1 // SPDX-License-Identifier: GPL-2.0-only
2 /*
3 * mac80211_hwsim - software simulator of 802.11 radio(s) for mac80211
4 * Copyright (c) 2008, Jouni Malinen <j@w1.fi>
5 * Copyright (c) 2011, Javier Lopez <jlopex@gmail.com>
6 * Copyright (c) 2016 - 2017 Intel Deutschland GmbH
7 * Copyright (C) 2018 - 2024 Intel Corporation
8 */
9
10 /*
11 * TODO:
12 * - Add TSF sync and fix IBSS beacon transmission by adding
13 * competition for "air time" at TBTT
14 * - RX filtering based on filter configuration (data->rx_filter)
15 */
16
17 #include <linux/list.h>
18 #include <linux/slab.h>
19 #include <linux/spinlock.h>
20 #include <net/dst.h>
21 #include <net/xfrm.h>
22 #include <net/mac80211.h>
23 #include <net/ieee80211_radiotap.h>
24 #include <linux/if_arp.h>
25 #include <linux/rtnetlink.h>
26 #include <linux/etherdevice.h>
27 #include <linux/platform_device.h>
28 #include <linux/debugfs.h>
29 #include <linux/module.h>
30 #include <linux/ktime.h>
31 #include <net/genetlink.h>
32 #include <net/net_namespace.h>
33 #include <net/netns/generic.h>
34 #include <linux/rhashtable.h>
35 #include <linux/nospec.h>
36 #include <linux/virtio.h>
37 #include <linux/virtio_ids.h>
38 #include <linux/virtio_config.h>
39 #include "mac80211_hwsim.h"
40
41 #define WARN_QUEUE 100
42 #define MAX_QUEUE 200
43
44 MODULE_AUTHOR("Jouni Malinen");
45 MODULE_DESCRIPTION("Software simulator of 802.11 radio(s) for mac80211");
46 MODULE_LICENSE("GPL");
47
48 static int radios = 2;
49 module_param(radios, int, 0444);
50 MODULE_PARM_DESC(radios, "Number of simulated radios");
51
52 static int channels = 1;
53 module_param(channels, int, 0444);
54 MODULE_PARM_DESC(channels, "Number of concurrent channels");
55
56 static bool paged_rx = false;
57 module_param(paged_rx, bool, 0644);
58 MODULE_PARM_DESC(paged_rx, "Use paged SKBs for RX instead of linear ones");
59
60 static bool rctbl = false;
61 module_param(rctbl, bool, 0444);
62 MODULE_PARM_DESC(rctbl, "Handle rate control table");
63
64 static bool support_p2p_device = true;
65 module_param(support_p2p_device, bool, 0444);
66 MODULE_PARM_DESC(support_p2p_device, "Support P2P-Device interface type");
67
68 static bool mlo;
69 module_param(mlo, bool, 0444);
70 MODULE_PARM_DESC(mlo, "Support MLO");
71
72 static bool multi_radio;
73 module_param(multi_radio, bool, 0444);
74 MODULE_PARM_DESC(multi_radio, "Support Multiple Radios per wiphy");
75
76 /**
77 * enum hwsim_regtest - the type of regulatory tests we offer
78 *
79 * @HWSIM_REGTEST_DISABLED: No regulatory tests are performed,
80 * this is the default value.
81 * @HWSIM_REGTEST_DRIVER_REG_FOLLOW: Used for testing the driver regulatory
82 * hint, only one driver regulatory hint will be sent as such the
83 * secondary radios are expected to follow.
84 * @HWSIM_REGTEST_DRIVER_REG_ALL: Used for testing the driver regulatory
85 * request with all radios reporting the same regulatory domain.
86 * @HWSIM_REGTEST_DIFF_COUNTRY: Used for testing the drivers calling
87 * different regulatory domains requests. Expected behaviour is for
88 * an intersection to occur but each device will still use their
89 * respective regulatory requested domains. Subsequent radios will
90 * use the resulting intersection.
91 * @HWSIM_REGTEST_WORLD_ROAM: Used for testing the world roaming. We accomplish
92 * this by using a custom beacon-capable regulatory domain for the first
93 * radio. All other device world roam.
94 * @HWSIM_REGTEST_CUSTOM_WORLD: Used for testing the custom world regulatory
95 * domain requests. All radios will adhere to this custom world regulatory
96 * domain.
97 * @HWSIM_REGTEST_CUSTOM_WORLD_2: Used for testing 2 custom world regulatory
98 * domain requests. The first radio will adhere to the first custom world
99 * regulatory domain, the second one to the second custom world regulatory
100 * domain. All other devices will world roam.
101 * @HWSIM_REGTEST_STRICT_FOLLOW: Used for testing strict regulatory domain
102 * settings, only the first radio will send a regulatory domain request
103 * and use strict settings. The rest of the radios are expected to follow.
104 * @HWSIM_REGTEST_STRICT_ALL: Used for testing strict regulatory domain
105 * settings. All radios will adhere to this.
106 * @HWSIM_REGTEST_STRICT_AND_DRIVER_REG: Used for testing strict regulatory
107 * domain settings, combined with secondary driver regulatory domain
108 * settings. The first radio will get a strict regulatory domain setting
109 * using the first driver regulatory request and the second radio will use
110 * non-strict settings using the second driver regulatory request. All
111 * other devices should follow the intersection created between the
112 * first two.
113 * @HWSIM_REGTEST_ALL: Used for testing every possible mix. You will need
114 * at least 6 radios for a complete test. We will test in this order:
115 * 1 - driver custom world regulatory domain
116 * 2 - second custom world regulatory domain
117 * 3 - first driver regulatory domain request
118 * 4 - second driver regulatory domain request
119 * 5 - strict regulatory domain settings using the third driver regulatory
120 * domain request
121 * 6 and on - should follow the intersection of the 3rd, 4rth and 5th radio
122 * regulatory requests.
123 *
124 * These are the different values you can use for the regtest
125 * module parameter. This is useful to help test world roaming
126 * and the driver regulatory_hint() call and combinations of these.
127 * If you want to do specific alpha2 regulatory domain tests simply
128 * use the userspace regulatory request as that will be respected as
129 * well without the need of this module parameter. This is designed
130 * only for testing the driver regulatory request, world roaming
131 * and all possible combinations.
132 */
133 enum hwsim_regtest {
134 HWSIM_REGTEST_DISABLED = 0,
135 HWSIM_REGTEST_DRIVER_REG_FOLLOW = 1,
136 HWSIM_REGTEST_DRIVER_REG_ALL = 2,
137 HWSIM_REGTEST_DIFF_COUNTRY = 3,
138 HWSIM_REGTEST_WORLD_ROAM = 4,
139 HWSIM_REGTEST_CUSTOM_WORLD = 5,
140 HWSIM_REGTEST_CUSTOM_WORLD_2 = 6,
141 HWSIM_REGTEST_STRICT_FOLLOW = 7,
142 HWSIM_REGTEST_STRICT_ALL = 8,
143 HWSIM_REGTEST_STRICT_AND_DRIVER_REG = 9,
144 HWSIM_REGTEST_ALL = 10,
145 };
146
147 /* Set to one of the HWSIM_REGTEST_* values above */
148 static int regtest = HWSIM_REGTEST_DISABLED;
149 module_param(regtest, int, 0444);
150 MODULE_PARM_DESC(regtest, "The type of regulatory test we want to run");
151
152 static const char *hwsim_alpha2s[] = {
153 "FI",
154 "AL",
155 "US",
156 "DE",
157 "JP",
158 "AL",
159 };
160
161 static const struct ieee80211_regdomain hwsim_world_regdom_custom_01 = {
162 .n_reg_rules = 5,
163 .alpha2 = "99",
164 .reg_rules = {
165 REG_RULE(2412-10, 2462+10, 40, 0, 20, 0),
166 REG_RULE(2484-10, 2484+10, 40, 0, 20, 0),
167 REG_RULE(5150-10, 5240+10, 40, 0, 30, 0),
168 REG_RULE(5745-10, 5825+10, 40, 0, 30, 0),
169 REG_RULE(5855-10, 5925+10, 40, 0, 33, 0),
170 }
171 };
172
173 static const struct ieee80211_regdomain hwsim_world_regdom_custom_02 = {
174 .n_reg_rules = 3,
175 .alpha2 = "99",
176 .reg_rules = {
177 REG_RULE(2412-10, 2462+10, 40, 0, 20, 0),
178 REG_RULE(5725-10, 5850+10, 40, 0, 30,
179 NL80211_RRF_NO_IR),
180 REG_RULE(5855-10, 5925+10, 40, 0, 33, 0),
181 }
182 };
183
184 static const struct ieee80211_regdomain hwsim_world_regdom_custom_03 = {
185 .n_reg_rules = 6,
186 .alpha2 = "99",
187 .reg_rules = {
188 REG_RULE(2412 - 10, 2462 + 10, 40, 0, 20, 0),
189 REG_RULE(2484 - 10, 2484 + 10, 40, 0, 20, 0),
190 REG_RULE(5150 - 10, 5240 + 10, 40, 0, 30, 0),
191 REG_RULE(5745 - 10, 5825 + 10, 40, 0, 30, 0),
192 REG_RULE(5855 - 10, 5925 + 10, 40, 0, 33, 0),
193 REG_RULE(5955 - 10, 7125 + 10, 320, 0, 33, 0),
194 }
195 };
196
197 static const struct ieee80211_regdomain hwsim_world_regdom_custom_04 = {
198 .n_reg_rules = 6,
199 .alpha2 = "99",
200 .reg_rules = {
201 REG_RULE(2412 - 10, 2462 + 10, 40, 0, 20, 0),
202 REG_RULE(2484 - 10, 2484 + 10, 40, 0, 20, 0),
203 REG_RULE(5150 - 10, 5240 + 10, 80, 0, 30, NL80211_RRF_AUTO_BW),
204 REG_RULE(5260 - 10, 5320 + 10, 80, 0, 30,
205 NL80211_RRF_DFS_CONCURRENT | NL80211_RRF_DFS |
206 NL80211_RRF_AUTO_BW),
207 REG_RULE(5500 - 10, 5720 + 10, 160, 0, 30,
208 NL80211_RRF_DFS_CONCURRENT | NL80211_RRF_DFS),
209 REG_RULE(5745 - 10, 5825 + 10, 80, 0, 30, 0),
210 REG_RULE(5855 - 10, 5925 + 10, 80, 0, 33, 0),
211 }
212 };
213
214 static const struct ieee80211_regdomain *hwsim_world_regdom_custom[] = {
215 &hwsim_world_regdom_custom_01,
216 &hwsim_world_regdom_custom_02,
217 &hwsim_world_regdom_custom_03,
218 &hwsim_world_regdom_custom_04,
219 };
220
221 struct hwsim_vif_priv {
222 u32 magic;
223 u32 skip_beacons[IEEE80211_MLD_MAX_NUM_LINKS];
224 u8 bssid[ETH_ALEN];
225 bool assoc;
226 bool bcn_en;
227 u16 aid;
228 };
229
230 #define HWSIM_VIF_MAGIC 0x69537748
231
hwsim_check_magic(struct ieee80211_vif * vif)232 static inline void hwsim_check_magic(struct ieee80211_vif *vif)
233 {
234 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
235 WARN(vp->magic != HWSIM_VIF_MAGIC,
236 "Invalid VIF (%p) magic %#x, %pM, %d/%d\n",
237 vif, vp->magic, vif->addr, vif->type, vif->p2p);
238 }
239
hwsim_set_magic(struct ieee80211_vif * vif)240 static inline void hwsim_set_magic(struct ieee80211_vif *vif)
241 {
242 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
243 vp->magic = HWSIM_VIF_MAGIC;
244 }
245
hwsim_clear_magic(struct ieee80211_vif * vif)246 static inline void hwsim_clear_magic(struct ieee80211_vif *vif)
247 {
248 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
249 vp->magic = 0;
250 }
251
252 struct hwsim_sta_priv {
253 u32 magic;
254 unsigned int last_link;
255 u16 active_links_rx;
256 };
257
258 #define HWSIM_STA_MAGIC 0x6d537749
259
hwsim_check_sta_magic(struct ieee80211_sta * sta)260 static inline void hwsim_check_sta_magic(struct ieee80211_sta *sta)
261 {
262 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
263 WARN_ON(sp->magic != HWSIM_STA_MAGIC);
264 }
265
hwsim_set_sta_magic(struct ieee80211_sta * sta)266 static inline void hwsim_set_sta_magic(struct ieee80211_sta *sta)
267 {
268 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
269 sp->magic = HWSIM_STA_MAGIC;
270 }
271
hwsim_clear_sta_magic(struct ieee80211_sta * sta)272 static inline void hwsim_clear_sta_magic(struct ieee80211_sta *sta)
273 {
274 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
275 sp->magic = 0;
276 }
277
278 struct hwsim_chanctx_priv {
279 u32 magic;
280 };
281
282 #define HWSIM_CHANCTX_MAGIC 0x6d53774a
283
hwsim_check_chanctx_magic(struct ieee80211_chanctx_conf * c)284 static inline void hwsim_check_chanctx_magic(struct ieee80211_chanctx_conf *c)
285 {
286 struct hwsim_chanctx_priv *cp = (void *)c->drv_priv;
287 WARN_ON(cp->magic != HWSIM_CHANCTX_MAGIC);
288 }
289
hwsim_set_chanctx_magic(struct ieee80211_chanctx_conf * c)290 static inline void hwsim_set_chanctx_magic(struct ieee80211_chanctx_conf *c)
291 {
292 struct hwsim_chanctx_priv *cp = (void *)c->drv_priv;
293 cp->magic = HWSIM_CHANCTX_MAGIC;
294 }
295
hwsim_clear_chanctx_magic(struct ieee80211_chanctx_conf * c)296 static inline void hwsim_clear_chanctx_magic(struct ieee80211_chanctx_conf *c)
297 {
298 struct hwsim_chanctx_priv *cp = (void *)c->drv_priv;
299 cp->magic = 0;
300 }
301
302 static unsigned int hwsim_net_id;
303
304 static DEFINE_IDA(hwsim_netgroup_ida);
305
306 struct hwsim_net {
307 int netgroup;
308 u32 wmediumd;
309 };
310
hwsim_net_get_netgroup(struct net * net)311 static inline int hwsim_net_get_netgroup(struct net *net)
312 {
313 struct hwsim_net *hwsim_net = net_generic(net, hwsim_net_id);
314
315 return hwsim_net->netgroup;
316 }
317
hwsim_net_set_netgroup(struct net * net)318 static inline int hwsim_net_set_netgroup(struct net *net)
319 {
320 struct hwsim_net *hwsim_net = net_generic(net, hwsim_net_id);
321
322 hwsim_net->netgroup = ida_alloc(&hwsim_netgroup_ida, GFP_KERNEL);
323 return hwsim_net->netgroup >= 0 ? 0 : -ENOMEM;
324 }
325
hwsim_net_get_wmediumd(struct net * net)326 static inline u32 hwsim_net_get_wmediumd(struct net *net)
327 {
328 struct hwsim_net *hwsim_net = net_generic(net, hwsim_net_id);
329
330 return hwsim_net->wmediumd;
331 }
332
hwsim_net_set_wmediumd(struct net * net,u32 portid)333 static inline void hwsim_net_set_wmediumd(struct net *net, u32 portid)
334 {
335 struct hwsim_net *hwsim_net = net_generic(net, hwsim_net_id);
336
337 hwsim_net->wmediumd = portid;
338 }
339
340 static struct class *hwsim_class;
341
342 static struct net_device *hwsim_mon; /* global monitor netdev */
343
344 #define CHAN2G(_freq) { \
345 .band = NL80211_BAND_2GHZ, \
346 .center_freq = (_freq), \
347 .hw_value = (_freq), \
348 }
349
350 #define CHAN5G(_freq) { \
351 .band = NL80211_BAND_5GHZ, \
352 .center_freq = (_freq), \
353 .hw_value = (_freq), \
354 }
355
356 #define CHAN6G(_freq) { \
357 .band = NL80211_BAND_6GHZ, \
358 .center_freq = (_freq), \
359 .hw_value = (_freq), \
360 }
361
362 static const struct ieee80211_channel hwsim_channels_2ghz[] = {
363 CHAN2G(2412), /* Channel 1 */
364 CHAN2G(2417), /* Channel 2 */
365 CHAN2G(2422), /* Channel 3 */
366 CHAN2G(2427), /* Channel 4 */
367 CHAN2G(2432), /* Channel 5 */
368 CHAN2G(2437), /* Channel 6 */
369 CHAN2G(2442), /* Channel 7 */
370 CHAN2G(2447), /* Channel 8 */
371 CHAN2G(2452), /* Channel 9 */
372 CHAN2G(2457), /* Channel 10 */
373 CHAN2G(2462), /* Channel 11 */
374 CHAN2G(2467), /* Channel 12 */
375 CHAN2G(2472), /* Channel 13 */
376 CHAN2G(2484), /* Channel 14 */
377 };
378
379 static const struct ieee80211_channel hwsim_channels_5ghz[] = {
380 CHAN5G(5180), /* Channel 36 */
381 CHAN5G(5200), /* Channel 40 */
382 CHAN5G(5220), /* Channel 44 */
383 CHAN5G(5240), /* Channel 48 */
384
385 CHAN5G(5260), /* Channel 52 */
386 CHAN5G(5280), /* Channel 56 */
387 CHAN5G(5300), /* Channel 60 */
388 CHAN5G(5320), /* Channel 64 */
389
390 CHAN5G(5500), /* Channel 100 */
391 CHAN5G(5520), /* Channel 104 */
392 CHAN5G(5540), /* Channel 108 */
393 CHAN5G(5560), /* Channel 112 */
394 CHAN5G(5580), /* Channel 116 */
395 CHAN5G(5600), /* Channel 120 */
396 CHAN5G(5620), /* Channel 124 */
397 CHAN5G(5640), /* Channel 128 */
398 CHAN5G(5660), /* Channel 132 */
399 CHAN5G(5680), /* Channel 136 */
400 CHAN5G(5700), /* Channel 140 */
401
402 CHAN5G(5745), /* Channel 149 */
403 CHAN5G(5765), /* Channel 153 */
404 CHAN5G(5785), /* Channel 157 */
405 CHAN5G(5805), /* Channel 161 */
406 CHAN5G(5825), /* Channel 165 */
407 CHAN5G(5845), /* Channel 169 */
408
409 CHAN5G(5855), /* Channel 171 */
410 CHAN5G(5860), /* Channel 172 */
411 CHAN5G(5865), /* Channel 173 */
412 CHAN5G(5870), /* Channel 174 */
413
414 CHAN5G(5875), /* Channel 175 */
415 CHAN5G(5880), /* Channel 176 */
416 CHAN5G(5885), /* Channel 177 */
417 CHAN5G(5890), /* Channel 178 */
418 CHAN5G(5895), /* Channel 179 */
419 CHAN5G(5900), /* Channel 180 */
420 CHAN5G(5905), /* Channel 181 */
421
422 CHAN5G(5910), /* Channel 182 */
423 CHAN5G(5915), /* Channel 183 */
424 CHAN5G(5920), /* Channel 184 */
425 CHAN5G(5925), /* Channel 185 */
426 };
427
428 static const struct ieee80211_channel hwsim_channels_6ghz[] = {
429 CHAN6G(5955), /* Channel 1 */
430 CHAN6G(5975), /* Channel 5 */
431 CHAN6G(5995), /* Channel 9 */
432 CHAN6G(6015), /* Channel 13 */
433 CHAN6G(6035), /* Channel 17 */
434 CHAN6G(6055), /* Channel 21 */
435 CHAN6G(6075), /* Channel 25 */
436 CHAN6G(6095), /* Channel 29 */
437 CHAN6G(6115), /* Channel 33 */
438 CHAN6G(6135), /* Channel 37 */
439 CHAN6G(6155), /* Channel 41 */
440 CHAN6G(6175), /* Channel 45 */
441 CHAN6G(6195), /* Channel 49 */
442 CHAN6G(6215), /* Channel 53 */
443 CHAN6G(6235), /* Channel 57 */
444 CHAN6G(6255), /* Channel 61 */
445 CHAN6G(6275), /* Channel 65 */
446 CHAN6G(6295), /* Channel 69 */
447 CHAN6G(6315), /* Channel 73 */
448 CHAN6G(6335), /* Channel 77 */
449 CHAN6G(6355), /* Channel 81 */
450 CHAN6G(6375), /* Channel 85 */
451 CHAN6G(6395), /* Channel 89 */
452 CHAN6G(6415), /* Channel 93 */
453 CHAN6G(6435), /* Channel 97 */
454 CHAN6G(6455), /* Channel 181 */
455 CHAN6G(6475), /* Channel 105 */
456 CHAN6G(6495), /* Channel 109 */
457 CHAN6G(6515), /* Channel 113 */
458 CHAN6G(6535), /* Channel 117 */
459 CHAN6G(6555), /* Channel 121 */
460 CHAN6G(6575), /* Channel 125 */
461 CHAN6G(6595), /* Channel 129 */
462 CHAN6G(6615), /* Channel 133 */
463 CHAN6G(6635), /* Channel 137 */
464 CHAN6G(6655), /* Channel 141 */
465 CHAN6G(6675), /* Channel 145 */
466 CHAN6G(6695), /* Channel 149 */
467 CHAN6G(6715), /* Channel 153 */
468 CHAN6G(6735), /* Channel 157 */
469 CHAN6G(6755), /* Channel 161 */
470 CHAN6G(6775), /* Channel 165 */
471 CHAN6G(6795), /* Channel 169 */
472 CHAN6G(6815), /* Channel 173 */
473 CHAN6G(6835), /* Channel 177 */
474 CHAN6G(6855), /* Channel 181 */
475 CHAN6G(6875), /* Channel 185 */
476 CHAN6G(6895), /* Channel 189 */
477 CHAN6G(6915), /* Channel 193 */
478 CHAN6G(6935), /* Channel 197 */
479 CHAN6G(6955), /* Channel 201 */
480 CHAN6G(6975), /* Channel 205 */
481 CHAN6G(6995), /* Channel 209 */
482 CHAN6G(7015), /* Channel 213 */
483 CHAN6G(7035), /* Channel 217 */
484 CHAN6G(7055), /* Channel 221 */
485 CHAN6G(7075), /* Channel 225 */
486 CHAN6G(7095), /* Channel 229 */
487 CHAN6G(7115), /* Channel 233 */
488 };
489
490 #define NUM_S1G_CHANS_US 51
491 static struct ieee80211_channel hwsim_channels_s1g[NUM_S1G_CHANS_US];
492
493 static const struct ieee80211_sta_s1g_cap hwsim_s1g_cap = {
494 .s1g = true,
495 .cap = { S1G_CAP0_SGI_1MHZ | S1G_CAP0_SGI_2MHZ,
496 0,
497 0,
498 S1G_CAP3_MAX_MPDU_LEN,
499 0,
500 S1G_CAP5_AMPDU,
501 0,
502 S1G_CAP7_DUP_1MHZ,
503 S1G_CAP8_TWT_RESPOND | S1G_CAP8_TWT_REQUEST,
504 0},
505 .nss_mcs = { 0xfc | 1, /* MCS 7 for 1 SS */
506 /* RX Highest Supported Long GI Data Rate 0:7 */
507 0,
508 /* RX Highest Supported Long GI Data Rate 0:7 */
509 /* TX S1G MCS Map 0:6 */
510 0xfa,
511 /* TX S1G MCS Map :7 */
512 /* TX Highest Supported Long GI Data Rate 0:6 */
513 0x80,
514 /* TX Highest Supported Long GI Data Rate 7:8 */
515 /* Rx Single spatial stream and S1G-MCS Map for 1MHz */
516 /* Tx Single spatial stream and S1G-MCS Map for 1MHz */
517 0 },
518 };
519
hwsim_init_s1g_channels(struct ieee80211_channel * chans)520 static void hwsim_init_s1g_channels(struct ieee80211_channel *chans)
521 {
522 int ch, freq;
523
524 for (ch = 0; ch < NUM_S1G_CHANS_US; ch++) {
525 freq = 902000 + (ch + 1) * 500;
526 chans[ch].band = NL80211_BAND_S1GHZ;
527 chans[ch].center_freq = KHZ_TO_MHZ(freq);
528 chans[ch].freq_offset = freq % 1000;
529 chans[ch].hw_value = ch + 1;
530 }
531 }
532
533 static const struct ieee80211_rate hwsim_rates[] = {
534 { .bitrate = 10 },
535 { .bitrate = 20, .flags = IEEE80211_RATE_SHORT_PREAMBLE },
536 { .bitrate = 55, .flags = IEEE80211_RATE_SHORT_PREAMBLE },
537 { .bitrate = 110, .flags = IEEE80211_RATE_SHORT_PREAMBLE },
538 { .bitrate = 60 },
539 { .bitrate = 90 },
540 { .bitrate = 120 },
541 { .bitrate = 180 },
542 { .bitrate = 240 },
543 { .bitrate = 360 },
544 { .bitrate = 480 },
545 { .bitrate = 540 }
546 };
547
548 #define DEFAULT_RX_RSSI -50
549
550 static const u32 hwsim_ciphers[] = {
551 WLAN_CIPHER_SUITE_WEP40,
552 WLAN_CIPHER_SUITE_WEP104,
553 WLAN_CIPHER_SUITE_TKIP,
554 WLAN_CIPHER_SUITE_CCMP,
555 WLAN_CIPHER_SUITE_CCMP_256,
556 WLAN_CIPHER_SUITE_GCMP,
557 WLAN_CIPHER_SUITE_GCMP_256,
558 WLAN_CIPHER_SUITE_AES_CMAC,
559 WLAN_CIPHER_SUITE_BIP_CMAC_256,
560 WLAN_CIPHER_SUITE_BIP_GMAC_128,
561 WLAN_CIPHER_SUITE_BIP_GMAC_256,
562 };
563
564 #define OUI_QCA 0x001374
565 #define QCA_NL80211_SUBCMD_TEST 1
566 enum qca_nl80211_vendor_subcmds {
567 QCA_WLAN_VENDOR_ATTR_TEST = 8,
568 QCA_WLAN_VENDOR_ATTR_MAX = QCA_WLAN_VENDOR_ATTR_TEST
569 };
570
571 static const struct nla_policy
572 hwsim_vendor_test_policy[QCA_WLAN_VENDOR_ATTR_MAX + 1] = {
573 [QCA_WLAN_VENDOR_ATTR_MAX] = { .type = NLA_U32 },
574 };
575
mac80211_hwsim_vendor_cmd_test(struct wiphy * wiphy,struct wireless_dev * wdev,const void * data,int data_len)576 static int mac80211_hwsim_vendor_cmd_test(struct wiphy *wiphy,
577 struct wireless_dev *wdev,
578 const void *data, int data_len)
579 {
580 struct sk_buff *skb;
581 struct nlattr *tb[QCA_WLAN_VENDOR_ATTR_MAX + 1];
582 int err;
583 u32 val;
584
585 err = nla_parse_deprecated(tb, QCA_WLAN_VENDOR_ATTR_MAX, data,
586 data_len, hwsim_vendor_test_policy, NULL);
587 if (err)
588 return err;
589 if (!tb[QCA_WLAN_VENDOR_ATTR_TEST])
590 return -EINVAL;
591 val = nla_get_u32(tb[QCA_WLAN_VENDOR_ATTR_TEST]);
592 wiphy_dbg(wiphy, "%s: test=%u\n", __func__, val);
593
594 /* Send a vendor event as a test. Note that this would not normally be
595 * done within a command handler, but rather, based on some other
596 * trigger. For simplicity, this command is used to trigger the event
597 * here.
598 *
599 * event_idx = 0 (index in mac80211_hwsim_vendor_commands)
600 */
601 skb = cfg80211_vendor_event_alloc(wiphy, wdev, 100, 0, GFP_KERNEL);
602 if (skb) {
603 /* skb_put() or nla_put() will fill up data within
604 * NL80211_ATTR_VENDOR_DATA.
605 */
606
607 /* Add vendor data */
608 nla_put_u32(skb, QCA_WLAN_VENDOR_ATTR_TEST, val + 1);
609
610 /* Send the event - this will call nla_nest_end() */
611 cfg80211_vendor_event(skb, GFP_KERNEL);
612 }
613
614 /* Send a response to the command */
615 skb = cfg80211_vendor_cmd_alloc_reply_skb(wiphy, 10);
616 if (!skb)
617 return -ENOMEM;
618
619 /* skb_put() or nla_put() will fill up data within
620 * NL80211_ATTR_VENDOR_DATA
621 */
622 nla_put_u32(skb, QCA_WLAN_VENDOR_ATTR_TEST, val + 2);
623
624 return cfg80211_vendor_cmd_reply(skb);
625 }
626
627 static struct wiphy_vendor_command mac80211_hwsim_vendor_commands[] = {
628 {
629 .info = { .vendor_id = OUI_QCA,
630 .subcmd = QCA_NL80211_SUBCMD_TEST },
631 .flags = WIPHY_VENDOR_CMD_NEED_NETDEV,
632 .doit = mac80211_hwsim_vendor_cmd_test,
633 .policy = hwsim_vendor_test_policy,
634 .maxattr = QCA_WLAN_VENDOR_ATTR_MAX,
635 }
636 };
637
638 /* Advertise support vendor specific events */
639 static const struct nl80211_vendor_cmd_info mac80211_hwsim_vendor_events[] = {
640 { .vendor_id = OUI_QCA, .subcmd = 1 },
641 };
642
643 static DEFINE_SPINLOCK(hwsim_radio_lock);
644 static LIST_HEAD(hwsim_radios);
645 static struct rhashtable hwsim_radios_rht;
646 static int hwsim_radio_idx;
647 static int hwsim_radios_generation = 1;
648
649 static struct platform_driver mac80211_hwsim_driver = {
650 .driver = {
651 .name = "mac80211_hwsim",
652 },
653 };
654
655 struct mac80211_hwsim_link_data {
656 u32 link_id;
657 u64 beacon_int /* beacon interval in us */;
658 struct hrtimer beacon_timer;
659 };
660
661 struct mac80211_hwsim_data {
662 struct list_head list;
663 struct rhash_head rht;
664 struct ieee80211_hw *hw;
665 struct device *dev;
666 struct ieee80211_supported_band bands[NUM_NL80211_BANDS];
667 struct ieee80211_channel channels_2ghz[ARRAY_SIZE(hwsim_channels_2ghz)];
668 struct ieee80211_channel channels_5ghz[ARRAY_SIZE(hwsim_channels_5ghz)];
669 struct ieee80211_channel channels_6ghz[ARRAY_SIZE(hwsim_channels_6ghz)];
670 struct ieee80211_channel channels_s1g[ARRAY_SIZE(hwsim_channels_s1g)];
671 struct ieee80211_rate rates[ARRAY_SIZE(hwsim_rates)];
672 struct ieee80211_iface_combination if_combination;
673 struct ieee80211_iface_limit if_limits[3];
674 int n_if_limits;
675
676 struct ieee80211_iface_combination if_combination_radio;
677 struct wiphy_radio_freq_range radio_range[NUM_NL80211_BANDS];
678 struct wiphy_radio radio[NUM_NL80211_BANDS];
679
680 u32 ciphers[ARRAY_SIZE(hwsim_ciphers)];
681
682 struct mac_address addresses[2];
683 int channels, idx;
684 bool use_chanctx;
685 bool destroy_on_close;
686 u32 portid;
687 char alpha2[2];
688 const struct ieee80211_regdomain *regd;
689
690 struct ieee80211_channel *tmp_chan;
691 struct ieee80211_channel *roc_chan;
692 u32 roc_duration;
693 struct delayed_work roc_start;
694 struct delayed_work roc_done;
695 struct delayed_work hw_scan;
696 struct cfg80211_scan_request *hw_scan_request;
697 struct ieee80211_vif *hw_scan_vif;
698 int scan_chan_idx;
699 u8 scan_addr[ETH_ALEN];
700 struct {
701 struct ieee80211_channel *channel;
702 unsigned long next_start, start, end;
703 } survey_data[ARRAY_SIZE(hwsim_channels_2ghz) +
704 ARRAY_SIZE(hwsim_channels_5ghz) +
705 ARRAY_SIZE(hwsim_channels_6ghz)];
706
707 struct ieee80211_channel *channel;
708 enum nl80211_chan_width bw;
709 unsigned int rx_filter;
710 bool started, idle, scanning;
711 struct mutex mutex;
712 enum ps_mode {
713 PS_DISABLED, PS_ENABLED, PS_AUTO_POLL, PS_MANUAL_POLL
714 } ps;
715 bool ps_poll_pending;
716 struct dentry *debugfs;
717
718 atomic_t pending_cookie;
719 struct sk_buff_head pending; /* packets pending */
720 /*
721 * Only radios in the same group can communicate together (the
722 * channel has to match too). Each bit represents a group. A
723 * radio can be in more than one group.
