1 // SPDX-License-Identifier: GPL-2.0-only
3 * mac80211_hwsim - software simulator of 802.11 radio(s) for mac80211
4 * Copyright (c) 2008, Jouni Malinen <j@w1.fi>
5 * Copyright (c) 2011, Javier Lopez <jlopex@gmail.com>
6 * Copyright (c) 2016 - 2017 Intel Deutschland GmbH
7 * Copyright (C) 2018 - 2023 Intel Corporation
12 * - Add TSF sync and fix IBSS beacon transmission by adding
13 * competition for "air time" at TBTT
14 * - RX filtering based on filter configuration (data->rx_filter)
17 #include <linux/list.h>
18 #include <linux/slab.h>
19 #include <linux/spinlock.h>
22 #include <net/mac80211.h>
23 #include <net/ieee80211_radiotap.h>
24 #include <linux/if_arp.h>
25 #include <linux/rtnetlink.h>
26 #include <linux/etherdevice.h>
27 #include <linux/platform_device.h>
28 #include <linux/debugfs.h>
29 #include <linux/module.h>
30 #include <linux/ktime.h>
31 #include <net/genetlink.h>
32 #include <net/net_namespace.h>
33 #include <net/netns/generic.h>
34 #include <linux/rhashtable.h>
35 #include <linux/nospec.h>
36 #include <linux/virtio.h>
37 #include <linux/virtio_ids.h>
38 #include <linux/virtio_config.h>
39 #include "mac80211_hwsim.h"
41 #define WARN_QUEUE 100
44 MODULE_AUTHOR("Jouni Malinen");
45 MODULE_DESCRIPTION("Software simulator of 802.11 radio(s) for mac80211");
46 MODULE_LICENSE("GPL");
48 static int radios = 2;
49 module_param(radios, int, 0444);
50 MODULE_PARM_DESC(radios, "Number of simulated radios");
52 static int channels = 1;
53 module_param(channels, int, 0444);
54 MODULE_PARM_DESC(channels, "Number of concurrent channels");
56 static bool paged_rx = false;
57 module_param(paged_rx, bool, 0644);
58 MODULE_PARM_DESC(paged_rx, "Use paged SKBs for RX instead of linear ones");
60 static bool rctbl = false;
61 module_param(rctbl, bool, 0444);
62 MODULE_PARM_DESC(rctbl, "Handle rate control table");
64 static bool support_p2p_device = true;
65 module_param(support_p2p_device, bool, 0444);
66 MODULE_PARM_DESC(support_p2p_device, "Support P2P-Device interface type");
69 module_param(mlo, bool, 0444);
70 MODULE_PARM_DESC(mlo, "Support MLO");
73 * enum hwsim_regtest - the type of regulatory tests we offer
75 * @HWSIM_REGTEST_DISABLED: No regulatory tests are performed,
76 * this is the default value.
77 * @HWSIM_REGTEST_DRIVER_REG_FOLLOW: Used for testing the driver regulatory
78 * hint, only one driver regulatory hint will be sent as such the
79 * secondary radios are expected to follow.
80 * @HWSIM_REGTEST_DRIVER_REG_ALL: Used for testing the driver regulatory
81 * request with all radios reporting the same regulatory domain.
82 * @HWSIM_REGTEST_DIFF_COUNTRY: Used for testing the drivers calling
83 * different regulatory domains requests. Expected behaviour is for
84 * an intersection to occur but each device will still use their
85 * respective regulatory requested domains. Subsequent radios will
86 * use the resulting intersection.
87 * @HWSIM_REGTEST_WORLD_ROAM: Used for testing the world roaming. We accomplish
88 * this by using a custom beacon-capable regulatory domain for the first
89 * radio. All other device world roam.
90 * @HWSIM_REGTEST_CUSTOM_WORLD: Used for testing the custom world regulatory
91 * domain requests. All radios will adhere to this custom world regulatory
93 * @HWSIM_REGTEST_CUSTOM_WORLD_2: Used for testing 2 custom world regulatory
94 * domain requests. The first radio will adhere to the first custom world
95 * regulatory domain, the second one to the second custom world regulatory
96 * domain. All other devices will world roam.
97 * @HWSIM_REGTEST_STRICT_FOLLOW: Used for testing strict regulatory domain
98 * settings, only the first radio will send a regulatory domain request
99 * and use strict settings. The rest of the radios are expected to follow.
100 * @HWSIM_REGTEST_STRICT_ALL: Used for testing strict regulatory domain
101 * settings. All radios will adhere to this.
102 * @HWSIM_REGTEST_STRICT_AND_DRIVER_REG: Used for testing strict regulatory
103 * domain settings, combined with secondary driver regulatory domain
104 * settings. The first radio will get a strict regulatory domain setting
105 * using the first driver regulatory request and the second radio will use
106 * non-strict settings using the second driver regulatory request. All
107 * other devices should follow the intersection created between the
109 * @HWSIM_REGTEST_ALL: Used for testing every possible mix. You will need
110 * at least 6 radios for a complete test. We will test in this order:
111 * 1 - driver custom world regulatory domain
112 * 2 - second custom world regulatory domain
113 * 3 - first driver regulatory domain request
114 * 4 - second driver regulatory domain request
115 * 5 - strict regulatory domain settings using the third driver regulatory
117 * 6 and on - should follow the intersection of the 3rd, 4rth and 5th radio
118 * regulatory requests.
120 * These are the different values you can use for the regtest
121 * module parameter. This is useful to help test world roaming
122 * and the driver regulatory_hint() call and combinations of these.
123 * If you want to do specific alpha2 regulatory domain tests simply
124 * use the userspace regulatory request as that will be respected as
125 * well without the need of this module parameter. This is designed
126 * only for testing the driver regulatory request, world roaming
127 * and all possible combinations.
130 HWSIM_REGTEST_DISABLED = 0,
131 HWSIM_REGTEST_DRIVER_REG_FOLLOW = 1,
132 HWSIM_REGTEST_DRIVER_REG_ALL = 2,
133 HWSIM_REGTEST_DIFF_COUNTRY = 3,
134 HWSIM_REGTEST_WORLD_ROAM = 4,
135 HWSIM_REGTEST_CUSTOM_WORLD = 5,
136 HWSIM_REGTEST_CUSTOM_WORLD_2 = 6,
137 HWSIM_REGTEST_STRICT_FOLLOW = 7,
138 HWSIM_REGTEST_STRICT_ALL = 8,
139 HWSIM_REGTEST_STRICT_AND_DRIVER_REG = 9,
140 HWSIM_REGTEST_ALL = 10,
143 /* Set to one of the HWSIM_REGTEST_* values above */
144 static int regtest = HWSIM_REGTEST_DISABLED;
145 module_param(regtest, int, 0444);
146 MODULE_PARM_DESC(regtest, "The type of regulatory test we want to run");
148 static const char *hwsim_alpha2s[] = {
157 static const struct ieee80211_regdomain hwsim_world_regdom_custom_01 = {
161 REG_RULE(2412-10, 2462+10, 40, 0, 20, 0),
162 REG_RULE(2484-10, 2484+10, 40, 0, 20, 0),
163 REG_RULE(5150-10, 5240+10, 40, 0, 30, 0),
164 REG_RULE(5745-10, 5825+10, 40, 0, 30, 0),
165 REG_RULE(5855-10, 5925+10, 40, 0, 33, 0),
169 static const struct ieee80211_regdomain hwsim_world_regdom_custom_02 = {
173 REG_RULE(2412-10, 2462+10, 40, 0, 20, 0),
174 REG_RULE(5725-10, 5850+10, 40, 0, 30,
176 REG_RULE(5855-10, 5925+10, 40, 0, 33, 0),
180 static const struct ieee80211_regdomain hwsim_world_regdom_custom_03 = {
184 REG_RULE(2412 - 10, 2462 + 10, 40, 0, 20, 0),
185 REG_RULE(2484 - 10, 2484 + 10, 40, 0, 20, 0),
186 REG_RULE(5150 - 10, 5240 + 10, 40, 0, 30, 0),
187 REG_RULE(5745 - 10, 5825 + 10, 40, 0, 30, 0),
188 REG_RULE(5855 - 10, 5925 + 10, 40, 0, 33, 0),
189 REG_RULE(5955 - 10, 7125 + 10, 320, 0, 33, 0),
193 static const struct ieee80211_regdomain hwsim_world_regdom_custom_04 = {
197 REG_RULE(2412 - 10, 2462 + 10, 40, 0, 20, 0),
198 REG_RULE(2484 - 10, 2484 + 10, 40, 0, 20, 0),
199 REG_RULE(5150 - 10, 5240 + 10, 80, 0, 30, 0),
200 REG_RULE(5260 - 10, 5320 + 10, 80, 0, 30,
201 NL80211_RRF_DFS_CONCURRENT | NL80211_RRF_DFS),
202 REG_RULE(5745 - 10, 5825 + 10, 80, 0, 30, 0),
203 REG_RULE(5855 - 10, 5925 + 10, 80, 0, 33, 0),
207 static const struct ieee80211_regdomain *hwsim_world_regdom_custom[] = {
208 &hwsim_world_regdom_custom_01,
209 &hwsim_world_regdom_custom_02,
210 &hwsim_world_regdom_custom_03,
211 &hwsim_world_regdom_custom_04,
214 struct hwsim_vif_priv {
222 #define HWSIM_VIF_MAGIC 0x69537748
224 static inline void hwsim_check_magic(struct ieee80211_vif *vif)
226 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
227 WARN(vp->magic != HWSIM_VIF_MAGIC,
228 "Invalid VIF (%p) magic %#x, %pM, %d/%d\n",
229 vif, vp->magic, vif->addr, vif->type, vif->p2p);
232 static inline void hwsim_set_magic(struct ieee80211_vif *vif)
234 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
235 vp->magic = HWSIM_VIF_MAGIC;
238 static inline void hwsim_clear_magic(struct ieee80211_vif *vif)
240 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
244 struct hwsim_sta_priv {
246 unsigned int last_link;
250 #define HWSIM_STA_MAGIC 0x6d537749
252 static inline void hwsim_check_sta_magic(struct ieee80211_sta *sta)
254 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
255 WARN_ON(sp->magic != HWSIM_STA_MAGIC);
258 static inline void hwsim_set_sta_magic(struct ieee80211_sta *sta)
260 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
261 sp->magic = HWSIM_STA_MAGIC;
264 static inline void hwsim_clear_sta_magic(struct ieee80211_sta *sta)
266 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
270 struct hwsim_chanctx_priv {
274 #define HWSIM_CHANCTX_MAGIC 0x6d53774a
276 static inline void hwsim_check_chanctx_magic(struct ieee80211_chanctx_conf *c)
278 struct hwsim_chanctx_priv *cp = (void *)c->drv_priv;
279 WARN_ON(cp->magic != HWSIM_CHANCTX_MAGIC);
282 static inline void hwsim_set_chanctx_magic(struct ieee80211_chanctx_conf *c)
284 struct hwsim_chanctx_priv *cp = (void *)c->drv_priv;
285 cp->magic = HWSIM_CHANCTX_MAGIC;
288 static inline void hwsim_clear_chanctx_magic(struct ieee80211_chanctx_conf *c)
290 struct hwsim_chanctx_priv *cp = (void *)c->drv_priv;
294 static unsigned int hwsim_net_id;
296 static DEFINE_IDA(hwsim_netgroup_ida);
303 static inline int hwsim_net_get_netgroup(struct net *net)
305 struct hwsim_net *hwsim_net = net_generic(net, hwsim_net_id);
307 return hwsim_net->netgroup;
310 static inline int hwsim_net_set_netgroup(struct net *net)
312 struct hwsim_net *hwsim_net = net_generic(net, hwsim_net_id);
314 hwsim_net->netgroup = ida_alloc(&hwsim_netgroup_ida, GFP_KERNEL);
315 return hwsim_net->netgroup >= 0 ? 0 : -ENOMEM;
318 static inline u32 hwsim_net_get_wmediumd(struct net *net)
320 struct hwsim_net *hwsim_net = net_generic(net, hwsim_net_id);
322 return hwsim_net->wmediumd;
325 static inline void hwsim_net_set_wmediumd(struct net *net, u32 portid)
327 struct hwsim_net *hwsim_net = net_generic(net, hwsim_net_id);
329 hwsim_net->wmediumd = portid;
332 static struct class *hwsim_class;
334 static struct net_device *hwsim_mon; /* global monitor netdev */
336 #define CHAN2G(_freq) { \
337 .band = NL80211_BAND_2GHZ, \
338 .center_freq = (_freq), \
339 .hw_value = (_freq), \
342 #define CHAN5G(_freq) { \
343 .band = NL80211_BAND_5GHZ, \
344 .center_freq = (_freq), \
345 .hw_value = (_freq), \
348 #define CHAN6G(_freq) { \
349 .band = NL80211_BAND_6GHZ, \
350 .center_freq = (_freq), \
351 .hw_value = (_freq), \
354 static const struct ieee80211_channel hwsim_channels_2ghz[] = {
355 CHAN2G(2412), /* Channel 1 */
356 CHAN2G(2417), /* Channel 2 */
357 CHAN2G(2422), /* Channel 3 */
358 CHAN2G(2427), /* Channel 4 */
359 CHAN2G(2432), /* Channel 5 */
360 CHAN2G(2437), /* Channel 6 */
361 CHAN2G(2442), /* Channel 7 */
362 CHAN2G(2447), /* Channel 8 */
363 CHAN2G(2452), /* Channel 9 */
364 CHAN2G(2457), /* Channel 10 */
365 CHAN2G(2462), /* Channel 11 */
366 CHAN2G(2467), /* Channel 12 */
367 CHAN2G(2472), /* Channel 13 */
368 CHAN2G(2484), /* Channel 14 */
371 static const struct ieee80211_channel hwsim_channels_5ghz[] = {
372 CHAN5G(5180), /* Channel 36 */
373 CHAN5G(5200), /* Channel 40 */
374 CHAN5G(5220), /* Channel 44 */
375 CHAN5G(5240), /* Channel 48 */
377 CHAN5G(5260), /* Channel 52 */
378 CHAN5G(5280), /* Channel 56 */
379 CHAN5G(5300), /* Channel 60 */
380 CHAN5G(5320), /* Channel 64 */
382 CHAN5G(5500), /* Channel 100 */
383 CHAN5G(5520), /* Channel 104 */
384 CHAN5G(5540), /* Channel 108 */
385 CHAN5G(5560), /* Channel 112 */
386 CHAN5G(5580), /* Channel 116 */
387 CHAN5G(5600), /* Channel 120 */
388 CHAN5G(5620), /* Channel 124 */
389 CHAN5G(5640), /* Channel 128 */
390 CHAN5G(5660), /* Channel 132 */
391 CHAN5G(5680), /* Channel 136 */
392 CHAN5G(5700), /* Channel 140 */
394 CHAN5G(5745), /* Channel 149 */
395 CHAN5G(5765), /* Channel 153 */
396 CHAN5G(5785), /* Channel 157 */
397 CHAN5G(5805), /* Channel 161 */
398 CHAN5G(5825), /* Channel 165 */
399 CHAN5G(5845), /* Channel 169 */
401 CHAN5G(5855), /* Channel 171 */
402 CHAN5G(5860), /* Channel 172 */
403 CHAN5G(5865), /* Channel 173 */
404 CHAN5G(5870), /* Channel 174 */
406 CHAN5G(5875), /* Channel 175 */
407 CHAN5G(5880), /* Channel 176 */
408 CHAN5G(5885), /* Channel 177 */
409 CHAN5G(5890), /* Channel 178 */
410 CHAN5G(5895), /* Channel 179 */
411 CHAN5G(5900), /* Channel 180 */
412 CHAN5G(5905), /* Channel 181 */
414 CHAN5G(5910), /* Channel 182 */
415 CHAN5G(5915), /* Channel 183 */
416 CHAN5G(5920), /* Channel 184 */
417 CHAN5G(5925), /* Channel 185 */
420 static const struct ieee80211_channel hwsim_channels_6ghz[] = {
421 CHAN6G(5955), /* Channel 1 */
422 CHAN6G(5975), /* Channel 5 */
423 CHAN6G(5995), /* Channel 9 */
424 CHAN6G(6015), /* Channel 13 */
425 CHAN6G(6035), /* Channel 17 */
426 CHAN6G(6055), /* Channel 21 */
427 CHAN6G(6075), /* Channel 25 */
428 CHAN6G(6095), /* Channel 29 */
429 CHAN6G(6115), /* Channel 33 */
430 CHAN6G(6135), /* Channel 37 */
431 CHAN6G(6155), /* Channel 41 */
432 CHAN6G(6175), /* Channel 45 */
433 CHAN6G(6195), /* Channel 49 */
434 CHAN6G(6215), /* Channel 53 */
435 CHAN6G(6235), /* Channel 57 */
436 CHAN6G(6255), /* Channel 61 */
437 CHAN6G(6275), /* Channel 65 */
438 CHAN6G(6295), /* Channel 69 */
439 CHAN6G(6315), /* Channel 73 */
440 CHAN6G(6335), /* Channel 77 */
441 CHAN6G(6355), /* Channel 81 */
442 CHAN6G(6375), /* Channel 85 */
443 CHAN6G(6395), /* Channel 89 */
444 CHAN6G(6415), /* Channel 93 */
445 CHAN6G(6435), /* Channel 97 */
446 CHAN6G(6455), /* Channel 181 */
447 CHAN6G(6475), /* Channel 105 */
448 CHAN6G(6495), /* Channel 109 */
449 CHAN6G(6515), /* Channel 113 */
450 CHAN6G(6535), /* Channel 117 */
451 CHAN6G(6555), /* Channel 121 */
452 CHAN6G(6575), /* Channel 125 */
453 CHAN6G(6595), /* Channel 129 */
454 CHAN6G(6615), /* Channel 133 */
455 CHAN6G(6635), /* Channel 137 */
456 CHAN6G(6655), /* Channel 141 */
457 CHAN6G(6675), /* Channel 145 */
458 CHAN6G(6695), /* Channel 149 */
459 CHAN6G(6715), /* Channel 153 */
460 CHAN6G(6735), /* Channel 157 */
461 CHAN6G(6755), /* Channel 161 */
462 CHAN6G(6775), /* Channel 165 */
463 CHAN6G(6795), /* Channel 169 */
464 CHAN6G(6815), /* Channel 173 */
465 CHAN6G(6835), /* Channel 177 */
466 CHAN6G(6855), /* Channel 181 */
467 CHAN6G(6875), /* Channel 185 */
468 CHAN6G(6895), /* Channel 189 */
469 CHAN6G(6915), /* Channel 193 */
470 CHAN6G(6935), /* Channel 197 */
471 CHAN6G(6955), /* Channel 201 */
472 CHAN6G(6975), /* Channel 205 */
473 CHAN6G(6995), /* Channel 209 */
474 CHAN6G(7015), /* Channel 213 */
475 CHAN6G(7035), /* Channel 217 */
476 CHAN6G(7055), /* Channel 221 */
477 CHAN6G(7075), /* Channel 225 */
478 CHAN6G(7095), /* Channel 229 */
479 CHAN6G(7115), /* Channel 233 */
482 #define NUM_S1G_CHANS_US 51
483 static struct ieee80211_channel hwsim_channels_s1g[NUM_S1G_CHANS_US];
485 static const struct ieee80211_sta_s1g_cap hwsim_s1g_cap = {
487 .cap = { S1G_CAP0_SGI_1MHZ | S1G_CAP0_SGI_2MHZ,
490 S1G_CAP3_MAX_MPDU_LEN,
495 S1G_CAP8_TWT_RESPOND | S1G_CAP8_TWT_REQUEST,
497 .nss_mcs = { 0xfc | 1, /* MCS 7 for 1 SS */
498 /* RX Highest Supported Long GI Data Rate 0:7 */
500 /* RX Highest Supported Long GI Data Rate 0:7 */
501 /* TX S1G MCS Map 0:6 */
503 /* TX S1G MCS Map :7 */
504 /* TX Highest Supported Long GI Data Rate 0:6 */
506 /* TX Highest Supported Long GI Data Rate 7:8 */
507 /* Rx Single spatial stream and S1G-MCS Map for 1MHz */
508 /* Tx Single spatial stream and S1G-MCS Map for 1MHz */
512 static void hwsim_init_s1g_channels(struct ieee80211_channel *chans)
516 for (ch = 0; ch < NUM_S1G_CHANS_US; ch++) {
517 freq = 902000 + (ch + 1) * 500;
518 chans[ch].band = NL80211_BAND_S1GHZ;
519 chans[ch].center_freq = KHZ_TO_MHZ(freq);
520 chans[ch].freq_offset = freq % 1000;
521 chans[ch].hw_value = ch + 1;
525 static const struct ieee80211_rate hwsim_rates[] = {
527 { .bitrate = 20, .flags = IEEE80211_RATE_SHORT_PREAMBLE },
528 { .bitrate = 55, .flags = IEEE80211_RATE_SHORT_PREAMBLE },
529 { .bitrate = 110, .flags = IEEE80211_RATE_SHORT_PREAMBLE },
540 #define DEFAULT_RX_RSSI -50
542 static const u32 hwsim_ciphers[] = {
543 WLAN_CIPHER_SUITE_WEP40,
544 WLAN_CIPHER_SUITE_WEP104,
545 WLAN_CIPHER_SUITE_TKIP,
546 WLAN_CIPHER_SUITE_CCMP,
547 WLAN_CIPHER_SUITE_CCMP_256,
548 WLAN_CIPHER_SUITE_GCMP,
549 WLAN_CIPHER_SUITE_GCMP_256,
550 WLAN_CIPHER_SUITE_AES_CMAC,
551 WLAN_CIPHER_SUITE_BIP_CMAC_256,
552 WLAN_CIPHER_SUITE_BIP_GMAC_128,
553 WLAN_CIPHER_SUITE_BIP_GMAC_256,
556 #define OUI_QCA 0x001374
557 #define QCA_NL80211_SUBCMD_TEST 1
558 enum qca_nl80211_vendor_subcmds {
559 QCA_WLAN_VENDOR_ATTR_TEST = 8,
560 QCA_WLAN_VENDOR_ATTR_MAX = QCA_WLAN_VENDOR_ATTR_TEST
563 static const struct nla_policy
564 hwsim_vendor_test_policy[QCA_WLAN_VENDOR_ATTR_MAX + 1] = {
565 [QCA_WLAN_VENDOR_ATTR_MAX] = { .type = NLA_U32 },
568 static int mac80211_hwsim_vendor_cmd_test(struct wiphy *wiphy,
569 struct wireless_dev *wdev,
570 const void *data, int data_len)
573 struct nlattr *tb[QCA_WLAN_VENDOR_ATTR_MAX + 1];
577 err = nla_parse_deprecated(tb, QCA_WLAN_VENDOR_ATTR_MAX, data,
578 data_len, hwsim_vendor_test_policy, NULL);
581 if (!tb[QCA_WLAN_VENDOR_ATTR_TEST])
583 val = nla_get_u32(tb[QCA_WLAN_VENDOR_ATTR_TEST]);
584 wiphy_dbg(wiphy, "%s: test=%u\n", __func__, val);
586 /* Send a vendor event as a test. Note that this would not normally be
587 * done within a command handler, but rather, based on some other
588 * trigger. For simplicity, this command is used to trigger the event
591 * event_idx = 0 (index in mac80211_hwsim_vendor_commands)
593 skb = cfg80211_vendor_event_alloc(wiphy, wdev, 100, 0, GFP_KERNEL);
595 /* skb_put() or nla_put() will fill up data within
596 * NL80211_ATTR_VENDOR_DATA.
599 /* Add vendor data */
600 nla_put_u32(skb, QCA_WLAN_VENDOR_ATTR_TEST, val + 1);
602 /* Send the event - this will call nla_nest_end() */
603 cfg80211_vendor_event(skb, GFP_KERNEL);
606 /* Send a response to the command */
607 skb = cfg80211_vendor_cmd_alloc_reply_skb(wiphy, 10);
611 /* skb_put() or nla_put() will fill up data within
612 * NL80211_ATTR_VENDOR_DATA
614 nla_put_u32(skb, QCA_WLAN_VENDOR_ATTR_TEST, val + 2);
616 return cfg80211_vendor_cmd_reply(skb);
619 static struct wiphy_vendor_command mac80211_hwsim_vendor_commands[] = {
621 .info = { .vendor_id = OUI_QCA,
622 .subcmd = QCA_NL80211_SUBCMD_TEST },
623 .flags = WIPHY_VENDOR_CMD_NEED_NETDEV,
624 .doit = mac80211_hwsim_vendor_cmd_test,
625 .policy = hwsim_vendor_test_policy,
626 .maxattr = QCA_WLAN_VENDOR_ATTR_MAX,
630 /* Advertise support vendor specific events */
631 static const struct nl80211_vendor_cmd_info mac80211_hwsim_vendor_events[] = {
632 { .vendor_id = OUI_QCA, .subcmd = 1 },
635 static DEFINE_SPINLOCK(hwsim_radio_lock);
636 static LIST_HEAD(hwsim_radios);
637 static struct rhashtable hwsim_radios_rht;
638 static int hwsim_radio_idx;
639 static int hwsim_radios_generation = 1;
641 static struct platform_driver mac80211_hwsim_driver = {
643 .name = "mac80211_hwsim",
647 struct mac80211_hwsim_link_data {
649 u64 beacon_int /* beacon interval in us */;
650 struct hrtimer beacon_timer;
653 struct mac80211_hwsim_data {
654 struct list_head list;
655 struct rhash_head rht;
656 struct ieee80211_hw *hw;
658 struct ieee80211_supported_band bands[NUM_NL80211_BANDS];
659 struct ieee80211_channel channels_2ghz[ARRAY_SIZE(hwsim_channels_2ghz)];
660 struct ieee80211_channel channels_5ghz[ARRAY_SIZE(hwsim_channels_5ghz)];
661 struct ieee80211_channel channels_6ghz[ARRAY_SIZE(hwsim_channels_6ghz)];
662 struct ieee80211_channel channels_s1g[ARRAY_SIZE(hwsim_channels_s1g)];
663 struct ieee80211_rate rates[ARRAY_SIZE(hwsim_rates)];
664 struct ieee80211_iface_combination if_combination;
665 struct ieee80211_iface_limit if_limits[3];
668 u32 ciphers[ARRAY_SIZE(hwsim_ciphers)];
670 struct mac_address addresses[2];
673 bool destroy_on_close;
676 const struct ieee80211_regdomain *regd;
678 struct ieee80211_channel *tmp_chan;
679 struct ieee80211_channel *roc_chan;
681 struct delayed_work roc_start;
682 struct delayed_work roc_done;
683 struct delayed_work hw_scan;
684 struct cfg80211_scan_request *hw_scan_request;
685 struct ieee80211_vif *hw_scan_vif;
687 u8 scan_addr[ETH_ALEN];
689 struct ieee80211_channel *channel;
690 unsigned long next_start, start, end;
691 } survey_data[ARRAY_SIZE(hwsim_channels_2ghz) +
692 ARRAY_SIZE(hwsim_channels_5ghz) +
693 ARRAY_SIZE(hwsim_channels_6ghz)];
695 struct ieee80211_channel *channel;
696 enum nl80211_chan_width bw;
697 unsigned int rx_filter;
698 bool started, idle, scanning;
701 PS_DISABLED, PS_ENABLED, PS_AUTO_POLL, PS_MANUAL_POLL
703 bool ps_poll_pending;
704 struct dentry *debugfs;
706 atomic_t pending_cookie;
707 struct sk_buff_head pending; /* packets pending */
709 * Only radios in the same group can communicate together (the
710 * channel has to match too). Each bit represents a group. A
711 * radio can be in more than one group.
