1 /* SPDX-License-Identifier: GPL-2.0-only */
5 * Copyright (c) 2001-2002, SSH Communications Security Corp and Jouni Malinen
8 * Copyright (c) 2005, Devicescape Software, Inc.
10 * Copyright (c) 2013 - 2014 Intel Mobile Communications GmbH
11 * Copyright (c) 2016 - 2017 Intel Deutschland GmbH
12 * Copyright (c) 2018 - 2023 Intel Corporation
15 #ifndef LINUX_IEEE80211_H
16 #define LINUX_IEEE80211_H
18 #include <linux/types.h>
19 #include <linux/if_ether.h>
20 #include <linux/etherdevice.h>
21 #include <linux/bitfield.h>
22 #include <asm/byteorder.h>
23 #include <asm/unaligned.h>
28 * TA = transmitter address
29 * RA = receiver address
30 * DA = destination address
33 * ToDS FromDS A1(RA) A2(TA) A3 A4 Use
34 * -----------------------------------------------------------------
35 * 0 0 DA SA BSSID - IBSS/DLS
36 * 0 1 DA BSSID SA - AP -> STA
37 * 1 0 BSSID SA DA - AP <- STA
38 * 1 1 RA TA DA SA unspecified (WDS)
43 #define IEEE80211_FCTL_VERS 0x0003
44 #define IEEE80211_FCTL_FTYPE 0x000c
45 #define IEEE80211_FCTL_STYPE 0x00f0
46 #define IEEE80211_FCTL_TODS 0x0100
47 #define IEEE80211_FCTL_FROMDS 0x0200
48 #define IEEE80211_FCTL_MOREFRAGS 0x0400
49 #define IEEE80211_FCTL_RETRY 0x0800
50 #define IEEE80211_FCTL_PM 0x1000
51 #define IEEE80211_FCTL_MOREDATA 0x2000
52 #define IEEE80211_FCTL_PROTECTED 0x4000
53 #define IEEE80211_FCTL_ORDER 0x8000
54 #define IEEE80211_FCTL_CTL_EXT 0x0f00
56 #define IEEE80211_SCTL_FRAG 0x000F
57 #define IEEE80211_SCTL_SEQ 0xFFF0
59 #define IEEE80211_FTYPE_MGMT 0x0000
60 #define IEEE80211_FTYPE_CTL 0x0004
61 #define IEEE80211_FTYPE_DATA 0x0008
62 #define IEEE80211_FTYPE_EXT 0x000c
65 #define IEEE80211_STYPE_ASSOC_REQ 0x0000
66 #define IEEE80211_STYPE_ASSOC_RESP 0x0010
67 #define IEEE80211_STYPE_REASSOC_REQ 0x0020
68 #define IEEE80211_STYPE_REASSOC_RESP 0x0030
69 #define IEEE80211_STYPE_PROBE_REQ 0x0040
70 #define IEEE80211_STYPE_PROBE_RESP 0x0050
71 #define IEEE80211_STYPE_BEACON 0x0080
72 #define IEEE80211_STYPE_ATIM 0x0090
73 #define IEEE80211_STYPE_DISASSOC 0x00A0
74 #define IEEE80211_STYPE_AUTH 0x00B0
75 #define IEEE80211_STYPE_DEAUTH 0x00C0
76 #define IEEE80211_STYPE_ACTION 0x00D0
79 #define IEEE80211_STYPE_TRIGGER 0x0020
80 #define IEEE80211_STYPE_CTL_EXT 0x0060
81 #define IEEE80211_STYPE_BACK_REQ 0x0080
82 #define IEEE80211_STYPE_BACK 0x0090
83 #define IEEE80211_STYPE_PSPOLL 0x00A0
84 #define IEEE80211_STYPE_RTS 0x00B0
85 #define IEEE80211_STYPE_CTS 0x00C0
86 #define IEEE80211_STYPE_ACK 0x00D0
87 #define IEEE80211_STYPE_CFEND 0x00E0
88 #define IEEE80211_STYPE_CFENDACK 0x00F0
91 #define IEEE80211_STYPE_DATA 0x0000
92 #define IEEE80211_STYPE_DATA_CFACK 0x0010
93 #define IEEE80211_STYPE_DATA_CFPOLL 0x0020
94 #define IEEE80211_STYPE_DATA_CFACKPOLL 0x0030
95 #define IEEE80211_STYPE_NULLFUNC 0x0040
96 #define IEEE80211_STYPE_CFACK 0x0050
97 #define IEEE80211_STYPE_CFPOLL 0x0060
98 #define IEEE80211_STYPE_CFACKPOLL 0x0070
99 #define IEEE80211_STYPE_QOS_DATA 0x0080
100 #define IEEE80211_STYPE_QOS_DATA_CFACK 0x0090
101 #define IEEE80211_STYPE_QOS_DATA_CFPOLL 0x00A0
102 #define IEEE80211_STYPE_QOS_DATA_CFACKPOLL 0x00B0
103 #define IEEE80211_STYPE_QOS_NULLFUNC 0x00C0
104 #define IEEE80211_STYPE_QOS_CFACK 0x00D0
105 #define IEEE80211_STYPE_QOS_CFPOLL 0x00E0
106 #define IEEE80211_STYPE_QOS_CFACKPOLL 0x00F0
108 /* extension, added by 802.11ad */
109 #define IEEE80211_STYPE_DMG_BEACON 0x0000
110 #define IEEE80211_STYPE_S1G_BEACON 0x0010
112 /* bits unique to S1G beacon */
113 #define IEEE80211_S1G_BCN_NEXT_TBTT 0x100
115 /* see 802.11ah-2016 9.9 NDP CMAC frames */
116 #define IEEE80211_S1G_1MHZ_NDP_BITS 25
117 #define IEEE80211_S1G_1MHZ_NDP_BYTES 4
118 #define IEEE80211_S1G_2MHZ_NDP_BITS 37
119 #define IEEE80211_S1G_2MHZ_NDP_BYTES 5
121 #define IEEE80211_NDP_FTYPE_CTS 0
122 #define IEEE80211_NDP_FTYPE_CF_END 0
123 #define IEEE80211_NDP_FTYPE_PS_POLL 1
124 #define IEEE80211_NDP_FTYPE_ACK 2
125 #define IEEE80211_NDP_FTYPE_PS_POLL_ACK 3
126 #define IEEE80211_NDP_FTYPE_BA 4
127 #define IEEE80211_NDP_FTYPE_BF_REPORT_POLL 5
128 #define IEEE80211_NDP_FTYPE_PAGING 6
129 #define IEEE80211_NDP_FTYPE_PREQ 7
131 #define SM64(f, v) ((((u64)v) << f##_S) & f)
133 /* NDP CMAC frame fields */
134 #define IEEE80211_NDP_FTYPE 0x0000000000000007
135 #define IEEE80211_NDP_FTYPE_S 0x0000000000000000
137 /* 1M Probe Request 11ah 9.9.3.1.1 */
138 #define IEEE80211_NDP_1M_PREQ_ANO 0x0000000000000008
139 #define IEEE80211_NDP_1M_PREQ_ANO_S 3
140 #define IEEE80211_NDP_1M_PREQ_CSSID 0x00000000000FFFF0
141 #define IEEE80211_NDP_1M_PREQ_CSSID_S 4
142 #define IEEE80211_NDP_1M_PREQ_RTYPE 0x0000000000100000
143 #define IEEE80211_NDP_1M_PREQ_RTYPE_S 20
144 #define IEEE80211_NDP_1M_PREQ_RSV 0x0000000001E00000
145 #define IEEE80211_NDP_1M_PREQ_RSV 0x0000000001E00000
146 /* 2M Probe Request 11ah 9.9.3.1.2 */
147 #define IEEE80211_NDP_2M_PREQ_ANO 0x0000000000000008
148 #define IEEE80211_NDP_2M_PREQ_ANO_S 3
149 #define IEEE80211_NDP_2M_PREQ_CSSID 0x0000000FFFFFFFF0
150 #define IEEE80211_NDP_2M_PREQ_CSSID_S 4
151 #define IEEE80211_NDP_2M_PREQ_RTYPE 0x0000001000000000
152 #define IEEE80211_NDP_2M_PREQ_RTYPE_S 36
154 #define IEEE80211_ANO_NETTYPE_WILD 15
156 /* bits unique to S1G beacon */
157 #define IEEE80211_S1G_BCN_NEXT_TBTT 0x100
159 /* control extension - for IEEE80211_FTYPE_CTL | IEEE80211_STYPE_CTL_EXT */
160 #define IEEE80211_CTL_EXT_POLL 0x2000
161 #define IEEE80211_CTL_EXT_SPR 0x3000
162 #define IEEE80211_CTL_EXT_GRANT 0x4000
163 #define IEEE80211_CTL_EXT_DMG_CTS 0x5000
164 #define IEEE80211_CTL_EXT_DMG_DTS 0x6000
165 #define IEEE80211_CTL_EXT_SSW 0x8000
166 #define IEEE80211_CTL_EXT_SSW_FBACK 0x9000
167 #define IEEE80211_CTL_EXT_SSW_ACK 0xa000
170 #define IEEE80211_SN_MASK ((IEEE80211_SCTL_SEQ) >> 4)
171 #define IEEE80211_MAX_SN IEEE80211_SN_MASK
172 #define IEEE80211_SN_MODULO (IEEE80211_MAX_SN + 1)
175 /* PV1 Layout IEEE 802.11-2020 9.8.3.1 */
176 #define IEEE80211_PV1_FCTL_VERS 0x0003
177 #define IEEE80211_PV1_FCTL_FTYPE 0x001c
178 #define IEEE80211_PV1_FCTL_STYPE 0x00e0
179 #define IEEE80211_PV1_FCTL_FROMDS 0x0100
180 #define IEEE80211_PV1_FCTL_MOREFRAGS 0x0200
181 #define IEEE80211_PV1_FCTL_PM 0x0400
182 #define IEEE80211_PV1_FCTL_MOREDATA 0x0800
183 #define IEEE80211_PV1_FCTL_PROTECTED 0x1000
184 #define IEEE80211_PV1_FCTL_END_SP 0x2000
185 #define IEEE80211_PV1_FCTL_RELAYED 0x4000
186 #define IEEE80211_PV1_FCTL_ACK_POLICY 0x8000
187 #define IEEE80211_PV1_FCTL_CTL_EXT 0x0f00
189 static inline bool ieee80211_sn_less(u16 sn1, u16 sn2)
191 return ((sn1 - sn2) & IEEE80211_SN_MASK) > (IEEE80211_SN_MODULO >> 1);
194 static inline u16 ieee80211_sn_add(u16 sn1, u16 sn2)
196 return (sn1 + sn2) & IEEE80211_SN_MASK;
199 static inline u16 ieee80211_sn_inc(u16 sn)
201 return ieee80211_sn_add(sn, 1);
204 static inline u16 ieee80211_sn_sub(u16 sn1, u16 sn2)
206 return (sn1 - sn2) & IEEE80211_SN_MASK;
209 #define IEEE80211_SEQ_TO_SN(seq) (((seq) & IEEE80211_SCTL_SEQ) >> 4)
210 #define IEEE80211_SN_TO_SEQ(ssn) (((ssn) << 4) & IEEE80211_SCTL_SEQ)
212 /* miscellaneous IEEE 802.11 constants */
213 #define IEEE80211_MAX_FRAG_THRESHOLD 2352
214 #define IEEE80211_MAX_RTS_THRESHOLD 2353
215 #define IEEE80211_MAX_AID 2007
216 #define IEEE80211_MAX_AID_S1G 8191
217 #define IEEE80211_MAX_TIM_LEN 251
218 #define IEEE80211_MAX_MESH_PEERINGS 63
219 /* Maximum size for the MA-UNITDATA primitive, 802.11 standard section
222 802.11e clarifies the figure in section 7.1.2. The frame body is
223 up to 2304 octets long (maximum MSDU size) plus any crypt overhead. */
224 #define IEEE80211_MAX_DATA_LEN 2304
225 /* 802.11ad extends maximum MSDU size for DMG (freq > 40Ghz) networks
226 * to 7920 bytes, see 8.2.3 General frame format
228 #define IEEE80211_MAX_DATA_LEN_DMG 7920
229 /* 30 byte 4 addr hdr, 2 byte QoS, 2304 byte MSDU, 12 byte crypt, 4 byte FCS */
230 #define IEEE80211_MAX_FRAME_LEN 2352
232 /* Maximal size of an A-MSDU that can be transported in a HT BA session */
233 #define IEEE80211_MAX_MPDU_LEN_HT_BA 4095
235 /* Maximal size of an A-MSDU */
236 #define IEEE80211_MAX_MPDU_LEN_HT_3839 3839
237 #define IEEE80211_MAX_MPDU_LEN_HT_7935 7935
239 #define IEEE80211_MAX_MPDU_LEN_VHT_3895 3895
240 #define IEEE80211_MAX_MPDU_LEN_VHT_7991 7991
241 #define IEEE80211_MAX_MPDU_LEN_VHT_11454 11454
243 #define IEEE80211_MAX_SSID_LEN 32
245 #define IEEE80211_MAX_MESH_ID_LEN 32
247 #define IEEE80211_FIRST_TSPEC_TSID 8
248 #define IEEE80211_NUM_TIDS 16
250 /* number of user priorities 802.11 uses */
251 #define IEEE80211_NUM_UPS 8
253 #define IEEE80211_NUM_ACS 4
255 #define IEEE80211_QOS_CTL_LEN 2
257 #define IEEE80211_QOS_CTL_TAG1D_MASK 0x0007
259 #define IEEE80211_QOS_CTL_TID_MASK 0x000f
261 #define IEEE80211_QOS_CTL_EOSP 0x0010
263 #define IEEE80211_QOS_CTL_ACK_POLICY_NORMAL 0x0000
264 #define IEEE80211_QOS_CTL_ACK_POLICY_NOACK 0x0020
265 #define IEEE80211_QOS_CTL_ACK_POLICY_NO_EXPL 0x0040
266 #define IEEE80211_QOS_CTL_ACK_POLICY_BLOCKACK 0x0060
267 #define IEEE80211_QOS_CTL_ACK_POLICY_MASK 0x0060
269 #define IEEE80211_QOS_CTL_A_MSDU_PRESENT 0x0080
270 /* Mesh Control 802.11s */
271 #define IEEE80211_QOS_CTL_MESH_CONTROL_PRESENT 0x0100
273 /* Mesh Power Save Level */
274 #define IEEE80211_QOS_CTL_MESH_PS_LEVEL 0x0200
275 /* Mesh Receiver Service Period Initiated */
276 #define IEEE80211_QOS_CTL_RSPI 0x0400
278 /* U-APSD queue for WMM IEs sent by AP */
279 #define IEEE80211_WMM_IE_AP_QOSINFO_UAPSD (1<<7)
280 #define IEEE80211_WMM_IE_AP_QOSINFO_PARAM_SET_CNT_MASK 0x0f
282 /* U-APSD queues for WMM IEs sent by STA */
283 #define IEEE80211_WMM_IE_STA_QOSINFO_AC_VO (1<<0)
284 #define IEEE80211_WMM_IE_STA_QOSINFO_AC_VI (1<<1)
285 #define IEEE80211_WMM_IE_STA_QOSINFO_AC_BK (1<<2)
286 #define IEEE80211_WMM_IE_STA_QOSINFO_AC_BE (1<<3)
287 #define IEEE80211_WMM_IE_STA_QOSINFO_AC_MASK 0x0f
289 /* U-APSD max SP length for WMM IEs sent by STA */
290 #define IEEE80211_WMM_IE_STA_QOSINFO_SP_ALL 0x00
291 #define IEEE80211_WMM_IE_STA_QOSINFO_SP_2 0x01
292 #define IEEE80211_WMM_IE_STA_QOSINFO_SP_4 0x02
293 #define IEEE80211_WMM_IE_STA_QOSINFO_SP_6 0x03
294 #define IEEE80211_WMM_IE_STA_QOSINFO_SP_MASK 0x03
295 #define IEEE80211_WMM_IE_STA_QOSINFO_SP_SHIFT 5
297 #define IEEE80211_HT_CTL_LEN 4
299 /* trigger type within common_info of trigger frame */
300 #define IEEE80211_TRIGGER_TYPE_MASK 0xf
301 #define IEEE80211_TRIGGER_TYPE_BASIC 0x0
302 #define IEEE80211_TRIGGER_TYPE_BFRP 0x1
303 #define IEEE80211_TRIGGER_TYPE_MU_BAR 0x2
304 #define IEEE80211_TRIGGER_TYPE_MU_RTS 0x3
305 #define IEEE80211_TRIGGER_TYPE_BSRP 0x4
306 #define IEEE80211_TRIGGER_TYPE_GCR_MU_BAR 0x5
307 #define IEEE80211_TRIGGER_TYPE_BQRP 0x6
308 #define IEEE80211_TRIGGER_TYPE_NFRP 0x7
310 /* UL-bandwidth within common_info of trigger frame */
311 #define IEEE80211_TRIGGER_ULBW_MASK 0xc0000
312 #define IEEE80211_TRIGGER_ULBW_20MHZ 0x0
313 #define IEEE80211_TRIGGER_ULBW_40MHZ 0x1
314 #define IEEE80211_TRIGGER_ULBW_80MHZ 0x2
315 #define IEEE80211_TRIGGER_ULBW_160_80P80MHZ 0x3
317 struct ieee80211_hdr {
318 __le16 frame_control;
327 } __packed __aligned(2);
329 struct ieee80211_hdr_3addr {
330 __le16 frame_control;
336 } __packed __aligned(2);
338 struct ieee80211_qos_hdr {
339 __le16 frame_control;
346 } __packed __aligned(2);
348 struct ieee80211_qos_hdr_4addr {
349 __le16 frame_control;
357 } __packed __aligned(2);
359 struct ieee80211_trigger {
360 __le16 frame_control;
366 } __packed __aligned(2);
369 * ieee80211_has_tods - check if IEEE80211_FCTL_TODS is set
370 * @fc: frame control bytes in little-endian byteorder
372 static inline bool ieee80211_has_tods(__le16 fc)
374 return (fc & cpu_to_le16(IEEE80211_FCTL_TODS)) != 0;
378 * ieee80211_has_fromds - check if IEEE80211_FCTL_FROMDS is set
379 * @fc: frame control bytes in little-endian byteorder
381 static inline bool ieee80211_has_fromds(__le16 fc)
383 return (fc & cpu_to_le16(IEEE80211_FCTL_FROMDS)) != 0;
387 * ieee80211_has_a4 - check if IEEE80211_FCTL_TODS and IEEE80211_FCTL_FROMDS are set
388 * @fc: frame control bytes in little-endian byteorder
390 static inline bool ieee80211_has_a4(__le16 fc)
392 __le16 tmp = cpu_to_le16(IEEE80211_FCTL_TODS | IEEE80211_FCTL_FROMDS);
393 return (fc & tmp) == tmp;
397 * ieee80211_has_morefrags - check if IEEE80211_FCTL_MOREFRAGS is set
398 * @fc: frame control bytes in little-endian byteorder
400 static inline bool ieee80211_has_morefrags(__le16 fc)
402 return (fc & cpu_to_le16(IEEE80211_FCTL_MOREFRAGS)) != 0;
406 * ieee80211_has_retry - check if IEEE80211_FCTL_RETRY is set
407 * @fc: frame control bytes in little-endian byteorder
409 static inline bool ieee80211_has_retry(__le16 fc)
411 return (fc & cpu_to_le16(IEEE80211_FCTL_RETRY)) != 0;
415 * ieee80211_has_pm - check if IEEE80211_FCTL_PM is set
416 * @fc: frame control bytes in little-endian byteorder
418 static inline bool ieee80211_has_pm(__le16 fc)
420 return (fc & cpu_to_le16(IEEE80211_FCTL_PM)) != 0;
424 * ieee80211_has_moredata - check if IEEE80211_FCTL_MOREDATA is set
425 * @fc: frame control bytes in little-endian byteorder
427 static inline bool ieee80211_has_moredata(__le16 fc)
429 return (fc & cpu_to_le16(IEEE80211_FCTL_MOREDATA)) != 0;
433 * ieee80211_has_protected - check if IEEE80211_FCTL_PROTECTED is set
434 * @fc: frame control bytes in little-endian byteorder
436 static inline bool ieee80211_has_protected(__le16 fc)
438 return (fc & cpu_to_le16(IEEE80211_FCTL_PROTECTED)) != 0;
442 * ieee80211_has_order - check if IEEE80211_FCTL_ORDER is set
443 * @fc: frame control bytes in little-endian byteorder
445 static inline bool ieee80211_has_order(__le16 fc)
447 return (fc & cpu_to_le16(IEEE80211_FCTL_ORDER)) != 0;
451 * ieee80211_is_mgmt - check if type is IEEE80211_FTYPE_MGMT
452 * @fc: frame control bytes in little-endian byteorder
454 static inline bool ieee80211_is_mgmt(__le16 fc)
456 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE)) ==
457 cpu_to_le16(IEEE80211_FTYPE_MGMT);
461 * ieee80211_is_ctl - check if type is IEEE80211_FTYPE_CTL
462 * @fc: frame control bytes in little-endian byteorder
464 static inline bool ieee80211_is_ctl(__le16 fc)
466 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE)) ==
467 cpu_to_le16(IEEE80211_FTYPE_CTL);
471 * ieee80211_is_data - check if type is IEEE80211_FTYPE_DATA
472 * @fc: frame control bytes in little-endian byteorder
474 static inline bool ieee80211_is_data(__le16 fc)
476 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE)) ==
477 cpu_to_le16(IEEE80211_FTYPE_DATA);
481 * ieee80211_is_ext - check if type is IEEE80211_FTYPE_EXT
482 * @fc: frame control bytes in little-endian byteorder
484 static inline bool ieee80211_is_ext(__le16 fc)
486 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE)) ==
487 cpu_to_le16(IEEE80211_FTYPE_EXT);
492 * ieee80211_is_data_qos - check if type is IEEE80211_FTYPE_DATA and IEEE80211_STYPE_QOS_DATA is set
493 * @fc: frame control bytes in little-endian byteorder
495 static inline bool ieee80211_is_data_qos(__le16 fc)
498 * mask with QOS_DATA rather than IEEE80211_FCTL_STYPE as we just need
499 * to check the one bit
501 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_STYPE_QOS_DATA)) ==
502 cpu_to_le16(IEEE80211_FTYPE_DATA | IEEE80211_STYPE_QOS_DATA);
506 * ieee80211_is_data_present - check if type is IEEE80211_FTYPE_DATA and has data
507 * @fc: frame control bytes in little-endian byteorder
509 static inline bool ieee80211_is_data_present(__le16 fc)
512 * mask with 0x40 and test that that bit is clear to only return true
513 * for the data-containing substypes.
515 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | 0x40)) ==
516 cpu_to_le16(IEEE80211_FTYPE_DATA);
520 * ieee80211_is_assoc_req - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_ASSOC_REQ
521 * @fc: frame control bytes in little-endian byteorder
523 static inline bool ieee80211_is_assoc_req(__le16 fc)
525 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
526 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ASSOC_REQ);
530 * ieee80211_is_assoc_resp - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_ASSOC_RESP
531 * @fc: frame control bytes in little-endian byteorder
533 static inline bool ieee80211_is_assoc_resp(__le16 fc)
535 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
536 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ASSOC_RESP);
540 * ieee80211_is_reassoc_req - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_REASSOC_REQ
541 * @fc: frame control bytes in little-endian byteorder
543 static inline bool ieee80211_is_reassoc_req(__le16 fc)
545 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
546 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_REASSOC_REQ);
550 * ieee80211_is_reassoc_resp - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_REASSOC_RESP
551 * @fc: frame control bytes in little-endian byteorder
553 static inline bool ieee80211_is_reassoc_resp(__le16 fc)
555 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
556 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_REASSOC_RESP);
560 * ieee80211_is_probe_req - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_PROBE_REQ
561 * @fc: frame control bytes in little-endian byteorder
563 static inline bool ieee80211_is_probe_req(__le16 fc)
565 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
566 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_PROBE_REQ);
570 * ieee80211_is_probe_resp - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_PROBE_RESP
571 * @fc: frame control bytes in little-endian byteorder
573 static inline bool ieee80211_is_probe_resp(__le16 fc)
575 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
576 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_PROBE_RESP);
580 * ieee80211_is_beacon - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_BEACON
581 * @fc: frame control bytes in little-endian byteorder
583 static inline bool ieee80211_is_beacon(__le16 fc)
585 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
586 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_BEACON);
590 * ieee80211_is_s1g_beacon - check if IEEE80211_FTYPE_EXT &&
591 * IEEE80211_STYPE_S1G_BEACON
592 * @fc: frame control bytes in little-endian byteorder
594 static inline bool ieee80211_is_s1g_beacon(__le16 fc)
596 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE |
597 IEEE80211_FCTL_STYPE)) ==
598 cpu_to_le16(IEEE80211_FTYPE_EXT | IEEE80211_STYPE_S1G_BEACON);
602 * ieee80211_next_tbtt_present - check if IEEE80211_FTYPE_EXT &&
603 * IEEE80211_STYPE_S1G_BEACON && IEEE80211_S1G_BCN_NEXT_TBTT
604 * @fc: frame control bytes in little-endian byteorder
606 static inline bool ieee80211_next_tbtt_present(__le16 fc)
608 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
609 cpu_to_le16(IEEE80211_FTYPE_EXT | IEEE80211_STYPE_S1G_BEACON) &&
610 fc & cpu_to_le16(IEEE80211_S1G_BCN_NEXT_TBTT);
614 * ieee80211_is_s1g_short_beacon - check if next tbtt present bit is set. Only
615 * true for S1G beacons when they're short.
