freq(struct wpa_driver_nl80211_data *drv)
1498 struct nl80211_bss_info_arg arg;
1500 os_memset(&arg, 0, sizeof(arg));
1501 msg = nlmsg_alloc();
1503 goto nla_put_failure;
1505 nl80211_cmd(drv, msg, NLM_F_DUMP, NL80211_CMD_GET_SCAN);
1506 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
1509 ret = send_and_recv_msgs(drv, msg, bss_info_handler, &arg);
1512 unsigned int freq = drv->nlmode == NL80211_IFTYPE_ADHOC ?
1513 arg.ibss_freq : arg.assoc_freq;
1514 wpa_printf(MSG_DEBUG, "nl80211: Operating frequency for the "
1515 "associated BSS from scan results: %u MHz", freq);
1517 drv->assoc_freq = freq;
1518 return drv->assoc_freq;
1520 wpa_printf(MSG_DEBUG, "nl80211: Scan result fetch failed: ret=%d "
1521 "(%s)", ret, strerror(-ret));
1524 return drv->assoc_freq;
1528 static void mlme_event_assoc(struct wpa_driver_nl80211_data *drv,
1529 const u8 *frame, size_t len)
1531 const struct ieee80211_mgmt *mgmt;
1532 union wpa_event_data event;
1535 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME) &&
1536 drv->force_connect_cmd) {
1538 * Avoid reporting two association events that would confuse
1541 wpa_printf(MSG_DEBUG,
1542 "nl80211: Ignore assoc event when using driver SME");
1546 wpa_printf(MSG_DEBUG, "nl80211: Associate event");
1547 mgmt = (const struct ieee80211_mgmt *) frame;
1548 if (len < 24 + sizeof(mgmt->u.assoc_resp)) {
1549 wpa_printf(MSG_DEBUG, "nl80211: Too short association event "
1554 status = le_to_host16(mgmt->u.assoc_resp.status_code);
1555 if (status != WLAN_STATUS_SUCCESS) {
1556 os_memset(&event, 0, sizeof(event));
1557 event.assoc_reject.bssid = mgmt->bssid;
1558 if (len > 24 + sizeof(mgmt->u.assoc_resp)) {
1559 event.assoc_reject.resp_ies =
1560 (u8 *) mgmt->u.assoc_resp.variable;
1561 event.assoc_reject.resp_ies_len =
1562 len - 24 - sizeof(mgmt->u.assoc_resp);
1564 event.assoc_reject.status_code = status;
1566 wpa_supplicant_event(drv->ctx, EVENT_ASSOC_REJECT, &event);
1570 drv->associated = 1;
1571 os_memcpy(drv->bssid, mgmt->sa, ETH_ALEN);
1572 os_memcpy(drv->prev_bssid, mgmt->sa, ETH_ALEN);
1574 os_memset(&event, 0, sizeof(event));
1575 if (len > 24 + sizeof(mgmt->u.assoc_resp)) {
1576 event.assoc_info.resp_ies = (u8 *) mgmt->u.assoc_resp.variable;
1577 event.assoc_info.resp_ies_len =
1578 len - 24 - sizeof(mgmt->u.assoc_resp);
1581 event.assoc_info.freq = drv->assoc_freq;
1583 wpa_supplicant_event(drv->ctx, EVENT_ASSOC, &event);
1587 static void mlme_event_connect(struct wpa_driver_nl80211_data *drv,
1588 enum nl80211_commands cmd, struct nlattr *status,
1589 struct nlattr *addr, struct nlattr *req_ie,
1590 struct nlattr *resp_ie)
1592 union wpa_event_data event;
1594 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME) {
1596 * Avoid reporting two association events that would confuse
1599 wpa_printf(MSG_DEBUG, "nl80211: Ignore connect event (cmd=%d) "
1600 "when using userspace SME", cmd);
1604 if (cmd == NL80211_CMD_CONNECT)
1605 wpa_printf(MSG_DEBUG, "nl80211: Connect event");
1606 else if (cmd == NL80211_CMD_ROAM)
1607 wpa_printf(MSG_DEBUG, "nl80211: Roam event");
1609 os_memset(&event, 0, sizeof(event));
1610 if (cmd == NL80211_CMD_CONNECT &&
1611 nla_get_u16(status) != WLAN_STATUS_SUCCESS) {
1613 event.assoc_reject.bssid = nla_data(addr);
1615 event.assoc_reject.resp_ies = nla_data(resp_ie);
1616 event.assoc_reject.resp_ies_len = nla_len(resp_ie);
1618 event.assoc_reject.status_code = nla_get_u16(status);
1619 wpa_supplicant_event(drv->ctx, EVENT_ASSOC_REJECT, &event);
1623 drv->associated = 1;
1625 os_memcpy(drv->bssid, nla_data(addr), ETH_ALEN);
1626 os_memcpy(drv->prev_bssid, drv->bssid, ETH_ALEN);
1630 event.assoc_info.req_ies = nla_data(req_ie);
1631 event.assoc_info.req_ies_len = nla_len(req_ie);
1634 event.assoc_info.resp_ies = nla_data(resp_ie);
1635 event.assoc_info.resp_ies_len = nla_len(resp_ie);
1638 event.assoc_info.freq = nl80211_get_assoc_freq(drv);
1640 wpa_supplicant_event(drv->ctx, EVENT_ASSOC, &event);
1644 static void mlme_event_disconnect(struct wpa_driver_nl80211_data *drv,
1645 struct nlattr *reason, struct nlattr *addr,
1646 struct nlattr *by_ap)
1648 union wpa_event_data data;
1649 unsigned int locally_generated = by_ap == NULL;
1651 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME) {
1653 * Avoid reporting two disassociation events that could
1654 * confuse the core code.
1656 wpa_printf(MSG_DEBUG, "nl80211: Ignore disconnect "
1657 "event when using userspace SME");
1661 if (drv->ignore_next_local_disconnect) {
1662 drv->ignore_next_local_disconnect = 0;
1663 if (locally_generated) {
1664 wpa_printf(MSG_DEBUG, "nl80211: Ignore disconnect "
1665 "event triggered during reassociation");
1668 wpa_printf(MSG_WARNING, "nl80211: Was expecting local "
1669 "disconnect but got another disconnect "
1673 wpa_printf(MSG_DEBUG, "nl80211: Disconnect event");
1674 nl80211_mark_disconnected(drv);
1675 os_memset(&data, 0, sizeof(data));
1677 data.deauth_info.reason_code = nla_get_u16(reason);
1678 data.deauth_info.locally_generated = by_ap == NULL;
1679 wpa_supplicant_event(drv->ctx, EVENT_DEAUTH, &data);
1683 static int calculate_chan_offset(int width, int freq, int cf1, int cf2)
1687 switch (convert2width(width)) {
1688 case CHAN_WIDTH_20_NOHT:
1697 case CHAN_WIDTH_160:
1700 case CHAN_WIDTH_UNKNOWN:
1701 case CHAN_WIDTH_80P80:
1702 /* FIXME: implement this */
1706 return (abs(freq - freq1) / 20) % 2 == 0 ? 1 : -1;
1710 static void mlme_event_ch_switch(struct wpa_driver_nl80211_data *drv,
1711 struct nlattr *ifindex, struct nlattr *freq,
1712 struct nlattr *type, struct nlattr *bw,
1713 struct nlattr *cf1, struct nlattr *cf2)
1715 struct i802_bss *bss;
1716 union wpa_event_data data;
1718 int chan_offset = 0;
1721 wpa_printf(MSG_DEBUG, "nl80211: Channel switch event");
1726 ifidx = nla_get_u32(ifindex);
1727 bss = get_bss_ifindex(drv, ifidx);
1729 wpa_printf(MSG_WARNING, "nl80211: Unknown ifindex (%d) for channel switch, ignoring",
1735 switch (nla_get_u32(type)) {
1736 case NL80211_CHAN_NO_HT:
1739 case NL80211_CHAN_HT20:
1741 case NL80211_CHAN_HT40PLUS:
1744 case NL80211_CHAN_HT40MINUS:
1748 } else if (bw && cf1) {
1749 /* This can happen for example with VHT80 ch switch */
1750 chan_offset = calculate_chan_offset(nla_get_u32(bw),
1753 cf2 ? nla_get_u32(cf2) : 0);
1755 wpa_printf(MSG_WARNING, "nl80211: Unknown secondary channel information - following channel definition calculations may fail");
1758 os_memset(&data, 0, sizeof(data));
1759 data.ch_switch.freq = nla_get_u32(freq);
1760 data.ch_switch.ht_enabled = ht_enabled;
1761 data.ch_switch.ch_offset = chan_offset;
1763 data.ch_switch.ch_width = convert2width(nla_get_u32(bw));
1765 data.ch_switch.cf1 = nla_get_u32(cf1);
1767 data.ch_switch.cf2 = nla_get_u32(cf2);
1769 bss->freq = data.ch_switch.freq;
1771 wpa_supplicant_event(bss->ctx, EVENT_CH_SWITCH, &data);
1775 static void mlme_timeout_event(struct wpa_driver_nl80211_data *drv,
1776 enum nl80211_commands cmd, struct nlattr *addr)
1778 union wpa_event_data event;
1779 enum wpa_event_type ev;
1781 if (nla_len(addr) != ETH_ALEN)
1784 wpa_printf(MSG_DEBUG, "nl80211: MLME event %d; timeout with " MACSTR,
1785 cmd, MAC2STR((u8 *) nla_data(addr)));
1787 if (cmd == NL80211_CMD_AUTHENTICATE)
1788 ev = EVENT_AUTH_TIMED_OUT;
1789 else if (cmd == NL80211_CMD_ASSOCIATE)
1790 ev = EVENT_ASSOC_TIMED_OUT;
1794 os_memset(&event, 0, sizeof(event));
1795 os_memcpy(event.timeout_event.addr, nla_data(addr), ETH_ALEN);
1796 wpa_supplicant_event(drv->ctx, ev, &event);
1800 static void mlme_event_mgmt(struct i802_bss *bss,
1801 struct nlattr *freq, struct nlattr *sig,
1802 const u8 *frame, size_t len)
1804 struct wpa_driver_nl80211_data *drv = bss->drv;
1805 const struct ieee80211_mgmt *mgmt;
1806 union wpa_event_data event;
1811 wpa_printf(MSG_MSGDUMP, "nl80211: Frame event");
1812 mgmt = (const struct ieee80211_mgmt *) frame;
1814 wpa_printf(MSG_DEBUG, "nl80211: Too short management frame");
1818 fc = le_to_host16(mgmt->frame_control);
1819 stype = WLAN_FC_GET_STYPE(fc);
1822 ssi_signal = (s32) nla_get_u32(sig);
1824 os_memset(&event, 0, sizeof(event));
1826 event.rx_mgmt.freq = nla_get_u32(freq);
1827 rx_freq = drv->last_mgmt_freq = event.rx_mgmt.freq;
1829 wpa_printf(MSG_DEBUG,
1830 "nl80211: RX frame sa=" MACSTR
1831 " freq=%d ssi_signal=%d stype=%u (%s) len=%u",
1832 MAC2STR(mgmt->sa), rx_freq, ssi_signal, stype, fc2str(fc),
1833 (unsigned int) len);
1834 event.rx_mgmt.frame = frame;
1835 event.rx_mgmt.frame_len = len;
1836 event.rx_mgmt.ssi_signal = ssi_signal;
1837 event.rx_mgmt.drv_priv = bss;
1838 wpa_supplicant_event(drv->ctx, EVENT_RX_MGMT, &event);
1842 static void mlme_event_mgmt_tx_status(struct wpa_driver_nl80211_data *drv,
1843 struct nlattr *cookie, const u8 *frame,
1844 size_t len, struct nlattr *ack)
1846 union wpa_event_data event;
1847 const struct ieee80211_hdr *hdr;
1850 wpa_printf(MSG_DEBUG, "nl80211: Frame TX status event");
1851 if (!is_ap_interface(drv->nlmode)) {
1857 cookie_val = nla_get_u64(cookie);
1858 wpa_printf(MSG_DEBUG, "nl80211: Action TX status:"
1859 " cookie=0%llx%s (ack=%d)",
1860 (long long unsigned int) cookie_val,
1861 cookie_val == drv->send_action_cookie ?
1862 " (match)" : " (unknown)", ack != NULL);
1863 if (cookie_val != drv->send_action_cookie)
1867 hdr = (const struct ieee80211_hdr *) frame;
1868 fc = le_to_host16(hdr->frame_control);
1870 os_memset(&event, 0, sizeof(event));
1871 event.tx_status.type = WLAN_FC_GET_TYPE(fc);
1872 event.tx_status.stype = WLAN_FC_GET_STYPE(fc);
1873 event.tx_status.dst = hdr->addr1;
1874 event.tx_status.data = frame;
1875 event.tx_status.data_len = len;
1876 event.tx_status.ack = ack != NULL;
1877 wpa_supplicant_event(drv->ctx, EVENT_TX_STATUS, &event);
1881 static void mlme_event_deauth_disassoc(struct wpa_driver_nl80211_data *drv,
1882 enum wpa_event_type type,
1883 const u8 *frame, size_t len)
1885 const struct ieee80211_mgmt *mgmt;
1886 union wpa_event_data event;
1887 const u8 *bssid = NULL;
1888 u16 reason_code = 0;
1890 if (type == EVENT_DEAUTH)
1891 wpa_printf(MSG_DEBUG, "nl80211: Deauthenticate event");
1893 wpa_printf(MSG_DEBUG, "nl80211: Disassociate event");
1895 mgmt = (const struct ieee80211_mgmt *) frame;
1897 bssid = mgmt->bssid;
1899 if ((drv->capa.flags & WPA_DRIVER_FLAGS_SME) &&
1901 os_memcmp(bssid, drv->auth_bssid, ETH_ALEN) != 0 &&
1902 os_memcmp(bssid, drv->auth_attempt_bssid, ETH_ALEN) != 0 &&
1903 os_memcmp(bssid, drv->prev_bssid, ETH_ALEN) == 0) {
1905 * Avoid issues with some roaming cases where
1906 * disconnection event for the old AP may show up after
1907 * we have started connection with the new AP.
1909 wpa_printf(MSG_DEBUG, "nl80211: Ignore deauth/disassoc event from old AP " MACSTR " when already authenticating with " MACSTR,
1911 MAC2STR(drv->auth_attempt_bssid));
1915 if (drv->associated != 0 &&
1916 os_memcmp(bssid, drv->bssid, ETH_ALEN) != 0 &&
1917 os_memcmp(bssid, drv->auth_bssid, ETH_ALEN) != 0) {
1919 * We have presumably received this deauth as a
1920 * response to a clear_state_mismatch() outgoing
1921 * deauth. Don't let it take us offline!
1923 wpa_printf(MSG_DEBUG, "nl80211: Deauth received "
1924 "from Unknown BSSID " MACSTR " -- ignoring",
1930 nl80211_mark_disconnected(drv);
1931 os_memset(&event, 0, sizeof(event));
1933 /* Note: Same offset for Reason Code in both frame subtypes */
1934 if (len >= 24 + sizeof(mgmt->u.deauth))
1935 reason_code = le_to_host16(mgmt->u.deauth.reason_code);
1937 if (type == EVENT_DISASSOC) {
1938 event.disassoc_info.locally_generated =
1939 !os_memcmp(mgmt->sa, drv->first_bss->addr, ETH_ALEN);
1940 event.disassoc_info.addr = bssid;
1941 event.disassoc_info.reason_code = reason_code;
1942 if (frame + len > mgmt->u.disassoc.variable) {
1943 event.disassoc_info.ie = mgmt->u.disassoc.variable;
1944 event.disassoc_info.ie_len = frame + len -
1945 mgmt->u.disassoc.variable;
1948 if (drv->ignore_deauth_event) {
1949 wpa_printf(MSG_DEBUG, "nl80211: Ignore deauth event due to previous forced deauth-during-auth");
1950 drv->ignore_deauth_event = 0;
1953 event.deauth_info.locally_generated =
1954 !os_memcmp(mgmt->sa, drv->first_bss->addr, ETH_ALEN);
1955 if (drv->ignore_next_local_deauth) {
1956 drv->ignore_next_local_deauth = 0;
1957 if (event.deauth_info.locally_generated) {
1958 wpa_printf(MSG_DEBUG, "nl80211: Ignore deauth event triggered due to own deauth request");
1961 wpa_printf(MSG_WARNING, "nl80211: Was expecting local deauth but got another disconnect event first");
1963 event.deauth_info.addr = bssid;
1964 event.deauth_info.reason_code = reason_code;
1965 if (frame + len > mgmt->u.deauth.variable) {
1966 event.deauth_info.ie = mgmt->u.deauth.variable;
1967 event.deauth_info.ie_len = frame + len -
1968 mgmt->u.deauth.variable;
1972 wpa_supplicant_event(drv->ctx, type, &event);
1976 static void mlme_event_unprot_disconnect(struct wpa_driver_nl80211_data *drv,
1977 enum wpa_event_type type,
1978 const u8 *frame, size_t len)
1980 const struct ieee80211_mgmt *mgmt;
1981 union wpa_event_data event;
1982 u16 reason_code = 0;
1984 if (type == EVENT_UNPROT_DEAUTH)
1985 wpa_printf(MSG_DEBUG, "nl80211: Unprot Deauthenticate event");
1987 wpa_printf(MSG_DEBUG, "nl80211: Unprot Disassociate event");
1992 mgmt = (const struct ieee80211_mgmt *) frame;
1994 os_memset(&event, 0, sizeof(event));
1995 /* Note: Same offset for Reason Code in both frame subtypes */
1996 if (len >= 24 + sizeof(mgmt->u.deauth))
1997 reason_code = le_to_host16(mgmt->u.deauth.reason_code);
1999 if (type == EVENT_UNPROT_DISASSOC) {
2000 event.unprot_disassoc.sa = mgmt->sa;
2001 event.unprot_disassoc.da = mgmt->da;
2002 event.unprot_disassoc.reason_code = reason_code;
2004 event.unprot_deauth.sa = mgmt->sa;
2005 event.unprot_deauth.da = mgmt->da;
2006 event.unprot_deauth.reason_code = reason_code;
2009 wpa_supplicant_event(drv->ctx, type, &event);
2013 static void mlme_event(struct i802_bss *bss,
2014 enum nl80211_commands cmd, struct nlattr *frame,
2015 struct nlattr *addr, struct nlattr *timed_out,
2016 struct nlattr *freq, struct nlattr *ack,
2017 struct nlattr *cookie, struct nlattr *sig)
2019 struct wpa_driver_nl80211_data *drv = bss->drv;
2023 if (timed_out && addr) {
2024 mlme_timeout_event(drv, cmd, addr);
2028 if (frame == NULL) {
2029 wpa_printf(MSG_DEBUG,
2030 "nl80211: MLME event %d (%s) without frame data",
2031 cmd, nl80211_command_to_string(cmd));
2035 data = nla_data(frame);
2036 len = nla_len(frame);
2037 if (len < 4 + 2 * ETH_ALEN) {
2038 wpa_printf(MSG_MSGDUMP, "nl80211: MLME event %d (%s) on %s("
2039 MACSTR ") - too short",
2040 cmd, nl80211_command_to_string(cmd), bss->ifname,
2041 MAC2STR(bss->addr));
2044 wpa_printf(MSG_MSGDUMP, "nl80211: MLME event %d (%s) on %s(" MACSTR
2045 ") A1=" MACSTR " A2=" MACSTR, cmd,
2046 nl80211_command_to_string(cmd), bss->ifname,
2047 MAC2STR(bss->addr), MAC2STR(data + 4),
2048 MAC2STR(data + 4 + ETH_ALEN));
2049 if (cmd != NL80211_CMD_FRAME_TX_STATUS && !(data[4] & 0x01) &&
2050 os_memcmp(bss->addr, data + 4, ETH_ALEN) != 0 &&
2051 os_memcmp(bss->addr, data + 4 + ETH_ALEN, ETH_ALEN) != 0) {
2052 wpa_printf(MSG_MSGDUMP, "nl80211: %s: Ignore MLME frame event "
2053 "for foreign address", bss->ifname);
2056 wpa_hexdump(MSG_MSGDUMP, "nl80211: MLME event frame",
2057 nla_data(frame), nla_len(frame));
2060 case NL80211_CMD_AUTHENTICATE:
2061 mlme_event_auth(drv, nla_data(frame), nla_len(frame));
2063 case NL80211_CMD_ASSOCIATE:
2064 mlme_event_assoc(drv, nla_data(frame), nla_len(frame));
2066 case NL80211_CMD_DEAUTHENTICATE:
2067 mlme_event_deauth_disassoc(drv, EVENT_DEAUTH,
2068 nla_data(frame), nla_len(frame));
2070 case NL80211_CMD_DISASSOCIATE:
2071 mlme_event_deauth_disassoc(drv, EVENT_DISASSOC,
2072 nla_data(frame), nla_len(frame));
2074 case NL80211_CMD_FRAME:
2075 mlme_event_mgmt(bss, freq, sig, nla_data(frame),
2078 case NL80211_CMD_FRAME_TX_STATUS:
2079 mlme_event_mgmt_tx_status(drv, cookie, nla_data(frame),
2080 nla_len(frame), ack);
2082 case NL80211_CMD_UNPROT_DEAUTHENTICATE:
2083 mlme_event_unprot_disconnect(drv, EVENT_UNPROT_DEAUTH,
2084 nla_data(frame), nla_len(frame));
2086 case NL80211_CMD_UNPROT_DISASSOCIATE:
2087 mlme_event_unprot_disconnect(drv, EVENT_UNPROT_DISASSOC,
2088 nla_data(frame), nla_len(frame));
2096 static void mlme_event_michael_mic_failure(struct i802_bss *bss,
2097 struct nlattr *tb[])
2099 union wpa_event_data data;
2101 wpa_printf(MSG_DEBUG, "nl80211: MLME event Michael MIC failure");
2102 os_memset(&data, 0, sizeof(data));
2103 if (tb[NL80211_ATTR_MAC]) {
2104 wpa_hexdump(MSG_DEBUG, "nl80211: Source MAC address",
2105 nla_data(tb[NL80211_ATTR_MAC]),
2106 nla_len(tb[NL80211_ATTR_MAC]));
2107 data.michael_mic_failure.src = nla_data(tb[NL80211_ATTR_MAC]);
2109 if (tb[NL80211_ATTR_KEY_SEQ]) {
2110 wpa_hexdump(MSG_DEBUG, "nl80211: TSC",
2111 nla_data(tb[NL80211_ATTR_KEY_SEQ]),
2112 nla_len(tb[NL80211_ATTR_KEY_SEQ]));
2114 if (tb[NL80211_ATTR_KEY_TYPE]) {
2115 enum nl80211_key_type key_type =
2116 nla_get_u32(tb[NL80211_ATTR_KEY_TYPE]);
2117 wpa_printf(MSG_DEBUG, "nl80211: Key Type %d", key_type);
2118 if (key_type == NL80211_KEYTYPE_PAIRWISE)
2119 data.michael_mic_failure.unicast = 1;
2121 data.michael_mic_failure.unicast = 1;
2123 if (tb[NL80211_ATTR_KEY_IDX]) {
2124 u8 key_id = nla_get_u8(tb[NL80211_ATTR_KEY_IDX]);
2125 wpa_printf(MSG_DEBUG, "nl80211: Key Id %d", key_id);
2128 wpa_supplicant_event(bss->ctx, EVENT_MICHAEL_MIC_FAILURE, &data);
2132 static void mlme_event_join_ibss(struct wpa_driver_nl80211_data *drv,
2133 struct nlattr *tb[])
2137 if (tb[NL80211_ATTR_MAC] == NULL) {
2138 wpa_printf(MSG_DEBUG, "nl80211: No address in IBSS joined "
2142 os_memcpy(drv->bssid, nla_data(tb[NL80211_ATTR_MAC]), ETH_ALEN);
2144 drv->associated = 1;
2145 wpa_printf(MSG_DEBUG, "nl80211: IBSS " MACSTR " joined",
2146 MAC2STR(drv->bssid));
2148 freq = nl80211_get_assoc_freq(drv);
2150 wpa_printf(MSG_DEBUG, "nl80211: IBSS on frequency %u MHz",
2152 drv->first_bss->freq = freq;
2155 wpa_supplicant_event(drv->ctx, EVENT_ASSOC, NULL);
2159 static void mlme_event_remain_on_channel(struct wpa_driver_nl80211_data *drv,
2160 int cancel_event, struct nlattr *tb[])
2162 unsigned int freq, chan_type, duration;
2163 union wpa_event_data data;
2166 if (tb[NL80211_ATTR_WIPHY_FREQ])
2167 freq = nla_get_u32(tb[NL80211_ATTR_WIPHY_FREQ]);
2171 if (tb[NL80211_ATTR_WIPHY_CHANNEL_TYPE])
2172 chan_type = nla_get_u32(tb[NL80211_ATTR_WIPHY_CHANNEL_TYPE]);
2176 if (tb[NL80211_ATTR_DURATION])
2177 duration = nla_get_u32(tb[NL80211_ATTR_DURATION]);
2181 if (tb[NL80211_ATTR_COOKIE])
2182 cookie = nla_get_u64(tb[NL80211_ATTR_COOKIE]);
2186 wpa_printf(MSG_DEBUG, "nl80211: Remain-on-channel event (cancel=%d "
2187 "freq=%u channel_type=%u duration=%u cookie=0x%llx (%s))",
2188 cancel_event, freq, chan_type, duration,
2189 (long long unsigned int) cookie,
2190 cookie == drv->remain_on_chan_cookie ? "match" : "unknown");
2192 if (cookie != drv->remain_on_chan_cookie)
2193 return; /* not for us */
2196 drv->pending_remain_on_chan = 0;
2198 os_memset(&data, 0, sizeof(data));
2199 data.remain_on_channel.freq = freq;
2200 data.remain_on_channel.duration = duration;
2201 wpa_supplicant_event(drv->ctx, cancel_event ?
2202 EVENT_CANCEL_REMAIN_ON_CHANNEL :
2203 EVENT_REMAIN_ON_CHANNEL, &data);
2207 static void mlme_event_ft_event(struct wpa_driver_nl80211_data *drv,
2208 struct nlattr *tb[])
2210 union wpa_event_data data;
2212 os_memset(&data, 0, sizeof(data));
2214 if (tb[NL80211_ATTR_IE]) {
2215 data.ft_ies.ies = nla_data(tb[NL80211_ATTR_IE]);
2216 data.ft_ies.ies_len = nla_len(tb[NL80211_ATTR_IE]);
2219 if (tb[NL80211_ATTR_IE_RIC]) {
2220 data.ft_ies.ric_ies = nla_data(tb[NL80211_ATTR_IE_RIC]);
2221 data.ft_ies.ric_ies_len = nla_len(tb[NL80211_ATTR_IE_RIC]);
2224 if (tb[NL80211_ATTR_MAC])
2225 os_memcpy(data.ft_ies.target_ap,
2226 nla_data(tb[NL80211_ATTR_MAC]), ETH_ALEN);
2228 wpa_printf(MSG_DEBUG, "nl80211: FT event target_ap " MACSTR,
2229 MAC2STR(data.ft_ies.target_ap));
2231 wpa_supplicant_event(drv->ctx, EVENT_FT_RESPONSE, &data);
2235 static void send_scan_event(struct wpa_driver_nl80211_data *drv, int aborted,
2236 struct nlattr *tb[])
2238 union wpa_event_data event;
2241 struct scan_info *info;
2242 #define MAX_REPORT_FREQS 50
2243 int freqs[MAX_REPORT_FREQS];
2246 if (drv->scan_for_auth) {
2247 drv->scan_for_auth = 0;
2248 wpa_printf(MSG_DEBUG, "nl80211: Scan results for missing "
2249 "cfg80211 BSS entry");
2250 wpa_driver_nl80211_authenticate_retry(drv);
2254 os_memset(&event, 0, sizeof(event));
2255 info = &event.scan_info;
2256 info->aborted = aborted;
2258 if (tb[NL80211_ATTR_SCAN_SSIDS]) {
2259 nla_for_each_nested(nl, tb[NL80211_ATTR_SCAN_SSIDS], rem) {
2260 struct wpa_driver_scan_ssid *s =
2261 &info->ssids[info->num_ssids];
2262 s->ssid = nla_data(nl);
2263 s->ssid_len = nla_len(nl);
2264 wpa_printf(MSG_DEBUG, "nl80211: Scan probed for SSID '%s'",
2265 wpa_ssid_txt(s->ssid, s->ssid_len));
2267 if (info->num_ssids == WPAS_MAX_SCAN_SSIDS)
2271 if (tb[NL80211_ATTR_SCAN_FREQUENCIES]) {
2272 char msg[200], *pos, *end;
2276 end = pos + sizeof(msg);
2279 nla_for_each_nested(nl, tb[NL80211_ATTR_SCAN_FREQUENCIES], rem)
2281 freqs[num_freqs] = nla_get_u32(nl);
2282 res = os_snprintf(pos, end - pos, " %d",
2284 if (res > 0 && end - pos > res)
2287 if (num_freqs == MAX_REPORT_FREQS - 1)
2290 info->freqs = freqs;
2291 info->num_freqs = num_freqs;
2292 wpa_printf(MSG_DEBUG, "nl80211: Scan included frequencies:%s",
2295 wpa_supplicant_event(drv->ctx, EVENT_SCAN_RESULTS, &event);
2299 static int get_link_signal(struct nl_msg *msg, void *arg)
2301 struct nlattr *tb[NL80211_ATTR_MAX + 1];
2302 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
2303 struct nlattr *sinfo[NL80211_STA_INFO_MAX + 1];
2304 static struct nla_policy policy[NL80211_STA_INFO_MAX + 1] = {
2305 [NL80211_STA_INFO_SIGNAL] = { .type = NLA_U8 },
2306 [NL80211_STA_INFO_SIGNAL_AVG] = { .type = NLA_U8 },
2308 struct nlattr *rinfo[NL80211_RATE_INFO_MAX + 1];
2309 static struct nla_policy rate_policy[NL80211_RATE_INFO_MAX + 1] = {
2310 [NL80211_RATE_INFO_BITRATE] = { .type = NLA_U16 },
2311 [NL80211_RATE_INFO_MCS] = { .type = NLA_U8 },
2312 [NL80211_RATE_INFO_40_MHZ_WIDTH] = { .type = NLA_FLAG },
2313 [NL80211_RATE_INFO_SHORT_GI] = { .type = NLA_FLAG },
2315 struct wpa_signal_info *sig_change = arg;
2317 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
2318 genlmsg_attrlen(gnlh, 0), NULL);
2319 if (!tb[NL80211_ATTR_STA_INFO] ||
2320 nla_parse_nested(sinfo, NL80211_STA_INFO_MAX,
2321 tb[NL80211_ATTR_STA_INFO], policy))
2323 if (!sinfo[NL80211_STA_INFO_SIGNAL])
2326 sig_change->current_signal =
2327 (s8) nla_get_u8(sinfo[NL80211_STA_INFO_SIGNAL]);
2329 if (sinfo[NL80211_STA_INFO_SIGNAL_AVG])
2330 sig_change->avg_signal =
2331 (s8) nla_get_u8(sinfo[NL80211_STA_INFO_SIGNAL_AVG]);
2333 sig_change->avg_signal = 0;
2335 if (sinfo[NL80211_STA_INFO_TX_BITRATE]) {
2336 if (nla_parse_nested(rinfo, NL80211_RATE_INFO_MAX,
2337 sinfo[NL80211_STA_INFO_TX_BITRATE],
2339 sig_change->current_txrate = 0;
2341 if (rinfo[NL80211_RATE_INFO_BITRATE]) {
2342 sig_change->current_txrate =
2344 NL80211_RATE_INFO_BITRATE]) * 100;
2353 static int nl80211_get_link_signal(struct wpa_driver_nl80211_data *drv,
2354 struct wpa_signal_info *sig)
2358 sig->current_signal = -9999;
2359 sig->current_txrate = 0;
2361 msg = nlmsg_alloc();
2365 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_STATION);
2367 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
2368 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, drv->bssid);
2370 return send_and_recv_msgs(drv, msg, get_link_signal, sig);
2377 static int get_link_noise(struct nl_msg *msg, void *arg)
2379 struct nlattr *tb[NL80211_ATTR_MAX + 1];
2380 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
2381 struct nlattr *sinfo[NL80211_SURVEY_INFO_MAX + 1];
2382 static struct nla_policy survey_policy[NL80211_SURVEY_INFO_MAX + 1] = {
2383 [NL80211_SURVEY_INFO_FREQUENCY] = { .type = NLA_U32 },
2384 [NL80211_SURVEY_INFO_NOISE] = { .type = NLA_U8 },
2386 struct wpa_signal_info *sig_change = arg;
2388 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
2389 genlmsg_attrlen(gnlh, 0), NULL);
2391 if (!tb[NL80211_ATTR_SURVEY_INFO]) {
2392 wpa_printf(MSG_DEBUG, "nl80211: survey data missing!");
2396 if (nla_parse_nested(sinfo, NL80211_SURVEY_INFO_MAX,
2397 tb[NL80211_ATTR_SURVEY_INFO],
2399 wpa_printf(MSG_DEBUG, "nl80211: failed to parse nested "
2404 if (!sinfo[NL80211_SURVEY_INFO_FREQUENCY])
2407 if (nla_get_u32(sinfo[NL80211_SURVEY_INFO_FREQUENCY]) !=
2408 sig_change->frequency)
2411 if (!sinfo[NL80211_SURVEY_INFO_NOISE])
2414 sig_change->current_noise =
2415 (s8) nla_get_u8(sinfo[NL80211_SURVEY_INFO_NOISE]);
2421 static int nl80211_get_link_noise(struct wpa_driver_nl80211_data *drv,
2422 struct wpa_signal_info *sig_change)
2426 sig_change->current_noise = 9999;
2427 sig_change->frequency = drv->assoc_freq;
2429 msg = nlmsg_alloc();
2433 nl80211_cmd(drv, msg, NLM_F_DUMP, NL80211_CMD_GET_SURVEY);
2435 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
2437 return send_and_recv_msgs(drv, msg, get_link_noise, sig_change);
2444 static int get_noise_for_scan_results(struct nl_msg *msg, void *arg)
2446 struct nlattr *tb[NL80211_ATTR_MAX + 1];
2447 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
2448 struct nlattr *sinfo[NL80211_SURVEY_INFO_MAX + 1];
2449 static struct nla_policy survey_policy[NL80211_SURVEY_INFO_MAX + 1] = {
2450 [NL80211_SURVEY_INFO_FREQUENCY] = { .type = NLA_U32 },
2451 [NL80211_SURVEY_INFO_NOISE] = { .type = NLA_U8 },
2453 struct wpa_scan_results *scan_results = arg;
2454 struct wpa_scan_res *scan_res;
2457 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
2458 genlmsg_attrlen(gnlh, 0), NULL);
2460 if (!tb[NL80211_ATTR_SURVEY_INFO]) {
2461 wpa_printf(MSG_DEBUG, "nl80211: Survey data missing");
2465 if (nla_parse_nested(sinfo, NL80211_SURVEY_INFO_MAX,
2466 tb[NL80211_ATTR_SURVEY_INFO],
2468 wpa_printf(MSG_DEBUG, "nl80211: Failed to parse nested "
2473 if (!sinfo[NL80211_SURVEY_INFO_NOISE])
2476 if (!sinfo[NL80211_SURVEY_INFO_FREQUENCY])
2479 for (i = 0; i < scan_results->num; ++i) {
2480 scan_res = scan_results->res[i];
2483 if ((int) nla_get_u32(sinfo[NL80211_SURVEY_INFO_FREQUENCY]) !=
2486 if (!(scan_res->flags & WPA_SCAN_NOISE_INVALID))
2488 scan_res->noise = (s8)
2489 nla_get_u8(sinfo[NL80211_SURVEY_INFO_NOISE]);
2490 scan_res->flags &= ~WPA_SCAN_NOISE_INVALID;
2497 static int nl80211_get_noise_for_scan_results(
2498 struct wpa_driver_nl80211_data *drv,
2499 struct wpa_scan_results *scan_res)
2503 msg = nlmsg_alloc();
2507 nl80211_cmd(drv, msg, NLM_F_DUMP, NL80211_CMD_GET_SURVEY);
2509 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
2511 return send_and_recv_msgs(drv, msg, get_noise_for_scan_results,
2519 static void nl80211_cqm_event(struct wpa_driver_nl80211_data *drv,
2520 struct nlattr *tb[])
2522 static struct nla_policy cqm_policy[NL80211_ATTR_CQM_MAX + 1] = {
2523 [NL80211_ATTR_CQM_RSSI_THOLD] = { .type = NLA_U32 },
2524 [NL80211_ATTR_CQM_RSSI_HYST] = { .type = NLA_U8 },
2525 [NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] = { .type = NLA_U32 },
2526 [NL80211_ATTR_CQM_PKT_LOSS_EVENT] = { .type = NLA_U32 },
2528 struct nlattr *cqm[NL80211_ATTR_CQM_MAX + 1];
2529 enum nl80211_cqm_rssi_threshold_event event;
2530 union wpa_event_data ed;
2531 struct wpa_signal_info sig;
2534 if (tb[NL80211_ATTR_CQM] == NULL ||
2535 nla_parse_nested(cqm, NL80211_ATTR_CQM_MAX, tb[NL80211_ATTR_CQM],
2537 wpa_printf(MSG_DEBUG, "nl80211: Ignore invalid CQM event");
2541 os_memset(&ed, 0, sizeof(ed));
2543 if (cqm[NL80211_ATTR_CQM_PKT_LOSS_EVENT]) {
2544 if (!tb[NL80211_ATTR_MAC])
2546 os_memcpy(ed.low_ack.addr, nla_data(tb[NL80211_ATTR_MAC]),
2548 wpa_supplicant_event(drv->ctx, EVENT_STATION_LOW_ACK, &ed);
2552 if (cqm[NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT] == NULL)
2554 event = nla_get_u32(cqm[NL80211_ATTR_CQM_RSSI_THRESHOLD_EVENT]);
2556 if (event == NL80211_CQM_RSSI_THRESHOLD_EVENT_HIGH) {
2557 wpa_printf(MSG_DEBUG, "nl80211: Connection quality monitor "
2558 "event: RSSI high");
2559 ed.signal_change.above_threshold = 1;
2560 } else if (event == NL80211_CQM_RSSI_THRESHOLD_EVENT_LOW) {
2561 wpa_printf(MSG_DEBUG, "nl80211: Connection quality monitor "
2563 ed.signal_change.above_threshold = 0;
2567 res = nl80211_get_link_signal(drv, &sig);
2569 ed.signal_change.current_signal = sig.current_signal;
2570 ed.signal_change.current_txrate = sig.current_txrate;
2571 wpa_printf(MSG_DEBUG, "nl80211: Signal: %d dBm txrate: %d",
2572 sig.current_signal, sig.current_txrate);
2575 res = nl80211_get_link_noise(drv, &sig);
2577 ed.signal_change.current_noise = sig.current_noise;
2578 wpa_printf(MSG_DEBUG, "nl80211: Noise: %d dBm",
2582 wpa_supplicant_event(drv->ctx, EVENT_SIGNAL_CHANGE, &ed);
2586 static void nl80211_new_station_event(struct wpa_driver_nl80211_data *drv,
2590 union wpa_event_data data;
2592 if (tb[NL80211_ATTR_MAC] == NULL)
2594 addr = nla_data(tb[NL80211_ATTR_MAC]);
2595 wpa_printf(MSG_DEBUG, "nl80211: New station " MACSTR, MAC2STR(addr));
2597 if (is_ap_interface(drv->nlmode) && drv->device_ap_sme) {
2600 if (tb[NL80211_ATTR_IE]) {
2601 ies = nla_data(tb[NL80211_ATTR_IE]);
2602 ies_len = nla_len(tb[NL80211_ATTR_IE]);
2604 wpa_hexdump(MSG_DEBUG, "nl80211: Assoc Req IEs", ies, ies_len);
2605 drv_event_assoc(drv->ctx, addr, ies, ies_len, 0);
2609 if (drv->nlmode != NL80211_IFTYPE_ADHOC)
2612 os_memset(&data, 0, sizeof(data));
2613 os_memcpy(data.ibss_rsn_start.peer, addr, ETH_ALEN);
2614 wpa_supplicant_event(drv->ctx, EVENT_IBSS_RSN_START, &data);
2618 static void nl80211_del_station_event(struct wpa_driver_nl80211_data *drv,
2622 union wpa_event_data data;
2624 if (tb[NL80211_ATTR_MAC] == NULL)
2626 addr = nla_data(tb[NL80211_ATTR_MAC]);
2627 wpa_printf(MSG_DEBUG, "nl80211: Delete station " MACSTR,
2630 if (is_ap_interface(drv->nlmode) && drv->device_ap_sme) {
2631 drv_event_disassoc(drv->ctx, addr);
2635 if (drv->nlmode != NL80211_IFTYPE_ADHOC)
2638 os_memset(&data, 0, sizeof(data));
2639 os_memcpy(data.ibss_peer_lost.peer, addr, ETH_ALEN);
2640 wpa_supplicant_event(drv->ctx, EVENT_IBSS_PEER_LOST, &data);
2644 static void nl80211_rekey_offload_event(struct wpa_driver_nl80211_data *drv,
2647 struct nlattr *rekey_info[NUM_NL80211_REKEY_DATA];
2648 static struct nla_policy rekey_policy[NUM_NL80211_REKEY_DATA] = {
2649 [NL80211_REKEY_DATA_KEK] = {
2650 .minlen = NL80211_KEK_LEN,
2651 .maxlen = NL80211_KEK_LEN,
2653 [NL80211_REKEY_DATA_KCK] = {
2654 .minlen = NL80211_KCK_LEN,
2655 .maxlen = NL80211_KCK_LEN,
2657 [NL80211_REKEY_DATA_REPLAY_CTR] = {
2658 .minlen = NL80211_REPLAY_CTR_LEN,
2659 .maxlen = NL80211_REPLAY_CTR_LEN,
2662 union wpa_event_data data;
2664 if (!tb[NL80211_ATTR_MAC])
2666 if (!tb[NL80211_ATTR_REKEY_DATA])
2668 if (nla_parse_nested(rekey_info, MAX_NL80211_REKEY_DATA,
2669 tb[NL80211_ATTR_REKEY_DATA], rekey_policy))
2671 if (!rekey_info[NL80211_REKEY_DATA_REPLAY_CTR])
2674 os_memset(&data, 0, sizeof(data));
2675 data.driver_gtk_rekey.bssid = nla_data(tb[NL80211_ATTR_MAC]);
2676 wpa_printf(MSG_DEBUG, "nl80211: Rekey offload event for BSSID " MACSTR,
2677 MAC2STR(data.driver_gtk_rekey.bssid));
2678 data.driver_gtk_rekey.replay_ctr =
2679 nla_data(rekey_info[NL80211_REKEY_DATA_REPLAY_CTR]);
2680 wpa_hexdump(MSG_DEBUG, "nl80211: Rekey offload - Replay Counter",
2681 data.driver_gtk_rekey.replay_ctr, NL80211_REPLAY_CTR_LEN);
2682 wpa_supplicant_event(drv->ctx, EVENT_DRIVER_GTK_REKEY, &data);
2686 static void nl80211_pmksa_candidate_event(struct wpa_driver_nl80211_data *drv,
2689 struct nlattr *cand[NUM_NL80211_PMKSA_CANDIDATE];
2690 static struct nla_policy cand_policy[NUM_NL80211_PMKSA_CANDIDATE] = {
2691 [NL80211_PMKSA_CANDIDATE_INDEX] = { .type = NLA_U32 },
2692 [NL80211_PMKSA_CANDIDATE_BSSID] = {
2696 [NL80211_PMKSA_CANDIDATE_PREAUTH] = { .type = NLA_FLAG },
2698 union wpa_event_data data;
2700 wpa_printf(MSG_DEBUG, "nl80211: PMKSA candidate event");
2702 if (!tb[NL80211_ATTR_PMKSA_CANDIDATE])
2704 if (nla_parse_nested(cand, MAX_NL80211_PMKSA_CANDIDATE,
2705 tb[NL80211_ATTR_PMKSA_CANDIDATE], cand_policy))
2707 if (!cand[NL80211_PMKSA_CANDIDATE_INDEX] ||
2708 !cand[NL80211_PMKSA_CANDIDATE_BSSID])
2711 os_memset(&data, 0, sizeof(data));
2712 os_memcpy(data.pmkid_candidate.bssid,
2713 nla_data(cand[NL80211_PMKSA_CANDIDATE_BSSID]), ETH_ALEN);
2714 data.pmkid_candidate.index =
2715 nla_get_u32(cand[NL80211_PMKSA_CANDIDATE_INDEX]);
2716 data.pmkid_candidate.preauth =
2717 cand[NL80211_PMKSA_CANDIDATE_PREAUTH] != NULL;
2718 wpa_supplicant_event(drv->ctx, EVENT_PMKID_CANDIDATE, &data);
2722 static void nl80211_client_probe_event(struct wpa_driver_nl80211_data *drv,
2725 union wpa_event_data data;
2727 wpa_printf(MSG_DEBUG, "nl80211: Probe client event");
2729 if (!tb[NL80211_ATTR_MAC] || !tb[NL80211_ATTR_ACK])
2732 os_memset(&data, 0, sizeof(data));
2733 os_memcpy(data.client_poll.addr,
2734 nla_data(tb[NL80211_ATTR_MAC]), ETH_ALEN);
2736 wpa_supplicant_event(drv->ctx, EVENT_DRIVER_CLIENT_POLL_OK, &data);
2740 static void nl80211_tdls_oper_event(struct wpa_driver_nl80211_data *drv,
2743 union wpa_event_data data;
2745 wpa_printf(MSG_DEBUG, "nl80211: TDLS operation event");
2747 if (!tb[NL80211_ATTR_MAC] || !tb[NL80211_ATTR_TDLS_OPERATION])
2750 os_memset(&data, 0, sizeof(data));
2751 os_memcpy(data.tdls.peer, nla_data(tb[NL80211_ATTR_MAC]), ETH_ALEN);
2752 switch (nla_get_u8(tb[NL80211_ATTR_TDLS_OPERATION])) {
2753 case NL80211_TDLS_SETUP:
2754 wpa_printf(MSG_DEBUG, "nl80211: TDLS setup request for peer "
2755 MACSTR, MAC2STR(data.tdls.peer));
2756 data.tdls.oper = TDLS_REQUEST_SETUP;
2758 case NL80211_TDLS_TEARDOWN:
2759 wpa_printf(MSG_DEBUG, "nl80211: TDLS teardown request for peer "
2760 MACSTR, MAC2STR(data.tdls.peer));
2761 data.tdls.oper = TDLS_REQUEST_TEARDOWN;
2764 wpa_printf(MSG_DEBUG, "nl80211: Unsupported TDLS operatione "
2768 if (tb[NL80211_ATTR_REASON_CODE]) {
2769 data.tdls.reason_code =
2770 nla_get_u16(tb[NL80211_ATTR_REASON_CODE]);
2773 wpa_supplicant_event(drv->ctx, EVENT_TDLS, &data);
2777 static void nl80211_stop_ap(struct wpa_driver_nl80211_data *drv,
2780 wpa_supplicant_event(drv->ctx, EVENT_INTERFACE_UNAVAILABLE, NULL);
2784 static void nl80211_connect_failed_event(struct wpa_driver_nl80211_data *drv,
2787 union wpa_event_data data;
2790 wpa_printf(MSG_DEBUG, "nl80211: Connect failed event");
2792 if (!tb[NL80211_ATTR_MAC] || !tb[NL80211_ATTR_CONN_FAILED_REASON])
2795 os_memset(&data, 0, sizeof(data));
2796 os_memcpy(data.connect_failed_reason.addr,
2797 nla_data(tb[NL80211_ATTR_MAC]), ETH_ALEN);
2799 reason = nla_get_u32(tb[NL80211_ATTR_CONN_FAILED_REASON]);
2801 case NL80211_CONN_FAIL_MAX_CLIENTS:
2802 wpa_printf(MSG_DEBUG, "nl80211: Max client reached");
2803 data.connect_failed_reason.code = MAX_CLIENT_REACHED;
2805 case NL80211_CONN_FAIL_BLOCKED_CLIENT:
2806 wpa_printf(MSG_DEBUG, "nl80211: Blocked client " MACSTR
2807 " tried to connect",
2808 MAC2STR(data.connect_failed_reason.addr));
2809 data.connect_failed_reason.code = BLOCKED_CLIENT;
2812 wpa_printf(MSG_DEBUG, "nl8021l: Unknown connect failed reason "
2817 wpa_supplicant_event(drv->ctx, EVENT_CONNECT_FAILED_REASON, &data);
2821 static void nl80211_radar_event(struct wpa_driver_nl80211_data *drv,
2824 union wpa_event_data data;
2825 enum nl80211_radar_event event_type;
2827 if (!tb[NL80211_ATTR_WIPHY_FREQ] || !tb[NL80211_ATTR_RADAR_EVENT])
2830 os_memset(&data, 0, sizeof(data));
2831 data.dfs_event.freq = nla_get_u32(tb[NL80211_ATTR_WIPHY_FREQ]);
2832 event_type = nla_get_u32(tb[NL80211_ATTR_RADAR_EVENT]);
2834 /* Check HT params */
2835 if (tb[NL80211_ATTR_WIPHY_CHANNEL_TYPE]) {
2836 data.dfs_event.ht_enabled = 1;
2837 data.dfs_event.chan_offset = 0;
2839 switch (nla_get_u32(tb[NL80211_ATTR_WIPHY_CHANNEL_TYPE])) {
2840 case NL80211_CHAN_NO_HT:
2841 data.dfs_event.ht_enabled = 0;
2843 case NL80211_CHAN_HT20:
2845 case NL80211_CHAN_HT40PLUS:
2846 data.dfs_event.chan_offset = 1;
2848 case NL80211_CHAN_HT40MINUS:
2849 data.dfs_event.chan_offset = -1;
2854 /* Get VHT params */
2855 if (tb[NL80211_ATTR_CHANNEL_WIDTH])
2856 data.dfs_event.chan_width =
2857 convert2width(nla_get_u32(
2858 tb[NL80211_ATTR_CHANNEL_WIDTH]));
2859 if (tb[NL80211_ATTR_CENTER_FREQ1])
2860 data.dfs_event.cf1 = nla_get_u32(tb[NL80211_ATTR_CENTER_FREQ1]);
2861 if (tb[NL80211_ATTR_CENTER_FREQ2])
2862 data.dfs_event.cf2 = nla_get_u32(tb[NL80211_ATTR_CENTER_FREQ2]);
2864 wpa_printf(MSG_DEBUG, "nl80211: DFS event on freq %d MHz, ht: %d, offset: %d, width: %d, cf1: %dMHz, cf2: %dMHz",
2865 data.dfs_event.freq, data.dfs_event.ht_enabled,
2866 data.dfs_event.chan_offset, data.dfs_event.chan_width,
2867 data.dfs_event.cf1, data.dfs_event.cf2);
2869 switch (event_type) {
2870 case NL80211_RADAR_DETECTED:
2871 wpa_supplicant_event(drv->ctx, EVENT_DFS_RADAR_DETECTED, &data);
2873 case NL80211_RADAR_CAC_FINISHED:
2874 wpa_supplicant_event(drv->ctx, EVENT_DFS_CAC_FINISHED, &data);
2876 case NL80211_RADAR_CAC_ABORTED:
2877 wpa_supplicant_event(drv->ctx, EVENT_DFS_CAC_ABORTED, &data);
2879 case NL80211_RADAR_NOP_FINISHED:
2880 wpa_supplicant_event(drv->ctx, EVENT_DFS_NOP_FINISHED, &data);
2883 wpa_printf(MSG_DEBUG, "nl80211: Unknown radar event %d "
2884 "received", event_type);
2890 static void nl80211_spurious_frame(struct i802_bss *bss, struct nlattr **tb,
2893 struct wpa_driver_nl80211_data *drv = bss->drv;
2894 union wpa_event_data event;
2896 if (!tb[NL80211_ATTR_MAC])
2899 os_memset(&event, 0, sizeof(event));
2900 event.rx_from_unknown.bssid = bss->addr;
2901 event.rx_from_unknown.addr = nla_data(tb[NL80211_ATTR_MAC]);
2902 event.rx_from_unknown.wds = wds;
2904 wpa_supplicant_event(drv->ctx, EVENT_RX_FROM_UNKNOWN, &event);
2908 static void qca_nl80211_avoid_freq(struct wpa_driver_nl80211_data *drv,
2909 const u8 *data, size_t len)
2912 union wpa_event_data event;
2913 struct wpa_freq_range *range = NULL;
2914 const struct qca_avoid_freq_list *freq_range;
2916 freq_range = (const struct qca_avoid_freq_list *) data;
2917 if (len < sizeof(freq_range->count))
2920 count = freq_range->count;
2921 if (len < sizeof(freq_range->count) +
2922 count * sizeof(struct qca_avoid_freq_range)) {
2923 wpa_printf(MSG_DEBUG, "nl80211: Ignored too short avoid frequency list (len=%u)",
2924 (unsigned int) len);
2929 range = os_calloc(count, sizeof(struct wpa_freq_range));
2934 os_memset(&event, 0, sizeof(event));
2935 for (i = 0; i < count; i++) {
2936 unsigned int idx = event.freq_range.num;
2937 range[idx].min = freq_range->range[i].start_freq;
2938 range[idx].max = freq_range->range[i].end_freq;
2939 wpa_printf(MSG_DEBUG, "nl80211: Avoid frequency range: %u-%u",
2940 range[idx].min, range[idx].max);
2941 if (range[idx].min > range[idx].max) {
2942 wpa_printf(MSG_DEBUG, "nl80211: Ignore invalid frequency range");
2945 event.freq_range.num++;
2947 event.freq_range.range = range;
2949 wpa_supplicant_event(drv->ctx, EVENT_AVOID_FREQUENCIES, &event);
2955 static void nl80211_vendor_event_qca(struct wpa_driver_nl80211_data *drv,
2956 u32 subcmd, u8 *data, size_t len)
2959 case QCA_NL80211_VENDOR_SUBCMD_AVOID_FREQUENCY:
2960 qca_nl80211_avoid_freq(drv, data, len);
2963 wpa_printf(MSG_DEBUG,
2964 "nl80211: Ignore unsupported QCA vendor event %u",
2971 static void nl80211_vendor_event(struct wpa_driver_nl80211_data *drv,
2974 u32 vendor_id, subcmd, wiphy = 0;
2979 if (!tb[NL80211_ATTR_VENDOR_ID] ||
2980 !tb[NL80211_ATTR_VENDOR_SUBCMD])
2983 vendor_id = nla_get_u32(tb[NL80211_ATTR_VENDOR_ID]);
2984 subcmd = nla_get_u32(tb[NL80211_ATTR_VENDOR_SUBCMD]);
2986 if (tb[NL80211_ATTR_WIPHY])
2987 wiphy = nla_get_u32(tb[NL80211_ATTR_WIPHY]);
2989 wpa_printf(MSG_DEBUG, "nl80211: Vendor event: wiphy=%u vendor_id=0x%x subcmd=%u",
2990 wiphy, vendor_id, subcmd);
2992 if (tb[NL80211_ATTR_VENDOR_DATA]) {
2993 data = nla_data(tb[NL80211_ATTR_VENDOR_DATA]);
2994 len = nla_len(tb[NL80211_ATTR_VENDOR_DATA]);
2995 wpa_hexdump(MSG_MSGDUMP, "nl80211: Vendor data", data, len);
2998 wiphy_idx = nl80211_get_wiphy_index(drv->first_bss);
2999 if (wiphy_idx >= 0 && wiphy_idx != (int) wiphy) {
3000 wpa_printf(MSG_DEBUG, "nl80211: Ignore vendor event for foreign wiphy %u (own: %d)",
3005 switch (vendor_id) {
3007 nl80211_vendor_event_qca(drv, subcmd, data, len);
3010 wpa_printf(MSG_DEBUG, "nl80211: Ignore unsupported vendor event");
3016 static void nl80211_reg_change_event(struct wpa_driver_nl80211_data *drv,
3017 struct nlattr *tb[])
3019 union wpa_event_data data;
3020 enum nl80211_reg_initiator init;
3022 wpa_printf(MSG_DEBUG, "nl80211: Regulatory domain change");
3024 if (tb[NL80211_ATTR_REG_INITIATOR] == NULL)
3027 os_memset(&data, 0, sizeof(data));
3028 init = nla_get_u8(tb[NL80211_ATTR_REG_INITIATOR]);
3029 wpa_printf(MSG_DEBUG, " * initiator=%d", init);
3031 case NL80211_REGDOM_SET_BY_CORE:
3032 data.channel_list_changed.initiator = REGDOM_SET_BY_CORE;
3034 case NL80211_REGDOM_SET_BY_USER:
3035 data.channel_list_changed.initiator = REGDOM_SET_BY_USER;
3037 case NL80211_REGDOM_SET_BY_DRIVER:
3038 data.channel_list_changed.initiator = REGDOM_SET_BY_DRIVER;
3040 case NL80211_REGDOM_SET_BY_COUNTRY_IE:
3041 data.channel_list_changed.initiator = REGDOM_SET_BY_COUNTRY_IE;
3045 if (tb[NL80211_ATTR_REG_TYPE]) {
3046 enum nl80211_reg_type type;
3047 type = nla_get_u8(tb[NL80211_ATTR_REG_TYPE]);
3048 wpa_printf(MSG_DEBUG, " * type=%d", type);
3050 case NL80211_REGDOM_TYPE_COUNTRY:
3051 data.channel_list_changed.type = REGDOM_TYPE_COUNTRY;
3053 case NL80211_REGDOM_TYPE_WORLD:
3054 data.channel_list_changed.type = REGDOM_TYPE_WORLD;
3056 case NL80211_REGDOM_TYPE_CUSTOM_WORLD:
3057 data.channel_list_changed.type =
3058 REGDOM_TYPE_CUSTOM_WORLD;
3060 case NL80211_REGDOM_TYPE_INTERSECTION:
3061 data.channel_list_changed.type =
3062 REGDOM_TYPE_INTERSECTION;
3067 if (tb[NL80211_ATTR_REG_ALPHA2]) {
3068 os_strlcpy(data.channel_list_changed.alpha2,
3069 nla_get_string(tb[NL80211_ATTR_REG_ALPHA2]),
3070 sizeof(data.channel_list_changed.alpha2));
3071 wpa_printf(MSG_DEBUG, " * alpha2=%s",
3072 data.channel_list_changed.alpha2);
3075 wpa_supplicant_event(drv->ctx, EVENT_CHANNEL_LIST_CHANGED, &data);
3079 static void do_process_drv_event(struct i802_bss *bss, int cmd,
3082 struct wpa_driver_nl80211_data *drv = bss->drv;
3083 union wpa_event_data data;
3085 wpa_printf(MSG_DEBUG, "nl80211: Drv Event %d (%s) received for %s",
3086 cmd, nl80211_command_to_string(cmd), bss->ifname);
3088 if (drv->ap_scan_as_station != NL80211_IFTYPE_UNSPECIFIED &&
3089 (cmd == NL80211_CMD_NEW_SCAN_RESULTS ||
3090 cmd == NL80211_CMD_SCAN_ABORTED)) {
3091 wpa_driver_nl80211_set_mode(drv->first_bss,
3092 drv->ap_scan_as_station);
3093 drv->ap_scan_as_station = NL80211_IFTYPE_UNSPECIFIED;
3097 case NL80211_CMD_TRIGGER_SCAN:
3098 wpa_dbg(drv->ctx, MSG_DEBUG, "nl80211: Scan trigger");
3099 drv->scan_state = SCAN_STARTED;
3100 if (drv->scan_for_auth) {
3102 * Cannot indicate EVENT_SCAN_STARTED here since we skip
3103 * EVENT_SCAN_RESULTS in scan_for_auth case and the
3104 * upper layer implementation could get confused about
3107 wpa_printf(MSG_DEBUG, "nl80211: Do not indicate scan-start event due to internal scan_for_auth");
3110 wpa_supplicant_event(drv->ctx, EVENT_SCAN_STARTED, NULL);
3112 case NL80211_CMD_START_SCHED_SCAN:
3113 wpa_dbg(drv->ctx, MSG_DEBUG, "nl80211: Sched scan started");
3114 drv->scan_state = SCHED_SCAN_STARTED;
3116 case NL80211_CMD_SCHED_SCAN_STOPPED:
3117 wpa_dbg(drv->ctx, MSG_DEBUG, "nl80211: Sched scan stopped");
3118 drv->scan_state = SCHED_SCAN_STOPPED;
3119 wpa_supplicant_event(drv->ctx, EVENT_SCHED_SCAN_STOPPED, NULL);
3121 case NL80211_CMD_NEW_SCAN_RESULTS:
3122 wpa_dbg(drv->ctx, MSG_DEBUG,
3123 "nl80211: New scan results available");
3124 drv->scan_state = SCAN_COMPLETED;
3125 drv->scan_complete_events = 1;
3126 eloop_cancel_timeout(wpa_driver_nl80211_scan_timeout, drv,
3128 send_scan_event(drv, 0, tb);
3130 case NL80211_CMD_SCHED_SCAN_RESULTS:
3131 wpa_dbg(drv->ctx, MSG_DEBUG,
3132 "nl80211: New sched scan results available");
3133 drv->scan_state = SCHED_SCAN_RESULTS;
3134 send_scan_event(drv, 0, tb);
3136 case NL80211_CMD_SCAN_ABORTED:
3137 wpa_dbg(drv->ctx, MSG_DEBUG, "nl80211: Scan aborted");
3138 drv->scan_state = SCAN_ABORTED;
3140 * Need to indicate that scan results are available in order
3141 * not to make wpa_supplicant stop its scanning.
