2 * WPA Supplicant - driver interaction with Linux nl80211/cfg80211
3 * Copyright (c) 2003-2008, Jouni Malinen <j@w1.fi>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 2 as
7 * published by the Free Software Foundation.
9 * Alternatively, this software may be distributed under the terms of BSD
12 * See README and COPYING for more details.
16 #include <sys/ioctl.h>
17 #include <net/if_arp.h>
18 #include <netlink/genl/genl.h>
19 #include <netlink/genl/family.h>
20 #include <netlink/genl/ctrl.h>
21 #include "nl80211_copy.h"
22 #include "wireless_copy.h"
27 #include "ieee802_11_defs.h"
30 #define IFF_LOWER_UP 0x10000 /* driver signals L1 up */
33 #define IFF_DORMANT 0x20000 /* driver signals dormant */
36 #ifndef IF_OPER_DORMANT
37 #define IF_OPER_DORMANT 5
44 #ifndef NO_WEXT_COMPAT
46 * Fall back to WEXT association, if the kernel does not support nl80211 MLME
47 * commands. This is temporary backwards compatibility version that will be
48 * removed at some point.
51 #endif /* NO_WEXT_COMPAT */
54 struct wpa_driver_nl80211_data {
58 char ifname[IFNAMSIZ + 1];
61 struct wpa_driver_capa capa;
63 int we_version_compiled;
67 size_t assoc_req_ies_len;
69 size_t assoc_resp_ies_len;
71 /* for set_auth_alg fallback */
73 int auth_alg_fallback;
74 #endif /* WEXT_COMPAT */
78 char mlmedev[IFNAMSIZ + 1];
80 int scan_complete_events;
82 struct nl_handle *nl_handle;
83 struct nl_cache *nl_cache;
85 struct genl_family *nl80211;
94 static void wpa_driver_nl80211_scan_timeout(void *eloop_ctx,
96 static int wpa_driver_nl80211_set_mode(struct wpa_driver_nl80211_data *drv,
99 static int wpa_driver_nl80211_flush_pmkid(void *priv);
100 #endif /* WEXT_COMPAT */
101 static int wpa_driver_nl80211_get_range(void *priv);
103 wpa_driver_nl80211_finish_drv_init(struct wpa_driver_nl80211_data *drv);
107 static int ack_handler(struct nl_msg *msg, void *arg)
114 static int finish_handler(struct nl_msg *msg, void *arg)
121 static int error_handler(struct sockaddr_nl *nla, struct nlmsgerr *err,
129 static int send_and_recv_msgs(struct wpa_driver_nl80211_data *drv,
131 int (*valid_handler)(struct nl_msg *, void *),
137 cb = nl_cb_clone(drv->nl_cb);
141 err = nl_send_auto_complete(drv->nl_handle, msg);
147 nl_cb_err(cb, NL_CB_CUSTOM, error_handler, &err);
148 nl_cb_set(cb, NL_CB_FINISH, NL_CB_CUSTOM, finish_handler, &err);
149 nl_cb_set(cb, NL_CB_ACK, NL_CB_CUSTOM, ack_handler, &err);
152 nl_cb_set(cb, NL_CB_VALID, NL_CB_CUSTOM,
153 valid_handler, valid_data);
156 nl_recvmsgs(drv->nl_handle, cb);
170 static int family_handler(struct nl_msg *msg, void *arg)
172 struct family_data *res = arg;
173 struct nlattr *tb[CTRL_ATTR_MAX + 1];
174 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
175 struct nlattr *mcgrp;
178 nla_parse(tb, CTRL_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
179 genlmsg_attrlen(gnlh, 0), NULL);
180 if (!tb[CTRL_ATTR_MCAST_GROUPS])
183 nla_for_each_nested(mcgrp, tb[CTRL_ATTR_MCAST_GROUPS], i) {
184 struct nlattr *tb2[CTRL_ATTR_MCAST_GRP_MAX + 1];
185 nla_parse(tb2, CTRL_ATTR_MCAST_GRP_MAX, nla_data(mcgrp),
186 nla_len(mcgrp), NULL);
187 if (!tb2[CTRL_ATTR_MCAST_GRP_NAME] ||
188 !tb2[CTRL_ATTR_MCAST_GRP_ID] ||
189 os_strncmp(nla_data(tb2[CTRL_ATTR_MCAST_GRP_NAME]),
191 nla_len(tb2[CTRL_ATTR_MCAST_GRP_NAME])) != 0)
193 res->id = nla_get_u32(tb2[CTRL_ATTR_MCAST_GRP_ID]);
201 static int nl_get_multicast_id(struct wpa_driver_nl80211_data *drv,
202 const char *family, const char *group)
206 struct family_data res = { group, -ENOENT };
211 genlmsg_put(msg, 0, 0, genl_ctrl_resolve(drv->nl_handle, "nlctrl"),
212 0, 0, CTRL_CMD_GETFAMILY, 0);
213 NLA_PUT_STRING(msg, CTRL_ATTR_FAMILY_NAME, family);
215 ret = send_and_recv_msgs(drv, msg, family_handler, &res);
226 static int wpa_driver_nl80211_send_oper_ifla(
227 struct wpa_driver_nl80211_data *drv,
228 int linkmode, int operstate)
232 struct ifinfomsg ifinfo;
239 os_memset(&req, 0, sizeof(req));
241 req.hdr.nlmsg_len = NLMSG_LENGTH(sizeof(struct ifinfomsg));
242 req.hdr.nlmsg_type = RTM_SETLINK;
243 req.hdr.nlmsg_flags = NLM_F_REQUEST;
244 req.hdr.nlmsg_seq = ++nl_seq;
245 req.hdr.nlmsg_pid = 0;
247 req.ifinfo.ifi_family = AF_UNSPEC;
248 req.ifinfo.ifi_type = 0;
249 req.ifinfo.ifi_index = drv->ifindex;
250 req.ifinfo.ifi_flags = 0;
251 req.ifinfo.ifi_change = 0;
253 if (linkmode != -1) {
254 rta = (struct rtattr *)
255 ((char *) &req + NLMSG_ALIGN(req.hdr.nlmsg_len));
256 rta->rta_type = IFLA_LINKMODE;
257 rta->rta_len = RTA_LENGTH(sizeof(char));
258 *((char *) RTA_DATA(rta)) = linkmode;
259 req.hdr.nlmsg_len = NLMSG_ALIGN(req.hdr.nlmsg_len) +
260 RTA_LENGTH(sizeof(char));
262 if (operstate != -1) {
263 rta = (struct rtattr *)
264 ((char *) &req + NLMSG_ALIGN(req.hdr.nlmsg_len));
265 rta->rta_type = IFLA_OPERSTATE;
266 rta->rta_len = RTA_LENGTH(sizeof(char));
267 *((char *) RTA_DATA(rta)) = operstate;
268 req.hdr.nlmsg_len = NLMSG_ALIGN(req.hdr.nlmsg_len) +
269 RTA_LENGTH(sizeof(char));
272 wpa_printf(MSG_DEBUG, "WEXT: Operstate: linkmode=%d, operstate=%d",
273 linkmode, operstate);
275 ret = send(drv->wext_event_sock, &req, req.hdr.nlmsg_len, 0);
277 wpa_printf(MSG_DEBUG, "WEXT: Sending operstate IFLA failed: "
278 "%s (assume operstate is not supported)",
282 return ret < 0 ? -1 : 0;
286 static int wpa_driver_nl80211_set_auth_param(
287 struct wpa_driver_nl80211_data *drv, int idx, u32 value)
292 os_memset(&iwr, 0, sizeof(iwr));
293 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
294 iwr.u.param.flags = idx & IW_AUTH_INDEX;
295 iwr.u.param.value = value;
297 if (ioctl(drv->ioctl_sock, SIOCSIWAUTH, &iwr) < 0) {
298 if (errno != EOPNOTSUPP) {
299 wpa_printf(MSG_DEBUG, "WEXT: SIOCSIWAUTH(param %d "
300 "value 0x%x) failed: %s)",
301 idx, value, strerror(errno));
303 ret = errno == EOPNOTSUPP ? -2 : -1;
310 static int wpa_driver_nl80211_get_bssid(void *priv, u8 *bssid)
312 struct wpa_driver_nl80211_data *drv = priv;
314 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME)) {
318 os_memset(&iwr, 0, sizeof(iwr));
319 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
321 if (ioctl(drv->ioctl_sock, SIOCGIWAP, &iwr) < 0) {
322 perror("ioctl[SIOCGIWAP]");
325 os_memcpy(bssid, iwr.u.ap_addr.sa_data, ETH_ALEN);
329 #endif /* WEXT_COMPAT */
330 if (!drv->associated)
332 os_memcpy(bssid, drv->bssid, ETH_ALEN);
338 static int wpa_driver_nl80211_set_bssid(void *priv, const u8 *bssid)
340 struct wpa_driver_nl80211_data *drv = priv;
344 os_memset(&iwr, 0, sizeof(iwr));
345 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
346 iwr.u.ap_addr.sa_family = ARPHRD_ETHER;
348 os_memcpy(iwr.u.ap_addr.sa_data, bssid, ETH_ALEN);
350 os_memset(iwr.u.ap_addr.sa_data, 0, ETH_ALEN);
352 if (ioctl(drv->ioctl_sock, SIOCSIWAP, &iwr) < 0) {
353 perror("ioctl[SIOCSIWAP]");
359 #endif /* WEXT_COMPAT */
362 static int wpa_driver_nl80211_get_ssid(void *priv, u8 *ssid)
364 struct wpa_driver_nl80211_data *drv = priv;
366 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME)) {
370 os_memset(&iwr, 0, sizeof(iwr));
371 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
372 iwr.u.essid.pointer = (caddr_t) ssid;
373 iwr.u.essid.length = 32;
375 if (ioctl(drv->ioctl_sock, SIOCGIWESSID, &iwr) < 0) {
376 perror("ioctl[SIOCGIWESSID]");
379 ret = iwr.u.essid.length;
383 * Some drivers include nul termination in the SSID, so
384 * let's remove it here before further processing.
