ibss.c 27.0 KB
Newer Older
1 2 3 4 5 6 7 8 9 10 11 12 13 14 15
/*
 * IBSS mode implementation
 * Copyright 2003-2008, Jouni Malinen <j@w1.fi>
 * Copyright 2004, Instant802 Networks, Inc.
 * Copyright 2005, Devicescape Software, Inc.
 * Copyright 2006-2007	Jiri Benc <jbenc@suse.cz>
 * Copyright 2007, Michael Wu <flamingice@sourmilk.net>
 * Copyright 2009, Johannes Berg <johannes@sipsolutions.net>
 *
 * This program is free software; you can redistribute it and/or modify
 * it under the terms of the GNU General Public License version 2 as
 * published by the Free Software Foundation.
 */

#include <linux/delay.h>
16
#include <linux/slab.h>
17 18 19 20 21 22 23 24 25
#include <linux/if_ether.h>
#include <linux/skbuff.h>
#include <linux/if_arp.h>
#include <linux/etherdevice.h>
#include <linux/rtnetlink.h>
#include <net/mac80211.h>
#include <asm/unaligned.h>

#include "ieee80211_i.h"
26
#include "driver-ops.h"
27 28 29 30 31 32 33 34 35 36 37 38 39 40 41 42
#include "rate.h"

#define IEEE80211_SCAN_INTERVAL (2 * HZ)
#define IEEE80211_SCAN_INTERVAL_SLOW (15 * HZ)
#define IEEE80211_IBSS_JOIN_TIMEOUT (7 * HZ)

#define IEEE80211_IBSS_MERGE_INTERVAL (30 * HZ)
#define IEEE80211_IBSS_INACTIVITY_LIMIT (60 * HZ)

#define IEEE80211_IBSS_MAX_STA_ENTRIES 128


static void ieee80211_rx_mgmt_auth_ibss(struct ieee80211_sub_if_data *sdata,
					struct ieee80211_mgmt *mgmt,
					size_t len)
{
43
	u16 auth_alg, auth_transaction;
44

J
Johannes Berg 已提交
45 46
	lockdep_assert_held(&sdata->u.ibss.mtx);

47 48 49 50 51 52 53 54 55 56 57 58 59 60
	if (len < 24 + 6)
		return;

	auth_alg = le16_to_cpu(mgmt->u.auth.auth_alg);
	auth_transaction = le16_to_cpu(mgmt->u.auth.auth_transaction);

	/*
	 * IEEE 802.11 standard does not require authentication in IBSS
	 * networks and most implementations do not seem to use it.
	 * However, try to reply to authentication attempts if someone
	 * has actually implemented this.
	 */
	if (auth_alg == WLAN_AUTH_OPEN && auth_transaction == 1)
		ieee80211_send_auth(sdata, 2, WLAN_AUTH_OPEN, NULL, 0,
J
Johannes Berg 已提交
61
				    sdata->u.ibss.bssid, NULL, 0, 0);
62 63
}

64 65 66
static void __ieee80211_sta_join_ibss(struct ieee80211_sub_if_data *sdata,
				      const u8 *bssid, const int beacon_int,
				      struct ieee80211_channel *chan,
67
				      const u32 basic_rates,
68
				      const u16 capability, u64 tsf)
69 70 71
{
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;
	struct ieee80211_local *local = sdata->local;
72
	int rates, i;
73 74 75 76
	struct sk_buff *skb;
	struct ieee80211_mgmt *mgmt;
	u8 *pos;
	struct ieee80211_supported_band *sband;
J
Johannes Berg 已提交
77
	struct cfg80211_bss *bss;
78
	u32 bss_change;
79
	u8 supp_rates[IEEE80211_MAX_SUPP_RATES];
80

J
Johannes Berg 已提交
81 82
	lockdep_assert_held(&ifibss->mtx);

83
	/* Reset own TSF to allow time synchronization work. */
84
	drv_reset_tsf(local, sdata);
85

86
	skb = ifibss->skb;
87
	RCU_INIT_POINTER(ifibss->presp, NULL);
88 89 90 91 92
	synchronize_rcu();
	skb->data = skb->head;
	skb->len = 0;
	skb_reset_tail_pointer(skb);
	skb_reserve(skb, sdata->local->hw.extra_tx_headroom);
93

94 95
	if (memcmp(ifibss->bssid, bssid, ETH_ALEN))
		sta_info_flush(sdata->local, sdata);
96

97 98 99 100 101 102
	/* if merging, indicate to driver that we leave the old IBSS */
	if (sdata->vif.bss_conf.ibss_joined) {
		sdata->vif.bss_conf.ibss_joined = false;
		ieee80211_bss_info_change_notify(sdata, BSS_CHANGED_IBSS);
	}

103 104
	memcpy(ifibss->bssid, bssid, ETH_ALEN);

105
	sdata->drop_unencrypted = capability & WLAN_CAPABILITY_PRIVACY ? 1 : 0;
106

107
	local->oper_channel = chan;
108
	WARN_ON(!ieee80211_set_channel_type(local, sdata, NL80211_CHAN_NO_HT));
109
	ieee80211_hw_config(local, IEEE80211_CONF_CHANGE_CHANNEL);
110

111
	sband = local->hw.wiphy->bands[chan->band];
112

113 114 115 116 117 118 119 120 121 122
	/* build supported rates array */
	pos = supp_rates;
	for (i = 0; i < sband->n_bitrates; i++) {
		int rate = sband->bitrates[i].bitrate;
		u8 basic = 0;
		if (basic_rates & BIT(i))
			basic = 0x80;
		*pos++ = basic | (u8) (rate / 5);
	}

