2 * SME code for cfg80211's connect emulation.
4 * Copyright 2009 Johannes Berg <johannes@sipsolutions.net>
5 * Copyright (C) 2009 Intel Corporation. All rights reserved.
8 #include <linux/etherdevice.h>
9 #include <linux/if_arp.h>
10 #include <linux/workqueue.h>
11 #include <linux/wireless.h>
12 #include <net/iw_handler.h>
13 #include <net/cfg80211.h>
14 #include <net/rtnetlink.h>
18 struct cfg80211_conn {
19 struct cfg80211_connect_params params;
20 /* these are sub-states of the _CONNECTING sme_state */
23 CFG80211_CONN_SCANNING,
24 CFG80211_CONN_SCAN_AGAIN,
25 CFG80211_CONN_AUTHENTICATE_NEXT,
26 CFG80211_CONN_AUTHENTICATING,
27 CFG80211_CONN_ASSOCIATE_NEXT,
28 CFG80211_CONN_ASSOCIATING,
29 CFG80211_CONN_DEAUTH_ASSOC_FAIL,
31 u8 bssid[ETH_ALEN], prev_bssid[ETH_ALEN];
34 bool auto_auth, prev_bssid_valid;
37 bool cfg80211_is_all_idle(void)
39 struct cfg80211_registered_device *rdev;
40 struct wireless_dev *wdev;
41 bool is_all_idle = true;
43 mutex_lock(&cfg80211_mutex);
46 * All devices must be idle as otherwise if you are actively
47 * scanning some new beacon hints could be learned and would
48 * count as new regulatory hints.
50 list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
51 cfg80211_lock_rdev(rdev);
52 list_for_each_entry(wdev, &rdev->netdev_list, list) {
54 if (wdev->sme_state != CFG80211_SME_IDLE)
58 cfg80211_unlock_rdev(rdev);
61 mutex_unlock(&cfg80211_mutex);
66 static void disconnect_work(struct work_struct *work)
68 if (!cfg80211_is_all_idle())
71 regulatory_hint_disconnect();
74 static DECLARE_WORK(cfg80211_disconnect_work, disconnect_work);
76 static int cfg80211_conn_scan(struct wireless_dev *wdev)
78 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
79 struct cfg80211_scan_request *request;
83 ASSERT_RDEV_LOCK(rdev);
84 ASSERT_WDEV_LOCK(wdev);
89 if (wdev->conn->params.channel) {
92 enum ieee80211_band band;
95 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
96 if (!wdev->wiphy->bands[band])
98 n_channels += wdev->wiphy->bands[band]->n_channels;
101 request = kzalloc(sizeof(*request) + sizeof(request->ssids[0]) +
102 sizeof(request->channels[0]) * n_channels,
107 if (wdev->conn->params.channel)
108 request->channels[0] = wdev->conn->params.channel;
111 enum ieee80211_band band;
113 for (band = 0; band < IEEE80211_NUM_BANDS; band++) {
114 if (!wdev->wiphy->bands[band])
116 for (j = 0; j < wdev->wiphy->bands[band]->n_channels;
118 request->channels[i] =
119 &wdev->wiphy->bands[band]->channels[j];
122 request->n_channels = n_channels;
123 request->ssids = (void *)&request->channels[n_channels];
124 request->n_ssids = 1;
126 memcpy(request->ssids[0].ssid, wdev->conn->params.ssid,
127 wdev->conn->params.ssid_len);
128 request->ssids[0].ssid_len = wdev->conn->params.ssid_len;
130 request->dev = wdev->netdev;
131 request->wiphy = &rdev->wiphy;
133 rdev->scan_req = request;
135 err = rdev->ops->scan(wdev->wiphy, wdev->netdev, request);