385 * WE-21 changes this to explicitly require the length
386 * _not_ to include nul termination.
388 if (ret > 0 && ssid[ret - 1] == '\0' &&
389 drv->we_version_compiled < 21)
395 #endif /* WEXT_COMPAT */
396 if (!drv->associated)
398 os_memcpy(ssid, drv->ssid, drv->ssid_len);
399 return drv->ssid_len;
404 static int wpa_driver_nl80211_set_ssid(void *priv, const u8 *ssid,
407 struct wpa_driver_nl80211_data *drv = priv;
415 os_memset(&iwr, 0, sizeof(iwr));
416 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
417 /* flags: 1 = ESSID is active, 0 = not (promiscuous) */
418 iwr.u.essid.flags = (ssid_len != 0);
419 os_memset(buf, 0, sizeof(buf));
420 os_memcpy(buf, ssid, ssid_len);
421 iwr.u.essid.pointer = (caddr_t) buf;
422 if (drv->we_version_compiled < 21) {
423 /* For historic reasons, set SSID length to include one extra
424 * character, C string nul termination, even though SSID is
425 * really an octet string that should not be presented as a C
426 * string. Some Linux drivers decrement the length by one and
427 * can thus end up missing the last octet of the SSID if the
428 * length is not incremented here. WE-21 changes this to
429 * explicitly require the length _not_ to include nul
434 iwr.u.essid.length = ssid_len;
436 if (ioctl(drv->ioctl_sock, SIOCSIWESSID, &iwr) < 0) {
437 perror("ioctl[SIOCSIWESSID]");
445 static int wpa_driver_nl80211_set_freq(void *priv, int freq)
447 struct wpa_driver_nl80211_data *drv = priv;
451 os_memset(&iwr, 0, sizeof(iwr));
452 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
453 iwr.u.freq.m = freq * 100000;
456 if (ioctl(drv->ioctl_sock, SIOCSIWFREQ, &iwr) < 0) {
457 perror("ioctl[SIOCSIWFREQ]");
466 wpa_driver_nl80211_event_wireless_custom(void *ctx, char *custom)
468 union wpa_event_data data;
470 wpa_printf(MSG_MSGDUMP, "WEXT: Custom wireless event: '%s'",
473 os_memset(&data, 0, sizeof(data));
475 if (os_strncmp(custom, "MLME-MICHAELMICFAILURE.indication", 33) == 0) {
476 data.michael_mic_failure.unicast =
477 os_strstr(custom, " unicast ") != NULL;
478 /* TODO: parse parameters(?) */
479 wpa_supplicant_event(ctx, EVENT_MICHAEL_MIC_FAILURE, &data);
480 } else if (os_strncmp(custom, "ASSOCINFO(ReqIEs=", 17) == 0) {
486 bytes = strspn(spos, "0123456789abcdefABCDEF");
487 if (!bytes || (bytes & 1))
491 data.assoc_info.req_ies = os_malloc(bytes);
492 if (data.assoc_info.req_ies == NULL)
495 data.assoc_info.req_ies_len = bytes;
496 hexstr2bin(spos, data.assoc_info.req_ies, bytes);
500 data.assoc_info.resp_ies = NULL;
501 data.assoc_info.resp_ies_len = 0;
503 if (os_strncmp(spos, " RespIEs=", 9) == 0) {
506 bytes = strspn(spos, "0123456789abcdefABCDEF");
507 if (!bytes || (bytes & 1))
511 data.assoc_info.resp_ies = os_malloc(bytes);
512 if (data.assoc_info.resp_ies == NULL)
515 data.assoc_info.resp_ies_len = bytes;
516 hexstr2bin(spos, data.assoc_info.resp_ies, bytes);
519 wpa_supplicant_event(ctx, EVENT_ASSOCINFO, &data);
522 os_free(data.assoc_info.resp_ies);
523 os_free(data.assoc_info.req_ies);
524 #ifdef CONFIG_PEERKEY
525 } else if (os_strncmp(custom, "STKSTART.request=", 17) == 0) {
526 if (hwaddr_aton(custom + 17, data.stkstart.peer)) {
527 wpa_printf(MSG_DEBUG, "WEXT: unrecognized "
528 "STKSTART.request '%s'", custom + 17);
531 wpa_supplicant_event(ctx, EVENT_STKSTART, &data);
532 #endif /* CONFIG_PEERKEY */
535 #endif /* WEXT_COMPAT */
538 static int wpa_driver_nl80211_event_wireless_michaelmicfailure(
539 void *ctx, const char *ev, size_t len)
541 const struct iw_michaelmicfailure *mic;
542 union wpa_event_data data;
544 if (len < sizeof(*mic))
547 mic = (const struct iw_michaelmicfailure *) ev;
549 wpa_printf(MSG_DEBUG, "Michael MIC failure wireless event: "
550 "flags=0x%x src_addr=" MACSTR, mic->flags,
551 MAC2STR(mic->src_addr.sa_data));
553 os_memset(&data, 0, sizeof(data));
554 data.michael_mic_failure.unicast = !(mic->flags & IW_MICFAILURE_GROUP);
555 wpa_supplicant_event(ctx, EVENT_MICHAEL_MIC_FAILURE, &data);
562 static int wpa_driver_nl80211_event_wireless_pmkidcand(
563 struct wpa_driver_nl80211_data *drv, const char *ev, size_t len)
565 const struct iw_pmkid_cand *cand;
566 union wpa_event_data data;
569 if (len < sizeof(*cand))
572 cand = (const struct iw_pmkid_cand *) ev;
573 addr = (const u8 *) cand->bssid.sa_data;
575 wpa_printf(MSG_DEBUG, "PMKID candidate wireless event: "
576 "flags=0x%x index=%d bssid=" MACSTR, cand->flags,
577 cand->index, MAC2STR(addr));
579 os_memset(&data, 0, sizeof(data));
580 os_memcpy(data.pmkid_candidate.bssid, addr, ETH_ALEN);
581 data.pmkid_candidate.index = cand->index;
582 data.pmkid_candidate.preauth = cand->flags & IW_PMKID_CAND_PREAUTH;
583 wpa_supplicant_event(drv->ctx, EVENT_PMKID_CANDIDATE, &data);
589 static int wpa_driver_nl80211_event_wireless_assocreqie(
590 struct wpa_driver_nl80211_data *drv, const char *ev, int len)
595 wpa_hexdump(MSG_DEBUG, "AssocReq IE wireless event", (const u8 *) ev,
597 os_free(drv->assoc_req_ies);
598 drv->assoc_req_ies = os_malloc(len);
599 if (drv->assoc_req_ies == NULL) {
600 drv->assoc_req_ies_len = 0;
603 os_memcpy(drv->assoc_req_ies, ev, len);
604 drv->assoc_req_ies_len = len;
610 static int wpa_driver_nl80211_event_wireless_assocrespie(
611 struct wpa_driver_nl80211_data *drv, const char *ev, int len)
616 wpa_hexdump(MSG_DEBUG, "AssocResp IE wireless event", (const u8 *) ev,
618 os_free(drv->assoc_resp_ies);
619 drv->assoc_resp_ies = os_malloc(len);
620 if (drv->assoc_resp_ies == NULL) {
621 drv->assoc_resp_ies_len = 0;
624 os_memcpy(drv->assoc_resp_ies, ev, len);
625 drv->assoc_resp_ies_len = len;
631 static void wpa_driver_nl80211_event_assoc_ies(struct wpa_driver_nl80211_data *drv)
633 union wpa_event_data data;
635 if (drv->assoc_req_ies == NULL && drv->assoc_resp_ies == NULL)
638 os_memset(&data, 0, sizeof(data));
639 if (drv->assoc_req_ies) {
640 data.assoc_info.req_ies = drv->assoc_req_ies;
641 drv->assoc_req_ies = NULL;
642 data.assoc_info.req_ies_len = drv->assoc_req_ies_len;
644 if (drv->assoc_resp_ies) {
645 data.assoc_info.resp_ies = drv->assoc_resp_ies;
646 drv->assoc_resp_ies = NULL;
647 data.assoc_info.resp_ies_len = drv->assoc_resp_ies_len;
650 wpa_supplicant_event(drv->ctx, EVENT_ASSOCINFO, &data);
652 os_free(data.assoc_info.req_ies);
653 os_free(data.assoc_info.resp_ies);
655 #endif /* WEXT_COMPAT */
658 static void wpa_driver_nl80211_event_wireless(struct wpa_driver_nl80211_data *drv,
659 void *ctx, char *data, int len)
661 struct iw_event iwe_buf, *iwe = &iwe_buf;
662 char *pos, *end, *custom;
665 #endif /* WEXT_COMPAT */
670 while (pos + IW_EV_LCP_LEN <= end) {
671 /* Event data may be unaligned, so make a local, aligned copy
672 * before processing. */
673 os_memcpy(&iwe_buf, pos, IW_EV_LCP_LEN);
674 wpa_printf(MSG_DEBUG, "Wireless event: cmd=0x%x len=%d",
676 if (iwe->len <= IW_EV_LCP_LEN)
679 custom = pos + IW_EV_POINT_LEN;
680 if (drv->we_version_compiled > 18 &&
681 (iwe->cmd == IWEVMICHAELMICFAILURE ||
682 iwe->cmd == IWEVCUSTOM ||
683 iwe->cmd == IWEVASSOCREQIE ||
684 iwe->cmd == IWEVASSOCRESPIE ||