715 /* group shared by radios created in the same netns */
717 /* wmediumd portid responsible for netgroup of this radio */
720 /* difference between this hw's clock and the real clock, in usecs */
723 /* absolute beacon transmission time. Used to cover up "tx" delay. */
734 /* RSSI in rx status of the receiver */
737 /* only used when pmsr capability is supplied */
738 struct cfg80211_pmsr_capabilities pmsr_capa;
739 struct cfg80211_pmsr_request *pmsr_request;
740 struct wireless_dev *pmsr_request_wdev;
742 struct mac80211_hwsim_link_data link_data[IEEE80211_MLD_MAX_NUM_LINKS];
745 static const struct rhashtable_params hwsim_rht_params = {
747 .automatic_shrinking = true,
749 .key_offset = offsetof(struct mac80211_hwsim_data, addresses[1]),
750 .head_offset = offsetof(struct mac80211_hwsim_data, rht),
753 struct hwsim_radiotap_hdr {
754 struct ieee80211_radiotap_header hdr;
762 struct hwsim_radiotap_ack_hdr {
763 struct ieee80211_radiotap_header hdr;
770 static struct mac80211_hwsim_data *get_hwsim_data_ref_from_addr(const u8 *addr)
772 return rhashtable_lookup_fast(&hwsim_radios_rht, addr, hwsim_rht_params);
775 /* MAC80211_HWSIM netlink family */
776 static struct genl_family hwsim_genl_family;
778 enum hwsim_multicast_groups {
782 static const struct genl_multicast_group hwsim_mcgrps[] = {
783 [HWSIM_MCGRP_CONFIG] = { .name = "config", },
786 /* MAC80211_HWSIM netlink policy */
788 static const struct nla_policy
789 hwsim_rate_info_policy[HWSIM_RATE_INFO_ATTR_MAX + 1] = {
790 [HWSIM_RATE_INFO_ATTR_FLAGS] = { .type = NLA_U8 },
791 [HWSIM_RATE_INFO_ATTR_MCS] = { .type = NLA_U8 },
792 [HWSIM_RATE_INFO_ATTR_LEGACY] = { .type = NLA_U16 },
793 [HWSIM_RATE_INFO_ATTR_NSS] = { .type = NLA_U8 },
794 [HWSIM_RATE_INFO_ATTR_BW] = { .type = NLA_U8 },
795 [HWSIM_RATE_INFO_ATTR_HE_GI] = { .type = NLA_U8 },
796 [HWSIM_RATE_INFO_ATTR_HE_DCM] = { .type = NLA_U8 },
797 [HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC] = { .type = NLA_U8 },
798 [HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH] = { .type = NLA_U8 },
799 [HWSIM_RATE_INFO_ATTR_EHT_GI] = { .type = NLA_U8 },
800 [HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC] = { .type = NLA_U8 },
803 static const struct nla_policy
804 hwsim_ftm_result_policy[NL80211_PMSR_FTM_RESP_ATTR_MAX + 1] = {
805 [NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON] = { .type = NLA_U32 },
806 [NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX] = { .type = NLA_U16 },
807 [NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS] = { .type = NLA_U32 },
808 [NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES] = { .type = NLA_U32 },
809 [NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME] = { .type = NLA_U8 },
810 [NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP] = { .type = NLA_U8 },
811 [NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION] = { .type = NLA_U8 },
812 [NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST] = { .type = NLA_U8 },
813 [NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG] = { .type = NLA_U32 },
814 [NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD] = { .type = NLA_U32 },
815 [NL80211_PMSR_FTM_RESP_ATTR_TX_RATE] = NLA_POLICY_NESTED(hwsim_rate_info_policy),
816 [NL80211_PMSR_FTM_RESP_ATTR_RX_RATE] = NLA_POLICY_NESTED(hwsim_rate_info_policy),
817 [NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG] = { .type = NLA_U64 },
818 [NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE] = { .type = NLA_U64 },
819 [NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD] = { .type = NLA_U64 },
820 [NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG] = { .type = NLA_U64 },
821 [NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE] = { .type = NLA_U64 },
822 [NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD] = { .type = NLA_U64 },
823 [NL80211_PMSR_FTM_RESP_ATTR_LCI] = { .type = NLA_STRING },
824 [NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC] = { .type = NLA_STRING },
827 static const struct nla_policy
828 hwsim_pmsr_resp_type_policy[NL80211_PMSR_TYPE_MAX + 1] = {
829 [NL80211_PMSR_TYPE_FTM] = NLA_POLICY_NESTED(hwsim_ftm_result_policy),
832 static const struct nla_policy
833 hwsim_pmsr_resp_policy[NL80211_PMSR_RESP_ATTR_MAX + 1] = {
834 [NL80211_PMSR_RESP_ATTR_STATUS] = { .type = NLA_U32 },
835 [NL80211_PMSR_RESP_ATTR_HOST_TIME] = { .type = NLA_U64 },
836 [NL80211_PMSR_RESP_ATTR_AP_TSF] = { .type = NLA_U64 },
837 [NL80211_PMSR_RESP_ATTR_FINAL] = { .type = NLA_FLAG },
838 [NL80211_PMSR_RESP_ATTR_DATA] = NLA_POLICY_NESTED(hwsim_pmsr_resp_type_policy),
841 static const struct nla_policy
842 hwsim_pmsr_peer_result_policy[NL80211_PMSR_PEER_ATTR_MAX + 1] = {
843 [NL80211_PMSR_PEER_ATTR_ADDR] = NLA_POLICY_ETH_ADDR_COMPAT,
844 [NL80211_PMSR_PEER_ATTR_CHAN] = { .type = NLA_REJECT },
845 [NL80211_PMSR_PEER_ATTR_REQ] = { .type = NLA_REJECT },
846 [NL80211_PMSR_PEER_ATTR_RESP] = NLA_POLICY_NESTED(hwsim_pmsr_resp_policy),
849 static const struct nla_policy
850 hwsim_pmsr_peers_result_policy[NL80211_PMSR_ATTR_MAX + 1] = {
851 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_REJECT },
852 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_REJECT },
853 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_REJECT },
854 [NL80211_PMSR_ATTR_TYPE_CAPA] = { .type = NLA_REJECT },
855 [NL80211_PMSR_ATTR_PEERS] = NLA_POLICY_NESTED_ARRAY(hwsim_pmsr_peer_result_policy),
858 static const struct nla_policy
859 hwsim_ftm_capa_policy[NL80211_PMSR_FTM_CAPA_ATTR_MAX + 1] = {
860 [NL80211_PMSR_FTM_CAPA_ATTR_ASAP] = { .type = NLA_FLAG },
861 [NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP] = { .type = NLA_FLAG },
862 [NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI] = { .type = NLA_FLAG },
863 [NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC] = { .type = NLA_FLAG },
864 [NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES] = { .type = NLA_U32 },
865 [NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS] = { .type = NLA_U32 },
866 [NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT] = NLA_POLICY_MAX(NLA_U8, 15),
867 [NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST] = NLA_POLICY_MAX(NLA_U8, 31),
868 [NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED] = { .type = NLA_FLAG },
869 [NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED] = { .type = NLA_FLAG },
872 static const struct nla_policy
873 hwsim_pmsr_capa_type_policy[NL80211_PMSR_TYPE_MAX + 1] = {
874 [NL80211_PMSR_TYPE_FTM] = NLA_POLICY_NESTED(hwsim_ftm_capa_policy),
877 static const struct nla_policy
878 hwsim_pmsr_capa_policy[NL80211_PMSR_ATTR_MAX + 1] = {
879 [NL80211_PMSR_ATTR_MAX_PEERS] = { .type = NLA_U32 },
880 [NL80211_PMSR_ATTR_REPORT_AP_TSF] = { .type = NLA_FLAG },
881 [NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR] = { .type = NLA_FLAG },
882 [NL80211_PMSR_ATTR_TYPE_CAPA] = NLA_POLICY_NESTED(hwsim_pmsr_capa_type_policy),
883 [NL80211_PMSR_ATTR_PEERS] = { .type = NLA_REJECT }, // only for request.
886 static const struct nla_policy hwsim_genl_policy[HWSIM_ATTR_MAX + 1] = {
887 [HWSIM_ATTR_ADDR_RECEIVER] = NLA_POLICY_ETH_ADDR_COMPAT,
888 [HWSIM_ATTR_ADDR_TRANSMITTER] = NLA_POLICY_ETH_ADDR_COMPAT,
889 [HWSIM_ATTR_FRAME] = { .type = NLA_BINARY,
890 .len = IEEE80211_MAX_DATA_LEN },
891 [HWSIM_ATTR_FLAGS] = { .type = NLA_U32 },
892 [HWSIM_ATTR_RX_RATE] = { .type = NLA_U32 },
893 [HWSIM_ATTR_SIGNAL] = { .type = NLA_U32 },
894 [HWSIM_ATTR_TX_INFO] = { .type = NLA_BINARY,
895 .len = IEEE80211_TX_MAX_RATES *
896 sizeof(struct hwsim_tx_rate)},
897 [HWSIM_ATTR_COOKIE] = { .type = NLA_U64 },
898 [HWSIM_ATTR_CHANNELS] = { .type = NLA_U32 },
899 [HWSIM_ATTR_RADIO_ID] = { .type = NLA_U32 },
900 [HWSIM_ATTR_REG_HINT_ALPHA2] = { .type = NLA_STRING, .len = 2 },
901 [HWSIM_ATTR_REG_CUSTOM_REG] = { .type = NLA_U32 },
902 [HWSIM_ATTR_REG_STRICT_REG] = { .type = NLA_FLAG },
903 [HWSIM_ATTR_SUPPORT_P2P_DEVICE] = { .type = NLA_FLAG },
904 [HWSIM_ATTR_USE_CHANCTX] = { .type = NLA_FLAG },
905 [HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE] = { .type = NLA_FLAG },
906 [HWSIM_ATTR_RADIO_NAME] = { .type = NLA_STRING },
907 [HWSIM_ATTR_NO_VIF] = { .type = NLA_FLAG },
908 [HWSIM_ATTR_FREQ] = { .type = NLA_U32 },
909 [HWSIM_ATTR_TX_INFO_FLAGS] = { .type = NLA_BINARY },
910 [HWSIM_ATTR_PERM_ADDR] = NLA_POLICY_ETH_ADDR_COMPAT,
911 [HWSIM_ATTR_IFTYPE_SUPPORT] = { .type = NLA_U32 },
912 [HWSIM_ATTR_CIPHER_SUPPORT] = { .type = NLA_BINARY },
913 [HWSIM_ATTR_MLO_SUPPORT] = { .type = NLA_FLAG },
914 [HWSIM_ATTR_PMSR_SUPPORT] = NLA_POLICY_NESTED(hwsim_pmsr_capa_policy),
915 [HWSIM_ATTR_PMSR_RESULT] = NLA_POLICY_NESTED(hwsim_pmsr_peers_result_policy),
918 #if IS_REACHABLE(CONFIG_VIRTIO)
920 /* MAC80211_HWSIM virtio queues */
921 static struct virtqueue *hwsim_vqs[HWSIM_NUM_VQS];
922 static bool hwsim_virtio_enabled;
923 static DEFINE_SPINLOCK(hwsim_virtio_lock);
925 static void hwsim_virtio_rx_work(struct work_struct *work);
926 static DECLARE_WORK(hwsim_virtio_rx, hwsim_virtio_rx_work);
928 static int hwsim_tx_virtio(struct mac80211_hwsim_data *data,
931 struct scatterlist sg[1];
935 spin_lock_irqsave(&hwsim_virtio_lock, flags);
936 if (!hwsim_virtio_enabled) {
941 sg_init_one(sg, skb->head, skb_end_offset(skb));
942 err = virtqueue_add_outbuf(hwsim_vqs[HWSIM_VQ_TX], sg, 1, skb,
946 virtqueue_kick(hwsim_vqs[HWSIM_VQ_TX]);
947 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
951 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
956 /* cause a linker error if this ends up being needed */
957 extern int hwsim_tx_virtio(struct mac80211_hwsim_data *data,
958 struct sk_buff *skb);
959 #define hwsim_virtio_enabled false
962 static int hwsim_get_chanwidth(enum nl80211_chan_width bw)
965 case NL80211_CHAN_WIDTH_20_NOHT:
966 case NL80211_CHAN_WIDTH_20:
968 case NL80211_CHAN_WIDTH_40:
970 case NL80211_CHAN_WIDTH_80:
972 case NL80211_CHAN_WIDTH_80P80:
973 case NL80211_CHAN_WIDTH_160:
975 case NL80211_CHAN_WIDTH_320:
977 case NL80211_CHAN_WIDTH_5:
979 case NL80211_CHAN_WIDTH_10:
981 case NL80211_CHAN_WIDTH_1:
983 case NL80211_CHAN_WIDTH_2:
985 case NL80211_CHAN_WIDTH_4:
987 case NL80211_CHAN_WIDTH_8:
989 case NL80211_CHAN_WIDTH_16:
996 static void mac80211_hwsim_tx_frame(struct ieee80211_hw *hw,
998 struct ieee80211_channel *chan);
1000 /* sysfs attributes */
1001 static void hwsim_send_ps_poll(void *dat, u8 *mac, struct ieee80211_vif *vif)
1003 struct mac80211_hwsim_data *data = dat;
1004 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
1005 struct sk_buff *skb;
1006 struct ieee80211_pspoll *pspoll;
1011 wiphy_dbg(data->hw->wiphy,
1012 "%s: send PS-Poll to %pM for aid %d\n",
1013 __func__, vp->bssid, vp->aid);
1015 skb = dev_alloc_skb(sizeof(*pspoll));
1018 pspoll = skb_put(skb, sizeof(*pspoll));
1019 pspoll->frame_control = cpu_to_le16(IEEE80211_FTYPE_CTL |
1020 IEEE80211_STYPE_PSPOLL |
1022 pspoll->aid = cpu_to_le16(0xc000 | vp->aid);
1023 memcpy(pspoll->bssid, vp->bssid, ETH_ALEN);
1024 memcpy(pspoll->ta, mac, ETH_ALEN);
1027 mac80211_hwsim_tx_frame(data->hw, skb,
1028 rcu_dereference(vif->bss_conf.chanctx_conf)->def.chan);
1032 static void hwsim_send_nullfunc(struct mac80211_hwsim_data *data, u8 *mac,
1033 struct ieee80211_vif *vif, int ps)
1035 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
1036 struct sk_buff *skb;
1037 struct ieee80211_hdr *hdr;
1038 struct ieee80211_tx_info *cb;
1043 wiphy_dbg(data->hw->wiphy,
1044 "%s: send data::nullfunc to %pM ps=%d\n",
1045 __func__, vp->bssid, ps);
1047 skb = dev_alloc_skb(sizeof(*hdr));
1050 hdr = skb_put(skb, sizeof(*hdr) - ETH_ALEN);
1051 hdr->frame_control = cpu_to_le16(IEEE80211_FTYPE_DATA |
1052 IEEE80211_STYPE_NULLFUNC |
1053 IEEE80211_FCTL_TODS |
1054 (ps ? IEEE80211_FCTL_PM : 0));
1055 hdr->duration_id = cpu_to_le16(0);
1056 memcpy(hdr->addr1, vp->bssid, ETH_ALEN);
1057 memcpy(hdr->addr2, mac, ETH_ALEN);
1058 memcpy(hdr->addr3, vp->bssid, ETH_ALEN);
1060 cb = IEEE80211_SKB_CB(skb);
1061 cb->control.rates[0].count = 1;
1062 cb->control.rates[1].idx = -1;
1065 mac80211_hwsim_tx_frame(data->hw, skb,
1066 rcu_dereference(vif->bss_conf.chanctx_conf)->def.chan);
1071 static void hwsim_send_nullfunc_ps(void *dat, u8 *mac,
1072 struct ieee80211_vif *vif)
1074 struct mac80211_hwsim_data *data = dat;
1075 hwsim_send_nullfunc(data, mac, vif, 1);
1078 static void hwsim_send_nullfunc_no_ps(void *dat, u8 *mac,
1079 struct ieee80211_vif *vif)
1081 struct mac80211_hwsim_data *data = dat;
1082 hwsim_send_nullfunc(data, mac, vif, 0);
1085 static int hwsim_fops_ps_read(void *dat, u64 *val)
1087 struct mac80211_hwsim_data *data = dat;
1092 static int hwsim_fops_ps_write(void *dat, u64 val)
1094 struct mac80211_hwsim_data *data = dat;
1095 enum ps_mode old_ps;
1097 if (val != PS_DISABLED && val != PS_ENABLED && val != PS_AUTO_POLL &&
1098 val != PS_MANUAL_POLL)
1101 if (val == PS_MANUAL_POLL) {
1102 if (data->ps != PS_ENABLED)
1105 ieee80211_iterate_active_interfaces_atomic(
1106 data->hw, IEEE80211_IFACE_ITER_NORMAL,
1107 hwsim_send_ps_poll, data);
1115 if (old_ps == PS_DISABLED && val != PS_DISABLED) {
1116 ieee80211_iterate_active_interfaces_atomic(
1117 data->hw, IEEE80211_IFACE_ITER_NORMAL,
1118 hwsim_send_nullfunc_ps, data);
1119 } else if (old_ps != PS_DISABLED && val == PS_DISABLED) {
1120 ieee80211_iterate_active_interfaces_atomic(
1121 data->hw, IEEE80211_IFACE_ITER_NORMAL,
1122 hwsim_send_nullfunc_no_ps, data);
1129 DEFINE_DEBUGFS_ATTRIBUTE(hwsim_fops_ps, hwsim_fops_ps_read, hwsim_fops_ps_write,
1132 static int hwsim_write_simulate_radar(void *dat, u64 val)
1134 struct mac80211_hwsim_data *data = dat;
1136 ieee80211_radar_detected(data->hw);
1141 DEFINE_DEBUGFS_ATTRIBUTE(hwsim_simulate_radar, NULL,
1142 hwsim_write_simulate_radar, "%llu\n");
1144 static int hwsim_fops_group_read(void *dat, u64 *val)
1146 struct mac80211_hwsim_data *data = dat;
1151 static int hwsim_fops_group_write(void *dat, u64 val)
1153 struct mac80211_hwsim_data *data = dat;
1158 DEFINE_DEBUGFS_ATTRIBUTE(hwsim_fops_group,
1159 hwsim_fops_group_read, hwsim_fops_group_write,
1162 static int hwsim_fops_rx_rssi_read(void *dat, u64 *val)
1164 struct mac80211_hwsim_data *data = dat;
1165 *val = data->rx_rssi;
1169 static int hwsim_fops_rx_rssi_write(void *dat, u64 val)
1171 struct mac80211_hwsim_data *data = dat;
1172 int rssi = (int)val;
1174 if (rssi >= 0 || rssi < -100)
1177 data->rx_rssi = rssi;
1181 DEFINE_DEBUGFS_ATTRIBUTE(hwsim_fops_rx_rssi,
1182 hwsim_fops_rx_rssi_read, hwsim_fops_rx_rssi_write,
1185 static netdev_tx_t hwsim_mon_xmit(struct sk_buff *skb,
1186 struct net_device *dev)
1188 /* TODO: allow packet injection */
1190 return NETDEV_TX_OK;
1193 static inline u64 mac80211_hwsim_get_tsf_raw(void)
1195 return ktime_to_us(ktime_get_real());
1198 static __le64 __mac80211_hwsim_get_tsf(struct mac80211_hwsim_data *data)
1200 u64 now = mac80211_hwsim_get_tsf_raw();
1201 return cpu_to_le64(now + data->tsf_offset);
1204 static u64 mac80211_hwsim_get_tsf(struct ieee80211_hw *hw,
1205 struct ieee80211_vif *vif)
1207 struct mac80211_hwsim_data *data = hw->priv;
1208 return le64_to_cpu(__mac80211_hwsim_get_tsf(data));
1211 static void mac80211_hwsim_set_tsf(struct ieee80211_hw *hw,
1212 struct ieee80211_vif *vif, u64 tsf)
1214 struct mac80211_hwsim_data *data = hw->priv;
1215 u64 now = mac80211_hwsim_get_tsf(hw, vif);
1216 /* MLD not supported here */
1217 u32 bcn_int = data->link_data[0].beacon_int;
1218 u64 delta = abs(tsf - now);
1220 /* adjust after beaconing with new timestamp at old TBTT */
1222 data->tsf_offset += delta;
1223 data->bcn_delta = do_div(delta, bcn_int);
1225 data->tsf_offset -= delta;
1226 data->bcn_delta = -(s64)do_div(delta, bcn_int);
1230 static void mac80211_hwsim_monitor_rx(struct ieee80211_hw *hw,
1231 struct sk_buff *tx_skb,
1232 struct ieee80211_channel *chan)
1234 struct mac80211_hwsim_data *data = hw->priv;
1235 struct sk_buff *skb;
1236 struct hwsim_radiotap_hdr *hdr;
1238 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(tx_skb);
1239 struct ieee80211_rate *txrate = ieee80211_get_tx_rate(hw, info);
1244 bitrate = txrate->bitrate;
1246 if (!netif_running(hwsim_mon))
1249 skb = skb_copy_expand(tx_skb, sizeof(*hdr), 0, GFP_ATOMIC);
1253 hdr = skb_push(skb, sizeof(*hdr));
1254 hdr->hdr.it_version = PKTHDR_RADIOTAP_VERSION;
1255 hdr->hdr.it_pad = 0;
1256 hdr->hdr.it_len = cpu_to_le16(sizeof(*hdr));
1257 hdr->hdr.it_present = cpu_to_le32((1 << IEEE80211_RADIOTAP_FLAGS) |
1258 (1 << IEEE80211_RADIOTAP_RATE) |
1259 (1 << IEEE80211_RADIOTAP_TSFT) |
1260 (1 << IEEE80211_RADIOTAP_CHANNEL));
1261 hdr->rt_tsft = __mac80211_hwsim_get_tsf(data);
1263 hdr->rt_rate = bitrate / 5;
1264 hdr->rt_channel = cpu_to_le16(chan->center_freq);
1265 flags = IEEE80211_CHAN_2GHZ;
1266 if (txrate && txrate->flags & IEEE80211_RATE_ERP_G)
1267 flags |= IEEE80211_CHAN_OFDM;
1269 flags |= IEEE80211_CHAN_CCK;
1270 hdr->rt_chbitmask = cpu_to_le16(flags);
1272 skb->dev = hwsim_mon;
1273 skb_reset_mac_header(skb);
1274 skb->ip_summed = CHECKSUM_UNNECESSARY;
1275 skb->pkt_type = PACKET_OTHERHOST;
1276 skb->protocol = htons(ETH_P_802_2);
1277 memset(skb->cb, 0, sizeof(skb->cb));
1282 static void mac80211_hwsim_monitor_ack(struct ieee80211_channel *chan,
1285 struct sk_buff *skb;
1286 struct hwsim_radiotap_ack_hdr *hdr;
1288 struct ieee80211_hdr *hdr11;
1290 if (!netif_running(hwsim_mon))
1293 skb = dev_alloc_skb(100);
1297 hdr = skb_put(skb, sizeof(*hdr));
1298 hdr->hdr.it_version = PKTHDR_RADIOTAP_VERSION;
1299 hdr->hdr.it_pad = 0;
1300 hdr->hdr.it_len = cpu_to_le16(sizeof(*hdr));
1301 hdr->hdr.it_present = cpu_to_le32((1 << IEEE80211_RADIOTAP_FLAGS) |
1302 (1 << IEEE80211_RADIOTAP_CHANNEL));
1305 hdr->rt_channel = cpu_to_le16(chan->center_freq);
1306 flags = IEEE80211_CHAN_2GHZ;
1307 hdr->rt_chbitmask = cpu_to_le16(flags);
1309 hdr11 = skb_put(skb, 10);
1310 hdr11->frame_control = cpu_to_le16(IEEE80211_FTYPE_CTL |
1311 IEEE80211_STYPE_ACK);
1312 hdr11->duration_id = cpu_to_le16(0);
1313 memcpy(hdr11->addr1, addr, ETH_ALEN);
1315 skb->dev = hwsim_mon;
1316 skb_reset_mac_header(skb);
1317 skb->ip_summed = CHECKSUM_UNNECESSARY;
1318 skb->pkt_type = PACKET_OTHERHOST;
1319 skb->protocol = htons(ETH_P_802_2);
1320 memset(skb->cb, 0, sizeof(skb->cb));
1324 struct mac80211_hwsim_addr_match_data {
1329 static void mac80211_hwsim_addr_iter(void *data, u8 *mac,
1330 struct ieee80211_vif *vif)
1333 struct mac80211_hwsim_addr_match_data *md = data;
1335 if (memcmp(mac, md->addr, ETH_ALEN) == 0) {
1340 /* Match the link address */
1341 for (i = 0; i < ARRAY_SIZE(vif->link_conf); i++) {
1342 struct ieee80211_bss_conf *conf;
1344 conf = rcu_dereference(vif->link_conf[i]);
1348 if (memcmp(conf->addr, md->addr, ETH_ALEN) == 0) {
1355 static bool mac80211_hwsim_addr_match(struct mac80211_hwsim_data *data,
1358 struct mac80211_hwsim_addr_match_data md = {
1362 if (data->scanning && memcmp(addr, data->scan_addr, ETH_ALEN) == 0)
1365 memcpy(md.addr, addr, ETH_ALEN);
1367 ieee80211_iterate_active_interfaces_atomic(data->hw,
1368 IEEE80211_IFACE_ITER_NORMAL,
1369 mac80211_hwsim_addr_iter,
1375 static bool hwsim_ps_rx_ok(struct mac80211_hwsim_data *data,
1376 struct sk_buff *skb)
1384 /* TODO: accept (some) Beacons by default and other frames only
1385 * if pending PS-Poll has been sent */
1387 case PS_MANUAL_POLL:
1388 /* Allow unicast frames to own address if there is a pending
1390 if (data->ps_poll_pending &&
1391 mac80211_hwsim_addr_match(data, skb->data + 4)) {
1392 data->ps_poll_pending = false;
1401 static int hwsim_unicast_netgroup(struct mac80211_hwsim_data *data,
1402 struct sk_buff *skb, int portid)
1409 for_each_net_rcu(net) {
1410 if (data->netgroup == hwsim_net_get_netgroup(net)) {
1411 res = genlmsg_unicast(net, skb, portid);
1424 static void mac80211_hwsim_config_mac_nl(struct ieee80211_hw *hw,
1425 const u8 *addr, bool add)
1427 struct mac80211_hwsim_data *data = hw->priv;
1428 u32 _portid = READ_ONCE(data->wmediumd);
1429 struct sk_buff *skb;
1432 WARN_ON(!is_valid_ether_addr(addr));
1434 if (!_portid && !hwsim_virtio_enabled)
1437 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_ATOMIC);
1441 msg_head = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0,
1442 add ? HWSIM_CMD_ADD_MAC_ADDR :
1443 HWSIM_CMD_DEL_MAC_ADDR);
1445 pr_debug("mac80211_hwsim: problem with msg_head\n");
1446 goto nla_put_failure;
1449 if (nla_put(skb, HWSIM_ATTR_ADDR_TRANSMITTER,
1450 ETH_ALEN, data->addresses[1].addr))
1451 goto nla_put_failure;
1453 if (nla_put(skb, HWSIM_ATTR_ADDR_RECEIVER, ETH_ALEN, addr))
1454 goto nla_put_failure;
1456 genlmsg_end(skb, msg_head);
1458 if (hwsim_virtio_enabled)
1459 hwsim_tx_virtio(data, skb);
1461 hwsim_unicast_netgroup(data, skb, _portid);
1467 static inline u16 trans_tx_rate_flags_ieee2hwsim(struct ieee80211_tx_rate *rate)
1471 if (rate->flags & IEEE80211_TX_RC_USE_RTS_CTS)
1472 result |= MAC80211_HWSIM_TX_RC_USE_RTS_CTS;
1473 if (rate->flags & IEEE80211_TX_RC_USE_CTS_PROTECT)
1474 result |= MAC80211_HWSIM_TX_RC_USE_CTS_PROTECT;
1475 if (rate->flags & IEEE80211_TX_RC_USE_SHORT_PREAMBLE)
1476 result |= MAC80211_HWSIM_TX_RC_USE_SHORT_PREAMBLE;
1477 if (rate->flags & IEEE80211_TX_RC_MCS)
1478 result |= MAC80211_HWSIM_TX_RC_MCS;
1479 if (rate->flags & IEEE80211_TX_RC_GREEN_FIELD)
1480 result |= MAC80211_HWSIM_TX_RC_GREEN_FIELD;
1481 if (rate->flags & IEEE80211_TX_RC_40_MHZ_WIDTH)
1482 result |= MAC80211_HWSIM_TX_RC_40_MHZ_WIDTH;
1483 if (rate->flags & IEEE80211_TX_RC_DUP_DATA)
1484 result |= MAC80211_HWSIM_TX_RC_DUP_DATA;
1485 if (rate->flags & IEEE80211_TX_RC_SHORT_GI)
1486 result |= MAC80211_HWSIM_TX_RC_SHORT_GI;
1487 if (rate->flags & IEEE80211_TX_RC_VHT_MCS)
1488 result |= MAC80211_HWSIM_TX_RC_VHT_MCS;
1489 if (rate->flags & IEEE80211_TX_RC_80_MHZ_WIDTH)
1490 result |= MAC80211_HWSIM_TX_RC_80_MHZ_WIDTH;
1491 if (rate->flags & IEEE80211_TX_RC_160_MHZ_WIDTH)
1492 result |= MAC80211_HWSIM_TX_RC_160_MHZ_WIDTH;
1497 static void mac80211_hwsim_tx_frame_nl(struct ieee80211_hw *hw,
1498 struct sk_buff *my_skb,
1500 struct ieee80211_channel *channel)
1502 struct sk_buff *skb;
1503 struct mac80211_hwsim_data *data = hw->priv;
1504 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) my_skb->data;
1505 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(my_skb);
1507 unsigned int hwsim_flags = 0;
1509 struct hwsim_tx_rate tx_attempts[IEEE80211_TX_MAX_RATES];
1510 struct hwsim_tx_rate_flag tx_attempts_flags[IEEE80211_TX_MAX_RATES];
1513 if (data->ps != PS_DISABLED)
1514 hdr->frame_control |= cpu_to_le16(IEEE80211_FCTL_PM);
1515 /* If the queue contains MAX_QUEUE skb's drop some */
1516 if (skb_queue_len(&data->pending) >= MAX_QUEUE) {
1517 /* Dropping until WARN_QUEUE level */
1518 while (skb_queue_len(&data->pending) >= WARN_QUEUE) {
1519 ieee80211_free_txskb(hw, skb_dequeue(&data->pending));
1524 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_ATOMIC);
1526 goto nla_put_failure;
1528 msg_head = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0,
1530 if (msg_head == NULL) {
1531 pr_debug("mac80211_hwsim: problem with msg_head\n");
1532 goto nla_put_failure;
1535 if (nla_put(skb, HWSIM_ATTR_ADDR_TRANSMITTER,
1536 ETH_ALEN, data->addresses[1].addr))
1537 goto nla_put_failure;
1539 /* We get the skb->data */
1540 if (nla_put(skb, HWSIM_ATTR_FRAME, my_skb->len, my_skb->data))
1541 goto nla_put_failure;
1543 /* We get the flags for this transmission, and we translate them to
1546 if (info->flags & IEEE80211_TX_CTL_REQ_TX_STATUS)
1547 hwsim_flags |= HWSIM_TX_CTL_REQ_TX_STATUS;
1549 if (info->flags & IEEE80211_TX_CTL_NO_ACK)
1550 hwsim_flags |= HWSIM_TX_CTL_NO_ACK;
1552 if (nla_put_u32(skb, HWSIM_ATTR_FLAGS, hwsim_flags))
1553 goto nla_put_failure;
1555 if (nla_put_u32(skb, HWSIM_ATTR_FREQ, channel->center_freq))
1556 goto nla_put_failure;
1558 /* We get the tx control (rate and retries) info*/
1560 for (i = 0; i < IEEE80211_TX_MAX_RATES; i++) {
1561 tx_attempts[i].idx = info->status.rates[i].idx;
1562 tx_attempts_flags[i].idx = info->status.rates[i].idx;
1563 tx_attempts[i].count = info->status.rates[i].count;
1564 tx_attempts_flags[i].flags =
1565 trans_tx_rate_flags_ieee2hwsim(
1566 &info->status.rates[i]);
1569 if (nla_put(skb, HWSIM_ATTR_TX_INFO,
1570 sizeof(struct hwsim_tx_rate)*IEEE80211_TX_MAX_RATES,
1572 goto nla_put_failure;
1574 if (nla_put(skb, HWSIM_ATTR_TX_INFO_FLAGS,
1575 sizeof(struct hwsim_tx_rate_flag) * IEEE80211_TX_MAX_RATES,
1577 goto nla_put_failure;
1579 /* We create a cookie to identify this skb */
1580 cookie = atomic_inc_return(&data->pending_cookie);
1581 info->rate_driver_data[0] = (void *)cookie;
1582 if (nla_put_u64_64bit(skb, HWSIM_ATTR_COOKIE, cookie, HWSIM_ATTR_PAD))
1583 goto nla_put_failure;
1585 genlmsg_end(skb, msg_head);
1587 if (hwsim_virtio_enabled) {
1588 if (hwsim_tx_virtio(data, skb))
1589 goto err_free_txskb;
1591 if (hwsim_unicast_netgroup(data, skb, dst_portid))
1592 goto err_free_txskb;
1595 /* Enqueue the packet */
1596 skb_queue_tail(&data->pending, my_skb);
1598 data->tx_bytes += my_skb->len;
1604 pr_debug("mac80211_hwsim: error occurred in %s\n", __func__);
1605 ieee80211_free_txskb(hw, my_skb);
1609 static bool hwsim_chans_compat(struct ieee80211_channel *c1,
1610 struct ieee80211_channel *c2)
1615 return c1->center_freq == c2->center_freq;
1618 struct tx_iter_data {
1619 struct ieee80211_channel *channel;
1623 static void mac80211_hwsim_tx_iter(void *_data, u8 *addr,
1624 struct ieee80211_vif *vif)
1626 struct tx_iter_data *data = _data;
1629 for (i = 0; i < ARRAY_SIZE(vif->link_conf); i++) {
1630 struct ieee80211_bss_conf *conf;
1631 struct ieee80211_chanctx_conf *chanctx;
1633 conf = rcu_dereference(vif->link_conf[i]);
1637 chanctx = rcu_dereference(conf->chanctx_conf);
1641 if (!hwsim_chans_compat(data->channel, chanctx->def.chan))
1644 data->receive = true;
1649 static void mac80211_hwsim_add_vendor_rtap(struct sk_buff *skb)
1652 * To enable this code, #define the HWSIM_RADIOTAP_OUI,
1654 * #define HWSIM_RADIOTAP_OUI "\x02\x00\x00"
1655 * (but you should use a valid OUI, not that)
1657 * If anyone wants to 'donate' a radiotap OUI/subns code
1658 * please send a patch removing this #ifdef and changing
1659 * the values accordingly.
