2 * cfg80211 MLME SAP interface
4 * Copyright (c) 2009, Jouni Malinen <j@w1.fi>
7 #include <linux/kernel.h>
8 #include <linux/module.h>
9 #include <linux/netdevice.h>
10 #include <linux/nl80211.h>
11 #include <net/cfg80211.h>
15 void cfg80211_send_rx_auth(struct net_device *dev, const u8 *buf, size_t len, gfp_t gfp)
17 struct wireless_dev *wdev = dev->ieee80211_ptr;
18 struct wiphy *wiphy = wdev->wiphy;
19 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
20 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)buf;
21 u8 *bssid = mgmt->bssid;
23 u16 status = le16_to_cpu(mgmt->u.auth.status_code);
26 for (i = 0; i < MAX_AUTH_BSSES; i++) {
27 if (wdev->authtry_bsses[i] &&
28 memcmp(wdev->authtry_bsses[i]->pub.bssid, bssid,
30 if (status == WLAN_STATUS_SUCCESS) {
31 wdev->auth_bsses[i] = wdev->authtry_bsses[i];
33 cfg80211_unhold_bss(wdev->authtry_bsses[i]);
34 cfg80211_put_bss(&wdev->authtry_bsses[i]->pub);
36 wdev->authtry_bsses[i] = NULL;
44 nl80211_send_rx_auth(rdev, dev, buf, len, gfp);
45 cfg80211_sme_rx_auth(dev, buf, len);
47 EXPORT_SYMBOL(cfg80211_send_rx_auth);
49 void cfg80211_send_rx_assoc(struct net_device *dev, const u8 *buf, size_t len, gfp_t gfp)
52 struct wireless_dev *wdev = dev->ieee80211_ptr;
53 struct wiphy *wiphy = wdev->wiphy;
54 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
55 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)buf;
56 u8 *ie = mgmt->u.assoc_resp.variable;
57 int i, ieoffs = offsetof(struct ieee80211_mgmt, u.assoc_resp.variable);
60 status_code = le16_to_cpu(mgmt->u.assoc_resp.status_code);
62 nl80211_send_rx_assoc(rdev, dev, buf, len, gfp);
64 cfg80211_connect_result(dev, mgmt->bssid, NULL, 0, ie, len - ieoffs,
67 if (status_code == WLAN_STATUS_SUCCESS) {
68 for (i = 0; wdev->current_bss && i < MAX_AUTH_BSSES; i++) {
69 if (wdev->auth_bsses[i] == wdev->current_bss) {
70 cfg80211_unhold_bss(wdev->auth_bsses[i]);
71 cfg80211_put_bss(&wdev->auth_bsses[i]->pub);
72 wdev->auth_bsses[i] = NULL;
81 EXPORT_SYMBOL(cfg80211_send_rx_assoc);
83 void cfg80211_send_deauth(struct net_device *dev, const u8 *buf, size_t len, gfp_t gfp)
85 struct wireless_dev *wdev = dev->ieee80211_ptr;
86 struct wiphy *wiphy = wdev->wiphy;
87 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
88 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)buf;
89 const u8 *bssid = mgmt->bssid;
93 nl80211_send_deauth(rdev, dev, buf, len, gfp);
95 if (wdev->current_bss &&
96 memcmp(wdev->current_bss->pub.bssid, bssid, ETH_ALEN) == 0) {
98 cfg80211_unhold_bss(wdev->current_bss);
99 cfg80211_put_bss(&wdev->current_bss->pub);
100 wdev->current_bss = NULL;
101 } else for (i = 0; i < MAX_AUTH_BSSES; i++) {
102 if (wdev->auth_bsses[i] &&
103 memcmp(wdev->auth_bsses[i]->pub.bssid, bssid, ETH_ALEN) == 0) {
104 cfg80211_unhold_bss(wdev->auth_bsses[i]);
105 cfg80211_put_bss(&wdev->auth_bsses[i]->pub);
106 wdev->auth_bsses[i] = NULL;
110 if (wdev->authtry_bsses[i] &&