123
	/* Build IBSS probe response */
124
	mgmt = (void *) skb_put(skb, 24 + sizeof(mgmt->u.beacon));
125 126 127 128
	memset(mgmt, 0, 24 + sizeof(mgmt->u.beacon));
	mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
					  IEEE80211_STYPE_PROBE_RESP);
	memset(mgmt->da, 0xff, ETH_ALEN);
129
	memcpy(mgmt->sa, sdata->vif.addr, ETH_ALEN);
130
	memcpy(mgmt->bssid, ifibss->bssid, ETH_ALEN);
131
	mgmt->u.beacon.beacon_int = cpu_to_le16(beacon_int);
132
	mgmt->u.beacon.timestamp = cpu_to_le64(tsf);
133 134 135 136 137 138 139
	mgmt->u.beacon.capab_info = cpu_to_le16(capability);

	pos = skb_put(skb, 2 + ifibss->ssid_len);
	*pos++ = WLAN_EID_SSID;
	*pos++ = ifibss->ssid_len;
	memcpy(pos, ifibss->ssid, ifibss->ssid_len);

140
	rates = sband->n_bitrates;
141 142 143 144 145 146 147 148 149 150 151
	if (rates > 8)
		rates = 8;
	pos = skb_put(skb, 2 + rates);
	*pos++ = WLAN_EID_SUPP_RATES;
	*pos++ = rates;
	memcpy(pos, supp_rates, rates);

	if (sband->band == IEEE80211_BAND_2GHZ) {
		pos = skb_put(skb, 2 + 1);
		*pos++ = WLAN_EID_DS_PARAMS;
		*pos++ = 1;
152
		*pos++ = ieee80211_frequency_to_channel(chan->center_freq);
153 154 155 156 157 158 159 160 161
	}

	pos = skb_put(skb, 2 + 2);
	*pos++ = WLAN_EID_IBSS_PARAMS;
	*pos++ = 2;
	/* FIX: set ATIM window based on scan results */
	*pos++ = 0;
	*pos++ = 0;

162 163
	if (sband->n_bitrates > 8) {
		rates = sband->n_bitrates - 8;
164 165 166 167 168 169
		pos = skb_put(skb, 2 + rates);
		*pos++ = WLAN_EID_EXT_SUPP_RATES;
		*pos++ = rates;
		memcpy(pos, &supp_rates[8], rates);
	}

170 171 172 173
	if (ifibss->ie_len)
		memcpy(skb_put(skb, ifibss->ie_len),
		       ifibss->ie, ifibss->ie_len);

174 175 176 177 178 179 180 181 182 183 184 185 186
	if (local->hw.queues >= 4) {
		pos = skb_put(skb, 9);
		*pos++ = WLAN_EID_VENDOR_SPECIFIC;
		*pos++ = 7; /* len */
		*pos++ = 0x00; /* Microsoft OUI 00:50:F2 */
		*pos++ = 0x50;
		*pos++ = 0xf2;
		*pos++ = 2; /* WME */
		*pos++ = 0; /* WME info */
		*pos++ = 1; /* WME ver */
		*pos++ = 0; /* U-APSD no in use */
	}

187
	RCU_INIT_POINTER(ifibss->presp, skb);
188

189
	sdata->vif.bss_conf.beacon_int = beacon_int;
190
	sdata->vif.bss_conf.basic_rates = basic_rates;
191 192 193 194 195
	bss_change = BSS_CHANGED_BEACON_INT;
	bss_change |= ieee80211_reset_erp_info(sdata);
	bss_change |= BSS_CHANGED_BSSID;
	bss_change |= BSS_CHANGED_BEACON;
	bss_change |= BSS_CHANGED_BEACON_ENABLED;
196
	bss_change |= BSS_CHANGED_BASIC_RATES;
197 198
	bss_change |= BSS_CHANGED_IBSS;
	sdata->vif.bss_conf.ibss_joined = true;
199
	ieee80211_bss_info_change_notify(sdata, bss_change);
200

201
	ieee80211_sta_def_wmm_params(sdata, sband->n_bitrates, supp_rates);
202 203

	ifibss->state = IEEE80211_IBSS_MLME_JOINED;
204 205
	mod_timer(&ifibss->timer,
		  round_jiffies(jiffies + IEEE80211_IBSS_MERGE_INTERVAL));
206

J
Johannes Berg 已提交
207 208 209
	bss = cfg80211_inform_bss_frame(local->hw.wiphy, local->hw.conf.channel,
					mgmt, skb->len, 0, GFP_KERNEL);
	cfg80211_put_bss(bss);
210
	cfg80211_ibss_joined(sdata->dev, ifibss->bssid, GFP_KERNEL);
211 212
}

213 214
static void ieee80211_sta_join_ibss(struct ieee80211_sub_if_data *sdata,
				    struct ieee80211_bss *bss)
215
{
216 217
	struct cfg80211_bss *cbss =
		container_of((void *)bss, struct cfg80211_bss, priv);
218 219 220
	struct ieee80211_supported_band *sband;
	u32 basic_rates;
	int i, j;
221
	u16 beacon_int = cbss->beacon_interval;
222

J
Johannes Berg 已提交
223 224
	lockdep_assert_held(&sdata->u.ibss.mtx);

225 226 227
	if (beacon_int < 10)
		beacon_int = 10;