1661 #ifdef HWSIM_RADIOTAP_OUI
1662 struct ieee80211_radiotap_vendor_tlv *rtap;
1663 static const char vendor_data[8] = "ABCDEFGH";
1665 // Make sure no padding is needed
1666 BUILD_BUG_ON(sizeof(vendor_data) % 4);
1667 /* this is last radiotap info before the mac header, so
1668 * skb_reset_mac_header for mac8022 to know the end of
1669 * the radiotap TLV/beginning of the 802.11 header
1671 skb_reset_mac_header(skb);
1674 * Note that this code requires the headroom in the SKB
1675 * that was allocated earlier.
1677 rtap = skb_push(skb, sizeof(*rtap) + sizeof(vendor_data));
1679 rtap->len = cpu_to_le16(sizeof(*rtap) -
1680 sizeof(struct ieee80211_radiotap_tlv) +
1681 sizeof(vendor_data));
1682 rtap->type = cpu_to_le16(IEEE80211_RADIOTAP_VENDOR_NAMESPACE);
1684 rtap->content.oui[0] = HWSIM_RADIOTAP_OUI[0];
1685 rtap->content.oui[1] = HWSIM_RADIOTAP_OUI[1];
1686 rtap->content.oui[2] = HWSIM_RADIOTAP_OUI[2];
1687 rtap->content.oui_subtype = 127;
1688 /* clear reserved field */
1689 rtap->content.reserved = 0;
1690 rtap->content.vendor_type = 0;
1691 memcpy(rtap->content.data, vendor_data, sizeof(vendor_data));
1693 IEEE80211_SKB_RXCB(skb)->flag |= RX_FLAG_RADIOTAP_TLV_AT_END;
1697 static void mac80211_hwsim_rx(struct mac80211_hwsim_data *data,
1698 struct ieee80211_rx_status *rx_status,
1699 struct sk_buff *skb)
1701 struct ieee80211_hdr *hdr = (void *)skb->data;
1703 if (!ieee80211_has_morefrags(hdr->frame_control) &&
1704 !is_multicast_ether_addr(hdr->addr1) &&
1705 (ieee80211_is_mgmt(hdr->frame_control) ||
1706 ieee80211_is_data(hdr->frame_control))) {
1707 struct ieee80211_sta *sta;
1708 unsigned int link_id;
1711 sta = ieee80211_find_sta_by_link_addrs(data->hw, hdr->addr2,
1712 hdr->addr1, &link_id);
1714 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
1716 if (ieee80211_has_pm(hdr->frame_control))
1717 sp->active_links_rx &= ~BIT(link_id);
1719 sp->active_links_rx |= BIT(link_id);
1724 memcpy(IEEE80211_SKB_RXCB(skb), rx_status, sizeof(*rx_status));
1726 mac80211_hwsim_add_vendor_rtap(skb);
1729 data->rx_bytes += skb->len;
1730 ieee80211_rx_irqsafe(data->hw, skb);
1733 static bool mac80211_hwsim_tx_frame_no_nl(struct ieee80211_hw *hw,
1734 struct sk_buff *skb,
1735 struct ieee80211_channel *chan)
1737 struct mac80211_hwsim_data *data = hw->priv, *data2;
1739 struct ieee80211_hdr *hdr = (struct ieee80211_hdr *) skb->data;
1740 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
1741 struct ieee80211_rx_status rx_status;
1744 memset(&rx_status, 0, sizeof(rx_status));
1745 rx_status.flag |= RX_FLAG_MACTIME_START;
1746 rx_status.freq = chan->center_freq;
1747 rx_status.freq_offset = chan->freq_offset ? 1 : 0;
1748 rx_status.band = chan->band;
1749 if (info->control.rates[0].flags & IEEE80211_TX_RC_VHT_MCS) {
1750 rx_status.rate_idx =
1751 ieee80211_rate_get_vht_mcs(&info->control.rates[0]);
1753 ieee80211_rate_get_vht_nss(&info->control.rates[0]);
1754 rx_status.encoding = RX_ENC_VHT;
1756 rx_status.rate_idx = info->control.rates[0].idx;
1757 if (info->control.rates[0].flags & IEEE80211_TX_RC_MCS)
1758 rx_status.encoding = RX_ENC_HT;
1760 if (info->control.rates[0].flags & IEEE80211_TX_RC_40_MHZ_WIDTH)
1761 rx_status.bw = RATE_INFO_BW_40;
1762 else if (info->control.rates[0].flags & IEEE80211_TX_RC_80_MHZ_WIDTH)
1763 rx_status.bw = RATE_INFO_BW_80;
1764 else if (info->control.rates[0].flags & IEEE80211_TX_RC_160_MHZ_WIDTH)
1765 rx_status.bw = RATE_INFO_BW_160;
1767 rx_status.bw = RATE_INFO_BW_20;
1768 if (info->control.rates[0].flags & IEEE80211_TX_RC_SHORT_GI)
1769 rx_status.enc_flags |= RX_ENC_FLAG_SHORT_GI;
1770 /* TODO: simulate optional packet loss */
1771 rx_status.signal = data->rx_rssi;
1772 if (info->control.vif)
1773 rx_status.signal += info->control.vif->bss_conf.txpower;
1775 if (data->ps != PS_DISABLED)
1776 hdr->frame_control |= cpu_to_le16(IEEE80211_FCTL_PM);
1778 /* release the skb's source info */
1786 * Get absolute mactime here so all HWs RX at the "same time", and
1787 * absolute TX time for beacon mactime so the timestamp matches.
1788 * Giving beacons a different mactime than non-beacons looks messy, but
1789 * it helps the Toffset be exact and a ~10us mactime discrepancy
1790 * probably doesn't really matter.
1792 if (ieee80211_is_beacon(hdr->frame_control) ||
1793 ieee80211_is_probe_resp(hdr->frame_control)) {
1794 rx_status.boottime_ns = ktime_get_boottime_ns();
1795 now = data->abs_bcn_ts;
1797 now = mac80211_hwsim_get_tsf_raw();
1800 /* Copy skb to all enabled radios that are on the current frequency */
1801 spin_lock(&hwsim_radio_lock);
1802 list_for_each_entry(data2, &hwsim_radios, list) {
1803 struct sk_buff *nskb;
1804 struct tx_iter_data tx_iter_data = {
1812 if (!data2->started || (data2->idle && !data2->tmp_chan) ||
1813 !hwsim_ps_rx_ok(data2, skb))
1816 if (!(data->group & data2->group))
1819 if (data->netgroup != data2->netgroup)
1822 if (!hwsim_chans_compat(chan, data2->tmp_chan) &&
1823 !hwsim_chans_compat(chan, data2->channel)) {
1824 ieee80211_iterate_active_interfaces_atomic(
1825 data2->hw, IEEE80211_IFACE_ITER_NORMAL,
1826 mac80211_hwsim_tx_iter, &tx_iter_data);
1827 if (!tx_iter_data.receive)
1832 * reserve some space for our vendor and the normal
1833 * radiotap header, since we're copying anyway
1835 if (skb->len < PAGE_SIZE && paged_rx) {
1836 struct page *page = alloc_page(GFP_ATOMIC);
1841 nskb = dev_alloc_skb(128);
1847 memcpy(page_address(page), skb->data, skb->len);
1848 skb_add_rx_frag(nskb, 0, page, 0, skb->len, skb->len);
1850 nskb = skb_copy(skb, GFP_ATOMIC);
1855 if (mac80211_hwsim_addr_match(data2, hdr->addr1))
1858 rx_status.mactime = now + data2->tsf_offset;
1860 mac80211_hwsim_rx(data2, &rx_status, nskb);
1862 spin_unlock(&hwsim_radio_lock);
1867 static struct ieee80211_bss_conf *
1868 mac80211_hwsim_select_tx_link(struct mac80211_hwsim_data *data,
1869 struct ieee80211_vif *vif,
1870 struct ieee80211_sta *sta,
1871 struct ieee80211_hdr *hdr,
1872 struct ieee80211_link_sta **link_sta)
1874 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
1877 if (!ieee80211_vif_is_mld(vif))
1878 return &vif->bss_conf;
1880 WARN_ON(is_multicast_ether_addr(hdr->addr1));
1882 if (WARN_ON_ONCE(!sta || !sta->valid_links))
1883 return &vif->bss_conf;
1885 for (i = 0; i < ARRAY_SIZE(vif->link_conf); i++) {
1886 struct ieee80211_bss_conf *bss_conf;
1887 unsigned int link_id;
1889 /* round-robin the available link IDs */
1890 link_id = (sp->last_link + i + 1) % ARRAY_SIZE(vif->link_conf);
1892 if (!(vif->active_links & BIT(link_id)))
1895 if (!(sp->active_links_rx & BIT(link_id)))
1898 *link_sta = rcu_dereference(sta->link[link_id]);
1902 bss_conf = rcu_dereference(vif->link_conf[link_id]);
1903 if (WARN_ON_ONCE(!bss_conf))
1906 /* can happen while switching links */
1907 if (!rcu_access_pointer(bss_conf->chanctx_conf))
1910 sp->last_link = link_id;
1917 static void mac80211_hwsim_tx(struct ieee80211_hw *hw,
1918 struct ieee80211_tx_control *control,
1919 struct sk_buff *skb)
1921 struct mac80211_hwsim_data *data = hw->priv;
1922 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
1923 struct ieee80211_hdr *hdr = (void *)skb->data;
1924 struct ieee80211_chanctx_conf *chanctx_conf;
1925 struct ieee80211_channel *channel;
1927 enum nl80211_chan_width confbw = NL80211_CHAN_WIDTH_20_NOHT;
1930 if (WARN_ON(skb->len < 10)) {
1931 /* Should not happen; just a sanity check for addr1 use */
1932 ieee80211_free_txskb(hw, skb);
1936 if (!data->use_chanctx) {
1937 channel = data->channel;
1939 } else if (txi->hw_queue == 4) {
1940 channel = data->tmp_chan;
1942 u8 link = u32_get_bits(IEEE80211_SKB_CB(skb)->control.flags,
1943 IEEE80211_TX_CTRL_MLO_LINK);
1944 struct ieee80211_vif *vif = txi->control.vif;
1945 struct ieee80211_link_sta *link_sta = NULL;
1946 struct ieee80211_sta *sta = control->sta;
1947 struct ieee80211_bss_conf *bss_conf;
1949 if (link != IEEE80211_LINK_UNSPECIFIED) {
1950 bss_conf = rcu_dereference(txi->control.vif->link_conf[link]);
1952 link_sta = rcu_dereference(sta->link[link]);
1954 bss_conf = mac80211_hwsim_select_tx_link(data, vif, sta,
1958 if (unlikely(!bss_conf)) {
1959 /* if it's an MLO STA, it might have deactivated all
1960 * links temporarily - but we don't handle real PS in
1961 * this code yet, so just drop the frame in that case
1963 WARN(link != IEEE80211_LINK_UNSPECIFIED || !sta || !sta->mlo,
1964 "link:%d, sta:%pM, sta->mlo:%d\n",
1965 link, sta ? sta->addr : NULL, sta ? sta->mlo : -1);
1966 ieee80211_free_txskb(hw, skb);
1970 if (sta && sta->mlo) {
1971 if (WARN_ON(!link_sta)) {
1972 ieee80211_free_txskb(hw, skb);
1975 /* address translation to link addresses on TX */
1976 ether_addr_copy(hdr->addr1, link_sta->addr);
1977 ether_addr_copy(hdr->addr2, bss_conf->addr);
1978 /* translate A3 only if it's the BSSID */
1979 if (!ieee80211_has_tods(hdr->frame_control) &&
1980 !ieee80211_has_fromds(hdr->frame_control)) {
1981 if (ether_addr_equal(hdr->addr3, sta->addr))
1982 ether_addr_copy(hdr->addr3, link_sta->addr);
1983 else if (ether_addr_equal(hdr->addr3, vif->addr))
1984 ether_addr_copy(hdr->addr3, bss_conf->addr);
1986 /* no need to look at A4, if present it's SA */
1989 chanctx_conf = rcu_dereference(bss_conf->chanctx_conf);
1991 channel = chanctx_conf->def.chan;
1992 confbw = chanctx_conf->def.width;
1998 if (WARN(!channel, "TX w/o channel - queue = %d\n", txi->hw_queue)) {
1999 ieee80211_free_txskb(hw, skb);
2003 if (data->idle && !data->tmp_chan) {
2004 wiphy_dbg(hw->wiphy, "Trying to TX when idle - reject\n");
2005 ieee80211_free_txskb(hw, skb);
2009 if (txi->control.vif)
2010 hwsim_check_magic(txi->control.vif);
2012 hwsim_check_sta_magic(control->sta);
2014 if (ieee80211_hw_check(hw, SUPPORTS_RC_TABLE))
2015 ieee80211_get_tx_rates(txi->control.vif, control->sta, skb,
2017 ARRAY_SIZE(txi->control.rates));
2019 for (i = 0; i < ARRAY_SIZE(txi->control.rates); i++) {
2020 u16 rflags = txi->control.rates[i].flags;
2021 /* initialize to data->bw for 5/10 MHz handling */
2022 enum nl80211_chan_width bw = data->bw;
2024 if (txi->control.rates[i].idx == -1)
2027 if (rflags & IEEE80211_TX_RC_40_MHZ_WIDTH)
2028 bw = NL80211_CHAN_WIDTH_40;
2029 else if (rflags & IEEE80211_TX_RC_80_MHZ_WIDTH)
2030 bw = NL80211_CHAN_WIDTH_80;
2031 else if (rflags & IEEE80211_TX_RC_160_MHZ_WIDTH)
2032 bw = NL80211_CHAN_WIDTH_160;
2034 if (WARN_ON(hwsim_get_chanwidth(bw) > hwsim_get_chanwidth(confbw)))
2038 if (skb->len >= 24 + 8 &&
2039 ieee80211_is_probe_resp(hdr->frame_control)) {
2040 /* fake header transmission time */
2041 struct ieee80211_mgmt *mgmt;
2042 struct ieee80211_rate *txrate;
2047 mgmt = (struct ieee80211_mgmt *)skb->data;
2048 txrate = ieee80211_get_tx_rate(hw, txi);
2050 bitrate = txrate->bitrate;
2051 ts = mac80211_hwsim_get_tsf_raw();
2052 mgmt->u.probe_resp.timestamp =
2053 cpu_to_le64(ts + data->tsf_offset +
2054 24 * 8 * 10 / bitrate);
2057 mac80211_hwsim_monitor_rx(hw, skb, channel);
2059 /* wmediumd mode check */
2060 _portid = READ_ONCE(data->wmediumd);
2062 if (_portid || hwsim_virtio_enabled)
2063 return mac80211_hwsim_tx_frame_nl(hw, skb, _portid, channel);
2065 /* NO wmediumd detected, perfect medium simulation */
2067 data->tx_bytes += skb->len;
2068 ack = mac80211_hwsim_tx_frame_no_nl(hw, skb, channel);
2070 if (ack && skb->len >= 16)
2071 mac80211_hwsim_monitor_ack(channel, hdr->addr2);
2073 ieee80211_tx_info_clear_status(txi);
2075 /* frame was transmitted at most favorable rate at first attempt */
2076 txi->control.rates[0].count = 1;
2077 txi->control.rates[1].idx = -1;
2079 if (!(txi->flags & IEEE80211_TX_CTL_NO_ACK) && ack)
2080 txi->flags |= IEEE80211_TX_STAT_ACK;
2081 ieee80211_tx_status_irqsafe(hw, skb);
2085 static int mac80211_hwsim_start(struct ieee80211_hw *hw)
2087 struct mac80211_hwsim_data *data = hw->priv;
2088 wiphy_dbg(hw->wiphy, "%s\n", __func__);
2089 data->started = true;
2094 static void mac80211_hwsim_stop(struct ieee80211_hw *hw)
2096 struct mac80211_hwsim_data *data = hw->priv;
2099 data->started = false;
2101 for (i = 0; i < ARRAY_SIZE(data->link_data); i++)
2102 hrtimer_cancel(&data->link_data[i].beacon_timer);
2104 while (!skb_queue_empty(&data->pending))
2105 ieee80211_free_txskb(hw, skb_dequeue(&data->pending));
2107 wiphy_dbg(hw->wiphy, "%s\n", __func__);
2111 static int mac80211_hwsim_add_interface(struct ieee80211_hw *hw,
2112 struct ieee80211_vif *vif)
2114 wiphy_dbg(hw->wiphy, "%s (type=%d mac_addr=%pM)\n",
2115 __func__, ieee80211_vif_type_p2p(vif),
2117 hwsim_set_magic(vif);
2119 if (vif->type != NL80211_IFTYPE_MONITOR)
2120 mac80211_hwsim_config_mac_nl(hw, vif->addr, true);
2123 vif->hw_queue[IEEE80211_AC_VO] = 0;
2124 vif->hw_queue[IEEE80211_AC_VI] = 1;
2125 vif->hw_queue[IEEE80211_AC_BE] = 2;
2126 vif->hw_queue[IEEE80211_AC_BK] = 3;
2132 static int mac80211_hwsim_change_interface(struct ieee80211_hw *hw,
2133 struct ieee80211_vif *vif,
2134 enum nl80211_iftype newtype,
2137 newtype = ieee80211_iftype_p2p(newtype, newp2p);
2138 wiphy_dbg(hw->wiphy,
2139 "%s (old type=%d, new type=%d, mac_addr=%pM)\n",
2140 __func__, ieee80211_vif_type_p2p(vif),
2141 newtype, vif->addr);
2142 hwsim_check_magic(vif);
2145 * interface may change from non-AP to AP in
2146 * which case this needs to be set up again
2153 static void mac80211_hwsim_remove_interface(
2154 struct ieee80211_hw *hw, struct ieee80211_vif *vif)
2156 wiphy_dbg(hw->wiphy, "%s (type=%d mac_addr=%pM)\n",
2157 __func__, ieee80211_vif_type_p2p(vif),
2159 hwsim_check_magic(vif);
2160 hwsim_clear_magic(vif);
2161 if (vif->type != NL80211_IFTYPE_MONITOR)
2162 mac80211_hwsim_config_mac_nl(hw, vif->addr, false);
2165 static void mac80211_hwsim_tx_frame(struct ieee80211_hw *hw,
2166 struct sk_buff *skb,
2167 struct ieee80211_channel *chan)
2169 struct mac80211_hwsim_data *data = hw->priv;
2170 u32 _portid = READ_ONCE(data->wmediumd);
2172 if (ieee80211_hw_check(hw, SUPPORTS_RC_TABLE)) {
2173 struct ieee80211_tx_info *txi = IEEE80211_SKB_CB(skb);
2174 ieee80211_get_tx_rates(txi->control.vif, NULL, skb,
2176 ARRAY_SIZE(txi->control.rates));
2179 mac80211_hwsim_monitor_rx(hw, skb, chan);
2181 if (_portid || hwsim_virtio_enabled)
2182 return mac80211_hwsim_tx_frame_nl(hw, skb, _portid, chan);
2185 data->tx_bytes += skb->len;
2186 mac80211_hwsim_tx_frame_no_nl(hw, skb, chan);
2190 static void __mac80211_hwsim_beacon_tx(struct ieee80211_bss_conf *link_conf,
2191 struct mac80211_hwsim_data *data,
2192 struct ieee80211_hw *hw,
2193 struct ieee80211_vif *vif,
2194 struct sk_buff *skb)
2196 struct ieee80211_tx_info *info;
2197 struct ieee80211_rate *txrate;
2198 struct ieee80211_mgmt *mgmt;
2202 info = IEEE80211_SKB_CB(skb);
2203 if (ieee80211_hw_check(hw, SUPPORTS_RC_TABLE))
2204 ieee80211_get_tx_rates(vif, NULL, skb,
2205 info->control.rates,
2206 ARRAY_SIZE(info->control.rates));
2208 txrate = ieee80211_get_tx_rate(hw, info);
2210 bitrate = txrate->bitrate;
2212 mgmt = (struct ieee80211_mgmt *) skb->data;
2213 /* fake header transmission time */
2214 data->abs_bcn_ts = mac80211_hwsim_get_tsf_raw();
2215 if (ieee80211_is_s1g_beacon(mgmt->frame_control)) {
2216 struct ieee80211_ext *ext = (void *) mgmt;
2218 ext->u.s1g_beacon.timestamp = cpu_to_le32(data->abs_bcn_ts +
2223 mgmt->u.beacon.timestamp = cpu_to_le64(data->abs_bcn_ts +
2229 mac80211_hwsim_tx_frame(hw, skb,
2230 rcu_dereference(link_conf->chanctx_conf)->def.chan);
2233 static void mac80211_hwsim_beacon_tx(void *arg, u8 *mac,
2234 struct ieee80211_vif *vif)
2236 struct mac80211_hwsim_link_data *link_data = arg;
2237 u32 link_id = link_data->link_id;
2238 struct ieee80211_bss_conf *link_conf;
2239 struct mac80211_hwsim_data *data =
2240 container_of(link_data, struct mac80211_hwsim_data,
2241 link_data[link_id]);
2242 struct ieee80211_hw *hw = data->hw;
2243 struct sk_buff *skb;
2245 hwsim_check_magic(vif);
2247 link_conf = rcu_dereference(vif->link_conf[link_id]);
2251 if (vif->type != NL80211_IFTYPE_AP &&
2252 vif->type != NL80211_IFTYPE_MESH_POINT &&
2253 vif->type != NL80211_IFTYPE_ADHOC &&
2254 vif->type != NL80211_IFTYPE_OCB)
2257 if (vif->mbssid_tx_vif && vif->mbssid_tx_vif != vif)
2260 if (vif->bss_conf.ema_ap) {
2261 struct ieee80211_ema_beacons *ema;
2264 ema = ieee80211_beacon_get_template_ema_list(hw, vif, link_id);
2265 if (!ema || !ema->cnt)
2268 for (i = 0; i < ema->cnt; i++) {
2269 __mac80211_hwsim_beacon_tx(link_conf, data, hw, vif,
2271 ema->bcn[i].skb = NULL; /* Already freed */
2273 ieee80211_beacon_free_ema_list(ema);
2275 skb = ieee80211_beacon_get(hw, vif, link_id);
2279 __mac80211_hwsim_beacon_tx(link_conf, data, hw, vif, skb);
2282 while ((skb = ieee80211_get_buffered_bc(hw, vif)) != NULL) {
2283 mac80211_hwsim_tx_frame(hw, skb,
2284 rcu_dereference(link_conf->chanctx_conf)->def.chan);
2287 if (link_conf->csa_active && ieee80211_beacon_cntdwn_is_complete(vif))
2288 ieee80211_csa_finish(vif);
2291 static enum hrtimer_restart
2292 mac80211_hwsim_beacon(struct hrtimer *timer)
2294 struct mac80211_hwsim_link_data *link_data =
2295 container_of(timer, struct mac80211_hwsim_link_data, beacon_timer);
2296 struct mac80211_hwsim_data *data =
2297 container_of(link_data, struct mac80211_hwsim_data,
2298 link_data[link_data->link_id]);
2299 struct ieee80211_hw *hw = data->hw;
2300 u64 bcn_int = link_data->beacon_int;
2303 return HRTIMER_NORESTART;
2305 ieee80211_iterate_active_interfaces_atomic(
2306 hw, IEEE80211_IFACE_ITER_NORMAL,
2307 mac80211_hwsim_beacon_tx, link_data);
2309 /* beacon at new TBTT + beacon interval */
2310 if (data->bcn_delta) {
2311 bcn_int -= data->bcn_delta;
2312 data->bcn_delta = 0;
2314 hrtimer_forward_now(&link_data->beacon_timer,
2315 ns_to_ktime(bcn_int * NSEC_PER_USEC));
2316 return HRTIMER_RESTART;
2319 static const char * const hwsim_chanwidths[] = {
2320 [NL80211_CHAN_WIDTH_5] = "ht5",
2321 [NL80211_CHAN_WIDTH_10] = "ht10",
2322 [NL80211_CHAN_WIDTH_20_NOHT] = "noht",
2323 [NL80211_CHAN_WIDTH_20] = "ht20",
2324 [NL80211_CHAN_WIDTH_40] = "ht40",
2325 [NL80211_CHAN_WIDTH_80] = "vht80",
2326 [NL80211_CHAN_WIDTH_80P80] = "vht80p80",
2327 [NL80211_CHAN_WIDTH_160] = "vht160",
2328 [NL80211_CHAN_WIDTH_1] = "1MHz",
2329 [NL80211_CHAN_WIDTH_2] = "2MHz",
2330 [NL80211_CHAN_WIDTH_4] = "4MHz",
2331 [NL80211_CHAN_WIDTH_8] = "8MHz",
2332 [NL80211_CHAN_WIDTH_16] = "16MHz",
2335 static int mac80211_hwsim_config(struct ieee80211_hw *hw, u32 changed)
2337 struct mac80211_hwsim_data *data = hw->priv;
2338 struct ieee80211_conf *conf = &hw->conf;
2339 static const char *smps_modes[IEEE80211_SMPS_NUM_MODES] = {
2340 [IEEE80211_SMPS_AUTOMATIC] = "auto",
2341 [IEEE80211_SMPS_OFF] = "off",
2342 [IEEE80211_SMPS_STATIC] = "static",
2343 [IEEE80211_SMPS_DYNAMIC] = "dynamic",
2347 if (conf->chandef.chan)
2348 wiphy_dbg(hw->wiphy,
2349 "%s (freq=%d(%d - %d)/%s idle=%d ps=%d smps=%s)\n",
2351 conf->chandef.chan->center_freq,
2352 conf->chandef.center_freq1,
2353 conf->chandef.center_freq2,
2354 hwsim_chanwidths[conf->chandef.width],
2355 !!(conf->flags & IEEE80211_CONF_IDLE),
2356 !!(conf->flags & IEEE80211_CONF_PS),
2357 smps_modes[conf->smps_mode]);
2359 wiphy_dbg(hw->wiphy,
2360 "%s (freq=0 idle=%d ps=%d smps=%s)\n",
2362 !!(conf->flags & IEEE80211_CONF_IDLE),
2363 !!(conf->flags & IEEE80211_CONF_PS),
2364 smps_modes[conf->smps_mode]);
2366 data->idle = !!(conf->flags & IEEE80211_CONF_IDLE);
2368 WARN_ON(conf->chandef.chan && data->use_chanctx);
2370 mutex_lock(&data->mutex);
2371 if (data->scanning && conf->chandef.chan) {
2372 for (idx = 0; idx < ARRAY_SIZE(data->survey_data); idx++) {
2373 if (data->survey_data[idx].channel == data->channel) {
2374 data->survey_data[idx].start =
2375 data->survey_data[idx].next_start;
2376 data->survey_data[idx].end = jiffies;
2381 data->channel = conf->chandef.chan;
2382 data->bw = conf->chandef.width;
2384 for (idx = 0; idx < ARRAY_SIZE(data->survey_data); idx++) {
2385 if (data->survey_data[idx].channel &&
2386 data->survey_data[idx].channel != data->channel)
2388 data->survey_data[idx].channel = data->channel;
2389 data->survey_data[idx].next_start = jiffies;
2393 data->channel = conf->chandef.chan;
2394 data->bw = conf->chandef.width;
2396 mutex_unlock(&data->mutex);
2398 for (idx = 0; idx < ARRAY_SIZE(data->link_data); idx++) {
2399 struct mac80211_hwsim_link_data *link_data =
2400 &data->link_data[idx];
2402 if (!data->started || !link_data->beacon_int) {
2403 hrtimer_cancel(&link_data->beacon_timer);
2404 } else if (!hrtimer_is_queued(&link_data->beacon_timer)) {
2405 u64 tsf = mac80211_hwsim_get_tsf(hw, NULL);
2406 u32 bcn_int = link_data->beacon_int;
2407 u64 until_tbtt = bcn_int - do_div(tsf, bcn_int);
2409 hrtimer_start(&link_data->beacon_timer,
2410 ns_to_ktime(until_tbtt * NSEC_PER_USEC),
2411 HRTIMER_MODE_REL_SOFT);
2419 static void mac80211_hwsim_configure_filter(struct ieee80211_hw *hw,
2420 unsigned int changed_flags,
2421 unsigned int *total_flags,u64 multicast)
2423 struct mac80211_hwsim_data *data = hw->priv;
2425 wiphy_dbg(hw->wiphy, "%s\n", __func__);
2427 data->rx_filter = 0;
2428 if (*total_flags & FIF_ALLMULTI)
2429 data->rx_filter |= FIF_ALLMULTI;
2430 if (*total_flags & FIF_MCAST_ACTION)
2431 data->rx_filter |= FIF_MCAST_ACTION;
2433 *total_flags = data->rx_filter;