137 wdev->conn->state = CFG80211_CONN_SCANNING;
138 nl80211_send_scan_start(rdev, wdev->netdev);
139 dev_hold(wdev->netdev);
141 rdev->scan_req = NULL;
147 static int cfg80211_conn_do_work(struct wireless_dev *wdev)
149 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
150 struct cfg80211_connect_params *params;
151 const u8 *prev_bssid = NULL;
154 ASSERT_WDEV_LOCK(wdev);
159 params = &wdev->conn->params;
161 switch (wdev->conn->state) {
162 case CFG80211_CONN_SCAN_AGAIN:
163 return cfg80211_conn_scan(wdev);
164 case CFG80211_CONN_AUTHENTICATE_NEXT:
165 BUG_ON(!rdev->ops->auth);
166 wdev->conn->state = CFG80211_CONN_AUTHENTICATING;
167 return __cfg80211_mlme_auth(rdev, wdev->netdev,
168 params->channel, params->auth_type,
170 params->ssid, params->ssid_len,
172 params->key, params->key_len,
173 params->key_idx, false);
174 case CFG80211_CONN_ASSOCIATE_NEXT:
175 BUG_ON(!rdev->ops->assoc);
176 wdev->conn->state = CFG80211_CONN_ASSOCIATING;
177 if (wdev->conn->prev_bssid_valid)
178 prev_bssid = wdev->conn->prev_bssid;
179 err = __cfg80211_mlme_assoc(rdev, wdev->netdev,
180 params->channel, params->bssid,
182 params->ssid, params->ssid_len,
183 params->ie, params->ie_len,
184 false, ¶ms->crypto);
186 __cfg80211_mlme_deauth(rdev, wdev->netdev, params->bssid,
188 WLAN_REASON_DEAUTH_LEAVING,
191 case CFG80211_CONN_DEAUTH_ASSOC_FAIL:
192 __cfg80211_mlme_deauth(rdev, wdev->netdev, params->bssid,
194 WLAN_REASON_DEAUTH_LEAVING, false);
195 /* return an error so that we call __cfg80211_connect_result() */
202 void cfg80211_conn_work(struct work_struct *work)
204 struct cfg80211_registered_device *rdev =
205 container_of(work, struct cfg80211_registered_device, conn_work);
206 struct wireless_dev *wdev;
207 u8 bssid_buf[ETH_ALEN], *bssid = NULL;
210 cfg80211_lock_rdev(rdev);
211 mutex_lock(&rdev->devlist_mtx);
213 list_for_each_entry(wdev, &rdev->netdev_list, list) {
215 if (!netif_running(wdev->netdev)) {
219 if (wdev->sme_state != CFG80211_SME_CONNECTING) {
223 if (wdev->conn->params.bssid) {
224 memcpy(bssid_buf, wdev->conn->params.bssid, ETH_ALEN);
227 if (cfg80211_conn_do_work(wdev))
228 __cfg80211_connect_result(
231 WLAN_STATUS_UNSPECIFIED_FAILURE,
236 mutex_unlock(&rdev->devlist_mtx);
237 cfg80211_unlock_rdev(rdev);
241 static struct cfg80211_bss *cfg80211_get_conn_bss(struct wireless_dev *wdev)
243 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
244 struct cfg80211_bss *bss;
245 u16 capa = WLAN_CAPABILITY_ESS;
247 ASSERT_WDEV_LOCK(wdev);
249 if (wdev->conn->params.privacy)
250 capa |= WLAN_CAPABILITY_PRIVACY;
252 bss = cfg80211_get_bss(wdev->wiphy, NULL, wdev->conn->params.bssid,
253 wdev->conn->params.ssid,
254 wdev->conn->params.ssid_len,
255 WLAN_CAPABILITY_ESS | WLAN_CAPABILITY_PRIVACY,
260 memcpy(wdev->conn->bssid, bss->bssid, ETH_ALEN);
261 wdev->conn->params.bssid = wdev->conn->bssid;
262 wdev->conn->params.channel = bss->channel;