111 memcmp(wdev->authtry_bsses[i]->pub.bssid, bssid, ETH_ALEN) == 0) {
112 cfg80211_unhold_bss(wdev->authtry_bsses[i]);
113 cfg80211_put_bss(&wdev->authtry_bsses[i]->pub);
114 wdev->authtry_bsses[i] = NULL;
120 * mac80211 currently triggers this warning,
121 * so disable for now (it's harmless, just
122 * means that we got a spurious event)
128 if (wdev->sme_state == CFG80211_SME_CONNECTED) {
132 reason_code = le16_to_cpu(mgmt->u.deauth.reason_code);
134 from_ap = memcmp(mgmt->da, dev->dev_addr, ETH_ALEN) == 0;
135 __cfg80211_disconnected(dev, gfp, NULL, 0,
136 reason_code, from_ap);
137 } else if (wdev->sme_state == CFG80211_SME_CONNECTING) {
138 cfg80211_connect_result(dev, mgmt->bssid, NULL, 0, NULL, 0,
139 WLAN_STATUS_UNSPECIFIED_FAILURE, gfp);
142 EXPORT_SYMBOL(cfg80211_send_deauth);
144 void cfg80211_send_disassoc(struct net_device *dev, const u8 *buf, size_t len, gfp_t gfp)
146 struct wireless_dev *wdev = dev->ieee80211_ptr;
147 struct wiphy *wiphy = wdev->wiphy;
148 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
149 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)buf;
150 const u8 *bssid = mgmt->bssid;
156 nl80211_send_disassoc(rdev, dev, buf, len, gfp);
158 if (!wdev->sme_state == CFG80211_SME_CONNECTED)
161 if (wdev->current_bss &&
162 memcmp(wdev->current_bss, bssid, ETH_ALEN) == 0) {
163 for (i = 0; i < MAX_AUTH_BSSES; i++) {
164 if (wdev->authtry_bsses[i] || wdev->auth_bsses[i])
166 wdev->auth_bsses[i] = wdev->current_bss;
167 wdev->current_bss = NULL;
169 cfg80211_sme_disassoc(dev, i);
177 reason_code = le16_to_cpu(mgmt->u.disassoc.reason_code);
179 from_ap = memcmp(mgmt->da, dev->dev_addr, ETH_ALEN) == 0;
180 __cfg80211_disconnected(dev, gfp, NULL, 0,
181 reason_code, from_ap);
183 EXPORT_SYMBOL(cfg80211_send_disassoc);
185 void cfg80211_send_auth_timeout(struct net_device *dev, const u8 *addr, gfp_t gfp)
187 struct wireless_dev *wdev = dev->ieee80211_ptr;
188 struct wiphy *wiphy = wdev->wiphy;
189 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
193 nl80211_send_auth_timeout(rdev, dev, addr, gfp);
194 if (wdev->sme_state == CFG80211_SME_CONNECTING)
195 cfg80211_connect_result(dev, addr, NULL, 0, NULL, 0,
196 WLAN_STATUS_UNSPECIFIED_FAILURE, gfp);
198 for (i = 0; addr && i < MAX_AUTH_BSSES; i++) {
199 if (wdev->authtry_bsses[i] &&
200 memcmp(wdev->authtry_bsses[i]->pub.bssid,
201 addr, ETH_ALEN) == 0) {
202 cfg80211_unhold_bss(wdev->authtry_bsses[i]);
203 cfg80211_put_bss(&wdev->authtry_bsses[i]->pub);
204 wdev->authtry_bsses[i] = NULL;
212 EXPORT_SYMBOL(cfg80211_send_auth_timeout);
214 void cfg80211_send_assoc_timeout(struct net_device *dev, const u8 *addr, gfp_t gfp)
216 struct wireless_dev *wdev = dev->ieee80211_ptr;
217 struct wiphy *wiphy = wdev->wiphy;
218 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
222 nl80211_send_assoc_timeout(rdev, dev, addr, gfp);
223 if (wdev->sme_state == CFG80211_SME_CONNECTING)
224 cfg80211_connect_result(dev, addr, NULL, 0, NULL, 0,
225 WLAN_STATUS_UNSPECIFIED_FAILURE, gfp);