228
	sband = sdata->local->hw.wiphy->bands[cbss->channel->band];
229 230 231 232 233 234 235 236 237 238 239 240 241 242 243 244

	basic_rates = 0;

	for (i = 0; i < bss->supp_rates_len; i++) {
		int rate = (bss->supp_rates[i] & 0x7f) * 5;
		bool is_basic = !!(bss->supp_rates[i] & 0x80);

		for (j = 0; j < sband->n_bitrates; j++) {
			if (sband->bitrates[j].bitrate == rate) {
				if (is_basic)
					basic_rates |= BIT(j);
				break;
			}
		}
	}

245
	__ieee80211_sta_join_ibss(sdata, cbss->bssid,
246
				  beacon_int,
247
				  cbss->channel,
248
				  basic_rates,
249 250
				  cbss->capability,
				  cbss->tsf);
251 252 253 254 255 256 257 258 259 260 261
}

static void ieee80211_rx_bss_info(struct ieee80211_sub_if_data *sdata,
				  struct ieee80211_mgmt *mgmt,
				  size_t len,
				  struct ieee80211_rx_status *rx_status,
				  struct ieee802_11_elems *elems,
				  bool beacon)
{
	struct ieee80211_local *local = sdata->local;
	int freq;
262
	struct cfg80211_bss *cbss;
263 264 265 266 267 268 269 270
	struct ieee80211_bss *bss;
	struct sta_info *sta;
	struct ieee80211_channel *channel;
	u64 beacon_timestamp, rx_timestamp;
	u32 supp_rates = 0;
	enum ieee80211_band band = rx_status->band;

	if (elems->ds_params && elems->ds_params_len == 1)
271 272
		freq = ieee80211_channel_to_frequency(elems->ds_params[0],
						      band);
273 274 275 276 277 278 279 280
	else
		freq = rx_status->freq;

	channel = ieee80211_get_channel(local->hw.wiphy, freq);

	if (!channel || channel->flags & IEEE80211_CHAN_DISABLED)
		return;

281
	if (sdata->vif.type == NL80211_IFTYPE_ADHOC &&
282 283 284
	    memcmp(mgmt->bssid, sdata->u.ibss.bssid, ETH_ALEN) == 0) {

		rcu_read_lock();
285
		sta = sta_info_get(sdata, mgmt->sa);
286

287 288 289 290 291 292 293 294 295 296
		if (elems->supp_rates) {
			supp_rates = ieee80211_sta_get_rates(local, elems,
							     band);
			if (sta) {
				u32 prev_rates;

				prev_rates = sta->sta.supp_rates[band];
				/* make sure mandatory rates are always added */
				sta->sta.supp_rates[band] = supp_rates |
					ieee80211_mandatory_rates(local, band);
297

298
				if (sta->sta.supp_rates[band] != prev_rates) {
299
#ifdef CONFIG_MAC80211_IBSS_DEBUG
300 301 302 303 304 305 306
					printk(KERN_DEBUG
						"%s: updated supp_rates set "
						"for %pM based on beacon"
						"/probe_resp (0x%x -> 0x%x)\n",
						sdata->name, sta->sta.addr,
						prev_rates,
						sta->sta.supp_rates[band]);
307
#endif
308 309 310 311 312 313
					rate_control_rate_init(sta);
				}
			} else
				sta = ieee80211_ibss_add_sta(sdata, mgmt->bssid,
						mgmt->sa, supp_rates,
						GFP_ATOMIC);
314
		}
315 316

		if (sta && elems->wmm_info)
J
Johannes Berg 已提交
317
			set_sta_flag(sta, WLAN_STA_WME);
318 319

		rcu_read_unlock();
320 321 322 323 324 325 326
	}

	bss = ieee80211_bss_info_update(local, rx_status, mgmt, len, elems,
					channel, beacon);
	if (!bss)
		return;

327 328
	cbss = container_of((void *)bss, struct cfg80211_bss, priv);

329
	/* was just updated in ieee80211_bss_info_update */
330
	beacon_timestamp = cbss->tsf;
331 332 333 334

	/* check if we need to merge IBSS */

	/* we use a fixed BSSID */
335
	if (sdata->u.ibss.fixed_bssid)
336 337 338
		goto put_bss;

	/* not an IBSS */
339
	if (!(cbss->capability & WLAN_CAPABILITY_IBSS))
340 341 342
		goto put_bss;

	/* different channel */
343
	if (cbss->channel != local->oper_channel)
344 345 346 347 348 349 350 351
		goto put_bss;

	/* different SSID */
	if (elems->ssid_len != sdata->u.ibss.ssid_len ||
	    memcmp(elems->ssid, sdata->u.ibss.ssid,
				sdata->u.ibss.ssid_len))
		goto put_bss;

352
	/* same BSSID */
353
	if (memcmp(cbss->bssid, sdata->u.ibss.bssid, ETH_ALEN) == 0)
354 355
		goto put_bss;

J
Johannes Berg 已提交
356
	if (rx_status->flag & RX_FLAG_MACTIME_MPDU) {
357 358 359 360 361 362 363 364 365 366 367 368 369 370 371 372 373 374 375 376 377 378 379
		/*
		 * For correct IBSS merging we need mactime; since mactime is
		 * defined as the time the first data symbol of the frame hits
		 * the PHY, and the timestamp of the beacon is defined as "the
		 * time that the data symbol containing the first bit of the
		 * timestamp is transmitted to the PHY plus the transmitting
		 * STA's delays through its local PHY from the MAC-PHY
		 * interface to its interface with the WM" (802.11 11.1.2)
		 * - equals the time this bit arrives at the receiver - we have
		 * to take into account the offset between the two.
		 *
		 * E.g. at 1 MBit that means mactime is 192 usec earlier
		 * (=24 bytes * 8 usecs/byte) than the beacon timestamp.
		 */
		int rate;

		if (rx_status->flag & RX_FLAG_HT)
			rate = 65; /* TODO: HT rates */
		else
			rate = local->hw.wiphy->bands[band]->
				bitrates[rx_status->rate_idx].bitrate;

		rx_timestamp = rx_status->mactime + (24 * 8 * 10 / rate);
380 381 382 383 384
	} else {
		/*
		 * second best option: get current TSF
		 * (will return -1 if not supported)
		 */
385
		rx_timestamp = drv_get_tsf(local, sdata);
386
	}
387 388 389 390 391 392 393 394 395 396 397 398 399 400 401

