search:
summary | log | graphiclog1 | graphiclog2 | commit | commitdiff | tree | refs | edit | fork
blame | history | raw | HEAD
cfg80211: validate channel settings across interfaces
[linux-2.6/x86.git] / net / wireless / sme.c
blob219c3bc2c37d3c1a3bf88a0b5aae1b11751d2602
1 /*
2 * SME code for cfg80211's connect emulation.
3 *
4 * Copyright 2009 Johannes Berg <johannes@sipsolutions.net>
5 * Copyright (C) 2009 Intel Corporation. All rights reserved.
6 */
7
8 #include <linux/etherdevice.h>
9 #include <linux/if_arp.h>
10 #include <linux/workqueue.h>
11 #include <linux/wireless.h>
12 #include <net/iw_handler.h>
13 #include <net/cfg80211.h>
14 #include <net/rtnetlink.h>
15 #include "nl80211.h"
16 #include "reg.h"
17
18 struct cfg80211_conn {
19 struct cfg80211_connect_params params;
20 /* these are sub-states of the _CONNECTING sme_state */
21 enum {
22 CFG80211_CONN_IDLE,
23 CFG80211_CONN_SCANNING,
24 CFG80211_CONN_SCAN_AGAIN,
25 CFG80211_CONN_AUTHENTICATE_NEXT,
26 CFG80211_CONN_AUTHENTICATING,
27 CFG80211_CONN_ASSOCIATE_NEXT,
28 CFG80211_CONN_ASSOCIATING,
29 } state;
30 u8 bssid[ETH_ALEN];
31 u8 *ie;
32 size_t ie_len;
33 bool auto_auth;
34 };
35
36
37 static int cfg80211_conn_scan(struct wireless_dev *wdev)
38 {
39 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
40 struct cfg80211_scan_request *request;
41 int n_channels, err;
42
43 ASSERT_RTNL();
44 ASSERT_RDEV_LOCK(rdev);
45 ASSERT_WDEV_LOCK(wdev);
46
47 if (rdev->scan_req)
48 return -EBUSY;
49
50 if (wdev->conn->params.channel) {
51 n_channels = 1;
52 } else {
53 enum ieee80211_band band;
54 n_channels = 0;
55
56 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
57 if (!wdev->wiphy->bands[band])
58 continue;
59 n_channels += wdev->wiphy->bands[band]->n_channels;
60 }
61 }
62 request = kzalloc(sizeof(*request) + sizeof(request->ssids[0]) +
63 sizeof(request->channels[0]) * n_channels,
64 GFP_KERNEL);
65 if (!request)
66 return -ENOMEM;
67
68 request->channels = (void *)((char *)request + sizeof(*request));
69 if (wdev->conn->params.channel)
70 request->channels[0] = wdev->conn->params.channel;
71 else {
72 int i = 0, j;
73 enum ieee80211_band band;
74
75 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
76 if (!wdev->wiphy->bands[band])
77 continue;
78 for (j = 0; j < wdev->wiphy->bands[band]->n_channels;
79 i++, j++)
80 request->channels[i] =
81 &wdev->wiphy->bands[band]->channels[j];
82 }
83 }
84 request->n_channels = n_channels;
85 request->ssids = (void *)(request->channels + n_channels);
86 request->n_ssids = 1;
87
88 memcpy(request->ssids[0].ssid, wdev->conn->params.ssid,
89 wdev->conn->params.ssid_len);
90 request->ssids[0].ssid_len = wdev->conn->params.ssid_len;
91
92 request->dev = wdev->netdev;
93 request->wiphy = &rdev->wiphy;
94
95 rdev->scan_req = request;
96
97 err = rdev->ops->scan(wdev->wiphy, wdev->netdev, request);
98 if (!err) {
99 wdev->conn->state = CFG80211_CONN_SCANNING;
100 nl80211_send_scan_start(rdev, wdev->netdev);
101 dev_hold(wdev->netdev);
102 } else {
103 rdev->scan_req = NULL;
104 kfree(request);
105 }
106 return err;
107 }
108
109 static int cfg80211_conn_do_work(struct wireless_dev *wdev)
110 {
111 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
112 struct cfg80211_connect_params *params;
113 int err;
114
115 ASSERT_WDEV_LOCK(wdev);
116
117 if (!wdev->conn)
118 return 0;
119
120 params = &wdev->conn->params;
121
122 switch (wdev->conn->state) {
123 case CFG80211_CONN_SCAN_AGAIN:
124 return cfg80211_conn_scan(wdev);
125 case CFG80211_CONN_AUTHENTICATE_NEXT:
126 BUG_ON(!rdev->ops->auth);
127 wdev->conn->state = CFG80211_CONN_AUTHENTICATING;
128 return __cfg80211_mlme_auth(rdev, wdev->netdev,
129 params->channel, params->auth_type,
130 params->bssid,
131 params->ssid, params->ssid_len,
132 NULL, 0,
133 params->key, params->key_len,
134 params->key_idx);
135 case CFG80211_CONN_ASSOCIATE_NEXT:
136 BUG_ON(!rdev->ops->assoc);
137 wdev->conn->state = CFG80211_CONN_ASSOCIATING;
138 /*
139 * We could, later, implement roaming here and then actually
140 * set prev_bssid to non-NULL. But then we need to be aware
141 * that some APs don't like that -- so we'd need to retry
142 * the association.