685 iwe->cmd == IWEVPMKIDCAND)) {
686 /* WE-19 removed the pointer from struct iw_point */
687 char *dpos = (char *) &iwe_buf.u.data.length;
688 int dlen = dpos - (char *) &iwe_buf;
689 os_memcpy(dpos, pos + IW_EV_LCP_LEN,
690 sizeof(struct iw_event) - dlen);
692 os_memcpy(&iwe_buf, pos, sizeof(struct iw_event));
693 custom += IW_EV_POINT_OFF;
699 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME)
701 wpa_printf(MSG_DEBUG, "Wireless event: new AP: "
703 MAC2STR((u8 *) iwe->u.ap_addr.sa_data));
704 if (is_zero_ether_addr(
705 (const u8 *) iwe->u.ap_addr.sa_data) ||
706 os_memcmp(iwe->u.ap_addr.sa_data,
707 "\x44\x44\x44\x44\x44\x44", ETH_ALEN) ==
709 os_free(drv->assoc_req_ies);
710 drv->assoc_req_ies = NULL;
711 os_free(drv->assoc_resp_ies);
712 drv->assoc_resp_ies = NULL;
713 wpa_supplicant_event(ctx, EVENT_DISASSOC,
717 wpa_driver_nl80211_event_assoc_ies(drv);
718 wpa_supplicant_event(ctx, EVENT_ASSOC, NULL);
721 #endif /* WEXT_COMPAT */
722 case IWEVMICHAELMICFAILURE:
723 wpa_driver_nl80211_event_wireless_michaelmicfailure(
724 ctx, custom, iwe->u.data.length);
728 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME)
730 if (custom + iwe->u.data.length > end)
732 buf = os_malloc(iwe->u.data.length + 1);
735 os_memcpy(buf, custom, iwe->u.data.length);
736 buf[iwe->u.data.length] = '\0';
737 wpa_driver_nl80211_event_wireless_custom(ctx, buf);
741 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME)
743 wpa_driver_nl80211_event_wireless_assocreqie(
744 drv, custom, iwe->u.data.length);
746 case IWEVASSOCRESPIE:
747 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME)
749 wpa_driver_nl80211_event_wireless_assocrespie(
750 drv, custom, iwe->u.data.length);
753 wpa_driver_nl80211_event_wireless_pmkidcand(
754 drv, custom, iwe->u.data.length);
756 #endif /* WEXT_COMPAT */
764 static void wpa_driver_nl80211_event_link(struct wpa_driver_nl80211_data *drv,
765 void *ctx, char *buf, size_t len,
768 union wpa_event_data event;
770 os_memset(&event, 0, sizeof(event));
771 if (len > sizeof(event.interface_status.ifname))
772 len = sizeof(event.interface_status.ifname) - 1;
773 os_memcpy(event.interface_status.ifname, buf, len);
774 event.interface_status.ievent = del ? EVENT_INTERFACE_REMOVED :
775 EVENT_INTERFACE_ADDED;
777 wpa_printf(MSG_DEBUG, "RTM_%sLINK, IFLA_IFNAME: Interface '%s' %s",
779 event.interface_status.ifname,
780 del ? "removed" : "added");
782 if (os_strcmp(drv->ifname, event.interface_status.ifname) == 0) {
789 wpa_supplicant_event(ctx, EVENT_INTERFACE_STATUS, &event);
793 static int wpa_driver_nl80211_own_ifname(struct wpa_driver_nl80211_data *drv,
796 struct ifinfomsg *ifi;
797 int attrlen, _nlmsg_len, rta_len;
802 _nlmsg_len = NLMSG_ALIGN(sizeof(struct ifinfomsg));
804 attrlen = h->nlmsg_len - _nlmsg_len;
808 attr = (struct rtattr *) (((char *) ifi) + _nlmsg_len);
810 rta_len = RTA_ALIGN(sizeof(struct rtattr));
811 while (RTA_OK(attr, attrlen)) {
812 if (attr->rta_type == IFLA_IFNAME) {
813 if (os_strcmp(((char *) attr) + rta_len, drv->ifname)
819 attr = RTA_NEXT(attr, attrlen);
826 static int wpa_driver_nl80211_own_ifindex(struct wpa_driver_nl80211_data *drv,
827 int ifindex, struct nlmsghdr *h)
829 if (drv->ifindex == ifindex)
832 if (drv->if_removed && wpa_driver_nl80211_own_ifname(drv, h)) {
833 drv->ifindex = if_nametoindex(drv->ifname);
834 wpa_printf(MSG_DEBUG, "nl80211: Update ifindex for a removed "
836 wpa_driver_nl80211_finish_drv_init(drv);
844 static void wpa_driver_nl80211_event_rtm_newlink(struct wpa_driver_nl80211_data *drv,
845 void *ctx, struct nlmsghdr *h,
848 struct ifinfomsg *ifi;
849 int attrlen, _nlmsg_len, rta_len;
850 struct rtattr * attr;
852 if (len < sizeof(*ifi))
857 if (!wpa_driver_nl80211_own_ifindex(drv, ifi->ifi_index, h)) {
858 wpa_printf(MSG_DEBUG, "Ignore event for foreign ifindex %d",
863 wpa_printf(MSG_DEBUG, "RTM_NEWLINK: operstate=%d ifi_flags=0x%x "
865 drv->operstate, ifi->ifi_flags,
866 (ifi->ifi_flags & IFF_UP) ? "[UP]" : "",
867 (ifi->ifi_flags & IFF_RUNNING) ? "[RUNNING]" : "",
868 (ifi->ifi_flags & IFF_LOWER_UP) ? "[LOWER_UP]" : "",
869 (ifi->ifi_flags & IFF_DORMANT) ? "[DORMANT]" : "");
871 * Some drivers send the association event before the operup event--in
872 * this case, lifting operstate in wpa_driver_nl80211_set_operstate()
873 * fails. This will hit us when wpa_supplicant does not need to do
874 * IEEE 802.1X authentication
876 if (drv->operstate == 1 &&
877 (ifi->ifi_flags & (IFF_LOWER_UP | IFF_DORMANT)) == IFF_LOWER_UP &&
878 !(ifi->ifi_flags & IFF_RUNNING))
879 wpa_driver_nl80211_send_oper_ifla(drv, -1, IF_OPER_UP);
881 _nlmsg_len = NLMSG_ALIGN(sizeof(struct ifinfomsg));
883 attrlen = h->nlmsg_len - _nlmsg_len;
887 attr = (struct rtattr *) (((char *) ifi) + _nlmsg_len);
889 rta_len = RTA_ALIGN(sizeof(struct rtattr));
890 while (RTA_OK(attr, attrlen)) {
891 if (attr->rta_type == IFLA_WIRELESS) {
892 wpa_driver_nl80211_event_wireless(
893 drv, ctx, ((char *) attr) + rta_len,
894 attr->rta_len - rta_len);
895 } else if (attr->rta_type == IFLA_IFNAME) {
896 wpa_driver_nl80211_event_link(
898 ((char *) attr) + rta_len,
899 attr->rta_len - rta_len, 0);
901 attr = RTA_NEXT(attr, attrlen);
906 static void wpa_driver_nl80211_event_rtm_dellink(struct wpa_driver_nl80211_data *drv,
907 void *ctx, struct nlmsghdr *h,
910 struct ifinfomsg *ifi;
911 int attrlen, _nlmsg_len, rta_len;
912 struct rtattr * attr;
914 if (len < sizeof(*ifi))
919 _nlmsg_len = NLMSG_ALIGN(sizeof(struct ifinfomsg));
921 attrlen = h->nlmsg_len - _nlmsg_len;
925 attr = (struct rtattr *) (((char *) ifi) + _nlmsg_len);
927 rta_len = RTA_ALIGN(sizeof(struct rtattr));
928 while (RTA_OK(attr, attrlen)) {
929 if (attr->rta_type == IFLA_IFNAME) {
930 wpa_driver_nl80211_event_link(
932 ((char *) attr) + rta_len,
933 attr->rta_len - rta_len, 1);
935 attr = RTA_NEXT(attr, attrlen);
940 static void wpa_driver_nl80211_event_receive_wext(int sock, void *eloop_ctx,
945 struct sockaddr_nl from;
951 fromlen = sizeof(from);
952 left = recvfrom(sock, buf, sizeof(buf), MSG_DONTWAIT,
953 (struct sockaddr *) &from, &fromlen);
955 if (errno != EINTR && errno != EAGAIN)
956 perror("recvfrom(netlink)");
960 h = (struct nlmsghdr *) buf;
961 while (left >= (int) sizeof(*h)) {
965 plen = len - sizeof(*h);
966 if (len > left || plen < 0) {
967 wpa_printf(MSG_DEBUG, "Malformed netlink message: "
968 "len=%d left=%d plen=%d",
973 switch (h->nlmsg_type) {
975 wpa_driver_nl80211_event_rtm_newlink(eloop_ctx, sock_ctx,
979 wpa_driver_nl80211_event_rtm_dellink(eloop_ctx, sock_ctx,
984 len = NLMSG_ALIGN(len);
986 h = (struct nlmsghdr *) ((char *) h + len);
990 wpa_printf(MSG_DEBUG, "%d extra bytes in the end of netlink "
994 if (--max_events > 0) {
996 * Try to receive all events in one eloop call in order to
997 * limit race condition on cases where AssocInfo event, Assoc
998 * event, and EAPOL frames are received more or less at the
999 * same time. We want to process the event messages first
1000 * before starting EAPOL processing.