616 * @fc: frame control bytes in little-endian byteorder
618 static inline bool ieee80211_is_s1g_short_beacon(__le16 fc)
620 return ieee80211_is_s1g_beacon(fc) && ieee80211_next_tbtt_present(fc);
624 * ieee80211_is_atim - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_ATIM
625 * @fc: frame control bytes in little-endian byteorder
627 static inline bool ieee80211_is_atim(__le16 fc)
629 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
630 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ATIM);
634 * ieee80211_is_disassoc - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_DISASSOC
635 * @fc: frame control bytes in little-endian byteorder
637 static inline bool ieee80211_is_disassoc(__le16 fc)
639 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
640 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_DISASSOC);
644 * ieee80211_is_auth - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_AUTH
645 * @fc: frame control bytes in little-endian byteorder
647 static inline bool ieee80211_is_auth(__le16 fc)
649 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
650 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_AUTH);
654 * ieee80211_is_deauth - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_DEAUTH
655 * @fc: frame control bytes in little-endian byteorder
657 static inline bool ieee80211_is_deauth(__le16 fc)
659 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
660 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_DEAUTH);
664 * ieee80211_is_action - check if IEEE80211_FTYPE_MGMT && IEEE80211_STYPE_ACTION
665 * @fc: frame control bytes in little-endian byteorder
667 static inline bool ieee80211_is_action(__le16 fc)
669 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
670 cpu_to_le16(IEEE80211_FTYPE_MGMT | IEEE80211_STYPE_ACTION);
674 * ieee80211_is_back_req - check if IEEE80211_FTYPE_CTL && IEEE80211_STYPE_BACK_REQ
675 * @fc: frame control bytes in little-endian byteorder
677 static inline bool ieee80211_is_back_req(__le16 fc)
679 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
680 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_BACK_REQ);
684 * ieee80211_is_back - check if IEEE80211_FTYPE_CTL && IEEE80211_STYPE_BACK
685 * @fc: frame control bytes in little-endian byteorder
687 static inline bool ieee80211_is_back(__le16 fc)
689 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
690 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_BACK);
694 * ieee80211_is_pspoll - check if IEEE80211_FTYPE_CTL && IEEE80211_STYPE_PSPOLL
695 * @fc: frame control bytes in little-endian byteorder
697 static inline bool ieee80211_is_pspoll(__le16 fc)
699 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
700 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_PSPOLL);
704 * ieee80211_is_rts - check if IEEE80211_FTYPE_CTL && IEEE80211_STYPE_RTS
705 * @fc: frame control bytes in little-endian byteorder
707 static inline bool ieee80211_is_rts(__le16 fc)
709 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
710 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_RTS);
714 * ieee80211_is_cts - check if IEEE80211_FTYPE_CTL && IEEE80211_STYPE_CTS
715 * @fc: frame control bytes in little-endian byteorder
717 static inline bool ieee80211_is_cts(__le16 fc)
719 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
720 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_CTS);
724 * ieee80211_is_ack - check if IEEE80211_FTYPE_CTL && IEEE80211_STYPE_ACK
725 * @fc: frame control bytes in little-endian byteorder
727 static inline bool ieee80211_is_ack(__le16 fc)
729 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
730 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_ACK);
734 * ieee80211_is_cfend - check if IEEE80211_FTYPE_CTL && IEEE80211_STYPE_CFEND
735 * @fc: frame control bytes in little-endian byteorder
737 static inline bool ieee80211_is_cfend(__le16 fc)
739 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
740 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_CFEND);
744 * ieee80211_is_cfendack - check if IEEE80211_FTYPE_CTL && IEEE80211_STYPE_CFENDACK
745 * @fc: frame control bytes in little-endian byteorder
747 static inline bool ieee80211_is_cfendack(__le16 fc)
749 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
750 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_CFENDACK);
754 * ieee80211_is_nullfunc - check if frame is a regular (non-QoS) nullfunc frame
755 * @fc: frame control bytes in little-endian byteorder
757 static inline bool ieee80211_is_nullfunc(__le16 fc)
759 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
760 cpu_to_le16(IEEE80211_FTYPE_DATA | IEEE80211_STYPE_NULLFUNC);
764 * ieee80211_is_qos_nullfunc - check if frame is a QoS nullfunc frame
765 * @fc: frame control bytes in little-endian byteorder
767 static inline bool ieee80211_is_qos_nullfunc(__le16 fc)
769 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
770 cpu_to_le16(IEEE80211_FTYPE_DATA | IEEE80211_STYPE_QOS_NULLFUNC);
774 * ieee80211_is_trigger - check if frame is trigger frame
775 * @fc: frame control field in little-endian byteorder
777 static inline bool ieee80211_is_trigger(__le16 fc)
779 return (fc & cpu_to_le16(IEEE80211_FCTL_FTYPE | IEEE80211_FCTL_STYPE)) ==
780 cpu_to_le16(IEEE80211_FTYPE_CTL | IEEE80211_STYPE_TRIGGER);
784 * ieee80211_is_any_nullfunc - check if frame is regular or QoS nullfunc frame
785 * @fc: frame control bytes in little-endian byteorder
787 static inline bool ieee80211_is_any_nullfunc(__le16 fc)
789 return (ieee80211_is_nullfunc(fc) || ieee80211_is_qos_nullfunc(fc));
793 * ieee80211_is_first_frag - check if IEEE80211_SCTL_FRAG is not set
794 * @seq_ctrl: frame sequence control bytes in little-endian byteorder
796 static inline bool ieee80211_is_first_frag(__le16 seq_ctrl)
798 return (seq_ctrl & cpu_to_le16(IEEE80211_SCTL_FRAG)) == 0;
802 * ieee80211_is_frag - check if a frame is a fragment
803 * @hdr: 802.11 header of the frame
805 static inline bool ieee80211_is_frag(struct ieee80211_hdr *hdr)
807 return ieee80211_has_morefrags(hdr->frame_control) ||
808 hdr->seq_ctrl & cpu_to_le16(IEEE80211_SCTL_FRAG);
811 struct ieee80211s_hdr {
817 } __packed __aligned(2);
820 #define MESH_FLAGS_AE_A4 0x1
821 #define MESH_FLAGS_AE_A5_A6 0x2
822 #define MESH_FLAGS_AE 0x3
823 #define MESH_FLAGS_PS_DEEP 0x4
826 * enum ieee80211_preq_flags - mesh PREQ element flags
828 * @IEEE80211_PREQ_PROACTIVE_PREP_FLAG: proactive PREP subfield
830 enum ieee80211_preq_flags {
831 IEEE80211_PREQ_PROACTIVE_PREP_FLAG = 1<<2,
835 * enum ieee80211_preq_target_flags - mesh PREQ element per target flags
837 * @IEEE80211_PREQ_TO_FLAG: target only subfield
838 * @IEEE80211_PREQ_USN_FLAG: unknown target HWMP sequence number subfield
840 enum ieee80211_preq_target_flags {
841 IEEE80211_PREQ_TO_FLAG = 1<<0,
842 IEEE80211_PREQ_USN_FLAG = 1<<2,
846 * struct ieee80211_quiet_ie - Quiet element
847 * @count: Quiet Count
848 * @period: Quiet Period
849 * @duration: Quiet Duration
850 * @offset: Quiet Offset
852 * This structure represents the payload of the "Quiet element" as
853 * described in IEEE Std 802.11-2020 section 9.4.2.22.
855 struct ieee80211_quiet_ie {
863 * struct ieee80211_msrment_ie - Measurement element
864 * @token: Measurement Token
865 * @mode: Measurement Report Mode
866 * @type: Measurement Type
867 * @request: Measurement Request or Measurement Report
869 * This structure represents the payload of both the "Measurement
870 * Request element" and the "Measurement Report element" as described
871 * in IEEE Std 802.11-2020 sections 9.4.2.20 and 9.4.2.21.
873 struct ieee80211_msrment_ie {
881 * struct ieee80211_channel_sw_ie - Channel Switch Announcement element
882 * @mode: Channel Switch Mode
883 * @new_ch_num: New Channel Number
884 * @count: Channel Switch Count
886 * This structure represents the payload of the "Channel Switch
887 * Announcement element" as described in IEEE Std 802.11-2020 section
890 struct ieee80211_channel_sw_ie {
897 * struct ieee80211_ext_chansw_ie - Extended Channel Switch Announcement element
898 * @mode: Channel Switch Mode
899 * @new_operating_class: New Operating Class
900 * @new_ch_num: New Channel Number
901 * @count: Channel Switch Count
903 * This structure represents the "Extended Channel Switch Announcement
904 * element" as described in IEEE Std 802.11-2020 section 9.4.2.52.
906 struct ieee80211_ext_chansw_ie {
908 u8 new_operating_class;
914 * struct ieee80211_sec_chan_offs_ie - secondary channel offset IE
915 * @sec_chan_offs: secondary channel offset, uses IEEE80211_HT_PARAM_CHA_SEC_*
917 * This structure represents the "Secondary Channel Offset element"
919 struct ieee80211_sec_chan_offs_ie {
924 * struct ieee80211_mesh_chansw_params_ie - mesh channel switch parameters IE
925 * @mesh_ttl: Time To Live
927 * @mesh_reason: Reason Code
928 * @mesh_pre_value: Precedence Value
930 * This structure represents the payload of the "Mesh Channel Switch
931 * Parameters element" as described in IEEE Std 802.11-2020 section
934 struct ieee80211_mesh_chansw_params_ie {
938 __le16 mesh_pre_value;
942 * struct ieee80211_wide_bw_chansw_ie - wide bandwidth channel switch IE
943 * @new_channel_width: New Channel Width
944 * @new_center_freq_seg0: New Channel Center Frequency Segment 0
945 * @new_center_freq_seg1: New Channel Center Frequency Segment 1
947 * This structure represents the payload of the "Wide Bandwidth
948 * Channel Switch element" as described in IEEE Std 802.11-2020
951 struct ieee80211_wide_bw_chansw_ie {
952 u8 new_channel_width;
953 u8 new_center_freq_seg0, new_center_freq_seg1;
957 * struct ieee80211_tim_ie - Traffic Indication Map information element
958 * @dtim_count: DTIM Count
959 * @dtim_period: DTIM Period
960 * @bitmap_ctrl: Bitmap Control
961 * @required_octet: "Syntatic sugar" to force the struct size to the
962 * minimum valid size when carried in a non-S1G PPDU
963 * @virtual_map: Partial Virtual Bitmap
965 * This structure represents the payload of the "TIM element" as
966 * described in IEEE Std 802.11-2020 section 9.4.2.5. Note that this
967 * definition is only applicable when the element is carried in a
968 * non-S1G PPDU. When the TIM is carried in an S1G PPDU, the Bitmap
969 * Control and Partial Virtual Bitmap may not be present.
971 struct ieee80211_tim_ie {
977 DECLARE_FLEX_ARRAY(u8, virtual_map);
982 * struct ieee80211_meshconf_ie - Mesh Configuration element
983 * @meshconf_psel: Active Path Selection Protocol Identifier
984 * @meshconf_pmetric: Active Path Selection Metric Identifier
985 * @meshconf_congest: Congestion Control Mode Identifier
986 * @meshconf_synch: Synchronization Method Identifier
987 * @meshconf_auth: Authentication Protocol Identifier
988 * @meshconf_form: Mesh Formation Info
989 * @meshconf_cap: Mesh Capability (see &enum mesh_config_capab_flags)
991 * This structure represents the payload of the "Mesh Configuration
992 * element" as described in IEEE Std 802.11-2020 section 9.4.2.97.
994 struct ieee80211_meshconf_ie {
1005 * enum mesh_config_capab_flags - Mesh Configuration IE capability field flags
1007 * @IEEE80211_MESHCONF_CAPAB_ACCEPT_PLINKS: STA is willing to establish
1008 * additional mesh peerings with other mesh STAs
1009 * @IEEE80211_MESHCONF_CAPAB_FORWARDING: the STA forwards MSDUs
1010 * @IEEE80211_MESHCONF_CAPAB_TBTT_ADJUSTING: TBTT adjustment procedure
1012 * @IEEE80211_MESHCONF_CAPAB_POWER_SAVE_LEVEL: STA is in deep sleep mode or has
1013 * neighbors in deep sleep mode
1015 * Enumerates the "Mesh Capability" as described in IEEE Std
1016 * 802.11-2020 section 9.4.2.97.7.
1018 enum mesh_config_capab_flags {
1019 IEEE80211_MESHCONF_CAPAB_ACCEPT_PLINKS = 0x01,
1020 IEEE80211_MESHCONF_CAPAB_FORWARDING = 0x08,
1021 IEEE80211_MESHCONF_CAPAB_TBTT_ADJUSTING = 0x20,
1022 IEEE80211_MESHCONF_CAPAB_POWER_SAVE_LEVEL = 0x40,
1025 #define IEEE80211_MESHCONF_FORM_CONNECTED_TO_GATE 0x1
1028 * mesh channel switch parameters element's flag indicator
1031 #define WLAN_EID_CHAN_SWITCH_PARAM_TX_RESTRICT BIT(0)
1032 #define WLAN_EID_CHAN_SWITCH_PARAM_INITIATOR BIT(1)
1033 #define WLAN_EID_CHAN_SWITCH_PARAM_REASON BIT(2)
1036 * struct ieee80211_rann_ie - RANN (root announcement) element
1037 * @rann_flags: Flags
1038 * @rann_hopcount: Hop Count
1039 * @rann_ttl: Element TTL
1040 * @rann_addr: Root Mesh STA Address
1041 * @rann_seq: HWMP Sequence Number
1042 * @rann_interval: Interval
1043 * @rann_metric: Metric
1045 * This structure represents the payload of the "RANN element" as
1046 * described in IEEE Std 802.11-2020 section 9.4.2.111.
1048 struct ieee80211_rann_ie {
1052 u8 rann_addr[ETH_ALEN];
1054 __le32 rann_interval;
1058 enum ieee80211_rann_flags {
1059 RANN_FLAG_IS_GATE = 1 << 0,
1062 enum ieee80211_ht_chanwidth_values {
1063 IEEE80211_HT_CHANWIDTH_20MHZ = 0,
1064 IEEE80211_HT_CHANWIDTH_ANY = 1,
1068 * enum ieee80211_vht_opmode_bits - VHT operating mode field bits
1069 * @IEEE80211_OPMODE_NOTIF_CHANWIDTH_MASK: channel width mask
1070 * @IEEE80211_OPMODE_NOTIF_CHANWIDTH_20MHZ: 20 MHz channel width
1071 * @IEEE80211_OPMODE_NOTIF_CHANWIDTH_40MHZ: 40 MHz channel width
1072 * @IEEE80211_OPMODE_NOTIF_CHANWIDTH_80MHZ: 80 MHz channel width
1073 * @IEEE80211_OPMODE_NOTIF_CHANWIDTH_160MHZ: 160 MHz or 80+80 MHz channel width
1074 * @IEEE80211_OPMODE_NOTIF_BW_160_80P80: 160 / 80+80 MHz indicator flag
1075 * @IEEE80211_OPMODE_NOTIF_RX_NSS_MASK: number of spatial streams mask
1076 * (the NSS value is the value of this field + 1)
1077 * @IEEE80211_OPMODE_NOTIF_RX_NSS_SHIFT: number of spatial streams shift
1078 * @IEEE80211_OPMODE_NOTIF_RX_NSS_TYPE_BF: indicates streams in SU-MIMO PPDU
1079 * using a beamforming steering matrix
1081 enum ieee80211_vht_opmode_bits {
1082 IEEE80211_OPMODE_NOTIF_CHANWIDTH_MASK = 0x03,
1083 IEEE80211_OPMODE_NOTIF_CHANWIDTH_20MHZ = 0,
1084 IEEE80211_OPMODE_NOTIF_CHANWIDTH_40MHZ = 1,
1085 IEEE80211_OPMODE_NOTIF_CHANWIDTH_80MHZ = 2,
1086 IEEE80211_OPMODE_NOTIF_CHANWIDTH_160MHZ = 3,
1087 IEEE80211_OPMODE_NOTIF_BW_160_80P80 = 0x04,
1088 IEEE80211_OPMODE_NOTIF_RX_NSS_MASK = 0x70,
1089 IEEE80211_OPMODE_NOTIF_RX_NSS_SHIFT = 4,
1090 IEEE80211_OPMODE_NOTIF_RX_NSS_TYPE_BF = 0x80,
1094 * enum ieee80211_s1g_chanwidth
1095 * These are defined in IEEE802.11-2016ah Table 10-20
1096 * as BSS Channel Width
1098 * @IEEE80211_S1G_CHANWIDTH_1MHZ: 1MHz operating channel
1099 * @IEEE80211_S1G_CHANWIDTH_2MHZ: 2MHz operating channel
1100 * @IEEE80211_S1G_CHANWIDTH_4MHZ: 4MHz operating channel
1101 * @IEEE80211_S1G_CHANWIDTH_8MHZ: 8MHz operating channel
1102 * @IEEE80211_S1G_CHANWIDTH_16MHZ: 16MHz operating channel
1104 enum ieee80211_s1g_chanwidth {
1105 IEEE80211_S1G_CHANWIDTH_1MHZ = 0,
1106 IEEE80211_S1G_CHANWIDTH_2MHZ = 1,
1107 IEEE80211_S1G_CHANWIDTH_4MHZ = 3,
1108 IEEE80211_S1G_CHANWIDTH_8MHZ = 7,
1109 IEEE80211_S1G_CHANWIDTH_16MHZ = 15,
1112 #define WLAN_SA_QUERY_TR_ID_LEN 2
1113 #define WLAN_MEMBERSHIP_LEN 8
1114 #define WLAN_USER_POSITION_LEN 16
1117 * struct ieee80211_tpc_report_ie - TPC Report element
1118 * @tx_power: Transmit Power
1119 * @link_margin: Link Margin
1121 * This structure represents the payload of the "TPC Report element" as
1122 * described in IEEE Std 802.11-2020 section 9.4.2.16.
1124 struct ieee80211_tpc_report_ie {
1129 #define IEEE80211_ADDBA_EXT_FRAG_LEVEL_MASK GENMASK(2, 1)
1130 #define IEEE80211_ADDBA_EXT_FRAG_LEVEL_SHIFT 1
1131 #define IEEE80211_ADDBA_EXT_NO_FRAG BIT(0)
1132 #define IEEE80211_ADDBA_EXT_BUF_SIZE_MASK GENMASK(7, 5)
1133 #define IEEE80211_ADDBA_EXT_BUF_SIZE_SHIFT 10
1135 struct ieee80211_addba_ext_ie {
1140 * struct ieee80211_s1g_bcn_compat_ie - S1G Beacon Compatibility element
1141 * @compat_info: Compatibility Information
1142 * @beacon_int: Beacon Interval
1143 * @tsf_completion: TSF Completion
1145 * This structure represents the payload of the "S1G Beacon
1146 * Compatibility element" as described in IEEE Std 802.11-2020 section
1149 struct ieee80211_s1g_bcn_compat_ie {
1152 __le32 tsf_completion;
1156 * struct ieee80211_s1g_oper_ie - S1G Operation element
1157 * @ch_width: S1G Operation Information Channel Width
1158 * @oper_class: S1G Operation Information Operating Class
1159 * @primary_ch: S1G Operation Information Primary Channel Number
1160 * @oper_ch: S1G Operation Information Channel Center Frequency
1161 * @basic_mcs_nss: Basic S1G-MCS and NSS Set
1163 * This structure represents the payload of the "S1G Operation
1164 * element" as described in IEEE Std 802.11-2020 section 9.4.2.212.
1166 struct ieee80211_s1g_oper_ie {
1171 __le16 basic_mcs_nss;
1175 * struct ieee80211_aid_response_ie - AID Response element
1176 * @aid: AID/Group AID
1177 * @switch_count: AID Switch Count
1178 * @response_int: AID Response Interval
1180 * This structure represents the payload of the "AID Response element"
1181 * as described in IEEE Std 802.11-2020 section 9.4.2.194.
1183 struct ieee80211_aid_response_ie {
1186 __le16 response_int;
1189 struct ieee80211_s1g_cap {
1194 struct ieee80211_ext {
1195 __le16 frame_control;
1203 } __packed s1g_beacon;
1210 } __packed s1g_short_beacon;
1212 } __packed __aligned(2);
1214 #define IEEE80211_TWT_CONTROL_NDP BIT(0)
1215 #define IEEE80211_TWT_CONTROL_RESP_MODE BIT(1)
1216 #define IEEE80211_TWT_CONTROL_NEG_TYPE_BROADCAST BIT(3)
1217 #define IEEE80211_TWT_CONTROL_RX_DISABLED BIT(4)
1218 #define IEEE80211_TWT_CONTROL_WAKE_DUR_UNIT BIT(5)
1220 #define IEEE80211_TWT_REQTYPE_REQUEST BIT(0)
1221 #define IEEE80211_TWT_REQTYPE_SETUP_CMD GENMASK(3, 1)
1222 #define IEEE80211_TWT_REQTYPE_TRIGGER BIT(4)
1223 #define IEEE80211_TWT_REQTYPE_IMPLICIT BIT(5)
1224 #define IEEE80211_TWT_REQTYPE_FLOWTYPE BIT(6)
1225 #define IEEE80211_TWT_REQTYPE_FLOWID GENMASK(9, 7)
1226 #define IEEE80211_TWT_REQTYPE_WAKE_INT_EXP GENMASK(14, 10)
1227 #define IEEE80211_TWT_REQTYPE_PROTECTION BIT(15)
1229 enum ieee80211_twt_setup_cmd {
1230 TWT_SETUP_CMD_REQUEST,
1231 TWT_SETUP_CMD_SUGGEST,
1232 TWT_SETUP_CMD_DEMAND,
1233 TWT_SETUP_CMD_GROUPING,
1234 TWT_SETUP_CMD_ACCEPT,
1235 TWT_SETUP_CMD_ALTERNATE,
1236 TWT_SETUP_CMD_DICTATE,
1237 TWT_SETUP_CMD_REJECT,
1240 struct ieee80211_twt_params {
1248 struct ieee80211_twt_setup {
1256 #define IEEE80211_TTLM_MAX_CNT 2
1257 #define IEEE80211_TTLM_CONTROL_DIRECTION 0x03
1258 #define IEEE80211_TTLM_CONTROL_DEF_LINK_MAP 0x04
1259 #define IEEE80211_TTLM_CONTROL_SWITCH_TIME_PRESENT 0x08
1260 #define IEEE80211_TTLM_CONTROL_EXPECTED_DUR_PRESENT 0x10
1261 #define IEEE80211_TTLM_CONTROL_LINK_MAP_SIZE 0x20
1263 #define IEEE80211_TTLM_DIRECTION_DOWN 0
1264 #define IEEE80211_TTLM_DIRECTION_UP 1
1265 #define IEEE80211_TTLM_DIRECTION_BOTH 2
1268 * struct ieee80211_ttlm_elem - TID-To-Link Mapping element
1270 * Defined in section 9.4.2.314 in P802.11be_D4
1272 * @control: the first part of control field
1273 * @optional: the second part of control field
1275 struct ieee80211_ttlm_elem {
1280 struct ieee80211_mgmt {
1281 __le16 frame_control;
1290 __le16 auth_transaction;
1292 /* possibly followed by Challenge text */
1300 __le16 listen_interval;
1301 /* followed by SSID and Supported rates */
1303 } __packed assoc_req;
1308 /* followed by Supported rates */
1310 } __packed assoc_resp, reassoc_resp;
1315 } __packed s1g_assoc_resp, s1g_reassoc_resp;
1318 __le16 listen_interval;
1319 u8 current_ap[ETH_ALEN];
1320 /* followed by SSID and Supported rates */
1322 } __packed reassoc_req;
1325 } __packed disassoc;
1330 /* followed by some of SSID, Supported rates,
1331 * FH Params, DS Params, CF Params, IBSS Params, TIM */
1335 /* only variable items: SSID, Supported rates */
1336 DECLARE_FLEX_ARRAY(u8, variable);
1337 } __packed probe_req;
1342 /* followed by some of SSID, Supported rates,
1343 * FH Params, DS Params, CF Params, IBSS Params */
1345 } __packed probe_resp;
1354 } __packed wme_action;
1358 } __packed chan_switch;
1361 struct ieee80211_ext_chansw_ie data;
1363 } __packed ext_chan_switch;
1369 struct ieee80211_msrment_ie msr_elem;
1370 } __packed measurement;
1376 __le16 start_seq_num;
1377 /* followed by BA Extension */
1379 } __packed addba_req;
1386 } __packed addba_resp;
1395 } __packed self_prot;
1399 } __packed mesh_action;
1402 u8 trans_id[WLAN_SA_QUERY_TR_ID_LEN];
1403 } __packed sa_query;
1411 } __packed ht_notify_cw;
1417 } __packed tdls_discover_resp;
1421 } __packed vht_opmode_notif;
1424 u8 membership[WLAN_MEMBERSHIP_LEN];
1425 u8 position[WLAN_USER_POSITION_LEN];
1426 } __packed vht_group_notif;
1432 struct ieee80211_tpc_report_ie tpc;
1433 } __packed tpc_report;
1456 } __packed wnm_timing_msr;
1459 DECLARE_FLEX_ARRAY(u8, body); /* Generic frame body */
1461 } __packed __aligned(2);
1463 /* Supported rates membership selectors */
1464 #define BSS_MEMBERSHIP_SELECTOR_HT_PHY 127
1465 #define BSS_MEMBERSHIP_SELECTOR_VHT_PHY 126
1466 #define BSS_MEMBERSHIP_SELECTOR_GLK 125
1467 #define BSS_MEMBERSHIP_SELECTOR_EPS 124
1468 #define BSS_MEMBERSHIP_SELECTOR_SAE_H2E 123
1469 #define BSS_MEMBERSHIP_SELECTOR_HE_PHY 122
1470 #define BSS_MEMBERSHIP_SELECTOR_EHT_PHY 121
1472 /* mgmt header + 1 byte category code */
1473 #define IEEE80211_MIN_ACTION_SIZE offsetof(struct ieee80211_mgmt, u.action.u)
1476 /* Management MIC information element (IEEE 802.11w) */
1477 struct ieee80211_mmie {
1481 u8 sequence_number[6];
1485 /* Management MIC information element (IEEE 802.11w) for GMAC and CMAC-256 */
1486 struct ieee80211_mmie_16 {
1490 u8 sequence_number[6];
1494 struct ieee80211_vendor_ie {
1501 struct ieee80211_wmm_ac_param {
1502 u8 aci_aifsn; /* AIFSN, ACM, ACI */
1503 u8 cw; /* ECWmin, ECWmax (CW = 2^ECW - 1) */
1507 struct ieee80211_wmm_param_ie {
1508 u8 element_id; /* Element ID: 221 (0xdd); */
1509 u8 len; /* Length: 24 */
1510 /* required fields for WMM version 1 */
1511 u8 oui[3]; /* 00:50:f2 */
1512 u8 oui_type; /* 2 */
1513 u8 oui_subtype; /* 1 */
1514 u8 version; /* 1 for WMM version 1.0 */
1515 u8 qos_info; /* AP/STA specific QoS info */
1516 u8 reserved; /* 0 */
1517 /* AC_BE, AC_BK, AC_VI, AC_VO */
1518 struct ieee80211_wmm_ac_param ac[4];
1521 /* Control frames */
1522 struct ieee80211_rts {
1523 __le16 frame_control;
1527 } __packed __aligned(2);
1529 struct ieee80211_cts {
1530 __le16 frame_control;
1533 } __packed __aligned(2);
1535 struct ieee80211_pspoll {
1536 __le16 frame_control;
1540 } __packed __aligned(2);
1544 /* Channel switch timing */
1545 struct ieee80211_ch_switch_timing {
1547 __le16 switch_timeout;
1550 /* Link-id information element */
1551 struct ieee80211_tdls_lnkie {
1552 u8 ie_type; /* Link Identifier IE */
1555 u8 init_sta[ETH_ALEN];
1556 u8 resp_sta[ETH_ALEN];
1559 struct ieee80211_tdls_data {
1571 } __packed setup_req;
1577 } __packed setup_resp;
1582 } __packed setup_cfm;
1586 } __packed teardown;
1590 } __packed discover_req;
1595 } __packed chan_switch_req;
1599 } __packed chan_switch_resp;
1604 * Peer-to-Peer IE attribute related definitions.
1607 * enum ieee80211_p2p_attr_id - identifies type of peer-to-peer attribute.
1609 enum ieee80211_p2p_attr_id {
1610 IEEE80211_P2P_ATTR_STATUS = 0,
1611 IEEE80211_P2P_ATTR_MINOR_REASON,
1612 IEEE80211_P2P_ATTR_CAPABILITY,
1613 IEEE80211_P2P_ATTR_DEVICE_ID,
1614 IEEE80211_P2P_ATTR_GO_INTENT,
1615 IEEE80211_P2P_ATTR_GO_CONFIG_TIMEOUT,
1616 IEEE80211_P2P_ATTR_LISTEN_CHANNEL,
1617 IEEE80211_P2P_ATTR_GROUP_BSSID,
1618 IEEE80211_P2P_ATTR_EXT_LISTEN_TIMING,
1619 IEEE80211_P2P_ATTR_INTENDED_IFACE_ADDR,
1620 IEEE80211_P2P_ATTR_MANAGABILITY,
1621 IEEE80211_P2P_ATTR_CHANNEL_LIST,
1622 IEEE80211_P2P_ATTR_ABSENCE_NOTICE,
1623 IEEE80211_P2P_ATTR_DEVICE_INFO,
1624 IEEE80211_P2P_ATTR_GROUP_INFO,
1625 IEEE80211_P2P_ATTR_GROUP_ID,
1626 IEEE80211_P2P_ATTR_INTERFACE,
1627 IEEE80211_P2P_ATTR_OPER_CHANNEL,
1628 IEEE80211_P2P_ATTR_INVITE_FLAGS,
1629 /* 19 - 220: Reserved */
1630 IEEE80211_P2P_ATTR_VENDOR_SPECIFIC = 221,
1632 IEEE80211_P2P_ATTR_MAX
1635 /* Notice of Absence attribute - described in P2P spec 4.1.14 */
1636 /* Typical max value used here */
1637 #define IEEE80211_P2P_NOA_DESC_MAX 4
1639 struct ieee80211_p2p_noa_desc {
1646 struct ieee80211_p2p_noa_attr {
1649 struct ieee80211_p2p_noa_desc desc[IEEE80211_P2P_NOA_DESC_MAX];
1652 #define IEEE80211_P2P_OPPPS_ENABLE_BIT BIT(7)
1653 #define IEEE80211_P2P_OPPPS_CTWINDOW_MASK 0x7F
1656 * struct ieee80211_bar - Block Ack Request frame format
1657 * @frame_control: Frame Control
1658 * @duration: Duration
1661 * @control: BAR Control
1662 * @start_seq_num: Starting Sequence Number (see Figure 9-37)
1664 * This structure represents the "BlockAckReq frame format"
1665 * as described in IEEE Std 802.11-2020 section 9.3.1.7.
1667 struct ieee80211_bar {
1668 __le16 frame_control;
1673 __le16 start_seq_num;
1676 /* 802.11 BAR control masks */
1677 #define IEEE80211_BAR_CTRL_ACK_POLICY_NORMAL 0x0000
1678 #define IEEE80211_BAR_CTRL_MULTI_TID 0x0002
1679 #define IEEE80211_BAR_CTRL_CBMTID_COMPRESSED_BA 0x0004
1680 #define IEEE80211_BAR_CTRL_TID_INFO_MASK 0xf000
1681 #define IEEE80211_BAR_CTRL_TID_INFO_SHIFT 12
1683 #define IEEE80211_HT_MCS_MASK_LEN 10
1686 * struct ieee80211_mcs_info - Supported MCS Set field
1688 * @rx_highest: highest supported RX rate. If set represents
1689 * the highest supported RX data rate in units of 1 Mbps.
1690 * If this field is 0 this value should not be used to
1691 * consider the highest RX data rate supported.
1692 * @tx_params: TX parameters
1693 * @reserved: Reserved bits
1695 * This structure represents the "Supported MCS Set field" as
1696 * described in IEEE Std 802.11-2020 section 9.4.2.55.4.