#ifdef CONFIG_MAC80211_IBSS_DEBUG
	printk(KERN_DEBUG "RX beacon SA=%pM BSSID="
	       "%pM TSF=0x%llx BCN=0x%llx diff=%lld @%lu\n",
	       mgmt->sa, mgmt->bssid,
	       (unsigned long long)rx_timestamp,
	       (unsigned long long)beacon_timestamp,
	       (unsigned long long)(rx_timestamp - beacon_timestamp),
	       jiffies);
#endif

	if (beacon_timestamp > rx_timestamp) {
#ifdef CONFIG_MAC80211_IBSS_DEBUG
		printk(KERN_DEBUG "%s: beacon TSF higher than "
		       "local TSF - IBSS merge with BSSID %pM\n",
402
		       sdata->name, mgmt->bssid);
403 404
#endif
		ieee80211_sta_join_ibss(sdata, bss);
405
		supp_rates = ieee80211_sta_get_rates(local, elems, band);
406 407
		ieee80211_ibss_add_sta(sdata, mgmt->bssid, mgmt->sa,
				       supp_rates, GFP_KERNEL);
408 409 410 411 412 413 414 415 416 417 418 419
	}

 put_bss:
	ieee80211_rx_bss_put(local, bss);
}

/*
 * Add a new IBSS station, will also be called by the RX code when,
 * in IBSS mode, receiving a frame from a yet-unknown station, hence
 * must be callable in atomic context.
 */
struct sta_info *ieee80211_ibss_add_sta(struct ieee80211_sub_if_data *sdata,
A
Alexander Simon 已提交
420
					u8 *bssid, u8 *addr, u32 supp_rates,
421
					gfp_t gfp)
422
{
423
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;
424 425 426 427
	struct ieee80211_local *local = sdata->local;
	struct sta_info *sta;
	int band = local->hw.conf.channel->band;

428 429 430 431
	/*
	 * XXX: Consider removing the least recently used entry and
	 * 	allow new one to be added.
	 */
432
	if (local->num_sta >= IEEE80211_IBSS_MAX_STA_ENTRIES) {
433 434
		if (net_ratelimit())
			printk(KERN_DEBUG "%s: No room for a new IBSS STA entry %pM\n",
435
			       sdata->name, addr);
436 437 438
		return NULL;
	}

439 440 441
	if (ifibss->state == IEEE80211_IBSS_MLME_SEARCH)
		return NULL;

442 443 444 445
	if (compare_ether_addr(bssid, sdata->u.ibss.bssid))
		return NULL;

#ifdef CONFIG_MAC80211_VERBOSE_DEBUG
J
Joe Perches 已提交
446 447
	wiphy_debug(local->hw.wiphy, "Adding new IBSS station %pM (dev=%s)\n",
		    addr, sdata->name);
448 449
#endif

450
	sta = sta_info_alloc(sdata, addr, gfp);
451 452 453
	if (!sta)
		return NULL;

454
	sta->last_rx = jiffies;
J
Johannes Berg 已提交
455
	set_sta_flag(sta, WLAN_STA_AUTHORIZED);
456 457 458 459 460 461 462

	/* make sure mandatory rates are always added */
	sta->sta.supp_rates[band] = supp_rates |
			ieee80211_mandatory_rates(local, band);

	rate_control_rate_init(sta);

463
	/* If it fails, maybe we raced another insertion? */
464
	if (sta_info_insert(sta))
465
		return sta_info_get(sdata, addr);
466 467 468 469 470 471 472 473 474
	return sta;
}

static int ieee80211_sta_active_ibss(struct ieee80211_sub_if_data *sdata)
{
	struct ieee80211_local *local = sdata->local;
	int active = 0;
	struct sta_info *sta;

J
Johannes Berg 已提交
475 476
	lockdep_assert_held(&sdata->u.ibss.mtx);

477 478 479 480 481 482 483 484 485 486 487 488 489 490 491 492
	rcu_read_lock();

	list_for_each_entry_rcu(sta, &local->sta_list, list) {
		if (sta->sdata == sdata &&
		    time_after(sta->last_rx + IEEE80211_IBSS_MERGE_INTERVAL,
			       jiffies)) {
			active++;
			break;
		}
	}

	rcu_read_unlock();

	return active;
}

493 494 495
/*
 * This function is called with state == IEEE80211_IBSS_MLME_JOINED
 */
496 497 498 499 500

static void ieee80211_sta_merge_ibss(struct ieee80211_sub_if_data *sdata)
{
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;

J
Johannes Berg 已提交
501 502
	lockdep_assert_held(&ifibss->mtx);

503 504
	mod_timer(&ifibss->timer,
		  round_jiffies(jiffies + IEEE80211_IBSS_MERGE_INTERVAL));
505 506

	ieee80211_sta_expire(sdata, IEEE80211_IBSS_INACTIVITY_LIMIT);
507

S
Sujith 已提交
508 509 510 511
	if (time_before(jiffies, ifibss->last_scan_completed +
		       IEEE80211_IBSS_MERGE_INTERVAL))
		return;