1007 static int no_seq_check(struct nl_msg *msg, void *arg)
1013 static void mlme_event_auth(struct wpa_driver_nl80211_data *drv,
1014 const u8 *frame, size_t len)
1016 const struct ieee80211_mgmt *mgmt;
1017 union wpa_event_data event;
1019 mgmt = (const struct ieee80211_mgmt *) frame;
1020 if (len < 24 + sizeof(mgmt->u.auth)) {
1021 wpa_printf(MSG_DEBUG, "nl80211: Too short association event "
1026 os_memset(&event, 0, sizeof(event));
1027 os_memcpy(event.auth.peer, mgmt->sa, ETH_ALEN);
1028 event.auth.auth_type = le_to_host16(mgmt->u.auth.auth_alg);
1029 event.auth.status_code = le_to_host16(mgmt->u.auth.status_code);
1030 if (len > 24 + sizeof(mgmt->u.auth)) {
1031 event.auth.ies = mgmt->u.auth.variable;
1032 event.auth.ies_len = len - 24 - sizeof(mgmt->u.auth);
1035 wpa_supplicant_event(drv->ctx, EVENT_AUTH, &event);
1039 static void mlme_event_assoc(struct wpa_driver_nl80211_data *drv,
1040 const u8 *frame, size_t len)
1042 const struct ieee80211_mgmt *mgmt;
1043 union wpa_event_data event;
1046 mgmt = (const struct ieee80211_mgmt *) frame;
1047 if (len < 24 + sizeof(mgmt->u.assoc_resp)) {
1048 wpa_printf(MSG_DEBUG, "nl80211: Too short association event "
1053 status = le_to_host16(mgmt->u.assoc_resp.status_code);
1054 if (status != WLAN_STATUS_SUCCESS) {
1055 wpa_printf(MSG_DEBUG, "nl80211: Association failed: status "
1057 /* TODO: notify SME so that things like SA Query and comeback
1058 * time can be implemented */
1062 drv->associated = 1;
1063 os_memcpy(drv->bssid, mgmt->sa, ETH_ALEN);
1065 os_memset(&event, 0, sizeof(event));
1066 if (len > 24 + sizeof(mgmt->u.assoc_resp)) {
1067 event.assoc_info.resp_ies = (u8 *) mgmt->u.assoc_resp.variable;
1068 event.assoc_info.resp_ies_len =
1069 len - 24 - sizeof(mgmt->u.assoc_req);
1072 wpa_supplicant_event(drv->ctx, EVENT_ASSOC, &event);
1076 static void mlme_event(struct wpa_driver_nl80211_data *drv,
1077 enum nl80211_commands cmd, struct nlattr *frame)
1079 if (frame == NULL) {
1080 wpa_printf(MSG_DEBUG, "nl80211: MLME event %d without frame "
1085 wpa_printf(MSG_DEBUG, "nl80211: MLME event %d", cmd);
1086 wpa_hexdump(MSG_MSGDUMP, "nl80211: MLME event frame",
1087 nla_data(frame), nla_len(frame));
1090 case NL80211_CMD_AUTHENTICATE:
1091 mlme_event_auth(drv, nla_data(frame), nla_len(frame));
1093 case NL80211_CMD_ASSOCIATE:
1094 mlme_event_assoc(drv, nla_data(frame), nla_len(frame));
1096 case NL80211_CMD_DEAUTHENTICATE:
1097 drv->associated = 0;
1098 wpa_supplicant_event(drv->ctx, EVENT_DEAUTH, NULL);
1100 case NL80211_CMD_DISASSOCIATE:
1101 drv->associated = 0;
1102 wpa_supplicant_event(drv->ctx, EVENT_DISASSOC, NULL);
1110 static int process_event(struct nl_msg *msg, void *arg)
1112 struct wpa_driver_nl80211_data *drv = arg;
1113 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
1114 struct nlattr *tb[NL80211_ATTR_MAX + 1];
1116 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
1117 genlmsg_attrlen(gnlh, 0), NULL);
1119 if (tb[NL80211_ATTR_IFINDEX]) {
1120 int ifindex = nla_get_u32(tb[NL80211_ATTR_IFINDEX]);
1121 if (ifindex != drv->ifindex) {
1122 wpa_printf(MSG_DEBUG, "nl80211: Ignored event (cmd=%d)"
1123 " for foreign interface (ifindex %d)",
1124 gnlh->cmd, ifindex);
1129 switch (gnlh->cmd) {
1130 case NL80211_CMD_NEW_SCAN_RESULTS:
1131 wpa_printf(MSG_DEBUG, "nl80211: New scan results available");
1132 drv->scan_complete_events = 1;
1133 eloop_cancel_timeout(wpa_driver_nl80211_scan_timeout, drv,
1135 wpa_supplicant_event(drv->ctx, EVENT_SCAN_RESULTS, NULL);
1137 case NL80211_CMD_SCAN_ABORTED:
1138 wpa_printf(MSG_DEBUG, "nl80211: Scan aborted");
1140 * Need to indicate that scan results are available in order
1141 * not to make wpa_supplicant stop its scanning.
1143 eloop_cancel_timeout(wpa_driver_nl80211_scan_timeout, drv,
1145 wpa_supplicant_event(drv->ctx, EVENT_SCAN_RESULTS, NULL);
1147 case NL80211_CMD_AUTHENTICATE:
1148 case NL80211_CMD_ASSOCIATE:
1149 case NL80211_CMD_DEAUTHENTICATE:
1150 case NL80211_CMD_DISASSOCIATE:
1151 mlme_event(drv, gnlh->cmd, tb[NL80211_ATTR_FRAME]);
1154 wpa_printf(MSG_DEBUG, "nl80211: Ignored unknown event "
1155 "(cmd=%d)", gnlh->cmd);
1163 static void wpa_driver_nl80211_event_receive(int sock, void *eloop_ctx,
1167 struct wpa_driver_nl80211_data *drv = eloop_ctx;
1169 wpa_printf(MSG_DEBUG, "nl80211: Event message available");
1171 cb = nl_cb_clone(drv->nl_cb);
1174 nl_cb_set(cb, NL_CB_SEQ_CHECK, NL_CB_CUSTOM, no_seq_check, NULL);
1175 nl_cb_set(cb, NL_CB_VALID, NL_CB_CUSTOM, process_event, drv);
1176 nl_recvmsgs(drv->nl_handle, cb);
1181 static int wpa_driver_nl80211_get_ifflags_ifname(struct wpa_driver_nl80211_data *drv,
1182 const char *ifname, int *flags)
1186 os_memset(&ifr, 0, sizeof(ifr));
1187 os_strlcpy(ifr.ifr_name, ifname, IFNAMSIZ);
1188 if (ioctl(drv->ioctl_sock, SIOCGIFFLAGS, (caddr_t) &ifr) < 0) {
1189 perror("ioctl[SIOCGIFFLAGS]");
1192 *flags = ifr.ifr_flags & 0xffff;
1198 * wpa_driver_nl80211_get_ifflags - Get interface flags (SIOCGIFFLAGS)
1199 * @drv: driver_nl80211 private data
1200 * @flags: Pointer to returned flags value
1201 * Returns: 0 on success, -1 on failure
1203 static int wpa_driver_nl80211_get_ifflags(struct wpa_driver_nl80211_data *drv,
1206 return wpa_driver_nl80211_get_ifflags_ifname(drv, drv->ifname, flags);
1210 static int wpa_driver_nl80211_set_ifflags_ifname(
1211 struct wpa_driver_nl80211_data *drv,
1212 const char *ifname, int flags)
1216 os_memset(&ifr, 0, sizeof(ifr));
1217 os_strlcpy(ifr.ifr_name, ifname, IFNAMSIZ);
1218 ifr.ifr_flags = flags & 0xffff;
1219 if (ioctl(drv->ioctl_sock, SIOCSIFFLAGS, (caddr_t) &ifr) < 0) {
1220 perror("SIOCSIFFLAGS");
1228 * wpa_driver_nl80211_set_ifflags - Set interface flags (SIOCSIFFLAGS)
1229 * @drv: driver_nl80211 private data
1230 * @flags: New value for flags
1231 * Returns: 0 on success, -1 on failure
1233 static int wpa_driver_nl80211_set_ifflags(struct wpa_driver_nl80211_data *drv,
1236 return wpa_driver_nl80211_set_ifflags_ifname(drv, drv->ifname, flags);
1241 * wpa_driver_nl80211_set_country - ask nl80211 to set the regulatory domain
1242 * @priv: driver_nl80211 private data
1243 * @alpha2_arg: country to which to switch to
1244 * Returns: 0 on success, -1 on failure
1246 * This asks nl80211 to set the regulatory domain for given
1247 * country ISO / IEC alpha2.
