2 * Copyright (c) 2009 The FreeBSD Foundation
5 * This software was developed by Rui Paulo under sponsorship from the
8 * Redistribution and use in source and binary forms, with or without
9 * modification, are permitted provided that the following conditions
11 * 1. Redistributions of source code must retain the above copyright
12 * notice, this list of conditions and the following disclaimer.
13 * 2. Redistributions in binary form must reproduce the above copyright
14 * notice, this list of conditions and the following disclaimer in the
15 * documentation and/or other materials provided with the distribution.
17 * THIS SOFTWARE IS PROVIDED BY THE AUTHOR AND CONTRIBUTORS ``AS IS'' AND
18 * ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE
19 * IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
20 * ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR OR CONTRIBUTORS BE LIABLE
21 * FOR ANY DIRECT, INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL
22 * DAMAGES (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS
23 * OR SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
24 * HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT
25 * LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY
26 * OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF
29 * $FreeBSD: head/sys/net80211/ieee80211_mesh.c 203423 2010-02-03 10:12:49Z rpaulo $
33 * IEEE 802.11s Mesh Point (MBSS) support.
35 * Based on March 2009, D3.0 802.11s draft spec.
40 #include <sys/param.h>
41 #include <sys/systm.h>
43 #include <sys/malloc.h>
44 #include <sys/kernel.h>
46 #include <sys/socket.h>
47 #include <sys/sockio.h>
48 #include <sys/endian.h>
49 #include <sys/errno.h>
51 #include <sys/sysctl.h>
54 #include <net/if_media.h>
55 #include <net/if_llc.h>
56 #include <net/ethernet.h>
57 #include <net/route.h>
59 #include <netproto/802_11/ieee80211_var.h>
60 #include <netproto/802_11/ieee80211_action.h>
61 #include <netproto/802_11/ieee80211_input.h>
62 #include <netproto/802_11/ieee80211_mesh.h>
64 static void mesh_rt_flush_invalid(struct ieee80211vap *);
65 static int mesh_select_proto_path(struct ieee80211vap *, const char *);
66 static int mesh_select_proto_metric(struct ieee80211vap *, const char *);
67 static void mesh_vattach(struct ieee80211vap *);
68 static int mesh_newstate(struct ieee80211vap *, enum ieee80211_state, int);
69 static void mesh_rt_cleanup_callout(void *);
70 static void mesh_linkchange(struct ieee80211_node *,
71 enum ieee80211_mesh_mlstate);
72 static void mesh_checkid(void *, struct ieee80211_node *);
73 static uint32_t mesh_generateid(struct ieee80211vap *);
74 static int mesh_checkpseq(struct ieee80211vap *,
75 const uint8_t [IEEE80211_ADDR_LEN], uint32_t);
76 static struct ieee80211_node *
77 mesh_find_txnode(struct ieee80211vap *,
78 const uint8_t [IEEE80211_ADDR_LEN]);
79 static void mesh_forward(struct ieee80211vap *, struct mbuf *,
80 const struct ieee80211_meshcntl *);
81 static int mesh_input(struct ieee80211_node *, struct mbuf *, int, int);
82 static void mesh_recv_mgmt(struct ieee80211_node *, struct mbuf *, int,
84 static void mesh_peer_timeout_setup(struct ieee80211_node *);
85 static void mesh_peer_timeout_backoff(struct ieee80211_node *);
86 static void mesh_peer_timeout_callout(void *);
88 mesh_peer_timeout_stop(struct ieee80211_node *);
89 static int mesh_verify_meshid(struct ieee80211vap *, const uint8_t *);
90 static int mesh_verify_meshconf(struct ieee80211vap *, const uint8_t *);
91 static int mesh_verify_meshpeer(struct ieee80211vap *, uint8_t,
93 uint32_t mesh_airtime_calc(struct ieee80211_node *);
96 * Timeout values come from the specification and are in milliseconds.