724 */
725 u64 group;
726
727 /* group shared by radios created in the same netns */
728 int netgroup;
729 /* wmediumd portid responsible for netgroup of this radio */
730 u32 wmediumd;
731
732 /* difference between this hw's clock and the real clock, in usecs */
733 s64 tsf_offset;
734 s64 bcn_delta;
735 /* absolute beacon transmission time. Used to cover up "tx" delay. */
736 u64 abs_bcn_ts;
737
738 /* Stats */
739 u64 tx_pkts;
740 u64 rx_pkts;
741 u64 tx_bytes;
742 u64 rx_bytes;
743 u64 tx_dropped;
744 u64 tx_failed;
745
746 /* RSSI in rx status of the receiver */
747 int rx_rssi;
748
749 /* only used when pmsr capability is supplied */
750 struct cfg80211_pmsr_capabilities pmsr_capa;
751 struct cfg80211_pmsr_request *pmsr_request;
752 struct wireless_dev *pmsr_request_wdev;
753
754 struct mac80211_hwsim_link_data link_data[IEEE80211_MLD_MAX_NUM_LINKS];
755 };
756
757 static const struct rhashtable_params hwsim_rht_params = {
758 .nelem_hint = 2,
759 .automatic_shrinking = true,
760 .key_len = ETH_ALEN,
761 .key_offset = offsetof(struct mac80211_hwsim_data, addresses[1]),
762 .head_offset = offsetof(struct mac80211_hwsim_data, rht),
763 };
764
765 struct hwsim_radiotap_hdr {
766 struct ieee80211_radiotap_header_fixed hdr;
767 __le64 rt_tsft;
768 u8 rt_flags;
769 u8 rt_rate;
770 __le16 rt_channel;
771 __le16 rt_chbitmask;
772 } __packed;
773
774 struct hwsim_radiotap_ack_hdr {
775 struct ieee80211_radiotap_header_fixed hdr;
776 u8 rt_flags;
777 u8 pad;
778 __le16 rt_channel;
779 __le16 rt_chbitmask;
780 } __packed;
781
get_hwsim_data_ref_from_addr(const u8 * addr)782 static struct mac80211_hwsim_data *get_hwsim_data_ref_from_addr(const u8 *addr)
783 {
784 return rhashtable_lookup_fast(&hwsim_radios_rht, addr, hwsim_rht_params);
785 }
786
787 /* MAC80211_HWSIM netlink family */
788 static struct genl_family hwsim_genl_family;
789
790 enum hwsim_multicast_groups {
791 HWSIM_MCGRP_CONFIG,
792 };
793
794 static const struct genl_multicast_group hwsim_mcgrps[] = {
795 [HWSIM_MCGRP_CONFIG] = { .name = "config", },
796 };
797
798 /* MAC80211_HWSIM netlink policy */
799
800 static const struct nla_policy
801 hwsim_rate_info_policy[HWSIM_RATE_INFO_ATTR_MAX + 1] = {
802 [HWSIM_RATE_INFO_ATTR_FLAGS] = { .type = NLA_U8 },
803 [HWSIM_RATE_INFO_ATTR_MCS] = { .type = NLA_U8 },
804 [HWSIM_RATE_INFO_ATTR_LEGACY] = { .type = NLA_U16 },
805 [HWSIM_RATE_INFO_ATTR_NSS] = { .type = NLA_U8 },
806 [HWSIM_RATE_INFO_ATTR_BW] = { .type = NLA_U8 },
807 [HWSIM_RATE_INFO_ATTR_HE_GI] = { .type = NLA_U8 },
808 [HWSIM_RATE_INFO_ATTR_HE_DCM] = { .type = NLA_U8 },
809 [HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC] = { .type = NLA_U8 },
810 [HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH] = { .type = NLA_U8 },
811 [HWSIM_RATE_INFO_ATTR_EHT_GI] = { .type = NLA_U8 },
812 [HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC] = { .type = NLA_U8 },
813 };
814
815 static const struct nla_policy
816 hwsim_ftm_result_policy[NL80211_PMSR_FTM_RESP_ATTR_MAX + 1] = {
817 [NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON] = { .type = NLA_U32 },
818 [NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX] = { .type = NLA_U16 },
819 [NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS] = { .type = NLA_U32 },
820 [NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES] = { .type = NLA_U32 },
821 [NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME] = { .type = NLA_U8 },
822 [NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP] = { .type = NLA_U8 },
823 [NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION] = { .type = NLA_U8 },
824 [NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST] = { .type = NLA_U8 },
825 [NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG] = { .type = NLA_U32 },
826 [NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD] = { .type = NLA_U32 },
827 [NL80211_PMSR_FTM_RESP_ATTR_TX_RATE] = NLA_POLICY_NESTED(hwsim_rate_info_policy),
828 [NL80211_PMSR_FTM_RESP_ATTR_RX_RATE] = NLA_POLICY_NESTED(hwsim_rate_info_policy),
829 [NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG] = { .type = NLA_U64 },
830 [NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE] = { .type = NLA_U64 },
831 [NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD] = { .type = NLA_U64 },
832 [NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG] = { .type = NLA_U64 },
833 [NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE] = { .type = NLA_U64 },
834 [NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD] = { .type = NLA_U64 },
835 [NL80211_PMSR_FTM_RESP_ATTR_LCI] = { .type = NLA_STRING },
836 [NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC] = { .type = NLA_STRING },
837 };
838
839 static const struct nla_policy
840 hwsim_pmsr_resp_type_policy[NL80211_PMSR_TYPE_MAX + 1] = {
841 [NL80211_PMSR_TYPE_FTM] = NLA_POLICY_NESTED(hwsim_ftm_result_policy),
842 };
843
844 static const struct nla_policy
845 hwsim_pmsr_resp_policy[NL80211_PMSR_RESP_ATTR_MAX + 1] = {
846 [NL80211_PMSR_RESP_ATTR_STATUS] = { .type = NLA_U32 },
847 [NL80211_PMSR_RESP_ATTR_HOST_TIME] = { .type = NLA_U64 },
848 [NL80211_PMSR_RESP_ATTR_AP_TSF] = { .type = NLA_U64 },
849 [NL80211_PMSR_RESP_ATTR_FINAL] = { .type = NLA_FLAG },
850 [NL80211_PMSR_RESP_ATTR_DATA] = NLA_POLICY_NESTED(hwsim_pmsr_resp_type_policy),
851 };
852
853 static const struct nla_policy
854 hwsim_pmsr_peer_result_policy[NL80211_PMSR_PEER_ATTR_MAX + 1] = {
855 [NL80211_PMSR_PEER_ATTR_ADDR] = NLA_POLICY_ETH_ADDR_COMPAT,
856 [NL80211_PMSR_PEER_ATTR_CHAN] = { .type = NLA_REJECT },
857 [NL80211_PMSR_PEER_ATTR_REQ] = { .type = NLA_REJECT },
858 [NL80211_PMSR_PEER_ATTR_RESP] = NLA_POLICY_NESTED(hwsim_pmsr_resp_policy),
859 };
860
861 static const struct nla_policy
862 hwsim_pmsr_peers_result_policy[NL80211_PMSR_ATTR_MAX + 1] = {
863 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_REJECT },
864 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_REJECT },
865 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_REJECT },
866 [NL80211_PMSR_ATTR_TYPE_CAPA] = { .type = NLA_REJECT },
867 [NL80211_PMSR_ATTR_PEERS] = NLA_POLICY_NESTED_ARRAY(hwsim_pmsr_peer_result_policy),
868 };
869
870 static const struct nla_policy
871 hwsim_ftm_capa_policy[NL80211_PMSR_FTM_CAPA_ATTR_MAX + 1] = {
872 [NL80211_PMSR_FTM_CAPA_ATTR_ASAP] = { .type = NLA_FLAG },
873 [NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP] = { .type = NLA_FLAG },
874 [NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI] = { .type = NLA_FLAG },
875 [NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC] = { .type = NLA_FLAG },
876 [NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES] = { .type = NLA_U32 },
877 [NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS] = { .type = NLA_U32 },
878 [NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT] = NLA_POLICY_MAX(NLA_U8, 15),
879 [NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST] = NLA_POLICY_MAX(NLA_U8, 31),
880 [NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED] = { .type = NLA_FLAG },
881 [NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED] = { .type = NLA_FLAG },
882 };
883
884 static const struct nla_policy
885 hwsim_pmsr_capa_type_policy[NL80211_PMSR_TYPE_MAX + 1] = {
886 [NL80211_PMSR_TYPE_FTM] = NLA_POLICY_NESTED(hwsim_ftm_capa_policy),
887 };
888
889 static const struct nla_policy
890 hwsim_pmsr_capa_policy[NL80211_PMSR_ATTR_MAX + 1] = {
891 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_U32 },
892 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_FLAG },
893 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_FLAG },
894 [NL80211_PMSR_ATTR_TYPE_CAPA] = NLA_POLICY_NESTED(hwsim_pmsr_capa_type_policy),
895 [NL80211_PMSR_ATTR_PEERS] = { .type = NLA_REJECT }, // only for request.
896 };
897
898 static const struct nla_policy hwsim_genl_policy[HWSIM_ATTR_MAX + 1] = {
899 [HWSIM_ATTR_ADDR_RECEIVER] = NLA_POLICY_ETH_ADDR_COMPAT,
900 [HWSIM_ATTR_ADDR_TRANSMITTER] = NLA_POLICY_ETH_ADDR_COMPAT,
901 [HWSIM_ATTR_FRAME] = { .type = NLA_BINARY,
902 .len = IEEE80211_MAX_DATA_LEN },
903 [HWSIM_ATTR_FLAGS] = { .type = NLA_U32 },
904 [HWSIM_ATTR_RX_RATE] = { .type = NLA_U32 },
905 [HWSIM_ATTR_SIGNAL] = { .type = NLA_U32 },
906 [HWSIM_ATTR_TX_INFO] = { .type = NLA_BINARY,
907 .len = IEEE80211_TX_MAX_RATES *
908 sizeof(struct hwsim_tx_rate)},
909 [HWSIM_ATTR_COOKIE] = { .type = NLA_U64 },
910 [HWSIM_ATTR_CHANNELS] = { .type = NLA_U32 },
911 [HWSIM_ATTR_RADIO_ID] = { .type = NLA_U32 },
912 [HWSIM_ATTR_REG_HINT_ALPHA2] = { .type = NLA_STRING, .len = 2 },
913 [HWSIM_ATTR_REG_CUSTOM_REG] = { .type = NLA_U32 },
914 [HWSIM_ATTR_REG_STRICT_REG] = { .type = NLA_FLAG },
915 [HWSIM_ATTR_SUPPORT_P2P_DEVICE] = { .type = NLA_FLAG },
916 [HWSIM_ATTR_USE_CHANCTX] = { .type = NLA_FLAG },
917 [HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE] = { .type = NLA_FLAG },
918 [HWSIM_ATTR_RADIO_NAME] = { .type = NLA_STRING },
919 [HWSIM_ATTR_NO_VIF] = { .type = NLA_FLAG },
920 [HWSIM_ATTR_FREQ] = { .type = NLA_U32 },
921 [HWSIM_ATTR_TX_INFO_FLAGS] = { .type = NLA_BINARY },
922 [HWSIM_ATTR_PERM_ADDR] = NLA_POLICY_ETH_ADDR_COMPAT,
923 [HWSIM_ATTR_IFTYPE_SUPPORT] = { .type = NLA_U32 },
924 [HWSIM_ATTR_CIPHER_SUPPORT] = { .type = NLA_BINARY },
925 [HWSIM_ATTR_MLO_SUPPORT] = { .type = NLA_FLAG },
926 [HWSIM_ATTR_PMSR_SUPPORT] = NLA_POLICY_NESTED(hwsim_pmsr_capa_policy),
927 [HWSIM_ATTR_PMSR_RESULT] = NLA_POLICY_NESTED(hwsim_pmsr_peers_result_policy),
928 [HWSIM_ATTR_MULTI_RADIO] = { .type = NLA_FLAG },
929 };
930
931 #if IS_REACHABLE(CONFIG_VIRTIO)
932
933 /* MAC80211_HWSIM virtio queues */
934 static struct virtqueue *hwsim_vqs[HWSIM_NUM_VQS];
935 static bool hwsim_virtio_enabled;
936 static DEFINE_SPINLOCK(hwsim_virtio_lock);
937
938 static void hwsim_virtio_rx_work(struct work_struct *work);
939 static DECLARE_WORK(hwsim_virtio_rx, hwsim_virtio_rx_work);
940
hwsim_tx_virtio(struct mac80211_hwsim_data * data,struct sk_buff * skb)941 static int hwsim_tx_virtio(struct mac80211_hwsim_data *data,
942 struct sk_buff *skb)
943 {
944 struct scatterlist sg[1];
945 unsigned long flags;
946 int err;
947
948 spin_lock_irqsave(&hwsim_virtio_lock, flags);
949 if (!hwsim_virtio_enabled) {
950 err = -ENODEV;
951 goto out_free;
952 }
953
954 sg_init_one(sg, skb->head, skb_end_offset(skb));
955 err = virtqueue_add_outbuf(hwsim_vqs[HWSIM_VQ_TX], sg, 1, skb,
956 GFP_ATOMIC);
957 if (err)
958 goto out_free;
959 virtqueue_kick(hwsim_vqs[HWSIM_VQ_TX]);
960 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
961 return 0;
962
963 out_free:
964 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
965 nlmsg_free(skb);
966 return err;
967 }
968 #else
969 /* cause a linker error if this ends up being needed */
970 extern int hwsim_tx_virtio(struct mac80211_hwsim_data *data,
971 struct sk_buff *skb);
972 #define hwsim_virtio_enabled false
973 #endif
974
hwsim_get_chanwidth(enum nl80211_chan_width bw)975 static int hwsim_get_chanwidth(enum nl80211_chan_width bw)
976 {
977 switch (bw) {
978 case NL80211_CHAN_WIDTH_20_NOHT:
979 case NL80211_CHAN_WIDTH_20:
980 return 20;
981 case NL80211_CHAN_WIDTH_40:
982 return 40;
983 case NL80211_CHAN_WIDTH_80:
984 return 80;
985 case NL80211_CHAN_WIDTH_80P80:
986 case NL80211_CHAN_WIDTH_160:
987 return 160;
988 case NL80211_CHAN_WIDTH_320:
989 return 320;
990 case NL80211_CHAN_WIDTH_5:
991 return 5;
992 case NL80211_CHAN_WIDTH_10:
993 return 10;
994 case NL80211_CHAN_WIDTH_1:
995 return 1;
996 case NL80211_CHAN_WIDTH_2:
997 return 2;
998 case NL80211_CHAN_WIDTH_4:
999 return 4;
1000 case NL80211_CHAN_WIDTH_8:
1001 return 8;
1002 case NL80211_CHAN_WIDTH_16:
1003 return 16;
1004 }
1005
1006 return INT_MAX;
1007 }
1008
1009 static void mac80211_hwsim_tx_frame(struct ieee80211_hw *hw,
1010 struct sk_buff *skb,
1011 struct ieee80211_channel *chan);
1012
1013 /* sysfs attributes */
hwsim_send_ps_poll(void * dat,u8 * mac,struct ieee80211_vif * vif)1014 static void hwsim_send_ps_poll(void *dat, u8 *mac, struct ieee80211_vif *vif)
1015 {
1016 struct mac80211_hwsim_data *data = dat;
1017 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
1018 struct sk_buff *skb;
1019 struct ieee80211_pspoll *pspoll;
1020
1021 if (!vp->assoc)
1022 return;
1023
1024 wiphy_dbg(data->hw->wiphy,
1025 "%s: send PS-Poll to %pM for aid %d\n",
1026 __func__, vp->bssid, vp->aid);
1027
1028 skb = dev_alloc_skb(sizeof(*pspoll));
1029 if (!skb)
1030 return;
1031 pspoll = skb_put(skb, sizeof(*pspoll));
1032 pspoll->frame_control = cpu_to_le16(IEEE80211_FTYPE_CTL |
1033 IEEE80211_STYPE_PSPOLL |
1034 IEEE80211_FCTL_PM);
1035 pspoll->aid = cpu_to_le16(0xc000 | vp->aid);
1036 memcpy(pspoll->bssid, vp->bssid, ETH_ALEN);
1037 memcpy(pspoll->ta, mac, ETH_ALEN);
1038
1039 rcu_read_lock();
1040 mac80211_hwsim_tx_frame(data->hw, skb,
1041 rcu_dereference(vif->bss_conf.chanctx_conf)->def.chan);
1042 rcu_read_unlock();
1043 }
1044
hwsim_send_nullfunc(struct mac80211_hwsim_data * data,u8 * mac,struct ieee80211_vif * vif,int ps)1045 static void hwsim_send_nullfunc(struct mac80211_hwsim_data *data, u8 *mac,
1046 struct ieee80211_vif *vif, int ps)
1047 {
1048 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
1049 struct sk_buff *skb;
1050 struct ieee80211_hdr *hdr;
1051 struct ieee80211_tx_info *cb;
1052
1053 if (!vp->assoc)
1054 return;
1055
1056 wiphy_dbg(data->hw->wiphy,
1057 "%s: send data::nullfunc to %pM ps=%d\n",
1058 __func__, vp->bssid, ps);
1059
1060 skb = dev_alloc_skb(sizeof(*hdr));
1061 if (!skb)
1062 return;
1063 hdr = skb_put(skb, sizeof(*hdr) - ETH_ALEN);
1064 hdr->frame_control = cpu_to_le16(IEEE80211_FTYPE_DATA |
1065 IEEE80211_STYPE_NULLFUNC |
1066 IEEE80211_FCTL_TODS |
1067 (ps ? IEEE80211_FCTL_PM : 0));
1068 hdr->duration_id = cpu_to_le16(0);
1069 memcpy(hdr->addr1, vp->bssid, ETH_ALEN);
1070 memcpy(hdr->addr2, mac, ETH_ALEN);
1071 memcpy(hdr->addr3, vp->bssid, ETH_ALEN);
1072
1073 cb = IEEE80211_SKB_CB(skb);
1074 cb->control.rates[0].count = 1;
1075 cb->control.rates[1].idx = -1;
1076
1077 rcu_read_lock();
1078 mac80211_hwsim_tx_frame(data->hw, skb,
1079 rcu_dereference(vif->bss_conf.chanctx_conf)->def.chan);
1080 rcu_read_unlock();
1081 }
1082
1083
hwsim_send_nullfunc_ps(void * dat,u8 * mac,struct ieee80211_vif * vif)1084 static void hwsim_send_nullfunc_ps(void *dat, u8 *mac,
1085 struct ieee80211_vif *vif)
1086 {
1087 struct mac80211_hwsim_data *data = dat;
1088 hwsim_send_nullfunc(data, mac, vif, 1);
1089 }
1090
hwsim_send_nullfunc_no_ps(void * dat,u8 * mac,struct ieee80211_vif * vif)1091 static void hwsim_send_nullfunc_no_ps(void *dat, u8 *mac,
1092 struct ieee80211_vif *vif)
1093 {
1094 struct mac80211_hwsim_data *data = dat;
1095 hwsim_send_nullfunc(data, mac, vif, 0);
1096 }
1097
hwsim_fops_ps_read(void * dat,u64 * val)1098 static int hwsim_fops_ps_read(void *dat, u64 *val)
1099 {
1100 struct mac80211_hwsim_data *data = dat;
1101 *val = data->ps;
1102 return 0;
1103 }
1104
hwsim_fops_ps_write(void * dat,u64 val)1105 static int hwsim_fops_ps_write(void *dat, u64 val)
1106 {
1107 struct mac80211_hwsim_data *data = dat;
1108 enum ps_mode old_ps;
1109
1110 if (val != PS_DISABLED && val != PS_ENABLED && val != PS_AUTO_POLL &&
1111 val != PS_MANUAL_POLL)
1112 return -EINVAL;
1113
1114 if (val == PS_MANUAL_POLL) {
1115 if (data->ps != PS_ENABLED)
1116 return -EINVAL;
1117 local_bh_disable();
1118 ieee80211_iterate_active_interfaces_atomic(
1119 data->hw, IEEE80211_IFACE_ITER_NORMAL,
1120 hwsim_send_ps_poll, data);
1121 local_bh_enable();
1122 return 0;
1123 }
1124 old_ps = data->ps;
1125 data->ps = val;
1126
1127 local_bh_disable();
1128 if (old_ps == PS_DISABLED && val != PS_DISABLED) {
1129 ieee80211_iterate_active_interfaces_atomic(
1130 data->hw, IEEE80211_IFACE_ITER_NORMAL,
1131 hwsim_send_nullfunc_ps, data);
1132 } else if (old_ps != PS_DISABLED && val == PS_DISABLED) {
1133 ieee80211_iterate_active_interfaces_atomic(
1134 data->hw, IEEE80211_IFACE_ITER_NORMAL,
1135 hwsim_send_nullfunc_no_ps, data);
1136 }
1137 local_bh_enable();
1138
1139 return 0;
1140 }
1141
1142 DEFINE_DEBUGFS_ATTRIBUTE(hwsim_fops_ps, hwsim_fops_ps_read, hwsim_fops_ps_write,
1143 "%llu\n");
1144
hwsim_write_simulate_radar(void * dat,u64 val)1145 static int hwsim_write_simulate_radar(void *dat, u64 val)
1146 {
1147 struct mac80211_hwsim_data *data = dat;
1148
1149 ieee80211_radar_detected(data->hw, NULL);
1150
1151 return 0;
1152 }
1153
1154 DEFINE_DEBUGFS_ATTRIBUTE(hwsim_simulate_radar, NULL,
1155 hwsim_write_simulate_radar, "%llu\n");
1156
hwsim_fops_group_read(void * dat,u64 * val)1157 static int hwsim_fops_group_read(void *dat, u64 *val)
1158 {
1159 struct mac80211_hwsim_data *data = dat;
1160 *val = data->group;
1161 return 0;
1162 }
1163
hwsim_fops_group_write(void * dat,u64 val)1164 static int hwsim_fops_group_write(void *dat, u64 val)
1165 {
1166 struct mac80211_hwsim_data *data = dat;
1167 data->group = val;
1168 return 0;
1169 }
1170
1171 DEFINE_DEBUGFS_ATTRIBUTE(hwsim_fops_group,
1172 hwsim_fops_group_read, hwsim_fops_group_write,
1173 "%llx\n");
1174
hwsim_fops_rx_rssi_read(void * dat,u64 * val)1175 static int hwsim_fops_rx_rssi_read(void *dat, u64 *val)
1176 {
1177 struct mac80211_hwsim_data *data = dat;
1178 *val = data->rx_rssi;
1179 return 0;
1180 }
1181
hwsim_fops_rx_rssi_write(void * dat,u64 val)1182 static int hwsim_fops_rx_rssi_write(void *dat, u64 val)
1183 {
1184 struct mac80211_hwsim_data *data = dat;
1185 int rssi = (int)val;
1186
1187 if (rssi >= 0 || rssi < -100)
1188 return -EINVAL;
1189
1190 data->rx_rssi = rssi;
1191 return 0;
1192 }
1193
1194 DEFINE_DEBUGFS_ATTRIBUTE(hwsim_fops_rx_rssi,
1195 hwsim_fops_rx_rssi_read, hwsim_fops_rx_rssi_write,
1196 "%lld\n");
1197
hwsim_mon_xmit(struct sk_buff * skb,struct net_device * dev)1198 static netdev_tx_t hwsim_mon_xmit(struct sk_buff *skb,
1199 struct net_device *dev)
1200 {
1201 /* TODO: allow packet injection */
1202 dev_kfree_skb(skb);
1203 return NETDEV_TX_OK;
1204 }
1205
mac80211_hwsim_get_tsf_raw(void)1206 static inline u64 mac80211_hwsim_get_tsf_raw(void)
1207 {
1208 return ktime_to_us(ktime_get_real());
1209 }
1210
__mac80211_hwsim_get_tsf(struct mac80211_hwsim_data * data)1211 static __le64 __mac80211_hwsim_get_tsf(struct mac80211_hwsim_data *data)
1212 {
1213 u64 now = mac80211_hwsim_get_tsf_raw();
1214 return cpu_to_le64(now + data->tsf_offset);
1215 }
1216
mac80211_hwsim_get_tsf(struct ieee80211_hw * hw,struct ieee80211_vif * vif)1217 static u64 mac80211_hwsim_get_tsf(struct ieee80211_hw *hw,
1218 struct ieee80211_vif *vif)
1219 {
1220 struct mac80211_hwsim_data *data = hw->priv;
1221 return le64_to_cpu(__mac80211_hwsim_get_tsf(data));
1222 }
1223
mac80211_hwsim_set_tsf(struct ieee80211_hw * hw,struct ieee80211_vif * vif,u64 tsf)1224 static void mac80211_hwsim_set_tsf(struct ieee80211_hw *hw,
1225 struct ieee80211_vif *vif, u64 tsf)
1226 {
1227 struct mac80211_hwsim_data *data = hw->priv;
1228 u64 now = mac80211_hwsim_get_tsf(hw, vif);
1229 /* MLD not supported here */
1230 u32 bcn_int = data->link_data[0].beacon_int;
1231 u64 delta = abs(tsf - now);
1232
1233 /* adjust after beaconing with new timestamp at old TBTT */
1234 if (tsf > now) {
1235 data->tsf_offset += delta;
1236 data->bcn_delta = do_div(delta, bcn_int);
1237 } else {
1238 data->tsf_offset -= delta;
1239 data->bcn_delta = -(s64)do_div(delta, bcn_int);
1240 }
1241 }
1242
mac80211_hwsim_monitor_rx(struct ieee80211_hw * hw,struct sk_buff * tx_skb,struct ieee80211_channel * chan)1243 static void mac80211_hwsim_monitor_rx(struct ieee80211_hw *hw,
1244 struct sk_buff *tx_skb,
1245 struct ieee80211_channel *chan)
1246 {
1247 struct mac80211_hwsim_data *data = hw->priv;
1248 struct sk_buff *skb;
1249 struct hwsim_radiotap_hdr *hdr;
1250 u16 flags, bitrate;
1251 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(tx_skb);
1252 struct ieee80211_rate *txrate = ieee80211_get_tx_rate(hw, info);
1253
1254 if (!txrate)
1255 bitrate = 0;
1256 else
1257 bitrate = txrate->bitrate;
1258
1259 if (!netif_running(hwsim_mon))
1260 return;
1261
1262 skb = skb_copy_expand(tx_skb, sizeof(*hdr), 0, GFP_ATOMIC);
1263 if (skb == NULL)
1264 return;
1265
1266 hdr = skb_push(skb, sizeof(*hdr));
1267 hdr->hdr.it_version = PKTHDR_RADIOTAP_VERSION;
1268 hdr->hdr.it_pad = 0;
1269 hdr->hdr.it_len = cpu_to_le16(sizeof(*hdr));
1270 hdr->hdr.it_present = cpu_to_le32((1 << IEEE80211_RADIOTAP_FLAGS) |
1271 (1 << IEEE80211_RADIOTAP_RATE) |
1272 (1 << IEEE80211_RADIOTAP_TSFT) |
1273 (1 << IEEE80211_RADIOTAP_CHANNEL));
1274 hdr->rt_tsft = __mac80211_hwsim_get_tsf(data);
1275 hdr->rt_flags = 0;
1276 hdr->rt_rate = bitrate / 5;
1277 hdr->rt_channel = cpu_to_le16(chan->center_freq);
1278 flags = IEEE80211_CHAN_2GHZ;
1279 if (txrate && txrate->flags & IEEE80211_RATE_ERP_G)
1280 flags |= IEEE80211_CHAN_OFDM;
1281 else
1282 flags |= IEEE80211_CHAN_CCK;
1283 hdr->rt_chbitmask = cpu_to_le16(flags);
1284
1285 skb->dev = hwsim_mon;
1286 skb_reset_mac_header(skb);
1287 skb->ip_summed = CHECKSUM_UNNECESSARY;
1288 skb->pkt_type = PACKET_OTHERHOST;
1289 skb->protocol = htons(ETH_P_802_2);
1290 memset(skb->cb, 0, sizeof(skb->cb));
1291 netif_rx(skb);
1292 }
1293
1294
mac80211_hwsim_monitor_ack(struct ieee80211_channel * chan,const u8 * addr)1295 static void mac80211_hwsim_monitor_ack(struct ieee80211_channel *chan,
1296 const u8 *addr)
1297 {
1298 struct sk_buff *skb;
1299 struct hwsim_radiotap_ack_hdr *hdr;
1300 u16 flags;
1301 struct ieee80211_hdr *hdr11;
1302
1303 if (!netif_running(hwsim_mon))
1304 return;
1305
1306 skb = dev_alloc_skb(100);
1307 if (skb == NULL)
1308 return;
1309
1310 hdr = skb_put(skb, sizeof(*hdr));
1311 hdr->hdr.it_version = PKTHDR_RADIOTAP_VERSION;
1312 hdr->hdr.it_pad = 0;
1313 hdr->hdr.it_len = cpu_to_le16(sizeof(*hdr));
1314 hdr->hdr.it_present = cpu_to_le32((1 << IEEE80211_RADIOTAP_FLAGS) |
1315 (1 << IEEE80211_RADIOTAP_CHANNEL));
1316 hdr->rt_flags = 0;
1317 hdr->pad = 0;
1318 hdr->rt_channel = cpu_to_le16(chan->center_freq);
1319 flags = IEEE80211_CHAN_2GHZ;
1320 hdr->rt_chbitmask = cpu_to_le16(flags);
1321
1322 hdr11 = skb_put(skb, 10);
1323 hdr11->frame_control = cpu_to_le16(IEEE80211_FTYPE_CTL |
1324 IEEE80211_STYPE_ACK);
1325 hdr11->duration_id = cpu_to_le16(0);
1326 memcpy(hdr11->addr1, addr, ETH_ALEN);
1327
1328 skb->dev = hwsim_mon;
1329 skb_reset_mac_header(skb);
1330 skb->ip_summed = CHECKSUM_UNNECESSARY;
1331 skb->pkt_type = PACKET_OTHERHOST;
1332 skb->protocol = htons(ETH_P_802_2);
1333 memset(skb->cb, 0, sizeof(skb->cb));
1334 netif_rx(skb);
1335 }
1336
1337 struct mac80211_hwsim_addr_match_data {
1338 u8 addr[ETH_ALEN];
1339 bool ret;
1340 };
1341
mac80211_hwsim_addr_iter(void * data,u8 * mac,struct ieee80211_vif * vif)1342 static void mac80211_hwsim_addr_iter(void *data, u8 *mac,
1343 struct ieee80211_vif *vif)
1344 {
1345 int i;
1346 struct mac80211_hwsim_addr_match_data *md = data;
1347
1348 if (memcmp(mac, md->addr, ETH_ALEN) == 0) {
1349 md->ret = true;
1350 return;
1351 }
1352
1353 /* Match the link address */
1354 for (i = 0; i < ARRAY_SIZE(vif->link_conf); i++) {
1355 struct ieee80211_bss_conf *conf;
1356
1357 conf = rcu_dereference(vif->link_conf[i]);
1358 if (!conf)
1359 continue;
1360
1361 if (memcmp(conf->addr, md->addr, ETH_ALEN) == 0) {
1362 md->ret = true;
1363 return;
1364 }
1365 }
1366 }
1367
mac80211_hwsim_addr_match(struct mac80211_hwsim_data * data,const u8 * addr)1368 static bool mac80211_hwsim_addr_match(struct mac80211_hwsim_data *data,
1369 const u8 *addr)
1370 {
1371 struct mac80211_hwsim_addr_match_data md = {
1372 .ret = false,
1373 };
1374
1375 if (data->scanning && memcmp(addr, data->scan_addr, ETH_ALEN) == 0)
1376 return true;
1377
1378 memcpy(md.addr, addr, ETH_ALEN);
1379
1380 ieee80211_iterate_active_interfaces_atomic(data->hw,
1381 IEEE80211_IFACE_ITER_NORMAL,
1382 mac80211_hwsim_addr_iter,
1383 &md);
1384
1385 return md.ret;
1386 }
1387
hwsim_ps_rx_ok(struct mac80211_hwsim_data * data,struct sk_buff * skb)1388 static bool hwsim_ps_rx_ok(struct mac80211_hwsim_data *data,
1389 struct sk_buff *skb)
1390 {
1391 switch (data->ps) {
1392 case PS_DISABLED:
1393 return true;
1394 case PS_ENABLED:
1395 return false;
1396 case PS_AUTO_POLL:
1397 /* TODO: accept (some) Beacons by default and other frames only
1398 * if pending PS-Poll has been sent */
1399 return true;
1400 case PS_MANUAL_POLL:
1401 /* Allow unicast frames to own address if there is a pending
1402 * PS-Poll */
1403 if (data->ps_poll_pending &&
1404 mac80211_hwsim_addr_match(data, skb->data + 4)) {
1405 data->ps_poll_pending = false;
1406 return true;
1407 }
1408 return false;
1409 }
1410
1411 return true;
1412 }
1413
hwsim_unicast_netgroup(struct mac80211_hwsim_data * data,struct sk_buff * skb,int portid)1414 static int hwsim_unicast_netgroup(struct mac80211_hwsim_data *data,
1415 struct sk_buff *skb, int portid)
1416 {
1417 struct net *net;
1418 bool found = false;
1419 int res = -ENOENT;
1420
1421 rcu_read_lock();
1422 for_each_net_rcu(net) {
1423 if (data->netgroup == hwsim_net_get_netgroup(net)) {
1424 res = genlmsg_unicast(net, skb, portid);
1425 found = true;
1426 break;
1427 }
1428 }
1429 rcu_read_unlock();
1430
1431 if (!found)
1432 nlmsg_free(skb);
1433
1434 return res;
1435 }
1436
mac80211_hwsim_config_mac_nl(struct ieee80211_hw * hw,const u8 * addr,bool add)1437 static void mac80211_hwsim_config_mac_nl(struct ieee80211_hw *hw,
1438 const u8 *addr, bool add)
1439 {
1440 struct mac80211_hwsim_data *data = hw->priv;
1441 u32 _portid = READ_ONCE(data->wmediumd);
1442 struct sk_buff *skb;
1443 void *msg_head;
1444
1445 WARN_ON(!is_valid_ether_addr(addr));
1446
1447 if (!_portid && !hwsim_virtio_enabled)
1448 return;
1449
1450 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_ATOMIC);
1451 if (!skb)
1452 return;
1453
1454 msg_head = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0,
1455 add ? HWSIM_CMD_ADD_MAC_ADDR :
1456 HWSIM_CMD_DEL_MAC_ADDR);
1457 if (!msg_head) {
1458 pr_debug("mac80211_hwsim: problem with msg_head\n");
1459 goto nla_put_failure;
1460 }
1461
1462 if (nla_put(skb, HWSIM_ATTR_ADDR_TRANSMITTER,
1463 ETH_ALEN, data->addresses[1].addr))
1464 goto nla_put_failure;
1465
1466 if (nla_put(skb, HWSIM_ATTR_ADDR_RECEIVER, ETH_ALEN, addr))
1467 goto nla_put_failure;
1468
1469 genlmsg_end(skb, msg_head);
1470
1471 if (hwsim_virtio_enabled)
1472 hwsim_tx_virtio(data, skb);
1473 else
1474 hwsim_unicast_netgroup(data, skb, _portid);
1475 return;
1476 nla_put_failure:
1477 nlmsg_free(skb);
1478 }
1479
trans_tx_rate_flags_ieee2hwsim(struct ieee80211_tx_rate * rate)1480 static inline u16 trans_tx_rate_flags_ieee2hwsim(struct ieee80211_tx_rate *rate)
1481 {
1482 u16 result = 0;
1483
1484 if (rate->flags & IEEE80211_TX_RC_USE_RTS_CTS)
1485 result |= MAC80211_HWSIM_TX_RC_USE_RTS_CTS;
1486 if (rate->flags & IEEE80211_TX_RC_USE_CTS_PROTECT)
1487 result |= MAC80211_HWSIM_TX_RC_USE_CTS_PROTECT;
1488 if (rate->flags & IEEE80211_TX_RC_USE_SHORT_PREAMBLE)
1489 result |= MAC80211_HWSIM_TX_RC_USE_SHORT_PREAMBLE;
1490 if (rate->flags & IEEE80211_TX_RC_MCS)
1491 result |= MAC80211_HWSIM_TX_RC_MCS;
1492 if (rate->flags & IEEE80211_TX_RC_GREEN_FIELD)
1493 result |= MAC80211_HWSIM_TX_RC_GREEN_FIELD;
1494 if (rate->flags & IEEE80211_TX_RC_40_MHZ_WIDTH)
1495 result |= MAC80211_HWSIM_TX_RC_40_MHZ_WIDTH;
1496 if (rate->flags & IEEE80211_TX_RC_DUP_DATA)
1497 result |= MAC80211_HWSIM_TX_RC_DUP_DATA;
1498 if (rate->flags & IEEE80211_TX_RC_SHORT_GI)
1499 result |= MAC80211_HWSIM_TX_RC_SHORT_GI;
1500 if (rate->flags & IEEE80211_TX_RC_VHT_MCS)
1501 result |= MAC80211_HWSIM_TX_RC_VHT_MCS;
1502 if (rate->flags & IEEE80211_TX_RC_80_MHZ_WIDTH)
1503 result |= MAC80211_HWSIM_TX_RC_80_MHZ_WIDTH;
1504 if (rate->flags & IEEE80211_TX_RC_160_MHZ_WIDTH)
1505 result |= MAC80211_HWSIM_TX_RC_160_MHZ_WIDTH;
1506
1507 return result;
1508 }
1509
mac80211_hwsim_tx_frame_nl(struct ieee80211_hw * hw,struct sk_buff * my_skb,int dst_portid,struct ieee80211_channel * channel)1510 static void mac80211_hwsim_tx_frame_nl(struct ieee80211_hw *hw,
1511 struct sk_buff *my_skb,
1512 int dst_portid,
1513 struct ieee80211_channel *channel)
1514 {
1515 struct sk_buff *skb;
1516 struct mac80211_hwsim_data *data = hw->priv;
1517 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) my_skb->data;
1518 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(my_skb);
1519 void *msg_head;
1520 unsigned int hwsim_flags = 0;
1521 int i;
1522 struct hwsim_tx_rate tx_attempts[IEEE80211_TX_MAX_RATES];
1523 struct hwsim_tx_rate_flag tx_attempts_flags[IEEE80211_TX_MAX_RATES];
1524 uintptr_t cookie;
1525
1526 if (data->ps != PS_DISABLED)
1527 hdr->frame_control |= cpu_to_le16(IEEE80211_FCTL_PM);
1528 /* If the queue contains MAX_QUEUE skb's drop some */
1529 if (skb_queue_len(&data->pending) >= MAX_QUEUE) {
1530 /* Dropping until WARN_QUEUE level */
1531 while (skb_queue_len(&data->pending) >= WARN_QUEUE) {
1532 ieee80211_free_txskb(hw, skb_dequeue(&data->pending));
1533 data->tx_dropped++;
1534 }
1535 }
1536
1537 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_ATOMIC);
1538 if (skb == NULL)
1539 goto nla_put_failure;
1540
1541 msg_head = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0,
1542 HWSIM_CMD_FRAME);
1543 if (msg_head == NULL) {
1544 pr_debug("mac80211_hwsim: problem with msg_head\n");
1545 goto nla_put_failure;
1546 }
1547
1548 if (nla_put(skb, HWSIM_ATTR_ADDR_TRANSMITTER,
1549 ETH_ALEN, data->addresses[1].addr))
1550 goto nla_put_failure;
1551
1552 /* We get the skb->data */
1553 if (nla_put(skb, HWSIM_ATTR_FRAME, my_skb->len, my_skb->data))
1554 goto nla_put_failure;
1555
1556 /* We get the flags for this transmission, and we translate them to
1557 wmediumd flags */
1558
1559 if (info->flags & IEEE80211_TX_CTL_REQ_TX_STATUS)
1560 hwsim_flags |= HWSIM_TX_CTL_REQ_TX_STATUS;
1561
1562 if (info->flags & IEEE80211_TX_CTL_NO_ACK)
1563 hwsim_flags |= HWSIM_TX_CTL_NO_ACK;
1564
1565 if (nla_put_u32(skb, HWSIM_ATTR_FLAGS, hwsim_flags))
1566 goto nla_put_failure;
1567
1568 if (nla_put_u32(skb, HWSIM_ATTR_FREQ, channel->center_freq))
1569 goto nla_put_failure;
1570
1571 /* We get the tx control (rate and retries) info*/
1572
1573 for (i = 0; i < IEEE80211_TX_MAX_RATES; i++) {
1574 tx_attempts[i].idx = info->status.rates[i].idx;
1575 tx_attempts_flags[i].idx = info->status.rates[i].idx;
1576 tx_attempts[i].count = info->status.rates[i].count;
1577 tx_attempts_flags[i].flags =
1578 trans_tx_rate_flags_ieee2hwsim(
1579 &info->status.rates[i]);
1580 }
1581
1582 if (nla_put(skb, HWSIM_ATTR_TX_INFO,
1583 sizeof(struct hwsim_tx_rate)*IEEE80211_TX_MAX_RATES,
1584 tx_attempts))
1585 goto nla_put_failure;
1586
1587 if (nla_put(skb, HWSIM_ATTR_TX_INFO_FLAGS,
1588 sizeof(struct hwsim_tx_rate_flag) * IEEE80211_TX_MAX_RATES,
1589 tx_attempts_flags))
1590 goto nla_put_failure;
1591
1592 /* We create a cookie to identify this skb */
1593 cookie = atomic_inc_return(&data->pending_cookie);
1594 info->rate_driver_data[0] = (void *)cookie;
1595 if (nla_put_u64_64bit(skb, HWSIM_ATTR_COOKIE, cookie, HWSIM_ATTR_PAD))
1596 goto nla_put_failure;
1597
1598 genlmsg_end(skb, msg_head);
1599
1600 if (hwsim_virtio_enabled) {
1601 if (hwsim_tx_virtio(data, skb))
1602 goto err_free_txskb;
1603 } else {
1604 if (hwsim_unicast_netgroup(data, skb, dst_portid))
1605 goto err_free_txskb;
1606 }
1607
1608 /* Enqueue the packet */
1609 skb_queue_tail(&data->pending, my_skb);
1610 data->tx_pkts++;
1611 data->tx_bytes += my_skb->len;
1612 return;
1613
1614 nla_put_failure:
1615 nlmsg_free(skb);
1616 err_free_txskb:
1617 pr_debug("mac80211_hwsim: error occurred in %s\n", __func__);
1618 ieee80211_free_txskb(hw, my_skb);
1619 data->tx_failed++;
1620 }
1621
hwsim_chans_compat(struct ieee80211_channel * c1,struct ieee80211_channel * c2)1622 static bool hwsim_chans_compat(struct ieee80211_channel *c1,
1623 struct ieee80211_channel *c2)
1624 {
1625 if (!c1 || !c2)
1626 return false;
1627
1628 return c1->center_freq == c2->center_freq;
1629 }
1630
1631 struct tx_iter_data {
1632 struct ieee80211_channel *channel;
1633 bool receive;
1634 };
1635
mac80211_hwsim_tx_iter(void * _data,u8 * addr,struct ieee80211_vif * vif)1636 static void mac80211_hwsim_tx_iter(void *_data, u8 *addr,
1637 struct ieee80211_vif *vif)
1638 {
1639 struct tx_iter_data *data = _data;
1640 int i;
1641
1642 for (i = 0; i < ARRAY_SIZE(vif->link_conf); i++) {
1643 struct ieee80211_bss_conf *conf;
1644 struct ieee80211_chanctx_conf *chanctx;
1645
1646 conf = rcu_dereference(vif->link_conf[i]);
1647 if (!conf)
1648 continue;
1649
1650 chanctx = rcu_dereference(conf->chanctx_conf);
1651 if (!chanctx)
1652 continue;
1653
1654 if (!hwsim_chans_compat(data->channel, chanctx->def.chan))
1655 continue;
1656
1657 data->receive = true;
1658 return;
1659 }
1660 }
1661
mac80211_hwsim_add_vendor_rtap(struct sk_buff * skb)1662 static void mac80211_hwsim_add_vendor_rtap(struct sk_buff *skb)
1663 {
1664 /*
1665 * To enable this code, #define the HWSIM_RADIOTAP_OUI,
1666 * e.g. like this:
1667 * #define HWSIM_RADIOTAP_OUI "\x02\x00\x00"
1668 * (but you should use a valid OUI, not that)
1669 *
1670 * If anyone wants to 'donate' a radiotap OUI/subns code
1671 * please send a patch removing this #ifdef and changing
1672 * the values accordingly.