1249 static int wpa_driver_nl80211_set_country(void *priv, const char *alpha2_arg)
1251 struct wpa_driver_nl80211_data *drv = priv;
1255 msg = nlmsg_alloc();
1257 goto nla_put_failure;
1259 alpha2[0] = alpha2_arg[0];
1260 alpha2[1] = alpha2_arg[1];
1263 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0,
1264 0, NL80211_CMD_REQ_SET_REG, 0);
1266 NLA_PUT_STRING(msg, NL80211_ATTR_REG_ALPHA2, alpha2);
1267 if (send_and_recv_msgs(drv, msg, NULL, NULL))
1275 struct wiphy_info_data {
1280 static int wiphy_info_handler(struct nl_msg *msg, void *arg)
1282 struct nlattr *tb[NL80211_ATTR_MAX + 1];
1283 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
1284 struct wiphy_info_data *info = arg;
1286 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
1287 genlmsg_attrlen(gnlh, 0), NULL);
1289 if (tb[NL80211_ATTR_MAX_NUM_SCAN_SSIDS])
1290 info->max_scan_ssids =
1291 nla_get_u8(tb[NL80211_ATTR_MAX_NUM_SCAN_SSIDS]);
1297 static int wpa_driver_nl80211_get_info(struct wpa_driver_nl80211_data *drv,
1298 struct wiphy_info_data *info)
1302 os_memset(info, 0, sizeof(*info));
1303 msg = nlmsg_alloc();
1307 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0,
1308 0, NL80211_CMD_GET_WIPHY, 0);
1310 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
1312 if (send_and_recv_msgs(drv, msg, wiphy_info_handler, info) == 0)
1321 static void wpa_driver_nl80211_capa(struct wpa_driver_nl80211_data *drv)
1323 struct wiphy_info_data info;
1324 if (wpa_driver_nl80211_get_info(drv, &info))
1326 drv->has_capability = 1;
1327 drv->capa.max_scan_ssids = info.max_scan_ssids;
1332 * wpa_driver_nl80211_init - Initialize nl80211 driver interface
1333 * @ctx: context to be used when calling wpa_supplicant functions,
1334 * e.g., wpa_supplicant_event()
1335 * @ifname: interface name, e.g., wlan0
1336 * Returns: Pointer to private data, %NULL on failure
1338 static void * wpa_driver_nl80211_init(void *ctx, const char *ifname)
1341 struct sockaddr_nl local;
1342 struct wpa_driver_nl80211_data *drv;
1344 drv = os_zalloc(sizeof(*drv));
1348 os_strlcpy(drv->ifname, ifname, sizeof(drv->ifname));
1350 drv->nl_cb = nl_cb_alloc(NL_CB_DEFAULT);
1351 if (drv->nl_cb == NULL) {
1352 wpa_printf(MSG_ERROR, "nl80211: Failed to allocate netlink "
1357 drv->nl_handle = nl_handle_alloc_cb(drv->nl_cb);
1358 if (drv->nl_handle == NULL) {
1359 wpa_printf(MSG_ERROR, "nl80211: Failed to allocate netlink "
1364 if (genl_connect(drv->nl_handle)) {
1365 wpa_printf(MSG_ERROR, "nl80211: Failed to connect to generic "
1370 drv->nl_cache = genl_ctrl_alloc_cache(drv->nl_handle);
1371 if (drv->nl_cache == NULL) {
1372 wpa_printf(MSG_ERROR, "nl80211: Failed to allocate generic "
1377 drv->nl80211 = genl_ctrl_search_by_name(drv->nl_cache, "nl80211");
1378 if (drv->nl80211 == NULL) {
1379 wpa_printf(MSG_ERROR, "nl80211: 'nl80211' generic netlink not "
1384 ret = nl_get_multicast_id(drv, "nl80211", "scan");
1386 ret = nl_socket_add_membership(drv->nl_handle, ret);
1388 wpa_printf(MSG_ERROR, "nl80211: Could not add multicast "
1389 "membership for scan events: %d (%s)",
1390 ret, strerror(-ret));
1394 ret = nl_get_multicast_id(drv, "nl80211", "mlme");
1396 ret = nl_socket_add_membership(drv->nl_handle, ret);
1399 wpa_printf(MSG_DEBUG, "nl80211: Could not add multicast "
1400 "membership for mlme events: %d (%s)",
1401 ret, strerror(-ret));
1402 /* Use WEXT for association request */
1404 drv->capa.flags |= WPA_DRIVER_FLAGS_SME;
1405 #else /* WEXT_COMPAT */
1407 wpa_printf(MSG_ERROR, "nl80211: Could not add multicast "
1408 "membership for mlme events: %d (%s)",
1409 ret, strerror(-ret));
1412 drv->capa.flags |= WPA_DRIVER_FLAGS_SME;
1413 #endif /* WEXT_COMPAT */
1415 eloop_register_read_sock(nl_socket_get_fd(drv->nl_handle),
1416 wpa_driver_nl80211_event_receive, drv, ctx);
1418 drv->ioctl_sock = socket(PF_INET, SOCK_DGRAM, 0);
1419 if (drv->ioctl_sock < 0) {
1420 perror("socket(PF_INET,SOCK_DGRAM)");
1424 s = socket(PF_NETLINK, SOCK_RAW, NETLINK_ROUTE);
1426 perror("socket(PF_NETLINK,SOCK_RAW,NETLINK_ROUTE)");
1430 os_memset(&local, 0, sizeof(local));
1431 local.nl_family = AF_NETLINK;
1432 local.nl_groups = RTMGRP_LINK;
1433 if (bind(s, (struct sockaddr *) &local, sizeof(local)) < 0) {
1434 perror("bind(netlink)");
1439 eloop_register_read_sock(s, wpa_driver_nl80211_event_receive_wext, drv,
1441 drv->wext_event_sock = s;
1443 if (wpa_driver_nl80211_finish_drv_init(drv))
1449 eloop_unregister_read_sock(drv->wext_event_sock);
1450 close(drv->wext_event_sock);
1452 close(drv->ioctl_sock);
1454 genl_family_put(drv->nl80211);
1456 nl_cache_free(drv->nl_cache);
1458 nl_handle_destroy(drv->nl_handle);
1460 nl_cb_put(drv->nl_cb);
1468 wpa_driver_nl80211_finish_drv_init(struct wpa_driver_nl80211_data *drv)
1472 if (wpa_driver_nl80211_get_ifflags(drv, &flags) != 0) {
1473 wpa_printf(MSG_ERROR, "Could not get interface '%s' flags",
1477 if (!(flags & IFF_UP)) {
1478 if (wpa_driver_nl80211_set_ifflags(drv, flags | IFF_UP) != 0) {
1479 wpa_printf(MSG_ERROR, "Could not set interface '%s' "
1487 * Make sure that the driver does not have any obsolete PMKID entries.
1489 wpa_driver_nl80211_flush_pmkid(drv);
1490 #endif /* WEXT_COMPAT */
1492 if (wpa_driver_nl80211_set_mode(drv, 0) < 0) {
1493 wpa_printf(MSG_DEBUG, "nl80211: Could not configure driver to "
1494 "use managed mode");
1497 wpa_driver_nl80211_get_range(drv);
1499 drv->ifindex = if_nametoindex(drv->ifname);
1501 wpa_driver_nl80211_capa(drv);
1503 wpa_driver_nl80211_send_oper_ifla(drv, 1, IF_OPER_DORMANT);
1510 * wpa_driver_nl80211_deinit - Deinitialize nl80211 driver interface
1511 * @priv: Pointer to private nl80211 data from wpa_driver_nl80211_init()
1513 * Shut down driver interface and processing of driver events. Free
1514 * private data buffer if one was allocated in wpa_driver_nl80211_init().
1516 static void wpa_driver_nl80211_deinit(void *priv)
1518 struct wpa_driver_nl80211_data *drv = priv;
1521 eloop_cancel_timeout(wpa_driver_nl80211_scan_timeout, drv, drv->ctx);
1525 * Clear possibly configured driver parameters in order to make it
1526 * easier to use the driver after wpa_supplicant has been terminated.
1528 (void) wpa_driver_nl80211_set_bssid(drv,
1529 (u8 *) "\x00\x00\x00\x00\x00\x00");
1530 #endif /* WEXT_COMPAT */
1531 wpa_driver_nl80211_set_auth_param(drv, IW_AUTH_DROP_UNENCRYPTED, 0);
1533 wpa_driver_nl80211_send_oper_ifla(priv, 0, IF_OPER_UP);
1535 eloop_unregister_read_sock(drv->wext_event_sock);
1537 if (wpa_driver_nl80211_get_ifflags(drv, &flags) == 0)
1538 (void) wpa_driver_nl80211_set_ifflags(drv, flags & ~IFF_UP);
1540 close(drv->wext_event_sock);
1541 close(drv->ioctl_sock);
1543 os_free(drv->assoc_req_ies);
1544 os_free(drv->assoc_resp_ies);
1545 #endif /* WEXT_COMPAT */
1547 eloop_unregister_read_sock(nl_socket_get_fd(drv->nl_handle));
1548 genl_family_put(drv->nl80211);
1549 nl_cache_free(drv->nl_cache);
1550 nl_handle_destroy(drv->nl_handle);
1551 nl_cb_put(drv->nl_cb);
1558 * wpa_driver_nl80211_scan_timeout - Scan timeout to report scan completion
1559 * @eloop_ctx: Unused
1560 * @timeout_ctx: ctx argument given to wpa_driver_nl80211_init()
1562 * This function can be used as registered timeout when starting a scan to
1563 * generate a scan completed event if the driver does not report this.
1565 static void wpa_driver_nl80211_scan_timeout(void *eloop_ctx, void *timeout_ctx)
1567 wpa_printf(MSG_DEBUG, "Scan timeout - try to get results");
1568 wpa_supplicant_event(timeout_ctx, EVENT_SCAN_RESULTS, NULL);
1573 * wpa_driver_nl80211_scan - Request the driver to initiate scan
1574 * @priv: Pointer to private wext data from wpa_driver_nl80211_init()
1575 * @params: Scan parameters
1576 * Returns: 0 on success, -1 on failure
1578 static int wpa_driver_nl80211_scan(void *priv,
1579 struct wpa_driver_scan_params *params)
1581 struct wpa_driver_nl80211_data *drv = priv;
1582 int ret = 0, timeout;
1583 struct nl_msg *msg, *ssids;
1586 msg = nlmsg_alloc();
1587 ssids = nlmsg_alloc();
1588 if (!msg || !ssids) {
1594 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0, 0,
1595 NL80211_CMD_TRIGGER_SCAN, 0);
1597 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
1599 for (i = 0; i < params->num_ssids; i++) {
1600 NLA_PUT(ssids, i + 1, params->ssids[i].ssid_len,
1601 params->ssids[i].ssid);
1603 if (params->num_ssids)
1604 nla_put_nested(msg, NL80211_ATTR_SCAN_SSIDS, ssids);
1606 if (params->extra_ies) {
1607 NLA_PUT(msg, NL80211_ATTR_IE, params->extra_ies_len,
1611 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
1614 wpa_printf(MSG_DEBUG, "nl80211: Scan trigger failed: ret=%d "
1615 "(%s)", ret, strerror(-ret));
1616 goto nla_put_failure;
1619 /* Not all drivers generate "scan completed" wireless event, so try to
1620 * read results after a timeout. */
1622 if (drv->scan_complete_events) {
1624 * The driver seems to deliver events to notify when scan is
1625 * complete, so use longer timeout to avoid race conditions
1626 * with scanning and following association request.