3143 eloop_cancel_timeout(wpa_driver_nl80211_scan_timeout, drv,
3145 send_scan_event(drv, 1, tb);
3147 case NL80211_CMD_AUTHENTICATE:
3148 case NL80211_CMD_ASSOCIATE:
3149 case NL80211_CMD_DEAUTHENTICATE:
3150 case NL80211_CMD_DISASSOCIATE:
3151 case NL80211_CMD_FRAME_TX_STATUS:
3152 case NL80211_CMD_UNPROT_DEAUTHENTICATE:
3153 case NL80211_CMD_UNPROT_DISASSOCIATE:
3154 mlme_event(bss, cmd, tb[NL80211_ATTR_FRAME],
3155 tb[NL80211_ATTR_MAC], tb[NL80211_ATTR_TIMED_OUT],
3156 tb[NL80211_ATTR_WIPHY_FREQ], tb[NL80211_ATTR_ACK],
3157 tb[NL80211_ATTR_COOKIE],
3158 tb[NL80211_ATTR_RX_SIGNAL_DBM]);
3160 case NL80211_CMD_CONNECT:
3161 case NL80211_CMD_ROAM:
3162 mlme_event_connect(drv, cmd,
3163 tb[NL80211_ATTR_STATUS_CODE],
3164 tb[NL80211_ATTR_MAC],
3165 tb[NL80211_ATTR_REQ_IE],
3166 tb[NL80211_ATTR_RESP_IE]);
3168 case NL80211_CMD_CH_SWITCH_NOTIFY:
3169 mlme_event_ch_switch(drv,
3170 tb[NL80211_ATTR_IFINDEX],
3171 tb[NL80211_ATTR_WIPHY_FREQ],
3172 tb[NL80211_ATTR_WIPHY_CHANNEL_TYPE],
3173 tb[NL80211_ATTR_CHANNEL_WIDTH],
3174 tb[NL80211_ATTR_CENTER_FREQ1],
3175 tb[NL80211_ATTR_CENTER_FREQ2]);
3177 case NL80211_CMD_DISCONNECT:
3178 mlme_event_disconnect(drv, tb[NL80211_ATTR_REASON_CODE],
3179 tb[NL80211_ATTR_MAC],
3180 tb[NL80211_ATTR_DISCONNECTED_BY_AP]);
3182 case NL80211_CMD_MICHAEL_MIC_FAILURE:
3183 mlme_event_michael_mic_failure(bss, tb);
3185 case NL80211_CMD_JOIN_IBSS:
3186 mlme_event_join_ibss(drv, tb);
3188 case NL80211_CMD_REMAIN_ON_CHANNEL:
3189 mlme_event_remain_on_channel(drv, 0, tb);
3191 case NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL:
3192 mlme_event_remain_on_channel(drv, 1, tb);
3194 case NL80211_CMD_NOTIFY_CQM:
3195 nl80211_cqm_event(drv, tb);
3197 case NL80211_CMD_REG_CHANGE:
3198 nl80211_reg_change_event(drv, tb);
3200 case NL80211_CMD_REG_BEACON_HINT:
3201 wpa_printf(MSG_DEBUG, "nl80211: Regulatory beacon hint");
3202 os_memset(&data, 0, sizeof(data));
3203 data.channel_list_changed.initiator = REGDOM_BEACON_HINT;
3204 wpa_supplicant_event(drv->ctx, EVENT_CHANNEL_LIST_CHANGED,
3207 case NL80211_CMD_NEW_STATION:
3208 nl80211_new_station_event(drv, tb);
3210 case NL80211_CMD_DEL_STATION:
3211 nl80211_del_station_event(drv, tb);
3213 case NL80211_CMD_SET_REKEY_OFFLOAD:
3214 nl80211_rekey_offload_event(drv, tb);
3216 case NL80211_CMD_PMKSA_CANDIDATE:
3217 nl80211_pmksa_candidate_event(drv, tb);
3219 case NL80211_CMD_PROBE_CLIENT:
3220 nl80211_client_probe_event(drv, tb);
3222 case NL80211_CMD_TDLS_OPER:
3223 nl80211_tdls_oper_event(drv, tb);
3225 case NL80211_CMD_CONN_FAILED:
3226 nl80211_connect_failed_event(drv, tb);
3228 case NL80211_CMD_FT_EVENT:
3229 mlme_event_ft_event(drv, tb);
3231 case NL80211_CMD_RADAR_DETECT:
3232 nl80211_radar_event(drv, tb);
3234 case NL80211_CMD_STOP_AP:
3235 nl80211_stop_ap(drv, tb);
3237 case NL80211_CMD_VENDOR:
3238 nl80211_vendor_event(drv, tb);
3241 wpa_dbg(drv->ctx, MSG_DEBUG, "nl80211: Ignored unknown event "
3248 static int process_drv_event(struct nl_msg *msg, void *arg)
3250 struct wpa_driver_nl80211_data *drv = arg;
3251 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
3252 struct nlattr *tb[NL80211_ATTR_MAX + 1];
3253 struct i802_bss *bss;
3256 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
3257 genlmsg_attrlen(gnlh, 0), NULL);
3259 if (tb[NL80211_ATTR_IFINDEX]) {
3260 ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
3262 for (bss = drv->first_bss; bss; bss = bss->next)
3263 if (ifidx == -1 || ifidx == bss->ifindex) {
3264 do_process_drv_event(bss, gnlh->cmd, tb);
3267 wpa_printf(MSG_DEBUG,
3268 "nl80211: Ignored event (cmd=%d) for foreign interface (ifindex %d)",
3270 } else if (tb[NL80211_ATTR_WDEV]) {
3271 u64 wdev_id = nla_get_u64(tb[NL80211_ATTR_WDEV]);
3272 wpa_printf(MSG_DEBUG, "nl80211: Process event on P2P device");
3273 for (bss = drv->first_bss; bss; bss = bss->next) {
3274 if (bss->wdev_id_set && wdev_id == bss->wdev_id) {
3275 do_process_drv_event(bss, gnlh->cmd, tb);
3279 wpa_printf(MSG_DEBUG,
3280 "nl80211: Ignored event (cmd=%d) for foreign interface (wdev 0x%llx)",
3281 gnlh->cmd, (long long unsigned int) wdev_id);
3288 static int process_global_event(struct nl_msg *msg, void *arg)
3290 struct nl80211_global *global = arg;
3291 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
3292 struct nlattr *tb[NL80211_ATTR_MAX + 1];
3293 struct wpa_driver_nl80211_data *drv, *tmp;
3295 struct i802_bss *bss;
3297 int wdev_id_set = 0;
3299 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
3300 genlmsg_attrlen(gnlh, 0), NULL);
3302 if (tb[NL80211_ATTR_IFINDEX])
3303 ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
3304 else if (tb[NL80211_ATTR_WDEV]) {
3305 wdev_id = nla_get_u64(tb[NL80211_ATTR_WDEV]);
3309 dl_list_for_each_safe(drv, tmp, &global->interfaces,
3310 struct wpa_driver_nl80211_data, list) {
3311 for (bss = drv->first_bss; bss; bss = bss->next) {
3312 if ((ifidx == -1 && !wdev_id_set) ||
3313 ifidx == bss->ifindex ||
3314 (wdev_id_set && bss->wdev_id_set &&
3315 wdev_id == bss->wdev_id)) {
3316 do_process_drv_event(bss, gnlh->cmd, tb);
3326 static int process_bss_event(struct nl_msg *msg, void *arg)
3328 struct i802_bss *bss = arg;
3329 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
3330 struct nlattr *tb[NL80211_ATTR_MAX + 1];
3332 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
3333 genlmsg_attrlen(gnlh, 0), NULL);
3335 wpa_printf(MSG_DEBUG, "nl80211: BSS Event %d (%s) received for %s",
3336 gnlh->cmd, nl80211_command_to_string(gnlh->cmd),
3339 switch (gnlh->cmd) {
3340 case NL80211_CMD_FRAME:
3341 case NL80211_CMD_FRAME_TX_STATUS:
3342 mlme_event(bss, gnlh->cmd, tb[NL80211_ATTR_FRAME],
3343 tb[NL80211_ATTR_MAC], tb[NL80211_ATTR_TIMED_OUT],
3344 tb[NL80211_ATTR_WIPHY_FREQ], tb[NL80211_ATTR_ACK],
3345 tb[NL80211_ATTR_COOKIE],
3346 tb[NL80211_ATTR_RX_SIGNAL_DBM]);
3348 case NL80211_CMD_UNEXPECTED_FRAME:
3349 nl80211_spurious_frame(bss, tb, 0);
3351 case NL80211_CMD_UNEXPECTED_4ADDR_FRAME:
3352 nl80211_spurious_frame(bss, tb, 1);
3355 wpa_printf(MSG_DEBUG, "nl80211: Ignored unknown event "
3356 "(cmd=%d)", gnlh->cmd);
3364 static void wpa_driver_nl80211_event_receive(int sock, void *eloop_ctx,
3367 struct nl_cb *cb = eloop_ctx;
3370 wpa_printf(MSG_MSGDUMP, "nl80211: Event message available");
3372 res = nl_recvmsgs(handle, cb);
3374 wpa_printf(MSG_INFO, "nl80211: %s->nl_recvmsgs failed: %d",
3381 * wpa_driver_nl80211_set_country - ask nl80211 to set the regulatory domain
3382 * @priv: driver_nl80211 private data
3383 * @alpha2_arg: country to which to switch to
3384 * Returns: 0 on success, -1 on failure
3386 * This asks nl80211 to set the regulatory domain for given
3387 * country ISO / IEC alpha2.
3389 static int wpa_driver_nl80211_set_country(void *priv, const char *alpha2_arg)
3391 struct i802_bss *bss = priv;
3392 struct wpa_driver_nl80211_data *drv = bss->drv;
3396 msg = nlmsg_alloc();
3400 alpha2[0] = alpha2_arg[0];
3401 alpha2[1] = alpha2_arg[1];
3404 nl80211_cmd(drv, msg, 0, NL80211_CMD_REQ_SET_REG);
3406 NLA_PUT_STRING(msg, NL80211_ATTR_REG_ALPHA2, alpha2);
3407 if (send_and_recv_msgs(drv, msg, NULL, NULL))
3416 static int nl80211_get_country(struct nl_msg *msg, void *arg)
3419 struct nlattr *tb_msg[NL80211_ATTR_MAX + 1];
3420 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
3422 nla_parse(tb_msg, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
3423 genlmsg_attrlen(gnlh, 0), NULL);
3424 if (!tb_msg[NL80211_ATTR_REG_ALPHA2]) {
3425 wpa_printf(MSG_DEBUG, "nl80211: No country information available");
3428 os_strlcpy(alpha2, nla_data(tb_msg[NL80211_ATTR_REG_ALPHA2]), 3);
3433 static int wpa_driver_nl80211_get_country(void *priv, char *alpha2)
3435 struct i802_bss *bss = priv;
3436 struct wpa_driver_nl80211_data *drv = bss->drv;
3440 msg = nlmsg_alloc();
3444 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_REG);
3446 ret = send_and_recv_msgs(drv, msg, nl80211_get_country, alpha2);
3454 static int protocol_feature_handler(struct nl_msg *msg, void *arg)
3457 struct nlattr *tb_msg[NL80211_ATTR_MAX + 1];
3458 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
3460 nla_parse(tb_msg, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
3461 genlmsg_attrlen(gnlh, 0), NULL);
3463 if (tb_msg[NL80211_ATTR_PROTOCOL_FEATURES])
3464 *feat = nla_get_u32(tb_msg[NL80211_ATTR_PROTOCOL_FEATURES]);
3470 static u32 get_nl80211_protocol_features(struct wpa_driver_nl80211_data *drv)
3475 msg = nlmsg_alloc();
3477 goto nla_put_failure;
3479 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_PROTOCOL_FEATURES);
3480 if (send_and_recv_msgs(drv, msg, protocol_feature_handler, &feat) == 0)
3490 struct wiphy_info_data {
3491 struct wpa_driver_nl80211_data *drv;
3492 struct wpa_driver_capa *capa;
3494 unsigned int num_multichan_concurrent;
3496 unsigned int error:1;
3497 unsigned int device_ap_sme:1;
3498 unsigned int poll_command_supported:1;
3499 unsigned int data_tx_status:1;
3500 unsigned int monitor_supported:1;
3501 unsigned int auth_supported:1;
3502 unsigned int connect_supported:1;
3503 unsigned int p2p_go_supported:1;
3504 unsigned int p2p_client_supported:1;
3505 unsigned int p2p_concurrent:1;
3506 unsigned int channel_switch_supported:1;
3507 unsigned int set_qos_map_supported:1;
3508 unsigned int have_low_prio_scan:1;
3512 static unsigned int probe_resp_offload_support(int supp_protocols)
3514 unsigned int prot = 0;
3516 if (supp_protocols & NL80211_PROBE_RESP_OFFLOAD_SUPPORT_WPS)
3517 prot |= WPA_DRIVER_PROBE_RESP_OFFLOAD_WPS;
3518 if (supp_protocols & NL80211_PROBE_RESP_OFFLOAD_SUPPORT_WPS2)
3519 prot |= WPA_DRIVER_PROBE_RESP_OFFLOAD_WPS2;
3520 if (supp_protocols & NL80211_PROBE_RESP_OFFLOAD_SUPPORT_P2P)
3521 prot |= WPA_DRIVER_PROBE_RESP_OFFLOAD_P2P;
3522 if (supp_protocols & NL80211_PROBE_RESP_OFFLOAD_SUPPORT_80211U)
3523 prot |= WPA_DRIVER_PROBE_RESP_OFFLOAD_INTERWORKING;
3529 static void wiphy_info_supported_iftypes(struct wiphy_info_data *info,
3532 struct nlattr *nl_mode;
3538 nla_for_each_nested(nl_mode, tb, i) {
3539 switch (nla_type(nl_mode)) {
3540 case NL80211_IFTYPE_AP:
3541 info->capa->flags |= WPA_DRIVER_FLAGS_AP;
3543 case NL80211_IFTYPE_ADHOC:
3544 info->capa->flags |= WPA_DRIVER_FLAGS_IBSS;
3546 case NL80211_IFTYPE_P2P_DEVICE:
3547 info->capa->flags |=
3548 WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE;
3550 case NL80211_IFTYPE_P2P_GO:
3551 info->p2p_go_supported = 1;
3553 case NL80211_IFTYPE_P2P_CLIENT:
3554 info->p2p_client_supported = 1;
3556 case NL80211_IFTYPE_MONITOR:
3557 info->monitor_supported = 1;
3564 static int wiphy_info_iface_comb_process(struct wiphy_info_data *info,
3565 struct nlattr *nl_combi)
3567 struct nlattr *tb_comb[NUM_NL80211_IFACE_COMB];
3568 struct nlattr *tb_limit[NUM_NL80211_IFACE_LIMIT];
3569 struct nlattr *nl_limit, *nl_mode;
3570 int err, rem_limit, rem_mode;
3571 int combination_has_p2p = 0, combination_has_mgd = 0;
3572 static struct nla_policy
3573 iface_combination_policy[NUM_NL80211_IFACE_COMB] = {
3574 [NL80211_IFACE_COMB_LIMITS] = { .type = NLA_NESTED },
3575 [NL80211_IFACE_COMB_MAXNUM] = { .type = NLA_U32 },
3576 [NL80211_IFACE_COMB_STA_AP_BI_MATCH] = { .type = NLA_FLAG },
3577 [NL80211_IFACE_COMB_NUM_CHANNELS] = { .type = NLA_U32 },
3578 [NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS] = { .type = NLA_U32 },
3580 iface_limit_policy[NUM_NL80211_IFACE_LIMIT] = {
3581 [NL80211_IFACE_LIMIT_TYPES] = { .type = NLA_NESTED },
3582 [NL80211_IFACE_LIMIT_MAX] = { .type = NLA_U32 },
3585 err = nla_parse_nested(tb_comb, MAX_NL80211_IFACE_COMB,
3586 nl_combi, iface_combination_policy);
3587 if (err || !tb_comb[NL80211_IFACE_COMB_LIMITS] ||
3588 !tb_comb[NL80211_IFACE_COMB_MAXNUM] ||
3589 !tb_comb[NL80211_IFACE_COMB_NUM_CHANNELS])
3590 return 0; /* broken combination */
3592 if (tb_comb[NL80211_IFACE_COMB_RADAR_DETECT_WIDTHS])
3593 info->capa->flags |= WPA_DRIVER_FLAGS_RADAR;
3595 nla_for_each_nested(nl_limit, tb_comb[NL80211_IFACE_COMB_LIMITS],
3597 err = nla_parse_nested(tb_limit, MAX_NL80211_IFACE_LIMIT,
3598 nl_limit, iface_limit_policy);
3599 if (err || !tb_limit[NL80211_IFACE_LIMIT_TYPES])
3600 return 0; /* broken combination */
3602 nla_for_each_nested(nl_mode,
3603 tb_limit[NL80211_IFACE_LIMIT_TYPES],
3605 int ift = nla_type(nl_mode);
3606 if (ift == NL80211_IFTYPE_P2P_GO ||
3607 ift == NL80211_IFTYPE_P2P_CLIENT)
3608 combination_has_p2p = 1;
3609 if (ift == NL80211_IFTYPE_STATION)
3610 combination_has_mgd = 1;
3612 if (combination_has_p2p && combination_has_mgd)
3616 if (combination_has_p2p && combination_has_mgd) {
3617 unsigned int num_channels =
3618 nla_get_u32(tb_comb[NL80211_IFACE_COMB_NUM_CHANNELS]);
3620 info->p2p_concurrent = 1;
3621 if (info->num_multichan_concurrent < num_channels)
3622 info->num_multichan_concurrent = num_channels;
3629 static void wiphy_info_iface_comb(struct wiphy_info_data *info,
3632 struct nlattr *nl_combi;
3638 nla_for_each_nested(nl_combi, tb, rem_combi) {
3639 if (wiphy_info_iface_comb_process(info, nl_combi) > 0)
3645 static void wiphy_info_supp_cmds(struct wiphy_info_data *info,
3648 struct nlattr *nl_cmd;
3654 nla_for_each_nested(nl_cmd, tb, i) {
3655 switch (nla_get_u32(nl_cmd)) {
3656 case NL80211_CMD_AUTHENTICATE:
3657 info->auth_supported = 1;
3659 case NL80211_CMD_CONNECT:
3660 info->connect_supported = 1;
3662 case NL80211_CMD_START_SCHED_SCAN:
3663 info->capa->sched_scan_supported = 1;
3665 case NL80211_CMD_PROBE_CLIENT:
3666 info->poll_command_supported = 1;
3668 case NL80211_CMD_CHANNEL_SWITCH:
3669 info->channel_switch_supported = 1;
3671 case NL80211_CMD_SET_QOS_MAP:
3672 info->set_qos_map_supported = 1;
3679 static void wiphy_info_cipher_suites(struct wiphy_info_data *info,
3688 num = nla_len(tb) / sizeof(u32);
3689 ciphers = nla_data(tb);
3690 for (i = 0; i < num; i++) {
3693 wpa_printf(MSG_DEBUG, "nl80211: Supported cipher %02x-%02x-%02x:%d",
3694 c >> 24, (c >> 16) & 0xff,
3695 (c >> 8) & 0xff, c & 0xff);
3697 case WLAN_CIPHER_SUITE_CCMP_256:
3698 info->capa->enc |= WPA_DRIVER_CAPA_ENC_CCMP_256;
3700 case WLAN_CIPHER_SUITE_GCMP_256:
3701 info->capa->enc |= WPA_DRIVER_CAPA_ENC_GCMP_256;
3703 case WLAN_CIPHER_SUITE_CCMP:
3704 info->capa->enc |= WPA_DRIVER_CAPA_ENC_CCMP;
3706 case WLAN_CIPHER_SUITE_GCMP:
3707 info->capa->enc |= WPA_DRIVER_CAPA_ENC_GCMP;
3709 case WLAN_CIPHER_SUITE_TKIP:
3710 info->capa->enc |= WPA_DRIVER_CAPA_ENC_TKIP;
3712 case WLAN_CIPHER_SUITE_WEP104:
3713 info->capa->enc |= WPA_DRIVER_CAPA_ENC_WEP104;
3715 case WLAN_CIPHER_SUITE_WEP40:
3716 info->capa->enc |= WPA_DRIVER_CAPA_ENC_WEP40;
3718 case WLAN_CIPHER_SUITE_AES_CMAC:
3719 info->capa->enc |= WPA_DRIVER_CAPA_ENC_BIP;
3721 case WLAN_CIPHER_SUITE_BIP_GMAC_128:
3722 info->capa->enc |= WPA_DRIVER_CAPA_ENC_BIP_GMAC_128;
3724 case WLAN_CIPHER_SUITE_BIP_GMAC_256:
3725 info->capa->enc |= WPA_DRIVER_CAPA_ENC_BIP_GMAC_256;
3727 case WLAN_CIPHER_SUITE_BIP_CMAC_256:
3728 info->capa->enc |= WPA_DRIVER_CAPA_ENC_BIP_CMAC_256;
3730 case WLAN_CIPHER_SUITE_NO_GROUP_ADDR:
3731 info->capa->enc |= WPA_DRIVER_CAPA_ENC_GTK_NOT_USED;
3738 static void wiphy_info_max_roc(struct wpa_driver_capa *capa,
3742 capa->max_remain_on_chan = nla_get_u32(tb);
3746 static void wiphy_info_tdls(struct wpa_driver_capa *capa, struct nlattr *tdls,
3747 struct nlattr *ext_setup)
3752 wpa_printf(MSG_DEBUG, "nl80211: TDLS supported");
3753 capa->flags |= WPA_DRIVER_FLAGS_TDLS_SUPPORT;
3756 wpa_printf(MSG_DEBUG, "nl80211: TDLS external setup");
3757 capa->flags |= WPA_DRIVER_FLAGS_TDLS_EXTERNAL_SETUP;
3762 static void wiphy_info_feature_flags(struct wiphy_info_data *info,
3766 struct wpa_driver_capa *capa = info->capa;
3771 flags = nla_get_u32(tb);
3773 if (flags & NL80211_FEATURE_SK_TX_STATUS)
3774 info->data_tx_status = 1;
3776 if (flags & NL80211_FEATURE_INACTIVITY_TIMER)
3777 capa->flags |= WPA_DRIVER_FLAGS_INACTIVITY_TIMER;
3779 if (flags & NL80211_FEATURE_SAE)
3780 capa->flags |= WPA_DRIVER_FLAGS_SAE;
3782 if (flags & NL80211_FEATURE_NEED_OBSS_SCAN)
3783 capa->flags |= WPA_DRIVER_FLAGS_OBSS_SCAN;
3785 if (flags & NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE)
3786 capa->flags |= WPA_DRIVER_FLAGS_HT_2040_COEX;
3788 if (flags & NL80211_FEATURE_LOW_PRIORITY_SCAN)
3789 info->have_low_prio_scan = 1;
3793 static void wiphy_info_probe_resp_offload(struct wpa_driver_capa *capa,
3801 protocols = nla_get_u32(tb);
3802 wpa_printf(MSG_DEBUG, "nl80211: Supports Probe Response offload in AP "
3804 capa->flags |= WPA_DRIVER_FLAGS_PROBE_RESP_OFFLOAD;
3805 capa->probe_resp_offloads = probe_resp_offload_support(protocols);
3809 static void wiphy_info_wowlan_triggers(struct wpa_driver_capa *capa,
3812 struct nlattr *triggers[MAX_NL80211_WOWLAN_TRIG + 1];
3817 if (nla_parse_nested(triggers, MAX_NL80211_WOWLAN_TRIG,
3821 if (triggers[NL80211_WOWLAN_TRIG_ANY])
3822 capa->wowlan_triggers.any = 1;
3823 if (triggers[NL80211_WOWLAN_TRIG_DISCONNECT])
3824 capa->wowlan_triggers.disconnect = 1;
3825 if (triggers[NL80211_WOWLAN_TRIG_MAGIC_PKT])
3826 capa->wowlan_triggers.magic_pkt = 1;
3827 if (triggers[NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE])
3828 capa->wowlan_triggers.gtk_rekey_failure = 1;
3829 if (triggers[NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST])
3830 capa->wowlan_triggers.eap_identity_req = 1;
3831 if (triggers[NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE])
3832 capa->wowlan_triggers.four_way_handshake = 1;
3833 if (triggers[NL80211_WOWLAN_TRIG_RFKILL_RELEASE])
3834 capa->wowlan_triggers.rfkill_release = 1;
3838 static int wiphy_info_handler(struct nl_msg *msg, void *arg)
3840 struct nlattr *tb[NL80211_ATTR_MAX + 1];
3841 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
3842 struct wiphy_info_data *info = arg;
3843 struct wpa_driver_capa *capa = info->capa;
3844 struct wpa_driver_nl80211_data *drv = info->drv;
3846 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
3847 genlmsg_attrlen(gnlh, 0), NULL);
3849 if (tb[NL80211_ATTR_WIPHY_NAME])
3850 os_strlcpy(drv->phyname,
3851 nla_get_string(tb[NL80211_ATTR_WIPHY_NAME]),
3852 sizeof(drv->phyname));
3853 if (tb[NL80211_ATTR_MAX_NUM_SCAN_SSIDS])
3854 capa->max_scan_ssids =
3855 nla_get_u8(tb[NL80211_ATTR_MAX_NUM_SCAN_SSIDS]);
3857 if (tb[NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS])
3858 capa->max_sched_scan_ssids =
3859 nla_get_u8(tb[NL80211_ATTR_MAX_NUM_SCHED_SCAN_SSIDS]);
3861 if (tb[NL80211_ATTR_MAX_MATCH_SETS])
3862 capa->max_match_sets =
3863 nla_get_u8(tb[NL80211_ATTR_MAX_MATCH_SETS]);
3865 if (tb[NL80211_ATTR_MAC_ACL_MAX])
3866 capa->max_acl_mac_addrs =
3867 nla_get_u8(tb[NL80211_ATTR_MAC_ACL_MAX]);
3869 wiphy_info_supported_iftypes(info, tb[NL80211_ATTR_SUPPORTED_IFTYPES]);
3870 wiphy_info_iface_comb(info, tb[NL80211_ATTR_INTERFACE_COMBINATIONS]);
3871 wiphy_info_supp_cmds(info, tb[NL80211_ATTR_SUPPORTED_COMMANDS]);
3872 wiphy_info_cipher_suites(info, tb[NL80211_ATTR_CIPHER_SUITES]);
3874 if (tb[NL80211_ATTR_OFFCHANNEL_TX_OK]) {
3875 wpa_printf(MSG_DEBUG, "nl80211: Using driver-based "
3877 capa->flags |= WPA_DRIVER_FLAGS_OFFCHANNEL_TX;
3880 if (tb[NL80211_ATTR_ROAM_SUPPORT]) {
3881 wpa_printf(MSG_DEBUG, "nl80211: Using driver-based roaming");
3882 capa->flags |= WPA_DRIVER_FLAGS_BSS_SELECTION;
3885 wiphy_info_max_roc(capa,
3886 tb[NL80211_ATTR_MAX_REMAIN_ON_CHANNEL_DURATION]);
3888 if (tb[NL80211_ATTR_SUPPORT_AP_UAPSD])
3889 capa->flags |= WPA_DRIVER_FLAGS_AP_UAPSD;
3891 wiphy_info_tdls(capa, tb[NL80211_ATTR_TDLS_SUPPORT],
3892 tb[NL80211_ATTR_TDLS_EXTERNAL_SETUP]);
3894 if (tb[NL80211_ATTR_DEVICE_AP_SME])
3895 info->device_ap_sme = 1;
3897 wiphy_info_feature_flags(info, tb[NL80211_ATTR_FEATURE_FLAGS]);
3898 wiphy_info_probe_resp_offload(capa,
3899 tb[NL80211_ATTR_PROBE_RESP_OFFLOAD]);
3901 if (tb[NL80211_ATTR_EXT_CAPA] && tb[NL80211_ATTR_EXT_CAPA_MASK] &&
3902 drv->extended_capa == NULL) {
3903 drv->extended_capa =
3904 os_malloc(nla_len(tb[NL80211_ATTR_EXT_CAPA]));
3905 if (drv->extended_capa) {
3906 os_memcpy(drv->extended_capa,
3907 nla_data(tb[NL80211_ATTR_EXT_CAPA]),
3908 nla_len(tb[NL80211_ATTR_EXT_CAPA]));
3909 drv->extended_capa_len =
3910 nla_len(tb[NL80211_ATTR_EXT_CAPA]);
3912 drv->extended_capa_mask =
3913 os_malloc(nla_len(tb[NL80211_ATTR_EXT_CAPA]));
3914 if (drv->extended_capa_mask) {
3915 os_memcpy(drv->extended_capa_mask,
3916 nla_data(tb[NL80211_ATTR_EXT_CAPA]),
3917 nla_len(tb[NL80211_ATTR_EXT_CAPA]));
3919 os_free(drv->extended_capa);
3920 drv->extended_capa = NULL;
3921 drv->extended_capa_len = 0;
3925 if (tb[NL80211_ATTR_VENDOR_DATA]) {
3929 nla_for_each_nested(nl, tb[NL80211_ATTR_VENDOR_DATA], rem) {
3930 struct nl80211_vendor_cmd_info *vinfo;
3931 if (nla_len(nl) != sizeof(*vinfo)) {
3932 wpa_printf(MSG_DEBUG, "nl80211: Unexpected vendor data info");
3935 vinfo = nla_data(nl);
3936 switch (vinfo->subcmd) {
3937 case QCA_NL80211_VENDOR_SUBCMD_ROAMING:
3938 drv->roaming_vendor_cmd_avail = 1;
3940 case QCA_NL80211_VENDOR_SUBCMD_DFS_CAPABILITY:
3941 drv->dfs_vendor_cmd_avail = 1;
3945 wpa_printf(MSG_DEBUG, "nl80211: Supported vendor command: vendor_id=0x%x subcmd=%u",
3946 vinfo->vendor_id, vinfo->subcmd);
3950 if (tb[NL80211_ATTR_VENDOR_EVENTS]) {
3954 nla_for_each_nested(nl, tb[NL80211_ATTR_VENDOR_EVENTS], rem) {
3955 struct nl80211_vendor_cmd_info *vinfo;
3956 if (nla_len(nl) != sizeof(*vinfo)) {
3957 wpa_printf(MSG_DEBUG, "nl80211: Unexpected vendor data info");
3960 vinfo = nla_data(nl);
3961 wpa_printf(MSG_DEBUG, "nl80211: Supported vendor event: vendor_id=0x%x subcmd=%u",
3962 vinfo->vendor_id, vinfo->subcmd);
3966 wiphy_info_wowlan_triggers(capa,
3967 tb[NL80211_ATTR_WOWLAN_TRIGGERS_SUPPORTED]);
3969 if (tb[NL80211_ATTR_MAX_AP_ASSOC_STA])
3970 capa->max_stations =
3971 nla_get_u32(tb[NL80211_ATTR_MAX_AP_ASSOC_STA]);
3977 static int wpa_driver_nl80211_get_info(struct wpa_driver_nl80211_data *drv,
3978 struct wiphy_info_data *info)
3983 os_memset(info, 0, sizeof(*info));
3984 info->capa = &drv->capa;
3987 msg = nlmsg_alloc();
3991 feat = get_nl80211_protocol_features(drv);
3992 if (feat & NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP)
3993 nl80211_cmd(drv, msg, NLM_F_DUMP, NL80211_CMD_GET_WIPHY);
3995 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_WIPHY);
3997 NLA_PUT_FLAG(msg, NL80211_ATTR_SPLIT_WIPHY_DUMP);
3998 if (nl80211_set_iface_id(msg, drv->first_bss) < 0)
3999 goto nla_put_failure;
4001 if (send_and_recv_msgs(drv, msg, wiphy_info_handler, info))
4004 if (info->auth_supported)
4005 drv->capa.flags |= WPA_DRIVER_FLAGS_SME;
4006 else if (!info->connect_supported) {
4007 wpa_printf(MSG_INFO, "nl80211: Driver does not support "
4008 "authentication/association or connect commands");
4012 if (info->p2p_go_supported && info->p2p_client_supported)
4013 drv->capa.flags |= WPA_DRIVER_FLAGS_P2P_CAPABLE;
4014 if (info->p2p_concurrent) {
4015 wpa_printf(MSG_DEBUG, "nl80211: Use separate P2P group "
4016 "interface (driver advertised support)");
4017 drv->capa.flags |= WPA_DRIVER_FLAGS_P2P_CONCURRENT;
4018 drv->capa.flags |= WPA_DRIVER_FLAGS_P2P_MGMT_AND_NON_P2P;
4020 if (info->num_multichan_concurrent > 1) {
4021 wpa_printf(MSG_DEBUG, "nl80211: Enable multi-channel "
4022 "concurrent (driver advertised support)");
4023 drv->capa.num_multichan_concurrent =
4024 info->num_multichan_concurrent;
4027 /* default to 5000 since early versions of mac80211 don't set it */
4028 if (!drv->capa.max_remain_on_chan)
4029 drv->capa.max_remain_on_chan = 5000;
4031 if (info->channel_switch_supported)
4032 drv->capa.flags |= WPA_DRIVER_FLAGS_AP_CSA;
4041 static int wpa_driver_nl80211_capa(struct wpa_driver_nl80211_data *drv)
4043 struct wiphy_info_data info;
4044 if (wpa_driver_nl80211_get_info(drv, &info))
4050 drv->has_capability = 1;
4051 drv->capa.key_mgmt = WPA_DRIVER_CAPA_KEY_MGMT_WPA |
4052 WPA_DRIVER_CAPA_KEY_MGMT_WPA_PSK |
4053 WPA_DRIVER_CAPA_KEY_MGMT_WPA2 |
4054 WPA_DRIVER_CAPA_KEY_MGMT_WPA2_PSK;
4055 drv->capa.auth = WPA_DRIVER_AUTH_OPEN |
4056 WPA_DRIVER_AUTH_SHARED |
4057 WPA_DRIVER_AUTH_LEAP;
4059 drv->capa.flags |= WPA_DRIVER_FLAGS_SANE_ERROR_CODES;
4060 drv->capa.flags |= WPA_DRIVER_FLAGS_SET_KEYS_AFTER_ASSOC_DONE;
4061 drv->capa.flags |= WPA_DRIVER_FLAGS_EAPOL_TX_STATUS;
4064 * As all cfg80211 drivers must support cases where the AP interface is
4065 * removed without the knowledge of wpa_supplicant/hostapd, e.g., in
4066 * case that the user space daemon has crashed, they must be able to
4067 * cleanup all stations and key entries in the AP tear down flow. Thus,
4068 * this flag can/should always be set for cfg80211 drivers.