263 wdev->conn->state = CFG80211_CONN_AUTHENTICATE_NEXT;
264 schedule_work(&rdev->conn_work);
269 static void __cfg80211_sme_scan_done(struct net_device *dev)
271 struct wireless_dev *wdev = dev->ieee80211_ptr;
272 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
273 struct cfg80211_bss *bss;
275 ASSERT_WDEV_LOCK(wdev);
277 if (wdev->sme_state != CFG80211_SME_CONNECTING)
283 if (wdev->conn->state != CFG80211_CONN_SCANNING &&
284 wdev->conn->state != CFG80211_CONN_SCAN_AGAIN)
287 bss = cfg80211_get_conn_bss(wdev);
289 cfg80211_put_bss(bss);
292 if (wdev->conn->state == CFG80211_CONN_SCAN_AGAIN)
293 schedule_work(&rdev->conn_work);
295 __cfg80211_connect_result(
297 wdev->conn->params.bssid,
299 WLAN_STATUS_UNSPECIFIED_FAILURE,
304 void cfg80211_sme_scan_done(struct net_device *dev)
306 struct wireless_dev *wdev = dev->ieee80211_ptr;
308 mutex_lock(&wiphy_to_dev(wdev->wiphy)->devlist_mtx);
310 __cfg80211_sme_scan_done(dev);
312 mutex_unlock(&wiphy_to_dev(wdev->wiphy)->devlist_mtx);
315 void cfg80211_sme_rx_auth(struct net_device *dev,
316 const u8 *buf, size_t len)
318 struct wireless_dev *wdev = dev->ieee80211_ptr;
319 struct wiphy *wiphy = wdev->wiphy;
320 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
321 struct ieee80211_mgmt *mgmt = (struct ieee80211_mgmt *)buf;
322 u16 status_code = le16_to_cpu(mgmt->u.auth.status_code);
324 ASSERT_WDEV_LOCK(wdev);
326 /* should only RX auth frames when connecting */
327 if (wdev->sme_state != CFG80211_SME_CONNECTING)
330 if (WARN_ON(!wdev->conn))
333 if (status_code == WLAN_STATUS_NOT_SUPPORTED_AUTH_ALG &&
334 wdev->conn->auto_auth &&
335 wdev->conn->params.auth_type != NL80211_AUTHTYPE_NETWORK_EAP) {
336 /* select automatically between only open, shared, leap */
337 switch (wdev->conn->params.auth_type) {
338 case NL80211_AUTHTYPE_OPEN_SYSTEM:
339 if (wdev->connect_keys)
340 wdev->conn->params.auth_type =
341 NL80211_AUTHTYPE_SHARED_KEY;
343 wdev->conn->params.auth_type =
344 NL80211_AUTHTYPE_NETWORK_EAP;
346 case NL80211_AUTHTYPE_SHARED_KEY:
347 wdev->conn->params.auth_type =
348 NL80211_AUTHTYPE_NETWORK_EAP;
352 wdev->conn->params.auth_type =
353 NL80211_AUTHTYPE_OPEN_SYSTEM;
356 wdev->conn->state = CFG80211_CONN_AUTHENTICATE_NEXT;
357 schedule_work(&rdev->conn_work);
358 } else if (status_code != WLAN_STATUS_SUCCESS) {
359 __cfg80211_connect_result(dev, mgmt->bssid, NULL, 0, NULL, 0,
360 status_code, false, NULL);
361 } else if (wdev->sme_state == CFG80211_SME_CONNECTING &&
362 wdev->conn->state == CFG80211_CONN_AUTHENTICATING) {
363 wdev->conn->state = CFG80211_CONN_ASSOCIATE_NEXT;
364 schedule_work(&rdev->conn_work);
368 bool cfg80211_sme_failed_reassoc(struct wireless_dev *wdev)
370 struct wiphy *wiphy = wdev->wiphy;
371 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
373 if (WARN_ON(!wdev->conn))
376 if (!wdev->conn->prev_bssid_valid)
380 * Some stupid APs don't accept reassoc, so we
381 * need to fall back to trying regular assoc.