1698 struct ieee80211_mcs_info {
1699 u8 rx_mask[IEEE80211_HT_MCS_MASK_LEN];
1705 /* 802.11n HT capability MSC set */
1706 #define IEEE80211_HT_MCS_RX_HIGHEST_MASK 0x3ff
1707 #define IEEE80211_HT_MCS_TX_DEFINED 0x01
1708 #define IEEE80211_HT_MCS_TX_RX_DIFF 0x02
1709 /* value 0 == 1 stream etc */
1710 #define IEEE80211_HT_MCS_TX_MAX_STREAMS_MASK 0x0C
1711 #define IEEE80211_HT_MCS_TX_MAX_STREAMS_SHIFT 2
1712 #define IEEE80211_HT_MCS_TX_MAX_STREAMS 4
1713 #define IEEE80211_HT_MCS_TX_UNEQUAL_MODULATION 0x10
1715 #define IEEE80211_HT_MCS_CHAINS(mcs) ((mcs) == 32 ? 1 : (1 + ((mcs) >> 3)))
1718 * 802.11n D5.0 20.3.5 / 20.6 says:
1719 * - indices 0 to 7 and 32 are single spatial stream
1720 * - 8 to 31 are multiple spatial streams using equal modulation
1721 * [8..15 for two streams, 16..23 for three and 24..31 for four]
1722 * - remainder are multiple spatial streams using unequal modulation
1724 #define IEEE80211_HT_MCS_UNEQUAL_MODULATION_START 33
1725 #define IEEE80211_HT_MCS_UNEQUAL_MODULATION_START_BYTE \
1726 (IEEE80211_HT_MCS_UNEQUAL_MODULATION_START / 8)
1729 * struct ieee80211_ht_cap - HT capabilities element
1730 * @cap_info: HT Capability Information
1731 * @ampdu_params_info: A-MPDU Parameters
1732 * @mcs: Supported MCS Set
1733 * @extended_ht_cap_info: HT Extended Capabilities
1734 * @tx_BF_cap_info: Transmit Beamforming Capabilities
1735 * @antenna_selection_info: ASEL Capability
1737 * This structure represents the payload of the "HT Capabilities
1738 * element" as described in IEEE Std 802.11-2020 section 9.4.2.55.
1740 struct ieee80211_ht_cap {
1742 u8 ampdu_params_info;
1744 /* 16 bytes MCS information */
1745 struct ieee80211_mcs_info mcs;
1747 __le16 extended_ht_cap_info;
1748 __le32 tx_BF_cap_info;
1749 u8 antenna_selection_info;
1752 /* 802.11n HT capabilities masks (for cap_info) */
1753 #define IEEE80211_HT_CAP_LDPC_CODING 0x0001
1754 #define IEEE80211_HT_CAP_SUP_WIDTH_20_40 0x0002
1755 #define IEEE80211_HT_CAP_SM_PS 0x000C
1756 #define IEEE80211_HT_CAP_SM_PS_SHIFT 2
1757 #define IEEE80211_HT_CAP_GRN_FLD 0x0010
1758 #define IEEE80211_HT_CAP_SGI_20 0x0020
1759 #define IEEE80211_HT_CAP_SGI_40 0x0040
1760 #define IEEE80211_HT_CAP_TX_STBC 0x0080
1761 #define IEEE80211_HT_CAP_RX_STBC 0x0300
1762 #define IEEE80211_HT_CAP_RX_STBC_SHIFT 8
1763 #define IEEE80211_HT_CAP_DELAY_BA 0x0400
1764 #define IEEE80211_HT_CAP_MAX_AMSDU 0x0800
1765 #define IEEE80211_HT_CAP_DSSSCCK40 0x1000
1766 #define IEEE80211_HT_CAP_RESERVED 0x2000
1767 #define IEEE80211_HT_CAP_40MHZ_INTOLERANT 0x4000
1768 #define IEEE80211_HT_CAP_LSIG_TXOP_PROT 0x8000
1770 /* 802.11n HT extended capabilities masks (for extended_ht_cap_info) */
1771 #define IEEE80211_HT_EXT_CAP_PCO 0x0001
1772 #define IEEE80211_HT_EXT_CAP_PCO_TIME 0x0006
1773 #define IEEE80211_HT_EXT_CAP_PCO_TIME_SHIFT 1
1774 #define IEEE80211_HT_EXT_CAP_MCS_FB 0x0300
1775 #define IEEE80211_HT_EXT_CAP_MCS_FB_SHIFT 8
1776 #define IEEE80211_HT_EXT_CAP_HTC_SUP 0x0400
1777 #define IEEE80211_HT_EXT_CAP_RD_RESPONDER 0x0800
1779 /* 802.11n HT capability AMPDU settings (for ampdu_params_info) */
1780 #define IEEE80211_HT_AMPDU_PARM_FACTOR 0x03
1781 #define IEEE80211_HT_AMPDU_PARM_DENSITY 0x1C
1782 #define IEEE80211_HT_AMPDU_PARM_DENSITY_SHIFT 2
1785 * Maximum length of AMPDU that the STA can receive in high-throughput (HT).
1786 * Length = 2 ^ (13 + max_ampdu_length_exp) - 1 (octets)
1788 enum ieee80211_max_ampdu_length_exp {
1789 IEEE80211_HT_MAX_AMPDU_8K = 0,
1790 IEEE80211_HT_MAX_AMPDU_16K = 1,
1791 IEEE80211_HT_MAX_AMPDU_32K = 2,
1792 IEEE80211_HT_MAX_AMPDU_64K = 3
1796 * Maximum length of AMPDU that the STA can receive in VHT.
1797 * Length = 2 ^ (13 + max_ampdu_length_exp) - 1 (octets)
1799 enum ieee80211_vht_max_ampdu_length_exp {
1800 IEEE80211_VHT_MAX_AMPDU_8K = 0,
1801 IEEE80211_VHT_MAX_AMPDU_16K = 1,
1802 IEEE80211_VHT_MAX_AMPDU_32K = 2,
1803 IEEE80211_VHT_MAX_AMPDU_64K = 3,
1804 IEEE80211_VHT_MAX_AMPDU_128K = 4,
1805 IEEE80211_VHT_MAX_AMPDU_256K = 5,
1806 IEEE80211_VHT_MAX_AMPDU_512K = 6,
1807 IEEE80211_VHT_MAX_AMPDU_1024K = 7
1810 #define IEEE80211_HT_MAX_AMPDU_FACTOR 13
1812 /* Minimum MPDU start spacing */
1813 enum ieee80211_min_mpdu_spacing {
1814 IEEE80211_HT_MPDU_DENSITY_NONE = 0, /* No restriction */
1815 IEEE80211_HT_MPDU_DENSITY_0_25 = 1, /* 1/4 usec */
1816 IEEE80211_HT_MPDU_DENSITY_0_5 = 2, /* 1/2 usec */
1817 IEEE80211_HT_MPDU_DENSITY_1 = 3, /* 1 usec */
1818 IEEE80211_HT_MPDU_DENSITY_2 = 4, /* 2 usec */
1819 IEEE80211_HT_MPDU_DENSITY_4 = 5, /* 4 usec */
1820 IEEE80211_HT_MPDU_DENSITY_8 = 6, /* 8 usec */
1821 IEEE80211_HT_MPDU_DENSITY_16 = 7 /* 16 usec */
1825 * struct ieee80211_ht_operation - HT operation IE
1826 * @primary_chan: Primary Channel
1827 * @ht_param: HT Operation Information parameters
1828 * @operation_mode: HT Operation Information operation mode
1829 * @stbc_param: HT Operation Information STBC params
1830 * @basic_set: Basic HT-MCS Set
1832 * This structure represents the payload of the "HT Operation
1833 * element" as described in IEEE Std 802.11-2020 section 9.4.2.56.
1835 struct ieee80211_ht_operation {
1838 __le16 operation_mode;
1844 #define IEEE80211_HT_PARAM_CHA_SEC_OFFSET 0x03
1845 #define IEEE80211_HT_PARAM_CHA_SEC_NONE 0x00
1846 #define IEEE80211_HT_PARAM_CHA_SEC_ABOVE 0x01
1847 #define IEEE80211_HT_PARAM_CHA_SEC_BELOW 0x03
1848 #define IEEE80211_HT_PARAM_CHAN_WIDTH_ANY 0x04
1849 #define IEEE80211_HT_PARAM_RIFS_MODE 0x08
1851 /* for operation_mode */
1852 #define IEEE80211_HT_OP_MODE_PROTECTION 0x0003
1853 #define IEEE80211_HT_OP_MODE_PROTECTION_NONE 0
1854 #define IEEE80211_HT_OP_MODE_PROTECTION_NONMEMBER 1
1855 #define IEEE80211_HT_OP_MODE_PROTECTION_20MHZ 2
1856 #define IEEE80211_HT_OP_MODE_PROTECTION_NONHT_MIXED 3
1857 #define IEEE80211_HT_OP_MODE_NON_GF_STA_PRSNT 0x0004
1858 #define IEEE80211_HT_OP_MODE_NON_HT_STA_PRSNT 0x0010
1859 #define IEEE80211_HT_OP_MODE_CCFS2_SHIFT 5
1860 #define IEEE80211_HT_OP_MODE_CCFS2_MASK 0x1fe0
1862 /* for stbc_param */
1863 #define IEEE80211_HT_STBC_PARAM_DUAL_BEACON 0x0040
1864 #define IEEE80211_HT_STBC_PARAM_DUAL_CTS_PROT 0x0080
1865 #define IEEE80211_HT_STBC_PARAM_STBC_BEACON 0x0100
1866 #define IEEE80211_HT_STBC_PARAM_LSIG_TXOP_FULLPROT 0x0200
1867 #define IEEE80211_HT_STBC_PARAM_PCO_ACTIVE 0x0400
1868 #define IEEE80211_HT_STBC_PARAM_PCO_PHASE 0x0800
1871 /* block-ack parameters */
1872 #define IEEE80211_ADDBA_PARAM_AMSDU_MASK 0x0001
1873 #define IEEE80211_ADDBA_PARAM_POLICY_MASK 0x0002
1874 #define IEEE80211_ADDBA_PARAM_TID_MASK 0x003C
1875 #define IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK 0xFFC0
1876 #define IEEE80211_DELBA_PARAM_TID_MASK 0xF000
1877 #define IEEE80211_DELBA_PARAM_INITIATOR_MASK 0x0800
1880 * A-MPDU buffer sizes
1881 * According to HT size varies from 8 to 64 frames
1882 * HE adds the ability to have up to 256 frames.
1883 * EHT adds the ability to have up to 1K frames.
1885 #define IEEE80211_MIN_AMPDU_BUF 0x8
1886 #define IEEE80211_MAX_AMPDU_BUF_HT 0x40
1887 #define IEEE80211_MAX_AMPDU_BUF_HE 0x100
1888 #define IEEE80211_MAX_AMPDU_BUF_EHT 0x400
1891 /* Spatial Multiplexing Power Save Modes (for capability) */
1892 #define WLAN_HT_CAP_SM_PS_STATIC 0
1893 #define WLAN_HT_CAP_SM_PS_DYNAMIC 1
1894 #define WLAN_HT_CAP_SM_PS_INVALID 2
1895 #define WLAN_HT_CAP_SM_PS_DISABLED 3
1897 /* for SM power control field lower two bits */
1898 #define WLAN_HT_SMPS_CONTROL_DISABLED 0
1899 #define WLAN_HT_SMPS_CONTROL_STATIC 1
1900 #define WLAN_HT_SMPS_CONTROL_DYNAMIC 3
1903 * struct ieee80211_vht_mcs_info - VHT MCS information
1904 * @rx_mcs_map: RX MCS map 2 bits for each stream, total 8 streams
1905 * @rx_highest: Indicates highest long GI VHT PPDU data rate
1906 * STA can receive. Rate expressed in units of 1 Mbps.
1907 * If this field is 0 this value should not be used to
1908 * consider the highest RX data rate supported.
1909 * The top 3 bits of this field indicate the Maximum NSTS,total
1910 * (a beamformee capability.)
1911 * @tx_mcs_map: TX MCS map 2 bits for each stream, total 8 streams
1912 * @tx_highest: Indicates highest long GI VHT PPDU data rate
1913 * STA can transmit. Rate expressed in units of 1 Mbps.
1914 * If this field is 0 this value should not be used to
1915 * consider the highest TX data rate supported.
1916 * The top 2 bits of this field are reserved, the
1917 * 3rd bit from the top indiciates VHT Extended NSS BW
1920 struct ieee80211_vht_mcs_info {
1927 /* for rx_highest */
1928 #define IEEE80211_VHT_MAX_NSTS_TOTAL_SHIFT 13
1929 #define IEEE80211_VHT_MAX_NSTS_TOTAL_MASK (7 << IEEE80211_VHT_MAX_NSTS_TOTAL_SHIFT)
1931 /* for tx_highest */
1932 #define IEEE80211_VHT_EXT_NSS_BW_CAPABLE (1 << 13)
1935 * enum ieee80211_vht_mcs_support - VHT MCS support definitions
1936 * @IEEE80211_VHT_MCS_SUPPORT_0_7: MCSes 0-7 are supported for the
1938 * @IEEE80211_VHT_MCS_SUPPORT_0_8: MCSes 0-8 are supported
1939 * @IEEE80211_VHT_MCS_SUPPORT_0_9: MCSes 0-9 are supported
1940 * @IEEE80211_VHT_MCS_NOT_SUPPORTED: This number of streams isn't supported
1942 * These definitions are used in each 2-bit subfield of the @rx_mcs_map
1943 * and @tx_mcs_map fields of &struct ieee80211_vht_mcs_info, which are
1944 * both split into 8 subfields by number of streams. These values indicate
1945 * which MCSes are supported for the number of streams the value appears
1948 enum ieee80211_vht_mcs_support {
1949 IEEE80211_VHT_MCS_SUPPORT_0_7 = 0,
1950 IEEE80211_VHT_MCS_SUPPORT_0_8 = 1,
1951 IEEE80211_VHT_MCS_SUPPORT_0_9 = 2,
1952 IEEE80211_VHT_MCS_NOT_SUPPORTED = 3,
1956 * struct ieee80211_vht_cap - VHT capabilities
1958 * This structure is the "VHT capabilities element" as
1959 * described in 802.11ac D3.0 8.4.2.160
1960 * @vht_cap_info: VHT capability info
1961 * @supp_mcs: VHT MCS supported rates
1963 struct ieee80211_vht_cap {
1964 __le32 vht_cap_info;
1965 struct ieee80211_vht_mcs_info supp_mcs;
1969 * enum ieee80211_vht_chanwidth - VHT channel width
1970 * @IEEE80211_VHT_CHANWIDTH_USE_HT: use the HT operation IE to
1971 * determine the channel width (20 or 40 MHz)
1972 * @IEEE80211_VHT_CHANWIDTH_80MHZ: 80 MHz bandwidth
1973 * @IEEE80211_VHT_CHANWIDTH_160MHZ: 160 MHz bandwidth
1974 * @IEEE80211_VHT_CHANWIDTH_80P80MHZ: 80+80 MHz bandwidth
1976 enum ieee80211_vht_chanwidth {
1977 IEEE80211_VHT_CHANWIDTH_USE_HT = 0,
1978 IEEE80211_VHT_CHANWIDTH_80MHZ = 1,
1979 IEEE80211_VHT_CHANWIDTH_160MHZ = 2,
1980 IEEE80211_VHT_CHANWIDTH_80P80MHZ = 3,
1984 * struct ieee80211_vht_operation - VHT operation IE
1986 * This structure is the "VHT operation element" as
1987 * described in 802.11ac D3.0 8.4.2.161
1988 * @chan_width: Operating channel width
1989 * @center_freq_seg0_idx: center freq segment 0 index
1990 * @center_freq_seg1_idx: center freq segment 1 index
1991 * @basic_mcs_set: VHT Basic MCS rate set
1993 struct ieee80211_vht_operation {
1995 u8 center_freq_seg0_idx;
1996 u8 center_freq_seg1_idx;
1997 __le16 basic_mcs_set;
2001 * struct ieee80211_he_cap_elem - HE capabilities element
2002 * @mac_cap_info: HE MAC Capabilities Information
2003 * @phy_cap_info: HE PHY Capabilities Information
2005 * This structure represents the fixed fields of the payload of the
2006 * "HE capabilities element" as described in IEEE Std 802.11ax-2021
2007 * sections 9.4.2.248.2 and 9.4.2.248.3.
2009 struct ieee80211_he_cap_elem {
2011 u8 phy_cap_info[11];
2014 #define IEEE80211_TX_RX_MCS_NSS_DESC_MAX_LEN 5
2017 * enum ieee80211_he_mcs_support - HE MCS support definitions
2018 * @IEEE80211_HE_MCS_SUPPORT_0_7: MCSes 0-7 are supported for the
2020 * @IEEE80211_HE_MCS_SUPPORT_0_9: MCSes 0-9 are supported
2021 * @IEEE80211_HE_MCS_SUPPORT_0_11: MCSes 0-11 are supported
2022 * @IEEE80211_HE_MCS_NOT_SUPPORTED: This number of streams isn't supported
2024 * These definitions are used in each 2-bit subfield of the rx_mcs_*
2025 * and tx_mcs_* fields of &struct ieee80211_he_mcs_nss_supp, which are
2026 * both split into 8 subfields by number of streams. These values indicate
2027 * which MCSes are supported for the number of streams the value appears
2030 enum ieee80211_he_mcs_support {
2031 IEEE80211_HE_MCS_SUPPORT_0_7 = 0,
2032 IEEE80211_HE_MCS_SUPPORT_0_9 = 1,
2033 IEEE80211_HE_MCS_SUPPORT_0_11 = 2,
2034 IEEE80211_HE_MCS_NOT_SUPPORTED = 3,
2038 * struct ieee80211_he_mcs_nss_supp - HE Tx/Rx HE MCS NSS Support Field
2040 * This structure holds the data required for the Tx/Rx HE MCS NSS Support Field
2041 * described in P802.11ax_D2.0 section 9.4.2.237.4
2043 * @rx_mcs_80: Rx MCS map 2 bits for each stream, total 8 streams, for channel
2044 * widths less than 80MHz.
2045 * @tx_mcs_80: Tx MCS map 2 bits for each stream, total 8 streams, for channel
2046 * widths less than 80MHz.
2047 * @rx_mcs_160: Rx MCS map 2 bits for each stream, total 8 streams, for channel
2049 * @tx_mcs_160: Tx MCS map 2 bits for each stream, total 8 streams, for channel
2051 * @rx_mcs_80p80: Rx MCS map 2 bits for each stream, total 8 streams, for
2052 * channel width 80p80MHz.
2053 * @tx_mcs_80p80: Tx MCS map 2 bits for each stream, total 8 streams, for
2054 * channel width 80p80MHz.
2056 struct ieee80211_he_mcs_nss_supp {
2061 __le16 rx_mcs_80p80;
2062 __le16 tx_mcs_80p80;
2066 * struct ieee80211_he_operation - HE Operation element
2067 * @he_oper_params: HE Operation Parameters + BSS Color Information
2068 * @he_mcs_nss_set: Basic HE-MCS And NSS Set
2069 * @optional: Optional fields VHT Operation Information, Max Co-Hosted
2070 * BSSID Indicator, and 6 GHz Operation Information
2072 * This structure represents the payload of the "HE Operation
2073 * element" as described in IEEE Std 802.11ax-2021 section 9.4.2.249.
2075 struct ieee80211_he_operation {
2076 __le32 he_oper_params;
2077 __le16 he_mcs_nss_set;
2082 * struct ieee80211_he_spr - Spatial Reuse Parameter Set element
2083 * @he_sr_control: SR Control
2084 * @optional: Optional fields Non-SRG OBSS PD Max Offset, SRG OBSS PD
2085 * Min Offset, SRG OBSS PD Max Offset, SRG BSS Color
2086 * Bitmap, and SRG Partial BSSID Bitmap
2088 * This structure represents the payload of the "Spatial Reuse
2089 * Parameter Set element" as described in IEEE Std 802.11ax-2021
2090 * section 9.4.2.252.
2092 struct ieee80211_he_spr {
2098 * struct ieee80211_he_mu_edca_param_ac_rec - MU AC Parameter Record field
2100 * @ecw_min_max: ECWmin/ECWmax
2101 * @mu_edca_timer: MU EDCA Timer
2103 * This structure represents the "MU AC Parameter Record" as described
2104 * in IEEE Std 802.11ax-2021 section 9.4.2.251, Figure 9-788p.
2106 struct ieee80211_he_mu_edca_param_ac_rec {
2113 * struct ieee80211_mu_edca_param_set - MU EDCA Parameter Set element
2114 * @mu_qos_info: QoS Info
2115 * @ac_be: MU AC_BE Parameter Record
2116 * @ac_bk: MU AC_BK Parameter Record
2117 * @ac_vi: MU AC_VI Parameter Record
2118 * @ac_vo: MU AC_VO Parameter Record
2120 * This structure represents the payload of the "MU EDCA Parameter Set
2121 * element" as described in IEEE Std 802.11ax-2021 section 9.4.2.251.
2123 struct ieee80211_mu_edca_param_set {
2125 struct ieee80211_he_mu_edca_param_ac_rec ac_be;
2126 struct ieee80211_he_mu_edca_param_ac_rec ac_bk;
2127 struct ieee80211_he_mu_edca_param_ac_rec ac_vi;
2128 struct ieee80211_he_mu_edca_param_ac_rec ac_vo;
2131 #define IEEE80211_EHT_MCS_NSS_RX 0x0f
2132 #define IEEE80211_EHT_MCS_NSS_TX 0xf0
2135 * struct ieee80211_eht_mcs_nss_supp_20mhz_only - EHT 20MHz only station max
2136 * supported NSS for per MCS.
2138 * For each field below, bits 0 - 3 indicate the maximal number of spatial
2139 * streams for Rx, and bits 4 - 7 indicate the maximal number of spatial streams
2142 * @rx_tx_mcs7_max_nss: indicates the maximum number of spatial streams
2143 * supported for reception and the maximum number of spatial streams
2144 * supported for transmission for MCS 0 - 7.
2145 * @rx_tx_mcs9_max_nss: indicates the maximum number of spatial streams
2146 * supported for reception and the maximum number of spatial streams
2147 * supported for transmission for MCS 8 - 9.
2148 * @rx_tx_mcs11_max_nss: indicates the maximum number of spatial streams
2149 * supported for reception and the maximum number of spatial streams
2150 * supported for transmission for MCS 10 - 11.
2151 * @rx_tx_mcs13_max_nss: indicates the maximum number of spatial streams
2152 * supported for reception and the maximum number of spatial streams
2153 * supported for transmission for MCS 12 - 13.
2154 * @rx_tx_max_nss: array of the previous fields for easier loop access
2156 struct ieee80211_eht_mcs_nss_supp_20mhz_only {
2159 u8 rx_tx_mcs7_max_nss;
2160 u8 rx_tx_mcs9_max_nss;
2161 u8 rx_tx_mcs11_max_nss;
2162 u8 rx_tx_mcs13_max_nss;
2164 u8 rx_tx_max_nss[4];
2169 * struct ieee80211_eht_mcs_nss_supp_bw - EHT max supported NSS per MCS (except
2170 * 20MHz only stations).
2172 * For each field below, bits 0 - 3 indicate the maximal number of spatial
2173 * streams for Rx, and bits 4 - 7 indicate the maximal number of spatial streams
2176 * @rx_tx_mcs9_max_nss: indicates the maximum number of spatial streams
2177 * supported for reception and the maximum number of spatial streams
2178 * supported for transmission for MCS 0 - 9.
2179 * @rx_tx_mcs11_max_nss: indicates the maximum number of spatial streams
2180 * supported for reception and the maximum number of spatial streams
2181 * supported for transmission for MCS 10 - 11.
2182 * @rx_tx_mcs13_max_nss: indicates the maximum number of spatial streams
2183 * supported for reception and the maximum number of spatial streams
2184 * supported for transmission for MCS 12 - 13.
2185 * @rx_tx_max_nss: array of the previous fields for easier loop access
2187 struct ieee80211_eht_mcs_nss_supp_bw {
2190 u8 rx_tx_mcs9_max_nss;
2191 u8 rx_tx_mcs11_max_nss;
2192 u8 rx_tx_mcs13_max_nss;
2194 u8 rx_tx_max_nss[3];
2199 * struct ieee80211_eht_cap_elem_fixed - EHT capabilities fixed data
2201 * This structure is the "EHT Capabilities element" fixed fields as
2202 * described in P802.11be_D2.0 section 9.4.2.313.
2204 * @mac_cap_info: MAC capabilities, see IEEE80211_EHT_MAC_CAP*
2205 * @phy_cap_info: PHY capabilities, see IEEE80211_EHT_PHY_CAP*
2207 struct ieee80211_eht_cap_elem_fixed {
2213 * struct ieee80211_eht_cap_elem - EHT capabilities element
2214 * @fixed: fixed parts, see &ieee80211_eht_cap_elem_fixed
2215 * @optional: optional parts
2217 struct ieee80211_eht_cap_elem {
2218 struct ieee80211_eht_cap_elem_fixed fixed;
2222 * Supported EHT-MCS And NSS Set field: 4, 3, 6 or 9 octets.
2223 * EHT PPE Thresholds field: variable length.
2228 #define IEEE80211_EHT_OPER_INFO_PRESENT 0x01
2229 #define IEEE80211_EHT_OPER_DISABLED_SUBCHANNEL_BITMAP_PRESENT 0x02
2230 #define IEEE80211_EHT_OPER_EHT_DEF_PE_DURATION 0x04
2231 #define IEEE80211_EHT_OPER_GROUP_ADDRESSED_BU_IND_LIMIT 0x08
2232 #define IEEE80211_EHT_OPER_GROUP_ADDRESSED_BU_IND_EXP_MASK 0x30
2235 * struct ieee80211_eht_operation - eht operation element
2237 * This structure is the "EHT Operation Element" fields as
2238 * described in P802.11be_D2.0 section 9.4.2.311
2240 * @params: EHT operation element parameters. See &IEEE80211_EHT_OPER_*
2241 * @basic_mcs_nss: indicates the EHT-MCSs for each number of spatial streams in
2242 * EHT PPDUs that are supported by all EHT STAs in the BSS in transmit and
2244 * @optional: optional parts
2246 struct ieee80211_eht_operation {
2248 struct ieee80211_eht_mcs_nss_supp_20mhz_only basic_mcs_nss;
2253 * struct ieee80211_eht_operation_info - eht operation information
2255 * @control: EHT operation information control.
2256 * @ccfs0: defines a channel center frequency for a 20, 40, 80, 160, or 320 MHz
2258 * @ccfs1: defines a channel center frequency for a 160 or 320 MHz EHT BSS.
2259 * @optional: optional parts
2261 struct ieee80211_eht_operation_info {
2268 /* 802.11ac VHT Capabilities */
2269 #define IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_3895 0x00000000
2270 #define IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_7991 0x00000001
2271 #define IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_11454 0x00000002
2272 #define IEEE80211_VHT_CAP_MAX_MPDU_MASK 0x00000003
2273 #define IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160MHZ 0x00000004
2274 #define IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160_80PLUS80MHZ 0x00000008
2275 #define IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_MASK 0x0000000C
2276 #define IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_SHIFT 2
2277 #define IEEE80211_VHT_CAP_RXLDPC 0x00000010
2278 #define IEEE80211_VHT_CAP_SHORT_GI_80 0x00000020
2279 #define IEEE80211_VHT_CAP_SHORT_GI_160 0x00000040
2280 #define IEEE80211_VHT_CAP_TXSTBC 0x00000080
2281 #define IEEE80211_VHT_CAP_RXSTBC_1 0x00000100
2282 #define IEEE80211_VHT_CAP_RXSTBC_2 0x00000200
2283 #define IEEE80211_VHT_CAP_RXSTBC_3 0x00000300
2284 #define IEEE80211_VHT_CAP_RXSTBC_4 0x00000400
2285 #define IEEE80211_VHT_CAP_RXSTBC_MASK 0x00000700
2286 #define IEEE80211_VHT_CAP_RXSTBC_SHIFT 8
2287 #define IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE 0x00000800
2288 #define IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE 0x00001000
2289 #define IEEE80211_VHT_CAP_BEAMFORMEE_STS_SHIFT 13
2290 #define IEEE80211_VHT_CAP_BEAMFORMEE_STS_MASK \
2291 (7 << IEEE80211_VHT_CAP_BEAMFORMEE_STS_SHIFT)
2292 #define IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_SHIFT 16
2293 #define IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_MASK \
2294 (7 << IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_SHIFT)
2295 #define IEEE80211_VHT_CAP_MU_BEAMFORMER_CAPABLE 0x00080000
2296 #define IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE 0x00100000
2297 #define IEEE80211_VHT_CAP_VHT_TXOP_PS 0x00200000
2298 #define IEEE80211_VHT_CAP_HTC_VHT 0x00400000
2299 #define IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_SHIFT 23
2300 #define IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_MASK \
2301 (7 << IEEE80211_VHT_CAP_MAX_A_MPDU_LENGTH_EXPONENT_SHIFT)
2302 #define IEEE80211_VHT_CAP_VHT_LINK_ADAPTATION_VHT_UNSOL_MFB 0x08000000
2303 #define IEEE80211_VHT_CAP_VHT_LINK_ADAPTATION_VHT_MRQ_MFB 0x0c000000
2304 #define IEEE80211_VHT_CAP_RX_ANTENNA_PATTERN 0x10000000
2305 #define IEEE80211_VHT_CAP_TX_ANTENNA_PATTERN 0x20000000
2306 #define IEEE80211_VHT_CAP_EXT_NSS_BW_SHIFT 30
2307 #define IEEE80211_VHT_CAP_EXT_NSS_BW_MASK 0xc0000000
2310 * ieee80211_get_vht_max_nss - return max NSS for a given bandwidth/MCS
2311 * @cap: VHT capabilities of the peer
2312 * @bw: bandwidth to use
2313 * @mcs: MCS index to use
2314 * @ext_nss_bw_capable: indicates whether or not the local transmitter
2315 * (rate scaling algorithm) can deal with the new logic
2316 * (dot11VHTExtendedNSSBWCapable)
2317 * @max_vht_nss: current maximum NSS as advertised by the STA in
2318 * operating mode notification, can be 0 in which case the
2319 * capability data will be used to derive this (from MCS support)
2321 * Due to the VHT Extended NSS Bandwidth Support, the maximum NSS can
2322 * vary for a given BW/MCS. This function parses the data.