2436 static void mac80211_hwsim_bcn_en_iter(void *data, u8 *mac,
2437 struct ieee80211_vif *vif)
2439 unsigned int *count = data;
2440 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
2446 static void mac80211_hwsim_vif_info_changed(struct ieee80211_hw *hw,
2447 struct ieee80211_vif *vif,
2450 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
2452 hwsim_check_magic(vif);
2454 wiphy_dbg(hw->wiphy, "%s(changed=0x%llx vif->addr=%pM)\n",
2455 __func__, changed, vif->addr);
2457 if (changed & BSS_CHANGED_ASSOC) {
2458 wiphy_dbg(hw->wiphy, " ASSOC: assoc=%d aid=%d\n",
2459 vif->cfg.assoc, vif->cfg.aid);
2460 vp->assoc = vif->cfg.assoc;
2461 vp->aid = vif->cfg.aid;
2464 if (vif->type == NL80211_IFTYPE_STATION &&
2465 changed & BSS_CHANGED_MLD_VALID_LINKS) {
2466 u16 usable_links = ieee80211_vif_usable_links(vif);
2468 if (vif->active_links != usable_links)
2469 ieee80211_set_active_links_async(vif, usable_links);
2473 static void mac80211_hwsim_link_info_changed(struct ieee80211_hw *hw,
2474 struct ieee80211_vif *vif,
2475 struct ieee80211_bss_conf *info,
2478 struct hwsim_vif_priv *vp = (void *)vif->drv_priv;
2479 struct mac80211_hwsim_data *data = hw->priv;
2480 unsigned int link_id = info->link_id;
2481 struct mac80211_hwsim_link_data *link_data = &data->link_data[link_id];
2483 hwsim_check_magic(vif);
2485 wiphy_dbg(hw->wiphy, "%s(changed=0x%llx vif->addr=%pM, link id %u)\n",
2486 __func__, (unsigned long long)changed, vif->addr, link_id);
2488 if (changed & BSS_CHANGED_BSSID) {
2489 wiphy_dbg(hw->wiphy, "%s: BSSID changed: %pM\n",
2490 __func__, info->bssid);
2491 memcpy(vp->bssid, info->bssid, ETH_ALEN);
2494 if (changed & BSS_CHANGED_BEACON_ENABLED) {
2495 wiphy_dbg(hw->wiphy, " BCN EN: %d (BI=%u)\n",
2496 info->enable_beacon, info->beacon_int);
2497 vp->bcn_en = info->enable_beacon;
2498 if (data->started &&
2499 !hrtimer_is_queued(&link_data->beacon_timer) &&
2500 info->enable_beacon) {
2501 u64 tsf, until_tbtt;
2503 link_data->beacon_int = info->beacon_int * 1024;
2504 tsf = mac80211_hwsim_get_tsf(hw, vif);
2505 bcn_int = link_data->beacon_int;
2506 until_tbtt = bcn_int - do_div(tsf, bcn_int);
2508 hrtimer_start(&link_data->beacon_timer,
2509 ns_to_ktime(until_tbtt * NSEC_PER_USEC),
2510 HRTIMER_MODE_REL_SOFT);
2511 } else if (!info->enable_beacon) {
2512 unsigned int count = 0;
2513 ieee80211_iterate_active_interfaces_atomic(
2514 data->hw, IEEE80211_IFACE_ITER_NORMAL,
2515 mac80211_hwsim_bcn_en_iter, &count);
2516 wiphy_dbg(hw->wiphy, " beaconing vifs remaining: %u",
2519 hrtimer_cancel(&link_data->beacon_timer);
2520 link_data->beacon_int = 0;
2525 if (changed & BSS_CHANGED_ERP_CTS_PROT) {
2526 wiphy_dbg(hw->wiphy, " ERP_CTS_PROT: %d\n",
2527 info->use_cts_prot);
2530 if (changed & BSS_CHANGED_ERP_PREAMBLE) {
2531 wiphy_dbg(hw->wiphy, " ERP_PREAMBLE: %d\n",
2532 info->use_short_preamble);
2535 if (changed & BSS_CHANGED_ERP_SLOT) {
2536 wiphy_dbg(hw->wiphy, " ERP_SLOT: %d\n", info->use_short_slot);
2539 if (changed & BSS_CHANGED_HT) {
2540 wiphy_dbg(hw->wiphy, " HT: op_mode=0x%x\n",
2541 info->ht_operation_mode);
2544 if (changed & BSS_CHANGED_BASIC_RATES) {
2545 wiphy_dbg(hw->wiphy, " BASIC_RATES: 0x%llx\n",
2546 (unsigned long long) info->basic_rates);
2549 if (changed & BSS_CHANGED_TXPOWER)
2550 wiphy_dbg(hw->wiphy, " TX Power: %d dBm\n", info->txpower);
2554 mac80211_hwsim_sta_rc_update(struct ieee80211_hw *hw,
2555 struct ieee80211_vif *vif,
2556 struct ieee80211_sta *sta,
2559 struct mac80211_hwsim_data *data = hw->priv;
2565 link_id < ARRAY_SIZE(vif->link_conf);
2567 enum nl80211_chan_width confbw = NL80211_CHAN_WIDTH_20_NOHT;
2568 struct ieee80211_bss_conf *vif_conf;
2569 struct ieee80211_link_sta *link_sta;
2571 link_sta = rcu_dereference(sta->link[link_id]);
2576 switch (link_sta->bandwidth) {
2577 #define C(_bw) case IEEE80211_STA_RX_BW_##_bw: bw = _bw; break
2586 if (!data->use_chanctx) {
2589 struct ieee80211_chanctx_conf *chanctx_conf;
2591 vif_conf = rcu_dereference(vif->link_conf[link_id]);
2592 if (WARN_ON(!vif_conf))
2595 chanctx_conf = rcu_dereference(vif_conf->chanctx_conf);
2597 if (!WARN_ON(!chanctx_conf))
2598 confbw = chanctx_conf->def.width;
2601 WARN(bw > hwsim_get_chanwidth(confbw),
2602 "intf %pM [link=%d]: bad STA %pM bandwidth %d MHz (%d) > channel config %d MHz (%d)\n",
2603 vif->addr, link_id, sta->addr, bw, sta->deflink.bandwidth,
2604 hwsim_get_chanwidth(data->bw), data->bw);
2613 static int mac80211_hwsim_sta_add(struct ieee80211_hw *hw,
2614 struct ieee80211_vif *vif,
2615 struct ieee80211_sta *sta)
2617 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
2619 hwsim_check_magic(vif);
2620 hwsim_set_sta_magic(sta);
2621 mac80211_hwsim_sta_rc_update(hw, vif, sta, 0);
2623 if (sta->valid_links) {
2624 WARN(hweight16(sta->valid_links) > 1,
2625 "expect to add STA with single link, have 0x%x\n",
2627 sp->active_links_rx = sta->valid_links;
2633 static int mac80211_hwsim_sta_remove(struct ieee80211_hw *hw,
2634 struct ieee80211_vif *vif,
2635 struct ieee80211_sta *sta)
2637 hwsim_check_magic(vif);
2638 hwsim_clear_sta_magic(sta);
2643 static int mac80211_hwsim_sta_state(struct ieee80211_hw *hw,
2644 struct ieee80211_vif *vif,
2645 struct ieee80211_sta *sta,
2646 enum ieee80211_sta_state old_state,
2647 enum ieee80211_sta_state new_state)
2649 if (new_state == IEEE80211_STA_NOTEXIST)
2650 return mac80211_hwsim_sta_remove(hw, vif, sta);
2652 if (old_state == IEEE80211_STA_NOTEXIST)
2653 return mac80211_hwsim_sta_add(hw, vif, sta);
2656 * when client is authorized (AP station marked as such),
2659 if (vif->type == NL80211_IFTYPE_STATION &&
2660 new_state == IEEE80211_STA_AUTHORIZED && !sta->tdls)
2661 ieee80211_set_active_links_async(vif,
2662 ieee80211_vif_usable_links(vif));
2667 static void mac80211_hwsim_sta_notify(struct ieee80211_hw *hw,
2668 struct ieee80211_vif *vif,
2669 enum sta_notify_cmd cmd,
2670 struct ieee80211_sta *sta)
2672 hwsim_check_magic(vif);
2675 case STA_NOTIFY_SLEEP:
2676 case STA_NOTIFY_AWAKE:
2677 /* TODO: make good use of these flags */
2680 WARN(1, "Invalid sta notify: %d\n", cmd);
2685 static int mac80211_hwsim_set_tim(struct ieee80211_hw *hw,
2686 struct ieee80211_sta *sta,
2689 hwsim_check_sta_magic(sta);
2693 static int mac80211_hwsim_conf_tx(struct ieee80211_hw *hw,
2694 struct ieee80211_vif *vif,
2695 unsigned int link_id, u16 queue,
2696 const struct ieee80211_tx_queue_params *params)
2698 wiphy_dbg(hw->wiphy,
2699 "%s (queue=%d txop=%d cw_min=%d cw_max=%d aifs=%d)\n",
2701 params->txop, params->cw_min,
2702 params->cw_max, params->aifs);
2706 static int mac80211_hwsim_get_survey(struct ieee80211_hw *hw, int idx,
2707 struct survey_info *survey)
2709 struct mac80211_hwsim_data *hwsim = hw->priv;
2711 if (idx < 0 || idx >= ARRAY_SIZE(hwsim->survey_data))
2714 mutex_lock(&hwsim->mutex);
2715 survey->channel = hwsim->survey_data[idx].channel;
2716 if (!survey->channel) {
2717 mutex_unlock(&hwsim->mutex);
2722 * Magically conjured dummy values --- this is only ok for simulated hardware.
2724 * A real driver which cannot determine real values noise MUST NOT
2725 * report any, especially not a magically conjured ones :-)
2727 survey->filled = SURVEY_INFO_NOISE_DBM |
2729 SURVEY_INFO_TIME_BUSY;
2730 survey->noise = -92;
2732 jiffies_to_msecs(hwsim->survey_data[idx].end -
2733 hwsim->survey_data[idx].start);
2734 /* report 12.5% of channel time is used */
2735 survey->time_busy = survey->time/8;
2736 mutex_unlock(&hwsim->mutex);
2741 #ifdef CONFIG_NL80211_TESTMODE
2743 * This section contains example code for using netlink
2744 * attributes with the testmode command in nl80211.
2747 /* These enums need to be kept in sync with userspace */
2748 enum hwsim_testmode_attr {
2749 __HWSIM_TM_ATTR_INVALID = 0,
2750 HWSIM_TM_ATTR_CMD = 1,
2751 HWSIM_TM_ATTR_PS = 2,
2754 __HWSIM_TM_ATTR_AFTER_LAST,
2755 HWSIM_TM_ATTR_MAX = __HWSIM_TM_ATTR_AFTER_LAST - 1
2758 enum hwsim_testmode_cmd {
2759 HWSIM_TM_CMD_SET_PS = 0,
2760 HWSIM_TM_CMD_GET_PS = 1,
2761 HWSIM_TM_CMD_STOP_QUEUES = 2,
2762 HWSIM_TM_CMD_WAKE_QUEUES = 3,
2765 static const struct nla_policy hwsim_testmode_policy[HWSIM_TM_ATTR_MAX + 1] = {
2766 [HWSIM_TM_ATTR_CMD] = { .type = NLA_U32 },
2767 [HWSIM_TM_ATTR_PS] = { .type = NLA_U32 },
2770 static int mac80211_hwsim_testmode_cmd(struct ieee80211_hw *hw,
2771 struct ieee80211_vif *vif,
2772 void *data, int len)
2774 struct mac80211_hwsim_data *hwsim = hw->priv;
2775 struct nlattr *tb[HWSIM_TM_ATTR_MAX + 1];
2776 struct sk_buff *skb;
2779 err = nla_parse_deprecated(tb, HWSIM_TM_ATTR_MAX, data, len,
2780 hwsim_testmode_policy, NULL);
2784 if (!tb[HWSIM_TM_ATTR_CMD])
2787 switch (nla_get_u32(tb[HWSIM_TM_ATTR_CMD])) {
2788 case HWSIM_TM_CMD_SET_PS:
2789 if (!tb[HWSIM_TM_ATTR_PS])
2791 ps = nla_get_u32(tb[HWSIM_TM_ATTR_PS]);
2792 return hwsim_fops_ps_write(hwsim, ps);
2793 case HWSIM_TM_CMD_GET_PS:
2794 skb = cfg80211_testmode_alloc_reply_skb(hw->wiphy,
2795 nla_total_size(sizeof(u32)));
2798 if (nla_put_u32(skb, HWSIM_TM_ATTR_PS, hwsim->ps))
2799 goto nla_put_failure;
2800 return cfg80211_testmode_reply(skb);
2801 case HWSIM_TM_CMD_STOP_QUEUES:
2802 ieee80211_stop_queues(hw);
2804 case HWSIM_TM_CMD_WAKE_QUEUES:
2805 ieee80211_wake_queues(hw);
2817 static int mac80211_hwsim_ampdu_action(struct ieee80211_hw *hw,
2818 struct ieee80211_vif *vif,
2819 struct ieee80211_ampdu_params *params)
2821 struct ieee80211_sta *sta = params->sta;
2822 enum ieee80211_ampdu_mlme_action action = params->action;
2823 u16 tid = params->tid;
2826 case IEEE80211_AMPDU_TX_START:
2827 return IEEE80211_AMPDU_TX_START_IMMEDIATE;
2828 case IEEE80211_AMPDU_TX_STOP_CONT:
2829 case IEEE80211_AMPDU_TX_STOP_FLUSH:
2830 case IEEE80211_AMPDU_TX_STOP_FLUSH_CONT:
2831 ieee80211_stop_tx_ba_cb_irqsafe(vif, sta->addr, tid);
2833 case IEEE80211_AMPDU_TX_OPERATIONAL:
2835 case IEEE80211_AMPDU_RX_START:
2836 case IEEE80211_AMPDU_RX_STOP:
2845 static void mac80211_hwsim_flush(struct ieee80211_hw *hw,
2846 struct ieee80211_vif *vif,
2847 u32 queues, bool drop)
2849 /* Not implemented, queues only on kernel side */
2852 static void hw_scan_work(struct work_struct *work)
2854 struct mac80211_hwsim_data *hwsim =
2855 container_of(work, struct mac80211_hwsim_data, hw_scan.work);
2856 struct cfg80211_scan_request *req = hwsim->hw_scan_request;
2859 mutex_lock(&hwsim->mutex);
2860 if (hwsim->scan_chan_idx >= req->n_channels) {
2861 struct cfg80211_scan_info info = {
2865 wiphy_dbg(hwsim->hw->wiphy, "hw scan complete\n");
2866 ieee80211_scan_completed(hwsim->hw, &info);
2867 hwsim->hw_scan_request = NULL;
2868 hwsim->hw_scan_vif = NULL;
2869 hwsim->tmp_chan = NULL;
2870 mutex_unlock(&hwsim->mutex);
2871 mac80211_hwsim_config_mac_nl(hwsim->hw, hwsim->scan_addr,
2876 wiphy_dbg(hwsim->hw->wiphy, "hw scan %d MHz\n",
2877 req->channels[hwsim->scan_chan_idx]->center_freq);
2879 hwsim->tmp_chan = req->channels[hwsim->scan_chan_idx];
2880 if (hwsim->tmp_chan->flags & (IEEE80211_CHAN_NO_IR |
2881 IEEE80211_CHAN_RADAR) ||
2887 for (i = 0; i < req->n_ssids; i++) {
2888 struct sk_buff *probe;
2889 struct ieee80211_mgmt *mgmt;
2891 probe = ieee80211_probereq_get(hwsim->hw,
2894 req->ssids[i].ssid_len,
2899 mgmt = (struct ieee80211_mgmt *) probe->data;
2900 memcpy(mgmt->da, req->bssid, ETH_ALEN);
2901 memcpy(mgmt->bssid, req->bssid, ETH_ALEN);
2904 skb_put_data(probe, req->ie, req->ie_len);
2907 if (!ieee80211_tx_prepare_skb(hwsim->hw,
2910 hwsim->tmp_chan->band,
2918 mac80211_hwsim_tx_frame(hwsim->hw, probe,
2924 ieee80211_queue_delayed_work(hwsim->hw, &hwsim->hw_scan,
2925 msecs_to_jiffies(dwell));
2926 hwsim->survey_data[hwsim->scan_chan_idx].channel = hwsim->tmp_chan;
2927 hwsim->survey_data[hwsim->scan_chan_idx].start = jiffies;
2928 hwsim->survey_data[hwsim->scan_chan_idx].end =
2929 jiffies + msecs_to_jiffies(dwell);
2930 hwsim->scan_chan_idx++;
2931 mutex_unlock(&hwsim->mutex);
2934 static int mac80211_hwsim_hw_scan(struct ieee80211_hw *hw,
2935 struct ieee80211_vif *vif,
2936 struct ieee80211_scan_request *hw_req)
2938 struct mac80211_hwsim_data *hwsim = hw->priv;
2939 struct cfg80211_scan_request *req = &hw_req->req;
2941 mutex_lock(&hwsim->mutex);
2942 if (WARN_ON(hwsim->tmp_chan || hwsim->hw_scan_request)) {
2943 mutex_unlock(&hwsim->mutex);
2946 hwsim->hw_scan_request = req;
2947 hwsim->hw_scan_vif = vif;
2948 hwsim->scan_chan_idx = 0;
2949 if (req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR)
2950 get_random_mask_addr(hwsim->scan_addr,
2951 hw_req->req.mac_addr,
2952 hw_req->req.mac_addr_mask);
2954 memcpy(hwsim->scan_addr, vif->addr, ETH_ALEN);
2955 memset(hwsim->survey_data, 0, sizeof(hwsim->survey_data));
2956 mutex_unlock(&hwsim->mutex);
2958 mac80211_hwsim_config_mac_nl(hw, hwsim->scan_addr, true);
2959 wiphy_dbg(hw->wiphy, "hwsim hw_scan request\n");
2961 ieee80211_queue_delayed_work(hwsim->hw, &hwsim->hw_scan, 0);
2966 static void mac80211_hwsim_cancel_hw_scan(struct ieee80211_hw *hw,
2967 struct ieee80211_vif *vif)
2969 struct mac80211_hwsim_data *hwsim = hw->priv;
2970 struct cfg80211_scan_info info = {
2974 wiphy_dbg(hw->wiphy, "hwsim cancel_hw_scan\n");
2976 cancel_delayed_work_sync(&hwsim->hw_scan);
2978 mutex_lock(&hwsim->mutex);
2979 ieee80211_scan_completed(hwsim->hw, &info);
2980 hwsim->tmp_chan = NULL;
2981 hwsim->hw_scan_request = NULL;
2982 hwsim->hw_scan_vif = NULL;
2983 mutex_unlock(&hwsim->mutex);
2986 static void mac80211_hwsim_sw_scan(struct ieee80211_hw *hw,
2987 struct ieee80211_vif *vif,
2990 struct mac80211_hwsim_data *hwsim = hw->priv;
2992 mutex_lock(&hwsim->mutex);
2994 if (hwsim->scanning) {
2995 pr_debug("two hwsim sw_scans detected!\n");
2999 pr_debug("hwsim sw_scan request, prepping stuff\n");
3001 memcpy(hwsim->scan_addr, mac_addr, ETH_ALEN);
3002 mac80211_hwsim_config_mac_nl(hw, hwsim->scan_addr, true);
3003 hwsim->scanning = true;
3004 memset(hwsim->survey_data, 0, sizeof(hwsim->survey_data));
3007 mutex_unlock(&hwsim->mutex);
3010 static void mac80211_hwsim_sw_scan_complete(struct ieee80211_hw *hw,
3011 struct ieee80211_vif *vif)
3013 struct mac80211_hwsim_data *hwsim = hw->priv;
3015 mutex_lock(&hwsim->mutex);
3017 pr_debug("hwsim sw_scan_complete\n");
3018 hwsim->scanning = false;
3019 mac80211_hwsim_config_mac_nl(hw, hwsim->scan_addr, false);
3020 eth_zero_addr(hwsim->scan_addr);
3022 mutex_unlock(&hwsim->mutex);
3025 static void hw_roc_start(struct work_struct *work)
3027 struct mac80211_hwsim_data *hwsim =
3028 container_of(work, struct mac80211_hwsim_data, roc_start.work);
3030 mutex_lock(&hwsim->mutex);
3032 wiphy_dbg(hwsim->hw->wiphy, "hwsim ROC begins\n");
3033 hwsim->tmp_chan = hwsim->roc_chan;
3034 ieee80211_ready_on_channel(hwsim->hw);
3036 ieee80211_queue_delayed_work(hwsim->hw, &hwsim->roc_done,
3037 msecs_to_jiffies(hwsim->roc_duration));
3039 mutex_unlock(&hwsim->mutex);
3042 static void hw_roc_done(struct work_struct *work)
3044 struct mac80211_hwsim_data *hwsim =
3045 container_of(work, struct mac80211_hwsim_data, roc_done.work);
3047 mutex_lock(&hwsim->mutex);
3048 ieee80211_remain_on_channel_expired(hwsim->hw);
3049 hwsim->tmp_chan = NULL;
3050 mutex_unlock(&hwsim->mutex);
3052 wiphy_dbg(hwsim->hw->wiphy, "hwsim ROC expired\n");
3055 static int mac80211_hwsim_roc(struct ieee80211_hw *hw,
3056 struct ieee80211_vif *vif,
3057 struct ieee80211_channel *chan,
3059 enum ieee80211_roc_type type)
3061 struct mac80211_hwsim_data *hwsim = hw->priv;
3063 mutex_lock(&hwsim->mutex);
3064 if (WARN_ON(hwsim->tmp_chan || hwsim->hw_scan_request)) {
3065 mutex_unlock(&hwsim->mutex);
3069 hwsim->roc_chan = chan;
3070 hwsim->roc_duration = duration;
3071 mutex_unlock(&hwsim->mutex);
3073 wiphy_dbg(hw->wiphy, "hwsim ROC (%d MHz, %d ms)\n",
3074 chan->center_freq, duration);
3075 ieee80211_queue_delayed_work(hw, &hwsim->roc_start, HZ/50);
3080 static int mac80211_hwsim_croc(struct ieee80211_hw *hw,
3081 struct ieee80211_vif *vif)
3083 struct mac80211_hwsim_data *hwsim = hw->priv;
3085 cancel_delayed_work_sync(&hwsim->roc_start);
3086 cancel_delayed_work_sync(&hwsim->roc_done);
3088 mutex_lock(&hwsim->mutex);
3089 hwsim->tmp_chan = NULL;
3090 mutex_unlock(&hwsim->mutex);
3092 wiphy_dbg(hw->wiphy, "hwsim ROC canceled\n");
3097 static int mac80211_hwsim_add_chanctx(struct ieee80211_hw *hw,
3098 struct ieee80211_chanctx_conf *ctx)
3100 hwsim_set_chanctx_magic(ctx);
3101 wiphy_dbg(hw->wiphy,
3102 "add channel context control: %d MHz/width: %d/cfreqs:%d/%d MHz\n",
3103 ctx->def.chan->center_freq, ctx->def.width,
3104 ctx->def.center_freq1, ctx->def.center_freq2);
3108 static void mac80211_hwsim_remove_chanctx(struct ieee80211_hw *hw,
3109 struct ieee80211_chanctx_conf *ctx)
3111 wiphy_dbg(hw->wiphy,
3112 "remove channel context control: %d MHz/width: %d/cfreqs:%d/%d MHz\n",
3113 ctx->def.chan->center_freq, ctx->def.width,
3114 ctx->def.center_freq1, ctx->def.center_freq2);
3115 hwsim_check_chanctx_magic(ctx);
3116 hwsim_clear_chanctx_magic(ctx);
3119 static void mac80211_hwsim_change_chanctx(struct ieee80211_hw *hw,
3120 struct ieee80211_chanctx_conf *ctx,
3123 hwsim_check_chanctx_magic(ctx);
3124 wiphy_dbg(hw->wiphy,
3125 "change channel context control: %d MHz/width: %d/cfreqs:%d/%d MHz\n",
3126 ctx->def.chan->center_freq, ctx->def.width,
3127 ctx->def.center_freq1, ctx->def.center_freq2);
3130 static int mac80211_hwsim_assign_vif_chanctx(struct ieee80211_hw *hw,
3131 struct ieee80211_vif *vif,
3132 struct ieee80211_bss_conf *link_conf,
3133 struct ieee80211_chanctx_conf *ctx)
3135 hwsim_check_magic(vif);
3136 hwsim_check_chanctx_magic(ctx);
3138 /* if we activate a link while already associated wake it up */
3139 if (vif->type == NL80211_IFTYPE_STATION && vif->cfg.assoc) {
3140 struct sk_buff *skb;
3142 skb = ieee80211_nullfunc_get(hw, vif, link_conf->link_id, true);
3145 mac80211_hwsim_tx_frame(hw, skb, ctx->def.chan);
3153 static void mac80211_hwsim_unassign_vif_chanctx(struct ieee80211_hw *hw,
3154 struct ieee80211_vif *vif,
3155 struct ieee80211_bss_conf *link_conf,
3156 struct ieee80211_chanctx_conf *ctx)
3158 hwsim_check_magic(vif);
3159 hwsim_check_chanctx_magic(ctx);
3161 /* if we deactivate a link while associated suspend it first */
3162 if (vif->type == NL80211_IFTYPE_STATION && vif->cfg.assoc) {
3163 struct sk_buff *skb;
3165 skb = ieee80211_nullfunc_get(hw, vif, link_conf->link_id, true);
3167 struct ieee80211_hdr *hdr = (void *)skb->data;
3169 hdr->frame_control |= cpu_to_le16(IEEE80211_FCTL_PM);
3172 mac80211_hwsim_tx_frame(hw, skb, ctx->def.chan);
3178 static const char mac80211_hwsim_gstrings_stats[][ETH_GSTRING_LEN] = {
3189 #define MAC80211_HWSIM_SSTATS_LEN ARRAY_SIZE(mac80211_hwsim_gstrings_stats)
3191 static void mac80211_hwsim_get_et_strings(struct ieee80211_hw *hw,
3192 struct ieee80211_vif *vif,
3195 if (sset == ETH_SS_STATS)
3196 memcpy(data, mac80211_hwsim_gstrings_stats,
3197 sizeof(mac80211_hwsim_gstrings_stats));
3200 static int mac80211_hwsim_get_et_sset_count(struct ieee80211_hw *hw,
3201 struct ieee80211_vif *vif, int sset)
3203 if (sset == ETH_SS_STATS)
3204 return MAC80211_HWSIM_SSTATS_LEN;
3208 static void mac80211_hwsim_get_et_stats(struct ieee80211_hw *hw,
3209 struct ieee80211_vif *vif,
3210 struct ethtool_stats *stats, u64 *data)
3212 struct mac80211_hwsim_data *ar = hw->priv;
3215 data[i++] = ar->tx_pkts;
3216 data[i++] = ar->tx_bytes;
3217 data[i++] = ar->rx_pkts;
3218 data[i++] = ar->rx_bytes;
3219 data[i++] = ar->tx_dropped;
3220 data[i++] = ar->tx_failed;
3222 data[i++] = ar->group;
3224 WARN_ON(i != MAC80211_HWSIM_SSTATS_LEN);
3227 static int mac80211_hwsim_tx_last_beacon(struct ieee80211_hw *hw)
3232 static int mac80211_hwsim_set_rts_threshold(struct ieee80211_hw *hw, u32 value)
3237 static int mac80211_hwsim_change_vif_links(struct ieee80211_hw *hw,
3238 struct ieee80211_vif *vif,
3239 u16 old_links, u16 new_links,
3240 struct ieee80211_bss_conf *old[IEEE80211_MLD_MAX_NUM_LINKS])
3242 unsigned long rem = old_links & ~new_links;
3243 unsigned long add = new_links & ~old_links;
3251 for_each_set_bit(i, &rem, IEEE80211_MLD_MAX_NUM_LINKS)
3252 mac80211_hwsim_config_mac_nl(hw, old[i]->addr, false);
3254 for_each_set_bit(i, &add, IEEE80211_MLD_MAX_NUM_LINKS) {
3255 struct ieee80211_bss_conf *link_conf;
3257 link_conf = link_conf_dereference_protected(vif, i);
3258 if (WARN_ON(!link_conf))
3261 mac80211_hwsim_config_mac_nl(hw, link_conf->addr, true);
3267 static int mac80211_hwsim_change_sta_links(struct ieee80211_hw *hw,
3268 struct ieee80211_vif *vif,
3269 struct ieee80211_sta *sta,
3270 u16 old_links, u16 new_links)
3272 struct hwsim_sta_priv *sp = (void *)sta->drv_priv;
3274 hwsim_check_sta_magic(sta);
3276 if (vif->type == NL80211_IFTYPE_STATION)
3277 sp->active_links_rx = new_links;
3282 static int mac80211_hwsim_send_pmsr_ftm_request_peer(struct sk_buff *msg,
3283 struct cfg80211_pmsr_ftm_request_peer *request)
3287 if (!request->requested)
3290 ftm = nla_nest_start(msg, NL80211_PMSR_TYPE_FTM);
3294 if (nla_put_u32(msg, NL80211_PMSR_FTM_REQ_ATTR_PREAMBLE, request->preamble))
3297 if (nla_put_u16(msg, NL80211_PMSR_FTM_REQ_ATTR_BURST_PERIOD, request->burst_period))
3300 if (request->asap && nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_ASAP))