1630 wpa_printf(MSG_DEBUG, "Scan requested (ret=%d) - scan timeout %d "
1631 "seconds", ret, timeout);
1632 eloop_cancel_timeout(wpa_driver_nl80211_scan_timeout, drv, drv->ctx);
1633 eloop_register_timeout(timeout, 0, wpa_driver_nl80211_scan_timeout,
1643 static int bss_info_handler(struct nl_msg *msg, void *arg)
1645 struct nlattr *tb[NL80211_ATTR_MAX + 1];
1646 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
1647 struct nlattr *bss[NL80211_BSS_MAX + 1];
1648 static struct nla_policy bss_policy[NL80211_BSS_MAX + 1] = {
1649 [NL80211_BSS_BSSID] = { .type = NLA_UNSPEC },
1650 [NL80211_BSS_FREQUENCY] = { .type = NLA_U32 },
1651 [NL80211_BSS_TSF] = { .type = NLA_U64 },
1652 [NL80211_BSS_BEACON_INTERVAL] = { .type = NLA_U16 },
1653 [NL80211_BSS_CAPABILITY] = { .type = NLA_U16 },
1654 [NL80211_BSS_INFORMATION_ELEMENTS] = { .type = NLA_UNSPEC },
1655 [NL80211_BSS_SIGNAL_MBM] = { .type = NLA_U32 },
1656 [NL80211_BSS_SIGNAL_UNSPEC] = { .type = NLA_U8 },
1658 struct wpa_scan_results *res = arg;
1659 struct wpa_scan_res **tmp;
1660 struct wpa_scan_res *r;
1664 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
1665 genlmsg_attrlen(gnlh, 0), NULL);
1666 if (!tb[NL80211_ATTR_BSS])
1668 if (nla_parse_nested(bss, NL80211_BSS_MAX, tb[NL80211_ATTR_BSS],
1671 if (bss[NL80211_BSS_INFORMATION_ELEMENTS]) {
1672 ie = nla_data(bss[NL80211_BSS_INFORMATION_ELEMENTS]);
1673 ie_len = nla_len(bss[NL80211_BSS_INFORMATION_ELEMENTS]);
1679 r = os_zalloc(sizeof(*r) + ie_len);
1682 if (bss[NL80211_BSS_BSSID])
1683 os_memcpy(r->bssid, nla_data(bss[NL80211_BSS_BSSID]),
1685 if (bss[NL80211_BSS_FREQUENCY])
1686 r->freq = nla_get_u32(bss[NL80211_BSS_FREQUENCY]);
1687 if (bss[NL80211_BSS_BEACON_INTERVAL])
1688 r->beacon_int = nla_get_u16(bss[NL80211_BSS_BEACON_INTERVAL]);
1689 if (bss[NL80211_BSS_CAPABILITY])
1690 r->caps = nla_get_u16(bss[NL80211_BSS_CAPABILITY]);
1691 r->flags |= WPA_SCAN_NOISE_INVALID;
1692 if (bss[NL80211_BSS_SIGNAL_MBM]) {
1693 r->level = nla_get_u32(bss[NL80211_BSS_SIGNAL_MBM]);
1694 r->level /= 100; /* mBm to dBm */
1695 r->flags |= WPA_SCAN_LEVEL_DBM | WPA_SCAN_QUAL_INVALID;
1696 } else if (bss[NL80211_BSS_SIGNAL_UNSPEC]) {
1697 r->level = nla_get_u8(bss[NL80211_BSS_SIGNAL_UNSPEC]);
1698 r->flags |= WPA_SCAN_LEVEL_INVALID;
1700 r->flags |= WPA_SCAN_LEVEL_INVALID | WPA_SCAN_QUAL_INVALID;
1701 if (bss[NL80211_BSS_TSF])
1702 r->tsf = nla_get_u64(bss[NL80211_BSS_TSF]);
1705 os_memcpy(r + 1, ie, ie_len);
1707 tmp = os_realloc(res->res,
1708 (res->num + 1) * sizeof(struct wpa_scan_res *));
1713 tmp[res->num++] = r;
1721 * wpa_driver_nl80211_get_scan_results - Fetch the latest scan results
1722 * @priv: Pointer to private wext data from wpa_driver_nl80211_init()
1723 * Returns: Scan results on success, -1 on failure
1725 static struct wpa_scan_results *
1726 wpa_driver_nl80211_get_scan_results(void *priv)
1728 struct wpa_driver_nl80211_data *drv = priv;
1730 struct wpa_scan_results *res;
1733 res = os_zalloc(sizeof(*res));
1736 msg = nlmsg_alloc();
1738 goto nla_put_failure;
1740 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0, NLM_F_DUMP,
1741 NL80211_CMD_GET_SCAN, 0);
1742 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
1744 ret = send_and_recv_msgs(drv, msg, bss_info_handler, res);
1747 wpa_printf(MSG_DEBUG, "Received scan results (%lu BSSes)",
1748 (unsigned long) res->num);
1751 wpa_printf(MSG_DEBUG, "nl80211: Scan result fetch failed: ret=%d "
1752 "(%s)", ret, strerror(-ret));
1755 wpa_scan_results_free(res);
1760 static int wpa_driver_nl80211_get_range(void *priv)
1762 struct wpa_driver_nl80211_data *drv = priv;
1763 struct iw_range *range;
1769 * Use larger buffer than struct iw_range in order to allow the
1770 * structure to grow in the future.
1772 buflen = sizeof(struct iw_range) + 500;
1773 range = os_zalloc(buflen);
1777 os_memset(&iwr, 0, sizeof(iwr));
1778 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1779 iwr.u.data.pointer = (caddr_t) range;
1780 iwr.u.data.length = buflen;
1782 minlen = ((char *) &range->enc_capa) - (char *) range +
1783 sizeof(range->enc_capa);
1785 if (ioctl(drv->ioctl_sock, SIOCGIWRANGE, &iwr) < 0) {
1786 perror("ioctl[SIOCGIWRANGE]");
1789 } else if (iwr.u.data.length >= minlen &&
1790 range->we_version_compiled >= 18) {
1791 wpa_printf(MSG_DEBUG, "SIOCGIWRANGE: WE(compiled)=%d "
1792 "WE(source)=%d enc_capa=0x%x",
1793 range->we_version_compiled,
1794 range->we_version_source,
1796 drv->has_capability = 1;
1797 drv->we_version_compiled = range->we_version_compiled;
1798 if (range->enc_capa & IW_ENC_CAPA_WPA) {
1799 drv->capa.key_mgmt |= WPA_DRIVER_CAPA_KEY_MGMT_WPA |
1800 WPA_DRIVER_CAPA_KEY_MGMT_WPA_PSK;
1802 if (range->enc_capa & IW_ENC_CAPA_WPA2) {
1803 drv->capa.key_mgmt |= WPA_DRIVER_CAPA_KEY_MGMT_WPA2 |
1804 WPA_DRIVER_CAPA_KEY_MGMT_WPA2_PSK;
1806 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_WEP40 |
1807 WPA_DRIVER_CAPA_ENC_WEP104;
1808 if (range->enc_capa & IW_ENC_CAPA_CIPHER_TKIP)
1809 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_TKIP;
1810 if (range->enc_capa & IW_ENC_CAPA_CIPHER_CCMP)
1811 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_CCMP;
1812 wpa_printf(MSG_DEBUG, " capabilities: key_mgmt 0x%x enc 0x%x",
1813 drv->capa.key_mgmt, drv->capa.enc);
1815 wpa_printf(MSG_DEBUG, "SIOCGIWRANGE: too old (short) data - "
1816 "assuming WPA is not supported");
1825 static int wpa_driver_nl80211_set_wpa(void *priv, int enabled)
1827 struct wpa_driver_nl80211_data *drv = priv;
1828 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME)
1830 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1832 return wpa_driver_nl80211_set_auth_param(drv, IW_AUTH_WPA_ENABLED,
1835 #endif /* WEXT_COMPAT */
1838 static int wpa_driver_nl80211_set_key(void *priv, wpa_alg alg,
1839 const u8 *addr, int key_idx,
1840 int set_tx, const u8 *seq,
1842 const u8 *key, size_t key_len)
1844 struct wpa_driver_nl80211_data *drv = priv;
1848 wpa_printf(MSG_DEBUG, "%s: alg=%d addr=%p key_idx=%d set_tx=%d "
1849 "seq_len=%lu key_len=%lu",
1850 __func__, alg, addr, key_idx, set_tx,
1851 (unsigned long) seq_len, (unsigned long) key_len);
1853 msg = nlmsg_alloc();
1857 if (alg == WPA_ALG_NONE) {
1858 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0, 0,
1859 NL80211_CMD_DEL_KEY, 0);
1861 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0, 0,
1862 NL80211_CMD_NEW_KEY, 0);
1863 NLA_PUT(msg, NL80211_ATTR_KEY_DATA, key_len, key);
1867 NLA_PUT_U32(msg, NL80211_ATTR_KEY_CIPHER,
1870 NLA_PUT_U32(msg, NL80211_ATTR_KEY_CIPHER,
1874 NLA_PUT_U32(msg, NL80211_ATTR_KEY_CIPHER, 0x000FAC02);
1877 NLA_PUT_U32(msg, NL80211_ATTR_KEY_CIPHER, 0x000FAC04);
1885 if (addr && os_memcmp(addr, "\xff\xff\xff\xff\xff\xff", ETH_ALEN) != 0)
1887 wpa_printf(MSG_DEBUG, " addr=" MACSTR, MAC2STR(addr));
1888 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
1890 NLA_PUT_U8(msg, NL80211_ATTR_KEY_IDX, key_idx);
1891 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
1893 err = send_and_recv_msgs(drv, msg, NULL, NULL);
1895 wpa_printf(MSG_DEBUG, "nl80211: set_key failed; err=%d", err);
1899 if (set_tx && alg != WPA_ALG_NONE) {
1900 msg = nlmsg_alloc();
1904 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0,
1905 0, NL80211_CMD_SET_KEY, 0);
1906 NLA_PUT_U8(msg, NL80211_ATTR_KEY_IDX, key_idx);
1907 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
1908 NLA_PUT_FLAG(msg, NL80211_ATTR_KEY_DEFAULT);
1910 err = send_and_recv_msgs(drv, msg, NULL, NULL);
1912 wpa_printf(MSG_DEBUG, "nl80211: set default key "
1913 "failed; err=%d", err);
1926 static int wpa_driver_nl80211_set_countermeasures(void *priv,
1929 struct wpa_driver_nl80211_data *drv = priv;
1930 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME)
1932 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1933 return wpa_driver_nl80211_set_auth_param(drv,
1934 IW_AUTH_TKIP_COUNTERMEASURES,