143 */
144 err = __cfg80211_mlme_assoc(rdev, wdev->netdev,
145 params->channel, params->bssid,
146 NULL,
147 params->ssid, params->ssid_len,
148 params->ie, params->ie_len,
149 false, &params->crypto);
150 if (err)
151 __cfg80211_mlme_deauth(rdev, wdev->netdev, params->bssid,
152 NULL, 0,
153 WLAN_REASON_DEAUTH_LEAVING);
154 return err;
155 default:
156 return 0;
157 }
158 }
159
160 void cfg80211_conn_work(struct work_struct *work)
161 {
162 struct cfg80211_registered_device *rdev =
163 container_of(work, struct cfg80211_registered_device, conn_work);
164 struct wireless_dev *wdev;
165
166 rtnl_lock();
167 cfg80211_lock_rdev(rdev);
168 mutex_lock(&rdev->devlist_mtx);
169
170 list_for_each_entry(wdev, &rdev->netdev_list, list) {
171 wdev_lock(wdev);
172 if (!netif_running(wdev->netdev)) {
173 wdev_unlock(wdev);
174 continue;
175 }
176 if (wdev->sme_state != CFG80211_SME_CONNECTING) {
177 wdev_unlock(wdev);
178 continue;
179 }
180 if (cfg80211_conn_do_work(wdev))
181 __cfg80211_connect_result(
182 wdev->netdev,
183 wdev->conn->params.bssid,
184 NULL, 0, NULL, 0,
185 WLAN_STATUS_UNSPECIFIED_FAILURE,
186 false, NULL);
187 wdev_unlock(wdev);
188 }
189
190 mutex_unlock(&rdev->devlist_mtx);
191 cfg80211_unlock_rdev(rdev);
192 rtnl_unlock();
193 }
194
195 static bool cfg80211_get_conn_bss(struct wireless_dev *wdev)
196 {
197 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
198 struct cfg80211_bss *bss;
199 u16 capa = WLAN_CAPABILITY_ESS;
200
201 ASSERT_WDEV_LOCK(wdev);
202
203 if (wdev->conn->params.privacy)
204 capa |= WLAN_CAPABILITY_PRIVACY;
205
206 bss = cfg80211_get_bss(wdev->wiphy, NULL, wdev->conn->params.bssid,
207 wdev->conn->params.ssid,
208 wdev->conn->params.ssid_len,
209 WLAN_CAPABILITY_ESS | WLAN_CAPABILITY_PRIVACY,
210 capa);
211 if (!bss)
212 return false;
213
214 memcpy(wdev->conn->bssid, bss->bssid, ETH_ALEN);
215 wdev->conn->params.bssid = wdev->conn->bssid;
216 wdev->conn->params.channel = bss->channel;
217 wdev->conn->state = CFG80211_CONN_AUTHENTICATE_NEXT;
218 schedule_work(&rdev->conn_work);
219
220 cfg80211_put_bss(bss);
221 return true;
222 }
223
224 static void __cfg80211_sme_scan_done(struct net_device *dev)
225 {
226 struct wireless_dev *wdev = dev->ieee80211_ptr;
227 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
228
229 ASSERT_WDEV_LOCK(wdev);
230
231 if (wdev->sme_state != CFG80211_SME_CONNECTING)
232 return;
233
234 if (!wdev->conn)
235 return;
236
237 if (wdev->conn->state != CFG80211_CONN_SCANNING &&
238 wdev->conn->state != CFG80211_CONN_SCAN_AGAIN)
239 return;
240
241 if (!cfg80211_get_conn_bss(wdev)) {
242 /* not found */
243 if (wdev->conn->state == CFG80211_CONN_SCAN_AGAIN)
244 schedule_work(&rdev->conn_work);
245 else
246 __cfg80211_connect_result(
247 wdev->netdev,
248 wdev->conn->params.bssid,
249 NULL, 0, NULL, 0,
250 WLAN_STATUS_UNSPECIFIED_FAILURE,
251 false, NULL);
252 }
253 }
254
255 void cfg80211_sme_scan_done(struct net_device *dev)
256 {
257 struct wireless_dev *wdev = dev->ieee80211_ptr;
258
259 mutex_lock(&wiphy_to_dev(wdev->wiphy)->devlist_mtx);
260 wdev_lock(wdev);
261 __cfg80211_sme_scan_done(dev);
262 wdev_unlock(wdev);
263 mutex_unlock(&wiphy_to_dev(wdev->wiphy)->devlist_mtx);
264 }
265