512 513 514
	if (ieee80211_sta_active_ibss(sdata))
		return;

515
	if (ifibss->fixed_channel)
516 517 518
		return;

	printk(KERN_DEBUG "%s: No active IBSS STAs - trying to scan for other "
519
	       "IBSS networks with same SSID (merge)\n", sdata->name);
520

J
Johannes Berg 已提交
521 522 523
	ieee80211_request_internal_scan(sdata,
			ifibss->ssid, ifibss->ssid_len,
			ifibss->fixed_channel ? ifibss->channel : NULL);
524 525
}

526
static void ieee80211_sta_create_ibss(struct ieee80211_sub_if_data *sdata)
527 528 529 530 531 532
{
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;
	u8 bssid[ETH_ALEN];
	u16 capability;
	int i;

J
Johannes Berg 已提交
533 534
	lockdep_assert_held(&ifibss->mtx);

535
	if (ifibss->fixed_bssid) {
536 537 538 539 540 541 542
		memcpy(bssid, ifibss->bssid, ETH_ALEN);
	} else {
		/* Generate random, not broadcast, locally administered BSSID. Mix in
		 * own MAC address to make sure that devices that do not have proper
		 * random number generator get different BSSID. */
		get_random_bytes(bssid, ETH_ALEN);
		for (i = 0; i < ETH_ALEN; i++)
543
			bssid[i] ^= sdata->vif.addr[i];
544 545 546 547 548
		bssid[0] &= ~0x01;
		bssid[0] |= 0x02;
	}

	printk(KERN_DEBUG "%s: Creating new IBSS network, BSSID %pM\n",
549
	       sdata->name, bssid);
550 551 552

	capability = WLAN_CAPABILITY_IBSS;

J
Johannes Berg 已提交
553
	if (ifibss->privacy)
554 555 556 557
		capability |= WLAN_CAPABILITY_PRIVACY;
	else
		sdata->drop_unencrypted = 0;

558
	__ieee80211_sta_join_ibss(sdata, bssid, sdata->vif.bss_conf.beacon_int,
559
				  ifibss->channel, ifibss->basic_rates,
560
				  capability, 0);
561 562
}

563 564 565 566
/*
 * This function is called with state == IEEE80211_IBSS_MLME_SEARCH
 */

567
static void ieee80211_sta_find_ibss(struct ieee80211_sub_if_data *sdata)
568 569 570
{
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;
	struct ieee80211_local *local = sdata->local;
571
	struct cfg80211_bss *cbss;
572
	struct ieee80211_channel *chan = NULL;
573 574
	const u8 *bssid = NULL;
	int active_ibss;
575
	u16 capability;
576

J
Johannes Berg 已提交
577 578
	lockdep_assert_held(&ifibss->mtx);

579 580 581
	active_ibss = ieee80211_sta_active_ibss(sdata);
#ifdef CONFIG_MAC80211_IBSS_DEBUG
	printk(KERN_DEBUG "%s: sta_find_ibss (active_ibss=%d)\n",
582
	       sdata->name, active_ibss);
583 584 585
#endif /* CONFIG_MAC80211_IBSS_DEBUG */

	if (active_ibss)
586
		return;
587

588
	capability = WLAN_CAPABILITY_IBSS;
J
Johannes Berg 已提交
589
	if (ifibss->privacy)
590
		capability |= WLAN_CAPABILITY_PRIVACY;
591 592 593 594 595
	if (ifibss->fixed_bssid)
		bssid = ifibss->bssid;
	if (ifibss->fixed_channel)
		chan = ifibss->channel;
	if (!is_zero_ether_addr(ifibss->bssid))
596
		bssid = ifibss->bssid;
597 598 599 600 601 602 603
	cbss = cfg80211_get_bss(local->hw.wiphy, chan, bssid,
				ifibss->ssid, ifibss->ssid_len,
				WLAN_CAPABILITY_IBSS | WLAN_CAPABILITY_PRIVACY,
				capability);

	if (cbss) {
		struct ieee80211_bss *bss;
604

605
		bss = (void *)cbss->priv;
606 607
#ifdef CONFIG_MAC80211_IBSS_DEBUG
		printk(KERN_DEBUG "   sta_find_ibss: selected %pM current "
608
		       "%pM\n", cbss->bssid, ifibss->bssid);
609 610 611 612
#endif /* CONFIG_MAC80211_IBSS_DEBUG */

		printk(KERN_DEBUG "%s: Selected IBSS BSSID %pM"
		       " based on configured SSID\n",
613
		       sdata->name, cbss->bssid);
614

615
		ieee80211_sta_join_ibss(sdata, bss);
616
		ieee80211_rx_bss_put(local, bss);
617
		return;
R
Reinette Chatre 已提交
618
	}
619 620 621 622 623 624

#ifdef CONFIG_MAC80211_IBSS_DEBUG
	printk(KERN_DEBUG "   did not try to join ibss\n");
#endif /* CONFIG_MAC80211_IBSS_DEBUG */

	/* Selected IBSS not found in current scan results - try to scan */
625
	if (time_after(jiffies, ifibss->last_scan_completed +
626 627
					IEEE80211_SCAN_INTERVAL)) {
		printk(KERN_DEBUG "%s: Trigger new scan to find an IBSS to "
628
		       "join\n", sdata->name);
629