1937 #endif /* WEXT_COMPAT */
1941 static int wpa_driver_nl80211_mlme_wext(struct wpa_driver_nl80211_data *drv,
1942 const u8 *addr, int cmd,
1946 struct iw_mlme mlme;
1949 os_memset(&iwr, 0, sizeof(iwr));
1950 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1951 os_memset(&mlme, 0, sizeof(mlme));
1953 mlme.reason_code = reason_code;
1954 mlme.addr.sa_family = ARPHRD_ETHER;
1955 os_memcpy(mlme.addr.sa_data, addr, ETH_ALEN);
1956 iwr.u.data.pointer = (caddr_t) &mlme;
1957 iwr.u.data.length = sizeof(mlme);
1959 if (ioctl(drv->ioctl_sock, SIOCSIWMLME, &iwr) < 0) {
1960 perror("ioctl[SIOCSIWMLME]");
1966 #endif /* WEXT_COMPAT */
1969 static int wpa_driver_nl80211_mlme(struct wpa_driver_nl80211_data *drv,
1970 const u8 *addr, int cmd, u16 reason_code)
1975 msg = nlmsg_alloc();
1979 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0, 0, cmd, 0);
1981 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
1982 NLA_PUT_U16(msg, NL80211_ATTR_REASON_CODE, reason_code);
1983 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, addr);
1985 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
1988 wpa_printf(MSG_DEBUG, "nl80211: MLME command failed: ret=%d "
1989 "(%s)", ret, strerror(-ret));
1990 goto nla_put_failure;
2000 static int wpa_driver_nl80211_deauthenticate(void *priv, const u8 *addr,
2003 struct wpa_driver_nl80211_data *drv = priv;
2004 wpa_printf(MSG_DEBUG, "%s", __func__);
2006 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME))
2007 return wpa_driver_nl80211_mlme_wext(drv, addr, IW_MLME_DEAUTH,
2009 #endif /* WEXT_COMPAT */
2011 return wpa_driver_nl80211_mlme(drv, addr, NL80211_CMD_DEAUTHENTICATE,
2016 static int wpa_driver_nl80211_disassociate(void *priv, const u8 *addr,
2019 struct wpa_driver_nl80211_data *drv = priv;
2020 wpa_printf(MSG_DEBUG, "%s", __func__);
2022 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME))
2023 return wpa_driver_nl80211_mlme_wext(drv, addr,
2026 #endif /* WEXT_COMPAT */
2027 return wpa_driver_nl80211_mlme(drv, addr, NL80211_CMD_DISASSOCIATE,
2033 static int wpa_driver_nl80211_set_gen_ie(void *priv, const u8 *ie,
2036 struct wpa_driver_nl80211_data *drv = priv;
2040 if (drv->capa.flags & WPA_DRIVER_FLAGS_SME)
2042 os_memset(&iwr, 0, sizeof(iwr));
2043 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
2044 iwr.u.data.pointer = (caddr_t) ie;
2045 iwr.u.data.length = ie_len;
2047 if (ioctl(drv->ioctl_sock, SIOCSIWGENIE, &iwr) < 0) {
2048 perror("ioctl[SIOCSIWGENIE]");
2056 static int wpa_driver_nl80211_cipher2wext(int cipher)
2060 return IW_AUTH_CIPHER_NONE;
2062 return IW_AUTH_CIPHER_WEP40;
2064 return IW_AUTH_CIPHER_TKIP;
2066 return IW_AUTH_CIPHER_CCMP;
2068 return IW_AUTH_CIPHER_WEP104;
2075 static int wpa_driver_nl80211_keymgmt2wext(int keymgmt)
2078 case KEY_MGMT_802_1X:
2079 case KEY_MGMT_802_1X_NO_WPA:
2080 return IW_AUTH_KEY_MGMT_802_1X;
2082 return IW_AUTH_KEY_MGMT_PSK;
2090 wpa_driver_nl80211_auth_alg_fallback(struct wpa_driver_nl80211_data *drv,
2091 struct wpa_driver_associate_params *params)
2096 wpa_printf(MSG_DEBUG, "WEXT: Driver did not support "
2097 "SIOCSIWAUTH for AUTH_ALG, trying SIOCSIWENCODE");
2099 os_memset(&iwr, 0, sizeof(iwr));
2100 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
2101 /* Just changing mode, not actual keys */
2102 iwr.u.encoding.flags = 0;
2103 iwr.u.encoding.pointer = (caddr_t) NULL;
2104 iwr.u.encoding.length = 0;
2107 * Note: IW_ENCODE_{OPEN,RESTRICTED} can be interpreted to mean two
2108 * different things. Here they are used to indicate Open System vs.
2109 * Shared Key authentication algorithm. However, some drivers may use
2110 * them to select between open/restricted WEP encrypted (open = allow
2111 * both unencrypted and encrypted frames; restricted = only allow
2112 * encrypted frames).
2115 if (!drv->use_crypt) {
2116 iwr.u.encoding.flags |= IW_ENCODE_DISABLED;
2118 if (params->auth_alg & AUTH_ALG_OPEN_SYSTEM)
2119 iwr.u.encoding.flags |= IW_ENCODE_OPEN;
2120 if (params->auth_alg & AUTH_ALG_SHARED_KEY)
2121 iwr.u.encoding.flags |= IW_ENCODE_RESTRICTED;
2124 if (ioctl(drv->ioctl_sock, SIOCSIWENCODE, &iwr) < 0) {
2125 perror("ioctl[SIOCSIWENCODE]");
2133 static int wpa_driver_nl80211_set_auth_alg(struct wpa_driver_nl80211_data *drv,
2138 if (auth_alg & AUTH_ALG_OPEN_SYSTEM)
2139 algs |= IW_AUTH_ALG_OPEN_SYSTEM;
2140 if (auth_alg & AUTH_ALG_SHARED_KEY)
2141 algs |= IW_AUTH_ALG_SHARED_KEY;
2142 if (auth_alg & AUTH_ALG_LEAP)
2143 algs |= IW_AUTH_ALG_LEAP;
2145 /* at least one algorithm should be set */
2146 algs = IW_AUTH_ALG_OPEN_SYSTEM;
2149 res = wpa_driver_nl80211_set_auth_param(drv, IW_AUTH_80211_AUTH_ALG,
2151 drv->auth_alg_fallback = res == -2;
2156 static int wpa_driver_nl80211_associate_wext(
2157 void *priv, struct wpa_driver_associate_params *params)
2159 struct wpa_driver_nl80211_data *drv = priv;
2161 int allow_unencrypted_eapol;
2164 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
2166 wpa_driver_nl80211_set_mode(drv, params->mode);
2167 wpa_driver_nl80211_set_auth_alg(drv, params->auth_alg);
2170 * If the driver did not support SIOCSIWAUTH, fallback to
2171 * SIOCSIWENCODE here.
2173 if (drv->auth_alg_fallback &&
2174 wpa_driver_nl80211_auth_alg_fallback(drv, params) < 0)
2177 if (!params->bssid &&
2178 wpa_driver_nl80211_set_bssid(drv, NULL) < 0)
2181 /* TODO: should consider getting wpa version and cipher/key_mgmt suites
2182 * from configuration, not from here, where only the selected suite is
2184 if (wpa_driver_nl80211_set_gen_ie(drv, params->wpa_ie, params->wpa_ie_len)
2187 if (params->wpa_ie == NULL || params->wpa_ie_len == 0)
2188 value = IW_AUTH_WPA_VERSION_DISABLED;
2189 else if (params->wpa_ie[0] == WLAN_EID_RSN)
2190 value = IW_AUTH_WPA_VERSION_WPA2;
2192 value = IW_AUTH_WPA_VERSION_WPA;
2193 if (wpa_driver_nl80211_set_auth_param(drv,
2194 IW_AUTH_WPA_VERSION, value) < 0)
2196 value = wpa_driver_nl80211_cipher2wext(params->pairwise_suite);
2197 if (wpa_driver_nl80211_set_auth_param(drv,
2198 IW_AUTH_CIPHER_PAIRWISE, value) < 0)
2200 value = wpa_driver_nl80211_cipher2wext(params->group_suite);
2201 if (wpa_driver_nl80211_set_auth_param(drv,
2202 IW_AUTH_CIPHER_GROUP, value) < 0)
2204 value = wpa_driver_nl80211_keymgmt2wext(params->key_mgmt_suite);
2205 if (wpa_driver_nl80211_set_auth_param(drv,
2206 IW_AUTH_KEY_MGMT, value) < 0)
2208 value = params->key_mgmt_suite != KEY_MGMT_NONE ||
2209 params->pairwise_suite != CIPHER_NONE ||
2210 params->group_suite != CIPHER_NONE ||
2212 if (wpa_driver_nl80211_set_auth_param(drv,
2213 IW_AUTH_PRIVACY_INVOKED, value) < 0)
2216 /* Allow unencrypted EAPOL messages even if pairwise keys are set when
2217 * not using WPA. IEEE 802.1X specifies that these frames are not
2218 * encrypted, but WPA encrypts them when pairwise keys are in use. */
2219 if (params->key_mgmt_suite == KEY_MGMT_802_1X ||
2220 params->key_mgmt_suite == KEY_MGMT_PSK)
2221 allow_unencrypted_eapol = 0;
2223 allow_unencrypted_eapol = 1;
2225 if (wpa_driver_nl80211_set_auth_param(drv,
2226 IW_AUTH_RX_UNENCRYPTED_EAPOL,
2227 allow_unencrypted_eapol) < 0)
2229 if (params->freq && wpa_driver_nl80211_set_freq(drv, params->freq) < 0)
2231 if (wpa_driver_nl80211_set_ssid(drv, params->ssid, params->ssid_len) < 0)
2233 if (params->bssid &&
2234 wpa_driver_nl80211_set_bssid(drv, params->bssid) < 0)
2239 #endif /* WEXT_COMPAT */
2242 static int wpa_driver_nl80211_authenticate(
2243 void *priv, struct wpa_driver_auth_params *params)
2245 struct wpa_driver_nl80211_data *drv = priv;
2248 enum nl80211_auth_type type;
2250 drv->associated = 0;
2252 msg = nlmsg_alloc();
2256 wpa_printf(MSG_DEBUG, "nl80211: Authenticate (ifindex=%d)",
2258 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0, 0,
2259 NL80211_CMD_AUTHENTICATE, 0);
2261 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
2262 if (params->bssid) {
2263 wpa_printf(MSG_DEBUG, " * bssid=" MACSTR,