383 wdev->conn->prev_bssid_valid = false;
384 wdev->conn->state = CFG80211_CONN_ASSOCIATE_NEXT;
385 schedule_work(&rdev->conn_work);
390 void cfg80211_sme_failed_assoc(struct wireless_dev *wdev)
392 struct wiphy *wiphy = wdev->wiphy;
393 struct cfg80211_registered_device *rdev = wiphy_to_dev(wiphy);
395 wdev->conn->state = CFG80211_CONN_DEAUTH_ASSOC_FAIL;
396 schedule_work(&rdev->conn_work);
399 void __cfg80211_connect_result(struct net_device *dev, const u8 *bssid,
400 const u8 *req_ie, size_t req_ie_len,
401 const u8 *resp_ie, size_t resp_ie_len,
402 u16 status, bool wextev,
403 struct cfg80211_bss *bss)
405 struct wireless_dev *wdev = dev->ieee80211_ptr;
407 #ifdef CONFIG_CFG80211_WEXT
408 union iwreq_data wrqu;
411 ASSERT_WDEV_LOCK(wdev);
413 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_STATION))
416 if (wdev->sme_state != CFG80211_SME_CONNECTING)
419 nl80211_send_connect_result(wiphy_to_dev(wdev->wiphy), dev,
420 bssid, req_ie, req_ie_len,
421 resp_ie, resp_ie_len,
424 #ifdef CONFIG_CFG80211_WEXT
426 if (req_ie && status == WLAN_STATUS_SUCCESS) {
427 memset(&wrqu, 0, sizeof(wrqu));
428 wrqu.data.length = req_ie_len;
429 wireless_send_event(dev, IWEVASSOCREQIE, &wrqu, req_ie);
432 if (resp_ie && status == WLAN_STATUS_SUCCESS) {
433 memset(&wrqu, 0, sizeof(wrqu));
434 wrqu.data.length = resp_ie_len;
435 wireless_send_event(dev, IWEVASSOCRESPIE, &wrqu, resp_ie);
438 memset(&wrqu, 0, sizeof(wrqu));
439 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
440 if (bssid && status == WLAN_STATUS_SUCCESS) {
441 memcpy(wrqu.ap_addr.sa_data, bssid, ETH_ALEN);
442 memcpy(wdev->wext.prev_bssid, bssid, ETH_ALEN);
443 wdev->wext.prev_bssid_valid = true;
445 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
449 if (wdev->current_bss) {
450 cfg80211_unhold_bss(wdev->current_bss);
451 cfg80211_put_bss(&wdev->current_bss->pub);
452 wdev->current_bss = NULL;
456 wdev->conn->state = CFG80211_CONN_IDLE;
458 if (status != WLAN_STATUS_SUCCESS) {
459 wdev->sme_state = CFG80211_SME_IDLE;
461 kfree(wdev->conn->ie);
464 kfree(wdev->connect_keys);
465 wdev->connect_keys = NULL;
471 bss = cfg80211_get_bss(wdev->wiphy, NULL, bssid,
472 wdev->ssid, wdev->ssid_len,
474 WLAN_CAPABILITY_ESS);
479 cfg80211_hold_bss(bss_from_pub(bss));
480 wdev->current_bss = bss_from_pub(bss);
482 wdev->sme_state = CFG80211_SME_CONNECTED;
483 cfg80211_upload_connect_keys(wdev);
485 country_ie = (u8 *) ieee80211_bss_get_ie(bss, WLAN_EID_COUNTRY);
491 * ieee80211_bss_get_ie() ensures we can access:
492 * - country_ie + 2, the start of the country ie data, and
493 * - and country_ie[1] which is the IE length
495 regulatory_hint_11d(wdev->wiphy,
501 void cfg80211_connect_result(struct net_device *dev, const u8 *bssid,
502 const u8 *req_ie, size_t req_ie_len,
503 const u8 *resp_ie, size_t resp_ie_len,
504 u16 status, gfp_t gfp)
506 struct wireless_dev *wdev = dev->ieee80211_ptr;
507 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
