83fdf72a16
* remotes/origin/tmp-4716ccc :
UPSTREAM: media: rc: Fix use-after-free bugs caused by ene_tx_irqsim()
ANDROID: incremental fs: Evict inodes before freeing mount data
UPSTREAM: ext4: fix kernel BUG in 'ext4_write_inline_data_end()'
UPSTREAM: hid: bigben_probe(): validate report count
UPSTREAM: HID: bigben: use spinlock to safely schedule workers
BACKPORT: of: base: Skip CPU nodes with "fail"/"fail-..." status
UPSTREAM: HID: bigben_worker() remove unneeded check on report_field
UPSTREAM: HID: bigben: use spinlock to protect concurrent accesses
UPSTREAM: hwrng: virtio - add an internal buffer
UPSTREAM: ext4: fix another off-by-one fsmap error on 1k block filesystems
UPSTREAM: ext4: refuse to create ea block when umounted
UPSTREAM: ext4: optimize ea_inode block expansion
UPSTREAM: ext4: allocate extended attribute value in vmalloc area
BACKPORT: FROMGIT: cgroup: Use separate src/dst nodes when preloading css_sets for migration
ANDROID: fs/f2fs: fixup __f2fs_cluster_blocks with F2FS_FS_COMPRESSION
UPSTREAM: usb: gadget: f_fs: Ensure ep0req is dequeued before free_request
UPSTREAM: KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS
Revert "iommu: Add gfp parameter to iommu_ops::map"
Revert "iommu/amd: Pass gfp flags to iommu_map_page() in amd_iommu_map()"
Revert "RDMA/usnic: use iommu_map_atomic() under spin_lock()"
Linux 5.4.233
bpf: add missing header file include
Revert "net/sched: taprio: make qdisc_leaf() see the per-netdev-queue pfifo child qdiscs"
ext4: Fix function prototype mismatch for ext4_feat_ktype
wifi: mwifiex: Add missing compatible string for SD8787
uaccess: Add speculation barrier to copy_from_user()
mac80211: mesh: embedd mesh_paths and mpp_paths into ieee80211_if_mesh
drm/i915/gvt: fix double free bug in split_2MB_gtt_entry
alarmtimer: Prevent starvation by small intervals and SIG_IGN
powerpc: dts: t208x: Disable 10G on MAC1 and MAC2
can: kvaser_usb: hydra: help gcc-13 to figure out cmd_len
KVM: VMX: Execute IBPB on emulated VM-exit when guest has IBRS
KVM: x86: Fail emulation during EMULTYPE_SKIP on any exception
random: always mix cycle counter in add_latent_entropy()
powerpc: dts: t208x: Mark MAC1 and MAC2 as 10G
wifi: rtl8xxxu: gen2: Turn on the rate control
drm/etnaviv: don't truncate physical page address
drm: etnaviv: fix common struct sg_table related issues
scatterlist: add generic wrappers for iterating over sgtable objects
dma-mapping: add generic helpers for mapping sgtable objects
Linux 5.4.232
iommu/amd: Pass gfp flags to iommu_map_page() in amd_iommu_map()
net: sched: sch: Fix off by one in htb_activate_prios()
ASoC: SOF: Intel: hda-dai: fix possible stream_tag leak
nilfs2: fix underflow in second superblock position calculations
kvm: initialize all of the kvm_debugregs structure before sending it to userspace
i40e: Add checking for null for nlmsg_find_attr()
ipv6: Fix tcp socket connection with DSCP.
ipv6: Fix datagram socket connection with DSCP.
ixgbe: add double of VLAN header when computing the max MTU
net: mpls: fix stale pointer if allocation fails during device rename
net: stmmac: Restrict warning on disabling DMA store and fwd mode
bnxt_en: Fix mqprio and XDP ring checking logic
net: stmmac: fix order of dwmac5 FlexPPS parametrization sequence
net/usb: kalmia: Don't pass act_len in usb_bulk_msg error path
dccp/tcp: Avoid negative sk_forward_alloc by ipv6_pinfo.pktoptions.
sctp: sctp_sock_filter(): avoid list_entry() on possibly empty list
net: bgmac: fix BCM5358 support by setting correct flags
i40e: add double of VLAN header when computing the max MTU
ixgbe: allow to increase MTU to 3K with XDP enabled
revert "squashfs: harden sanity check in squashfs_read_xattr_id_table"
net: Fix unwanted sign extension in netdev_stats_to_stats64()
Revert "mm: Always release pages to the buddy allocator in memblock_free_late()."
hugetlb: check for undefined shift on 32 bit architectures
sched/psi: Fix use-after-free in ep_remove_wait_queue()
ALSA: hda/realtek - fixed wrong gpio assigned
ALSA: hda/conexant: add a new hda codec SN6180
mmc: mmc_spi: fix error handling in mmc_spi_probe()
mmc: sdio: fix possible resource leaks in some error paths
ipv4: Fix incorrect route flushing when source address is deleted
Revert "ipv4: Fix incorrect route flushing when source address is deleted"
xfs: sync lazy sb accounting on quiesce of read-only mounts
xfs: prevent UAF in xfs_log_item_in_current_chkpt
xfs: fix the forward progress assertion in xfs_iwalk_run_callbacks
xfs: ensure inobt record walks always make forward progress
xfs: fix missing CoW blocks writeback conversion retry
xfs: only relog deferred intent items if free space in the log gets low
xfs: expose the log push threshold
xfs: periodically relog deferred intent items
xfs: change the order in which child and parent defer ops are finished
xfs: fix an incore inode UAF in xfs_bui_recover
xfs: clean up xfs_bui_item_recover iget/trans_alloc/ilock ordering
xfs: clean up bmap intent item recovery checking
xfs: xfs_defer_capture should absorb remaining transaction reservation
xfs: xfs_defer_capture should absorb remaining block reservations
xfs: proper replay of deferred ops queued during log recovery
xfs: fix finobt btree block recovery ordering
xfs: log new intent items created as part of finishing recovered intent items
xfs: refactor xfs_defer_finish_noroll
xfs: turn dfp_intent into a xfs_log_item
xfs: merge the ->diff_items defer op into ->create_intent
xfs: merge the ->log_item defer op into ->create_intent
xfs: factor out a xfs_defer_create_intent helper
xfs: remove the xfs_inode_log_item_t typedef
xfs: remove the xfs_efd_log_item_t typedef
xfs: remove the xfs_efi_log_item_t typedef
netfilter: nft_tproxy: restrict to prerouting hook
btrfs: free device in btrfs_close_devices for a single device filesystem
aio: fix mremap after fork null-deref
nvme-fc: fix a missing queue put in nvmet_fc_ls_create_association
s390/decompressor: specify __decompress() buf len to avoid overflow
net: sched: sch: Bounds check priority
net: stmmac: do not stop RX_CLK in Rx LPI state for qcs404 SoC
net/rose: Fix to not accept on connected socket
tools/virtio: fix the vringh test for virtio ring changes
ASoC: cs42l56: fix DT probe
selftests/bpf: Verify copy_register_state() preserves parent/live fields
migrate: hugetlb: check for hugetlb shared PMD in node migration
bpf: Always return target ifindex in bpf_fib_lookup
nvme-pci: Move enumeration by class to be last in the table
arm64: dts: meson-axg: Make mmc host controller interrupts level-sensitive
arm64: dts: meson-g12-common: Make mmc host controller interrupts level-sensitive
arm64: dts: meson-gx: Make mmc host controller interrupts level-sensitive
riscv: Fixup race condition on PG_dcache_clean in flush_icache_pte
ceph: flush cap releases when the session is flushed
usb: typec: altmodes/displayport: Fix probe pin assign check
usb: core: add quirk for Alcor Link AK9563 smartcard reader
net: USB: Fix wrong-direction WARNING in plusb.c
pinctrl: intel: Restore the pins that used to be in Direct IRQ mode
pinctrl: single: fix potential NULL dereference
pinctrl: aspeed: Fix confusing types in return value
ALSA: pci: lx6464es: fix a debug loop
selftests: forwarding: lib: quote the sysctl values
rds: rds_rm_zerocopy_callback() use list_first_entry()
ice: Do not use WQ_MEM_RECLAIM flag for workqueue
ionic: clean interrupt before enabling queue to avoid credit race
net: phy: meson-gxl: use MMD access dummy stubs for GXL, internal PHY
bonding: fix error checking in bond_debug_reregister()
xfrm: fix bug with DSCP copy to v6 from v4 tunnel
RDMA/usnic: use iommu_map_atomic() under spin_lock()
iommu: Add gfp parameter to iommu_ops::map
IB/IPoIB: Fix legacy IPoIB due to wrong number of queues
IB/hfi1: Restore allocated resources on failed copyout
can: j1939: do not wait 250 ms if the same addr was already claimed
tracing: Fix poll() and select() do not work on per_cpu trace_pipe and trace_pipe_raw
ALSA: emux: Avoid potential array out-of-bound in snd_emux_xg_control()
btrfs: zlib: zero-initialize zlib workspace
btrfs: limit device extents to the device size
iio:adc:twl6030: Enable measurement of VAC
wifi: brcmfmac: Check the count value of channel spec to prevent out-of-bounds reads
f2fs: fix to do sanity check on i_extra_isize in is_alive()
fbdev: smscufx: fix error handling code in ufx_usb_probe
powerpc/imc-pmu: Revert nest_init_lock to being a mutex
serial: 8250_dma: Fix DMA Rx rearm race
serial: 8250_dma: Fix DMA Rx completion race
xprtrdma: Fix regbuf data not freed in rpcrdma_req_create()
mm: swap: properly update readahead statistics in unuse_pte_range()
nvmem: core: fix cell removal on error
Squashfs: fix handling and sanity checking of xattr_ids count
mm/swapfile: add cond_resched() in get_swap_pages()
fpga: stratix10-soc: Fix return value check in s10_ops_write_init()
mm: hugetlb: proc: check for hugetlb shared PMD in /proc/PID/smaps
riscv: disable generation of unwind tables
parisc: Wire up PTRACE_GETREGS/PTRACE_SETREGS for compat case
parisc: Fix return code of pdc_iodc_print()
iio:adc:twl6030: Enable measurements of VUSB, VBAT and others
iio: adc: berlin2-adc: Add missing of_node_put() in error path
iio: hid: fix the retval in accel_3d_capture_sample
efi: Accept version 2 of memory attributes table
watchdog: diag288_wdt: fix __diag288() inline assembly
watchdog: diag288_wdt: do not use stack buffers for hardware data
fbcon: Check font dimension limits
Input: i8042 - add Clevo PCX0DX to i8042 quirk table
Input: i8042 - add TUXEDO devices to i8042 quirk tables
Input: i8042 - merge quirk tables
Input: i8042 - move __initconst to fix code styling warning
vc_screen: move load of struct vc_data pointer in vcs_read() to avoid UAF
usb: gadget: f_fs: Fix unbalanced spinlock in __ffs_ep0_queue_wait
usb: dwc3: qcom: enable vbus override when in OTG dr-mode
usb: dwc3: dwc3-qcom: Fix typo in the dwc3 vbus override API
iio: adc: stm32-dfsdm: fill module aliases
net/x25: Fix to not accept on connected socket
i2c: rk3x: fix a bunch of kernel-doc warnings
scsi: iscsi_tcp: Fix UAF during login when accessing the shost ipaddress
scsi: target: core: Fix warning on RT kernels
efi: fix potential NULL deref in efi_mem_reserve_persistent
net: openvswitch: fix flow memory leak in ovs_flow_cmd_new
virtio-net: Keep stop() to follow mirror sequence of open()
selftests: net: udpgso_bench_tx: Cater for pending datagrams zerocopy benchmarking
selftests: net: udpgso_bench: Fix racing bug between the rx/tx programs
selftests: net: udpgso_bench_rx/tx: Stop when wrong CLI args are provided
selftests: net: udpgso_bench_rx: Fix 'used uninitialized' compiler warning
ata: libata: Fix sata_down_spd_limit() when no link speed is reported
can: j1939: fix errant WARN_ON_ONCE in j1939_session_deactivate
net: phy: meson-gxl: Add generic dummy stubs for MMD register access
squashfs: harden sanity check in squashfs_read_xattr_id_table
netfilter: br_netfilter: disable sabotage_in hook after first suppression
netrom: Fix use-after-free caused by accept on already connected socket
fix "direction" argument of iov_iter_kvec()
fix iov_iter_bvec() "direction" argument
WRITE is "data source", not destination...
scsi: Revert "scsi: core: map PQ=1, PDT=other values to SCSI_SCAN_TARGET_PRESENT"
arm64: dts: imx8mm: Fix pad control for UART1_DTE_RX
ALSA: hda/via: Avoid potential array out-of-bound in add_secret_dac_path()
ASoC: Intel: bytcr_rt5651: Drop reference count of ACPI device after use
bus: sunxi-rsb: Fix error handling in sunxi_rsb_init()
firewire: fix memory leak for payload of request subaction to IEC 61883-1 FCP region
Linux 5.4.231
Revert "xprtrdma: Fix regbuf data not freed in rpcrdma_req_create()"
usb: host: xhci-plat: add wakeup entry at sysfs
Bluetooth: fix null ptr deref on hci_sync_conn_complete_evt
ipv6: ensure sane device mtu in tunnels
exit: Use READ_ONCE() for all oops/warn limit reads
docs: Fix path paste-o for /sys/kernel/warn_count
panic: Expose "warn_count" to sysfs
panic: Introduce warn_limit
panic: Consolidate open-coded panic_on_warn checks
exit: Allow oops_limit to be disabled
exit: Expose "oops_count" to sysfs
exit: Put an upper limit on how often we can oops
ia64: make IA64_MCA_RECOVERY bool instead of tristate
csky: Fix function name in csky_alignment() and die()
h8300: Fix build errors from do_exit() to make_task_dead() transition
hexagon: Fix function name in die()
objtool: Add a missing comma to avoid string concatenation
exit: Add and use make_task_dead.
mm: kasan: do not panic if both panic_on_warn and kasan_multishot set
panic: unset panic_on_warn inside panic()
sysctl: add a new register_sysctl_init() interface
dmaengine: imx-sdma: Fix a possible memory leak in sdma_transfer_init
blk-cgroup: fix missing pd_online_fn() while activating policy
bpf: Skip task with pid=1 in send_signal_common()
ARM: dts: imx: Fix pca9547 i2c-mux node name
x86/asm: Fix an assembler warning with current binutils
clk: Fix pointer casting to prevent oops in devm_clk_release()
perf/x86/amd: fix potential integer overflow on shift of a int
netfilter: conntrack: unify established states for SCTP paths
x86/i8259: Mark legacy PIC interrupts with IRQ_LEVEL
block: fix and cleanup bio_check_ro
nfsd: Ensure knfsd shuts down when the "nfsd" pseudofs is unmounted
Revert "Input: synaptics - switch touchpad on HP Laptop 15-da3001TU to RMI mode"
net: mdio-mux-meson-g12a: force internal PHY off on mux switch
net: xgene: Move shared header file into include/linux
net/phy/mdio-i2c: Move header file to include/linux/mdio
net/tg3: resolve deadlock in tg3_reset_task() during EEH
thermal: intel: int340x: Add locking to int340x_thermal_get_trip_type()
net: ravb: Fix possible hang if RIS2_QFF1 happen
sctp: fail if no bound addresses can be used for a given scope
net/sched: sch_taprio: do not schedule in taprio_reset()
netrom: Fix use-after-free of a listening socket.
netfilter: conntrack: fix vtag checks for ABORT/SHUTDOWN_COMPLETE
ipv4: prevent potential spectre v1 gadget in fib_metrics_match()
ipv4: prevent potential spectre v1 gadget in ip_metrics_convert()
netlink: annotate data races around sk_state
netlink: annotate data races around dst_portid and dst_group
netlink: annotate data races around nlk->portid
netfilter: nft_set_rbtree: skip elements in transaction from garbage collection
net: fix UaF in netns ops registration error path
netlink: prevent potential spectre v1 gadgets
EDAC/qcom: Do not pass llcc_driv_data as edac_device_ctl_info's pvt_info
EDAC/device: Respect any driver-supplied workqueue polling value
ARM: 9280/1: mm: fix warning on phys_addr_t to void pointer assignment
thermal: intel: int340x: Protect trip temperature from concurrent updates
KVM: x86/vmx: Do not skip segment attributes if unusable bit is set
cifs: Fix oops due to uncleared server->smbd_conn in reconnect
ftrace/scripts: Update the instructions for ftrace-bisect.sh
trace_events_hist: add check for return value of 'create_hist_field'
tracing: Make sure trace_printk() can output as soon as it can be used
module: Don't wait for GOING modules
scsi: hpsa: Fix allocation size for scsi_host_alloc()
Bluetooth: hci_sync: cancel cmd_timer if hci_open failed
Revert "Revert "xhci: Set HCD flag to defer primary roothub registration""
fs: reiserfs: remove useless new_opts in reiserfs_remount
netfilter: conntrack: do not renew entry stuck in tcp SYN_SENT state
Revert "selftests/bpf: check null propagation only neither reg is PTR_TO_BTF_ID"
mmc: sdhci-esdhc-imx: correct the tuning start tap and step setting
mmc: sdhci-esdhc-imx: disable the CMD CRC check for standard tuning
mmc: sdhci-esdhc-imx: clear pending interrupt and halt cqhci
lockref: stop doing cpu_relax in the cmpxchg loop
platform/x86: asus-nb-wmi: Add alternate mapping for KEY_SCREENLOCK
platform/x86: touchscreen_dmi: Add info for the CSL Panther Tab HD
scsi: hisi_sas: Set a port invalid only if there are no devices attached when refreshing port id
KVM: s390: interrupt: use READ_ONCE() before cmpxchg()
spi: spidev: remove debug messages that access spidev->spi without locking
ASoC: fsl-asoc-card: Fix naming of AC'97 CODEC widgets
ASoC: fsl_ssi: Rename AC'97 streams to avoid collisions with AC'97 CODEC
cpufreq: armada-37xx: stop using 0 as NULL pointer
s390/debug: add _ASM_S390_ prefix to header guard
drm: Add orientation quirk for Lenovo ideapad D330-10IGL
ASoC: fsl_micfil: Correct the number of steps on SX controls
cpufreq: Add Tegra234 to cpufreq-dt-platdev blocklist
tcp: fix rate_app_limited to default to 1
net: dsa: microchip: ksz9477: port map correction in ALU table entry register
driver core: Fix test_async_probe_init saves device in wrong array
w1: fix WARNING after calling w1_process()
w1: fix deadloop in __w1_remove_master_device()
tcp: avoid the lookup process failing to get sk in ehash table
dmaengine: xilinx_dma: call of_node_put() when breaking out of for_each_child_of_node()
dmaengine: xilinx_dma: Fix devm_platform_ioremap_resource error handling
dmaengine: xilinx_dma: use devm_platform_ioremap_resource()
HID: betop: check shape of output reports
net: macb: fix PTP TX timestamp failure due to packet padding
dmaengine: Fix double increment of client_count in dma_chan_get()
drm/panfrost: fix GENERIC_ATOMIC64 dependency
net: mlx5: eliminate anonymous module_init & module_exit
usb: gadget: f_fs: Ensure ep0req is dequeued before free_request
usb: gadget: f_fs: Prevent race during ffs_ep0_queue_wait
HID: revert CHERRY_MOUSE_000C quirk
net: stmmac: fix invalid call to mdiobus_get_phy()
HID: check empty report_list in bigben_probe()
HID: check empty report_list in hid_validate_values()
net: mdio: validate parameter addr in mdiobus_get_phy()
net: usb: sr9700: Handle negative len
l2tp: Don't sleep and disable BH under writer-side sk_callback_lock
l2tp: Serialize access to sk_user_data with sk_callback_lock
net: fix a concurrency bug in l2tp_tunnel_register()
net/sched: sch_taprio: fix possible use-after-free
wifi: rndis_wlan: Prevent buffer overflow in rndis_query_oid
gpio: mxc: Always set GPIOs used as interrupt source to INPUT mode
net: wan: Add checks for NULL for utdm in undo_uhdlc_init and unmap_si_regs
net: nfc: Fix use-after-free in local_cleanup()
phy: rockchip-inno-usb2: Fix missing clk_disable_unprepare() in rockchip_usb2phy_power_on()
bpf: Fix pointer-leak due to insufficient speculative store bypass mitigation
amd-xgbe: Delay AN timeout during KR training
amd-xgbe: TX Flow Ctrl Registers are h/w ver dependent
affs: initialize fsdata in affs_truncate()
IB/hfi1: Fix expected receive setup error exit issues
IB/hfi1: Reserve user expected TIDs
IB/hfi1: Reject a zero-length user expected buffer
RDMA/core: Fix ib block iterator counter overflow
tomoyo: fix broken dependency on *.conf.default
EDAC/highbank: Fix memory leak in highbank_mc_probe()
HID: intel_ish-hid: Add check for ishtp_dma_tx_map
ARM: imx: add missing of_node_put()
ARM: imx35: Retrieve the IIM base address from devicetree
ARM: imx31: Retrieve the IIM base address from devicetree
ARM: imx27: Retrieve the SYSCTRL base address from devicetree
ARM: dts: imx6qdl-gw560x: Remove incorrect 'uart-has-rtscts'
memory: mvebu-devbus: Fix missing clk_disable_unprepare in mvebu_devbus_probe()
memory: atmel-sdramc: Fix missing clk_disable_unprepare in atmel_ramc_probe()
clk: Provide new devm_clk helpers for prepared and enabled clocks
clk: generalize devm_clk_get() a bit
Linux 5.4.230
mm/khugepaged: fix collapse_pte_mapped_thp() to allow anon_vma
x86/fpu: Use _Alignof to avoid undefined behavior in TYPE_ALIGN
drm/amd/display: Fix COLOR_SPACE_YCBCR2020_TYPE matrix
drm/amd/display: Fix set scaling doesn's work
drm/i915: re-disable RC6p on Sandy Bridge
gsmi: fix null-deref in gsmi_get_variable
serial: atmel: fix incorrect baudrate setup
dmaengine: tegra210-adma: fix global intr clear
serial: pch_uart: Pass correct sg to dma_unmap_sg()
dt-bindings: phy: g12a-usb3-pcie-phy: fix compatible string documentation
usb-storage: apply IGNORE_UAS only for HIKSEMI MD202 on RTL9210
usb: gadget: f_ncm: fix potential NULL ptr deref in ncm_bitrate()
usb: gadget: g_webcam: Send color matching descriptor per frame
usb: typec: altmodes/displayport: Fix pin assignment calculation
usb: typec: altmodes/displayport: Add pin assignment helper
usb: host: ehci-fsl: Fix module alias
USB: serial: cp210x: add SCALANCE LPE-9000 device id
USB: gadgetfs: Fix race between mounting and unmounting
cifs: do not include page data when checking signature
btrfs: fix race between quota rescan and disable leading to NULL pointer deref
mmc: sunxi-mmc: Fix clock refcount imbalance during unbind
comedi: adv_pci1760: Fix PWM instruction handling
usb: core: hub: disable autosuspend for TI TUSB8041
misc: fastrpc: Fix use-after-free race condition for maps
misc: fastrpc: Don't remove map on creater_process and device_release
USB: misc: iowarrior: fix up header size for USB_DEVICE_ID_CODEMERCS_IOW100
USB: serial: option: add Quectel EM05CN modem
USB: serial: option: add Quectel EM05CN (SG) modem
USB: serial: option: add Quectel EC200U modem
USB: serial: option: add Quectel EM05-G (RS) modem
USB: serial: option: add Quectel EM05-G (CS) modem
USB: serial: option: add Quectel EM05-G (GR) modem
prlimit: do_prlimit needs to have a speculation check
xhci: Detect lpm incapable xHC USB3 roothub ports from ACPI tables
usb: acpi: add helper to check port lpm capability using acpi _DSM
xhci: Add a flag to disable USB3 lpm on a xhci root port level.
xhci: Add update_hub_device override for PCI xHCI hosts
xhci: Fix null pointer dereference when host dies
usb: xhci: Check endpoint is valid before dereferencing it
xhci-pci: set the dma max_seg_size
ALSA: hda/realtek - Turn on power early
drm/i915/gt: Reset twice
efi: fix userspace infinite retry read efivars after EFI runtime services page fault
nilfs2: fix general protection fault in nilfs_btree_insert()
Add exception protection processing for vd in axi_chan_handle_err function
wifi: brcmfmac: fix regression for Broadcom PCIe wifi devices
f2fs: let's avoid panic if extent_tree is not created
RDMA/srp: Move large values to a new enum for gcc13
net/ethtool/ioctl: return -EOPNOTSUPP if we have no phy stats
selftests/bpf: check null propagation only neither reg is PTR_TO_BTF_ID
pNFS/filelayout: Fix coalescing test for single DS
Revert "net: add atomic_long_t to net_device_stats fields"
Revert "PM/devfreq: governor: Add a private governor_data for governor"
Linux 5.4.229
tipc: call tipc_lxc_xmit without holding node_read_lock
ocfs2: fix freeing uninitialized resource on ocfs2_dlm_shutdown
tipc: Add a missing case of TIPC_DIRECT_MSG type
tty: serial: tegra: Handle RX transfer in PIO mode if DMA wasn't started
tipc: fix use-after-free in tipc_disc_rcv()
Revert "usb: ulpi: defer ulpi_register on ulpi_read_id timeout"
mm: Always release pages to the buddy allocator in memblock_free_late().
efi: fix NULL-deref in init error path
arm64: cmpxchg_double*: hazard against entire exchange variable
arm64: atomics: remove LL/SC trampolines
arm64: atomics: format whitespace consistently
drm/virtio: Fix GEM handle creation UAF
x86/resctrl: Fix task CLOSID/RMID update race
x86/resctrl: Use task_curr() instead of task_struct->on_cpu to prevent unnecessary IPI
iommu/mediatek-v1: Fix an error handling path in mtk_iommu_v1_probe()
iommu/mediatek-v1: Add error handle for mtk_iommu_probe
net/mlx5: Fix ptp max frequency adjustment range
net/mlx5: Rename ptp clock info
net/sched: act_mpls: Fix warning during failed attribute validation
nfc: pn533: Wait for out_urb's completion in pn533_usb_send_frame()
hvc/xen: lock console list traversal
tipc: fix unexpected link reset due to discovery messages
tipc: eliminate checking netns if node established
tipc: improve throughput between nodes in netns
regulator: da9211: Use irq handler when ready
EDAC/device: Fix period calculation in edac_device_reset_delay_period()
x86/boot: Avoid using Intel mnemonics in AT&T syntax asm
powerpc/imc-pmu: Fix use of mutex in IRQs disabled section
netfilter: ipset: Fix overflow before widen in the bitmap_ip_create() function.