98 SYSCTL_NODE(_net_wlan, OID_AUTO, mesh, CTLFLAG_RD, 0,
99 "IEEE 802.11s parameters");
100 static int ieee80211_mesh_retrytimeout = -1;
101 SYSCTL_PROC(_net_wlan_mesh, OID_AUTO, retrytimeout, CTLTYPE_INT | CTLFLAG_RW,
102 &ieee80211_mesh_retrytimeout, 0, ieee80211_sysctl_msecs_ticks, "I",
103 "Retry timeout (msec)");
104 static int ieee80211_mesh_holdingtimeout = -1;
105 SYSCTL_PROC(_net_wlan_mesh, OID_AUTO, holdingtimeout, CTLTYPE_INT | CTLFLAG_RW,
106 &ieee80211_mesh_holdingtimeout, 0, ieee80211_sysctl_msecs_ticks, "I",
107 "Holding state timeout (msec)");
108 static int ieee80211_mesh_confirmtimeout = -1;
109 SYSCTL_PROC(_net_wlan_mesh, OID_AUTO, confirmtimeout, CTLTYPE_INT | CTLFLAG_RW,
110 &ieee80211_mesh_confirmtimeout, 0, ieee80211_sysctl_msecs_ticks, "I",
111 "Confirm state timeout (msec)");
112 static int ieee80211_mesh_maxretries = 2;
113 SYSCTL_INT(_net_wlan_mesh, OID_AUTO, maxretries, CTLTYPE_INT | CTLFLAG_RW,
114 &ieee80211_mesh_maxretries, 0,
115 "Maximum retries during peer link establishment");
117 static const uint8_t broadcastaddr[IEEE80211_ADDR_LEN] =
118 { 0xff, 0xff, 0xff, 0xff, 0xff, 0xff };
120 static ieee80211_recv_action_func mesh_recv_action_meshpeering_open;
121 static ieee80211_recv_action_func mesh_recv_action_meshpeering_confirm;
122 static ieee80211_recv_action_func mesh_recv_action_meshpeering_close;
123 static ieee80211_recv_action_func mesh_recv_action_meshlmetric_req;
124 static ieee80211_recv_action_func mesh_recv_action_meshlmetric_rep;
126 static ieee80211_send_action_func mesh_send_action_meshpeering_open;
127 static ieee80211_send_action_func mesh_send_action_meshpeering_confirm;
128 static ieee80211_send_action_func mesh_send_action_meshpeering_close;
129 static ieee80211_send_action_func mesh_send_action_meshlink_request;
130 static ieee80211_send_action_func mesh_send_action_meshlink_reply;
132 static const struct ieee80211_mesh_proto_metric mesh_metric_airtime = {
133 .mpm_descr = "AIRTIME",
134 .mpm_ie = IEEE80211_MESHCONF_METRIC_AIRTIME,
135 .mpm_metric = mesh_airtime_calc,
138 static struct ieee80211_mesh_proto_path mesh_proto_paths[4];
139 static struct ieee80211_mesh_proto_metric mesh_proto_metrics[4];
141 MALLOC_DEFINE(M_80211_MESH_RT, "80211mesh", "802.11s routing table");
144 * Helper functions to manipulate the Mesh routing table.
147 static struct ieee80211_mesh_route *
148 mesh_rt_find_locked(struct ieee80211_mesh_state *ms,
149 const uint8_t dest[IEEE80211_ADDR_LEN])
151 struct ieee80211_mesh_route *rt;
153 TAILQ_FOREACH(rt, &ms->ms_routes, rt_next) {
154 if (IEEE80211_ADDR_EQ(dest, rt->rt_dest))
160 static struct ieee80211_mesh_route *
161 mesh_rt_add_locked(struct ieee80211_mesh_state *ms,
162 const uint8_t dest[IEEE80211_ADDR_LEN])
164 struct ieee80211_mesh_route *rt;
166 KASSERT(!IEEE80211_ADDR_EQ(broadcastaddr, dest),
167 ("%s: adding broadcast to the routing table", __func__));
169 rt = kmalloc(ALIGN(sizeof(struct ieee80211_mesh_route)) +
170 ms->ms_ppath->mpp_privlen, M_80211_MESH_RT, M_INTWAIT | M_ZERO);
172 IEEE80211_ADDR_COPY(rt->rt_dest, dest);
173 rt->rt_priv = (void *)ALIGN(&rt[1]);
174 rt->rt_crtime = ticks;
175 TAILQ_INSERT_TAIL(&ms->ms_routes, rt, rt_next);
180 struct ieee80211_mesh_route *
181 ieee80211_mesh_rt_find(struct ieee80211vap *vap,
182 const uint8_t dest[IEEE80211_ADDR_LEN])
184 struct ieee80211_mesh_state *ms = vap->iv_mesh;
185 struct ieee80211_mesh_route *rt;
187 rt = mesh_rt_find_locked(ms, dest);
191 struct ieee80211_mesh_route *
192 ieee80211_mesh_rt_add(struct ieee80211vap *vap,
193 const uint8_t dest[IEEE80211_ADDR_LEN])
195 struct ieee80211_mesh_state *ms = vap->iv_mesh;
196 struct ieee80211_mesh_route *rt;
198 KASSERT(ieee80211_mesh_rt_find(vap, dest) == NULL,
199 ("%s: duplicate entry in the routing table", __func__));
200 KASSERT(!IEEE80211_ADDR_EQ(vap->iv_myaddr, dest),
201 ("%s: adding self to the routing table", __func__));
203 rt = mesh_rt_add_locked(ms, dest);
208 * Add a proxy route (as needed) for the specified destination.