508 struct cfg80211_event *ev;
511 CFG80211_DEV_WARN_ON(wdev->sme_state != CFG80211_SME_CONNECTING);
513 ev = kzalloc(sizeof(*ev) + req_ie_len + resp_ie_len, gfp);
517 ev->type = EVENT_CONNECT_RESULT;
519 memcpy(ev->cr.bssid, bssid, ETH_ALEN);
521 ev->cr.req_ie = ((u8 *)ev) + sizeof(*ev);
522 ev->cr.req_ie_len = req_ie_len;
523 memcpy((void *)ev->cr.req_ie, req_ie, req_ie_len);
526 ev->cr.resp_ie = ((u8 *)ev) + sizeof(*ev) + req_ie_len;
527 ev->cr.resp_ie_len = resp_ie_len;
528 memcpy((void *)ev->cr.resp_ie, resp_ie, resp_ie_len);
530 ev->cr.status = status;
532 spin_lock_irqsave(&wdev->event_lock, flags);
533 list_add_tail(&ev->list, &wdev->event_list);
534 spin_unlock_irqrestore(&wdev->event_lock, flags);
535 queue_work(cfg80211_wq, &rdev->event_work);
537 EXPORT_SYMBOL(cfg80211_connect_result);
539 void __cfg80211_roamed(struct wireless_dev *wdev, const u8 *bssid,
540 const u8 *req_ie, size_t req_ie_len,
541 const u8 *resp_ie, size_t resp_ie_len)
543 struct cfg80211_bss *bss;
544 #ifdef CONFIG_CFG80211_WEXT
545 union iwreq_data wrqu;
548 ASSERT_WDEV_LOCK(wdev);
550 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_STATION))
553 if (wdev->sme_state != CFG80211_SME_CONNECTED)
556 /* internal error -- how did we get to CONNECTED w/o BSS? */
557 if (WARN_ON(!wdev->current_bss)) {
561 cfg80211_unhold_bss(wdev->current_bss);
562 cfg80211_put_bss(&wdev->current_bss->pub);
563 wdev->current_bss = NULL;
565 bss = cfg80211_get_bss(wdev->wiphy, NULL, bssid,
566 wdev->ssid, wdev->ssid_len,
567 WLAN_CAPABILITY_ESS, WLAN_CAPABILITY_ESS);
572 cfg80211_hold_bss(bss_from_pub(bss));
573 wdev->current_bss = bss_from_pub(bss);
575 nl80211_send_roamed(wiphy_to_dev(wdev->wiphy), wdev->netdev, bssid,
576 req_ie, req_ie_len, resp_ie, resp_ie_len,
579 #ifdef CONFIG_CFG80211_WEXT
581 memset(&wrqu, 0, sizeof(wrqu));
582 wrqu.data.length = req_ie_len;
583 wireless_send_event(wdev->netdev, IWEVASSOCREQIE,
588 memset(&wrqu, 0, sizeof(wrqu));
589 wrqu.data.length = resp_ie_len;
590 wireless_send_event(wdev->netdev, IWEVASSOCRESPIE,
594 memset(&wrqu, 0, sizeof(wrqu));
595 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
596 memcpy(wrqu.ap_addr.sa_data, bssid, ETH_ALEN);
597 memcpy(wdev->wext.prev_bssid, bssid, ETH_ALEN);
598 wdev->wext.prev_bssid_valid = true;
599 wireless_send_event(wdev->netdev, SIOCGIWAP, &wrqu, NULL);
603 void cfg80211_roamed(struct net_device *dev, const u8 *bssid,
604 const u8 *req_ie, size_t req_ie_len,
605 const u8 *resp_ie, size_t resp_ie_len, gfp_t gfp)
607 struct wireless_dev *wdev = dev->ieee80211_ptr;
608 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
609 struct cfg80211_event *ev;
612 CFG80211_DEV_WARN_ON(wdev->sme_state != CFG80211_SME_CONNECTED);
614 ev = kzalloc(sizeof(*ev) + req_ie_len + resp_ie_len, gfp);
618 ev->type = EVENT_ROAMED;
619 memcpy(ev->rm.bssid, bssid, ETH_ALEN);
620 ev->rm.req_ie = ((u8 *)ev) + sizeof(*ev);
621 ev->rm.req_ie_len = req_ie_len;
622 memcpy((void *)ev->rm.req_ie, req_ie, req_ie_len);
