2 * WPA Supplicant - driver interaction with generic Linux Wireless Extensions
3 * Copyright (c) 2003-2007, Jouni Malinen <j@w1.fi>
5 * This program is free software; you can redistribute it and/or modify
6 * it under the terms of the GNU General Public License version 2 as
7 * published by the Free Software Foundation.
9 * Alternatively, this software may be distributed under the terms of BSD
12 * See README and COPYING for more details.
14 * This file implements a driver interface for the Linux Wireless Extensions.
15 * When used with WE-18 or newer, this interface can be used as-is with number
16 * of drivers. In addition to this, some of the common functions in this file
17 * can be used by other driver interface implementations that use generic WE
18 * ioctls, but require private ioctls for some of the functionality.
22 #include <sys/ioctl.h>
23 #include <net/if_arp.h>
25 #include "wireless_copy.h"
29 #include "priv_netlink.h"
30 #include "driver_wext.h"
31 #include "ieee802_11_defs.h"
32 #include "wpa_common.h"
35 static int wpa_driver_wext_flush_pmkid(void *priv);
36 static int wpa_driver_wext_get_range(void *priv);
37 static int wpa_driver_wext_finish_drv_init(struct wpa_driver_wext_data *drv);
38 static void wpa_driver_wext_disconnect(struct wpa_driver_wext_data *drv);
41 static int wpa_driver_wext_send_oper_ifla(struct wpa_driver_wext_data *drv,
42 int linkmode, int operstate)
46 struct ifinfomsg ifinfo;
53 os_memset(&req, 0, sizeof(req));
55 req.hdr.nlmsg_len = NLMSG_LENGTH(sizeof(struct ifinfomsg));
56 req.hdr.nlmsg_type = RTM_SETLINK;
57 req.hdr.nlmsg_flags = NLM_F_REQUEST;
58 req.hdr.nlmsg_seq = ++nl_seq;
59 req.hdr.nlmsg_pid = 0;
61 req.ifinfo.ifi_family = AF_UNSPEC;
62 req.ifinfo.ifi_type = 0;
63 req.ifinfo.ifi_index = drv->ifindex;
64 req.ifinfo.ifi_flags = 0;
65 req.ifinfo.ifi_change = 0;
68 rta = (struct rtattr *)
69 ((char *) &req + NLMSG_ALIGN(req.hdr.nlmsg_len));
70 rta->rta_type = IFLA_LINKMODE;
71 rta->rta_len = RTA_LENGTH(sizeof(char));
72 *((char *) RTA_DATA(rta)) = linkmode;
73 req.hdr.nlmsg_len = NLMSG_ALIGN(req.hdr.nlmsg_len) +
74 RTA_LENGTH(sizeof(char));
76 if (operstate != -1) {
77 rta = (struct rtattr *)
78 ((char *) &req + NLMSG_ALIGN(req.hdr.nlmsg_len));
79 rta->rta_type = IFLA_OPERSTATE;
80 rta->rta_len = RTA_LENGTH(sizeof(char));
81 *((char *) RTA_DATA(rta)) = operstate;
82 req.hdr.nlmsg_len = NLMSG_ALIGN(req.hdr.nlmsg_len) +
83 RTA_LENGTH(sizeof(char));
86 wpa_printf(MSG_DEBUG, "WEXT: Operstate: linkmode=%d, operstate=%d",
89 ret = send(drv->event_sock, &req, req.hdr.nlmsg_len, 0);
91 wpa_printf(MSG_DEBUG, "WEXT: Sending operstate IFLA failed: "
92 "%s (assume operstate is not supported)",
96 return ret < 0 ? -1 : 0;
100 int wpa_driver_wext_set_auth_param(struct wpa_driver_wext_data *drv,
106 os_memset(&iwr, 0, sizeof(iwr));
107 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
108 iwr.u.param.flags = idx & IW_AUTH_INDEX;
109 iwr.u.param.value = value;
111 if (ioctl(drv->ioctl_sock, SIOCSIWAUTH, &iwr) < 0) {
112 if (errno != EOPNOTSUPP) {
113 wpa_printf(MSG_DEBUG, "WEXT: SIOCSIWAUTH(param %d "
114 "value 0x%x) failed: %s)",
115 idx, value, strerror(errno));
117 ret = errno == EOPNOTSUPP ? -2 : -1;
125 * wpa_driver_wext_get_bssid - Get BSSID, SIOCGIWAP
126 * @priv: Pointer to private wext data from wpa_driver_wext_init()
127 * @bssid: Buffer for BSSID
128 * Returns: 0 on success, -1 on failure
130 int wpa_driver_wext_get_bssid(void *priv, u8 *bssid)
132 struct wpa_driver_wext_data *drv = priv;
136 os_memset(&iwr, 0, sizeof(iwr));
137 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
139 if (ioctl(drv->ioctl_sock, SIOCGIWAP, &iwr) < 0) {
140 perror("ioctl[SIOCGIWAP]");
143 os_memcpy(bssid, iwr.u.ap_addr.sa_data, ETH_ALEN);
150 * wpa_driver_wext_set_bssid - Set BSSID, SIOCSIWAP
151 * @priv: Pointer to private wext data from wpa_driver_wext_init()
153 * Returns: 0 on success, -1 on failure
155 int wpa_driver_wext_set_bssid(void *priv, const u8 *bssid)
157 struct wpa_driver_wext_data *drv = priv;
161 os_memset(&iwr, 0, sizeof(iwr));
162 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
163 iwr.u.ap_addr.sa_family = ARPHRD_ETHER;
165 os_memcpy(iwr.u.ap_addr.sa_data, bssid, ETH_ALEN);
167 os_memset(iwr.u.ap_addr.sa_data, 0, ETH_ALEN);
169 if (ioctl(drv->ioctl_sock, SIOCSIWAP, &iwr) < 0) {
170 perror("ioctl[SIOCSIWAP]");
179 * wpa_driver_wext_get_ssid - Get SSID, SIOCGIWESSID
180 * @priv: Pointer to private wext data from wpa_driver_wext_init()
181 * @ssid: Buffer for the SSID; must be at least 32 bytes long
182 * Returns: SSID length on success, -1 on failure
184 int wpa_driver_wext_get_ssid(void *priv, u8 *ssid)
186 struct wpa_driver_wext_data *drv = priv;
190 os_memset(&iwr, 0, sizeof(iwr));
191 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
192 iwr.u.essid.pointer = (caddr_t) ssid;
193 iwr.u.essid.length = 32;
195 if (ioctl(drv->ioctl_sock, SIOCGIWESSID, &iwr) < 0) {
196 perror("ioctl[SIOCGIWESSID]");
199 ret = iwr.u.essid.length;
202 /* Some drivers include nul termination in the SSID, so let's
203 * remove it here before further processing. WE-21 changes this
204 * to explicitly require the length _not_ to include nul
206 if (ret > 0 && ssid[ret - 1] == '\0' &&
207 drv->we_version_compiled < 21)
216 * wpa_driver_wext_set_ssid - Set SSID, SIOCSIWESSID
217 * @priv: Pointer to private wext data from wpa_driver_wext_init()
219 * @ssid_len: Length of SSID (0..32)
220 * Returns: 0 on success, -1 on failure
222 int wpa_driver_wext_set_ssid(void *priv, const u8 *ssid, size_t ssid_len)
224 struct wpa_driver_wext_data *drv = priv;
232 os_memset(&iwr, 0, sizeof(iwr));
233 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
234 /* flags: 1 = ESSID is active, 0 = not (promiscuous) */
235 iwr.u.essid.flags = (ssid_len != 0);
236 os_memset(buf, 0, sizeof(buf));
237 os_memcpy(buf, ssid, ssid_len);
238 iwr.u.essid.pointer = (caddr_t) buf;
239 if (drv->we_version_compiled < 21) {
240 /* For historic reasons, set SSID length to include one extra
241 * character, C string nul termination, even though SSID is
242 * really an octet string that should not be presented as a C
243 * string. Some Linux drivers decrement the length by one and
244 * can thus end up missing the last octet of the SSID if the
245 * length is not incremented here. WE-21 changes this to
246 * explicitly require the length _not_ to include nul
251 iwr.u.essid.length = ssid_len;
253 if (ioctl(drv->ioctl_sock, SIOCSIWESSID, &iwr) < 0) {
254 perror("ioctl[SIOCSIWESSID]");
263 * wpa_driver_wext_set_freq - Set frequency/channel, SIOCSIWFREQ
264 * @priv: Pointer to private wext data from wpa_driver_wext_init()
265 * @freq: Frequency in MHz
266 * Returns: 0 on success, -1 on failure
268 int wpa_driver_wext_set_freq(void *priv, int freq)
270 struct wpa_driver_wext_data *drv = priv;
274 os_memset(&iwr, 0, sizeof(iwr));
275 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
276 iwr.u.freq.m = freq * 100000;
279 if (ioctl(drv->ioctl_sock, SIOCSIWFREQ, &iwr) < 0) {
280 perror("ioctl[SIOCSIWFREQ]");
289 wpa_driver_wext_event_wireless_custom(void *ctx, char *custom)
291 union wpa_event_data data;
293 wpa_printf(MSG_MSGDUMP, "WEXT: Custom wireless event: '%s'",
296 os_memset(&data, 0, sizeof(data));
298 if (os_strncmp(custom, "MLME-MICHAELMICFAILURE.indication", 33) == 0) {
299 data.michael_mic_failure.unicast =
300 os_strstr(custom, " unicast ") != NULL;
301 /* TODO: parse parameters(?) */
302 wpa_supplicant_event(ctx, EVENT_MICHAEL_MIC_FAILURE, &data);
303 } else if (os_strncmp(custom, "ASSOCINFO(ReqIEs=", 17) == 0) {