1673 */
1674 #ifdef HWSIM_RADIOTAP_OUI
1675 struct ieee80211_radiotap_vendor_tlv *rtap;
1676 static const char vendor_data[8] = "ABCDEFGH";
1677
1678 // Make sure no padding is needed
1679 BUILD_BUG_ON(sizeof(vendor_data) % 4);
1680 /* this is last radiotap info before the mac header, so
1681 * skb_reset_mac_header for mac8022 to know the end of
1682 * the radiotap TLV/beginning of the 802.11 header
1683 */
1684 skb_reset_mac_header(skb);
1685
1686 /*
1687 * Note that this code requires the headroom in the SKB
1688 * that was allocated earlier.
1689 */
1690 rtap = skb_push(skb, sizeof(*rtap) + sizeof(vendor_data));
1691
1692 rtap->len = cpu_to_le16(sizeof(*rtap) -
1693 sizeof(struct ieee80211_radiotap_tlv) +
1694 sizeof(vendor_data));
1695 rtap->type = cpu_to_le16(IEEE80211_RADIOTAP_VENDOR_NAMESPACE);
1696
1697 rtap->content.oui[0] = HWSIM_RADIOTAP_OUI[0];
1698 rtap->content.oui[1] = HWSIM_RADIOTAP_OUI[1];
1699 rtap->content.oui[2] = HWSIM_RADIOTAP_OUI[2];
1700 rtap->content.oui_subtype = 127;
1701 /* clear reserved field */
1702 rtap->content.reserved = 0;
1703 rtap->content.vendor_type = 0;
1704 memcpy(rtap->content.data, vendor_data, sizeof(vendor_data));
1705
1706 IEEE80211_SKB_RXCB(skb)->flag |= RX_FLAG_RADIOTAP_TLV_AT_END;
1707 #endif
1708 }
1709
mac80211_hwsim_rx(struct mac80211_hwsim_data * data,struct ieee80211_rx_status * rx_status,struct sk_buff * skb)1710 static void mac80211_hwsim_rx(struct mac80211_hwsim_data *data,
1711 struct ieee80211_rx_status *rx_status,
1712 struct sk_buff *skb)
1713 {
1714 struct ieee80211_hdr *hdr = (void *)skb->data;
1715
1716 if (!ieee80211_has_morefrags(hdr->frame_control) &&
1717 !is_multicast_ether_addr(hdr->addr1) &&
1718 (ieee80211_is_mgmt(hdr->frame_control) ||
1719 ieee80211_is_data(hdr->frame_control))) {
1720 struct ieee80211_sta *sta;
1721 unsigned int link_id;
1722
1723 rcu_read_lock();
1724 sta = ieee80211_find_sta_by_link_addrs(data->hw, hdr->addr2,
1725 hdr->addr1, &link_id);
1726 if (sta) {
1727 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
1728
1729 if (ieee80211_has_pm(hdr->frame_control))
1730 sp->active_links_rx &= ~BIT(link_id);
1731 else
1732 sp->active_links_rx |= BIT(link_id);
1733
1734 rx_status->link_valid = true;
1735 rx_status->link_id = link_id;
1736 }
1737 rcu_read_unlock();
1738 }
1739
1740 memcpy(IEEE80211_SKB_RXCB(skb), rx_status, sizeof(*rx_status));
1741
1742 mac80211_hwsim_add_vendor_rtap(skb);
1743
1744 data->rx_pkts++;
1745 data->rx_bytes += skb->len;
1746 ieee80211_rx_irqsafe(data->hw, skb);
1747 }
1748
mac80211_hwsim_tx_frame_no_nl(struct ieee80211_hw * hw,struct sk_buff * skb,struct ieee80211_channel * chan)1749 static bool mac80211_hwsim_tx_frame_no_nl(struct ieee80211_hw *hw,
1750 struct sk_buff *skb,
1751 struct ieee80211_channel *chan)
1752 {
1753 struct mac80211_hwsim_data *data = hw->priv, *data2;
1754 bool ack = false;
1755 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
1756 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
1757 struct ieee80211_rx_status rx_status;
1758 u64 now;
1759
1760 memset(&rx_status, 0, sizeof(rx_status));
1761 rx_status.flag |= RX_FLAG_MACTIME_START;
1762 rx_status.freq = chan->center_freq;
1763 rx_status.freq_offset = chan->freq_offset ? 1 : 0;
1764 rx_status.band = chan->band;
1765 if (info->control.rates[0].flags & IEEE80211_TX_RC_VHT_MCS) {
1766 rx_status.rate_idx =
1767 ieee80211_rate_get_vht_mcs(&info->control.rates[0]);
1768 rx_status.nss =
1769 ieee80211_rate_get_vht_nss(&info->control.rates[0]);
1770 rx_status.encoding = RX_ENC_VHT;
1771 } else {
1772 rx_status.rate_idx = info->control.rates[0].idx;
1773 if (info->control.rates[0].flags & IEEE80211_TX_RC_MCS)
1774 rx_status.encoding = RX_ENC_HT;
1775 }
1776 if (info->control.rates[0].flags & IEEE80211_TX_RC_40_MHZ_WIDTH)
1777 rx_status.bw = RATE_INFO_BW_40;
1778 else if (info->control.rates[0].flags & IEEE80211_TX_RC_80_MHZ_WIDTH)
1779 rx_status.bw = RATE_INFO_BW_80;
1780 else if (info->control.rates[0].flags & IEEE80211_TX_RC_160_MHZ_WIDTH)
1781 rx_status.bw = RATE_INFO_BW_160;
1782 else
1783 rx_status.bw = RATE_INFO_BW_20;
1784 if (info->control.rates[0].flags & IEEE80211_TX_RC_SHORT_GI)
1785 rx_status.enc_flags |= RX_ENC_FLAG_SHORT_GI;
1786 /* TODO: simulate optional packet loss */
1787 rx_status.signal = data->rx_rssi;
1788 if (info->control.vif)
1789 rx_status.signal += info->control.vif->bss_conf.txpower;
1790
1791 if (data->ps != PS_DISABLED)
1792 hdr->frame_control |= cpu_to_le16(IEEE80211_FCTL_PM);
1793
1794 /* release the skb's source info */
1795 skb_orphan(skb);
1796 skb_dst_drop(skb);
1797 skb->mark = 0;
1798 skb_ext_reset(skb);
1799 nf_reset_ct(skb);
1800
1801 /*
1802 * Get absolute mactime here so all HWs RX at the "same time", and
1803 * absolute TX time for beacon mactime so the timestamp matches.
1804 * Giving beacons a different mactime than non-beacons looks messy, but
1805 * it helps the Toffset be exact and a ~10us mactime discrepancy
1806 * probably doesn't really matter.
1807 */
1808 if (ieee80211_is_beacon(hdr->frame_control) ||
1809 ieee80211_is_probe_resp(hdr->frame_control)) {
1810 rx_status.boottime_ns = ktime_get_boottime_ns();
1811 now = data->abs_bcn_ts;
1812 } else {
1813 now = mac80211_hwsim_get_tsf_raw();
1814 }
1815
1816 /* Copy skb to all enabled radios that are on the current frequency */
1817 spin_lock(&hwsim_radio_lock);
1818 list_for_each_entry(data2, &hwsim_radios, list) {
1819 struct sk_buff *nskb;
1820 struct tx_iter_data tx_iter_data = {
1821 .receive = false,
1822 .channel = chan,
1823 };
1824
1825 if (data == data2)
1826 continue;
1827
1828 if (!data2->started || (data2->idle && !data2->tmp_chan) ||
1829 !hwsim_ps_rx_ok(data2, skb))
1830 continue;
1831
1832 if (!(data->group & data2->group))
1833 continue;
1834
1835 if (data->netgroup != data2->netgroup)
1836 continue;
1837
1838 if (!hwsim_chans_compat(chan, data2->tmp_chan) &&
1839 !hwsim_chans_compat(chan, data2->channel)) {
1840 ieee80211_iterate_active_interfaces_atomic(
1841 data2->hw, IEEE80211_IFACE_ITER_NORMAL,
1842 mac80211_hwsim_tx_iter, &tx_iter_data);
1843 if (!tx_iter_data.receive)
1844 continue;
1845 }
1846
1847 /*
1848 * reserve some space for our vendor and the normal
1849 * radiotap header, since we're copying anyway
1850 */
1851 if (skb->len < PAGE_SIZE && paged_rx) {
1852 struct page *page = alloc_page(GFP_ATOMIC);
1853
1854 if (!page)
1855 continue;
1856
1857 nskb = dev_alloc_skb(128);
1858 if (!nskb) {
1859 __free_page(page);
1860 continue;
1861 }
1862
1863 memcpy(page_address(page), skb->data, skb->len);
1864 skb_add_rx_frag(nskb, 0, page, 0, skb->len, skb->len);
1865 } else {
1866 nskb = skb_copy(skb, GFP_ATOMIC);
1867 if (!nskb)
1868 continue;
1869 }
1870
1871 if (mac80211_hwsim_addr_match(data2, hdr->addr1))
1872 ack = true;
1873
1874 rx_status.mactime = now + data2->tsf_offset;
1875
1876 mac80211_hwsim_rx(data2, &rx_status, nskb);
1877 }
1878 spin_unlock(&hwsim_radio_lock);
1879
1880 return ack;
1881 }
1882
1883 static struct ieee80211_bss_conf *
mac80211_hwsim_select_tx_link(struct mac80211_hwsim_data * data,struct ieee80211_vif * vif,struct ieee80211_sta * sta,struct ieee80211_hdr * hdr,struct ieee80211_link_sta ** link_sta)1884 mac80211_hwsim_select_tx_link(struct mac80211_hwsim_data *data,
1885 struct ieee80211_vif *vif,
1886 struct ieee80211_sta *sta,
1887 struct ieee80211_hdr *hdr,
1888 struct ieee80211_link_sta **link_sta)
1889 {
1890 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
1891 int i;
1892
1893 if (!ieee80211_vif_is_mld(vif))
1894 return &vif->bss_conf;
1895
1896 WARN_ON(is_multicast_ether_addr(hdr->addr1));
1897
1898 if (WARN_ON_ONCE(!sta || !sta->valid_links))
1899 return &vif->bss_conf;
1900
1901 for (i = 0; i < ARRAY_SIZE(vif->link_conf); i++) {
1902 struct ieee80211_bss_conf *bss_conf;
1903 unsigned int link_id;
1904
1905 /* round-robin the available link IDs */
1906 link_id = (sp->last_link + i + 1) % ARRAY_SIZE(vif->link_conf);
1907
1908 if (!(vif->active_links & BIT(link_id)))
1909 continue;
1910
1911 if (!(sp->active_links_rx & BIT(link_id)))
1912 continue;
1913
1914 *link_sta = rcu_dereference(sta->link[link_id]);
1915 if (!*link_sta)
1916 continue;
1917
1918 bss_conf = rcu_dereference(vif->link_conf[link_id]);
1919 if (WARN_ON_ONCE(!bss_conf))
1920 continue;
1921
1922 /* can happen while switching links */
1923 if (!rcu_access_pointer(bss_conf->chanctx_conf))
1924 continue;
1925
1926 sp->last_link = link_id;
1927 return bss_conf;
1928 }
1929
1930 return NULL;
1931 }
1932
mac80211_hwsim_tx(struct ieee80211_hw * hw,struct ieee80211_tx_control * control,struct sk_buff * skb)1933 static void mac80211_hwsim_tx(struct ieee80211_hw *hw,
1934 struct ieee80211_tx_control *control,
1935 struct sk_buff *skb)
1936 {
1937 struct mac80211_hwsim_data *data = hw->priv;
1938 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
1939 struct ieee80211_hdr *hdr = (void *)skb->data;
1940 struct ieee80211_chanctx_conf *chanctx_conf;
1941 struct ieee80211_channel *channel;
1942 bool ack;
1943 enum nl80211_chan_width confbw = NL80211_CHAN_WIDTH_20_NOHT;
1944 u32 _portid, i;
1945
1946 if (WARN_ON(skb->len < 10)) {
1947 /* Should not happen; just a sanity check for addr1 use */
1948 ieee80211_free_txskb(hw, skb);
1949 return;
1950 }
1951
1952 if (!data->use_chanctx) {
1953 channel = data->channel;
1954 confbw = data->bw;
1955 } else if (txi->hw_queue == 4) {
1956 channel = data->tmp_chan;
1957 } else {
1958 u8 link = u32_get_bits(IEEE80211_SKB_CB(skb)->control.flags,
1959 IEEE80211_TX_CTRL_MLO_LINK);
1960 struct ieee80211_vif *vif = txi->control.vif;
1961 struct ieee80211_link_sta *link_sta = NULL;
1962 struct ieee80211_sta *sta = control->sta;
1963 struct ieee80211_bss_conf *bss_conf;
1964
1965 if (link != IEEE80211_LINK_UNSPECIFIED) {
1966 bss_conf = rcu_dereference(txi->control.vif->link_conf[link]);
1967 if (sta)
1968 link_sta = rcu_dereference(sta->link[link]);
1969 } else {
1970 bss_conf = mac80211_hwsim_select_tx_link(data, vif, sta,
1971 hdr, &link_sta);
1972 }
1973
1974 if (unlikely(!bss_conf)) {
1975 /* if it's an MLO STA, it might have deactivated all
1976 * links temporarily - but we don't handle real PS in
1977 * this code yet, so just drop the frame in that case
1978 */
1979 WARN(link != IEEE80211_LINK_UNSPECIFIED || !sta || !sta->mlo,
1980 "link:%d, sta:%pM, sta->mlo:%d\n",
1981 link, sta ? sta->addr : NULL, sta ? sta->mlo : -1);
1982 ieee80211_free_txskb(hw, skb);
1983 return;
1984 }
1985
1986 if (sta && sta->mlo) {
1987 if (WARN_ON(!link_sta)) {
1988 ieee80211_free_txskb(hw, skb);
1989 return;
1990 }
1991 /* address translation to link addresses on TX */
1992 ether_addr_copy(hdr->addr1, link_sta->addr);
1993 ether_addr_copy(hdr->addr2, bss_conf->addr);
1994 /* translate A3 only if it's the BSSID */
1995 if (!ieee80211_has_tods(hdr->frame_control) &&
1996 !ieee80211_has_fromds(hdr->frame_control)) {
1997 if (ether_addr_equal(hdr->addr3, sta->addr))
1998 ether_addr_copy(hdr->addr3, link_sta->addr);
1999 else if (ether_addr_equal(hdr->addr3, vif->addr))
2000 ether_addr_copy(hdr->addr3, bss_conf->addr);
2001 }
2002 /* no need to look at A4, if present it's SA */
2003 }
2004
2005 chanctx_conf = rcu_dereference(bss_conf->chanctx_conf);
2006 if (chanctx_conf) {
2007 channel = chanctx_conf->def.chan;
2008 confbw = chanctx_conf->def.width;
2009 } else {
2010 channel = NULL;
2011 }
2012 }
2013
2014 if (WARN(!channel, "TX w/o channel - queue = %d\n", txi->hw_queue)) {
2015 ieee80211_free_txskb(hw, skb);
2016 return;
2017 }
2018
2019 if (data->idle && !data->tmp_chan) {
2020 wiphy_dbg(hw->wiphy, "Trying to TX when idle - reject\n");
2021 ieee80211_free_txskb(hw, skb);
2022 return;
2023 }
2024
2025 if (txi->control.vif)
2026 hwsim_check_magic(txi->control.vif);
2027 if (control->sta)
2028 hwsim_check_sta_magic(control->sta);
2029
2030 if (ieee80211_hw_check(hw, SUPPORTS_RC_TABLE))
2031 ieee80211_get_tx_rates(txi->control.vif, control->sta, skb,
2032 txi->control.rates,
2033 ARRAY_SIZE(txi->control.rates));
2034
2035 for (i = 0; i < ARRAY_SIZE(txi->control.rates); i++) {
2036 u16 rflags = txi->control.rates[i].flags;
2037 /* initialize to data->bw for 5/10 MHz handling */
2038 enum nl80211_chan_width bw = data->bw;
2039
2040 if (txi->control.rates[i].idx == -1)
2041 break;
2042
2043 if (rflags & IEEE80211_TX_RC_40_MHZ_WIDTH)
2044 bw = NL80211_CHAN_WIDTH_40;
2045 else if (rflags & IEEE80211_TX_RC_80_MHZ_WIDTH)
2046 bw = NL80211_CHAN_WIDTH_80;
2047 else if (rflags & IEEE80211_TX_RC_160_MHZ_WIDTH)
2048 bw = NL80211_CHAN_WIDTH_160;
2049
2050 if (WARN_ON(hwsim_get_chanwidth(bw) > hwsim_get_chanwidth(confbw)))
2051 return;
2052 }
2053
2054 if (skb->len >= 24 + 8 &&
2055 ieee80211_is_probe_resp(hdr->frame_control)) {
2056 /* fake header transmission time */
2057 struct ieee80211_mgmt *mgmt;
2058 struct ieee80211_rate *txrate;
2059 /* TODO: get MCS */
2060 int bitrate = 100;
2061 u64 ts;
2062
2063 mgmt = (struct ieee80211_mgmt *)skb->data;
2064 txrate = ieee80211_get_tx_rate(hw, txi);
2065 if (txrate)
2066 bitrate = txrate->bitrate;
2067 ts = mac80211_hwsim_get_tsf_raw();
2068 mgmt->u.probe_resp.timestamp =
2069 cpu_to_le64(ts + data->tsf_offset +
2070 24 * 8 * 10 / bitrate);
2071 }
2072
2073 mac80211_hwsim_monitor_rx(hw, skb, channel);
2074
2075 /* wmediumd mode check */
2076 _portid = READ_ONCE(data->wmediumd);
2077
2078 if (_portid || hwsim_virtio_enabled)
2079 return mac80211_hwsim_tx_frame_nl(hw, skb, _portid, channel);
2080
2081 /* NO wmediumd detected, perfect medium simulation */
2082 data->tx_pkts++;
2083 data->tx_bytes += skb->len;
2084 ack = mac80211_hwsim_tx_frame_no_nl(hw, skb, channel);
2085
2086 if (ack && skb->len >= 16)
2087 mac80211_hwsim_monitor_ack(channel, hdr->addr2);
2088
2089 ieee80211_tx_info_clear_status(txi);
2090
2091 /* frame was transmitted at most favorable rate at first attempt */
2092 txi->control.rates[0].count = 1;
2093 txi->control.rates[1].idx = -1;
2094
2095 if (!(txi->flags & IEEE80211_TX_CTL_NO_ACK) && ack)
2096 txi->flags |= IEEE80211_TX_STAT_ACK;
2097 ieee80211_tx_status_irqsafe(hw, skb);
2098 }
2099
2100
mac80211_hwsim_start(struct ieee80211_hw * hw)2101 static int mac80211_hwsim_start(struct ieee80211_hw *hw)
2102 {
2103 struct mac80211_hwsim_data *data = hw->priv;
2104 wiphy_dbg(hw->wiphy, "%s\n", __func__);
2105 data->started = true;
2106 return 0;
2107 }
2108
2109
mac80211_hwsim_stop(struct ieee80211_hw * hw,bool suspend)2110 static void mac80211_hwsim_stop(struct ieee80211_hw *hw, bool suspend)
2111 {
2112 struct mac80211_hwsim_data *data = hw->priv;
2113 int i;
2114
2115 data->started = false;
2116
2117 for (i = 0; i < ARRAY_SIZE(data->link_data); i++)
2118 hrtimer_cancel(&data->link_data[i].beacon_timer);
2119
2120 while (!skb_queue_empty(&data->pending))
2121 ieee80211_free_txskb(hw, skb_dequeue(&data->pending));
2122
2123 wiphy_dbg(hw->wiphy, "%s\n", __func__);
2124 }
2125
2126
mac80211_hwsim_add_interface(struct ieee80211_hw * hw,struct ieee80211_vif * vif)2127 static int mac80211_hwsim_add_interface(struct ieee80211_hw *hw,
2128 struct ieee80211_vif *vif)
2129 {
2130 wiphy_dbg(hw->wiphy, "%s (type=%d mac_addr=%pM)\n",
2131 __func__, ieee80211_vif_type_p2p(vif),
2132 vif->addr);
2133 hwsim_set_magic(vif);
2134
2135 if (vif->type != NL80211_IFTYPE_MONITOR)
2136 mac80211_hwsim_config_mac_nl(hw, vif->addr, true);
2137
2138 vif->cab_queue = 0;
2139 vif->hw_queue[IEEE80211_AC_VO] = 0;
2140 vif->hw_queue[IEEE80211_AC_VI] = 1;
2141 vif->hw_queue[IEEE80211_AC_BE] = 2;
2142 vif->hw_queue[IEEE80211_AC_BK] = 3;
2143
2144 return 0;
2145 }
2146
2147 #ifdef CONFIG_MAC80211_DEBUGFS
2148 static void
mac80211_hwsim_link_add_debugfs(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct dentry * dir)2149 mac80211_hwsim_link_add_debugfs(struct ieee80211_hw *hw,
2150 struct ieee80211_vif *vif,
2151 struct ieee80211_bss_conf *link_conf,
2152 struct dentry *dir)
2153 {
2154 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
2155
2156 debugfs_create_u32("skip_beacons", 0600, dir,
2157 &vp->skip_beacons[link_conf->link_id]);
2158 }
2159 #endif
2160
mac80211_hwsim_change_interface(struct ieee80211_hw * hw,struct ieee80211_vif * vif,enum nl80211_iftype newtype,bool newp2p)2161 static int mac80211_hwsim_change_interface(struct ieee80211_hw *hw,
2162 struct ieee80211_vif *vif,
2163 enum nl80211_iftype newtype,
2164 bool newp2p)
2165 {
2166 newtype = ieee80211_iftype_p2p(newtype, newp2p);
2167 wiphy_dbg(hw->wiphy,
2168 "%s (old type=%d, new type=%d, mac_addr=%pM)\n",
2169 __func__, ieee80211_vif_type_p2p(vif),
2170 newtype, vif->addr);
2171 hwsim_check_magic(vif);
2172
2173 /*
2174 * interface may change from non-AP to AP in
2175 * which case this needs to be set up again
2176 */
2177 vif->cab_queue = 0;
2178
2179 return 0;
2180 }
2181
mac80211_hwsim_remove_interface(struct ieee80211_hw * hw,struct ieee80211_vif * vif)2182 static void mac80211_hwsim_remove_interface(
2183 struct ieee80211_hw *hw, struct ieee80211_vif *vif)
2184 {
2185 wiphy_dbg(hw->wiphy, "%s (type=%d mac_addr=%pM)\n",
2186 __func__, ieee80211_vif_type_p2p(vif),
2187 vif->addr);
2188 hwsim_check_magic(vif);
2189 hwsim_clear_magic(vif);
2190 if (vif->type != NL80211_IFTYPE_MONITOR)
2191 mac80211_hwsim_config_mac_nl(hw, vif->addr, false);
2192 }
2193
mac80211_hwsim_tx_frame(struct ieee80211_hw * hw,struct sk_buff * skb,struct ieee80211_channel * chan)2194 static void mac80211_hwsim_tx_frame(struct ieee80211_hw *hw,
2195 struct sk_buff *skb,
2196 struct ieee80211_channel *chan)
2197 {
2198 struct mac80211_hwsim_data *data = hw->priv;
2199 u32 _portid = READ_ONCE(data->wmediumd);
2200
2201 if (ieee80211_hw_check(hw, SUPPORTS_RC_TABLE)) {
2202 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
2203 ieee80211_get_tx_rates(txi->control.vif, NULL, skb,
2204 txi->control.rates,
2205 ARRAY_SIZE(txi->control.rates));
2206 }
2207
2208 mac80211_hwsim_monitor_rx(hw, skb, chan);
2209
2210 if (_portid || hwsim_virtio_enabled)
2211 return mac80211_hwsim_tx_frame_nl(hw, skb, _portid, chan);
2212
2213 data->tx_pkts++;
2214 data->tx_bytes += skb->len;
2215 mac80211_hwsim_tx_frame_no_nl(hw, skb, chan);
2216 dev_kfree_skb(skb);
2217 }
2218
__mac80211_hwsim_beacon_tx(struct ieee80211_bss_conf * link_conf,struct mac80211_hwsim_data * data,struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct sk_buff * skb)2219 static void __mac80211_hwsim_beacon_tx(struct ieee80211_bss_conf *link_conf,
2220 struct mac80211_hwsim_data *data,
2221 struct ieee80211_hw *hw,
2222 struct ieee80211_vif *vif,
2223 struct sk_buff *skb)
2224 {
2225 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
2226 struct ieee80211_tx_info *info;
2227 struct ieee80211_rate *txrate;
2228 struct ieee80211_mgmt *mgmt;
2229 /* TODO: get MCS */
2230 int bitrate = 100;
2231
2232 if (vp->skip_beacons[link_conf->link_id]) {
2233 vp->skip_beacons[link_conf->link_id]--;
2234 dev_kfree_skb(skb);
2235 return;
2236 }
2237
2238 info = IEEE80211_SKB_CB(skb);
2239 if (ieee80211_hw_check(hw, SUPPORTS_RC_TABLE))
2240 ieee80211_get_tx_rates(vif, NULL, skb,
2241 info->control.rates,
2242 ARRAY_SIZE(info->control.rates));
2243
2244 txrate = ieee80211_get_tx_rate(hw, info);
2245 if (txrate)
2246 bitrate = txrate->bitrate;
2247
2248 mgmt = (struct ieee80211_mgmt *) skb->data;
2249 /* fake header transmission time */
2250 data->abs_bcn_ts = mac80211_hwsim_get_tsf_raw();
2251 if (ieee80211_is_s1g_beacon(mgmt->frame_control)) {
2252 struct ieee80211_ext *ext = (void *) mgmt;
2253
2254 ext->u.s1g_beacon.timestamp = cpu_to_le32(data->abs_bcn_ts +
2255 data->tsf_offset +
2256 10 * 8 * 10 /
2257 bitrate);
2258 } else {
2259 mgmt->u.beacon.timestamp = cpu_to_le64(data->abs_bcn_ts +
2260 data->tsf_offset +
2261 24 * 8 * 10 /
2262 bitrate);
2263 }
2264
2265 mac80211_hwsim_tx_frame(hw, skb,
2266 rcu_dereference(link_conf->chanctx_conf)->def.chan);
2267 }
2268
mac80211_hwsim_beacon_tx(void * arg,u8 * mac,struct ieee80211_vif * vif)2269 static void mac80211_hwsim_beacon_tx(void *arg, u8 *mac,
2270 struct ieee80211_vif *vif)
2271 {
2272 struct mac80211_hwsim_link_data *link_data = arg;
2273 u32 link_id = link_data->link_id;
2274 struct ieee80211_bss_conf *link_conf;
2275 struct mac80211_hwsim_data *data =
2276 container_of(link_data, struct mac80211_hwsim_data,
2277 link_data[link_id]);
2278 struct ieee80211_hw *hw = data->hw;
2279 struct sk_buff *skb;
2280
2281 hwsim_check_magic(vif);
2282
2283 link_conf = rcu_dereference(vif->link_conf[link_id]);
2284 if (!link_conf)
2285 return;
2286
2287 if (vif->type != NL80211_IFTYPE_AP &&
2288 vif->type != NL80211_IFTYPE_MESH_POINT &&
2289 vif->type != NL80211_IFTYPE_ADHOC &&
2290 vif->type != NL80211_IFTYPE_OCB)
2291 return;
2292
2293 if (vif->mbssid_tx_vif && vif->mbssid_tx_vif != vif)
2294 return;
2295
2296 if (vif->bss_conf.ema_ap) {
2297 struct ieee80211_ema_beacons *ema;
2298 u8 i = 0;
2299
2300 ema = ieee80211_beacon_get_template_ema_list(hw, vif, link_id);
2301 if (!ema || !ema->cnt)
2302 return;
2303
2304 for (i = 0; i < ema->cnt; i++) {
2305 __mac80211_hwsim_beacon_tx(link_conf, data, hw, vif,
2306 ema->bcn[i].skb);
2307 ema->bcn[i].skb = NULL; /* Already freed */
2308 }
2309 ieee80211_beacon_free_ema_list(ema);
2310 } else {
2311 skb = ieee80211_beacon_get(hw, vif, link_id);
2312 if (!skb)
2313 return;
2314
2315 __mac80211_hwsim_beacon_tx(link_conf, data, hw, vif, skb);
2316 }
2317
2318 while ((skb = ieee80211_get_buffered_bc(hw, vif)) != NULL) {
2319 mac80211_hwsim_tx_frame(hw, skb,
2320 rcu_dereference(link_conf->chanctx_conf)->def.chan);
2321 }
2322
2323 if (link_conf->csa_active && ieee80211_beacon_cntdwn_is_complete(vif, link_id))
2324 ieee80211_csa_finish(vif, link_id);
2325
2326 if (link_conf->color_change_active &&
2327 ieee80211_beacon_cntdwn_is_complete(vif, link_id))
2328 ieee80211_color_change_finish(vif, link_id);
2329 }
2330
2331 static enum hrtimer_restart
mac80211_hwsim_beacon(struct hrtimer * timer)2332 mac80211_hwsim_beacon(struct hrtimer *timer)
2333 {
2334 struct mac80211_hwsim_link_data *link_data =
2335 container_of(timer, struct mac80211_hwsim_link_data, beacon_timer);
2336 struct mac80211_hwsim_data *data =
2337 container_of(link_data, struct mac80211_hwsim_data,
2338 link_data[link_data->link_id]);
2339 struct ieee80211_hw *hw = data->hw;
2340 u64 bcn_int = link_data->beacon_int;
2341
2342 if (!data->started)
2343 return HRTIMER_NORESTART;
2344
2345 ieee80211_iterate_active_interfaces_atomic(
2346 hw, IEEE80211_IFACE_ITER_NORMAL,
2347 mac80211_hwsim_beacon_tx, link_data);
2348
2349 /* beacon at new TBTT + beacon interval */
2350 if (data->bcn_delta) {
2351 bcn_int -= data->bcn_delta;
2352 data->bcn_delta = 0;
2353 }
2354 hrtimer_forward_now(&link_data->beacon_timer,
2355 ns_to_ktime(bcn_int * NSEC_PER_USEC));
2356 return HRTIMER_RESTART;
2357 }
2358
2359 static const char * const hwsim_chanwidths[] = {
2360 [NL80211_CHAN_WIDTH_5] = "ht5",
2361 [NL80211_CHAN_WIDTH_10] = "ht10",
2362 [NL80211_CHAN_WIDTH_20_NOHT] = "noht",
2363 [NL80211_CHAN_WIDTH_20] = "ht20",
2364 [NL80211_CHAN_WIDTH_40] = "ht40",
2365 [NL80211_CHAN_WIDTH_80] = "vht80",
2366 [NL80211_CHAN_WIDTH_80P80] = "vht80p80",
2367 [NL80211_CHAN_WIDTH_160] = "vht160",
2368 [NL80211_CHAN_WIDTH_1] = "1MHz",
2369 [NL80211_CHAN_WIDTH_2] = "2MHz",
2370 [NL80211_CHAN_WIDTH_4] = "4MHz",
2371 [NL80211_CHAN_WIDTH_8] = "8MHz",
2372 [NL80211_CHAN_WIDTH_16] = "16MHz",
2373 [NL80211_CHAN_WIDTH_320] = "eht320",
2374 };
2375
mac80211_hwsim_config(struct ieee80211_hw * hw,u32 changed)2376 static int mac80211_hwsim_config(struct ieee80211_hw *hw, u32 changed)
2377 {
2378 struct mac80211_hwsim_data *data = hw->priv;
2379 struct ieee80211_conf *conf = &hw->conf;
2380 static const char *smps_modes[IEEE80211_SMPS_NUM_MODES] = {
2381 [IEEE80211_SMPS_AUTOMATIC] = "auto",
2382 [IEEE80211_SMPS_OFF] = "off",
2383 [IEEE80211_SMPS_STATIC] = "static",
2384 [IEEE80211_SMPS_DYNAMIC] = "dynamic",
2385 };
2386 int idx;
2387
2388 if (conf->chandef.chan)
2389 wiphy_dbg(hw->wiphy,
2390 "%s (freq=%d(%d - %d)/%s idle=%d ps=%d smps=%s)\n",
2391 __func__,
2392 conf->chandef.chan->center_freq,
2393 conf->chandef.center_freq1,
2394 conf->chandef.center_freq2,
2395 hwsim_chanwidths[conf->chandef.width],
2396 !!(conf->flags & IEEE80211_CONF_IDLE),
2397 !!(conf->flags & IEEE80211_CONF_PS),
2398 smps_modes[conf->smps_mode]);
2399 else
2400 wiphy_dbg(hw->wiphy,
2401 "%s (freq=0 idle=%d ps=%d smps=%s)\n",
2402 __func__,
2403 !!(conf->flags & IEEE80211_CONF_IDLE),
2404 !!(conf->flags & IEEE80211_CONF_PS),
2405 smps_modes[conf->smps_mode]);
2406
2407 data->idle = !!(conf->flags & IEEE80211_CONF_IDLE);
2408
2409 WARN_ON(conf->chandef.chan && data->use_chanctx);
2410
2411 mutex_lock(&data->mutex);
2412 if (data->scanning && conf->chandef.chan) {
2413 for (idx = 0; idx < ARRAY_SIZE(data->survey_data); idx++) {
2414 if (data->survey_data[idx].channel == data->channel) {
2415 data->survey_data[idx].start =
2416 data->survey_data[idx].next_start;
2417 data->survey_data[idx].end = jiffies;
2418 break;
2419 }
2420 }
2421
2422 data->channel = conf->chandef.chan;
2423 data->bw = conf->chandef.width;
2424
2425 for (idx = 0; idx < ARRAY_SIZE(data->survey_data); idx++) {
2426 if (data->survey_data[idx].channel &&
2427 data->survey_data[idx].channel != data->channel)
2428 continue;
2429 data->survey_data[idx].channel = data->channel;
2430 data->survey_data[idx].next_start = jiffies;
2431 break;
2432 }
2433 } else {
2434 data->channel = conf->chandef.chan;
2435 data->bw = conf->chandef.width;
2436 }
2437 mutex_unlock(&data->mutex);
2438
2439 for (idx = 0; idx < ARRAY_SIZE(data->link_data); idx++) {
2440 struct mac80211_hwsim_link_data *link_data =
2441 &data->link_data[idx];
2442
2443 if (!data->started || !link_data->beacon_int) {
2444 hrtimer_cancel(&link_data->beacon_timer);
2445 } else if (!hrtimer_active(&link_data->beacon_timer)) {
2446 u64 tsf = mac80211_hwsim_get_tsf(hw, NULL);
2447 u32 bcn_int = link_data->beacon_int;
2448 u64 until_tbtt = bcn_int - do_div(tsf, bcn_int);
2449
2450 hrtimer_start(&link_data->beacon_timer,
2451 ns_to_ktime(until_tbtt * NSEC_PER_USEC),
2452 HRTIMER_MODE_REL_SOFT);
2453 }
2454 }
2455
2456 return 0;
2457 }
2458
2459
mac80211_hwsim_configure_filter(struct ieee80211_hw * hw,unsigned int changed_flags,unsigned int * total_flags,u64 multicast)2460 static void mac80211_hwsim_configure_filter(struct ieee80211_hw *hw,
2461 unsigned int changed_flags,
2462 unsigned int *total_flags,u64 multicast)
2463 {
2464 struct mac80211_hwsim_data *data = hw->priv;
2465
2466 wiphy_dbg(hw->wiphy, "%s\n", __func__);
2467
2468 data->rx_filter = 0;
2469 if (*total_flags & FIF_ALLMULTI)
2470 data->rx_filter |= FIF_ALLMULTI;
2471 if (*total_flags & FIF_MCAST_ACTION)
2472 data->rx_filter |= FIF_MCAST_ACTION;
2473
2474 *total_flags = data->rx_filter;
2475 }
2476
mac80211_hwsim_bcn_en_iter(void * data,u8 * mac,struct ieee80211_vif * vif)2477 static void mac80211_hwsim_bcn_en_iter(void *data, u8 *mac,
2478 struct ieee80211_vif *vif)
2479 {
2480 unsigned int *count = data;
2481 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
2482
2483 if (vp->bcn_en)
2484 (*count)++;
2485 }
2486
mac80211_hwsim_vif_info_changed(struct ieee80211_hw * hw,struct ieee80211_vif * vif,u64 changed)2487 static void mac80211_hwsim_vif_info_changed(struct ieee80211_hw *hw,
2488 struct ieee80211_vif *vif,
2489 u64 changed)
2490 {
2491 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
2492
2493 hwsim_check_magic(vif);
2494
2495 wiphy_dbg(hw->wiphy, "%s(changed=0x%llx vif->addr=%pM)\n",
2496 __func__, changed, vif->addr);
2497
2498 if (changed & BSS_CHANGED_ASSOC) {
2499 wiphy_dbg(hw->wiphy, " ASSOC: assoc=%d aid=%d\n",
2500 vif->cfg.assoc, vif->cfg.aid);
2501 vp->assoc = vif->cfg.assoc;
2502 vp->aid = vif->cfg.aid;
2503 }
2504
2505 if (vif->type == NL80211_IFTYPE_STATION &&
2506 changed & (BSS_CHANGED_MLD_VALID_LINKS | BSS_CHANGED_MLD_TTLM)) {
2507 u16 usable_links = ieee80211_vif_usable_links(vif);
2508
2509 if (vif->active_links != usable_links)
2510 ieee80211_set_active_links_async(vif, usable_links);
2511 }
2512 }
2513
mac80211_hwsim_link_info_changed(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_bss_conf * info,u64 changed)2514 static void mac80211_hwsim_link_info_changed(struct ieee80211_hw *hw,
2515 struct ieee80211_vif *vif,
2516 struct ieee80211_bss_conf *info,
2517 u64 changed)
2518 {
2519 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
2520 struct mac80211_hwsim_data *data = hw->priv;
2521 unsigned int link_id = info->link_id;
2522 struct mac80211_hwsim_link_data *link_data = &data->link_data[link_id];
2523
2524 hwsim_check_magic(vif);
2525
2526 wiphy_dbg(hw->wiphy, "%s(changed=0x%llx vif->addr=%pM, link id %u)\n",