ext4: fix uninititialized value in 'ext4_evict_inode'
ext4: fix use-after-free in ext4_orphan_cleanup
ext4: lost matching-pair of trace in ext4_truncate
ext4: fix bug_on in __es_tree_search caused by bad quota inode
quota: Factor out setup of quota inode
jbd2: use the correct print format
usb: ulpi: defer ulpi_register on ulpi_read_id timeout
wifi: wilc1000: sdio: fix module autoloading
ipv6: raw: Deduct extension header length in rawv6_push_pending_frames
ixgbe: fix pci device refcount leak
platform/x86: sony-laptop: Don't turn off 0x153 keyboard backlight during probe
drm/msm/adreno: Make adreno quirks not overwrite each other
cifs: Fix uninitialized memory read for smb311 posix symlink create
ALSA: hda/hdmi: Add a HP device 0x8715 to force connect list
ALSA: pcm: Move rwsem lock inside snd_ctl_elem_read to prevent UAF
net/ulp: prevent ULP without clone op from entering the LISTEN status
s390/percpu: add READ_ONCE() to arch_this_cpu_to_op_simple()
s390/kexec: fix ipl report address for kdump
perf auxtrace: Fix address filter duplicate symbol selection
docs: Fix the docs build with Sphinx 6.0
efi: tpm: Avoid READ_ONCE() for accessing the event log
KVM: arm64: Fix S1PTW handling on RO memslots
net: sched: disallow noqueue for qdisc classes
driver core: Fix bus_type.match() error handling in __driver_attach()
selftests: set the BUILD variable to absolute path
selftests: Fix kselftest O=objdir build from cluttering top level objdir
parisc: Align parisc MADV_XXX constants with all other architectures
mbcache: Avoid nesting of cache->c_list_lock under bit locks
hfs/hfsplus: avoid WARN_ON() for sanity check, use proper error handling
hfs/hfsplus: use WARN_ON for sanity check
ext4: don't allow journal inode to have encrypt flag
riscv: uaccess: fix type of 0 variable on error in get_user()
nfsd: fix handling of readdir in v4root vs. mount upcall timeout
x86/bugs: Flush IBP in ib_prctl_set()
ASoC: Intel: bytcr_rt5640: Add quirk for the Advantech MICA-071 tablet
udf: Fix extension of the last extent in the file
caif: fix memory leak in cfctrl_linkup_request()
drm/i915: unpin on error in intel_vgpu_shadow_mm_pin()
usb: rndis_host: Secure rndis_query check against int overflow
drivers/net/bonding/bond_3ad: return when there's no aggregator
perf tools: Fix resources leak in perf_data__open_dir()
net: sched: cbq: dont intepret cls results when asked to drop
net: sched: atm: dont intepret cls results when asked to drop
RDMA/mlx5: Fix validation of max_rd_atomic caps for DC
RDMA/uverbs: Silence shiftTooManyBitsSigned warning
net: phy: xgmiitorgmii: Fix refcount leak in xgmiitorgmii_probe
net: amd-xgbe: add missed tasklet_kill
vhost: fix range used in translate_desc()
nfc: Fix potential resource leaks
qlcnic: prevent ->dcb use-after-free on qlcnic_dcb_enable() failure
net: sched: fix memory leak in tcindex_set_parms
net: hns3: add interrupts re-initialization while doing VF FLR
nfsd: shut down the NFSv4 state objects before the filecache
bpf: pull before calling skb_postpull_rcsum()
SUNRPC: ensure the matching upcall is in-flight upon downcall
ext4: fix deadlock due to mbcache entry corruption
mbcache: automatically delete entries from cache on freeing
ext4: fix race when reusing xattr blocks
ext4: unindent codeblock in ext4_xattr_block_set()
ext4: remove EA inode entry from mbcache on inode eviction
mbcache: add functions to delete entry if unused
mbcache: don't reclaim used entries
ext4: use kmemdup() to replace kmalloc + memcpy
fs: ext4: initialize fsdata in pagecache_write()
ext4: use memcpy_to_page() in pagecache_write()
mm/highmem: Lift memcpy_[to|from]_page to core
ext4: correct inconsistent error msg in nojournal mode
ext4: goto right label 'failed_mount3a'
ravb: Fix "failed to switch device to config mode" message during unbind
KVM: nVMX: Properly expose ENABLE_USR_WAIT_PAUSE control to L1
KVM: VMX: Fix the spelling of CPU_BASED_USE_TSC_OFFSETTING
KVM: VMX: Rename NMI_PENDING to NMI_WINDOW
KVM: VMX: Rename INTERRUPT_PENDING to INTERRUPT_WINDOW
KVM: retpolines: x86: eliminate retpoline from vmx.c exit handlers
KVM: x86: optimize more exit handlers in vmx.c
perf probe: Fix to get the DW_AT_decl_file and DW_AT_call_file as unsinged data
perf probe: Use dwarf_attr_integrate as generic DWARF attr accessor
dm thin: resume even if in FAIL mode
media: s5p-mfc: Fix in register read and write for H264
media: s5p-mfc: Clear workbit to handle error condition
media: s5p-mfc: Fix to handle reference queue during finishing
PM/devfreq: governor: Add a private governor_data for governor
btrfs: replace strncpy() with strscpy()
ext4: allocate extended attribute value in vmalloc area
ext4: avoid unaccounted block allocation when expanding inode
ext4: initialize quota before expanding inode in setproject ioctl
ext4: fix inode leak in ext4_xattr_inode_create() on an error path
ext4: avoid BUG_ON when creating xattrs
ext4: fix error code return to user-space in ext4_get_branch()
ext4: fix corruption when online resizing a 1K bigalloc fs
ext4: fix delayed allocation bug in ext4_clu_mapped for bigalloc + inline
ext4: init quota for 'old.inode' in 'ext4_rename'
ext4: fix bug_on in __es_tree_search caused by bad boot loader inode
ext4: fix reserved cluster accounting in __es_remove_extent()
ext4: add helper to check quota inums
ext4: add EXT4_IGET_BAD flag to prevent unexpected bad inode
ext4: fix undefined behavior in bit shift for ext4_check_flag_values
ext4: add inode table check in __ext4_get_inode_loc to aovid possible infinite loop
drm/vmwgfx: Validate the box size for the snooped cursor
drm/connector: send hotplug uevent on connector cleanup
device_cgroup: Roll back to original exceptions after copy failure
parisc: led: Fix potential null-ptr-deref in start_task()
iommu/amd: Fix ivrs_acpihid cmdline parsing code
crypto: n2 - add missing hash statesize
PCI/sysfs: Fix double free in error path
PCI: Fix pci_device_is_present() for VFs by checking PF
ipmi: fix use after free in _ipmi_destroy_user()
ima: Fix a potential NULL pointer access in ima_restore_measurement_list
mtd: spi-nor: Check for zero erase size in spi_nor_find_best_erase_type()
ipmi: fix long wait in unload when IPMI disconnect
efi: Add iMac Pro 2017 to uefi skip cert quirk
md/bitmap: Fix bitmap chunk size overflow issues
cifs: fix missing display of three mount options
cifs: fix confusing debug message
media: dvb-core: Fix UAF due to refcount races at releasing
media: dvb-core: Fix double free in dvb_register_device()
ARM: 9256/1: NWFPE: avoid compiler-generated __aeabi_uldivmod
tracing: Fix infinite loop in tracing_read_pipe on overflowed print_trace_line
tracing/hist: Fix wrong return value in parse_action_params()
x86/microcode/intel: Do not retry microcode reloading on the APs
tracing/hist: Fix out-of-bound write on 'action_data.var_ref_idx'
dm cache: set needs_check flag after aborting metadata
dm cache: Fix UAF in destroy()
dm clone: Fix UAF in clone_dtr()
dm integrity: Fix UAF in dm_integrity_dtr()
dm thin: Fix UAF in run_timer_softirq()
dm thin: Use last transaction's pmd->root when commit failed
dm thin: Fix ABBA deadlock between shrink_slab and dm_pool_abort_metadata
dm cache: Fix ABBA deadlock between shrink_slab and dm_cache_metadata_abort
binfmt: Fix error return code in load_elf_fdpic_binary()
binfmt: Move install_exec_creds after setup_new_exec to match binfmt_elf
cpufreq: Init completion before kobject_init_and_add()
selftests: Use optional USERCFLAGS and USERLDFLAGS
arm64: dts: qcom: sdm850-lenovo-yoga-c630: correct I2C12 pins drive strength
ARM: ux500: do not directly dereference __iomem
btrfs: fix resolving backrefs for inline extent followed by prealloc
mmc: sdhci-sprd: Disable CLK_AUTO when the clock is less than 400K
ktest.pl minconfig: Unset configs instead of just removing them
kest.pl: Fix grub2 menu handling for rebooting
soc: qcom: Select REMAP_MMIO for LLCC driver
media: stv0288: use explicitly signed char
net/af_packet: make sure to pull mac header
net/af_packet: add VLAN support for AF_PACKET SOCK_RAW GSO
SUNRPC: Don't leak netobj memory when gss_read_proxy_verf() fails
tpm: tpm_tis: Add the missed acpi_put_table() to fix memory leak
tpm: tpm_crb: Add the missed acpi_put_table() to fix memory leak
mmc: vub300: fix warning - do not call blocking ops when !TASK_RUNNING
f2fs: should put a page when checking the summary info
mm, compaction: fix fast_isolate_around() to stay within boundaries
md: fix a crash in mempool_free
pnode: terminate at peers of source
ALSA: line6: fix stack overflow in line6_midi_transmit
ALSA: line6: correct midi status byte when receiving data from podxt
ovl: Use ovl mounter's fsuid and fsgid in ovl_link()
hfsplus: fix bug causing custom uid and gid being unable to be assigned with mount
HID: plantronics: Additional PIDs for double volume key presses quirk
HID: multitouch: fix Asus ExpertBook P2 P2451FA trackpoint
powerpc/rtas: avoid scheduling in rtas_os_term()
powerpc/rtas: avoid device tree lookups in rtas_os_term()
objtool: Fix SEGFAULT
nvme: fix the NVME_CMD_EFFECTS_CSE_MASK definition
nvme: resync include/linux/nvme.h with nvmecli
ata: ahci: Fix PCS quirk application for suspend
nvme-pci: fix doorbell buffer value endianness
cifs: fix oops during encryption
media: dvbdev: fix refcnt bug
media: dvbdev: fix build warning due to comments
gcov: add support for checksum field
regulator: core: fix deadlock on regulator enable
iio: adc128s052: add proper .data members in adc128_of_match table
iio: adc: ad_sigma_delta: do not use internal iio_dev lock
reiserfs: Add missing calls to reiserfs_security_free()
HID: wacom: Ensure bootloader PID is usable in hidraw mode
usb: dwc3: core: defer probe on ulpi_read_id timeout
ALSA: hda/hdmi: Add HP Device 0x8711 to force connect list
ALSA: hda/realtek: Add quirk for Lenovo TianYi510Pro-14IOB
pstore: Make sure CONFIG_PSTORE_PMSG selects CONFIG_RT_MUTEXES
pstore: Switch pmsg_lock to an rt_mutex to avoid priority inversion
ASoC: rt5670: Remove unbalanced pm_runtime_put()
ASoC: rockchip: spdif: Add missing clk_disable_unprepare() in rk_spdif_runtime_resume()
ASoC: wm8994: Fix potential deadlock
ASoC: rockchip: pdm: Add missing clk_disable_unprepare() in rockchip_pdm_runtime_resume()
ASoC: audio-graph-card: fix refcount leak of cpu_ep in __graph_for_each_link()
ASoC: mediatek: mt8173-rt5650-rt5514: fix refcount leak in mt8173_rt5650_rt5514_dev_probe()
ASoC: Intel: Skylake: Fix driver hang during shutdown
ALSA: hda: add snd_hdac_stop_streams() helper
ALSA/ASoC: hda: move/rename snd_hdac_ext_stop_streams to hdac_stream.c
orangefs: Fix kmemleak in orangefs_{kernel,client}_debug_init()
orangefs: Fix kmemleak in orangefs_prepare_debugfs_help_string()
drm/sti: Fix return type of sti_{dvo,hda,hdmi}_connector_mode_valid()
drm/fsl-dcu: Fix return type of fsl_dcu_drm_connector_mode_valid()
hugetlbfs: fix null-ptr-deref in hugetlbfs_parse_param()
clk: st: Fix memory leak in st_of_quadfs_setup()
media: si470x: Fix use-after-free in si470x_int_in_callback()
mmc: f-sdh30: Add quirks for broken timeout clock capability
regulator: core: fix use_count leakage when handling boot-on
blk-mq: fix possible memleak when register 'hctx' failed
media: dvb-usb: fix memory leak in dvb_usb_adapter_init()
media: dvbdev: adopts refcnt to avoid UAF
media: dvb-frontends: fix leak of memory fw
bpf: Prevent decl_tag from being referenced in func_proto arg
ppp: associate skb with a device at tx
mrp: introduce active flags to prevent UAF when applicant uninit
net: add atomic_long_t to net_device_stats fields
md/raid1: stop mdx_raid1 thread when raid1 array run failed
drivers/md/md-bitmap: check the return value of md_bitmap_get_counter()
drm/sti: Use drm_mode_copy()
drm/rockchip: Use drm_mode_copy()
s390/lcs: Fix return type of lcs_start_xmit()
s390/netiucv: Fix return type of netiucv_tx()
s390/ctcm: Fix return type of ctc{mp,}m_tx()
igb: Do not free q_vector unless new one was allocated
wifi: brcmfmac: Fix potential shift-out-of-bounds in brcmf_fw_alloc_request()
hamradio: baycom_epp: Fix return type of baycom_send_packet()
net: ethernet: ti: Fix return type of netcp_ndo_start_xmit()
bpf: make sure skb->len != 0 when redirecting to a tunneling device
ipmi: fix memleak when unload ipmi driver
ASoC: codecs: rt298: Add quirk for KBL-R RVP platform
wifi: ar5523: Fix use-after-free on ar5523_cmd() timed out
wifi: ath9k: verify the expected usb_endpoints are present
brcmfmac: return error when getting invalid max_flowrings from dongle
drm/etnaviv: add missing quirks for GC300
hfs: fix OOB Read in __hfs_brec_find
acct: fix potential integer overflow in encode_comp_t()
nilfs2: fix shift-out-of-bounds/overflow in nilfs_sb2_bad_offset()
ACPICA: Fix error code path in acpi_ds_call_control_method()
fs: jfs: fix shift-out-of-bounds in dbDiscardAG
udf: Avoid double brelse() in udf_rename()
fs: jfs: fix shift-out-of-bounds in dbAllocAG
binfmt_misc: fix shift-out-of-bounds in check_special_flags
rcu: Fix __this_cpu_read() lockdep warning in rcu_force_quiescent_state()
net: stream: purge sk_error_queue in sk_stream_kill_queues()
myri10ge: Fix an error handling path in myri10ge_probe()
rxrpc: Fix missing unlock in rxrpc_do_sendmsg()
net_sched: reject TCF_EM_SIMPLE case for complex ematch module
mailbox: zynq-ipi: fix error handling while device_register() fails
skbuff: Account for tail adjustment during pull operations
openvswitch: Fix flow lookup to use unmasked key
rtc: mxc_v2: Add missing clk_disable_unprepare()
r6040: Fix kmemleak in probe and remove
nfc: pn533: Clear nfc_target before being used
mISDN: hfcmulti: don't call dev_kfree_skb/kfree_skb() under spin_lock_irqsave()
mISDN: hfcpci: don't call dev_kfree_skb/kfree_skb() under spin_lock_irqsave()
mISDN: hfcsusb: don't call dev_kfree_skb/kfree_skb() under spin_lock_irqsave()
nfsd: under NFSv4.1, fix double svc_xprt_put on rpc_create failure
NFSD: Add tracepoints to NFSD's duplicate reply cache
nfsd: Define the file access mode enum for tracing
rtc: pic32: Move devm_rtc_allocate_device earlier in pic32_rtc_probe()
rtc: st-lpc: Add missing clk_disable_unprepare in st_rtc_probe()
remoteproc: qcom_q6v5_pas: Fix missing of_node_put() in adsp_alloc_memory_region()
remoteproc: sysmon: fix memory leak in qcom_add_sysmon_subdev()
pwm: sifive: Call pwm_sifive_update_clock() while mutex is held
selftests/powerpc: Fix resource leaks
powerpc/hv-gpci: Fix hv_gpci event list
powerpc/83xx/mpc832x_rdb: call platform_device_put() in error case in of_fsl_spi_probe()
powerpc/perf: callchain validate kernel stack pointer bounds
powerpc/xive: add missing iounmap() in error path in xive_spapr_populate_irq_data()
cxl: Fix refcount leak in cxl_calc_capp_routing
powerpc/52xx: Fix a resource leak in an error handling path
macintosh/macio-adb: check the return value of ioremap()
macintosh: fix possible memory leak in macio_add_one_device()
iommu/fsl_pamu: Fix resource leak in fsl_pamu_probe()
iommu/amd: Fix pci device refcount leak in ppr_notifier()
rtc: pcf85063: Fix reading alarm
rtc: snvs: Allow a time difference on clock register read
include/uapi/linux/swab: Fix potentially missing __always_inline
RDMA/siw: Fix pointer cast warning
power: supply: fix null pointer dereferencing in power_supply_get_battery_info
HSI: omap_ssi_core: Fix error handling in ssi_init()
perf symbol: correction while adjusting symbol
perf trace: Handle failure when trace point folder is missed
perf trace: Use macro RAW_SYSCALL_ARGS_NUM to replace number
perf trace: Add a strtoul() method to 'struct syscall_arg_fmt'
perf trace: Allow associating scnprintf routines with well known arg names
perf trace: Add the syscall_arg_fmt pointer to syscall_arg
perf trace: Factor out the initialization of syscal_arg_fmt->scnprintf
perf trace: Separate 'struct syscall_fmt' definition from syscall_fmts variable
perf trace: Return error if a system call doesn't exist
power: supply: fix residue sysfs file in error handle route of __power_supply_register()
HSI: omap_ssi_core: fix possible memory leak in ssi_probe()
HSI: omap_ssi_core: fix unbalanced pm_runtime_disable()
fbdev: uvesafb: Fixes an error handling path in uvesafb_probe()
fbdev: vermilion: decrease reference count in error path
fbdev: via: Fix error in via_core_init()
fbdev: pm2fb: fix missing pci_disable_device()
fbdev: ssd1307fb: Drop optional dependency
samples: vfio-mdev: Fix missing pci_disable_device() in mdpy_fb_probe()
tracing/hist: Fix issue of losting command info in error_log
usb: storage: Add check for kcalloc
i2c: ismt: Fix an out-of-bounds bug in ismt_access()
vme: Fix error not catched in fake_init()
staging: rtl8192e: Fix potential use-after-free in rtllib_rx_Monitor()
staging: rtl8192u: Fix use after free in ieee80211_rx()
i2c: pxa-pci: fix missing pci_disable_device() on error in ce4100_i2c_probe
chardev: fix error handling in cdev_device_add()
mcb: mcb-parse: fix error handing in chameleon_parse_gdd()
drivers: mcb: fix resource leak in mcb_probe()
usb: gadget: f_hid: fix refcount leak on error path
usb: gadget: f_hid: fix f_hidg lifetime vs cdev
usb: gadget: f_hid: optional SETUP/SET_REPORT mode
usb: roles: fix of node refcount leak in usb_role_switch_is_parent()
counter: stm32-lptimer-cnt: fix the check on arr and cmp registers update
cxl: fix possible null-ptr-deref in cxl_pci_init_afu|adapter()
cxl: fix possible null-ptr-deref in cxl_guest_init_afu|adapter()
misc: sgi-gru: fix use-after-free error in gru_set_context_option, gru_fault and gru_handle_user_call_os
misc: tifm: fix possible memory leak in tifm_7xx1_switch_media()
misc: ocxl: fix possible name leak in ocxl_file_register_afu()
test_firmware: fix memory leak in test_firmware_init()
serial: sunsab: Fix error handling in sunsab_init()
serial: altera_uart: fix locking in polling mode
tty: serial: altera_uart_{r,t}x_chars() need only uart_port
tty: serial: clean up stop-tx part in altera_uart_tx_chars()
serial: pch: Fix PCI device refcount leak in pch_request_dma()
serial: pl011: Do not clear RX FIFO & RX interrupt in unthrottle.
serial: amba-pl011: avoid SBSA UART accessing DMACR register
usb: typec: tcpci: fix of node refcount leak in tcpci_register_port()
usb: typec: Check for ops->exit instead of ops->enter in altmode_exit
staging: vme_user: Fix possible UAF in tsi148_dma_list_add
usb: fotg210-udc: Fix ages old endianness issues
uio: uio_dmem_genirq: Fix deadlock between irq config and handling
uio: uio_dmem_genirq: Fix missing unlock in irq configuration
vfio: platform: Do not pass return buffer to ACPI _RST method
class: fix possible memory leak in __class_register()
serial: tegra: Read DMA status before terminating
tty: serial: tegra: Activate RX DMA transfer by request
drivers: dio: fix possible memory leak in dio_init()
IB/IPoIB: Fix queue count inconsistency for PKEY child interfaces
hwrng: geode - Fix PCI device refcount leak
hwrng: amd - Fix PCI device refcount leak
crypto: img-hash - Fix variable dereferenced before check 'hdev->req'
orangefs: Fix sysfs not cleanup when dev init failed
RDMA/hfi1: Fix error return code in parse_platform_config()
crypto: omap-sham - Use pm_runtime_resume_and_get() in omap_sham_probe()
f2fs: avoid victim selection from previous victim section
RDMA/nldev: Add checks for nla_nest_start() in fill_stat_counter_qps()
scsi: snic: Fix possible UAF in snic_tgt_create()
scsi: fcoe: Fix transport not deattached when fcoe_if_init() fails
scsi: ipr: Fix WARNING in ipr_init()
scsi: fcoe: Fix possible name leak when device_register() fails
scsi: hpsa: Fix possible memory leak in hpsa_add_sas_device()
scsi: hpsa: Fix error handling in hpsa_add_sas_host()
scsi: mpt3sas: Fix possible resource leaks in mpt3sas_transport_port_add()
crypto: tcrypt - Fix multibuffer skcipher speed test mem leak
scsi: hpsa: Fix possible memory leak in hpsa_init_one()
RDMA/rxe: Fix NULL-ptr-deref in rxe_qp_do_cleanup() when socket create failed
crypto: ccree - Make cc_debugfs_global_fini() available for module init function
RDMA/hfi: Decrease PCI device reference count in error path
PCI: Check for alloc failure in pci_request_irq()
crypto: ccree - Remove debugfs when platform_driver_register failed
crypto: ccree - swap SHA384 and SHA512 larval hashes at build time
scsi: scsi_debug: Fix a warning in resp_write_scat()
RDMA/siw: Set defined status for work completion with undefined status
RDMA/nldev: Return "-EAGAIN" if the cm_id isn't from expected port
RDMA/siw: Fix immediate work request flush to completion queue
f2fs: fix normal discard process
RDMA/core: Fix order of nldev_exit call
apparmor: Use pointer to struct aa_label for lbs_cred
apparmor: Fix abi check to include v8 abi
apparmor: fix lockdep warning when removing a namespace
apparmor: fix a memleak in multi_transaction_new()
stmmac: fix potential division by 0
Bluetooth: RFCOMM: don't call kfree_skb() under spin_lock_irqsave()
Bluetooth: hci_core: don't call kfree_skb() under spin_lock_irqsave()
Bluetooth: hci_bcsp: don't call kfree_skb() under spin_lock_irqsave()
Bluetooth: hci_h5: don't call kfree_skb() under spin_lock_irqsave()
Bluetooth: hci_ll: don't call kfree_skb() under spin_lock_irqsave()
Bluetooth: hci_qca: don't call kfree_skb() under spin_lock_irqsave()
Bluetooth: btusb: don't call kfree_skb() under spin_lock_irqsave()
ntb_netdev: Use dev_kfree_skb_any() in interrupt context
net: lan9303: Fix read error execution path
can: tcan4x5x: Remove invalid write in clear_interrupts
net: amd-xgbe: Check only the minimum speed for active/passive cables
net: amd-xgbe: Fix logic around active and passive cables
net: amd: lance: don't call dev_kfree_skb() under spin_lock_irqsave()
hamradio: don't call dev_kfree_skb() under spin_lock_irqsave()
net: ethernet: dnet: don't call dev_kfree_skb() under spin_lock_irqsave()
net: emaclite: don't call dev_kfree_skb() under spin_lock_irqsave()
net: apple: bmac: don't call dev_kfree_skb() under spin_lock_irqsave()
net: apple: mace: don't call dev_kfree_skb() under spin_lock_irqsave()
net/tunnel: wait until all sk_user_data reader finish before releasing the sock
net: farsync: Fix kmemleak when rmmods farsync
ethernet: s2io: don't call dev_kfree_skb() under spin_lock_irqsave()
of: overlay: fix null pointer dereferencing in find_dup_cset_node_entry() and find_dup_cset_prop()
drivers: net: qlcnic: Fix potential memory leak in qlcnic_sriov_init()
net: stmmac: selftests: fix potential memleak in stmmac_test_arpoffload()
net: defxx: Fix missing err handling in dfx_init()
net: vmw_vsock: vmci: Check memcpy_from_msg()
clk: socfpga: Fix memory leak in socfpga_gate_init()
clk: socfpga: use clk_hw_register for a5/c5
clk: socfpga: clk-pll: Remove unused variable 'rc'
blktrace: Fix output non-blktrace event when blk_classic option enabled
wifi: brcmfmac: Fix error return code in brcmf_sdio_download_firmware()
wifi: rtl8xxxu: Add __packed to struct rtl8723bu_c2h
spi: spi-gpio: Don't set MOSI as an input if not 3WIRE mode
clk: samsung: Fix memory leak in _samsung_clk_register_pll()
media: coda: Add check for kmalloc
media: coda: Add check for dcoda_iram_alloc
media: c8sectpfe: Add of_node_put() when breaking out of loop
mmc: mmci: fix return value check of mmc_add_host()
mmc: wbsd: fix return value check of mmc_add_host()
mmc: via-sdmmc: fix return value check of mmc_add_host()
mmc: meson-gx: fix return value check of mmc_add_host()
mmc: omap_hsmmc: fix return value check of mmc_add_host()
mmc: atmel-mci: fix return value check of mmc_add_host()
mmc: wmt-sdmmc: fix return value check of mmc_add_host()
mmc: vub300: fix return value check of mmc_add_host()
mmc: toshsd: fix return value check of mmc_add_host()
mmc: rtsx_usb_sdmmc: fix return value check of mmc_add_host()
mmc: pxamci: fix return value check of mmc_add_host()
mmc: mxcmmc: fix return value check of mmc_add_host()
mmc: moxart: fix return value check of mmc_add_host()
mmc: alcor: fix return value check of mmc_add_host()
NFSv4.x: Fail client initialisation if state manager thread can't run
SUNRPC: Fix missing release socket in rpc_sockname()
xprtrdma: Fix regbuf data not freed in rpcrdma_req_create()
ALSA: mts64: fix possible null-ptr-defer in snd_mts64_interrupt
media: saa7164: fix missing pci_disable_device()
bpf, sockmap: fix race in sock_map_free()
regulator: core: fix resource leak in regulator_register()
configfs: fix possible memory leak in configfs_create_dir()
hsr: Avoid double remove of a node.
clk: qcom: clk-krait: fix wrong div2 functions
regulator: core: fix module refcount leak in set_supply()
wifi: cfg80211: Fix not unregister reg_pdev when load_builtin_regdb_keys() fails
spi: spidev: mask SPI_CS_HIGH in SPI_IOC_RD_MODE
bonding: uninitialized variable in bond_miimon_inspect()
bpf, sockmap: Fix data loss caused by using apply_bytes on ingress redirect
bpf, sockmap: Fix repeated calls to sock_put() when msg has more_data
netfilter: conntrack: set icmpv6 redirects as RELATED
ASoC: pcm512x: Fix PM disable depth imbalance in pcm512x_probe
drm/amdgpu: Fix PCI device refcount leak in amdgpu_atrm_get_bios()
drm/radeon: Fix PCI device refcount leak in radeon_atrm_get_bios()
ASoC: mediatek: mt8173: Enable IRQ when pdata is ready
wifi: iwlwifi: mvm: fix double free on tx path.