266 void cfg80211_sme_rx_auth(struct net_device *dev,
267 const u8 *buf, size_t len)
268 {
269 struct wireless_dev *wdev = dev->ieee80211_ptr;
270 struct wiphy *wiphy = wdev->wiphy;
271 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
272 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)buf;
273 u16 status_code = le16_to_cpu(mgmt->u.auth.status_code);
274
275 ASSERT_WDEV_LOCK(wdev);
276
277 /* should only RX auth frames when connecting */
278 if (wdev->sme_state != CFG80211_SME_CONNECTING)
279 return;
280
281 if (WARN_ON(!wdev->conn))
282 return;
283
284 if (status_code == WLAN_STATUS_NOT_SUPPORTED_AUTH_ALG &&
285 wdev->conn->auto_auth &&
286 wdev->conn->params.auth_type != NL80211_AUTHTYPE_NETWORK_EAP) {
287 /* select automatically between only open, shared, leap */
288 switch (wdev->conn->params.auth_type) {
289 case NL80211_AUTHTYPE_OPEN_SYSTEM:
290 if (wdev->connect_keys)
291 wdev->conn->params.auth_type =
292 NL80211_AUTHTYPE_SHARED_KEY;
293 else
294 wdev->conn->params.auth_type =
295 NL80211_AUTHTYPE_NETWORK_EAP;
296 break;
297 case NL80211_AUTHTYPE_SHARED_KEY:
298 wdev->conn->params.auth_type =
299 NL80211_AUTHTYPE_NETWORK_EAP;
300 break;
301 default:
302 /* huh? */
303 wdev->conn->params.auth_type =
304 NL80211_AUTHTYPE_OPEN_SYSTEM;
305 break;
306 }
307 wdev->conn->state = CFG80211_CONN_AUTHENTICATE_NEXT;
308 schedule_work(&rdev->conn_work);
309 } else if (status_code != WLAN_STATUS_SUCCESS) {
310 __cfg80211_connect_result(dev, mgmt->bssid, NULL, 0, NULL, 0,
311 status_code, false, NULL);
312 } else if (wdev->sme_state == CFG80211_SME_CONNECTING &&
313 wdev->conn->state == CFG80211_CONN_AUTHENTICATING) {
314 wdev->conn->state = CFG80211_CONN_ASSOCIATE_NEXT;
315 schedule_work(&rdev->conn_work);
316 }
317 }
318
319 void __cfg80211_connect_result(struct net_device *dev, const u8 *bssid,
320 const u8 *req_ie, size_t req_ie_len,
321 const u8 *resp_ie, size_t resp_ie_len,
322 u16 status, bool wextev,
323 struct cfg80211_bss *bss)
324 {
325 struct wireless_dev *wdev = dev->ieee80211_ptr;
326 u8 *country_ie;
327 #ifdef CONFIG_WIRELESS_EXT
328 union iwreq_data wrqu;
329 #endif
330
331 ASSERT_WDEV_LOCK(wdev);
332
333 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_STATION))
334 return;
335
336 if (wdev->sme_state == CFG80211_SME_CONNECTED)
337 nl80211_send_roamed(wiphy_to_dev(wdev->wiphy), dev,
338 bssid, req_ie, req_ie_len,
339 resp_ie, resp_ie_len, GFP_KERNEL);
340 else
341 nl80211_send_connect_result(wiphy_to_dev(wdev->wiphy), dev,
342 bssid, req_ie, req_ie_len,
343 resp_ie, resp_ie_len,
344 status, GFP_KERNEL);
345
346 #ifdef CONFIG_WIRELESS_EXT
347 if (wextev) {
348 if (req_ie && status == WLAN_STATUS_SUCCESS) {
349 memset(&wrqu, 0, sizeof(wrqu));
350 wrqu.data.length = req_ie_len;
351 wireless_send_event(dev, IWEVASSOCREQIE, &wrqu, req_ie);
352 }
353
354 if (resp_ie && status == WLAN_STATUS_SUCCESS) {
355 memset(&wrqu, 0, sizeof(wrqu));
356 wrqu.data.length = resp_ie_len;
357 wireless_send_event(dev, IWEVASSOCRESPIE, &wrqu, resp_ie);
358 }
359
360 memset(&wrqu, 0, sizeof(wrqu));
361 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
362 if (bssid && status == WLAN_STATUS_SUCCESS)
363 memcpy(wrqu.ap_addr.sa_data, bssid, ETH_ALEN);
364 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