2527 __func__, (unsigned long long)changed, vif->addr, link_id);
2528
2529 if (changed & BSS_CHANGED_BSSID) {
2530 wiphy_dbg(hw->wiphy, "%s: BSSID changed: %pM\n",
2531 __func__, info->bssid);
2532 memcpy(vp->bssid, info->bssid, ETH_ALEN);
2533 }
2534
2535 if (changed & BSS_CHANGED_BEACON_ENABLED) {
2536 wiphy_dbg(hw->wiphy, " BCN EN: %d (BI=%u)\n",
2537 info->enable_beacon, info->beacon_int);
2538 vp->bcn_en = info->enable_beacon;
2539 if (data->started &&
2540 !hrtimer_active(&link_data->beacon_timer) &&
2541 info->enable_beacon) {
2542 u64 tsf, until_tbtt;
2543 u32 bcn_int;
2544 link_data->beacon_int = info->beacon_int * 1024;
2545 tsf = mac80211_hwsim_get_tsf(hw, vif);
2546 bcn_int = link_data->beacon_int;
2547 until_tbtt = bcn_int - do_div(tsf, bcn_int);
2548
2549 hrtimer_start(&link_data->beacon_timer,
2550 ns_to_ktime(until_tbtt * NSEC_PER_USEC),
2551 HRTIMER_MODE_REL_SOFT);
2552 } else if (!info->enable_beacon) {
2553 unsigned int count = 0;
2554 ieee80211_iterate_active_interfaces_atomic(
2555 data->hw, IEEE80211_IFACE_ITER_NORMAL,
2556 mac80211_hwsim_bcn_en_iter, &count);
2557 wiphy_dbg(hw->wiphy, " beaconing vifs remaining: %u",
2558 count);
2559 if (count == 0) {
2560 hrtimer_cancel(&link_data->beacon_timer);
2561 link_data->beacon_int = 0;
2562 }
2563 }
2564 }
2565
2566 if (changed & BSS_CHANGED_ERP_CTS_PROT) {
2567 wiphy_dbg(hw->wiphy, " ERP_CTS_PROT: %d\n",
2568 info->use_cts_prot);
2569 }
2570
2571 if (changed & BSS_CHANGED_ERP_PREAMBLE) {
2572 wiphy_dbg(hw->wiphy, " ERP_PREAMBLE: %d\n",
2573 info->use_short_preamble);
2574 }
2575
2576 if (changed & BSS_CHANGED_ERP_SLOT) {
2577 wiphy_dbg(hw->wiphy, " ERP_SLOT: %d\n", info->use_short_slot);
2578 }
2579
2580 if (changed & BSS_CHANGED_HT) {
2581 wiphy_dbg(hw->wiphy, " HT: op_mode=0x%x\n",
2582 info->ht_operation_mode);
2583 }
2584
2585 if (changed & BSS_CHANGED_BASIC_RATES) {
2586 wiphy_dbg(hw->wiphy, " BASIC_RATES: 0x%llx\n",
2587 (unsigned long long) info->basic_rates);
2588 }
2589
2590 if (changed & BSS_CHANGED_TXPOWER)
2591 wiphy_dbg(hw->wiphy, " TX Power: %d dBm\n", info->txpower);
2592 }
2593
2594 static void
mac80211_hwsim_sta_rc_update(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_link_sta * link_sta,u32 changed)2595 mac80211_hwsim_sta_rc_update(struct ieee80211_hw *hw,
2596 struct ieee80211_vif *vif,
2597 struct ieee80211_link_sta *link_sta,
2598 u32 changed)
2599 {
2600 struct mac80211_hwsim_data *data = hw->priv;
2601 struct ieee80211_sta *sta = link_sta->sta;
2602 u32 bw = U32_MAX;
2603 int link_id;
2604
2605 rcu_read_lock();
2606 for (link_id = 0;
2607 link_id < ARRAY_SIZE(vif->link_conf);
2608 link_id++) {
2609 enum nl80211_chan_width confbw = NL80211_CHAN_WIDTH_20_NOHT;
2610 struct ieee80211_bss_conf *vif_conf;
2611
2612 link_sta = rcu_dereference(sta->link[link_id]);
2613
2614 if (!link_sta)
2615 continue;
2616
2617 switch (link_sta->bandwidth) {
2618 #define C(_bw) case IEEE80211_STA_RX_BW_##_bw: bw = _bw; break
2619 C(20);
2620 C(40);
2621 C(80);
2622 C(160);
2623 C(320);
2624 #undef C
2625 }
2626
2627 if (!data->use_chanctx) {
2628 confbw = data->bw;
2629 } else {
2630 struct ieee80211_chanctx_conf *chanctx_conf;
2631
2632 vif_conf = rcu_dereference(vif->link_conf[link_id]);
2633 if (WARN_ON(!vif_conf))
2634 continue;
2635
2636 chanctx_conf = rcu_dereference(vif_conf->chanctx_conf);
2637
2638 if (!WARN_ON(!chanctx_conf))
2639 confbw = chanctx_conf->def.width;
2640 }
2641
2642 WARN(bw > hwsim_get_chanwidth(confbw),
2643 "intf %pM [link=%d]: bad STA %pM bandwidth %d MHz (%d) > channel config %d MHz (%d)\n",
2644 vif->addr, link_id, sta->addr, bw, sta->deflink.bandwidth,
2645 hwsim_get_chanwidth(data->bw), data->bw);
2646
2647
2648 }
2649 rcu_read_unlock();
2650
2651
2652 }
2653
mac80211_hwsim_sta_add(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2654 static int mac80211_hwsim_sta_add(struct ieee80211_hw *hw,
2655 struct ieee80211_vif *vif,
2656 struct ieee80211_sta *sta)
2657 {
2658 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
2659
2660 hwsim_check_magic(vif);
2661 hwsim_set_sta_magic(sta);
2662 mac80211_hwsim_sta_rc_update(hw, vif, &sta->deflink, 0);
2663
2664 if (sta->valid_links) {
2665 WARN(hweight16(sta->valid_links) > 1,
2666 "expect to add STA with single link, have 0x%x\n",
2667 sta->valid_links);
2668 sp->active_links_rx = sta->valid_links;
2669 }
2670
2671 return 0;
2672 }
2673
mac80211_hwsim_sta_remove(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_sta * sta)2674 static int mac80211_hwsim_sta_remove(struct ieee80211_hw *hw,
2675 struct ieee80211_vif *vif,
2676 struct ieee80211_sta *sta)
2677 {
2678 hwsim_check_magic(vif);
2679 hwsim_clear_sta_magic(sta);
2680
2681 return 0;
2682 }
2683
mac80211_hwsim_sta_state(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_sta * sta,enum ieee80211_sta_state old_state,enum ieee80211_sta_state new_state)2684 static int mac80211_hwsim_sta_state(struct ieee80211_hw *hw,
2685 struct ieee80211_vif *vif,
2686 struct ieee80211_sta *sta,
2687 enum ieee80211_sta_state old_state,
2688 enum ieee80211_sta_state new_state)
2689 {
2690 if (new_state == IEEE80211_STA_NOTEXIST)
2691 return mac80211_hwsim_sta_remove(hw, vif, sta);
2692
2693 if (old_state == IEEE80211_STA_NOTEXIST)
2694 return mac80211_hwsim_sta_add(hw, vif, sta);
2695
2696 /*
2697 * in an MLO connection, when client is authorized
2698 * (AP station marked as such), enable all links
2699 */
2700 if (ieee80211_vif_is_mld(vif) &&
2701 vif->type == NL80211_IFTYPE_STATION &&
2702 new_state == IEEE80211_STA_AUTHORIZED && !sta->tdls)
2703 ieee80211_set_active_links_async(vif,
2704 ieee80211_vif_usable_links(vif));
2705
2706 return 0;
2707 }
2708
mac80211_hwsim_sta_notify(struct ieee80211_hw * hw,struct ieee80211_vif * vif,enum sta_notify_cmd cmd,struct ieee80211_sta * sta)2709 static void mac80211_hwsim_sta_notify(struct ieee80211_hw *hw,
2710 struct ieee80211_vif *vif,
2711 enum sta_notify_cmd cmd,
2712 struct ieee80211_sta *sta)
2713 {
2714 hwsim_check_magic(vif);
2715
2716 switch (cmd) {
2717 case STA_NOTIFY_SLEEP:
2718 case STA_NOTIFY_AWAKE:
2719 /* TODO: make good use of these flags */
2720 break;
2721 default:
2722 WARN(1, "Invalid sta notify: %d\n", cmd);
2723 break;
2724 }
2725 }
2726
mac80211_hwsim_set_tim(struct ieee80211_hw * hw,struct ieee80211_sta * sta,bool set)2727 static int mac80211_hwsim_set_tim(struct ieee80211_hw *hw,
2728 struct ieee80211_sta *sta,
2729 bool set)
2730 {
2731 hwsim_check_sta_magic(sta);
2732 return 0;
2733 }
2734
mac80211_hwsim_conf_tx(struct ieee80211_hw * hw,struct ieee80211_vif * vif,unsigned int link_id,u16 queue,const struct ieee80211_tx_queue_params * params)2735 static int mac80211_hwsim_conf_tx(struct ieee80211_hw *hw,
2736 struct ieee80211_vif *vif,
2737 unsigned int link_id, u16 queue,
2738 const struct ieee80211_tx_queue_params *params)
2739 {
2740 wiphy_dbg(hw->wiphy,
2741 "%s (queue=%d txop=%d cw_min=%d cw_max=%d aifs=%d)\n",
2742 __func__, queue,
2743 params->txop, params->cw_min,
2744 params->cw_max, params->aifs);
2745 return 0;
2746 }
2747
mac80211_hwsim_get_survey(struct ieee80211_hw * hw,int idx,struct survey_info * survey)2748 static int mac80211_hwsim_get_survey(struct ieee80211_hw *hw, int idx,
2749 struct survey_info *survey)
2750 {
2751 struct mac80211_hwsim_data *hwsim = hw->priv;
2752
2753 if (idx < 0 || idx >= ARRAY_SIZE(hwsim->survey_data))
2754 return -ENOENT;
2755
2756 mutex_lock(&hwsim->mutex);
2757 survey->channel = hwsim->survey_data[idx].channel;
2758 if (!survey->channel) {
2759 mutex_unlock(&hwsim->mutex);
2760 return -ENOENT;
2761 }
2762
2763 /*
2764 * Magically conjured dummy values --- this is only ok for simulated hardware.
2765 *
2766 * A real driver which cannot determine real values noise MUST NOT
2767 * report any, especially not a magically conjured ones :-)
2768 */
2769 survey->filled = SURVEY_INFO_NOISE_DBM |
2770 SURVEY_INFO_TIME |
2771 SURVEY_INFO_TIME_BUSY;
2772 survey->noise = -92;
2773 survey->time =
2774 jiffies_to_msecs(hwsim->survey_data[idx].end -
2775 hwsim->survey_data[idx].start);
2776 /* report 12.5% of channel time is used */
2777 survey->time_busy = survey->time/8;
2778 mutex_unlock(&hwsim->mutex);
2779
2780 return 0;
2781 }
2782
2783 static enum ieee80211_neg_ttlm_res
mac80211_hwsim_can_neg_ttlm(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_neg_ttlm * neg_ttlm)2784 mac80211_hwsim_can_neg_ttlm(struct ieee80211_hw *hw, struct ieee80211_vif *vif,
2785 struct ieee80211_neg_ttlm *neg_ttlm)
2786 {
2787 u32 i;
2788
2789 /* For testing purposes, accept if all TIDs are mapped to the same links
2790 * set, otherwise reject.
2791 */
2792 for (i = 0; i < IEEE80211_TTLM_NUM_TIDS; i++) {
2793 if (neg_ttlm->downlink[i] != neg_ttlm->uplink[i] ||
2794 neg_ttlm->downlink[i] != neg_ttlm->downlink[0])
2795 return NEG_TTLM_RES_REJECT;
2796 }
2797
2798 return NEG_TTLM_RES_ACCEPT;
2799 }
2800
2801 #ifdef CONFIG_NL80211_TESTMODE
2802 /*
2803 * This section contains example code for using netlink
2804 * attributes with the testmode command in nl80211.
2805 */
2806
2807 /* These enums need to be kept in sync with userspace */
2808 enum hwsim_testmode_attr {
2809 __HWSIM_TM_ATTR_INVALID = 0,
2810 HWSIM_TM_ATTR_CMD = 1,
2811 HWSIM_TM_ATTR_PS = 2,
2812
2813 /* keep last */
2814 __HWSIM_TM_ATTR_AFTER_LAST,
2815 HWSIM_TM_ATTR_MAX = __HWSIM_TM_ATTR_AFTER_LAST - 1
2816 };
2817
2818 enum hwsim_testmode_cmd {
2819 HWSIM_TM_CMD_SET_PS = 0,
2820 HWSIM_TM_CMD_GET_PS = 1,
2821 HWSIM_TM_CMD_STOP_QUEUES = 2,
2822 HWSIM_TM_CMD_WAKE_QUEUES = 3,
2823 };
2824
2825 static const struct nla_policy hwsim_testmode_policy[HWSIM_TM_ATTR_MAX + 1] = {
2826 [HWSIM_TM_ATTR_CMD] = { .type = NLA_U32 },
2827 [HWSIM_TM_ATTR_PS] = { .type = NLA_U32 },
2828 };
2829
mac80211_hwsim_testmode_cmd(struct ieee80211_hw * hw,struct ieee80211_vif * vif,void * data,int len)2830 static int mac80211_hwsim_testmode_cmd(struct ieee80211_hw *hw,
2831 struct ieee80211_vif *vif,
2832 void *data, int len)
2833 {
2834 struct mac80211_hwsim_data *hwsim = hw->priv;
2835 struct nlattr *tb[HWSIM_TM_ATTR_MAX + 1];
2836 struct sk_buff *skb;
2837 int err, ps;
2838
2839 err = nla_parse_deprecated(tb, HWSIM_TM_ATTR_MAX, data, len,
2840 hwsim_testmode_policy, NULL);
2841 if (err)
2842 return err;
2843
2844 if (!tb[HWSIM_TM_ATTR_CMD])
2845 return -EINVAL;
2846
2847 switch (nla_get_u32(tb[HWSIM_TM_ATTR_CMD])) {
2848 case HWSIM_TM_CMD_SET_PS:
2849 if (!tb[HWSIM_TM_ATTR_PS])
2850 return -EINVAL;
2851 ps = nla_get_u32(tb[HWSIM_TM_ATTR_PS]);
2852 return hwsim_fops_ps_write(hwsim, ps);
2853 case HWSIM_TM_CMD_GET_PS:
2854 skb = cfg80211_testmode_alloc_reply_skb(hw->wiphy,
2855 nla_total_size(sizeof(u32)));
2856 if (!skb)
2857 return -ENOMEM;
2858 if (nla_put_u32(skb, HWSIM_TM_ATTR_PS, hwsim->ps))
2859 goto nla_put_failure;
2860 return cfg80211_testmode_reply(skb);
2861 case HWSIM_TM_CMD_STOP_QUEUES:
2862 ieee80211_stop_queues(hw);
2863 return 0;
2864 case HWSIM_TM_CMD_WAKE_QUEUES:
2865 ieee80211_wake_queues(hw);
2866 return 0;
2867 default:
2868 return -EOPNOTSUPP;
2869 }
2870
2871 nla_put_failure:
2872 kfree_skb(skb);
2873 return -ENOBUFS;
2874 }
2875 #endif
2876
mac80211_hwsim_ampdu_action(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_ampdu_params * params)2877 static int mac80211_hwsim_ampdu_action(struct ieee80211_hw *hw,
2878 struct ieee80211_vif *vif,
2879 struct ieee80211_ampdu_params *params)
2880 {
2881 struct ieee80211_sta *sta = params->sta;
2882 enum ieee80211_ampdu_mlme_action action = params->action;
2883 u16 tid = params->tid;
2884
2885 switch (action) {
2886 case IEEE80211_AMPDU_TX_START:
2887 return IEEE80211_AMPDU_TX_START_IMMEDIATE;
2888 case IEEE80211_AMPDU_TX_STOP_CONT:
2889 case IEEE80211_AMPDU_TX_STOP_FLUSH:
2890 case IEEE80211_AMPDU_TX_STOP_FLUSH_CONT:
2891 ieee80211_stop_tx_ba_cb_irqsafe(vif, sta->addr, tid);
2892 break;
2893 case IEEE80211_AMPDU_TX_OPERATIONAL:
2894 break;
2895 case IEEE80211_AMPDU_RX_START:
2896 case IEEE80211_AMPDU_RX_STOP:
2897 break;
2898 default:
2899 return -EOPNOTSUPP;
2900 }
2901
2902 return 0;
2903 }
2904
mac80211_hwsim_flush(struct ieee80211_hw * hw,struct ieee80211_vif * vif,u32 queues,bool drop)2905 static void mac80211_hwsim_flush(struct ieee80211_hw *hw,
2906 struct ieee80211_vif *vif,
2907 u32 queues, bool drop)
2908 {
2909 /* Not implemented, queues only on kernel side */
2910 }
2911
hw_scan_work(struct work_struct * work)2912 static void hw_scan_work(struct work_struct *work)
2913 {
2914 struct mac80211_hwsim_data *hwsim =
2915 container_of(work, struct mac80211_hwsim_data, hw_scan.work);
2916 struct cfg80211_scan_request *req = hwsim->hw_scan_request;
2917 int dwell, i;
2918
2919 mutex_lock(&hwsim->mutex);
2920 if (hwsim->scan_chan_idx >= req->n_channels) {
2921 struct cfg80211_scan_info info = {
2922 .aborted = false,
2923 };
2924
2925 wiphy_dbg(hwsim->hw->wiphy, "hw scan complete\n");
2926 ieee80211_scan_completed(hwsim->hw, &info);
2927 hwsim->hw_scan_request = NULL;
2928 hwsim->hw_scan_vif = NULL;
2929 hwsim->tmp_chan = NULL;
2930 mutex_unlock(&hwsim->mutex);
2931 mac80211_hwsim_config_mac_nl(hwsim->hw, hwsim->scan_addr,
2932 false);
2933 return;
2934 }
2935
2936 wiphy_dbg(hwsim->hw->wiphy, "hw scan %d MHz\n",
2937 req->channels[hwsim->scan_chan_idx]->center_freq);
2938
2939 hwsim->tmp_chan = req->channels[hwsim->scan_chan_idx];
2940 if (hwsim->tmp_chan->flags & (IEEE80211_CHAN_NO_IR |
2941 IEEE80211_CHAN_RADAR) ||
2942 !req->n_ssids) {
2943 dwell = 120;
2944 } else {
2945 dwell = 30;
2946 /* send probes */
2947 for (i = 0; i < req->n_ssids; i++) {
2948 struct sk_buff *probe;
2949 struct ieee80211_mgmt *mgmt;
2950
2951 probe = ieee80211_probereq_get(hwsim->hw,
2952 hwsim->scan_addr,
2953 req->ssids[i].ssid,
2954 req->ssids[i].ssid_len,
2955 req->ie_len);
2956 if (!probe)
2957 continue;
2958
2959 mgmt = (struct ieee80211_mgmt *) probe->data;
2960 memcpy(mgmt->da, req->bssid, ETH_ALEN);
2961 memcpy(mgmt->bssid, req->bssid, ETH_ALEN);
2962
2963 if (req->ie_len)
2964 skb_put_data(probe, req->ie, req->ie_len);
2965
2966 rcu_read_lock();
2967 if (!ieee80211_tx_prepare_skb(hwsim->hw,
2968 hwsim->hw_scan_vif,
2969 probe,
2970 hwsim->tmp_chan->band,
2971 NULL)) {
2972 rcu_read_unlock();
2973 kfree_skb(probe);
2974 continue;
2975 }
2976
2977 local_bh_disable();
2978 mac80211_hwsim_tx_frame(hwsim->hw, probe,
2979 hwsim->tmp_chan);
2980 rcu_read_unlock();
2981 local_bh_enable();
2982 }
2983 }
2984 ieee80211_queue_delayed_work(hwsim->hw, &hwsim->hw_scan,
2985 msecs_to_jiffies(dwell));
2986 hwsim->survey_data[hwsim->scan_chan_idx].channel = hwsim->tmp_chan;
2987 hwsim->survey_data[hwsim->scan_chan_idx].start = jiffies;
2988 hwsim->survey_data[hwsim->scan_chan_idx].end =
2989 jiffies + msecs_to_jiffies(dwell);
2990 hwsim->scan_chan_idx++;
2991 mutex_unlock(&hwsim->mutex);
2992 }
2993
mac80211_hwsim_hw_scan(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_scan_request * hw_req)2994 static int mac80211_hwsim_hw_scan(struct ieee80211_hw *hw,
2995 struct ieee80211_vif *vif,
2996 struct ieee80211_scan_request *hw_req)
2997 {
2998 struct mac80211_hwsim_data *hwsim = hw->priv;
2999 struct cfg80211_scan_request *req = &hw_req->req;
3000
3001 mutex_lock(&hwsim->mutex);
3002 if (WARN_ON(hwsim->tmp_chan || hwsim->hw_scan_request)) {
3003 mutex_unlock(&hwsim->mutex);
3004 return -EBUSY;
3005 }
3006 hwsim->hw_scan_request = req;
3007 hwsim->hw_scan_vif = vif;
3008 hwsim->scan_chan_idx = 0;
3009 if (req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR)
3010 get_random_mask_addr(hwsim->scan_addr,
3011 hw_req->req.mac_addr,
3012 hw_req->req.mac_addr_mask);
3013 else
3014 memcpy(hwsim->scan_addr, vif->addr, ETH_ALEN);
3015 memset(hwsim->survey_data, 0, sizeof(hwsim->survey_data));
3016 mutex_unlock(&hwsim->mutex);
3017
3018 mac80211_hwsim_config_mac_nl(hw, hwsim->scan_addr, true);
3019 wiphy_dbg(hw->wiphy, "hwsim hw_scan request\n");
3020
3021 ieee80211_queue_delayed_work(hwsim->hw, &hwsim->hw_scan, 0);
3022
3023 return 0;
3024 }
3025
mac80211_hwsim_cancel_hw_scan(struct ieee80211_hw * hw,struct ieee80211_vif * vif)3026 static void mac80211_hwsim_cancel_hw_scan(struct ieee80211_hw *hw,
3027 struct ieee80211_vif *vif)
3028 {
3029 struct mac80211_hwsim_data *hwsim = hw->priv;
3030 struct cfg80211_scan_info info = {
3031 .aborted = true,
3032 };
3033
3034 wiphy_dbg(hw->wiphy, "hwsim cancel_hw_scan\n");
3035
3036 cancel_delayed_work_sync(&hwsim->hw_scan);
3037
3038 mutex_lock(&hwsim->mutex);
3039 ieee80211_scan_completed(hwsim->hw, &info);
3040 hwsim->tmp_chan = NULL;
3041 hwsim->hw_scan_request = NULL;
3042 hwsim->hw_scan_vif = NULL;
3043 mutex_unlock(&hwsim->mutex);
3044 }
3045
mac80211_hwsim_sw_scan(struct ieee80211_hw * hw,struct ieee80211_vif * vif,const u8 * mac_addr)3046 static void mac80211_hwsim_sw_scan(struct ieee80211_hw *hw,
3047 struct ieee80211_vif *vif,
3048 const u8 *mac_addr)
3049 {
3050 struct mac80211_hwsim_data *hwsim = hw->priv;
3051
3052 mutex_lock(&hwsim->mutex);
3053
3054 if (hwsim->scanning) {
3055 pr_debug("two hwsim sw_scans detected!\n");
3056 goto out;
3057 }
3058
3059 pr_debug("hwsim sw_scan request, prepping stuff\n");
3060
3061 memcpy(hwsim->scan_addr, mac_addr, ETH_ALEN);
3062 mac80211_hwsim_config_mac_nl(hw, hwsim->scan_addr, true);
3063 hwsim->scanning = true;
3064 memset(hwsim->survey_data, 0, sizeof(hwsim->survey_data));
3065
3066 out:
3067 mutex_unlock(&hwsim->mutex);
3068 }
3069
mac80211_hwsim_sw_scan_complete(struct ieee80211_hw * hw,struct ieee80211_vif * vif)3070 static void mac80211_hwsim_sw_scan_complete(struct ieee80211_hw *hw,
3071 struct ieee80211_vif *vif)
3072 {
3073 struct mac80211_hwsim_data *hwsim = hw->priv;
3074
3075 mutex_lock(&hwsim->mutex);
3076
3077 pr_debug("hwsim sw_scan_complete\n");
3078 hwsim->scanning = false;
3079 mac80211_hwsim_config_mac_nl(hw, hwsim->scan_addr, false);
3080 eth_zero_addr(hwsim->scan_addr);
3081
3082 mutex_unlock(&hwsim->mutex);
3083 }
3084
hw_roc_start(struct work_struct * work)3085 static void hw_roc_start(struct work_struct *work)
3086 {
3087 struct mac80211_hwsim_data *hwsim =
3088 container_of(work, struct mac80211_hwsim_data, roc_start.work);
3089
3090 mutex_lock(&hwsim->mutex);
3091
3092 wiphy_dbg(hwsim->hw->wiphy, "hwsim ROC begins\n");
3093 hwsim->tmp_chan = hwsim->roc_chan;
3094 ieee80211_ready_on_channel(hwsim->hw);
3095
3096 ieee80211_queue_delayed_work(hwsim->hw, &hwsim->roc_done,
3097 msecs_to_jiffies(hwsim->roc_duration));
3098
3099 mutex_unlock(&hwsim->mutex);
3100 }
3101
hw_roc_done(struct work_struct * work)3102 static void hw_roc_done(struct work_struct *work)
3103 {
3104 struct mac80211_hwsim_data *hwsim =
3105 container_of(work, struct mac80211_hwsim_data, roc_done.work);
3106
3107 mutex_lock(&hwsim->mutex);
3108 ieee80211_remain_on_channel_expired(hwsim->hw);
3109 hwsim->tmp_chan = NULL;
3110 mutex_unlock(&hwsim->mutex);
3111
3112 wiphy_dbg(hwsim->hw->wiphy, "hwsim ROC expired\n");
3113 }
3114
mac80211_hwsim_roc(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_channel * chan,int duration,enum ieee80211_roc_type type)3115 static int mac80211_hwsim_roc(struct ieee80211_hw *hw,
3116 struct ieee80211_vif *vif,
3117 struct ieee80211_channel *chan,
3118 int duration,
3119 enum ieee80211_roc_type type)
3120 {
3121 struct mac80211_hwsim_data *hwsim = hw->priv;
3122
3123 mutex_lock(&hwsim->mutex);
3124 if (WARN_ON(hwsim->tmp_chan || hwsim->hw_scan_request)) {
3125 mutex_unlock(&hwsim->mutex);
3126 return -EBUSY;
3127 }
3128
3129 hwsim->roc_chan = chan;
3130 hwsim->roc_duration = duration;
3131 mutex_unlock(&hwsim->mutex);
3132
3133 wiphy_dbg(hw->wiphy, "hwsim ROC (%d MHz, %d ms)\n",
3134 chan->center_freq, duration);
3135 ieee80211_queue_delayed_work(hw, &hwsim->roc_start, HZ/50);
3136
3137 return 0;
3138 }
3139
mac80211_hwsim_croc(struct ieee80211_hw * hw,struct ieee80211_vif * vif)3140 static int mac80211_hwsim_croc(struct ieee80211_hw *hw,
3141 struct ieee80211_vif *vif)
3142 {
3143 struct mac80211_hwsim_data *hwsim = hw->priv;
3144
3145 cancel_delayed_work_sync(&hwsim->roc_start);
3146 cancel_delayed_work_sync(&hwsim->roc_done);
3147
3148 mutex_lock(&hwsim->mutex);
3149 hwsim->tmp_chan = NULL;
3150 mutex_unlock(&hwsim->mutex);
3151
3152 wiphy_dbg(hw->wiphy, "hwsim ROC canceled\n");
3153
3154 return 0;
3155 }
3156
mac80211_hwsim_add_chanctx(struct ieee80211_hw * hw,struct ieee80211_chanctx_conf * ctx)3157 static int mac80211_hwsim_add_chanctx(struct ieee80211_hw *hw,
3158 struct ieee80211_chanctx_conf *ctx)
3159 {
3160 hwsim_set_chanctx_magic(ctx);
3161 wiphy_dbg(hw->wiphy,
3162 "add channel context control: %d MHz/width: %d/cfreqs:%d/%d MHz\n",
3163 ctx->def.chan->center_freq, ctx->def.width,
3164 ctx->def.center_freq1, ctx->def.center_freq2);
3165 return 0;
3166 }
3167
mac80211_hwsim_remove_chanctx(struct ieee80211_hw * hw,struct ieee80211_chanctx_conf * ctx)3168 static void mac80211_hwsim_remove_chanctx(struct ieee80211_hw *hw,
3169 struct ieee80211_chanctx_conf *ctx)
3170 {
3171 wiphy_dbg(hw->wiphy,
3172 "remove channel context control: %d MHz/width: %d/cfreqs:%d/%d MHz\n",
3173 ctx->def.chan->center_freq, ctx->def.width,
3174 ctx->def.center_freq1, ctx->def.center_freq2);
3175 hwsim_check_chanctx_magic(ctx);
3176 hwsim_clear_chanctx_magic(ctx);
3177 }
3178
mac80211_hwsim_change_chanctx(struct ieee80211_hw * hw,struct ieee80211_chanctx_conf * ctx,u32 changed)3179 static void mac80211_hwsim_change_chanctx(struct ieee80211_hw *hw,
3180 struct ieee80211_chanctx_conf *ctx,
3181 u32 changed)
3182 {
3183 hwsim_check_chanctx_magic(ctx);
3184 wiphy_dbg(hw->wiphy,
3185 "change channel context control: %d MHz/width: %d/cfreqs:%d/%d MHz\n",
3186 ctx->def.chan->center_freq, ctx->def.width,
3187 ctx->def.center_freq1, ctx->def.center_freq2);
3188 }
3189
mac80211_hwsim_assign_vif_chanctx(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct ieee80211_chanctx_conf * ctx)3190 static int mac80211_hwsim_assign_vif_chanctx(struct ieee80211_hw *hw,
3191 struct ieee80211_vif *vif,
3192 struct ieee80211_bss_conf *link_conf,
3193 struct ieee80211_chanctx_conf *ctx)
3194 {
3195 hwsim_check_magic(vif);
3196 hwsim_check_chanctx_magic(ctx);
3197
3198 /* if we activate a link while already associated wake it up */
3199 if (vif->type == NL80211_IFTYPE_STATION && vif->cfg.assoc) {
3200 struct sk_buff *skb;
3201
3202 skb = ieee80211_nullfunc_get(hw, vif, link_conf->link_id, true);
3203 if (skb) {
3204 local_bh_disable();
3205 mac80211_hwsim_tx_frame(hw, skb, ctx->def.chan);
3206 local_bh_enable();
3207 }
3208 }
3209
3210 return 0;
3211 }
3212
mac80211_hwsim_unassign_vif_chanctx(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_bss_conf * link_conf,struct ieee80211_chanctx_conf * ctx)3213 static void mac80211_hwsim_unassign_vif_chanctx(struct ieee80211_hw *hw,
3214 struct ieee80211_vif *vif,
3215 struct ieee80211_bss_conf *link_conf,
3216 struct ieee80211_chanctx_conf *ctx)
3217 {
3218 hwsim_check_magic(vif);
3219 hwsim_check_chanctx_magic(ctx);
3220
3221 /* if we deactivate a link while associated suspend it first */
3222 if (vif->type == NL80211_IFTYPE_STATION && vif->cfg.assoc) {
3223 struct sk_buff *skb;
3224
3225 skb = ieee80211_nullfunc_get(hw, vif, link_conf->link_id, true);
3226 if (skb) {
3227 struct ieee80211_hdr *hdr = (void *)skb->data;
3228
3229 hdr->frame_control |= cpu_to_le16(IEEE80211_FCTL_PM);
3230
3231 local_bh_disable();
3232 mac80211_hwsim_tx_frame(hw, skb, ctx->def.chan);
3233 local_bh_enable();
3234 }
3235 }
3236 }
3237
mac80211_hwsim_switch_vif_chanctx(struct ieee80211_hw * hw,struct ieee80211_vif_chanctx_switch * vifs,int n_vifs,enum ieee80211_chanctx_switch_mode mode)3238 static int mac80211_hwsim_switch_vif_chanctx(struct ieee80211_hw *hw,
3239 struct ieee80211_vif_chanctx_switch *vifs,
3240 int n_vifs,
3241 enum ieee80211_chanctx_switch_mode mode)
3242 {
3243 int i;
3244
3245 if (n_vifs <= 0)
3246 return -EINVAL;
3247
3248 wiphy_dbg(hw->wiphy,
3249 "switch vif channel context mode: %u\n", mode);
3250
3251 for (i = 0; i < n_vifs; i++) {
3252 hwsim_check_chanctx_magic(vifs[i].old_ctx);
3253 wiphy_dbg(hw->wiphy,
3254 "switch vif channel context: %d MHz/width: %d/cfreqs:%d/%d MHz -> %d MHz/width: %d/cfreqs:%d/%d MHz\n",
3255 vifs[i].old_ctx->def.chan->center_freq,
3256 vifs[i].old_ctx->def.width,
3257 vifs[i].old_ctx->def.center_freq1,
3258 vifs[i].old_ctx->def.center_freq2,
3259 vifs[i].new_ctx->def.chan->center_freq,
3260 vifs[i].new_ctx->def.width,
3261 vifs[i].new_ctx->def.center_freq1,
3262 vifs[i].new_ctx->def.center_freq2);
3263
3264 switch (mode) {
3265 case CHANCTX_SWMODE_REASSIGN_VIF:
3266 hwsim_check_chanctx_magic(vifs[i].new_ctx);
3267 break;
3268 case CHANCTX_SWMODE_SWAP_CONTEXTS:
3269 hwsim_set_chanctx_magic(vifs[i].new_ctx);
3270 hwsim_clear_chanctx_magic(vifs[i].old_ctx);
3271 break;
3272 default:
3273 WARN(1, "Invalid mode %d\n", mode);
3274 }
3275 }
3276 return 0;
3277 }
3278
3279 static const char mac80211_hwsim_gstrings_stats[][ETH_GSTRING_LEN] = {
3280 "tx_pkts_nic",
3281 "tx_bytes_nic",
3282 "rx_pkts_nic",
3283 "rx_bytes_nic",
3284 "d_tx_dropped",
3285 "d_tx_failed",
3286 "d_ps_mode",
3287 "d_group",
3288 };
3289
3290 #define MAC80211_HWSIM_SSTATS_LEN ARRAY_SIZE(mac80211_hwsim_gstrings_stats)
3291
mac80211_hwsim_get_et_strings(struct ieee80211_hw * hw,struct ieee80211_vif * vif,u32 sset,u8 * data)3292 static void mac80211_hwsim_get_et_strings(struct ieee80211_hw *hw,
3293 struct ieee80211_vif *vif,
3294 u32 sset, u8 *data)
3295 {
3296 if (sset == ETH_SS_STATS)
3297 memcpy(data, mac80211_hwsim_gstrings_stats,
3298 sizeof(mac80211_hwsim_gstrings_stats));
3299 }
3300
mac80211_hwsim_get_et_sset_count(struct ieee80211_hw * hw,struct ieee80211_vif * vif,int sset)3301 static int mac80211_hwsim_get_et_sset_count(struct ieee80211_hw *hw,
3302 struct ieee80211_vif *vif, int sset)
3303 {
3304 if (sset == ETH_SS_STATS)
3305 return MAC80211_HWSIM_SSTATS_LEN;
3306 return 0;
3307 }
3308
mac80211_hwsim_get_et_stats(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ethtool_stats * stats,u64 * data)3309 static void mac80211_hwsim_get_et_stats(struct ieee80211_hw *hw,
3310 struct ieee80211_vif *vif,
3311 struct ethtool_stats *stats, u64 *data)
3312 {
3313 struct mac80211_hwsim_data *ar = hw->priv;
3314 int i = 0;
3315
3316 data[i++] = ar->tx_pkts;
3317 data[i++] = ar->tx_bytes;
3318 data[i++] = ar->rx_pkts;
3319 data[i++] = ar->rx_bytes;
3320 data[i++] = ar->tx_dropped;
3321 data[i++] = ar->tx_failed;
3322 data[i++] = ar->ps;
3323 data[i++] = ar->group;
3324
3325 WARN_ON(i != MAC80211_HWSIM_SSTATS_LEN);
3326 }
3327
mac80211_hwsim_tx_last_beacon(struct ieee80211_hw * hw)3328 static int mac80211_hwsim_tx_last_beacon(struct ieee80211_hw *hw)
3329 {
3330 return 1;
3331 }
3332
mac80211_hwsim_set_rts_threshold(struct ieee80211_hw * hw,u32 value)3333 static int mac80211_hwsim_set_rts_threshold(struct ieee80211_hw *hw, u32 value)
3334 {
3335 return -EOPNOTSUPP;
3336 }
3337
mac80211_hwsim_change_vif_links(struct ieee80211_hw * hw,struct ieee80211_vif * vif,u16 old_links,u16 new_links,struct ieee80211_bss_conf * old[IEEE80211_MLD_MAX_NUM_LINKS])3338 static int mac80211_hwsim_change_vif_links(struct ieee80211_hw *hw,
3339 struct ieee80211_vif *vif,
3340 u16 old_links, u16 new_links,
3341 struct ieee80211_bss_conf *old[IEEE80211_MLD_MAX_NUM_LINKS])
3342 {
3343 unsigned long rem = old_links & ~new_links;
3344 unsigned long add = new_links & ~old_links;
3345 int i;
3346
3347 if (!old_links)
3348 rem |= BIT(0);
3349 if (!new_links)
3350 add |= BIT(0);
3351
3352 for_each_set_bit(i, &rem, IEEE80211_MLD_MAX_NUM_LINKS)
3353 mac80211_hwsim_config_mac_nl(hw, old[i]->addr, false);
3354
3355 for_each_set_bit(i, &add, IEEE80211_MLD_MAX_NUM_LINKS) {
3356 struct ieee80211_bss_conf *link_conf;
3357
3358 link_conf = link_conf_dereference_protected(vif, i);
3359 if (WARN_ON(!link_conf))
3360 continue;
3361
3362 mac80211_hwsim_config_mac_nl(hw, link_conf->addr, true);
3363 }
3364
3365 return 0;
3366 }
3367
mac80211_hwsim_change_sta_links(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct ieee80211_sta * sta,u16 old_links,u16 new_links)3368 static int mac80211_hwsim_change_sta_links(struct ieee80211_hw *hw,
3369 struct ieee80211_vif *vif,
3370 struct ieee80211_sta *sta,
3371 u16 old_links, u16 new_links)
3372 {
3373 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
3374
3375 hwsim_check_sta_magic(sta);
3376
3377 if (vif->type == NL80211_IFTYPE_STATION)
3378 sp->active_links_rx = new_links;
3379
3380 return 0;
3381 }
3382
mac80211_hwsim_send_pmsr_ftm_request_peer(struct sk_buff * msg,struct cfg80211_pmsr_ftm_request_peer * request)3383 static int mac80211_hwsim_send_pmsr_ftm_request_peer(struct sk_buff *msg,
3384 struct cfg80211_pmsr_ftm_request_peer *request)
3385 {
3386 struct nlattr *ftm;
3387