309 bytes = strspn(spos, "0123456789abcdefABCDEF");
310 if (!bytes || (bytes & 1))
314 data.assoc_info.req_ies = os_malloc(bytes);
315 if (data.assoc_info.req_ies == NULL)
318 data.assoc_info.req_ies_len = bytes;
319 hexstr2bin(spos, data.assoc_info.req_ies, bytes);
323 data.assoc_info.resp_ies = NULL;
324 data.assoc_info.resp_ies_len = 0;
326 if (os_strncmp(spos, " RespIEs=", 9) == 0) {
329 bytes = strspn(spos, "0123456789abcdefABCDEF");
330 if (!bytes || (bytes & 1))
334 data.assoc_info.resp_ies = os_malloc(bytes);
335 if (data.assoc_info.resp_ies == NULL)
338 data.assoc_info.resp_ies_len = bytes;
339 hexstr2bin(spos, data.assoc_info.resp_ies, bytes);
342 wpa_supplicant_event(ctx, EVENT_ASSOCINFO, &data);
345 os_free(data.assoc_info.resp_ies);
346 os_free(data.assoc_info.req_ies);
347 #ifdef CONFIG_PEERKEY
348 } else if (os_strncmp(custom, "STKSTART.request=", 17) == 0) {
349 if (hwaddr_aton(custom + 17, data.stkstart.peer)) {
350 wpa_printf(MSG_DEBUG, "WEXT: unrecognized "
351 "STKSTART.request '%s'", custom + 17);
354 wpa_supplicant_event(ctx, EVENT_STKSTART, &data);
355 #endif /* CONFIG_PEERKEY */
360 static int wpa_driver_wext_event_wireless_michaelmicfailure(
361 void *ctx, const char *ev, size_t len)
363 const struct iw_michaelmicfailure *mic;
364 union wpa_event_data data;
366 if (len < sizeof(*mic))
369 mic = (const struct iw_michaelmicfailure *) ev;
371 wpa_printf(MSG_DEBUG, "Michael MIC failure wireless event: "
372 "flags=0x%x src_addr=" MACSTR, mic->flags,
373 MAC2STR(mic->src_addr.sa_data));
375 os_memset(&data, 0, sizeof(data));
376 data.michael_mic_failure.unicast = !(mic->flags & IW_MICFAILURE_GROUP);
377 wpa_supplicant_event(ctx, EVENT_MICHAEL_MIC_FAILURE, &data);
383 static int wpa_driver_wext_event_wireless_pmkidcand(
384 struct wpa_driver_wext_data *drv, const char *ev, size_t len)
386 const struct iw_pmkid_cand *cand;
387 union wpa_event_data data;
390 if (len < sizeof(*cand))
393 cand = (const struct iw_pmkid_cand *) ev;
394 addr = (const u8 *) cand->bssid.sa_data;
396 wpa_printf(MSG_DEBUG, "PMKID candidate wireless event: "
397 "flags=0x%x index=%d bssid=" MACSTR, cand->flags,
398 cand->index, MAC2STR(addr));
400 os_memset(&data, 0, sizeof(data));
401 os_memcpy(data.pmkid_candidate.bssid, addr, ETH_ALEN);
402 data.pmkid_candidate.index = cand->index;
403 data.pmkid_candidate.preauth = cand->flags & IW_PMKID_CAND_PREAUTH;
404 wpa_supplicant_event(drv->ctx, EVENT_PMKID_CANDIDATE, &data);
410 static int wpa_driver_wext_event_wireless_assocreqie(
411 struct wpa_driver_wext_data *drv, const char *ev, int len)
416 wpa_hexdump(MSG_DEBUG, "AssocReq IE wireless event", (const u8 *) ev,
418 os_free(drv->assoc_req_ies);
419 drv->assoc_req_ies = os_malloc(len);
420 if (drv->assoc_req_ies == NULL) {
421 drv->assoc_req_ies_len = 0;
424 os_memcpy(drv->assoc_req_ies, ev, len);
425 drv->assoc_req_ies_len = len;
431 static int wpa_driver_wext_event_wireless_assocrespie(
432 struct wpa_driver_wext_data *drv, const char *ev, int len)
437 wpa_hexdump(MSG_DEBUG, "AssocResp IE wireless event", (const u8 *) ev,
439 os_free(drv->assoc_resp_ies);
440 drv->assoc_resp_ies = os_malloc(len);
441 if (drv->assoc_resp_ies == NULL) {
442 drv->assoc_resp_ies_len = 0;
445 os_memcpy(drv->assoc_resp_ies, ev, len);
446 drv->assoc_resp_ies_len = len;
452 static void wpa_driver_wext_event_assoc_ies(struct wpa_driver_wext_data *drv)
454 union wpa_event_data data;
456 if (drv->assoc_req_ies == NULL && drv->assoc_resp_ies == NULL)
459 os_memset(&data, 0, sizeof(data));
460 if (drv->assoc_req_ies) {
461 data.assoc_info.req_ies = drv->assoc_req_ies;
462 drv->assoc_req_ies = NULL;
463 data.assoc_info.req_ies_len = drv->assoc_req_ies_len;
465 if (drv->assoc_resp_ies) {
466 data.assoc_info.resp_ies = drv->assoc_resp_ies;
467 drv->assoc_resp_ies = NULL;
468 data.assoc_info.resp_ies_len = drv->assoc_resp_ies_len;
471 wpa_supplicant_event(drv->ctx, EVENT_ASSOCINFO, &data);
473 os_free(data.assoc_info.req_ies);
474 os_free(data.assoc_info.resp_ies);
478 static void wpa_driver_wext_event_wireless(struct wpa_driver_wext_data *drv,
479 void *ctx, char *data, int len)
481 struct iw_event iwe_buf, *iwe = &iwe_buf;
482 char *pos, *end, *custom, *buf;
487 while (pos + IW_EV_LCP_LEN <= end) {
488 /* Event data may be unaligned, so make a local, aligned copy
489 * before processing. */
490 os_memcpy(&iwe_buf, pos, IW_EV_LCP_LEN);
491 wpa_printf(MSG_DEBUG, "Wireless event: cmd=0x%x len=%d",
493 if (iwe->len <= IW_EV_LCP_LEN)
496 custom = pos + IW_EV_POINT_LEN;
497 if (drv->we_version_compiled > 18 &&
498 (iwe->cmd == IWEVMICHAELMICFAILURE ||
499 iwe->cmd == IWEVCUSTOM ||
500 iwe->cmd == IWEVASSOCREQIE ||
501 iwe->cmd == IWEVASSOCRESPIE ||
502 iwe->cmd == IWEVPMKIDCAND)) {
503 /* WE-19 removed the pointer from struct iw_point */
504 char *dpos = (char *) &iwe_buf.u.data.length;
505 int dlen = dpos - (char *) &iwe_buf;
506 os_memcpy(dpos, pos + IW_EV_LCP_LEN,
507 sizeof(struct iw_event) - dlen);
509 os_memcpy(&iwe_buf, pos, sizeof(struct iw_event));
510 custom += IW_EV_POINT_OFF;
515 wpa_printf(MSG_DEBUG, "Wireless event: new AP: "
517 MAC2STR((u8 *) iwe->u.ap_addr.sa_data));
518 if (is_zero_ether_addr(
519 (const u8 *) iwe->u.ap_addr.sa_data) ||
520 os_memcmp(iwe->u.ap_addr.sa_data,
521 "\x44\x44\x44\x44\x44\x44", ETH_ALEN) ==
523 os_free(drv->assoc_req_ies);
524 drv->assoc_req_ies = NULL;
525 os_free(drv->assoc_resp_ies);
526 drv->assoc_resp_ies = NULL;
527 wpa_supplicant_event(ctx, EVENT_DISASSOC,
531 wpa_driver_wext_event_assoc_ies(drv);
532 wpa_supplicant_event(ctx, EVENT_ASSOC, NULL);
535 case IWEVMICHAELMICFAILURE:
536 if (custom + iwe->u.data.length > end) {
537 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
538 "IWEVMICHAELMICFAILURE length");
541 wpa_driver_wext_event_wireless_michaelmicfailure(
542 ctx, custom, iwe->u.data.length);
545 if (custom + iwe->u.data.length > end) {
546 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
547 "IWEVCUSTOM length");
550 buf = os_malloc(iwe->u.data.length + 1);
553 os_memcpy(buf, custom, iwe->u.data.length);
554 buf[iwe->u.data.length] = '\0';
555 wpa_driver_wext_event_wireless_custom(ctx, buf);
559 drv->scan_complete_events = 1;
560 eloop_cancel_timeout(wpa_driver_wext_scan_timeout,
562 wpa_supplicant_event(ctx, EVENT_SCAN_RESULTS, NULL);
565 if (custom + iwe->u.data.length > end) {
566 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
567 "IWEVASSOCREQIE length");
570 wpa_driver_wext_event_wireless_assocreqie(
571 drv, custom, iwe->u.data.length);
573 case IWEVASSOCRESPIE:
574 if (custom + iwe->u.data.length > end) {
575 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
576 "IWEVASSOCRESPIE length");
579 wpa_driver_wext_event_wireless_assocrespie(
580 drv, custom, iwe->u.data.length);
583 if (custom + iwe->u.data.length > end) {
584 wpa_printf(MSG_DEBUG, "WEXT: Invalid "
585 "IWEVPMKIDCAND length");
588 wpa_driver_wext_event_wireless_pmkidcand(
589 drv, custom, iwe->u.data.length);
598 static void wpa_driver_wext_event_link(struct wpa_driver_wext_data *drv,
599 void *ctx, char *buf, size_t len,
602 union wpa_event_data event;
604 os_memset(&event, 0, sizeof(event));
605 if (len > sizeof(event.interface_status.ifname))
606 len = sizeof(event.interface_status.ifname) - 1;
607 os_memcpy(event.interface_status.ifname, buf, len);
608 event.interface_status.ievent = del ? EVENT_INTERFACE_REMOVED :
609 EVENT_INTERFACE_ADDED;
611 wpa_printf(MSG_DEBUG, "RTM_%sLINK, IFLA_IFNAME: Interface '%s' %s",
613 event.interface_status.ifname,
614 del ? "removed" : "added");