ALSA: asihpi: fix missing pci_disable_device()
NFSv4: Fix a deadlock between nfs4_open_recover_helper() and delegreturn
NFSv4.2: Fix initialisation of struct nfs4_label
NFSv4.2: Fix a memory stomp in decode_attr_security_label
NFSv4.2: Clear FATTR4_WORD2_SECURITY_LABEL when done decoding
ASoC: mediatek: mtk-btcvsd: Add checks for write and read of mtk_btcvsd_snd
ASoC: dt-bindings: wcd9335: fix reset line polarity in example
drm/tegra: Add missing clk_disable_unprepare() in tegra_dc_probe()
media: s5p-mfc: Add variant data for MFC v7 hardware for Exynos 3250 SoC
media: dvb-usb: az6027: fix null-ptr-deref in az6027_i2c_xfer()
media: dvb-core: Fix ignored return value in dvb_register_frontend()
pinctrl: pinconf-generic: add missing of_node_put()
clk: imx: replace osc_hdmi with dummy
clk: imx8mn: correct the usb1_ctrl parent to be usb_bus
media: imon: fix a race condition in send_packet()
mtd: maps: pxa2xx-flash: fix memory leak in probe
bonding: fix link recovery in mode 2 when updelay is nonzero
bonding: Rename slave_arr to usable_slaves
bonding: Export skip slave logic to function
clk: rockchip: Fix memory leak in rockchip_clk_register_pll()
regulator: core: use kfree_const() to free space conditionally
ALSA: seq: fix undefined behavior in bit shift for SNDRV_SEQ_FILTER_USE_EVENT
ALSA: pcm: fix undefined behavior in bit shift for SNDRV_PCM_RATE_KNOT
HID: hid-sensor-custom: set fixed size for custom attributes
bpf: Move skb->len == 0 checks into __bpf_redirect
media: videobuf-dma-contig: use dma_mmap_coherent
media: platform: exynos4-is: Fix error handling in fimc_md_init()
media: solo6x10: fix possible memory leak in solo_sysfs_init()
Input: elants_i2c - properly handle the reset GPIO when power is off
mtd: lpddr2_nvm: Fix possible null-ptr-deref
wifi: ath10k: Fix return value in ath10k_pci_init()
ima: Fix misuse of dereference of pointer in template_desc_init_fields()
integrity: Fix memory leakage in keyring allocation error path
amdgpu/pm: prevent array underflow in vega20_odn_edit_dpm_table()
regulator: core: fix unbalanced of node refcount in regulator_dev_lookup()
ASoC: pxa: fix null-pointer dereference in filter()
drm/mediatek: Modify dpi power on/off sequence.
drm/radeon: Add the missed acpi_put_table() to fix memory leak
rxrpc: Fix ack.bufferSize to be 0 when generating an ack
net, proc: Provide PROC_FS=n fallback for proc_create_net_single_write()
media: camss: Clean up received buffers on failed start of streaming
wifi: rsi: Fix handling of 802.3 EAPOL frames sent via control port
mtd: Fix device name leak when register device failed in add_mtd_device()
bpf: propagate precision in ALU/ALU64 operations
media: vivid: fix compose size exceed boundary
ima: Handle -ESTALE returned by ima_filter_rule_match()
ima: Fix fall-through warnings for Clang
ima: Rename internal filter rule functions
drm/panel/panel-sitronix-st7701: Remove panel on DSI attach failure
spi: Update reference to struct spi_controller
clk: renesas: r9a06g032: Repair grave increment error
can: kvaser_usb: Compare requested bittiming parameters with actual parameters in do_set_{,data}_bittiming
can: kvaser_usb: Add struct kvaser_usb_busparams
can: kvaser_usb_leaf: Fix bogus restart events
can: kvaser_usb_leaf: Fix wrong CAN state after stopping
can: kvaser_usb_leaf: Fix improved state not being reported
can: kvaser_usb_leaf: Set Warning state even without bus errors
can: kvaser_usb: kvaser_usb_leaf: Handle CMD_ERROR_EVENT
can: kvaser_usb: kvaser_usb_leaf: Rename {leaf,usbcan}_cmd_error_event to {leaf,usbcan}_cmd_can_error_event
can: kvaser_usb: kvaser_usb_leaf: Get capabilities from device
can: kvaser_usb: do not increase tx statistics when sending error message frames
media: i2c: ad5820: Fix error path
pata_ipx4xx_cf: Fix unsigned comparison with less than zero
wifi: rtl8xxxu: Fix reading the vendor of combo chips
wifi: ath9k: hif_usb: Fix use-after-free in ath9k_hif_usb_reg_in_cb()
wifi: ath9k: hif_usb: fix memory leak of urbs in ath9k_hif_usb_dealloc_tx_urbs()
rapidio: devices: fix missing put_device in mport_cdev_open
hfs: Fix OOB Write in hfs_asc2mac
relay: fix type mismatch when allocating memory in relay_create_buf()
eventfd: change int to __u64 in eventfd_signal() ifndef CONFIG_EVENTFD
rapidio: fix possible UAF when kfifo_alloc() fails
fs: sysv: Fix sysv_nblocks() returns wrong value
MIPS: OCTEON: warn only once if deprecated link status is being used
MIPS: BCM63xx: Add check for NULL for clk in clk_enable
platform/x86: mxm-wmi: fix memleak in mxm_wmi_call_mx[ds|mx]()
PM: runtime: Do not call __rpm_callback() from rpm_idle()
PM: runtime: Improve path in rpm_idle() when no callback
xen/privcmd: Fix a possible warning in privcmd_ioctl_mmap_resource()
x86/xen: Fix memory leak in xen_init_lock_cpu()
x86/xen: Fix memory leak in xen_smp_intr_init{_pv}()
xen/events: only register debug interrupt for 2-level events
uprobes/x86: Allow to probe a NOP instruction with 0x66 prefix
ACPICA: Fix use-after-free in acpi_ut_copy_ipackage_to_ipackage()
clocksource/drivers/sh_cmt: Make sure channel clock supply is enabled
rapidio: rio: fix possible name leak in rio_register_mport()
rapidio: fix possible name leaks when rio_add_device() fails
ocfs2: fix memory leak in ocfs2_mount_volume()
ocfs2: rewrite error handling of ocfs2_fill_super
ocfs2: ocfs2_mount_volume does cleanup job before return error
debugfs: fix error when writing negative value to atomic_t debugfs file
docs: fault-injection: fix non-working usage of negative values
lib/notifier-error-inject: fix error when writing -errno to debugfs file
libfs: add DEFINE_SIMPLE_ATTRIBUTE_SIGNED for signed value
cpufreq: amd_freq_sensitivity: Add missing pci_dev_put()
genirq/irqdesc: Don't try to remove non-existing sysfs files
nfsd: don't call nfsd_file_put from client states seqfile display
EDAC/i10nm: fix refcount leak in pci_get_dev_wrapper()
irqchip: gic-pm: Use pm_runtime_resume_and_get() in gic_probe()
perf/x86/intel/uncore: Fix reference count leak in hswep_has_limit_sbox()
PNP: fix name memory leak in pnp_alloc_dev()
selftests/efivarfs: Add checking of the test return value
MIPS: vpe-cmp: fix possible memory leak while module exiting
MIPS: vpe-mt: fix possible memory leak while module exiting
ocfs2: fix memory leak in ocfs2_stack_glue_init()
lib/fonts: fix undefined behavior in bit shift for get_default_font
proc: fixup uptime selftest
timerqueue: Use rb_entry_safe() in timerqueue_getnext()
perf: Fix possible memleak in pmu_dev_alloc()
selftests/ftrace: event_triggers: wait longer for test_event_enable
fs: don't audit the capability check in simple_xattr_list()
PM: hibernate: Fix mistake in kerneldoc comment
alpha: fix syscall entry in !AUDUT_SYSCALL case
cpuidle: dt: Return the correct numbers of parsed idle states
tpm/tpm_crb: Fix error message in __crb_relinquish_locality()
pstore: Avoid kcore oops by vmap()ing with VM_IOREMAP
ARM: mmp: fix timer_read delay
pstore/ram: Fix error return code in ramoops_probe()
arm64: dts: armada-3720-turris-mox: Add missing interrupt for RTC
ARM: dts: turris-omnia: Add switch port 6 node
ARM: dts: turris-omnia: Add ethernet aliases
ARM: dts: armada-39x: Fix assigned-addresses for every PCIe Root Port
ARM: dts: armada-38x: Fix assigned-addresses for every PCIe Root Port
ARM: dts: armada-375: Fix assigned-addresses for every PCIe Root Port
ARM: dts: armada-xp: Fix assigned-addresses for every PCIe Root Port
ARM: dts: armada-370: Fix assigned-addresses for every PCIe Root Port
ARM: dts: dove: Fix assigned-addresses for every PCIe Root Port
arm64: dts: mediatek: mt6797: Fix 26M oscillator unit name
arm64: dts: mt2712-evb: Fix usb vbus regulators unit names
arm64: dts: mt2712-evb: Fix vproc fixed regulators unit names
arm64: dts: mt2712e: Fix unit address for pinctrl node
arm64: dts: mt2712e: Fix unit_address_vs_reg warning for oscillators
perf/smmuv3: Fix hotplug callback leak in arm_smmu_pmu_init()
perf: arm_dsu: Fix hotplug callback leak in dsu_pmu_init()
soc: ti: smartreflex: Fix PM disable depth imbalance in omap_sr_probe
soc: ti: knav_qmss_queue: Fix PM disable depth imbalance in knav_queue_probe
soc: ti: knav_qmss_queue: Use pm_runtime_resume_and_get instead of pm_runtime_get_sync
arm: dts: spear600: Fix clcd interrupt
drivers: soc: ti: knav_qmss_queue: Mark knav_acc_firmwares as static
arm64: dts: qcom: sdm845-cheza: fix AP suspend pin bias
ARM: dts: qcom: apq8064: fix coresight compatible
usb: musb: remove extra check in musb_gadget_vbus_draw
net: loopback: use NET_NAME_PREDICTABLE for name_assign_type
Bluetooth: L2CAP: Fix u8 overflow
HID: uclogic: Add HID_QUIRK_HIDINPUT_FORCE quirk
HID: ite: Enable QUIRK_TOUCHPAD_ON_OFF_REPORT on Acer Aspire Switch V 10
HID: ite: Enable QUIRK_TOUCHPAD_ON_OFF_REPORT on Acer Aspire Switch 10E
HID: ite: Add support for Acer S1002 keyboard-dock
xen-netback: move removal of "hotplug-status" to the right place
igb: Initialize mailbox message for VF reset
USB: serial: f81534: fix division by zero on line-speed change
USB: serial: f81232: fix division by zero on line-speed change
USB: serial: cp210x: add Kamstrup RF sniffer PIDs
USB: serial: option: add Quectel EM05-G modem
usb: gadget: uvc: Prevent buffer overflow in setup handler
udf: Fix extending file within last block
udf: Do not bother looking for prealloc extents if i_lenExtents matches i_size
udf: Fix preallocation discarding at indirect extent boundary
udf: Discard preallocation before extending file with a hole
tracing/ring-buffer: Only do full wait when cpu != RING_BUFFER_ALL_CPUS
ANDROID: Add more hvc devices for virtio-console.
Revert "can: af_can: fix NULL pointer dereference in can_rcv_filter"
ANDROID: Revert "tracing/ring-buffer: Have polling block on watermark"
Linux 5.4.228
ASoC: ops: Correct bounds check for second channel on SX controls
can: mcba_usb: Fix termination command argument
can: sja1000: fix size of OCR_MODE_MASK define
pinctrl: meditatek: Startup with the IRQs disabled
ASoC: ops: Check bounds for second channel in snd_soc_put_volsw_sx()
nfp: fix use-after-free in area_cache_get()
block: unhash blkdev part inode when the part is deleted
mm/hugetlb: fix races when looking up a CONT-PTE/PMD size hugetlb page
x86/smpboot: Move rcu_cpu_starting() earlier
net: bpf: Allow TC programs to call BPF_FUNC_skb_change_head
Linux 5.4.227
can: esd_usb: Allow REC and TEC to return to zero
net: mvneta: Fix an out of bounds check
ipv6: avoid use-after-free in ip6_fragment()
net: plip: don't call kfree_skb/dev_kfree_skb() under spin_lock_irq()
xen/netback: fix build warning
ethernet: aeroflex: fix potential skb leak in greth_init_rings()
ipv4: Fix incorrect route flushing when table ID 0 is used
ipv4: Fix incorrect route flushing when source address is deleted
tipc: Fix potential OOB in tipc_link_proto_rcv()
net: hisilicon: Fix potential use-after-free in hix5hd2_rx()
net: hisilicon: Fix potential use-after-free in hisi_femac_rx()
net: thunderx: Fix missing destroy_workqueue of nicvf_rx_mode_wq
net: stmmac: fix "snps,axi-config" node property parsing
nvme initialize core quirks before calling nvme_init_subsystem
NFC: nci: Bounds check struct nfc_target arrays
i40e: Disallow ip4 and ip6 l4_4_bytes
i40e: Fix for VF MAC address 0
i40e: Fix not setting default xps_cpus after reset
net: mvneta: Prevent out of bounds read in mvneta_config_rss()
xen-netfront: Fix NULL sring after live migration
net: encx24j600: Fix invalid logic in reading of MISTAT register
net: encx24j600: Add parentheses to fix precedence
mac802154: fix missing INIT_LIST_HEAD in ieee802154_if_add()
selftests: rtnetlink: correct xfrm policy rule in kci_test_ipsec_offload
net: dsa: ksz: Check return value
Bluetooth: Fix not cleanup led when bt_init fails
Bluetooth: 6LoWPAN: add missing hci_dev_put() in get_l2cap_conn()
af_unix: Get user_ns from in_skb in unix_diag_get_exact().
igb: Allocate MSI-X vector when testing
e1000e: Fix TX dispatch condition
gpio: amd8111: Fix PCI device reference count leak
drm/bridge: ti-sn65dsi86: Fix output polarity setting bug
ca8210: Fix crash by zero initializing data
ieee802154: cc2520: Fix error return code in cc2520_hw_init()
can: af_can: fix NULL pointer dereference in can_rcv_filter
HID: core: fix shift-out-of-bounds in hid_report_raw_event
HID: hid-lg4ff: Add check for empty lbuf
HID: usbhid: Add ALWAYS_POLL quirk for some mice
drm/shmem-helper: Remove errant put in error path
KVM: s390: vsie: Fix the initialization of the epoch extension (epdx) field
mm/gup: fix gup_pud_range() for dax
memcg: fix possible use-after-free in memcg_write_event_control()
media: v4l2-dv-timings.c: fix too strict blanking sanity checks
Revert "net: dsa: b53: Fix valid setting for MDB entries"
xen/netback: don't call kfree_skb() with interrupts disabled
xen/netback: do some code cleanup
xen/netback: Ensure protocol headers don't fall in the non-linear area
mm/khugepaged: invoke MMU notifiers in shmem/file collapse paths
mm/khugepaged: fix GUP-fast interaction by sending IPI
mm/khugepaged: take the right locks for page table retraction
net: usb: qmi_wwan: add u-blox 0x1342 composition
9p/xen: check logical size for buffer size
fbcon: Use kzalloc() in fbcon_prepare_logo()
regulator: twl6030: fix get status of twl6032 regulators
ASoC: soc-pcm: Add NULL check in BE reparenting
btrfs: send: avoid unaligned encoded writes when attempting to clone range
ALSA: seq: Fix function prototype mismatch in snd_seq_expand_var_event
regulator: slg51000: Wait after asserting CS pin
9p/fd: Use P9_HDRSZ for header size
ARM: dts: rockchip: disable arm_global_timer on rk3066 and rk3188
ARM: 9266/1: mm: fix no-MMU ZERO_PAGE() implementation
ARM: 9251/1: perf: Fix stacktraces for tracepoint events in THUMB2 kernels
ARM: dts: rockchip: rk3188: fix lcdc1-rgb24 node name
ARM: dts: rockchip: fix ir-receiver node names
arm: dts: rockchip: fix node name for hym8563 rtc
arm64: dts: rockchip: keep I2S1 disabled for GPIO function on ROCK Pi 4 series
Change-Id: I6a643eaa2ee55257328d881f5b860200719e981e
Signed-off-by: kamasali Satyanarayan <quic_kamasali@quicinc.com>
4074 lines
105 KiB
C
4074 lines
105 KiB
C
/*
|
|
* Copyright 2002-2005, Instant802 Networks, Inc.
|
|
* Copyright 2005-2006, Devicescape Software, Inc.
|
|
* Copyright 2007 Johannes Berg <johannes@sipsolutions.net>
|
|
* Copyright 2008-2011 Luis R. Rodriguez <mcgrof@qca.qualcomm.com>
|
|
* Copyright 2013-2014 Intel Mobile Communications GmbH
|
|
* Copyright 2017 Intel Deutschland GmbH
|
|
* Copyright (C) 2018 - 2019 Intel Corporation
|
|
*
|
|
* Permission to use, copy, modify, and/or distribute this software for any
|
|
* purpose with or without fee is hereby granted, provided that the above
|
|
* copyright notice and this permission notice appear in all copies.
|
|
*
|
|
* THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
|
|
* WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
|
|
* MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR
|
|
* ANY SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
|
|
* WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN
|
|
* ACTION OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF
|
|
* OR IN CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
|
|
*/
|
|
|
|
|
|
/**
|
|
* DOC: Wireless regulatory infrastructure
|
|
*
|
|
* The usual implementation is for a driver to read a device EEPROM to
|
|
* determine which regulatory domain it should be operating under, then
|
|
* looking up the allowable channels in a driver-local table and finally
|
|
* registering those channels in the wiphy structure.
|
|
*
|
|
* Another set of compliance enforcement is for drivers to use their
|
|
* own compliance limits which can be stored on the EEPROM. The host
|
|
* driver or firmware may ensure these are used.
|
|
*
|
|
* In addition to all this we provide an extra layer of regulatory
|
|
* conformance. For drivers which do not have any regulatory
|
|
* information CRDA provides the complete regulatory solution.
|
|
* For others it provides a community effort on further restrictions
|
|
* to enhance compliance.
|
|
*
|
|
* Note: When number of rules --> infinity we will not be able to
|
|
* index on alpha2 any more, instead we'll probably have to
|
|
* rely on some SHA1 checksum of the regdomain for example.
|
|
*
|
|
*/
|
|
|
|
#define pr_fmt(fmt) KBUILD_MODNAME ": " fmt
|
|
|
|
#include <linux/kernel.h>
|
|
#include <linux/export.h>
|
|
#include <linux/slab.h>
|
|
#include <linux/list.h>
|
|
#include <linux/ctype.h>
|
|
#include <linux/nl80211.h>
|
|
#include <linux/platform_device.h>
|
|
#include <linux/verification.h>
|
|
#include <linux/moduleparam.h>
|
|
#include <linux/firmware.h>
|
|
#include <net/cfg80211.h>
|
|
#include "core.h"
|
|
#include "reg.h"
|
|
#include "rdev-ops.h"
|
|
#include "nl80211.h"
|
|
|
|
/*
|
|
* Grace period we give before making sure all current interfaces reside on
|
|
* channels allowed by the current regulatory domain.
|
|
*/
|
|
#define REG_ENFORCE_GRACE_MS 60000
|
|
|
|
/**
|
|
* enum reg_request_treatment - regulatory request treatment
|
|
*
|
|
* @REG_REQ_OK: continue processing the regulatory request
|
|
* @REG_REQ_IGNORE: ignore the regulatory request
|
|
* @REG_REQ_INTERSECT: the regulatory domain resulting from this request should
|
|
* be intersected with the current one.
|
|
* @REG_REQ_ALREADY_SET: the regulatory request will not change the current
|
|
* regulatory settings, and no further processing is required.
|
|
*/
|
|
enum reg_request_treatment {
|
|
REG_REQ_OK,
|
|
REG_REQ_IGNORE,
|
|
REG_REQ_INTERSECT,
|
|
REG_REQ_ALREADY_SET,
|
|
};
|
|
|
|
static struct regulatory_request core_request_world = {
|
|
.initiator = NL80211_REGDOM_SET_BY_CORE,
|
|
.alpha2[0] = '0',
|
|
.alpha2[1] = '0',
|
|
.intersect = false,
|
|
.processed = true,
|
|
.country_ie_env = ENVIRON_ANY,
|
|
};
|
|
|
|
/*
|
|
* Receipt of information from last regulatory request,
|
|
* protected by RTNL (and can be accessed with RCU protection)
|
|
*/
|
|
static struct regulatory_request __rcu *last_request =
|
|
(void __force __rcu *)&core_request_world;
|
|
|
|
/* To trigger userspace events and load firmware */
|
|
static struct platform_device *reg_pdev;
|
|
|
|
/*
|
|
* Central wireless core regulatory domains, we only need two,
|
|
* the current one and a world regulatory domain in case we have no
|
|
* information to give us an alpha2.
|
|
* (protected by RTNL, can be read under RCU)
|
|
*/
|
|
const struct ieee80211_regdomain __rcu *cfg80211_regdomain;
|
|
|
|
/*
|
|
* Number of devices that registered to the core
|
|
* that support cellular base station regulatory hints
|
|
* (protected by RTNL)
|
|
*/
|
|
static int reg_num_devs_support_basehint;
|
|
|
|
/*
|
|
* State variable indicating if the platform on which the devices
|
|
* are attached is operating in an indoor environment. The state variable
|
|
* is relevant for all registered devices.
|
|
*/
|
|
static bool reg_is_indoor;
|
|
static spinlock_t reg_indoor_lock;
|
|
|
|
/* Used to track the userspace process controlling the indoor setting */
|
|
static u32 reg_is_indoor_portid;
|
|
|
|
static void restore_regulatory_settings(bool reset_user, bool cached);
|
|
static void print_regdomain(const struct ieee80211_regdomain *rd);
|
|
|
|
static const struct ieee80211_regdomain *get_cfg80211_regdom(void)
|
|
{
|
|
return rcu_dereference_rtnl(cfg80211_regdomain);
|
|
}
|
|
|
|
const struct ieee80211_regdomain *get_wiphy_regdom(struct wiphy *wiphy)
|
|
{
|
|
return rcu_dereference_rtnl(wiphy->regd);
|
|
}
|
|
|
|
static const char *reg_dfs_region_str(enum nl80211_dfs_regions dfs_region)
|
|
{
|
|
switch (dfs_region) {
|
|
case NL80211_DFS_UNSET:
|
|
return "unset";
|
|
case NL80211_DFS_FCC:
|
|
return "FCC";
|
|
case NL80211_DFS_ETSI:
|
|
return "ETSI";
|
|
case NL80211_DFS_JP:
|
|
return "JP";
|
|
}
|
|
return "Unknown";
|
|
}
|
|
|
|
enum nl80211_dfs_regions reg_get_dfs_region(struct wiphy *wiphy)
|
|
{
|
|
const struct ieee80211_regdomain *regd = NULL;
|
|
const struct ieee80211_regdomain *wiphy_regd = NULL;
|
|
|
|
regd = get_cfg80211_regdom();
|
|
if (!wiphy)
|
|
goto out;
|
|
|
|
wiphy_regd = get_wiphy_regdom(wiphy);
|
|
if (!wiphy_regd)
|
|
goto out;
|
|
|
|
if (wiphy_regd->dfs_region == regd->dfs_region)
|
|
goto out;
|
|
|
|
pr_debug("%s: device specific dfs_region (%s) disagrees with cfg80211's central dfs_region (%s)\n",
|
|
dev_name(&wiphy->dev),
|
|
reg_dfs_region_str(wiphy_regd->dfs_region),
|
|
reg_dfs_region_str(regd->dfs_region));
|
|
|
|
out:
|
|
return regd->dfs_region;
|
|
}
|
|
|
|
static void rcu_free_regdom(const struct ieee80211_regdomain *r)
|
|
{
|
|
if (!r)
|
|
return;
|
|
kfree_rcu((struct ieee80211_regdomain *)r, rcu_head);
|
|
}
|
|
|
|
static struct regulatory_request *get_last_request(void)
|
|
{
|
|
return rcu_dereference_rtnl(last_request);
|
|
}
|
|
|
|
/* Used to queue up regulatory hints */
|
|
static LIST_HEAD(reg_requests_list);
|
|
static spinlock_t reg_requests_lock;
|
|
|
|
/* Used to queue up beacon hints for review */
|
|
static LIST_HEAD(reg_pending_beacons);
|
|
static spinlock_t reg_pending_beacons_lock;
|
|
|
|
/* Used to keep track of processed beacon hints */
|
|
static LIST_HEAD(reg_beacon_list);
|
|
|
|
struct reg_beacon {
|
|
struct list_head list;
|
|
struct ieee80211_channel chan;
|
|
};
|
|
|
|
static void reg_check_chans_work(struct work_struct *work);
|
|
static DECLARE_DELAYED_WORK(reg_check_chans, reg_check_chans_work);
|
|
|
|
static void reg_todo(struct work_struct *work);
|
|
static DECLARE_WORK(reg_work, reg_todo);
|
|
|
|
/* We keep a static world regulatory domain in case of the absence of CRDA */
|
|
static const struct ieee80211_regdomain world_regdom = {
|
|
.n_reg_rules = 8,
|
|
.alpha2 = "00",
|
|
.reg_rules = {
|
|
/* IEEE 802.11b/g, channels 1..11 */
|
|
REG_RULE(2412-10, 2462+10, 40, 6, 20, 0),
|
|
/* IEEE 802.11b/g, channels 12..13. */
|
|
REG_RULE(2467-10, 2472+10, 20, 6, 20,
|
|
NL80211_RRF_NO_IR | NL80211_RRF_AUTO_BW),
|
|
/* IEEE 802.11 channel 14 - Only JP enables
|
|
* this and for 802.11b only */
|
|
REG_RULE(2484-10, 2484+10, 20, 6, 20,
|
|
NL80211_RRF_NO_IR |
|
|
NL80211_RRF_NO_OFDM),
|
|
/* IEEE 802.11a, channel 36..48 */
|
|
REG_RULE(5180-10, 5240+10, 80, 6, 20,
|
|
NL80211_RRF_NO_IR |
|
|
NL80211_RRF_AUTO_BW),
|
|
|
|
/* IEEE 802.11a, channel 52..64 - DFS required */
|
|
REG_RULE(5260-10, 5320+10, 80, 6, 20,
|
|
NL80211_RRF_NO_IR |
|
|
NL80211_RRF_AUTO_BW |
|
|
NL80211_RRF_DFS),
|
|
|
|
/* IEEE 802.11a, channel 100..144 - DFS required */
|
|
REG_RULE(5500-10, 5720+10, 160, 6, 20,
|
|
NL80211_RRF_NO_IR |
|
|
NL80211_RRF_DFS),
|
|
|
|
/* IEEE 802.11a, channel 149..165 */
|
|
REG_RULE(5745-10, 5825+10, 80, 6, 20,
|
|
NL80211_RRF_NO_IR),
|
|
|
|
/* IEEE 802.11ad (60GHz), channels 1..3 */
|
|
REG_RULE(56160+2160*1-1080, 56160+2160*3+1080, 2160, 0, 0, 0),
|
|
}
|
|
};
|
|
|
|
/* protected by RTNL */
|
|
static const struct ieee80211_regdomain *cfg80211_world_regdom =
|
|
&world_regdom;
|
|
|
|
static char *ieee80211_regdom = "00";
|
|
static char user_alpha2[2];
|
|
static const struct ieee80211_regdomain *cfg80211_user_regdom;
|
|
|
|
module_param(ieee80211_regdom, charp, 0444);
|
|
MODULE_PARM_DESC(ieee80211_regdom, "IEEE 802.11 regulatory domain code");
|
|
|
|
static void reg_free_request(struct regulatory_request *request)
|
|
{
|
|
if (request == &core_request_world)
|
|
return;
|
|
|
|
if (request != get_last_request())
|
|
kfree(request);
|
|
}
|
|
|
|
static void reg_free_last_request(void)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (lr != &core_request_world && lr)
|
|
kfree_rcu(lr, rcu_head);
|
|
}
|
|
|
|
static void reg_update_last_request(struct regulatory_request *request)
|
|
{
|
|
struct regulatory_request *lr;
|
|
|
|
lr = get_last_request();
|
|
if (lr == request)
|
|
return;
|
|
|
|
reg_free_last_request();
|
|
rcu_assign_pointer(last_request, request);
|
|
}
|
|
|
|
static void reset_regdomains(bool full_reset,
|
|
const struct ieee80211_regdomain *new_regdom)
|
|
{
|
|
const struct ieee80211_regdomain *r;
|
|
|
|
ASSERT_RTNL();
|
|
|
|
r = get_cfg80211_regdom();
|
|
|
|
/* avoid freeing static information or freeing something twice */
|
|
if (r == cfg80211_world_regdom)
|
|
r = NULL;
|
|
if (cfg80211_world_regdom == &world_regdom)
|
|
cfg80211_world_regdom = NULL;
|
|
if (r == &world_regdom)
|
|
r = NULL;
|
|
|
|
rcu_free_regdom(r);
|
|
rcu_free_regdom(cfg80211_world_regdom);
|
|
|
|
cfg80211_world_regdom = &world_regdom;
|
|
rcu_assign_pointer(cfg80211_regdomain, new_regdom);
|
|
|
|
if (!full_reset)
|
|
return;
|
|
|
|
reg_update_last_request(&core_request_world);
|
|
}
|
|
|
|
/*
|
|
* Dynamic world regulatory domain requested by the wireless
|
|
* core upon initialization
|
|
*/
|
|
static void update_world_regdomain(const struct ieee80211_regdomain *rd)
|
|
{
|
|
struct regulatory_request *lr;
|
|
|
|
lr = get_last_request();
|
|
|
|
WARN_ON(!lr);
|
|
|
|
reset_regdomains(false, rd);
|
|
|
|
cfg80211_world_regdom = rd;
|
|
}
|
|
|
|
bool is_world_regdom(const char *alpha2)
|
|
{
|
|
if (!alpha2)
|
|
return false;
|
|
return alpha2[0] == '0' && alpha2[1] == '0';
|
|
}
|
|
|
|
static bool is_alpha2_set(const char *alpha2)
|
|
{
|
|
if (!alpha2)
|
|
return false;
|
|
return alpha2[0] && alpha2[1];
|
|
}
|
|
|
|
static bool is_unknown_alpha2(const char *alpha2)
|
|
{
|
|
if (!alpha2)
|
|
return false;
|
|
/*
|
|
* Special case where regulatory domain was built by driver
|
|
* but a specific alpha2 cannot be determined
|
|
*/
|
|
return alpha2[0] == '9' && alpha2[1] == '9';
|
|
}
|
|
|
|
static bool is_intersected_alpha2(const char *alpha2)
|
|
{
|
|
if (!alpha2)
|
|
return false;
|
|
/*
|
|
* Special case where regulatory domain is the
|
|
* result of an intersection between two regulatory domain
|
|
* structures
|
|
*/
|
|
return alpha2[0] == '9' && alpha2[1] == '8';
|
|
}
|
|
|
|
static bool is_an_alpha2(const char *alpha2)
|
|
{
|
|
if (!alpha2)
|
|
return false;
|
|
return isalpha(alpha2[0]) && isalpha(alpha2[1]);
|
|
}
|
|
|
|
static bool alpha2_equal(const char *alpha2_x, const char *alpha2_y)
|
|
{
|
|
if (!alpha2_x || !alpha2_y)
|
|
return false;
|
|
return alpha2_x[0] == alpha2_y[0] && alpha2_x[1] == alpha2_y[1];
|
|
}
|
|
|
|
static bool regdom_changes(const char *alpha2)
|
|
{
|
|
const struct ieee80211_regdomain *r = get_cfg80211_regdom();
|
|
|
|
if (!r)
|
|
return true;
|
|
return !alpha2_equal(r->alpha2, alpha2);
|
|
}
|
|
|
|
/*
|
|
* The NL80211_REGDOM_SET_BY_USER regdom alpha2 is cached, this lets
|
|
* you know if a valid regulatory hint with NL80211_REGDOM_SET_BY_USER
|
|
* has ever been issued.