4070 drv->capa.flags |= WPA_DRIVER_FLAGS_AP_TEARDOWN_SUPPORT;
4072 if (!info.device_ap_sme) {
4073 drv->capa.flags |= WPA_DRIVER_FLAGS_DEAUTH_TX_STATUS;
4076 * No AP SME is currently assumed to also indicate no AP MLME
4077 * in the driver/firmware.
4079 drv->capa.flags |= WPA_DRIVER_FLAGS_AP_MLME;
4082 drv->device_ap_sme = info.device_ap_sme;
4083 drv->poll_command_supported = info.poll_command_supported;
4084 drv->data_tx_status = info.data_tx_status;
4085 if (info.set_qos_map_supported)
4086 drv->capa.flags |= WPA_DRIVER_FLAGS_QOS_MAPPING;
4087 drv->have_low_prio_scan = info.have_low_prio_scan;
4090 * If poll command and tx status are supported, mac80211 is new enough
4091 * to have everything we need to not need monitor interfaces.
4093 drv->use_monitor = !info.poll_command_supported || !info.data_tx_status;
4095 if (drv->device_ap_sme && drv->use_monitor) {
4097 * Non-mac80211 drivers may not support monitor interface.
4098 * Make sure we do not get stuck with incorrect capability here
4099 * by explicitly testing this.
4101 if (!info.monitor_supported) {
4102 wpa_printf(MSG_DEBUG, "nl80211: Disable use_monitor "
4103 "with device_ap_sme since no monitor mode "
4104 "support detected");
4105 drv->use_monitor = 0;
4110 * If we aren't going to use monitor interfaces, but the
4111 * driver doesn't support data TX status, we won't get TX
4112 * status for EAPOL frames.
4114 if (!drv->use_monitor && !info.data_tx_status)
4115 drv->capa.flags &= ~WPA_DRIVER_FLAGS_EAPOL_TX_STATUS;
4122 static int android_genl_ctrl_resolve(struct nl_handle *handle,
4126 * Android ICS has very minimal genl_ctrl_resolve() implementation, so
4127 * need to work around that.
4129 struct nl_cache *cache = NULL;
4130 struct genl_family *nl80211 = NULL;
4133 if (genl_ctrl_alloc_cache(handle, &cache) < 0) {
4134 wpa_printf(MSG_ERROR, "nl80211: Failed to allocate generic "
4139 nl80211 = genl_ctrl_search_by_name(cache, name);
4140 if (nl80211 == NULL)
4143 id = genl_family_get_id(nl80211);
4147 genl_family_put(nl80211);
4149 nl_cache_free(cache);
4153 #define genl_ctrl_resolve android_genl_ctrl_resolve
4154 #endif /* ANDROID */
4157 static int wpa_driver_nl80211_init_nl_global(struct nl80211_global *global)
4161 global->nl_cb = nl_cb_alloc(NL_CB_DEFAULT);
4162 if (global->nl_cb == NULL) {
4163 wpa_printf(MSG_ERROR, "nl80211: Failed to allocate netlink "
4168 global->nl = nl_create_handle(global->nl_cb, "nl");
4169 if (global->nl == NULL)
4172 global->nl80211_id = genl_ctrl_resolve(global->nl, "nl80211");
4173 if (global->nl80211_id < 0) {
4174 wpa_printf(MSG_ERROR, "nl80211: 'nl80211' generic netlink not "
4179 global->nl_event = nl_create_handle(global->nl_cb, "event");
4180 if (global->nl_event == NULL)
4183 ret = nl_get_multicast_id(global, "nl80211", "scan");
4185 ret = nl_socket_add_membership(global->nl_event, ret);
4187 wpa_printf(MSG_ERROR, "nl80211: Could not add multicast "
4188 "membership for scan events: %d (%s)",
4189 ret, strerror(-ret));
4193 ret = nl_get_multicast_id(global, "nl80211", "mlme");
4195 ret = nl_socket_add_membership(global->nl_event, ret);
4197 wpa_printf(MSG_ERROR, "nl80211: Could not add multicast "
4198 "membership for mlme events: %d (%s)",
4199 ret, strerror(-ret));
4203 ret = nl_get_multicast_id(global, "nl80211", "regulatory");
4205 ret = nl_socket_add_membership(global->nl_event, ret);
4207 wpa_printf(MSG_DEBUG, "nl80211: Could not add multicast "
4208 "membership for regulatory events: %d (%s)",
4209 ret, strerror(-ret));
4210 /* Continue without regulatory events */
4213 ret = nl_get_multicast_id(global, "nl80211", "vendor");
4215 ret = nl_socket_add_membership(global->nl_event, ret);
4217 wpa_printf(MSG_DEBUG, "nl80211: Could not add multicast "
4218 "membership for vendor events: %d (%s)",
4219 ret, strerror(-ret));
4220 /* Continue without vendor events */
4223 nl_cb_set(global->nl_cb, NL_CB_SEQ_CHECK, NL_CB_CUSTOM,
4224 no_seq_check, NULL);
4225 nl_cb_set(global->nl_cb, NL_CB_VALID, NL_CB_CUSTOM,
4226 process_global_event, global);
4228 nl80211_register_eloop_read(&global->nl_event,
4229 wpa_driver_nl80211_event_receive,
4235 nl_destroy_handles(&global->nl_event);
4236 nl_destroy_handles(&global->nl);
4237 nl_cb_put(global->nl_cb);
4238 global->nl_cb = NULL;
4243 static int wpa_driver_nl80211_init_nl(struct wpa_driver_nl80211_data *drv)
4245 drv->nl_cb = nl_cb_alloc(NL_CB_DEFAULT);
4247 wpa_printf(MSG_ERROR, "nl80211: Failed to alloc cb struct");
4251 nl_cb_set(drv->nl_cb, NL_CB_SEQ_CHECK, NL_CB_CUSTOM,
4252 no_seq_check, NULL);
4253 nl_cb_set(drv->nl_cb, NL_CB_VALID, NL_CB_CUSTOM,
4254 process_drv_event, drv);
4260 static void wpa_driver_nl80211_rfkill_blocked(void *ctx)
4262 wpa_printf(MSG_DEBUG, "nl80211: RFKILL blocked");
4264 * This may be for any interface; use ifdown event to disable
4270 static void wpa_driver_nl80211_rfkill_unblocked(void *ctx)
4272 struct wpa_driver_nl80211_data *drv = ctx;
4273 wpa_printf(MSG_DEBUG, "nl80211: RFKILL unblocked");
4274 if (i802_set_iface_flags(drv->first_bss, 1)) {
4275 wpa_printf(MSG_DEBUG, "nl80211: Could not set interface UP "
4276 "after rfkill unblock");
4279 /* rtnetlink ifup handler will report interface as enabled */
4283 static void wpa_driver_nl80211_handle_eapol_tx_status(int sock,
4287 struct wpa_driver_nl80211_data *drv = eloop_ctx;
4292 struct cmsghdr *cmsg;
4293 int res, found_ee = 0, found_wifi = 0, acked = 0;
4294 union wpa_event_data event;
4296 memset(&msg, 0, sizeof(msg));
4297 msg.msg_iov = &entry;
4299 entry.iov_base = data;
4300 entry.iov_len = sizeof(data);
4301 msg.msg_control = &control;
4302 msg.msg_controllen = sizeof(control);
4304 res = recvmsg(sock, &msg, MSG_ERRQUEUE);
4305 /* if error or not fitting 802.3 header, return */
4309 for (cmsg = CMSG_FIRSTHDR(&msg); cmsg; cmsg = CMSG_NXTHDR(&msg, cmsg))
4311 if (cmsg->cmsg_level == SOL_SOCKET &&
4312 cmsg->cmsg_type == SCM_WIFI_STATUS) {
4316 ack = (void *)CMSG_DATA(cmsg);
4320 if (cmsg->cmsg_level == SOL_PACKET &&
4321 cmsg->cmsg_type == PACKET_TX_TIMESTAMP) {
4322 struct sock_extended_err *err =
4323 (struct sock_extended_err *)CMSG_DATA(cmsg);
4325 if (err->ee_origin == SO_EE_ORIGIN_TXSTATUS)
4330 if (!found_ee || !found_wifi)
4333 memset(&event, 0, sizeof(event));
4334 event.eapol_tx_status.dst = data;
4335 event.eapol_tx_status.data = data + 14;
4336 event.eapol_tx_status.data_len = res - 14;
4337 event.eapol_tx_status.ack = acked;
4338 wpa_supplicant_event(drv->ctx, EVENT_EAPOL_TX_STATUS, &event);
4342 static int nl80211_init_bss(struct i802_bss *bss)
4344 bss->nl_cb = nl_cb_alloc(NL_CB_DEFAULT);
4348 nl_cb_set(bss->nl_cb, NL_CB_SEQ_CHECK, NL_CB_CUSTOM,
4349 no_seq_check, NULL);
4350 nl_cb_set(bss->nl_cb, NL_CB_VALID, NL_CB_CUSTOM,
4351 process_bss_event, bss);
4357 static void nl80211_destroy_bss(struct i802_bss *bss)
4359 nl_cb_put(bss->nl_cb);
4364 static void * wpa_driver_nl80211_drv_init(void *ctx, const char *ifname,
4365 void *global_priv, int hostapd,
4368 struct wpa_driver_nl80211_data *drv;
4369 struct rfkill_config *rcfg;
4370 struct i802_bss *bss;
4372 if (global_priv == NULL)
4374 drv = os_zalloc(sizeof(*drv));
4377 drv->global = global_priv;
4379 drv->hostapd = !!hostapd;
4380 drv->eapol_sock = -1;
4381 drv->num_if_indices = sizeof(drv->default_if_indices) / sizeof(int);
4382 drv->if_indices = drv->default_if_indices;
4384 drv->first_bss = os_zalloc(sizeof(*drv->first_bss));
4385 if (!drv->first_bss) {
4389 bss = drv->first_bss;
4393 os_strlcpy(bss->ifname, ifname, sizeof(bss->ifname));
4394 drv->monitor_ifidx = -1;
4395 drv->monitor_sock = -1;
4396 drv->eapol_tx_sock = -1;
4397 drv->ap_scan_as_station = NL80211_IFTYPE_UNSPECIFIED;
4399 if (wpa_driver_nl80211_init_nl(drv)) {
4404 if (nl80211_init_bss(bss))
4407 rcfg = os_zalloc(sizeof(*rcfg));
4411 os_strlcpy(rcfg->ifname, ifname, sizeof(rcfg->ifname));
4412 rcfg->blocked_cb = wpa_driver_nl80211_rfkill_blocked;
4413 rcfg->unblocked_cb = wpa_driver_nl80211_rfkill_unblocked;
4414 drv->rfkill = rfkill_init(rcfg);
4415 if (drv->rfkill == NULL) {
4416 wpa_printf(MSG_DEBUG, "nl80211: RFKILL status not available");
4420 if (linux_iface_up(drv->global->ioctl_sock, ifname) > 0)
4421 drv->start_iface_up = 1;
4423 if (wpa_driver_nl80211_finish_drv_init(drv, set_addr, 1))
4426 drv->eapol_tx_sock = socket(PF_PACKET, SOCK_DGRAM, 0);
4427 if (drv->eapol_tx_sock < 0)
4430 if (drv->data_tx_status) {
4433 if (setsockopt(drv->eapol_tx_sock, SOL_SOCKET, SO_WIFI_STATUS,
4434 &enabled, sizeof(enabled)) < 0) {
4435 wpa_printf(MSG_DEBUG,
4436 "nl80211: wifi status sockopt failed\n");
4437 drv->data_tx_status = 0;
4438 if (!drv->use_monitor)
4440 ~WPA_DRIVER_FLAGS_EAPOL_TX_STATUS;
4442 eloop_register_read_sock(drv->eapol_tx_sock,
4443 wpa_driver_nl80211_handle_eapol_tx_status,
4449 dl_list_add(&drv->global->interfaces, &drv->list);
4450 drv->in_interface_list = 1;
4456 wpa_driver_nl80211_deinit(bss);
4462 * wpa_driver_nl80211_init - Initialize nl80211 driver interface
4463 * @ctx: context to be used when calling wpa_supplicant functions,
4464 * e.g., wpa_supplicant_event()
4465 * @ifname: interface name, e.g., wlan0
4466 * @global_priv: private driver global data from global_init()
4467 * Returns: Pointer to private data, %NULL on failure
4469 static void * wpa_driver_nl80211_init(void *ctx, const char *ifname,
4472 return wpa_driver_nl80211_drv_init(ctx, ifname, global_priv, 0, NULL);
4476 static int nl80211_register_frame(struct i802_bss *bss,
4477 struct nl_handle *nl_handle,
4478 u16 type, const u8 *match, size_t match_len)
4480 struct wpa_driver_nl80211_data *drv = bss->drv;
4485 msg = nlmsg_alloc();
4490 wpa_snprintf_hex(buf, sizeof(buf), match, match_len);
4491 wpa_printf(MSG_DEBUG, "nl80211: Register frame type=0x%x (%s) nl_handle=%p match=%s",
4492 type, fc2str(type), nl_handle, buf);
4494 nl80211_cmd(drv, msg, 0, NL80211_CMD_REGISTER_ACTION);
4496 if (nl80211_set_iface_id(msg, bss) < 0)
4497 goto nla_put_failure;
4499 NLA_PUT_U16(msg, NL80211_ATTR_FRAME_TYPE, type);
4500 NLA_PUT(msg, NL80211_ATTR_FRAME_MATCH, match_len, match);
4502 ret = send_and_recv(drv->global, nl_handle, msg, NULL, NULL);
4505 wpa_printf(MSG_DEBUG, "nl80211: Register frame command "
4506 "failed (type=%u): ret=%d (%s)",
4507 type, ret, strerror(-ret));
4508 wpa_hexdump(MSG_DEBUG, "nl80211: Register frame match",
4510 goto nla_put_failure;
4519 static int nl80211_alloc_mgmt_handle(struct i802_bss *bss)
4521 struct wpa_driver_nl80211_data *drv = bss->drv;
4524 wpa_printf(MSG_DEBUG, "nl80211: Mgmt reporting "
4525 "already on! (nl_mgmt=%p)", bss->nl_mgmt);
4529 bss->nl_mgmt = nl_create_handle(drv->nl_cb, "mgmt");
4530 if (bss->nl_mgmt == NULL)
4537 static void nl80211_mgmt_handle_register_eloop(struct i802_bss *bss)
4539 nl80211_register_eloop_read(&bss->nl_mgmt,
4540 wpa_driver_nl80211_event_receive,
4545 static int nl80211_register_action_frame(struct i802_bss *bss,
4546 const u8 *match, size_t match_len)
4548 u16 type = (WLAN_FC_TYPE_MGMT << 2) | (WLAN_FC_STYPE_ACTION << 4);
4549 return nl80211_register_frame(bss, bss->nl_mgmt,
4550 type, match, match_len);
4554 static int nl80211_mgmt_subscribe_non_ap(struct i802_bss *bss)
4556 struct wpa_driver_nl80211_data *drv = bss->drv;
4559 if (nl80211_alloc_mgmt_handle(bss))
4561 wpa_printf(MSG_DEBUG, "nl80211: Subscribe to mgmt frames with non-AP "
4562 "handle %p", bss->nl_mgmt);
4564 if (drv->nlmode == NL80211_IFTYPE_ADHOC) {
4565 u16 type = (WLAN_FC_TYPE_MGMT << 2) | (WLAN_FC_STYPE_AUTH << 4);
4567 /* register for any AUTH message */
4568 nl80211_register_frame(bss, bss->nl_mgmt, type, NULL, 0);
4571 #ifdef CONFIG_INTERWORKING
4572 /* QoS Map Configure */
4573 if (nl80211_register_action_frame(bss, (u8 *) "\x01\x04", 2) < 0)
4575 #endif /* CONFIG_INTERWORKING */
4576 #if defined(CONFIG_P2P) || defined(CONFIG_INTERWORKING)
4577 /* GAS Initial Request */
4578 if (nl80211_register_action_frame(bss, (u8 *) "\x04\x0a", 2) < 0)
4580 /* GAS Initial Response */
4581 if (nl80211_register_action_frame(bss, (u8 *) "\x04\x0b", 2) < 0)
4583 /* GAS Comeback Request */
4584 if (nl80211_register_action_frame(bss, (u8 *) "\x04\x0c", 2) < 0)
4586 /* GAS Comeback Response */
4587 if (nl80211_register_action_frame(bss, (u8 *) "\x04\x0d", 2) < 0)
4589 /* Protected GAS Initial Request */
4590 if (nl80211_register_action_frame(bss, (u8 *) "\x09\x0a", 2) < 0)
4592 /* Protected GAS Initial Response */
4593 if (nl80211_register_action_frame(bss, (u8 *) "\x09\x0b", 2) < 0)
4595 /* Protected GAS Comeback Request */
4596 if (nl80211_register_action_frame(bss, (u8 *) "\x09\x0c", 2) < 0)
4598 /* Protected GAS Comeback Response */
4599 if (nl80211_register_action_frame(bss, (u8 *) "\x09\x0d", 2) < 0)
4601 #endif /* CONFIG_P2P || CONFIG_INTERWORKING */
4603 /* P2P Public Action */
4604 if (nl80211_register_action_frame(bss,
4605 (u8 *) "\x04\x09\x50\x6f\x9a\x09",
4609 if (nl80211_register_action_frame(bss,
4610 (u8 *) "\x7f\x50\x6f\x9a\x09",
4613 #endif /* CONFIG_P2P */
4614 #ifdef CONFIG_IEEE80211W
4615 /* SA Query Response */
4616 if (nl80211_register_action_frame(bss, (u8 *) "\x08\x01", 2) < 0)
4618 #endif /* CONFIG_IEEE80211W */
4620 if ((drv->capa.flags & WPA_DRIVER_FLAGS_TDLS_SUPPORT)) {
4621 /* TDLS Discovery Response */
4622 if (nl80211_register_action_frame(bss, (u8 *) "\x04\x0e", 2) <
4626 #endif /* CONFIG_TDLS */
4628 /* FT Action frames */
4629 if (nl80211_register_action_frame(bss, (u8 *) "\x06", 1) < 0)
4632 drv->capa.key_mgmt |= WPA_DRIVER_CAPA_KEY_MGMT_FT |
4633 WPA_DRIVER_CAPA_KEY_MGMT_FT_PSK;
4635 /* WNM - BSS Transition Management Request */
4636 if (nl80211_register_action_frame(bss, (u8 *) "\x0a\x07", 2) < 0)
4638 /* WNM-Sleep Mode Response */
4639 if (nl80211_register_action_frame(bss, (u8 *) "\x0a\x11", 2) < 0)
4643 /* WNM-Notification */
4644 if (nl80211_register_action_frame(bss, (u8 *) "\x0a\x1a", 2) < 0)
4646 #endif /* CONFIG_HS20 */
4648 nl80211_mgmt_handle_register_eloop(bss);
4654 static int nl80211_register_spurious_class3(struct i802_bss *bss)
4656 struct wpa_driver_nl80211_data *drv = bss->drv;
4660 msg = nlmsg_alloc();
4664 nl80211_cmd(drv, msg, 0, NL80211_CMD_UNEXPECTED_FRAME);
4666 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, bss->ifindex);
4668 ret = send_and_recv(drv->global, bss->nl_mgmt, msg, NULL, NULL);
4671 wpa_printf(MSG_DEBUG, "nl80211: Register spurious class3 "
4672 "failed: ret=%d (%s)",
4673 ret, strerror(-ret));
4674 goto nla_put_failure;
4683 static int nl80211_mgmt_subscribe_ap(struct i802_bss *bss)
4685 static const int stypes[] = {
4687 WLAN_FC_STYPE_ASSOC_REQ,
4688 WLAN_FC_STYPE_REASSOC_REQ,
4689 WLAN_FC_STYPE_DISASSOC,
4690 WLAN_FC_STYPE_DEAUTH,
4691 WLAN_FC_STYPE_ACTION,
4692 WLAN_FC_STYPE_PROBE_REQ,
4693 /* Beacon doesn't work as mac80211 doesn't currently allow
4694 * it, but it wouldn't really be the right thing anyway as
4695 * it isn't per interface ... maybe just dump the scan
4696 * results periodically for OLBC?
4698 /* WLAN_FC_STYPE_BEACON, */
4702 if (nl80211_alloc_mgmt_handle(bss))
4704 wpa_printf(MSG_DEBUG, "nl80211: Subscribe to mgmt frames with AP "
4705 "handle %p", bss->nl_mgmt);
4707 for (i = 0; i < ARRAY_SIZE(stypes); i++) {
4708 if (nl80211_register_frame(bss, bss->nl_mgmt,
4709 (WLAN_FC_TYPE_MGMT << 2) |
4716 if (nl80211_register_spurious_class3(bss))
4719 if (nl80211_get_wiphy_data_ap(bss) == NULL)
4722 nl80211_mgmt_handle_register_eloop(bss);
4726 nl_destroy_handles(&bss->nl_mgmt);
4731 static int nl80211_mgmt_subscribe_ap_dev_sme(struct i802_bss *bss)
4733 if (nl80211_alloc_mgmt_handle(bss))
4735 wpa_printf(MSG_DEBUG, "nl80211: Subscribe to mgmt frames with AP "
4736 "handle %p (device SME)", bss->nl_mgmt);
4738 if (nl80211_register_frame(bss, bss->nl_mgmt,
4739 (WLAN_FC_TYPE_MGMT << 2) |
4740 (WLAN_FC_STYPE_ACTION << 4),
4744 nl80211_mgmt_handle_register_eloop(bss);
4748 nl_destroy_handles(&bss->nl_mgmt);
4753 static void nl80211_mgmt_unsubscribe(struct i802_bss *bss, const char *reason)
4755 if (bss->nl_mgmt == NULL)
4757 wpa_printf(MSG_DEBUG, "nl80211: Unsubscribe mgmt frames handle %p "
4758 "(%s)", bss->nl_mgmt, reason);
4759 nl80211_destroy_eloop_handle(&bss->nl_mgmt);
4761 nl80211_put_wiphy_data_ap(bss);
4765 static void wpa_driver_nl80211_send_rfkill(void *eloop_ctx, void *timeout_ctx)
4767 wpa_supplicant_event(timeout_ctx, EVENT_INTERFACE_DISABLED, NULL);
4771 static void nl80211_del_p2pdev(struct i802_bss *bss)
4773 struct wpa_driver_nl80211_data *drv = bss->drv;
4777 msg = nlmsg_alloc();
4781 nl80211_cmd(drv, msg, 0, NL80211_CMD_DEL_INTERFACE);
4782 NLA_PUT_U64(msg, NL80211_ATTR_WDEV, bss->wdev_id);
4784 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
4787 wpa_printf(MSG_DEBUG, "nl80211: Delete P2P Device %s (0x%llx): %s",
4788 bss->ifname, (long long unsigned int) bss->wdev_id,
4796 static int nl80211_set_p2pdev(struct i802_bss *bss, int start)
4798 struct wpa_driver_nl80211_data *drv = bss->drv;
4802 msg = nlmsg_alloc();
4807 nl80211_cmd(drv, msg, 0, NL80211_CMD_START_P2P_DEVICE);
4809 nl80211_cmd(drv, msg, 0, NL80211_CMD_STOP_P2P_DEVICE);
4811 NLA_PUT_U64(msg, NL80211_ATTR_WDEV, bss->wdev_id);
4813 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
4816 wpa_printf(MSG_DEBUG, "nl80211: %s P2P Device %s (0x%llx): %s",
4817 start ? "Start" : "Stop",
4818 bss->ifname, (long long unsigned int) bss->wdev_id,
4827 static int i802_set_iface_flags(struct i802_bss *bss, int up)
4829 enum nl80211_iftype nlmode;
4831 nlmode = nl80211_get_ifmode(bss);
4832 if (nlmode != NL80211_IFTYPE_P2P_DEVICE) {
4833 return linux_set_iface_flags(bss->drv->global->ioctl_sock,
4837 /* P2P Device has start/stop which is equivalent */
4838 return nl80211_set_p2pdev(bss, up);
4843 wpa_driver_nl80211_finish_drv_init(struct wpa_driver_nl80211_data *drv,
4844 const u8 *set_addr, int first)
4846 struct i802_bss *bss = drv->first_bss;
4847 int send_rfkill_event = 0;
4848 enum nl80211_iftype nlmode;
4850 drv->ifindex = if_nametoindex(bss->ifname);
4851 bss->ifindex = drv->ifindex;
4852 bss->wdev_id = drv->global->if_add_wdevid;
4853 bss->wdev_id_set = drv->global->if_add_wdevid_set;
4855 bss->if_dynamic = drv->ifindex == drv->global->if_add_ifindex;
4856 bss->if_dynamic = bss->if_dynamic || drv->global->if_add_wdevid_set;
4857 drv->global->if_add_wdevid_set = 0;
4859 if (!bss->if_dynamic && nl80211_get_ifmode(bss) == NL80211_IFTYPE_AP)
4862 if (wpa_driver_nl80211_capa(drv))
4865 wpa_printf(MSG_DEBUG, "nl80211: interface %s in phy %s",
4866 bss->ifname, drv->phyname);
4869 (linux_set_iface_flags(drv->global->ioctl_sock, bss->ifname, 0) ||
4870 linux_set_ifhwaddr(drv->global->ioctl_sock, bss->ifname,
4874 if (first && nl80211_get_ifmode(bss) == NL80211_IFTYPE_AP)
4875 drv->start_mode_ap = 1;
4877 if (drv->hostapd || bss->static_ap)
4878 nlmode = NL80211_IFTYPE_AP;
4879 else if (bss->if_dynamic)
4880 nlmode = nl80211_get_ifmode(bss);
4882 nlmode = NL80211_IFTYPE_STATION;
4884 if (wpa_driver_nl80211_set_mode(bss, nlmode) < 0) {
4885 wpa_printf(MSG_ERROR, "nl80211: Could not configure driver mode");
4889 if (nlmode == NL80211_IFTYPE_P2P_DEVICE)
4890 nl80211_get_macaddr(bss);
4892 if (!rfkill_is_blocked(drv->rfkill)) {
4893 int ret = i802_set_iface_flags(bss, 1);
4895 wpa_printf(MSG_ERROR, "nl80211: Could not set "
4896 "interface '%s' UP", bss->ifname);
4899 if (nlmode == NL80211_IFTYPE_P2P_DEVICE)
4902 wpa_printf(MSG_DEBUG, "nl80211: Could not yet enable "
4903 "interface '%s' due to rfkill", bss->ifname);
4904 if (nlmode == NL80211_IFTYPE_P2P_DEVICE)
4906 drv->if_disabled = 1;
4907 send_rfkill_event = 1;
4911 netlink_send_oper_ifla(drv->global->netlink, drv->ifindex,
4912 1, IF_OPER_DORMANT);
4914 if (linux_get_ifhwaddr(drv->global->ioctl_sock, bss->ifname,
4917 os_memcpy(drv->perm_addr, bss->addr, ETH_ALEN);
4919 if (send_rfkill_event) {
4920 eloop_register_timeout(0, 0, wpa_driver_nl80211_send_rfkill,
4928 static int wpa_driver_nl80211_del_beacon(struct wpa_driver_nl80211_data *drv)
4932 msg = nlmsg_alloc();
4936 wpa_printf(MSG_DEBUG, "nl80211: Remove beacon (ifindex=%d)",
4938 nl80211_cmd(drv, msg, 0, NL80211_CMD_DEL_BEACON);
4939 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
4941 return send_and_recv_msgs(drv, msg, NULL, NULL);
4949 * wpa_driver_nl80211_deinit - Deinitialize nl80211 driver interface
4950 * @bss: Pointer to private nl80211 data from wpa_driver_nl80211_init()
4952 * Shut down driver interface and processing of driver events. Free
4953 * private data buffer if one was allocated in wpa_driver_nl80211_init().
4955 static void wpa_driver_nl80211_deinit(struct i802_bss *bss)
4957 struct wpa_driver_nl80211_data *drv = bss->drv;
4960 if (drv->data_tx_status)
4961 eloop_unregister_read_sock(drv->eapol_tx_sock);
4962 if (drv->eapol_tx_sock >= 0)
4963 close(drv->eapol_tx_sock);
4966 wpa_driver_nl80211_probe_req_report(bss, 0);
4967 if (bss->added_if_into_bridge) {
4968 if (linux_br_del_if(drv->global->ioctl_sock, bss->brname,
4970 wpa_printf(MSG_INFO, "nl80211: Failed to remove "
4971 "interface %s from bridge %s: %s",
4972 bss->ifname, bss->brname, strerror(errno));
4974 nl80211_handle_destroy(drv->rtnl_sk);
4976 if (bss->added_bridge) {
4977 if (linux_br_del(drv->global->ioctl_sock, bss->brname) < 0)
4978 wpa_printf(MSG_INFO, "nl80211: Failed to remove "
4980 bss->brname, strerror(errno));
4983 nl80211_remove_monitor_interface(drv);
4985 if (is_ap_interface(drv->nlmode))
4986 wpa_driver_nl80211_del_beacon(drv);
4988 if (drv->eapol_sock >= 0) {
4989 eloop_unregister_read_sock(drv->eapol_sock);
4990 close(drv->eapol_sock);
4993 if (drv->if_indices != drv->default_if_indices)
4994 os_free(drv->if_indices);
4996 if (drv->disabled_11b_rates)
4997 nl80211_disable_11b_rates(drv, drv->ifindex, 0);
4999 netlink_send_oper_ifla(drv->global->netlink, drv->ifindex, 0,
5001 eloop_cancel_timeout(wpa_driver_nl80211_send_rfkill, drv, drv->ctx);
5002 rfkill_deinit(drv->rfkill);
5004 eloop_cancel_timeout(wpa_driver_nl80211_scan_timeout, drv, drv->ctx);
5006 if (!drv->start_iface_up)
5007 (void) i802_set_iface_flags(bss, 0);
5009 if (drv->addr_changed) {
5010 linux_set_iface_flags(drv->global->ioctl_sock, bss->ifname, 0);
5011 if (linux_set_ifhwaddr(drv->global->ioctl_sock, bss->ifname,
5012 drv->perm_addr) < 0) {
5013 wpa_printf(MSG_DEBUG,
5014 "nl80211: Could not restore permanent MAC address");
5018 if (drv->nlmode != NL80211_IFTYPE_P2P_DEVICE) {
5019 if (!drv->hostapd || !drv->start_mode_ap)
5020 wpa_driver_nl80211_set_mode(bss,
5021 NL80211_IFTYPE_STATION);
5022 nl80211_mgmt_unsubscribe(bss, "deinit");
5024 nl80211_mgmt_unsubscribe(bss, "deinit");
5025 nl80211_del_p2pdev(bss);
5027 nl_cb_put(drv->nl_cb);
5029 nl80211_destroy_bss(drv->first_bss);
5031 os_free(drv->filter_ssids);
5033 os_free(drv->auth_ie);
5035 if (drv->in_interface_list)
5036 dl_list_del(&drv->list);
5038 os_free(drv->extended_capa);
5039 os_free(drv->extended_capa_mask);
5040 os_free(drv->first_bss);
5046 * wpa_driver_nl80211_scan_timeout - Scan timeout to report scan completion
5047 * @eloop_ctx: Driver private data
5048 * @timeout_ctx: ctx argument given to wpa_driver_nl80211_init()
5050 * This function can be used as registered timeout when starting a scan to
5051 * generate a scan completed event if the driver does not report this.
5053 static void wpa_driver_nl80211_scan_timeout(void *eloop_ctx, void *timeout_ctx)
5055 struct wpa_driver_nl80211_data *drv = eloop_ctx;
5056 if (drv->ap_scan_as_station != NL80211_IFTYPE_UNSPECIFIED) {
5057 wpa_driver_nl80211_set_mode(drv->first_bss,
5058 drv->ap_scan_as_station);
5059 drv->ap_scan_as_station = NL80211_IFTYPE_UNSPECIFIED;
5061 wpa_printf(MSG_DEBUG, "Scan timeout - try to get results");
5062 wpa_supplicant_event(timeout_ctx, EVENT_SCAN_RESULTS, NULL);
5066 static struct nl_msg *
5067 nl80211_scan_common(struct wpa_driver_nl80211_data *drv, u8 cmd,
5068 struct wpa_driver_scan_params *params, u64 *wdev_id)
5074 msg = nlmsg_alloc();
5078 nl80211_cmd(drv, msg, 0, cmd);
5081 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
5083 NLA_PUT_U64(msg, NL80211_ATTR_WDEV, *wdev_id);
5085 if (params->num_ssids) {
5086 struct nlattr *ssids;
5088 ssids = nla_nest_start(msg, NL80211_ATTR_SCAN_SSIDS);
5091 for (i = 0; i < params->num_ssids; i++) {
5092 wpa_hexdump_ascii(MSG_MSGDUMP, "nl80211: Scan SSID",
5093 params->ssids[i].ssid,
5094 params->ssids[i].ssid_len);
5095 if (nla_put(msg, i + 1, params->ssids[i].ssid_len,
5096 params->ssids[i].ssid) < 0)
5099 nla_nest_end(msg, ssids);
5102 if (params->extra_ies) {
5103 wpa_hexdump(MSG_MSGDUMP, "nl80211: Scan extra IEs",
5104 params->extra_ies, params->extra_ies_len);
5105 if (nla_put(msg, NL80211_ATTR_IE, params->extra_ies_len,
5106 params->extra_ies) < 0)
5110 if (params->freqs) {
5111 struct nlattr *freqs;
5112 freqs = nla_nest_start(msg, NL80211_ATTR_SCAN_FREQUENCIES);
5115 for (i = 0; params->freqs[i]; i++) {
5116 wpa_printf(MSG_MSGDUMP, "nl80211: Scan frequency %u "
5117 "MHz", params->freqs[i]);
5118 if (nla_put_u32(msg, i + 1, params->freqs[i]) < 0)
5121 nla_nest_end(msg, freqs);
5124 os_free(drv->filter_ssids);
5125 drv->filter_ssids = params->filter_ssids;
5126 params->filter_ssids = NULL;
5127 drv->num_filter_ssids = params->num_filter_ssids;
5129 if (params->only_new_results) {
5130 wpa_printf(MSG_DEBUG, "nl80211: Add NL80211_SCAN_FLAG_FLUSH");
5131 scan_flags |= NL80211_SCAN_FLAG_FLUSH;
5134 if (params->low_priority && drv->have_low_prio_scan) {
5135 wpa_printf(MSG_DEBUG,
5136 "nl80211: Add NL80211_SCAN_FLAG_LOW_PRIORITY");
5137 scan_flags |= NL80211_SCAN_FLAG_LOW_PRIORITY;
5141 NLA_PUT_U32(msg, NL80211_ATTR_SCAN_FLAGS, scan_flags);
5153 * wpa_driver_nl80211_scan - Request the driver to initiate scan
5154 * @bss: Pointer to private driver data from wpa_driver_nl80211_init()
5155 * @params: Scan parameters
5156 * Returns: 0 on success, -1 on failure
5158 static int wpa_driver_nl80211_scan(struct i802_bss *bss,
5159 struct wpa_driver_scan_params *params)
5161 struct wpa_driver_nl80211_data *drv = bss->drv;
5162 int ret = -1, timeout;
5163 struct nl_msg *msg = NULL;
5165 wpa_dbg(drv->ctx, MSG_DEBUG, "nl80211: scan request");
5166 drv->scan_for_auth = 0;
5168 msg = nl80211_scan_common(drv, NL80211_CMD_TRIGGER_SCAN, params,
5169 bss->wdev_id_set ? &bss->wdev_id : NULL);
5173 if (params->p2p_probe) {
5174 struct nlattr *rates;
5176 wpa_printf(MSG_DEBUG, "nl80211: P2P probe - mask SuppRates");
5178 rates = nla_nest_start(msg, NL80211_ATTR_SCAN_SUPP_RATES);
5180 goto nla_put_failure;
5183 * Remove 2.4 GHz rates 1, 2, 5.5, 11 Mbps from supported rates
5184 * by masking out everything else apart from the OFDM rates 6,
5185 * 9, 12, 18, 24, 36, 48, 54 Mbps from non-MCS rates. All 5 GHz
5186 * rates are left enabled.
5188 NLA_PUT(msg, NL80211_BAND_2GHZ, 8,
5189 "\x0c\x12\x18\x24\x30\x48\x60\x6c");
5190 nla_nest_end(msg, rates);
5192 NLA_PUT_FLAG(msg, NL80211_ATTR_TX_NO_CCK_RATE);
5195 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
5198 wpa_printf(MSG_DEBUG, "nl80211: Scan trigger failed: ret=%d "
5199 "(%s)", ret, strerror(-ret));
5200 if (drv->hostapd && is_ap_interface(drv->nlmode)) {
5201 enum nl80211_iftype old_mode = drv->nlmode;
5204 * mac80211 does not allow scan requests in AP mode, so
5205 * try to do this in station mode.
5207 if (wpa_driver_nl80211_set_mode(
5208 bss, NL80211_IFTYPE_STATION))
5209 goto nla_put_failure;
5211 if (wpa_driver_nl80211_scan(bss, params)) {
5212 wpa_driver_nl80211_set_mode(bss, drv->nlmode);
5213 goto nla_put_failure;
5216 /* Restore AP mode when processing scan results */
5217 drv->ap_scan_as_station = old_mode;
5220 goto nla_put_failure;
5223 drv->scan_state = SCAN_REQUESTED;
5224 /* Not all drivers generate "scan completed" wireless event, so try to
5225 * read results after a timeout. */
5227 if (drv->scan_complete_events) {
5229 * The driver seems to deliver events to notify when scan is
5230 * complete, so use longer timeout to avoid race conditions
5231 * with scanning and following association request.
5235 wpa_printf(MSG_DEBUG, "Scan requested (ret=%d) - scan timeout %d "
5236 "seconds", ret, timeout);
5237 eloop_cancel_timeout(wpa_driver_nl80211_scan_timeout, drv, drv->ctx);
5238 eloop_register_timeout(timeout, 0, wpa_driver_nl80211_scan_timeout,
5248 * wpa_driver_nl80211_sched_scan - Initiate a scheduled scan
5249 * @priv: Pointer to private driver data from wpa_driver_nl80211_init()
5250 * @params: Scan parameters
5251 * @interval: Interval between scan cycles in milliseconds
5252 * Returns: 0 on success, -1 on failure or if not supported
5254 static int wpa_driver_nl80211_sched_scan(void *priv,
5255 struct wpa_driver_scan_params *params,
5258 struct i802_bss *bss = priv;
5259 struct wpa_driver_nl80211_data *drv = bss->drv;
5264 wpa_dbg(drv->ctx, MSG_DEBUG, "nl80211: sched_scan request");
5267 if (!drv->capa.sched_scan_supported)
5268 return android_pno_start(bss, params);
5269 #endif /* ANDROID */
5271 msg = nl80211_scan_common(drv, NL80211_CMD_START_SCHED_SCAN, params,
5272 bss->wdev_id_set ? &bss->wdev_id : NULL);
5274 goto nla_put_failure;
5276 NLA_PUT_U32(msg, NL80211_ATTR_SCHED_SCAN_INTERVAL, interval);
5278 if ((drv->num_filter_ssids &&
5279 (int) drv->num_filter_ssids <= drv->capa.max_match_sets) ||
5280 params->filter_rssi) {
5281 struct nlattr *match_sets;
5282 match_sets = nla_nest_start(msg, NL80211_ATTR_SCHED_SCAN_MATCH);
5283 if (match_sets == NULL)
5284 goto nla_put_failure;
5286 for (i = 0; i < drv->num_filter_ssids; i++) {
5287 struct nlattr *match_set_ssid;
5288 wpa_hexdump_ascii(MSG_MSGDUMP,
5289 "nl80211: Sched scan filter SSID",
5290 drv->filter_ssids[i].ssid,
5291 drv->filter_ssids[i].ssid_len);
5293 match_set_ssid = nla_nest_start(msg, i + 1);
5294 if (match_set_ssid == NULL)
5295 goto nla_put_failure;
5296 NLA_PUT(msg, NL80211_ATTR_SCHED_SCAN_MATCH_SSID,
5297 drv->filter_ssids[i].ssid_len,
5298 drv->filter_ssids[i].ssid);
5299 if (params->filter_rssi)
5301 NL80211_SCHED_SCAN_MATCH_ATTR_RSSI,
5302 params->filter_rssi);
5304 nla_nest_end(msg, match_set_ssid);
5308 * Due to backward compatibility code, newer kernels treat this
5309 * matchset (with only an RSSI filter) as the default for all
5310 * other matchsets, unless it's the only one, in which case the
5311 * matchset will actually allow all SSIDs above the RSSI.
5313 if (params->filter_rssi) {
5314 struct nlattr *match_set_rssi;
5315 match_set_rssi = nla_nest_start(msg, 0);
5316 if (match_set_rssi == NULL)
5317 goto nla_put_failure;
5318 NLA_PUT_U32(msg, NL80211_SCHED_SCAN_MATCH_ATTR_RSSI,
5319 params->filter_rssi);
5320 wpa_printf(MSG_MSGDUMP,
5321 "nl80211: Sched scan RSSI filter %d dBm",
5322 params->filter_rssi);
5323 nla_nest_end(msg, match_set_rssi);
5326 nla_nest_end(msg, match_sets);
5329 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
5331 /* TODO: if we get an error here, we should fall back to normal scan */
5335 wpa_printf(MSG_DEBUG, "nl80211: Sched scan start failed: "
5336 "ret=%d (%s)", ret, strerror(-ret));
5337 goto nla_put_failure;
5340 wpa_printf(MSG_DEBUG, "nl80211: Sched scan requested (ret=%d) - "
5341 "scan interval %d msec", ret, interval);
5350 * wpa_driver_nl80211_stop_sched_scan - Stop a scheduled scan
5351 * @priv: Pointer to private driver data from wpa_driver_nl80211_init()
5352 * Returns: 0 on success, -1 on failure or if not supported
5354 static int wpa_driver_nl80211_stop_sched_scan(void *priv)
5356 struct i802_bss *bss = priv;
5357 struct wpa_driver_nl80211_data *drv = bss->drv;
5362 if (!drv->capa.sched_scan_supported)
5363 return android_pno_stop(bss);
5364 #endif /* ANDROID */
5366 msg = nlmsg_alloc();
5370 nl80211_cmd(drv, msg, 0, NL80211_CMD_STOP_SCHED_SCAN);
5372 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
5374 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
5377 wpa_printf(MSG_DEBUG, "nl80211: Sched scan stop failed: "
5378 "ret=%d (%s)", ret, strerror(-ret));
5379 goto nla_put_failure;
5382 wpa_printf(MSG_DEBUG, "nl80211: Sched scan stop sent (ret=%d)", ret);
5390 static const u8 * nl80211_get_ie(const u8 *ies, size_t ies_len, u8 ie)
5392 const u8 *end, *pos;
5398 end = ies + ies_len;
5400 while (pos + 1 < end) {
5401 if (pos + 2 + pos[1] > end)
5412 static int nl80211_scan_filtered(struct wpa_driver_nl80211_data *drv,
5413 const u8 *ie, size_t ie_len)
5418 if (drv->filter_ssids == NULL)
5421 ssid = nl80211_get_ie(ie, ie_len, WLAN_EID_SSID);
5425 for (i = 0; i < drv->num_filter_ssids; i++) {
5426 if (ssid[1] == drv->filter_ssids[i].ssid_len &&
5427 os_memcmp(ssid + 2, drv->filter_ssids[i].ssid, ssid[1]) ==
5436 static int bss_info_handler(struct nl_msg *msg, void *arg)
5438 struct nlattr *tb[NL80211_ATTR_MAX + 1];
5439 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
5440 struct nlattr *bss[NL80211_BSS_MAX + 1];
5441 static struct nla_policy bss_policy[NL80211_BSS_MAX + 1] = {
5442 [NL80211_BSS_BSSID] = { .type = NLA_UNSPEC },
5443 [NL80211_BSS_FREQUENCY] = { .type = NLA_U32 },
5444 [NL80211_BSS_TSF] = { .type = NLA_U64 },
5445 [NL80211_BSS_BEACON_INTERVAL] = { .type = NLA_U16 },
5446 [NL80211_BSS_CAPABILITY] = { .type = NLA_U16 },
5447 [NL80211_BSS_INFORMATION_ELEMENTS] = { .type = NLA_UNSPEC },
5448 [NL80211_BSS_SIGNAL_MBM] = { .type = NLA_U32 },
5449 [NL80211_BSS_SIGNAL_UNSPEC] = { .type = NLA_U8 },
5450 [NL80211_BSS_STATUS] = { .type = NLA_U32 },
5451 [NL80211_BSS_SEEN_MS_AGO] = { .type = NLA_U32 },
5452 [NL80211_BSS_BEACON_IES] = { .type = NLA_UNSPEC },
5454 struct nl80211_bss_info_arg *_arg = arg;
5455 struct wpa_scan_results *res = _arg->res;
5456 struct wpa_scan_res **tmp;
5457 struct wpa_scan_res *r;
5458 const u8 *ie, *beacon_ie;
5459 size_t ie_len, beacon_ie_len;
5463 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
5464 genlmsg_attrlen(gnlh, 0), NULL);
5465 if (!tb[NL80211_ATTR_BSS])
5467 if (nla_parse_nested(bss, NL80211_BSS_MAX, tb[NL80211_ATTR_BSS],
5470 if (bss[NL80211_BSS_STATUS]) {
5471 enum nl80211_bss_status status;
5472 status = nla_get_u32(bss[NL80211_BSS_STATUS]);
5473 if (status == NL80211_BSS_STATUS_ASSOCIATED &&
5474 bss[NL80211_BSS_FREQUENCY]) {
5476 nla_get_u32(bss[NL80211_BSS_FREQUENCY]);
5477 wpa_printf(MSG_DEBUG, "nl80211: Associated on %u MHz",
5480 if (status == NL80211_BSS_STATUS_IBSS_JOINED &&
5481 bss[NL80211_BSS_FREQUENCY]) {
5483 nla_get_u32(bss[NL80211_BSS_FREQUENCY]);
5484 wpa_printf(MSG_DEBUG, "nl80211: IBSS-joined on %u MHz",
5487 if (status == NL80211_BSS_STATUS_ASSOCIATED &&
5488 bss[NL80211_BSS_BSSID]) {
5489 os_memcpy(_arg->assoc_bssid,
5490 nla_data(bss[NL80211_BSS_BSSID]), ETH_ALEN);
5491 wpa_printf(MSG_DEBUG, "nl80211: Associated with "
5492 MACSTR, MAC2STR(_arg->assoc_bssid));
5497 if (bss[NL80211_BSS_INFORMATION_ELEMENTS]) {
5498 ie = nla_data(bss[NL80211_BSS_INFORMATION_ELEMENTS]);
5499 ie_len = nla_len(bss[NL80211_BSS_INFORMATION_ELEMENTS]);
5504 if (bss[NL80211_BSS_BEACON_IES]) {
5505 beacon_ie = nla_data(bss[NL80211_BSS_BEACON_IES]);
5506 beacon_ie_len = nla_len(bss[NL80211_BSS_BEACON_IES]);
5512 if (nl80211_scan_filtered(_arg->drv, ie ? ie : beacon_ie,
5513 ie ? ie_len : beacon_ie_len))
5516 r = os_zalloc(sizeof(*r) + ie_len + beacon_ie_len);
5519 if (bss[NL80211_BSS_BSSID])
5520 os_memcpy(r->bssid, nla_data(bss[NL80211_BSS_BSSID]),
5522 if (bss[NL80211_BSS_FREQUENCY])
5523 r->freq = nla_get_u32(bss[NL80211_BSS_FREQUENCY]);
5524 if (bss[NL80211_BSS_BEACON_INTERVAL])
5525 r->beacon_int = nla_get_u16(bss[NL80211_BSS_BEACON_INTERVAL]);
5526 if (bss[NL80211_BSS_CAPABILITY])
5527 r->caps = nla_get_u16(bss[NL80211_BSS_CAPABILITY]);
5528 r->flags |= WPA_SCAN_NOISE_INVALID;
5529 if (bss[NL80211_BSS_SIGNAL_MBM]) {
5530 r->level = nla_get_u32(bss[NL80211_BSS_SIGNAL_MBM]);
5531 r->level /= 100; /* mBm to dBm */
5532 r->flags |= WPA_SCAN_LEVEL_DBM | WPA_SCAN_QUAL_INVALID;
5533 } else if (bss[NL80211_BSS_SIGNAL_UNSPEC]) {
5534 r->level = nla_get_u8(bss[NL80211_BSS_SIGNAL_UNSPEC]);
5535 r->flags |= WPA_SCAN_QUAL_INVALID;
5537 r->flags |= WPA_SCAN_LEVEL_INVALID | WPA_SCAN_QUAL_INVALID;
5538 if (bss[NL80211_BSS_TSF])
5539 r->tsf = nla_get_u64(bss[NL80211_BSS_TSF]);
5540 if (bss[NL80211_BSS_SEEN_MS_AGO])
5541 r->age = nla_get_u32(bss[NL80211_BSS_SEEN_MS_AGO]);
5543 pos = (u8 *) (r + 1);
5545 os_memcpy(pos, ie, ie_len);
5548 r->beacon_ie_len = beacon_ie_len;
5550 os_memcpy(pos, beacon_ie, beacon_ie_len);
5552 if (bss[NL80211_BSS_STATUS]) {
5553 enum nl80211_bss_status status;
5554 status = nla_get_u32(bss[NL80211_BSS_STATUS]);
5556 case NL80211_BSS_STATUS_AUTHENTICATED:
5557 r->flags |= WPA_SCAN_AUTHENTICATED;
5559 case NL80211_BSS_STATUS_ASSOCIATED:
5560 r->flags |= WPA_SCAN_ASSOCIATED;
5568 * cfg80211 maintains separate BSS table entries for APs if the same
5569 * BSSID,SSID pair is seen on multiple channels. wpa_supplicant does
5570 * not use frequency as a separate key in the BSS table, so filter out
5571 * duplicated entries. Prefer associated BSS entry in such a case in
5572 * order to get the correct frequency into the BSS table. Similarly,
5573 * prefer newer entries over older.