616 if (os_strcmp(drv->ifname, event.interface_status.ifname) == 0) {
623 wpa_supplicant_event(ctx, EVENT_INTERFACE_STATUS, &event);
627 static int wpa_driver_wext_own_ifname(struct wpa_driver_wext_data *drv,
630 struct ifinfomsg *ifi;
631 int attrlen, nlmsg_len, rta_len;
636 nlmsg_len = NLMSG_ALIGN(sizeof(struct ifinfomsg));
638 attrlen = h->nlmsg_len - nlmsg_len;
642 attr = (struct rtattr *) (((char *) ifi) + nlmsg_len);
644 rta_len = RTA_ALIGN(sizeof(struct rtattr));
645 while (RTA_OK(attr, attrlen)) {
646 if (attr->rta_type == IFLA_IFNAME) {
647 if (os_strcmp(((char *) attr) + rta_len, drv->ifname)
653 attr = RTA_NEXT(attr, attrlen);
660 static int wpa_driver_wext_own_ifindex(struct wpa_driver_wext_data *drv,
661 int ifindex, struct nlmsghdr *h)
663 if (drv->ifindex == ifindex || drv->ifindex2 == ifindex)
666 if (drv->if_removed && wpa_driver_wext_own_ifname(drv, h)) {
667 drv->ifindex = if_nametoindex(drv->ifname);
668 wpa_printf(MSG_DEBUG, "WEXT: Update ifindex for a removed "
670 wpa_driver_wext_finish_drv_init(drv);
678 static void wpa_driver_wext_event_rtm_newlink(struct wpa_driver_wext_data *drv,
679 void *ctx, struct nlmsghdr *h,
682 struct ifinfomsg *ifi;
683 int attrlen, nlmsg_len, rta_len;
684 struct rtattr * attr;
686 if (len < sizeof(*ifi))
691 if (!wpa_driver_wext_own_ifindex(drv, ifi->ifi_index, h)) {
692 wpa_printf(MSG_DEBUG, "Ignore event for foreign ifindex %d",
697 wpa_printf(MSG_DEBUG, "RTM_NEWLINK: operstate=%d ifi_flags=0x%x "
699 drv->operstate, ifi->ifi_flags,
700 (ifi->ifi_flags & IFF_UP) ? "[UP]" : "",
701 (ifi->ifi_flags & IFF_RUNNING) ? "[RUNNING]" : "",
702 (ifi->ifi_flags & IFF_LOWER_UP) ? "[LOWER_UP]" : "",
703 (ifi->ifi_flags & IFF_DORMANT) ? "[DORMANT]" : "");
705 * Some drivers send the association event before the operup event--in
706 * this case, lifting operstate in wpa_driver_wext_set_operstate()
707 * fails. This will hit us when wpa_supplicant does not need to do
708 * IEEE 802.1X authentication
710 if (drv->operstate == 1 &&
711 (ifi->ifi_flags & (IFF_LOWER_UP | IFF_DORMANT)) == IFF_LOWER_UP &&
712 !(ifi->ifi_flags & IFF_RUNNING))
713 wpa_driver_wext_send_oper_ifla(drv, -1, IF_OPER_UP);
715 nlmsg_len = NLMSG_ALIGN(sizeof(struct ifinfomsg));
717 attrlen = h->nlmsg_len - nlmsg_len;
721 attr = (struct rtattr *) (((char *) ifi) + nlmsg_len);
723 rta_len = RTA_ALIGN(sizeof(struct rtattr));
724 while (RTA_OK(attr, attrlen)) {
725 if (attr->rta_type == IFLA_WIRELESS) {
726 wpa_driver_wext_event_wireless(
727 drv, ctx, ((char *) attr) + rta_len,
728 attr->rta_len - rta_len);
729 } else if (attr->rta_type == IFLA_IFNAME) {
730 wpa_driver_wext_event_link(drv, ctx,
731 ((char *) attr) + rta_len,
732 attr->rta_len - rta_len, 0);
734 attr = RTA_NEXT(attr, attrlen);
739 static void wpa_driver_wext_event_rtm_dellink(struct wpa_driver_wext_data *drv,
740 void *ctx, struct nlmsghdr *h,
743 struct ifinfomsg *ifi;
744 int attrlen, nlmsg_len, rta_len;
745 struct rtattr * attr;
747 if (len < sizeof(*ifi))
752 nlmsg_len = NLMSG_ALIGN(sizeof(struct ifinfomsg));
754 attrlen = h->nlmsg_len - nlmsg_len;
758 attr = (struct rtattr *) (((char *) ifi) + nlmsg_len);
760 rta_len = RTA_ALIGN(sizeof(struct rtattr));
761 while (RTA_OK(attr, attrlen)) {
762 if (attr->rta_type == IFLA_IFNAME) {
763 wpa_driver_wext_event_link(drv, ctx,
764 ((char *) attr) + rta_len,
765 attr->rta_len - rta_len, 1);
767 attr = RTA_NEXT(attr, attrlen);
772 static void wpa_driver_wext_event_receive(int sock, void *eloop_ctx,
777 struct sockaddr_nl from;
783 fromlen = sizeof(from);
784 left = recvfrom(sock, buf, sizeof(buf), MSG_DONTWAIT,
785 (struct sockaddr *) &from, &fromlen);
787 if (errno != EINTR && errno != EAGAIN)
788 perror("recvfrom(netlink)");
792 h = (struct nlmsghdr *) buf;
793 while (left >= (int) sizeof(*h)) {
797 plen = len - sizeof(*h);
798 if (len > left || plen < 0) {
799 wpa_printf(MSG_DEBUG, "Malformed netlink message: "
800 "len=%d left=%d plen=%d",
805 switch (h->nlmsg_type) {
807 wpa_driver_wext_event_rtm_newlink(eloop_ctx, sock_ctx,
811 wpa_driver_wext_event_rtm_dellink(eloop_ctx, sock_ctx,
816 len = NLMSG_ALIGN(len);
818 h = (struct nlmsghdr *) ((char *) h + len);
822 wpa_printf(MSG_DEBUG, "%d extra bytes in the end of netlink "
826 if (--max_events > 0) {
828 * Try to receive all events in one eloop call in order to
829 * limit race condition on cases where AssocInfo event, Assoc
830 * event, and EAPOL frames are received more or less at the
831 * same time. We want to process the event messages first
832 * before starting EAPOL processing.
839 static int wpa_driver_wext_get_ifflags_ifname(struct wpa_driver_wext_data *drv,
840 const char *ifname, int *flags)
844 os_memset(&ifr, 0, sizeof(ifr));
845 os_strlcpy(ifr.ifr_name, ifname, IFNAMSIZ);
846 if (ioctl(drv->ioctl_sock, SIOCGIFFLAGS, (caddr_t) &ifr) < 0) {
847 perror("ioctl[SIOCGIFFLAGS]");
850 *flags = ifr.ifr_flags & 0xffff;
856 * wpa_driver_wext_get_ifflags - Get interface flags (SIOCGIFFLAGS)
857 * @drv: driver_wext private data
858 * @flags: Pointer to returned flags value
859 * Returns: 0 on success, -1 on failure
861 int wpa_driver_wext_get_ifflags(struct wpa_driver_wext_data *drv, int *flags)
863 return wpa_driver_wext_get_ifflags_ifname(drv, drv->ifname, flags);
867 static int wpa_driver_wext_set_ifflags_ifname(struct wpa_driver_wext_data *drv,
868 const char *ifname, int flags)
872 os_memset(&ifr, 0, sizeof(ifr));
873 os_strlcpy(ifr.ifr_name, ifname, IFNAMSIZ);
874 ifr.ifr_flags = flags & 0xffff;
875 if (ioctl(drv->ioctl_sock, SIOCSIFFLAGS, (caddr_t) &ifr) < 0) {
876 perror("SIOCSIFFLAGS");
884 * wpa_driver_wext_set_ifflags - Set interface flags (SIOCSIFFLAGS)
885 * @drv: driver_wext private data
886 * @flags: New value for flags
887 * Returns: 0 on success, -1 on failure
889 int wpa_driver_wext_set_ifflags(struct wpa_driver_wext_data *drv, int flags)
891 return wpa_driver_wext_set_ifflags_ifname(drv, drv->ifname, flags);
896 * wpa_driver_wext_init - Initialize WE driver interface
897 * @ctx: context to be used when calling wpa_supplicant functions,
898 * e.g., wpa_supplicant_event()
899 * @ifname: interface name, e.g., wlan0
900 * Returns: Pointer to private data, %NULL on failure
902 void * wpa_driver_wext_init(void *ctx, const char *ifname)
905 struct sockaddr_nl local;
906 struct wpa_driver_wext_data *drv;
908 drv = os_zalloc(sizeof(*drv));
912 os_strlcpy(drv->ifname, ifname, sizeof(drv->ifname));
914 drv->ioctl_sock = socket(PF_INET, SOCK_DGRAM, 0);
915 if (drv->ioctl_sock < 0) {
916 perror("socket(PF_INET,SOCK_DGRAM)");
920 s = socket(PF_NETLINK, SOCK_RAW, NETLINK_ROUTE);
922 perror("socket(PF_NETLINK,SOCK_RAW,NETLINK_ROUTE)");
927 os_memset(&local, 0, sizeof(local));
928 local.nl_family = AF_NETLINK;
929 local.nl_groups = RTMGRP_LINK;
930 if (bind(s, (struct sockaddr *) &local, sizeof(local)) < 0) {
931 perror("bind(netlink)");
935 eloop_register_read_sock(s, wpa_driver_wext_event_receive, drv, ctx);
939 if (wpa_driver_wext_finish_drv_init(drv) < 0)
945 eloop_unregister_read_sock(drv->event_sock);
947 close(drv->event_sock);
949 close(drv->ioctl_sock);
956 static int wpa_driver_wext_finish_drv_init(struct wpa_driver_wext_data *drv)
960 if (wpa_driver_wext_get_ifflags(drv, &flags) != 0) {
961 wpa_printf(MSG_ERROR, "Could not get interface '%s' flags",
966 if (!(flags & IFF_UP)) {
967 if (wpa_driver_wext_set_ifflags(drv, flags | IFF_UP) != 0) {
968 wpa_printf(MSG_ERROR, "Could not set interface '%s' "
973 * Wait some time to allow driver to initialize before
974 * starting configuring the driver. This seems to be
975 * needed at least some drivers that load firmware etc.