2264 MAC2STR(params->bssid));
2265 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, params->bssid);
2268 wpa_printf(MSG_DEBUG, " * freq=%d", params->freq);
2269 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ, params->freq);
2272 wpa_hexdump_ascii(MSG_DEBUG, " * SSID",
2273 params->ssid, params->ssid_len);
2274 NLA_PUT(msg, NL80211_ATTR_SSID, params->ssid_len,
2277 wpa_hexdump(MSG_DEBUG, " * IEs", params->ie, params->ie_len);
2279 NLA_PUT(msg, NL80211_ATTR_IE, params->ie_len, params->ie);
2281 * TODO: if multiple auth_alg options enabled, try them one by one if
2282 * the AP rejects authentication due to unknown auth alg
2284 if (params->auth_alg & AUTH_ALG_OPEN_SYSTEM)
2285 type = NL80211_AUTHTYPE_OPEN_SYSTEM;
2286 else if (params->auth_alg & AUTH_ALG_SHARED_KEY)
2287 type = NL80211_AUTHTYPE_SHARED_KEY;
2288 else if (params->auth_alg & AUTH_ALG_LEAP)
2289 type = NL80211_AUTHTYPE_NETWORK_EAP;
2290 else if (params->auth_alg & AUTH_ALG_FT)
2291 type = NL80211_AUTHTYPE_FT;
2293 goto nla_put_failure;
2294 wpa_printf(MSG_DEBUG, " * Auth Type %d", type);
2295 NLA_PUT_U32(msg, NL80211_ATTR_AUTH_TYPE, type);
2297 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
2300 wpa_printf(MSG_DEBUG, "nl80211: MLME command failed: ret=%d "
2301 "(%s)", ret, strerror(-ret));
2302 goto nla_put_failure;
2305 wpa_printf(MSG_DEBUG, "nl80211: Authentication request send "
2314 static int wpa_driver_nl80211_associate(
2315 void *priv, struct wpa_driver_associate_params *params)
2317 struct wpa_driver_nl80211_data *drv = priv;
2321 wpa_driver_nl80211_set_auth_param(drv, IW_AUTH_DROP_UNENCRYPTED,
2322 params->drop_unencrypted);
2325 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_SME))
2326 return wpa_driver_nl80211_associate_wext(drv, params);
2327 #endif /* WEXT_COMPAT */
2329 drv->associated = 0;
2331 msg = nlmsg_alloc();
2335 wpa_printf(MSG_DEBUG, "nl80211: Associate (ifindex=%d)",
2337 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0, 0,
2338 NL80211_CMD_ASSOCIATE, 0);
2340 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
2341 if (params->bssid) {
2342 wpa_printf(MSG_DEBUG, " * bssid=" MACSTR,
2343 MAC2STR(params->bssid));
2344 NLA_PUT(msg, NL80211_ATTR_MAC, ETH_ALEN, params->bssid);
2347 wpa_printf(MSG_DEBUG, " * freq=%d", params->freq);
2348 NLA_PUT_U32(msg, NL80211_ATTR_WIPHY_FREQ, params->freq);
2351 wpa_hexdump_ascii(MSG_DEBUG, " * SSID",
2352 params->ssid, params->ssid_len);
2353 NLA_PUT(msg, NL80211_ATTR_SSID, params->ssid_len,
2355 if (params->ssid_len > sizeof(drv->ssid))
2356 goto nla_put_failure;
2357 os_memcpy(drv->ssid, params->ssid, params->ssid_len);
2358 drv->ssid_len = params->ssid_len;
2360 wpa_hexdump(MSG_DEBUG, " * IEs", params->wpa_ie, params->wpa_ie_len);
2362 NLA_PUT(msg, NL80211_ATTR_IE, params->wpa_ie_len,
2365 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
2368 wpa_printf(MSG_DEBUG, "nl80211: MLME command failed: ret=%d "
2369 "(%s)", ret, strerror(-ret));
2370 goto nla_put_failure;
2373 wpa_printf(MSG_DEBUG, "nl80211: Association request send "
2383 * wpa_driver_nl80211_set_mode - Set wireless mode (infra/adhoc), SIOCSIWMODE
2384 * @drv: Pointer to private driver data from wpa_driver_nl80211_init()
2385 * @mode: 0 = infra/BSS (associate with an AP), 1 = adhoc/IBSS
2386 * Returns: 0 on success, -1 on failure
2388 static int wpa_driver_nl80211_set_mode(struct wpa_driver_nl80211_data *drv,
2391 int ret = -1, flags;
2394 msg = nlmsg_alloc();
2398 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0,
2399 0, NL80211_CMD_SET_INTERFACE, 0);
2400 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
2401 NLA_PUT_U32(msg, NL80211_ATTR_IFTYPE,
2402 mode ? NL80211_IFTYPE_ADHOC : NL80211_IFTYPE_STATION);
2404 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
2411 wpa_printf(MSG_ERROR, "nl80211: Failed to set interface mode");
2415 /* mac80211 doesn't allow mode changes while the device is up, so
2416 * take the device down, try to set the mode again, and bring the
2419 if (wpa_driver_nl80211_get_ifflags(drv, &flags) == 0) {
2420 (void) wpa_driver_nl80211_set_ifflags(drv, flags & ~IFF_UP);
2422 /* Try to set the mode again while the interface is down */
2423 msg = nlmsg_alloc();
2427 genlmsg_put(msg, 0, 0, genl_family_get_id(drv->nl80211), 0,
2428 0, NL80211_CMD_SET_INTERFACE, 0);
2429 NLA_PUT_U32(msg, NL80211_ATTR_IFINDEX, drv->ifindex);
2430 NLA_PUT_U32(msg, NL80211_ATTR_IFTYPE,
2431 mode ? NL80211_IFTYPE_ADHOC :
2432 NL80211_IFTYPE_STATION);
2433 ret = send_and_recv_msgs(drv, msg, NULL, NULL);
2435 wpa_printf(MSG_ERROR, "Failed to set interface %s "
2436 "mode", drv->ifname);
2439 /* Ignore return value of get_ifflags to ensure that the device
2440 * is always up like it was before this function was called.
2442 (void) wpa_driver_nl80211_get_ifflags(drv, &flags);
2443 (void) wpa_driver_nl80211_set_ifflags(drv, flags | IFF_UP);
2452 static int wpa_driver_nl80211_pmksa(struct wpa_driver_nl80211_data *drv,
2453 u32 cmd, const u8 *bssid, const u8 *pmkid)
2456 struct iw_pmksa pmksa;
2459 os_memset(&iwr, 0, sizeof(iwr));
2460 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
2461 os_memset(&pmksa, 0, sizeof(pmksa));
2463 pmksa.bssid.sa_family = ARPHRD_ETHER;
2465 os_memcpy(pmksa.bssid.sa_data, bssid, ETH_ALEN);
2467 os_memcpy(pmksa.pmkid, pmkid, IW_PMKID_LEN);
2468 iwr.u.data.pointer = (caddr_t) &pmksa;
2469 iwr.u.data.length = sizeof(pmksa);
2471 if (ioctl(drv->ioctl_sock, SIOCSIWPMKSA, &iwr) < 0) {
2472 if (errno != EOPNOTSUPP)
2473 perror("ioctl[SIOCSIWPMKSA]");
2481 static int wpa_driver_nl80211_add_pmkid(void *priv, const u8 *bssid,
2484 struct wpa_driver_nl80211_data *drv = priv;
2485 return wpa_driver_nl80211_pmksa(drv, IW_PMKSA_ADD, bssid, pmkid);
2489 static int wpa_driver_nl80211_remove_pmkid(void *priv, const u8 *bssid,
2492 struct wpa_driver_nl80211_data *drv = priv;
2493 return wpa_driver_nl80211_pmksa(drv, IW_PMKSA_REMOVE, bssid, pmkid);
2497 static int wpa_driver_nl80211_flush_pmkid(void *priv)
2499 struct wpa_driver_nl80211_data *drv = priv;
2500 return wpa_driver_nl80211_pmksa(drv, IW_PMKSA_FLUSH, NULL, NULL);
2503 #endif /* WEXT_COMPAT */
2506 static int wpa_driver_nl80211_get_capa(void *priv,
2507 struct wpa_driver_capa *capa)
2509 struct wpa_driver_nl80211_data *drv = priv;
2510 if (!drv->has_capability)
2512 os_memcpy(capa, &drv->capa, sizeof(*capa));
2517 static int wpa_driver_nl80211_set_operstate(void *priv, int state)
2519 struct wpa_driver_nl80211_data *drv = priv;
2521 wpa_printf(MSG_DEBUG, "%s: operstate %d->%d (%s)",
2522 __func__, drv->operstate, state, state ? "UP" : "DORMANT");
2523 drv->operstate = state;
2524 return wpa_driver_nl80211_send_oper_ifla(
2525 drv, -1, state ? IF_OPER_UP : IF_OPER_DORMANT);
2529 const struct wpa_driver_ops wpa_driver_nl80211_ops = {
2531 .desc = "Linux nl80211/cfg80211",
2532 .get_bssid = wpa_driver_nl80211_get_bssid,
2533 .get_ssid = wpa_driver_nl80211_get_ssid,
2534 .set_key = wpa_driver_nl80211_set_key,
2535 .scan2 = wpa_driver_nl80211_scan,
2536 .get_scan_results2 = wpa_driver_nl80211_get_scan_results,
2537 .deauthenticate = wpa_driver_nl80211_deauthenticate,
2538 .disassociate = wpa_driver_nl80211_disassociate,
2539 .authenticate = wpa_driver_nl80211_authenticate,
2540 .associate = wpa_driver_nl80211_associate,
2541 .init = wpa_driver_nl80211_init,
2542 .deinit = wpa_driver_nl80211_deinit,
2543 .get_capa = wpa_driver_nl80211_get_capa,
2544 .set_operstate = wpa_driver_nl80211_set_operstate,
2545 .set_country = wpa_driver_nl80211_set_country,
2547 .set_wpa = wpa_driver_nl80211_set_wpa,
2548 .set_countermeasures = wpa_driver_nl80211_set_countermeasures,
2549 .add_pmkid = wpa_driver_nl80211_add_pmkid,
2550 .remove_pmkid = wpa_driver_nl80211_remove_pmkid,
2551 .flush_pmkid = wpa_driver_nl80211_flush_pmkid,
2552 #endif /* WEXT_COMPAT */
projects / wpasupplicant / blob