2324 * Note: This function is exported by cfg80211.
2326 int ieee80211_get_vht_max_nss(struct ieee80211_vht_cap *cap,
2327 enum ieee80211_vht_chanwidth bw,
2328 int mcs, bool ext_nss_bw_capable,
2329 unsigned int max_vht_nss);
2332 * enum ieee80211_ap_reg_power - regulatory power for a Access Point
2334 * @IEEE80211_REG_UNSET_AP: Access Point has no regulatory power mode
2335 * @IEEE80211_REG_LPI_AP: Indoor Access Point
2336 * @IEEE80211_REG_SP_AP: Standard power Access Point
2337 * @IEEE80211_REG_VLP_AP: Very low power Access Point
2338 * @IEEE80211_REG_AP_POWER_AFTER_LAST: internal
2339 * @IEEE80211_REG_AP_POWER_MAX: maximum value
2341 enum ieee80211_ap_reg_power {
2342 IEEE80211_REG_UNSET_AP,
2343 IEEE80211_REG_LPI_AP,
2344 IEEE80211_REG_SP_AP,
2345 IEEE80211_REG_VLP_AP,
2346 IEEE80211_REG_AP_POWER_AFTER_LAST,
2347 IEEE80211_REG_AP_POWER_MAX =
2348 IEEE80211_REG_AP_POWER_AFTER_LAST - 1,
2352 * enum ieee80211_client_reg_power - regulatory power for a client
2354 * @IEEE80211_REG_UNSET_CLIENT: Client has no regulatory power mode
2355 * @IEEE80211_REG_DEFAULT_CLIENT: Default Client
2356 * @IEEE80211_REG_SUBORDINATE_CLIENT: Subordinate Client
2357 * @IEEE80211_REG_CLIENT_POWER_AFTER_LAST: internal
2358 * @IEEE80211_REG_CLIENT_POWER_MAX: maximum value
2360 enum ieee80211_client_reg_power {
2361 IEEE80211_REG_UNSET_CLIENT,
2362 IEEE80211_REG_DEFAULT_CLIENT,
2363 IEEE80211_REG_SUBORDINATE_CLIENT,
2364 IEEE80211_REG_CLIENT_POWER_AFTER_LAST,
2365 IEEE80211_REG_CLIENT_POWER_MAX =
2366 IEEE80211_REG_CLIENT_POWER_AFTER_LAST - 1,
2369 /* 802.11ax HE MAC capabilities */
2370 #define IEEE80211_HE_MAC_CAP0_HTC_HE 0x01
2371 #define IEEE80211_HE_MAC_CAP0_TWT_REQ 0x02
2372 #define IEEE80211_HE_MAC_CAP0_TWT_RES 0x04
2373 #define IEEE80211_HE_MAC_CAP0_DYNAMIC_FRAG_NOT_SUPP 0x00
2374 #define IEEE80211_HE_MAC_CAP0_DYNAMIC_FRAG_LEVEL_1 0x08
2375 #define IEEE80211_HE_MAC_CAP0_DYNAMIC_FRAG_LEVEL_2 0x10
2376 #define IEEE80211_HE_MAC_CAP0_DYNAMIC_FRAG_LEVEL_3 0x18
2377 #define IEEE80211_HE_MAC_CAP0_DYNAMIC_FRAG_MASK 0x18
2378 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_1 0x00
2379 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_2 0x20
2380 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_4 0x40
2381 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_8 0x60
2382 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_16 0x80
2383 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_32 0xa0
2384 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_64 0xc0
2385 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_UNLIMITED 0xe0
2386 #define IEEE80211_HE_MAC_CAP0_MAX_NUM_FRAG_MSDU_MASK 0xe0
2388 #define IEEE80211_HE_MAC_CAP1_MIN_FRAG_SIZE_UNLIMITED 0x00
2389 #define IEEE80211_HE_MAC_CAP1_MIN_FRAG_SIZE_128 0x01
2390 #define IEEE80211_HE_MAC_CAP1_MIN_FRAG_SIZE_256 0x02
2391 #define IEEE80211_HE_MAC_CAP1_MIN_FRAG_SIZE_512 0x03
2392 #define IEEE80211_HE_MAC_CAP1_MIN_FRAG_SIZE_MASK 0x03
2393 #define IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_0US 0x00
2394 #define IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_8US 0x04
2395 #define IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_16US 0x08
2396 #define IEEE80211_HE_MAC_CAP1_TF_MAC_PAD_DUR_MASK 0x0c
2397 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_1 0x00
2398 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_2 0x10
2399 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_3 0x20
2400 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_4 0x30
2401 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_5 0x40
2402 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_6 0x50
2403 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_7 0x60
2404 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_8 0x70
2405 #define IEEE80211_HE_MAC_CAP1_MULTI_TID_AGG_RX_QOS_MASK 0x70
2407 /* Link adaptation is split between byte HE_MAC_CAP1 and
2408 * HE_MAC_CAP2. It should be set only if IEEE80211_HE_MAC_CAP0_HTC_HE
2409 * in which case the following values apply:
2412 * 2 = Unsolicited feedback.
2415 #define IEEE80211_HE_MAC_CAP1_LINK_ADAPTATION 0x80
2417 #define IEEE80211_HE_MAC_CAP2_LINK_ADAPTATION 0x01
2418 #define IEEE80211_HE_MAC_CAP2_ALL_ACK 0x02
2419 #define IEEE80211_HE_MAC_CAP2_TRS 0x04
2420 #define IEEE80211_HE_MAC_CAP2_BSR 0x08
2421 #define IEEE80211_HE_MAC_CAP2_BCAST_TWT 0x10
2422 #define IEEE80211_HE_MAC_CAP2_32BIT_BA_BITMAP 0x20
2423 #define IEEE80211_HE_MAC_CAP2_MU_CASCADING 0x40
2424 #define IEEE80211_HE_MAC_CAP2_ACK_EN 0x80
2426 #define IEEE80211_HE_MAC_CAP3_OMI_CONTROL 0x02
2427 #define IEEE80211_HE_MAC_CAP3_OFDMA_RA 0x04
2429 /* The maximum length of an A-MDPU is defined by the combination of the Maximum
2430 * A-MDPU Length Exponent field in the HT capabilities, VHT capabilities and the
2431 * same field in the HE capabilities.
2433 #define IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_0 0x00
2434 #define IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_1 0x08
2435 #define IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_2 0x10
2436 #define IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_EXT_3 0x18
2437 #define IEEE80211_HE_MAC_CAP3_MAX_AMPDU_LEN_EXP_MASK 0x18
2438 #define IEEE80211_HE_MAC_CAP3_AMSDU_FRAG 0x20
2439 #define IEEE80211_HE_MAC_CAP3_FLEX_TWT_SCHED 0x40
2440 #define IEEE80211_HE_MAC_CAP3_RX_CTRL_FRAME_TO_MULTIBSS 0x80
2442 #define IEEE80211_HE_MAC_CAP4_BSRP_BQRP_A_MPDU_AGG 0x01
2443 #define IEEE80211_HE_MAC_CAP4_QTP 0x02
2444 #define IEEE80211_HE_MAC_CAP4_BQR 0x04
2445 #define IEEE80211_HE_MAC_CAP4_PSR_RESP 0x08
2446 #define IEEE80211_HE_MAC_CAP4_NDP_FB_REP 0x10
2447 #define IEEE80211_HE_MAC_CAP4_OPS 0x20
2448 #define IEEE80211_HE_MAC_CAP4_AMSDU_IN_AMPDU 0x40
2449 /* Multi TID agg TX is split between byte #4 and #5
2450 * The value is a combination of B39,B40,B41
2452 #define IEEE80211_HE_MAC_CAP4_MULTI_TID_AGG_TX_QOS_B39 0x80
2454 #define IEEE80211_HE_MAC_CAP5_MULTI_TID_AGG_TX_QOS_B40 0x01
2455 #define IEEE80211_HE_MAC_CAP5_MULTI_TID_AGG_TX_QOS_B41 0x02
2456 #define IEEE80211_HE_MAC_CAP5_SUBCHAN_SELECTIVE_TRANSMISSION 0x04
2457 #define IEEE80211_HE_MAC_CAP5_UL_2x996_TONE_RU 0x08
2458 #define IEEE80211_HE_MAC_CAP5_OM_CTRL_UL_MU_DATA_DIS_RX 0x10
2459 #define IEEE80211_HE_MAC_CAP5_HE_DYNAMIC_SM_PS 0x20
2460 #define IEEE80211_HE_MAC_CAP5_PUNCTURED_SOUNDING 0x40
2461 #define IEEE80211_HE_MAC_CAP5_HT_VHT_TRIG_FRAME_RX 0x80
2463 #define IEEE80211_HE_VHT_MAX_AMPDU_FACTOR 20
2464 #define IEEE80211_HE_HT_MAX_AMPDU_FACTOR 16
2465 #define IEEE80211_HE_6GHZ_MAX_AMPDU_FACTOR 13
2467 /* 802.11ax HE PHY capabilities */
2468 #define IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G 0x02
2469 #define IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G 0x04
2470 #define IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G 0x08
2471 #define IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G 0x10
2472 #define IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_MASK_ALL 0x1e
2474 #define IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_RU_MAPPING_IN_2G 0x20
2475 #define IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_RU_MAPPING_IN_5G 0x40
2476 #define IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_MASK 0xfe
2478 #define IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_80MHZ_ONLY_SECOND_20MHZ 0x01
2479 #define IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_80MHZ_ONLY_SECOND_40MHZ 0x02
2480 #define IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_160MHZ_ONLY_SECOND_20MHZ 0x04
2481 #define IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_160MHZ_ONLY_SECOND_40MHZ 0x08
2482 #define IEEE80211_HE_PHY_CAP1_PREAMBLE_PUNC_RX_MASK 0x0f
2483 #define IEEE80211_HE_PHY_CAP1_DEVICE_CLASS_A 0x10
2484 #define IEEE80211_HE_PHY_CAP1_LDPC_CODING_IN_PAYLOAD 0x20
2485 #define IEEE80211_HE_PHY_CAP1_HE_LTF_AND_GI_FOR_HE_PPDUS_0_8US 0x40
2486 /* Midamble RX/TX Max NSTS is split between byte #2 and byte #3 */
2487 #define IEEE80211_HE_PHY_CAP1_MIDAMBLE_RX_TX_MAX_NSTS 0x80
2489 #define IEEE80211_HE_PHY_CAP2_MIDAMBLE_RX_TX_MAX_NSTS 0x01
2490 #define IEEE80211_HE_PHY_CAP2_NDP_4x_LTF_AND_3_2US 0x02
2491 #define IEEE80211_HE_PHY_CAP2_STBC_TX_UNDER_80MHZ 0x04
2492 #define IEEE80211_HE_PHY_CAP2_STBC_RX_UNDER_80MHZ 0x08
2493 #define IEEE80211_HE_PHY_CAP2_DOPPLER_TX 0x10
2494 #define IEEE80211_HE_PHY_CAP2_DOPPLER_RX 0x20
2496 /* Note that the meaning of UL MU below is different between an AP and a non-AP
2497 * sta, where in the AP case it indicates support for Rx and in the non-AP sta
2498 * case it indicates support for Tx.
2500 #define IEEE80211_HE_PHY_CAP2_UL_MU_FULL_MU_MIMO 0x40
2501 #define IEEE80211_HE_PHY_CAP2_UL_MU_PARTIAL_MU_MIMO 0x80
2503 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_TX_NO_DCM 0x00
2504 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_TX_BPSK 0x01
2505 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_TX_QPSK 0x02
2506 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_TX_16_QAM 0x03
2507 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_TX_MASK 0x03
2508 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_TX_NSS_1 0x00
2509 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_TX_NSS_2 0x04
2510 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_RX_NO_DCM 0x00
2511 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_RX_BPSK 0x08
2512 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_RX_QPSK 0x10
2513 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_RX_16_QAM 0x18
2514 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_CONST_RX_MASK 0x18
2515 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_RX_NSS_1 0x00
2516 #define IEEE80211_HE_PHY_CAP3_DCM_MAX_RX_NSS_2 0x20
2517 #define IEEE80211_HE_PHY_CAP3_RX_PARTIAL_BW_SU_IN_20MHZ_MU 0x40
2518 #define IEEE80211_HE_PHY_CAP3_SU_BEAMFORMER 0x80
2520 #define IEEE80211_HE_PHY_CAP4_SU_BEAMFORMEE 0x01
2521 #define IEEE80211_HE_PHY_CAP4_MU_BEAMFORMER 0x02
2523 /* Minimal allowed value of Max STS under 80MHz is 3 */
2524 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_4 0x0c
2525 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_5 0x10
2526 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_6 0x14
2527 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_7 0x18
2528 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_8 0x1c
2529 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_UNDER_80MHZ_MASK 0x1c
2531 /* Minimal allowed value of Max STS above 80MHz is 3 */
2532 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_4 0x60
2533 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_5 0x80
2534 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_6 0xa0
2535 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_7 0xc0
2536 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_8 0xe0
2537 #define IEEE80211_HE_PHY_CAP4_BEAMFORMEE_MAX_STS_ABOVE_80MHZ_MASK 0xe0
2539 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_1 0x00
2540 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_2 0x01
2541 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_3 0x02
2542 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_4 0x03
2543 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_5 0x04
2544 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_6 0x05
2545 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_7 0x06
2546 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_8 0x07
2547 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_UNDER_80MHZ_MASK 0x07
2549 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_1 0x00
2550 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_2 0x08
2551 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_3 0x10
2552 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_4 0x18
2553 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_5 0x20
2554 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_6 0x28
2555 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_7 0x30
2556 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_8 0x38
2557 #define IEEE80211_HE_PHY_CAP5_BEAMFORMEE_NUM_SND_DIM_ABOVE_80MHZ_MASK 0x38
2559 #define IEEE80211_HE_PHY_CAP5_NG16_SU_FEEDBACK 0x40
2560 #define IEEE80211_HE_PHY_CAP5_NG16_MU_FEEDBACK 0x80
2562 #define IEEE80211_HE_PHY_CAP6_CODEBOOK_SIZE_42_SU 0x01
2563 #define IEEE80211_HE_PHY_CAP6_CODEBOOK_SIZE_75_MU 0x02
2564 #define IEEE80211_HE_PHY_CAP6_TRIG_SU_BEAMFORMING_FB 0x04
2565 #define IEEE80211_HE_PHY_CAP6_TRIG_MU_BEAMFORMING_PARTIAL_BW_FB 0x08
2566 #define IEEE80211_HE_PHY_CAP6_TRIG_CQI_FB 0x10
2567 #define IEEE80211_HE_PHY_CAP6_PARTIAL_BW_EXT_RANGE 0x20
2568 #define IEEE80211_HE_PHY_CAP6_PARTIAL_BANDWIDTH_DL_MUMIMO 0x40
2569 #define IEEE80211_HE_PHY_CAP6_PPE_THRESHOLD_PRESENT 0x80
2571 #define IEEE80211_HE_PHY_CAP7_PSR_BASED_SR 0x01
2572 #define IEEE80211_HE_PHY_CAP7_POWER_BOOST_FACTOR_SUPP 0x02
2573 #define IEEE80211_HE_PHY_CAP7_HE_SU_MU_PPDU_4XLTF_AND_08_US_GI 0x04
2574 #define IEEE80211_HE_PHY_CAP7_MAX_NC_1 0x08
2575 #define IEEE80211_HE_PHY_CAP7_MAX_NC_2 0x10
2576 #define IEEE80211_HE_PHY_CAP7_MAX_NC_3 0x18
2577 #define IEEE80211_HE_PHY_CAP7_MAX_NC_4 0x20
2578 #define IEEE80211_HE_PHY_CAP7_MAX_NC_5 0x28
2579 #define IEEE80211_HE_PHY_CAP7_MAX_NC_6 0x30
2580 #define IEEE80211_HE_PHY_CAP7_MAX_NC_7 0x38
2581 #define IEEE80211_HE_PHY_CAP7_MAX_NC_MASK 0x38
2582 #define IEEE80211_HE_PHY_CAP7_STBC_TX_ABOVE_80MHZ 0x40
2583 #define IEEE80211_HE_PHY_CAP7_STBC_RX_ABOVE_80MHZ 0x80
2585 #define IEEE80211_HE_PHY_CAP8_HE_ER_SU_PPDU_4XLTF_AND_08_US_GI 0x01
2586 #define IEEE80211_HE_PHY_CAP8_20MHZ_IN_40MHZ_HE_PPDU_IN_2G 0x02
2587 #define IEEE80211_HE_PHY_CAP8_20MHZ_IN_160MHZ_HE_PPDU 0x04
2588 #define IEEE80211_HE_PHY_CAP8_80MHZ_IN_160MHZ_HE_PPDU 0x08
2589 #define IEEE80211_HE_PHY_CAP8_HE_ER_SU_1XLTF_AND_08_US_GI 0x10
2590 #define IEEE80211_HE_PHY_CAP8_MIDAMBLE_RX_TX_2X_AND_1XLTF 0x20
2591 #define IEEE80211_HE_PHY_CAP8_DCM_MAX_RU_242 0x00
2592 #define IEEE80211_HE_PHY_CAP8_DCM_MAX_RU_484 0x40
2593 #define IEEE80211_HE_PHY_CAP8_DCM_MAX_RU_996 0x80
2594 #define IEEE80211_HE_PHY_CAP8_DCM_MAX_RU_2x996 0xc0
2595 #define IEEE80211_HE_PHY_CAP8_DCM_MAX_RU_MASK 0xc0
2597 #define IEEE80211_HE_PHY_CAP9_LONGER_THAN_16_SIGB_OFDM_SYM 0x01
2598 #define IEEE80211_HE_PHY_CAP9_NON_TRIGGERED_CQI_FEEDBACK 0x02
2599 #define IEEE80211_HE_PHY_CAP9_TX_1024_QAM_LESS_THAN_242_TONE_RU 0x04
2600 #define IEEE80211_HE_PHY_CAP9_RX_1024_QAM_LESS_THAN_242_TONE_RU 0x08
2601 #define IEEE80211_HE_PHY_CAP9_RX_FULL_BW_SU_USING_MU_WITH_COMP_SIGB 0x10
2602 #define IEEE80211_HE_PHY_CAP9_RX_FULL_BW_SU_USING_MU_WITH_NON_COMP_SIGB 0x20
2603 #define IEEE80211_HE_PHY_CAP9_NOMINAL_PKT_PADDING_0US 0x0
2604 #define IEEE80211_HE_PHY_CAP9_NOMINAL_PKT_PADDING_8US 0x1
2605 #define IEEE80211_HE_PHY_CAP9_NOMINAL_PKT_PADDING_16US 0x2
2606 #define IEEE80211_HE_PHY_CAP9_NOMINAL_PKT_PADDING_RESERVED 0x3
2607 #define IEEE80211_HE_PHY_CAP9_NOMINAL_PKT_PADDING_POS 6
2608 #define IEEE80211_HE_PHY_CAP9_NOMINAL_PKT_PADDING_MASK 0xc0
2610 #define IEEE80211_HE_PHY_CAP10_HE_MU_M1RU_MAX_LTF 0x01
2612 /* 802.11ax HE TX/RX MCS NSS Support */
2613 #define IEEE80211_TX_RX_MCS_NSS_SUPP_HIGHEST_MCS_POS (3)
2614 #define IEEE80211_TX_RX_MCS_NSS_SUPP_TX_BITMAP_POS (6)
2615 #define IEEE80211_TX_RX_MCS_NSS_SUPP_RX_BITMAP_POS (11)
2616 #define IEEE80211_TX_RX_MCS_NSS_SUPP_TX_BITMAP_MASK 0x07c0
2617 #define IEEE80211_TX_RX_MCS_NSS_SUPP_RX_BITMAP_MASK 0xf800
2619 /* TX/RX HE MCS Support field Highest MCS subfield encoding */
2620 enum ieee80211_he_highest_mcs_supported_subfield_enc {
2621 HIGHEST_MCS_SUPPORTED_MCS7 = 0,
2622 HIGHEST_MCS_SUPPORTED_MCS8,
2623 HIGHEST_MCS_SUPPORTED_MCS9,
2624 HIGHEST_MCS_SUPPORTED_MCS10,
2625 HIGHEST_MCS_SUPPORTED_MCS11,
2628 /* Calculate 802.11ax HE capabilities IE Tx/Rx HE MCS NSS Support Field size */
2630 ieee80211_he_mcs_nss_size(const struct ieee80211_he_cap_elem *he_cap)
2634 if (he_cap->phy_cap_info[0] &
2635 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G)
2638 if (he_cap->phy_cap_info[0] &
2639 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_80PLUS80_MHZ_IN_5G)
2645 /* 802.11ax HE PPE Thresholds */
2646 #define IEEE80211_PPE_THRES_NSS_SUPPORT_2NSS (1)
2647 #define IEEE80211_PPE_THRES_NSS_POS (0)
2648 #define IEEE80211_PPE_THRES_NSS_MASK (7)
2649 #define IEEE80211_PPE_THRES_RU_INDEX_BITMASK_2x966_AND_966_RU \
2651 #define IEEE80211_PPE_THRES_RU_INDEX_BITMASK_MASK 0x78
2652 #define IEEE80211_PPE_THRES_RU_INDEX_BITMASK_POS (3)
2653 #define IEEE80211_PPE_THRES_INFO_PPET_SIZE (3)
2654 #define IEEE80211_HE_PPE_THRES_INFO_HEADER_SIZE (7)
2657 * Calculate 802.11ax HE capabilities IE PPE field size
2658 * Input: Header byte of ppe_thres (first byte), and HE capa IE's PHY cap u8*
2661 ieee80211_he_ppe_size(u8 ppe_thres_hdr, const u8 *phy_cap_info)
2665 if ((phy_cap_info[6] &
2666 IEEE80211_HE_PHY_CAP6_PPE_THRESHOLD_PRESENT) == 0)
2669 n = hweight8(ppe_thres_hdr &
2670 IEEE80211_PPE_THRES_RU_INDEX_BITMASK_MASK);
2671 n *= (1 + ((ppe_thres_hdr & IEEE80211_PPE_THRES_NSS_MASK) >>
2672 IEEE80211_PPE_THRES_NSS_POS));
2675 * Each pair is 6 bits, and we need to add the 7 "header" bits to the
2678 n = (n * IEEE80211_PPE_THRES_INFO_PPET_SIZE * 2) + 7;
2679 n = DIV_ROUND_UP(n, 8);
2684 static inline bool ieee80211_he_capa_size_ok(const u8 *data, u8 len)
2686 const struct ieee80211_he_cap_elem *he_cap_ie_elem = (const void *)data;
2687 u8 needed = sizeof(*he_cap_ie_elem);
2692 needed += ieee80211_he_mcs_nss_size(he_cap_ie_elem);
2696 if (he_cap_ie_elem->phy_cap_info[6] &
2697 IEEE80211_HE_PHY_CAP6_PPE_THRESHOLD_PRESENT) {
2698 if (len < needed + 1)
2700 needed += ieee80211_he_ppe_size(data[needed],
2701 he_cap_ie_elem->phy_cap_info);
2704 return len >= needed;
2707 /* HE Operation defines */
2708 #define IEEE80211_HE_OPERATION_DFLT_PE_DURATION_MASK 0x00000007
2709 #define IEEE80211_HE_OPERATION_TWT_REQUIRED 0x00000008
2710 #define IEEE80211_HE_OPERATION_RTS_THRESHOLD_MASK 0x00003ff0
2711 #define IEEE80211_HE_OPERATION_RTS_THRESHOLD_OFFSET 4
2712 #define IEEE80211_HE_OPERATION_VHT_OPER_INFO 0x00004000
2713 #define IEEE80211_HE_OPERATION_CO_HOSTED_BSS 0x00008000
2714 #define IEEE80211_HE_OPERATION_ER_SU_DISABLE 0x00010000
2715 #define IEEE80211_HE_OPERATION_6GHZ_OP_INFO 0x00020000
2716 #define IEEE80211_HE_OPERATION_BSS_COLOR_MASK 0x3f000000
2717 #define IEEE80211_HE_OPERATION_BSS_COLOR_OFFSET 24
2718 #define IEEE80211_HE_OPERATION_PARTIAL_BSS_COLOR 0x40000000
2719 #define IEEE80211_HE_OPERATION_BSS_COLOR_DISABLED 0x80000000
2721 #define IEEE80211_6GHZ_CTRL_REG_LPI_AP 0
2722 #define IEEE80211_6GHZ_CTRL_REG_SP_AP 1
2723 #define IEEE80211_6GHZ_CTRL_REG_VLP_AP 2
2726 * struct ieee80211_he_6ghz_oper - HE 6 GHz operation Information field
2727 * @primary: primary channel
2728 * @control: control flags
2729 * @ccfs0: channel center frequency segment 0
2730 * @ccfs1: channel center frequency segment 1
2731 * @minrate: minimum rate (in 1 Mbps units)
2733 struct ieee80211_he_6ghz_oper {
2735 #define IEEE80211_HE_6GHZ_OPER_CTRL_CHANWIDTH 0x3
2736 #define IEEE80211_HE_6GHZ_OPER_CTRL_CHANWIDTH_20MHZ 0
2737 #define IEEE80211_HE_6GHZ_OPER_CTRL_CHANWIDTH_40MHZ 1
2738 #define IEEE80211_HE_6GHZ_OPER_CTRL_CHANWIDTH_80MHZ 2
2739 #define IEEE80211_HE_6GHZ_OPER_CTRL_CHANWIDTH_160MHZ 3
2740 #define IEEE80211_HE_6GHZ_OPER_CTRL_DUP_BEACON 0x4
2741 #define IEEE80211_HE_6GHZ_OPER_CTRL_REG_INFO 0x38
2749 * In "9.4.2.161 Transmit Power Envelope element" of "IEEE Std 802.11ax-2021",
2750 * it show four types in "Table 9-275a-Maximum Transmit Power Interpretation
2751 * subfield encoding", and two category for each type in "Table E-12-Regulatory
2752 * Info subfield encoding in the United States".
2753 * So it it totally max 8 Transmit Power Envelope element.
2755 #define IEEE80211_TPE_MAX_IE_COUNT 8
2757 * In "Table 9-277—Meaning of Maximum Transmit Power Count subfield"
2758 * of "IEEE Std 802.11ax™‐2021", the max power level is 8.