3388 if (!request->requested)
3389 return -EINVAL;
3390
3391 ftm = nla_nest_start(msg, NL80211_PMSR_TYPE_FTM);
3392 if (!ftm)
3393 return -ENOBUFS;
3394
3395 if (nla_put_u32(msg, NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE, request->preamble))
3396 return -ENOBUFS;
3397
3398 if (nla_put_u16(msg, NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD, request->burst_period))
3399 return -ENOBUFS;
3400
3401 if (request->asap && nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_ASAP))
3402 return -ENOBUFS;
3403
3404 if (request->request_lci && nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI))
3405 return -ENOBUFS;
3406
3407 if (request->request_civicloc &&
3408 nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC))
3409 return -ENOBUFS;
3410
3411 if (request->trigger_based && nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED))
3412 return -ENOBUFS;
3413
3414 if (request->non_trigger_based &&
3415 nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED))
3416 return -ENOBUFS;
3417
3418 if (request->lmr_feedback && nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK))
3419 return -ENOBUFS;
3420
3421 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP, request->num_bursts_exp))
3422 return -ENOBUFS;
3423
3424 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION, request->burst_duration))
3425 return -ENOBUFS;
3426
3427 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST, request->ftms_per_burst))
3428 return -ENOBUFS;
3429
3430 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES, request->ftmr_retries))
3431 return -ENOBUFS;
3432
3433 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION, request->burst_duration))
3434 return -ENOBUFS;
3435
3436 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_BSS_COLOR, request->bss_color))
3437 return -ENOBUFS;
3438
3439 nla_nest_end(msg, ftm);
3440
3441 return 0;
3442 }
3443
mac80211_hwsim_send_pmsr_request_peer(struct sk_buff * msg,struct cfg80211_pmsr_request_peer * request)3444 static int mac80211_hwsim_send_pmsr_request_peer(struct sk_buff *msg,
3445 struct cfg80211_pmsr_request_peer *request)
3446 {
3447 struct nlattr *peer, *chandef, *req, *data;
3448 int err;
3449
3450 peer = nla_nest_start(msg, NL80211_PMSR_ATTR_PEERS);
3451 if (!peer)
3452 return -ENOBUFS;
3453
3454 if (nla_put(msg, NL80211_PMSR_PEER_ATTR_ADDR, ETH_ALEN,
3455 request->addr))
3456 return -ENOBUFS;
3457
3458 chandef = nla_nest_start(msg, NL80211_PMSR_PEER_ATTR_CHAN);
3459 if (!chandef)
3460 return -ENOBUFS;
3461
3462 err = nl80211_send_chandef(msg, &request->chandef);
3463 if (err)
3464 return err;
3465
3466 nla_nest_end(msg, chandef);
3467
3468 req = nla_nest_start(msg, NL80211_PMSR_PEER_ATTR_REQ);
3469 if (!req)
3470 return -ENOBUFS;
3471
3472 if (request->report_ap_tsf && nla_put_flag(msg, NL80211_PMSR_REQ_ATTR_GET_AP_TSF))
3473 return -ENOBUFS;
3474
3475 data = nla_nest_start(msg, NL80211_PMSR_REQ_ATTR_DATA);
3476 if (!data)
3477 return -ENOBUFS;
3478
3479 err = mac80211_hwsim_send_pmsr_ftm_request_peer(msg, &request->ftm);
3480 if (err)
3481 return err;
3482
3483 nla_nest_end(msg, data);
3484 nla_nest_end(msg, req);
3485 nla_nest_end(msg, peer);
3486
3487 return 0;
3488 }
3489
mac80211_hwsim_send_pmsr_request(struct sk_buff * msg,struct cfg80211_pmsr_request * request)3490 static int mac80211_hwsim_send_pmsr_request(struct sk_buff *msg,
3491 struct cfg80211_pmsr_request *request)
3492 {
3493 struct nlattr *pmsr;
3494 int err;
3495
3496 pmsr = nla_nest_start(msg, NL80211_ATTR_PEER_MEASUREMENTS);
3497 if (!pmsr)
3498 return -ENOBUFS;
3499
3500 if (nla_put_u32(msg, NL80211_ATTR_TIMEOUT, request->timeout))
3501 return -ENOBUFS;
3502
3503 if (!is_zero_ether_addr(request->mac_addr)) {
3504 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, request->mac_addr))
3505 return -ENOBUFS;
3506 if (nla_put(msg, NL80211_ATTR_MAC_MASK, ETH_ALEN, request->mac_addr_mask))
3507 return -ENOBUFS;
3508 }
3509
3510 for (int i = 0; i < request->n_peers; i++) {
3511 err = mac80211_hwsim_send_pmsr_request_peer(msg, &request->peers[i]);
3512 if (err)
3513 return err;
3514 }
3515
3516 nla_nest_end(msg, pmsr);
3517
3518 return 0;
3519 }
3520
mac80211_hwsim_start_pmsr(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct cfg80211_pmsr_request * request)3521 static int mac80211_hwsim_start_pmsr(struct ieee80211_hw *hw,
3522 struct ieee80211_vif *vif,
3523 struct cfg80211_pmsr_request *request)
3524 {
3525 struct mac80211_hwsim_data *data;
3526 struct sk_buff *skb = NULL;
3527 struct nlattr *pmsr;
3528 void *msg_head;
3529 u32 _portid;
3530 int err = 0;
3531
3532 data = hw->priv;
3533 _portid = READ_ONCE(data->wmediumd);
3534 if (!_portid && !hwsim_virtio_enabled)
3535 return -EOPNOTSUPP;
3536
3537 mutex_lock(&data->mutex);
3538
3539 if (data->pmsr_request) {
3540 err = -EBUSY;
3541 goto out_free;
3542 }
3543
3544 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
3545
3546 if (!skb) {
3547 err = -ENOMEM;
3548 goto out_free;
3549 }
3550
3551 msg_head = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0, HWSIM_CMD_START_PMSR);
3552
3553 if (nla_put(skb, HWSIM_ATTR_ADDR_TRANSMITTER,
3554 ETH_ALEN, data->addresses[1].addr)) {
3555 err = -ENOMEM;
3556 goto out_free;
3557 }
3558
3559 pmsr = nla_nest_start(skb, HWSIM_ATTR_PMSR_REQUEST);
3560 if (!pmsr) {
3561 err = -ENOMEM;
3562 goto out_free;
3563 }
3564
3565 err = mac80211_hwsim_send_pmsr_request(skb, request);
3566 if (err)
3567 goto out_free;
3568
3569 nla_nest_end(skb, pmsr);
3570
3571 genlmsg_end(skb, msg_head);
3572 if (hwsim_virtio_enabled)
3573 hwsim_tx_virtio(data, skb);
3574 else
3575 hwsim_unicast_netgroup(data, skb, _portid);
3576
3577 data->pmsr_request = request;
3578 data->pmsr_request_wdev = ieee80211_vif_to_wdev(vif);
3579
3580 out_free:
3581 if (err && skb)
3582 nlmsg_free(skb);
3583
3584 mutex_unlock(&data->mutex);
3585 return err;
3586 }
3587
mac80211_hwsim_abort_pmsr(struct ieee80211_hw * hw,struct ieee80211_vif * vif,struct cfg80211_pmsr_request * request)3588 static void mac80211_hwsim_abort_pmsr(struct ieee80211_hw *hw,
3589 struct ieee80211_vif *vif,
3590 struct cfg80211_pmsr_request *request)
3591 {
3592 struct mac80211_hwsim_data *data;
3593 struct sk_buff *skb = NULL;
3594 struct nlattr *pmsr;
3595 void *msg_head;
3596 u32 _portid;
3597 int err = 0;
3598
3599 data = hw->priv;
3600 _portid = READ_ONCE(data->wmediumd);
3601 if (!_portid && !hwsim_virtio_enabled)
3602 return;
3603
3604 mutex_lock(&data->mutex);
3605
3606 if (data->pmsr_request != request) {
3607 err = -EINVAL;
3608 goto out;
3609 }
3610
3611 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
3612 if (!skb) {
3613 err = -ENOMEM;
3614 goto out;
3615 }
3616
3617 msg_head = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0, HWSIM_CMD_ABORT_PMSR);
3618
3619 if (nla_put(skb, HWSIM_ATTR_ADDR_TRANSMITTER, ETH_ALEN, data->addresses[1].addr))
3620 goto out;
3621
3622 pmsr = nla_nest_start(skb, HWSIM_ATTR_PMSR_REQUEST);
3623 if (!pmsr) {
3624 err = -ENOMEM;
3625 goto out;
3626 }
3627
3628 err = mac80211_hwsim_send_pmsr_request(skb, request);
3629 if (err)
3630 goto out;
3631
3632 err = nla_nest_end(skb, pmsr);
3633 if (err)
3634 goto out;
3635
3636 genlmsg_end(skb, msg_head);
3637 if (hwsim_virtio_enabled)
3638 hwsim_tx_virtio(data, skb);
3639 else
3640 hwsim_unicast_netgroup(data, skb, _portid);
3641
3642 out:
3643 if (err && skb)
3644 nlmsg_free(skb);
3645
3646 mutex_unlock(&data->mutex);
3647 }
3648
mac80211_hwsim_parse_rate_info(struct nlattr * rateattr,struct rate_info * rate_info,struct genl_info * info)3649 static int mac80211_hwsim_parse_rate_info(struct nlattr *rateattr,
3650 struct rate_info *rate_info,
3651 struct genl_info *info)
3652 {
3653 struct nlattr *tb[HWSIM_RATE_INFO_ATTR_MAX + 1];
3654 int ret;
3655
3656 ret = nla_parse_nested(tb, HWSIM_RATE_INFO_ATTR_MAX,
3657 rateattr, hwsim_rate_info_policy, info->extack);
3658 if (ret)
3659 return ret;
3660
3661 if (tb[HWSIM_RATE_INFO_ATTR_FLAGS])
3662 rate_info->flags = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_FLAGS]);
3663
3664 if (tb[HWSIM_RATE_INFO_ATTR_MCS])
3665 rate_info->mcs = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_MCS]);
3666
3667 if (tb[HWSIM_RATE_INFO_ATTR_LEGACY])
3668 rate_info->legacy = nla_get_u16(tb[HWSIM_RATE_INFO_ATTR_LEGACY]);
3669
3670 if (tb[HWSIM_RATE_INFO_ATTR_NSS])
3671 rate_info->nss = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_NSS]);
3672
3673 if (tb[HWSIM_RATE_INFO_ATTR_BW])
3674 rate_info->bw = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_BW]);
3675
3676 if (tb[HWSIM_RATE_INFO_ATTR_HE_GI])
3677 rate_info->he_gi = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_HE_GI]);
3678
3679 if (tb[HWSIM_RATE_INFO_ATTR_HE_DCM])
3680 rate_info->he_dcm = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_HE_DCM]);
3681
3682 if (tb[HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC])
3683 rate_info->he_ru_alloc =
3684 nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC]);
3685
3686 if (tb[HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH])
3687 rate_info->n_bonded_ch = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH]);
3688
3689 if (tb[HWSIM_RATE_INFO_ATTR_EHT_GI])
3690 rate_info->eht_gi = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_EHT_GI]);
3691
3692 if (tb[HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC])
3693 rate_info->eht_ru_alloc = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC]);
3694
3695 return 0;
3696 }
3697
mac80211_hwsim_parse_ftm_result(struct nlattr * ftm,struct cfg80211_pmsr_ftm_result * result,struct genl_info * info)3698 static int mac80211_hwsim_parse_ftm_result(struct nlattr *ftm,
3699 struct cfg80211_pmsr_ftm_result *result,
3700 struct genl_info *info)
3701 {
3702 struct nlattr *tb[NL80211_PMSR_FTM_RESP_ATTR_MAX + 1];
3703 int ret;
3704
3705 ret = nla_parse_nested(tb, NL80211_PMSR_FTM_RESP_ATTR_MAX,
3706 ftm, hwsim_ftm_result_policy, info->extack);
3707 if (ret)
3708 return ret;
3709
3710 if (tb[NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON])
3711 result->failure_reason = nla_get_u32(tb[NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON]);
3712
3713 if (tb[NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX])
3714 result->burst_index = nla_get_u16(tb[NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX]);
3715
3716 if (tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS]) {
3717 result->num_ftmr_attempts_valid = 1;
3718 result->num_ftmr_attempts =
3719 nla_get_u32(tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS]);
3720 }
3721
3722 if (tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES]) {
3723 result->num_ftmr_successes_valid = 1;
3724 result->num_ftmr_successes =
3725 nla_get_u32(tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES]);
3726 }
3727
3728 if (tb[NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME])
3729 result->busy_retry_time =
3730 nla_get_u8(tb[NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME]);
3731
3732 if (tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP])
3733 result->num_bursts_exp = nla_get_u8(tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP]);
3734
3735 if (tb[NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION])
3736 result->burst_duration = nla_get_u8(tb[NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION]);
3737
3738 if (tb[NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST])
3739 result->ftms_per_burst = nla_get_u8(tb[NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST]);
3740
3741 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG]) {
3742 result->rssi_avg_valid = 1;
3743 result->rssi_avg = nla_get_s32(tb[NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG]);
3744 }
3745 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD]) {
3746 result->rssi_spread_valid = 1;
3747 result->rssi_spread =
3748 nla_get_s32(tb[NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD]);
3749 }
3750
3751 if (tb[NL80211_PMSR_FTM_RESP_ATTR_TX_RATE]) {
3752 result->tx_rate_valid = 1;
3753 ret = mac80211_hwsim_parse_rate_info(tb[NL80211_PMSR_FTM_RESP_ATTR_TX_RATE],
3754 &result->tx_rate, info);
3755 if (ret)
3756 return ret;
3757 }
3758
3759 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RX_RATE]) {
3760 result->rx_rate_valid = 1;
3761 ret = mac80211_hwsim_parse_rate_info(tb[NL80211_PMSR_FTM_RESP_ATTR_RX_RATE],
3762 &result->rx_rate, info);
3763 if (ret)
3764 return ret;
3765 }
3766
3767 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG]) {
3768 result->rtt_avg_valid = 1;
3769 result->rtt_avg =
3770 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG]);
3771 }
3772 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE]) {
3773 result->rtt_variance_valid = 1;
3774 result->rtt_variance =
3775 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE]);
3776 }
3777 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD]) {
3778 result->rtt_spread_valid = 1;
3779 result->rtt_spread =
3780 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD]);
3781 }
3782 if (tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG]) {
3783 result->dist_avg_valid = 1;
3784 result->dist_avg =
3785 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG]);
3786 }
3787 if (tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE]) {
3788 result->dist_variance_valid = 1;
3789 result->dist_variance =
3790 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE]);
3791 }
3792 if (tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD]) {
3793 result->dist_spread_valid = 1;
3794 result->dist_spread =
3795 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD]);
3796 }
3797
3798 if (tb[NL80211_PMSR_FTM_RESP_ATTR_LCI]) {
3799 result->lci = nla_data(tb[NL80211_PMSR_FTM_RESP_ATTR_LCI]);
3800 result->lci_len = nla_len(tb[NL80211_PMSR_FTM_RESP_ATTR_LCI]);
3801 }
3802
3803 if (tb[NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC]) {
3804 result->civicloc = nla_data(tb[NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC]);
3805 result->civicloc_len = nla_len(tb[NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC]);
3806 }
3807
3808 return 0;
3809 }
3810
mac80211_hwsim_parse_pmsr_resp(struct nlattr * resp,struct cfg80211_pmsr_result * result,struct genl_info * info)3811 static int mac80211_hwsim_parse_pmsr_resp(struct nlattr *resp,
3812 struct cfg80211_pmsr_result *result,
3813 struct genl_info *info)
3814 {
3815 struct nlattr *tb[NL80211_PMSR_RESP_ATTR_MAX + 1];
3816 struct nlattr *pmsr;
3817 int rem;
3818 int ret;
3819
3820 ret = nla_parse_nested(tb, NL80211_PMSR_RESP_ATTR_MAX, resp, hwsim_pmsr_resp_policy,
3821 info->extack);
3822 if (ret)
3823 return ret;
3824
3825 if (tb[NL80211_PMSR_RESP_ATTR_STATUS])
3826 result->status = nla_get_u32(tb[NL80211_PMSR_RESP_ATTR_STATUS]);
3827
3828 if (tb[NL80211_PMSR_RESP_ATTR_HOST_TIME])
3829 result->host_time = nla_get_u64(tb[NL80211_PMSR_RESP_ATTR_HOST_TIME]);
3830
3831 if (tb[NL80211_PMSR_RESP_ATTR_AP_TSF]) {
3832 result->ap_tsf_valid = 1;
3833 result->ap_tsf = nla_get_u64(tb[NL80211_PMSR_RESP_ATTR_AP_TSF]);
3834 }
3835
3836 result->final = !!tb[NL80211_PMSR_RESP_ATTR_FINAL];
3837
3838 if (!tb[NL80211_PMSR_RESP_ATTR_DATA])
3839 return 0;
3840
3841 nla_for_each_nested(pmsr, tb[NL80211_PMSR_RESP_ATTR_DATA], rem) {
3842 switch (nla_type(pmsr)) {
3843 case NL80211_PMSR_TYPE_FTM:
3844 result->type = NL80211_PMSR_TYPE_FTM;
3845 ret = mac80211_hwsim_parse_ftm_result(pmsr, &result->ftm, info);
3846 if (ret)
3847 return ret;
3848 break;
3849 default:
3850 NL_SET_ERR_MSG_ATTR(info->extack, pmsr, "Unknown pmsr resp type");
3851 return -EINVAL;
3852 }
3853 }
3854
3855 return 0;
3856 }
3857
mac80211_hwsim_parse_pmsr_result(struct nlattr * peer,struct cfg80211_pmsr_result * result,struct genl_info * info)3858 static int mac80211_hwsim_parse_pmsr_result(struct nlattr *peer,
3859 struct cfg80211_pmsr_result *result,
3860 struct genl_info *info)
3861 {
3862 struct nlattr *tb[NL80211_PMSR_PEER_ATTR_MAX + 1];
3863 int ret;
3864
3865 if (!peer)
3866 return -EINVAL;
3867
3868 ret = nla_parse_nested(tb, NL80211_PMSR_PEER_ATTR_MAX, peer,
3869 hwsim_pmsr_peer_result_policy, info->extack);
3870 if (ret)
3871 return ret;
3872
3873 if (tb[NL80211_PMSR_PEER_ATTR_ADDR])
3874 memcpy(result->addr, nla_data(tb[NL80211_PMSR_PEER_ATTR_ADDR]),
3875 ETH_ALEN);
3876
3877 if (tb[NL80211_PMSR_PEER_ATTR_RESP]) {
3878 ret = mac80211_hwsim_parse_pmsr_resp(tb[NL80211_PMSR_PEER_ATTR_RESP], result, info);
3879 if (ret)
3880 return ret;
3881 }
3882
3883 return 0;
3884 };
3885
hwsim_pmsr_report_nl(struct sk_buff * msg,struct genl_info * info)3886 static int hwsim_pmsr_report_nl(struct sk_buff *msg, struct genl_info *info)
3887 {
3888 struct mac80211_hwsim_data *data;
3889 struct nlattr *peers, *peer;
3890 struct nlattr *reqattr;
3891 const u8 *src;
3892 int err;
3893 int rem;
3894
3895 if (!info->attrs[HWSIM_ATTR_ADDR_TRANSMITTER])
3896 return -EINVAL;
3897
3898 src = nla_data(info->attrs[HWSIM_ATTR_ADDR_TRANSMITTER]);
3899 data = get_hwsim_data_ref_from_addr(src);
3900 if (!data)
3901 return -EINVAL;
3902
3903 mutex_lock(&data->mutex);
3904 if (!data->pmsr_request) {
3905 err = -EINVAL;
3906 goto out;
3907 }
3908
3909 reqattr = info->attrs[HWSIM_ATTR_PMSR_RESULT];
3910 if (!reqattr) {
3911 err = -EINVAL;
3912 goto out;
3913 }
3914
3915 peers = nla_find_nested(reqattr, NL80211_PMSR_ATTR_PEERS);
3916 if (!peers) {
3917 err = -EINVAL;
3918 goto out;
3919 }
3920
3921 nla_for_each_nested(peer, peers, rem) {
3922 struct cfg80211_pmsr_result result = {};
3923
3924 err = mac80211_hwsim_parse_pmsr_result(peer, &result, info);
3925 if (err)
3926 goto out;
3927
3928 cfg80211_pmsr_report(data->pmsr_request_wdev,
3929 data->pmsr_request, &result, GFP_KERNEL);
3930 }
3931
3932 cfg80211_pmsr_complete(data->pmsr_request_wdev, data->pmsr_request, GFP_KERNEL);
3933
3934 err = 0;
3935 out:
3936 data->pmsr_request = NULL;
3937 data->pmsr_request_wdev = NULL;
3938
3939 mutex_unlock(&data->mutex);
3940 return err;
3941 }
3942
3943 #ifdef CONFIG_MAC80211_DEBUGFS
3944 #define HWSIM_DEBUGFS_OPS \
3945 .link_add_debugfs = mac80211_hwsim_link_add_debugfs,
3946 #else
3947 #define HWSIM_DEBUGFS_OPS
3948 #endif
3949
3950 #define HWSIM_COMMON_OPS \
3951 .tx = mac80211_hwsim_tx, \
3952 .wake_tx_queue = ieee80211_handle_wake_tx_queue, \
3953 .start = mac80211_hwsim_start, \
3954 .stop = mac80211_hwsim_stop, \
3955 .add_interface = mac80211_hwsim_add_interface, \
3956 .change_interface = mac80211_hwsim_change_interface, \
3957 .remove_interface = mac80211_hwsim_remove_interface, \
3958 .config = mac80211_hwsim_config, \
3959 .configure_filter = mac80211_hwsim_configure_filter, \
3960 .vif_cfg_changed = mac80211_hwsim_vif_info_changed, \
3961 .link_info_changed = mac80211_hwsim_link_info_changed, \
3962 .tx_last_beacon = mac80211_hwsim_tx_last_beacon, \
3963 .sta_notify = mac80211_hwsim_sta_notify, \
3964 .link_sta_rc_update = mac80211_hwsim_sta_rc_update, \
3965 .conf_tx = mac80211_hwsim_conf_tx, \
3966 .get_survey = mac80211_hwsim_get_survey, \
3967 CFG80211_TESTMODE_CMD(mac80211_hwsim_testmode_cmd) \
3968 .ampdu_action = mac80211_hwsim_ampdu_action, \
3969 .flush = mac80211_hwsim_flush, \
3970 .get_et_sset_count = mac80211_hwsim_get_et_sset_count, \
3971 .get_et_stats = mac80211_hwsim_get_et_stats, \
3972 .get_et_strings = mac80211_hwsim_get_et_strings, \
3973 .start_pmsr = mac80211_hwsim_start_pmsr, \
3974 .abort_pmsr = mac80211_hwsim_abort_pmsr, \
3975 HWSIM_DEBUGFS_OPS
3976
3977 #define HWSIM_NON_MLO_OPS \
3978 .sta_add = mac80211_hwsim_sta_add, \
3979 .sta_remove = mac80211_hwsim_sta_remove, \
3980 .set_tim = mac80211_hwsim_set_tim, \
3981 .get_tsf = mac80211_hwsim_get_tsf, \
3982 .set_tsf = mac80211_hwsim_set_tsf,
3983
3984 static const struct ieee80211_ops mac80211_hwsim_ops = {
3985 HWSIM_COMMON_OPS
3986 HWSIM_NON_MLO_OPS
3987 .sw_scan_start = mac80211_hwsim_sw_scan,
3988 .sw_scan_complete = mac80211_hwsim_sw_scan_complete,
3989 .add_chanctx = ieee80211_emulate_add_chanctx,
3990 .remove_chanctx = ieee80211_emulate_remove_chanctx,
3991 .change_chanctx = ieee80211_emulate_change_chanctx,
3992 .switch_vif_chanctx = ieee80211_emulate_switch_vif_chanctx,
3993 };
3994
3995 #define HWSIM_CHANCTX_OPS \
3996 .hw_scan = mac80211_hwsim_hw_scan, \
3997 .cancel_hw_scan = mac80211_hwsim_cancel_hw_scan, \
3998 .remain_on_channel = mac80211_hwsim_roc, \
3999 .cancel_remain_on_channel = mac80211_hwsim_croc, \
4000 .add_chanctx = mac80211_hwsim_add_chanctx, \
4001 .remove_chanctx = mac80211_hwsim_remove_chanctx, \
4002 .change_chanctx = mac80211_hwsim_change_chanctx, \
4003 .assign_vif_chanctx = mac80211_hwsim_assign_vif_chanctx,\
4004 .unassign_vif_chanctx = mac80211_hwsim_unassign_vif_chanctx, \
4005 .switch_vif_chanctx = mac80211_hwsim_switch_vif_chanctx,
4006
4007 static const struct ieee80211_ops mac80211_hwsim_mchan_ops = {
4008 HWSIM_COMMON_OPS
4009 HWSIM_NON_MLO_OPS
4010 HWSIM_CHANCTX_OPS
4011 };
4012
4013 static const struct ieee80211_ops mac80211_hwsim_mlo_ops = {
4014 HWSIM_COMMON_OPS
4015 HWSIM_CHANCTX_OPS
4016 .set_rts_threshold = mac80211_hwsim_set_rts_threshold,
4017 .change_vif_links = mac80211_hwsim_change_vif_links,
4018 .change_sta_links = mac80211_hwsim_change_sta_links,
4019 .sta_state = mac80211_hwsim_sta_state,
4020 .can_neg_ttlm = mac80211_hwsim_can_neg_ttlm,
4021 };
4022
4023 struct hwsim_new_radio_params {
4024 unsigned int channels;
4025 const char *reg_alpha2;
4026 const struct ieee80211_regdomain *regd;
4027 bool reg_strict;
4028 bool p2p_device;
4029 bool use_chanctx;
4030 bool multi_radio;
4031 bool destroy_on_close;
4032 const char *hwname;
4033 bool no_vif;
4034 const u8 *perm_addr;
4035 u32 iftypes;
4036 u32 *ciphers;
4037 u8 n_ciphers;
4038 bool mlo;
4039 const struct cfg80211_pmsr_capabilities *pmsr_capa;
4040 };
4041
hwsim_mcast_config_msg(struct sk_buff * mcast_skb,struct genl_info * info)4042 static void hwsim_mcast_config_msg(struct sk_buff *mcast_skb,
4043 struct genl_info *info)
4044 {
4045 if (info)
4046 genl_notify(&hwsim_genl_family, mcast_skb, info,
4047 HWSIM_MCGRP_CONFIG, GFP_KERNEL);
4048 else
4049 genlmsg_multicast(&hwsim_genl_family, mcast_skb, 0,
4050 HWSIM_MCGRP_CONFIG, GFP_KERNEL);
4051 }
4052
append_radio_msg(struct sk_buff * skb,int id,struct hwsim_new_radio_params * param)4053 static int append_radio_msg(struct sk_buff *skb, int id,
4054 struct hwsim_new_radio_params *param)
4055 {
4056 int ret;
4057
4058 ret = nla_put_u32(skb, HWSIM_ATTR_RADIO_ID, id);
4059 if (ret < 0)
4060 return ret;
4061
4062 if (param->channels) {
4063 ret = nla_put_u32(skb, HWSIM_ATTR_CHANNELS, param->channels);
4064 if (ret < 0)
4065 return ret;
4066 }
4067
4068 if (param->reg_alpha2) {
4069 ret = nla_put(skb, HWSIM_ATTR_REG_HINT_ALPHA2, 2,
4070 param->reg_alpha2);
4071 if (ret < 0)
4072 return ret;
4073 }
4074
4075 if (param->regd) {
4076 int i;
4077
4078 for (i = 0; i < ARRAY_SIZE(hwsim_world_regdom_custom); i++) {
4079 if (hwsim_world_regdom_custom[i] != param->regd)
4080 continue;
4081
4082 ret = nla_put_u32(skb, HWSIM_ATTR_REG_CUSTOM_REG, i);
4083 if (ret < 0)
4084 return ret;
4085 break;
4086 }
4087 }
4088
4089 if (param->reg_strict) {
4090 ret = nla_put_flag(skb, HWSIM_ATTR_REG_STRICT_REG);
4091 if (ret < 0)
4092 return ret;
4093 }
4094
4095 if (param->p2p_device) {
4096 ret = nla_put_flag(skb, HWSIM_ATTR_SUPPORT_P2P_DEVICE);
4097 if (ret < 0)
4098 return ret;
4099 }
4100
4101 if (param->use_chanctx) {
4102 ret = nla_put_flag(skb, HWSIM_ATTR_USE_CHANCTX);
4103 if (ret < 0)
4104 return ret;
4105 }
4106
4107 if (param->multi_radio) {
4108 ret = nla_put_flag(skb, HWSIM_ATTR_MULTI_RADIO);
4109 if (ret < 0)
4110 return ret;
4111 }
4112
4113 if (param->hwname) {
4114 ret = nla_put(skb, HWSIM_ATTR_RADIO_NAME,
4115 strlen(param->hwname), param->hwname);
4116 if (ret < 0)
4117 return ret;
4118 }
4119
4120 return 0;
4121 }
4122
hwsim_mcast_new_radio(int id,struct genl_info * info,struct hwsim_new_radio_params * param)4123 static void hwsim_mcast_new_radio(int id, struct genl_info *info,
4124 struct hwsim_new_radio_params *param)
4125 {
4126 struct sk_buff *mcast_skb;
4127 void *data;
4128
4129 mcast_skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
4130 if (!mcast_skb)
4131 return;
4132
4133 data = genlmsg_put(mcast_skb, 0, 0, &hwsim_genl_family, 0,
4134 HWSIM_CMD_NEW_RADIO);
4135 if (!data)
4136 goto out_err;
4137
4138 if (append_radio_msg(mcast_skb, id, param) < 0)
4139 goto out_err;
4140
4141 genlmsg_end(mcast_skb, data);
4142
4143 hwsim_mcast_config_msg(mcast_skb, info);
4144 return;
4145
4146 out_err:
4147 nlmsg_free(mcast_skb);
4148 }
4149
4150 static const struct ieee80211_sband_iftype_data sband_capa_2ghz[] = {
4151 {
4152 .types_mask = BIT(NL80211_IFTYPE_STATION) |
4153 BIT(NL80211_IFTYPE_P2P_CLIENT),
4154 .he_cap = {
4155 .has_he = true,
4156 .he_cap_elem = {
4157 .mac_cap_info[0] =
4158 IEEE80211_HE_MAC_CAP0_HTC_HE,
4159 .mac_cap_info[1] =
4160 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4161 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4162 .mac_cap_info[2] =
4163 IEEE80211_HE_MAC_CAP2_BSR |
4164 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4165 IEEE80211_HE_MAC_CAP2_ACK_EN,
4166 .mac_cap_info[3] =
4167 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4168 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4169 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4170 .phy_cap_info[0] =
4171 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G,
4172 .phy_cap_info[1] =
4173 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4174 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4175 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4176 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4177 .phy_cap_info[2] =
4178 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4179 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4180 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4181 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4182 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4183
4184 /* Leave all the other PHY capability bytes
4185 * unset, as DCM, beam forming, RU and PPE
4186 * threshold information are not supported
4187 */
4188 },
4189 .he_mcs_nss_supp = {
4190 .rx_mcs_80 = cpu_to_le16(0xfffa),
4191 .tx_mcs_80 = cpu_to_le16(0xfffa),
4192 .rx_mcs_160 = cpu_to_le16(0xffff),
4193 .tx_mcs_160 = cpu_to_le16(0xffff),
4194 .rx_mcs_80p80 = cpu_to_le16(0xffff),
4195 .tx_mcs_80p80 = cpu_to_le16(0xffff),
4196 },
4197 },
4198 .eht_cap = {
4199 .has_eht = true,
4200 .eht_cap_elem = {
4201 .mac_cap_info[0] =
4202 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4203 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4204 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4205 .phy_cap_info[0] =
4206 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4207 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4208 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4209 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4210 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE,
4211 .phy_cap_info[3] =
4212 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4213 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4214 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4215 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4216 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4217 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4218 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4219 .phy_cap_info[4] =
4220 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4221 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4222 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4223 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4224 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4225 .phy_cap_info[5] =
4226 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4227 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4228 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4229 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4230 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4231 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4232 .phy_cap_info[6] =
4233 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4234 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK,
4235 .phy_cap_info[7] =
4236 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW,
4237 },
4238
4239 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4240 * Rx
4241 */
4242 .eht_mcs_nss_supp = {
4243 /*
4244 * Since B0, B1, B2 and B3 are not set in
4245 * the supported channel width set field in the
4246 * HE PHY capabilities information field the
4247 * device is a 20MHz only device on 2.4GHz band.