3303 if (request->request_lci && nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_REQUEST_LCI))
3306 if (request->request_civicloc &&
3307 nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_REQUEST_CIVICLOC))
3310 if (request->trigger_based && nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_TRIGGER_BASED))
3313 if (request->non_trigger_based &&
3314 nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_NON_TRIGGER_BASED))
3317 if (request->lmr_feedback && nla_put_flag(msg, NL80211_PMSR_FTM_REQ_ATTR_LMR_FEEDBACK))
3320 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_NUM_BURSTS_EXP, request->num_bursts_exp))
3323 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION, request->burst_duration))
3326 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_FTMS_PER_BURST, request->ftms_per_burst))
3329 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_NUM_FTMR_RETRIES, request->ftmr_retries))
3332 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_BURST_DURATION, request->burst_duration))
3335 if (nla_put_u8(msg, NL80211_PMSR_FTM_REQ_ATTR_BSS_COLOR, request->bss_color))
3338 nla_nest_end(msg, ftm);
3343 static int mac80211_hwsim_send_pmsr_request_peer(struct sk_buff *msg,
3344 struct cfg80211_pmsr_request_peer *request)
3346 struct nlattr *peer, *chandef, *req, *data;
3349 peer = nla_nest_start(msg, NL80211_PMSR_ATTR_PEERS);
3353 if (nla_put(msg, NL80211_PMSR_PEER_ATTR_ADDR, ETH_ALEN,
3357 chandef = nla_nest_start(msg, NL80211_PMSR_PEER_ATTR_CHAN);
3361 err = nl80211_send_chandef(msg, &request->chandef);
3365 nla_nest_end(msg, chandef);
3367 req = nla_nest_start(msg, NL80211_PMSR_PEER_ATTR_REQ);
3371 if (request->report_ap_tsf && nla_put_flag(msg, NL80211_PMSR_REQ_ATTR_GET_AP_TSF))
3374 data = nla_nest_start(msg, NL80211_PMSR_REQ_ATTR_DATA);
3378 err = mac80211_hwsim_send_pmsr_ftm_request_peer(msg, &request->ftm);
3382 nla_nest_end(msg, data);
3383 nla_nest_end(msg, req);
3384 nla_nest_end(msg, peer);
3389 static int mac80211_hwsim_send_pmsr_request(struct sk_buff *msg,
3390 struct cfg80211_pmsr_request *request)
3392 struct nlattr *pmsr;
3395 pmsr = nla_nest_start(msg, NL80211_ATTR_PEER_MEASUREMENTS);
3399 if (nla_put_u32(msg, NL80211_ATTR_TIMEOUT, request->timeout))
3402 if (!is_zero_ether_addr(request->mac_addr)) {
3403 if (nla_put(msg, NL80211_ATTR_MAC, ETH_ALEN, request->mac_addr))
3405 if (nla_put(msg, NL80211_ATTR_MAC_MASK, ETH_ALEN, request->mac_addr_mask))
3409 for (int i = 0; i < request->n_peers; i++) {
3410 err = mac80211_hwsim_send_pmsr_request_peer(msg, &request->peers[i]);
3415 nla_nest_end(msg, pmsr);
3420 static int mac80211_hwsim_start_pmsr(struct ieee80211_hw *hw,
3421 struct ieee80211_vif *vif,
3422 struct cfg80211_pmsr_request *request)
3424 struct mac80211_hwsim_data *data;
3425 struct sk_buff *skb = NULL;
3426 struct nlattr *pmsr;
3432 _portid = READ_ONCE(data->wmediumd);
3433 if (!_portid && !hwsim_virtio_enabled)
3436 mutex_lock(&data->mutex);
3438 if (data->pmsr_request) {
3443 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
3450 msg_head = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0, HWSIM_CMD_START_PMSR);
3452 if (nla_put(skb, HWSIM_ATTR_ADDR_TRANSMITTER,
3453 ETH_ALEN, data->addresses[1].addr)) {
3458 pmsr = nla_nest_start(skb, HWSIM_ATTR_PMSR_REQUEST);
3464 err = mac80211_hwsim_send_pmsr_request(skb, request);
3468 nla_nest_end(skb, pmsr);
3470 genlmsg_end(skb, msg_head);
3471 if (hwsim_virtio_enabled)
3472 hwsim_tx_virtio(data, skb);
3474 hwsim_unicast_netgroup(data, skb, _portid);
3476 data->pmsr_request = request;
3477 data->pmsr_request_wdev = ieee80211_vif_to_wdev(vif);
3483 mutex_unlock(&data->mutex);
3487 static void mac80211_hwsim_abort_pmsr(struct ieee80211_hw *hw,
3488 struct ieee80211_vif *vif,
3489 struct cfg80211_pmsr_request *request)
3491 struct mac80211_hwsim_data *data;
3492 struct sk_buff *skb = NULL;
3493 struct nlattr *pmsr;
3499 _portid = READ_ONCE(data->wmediumd);
3500 if (!_portid && !hwsim_virtio_enabled)
3503 mutex_lock(&data->mutex);
3505 if (data->pmsr_request != request) {
3510 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
3516 msg_head = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0, HWSIM_CMD_ABORT_PMSR);
3518 if (nla_put(skb, HWSIM_ATTR_ADDR_TRANSMITTER, ETH_ALEN, data->addresses[1].addr))
3521 pmsr = nla_nest_start(skb, HWSIM_ATTR_PMSR_REQUEST);
3527 err = mac80211_hwsim_send_pmsr_request(skb, request);
3531 err = nla_nest_end(skb, pmsr);
3535 genlmsg_end(skb, msg_head);
3536 if (hwsim_virtio_enabled)
3537 hwsim_tx_virtio(data, skb);
3539 hwsim_unicast_netgroup(data, skb, _portid);
3545 mutex_unlock(&data->mutex);
3548 static int mac80211_hwsim_parse_rate_info(struct nlattr *rateattr,
3549 struct rate_info *rate_info,
3550 struct genl_info *info)
3552 struct nlattr *tb[HWSIM_RATE_INFO_ATTR_MAX + 1];
3555 ret = nla_parse_nested(tb, HWSIM_RATE_INFO_ATTR_MAX,
3556 rateattr, hwsim_rate_info_policy, info->extack);
3560 if (tb[HWSIM_RATE_INFO_ATTR_FLAGS])
3561 rate_info->flags = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_FLAGS]);
3563 if (tb[HWSIM_RATE_INFO_ATTR_MCS])
3564 rate_info->mcs = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_MCS]);
3566 if (tb[HWSIM_RATE_INFO_ATTR_LEGACY])
3567 rate_info->legacy = nla_get_u16(tb[HWSIM_RATE_INFO_ATTR_LEGACY]);
3569 if (tb[HWSIM_RATE_INFO_ATTR_NSS])
3570 rate_info->nss = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_NSS]);
3572 if (tb[HWSIM_RATE_INFO_ATTR_BW])
3573 rate_info->bw = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_BW]);
3575 if (tb[HWSIM_RATE_INFO_ATTR_HE_GI])
3576 rate_info->he_gi = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_HE_GI]);
3578 if (tb[HWSIM_RATE_INFO_ATTR_HE_DCM])
3579 rate_info->he_dcm = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_HE_DCM]);
3581 if (tb[HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC])
3582 rate_info->he_ru_alloc =
3583 nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_HE_RU_ALLOC]);
3585 if (tb[HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH])
3586 rate_info->n_bonded_ch = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_N_BOUNDED_CH]);
3588 if (tb[HWSIM_RATE_INFO_ATTR_EHT_GI])
3589 rate_info->eht_gi = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_EHT_GI]);
3591 if (tb[HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC])
3592 rate_info->eht_ru_alloc = nla_get_u8(tb[HWSIM_RATE_INFO_ATTR_EHT_RU_ALLOC]);
3597 static int mac80211_hwsim_parse_ftm_result(struct nlattr *ftm,
3598 struct cfg80211_pmsr_ftm_result *result,
3599 struct genl_info *info)
3601 struct nlattr *tb[NL80211_PMSR_FTM_RESP_ATTR_MAX + 1];
3604 ret = nla_parse_nested(tb, NL80211_PMSR_FTM_RESP_ATTR_MAX,
3605 ftm, hwsim_ftm_result_policy, info->extack);
3609 if (tb[NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON])
3610 result->failure_reason = nla_get_u32(tb[NL80211_PMSR_FTM_RESP_ATTR_FAIL_REASON]);
3612 if (tb[NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX])
3613 result->burst_index = nla_get_u16(tb[NL80211_PMSR_FTM_RESP_ATTR_BURST_INDEX]);
3615 if (tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS]) {
3616 result->num_ftmr_attempts_valid = 1;
3617 result->num_ftmr_attempts =
3618 nla_get_u32(tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_ATTEMPTS]);
3621 if (tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES]) {
3622 result->num_ftmr_successes_valid = 1;
3623 result->num_ftmr_successes =
3624 nla_get_u32(tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_FTMR_SUCCESSES]);
3627 if (tb[NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME])
3628 result->busy_retry_time =
3629 nla_get_u8(tb[NL80211_PMSR_FTM_RESP_ATTR_BUSY_RETRY_TIME]);
3631 if (tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP])
3632 result->num_bursts_exp = nla_get_u8(tb[NL80211_PMSR_FTM_RESP_ATTR_NUM_BURSTS_EXP]);
3634 if (tb[NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION])
3635 result->burst_duration = nla_get_u8(tb[NL80211_PMSR_FTM_RESP_ATTR_BURST_DURATION]);
3637 if (tb[NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST])
3638 result->ftms_per_burst = nla_get_u8(tb[NL80211_PMSR_FTM_RESP_ATTR_FTMS_PER_BURST]);
3640 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG]) {
3641 result->rssi_avg_valid = 1;
3642 result->rssi_avg = nla_get_s32(tb[NL80211_PMSR_FTM_RESP_ATTR_RSSI_AVG]);
3644 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD]) {
3645 result->rssi_spread_valid = 1;
3646 result->rssi_spread =
3647 nla_get_s32(tb[NL80211_PMSR_FTM_RESP_ATTR_RSSI_SPREAD]);
3650 if (tb[NL80211_PMSR_FTM_RESP_ATTR_TX_RATE]) {
3651 result->tx_rate_valid = 1;
3652 ret = mac80211_hwsim_parse_rate_info(tb[NL80211_PMSR_FTM_RESP_ATTR_TX_RATE],
3653 &result->tx_rate, info);
3658 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RX_RATE]) {
3659 result->rx_rate_valid = 1;
3660 ret = mac80211_hwsim_parse_rate_info(tb[NL80211_PMSR_FTM_RESP_ATTR_RX_RATE],
3661 &result->rx_rate, info);
3666 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG]) {
3667 result->rtt_avg_valid = 1;
3669 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_AVG]);
3671 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE]) {
3672 result->rtt_variance_valid = 1;
3673 result->rtt_variance =
3674 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_VARIANCE]);
3676 if (tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD]) {
3677 result->rtt_spread_valid = 1;
3678 result->rtt_spread =
3679 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_RTT_SPREAD]);
3681 if (tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG]) {
3682 result->dist_avg_valid = 1;
3684 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_AVG]);
3686 if (tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE]) {
3687 result->dist_variance_valid = 1;
3688 result->dist_variance =
3689 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_VARIANCE]);
3691 if (tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD]) {
3692 result->dist_spread_valid = 1;
3693 result->dist_spread =
3694 nla_get_u64(tb[NL80211_PMSR_FTM_RESP_ATTR_DIST_SPREAD]);
3697 if (tb[NL80211_PMSR_FTM_RESP_ATTR_LCI]) {
3698 result->lci = nla_data(tb[NL80211_PMSR_FTM_RESP_ATTR_LCI]);
3699 result->lci_len = nla_len(tb[NL80211_PMSR_FTM_RESP_ATTR_LCI]);
3702 if (tb[NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC]) {
3703 result->civicloc = nla_data(tb[NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC]);
3704 result->civicloc_len = nla_len(tb[NL80211_PMSR_FTM_RESP_ATTR_CIVICLOC]);
3710 static int mac80211_hwsim_parse_pmsr_resp(struct nlattr *resp,
3711 struct cfg80211_pmsr_result *result,
3712 struct genl_info *info)
3714 struct nlattr *tb[NL80211_PMSR_RESP_ATTR_MAX + 1];
3715 struct nlattr *pmsr;
3719 ret = nla_parse_nested(tb, NL80211_PMSR_RESP_ATTR_MAX, resp, hwsim_pmsr_resp_policy,
3724 if (tb[NL80211_PMSR_RESP_ATTR_STATUS])
3725 result->status = nla_get_u32(tb[NL80211_PMSR_RESP_ATTR_STATUS]);
3727 if (tb[NL80211_PMSR_RESP_ATTR_HOST_TIME])
3728 result->host_time = nla_get_u64(tb[NL80211_PMSR_RESP_ATTR_HOST_TIME]);
3730 if (tb[NL80211_PMSR_RESP_ATTR_AP_TSF]) {
3731 result->ap_tsf_valid = 1;
3732 result->ap_tsf = nla_get_u64(tb[NL80211_PMSR_RESP_ATTR_AP_TSF]);
3735 result->final = !!tb[NL80211_PMSR_RESP_ATTR_FINAL];
3737 if (!tb[NL80211_PMSR_RESP_ATTR_DATA])
3740 nla_for_each_nested(pmsr, tb[NL80211_PMSR_RESP_ATTR_DATA], rem) {
3741 switch (nla_type(pmsr)) {
3742 case NL80211_PMSR_TYPE_FTM:
3743 result->type = NL80211_PMSR_TYPE_FTM;
3744 ret = mac80211_hwsim_parse_ftm_result(pmsr, &result->ftm, info);
3749 NL_SET_ERR_MSG_ATTR(info->extack, pmsr, "Unknown pmsr resp type");
3757 static int mac80211_hwsim_parse_pmsr_result(struct nlattr *peer,
3758 struct cfg80211_pmsr_result *result,
3759 struct genl_info *info)
3761 struct nlattr *tb[NL80211_PMSR_PEER_ATTR_MAX + 1];
3767 ret = nla_parse_nested(tb, NL80211_PMSR_PEER_ATTR_MAX, peer,
3768 hwsim_pmsr_peer_result_policy, info->extack);
3772 if (tb[NL80211_PMSR_PEER_ATTR_ADDR])
3773 memcpy(result->addr, nla_data(tb[NL80211_PMSR_PEER_ATTR_ADDR]),
3776 if (tb[NL80211_PMSR_PEER_ATTR_RESP]) {
3777 ret = mac80211_hwsim_parse_pmsr_resp(tb[NL80211_PMSR_PEER_ATTR_RESP], result, info);
3785 static int hwsim_pmsr_report_nl(struct sk_buff *msg, struct genl_info *info)
3787 struct mac80211_hwsim_data *data;
3788 struct nlattr *peers, *peer;
3789 struct nlattr *reqattr;
3794 if (!info->attrs[HWSIM_ATTR_ADDR_TRANSMITTER])
3797 src = nla_data(info->attrs[HWSIM_ATTR_ADDR_TRANSMITTER]);
3798 data = get_hwsim_data_ref_from_addr(src);
3802 mutex_lock(&data->mutex);
3803 if (!data->pmsr_request) {
3808 reqattr = info->attrs[HWSIM_ATTR_PMSR_RESULT];
3814 peers = nla_find_nested(reqattr, NL80211_PMSR_ATTR_PEERS);
3820 nla_for_each_nested(peer, peers, rem) {
3821 struct cfg80211_pmsr_result result;
3823 err = mac80211_hwsim_parse_pmsr_result(peer, &result, info);
3827 cfg80211_pmsr_report(data->pmsr_request_wdev,
3828 data->pmsr_request, &result, GFP_KERNEL);
3831 cfg80211_pmsr_complete(data->pmsr_request_wdev, data->pmsr_request, GFP_KERNEL);
3835 data->pmsr_request = NULL;
3836 data->pmsr_request_wdev = NULL;
3838 mutex_unlock(&data->mutex);
3842 #define HWSIM_COMMON_OPS \
3843 .tx = mac80211_hwsim_tx, \
3844 .wake_tx_queue = ieee80211_handle_wake_tx_queue, \
3845 .start = mac80211_hwsim_start, \
3846 .stop = mac80211_hwsim_stop, \
3847 .add_interface = mac80211_hwsim_add_interface, \
3848 .change_interface = mac80211_hwsim_change_interface, \
3849 .remove_interface = mac80211_hwsim_remove_interface, \
3850 .config = mac80211_hwsim_config, \
3851 .configure_filter = mac80211_hwsim_configure_filter, \
3852 .vif_cfg_changed = mac80211_hwsim_vif_info_changed, \
3853 .link_info_changed = mac80211_hwsim_link_info_changed, \
3854 .tx_last_beacon = mac80211_hwsim_tx_last_beacon, \
3855 .sta_notify = mac80211_hwsim_sta_notify, \
3856 .sta_rc_update = mac80211_hwsim_sta_rc_update, \
3857 .conf_tx = mac80211_hwsim_conf_tx, \
3858 .get_survey = mac80211_hwsim_get_survey, \
3859 CFG80211_TESTMODE_CMD(mac80211_hwsim_testmode_cmd) \
3860 .ampdu_action = mac80211_hwsim_ampdu_action, \
3861 .flush = mac80211_hwsim_flush, \
3862 .get_et_sset_count = mac80211_hwsim_get_et_sset_count, \
3863 .get_et_stats = mac80211_hwsim_get_et_stats, \
3864 .get_et_strings = mac80211_hwsim_get_et_strings, \
3865 .start_pmsr = mac80211_hwsim_start_pmsr, \
3866 .abort_pmsr = mac80211_hwsim_abort_pmsr,
3868 #define HWSIM_NON_MLO_OPS \
3869 .sta_add = mac80211_hwsim_sta_add, \
3870 .sta_remove = mac80211_hwsim_sta_remove, \
3871 .set_tim = mac80211_hwsim_set_tim, \
3872 .get_tsf = mac80211_hwsim_get_tsf, \
3873 .set_tsf = mac80211_hwsim_set_tsf,
3875 static const struct ieee80211_ops mac80211_hwsim_ops = {
3878 .sw_scan_start = mac80211_hwsim_sw_scan,
3879 .sw_scan_complete = mac80211_hwsim_sw_scan_complete,
3882 #define HWSIM_CHANCTX_OPS \
3883 .hw_scan = mac80211_hwsim_hw_scan, \
3884 .cancel_hw_scan = mac80211_hwsim_cancel_hw_scan, \
3885 .remain_on_channel = mac80211_hwsim_roc, \
3886 .cancel_remain_on_channel = mac80211_hwsim_croc, \
3887 .add_chanctx = mac80211_hwsim_add_chanctx, \
3888 .remove_chanctx = mac80211_hwsim_remove_chanctx, \
3889 .change_chanctx = mac80211_hwsim_change_chanctx, \
3890 .assign_vif_chanctx = mac80211_hwsim_assign_vif_chanctx,\
3891 .unassign_vif_chanctx = mac80211_hwsim_unassign_vif_chanctx,
3893 static const struct ieee80211_ops mac80211_hwsim_mchan_ops = {
3899 static const struct ieee80211_ops mac80211_hwsim_mlo_ops = {
3902 .set_rts_threshold = mac80211_hwsim_set_rts_threshold,
3903 .change_vif_links = mac80211_hwsim_change_vif_links,
3904 .change_sta_links = mac80211_hwsim_change_sta_links,
3905 .sta_state = mac80211_hwsim_sta_state,
3908 struct hwsim_new_radio_params {
3909 unsigned int channels;
3910 const char *reg_alpha2;
3911 const struct ieee80211_regdomain *regd;
3915 bool destroy_on_close;
3918 const u8 *perm_addr;
3923 const struct cfg80211_pmsr_capabilities *pmsr_capa;
3926 static void hwsim_mcast_config_msg(struct sk_buff *mcast_skb,
3927 struct genl_info *info)
3930 genl_notify(&hwsim_genl_family, mcast_skb, info,
3931 HWSIM_MCGRP_CONFIG, GFP_KERNEL);
3933 genlmsg_multicast(&hwsim_genl_family, mcast_skb, 0,
3934 HWSIM_MCGRP_CONFIG, GFP_KERNEL);
3937 static int append_radio_msg(struct sk_buff *skb, int id,
3938 struct hwsim_new_radio_params *param)
3942 ret = nla_put_u32(skb, HWSIM_ATTR_RADIO_ID, id);
3946 if (param->channels) {
3947 ret = nla_put_u32(skb, HWSIM_ATTR_CHANNELS, param->channels);
3952 if (param->reg_alpha2) {
3953 ret = nla_put(skb, HWSIM_ATTR_REG_HINT_ALPHA2, 2,
3962 for (i = 0; i < ARRAY_SIZE(hwsim_world_regdom_custom); i++) {
3963 if (hwsim_world_regdom_custom[i] != param->regd)
3966 ret = nla_put_u32(skb, HWSIM_ATTR_REG_CUSTOM_REG, i);
3973 if (param->reg_strict) {
3974 ret = nla_put_flag(skb, HWSIM_ATTR_REG_STRICT_REG);
3979 if (param->p2p_device) {
3980 ret = nla_put_flag(skb, HWSIM_ATTR_SUPPORT_P2P_DEVICE);
3985 if (param->use_chanctx) {
3986 ret = nla_put_flag(skb, HWSIM_ATTR_USE_CHANCTX);
3991 if (param->hwname) {
3992 ret = nla_put(skb, HWSIM_ATTR_RADIO_NAME,
3993 strlen(param->hwname), param->hwname);
4001 static void hwsim_mcast_new_radio(int id, struct genl_info *info,
4002 struct hwsim_new_radio_params *param)
4004 struct sk_buff *mcast_skb;
4007 mcast_skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
4011 data = genlmsg_put(mcast_skb, 0, 0, &hwsim_genl_family, 0,
4012 HWSIM_CMD_NEW_RADIO);
4016 if (append_radio_msg(mcast_skb, id, param) < 0)
4019 genlmsg_end(mcast_skb, data);
4021 hwsim_mcast_config_msg(mcast_skb, info);
4025 nlmsg_free(mcast_skb);
4028 static const struct ieee80211_sband_iftype_data sband_capa_2ghz[] = {
4030 .types_mask = BIT(NL80211_IFTYPE_STATION),
4035 IEEE80211_HE_MAC_CAP0_HTC_HE,
4037 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4038 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4040 IEEE80211_HE_MAC_CAP2_BSR |
4041 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4042 IEEE80211_HE_MAC_CAP2_ACK_EN,
4044 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4045 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4046 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4048 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G,
4050 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4051 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4052 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4053 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4055 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4056 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4057 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4058 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4059 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4061 /* Leave all the other PHY capability bytes
4062 * unset, as DCM, beam forming, RU and PPE
4063 * threshold information are not supported
4066 .he_mcs_nss_supp = {
4067 .rx_mcs_80 = cpu_to_le16(0xfffa),
4068 .tx_mcs_80 = cpu_to_le16(0xfffa),
4069 .rx_mcs_160 = cpu_to_le16(0xffff),
4070 .tx_mcs_160 = cpu_to_le16(0xffff),
4071 .rx_mcs_80p80 = cpu_to_le16(0xffff),
4072 .tx_mcs_80p80 = cpu_to_le16(0xffff),
4079 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4080 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4081 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4083 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4084 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4085 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4086 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4087 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE,
4089 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4090 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4091 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4092 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4093 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4094 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4095 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4097 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4098 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4099 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4100 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4101 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4103 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4104 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4105 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4106 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4107 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4108 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4110 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4111 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK,
4113 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW,
4116 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4119 .eht_mcs_nss_supp = {
4121 * Since B0, B1, B2 and B3 are not set in
4122 * the supported channel width set field in the
4123 * HE PHY capabilities information field the
4124 * device is a 20MHz only device on 2.4GHz band.