227 for (i = 0; addr && i < MAX_AUTH_BSSES; i++) {
228 if (wdev->auth_bsses[i] &&
229 memcmp(wdev->auth_bsses[i]->pub.bssid,
230 addr, ETH_ALEN) == 0) {
231 cfg80211_unhold_bss(wdev->auth_bsses[i]);
232 cfg80211_put_bss(&wdev->auth_bsses[i]->pub);
233 wdev->auth_bsses[i] = NULL;
241 EXPORT_SYMBOL(cfg80211_send_assoc_timeout);
243 void cfg80211_michael_mic_failure(struct net_device *dev, const u8 *addr,
244 enum nl80211_key_type key_type, int key_id,
245 const u8 *tsc, gfp_t gfp)
247 struct wiphy *wiphy = dev->ieee80211_ptr->wiphy;
248 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
249 #ifdef CONFIG_WIRELESS_EXT
250 union iwreq_data wrqu;
251 char *buf = kmalloc(128, gfp);
254 sprintf(buf, "MLME-MICHAELMICFAILURE.indication("
255 "keyid=%d %scast addr=%pM)", key_id,
256 key_type == NL80211_KEYTYPE_GROUP ? "broad" : "uni",
258 memset(&wrqu, 0, sizeof(wrqu));
259 wrqu.data.length = strlen(buf);
260 wireless_send_event(dev, IWEVCUSTOM, &wrqu, buf);
265 nl80211_michael_mic_failure(rdev, dev, addr, key_type, key_id, tsc, gfp);
267 EXPORT_SYMBOL(cfg80211_michael_mic_failure);
269 /* some MLME handling for userspace SME */
270 int cfg80211_mlme_auth(struct cfg80211_registered_device *rdev,
271 struct net_device *dev, struct ieee80211_channel *chan,
272 enum nl80211_auth_type auth_type, const u8 *bssid,
273 const u8 *ssid, int ssid_len,
274 const u8 *ie, int ie_len)
276 struct wireless_dev *wdev = dev->ieee80211_ptr;
277 struct cfg80211_auth_request req;
278 struct cfg80211_internal_bss *bss;
279 int i, err, slot = -1, nfree = 0;
281 if (wdev->current_bss &&
282 memcmp(bssid, wdev->current_bss->pub.bssid, ETH_ALEN) == 0)
285 for (i = 0; i < MAX_AUTH_BSSES; i++) {
286 if (wdev->authtry_bsses[i] &&
287 memcmp(bssid, wdev->authtry_bsses[i]->pub.bssid,
290 if (wdev->auth_bsses[i] &&
291 memcmp(bssid, wdev->auth_bsses[i]->pub.bssid,
296 memset(&req, 0, sizeof(req));
300 req.auth_type = auth_type;
301 req.bss = cfg80211_get_bss(&rdev->wiphy, chan, bssid, ssid, ssid_len,
302 WLAN_CAPABILITY_ESS, WLAN_CAPABILITY_ESS);
306 bss = bss_from_pub(req.bss);
308 for (i = 0; i < MAX_AUTH_BSSES; i++) {
309 if (!wdev->auth_bsses[i] && !wdev->authtry_bsses[i]) {
315 /* we need one free slot for disassoc and one for this auth */
321 wdev->authtry_bsses[slot] = bss;
322 cfg80211_hold_bss(bss);
324 err = rdev->ops->auth(&rdev->wiphy, dev, &req);
326 wdev->authtry_bsses[slot] = NULL;
327 cfg80211_unhold_bss(bss);
332 cfg80211_put_bss(req.bss);
336 int cfg80211_mlme_assoc(struct cfg80211_registered_device *rdev,
337 struct net_device *dev, struct ieee80211_channel *chan,
338 const u8 *bssid, const u8 *ssid, int ssid_len,
339 const u8 *ie, int ie_len, bool use_mfp,
340 struct cfg80211_crypto_settings *crypt)
342 struct wireless_dev *wdev = dev->ieee80211_ptr;
343 struct cfg80211_assoc_request req;
344 struct cfg80211_internal_bss *bss;
345 int i, err, slot = -1;
347 memset(&req, 0, sizeof(req));
349 if (wdev->current_bss)