4248 */
4249 .only_20mhz = {
4250 .rx_tx_mcs7_max_nss = 0x88,
4251 .rx_tx_mcs9_max_nss = 0x88,
4252 .rx_tx_mcs11_max_nss = 0x88,
4253 .rx_tx_mcs13_max_nss = 0x88,
4254 },
4255 },
4256 /* PPE threshold information is not supported */
4257 },
4258 },
4259 {
4260 .types_mask = BIT(NL80211_IFTYPE_AP) |
4261 BIT(NL80211_IFTYPE_P2P_GO),
4262 .he_cap = {
4263 .has_he = true,
4264 .he_cap_elem = {
4265 .mac_cap_info[0] =
4266 IEEE80211_HE_MAC_CAP0_HTC_HE,
4267 .mac_cap_info[1] =
4268 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4269 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4270 .mac_cap_info[2] =
4271 IEEE80211_HE_MAC_CAP2_BSR |
4272 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4273 IEEE80211_HE_MAC_CAP2_ACK_EN,
4274 .mac_cap_info[3] =
4275 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4276 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4277 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4278 .phy_cap_info[0] =
4279 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G,
4280 .phy_cap_info[1] =
4281 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4282 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4283 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4284 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4285 .phy_cap_info[2] =
4286 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4287 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4288 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4289 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4290 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4291
4292 /* Leave all the other PHY capability bytes
4293 * unset, as DCM, beam forming, RU and PPE
4294 * threshold information are not supported
4295 */
4296 },
4297 .he_mcs_nss_supp = {
4298 .rx_mcs_80 = cpu_to_le16(0xfffa),
4299 .tx_mcs_80 = cpu_to_le16(0xfffa),
4300 .rx_mcs_160 = cpu_to_le16(0xffff),
4301 .tx_mcs_160 = cpu_to_le16(0xffff),
4302 .rx_mcs_80p80 = cpu_to_le16(0xffff),
4303 .tx_mcs_80p80 = cpu_to_le16(0xffff),
4304 },
4305 },
4306 .eht_cap = {
4307 .has_eht = true,
4308 .eht_cap_elem = {
4309 .mac_cap_info[0] =
4310 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4311 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4312 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4313 .phy_cap_info[0] =
4314 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4315 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4316 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4317 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4318 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE,
4319 .phy_cap_info[3] =
4320 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4321 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4322 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4323 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4324 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4325 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4326 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4327 .phy_cap_info[4] =
4328 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4329 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4330 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4331 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4332 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4333 .phy_cap_info[5] =
4334 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4335 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4336 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4337 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4338 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4339 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4340 .phy_cap_info[6] =
4341 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4342 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK,
4343 .phy_cap_info[7] =
4344 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW,
4345 },
4346
4347 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4348 * Rx
4349 */
4350 .eht_mcs_nss_supp = {
4351 /*
4352 * Since B0, B1, B2 and B3 are not set in
4353 * the supported channel width set field in the
4354 * HE PHY capabilities information field the
4355 * device is a 20MHz only device on 2.4GHz band.
4356 */
4357 .only_20mhz = {
4358 .rx_tx_mcs7_max_nss = 0x88,
4359 .rx_tx_mcs9_max_nss = 0x88,
4360 .rx_tx_mcs11_max_nss = 0x88,
4361 .rx_tx_mcs13_max_nss = 0x88,
4362 },
4363 },
4364 /* PPE threshold information is not supported */
4365 },
4366 },
4367 #ifdef CONFIG_MAC80211_MESH
4368 {
4369 .types_mask = BIT(NL80211_IFTYPE_MESH_POINT),
4370 .he_cap = {
4371 .has_he = true,
4372 .he_cap_elem = {
4373 .mac_cap_info[0] =
4374 IEEE80211_HE_MAC_CAP0_HTC_HE,
4375 .mac_cap_info[1] =
4376 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4377 .mac_cap_info[2] =
4378 IEEE80211_HE_MAC_CAP2_ACK_EN,
4379 .mac_cap_info[3] =
4380 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4381 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4382 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4383 .phy_cap_info[0] =
4384 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G,
4385 .phy_cap_info[1] =
4386 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4387 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4388 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4389 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4390 .phy_cap_info[2] = 0,
4391
4392 /* Leave all the other PHY capability bytes
4393 * unset, as DCM, beam forming, RU and PPE
4394 * threshold information are not supported
4395 */
4396 },
4397 .he_mcs_nss_supp = {
4398 .rx_mcs_80 = cpu_to_le16(0xfffa),
4399 .tx_mcs_80 = cpu_to_le16(0xfffa),
4400 .rx_mcs_160 = cpu_to_le16(0xffff),
4401 .tx_mcs_160 = cpu_to_le16(0xffff),
4402 .rx_mcs_80p80 = cpu_to_le16(0xffff),
4403 .tx_mcs_80p80 = cpu_to_le16(0xffff),
4404 },
4405 },
4406 },
4407 #endif
4408 };
4409
4410 static const struct ieee80211_sband_iftype_data sband_capa_5ghz[] = {
4411 {
4412 .types_mask = BIT(NL80211_IFTYPE_STATION) |
4413 BIT(NL80211_IFTYPE_P2P_CLIENT),
4414 .he_cap = {
4415 .has_he = true,
4416 .he_cap_elem = {
4417 .mac_cap_info[0] =
4418 IEEE80211_HE_MAC_CAP0_HTC_HE,
4419 .mac_cap_info[1] =
4420 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4421 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4422 .mac_cap_info[2] =
4423 IEEE80211_HE_MAC_CAP2_BSR |
4424 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4425 IEEE80211_HE_MAC_CAP2_ACK_EN,
4426 .mac_cap_info[3] =
4427 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4428 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4429 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4430 .phy_cap_info[0] =
4431 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4432 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4433 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4434 .phy_cap_info[1] =
4435 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4436 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4437 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4438 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4439 .phy_cap_info[2] =
4440 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4441 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4442 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4443 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4444 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4445
4446 /* Leave all the other PHY capability bytes
4447 * unset, as DCM, beam forming, RU and PPE
4448 * threshold information are not supported
4449 */
4450 },
4451 .he_mcs_nss_supp = {
4452 .rx_mcs_80 = cpu_to_le16(0xfffa),
4453 .tx_mcs_80 = cpu_to_le16(0xfffa),
4454 .rx_mcs_160 = cpu_to_le16(0xfffa),
4455 .tx_mcs_160 = cpu_to_le16(0xfffa),
4456 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4457 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4458 },
4459 },
4460 .eht_cap = {
4461 .has_eht = true,
4462 .eht_cap_elem = {
4463 .mac_cap_info[0] =
4464 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4465 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4466 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4467 .phy_cap_info[0] =
4468 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4469 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4470 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4471 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4472 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE |
4473 IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK,
4474 .phy_cap_info[1] =
4475 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK |
4476 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK,
4477 .phy_cap_info[2] =
4478 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK |
4479 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK,
4480 .phy_cap_info[3] =
4481 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4482 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4483 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4484 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4485 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4486 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4487 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4488 .phy_cap_info[4] =
4489 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4490 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4491 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4492 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4493 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4494 .phy_cap_info[5] =
4495 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4496 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4497 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4498 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4499 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4500 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4501 .phy_cap_info[6] =
4502 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4503 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK,
4504 .phy_cap_info[7] =
4505 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW |
4506 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ |
4507 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ |
4508 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ |
4509 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ,
4510 },
4511
4512 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4513 * Rx
4514 */
4515 .eht_mcs_nss_supp = {
4516 /*
4517 * As B1 and B2 are set in the supported
4518 * channel width set field in the HE PHY
4519 * capabilities information field include all
4520 * the following MCS/NSS.
4521 */
4522 .bw._80 = {
4523 .rx_tx_mcs9_max_nss = 0x88,
4524 .rx_tx_mcs11_max_nss = 0x88,
4525 .rx_tx_mcs13_max_nss = 0x88,
4526 },
4527 .bw._160 = {
4528 .rx_tx_mcs9_max_nss = 0x88,
4529 .rx_tx_mcs11_max_nss = 0x88,
4530 .rx_tx_mcs13_max_nss = 0x88,
4531 },
4532 },
4533 /* PPE threshold information is not supported */
4534 },
4535 },
4536 {
4537 .types_mask = BIT(NL80211_IFTYPE_AP) |
4538 BIT(NL80211_IFTYPE_P2P_GO),
4539 .he_cap = {
4540 .has_he = true,
4541 .he_cap_elem = {
4542 .mac_cap_info[0] =
4543 IEEE80211_HE_MAC_CAP0_HTC_HE,
4544 .mac_cap_info[1] =
4545 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4546 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4547 .mac_cap_info[2] =
4548 IEEE80211_HE_MAC_CAP2_BSR |
4549 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4550 IEEE80211_HE_MAC_CAP2_ACK_EN,
4551 .mac_cap_info[3] =
4552 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4553 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4554 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4555 .phy_cap_info[0] =
4556 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4557 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4558 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4559 .phy_cap_info[1] =
4560 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4561 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4562 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4563 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4564 .phy_cap_info[2] =
4565 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4566 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4567 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4568 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4569 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4570
4571 /* Leave all the other PHY capability bytes
4572 * unset, as DCM, beam forming, RU and PPE
4573 * threshold information are not supported
4574 */
4575 },
4576 .he_mcs_nss_supp = {
4577 .rx_mcs_80 = cpu_to_le16(0xfffa),
4578 .tx_mcs_80 = cpu_to_le16(0xfffa),
4579 .rx_mcs_160 = cpu_to_le16(0xfffa),
4580 .tx_mcs_160 = cpu_to_le16(0xfffa),
4581 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4582 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4583 },
4584 },
4585 .eht_cap = {
4586 .has_eht = true,
4587 .eht_cap_elem = {
4588 .mac_cap_info[0] =
4589 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4590 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4591 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4592 .phy_cap_info[0] =
4593 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4594 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4595 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4596 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4597 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE |
4598 IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK,
4599 .phy_cap_info[1] =
4600 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK |
4601 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK,
4602 .phy_cap_info[2] =
4603 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK |
4604 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK,
4605 .phy_cap_info[3] =
4606 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4607 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4608 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4609 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4610 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4611 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4612 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4613 .phy_cap_info[4] =
4614 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4615 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4616 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4617 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4618 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4619 .phy_cap_info[5] =
4620 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4621 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4622 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4623 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4624 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4625 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4626 .phy_cap_info[6] =
4627 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4628 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK,
4629 .phy_cap_info[7] =
4630 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW |
4631 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ |
4632 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ |
4633 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ |
4634 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ,
4635 },
4636
4637 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4638 * Rx
4639 */
4640 .eht_mcs_nss_supp = {
4641 /*
4642 * As B1 and B2 are set in the supported
4643 * channel width set field in the HE PHY
4644 * capabilities information field include all
4645 * the following MCS/NSS.
4646 */
4647 .bw._80 = {
4648 .rx_tx_mcs9_max_nss = 0x88,
4649 .rx_tx_mcs11_max_nss = 0x88,
4650 .rx_tx_mcs13_max_nss = 0x88,
4651 },
4652 .bw._160 = {
4653 .rx_tx_mcs9_max_nss = 0x88,
4654 .rx_tx_mcs11_max_nss = 0x88,
4655 .rx_tx_mcs13_max_nss = 0x88,
4656 },
4657 },
4658 /* PPE threshold information is not supported */
4659 },
4660 },
4661 #ifdef CONFIG_MAC80211_MESH
4662 {
4663 /* TODO: should we support other types, e.g., IBSS?*/
4664 .types_mask = BIT(NL80211_IFTYPE_MESH_POINT),
4665 .he_cap = {
4666 .has_he = true,
4667 .he_cap_elem = {
4668 .mac_cap_info[0] =
4669 IEEE80211_HE_MAC_CAP0_HTC_HE,
4670 .mac_cap_info[1] =
4671 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4672 .mac_cap_info[2] =
4673 IEEE80211_HE_MAC_CAP2_ACK_EN,
4674 .mac_cap_info[3] =
4675 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4676 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4677 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4678 .phy_cap_info[0] =
4679 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4680 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4681 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4682 .phy_cap_info[1] =
4683 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4684 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4685 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4686 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4687 .phy_cap_info[2] = 0,
4688
4689 /* Leave all the other PHY capability bytes
4690 * unset, as DCM, beam forming, RU and PPE
4691 * threshold information are not supported
4692 */
4693 },
4694 .he_mcs_nss_supp = {
4695 .rx_mcs_80 = cpu_to_le16(0xfffa),
4696 .tx_mcs_80 = cpu_to_le16(0xfffa),
4697 .rx_mcs_160 = cpu_to_le16(0xfffa),
4698 .tx_mcs_160 = cpu_to_le16(0xfffa),
4699 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4700 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4701 },
4702 },
4703 },
4704 #endif
4705 };
4706
4707 static const struct ieee80211_sband_iftype_data sband_capa_6ghz[] = {
4708 {
4709 .types_mask = BIT(NL80211_IFTYPE_STATION) |
4710 BIT(NL80211_IFTYPE_P2P_CLIENT),
4711 .he_6ghz_capa = {
4712 .capa = cpu_to_le16(IEEE80211_HE_6GHZ_CAP_MIN_MPDU_START |
4713 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP |
4714 IEEE80211_HE_6GHZ_CAP_MAX_MPDU_LEN |
4715 IEEE80211_HE_6GHZ_CAP_SM_PS |
4716 IEEE80211_HE_6GHZ_CAP_RD_RESPONDER |
4717 IEEE80211_HE_6GHZ_CAP_TX_ANTPAT_CONS |
4718 IEEE80211_HE_6GHZ_CAP_RX_ANTPAT_CONS),
4719 },
4720 .he_cap = {
4721 .has_he = true,
4722 .he_cap_elem = {
4723 .mac_cap_info[0] =
4724 IEEE80211_HE_MAC_CAP0_HTC_HE,
4725 .mac_cap_info[1] =
4726 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4727 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4728 .mac_cap_info[2] =
4729 IEEE80211_HE_MAC_CAP2_BSR |
4730 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4731 IEEE80211_HE_MAC_CAP2_ACK_EN,
4732 .mac_cap_info[3] =
4733 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4734 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4735 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4736 .phy_cap_info[0] =
4737 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4738 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4739 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4740 .phy_cap_info[1] =
4741 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4742 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4743 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4744 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4745 .phy_cap_info[2] =
4746 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4747 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4748 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4749 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4750 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4751
4752 /* Leave all the other PHY capability bytes
4753 * unset, as DCM, beam forming, RU and PPE
4754 * threshold information are not supported
4755 */
4756 },
4757 .he_mcs_nss_supp = {
4758 .rx_mcs_80 = cpu_to_le16(0xfffa),
4759 .tx_mcs_80 = cpu_to_le16(0xfffa),
4760 .rx_mcs_160 = cpu_to_le16(0xfffa),
4761 .tx_mcs_160 = cpu_to_le16(0xfffa),
4762 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4763 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4764 },
4765 },
4766 .eht_cap = {
4767 .has_eht = true,
4768 .eht_cap_elem = {
4769 .mac_cap_info[0] =
4770 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4771 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4772 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4773 .phy_cap_info[0] =
4774 IEEE80211_EHT_PHY_CAP0_320MHZ_IN_6GHZ |
4775 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4776 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4777 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4778 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4779 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE |
4780 IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK,
4781 .phy_cap_info[1] =
4782 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK |
4783 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK |
4784 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_320MHZ_MASK,
4785 .phy_cap_info[2] =
4786 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK |
4787 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK |
4788 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_320MHZ_MASK,
4789 .phy_cap_info[3] =
4790 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4791 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4792 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4793 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4794 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4795 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4796 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4797 .phy_cap_info[4] =
4798 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4799 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4800 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4801 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4802 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4803 .phy_cap_info[5] =
4804 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4805 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4806 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4807 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4808 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4809 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4810 .phy_cap_info[6] =
4811 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4812 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK |
4813 IEEE80211_EHT_PHY_CAP6_EHT_DUP_6GHZ_SUPP,
4814 .phy_cap_info[7] =
4815 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW |
4816 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ |
4817 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ |
4818 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_320MHZ |
4819 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ |
4820 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ |
4821 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_320MHZ,
4822 },
4823
4824 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4825 * Rx
4826 */
4827 .eht_mcs_nss_supp = {
4828 /*
4829 * As B1 and B2 are set in the supported
4830 * channel width set field in the HE PHY
4831 * capabilities information field and 320MHz in
4832 * 6GHz is supported include all the following
4833 * MCS/NSS.
4834 */
4835 .bw._80 = {
4836 .rx_tx_mcs9_max_nss = 0x88,
4837 .rx_tx_mcs11_max_nss = 0x88,
4838 .rx_tx_mcs13_max_nss = 0x88,
4839 },
4840 .bw._160 = {
4841 .rx_tx_mcs9_max_nss = 0x88,
4842 .rx_tx_mcs11_max_nss = 0x88,
4843 .rx_tx_mcs13_max_nss = 0x88,
4844 },
4845 .bw._320 = {
4846 .rx_tx_mcs9_max_nss = 0x88,
4847 .rx_tx_mcs11_max_nss = 0x88,
4848 .rx_tx_mcs13_max_nss = 0x88,
4849 },
4850 },
4851 /* PPE threshold information is not supported */
4852 },
4853 },
4854 {
4855 .types_mask = BIT(NL80211_IFTYPE_AP) |
4856 BIT(NL80211_IFTYPE_P2P_GO),
4857 .he_6ghz_capa = {
4858 .capa = cpu_to_le16(IEEE80211_HE_6GHZ_CAP_MIN_MPDU_START |
4859 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP |
4860 IEEE80211_HE_6GHZ_CAP_MAX_MPDU_LEN |
4861 IEEE80211_HE_6GHZ_CAP_SM_PS |
4862 IEEE80211_HE_6GHZ_CAP_RD_RESPONDER |
4863 IEEE80211_HE_6GHZ_CAP_TX_ANTPAT_CONS |
4864 IEEE80211_HE_6GHZ_CAP_RX_ANTPAT_CONS),
4865 },
4866 .he_cap = {
4867 .has_he = true,
4868 .he_cap_elem = {
4869 .mac_cap_info[0] =
4870 IEEE80211_HE_MAC_CAP0_HTC_HE,
4871 .mac_cap_info[1] =
4872 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4873 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4874 .mac_cap_info[2] =
4875 IEEE80211_HE_MAC_CAP2_BSR |
4876 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4877 IEEE80211_HE_MAC_CAP2_ACK_EN,
4878 .mac_cap_info[3] =
4879 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4880 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4881 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4882 .phy_cap_info[0] =
4883 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4884 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4885 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4886 .phy_cap_info[1] =
4887 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4888 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4889 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4890 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4891 .phy_cap_info[2] =
4892 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4893 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4894 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4895 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4896 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4897
4898 /* Leave all the other PHY capability bytes
4899 * unset, as DCM, beam forming, RU and PPE
4900 * threshold information are not supported
4901 */
4902 },
4903 .he_mcs_nss_supp = {
4904 .rx_mcs_80 = cpu_to_le16(0xfffa),
4905 .tx_mcs_80 = cpu_to_le16(0xfffa),
4906 .rx_mcs_160 = cpu_to_le16(0xfffa),
4907 .tx_mcs_160 = cpu_to_le16(0xfffa),
4908 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4909 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4910 },
4911 },
4912 .eht_cap = {
4913 .has_eht = true,
4914 .eht_cap_elem = {
4915 .mac_cap_info[0] =
4916 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4917 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4918 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4919 .phy_cap_info[0] =
4920 IEEE80211_EHT_PHY_CAP0_320MHZ_IN_6GHZ |
4921 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4922 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4923 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4924 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4925 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE |
4926 IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK,
4927 .phy_cap_info[1] =
4928 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK |
4929 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK |
4930 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_320MHZ_MASK,
4931 .phy_cap_info[2] =
4932 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK |
4933 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK |
4934 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_320MHZ_MASK,
4935 .phy_cap_info[3] =
4936 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4937 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4938 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4939 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4940 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4941 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4942 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4943 .phy_cap_info[4] =
4944 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4945 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4946 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4947 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4948 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4949 .phy_cap_info[5] =
4950 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4951 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4952 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4953 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4954 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4955 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4956 .phy_cap_info[6] =
4957 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4958 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK |
4959 IEEE80211_EHT_PHY_CAP6_EHT_DUP_6GHZ_SUPP,
4960 .phy_cap_info[7] =
4961 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW |
4962 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ |
4963 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ |
4964 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_320MHZ |
4965 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ |
4966 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ |
4967 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_320MHZ,
4968 },
4969
4970 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4971 * Rx
4972 */
4973 .eht_mcs_nss_supp = {
4974 /*
4975 * As B1 and B2 are set in the supported
4976 * channel width set field in the HE PHY
4977 * capabilities information field and 320MHz in
4978 * 6GHz is supported include all the following
4979 * MCS/NSS.
4980 */
4981 .bw._80 = {
4982 .rx_tx_mcs9_max_nss = 0x88,
4983 .rx_tx_mcs11_max_nss = 0x88,
4984 .rx_tx_mcs13_max_nss = 0x88,
4985 },
4986 .bw._160 = {
4987 .rx_tx_mcs9_max_nss = 0x88,
4988 .rx_tx_mcs11_max_nss = 0x88,
4989 .rx_tx_mcs13_max_nss = 0x88,
4990 },
4991 .bw._320 = {
4992 .rx_tx_mcs9_max_nss = 0x88,
4993 .rx_tx_mcs11_max_nss = 0x88,
4994 .rx_tx_mcs13_max_nss = 0x88,
4995 },
4996 },
4997 /* PPE threshold information is not supported */
4998 },
4999 },
5000 #ifdef CONFIG_MAC80211_MESH
5001 {
5002 /* TODO: should we support other types, e.g., IBSS?*/
5003 .types_mask = BIT(NL80211_IFTYPE_MESH_POINT),
5004 .he_6ghz_capa = {
5005 .capa = cpu_to_le16(IEEE80211_HE_6GHZ_CAP_MIN_MPDU_START |
5006 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP |
5007 IEEE80211_HE_6GHZ_CAP_MAX_MPDU_LEN |
5008 IEEE80211_HE_6GHZ_CAP_SM_PS |
5009 IEEE80211_HE_6GHZ_CAP_RD_RESPONDER |
5010 IEEE80211_HE_6GHZ_CAP_TX_ANTPAT_CONS |
5011 IEEE80211_HE_6GHZ_CAP_RX_ANTPAT_CONS),
5012 },
5013 .he_cap = {
5014 .has_he = true,
5015 .he_cap_elem = {
5016 .mac_cap_info[0] =
5017 IEEE80211_HE_MAC_CAP0_HTC_HE,
5018 .mac_cap_info[1] =
5019 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
5020 .mac_cap_info[2] =
5021 IEEE80211_HE_MAC_CAP2_ACK_EN,
5022 .mac_cap_info[3] =
5023 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
5024 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
5025 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
5026 .phy_cap_info[0] =
5027 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
5028 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
5029 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
5030 .phy_cap_info[1] =
5031 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
5032 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
5033 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
5034 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
5035 .phy_cap_info[2] = 0,
5036
5037 /* Leave all the other PHY capability bytes
5038 * unset, as DCM, beam forming, RU and PPE
5039 * threshold information are not supported
5040 */
5041 },
5042 .he_mcs_nss_supp = {
5043 .rx_mcs_80 = cpu_to_le16(0xfffa),
5044 .tx_mcs_80 = cpu_to_le16(0xfffa),
5045 .rx_mcs_160 = cpu_to_le16(0xfffa),
5046 .tx_mcs_160 = cpu_to_le16(0xfffa),
5047 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
5048 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
5049 },
5050 },
5051 },
5052 #endif
5053 };
5054
mac80211_hwsim_sband_capab(struct ieee80211_supported_band * sband)5055 static void mac80211_hwsim_sband_capab(struct ieee80211_supported_band *sband)
5056 {
5057 switch (sband->band) {
5058 case NL80211_BAND_2GHZ:
5059 ieee80211_set_sband_iftype_data(sband, sband_capa_2ghz);
5060 break;
5061 case NL80211_BAND_5GHZ:
5062 ieee80211_set_sband_iftype_data(sband, sband_capa_5ghz);
5063 break;
5064 case NL80211_BAND_6GHZ:
5065 ieee80211_set_sband_iftype_data(sband, sband_capa_6ghz);
5066 break;
5067 default:
5068 break;
5069 }
5070 }
5071
5072 #ifdef CONFIG_MAC80211_MESH
5073 #define HWSIM_MESH_BIT BIT(NL80211_IFTYPE_MESH_POINT)
5074 #else
5075 #define HWSIM_MESH_BIT 0
5076 #endif
5077
5078 #define HWSIM_DEFAULT_IF_LIMIT \
5079 (BIT(NL80211_IFTYPE_STATION) | \
5080 BIT(NL80211_IFTYPE_P2P_CLIENT) | \
5081 BIT(NL80211_IFTYPE_AP) | \
5082 BIT(NL80211_IFTYPE_P2P_GO) | \
5083 HWSIM_MESH_BIT)
5084
5085 #define HWSIM_IFTYPE_SUPPORT_MASK \
5086 (BIT(NL80211_IFTYPE_STATION) | \
5087 BIT(NL80211_IFTYPE_AP) | \
5088 BIT(NL80211_IFTYPE_P2P_CLIENT) | \
5089 BIT(NL80211_IFTYPE_P2P_GO) | \
5090 BIT(NL80211_IFTYPE_ADHOC) | \
5091 BIT(NL80211_IFTYPE_MESH_POINT) | \
5092 BIT(NL80211_IFTYPE_OCB))
5093
5094 static const u8 iftypes_ext_capa_ap[] = {
5095 [0] = WLAN_EXT_CAPA1_EXT_CHANNEL_SWITCHING,
5096 [2] = WLAN_EXT_CAPA3_MULTI_BSSID_SUPPORT,
5097 [7] = WLAN_EXT_CAPA8_OPMODE_NOTIF |
5098 WLAN_EXT_CAPA8_MAX_MSDU_IN_AMSDU_LSB,
5099 [8] = WLAN_EXT_CAPA9_MAX_MSDU_IN_AMSDU_MSB,
5100 [9] = WLAN_EXT_CAPA10_TWT_RESPONDER_SUPPORT,
5101 };
5102
5103 #define MAC80211_HWSIM_MLD_CAPA_OPS \
5104 FIELD_PREP_CONST(IEEE80211_MLD_CAP_OP_TID_TO_LINK_MAP_NEG_SUPP, \
5105 IEEE80211_MLD_CAP_OP_TID_TO_LINK_MAP_NEG_SUPP_SAME) | \
5106 FIELD_PREP_CONST(IEEE80211_MLD_CAP_OP_MAX_SIMUL_LINKS, \
5107 IEEE80211_MLD_MAX_NUM_LINKS - 1)
5108
5109 static const struct wiphy_iftype_ext_capab mac80211_hwsim_iftypes_ext_capa[] = {
5110 {
5111 .iftype = NL80211_IFTYPE_AP,
5112 .extended_capabilities = iftypes_ext_capa_ap,
5113 .extended_capabilities_mask = iftypes_ext_capa_ap,
5114 .extended_capabilities_len = sizeof(iftypes_ext_capa_ap),
5115 .eml_capabilities = IEEE80211_EML_CAP_EMLSR_SUPP |
5116 IEEE80211_EML_CAP_EMLMR_SUPPORT,
5117 .mld_capa_and_ops = MAC80211_HWSIM_MLD_CAPA_OPS,
5118 },
5119 };
5120
mac80211_hwsim_new_radio(struct genl_info * info,struct hwsim_new_radio_params * param)5121 static int mac80211_hwsim_new_radio(struct genl_info *info,
5122 struct hwsim_new_radio_params *param)
5123 {
5124 int err;
5125 u8 addr[ETH_ALEN];
5126 struct mac80211_hwsim_data *data;
5127 struct ieee80211_hw *hw;
5128 enum nl80211_band band;
5129 const struct ieee80211_ops *ops = &mac80211_hwsim_ops;
5130 struct net *net;
5131 int idx, i;
5132 int n_limits = 0;
5133 int n_bands = 0;
5134
5135 if (WARN_ON(param->channels > 1 && !param->use_chanctx))
5136 return -EINVAL;
5137
5138 spin_lock_bh(&hwsim_radio_lock);
5139 idx = hwsim_radio_idx++;
5140 spin_unlock_bh(&hwsim_radio_lock);
5141
5142 if (param->mlo)
5143 ops = &mac80211_hwsim_mlo_ops;
5144 else if (param->use_chanctx)
5145 ops = &mac80211_hwsim_mchan_ops;
5146 hw = ieee80211_alloc_hw_nm(sizeof(*data), ops, param->hwname);
5147 if (!hw) {
5148 pr_debug("mac80211_hwsim: ieee80211_alloc_hw failed\n");
5149 err = -ENOMEM;
5150 goto failed;
5151 }
5152
5153 /* ieee80211_alloc_hw_nm may have used a default name */
5154 param->hwname = wiphy_name(hw->wiphy);
5155
5156 if (info)
5157 net = genl_info_net(info);
5158 else
5159 net = &init_net;
5160 wiphy_net_set(hw->wiphy, net);
5161
5162 data = hw->priv;
5163 data->hw = hw;
5164
5165 data->dev = device_create(hwsim_class, NULL, 0, hw, "hwsim%d", idx);
5166 if (IS_ERR(data->dev)) {
5167 printk(KERN_DEBUG
5168 "mac80211_hwsim: device_create failed (%ld)\n",
5169 PTR_ERR(data->dev));
5170 err = -ENOMEM;
5171 goto failed_drvdata;
5172 }
5173 data->dev->driver = &mac80211_hwsim_driver.driver;
5174 err = device_bind_driver(data->dev);
5175 if (err != 0) {
5176 pr_debug("mac80211_hwsim: device_bind_driver failed (%d)\n",
5177 err);
5178 goto failed_bind;
5179 }
5180
5181 skb_queue_head_init(&data->pending);
5182
5183 SET_IEEE80211_DEV(hw, data->dev);
5184 if (!param->perm_addr) {
5185 eth_zero_addr(addr);
5186 addr[0] = 0x02;
5187 addr[3] = idx >> 8;
5188 addr[4] = idx;
5189 memcpy(data->addresses[0].addr, addr, ETH_ALEN);
5190 /* Why need here second address ? */
5191 memcpy(data->addresses[1].addr, addr, ETH_ALEN);
5192 data->addresses[1].addr[0] |= 0x40;
5193 hw->wiphy->n_addresses = 2;
5194 hw->wiphy->addresses = data->addresses;
5195 /* possible address clash is checked at hash table insertion */
5196 } else {
5197 memcpy(data->addresses[0].addr, param->perm_addr, ETH_ALEN);
5198 /* compatibility with automatically generated mac addr */
5199 memcpy(data->addresses[1].addr, param->perm_addr, ETH_ALEN);
5200 hw->wiphy->n_addresses = 2;
5201 hw->wiphy->addresses = data->addresses;
5202 }
5203
5204 data->channels = param->channels;
5205 data->use_chanctx = param->use_chanctx;
5206 data->idx = idx;
5207 data->destroy_on_close = param->destroy_on_close;
5208 if (info)
5209 data->portid = info->snd_portid;
5210
5211 /* setup interface limits, only on interface types we support */
5212 if (param->iftypes & BIT(NL80211_IFTYPE_ADHOC)) {
5213 data->if_limits[n_limits].max = 1;
5214 data->if_limits[n_limits].types = BIT(NL80211_IFTYPE_ADHOC);
5215 n_limits++;
5216 }
5217
5218 if (param->iftypes & HWSIM_DEFAULT_IF_LIMIT) {
5219 data->if_limits[n_limits].max = 2048;
5220 /*
5221 * For this case, we may only support a subset of
5222 * HWSIM_DEFAULT_IF_LIMIT, therefore we only want to add the
5223 * bits that both param->iftype & HWSIM_DEFAULT_IF_LIMIT have.