976 * when the interface is set up.
978 wpa_printf(MSG_DEBUG, "Interface %s set UP - waiting "
979 "a second for the driver to complete "
980 "initialization", drv->ifname);
986 * Make sure that the driver does not have any obsolete PMKID entries.
988 wpa_driver_wext_flush_pmkid(drv);
990 if (wpa_driver_wext_set_mode(drv, 0) < 0) {
991 wpa_printf(MSG_DEBUG, "Could not configure driver to use "
993 /* Try to use it anyway */
996 wpa_driver_wext_get_range(drv);
999 * Unlock the driver's BSSID and force to a random SSID to clear any
1000 * previous association the driver might have when the supplicant
1003 wpa_driver_wext_disconnect(drv);
1005 drv->ifindex = if_nametoindex(drv->ifname);
1007 if (os_strncmp(drv->ifname, "wlan", 4) == 0) {
1009 * Host AP driver may use both wlan# and wifi# interface in
1010 * wireless events. Since some of the versions included WE-18
1011 * support, let's add the alternative ifindex also from
1012 * driver_wext.c for the time being. This may be removed at
1013 * some point once it is believed that old versions of the
1014 * driver are not in use anymore.
1016 char ifname2[IFNAMSIZ + 1];
1017 os_strlcpy(ifname2, drv->ifname, sizeof(ifname2));
1018 os_memcpy(ifname2, "wifi", 4);
1019 wpa_driver_wext_alternative_ifindex(drv, ifname2);
1022 wpa_driver_wext_send_oper_ifla(drv, 1, IF_OPER_DORMANT);
1029 * wpa_driver_wext_deinit - Deinitialize WE driver interface
1030 * @priv: Pointer to private wext data from wpa_driver_wext_init()
1032 * Shut down driver interface and processing of driver events. Free
1033 * private data buffer if one was allocated in wpa_driver_wext_init().
1035 void wpa_driver_wext_deinit(void *priv)
1037 struct wpa_driver_wext_data *drv = priv;
1040 eloop_cancel_timeout(wpa_driver_wext_scan_timeout, drv, drv->ctx);
1043 * Clear possibly configured driver parameters in order to make it
1044 * easier to use the driver after wpa_supplicant has been terminated.
1046 wpa_driver_wext_disconnect(drv);
1048 wpa_driver_wext_send_oper_ifla(priv, 0, IF_OPER_UP);
1050 eloop_unregister_read_sock(drv->event_sock);
1051 if (drv->mlme_sock >= 0)
1052 eloop_unregister_read_sock(drv->mlme_sock);
1054 if (wpa_driver_wext_get_ifflags(drv, &flags) == 0)
1055 (void) wpa_driver_wext_set_ifflags(drv, flags & ~IFF_UP);
1057 close(drv->event_sock);
1058 close(drv->ioctl_sock);
1059 if (drv->mlme_sock >= 0)
1060 close(drv->mlme_sock);
1061 os_free(drv->assoc_req_ies);
1062 os_free(drv->assoc_resp_ies);
1068 * wpa_driver_wext_scan_timeout - Scan timeout to report scan completion
1069 * @eloop_ctx: Unused
1070 * @timeout_ctx: ctx argument given to wpa_driver_wext_init()
1072 * This function can be used as registered timeout when starting a scan to
1073 * generate a scan completed event if the driver does not report this.
1075 void wpa_driver_wext_scan_timeout(void *eloop_ctx, void *timeout_ctx)
1077 wpa_printf(MSG_DEBUG, "Scan timeout - try to get results");
1078 wpa_supplicant_event(timeout_ctx, EVENT_SCAN_RESULTS, NULL);
1083 * wpa_driver_wext_scan - Request the driver to initiate scan
1084 * @priv: Pointer to private wext data from wpa_driver_wext_init()
1085 * @ssid: Specific SSID to scan for (ProbeReq) or %NULL to scan for
1086 * all SSIDs (either active scan with wildcard SSID or passive
1088 * @ssid_len: Length of the SSID
1089 * Returns: 0 on success, -1 on failure
1091 int wpa_driver_wext_scan(void *priv, const u8 *ssid, size_t ssid_len)
1093 struct wpa_driver_wext_data *drv = priv;
1095 int ret = 0, timeout;
1096 struct iw_scan_req req;
1098 if (ssid_len > IW_ESSID_MAX_SIZE) {
1099 wpa_printf(MSG_DEBUG, "%s: too long SSID (%lu)",
1100 __FUNCTION__, (unsigned long) ssid_len);
1104 os_memset(&iwr, 0, sizeof(iwr));
1105 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1107 if (ssid && ssid_len) {
1108 os_memset(&req, 0, sizeof(req));
1109 req.essid_len = ssid_len;
1110 req.bssid.sa_family = ARPHRD_ETHER;
1111 os_memset(req.bssid.sa_data, 0xff, ETH_ALEN);
1112 os_memcpy(req.essid, ssid, ssid_len);
1113 iwr.u.data.pointer = (caddr_t) &req;
1114 iwr.u.data.length = sizeof(req);
1115 iwr.u.data.flags = IW_SCAN_THIS_ESSID;
1118 if (ioctl(drv->ioctl_sock, SIOCSIWSCAN, &iwr) < 0) {
1119 perror("ioctl[SIOCSIWSCAN]");
1123 /* Not all drivers generate "scan completed" wireless event, so try to
1124 * read results after a timeout. */
1126 if (drv->scan_complete_events) {
1128 * The driver seems to deliver SIOCGIWSCAN events to notify
1129 * when scan is complete, so use longer timeout to avoid race
1130 * conditions with scanning and following association request.
1134 wpa_printf(MSG_DEBUG, "Scan requested (ret=%d) - scan timeout %d "
1135 "seconds", ret, timeout);
1136 eloop_cancel_timeout(wpa_driver_wext_scan_timeout, drv, drv->ctx);
1137 eloop_register_timeout(timeout, 0, wpa_driver_wext_scan_timeout, drv,
1144 static u8 * wpa_driver_wext_giwscan(struct wpa_driver_wext_data *drv,
1151 res_buf_len = IW_SCAN_MAX_DATA;
1153 res_buf = os_malloc(res_buf_len);
1154 if (res_buf == NULL)
1156 os_memset(&iwr, 0, sizeof(iwr));
1157 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1158 iwr.u.data.pointer = res_buf;
1159 iwr.u.data.length = res_buf_len;
1161 if (ioctl(drv->ioctl_sock, SIOCGIWSCAN, &iwr) == 0)
1164 if (errno == E2BIG && res_buf_len < 65535) {
1168 if (res_buf_len > 65535)
1169 res_buf_len = 65535; /* 16-bit length field */
1170 wpa_printf(MSG_DEBUG, "Scan results did not fit - "
1171 "trying larger buffer (%lu bytes)",
1172 (unsigned long) res_buf_len);
1174 perror("ioctl[SIOCGIWSCAN]");
1180 if (iwr.u.data.length > res_buf_len) {
1184 *len = iwr.u.data.length;
1191 * Data structure for collecting WEXT scan results. This is needed to allow
1192 * the various methods of reporting IEs to be combined into a single IE buffer.
1194 struct wext_scan_data {
1195 struct wpa_scan_res res;
1204 static void wext_get_scan_mode(struct iw_event *iwe,
1205 struct wext_scan_data *res)
1207 if (iwe->u.mode == IW_MODE_ADHOC)
1208 res->res.caps |= IEEE80211_CAP_IBSS;
1209 else if (iwe->u.mode == IW_MODE_MASTER || iwe->u.mode == IW_MODE_INFRA)
1210 res->res.caps |= IEEE80211_CAP_ESS;
1214 static void wext_get_scan_ssid(struct iw_event *iwe,
1215 struct wext_scan_data *res, char *custom,
1218 int ssid_len = iwe->u.essid.length;
1219 if (custom + ssid_len > end)
1221 if (iwe->u.essid.flags &&
1223 ssid_len <= IW_ESSID_MAX_SIZE) {
1224 os_memcpy(res->ssid, custom, ssid_len);
1225 res->ssid_len = ssid_len;
1230 static void wext_get_scan_freq(struct iw_event *iwe,
1231 struct wext_scan_data *res)
1233 int divi = 1000000, i;
1235 if (iwe->u.freq.e == 0) {
1237 * Some drivers do not report frequency, but a channel.