365 }
366 #endif
367
368 if (wdev->current_bss) {
369 cfg80211_unhold_bss(wdev->current_bss);
370 cfg80211_put_bss(&wdev->current_bss->pub);
371 wdev->current_bss = NULL;
372 }
373
374 if (status == WLAN_STATUS_SUCCESS &&
375 wdev->sme_state == CFG80211_SME_IDLE)
376 goto success;
377
378 if (wdev->sme_state != CFG80211_SME_CONNECTING)
379 return;
380
381 if (wdev->conn)
382 wdev->conn->state = CFG80211_CONN_IDLE;
383
384 if (status != WLAN_STATUS_SUCCESS) {
385 wdev->sme_state = CFG80211_SME_IDLE;
386 kfree(wdev->conn);
387 wdev->conn = NULL;
388 kfree(wdev->connect_keys);
389 wdev->connect_keys = NULL;
390 wdev->ssid_len = 0;
391 return;
392 }
393
394 success:
395 if (!bss)
396 bss = cfg80211_get_bss(wdev->wiphy, NULL, bssid,
397 wdev->ssid, wdev->ssid_len,
398 WLAN_CAPABILITY_ESS,
399 WLAN_CAPABILITY_ESS);
400
401 if (WARN_ON(!bss))
402 return;
403
404 cfg80211_hold_bss(bss_from_pub(bss));
405 wdev->current_bss = bss_from_pub(bss);
406
407 wdev->sme_state = CFG80211_SME_CONNECTED;
408 cfg80211_upload_connect_keys(wdev);
409
410 country_ie = (u8 *) ieee80211_bss_get_ie(bss, WLAN_EID_COUNTRY);
411
412 if (!country_ie)
413 return;
414
415 /*
416 * ieee80211_bss_get_ie() ensures we can access:
417 * - country_ie + 2, the start of the country ie data, and
418 * - and country_ie[1] which is the IE length
419 */
420 regulatory_hint_11d(wdev->wiphy,
421 country_ie + 2,
422 country_ie[1]);
423 }
424
425 void cfg80211_connect_result(struct net_device *dev, const u8 *bssid,
426 const u8 *req_ie, size_t req_ie_len,
427 const u8 *resp_ie, size_t resp_ie_len,
428 u16 status, gfp_t gfp)
429 {
430 struct wireless_dev *wdev = dev->ieee80211_ptr;
431 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
432 struct cfg80211_event *ev;
433 unsigned long flags;
434
435 ev = kzalloc(sizeof(*ev) + req_ie_len + resp_ie_len, gfp);
436 if (!ev)
437 return;
438
439 ev->type = EVENT_CONNECT_RESULT;
440 memcpy(ev->cr.bssid, bssid, ETH_ALEN);
441 ev->cr.req_ie = ((u8 *)ev) + sizeof(*ev);
442 ev->cr.req_ie_len = req_ie_len;
443 memcpy((void *)ev->cr.req_ie, req_ie, req_ie_len);
444 ev->cr.resp_ie = ((u8 *)ev) + sizeof(*ev) + req_ie_len;
445 ev->cr.resp_ie_len = resp_ie_len;
446 memcpy((void *)ev->cr.resp_ie, resp_ie, resp_ie_len);
447 ev->cr.status = status;
448
449 spin_lock_irqsave(&wdev->event_lock, flags);
450 list_add_tail(&ev->list, &wdev->event_list);
451 spin_unlock_irqrestore(&wdev->event_lock, flags);
452 schedule_work(&rdev->event_work);
453 }
454 EXPORT_SYMBOL(cfg80211_connect_result);
455
456 void __cfg80211_roamed(struct wireless_dev *wdev, const u8 *bssid,
457 const u8 *req_ie, size_t req_ie_len,
458 const u8 *resp_ie, size_t resp_ie_len)
459 {
460 struct cfg80211_bss *bss;
461 #ifdef CONFIG_WIRELESS_EXT
462 union iwreq_data wrqu;
463 #endif
464
465 ASSERT_WDEV_LOCK(wdev);
466
467 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_STATION))
468 return;
469
470 if (WARN_ON(wdev->sme_state != CFG80211_SME_CONNECTED))
471 return;
472
473 /* internal error -- how did we get to CONNECTED w/o BSS? */
474 if (WARN_ON(!wdev->current_bss)) {
475 return;
476 }
477
478 cfg80211_unhold_bss(wdev->current_bss);
479 cfg80211_put_bss(&wdev->current_bss->pub);
480 wdev->current_bss = NULL;