5224 */
5225 data->if_limits[n_limits].types =
5226 HWSIM_DEFAULT_IF_LIMIT & param->iftypes;
5227 n_limits++;
5228 }
5229
5230 if (param->iftypes & BIT(NL80211_IFTYPE_P2P_DEVICE)) {
5231 data->if_limits[n_limits].max = 1;
5232 data->if_limits[n_limits].types =
5233 BIT(NL80211_IFTYPE_P2P_DEVICE);
5234 n_limits++;
5235 }
5236
5237 data->if_combination.radar_detect_widths =
5238 BIT(NL80211_CHAN_WIDTH_5) |
5239 BIT(NL80211_CHAN_WIDTH_10) |
5240 BIT(NL80211_CHAN_WIDTH_20_NOHT) |
5241 BIT(NL80211_CHAN_WIDTH_20) |
5242 BIT(NL80211_CHAN_WIDTH_40) |
5243 BIT(NL80211_CHAN_WIDTH_80) |
5244 BIT(NL80211_CHAN_WIDTH_160);
5245
5246 if (data->use_chanctx) {
5247 hw->wiphy->max_scan_ssids = 255;
5248 hw->wiphy->max_scan_ie_len = IEEE80211_MAX_DATA_LEN;
5249 hw->wiphy->max_remain_on_channel_duration = 1000;
5250 data->if_combination.num_different_channels = data->channels;
5251 } else {
5252 data->if_combination.num_different_channels = 1;
5253 }
5254
5255 if (!n_limits) {
5256 err = -EINVAL;
5257 goto failed_hw;
5258 }
5259
5260 data->if_combination.max_interfaces = 0;
5261 for (i = 0; i < n_limits; i++)
5262 data->if_combination.max_interfaces +=
5263 data->if_limits[i].max;
5264
5265 data->if_combination.n_limits = n_limits;
5266 data->if_combination.limits = data->if_limits;
5267
5268 /*
5269 * If we actually were asked to support combinations,
5270 * advertise them - if there's only a single thing like
5271 * only IBSS then don't advertise it as combinations.
5272 */
5273 if (data->if_combination.max_interfaces > 1) {
5274 hw->wiphy->iface_combinations = &data->if_combination;
5275 hw->wiphy->n_iface_combinations = 1;
5276 }
5277
5278 if (param->ciphers) {
5279 memcpy(data->ciphers, param->ciphers,
5280 param->n_ciphers * sizeof(u32));
5281 hw->wiphy->cipher_suites = data->ciphers;
5282 hw->wiphy->n_cipher_suites = param->n_ciphers;
5283 }
5284
5285 hw->wiphy->mbssid_max_interfaces = 8;
5286 hw->wiphy->ema_max_profile_periodicity = 3;
5287
5288 data->rx_rssi = DEFAULT_RX_RSSI;
5289
5290 INIT_DELAYED_WORK(&data->roc_start, hw_roc_start);
5291 INIT_DELAYED_WORK(&data->roc_done, hw_roc_done);
5292 INIT_DELAYED_WORK(&data->hw_scan, hw_scan_work);
5293
5294 hw->queues = 5;
5295 hw->offchannel_tx_hw_queue = 4;
5296
5297 ieee80211_hw_set(hw, SUPPORT_FAST_XMIT);
5298 ieee80211_hw_set(hw, CHANCTX_STA_CSA);
5299 ieee80211_hw_set(hw, SUPPORTS_HT_CCK_RATES);
5300 ieee80211_hw_set(hw, QUEUE_CONTROL);
5301 ieee80211_hw_set(hw, WANT_MONITOR_VIF);
5302 ieee80211_hw_set(hw, AMPDU_AGGREGATION);
5303 ieee80211_hw_set(hw, MFP_CAPABLE);
5304 ieee80211_hw_set(hw, SIGNAL_DBM);
5305 ieee80211_hw_set(hw, SUPPORTS_PS);
5306 ieee80211_hw_set(hw, REPORTS_TX_ACK_STATUS);
5307 ieee80211_hw_set(hw, TDLS_WIDER_BW);
5308 ieee80211_hw_set(hw, SUPPORTS_MULTI_BSSID);
5309
5310 if (param->mlo) {
5311 hw->wiphy->flags |= WIPHY_FLAG_SUPPORTS_MLO;
5312 ieee80211_hw_set(hw, HAS_RATE_CONTROL);
5313 ieee80211_hw_set(hw, SUPPORTS_DYNAMIC_PS);
5314 ieee80211_hw_set(hw, CONNECTION_MONITOR);
5315 ieee80211_hw_set(hw, AP_LINK_PS);
5316
5317 hw->wiphy->iftype_ext_capab = mac80211_hwsim_iftypes_ext_capa;
5318 hw->wiphy->num_iftype_ext_capab =
5319 ARRAY_SIZE(mac80211_hwsim_iftypes_ext_capa);
5320 } else {
5321 ieee80211_hw_set(hw, HOST_BROADCAST_PS_BUFFERING);
5322 ieee80211_hw_set(hw, PS_NULLFUNC_STACK);
5323 if (rctbl)
5324 ieee80211_hw_set(hw, SUPPORTS_RC_TABLE);
5325 }
5326
5327 hw->wiphy->flags &= ~WIPHY_FLAG_PS_ON_BY_DEFAULT;
5328 hw->wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS |
5329 WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL |
5330 WIPHY_FLAG_AP_UAPSD |
5331 WIPHY_FLAG_SUPPORTS_5_10_MHZ |
5332 WIPHY_FLAG_HAS_CHANNEL_SWITCH;
5333 hw->wiphy->features |= NL80211_FEATURE_ACTIVE_MONITOR |
5334 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE |
5335 NL80211_FEATURE_STATIC_SMPS |
5336 NL80211_FEATURE_DYNAMIC_SMPS |
5337 NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
5338 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_VHT_IBSS);
5339 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_BEACON_PROTECTION);
5340 wiphy_ext_feature_set(hw->wiphy,
5341 NL80211_EXT_FEATURE_MULTICAST_REGISTRATIONS);
5342 wiphy_ext_feature_set(hw->wiphy,
5343 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY);
5344 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_ENABLE_FTM_RESPONDER);
5345
5346 wiphy_ext_feature_set(hw->wiphy,
5347 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT);
5348 wiphy_ext_feature_set(hw->wiphy,
5349 NL80211_EXT_FEATURE_BSS_COLOR);
5350
5351 hw->wiphy->interface_modes = param->iftypes;
5352
5353 /* ask mac80211 to reserve space for magic */
5354 hw->vif_data_size = sizeof(struct hwsim_vif_priv);
5355 hw->sta_data_size = sizeof(struct hwsim_sta_priv);
5356 hw->chanctx_data_size = sizeof(struct hwsim_chanctx_priv);
5357
5358 memcpy(data->channels_2ghz, hwsim_channels_2ghz,
5359 sizeof(hwsim_channels_2ghz));
5360 memcpy(data->channels_5ghz, hwsim_channels_5ghz,
5361 sizeof(hwsim_channels_5ghz));
5362 memcpy(data->channels_6ghz, hwsim_channels_6ghz,
5363 sizeof(hwsim_channels_6ghz));
5364 memcpy(data->channels_s1g, hwsim_channels_s1g,
5365 sizeof(hwsim_channels_s1g));
5366 memcpy(data->rates, hwsim_rates, sizeof(hwsim_rates));
5367
5368 for (band = NL80211_BAND_2GHZ; band < NUM_NL80211_BANDS; band++) {
5369 struct ieee80211_supported_band *sband = &data->bands[band];
5370 struct wiphy_radio_freq_range *radio_range;
5371 const struct ieee80211_channel *c;
5372 struct wiphy_radio *radio;
5373
5374 sband->band = band;
5375
5376 switch (band) {
5377 case NL80211_BAND_2GHZ:
5378 sband->channels = data->channels_2ghz;
5379 sband->n_channels = ARRAY_SIZE(hwsim_channels_2ghz);
5380 sband->bitrates = data->rates;
5381 sband->n_bitrates = ARRAY_SIZE(hwsim_rates);
5382 break;
5383 case NL80211_BAND_5GHZ:
5384 sband->channels = data->channels_5ghz;
5385 sband->n_channels = ARRAY_SIZE(hwsim_channels_5ghz);
5386 sband->bitrates = data->rates + 4;
5387 sband->n_bitrates = ARRAY_SIZE(hwsim_rates) - 4;
5388
5389 sband->vht_cap.vht_supported = true;
5390 sband->vht_cap.cap =
5391 IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_11454 |
5392 IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160_80PLUS80MHZ |
5393 IEEE80211_VHT_CAP_RXLDPC |
5394 IEEE80211_VHT_CAP_SHORT_GI_80 |
5395 IEEE80211_VHT_CAP_SHORT_GI_160 |
5396 IEEE80211_VHT_CAP_TXSTBC |
5397 IEEE80211_VHT_CAP_RXSTBC_4 |
5398 IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MASK;
5399 sband->vht_cap.vht_mcs.rx_mcs_map =
5400 cpu_to_le16(IEEE80211_VHT_MCS_SUPPORT_0_9 << 0 |
5401 IEEE80211_VHT_MCS_SUPPORT_0_9 << 2 |
5402 IEEE80211_VHT_MCS_SUPPORT_0_9 << 4 |
5403 IEEE80211_VHT_MCS_SUPPORT_0_9 << 6 |
5404 IEEE80211_VHT_MCS_SUPPORT_0_9 << 8 |
5405 IEEE80211_VHT_MCS_SUPPORT_0_9 << 10 |
5406 IEEE80211_VHT_MCS_SUPPORT_0_9 << 12 |
5407 IEEE80211_VHT_MCS_SUPPORT_0_9 << 14);
5408 sband->vht_cap.vht_mcs.tx_mcs_map =
5409 sband->vht_cap.vht_mcs.rx_mcs_map;
5410 break;
5411 case NL80211_BAND_6GHZ:
5412 sband->channels = data->channels_6ghz;
5413 sband->n_channels = ARRAY_SIZE(hwsim_channels_6ghz);
5414 sband->bitrates = data->rates + 4;
5415 sband->n_bitrates = ARRAY_SIZE(hwsim_rates) - 4;
5416 break;
5417 case NL80211_BAND_S1GHZ:
5418 memcpy(&sband->s1g_cap, &hwsim_s1g_cap,
5419 sizeof(sband->s1g_cap));
5420 sband->channels = data->channels_s1g;
5421 sband->n_channels = ARRAY_SIZE(hwsim_channels_s1g);
5422 break;
5423 default:
5424 continue;
5425 }
5426
5427 if (band != NL80211_BAND_6GHZ){
5428 sband->ht_cap.ht_supported = true;
5429 sband->ht_cap.cap = IEEE80211_HT_CAP_SUP_WIDTH_20_40 |
5430 IEEE80211_HT_CAP_GRN_FLD |
5431 IEEE80211_HT_CAP_SGI_20 |
5432 IEEE80211_HT_CAP_SGI_40 |
5433 IEEE80211_HT_CAP_DSSSCCK40;
5434 sband->ht_cap.ampdu_factor = 0x3;
5435 sband->ht_cap.ampdu_density = 0x6;
5436 memset(&sband->ht_cap.mcs, 0,
5437 sizeof(sband->ht_cap.mcs));
5438 sband->ht_cap.mcs.rx_mask[0] = 0xff;
5439 sband->ht_cap.mcs.rx_mask[1] = 0xff;
5440 sband->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED;
5441 }
5442
5443 mac80211_hwsim_sband_capab(sband);
5444
5445 hw->wiphy->bands[band] = sband;
5446
5447 if (!param->multi_radio)
5448 continue;
5449
5450 c = sband->channels;
5451 radio_range = &data->radio_range[n_bands];
5452 radio_range->start_freq = ieee80211_channel_to_khz(c) - 10000;
5453
5454 c += sband->n_channels - 1;
5455 radio_range->end_freq = ieee80211_channel_to_khz(c) + 10000;
5456
5457 radio = &data->radio[n_bands++];
5458 radio->freq_range = radio_range;
5459 radio->n_freq_range = 1;
5460 radio->iface_combinations = &data->if_combination_radio;
5461 radio->n_iface_combinations = 1;
5462 }
5463
5464 if (param->multi_radio) {
5465 hw->wiphy->radio = data->radio;
5466 hw->wiphy->n_radio = n_bands;
5467
5468 memcpy(&data->if_combination_radio, &data->if_combination,
5469 sizeof(data->if_combination));
5470 data->if_combination.num_different_channels *= n_bands;
5471 }
5472
5473 if (data->use_chanctx)
5474 data->if_combination.radar_detect_widths = 0;
5475
5476 /* By default all radios belong to the first group */
5477 data->group = 1;
5478 mutex_init(&data->mutex);
5479
5480 data->netgroup = hwsim_net_get_netgroup(net);
5481 data->wmediumd = hwsim_net_get_wmediumd(net);
5482
5483 /* Enable frame retransmissions for lossy channels */
5484 hw->max_rates = 4;
5485 hw->max_rate_tries = 11;
5486
5487 hw->wiphy->vendor_commands = mac80211_hwsim_vendor_commands;
5488 hw->wiphy->n_vendor_commands =
5489 ARRAY_SIZE(mac80211_hwsim_vendor_commands);
5490 hw->wiphy->vendor_events = mac80211_hwsim_vendor_events;
5491 hw->wiphy->n_vendor_events = ARRAY_SIZE(mac80211_hwsim_vendor_events);
5492
5493 if (param->reg_strict)
5494 hw->wiphy->regulatory_flags |= REGULATORY_STRICT_REG;
5495 if (param->regd) {
5496 data->regd = param->regd;
5497 hw->wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG;
5498 wiphy_apply_custom_regulatory(hw->wiphy, param->regd);
5499 /* give the regulatory workqueue a chance to run */
5500 schedule_timeout_interruptible(1);
5501 }
5502
5503 wiphy_ext_feature_set(hw->wiphy,
5504 NL80211_EXT_FEATURE_DFS_CONCURRENT);
5505
5506 if (param->no_vif)
5507 ieee80211_hw_set(hw, NO_AUTO_VIF);
5508
5509 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST);
5510
5511 for (i = 0; i < ARRAY_SIZE(data->link_data); i++) {
5512 hrtimer_init(&data->link_data[i].beacon_timer, CLOCK_MONOTONIC,
5513 HRTIMER_MODE_ABS_SOFT);
5514 data->link_data[i].beacon_timer.function =
5515 mac80211_hwsim_beacon;
5516 data->link_data[i].link_id = i;
5517 }
5518
5519 err = ieee80211_register_hw(hw);
5520 if (err < 0) {
5521 pr_debug("mac80211_hwsim: ieee80211_register_hw failed (%d)\n",
5522 err);
5523 goto failed_hw;
5524 }
5525
5526 wiphy_dbg(hw->wiphy, "hwaddr %pM registered\n", hw->wiphy->perm_addr);
5527
5528 if (param->reg_alpha2) {
5529 data->alpha2[0] = param->reg_alpha2[0];
5530 data->alpha2[1] = param->reg_alpha2[1];
5531 regulatory_hint(hw->wiphy, param->reg_alpha2);
5532 }
5533
5534 data->debugfs = debugfs_create_dir("hwsim", hw->wiphy->debugfsdir);
5535 debugfs_create_file("ps", 0666, data->debugfs, data, &hwsim_fops_ps);
5536 debugfs_create_file("group", 0666, data->debugfs, data,
5537 &hwsim_fops_group);
5538 debugfs_create_file("rx_rssi", 0666, data->debugfs, data,
5539 &hwsim_fops_rx_rssi);
5540 if (!data->use_chanctx)
5541 debugfs_create_file("dfs_simulate_radar", 0222,
5542 data->debugfs,
5543 data, &hwsim_simulate_radar);
5544
5545 if (param->pmsr_capa) {
5546 data->pmsr_capa = *param->pmsr_capa;
5547 hw->wiphy->pmsr_capa = &data->pmsr_capa;
5548 }
5549
5550 spin_lock_bh(&hwsim_radio_lock);
5551 err = rhashtable_insert_fast(&hwsim_radios_rht, &data->rht,
5552 hwsim_rht_params);
5553 if (err < 0) {
5554 if (info) {
5555 GENL_SET_ERR_MSG(info, "perm addr already present");
5556 NL_SET_BAD_ATTR(info->extack,
5557 info->attrs[HWSIM_ATTR_PERM_ADDR]);
5558 }
5559 spin_unlock_bh(&hwsim_radio_lock);
5560 goto failed_final_insert;
5561 }
5562
5563 list_add_tail(&data->list, &hwsim_radios);
5564 hwsim_radios_generation++;
5565 spin_unlock_bh(&hwsim_radio_lock);
5566
5567 hwsim_mcast_new_radio(idx, info, param);
5568
5569 return idx;
5570
5571 failed_final_insert:
5572 debugfs_remove_recursive(data->debugfs);
5573 ieee80211_unregister_hw(data->hw);
5574 failed_hw:
5575 device_release_driver(data->dev);
5576 failed_bind:
5577 device_unregister(data->dev);
5578 failed_drvdata:
5579 ieee80211_free_hw(hw);
5580 failed:
5581 return err;
5582 }
5583
hwsim_mcast_del_radio(int id,const char * hwname,struct genl_info * info)5584 static void hwsim_mcast_del_radio(int id, const char *hwname,
5585 struct genl_info *info)
5586 {
5587 struct sk_buff *skb;
5588 void *data;
5589 int ret;
5590
5591 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
5592 if (!skb)
5593 return;
5594
5595 data = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0,
5596 HWSIM_CMD_DEL_RADIO);
5597 if (!data)
5598 goto error;
5599
5600 ret = nla_put_u32(skb, HWSIM_ATTR_RADIO_ID, id);
5601 if (ret < 0)
5602 goto error;
5603
5604 ret = nla_put(skb, HWSIM_ATTR_RADIO_NAME, strlen(hwname),
5605 hwname);
5606 if (ret < 0)
5607 goto error;
5608
5609 genlmsg_end(skb, data);
5610
5611 hwsim_mcast_config_msg(skb, info);
5612
5613 return;
5614
5615 error:
5616 nlmsg_free(skb);
5617 }
5618
mac80211_hwsim_del_radio(struct mac80211_hwsim_data * data,const char * hwname,struct genl_info * info)5619 static void mac80211_hwsim_del_radio(struct mac80211_hwsim_data *data,
5620 const char *hwname,
5621 struct genl_info *info)
5622 {
5623 hwsim_mcast_del_radio(data->idx, hwname, info);
5624 debugfs_remove_recursive(data->debugfs);
5625 ieee80211_unregister_hw(data->hw);
5626 device_release_driver(data->dev);
5627 device_unregister(data->dev);
5628 ieee80211_free_hw(data->hw);
5629 }
5630
mac80211_hwsim_get_radio(struct sk_buff * skb,struct mac80211_hwsim_data * data,u32 portid,u32 seq,struct netlink_callback * cb,int flags)5631 static int mac80211_hwsim_get_radio(struct sk_buff *skb,
5632 struct mac80211_hwsim_data *data,
5633 u32 portid, u32 seq,
5634 struct netlink_callback *cb, int flags)
5635 {
5636 void *hdr;
5637 struct hwsim_new_radio_params param = { };
5638 int res = -EMSGSIZE;
5639
5640 hdr = genlmsg_put(skb, portid, seq, &hwsim_genl_family, flags,
5641 HWSIM_CMD_GET_RADIO);
5642 if (!hdr)
5643 return -EMSGSIZE;
5644
5645 if (cb)
5646 genl_dump_check_consistent(cb, hdr);
5647
5648 if (data->alpha2[0] && data->alpha2[1])
5649 param.reg_alpha2 = data->alpha2;
5650
5651 param.reg_strict = !!(data->hw->wiphy->regulatory_flags &
5652 REGULATORY_STRICT_REG);
5653 param.p2p_device = !!(data->hw->wiphy->interface_modes &
5654 BIT(NL80211_IFTYPE_P2P_DEVICE));
5655 param.use_chanctx = data->use_chanctx;
5656 param.regd = data->regd;
5657 param.channels = data->channels;
5658 param.hwname = wiphy_name(data->hw->wiphy);
5659 param.pmsr_capa = &data->pmsr_capa;
5660
5661 res = append_radio_msg(skb, data->idx, ¶m);
5662 if (res < 0)
5663 goto out_err;
5664
5665 genlmsg_end(skb, hdr);
5666 return 0;
5667
5668 out_err:
5669 genlmsg_cancel(skb, hdr);
5670 return res;
5671 }
5672
mac80211_hwsim_free(void)5673 static void mac80211_hwsim_free(void)
5674 {
5675 struct mac80211_hwsim_data *data;
5676
5677 spin_lock_bh(&hwsim_radio_lock);
5678 while ((data = list_first_entry_or_null(&hwsim_radios,
5679 struct mac80211_hwsim_data,
5680 list))) {
5681 list_del(&data->list);
5682 spin_unlock_bh(&hwsim_radio_lock);
5683 mac80211_hwsim_del_radio(data, wiphy_name(data->hw->wiphy),
5684 NULL);
5685 spin_lock_bh(&hwsim_radio_lock);
5686 }
5687 spin_unlock_bh(&hwsim_radio_lock);
5688 class_destroy(hwsim_class);
5689 }
5690
5691 static const struct net_device_ops hwsim_netdev_ops = {
5692 .ndo_start_xmit = hwsim_mon_xmit,
5693 .ndo_set_mac_address = eth_mac_addr,
5694 .ndo_validate_addr = eth_validate_addr,
5695 };
5696
hwsim_mon_setup(struct net_device * dev)5697 static void hwsim_mon_setup(struct net_device *dev)
5698 {
5699 u8 addr[ETH_ALEN];
5700
5701 dev->netdev_ops = &hwsim_netdev_ops;
5702 dev->needs_free_netdev = true;
5703 ether_setup(dev);
5704 dev->priv_flags |= IFF_NO_QUEUE;
5705 dev->type = ARPHRD_IEEE80211_RADIOTAP;
5706 eth_zero_addr(addr);
5707 addr[0] = 0x12;
5708 eth_hw_addr_set(dev, addr);
5709 }
5710
hwsim_register_wmediumd(struct net * net,u32 portid)5711 static void hwsim_register_wmediumd(struct net *net, u32 portid)
5712 {
5713 struct mac80211_hwsim_data *data;
5714
5715 hwsim_net_set_wmediumd(net, portid);
5716
5717 spin_lock_bh(&hwsim_radio_lock);
5718 list_for_each_entry(data, &hwsim_radios, list) {
5719 if (data->netgroup == hwsim_net_get_netgroup(net))
5720 data->wmediumd = portid;
5721 }
5722 spin_unlock_bh(&hwsim_radio_lock);
5723 }
5724
hwsim_tx_info_frame_received_nl(struct sk_buff * skb_2,struct genl_info * info)5725 static int hwsim_tx_info_frame_received_nl(struct sk_buff *skb_2,
5726 struct genl_info *info)
5727 {
5728
5729 struct ieee80211_hdr *hdr;
5730 struct mac80211_hwsim_data *data2;
5731 struct ieee80211_tx_info *txi;
5732 struct hwsim_tx_rate *tx_attempts;
5733 u64 ret_skb_cookie;
5734 struct sk_buff *skb, *tmp;
5735 const u8 *src;
5736 unsigned int hwsim_flags;
5737 int i;
5738 unsigned long flags;
5739 bool found = false;
5740
5741 if (!info->attrs[HWSIM_ATTR_ADDR_TRANSMITTER] ||
5742 !info->attrs[HWSIM_ATTR_FLAGS] ||
5743 !info->attrs[HWSIM_ATTR_COOKIE] ||
5744 !info->attrs[HWSIM_ATTR_SIGNAL] ||
5745 !info->attrs[HWSIM_ATTR_TX_INFO])
5746 goto out;
5747
5748 src = (void *)nla_data(info->attrs[HWSIM_ATTR_ADDR_TRANSMITTER]);
5749 hwsim_flags = nla_get_u32(info->attrs[HWSIM_ATTR_FLAGS]);
5750 ret_skb_cookie = nla_get_u64(info->attrs[HWSIM_ATTR_COOKIE]);
5751
5752 data2 = get_hwsim_data_ref_from_addr(src);
5753 if (!data2)
5754 goto out;
5755
5756 if (!hwsim_virtio_enabled) {
5757 if (hwsim_net_get_netgroup(genl_info_net(info)) !=
5758 data2->netgroup)
5759 goto out;
5760
5761 if (info->snd_portid != data2->wmediumd)
5762 goto out;
5763 }
5764
5765 /* look for the skb matching the cookie passed back from user */
5766 spin_lock_irqsave(&data2->pending.lock, flags);
5767 skb_queue_walk_safe(&data2->pending, skb, tmp) {
5768 uintptr_t skb_cookie;
5769
5770 txi = IEEE80211_SKB_CB(skb);
5771 skb_cookie = (uintptr_t)txi->rate_driver_data[0];
5772
5773 if (skb_cookie == ret_skb_cookie) {
5774 __skb_unlink(skb, &data2->pending);
5775 found = true;
5776 break;
5777 }
5778 }
5779 spin_unlock_irqrestore(&data2->pending.lock, flags);
5780
5781 /* not found */
5782 if (!found)
5783 goto out;
5784
5785 /* Tx info received because the frame was broadcasted on user space,
5786 so we get all the necessary info: tx attempts and skb control buff */
5787
5788 tx_attempts = (struct hwsim_tx_rate *)nla_data(
5789 info->attrs[HWSIM_ATTR_TX_INFO]);
5790
5791 /* now send back TX status */
5792 txi = IEEE80211_SKB_CB(skb);
5793
5794 ieee80211_tx_info_clear_status(txi);
5795
5796 for (i = 0; i < IEEE80211_TX_MAX_RATES; i++) {
5797 txi->status.rates[i].idx = tx_attempts[i].idx;
5798 txi->status.rates[i].count = tx_attempts[i].count;
5799 }
5800
5801 txi->status.ack_signal = nla_get_u32(info->attrs[HWSIM_ATTR_SIGNAL]);
5802
5803 if (!(hwsim_flags & HWSIM_TX_CTL_NO_ACK) &&
5804 (hwsim_flags & HWSIM_TX_STAT_ACK)) {
5805 if (skb->len >= 16) {
5806 hdr = (struct ieee80211_hdr *) skb->data;
5807 mac80211_hwsim_monitor_ack(data2->channel,
5808 hdr->addr2);
5809 }
5810 txi->flags |= IEEE80211_TX_STAT_ACK;
5811 }
5812
5813 if (hwsim_flags & HWSIM_TX_CTL_NO_ACK)
5814 txi->flags |= IEEE80211_TX_STAT_NOACK_TRANSMITTED;
5815
5816 ieee80211_tx_status_irqsafe(data2->hw, skb);
5817 return 0;
5818 out:
5819 return -EINVAL;
5820
5821 }
5822
hwsim_cloned_frame_received_nl(struct sk_buff * skb_2,struct genl_info * info)5823 static int hwsim_cloned_frame_received_nl(struct sk_buff *skb_2,
5824 struct genl_info *info)
5825 {
5826 struct mac80211_hwsim_data *data2;
5827 struct ieee80211_rx_status rx_status;
5828 struct ieee80211_hdr *hdr;
5829 const u8 *dst;
5830 int frame_data_len;
5831 void *frame_data;
5832 struct sk_buff *skb = NULL;
5833 struct ieee80211_channel *channel = NULL;
5834
5835 if (!info->attrs[HWSIM_ATTR_ADDR_RECEIVER] ||
5836 !info->attrs[HWSIM_ATTR_FRAME] ||
5837 !info->attrs[HWSIM_ATTR_RX_RATE] ||
5838 !info->attrs[HWSIM_ATTR_SIGNAL])
5839 goto out;
5840
5841 dst = (void *)nla_data(info->attrs[HWSIM_ATTR_ADDR_RECEIVER]);
5842 frame_data_len = nla_len(info->attrs[HWSIM_ATTR_FRAME]);
5843 frame_data = (void *)nla_data(info->attrs[HWSIM_ATTR_FRAME]);
5844
5845 if (frame_data_len < sizeof(struct ieee80211_hdr_3addr) ||
5846 frame_data_len > IEEE80211_MAX_DATA_LEN)
5847 goto err;
5848
5849 /* Allocate new skb here */
5850 skb = alloc_skb(frame_data_len, GFP_KERNEL);
5851 if (skb == NULL)
5852 goto err;
5853
5854 /* Copy the data */
5855 skb_put_data(skb, frame_data, frame_data_len);
5856
5857 data2 = get_hwsim_data_ref_from_addr(dst);
5858 if (!data2)
5859 goto out;
5860
5861 if (data2->use_chanctx) {
5862 if (data2->tmp_chan)
5863 channel = data2->tmp_chan;
5864 } else {
5865 channel = data2->channel;
5866 }
5867
5868 if (!hwsim_virtio_enabled) {
5869 if (hwsim_net_get_netgroup(genl_info_net(info)) !=
5870 data2->netgroup)
5871 goto out;
5872
5873 if (info->snd_portid != data2->wmediumd)
5874 goto out;
5875 }
5876
5877 /* check if radio is configured properly */
5878
5879 if ((data2->idle && !data2->tmp_chan) || !data2->started)
5880 goto out;
5881
5882 /* A frame is received from user space */
5883 memset(&rx_status, 0, sizeof(rx_status));
5884 if (info->attrs[HWSIM_ATTR_FREQ]) {
5885 struct tx_iter_data iter_data = {};
5886
5887 /* throw away off-channel packets, but allow both the temporary
5888 * ("hw" scan/remain-on-channel), regular channels and links,
5889 * since the internal datapath also allows this
5890 */
5891 rx_status.freq = nla_get_u32(info->attrs[HWSIM_ATTR_FREQ]);
5892
5893 iter_data.channel = ieee80211_get_channel(data2->hw->wiphy,
5894 rx_status.freq);
5895 if (!iter_data.channel)
5896 goto out;
5897 rx_status.band = iter_data.channel->band;
5898
5899 mutex_lock(&data2->mutex);
5900 if (!hwsim_chans_compat(iter_data.channel, channel)) {
5901 ieee80211_iterate_active_interfaces_atomic(
5902 data2->hw, IEEE80211_IFACE_ITER_NORMAL,
5903 mac80211_hwsim_tx_iter, &iter_data);
5904 if (!iter_data.receive) {
5905 mutex_unlock(&data2->mutex);
5906 goto out;
5907 }
5908 }
5909 mutex_unlock(&data2->mutex);
5910 } else if (!channel) {
5911 goto out;
5912 } else {
5913 rx_status.freq = channel->center_freq;
5914 rx_status.band = channel->band;
5915 }
5916
5917 rx_status.rate_idx = nla_get_u32(info->attrs[HWSIM_ATTR_RX_RATE]);
5918 if (rx_status.rate_idx >= data2->hw->wiphy->bands[rx_status.band]->n_bitrates)
5919 goto out;
5920 rx_status.signal = nla_get_u32(info->attrs[HWSIM_ATTR_SIGNAL]);
5921
5922 hdr = (void *)skb->data;
5923
5924 if (ieee80211_is_beacon(hdr->frame_control) ||
5925 ieee80211_is_probe_resp(hdr->frame_control))
5926 rx_status.boottime_ns = ktime_get_boottime_ns();
5927
5928 mac80211_hwsim_rx(data2, &rx_status, skb);
5929
5930 return 0;
5931 err:
5932 pr_debug("mac80211_hwsim: error occurred in %s\n", __func__);
5933 out:
5934 dev_kfree_skb(skb);
5935 return -EINVAL;
5936 }
5937
hwsim_register_received_nl(struct sk_buff * skb_2,struct genl_info * info)5938 static int hwsim_register_received_nl(struct sk_buff *skb_2,
5939 struct genl_info *info)
5940 {
5941 struct net *net = genl_info_net(info);
5942 struct mac80211_hwsim_data *data;
5943 int chans = 1;
5944
5945 spin_lock_bh(&hwsim_radio_lock);
5946 list_for_each_entry(data, &hwsim_radios, list)
5947 chans = max(chans, data->channels);
5948 spin_unlock_bh(&hwsim_radio_lock);
5949
5950 /* In the future we should revise the userspace API and allow it
5951 * to set a flag that it does support multi-channel, then we can
5952 * let this pass conditionally on the flag.
5953 * For current userspace, prohibit it since it won't work right.