J
Johannes Berg 已提交
630 631 632
		ieee80211_request_internal_scan(sdata,
				ifibss->ssid, ifibss->ssid_len,
				ifibss->fixed_channel ? ifibss->channel : NULL);
633
	} else {
634 635 636 637
		int interval = IEEE80211_SCAN_INTERVAL;

		if (time_after(jiffies, ifibss->ibss_join_req +
			       IEEE80211_IBSS_JOIN_TIMEOUT)) {
638 639 640 641
			if (!(local->oper_channel->flags & IEEE80211_CHAN_NO_IBSS)) {
				ieee80211_sta_create_ibss(sdata);
				return;
			}
642
			printk(KERN_DEBUG "%s: IBSS not allowed on"
643
			       " %d MHz\n", sdata->name,
644 645 646 647 648 649 650
			       local->hw.conf.channel->center_freq);

			/* No IBSS found - decrease scan interval and continue
			 * scanning. */
			interval = IEEE80211_SCAN_INTERVAL_SLOW;
		}

651 652
		mod_timer(&ifibss->timer,
			  round_jiffies(jiffies + interval));
653 654 655 656
	}
}

static void ieee80211_rx_mgmt_probe_req(struct ieee80211_sub_if_data *sdata,
657
					struct sk_buff *req)
658
{
659
	struct ieee80211_mgmt *mgmt = (void *)req->data;
660 661
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;
	struct ieee80211_local *local = sdata->local;
662
	int tx_last_beacon, len = req->len;
663 664
	struct sk_buff *skb;
	struct ieee80211_mgmt *resp;
J
Johannes Berg 已提交
665
	struct sk_buff *presp;
666 667
	u8 *pos, *end;

J
Johannes Berg 已提交
668 669
	lockdep_assert_held(&ifibss->mtx);

J
Johannes Berg 已提交
670 671 672
	presp = rcu_dereference_protected(ifibss->presp,
					  lockdep_is_held(&ifibss->mtx));

673
	if (ifibss->state != IEEE80211_IBSS_MLME_JOINED ||
J
Johannes Berg 已提交
674
	    len < 24 + 2 || !presp)
675 676
		return;

677
	tx_last_beacon = drv_tx_last_beacon(local);
678 679 680 681

#ifdef CONFIG_MAC80211_IBSS_DEBUG
	printk(KERN_DEBUG "%s: RX ProbeReq SA=%pM DA=%pM BSSID=%pM"
	       " (tx_last_beacon=%d)\n",
682
	       sdata->name, mgmt->sa, mgmt->da,
683 684 685
	       mgmt->bssid, tx_last_beacon);
#endif /* CONFIG_MAC80211_IBSS_DEBUG */

686
	if (!tx_last_beacon && is_multicast_ether_addr(mgmt->da))
687 688 689 690 691 692 693 694 695 696 697 698 699
		return;

	if (memcmp(mgmt->bssid, ifibss->bssid, ETH_ALEN) != 0 &&
	    memcmp(mgmt->bssid, "\xff\xff\xff\xff\xff\xff", ETH_ALEN) != 0)
		return;

	end = ((u8 *) mgmt) + len;
	pos = mgmt->u.probe_req.variable;
	if (pos[0] != WLAN_EID_SSID ||
	    pos + 2 + pos[1] > end) {
#ifdef CONFIG_MAC80211_IBSS_DEBUG
		printk(KERN_DEBUG "%s: Invalid SSID IE in ProbeReq "
		       "from %pM\n",
700
		       sdata->name, mgmt->sa);
701 702 703 704 705
#endif
		return;
	}
	if (pos[1] != 0 &&
	    (pos[1] != ifibss->ssid_len ||
706
	     memcmp(pos + 2, ifibss->ssid, ifibss->ssid_len))) {
707 708 709 710 711
		/* Ignore ProbeReq for foreign SSID */
		return;
	}

	/* Reply with ProbeResp */
J
Johannes Berg 已提交
712
	skb = skb_copy(presp, GFP_KERNEL);
713 714 715 716 717 718 719
	if (!skb)
		return;

	resp = (struct ieee80211_mgmt *) skb->data;
	memcpy(resp->da, mgmt->sa, ETH_ALEN);
#ifdef CONFIG_MAC80211_IBSS_DEBUG
	printk(KERN_DEBUG "%s: Sending ProbeResp to %pM\n",
720
	       sdata->name, resp->da);
721
#endif /* CONFIG_MAC80211_IBSS_DEBUG */
722 723
	IEEE80211_SKB_CB(skb)->flags |= IEEE80211_TX_INTFL_DONT_ENCRYPT;
	ieee80211_tx_skb(sdata, skb);
724 725 726 727 728 729 730 731 732 733
}

static void ieee80211_rx_mgmt_probe_resp(struct ieee80211_sub_if_data *sdata,
					 struct ieee80211_mgmt *mgmt,
					 size_t len,
					 struct ieee80211_rx_status *rx_status)
{
	size_t baselen;
	struct ieee802_11_elems elems;

734
	if (memcmp(mgmt->da, sdata->vif.addr, ETH_ALEN))
735 736 737 738 739 740 741 742 743 744 745 746 747 748 749 750 751 752 753 754 755 756 757 758 759 760 761 762 763 764
		return; /* ignore ProbeResp to foreign address */

	baselen = (u8 *) mgmt->u.probe_resp.variable - (u8 *) mgmt;
	if (baselen > len)
		return;

	ieee802_11_parse_elems(mgmt->u.probe_resp.variable, len - baselen,
				&elems);

	ieee80211_rx_bss_info(sdata, mgmt, len, rx_status, &elems, false);
}

static void ieee80211_rx_mgmt_beacon(struct ieee80211_sub_if_data *sdata,
				     struct ieee80211_mgmt *mgmt,
				     size_t len,
				     struct ieee80211_rx_status *rx_status)
{
	size_t baselen;
	struct ieee802_11_elems elems;