2760 #define IEEE80211_MAX_NUM_PWR_LEVEL 8
2762 #define IEEE80211_TPE_MAX_POWER_COUNT 8
2764 /* transmit power interpretation type of transmit power envelope element */
2765 enum ieee80211_tx_power_intrpt_type {
2766 IEEE80211_TPE_LOCAL_EIRP,
2767 IEEE80211_TPE_LOCAL_EIRP_PSD,
2768 IEEE80211_TPE_REG_CLIENT_EIRP,
2769 IEEE80211_TPE_REG_CLIENT_EIRP_PSD,
2773 * struct ieee80211_tx_pwr_env - Transmit Power Envelope
2774 * @tx_power_info: Transmit Power Information field
2775 * @tx_power: Maximum Transmit Power field
2777 * This structure represents the payload of the "Transmit Power
2778 * Envelope element" as described in IEEE Std 802.11ax-2021 section
2781 struct ieee80211_tx_pwr_env {
2783 s8 tx_power[IEEE80211_TPE_MAX_POWER_COUNT];
2786 #define IEEE80211_TX_PWR_ENV_INFO_COUNT 0x7
2787 #define IEEE80211_TX_PWR_ENV_INFO_INTERPRET 0x38
2788 #define IEEE80211_TX_PWR_ENV_INFO_CATEGORY 0xC0
2791 * ieee80211_he_oper_size - calculate 802.11ax HE Operations IE size
2792 * @he_oper_ie: byte data of the He Operations IE, stating from the byte
2793 * after the ext ID byte. It is assumed that he_oper_ie has at least
2794 * sizeof(struct ieee80211_he_operation) bytes, the caller must have
2796 * @return the actual size of the IE data (not including header), or 0 on error
2799 ieee80211_he_oper_size(const u8 *he_oper_ie)
2801 const struct ieee80211_he_operation *he_oper = (const void *)he_oper_ie;
2802 u8 oper_len = sizeof(struct ieee80211_he_operation);
2805 /* Make sure the input is not NULL */
2809 /* Calc required length */
2810 he_oper_params = le32_to_cpu(he_oper->he_oper_params);
2811 if (he_oper_params & IEEE80211_HE_OPERATION_VHT_OPER_INFO)
2813 if (he_oper_params & IEEE80211_HE_OPERATION_CO_HOSTED_BSS)
2815 if (he_oper_params & IEEE80211_HE_OPERATION_6GHZ_OP_INFO)
2816 oper_len += sizeof(struct ieee80211_he_6ghz_oper);
2818 /* Add the first byte (extension ID) to the total length */
2825 * ieee80211_he_6ghz_oper - obtain 6 GHz operation field
2826 * @he_oper: HE operation element (must be pre-validated for size)
2829 * Return: a pointer to the 6 GHz operation field, or %NULL
2831 static inline const struct ieee80211_he_6ghz_oper *
2832 ieee80211_he_6ghz_oper(const struct ieee80211_he_operation *he_oper)
2840 ret = (const void *)&he_oper->optional;
2842 he_oper_params = le32_to_cpu(he_oper->he_oper_params);
2844 if (!(he_oper_params & IEEE80211_HE_OPERATION_6GHZ_OP_INFO))
2846 if (he_oper_params & IEEE80211_HE_OPERATION_VHT_OPER_INFO)
2848 if (he_oper_params & IEEE80211_HE_OPERATION_CO_HOSTED_BSS)
2851 return (const void *)ret;
2854 /* HE Spatial Reuse defines */
2855 #define IEEE80211_HE_SPR_PSR_DISALLOWED BIT(0)
2856 #define IEEE80211_HE_SPR_NON_SRG_OBSS_PD_SR_DISALLOWED BIT(1)
2857 #define IEEE80211_HE_SPR_NON_SRG_OFFSET_PRESENT BIT(2)
2858 #define IEEE80211_HE_SPR_SRG_INFORMATION_PRESENT BIT(3)
2859 #define IEEE80211_HE_SPR_HESIGA_SR_VAL15_ALLOWED BIT(4)
2862 * ieee80211_he_spr_size - calculate 802.11ax HE Spatial Reuse IE size
2863 * @he_spr_ie: byte data of the He Spatial Reuse IE, stating from the byte
2864 * after the ext ID byte. It is assumed that he_spr_ie has at least
2865 * sizeof(struct ieee80211_he_spr) bytes, the caller must have validated
2867 * @return the actual size of the IE data (not including header), or 0 on error
2870 ieee80211_he_spr_size(const u8 *he_spr_ie)
2872 const struct ieee80211_he_spr *he_spr = (const void *)he_spr_ie;
2873 u8 spr_len = sizeof(struct ieee80211_he_spr);
2876 /* Make sure the input is not NULL */
2880 /* Calc required length */
2881 he_spr_params = he_spr->he_sr_control;
2882 if (he_spr_params & IEEE80211_HE_SPR_NON_SRG_OFFSET_PRESENT)
2884 if (he_spr_params & IEEE80211_HE_SPR_SRG_INFORMATION_PRESENT)
2887 /* Add the first byte (extension ID) to the total length */
2893 /* S1G Capabilities Information field */
2894 #define IEEE80211_S1G_CAPABILITY_LEN 15
2896 #define S1G_CAP0_S1G_LONG BIT(0)
2897 #define S1G_CAP0_SGI_1MHZ BIT(1)
2898 #define S1G_CAP0_SGI_2MHZ BIT(2)
2899 #define S1G_CAP0_SGI_4MHZ BIT(3)
2900 #define S1G_CAP0_SGI_8MHZ BIT(4)
2901 #define S1G_CAP0_SGI_16MHZ BIT(5)
2902 #define S1G_CAP0_SUPP_CH_WIDTH GENMASK(7, 6)
2904 #define S1G_SUPP_CH_WIDTH_2 0
2905 #define S1G_SUPP_CH_WIDTH_4 1
2906 #define S1G_SUPP_CH_WIDTH_8 2
2907 #define S1G_SUPP_CH_WIDTH_16 3
2908 #define S1G_SUPP_CH_WIDTH_MAX(cap) ((1 << FIELD_GET(S1G_CAP0_SUPP_CH_WIDTH, \
2911 #define S1G_CAP1_RX_LDPC BIT(0)
2912 #define S1G_CAP1_TX_STBC BIT(1)
2913 #define S1G_CAP1_RX_STBC BIT(2)
2914 #define S1G_CAP1_SU_BFER BIT(3)
2915 #define S1G_CAP1_SU_BFEE BIT(4)
2916 #define S1G_CAP1_BFEE_STS GENMASK(7, 5)
2918 #define S1G_CAP2_SOUNDING_DIMENSIONS GENMASK(2, 0)
2919 #define S1G_CAP2_MU_BFER BIT(3)
2920 #define S1G_CAP2_MU_BFEE BIT(4)
2921 #define S1G_CAP2_PLUS_HTC_VHT BIT(5)
2922 #define S1G_CAP2_TRAVELING_PILOT GENMASK(7, 6)
2924 #define S1G_CAP3_RD_RESPONDER BIT(0)
2925 #define S1G_CAP3_HT_DELAYED_BA BIT(1)
2926 #define S1G_CAP3_MAX_MPDU_LEN BIT(2)
2927 #define S1G_CAP3_MAX_AMPDU_LEN_EXP GENMASK(4, 3)
2928 #define S1G_CAP3_MIN_MPDU_START GENMASK(7, 5)
2930 #define S1G_CAP4_UPLINK_SYNC BIT(0)
2931 #define S1G_CAP4_DYNAMIC_AID BIT(1)
2932 #define S1G_CAP4_BAT BIT(2)
2933 #define S1G_CAP4_TIME_ADE BIT(3)
2934 #define S1G_CAP4_NON_TIM BIT(4)
2935 #define S1G_CAP4_GROUP_AID BIT(5)
2936 #define S1G_CAP4_STA_TYPE GENMASK(7, 6)
2938 #define S1G_CAP5_CENT_AUTH_CONTROL BIT(0)
2939 #define S1G_CAP5_DIST_AUTH_CONTROL BIT(1)
2940 #define S1G_CAP5_AMSDU BIT(2)
2941 #define S1G_CAP5_AMPDU BIT(3)
2942 #define S1G_CAP5_ASYMMETRIC_BA BIT(4)
2943 #define S1G_CAP5_FLOW_CONTROL BIT(5)
2944 #define S1G_CAP5_SECTORIZED_BEAM GENMASK(7, 6)
2946 #define S1G_CAP6_OBSS_MITIGATION BIT(0)
2947 #define S1G_CAP6_FRAGMENT_BA BIT(1)
2948 #define S1G_CAP6_NDP_PS_POLL BIT(2)
2949 #define S1G_CAP6_RAW_OPERATION BIT(3)
2950 #define S1G_CAP6_PAGE_SLICING BIT(4)
2951 #define S1G_CAP6_TXOP_SHARING_IMP_ACK BIT(5)
2952 #define S1G_CAP6_VHT_LINK_ADAPT GENMASK(7, 6)
2954 #define S1G_CAP7_TACK_AS_PS_POLL BIT(0)
2955 #define S1G_CAP7_DUP_1MHZ BIT(1)
2956 #define S1G_CAP7_MCS_NEGOTIATION BIT(2)
2957 #define S1G_CAP7_1MHZ_CTL_RESPONSE_PREAMBLE BIT(3)
2958 #define S1G_CAP7_NDP_BFING_REPORT_POLL BIT(4)
2959 #define S1G_CAP7_UNSOLICITED_DYN_AID BIT(5)
2960 #define S1G_CAP7_SECTOR_TRAINING_OPERATION BIT(6)
2961 #define S1G_CAP7_TEMP_PS_MODE_SWITCH BIT(7)
2963 #define S1G_CAP8_TWT_GROUPING BIT(0)
2964 #define S1G_CAP8_BDT BIT(1)
2965 #define S1G_CAP8_COLOR GENMASK(4, 2)
2966 #define S1G_CAP8_TWT_REQUEST BIT(5)
2967 #define S1G_CAP8_TWT_RESPOND BIT(6)
2968 #define S1G_CAP8_PV1_FRAME BIT(7)
2970 #define S1G_CAP9_LINK_ADAPT_PER_CONTROL_RESPONSE BIT(0)
2972 #define S1G_OPER_CH_WIDTH_PRIMARY_1MHZ BIT(0)
2973 #define S1G_OPER_CH_WIDTH_OPER GENMASK(4, 1)
2975 /* EHT MAC capabilities as defined in P802.11be_D2.0 section 9.4.2.313.2 */
2976 #define IEEE80211_EHT_MAC_CAP0_EPCS_PRIO_ACCESS 0x01
2977 #define IEEE80211_EHT_MAC_CAP0_OM_CONTROL 0x02
2978 #define IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE1 0x04
2979 #define IEEE80211_EHT_MAC_CAP0_TRIG_TXOP_SHARING_MODE2 0x08
2980 #define IEEE80211_EHT_MAC_CAP0_RESTRICTED_TWT 0x10
2981 #define IEEE80211_EHT_MAC_CAP0_SCS_TRAFFIC_DESC 0x20
2982 #define IEEE80211_EHT_MAC_CAP0_MAX_MPDU_LEN_MASK 0xc0
2983 #define IEEE80211_EHT_MAC_CAP0_MAX_MPDU_LEN_3895 0
2984 #define IEEE80211_EHT_MAC_CAP0_MAX_MPDU_LEN_7991 1
2985 #define IEEE80211_EHT_MAC_CAP0_MAX_MPDU_LEN_11454 2
2987 #define IEEE80211_EHT_MAC_CAP1_MAX_AMPDU_LEN_MASK 0x01
2989 /* EHT PHY capabilities as defined in P802.11be_D2.0 section 9.4.2.313.3 */
2990 #define IEEE80211_EHT_PHY_CAP0_320MHZ_IN_6GHZ 0x02
2991 #define IEEE80211_EHT_PHY_CAP0_242_TONE_RU_GT20MHZ 0x04
2992 #define IEEE80211_EHT_PHY_CAP0_NDP_4_EHT_LFT_32_GI 0x08
2993 #define IEEE80211_EHT_PHY_CAP0_PARTIAL_BW_UL_MU_MIMO 0x10
2994 #define IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMER 0x20
2995 #define IEEE80211_EHT_PHY_CAP0_SU_BEAMFORMEE 0x40
2997 /* EHT beamformee number of spatial streams <= 80MHz is split */
2998 #define IEEE80211_EHT_PHY_CAP0_BEAMFORMEE_SS_80MHZ_MASK 0x80
2999 #define IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_80MHZ_MASK 0x03
3001 #define IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_160MHZ_MASK 0x1c
3002 #define IEEE80211_EHT_PHY_CAP1_BEAMFORMEE_SS_320MHZ_MASK 0xe0
3004 #define IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_80MHZ_MASK 0x07
3005 #define IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_160MHZ_MASK 0x38
3007 /* EHT number of sounding dimensions for 320MHz is split */
3008 #define IEEE80211_EHT_PHY_CAP2_SOUNDING_DIM_320MHZ_MASK 0xc0
3009 #define IEEE80211_EHT_PHY_CAP3_SOUNDING_DIM_320MHZ_MASK 0x01
3010 #define IEEE80211_EHT_PHY_CAP3_NG_16_SU_FEEDBACK 0x02
3011 #define IEEE80211_EHT_PHY_CAP3_NG_16_MU_FEEDBACK 0x04
3012 #define IEEE80211_EHT_PHY_CAP3_CODEBOOK_4_2_SU_FDBK 0x08
3013 #define IEEE80211_EHT_PHY_CAP3_CODEBOOK_7_5_MU_FDBK 0x10
3014 #define IEEE80211_EHT_PHY_CAP3_TRIG_SU_BF_FDBK 0x20
3015 #define IEEE80211_EHT_PHY_CAP3_TRIG_MU_BF_PART_BW_FDBK 0x40
3016 #define IEEE80211_EHT_PHY_CAP3_TRIG_CQI_FDBK 0x80
3018 #define IEEE80211_EHT_PHY_CAP4_PART_BW_DL_MU_MIMO 0x01
3019 #define IEEE80211_EHT_PHY_CAP4_PSR_SR_SUPP 0x02
3020 #define IEEE80211_EHT_PHY_CAP4_POWER_BOOST_FACT_SUPP 0x04
3021 #define IEEE80211_EHT_PHY_CAP4_EHT_MU_PPDU_4_EHT_LTF_08_GI 0x08
3022 #define IEEE80211_EHT_PHY_CAP4_MAX_NC_MASK 0xf0
3024 #define IEEE80211_EHT_PHY_CAP5_NON_TRIG_CQI_FEEDBACK 0x01
3025 #define IEEE80211_EHT_PHY_CAP5_TX_LESS_242_TONE_RU_SUPP 0x02
3026 #define IEEE80211_EHT_PHY_CAP5_RX_LESS_242_TONE_RU_SUPP 0x04
3027 #define IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT 0x08
3028 #define IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_MASK 0x30
3029 #define IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_0US 0
3030 #define IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_8US 1
3031 #define IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_16US 2
3032 #define IEEE80211_EHT_PHY_CAP5_COMMON_NOMINAL_PKT_PAD_20US 3
3034 /* Maximum number of supported EHT LTF is split */
3035 #define IEEE80211_EHT_PHY_CAP5_MAX_NUM_SUPP_EHT_LTF_MASK 0xc0
3036 #define IEEE80211_EHT_PHY_CAP5_SUPP_EXTRA_EHT_LTF 0x40
3037 #define IEEE80211_EHT_PHY_CAP6_MAX_NUM_SUPP_EHT_LTF_MASK 0x07
3039 #define IEEE80211_EHT_PHY_CAP6_MCS15_SUPP_MASK 0x78
3040 #define IEEE80211_EHT_PHY_CAP6_EHT_DUP_6GHZ_SUPP 0x80
3042 #define IEEE80211_EHT_PHY_CAP7_20MHZ_STA_RX_NDP_WIDER_BW 0x01
3043 #define IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_80MHZ 0x02
3044 #define IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_160MHZ 0x04
3045 #define IEEE80211_EHT_PHY_CAP7_NON_OFDMA_UL_MU_MIMO_320MHZ 0x08
3046 #define IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_80MHZ 0x10
3047 #define IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_160MHZ 0x20
3048 #define IEEE80211_EHT_PHY_CAP7_MU_BEAMFORMER_320MHZ 0x40
3049 #define IEEE80211_EHT_PHY_CAP7_TB_SOUNDING_FDBK_RATE_LIMIT 0x80
3051 #define IEEE80211_EHT_PHY_CAP8_RX_1024QAM_WIDER_BW_DL_OFDMA 0x01
3052 #define IEEE80211_EHT_PHY_CAP8_RX_4096QAM_WIDER_BW_DL_OFDMA 0x02
3055 * EHT operation channel width as defined in P802.11be_D2.0 section 9.4.2.311
3057 #define IEEE80211_EHT_OPER_CHAN_WIDTH 0x7
3058 #define IEEE80211_EHT_OPER_CHAN_WIDTH_20MHZ 0
3059 #define IEEE80211_EHT_OPER_CHAN_WIDTH_40MHZ 1
3060 #define IEEE80211_EHT_OPER_CHAN_WIDTH_80MHZ 2
3061 #define IEEE80211_EHT_OPER_CHAN_WIDTH_160MHZ 3
3062 #define IEEE80211_EHT_OPER_CHAN_WIDTH_320MHZ 4
3064 /* Calculate 802.11be EHT capabilities IE Tx/Rx EHT MCS NSS Support Field size */
3066 ieee80211_eht_mcs_nss_size(const struct ieee80211_he_cap_elem *he_cap,
3067 const struct ieee80211_eht_cap_elem_fixed *eht_cap,
3072 /* on 2.4 GHz, if it supports 40 MHz, the result is 3 */
3073 if (he_cap->phy_cap_info[0] &
3074 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_IN_2G)
3077 /* on 2.4 GHz, these three bits are reserved, so should be 0 */
3078 if (he_cap->phy_cap_info[0] &
3079 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_40MHZ_80MHZ_IN_5G)
3082 if (he_cap->phy_cap_info[0] &
3083 IEEE80211_HE_PHY_CAP0_CHANNEL_WIDTH_SET_160MHZ_IN_5G)
3086 if (eht_cap->phy_cap_info[0] & IEEE80211_EHT_PHY_CAP0_320MHZ_IN_6GHZ)
3092 return from_ap ? 3 : 4;
3095 /* 802.11be EHT PPE Thresholds */
3096 #define IEEE80211_EHT_PPE_THRES_NSS_POS 0
3097 #define IEEE80211_EHT_PPE_THRES_NSS_MASK 0xf
3098 #define IEEE80211_EHT_PPE_THRES_RU_INDEX_BITMASK_MASK 0x1f0
3099 #define IEEE80211_EHT_PPE_THRES_INFO_PPET_SIZE 3
3100 #define IEEE80211_EHT_PPE_THRES_INFO_HEADER_SIZE 9
3103 * Calculate 802.11be EHT capabilities IE EHT field size
3106 ieee80211_eht_ppe_size(u16 ppe_thres_hdr, const u8 *phy_cap_info)
3110 if (!(phy_cap_info[5] &
3111 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT))
3114 n = hweight16(ppe_thres_hdr &
3115 IEEE80211_EHT_PPE_THRES_RU_INDEX_BITMASK_MASK);
3116 n *= 1 + u16_get_bits(ppe_thres_hdr, IEEE80211_EHT_PPE_THRES_NSS_MASK);
3119 * Each pair is 6 bits, and we need to add the 9 "header" bits to the
3122 n = n * IEEE80211_EHT_PPE_THRES_INFO_PPET_SIZE * 2 +
3123 IEEE80211_EHT_PPE_THRES_INFO_HEADER_SIZE;
3124 return DIV_ROUND_UP(n, 8);
3128 ieee80211_eht_capa_size_ok(const u8 *he_capa, const u8 *data, u8 len,
3131 const struct ieee80211_eht_cap_elem_fixed *elem = (const void *)data;
3132 u8 needed = sizeof(struct ieee80211_eht_cap_elem_fixed);
3134 if (len < needed || !he_capa)
3137 needed += ieee80211_eht_mcs_nss_size((const void *)he_capa,
3143 if (elem->phy_cap_info[5] &
3144 IEEE80211_EHT_PHY_CAP5_PPE_THRESHOLD_PRESENT) {
3147 if (len < needed + sizeof(ppe_thres_hdr))
3150 ppe_thres_hdr = get_unaligned_le16(data + needed);
3151 needed += ieee80211_eht_ppe_size(ppe_thres_hdr,
3152 elem->phy_cap_info);
3155 return len >= needed;
3159 ieee80211_eht_oper_size_ok(const u8 *data, u8 len)
3161 const struct ieee80211_eht_operation *elem = (const void *)data;
3162 u8 needed = sizeof(*elem);
3167 if (elem->params & IEEE80211_EHT_OPER_INFO_PRESENT) {
3171 IEEE80211_EHT_OPER_DISABLED_SUBCHANNEL_BITMAP_PRESENT)
3175 return len >= needed;
3178 #define IEEE80211_BW_IND_DIS_SUBCH_PRESENT BIT(1)
3180 struct ieee80211_bandwidth_indication {
3182 struct ieee80211_eht_operation_info info;
3186 ieee80211_bandwidth_indication_size_ok(const u8 *data, u8 len)
3188 const struct ieee80211_bandwidth_indication *bwi = (const void *)data;
3190 if (len < sizeof(*bwi))
3193 if (bwi->params & IEEE80211_BW_IND_DIS_SUBCH_PRESENT &&
3194 len < sizeof(*bwi) + 2)
3200 #define LISTEN_INT_USF GENMASK(15, 14)
3201 #define LISTEN_INT_UI GENMASK(13, 0)
3203 #define IEEE80211_MAX_USF FIELD_MAX(LISTEN_INT_USF)
3204 #define IEEE80211_MAX_UI FIELD_MAX(LISTEN_INT_UI)
3206 /* Authentication algorithms */
3207 #define WLAN_AUTH_OPEN 0
3208 #define WLAN_AUTH_SHARED_KEY 1
3209 #define WLAN_AUTH_FT 2
3210 #define WLAN_AUTH_SAE 3
3211 #define WLAN_AUTH_FILS_SK 4
3212 #define WLAN_AUTH_FILS_SK_PFS 5
3213 #define WLAN_AUTH_FILS_PK 6
3214 #define WLAN_AUTH_LEAP 128
3216 #define WLAN_AUTH_CHALLENGE_LEN 128
3218 #define WLAN_CAPABILITY_ESS (1<<0)
3219 #define WLAN_CAPABILITY_IBSS (1<<1)
3222 * A mesh STA sets the ESS and IBSS capability bits to zero.
3223 * however, this holds true for p2p probe responses (in the p2p_find
3226 #define WLAN_CAPABILITY_IS_STA_BSS(cap) \
3227 (!((cap) & (WLAN_CAPABILITY_ESS | WLAN_CAPABILITY_IBSS)))
3229 #define WLAN_CAPABILITY_CF_POLLABLE (1<<2)
3230 #define WLAN_CAPABILITY_CF_POLL_REQUEST (1<<3)
3231 #define WLAN_CAPABILITY_PRIVACY (1<<4)
3232 #define WLAN_CAPABILITY_SHORT_PREAMBLE (1<<5)
3233 #define WLAN_CAPABILITY_PBCC (1<<6)
3234 #define WLAN_CAPABILITY_CHANNEL_AGILITY (1<<7)
3237 #define WLAN_CAPABILITY_SPECTRUM_MGMT (1<<8)
3238 #define WLAN_CAPABILITY_QOS (1<<9)
3239 #define WLAN_CAPABILITY_SHORT_SLOT_TIME (1<<10)
3240 #define WLAN_CAPABILITY_APSD (1<<11)
3241 #define WLAN_CAPABILITY_RADIO_MEASURE (1<<12)
3242 #define WLAN_CAPABILITY_DSSS_OFDM (1<<13)
3243 #define WLAN_CAPABILITY_DEL_BACK (1<<14)
3244 #define WLAN_CAPABILITY_IMM_BACK (1<<15)
3246 /* DMG (60gHz) 802.11ad */
3247 /* type - bits 0..1 */
3248 #define WLAN_CAPABILITY_DMG_TYPE_MASK (3<<0)
3249 #define WLAN_CAPABILITY_DMG_TYPE_IBSS (1<<0) /* Tx by: STA */
3250 #define WLAN_CAPABILITY_DMG_TYPE_PBSS (2<<0) /* Tx by: PCP */
3251 #define WLAN_CAPABILITY_DMG_TYPE_AP (3<<0) /* Tx by: AP */
3253 #define WLAN_CAPABILITY_DMG_CBAP_ONLY (1<<2)
3254 #define WLAN_CAPABILITY_DMG_CBAP_SOURCE (1<<3)
3255 #define WLAN_CAPABILITY_DMG_PRIVACY (1<<4)
3256 #define WLAN_CAPABILITY_DMG_ECPAC (1<<5)
3258 #define WLAN_CAPABILITY_DMG_SPECTRUM_MGMT (1<<8)
3259 #define WLAN_CAPABILITY_DMG_RADIO_MEASURE (1<<12)
3262 #define IEEE80211_SPCT_MSR_RPRT_MODE_LATE (1<<0)
3263 #define IEEE80211_SPCT_MSR_RPRT_MODE_INCAPABLE (1<<1)
3264 #define IEEE80211_SPCT_MSR_RPRT_MODE_REFUSED (1<<2)
3266 #define IEEE80211_SPCT_MSR_RPRT_TYPE_BASIC 0
3267 #define IEEE80211_SPCT_MSR_RPRT_TYPE_CCA 1
3268 #define IEEE80211_SPCT_MSR_RPRT_TYPE_RPI 2
3269 #define IEEE80211_SPCT_MSR_RPRT_TYPE_LCI 8
3270 #define IEEE80211_SPCT_MSR_RPRT_TYPE_CIVIC 11
3272 /* 802.11g ERP information element */
3273 #define WLAN_ERP_NON_ERP_PRESENT (1<<0)
3274 #define WLAN_ERP_USE_PROTECTION (1<<1)
3275 #define WLAN_ERP_BARKER_PREAMBLE (1<<2)
3277 /* WLAN_ERP_BARKER_PREAMBLE values */
3279 WLAN_ERP_PREAMBLE_SHORT = 0,
3280 WLAN_ERP_PREAMBLE_LONG = 1,
3283 /* Band ID, 802.11ad #8.4.1.45 */
3285 IEEE80211_BANDID_TV_WS = 0, /* TV white spaces */
3286 IEEE80211_BANDID_SUB1 = 1, /* Sub-1 GHz (excluding TV white spaces) */
3287 IEEE80211_BANDID_2G = 2, /* 2.4 GHz */
3288 IEEE80211_BANDID_3G = 3, /* 3.6 GHz */
3289 IEEE80211_BANDID_5G = 4, /* 4.9 and 5 GHz */
3290 IEEE80211_BANDID_60G = 5, /* 60 GHz */
3294 enum ieee80211_statuscode {
3295 WLAN_STATUS_SUCCESS = 0,
3296 WLAN_STATUS_UNSPECIFIED_FAILURE = 1,
3297 WLAN_STATUS_CAPS_UNSUPPORTED = 10,
3298 WLAN_STATUS_REASSOC_NO_ASSOC = 11,
3299 WLAN_STATUS_ASSOC_DENIED_UNSPEC = 12,
3300 WLAN_STATUS_NOT_SUPPORTED_AUTH_ALG = 13,
3301 WLAN_STATUS_UNKNOWN_AUTH_TRANSACTION = 14,
3302 WLAN_STATUS_CHALLENGE_FAIL = 15,
3303 WLAN_STATUS_AUTH_TIMEOUT = 16,
3304 WLAN_STATUS_AP_UNABLE_TO_HANDLE_NEW_STA = 17,
3305 WLAN_STATUS_ASSOC_DENIED_RATES = 18,
3307 WLAN_STATUS_ASSOC_DENIED_NOSHORTPREAMBLE = 19,
3308 WLAN_STATUS_ASSOC_DENIED_NOPBCC = 20,
3309 WLAN_STATUS_ASSOC_DENIED_NOAGILITY = 21,
3311 WLAN_STATUS_ASSOC_DENIED_NOSPECTRUM = 22,
3312 WLAN_STATUS_ASSOC_REJECTED_BAD_POWER = 23,
3313 WLAN_STATUS_ASSOC_REJECTED_BAD_SUPP_CHAN = 24,
3315 WLAN_STATUS_ASSOC_DENIED_NOSHORTTIME = 25,
3316 WLAN_STATUS_ASSOC_DENIED_NODSSSOFDM = 26,
3318 WLAN_STATUS_ASSOC_REJECTED_TEMPORARILY = 30,
3319 WLAN_STATUS_ROBUST_MGMT_FRAME_POLICY_VIOLATION = 31,
3321 WLAN_STATUS_INVALID_IE = 40,
3322 WLAN_STATUS_INVALID_GROUP_CIPHER = 41,
3323 WLAN_STATUS_INVALID_PAIRWISE_CIPHER = 42,
3324 WLAN_STATUS_INVALID_AKMP = 43,
3325 WLAN_STATUS_UNSUPP_RSN_VERSION = 44,
3326 WLAN_STATUS_INVALID_RSN_IE_CAP = 45,
3327 WLAN_STATUS_CIPHER_SUITE_REJECTED = 46,
3329 WLAN_STATUS_UNSPECIFIED_QOS = 32,
3330 WLAN_STATUS_ASSOC_DENIED_NOBANDWIDTH = 33,
3331 WLAN_STATUS_ASSOC_DENIED_LOWACK = 34,
3332 WLAN_STATUS_ASSOC_DENIED_UNSUPP_QOS = 35,
3333 WLAN_STATUS_REQUEST_DECLINED = 37,
3334 WLAN_STATUS_INVALID_QOS_PARAM = 38,
3335 WLAN_STATUS_CHANGE_TSPEC = 39,
3336 WLAN_STATUS_WAIT_TS_DELAY = 47,
3337 WLAN_STATUS_NO_DIRECT_LINK = 48,
3338 WLAN_STATUS_STA_NOT_PRESENT = 49,
3339 WLAN_STATUS_STA_NOT_QSTA = 50,
3341 WLAN_STATUS_ANTI_CLOG_REQUIRED = 76,