5954 */
5955 if (chans > 1)
5956 return -EOPNOTSUPP;
5957
5958 if (hwsim_net_get_wmediumd(net))
5959 return -EBUSY;
5960
5961 hwsim_register_wmediumd(net, info->snd_portid);
5962
5963 pr_debug("mac80211_hwsim: received a REGISTER, "
5964 "switching to wmediumd mode with pid %d\n", info->snd_portid);
5965
5966 return 0;
5967 }
5968
5969 /* ensures ciphers only include ciphers listed in 'hwsim_ciphers' array */
hwsim_known_ciphers(const u32 * ciphers,int n_ciphers)5970 static bool hwsim_known_ciphers(const u32 *ciphers, int n_ciphers)
5971 {
5972 int i;
5973
5974 for (i = 0; i < n_ciphers; i++) {
5975 int j;
5976 int found = 0;
5977
5978 for (j = 0; j < ARRAY_SIZE(hwsim_ciphers); j++) {
5979 if (ciphers[i] == hwsim_ciphers[j]) {
5980 found = 1;
5981 break;
5982 }
5983 }
5984
5985 if (!found)
5986 return false;
5987 }
5988
5989 return true;
5990 }
5991
parse_ftm_capa(const struct nlattr * ftm_capa,struct cfg80211_pmsr_capabilities * out,struct genl_info * info)5992 static int parse_ftm_capa(const struct nlattr *ftm_capa, struct cfg80211_pmsr_capabilities *out,
5993 struct genl_info *info)
5994 {
5995 struct nlattr *tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX + 1];
5996 int ret;
5997
5998 ret = nla_parse_nested(tb, NL80211_PMSR_FTM_CAPA_ATTR_MAX, ftm_capa, hwsim_ftm_capa_policy,
5999 NULL);
6000 if (ret) {
6001 NL_SET_ERR_MSG_ATTR(info->extack, ftm_capa, "malformed FTM capability");
6002 return -EINVAL;
6003 }
6004
6005 out->ftm.supported = 1;
6006 if (tb[NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES])
6007 out->ftm.preambles = nla_get_u32(tb[NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES]);
6008 if (tb[NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS])
6009 out->ftm.bandwidths = nla_get_u32(tb[NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS]);
6010 if (tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT])
6011 out->ftm.max_bursts_exponent =
6012 nla_get_u8(tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT]);
6013 if (tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST])
6014 out->ftm.max_ftms_per_burst =
6015 nla_get_u8(tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST]);
6016 out->ftm.asap = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_ASAP];
6017 out->ftm.non_asap = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP];
6018 out->ftm.request_lci = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI];
6019 out->ftm.request_civicloc = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC];
6020 out->ftm.trigger_based = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED];
6021 out->ftm.non_trigger_based = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED];
6022
6023 return 0;
6024 }
6025
parse_pmsr_capa(const struct nlattr * pmsr_capa,struct cfg80211_pmsr_capabilities * out,struct genl_info * info)6026 static int parse_pmsr_capa(const struct nlattr *pmsr_capa, struct cfg80211_pmsr_capabilities *out,
6027 struct genl_info *info)
6028 {
6029 struct nlattr *tb[NL80211_PMSR_ATTR_MAX + 1];
6030 struct nlattr *nla;
6031 int size;
6032 int ret;
6033
6034 ret = nla_parse_nested(tb, NL80211_PMSR_ATTR_MAX, pmsr_capa, hwsim_pmsr_capa_policy, NULL);
6035 if (ret) {
6036 NL_SET_ERR_MSG_ATTR(info->extack, pmsr_capa, "malformed PMSR capability");
6037 return -EINVAL;
6038 }
6039
6040 if (tb[NL80211_PMSR_ATTR_MAX_PEERS])
6041 out->max_peers = nla_get_u32(tb[NL80211_PMSR_ATTR_MAX_PEERS]);
6042 out->report_ap_tsf = !!tb[NL80211_PMSR_ATTR_REPORT_AP_TSF];
6043 out->randomize_mac_addr = !!tb[NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR];
6044
6045 if (!tb[NL80211_PMSR_ATTR_TYPE_CAPA]) {
6046 NL_SET_ERR_MSG_ATTR(info->extack, tb[NL80211_PMSR_ATTR_TYPE_CAPA],
6047 "malformed PMSR type");
6048 return -EINVAL;
6049 }
6050
6051 nla_for_each_nested(nla, tb[NL80211_PMSR_ATTR_TYPE_CAPA], size) {
6052 switch (nla_type(nla)) {
6053 case NL80211_PMSR_TYPE_FTM:
6054 parse_ftm_capa(nla, out, info);
6055 break;
6056 default:
6057 NL_SET_ERR_MSG_ATTR(info->extack, nla, "unsupported measurement type");
6058 return -EINVAL;
6059 }
6060 }
6061
6062 return 0;
6063 }
6064
hwsim_new_radio_nl(struct sk_buff * msg,struct genl_info * info)6065 static int hwsim_new_radio_nl(struct sk_buff *msg, struct genl_info *info)
6066 {
6067 struct hwsim_new_radio_params param = { 0 };
6068 const char *hwname = NULL;
6069 int ret;
6070
6071 param.reg_strict = info->attrs[HWSIM_ATTR_REG_STRICT_REG];
6072 param.p2p_device = info->attrs[HWSIM_ATTR_SUPPORT_P2P_DEVICE];
6073 param.channels = channels;
6074 param.destroy_on_close =
6075 info->attrs[HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE];
6076
6077 if (info->attrs[HWSIM_ATTR_CHANNELS])
6078 param.channels = nla_get_u32(info->attrs[HWSIM_ATTR_CHANNELS]);
6079
6080 if (param.channels < 1) {
6081 GENL_SET_ERR_MSG(info, "must have at least one channel");
6082 return -EINVAL;
6083 }
6084
6085 if (info->attrs[HWSIM_ATTR_NO_VIF])
6086 param.no_vif = true;
6087
6088 if (info->attrs[HWSIM_ATTR_USE_CHANCTX])
6089 param.use_chanctx = true;
6090 else
6091 param.use_chanctx = (param.channels > 1);
6092
6093 if (info->attrs[HWSIM_ATTR_MULTI_RADIO])
6094 param.multi_radio = true;
6095
6096 if (info->attrs[HWSIM_ATTR_REG_HINT_ALPHA2])
6097 param.reg_alpha2 =
6098 nla_data(info->attrs[HWSIM_ATTR_REG_HINT_ALPHA2]);
6099
6100 if (info->attrs[HWSIM_ATTR_REG_CUSTOM_REG]) {
6101 u32 idx = nla_get_u32(info->attrs[HWSIM_ATTR_REG_CUSTOM_REG]);
6102
6103 if (idx >= ARRAY_SIZE(hwsim_world_regdom_custom))
6104 return -EINVAL;
6105
6106 idx = array_index_nospec(idx,
6107 ARRAY_SIZE(hwsim_world_regdom_custom));
6108 param.regd = hwsim_world_regdom_custom[idx];
6109 }
6110
6111 if (info->attrs[HWSIM_ATTR_PERM_ADDR]) {
6112 if (!is_valid_ether_addr(
6113 nla_data(info->attrs[HWSIM_ATTR_PERM_ADDR]))) {
6114 GENL_SET_ERR_MSG(info,"MAC is no valid source addr");
6115 NL_SET_BAD_ATTR(info->extack,
6116 info->attrs[HWSIM_ATTR_PERM_ADDR]);
6117 return -EINVAL;
6118 }
6119
6120 param.perm_addr = nla_data(info->attrs[HWSIM_ATTR_PERM_ADDR]);
6121 }
6122
6123 if (info->attrs[HWSIM_ATTR_IFTYPE_SUPPORT]) {
6124 param.iftypes =
6125 nla_get_u32(info->attrs[HWSIM_ATTR_IFTYPE_SUPPORT]);
6126
6127 if (param.iftypes & ~HWSIM_IFTYPE_SUPPORT_MASK) {
6128 NL_SET_ERR_MSG_ATTR(info->extack,
6129 info->attrs[HWSIM_ATTR_IFTYPE_SUPPORT],
6130 "cannot support more iftypes than kernel");
6131 return -EINVAL;
6132 }
6133 } else {
6134 param.iftypes = HWSIM_IFTYPE_SUPPORT_MASK;
6135 }
6136
6137 /* ensure both flag and iftype support is honored */
6138 if (param.p2p_device ||
6139 param.iftypes & BIT(NL80211_IFTYPE_P2P_DEVICE)) {
6140 param.iftypes |= BIT(NL80211_IFTYPE_P2P_DEVICE);
6141 param.p2p_device = true;
6142 }
6143
6144 if (info->attrs[HWSIM_ATTR_CIPHER_SUPPORT]) {
6145 u32 len = nla_len(info->attrs[HWSIM_ATTR_CIPHER_SUPPORT]);
6146
6147 param.ciphers =
6148 nla_data(info->attrs[HWSIM_ATTR_CIPHER_SUPPORT]);
6149
6150 if (len % sizeof(u32)) {
6151 NL_SET_ERR_MSG_ATTR(info->extack,
6152 info->attrs[HWSIM_ATTR_CIPHER_SUPPORT],
6153 "bad cipher list length");
6154 return -EINVAL;
6155 }
6156
6157 param.n_ciphers = len / sizeof(u32);
6158
6159 if (param.n_ciphers > ARRAY_SIZE(hwsim_ciphers)) {
6160 NL_SET_ERR_MSG_ATTR(info->extack,
6161 info->attrs[HWSIM_ATTR_CIPHER_SUPPORT],
6162 "too many ciphers specified");
6163 return -EINVAL;
6164 }
6165
6166 if (!hwsim_known_ciphers(param.ciphers, param.n_ciphers)) {
6167 NL_SET_ERR_MSG_ATTR(info->extack,
6168 info->attrs[HWSIM_ATTR_CIPHER_SUPPORT],
6169 "unsupported ciphers specified");
6170 return -EINVAL;
6171 }
6172 }
6173
6174 param.mlo = info->attrs[HWSIM_ATTR_MLO_SUPPORT];
6175
6176 if (param.mlo || param.multi_radio)
6177 param.use_chanctx = true;
6178
6179 if (info->attrs[HWSIM_ATTR_RADIO_NAME]) {
6180 hwname = kstrndup((char *)nla_data(info->attrs[HWSIM_ATTR_RADIO_NAME]),
6181 nla_len(info->attrs[HWSIM_ATTR_RADIO_NAME]),
6182 GFP_KERNEL);
6183 if (!hwname)
6184 return -ENOMEM;
6185 param.hwname = hwname;
6186 }
6187
6188 if (info->attrs[HWSIM_ATTR_PMSR_SUPPORT]) {
6189 struct cfg80211_pmsr_capabilities *pmsr_capa;
6190
6191 pmsr_capa = kmalloc(sizeof(*pmsr_capa), GFP_KERNEL);
6192 if (!pmsr_capa) {
6193 ret = -ENOMEM;
6194 goto out_free;
6195 }
6196 param.pmsr_capa = pmsr_capa;
6197
6198 ret = parse_pmsr_capa(info->attrs[HWSIM_ATTR_PMSR_SUPPORT], pmsr_capa, info);
6199 if (ret)
6200 goto out_free;
6201 }
6202
6203 ret = mac80211_hwsim_new_radio(info, ¶m);
6204
6205 out_free:
6206 kfree(hwname);
6207 kfree(param.pmsr_capa);
6208 return ret;
6209 }
6210
hwsim_del_radio_nl(struct sk_buff * msg,struct genl_info * info)6211 static int hwsim_del_radio_nl(struct sk_buff *msg, struct genl_info *info)
6212 {
6213 struct mac80211_hwsim_data *data;
6214 s64 idx = -1;
6215 const char *hwname = NULL;
6216
6217 if (info->attrs[HWSIM_ATTR_RADIO_ID]) {
6218 idx = nla_get_u32(info->attrs[HWSIM_ATTR_RADIO_ID]);
6219 } else if (info->attrs[HWSIM_ATTR_RADIO_NAME]) {
6220 hwname = kstrndup((char *)nla_data(info->attrs[HWSIM_ATTR_RADIO_NAME]),
6221 nla_len(info->attrs[HWSIM_ATTR_RADIO_NAME]),
6222 GFP_KERNEL);
6223 if (!hwname)
6224 return -ENOMEM;
6225 } else
6226 return -EINVAL;
6227
6228 spin_lock_bh(&hwsim_radio_lock);
6229 list_for_each_entry(data, &hwsim_radios, list) {
6230 if (idx >= 0) {
6231 if (data->idx != idx)
6232 continue;
6233 } else {
6234 if (!hwname ||
6235 strcmp(hwname, wiphy_name(data->hw->wiphy)))
6236 continue;
6237 }
6238
6239 if (!net_eq(wiphy_net(data->hw->wiphy), genl_info_net(info)))
6240 continue;
6241
6242 list_del(&data->list);
6243 rhashtable_remove_fast(&hwsim_radios_rht, &data->rht,
6244 hwsim_rht_params);
6245 hwsim_radios_generation++;
6246 spin_unlock_bh(&hwsim_radio_lock);
6247 mac80211_hwsim_del_radio(data, wiphy_name(data->hw->wiphy),
6248 info);
6249 kfree(hwname);
6250 return 0;
6251 }
6252 spin_unlock_bh(&hwsim_radio_lock);
6253
6254 kfree(hwname);
6255 return -ENODEV;
6256 }
6257
hwsim_get_radio_nl(struct sk_buff * msg,struct genl_info * info)6258 static int hwsim_get_radio_nl(struct sk_buff *msg, struct genl_info *info)
6259 {
6260 struct mac80211_hwsim_data *data;
6261 struct sk_buff *skb;
6262 int idx, res = -ENODEV;
6263
6264 if (!info->attrs[HWSIM_ATTR_RADIO_ID])
6265 return -EINVAL;
6266 idx = nla_get_u32(info->attrs[HWSIM_ATTR_RADIO_ID]);
6267
6268 spin_lock_bh(&hwsim_radio_lock);
6269 list_for_each_entry(data, &hwsim_radios, list) {
6270 if (data->idx != idx)
6271 continue;
6272
6273 if (!net_eq(wiphy_net(data->hw->wiphy), genl_info_net(info)))
6274 continue;
6275
6276 skb = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
6277 if (!skb) {
6278 res = -ENOMEM;
6279 goto out_err;
6280 }
6281
6282 res = mac80211_hwsim_get_radio(skb, data, info->snd_portid,
6283 info->snd_seq, NULL, 0);
6284 if (res < 0) {
6285 nlmsg_free(skb);
6286 goto out_err;
6287 }
6288
6289 res = genlmsg_reply(skb, info);
6290 break;
6291 }
6292
6293 out_err:
6294 spin_unlock_bh(&hwsim_radio_lock);
6295
6296 return res;
6297 }
6298
hwsim_dump_radio_nl(struct sk_buff * skb,struct netlink_callback * cb)6299 static int hwsim_dump_radio_nl(struct sk_buff *skb,
6300 struct netlink_callback *cb)
6301 {
6302 int last_idx = cb->args[0] - 1;
6303 struct mac80211_hwsim_data *data = NULL;
6304 int res = 0;
6305 void *hdr;
6306
6307 spin_lock_bh(&hwsim_radio_lock);
6308 cb->seq = hwsim_radios_generation;
6309
6310 if (last_idx >= hwsim_radio_idx-1)
6311 goto done;
6312
6313 list_for_each_entry(data, &hwsim_radios, list) {
6314 if (data->idx <= last_idx)
6315 continue;
6316
6317 if (!net_eq(wiphy_net(data->hw->wiphy), sock_net(skb->sk)))
6318 continue;
6319
6320 res = mac80211_hwsim_get_radio(skb, data,
6321 NETLINK_CB(cb->skb).portid,
6322 cb->nlh->nlmsg_seq, cb,
6323 NLM_F_MULTI);
6324 if (res < 0)
6325 break;
6326
6327 last_idx = data->idx;
6328 }
6329
6330 cb->args[0] = last_idx + 1;
6331
6332 /* list changed, but no new element sent, set interrupted flag */
6333 if (skb->len == 0 && cb->prev_seq && cb->seq != cb->prev_seq) {
6334 hdr = genlmsg_put(skb, NETLINK_CB(cb->skb).portid,
6335 cb->nlh->nlmsg_seq, &hwsim_genl_family,
6336 NLM_F_MULTI, HWSIM_CMD_GET_RADIO);
6337 if (hdr) {
6338 genl_dump_check_consistent(cb, hdr);
6339 genlmsg_end(skb, hdr);
6340 } else {
6341 res = -EMSGSIZE;
6342 }
6343 }
6344
6345 done:
6346 spin_unlock_bh(&hwsim_radio_lock);
6347 return res ?: skb->len;
6348 }
6349
6350 /* Generic Netlink operations array */
6351 static const struct genl_small_ops hwsim_ops[] = {
6352 {
6353 .cmd = HWSIM_CMD_REGISTER,
6354 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6355 .doit = hwsim_register_received_nl,
6356 .flags = GENL_UNS_ADMIN_PERM,
6357 },
6358 {
6359 .cmd = HWSIM_CMD_FRAME,
6360 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6361 .doit = hwsim_cloned_frame_received_nl,
6362 },
6363 {
6364 .cmd = HWSIM_CMD_TX_INFO_FRAME,
6365 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6366 .doit = hwsim_tx_info_frame_received_nl,
6367 },
6368 {
6369 .cmd = HWSIM_CMD_NEW_RADIO,
6370 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6371 .doit = hwsim_new_radio_nl,
6372 .flags = GENL_UNS_ADMIN_PERM,
6373 },
6374 {
6375 .cmd = HWSIM_CMD_DEL_RADIO,
6376 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6377 .doit = hwsim_del_radio_nl,
6378 .flags = GENL_UNS_ADMIN_PERM,
6379 },
6380 {
6381 .cmd = HWSIM_CMD_GET_RADIO,
6382 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6383 .doit = hwsim_get_radio_nl,
6384 .dumpit = hwsim_dump_radio_nl,
6385 },
6386 {
6387 .cmd = HWSIM_CMD_REPORT_PMSR,
6388 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6389 .doit = hwsim_pmsr_report_nl,
6390 },
6391 };
6392
6393 static struct genl_family hwsim_genl_family __ro_after_init = {
6394 .name = "MAC80211_HWSIM",
6395 .version = 1,
6396 .maxattr = HWSIM_ATTR_MAX,
6397 .policy = hwsim_genl_policy,
6398 .netnsok = true,
6399 .module = THIS_MODULE,
6400 .small_ops = hwsim_ops,
6401 .n_small_ops = ARRAY_SIZE(hwsim_ops),
6402 .resv_start_op = HWSIM_CMD_REPORT_PMSR + 1, // match with __HWSIM_CMD_MAX
6403 .mcgrps = hwsim_mcgrps,
6404 .n_mcgrps = ARRAY_SIZE(hwsim_mcgrps),
6405 };
6406
remove_user_radios(u32 portid)6407 static void remove_user_radios(u32 portid)
6408 {
6409 struct mac80211_hwsim_data *entry, *tmp;
6410 LIST_HEAD(list);
6411
6412 spin_lock_bh(&hwsim_radio_lock);
6413 list_for_each_entry_safe(entry, tmp, &hwsim_radios, list) {
6414 if (entry->destroy_on_close && entry->portid == portid) {
6415 list_move(&entry->list, &list);
6416 rhashtable_remove_fast(&hwsim_radios_rht, &entry->rht,
6417 hwsim_rht_params);
6418 hwsim_radios_generation++;
6419 }
6420 }
6421 spin_unlock_bh(&hwsim_radio_lock);
6422
6423 list_for_each_entry_safe(entry, tmp, &list, list) {
6424 list_del(&entry->list);
6425 mac80211_hwsim_del_radio(entry, wiphy_name(entry->hw->wiphy),
6426 NULL);
6427 }
6428 }
6429
mac80211_hwsim_netlink_notify(struct notifier_block * nb,unsigned long state,void * _notify)6430 static int mac80211_hwsim_netlink_notify(struct notifier_block *nb,
6431 unsigned long state,
6432 void *_notify)
6433 {
6434 struct netlink_notify *notify = _notify;
6435
6436 if (state != NETLINK_URELEASE)
6437 return NOTIFY_DONE;
6438
6439 remove_user_radios(notify->portid);
6440
6441 if (notify->portid == hwsim_net_get_wmediumd(notify->net)) {
6442 printk(KERN_INFO "mac80211_hwsim: wmediumd released netlink"
6443 " socket, switching to perfect channel medium\n");
6444 hwsim_register_wmediumd(notify->net, 0);
6445 }
6446 return NOTIFY_DONE;
6447
6448 }
6449
6450 static struct notifier_block hwsim_netlink_notifier = {
6451 .notifier_call = mac80211_hwsim_netlink_notify,
6452 };
6453
hwsim_init_netlink(void)6454 static int __init hwsim_init_netlink(void)
6455 {
6456 int rc;
6457
6458 printk(KERN_INFO "mac80211_hwsim: initializing netlink\n");
6459
6460 rc = genl_register_family(&hwsim_genl_family);
6461 if (rc)
6462 goto failure;
6463
6464 rc = netlink_register_notifier(&hwsim_netlink_notifier);
6465 if (rc) {
6466 genl_unregister_family(&hwsim_genl_family);
6467 goto failure;
6468 }
6469
6470 return 0;
6471
6472 failure:
6473 pr_debug("mac80211_hwsim: error occurred in %s\n", __func__);
6474 return -EINVAL;
6475 }
6476
hwsim_init_net(struct net * net)6477 static __net_init int hwsim_init_net(struct net *net)
6478 {
6479 return hwsim_net_set_netgroup(net);
6480 }
6481
hwsim_exit_net(struct net * net)6482 static void __net_exit hwsim_exit_net(struct net *net)
6483 {
6484 struct mac80211_hwsim_data *data, *tmp;
6485 LIST_HEAD(list);
6486
6487 spin_lock_bh(&hwsim_radio_lock);
6488 list_for_each_entry_safe(data, tmp, &hwsim_radios, list) {
6489 if (!net_eq(wiphy_net(data->hw->wiphy), net))
6490 continue;
6491
6492 /* Radios created in init_net are returned to init_net. */
6493 if (data->netgroup == hwsim_net_get_netgroup(&init_net))
6494 continue;
6495
6496 list_move(&data->list, &list);
6497 rhashtable_remove_fast(&hwsim_radios_rht, &data->rht,
6498 hwsim_rht_params);
6499 hwsim_radios_generation++;
6500 }
6501 spin_unlock_bh(&hwsim_radio_lock);
6502
6503 list_for_each_entry_safe(data, tmp, &list, list) {
6504 list_del(&data->list);
6505 mac80211_hwsim_del_radio(data,
6506 wiphy_name(data->hw->wiphy),
6507 NULL);
6508 }
6509
6510 ida_free(&hwsim_netgroup_ida, hwsim_net_get_netgroup(net));
6511 }
6512
6513 static struct pernet_operations hwsim_net_ops = {
6514 .init = hwsim_init_net,
6515 .exit = hwsim_exit_net,
6516 .id = &hwsim_net_id,
6517 .size = sizeof(struct hwsim_net),
6518 };
6519
hwsim_exit_netlink(void)6520 static void hwsim_exit_netlink(void)
6521 {
6522 /* unregister the notifier */
6523 netlink_unregister_notifier(&hwsim_netlink_notifier);
6524 /* unregister the family */
6525 genl_unregister_family(&hwsim_genl_family);
6526 }
6527
6528 #if IS_REACHABLE(CONFIG_VIRTIO)
hwsim_virtio_tx_done(struct virtqueue * vq)6529 static void hwsim_virtio_tx_done(struct virtqueue *vq)
6530 {
6531 unsigned int len;
6532 struct sk_buff *skb;
6533 unsigned long flags;
6534
6535 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6536 while ((skb = virtqueue_get_buf(vq, &len)))
6537 dev_kfree_skb_irq(skb);
6538 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6539 }
6540
hwsim_virtio_handle_cmd(struct sk_buff * skb)6541 static int hwsim_virtio_handle_cmd(struct sk_buff *skb)
6542 {
6543 struct nlmsghdr *nlh;
6544 struct genlmsghdr *gnlh;
6545 struct nlattr *tb[HWSIM_ATTR_MAX + 1];
6546 struct genl_info info = {};
6547 int err;
6548
6549 nlh = nlmsg_hdr(skb);
6550 gnlh = nlmsg_data(nlh);
6551
6552 if (skb->len < nlh->nlmsg_len)
6553 return -EINVAL;
6554
6555 err = genlmsg_parse(nlh, &hwsim_genl_family, tb, HWSIM_ATTR_MAX,
6556 hwsim_genl_policy, NULL);
6557 if (err) {
6558 pr_err_ratelimited("hwsim: genlmsg_parse returned %d\n", err);
6559 return err;
6560 }
6561
6562 info.attrs = tb;
6563
6564 switch (gnlh->cmd) {
6565 case HWSIM_CMD_FRAME:
6566 hwsim_cloned_frame_received_nl(skb, &info);
6567 break;
6568 case HWSIM_CMD_TX_INFO_FRAME:
6569 hwsim_tx_info_frame_received_nl(skb, &info);
6570 break;
6571 case HWSIM_CMD_REPORT_PMSR:
6572 hwsim_pmsr_report_nl(skb, &info);
6573 break;
6574 default:
6575 pr_err_ratelimited("hwsim: invalid cmd: %d\n", gnlh->cmd);
6576 return -EPROTO;
6577 }
6578 return 0;
6579 }
6580
hwsim_virtio_rx_work(struct work_struct * work)6581 static void hwsim_virtio_rx_work(struct work_struct *work)
6582 {
6583 struct virtqueue *vq;
6584 unsigned int len;
6585 struct sk_buff *skb;
6586 struct scatterlist sg[1];
6587 int err;
6588 unsigned long flags;
6589
6590 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6591 if (!hwsim_virtio_enabled)
6592 goto out_unlock;
6593
6594 skb = virtqueue_get_buf(hwsim_vqs[HWSIM_VQ_RX], &len);
6595 if (!skb)
6596 goto out_unlock;
6597 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6598
6599 skb->data = skb->head;
6600 skb_reset_tail_pointer(skb);
6601 skb_put(skb, len);
6602 hwsim_virtio_handle_cmd(skb);
6603
6604 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6605 if (!hwsim_virtio_enabled) {
6606 dev_kfree_skb_irq(skb);
6607 goto out_unlock;
6608 }
6609 vq = hwsim_vqs[HWSIM_VQ_RX];
6610 sg_init_one(sg, skb->head, skb_end_offset(skb));
6611 err = virtqueue_add_inbuf(vq, sg, 1, skb, GFP_ATOMIC);
6612 if (WARN(err, "virtqueue_add_inbuf returned %d\n", err))
6613 dev_kfree_skb_irq(skb);
6614 else
6615 virtqueue_kick(vq);
6616 schedule_work(&hwsim_virtio_rx);
6617
6618 out_unlock:
6619 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6620 }
6621
hwsim_virtio_rx_done(struct virtqueue * vq)6622 static void hwsim_virtio_rx_done(struct virtqueue *vq)
6623 {
6624 schedule_work(&hwsim_virtio_rx);
6625 }
6626
init_vqs(struct virtio_device * vdev)6627 static int init_vqs(struct virtio_device *vdev)
6628 {
6629 struct virtqueue_info vqs_info[HWSIM_NUM_VQS] = {
6630 [HWSIM_VQ_TX] = { "tx", hwsim_virtio_tx_done },
6631 [HWSIM_VQ_RX] = { "rx", hwsim_virtio_rx_done },
6632 };
6633
6634 return virtio_find_vqs(vdev, HWSIM_NUM_VQS,
6635 hwsim_vqs, vqs_info, NULL);
6636 }
6637
fill_vq(struct virtqueue * vq)6638 static int fill_vq(struct virtqueue *vq)
6639 {
6640 int i, err;
6641 struct sk_buff *skb;
6642 struct scatterlist sg[1];
6643
6644 for (i = 0; i < virtqueue_get_vring_size(vq); i++) {
6645 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
6646 if (!skb)
6647 return -ENOMEM;
6648
6649 sg_init_one(sg, skb->head, skb_end_offset(skb));
6650 err = virtqueue_add_inbuf(vq, sg, 1, skb, GFP_KERNEL);
6651 if (err) {
6652 nlmsg_free(skb);
6653 return err;
6654 }
6655 }
6656 virtqueue_kick(vq);
6657 return 0;
6658 }
6659
remove_vqs(struct virtio_device * vdev)6660 static void remove_vqs(struct virtio_device *vdev)
6661 {
6662 int i;
6663
6664 virtio_reset_device(vdev);
6665
6666 for (i = 0; i < ARRAY_SIZE(hwsim_vqs); i++) {
6667 struct virtqueue *vq = hwsim_vqs[i];
6668 struct sk_buff *skb;
6669
6670 while ((skb = virtqueue_detach_unused_buf(vq)))
6671 nlmsg_free(skb);
6672 }
6673
6674 vdev->config->del_vqs(vdev);
6675 }
6676
hwsim_virtio_probe(struct virtio_device * vdev)6677 static int hwsim_virtio_probe(struct virtio_device *vdev)
6678 {
6679 int err;
6680 unsigned long flags;
6681
6682 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6683 if (hwsim_virtio_enabled) {
6684 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6685 return -EEXIST;
6686 }
6687 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6688
6689 err = init_vqs(vdev);
6690 if (err)
6691 return err;
6692
6693 virtio_device_ready(vdev);
6694
6695 err = fill_vq(hwsim_vqs[HWSIM_VQ_RX]);
6696 if (err)
6697 goto out_remove;
6698
6699 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6700 hwsim_virtio_enabled = true;
6701 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6702
6703 schedule_work(&hwsim_virtio_rx);
6704 return 0;
6705
6706 out_remove:
6707 remove_vqs(vdev);
6708 return err;
6709 }
6710
hwsim_virtio_remove(struct virtio_device * vdev)6711 static void hwsim_virtio_remove(struct virtio_device *vdev)
6712 {
6713 hwsim_virtio_enabled = false;
6714
6715 cancel_work_sync(&hwsim_virtio_rx);
6716
6717 remove_vqs(vdev);
6718 }
6719
6720 /* MAC80211_HWSIM virtio device id table */
6721 static const struct virtio_device_id id_table[] = {
6722 { VIRTIO_ID_MAC80211_HWSIM, VIRTIO_DEV_ANY_ID },
6723 { 0 }
6724 };
6725 MODULE_DEVICE_TABLE(virtio, id_table);
6726
6727 static struct virtio_driver virtio_hwsim = {
6728 .driver.name = KBUILD_MODNAME,
6729 .id_table = id_table,
6730 .probe = hwsim_virtio_probe,
6731 .remove = hwsim_virtio_remove,
6732 };
6733
hwsim_register_virtio_driver(void)6734 static int hwsim_register_virtio_driver(void)
6735 {
6736 return register_virtio_driver(&virtio_hwsim);
6737 }
6738
hwsim_unregister_virtio_driver(void)6739 static void hwsim_unregister_virtio_driver(void)
6740 {
6741 unregister_virtio_driver(&virtio_hwsim);
6742 }
6743 #else
hwsim_register_virtio_driver(void)6744 static inline int hwsim_register_virtio_driver(void)
6745 {
6746 return 0;
6747 }
6748
hwsim_unregister_virtio_driver(void)6749 static inline void hwsim_unregister_virtio_driver(void)
6750 {
6751 }
6752 #endif
6753
init_mac80211_hwsim(void)6754 static int __init init_mac80211_hwsim(void)
6755 {
6756 int i, err;
6757
6758 if (radios < 0 || radios > 100)
6759 return -EINVAL;
6760
6761 if (channels < 1)
6762 return -EINVAL;
6763
6764 err = rhashtable_init(&hwsim_radios_rht, &hwsim_rht_params);
6765 if (err)
6766 return err;
6767
6768 err = register_pernet_device(&hwsim_net_ops);
6769 if (err)
6770 goto out_free_rht;
6771
6772 err = platform_driver_register(&mac80211_hwsim_driver);
6773 if (err)
6774 goto out_unregister_pernet;
6775
6776 err = hwsim_init_netlink();
6777 if (err)
6778 goto out_unregister_driver;
6779
6780 err = hwsim_register_virtio_driver();
6781 if (err)
6782 goto out_exit_netlink;
6783
6784 hwsim_class = class_create("mac80211_hwsim");
6785 if (IS_ERR(hwsim_class)) {
6786 err = PTR_ERR(hwsim_class);
6787 goto out_exit_virtio;
6788 }
6789
6790 hwsim_init_s1g_channels(hwsim_channels_s1g);
6791
6792 for (i = 0; i < radios; i++) {
6793 struct hwsim_new_radio_params param = { 0 };
6794
6795 param.channels = channels;
6796
6797 switch (regtest) {
6798 case HWSIM_REGTEST_DIFF_COUNTRY:
6799 if (i < ARRAY_SIZE(hwsim_alpha2s))
6800 param.reg_alpha2 = hwsim_alpha2s[i];
6801 break;
6802 case HWSIM_REGTEST_DRIVER_REG_FOLLOW:
6803 if (!i)
6804 param.reg_alpha2 = hwsim_alpha2s[0];
6805 break;
6806 case HWSIM_REGTEST_STRICT_ALL:
6807 param.reg_strict = true;
6808 fallthrough;
6809 case HWSIM_REGTEST_DRIVER_REG_ALL:
6810 param.reg_alpha2 = hwsim_alpha2s[0];
6811 break;
6812 case HWSIM_REGTEST_WORLD_ROAM:
6813 if (i == 0)
6814 param.regd = &hwsim_world_regdom_custom_01;
6815 break;
6816 case HWSIM_REGTEST_CUSTOM_WORLD:
6817 param.regd = &hwsim_world_regdom_custom_03;
6818 break;
6819 case HWSIM_REGTEST_CUSTOM_WORLD_2:
6820 if (i == 0)
6821 param.regd = &hwsim_world_regdom_custom_03;
6822 else if (i == 1)
6823 param.regd = &hwsim_world_regdom_custom_02;
6824 break;
6825 case HWSIM_REGTEST_STRICT_FOLLOW:
6826 if (i == 0) {
6827 param.reg_strict = true;
6828 param.reg_alpha2 = hwsim_alpha2s[0];
6829 }
6830 break;
6831 case HWSIM_REGTEST_STRICT_AND_DRIVER_REG:
6832 if (i == 0) {
6833 param.reg_strict = true;
6834 param.reg_alpha2 = hwsim_alpha2s[0];
6835 } else if (i == 1) {
6836 param.reg_alpha2 = hwsim_alpha2s[1];
6837 }
6838 break;
6839 case HWSIM_REGTEST_ALL:
6840 switch (i) {
6841 case 0:
6842 param.regd = &hwsim_world_regdom_custom_01;
6843 break;
6844 case 1:
6845 param.regd = &hwsim_world_regdom_custom_02;
6846 break;
6847 case 2:
6848 param.reg_alpha2 = hwsim_alpha2s[0];
6849 break;
6850 case 3:
6851 param.reg_alpha2 = hwsim_alpha2s[1];
6852 break;
6853 case 4:
6854 param.reg_strict = true;
6855 param.reg_alpha2 = hwsim_alpha2s[2];
6856 break;
6857 }
6858 break;
6859 default:
6860 break;
6861 }
6862
6863 param.p2p_device = support_p2p_device;
6864 param.mlo = mlo;
6865 param.multi_radio = multi_radio;
6866 param.use_chanctx = channels > 1 || mlo || multi_radio;
6867 param.iftypes = HWSIM_IFTYPE_SUPPORT_MASK;
6868 if (param.p2p_device)
6869 param.iftypes |= BIT(NL80211_IFTYPE_P2P_DEVICE);
6870
6871 err = mac80211_hwsim_new_radio(NULL, ¶m);
6872 if (err < 0)
6873 goto out_free_radios;
6874 }
6875
6876 hwsim_mon = alloc_netdev(0, "hwsim%d", NET_NAME_UNKNOWN,
6877 hwsim_mon_setup);
6878 if (hwsim_mon == NULL) {
6879 err = -ENOMEM;
6880 goto out_free_radios;
6881 }
6882
6883 rtnl_lock();
6884 err = dev_alloc_name(hwsim_mon, hwsim_mon->name);
6885 if (err < 0) {
6886 rtnl_unlock();
6887 goto out_free_mon;
6888 }
6889
6890 err = register_netdevice(hwsim_mon);
6891 if (err < 0) {
6892 rtnl_unlock();
6893 goto out_free_mon;
6894 }
6895 rtnl_unlock();
6896
6897 return 0;
6898
6899 out_free_mon:
6900 free_netdev(hwsim_mon);
6901 out_free_radios:
6902 mac80211_hwsim_free();
6903 out_exit_virtio:
6904 hwsim_unregister_virtio_driver();
6905 out_exit_netlink:
6906 hwsim_exit_netlink();
6907 out_unregister_driver:
6908 platform_driver_unregister(&mac80211_hwsim_driver);
6909 out_unregister_pernet:
6910 unregister_pernet_device(&hwsim_net_ops);
6911 out_free_rht:
6912 rhashtable_destroy(&hwsim_radios_rht);
6913 return err;
6914 }
6915 module_init(init_mac80211_hwsim);
6916
exit_mac80211_hwsim(void)6917 static void __exit exit_mac80211_hwsim(void)
6918 {
6919 pr_debug("mac80211_hwsim: unregister radios\n");
6920
6921 hwsim_unregister_virtio_driver();
6922 hwsim_exit_netlink();
6923
6924 mac80211_hwsim_free();
6925
6926 rhashtable_destroy(&hwsim_radios_rht);
6927 unregister_netdev(hwsim_mon);
6928 platform_driver_unregister(&mac80211_hwsim_driver);
6929 unregister_pernet_device(&hwsim_net_ops);
6930 }
6931 module_exit(exit_mac80211_hwsim);
6932