5575 for (i = 0; i < res->num; i++) {
5577 if (os_memcmp(res->res[i]->bssid, r->bssid, ETH_ALEN) != 0)
5580 s1 = nl80211_get_ie((u8 *) (res->res[i] + 1),
5581 res->res[i]->ie_len, WLAN_EID_SSID);
5582 s2 = nl80211_get_ie((u8 *) (r + 1), r->ie_len, WLAN_EID_SSID);
5583 if (s1 == NULL || s2 == NULL || s1[1] != s2[1] ||
5584 os_memcmp(s1, s2, 2 + s1[1]) != 0)
5587 /* Same BSSID,SSID was already included in scan results */
5588 wpa_printf(MSG_DEBUG, "nl80211: Remove duplicated scan result "
5589 "for " MACSTR, MAC2STR(r->bssid));
5591 if (((r->flags & WPA_SCAN_ASSOCIATED) &&
5592 !(res->res[i]->flags & WPA_SCAN_ASSOCIATED)) ||
5593 r->age < res->res[i]->age) {
5594 os_free(res->res[i]);
5601 tmp = os_realloc_array(res->res, res->num + 1,
5602 sizeof(struct wpa_scan_res *));
5607 tmp[res->num++] = r;
5614 static void clear_state_mismatch(struct wpa_driver_nl80211_data *drv,
5617 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME) {
5618 wpa_printf(MSG_DEBUG, "nl80211: Clear possible state "
5619 "mismatch (" MACSTR ")", MAC2STR(addr));
5620 wpa_driver_nl80211_mlme(drv, addr,
5621 NL80211_CMD_DEAUTHENTICATE,
5622 WLAN_REASON_PREV_AUTH_NOT_VALID, 1);
5627 static void wpa_driver_nl80211_check_bss_status(
5628 struct wpa_driver_nl80211_data *drv, struct wpa_scan_results *res)
5632 for (i = 0; i < res->num; i++) {
5633 struct wpa_scan_res *r = res->res[i];
5634 if (r->flags & WPA_SCAN_AUTHENTICATED) {
5635 wpa_printf(MSG_DEBUG, "nl80211: Scan results "
5636 "indicates BSS status with " MACSTR
5637 " as authenticated",
5639 if (is_sta_interface(drv->nlmode) &&
5640 os_memcmp(r->bssid, drv->bssid, ETH_ALEN) != 0 &&
5641 os_memcmp(r->bssid, drv->auth_bssid, ETH_ALEN) !=
5643 wpa_printf(MSG_DEBUG, "nl80211: Unknown BSSID"
5644 " in local state (auth=" MACSTR
5645 " assoc=" MACSTR ")",
5646 MAC2STR(drv->auth_bssid),
5647 MAC2STR(drv->bssid));
5648 clear_state_mismatch(drv, r->bssid);
5652 if (r->flags & WPA_SCAN_ASSOCIATED) {
5653 wpa_printf(MSG_DEBUG, "nl80211: Scan results "
5654 "indicate BSS status with " MACSTR
5657 if (is_sta_interface(drv->nlmode) &&
5659 wpa_printf(MSG_DEBUG, "nl80211: Local state "
5660 "(not associated) does not match "
5662 clear_state_mismatch(drv, r->bssid);
5663 } else if (is_sta_interface(drv->nlmode) &&
5664 os_memcmp(drv->bssid, r->bssid, ETH_ALEN) !=
5666 wpa_printf(MSG_DEBUG, "nl80211: Local state "
5667 "(associated with " MACSTR ") does "
5668 "not match with BSS state",
5669 MAC2STR(drv->bssid));
5670 clear_state_mismatch(drv, r->bssid);
5671 clear_state_mismatch(drv, drv->bssid);
5678 static struct wpa_scan_results *
5679 nl80211_get_scan_results(struct wpa_driver_nl80211_data *drv)
5682 struct wpa_scan_results *res;
5684 struct nl80211_bss_info_arg arg;
5686 res = os_zalloc(sizeof(*res));
5689 msg = nlmsg_alloc();
5691 goto nla_put_failure;
5693 nl80211_cmd(drv, msg, NLM_F_DUMP, NL80211_CMD_GET_SCAN);
5694 if (nl80211_set_iface_id(msg, drv->first_bss) < 0)
5695 goto nla_put_failure;
5699 ret = send_and_recv_msgs(drv, msg, bss_info_handler, &arg);
5702 wpa_printf(MSG_DEBUG, "nl80211: Received scan results (%lu "
5703 "BSSes)", (unsigned long) res->num);
5704 nl80211_get_noise_for_scan_results(drv, res);
5707 wpa_printf(MSG_DEBUG, "nl80211: Scan result fetch failed: ret=%d "
5708 "(%s)", ret, strerror(-ret));
5711 wpa_scan_results_free(res);
5717 * wpa_driver_nl80211_get_scan_results - Fetch the latest scan results
5718 * @priv: Pointer to private wext data from wpa_driver_nl80211_init()
5719 * Returns: Scan results on success, -1 on failure
5721 static struct wpa_scan_results *
5722 wpa_driver_nl80211_get_scan_results(void *priv)
5724 struct i802_bss *bss = priv;
5725 struct wpa_driver_nl80211_data *drv = bss->drv;
5726 struct wpa_scan_results *res;
5728 res = nl80211_get_scan_results(drv);
5730 wpa_driver_nl80211_check_bss_status(drv, res);
5735 static void nl80211_dump_scan(struct wpa_driver_nl80211_data *drv)
5737 struct wpa_scan_results *res;
5740 res = nl80211_get_scan_results(drv);
5742 wpa_printf(MSG_DEBUG, "nl80211: Failed to get scan results");
5746 wpa_printf(MSG_DEBUG, "nl80211: Scan result dump");
5747 for (i = 0; i < res->num; i++) {
5748 struct wpa_scan_res *r = res->res[i];
5749 wpa_printf(MSG_DEBUG, "nl80211: %d/%d " MACSTR "%s%s",
5750 (int) i, (int) res->num, MAC2STR(r->bssid),
5751 r->flags & WPA_SCAN_AUTHENTICATED ? " [auth]" : "",
5752 r->flags & WPA_SCAN_ASSOCIATED ? " [assoc]" : "");
5755 wpa_scan_results_free(res);
5759 static u32 wpa_alg_to_cipher_suite(enum wpa_alg alg, size_t key_len)
5764 return WLAN_CIPHER_SUITE_WEP40;
5765 return WLAN_CIPHER_SUITE_WEP104;
5767 return WLAN_CIPHER_SUITE_TKIP;
5769 return WLAN_CIPHER_SUITE_CCMP;
5771 return WLAN_CIPHER_SUITE_GCMP;
5772 case WPA_ALG_CCMP_256:
5773 return WLAN_CIPHER_SUITE_CCMP_256;
5774 case WPA_ALG_GCMP_256:
5775 return WLAN_CIPHER_SUITE_GCMP_256;
5777 return WLAN_CIPHER_SUITE_AES_CMAC;
5778 case WPA_ALG_BIP_GMAC_128:
5779 return WLAN_CIPHER_SUITE_BIP_GMAC_128;
5780 case WPA_ALG_BIP_GMAC_256:
5781 return WLAN_CIPHER_SUITE_BIP_GMAC_256;
5782 case WPA_ALG_BIP_CMAC_256:
5783 return WLAN_CIPHER_SUITE_BIP_CMAC_256;
5785 return WLAN_CIPHER_SUITE_SMS4;
5787 return WLAN_CIPHER_SUITE_KRK;
5790 wpa_printf(MSG_ERROR, "nl80211: Unexpected encryption algorithm %d",
5795 wpa_printf(MSG_ERROR, "nl80211: Unsupported encryption algorithm %d",
5801 static u32 wpa_cipher_to_cipher_suite(unsigned int cipher)
5804 case WPA_CIPHER_CCMP_256:
5805 return WLAN_CIPHER_SUITE_CCMP_256;
5806 case WPA_CIPHER_GCMP_256:
5807 return WLAN_CIPHER_SUITE_GCMP_256;
5808 case WPA_CIPHER_CCMP:
5809 return WLAN_CIPHER_SUITE_CCMP;
5810 case WPA_CIPHER_GCMP:
5811 return WLAN_CIPHER_SUITE_GCMP;
5812 case WPA_CIPHER_TKIP:
5813 return WLAN_CIPHER_SUITE_TKIP;
5814 case WPA_CIPHER_WEP104:
5815 return WLAN_CIPHER_SUITE_WEP104;
5816 case WPA_CIPHER_WEP40:
5817 return WLAN_CIPHER_SUITE_WEP40;
5818 case WPA_CIPHER_GTK_NOT_USED:
5819 return WLAN_CIPHER_SUITE_NO_GROUP_ADDR;
5826 static int wpa_cipher_to_cipher_suites(unsigned int ciphers, u32 suites[],
5831 if (num_suites < max_suites && ciphers & WPA_CIPHER_CCMP_256)
5832 suites[num_suites++] = WLAN_CIPHER_SUITE_CCMP_256;
5833 if (num_suites < max_suites && ciphers & WPA_CIPHER_GCMP_256)
5834 suites[num_suites++] = WLAN_CIPHER_SUITE_GCMP_256;
5835 if (num_suites < max_suites && ciphers & WPA_CIPHER_CCMP)
5836 suites[num_suites++] = WLAN_CIPHER_SUITE_CCMP;
5837 if (num_suites < max_suites && ciphers & WPA_CIPHER_GCMP)
5838 suites[num_suites++] = WLAN_CIPHER_SUITE_GCMP;
5839 if (num_suites < max_suites && ciphers & WPA_CIPHER_TKIP)
5840 suites[num_suites++] = WLAN_CIPHER_SUITE_TKIP;
5841 if (num_suites < max_suites && ciphers & WPA_CIPHER_WEP104)
5842 suites[num_suites++] = WLAN_CIPHER_SUITE_WEP104;
5843 if (num_suites < max_suites && ciphers & WPA_CIPHER_WEP40)
5844 suites[num_suites++] = WLAN_CIPHER_SUITE_WEP40;
5850 static int wpa_driver_nl80211_set_key(const char *ifname, struct i802_bss *bss,
5851 enum wpa_alg alg, const u8 *addr,
5852 int key_idx, int set_tx,
5853 const u8 *seq, size_t seq_len,
5854 const u8 *key, size_t key_len)
5856 struct wpa_driver_nl80211_data *drv = bss->drv;
5862 /* Ignore for P2P Device */
5863 if (drv->nlmode == NL80211_IFTYPE_P2P_DEVICE)
5866 ifindex = if_nametoindex(ifname);
5867 wpa_printf(MSG_DEBUG, "%s: ifindex=%d (%s) alg=%d addr=%p key_idx=%d "
5868 "set_tx=%d seq_len=%lu key_len=%lu",
5869 __func__, ifindex, ifname, alg, addr, key_idx, set_tx,
5870 (unsigned long) seq_len, (unsigned long) key_len);
5872 if (key_idx == -1) {
5876 #endif /* CONFIG_TDLS */
5878 msg = nlmsg_alloc();
5882 if (alg == WPA_ALG_NONE) {
5883 nl80211_cmd(drv, msg, 0, NL80211_CMD_DEL_KEY);
5885 nl80211_cmd(drv, msg, 0, NL80211_CMD_NEW_KEY);
5886 NLA_PUT(msg, NL80211_ATTR_KEY_DATA, key_len, key);
5887 wpa_hexdump_key(MSG_DEBUG, "nl80211: KEY_DATA", key, key_len);
5888 NLA_PUT_U32(msg, NL80211_ATTR_KEY_CIPHER,
5889 wpa_alg_to_cipher_suite(alg, key_len));
5892 if (seq && seq_len) {
5893 NLA_PUT(msg, NL80211_ATTR_KEY_SEQ, seq_len, seq);
5894 wpa_hexdump(MSG_DEBUG, "nl80211: KEY_SEQ", seq, seq_len);
5897 if (addr && !is_broadcast_ether_addr(addr)) {
5898 wpa_printf(MSG_DEBUG, " addr=" MACSTR, MAC2STR(addr));
5899 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
5901 if (alg != WPA_ALG_WEP && key_idx && !set_tx) {
5902 wpa_printf(MSG_DEBUG, " RSN IBSS RX GTK");
5903 NLA_PUT_U32(msg, NL80211_ATTR_KEY_TYPE,
5904 NL80211_KEYTYPE_GROUP);
5906 } else if (addr && is_broadcast_ether_addr(addr)) {
5907 struct nlattr *types;
5909 wpa_printf(MSG_DEBUG, " broadcast key");
5911 types = nla_nest_start(msg, NL80211_ATTR_KEY_DEFAULT_TYPES);
5913 goto nla_put_failure;
5914 NLA_PUT_FLAG(msg, NL80211_KEY_DEFAULT_TYPE_MULTICAST);
5915 nla_nest_end(msg, types);
5917 NLA_PUT_U8(msg, NL80211_ATTR_KEY_IDX, key_idx);
5918 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, ifindex);
5920 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
5921 if ((ret == -ENOENT || ret == -ENOLINK) && alg == WPA_ALG_NONE)
5924 wpa_printf(MSG_DEBUG, "nl80211: set_key failed; err=%d %s)",
5925 ret, strerror(-ret));
5928 * If we failed or don't need to set the default TX key (below),
5931 if (ret || !set_tx || alg == WPA_ALG_NONE || tdls)
5933 if (is_ap_interface(drv->nlmode) && addr &&
5934 !is_broadcast_ether_addr(addr))
5937 msg = nlmsg_alloc();
5941 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_KEY);
5942 NLA_PUT_U8(msg, NL80211_ATTR_KEY_IDX, key_idx);
5943 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, ifindex);
5944 if (alg == WPA_ALG_IGTK)
5945 NLA_PUT_FLAG(msg, NL80211_ATTR_KEY_DEFAULT_MGMT);
5947 NLA_PUT_FLAG(msg, NL80211_ATTR_KEY_DEFAULT);
5948 if (addr && is_broadcast_ether_addr(addr)) {
5949 struct nlattr *types;
5951 types = nla_nest_start(msg, NL80211_ATTR_KEY_DEFAULT_TYPES);
5953 goto nla_put_failure;
5954 NLA_PUT_FLAG(msg, NL80211_KEY_DEFAULT_TYPE_MULTICAST);
5955 nla_nest_end(msg, types);
5957 struct nlattr *types;
5959 types = nla_nest_start(msg, NL80211_ATTR_KEY_DEFAULT_TYPES);
5961 goto nla_put_failure;
5962 NLA_PUT_FLAG(msg, NL80211_KEY_DEFAULT_TYPE_UNICAST);
5963 nla_nest_end(msg, types);
5966 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
5970 wpa_printf(MSG_DEBUG, "nl80211: set_key default failed; "
5971 "err=%d %s)", ret, strerror(-ret));
5980 static int nl_add_key(struct nl_msg *msg, enum wpa_alg alg,
5981 int key_idx, int defkey,
5982 const u8 *seq, size_t seq_len,
5983 const u8 *key, size_t key_len)
5985 struct nlattr *key_attr = nla_nest_start(msg, NL80211_ATTR_KEY);
5989 if (defkey && alg == WPA_ALG_IGTK)
5990 NLA_PUT_FLAG(msg, NL80211_KEY_DEFAULT_MGMT);
5992 NLA_PUT_FLAG(msg, NL80211_KEY_DEFAULT);
5994 NLA_PUT_U8(msg, NL80211_KEY_IDX, key_idx);
5996 NLA_PUT_U32(msg, NL80211_KEY_CIPHER,
5997 wpa_alg_to_cipher_suite(alg, key_len));
6000 NLA_PUT(msg, NL80211_KEY_SEQ, seq_len, seq);
6002 NLA_PUT(msg, NL80211_KEY_DATA, key_len, key);
6004 nla_nest_end(msg, key_attr);
6012 static int nl80211_set_conn_keys(struct wpa_driver_associate_params *params,
6016 struct nlattr *nl_keys, *nl_key;
6018 for (i = 0; i < 4; i++) {
6019 if (!params->wep_key[i])
6024 if (params->wps == WPS_MODE_PRIVACY)
6026 if (params->pairwise_suite &&
6027 params->pairwise_suite != WPA_CIPHER_NONE)
6033 NLA_PUT_FLAG(msg, NL80211_ATTR_PRIVACY);
6035 nl_keys = nla_nest_start(msg, NL80211_ATTR_KEYS);
6037 goto nla_put_failure;
6039 for (i = 0; i < 4; i++) {
6040 if (!params->wep_key[i])
6043 nl_key = nla_nest_start(msg, i);
6045 goto nla_put_failure;
6047 NLA_PUT(msg, NL80211_KEY_DATA, params->wep_key_len[i],
6048 params->wep_key[i]);
6049 if (params->wep_key_len[i] == 5)
6050 NLA_PUT_U32(msg, NL80211_KEY_CIPHER,
6051 WLAN_CIPHER_SUITE_WEP40);
6053 NLA_PUT_U32(msg, NL80211_KEY_CIPHER,
6054 WLAN_CIPHER_SUITE_WEP104);
6056 NLA_PUT_U8(msg, NL80211_KEY_IDX, i);
6058 if (i == params->wep_tx_keyidx)
6059 NLA_PUT_FLAG(msg, NL80211_KEY_DEFAULT);
6061 nla_nest_end(msg, nl_key);
6063 nla_nest_end(msg, nl_keys);
6072 static int wpa_driver_nl80211_mlme(struct wpa_driver_nl80211_data *drv,
6073 const u8 *addr, int cmd, u16 reason_code,
6074 int local_state_change)
6079 msg = nlmsg_alloc();
6083 nl80211_cmd(drv, msg, 0, cmd);
6085 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
6086 NLA_PUT_U16(msg, NL80211_ATTR_REASON_CODE, reason_code);
6088 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
6089 if (local_state_change)
6090 NLA_PUT_FLAG(msg, NL80211_ATTR_LOCAL_STATE_CHANGE);
6092 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
6095 wpa_dbg(drv->ctx, MSG_DEBUG,
6096 "nl80211: MLME command failed: reason=%u ret=%d (%s)",
6097 reason_code, ret, strerror(-ret));
6098 goto nla_put_failure;
6108 static int wpa_driver_nl80211_disconnect(struct wpa_driver_nl80211_data *drv,
6113 wpa_printf(MSG_DEBUG, "%s(reason_code=%d)", __func__, reason_code);
6114 nl80211_mark_disconnected(drv);
6115 /* Disconnect command doesn't need BSSID - it uses cached value */
6116 ret = wpa_driver_nl80211_mlme(drv, NULL, NL80211_CMD_DISCONNECT,
6119 * For locally generated disconnect, supplicant already generates a
6120 * DEAUTH event, so ignore the event from NL80211.
6122 drv->ignore_next_local_disconnect = ret == 0;
6128 static int wpa_driver_nl80211_deauthenticate(struct i802_bss *bss,
6129 const u8 *addr, int reason_code)
6131 struct wpa_driver_nl80211_data *drv = bss->drv;
6134 if (drv->nlmode == NL80211_IFTYPE_ADHOC) {
6135 nl80211_mark_disconnected(drv);
6136 return nl80211_leave_ibss(drv);
6138 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME))
6139 return wpa_driver_nl80211_disconnect(drv, reason_code);
6140 wpa_printf(MSG_DEBUG, "%s(addr=" MACSTR " reason_code=%d)",
6141 __func__, MAC2STR(addr), reason_code);
6142 nl80211_mark_disconnected(drv);
6143 ret = wpa_driver_nl80211_mlme(drv, addr, NL80211_CMD_DEAUTHENTICATE,
6146 * For locally generated deauthenticate, supplicant already generates a
6147 * DEAUTH event, so ignore the event from NL80211.
6149 drv->ignore_next_local_deauth = ret == 0;
6154 static void nl80211_copy_auth_params(struct wpa_driver_nl80211_data *drv,
6155 struct wpa_driver_auth_params *params)
6159 drv->auth_freq = params->freq;
6160 drv->auth_alg = params->auth_alg;
6161 drv->auth_wep_tx_keyidx = params->wep_tx_keyidx;
6162 drv->auth_local_state_change = params->local_state_change;
6163 drv->auth_p2p = params->p2p;
6166 os_memcpy(drv->auth_bssid_, params->bssid, ETH_ALEN);
6168 os_memset(drv->auth_bssid_, 0, ETH_ALEN);
6171 os_memcpy(drv->auth_ssid, params->ssid, params->ssid_len);
6172 drv->auth_ssid_len = params->ssid_len;
6174 drv->auth_ssid_len = 0;
6177 os_free(drv->auth_ie);
6178 drv->auth_ie = NULL;
6179 drv->auth_ie_len = 0;
6181 drv->auth_ie = os_malloc(params->ie_len);
6183 os_memcpy(drv->auth_ie, params->ie, params->ie_len);
6184 drv->auth_ie_len = params->ie_len;
6188 for (i = 0; i < 4; i++) {
6189 if (params->wep_key[i] && params->wep_key_len[i] &&
6190 params->wep_key_len[i] <= 16) {
6191 os_memcpy(drv->auth_wep_key[i], params->wep_key[i],
6192 params->wep_key_len[i]);
6193 drv->auth_wep_key_len[i] = params->wep_key_len[i];
6195 drv->auth_wep_key_len[i] = 0;
6200 static int wpa_driver_nl80211_authenticate(
6201 struct i802_bss *bss, struct wpa_driver_auth_params *params)
6203 struct wpa_driver_nl80211_data *drv = bss->drv;
6206 enum nl80211_auth_type type;
6207 enum nl80211_iftype nlmode;
6211 is_retry = drv->retry_auth;
6212 drv->retry_auth = 0;
6213 drv->ignore_deauth_event = 0;
6215 nl80211_mark_disconnected(drv);
6216 os_memset(drv->auth_bssid, 0, ETH_ALEN);
6218 os_memcpy(drv->auth_attempt_bssid, params->bssid, ETH_ALEN);
6220 os_memset(drv->auth_attempt_bssid, 0, ETH_ALEN);
6221 /* FIX: IBSS mode */
6222 nlmode = params->p2p ?
6223 NL80211_IFTYPE_P2P_CLIENT : NL80211_IFTYPE_STATION;
6224 if (drv->nlmode != nlmode &&
6225 wpa_driver_nl80211_set_mode(bss, nlmode) < 0)
6229 msg = nlmsg_alloc();
6233 wpa_printf(MSG_DEBUG, "nl80211: Authenticate (ifindex=%d)",
6236 nl80211_cmd(drv, msg, 0, NL80211_CMD_AUTHENTICATE);
6238 for (i = 0; i < 4; i++) {
6239 if (!params->wep_key[i])
6241 wpa_driver_nl80211_set_key(bss->ifname, bss, WPA_ALG_WEP,
6243 i == params->wep_tx_keyidx, NULL, 0,
6245 params->wep_key_len[i]);
6246 if (params->wep_tx_keyidx != i)
6248 if (nl_add_key(msg, WPA_ALG_WEP, i, 1, NULL, 0,
6249 params->wep_key[i], params->wep_key_len[i])) {
6255 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
6256 if (params->bssid) {
6257 wpa_printf(MSG_DEBUG, " * bssid=" MACSTR,
6258 MAC2STR(params->bssid));
6259 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, params->bssid);
6262 wpa_printf(MSG_DEBUG, " * freq=%d", params->freq);
6263 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ, params->freq);
6266 wpa_hexdump_ascii(MSG_DEBUG, " * SSID",
6267 params->ssid, params->ssid_len);
6268 NLA_PUT(msg, NL80211_ATTR_SSID, params->ssid_len,
6271 wpa_hexdump(MSG_DEBUG, " * IEs", params->ie, params->ie_len);
6273 NLA_PUT(msg, NL80211_ATTR_IE, params->ie_len, params->ie);
6274 if (params->sae_data) {
6275 wpa_hexdump(MSG_DEBUG, " * SAE data", params->sae_data,
6276 params->sae_data_len);
6277 NLA_PUT(msg, NL80211_ATTR_SAE_DATA, params->sae_data_len,
6280 if (params->auth_alg & WPA_AUTH_ALG_OPEN)
6281 type = NL80211_AUTHTYPE_OPEN_SYSTEM;
6282 else if (params->auth_alg & WPA_AUTH_ALG_SHARED)
6283 type = NL80211_AUTHTYPE_SHARED_KEY;
6284 else if (params->auth_alg & WPA_AUTH_ALG_LEAP)
6285 type = NL80211_AUTHTYPE_NETWORK_EAP;
6286 else if (params->auth_alg & WPA_AUTH_ALG_FT)
6287 type = NL80211_AUTHTYPE_FT;
6288 else if (params->auth_alg & WPA_AUTH_ALG_SAE)
6289 type = NL80211_AUTHTYPE_SAE;
6291 goto nla_put_failure;
6292 wpa_printf(MSG_DEBUG, " * Auth Type %d", type);
6293 NLA_PUT_U32(msg, NL80211_ATTR_AUTH_TYPE, type);
6294 if (params->local_state_change) {
6295 wpa_printf(MSG_DEBUG, " * Local state change only");
6296 NLA_PUT_FLAG(msg, NL80211_ATTR_LOCAL_STATE_CHANGE);
6299 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
6302 wpa_dbg(drv->ctx, MSG_DEBUG,
6303 "nl80211: MLME command failed (auth): ret=%d (%s)",
6304 ret, strerror(-ret));
6306 if (ret == -EALREADY && count == 1 && params->bssid &&
6307 !params->local_state_change) {
6309 * mac80211 does not currently accept new
6310 * authentication if we are already authenticated. As a
6311 * workaround, force deauthentication and try again.
6313 wpa_printf(MSG_DEBUG, "nl80211: Retry authentication "
6314 "after forced deauthentication");
6315 drv->ignore_deauth_event = 1;
6316 wpa_driver_nl80211_deauthenticate(
6318 WLAN_REASON_PREV_AUTH_NOT_VALID);
6323 if (ret == -ENOENT && params->freq && !is_retry) {
6325 * cfg80211 has likely expired the BSS entry even
6326 * though it was previously available in our internal
6327 * BSS table. To recover quickly, start a single
6328 * channel scan on the specified channel.
6330 struct wpa_driver_scan_params scan;
6333 os_memset(&scan, 0, sizeof(scan));
6336 scan.ssids[0].ssid = params->ssid;
6337 scan.ssids[0].ssid_len = params->ssid_len;
6339 freqs[0] = params->freq;
6342 wpa_printf(MSG_DEBUG, "nl80211: Trigger single "
6343 "channel scan to refresh cfg80211 BSS "
6345 ret = wpa_driver_nl80211_scan(bss, &scan);
6347 nl80211_copy_auth_params(drv, params);
6348 drv->scan_for_auth = 1;
6350 } else if (is_retry) {
6352 * Need to indicate this with an event since the return
6353 * value from the retry is not delivered to core code.
6355 union wpa_event_data event;
6356 wpa_printf(MSG_DEBUG, "nl80211: Authentication retry "
6358 os_memset(&event, 0, sizeof(event));
6359 os_memcpy(event.timeout_event.addr, drv->auth_bssid_,
6361 wpa_supplicant_event(drv->ctx, EVENT_AUTH_TIMED_OUT,
6365 goto nla_put_failure;
6368 wpa_printf(MSG_DEBUG, "nl80211: Authentication request send "
6377 static int wpa_driver_nl80211_authenticate_retry(
6378 struct wpa_driver_nl80211_data *drv)
6380 struct wpa_driver_auth_params params;
6381 struct i802_bss *bss = drv->first_bss;
6384 wpa_printf(MSG_DEBUG, "nl80211: Try to authenticate again");
6386 os_memset(¶ms, 0, sizeof(params));
6387 params.freq = drv->auth_freq;
6388 params.auth_alg = drv->auth_alg;
6389 params.wep_tx_keyidx = drv->auth_wep_tx_keyidx;
6390 params.local_state_change = drv->auth_local_state_change;
6391 params.p2p = drv->auth_p2p;
6393 if (!is_zero_ether_addr(drv->auth_bssid_))
6394 params.bssid = drv->auth_bssid_;
6396 if (drv->auth_ssid_len) {
6397 params.ssid = drv->auth_ssid;
6398 params.ssid_len = drv->auth_ssid_len;
6401 params.ie = drv->auth_ie;
6402 params.ie_len = drv->auth_ie_len;
6404 for (i = 0; i < 4; i++) {
6405 if (drv->auth_wep_key_len[i]) {
6406 params.wep_key[i] = drv->auth_wep_key[i];
6407 params.wep_key_len[i] = drv->auth_wep_key_len[i];
6411 drv->retry_auth = 1;
6412 return wpa_driver_nl80211_authenticate(bss, ¶ms);
6416 struct phy_info_arg {
6418 struct hostapd_hw_modes *modes;
6419 int last_mode, last_chan_idx;
6422 static void phy_info_ht_capa(struct hostapd_hw_modes *mode, struct nlattr *capa,
6423 struct nlattr *ampdu_factor,
6424 struct nlattr *ampdu_density,
6425 struct nlattr *mcs_set)
6428 mode->ht_capab = nla_get_u16(capa);
6431 mode->a_mpdu_params |= nla_get_u8(ampdu_factor) & 0x03;
6434 mode->a_mpdu_params |= nla_get_u8(ampdu_density) << 2;
6436 if (mcs_set && nla_len(mcs_set) >= 16) {
6438 mcs = nla_data(mcs_set);
6439 os_memcpy(mode->mcs_set, mcs, 16);
6444 static void phy_info_vht_capa(struct hostapd_hw_modes *mode,
6445 struct nlattr *capa,
6446 struct nlattr *mcs_set)
6449 mode->vht_capab = nla_get_u32(capa);
6451 if (mcs_set && nla_len(mcs_set) >= 8) {
6453 mcs = nla_data(mcs_set);
6454 os_memcpy(mode->vht_mcs_set, mcs, 8);
6459 static void phy_info_freq(struct hostapd_hw_modes *mode,
6460 struct hostapd_channel_data *chan,
6461 struct nlattr *tb_freq[])
6464 chan->freq = nla_get_u32(tb_freq[NL80211_FREQUENCY_ATTR_FREQ]);
6466 chan->dfs_cac_ms = 0;
6467 if (ieee80211_freq_to_chan(chan->freq, &channel) != NUM_HOSTAPD_MODES)
6468 chan->chan = channel;
6470 if (tb_freq[NL80211_FREQUENCY_ATTR_DISABLED])
6471 chan->flag |= HOSTAPD_CHAN_DISABLED;
6472 if (tb_freq[NL80211_FREQUENCY_ATTR_NO_IR])
6473 chan->flag |= HOSTAPD_CHAN_PASSIVE_SCAN | HOSTAPD_CHAN_NO_IBSS;
6474 if (tb_freq[NL80211_FREQUENCY_ATTR_RADAR])
6475 chan->flag |= HOSTAPD_CHAN_RADAR;
6477 if (tb_freq[NL80211_FREQUENCY_ATTR_DFS_STATE]) {
6478 enum nl80211_dfs_state state =
6479 nla_get_u32(tb_freq[NL80211_FREQUENCY_ATTR_DFS_STATE]);
6482 case NL80211_DFS_USABLE:
6483 chan->flag |= HOSTAPD_CHAN_DFS_USABLE;
6485 case NL80211_DFS_AVAILABLE:
6486 chan->flag |= HOSTAPD_CHAN_DFS_AVAILABLE;
6488 case NL80211_DFS_UNAVAILABLE:
6489 chan->flag |= HOSTAPD_CHAN_DFS_UNAVAILABLE;
6494 if (tb_freq[NL80211_FREQUENCY_ATTR_DFS_CAC_TIME]) {
6495 chan->dfs_cac_ms = nla_get_u32(
6496 tb_freq[NL80211_FREQUENCY_ATTR_DFS_CAC_TIME]);
6501 static int phy_info_freqs(struct phy_info_arg *phy_info,
6502 struct hostapd_hw_modes *mode, struct nlattr *tb)
6504 static struct nla_policy freq_policy[NL80211_FREQUENCY_ATTR_MAX + 1] = {
6505 [NL80211_FREQUENCY_ATTR_FREQ] = { .type = NLA_U32 },
6506 [NL80211_FREQUENCY_ATTR_DISABLED] = { .type = NLA_FLAG },
6507 [NL80211_FREQUENCY_ATTR_NO_IR] = { .type = NLA_FLAG },
6508 [NL80211_FREQUENCY_ATTR_RADAR] = { .type = NLA_FLAG },
6509 [NL80211_FREQUENCY_ATTR_MAX_TX_POWER] = { .type = NLA_U32 },
6510 [NL80211_FREQUENCY_ATTR_DFS_STATE] = { .type = NLA_U32 },
6512 int new_channels = 0;
6513 struct hostapd_channel_data *channel;
6514 struct nlattr *tb_freq[NL80211_FREQUENCY_ATTR_MAX + 1];
6515 struct nlattr *nl_freq;
6521 nla_for_each_nested(nl_freq, tb, rem_freq) {
6522 nla_parse(tb_freq, NL80211_FREQUENCY_ATTR_MAX,
6523 nla_data(nl_freq), nla_len(nl_freq), freq_policy);
6524 if (!tb_freq[NL80211_FREQUENCY_ATTR_FREQ])
6529 channel = os_realloc_array(mode->channels,
6530 mode->num_channels + new_channels,
6531 sizeof(struct hostapd_channel_data));
6535 mode->channels = channel;
6536 mode->num_channels += new_channels;
6538 idx = phy_info->last_chan_idx;
6540 nla_for_each_nested(nl_freq, tb, rem_freq) {
6541 nla_parse(tb_freq, NL80211_FREQUENCY_ATTR_MAX,
6542 nla_data(nl_freq), nla_len(nl_freq), freq_policy);
6543 if (!tb_freq[NL80211_FREQUENCY_ATTR_FREQ])
6545 phy_info_freq(mode, &mode->channels[idx], tb_freq);
6548 phy_info->last_chan_idx = idx;
6554 static int phy_info_rates(struct hostapd_hw_modes *mode, struct nlattr *tb)
6556 static struct nla_policy rate_policy[NL80211_BITRATE_ATTR_MAX + 1] = {
6557 [NL80211_BITRATE_ATTR_RATE] = { .type = NLA_U32 },
6558 [NL80211_BITRATE_ATTR_2GHZ_SHORTPREAMBLE] =
6559 { .type = NLA_FLAG },
6561 struct nlattr *tb_rate[NL80211_BITRATE_ATTR_MAX + 1];
6562 struct nlattr *nl_rate;
6568 nla_for_each_nested(nl_rate, tb, rem_rate) {
6569 nla_parse(tb_rate, NL80211_BITRATE_ATTR_MAX,
6570 nla_data(nl_rate), nla_len(nl_rate),
6572 if (!tb_rate[NL80211_BITRATE_ATTR_RATE])
6577 mode->rates = os_calloc(mode->num_rates, sizeof(int));
6583 nla_for_each_nested(nl_rate, tb, rem_rate) {
6584 nla_parse(tb_rate, NL80211_BITRATE_ATTR_MAX,
6585 nla_data(nl_rate), nla_len(nl_rate),
6587 if (!tb_rate[NL80211_BITRATE_ATTR_RATE])
6589 mode->rates[idx] = nla_get_u32(
6590 tb_rate[NL80211_BITRATE_ATTR_RATE]);
6598 static int phy_info_band(struct phy_info_arg *phy_info, struct nlattr *nl_band)
6600 struct nlattr *tb_band[NL80211_BAND_ATTR_MAX + 1];
6601 struct hostapd_hw_modes *mode;
6604 if (phy_info->last_mode != nl_band->nla_type) {
6605 mode = os_realloc_array(phy_info->modes,
6606 *phy_info->num_modes + 1,
6610 phy_info->modes = mode;
6612 mode = &phy_info->modes[*(phy_info->num_modes)];
6613 os_memset(mode, 0, sizeof(*mode));
6614 mode->mode = NUM_HOSTAPD_MODES;
6615 mode->flags = HOSTAPD_MODE_FLAG_HT_INFO_KNOWN |
6616 HOSTAPD_MODE_FLAG_VHT_INFO_KNOWN;
6619 * Unsupported VHT MCS stream is defined as value 3, so the VHT
6620 * MCS RX/TX map must be initialized with 0xffff to mark all 8
6621 * possible streams as unsupported. This will be overridden if
6622 * driver advertises VHT support.