3342 WLAN_STATUS_FCG_NOT_SUPP = 78,
3343 WLAN_STATUS_STA_NO_TBTT = 78,
3345 WLAN_STATUS_REJECTED_WITH_SUGGESTED_CHANGES = 39,
3346 WLAN_STATUS_REJECTED_FOR_DELAY_PERIOD = 47,
3347 WLAN_STATUS_REJECT_WITH_SCHEDULE = 83,
3348 WLAN_STATUS_PENDING_ADMITTING_FST_SESSION = 86,
3349 WLAN_STATUS_PERFORMING_FST_NOW = 87,
3350 WLAN_STATUS_PENDING_GAP_IN_BA_WINDOW = 88,
3351 WLAN_STATUS_REJECT_U_PID_SETTING = 89,
3352 WLAN_STATUS_REJECT_DSE_BAND = 96,
3353 WLAN_STATUS_DENIED_WITH_SUGGESTED_BAND_AND_CHANNEL = 99,
3354 WLAN_STATUS_DENIED_DUE_TO_SPECTRUM_MANAGEMENT = 103,
3356 WLAN_STATUS_FILS_AUTHENTICATION_FAILURE = 108,
3357 WLAN_STATUS_UNKNOWN_AUTHENTICATION_SERVER = 109,
3358 WLAN_STATUS_SAE_HASH_TO_ELEMENT = 126,
3359 WLAN_STATUS_SAE_PK = 127,
3364 enum ieee80211_reasoncode {
3365 WLAN_REASON_UNSPECIFIED = 1,
3366 WLAN_REASON_PREV_AUTH_NOT_VALID = 2,
3367 WLAN_REASON_DEAUTH_LEAVING = 3,
3368 WLAN_REASON_DISASSOC_DUE_TO_INACTIVITY = 4,
3369 WLAN_REASON_DISASSOC_AP_BUSY = 5,
3370 WLAN_REASON_CLASS2_FRAME_FROM_NONAUTH_STA = 6,
3371 WLAN_REASON_CLASS3_FRAME_FROM_NONASSOC_STA = 7,
3372 WLAN_REASON_DISASSOC_STA_HAS_LEFT = 8,
3373 WLAN_REASON_STA_REQ_ASSOC_WITHOUT_AUTH = 9,
3375 WLAN_REASON_DISASSOC_BAD_POWER = 10,
3376 WLAN_REASON_DISASSOC_BAD_SUPP_CHAN = 11,
3378 WLAN_REASON_INVALID_IE = 13,
3379 WLAN_REASON_MIC_FAILURE = 14,
3380 WLAN_REASON_4WAY_HANDSHAKE_TIMEOUT = 15,
3381 WLAN_REASON_GROUP_KEY_HANDSHAKE_TIMEOUT = 16,
3382 WLAN_REASON_IE_DIFFERENT = 17,
3383 WLAN_REASON_INVALID_GROUP_CIPHER = 18,
3384 WLAN_REASON_INVALID_PAIRWISE_CIPHER = 19,
3385 WLAN_REASON_INVALID_AKMP = 20,
3386 WLAN_REASON_UNSUPP_RSN_VERSION = 21,
3387 WLAN_REASON_INVALID_RSN_IE_CAP = 22,
3388 WLAN_REASON_IEEE8021X_FAILED = 23,
3389 WLAN_REASON_CIPHER_SUITE_REJECTED = 24,
3390 /* TDLS (802.11z) */
3391 WLAN_REASON_TDLS_TEARDOWN_UNREACHABLE = 25,
3392 WLAN_REASON_TDLS_TEARDOWN_UNSPECIFIED = 26,
3394 WLAN_REASON_DISASSOC_UNSPECIFIED_QOS = 32,
3395 WLAN_REASON_DISASSOC_QAP_NO_BANDWIDTH = 33,
3396 WLAN_REASON_DISASSOC_LOW_ACK = 34,
3397 WLAN_REASON_DISASSOC_QAP_EXCEED_TXOP = 35,
3398 WLAN_REASON_QSTA_LEAVE_QBSS = 36,
3399 WLAN_REASON_QSTA_NOT_USE = 37,
3400 WLAN_REASON_QSTA_REQUIRE_SETUP = 38,
3401 WLAN_REASON_QSTA_TIMEOUT = 39,
3402 WLAN_REASON_QSTA_CIPHER_NOT_SUPP = 45,
3404 WLAN_REASON_MESH_PEER_CANCELED = 52,
3405 WLAN_REASON_MESH_MAX_PEERS = 53,
3406 WLAN_REASON_MESH_CONFIG = 54,
3407 WLAN_REASON_MESH_CLOSE = 55,
3408 WLAN_REASON_MESH_MAX_RETRIES = 56,
3409 WLAN_REASON_MESH_CONFIRM_TIMEOUT = 57,
3410 WLAN_REASON_MESH_INVALID_GTK = 58,
3411 WLAN_REASON_MESH_INCONSISTENT_PARAM = 59,
3412 WLAN_REASON_MESH_INVALID_SECURITY = 60,
3413 WLAN_REASON_MESH_PATH_ERROR = 61,
3414 WLAN_REASON_MESH_PATH_NOFORWARD = 62,
3415 WLAN_REASON_MESH_PATH_DEST_UNREACHABLE = 63,
3416 WLAN_REASON_MAC_EXISTS_IN_MBSS = 64,
3417 WLAN_REASON_MESH_CHAN_REGULATORY = 65,
3418 WLAN_REASON_MESH_CHAN = 66,
3422 /* Information Element IDs */
3423 enum ieee80211_eid {
3425 WLAN_EID_SUPP_RATES = 1,
3426 WLAN_EID_FH_PARAMS = 2, /* reserved now */
3427 WLAN_EID_DS_PARAMS = 3,
3428 WLAN_EID_CF_PARAMS = 4,
3430 WLAN_EID_IBSS_PARAMS = 6,
3431 WLAN_EID_COUNTRY = 7,
3433 WLAN_EID_REQUEST = 10,
3434 WLAN_EID_QBSS_LOAD = 11,
3435 WLAN_EID_EDCA_PARAM_SET = 12,
3436 WLAN_EID_TSPEC = 13,
3437 WLAN_EID_TCLAS = 14,
3438 WLAN_EID_SCHEDULE = 15,
3439 WLAN_EID_CHALLENGE = 16,
3440 /* 17-31 reserved for challenge text extension */
3441 WLAN_EID_PWR_CONSTRAINT = 32,
3442 WLAN_EID_PWR_CAPABILITY = 33,
3443 WLAN_EID_TPC_REQUEST = 34,
3444 WLAN_EID_TPC_REPORT = 35,
3445 WLAN_EID_SUPPORTED_CHANNELS = 36,
3446 WLAN_EID_CHANNEL_SWITCH = 37,
3447 WLAN_EID_MEASURE_REQUEST = 38,
3448 WLAN_EID_MEASURE_REPORT = 39,
3449 WLAN_EID_QUIET = 40,
3450 WLAN_EID_IBSS_DFS = 41,
3451 WLAN_EID_ERP_INFO = 42,
3452 WLAN_EID_TS_DELAY = 43,
3453 WLAN_EID_TCLAS_PROCESSING = 44,
3454 WLAN_EID_HT_CAPABILITY = 45,
3455 WLAN_EID_QOS_CAPA = 46,
3456 /* 47 reserved for Broadcom */
3458 WLAN_EID_802_15_COEX = 49,
3459 WLAN_EID_EXT_SUPP_RATES = 50,
3460 WLAN_EID_AP_CHAN_REPORT = 51,
3461 WLAN_EID_NEIGHBOR_REPORT = 52,
3463 WLAN_EID_MOBILITY_DOMAIN = 54,
3464 WLAN_EID_FAST_BSS_TRANSITION = 55,
3465 WLAN_EID_TIMEOUT_INTERVAL = 56,
3466 WLAN_EID_RIC_DATA = 57,
3467 WLAN_EID_DSE_REGISTERED_LOCATION = 58,
3468 WLAN_EID_SUPPORTED_REGULATORY_CLASSES = 59,
3469 WLAN_EID_EXT_CHANSWITCH_ANN = 60,
3470 WLAN_EID_HT_OPERATION = 61,
3471 WLAN_EID_SECONDARY_CHANNEL_OFFSET = 62,
3472 WLAN_EID_BSS_AVG_ACCESS_DELAY = 63,
3473 WLAN_EID_ANTENNA_INFO = 64,
3475 WLAN_EID_MEASUREMENT_PILOT_TX_INFO = 66,
3476 WLAN_EID_BSS_AVAILABLE_CAPACITY = 67,
3477 WLAN_EID_BSS_AC_ACCESS_DELAY = 68,
3478 WLAN_EID_TIME_ADVERTISEMENT = 69,
3479 WLAN_EID_RRM_ENABLED_CAPABILITIES = 70,
3480 WLAN_EID_MULTIPLE_BSSID = 71,
3481 WLAN_EID_BSS_COEX_2040 = 72,
3482 WLAN_EID_BSS_INTOLERANT_CHL_REPORT = 73,
3483 WLAN_EID_OVERLAP_BSS_SCAN_PARAM = 74,
3484 WLAN_EID_RIC_DESCRIPTOR = 75,
3486 WLAN_EID_ASSOC_COMEBACK_TIME = 77,
3487 WLAN_EID_EVENT_REQUEST = 78,
3488 WLAN_EID_EVENT_REPORT = 79,
3489 WLAN_EID_DIAGNOSTIC_REQUEST = 80,
3490 WLAN_EID_DIAGNOSTIC_REPORT = 81,
3491 WLAN_EID_LOCATION_PARAMS = 82,
3492 WLAN_EID_NON_TX_BSSID_CAP = 83,
3493 WLAN_EID_SSID_LIST = 84,
3494 WLAN_EID_MULTI_BSSID_IDX = 85,
3495 WLAN_EID_FMS_DESCRIPTOR = 86,
3496 WLAN_EID_FMS_REQUEST = 87,
3497 WLAN_EID_FMS_RESPONSE = 88,
3498 WLAN_EID_QOS_TRAFFIC_CAPA = 89,
3499 WLAN_EID_BSS_MAX_IDLE_PERIOD = 90,
3500 WLAN_EID_TSF_REQUEST = 91,
3501 WLAN_EID_TSF_RESPOSNE = 92,
3502 WLAN_EID_WNM_SLEEP_MODE = 93,
3503 WLAN_EID_TIM_BCAST_REQ = 94,
3504 WLAN_EID_TIM_BCAST_RESP = 95,
3505 WLAN_EID_COLL_IF_REPORT = 96,
3506 WLAN_EID_CHANNEL_USAGE = 97,
3507 WLAN_EID_TIME_ZONE = 98,
3508 WLAN_EID_DMS_REQUEST = 99,
3509 WLAN_EID_DMS_RESPONSE = 100,
3510 WLAN_EID_LINK_ID = 101,
3511 WLAN_EID_WAKEUP_SCHEDUL = 102,
3513 WLAN_EID_CHAN_SWITCH_TIMING = 104,
3514 WLAN_EID_PTI_CONTROL = 105,
3515 WLAN_EID_PU_BUFFER_STATUS = 106,
3516 WLAN_EID_INTERWORKING = 107,
3517 WLAN_EID_ADVERTISEMENT_PROTOCOL = 108,
3518 WLAN_EID_EXPEDITED_BW_REQ = 109,
3519 WLAN_EID_QOS_MAP_SET = 110,
3520 WLAN_EID_ROAMING_CONSORTIUM = 111,
3521 WLAN_EID_EMERGENCY_ALERT = 112,
3522 WLAN_EID_MESH_CONFIG = 113,
3523 WLAN_EID_MESH_ID = 114,
3524 WLAN_EID_LINK_METRIC_REPORT = 115,
3525 WLAN_EID_CONGESTION_NOTIFICATION = 116,
3526 WLAN_EID_PEER_MGMT = 117,
3527 WLAN_EID_CHAN_SWITCH_PARAM = 118,
3528 WLAN_EID_MESH_AWAKE_WINDOW = 119,
3529 WLAN_EID_BEACON_TIMING = 120,
3530 WLAN_EID_MCCAOP_SETUP_REQ = 121,
3531 WLAN_EID_MCCAOP_SETUP_RESP = 122,
3532 WLAN_EID_MCCAOP_ADVERT = 123,
3533 WLAN_EID_MCCAOP_TEARDOWN = 124,
3534 WLAN_EID_GANN = 125,
3535 WLAN_EID_RANN = 126,
3536 WLAN_EID_EXT_CAPABILITY = 127,
3537 /* 128, 129 reserved for Agere */
3538 WLAN_EID_PREQ = 130,
3539 WLAN_EID_PREP = 131,
3540 WLAN_EID_PERR = 132,
3541 /* 133-136 reserved for Cisco */
3543 WLAN_EID_PXUC = 138,
3544 WLAN_EID_AUTH_MESH_PEER_EXCH = 139,
3546 WLAN_EID_DESTINATION_URI = 141,
3547 WLAN_EID_UAPSD_COEX = 142,
3548 WLAN_EID_WAKEUP_SCHEDULE = 143,
3549 WLAN_EID_EXT_SCHEDULE = 144,
3550 WLAN_EID_STA_AVAILABILITY = 145,
3551 WLAN_EID_DMG_TSPEC = 146,
3552 WLAN_EID_DMG_AT = 147,
3553 WLAN_EID_DMG_CAP = 148,
3554 /* 149 reserved for Cisco */
3555 WLAN_EID_CISCO_VENDOR_SPECIFIC = 150,
3556 WLAN_EID_DMG_OPERATION = 151,
3557 WLAN_EID_DMG_BSS_PARAM_CHANGE = 152,
3558 WLAN_EID_DMG_BEAM_REFINEMENT = 153,
3559 WLAN_EID_CHANNEL_MEASURE_FEEDBACK = 154,
3560 /* 155-156 reserved for Cisco */
3561 WLAN_EID_AWAKE_WINDOW = 157,
3562 WLAN_EID_MULTI_BAND = 158,
3563 WLAN_EID_ADDBA_EXT = 159,
3564 WLAN_EID_NEXT_PCP_LIST = 160,
3565 WLAN_EID_PCP_HANDOVER = 161,
3566 WLAN_EID_DMG_LINK_MARGIN = 162,
3567 WLAN_EID_SWITCHING_STREAM = 163,
3568 WLAN_EID_SESSION_TRANSITION = 164,
3569 WLAN_EID_DYN_TONE_PAIRING_REPORT = 165,
3570 WLAN_EID_CLUSTER_REPORT = 166,
3571 WLAN_EID_RELAY_CAP = 167,
3572 WLAN_EID_RELAY_XFER_PARAM_SET = 168,
3573 WLAN_EID_BEAM_LINK_MAINT = 169,
3574 WLAN_EID_MULTIPLE_MAC_ADDR = 170,
3575 WLAN_EID_U_PID = 171,
3576 WLAN_EID_DMG_LINK_ADAPT_ACK = 172,
3577 /* 173 reserved for Symbol */
3578 WLAN_EID_MCCAOP_ADV_OVERVIEW = 174,
3579 WLAN_EID_QUIET_PERIOD_REQ = 175,
3580 /* 176 reserved for Symbol */
3581 WLAN_EID_QUIET_PERIOD_RESP = 177,
3582 /* 178-179 reserved for Symbol */
3583 /* 180 reserved for ISO/IEC 20011 */
3584 WLAN_EID_EPAC_POLICY = 182,
3585 WLAN_EID_CLISTER_TIME_OFF = 183,
3586 WLAN_EID_INTER_AC_PRIO = 184,
3587 WLAN_EID_SCS_DESCRIPTOR = 185,
3588 WLAN_EID_QLOAD_REPORT = 186,
3589 WLAN_EID_HCCA_TXOP_UPDATE_COUNT = 187,
3590 WLAN_EID_HL_STREAM_ID = 188,
3591 WLAN_EID_GCR_GROUP_ADDR = 189,
3592 WLAN_EID_ANTENNA_SECTOR_ID_PATTERN = 190,
3593 WLAN_EID_VHT_CAPABILITY = 191,
3594 WLAN_EID_VHT_OPERATION = 192,
3595 WLAN_EID_EXTENDED_BSS_LOAD = 193,
3596 WLAN_EID_WIDE_BW_CHANNEL_SWITCH = 194,
3597 WLAN_EID_TX_POWER_ENVELOPE = 195,
3598 WLAN_EID_CHANNEL_SWITCH_WRAPPER = 196,
3600 WLAN_EID_QUIET_CHANNEL = 198,
3601 WLAN_EID_OPMODE_NOTIF = 199,
3603 WLAN_EID_REDUCED_NEIGHBOR_REPORT = 201,
3605 WLAN_EID_AID_REQUEST = 210,
3606 WLAN_EID_AID_RESPONSE = 211,
3607 WLAN_EID_S1G_BCN_COMPAT = 213,
3608 WLAN_EID_S1G_SHORT_BCN_INTERVAL = 214,
3609 WLAN_EID_S1G_TWT = 216,
3610 WLAN_EID_S1G_CAPABILITIES = 217,
3611 WLAN_EID_VENDOR_SPECIFIC = 221,
3612 WLAN_EID_QOS_PARAMETER = 222,
3613 WLAN_EID_S1G_OPERATION = 232,
3614 WLAN_EID_CAG_NUMBER = 237,
3615 WLAN_EID_AP_CSN = 239,
3616 WLAN_EID_FILS_INDICATION = 240,
3617 WLAN_EID_DILS = 241,
3618 WLAN_EID_FRAGMENT = 242,
3619 WLAN_EID_RSNX = 244,
3620 WLAN_EID_EXTENSION = 255
3623 /* Element ID Extensions for Element ID 255 */
3624 enum ieee80211_eid_ext {
3625 WLAN_EID_EXT_ASSOC_DELAY_INFO = 1,
3626 WLAN_EID_EXT_FILS_REQ_PARAMS = 2,
3627 WLAN_EID_EXT_FILS_KEY_CONFIRM = 3,
3628 WLAN_EID_EXT_FILS_SESSION = 4,
3629 WLAN_EID_EXT_FILS_HLP_CONTAINER = 5,
3630 WLAN_EID_EXT_FILS_IP_ADDR_ASSIGN = 6,
3631 WLAN_EID_EXT_KEY_DELIVERY = 7,
3632 WLAN_EID_EXT_FILS_WRAPPED_DATA = 8,
3633 WLAN_EID_EXT_FILS_PUBLIC_KEY = 12,
3634 WLAN_EID_EXT_FILS_NONCE = 13,
3635 WLAN_EID_EXT_FUTURE_CHAN_GUIDANCE = 14,
3636 WLAN_EID_EXT_HE_CAPABILITY = 35,
3637 WLAN_EID_EXT_HE_OPERATION = 36,
3638 WLAN_EID_EXT_UORA = 37,
3639 WLAN_EID_EXT_HE_MU_EDCA = 38,
3640 WLAN_EID_EXT_HE_SPR = 39,
3641 WLAN_EID_EXT_NDP_FEEDBACK_REPORT_PARAMSET = 41,
3642 WLAN_EID_EXT_BSS_COLOR_CHG_ANN = 42,
3643 WLAN_EID_EXT_QUIET_TIME_PERIOD_SETUP = 43,
3644 WLAN_EID_EXT_ESS_REPORT = 45,
3645 WLAN_EID_EXT_OPS = 46,
3646 WLAN_EID_EXT_HE_BSS_LOAD = 47,
3647 WLAN_EID_EXT_MAX_CHANNEL_SWITCH_TIME = 52,
3648 WLAN_EID_EXT_MULTIPLE_BSSID_CONFIGURATION = 55,
3649 WLAN_EID_EXT_NON_INHERITANCE = 56,
3650 WLAN_EID_EXT_KNOWN_BSSID = 57,
3651 WLAN_EID_EXT_SHORT_SSID_LIST = 58,
3652 WLAN_EID_EXT_HE_6GHZ_CAPA = 59,
3653 WLAN_EID_EXT_UL_MU_POWER_CAPA = 60,
3654 WLAN_EID_EXT_EHT_OPERATION = 106,
3655 WLAN_EID_EXT_EHT_MULTI_LINK = 107,
3656 WLAN_EID_EXT_EHT_CAPABILITY = 108,
3657 WLAN_EID_EXT_TID_TO_LINK_MAPPING = 109,
3658 WLAN_EID_EXT_BANDWIDTH_INDICATION = 135,
3661 /* Action category code */
3662 enum ieee80211_category {
3663 WLAN_CATEGORY_SPECTRUM_MGMT = 0,
3664 WLAN_CATEGORY_QOS = 1,
3665 WLAN_CATEGORY_DLS = 2,
3666 WLAN_CATEGORY_BACK = 3,
3667 WLAN_CATEGORY_PUBLIC = 4,
3668 WLAN_CATEGORY_RADIO_MEASUREMENT = 5,
3669 WLAN_CATEGORY_FAST_BBS_TRANSITION = 6,
3670 WLAN_CATEGORY_HT = 7,
3671 WLAN_CATEGORY_SA_QUERY = 8,
3672 WLAN_CATEGORY_PROTECTED_DUAL_OF_ACTION = 9,
3673 WLAN_CATEGORY_WNM = 10,
3674 WLAN_CATEGORY_WNM_UNPROTECTED = 11,
3675 WLAN_CATEGORY_TDLS = 12,
3676 WLAN_CATEGORY_MESH_ACTION = 13,
3677 WLAN_CATEGORY_MULTIHOP_ACTION = 14,
3678 WLAN_CATEGORY_SELF_PROTECTED = 15,
3679 WLAN_CATEGORY_DMG = 16,
3680 WLAN_CATEGORY_WMM = 17,
3681 WLAN_CATEGORY_FST = 18,
3682 WLAN_CATEGORY_UNPROT_DMG = 20,
3683 WLAN_CATEGORY_VHT = 21,
3684 WLAN_CATEGORY_S1G = 22,
3685 WLAN_CATEGORY_VENDOR_SPECIFIC_PROTECTED = 126,
3686 WLAN_CATEGORY_VENDOR_SPECIFIC = 127,
3689 /* SPECTRUM_MGMT action code */
3690 enum ieee80211_spectrum_mgmt_actioncode {
3691 WLAN_ACTION_SPCT_MSR_REQ = 0,
3692 WLAN_ACTION_SPCT_MSR_RPRT = 1,
3693 WLAN_ACTION_SPCT_TPC_REQ = 2,
3694 WLAN_ACTION_SPCT_TPC_RPRT = 3,
3695 WLAN_ACTION_SPCT_CHL_SWITCH = 4,
3698 /* HT action codes */
3699 enum ieee80211_ht_actioncode {
3700 WLAN_HT_ACTION_NOTIFY_CHANWIDTH = 0,
3701 WLAN_HT_ACTION_SMPS = 1,
3702 WLAN_HT_ACTION_PSMP = 2,
3703 WLAN_HT_ACTION_PCO_PHASE = 3,
3704 WLAN_HT_ACTION_CSI = 4,
3705 WLAN_HT_ACTION_NONCOMPRESSED_BF = 5,
3706 WLAN_HT_ACTION_COMPRESSED_BF = 6,
3707 WLAN_HT_ACTION_ASEL_IDX_FEEDBACK = 7,
3710 /* VHT action codes */
3711 enum ieee80211_vht_actioncode {
3712 WLAN_VHT_ACTION_COMPRESSED_BF = 0,
3713 WLAN_VHT_ACTION_GROUPID_MGMT = 1,
3714 WLAN_VHT_ACTION_OPMODE_NOTIF = 2,
3717 /* Self Protected Action codes */
3718 enum ieee80211_self_protected_actioncode {
3719 WLAN_SP_RESERVED = 0,
3720 WLAN_SP_MESH_PEERING_OPEN = 1,
3721 WLAN_SP_MESH_PEERING_CONFIRM = 2,
3722 WLAN_SP_MESH_PEERING_CLOSE = 3,
3723 WLAN_SP_MGK_INFORM = 4,
3724 WLAN_SP_MGK_ACK = 5,
3727 /* Mesh action codes */
3728 enum ieee80211_mesh_actioncode {
3729 WLAN_MESH_ACTION_LINK_METRIC_REPORT,
3730 WLAN_MESH_ACTION_HWMP_PATH_SELECTION,
3731 WLAN_MESH_ACTION_GATE_ANNOUNCEMENT,
3732 WLAN_MESH_ACTION_CONGESTION_CONTROL_NOTIFICATION,
3733 WLAN_MESH_ACTION_MCCA_SETUP_REQUEST,
3734 WLAN_MESH_ACTION_MCCA_SETUP_REPLY,
3735 WLAN_MESH_ACTION_MCCA_ADVERTISEMENT_REQUEST,
3736 WLAN_MESH_ACTION_MCCA_ADVERTISEMENT,
3737 WLAN_MESH_ACTION_MCCA_TEARDOWN,
3738 WLAN_MESH_ACTION_TBTT_ADJUSTMENT_REQUEST,
3739 WLAN_MESH_ACTION_TBTT_ADJUSTMENT_RESPONSE,
3742 /* Unprotected WNM action codes */
3743 enum ieee80211_unprotected_wnm_actioncode {
3744 WLAN_UNPROTECTED_WNM_ACTION_TIM = 0,
3745 WLAN_UNPROTECTED_WNM_ACTION_TIMING_MEASUREMENT_RESPONSE = 1,
3748 /* Security key length */
3749 enum ieee80211_key_len {
3750 WLAN_KEY_LEN_WEP40 = 5,
3751 WLAN_KEY_LEN_WEP104 = 13,
3752 WLAN_KEY_LEN_CCMP = 16,
3753 WLAN_KEY_LEN_CCMP_256 = 32,
3754 WLAN_KEY_LEN_TKIP = 32,
3755 WLAN_KEY_LEN_AES_CMAC = 16,
3756 WLAN_KEY_LEN_SMS4 = 32,
3757 WLAN_KEY_LEN_GCMP = 16,
3758 WLAN_KEY_LEN_GCMP_256 = 32,
3759 WLAN_KEY_LEN_BIP_CMAC_256 = 32,
3760 WLAN_KEY_LEN_BIP_GMAC_128 = 16,
3761 WLAN_KEY_LEN_BIP_GMAC_256 = 32,
3764 enum ieee80211_s1g_actioncode {
3765 WLAN_S1G_AID_SWITCH_REQUEST,
3766 WLAN_S1G_AID_SWITCH_RESPONSE,
3767 WLAN_S1G_SYNC_CONTROL,
3768 WLAN_S1G_STA_INFO_ANNOUNCE,
3769 WLAN_S1G_EDCA_PARAM_SET,
3770 WLAN_S1G_EL_OPERATION,
3772 WLAN_S1G_TWT_TEARDOWN,
3773 WLAN_S1G_SECT_GROUP_ID_LIST,
3774 WLAN_S1G_SECT_ID_FEEDBACK,
3775 WLAN_S1G_TWT_INFORMATION = 11,
3778 #define IEEE80211_WEP_IV_LEN 4
3779 #define IEEE80211_WEP_ICV_LEN 4
3780 #define IEEE80211_CCMP_HDR_LEN 8
3781 #define IEEE80211_CCMP_MIC_LEN 8
3782 #define IEEE80211_CCMP_PN_LEN 6
3783 #define IEEE80211_CCMP_256_HDR_LEN 8
3784 #define IEEE80211_CCMP_256_MIC_LEN 16
3785 #define IEEE80211_CCMP_256_PN_LEN 6
3786 #define IEEE80211_TKIP_IV_LEN 8
3787 #define IEEE80211_TKIP_ICV_LEN 4
3788 #define IEEE80211_CMAC_PN_LEN 6
3789 #define IEEE80211_GMAC_PN_LEN 6
3790 #define IEEE80211_GCMP_HDR_LEN 8
3791 #define IEEE80211_GCMP_MIC_LEN 16
3792 #define IEEE80211_GCMP_PN_LEN 6
3794 #define FILS_NONCE_LEN 16
3795 #define FILS_MAX_KEK_LEN 64
3797 #define FILS_ERP_MAX_USERNAME_LEN 16
3798 #define FILS_ERP_MAX_REALM_LEN 253
3799 #define FILS_ERP_MAX_RRK_LEN 64
3801 #define PMK_MAX_LEN 64
3802 #define SAE_PASSWORD_MAX_LEN 128
3804 /* Public action codes (IEEE Std 802.11-2016, 9.6.8.1, Table 9-307) */
3805 enum ieee80211_pub_actioncode {
3806 WLAN_PUB_ACTION_20_40_BSS_COEX = 0,
3807 WLAN_PUB_ACTION_DSE_ENABLEMENT = 1,
3808 WLAN_PUB_ACTION_DSE_DEENABLEMENT = 2,
3809 WLAN_PUB_ACTION_DSE_REG_LOC_ANN = 3,
3810 WLAN_PUB_ACTION_EXT_CHANSW_ANN = 4,
3811 WLAN_PUB_ACTION_DSE_MSMT_REQ = 5,
3812 WLAN_PUB_ACTION_DSE_MSMT_RESP = 6,
3813 WLAN_PUB_ACTION_MSMT_PILOT = 7,
3814 WLAN_PUB_ACTION_DSE_PC = 8,
3815 WLAN_PUB_ACTION_VENDOR_SPECIFIC = 9,
3816 WLAN_PUB_ACTION_GAS_INITIAL_REQ = 10,
3817 WLAN_PUB_ACTION_GAS_INITIAL_RESP = 11,
3818 WLAN_PUB_ACTION_GAS_COMEBACK_REQ = 12,
3819 WLAN_PUB_ACTION_GAS_COMEBACK_RESP = 13,
3820 WLAN_PUB_ACTION_TDLS_DISCOVER_RES = 14,
3821 WLAN_PUB_ACTION_LOC_TRACK_NOTI = 15,
3822 WLAN_PUB_ACTION_QAB_REQUEST_FRAME = 16,
3823 WLAN_PUB_ACTION_QAB_RESPONSE_FRAME = 17,
3824 WLAN_PUB_ACTION_QMF_POLICY = 18,
3825 WLAN_PUB_ACTION_QMF_POLICY_CHANGE = 19,
3826 WLAN_PUB_ACTION_QLOAD_REQUEST = 20,
3827 WLAN_PUB_ACTION_QLOAD_REPORT = 21,
3828 WLAN_PUB_ACTION_HCCA_TXOP_ADVERT = 22,
3829 WLAN_PUB_ACTION_HCCA_TXOP_RESPONSE = 23,
3830 WLAN_PUB_ACTION_PUBLIC_KEY = 24,
3831 WLAN_PUB_ACTION_CHANNEL_AVAIL_QUERY = 25,
3832 WLAN_PUB_ACTION_CHANNEL_SCHEDULE_MGMT = 26,
3833 WLAN_PUB_ACTION_CONTACT_VERI_SIGNAL = 27,
3834 WLAN_PUB_ACTION_GDD_ENABLEMENT_REQ = 28,
3835 WLAN_PUB_ACTION_GDD_ENABLEMENT_RESP = 29,
3836 WLAN_PUB_ACTION_NETWORK_CHANNEL_CONTROL = 30,
3837 WLAN_PUB_ACTION_WHITE_SPACE_MAP_ANN = 31,
3838 WLAN_PUB_ACTION_FTM_REQUEST = 32,
3839 WLAN_PUB_ACTION_FTM_RESPONSE = 33,
3840 WLAN_PUB_ACTION_FILS_DISCOVERY = 34,
3843 /* TDLS action codes */
3844 enum ieee80211_tdls_actioncode {
3845 WLAN_TDLS_SETUP_REQUEST = 0,
3846 WLAN_TDLS_SETUP_RESPONSE = 1,
3847 WLAN_TDLS_SETUP_CONFIRM = 2,
3848 WLAN_TDLS_TEARDOWN = 3,
3849 WLAN_TDLS_PEER_TRAFFIC_INDICATION = 4,
3850 WLAN_TDLS_CHANNEL_SWITCH_REQUEST = 5,
3851 WLAN_TDLS_CHANNEL_SWITCH_RESPONSE = 6,
3852 WLAN_TDLS_PEER_PSM_REQUEST = 7,
3853 WLAN_TDLS_PEER_PSM_RESPONSE = 8,
3854 WLAN_TDLS_PEER_TRAFFIC_RESPONSE = 9,
3855 WLAN_TDLS_DISCOVERY_REQUEST = 10,
3858 /* Extended Channel Switching capability to be set in the 1st byte of
3859 * the @WLAN_EID_EXT_CAPABILITY information element
3861 #define WLAN_EXT_CAPA1_EXT_CHANNEL_SWITCHING BIT(2)
3863 /* Multiple BSSID capability is set in the 6th bit of 3rd byte of the
3864 * @WLAN_EID_EXT_CAPABILITY information element
3866 #define WLAN_EXT_CAPA3_MULTI_BSSID_SUPPORT BIT(6)
3868 /* Timing Measurement protocol for time sync is set in the 7th bit of 3rd byte
3869 * of the @WLAN_EID_EXT_CAPABILITY information element
3871 #define WLAN_EXT_CAPA3_TIMING_MEASUREMENT_SUPPORT BIT(7)
3873 /* TDLS capabilities in the 4th byte of @WLAN_EID_EXT_CAPABILITY */
3874 #define WLAN_EXT_CAPA4_TDLS_BUFFER_STA BIT(4)
3875 #define WLAN_EXT_CAPA4_TDLS_PEER_PSM BIT(5)
3876 #define WLAN_EXT_CAPA4_TDLS_CHAN_SWITCH BIT(6)
3878 /* Interworking capabilities are set in 7th bit of 4th byte of the
3879 * @WLAN_EID_EXT_CAPABILITY information element
3881 #define WLAN_EXT_CAPA4_INTERWORKING_ENABLED BIT(7)
3884 * TDLS capabililites to be enabled in the 5th byte of the
3885 * @WLAN_EID_EXT_CAPABILITY information element
3887 #define WLAN_EXT_CAPA5_TDLS_ENABLED BIT(5)
3888 #define WLAN_EXT_CAPA5_TDLS_PROHIBITED BIT(6)
3889 #define WLAN_EXT_CAPA5_TDLS_CH_SW_PROHIBITED BIT(7)
3891 #define WLAN_EXT_CAPA8_TDLS_WIDE_BW_ENABLED BIT(5)
3892 #define WLAN_EXT_CAPA8_OPMODE_NOTIF BIT(6)
3894 /* Defines the maximal number of MSDUs in an A-MSDU. */
3895 #define WLAN_EXT_CAPA8_MAX_MSDU_IN_AMSDU_LSB BIT(7)
3896 #define WLAN_EXT_CAPA9_MAX_MSDU_IN_AMSDU_MSB BIT(0)
3899 * Fine Timing Measurement Initiator - bit 71 of @WLAN_EID_EXT_CAPABILITY
3900 * information element
3902 #define WLAN_EXT_CAPA9_FTM_INITIATOR BIT(7)
3904 /* Defines support for TWT Requester and TWT Responder */
3905 #define WLAN_EXT_CAPA10_TWT_REQUESTER_SUPPORT BIT(5)
3906 #define WLAN_EXT_CAPA10_TWT_RESPONDER_SUPPORT BIT(6)
3909 * When set, indicates that the AP is able to tolerate 26-tone RU UL
3910 * OFDMA transmissions using HE TB PPDU from OBSS (not falsely classify the
3911 * 26-tone RU UL OFDMA transmissions as radar pulses).