4127 .rx_tx_mcs7_max_nss = 0x88,
4128 .rx_tx_mcs9_max_nss = 0x88,
4129 .rx_tx_mcs11_max_nss = 0x88,
4130 .rx_tx_mcs13_max_nss = 0x88,
4133 /* PPE threshold information is not supported */
4137 .types_mask = BIT(NL80211_IFTYPE_AP),
4142 IEEE80211_HE_MAC_CAP0_HTC_HE,
4144 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4145 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4147 IEEE80211_HE_MAC_CAP2_BSR |
4148 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4149 IEEE80211_HE_MAC_CAP2_ACK_EN,
4151 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4152 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4153 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4155 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G,
4157 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4158 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4159 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4160 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4162 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4163 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4164 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4165 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4166 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4168 /* Leave all the other PHY capability bytes
4169 * unset, as DCM, beam forming, RU and PPE
4170 * threshold information are not supported
4173 .he_mcs_nss_supp = {
4174 .rx_mcs_80 = cpu_to_le16(0xfffa),
4175 .tx_mcs_80 = cpu_to_le16(0xfffa),
4176 .rx_mcs_160 = cpu_to_le16(0xffff),
4177 .tx_mcs_160 = cpu_to_le16(0xffff),
4178 .rx_mcs_80p80 = cpu_to_le16(0xffff),
4179 .tx_mcs_80p80 = cpu_to_le16(0xffff),
4186 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4187 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4188 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4190 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4191 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4192 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4193 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4194 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE,
4196 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4197 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4198 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4199 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4200 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4201 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4202 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4204 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4205 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4206 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4207 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4208 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4210 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4211 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4212 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4213 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4214 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4215 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4217 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4218 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK,
4220 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW,
4223 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4226 .eht_mcs_nss_supp = {
4228 * Since B0, B1, B2 and B3 are not set in
4229 * the supported channel width set field in the
4230 * HE PHY capabilities information field the
4231 * device is a 20MHz only device on 2.4GHz band.
4234 .rx_tx_mcs7_max_nss = 0x88,
4235 .rx_tx_mcs9_max_nss = 0x88,
4236 .rx_tx_mcs11_max_nss = 0x88,
4237 .rx_tx_mcs13_max_nss = 0x88,
4240 /* PPE threshold information is not supported */
4243 #ifdef CONFIG_MAC80211_MESH
4245 .types_mask = BIT(NL80211_IFTYPE_MESH_POINT),
4250 IEEE80211_HE_MAC_CAP0_HTC_HE,
4252 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4254 IEEE80211_HE_MAC_CAP2_ACK_EN,
4256 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4257 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4258 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4260 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G,
4262 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4263 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4264 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4265 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4266 .phy_cap_info[2] = 0,
4268 /* Leave all the other PHY capability bytes
4269 * unset, as DCM, beam forming, RU and PPE
4270 * threshold information are not supported
4273 .he_mcs_nss_supp = {
4274 .rx_mcs_80 = cpu_to_le16(0xfffa),
4275 .tx_mcs_80 = cpu_to_le16(0xfffa),
4276 .rx_mcs_160 = cpu_to_le16(0xffff),
4277 .tx_mcs_160 = cpu_to_le16(0xffff),
4278 .rx_mcs_80p80 = cpu_to_le16(0xffff),
4279 .tx_mcs_80p80 = cpu_to_le16(0xffff),
4286 static const struct ieee80211_sband_iftype_data sband_capa_5ghz[] = {
4288 /* TODO: should we support other types, e.g., P2P? */
4289 .types_mask = BIT(NL80211_IFTYPE_STATION),
4294 IEEE80211_HE_MAC_CAP0_HTC_HE,
4296 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4297 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4299 IEEE80211_HE_MAC_CAP2_BSR |
4300 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4301 IEEE80211_HE_MAC_CAP2_ACK_EN,
4303 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4304 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4305 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4307 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4308 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4309 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4311 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4312 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4313 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4314 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4316 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4317 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4318 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4319 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4320 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4322 /* Leave all the other PHY capability bytes
4323 * unset, as DCM, beam forming, RU and PPE
4324 * threshold information are not supported
4327 .he_mcs_nss_supp = {
4328 .rx_mcs_80 = cpu_to_le16(0xfffa),
4329 .tx_mcs_80 = cpu_to_le16(0xfffa),
4330 .rx_mcs_160 = cpu_to_le16(0xfffa),
4331 .tx_mcs_160 = cpu_to_le16(0xfffa),
4332 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4333 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4340 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4341 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4342 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4344 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4345 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4346 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4347 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4348 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE |
4349 IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK,
4351 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK |
4352 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK,
4354 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK |
4355 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK,
4357 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4358 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4359 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4360 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4361 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4362 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4363 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4365 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4366 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4367 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4368 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4369 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4371 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4372 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4373 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4374 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4375 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4376 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4378 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4379 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK,
4381 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW |
4382 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ |
4383 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ |
4384 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ |
4385 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ,
4388 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4391 .eht_mcs_nss_supp = {
4393 * As B1 and B2 are set in the supported
4394 * channel width set field in the HE PHY
4395 * capabilities information field include all
4396 * the following MCS/NSS.
4399 .rx_tx_mcs9_max_nss = 0x88,
4400 .rx_tx_mcs11_max_nss = 0x88,
4401 .rx_tx_mcs13_max_nss = 0x88,
4404 .rx_tx_mcs9_max_nss = 0x88,
4405 .rx_tx_mcs11_max_nss = 0x88,
4406 .rx_tx_mcs13_max_nss = 0x88,
4409 /* PPE threshold information is not supported */
4413 .types_mask = BIT(NL80211_IFTYPE_AP),
4418 IEEE80211_HE_MAC_CAP0_HTC_HE,
4420 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4421 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4423 IEEE80211_HE_MAC_CAP2_BSR |
4424 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4425 IEEE80211_HE_MAC_CAP2_ACK_EN,
4427 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4428 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4429 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4431 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4432 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4433 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4435 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4436 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4437 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4438 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4440 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4441 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4442 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4443 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4444 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4446 /* Leave all the other PHY capability bytes
4447 * unset, as DCM, beam forming, RU and PPE
4448 * threshold information are not supported
4451 .he_mcs_nss_supp = {
4452 .rx_mcs_80 = cpu_to_le16(0xfffa),
4453 .tx_mcs_80 = cpu_to_le16(0xfffa),
4454 .rx_mcs_160 = cpu_to_le16(0xfffa),
4455 .tx_mcs_160 = cpu_to_le16(0xfffa),
4456 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4457 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4464 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4465 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4466 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4468 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4469 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4470 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4471 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4472 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE |
4473 IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK,
4475 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK |
4476 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK,
4478 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK |
4479 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK,
4481 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4482 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4483 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4484 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4485 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4486 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4487 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4489 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4490 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4491 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4492 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4493 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4495 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4496 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4497 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4498 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4499 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4500 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4502 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4503 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK,
4505 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW |
4506 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ |
4507 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ |
4508 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ |
4509 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ,
4512 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4515 .eht_mcs_nss_supp = {
4517 * As B1 and B2 are set in the supported
4518 * channel width set field in the HE PHY
4519 * capabilities information field include all
4520 * the following MCS/NSS.
4523 .rx_tx_mcs9_max_nss = 0x88,
4524 .rx_tx_mcs11_max_nss = 0x88,
4525 .rx_tx_mcs13_max_nss = 0x88,
4528 .rx_tx_mcs9_max_nss = 0x88,
4529 .rx_tx_mcs11_max_nss = 0x88,
4530 .rx_tx_mcs13_max_nss = 0x88,
4533 /* PPE threshold information is not supported */
4536 #ifdef CONFIG_MAC80211_MESH
4538 /* TODO: should we support other types, e.g., IBSS?*/
4539 .types_mask = BIT(NL80211_IFTYPE_MESH_POINT),
4544 IEEE80211_HE_MAC_CAP0_HTC_HE,
4546 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4548 IEEE80211_HE_MAC_CAP2_ACK_EN,
4550 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4551 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4552 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4554 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4555 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4556 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4558 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4559 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4560 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4561 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4562 .phy_cap_info[2] = 0,
4564 /* Leave all the other PHY capability bytes
4565 * unset, as DCM, beam forming, RU and PPE
4566 * threshold information are not supported
4569 .he_mcs_nss_supp = {
4570 .rx_mcs_80 = cpu_to_le16(0xfffa),
4571 .tx_mcs_80 = cpu_to_le16(0xfffa),
4572 .rx_mcs_160 = cpu_to_le16(0xfffa),
4573 .tx_mcs_160 = cpu_to_le16(0xfffa),
4574 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4575 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4582 static const struct ieee80211_sband_iftype_data sband_capa_6ghz[] = {
4584 /* TODO: should we support other types, e.g., P2P? */
4585 .types_mask = BIT(NL80211_IFTYPE_STATION),
4587 .capa = cpu_to_le16(IEEE80211_HE_6GHZ_CAP_MIN_MPDU_START |
4588 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP |
4589 IEEE80211_HE_6GHZ_CAP_MAX_MPDU_LEN |
4590 IEEE80211_HE_6GHZ_CAP_SM_PS |
4591 IEEE80211_HE_6GHZ_CAP_RD_RESPONDER |
4592 IEEE80211_HE_6GHZ_CAP_TX_ANTPAT_CONS |
4593 IEEE80211_HE_6GHZ_CAP_RX_ANTPAT_CONS),
4599 IEEE80211_HE_MAC_CAP0_HTC_HE,
4601 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4602 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4604 IEEE80211_HE_MAC_CAP2_BSR |
4605 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4606 IEEE80211_HE_MAC_CAP2_ACK_EN,
4608 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4609 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4610 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4612 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4613 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4614 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4616 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4617 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4618 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4619 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4621 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4622 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4623 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4624 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4625 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4627 /* Leave all the other PHY capability bytes
4628 * unset, as DCM, beam forming, RU and PPE
4629 * threshold information are not supported
4632 .he_mcs_nss_supp = {
4633 .rx_mcs_80 = cpu_to_le16(0xfffa),
4634 .tx_mcs_80 = cpu_to_le16(0xfffa),
4635 .rx_mcs_160 = cpu_to_le16(0xfffa),
4636 .tx_mcs_160 = cpu_to_le16(0xfffa),
4637 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4638 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4645 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4646 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4647 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4649 IEEE80211_EHT_PHY_CAP0_320MHZ_IN_6GHZ |
4650 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4651 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4652 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4653 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4654 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE |
4655 IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK,
4657 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK |
4658 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK |
4659 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_320MHZ_MASK,
4661 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK |
4662 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK |
4663 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_320MHZ_MASK,
4665 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4666 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4667 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4668 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4669 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4670 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4671 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4673 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4674 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4675 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4676 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4677 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4679 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4680 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4681 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4682 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4683 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4684 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4686 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4687 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK |
4688 IEEE80211_EHT_PHY_CAP6_EHT_DUP_6GHZ_SUPP,
4690 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW |
4691 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ |
4692 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ |
4693 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_320MHZ |
4694 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ |
4695 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ |
4696 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_320MHZ,
4699 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4702 .eht_mcs_nss_supp = {
4704 * As B1 and B2 are set in the supported
4705 * channel width set field in the HE PHY
4706 * capabilities information field and 320MHz in
4707 * 6GHz is supported include all the following
4711 .rx_tx_mcs9_max_nss = 0x88,
4712 .rx_tx_mcs11_max_nss = 0x88,
4713 .rx_tx_mcs13_max_nss = 0x88,
4716 .rx_tx_mcs9_max_nss = 0x88,
4717 .rx_tx_mcs11_max_nss = 0x88,
4718 .rx_tx_mcs13_max_nss = 0x88,
4721 .rx_tx_mcs9_max_nss = 0x88,
4722 .rx_tx_mcs11_max_nss = 0x88,
4723 .rx_tx_mcs13_max_nss = 0x88,
4726 /* PPE threshold information is not supported */
4730 .types_mask = BIT(NL80211_IFTYPE_AP),
4732 .capa = cpu_to_le16(IEEE80211_HE_6GHZ_CAP_MIN_MPDU_START |
4733 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP |
4734 IEEE80211_HE_6GHZ_CAP_MAX_MPDU_LEN |
4735 IEEE80211_HE_6GHZ_CAP_SM_PS |
4736 IEEE80211_HE_6GHZ_CAP_RD_RESPONDER |
4737 IEEE80211_HE_6GHZ_CAP_TX_ANTPAT_CONS |
4738 IEEE80211_HE_6GHZ_CAP_RX_ANTPAT_CONS),
4744 IEEE80211_HE_MAC_CAP0_HTC_HE,
4746 IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US |
4747 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4749 IEEE80211_HE_MAC_CAP2_BSR |
4750 IEEE80211_HE_MAC_CAP2_MU_CASCADING |
4751 IEEE80211_HE_MAC_CAP2_ACK_EN,
4753 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4754 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4755 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4757 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4758 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4759 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4761 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4762 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4763 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4764 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4766 IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US |
4767 IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ |
4768 IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ |
4769 IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO |
4770 IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO,
4772 /* Leave all the other PHY capability bytes
4773 * unset, as DCM, beam forming, RU and PPE
4774 * threshold information are not supported
4777 .he_mcs_nss_supp = {
4778 .rx_mcs_80 = cpu_to_le16(0xfffa),
4779 .tx_mcs_80 = cpu_to_le16(0xfffa),
4780 .rx_mcs_160 = cpu_to_le16(0xfffa),
4781 .tx_mcs_160 = cpu_to_le16(0xfffa),
4782 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4783 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4790 IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS |
4791 IEEE80211_EHT_MAC_CAP0_OM_CONTROL |
4792 IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1,
4794 IEEE80211_EHT_PHY_CAP0_320MHZ_IN_6GHZ |
4795 IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ |
4796 IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI |
4797 IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO |
4798 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER |
4799 IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE |
4800 IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK,
4802 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK |
4803 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK |
4804 IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_320MHZ_MASK,
4806 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK |
4807 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK |
4808 IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_320MHZ_MASK,
4810 IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK |
4811 IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK |
4812 IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK |
4813 IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK |
4814 IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK |
4815 IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK |
4816 IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK,
4818 IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO |
4819 IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP |
4820 IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP |
4821 IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI |
4822 IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK,
4824 IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK |
4825 IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP |
4826 IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP |
4827 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT |
4828 IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK |
4829 IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK,
4831 IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK |
4832 IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK |
4833 IEEE80211_EHT_PHY_CAP6_EHT_DUP_6GHZ_SUPP,
4835 IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW |
4836 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ |
4837 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ |
4838 IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_320MHZ |
4839 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ |
4840 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ |
4841 IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_320MHZ,
4844 /* For all MCS and bandwidth, set 8 NSS for both Tx and
4847 .eht_mcs_nss_supp = {
4849 * As B1 and B2 are set in the supported
4850 * channel width set field in the HE PHY
4851 * capabilities information field and 320MHz in
4852 * 6GHz is supported include all the following
4856 .rx_tx_mcs9_max_nss = 0x88,
4857 .rx_tx_mcs11_max_nss = 0x88,
4858 .rx_tx_mcs13_max_nss = 0x88,
4861 .rx_tx_mcs9_max_nss = 0x88,
4862 .rx_tx_mcs11_max_nss = 0x88,
4863 .rx_tx_mcs13_max_nss = 0x88,
4866 .rx_tx_mcs9_max_nss = 0x88,
4867 .rx_tx_mcs11_max_nss = 0x88,
4868 .rx_tx_mcs13_max_nss = 0x88,
4871 /* PPE threshold information is not supported */
4874 #ifdef CONFIG_MAC80211_MESH
4876 /* TODO: should we support other types, e.g., IBSS?*/
4877 .types_mask = BIT(NL80211_IFTYPE_MESH_POINT),
4879 .capa = cpu_to_le16(IEEE80211_HE_6GHZ_CAP_MIN_MPDU_START |
4880 IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP |
4881 IEEE80211_HE_6GHZ_CAP_MAX_MPDU_LEN |
4882 IEEE80211_HE_6GHZ_CAP_SM_PS |
4883 IEEE80211_HE_6GHZ_CAP_RD_RESPONDER |
4884 IEEE80211_HE_6GHZ_CAP_TX_ANTPAT_CONS |
4885 IEEE80211_HE_6GHZ_CAP_RX_ANTPAT_CONS),
4891 IEEE80211_HE_MAC_CAP0_HTC_HE,
4893 IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8,
4895 IEEE80211_HE_MAC_CAP2_ACK_EN,
4897 IEEE80211_HE_MAC_CAP3_OMI_CONTROL |
4898 IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3,
4899 .mac_cap_info[4] = IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU,
4901 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G |
4902 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G |
4903 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G,
4905 IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK |
4906 IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A |
4907 IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD |
4908 IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS,
4909 .phy_cap_info[2] = 0,
4911 /* Leave all the other PHY capability bytes
4912 * unset, as DCM, beam forming, RU and PPE
4913 * threshold information are not supported
4916 .he_mcs_nss_supp = {
4917 .rx_mcs_80 = cpu_to_le16(0xfffa),
4918 .tx_mcs_80 = cpu_to_le16(0xfffa),
4919 .rx_mcs_160 = cpu_to_le16(0xfffa),
4920 .tx_mcs_160 = cpu_to_le16(0xfffa),
4921 .rx_mcs_80p80 = cpu_to_le16(0xfffa),
4922 .tx_mcs_80p80 = cpu_to_le16(0xfffa),
4929 static void mac80211_hwsim_sband_capab(struct ieee80211_supported_band *sband)
4931 switch (sband->band) {
4932 case NL80211_BAND_2GHZ:
4933 ieee80211_set_sband_iftype_data(sband, sband_capa_2ghz);
4935 case NL80211_BAND_5GHZ:
4936 ieee80211_set_sband_iftype_data(sband, sband_capa_5ghz);
4938 case NL80211_BAND_6GHZ:
4939 ieee80211_set_sband_iftype_data(sband, sband_capa_6ghz);
4946 #ifdef CONFIG_MAC80211_MESH
4947 #define HWSIM_MESH_BIT BIT(NL80211_IFTYPE_MESH_POINT)
4949 #define HWSIM_MESH_BIT 0
4952 #define HWSIM_DEFAULT_IF_LIMIT \
4953 (BIT(NL80211_IFTYPE_STATION) | \
4954 BIT(NL80211_IFTYPE_P2P_CLIENT) | \
4955 BIT(NL80211_IFTYPE_AP) | \
4956 BIT(NL80211_IFTYPE_P2P_GO) | \
4959 #define HWSIM_IFTYPE_SUPPORT_MASK \
4960 (BIT(NL80211_IFTYPE_STATION) | \
4961 BIT(NL80211_IFTYPE_AP) | \
4962 BIT(NL80211_IFTYPE_P2P_CLIENT) | \
4963 BIT(NL80211_IFTYPE_P2P_GO) | \
4964 BIT(NL80211_IFTYPE_ADHOC) | \
4965 BIT(NL80211_IFTYPE_MESH_POINT) | \
4966 BIT(NL80211_IFTYPE_OCB))
4968 static int mac80211_hwsim_new_radio(struct genl_info *info,
4969 struct hwsim_new_radio_params *param)
4973 struct mac80211_hwsim_data *data;
4974 struct ieee80211_hw *hw;
4975 enum nl80211_band band;
4976 const struct ieee80211_ops *ops = &mac80211_hwsim_ops;
4981 if (WARN_ON(param->channels > 1 && !param->use_chanctx))
4984 spin_lock_bh(&hwsim_radio_lock);
4985 idx = hwsim_radio_idx++;
4986 spin_unlock_bh(&hwsim_radio_lock);
4989 ops = &mac80211_hwsim_mlo_ops;
4990 else if (param->use_chanctx)
4991 ops = &mac80211_hwsim_mchan_ops;
4992 hw = ieee80211_alloc_hw_nm(sizeof(*data), ops, param->hwname);
4994 pr_debug("mac80211_hwsim: ieee80211_alloc_hw failed\n");
4999 /* ieee80211_alloc_hw_nm may have used a default name */
5000 param->hwname = wiphy_name(hw->wiphy);
5003 net = genl_info_net(info);
5006 wiphy_net_set(hw->wiphy, net);
5011 data->dev = device_create(hwsim_class, NULL, 0, hw, "hwsim%d", idx);
5012 if (IS_ERR(data->dev)) {
5014 "mac80211_hwsim: device_create failed (%ld)\n",
5015 PTR_ERR(data->dev));
5017 goto failed_drvdata;
5019 data->dev->driver = &mac80211_hwsim_driver.driver;
5020 err = device_bind_driver(data->dev);
5022 pr_debug("mac80211_hwsim: device_bind_driver failed (%d)\n",
5027 skb_queue_head_init(&data->pending);
5029 SET_IEEE80211_DEV(hw, data->dev);
5030 if (!param->perm_addr) {
5031 eth_zero_addr(addr);
5035 memcpy(data->addresses[0].addr, addr, ETH_ALEN);
5036 /* Why need here second address ? */
5037 memcpy(data->addresses[1].addr, addr, ETH_ALEN);
5038 data->addresses[1].addr[0] |= 0x40;
5039 hw->wiphy->n_addresses = 2;
5040 hw->wiphy->addresses = data->addresses;
5041 /* possible address clash is checked at hash table insertion */
5043 memcpy(data->addresses[0].addr, param->perm_addr, ETH_ALEN);
5044 /* compatibility with automatically generated mac addr */
5045 memcpy(data->addresses[1].addr, param->perm_addr, ETH_ALEN);
5046 hw->wiphy->n_addresses = 2;
5047 hw->wiphy->addresses = data->addresses;
5050 data->channels = param->channels;
5051 data->use_chanctx = param->use_chanctx;
5053 data->destroy_on_close = param->destroy_on_close;
5055 data->portid = info->snd_portid;
5057 /* setup interface limits, only on interface types we support */
5058 if (param->iftypes & BIT(NL80211_IFTYPE_ADHOC)) {
5059 data->if_limits[n_limits].max = 1;
5060 data->if_limits[n_limits].types = BIT(NL80211_IFTYPE_ADHOC);
5064 if (param->iftypes & HWSIM_DEFAULT_IF_LIMIT) {
5065 data->if_limits[n_limits].max = 2048;
5067 * For this case, we may only support a subset of
5068 * HWSIM_DEFAULT_IF_LIMIT, therefore we only want to add the
5069 * bits that both param->iftype & HWSIM_DEFAULT_IF_LIMIT have.