6624 mode->vht_mcs_set[0] = 0xff;
6625 mode->vht_mcs_set[1] = 0xff;
6626 mode->vht_mcs_set[4] = 0xff;
6627 mode->vht_mcs_set[5] = 0xff;
6629 *(phy_info->num_modes) += 1;
6630 phy_info->last_mode = nl_band->nla_type;
6631 phy_info->last_chan_idx = 0;
6633 mode = &phy_info->modes[*(phy_info->num_modes) - 1];
6635 nla_parse(tb_band, NL80211_BAND_ATTR_MAX, nla_data(nl_band),
6636 nla_len(nl_band), NULL);
6638 phy_info_ht_capa(mode, tb_band[NL80211_BAND_ATTR_HT_CAPA],
6639 tb_band[NL80211_BAND_ATTR_HT_AMPDU_FACTOR],
6640 tb_band[NL80211_BAND_ATTR_HT_AMPDU_DENSITY],
6641 tb_band[NL80211_BAND_ATTR_HT_MCS_SET]);
6642 phy_info_vht_capa(mode, tb_band[NL80211_BAND_ATTR_VHT_CAPA],
6643 tb_band[NL80211_BAND_ATTR_VHT_MCS_SET]);
6644 ret = phy_info_freqs(phy_info, mode, tb_band[NL80211_BAND_ATTR_FREQS]);
6647 ret = phy_info_rates(mode, tb_band[NL80211_BAND_ATTR_RATES]);
6655 static int phy_info_handler(struct nl_msg *msg, void *arg)
6657 struct nlattr *tb_msg[NL80211_ATTR_MAX + 1];
6658 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
6659 struct phy_info_arg *phy_info = arg;
6660 struct nlattr *nl_band;
6663 nla_parse(tb_msg, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
6664 genlmsg_attrlen(gnlh, 0), NULL);
6666 if (!tb_msg[NL80211_ATTR_WIPHY_BANDS])
6669 nla_for_each_nested(nl_band, tb_msg[NL80211_ATTR_WIPHY_BANDS], rem_band)
6671 int res = phy_info_band(phy_info, nl_band);
6680 static struct hostapd_hw_modes *
6681 wpa_driver_nl80211_postprocess_modes(struct hostapd_hw_modes *modes,
6685 struct hostapd_hw_modes *mode11g = NULL, *nmodes, *mode;
6686 int i, mode11g_idx = -1;
6688 /* heuristic to set up modes */
6689 for (m = 0; m < *num_modes; m++) {
6690 if (!modes[m].num_channels)
6692 if (modes[m].channels[0].freq < 4000) {
6693 modes[m].mode = HOSTAPD_MODE_IEEE80211B;
6694 for (i = 0; i < modes[m].num_rates; i++) {
6695 if (modes[m].rates[i] > 200) {
6696 modes[m].mode = HOSTAPD_MODE_IEEE80211G;
6700 } else if (modes[m].channels[0].freq > 50000)
6701 modes[m].mode = HOSTAPD_MODE_IEEE80211AD;
6703 modes[m].mode = HOSTAPD_MODE_IEEE80211A;
6706 /* If only 802.11g mode is included, use it to construct matching
6707 * 802.11b mode data. */
6709 for (m = 0; m < *num_modes; m++) {
6710 if (modes[m].mode == HOSTAPD_MODE_IEEE80211B)
6711 return modes; /* 802.11b already included */
6712 if (modes[m].mode == HOSTAPD_MODE_IEEE80211G)
6716 if (mode11g_idx < 0)
6717 return modes; /* 2.4 GHz band not supported at all */
6719 nmodes = os_realloc_array(modes, *num_modes + 1, sizeof(*nmodes));
6721 return modes; /* Could not add 802.11b mode */
6723 mode = &nmodes[*num_modes];
6724 os_memset(mode, 0, sizeof(*mode));
6728 mode->mode = HOSTAPD_MODE_IEEE80211B;
6730 mode11g = &modes[mode11g_idx];
6731 mode->num_channels = mode11g->num_channels;
6732 mode->channels = os_malloc(mode11g->num_channels *
6733 sizeof(struct hostapd_channel_data));
6734 if (mode->channels == NULL) {
6736 return modes; /* Could not add 802.11b mode */
6738 os_memcpy(mode->channels, mode11g->channels,
6739 mode11g->num_channels * sizeof(struct hostapd_channel_data));
6741 mode->num_rates = 0;
6742 mode->rates = os_malloc(4 * sizeof(int));
6743 if (mode->rates == NULL) {
6744 os_free(mode->channels);
6746 return modes; /* Could not add 802.11b mode */
6749 for (i = 0; i < mode11g->num_rates; i++) {
6750 if (mode11g->rates[i] != 10 && mode11g->rates[i] != 20 &&
6751 mode11g->rates[i] != 55 && mode11g->rates[i] != 110)
6753 mode->rates[mode->num_rates] = mode11g->rates[i];
6755 if (mode->num_rates == 4)
6759 if (mode->num_rates == 0) {
6760 os_free(mode->channels);
6761 os_free(mode->rates);
6763 return modes; /* No 802.11b rates */
6766 wpa_printf(MSG_DEBUG, "nl80211: Added 802.11b mode based on 802.11g "
6773 static void nl80211_set_ht40_mode(struct hostapd_hw_modes *mode, int start,
6778 for (c = 0; c < mode->num_channels; c++) {
6779 struct hostapd_channel_data *chan = &mode->channels[c];
6780 if (chan->freq - 10 >= start && chan->freq + 10 <= end)
6781 chan->flag |= HOSTAPD_CHAN_HT40;
6786 static void nl80211_set_ht40_mode_sec(struct hostapd_hw_modes *mode, int start,
6791 for (c = 0; c < mode->num_channels; c++) {
6792 struct hostapd_channel_data *chan = &mode->channels[c];
6793 if (!(chan->flag & HOSTAPD_CHAN_HT40))
6795 if (chan->freq - 30 >= start && chan->freq - 10 <= end)
6796 chan->flag |= HOSTAPD_CHAN_HT40MINUS;
6797 if (chan->freq + 10 >= start && chan->freq + 30 <= end)
6798 chan->flag |= HOSTAPD_CHAN_HT40PLUS;
6803 static void nl80211_reg_rule_max_eirp(u32 start, u32 end, u32 max_eirp,
6804 struct phy_info_arg *results)
6808 for (m = 0; m < *results->num_modes; m++) {
6810 struct hostapd_hw_modes *mode = &results->modes[m];
6812 for (c = 0; c < mode->num_channels; c++) {
6813 struct hostapd_channel_data *chan = &mode->channels[c];
6814 if ((u32) chan->freq - 10 >= start &&
6815 (u32) chan->freq + 10 <= end)
6816 chan->max_tx_power = max_eirp;
6822 static void nl80211_reg_rule_ht40(u32 start, u32 end,
6823 struct phy_info_arg *results)
6827 for (m = 0; m < *results->num_modes; m++) {
6828 if (!(results->modes[m].ht_capab &
6829 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET))
6831 nl80211_set_ht40_mode(&results->modes[m], start, end);
6836 static void nl80211_reg_rule_sec(struct nlattr *tb[],
6837 struct phy_info_arg *results)
6839 u32 start, end, max_bw;
6842 if (tb[NL80211_ATTR_FREQ_RANGE_START] == NULL ||
6843 tb[NL80211_ATTR_FREQ_RANGE_END] == NULL ||
6844 tb[NL80211_ATTR_FREQ_RANGE_MAX_BW] == NULL)
6847 start = nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]) / 1000;
6848 end = nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]) / 1000;
6849 max_bw = nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]) / 1000;
6854 for (m = 0; m < *results->num_modes; m++) {
6855 if (!(results->modes[m].ht_capab &
6856 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET))
6858 nl80211_set_ht40_mode_sec(&results->modes[m], start, end);
6863 static void nl80211_set_vht_mode(struct hostapd_hw_modes *mode, int start,
6868 for (c = 0; c < mode->num_channels; c++) {
6869 struct hostapd_channel_data *chan = &mode->channels[c];
6870 if (chan->freq - 10 >= start && chan->freq + 70 <= end)
6871 chan->flag |= HOSTAPD_CHAN_VHT_10_70;
6873 if (chan->freq - 30 >= start && chan->freq + 50 <= end)
6874 chan->flag |= HOSTAPD_CHAN_VHT_30_50;
6876 if (chan->freq - 50 >= start && chan->freq + 30 <= end)
6877 chan->flag |= HOSTAPD_CHAN_VHT_50_30;
6879 if (chan->freq - 70 >= start && chan->freq + 10 <= end)
6880 chan->flag |= HOSTAPD_CHAN_VHT_70_10;
6885 static void nl80211_reg_rule_vht(struct nlattr *tb[],
6886 struct phy_info_arg *results)
6888 u32 start, end, max_bw;
6891 if (tb[NL80211_ATTR_FREQ_RANGE_START] == NULL ||
6892 tb[NL80211_ATTR_FREQ_RANGE_END] == NULL ||
6893 tb[NL80211_ATTR_FREQ_RANGE_MAX_BW] == NULL)
6896 start = nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_START]) / 1000;
6897 end = nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_END]) / 1000;
6898 max_bw = nla_get_u32(tb[NL80211_ATTR_FREQ_RANGE_MAX_BW]) / 1000;
6903 for (m = 0; m < *results->num_modes; m++) {
6904 if (!(results->modes[m].ht_capab &
6905 HT_CAP_INFO_SUPP_CHANNEL_WIDTH_SET))
6907 /* TODO: use a real VHT support indication */
6908 if (!results->modes[m].vht_capab)
6911 nl80211_set_vht_mode(&results->modes[m], start, end);
6916 static const char * dfs_domain_name(enum nl80211_dfs_regions region)
6919 case NL80211_DFS_UNSET:
6921 case NL80211_DFS_FCC:
6923 case NL80211_DFS_ETSI:
6925 case NL80211_DFS_JP:
6928 return "DFS-invalid";
6933 static int nl80211_get_reg(struct nl_msg *msg, void *arg)
6935 struct phy_info_arg *results = arg;
6936 struct nlattr *tb_msg[NL80211_ATTR_MAX + 1];
6937 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
6938 struct nlattr *nl_rule;
6939 struct nlattr *tb_rule[NL80211_FREQUENCY_ATTR_MAX + 1];
6941 static struct nla_policy reg_policy[NL80211_FREQUENCY_ATTR_MAX + 1] = {
6942 [NL80211_ATTR_REG_RULE_FLAGS] = { .type = NLA_U32 },
6943 [NL80211_ATTR_FREQ_RANGE_START] = { .type = NLA_U32 },
6944 [NL80211_ATTR_FREQ_RANGE_END] = { .type = NLA_U32 },
6945 [NL80211_ATTR_FREQ_RANGE_MAX_BW] = { .type = NLA_U32 },
6946 [NL80211_ATTR_POWER_RULE_MAX_ANT_GAIN] = { .type = NLA_U32 },
6947 [NL80211_ATTR_POWER_RULE_MAX_EIRP] = { .type = NLA_U32 },
6950 nla_parse(tb_msg, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
6951 genlmsg_attrlen(gnlh, 0), NULL);
6952 if (!tb_msg[NL80211_ATTR_REG_ALPHA2] ||
6953 !tb_msg[NL80211_ATTR_REG_RULES]) {
6954 wpa_printf(MSG_DEBUG, "nl80211: No regulatory information "
6959 if (tb_msg[NL80211_ATTR_DFS_REGION]) {
6960 enum nl80211_dfs_regions dfs_domain;
6961 dfs_domain = nla_get_u8(tb_msg[NL80211_ATTR_DFS_REGION]);
6962 wpa_printf(MSG_DEBUG, "nl80211: Regulatory information - country=%s (%s)",
6963 (char *) nla_data(tb_msg[NL80211_ATTR_REG_ALPHA2]),
6964 dfs_domain_name(dfs_domain));
6966 wpa_printf(MSG_DEBUG, "nl80211: Regulatory information - country=%s",
6967 (char *) nla_data(tb_msg[NL80211_ATTR_REG_ALPHA2]));
6970 nla_for_each_nested(nl_rule, tb_msg[NL80211_ATTR_REG_RULES], rem_rule)
6972 u32 start, end, max_eirp = 0, max_bw = 0, flags = 0;
6973 nla_parse(tb_rule, NL80211_FREQUENCY_ATTR_MAX,
6974 nla_data(nl_rule), nla_len(nl_rule), reg_policy);
6975 if (tb_rule[NL80211_ATTR_FREQ_RANGE_START] == NULL ||
6976 tb_rule[NL80211_ATTR_FREQ_RANGE_END] == NULL)
6978 start = nla_get_u32(tb_rule[NL80211_ATTR_FREQ_RANGE_START]) / 1000;
6979 end = nla_get_u32(tb_rule[NL80211_ATTR_FREQ_RANGE_END]) / 1000;
6980 if (tb_rule[NL80211_ATTR_POWER_RULE_MAX_EIRP])
6981 max_eirp = nla_get_u32(tb_rule[NL80211_ATTR_POWER_RULE_MAX_EIRP]) / 100;
6982 if (tb_rule[NL80211_ATTR_FREQ_RANGE_MAX_BW])
6983 max_bw = nla_get_u32(tb_rule[NL80211_ATTR_FREQ_RANGE_MAX_BW]) / 1000;
6984 if (tb_rule[NL80211_ATTR_REG_RULE_FLAGS])
6985 flags = nla_get_u32(tb_rule[NL80211_ATTR_REG_RULE_FLAGS]);
6987 wpa_printf(MSG_DEBUG, "nl80211: %u-%u @ %u MHz %u mBm%s%s%s%s%s%s%s%s",
6988 start, end, max_bw, max_eirp,
6989 flags & NL80211_RRF_NO_OFDM ? " (no OFDM)" : "",
6990 flags & NL80211_RRF_NO_CCK ? " (no CCK)" : "",
6991 flags & NL80211_RRF_NO_INDOOR ? " (no indoor)" : "",
6992 flags & NL80211_RRF_NO_OUTDOOR ? " (no outdoor)" :
6994 flags & NL80211_RRF_DFS ? " (DFS)" : "",
6995 flags & NL80211_RRF_PTP_ONLY ? " (PTP only)" : "",
6996 flags & NL80211_RRF_PTMP_ONLY ? " (PTMP only)" : "",
6997 flags & NL80211_RRF_NO_IR ? " (no IR)" : "");
6999 nl80211_reg_rule_ht40(start, end, results);
7000 if (tb_rule[NL80211_ATTR_POWER_RULE_MAX_EIRP])
7001 nl80211_reg_rule_max_eirp(start, end, max_eirp,
7005 nla_for_each_nested(nl_rule, tb_msg[NL80211_ATTR_REG_RULES], rem_rule)
7007 nla_parse(tb_rule, NL80211_FREQUENCY_ATTR_MAX,
7008 nla_data(nl_rule), nla_len(nl_rule), reg_policy);
7009 nl80211_reg_rule_sec(tb_rule, results);
7012 nla_for_each_nested(nl_rule, tb_msg[NL80211_ATTR_REG_RULES], rem_rule)
7014 nla_parse(tb_rule, NL80211_FREQUENCY_ATTR_MAX,
7015 nla_data(nl_rule), nla_len(nl_rule), reg_policy);
7016 nl80211_reg_rule_vht(tb_rule, results);
7023 static int nl80211_set_regulatory_flags(struct wpa_driver_nl80211_data *drv,
7024 struct phy_info_arg *results)
7028 msg = nlmsg_alloc();
7032 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_REG);
7033 return send_and_recv_msgs(drv, msg, nl80211_get_reg, results);
7037 static struct hostapd_hw_modes *
7038 wpa_driver_nl80211_get_hw_feature_data(void *priv, u16 *num_modes, u16 *flags)
7041 struct i802_bss *bss = priv;
7042 struct wpa_driver_nl80211_data *drv = bss->drv;
7044 struct phy_info_arg result = {
7045 .num_modes = num_modes,
7053 msg = nlmsg_alloc();
7057 feat = get_nl80211_protocol_features(drv);
7058 if (feat & NL80211_PROTOCOL_FEATURE_SPLIT_WIPHY_DUMP)
7059 nl80211_cmd(drv, msg, NLM_F_DUMP, NL80211_CMD_GET_WIPHY);
7061 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_WIPHY);
7063 NLA_PUT_FLAG(msg, NL80211_ATTR_SPLIT_WIPHY_DUMP);
7064 if (nl80211_set_iface_id(msg, bss) < 0)
7065 goto nla_put_failure;
7067 if (send_and_recv_msgs(drv, msg, phy_info_handler, &result) == 0) {
7068 nl80211_set_regulatory_flags(drv, &result);
7069 return wpa_driver_nl80211_postprocess_modes(result.modes,
7079 static int wpa_driver_nl80211_send_mntr(struct wpa_driver_nl80211_data *drv,
7080 const void *data, size_t len,
7081 int encrypt, int noack)
7084 0x00, 0x00, /* radiotap version */
7085 0x0e, 0x00, /* radiotap length */
7086 0x02, 0xc0, 0x00, 0x00, /* bmap: flags, tx and rx flags */
7087 IEEE80211_RADIOTAP_F_FRAG, /* F_FRAG (fragment if required) */
7089 0x00, 0x00, /* RX and TX flags to indicate that */
7090 0x00, 0x00, /* this is the injected frame directly */
7092 struct iovec iov[2] = {
7094 .iov_base = &rtap_hdr,
7095 .iov_len = sizeof(rtap_hdr),
7098 .iov_base = (void *) data,
7102 struct msghdr msg = {
7107 .msg_control = NULL,
7108 .msg_controllen = 0,
7115 rtap_hdr[8] |= IEEE80211_RADIOTAP_F_WEP;
7117 if (drv->monitor_sock < 0) {
7118 wpa_printf(MSG_DEBUG, "nl80211: No monitor socket available "
7119 "for %s", __func__);
7124 txflags |= IEEE80211_RADIOTAP_F_TX_NOACK;
7125 WPA_PUT_LE16(&rtap_hdr[12], txflags);
7127 res = sendmsg(drv->monitor_sock, &msg, 0);
7129 wpa_printf(MSG_INFO, "nl80211: sendmsg: %s", strerror(errno));
7136 static int wpa_driver_nl80211_send_frame(struct i802_bss *bss,
7137 const void *data, size_t len,
7138 int encrypt, int noack,
7139 unsigned int freq, int no_cck,
7140 int offchanok, unsigned int wait_time)
7142 struct wpa_driver_nl80211_data *drv = bss->drv;
7146 if (freq == 0 && drv->nlmode == NL80211_IFTYPE_ADHOC) {
7147 freq = nl80211_get_assoc_freq(drv);
7148 wpa_printf(MSG_DEBUG,
7149 "nl80211: send_frame - Use assoc_freq=%u for IBSS",
7153 wpa_printf(MSG_DEBUG, "nl80211: send_frame - Use bss->freq=%u",
7158 if (drv->use_monitor) {
7159 wpa_printf(MSG_DEBUG, "nl80211: send_frame(freq=%u bss->freq=%u) -> send_mntr",
7161 return wpa_driver_nl80211_send_mntr(drv, data, len,
7165 wpa_printf(MSG_DEBUG, "nl80211: send_frame -> send_frame_cmd");
7166 res = nl80211_send_frame_cmd(bss, freq, wait_time, data, len,
7167 &cookie, no_cck, noack, offchanok);
7168 if (res == 0 && !noack) {
7169 const struct ieee80211_mgmt *mgmt;
7172 mgmt = (const struct ieee80211_mgmt *) data;
7173 fc = le_to_host16(mgmt->frame_control);
7174 if (WLAN_FC_GET_TYPE(fc) == WLAN_FC_TYPE_MGMT &&
7175 WLAN_FC_GET_STYPE(fc) == WLAN_FC_STYPE_ACTION) {
7176 wpa_printf(MSG_MSGDUMP,
7177 "nl80211: Update send_action_cookie from 0x%llx to 0x%llx",
7178 (long long unsigned int)
7179 drv->send_action_cookie,
7180 (long long unsigned int) cookie);
7181 drv->send_action_cookie = cookie;
7189 static int wpa_driver_nl80211_send_mlme(struct i802_bss *bss, const u8 *data,
7190 size_t data_len, int noack,
7191 unsigned int freq, int no_cck,
7193 unsigned int wait_time)
7195 struct wpa_driver_nl80211_data *drv = bss->drv;
7196 struct ieee80211_mgmt *mgmt;
7200 mgmt = (struct ieee80211_mgmt *) data;
7201 fc = le_to_host16(mgmt->frame_control);
7202 wpa_printf(MSG_DEBUG, "nl80211: send_mlme - da= " MACSTR
7203 " noack=%d freq=%u no_cck=%d offchanok=%d wait_time=%u fc=0x%x (%s) nlmode=%d",
7204 MAC2STR(mgmt->da), noack, freq, no_cck, offchanok, wait_time,
7205 fc, fc2str(fc), drv->nlmode);
7207 if ((is_sta_interface(drv->nlmode) ||
7208 drv->nlmode == NL80211_IFTYPE_P2P_DEVICE) &&
7209 WLAN_FC_GET_TYPE(fc) == WLAN_FC_TYPE_MGMT &&
7210 WLAN_FC_GET_STYPE(fc) == WLAN_FC_STYPE_PROBE_RESP) {
7212 * The use of last_mgmt_freq is a bit of a hack,
7213 * but it works due to the single-threaded nature
7214 * of wpa_supplicant.
7217 wpa_printf(MSG_DEBUG, "nl80211: Use last_mgmt_freq=%d",
7218 drv->last_mgmt_freq);
7219 freq = drv->last_mgmt_freq;
7221 return nl80211_send_frame_cmd(bss, freq, 0,
7222 data, data_len, NULL, 1, noack,
7226 if (drv->device_ap_sme && is_ap_interface(drv->nlmode)) {
7228 wpa_printf(MSG_DEBUG, "nl80211: Use bss->freq=%d",
7232 return nl80211_send_frame_cmd(bss, freq,
7233 (int) freq == bss->freq ? 0 :
7236 &drv->send_action_cookie,
7237 no_cck, noack, offchanok);
7240 if (WLAN_FC_GET_TYPE(fc) == WLAN_FC_TYPE_MGMT &&
7241 WLAN_FC_GET_STYPE(fc) == WLAN_FC_STYPE_AUTH) {
7243 * Only one of the authentication frame types is encrypted.
7244 * In order for static WEP encryption to work properly (i.e.,
7245 * to not encrypt the frame), we need to tell mac80211 about
7246 * the frames that must not be encrypted.
7248 u16 auth_alg = le_to_host16(mgmt->u.auth.auth_alg);
7249 u16 auth_trans = le_to_host16(mgmt->u.auth.auth_transaction);
7250 if (auth_alg != WLAN_AUTH_SHARED_KEY || auth_trans != 3)
7254 wpa_printf(MSG_DEBUG, "nl80211: send_mlme -> send_frame");
7255 return wpa_driver_nl80211_send_frame(bss, data, data_len, encrypt,
7256 noack, freq, no_cck, offchanok,
7261 static int nl80211_set_bss(struct i802_bss *bss, int cts, int preamble,
7262 int slot, int ht_opmode, int ap_isolate,
7265 struct wpa_driver_nl80211_data *drv = bss->drv;
7268 msg = nlmsg_alloc();
7272 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_BSS);
7275 NLA_PUT_U8(msg, NL80211_ATTR_BSS_CTS_PROT, cts);
7277 NLA_PUT_U8(msg, NL80211_ATTR_BSS_SHORT_PREAMBLE, preamble);
7279 NLA_PUT_U8(msg, NL80211_ATTR_BSS_SHORT_SLOT_TIME, slot);
7281 NLA_PUT_U16(msg, NL80211_ATTR_BSS_HT_OPMODE, ht_opmode);
7282 if (ap_isolate >= 0)
7283 NLA_PUT_U8(msg, NL80211_ATTR_AP_ISOLATE, ap_isolate);
7286 u8 rates[NL80211_MAX_SUPP_RATES];
7290 for (i = 0; i < NL80211_MAX_SUPP_RATES && basic_rates[i] >= 0;
7292 rates[rates_len++] = basic_rates[i] / 5;
7294 NLA_PUT(msg, NL80211_ATTR_BSS_BASIC_RATES, rates_len, rates);
7297 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, if_nametoindex(bss->ifname));
7299 return send_and_recv_msgs(drv, msg, NULL, NULL);
7306 static int wpa_driver_nl80211_set_acl(void *priv,
7307 struct hostapd_acl_params *params)
7309 struct i802_bss *bss = priv;
7310 struct wpa_driver_nl80211_data *drv = bss->drv;
7316 if (!(drv->capa.max_acl_mac_addrs))
7319 if (params->num_mac_acl > drv->capa.max_acl_mac_addrs)
7322 msg = nlmsg_alloc();
7326 wpa_printf(MSG_DEBUG, "nl80211: Set %s ACL (num_mac_acl=%u)",
7327 params->acl_policy ? "Accept" : "Deny", params->num_mac_acl);
7329 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_MAC_ACL);
7331 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
7333 NLA_PUT_U32(msg, NL80211_ATTR_ACL_POLICY, params->acl_policy ?
7334 NL80211_ACL_POLICY_DENY_UNLESS_LISTED :
7335 NL80211_ACL_POLICY_ACCEPT_UNLESS_LISTED);
7337 acl = nla_nest_start(msg, NL80211_ATTR_MAC_ADDRS);
7339 goto nla_put_failure;
7341 for (i = 0; i < params->num_mac_acl; i++)
7342 NLA_PUT(msg, i + 1, ETH_ALEN, params->mac_acl[i].addr);
7344 nla_nest_end(msg, acl);
7346 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
7349 wpa_printf(MSG_DEBUG, "nl80211: Failed to set MAC ACL: %d (%s)",
7350 ret, strerror(-ret));
7360 static int wpa_driver_nl80211_set_ap(void *priv,
7361 struct wpa_driver_ap_params *params)
7363 struct i802_bss *bss = priv;
7364 struct wpa_driver_nl80211_data *drv = bss->drv;
7366 u8 cmd = NL80211_CMD_NEW_BEACON;
7369 int ifindex = if_nametoindex(bss->ifname);
7371 u32 suites[10], suite;
7374 beacon_set = bss->beacon_set;
7376 msg = nlmsg_alloc();
7380 wpa_printf(MSG_DEBUG, "nl80211: Set beacon (beacon_set=%d)",
7383 cmd = NL80211_CMD_SET_BEACON;
7385 nl80211_cmd(drv, msg, 0, cmd);
7386 wpa_hexdump(MSG_DEBUG, "nl80211: Beacon head",
7387 params->head, params->head_len);
7388 NLA_PUT(msg, NL80211_ATTR_BEACON_HEAD, params->head_len, params->head);
7389 wpa_hexdump(MSG_DEBUG, "nl80211: Beacon tail",
7390 params->tail, params->tail_len);
7391 NLA_PUT(msg, NL80211_ATTR_BEACON_TAIL, params->tail_len, params->tail);
7392 wpa_printf(MSG_DEBUG, "nl80211: ifindex=%d", ifindex);
7393 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, ifindex);
7394 wpa_printf(MSG_DEBUG, "nl80211: beacon_int=%d", params->beacon_int);
7395 NLA_PUT_U32(msg, NL80211_ATTR_BEACON_INTERVAL, params->beacon_int);
7396 wpa_printf(MSG_DEBUG, "nl80211: dtim_period=%d", params->dtim_period);
7397 NLA_PUT_U32(msg, NL80211_ATTR_DTIM_PERIOD, params->dtim_period);
7398 wpa_hexdump_ascii(MSG_DEBUG, "nl80211: ssid",
7399 params->ssid, params->ssid_len);
7400 NLA_PUT(msg, NL80211_ATTR_SSID, params->ssid_len,
7402 if (params->proberesp && params->proberesp_len) {
7403 wpa_hexdump(MSG_DEBUG, "nl80211: proberesp (offload)",
7404 params->proberesp, params->proberesp_len);
7405 NLA_PUT(msg, NL80211_ATTR_PROBE_RESP, params->proberesp_len,
7408 switch (params->hide_ssid) {
7409 case NO_SSID_HIDING:
7410 wpa_printf(MSG_DEBUG, "nl80211: hidden SSID not in use");
7411 NLA_PUT_U32(msg, NL80211_ATTR_HIDDEN_SSID,
7412 NL80211_HIDDEN_SSID_NOT_IN_USE);
7414 case HIDDEN_SSID_ZERO_LEN:
7415 wpa_printf(MSG_DEBUG, "nl80211: hidden SSID zero len");
7416 NLA_PUT_U32(msg, NL80211_ATTR_HIDDEN_SSID,
7417 NL80211_HIDDEN_SSID_ZERO_LEN);
7419 case HIDDEN_SSID_ZERO_CONTENTS:
7420 wpa_printf(MSG_DEBUG, "nl80211: hidden SSID zero contents");
7421 NLA_PUT_U32(msg, NL80211_ATTR_HIDDEN_SSID,
7422 NL80211_HIDDEN_SSID_ZERO_CONTENTS);
7425 wpa_printf(MSG_DEBUG, "nl80211: privacy=%d", params->privacy);
7426 if (params->privacy)
7427 NLA_PUT_FLAG(msg, NL80211_ATTR_PRIVACY);
7428 wpa_printf(MSG_DEBUG, "nl80211: auth_algs=0x%x", params->auth_algs);
7429 if ((params->auth_algs & (WPA_AUTH_ALG_OPEN | WPA_AUTH_ALG_SHARED)) ==
7430 (WPA_AUTH_ALG_OPEN | WPA_AUTH_ALG_SHARED)) {
7431 /* Leave out the attribute */
7432 } else if (params->auth_algs & WPA_AUTH_ALG_SHARED)
7433 NLA_PUT_U32(msg, NL80211_ATTR_AUTH_TYPE,
7434 NL80211_AUTHTYPE_SHARED_KEY);
7436 NLA_PUT_U32(msg, NL80211_ATTR_AUTH_TYPE,
7437 NL80211_AUTHTYPE_OPEN_SYSTEM);
7439 wpa_printf(MSG_DEBUG, "nl80211: wpa_version=0x%x", params->wpa_version);
7441 if (params->wpa_version & WPA_PROTO_WPA)
7442 ver |= NL80211_WPA_VERSION_1;
7443 if (params->wpa_version & WPA_PROTO_RSN)
7444 ver |= NL80211_WPA_VERSION_2;
7446 NLA_PUT_U32(msg, NL80211_ATTR_WPA_VERSIONS, ver);
7448 wpa_printf(MSG_DEBUG, "nl80211: key_mgmt_suites=0x%x",
7449 params->key_mgmt_suites);
7451 if (params->key_mgmt_suites & WPA_KEY_MGMT_IEEE8021X)
7452 suites[num_suites++] = WLAN_AKM_SUITE_8021X;
7453 if (params->key_mgmt_suites & WPA_KEY_MGMT_PSK)
7454 suites[num_suites++] = WLAN_AKM_SUITE_PSK;
7456 NLA_PUT(msg, NL80211_ATTR_AKM_SUITES,
7457 num_suites * sizeof(u32), suites);
7460 if (params->key_mgmt_suites & WPA_KEY_MGMT_IEEE8021X &&
7461 params->pairwise_ciphers & (WPA_CIPHER_WEP104 | WPA_CIPHER_WEP40))
7462 NLA_PUT_FLAG(msg, NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT);
7464 wpa_printf(MSG_DEBUG, "nl80211: pairwise_ciphers=0x%x",
7465 params->pairwise_ciphers);
7466 num_suites = wpa_cipher_to_cipher_suites(params->pairwise_ciphers,
7467 suites, ARRAY_SIZE(suites));
7469 NLA_PUT(msg, NL80211_ATTR_CIPHER_SUITES_PAIRWISE,
7470 num_suites * sizeof(u32), suites);
7473 wpa_printf(MSG_DEBUG, "nl80211: group_cipher=0x%x",
7474 params->group_cipher);
7475 suite = wpa_cipher_to_cipher_suite(params->group_cipher);
7477 NLA_PUT_U32(msg, NL80211_ATTR_CIPHER_SUITE_GROUP, suite);
7479 if (params->beacon_ies) {
7480 wpa_hexdump_buf(MSG_DEBUG, "nl80211: beacon_ies",
7481 params->beacon_ies);
7482 NLA_PUT(msg, NL80211_ATTR_IE, wpabuf_len(params->beacon_ies),
7483 wpabuf_head(params->beacon_ies));
7485 if (params->proberesp_ies) {
7486 wpa_hexdump_buf(MSG_DEBUG, "nl80211: proberesp_ies",
7487 params->proberesp_ies);
7488 NLA_PUT(msg, NL80211_ATTR_IE_PROBE_RESP,
7489 wpabuf_len(params->proberesp_ies),
7490 wpabuf_head(params->proberesp_ies));
7492 if (params->assocresp_ies) {
7493 wpa_hexdump_buf(MSG_DEBUG, "nl80211: assocresp_ies",
7494 params->assocresp_ies);
7495 NLA_PUT(msg, NL80211_ATTR_IE_ASSOC_RESP,
7496 wpabuf_len(params->assocresp_ies),
7497 wpabuf_head(params->assocresp_ies));
7500 if (drv->capa.flags & WPA_DRIVER_FLAGS_INACTIVITY_TIMER) {
7501 wpa_printf(MSG_DEBUG, "nl80211: ap_max_inactivity=%d",
7502 params->ap_max_inactivity);
7503 NLA_PUT_U16(msg, NL80211_ATTR_INACTIVITY_TIMEOUT,
7504 params->ap_max_inactivity);
7507 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
7509 wpa_printf(MSG_DEBUG, "nl80211: Beacon set failed: %d (%s)",
7510 ret, strerror(-ret));
7512 bss->beacon_set = 1;
7513 nl80211_set_bss(bss, params->cts_protect, params->preamble,
7514 params->short_slot_time, params->ht_opmode,
7515 params->isolate, params->basic_rates);
7516 if (beacon_set && params->freq &&
7517 params->freq->bandwidth != bss->bandwidth) {
7518 wpa_printf(MSG_DEBUG,
7519 "nl80211: Update BSS %s bandwidth: %d -> %d",
7520 bss->ifname, bss->bandwidth,
7521 params->freq->bandwidth);
7522 ret = nl80211_set_channel(bss, params->freq, 1);
7524 wpa_printf(MSG_DEBUG,
7525 "nl80211: Frequency set failed: %d (%s)",
7526 ret, strerror(-ret));
7528 wpa_printf(MSG_DEBUG,
7529 "nl80211: Frequency set succeeded for ht2040 coex");
7530 bss->bandwidth = params->freq->bandwidth;
7532 } else if (!beacon_set) {
7534 * cfg80211 updates the driver on frequence change in AP
7535 * mode only at the point when beaconing is started, so
7536 * set the initial value here.
7538 bss->bandwidth = params->freq->bandwidth;
7548 static int nl80211_put_freq_params(struct nl_msg *msg,
7549 struct hostapd_freq_params *freq)
7551 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ, freq->freq);
7552 if (freq->vht_enabled) {
7553 switch (freq->bandwidth) {
7555 NLA_PUT_U32(msg, NL80211_ATTR_CHANNEL_WIDTH,
7556 NL80211_CHAN_WIDTH_20);
7559 NLA_PUT_U32(msg, NL80211_ATTR_CHANNEL_WIDTH,
7560 NL80211_CHAN_WIDTH_40);
7563 if (freq->center_freq2)
7564 NLA_PUT_U32(msg, NL80211_ATTR_CHANNEL_WIDTH,
7565 NL80211_CHAN_WIDTH_80P80);
7567 NLA_PUT_U32(msg, NL80211_ATTR_CHANNEL_WIDTH,
7568 NL80211_CHAN_WIDTH_80);
7571 NLA_PUT_U32(msg, NL80211_ATTR_CHANNEL_WIDTH,
7572 NL80211_CHAN_WIDTH_160);
7577 NLA_PUT_U32(msg, NL80211_ATTR_CENTER_FREQ1, freq->center_freq1);
7578 if (freq->center_freq2)
7579 NLA_PUT_U32(msg, NL80211_ATTR_CENTER_FREQ2,
7580 freq->center_freq2);
7581 } else if (freq->ht_enabled) {
7582 switch (freq->sec_channel_offset) {
7584 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
7585 NL80211_CHAN_HT40MINUS);
7588 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
7589 NL80211_CHAN_HT40PLUS);
7592 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_CHANNEL_TYPE,
7604 static int nl80211_set_channel(struct i802_bss *bss,
7605 struct hostapd_freq_params *freq, int set_chan)
7607 struct wpa_driver_nl80211_data *drv = bss->drv;
7611 wpa_printf(MSG_DEBUG,
7612 "nl80211: Set freq %d (ht_enabled=%d, vht_enabled=%d, bandwidth=%d MHz, cf1=%d MHz, cf2=%d MHz)",
7613 freq->freq, freq->ht_enabled, freq->vht_enabled,
7614 freq->bandwidth, freq->center_freq1, freq->center_freq2);
7615 msg = nlmsg_alloc();
7619 nl80211_cmd(drv, msg, 0, set_chan ? NL80211_CMD_SET_CHANNEL :
7620 NL80211_CMD_SET_WIPHY);
7622 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
7623 if (nl80211_put_freq_params(msg, freq) < 0)
7624 goto nla_put_failure;
7626 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
7629 bss->freq = freq->freq;
7632 wpa_printf(MSG_DEBUG, "nl80211: Failed to set channel (freq=%d): "
7633 "%d (%s)", freq->freq, ret, strerror(-ret));
7640 static u32 sta_flags_nl80211(int flags)
7644 if (flags & WPA_STA_AUTHORIZED)
7645 f |= BIT(NL80211_STA_FLAG_AUTHORIZED);
7646 if (flags & WPA_STA_WMM)
7647 f |= BIT(NL80211_STA_FLAG_WME);
7648 if (flags & WPA_STA_SHORT_PREAMBLE)
7649 f |= BIT(NL80211_STA_FLAG_SHORT_PREAMBLE);
7650 if (flags & WPA_STA_MFP)
7651 f |= BIT(NL80211_STA_FLAG_MFP);
7652 if (flags & WPA_STA_TDLS_PEER)
7653 f |= BIT(NL80211_STA_FLAG_TDLS_PEER);
7659 static int wpa_driver_nl80211_sta_add(void *priv,
7660 struct hostapd_sta_add_params *params)
7662 struct i802_bss *bss = priv;
7663 struct wpa_driver_nl80211_data *drv = bss->drv;
7665 struct nl80211_sta_flag_update upd;
7668 if ((params->flags & WPA_STA_TDLS_PEER) &&
7669 !(drv->capa.flags & WPA_DRIVER_FLAGS_TDLS_SUPPORT))
7672 msg = nlmsg_alloc();
7676 wpa_printf(MSG_DEBUG, "nl80211: %s STA " MACSTR,
7677 params->set ? "Set" : "Add", MAC2STR(params->addr));
7678 nl80211_cmd(drv, msg, 0, params->set ? NL80211_CMD_SET_STATION :
7679 NL80211_CMD_NEW_STATION);
7681 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, if_nametoindex(bss->ifname));
7682 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, params->addr);
7683 NLA_PUT(msg, NL80211_ATTR_STA_SUPPORTED_RATES, params->supp_rates_len,
7684 params->supp_rates);
7685 wpa_hexdump(MSG_DEBUG, " * supported rates", params->supp_rates,
7686 params->supp_rates_len);
7689 wpa_printf(MSG_DEBUG, " * aid=%u", params->aid);
7690 NLA_PUT_U16(msg, NL80211_ATTR_STA_AID, params->aid);
7693 * cfg80211 validates that AID is non-zero, so we have
7694 * to make this a non-zero value for the TDLS case where
7695 * a dummy STA entry is used for now.
7697 wpa_printf(MSG_DEBUG, " * aid=1 (TDLS workaround)");
7698 NLA_PUT_U16(msg, NL80211_ATTR_STA_AID, 1);
7700 wpa_printf(MSG_DEBUG, " * listen_interval=%u",
7701 params->listen_interval);
7702 NLA_PUT_U16(msg, NL80211_ATTR_STA_LISTEN_INTERVAL,
7703 params->listen_interval);
7704 } else if (params->aid && (params->flags & WPA_STA_TDLS_PEER)) {
7705 wpa_printf(MSG_DEBUG, " * peer_aid=%u", params->aid);
7706 NLA_PUT_U16(msg, NL80211_ATTR_PEER_AID, params->aid);
7708 if (params->ht_capabilities) {
7709 wpa_hexdump(MSG_DEBUG, " * ht_capabilities",
7710 (u8 *) params->ht_capabilities,
7711 sizeof(*params->ht_capabilities));
7712 NLA_PUT(msg, NL80211_ATTR_HT_CAPABILITY,
7713 sizeof(*params->ht_capabilities),
7714 params->ht_capabilities);
7717 if (params->vht_capabilities) {
7718 wpa_hexdump(MSG_DEBUG, " * vht_capabilities",
7719 (u8 *) params->vht_capabilities,
7720 sizeof(*params->vht_capabilities));
7721 NLA_PUT(msg, NL80211_ATTR_VHT_CAPABILITY,
7722 sizeof(*params->vht_capabilities),
7723 params->vht_capabilities);
7726 if (params->vht_opmode_enabled) {
7727 wpa_printf(MSG_DEBUG, " * opmode=%u", params->vht_opmode);
7728 NLA_PUT_U8(msg, NL80211_ATTR_OPMODE_NOTIF,
7729 params->vht_opmode);
7732 wpa_printf(MSG_DEBUG, " * capability=0x%x", params->capability);
7733 NLA_PUT_U16(msg, NL80211_ATTR_STA_CAPABILITY, params->capability);
7735 if (params->ext_capab) {
7736 wpa_hexdump(MSG_DEBUG, " * ext_capab",
7737 params->ext_capab, params->ext_capab_len);
7738 NLA_PUT(msg, NL80211_ATTR_STA_EXT_CAPABILITY,
7739 params->ext_capab_len, params->ext_capab);
7742 if (params->supp_channels) {
7743 wpa_hexdump(MSG_DEBUG, " * supported channels",
7744 params->supp_channels, params->supp_channels_len);
7745 NLA_PUT(msg, NL80211_ATTR_STA_SUPPORTED_CHANNELS,
7746 params->supp_channels_len, params->supp_channels);
7749 if (params->supp_oper_classes) {
7750 wpa_hexdump(MSG_DEBUG, " * supported operating classes",
7751 params->supp_oper_classes,
7752 params->supp_oper_classes_len);
7753 NLA_PUT(msg, NL80211_ATTR_STA_SUPPORTED_OPER_CLASSES,
7754 params->supp_oper_classes_len,
7755 params->supp_oper_classes);
7758 os_memset(&upd, 0, sizeof(upd));
7759 upd.mask = sta_flags_nl80211(params->flags);
7761 wpa_printf(MSG_DEBUG, " * flags set=0x%x mask=0x%x",
7763 NLA_PUT(msg, NL80211_ATTR_STA_FLAGS2, sizeof(upd), &upd);
7765 if (params->flags & WPA_STA_WMM) {
7766 struct nlattr *wme = nla_nest_start(msg, NL80211_ATTR_STA_WME);
7769 goto nla_put_failure;
7771 wpa_printf(MSG_DEBUG, " * qosinfo=0x%x", params->qosinfo);
7772 NLA_PUT_U8(msg, NL80211_STA_WME_UAPSD_QUEUES,
7773 params->qosinfo & WMM_QOSINFO_STA_AC_MASK);
7774 NLA_PUT_U8(msg, NL80211_STA_WME_MAX_SP,
7775 (params->qosinfo >> WMM_QOSINFO_STA_SP_SHIFT) &
7776 WMM_QOSINFO_STA_SP_MASK);
7777 nla_nest_end(msg, wme);
7780 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
7783 wpa_printf(MSG_DEBUG, "nl80211: NL80211_CMD_%s_STATION "
7784 "result: %d (%s)", params->set ? "SET" : "NEW", ret,
7794 static void rtnl_neigh_delete_fdb_entry(struct i802_bss *bss, const u8 *addr)
7796 #ifdef CONFIG_LIBNL3_ROUTE
7797 struct wpa_driver_nl80211_data *drv = bss->drv;
7798 struct rtnl_neigh *rn;
7799 struct nl_addr *nl_addr;
7802 rn = rtnl_neigh_alloc();
7806 rtnl_neigh_set_family(rn, AF_BRIDGE);
7807 rtnl_neigh_set_ifindex(rn, bss->ifindex);
7808 nl_addr = nl_addr_build(AF_BRIDGE, (void *) addr, ETH_ALEN);
7813 rtnl_neigh_set_lladdr(rn, nl_addr);
7815 err = rtnl_neigh_delete(drv->rtnl_sk, rn, 0);
7817 wpa_printf(MSG_DEBUG, "nl80211: bridge FDB entry delete for "
7818 MACSTR " ifindex=%d failed: %s", MAC2STR(addr),
7819 bss->ifindex, nl_geterror(err));
7821 wpa_printf(MSG_DEBUG, "nl80211: deleted bridge FDB entry for "
7822 MACSTR, MAC2STR(addr));
7825 nl_addr_put(nl_addr);
7827 #endif /* CONFIG_LIBNL3_ROUTE */
7831 static int wpa_driver_nl80211_sta_remove(struct i802_bss *bss, const u8 *addr)
7833 struct wpa_driver_nl80211_data *drv = bss->drv;
7837 msg = nlmsg_alloc();
7841 nl80211_cmd(drv, msg, 0, NL80211_CMD_DEL_STATION);
7843 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX,
7844 if_nametoindex(bss->ifname));
7845 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
7847 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
7848 wpa_printf(MSG_DEBUG, "nl80211: sta_remove -> DEL_STATION %s " MACSTR
7850 bss->ifname, MAC2STR(addr), ret, strerror(-ret));
7853 rtnl_neigh_delete_fdb_entry(bss, addr);
7864 static void nl80211_remove_iface(struct wpa_driver_nl80211_data *drv,
7868 struct wpa_driver_nl80211_data *drv2;
7870 wpa_printf(MSG_DEBUG, "nl80211: Remove interface ifindex=%d", ifidx);
7872 /* stop listening for EAPOL on this interface */
7873 dl_list_for_each(drv2, &drv->global->interfaces,
7874 struct wpa_driver_nl80211_data, list)
7875 del_ifidx(drv2, ifidx);
7877 msg = nlmsg_alloc();
7879 goto nla_put_failure;
7881 nl80211_cmd(drv, msg, 0, NL80211_CMD_DEL_INTERFACE);
7882 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, ifidx);
7884 if (send_and_recv_msgs(drv, msg, NULL, NULL) == 0)
7889 wpa_printf(MSG_ERROR, "Failed to remove interface (ifidx=%d)", ifidx);
7893 static const char * nl80211_iftype_str(enum nl80211_iftype mode)
7896 case NL80211_IFTYPE_ADHOC:
7898 case NL80211_IFTYPE_STATION:
7900 case NL80211_IFTYPE_AP:
7902 case NL80211_IFTYPE_AP_VLAN:
7904 case NL80211_IFTYPE_WDS:
7906 case NL80211_IFTYPE_MONITOR:
7908 case NL80211_IFTYPE_MESH_POINT:
7909 return "MESH_POINT";
7910 case NL80211_IFTYPE_P2P_CLIENT:
7911 return "P2P_CLIENT";
7912 case NL80211_IFTYPE_P2P_GO:
7914 case NL80211_IFTYPE_P2P_DEVICE:
7915 return "P2P_DEVICE";
7922 static int nl80211_create_iface_once(struct wpa_driver_nl80211_data *drv,
7924 enum nl80211_iftype iftype,
7925 const u8 *addr, int wds,
7926 int (*handler)(struct nl_msg *, void *),
7933 wpa_printf(MSG_DEBUG, "nl80211: Create interface iftype %d (%s)",
7934 iftype, nl80211_iftype_str(iftype));
7936 msg = nlmsg_alloc();
7940 nl80211_cmd(drv, msg, 0, NL80211_CMD_NEW_INTERFACE);
7941 if (nl80211_set_iface_id(msg, drv->first_bss) < 0)
7942 goto nla_put_failure;
7943 NLA_PUT_STRING(msg, NL80211_ATTR_IFNAME, ifname);
7944 NLA_PUT_U32(msg, NL80211_ATTR_IFTYPE, iftype);
7946 if (iftype == NL80211_IFTYPE_MONITOR) {
7947 struct nlattr *flags;
7949 flags = nla_nest_start(msg, NL80211_ATTR_MNTR_FLAGS);
7951 goto nla_put_failure;
7953 NLA_PUT_FLAG(msg, NL80211_MNTR_FLAG_COOK_FRAMES);
7955 nla_nest_end(msg, flags);
7957 NLA_PUT_U8(msg, NL80211_ATTR_4ADDR, wds);
7961 * Tell cfg80211 that the interface belongs to the socket that created
7962 * it, and the interface should be deleted when the socket is closed.
7964 NLA_PUT_FLAG(msg, NL80211_ATTR_IFACE_SOCKET_OWNER);
7966 ret = send_and_recv_msgs(drv, msg, handler, arg);
7971 wpa_printf(MSG_ERROR, "Failed to create interface %s: %d (%s)",
7972 ifname, ret, strerror(-ret));
7976 if (iftype == NL80211_IFTYPE_P2P_DEVICE)
7979 ifidx = if_nametoindex(ifname);
7980 wpa_printf(MSG_DEBUG, "nl80211: New interface %s created: ifindex=%d",
7987 * Some virtual interfaces need to process EAPOL packets and events on
7988 * the parent interface. This is used mainly with hostapd.
7991 iftype == NL80211_IFTYPE_AP_VLAN ||
7992 iftype == NL80211_IFTYPE_WDS ||
7993 iftype == NL80211_IFTYPE_MONITOR) {
7994 /* start listening for EAPOL on this interface */
7995 add_ifidx(drv, ifidx);
7998 if (addr && iftype != NL80211_IFTYPE_MONITOR &&
7999 linux_set_ifhwaddr(drv->global->ioctl_sock, ifname, addr)) {
8000 nl80211_remove_iface(drv, ifidx);
8008 static int nl80211_create_iface(struct wpa_driver_nl80211_data *drv,
8009 const char *ifname, enum nl80211_iftype iftype,
8010 const u8 *addr, int wds,
8011 int (*handler)(struct nl_msg *, void *),
8012 void *arg, int use_existing)
8016 ret = nl80211_create_iface_once(drv, ifname, iftype, addr, wds, handler,
8019 /* if error occurred and interface exists already */
8020 if (ret == -ENFILE && if_nametoindex(ifname)) {
8022 wpa_printf(MSG_DEBUG, "nl80211: Continue using existing interface %s",
8024 if (addr && iftype != NL80211_IFTYPE_MONITOR &&
8025 linux_set_ifhwaddr(drv->global->ioctl_sock, ifname,
8027 (linux_set_iface_flags(drv->global->ioctl_sock,
8029 linux_set_ifhwaddr(drv->global->ioctl_sock, ifname,
8031 linux_set_iface_flags(drv->global->ioctl_sock,
8036 wpa_printf(MSG_INFO, "Try to remove and re-create %s", ifname);
8038 /* Try to remove the interface that was already there. */
8039 nl80211_remove_iface(drv, if_nametoindex(ifname));
8041 /* Try to create the interface again */
8042 ret = nl80211_create_iface_once(drv, ifname, iftype, addr,
8046 if (ret >= 0 && is_p2p_net_interface(iftype))
8047 nl80211_disable_11b_rates(drv, ret, 1);
8053 static void handle_tx_callback(void *ctx, u8 *buf, size_t len, int ok)
8055 struct ieee80211_hdr *hdr;
8057 union wpa_event_data event;
8059 hdr = (struct ieee80211_hdr *) buf;
8060 fc = le_to_host16(hdr->frame_control);
8062 os_memset(&event, 0, sizeof(event));
8063 event.tx_status.type = WLAN_FC_GET_TYPE(fc);
8064 event.tx_status.stype = WLAN_FC_GET_STYPE(fc);
8065 event.tx_status.dst = hdr->addr1;
8066 event.tx_status.data = buf;
8067 event.tx_status.data_len = len;
8068 event.tx_status.ack = ok;
8069 wpa_supplicant_event(ctx, EVENT_TX_STATUS, &event);
8073 static void from_unknown_sta(struct wpa_driver_nl80211_data *drv,
8074 u8 *buf, size_t len)
8076 struct ieee80211_hdr *hdr = (void *)buf;
8078 union wpa_event_data event;
8080 if (len < sizeof(*hdr))
8083 fc = le_to_host16(hdr->frame_control);
8085 os_memset(&event, 0, sizeof(event));
8086 event.rx_from_unknown.bssid = get_hdr_bssid(hdr, len);
8087 event.rx_from_unknown.addr = hdr->addr2;
8088 event.rx_from_unknown.wds = (fc & (WLAN_FC_FROMDS | WLAN_FC_TODS)) ==
8089 (WLAN_FC_FROMDS | WLAN_FC_TODS);
8090 wpa_supplicant_event(drv->ctx, EVENT_RX_FROM_UNKNOWN, &event);
8094 static void handle_frame(struct wpa_driver_nl80211_data *drv,
8095 u8 *buf, size_t len, int datarate, int ssi_signal)
8097 struct ieee80211_hdr *hdr;
8099 union wpa_event_data event;
8101 hdr = (struct ieee80211_hdr *) buf;
8102 fc = le_to_host16(hdr->frame_control);
8104 switch (WLAN_FC_GET_TYPE(fc)) {
8105 case WLAN_FC_TYPE_MGMT:
8106 os_memset(&event, 0, sizeof(event));
8107 event.rx_mgmt.frame = buf;
8108 event.rx_mgmt.frame_len = len;
8109 event.rx_mgmt.datarate = datarate;
8110 event.rx_mgmt.ssi_signal = ssi_signal;
8111 wpa_supplicant_event(drv->ctx, EVENT_RX_MGMT, &event);
8113 case WLAN_FC_TYPE_CTRL:
8114 /* can only get here with PS-Poll frames */
8115 wpa_printf(MSG_DEBUG, "CTRL");
8116 from_unknown_sta(drv, buf, len);
8118 case WLAN_FC_TYPE_DATA:
8119 from_unknown_sta(drv, buf, len);
8125 static void handle_monitor_read(int sock, void *eloop_ctx, void *sock_ctx)
8127 struct wpa_driver_nl80211_data *drv = eloop_ctx;
8129 unsigned char buf[3000];
8130 struct ieee80211_radiotap_iterator iter;
8132 int datarate = 0, ssi_signal = 0;
8133 int injected = 0, failed = 0, rxflags = 0;
8135 len = recv(sock, buf, sizeof(buf), 0);
8137 wpa_printf(MSG_ERROR, "nl80211: Monitor socket recv failed: %s",
8142 if (ieee80211_radiotap_iterator_init(&iter, (void *) buf, len, NULL)) {
8143 wpa_printf(MSG_INFO, "nl80211: received invalid radiotap frame");
8148 ret = ieee80211_radiotap_iterator_next(&iter);
8152 wpa_printf(MSG_INFO, "nl80211: received invalid radiotap frame (%d)",
8156 switch (iter.this_arg_index) {
8157 case IEEE80211_RADIOTAP_FLAGS:
8158 if (*iter.this_arg & IEEE80211_RADIOTAP_F_FCS)
8161 case IEEE80211_RADIOTAP_RX_FLAGS:
8164 case IEEE80211_RADIOTAP_TX_FLAGS:
8166 failed = le_to_host16((*(uint16_t *) iter.this_arg)) &
8167 IEEE80211_RADIOTAP_F_TX_FAIL;
8169 case IEEE80211_RADIOTAP_DATA_RETRIES:
8171 case IEEE80211_RADIOTAP_CHANNEL:
8172 /* TODO: convert from freq/flags to channel number */
8174 case IEEE80211_RADIOTAP_RATE:
8175 datarate = *iter.this_arg * 5;
8177 case IEEE80211_RADIOTAP_DBM_ANTSIGNAL:
8178 ssi_signal = (s8) *iter.this_arg;
8183 if (rxflags && injected)
8187 handle_frame(drv, buf + iter._max_length,
8188 len - iter._max_length, datarate, ssi_signal);
8190 handle_tx_callback(drv->ctx, buf + iter._max_length,
8191 len - iter._max_length, !failed);
8196 * we post-process the filter code later and rewrite
8197 * this to the offset to the last instruction
8202 static struct sock_filter msock_filter_insns[] = {
8204 * do a little-endian load of the radiotap length field
8206 /* load lower byte into A */
8207 BPF_STMT(BPF_LD | BPF_B | BPF_ABS, 2),
8208 /* put it into X (== index register) */
8209 BPF_STMT(BPF_MISC| BPF_TAX, 0),
8210 /* load upper byte into A */
8211 BPF_STMT(BPF_LD | BPF_B | BPF_ABS, 3),
8212 /* left-shift it by 8 */
8213 BPF_STMT(BPF_ALU | BPF_LSH | BPF_K, 8),
8215 BPF_STMT(BPF_ALU | BPF_OR | BPF_X, 0),
8216 /* put result into X */
8217 BPF_STMT(BPF_MISC| BPF_TAX, 0),
8220 * Allow management frames through, this also gives us those
8221 * management frames that we sent ourselves with status
8223 /* load the lower byte of the IEEE 802.11 frame control field */
8224 BPF_STMT(BPF_LD | BPF_B | BPF_IND, 0),
8225 /* mask off frame type and version */
8226 BPF_STMT(BPF_ALU | BPF_AND | BPF_K, 0xF),
8227 /* accept frame if it's both 0, fall through otherwise */
8228 BPF_JUMP(BPF_JMP | BPF_JEQ | BPF_K, 0, PASS, 0),
8231 * TODO: add a bit to radiotap RX flags that indicates
8232 * that the sending station is not associated, then
8233 * add a filter here that filters on our DA and that flag
8234 * to allow us to deauth frames to that bad station.