211 ieee80211_mesh_proxy_check(struct ieee80211vap *vap,
212 const uint8_t dest[IEEE80211_ADDR_LEN])
214 struct ieee80211_mesh_state *ms = vap->iv_mesh;
215 struct ieee80211_mesh_route *rt;
217 rt = mesh_rt_find_locked(ms, dest);
219 rt = mesh_rt_add_locked(ms, dest);
221 IEEE80211_NOTE_MAC(vap, IEEE80211_MSG_MESH, dest,
222 "%s", "unable to add proxy entry");
223 vap->iv_stats.is_mesh_rtaddfailed++;
225 IEEE80211_NOTE_MAC(vap, IEEE80211_MSG_MESH, dest,
226 "%s", "add proxy entry");
227 IEEE80211_ADDR_COPY(rt->rt_nexthop, vap->iv_myaddr);
228 rt->rt_flags |= IEEE80211_MESHRT_FLAGS_VALID
229 | IEEE80211_MESHRT_FLAGS_PROXY;
231 /* XXX assert PROXY? */
232 } else if ((rt->rt_flags & IEEE80211_MESHRT_FLAGS_VALID) == 0) {
233 struct ieee80211com *ic = vap->iv_ic;
235 * Fix existing entry created by received frames from
236 * stations that have some memory of dest. We also
237 * flush any frames held on the staging queue; delivering
238 * them is too much trouble right now.
240 IEEE80211_NOTE_MAC(vap, IEEE80211_MSG_MESH, dest,
241 "%s", "fix proxy entry");
242 IEEE80211_ADDR_COPY(rt->rt_nexthop, vap->iv_myaddr);
243 rt->rt_flags |= IEEE80211_MESHRT_FLAGS_VALID
244 | IEEE80211_MESHRT_FLAGS_PROXY;
245 /* XXX belongs in hwmp */
246 ieee80211_ageq_drain_node(&ic->ic_stageq,
247 (void *)(uintptr_t) ieee80211_mac_hash(ic, dest));
253 mesh_rt_del(struct ieee80211_mesh_state *ms, struct ieee80211_mesh_route *rt)
255 TAILQ_REMOVE(&ms->ms_routes, rt, rt_next);
256 kfree(rt, M_80211_MESH_RT);
260 ieee80211_mesh_rt_del(struct ieee80211vap *vap,
261 const uint8_t dest[IEEE80211_ADDR_LEN])
263 struct ieee80211_mesh_state *ms = vap->iv_mesh;
264 struct ieee80211_mesh_route *rt, *next;
266 TAILQ_FOREACH_MUTABLE(rt, &ms->ms_routes, rt_next, next) {
267 if (IEEE80211_ADDR_EQ(rt->rt_dest, dest)) {
275 ieee80211_mesh_rt_flush(struct ieee80211vap *vap)
277 struct ieee80211_mesh_state *ms = vap->iv_mesh;
278 struct ieee80211_mesh_route *rt, *next;
282 TAILQ_FOREACH_MUTABLE(rt, &ms->ms_routes, rt_next, next)
287 ieee80211_mesh_rt_flush_peer(struct ieee80211vap *vap,
288 const uint8_t peer[IEEE80211_ADDR_LEN])
290 struct ieee80211_mesh_state *ms = vap->iv_mesh;
291 struct ieee80211_mesh_route *rt, *next;
293 TAILQ_FOREACH_MUTABLE(rt, &ms->ms_routes, rt_next, next) {
294 if (IEEE80211_ADDR_EQ(rt->rt_nexthop, peer))
300 * Flush expired routing entries, i.e. those in invalid state for
304 mesh_rt_flush_invalid(struct ieee80211vap *vap)
306 struct ieee80211_mesh_state *ms = vap->iv_mesh;
307 struct ieee80211_mesh_route *rt, *next;
311 TAILQ_FOREACH_MUTABLE(rt, &ms->ms_routes, rt_next, next) {
312 if ((rt->rt_flags & IEEE80211_MESHRT_FLAGS_VALID) == 0 &&