481
482 bss = cfg80211_get_bss(wdev->wiphy, NULL, bssid,
483 wdev->ssid, wdev->ssid_len,
484 WLAN_CAPABILITY_ESS, WLAN_CAPABILITY_ESS);
485
486 if (WARN_ON(!bss))
487 return;
488
489 cfg80211_hold_bss(bss_from_pub(bss));
490 wdev->current_bss = bss_from_pub(bss);
491
492 nl80211_send_roamed(wiphy_to_dev(wdev->wiphy), wdev->netdev, bssid,
493 req_ie, req_ie_len, resp_ie, resp_ie_len,
494 GFP_KERNEL);
495
496 #ifdef CONFIG_WIRELESS_EXT
497 if (req_ie) {
498 memset(&wrqu, 0, sizeof(wrqu));
499 wrqu.data.length = req_ie_len;
500 wireless_send_event(wdev->netdev, IWEVASSOCREQIE,
501 &wrqu, req_ie);
502 }
503
504 if (resp_ie) {
505 memset(&wrqu, 0, sizeof(wrqu));
506 wrqu.data.length = resp_ie_len;
507 wireless_send_event(wdev->netdev, IWEVASSOCRESPIE,
508 &wrqu, resp_ie);
509 }
510
511 memset(&wrqu, 0, sizeof(wrqu));
512 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
513 memcpy(wrqu.ap_addr.sa_data, bssid, ETH_ALEN);
514 wireless_send_event(wdev->netdev, SIOCGIWAP, &wrqu, NULL);
515 #endif
516 }
517
518 void cfg80211_roamed(struct net_device *dev, const u8 *bssid,
519 const u8 *req_ie, size_t req_ie_len,
520 const u8 *resp_ie, size_t resp_ie_len, gfp_t gfp)
521 {
522 struct wireless_dev *wdev = dev->ieee80211_ptr;
523 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
524 struct cfg80211_event *ev;
525 unsigned long flags;
526
527 ev = kzalloc(sizeof(*ev) + req_ie_len + resp_ie_len, gfp);
528 if (!ev)
529 return;
530
531 ev->type = EVENT_ROAMED;
532 memcpy(ev->rm.bssid, bssid, ETH_ALEN);
533 ev->rm.req_ie = ((u8 *)ev) + sizeof(*ev);
534 ev->rm.req_ie_len = req_ie_len;
535 memcpy((void *)ev->rm.req_ie, req_ie, req_ie_len);
536 ev->rm.resp_ie = ((u8 *)ev) + sizeof(*ev) + req_ie_len;
537 ev->rm.resp_ie_len = resp_ie_len;
538 memcpy((void *)ev->rm.resp_ie, resp_ie, resp_ie_len);
539
540 spin_lock_irqsave(&wdev->event_lock, flags);
541 list_add_tail(&ev->list, &wdev->event_list);
542 spin_unlock_irqrestore(&wdev->event_lock, flags);
543 schedule_work(&rdev->event_work);
544 }
545 EXPORT_SYMBOL(cfg80211_roamed);
546
547 void __cfg80211_disconnected(struct net_device *dev, const u8 *ie,
548 size_t ie_len, u16 reason, bool from_ap)
549 {
550 struct wireless_dev *wdev = dev->ieee80211_ptr;
551 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
552 int i;
553 #ifdef CONFIG_WIRELESS_EXT
554 union iwreq_data wrqu;
555 #endif
556
557 ASSERT_WDEV_LOCK(wdev);
558
559 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_STATION))
560 return;
561
562 if (WARN_ON(wdev->sme_state != CFG80211_SME_CONNECTED))
563 return;
564
565 if (wdev->current_bss) {
566 cfg80211_unhold_bss(wdev->current_bss);
567 cfg80211_put_bss(&wdev->current_bss->pub);
568 }
569
570 wdev->current_bss = NULL;
571 wdev->sme_state = CFG80211_SME_IDLE;
572 wdev->ssid_len = 0;
573
574 if (wdev->conn) {
575 const u8 *bssid;
576 int ret;
577
578 kfree(wdev->conn->ie);
579 wdev->conn->ie = NULL;
580 kfree(wdev->conn);
581 wdev->conn = NULL;
582
583 /*
584 * If this disconnect was due to a disassoc, we
585 * we might still have an auth BSS around. For
586 * the userspace SME that's currently expected,
587 * but for the kernel SME (nl80211 CONNECT or
588 * wireless extensions) we want to clear up all
589 * state.