8236 * For now allow all To DS data frames through.
8238 /* load the IEEE 802.11 frame control field */
8239 BPF_STMT(BPF_LD | BPF_H | BPF_IND, 0),
8240 /* mask off frame type, version and DS status */
8241 BPF_STMT(BPF_ALU | BPF_AND | BPF_K, 0x0F03),
8242 /* accept frame if version 0, type 2 and To DS, fall through otherwise
8244 BPF_JUMP(BPF_JMP | BPF_JEQ | BPF_K, 0x0801, PASS, 0),
8248 * drop non-data frames
8250 /* load the lower byte of the frame control field */
8251 BPF_STMT(BPF_LD | BPF_B | BPF_IND, 0),
8252 /* mask off QoS bit */
8253 BPF_STMT(BPF_ALU | BPF_AND | BPF_K, 0x0c),
8254 /* drop non-data frames */
8255 BPF_JUMP(BPF_JMP | BPF_JEQ | BPF_K, 8, 0, FAIL),
8257 /* load the upper byte of the frame control field */
8258 BPF_STMT(BPF_LD | BPF_B | BPF_IND, 1),
8259 /* mask off toDS/fromDS */
8260 BPF_STMT(BPF_ALU | BPF_AND | BPF_K, 0x03),
8261 /* accept WDS frames */
8262 BPF_JUMP(BPF_JMP | BPF_JEQ | BPF_K, 3, PASS, 0),
8265 * add header length to index
8267 /* load the lower byte of the frame control field */
8268 BPF_STMT(BPF_LD | BPF_B | BPF_IND, 0),
8269 /* mask off QoS bit */
8270 BPF_STMT(BPF_ALU | BPF_AND | BPF_K, 0x80),
8271 /* right shift it by 6 to give 0 or 2 */
8272 BPF_STMT(BPF_ALU | BPF_RSH | BPF_K, 6),
8273 /* add data frame header length */
8274 BPF_STMT(BPF_ALU | BPF_ADD | BPF_K, 24),
8275 /* add index, was start of 802.11 header */
8276 BPF_STMT(BPF_ALU | BPF_ADD | BPF_X, 0),
8277 /* move to index, now start of LL header */
8278 BPF_STMT(BPF_MISC | BPF_TAX, 0),
8281 * Accept empty data frames, we use those for
8284 BPF_STMT(BPF_LD | BPF_W | BPF_LEN, 0),
8285 BPF_JUMP(BPF_JMP | BPF_JEQ | BPF_X, 0, PASS, 0),
8288 * Accept EAPOL frames
8290 BPF_STMT(BPF_LD | BPF_W | BPF_IND, 0),
8291 BPF_JUMP(BPF_JMP | BPF_JEQ | BPF_K, 0xAAAA0300, 0, FAIL),
8292 BPF_STMT(BPF_LD | BPF_W | BPF_IND, 4),
8293 BPF_JUMP(BPF_JMP | BPF_JEQ | BPF_K, 0x0000888E, PASS, FAIL),
8295 /* keep these last two statements or change the code below */
8296 /* return 0 == "DROP" */
8297 BPF_STMT(BPF_RET | BPF_K, 0),
8298 /* return ~0 == "keep all" */
8299 BPF_STMT(BPF_RET | BPF_K, ~0),
8302 static struct sock_fprog msock_filter = {
8303 .len = ARRAY_SIZE(msock_filter_insns),
8304 .filter = msock_filter_insns,
8308 static int add_monitor_filter(int s)
8312 /* rewrite all PASS/FAIL jump offsets */
8313 for (idx = 0; idx < msock_filter.len; idx++) {
8314 struct sock_filter *insn = &msock_filter_insns[idx];
8316 if (BPF_CLASS(insn->code) == BPF_JMP) {
8317 if (insn->code == (BPF_JMP|BPF_JA)) {
8318 if (insn->k == PASS)
8319 insn->k = msock_filter.len - idx - 2;
8320 else if (insn->k == FAIL)
8321 insn->k = msock_filter.len - idx - 3;
8324 if (insn->jt == PASS)
8325 insn->jt = msock_filter.len - idx - 2;
8326 else if (insn->jt == FAIL)
8327 insn->jt = msock_filter.len - idx - 3;
8329 if (insn->jf == PASS)
8330 insn->jf = msock_filter.len - idx - 2;
8331 else if (insn->jf == FAIL)
8332 insn->jf = msock_filter.len - idx - 3;
8336 if (setsockopt(s, SOL_SOCKET, SO_ATTACH_FILTER,
8337 &msock_filter, sizeof(msock_filter))) {
8338 wpa_printf(MSG_ERROR, "nl80211: setsockopt(SO_ATTACH_FILTER) failed: %s",
8347 static void nl80211_remove_monitor_interface(
8348 struct wpa_driver_nl80211_data *drv)
8350 if (drv->monitor_refcount > 0)
8351 drv->monitor_refcount--;
8352 wpa_printf(MSG_DEBUG, "nl80211: Remove monitor interface: refcount=%d",
8353 drv->monitor_refcount);
8354 if (drv->monitor_refcount > 0)
8357 if (drv->monitor_ifidx >= 0) {
8358 nl80211_remove_iface(drv, drv->monitor_ifidx);
8359 drv->monitor_ifidx = -1;
8361 if (drv->monitor_sock >= 0) {
8362 eloop_unregister_read_sock(drv->monitor_sock);
8363 close(drv->monitor_sock);
8364 drv->monitor_sock = -1;
8370 nl80211_create_monitor_interface(struct wpa_driver_nl80211_data *drv)
8373 struct sockaddr_ll ll;
8377 if (drv->monitor_ifidx >= 0) {
8378 drv->monitor_refcount++;
8379 wpa_printf(MSG_DEBUG, "nl80211: Re-use existing monitor interface: refcount=%d",
8380 drv->monitor_refcount);
8384 if (os_strncmp(drv->first_bss->ifname, "p2p-", 4) == 0) {
8386 * P2P interface name is of the format p2p-%s-%d. For monitor
8387 * interface name corresponding to P2P GO, replace "p2p-" with
8388 * "mon-" to retain the same interface name length and to
8389 * indicate that it is a monitor interface.
8391 snprintf(buf, IFNAMSIZ, "mon-%s", drv->first_bss->ifname + 4);
8393 /* Non-P2P interface with AP functionality. */
8394 snprintf(buf, IFNAMSIZ, "mon.%s", drv->first_bss->ifname);
8397 buf[IFNAMSIZ - 1] = '\0';
8399 drv->monitor_ifidx =
8400 nl80211_create_iface(drv, buf, NL80211_IFTYPE_MONITOR, NULL,
8403 if (drv->monitor_ifidx == -EOPNOTSUPP) {
8405 * This is backward compatibility for a few versions of
8406 * the kernel only that didn't advertise the right
8407 * attributes for the only driver that then supported
8408 * AP mode w/o monitor -- ath6kl.
8410 wpa_printf(MSG_DEBUG, "nl80211: Driver does not support "
8411 "monitor interface type - try to run without it");
8412 drv->device_ap_sme = 1;
8415 if (drv->monitor_ifidx < 0)
8418 if (linux_set_iface_flags(drv->global->ioctl_sock, buf, 1))
8421 memset(&ll, 0, sizeof(ll));
8422 ll.sll_family = AF_PACKET;
8423 ll.sll_ifindex = drv->monitor_ifidx;
8424 drv->monitor_sock = socket(PF_PACKET, SOCK_RAW, htons(ETH_P_ALL));
8425 if (drv->monitor_sock < 0) {
8426 wpa_printf(MSG_ERROR, "nl80211: socket[PF_PACKET,SOCK_RAW] failed: %s",
8431 if (add_monitor_filter(drv->monitor_sock)) {
8432 wpa_printf(MSG_INFO, "Failed to set socket filter for monitor "
8433 "interface; do filtering in user space");
8434 /* This works, but will cost in performance. */
8437 if (bind(drv->monitor_sock, (struct sockaddr *) &ll, sizeof(ll)) < 0) {
8438 wpa_printf(MSG_ERROR, "nl80211: monitor socket bind failed: %s",
8443 optlen = sizeof(optval);
8446 (drv->monitor_sock, SOL_SOCKET, SO_PRIORITY, &optval, optlen)) {
8447 wpa_printf(MSG_ERROR, "nl80211: Failed to set socket priority: %s",
8452 if (eloop_register_read_sock(drv->monitor_sock, handle_monitor_read,
8454 wpa_printf(MSG_INFO, "nl80211: Could not register monitor read socket");
8458 drv->monitor_refcount++;
8461 nl80211_remove_monitor_interface(drv);
8466 static int nl80211_setup_ap(struct i802_bss *bss)
8468 struct wpa_driver_nl80211_data *drv = bss->drv;
8470 wpa_printf(MSG_DEBUG, "nl80211: Setup AP(%s) - device_ap_sme=%d use_monitor=%d",
8471 bss->ifname, drv->device_ap_sme, drv->use_monitor);
8474 * Disable Probe Request reporting unless we need it in this way for
8475 * devices that include the AP SME, in the other case (unless using
8476 * monitor iface) we'll get it through the nl_mgmt socket instead.
8478 if (!drv->device_ap_sme)
8479 wpa_driver_nl80211_probe_req_report(bss, 0);
8481 if (!drv->device_ap_sme && !drv->use_monitor)
8482 if (nl80211_mgmt_subscribe_ap(bss))
8485 if (drv->device_ap_sme && !drv->use_monitor)
8486 if (nl80211_mgmt_subscribe_ap_dev_sme(bss))
8489 if (!drv->device_ap_sme && drv->use_monitor &&
8490 nl80211_create_monitor_interface(drv) &&
8491 !drv->device_ap_sme)
8494 if (drv->device_ap_sme &&
8495 wpa_driver_nl80211_probe_req_report(bss, 1) < 0) {
8496 wpa_printf(MSG_DEBUG, "nl80211: Failed to enable "
8497 "Probe Request frame reporting in AP mode");
8498 /* Try to survive without this */
8505 static void nl80211_teardown_ap(struct i802_bss *bss)
8507 struct wpa_driver_nl80211_data *drv = bss->drv;
8509 wpa_printf(MSG_DEBUG, "nl80211: Teardown AP(%s) - device_ap_sme=%d use_monitor=%d",
8510 bss->ifname, drv->device_ap_sme, drv->use_monitor);
8511 if (drv->device_ap_sme) {
8512 wpa_driver_nl80211_probe_req_report(bss, 0);
8513 if (!drv->use_monitor)
8514 nl80211_mgmt_unsubscribe(bss, "AP teardown (dev SME)");
8515 } else if (drv->use_monitor)
8516 nl80211_remove_monitor_interface(drv);
8518 nl80211_mgmt_unsubscribe(bss, "AP teardown");
8520 bss->beacon_set = 0;
8524 static int nl80211_send_eapol_data(struct i802_bss *bss,
8525 const u8 *addr, const u8 *data,
8528 struct sockaddr_ll ll;
8531 if (bss->drv->eapol_tx_sock < 0) {
8532 wpa_printf(MSG_DEBUG, "nl80211: No socket to send EAPOL");
8536 os_memset(&ll, 0, sizeof(ll));
8537 ll.sll_family = AF_PACKET;
8538 ll.sll_ifindex = bss->ifindex;
8539 ll.sll_protocol = htons(ETH_P_PAE);
8540 ll.sll_halen = ETH_ALEN;
8541 os_memcpy(ll.sll_addr, addr, ETH_ALEN);
8542 ret = sendto(bss->drv->eapol_tx_sock, data, data_len, 0,
8543 (struct sockaddr *) &ll, sizeof(ll));
8545 wpa_printf(MSG_ERROR, "nl80211: EAPOL TX: %s",
8552 static const u8 rfc1042_header[6] = { 0xaa, 0xaa, 0x03, 0x00, 0x00, 0x00 };
8554 static int wpa_driver_nl80211_hapd_send_eapol(
8555 void *priv, const u8 *addr, const u8 *data,
8556 size_t data_len, int encrypt, const u8 *own_addr, u32 flags)
8558 struct i802_bss *bss = priv;
8559 struct wpa_driver_nl80211_data *drv = bss->drv;
8560 struct ieee80211_hdr *hdr;
8564 int qos = flags & WPA_STA_WMM;
8566 if (drv->device_ap_sme || !drv->use_monitor)
8567 return nl80211_send_eapol_data(bss, addr, data, data_len);
8569 len = sizeof(*hdr) + (qos ? 2 : 0) + sizeof(rfc1042_header) + 2 +
8571 hdr = os_zalloc(len);
8573 wpa_printf(MSG_INFO, "nl80211: Failed to allocate EAPOL buffer(len=%lu)",
8574 (unsigned long) len);
8578 hdr->frame_control =
8579 IEEE80211_FC(WLAN_FC_TYPE_DATA, WLAN_FC_STYPE_DATA);
8580 hdr->frame_control |= host_to_le16(WLAN_FC_FROMDS);
8582 hdr->frame_control |= host_to_le16(WLAN_FC_ISWEP);
8584 hdr->frame_control |=
8585 host_to_le16(WLAN_FC_STYPE_QOS_DATA << 4);
8588 memcpy(hdr->IEEE80211_DA_FROMDS, addr, ETH_ALEN);
8589 memcpy(hdr->IEEE80211_BSSID_FROMDS, own_addr, ETH_ALEN);
8590 memcpy(hdr->IEEE80211_SA_FROMDS, own_addr, ETH_ALEN);
8591 pos = (u8 *) (hdr + 1);
8594 /* Set highest priority in QoS header */
8600 memcpy(pos, rfc1042_header, sizeof(rfc1042_header));
8601 pos += sizeof(rfc1042_header);
8602 WPA_PUT_BE16(pos, ETH_P_PAE);
8604 memcpy(pos, data, data_len);
8606 res = wpa_driver_nl80211_send_frame(bss, (u8 *) hdr, len, encrypt, 0,
8609 wpa_printf(MSG_ERROR, "i802_send_eapol - packet len: %lu - "
8611 (unsigned long) len, errno, strerror(errno));
8619 static int wpa_driver_nl80211_sta_set_flags(void *priv, const u8 *addr,
8621 int flags_or, int flags_and)
8623 struct i802_bss *bss = priv;
8624 struct wpa_driver_nl80211_data *drv = bss->drv;
8626 struct nlattr *flags;
8627 struct nl80211_sta_flag_update upd;
8629 wpa_printf(MSG_DEBUG, "nl80211: Set STA flags - ifname=%s addr=" MACSTR
8630 " total_flags=0x%x flags_or=0x%x flags_and=0x%x authorized=%d",
8631 bss->ifname, MAC2STR(addr), total_flags, flags_or, flags_and,
8632 !!(total_flags & WPA_STA_AUTHORIZED));
8634 msg = nlmsg_alloc();
8638 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_STATION);
8640 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX,
8641 if_nametoindex(bss->ifname));
8642 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
8645 * Backwards compatibility version using NL80211_ATTR_STA_FLAGS. This
8646 * can be removed eventually.
8648 flags = nla_nest_start(msg, NL80211_ATTR_STA_FLAGS);
8650 goto nla_put_failure;
8651 if (total_flags & WPA_STA_AUTHORIZED)
8652 NLA_PUT_FLAG(msg, NL80211_STA_FLAG_AUTHORIZED);
8654 if (total_flags & WPA_STA_WMM)
8655 NLA_PUT_FLAG(msg, NL80211_STA_FLAG_WME);
8657 if (total_flags & WPA_STA_SHORT_PREAMBLE)
8658 NLA_PUT_FLAG(msg, NL80211_STA_FLAG_SHORT_PREAMBLE);
8660 if (total_flags & WPA_STA_MFP)
8661 NLA_PUT_FLAG(msg, NL80211_STA_FLAG_MFP);
8663 if (total_flags & WPA_STA_TDLS_PEER)
8664 NLA_PUT_FLAG(msg, NL80211_STA_FLAG_TDLS_PEER);
8666 nla_nest_end(msg, flags);
8668 os_memset(&upd, 0, sizeof(upd));
8669 upd.mask = sta_flags_nl80211(flags_or | ~flags_and);
8670 upd.set = sta_flags_nl80211(flags_or);
8671 NLA_PUT(msg, NL80211_ATTR_STA_FLAGS2, sizeof(upd), &upd);
8673 return send_and_recv_msgs(drv, msg, NULL, NULL);
8680 static int wpa_driver_nl80211_ap(struct wpa_driver_nl80211_data *drv,
8681 struct wpa_driver_associate_params *params)
8683 enum nl80211_iftype nlmode, old_mode;
8684 struct hostapd_freq_params freq = {
8685 .freq = params->freq,
8689 wpa_printf(MSG_DEBUG, "nl80211: Setup AP operations for P2P "
8691 nlmode = NL80211_IFTYPE_P2P_GO;
8693 nlmode = NL80211_IFTYPE_AP;
8695 old_mode = drv->nlmode;
8696 if (wpa_driver_nl80211_set_mode(drv->first_bss, nlmode)) {
8697 nl80211_remove_monitor_interface(drv);
8701 if (nl80211_set_channel(drv->first_bss, &freq, 0)) {
8702 if (old_mode != nlmode)
8703 wpa_driver_nl80211_set_mode(drv->first_bss, old_mode);
8704 nl80211_remove_monitor_interface(drv);
8712 static int nl80211_leave_ibss(struct wpa_driver_nl80211_data *drv)
8717 msg = nlmsg_alloc();
8721 nl80211_cmd(drv, msg, 0, NL80211_CMD_LEAVE_IBSS);
8722 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
8723 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
8726 wpa_printf(MSG_DEBUG, "nl80211: Leave IBSS failed: ret=%d "
8727 "(%s)", ret, strerror(-ret));
8728 goto nla_put_failure;
8732 wpa_printf(MSG_DEBUG, "nl80211: Leave IBSS request sent successfully");
8735 if (wpa_driver_nl80211_set_mode(drv->first_bss,
8736 NL80211_IFTYPE_STATION)) {
8737 wpa_printf(MSG_INFO, "nl80211: Failed to set interface into "
8746 static int wpa_driver_nl80211_ibss(struct wpa_driver_nl80211_data *drv,
8747 struct wpa_driver_associate_params *params)
8753 wpa_printf(MSG_DEBUG, "nl80211: Join IBSS (ifindex=%d)", drv->ifindex);
8755 if (wpa_driver_nl80211_set_mode_ibss(drv->first_bss, params->freq)) {
8756 wpa_printf(MSG_INFO, "nl80211: Failed to set interface into "
8762 msg = nlmsg_alloc();
8766 nl80211_cmd(drv, msg, 0, NL80211_CMD_JOIN_IBSS);
8767 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
8769 if (params->ssid == NULL || params->ssid_len > sizeof(drv->ssid))
8770 goto nla_put_failure;
8772 wpa_hexdump_ascii(MSG_DEBUG, " * SSID",
8773 params->ssid, params->ssid_len);
8774 NLA_PUT(msg, NL80211_ATTR_SSID, params->ssid_len,
8776 os_memcpy(drv->ssid, params->ssid, params->ssid_len);
8777 drv->ssid_len = params->ssid_len;
8779 wpa_printf(MSG_DEBUG, " * freq=%d", params->freq);
8780 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ, params->freq);
8782 if (params->beacon_int > 0) {
8783 wpa_printf(MSG_DEBUG, " * beacon_int=%d", params->beacon_int);
8784 NLA_PUT_U32(msg, NL80211_ATTR_BEACON_INTERVAL,
8785 params->beacon_int);
8788 ret = nl80211_set_conn_keys(params, msg);
8790 goto nla_put_failure;
8792 if (params->bssid && params->fixed_bssid) {
8793 wpa_printf(MSG_DEBUG, " * BSSID=" MACSTR,
8794 MAC2STR(params->bssid));
8795 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, params->bssid);
8798 if (params->key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X ||
8799 params->key_mgmt_suite == WPA_KEY_MGMT_PSK ||
8800 params->key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SHA256 ||
8801 params->key_mgmt_suite == WPA_KEY_MGMT_PSK_SHA256) {
8802 wpa_printf(MSG_DEBUG, " * control port");
8803 NLA_PUT_FLAG(msg, NL80211_ATTR_CONTROL_PORT);
8806 if (params->wpa_ie) {
8807 wpa_hexdump(MSG_DEBUG,
8808 " * Extra IEs for Beacon/Probe Response frames",
8809 params->wpa_ie, params->wpa_ie_len);
8810 NLA_PUT(msg, NL80211_ATTR_IE, params->wpa_ie_len,
8814 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
8817 wpa_printf(MSG_DEBUG, "nl80211: Join IBSS failed: ret=%d (%s)",
8818 ret, strerror(-ret));
8820 if (ret == -EALREADY && count == 1) {
8821 wpa_printf(MSG_DEBUG, "nl80211: Retry IBSS join after "
8823 nl80211_leave_ibss(drv);
8828 goto nla_put_failure;
8831 wpa_printf(MSG_DEBUG, "nl80211: Join IBSS request sent successfully");
8839 static int nl80211_connect_common(struct wpa_driver_nl80211_data *drv,
8840 struct wpa_driver_associate_params *params,
8843 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
8845 if (params->bssid) {
8846 wpa_printf(MSG_DEBUG, " * bssid=" MACSTR,
8847 MAC2STR(params->bssid));
8848 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, params->bssid);
8851 if (params->bssid_hint) {
8852 wpa_printf(MSG_DEBUG, " * bssid_hint=" MACSTR,
8853 MAC2STR(params->bssid_hint));
8854 NLA_PUT(msg, NL80211_ATTR_MAC_HINT, ETH_ALEN,
8855 params->bssid_hint);
8859 wpa_printf(MSG_DEBUG, " * freq=%d", params->freq);
8860 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ, params->freq);
8861 drv->assoc_freq = params->freq;
8863 drv->assoc_freq = 0;
8865 if (params->freq_hint) {
8866 wpa_printf(MSG_DEBUG, " * freq_hint=%d", params->freq_hint);
8867 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ_HINT,
8871 if (params->bg_scan_period >= 0) {
8872 wpa_printf(MSG_DEBUG, " * bg scan period=%d",
8873 params->bg_scan_period);
8874 NLA_PUT_U16(msg, NL80211_ATTR_BG_SCAN_PERIOD,
8875 params->bg_scan_period);
8879 wpa_hexdump_ascii(MSG_DEBUG, " * SSID",
8880 params->ssid, params->ssid_len);
8881 NLA_PUT(msg, NL80211_ATTR_SSID, params->ssid_len,
8883 if (params->ssid_len > sizeof(drv->ssid))
8884 goto nla_put_failure;
8885 os_memcpy(drv->ssid, params->ssid, params->ssid_len);
8886 drv->ssid_len = params->ssid_len;
8889 wpa_hexdump(MSG_DEBUG, " * IEs", params->wpa_ie, params->wpa_ie_len);
8891 NLA_PUT(msg, NL80211_ATTR_IE, params->wpa_ie_len,
8894 if (params->wpa_proto) {
8895 enum nl80211_wpa_versions ver = 0;
8897 if (params->wpa_proto & WPA_PROTO_WPA)
8898 ver |= NL80211_WPA_VERSION_1;
8899 if (params->wpa_proto & WPA_PROTO_RSN)
8900 ver |= NL80211_WPA_VERSION_2;
8902 wpa_printf(MSG_DEBUG, " * WPA Versions 0x%x", ver);
8903 NLA_PUT_U32(msg, NL80211_ATTR_WPA_VERSIONS, ver);
8906 if (params->pairwise_suite != WPA_CIPHER_NONE) {
8907 u32 cipher = wpa_cipher_to_cipher_suite(params->pairwise_suite);
8908 wpa_printf(MSG_DEBUG, " * pairwise=0x%x", cipher);
8909 NLA_PUT_U32(msg, NL80211_ATTR_CIPHER_SUITES_PAIRWISE, cipher);
8912 if (params->group_suite == WPA_CIPHER_GTK_NOT_USED &&
8913 !(drv->capa.enc & WPA_DRIVER_CAPA_ENC_GTK_NOT_USED)) {
8915 * This is likely to work even though many drivers do not
8916 * advertise support for operations without GTK.
8918 wpa_printf(MSG_DEBUG, " * skip group cipher configuration for GTK_NOT_USED due to missing driver support advertisement");
8919 } else if (params->group_suite != WPA_CIPHER_NONE) {
8920 u32 cipher = wpa_cipher_to_cipher_suite(params->group_suite);
8921 wpa_printf(MSG_DEBUG, " * group=0x%x", cipher);
8922 NLA_PUT_U32(msg, NL80211_ATTR_CIPHER_SUITE_GROUP, cipher);
8925 if (params->key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X ||
8926 params->key_mgmt_suite == WPA_KEY_MGMT_PSK ||
8927 params->key_mgmt_suite == WPA_KEY_MGMT_FT_IEEE8021X ||
8928 params->key_mgmt_suite == WPA_KEY_MGMT_FT_PSK ||
8929 params->key_mgmt_suite == WPA_KEY_MGMT_CCKM ||
8930 params->key_mgmt_suite == WPA_KEY_MGMT_OSEN ||
8931 params->key_mgmt_suite == WPA_KEY_MGMT_IEEE8021X_SHA256 ||
8932 params->key_mgmt_suite == WPA_KEY_MGMT_PSK_SHA256) {
8933 int mgmt = WLAN_AKM_SUITE_PSK;
8935 switch (params->key_mgmt_suite) {
8936 case WPA_KEY_MGMT_CCKM:
8937 mgmt = WLAN_AKM_SUITE_CCKM;
8939 case WPA_KEY_MGMT_IEEE8021X:
8940 mgmt = WLAN_AKM_SUITE_8021X;
8942 case WPA_KEY_MGMT_FT_IEEE8021X:
8943 mgmt = WLAN_AKM_SUITE_FT_8021X;
8945 case WPA_KEY_MGMT_FT_PSK:
8946 mgmt = WLAN_AKM_SUITE_FT_PSK;
8948 case WPA_KEY_MGMT_IEEE8021X_SHA256:
8949 mgmt = WLAN_AKM_SUITE_8021X_SHA256;
8951 case WPA_KEY_MGMT_PSK_SHA256:
8952 mgmt = WLAN_AKM_SUITE_PSK_SHA256;
8954 case WPA_KEY_MGMT_OSEN:
8955 mgmt = WLAN_AKM_SUITE_OSEN;
8957 case WPA_KEY_MGMT_PSK:
8959 mgmt = WLAN_AKM_SUITE_PSK;
8962 wpa_printf(MSG_DEBUG, " * akm=0x%x", mgmt);
8963 NLA_PUT_U32(msg, NL80211_ATTR_AKM_SUITES, mgmt);
8966 NLA_PUT_FLAG(msg, NL80211_ATTR_CONTROL_PORT);
8968 if (params->mgmt_frame_protection == MGMT_FRAME_PROTECTION_REQUIRED)
8969 NLA_PUT_U32(msg, NL80211_ATTR_USE_MFP, NL80211_MFP_REQUIRED);
8971 if (params->disable_ht)
8972 NLA_PUT_FLAG(msg, NL80211_ATTR_DISABLE_HT);
8974 if (params->htcaps && params->htcaps_mask) {
8975 int sz = sizeof(struct ieee80211_ht_capabilities);
8976 wpa_hexdump(MSG_DEBUG, " * htcaps", params->htcaps, sz);
8977 NLA_PUT(msg, NL80211_ATTR_HT_CAPABILITY, sz, params->htcaps);
8978 wpa_hexdump(MSG_DEBUG, " * htcaps_mask",
8979 params->htcaps_mask, sz);
8980 NLA_PUT(msg, NL80211_ATTR_HT_CAPABILITY_MASK, sz,
8981 params->htcaps_mask);
8984 #ifdef CONFIG_VHT_OVERRIDES
8985 if (params->disable_vht) {
8986 wpa_printf(MSG_DEBUG, " * VHT disabled");
8987 NLA_PUT_FLAG(msg, NL80211_ATTR_DISABLE_VHT);
8990 if (params->vhtcaps && params->vhtcaps_mask) {
8991 int sz = sizeof(struct ieee80211_vht_capabilities);
8992 wpa_hexdump(MSG_DEBUG, " * vhtcaps", params->vhtcaps, sz);
8993 NLA_PUT(msg, NL80211_ATTR_VHT_CAPABILITY, sz, params->vhtcaps);
8994 wpa_hexdump(MSG_DEBUG, " * vhtcaps_mask",
8995 params->vhtcaps_mask, sz);
8996 NLA_PUT(msg, NL80211_ATTR_VHT_CAPABILITY_MASK, sz,
8997 params->vhtcaps_mask);
8999 #endif /* CONFIG_VHT_OVERRIDES */
9002 wpa_printf(MSG_DEBUG, " * P2P group");
9010 static int wpa_driver_nl80211_try_connect(
9011 struct wpa_driver_nl80211_data *drv,
9012 struct wpa_driver_associate_params *params)
9015 enum nl80211_auth_type type;
9019 msg = nlmsg_alloc();
9023 wpa_printf(MSG_DEBUG, "nl80211: Connect (ifindex=%d)", drv->ifindex);
9024 nl80211_cmd(drv, msg, 0, NL80211_CMD_CONNECT);
9026 ret = nl80211_connect_common(drv, params, msg);
9028 goto nla_put_failure;
9031 if (params->auth_alg & WPA_AUTH_ALG_OPEN)
9033 if (params->auth_alg & WPA_AUTH_ALG_SHARED)
9035 if (params->auth_alg & WPA_AUTH_ALG_LEAP)
9038 wpa_printf(MSG_DEBUG, " * Leave out Auth Type for automatic "
9040 goto skip_auth_type;
9043 if (params->auth_alg & WPA_AUTH_ALG_OPEN)
9044 type = NL80211_AUTHTYPE_OPEN_SYSTEM;
9045 else if (params->auth_alg & WPA_AUTH_ALG_SHARED)
9046 type = NL80211_AUTHTYPE_SHARED_KEY;
9047 else if (params->auth_alg & WPA_AUTH_ALG_LEAP)
9048 type = NL80211_AUTHTYPE_NETWORK_EAP;
9049 else if (params->auth_alg & WPA_AUTH_ALG_FT)
9050 type = NL80211_AUTHTYPE_FT;
9052 goto nla_put_failure;
9054 wpa_printf(MSG_DEBUG, " * Auth Type %d", type);
9055 NLA_PUT_U32(msg, NL80211_ATTR_AUTH_TYPE, type);
9058 ret = nl80211_set_conn_keys(params, msg);
9060 goto nla_put_failure;
9062 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
9065 wpa_printf(MSG_DEBUG, "nl80211: MLME connect failed: ret=%d "
9066 "(%s)", ret, strerror(-ret));
9067 goto nla_put_failure;
9070 wpa_printf(MSG_DEBUG, "nl80211: Connect request send successfully");
9079 static int wpa_driver_nl80211_connect(
9080 struct wpa_driver_nl80211_data *drv,
9081 struct wpa_driver_associate_params *params)
9083 int ret = wpa_driver_nl80211_try_connect(drv, params);
9084 if (ret == -EALREADY) {
9086 * cfg80211 does not currently accept new connections if
9087 * we are already connected. As a workaround, force
9088 * disconnection and try again.
9090 wpa_printf(MSG_DEBUG, "nl80211: Explicitly "
9091 "disconnecting before reassociation "
9093 if (wpa_driver_nl80211_disconnect(
9094 drv, WLAN_REASON_PREV_AUTH_NOT_VALID))
9096 ret = wpa_driver_nl80211_try_connect(drv, params);
9102 static int wpa_driver_nl80211_associate(
9103 void *priv, struct wpa_driver_associate_params *params)
9105 struct i802_bss *bss = priv;
9106 struct wpa_driver_nl80211_data *drv = bss->drv;
9110 if (params->mode == IEEE80211_MODE_AP)
9111 return wpa_driver_nl80211_ap(drv, params);
9113 if (params->mode == IEEE80211_MODE_IBSS)
9114 return wpa_driver_nl80211_ibss(drv, params);
9116 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME)) {
9117 enum nl80211_iftype nlmode = params->p2p ?
9118 NL80211_IFTYPE_P2P_CLIENT : NL80211_IFTYPE_STATION;
9120 if (wpa_driver_nl80211_set_mode(priv, nlmode) < 0)
9122 return wpa_driver_nl80211_connect(drv, params);
9125 nl80211_mark_disconnected(drv);
9127 msg = nlmsg_alloc();
9131 wpa_printf(MSG_DEBUG, "nl80211: Associate (ifindex=%d)",
9133 nl80211_cmd(drv, msg, 0, NL80211_CMD_ASSOCIATE);
9135 ret = nl80211_connect_common(drv, params, msg);
9137 goto nla_put_failure;
9139 if (params->prev_bssid) {
9140 wpa_printf(MSG_DEBUG, " * prev_bssid=" MACSTR,
9141 MAC2STR(params->prev_bssid));
9142 NLA_PUT(msg, NL80211_ATTR_PREV_BSSID, ETH_ALEN,
9143 params->prev_bssid);
9146 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
9149 wpa_dbg(drv->ctx, MSG_DEBUG,
9150 "nl80211: MLME command failed (assoc): ret=%d (%s)",
9151 ret, strerror(-ret));
9152 nl80211_dump_scan(drv);
9153 goto nla_put_failure;
9156 wpa_printf(MSG_DEBUG, "nl80211: Association request send "
9165 static int nl80211_set_mode(struct wpa_driver_nl80211_data *drv,
9166 int ifindex, enum nl80211_iftype mode)
9171 wpa_printf(MSG_DEBUG, "nl80211: Set mode ifindex %d iftype %d (%s)",
9172 ifindex, mode, nl80211_iftype_str(mode));
9174 msg = nlmsg_alloc();
9178 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_INTERFACE);
9179 if (nl80211_set_iface_id(msg, drv->first_bss) < 0)
9180 goto nla_put_failure;
9181 NLA_PUT_U32(msg, NL80211_ATTR_IFTYPE, mode);
9183 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
9189 wpa_printf(MSG_DEBUG, "nl80211: Failed to set interface %d to mode %d:"
9190 " %d (%s)", ifindex, mode, ret, strerror(-ret));
9195 static int wpa_driver_nl80211_set_mode_impl(
9196 struct i802_bss *bss,
9197 enum nl80211_iftype nlmode,
9198 struct hostapd_freq_params *desired_freq_params)
9200 struct wpa_driver_nl80211_data *drv = bss->drv;
9203 int was_ap = is_ap_interface(drv->nlmode);
9205 int mode_switch_res;
9207 mode_switch_res = nl80211_set_mode(drv, drv->ifindex, nlmode);
9208 if (mode_switch_res && nlmode == nl80211_get_ifmode(bss))
9209 mode_switch_res = 0;
9211 if (mode_switch_res == 0) {
9212 drv->nlmode = nlmode;
9217 if (mode_switch_res == -ENODEV)
9220 if (nlmode == drv->nlmode) {
9221 wpa_printf(MSG_DEBUG, "nl80211: Interface already in "
9222 "requested mode - ignore error");
9224 goto done; /* Already in the requested mode */
9227 /* mac80211 doesn't allow mode changes while the device is up, so
9228 * take the device down, try to set the mode again, and bring the
9231 wpa_printf(MSG_DEBUG, "nl80211: Try mode change after setting "
9233 for (i = 0; i < 10; i++) {
9234 res = i802_set_iface_flags(bss, 0);
9235 if (res == -EACCES || res == -ENODEV)
9238 wpa_printf(MSG_DEBUG, "nl80211: Failed to set "
9240 os_sleep(0, 100000);
9245 * Setting the mode will fail for some drivers if the phy is
9246 * on a frequency that the mode is disallowed in.
9248 if (desired_freq_params) {
9249 res = i802_set_freq(bss, desired_freq_params);
9251 wpa_printf(MSG_DEBUG,
9252 "nl80211: Failed to set frequency on interface");
9256 /* Try to set the mode again while the interface is down */
9257 mode_switch_res = nl80211_set_mode(drv, drv->ifindex, nlmode);
9258 if (mode_switch_res == -EBUSY) {
9259 wpa_printf(MSG_DEBUG,
9260 "nl80211: Delaying mode set while interface going down");
9261 os_sleep(0, 100000);
9264 ret = mode_switch_res;
9269 wpa_printf(MSG_DEBUG, "nl80211: Mode change succeeded while "
9270 "interface is down");
9271 drv->nlmode = nlmode;
9272 drv->ignore_if_down_event = 1;
9275 /* Bring the interface back up */
9276 res = linux_set_iface_flags(drv->global->ioctl_sock, bss->ifname, 1);
9278 wpa_printf(MSG_DEBUG,
9279 "nl80211: Failed to set interface up after switching mode");
9285 wpa_printf(MSG_DEBUG, "nl80211: Interface mode change to %d "
9286 "from %d failed", nlmode, drv->nlmode);
9290 if (is_p2p_net_interface(nlmode))
9291 nl80211_disable_11b_rates(drv, drv->ifindex, 1);
9292 else if (drv->disabled_11b_rates)
9293 nl80211_disable_11b_rates(drv, drv->ifindex, 0);
9295 if (is_ap_interface(nlmode)) {
9296 nl80211_mgmt_unsubscribe(bss, "start AP");
9297 /* Setup additional AP mode functionality if needed */
9298 if (nl80211_setup_ap(bss))
9300 } else if (was_ap) {
9301 /* Remove additional AP mode functionality */
9302 nl80211_teardown_ap(bss);
9304 nl80211_mgmt_unsubscribe(bss, "mode change");
9307 if (!bss->in_deinit && !is_ap_interface(nlmode) &&
9308 nl80211_mgmt_subscribe_non_ap(bss) < 0)
9309 wpa_printf(MSG_DEBUG, "nl80211: Failed to register Action "
9310 "frame processing - ignore for now");
9316 static int dfs_info_handler(struct nl_msg *msg, void *arg)
9318 struct nlattr *tb[NL80211_ATTR_MAX + 1];
9319 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
9320 int *dfs_capability_ptr = arg;
9322 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
9323 genlmsg_attrlen(gnlh, 0), NULL);
9325 if (tb[NL80211_ATTR_VENDOR_DATA]) {
9326 struct nlattr *nl_vend = tb[NL80211_ATTR_VENDOR_DATA];
9327 struct nlattr *tb_vendor[QCA_WLAN_VENDOR_ATTR_MAX + 1];
9329 nla_parse(tb_vendor, QCA_WLAN_VENDOR_ATTR_MAX,
9330 nla_data(nl_vend), nla_len(nl_vend), NULL);
9332 if (tb_vendor[QCA_WLAN_VENDOR_ATTR_DFS]) {
9334 val = nla_get_u32(tb_vendor[QCA_WLAN_VENDOR_ATTR_DFS]);
9335 wpa_printf(MSG_DEBUG, "nl80211: DFS offload capability: %u",
9337 *dfs_capability_ptr = val;
9345 static int wpa_driver_nl80211_set_mode(struct i802_bss *bss,
9346 enum nl80211_iftype nlmode)
9348 return wpa_driver_nl80211_set_mode_impl(bss, nlmode, NULL);
9352 static int wpa_driver_nl80211_set_mode_ibss(struct i802_bss *bss, int freq)
9354 struct hostapd_freq_params freq_params;
9355 os_memset(&freq_params, 0, sizeof(freq_params));
9356 freq_params.freq = freq;
9357 return wpa_driver_nl80211_set_mode_impl(bss, NL80211_IFTYPE_ADHOC,
9362 static int wpa_driver_nl80211_get_capa(void *priv,
9363 struct wpa_driver_capa *capa)
9365 struct i802_bss *bss = priv;
9366 struct wpa_driver_nl80211_data *drv = bss->drv;
9368 int dfs_capability = 0;
9371 if (!drv->has_capability)
9373 os_memcpy(capa, &drv->capa, sizeof(*capa));
9374 if (drv->extended_capa && drv->extended_capa_mask) {
9375 capa->extended_capa = drv->extended_capa;
9376 capa->extended_capa_mask = drv->extended_capa_mask;
9377 capa->extended_capa_len = drv->extended_capa_len;
9380 if ((capa->flags & WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE) &&
9381 !drv->allow_p2p_device) {
9382 wpa_printf(MSG_DEBUG, "nl80211: Do not indicate P2P_DEVICE support (p2p_device=1 driver param not specified)");
9383 capa->flags &= ~WPA_DRIVER_FLAGS_DEDICATED_P2P_DEVICE;
9386 if (drv->dfs_vendor_cmd_avail == 1) {
9387 msg = nlmsg_alloc();
9391 nl80211_cmd(drv, msg, 0, NL80211_CMD_VENDOR);
9393 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
9394 NLA_PUT_U32(msg, NL80211_ATTR_VENDOR_ID, OUI_QCA);
9395 NLA_PUT_U32(msg, NL80211_ATTR_VENDOR_SUBCMD,
9396 QCA_NL80211_VENDOR_SUBCMD_DFS_CAPABILITY);
9398 ret = send_and_recv_msgs(drv, msg, dfs_info_handler,
9402 capa->flags |= WPA_DRIVER_FLAGS_DFS_OFFLOAD;
9414 static int wpa_driver_nl80211_set_operstate(void *priv, int state)
9416 struct i802_bss *bss = priv;
9417 struct wpa_driver_nl80211_data *drv = bss->drv;
9419 wpa_printf(MSG_DEBUG, "nl80211: Set %s operstate %d->%d (%s)",
9420 bss->ifname, drv->operstate, state,
9421 state ? "UP" : "DORMANT");
9422 drv->operstate = state;
9423 return netlink_send_oper_ifla(drv->global->netlink, drv->ifindex, -1,
9424 state ? IF_OPER_UP : IF_OPER_DORMANT);
9428 static int wpa_driver_nl80211_set_supp_port(void *priv, int authorized)
9430 struct i802_bss *bss = priv;
9431 struct wpa_driver_nl80211_data *drv = bss->drv;
9433 struct nl80211_sta_flag_update upd;
9436 if (!drv->associated && is_zero_ether_addr(drv->bssid) && !authorized) {
9437 wpa_printf(MSG_DEBUG, "nl80211: Skip set_supp_port(unauthorized) while not associated");
9441 wpa_printf(MSG_DEBUG, "nl80211: Set supplicant port %sauthorized for "
9442 MACSTR, authorized ? "" : "un", MAC2STR(drv->bssid));
9444 msg = nlmsg_alloc();
9448 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_STATION);
9450 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX,
9451 if_nametoindex(bss->ifname));
9452 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, drv->bssid);
9454 os_memset(&upd, 0, sizeof(upd));
9455 upd.mask = BIT(NL80211_STA_FLAG_AUTHORIZED);
9457 upd.set = BIT(NL80211_STA_FLAG_AUTHORIZED);
9458 NLA_PUT(msg, NL80211_ATTR_STA_FLAGS2, sizeof(upd), &upd);
9460 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
9466 wpa_printf(MSG_DEBUG, "nl80211: Failed to set STA flag: %d (%s)",
9467 ret, strerror(-ret));
9472 /* Set kernel driver on given frequency (MHz) */
9473 static int i802_set_freq(void *priv, struct hostapd_freq_params *freq)
9475 struct i802_bss *bss = priv;
9476 return nl80211_set_channel(bss, freq, 0);
9480 static inline int min_int(int a, int b)
9488 static int get_key_handler(struct nl_msg *msg, void *arg)
9490 struct nlattr *tb[NL80211_ATTR_MAX + 1];
9491 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
9493 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
9494 genlmsg_attrlen(gnlh, 0), NULL);
9497 * TODO: validate the key index and mac address!
9498 * Otherwise, there's a race condition as soon as
9499 * the kernel starts sending key notifications.
9502 if (tb[NL80211_ATTR_KEY_SEQ])
9503 memcpy(arg, nla_data(tb[NL80211_ATTR_KEY_SEQ]),
9504 min_int(nla_len(tb[NL80211_ATTR_KEY_SEQ]), 6));
9509 static int i802_get_seqnum(const char *iface, void *priv, const u8 *addr,
9512 struct i802_bss *bss = priv;
9513 struct wpa_driver_nl80211_data *drv = bss->drv;
9516 msg = nlmsg_alloc();
9520 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_KEY);
9523 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
9524 NLA_PUT_U8(msg, NL80211_ATTR_KEY_IDX, idx);
9525 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, if_nametoindex(iface));
9529 return send_and_recv_msgs(drv, msg, get_key_handler, seq);
9536 static int i802_set_rts(void *priv, int rts)
9538 struct i802_bss *bss = priv;
9539 struct wpa_driver_nl80211_data *drv = bss->drv;
9544 msg = nlmsg_alloc();
9553 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_WIPHY);
9554 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
9555 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_RTS_THRESHOLD, val);
9557 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
9563 wpa_printf(MSG_DEBUG, "nl80211: Failed to set RTS threshold %d: "
9564 "%d (%s)", rts, ret, strerror(-ret));
9569 static int i802_set_frag(void *priv, int frag)
9571 struct i802_bss *bss = priv;
9572 struct wpa_driver_nl80211_data *drv = bss->drv;
9577 msg = nlmsg_alloc();
9586 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_WIPHY);
9587 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
9588 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FRAG_THRESHOLD, val);
9590 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
9596 wpa_printf(MSG_DEBUG, "nl80211: Failed to set fragmentation threshold "
9597 "%d: %d (%s)", frag, ret, strerror(-ret));
9602 static int i802_flush(void *priv)
9604 struct i802_bss *bss = priv;
9605 struct wpa_driver_nl80211_data *drv = bss->drv;
9609 msg = nlmsg_alloc();
9613 wpa_printf(MSG_DEBUG, "nl80211: flush -> DEL_STATION %s (all)",
9615 nl80211_cmd(drv, msg, 0, NL80211_CMD_DEL_STATION);
9618 * XXX: FIX! this needs to flush all VLANs too
9620 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX,
9621 if_nametoindex(bss->ifname));
9623 res = send_and_recv_msgs(drv, msg, NULL, NULL);
9625 wpa_printf(MSG_DEBUG, "nl80211: Station flush failed: ret=%d "
9626 "(%s)", res, strerror(-res));
9635 static int get_sta_handler(struct nl_msg *msg, void *arg)
9637 struct nlattr *tb[NL80211_ATTR_MAX + 1];
9638 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
9639 struct hostap_sta_driver_data *data = arg;
9640 struct nlattr *stats[NL80211_STA_INFO_MAX + 1];
9641 static struct nla_policy stats_policy[NL80211_STA_INFO_MAX + 1] = {
9642 [NL80211_STA_INFO_INACTIVE_TIME] = { .type = NLA_U32 },
9643 [NL80211_STA_INFO_RX_BYTES] = { .type = NLA_U32 },
9644 [NL80211_STA_INFO_TX_BYTES] = { .type = NLA_U32 },
9645 [NL80211_STA_INFO_RX_PACKETS] = { .type = NLA_U32 },
9646 [NL80211_STA_INFO_TX_PACKETS] = { .type = NLA_U32 },
9647 [NL80211_STA_INFO_TX_FAILED] = { .type = NLA_U32 },
9650 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
9651 genlmsg_attrlen(gnlh, 0), NULL);
9654 * TODO: validate the interface and mac address!
9655 * Otherwise, there's a race condition as soon as
9656 * the kernel starts sending station notifications.