354 memcpy(&req.crypto, crypt, sizeof(req.crypto));
355 req.use_mfp = use_mfp;
356 req.bss = cfg80211_get_bss(&rdev->wiphy, chan, bssid, ssid, ssid_len,
357 WLAN_CAPABILITY_ESS, WLAN_CAPABILITY_ESS);
361 bss = bss_from_pub(req.bss);
363 for (i = 0; i < MAX_AUTH_BSSES; i++) {
364 if (bss == wdev->auth_bsses[i]) {
375 err = rdev->ops->assoc(&rdev->wiphy, dev, &req);
377 /* still a reference in wdev->auth_bsses[slot] */
378 cfg80211_put_bss(req.bss);
382 int cfg80211_mlme_deauth(struct cfg80211_registered_device *rdev,
383 struct net_device *dev, const u8 *bssid,
384 const u8 *ie, int ie_len, u16 reason)
386 struct wireless_dev *wdev = dev->ieee80211_ptr;
387 struct cfg80211_deauth_request req;
390 memset(&req, 0, sizeof(req));
391 req.reason_code = reason;
394 if (wdev->current_bss &&
395 memcmp(wdev->current_bss->pub.bssid, bssid, ETH_ALEN) == 0) {
396 req.bss = &wdev->current_bss->pub;
397 } else for (i = 0; i < MAX_AUTH_BSSES; i++) {
398 if (wdev->auth_bsses[i] &&
399 memcmp(bssid, wdev->auth_bsses[i]->pub.bssid, ETH_ALEN) == 0) {
400 req.bss = &wdev->auth_bsses[i]->pub;
403 if (wdev->authtry_bsses[i] &&
404 memcmp(bssid, wdev->authtry_bsses[i]->pub.bssid, ETH_ALEN) == 0) {
405 req.bss = &wdev->authtry_bsses[i]->pub;
413 return rdev->ops->deauth(&rdev->wiphy, dev, &req);
416 int cfg80211_mlme_disassoc(struct cfg80211_registered_device *rdev,
417 struct net_device *dev, const u8 *bssid,
418 const u8 *ie, int ie_len, u16 reason)
420 struct wireless_dev *wdev = dev->ieee80211_ptr;
421 struct cfg80211_disassoc_request req;
423 memset(&req, 0, sizeof(req));
424 req.reason_code = reason;
427 if (memcmp(wdev->current_bss->pub.bssid, bssid, ETH_ALEN) == 0)
428 req.bss = &wdev->current_bss->pub;
432 return rdev->ops->disassoc(&rdev->wiphy, dev, &req);
435 void cfg80211_mlme_down(struct cfg80211_registered_device *rdev,
436 struct net_device *dev)
438 struct wireless_dev *wdev = dev->ieee80211_ptr;
439 struct cfg80211_deauth_request req;
442 if (!rdev->ops->deauth)
445 memset(&req, 0, sizeof(req));
446 req.reason_code = WLAN_REASON_DEAUTH_LEAVING;
450 if (wdev->current_bss) {
451 req.bss = &wdev->current_bss->pub;
452 rdev->ops->deauth(&rdev->wiphy, dev, &req);
453 if (wdev->current_bss) {
454 cfg80211_unhold_bss(wdev->current_bss);
455 cfg80211_put_bss(&wdev->current_bss->pub);
456 wdev->current_bss = NULL;
460 for (i = 0; i < MAX_AUTH_BSSES; i++) {
461 if (wdev->auth_bsses[i]) {
462 req.bss = &wdev->auth_bsses[i]->pub;
463 rdev->ops->deauth(&rdev->wiphy, dev, &req);
464 if (wdev->auth_bsses[i]) {
465 cfg80211_unhold_bss(wdev->auth_bsses[i]);
466 cfg80211_put_bss(&wdev->auth_bsses[i]->pub);
467 wdev->auth_bsses[i] = NULL;
470 if (wdev->authtry_bsses[i]) {
471 req.bss = &wdev->authtry_bsses[i]->pub;
472 rdev->ops->deauth(&rdev->wiphy, dev, &req);
473 if (wdev->authtry_bsses[i]) {
474 cfg80211_unhold_bss(wdev->authtry_bsses[i]);
475 cfg80211_put_bss(&wdev->authtry_bsses[i]->pub);
476 wdev->authtry_bsses[i] = NULL;