1238 * Try to map this to frequency by assuming they are using
1239 * IEEE 802.11b/g. But don't overwrite a previously parsed
1240 * frequency if the driver sends both frequency and channel,
1241 * since the driver may be sending an A-band channel that we
1242 * don't handle here.
1248 if (iwe->u.freq.m >= 1 && iwe->u.freq.m <= 13) {
1249 res->res.freq = 2407 + 5 * iwe->u.freq.m;
1251 } else if (iwe->u.freq.m == 14) {
1252 res->res.freq = 2484;
1257 if (iwe->u.freq.e > 6) {
1258 wpa_printf(MSG_DEBUG, "Invalid freq in scan results (BSSID="
1259 MACSTR " m=%d e=%d)",
1260 MAC2STR(res->res.bssid), iwe->u.freq.m,
1265 for (i = 0; i < iwe->u.freq.e; i++)
1267 res->res.freq = iwe->u.freq.m / divi;
1271 static void wext_get_scan_qual(struct iw_event *iwe,
1272 struct wext_scan_data *res)
1274 res->res.qual = iwe->u.qual.qual;
1275 res->res.noise = iwe->u.qual.noise;
1276 res->res.level = iwe->u.qual.level;
1277 if (iwe->u.qual.updated & IW_QUAL_QUAL_INVALID)
1278 res->res.flags |= WPA_SCAN_QUAL_INVALID;
1279 if (iwe->u.qual.updated & IW_QUAL_LEVEL_INVALID)
1280 res->res.flags |= WPA_SCAN_LEVEL_INVALID;
1281 if (iwe->u.qual.updated & IW_QUAL_NOISE_INVALID)
1282 res->res.flags |= WPA_SCAN_NOISE_INVALID;
1283 if (iwe->u.qual.updated & IW_QUAL_DBM)
1284 res->res.flags |= WPA_SCAN_LEVEL_DBM;
1288 static void wext_get_scan_encode(struct iw_event *iwe,
1289 struct wext_scan_data *res)
1291 if (!(iwe->u.data.flags & IW_ENCODE_DISABLED))
1292 res->res.caps |= IEEE80211_CAP_PRIVACY;
1296 static void wext_get_scan_rate(struct iw_event *iwe,
1297 struct wext_scan_data *res, char *pos,
1301 char *custom = pos + IW_EV_LCP_LEN;
1306 if (custom + clen > end)
1309 while (((ssize_t) clen) >= (ssize_t) sizeof(struct iw_param)) {
1310 /* Note: may be misaligned, make a local, aligned copy */
1311 os_memcpy(&p, custom, sizeof(struct iw_param));
1312 if (p.value > maxrate)
1314 clen -= sizeof(struct iw_param);
1315 custom += sizeof(struct iw_param);
1318 /* Convert the maxrate from WE-style (b/s units) to
1319 * 802.11 rates (500000 b/s units).
1321 res->maxrate = maxrate / 500000;
1325 static void wext_get_scan_iwevgenie(struct iw_event *iwe,
1326 struct wext_scan_data *res, char *custom,
1329 char *genie, *gpos, *gend;
1332 if (iwe->u.data.length == 0)
1335 gpos = genie = custom;
1336 gend = genie + iwe->u.data.length;
1338 wpa_printf(MSG_INFO, "IWEVGENIE overflow");
1342 tmp = os_realloc(res->ie, res->ie_len + gend - gpos);
1345 os_memcpy(tmp + res->ie_len, gpos, gend - gpos);
1347 res->ie_len += gend - gpos;
1351 static void wext_get_scan_custom(struct iw_event *iwe,
1352 struct wext_scan_data *res, char *custom,
1358 clen = iwe->u.data.length;
1359 if (custom + clen > end)
1362 if (clen > 7 && os_strncmp(custom, "wpa_ie=", 7) == 0) {
1366 bytes = custom + clen - spos;
1367 if (bytes & 1 || bytes == 0)
1370 tmp = os_realloc(res->ie, res->ie_len + bytes);
1373 hexstr2bin(spos, tmp + res->ie_len, bytes);
1375 res->ie_len += bytes;
1376 } else if (clen > 7 && os_strncmp(custom, "rsn_ie=", 7) == 0) {
1380 bytes = custom + clen - spos;
1381 if (bytes & 1 || bytes == 0)
1384 tmp = os_realloc(res->ie, res->ie_len + bytes);
1387 hexstr2bin(spos, tmp + res->ie_len, bytes);
1389 res->ie_len += bytes;
1390 } else if (clen > 4 && os_strncmp(custom, "tsf=", 4) == 0) {
1395 bytes = custom + clen - spos;
1397 wpa_printf(MSG_INFO, "Invalid TSF length (%d)", bytes);
1401 hexstr2bin(spos, bin, bytes);
1402 res->res.tsf += WPA_GET_BE64(bin);
1407 static int wext_19_iw_point(struct wpa_driver_wext_data *drv, u16 cmd)
1409 return drv->we_version_compiled > 18 &&
1410 (cmd == SIOCGIWESSID || cmd == SIOCGIWENCODE ||
1411 cmd == IWEVGENIE || cmd == IWEVCUSTOM);
1415 static void wpa_driver_wext_add_scan_entry(struct wpa_scan_results *res,
1416 struct wext_scan_data *data)
1418 struct wpa_scan_res **tmp;
1419 struct wpa_scan_res *r;
1421 u8 *pos, *end, *ssid_ie = NULL, *rate_ie = NULL;
1423 /* Figure out whether we need to fake any IEs */
1425 end = pos + data->ie_len;
1426 while (pos && pos + 1 < end) {
1427 if (pos + 2 + pos[1] > end)
1429 if (pos[0] == WLAN_EID_SSID)
1431 else if (pos[0] == WLAN_EID_SUPP_RATES)
1433 else if (pos[0] == WLAN_EID_EXT_SUPP_RATES)
1439 if (ssid_ie == NULL)
1440 extra_len += 2 + data->ssid_len;
1441 if (rate_ie == NULL && data->maxrate)
1444 r = os_zalloc(sizeof(*r) + extra_len + data->ie_len);
1447 os_memcpy(r, &data->res, sizeof(*r));
1448 r->ie_len = extra_len + data->ie_len;
1449 pos = (u8 *) (r + 1);
1450 if (ssid_ie == NULL) {
1452 * Generate a fake SSID IE since the driver did not report
1455 *pos++ = WLAN_EID_SSID;
1456 *pos++ = data->ssid_len;
1457 os_memcpy(pos, data->ssid, data->ssid_len);
1458 pos += data->ssid_len;
1460 if (rate_ie == NULL && data->maxrate) {
1462 * Generate a fake Supported Rates IE since the driver did not
1463 * report a full IE list.
1465 *pos++ = WLAN_EID_SUPP_RATES;
1467 *pos++ = data->maxrate;
1470 os_memcpy(pos, data->ie, data->ie_len);
1472 tmp = os_realloc(res->res,
1473 (res->num + 1) * sizeof(struct wpa_scan_res *));
1478 tmp[res->num++] = r;
1484 * wpa_driver_wext_get_scan_results - Fetch the latest scan results
1485 * @priv: Pointer to private wext data from wpa_driver_wext_init()
1486 * Returns: Scan results on success, -1 on failure
1488 struct wpa_scan_results * wpa_driver_wext_get_scan_results(void *priv)
1490 struct wpa_driver_wext_data *drv = priv;
1491 size_t ap_num = 0, len;
1494 struct iw_event iwe_buf, *iwe = &iwe_buf;
1495 char *pos, *end, *custom;
1496 struct wpa_scan_results *res;
1497 struct wext_scan_data data;
1499 res_buf = wpa_driver_wext_giwscan(drv, &len);
1500 if (res_buf == NULL)
1506 res = os_zalloc(sizeof(*res));
1512 pos = (char *) res_buf;
1513 end = (char *) res_buf + len;
1514 os_memset(&data, 0, sizeof(data));
1516 while (pos + IW_EV_LCP_LEN <= end) {
1517 /* Event data may be unaligned, so make a local, aligned copy
1518 * before processing. */
1519 os_memcpy(&iwe_buf, pos, IW_EV_LCP_LEN);
1520 if (iwe->len <= IW_EV_LCP_LEN)
1523 custom = pos + IW_EV_POINT_LEN;
1524 if (wext_19_iw_point(drv, iwe->cmd)) {
1525 /* WE-19 removed the pointer from struct iw_point */
1526 char *dpos = (char *) &iwe_buf.u.data.length;
1527 int dlen = dpos - (char *) &iwe_buf;
1528 os_memcpy(dpos, pos + IW_EV_LCP_LEN,
1529 sizeof(struct iw_event) - dlen);
1531 os_memcpy(&iwe_buf, pos, sizeof(struct iw_event));
1532 custom += IW_EV_POINT_OFF;
1538 wpa_driver_wext_add_scan_entry(res, &data);
1541 os_memset(&data, 0, sizeof(data));
1542 os_memcpy(data.res.bssid,
1543 iwe->u.ap_addr.sa_data, ETH_ALEN);
1546 wext_get_scan_mode(iwe, &data);
1549 wext_get_scan_ssid(iwe, &data, custom, end);
1552 wext_get_scan_freq(iwe, &data);
1555 wext_get_scan_qual(iwe, &data);
1558 wext_get_scan_encode(iwe, &data);
1561 wext_get_scan_rate(iwe, &data, pos, end);
1564 wext_get_scan_iwevgenie(iwe, &data, custom, end);
1567 wext_get_scan_custom(iwe, &data, custom, end);
1576 wpa_driver_wext_add_scan_entry(res, &data);
1579 wpa_printf(MSG_DEBUG, "Received %lu bytes of scan results (%lu BSSes)",
1580 (unsigned long) len, (unsigned long) res->num);
1586 static int wpa_driver_wext_get_range(void *priv)
1588 struct wpa_driver_wext_data *drv = priv;
1589 struct iw_range *range;
1595 * Use larger buffer than struct iw_range in order to allow the
1596 * structure to grow in the future.