3913 #define WLAN_EXT_CAPA10_OBSS_NARROW_BW_RU_TOLERANCE_SUPPORT BIT(7)
3915 /* Defines support for enhanced multi-bssid advertisement*/
3916 #define WLAN_EXT_CAPA11_EMA_SUPPORT BIT(3)
3918 /* TDLS specific payload type in the LLC/SNAP header */
3919 #define WLAN_TDLS_SNAP_RFTYPE 0x2
3921 /* BSS Coex IE information field bits */
3922 #define WLAN_BSS_COEX_INFORMATION_REQUEST BIT(0)
3925 * enum ieee80211_mesh_sync_method - mesh synchronization method identifier
3927 * @IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET: the default synchronization method
3928 * @IEEE80211_SYNC_METHOD_VENDOR: a vendor specific synchronization method
3929 * that will be specified in a vendor specific information element
3931 enum ieee80211_mesh_sync_method {
3932 IEEE80211_SYNC_METHOD_NEIGHBOR_OFFSET = 1,
3933 IEEE80211_SYNC_METHOD_VENDOR = 255,
3937 * enum ieee80211_mesh_path_protocol - mesh path selection protocol identifier
3939 * @IEEE80211_PATH_PROTOCOL_HWMP: the default path selection protocol
3940 * @IEEE80211_PATH_PROTOCOL_VENDOR: a vendor specific protocol that will
3941 * be specified in a vendor specific information element
3943 enum ieee80211_mesh_path_protocol {
3944 IEEE80211_PATH_PROTOCOL_HWMP = 1,
3945 IEEE80211_PATH_PROTOCOL_VENDOR = 255,
3949 * enum ieee80211_mesh_path_metric - mesh path selection metric identifier
3951 * @IEEE80211_PATH_METRIC_AIRTIME: the default path selection metric
3952 * @IEEE80211_PATH_METRIC_VENDOR: a vendor specific metric that will be
3953 * specified in a vendor specific information element
3955 enum ieee80211_mesh_path_metric {
3956 IEEE80211_PATH_METRIC_AIRTIME = 1,
3957 IEEE80211_PATH_METRIC_VENDOR = 255,
3961 * enum ieee80211_root_mode_identifier - root mesh STA mode identifier
3963 * These attribute are used by dot11MeshHWMPRootMode to set root mesh STA mode
3965 * @IEEE80211_ROOTMODE_NO_ROOT: the mesh STA is not a root mesh STA (default)
3966 * @IEEE80211_ROOTMODE_ROOT: the mesh STA is a root mesh STA if greater than
3968 * @IEEE80211_PROACTIVE_PREQ_NO_PREP: the mesh STA is a root mesh STA supports
3969 * the proactive PREQ with proactive PREP subfield set to 0
3970 * @IEEE80211_PROACTIVE_PREQ_WITH_PREP: the mesh STA is a root mesh STA
3971 * supports the proactive PREQ with proactive PREP subfield set to 1
3972 * @IEEE80211_PROACTIVE_RANN: the mesh STA is a root mesh STA supports
3973 * the proactive RANN
3975 enum ieee80211_root_mode_identifier {
3976 IEEE80211_ROOTMODE_NO_ROOT = 0,
3977 IEEE80211_ROOTMODE_ROOT = 1,
3978 IEEE80211_PROACTIVE_PREQ_NO_PREP = 2,
3979 IEEE80211_PROACTIVE_PREQ_WITH_PREP = 3,
3980 IEEE80211_PROACTIVE_RANN = 4,
3984 * IEEE 802.11-2007 7.3.2.9 Country information element
3986 * Minimum length is 8 octets, ie len must be evenly
3990 /* Although the spec says 8 I'm seeing 6 in practice */
3991 #define IEEE80211_COUNTRY_IE_MIN_LEN 6
3993 /* The Country String field of the element shall be 3 octets in length */
3994 #define IEEE80211_COUNTRY_STRING_LEN 3
3997 * For regulatory extension stuff see IEEE 802.11-2007
3998 * Annex I (page 1141) and Annex J (page 1147). Also
4001 * When dot11RegulatoryClassesRequired is true and the
4002 * first_channel/reg_extension_id is >= 201 then the IE
4003 * compromises of the 'ext' struct represented below:
4005 * - Regulatory extension ID - when generating IE this just needs
4006 * to be monotonically increasing for each triplet passed in
4008 * - Regulatory class - index into set of rules
4009 * - Coverage class - index into air propagation time (Table 7-27),
4010 * in microseconds, you can compute the air propagation time from
4011 * the index by multiplying by 3, so index 10 yields a propagation
4012 * of 10 us. Valid values are 0-31, values 32-255 are not defined
4013 * yet. A value of 0 inicates air propagation of <= 1 us.
4015 * See also Table I.2 for Emission limit sets and table
4016 * I.3 for Behavior limit sets. Table J.1 indicates how to map
4017 * a reg_class to an emission limit set and behavior limit set.
4019 #define IEEE80211_COUNTRY_EXTENSION_ID 201
4022 * Channels numbers in the IE must be monotonically increasing
4023 * if dot11RegulatoryClassesRequired is not true.
4025 * If dot11RegulatoryClassesRequired is true consecutive
4026 * subband triplets following a regulatory triplet shall
4027 * have monotonically increasing first_channel number fields.
4029 * Channel numbers shall not overlap.
4031 * Note that max_power is signed.
4033 struct ieee80211_country_ie_triplet {
4041 u8 reg_extension_id;
4048 enum ieee80211_timeout_interval_type {
4049 WLAN_TIMEOUT_REASSOC_DEADLINE = 1 /* 802.11r */,
4050 WLAN_TIMEOUT_KEY_LIFETIME = 2 /* 802.11r */,
4051 WLAN_TIMEOUT_ASSOC_COMEBACK = 3 /* 802.11w */,
4055 * struct ieee80211_timeout_interval_ie - Timeout Interval element
4056 * @type: type, see &enum ieee80211_timeout_interval_type
4057 * @value: timeout interval value
4059 struct ieee80211_timeout_interval_ie {
4065 * enum ieee80211_idle_options - BSS idle options
4066 * @WLAN_IDLE_OPTIONS_PROTECTED_KEEP_ALIVE: the station should send an RSN
4067 * protected frame to the AP to reset the idle timer at the AP for
4070 enum ieee80211_idle_options {
4071 WLAN_IDLE_OPTIONS_PROTECTED_KEEP_ALIVE = BIT(0),
4075 * struct ieee80211_bss_max_idle_period_ie
4077 * This structure refers to "BSS Max idle period element"
4079 * @max_idle_period: indicates the time period during which a station can
4080 * refrain from transmitting frames to its associated AP without being
4081 * disassociated. In units of 1000 TUs.
4082 * @idle_options: indicates the options associated with the BSS idle capability
4083 * as specified in &enum ieee80211_idle_options.
4085 struct ieee80211_bss_max_idle_period_ie {
4086 __le16 max_idle_period;
4090 /* BACK action code */
4091 enum ieee80211_back_actioncode {
4092 WLAN_ACTION_ADDBA_REQ = 0,
4093 WLAN_ACTION_ADDBA_RESP = 1,
4094 WLAN_ACTION_DELBA = 2,
4097 /* BACK (block-ack) parties */
4098 enum ieee80211_back_parties {
4099 WLAN_BACK_RECIPIENT = 0,
4100 WLAN_BACK_INITIATOR = 1,
4103 /* SA Query action */
4104 enum ieee80211_sa_query_action {
4105 WLAN_ACTION_SA_QUERY_REQUEST = 0,
4106 WLAN_ACTION_SA_QUERY_RESPONSE = 1,
4110 * struct ieee80211_bssid_index
4112 * This structure refers to "Multiple BSSID-index element"
4114 * @bssid_index: BSSID index
4115 * @dtim_period: optional, overrides transmitted BSS dtim period
4116 * @dtim_count: optional, overrides transmitted BSS dtim count
4118 struct ieee80211_bssid_index {
4125 * struct ieee80211_multiple_bssid_configuration
4127 * This structure refers to "Multiple BSSID Configuration element"
4129 * @bssid_count: total number of active BSSIDs in the set
4130 * @profile_periodicity: the least number of beacon frames need to be received
4131 * in order to discover all the nontransmitted BSSIDs in the set.
4133 struct ieee80211_multiple_bssid_configuration {
4135 u8 profile_periodicity;
4138 #define SUITE(oui, id) (((oui) << 8) | (id))
4140 /* cipher suite selectors */
4141 #define WLAN_CIPHER_SUITE_USE_GROUP SUITE(0x000FAC, 0)
4142 #define WLAN_CIPHER_SUITE_WEP40 SUITE(0x000FAC, 1)
4143 #define WLAN_CIPHER_SUITE_TKIP SUITE(0x000FAC, 2)
4144 /* reserved: SUITE(0x000FAC, 3) */
4145 #define WLAN_CIPHER_SUITE_CCMP SUITE(0x000FAC, 4)
4146 #define WLAN_CIPHER_SUITE_WEP104 SUITE(0x000FAC, 5)
4147 #define WLAN_CIPHER_SUITE_AES_CMAC SUITE(0x000FAC, 6)
4148 #define WLAN_CIPHER_SUITE_GCMP SUITE(0x000FAC, 8)
4149 #define WLAN_CIPHER_SUITE_GCMP_256 SUITE(0x000FAC, 9)
4150 #define WLAN_CIPHER_SUITE_CCMP_256 SUITE(0x000FAC, 10)
4151 #define WLAN_CIPHER_SUITE_BIP_GMAC_128 SUITE(0x000FAC, 11)
4152 #define WLAN_CIPHER_SUITE_BIP_GMAC_256 SUITE(0x000FAC, 12)
4153 #define WLAN_CIPHER_SUITE_BIP_CMAC_256 SUITE(0x000FAC, 13)
4155 #define WLAN_CIPHER_SUITE_SMS4 SUITE(0x001472, 1)
4157 /* AKM suite selectors */
4158 #define WLAN_AKM_SUITE_8021X SUITE(0x000FAC, 1)
4159 #define WLAN_AKM_SUITE_PSK SUITE(0x000FAC, 2)
4160 #define WLAN_AKM_SUITE_FT_8021X SUITE(0x000FAC, 3)
4161 #define WLAN_AKM_SUITE_FT_PSK SUITE(0x000FAC, 4)
4162 #define WLAN_AKM_SUITE_8021X_SHA256 SUITE(0x000FAC, 5)
4163 #define WLAN_AKM_SUITE_PSK_SHA256 SUITE(0x000FAC, 6)
4164 #define WLAN_AKM_SUITE_TDLS SUITE(0x000FAC, 7)
4165 #define WLAN_AKM_SUITE_SAE SUITE(0x000FAC, 8)
4166 #define WLAN_AKM_SUITE_FT_OVER_SAE SUITE(0x000FAC, 9)
4167 #define WLAN_AKM_SUITE_AP_PEER_KEY SUITE(0x000FAC, 10)
4168 #define WLAN_AKM_SUITE_8021X_SUITE_B SUITE(0x000FAC, 11)
4169 #define WLAN_AKM_SUITE_8021X_SUITE_B_192 SUITE(0x000FAC, 12)
4170 #define WLAN_AKM_SUITE_FT_8021X_SHA384 SUITE(0x000FAC, 13)
4171 #define WLAN_AKM_SUITE_FILS_SHA256 SUITE(0x000FAC, 14)
4172 #define WLAN_AKM_SUITE_FILS_SHA384 SUITE(0x000FAC, 15)
4173 #define WLAN_AKM_SUITE_FT_FILS_SHA256 SUITE(0x000FAC, 16)
4174 #define WLAN_AKM_SUITE_FT_FILS_SHA384 SUITE(0x000FAC, 17)
4175 #define WLAN_AKM_SUITE_OWE SUITE(0x000FAC, 18)
4176 #define WLAN_AKM_SUITE_FT_PSK_SHA384 SUITE(0x000FAC, 19)
4177 #define WLAN_AKM_SUITE_PSK_SHA384 SUITE(0x000FAC, 20)
4179 #define WLAN_AKM_SUITE_WFA_DPP SUITE(WLAN_OUI_WFA, 2)
4181 #define WLAN_MAX_KEY_LEN 32
4183 #define WLAN_PMK_NAME_LEN 16
4184 #define WLAN_PMKID_LEN 16
4185 #define WLAN_PMK_LEN_EAP_LEAP 16
4186 #define WLAN_PMK_LEN 32
4187 #define WLAN_PMK_LEN_SUITE_B_192 48
4189 #define WLAN_OUI_WFA 0x506f9a
4190 #define WLAN_OUI_TYPE_WFA_P2P 9
4191 #define WLAN_OUI_TYPE_WFA_DPP 0x1A
4192 #define WLAN_OUI_MICROSOFT 0x0050f2
4193 #define WLAN_OUI_TYPE_MICROSOFT_WPA 1
4194 #define WLAN_OUI_TYPE_MICROSOFT_WMM 2
4195 #define WLAN_OUI_TYPE_MICROSOFT_WPS 4
4196 #define WLAN_OUI_TYPE_MICROSOFT_TPC 8
4199 * WMM/802.11e Tspec Element
4201 #define IEEE80211_WMM_IE_TSPEC_TID_MASK 0x0F
4202 #define IEEE80211_WMM_IE_TSPEC_TID_SHIFT 1
4204 enum ieee80211_tspec_status_code {
4205 IEEE80211_TSPEC_STATUS_ADMISS_ACCEPTED = 0,
4206 IEEE80211_TSPEC_STATUS_ADDTS_INVAL_PARAMS = 0x1,
4209 struct ieee80211_tspec_ie {
4218 __le16 nominal_msdu;
4220 __le32 min_service_int;
4221 __le32 max_service_int;
4222 __le32 inactivity_int;
4223 __le32 suspension_int;
4224 __le32 service_start_time;
4225 __le32 min_data_rate;
4226 __le32 mean_data_rate;
4227 __le32 peak_data_rate;
4228 __le32 max_burst_size;
4230 __le32 min_phy_rate;
4235 struct ieee80211_he_6ghz_capa {
4236 /* uses IEEE80211_HE_6GHZ_CAP_* below */
4240 /* HE 6 GHz band capabilities */
4241 /* uses enum ieee80211_min_mpdu_spacing values */
4242 #define IEEE80211_HE_6GHZ_CAP_MIN_MPDU_START 0x0007
4243 /* uses enum ieee80211_vht_max_ampdu_length_exp values */
4244 #define IEEE80211_HE_6GHZ_CAP_MAX_AMPDU_LEN_EXP 0x0038
4245 /* uses IEEE80211_VHT_CAP_MAX_MPDU_LENGTH_* values */
4246 #define IEEE80211_HE_6GHZ_CAP_MAX_MPDU_LEN 0x00c0
4247 /* WLAN_HT_CAP_SM_PS_* values */
4248 #define IEEE80211_HE_6GHZ_CAP_SM_PS 0x0600
4249 #define IEEE80211_HE_6GHZ_CAP_RD_RESPONDER 0x0800
4250 #define IEEE80211_HE_6GHZ_CAP_RX_ANTPAT_CONS 0x1000
4251 #define IEEE80211_HE_6GHZ_CAP_TX_ANTPAT_CONS 0x2000
4254 * ieee80211_get_qos_ctl - get pointer to qos control bytes
4257 * The qos ctrl bytes come after the frame_control, duration, seq_num
4258 * and 3 or 4 addresses of length ETH_ALEN. Checks frame_control to choose
4259 * between struct ieee80211_qos_hdr_4addr and struct ieee80211_qos_hdr.
4261 static inline u8 *ieee80211_get_qos_ctl(struct ieee80211_hdr *hdr)
4264 struct ieee80211_qos_hdr addr3;
4265 struct ieee80211_qos_hdr_4addr addr4;
4269 if (ieee80211_has_a4(qos->addr3.frame_control))
4270 return (u8 *)&qos->addr4.qos_ctrl;
4272 return (u8 *)&qos->addr3.qos_ctrl;
4276 * ieee80211_get_tid - get qos TID
4279 static inline u8 ieee80211_get_tid(struct ieee80211_hdr *hdr)
4281 u8 *qc = ieee80211_get_qos_ctl(hdr);
4283 return qc[0] & IEEE80211_QOS_CTL_TID_MASK;
4287 * ieee80211_get_SA - get pointer to SA
4290 * Given an 802.11 frame, this function returns the offset
4291 * to the source address (SA). It does not verify that the
4292 * header is long enough to contain the address, and the
4293 * header must be long enough to contain the frame control
4296 static inline u8 *ieee80211_get_SA(struct ieee80211_hdr *hdr)
4298 if (ieee80211_has_a4(hdr->frame_control))
4300 if (ieee80211_has_fromds(hdr->frame_control))
4306 * ieee80211_get_DA - get pointer to DA
4309 * Given an 802.11 frame, this function returns the offset
4310 * to the destination address (DA). It does not verify that
4311 * the header is long enough to contain the address, and the
4312 * header must be long enough to contain the frame control
4315 static inline u8 *ieee80211_get_DA(struct ieee80211_hdr *hdr)
4317 if (ieee80211_has_tods(hdr->frame_control))
4324 * ieee80211_is_bufferable_mmpdu - check if frame is bufferable MMPDU
4325 * @skb: the skb to check, starting with the 802.11 header
4327 static inline bool ieee80211_is_bufferable_mmpdu(struct sk_buff *skb)
4329 struct ieee80211_mgmt *mgmt = (void *)skb->data;
4330 __le16 fc = mgmt->frame_control;
4333 * IEEE 802.11 REVme D2.0 definition of bufferable MMPDU;
4334 * note that this ignores the IBSS special case.
4336 if (!ieee80211_is_mgmt(fc))
4339 if (ieee80211_is_disassoc(fc) || ieee80211_is_deauth(fc))
4342 if (!ieee80211_is_action(fc))
4345 if (skb->len < offsetofend(typeof(*mgmt), u.action.u.ftm.action_code))
4348 /* action frame - additionally check for non-bufferable FTM */
4350 if (mgmt->u.action.category != WLAN_CATEGORY_PUBLIC &&
4351 mgmt->u.action.category != WLAN_CATEGORY_PROTECTED_DUAL_OF_ACTION)
4354 if (mgmt->u.action.u.ftm.action_code == WLAN_PUB_ACTION_FTM_REQUEST ||
4355 mgmt->u.action.u.ftm.action_code == WLAN_PUB_ACTION_FTM_RESPONSE)
4362 * _ieee80211_is_robust_mgmt_frame - check if frame is a robust management frame
4363 * @hdr: the frame (buffer must include at least the first octet of payload)
4365 static inline bool _ieee80211_is_robust_mgmt_frame(struct ieee80211_hdr *hdr)
4367 if (ieee80211_is_disassoc(hdr->frame_control) ||
4368 ieee80211_is_deauth(hdr->frame_control))
4371 if (ieee80211_is_action(hdr->frame_control)) {
4375 * Action frames, excluding Public Action frames, are Robust
4376 * Management Frames. However, if we are looking at a Protected
4377 * frame, skip the check since the data may be encrypted and
4378 * the frame has already been found to be a Robust Management
4379 * Frame (by the other end).
4381 if (ieee80211_has_protected(hdr->frame_control))
4383 category = ((u8 *) hdr) + 24;
4384 return *category != WLAN_CATEGORY_PUBLIC &&
4385 *category != WLAN_CATEGORY_HT &&
4386 *category != WLAN_CATEGORY_WNM_UNPROTECTED &&
4387 *category != WLAN_CATEGORY_SELF_PROTECTED &&
4388 *category != WLAN_CATEGORY_UNPROT_DMG &&
4389 *category != WLAN_CATEGORY_VHT &&
4390 *category != WLAN_CATEGORY_S1G &&
4391 *category != WLAN_CATEGORY_VENDOR_SPECIFIC;
4398 * ieee80211_is_robust_mgmt_frame - check if skb contains a robust mgmt frame
4399 * @skb: the skb containing the frame, length will be checked
4401 static inline bool ieee80211_is_robust_mgmt_frame(struct sk_buff *skb)
4403 if (skb->len < IEEE80211_MIN_ACTION_SIZE)
4405 return _ieee80211_is_robust_mgmt_frame((void *)skb->data);
4409 * ieee80211_is_public_action - check if frame is a public action frame
4411 * @len: length of the frame
4413 static inline bool ieee80211_is_public_action(struct ieee80211_hdr *hdr,
4416 struct ieee80211_mgmt *mgmt = (void *)hdr;
4418 if (len < IEEE80211_MIN_ACTION_SIZE)
4420 if (!ieee80211_is_action(hdr->frame_control))
4422 return mgmt->u.action.category == WLAN_CATEGORY_PUBLIC;
4426 * ieee80211_is_protected_dual_of_public_action - check if skb contains a
4427 * protected dual of public action management frame
4428 * @skb: the skb containing the frame, length will be checked
4430 * Return: true if the skb contains a protected dual of public action
4431 * management frame, false otherwise.
4434 ieee80211_is_protected_dual_of_public_action(struct sk_buff *skb)
4438 if (!ieee80211_is_public_action((void *)skb->data, skb->len) ||
4439 skb->len < IEEE80211_MIN_ACTION_SIZE + 1)
4442 action = *(u8 *)(skb->data + IEEE80211_MIN_ACTION_SIZE);
4444 return action != WLAN_PUB_ACTION_20_40_BSS_COEX &&
4445 action != WLAN_PUB_ACTION_DSE_REG_LOC_ANN &&
4446 action != WLAN_PUB_ACTION_MSMT_PILOT &&
4447 action != WLAN_PUB_ACTION_TDLS_DISCOVER_RES &&
4448 action != WLAN_PUB_ACTION_LOC_TRACK_NOTI &&
4449 action != WLAN_PUB_ACTION_FTM_REQUEST &&
4450 action != WLAN_PUB_ACTION_FTM_RESPONSE &&
4451 action != WLAN_PUB_ACTION_FILS_DISCOVERY &&
4452 action != WLAN_PUB_ACTION_VENDOR_SPECIFIC;
4456 * _ieee80211_is_group_privacy_action - check if frame is a group addressed
4457 * privacy action frame
4460 static inline bool _ieee80211_is_group_privacy_action(struct ieee80211_hdr *hdr)
4462 struct ieee80211_mgmt *mgmt = (void *)hdr;
4464 if (!ieee80211_is_action(hdr->frame_control) ||
4465 !is_multicast_ether_addr(hdr->addr1))
4468 return mgmt->u.action.category == WLAN_CATEGORY_MESH_ACTION ||
4469 mgmt->u.action.category == WLAN_CATEGORY_MULTIHOP_ACTION;
4473 * ieee80211_is_group_privacy_action - check if frame is a group addressed
4474 * privacy action frame
4475 * @skb: the skb containing the frame, length will be checked
4477 static inline bool ieee80211_is_group_privacy_action(struct sk_buff *skb)
4479 if (skb->len < IEEE80211_MIN_ACTION_SIZE)
4481 return _ieee80211_is_group_privacy_action((void *)skb->data);
4485 * ieee80211_tu_to_usec - convert time units (TU) to microseconds
4488 static inline unsigned long ieee80211_tu_to_usec(unsigned long tu)
4494 * ieee80211_check_tim - check if AID bit is set in TIM
4496 * @tim_len: length of the TIM IE
4497 * @aid: the AID to look for
4499 static inline bool ieee80211_check_tim(const struct ieee80211_tim_ie *tim,
4500 u8 tim_len, u16 aid)
4503 u8 index, indexn1, indexn2;
4505 if (unlikely(!tim || tim_len < sizeof(*tim)))
4510 mask = 1 << (aid & 7);
4512 indexn1 = tim->bitmap_ctrl & 0xfe;
4513 indexn2 = tim_len + indexn1 - 4;
4515 if (index < indexn1 || index > indexn2)
4520 return !!(tim->virtual_map[index] & mask);
4524 * ieee80211_get_tdls_action - get tdls packet action (or -1, if not tdls packet)
4525 * @skb: the skb containing the frame, length will not be checked
4527 * This function assumes the frame is a data frame, and that the network header
4528 * is in the correct place.