|
|
*/
|
|
static bool is_user_regdom_saved(void)
|
|
{
|
|
if (user_alpha2[0] == '9' && user_alpha2[1] == '7')
|
|
return false;
|
|
|
|
/* This would indicate a mistake on the design */
|
|
if (WARN(!is_world_regdom(user_alpha2) && !is_an_alpha2(user_alpha2),
|
|
"Unexpected user alpha2: %c%c\n",
|
|
user_alpha2[0], user_alpha2[1]))
|
|
return false;
|
|
|
|
return true;
|
|
}
|
|
|
|
static const struct ieee80211_regdomain *
|
|
reg_copy_regd(const struct ieee80211_regdomain *src_regd)
|
|
{
|
|
struct ieee80211_regdomain *regd;
|
|
unsigned int i;
|
|
|
|
regd = kzalloc(struct_size(regd, reg_rules, src_regd->n_reg_rules),
|
|
GFP_KERNEL);
|
|
if (!regd)
|
|
return ERR_PTR(-ENOMEM);
|
|
|
|
memcpy(regd, src_regd, sizeof(struct ieee80211_regdomain));
|
|
|
|
for (i = 0; i < src_regd->n_reg_rules; i++)
|
|
memcpy(®d->reg_rules[i], &src_regd->reg_rules[i],
|
|
sizeof(struct ieee80211_reg_rule));
|
|
|
|
return regd;
|
|
}
|
|
|
|
static void cfg80211_save_user_regdom(const struct ieee80211_regdomain *rd)
|
|
{
|
|
ASSERT_RTNL();
|
|
|
|
if (!IS_ERR(cfg80211_user_regdom))
|
|
kfree(cfg80211_user_regdom);
|
|
cfg80211_user_regdom = reg_copy_regd(rd);
|
|
}
|
|
|
|
struct reg_regdb_apply_request {
|
|
struct list_head list;
|
|
const struct ieee80211_regdomain *regdom;
|
|
};
|
|
|
|
static LIST_HEAD(reg_regdb_apply_list);
|
|
static DEFINE_MUTEX(reg_regdb_apply_mutex);
|
|
|
|
static void reg_regdb_apply(struct work_struct *work)
|
|
{
|
|
struct reg_regdb_apply_request *request;
|
|
|
|
rtnl_lock();
|
|
|
|
mutex_lock(®_regdb_apply_mutex);
|
|
while (!list_empty(®_regdb_apply_list)) {
|
|
request = list_first_entry(®_regdb_apply_list,
|
|
struct reg_regdb_apply_request,
|
|
list);
|
|
list_del(&request->list);
|
|
|
|
set_regdom(request->regdom, REGD_SOURCE_INTERNAL_DB);
|
|
kfree(request);
|
|
}
|
|
mutex_unlock(®_regdb_apply_mutex);
|
|
|
|
rtnl_unlock();
|
|
}
|
|
|
|
static DECLARE_WORK(reg_regdb_work, reg_regdb_apply);
|
|
|
|
static int reg_schedule_apply(const struct ieee80211_regdomain *regdom)
|
|
{
|
|
struct reg_regdb_apply_request *request;
|
|
|
|
request = kzalloc(sizeof(struct reg_regdb_apply_request), GFP_KERNEL);
|
|
if (!request) {
|
|
kfree(regdom);
|
|
return -ENOMEM;
|
|
}
|
|
|
|
request->regdom = regdom;
|
|
|
|
mutex_lock(®_regdb_apply_mutex);
|
|
list_add_tail(&request->list, ®_regdb_apply_list);
|
|
mutex_unlock(®_regdb_apply_mutex);
|
|
|
|
schedule_work(®_regdb_work);
|
|
return 0;
|
|
}
|
|
|
|
#ifdef CONFIG_CFG80211_CRDA_SUPPORT
|
|
/* Max number of consecutive attempts to communicate with CRDA */
|
|
#define REG_MAX_CRDA_TIMEOUTS 10
|
|
|
|
static u32 reg_crda_timeouts;
|
|
|
|
static void crda_timeout_work(struct work_struct *work);
|
|
static DECLARE_DELAYED_WORK(crda_timeout, crda_timeout_work);
|
|
|
|
static void crda_timeout_work(struct work_struct *work)
|
|
{
|
|
pr_debug("Timeout while waiting for CRDA to reply, restoring regulatory settings\n");
|
|
rtnl_lock();
|
|
reg_crda_timeouts++;
|
|
restore_regulatory_settings(true, false);
|
|
rtnl_unlock();
|
|
}
|
|
|
|
static void cancel_crda_timeout(void)
|
|
{
|
|
cancel_delayed_work(&crda_timeout);
|
|
}
|
|
|
|
static void cancel_crda_timeout_sync(void)
|
|
{
|
|
cancel_delayed_work_sync(&crda_timeout);
|
|
}
|
|
|
|
static void reset_crda_timeouts(void)
|
|
{
|
|
reg_crda_timeouts = 0;
|
|
}
|
|
|
|
/*
|
|
* This lets us keep regulatory code which is updated on a regulatory
|
|
* basis in userspace.
|
|
*/
|
|
static int call_crda(const char *alpha2)
|
|
{
|
|
char country[12];
|
|
char *env[] = { country, NULL };
|
|
int ret;
|
|
|
|
snprintf(country, sizeof(country), "COUNTRY=%c%c",
|
|
alpha2[0], alpha2[1]);
|
|
|
|
if (reg_crda_timeouts > REG_MAX_CRDA_TIMEOUTS) {
|
|
pr_debug("Exceeded CRDA call max attempts. Not calling CRDA\n");
|
|
return -EINVAL;
|
|
}
|
|
|
|
if (!is_world_regdom((char *) alpha2))
|
|
pr_debug("Calling CRDA for country: %c%c\n",
|
|
alpha2[0], alpha2[1]);
|
|
else
|
|
pr_debug("Calling CRDA to update world regulatory domain\n");
|
|
|
|
ret = kobject_uevent_env(®_pdev->dev.kobj, KOBJ_CHANGE, env);
|
|
if (ret)
|
|
return ret;
|
|
|
|
queue_delayed_work(system_power_efficient_wq,
|
|
&crda_timeout, msecs_to_jiffies(3142));
|
|
return 0;
|
|
}
|
|
#else
|
|
static inline void cancel_crda_timeout(void) {}
|
|
static inline void cancel_crda_timeout_sync(void) {}
|
|
static inline void reset_crda_timeouts(void) {}
|
|
static inline int call_crda(const char *alpha2)
|
|
{
|
|
return -ENODATA;
|
|
}
|
|
#endif /* CONFIG_CFG80211_CRDA_SUPPORT */
|
|
|
|
/* code to directly load a firmware database through request_firmware */
|
|
static const struct fwdb_header *regdb;
|
|
|
|
struct fwdb_country {
|
|
u8 alpha2[2];
|
|
__be16 coll_ptr;
|
|
/* this struct cannot be extended */
|
|
} __packed __aligned(4);
|
|
|
|
struct fwdb_collection {
|
|
u8 len;
|
|
u8 n_rules;
|
|
u8 dfs_region;
|
|
/* no optional data yet */
|
|
/* aligned to 2, then followed by __be16 array of rule pointers */
|
|
} __packed __aligned(4);
|
|
|
|
enum fwdb_flags {
|
|
FWDB_FLAG_NO_OFDM = BIT(0),
|
|
FWDB_FLAG_NO_OUTDOOR = BIT(1),
|
|
FWDB_FLAG_DFS = BIT(2),
|
|
FWDB_FLAG_NO_IR = BIT(3),
|
|
FWDB_FLAG_AUTO_BW = BIT(4),
|
|
};
|
|
|
|
struct fwdb_wmm_ac {
|
|
u8 ecw;
|
|
u8 aifsn;
|
|
__be16 cot;
|
|
} __packed;
|
|
|
|
struct fwdb_wmm_rule {
|
|
struct fwdb_wmm_ac client[IEEE80211_NUM_ACS];
|
|
struct fwdb_wmm_ac ap[IEEE80211_NUM_ACS];
|
|
} __packed;
|
|
|
|
struct fwdb_rule {
|
|
u8 len;
|
|
u8 flags;
|
|
__be16 max_eirp;
|
|
__be32 start, end, max_bw;
|
|
/* start of optional data */
|
|
__be16 cac_timeout;
|
|
__be16 wmm_ptr;
|
|
} __packed __aligned(4);
|
|
|
|
#define FWDB_MAGIC 0x52474442
|
|
#define FWDB_VERSION 20
|
|
|
|
struct fwdb_header {
|
|
__be32 magic;
|
|
__be32 version;
|
|
struct fwdb_country country[];
|
|
} __packed __aligned(4);
|
|
|
|
static int ecw2cw(int ecw)
|
|
{
|
|
return (1 << ecw) - 1;
|
|
}
|
|
|
|
static bool valid_wmm(struct fwdb_wmm_rule *rule)
|
|
{
|
|
struct fwdb_wmm_ac *ac = (struct fwdb_wmm_ac *)rule;
|
|
int i;
|
|
|
|
for (i = 0; i < IEEE80211_NUM_ACS * 2; i++) {
|
|
u16 cw_min = ecw2cw((ac[i].ecw & 0xf0) >> 4);
|
|
u16 cw_max = ecw2cw(ac[i].ecw & 0x0f);
|
|
u8 aifsn = ac[i].aifsn;
|
|
|
|
if (cw_min >= cw_max)
|
|
return false;
|
|
|
|
if (aifsn < 1)
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
static bool valid_rule(const u8 *data, unsigned int size, u16 rule_ptr)
|
|
{
|
|
struct fwdb_rule *rule = (void *)(data + (rule_ptr << 2));
|
|
|
|
if ((u8 *)rule + sizeof(rule->len) > data + size)
|
|
return false;
|
|
|
|
/* mandatory fields */
|
|
if (rule->len < offsetofend(struct fwdb_rule, max_bw))
|
|
return false;
|
|
if (rule->len >= offsetofend(struct fwdb_rule, wmm_ptr)) {
|
|
u32 wmm_ptr = be16_to_cpu(rule->wmm_ptr) << 2;
|
|
struct fwdb_wmm_rule *wmm;
|
|
|
|
if (wmm_ptr + sizeof(struct fwdb_wmm_rule) > size)
|
|
return false;
|
|
|
|
wmm = (void *)(data + wmm_ptr);
|
|
|
|
if (!valid_wmm(wmm))
|
|
return false;
|
|
}
|
|
return true;
|
|
}
|
|
|
|
static bool valid_country(const u8 *data, unsigned int size,
|
|
const struct fwdb_country *country)
|
|
{
|
|
unsigned int ptr = be16_to_cpu(country->coll_ptr) << 2;
|
|
struct fwdb_collection *coll = (void *)(data + ptr);
|
|
__be16 *rules_ptr;
|
|
unsigned int i;
|
|
|
|
/* make sure we can read len/n_rules */
|
|
if ((u8 *)coll + offsetofend(typeof(*coll), n_rules) > data + size)
|
|
return false;
|
|
|
|
/* make sure base struct and all rules fit */
|
|
if ((u8 *)coll + ALIGN(coll->len, 2) +
|
|
(coll->n_rules * 2) > data + size)
|
|
return false;
|
|
|
|
/* mandatory fields must exist */
|
|
if (coll->len < offsetofend(struct fwdb_collection, dfs_region))
|
|
return false;
|
|
|
|
rules_ptr = (void *)((u8 *)coll + ALIGN(coll->len, 2));
|
|
|
|
for (i = 0; i < coll->n_rules; i++) {
|
|
u16 rule_ptr = be16_to_cpu(rules_ptr[i]);
|
|
|
|
if (!valid_rule(data, size, rule_ptr))
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
#ifdef CONFIG_CFG80211_REQUIRE_SIGNED_REGDB
|
|
static struct key *builtin_regdb_keys;
|
|
|
|
static void __init load_keys_from_buffer(const u8 *p, unsigned int buflen)
|
|
{
|
|
const u8 *end = p + buflen;
|
|
size_t plen;
|
|
key_ref_t key;
|
|
|
|
while (p < end) {
|
|
/* Each cert begins with an ASN.1 SEQUENCE tag and must be more
|
|
* than 256 bytes in size.
|
|
*/
|
|
if (end - p < 4)
|
|
goto dodgy_cert;
|
|
if (p[0] != 0x30 &&
|
|
p[1] != 0x82)
|
|
goto dodgy_cert;
|
|
plen = (p[2] << 8) | p[3];
|
|
plen += 4;
|
|
if (plen > end - p)
|
|
goto dodgy_cert;
|
|
|
|
key = key_create_or_update(make_key_ref(builtin_regdb_keys, 1),
|
|
"asymmetric", NULL, p, plen,
|
|
((KEY_POS_ALL & ~KEY_POS_SETATTR) |
|
|
KEY_USR_VIEW | KEY_USR_READ),
|
|
KEY_ALLOC_NOT_IN_QUOTA |
|
|
KEY_ALLOC_BUILT_IN |
|
|
KEY_ALLOC_BYPASS_RESTRICTION);
|
|
if (IS_ERR(key)) {
|
|
pr_err("Problem loading in-kernel X.509 certificate (%ld)\n",
|
|
PTR_ERR(key));
|
|
} else {
|
|
pr_notice("Loaded X.509 cert '%s'\n",
|
|
key_ref_to_ptr(key)->description);
|
|
key_ref_put(key);
|
|
}
|
|
p += plen;
|
|
}
|
|
|
|
return;
|
|
|
|
dodgy_cert:
|
|
pr_err("Problem parsing in-kernel X.509 certificate list\n");
|
|
}
|
|
|
|
static int __init load_builtin_regdb_keys(void)
|
|
{
|
|
builtin_regdb_keys =
|
|
keyring_alloc(".builtin_regdb_keys",
|
|
KUIDT_INIT(0), KGIDT_INIT(0), current_cred(),
|
|
((KEY_POS_ALL & ~KEY_POS_SETATTR) |
|
|
KEY_USR_VIEW | KEY_USR_READ | KEY_USR_SEARCH),
|
|
KEY_ALLOC_NOT_IN_QUOTA, NULL, NULL);
|
|
if (IS_ERR(builtin_regdb_keys))
|
|
return PTR_ERR(builtin_regdb_keys);
|
|
|
|
pr_notice("Loading compiled-in X.509 certificates for regulatory database\n");
|
|
|
|
#ifdef CONFIG_CFG80211_USE_KERNEL_REGDB_KEYS
|
|
load_keys_from_buffer(shipped_regdb_certs, shipped_regdb_certs_len);
|
|
#endif
|
|
#ifdef CONFIG_CFG80211_EXTRA_REGDB_KEYDIR
|
|
if (CONFIG_CFG80211_EXTRA_REGDB_KEYDIR[0] != '\0')
|
|
load_keys_from_buffer(extra_regdb_certs, extra_regdb_certs_len);
|
|
#endif
|
|
|
|
return 0;
|
|
}
|
|
|
|
static bool regdb_has_valid_signature(const u8 *data, unsigned int size)
|
|
{
|
|
const struct firmware *sig;
|
|
bool result;
|
|
|
|
if (request_firmware(&sig, "regulatory.db.p7s", ®_pdev->dev))
|
|
return false;
|
|
|
|
result = verify_pkcs7_signature(data, size, sig->data, sig->size,
|
|
builtin_regdb_keys,
|
|
VERIFYING_UNSPECIFIED_SIGNATURE,
|
|
NULL, NULL) == 0;
|
|
|
|
release_firmware(sig);
|
|
|
|
return result;
|
|
}
|
|
|
|
static void free_regdb_keyring(void)
|
|
{
|
|
key_put(builtin_regdb_keys);
|
|
}
|
|
#else
|
|
static int load_builtin_regdb_keys(void)
|
|
{
|
|
return 0;
|
|
}
|
|
|
|
static bool regdb_has_valid_signature(const u8 *data, unsigned int size)
|
|
{
|
|
return true;
|
|
}
|
|
|
|
static void free_regdb_keyring(void)
|
|
{
|
|
}
|
|
#endif /* CONFIG_CFG80211_REQUIRE_SIGNED_REGDB */
|
|
|
|
static bool valid_regdb(const u8 *data, unsigned int size)
|
|
{
|
|
const struct fwdb_header *hdr = (void *)data;
|
|
const struct fwdb_country *country;
|
|
|
|
if (size < sizeof(*hdr))
|
|
return false;
|
|
|
|
if (hdr->magic != cpu_to_be32(FWDB_MAGIC))
|
|
return false;
|
|
|
|
if (hdr->version != cpu_to_be32(FWDB_VERSION))
|
|
return false;
|
|
|
|
if (!regdb_has_valid_signature(data, size))
|
|
return false;
|
|
|
|
country = &hdr->country[0];
|
|
while ((u8 *)(country + 1) <= data + size) {
|
|
if (!country->coll_ptr)
|
|
break;
|
|
if (!valid_country(data, size, country))
|
|
return false;
|
|
country++;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
static void set_wmm_rule(const struct fwdb_header *db,
|
|
const struct fwdb_country *country,
|
|
const struct fwdb_rule *rule,
|
|
struct ieee80211_reg_rule *rrule)
|
|
{
|
|
struct ieee80211_wmm_rule *wmm_rule = &rrule->wmm_rule;
|
|
struct fwdb_wmm_rule *wmm;
|
|
unsigned int i, wmm_ptr;
|
|
|
|
wmm_ptr = be16_to_cpu(rule->wmm_ptr) << 2;
|
|
wmm = (void *)((u8 *)db + wmm_ptr);
|
|
|
|
if (!valid_wmm(wmm)) {
|
|
pr_err("Invalid regulatory WMM rule %u-%u in domain %c%c\n",
|
|
be32_to_cpu(rule->start), be32_to_cpu(rule->end),
|
|
country->alpha2[0], country->alpha2[1]);
|
|
return;
|
|
}
|
|
|
|
for (i = 0; i < IEEE80211_NUM_ACS; i++) {
|
|
wmm_rule->client[i].cw_min =
|
|
ecw2cw((wmm->client[i].ecw & 0xf0) >> 4);
|
|
wmm_rule->client[i].cw_max = ecw2cw(wmm->client[i].ecw & 0x0f);
|
|
wmm_rule->client[i].aifsn = wmm->client[i].aifsn;
|
|
wmm_rule->client[i].cot =
|
|
1000 * be16_to_cpu(wmm->client[i].cot);
|
|
wmm_rule->ap[i].cw_min = ecw2cw((wmm->ap[i].ecw & 0xf0) >> 4);
|
|
wmm_rule->ap[i].cw_max = ecw2cw(wmm->ap[i].ecw & 0x0f);
|
|
wmm_rule->ap[i].aifsn = wmm->ap[i].aifsn;
|
|
wmm_rule->ap[i].cot = 1000 * be16_to_cpu(wmm->ap[i].cot);
|
|
}
|
|
|
|
rrule->has_wmm = true;
|
|
}
|
|
|
|
static int __regdb_query_wmm(const struct fwdb_header *db,
|
|
const struct fwdb_country *country, int freq,
|
|
struct ieee80211_reg_rule *rrule)
|
|
{
|
|
unsigned int ptr = be16_to_cpu(country->coll_ptr) << 2;
|
|
struct fwdb_collection *coll = (void *)((u8 *)db + ptr);
|
|
int i;
|
|
|
|
for (i = 0; i < coll->n_rules; i++) {
|
|
__be16 *rules_ptr = (void *)((u8 *)coll + ALIGN(coll->len, 2));
|
|
unsigned int rule_ptr = be16_to_cpu(rules_ptr[i]) << 2;
|
|
struct fwdb_rule *rule = (void *)((u8 *)db + rule_ptr);
|
|
|
|
if (rule->len < offsetofend(struct fwdb_rule, wmm_ptr))
|
|
continue;
|
|
|
|
if (freq >= KHZ_TO_MHZ(be32_to_cpu(rule->start)) &&
|
|
freq <= KHZ_TO_MHZ(be32_to_cpu(rule->end))) {
|
|
set_wmm_rule(db, country, rule, rrule);
|
|
return 0;
|
|
}
|
|
}
|
|
|
|
return -ENODATA;
|
|
}
|
|
|
|
int reg_query_regdb_wmm(char *alpha2, int freq, struct ieee80211_reg_rule *rule)
|
|
{
|
|
const struct fwdb_header *hdr = regdb;
|
|
const struct fwdb_country *country;
|
|
|
|
if (!regdb)
|
|
return -ENODATA;
|
|
|
|
if (IS_ERR(regdb))
|
|
return PTR_ERR(regdb);
|
|
|
|
country = &hdr->country[0];
|
|
while (country->coll_ptr) {
|
|
if (alpha2_equal(alpha2, country->alpha2))
|
|
return __regdb_query_wmm(regdb, country, freq, rule);
|
|
|
|
country++;
|
|
}
|
|
|
|
return -ENODATA;
|
|
}
|
|
EXPORT_SYMBOL(reg_query_regdb_wmm);
|
|
|
|
static int regdb_query_country(const struct fwdb_header *db,
|
|
const struct fwdb_country *country)
|
|
{
|
|
unsigned int ptr = be16_to_cpu(country->coll_ptr) << 2;
|
|
struct fwdb_collection *coll = (void *)((u8 *)db + ptr);
|
|
struct ieee80211_regdomain *regdom;
|
|
unsigned int i;
|
|
|
|
regdom = kzalloc(struct_size(regdom, reg_rules, coll->n_rules),
|
|
GFP_KERNEL);
|
|
if (!regdom)
|
|
return -ENOMEM;
|
|
|
|
regdom->n_reg_rules = coll->n_rules;
|
|
regdom->alpha2[0] = country->alpha2[0];
|
|
regdom->alpha2[1] = country->alpha2[1];
|
|
regdom->dfs_region = coll->dfs_region;
|
|
|
|
for (i = 0; i < regdom->n_reg_rules; i++) {
|
|
__be16 *rules_ptr = (void *)((u8 *)coll + ALIGN(coll->len, 2));
|
|
unsigned int rule_ptr = be16_to_cpu(rules_ptr[i]) << 2;
|
|
struct fwdb_rule *rule = (void *)((u8 *)db + rule_ptr);
|
|
struct ieee80211_reg_rule *rrule = ®dom->reg_rules[i];
|
|
|
|
rrule->freq_range.start_freq_khz = be32_to_cpu(rule->start);
|
|
rrule->freq_range.end_freq_khz = be32_to_cpu(rule->end);
|
|
rrule->freq_range.max_bandwidth_khz = be32_to_cpu(rule->max_bw);
|
|
|
|
rrule->power_rule.max_antenna_gain = 0;
|
|
rrule->power_rule.max_eirp = be16_to_cpu(rule->max_eirp);
|
|
|
|
rrule->flags = 0;
|
|
if (rule->flags & FWDB_FLAG_NO_OFDM)
|
|
rrule->flags |= NL80211_RRF_NO_OFDM;
|
|
if (rule->flags & FWDB_FLAG_NO_OUTDOOR)
|
|
rrule->flags |= NL80211_RRF_NO_OUTDOOR;
|
|
if (rule->flags & FWDB_FLAG_DFS)
|
|
rrule->flags |= NL80211_RRF_DFS;
|
|
if (rule->flags & FWDB_FLAG_NO_IR)
|
|
rrule->flags |= NL80211_RRF_NO_IR;
|
|
if (rule->flags & FWDB_FLAG_AUTO_BW)
|
|
rrule->flags |= NL80211_RRF_AUTO_BW;
|
|
|
|
rrule->dfs_cac_ms = 0;
|
|
|
|
/* handle optional data */
|
|
if (rule->len >= offsetofend(struct fwdb_rule, cac_timeout))
|
|
rrule->dfs_cac_ms =
|
|
1000 * be16_to_cpu(rule->cac_timeout);
|
|
if (rule->len >= offsetofend(struct fwdb_rule, wmm_ptr))
|
|
set_wmm_rule(db, country, rule, rrule);
|
|
}
|
|
|
|
return reg_schedule_apply(regdom);
|
|
}
|
|
|
|
static int query_regdb(const char *alpha2)
|
|
{
|
|
const struct fwdb_header *hdr = regdb;
|
|
const struct fwdb_country *country;
|
|
|
|
ASSERT_RTNL();
|
|
|
|
if (IS_ERR(regdb))
|
|
return PTR_ERR(regdb);
|
|
|
|
country = &hdr->country[0];
|
|
while (country->coll_ptr) {
|
|
if (alpha2_equal(alpha2, country->alpha2))
|
|
return regdb_query_country(regdb, country);
|
|
country++;
|
|
}
|
|
|
|
return -ENODATA;
|
|
}
|
|
|
|
static void regdb_fw_cb(const struct firmware *fw, void *context)
|
|
{
|
|
int set_error = 0;
|
|
bool restore = true;
|
|
void *db;
|
|
|
|
if (!fw) {
|
|
pr_info("failed to load regulatory.db\n");
|
|
set_error = -ENODATA;
|
|
} else if (!valid_regdb(fw->data, fw->size)) {
|
|
pr_info("loaded regulatory.db is malformed or signature is missing/invalid\n");
|
|
set_error = -EINVAL;
|
|
}
|
|
|
|
rtnl_lock();
|
|
if (regdb && !IS_ERR(regdb)) {
|
|
/* negative case - a bug
|
|
* positive case - can happen due to race in case of multiple cb's in
|
|
* queue, due to usage of asynchronous callback
|
|
*
|
|
* Either case, just restore and free new db.
|
|
*/
|
|
} else if (set_error) {
|
|
regdb = ERR_PTR(set_error);
|
|
} else if (fw) {
|
|
db = kmemdup(fw->data, fw->size, GFP_KERNEL);
|
|
if (db) {
|
|
regdb = db;
|
|
restore = context && query_regdb(context);
|
|
} else {
|
|
restore = true;
|
|
}
|
|
}
|
|
|
|
if (restore)
|
|
restore_regulatory_settings(true, false);
|
|
|
|
rtnl_unlock();
|
|
|
|
kfree(context);
|
|
|
|
release_firmware(fw);
|
|
}
|
|
|
|
static int query_regdb_file(const char *alpha2)
|
|
{
|
|
int err;
|
|
|
|
ASSERT_RTNL();
|
|
|
|
if (regdb)
|
|
return query_regdb(alpha2);
|
|
|
|
alpha2 = kmemdup(alpha2, 2, GFP_KERNEL);
|
|
if (!alpha2)
|
|
return -ENOMEM;
|
|
|
|
err = request_firmware_nowait(THIS_MODULE, true, "regulatory.db",
|
|
®_pdev->dev, GFP_KERNEL,
|
|
(void *)alpha2, regdb_fw_cb);
|
|
if (err)
|
|
kfree(alpha2);
|
|
|
|
return err;
|
|
}
|
|
|
|
int reg_reload_regdb(void)
|
|
{
|
|
const struct firmware *fw;
|
|
void *db;
|
|
int err;
|
|
|
|
err = request_firmware(&fw, "regulatory.db", ®_pdev->dev);
|
|
if (err)
|
|
return err;
|
|
|
|
if (!valid_regdb(fw->data, fw->size)) {
|
|
err = -ENODATA;
|
|
goto out;
|
|
}
|
|
|
|
db = kmemdup(fw->data, fw->size, GFP_KERNEL);
|
|
if (!db) {
|
|
err = -ENOMEM;
|
|
goto out;
|
|
}
|
|
|
|
rtnl_lock();
|
|
if (!IS_ERR_OR_NULL(regdb))
|
|
kfree(regdb);
|
|
regdb = db;
|
|
rtnl_unlock();
|
|
|
|
out:
|
|
release_firmware(fw);
|
|
return err;
|
|
}
|
|
|
|
static bool reg_query_database(struct regulatory_request *request)
|
|
{
|
|
if (query_regdb_file(request->alpha2) == 0)
|
|
return true;
|
|
|
|
if (call_crda(request->alpha2) == 0)
|
|
return true;
|
|
|
|
return false;
|
|
}
|
|
|
|
bool reg_is_valid_request(const char *alpha2)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (!lr || lr->processed)
|
|
return false;
|
|
|
|
return alpha2_equal(lr->alpha2, alpha2);
|
|
}
|
|
|
|
static const struct ieee80211_regdomain *reg_get_regdomain(struct wiphy *wiphy)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
/*
|
|
* Follow the driver's regulatory domain, if present, unless a country
|
|
* IE has been processed or a user wants to help complaince further
|
|
*/
|
|
if (lr->initiator != NL80211_REGDOM_SET_BY_COUNTRY_IE &&
|
|
lr->initiator != NL80211_REGDOM_SET_BY_USER &&
|
|
wiphy->regd)
|
|
return get_wiphy_regdom(wiphy);
|
|
|
|
return get_cfg80211_regdom();
|
|
}
|
|
|
|
static unsigned int
|
|
reg_get_max_bandwidth_from_range(const struct ieee80211_regdomain *rd,
|
|
const struct ieee80211_reg_rule *rule)
|
|
{
|
|
const struct ieee80211_freq_range *freq_range = &rule->freq_range;
|
|
const struct ieee80211_freq_range *freq_range_tmp;
|
|
const struct ieee80211_reg_rule *tmp;
|
|
u32 start_freq, end_freq, idx, no;
|
|
|
|
for (idx = 0; idx < rd->n_reg_rules; idx++)
|
|
if (rule == &rd->reg_rules[idx])
|
|
break;
|
|
|
|
if (idx == rd->n_reg_rules)
|
|
return 0;
|
|
|
|
/* get start_freq */
|
|
no = idx;
|
|
|
|
while (no) {
|
|
tmp = &rd->reg_rules[--no];
|
|
freq_range_tmp = &tmp->freq_range;
|
|
|
|
if (freq_range_tmp->end_freq_khz < freq_range->start_freq_khz)
|
|
break;
|
|
|
|
freq_range = freq_range_tmp;
|
|
}
|
|
|
|
start_freq = freq_range->start_freq_khz;
|
|
|
|
/* get end_freq */
|
|
freq_range = &rule->freq_range;
|
|
no = idx;
|
|
|
|
while (no < rd->n_reg_rules - 1) {
|
|
tmp = &rd->reg_rules[++no];
|
|
freq_range_tmp = &tmp->freq_range;
|
|
|
|
if (freq_range_tmp->start_freq_khz > freq_range->end_freq_khz)
|
|
break;
|
|
|
|
freq_range = freq_range_tmp;
|
|
}
|
|
|
|
end_freq = freq_range->end_freq_khz;
|
|
|
|
return end_freq - start_freq;
|
|
}
|
|
|
|
unsigned int reg_get_max_bandwidth(const struct ieee80211_regdomain *rd,
|
|
const struct ieee80211_reg_rule *rule)
|
|
{
|
|
unsigned int bw = reg_get_max_bandwidth_from_range(rd, rule);
|
|
|
|
if (rule->flags & NL80211_RRF_NO_160MHZ)
|
|
bw = min_t(unsigned int, bw, MHZ_TO_KHZ(80));
|
|
if (rule->flags & NL80211_RRF_NO_80MHZ)
|
|
bw = min_t(unsigned int, bw, MHZ_TO_KHZ(40));
|
|
|
|
/*
|
|
* HT40+/HT40- limits are handled per-channel. Only limit BW if both
|
|
* are not allowed.