623 ev->rm.resp_ie = ((u8 *)ev) + sizeof(*ev) + req_ie_len;
624 ev->rm.resp_ie_len = resp_ie_len;
625 memcpy((void *)ev->rm.resp_ie, resp_ie, resp_ie_len);
627 spin_lock_irqsave(&wdev->event_lock, flags);
628 list_add_tail(&ev->list, &wdev->event_list);
629 spin_unlock_irqrestore(&wdev->event_lock, flags);
630 queue_work(cfg80211_wq, &rdev->event_work);
632 EXPORT_SYMBOL(cfg80211_roamed);
634 void __cfg80211_disconnected(struct net_device *dev, const u8 *ie,
635 size_t ie_len, u16 reason, bool from_ap)
637 struct wireless_dev *wdev = dev->ieee80211_ptr;
638 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
640 #ifdef CONFIG_CFG80211_WEXT
641 union iwreq_data wrqu;
644 ASSERT_WDEV_LOCK(wdev);
646 if (WARN_ON(wdev->iftype != NL80211_IFTYPE_STATION))
649 if (wdev->sme_state != CFG80211_SME_CONNECTED)
652 if (wdev->current_bss) {
653 cfg80211_unhold_bss(wdev->current_bss);
654 cfg80211_put_bss(&wdev->current_bss->pub);
657 wdev->current_bss = NULL;
658 wdev->sme_state = CFG80211_SME_IDLE;
665 kfree(wdev->conn->ie);
666 wdev->conn->ie = NULL;
671 * If this disconnect was due to a disassoc, we
672 * we might still have an auth BSS around. For
673 * the userspace SME that's currently expected,
674 * but for the kernel SME (nl80211 CONNECT or
675 * wireless extensions) we want to clear up all
678 for (i = 0; i < MAX_AUTH_BSSES; i++) {
679 if (!wdev->auth_bsses[i])
681 bssid = wdev->auth_bsses[i]->pub.bssid;
682 ret = __cfg80211_mlme_deauth(rdev, dev, bssid, NULL, 0,
683 WLAN_REASON_DEAUTH_LEAVING,
685 WARN(ret, "deauth failed: %d\n", ret);
689 nl80211_send_disconnected(rdev, dev, reason, ie, ie_len, from_ap);
692 * Delete all the keys ... pairwise keys can't really
693 * exist any more anyway, but default keys might.
695 if (rdev->ops->del_key)
696 for (i = 0; i < 6; i++)
697 rdev->ops->del_key(wdev->wiphy, dev, i, NULL);
699 #ifdef CONFIG_CFG80211_WEXT
700 memset(&wrqu, 0, sizeof(wrqu));
701 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
702 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
703 wdev->wext.connect.ssid_len = 0;
706 schedule_work(&cfg80211_disconnect_work);
709 void cfg80211_disconnected(struct net_device *dev, u16 reason,
710 u8 *ie, size_t ie_len, gfp_t gfp)
712 struct wireless_dev *wdev = dev->ieee80211_ptr;
713 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
714 struct cfg80211_event *ev;
717 CFG80211_DEV_WARN_ON(wdev->sme_state != CFG80211_SME_CONNECTED);
719 ev = kzalloc(sizeof(*ev) + ie_len, gfp);
723 ev->type = EVENT_DISCONNECTED;
724 ev->dc.ie = ((u8 *)ev) + sizeof(*ev);
725 ev->dc.ie_len = ie_len;
726 memcpy((void *)ev->dc.ie, ie, ie_len);
727 ev->dc.reason = reason;
729 spin_lock_irqsave(&wdev->event_lock, flags);
730 list_add_tail(&ev->list, &wdev->event_list);
731 spin_unlock_irqrestore(&wdev->event_lock, flags);
732 queue_work(cfg80211_wq, &rdev->event_work);
734 EXPORT_SYMBOL(cfg80211_disconnected);
736 int __cfg80211_connect(struct cfg80211_registered_device *rdev,