	/* Process beacon from the current BSS */
	baselen = (u8 *) mgmt->u.beacon.variable - (u8 *) mgmt;
	if (baselen > len)
		return;

	ieee802_11_parse_elems(mgmt->u.beacon.variable, len - baselen, &elems);

	ieee80211_rx_bss_info(sdata, mgmt, len, rx_status, &elems, true);
}

765 766
void ieee80211_ibss_rx_queued_mgmt(struct ieee80211_sub_if_data *sdata,
				   struct sk_buff *skb)
767 768 769 770 771
{
	struct ieee80211_rx_status *rx_status;
	struct ieee80211_mgmt *mgmt;
	u16 fc;

772
	rx_status = IEEE80211_SKB_RXCB(skb);
773 774 775
	mgmt = (struct ieee80211_mgmt *) skb->data;
	fc = le16_to_cpu(mgmt->frame_control);

J
Johannes Berg 已提交
776 777
	mutex_lock(&sdata->u.ibss.mtx);

778 779 780
	if (!sdata->u.ibss.ssid_len)
		goto mgmt_out; /* not ready to merge yet */

781 782
	switch (fc & IEEE80211_FCTL_STYPE) {
	case IEEE80211_STYPE_PROBE_REQ:
783
		ieee80211_rx_mgmt_probe_req(sdata, skb);
784 785 786 787 788 789 790 791 792 793 794 795 796
		break;
	case IEEE80211_STYPE_PROBE_RESP:
		ieee80211_rx_mgmt_probe_resp(sdata, mgmt, skb->len,
					     rx_status);
		break;
	case IEEE80211_STYPE_BEACON:
		ieee80211_rx_mgmt_beacon(sdata, mgmt, skb->len,
					 rx_status);
		break;
	case IEEE80211_STYPE_AUTH:
		ieee80211_rx_mgmt_auth_ibss(sdata, mgmt, skb->len);
		break;
	}
J
Johannes Berg 已提交
797

798
 mgmt_out:
J
Johannes Berg 已提交
799
	mutex_unlock(&sdata->u.ibss.mtx);
800 801
}

802
void ieee80211_ibss_work(struct ieee80211_sub_if_data *sdata)
803
{
804
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;
805

J
Johannes Berg 已提交
806 807 808 809 810 811 812 813 814
	mutex_lock(&ifibss->mtx);

	/*
	 * Work could be scheduled after scan or similar
	 * when we aren't even joined (or trying) with a
	 * network.
	 */
	if (!ifibss->ssid_len)
		goto out;
815 816 817 818 819 820 821 822 823 824 825 826 827

	switch (ifibss->state) {
	case IEEE80211_IBSS_MLME_SEARCH:
		ieee80211_sta_find_ibss(sdata);
		break;
	case IEEE80211_IBSS_MLME_JOINED:
		ieee80211_sta_merge_ibss(sdata);
		break;
	default:
		WARN_ON(1);
		break;
	}

J
Johannes Berg 已提交
828 829
 out:
	mutex_unlock(&ifibss->mtx);
830 831
}

832 833 834 835 836 837 838
static void ieee80211_ibss_timer(unsigned long data)
{
	struct ieee80211_sub_if_data *sdata =
		(struct ieee80211_sub_if_data *) data;
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;
	struct ieee80211_local *local = sdata->local;

839 840 841 842 843
	if (local->quiescing) {
		ifibss->timer_running = true;
		return;
	}

J
Johannes Berg 已提交
844
	ieee80211_queue_work(&local->hw, &sdata->work);
845 846
}

847 848 849 850 851 852 853 854 855 856 857 858 859 860 861 862 863 864 865 866
#ifdef CONFIG_PM
void ieee80211_ibss_quiesce(struct ieee80211_sub_if_data *sdata)
{
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;

	if (del_timer_sync(&ifibss->timer))
		ifibss->timer_running = true;
}

void ieee80211_ibss_restart(struct ieee80211_sub_if_data *sdata)
{
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;

	if (ifibss->timer_running) {
		add_timer(&ifibss->timer);
		ifibss->timer_running = false;
	}
}
#endif

867 868 869 870 871 872
void ieee80211_ibss_setup_sdata(struct ieee80211_sub_if_data *sdata)
{
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;

	setup_timer(&ifibss->timer, ieee80211_ibss_timer,
		    (unsigned long) sdata);
J
Johannes Berg 已提交
873
	mutex_init(&ifibss->mtx);
874 875 876 877 878
}

/* scan finished notification */
void ieee80211_ibss_notify_scan_completed(struct ieee80211_local *local)
{
879
	struct ieee80211_sub_if_data *sdata;
880

881 882
	mutex_lock(&local->iflist_mtx);
	list_for_each_entry(sdata, &local->interfaces, list) {
883
		if (!ieee80211_sdata_running(sdata))
884
			continue;
885 886 887
		if (sdata->vif.type != NL80211_IFTYPE_ADHOC)
			continue;
		sdata->u.ibss.last_scan_completed = jiffies;
J
Johannes Berg 已提交
888
		ieee80211_queue_work(&local->hw, &sdata->work);
889
	}
890
	mutex_unlock(&local->iflist_mtx);
891 892
}

893 894 895 896 897
int ieee80211_ibss_join(struct ieee80211_sub_if_data *sdata,
			struct cfg80211_ibss_params *params)
{
	struct sk_buff *skb;