1598 buflen = sizeof(struct iw_range) + 500;
1599 range = os_zalloc(buflen);
1603 os_memset(&iwr, 0, sizeof(iwr));
1604 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1605 iwr.u.data.pointer = (caddr_t) range;
1606 iwr.u.data.length = buflen;
1608 minlen = ((char *) &range->enc_capa) - (char *) range +
1609 sizeof(range->enc_capa);
1611 if (ioctl(drv->ioctl_sock, SIOCGIWRANGE, &iwr) < 0) {
1612 perror("ioctl[SIOCGIWRANGE]");
1615 } else if (iwr.u.data.length >= minlen &&
1616 range->we_version_compiled >= 18) {
1617 wpa_printf(MSG_DEBUG, "SIOCGIWRANGE: WE(compiled)=%d "
1618 "WE(source)=%d enc_capa=0x%x",
1619 range->we_version_compiled,
1620 range->we_version_source,
1622 drv->has_capability = 1;
1623 drv->we_version_compiled = range->we_version_compiled;
1624 if (range->enc_capa & IW_ENC_CAPA_WPA) {
1625 drv->capa.key_mgmt |= WPA_DRIVER_CAPA_KEY_MGMT_WPA |
1626 WPA_DRIVER_CAPA_KEY_MGMT_WPA_PSK;
1628 if (range->enc_capa & IW_ENC_CAPA_WPA2) {
1629 drv->capa.key_mgmt |= WPA_DRIVER_CAPA_KEY_MGMT_WPA2 |
1630 WPA_DRIVER_CAPA_KEY_MGMT_WPA2_PSK;
1632 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_WEP40 |
1633 WPA_DRIVER_CAPA_ENC_WEP104;
1634 if (range->enc_capa & IW_ENC_CAPA_CIPHER_TKIP)
1635 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_TKIP;
1636 if (range->enc_capa & IW_ENC_CAPA_CIPHER_CCMP)
1637 drv->capa.enc |= WPA_DRIVER_CAPA_ENC_CCMP;
1638 if (range->enc_capa & IW_ENC_CAPA_4WAY_HANDSHAKE)
1639 drv->capa.flags |= WPA_DRIVER_FLAGS_4WAY_HANDSHAKE;
1640 drv->capa.max_scan_ssids = 1;
1642 wpa_printf(MSG_DEBUG, " capabilities: key_mgmt 0x%x enc 0x%x "
1644 drv->capa.key_mgmt, drv->capa.enc, drv->capa.flags);
1646 wpa_printf(MSG_DEBUG, "SIOCGIWRANGE: too old (short) data - "
1647 "assuming WPA is not supported");
1655 static int wpa_driver_wext_set_wpa(void *priv, int enabled)
1657 struct wpa_driver_wext_data *drv = priv;
1658 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1660 return wpa_driver_wext_set_auth_param(drv, IW_AUTH_WPA_ENABLED,
1665 static int wpa_driver_wext_set_psk(struct wpa_driver_wext_data *drv,
1668 struct iw_encode_ext *ext;
1672 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1674 if (!(drv->capa.flags & WPA_DRIVER_FLAGS_4WAY_HANDSHAKE))
1680 os_memset(&iwr, 0, sizeof(iwr));
1681 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1683 ext = os_zalloc(sizeof(*ext) + PMK_LEN);
1687 iwr.u.encoding.pointer = (caddr_t) ext;
1688 iwr.u.encoding.length = sizeof(*ext) + PMK_LEN;
1689 ext->key_len = PMK_LEN;
1690 os_memcpy(&ext->key, psk, ext->key_len);
1691 ext->alg = IW_ENCODE_ALG_PMK;
1693 ret = ioctl(drv->ioctl_sock, SIOCSIWENCODEEXT, &iwr);
1695 perror("ioctl[SIOCSIWENCODEEXT] PMK");
1702 static int wpa_driver_wext_set_key_ext(void *priv, wpa_alg alg,
1703 const u8 *addr, int key_idx,
1704 int set_tx, const u8 *seq,
1706 const u8 *key, size_t key_len)
1708 struct wpa_driver_wext_data *drv = priv;
1711 struct iw_encode_ext *ext;
1713 if (seq_len > IW_ENCODE_SEQ_MAX_SIZE) {
1714 wpa_printf(MSG_DEBUG, "%s: Invalid seq_len %lu",
1715 __FUNCTION__, (unsigned long) seq_len);
1719 ext = os_zalloc(sizeof(*ext) + key_len);
1722 os_memset(&iwr, 0, sizeof(iwr));
1723 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1724 iwr.u.encoding.flags = key_idx + 1;
1725 iwr.u.encoding.flags |= IW_ENCODE_TEMP;
1726 if (alg == WPA_ALG_NONE)
1727 iwr.u.encoding.flags |= IW_ENCODE_DISABLED;
1728 iwr.u.encoding.pointer = (caddr_t) ext;
1729 iwr.u.encoding.length = sizeof(*ext) + key_len;
1732 os_memcmp(addr, "\xff\xff\xff\xff\xff\xff", ETH_ALEN) == 0)
1733 ext->ext_flags |= IW_ENCODE_EXT_GROUP_KEY;
1735 ext->ext_flags |= IW_ENCODE_EXT_SET_TX_KEY;
1737 ext->addr.sa_family = ARPHRD_ETHER;
1739 os_memcpy(ext->addr.sa_data, addr, ETH_ALEN);
1741 os_memset(ext->addr.sa_data, 0xff, ETH_ALEN);
1742 if (key && key_len) {
1743 os_memcpy(ext + 1, key, key_len);
1744 ext->key_len = key_len;
1748 ext->alg = IW_ENCODE_ALG_NONE;
1751 ext->alg = IW_ENCODE_ALG_WEP;
1754 ext->alg = IW_ENCODE_ALG_TKIP;
1757 ext->alg = IW_ENCODE_ALG_CCMP;
1760 ext->alg = IW_ENCODE_ALG_PMK;
1762 #ifdef CONFIG_IEEE80211W
1764 ext->alg = IW_ENCODE_ALG_AES_CMAC;
1766 #endif /* CONFIG_IEEE80211W */
1768 wpa_printf(MSG_DEBUG, "%s: Unknown algorithm %d",
1774 if (seq && seq_len) {
1775 ext->ext_flags |= IW_ENCODE_EXT_RX_SEQ_VALID;
1776 os_memcpy(ext->rx_seq, seq, seq_len);
1779 if (ioctl(drv->ioctl_sock, SIOCSIWENCODEEXT, &iwr) < 0) {
1780 ret = errno == EOPNOTSUPP ? -2 : -1;
1781 if (errno == ENODEV) {
1783 * ndiswrapper seems to be returning incorrect error
1788 perror("ioctl[SIOCSIWENCODEEXT]");
1797 * wpa_driver_wext_set_key - Configure encryption key
1798 * @priv: Pointer to private wext data from wpa_driver_wext_init()
1799 * @priv: Private driver interface data
1800 * @alg: Encryption algorithm (%WPA_ALG_NONE, %WPA_ALG_WEP,
1801 * %WPA_ALG_TKIP, %WPA_ALG_CCMP); %WPA_ALG_NONE clears the key.
1802 * @addr: Address of the peer STA or ff:ff:ff:ff:ff:ff for
1803 * broadcast/default keys
1804 * @key_idx: key index (0..3), usually 0 for unicast keys
1805 * @set_tx: Configure this key as the default Tx key (only used when
1806 * driver does not support separate unicast/individual key
1807 * @seq: Sequence number/packet number, seq_len octets, the next
1808 * packet number to be used for in replay protection; configured
1809 * for Rx keys (in most cases, this is only used with broadcast
1810 * keys and set to zero for unicast keys)
1811 * @seq_len: Length of the seq, depends on the algorithm:
1812 * TKIP: 6 octets, CCMP: 6 octets
1813 * @key: Key buffer; TKIP: 16-byte temporal key, 8-byte Tx Mic key,
1815 * @key_len: Length of the key buffer in octets (WEP: 5 or 13,
1816 * TKIP: 32, CCMP: 16)
1817 * Returns: 0 on success, -1 on failure
1819 * This function uses SIOCSIWENCODEEXT by default, but tries to use
1820 * SIOCSIWENCODE if the extended ioctl fails when configuring a WEP key.