737 struct net_device *dev,
738 struct cfg80211_connect_params *connect,
739 struct cfg80211_cached_keys *connkeys,
740 const u8 *prev_bssid)
742 struct wireless_dev *wdev = dev->ieee80211_ptr;
743 struct ieee80211_channel *chan;
744 struct cfg80211_bss *bss = NULL;
747 ASSERT_WDEV_LOCK(wdev);
749 if (wdev->sme_state != CFG80211_SME_IDLE)
752 chan = rdev_fixed_channel(rdev, wdev);
753 if (chan && chan != connect->channel)
756 if (WARN_ON(wdev->connect_keys)) {
757 kfree(wdev->connect_keys);
758 wdev->connect_keys = NULL;
761 if (connkeys && connkeys->def >= 0) {
766 cipher = connkeys->params[idx].cipher;
767 /* If given a WEP key we may need it for shared key auth */
768 if (cipher == WLAN_CIPHER_SUITE_WEP40 ||
769 cipher == WLAN_CIPHER_SUITE_WEP104) {
770 connect->key_idx = idx;
771 connect->key = connkeys->params[idx].key;
772 connect->key_len = connkeys->params[idx].key_len;
775 * If ciphers are not set (e.g. when going through
776 * iwconfig), we have to set them appropriately here.
778 if (connect->crypto.cipher_group == 0)
779 connect->crypto.cipher_group = cipher;
781 if (connect->crypto.n_ciphers_pairwise == 0) {
782 connect->crypto.n_ciphers_pairwise = 1;
783 connect->crypto.ciphers_pairwise[0] = cipher;
788 if (!rdev->ops->connect) {
789 if (!rdev->ops->auth || !rdev->ops->assoc)
792 if (WARN_ON(wdev->conn))
795 wdev->conn = kzalloc(sizeof(*wdev->conn), GFP_KERNEL);
800 * Copy all parameters, and treat explicitly IEs, BSSID, SSID.
802 memcpy(&wdev->conn->params, connect, sizeof(*connect));
803 if (connect->bssid) {
804 wdev->conn->params.bssid = wdev->conn->bssid;
805 memcpy(wdev->conn->bssid, connect->bssid, ETH_ALEN);
809 wdev->conn->ie = kmemdup(connect->ie, connect->ie_len,
811 wdev->conn->params.ie = wdev->conn->ie;
812 if (!wdev->conn->ie) {
819 if (connect->auth_type == NL80211_AUTHTYPE_AUTOMATIC) {
820 wdev->conn->auto_auth = true;
821 /* start with open system ... should mostly work */
822 wdev->conn->params.auth_type =
823 NL80211_AUTHTYPE_OPEN_SYSTEM;
825 wdev->conn->auto_auth = false;
828 memcpy(wdev->ssid, connect->ssid, connect->ssid_len);
829 wdev->ssid_len = connect->ssid_len;
830 wdev->conn->params.ssid = wdev->ssid;
831 wdev->conn->params.ssid_len = connect->ssid_len;
833 /* see if we have the bss already */
834 bss = cfg80211_get_conn_bss(wdev);
836 wdev->sme_state = CFG80211_SME_CONNECTING;
837 wdev->connect_keys = connkeys;
840 memcpy(wdev->conn->prev_bssid, prev_bssid, ETH_ALEN);
841 wdev->conn->prev_bssid_valid = true;
844 /* we're good if we have a matching bss struct */
846 wdev->conn->state = CFG80211_CONN_AUTHENTICATE_NEXT;
847 err = cfg80211_conn_do_work(wdev);
848 cfg80211_put_bss(bss);
850 /* otherwise we'll need to scan for the AP first */
851 err = cfg80211_conn_scan(wdev);
853 * If we can't scan right now, then we need to scan again
854 * after the current scan finished, since the parameters
855 * changed (unless we find a good AP anyway).