|
|
*/
|
|
if (rule->flags & NL80211_RRF_NO_HT40MINUS &&
|
|
rule->flags & NL80211_RRF_NO_HT40PLUS)
|
|
bw = min_t(unsigned int, bw, MHZ_TO_KHZ(20));
|
|
|
|
return bw;
|
|
}
|
|
|
|
/* Sanity check on a regulatory rule */
|
|
static bool is_valid_reg_rule(const struct ieee80211_reg_rule *rule)
|
|
{
|
|
const struct ieee80211_freq_range *freq_range = &rule->freq_range;
|
|
u32 freq_diff;
|
|
|
|
if (freq_range->start_freq_khz <= 0 || freq_range->end_freq_khz <= 0)
|
|
return false;
|
|
|
|
if (freq_range->start_freq_khz > freq_range->end_freq_khz)
|
|
return false;
|
|
|
|
freq_diff = freq_range->end_freq_khz - freq_range->start_freq_khz;
|
|
|
|
if (freq_range->end_freq_khz <= freq_range->start_freq_khz ||
|
|
freq_range->max_bandwidth_khz > freq_diff)
|
|
return false;
|
|
|
|
return true;
|
|
}
|
|
|
|
static bool is_valid_rd(const struct ieee80211_regdomain *rd)
|
|
{
|
|
const struct ieee80211_reg_rule *reg_rule = NULL;
|
|
unsigned int i;
|
|
|
|
if (!rd->n_reg_rules)
|
|
return false;
|
|
|
|
if (WARN_ON(rd->n_reg_rules > NL80211_MAX_SUPP_REG_RULES))
|
|
return false;
|
|
|
|
for (i = 0; i < rd->n_reg_rules; i++) {
|
|
reg_rule = &rd->reg_rules[i];
|
|
if (!is_valid_reg_rule(reg_rule))
|
|
return false;
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
/**
|
|
* freq_in_rule_band - tells us if a frequency is in a frequency band
|
|
* @freq_range: frequency rule we want to query
|
|
* @freq_khz: frequency we are inquiring about
|
|
*
|
|
* This lets us know if a specific frequency rule is or is not relevant to
|
|
* a specific frequency's band. Bands are device specific and artificial
|
|
* definitions (the "2.4 GHz band", the "5 GHz band" and the "60GHz band"),
|
|
* however it is safe for now to assume that a frequency rule should not be
|
|
* part of a frequency's band if the start freq or end freq are off by more
|
|
* than 2 GHz for the 2.4 and 5 GHz bands, and by more than 20 GHz for the
|
|
* 60 GHz band.
|
|
* This resolution can be lowered and should be considered as we add
|
|
* regulatory rule support for other "bands".
|
|
**/
|
|
static bool freq_in_rule_band(const struct ieee80211_freq_range *freq_range,
|
|
u32 freq_khz)
|
|
{
|
|
#define ONE_GHZ_IN_KHZ 1000000
|
|
/*
|
|
* From 802.11ad: directional multi-gigabit (DMG):
|
|
* Pertaining to operation in a frequency band containing a channel
|
|
* with the Channel starting frequency above 45 GHz.
|
|
*/
|
|
u32 limit = freq_khz > 45 * ONE_GHZ_IN_KHZ ?
|
|
20 * ONE_GHZ_IN_KHZ : 2 * ONE_GHZ_IN_KHZ;
|
|
if (abs(freq_khz - freq_range->start_freq_khz) <= limit)
|
|
return true;
|
|
if (abs(freq_khz - freq_range->end_freq_khz) <= limit)
|
|
return true;
|
|
return false;
|
|
#undef ONE_GHZ_IN_KHZ
|
|
}
|
|
|
|
/*
|
|
* Later on we can perhaps use the more restrictive DFS
|
|
* region but we don't have information for that yet so
|
|
* for now simply disallow conflicts.
|
|
*/
|
|
static enum nl80211_dfs_regions
|
|
reg_intersect_dfs_region(const enum nl80211_dfs_regions dfs_region1,
|
|
const enum nl80211_dfs_regions dfs_region2)
|
|
{
|
|
if (dfs_region1 != dfs_region2)
|
|
return NL80211_DFS_UNSET;
|
|
return dfs_region1;
|
|
}
|
|
|
|
static void reg_wmm_rules_intersect(const struct ieee80211_wmm_ac *wmm_ac1,
|
|
const struct ieee80211_wmm_ac *wmm_ac2,
|
|
struct ieee80211_wmm_ac *intersect)
|
|
{
|
|
intersect->cw_min = max_t(u16, wmm_ac1->cw_min, wmm_ac2->cw_min);
|
|
intersect->cw_max = max_t(u16, wmm_ac1->cw_max, wmm_ac2->cw_max);
|
|
intersect->cot = min_t(u16, wmm_ac1->cot, wmm_ac2->cot);
|
|
intersect->aifsn = max_t(u8, wmm_ac1->aifsn, wmm_ac2->aifsn);
|
|
}
|
|
|
|
/*
|
|
* Helper for regdom_intersect(), this does the real
|
|
* mathematical intersection fun
|
|
*/
|
|
static int reg_rules_intersect(const struct ieee80211_regdomain *rd1,
|
|
const struct ieee80211_regdomain *rd2,
|
|
const struct ieee80211_reg_rule *rule1,
|
|
const struct ieee80211_reg_rule *rule2,
|
|
struct ieee80211_reg_rule *intersected_rule)
|
|
{
|
|
const struct ieee80211_freq_range *freq_range1, *freq_range2;
|
|
struct ieee80211_freq_range *freq_range;
|
|
const struct ieee80211_power_rule *power_rule1, *power_rule2;
|
|
struct ieee80211_power_rule *power_rule;
|
|
const struct ieee80211_wmm_rule *wmm_rule1, *wmm_rule2;
|
|
struct ieee80211_wmm_rule *wmm_rule;
|
|
u32 freq_diff, max_bandwidth1, max_bandwidth2;
|
|
|
|
freq_range1 = &rule1->freq_range;
|
|
freq_range2 = &rule2->freq_range;
|
|
freq_range = &intersected_rule->freq_range;
|
|
|
|
power_rule1 = &rule1->power_rule;
|
|
power_rule2 = &rule2->power_rule;
|
|
power_rule = &intersected_rule->power_rule;
|
|
|
|
wmm_rule1 = &rule1->wmm_rule;
|
|
wmm_rule2 = &rule2->wmm_rule;
|
|
wmm_rule = &intersected_rule->wmm_rule;
|
|
|
|
freq_range->start_freq_khz = max(freq_range1->start_freq_khz,
|
|
freq_range2->start_freq_khz);
|
|
freq_range->end_freq_khz = min(freq_range1->end_freq_khz,
|
|
freq_range2->end_freq_khz);
|
|
|
|
max_bandwidth1 = freq_range1->max_bandwidth_khz;
|
|
max_bandwidth2 = freq_range2->max_bandwidth_khz;
|
|
|
|
if (rule1->flags & NL80211_RRF_AUTO_BW)
|
|
max_bandwidth1 = reg_get_max_bandwidth(rd1, rule1);
|
|
if (rule2->flags & NL80211_RRF_AUTO_BW)
|
|
max_bandwidth2 = reg_get_max_bandwidth(rd2, rule2);
|
|
|
|
freq_range->max_bandwidth_khz = min(max_bandwidth1, max_bandwidth2);
|
|
|
|
intersected_rule->flags = rule1->flags | rule2->flags;
|
|
|
|
/*
|
|
* In case NL80211_RRF_AUTO_BW requested for both rules
|
|
* set AUTO_BW in intersected rule also. Next we will
|
|
* calculate BW correctly in handle_channel function.
|
|
* In other case remove AUTO_BW flag while we calculate
|
|
* maximum bandwidth correctly and auto calculation is
|
|
* not required.
|
|
*/
|
|
if ((rule1->flags & NL80211_RRF_AUTO_BW) &&
|
|
(rule2->flags & NL80211_RRF_AUTO_BW))
|
|
intersected_rule->flags |= NL80211_RRF_AUTO_BW;
|
|
else
|
|
intersected_rule->flags &= ~NL80211_RRF_AUTO_BW;
|
|
|
|
freq_diff = freq_range->end_freq_khz - freq_range->start_freq_khz;
|
|
if (freq_range->max_bandwidth_khz > freq_diff)
|
|
freq_range->max_bandwidth_khz = freq_diff;
|
|
|
|
power_rule->max_eirp = min(power_rule1->max_eirp,
|
|
power_rule2->max_eirp);
|
|
power_rule->max_antenna_gain = min(power_rule1->max_antenna_gain,
|
|
power_rule2->max_antenna_gain);
|
|
|
|
intersected_rule->dfs_cac_ms = max(rule1->dfs_cac_ms,
|
|
rule2->dfs_cac_ms);
|
|
|
|
if (rule1->has_wmm && rule2->has_wmm) {
|
|
u8 ac;
|
|
|
|
for (ac = 0; ac < IEEE80211_NUM_ACS; ac++) {
|
|
reg_wmm_rules_intersect(&wmm_rule1->client[ac],
|
|
&wmm_rule2->client[ac],
|
|
&wmm_rule->client[ac]);
|
|
reg_wmm_rules_intersect(&wmm_rule1->ap[ac],
|
|
&wmm_rule2->ap[ac],
|
|
&wmm_rule->ap[ac]);
|
|
}
|
|
|
|
intersected_rule->has_wmm = true;
|
|
} else if (rule1->has_wmm) {
|
|
*wmm_rule = *wmm_rule1;
|
|
intersected_rule->has_wmm = true;
|
|
} else if (rule2->has_wmm) {
|
|
*wmm_rule = *wmm_rule2;
|
|
intersected_rule->has_wmm = true;
|
|
} else {
|
|
intersected_rule->has_wmm = false;
|
|
}
|
|
|
|
if (!is_valid_reg_rule(intersected_rule))
|
|
return -EINVAL;
|
|
|
|
return 0;
|
|
}
|
|
|
|
/* check whether old rule contains new rule */
|
|
static bool rule_contains(struct ieee80211_reg_rule *r1,
|
|
struct ieee80211_reg_rule *r2)
|
|
{
|
|
/* for simplicity, currently consider only same flags */
|
|
if (r1->flags != r2->flags)
|
|
return false;
|
|
|
|
/* verify r1 is more restrictive */
|
|
if ((r1->power_rule.max_antenna_gain >
|
|
r2->power_rule.max_antenna_gain) ||
|
|
r1->power_rule.max_eirp > r2->power_rule.max_eirp)
|
|
return false;
|
|
|
|
/* make sure r2's range is contained within r1 */
|
|
if (r1->freq_range.start_freq_khz > r2->freq_range.start_freq_khz ||
|
|
r1->freq_range.end_freq_khz < r2->freq_range.end_freq_khz)
|
|
return false;
|
|
|
|
/* and finally verify that r1.max_bw >= r2.max_bw */
|
|
if (r1->freq_range.max_bandwidth_khz <
|
|
r2->freq_range.max_bandwidth_khz)
|
|
return false;
|
|
|
|
return true;
|
|
}
|
|
|
|
/* add or extend current rules. do nothing if rule is already contained */
|
|
static void add_rule(struct ieee80211_reg_rule *rule,
|
|
struct ieee80211_reg_rule *reg_rules, u32 *n_rules)
|
|
{
|
|
struct ieee80211_reg_rule *tmp_rule;
|
|
int i;
|
|
|
|
for (i = 0; i < *n_rules; i++) {
|
|
tmp_rule = ®_rules[i];
|
|
/* rule is already contained - do nothing */
|
|
if (rule_contains(tmp_rule, rule))
|
|
return;
|
|
|
|
/* extend rule if possible */
|
|
if (rule_contains(rule, tmp_rule)) {
|
|
memcpy(tmp_rule, rule, sizeof(*rule));
|
|
return;
|
|
}
|
|
}
|
|
|
|
memcpy(®_rules[*n_rules], rule, sizeof(*rule));
|
|
(*n_rules)++;
|
|
}
|
|
|
|
/**
|
|
* regdom_intersect - do the intersection between two regulatory domains
|
|
* @rd1: first regulatory domain
|
|
* @rd2: second regulatory domain
|
|
*
|
|
* Use this function to get the intersection between two regulatory domains.
|
|
* Once completed we will mark the alpha2 for the rd as intersected, "98",
|
|
* as no one single alpha2 can represent this regulatory domain.
|
|
*
|
|
* Returns a pointer to the regulatory domain structure which will hold the
|
|
* resulting intersection of rules between rd1 and rd2. We will
|
|
* kzalloc() this structure for you.
|
|
*/
|
|
static struct ieee80211_regdomain *
|
|
regdom_intersect(const struct ieee80211_regdomain *rd1,
|
|
const struct ieee80211_regdomain *rd2)
|
|
{
|
|
int r;
|
|
unsigned int x, y;
|
|
unsigned int num_rules = 0;
|
|
const struct ieee80211_reg_rule *rule1, *rule2;
|
|
struct ieee80211_reg_rule intersected_rule;
|
|
struct ieee80211_regdomain *rd;
|
|
|
|
if (!rd1 || !rd2)
|
|
return NULL;
|
|
|
|
/*
|
|
* First we get a count of the rules we'll need, then we actually
|
|
* build them. This is to so we can malloc() and free() a
|
|
* regdomain once. The reason we use reg_rules_intersect() here
|
|
* is it will return -EINVAL if the rule computed makes no sense.
|
|
* All rules that do check out OK are valid.
|
|
*/
|
|
|
|
for (x = 0; x < rd1->n_reg_rules; x++) {
|
|
rule1 = &rd1->reg_rules[x];
|
|
for (y = 0; y < rd2->n_reg_rules; y++) {
|
|
rule2 = &rd2->reg_rules[y];
|
|
if (!reg_rules_intersect(rd1, rd2, rule1, rule2,
|
|
&intersected_rule))
|
|
num_rules++;
|
|
}
|
|
}
|
|
|
|
if (!num_rules)
|
|
return NULL;
|
|
|
|
rd = kzalloc(struct_size(rd, reg_rules, num_rules), GFP_KERNEL);
|
|
if (!rd)
|
|
return NULL;
|
|
|
|
for (x = 0; x < rd1->n_reg_rules; x++) {
|
|
rule1 = &rd1->reg_rules[x];
|
|
for (y = 0; y < rd2->n_reg_rules; y++) {
|
|
rule2 = &rd2->reg_rules[y];
|
|
r = reg_rules_intersect(rd1, rd2, rule1, rule2,
|
|
&intersected_rule);
|
|
/*
|
|
* No need to memset here the intersected rule here as
|
|
* we're not using the stack anymore
|
|
*/
|
|
if (r)
|
|
continue;
|
|
|
|
add_rule(&intersected_rule, rd->reg_rules,
|
|
&rd->n_reg_rules);
|
|
}
|
|
}
|
|
|
|
rd->alpha2[0] = '9';
|
|
rd->alpha2[1] = '8';
|
|
rd->dfs_region = reg_intersect_dfs_region(rd1->dfs_region,
|
|
rd2->dfs_region);
|
|
|
|
return rd;
|
|
}
|
|
|
|
/*
|
|
* XXX: add support for the rest of enum nl80211_reg_rule_flags, we may
|
|
* want to just have the channel structure use these
|
|
*/
|
|
static u32 map_regdom_flags(u32 rd_flags)
|
|
{
|
|
u32 channel_flags = 0;
|
|
if (rd_flags & NL80211_RRF_NO_IR_ALL)
|
|
channel_flags |= IEEE80211_CHAN_NO_IR;
|
|
if (rd_flags & NL80211_RRF_DFS)
|
|
channel_flags |= IEEE80211_CHAN_RADAR;
|
|
if (rd_flags & NL80211_RRF_NO_OFDM)
|
|
channel_flags |= IEEE80211_CHAN_NO_OFDM;
|
|
if (rd_flags & NL80211_RRF_NO_OUTDOOR)
|
|
channel_flags |= IEEE80211_CHAN_INDOOR_ONLY;
|
|
if (rd_flags & NL80211_RRF_IR_CONCURRENT)
|
|
channel_flags |= IEEE80211_CHAN_IR_CONCURRENT;
|
|
if (rd_flags & NL80211_RRF_NO_HT40MINUS)
|
|
channel_flags |= IEEE80211_CHAN_NO_HT40MINUS;
|
|
if (rd_flags & NL80211_RRF_NO_HT40PLUS)
|
|
channel_flags |= IEEE80211_CHAN_NO_HT40PLUS;
|
|
if (rd_flags & NL80211_RRF_NO_80MHZ)
|
|
channel_flags |= IEEE80211_CHAN_NO_80MHZ;
|
|
if (rd_flags & NL80211_RRF_NO_160MHZ)
|
|
channel_flags |= IEEE80211_CHAN_NO_160MHZ;
|
|
return channel_flags;
|
|
}
|
|
|
|
static const struct ieee80211_reg_rule *
|
|
freq_reg_info_regd(u32 center_freq,
|
|
const struct ieee80211_regdomain *regd, u32 bw)
|
|
{
|
|
int i;
|
|
bool band_rule_found = false;
|
|
bool bw_fits = false;
|
|
|
|
if (!regd)
|
|
return ERR_PTR(-EINVAL);
|
|
|
|
for (i = 0; i < regd->n_reg_rules; i++) {
|
|
const struct ieee80211_reg_rule *rr;
|
|
const struct ieee80211_freq_range *fr = NULL;
|
|
|
|
rr = ®d->reg_rules[i];
|
|
fr = &rr->freq_range;
|
|
|
|
/*
|
|
* We only need to know if one frequency rule was
|
|
* was in center_freq's band, that's enough, so lets
|
|
* not overwrite it once found
|
|
*/
|
|
if (!band_rule_found)
|
|
band_rule_found = freq_in_rule_band(fr, center_freq);
|
|
|
|
bw_fits = cfg80211_does_bw_fit_range(fr, center_freq, bw);
|
|
|
|
if (band_rule_found && bw_fits)
|
|
return rr;
|
|
}
|
|
|
|
if (!band_rule_found)
|
|
return ERR_PTR(-ERANGE);
|
|
|
|
return ERR_PTR(-EINVAL);
|
|
}
|
|
|
|
static const struct ieee80211_reg_rule *
|
|
__freq_reg_info(struct wiphy *wiphy, u32 center_freq, u32 min_bw)
|
|
{
|
|
const struct ieee80211_regdomain *regd = reg_get_regdomain(wiphy);
|
|
const struct ieee80211_reg_rule *reg_rule = NULL;
|
|
u32 bw;
|
|
|
|
for (bw = MHZ_TO_KHZ(20); bw >= min_bw; bw = bw / 2) {
|
|
reg_rule = freq_reg_info_regd(center_freq, regd, bw);
|
|
if (!IS_ERR(reg_rule))
|
|
return reg_rule;
|
|
}
|
|
|
|
return reg_rule;
|
|
}
|
|
|
|
const struct ieee80211_reg_rule *freq_reg_info(struct wiphy *wiphy,
|
|
u32 center_freq)
|
|
{
|
|
return __freq_reg_info(wiphy, center_freq, MHZ_TO_KHZ(20));
|
|
}
|
|
EXPORT_SYMBOL(freq_reg_info);
|
|
|
|
const char *reg_initiator_name(enum nl80211_reg_initiator initiator)
|
|
{
|
|
switch (initiator) {
|
|
case NL80211_REGDOM_SET_BY_CORE:
|
|
return "core";
|
|
case NL80211_REGDOM_SET_BY_USER:
|
|
return "user";
|
|
case NL80211_REGDOM_SET_BY_DRIVER:
|
|
return "driver";
|
|
case NL80211_REGDOM_SET_BY_COUNTRY_IE:
|
|
return "country element";
|
|
default:
|
|
WARN_ON(1);
|
|
return "bug";
|
|
}
|
|
}
|
|
EXPORT_SYMBOL(reg_initiator_name);
|
|
|
|
static uint32_t reg_rule_to_chan_bw_flags(const struct ieee80211_regdomain *regd,
|
|
const struct ieee80211_reg_rule *reg_rule,
|
|
const struct ieee80211_channel *chan)
|
|
{
|
|
const struct ieee80211_freq_range *freq_range = NULL;
|
|
u32 max_bandwidth_khz, center_freq_khz, bw_flags = 0;
|
|
|
|
freq_range = ®_rule->freq_range;
|
|
|
|
max_bandwidth_khz = freq_range->max_bandwidth_khz;
|
|
center_freq_khz = ieee80211_channel_to_khz(chan);
|
|
/* Check if auto calculation requested */
|
|
if (reg_rule->flags & NL80211_RRF_AUTO_BW)
|
|
max_bandwidth_khz = reg_get_max_bandwidth(regd, reg_rule);
|
|
|
|
/* If we get a reg_rule we can assume that at least 5Mhz fit */
|
|
if (!cfg80211_does_bw_fit_range(freq_range,
|
|
center_freq_khz,
|
|
MHZ_TO_KHZ(10)))
|
|
bw_flags |= IEEE80211_CHAN_NO_10MHZ;
|
|
if (!cfg80211_does_bw_fit_range(freq_range,
|
|
center_freq_khz,
|
|
MHZ_TO_KHZ(20)))
|
|
bw_flags |= IEEE80211_CHAN_NO_20MHZ;
|
|
|
|
if (max_bandwidth_khz < MHZ_TO_KHZ(10))
|
|
bw_flags |= IEEE80211_CHAN_NO_10MHZ;
|
|
if (max_bandwidth_khz < MHZ_TO_KHZ(20))
|
|
bw_flags |= IEEE80211_CHAN_NO_20MHZ;
|
|
if (max_bandwidth_khz < MHZ_TO_KHZ(40))
|
|
bw_flags |= IEEE80211_CHAN_NO_HT40;
|
|
if (max_bandwidth_khz < MHZ_TO_KHZ(80))
|
|
bw_flags |= IEEE80211_CHAN_NO_80MHZ;
|
|
if (max_bandwidth_khz < MHZ_TO_KHZ(160))
|
|
bw_flags |= IEEE80211_CHAN_NO_160MHZ;
|
|
return bw_flags;
|
|
}
|
|
|
|
/*
|
|
* Note that right now we assume the desired channel bandwidth
|
|
* is always 20 MHz for each individual channel (HT40 uses 20 MHz
|
|
* per channel, the primary and the extension channel).
|
|
*/
|
|
static void handle_channel(struct wiphy *wiphy,
|
|
enum nl80211_reg_initiator initiator,
|
|
struct ieee80211_channel *chan)
|
|
{
|
|
u32 flags, bw_flags = 0;
|
|
const struct ieee80211_reg_rule *reg_rule = NULL;
|
|
const struct ieee80211_power_rule *power_rule = NULL;
|
|
struct wiphy *request_wiphy = NULL;
|
|
struct regulatory_request *lr = get_last_request();
|
|
const struct ieee80211_regdomain *regd;
|
|
|
|
request_wiphy = wiphy_idx_to_wiphy(lr->wiphy_idx);
|
|
|
|
flags = chan->orig_flags;
|
|
|
|
reg_rule = freq_reg_info(wiphy, ieee80211_channel_to_khz(chan));
|
|
if (IS_ERR(reg_rule)) {
|
|
/*
|
|
* We will disable all channels that do not match our
|
|
* received regulatory rule unless the hint is coming
|
|
* from a Country IE and the Country IE had no information
|
|
* about a band. The IEEE 802.11 spec allows for an AP
|
|
* to send only a subset of the regulatory rules allowed,
|
|
* so an AP in the US that only supports 2.4 GHz may only send
|
|
* a country IE with information for the 2.4 GHz band
|
|
* while 5 GHz is still supported.
|
|
*/
|
|
if (initiator == NL80211_REGDOM_SET_BY_COUNTRY_IE &&
|
|
PTR_ERR(reg_rule) == -ERANGE)
|
|
return;
|
|
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_DRIVER &&
|
|
request_wiphy && request_wiphy == wiphy &&
|
|
request_wiphy->regulatory_flags & REGULATORY_STRICT_REG) {
|
|
pr_debug("Disabling freq %d.%03d MHz for good\n",
|
|
chan->center_freq, chan->freq_offset);
|
|
chan->orig_flags |= IEEE80211_CHAN_DISABLED;
|
|
chan->flags = chan->orig_flags;
|
|
} else {
|
|
pr_debug("Disabling freq %d.%03d MHz\n",
|
|
chan->center_freq, chan->freq_offset);
|
|
chan->flags |= IEEE80211_CHAN_DISABLED;
|
|
}
|
|
return;
|
|
}
|
|
|
|
regd = reg_get_regdomain(wiphy);
|
|
|
|
power_rule = ®_rule->power_rule;
|
|
bw_flags = reg_rule_to_chan_bw_flags(regd, reg_rule, chan);
|
|
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_DRIVER &&
|
|
request_wiphy && request_wiphy == wiphy &&
|
|
request_wiphy->regulatory_flags & REGULATORY_STRICT_REG) {
|
|
/*
|
|
* This guarantees the driver's requested regulatory domain
|
|
* will always be used as a base for further regulatory
|
|
* settings
|
|
*/
|
|
chan->flags = chan->orig_flags =
|
|
map_regdom_flags(reg_rule->flags) | bw_flags;
|
|
chan->max_antenna_gain = chan->orig_mag =
|
|
(int) MBI_TO_DBI(power_rule->max_antenna_gain);
|
|
chan->max_reg_power = chan->max_power = chan->orig_mpwr =
|
|
(int) MBM_TO_DBM(power_rule->max_eirp);
|
|
|
|
if (chan->flags & IEEE80211_CHAN_RADAR) {
|
|
chan->dfs_cac_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
|
|
if (reg_rule->dfs_cac_ms)
|
|
chan->dfs_cac_ms = reg_rule->dfs_cac_ms;
|
|
}
|
|
|
|
return;
|
|
}
|
|
|
|
chan->dfs_state = NL80211_DFS_USABLE;
|
|
chan->dfs_state_entered = jiffies;
|
|
|
|
chan->beacon_found = false;
|
|
chan->flags = flags | bw_flags | map_regdom_flags(reg_rule->flags);
|
|
chan->max_antenna_gain =
|
|
min_t(int, chan->orig_mag,
|
|
MBI_TO_DBI(power_rule->max_antenna_gain));
|
|
chan->max_reg_power = (int) MBM_TO_DBM(power_rule->max_eirp);
|
|
|
|
if (chan->flags & IEEE80211_CHAN_RADAR) {
|
|
if (reg_rule->dfs_cac_ms)
|
|
chan->dfs_cac_ms = reg_rule->dfs_cac_ms;
|
|
else
|
|
chan->dfs_cac_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
|
|
}
|
|
|
|
if (chan->orig_mpwr) {
|
|
/*
|
|
* Devices that use REGULATORY_COUNTRY_IE_FOLLOW_POWER
|
|
* will always follow the passed country IE power settings.