J
Johannes Berg 已提交
898 899 900 901 902 903 904 905 906 907 908
	skb = dev_alloc_skb(sdata->local->hw.extra_tx_headroom +
			    36 /* bitrates */ +
			    34 /* SSID */ +
			    3  /* DS params */ +
			    4  /* IBSS params */ +
			    params->ie_len);
	if (!skb)
		return -ENOMEM;

	mutex_lock(&sdata->u.ibss.mtx);

909 910 911 912 913 914
	if (params->bssid) {
		memcpy(sdata->u.ibss.bssid, params->bssid, ETH_ALEN);
		sdata->u.ibss.fixed_bssid = true;
	} else
		sdata->u.ibss.fixed_bssid = false;

J
Johannes Berg 已提交
915
	sdata->u.ibss.privacy = params->privacy;
916
	sdata->u.ibss.basic_rates = params->basic_rates;
917 918
	memcpy(sdata->vif.bss_conf.mcast_rate, params->mcast_rate,
	       sizeof(params->mcast_rate));
J
Johannes Berg 已提交
919

920 921
	sdata->vif.bss_conf.beacon_int = params->beacon_interval;

922 923 924
	sdata->u.ibss.channel = params->channel;
	sdata->u.ibss.fixed_channel = params->channel_fixed;

925 926 927
	/* fix ourselves to that channel now already */
	if (params->channel_fixed) {
		sdata->local->oper_channel = params->channel;
928 929
		WARN_ON(!ieee80211_set_channel_type(sdata->local, sdata,
						    NL80211_CHAN_NO_HT));
930 931
	}

932 933 934 935 936 937 938 939 940 941 942
	if (params->ie) {
		sdata->u.ibss.ie = kmemdup(params->ie, params->ie_len,
					   GFP_KERNEL);
		if (sdata->u.ibss.ie)
			sdata->u.ibss.ie_len = params->ie_len;
	}

	sdata->u.ibss.skb = skb;
	sdata->u.ibss.state = IEEE80211_IBSS_MLME_SEARCH;
	sdata->u.ibss.ibss_join_req = jiffies;

943 944 945
	memcpy(sdata->u.ibss.ssid, params->ssid, IEEE80211_MAX_SSID_LEN);
	sdata->u.ibss.ssid_len = params->ssid_len;

946 947 948
	mutex_unlock(&sdata->u.ibss.mtx);

	mutex_lock(&sdata->local->mtx);
J
Johannes Berg 已提交
949
	ieee80211_recalc_idle(sdata->local);
950
	mutex_unlock(&sdata->local->mtx);
J
Johannes Berg 已提交
951

J
Johannes Berg 已提交
952
	ieee80211_queue_work(&sdata->local->hw, &sdata->work);
953 954 955 956 957 958 959

	return 0;
}

int ieee80211_ibss_leave(struct ieee80211_sub_if_data *sdata)
{
	struct sk_buff *skb;
960 961 962 963
	struct ieee80211_if_ibss *ifibss = &sdata->u.ibss;
	struct ieee80211_local *local = sdata->local;
	struct cfg80211_bss *cbss;
	u16 capability;
J
Johannes Berg 已提交
964 965 966
	int active_ibss;

	mutex_lock(&sdata->u.ibss.mtx);
967

J
Johannes Berg 已提交
968 969 970 971
	sdata->u.ibss.state = IEEE80211_IBSS_MLME_SEARCH;
	memset(sdata->u.ibss.bssid, 0, ETH_ALEN);
	sdata->u.ibss.ssid_len = 0;

972 973 974 975 976 977 978 979 980 981 982 983 984 985 986 987 988 989 990
	active_ibss = ieee80211_sta_active_ibss(sdata);

	if (!active_ibss && !is_zero_ether_addr(ifibss->bssid)) {
		capability = WLAN_CAPABILITY_IBSS;

		if (ifibss->privacy)
			capability |= WLAN_CAPABILITY_PRIVACY;

		cbss = cfg80211_get_bss(local->hw.wiphy, ifibss->channel,
					ifibss->bssid, ifibss->ssid,
					ifibss->ssid_len, WLAN_CAPABILITY_IBSS |
					WLAN_CAPABILITY_PRIVACY,
					capability);

		if (cbss) {
			cfg80211_unlink_bss(local->hw.wiphy, cbss);
			cfg80211_put_bss(cbss);
		}
	}
991 992 993 994 995

	sta_info_flush(sdata->local, sdata);

	/* remove beacon */
	kfree(sdata->u.ibss.ie);
J
Johannes Berg 已提交
996 997
	skb = rcu_dereference_protected(sdata->u.ibss.presp,
					lockdep_is_held(&sdata->u.ibss.mtx));
998
	RCU_INIT_POINTER(sdata->u.ibss.presp, NULL);
999 1000 1001
	sdata->vif.bss_conf.ibss_joined = false;
	ieee80211_bss_info_change_notify(sdata, BSS_CHANGED_BEACON_ENABLED |
						BSS_CHANGED_IBSS);
1002 1003 1004
	synchronize_rcu();
	kfree_skb(skb);

J
Johannes Berg 已提交
1005
	skb_queue_purge(&sdata->skb_queue);
J
Johannes Berg 已提交
1006

1007
	del_timer_sync(&sdata->u.ibss.timer);
J
Johannes Berg 已提交
1008 1009

	mutex_unlock(&sdata->u.ibss.mtx);
1010

1011
	mutex_lock(&local->mtx);
J
Johannes Berg 已提交
1012
	ieee80211_recalc_idle(sdata->local);
1013
	mutex_unlock(&local->mtx);
1014 1015 1016

	return 0;
}