859 wdev->conn->state = CFG80211_CONN_SCAN_AGAIN;
863 kfree(wdev->conn->ie);
866 wdev->sme_state = CFG80211_SME_IDLE;
867 wdev->connect_keys = NULL;
873 wdev->sme_state = CFG80211_SME_CONNECTING;
874 wdev->connect_keys = connkeys;
875 err = rdev->ops->connect(&rdev->wiphy, dev, connect);
877 wdev->connect_keys = NULL;
878 wdev->sme_state = CFG80211_SME_IDLE;
882 memcpy(wdev->ssid, connect->ssid, connect->ssid_len);
883 wdev->ssid_len = connect->ssid_len;
889 int cfg80211_connect(struct cfg80211_registered_device *rdev,
890 struct net_device *dev,
891 struct cfg80211_connect_params *connect,
892 struct cfg80211_cached_keys *connkeys)
896 mutex_lock(&rdev->devlist_mtx);
897 wdev_lock(dev->ieee80211_ptr);
898 err = __cfg80211_connect(rdev, dev, connect, connkeys, NULL);
899 wdev_unlock(dev->ieee80211_ptr);
900 mutex_unlock(&rdev->devlist_mtx);
905 int __cfg80211_disconnect(struct cfg80211_registered_device *rdev,
906 struct net_device *dev, u16 reason, bool wextev)
908 struct wireless_dev *wdev = dev->ieee80211_ptr;
911 ASSERT_WDEV_LOCK(wdev);
913 if (wdev->sme_state == CFG80211_SME_IDLE)
916 kfree(wdev->connect_keys);
917 wdev->connect_keys = NULL;
919 if (!rdev->ops->disconnect) {
920 if (!rdev->ops->deauth)
923 /* was it connected by userspace SME? */
925 cfg80211_mlme_down(rdev, dev);
929 if (wdev->sme_state == CFG80211_SME_CONNECTING &&
930 (wdev->conn->state == CFG80211_CONN_SCANNING ||
931 wdev->conn->state == CFG80211_CONN_SCAN_AGAIN)) {
932 wdev->sme_state = CFG80211_SME_IDLE;
933 kfree(wdev->conn->ie);
940 /* wdev->conn->params.bssid must be set if > SCANNING */
941 err = __cfg80211_mlme_deauth(rdev, dev,
942 wdev->conn->params.bssid,
943 NULL, 0, reason, false);
947 err = rdev->ops->disconnect(&rdev->wiphy, dev, reason);
952 if (wdev->sme_state == CFG80211_SME_CONNECTED)
953 __cfg80211_disconnected(dev, NULL, 0, 0, false);
954 else if (wdev->sme_state == CFG80211_SME_CONNECTING)
955 __cfg80211_connect_result(dev, NULL, NULL, 0, NULL, 0,
956 WLAN_STATUS_UNSPECIFIED_FAILURE,
962 int cfg80211_disconnect(struct cfg80211_registered_device *rdev,
963 struct net_device *dev,
964 u16 reason, bool wextev)
968 wdev_lock(dev->ieee80211_ptr);
969 err = __cfg80211_disconnect(rdev, dev, reason, wextev);
970 wdev_unlock(dev->ieee80211_ptr);
975 void cfg80211_sme_disassoc(struct net_device *dev, int idx)
977 struct wireless_dev *wdev = dev->ieee80211_ptr;
978 struct cfg80211_registered_device *rdev = wiphy_to_dev(wdev->wiphy);
981 ASSERT_WDEV_LOCK(wdev);
986 if (wdev->conn->state == CFG80211_CONN_IDLE)
990 * Ok, so the association was made by this SME -- we don't
991 * want it any more so deauthenticate too.
994 if (!wdev->auth_bsses[idx])
997 memcpy(bssid, wdev->auth_bsses[idx]->pub.bssid, ETH_ALEN);
998 if (__cfg80211_mlme_deauth(rdev, dev, bssid,
999 NULL, 0, WLAN_REASON_DEAUTH_LEAVING,
1001 /* whatever -- assume gone anyway */
1002 cfg80211_unhold_bss(wdev->auth_bsses[idx]);
1003 cfg80211_put_bss(&wdev->auth_bsses[idx]->pub);
1004 wdev->auth_bsses[idx] = NULL;