|
|
*/
|
|
if (initiator == NL80211_REGDOM_SET_BY_COUNTRY_IE &&
|
|
wiphy->regulatory_flags & REGULATORY_COUNTRY_IE_FOLLOW_POWER)
|
|
chan->max_power = chan->max_reg_power;
|
|
else
|
|
chan->max_power = min(chan->orig_mpwr,
|
|
chan->max_reg_power);
|
|
} else
|
|
chan->max_power = chan->max_reg_power;
|
|
}
|
|
|
|
static void handle_band(struct wiphy *wiphy,
|
|
enum nl80211_reg_initiator initiator,
|
|
struct ieee80211_supported_band *sband)
|
|
{
|
|
unsigned int i;
|
|
|
|
if (!sband)
|
|
return;
|
|
|
|
for (i = 0; i < sband->n_channels; i++)
|
|
handle_channel(wiphy, initiator, &sband->channels[i]);
|
|
}
|
|
|
|
static bool reg_request_cell_base(struct regulatory_request *request)
|
|
{
|
|
if (request->initiator != NL80211_REGDOM_SET_BY_USER)
|
|
return false;
|
|
return request->user_reg_hint_type == NL80211_USER_REG_HINT_CELL_BASE;
|
|
}
|
|
|
|
bool reg_last_request_cell_base(void)
|
|
{
|
|
return reg_request_cell_base(get_last_request());
|
|
}
|
|
|
|
#ifdef CONFIG_CFG80211_REG_CELLULAR_HINTS
|
|
/* Core specific check */
|
|
static enum reg_request_treatment
|
|
reg_ignore_cell_hint(struct regulatory_request *pending_request)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (!reg_num_devs_support_basehint)
|
|
return REG_REQ_IGNORE;
|
|
|
|
if (reg_request_cell_base(lr) &&
|
|
!regdom_changes(pending_request->alpha2))
|
|
return REG_REQ_ALREADY_SET;
|
|
|
|
return REG_REQ_OK;
|
|
}
|
|
|
|
/* Device specific check */
|
|
static bool reg_dev_ignore_cell_hint(struct wiphy *wiphy)
|
|
{
|
|
return !(wiphy->features & NL80211_FEATURE_CELL_BASE_REG_HINTS);
|
|
}
|
|
#else
|
|
static enum reg_request_treatment
|
|
reg_ignore_cell_hint(struct regulatory_request *pending_request)
|
|
{
|
|
return REG_REQ_IGNORE;
|
|
}
|
|
|
|
static bool reg_dev_ignore_cell_hint(struct wiphy *wiphy)
|
|
{
|
|
return true;
|
|
}
|
|
#endif
|
|
|
|
static bool wiphy_strict_alpha2_regd(struct wiphy *wiphy)
|
|
{
|
|
if (wiphy->regulatory_flags & REGULATORY_STRICT_REG &&
|
|
!(wiphy->regulatory_flags & REGULATORY_CUSTOM_REG))
|
|
return true;
|
|
return false;
|
|
}
|
|
|
|
static bool ignore_reg_update(struct wiphy *wiphy,
|
|
enum nl80211_reg_initiator initiator)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED)
|
|
return true;
|
|
|
|
if (!lr) {
|
|
pr_debug("Ignoring regulatory request set by %s since last_request is not set\n",
|
|
reg_initiator_name(initiator));
|
|
return true;
|
|
}
|
|
|
|
if (initiator == NL80211_REGDOM_SET_BY_CORE &&
|
|
wiphy->regulatory_flags & REGULATORY_CUSTOM_REG) {
|
|
pr_debug("Ignoring regulatory request set by %s since the driver uses its own custom regulatory domain\n",
|
|
reg_initiator_name(initiator));
|
|
return true;
|
|
}
|
|
|
|
/*
|
|
* wiphy->regd will be set once the device has its own
|
|
* desired regulatory domain set
|
|
*/
|
|
if (wiphy_strict_alpha2_regd(wiphy) && !wiphy->regd &&
|
|
initiator != NL80211_REGDOM_SET_BY_COUNTRY_IE &&
|
|
!is_world_regdom(lr->alpha2)) {
|
|
pr_debug("Ignoring regulatory request set by %s since the driver requires its own regulatory domain to be set first\n",
|
|
reg_initiator_name(initiator));
|
|
return true;
|
|
}
|
|
|
|
if (reg_request_cell_base(lr))
|
|
return reg_dev_ignore_cell_hint(wiphy);
|
|
|
|
return false;
|
|
}
|
|
|
|
static bool reg_is_world_roaming(struct wiphy *wiphy)
|
|
{
|
|
const struct ieee80211_regdomain *cr = get_cfg80211_regdom();
|
|
const struct ieee80211_regdomain *wr = get_wiphy_regdom(wiphy);
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (is_world_regdom(cr->alpha2) || (wr && is_world_regdom(wr->alpha2)))
|
|
return true;
|
|
|
|
if (lr && lr->initiator != NL80211_REGDOM_SET_BY_COUNTRY_IE &&
|
|
wiphy->regulatory_flags & REGULATORY_CUSTOM_REG)
|
|
return true;
|
|
|
|
return false;
|
|
}
|
|
|
|
static void handle_reg_beacon(struct wiphy *wiphy, unsigned int chan_idx,
|
|
struct reg_beacon *reg_beacon)
|
|
{
|
|
struct ieee80211_supported_band *sband;
|
|
struct ieee80211_channel *chan;
|
|
bool channel_changed = false;
|
|
struct ieee80211_channel chan_before;
|
|
|
|
sband = wiphy->bands[reg_beacon->chan.band];
|
|
chan = &sband->channels[chan_idx];
|
|
|
|
if (likely(!ieee80211_channel_equal(chan, ®_beacon->chan)))
|
|
return;
|
|
|
|
if (chan->beacon_found)
|
|
return;
|
|
|
|
chan->beacon_found = true;
|
|
|
|
if (!reg_is_world_roaming(wiphy))
|
|
return;
|
|
|
|
if (wiphy->regulatory_flags & REGULATORY_DISABLE_BEACON_HINTS)
|
|
return;
|
|
|
|
chan_before = *chan;
|
|
|
|
if (chan->flags & IEEE80211_CHAN_NO_IR) {
|
|
chan->flags &= ~IEEE80211_CHAN_NO_IR;
|
|
channel_changed = true;
|
|
}
|
|
|
|
if (channel_changed)
|
|
nl80211_send_beacon_hint_event(wiphy, &chan_before, chan);
|
|
}
|
|
|
|
/*
|
|
* Called when a scan on a wiphy finds a beacon on
|
|
* new channel
|
|
*/
|
|
static void wiphy_update_new_beacon(struct wiphy *wiphy,
|
|
struct reg_beacon *reg_beacon)
|
|
{
|
|
unsigned int i;
|
|
struct ieee80211_supported_band *sband;
|
|
|
|
if (!wiphy->bands[reg_beacon->chan.band])
|
|
return;
|
|
|
|
sband = wiphy->bands[reg_beacon->chan.band];
|
|
|
|
for (i = 0; i < sband->n_channels; i++)
|
|
handle_reg_beacon(wiphy, i, reg_beacon);
|
|
}
|
|
|
|
/*
|
|
* Called upon reg changes or a new wiphy is added
|
|
*/
|
|
static void wiphy_update_beacon_reg(struct wiphy *wiphy)
|
|
{
|
|
unsigned int i;
|
|
struct ieee80211_supported_band *sband;
|
|
struct reg_beacon *reg_beacon;
|
|
|
|
list_for_each_entry(reg_beacon, ®_beacon_list, list) {
|
|
if (!wiphy->bands[reg_beacon->chan.band])
|
|
continue;
|
|
sband = wiphy->bands[reg_beacon->chan.band];
|
|
for (i = 0; i < sband->n_channels; i++)
|
|
handle_reg_beacon(wiphy, i, reg_beacon);
|
|
}
|
|
}
|
|
|
|
/* Reap the advantages of previously found beacons */
|
|
static void reg_process_beacons(struct wiphy *wiphy)
|
|
{
|
|
/*
|
|
* Means we are just firing up cfg80211, so no beacons would
|
|
* have been processed yet.
|
|
*/
|
|
if (!last_request)
|
|
return;
|
|
wiphy_update_beacon_reg(wiphy);
|
|
}
|
|
|
|
static bool is_ht40_allowed(struct ieee80211_channel *chan)
|
|
{
|
|
if (!chan)
|
|
return false;
|
|
if (chan->flags & IEEE80211_CHAN_DISABLED)
|
|
return false;
|
|
/* This would happen when regulatory rules disallow HT40 completely */
|
|
if ((chan->flags & IEEE80211_CHAN_NO_HT40) == IEEE80211_CHAN_NO_HT40)
|
|
return false;
|
|
return true;
|
|
}
|
|
|
|
static void reg_process_ht_flags_channel(struct wiphy *wiphy,
|
|
struct ieee80211_channel *channel)
|
|
{
|
|
struct ieee80211_supported_band *sband = wiphy->bands[channel->band];
|
|
struct ieee80211_channel *channel_before = NULL, *channel_after = NULL;
|
|
const struct ieee80211_regdomain *regd;
|
|
unsigned int i;
|
|
u32 flags;
|
|
|
|
if (!is_ht40_allowed(channel)) {
|
|
channel->flags |= IEEE80211_CHAN_NO_HT40;
|
|
return;
|
|
}
|
|
|
|
/*
|
|
* We need to ensure the extension channels exist to
|
|
* be able to use HT40- or HT40+, this finds them (or not)
|
|
*/
|
|
for (i = 0; i < sband->n_channels; i++) {
|
|
struct ieee80211_channel *c = &sband->channels[i];
|
|
|
|
if (c->center_freq == (channel->center_freq - 20))
|
|
channel_before = c;
|
|
if (c->center_freq == (channel->center_freq + 20))
|
|
channel_after = c;
|
|
}
|
|
|
|
flags = 0;
|
|
regd = get_wiphy_regdom(wiphy);
|
|
if (regd) {
|
|
const struct ieee80211_reg_rule *reg_rule =
|
|
freq_reg_info_regd(MHZ_TO_KHZ(channel->center_freq),
|
|
regd, MHZ_TO_KHZ(20));
|
|
|
|
if (!IS_ERR(reg_rule))
|
|
flags = reg_rule->flags;
|
|
}
|
|
|
|
/*
|
|
* Please note that this assumes target bandwidth is 20 MHz,
|
|
* if that ever changes we also need to change the below logic
|
|
* to include that as well.
|
|
*/
|
|
if (!is_ht40_allowed(channel_before) ||
|
|
flags & NL80211_RRF_NO_HT40MINUS)
|
|
channel->flags |= IEEE80211_CHAN_NO_HT40MINUS;
|
|
else
|
|
channel->flags &= ~IEEE80211_CHAN_NO_HT40MINUS;
|
|
|
|
if (!is_ht40_allowed(channel_after) ||
|
|
flags & NL80211_RRF_NO_HT40PLUS)
|
|
channel->flags |= IEEE80211_CHAN_NO_HT40PLUS;
|
|
else
|
|
channel->flags &= ~IEEE80211_CHAN_NO_HT40PLUS;
|
|
}
|
|
|
|
static void reg_process_ht_flags_band(struct wiphy *wiphy,
|
|
struct ieee80211_supported_band *sband)
|
|
{
|
|
unsigned int i;
|
|
|
|
if (!sband)
|
|
return;
|
|
|
|
for (i = 0; i < sband->n_channels; i++)
|
|
reg_process_ht_flags_channel(wiphy, &sband->channels[i]);
|
|
}
|
|
|
|
static void reg_process_ht_flags(struct wiphy *wiphy)
|
|
{
|
|
enum nl80211_band band;
|
|
|
|
if (!wiphy)
|
|
return;
|
|
|
|
for (band = 0; band < NUM_NL80211_BANDS; band++)
|
|
reg_process_ht_flags_band(wiphy, wiphy->bands[band]);
|
|
}
|
|
|
|
static void reg_call_notifier(struct wiphy *wiphy,
|
|
struct regulatory_request *request)
|
|
{
|
|
if (wiphy->reg_notifier)
|
|
wiphy->reg_notifier(wiphy, request);
|
|
}
|
|
|
|
static bool reg_wdev_chan_valid(struct wiphy *wiphy, struct wireless_dev *wdev)
|
|
{
|
|
struct cfg80211_chan_def chandef = {};
|
|
struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
|
|
enum nl80211_iftype iftype;
|
|
|
|
wdev_lock(wdev);
|
|
iftype = wdev->iftype;
|
|
|
|
/* make sure the interface is active */
|
|
if (!wdev->netdev || !netif_running(wdev->netdev))
|
|
goto wdev_inactive_unlock;
|
|
|
|
switch (iftype) {
|
|
case NL80211_IFTYPE_AP:
|
|
case NL80211_IFTYPE_P2P_GO:
|
|
if (!wdev->beacon_interval)
|
|
goto wdev_inactive_unlock;
|
|
chandef = wdev->chandef;
|
|
break;
|
|
case NL80211_IFTYPE_ADHOC:
|
|
if (!wdev->ssid_len)
|
|
goto wdev_inactive_unlock;
|
|
chandef = wdev->chandef;
|
|
break;
|
|
case NL80211_IFTYPE_STATION:
|
|
case NL80211_IFTYPE_P2P_CLIENT:
|
|
if (!wdev->current_bss ||
|
|
!wdev->current_bss->pub.channel)
|
|
goto wdev_inactive_unlock;
|
|
|
|
if (!rdev->ops->get_channel ||
|
|
rdev_get_channel(rdev, wdev, &chandef))
|
|
cfg80211_chandef_create(&chandef,
|
|
wdev->current_bss->pub.channel,
|
|
NL80211_CHAN_NO_HT);
|
|
break;
|
|
case NL80211_IFTYPE_MONITOR:
|
|
case NL80211_IFTYPE_AP_VLAN:
|
|
case NL80211_IFTYPE_P2P_DEVICE:
|
|
/* no enforcement required */
|
|
break;
|
|
default:
|
|
/* others not implemented for now */
|
|
WARN_ON(1);
|
|
break;
|
|
}
|
|
|
|
wdev_unlock(wdev);
|
|
|
|
switch (iftype) {
|
|
case NL80211_IFTYPE_AP:
|
|
case NL80211_IFTYPE_P2P_GO:
|
|
case NL80211_IFTYPE_ADHOC:
|
|
return cfg80211_reg_can_beacon_relax(wiphy, &chandef, iftype);
|
|
case NL80211_IFTYPE_STATION:
|
|
case NL80211_IFTYPE_P2P_CLIENT:
|
|
return cfg80211_chandef_usable(wiphy, &chandef,
|
|
IEEE80211_CHAN_DISABLED);
|
|
default:
|
|
break;
|
|
}
|
|
|
|
return true;
|
|
|
|
wdev_inactive_unlock:
|
|
wdev_unlock(wdev);
|
|
return true;
|
|
}
|
|
|
|
static void reg_leave_invalid_chans(struct wiphy *wiphy)
|
|
{
|
|
struct wireless_dev *wdev;
|
|
struct cfg80211_registered_device *rdev = wiphy_to_rdev(wiphy);
|
|
|
|
ASSERT_RTNL();
|
|
|
|
list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list)
|
|
if (!reg_wdev_chan_valid(wiphy, wdev))
|
|
cfg80211_leave(rdev, wdev);
|
|
}
|
|
|
|
static void reg_check_chans_work(struct work_struct *work)
|
|
{
|
|
struct cfg80211_registered_device *rdev;
|
|
|
|
pr_debug("Verifying active interfaces after reg change\n");
|
|
rtnl_lock();
|
|
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list)
|
|
if (!(rdev->wiphy.regulatory_flags &
|
|
REGULATORY_IGNORE_STALE_KICKOFF))
|
|
reg_leave_invalid_chans(&rdev->wiphy);
|
|
|
|
rtnl_unlock();
|
|
}
|
|
|
|
static void reg_check_channels(void)
|
|
{
|
|
/*
|
|
* Give usermode a chance to do something nicer (move to another
|
|
* channel, orderly disconnection), before forcing a disconnection.
|
|
*/
|
|
mod_delayed_work(system_power_efficient_wq,
|
|
®_check_chans,
|
|
msecs_to_jiffies(REG_ENFORCE_GRACE_MS));
|
|
}
|
|
|
|
static void wiphy_update_regulatory(struct wiphy *wiphy,
|
|
enum nl80211_reg_initiator initiator)
|
|
{
|
|
enum nl80211_band band;
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (ignore_reg_update(wiphy, initiator)) {
|
|
/*
|
|
* Regulatory updates set by CORE are ignored for custom
|
|
* regulatory cards. Let us notify the changes to the driver,
|
|
* as some drivers used this to restore its orig_* reg domain.
|
|
*/
|
|
if (initiator == NL80211_REGDOM_SET_BY_CORE &&
|
|
wiphy->regulatory_flags & REGULATORY_CUSTOM_REG &&
|
|
!(wiphy->regulatory_flags &
|
|
REGULATORY_WIPHY_SELF_MANAGED))
|
|
reg_call_notifier(wiphy, lr);
|
|
return;
|
|
}
|
|
|
|
lr->dfs_region = get_cfg80211_regdom()->dfs_region;
|
|
|
|
for (band = 0; band < NUM_NL80211_BANDS; band++)
|
|
handle_band(wiphy, initiator, wiphy->bands[band]);
|
|
|
|
reg_process_beacons(wiphy);
|
|
reg_process_ht_flags(wiphy);
|
|
reg_call_notifier(wiphy, lr);
|
|
}
|
|
|
|
static void update_all_wiphy_regulatory(enum nl80211_reg_initiator initiator)
|
|
{
|
|
struct cfg80211_registered_device *rdev;
|
|
struct wiphy *wiphy;
|
|
|
|
ASSERT_RTNL();
|
|
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
|
|
wiphy = &rdev->wiphy;
|
|
wiphy_update_regulatory(wiphy, initiator);
|
|
}
|
|
|
|
reg_check_channels();
|
|
}
|
|
|
|
static void handle_channel_custom(struct wiphy *wiphy,
|
|
struct ieee80211_channel *chan,
|
|
const struct ieee80211_regdomain *regd,
|
|
u32 min_bw)
|
|
{
|
|
u32 bw_flags = 0;
|
|
const struct ieee80211_reg_rule *reg_rule = NULL;
|
|
const struct ieee80211_power_rule *power_rule = NULL;
|
|
u32 bw, center_freq_khz;
|
|
|
|
center_freq_khz = ieee80211_channel_to_khz(chan);
|
|
for (bw = MHZ_TO_KHZ(20); bw >= min_bw; bw = bw / 2) {
|
|
reg_rule = freq_reg_info_regd(center_freq_khz, regd, bw);
|
|
if (!IS_ERR(reg_rule))
|
|
break;
|
|
}
|
|
|
|
if (IS_ERR_OR_NULL(reg_rule)) {
|
|
pr_debug("Disabling freq %d.%03d MHz as custom regd has no rule that fits it\n",
|
|
chan->center_freq, chan->freq_offset);
|
|
if (wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED) {
|
|
chan->flags |= IEEE80211_CHAN_DISABLED;
|
|
} else {
|
|
chan->orig_flags |= IEEE80211_CHAN_DISABLED;
|
|
chan->flags = chan->orig_flags;
|
|
}
|
|
return;
|
|
}
|
|
|
|
power_rule = ®_rule->power_rule;
|
|
bw_flags = reg_rule_to_chan_bw_flags(regd, reg_rule, chan);
|
|
|
|
chan->dfs_state_entered = jiffies;
|
|
chan->dfs_state = NL80211_DFS_USABLE;
|
|
|
|
chan->beacon_found = false;
|
|
|
|
if (wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED)
|
|
chan->flags = chan->orig_flags | bw_flags |
|
|
map_regdom_flags(reg_rule->flags);
|
|
else
|
|
chan->flags |= map_regdom_flags(reg_rule->flags) | bw_flags;
|
|
|
|
chan->max_antenna_gain = (int) MBI_TO_DBI(power_rule->max_antenna_gain);
|
|
chan->max_reg_power = chan->max_power =
|
|
(int) MBM_TO_DBM(power_rule->max_eirp);
|
|
|
|
if (chan->flags & IEEE80211_CHAN_RADAR) {
|
|
if (reg_rule->dfs_cac_ms)
|
|
chan->dfs_cac_ms = reg_rule->dfs_cac_ms;
|
|
else
|
|
chan->dfs_cac_ms = IEEE80211_DFS_MIN_CAC_TIME_MS;
|
|
}
|
|
|
|
chan->max_power = chan->max_reg_power;
|
|
}
|
|
|
|
static void handle_band_custom(struct wiphy *wiphy,
|
|
struct ieee80211_supported_band *sband,
|
|
const struct ieee80211_regdomain *regd)
|
|
{
|
|
unsigned int i;
|
|
|
|
if (!sband)
|
|
return;
|
|
|
|
/*
|
|
* We currently assume that you always want at least 20 MHz,
|
|
* otherwise channel 12 might get enabled if this rule is
|
|
* compatible to US, which permits 2402 - 2472 MHz.
|
|
*/
|
|
for (i = 0; i < sband->n_channels; i++)
|
|
handle_channel_custom(wiphy, &sband->channels[i], regd,
|
|
MHZ_TO_KHZ(20));
|
|
}
|
|
|
|
/* Used by drivers prior to wiphy registration */
|
|
void wiphy_apply_custom_regulatory(struct wiphy *wiphy,
|
|
const struct ieee80211_regdomain *regd)
|
|
{
|
|
enum nl80211_band band;
|
|
unsigned int bands_set = 0;
|
|
|
|
WARN(!(wiphy->regulatory_flags & REGULATORY_CUSTOM_REG),
|
|
"wiphy should have REGULATORY_CUSTOM_REG\n");
|
|
wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG;
|
|
|
|
for (band = 0; band < NUM_NL80211_BANDS; band++) {
|
|
if (!wiphy->bands[band])
|
|
continue;
|
|
handle_band_custom(wiphy, wiphy->bands[band], regd);
|
|
bands_set++;
|
|
}
|
|
|
|
/*
|
|
* no point in calling this if it won't have any effect
|
|
* on your device's supported bands.
|
|
*/
|
|
WARN_ON(!bands_set);
|
|
}
|
|
EXPORT_SYMBOL(wiphy_apply_custom_regulatory);
|
|
|
|
static void reg_set_request_processed(void)
|
|
{
|
|
bool need_more_processing = false;
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
lr->processed = true;
|
|
|
|
spin_lock(®_requests_lock);
|
|
if (!list_empty(®_requests_list))
|
|
need_more_processing = true;
|
|
spin_unlock(®_requests_lock);
|
|
|
|
cancel_crda_timeout();
|
|
|
|
if (need_more_processing)
|
|
schedule_work(®_work);
|
|
}
|
|
|
|
/**
|
|
* reg_process_hint_core - process core regulatory requests
|
|
* @pending_request: a pending core regulatory request
|
|
*
|
|
* The wireless subsystem can use this function to process
|
|
* a regulatory request issued by the regulatory core.
|
|
*/
|
|
static enum reg_request_treatment
|
|
reg_process_hint_core(struct regulatory_request *core_request)
|
|
{
|
|
if (reg_query_database(core_request)) {
|
|
core_request->intersect = false;
|
|
core_request->processed = false;
|
|
reg_update_last_request(core_request);
|
|
return REG_REQ_OK;
|
|
}
|
|
|
|
return REG_REQ_IGNORE;
|
|
}
|
|
|
|
static enum reg_request_treatment
|
|
__reg_process_hint_user(struct regulatory_request *user_request)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (reg_request_cell_base(user_request))
|
|
return reg_ignore_cell_hint(user_request);
|
|
|
|
if (reg_request_cell_base(lr))
|
|
return REG_REQ_IGNORE;
|
|
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_COUNTRY_IE)
|
|
return REG_REQ_INTERSECT;
|
|
/*
|
|
* If the user knows better the user should set the regdom
|
|
* to their country before the IE is picked up
|
|
*/
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_USER &&
|
|
lr->intersect)
|
|
return REG_REQ_IGNORE;
|
|
/*
|
|
* Process user requests only after previous user/driver/core
|
|
* requests have been processed
|
|
*/
|
|
if ((lr->initiator == NL80211_REGDOM_SET_BY_CORE ||
|
|
lr->initiator == NL80211_REGDOM_SET_BY_DRIVER ||
|
|
lr->initiator == NL80211_REGDOM_SET_BY_USER) &&
|
|
regdom_changes(lr->alpha2))
|
|
return REG_REQ_IGNORE;
|
|
|
|
if (!regdom_changes(user_request->alpha2))
|
|
return REG_REQ_ALREADY_SET;
|
|
|
|
return REG_REQ_OK;
|
|
}
|
|
|
|
/**
|
|
* reg_process_hint_user - process user regulatory requests
|
|
* @user_request: a pending user regulatory request
|
|
*
|
|
* The wireless subsystem can use this function to process
|
|
* a regulatory request initiated by userspace.
|
|
*/
|
|
static enum reg_request_treatment
|
|
reg_process_hint_user(struct regulatory_request *user_request)
|
|
{
|
|
enum reg_request_treatment treatment;
|
|
|
|
treatment = __reg_process_hint_user(user_request);
|
|
if (treatment == REG_REQ_IGNORE ||
|
|
treatment == REG_REQ_ALREADY_SET)
|
|
return REG_REQ_IGNORE;
|
|
|
|
user_request->intersect = treatment == REG_REQ_INTERSECT;
|
|
user_request->processed = false;
|
|
|
|
if (reg_query_database(user_request)) {
|
|
reg_update_last_request(user_request);
|
|
user_alpha2[0] = user_request->alpha2[0];
|
|
user_alpha2[1] = user_request->alpha2[1];
|
|
return REG_REQ_OK;
|
|
}
|
|
|
|
return REG_REQ_IGNORE;
|
|
}
|
|
|
|
static enum reg_request_treatment
|
|
__reg_process_hint_driver(struct regulatory_request *driver_request)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_CORE) {
|
|
if (regdom_changes(driver_request->alpha2))
|
|
return REG_REQ_OK;
|
|
return REG_REQ_ALREADY_SET;
|
|
}
|
|
|
|
/*
|
|
* This would happen if you unplug and plug your card
|
|
* back in or if you add a new device for which the previously
|
|
* loaded card also agrees on the regulatory domain.
|
|
*/
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_DRIVER &&
|
|
!regdom_changes(driver_request->alpha2))
|
|
return REG_REQ_ALREADY_SET;
|
|
|
|
return REG_REQ_INTERSECT;
|
|
}
|
|
|
|
/**
|
|
* reg_process_hint_driver - process driver regulatory requests
|
|
* @driver_request: a pending driver regulatory request
|
|
*
|
|
* The wireless subsystem can use this function to process
|
|
* a regulatory request issued by an 802.11 driver.
|
|
*
|
|
* Returns one of the different reg request treatment values.
|
|
*/
|
|
static enum reg_request_treatment
|
|
reg_process_hint_driver(struct wiphy *wiphy,
|
|
struct regulatory_request *driver_request)
|
|
{
|
|
const struct ieee80211_regdomain *regd, *tmp;
|
|
enum reg_request_treatment treatment;
|
|
|
|
treatment = __reg_process_hint_driver(driver_request);
|
|
|
|
switch (treatment) {
|
|
case REG_REQ_OK:
|
|
break;
|
|
case REG_REQ_IGNORE:
|
|
return REG_REQ_IGNORE;
|
|
case REG_REQ_INTERSECT:
|
|
case REG_REQ_ALREADY_SET:
|
|
regd = reg_copy_regd(get_cfg80211_regdom());
|
|
if (IS_ERR(regd))
|
|
return REG_REQ_IGNORE;
|
|
|
|
tmp = get_wiphy_regdom(wiphy);
|
|
rcu_assign_pointer(wiphy->regd, regd);
|
|
rcu_free_regdom(tmp);
|
|
}
|
|
|
|
|
|
driver_request->intersect = treatment == REG_REQ_INTERSECT;
|
|
driver_request->processed = false;
|
|
|
|
/*
|
|
* Since CRDA will not be called in this case as we already
|
|
* have applied the requested regulatory domain before we just
|
|
* inform userspace we have processed the request
|
|
*/
|
|
if (treatment == REG_REQ_ALREADY_SET) {
|
|
nl80211_send_reg_change_event(driver_request);
|
|
reg_update_last_request(driver_request);
|
|
reg_set_request_processed();
|
|
return REG_REQ_ALREADY_SET;
|
|
}
|
|
|
|
if (reg_query_database(driver_request)) {
|
|
reg_update_last_request(driver_request);
|
|
return REG_REQ_OK;
|
|
}
|
|
|
|
return REG_REQ_IGNORE;
|
|
}
|
|
|
|
static enum reg_request_treatment
|
|
__reg_process_hint_country_ie(struct wiphy *wiphy,
|
|
struct regulatory_request *country_ie_request)
|
|
{
|
|
struct wiphy *last_wiphy = NULL;
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (reg_request_cell_base(lr)) {
|
|
/* Trust a Cell base station over the AP's country IE */
|
|
if (regdom_changes(country_ie_request->alpha2))
|
|
return REG_REQ_IGNORE;
|
|
return REG_REQ_ALREADY_SET;
|
|
} else {
|
|
if (wiphy->regulatory_flags & REGULATORY_COUNTRY_IE_IGNORE)
|
|
return REG_REQ_IGNORE;
|
|
}
|
|
|
|
if (unlikely(!is_an_alpha2(country_ie_request->alpha2)))
|
|
return -EINVAL;
|
|
|
|
if (lr->initiator != NL80211_REGDOM_SET_BY_COUNTRY_IE)
|
|
return REG_REQ_OK;
|
|
|
|
last_wiphy = wiphy_idx_to_wiphy(lr->wiphy_idx);
|
|
|
|
if (last_wiphy != wiphy) {
|
|
/*
|
|
* Two cards with two APs claiming different
|
|
* Country IE alpha2s. We could
|
|
* intersect them, but that seems unlikely
|
|
* to be correct. Reject second one for now.