1822 int wpa_driver_wext_set_key(void *priv, wpa_alg alg,
1823 const u8 *addr, int key_idx,
1824 int set_tx, const u8 *seq, size_t seq_len,
1825 const u8 *key, size_t key_len)
1827 struct wpa_driver_wext_data *drv = priv;
1831 wpa_printf(MSG_DEBUG, "%s: alg=%d key_idx=%d set_tx=%d seq_len=%lu "
1833 __FUNCTION__, alg, key_idx, set_tx,
1834 (unsigned long) seq_len, (unsigned long) key_len);
1836 ret = wpa_driver_wext_set_key_ext(drv, alg, addr, key_idx, set_tx,
1837 seq, seq_len, key, key_len);
1842 (alg == WPA_ALG_NONE || alg == WPA_ALG_WEP)) {
1843 wpa_printf(MSG_DEBUG, "Driver did not support "
1844 "SIOCSIWENCODEEXT, trying SIOCSIWENCODE");
1847 wpa_printf(MSG_DEBUG, "Driver did not support "
1848 "SIOCSIWENCODEEXT");
1852 os_memset(&iwr, 0, sizeof(iwr));
1853 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1854 iwr.u.encoding.flags = key_idx + 1;
1855 iwr.u.encoding.flags |= IW_ENCODE_TEMP;
1856 if (alg == WPA_ALG_NONE)
1857 iwr.u.encoding.flags |= IW_ENCODE_DISABLED;
1858 iwr.u.encoding.pointer = (caddr_t) key;
1859 iwr.u.encoding.length = key_len;
1861 if (ioctl(drv->ioctl_sock, SIOCSIWENCODE, &iwr) < 0) {
1862 perror("ioctl[SIOCSIWENCODE]");
1866 if (set_tx && alg != WPA_ALG_NONE) {
1867 os_memset(&iwr, 0, sizeof(iwr));
1868 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1869 iwr.u.encoding.flags = key_idx + 1;
1870 iwr.u.encoding.flags |= IW_ENCODE_TEMP;
1871 iwr.u.encoding.pointer = (caddr_t) NULL;
1872 iwr.u.encoding.length = 0;
1873 if (ioctl(drv->ioctl_sock, SIOCSIWENCODE, &iwr) < 0) {
1874 perror("ioctl[SIOCSIWENCODE] (set_tx)");
1883 static int wpa_driver_wext_set_countermeasures(void *priv,
1886 struct wpa_driver_wext_data *drv = priv;
1887 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1888 return wpa_driver_wext_set_auth_param(drv,
1889 IW_AUTH_TKIP_COUNTERMEASURES,
1894 static int wpa_driver_wext_set_drop_unencrypted(void *priv,
1897 struct wpa_driver_wext_data *drv = priv;
1898 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1899 drv->use_crypt = enabled;
1900 return wpa_driver_wext_set_auth_param(drv, IW_AUTH_DROP_UNENCRYPTED,
1905 static int wpa_driver_wext_mlme(struct wpa_driver_wext_data *drv,
1906 const u8 *addr, int cmd, int reason_code)
1909 struct iw_mlme mlme;
1912 os_memset(&iwr, 0, sizeof(iwr));
1913 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1914 os_memset(&mlme, 0, sizeof(mlme));
1916 mlme.reason_code = reason_code;
1917 mlme.addr.sa_family = ARPHRD_ETHER;
1918 os_memcpy(mlme.addr.sa_data, addr, ETH_ALEN);
1919 iwr.u.data.pointer = (caddr_t) &mlme;
1920 iwr.u.data.length = sizeof(mlme);
1922 if (ioctl(drv->ioctl_sock, SIOCSIWMLME, &iwr) < 0) {
1923 perror("ioctl[SIOCSIWMLME]");
1931 static void wpa_driver_wext_disconnect(struct wpa_driver_wext_data *drv)
1934 const u8 null_bssid[ETH_ALEN] = { 0, 0, 0, 0, 0, 0 };
1939 * Only force-disconnect when the card is in infrastructure mode,
1940 * otherwise the driver might interpret the cleared BSSID and random
1941 * SSID as an attempt to create a new ad-hoc network.
1943 os_memset(&iwr, 0, sizeof(iwr));
1944 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1945 if (ioctl(drv->ioctl_sock, SIOCGIWMODE, &iwr) < 0) {
1946 perror("ioctl[SIOCGIWMODE]");
1947 iwr.u.mode = IW_MODE_INFRA;
1950 if (iwr.u.mode == IW_MODE_INFRA) {
1952 * Clear the BSSID selection and set a random SSID to make sure
1953 * the driver will not be trying to associate with something
1954 * even if it does not understand SIOCSIWMLME commands (or
1955 * tries to associate automatically after deauth/disassoc).
1957 wpa_driver_wext_set_bssid(drv, null_bssid);
1959 for (i = 0; i < 32; i++)
1960 ssid[i] = rand() & 0xFF;
1961 wpa_driver_wext_set_ssid(drv, ssid, 32);
1966 static int wpa_driver_wext_deauthenticate(void *priv, const u8 *addr,
1969 struct wpa_driver_wext_data *drv = priv;
1971 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1972 ret = wpa_driver_wext_mlme(drv, addr, IW_MLME_DEAUTH, reason_code);
1973 wpa_driver_wext_disconnect(drv);
1978 static int wpa_driver_wext_disassociate(void *priv, const u8 *addr,
1981 struct wpa_driver_wext_data *drv = priv;
1983 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
1984 ret = wpa_driver_wext_mlme(drv, addr, IW_MLME_DISASSOC, reason_code);
1985 wpa_driver_wext_disconnect(drv);
1990 static int wpa_driver_wext_set_gen_ie(void *priv, const u8 *ie,
1993 struct wpa_driver_wext_data *drv = priv;
1997 os_memset(&iwr, 0, sizeof(iwr));
1998 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
1999 iwr.u.data.pointer = (caddr_t) ie;
2000 iwr.u.data.length = ie_len;
2002 if (ioctl(drv->ioctl_sock, SIOCSIWGENIE, &iwr) < 0) {
2003 perror("ioctl[SIOCSIWGENIE]");
2011 int wpa_driver_wext_cipher2wext(int cipher)
2015 return IW_AUTH_CIPHER_NONE;
2017 return IW_AUTH_CIPHER_WEP40;
2019 return IW_AUTH_CIPHER_TKIP;
2021 return IW_AUTH_CIPHER_CCMP;
2023 return IW_AUTH_CIPHER_WEP104;
2030 int wpa_driver_wext_keymgmt2wext(int keymgmt)
2033 case KEY_MGMT_802_1X:
2034 case KEY_MGMT_802_1X_NO_WPA:
2035 return IW_AUTH_KEY_MGMT_802_1X;
2037 return IW_AUTH_KEY_MGMT_PSK;
2045 wpa_driver_wext_auth_alg_fallback(struct wpa_driver_wext_data *drv,
2046 struct wpa_driver_associate_params *params)
2051 wpa_printf(MSG_DEBUG, "WEXT: Driver did not support "
2052 "SIOCSIWAUTH for AUTH_ALG, trying SIOCSIWENCODE");
2054 os_memset(&iwr, 0, sizeof(iwr));
2055 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
2056 /* Just changing mode, not actual keys */
2057 iwr.u.encoding.flags = 0;
2058 iwr.u.encoding.pointer = (caddr_t) NULL;
2059 iwr.u.encoding.length = 0;
2062 * Note: IW_ENCODE_{OPEN,RESTRICTED} can be interpreted to mean two
2063 * different things. Here they are used to indicate Open System vs.
2064 * Shared Key authentication algorithm. However, some drivers may use
2065 * them to select between open/restricted WEP encrypted (open = allow
2066 * both unencrypted and encrypted frames; restricted = only allow
2067 * encrypted frames).
2070 if (!drv->use_crypt) {
2071 iwr.u.encoding.flags |= IW_ENCODE_DISABLED;
2073 if (params->auth_alg & AUTH_ALG_OPEN_SYSTEM)
2074 iwr.u.encoding.flags |= IW_ENCODE_OPEN;
2075 if (params->auth_alg & AUTH_ALG_SHARED_KEY)
2076 iwr.u.encoding.flags |= IW_ENCODE_RESTRICTED;
2079 if (ioctl(drv->ioctl_sock, SIOCSIWENCODE, &iwr) < 0) {
2080 perror("ioctl[SIOCSIWENCODE]");
2088 int wpa_driver_wext_associate(void *priv,
2089 struct wpa_driver_associate_params *params)
2091 struct wpa_driver_wext_data *drv = priv;
2093 int allow_unencrypted_eapol;
2096 wpa_printf(MSG_DEBUG, "%s", __FUNCTION__);
2099 * If the driver did not support SIOCSIWAUTH, fallback to
2100 * SIOCSIWENCODE here.