9659 if (!tb[NL80211_ATTR_STA_INFO]) {
9660 wpa_printf(MSG_DEBUG, "sta stats missing!");
9663 if (nla_parse_nested(stats, NL80211_STA_INFO_MAX,
9664 tb[NL80211_ATTR_STA_INFO],
9666 wpa_printf(MSG_DEBUG, "failed to parse nested attributes!");
9670 if (stats[NL80211_STA_INFO_INACTIVE_TIME])
9671 data->inactive_msec =
9672 nla_get_u32(stats[NL80211_STA_INFO_INACTIVE_TIME]);
9673 if (stats[NL80211_STA_INFO_RX_BYTES])
9674 data->rx_bytes = nla_get_u32(stats[NL80211_STA_INFO_RX_BYTES]);
9675 if (stats[NL80211_STA_INFO_TX_BYTES])
9676 data->tx_bytes = nla_get_u32(stats[NL80211_STA_INFO_TX_BYTES]);
9677 if (stats[NL80211_STA_INFO_RX_PACKETS])
9679 nla_get_u32(stats[NL80211_STA_INFO_RX_PACKETS]);
9680 if (stats[NL80211_STA_INFO_TX_PACKETS])
9682 nla_get_u32(stats[NL80211_STA_INFO_TX_PACKETS]);
9683 if (stats[NL80211_STA_INFO_TX_FAILED])
9684 data->tx_retry_failed =
9685 nla_get_u32(stats[NL80211_STA_INFO_TX_FAILED]);
9690 static int i802_read_sta_data(struct i802_bss *bss,
9691 struct hostap_sta_driver_data *data,
9694 struct wpa_driver_nl80211_data *drv = bss->drv;
9697 os_memset(data, 0, sizeof(*data));
9698 msg = nlmsg_alloc();
9702 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_STATION);
9704 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
9705 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, if_nametoindex(bss->ifname));
9707 return send_and_recv_msgs(drv, msg, get_sta_handler, data);
9714 static int i802_set_tx_queue_params(void *priv, int queue, int aifs,
9715 int cw_min, int cw_max, int burst_time)
9717 struct i802_bss *bss = priv;
9718 struct wpa_driver_nl80211_data *drv = bss->drv;
9720 struct nlattr *txq, *params;
9722 msg = nlmsg_alloc();
9726 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_WIPHY);
9728 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, if_nametoindex(bss->ifname));
9730 txq = nla_nest_start(msg, NL80211_ATTR_WIPHY_TXQ_PARAMS);
9732 goto nla_put_failure;
9734 /* We are only sending parameters for a single TXQ at a time */
9735 params = nla_nest_start(msg, 1);
9737 goto nla_put_failure;
9741 NLA_PUT_U8(msg, NL80211_TXQ_ATTR_QUEUE, NL80211_TXQ_Q_VO);
9744 NLA_PUT_U8(msg, NL80211_TXQ_ATTR_QUEUE, NL80211_TXQ_Q_VI);
9747 NLA_PUT_U8(msg, NL80211_TXQ_ATTR_QUEUE, NL80211_TXQ_Q_BE);
9750 NLA_PUT_U8(msg, NL80211_TXQ_ATTR_QUEUE, NL80211_TXQ_Q_BK);
9753 /* Burst time is configured in units of 0.1 msec and TXOP parameter in
9754 * 32 usec, so need to convert the value here. */
9755 NLA_PUT_U16(msg, NL80211_TXQ_ATTR_TXOP, (burst_time * 100 + 16) / 32);
9756 NLA_PUT_U16(msg, NL80211_TXQ_ATTR_CWMIN, cw_min);
9757 NLA_PUT_U16(msg, NL80211_TXQ_ATTR_CWMAX, cw_max);
9758 NLA_PUT_U8(msg, NL80211_TXQ_ATTR_AIFS, aifs);
9760 nla_nest_end(msg, params);
9762 nla_nest_end(msg, txq);
9764 if (send_and_recv_msgs(drv, msg, NULL, NULL) == 0)
9773 static int i802_set_sta_vlan(struct i802_bss *bss, const u8 *addr,
9774 const char *ifname, int vlan_id)
9776 struct wpa_driver_nl80211_data *drv = bss->drv;
9780 msg = nlmsg_alloc();
9784 wpa_printf(MSG_DEBUG, "nl80211: %s[%d]: set_sta_vlan(" MACSTR
9785 ", ifname=%s[%d], vlan_id=%d)",
9786 bss->ifname, if_nametoindex(bss->ifname),
9787 MAC2STR(addr), ifname, if_nametoindex(ifname), vlan_id);
9788 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_STATION);
9790 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX,
9791 if_nametoindex(bss->ifname));
9792 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
9793 NLA_PUT_U32(msg, NL80211_ATTR_STA_VLAN,
9794 if_nametoindex(ifname));
9796 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
9799 wpa_printf(MSG_ERROR, "nl80211: NL80211_ATTR_STA_VLAN (addr="
9800 MACSTR " ifname=%s vlan_id=%d) failed: %d (%s)",
9801 MAC2STR(addr), ifname, vlan_id, ret,
9810 static int i802_get_inact_sec(void *priv, const u8 *addr)
9812 struct hostap_sta_driver_data data;
9815 data.inactive_msec = (unsigned long) -1;
9816 ret = i802_read_sta_data(priv, &data, addr);
9817 if (ret || data.inactive_msec == (unsigned long) -1)
9819 return data.inactive_msec / 1000;
9823 static int i802_sta_clear_stats(void *priv, const u8 *addr)
9832 static int i802_sta_deauth(void *priv, const u8 *own_addr, const u8 *addr,
9835 struct i802_bss *bss = priv;
9836 struct wpa_driver_nl80211_data *drv = bss->drv;
9837 struct ieee80211_mgmt mgmt;
9839 if (drv->device_ap_sme)
9840 return wpa_driver_nl80211_sta_remove(bss, addr);
9842 memset(&mgmt, 0, sizeof(mgmt));
9843 mgmt.frame_control = IEEE80211_FC(WLAN_FC_TYPE_MGMT,
9844 WLAN_FC_STYPE_DEAUTH);
9845 memcpy(mgmt.da, addr, ETH_ALEN);
9846 memcpy(mgmt.sa, own_addr, ETH_ALEN);
9847 memcpy(mgmt.bssid, own_addr, ETH_ALEN);
9848 mgmt.u.deauth.reason_code = host_to_le16(reason);
9849 return wpa_driver_nl80211_send_mlme(bss, (u8 *) &mgmt,
9851 sizeof(mgmt.u.deauth), 0, 0, 0, 0,
9856 static int i802_sta_disassoc(void *priv, const u8 *own_addr, const u8 *addr,
9859 struct i802_bss *bss = priv;
9860 struct wpa_driver_nl80211_data *drv = bss->drv;
9861 struct ieee80211_mgmt mgmt;
9863 if (drv->device_ap_sme)
9864 return wpa_driver_nl80211_sta_remove(bss, addr);
9866 memset(&mgmt, 0, sizeof(mgmt));
9867 mgmt.frame_control = IEEE80211_FC(WLAN_FC_TYPE_MGMT,
9868 WLAN_FC_STYPE_DISASSOC);
9869 memcpy(mgmt.da, addr, ETH_ALEN);
9870 memcpy(mgmt.sa, own_addr, ETH_ALEN);
9871 memcpy(mgmt.bssid, own_addr, ETH_ALEN);
9872 mgmt.u.disassoc.reason_code = host_to_le16(reason);
9873 return wpa_driver_nl80211_send_mlme(bss, (u8 *) &mgmt,
9875 sizeof(mgmt.u.disassoc), 0, 0, 0, 0,
9880 static void dump_ifidx(struct wpa_driver_nl80211_data *drv)
9882 char buf[200], *pos, *end;
9886 end = pos + sizeof(buf);
9888 for (i = 0; i < drv->num_if_indices; i++) {
9889 if (!drv->if_indices[i])
9891 res = os_snprintf(pos, end - pos, " %d", drv->if_indices[i]);
9892 if (res < 0 || res >= end - pos)
9898 wpa_printf(MSG_DEBUG, "nl80211: if_indices[%d]:%s",
9899 drv->num_if_indices, buf);
9903 static void add_ifidx(struct wpa_driver_nl80211_data *drv, int ifidx)
9908 wpa_printf(MSG_DEBUG, "nl80211: Add own interface ifindex %d",
9910 if (have_ifidx(drv, ifidx)) {
9911 wpa_printf(MSG_DEBUG, "nl80211: ifindex %d already in the list",
9915 for (i = 0; i < drv->num_if_indices; i++) {
9916 if (drv->if_indices[i] == 0) {
9917 drv->if_indices[i] = ifidx;
9923 if (drv->if_indices != drv->default_if_indices)
9924 old = drv->if_indices;
9928 drv->if_indices = os_realloc_array(old, drv->num_if_indices + 1,
9930 if (!drv->if_indices) {
9932 drv->if_indices = drv->default_if_indices;
9934 drv->if_indices = old;
9935 wpa_printf(MSG_ERROR, "Failed to reallocate memory for "
9937 wpa_printf(MSG_ERROR, "Ignoring EAPOL on interface %d", ifidx);
9940 os_memcpy(drv->if_indices, drv->default_if_indices,
9941 sizeof(drv->default_if_indices));
9942 drv->if_indices[drv->num_if_indices] = ifidx;
9943 drv->num_if_indices++;
9948 static void del_ifidx(struct wpa_driver_nl80211_data *drv, int ifidx)
9952 for (i = 0; i < drv->num_if_indices; i++) {
9953 if (drv->if_indices[i] == ifidx) {
9954 drv->if_indices[i] = 0;
9962 static int have_ifidx(struct wpa_driver_nl80211_data *drv, int ifidx)
9966 for (i = 0; i < drv->num_if_indices; i++)
9967 if (drv->if_indices[i] == ifidx)
9974 static int i802_set_wds_sta(void *priv, const u8 *addr, int aid, int val,
9975 const char *bridge_ifname, char *ifname_wds)
9977 struct i802_bss *bss = priv;
9978 struct wpa_driver_nl80211_data *drv = bss->drv;
9979 char name[IFNAMSIZ + 1];
9981 os_snprintf(name, sizeof(name), "%s.sta%d", bss->ifname, aid);
9983 os_strlcpy(ifname_wds, name, IFNAMSIZ + 1);
9985 wpa_printf(MSG_DEBUG, "nl80211: Set WDS STA addr=" MACSTR
9986 " aid=%d val=%d name=%s", MAC2STR(addr), aid, val, name);
9988 if (!if_nametoindex(name)) {
9989 if (nl80211_create_iface(drv, name,
9990 NL80211_IFTYPE_AP_VLAN,
9991 bss->addr, 1, NULL, NULL, 0) <
9994 if (bridge_ifname &&
9995 linux_br_add_if(drv->global->ioctl_sock,
9996 bridge_ifname, name) < 0)
9999 if (linux_set_iface_flags(drv->global->ioctl_sock, name, 1)) {
10000 wpa_printf(MSG_ERROR, "nl80211: Failed to set WDS STA "
10001 "interface %s up", name);
10003 return i802_set_sta_vlan(priv, addr, name, 0);
10006 linux_br_del_if(drv->global->ioctl_sock, bridge_ifname,
10009 i802_set_sta_vlan(priv, addr, bss->ifname, 0);
10010 nl80211_remove_iface(drv, if_nametoindex(name));
10016 static void handle_eapol(int sock, void *eloop_ctx, void *sock_ctx)
10018 struct wpa_driver_nl80211_data *drv = eloop_ctx;
10019 struct sockaddr_ll lladdr;
10020 unsigned char buf[3000];
10022 socklen_t fromlen = sizeof(lladdr);
10024 len = recvfrom(sock, buf, sizeof(buf), 0,
10025 (struct sockaddr *)&lladdr, &fromlen);
10027 wpa_printf(MSG_ERROR, "nl80211: EAPOL recv failed: %s",
10032 if (have_ifidx(drv, lladdr.sll_ifindex))
10033 drv_event_eapol_rx(drv->ctx, lladdr.sll_addr, buf, len);
10037 static int i802_check_bridge(struct wpa_driver_nl80211_data *drv,
10038 struct i802_bss *bss,
10039 const char *brname, const char *ifname)
10042 char in_br[IFNAMSIZ];
10044 os_strlcpy(bss->brname, brname, IFNAMSIZ);
10045 ifindex = if_nametoindex(brname);
10046 if (ifindex == 0) {
10048 * Bridge was configured, but the bridge device does
10049 * not exist. Try to add it now.
10051 if (linux_br_add(drv->global->ioctl_sock, brname) < 0) {
10052 wpa_printf(MSG_ERROR, "nl80211: Failed to add the "
10053 "bridge interface %s: %s",
10054 brname, strerror(errno));
10057 bss->added_bridge = 1;
10058 add_ifidx(drv, if_nametoindex(brname));
10061 if (linux_br_get(in_br, ifname) == 0) {
10062 if (os_strcmp(in_br, brname) == 0)
10063 return 0; /* already in the bridge */
10065 wpa_printf(MSG_DEBUG, "nl80211: Removing interface %s from "
10066 "bridge %s", ifname, in_br);
10067 if (linux_br_del_if(drv->global->ioctl_sock, in_br, ifname) <
10069 wpa_printf(MSG_ERROR, "nl80211: Failed to "
10070 "remove interface %s from bridge "
10072 ifname, brname, strerror(errno));
10077 wpa_printf(MSG_DEBUG, "nl80211: Adding interface %s into bridge %s",
10079 if (linux_br_add_if(drv->global->ioctl_sock, brname, ifname) < 0) {
10080 wpa_printf(MSG_ERROR, "nl80211: Failed to add interface %s "
10081 "into bridge %s: %s",
10082 ifname, brname, strerror(errno));
10085 bss->added_if_into_bridge = 1;
10091 static void *i802_init(struct hostapd_data *hapd,
10092 struct wpa_init_params *params)
10094 struct wpa_driver_nl80211_data *drv;
10095 struct i802_bss *bss;
10097 char brname[IFNAMSIZ];
10098 int ifindex, br_ifindex;
10101 bss = wpa_driver_nl80211_drv_init(hapd, params->ifname,
10102 params->global_priv, 1,
10109 if (linux_br_get(brname, params->ifname) == 0) {
10110 wpa_printf(MSG_DEBUG, "nl80211: Interface %s is in bridge %s",
10111 params->ifname, brname);
10112 br_ifindex = if_nametoindex(brname);
10118 for (i = 0; i < params->num_bridge; i++) {
10119 if (params->bridge[i]) {
10120 ifindex = if_nametoindex(params->bridge[i]);
10122 add_ifidx(drv, ifindex);
10123 if (ifindex == br_ifindex)
10127 if (!br_added && br_ifindex &&
10128 (params->num_bridge == 0 || !params->bridge[0]))
10129 add_ifidx(drv, br_ifindex);
10131 /* start listening for EAPOL on the default AP interface */
10132 add_ifidx(drv, drv->ifindex);
10134 if (params->num_bridge && params->bridge[0] &&
10135 i802_check_bridge(drv, bss, params->bridge[0], params->ifname) < 0)
10138 #ifdef CONFIG_LIBNL3_ROUTE
10139 if (bss->added_if_into_bridge) {
10140 drv->rtnl_sk = nl_socket_alloc();
10141 if (drv->rtnl_sk == NULL) {
10142 wpa_printf(MSG_ERROR, "nl80211: Failed to allocate nl_sock");
10146 if (nl_connect(drv->rtnl_sk, NETLINK_ROUTE)) {
10147 wpa_printf(MSG_ERROR, "nl80211: Failed to connect nl_sock to NETLINK_ROUTE: %s",
10152 #endif /* CONFIG_LIBNL3_ROUTE */
10154 drv->eapol_sock = socket(PF_PACKET, SOCK_DGRAM, htons(ETH_P_PAE));
10155 if (drv->eapol_sock < 0) {
10156 wpa_printf(MSG_ERROR, "nl80211: socket(PF_PACKET, SOCK_DGRAM, ETH_P_PAE) failed: %s",
10161 if (eloop_register_read_sock(drv->eapol_sock, handle_eapol, drv, NULL))
10163 wpa_printf(MSG_INFO, "nl80211: Could not register read socket for eapol");
10167 if (linux_get_ifhwaddr(drv->global->ioctl_sock, bss->ifname,
10170 os_memcpy(drv->perm_addr, params->own_addr, ETH_ALEN);
10172 memcpy(bss->addr, params->own_addr, ETH_ALEN);
10177 wpa_driver_nl80211_deinit(bss);
10182 static void i802_deinit(void *priv)
10184 struct i802_bss *bss = priv;
10185 wpa_driver_nl80211_deinit(bss);
10189 static enum nl80211_iftype wpa_driver_nl80211_if_type(
10190 enum wpa_driver_if_type type)
10193 case WPA_IF_STATION:
10194 return NL80211_IFTYPE_STATION;
10195 case WPA_IF_P2P_CLIENT:
10196 case WPA_IF_P2P_GROUP:
10197 return NL80211_IFTYPE_P2P_CLIENT;
10198 case WPA_IF_AP_VLAN:
10199 return NL80211_IFTYPE_AP_VLAN;
10200 case WPA_IF_AP_BSS:
10201 return NL80211_IFTYPE_AP;
10202 case WPA_IF_P2P_GO:
10203 return NL80211_IFTYPE_P2P_GO;
10204 case WPA_IF_P2P_DEVICE:
10205 return NL80211_IFTYPE_P2P_DEVICE;
10213 static int nl80211_addr_in_use(struct nl80211_global *global, const u8 *addr)
10215 struct wpa_driver_nl80211_data *drv;
10216 dl_list_for_each(drv, &global->interfaces,
10217 struct wpa_driver_nl80211_data, list) {
10218 if (os_memcmp(addr, drv->first_bss->addr, ETH_ALEN) == 0)
10225 static int nl80211_p2p_interface_addr(struct wpa_driver_nl80211_data *drv,
10233 os_memcpy(new_addr, drv->first_bss->addr, ETH_ALEN);
10234 for (idx = 0; idx < 64; idx++) {
10235 new_addr[0] = drv->first_bss->addr[0] | 0x02;
10236 new_addr[0] ^= idx << 2;
10237 if (!nl80211_addr_in_use(drv->global, new_addr))
10243 wpa_printf(MSG_DEBUG, "nl80211: Assigned new P2P Interface Address "
10244 MACSTR, MAC2STR(new_addr));
10249 #endif /* CONFIG_P2P */
10255 u8 macaddr[ETH_ALEN];
10258 static int nl80211_wdev_handler(struct nl_msg *msg, void *arg)
10260 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
10261 struct nlattr *tb[NL80211_ATTR_MAX + 1];
10262 struct wdev_info *wi = arg;
10264 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
10265 genlmsg_attrlen(gnlh, 0), NULL);
10266 if (tb[NL80211_ATTR_WDEV]) {
10267 wi->wdev_id = nla_get_u64(tb[NL80211_ATTR_WDEV]);
10268 wi->wdev_id_set = 1;
10271 if (tb[NL80211_ATTR_MAC])
10272 os_memcpy(wi->macaddr, nla_data(tb[NL80211_ATTR_MAC]),
10279 static int wpa_driver_nl80211_if_add(void *priv, enum wpa_driver_if_type type,
10280 const char *ifname, const u8 *addr,
10281 void *bss_ctx, void **drv_priv,
10282 char *force_ifname, u8 *if_addr,
10283 const char *bridge, int use_existing)
10285 enum nl80211_iftype nlmode;
10286 struct i802_bss *bss = priv;
10287 struct wpa_driver_nl80211_data *drv = bss->drv;
10292 os_memcpy(if_addr, addr, ETH_ALEN);
10293 nlmode = wpa_driver_nl80211_if_type(type);
10294 if (nlmode == NL80211_IFTYPE_P2P_DEVICE) {
10295 struct wdev_info p2pdev_info;
10297 os_memset(&p2pdev_info, 0, sizeof(p2pdev_info));
10298 ifidx = nl80211_create_iface(drv, ifname, nlmode, addr,
10299 0, nl80211_wdev_handler,
10300 &p2pdev_info, use_existing);
10301 if (!p2pdev_info.wdev_id_set || ifidx != 0) {
10302 wpa_printf(MSG_ERROR, "nl80211: Failed to create a P2P Device interface %s",
10307 drv->global->if_add_wdevid = p2pdev_info.wdev_id;
10308 drv->global->if_add_wdevid_set = p2pdev_info.wdev_id_set;
10309 if (!is_zero_ether_addr(p2pdev_info.macaddr))
10310 os_memcpy(if_addr, p2pdev_info.macaddr, ETH_ALEN);
10311 wpa_printf(MSG_DEBUG, "nl80211: New P2P Device interface %s (0x%llx) created",
10313 (long long unsigned int) p2pdev_info.wdev_id);
10315 ifidx = nl80211_create_iface(drv, ifname, nlmode, addr,
10316 0, NULL, NULL, use_existing);
10317 if (use_existing && ifidx == -ENFILE) {
10319 ifidx = if_nametoindex(ifname);
10320 } else if (ifidx < 0) {
10326 if (drv->nlmode == NL80211_IFTYPE_P2P_DEVICE)
10327 os_memcpy(if_addr, bss->addr, ETH_ALEN);
10328 else if (linux_get_ifhwaddr(drv->global->ioctl_sock,
10329 bss->ifname, if_addr) < 0) {
10331 nl80211_remove_iface(drv, ifidx);
10338 (type == WPA_IF_P2P_CLIENT || type == WPA_IF_P2P_GROUP ||
10339 type == WPA_IF_P2P_GO)) {
10340 /* Enforce unique P2P Interface Address */
10341 u8 new_addr[ETH_ALEN];
10343 if (linux_get_ifhwaddr(drv->global->ioctl_sock, ifname,
10346 nl80211_remove_iface(drv, ifidx);
10349 if (nl80211_addr_in_use(drv->global, new_addr)) {
10350 wpa_printf(MSG_DEBUG, "nl80211: Allocate new address "
10351 "for P2P group interface");
10352 if (nl80211_p2p_interface_addr(drv, new_addr) < 0) {
10354 nl80211_remove_iface(drv, ifidx);
10357 if (linux_set_ifhwaddr(drv->global->ioctl_sock, ifname,
10360 nl80211_remove_iface(drv, ifidx);
10364 os_memcpy(if_addr, new_addr, ETH_ALEN);
10366 #endif /* CONFIG_P2P */
10368 if (type == WPA_IF_AP_BSS) {
10369 struct i802_bss *new_bss = os_zalloc(sizeof(*new_bss));
10370 if (new_bss == NULL) {
10372 nl80211_remove_iface(drv, ifidx);
10377 i802_check_bridge(drv, new_bss, bridge, ifname) < 0) {
10378 wpa_printf(MSG_ERROR, "nl80211: Failed to add the new "
10379 "interface %s to a bridge %s",
10382 nl80211_remove_iface(drv, ifidx);
10387 if (linux_set_iface_flags(drv->global->ioctl_sock, ifname, 1))
10390 nl80211_remove_iface(drv, ifidx);
10394 os_strlcpy(new_bss->ifname, ifname, IFNAMSIZ);
10395 os_memcpy(new_bss->addr, if_addr, ETH_ALEN);
10396 new_bss->ifindex = ifidx;
10397 new_bss->drv = drv;
10398 new_bss->next = drv->first_bss->next;
10399 new_bss->freq = drv->first_bss->freq;
10400 new_bss->ctx = bss_ctx;
10401 new_bss->added_if = added;
10402 drv->first_bss->next = new_bss;
10404 *drv_priv = new_bss;
10405 nl80211_init_bss(new_bss);
10407 /* Subscribe management frames for this WPA_IF_AP_BSS */
10408 if (nl80211_setup_ap(new_bss))
10413 drv->global->if_add_ifindex = ifidx;
10416 * Some virtual interfaces need to process EAPOL packets and events on
10417 * the parent interface. This is used mainly with hostapd.
10421 nlmode == NL80211_IFTYPE_AP_VLAN ||
10422 nlmode == NL80211_IFTYPE_WDS ||
10423 nlmode == NL80211_IFTYPE_MONITOR))
10424 add_ifidx(drv, ifidx);
10430 static int wpa_driver_nl80211_if_remove(struct i802_bss *bss,
10431 enum wpa_driver_if_type type,
10432 const char *ifname)
10434 struct wpa_driver_nl80211_data *drv = bss->drv;
10435 int ifindex = if_nametoindex(ifname);
10437 wpa_printf(MSG_DEBUG, "nl80211: %s(type=%d ifname=%s) ifindex=%d added_if=%d",
10438 __func__, type, ifname, ifindex, bss->added_if);
10439 if (ifindex > 0 && (bss->added_if || bss->ifindex != ifindex))
10440 nl80211_remove_iface(drv, ifindex);
10441 else if (ifindex > 0 && !bss->added_if) {
10442 struct wpa_driver_nl80211_data *drv2;
10443 dl_list_for_each(drv2, &drv->global->interfaces,
10444 struct wpa_driver_nl80211_data, list)
10445 del_ifidx(drv2, ifindex);
10448 if (type != WPA_IF_AP_BSS)
10451 if (bss->added_if_into_bridge) {
10452 if (linux_br_del_if(drv->global->ioctl_sock, bss->brname,
10454 wpa_printf(MSG_INFO, "nl80211: Failed to remove "
10455 "interface %s from bridge %s: %s",
10456 bss->ifname, bss->brname, strerror(errno));
10458 if (bss->added_bridge) {
10459 if (linux_br_del(drv->global->ioctl_sock, bss->brname) < 0)
10460 wpa_printf(MSG_INFO, "nl80211: Failed to remove "
10462 bss->brname, strerror(errno));
10465 if (bss != drv->first_bss) {
10466 struct i802_bss *tbss;
10468 wpa_printf(MSG_DEBUG, "nl80211: Not the first BSS - remove it");
10469 for (tbss = drv->first_bss; tbss; tbss = tbss->next) {
10470 if (tbss->next == bss) {
10471 tbss->next = bss->next;
10472 /* Unsubscribe management frames */
10473 nl80211_teardown_ap(bss);
10474 nl80211_destroy_bss(bss);
10475 if (!bss->added_if)
10476 i802_set_iface_flags(bss, 0);
10483 wpa_printf(MSG_INFO, "nl80211: %s - could not find "
10484 "BSS %p in the list", __func__, bss);
10486 wpa_printf(MSG_DEBUG, "nl80211: First BSS - reassign context");
10487 nl80211_teardown_ap(bss);
10488 if (!bss->added_if && !drv->first_bss->next)
10489 wpa_driver_nl80211_del_beacon(drv);
10490 nl80211_destroy_bss(bss);
10491 if (!bss->added_if)
10492 i802_set_iface_flags(bss, 0);
10493 if (drv->first_bss->next) {
10494 drv->first_bss = drv->first_bss->next;
10495 drv->ctx = drv->first_bss->ctx;
10498 wpa_printf(MSG_DEBUG, "nl80211: No second BSS to reassign context to");
10506 static int cookie_handler(struct nl_msg *msg, void *arg)
10508 struct nlattr *tb[NL80211_ATTR_MAX + 1];
10509 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
10511 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
10512 genlmsg_attrlen(gnlh, 0), NULL);
10513 if (tb[NL80211_ATTR_COOKIE])
10514 *cookie = nla_get_u64(tb[NL80211_ATTR_COOKIE]);
10519 static int nl80211_send_frame_cmd(struct i802_bss *bss,
10520 unsigned int freq, unsigned int wait,
10521 const u8 *buf, size_t buf_len,
10522 u64 *cookie_out, int no_cck, int no_ack,
10525 struct wpa_driver_nl80211_data *drv = bss->drv;
10526 struct nl_msg *msg;
10530 msg = nlmsg_alloc();
10534 wpa_printf(MSG_MSGDUMP, "nl80211: CMD_FRAME freq=%u wait=%u no_cck=%d "
10535 "no_ack=%d offchanok=%d",
10536 freq, wait, no_cck, no_ack, offchanok);
10537 wpa_hexdump(MSG_MSGDUMP, "CMD_FRAME", buf, buf_len);
10538 nl80211_cmd(drv, msg, 0, NL80211_CMD_FRAME);
10540 if (nl80211_set_iface_id(msg, bss) < 0)
10541 goto nla_put_failure;
10543 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ, freq);
10545 NLA_PUT_U32(msg, NL80211_ATTR_DURATION, wait);
10546 if (offchanok && ((drv->capa.flags & WPA_DRIVER_FLAGS_OFFCHANNEL_TX) ||
10547 drv->test_use_roc_tx))
10548 NLA_PUT_FLAG(msg, NL80211_ATTR_OFFCHANNEL_TX_OK);
10550 NLA_PUT_FLAG(msg, NL80211_ATTR_TX_NO_CCK_RATE);
10552 NLA_PUT_FLAG(msg, NL80211_ATTR_DONT_WAIT_FOR_ACK);
10554 NLA_PUT(msg, NL80211_ATTR_FRAME, buf_len, buf);
10557 ret = send_and_recv_msgs(drv, msg, cookie_handler, &cookie);
10560 wpa_printf(MSG_DEBUG, "nl80211: Frame command failed: ret=%d "
10561 "(%s) (freq=%u wait=%u)", ret, strerror(-ret),
10563 goto nla_put_failure;
10565 wpa_printf(MSG_MSGDUMP, "nl80211: Frame TX command accepted%s; "
10566 "cookie 0x%llx", no_ack ? " (no ACK)" : "",
10567 (long long unsigned int) cookie);
10570 *cookie_out = no_ack ? (u64) -1 : cookie;
10578 static int wpa_driver_nl80211_send_action(struct i802_bss *bss,
10580 unsigned int wait_time,
10581 const u8 *dst, const u8 *src,
10583 const u8 *data, size_t data_len,
10586 struct wpa_driver_nl80211_data *drv = bss->drv;
10589 struct ieee80211_hdr *hdr;
10591 wpa_printf(MSG_DEBUG, "nl80211: Send Action frame (ifindex=%d, "
10592 "freq=%u MHz wait=%d ms no_cck=%d)",
10593 drv->ifindex, freq, wait_time, no_cck);
10595 buf = os_zalloc(24 + data_len);
10598 os_memcpy(buf + 24, data, data_len);
10599 hdr = (struct ieee80211_hdr *) buf;
10600 hdr->frame_control =
10601 IEEE80211_FC(WLAN_FC_TYPE_MGMT, WLAN_FC_STYPE_ACTION);
10602 os_memcpy(hdr->addr1, dst, ETH_ALEN);
10603 os_memcpy(hdr->addr2, src, ETH_ALEN);
10604 os_memcpy(hdr->addr3, bssid, ETH_ALEN);
10606 if (is_ap_interface(drv->nlmode) &&
10607 (!(drv->capa.flags & WPA_DRIVER_FLAGS_OFFCHANNEL_TX) ||
10608 (int) freq == bss->freq || drv->device_ap_sme ||
10609 !drv->use_monitor))
10610 ret = wpa_driver_nl80211_send_mlme(bss, buf, 24 + data_len,
10611 0, freq, no_cck, 1,
10614 ret = nl80211_send_frame_cmd(bss, freq, wait_time, buf,
10616 &drv->send_action_cookie,
10624 static void wpa_driver_nl80211_send_action_cancel_wait(void *priv)
10626 struct i802_bss *bss = priv;
10627 struct wpa_driver_nl80211_data *drv = bss->drv;
10628 struct nl_msg *msg;
10631 msg = nlmsg_alloc();
10635 wpa_printf(MSG_DEBUG, "nl80211: Cancel TX frame wait: cookie=0x%llx",
10636 (long long unsigned int) drv->send_action_cookie);
10637 nl80211_cmd(drv, msg, 0, NL80211_CMD_FRAME_WAIT_CANCEL);
10639 if (nl80211_set_iface_id(msg, bss) < 0)
10640 goto nla_put_failure;
10641 NLA_PUT_U64(msg, NL80211_ATTR_COOKIE, drv->send_action_cookie);
10643 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
10646 wpa_printf(MSG_DEBUG, "nl80211: wait cancel failed: ret=%d "
10647 "(%s)", ret, strerror(-ret));
10654 static int wpa_driver_nl80211_remain_on_channel(void *priv, unsigned int freq,
10655 unsigned int duration)
10657 struct i802_bss *bss = priv;
10658 struct wpa_driver_nl80211_data *drv = bss->drv;
10659 struct nl_msg *msg;
10663 msg = nlmsg_alloc();
10667 nl80211_cmd(drv, msg, 0, NL80211_CMD_REMAIN_ON_CHANNEL);
10669 if (nl80211_set_iface_id(msg, bss) < 0)
10670 goto nla_put_failure;
10672 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ, freq);
10673 NLA_PUT_U32(msg, NL80211_ATTR_DURATION, duration);
10676 ret = send_and_recv_msgs(drv, msg, cookie_handler, &cookie);
10679 wpa_printf(MSG_DEBUG, "nl80211: Remain-on-channel cookie "
10680 "0x%llx for freq=%u MHz duration=%u",
10681 (long long unsigned int) cookie, freq, duration);
10682 drv->remain_on_chan_cookie = cookie;
10683 drv->pending_remain_on_chan = 1;
10686 wpa_printf(MSG_DEBUG, "nl80211: Failed to request remain-on-channel "
10687 "(freq=%d duration=%u): %d (%s)",
10688 freq, duration, ret, strerror(-ret));
10695 static int wpa_driver_nl80211_cancel_remain_on_channel(void *priv)
10697 struct i802_bss *bss = priv;
10698 struct wpa_driver_nl80211_data *drv = bss->drv;
10699 struct nl_msg *msg;
10702 if (!drv->pending_remain_on_chan) {
10703 wpa_printf(MSG_DEBUG, "nl80211: No pending remain-on-channel "
10708 wpa_printf(MSG_DEBUG, "nl80211: Cancel remain-on-channel with cookie "
10710 (long long unsigned int) drv->remain_on_chan_cookie);
10712 msg = nlmsg_alloc();
10716 nl80211_cmd(drv, msg, 0, NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL);
10718 if (nl80211_set_iface_id(msg, bss) < 0)
10719 goto nla_put_failure;
10721 NLA_PUT_U64(msg, NL80211_ATTR_COOKIE, drv->remain_on_chan_cookie);
10723 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
10727 wpa_printf(MSG_DEBUG, "nl80211: Failed to cancel remain-on-channel: "
10728 "%d (%s)", ret, strerror(-ret));
10735 static int wpa_driver_nl80211_probe_req_report(struct i802_bss *bss, int report)
10737 struct wpa_driver_nl80211_data *drv = bss->drv;
10740 if (bss->nl_preq && drv->device_ap_sme &&
10741 is_ap_interface(drv->nlmode) && !bss->in_deinit &&
10744 * Do not disable Probe Request reporting that was
10745 * enabled in nl80211_setup_ap().
10747 wpa_printf(MSG_DEBUG, "nl80211: Skip disabling of "
10748 "Probe Request reporting nl_preq=%p while "
10749 "in AP mode", bss->nl_preq);
10750 } else if (bss->nl_preq) {
10751 wpa_printf(MSG_DEBUG, "nl80211: Disable Probe Request "
10752 "reporting nl_preq=%p", bss->nl_preq);
10753 nl80211_destroy_eloop_handle(&bss->nl_preq);
10758 if (bss->nl_preq) {
10759 wpa_printf(MSG_DEBUG, "nl80211: Probe Request reporting "
10760 "already on! nl_preq=%p", bss->nl_preq);
10764 bss->nl_preq = nl_create_handle(drv->global->nl_cb, "preq");
10765 if (bss->nl_preq == NULL)
10767 wpa_printf(MSG_DEBUG, "nl80211: Enable Probe Request "
10768 "reporting nl_preq=%p", bss->nl_preq);
10770 if (nl80211_register_frame(bss, bss->nl_preq,
10771 (WLAN_FC_TYPE_MGMT << 2) |
10772 (WLAN_FC_STYPE_PROBE_REQ << 4),
10776 nl80211_register_eloop_read(&bss->nl_preq,
10777 wpa_driver_nl80211_event_receive,
10783 nl_destroy_handles(&bss->nl_preq);
10788 static int nl80211_disable_11b_rates(struct wpa_driver_nl80211_data *drv,
10789 int ifindex, int disabled)
10791 struct nl_msg *msg;
10792 struct nlattr *bands, *band;
10795 msg = nlmsg_alloc();
10799 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_TX_BITRATE_MASK);
10800 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, ifindex);
10802 bands = nla_nest_start(msg, NL80211_ATTR_TX_RATES);
10804 goto nla_put_failure;
10807 * Disable 2 GHz rates 1, 2, 5.5, 11 Mbps by masking out everything
10808 * else apart from 6, 9, 12, 18, 24, 36, 48, 54 Mbps from non-MCS
10809 * rates. All 5 GHz rates are left enabled.
10811 band = nla_nest_start(msg, NL80211_BAND_2GHZ);
10813 goto nla_put_failure;
10815 NLA_PUT(msg, NL80211_TXRATE_LEGACY, 8,
10816 "\x0c\x12\x18\x24\x30\x48\x60\x6c");
10818 nla_nest_end(msg, band);
10820 nla_nest_end(msg, bands);
10822 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
10825 wpa_printf(MSG_DEBUG, "nl80211: Set TX rates failed: ret=%d "
10826 "(%s)", ret, strerror(-ret));
10828 drv->disabled_11b_rates = disabled;
10838 static int wpa_driver_nl80211_deinit_ap(void *priv)
10840 struct i802_bss *bss = priv;
10841 struct wpa_driver_nl80211_data *drv = bss->drv;
10842 if (!is_ap_interface(drv->nlmode))
10844 wpa_driver_nl80211_del_beacon(drv);
10847 * If the P2P GO interface was dynamically added, then it is
10848 * possible that the interface change to station is not possible.
10850 if (drv->nlmode == NL80211_IFTYPE_P2P_GO && bss->if_dynamic)
10853 return wpa_driver_nl80211_set_mode(priv, NL80211_IFTYPE_STATION);
10857 static int wpa_driver_nl80211_stop_ap(void *priv)
10859 struct i802_bss *bss = priv;
10860 struct wpa_driver_nl80211_data *drv = bss->drv;
10861 if (!is_ap_interface(drv->nlmode))
10863 wpa_driver_nl80211_del_beacon(drv);
10864 bss->beacon_set = 0;
10869 static int wpa_driver_nl80211_deinit_p2p_cli(void *priv)
10871 struct i802_bss *bss = priv;
10872 struct wpa_driver_nl80211_data *drv = bss->drv;
10873 if (drv->nlmode != NL80211_IFTYPE_P2P_CLIENT)
10877 * If the P2P Client interface was dynamically added, then it is
10878 * possible that the interface change to station is not possible.
10880 if (bss->if_dynamic)
10883 return wpa_driver_nl80211_set_mode(priv, NL80211_IFTYPE_STATION);
10887 static void wpa_driver_nl80211_resume(void *priv)
10889 struct i802_bss *bss = priv;
10891 if (i802_set_iface_flags(bss, 1))
10892 wpa_printf(MSG_DEBUG, "nl80211: Failed to set interface up on resume event");
10896 static int nl80211_send_ft_action(void *priv, u8 action, const u8 *target_ap,
10897 const u8 *ies, size_t ies_len)
10899 struct i802_bss *bss = priv;
10900 struct wpa_driver_nl80211_data *drv = bss->drv;
10904 const u8 *own_addr = bss->addr;
10907 wpa_printf(MSG_ERROR, "nl80211: Unsupported send_ft_action "
10908 "action %d", action);
10913 * Action frame payload:
10914 * Category[1] = 6 (Fast BSS Transition)
10915 * Action[1] = 1 (Fast BSS Transition Request)
10917 * Target AP Address
10921 data_len = 2 + 2 * ETH_ALEN + ies_len;
10922 data = os_malloc(data_len);
10926 *pos++ = 0x06; /* FT Action category */
10928 os_memcpy(pos, own_addr, ETH_ALEN);
10930 os_memcpy(pos, target_ap, ETH_ALEN);
10932 os_memcpy(pos, ies, ies_len);
10934 ret = wpa_driver_nl80211_send_action(bss, drv->assoc_freq, 0,
10935 drv->bssid, own_addr, drv->bssid,
10936 data, data_len, 0);
10943 static int nl80211_signal_monitor(void *priv, int threshold, int hysteresis)
10945 struct i802_bss *bss = priv;
10946 struct wpa_driver_nl80211_data *drv = bss->drv;
10947 struct nl_msg *msg;
10948 struct nlattr *cqm;
10951 wpa_printf(MSG_DEBUG, "nl80211: Signal monitor threshold=%d "
10952 "hysteresis=%d", threshold, hysteresis);
10954 msg = nlmsg_alloc();
10958 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_CQM);
10960 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, bss->ifindex);
10962 cqm = nla_nest_start(msg, NL80211_ATTR_CQM);
10964 goto nla_put_failure;
10966 NLA_PUT_U32(msg, NL80211_ATTR_CQM_RSSI_THOLD, threshold);
10967 NLA_PUT_U32(msg, NL80211_ATTR_CQM_RSSI_HYST, hysteresis);
10968 nla_nest_end(msg, cqm);
10970 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
10979 static int get_channel_width(struct nl_msg *msg, void *arg)
10981 struct nlattr *tb[NL80211_ATTR_MAX + 1];
10982 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
10983 struct wpa_signal_info *sig_change = arg;
10985 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
10986 genlmsg_attrlen(gnlh, 0), NULL);
10988 sig_change->center_frq1 = -1;
10989 sig_change->center_frq2 = -1;
10990 sig_change->chanwidth = CHAN_WIDTH_UNKNOWN;
10992 if (tb[NL80211_ATTR_CHANNEL_WIDTH]) {
10993 sig_change->chanwidth = convert2width(
10994 nla_get_u32(tb[NL80211_ATTR_CHANNEL_WIDTH]));
10995 if (tb[NL80211_ATTR_CENTER_FREQ1])
10996 sig_change->center_frq1 =
10997 nla_get_u32(tb[NL80211_ATTR_CENTER_FREQ1]);
10998 if (tb[NL80211_ATTR_CENTER_FREQ2])
10999 sig_change->center_frq2 =
11000 nla_get_u32(tb[NL80211_ATTR_CENTER_FREQ2]);
11007 static int nl80211_get_channel_width(struct wpa_driver_nl80211_data *drv,
11008 struct wpa_signal_info *sig)
11010 struct nl_msg *msg;
11012 msg = nlmsg_alloc();
11016 nl80211_cmd(drv, msg, 0, NL80211_CMD_GET_INTERFACE);
11017 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
11019 return send_and_recv_msgs(drv, msg, get_channel_width, sig);
11027 static int nl80211_signal_poll(void *priv, struct wpa_signal_info *si)
11029 struct i802_bss *bss = priv;
11030 struct wpa_driver_nl80211_data *drv = bss->drv;
11033 os_memset(si, 0, sizeof(*si));
11034 res = nl80211_get_link_signal(drv, si);
11038 res = nl80211_get_channel_width(drv, si);
11042 return nl80211_get_link_noise(drv, si);
11046 static int wpa_driver_nl80211_shared_freq(void *priv)
11048 struct i802_bss *bss = priv;
11049 struct wpa_driver_nl80211_data *drv = bss->drv;
11050 struct wpa_driver_nl80211_data *driver;
11054 * If the same PHY is in connected state with some other interface,
11055 * then retrieve the assoc freq.