590 */
591 for (i = 0; i < MAX_AUTH_BSSES; i++) {
592 if (!wdev->auth_bsses[i])
593 continue;
594 bssid = wdev->auth_bsses[i]->pub.bssid;
595 ret = __cfg80211_mlme_deauth(rdev, dev, bssid, NULL, 0,
596 WLAN_REASON_DEAUTH_LEAVING);
597 WARN(ret, "deauth failed: %d\n", ret);
598 }
599 }
600
601 nl80211_send_disconnected(rdev, dev, reason, ie, ie_len, from_ap);
602
603 /*
604 * Delete all the keys ... pairwise keys can't really
605 * exist any more anyway, but default keys might.
606 */
607 if (rdev->ops->del_key)
608 for (i = 0; i < 6; i++)
609 rdev->ops->del_key(wdev->wiphy, dev, i, NULL);
610
611 #ifdef CONFIG_WIRELESS_EXT
612 memset(&wrqu, 0, sizeof(wrqu));
613 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
614 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
615 #endif
616 }
617
618 void cfg80211_disconnected(struct net_device *dev, u16 reason,
619 u8 *ie, size_t ie_len, gfp_t gfp)
620 {
621 struct wireless_dev *wdev = dev->ieee80211_ptr;
622 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
623 struct cfg80211_event *ev;
624 unsigned long flags;
625
626 ev = kzalloc(sizeof(*ev) + ie_len, gfp);
627 if (!ev)
628 return;
629
630 ev->type = EVENT_DISCONNECTED;
631 ev->dc.ie = ((u8 *)ev) + sizeof(*ev);
632 ev->dc.ie_len = ie_len;
633 memcpy((void *)ev->dc.ie, ie, ie_len);
634 ev->dc.reason = reason;
635
636 spin_lock_irqsave(&wdev->event_lock, flags);
637 list_add_tail(&ev->list, &wdev->event_list);
638 spin_unlock_irqrestore(&wdev->event_lock, flags);
639 schedule_work(&rdev->event_work);
640 }
641 EXPORT_SYMBOL(cfg80211_disconnected);
642
643 int __cfg80211_connect(struct cfg80211_registered_device *rdev,
644 struct net_device *dev,
645 struct cfg80211_connect_params *connect,
646 struct cfg80211_cached_keys *connkeys)
647 {
648 struct wireless_dev *wdev = dev->ieee80211_ptr;
649 struct ieee80211_channel *chan;
650 int err;
651
652 ASSERT_WDEV_LOCK(wdev);
653
654 if (wdev->sme_state != CFG80211_SME_IDLE)
655 return -EALREADY;
656
657 chan = rdev_fixed_channel(rdev, wdev);
658 if (chan && chan != connect->channel)
659 return -EBUSY;
660
661 if (WARN_ON(wdev->connect_keys)) {
662 kfree(wdev->connect_keys);
663 wdev->connect_keys = NULL;
664 }
665
666 if (connkeys && connkeys->def >= 0) {
667 int idx;
668 u32 cipher;
669
670 idx = connkeys->def;
671 cipher = connkeys->params[idx].cipher;
672 /* If given a WEP key we may need it for shared key auth */
673 if (cipher == WLAN_CIPHER_SUITE_WEP40 ||
674 cipher == WLAN_CIPHER_SUITE_WEP104) {
675 connect->key_idx = idx;
676 connect->key = connkeys->params[idx].key;
677 connect->key_len = connkeys->params[idx].key_len;
678
679 /*
680 * If ciphers are not set (e.g. when going through
681 * iwconfig), we have to set them appropriately here.