5071 data->if_limits[n_limits].types =
5072 HWSIM_DEFAULT_IF_LIMIT & param->iftypes;
5076 if (param->iftypes & BIT(NL80211_IFTYPE_P2P_DEVICE)) {
5077 data->if_limits[n_limits].max = 1;
5078 data->if_limits[n_limits].types =
5079 BIT(NL80211_IFTYPE_P2P_DEVICE);
5083 if (data->use_chanctx) {
5084 hw->wiphy->max_scan_ssids = 255;
5085 hw->wiphy->max_scan_ie_len = IEEE80211_MAX_DATA_LEN;
5086 hw->wiphy->max_remain_on_channel_duration = 1000;
5087 data->if_combination.radar_detect_widths = 0;
5088 data->if_combination.num_different_channels = data->channels;
5090 data->if_combination.num_different_channels = 1;
5091 data->if_combination.radar_detect_widths =
5092 BIT(NL80211_CHAN_WIDTH_5) |
5093 BIT(NL80211_CHAN_WIDTH_10) |
5094 BIT(NL80211_CHAN_WIDTH_20_NOHT) |
5095 BIT(NL80211_CHAN_WIDTH_20) |
5096 BIT(NL80211_CHAN_WIDTH_40) |
5097 BIT(NL80211_CHAN_WIDTH_80) |
5098 BIT(NL80211_CHAN_WIDTH_160);
5106 data->if_combination.max_interfaces = 0;
5107 for (i = 0; i < n_limits; i++)
5108 data->if_combination.max_interfaces +=
5109 data->if_limits[i].max;
5111 data->if_combination.n_limits = n_limits;
5112 data->if_combination.limits = data->if_limits;
5115 * If we actually were asked to support combinations,
5116 * advertise them - if there's only a single thing like
5117 * only IBSS then don't advertise it as combinations.
5119 if (data->if_combination.max_interfaces > 1) {
5120 hw->wiphy->iface_combinations = &data->if_combination;
5121 hw->wiphy->n_iface_combinations = 1;
5124 if (param->ciphers) {
5125 memcpy(data->ciphers, param->ciphers,
5126 param->n_ciphers * sizeof(u32));
5127 hw->wiphy->cipher_suites = data->ciphers;
5128 hw->wiphy->n_cipher_suites = param->n_ciphers;
5131 hw->wiphy->mbssid_max_interfaces = 8;
5132 hw->wiphy->ema_max_profile_periodicity = 3;
5134 data->rx_rssi = DEFAULT_RX_RSSI;
5136 INIT_DELAYED_WORK(&data->roc_start, hw_roc_start);
5137 INIT_DELAYED_WORK(&data->roc_done, hw_roc_done);
5138 INIT_DELAYED_WORK(&data->hw_scan, hw_scan_work);
5141 hw->offchannel_tx_hw_queue = 4;
5143 ieee80211_hw_set(hw, SUPPORT_FAST_XMIT);
5144 ieee80211_hw_set(hw, CHANCTX_STA_CSA);
5145 ieee80211_hw_set(hw, SUPPORTS_HT_CCK_RATES);
5146 ieee80211_hw_set(hw, QUEUE_CONTROL);
5147 ieee80211_hw_set(hw, WANT_MONITOR_VIF);
5148 ieee80211_hw_set(hw, AMPDU_AGGREGATION);
5149 ieee80211_hw_set(hw, MFP_CAPABLE);
5150 ieee80211_hw_set(hw, SIGNAL_DBM);
5151 ieee80211_hw_set(hw, SUPPORTS_PS);
5152 ieee80211_hw_set(hw, REPORTS_TX_ACK_STATUS);
5153 ieee80211_hw_set(hw, TDLS_WIDER_BW);
5154 ieee80211_hw_set(hw, SUPPORTS_MULTI_BSSID);
5157 hw->wiphy->flags |= WIPHY_FLAG_SUPPORTS_MLO;
5158 ieee80211_hw_set(hw, HAS_RATE_CONTROL);
5159 ieee80211_hw_set(hw, SUPPORTS_DYNAMIC_PS);
5160 ieee80211_hw_set(hw, CONNECTION_MONITOR);
5161 ieee80211_hw_set(hw, AP_LINK_PS);
5163 ieee80211_hw_set(hw, HOST_BROADCAST_PS_BUFFERING);
5164 ieee80211_hw_set(hw, PS_NULLFUNC_STACK);
5166 ieee80211_hw_set(hw, SUPPORTS_RC_TABLE);
5169 hw->wiphy->flags &= ~WIPHY_FLAG_PS_ON_BY_DEFAULT;
5170 hw->wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS |
5171 WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL |
5172 WIPHY_FLAG_AP_UAPSD |
5173 WIPHY_FLAG_SUPPORTS_5_10_MHZ |
5174 WIPHY_FLAG_HAS_CHANNEL_SWITCH;
5175 hw->wiphy->features |= NL80211_FEATURE_ACTIVE_MONITOR |
5176 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE |
5177 NL80211_FEATURE_STATIC_SMPS |
5178 NL80211_FEATURE_DYNAMIC_SMPS |
5179 NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR;
5180 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_VHT_IBSS);
5181 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_BEACON_PROTECTION);
5182 wiphy_ext_feature_set(hw->wiphy,
5183 NL80211_EXT_FEATURE_MULTICAST_REGISTRATIONS);
5184 wiphy_ext_feature_set(hw->wiphy,
5185 NL80211_EXT_FEATURE_BEACON_RATE_LEGACY);
5186 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_ENABLE_FTM_RESPONDER);
5188 wiphy_ext_feature_set(hw->wiphy,
5189 NL80211_EXT_FEATURE_SCAN_MIN_PREQ_CONTENT);
5191 hw->wiphy->interface_modes = param->iftypes;
5193 /* ask mac80211 to reserve space for magic */
5194 hw->vif_data_size = sizeof(struct hwsim_vif_priv);
5195 hw->sta_data_size = sizeof(struct hwsim_sta_priv);
5196 hw->chanctx_data_size = sizeof(struct hwsim_chanctx_priv);
5198 memcpy(data->channels_2ghz, hwsim_channels_2ghz,
5199 sizeof(hwsim_channels_2ghz));
5200 memcpy(data->channels_5ghz, hwsim_channels_5ghz,
5201 sizeof(hwsim_channels_5ghz));
5202 memcpy(data->channels_6ghz, hwsim_channels_6ghz,
5203 sizeof(hwsim_channels_6ghz));
5204 memcpy(data->channels_s1g, hwsim_channels_s1g,
5205 sizeof(hwsim_channels_s1g));
5206 memcpy(data->rates, hwsim_rates, sizeof(hwsim_rates));
5208 for (band = NL80211_BAND_2GHZ; band < NUM_NL80211_BANDS; band++) {
5209 struct ieee80211_supported_band *sband = &data->bands[band];
5214 case NL80211_BAND_2GHZ:
5215 sband->channels = data->channels_2ghz;
5216 sband->n_channels = ARRAY_SIZE(hwsim_channels_2ghz);
5217 sband->bitrates = data->rates;
5218 sband->n_bitrates = ARRAY_SIZE(hwsim_rates);
5220 case NL80211_BAND_5GHZ:
5221 sband->channels = data->channels_5ghz;
5222 sband->n_channels = ARRAY_SIZE(hwsim_channels_5ghz);
5223 sband->bitrates = data->rates + 4;
5224 sband->n_bitrates = ARRAY_SIZE(hwsim_rates) - 4;
5226 sband->vht_cap.vht_supported = true;
5227 sband->vht_cap.cap =
5228 IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_11454 |
5229 IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160_80PLUS80MHZ |
5230 IEEE80211_VHT_CAP_RXLDPC |
5231 IEEE80211_VHT_CAP_SHORT_GI_80 |
5232 IEEE80211_VHT_CAP_SHORT_GI_160 |
5233 IEEE80211_VHT_CAP_TXSTBC |
5234 IEEE80211_VHT_CAP_RXSTBC_4 |
5235 IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MASK;
5236 sband->vht_cap.vht_mcs.rx_mcs_map =
5237 cpu_to_le16(IEEE80211_VHT_MCS_SUPPORT_0_9 << 0 |
5238 IEEE80211_VHT_MCS_SUPPORT_0_9 << 2 |
5239 IEEE80211_VHT_MCS_SUPPORT_0_9 << 4 |
5240 IEEE80211_VHT_MCS_SUPPORT_0_9 << 6 |
5241 IEEE80211_VHT_MCS_SUPPORT_0_9 << 8 |
5242 IEEE80211_VHT_MCS_SUPPORT_0_9 << 10 |
5243 IEEE80211_VHT_MCS_SUPPORT_0_9 << 12 |
5244 IEEE80211_VHT_MCS_SUPPORT_0_9 << 14);
5245 sband->vht_cap.vht_mcs.tx_mcs_map =
5246 sband->vht_cap.vht_mcs.rx_mcs_map;
5248 case NL80211_BAND_6GHZ:
5249 sband->channels = data->channels_6ghz;
5250 sband->n_channels = ARRAY_SIZE(hwsim_channels_6ghz);
5251 sband->bitrates = data->rates + 4;
5252 sband->n_bitrates = ARRAY_SIZE(hwsim_rates) - 4;
5254 case NL80211_BAND_S1GHZ:
5255 memcpy(&sband->s1g_cap, &hwsim_s1g_cap,
5256 sizeof(sband->s1g_cap));
5257 sband->channels = data->channels_s1g;
5258 sband->n_channels = ARRAY_SIZE(hwsim_channels_s1g);
5264 if (band != NL80211_BAND_6GHZ){
5265 sband->ht_cap.ht_supported = true;
5266 sband->ht_cap.cap = IEEE80211_HT_CAP_SUP_WIDTH_20_40 |
5267 IEEE80211_HT_CAP_GRN_FLD |
5268 IEEE80211_HT_CAP_SGI_20 |
5269 IEEE80211_HT_CAP_SGI_40 |
5270 IEEE80211_HT_CAP_DSSSCCK40;
5271 sband->ht_cap.ampdu_factor = 0x3;
5272 sband->ht_cap.ampdu_density = 0x6;
5273 memset(&sband->ht_cap.mcs, 0,
5274 sizeof(sband->ht_cap.mcs));
5275 sband->ht_cap.mcs.rx_mask[0] = 0xff;
5276 sband->ht_cap.mcs.rx_mask[1] = 0xff;
5277 sband->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED;
5280 mac80211_hwsim_sband_capab(sband);
5282 hw->wiphy->bands[band] = sband;
5285 /* By default all radios belong to the first group */
5287 mutex_init(&data->mutex);
5289 data->netgroup = hwsim_net_get_netgroup(net);
5290 data->wmediumd = hwsim_net_get_wmediumd(net);
5292 /* Enable frame retransmissions for lossy channels */
5294 hw->max_rate_tries = 11;
5296 hw->wiphy->vendor_commands = mac80211_hwsim_vendor_commands;
5297 hw->wiphy->n_vendor_commands =
5298 ARRAY_SIZE(mac80211_hwsim_vendor_commands);
5299 hw->wiphy->vendor_events = mac80211_hwsim_vendor_events;
5300 hw->wiphy->n_vendor_events = ARRAY_SIZE(mac80211_hwsim_vendor_events);
5302 if (param->reg_strict)
5303 hw->wiphy->regulatory_flags |= REGULATORY_STRICT_REG;
5305 data->regd = param->regd;
5306 hw->wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG;
5307 wiphy_apply_custom_regulatory(hw->wiphy, param->regd);
5308 /* give the regulatory workqueue a chance to run */
5309 schedule_timeout_interruptible(1);
5312 /* TODO: Add param */
5313 wiphy_ext_feature_set(hw->wiphy,
5314 NL80211_EXT_FEATURE_DFS_CONCURRENT);
5317 ieee80211_hw_set(hw, NO_AUTO_VIF);
5319 wiphy_ext_feature_set(hw->wiphy, NL80211_EXT_FEATURE_CQM_RSSI_LIST);
5321 for (i = 0; i < ARRAY_SIZE(data->link_data); i++) {
5322 hrtimer_init(&data->link_data[i].beacon_timer, CLOCK_MONOTONIC,
5323 HRTIMER_MODE_ABS_SOFT);
5324 data->link_data[i].beacon_timer.function =
5325 mac80211_hwsim_beacon;
5326 data->link_data[i].link_id = i;
5329 err = ieee80211_register_hw(hw);
5331 pr_debug("mac80211_hwsim: ieee80211_register_hw failed (%d)\n",
5336 wiphy_dbg(hw->wiphy, "hwaddr %pM registered\n", hw->wiphy->perm_addr);
5338 if (param->reg_alpha2) {
5339 data->alpha2[0] = param->reg_alpha2[0];
5340 data->alpha2[1] = param->reg_alpha2[1];
5341 regulatory_hint(hw->wiphy, param->reg_alpha2);
5344 data->debugfs = debugfs_create_dir("hwsim", hw->wiphy->debugfsdir);
5345 debugfs_create_file("ps", 0666, data->debugfs, data, &hwsim_fops_ps);
5346 debugfs_create_file("group", 0666, data->debugfs, data,
5348 debugfs_create_file("rx_rssi", 0666, data->debugfs, data,
5349 &hwsim_fops_rx_rssi);
5350 if (!data->use_chanctx)
5351 debugfs_create_file("dfs_simulate_radar", 0222,
5353 data, &hwsim_simulate_radar);
5355 if (param->pmsr_capa) {
5356 data->pmsr_capa = *param->pmsr_capa;
5357 hw->wiphy->pmsr_capa = &data->pmsr_capa;
5360 spin_lock_bh(&hwsim_radio_lock);
5361 err = rhashtable_insert_fast(&hwsim_radios_rht, &data->rht,
5365 GENL_SET_ERR_MSG(info, "perm addr already present");
5366 NL_SET_BAD_ATTR(info->extack,
5367 info->attrs[HWSIM_ATTR_PERM_ADDR]);
5369 spin_unlock_bh(&hwsim_radio_lock);
5370 goto failed_final_insert;
5373 list_add_tail(&data->list, &hwsim_radios);
5374 hwsim_radios_generation++;
5375 spin_unlock_bh(&hwsim_radio_lock);
5377 hwsim_mcast_new_radio(idx, info, param);
5381 failed_final_insert:
5382 debugfs_remove_recursive(data->debugfs);
5383 ieee80211_unregister_hw(data->hw);
5385 device_release_driver(data->dev);
5387 device_unregister(data->dev);
5389 ieee80211_free_hw(hw);
5394 static void hwsim_mcast_del_radio(int id, const char *hwname,
5395 struct genl_info *info)
5397 struct sk_buff *skb;
5401 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
5405 data = genlmsg_put(skb, 0, 0, &hwsim_genl_family, 0,
5406 HWSIM_CMD_DEL_RADIO);
5410 ret = nla_put_u32(skb, HWSIM_ATTR_RADIO_ID, id);
5414 ret = nla_put(skb, HWSIM_ATTR_RADIO_NAME, strlen(hwname),
5419 genlmsg_end(skb, data);
5421 hwsim_mcast_config_msg(skb, info);
5429 static void mac80211_hwsim_del_radio(struct mac80211_hwsim_data *data,
5431 struct genl_info *info)
5433 hwsim_mcast_del_radio(data->idx, hwname, info);
5434 debugfs_remove_recursive(data->debugfs);
5435 ieee80211_unregister_hw(data->hw);
5436 device_release_driver(data->dev);
5437 device_unregister(data->dev);
5438 ieee80211_free_hw(data->hw);
5441 static int mac80211_hwsim_get_radio(struct sk_buff *skb,
5442 struct mac80211_hwsim_data *data,
5443 u32 portid, u32 seq,
5444 struct netlink_callback *cb, int flags)
5447 struct hwsim_new_radio_params param = { };
5448 int res = -EMSGSIZE;
5450 hdr = genlmsg_put(skb, portid, seq, &hwsim_genl_family, flags,
5451 HWSIM_CMD_GET_RADIO);
5456 genl_dump_check_consistent(cb, hdr);
5458 if (data->alpha2[0] && data->alpha2[1])
5459 param.reg_alpha2 = data->alpha2;
5461 param.reg_strict = !!(data->hw->wiphy->regulatory_flags &
5462 REGULATORY_STRICT_REG);
5463 param.p2p_device = !!(data->hw->wiphy->interface_modes &
5464 BIT(NL80211_IFTYPE_P2P_DEVICE));
5465 param.use_chanctx = data->use_chanctx;
5466 param.regd = data->regd;
5467 param.channels = data->channels;
5468 param.hwname = wiphy_name(data->hw->wiphy);
5469 param.pmsr_capa = &data->pmsr_capa;
5471 res = append_radio_msg(skb, data->idx, ¶m);
5475 genlmsg_end(skb, hdr);
5479 genlmsg_cancel(skb, hdr);
5483 static void mac80211_hwsim_free(void)
5485 struct mac80211_hwsim_data *data;
5487 spin_lock_bh(&hwsim_radio_lock);
5488 while ((data = list_first_entry_or_null(&hwsim_radios,
5489 struct mac80211_hwsim_data,
5491 list_del(&data->list);
5492 spin_unlock_bh(&hwsim_radio_lock);
5493 mac80211_hwsim_del_radio(data, wiphy_name(data->hw->wiphy),
5495 spin_lock_bh(&hwsim_radio_lock);
5497 spin_unlock_bh(&hwsim_radio_lock);
5498 class_destroy(hwsim_class);
5501 static const struct net_device_ops hwsim_netdev_ops = {
5502 .ndo_start_xmit = hwsim_mon_xmit,
5503 .ndo_set_mac_address = eth_mac_addr,
5504 .ndo_validate_addr = eth_validate_addr,
5507 static void hwsim_mon_setup(struct net_device *dev)
5511 dev->netdev_ops = &hwsim_netdev_ops;
5512 dev->needs_free_netdev = true;
5514 dev->priv_flags |= IFF_NO_QUEUE;
5515 dev->type = ARPHRD_IEEE80211_RADIOTAP;
5516 eth_zero_addr(addr);
5518 eth_hw_addr_set(dev, addr);
5521 static void hwsim_register_wmediumd(struct net *net, u32 portid)
5523 struct mac80211_hwsim_data *data;
5525 hwsim_net_set_wmediumd(net, portid);
5527 spin_lock_bh(&hwsim_radio_lock);
5528 list_for_each_entry(data, &hwsim_radios, list) {
5529 if (data->netgroup == hwsim_net_get_netgroup(net))
5530 data->wmediumd = portid;
5532 spin_unlock_bh(&hwsim_radio_lock);
5535 static int hwsim_tx_info_frame_received_nl(struct sk_buff *skb_2,
5536 struct genl_info *info)
5539 struct ieee80211_hdr *hdr;
5540 struct mac80211_hwsim_data *data2;
5541 struct ieee80211_tx_info *txi;
5542 struct hwsim_tx_rate *tx_attempts;
5544 struct sk_buff *skb, *tmp;
5546 unsigned int hwsim_flags;
5548 unsigned long flags;
5551 if (!info->attrs[HWSIM_ATTR_ADDR_TRANSMITTER] ||
5552 !info->attrs[HWSIM_ATTR_FLAGS] ||
5553 !info->attrs[HWSIM_ATTR_COOKIE] ||
5554 !info->attrs[HWSIM_ATTR_SIGNAL] ||
5555 !info->attrs[HWSIM_ATTR_TX_INFO])
5558 src = (void *)nla_data(info->attrs[HWSIM_ATTR_ADDR_TRANSMITTER]);
5559 hwsim_flags = nla_get_u32(info->attrs[HWSIM_ATTR_FLAGS]);
5560 ret_skb_cookie = nla_get_u64(info->attrs[HWSIM_ATTR_COOKIE]);
5562 data2 = get_hwsim_data_ref_from_addr(src);
5566 if (!hwsim_virtio_enabled) {
5567 if (hwsim_net_get_netgroup(genl_info_net(info)) !=
5571 if (info->snd_portid != data2->wmediumd)
5575 /* look for the skb matching the cookie passed back from user */
5576 spin_lock_irqsave(&data2->pending.lock, flags);
5577 skb_queue_walk_safe(&data2->pending, skb, tmp) {
5578 uintptr_t skb_cookie;
5580 txi = IEEE80211_SKB_CB(skb);
5581 skb_cookie = (uintptr_t)txi->rate_driver_data[0];
5583 if (skb_cookie == ret_skb_cookie) {
5584 __skb_unlink(skb, &data2->pending);
5589 spin_unlock_irqrestore(&data2->pending.lock, flags);
5595 /* Tx info received because the frame was broadcasted on user space,
5596 so we get all the necessary info: tx attempts and skb control buff */
5598 tx_attempts = (struct hwsim_tx_rate *)nla_data(
5599 info->attrs[HWSIM_ATTR_TX_INFO]);
5601 /* now send back TX status */
5602 txi = IEEE80211_SKB_CB(skb);
5604 ieee80211_tx_info_clear_status(txi);
5606 for (i = 0; i < IEEE80211_TX_MAX_RATES; i++) {
5607 txi->status.rates[i].idx = tx_attempts[i].idx;
5608 txi->status.rates[i].count = tx_attempts[i].count;
5611 txi->status.ack_signal = nla_get_u32(info->attrs[HWSIM_ATTR_SIGNAL]);
5613 if (!(hwsim_flags & HWSIM_TX_CTL_NO_ACK) &&
5614 (hwsim_flags & HWSIM_TX_STAT_ACK)) {
5615 if (skb->len >= 16) {
5616 hdr = (struct ieee80211_hdr *) skb->data;
5617 mac80211_hwsim_monitor_ack(data2->channel,
5620 txi->flags |= IEEE80211_TX_STAT_ACK;
5623 if (hwsim_flags & HWSIM_TX_CTL_NO_ACK)
5624 txi->flags |= IEEE80211_TX_STAT_NOACK_TRANSMITTED;
5626 ieee80211_tx_status_irqsafe(data2->hw, skb);
5633 static int hwsim_cloned_frame_received_nl(struct sk_buff *skb_2,
5634 struct genl_info *info)
5636 struct mac80211_hwsim_data *data2;
5637 struct ieee80211_rx_status rx_status;
5638 struct ieee80211_hdr *hdr;
5642 struct sk_buff *skb = NULL;
5643 struct ieee80211_channel *channel = NULL;
5645 if (!info->attrs[HWSIM_ATTR_ADDR_RECEIVER] ||
5646 !info->attrs[HWSIM_ATTR_FRAME] ||
5647 !info->attrs[HWSIM_ATTR_RX_RATE] ||
5648 !info->attrs[HWSIM_ATTR_SIGNAL])
5651 dst = (void *)nla_data(info->attrs[HWSIM_ATTR_ADDR_RECEIVER]);
5652 frame_data_len = nla_len(info->attrs[HWSIM_ATTR_FRAME]);
5653 frame_data = (void *)nla_data(info->attrs[HWSIM_ATTR_FRAME]);
5655 if (frame_data_len < sizeof(struct ieee80211_hdr_3addr) ||
5656 frame_data_len > IEEE80211_MAX_DATA_LEN)
5659 /* Allocate new skb here */
5660 skb = alloc_skb(frame_data_len, GFP_KERNEL);
5665 skb_put_data(skb, frame_data, frame_data_len);
5667 data2 = get_hwsim_data_ref_from_addr(dst);
5671 if (data2->use_chanctx) {
5672 if (data2->tmp_chan)
5673 channel = data2->tmp_chan;
5675 channel = data2->channel;
5678 if (!hwsim_virtio_enabled) {
5679 if (hwsim_net_get_netgroup(genl_info_net(info)) !=
5683 if (info->snd_portid != data2->wmediumd)
5687 /* check if radio is configured properly */
5689 if ((data2->idle && !data2->tmp_chan) || !data2->started)
5692 /* A frame is received from user space */
5693 memset(&rx_status, 0, sizeof(rx_status));
5694 if (info->attrs[HWSIM_ATTR_FREQ]) {
5695 struct tx_iter_data iter_data = {};
5697 /* throw away off-channel packets, but allow both the temporary
5698 * ("hw" scan/remain-on-channel), regular channels and links,
5699 * since the internal datapath also allows this
5701 rx_status.freq = nla_get_u32(info->attrs[HWSIM_ATTR_FREQ]);
5703 iter_data.channel = ieee80211_get_channel(data2->hw->wiphy,
5705 if (!iter_data.channel)
5707 rx_status.band = iter_data.channel->band;
5709 mutex_lock(&data2->mutex);
5710 if (!hwsim_chans_compat(iter_data.channel, channel)) {
5711 ieee80211_iterate_active_interfaces_atomic(
5712 data2->hw, IEEE80211_IFACE_ITER_NORMAL,
5713 mac80211_hwsim_tx_iter, &iter_data);
5714 if (!iter_data.receive) {
5715 mutex_unlock(&data2->mutex);
5719 mutex_unlock(&data2->mutex);
5720 } else if (!channel) {
5723 rx_status.freq = channel->center_freq;
5724 rx_status.band = channel->band;
5727 rx_status.rate_idx = nla_get_u32(info->attrs[HWSIM_ATTR_RX_RATE]);
5728 if (rx_status.rate_idx >= data2->hw->wiphy->bands[rx_status.band]->n_bitrates)
5730 rx_status.signal = nla_get_u32(info->attrs[HWSIM_ATTR_SIGNAL]);
5732 hdr = (void *)skb->data;
5734 if (ieee80211_is_beacon(hdr->frame_control) ||
5735 ieee80211_is_probe_resp(hdr->frame_control))
5736 rx_status.boottime_ns = ktime_get_boottime_ns();
5738 mac80211_hwsim_rx(data2, &rx_status, skb);
5742 pr_debug("mac80211_hwsim: error occurred in %s\n", __func__);
5748 static int hwsim_register_received_nl(struct sk_buff *skb_2,
5749 struct genl_info *info)
5751 struct net *net = genl_info_net(info);
5752 struct mac80211_hwsim_data *data;
5755 spin_lock_bh(&hwsim_radio_lock);
5756 list_for_each_entry(data, &hwsim_radios, list)
5757 chans = max(chans, data->channels);
5758 spin_unlock_bh(&hwsim_radio_lock);
5760 /* In the future we should revise the userspace API and allow it
5761 * to set a flag that it does support multi-channel, then we can
5762 * let this pass conditionally on the flag.
5763 * For current userspace, prohibit it since it won't work right.