|
|
*/
|
|
if (regdom_changes(country_ie_request->alpha2))
|
|
return REG_REQ_IGNORE;
|
|
return REG_REQ_ALREADY_SET;
|
|
}
|
|
|
|
if (regdom_changes(country_ie_request->alpha2))
|
|
return REG_REQ_OK;
|
|
return REG_REQ_ALREADY_SET;
|
|
}
|
|
|
|
/**
|
|
* reg_process_hint_country_ie - process regulatory requests from country IEs
|
|
* @country_ie_request: a regulatory request from a country IE
|
|
*
|
|
* The wireless subsystem can use this function to process
|
|
* a regulatory request issued by a country Information Element.
|
|
*
|
|
* Returns one of the different reg request treatment values.
|
|
*/
|
|
static enum reg_request_treatment
|
|
reg_process_hint_country_ie(struct wiphy *wiphy,
|
|
struct regulatory_request *country_ie_request)
|
|
{
|
|
enum reg_request_treatment treatment;
|
|
|
|
treatment = __reg_process_hint_country_ie(wiphy, country_ie_request);
|
|
|
|
switch (treatment) {
|
|
case REG_REQ_OK:
|
|
break;
|
|
case REG_REQ_IGNORE:
|
|
return REG_REQ_IGNORE;
|
|
case REG_REQ_ALREADY_SET:
|
|
reg_free_request(country_ie_request);
|
|
return REG_REQ_ALREADY_SET;
|
|
case REG_REQ_INTERSECT:
|
|
/*
|
|
* This doesn't happen yet, not sure we
|
|
* ever want to support it for this case.
|
|
*/
|
|
WARN_ONCE(1, "Unexpected intersection for country elements");
|
|
return REG_REQ_IGNORE;
|
|
}
|
|
|
|
country_ie_request->intersect = false;
|
|
country_ie_request->processed = false;
|
|
|
|
if (reg_query_database(country_ie_request)) {
|
|
reg_update_last_request(country_ie_request);
|
|
return REG_REQ_OK;
|
|
}
|
|
|
|
return REG_REQ_IGNORE;
|
|
}
|
|
|
|
bool reg_dfs_domain_same(struct wiphy *wiphy1, struct wiphy *wiphy2)
|
|
{
|
|
const struct ieee80211_regdomain *wiphy1_regd = NULL;
|
|
const struct ieee80211_regdomain *wiphy2_regd = NULL;
|
|
const struct ieee80211_regdomain *cfg80211_regd = NULL;
|
|
bool dfs_domain_same;
|
|
|
|
rcu_read_lock();
|
|
|
|
cfg80211_regd = rcu_dereference(cfg80211_regdomain);
|
|
wiphy1_regd = rcu_dereference(wiphy1->regd);
|
|
if (!wiphy1_regd)
|
|
wiphy1_regd = cfg80211_regd;
|
|
|
|
wiphy2_regd = rcu_dereference(wiphy2->regd);
|
|
if (!wiphy2_regd)
|
|
wiphy2_regd = cfg80211_regd;
|
|
|
|
dfs_domain_same = wiphy1_regd->dfs_region == wiphy2_regd->dfs_region;
|
|
|
|
rcu_read_unlock();
|
|
|
|
return dfs_domain_same;
|
|
}
|
|
|
|
static void reg_copy_dfs_chan_state(struct ieee80211_channel *dst_chan,
|
|
struct ieee80211_channel *src_chan)
|
|
{
|
|
if (!(dst_chan->flags & IEEE80211_CHAN_RADAR) ||
|
|
!(src_chan->flags & IEEE80211_CHAN_RADAR))
|
|
return;
|
|
|
|
if (dst_chan->flags & IEEE80211_CHAN_DISABLED ||
|
|
src_chan->flags & IEEE80211_CHAN_DISABLED)
|
|
return;
|
|
|
|
if (src_chan->center_freq == dst_chan->center_freq &&
|
|
dst_chan->dfs_state == NL80211_DFS_USABLE) {
|
|
dst_chan->dfs_state = src_chan->dfs_state;
|
|
dst_chan->dfs_state_entered = src_chan->dfs_state_entered;
|
|
}
|
|
}
|
|
|
|
static void wiphy_share_dfs_chan_state(struct wiphy *dst_wiphy,
|
|
struct wiphy *src_wiphy)
|
|
{
|
|
struct ieee80211_supported_band *src_sband, *dst_sband;
|
|
struct ieee80211_channel *src_chan, *dst_chan;
|
|
int i, j, band;
|
|
|
|
if (!reg_dfs_domain_same(dst_wiphy, src_wiphy))
|
|
return;
|
|
|
|
for (band = 0; band < NUM_NL80211_BANDS; band++) {
|
|
dst_sband = dst_wiphy->bands[band];
|
|
src_sband = src_wiphy->bands[band];
|
|
if (!dst_sband || !src_sband)
|
|
continue;
|
|
|
|
for (i = 0; i < dst_sband->n_channels; i++) {
|
|
dst_chan = &dst_sband->channels[i];
|
|
for (j = 0; j < src_sband->n_channels; j++) {
|
|
src_chan = &src_sband->channels[j];
|
|
reg_copy_dfs_chan_state(dst_chan, src_chan);
|
|
}
|
|
}
|
|
}
|
|
}
|
|
|
|
static void wiphy_all_share_dfs_chan_state(struct wiphy *wiphy)
|
|
{
|
|
struct cfg80211_registered_device *rdev;
|
|
|
|
ASSERT_RTNL();
|
|
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
|
|
if (wiphy == &rdev->wiphy)
|
|
continue;
|
|
wiphy_share_dfs_chan_state(wiphy, &rdev->wiphy);
|
|
}
|
|
}
|
|
|
|
/* This processes *all* regulatory hints */
|
|
static void reg_process_hint(struct regulatory_request *reg_request)
|
|
{
|
|
struct wiphy *wiphy = NULL;
|
|
enum reg_request_treatment treatment;
|
|
enum nl80211_reg_initiator initiator = reg_request->initiator;
|
|
|
|
if (reg_request->wiphy_idx != WIPHY_IDX_INVALID)
|
|
wiphy = wiphy_idx_to_wiphy(reg_request->wiphy_idx);
|
|
|
|
switch (initiator) {
|
|
case NL80211_REGDOM_SET_BY_CORE:
|
|
treatment = reg_process_hint_core(reg_request);
|
|
break;
|
|
case NL80211_REGDOM_SET_BY_USER:
|
|
treatment = reg_process_hint_user(reg_request);
|
|
break;
|
|
case NL80211_REGDOM_SET_BY_DRIVER:
|
|
if (!wiphy)
|
|
goto out_free;
|
|
treatment = reg_process_hint_driver(wiphy, reg_request);
|
|
break;
|
|
case NL80211_REGDOM_SET_BY_COUNTRY_IE:
|
|
if (!wiphy)
|
|
goto out_free;
|
|
treatment = reg_process_hint_country_ie(wiphy, reg_request);
|
|
break;
|
|
default:
|
|
WARN(1, "invalid initiator %d\n", initiator);
|
|
goto out_free;
|
|
}
|
|
|
|
if (treatment == REG_REQ_IGNORE)
|
|
goto out_free;
|
|
|
|
WARN(treatment != REG_REQ_OK && treatment != REG_REQ_ALREADY_SET,
|
|
"unexpected treatment value %d\n", treatment);
|
|
|
|
/* This is required so that the orig_* parameters are saved.
|
|
* NOTE: treatment must be set for any case that reaches here!
|
|
*/
|
|
if (treatment == REG_REQ_ALREADY_SET && wiphy &&
|
|
wiphy->regulatory_flags & REGULATORY_STRICT_REG) {
|
|
wiphy_update_regulatory(wiphy, initiator);
|
|
wiphy_all_share_dfs_chan_state(wiphy);
|
|
reg_check_channels();
|
|
}
|
|
|
|
return;
|
|
|
|
out_free:
|
|
reg_free_request(reg_request);
|
|
}
|
|
|
|
static void notify_self_managed_wiphys(struct regulatory_request *request)
|
|
{
|
|
struct cfg80211_registered_device *rdev;
|
|
struct wiphy *wiphy;
|
|
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
|
|
wiphy = &rdev->wiphy;
|
|
if (wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED &&
|
|
request->initiator == NL80211_REGDOM_SET_BY_USER)
|
|
reg_call_notifier(wiphy, request);
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Processes regulatory hints, this is all the NL80211_REGDOM_SET_BY_*
|
|
* Regulatory hints come on a first come first serve basis and we
|
|
* must process each one atomically.
|
|
*/
|
|
static void reg_process_pending_hints(void)
|
|
{
|
|
struct regulatory_request *reg_request, *lr;
|
|
|
|
lr = get_last_request();
|
|
|
|
/* When last_request->processed becomes true this will be rescheduled */
|
|
if (lr && !lr->processed) {
|
|
pr_debug("Pending regulatory request, waiting for it to be processed...\n");
|
|
return;
|
|
}
|
|
|
|
spin_lock(®_requests_lock);
|
|
|
|
if (list_empty(®_requests_list)) {
|
|
spin_unlock(®_requests_lock);
|
|
return;
|
|
}
|
|
|
|
reg_request = list_first_entry(®_requests_list,
|
|
struct regulatory_request,
|
|
list);
|
|
list_del_init(®_request->list);
|
|
|
|
spin_unlock(®_requests_lock);
|
|
|
|
notify_self_managed_wiphys(reg_request);
|
|
|
|
reg_process_hint(reg_request);
|
|
|
|
lr = get_last_request();
|
|
|
|
spin_lock(®_requests_lock);
|
|
if (!list_empty(®_requests_list) && lr && lr->processed)
|
|
schedule_work(®_work);
|
|
spin_unlock(®_requests_lock);
|
|
}
|
|
|
|
/* Processes beacon hints -- this has nothing to do with country IEs */
|
|
static void reg_process_pending_beacon_hints(void)
|
|
{
|
|
struct cfg80211_registered_device *rdev;
|
|
struct reg_beacon *pending_beacon, *tmp;
|
|
|
|
/* This goes through the _pending_ beacon list */
|
|
spin_lock_bh(®_pending_beacons_lock);
|
|
|
|
list_for_each_entry_safe(pending_beacon, tmp,
|
|
®_pending_beacons, list) {
|
|
list_del_init(&pending_beacon->list);
|
|
|
|
/* Applies the beacon hint to current wiphys */
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list)
|
|
wiphy_update_new_beacon(&rdev->wiphy, pending_beacon);
|
|
|
|
/* Remembers the beacon hint for new wiphys or reg changes */
|
|
list_add_tail(&pending_beacon->list, ®_beacon_list);
|
|
}
|
|
|
|
spin_unlock_bh(®_pending_beacons_lock);
|
|
}
|
|
|
|
static void reg_process_self_managed_hints(void)
|
|
{
|
|
struct cfg80211_registered_device *rdev;
|
|
struct wiphy *wiphy;
|
|
const struct ieee80211_regdomain *tmp;
|
|
const struct ieee80211_regdomain *regd;
|
|
enum nl80211_band band;
|
|
struct regulatory_request request = {};
|
|
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
|
|
wiphy = &rdev->wiphy;
|
|
|
|
spin_lock(®_requests_lock);
|
|
regd = rdev->requested_regd;
|
|
rdev->requested_regd = NULL;
|
|
spin_unlock(®_requests_lock);
|
|
|
|
if (regd == NULL)
|
|
continue;
|
|
|
|
tmp = get_wiphy_regdom(wiphy);
|
|
rcu_assign_pointer(wiphy->regd, regd);
|
|
rcu_free_regdom(tmp);
|
|
|
|
for (band = 0; band < NUM_NL80211_BANDS; band++)
|
|
handle_band_custom(wiphy, wiphy->bands[band], regd);
|
|
|
|
reg_process_ht_flags(wiphy);
|
|
|
|
request.wiphy_idx = get_wiphy_idx(wiphy);
|
|
request.alpha2[0] = regd->alpha2[0];
|
|
request.alpha2[1] = regd->alpha2[1];
|
|
request.initiator = NL80211_REGDOM_SET_BY_DRIVER;
|
|
|
|
nl80211_send_wiphy_reg_change_event(&request);
|
|
}
|
|
|
|
reg_check_channels();
|
|
}
|
|
|
|
static void reg_todo(struct work_struct *work)
|
|
{
|
|
rtnl_lock();
|
|
reg_process_pending_hints();
|
|
reg_process_pending_beacon_hints();
|
|
reg_process_self_managed_hints();
|
|
rtnl_unlock();
|
|
}
|
|
|
|
static void queue_regulatory_request(struct regulatory_request *request)
|
|
{
|
|
request->alpha2[0] = toupper(request->alpha2[0]);
|
|
request->alpha2[1] = toupper(request->alpha2[1]);
|
|
|
|
spin_lock(®_requests_lock);
|
|
list_add_tail(&request->list, ®_requests_list);
|
|
spin_unlock(®_requests_lock);
|
|
|
|
schedule_work(®_work);
|
|
}
|
|
|
|
/*
|
|
* Core regulatory hint -- happens during cfg80211_init()
|
|
* and when we restore regulatory settings.
|
|
*/
|
|
static int regulatory_hint_core(const char *alpha2)
|
|
{
|
|
struct regulatory_request *request;
|
|
|
|
request = kzalloc(sizeof(struct regulatory_request), GFP_KERNEL);
|
|
if (!request)
|
|
return -ENOMEM;
|
|
|
|
request->alpha2[0] = alpha2[0];
|
|
request->alpha2[1] = alpha2[1];
|
|
request->initiator = NL80211_REGDOM_SET_BY_CORE;
|
|
request->wiphy_idx = WIPHY_IDX_INVALID;
|
|
|
|
queue_regulatory_request(request);
|
|
|
|
return 0;
|
|
}
|
|
|
|
/* User hints */
|
|
int regulatory_hint_user(const char *alpha2,
|
|
enum nl80211_user_reg_hint_type user_reg_hint_type)
|
|
{
|
|
struct regulatory_request *request;
|
|
|
|
if (WARN_ON(!alpha2))
|
|
return -EINVAL;
|
|
|
|
if (!is_world_regdom(alpha2) && !is_an_alpha2(alpha2))
|
|
return -EINVAL;
|
|
|
|
request = kzalloc(sizeof(struct regulatory_request), GFP_KERNEL);
|
|
if (!request)
|
|
return -ENOMEM;
|
|
|
|
request->wiphy_idx = WIPHY_IDX_INVALID;
|
|
request->alpha2[0] = alpha2[0];
|
|
request->alpha2[1] = alpha2[1];
|
|
request->initiator = NL80211_REGDOM_SET_BY_USER;
|
|
request->user_reg_hint_type = user_reg_hint_type;
|
|
|
|
/* Allow calling CRDA again */
|
|
reset_crda_timeouts();
|
|
|
|
queue_regulatory_request(request);
|
|
|
|
return 0;
|
|
}
|
|
EXPORT_SYMBOL(regulatory_hint_user);
|
|
|
|
int regulatory_hint_indoor(bool is_indoor, u32 portid)
|
|
{
|
|
spin_lock(®_indoor_lock);
|
|
|
|
/* It is possible that more than one user space process is trying to
|
|
* configure the indoor setting. To handle such cases, clear the indoor
|
|
* setting in case that some process does not think that the device
|
|
* is operating in an indoor environment. In addition, if a user space
|
|
* process indicates that it is controlling the indoor setting, save its
|
|
* portid, i.e., make it the owner.
|
|
*/
|
|
reg_is_indoor = is_indoor;
|
|
if (reg_is_indoor) {
|
|
if (!reg_is_indoor_portid)
|
|
reg_is_indoor_portid = portid;
|
|
} else {
|
|
reg_is_indoor_portid = 0;
|
|
}
|
|
|
|
spin_unlock(®_indoor_lock);
|
|
|
|
if (!is_indoor)
|
|
reg_check_channels();
|
|
|
|
return 0;
|
|
}
|
|
|
|
void regulatory_netlink_notify(u32 portid)
|
|
{
|
|
spin_lock(®_indoor_lock);
|
|
|
|
if (reg_is_indoor_portid != portid) {
|
|
spin_unlock(®_indoor_lock);
|
|
return;
|
|
}
|
|
|
|
reg_is_indoor = false;
|
|
reg_is_indoor_portid = 0;
|
|
|
|
spin_unlock(®_indoor_lock);
|
|
|
|
reg_check_channels();
|
|
}
|
|
|
|
/* Driver hints */
|
|
int regulatory_hint(struct wiphy *wiphy, const char *alpha2)
|
|
{
|
|
struct regulatory_request *request;
|
|
|
|
if (WARN_ON(!alpha2 || !wiphy))
|
|
return -EINVAL;
|
|
|
|
wiphy->regulatory_flags &= ~REGULATORY_CUSTOM_REG;
|
|
|
|
request = kzalloc(sizeof(struct regulatory_request), GFP_KERNEL);
|
|
if (!request)
|
|
return -ENOMEM;
|
|
|
|
request->wiphy_idx = get_wiphy_idx(wiphy);
|
|
|
|
request->alpha2[0] = alpha2[0];
|
|
request->alpha2[1] = alpha2[1];
|
|
request->initiator = NL80211_REGDOM_SET_BY_DRIVER;
|
|
|
|
/* Allow calling CRDA again */
|
|
reset_crda_timeouts();
|
|
|
|
queue_regulatory_request(request);
|
|
|
|
return 0;
|
|
}
|
|
EXPORT_SYMBOL(regulatory_hint);
|
|
|
|
void regulatory_hint_country_ie(struct wiphy *wiphy, enum nl80211_band band,
|
|
const u8 *country_ie, u8 country_ie_len)
|
|
{
|
|
char alpha2[2];
|
|
enum environment_cap env = ENVIRON_ANY;
|
|
struct regulatory_request *request = NULL, *lr;
|
|
|
|
/* IE len must be evenly divisible by 2 */
|
|
if (country_ie_len & 0x01)
|
|
return;
|
|
|
|
if (country_ie_len < IEEE80211_COUNTRY_IE_MIN_LEN)
|
|
return;
|
|
|
|
request = kzalloc(sizeof(*request), GFP_KERNEL);
|
|
if (!request)
|
|
return;
|
|
|
|
alpha2[0] = country_ie[0];
|
|
alpha2[1] = country_ie[1];
|
|
|
|
if (country_ie[2] == 'I')
|
|
env = ENVIRON_INDOOR;
|
|
else if (country_ie[2] == 'O')
|
|
env = ENVIRON_OUTDOOR;
|
|
|
|
rcu_read_lock();
|
|
lr = get_last_request();
|
|
|
|
if (unlikely(!lr))
|
|
goto out;
|
|
|
|
/*
|
|
* We will run this only upon a successful connection on cfg80211.
|
|
* We leave conflict resolution to the workqueue, where can hold
|
|
* the RTNL.
|
|
*/
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_COUNTRY_IE &&
|
|
lr->wiphy_idx != WIPHY_IDX_INVALID)
|
|
goto out;
|
|
|
|
request->wiphy_idx = get_wiphy_idx(wiphy);
|
|
request->alpha2[0] = alpha2[0];
|
|
request->alpha2[1] = alpha2[1];
|
|
request->initiator = NL80211_REGDOM_SET_BY_COUNTRY_IE;
|
|
request->country_ie_env = env;
|
|
|
|
/* Allow calling CRDA again */
|
|
reset_crda_timeouts();
|
|
|
|
queue_regulatory_request(request);
|
|
request = NULL;
|
|
out:
|
|
kfree(request);
|
|
rcu_read_unlock();
|
|
}
|
|
|
|
static void restore_alpha2(char *alpha2, bool reset_user)
|
|
{
|
|
/* indicates there is no alpha2 to consider for restoration */
|
|
alpha2[0] = '9';
|
|
alpha2[1] = '7';
|
|
|
|
/* The user setting has precedence over the module parameter */
|
|
if (is_user_regdom_saved()) {
|
|
/* Unless we're asked to ignore it and reset it */
|
|
if (reset_user) {
|
|
pr_debug("Restoring regulatory settings including user preference\n");
|
|
user_alpha2[0] = '9';
|
|
user_alpha2[1] = '7';
|
|
|
|
/*
|
|
* If we're ignoring user settings, we still need to
|
|
* check the module parameter to ensure we put things
|
|
* back as they were for a full restore.
|
|
*/
|
|
if (!is_world_regdom(ieee80211_regdom)) {
|
|
pr_debug("Keeping preference on module parameter ieee80211_regdom: %c%c\n",
|
|
ieee80211_regdom[0], ieee80211_regdom[1]);
|
|
alpha2[0] = ieee80211_regdom[0];
|
|
alpha2[1] = ieee80211_regdom[1];
|
|
}
|
|
} else {
|
|
pr_debug("Restoring regulatory settings while preserving user preference for: %c%c\n",
|
|
user_alpha2[0], user_alpha2[1]);
|
|
alpha2[0] = user_alpha2[0];
|
|
alpha2[1] = user_alpha2[1];
|
|
}
|
|
} else if (!is_world_regdom(ieee80211_regdom)) {
|
|
pr_debug("Keeping preference on module parameter ieee80211_regdom: %c%c\n",
|
|
ieee80211_regdom[0], ieee80211_regdom[1]);
|
|
alpha2[0] = ieee80211_regdom[0];
|
|
alpha2[1] = ieee80211_regdom[1];
|
|
} else
|
|
pr_debug("Restoring regulatory settings\n");
|
|
}
|
|
|
|
static void restore_custom_reg_settings(struct wiphy *wiphy)
|
|
{
|
|
struct ieee80211_supported_band *sband;
|
|
enum nl80211_band band;
|
|
struct ieee80211_channel *chan;
|
|
int i;
|
|
|
|
for (band = 0; band < NUM_NL80211_BANDS; band++) {
|
|
sband = wiphy->bands[band];
|
|
if (!sband)
|
|
continue;
|
|
for (i = 0; i < sband->n_channels; i++) {
|
|
chan = &sband->channels[i];
|
|
chan->flags = chan->orig_flags;
|
|
chan->max_antenna_gain = chan->orig_mag;
|
|
chan->max_power = chan->orig_mpwr;
|
|
chan->beacon_found = false;
|
|
}
|
|
}
|
|
}
|
|
|
|
/*
|
|
* Restoring regulatory settings involves ingoring any
|
|
* possibly stale country IE information and user regulatory
|
|
* settings if so desired, this includes any beacon hints
|
|
* learned as we could have traveled outside to another country
|
|
* after disconnection. To restore regulatory settings we do
|
|
* exactly what we did at bootup:
|
|
*
|
|
* - send a core regulatory hint
|
|
* - send a user regulatory hint if applicable
|
|
*
|
|
* Device drivers that send a regulatory hint for a specific country
|
|
* keep their own regulatory domain on wiphy->regd so that does does
|
|
* not need to be remembered.
|
|
*/
|
|
static void restore_regulatory_settings(bool reset_user, bool cached)
|
|
{
|
|
char alpha2[2];
|
|
char world_alpha2[2];
|
|
struct reg_beacon *reg_beacon, *btmp;
|
|
LIST_HEAD(tmp_reg_req_list);
|
|
struct cfg80211_registered_device *rdev;
|
|
|
|
ASSERT_RTNL();
|
|
|
|
/*
|
|
* Clear the indoor setting in case that it is not controlled by user
|
|
* space, as otherwise there is no guarantee that the device is still
|
|
* operating in an indoor environment.
|
|
*/
|
|
spin_lock(®_indoor_lock);
|
|
if (reg_is_indoor && !reg_is_indoor_portid) {
|
|
reg_is_indoor = false;
|
|
reg_check_channels();
|
|
}
|
|
spin_unlock(®_indoor_lock);
|
|
|
|
reset_regdomains(true, &world_regdom);
|
|
restore_alpha2(alpha2, reset_user);
|
|
|
|
/*
|
|
* If there's any pending requests we simply
|
|
* stash them to a temporary pending queue and
|
|
* add then after we've restored regulatory
|
|
* settings.
|
|
*/
|
|
spin_lock(®_requests_lock);
|
|
list_splice_tail_init(®_requests_list, &tmp_reg_req_list);
|
|
spin_unlock(®_requests_lock);
|
|
|
|
/* Clear beacon hints */
|
|
spin_lock_bh(®_pending_beacons_lock);
|
|
list_for_each_entry_safe(reg_beacon, btmp, ®_pending_beacons, list) {
|
|
list_del(®_beacon->list);
|
|
kfree(reg_beacon);
|
|
}
|
|
spin_unlock_bh(®_pending_beacons_lock);
|
|
|
|
list_for_each_entry_safe(reg_beacon, btmp, ®_beacon_list, list) {
|
|
list_del(®_beacon->list);
|
|
kfree(reg_beacon);
|
|
}
|
|
|
|
/* First restore to the basic regulatory settings */
|
|
world_alpha2[0] = cfg80211_world_regdom->alpha2[0];
|
|
world_alpha2[1] = cfg80211_world_regdom->alpha2[1];
|
|
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
|
|
if (rdev->wiphy.regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED)
|
|
continue;
|
|
if (rdev->wiphy.regulatory_flags & REGULATORY_CUSTOM_REG)
|
|
restore_custom_reg_settings(&rdev->wiphy);
|
|
}
|
|
|
|
if (cached && (!is_an_alpha2(alpha2) ||
|
|
!IS_ERR_OR_NULL(cfg80211_user_regdom))) {
|
|
reset_regdomains(false, cfg80211_world_regdom);
|
|
update_all_wiphy_regulatory(NL80211_REGDOM_SET_BY_CORE);
|
|
print_regdomain(get_cfg80211_regdom());
|
|
nl80211_send_reg_change_event(&core_request_world);
|
|
reg_set_request_processed();
|
|
|
|
if (is_an_alpha2(alpha2) &&
|
|
!regulatory_hint_user(alpha2, NL80211_USER_REG_HINT_USER)) {
|
|
struct regulatory_request *ureq;
|
|
|
|
spin_lock(®_requests_lock);
|
|
ureq = list_last_entry(®_requests_list,
|
|
struct regulatory_request,
|
|
list);
|
|
list_del(&ureq->list);
|
|
spin_unlock(®_requests_lock);
|
|
|
|
notify_self_managed_wiphys(ureq);
|
|
reg_update_last_request(ureq);
|
|
set_regdom(reg_copy_regd(cfg80211_user_regdom),
|
|
REGD_SOURCE_CACHED);
|
|
}
|
|
} else {
|
|
regulatory_hint_core(world_alpha2);
|
|
|
|
/*
|
|
* This restores the ieee80211_regdom module parameter
|
|
* preference or the last user requested regulatory
|
|
* settings, user regulatory settings takes precedence.
|
|
*/
|
|
if (is_an_alpha2(alpha2))
|
|
regulatory_hint_user(alpha2, NL80211_USER_REG_HINT_USER);
|
|
}
|
|
|
|
spin_lock(®_requests_lock);
|
|
list_splice_tail_init(&tmp_reg_req_list, ®_requests_list);
|
|
spin_unlock(®_requests_lock);
|
|
|
|
pr_debug("Kicking the queue\n");
|
|
|
|
schedule_work(®_work);
|
|
}
|
|
|
|
static bool is_wiphy_all_set_reg_flag(enum ieee80211_regulatory_flags flag)
|
|
{
|
|
struct cfg80211_registered_device *rdev;
|
|
struct wireless_dev *wdev;
|
|
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
|
|
list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
|
|
wdev_lock(wdev);
|
|
if (!(wdev->wiphy->regulatory_flags & flag)) {
|
|
wdev_unlock(wdev);
|
|
return false;
|
|
}
|
|
wdev_unlock(wdev);
|
|
}
|
|
}
|
|
|
|
return true;
|
|
}
|
|
|
|
void regulatory_hint_disconnect(void)
|
|
{
|
|
/* Restore of regulatory settings is not required when wiphy(s)
|
|
* ignore IE from connected access point but clearance of beacon hints
|
|
* is required when wiphy(s) supports beacon hints.