682 */
683 if (connect->crypto.cipher_group == 0)
684 connect->crypto.cipher_group = cipher;
685
686 if (connect->crypto.n_ciphers_pairwise == 0) {
687 connect->crypto.n_ciphers_pairwise = 1;
688 connect->crypto.ciphers_pairwise[0] = cipher;
689 }
690 }
691 }
692
693 if (!rdev->ops->connect) {
694 if (!rdev->ops->auth || !rdev->ops->assoc)
695 return -EOPNOTSUPP;
696
697 if (WARN_ON(wdev->conn))
698 return -EINPROGRESS;
699
700 wdev->conn = kzalloc(sizeof(*wdev->conn), GFP_KERNEL);
701 if (!wdev->conn)
702 return -ENOMEM;
703
704 /*
705 * Copy all parameters, and treat explicitly IEs, BSSID, SSID.
706 */
707 memcpy(&wdev->conn->params, connect, sizeof(*connect));
708 if (connect->bssid) {
709 wdev->conn->params.bssid = wdev->conn->bssid;
710 memcpy(wdev->conn->bssid, connect->bssid, ETH_ALEN);
711 }
712
713 if (connect->ie) {
714 wdev->conn->ie = kmemdup(connect->ie, connect->ie_len,
715 GFP_KERNEL);
716 wdev->conn->params.ie = wdev->conn->ie;
717 if (!wdev->conn->ie) {
718 kfree(wdev->conn);
719 wdev->conn = NULL;
720 return -ENOMEM;
721 }
722 }
723
724 if (connect->auth_type == NL80211_AUTHTYPE_AUTOMATIC) {
725 wdev->conn->auto_auth = true;
726 /* start with open system ... should mostly work */
727 wdev->conn->params.auth_type =
728 NL80211_AUTHTYPE_OPEN_SYSTEM;
729 } else {
730 wdev->conn->auto_auth = false;
731 }
732
733 memcpy(wdev->ssid, connect->ssid, connect->ssid_len);
734 wdev->ssid_len = connect->ssid_len;
735 wdev->conn->params.ssid = wdev->ssid;
736 wdev->conn->params.ssid_len = connect->ssid_len;
737
738 /* don't care about result -- but fill bssid & channel */
739 if (!wdev->conn->params.bssid || !wdev->conn->params.channel)
740 cfg80211_get_conn_bss(wdev);
741
742 wdev->sme_state = CFG80211_SME_CONNECTING;
743 wdev->connect_keys = connkeys;
744
745 /* we're good if we have both BSSID and channel */
746 if (wdev->conn->params.bssid && wdev->conn->params.channel) {
747 wdev->conn->state = CFG80211_CONN_AUTHENTICATE_NEXT;
748 err = cfg80211_conn_do_work(wdev);
749 } else {
750 /* otherwise we'll need to scan for the AP first */
751 err = cfg80211_conn_scan(wdev);
752 /*
753 * If we can't scan right now, then we need to scan again
754 * after the current scan finished, since the parameters
755 * changed (unless we find a good AP anyway).