2102 if (drv->auth_alg_fallback &&
2103 wpa_driver_wext_auth_alg_fallback(drv, params) < 0)
2106 if (!params->bssid &&
2107 wpa_driver_wext_set_bssid(drv, NULL) < 0)
2110 /* TODO: should consider getting wpa version and cipher/key_mgmt suites
2111 * from configuration, not from here, where only the selected suite is
2113 if (wpa_driver_wext_set_gen_ie(drv, params->wpa_ie, params->wpa_ie_len)
2116 if (params->wpa_ie == NULL || params->wpa_ie_len == 0)
2117 value = IW_AUTH_WPA_VERSION_DISABLED;
2118 else if (params->wpa_ie[0] == WLAN_EID_RSN)
2119 value = IW_AUTH_WPA_VERSION_WPA2;
2121 value = IW_AUTH_WPA_VERSION_WPA;
2122 if (wpa_driver_wext_set_auth_param(drv,
2123 IW_AUTH_WPA_VERSION, value) < 0)
2125 value = wpa_driver_wext_cipher2wext(params->pairwise_suite);
2126 if (wpa_driver_wext_set_auth_param(drv,
2127 IW_AUTH_CIPHER_PAIRWISE, value) < 0)
2129 value = wpa_driver_wext_cipher2wext(params->group_suite);
2130 if (wpa_driver_wext_set_auth_param(drv,
2131 IW_AUTH_CIPHER_GROUP, value) < 0)
2133 value = wpa_driver_wext_keymgmt2wext(params->key_mgmt_suite);
2134 if (wpa_driver_wext_set_auth_param(drv,
2135 IW_AUTH_KEY_MGMT, value) < 0)
2137 value = params->key_mgmt_suite != KEY_MGMT_NONE ||
2138 params->pairwise_suite != CIPHER_NONE ||
2139 params->group_suite != CIPHER_NONE ||
2141 if (wpa_driver_wext_set_auth_param(drv,
2142 IW_AUTH_PRIVACY_INVOKED, value) < 0)
2145 /* Allow unencrypted EAPOL messages even if pairwise keys are set when
2146 * not using WPA. IEEE 802.1X specifies that these frames are not
2147 * encrypted, but WPA encrypts them when pairwise keys are in use. */
2148 if (params->key_mgmt_suite == KEY_MGMT_802_1X ||
2149 params->key_mgmt_suite == KEY_MGMT_PSK)
2150 allow_unencrypted_eapol = 0;
2152 allow_unencrypted_eapol = 1;
2154 if (wpa_driver_wext_set_psk(drv, params->psk) < 0)
2156 if (wpa_driver_wext_set_auth_param(drv,
2157 IW_AUTH_RX_UNENCRYPTED_EAPOL,
2158 allow_unencrypted_eapol) < 0)
2160 #ifdef CONFIG_IEEE80211W
2161 switch (params->mgmt_frame_protection) {
2162 case NO_MGMT_FRAME_PROTECTION:
2163 value = IW_AUTH_MFP_DISABLED;
2165 case MGMT_FRAME_PROTECTION_OPTIONAL:
2166 value = IW_AUTH_MFP_OPTIONAL;
2168 case MGMT_FRAME_PROTECTION_REQUIRED:
2169 value = IW_AUTH_MFP_REQUIRED;
2172 if (wpa_driver_wext_set_auth_param(drv, IW_AUTH_MFP, value) < 0)
2174 #endif /* CONFIG_IEEE80211W */
2175 if (params->freq && wpa_driver_wext_set_freq(drv, params->freq) < 0)
2177 if (wpa_driver_wext_set_ssid(drv, params->ssid, params->ssid_len) < 0)
2179 if (params->bssid &&
2180 wpa_driver_wext_set_bssid(drv, params->bssid) < 0)
2187 static int wpa_driver_wext_set_auth_alg(void *priv, int auth_alg)
2189 struct wpa_driver_wext_data *drv = priv;
2192 if (auth_alg & AUTH_ALG_OPEN_SYSTEM)
2193 algs |= IW_AUTH_ALG_OPEN_SYSTEM;
2194 if (auth_alg & AUTH_ALG_SHARED_KEY)
2195 algs |= IW_AUTH_ALG_SHARED_KEY;
2196 if (auth_alg & AUTH_ALG_LEAP)
2197 algs |= IW_AUTH_ALG_LEAP;
2199 /* at least one algorithm should be set */
2200 algs = IW_AUTH_ALG_OPEN_SYSTEM;
2203 res = wpa_driver_wext_set_auth_param(drv, IW_AUTH_80211_AUTH_ALG,
2205 drv->auth_alg_fallback = res == -2;
2211 * wpa_driver_wext_set_mode - Set wireless mode (infra/adhoc), SIOCSIWMODE
2212 * @priv: Pointer to private wext data from wpa_driver_wext_init()
2213 * @mode: 0 = infra/BSS (associate with an AP), 1 = adhoc/IBSS
2214 * Returns: 0 on success, -1 on failure
2216 int wpa_driver_wext_set_mode(void *priv, int mode)
2218 struct wpa_driver_wext_data *drv = priv;
2220 int ret = -1, flags;
2221 unsigned int new_mode = mode ? IW_MODE_ADHOC : IW_MODE_INFRA;
2223 os_memset(&iwr, 0, sizeof(iwr));
2224 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
2225 iwr.u.mode = new_mode;
2226 if (ioctl(drv->ioctl_sock, SIOCSIWMODE, &iwr) == 0) {
2231 if (errno != EBUSY) {
2232 perror("ioctl[SIOCSIWMODE]");
2236 /* mac80211 doesn't allow mode changes while the device is up, so if
2237 * the device isn't in the mode we're about to change to, take device
2238 * down, try to set the mode again, and bring it back up.
2240 if (ioctl(drv->ioctl_sock, SIOCGIWMODE, &iwr) < 0) {
2241 perror("ioctl[SIOCGIWMODE]");
2245 if (iwr.u.mode == new_mode) {
2250 if (wpa_driver_wext_get_ifflags(drv, &flags) == 0) {
2251 (void) wpa_driver_wext_set_ifflags(drv, flags & ~IFF_UP);
2253 /* Try to set the mode again while the interface is down */
2254 iwr.u.mode = new_mode;
2255 if (ioctl(drv->ioctl_sock, SIOCSIWMODE, &iwr) < 0)
2256 perror("ioctl[SIOCSIWMODE]");
2260 /* Ignore return value of get_ifflags to ensure that the device
2261 * is always up like it was before this function was called.
2263 (void) wpa_driver_wext_get_ifflags(drv, &flags);
2264 (void) wpa_driver_wext_set_ifflags(drv, flags | IFF_UP);
2272 static int wpa_driver_wext_pmksa(struct wpa_driver_wext_data *drv,
2273 u32 cmd, const u8 *bssid, const u8 *pmkid)
2276 struct iw_pmksa pmksa;
2279 os_memset(&iwr, 0, sizeof(iwr));
2280 os_strlcpy(iwr.ifr_name, drv->ifname, IFNAMSIZ);
2281 os_memset(&pmksa, 0, sizeof(pmksa));
2283 pmksa.bssid.sa_family = ARPHRD_ETHER;
2285 os_memcpy(pmksa.bssid.sa_data, bssid, ETH_ALEN);
2287 os_memcpy(pmksa.pmkid, pmkid, IW_PMKID_LEN);
2288 iwr.u.data.pointer = (caddr_t) &pmksa;
2289 iwr.u.data.length = sizeof(pmksa);
2291 if (ioctl(drv->ioctl_sock, SIOCSIWPMKSA, &iwr) < 0) {
2292 if (errno != EOPNOTSUPP)
2293 perror("ioctl[SIOCSIWPMKSA]");
2301 static int wpa_driver_wext_add_pmkid(void *priv, const u8 *bssid,
2304 struct wpa_driver_wext_data *drv = priv;
2305 return wpa_driver_wext_pmksa(drv, IW_PMKSA_ADD, bssid, pmkid);
2309 static int wpa_driver_wext_remove_pmkid(void *priv, const u8 *bssid,
2312 struct wpa_driver_wext_data *drv = priv;
2313 return wpa_driver_wext_pmksa(drv, IW_PMKSA_REMOVE, bssid, pmkid);
2317 static int wpa_driver_wext_flush_pmkid(void *priv)
2319 struct wpa_driver_wext_data *drv = priv;
2320 return wpa_driver_wext_pmksa(drv, IW_PMKSA_FLUSH, NULL, NULL);
2324 int wpa_driver_wext_get_capa(void *priv, struct wpa_driver_capa *capa)
2326 struct wpa_driver_wext_data *drv = priv;
2327 if (!drv->has_capability)
2329 os_memcpy(capa, &drv->capa, sizeof(*capa));
2334 int wpa_driver_wext_alternative_ifindex(struct wpa_driver_wext_data *drv,
2337 if (ifname == NULL) {
2342 drv->ifindex2 = if_nametoindex(ifname);
2343 if (drv->ifindex2 <= 0)
2346 wpa_printf(MSG_DEBUG, "Added alternative ifindex %d (%s) for "
2347 "wireless events", drv->ifindex2, ifname);
2353 int wpa_driver_wext_set_operstate(void *priv, int state)
2355 struct wpa_driver_wext_data *drv = priv;
2357 wpa_printf(MSG_DEBUG, "%s: operstate %d->%d (%s)",
2358 __func__, drv->operstate, state, state ? "UP" : "DORMANT");
2359 drv->operstate = state;
2360 return wpa_driver_wext_send_oper_ifla(
2361 drv, -1, state ? IF_OPER_UP : IF_OPER_DORMANT);
2365 int wpa_driver_wext_get_version(struct wpa_driver_wext_data *drv)
2367 return drv->we_version_compiled;
2371 const struct wpa_driver_ops wpa_driver_wext_ops = {
2373 .desc = "Linux wireless extensions (generic)",
2374 .get_bssid = wpa_driver_wext_get_bssid,
2375 .get_ssid = wpa_driver_wext_get_ssid,
2376 .set_wpa = wpa_driver_wext_set_wpa,
2377 .set_key = wpa_driver_wext_set_key,
2378 .set_countermeasures = wpa_driver_wext_set_countermeasures,
2379 .set_drop_unencrypted = wpa_driver_wext_set_drop_unencrypted,
2380 .scan = wpa_driver_wext_scan,
2381 .get_scan_results2 = wpa_driver_wext_get_scan_results,
2382 .deauthenticate = wpa_driver_wext_deauthenticate,
2383 .disassociate = wpa_driver_wext_disassociate,
2384 .set_mode = wpa_driver_wext_set_mode,
2385 .associate = wpa_driver_wext_associate,
2386 .set_auth_alg = wpa_driver_wext_set_auth_alg,
2387 .init = wpa_driver_wext_init,
2388 .deinit = wpa_driver_wext_deinit,
2389 .add_pmkid = wpa_driver_wext_add_pmkid,
2390 .remove_pmkid = wpa_driver_wext_remove_pmkid,
2391 .flush_pmkid = wpa_driver_wext_flush_pmkid,
2392 .get_capa = wpa_driver_wext_get_capa,
2393 .set_operstate = wpa_driver_wext_set_operstate,