|
|
*/
|
|
if (is_wiphy_all_set_reg_flag(REGULATORY_COUNTRY_IE_IGNORE)) {
|
|
struct reg_beacon *reg_beacon, *btmp;
|
|
|
|
if (is_wiphy_all_set_reg_flag(REGULATORY_DISABLE_BEACON_HINTS))
|
|
return;
|
|
|
|
spin_lock_bh(®_pending_beacons_lock);
|
|
list_for_each_entry_safe(reg_beacon, btmp,
|
|
®_pending_beacons, list) {
|
|
list_del(®_beacon->list);
|
|
kfree(reg_beacon);
|
|
}
|
|
spin_unlock_bh(®_pending_beacons_lock);
|
|
|
|
list_for_each_entry_safe(reg_beacon, btmp,
|
|
®_beacon_list, list) {
|
|
list_del(®_beacon->list);
|
|
kfree(reg_beacon);
|
|
}
|
|
|
|
return;
|
|
}
|
|
|
|
pr_debug("All devices are disconnected, going to restore regulatory settings\n");
|
|
restore_regulatory_settings(false, true);
|
|
}
|
|
|
|
static bool freq_is_chan_12_13_14(u32 freq)
|
|
{
|
|
if (freq == ieee80211_channel_to_frequency(12, NL80211_BAND_2GHZ) ||
|
|
freq == ieee80211_channel_to_frequency(13, NL80211_BAND_2GHZ) ||
|
|
freq == ieee80211_channel_to_frequency(14, NL80211_BAND_2GHZ))
|
|
return true;
|
|
return false;
|
|
}
|
|
|
|
static bool pending_reg_beacon(struct ieee80211_channel *beacon_chan)
|
|
{
|
|
struct reg_beacon *pending_beacon;
|
|
|
|
list_for_each_entry(pending_beacon, ®_pending_beacons, list)
|
|
if (ieee80211_channel_equal(beacon_chan,
|
|
&pending_beacon->chan))
|
|
return true;
|
|
return false;
|
|
}
|
|
|
|
int regulatory_hint_found_beacon(struct wiphy *wiphy,
|
|
struct ieee80211_channel *beacon_chan,
|
|
gfp_t gfp)
|
|
{
|
|
struct reg_beacon *reg_beacon;
|
|
bool processing;
|
|
|
|
if (beacon_chan->beacon_found ||
|
|
beacon_chan->flags & IEEE80211_CHAN_RADAR ||
|
|
(beacon_chan->band == NL80211_BAND_2GHZ &&
|
|
!freq_is_chan_12_13_14(beacon_chan->center_freq)))
|
|
return 0;
|
|
|
|
spin_lock_bh(®_pending_beacons_lock);
|
|
processing = pending_reg_beacon(beacon_chan);
|
|
spin_unlock_bh(®_pending_beacons_lock);
|
|
|
|
if (processing)
|
|
return 0;
|
|
|
|
reg_beacon = kzalloc(sizeof(struct reg_beacon), gfp);
|
|
if (!reg_beacon)
|
|
return -ENOMEM;
|
|
|
|
pr_debug("Found new beacon on frequency: %d.%03d MHz (Ch %d) on %s\n",
|
|
beacon_chan->center_freq, beacon_chan->freq_offset,
|
|
ieee80211_freq_khz_to_channel(
|
|
ieee80211_channel_to_khz(beacon_chan)),
|
|
wiphy_name(wiphy));
|
|
|
|
memcpy(®_beacon->chan, beacon_chan,
|
|
sizeof(struct ieee80211_channel));
|
|
|
|
/*
|
|
* Since we can be called from BH or and non-BH context
|
|
* we must use spin_lock_bh()
|
|
*/
|
|
spin_lock_bh(®_pending_beacons_lock);
|
|
list_add_tail(®_beacon->list, ®_pending_beacons);
|
|
spin_unlock_bh(®_pending_beacons_lock);
|
|
|
|
schedule_work(®_work);
|
|
|
|
return 0;
|
|
}
|
|
|
|
static void print_rd_rules(const struct ieee80211_regdomain *rd)
|
|
{
|
|
unsigned int i;
|
|
const struct ieee80211_reg_rule *reg_rule = NULL;
|
|
const struct ieee80211_freq_range *freq_range = NULL;
|
|
const struct ieee80211_power_rule *power_rule = NULL;
|
|
char bw[32], cac_time[32];
|
|
|
|
pr_debug(" (start_freq - end_freq @ bandwidth), (max_antenna_gain, max_eirp), (dfs_cac_time)\n");
|
|
|
|
for (i = 0; i < rd->n_reg_rules; i++) {
|
|
reg_rule = &rd->reg_rules[i];
|
|
freq_range = ®_rule->freq_range;
|
|
power_rule = ®_rule->power_rule;
|
|
|
|
if (reg_rule->flags & NL80211_RRF_AUTO_BW)
|
|
snprintf(bw, sizeof(bw), "%d KHz, %u KHz AUTO",
|
|
freq_range->max_bandwidth_khz,
|
|
reg_get_max_bandwidth(rd, reg_rule));
|
|
else
|
|
snprintf(bw, sizeof(bw), "%d KHz",
|
|
freq_range->max_bandwidth_khz);
|
|
|
|
if (reg_rule->flags & NL80211_RRF_DFS)
|
|
scnprintf(cac_time, sizeof(cac_time), "%u s",
|
|
reg_rule->dfs_cac_ms/1000);
|
|
else
|
|
scnprintf(cac_time, sizeof(cac_time), "N/A");
|
|
|
|
|
|
/*
|
|
* There may not be documentation for max antenna gain
|
|
* in certain regions
|
|
*/
|
|
if (power_rule->max_antenna_gain)
|
|
pr_debug(" (%d KHz - %d KHz @ %s), (%d mBi, %d mBm), (%s)\n",
|
|
freq_range->start_freq_khz,
|
|
freq_range->end_freq_khz,
|
|
bw,
|
|
power_rule->max_antenna_gain,
|
|
power_rule->max_eirp,
|
|
cac_time);
|
|
else
|
|
pr_debug(" (%d KHz - %d KHz @ %s), (N/A, %d mBm), (%s)\n",
|
|
freq_range->start_freq_khz,
|
|
freq_range->end_freq_khz,
|
|
bw,
|
|
power_rule->max_eirp,
|
|
cac_time);
|
|
}
|
|
}
|
|
|
|
bool reg_supported_dfs_region(enum nl80211_dfs_regions dfs_region)
|
|
{
|
|
switch (dfs_region) {
|
|
case NL80211_DFS_UNSET:
|
|
case NL80211_DFS_FCC:
|
|
case NL80211_DFS_ETSI:
|
|
case NL80211_DFS_JP:
|
|
return true;
|
|
default:
|
|
pr_debug("Ignoring unknown DFS master region: %d\n", dfs_region);
|
|
return false;
|
|
}
|
|
}
|
|
|
|
static void print_regdomain(const struct ieee80211_regdomain *rd)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
if (is_intersected_alpha2(rd->alpha2)) {
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_COUNTRY_IE) {
|
|
struct cfg80211_registered_device *rdev;
|
|
rdev = cfg80211_rdev_by_wiphy_idx(lr->wiphy_idx);
|
|
if (rdev) {
|
|
pr_debug("Current regulatory domain updated by AP to: %c%c\n",
|
|
rdev->country_ie_alpha2[0],
|
|
rdev->country_ie_alpha2[1]);
|
|
} else
|
|
pr_debug("Current regulatory domain intersected:\n");
|
|
} else
|
|
pr_debug("Current regulatory domain intersected:\n");
|
|
} else if (is_world_regdom(rd->alpha2)) {
|
|
pr_debug("World regulatory domain updated:\n");
|
|
} else {
|
|
if (is_unknown_alpha2(rd->alpha2))
|
|
pr_debug("Regulatory domain changed to driver built-in settings (unknown country)\n");
|
|
else {
|
|
if (reg_request_cell_base(lr))
|
|
pr_debug("Regulatory domain changed to country: %c%c by Cell Station\n",
|
|
rd->alpha2[0], rd->alpha2[1]);
|
|
else
|
|
pr_debug("Regulatory domain changed to country: %c%c\n",
|
|
rd->alpha2[0], rd->alpha2[1]);
|
|
}
|
|
}
|
|
|
|
pr_debug(" DFS Master region: %s", reg_dfs_region_str(rd->dfs_region));
|
|
print_rd_rules(rd);
|
|
}
|
|
|
|
static void print_regdomain_info(const struct ieee80211_regdomain *rd)
|
|
{
|
|
pr_debug("Regulatory domain: %c%c\n", rd->alpha2[0], rd->alpha2[1]);
|
|
print_rd_rules(rd);
|
|
}
|
|
|
|
static int reg_set_rd_core(const struct ieee80211_regdomain *rd)
|
|
{
|
|
if (!is_world_regdom(rd->alpha2))
|
|
return -EINVAL;
|
|
update_world_regdomain(rd);
|
|
return 0;
|
|
}
|
|
|
|
static int reg_set_rd_user(const struct ieee80211_regdomain *rd,
|
|
struct regulatory_request *user_request)
|
|
{
|
|
const struct ieee80211_regdomain *intersected_rd = NULL;
|
|
|
|
if (!regdom_changes(rd->alpha2))
|
|
return -EALREADY;
|
|
|
|
if (!is_valid_rd(rd)) {
|
|
pr_err("Invalid regulatory domain detected: %c%c\n",
|
|
rd->alpha2[0], rd->alpha2[1]);
|
|
print_regdomain_info(rd);
|
|
return -EINVAL;
|
|
}
|
|
|
|
if (!user_request->intersect) {
|
|
reset_regdomains(false, rd);
|
|
return 0;
|
|
}
|
|
|
|
intersected_rd = regdom_intersect(rd, get_cfg80211_regdom());
|
|
if (!intersected_rd)
|
|
return -EINVAL;
|
|
|
|
kfree(rd);
|
|
rd = NULL;
|
|
reset_regdomains(false, intersected_rd);
|
|
|
|
return 0;
|
|
}
|
|
|
|
static int reg_set_rd_driver(const struct ieee80211_regdomain *rd,
|
|
struct regulatory_request *driver_request)
|
|
{
|
|
const struct ieee80211_regdomain *regd;
|
|
const struct ieee80211_regdomain *intersected_rd = NULL;
|
|
const struct ieee80211_regdomain *tmp;
|
|
struct wiphy *request_wiphy;
|
|
|
|
if (is_world_regdom(rd->alpha2))
|
|
return -EINVAL;
|
|
|
|
if (!regdom_changes(rd->alpha2))
|
|
return -EALREADY;
|
|
|
|
if (!is_valid_rd(rd)) {
|
|
pr_err("Invalid regulatory domain detected: %c%c\n",
|
|
rd->alpha2[0], rd->alpha2[1]);
|
|
print_regdomain_info(rd);
|
|
return -EINVAL;
|
|
}
|
|
|
|
request_wiphy = wiphy_idx_to_wiphy(driver_request->wiphy_idx);
|
|
if (!request_wiphy)
|
|
return -ENODEV;
|
|
|
|
if (!driver_request->intersect) {
|
|
if (request_wiphy->regd)
|
|
return -EALREADY;
|
|
|
|
regd = reg_copy_regd(rd);
|
|
if (IS_ERR(regd))
|
|
return PTR_ERR(regd);
|
|
|
|
rcu_assign_pointer(request_wiphy->regd, regd);
|
|
reset_regdomains(false, rd);
|
|
return 0;
|
|
}
|
|
|
|
intersected_rd = regdom_intersect(rd, get_cfg80211_regdom());
|
|
if (!intersected_rd)
|
|
return -EINVAL;
|
|
|
|
/*
|
|
* We can trash what CRDA provided now.
|
|
* However if a driver requested this specific regulatory
|
|
* domain we keep it for its private use
|
|
*/
|
|
tmp = get_wiphy_regdom(request_wiphy);
|
|
rcu_assign_pointer(request_wiphy->regd, rd);
|
|
rcu_free_regdom(tmp);
|
|
|
|
rd = NULL;
|
|
|
|
reset_regdomains(false, intersected_rd);
|
|
|
|
return 0;
|
|
}
|
|
|
|
static int reg_set_rd_country_ie(const struct ieee80211_regdomain *rd,
|
|
struct regulatory_request *country_ie_request)
|
|
{
|
|
struct wiphy *request_wiphy;
|
|
|
|
if (!is_alpha2_set(rd->alpha2) && !is_an_alpha2(rd->alpha2) &&
|
|
!is_unknown_alpha2(rd->alpha2))
|
|
return -EINVAL;
|
|
|
|
/*
|
|
* Lets only bother proceeding on the same alpha2 if the current
|
|
* rd is non static (it means CRDA was present and was used last)
|
|
* and the pending request came in from a country IE
|
|
*/
|
|
|
|
if (!is_valid_rd(rd)) {
|
|
pr_err("Invalid regulatory domain detected: %c%c\n",
|
|
rd->alpha2[0], rd->alpha2[1]);
|
|
print_regdomain_info(rd);
|
|
return -EINVAL;
|
|
}
|
|
|
|
request_wiphy = wiphy_idx_to_wiphy(country_ie_request->wiphy_idx);
|
|
if (!request_wiphy)
|
|
return -ENODEV;
|
|
|
|
if (country_ie_request->intersect)
|
|
return -EINVAL;
|
|
|
|
reset_regdomains(false, rd);
|
|
return 0;
|
|
}
|
|
|
|
/*
|
|
* Use this call to set the current regulatory domain. Conflicts with
|
|
* multiple drivers can be ironed out later. Caller must've already
|
|
* kmalloc'd the rd structure.
|
|
*/
|
|
int set_regdom(const struct ieee80211_regdomain *rd,
|
|
enum ieee80211_regd_source regd_src)
|
|
{
|
|
struct regulatory_request *lr;
|
|
bool user_reset = false;
|
|
int r;
|
|
|
|
if (IS_ERR_OR_NULL(rd))
|
|
return -ENODATA;
|
|
|
|
if (!reg_is_valid_request(rd->alpha2)) {
|
|
kfree(rd);
|
|
return -EINVAL;
|
|
}
|
|
|
|
if (regd_src == REGD_SOURCE_CRDA)
|
|
reset_crda_timeouts();
|
|
|
|
lr = get_last_request();
|
|
|
|
/* Note that this doesn't update the wiphys, this is done below */
|
|
switch (lr->initiator) {
|
|
case NL80211_REGDOM_SET_BY_CORE:
|
|
r = reg_set_rd_core(rd);
|
|
break;
|
|
case NL80211_REGDOM_SET_BY_USER:
|
|
cfg80211_save_user_regdom(rd);
|
|
r = reg_set_rd_user(rd, lr);
|
|
user_reset = true;
|
|
break;
|
|
case NL80211_REGDOM_SET_BY_DRIVER:
|
|
r = reg_set_rd_driver(rd, lr);
|
|
break;
|
|
case NL80211_REGDOM_SET_BY_COUNTRY_IE:
|
|
r = reg_set_rd_country_ie(rd, lr);
|
|
break;
|
|
default:
|
|
WARN(1, "invalid initiator %d\n", lr->initiator);
|
|
kfree(rd);
|
|
return -EINVAL;
|
|
}
|
|
|
|
if (r) {
|
|
switch (r) {
|
|
case -EALREADY:
|
|
reg_set_request_processed();
|
|
break;
|
|
default:
|
|
/* Back to world regulatory in case of errors */
|
|
restore_regulatory_settings(user_reset, false);
|
|
}
|
|
|
|
kfree(rd);
|
|
return r;
|
|
}
|
|
|
|
/* This would make this whole thing pointless */
|
|
if (WARN_ON(!lr->intersect && rd != get_cfg80211_regdom()))
|
|
return -EINVAL;
|
|
|
|
/* update all wiphys now with the new established regulatory domain */
|
|
update_all_wiphy_regulatory(lr->initiator);
|
|
|
|
print_regdomain(get_cfg80211_regdom());
|
|
|
|
nl80211_send_reg_change_event(lr);
|
|
|
|
reg_set_request_processed();
|
|
|
|
return 0;
|
|
}
|
|
|
|
static int __regulatory_set_wiphy_regd(struct wiphy *wiphy,
|
|
struct ieee80211_regdomain *rd)
|
|
{
|
|
const struct ieee80211_regdomain *regd;
|
|
const struct ieee80211_regdomain *prev_regd;
|
|
struct cfg80211_registered_device *rdev;
|
|
|
|
if (WARN_ON(!wiphy || !rd))
|
|
return -EINVAL;
|
|
|
|
if (WARN(!(wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED),
|
|
"wiphy should have REGULATORY_WIPHY_SELF_MANAGED\n"))
|
|
return -EPERM;
|
|
|
|
if (WARN(!is_valid_rd(rd), "Invalid regulatory domain detected\n")) {
|
|
print_regdomain_info(rd);
|
|
return -EINVAL;
|
|
}
|
|
|
|
regd = reg_copy_regd(rd);
|
|
if (IS_ERR(regd))
|
|
return PTR_ERR(regd);
|
|
|
|
rdev = wiphy_to_rdev(wiphy);
|
|
|
|
spin_lock(®_requests_lock);
|
|
prev_regd = rdev->requested_regd;
|
|
rdev->requested_regd = regd;
|
|
spin_unlock(®_requests_lock);
|
|
|
|
kfree(prev_regd);
|
|
return 0;
|
|
}
|
|
|
|
int regulatory_set_wiphy_regd(struct wiphy *wiphy,
|
|
struct ieee80211_regdomain *rd)
|
|
{
|
|
int ret = __regulatory_set_wiphy_regd(wiphy, rd);
|
|
|
|
if (ret)
|
|
return ret;
|
|
|
|
schedule_work(®_work);
|
|
return 0;
|
|
}
|
|
EXPORT_SYMBOL(regulatory_set_wiphy_regd);
|
|
|
|
int regulatory_set_wiphy_regd_sync_rtnl(struct wiphy *wiphy,
|
|
struct ieee80211_regdomain *rd)
|
|
{
|
|
int ret;
|
|
|
|
ASSERT_RTNL();
|
|
|
|
ret = __regulatory_set_wiphy_regd(wiphy, rd);
|
|
if (ret)
|
|
return ret;
|
|
|
|
/* process the request immediately */
|
|
reg_process_self_managed_hints();
|
|
return 0;
|
|
}
|
|
EXPORT_SYMBOL(regulatory_set_wiphy_regd_sync_rtnl);
|
|
|
|
void wiphy_regulatory_register(struct wiphy *wiphy)
|
|
{
|
|
struct regulatory_request *lr = get_last_request();
|
|
|
|
/* self-managed devices ignore beacon hints and country IE */
|
|
if (wiphy->regulatory_flags & REGULATORY_WIPHY_SELF_MANAGED) {
|
|
wiphy->regulatory_flags |= REGULATORY_DISABLE_BEACON_HINTS |
|
|
REGULATORY_COUNTRY_IE_IGNORE;
|
|
|
|
/*
|
|
* The last request may have been received before this
|
|
* registration call. Call the driver notifier if
|
|
* initiator is USER.
|
|
*/
|
|
if (lr->initiator == NL80211_REGDOM_SET_BY_USER)
|
|
reg_call_notifier(wiphy, lr);
|
|
}
|
|
|
|
if (!reg_dev_ignore_cell_hint(wiphy))
|
|
reg_num_devs_support_basehint++;
|
|
|
|
wiphy_update_regulatory(wiphy, lr->initiator);
|
|
wiphy_all_share_dfs_chan_state(wiphy);
|
|
reg_process_self_managed_hints();
|
|
}
|
|
|
|
void wiphy_regulatory_deregister(struct wiphy *wiphy)
|
|
{
|
|
struct wiphy *request_wiphy = NULL;
|
|
struct regulatory_request *lr;
|
|
|
|
lr = get_last_request();
|
|
|
|
if (!reg_dev_ignore_cell_hint(wiphy))
|
|
reg_num_devs_support_basehint--;
|
|
|
|
rcu_free_regdom(get_wiphy_regdom(wiphy));
|
|
RCU_INIT_POINTER(wiphy->regd, NULL);
|
|
|
|
if (lr)
|
|
request_wiphy = wiphy_idx_to_wiphy(lr->wiphy_idx);
|
|
|
|
if (!request_wiphy || request_wiphy != wiphy)
|
|
return;
|
|
|
|
lr->wiphy_idx = WIPHY_IDX_INVALID;
|
|
lr->country_ie_env = ENVIRON_ANY;
|
|
}
|
|
|
|
/*
|
|
* See FCC notices for UNII band definitions
|
|
* 5GHz: https://www.fcc.gov/document/5-ghz-unlicensed-spectrum-unii
|
|
* 6GHz: https://www.fcc.gov/document/fcc-proposes-more-spectrum-unlicensed-use-0
|
|
*/
|
|
int cfg80211_get_unii(int freq)
|
|
{
|
|
/* UNII-1 */
|
|
if (freq >= 5150 && freq <= 5250)
|
|
return 0;
|
|
|
|
/* UNII-2A */
|
|
if (freq > 5250 && freq <= 5350)
|
|
return 1;
|
|
|
|
/* UNII-2B */
|
|
if (freq > 5350 && freq <= 5470)
|
|
return 2;
|
|
|
|
/* UNII-2C */
|
|
if (freq > 5470 && freq <= 5725)
|
|
return 3;
|
|
|
|
/* UNII-3 */
|
|
if (freq > 5725 && freq <= 5825)
|
|
return 4;
|
|
|
|
/* UNII-5 */
|
|
if (freq > 5925 && freq <= 6425)
|
|
return 5;
|
|
|
|
/* UNII-6 */
|
|
if (freq > 6425 && freq <= 6525)
|
|
return 6;
|
|
|
|
/* UNII-7 */
|
|
if (freq > 6525 && freq <= 6875)
|
|
return 7;
|
|
|
|
/* UNII-8 */
|
|
if (freq > 6875 && freq <= 7125)
|
|
return 8;
|
|
|
|
return -EINVAL;
|
|
}
|
|
|
|
bool regulatory_indoor_allowed(void)
|
|
{
|
|
return reg_is_indoor;
|
|
}
|
|
|
|
bool regulatory_pre_cac_allowed(struct wiphy *wiphy)
|
|
{
|
|
const struct ieee80211_regdomain *regd = NULL;
|
|
const struct ieee80211_regdomain *wiphy_regd = NULL;
|
|
bool pre_cac_allowed = false;
|
|
|
|
rcu_read_lock();
|
|
|
|
regd = rcu_dereference(cfg80211_regdomain);
|
|
wiphy_regd = rcu_dereference(wiphy->regd);
|
|
if (!wiphy_regd) {
|
|
if (regd->dfs_region == NL80211_DFS_ETSI)
|
|
pre_cac_allowed = true;
|
|
|
|
rcu_read_unlock();
|
|
|
|
return pre_cac_allowed;
|
|
}
|
|
|
|
if (regd->dfs_region == wiphy_regd->dfs_region &&
|
|
wiphy_regd->dfs_region == NL80211_DFS_ETSI)
|
|
pre_cac_allowed = true;
|
|
|
|
rcu_read_unlock();
|
|
|
|
return pre_cac_allowed;
|
|
}
|
|
EXPORT_SYMBOL(regulatory_pre_cac_allowed);
|
|
|
|
static void cfg80211_check_and_end_cac(struct cfg80211_registered_device *rdev)
|
|
{
|
|
struct wireless_dev *wdev;
|
|
/* If we finished CAC or received radar, we should end any
|
|
* CAC running on the same channels.
|
|
* the check !cfg80211_chandef_dfs_usable contain 2 options:
|
|
* either all channels are available - those the CAC_FINISHED
|
|
* event has effected another wdev state, or there is a channel
|
|
* in unavailable state in wdev chandef - those the RADAR_DETECTED
|
|
* event has effected another wdev state.
|
|
* In both cases we should end the CAC on the wdev.
|
|
*/
|
|
list_for_each_entry(wdev, &rdev->wiphy.wdev_list, list) {
|
|
if (wdev->cac_started &&
|
|
!cfg80211_chandef_dfs_usable(&rdev->wiphy, &wdev->chandef))
|
|
rdev_end_cac(rdev, wdev->netdev);
|
|
}
|
|
}
|
|
|
|
void regulatory_propagate_dfs_state(struct wiphy *wiphy,
|
|
struct cfg80211_chan_def *chandef,
|
|
enum nl80211_dfs_state dfs_state,
|
|
enum nl80211_radar_event event)
|
|
{
|
|
struct cfg80211_registered_device *rdev;
|
|
|
|
ASSERT_RTNL();
|
|
|
|
if (WARN_ON(!cfg80211_chandef_valid(chandef)))
|
|
return;
|
|
|
|
list_for_each_entry(rdev, &cfg80211_rdev_list, list) {
|
|
if (wiphy == &rdev->wiphy)
|
|
continue;
|
|
|
|
if (!reg_dfs_domain_same(wiphy, &rdev->wiphy))
|
|
continue;
|
|
|
|
if (!ieee80211_get_channel(&rdev->wiphy,
|
|
chandef->chan->center_freq))
|
|
continue;
|
|
|
|
cfg80211_set_dfs_state(&rdev->wiphy, chandef, dfs_state);
|
|
|
|
if (event == NL80211_RADAR_DETECTED ||
|
|
event == NL80211_RADAR_CAC_FINISHED) {
|
|
cfg80211_sched_dfs_chan_update(rdev);
|
|
cfg80211_check_and_end_cac(rdev);
|
|
}
|
|
|
|
nl80211_radar_notify(rdev, chandef, event, NULL, GFP_KERNEL);
|
|
}
|
|
}
|
|
|
|
static int __init regulatory_init_db(void)
|
|
{
|
|
int err;
|
|
|
|
/*
|
|
* It's possible that - due to other bugs/issues - cfg80211
|
|
* never called regulatory_init() below, or that it failed;
|
|
* in that case, don't try to do any further work here as
|
|
* it's doomed to lead to crashes.
|
|
*/
|
|
if (IS_ERR_OR_NULL(reg_pdev))
|
|
return -EINVAL;
|
|
|
|
err = load_builtin_regdb_keys();
|
|
if (err) {
|
|
platform_device_unregister(reg_pdev);
|
|
return err;
|
|
}
|
|
|
|
/* We always try to get an update for the static regdomain */
|
|
err = regulatory_hint_core(cfg80211_world_regdom->alpha2);
|
|
if (err) {
|
|
if (err == -ENOMEM) {
|
|
platform_device_unregister(reg_pdev);
|
|
return err;
|
|
}
|
|
/*
|
|
* N.B. kobject_uevent_env() can fail mainly for when we're out
|
|
* memory which is handled and propagated appropriately above
|
|
* but it can also fail during a netlink_broadcast() or during
|
|
* early boot for call_usermodehelper(). For now treat these
|
|
* errors as non-fatal.
|
|
*/
|
|
pr_err("kobject_uevent_env() was unable to call CRDA during init\n");
|
|
}
|
|
|
|
/*
|
|
* Finally, if the user set the module parameter treat it
|
|
* as a user hint.
|
|
*/
|
|
if (!is_world_regdom(ieee80211_regdom))
|
|
regulatory_hint_user(ieee80211_regdom,
|
|
NL80211_USER_REG_HINT_USER);
|
|
|
|
return 0;
|
|
}
|
|
#ifndef MODULE
|
|
late_initcall(regulatory_init_db);
|
|
#endif
|
|
|
|
int __init regulatory_init(void)
|
|
{
|
|
reg_pdev = platform_device_register_simple("regulatory", 0, NULL, 0);
|
|
if (IS_ERR(reg_pdev))
|
|
return PTR_ERR(reg_pdev);
|
|
|
|
spin_lock_init(®_requests_lock);
|
|
spin_lock_init(®_pending_beacons_lock);
|
|
spin_lock_init(®_indoor_lock);
|
|
|
|
rcu_assign_pointer(cfg80211_regdomain, cfg80211_world_regdom);
|
|
|
|
user_alpha2[0] = '9';
|
|
user_alpha2[1] = '7';
|
|
|
|
#ifdef MODULE
|
|
return regulatory_init_db();
|
|
#else
|
|
return 0;
|
|
#endif
|
|
}
|
|
|
|
void regulatory_exit(void)
|
|
{
|
|
struct regulatory_request *reg_request, *tmp;
|
|
struct reg_beacon *reg_beacon, *btmp;
|
|
|
|
cancel_work_sync(®_work);
|
|
cancel_crda_timeout_sync();
|
|
cancel_delayed_work_sync(®_check_chans);
|
|
|
|
/* Lock to suppress warnings */
|
|
rtnl_lock();
|
|
reset_regdomains(true, NULL);
|
|
rtnl_unlock();
|
|
|
|
dev_set_uevent_suppress(®_pdev->dev, true);
|
|
|
|
platform_device_unregister(reg_pdev);
|
|
|
|
list_for_each_entry_safe(reg_beacon, btmp, ®_pending_beacons, list) {
|
|
list_del(®_beacon->list);
|
|
kfree(reg_beacon);
|
|
}
|
|
|
|
list_for_each_entry_safe(reg_beacon, btmp, ®_beacon_list, list) {
|
|
list_del(®_beacon->list);
|
|
kfree(reg_beacon);
|
|
}
|
|
|
|
list_for_each_entry_safe(reg_request, tmp, ®_requests_list, list) {
|
|
list_del(®_request->list);
|
|
kfree(reg_request);
|
|
}
|
|
|
|
if (!IS_ERR_OR_NULL(regdb))
|
|
kfree(regdb);
|
|
if (!IS_ERR_OR_NULL(cfg80211_user_regdom))
|
|
kfree(cfg80211_user_regdom);
|
|
|
|
free_regdb_keyring();
|
|
}
|