756 */
757 if (err == -EBUSY) {
758 err = 0;
759 wdev->conn->state = CFG80211_CONN_SCAN_AGAIN;
760 }
761 }
762 if (err) {
763 kfree(wdev->conn);
764 wdev->conn = NULL;
765 wdev->sme_state = CFG80211_SME_IDLE;
766 wdev->connect_keys = NULL;
767 wdev->ssid_len = 0;
768 }
769
770 return err;
771 } else {
772 wdev->sme_state = CFG80211_SME_CONNECTING;
773 wdev->connect_keys = connkeys;
774 err = rdev->ops->connect(&rdev->wiphy, dev, connect);
775 if (err) {
776 wdev->connect_keys = NULL;
777 wdev->sme_state = CFG80211_SME_IDLE;
778 return err;
779 }
780
781 memcpy(wdev->ssid, connect->ssid, connect->ssid_len);
782 wdev->ssid_len = connect->ssid_len;
783
784 return 0;
785 }
786 }
787
788 int cfg80211_connect(struct cfg80211_registered_device *rdev,
789 struct net_device *dev,
790 struct cfg80211_connect_params *connect,
791 struct cfg80211_cached_keys *connkeys)
792 {
793 int err;
794
795 mutex_lock(&rdev->devlist_mtx);
796 wdev_lock(dev->ieee80211_ptr);
797 err = __cfg80211_connect(rdev, dev, connect, connkeys);
798 wdev_unlock(dev->ieee80211_ptr);
799 mutex_unlock(&rdev->devlist_mtx);
800
801 return err;
802 }
803
804 int __cfg80211_disconnect(struct cfg80211_registered_device *rdev,
805 struct net_device *dev, u16 reason, bool wextev)
806 {
807 struct wireless_dev *wdev = dev->ieee80211_ptr;
808 int err;
809
810 ASSERT_WDEV_LOCK(wdev);
811
812 if (wdev->sme_state == CFG80211_SME_IDLE)
813 return -EINVAL;
814
815 kfree(wdev->connect_keys);
816 wdev->connect_keys = NULL;
817
818 if (!rdev->ops->disconnect) {
819 if (!rdev->ops->deauth)
820 return -EOPNOTSUPP;
821
822 /* was it connected by userspace SME? */
823 if (!wdev->conn) {
824 cfg80211_mlme_down(rdev, dev);
825 return 0;
826 }
827
828 if (wdev->sme_state == CFG80211_SME_CONNECTING &&
829 (wdev->conn->state == CFG80211_CONN_SCANNING ||
830 wdev->conn->state == CFG80211_CONN_SCAN_AGAIN)) {
831 wdev->sme_state = CFG80211_SME_IDLE;
832 kfree(wdev->conn);
833 wdev->conn = NULL;
834 wdev->ssid_len = 0;
835 return 0;
836 }
837
838 /* wdev->conn->params.bssid must be set if > SCANNING */
839 err = __cfg80211_mlme_deauth(rdev, dev,
840 wdev->conn->params.bssid,
841 NULL, 0, reason);
842 if (err)
843 return err;
844 } else {
845 err = rdev->ops->disconnect(&rdev->wiphy, dev, reason);
846 if (err)
847 return err;
848 }
849
850 if (wdev->sme_state == CFG80211_SME_CONNECTED)
851 __cfg80211_disconnected(dev, NULL, 0, 0, false);
852 else if (wdev->sme_state == CFG80211_SME_CONNECTING)
853 __cfg80211_connect_result(dev, NULL, NULL, 0, NULL, 0,
854 WLAN_STATUS_UNSPECIFIED_FAILURE,
855 wextev, NULL);
856
857 return 0;
858 }
859
860 int cfg80211_disconnect(struct cfg80211_registered_device *rdev,
861 struct net_device *dev,
862 u16 reason, bool wextev)
863 {
864 int err;
865
866 wdev_lock(dev->ieee80211_ptr);
867 err = __cfg80211_disconnect(rdev, dev, reason, wextev);
868 wdev_unlock(dev->ieee80211_ptr);
869
870 return err;
871 }
872
873 void cfg80211_sme_disassoc(struct net_device *dev, int idx)
874 {
875 struct wireless_dev *wdev = dev->ieee80211_ptr;
876 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
877 u8 bssid[ETH_ALEN];
878
879 ASSERT_WDEV_LOCK(wdev);
880
881 if (!wdev->conn)
882 return;
883
884 if (wdev->conn->state == CFG80211_CONN_IDLE)
885 return;
886
887 /*
888 * Ok, so the association was made by this SME -- we don't
889 * want it any more so deauthenticate too.
890 */
891
892 if (!wdev->auth_bsses[idx])
893 return;
894
895 memcpy(bssid, wdev->auth_bsses[idx]->pub.bssid, ETH_ALEN);
896 if (__cfg80211_mlme_deauth(rdev, dev, bssid,
897 NULL, 0, WLAN_REASON_DEAUTH_LEAVING)) {
898 /* whatever -- assume gone anyway */
899 cfg80211_unhold_bss(wdev->auth_bsses[idx]);
900 cfg80211_put_bss(&wdev->auth_bsses[idx]->pub);
901 wdev->auth_bsses[idx] = NULL;
902 }
903 }
x86 "subsystem" repository