5768 if (hwsim_net_get_wmediumd(net))
5771 hwsim_register_wmediumd(net, info->snd_portid);
5773 pr_debug("mac80211_hwsim: received a REGISTER, "
5774 "switching to wmediumd mode with pid %d\n", info->snd_portid);
5779 /* ensures ciphers only include ciphers listed in 'hwsim_ciphers' array */
5780 static bool hwsim_known_ciphers(const u32 *ciphers, int n_ciphers)
5784 for (i = 0; i < n_ciphers; i++) {
5788 for (j = 0; j < ARRAY_SIZE(hwsim_ciphers); j++) {
5789 if (ciphers[i] == hwsim_ciphers[j]) {
5802 static int parse_ftm_capa(const struct nlattr *ftm_capa, struct cfg80211_pmsr_capabilities *out,
5803 struct genl_info *info)
5805 struct nlattr *tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX + 1];
5808 ret = nla_parse_nested(tb, NL80211_PMSR_FTM_CAPA_ATTR_MAX, ftm_capa, hwsim_ftm_capa_policy,
5811 NL_SET_ERR_MSG_ATTR(info->extack, ftm_capa, "malformed FTM capability");
5815 out->ftm.supported = 1;
5816 if (tb[NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES])
5817 out->ftm.preambles = nla_get_u32(tb[NL80211_PMSR_FTM_CAPA_ATTR_PREAMBLES]);
5818 if (tb[NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS])
5819 out->ftm.bandwidths = nla_get_u32(tb[NL80211_PMSR_FTM_CAPA_ATTR_BANDWIDTHS]);
5820 if (tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT])
5821 out->ftm.max_bursts_exponent =
5822 nla_get_u8(tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX_BURSTS_EXPONENT]);
5823 if (tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST])
5824 out->ftm.max_ftms_per_burst =
5825 nla_get_u8(tb[NL80211_PMSR_FTM_CAPA_ATTR_MAX_FTMS_PER_BURST]);
5826 out->ftm.asap = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_ASAP];
5827 out->ftm.non_asap = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_NON_ASAP];
5828 out->ftm.request_lci = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_REQ_LCI];
5829 out->ftm.request_civicloc = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_REQ_CIVICLOC];
5830 out->ftm.trigger_based = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_TRIGGER_BASED];
5831 out->ftm.non_trigger_based = !!tb[NL80211_PMSR_FTM_CAPA_ATTR_NON_TRIGGER_BASED];
5836 static int parse_pmsr_capa(const struct nlattr *pmsr_capa, struct cfg80211_pmsr_capabilities *out,
5837 struct genl_info *info)
5839 struct nlattr *tb[NL80211_PMSR_ATTR_MAX + 1];
5844 ret = nla_parse_nested(tb, NL80211_PMSR_ATTR_MAX, pmsr_capa, hwsim_pmsr_capa_policy, NULL);
5846 NL_SET_ERR_MSG_ATTR(info->extack, pmsr_capa, "malformed PMSR capability");
5850 if (tb[NL80211_PMSR_ATTR_MAX_PEERS])
5851 out->max_peers = nla_get_u32(tb[NL80211_PMSR_ATTR_MAX_PEERS]);
5852 out->report_ap_tsf = !!tb[NL80211_PMSR_ATTR_REPORT_AP_TSF];
5853 out->randomize_mac_addr = !!tb[NL80211_PMSR_ATTR_RANDOMIZE_MAC_ADDR];
5855 if (!tb[NL80211_PMSR_ATTR_TYPE_CAPA]) {
5856 NL_SET_ERR_MSG_ATTR(info->extack, tb[NL80211_PMSR_ATTR_TYPE_CAPA],
5857 "malformed PMSR type");
5861 nla_for_each_nested(nla, tb[NL80211_PMSR_ATTR_TYPE_CAPA], size) {
5862 switch (nla_type(nla)) {
5863 case NL80211_PMSR_TYPE_FTM:
5864 parse_ftm_capa(nla, out, info);
5867 NL_SET_ERR_MSG_ATTR(info->extack, nla, "unsupported measurement type");
5875 static int hwsim_new_radio_nl(struct sk_buff *msg, struct genl_info *info)
5877 struct hwsim_new_radio_params param = { 0 };
5878 const char *hwname = NULL;
5881 param.reg_strict = info->attrs[HWSIM_ATTR_REG_STRICT_REG];
5882 param.p2p_device = info->attrs[HWSIM_ATTR_SUPPORT_P2P_DEVICE];
5883 param.channels = channels;
5884 param.destroy_on_close =
5885 info->attrs[HWSIM_ATTR_DESTROY_RADIO_ON_CLOSE];
5887 if (info->attrs[HWSIM_ATTR_CHANNELS])
5888 param.channels = nla_get_u32(info->attrs[HWSIM_ATTR_CHANNELS]);
5890 if (param.channels < 1) {
5891 GENL_SET_ERR_MSG(info, "must have at least one channel");
5895 if (info->attrs[HWSIM_ATTR_NO_VIF])
5896 param.no_vif = true;
5898 if (info->attrs[HWSIM_ATTR_USE_CHANCTX])
5899 param.use_chanctx = true;
5901 param.use_chanctx = (param.channels > 1);
5903 if (info->attrs[HWSIM_ATTR_REG_HINT_ALPHA2])
5905 nla_data(info->attrs[HWSIM_ATTR_REG_HINT_ALPHA2]);
5907 if (info->attrs[HWSIM_ATTR_REG_CUSTOM_REG]) {
5908 u32 idx = nla_get_u32(info->attrs[HWSIM_ATTR_REG_CUSTOM_REG]);
5910 if (idx >= ARRAY_SIZE(hwsim_world_regdom_custom))
5913 idx = array_index_nospec(idx,
5914 ARRAY_SIZE(hwsim_world_regdom_custom));
5915 param.regd = hwsim_world_regdom_custom[idx];
5918 if (info->attrs[HWSIM_ATTR_PERM_ADDR]) {
5919 if (!is_valid_ether_addr(
5920 nla_data(info->attrs[HWSIM_ATTR_PERM_ADDR]))) {
5921 GENL_SET_ERR_MSG(info,"MAC is no valid source addr");
5922 NL_SET_BAD_ATTR(info->extack,
5923 info->attrs[HWSIM_ATTR_PERM_ADDR]);
5927 param.perm_addr = nla_data(info->attrs[HWSIM_ATTR_PERM_ADDR]);
5930 if (info->attrs[HWSIM_ATTR_IFTYPE_SUPPORT]) {
5932 nla_get_u32(info->attrs[HWSIM_ATTR_IFTYPE_SUPPORT]);
5934 if (param.iftypes & ~HWSIM_IFTYPE_SUPPORT_MASK) {
5935 NL_SET_ERR_MSG_ATTR(info->extack,
5936 info->attrs[HWSIM_ATTR_IFTYPE_SUPPORT],
5937 "cannot support more iftypes than kernel");
5941 param.iftypes = HWSIM_IFTYPE_SUPPORT_MASK;
5944 /* ensure both flag and iftype support is honored */
5945 if (param.p2p_device ||
5946 param.iftypes & BIT(NL80211_IFTYPE_P2P_DEVICE)) {
5947 param.iftypes |= BIT(NL80211_IFTYPE_P2P_DEVICE);
5948 param.p2p_device = true;
5951 if (info->attrs[HWSIM_ATTR_CIPHER_SUPPORT]) {
5952 u32 len = nla_len(info->attrs[HWSIM_ATTR_CIPHER_SUPPORT]);
5955 nla_data(info->attrs[HWSIM_ATTR_CIPHER_SUPPORT]);
5957 if (len % sizeof(u32)) {
5958 NL_SET_ERR_MSG_ATTR(info->extack,
5959 info->attrs[HWSIM_ATTR_CIPHER_SUPPORT],
5960 "bad cipher list length");
5964 param.n_ciphers = len / sizeof(u32);
5966 if (param.n_ciphers > ARRAY_SIZE(hwsim_ciphers)) {
5967 NL_SET_ERR_MSG_ATTR(info->extack,
5968 info->attrs[HWSIM_ATTR_CIPHER_SUPPORT],
5969 "too many ciphers specified");
5973 if (!hwsim_known_ciphers(param.ciphers, param.n_ciphers)) {
5974 NL_SET_ERR_MSG_ATTR(info->extack,
5975 info->attrs[HWSIM_ATTR_CIPHER_SUPPORT],
5976 "unsupported ciphers specified");
5981 param.mlo = info->attrs[HWSIM_ATTR_MLO_SUPPORT];
5984 param.use_chanctx = true;
5986 if (info->attrs[HWSIM_ATTR_RADIO_NAME]) {
5987 hwname = kstrndup((char *)nla_data(info->attrs[HWSIM_ATTR_RADIO_NAME]),
5988 nla_len(info->attrs[HWSIM_ATTR_RADIO_NAME]),
5992 param.hwname = hwname;
5995 if (info->attrs[HWSIM_ATTR_PMSR_SUPPORT]) {
5996 struct cfg80211_pmsr_capabilities *pmsr_capa;
5998 pmsr_capa = kmalloc(sizeof(*pmsr_capa), GFP_KERNEL);
6003 param.pmsr_capa = pmsr_capa;
6005 ret = parse_pmsr_capa(info->attrs[HWSIM_ATTR_PMSR_SUPPORT], pmsr_capa, info);
6010 ret = mac80211_hwsim_new_radio(info, ¶m);
6014 kfree(param.pmsr_capa);
6018 static int hwsim_del_radio_nl(struct sk_buff *msg, struct genl_info *info)
6020 struct mac80211_hwsim_data *data;
6022 const char *hwname = NULL;
6024 if (info->attrs[HWSIM_ATTR_RADIO_ID]) {
6025 idx = nla_get_u32(info->attrs[HWSIM_ATTR_RADIO_ID]);
6026 } else if (info->attrs[HWSIM_ATTR_RADIO_NAME]) {
6027 hwname = kstrndup((char *)nla_data(info->attrs[HWSIM_ATTR_RADIO_NAME]),
6028 nla_len(info->attrs[HWSIM_ATTR_RADIO_NAME]),
6035 spin_lock_bh(&hwsim_radio_lock);
6036 list_for_each_entry(data, &hwsim_radios, list) {
6038 if (data->idx != idx)
6042 strcmp(hwname, wiphy_name(data->hw->wiphy)))
6046 if (!net_eq(wiphy_net(data->hw->wiphy), genl_info_net(info)))
6049 list_del(&data->list);
6050 rhashtable_remove_fast(&hwsim_radios_rht, &data->rht,
6052 hwsim_radios_generation++;
6053 spin_unlock_bh(&hwsim_radio_lock);
6054 mac80211_hwsim_del_radio(data, wiphy_name(data->hw->wiphy),
6059 spin_unlock_bh(&hwsim_radio_lock);
6065 static int hwsim_get_radio_nl(struct sk_buff *msg, struct genl_info *info)
6067 struct mac80211_hwsim_data *data;
6068 struct sk_buff *skb;
6069 int idx, res = -ENODEV;
6071 if (!info->attrs[HWSIM_ATTR_RADIO_ID])
6073 idx = nla_get_u32(info->attrs[HWSIM_ATTR_RADIO_ID]);
6075 spin_lock_bh(&hwsim_radio_lock);
6076 list_for_each_entry(data, &hwsim_radios, list) {
6077 if (data->idx != idx)
6080 if (!net_eq(wiphy_net(data->hw->wiphy), genl_info_net(info)))
6083 skb = nlmsg_new(NLMSG_DEFAULT_SIZE, GFP_ATOMIC);
6089 res = mac80211_hwsim_get_radio(skb, data, info->snd_portid,
6090 info->snd_seq, NULL, 0);
6096 res = genlmsg_reply(skb, info);
6101 spin_unlock_bh(&hwsim_radio_lock);
6106 static int hwsim_dump_radio_nl(struct sk_buff *skb,
6107 struct netlink_callback *cb)
6109 int last_idx = cb->args[0] - 1;
6110 struct mac80211_hwsim_data *data = NULL;
6114 spin_lock_bh(&hwsim_radio_lock);
6115 cb->seq = hwsim_radios_generation;
6117 if (last_idx >= hwsim_radio_idx-1)
6120 list_for_each_entry(data, &hwsim_radios, list) {
6121 if (data->idx <= last_idx)
6124 if (!net_eq(wiphy_net(data->hw->wiphy), sock_net(skb->sk)))
6127 res = mac80211_hwsim_get_radio(skb, data,
6128 NETLINK_CB(cb->skb).portid,
6129 cb->nlh->nlmsg_seq, cb,
6134 last_idx = data->idx;
6137 cb->args[0] = last_idx + 1;
6139 /* list changed, but no new element sent, set interrupted flag */
6140 if (skb->len == 0 && cb->prev_seq && cb->seq != cb->prev_seq) {
6141 hdr = genlmsg_put(skb, NETLINK_CB(cb->skb).portid,
6142 cb->nlh->nlmsg_seq, &hwsim_genl_family,
6143 NLM_F_MULTI, HWSIM_CMD_GET_RADIO);
6145 genl_dump_check_consistent(cb, hdr);
6146 genlmsg_end(skb, hdr);
6153 spin_unlock_bh(&hwsim_radio_lock);
6154 return res ?: skb->len;
6157 /* Generic Netlink operations array */
6158 static const struct genl_small_ops hwsim_ops[] = {
6160 .cmd = HWSIM_CMD_REGISTER,
6161 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6162 .doit = hwsim_register_received_nl,
6163 .flags = GENL_UNS_ADMIN_PERM,
6166 .cmd = HWSIM_CMD_FRAME,
6167 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6168 .doit = hwsim_cloned_frame_received_nl,
6171 .cmd = HWSIM_CMD_TX_INFO_FRAME,
6172 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6173 .doit = hwsim_tx_info_frame_received_nl,
6176 .cmd = HWSIM_CMD_NEW_RADIO,
6177 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6178 .doit = hwsim_new_radio_nl,
6179 .flags = GENL_UNS_ADMIN_PERM,
6182 .cmd = HWSIM_CMD_DEL_RADIO,
6183 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6184 .doit = hwsim_del_radio_nl,
6185 .flags = GENL_UNS_ADMIN_PERM,
6188 .cmd = HWSIM_CMD_GET_RADIO,
6189 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6190 .doit = hwsim_get_radio_nl,
6191 .dumpit = hwsim_dump_radio_nl,
6194 .cmd = HWSIM_CMD_REPORT_PMSR,
6195 .validate = GENL_DONT_VALIDATE_STRICT | GENL_DONT_VALIDATE_DUMP,
6196 .doit = hwsim_pmsr_report_nl,
6200 static struct genl_family hwsim_genl_family __ro_after_init = {
6201 .name = "MAC80211_HWSIM",
6203 .maxattr = HWSIM_ATTR_MAX,
6204 .policy = hwsim_genl_policy,
6206 .module = THIS_MODULE,
6207 .small_ops = hwsim_ops,
6208 .n_small_ops = ARRAY_SIZE(hwsim_ops),
6209 .resv_start_op = HWSIM_CMD_REPORT_PMSR + 1, // match with __HWSIM_CMD_MAX
6210 .mcgrps = hwsim_mcgrps,
6211 .n_mcgrps = ARRAY_SIZE(hwsim_mcgrps),
6214 static void remove_user_radios(u32 portid)
6216 struct mac80211_hwsim_data *entry, *tmp;
6219 spin_lock_bh(&hwsim_radio_lock);
6220 list_for_each_entry_safe(entry, tmp, &hwsim_radios, list) {
6221 if (entry->destroy_on_close && entry->portid == portid) {
6222 list_move(&entry->list, &list);
6223 rhashtable_remove_fast(&hwsim_radios_rht, &entry->rht,
6225 hwsim_radios_generation++;
6228 spin_unlock_bh(&hwsim_radio_lock);
6230 list_for_each_entry_safe(entry, tmp, &list, list) {
6231 list_del(&entry->list);
6232 mac80211_hwsim_del_radio(entry, wiphy_name(entry->hw->wiphy),
6237 static int mac80211_hwsim_netlink_notify(struct notifier_block *nb,
6238 unsigned long state,
6241 struct netlink_notify *notify = _notify;
6243 if (state != NETLINK_URELEASE)
6246 remove_user_radios(notify->portid);
6248 if (notify->portid == hwsim_net_get_wmediumd(notify->net)) {
6249 printk(KERN_INFO "mac80211_hwsim: wmediumd released netlink"
6250 " socket, switching to perfect channel medium\n");
6251 hwsim_register_wmediumd(notify->net, 0);
6257 static struct notifier_block hwsim_netlink_notifier = {
6258 .notifier_call = mac80211_hwsim_netlink_notify,
6261 static int __init hwsim_init_netlink(void)
6265 printk(KERN_INFO "mac80211_hwsim: initializing netlink\n");
6267 rc = genl_register_family(&hwsim_genl_family);
6271 rc = netlink_register_notifier(&hwsim_netlink_notifier);
6273 genl_unregister_family(&hwsim_genl_family);
6280 pr_debug("mac80211_hwsim: error occurred in %s\n", __func__);
6284 static __net_init int hwsim_init_net(struct net *net)
6286 return hwsim_net_set_netgroup(net);
6289 static void __net_exit hwsim_exit_net(struct net *net)
6291 struct mac80211_hwsim_data *data, *tmp;
6294 spin_lock_bh(&hwsim_radio_lock);
6295 list_for_each_entry_safe(data, tmp, &hwsim_radios, list) {
6296 if (!net_eq(wiphy_net(data->hw->wiphy), net))
6299 /* Radios created in init_net are returned to init_net. */
6300 if (data->netgroup == hwsim_net_get_netgroup(&init_net))
6303 list_move(&data->list, &list);
6304 rhashtable_remove_fast(&hwsim_radios_rht, &data->rht,
6306 hwsim_radios_generation++;
6308 spin_unlock_bh(&hwsim_radio_lock);
6310 list_for_each_entry_safe(data, tmp, &list, list) {
6311 list_del(&data->list);
6312 mac80211_hwsim_del_radio(data,
6313 wiphy_name(data->hw->wiphy),
6317 ida_free(&hwsim_netgroup_ida, hwsim_net_get_netgroup(net));
6320 static struct pernet_operations hwsim_net_ops = {
6321 .init = hwsim_init_net,
6322 .exit = hwsim_exit_net,
6323 .id = &hwsim_net_id,
6324 .size = sizeof(struct hwsim_net),
6327 static void hwsim_exit_netlink(void)
6329 /* unregister the notifier */
6330 netlink_unregister_notifier(&hwsim_netlink_notifier);
6331 /* unregister the family */
6332 genl_unregister_family(&hwsim_genl_family);
6335 #if IS_REACHABLE(CONFIG_VIRTIO)
6336 static void hwsim_virtio_tx_done(struct virtqueue *vq)
6339 struct sk_buff *skb;
6340 unsigned long flags;
6342 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6343 while ((skb = virtqueue_get_buf(vq, &len)))
6344 dev_kfree_skb_irq(skb);
6345 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6348 static int hwsim_virtio_handle_cmd(struct sk_buff *skb)
6350 struct nlmsghdr *nlh;
6351 struct genlmsghdr *gnlh;
6352 struct nlattr *tb[HWSIM_ATTR_MAX + 1];
6353 struct genl_info info = {};
6356 nlh = nlmsg_hdr(skb);
6357 gnlh = nlmsg_data(nlh);
6359 if (skb->len < nlh->nlmsg_len)
6362 err = genlmsg_parse(nlh, &hwsim_genl_family, tb, HWSIM_ATTR_MAX,
6363 hwsim_genl_policy, NULL);
6365 pr_err_ratelimited("hwsim: genlmsg_parse returned %d\n", err);
6371 switch (gnlh->cmd) {
6372 case HWSIM_CMD_FRAME:
6373 hwsim_cloned_frame_received_nl(skb, &info);
6375 case HWSIM_CMD_TX_INFO_FRAME:
6376 hwsim_tx_info_frame_received_nl(skb, &info);
6378 case HWSIM_CMD_REPORT_PMSR:
6379 hwsim_pmsr_report_nl(skb, &info);
6382 pr_err_ratelimited("hwsim: invalid cmd: %d\n", gnlh->cmd);
6388 static void hwsim_virtio_rx_work(struct work_struct *work)
6390 struct virtqueue *vq;
6392 struct sk_buff *skb;
6393 struct scatterlist sg[1];
6395 unsigned long flags;
6397 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6398 if (!hwsim_virtio_enabled)
6401 skb = virtqueue_get_buf(hwsim_vqs[HWSIM_VQ_RX], &len);
6404 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6406 skb->data = skb->head;
6407 skb_reset_tail_pointer(skb);
6409 hwsim_virtio_handle_cmd(skb);
6411 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6412 if (!hwsim_virtio_enabled) {
6413 dev_kfree_skb_irq(skb);
6416 vq = hwsim_vqs[HWSIM_VQ_RX];
6417 sg_init_one(sg, skb->head, skb_end_offset(skb));
6418 err = virtqueue_add_inbuf(vq, sg, 1, skb, GFP_ATOMIC);
6419 if (WARN(err, "virtqueue_add_inbuf returned %d\n", err))
6420 dev_kfree_skb_irq(skb);
6423 schedule_work(&hwsim_virtio_rx);
6426 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6429 static void hwsim_virtio_rx_done(struct virtqueue *vq)
6431 schedule_work(&hwsim_virtio_rx);
6434 static int init_vqs(struct virtio_device *vdev)
6436 vq_callback_t *callbacks[HWSIM_NUM_VQS] = {
6437 [HWSIM_VQ_TX] = hwsim_virtio_tx_done,
6438 [HWSIM_VQ_RX] = hwsim_virtio_rx_done,
6440 const char *names[HWSIM_NUM_VQS] = {
6441 [HWSIM_VQ_TX] = "tx",
6442 [HWSIM_VQ_RX] = "rx",
6445 return virtio_find_vqs(vdev, HWSIM_NUM_VQS,
6446 hwsim_vqs, callbacks, names, NULL);
6449 static int fill_vq(struct virtqueue *vq)
6452 struct sk_buff *skb;
6453 struct scatterlist sg[1];
6455 for (i = 0; i < virtqueue_get_vring_size(vq); i++) {
6456 skb = genlmsg_new(GENLMSG_DEFAULT_SIZE, GFP_KERNEL);
6460 sg_init_one(sg, skb->head, skb_end_offset(skb));
6461 err = virtqueue_add_inbuf(vq, sg, 1, skb, GFP_KERNEL);
6471 static void remove_vqs(struct virtio_device *vdev)
6475 virtio_reset_device(vdev);
6477 for (i = 0; i < ARRAY_SIZE(hwsim_vqs); i++) {
6478 struct virtqueue *vq = hwsim_vqs[i];
6479 struct sk_buff *skb;
6481 while ((skb = virtqueue_detach_unused_buf(vq)))
6485 vdev->config->del_vqs(vdev);
6488 static int hwsim_virtio_probe(struct virtio_device *vdev)
6491 unsigned long flags;
6493 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6494 if (hwsim_virtio_enabled) {
6495 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6498 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6500 err = init_vqs(vdev);
6504 virtio_device_ready(vdev);
6506 err = fill_vq(hwsim_vqs[HWSIM_VQ_RX]);
6510 spin_lock_irqsave(&hwsim_virtio_lock, flags);
6511 hwsim_virtio_enabled = true;
6512 spin_unlock_irqrestore(&hwsim_virtio_lock, flags);
6514 schedule_work(&hwsim_virtio_rx);
6522 static void hwsim_virtio_remove(struct virtio_device *vdev)
6524 hwsim_virtio_enabled = false;
6526 cancel_work_sync(&hwsim_virtio_rx);
6531 /* MAC80211_HWSIM virtio device id table */
6532 static const struct virtio_device_id id_table[] = {
6533 { VIRTIO_ID_MAC80211_HWSIM, VIRTIO_DEV_ANY_ID },
6536 MODULE_DEVICE_TABLE(virtio, id_table);
6538 static struct virtio_driver virtio_hwsim = {
6539 .driver.name = KBUILD_MODNAME,
6540 .driver.owner = THIS_MODULE,
6541 .id_table = id_table,
6542 .probe = hwsim_virtio_probe,
6543 .remove = hwsim_virtio_remove,
6546 static int hwsim_register_virtio_driver(void)
6548 return register_virtio_driver(&virtio_hwsim);
6551 static void hwsim_unregister_virtio_driver(void)
6553 unregister_virtio_driver(&virtio_hwsim);
6556 static inline int hwsim_register_virtio_driver(void)
6561 static inline void hwsim_unregister_virtio_driver(void)
6566 static int __init init_mac80211_hwsim(void)
6570 if (radios < 0 || radios > 100)
6576 err = rhashtable_init(&hwsim_radios_rht, &hwsim_rht_params);
6580 err = register_pernet_device(&hwsim_net_ops);
6584 err = platform_driver_register(&mac80211_hwsim_driver);
6586 goto out_unregister_pernet;
6588 err = hwsim_init_netlink();
6590 goto out_unregister_driver;
6592 err = hwsim_register_virtio_driver();
6594 goto out_exit_netlink;
6596 hwsim_class = class_create("mac80211_hwsim");
6597 if (IS_ERR(hwsim_class)) {
6598 err = PTR_ERR(hwsim_class);
6599 goto out_exit_virtio;
6602 hwsim_init_s1g_channels(hwsim_channels_s1g);
6604 for (i = 0; i < radios; i++) {
6605 struct hwsim_new_radio_params param = { 0 };
6607 param.channels = channels;
6610 case HWSIM_REGTEST_DIFF_COUNTRY:
6611 if (i < ARRAY_SIZE(hwsim_alpha2s))
6612 param.reg_alpha2 = hwsim_alpha2s[i];
6614 case HWSIM_REGTEST_DRIVER_REG_FOLLOW:
6616 param.reg_alpha2 = hwsim_alpha2s[0];
6618 case HWSIM_REGTEST_STRICT_ALL:
6619 param.reg_strict = true;
6621 case HWSIM_REGTEST_DRIVER_REG_ALL:
6622 param.reg_alpha2 = hwsim_alpha2s[0];
6624 case HWSIM_REGTEST_WORLD_ROAM:
6626 param.regd = &hwsim_world_regdom_custom_01;
6628 case HWSIM_REGTEST_CUSTOM_WORLD:
6629 param.regd = &hwsim_world_regdom_custom_01;
6631 case HWSIM_REGTEST_CUSTOM_WORLD_2:
6633 param.regd = &hwsim_world_regdom_custom_01;
6635 param.regd = &hwsim_world_regdom_custom_02;
6637 case HWSIM_REGTEST_STRICT_FOLLOW:
6639 param.reg_strict = true;
6640 param.reg_alpha2 = hwsim_alpha2s[0];
6643 case HWSIM_REGTEST_STRICT_AND_DRIVER_REG:
6645 param.reg_strict = true;
6646 param.reg_alpha2 = hwsim_alpha2s[0];
6647 } else if (i == 1) {
6648 param.reg_alpha2 = hwsim_alpha2s[1];
6651 case HWSIM_REGTEST_ALL:
6654 param.regd = &hwsim_world_regdom_custom_01;
6657 param.regd = &hwsim_world_regdom_custom_02;
6660 param.reg_alpha2 = hwsim_alpha2s[0];
6663 param.reg_alpha2 = hwsim_alpha2s[1];
6666 param.reg_strict = true;
6667 param.reg_alpha2 = hwsim_alpha2s[2];
6675 param.p2p_device = support_p2p_device;
6677 param.use_chanctx = channels > 1 || mlo;
6678 param.iftypes = HWSIM_IFTYPE_SUPPORT_MASK;
6679 if (param.p2p_device)
6680 param.iftypes |= BIT(NL80211_IFTYPE_P2P_DEVICE);
6682 err = mac80211_hwsim_new_radio(NULL, ¶m);
6684 goto out_free_radios;
6687 hwsim_mon = alloc_netdev(0, "hwsim%d", NET_NAME_UNKNOWN,
6689 if (hwsim_mon == NULL) {
6691 goto out_free_radios;
6695 err = dev_alloc_name(hwsim_mon, hwsim_mon->name);
6701 err = register_netdevice(hwsim_mon);
6711 free_netdev(hwsim_mon);
6713 mac80211_hwsim_free();
6715 hwsim_unregister_virtio_driver();
6717 hwsim_exit_netlink();
6718 out_unregister_driver:
6719 platform_driver_unregister(&mac80211_hwsim_driver);
6720 out_unregister_pernet:
6721 unregister_pernet_device(&hwsim_net_ops);
6723 rhashtable_destroy(&hwsim_radios_rht);
6726 module_init(init_mac80211_hwsim);
6728 static void __exit exit_mac80211_hwsim(void)
6730 pr_debug("mac80211_hwsim: unregister radios\n");
6732 hwsim_unregister_virtio_driver();
6733 hwsim_exit_netlink();
6735 mac80211_hwsim_free();
6737 rhashtable_destroy(&hwsim_radios_rht);
6738 unregister_netdev(hwsim_mon);
6739 platform_driver_unregister(&mac80211_hwsim_driver);
6740 unregister_pernet_device(&hwsim_net_ops);
6742 module_exit(exit_mac80211_hwsim);
projects / releases.git / blob