4530 static inline int ieee80211_get_tdls_action(struct sk_buff *skb)
4532 if (!skb_is_nonlinear(skb) &&
4533 skb->len > (skb_network_offset(skb) + 2)) {
4534 /* Point to where the indication of TDLS should start */
4535 const u8 *tdls_data = skb_network_header(skb) - 2;
4537 if (get_unaligned_be16(tdls_data) == ETH_P_TDLS &&
4538 tdls_data[2] == WLAN_TDLS_SNAP_RFTYPE &&
4539 tdls_data[3] == WLAN_CATEGORY_TDLS)
4540 return tdls_data[4];
4546 /* convert time units */
4547 #define TU_TO_JIFFIES(x) (usecs_to_jiffies((x) * 1024))
4548 #define TU_TO_EXP_TIME(x) (jiffies + TU_TO_JIFFIES(x))
4550 /* convert frequencies */
4551 #define MHZ_TO_KHZ(freq) ((freq) * 1000)
4552 #define KHZ_TO_MHZ(freq) ((freq) / 1000)
4553 #define PR_KHZ(f) KHZ_TO_MHZ(f), f % 1000
4554 #define KHZ_F "%d.%03d"
4556 /* convert powers */
4557 #define DBI_TO_MBI(gain) ((gain) * 100)
4558 #define MBI_TO_DBI(gain) ((gain) / 100)
4559 #define DBM_TO_MBM(gain) ((gain) * 100)
4560 #define MBM_TO_DBM(gain) ((gain) / 100)
4563 * ieee80211_action_contains_tpc - checks if the frame contains TPC element
4564 * @skb: the skb containing the frame, length will be checked
4566 * This function checks if it's either TPC report action frame or Link
4567 * Measurement report action frame as defined in IEEE Std. 802.11-2012 8.5.2.5
4568 * and 8.5.7.5 accordingly.
4570 static inline bool ieee80211_action_contains_tpc(struct sk_buff *skb)
4572 struct ieee80211_mgmt *mgmt = (void *)skb->data;
4574 if (!ieee80211_is_action(mgmt->frame_control))
4577 if (skb->len < IEEE80211_MIN_ACTION_SIZE +
4578 sizeof(mgmt->u.action.u.tpc_report))
4582 * TPC report - check that:
4583 * category = 0 (Spectrum Management) or 5 (Radio Measurement)
4584 * spectrum management action = 3 (TPC/Link Measurement report)
4585 * TPC report EID = 35
4586 * TPC report element length = 2
4588 * The spectrum management's tpc_report struct is used here both for
4589 * parsing tpc_report and radio measurement's link measurement report
4590 * frame, since the relevant part is identical in both frames.
4592 if (mgmt->u.action.category != WLAN_CATEGORY_SPECTRUM_MGMT &&
4593 mgmt->u.action.category != WLAN_CATEGORY_RADIO_MEASUREMENT)
4596 /* both spectrum mgmt and link measurement have same action code */
4597 if (mgmt->u.action.u.tpc_report.action_code !=
4598 WLAN_ACTION_SPCT_TPC_RPRT)
4601 if (mgmt->u.action.u.tpc_report.tpc_elem_id != WLAN_EID_TPC_REPORT ||
4602 mgmt->u.action.u.tpc_report.tpc_elem_length !=
4603 sizeof(struct ieee80211_tpc_report_ie))
4609 static inline bool ieee80211_is_timing_measurement(struct sk_buff *skb)
4611 struct ieee80211_mgmt *mgmt = (void *)skb->data;
4613 if (skb->len < IEEE80211_MIN_ACTION_SIZE)
4616 if (!ieee80211_is_action(mgmt->frame_control))
4619 if (mgmt->u.action.category == WLAN_CATEGORY_WNM_UNPROTECTED &&
4620 mgmt->u.action.u.wnm_timing_msr.action_code ==
4621 WLAN_UNPROTECTED_WNM_ACTION_TIMING_MEASUREMENT_RESPONSE &&
4622 skb->len >= offsetofend(typeof(*mgmt), u.action.u.wnm_timing_msr))
4628 static inline bool ieee80211_is_ftm(struct sk_buff *skb)
4630 struct ieee80211_mgmt *mgmt = (void *)skb->data;
4632 if (!ieee80211_is_public_action((void *)mgmt, skb->len))
4635 if (mgmt->u.action.u.ftm.action_code ==
4636 WLAN_PUB_ACTION_FTM_RESPONSE &&
4637 skb->len >= offsetofend(typeof(*mgmt), u.action.u.ftm))
4649 /* element iteration helpers */
4650 #define for_each_element(_elem, _data, _datalen) \
4651 for (_elem = (const struct element *)(_data); \
4652 (const u8 *)(_data) + (_datalen) - (const u8 *)_elem >= \
4653 (int)sizeof(*_elem) && \
4654 (const u8 *)(_data) + (_datalen) - (const u8 *)_elem >= \
4655 (int)sizeof(*_elem) + _elem->datalen; \
4656 _elem = (const struct element *)(_elem->data + _elem->datalen))
4658 #define for_each_element_id(element, _id, data, datalen) \
4659 for_each_element(element, data, datalen) \
4660 if (element->id == (_id))
4662 #define for_each_element_extid(element, extid, _data, _datalen) \
4663 for_each_element(element, _data, _datalen) \
4664 if (element->id == WLAN_EID_EXTENSION && \
4665 element->datalen > 0 && \
4666 element->data[0] == (extid))
4668 #define for_each_subelement(sub, element) \
4669 for_each_element(sub, (element)->data, (element)->datalen)
4671 #define for_each_subelement_id(sub, id, element) \
4672 for_each_element_id(sub, id, (element)->data, (element)->datalen)
4674 #define for_each_subelement_extid(sub, extid, element) \
4675 for_each_element_extid(sub, extid, (element)->data, (element)->datalen)
4678 * for_each_element_completed - determine if element parsing consumed all data
4679 * @element: element pointer after for_each_element() or friends
4680 * @data: same data pointer as passed to for_each_element() or friends
4681 * @datalen: same data length as passed to for_each_element() or friends
4683 * This function returns %true if all the data was parsed or considered
4684 * while walking the elements. Only use this if your for_each_element()
4685 * loop cannot be broken out of, otherwise it always returns %false.
4687 * If some data was malformed, this returns %false since the last parsed
4688 * element will not fill the whole remaining data.
4690 static inline bool for_each_element_completed(const struct element *element,
4691 const void *data, size_t datalen)
4693 return (const u8 *)element == (const u8 *)data + datalen;
4697 * RSNX Capabilities:
4698 * bits 0-3: Field length (n-1)
4700 #define WLAN_RSNX_CAPA_PROTECTED_TWT BIT(4)
4701 #define WLAN_RSNX_CAPA_SAE_H2E BIT(5)
4704 * reduced neighbor report, based on Draft P802.11ax_D6.1,
4705 * section 9.4.2.170 and accepted contributions.
4707 #define IEEE80211_AP_INFO_TBTT_HDR_TYPE 0x03
4708 #define IEEE80211_AP_INFO_TBTT_HDR_FILTERED 0x04
4709 #define IEEE80211_AP_INFO_TBTT_HDR_COLOC 0x08
4710 #define IEEE80211_AP_INFO_TBTT_HDR_COUNT 0xF0
4711 #define IEEE80211_TBTT_INFO_TYPE_TBTT 0
4712 #define IEEE80211_TBTT_INFO_TYPE_MLD 1
4714 #define IEEE80211_RNR_TBTT_PARAMS_OCT_RECOMMENDED 0x01
4715 #define IEEE80211_RNR_TBTT_PARAMS_SAME_SSID 0x02
4716 #define IEEE80211_RNR_TBTT_PARAMS_MULTI_BSSID 0x04
4717 #define IEEE80211_RNR_TBTT_PARAMS_TRANSMITTED_BSSID 0x08
4718 #define IEEE80211_RNR_TBTT_PARAMS_COLOC_ESS 0x10
4719 #define IEEE80211_RNR_TBTT_PARAMS_PROBE_ACTIVE 0x20
4720 #define IEEE80211_RNR_TBTT_PARAMS_COLOC_AP 0x40
4722 #define IEEE80211_RNR_TBTT_PARAMS_PSD_NO_LIMIT 127
4723 #define IEEE80211_RNR_TBTT_PARAMS_PSD_RESERVED -128
4725 struct ieee80211_neighbor_ap_info {
4732 enum ieee80211_range_params_max_total_ltf {
4733 IEEE80211_RANGE_PARAMS_MAX_TOTAL_LTF_4 = 0,
4734 IEEE80211_RANGE_PARAMS_MAX_TOTAL_LTF_8,
4735 IEEE80211_RANGE_PARAMS_MAX_TOTAL_LTF_16,
4736 IEEE80211_RANGE_PARAMS_MAX_TOTAL_LTF_UNSPECIFIED,
4740 * reduced neighbor report, based on Draft P802.11be_D3.0,
4741 * section 9.4.2.170.2.
4743 struct ieee80211_rnr_mld_params {
4748 #define IEEE80211_RNR_MLD_PARAMS_LINK_ID 0x000F
4749 #define IEEE80211_RNR_MLD_PARAMS_BSS_CHANGE_COUNT 0x0FF0
4750 #define IEEE80211_RNR_MLD_PARAMS_UPDATES_INCLUDED 0x1000
4751 #define IEEE80211_RNR_MLD_PARAMS_DISABLED_LINK 0x2000
4753 /* Format of the TBTT information element if it has 7, 8 or 9 bytes */
4754 struct ieee80211_tbtt_info_7_8_9 {
4758 /* The following element is optional, structure may not grow */
4763 /* Format of the TBTT information element if it has >= 11 bytes */
4764 struct ieee80211_tbtt_info_ge_11 {
4769 /* The following elements are optional, structure may grow */
4772 struct ieee80211_rnr_mld_params mld_params;
4775 /* multi-link device */
4776 #define IEEE80211_MLD_MAX_NUM_LINKS 15
4778 #define IEEE80211_ML_CONTROL_TYPE 0x0007
4779 #define IEEE80211_ML_CONTROL_TYPE_BASIC 0
4780 #define IEEE80211_ML_CONTROL_TYPE_PREQ 1
4781 #define IEEE80211_ML_CONTROL_TYPE_RECONF 2
4782 #define IEEE80211_ML_CONTROL_TYPE_TDLS 3
4783 #define IEEE80211_ML_CONTROL_TYPE_PRIO_ACCESS 4
4784 #define IEEE80211_ML_CONTROL_PRESENCE_MASK 0xfff0
4786 struct ieee80211_multi_link_elem {
4791 #define IEEE80211_MLC_BASIC_PRES_LINK_ID 0x0010
4792 #define IEEE80211_MLC_BASIC_PRES_BSS_PARAM_CH_CNT 0x0020
4793 #define IEEE80211_MLC_BASIC_PRES_MED_SYNC_DELAY 0x0040
4794 #define IEEE80211_MLC_BASIC_PRES_EML_CAPA 0x0080
4795 #define IEEE80211_MLC_BASIC_PRES_MLD_CAPA_OP 0x0100
4796 #define IEEE80211_MLC_BASIC_PRES_MLD_ID 0x0200
4798 #define IEEE80211_MED_SYNC_DELAY_DURATION 0x00ff
4799 #define IEEE80211_MED_SYNC_DELAY_SYNC_OFDM_ED_THRESH 0x0f00
4800 #define IEEE80211_MED_SYNC_DELAY_SYNC_MAX_NUM_TXOPS 0xf000
4803 * Described in P802.11be_D3.0
4804 * dot11MSDTimerDuration should default to 5484 (i.e. 171.375)
4805 * dot11MSDOFDMEDthreshold defaults to -72 (i.e. 0)
4806 * dot11MSDTXOPMAX defaults to 1
4808 #define IEEE80211_MED_SYNC_DELAY_DEFAULT 0x10ac
4810 #define IEEE80211_EML_CAP_EMLSR_SUPP 0x0001
4811 #define IEEE80211_EML_CAP_EMLSR_PADDING_DELAY 0x000e
4812 #define IEEE80211_EML_CAP_EMLSR_PADDING_DELAY_0US 0
4813 #define IEEE80211_EML_CAP_EMLSR_PADDING_DELAY_32US 1
4814 #define IEEE80211_EML_CAP_EMLSR_PADDING_DELAY_64US 2
4815 #define IEEE80211_EML_CAP_EMLSR_PADDING_DELAY_128US 3
4816 #define IEEE80211_EML_CAP_EMLSR_PADDING_DELAY_256US 4
4817 #define IEEE80211_EML_CAP_EMLSR_TRANSITION_DELAY 0x0070
4818 #define IEEE80211_EML_CAP_EMLSR_TRANSITION_DELAY_0US 0
4819 #define IEEE80211_EML_CAP_EMLSR_TRANSITION_DELAY_16US 1
4820 #define IEEE80211_EML_CAP_EMLSR_TRANSITION_DELAY_32US 2
4821 #define IEEE80211_EML_CAP_EMLSR_TRANSITION_DELAY_64US 3
4822 #define IEEE80211_EML_CAP_EMLSR_TRANSITION_DELAY_128US 4
4823 #define IEEE80211_EML_CAP_EMLSR_TRANSITION_DELAY_256US 5
4824 #define IEEE80211_EML_CAP_EMLMR_SUPPORT 0x0080
4825 #define IEEE80211_EML_CAP_EMLMR_DELAY 0x0700
4826 #define IEEE80211_EML_CAP_EMLMR_DELAY_0US 0
4827 #define IEEE80211_EML_CAP_EMLMR_DELAY_32US 1
4828 #define IEEE80211_EML_CAP_EMLMR_DELAY_64US 2
4829 #define IEEE80211_EML_CAP_EMLMR_DELAY_128US 3
4830 #define IEEE80211_EML_CAP_EMLMR_DELAY_256US 4
4831 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT 0x7800
4832 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_0 0
4833 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_128US 1
4834 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_256US 2
4835 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_512US 3
4836 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_1TU 4
4837 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_2TU 5
4838 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_4TU 6
4839 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_8TU 7
4840 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_16TU 8
4841 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_32TU 9
4842 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_64TU 10
4843 #define IEEE80211_EML_CAP_TRANSITION_TIMEOUT_128TU 11
4845 #define IEEE80211_MLD_CAP_OP_MAX_SIMUL_LINKS 0x000f
4846 #define IEEE80211_MLD_CAP_OP_SRS_SUPPORT 0x0010
4847 #define IEEE80211_MLD_CAP_OP_TID_TO_LINK_MAP_NEG_SUPP 0x0060
4848 #define IEEE80211_MLD_CAP_OP_FREQ_SEP_TYPE_IND 0x0f80
4849 #define IEEE80211_MLD_CAP_OP_AAR_SUPPORT 0x1000
4851 struct ieee80211_mle_basic_common_info {
4853 u8 mld_mac_addr[ETH_ALEN];
4857 #define IEEE80211_MLC_PREQ_PRES_MLD_ID 0x0010
4859 struct ieee80211_mle_preq_common_info {
4864 #define IEEE80211_MLC_RECONF_PRES_MLD_MAC_ADDR 0x0010
4866 /* no fixed fields in RECONF */
4868 struct ieee80211_mle_tdls_common_info {
4870 u8 ap_mld_mac_addr[ETH_ALEN];
4873 #define IEEE80211_MLC_PRIO_ACCESS_PRES_AP_MLD_MAC_ADDR 0x0010
4875 /* no fixed fields in PRIO_ACCESS */
4878 * ieee80211_mle_common_size - check multi-link element common size
4879 * @data: multi-link element, must already be checked for size using
4880 * ieee80211_mle_size_ok()
4882 static inline u8 ieee80211_mle_common_size(const u8 *data)
4884 const struct ieee80211_multi_link_elem *mle = (const void *)data;
4885 u16 control = le16_to_cpu(mle->control);
4888 switch (u16_get_bits(control, IEEE80211_ML_CONTROL_TYPE)) {
4889 case IEEE80211_ML_CONTROL_TYPE_BASIC:
4890 case IEEE80211_ML_CONTROL_TYPE_PREQ:
4891 case IEEE80211_ML_CONTROL_TYPE_TDLS:
4892 case IEEE80211_ML_CONTROL_TYPE_RECONF:
4894 * The length is the first octet pointed by mle->variable so no
4895 * need to add anything
4898 case IEEE80211_ML_CONTROL_TYPE_PRIO_ACCESS:
4899 if (control & IEEE80211_MLC_PRIO_ACCESS_PRES_AP_MLD_MAC_ADDR)
4907 return sizeof(*mle) + common + mle->variable[0];
4911 * ieee80211_mle_get_bss_param_ch_cnt - returns the BSS parameter change count
4912 * @mle: the basic multi link element
4914 * The element is assumed to be of the correct type (BASIC) and big enough,
4915 * this must be checked using ieee80211_mle_type_ok().
4917 * If the BSS parameter change count value can't be found (the presence bit
4918 * for it is clear), 0 will be returned.
4921 ieee80211_mle_get_bss_param_ch_cnt(const struct ieee80211_multi_link_elem *mle)
4923 u16 control = le16_to_cpu(mle->control);
4924 const u8 *common = mle->variable;
4926 /* common points now at the beginning of ieee80211_mle_basic_common_info */
4927 common += sizeof(struct ieee80211_mle_basic_common_info);
4929 if (!(control & IEEE80211_MLC_BASIC_PRES_BSS_PARAM_CH_CNT))
4932 if (control & IEEE80211_MLC_BASIC_PRES_LINK_ID)
4939 * ieee80211_mle_get_eml_med_sync_delay - returns the medium sync delay
4940 * @data: pointer to the multi link EHT IE
4942 * The element is assumed to be of the correct type (BASIC) and big enough,
4943 * this must be checked using ieee80211_mle_type_ok().
4945 * If the medium synchronization is not present, then the default value is
4948 static inline u16 ieee80211_mle_get_eml_med_sync_delay(const u8 *data)
4950 const struct ieee80211_multi_link_elem *mle = (const void *)data;
4951 u16 control = le16_to_cpu(mle->control);
4952 const u8 *common = mle->variable;
4954 /* common points now at the beginning of ieee80211_mle_basic_common_info */
4955 common += sizeof(struct ieee80211_mle_basic_common_info);
4957 if (!(control & IEEE80211_MLC_BASIC_PRES_MED_SYNC_DELAY))
4958 return IEEE80211_MED_SYNC_DELAY_DEFAULT;
4960 if (control & IEEE80211_MLC_BASIC_PRES_LINK_ID)
4962 if (control & IEEE80211_MLC_BASIC_PRES_BSS_PARAM_CH_CNT)
4965 return get_unaligned_le16(common);
4969 * ieee80211_mle_get_eml_cap - returns the EML capability
4970 * @data: pointer to the multi link EHT IE
4972 * The element is assumed to be of the correct type (BASIC) and big enough,
4973 * this must be checked using ieee80211_mle_type_ok().
4975 * If the EML capability is not present, 0 will be returned.
4977 static inline u16 ieee80211_mle_get_eml_cap(const u8 *data)
4979 const struct ieee80211_multi_link_elem *mle = (const void *)data;
4980 u16 control = le16_to_cpu(mle->control);
4981 const u8 *common = mle->variable;
4983 /* common points now at the beginning of ieee80211_mle_basic_common_info */
4984 common += sizeof(struct ieee80211_mle_basic_common_info);
4986 if (!(control & IEEE80211_MLC_BASIC_PRES_EML_CAPA))
4989 if (control & IEEE80211_MLC_BASIC_PRES_LINK_ID)
4991 if (control & IEEE80211_MLC_BASIC_PRES_BSS_PARAM_CH_CNT)
4993 if (control & IEEE80211_MLC_BASIC_PRES_MED_SYNC_DELAY)
4996 return get_unaligned_le16(common);
5000 * ieee80211_mle_size_ok - validate multi-link element size
5001 * @data: pointer to the element data
5002 * @len: length of the containing element
5004 static inline bool ieee80211_mle_size_ok(const u8 *data, size_t len)
5006 const struct ieee80211_multi_link_elem *mle = (const void *)data;
5007 u8 fixed = sizeof(*mle);
5009 bool check_common_len = false;
5015 control = le16_to_cpu(mle->control);
5017 switch (u16_get_bits(control, IEEE80211_ML_CONTROL_TYPE)) {
5018 case IEEE80211_ML_CONTROL_TYPE_BASIC:
5019 common += sizeof(struct ieee80211_mle_basic_common_info);
5020 check_common_len = true;
5021 if (control & IEEE80211_MLC_BASIC_PRES_LINK_ID)
5023 if (control & IEEE80211_MLC_BASIC_PRES_BSS_PARAM_CH_CNT)
5025 if (control & IEEE80211_MLC_BASIC_PRES_MED_SYNC_DELAY)
5027 if (control & IEEE80211_MLC_BASIC_PRES_EML_CAPA)
5029 if (control & IEEE80211_MLC_BASIC_PRES_MLD_CAPA_OP)
5031 if (control & IEEE80211_MLC_BASIC_PRES_MLD_ID)
5034 case IEEE80211_ML_CONTROL_TYPE_PREQ:
5035 common += sizeof(struct ieee80211_mle_preq_common_info);
5036 if (control & IEEE80211_MLC_PREQ_PRES_MLD_ID)
5038 check_common_len = true;
5040 case IEEE80211_ML_CONTROL_TYPE_RECONF:
5041 if (control & IEEE80211_MLC_RECONF_PRES_MLD_MAC_ADDR)
5044 case IEEE80211_ML_CONTROL_TYPE_TDLS:
5045 common += sizeof(struct ieee80211_mle_tdls_common_info);
5046 check_common_len = true;
5048 case IEEE80211_ML_CONTROL_TYPE_PRIO_ACCESS:
5049 if (control & IEEE80211_MLC_PRIO_ACCESS_PRES_AP_MLD_MAC_ADDR)
5053 /* we don't know this type */
5057 if (len < fixed + common)
5060 if (!check_common_len)
5063 /* if present, common length is the first octet there */
5064 return mle->variable[0] >= common;
5068 * ieee80211_mle_type_ok - validate multi-link element type and size
5069 * @data: pointer to the element data
5070 * @type: expected type of the element
5071 * @len: length of the containing element
5073 static inline bool ieee80211_mle_type_ok(const u8 *data, u8 type, size_t len)
5075 const struct ieee80211_multi_link_elem *mle = (const void *)data;
5078 if (!ieee80211_mle_size_ok(data, len))
5081 control = le16_to_cpu(mle->control);
5083 if (u16_get_bits(control, IEEE80211_ML_CONTROL_TYPE) == type)
5089 enum ieee80211_mle_subelems {
5090 IEEE80211_MLE_SUBELEM_PER_STA_PROFILE = 0,
5091 IEEE80211_MLE_SUBELEM_FRAGMENT = 254,
5094 #define IEEE80211_MLE_STA_CONTROL_LINK_ID 0x000f
5095 #define IEEE80211_MLE_STA_CONTROL_COMPLETE_PROFILE 0x0010
5096 #define IEEE80211_MLE_STA_CONTROL_STA_MAC_ADDR_PRESENT 0x0020
5097 #define IEEE80211_MLE_STA_CONTROL_BEACON_INT_PRESENT 0x0040
5098 #define IEEE80211_MLE_STA_CONTROL_TSF_OFFS_PRESENT 0x0080
5099 #define IEEE80211_MLE_STA_CONTROL_DTIM_INFO_PRESENT 0x0100
5100 #define IEEE80211_MLE_STA_CONTROL_NSTR_LINK_PAIR_PRESENT 0x0200
5101 #define IEEE80211_MLE_STA_CONTROL_NSTR_BITMAP_SIZE 0x0400
5102 #define IEEE80211_MLE_STA_CONTROL_BSS_PARAM_CHANGE_CNT_PRESENT 0x0800
5104 struct ieee80211_mle_per_sta_profile {
5111 * ieee80211_mle_basic_sta_prof_size_ok - validate basic multi-link element sta
5113 * @data: pointer to the sub element data
5114 * @len: length of the containing sub element
5116 static inline bool ieee80211_mle_basic_sta_prof_size_ok(const u8 *data,
5119 const struct ieee80211_mle_per_sta_profile *prof = (const void *)data;
5121 u8 fixed = sizeof(*prof);
5127 control = le16_to_cpu(prof->control);
5129 if (control & IEEE80211_MLE_STA_CONTROL_STA_MAC_ADDR_PRESENT)
5131 if (control & IEEE80211_MLE_STA_CONTROL_BEACON_INT_PRESENT)
5133 if (control & IEEE80211_MLE_STA_CONTROL_TSF_OFFS_PRESENT)
5135 if (control & IEEE80211_MLE_STA_CONTROL_DTIM_INFO_PRESENT)
5137 if (control & IEEE80211_MLE_STA_CONTROL_COMPLETE_PROFILE &&
5138 control & IEEE80211_MLE_STA_CONTROL_NSTR_LINK_PAIR_PRESENT) {
5139 if (control & IEEE80211_MLE_STA_CONTROL_NSTR_BITMAP_SIZE)
5144 if (control & IEEE80211_MLE_STA_CONTROL_BSS_PARAM_CHANGE_CNT_PRESENT)
5147 return prof->sta_info_len >= info_len &&
5148 fixed + prof->sta_info_len <= len;
5152 * ieee80211_mle_basic_sta_prof_bss_param_ch_cnt - get per-STA profile BSS
5153 * parameter change count
5154 * @prof: the per-STA profile, having been checked with
5155 * ieee80211_mle_basic_sta_prof_size_ok() for the correct length
5157 * Return: The BSS parameter change count value if present, 0 otherwise.
5160 ieee80211_mle_basic_sta_prof_bss_param_ch_cnt(const struct ieee80211_mle_per_sta_profile *prof)
5162 u16 control = le16_to_cpu(prof->control);
5163 const u8 *pos = prof->variable;
5165 if (!(control & IEEE80211_MLE_STA_CONTROL_BSS_PARAM_CHANGE_CNT_PRESENT))
5168 if (control & IEEE80211_MLE_STA_CONTROL_STA_MAC_ADDR_PRESENT)
5170 if (control & IEEE80211_MLE_STA_CONTROL_BEACON_INT_PRESENT)
5172 if (control & IEEE80211_MLE_STA_CONTROL_TSF_OFFS_PRESENT)
5174 if (control & IEEE80211_MLE_STA_CONTROL_DTIM_INFO_PRESENT)
5176 if (control & IEEE80211_MLE_STA_CONTROL_COMPLETE_PROFILE &&
5177 control & IEEE80211_MLE_STA_CONTROL_NSTR_LINK_PAIR_PRESENT) {
5178 if (control & IEEE80211_MLE_STA_CONTROL_NSTR_BITMAP_SIZE)
5187 #define IEEE80211_MLE_STA_RECONF_CONTROL_LINK_ID 0x000f
5188 #define IEEE80211_MLE_STA_RECONF_CONTROL_COMPLETE_PROFILE 0x0010
5189 #define IEEE80211_MLE_STA_RECONF_CONTROL_STA_MAC_ADDR_PRESENT 0x0020
5190 #define IEEE80211_MLE_STA_RECONF_CONTROL_AP_REM_TIMER_PRESENT 0x0040
5191 #define IEEE80211_MLE_STA_RECONF_CONTROL_OPERATION_UPDATE_TYPE 0x0780
5192 #define IEEE80211_MLE_STA_RECONF_CONTROL_OPERATION_PARAMS_PRESENT 0x0800
5195 * ieee80211_mle_reconf_sta_prof_size_ok - validate reconfiguration multi-link
5196 * element sta profile size.
5197 * @data: pointer to the sub element data
5198 * @len: length of the containing sub element
5200 static inline bool ieee80211_mle_reconf_sta_prof_size_ok(const u8 *data,
5203 const struct ieee80211_mle_per_sta_profile *prof = (const void *)data;
5205 u8 fixed = sizeof(*prof);
5211 control = le16_to_cpu(prof->control);
5213 if (control & IEEE80211_MLE_STA_RECONF_CONTROL_STA_MAC_ADDR_PRESENT)
5214 info_len += ETH_ALEN;
5215 if (control & IEEE80211_MLE_STA_RECONF_CONTROL_AP_REM_TIMER_PRESENT)
5217 if (control & IEEE80211_MLE_STA_RECONF_CONTROL_OPERATION_PARAMS_PRESENT)
5220 return prof->sta_info_len >= info_len &&
5221 fixed + prof->sta_info_len - 1 <= len;
5224 static inline bool ieee80211_tid_to_link_map_size_ok(const u8 *data, size_t len)
5226 const struct ieee80211_ttlm_elem *t2l = (const void *)data;
5227 u8 control, fixed = sizeof(*t2l), elem_len = 0;
5232 control = t2l->control;
5234 if (control & IEEE80211_TTLM_CONTROL_SWITCH_TIME_PRESENT)
5236 if (control & IEEE80211_TTLM_CONTROL_EXPECTED_DUR_PRESENT)
5239 if (!(control & IEEE80211_TTLM_CONTROL_DEF_LINK_MAP)) {
5243 if (len < fixed + elem_len)
5246 if (control & IEEE80211_TTLM_CONTROL_LINK_MAP_SIZE)
5251 elem_len += hweight8(t2l->optional[0]) * bm_size;
5254 return len >= fixed + elem_len;
5257 #define for_each_mle_subelement(_elem, _data, _len) \
5258 if (ieee80211_mle_size_ok(_data, _len)) \
5259 for_each_element(_elem, \
5260 _data + ieee80211_mle_common_size(_data),\
5261 _len - ieee80211_mle_common_size(_data))
5263 #endif /* LINUX_IEEE80211_H */
projects / linux.git / blob