11057 wpa_printf(MSG_DEBUG, "nl80211: Get shared freq for PHY %s",
11060 dl_list_for_each(driver, &drv->global->interfaces,
11061 struct wpa_driver_nl80211_data, list) {
11062 if (drv == driver ||
11063 os_strcmp(drv->phyname, driver->phyname) != 0 ||
11064 !driver->associated)
11067 wpa_printf(MSG_DEBUG, "nl80211: Found a match for PHY %s - %s "
11069 driver->phyname, driver->first_bss->ifname,
11070 MAC2STR(driver->first_bss->addr));
11071 if (is_ap_interface(driver->nlmode))
11072 freq = driver->first_bss->freq;
11074 freq = nl80211_get_assoc_freq(driver);
11075 wpa_printf(MSG_DEBUG, "nl80211: Shared freq for PHY %s: %d",
11076 drv->phyname, freq);
11080 wpa_printf(MSG_DEBUG, "nl80211: No shared interface for "
11081 "PHY (%s) in associated state", drv->phyname);
11087 static int nl80211_send_frame(void *priv, const u8 *data, size_t data_len,
11090 struct i802_bss *bss = priv;
11091 return wpa_driver_nl80211_send_frame(bss, data, data_len, encrypt, 0,
11096 static int nl80211_set_param(void *priv, const char *param)
11098 wpa_printf(MSG_DEBUG, "nl80211: driver param='%s'", param);
11103 if (os_strstr(param, "use_p2p_group_interface=1")) {
11104 struct i802_bss *bss = priv;
11105 struct wpa_driver_nl80211_data *drv = bss->drv;
11107 wpa_printf(MSG_DEBUG, "nl80211: Use separate P2P group "
11109 drv->capa.flags |= WPA_DRIVER_FLAGS_P2P_CONCURRENT;
11110 drv->capa.flags |= WPA_DRIVER_FLAGS_P2P_MGMT_AND_NON_P2P;
11113 if (os_strstr(param, "p2p_device=1")) {
11114 struct i802_bss *bss = priv;
11115 struct wpa_driver_nl80211_data *drv = bss->drv;
11116 drv->allow_p2p_device = 1;
11118 #endif /* CONFIG_P2P */
11120 if (os_strstr(param, "use_monitor=1")) {
11121 struct i802_bss *bss = priv;
11122 struct wpa_driver_nl80211_data *drv = bss->drv;
11123 drv->use_monitor = 1;
11126 if (os_strstr(param, "force_connect_cmd=1")) {
11127 struct i802_bss *bss = priv;
11128 struct wpa_driver_nl80211_data *drv = bss->drv;
11129 drv->capa.flags &= ~WPA_DRIVER_FLAGS_SME;
11130 drv->force_connect_cmd = 1;
11133 if (os_strstr(param, "no_offchannel_tx=1")) {
11134 struct i802_bss *bss = priv;
11135 struct wpa_driver_nl80211_data *drv = bss->drv;
11136 drv->capa.flags &= ~WPA_DRIVER_FLAGS_OFFCHANNEL_TX;
11137 drv->test_use_roc_tx = 1;
11144 static void * nl80211_global_init(void)
11146 struct nl80211_global *global;
11147 struct netlink_config *cfg;
11149 global = os_zalloc(sizeof(*global));
11150 if (global == NULL)
11152 global->ioctl_sock = -1;
11153 dl_list_init(&global->interfaces);
11154 global->if_add_ifindex = -1;
11156 cfg = os_zalloc(sizeof(*cfg));
11161 cfg->newlink_cb = wpa_driver_nl80211_event_rtm_newlink;
11162 cfg->dellink_cb = wpa_driver_nl80211_event_rtm_dellink;
11163 global->netlink = netlink_init(cfg);
11164 if (global->netlink == NULL) {
11169 if (wpa_driver_nl80211_init_nl_global(global) < 0)
11172 global->ioctl_sock = socket(PF_INET, SOCK_DGRAM, 0);
11173 if (global->ioctl_sock < 0) {
11174 wpa_printf(MSG_ERROR, "nl80211: socket(PF_INET,SOCK_DGRAM) failed: %s",
11182 nl80211_global_deinit(global);
11187 static void nl80211_global_deinit(void *priv)
11189 struct nl80211_global *global = priv;
11190 if (global == NULL)
11192 if (!dl_list_empty(&global->interfaces)) {
11193 wpa_printf(MSG_ERROR, "nl80211: %u interface(s) remain at "
11194 "nl80211_global_deinit",
11195 dl_list_len(&global->interfaces));
11198 if (global->netlink)
11199 netlink_deinit(global->netlink);
11201 nl_destroy_handles(&global->nl);
11203 if (global->nl_event)
11204 nl80211_destroy_eloop_handle(&global->nl_event);
11206 nl_cb_put(global->nl_cb);
11208 if (global->ioctl_sock >= 0)
11209 close(global->ioctl_sock);
11215 static const char * nl80211_get_radio_name(void *priv)
11217 struct i802_bss *bss = priv;
11218 struct wpa_driver_nl80211_data *drv = bss->drv;
11219 return drv->phyname;
11223 static int nl80211_pmkid(struct i802_bss *bss, int cmd, const u8 *bssid,
11226 struct nl_msg *msg;
11228 msg = nlmsg_alloc();
11232 nl80211_cmd(bss->drv, msg, 0, cmd);
11234 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, if_nametoindex(bss->ifname));
11236 NLA_PUT(msg, NL80211_ATTR_PMKID, 16, pmkid);
11238 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, bssid);
11240 return send_and_recv_msgs(bss->drv, msg, NULL, NULL);
11247 static int nl80211_add_pmkid(void *priv, const u8 *bssid, const u8 *pmkid)
11249 struct i802_bss *bss = priv;
11250 wpa_printf(MSG_DEBUG, "nl80211: Add PMKID for " MACSTR, MAC2STR(bssid));
11251 return nl80211_pmkid(bss, NL80211_CMD_SET_PMKSA, bssid, pmkid);
11255 static int nl80211_remove_pmkid(void *priv, const u8 *bssid, const u8 *pmkid)
11257 struct i802_bss *bss = priv;
11258 wpa_printf(MSG_DEBUG, "nl80211: Delete PMKID for " MACSTR,
11260 return nl80211_pmkid(bss, NL80211_CMD_DEL_PMKSA, bssid, pmkid);
11264 static int nl80211_flush_pmkid(void *priv)
11266 struct i802_bss *bss = priv;
11267 wpa_printf(MSG_DEBUG, "nl80211: Flush PMKIDs");
11268 return nl80211_pmkid(bss, NL80211_CMD_FLUSH_PMKSA, NULL, NULL);
11272 static void clean_survey_results(struct survey_results *survey_results)
11274 struct freq_survey *survey, *tmp;
11276 if (dl_list_empty(&survey_results->survey_list))
11279 dl_list_for_each_safe(survey, tmp, &survey_results->survey_list,
11280 struct freq_survey, list) {
11281 dl_list_del(&survey->list);
11287 static void add_survey(struct nlattr **sinfo, u32 ifidx,
11288 struct dl_list *survey_list)
11290 struct freq_survey *survey;
11292 survey = os_zalloc(sizeof(struct freq_survey));
11296 survey->ifidx = ifidx;
11297 survey->freq = nla_get_u32(sinfo[NL80211_SURVEY_INFO_FREQUENCY]);
11298 survey->filled = 0;
11300 if (sinfo[NL80211_SURVEY_INFO_NOISE]) {
11301 survey->nf = (int8_t)
11302 nla_get_u8(sinfo[NL80211_SURVEY_INFO_NOISE]);
11303 survey->filled |= SURVEY_HAS_NF;
11306 if (sinfo[NL80211_SURVEY_INFO_CHANNEL_TIME]) {
11307 survey->channel_time =
11308 nla_get_u64(sinfo[NL80211_SURVEY_INFO_CHANNEL_TIME]);
11309 survey->filled |= SURVEY_HAS_CHAN_TIME;
11312 if (sinfo[NL80211_SURVEY_INFO_CHANNEL_TIME_BUSY]) {
11313 survey->channel_time_busy =
11314 nla_get_u64(sinfo[NL80211_SURVEY_INFO_CHANNEL_TIME_BUSY]);
11315 survey->filled |= SURVEY_HAS_CHAN_TIME_BUSY;
11318 if (sinfo[NL80211_SURVEY_INFO_CHANNEL_TIME_RX]) {
11319 survey->channel_time_rx =
11320 nla_get_u64(sinfo[NL80211_SURVEY_INFO_CHANNEL_TIME_RX]);
11321 survey->filled |= SURVEY_HAS_CHAN_TIME_RX;
11324 if (sinfo[NL80211_SURVEY_INFO_CHANNEL_TIME_TX]) {
11325 survey->channel_time_tx =
11326 nla_get_u64(sinfo[NL80211_SURVEY_INFO_CHANNEL_TIME_TX]);
11327 survey->filled |= SURVEY_HAS_CHAN_TIME_TX;
11330 wpa_printf(MSG_DEBUG, "nl80211: Freq survey dump event (freq=%d MHz noise=%d channel_time=%ld busy_time=%ld tx_time=%ld rx_time=%ld filled=%04x)",
11333 (unsigned long int) survey->channel_time,
11334 (unsigned long int) survey->channel_time_busy,
11335 (unsigned long int) survey->channel_time_tx,
11336 (unsigned long int) survey->channel_time_rx,
11339 dl_list_add_tail(survey_list, &survey->list);
11343 static int check_survey_ok(struct nlattr **sinfo, u32 surveyed_freq,
11344 unsigned int freq_filter)
11349 return freq_filter == surveyed_freq;
11353 static int survey_handler(struct nl_msg *msg, void *arg)
11355 struct nlattr *tb[NL80211_ATTR_MAX + 1];
11356 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
11357 struct nlattr *sinfo[NL80211_SURVEY_INFO_MAX + 1];
11358 struct survey_results *survey_results;
11359 u32 surveyed_freq = 0;
11362 static struct nla_policy survey_policy[NL80211_SURVEY_INFO_MAX + 1] = {
11363 [NL80211_SURVEY_INFO_FREQUENCY] = { .type = NLA_U32 },
11364 [NL80211_SURVEY_INFO_NOISE] = { .type = NLA_U8 },
11367 survey_results = (struct survey_results *) arg;
11369 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
11370 genlmsg_attrlen(gnlh, 0), NULL);
11372 if (!tb[NL80211_ATTR_IFINDEX])
11375 ifidx = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
11377 if (!tb[NL80211_ATTR_SURVEY_INFO])
11380 if (nla_parse_nested(sinfo, NL80211_SURVEY_INFO_MAX,
11381 tb[NL80211_ATTR_SURVEY_INFO],
11385 if (!sinfo[NL80211_SURVEY_INFO_FREQUENCY]) {
11386 wpa_printf(MSG_ERROR, "nl80211: Invalid survey data");
11390 surveyed_freq = nla_get_u32(sinfo[NL80211_SURVEY_INFO_FREQUENCY]);
11392 if (!check_survey_ok(sinfo, surveyed_freq,
11393 survey_results->freq_filter))
11396 if (survey_results->freq_filter &&
11397 survey_results->freq_filter != surveyed_freq) {
11398 wpa_printf(MSG_EXCESSIVE, "nl80211: Ignoring survey data for freq %d MHz",
11403 add_survey(sinfo, ifidx, &survey_results->survey_list);
11409 static int wpa_driver_nl80211_get_survey(void *priv, unsigned int freq)
11411 struct i802_bss *bss = priv;
11412 struct wpa_driver_nl80211_data *drv = bss->drv;
11413 struct nl_msg *msg;
11414 int err = -ENOBUFS;
11415 union wpa_event_data data;
11416 struct survey_results *survey_results;
11418 os_memset(&data, 0, sizeof(data));
11419 survey_results = &data.survey_results;
11421 dl_list_init(&survey_results->survey_list);
11423 msg = nlmsg_alloc();
11425 goto nla_put_failure;
11427 nl80211_cmd(drv, msg, NLM_F_DUMP, NL80211_CMD_GET_SURVEY);
11429 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
11432 data.survey_results.freq_filter = freq;
11435 wpa_printf(MSG_DEBUG, "nl80211: Fetch survey data");
11436 err = send_and_recv_msgs(drv, msg, survey_handler,
11441 wpa_printf(MSG_ERROR, "nl80211: Failed to process survey data");
11445 wpa_supplicant_event(drv->ctx, EVENT_SURVEY, &data);
11448 clean_survey_results(survey_results);
11454 static void nl80211_set_rekey_info(void *priv, const u8 *kek, const u8 *kck,
11455 const u8 *replay_ctr)
11457 struct i802_bss *bss = priv;
11458 struct wpa_driver_nl80211_data *drv = bss->drv;
11459 struct nlattr *replay_nested;
11460 struct nl_msg *msg;
11462 msg = nlmsg_alloc();
11466 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_REKEY_OFFLOAD);
11468 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, bss->ifindex);
11470 replay_nested = nla_nest_start(msg, NL80211_ATTR_REKEY_DATA);
11471 if (!replay_nested)
11472 goto nla_put_failure;
11474 NLA_PUT(msg, NL80211_REKEY_DATA_KEK, NL80211_KEK_LEN, kek);
11475 NLA_PUT(msg, NL80211_REKEY_DATA_KCK, NL80211_KCK_LEN, kck);
11476 NLA_PUT(msg, NL80211_REKEY_DATA_REPLAY_CTR, NL80211_REPLAY_CTR_LEN,
11479 nla_nest_end(msg, replay_nested);
11481 send_and_recv_msgs(drv, msg, NULL, NULL);
11488 static void nl80211_send_null_frame(struct i802_bss *bss, const u8 *own_addr,
11489 const u8 *addr, int qos)
11491 /* send data frame to poll STA and check whether
11492 * this frame is ACKed */
11494 struct ieee80211_hdr hdr;
11496 } STRUCT_PACKED nulldata;
11499 /* Send data frame to poll STA and check whether this frame is ACKed */
11501 os_memset(&nulldata, 0, sizeof(nulldata));
11504 nulldata.hdr.frame_control =
11505 IEEE80211_FC(WLAN_FC_TYPE_DATA,
11506 WLAN_FC_STYPE_QOS_NULL);
11507 size = sizeof(nulldata);
11509 nulldata.hdr.frame_control =
11510 IEEE80211_FC(WLAN_FC_TYPE_DATA,
11511 WLAN_FC_STYPE_NULLFUNC);
11512 size = sizeof(struct ieee80211_hdr);
11515 nulldata.hdr.frame_control |= host_to_le16(WLAN_FC_FROMDS);
11516 os_memcpy(nulldata.hdr.IEEE80211_DA_FROMDS, addr, ETH_ALEN);
11517 os_memcpy(nulldata.hdr.IEEE80211_BSSID_FROMDS, own_addr, ETH_ALEN);
11518 os_memcpy(nulldata.hdr.IEEE80211_SA_FROMDS, own_addr, ETH_ALEN);
11520 if (wpa_driver_nl80211_send_mlme(bss, (u8 *) &nulldata, size, 0, 0, 0,
11522 wpa_printf(MSG_DEBUG, "nl80211_send_null_frame: Failed to "
11523 "send poll frame");
11526 static void nl80211_poll_client(void *priv, const u8 *own_addr, const u8 *addr,
11529 struct i802_bss *bss = priv;
11530 struct wpa_driver_nl80211_data *drv = bss->drv;
11531 struct nl_msg *msg;
11533 if (!drv->poll_command_supported) {
11534 nl80211_send_null_frame(bss, own_addr, addr, qos);
11538 msg = nlmsg_alloc();
11542 nl80211_cmd(drv, msg, 0, NL80211_CMD_PROBE_CLIENT);
11544 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, bss->ifindex);
11545 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
11547 send_and_recv_msgs(drv, msg, NULL, NULL);
11554 static int nl80211_set_power_save(struct i802_bss *bss, int enabled)
11556 struct nl_msg *msg;
11558 msg = nlmsg_alloc();
11562 nl80211_cmd(bss->drv, msg, 0, NL80211_CMD_SET_POWER_SAVE);
11563 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, bss->ifindex);
11564 NLA_PUT_U32(msg, NL80211_ATTR_PS_STATE,
11565 enabled ? NL80211_PS_ENABLED : NL80211_PS_DISABLED);
11566 return send_and_recv_msgs(bss->drv, msg, NULL, NULL);
11573 static int nl80211_set_p2p_powersave(void *priv, int legacy_ps, int opp_ps,
11576 struct i802_bss *bss = priv;
11578 wpa_printf(MSG_DEBUG, "nl80211: set_p2p_powersave (legacy_ps=%d "
11579 "opp_ps=%d ctwindow=%d)", legacy_ps, opp_ps, ctwindow);
11581 if (opp_ps != -1 || ctwindow != -1) {
11583 wpa_driver_set_p2p_ps(priv, legacy_ps, opp_ps, ctwindow);
11584 #else /* ANDROID_P2P */
11585 return -1; /* Not yet supported */
11586 #endif /* ANDROID_P2P */
11589 if (legacy_ps == -1)
11591 if (legacy_ps != 0 && legacy_ps != 1)
11592 return -1; /* Not yet supported */
11594 return nl80211_set_power_save(bss, legacy_ps);
11598 static int nl80211_start_radar_detection(void *priv,
11599 struct hostapd_freq_params *freq)
11601 struct i802_bss *bss = priv;
11602 struct wpa_driver_nl80211_data *drv = bss->drv;
11603 struct nl_msg *msg;
11606 wpa_printf(MSG_DEBUG, "nl80211: Start radar detection (CAC) %d MHz (ht_enabled=%d, vht_enabled=%d, bandwidth=%d MHz, cf1=%d MHz, cf2=%d MHz)",
11607 freq->freq, freq->ht_enabled, freq->vht_enabled,
11608 freq->bandwidth, freq->center_freq1, freq->center_freq2);
11610 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_RADAR)) {
11611 wpa_printf(MSG_DEBUG, "nl80211: Driver does not support radar "
11616 msg = nlmsg_alloc();
11620 nl80211_cmd(bss->drv, msg, 0, NL80211_CMD_RADAR_DETECT);
11621 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
11623 if (nl80211_put_freq_params(msg, freq) < 0)
11624 goto nla_put_failure;
11626 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
11630 wpa_printf(MSG_DEBUG, "nl80211: Failed to start radar detection: "
11631 "%d (%s)", ret, strerror(-ret));
11639 static int nl80211_send_tdls_mgmt(void *priv, const u8 *dst, u8 action_code,
11640 u8 dialog_token, u16 status_code,
11641 u32 peer_capab, int initiator, const u8 *buf,
11644 struct i802_bss *bss = priv;
11645 struct wpa_driver_nl80211_data *drv = bss->drv;
11646 struct nl_msg *msg;
11648 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_TDLS_SUPPORT))
11649 return -EOPNOTSUPP;
11654 msg = nlmsg_alloc();
11658 nl80211_cmd(drv, msg, 0, NL80211_CMD_TDLS_MGMT);
11659 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
11660 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, dst);
11661 NLA_PUT_U8(msg, NL80211_ATTR_TDLS_ACTION, action_code);
11662 NLA_PUT_U8(msg, NL80211_ATTR_TDLS_DIALOG_TOKEN, dialog_token);
11663 NLA_PUT_U16(msg, NL80211_ATTR_STATUS_CODE, status_code);
11666 * The internal enum tdls_peer_capability definition is
11667 * currently identical with the nl80211 enum
11668 * nl80211_tdls_peer_capability, so no conversion is needed
11671 NLA_PUT_U32(msg, NL80211_ATTR_TDLS_PEER_CAPABILITY, peer_capab);
11674 NLA_PUT_FLAG(msg, NL80211_ATTR_TDLS_INITIATOR);
11675 NLA_PUT(msg, NL80211_ATTR_IE, len, buf);
11677 return send_and_recv_msgs(drv, msg, NULL, NULL);
11685 static int nl80211_tdls_oper(void *priv, enum tdls_oper oper, const u8 *peer)
11687 struct i802_bss *bss = priv;
11688 struct wpa_driver_nl80211_data *drv = bss->drv;
11689 struct nl_msg *msg;
11690 enum nl80211_tdls_operation nl80211_oper;
11692 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_TDLS_SUPPORT))
11693 return -EOPNOTSUPP;
11696 case TDLS_DISCOVERY_REQ:
11697 nl80211_oper = NL80211_TDLS_DISCOVERY_REQ;
11700 nl80211_oper = NL80211_TDLS_SETUP;
11702 case TDLS_TEARDOWN:
11703 nl80211_oper = NL80211_TDLS_TEARDOWN;
11705 case TDLS_ENABLE_LINK:
11706 nl80211_oper = NL80211_TDLS_ENABLE_LINK;
11708 case TDLS_DISABLE_LINK:
11709 nl80211_oper = NL80211_TDLS_DISABLE_LINK;
11719 msg = nlmsg_alloc();
11723 nl80211_cmd(drv, msg, 0, NL80211_CMD_TDLS_OPER);
11724 NLA_PUT_U8(msg, NL80211_ATTR_TDLS_OPERATION, nl80211_oper);
11725 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
11726 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, peer);
11728 return send_and_recv_msgs(drv, msg, NULL, NULL);
11735 #endif /* CONFIG TDLS */
11740 typedef struct android_wifi_priv_cmd {
11744 } android_wifi_priv_cmd;
11746 static int drv_errors = 0;
11748 static void wpa_driver_send_hang_msg(struct wpa_driver_nl80211_data *drv)
11751 if (drv_errors > DRV_NUMBER_SEQUENTIAL_ERRORS) {
11753 wpa_msg(drv->ctx, MSG_INFO, WPA_EVENT_DRIVER_STATE "HANGED");
11758 static int android_priv_cmd(struct i802_bss *bss, const char *cmd)
11760 struct wpa_driver_nl80211_data *drv = bss->drv;
11762 android_wifi_priv_cmd priv_cmd;
11763 char buf[MAX_DRV_CMD_SIZE];
11766 os_memset(&ifr, 0, sizeof(ifr));
11767 os_memset(&priv_cmd, 0, sizeof(priv_cmd));
11768 os_strlcpy(ifr.ifr_name, bss->ifname, IFNAMSIZ);
11770 os_memset(buf, 0, sizeof(buf));
11771 os_strlcpy(buf, cmd, sizeof(buf));
11773 priv_cmd.buf = buf;
11774 priv_cmd.used_len = sizeof(buf);
11775 priv_cmd.total_len = sizeof(buf);
11776 ifr.ifr_data = &priv_cmd;
11778 ret = ioctl(drv->global->ioctl_sock, SIOCDEVPRIVATE + 1, &ifr);
11780 wpa_printf(MSG_ERROR, "%s: failed to issue private commands",
11782 wpa_driver_send_hang_msg(drv);
11791 static int android_pno_start(struct i802_bss *bss,
11792 struct wpa_driver_scan_params *params)
11794 struct wpa_driver_nl80211_data *drv = bss->drv;
11796 android_wifi_priv_cmd priv_cmd;
11797 int ret = 0, i = 0, bp;
11798 char buf[WEXT_PNO_MAX_COMMAND_SIZE];
11800 bp = WEXT_PNOSETUP_HEADER_SIZE;
11801 os_memcpy(buf, WEXT_PNOSETUP_HEADER, bp);
11802 buf[bp++] = WEXT_PNO_TLV_PREFIX;
11803 buf[bp++] = WEXT_PNO_TLV_VERSION;
11804 buf[bp++] = WEXT_PNO_TLV_SUBVERSION;
11805 buf[bp++] = WEXT_PNO_TLV_RESERVED;
11807 while (i < WEXT_PNO_AMOUNT && (size_t) i < params->num_ssids) {
11808 /* Check that there is enough space needed for 1 more SSID, the
11809 * other sections and null termination */
11810 if ((bp + WEXT_PNO_SSID_HEADER_SIZE + MAX_SSID_LEN +
11811 WEXT_PNO_NONSSID_SECTIONS_SIZE + 1) >= (int) sizeof(buf))
11813 wpa_hexdump_ascii(MSG_DEBUG, "For PNO Scan",
11814 params->ssids[i].ssid,
11815 params->ssids[i].ssid_len);
11816 buf[bp++] = WEXT_PNO_SSID_SECTION;
11817 buf[bp++] = params->ssids[i].ssid_len;
11818 os_memcpy(&buf[bp], params->ssids[i].ssid,
11819 params->ssids[i].ssid_len);
11820 bp += params->ssids[i].ssid_len;
11824 buf[bp++] = WEXT_PNO_SCAN_INTERVAL_SECTION;
11825 os_snprintf(&buf[bp], WEXT_PNO_SCAN_INTERVAL_LENGTH + 1, "%x",
11826 WEXT_PNO_SCAN_INTERVAL);
11827 bp += WEXT_PNO_SCAN_INTERVAL_LENGTH;
11829 buf[bp++] = WEXT_PNO_REPEAT_SECTION;
11830 os_snprintf(&buf[bp], WEXT_PNO_REPEAT_LENGTH + 1, "%x",
11832 bp += WEXT_PNO_REPEAT_LENGTH;
11834 buf[bp++] = WEXT_PNO_MAX_REPEAT_SECTION;
11835 os_snprintf(&buf[bp], WEXT_PNO_MAX_REPEAT_LENGTH + 1, "%x",
11836 WEXT_PNO_MAX_REPEAT);
11837 bp += WEXT_PNO_MAX_REPEAT_LENGTH + 1;
11839 memset(&ifr, 0, sizeof(ifr));
11840 memset(&priv_cmd, 0, sizeof(priv_cmd));
11841 os_strlcpy(ifr.ifr_name, bss->ifname, IFNAMSIZ);
11843 priv_cmd.buf = buf;
11844 priv_cmd.used_len = bp;
11845 priv_cmd.total_len = bp;
11846 ifr.ifr_data = &priv_cmd;
11848 ret = ioctl(drv->global->ioctl_sock, SIOCDEVPRIVATE + 1, &ifr);
11851 wpa_printf(MSG_ERROR, "ioctl[SIOCSIWPRIV] (pnosetup): %d",
11853 wpa_driver_send_hang_msg(drv);
11859 return android_priv_cmd(bss, "PNOFORCE 1");
11863 static int android_pno_stop(struct i802_bss *bss)
11865 return android_priv_cmd(bss, "PNOFORCE 0");
11868 #endif /* ANDROID */
11871 static int driver_nl80211_set_key(const char *ifname, void *priv,
11872 enum wpa_alg alg, const u8 *addr,
11873 int key_idx, int set_tx,
11874 const u8 *seq, size_t seq_len,
11875 const u8 *key, size_t key_len)
11877 struct i802_bss *bss = priv;
11878 return wpa_driver_nl80211_set_key(ifname, bss, alg, addr, key_idx,
11879 set_tx, seq, seq_len, key, key_len);
11883 static int driver_nl80211_scan2(void *priv,
11884 struct wpa_driver_scan_params *params)
11886 struct i802_bss *bss = priv;
11887 return wpa_driver_nl80211_scan(bss, params);
11891 static int driver_nl80211_deauthenticate(void *priv, const u8 *addr,
11894 struct i802_bss *bss = priv;
11895 return wpa_driver_nl80211_deauthenticate(bss, addr, reason_code);
11899 static int driver_nl80211_authenticate(void *priv,
11900 struct wpa_driver_auth_params *params)
11902 struct i802_bss *bss = priv;
11903 return wpa_driver_nl80211_authenticate(bss, params);
11907 static void driver_nl80211_deinit(void *priv)
11909 struct i802_bss *bss = priv;
11910 wpa_driver_nl80211_deinit(bss);
11914 static int driver_nl80211_if_remove(void *priv, enum wpa_driver_if_type type,
11915 const char *ifname)
11917 struct i802_bss *bss = priv;
11918 return wpa_driver_nl80211_if_remove(bss, type, ifname);
11922 static int driver_nl80211_send_mlme(void *priv, const u8 *data,
11923 size_t data_len, int noack)
11925 struct i802_bss *bss = priv;
11926 return wpa_driver_nl80211_send_mlme(bss, data, data_len, noack,
11931 static int driver_nl80211_sta_remove(void *priv, const u8 *addr)
11933 struct i802_bss *bss = priv;
11934 return wpa_driver_nl80211_sta_remove(bss, addr);
11938 static int driver_nl80211_set_sta_vlan(void *priv, const u8 *addr,
11939 const char *ifname, int vlan_id)
11941 struct i802_bss *bss = priv;
11942 return i802_set_sta_vlan(bss, addr, ifname, vlan_id);
11946 static int driver_nl80211_read_sta_data(void *priv,
11947 struct hostap_sta_driver_data *data,
11950 struct i802_bss *bss = priv;
11951 return i802_read_sta_data(bss, data, addr);
11955 static int driver_nl80211_send_action(void *priv, unsigned int freq,
11956 unsigned int wait_time,
11957 const u8 *dst, const u8 *src,
11959 const u8 *data, size_t data_len,
11962 struct i802_bss *bss = priv;
11963 return wpa_driver_nl80211_send_action(bss, freq, wait_time, dst, src,
11964 bssid, data, data_len, no_cck);
11968 static int driver_nl80211_probe_req_report(void *priv, int report)
11970 struct i802_bss *bss = priv;
11971 return wpa_driver_nl80211_probe_req_report(bss, report);
11975 static int wpa_driver_nl80211_update_ft_ies(void *priv, const u8 *md,
11976 const u8 *ies, size_t ies_len)
11979 struct nl_msg *msg;
11980 struct i802_bss *bss = priv;
11981 struct wpa_driver_nl80211_data *drv = bss->drv;
11982 u16 mdid = WPA_GET_LE16(md);
11984 msg = nlmsg_alloc();
11988 wpa_printf(MSG_DEBUG, "nl80211: Updating FT IEs");
11989 nl80211_cmd(drv, msg, 0, NL80211_CMD_UPDATE_FT_IES);
11990 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
11991 NLA_PUT(msg, NL80211_ATTR_IE, ies_len, ies);
11992 NLA_PUT_U16(msg, NL80211_ATTR_MDID, mdid);
11994 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
11996 wpa_printf(MSG_DEBUG, "nl80211: update_ft_ies failed "
11997 "err=%d (%s)", ret, strerror(-ret));
12008 const u8 * wpa_driver_nl80211_get_macaddr(void *priv)
12010 struct i802_bss *bss = priv;
12011 struct wpa_driver_nl80211_data *drv = bss->drv;
12013 if (drv->nlmode != NL80211_IFTYPE_P2P_DEVICE)
12020 static const char * scan_state_str(enum scan_states scan_state)
12022 switch (scan_state) {
12025 case SCAN_REQUESTED:
12026 return "SCAN_REQUESTED";
12028 return "SCAN_STARTED";
12029 case SCAN_COMPLETED:
12030 return "SCAN_COMPLETED";
12032 return "SCAN_ABORTED";
12033 case SCHED_SCAN_STARTED:
12034 return "SCHED_SCAN_STARTED";
12035 case SCHED_SCAN_STOPPED:
12036 return "SCHED_SCAN_STOPPED";
12037 case SCHED_SCAN_RESULTS:
12038 return "SCHED_SCAN_RESULTS";
12045 static int wpa_driver_nl80211_status(void *priv, char *buf, size_t buflen)
12047 struct i802_bss *bss = priv;
12048 struct wpa_driver_nl80211_data *drv = bss->drv;
12053 end = buf + buflen;
12055 res = os_snprintf(pos, end - pos,
12059 "addr=" MACSTR "\n"
12065 MAC2STR(bss->addr),
12067 bss->beacon_set ? "beacon_set=1\n" : "",
12068 bss->added_if_into_bridge ?
12069 "added_if_into_bridge=1\n" : "",
12070 bss->added_bridge ? "added_bridge=1\n" : "",
12071 bss->in_deinit ? "in_deinit=1\n" : "",
12072 bss->if_dynamic ? "if_dynamic=1\n" : "");
12073 if (res < 0 || res >= end - pos)
12077 if (bss->wdev_id_set) {
12078 res = os_snprintf(pos, end - pos, "wdev_id=%llu\n",
12079 (unsigned long long) bss->wdev_id);
12080 if (res < 0 || res >= end - pos)
12085 res = os_snprintf(pos, end - pos,
12087 "perm_addr=" MACSTR "\n"
12091 "auth_bssid=" MACSTR "\n"
12092 "auth_attempt_bssid=" MACSTR "\n"
12093 "bssid=" MACSTR "\n"
12094 "prev_bssid=" MACSTR "\n"
12097 "monitor_sock=%d\n"
12098 "monitor_ifidx=%d\n"
12099 "monitor_refcount=%d\n"
12100 "last_mgmt_freq=%u\n"
12101 "eapol_tx_sock=%d\n"
12102 "%s%s%s%s%s%s%s%s%s%s%s%s%s%s",
12104 MAC2STR(drv->perm_addr),
12107 scan_state_str(drv->scan_state),
12108 MAC2STR(drv->auth_bssid),
12109 MAC2STR(drv->auth_attempt_bssid),
12110 MAC2STR(drv->bssid),
12111 MAC2STR(drv->prev_bssid),
12115 drv->monitor_ifidx,
12116 drv->monitor_refcount,
12117 drv->last_mgmt_freq,
12118 drv->eapol_tx_sock,
12119 drv->ignore_if_down_event ?
12120 "ignore_if_down_event=1\n" : "",
12121 drv->scan_complete_events ?
12122 "scan_complete_events=1\n" : "",
12123 drv->disabled_11b_rates ?
12124 "disabled_11b_rates=1\n" : "",
12125 drv->pending_remain_on_chan ?
12126 "pending_remain_on_chan=1\n" : "",
12127 drv->in_interface_list ? "in_interface_list=1\n" : "",
12128 drv->device_ap_sme ? "device_ap_sme=1\n" : "",
12129 drv->poll_command_supported ?
12130 "poll_command_supported=1\n" : "",
12131 drv->data_tx_status ? "data_tx_status=1\n" : "",
12132 drv->scan_for_auth ? "scan_for_auth=1\n" : "",
12133 drv->retry_auth ? "retry_auth=1\n" : "",
12134 drv->use_monitor ? "use_monitor=1\n" : "",
12135 drv->ignore_next_local_disconnect ?
12136 "ignore_next_local_disconnect=1\n" : "",
12137 drv->ignore_next_local_deauth ?
12138 "ignore_next_local_deauth=1\n" : "",
12139 drv->allow_p2p_device ? "allow_p2p_device=1\n" : "");
12140 if (res < 0 || res >= end - pos)
12144 if (drv->has_capability) {
12145 res = os_snprintf(pos, end - pos,
12146 "capa.key_mgmt=0x%x\n"
12149 "capa.flags=0x%x\n"
12150 "capa.max_scan_ssids=%d\n"
12151 "capa.max_sched_scan_ssids=%d\n"
12152 "capa.sched_scan_supported=%d\n"
12153 "capa.max_match_sets=%d\n"
12154 "capa.max_remain_on_chan=%u\n"
12155 "capa.max_stations=%u\n"
12156 "capa.probe_resp_offloads=0x%x\n"
12157 "capa.max_acl_mac_addrs=%u\n"
12158 "capa.num_multichan_concurrent=%u\n",
12159 drv->capa.key_mgmt,
12163 drv->capa.max_scan_ssids,
12164 drv->capa.max_sched_scan_ssids,
12165 drv->capa.sched_scan_supported,
12166 drv->capa.max_match_sets,
12167 drv->capa.max_remain_on_chan,
12168 drv->capa.max_stations,
12169 drv->capa.probe_resp_offloads,
12170 drv->capa.max_acl_mac_addrs,
12171 drv->capa.num_multichan_concurrent);
12172 if (res < 0 || res >= end - pos)
12181 static int set_beacon_data(struct nl_msg *msg, struct beacon_data *settings)
12183 if (settings->head)
12184 NLA_PUT(msg, NL80211_ATTR_BEACON_HEAD,
12185 settings->head_len, settings->head);
12187 if (settings->tail)
12188 NLA_PUT(msg, NL80211_ATTR_BEACON_TAIL,
12189 settings->tail_len, settings->tail);
12191 if (settings->beacon_ies)
12192 NLA_PUT(msg, NL80211_ATTR_IE,
12193 settings->beacon_ies_len, settings->beacon_ies);
12195 if (settings->proberesp_ies)
12196 NLA_PUT(msg, NL80211_ATTR_IE_PROBE_RESP,
12197 settings->proberesp_ies_len, settings->proberesp_ies);
12199 if (settings->assocresp_ies)
12201 NL80211_ATTR_IE_ASSOC_RESP,
12202 settings->assocresp_ies_len, settings->assocresp_ies);
12204 if (settings->probe_resp)
12205 NLA_PUT(msg, NL80211_ATTR_PROBE_RESP,
12206 settings->probe_resp_len, settings->probe_resp);
12215 static int nl80211_switch_channel(void *priv, struct csa_settings *settings)
12217 struct nl_msg *msg;
12218 struct i802_bss *bss = priv;
12219 struct wpa_driver_nl80211_data *drv = bss->drv;
12220 struct nlattr *beacon_csa;
12221 int ret = -ENOBUFS;
12223 wpa_printf(MSG_DEBUG, "nl80211: Channel switch request (cs_count=%u block_tx=%u freq=%d width=%d cf1=%d cf2=%d)",
12224 settings->cs_count, settings->block_tx,
12225 settings->freq_params.freq, settings->freq_params.bandwidth,
12226 settings->freq_params.center_freq1,
12227 settings->freq_params.center_freq2);
12229 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_AP_CSA)) {
12230 wpa_printf(MSG_DEBUG, "nl80211: Driver does not support channel switch command");
12231 return -EOPNOTSUPP;
12234 if ((drv->nlmode != NL80211_IFTYPE_AP) &&
12235 (drv->nlmode != NL80211_IFTYPE_P2P_GO))
12236 return -EOPNOTSUPP;
12238 /* check settings validity */
12239 if (!settings->beacon_csa.tail ||
12240 ((settings->beacon_csa.tail_len <=
12241 settings->counter_offset_beacon) ||
12242 (settings->beacon_csa.tail[settings->counter_offset_beacon] !=
12243 settings->cs_count)))
12246 if (settings->beacon_csa.probe_resp &&
12247 ((settings->beacon_csa.probe_resp_len <=
12248 settings->counter_offset_presp) ||
12249 (settings->beacon_csa.probe_resp[settings->counter_offset_presp] !=
12250 settings->cs_count)))
12253 msg = nlmsg_alloc();
12257 nl80211_cmd(drv, msg, 0, NL80211_CMD_CHANNEL_SWITCH);
12258 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, bss->ifindex);
12259 NLA_PUT_U32(msg, NL80211_ATTR_CH_SWITCH_COUNT, settings->cs_count);
12260 ret = nl80211_put_freq_params(msg, &settings->freq_params);
12264 if (settings->block_tx)
12265 NLA_PUT_FLAG(msg, NL80211_ATTR_CH_SWITCH_BLOCK_TX);
12267 /* beacon_after params */
12268 ret = set_beacon_data(msg, &settings->beacon_after);
12272 /* beacon_csa params */
12273 beacon_csa = nla_nest_start(msg, NL80211_ATTR_CSA_IES);
12275 goto nla_put_failure;
12277 ret = set_beacon_data(msg, &settings->beacon_csa);
12281 NLA_PUT_U16(msg, NL80211_ATTR_CSA_C_OFF_BEACON,
12282 settings->counter_offset_beacon);
12284 if (settings->beacon_csa.probe_resp)
12285 NLA_PUT_U16(msg, NL80211_ATTR_CSA_C_OFF_PRESP,
12286 settings->counter_offset_presp);
12288 nla_nest_end(msg, beacon_csa);
12289 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
12291 wpa_printf(MSG_DEBUG, "nl80211: switch_channel failed err=%d (%s)",
12292 ret, strerror(-ret));
12300 wpa_printf(MSG_DEBUG, "nl80211: Could not build channel switch request");
12305 #ifdef CONFIG_TESTING_OPTIONS
12306 static int cmd_reply_handler(struct nl_msg *msg, void *arg)
12308 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
12309 struct wpabuf *buf = arg;
12314 if ((size_t) genlmsg_attrlen(gnlh, 0) > wpabuf_tailroom(buf)) {
12315 wpa_printf(MSG_INFO, "nl80211: insufficient buffer space for reply");
12319 wpabuf_put_data(buf, genlmsg_attrdata(gnlh, 0),
12320 genlmsg_attrlen(gnlh, 0));
12324 #endif /* CONFIG_TESTING_OPTIONS */
12327 static int vendor_reply_handler(struct nl_msg *msg, void *arg)
12329 struct nlattr *tb[NL80211_ATTR_MAX + 1];
12330 struct nlattr *nl_vendor_reply, *nl;
12331 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
12332 struct wpabuf *buf = arg;
12338 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
12339 genlmsg_attrlen(gnlh, 0), NULL);
12340 nl_vendor_reply = tb[NL80211_ATTR_VENDOR_DATA];
12342 if (!nl_vendor_reply)
12345 if ((size_t) nla_len(nl_vendor_reply) > wpabuf_tailroom(buf)) {
12346 wpa_printf(MSG_INFO, "nl80211: Vendor command: insufficient buffer space for reply");
12350 nla_for_each_nested(nl, nl_vendor_reply, rem) {
12351 wpabuf_put_data(buf, nla_data(nl), nla_len(nl));
12358 static int nl80211_vendor_cmd(void *priv, unsigned int vendor_id,
12359 unsigned int subcmd, const u8 *data,
12360 size_t data_len, struct wpabuf *buf)
12362 struct i802_bss *bss = priv;
12363 struct wpa_driver_nl80211_data *drv = bss->drv;
12364 struct nl_msg *msg;
12367 msg = nlmsg_alloc();
12371 #ifdef CONFIG_TESTING_OPTIONS
12372 if (vendor_id == 0xffffffff) {
12373 nl80211_cmd(drv, msg, 0, subcmd);
12374 if (nlmsg_append(msg, (void *) data, data_len, NLMSG_ALIGNTO) <
12376 goto nla_put_failure;
12377 ret = send_and_recv_msgs(drv, msg, cmd_reply_handler, buf);
12379 wpa_printf(MSG_DEBUG, "nl80211: command failed err=%d",
12383 #endif /* CONFIG_TESTING_OPTIONS */
12385 nl80211_cmd(drv, msg, 0, NL80211_CMD_VENDOR);
12386 if (nl80211_set_iface_id(msg, bss) < 0)
12387 goto nla_put_failure;
12388 NLA_PUT_U32(msg, NL80211_ATTR_VENDOR_ID, vendor_id);
12389 NLA_PUT_U32(msg, NL80211_ATTR_VENDOR_SUBCMD, subcmd);
12391 NLA_PUT(msg, NL80211_ATTR_VENDOR_DATA, data_len, data);
12393 ret = send_and_recv_msgs(drv, msg, vendor_reply_handler, buf);
12395 wpa_printf(MSG_DEBUG, "nl80211: vendor command failed err=%d",
12405 static int nl80211_set_qos_map(void *priv, const u8 *qos_map_set,
12406 u8 qos_map_set_len)
12408 struct i802_bss *bss = priv;
12409 struct wpa_driver_nl80211_data *drv = bss->drv;
12410 struct nl_msg *msg;
12413 msg = nlmsg_alloc();
12417 wpa_hexdump(MSG_DEBUG, "nl80211: Setting QoS Map",
12418 qos_map_set, qos_map_set_len);
12420 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_QOS_MAP);
12421 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
12422 NLA_PUT(msg, NL80211_ATTR_QOS_MAP, qos_map_set_len, qos_map_set);
12424 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
12426 wpa_printf(MSG_DEBUG, "nl80211: Setting QoS Map failed");
12436 static int nl80211_set_wowlan(void *priv,
12437 const struct wowlan_triggers *triggers)
12439 struct i802_bss *bss = priv;
12440 struct wpa_driver_nl80211_data *drv = bss->drv;
12441 struct nl_msg *msg;
12442 struct nlattr *wowlan_triggers;
12445 msg = nlmsg_alloc();
12449 wpa_printf(MSG_DEBUG, "nl80211: Setting wowlan");
12451 nl80211_cmd(drv, msg, 0, NL80211_CMD_SET_WOWLAN);
12452 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
12454 wowlan_triggers = nla_nest_start(msg, NL80211_ATTR_WOWLAN_TRIGGERS);
12455 if (!wowlan_triggers)
12456 goto nla_put_failure;
12459 NLA_PUT_FLAG(msg, NL80211_WOWLAN_TRIG_ANY);
12460 if (triggers->disconnect)
12461 NLA_PUT_FLAG(msg, NL80211_WOWLAN_TRIG_DISCONNECT);
12462 if (triggers->magic_pkt)
12463 NLA_PUT_FLAG(msg, NL80211_WOWLAN_TRIG_MAGIC_PKT);
12464 if (triggers->gtk_rekey_failure)
12465 NLA_PUT_FLAG(msg, NL80211_WOWLAN_TRIG_GTK_REKEY_FAILURE);
12466 if (triggers->eap_identity_req)
12467 NLA_PUT_FLAG(msg, NL80211_WOWLAN_TRIG_EAP_IDENT_REQUEST);
12468 if (triggers->four_way_handshake)
12469 NLA_PUT_FLAG(msg, NL80211_WOWLAN_TRIG_4WAY_HANDSHAKE);
12470 if (triggers->rfkill_release)
12471 NLA_PUT_FLAG(msg, NL80211_WOWLAN_TRIG_RFKILL_RELEASE);
12473 nla_nest_end(msg, wowlan_triggers);
12475 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
12477 wpa_printf(MSG_DEBUG, "nl80211: Setting wowlan failed");
12487 static int nl80211_roaming(void *priv, int allowed, const u8 *bssid)
12489 struct i802_bss *bss = priv;
12490 struct wpa_driver_nl80211_data *drv = bss->drv;
12491 struct nl_msg *msg;
12492 struct nlattr *params;
12494 wpa_printf(MSG_DEBUG, "nl80211: Roaming policy: allowed=%d", allowed);
12496 if (!drv->roaming_vendor_cmd_avail) {
12497 wpa_printf(MSG_DEBUG,
12498 "nl80211: Ignore roaming policy change since driver does not provide command for setting it");
12502 msg = nlmsg_alloc();
12506 nl80211_cmd(drv, msg, 0, NL80211_CMD_VENDOR);
12508 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
12509 NLA_PUT_U32(msg, NL80211_ATTR_VENDOR_ID, OUI_QCA);
12510 NLA_PUT_U32(msg, NL80211_ATTR_VENDOR_SUBCMD,
12511 QCA_NL80211_VENDOR_SUBCMD_ROAMING);
12513 params = nla_nest_start(msg, NL80211_ATTR_VENDOR_DATA);
12515 goto nla_put_failure;
12516 NLA_PUT_U32(msg, QCA_WLAN_VENDOR_ATTR_ROAMING_POLICY,
12517 allowed ? QCA_ROAMING_ALLOWED_WITHIN_ESS :
12518 QCA_ROAMING_NOT_ALLOWED);
12520 NLA_PUT(msg, QCA_WLAN_VENDOR_ATTR_MAC_ADDR, ETH_ALEN, bssid);
12521 nla_nest_end(msg, params);
12523 return send_and_recv_msgs(drv, msg, NULL, NULL);
12531 static int nl80211_set_mac_addr(void *priv, const u8 *addr)
12533 struct i802_bss *bss = priv;
12534 struct wpa_driver_nl80211_data *drv = bss->drv;
12535 int new_addr = addr != NULL;
12538 addr = drv->perm_addr;
12540 if (linux_set_iface_flags(drv->global->ioctl_sock, bss->ifname, 0) < 0)
12543 if (linux_set_ifhwaddr(drv->global->ioctl_sock, bss->ifname, addr) < 0)
12545 wpa_printf(MSG_DEBUG,
12546 "nl80211: failed to set_mac_addr for %s to " MACSTR,
12547 bss->ifname, MAC2STR(addr));
12548 if (linux_set_iface_flags(drv->global->ioctl_sock, bss->ifname,
12550 wpa_printf(MSG_DEBUG,
12551 "nl80211: Could not restore interface UP after failed set_mac_addr");
12556 wpa_printf(MSG_DEBUG, "nl80211: set_mac_addr for %s to " MACSTR,
12557 bss->ifname, MAC2STR(addr));
12558 drv->addr_changed = new_addr;
12559 os_memcpy(bss->addr, addr, ETH_ALEN);
12561 if (linux_set_iface_flags(drv->global->ioctl_sock, bss->ifname, 1) < 0)
12563 wpa_printf(MSG_DEBUG,
12564 "nl80211: Could not restore interface UP after set_mac_addr");
12571 const struct wpa_driver_ops wpa_driver_nl80211_ops = {
12573 .desc = "Linux nl80211/cfg80211",
12574 .get_bssid = wpa_driver_nl80211_get_bssid,
12575 .get_ssid = wpa_driver_nl80211_get_ssid,
12576 .set_key = driver_nl80211_set_key,
12577 .scan2 = driver_nl80211_scan2,
12578 .sched_scan = wpa_driver_nl80211_sched_scan,
12579 .stop_sched_scan = wpa_driver_nl80211_stop_sched_scan,
12580 .get_scan_results2 = wpa_driver_nl80211_get_scan_results,
12581 .deauthenticate = driver_nl80211_deauthenticate,
12582 .authenticate = driver_nl80211_authenticate,
12583 .associate = wpa_driver_nl80211_associate,
12584 .global_init = nl80211_global_init,
12585 .global_deinit = nl80211_global_deinit,
12586 .init2 = wpa_driver_nl80211_init,
12587 .deinit = driver_nl80211_deinit,
12588 .get_capa = wpa_driver_nl80211_get_capa,
12589 .set_operstate = wpa_driver_nl80211_set_operstate,
12590 .set_supp_port = wpa_driver_nl80211_set_supp_port,
12591 .set_country = wpa_driver_nl80211_set_country,
12592 .get_country = wpa_driver_nl80211_get_country,
12593 .set_ap = wpa_driver_nl80211_set_ap,
12594 .set_acl = wpa_driver_nl80211_set_acl,
12595 .if_add = wpa_driver_nl80211_if_add,
12596 .if_remove = driver_nl80211_if_remove,
12597 .send_mlme = driver_nl80211_send_mlme,
12598 .get_hw_feature_data = wpa_driver_nl80211_get_hw_feature_data,
12599 .sta_add = wpa_driver_nl80211_sta_add,
12600 .sta_remove = driver_nl80211_sta_remove,
12601 .hapd_send_eapol = wpa_driver_nl80211_hapd_send_eapol,
12602 .sta_set_flags = wpa_driver_nl80211_sta_set_flags,
12603 .hapd_init = i802_init,
12604 .hapd_deinit = i802_deinit,
12605 .set_wds_sta = i802_set_wds_sta,
12606 .get_seqnum = i802_get_seqnum,
12607 .flush = i802_flush,
12608 .get_inact_sec = i802_get_inact_sec,
12609 .sta_clear_stats = i802_sta_clear_stats,
12610 .set_rts = i802_set_rts,
12611 .set_frag = i802_set_frag,
12612 .set_tx_queue_params = i802_set_tx_queue_params,
12613 .set_sta_vlan = driver_nl80211_set_sta_vlan,
12614 .sta_deauth = i802_sta_deauth,
12615 .sta_disassoc = i802_sta_disassoc,
12616 .read_sta_data = driver_nl80211_read_sta_data,
12617 .set_freq = i802_set_freq,
12618 .send_action = driver_nl80211_send_action,
12619 .send_action_cancel_wait = wpa_driver_nl80211_send_action_cancel_wait,
12620 .remain_on_channel = wpa_driver_nl80211_remain_on_channel,
12621 .cancel_remain_on_channel =
12622 wpa_driver_nl80211_cancel_remain_on_channel,
12623 .probe_req_report = driver_nl80211_probe_req_report,
12624 .deinit_ap = wpa_driver_nl80211_deinit_ap,
12625 .deinit_p2p_cli = wpa_driver_nl80211_deinit_p2p_cli,
12626 .resume = wpa_driver_nl80211_resume,
12627 .send_ft_action = nl80211_send_ft_action,
12628 .signal_monitor = nl80211_signal_monitor,
12629 .signal_poll = nl80211_signal_poll,
12630 .send_frame = nl80211_send_frame,
12631 .shared_freq = wpa_driver_nl80211_shared_freq,
12632 .set_param = nl80211_set_param,
12633 .get_radio_name = nl80211_get_radio_name,
12634 .add_pmkid = nl80211_add_pmkid,
12635 .remove_pmkid = nl80211_remove_pmkid,
12636 .flush_pmkid = nl80211_flush_pmkid,
12637 .set_rekey_info = nl80211_set_rekey_info,
12638 .poll_client = nl80211_poll_client,
12639 .set_p2p_powersave = nl80211_set_p2p_powersave,
12640 .start_dfs_cac = nl80211_start_radar_detection,
12641 .stop_ap = wpa_driver_nl80211_stop_ap,
12643 .send_tdls_mgmt = nl80211_send_tdls_mgmt,
12644 .tdls_oper = nl80211_tdls_oper,
12645 #endif /* CONFIG_TDLS */
12646 .update_ft_ies = wpa_driver_nl80211_update_ft_ies,
12647 .get_mac_addr = wpa_driver_nl80211_get_macaddr,
12648 .get_survey = wpa_driver_nl80211_get_survey,
12649 .status = wpa_driver_nl80211_status,
12650 .switch_channel = nl80211_switch_channel,
12652 .set_noa = wpa_driver_set_p2p_noa,
12653 .get_noa = wpa_driver_get_p2p_noa,
12654 .set_ap_wps_ie = wpa_driver_set_ap_wps_p2p_ie,
12655 #endif /* ANDROID_P2P */
12657 .driver_cmd = wpa_driver_nl80211_driver_cmd,
12658 #endif /* ANDROID */
12659 .vendor_cmd = nl80211_vendor_cmd,
12660 .set_qos_map = nl80211_set_qos_map,
12661 .set_wowlan = nl80211_set_wowlan,
12662 .roaming = nl80211_roaming,
12663 .set_mac_addr = nl80211_set_mac_addr,