313 ticks - rt->rt_crtime >= ms->ms_ppath->mpp_inact)
319 ieee80211_mesh_register_proto_path(const struct ieee80211_mesh_proto_path *mpp)
321 int i, firstempty = -1;
323 for (i = 0; i < NELEM(mesh_proto_paths); i++) {
324 if (strncmp(mpp->mpp_descr, mesh_proto_paths[i].mpp_descr,
325 IEEE80211_MESH_PROTO_DSZ) == 0)
327 if (!mesh_proto_paths[i].mpp_active && firstempty == -1)
332 memcpy(&mesh_proto_paths[firstempty], mpp, sizeof(*mpp));
333 mesh_proto_paths[firstempty].mpp_active = 1;
338 ieee80211_mesh_register_proto_metric(const struct
339 ieee80211_mesh_proto_metric *mpm)
341 int i, firstempty = -1;
343 for (i = 0; i < NELEM(mesh_proto_metrics); i++) {
344 if (strncmp(mpm->mpm_descr, mesh_proto_metrics[i].mpm_descr,
345 IEEE80211_MESH_PROTO_DSZ) == 0)
347 if (!mesh_proto_metrics[i].mpm_active && firstempty == -1)
352 memcpy(&mesh_proto_metrics[firstempty], mpm, sizeof(*mpm));
353 mesh_proto_metrics[firstempty].mpm_active = 1;
358 mesh_select_proto_path(struct ieee80211vap *vap, const char *name)
360 struct ieee80211_mesh_state *ms = vap->iv_mesh;
363 for (i = 0; i < NELEM(mesh_proto_paths); i++) {
364 if (strcasecmp(mesh_proto_paths[i].mpp_descr, name) == 0) {
365 ms->ms_ppath = &mesh_proto_paths[i];
373 mesh_select_proto_metric(struct ieee80211vap *vap, const char *name)
375 struct ieee80211_mesh_state *ms = vap->iv_mesh;
378 for (i = 0; i < NELEM(mesh_proto_metrics); i++) {
379 if (strcasecmp(mesh_proto_metrics[i].mpm_descr, name) == 0) {
380 ms->ms_pmetric = &mesh_proto_metrics[i];
388 ieee80211_mesh_init(void)
391 memset(mesh_proto_paths, 0, sizeof(mesh_proto_paths));
392 memset(mesh_proto_metrics, 0, sizeof(mesh_proto_metrics));
395 * Setup mesh parameters that depends on the clock frequency.
397 ieee80211_mesh_retrytimeout = msecs_to_ticks(40);
398 ieee80211_mesh_holdingtimeout = msecs_to_ticks(40);
399 ieee80211_mesh_confirmtimeout = msecs_to_ticks(40);
402 * Register action frame handlers.
404 ieee80211_recv_action_register(IEEE80211_ACTION_CAT_MESHPEERING,
405 IEEE80211_ACTION_MESHPEERING_OPEN,
406 mesh_recv_action_meshpeering_open);
407 ieee80211_recv_action_register(IEEE80211_ACTION_CAT_MESHPEERING,
408 IEEE80211_ACTION_MESHPEERING_CONFIRM,
409 mesh_recv_action_meshpeering_confirm);
410 ieee80211_recv_action_register(IEEE80211_ACTION_CAT_MESHPEERING,
411 IEEE80211_ACTION_MESHPEERING_CLOSE,
412 mesh_recv_action_meshpeering_close);
413 ieee80211_recv_action_register(IEEE80211_ACTION_CAT_MESHLMETRIC,
414 IEEE80211_ACTION_MESHLMETRIC_REQ, mesh_recv_action_meshlmetric_req);
415 ieee80211_recv_action_register(IEEE80211_ACTION_CAT_MESHLMETRIC,
416 IEEE80211_ACTION_MESHLMETRIC_REP, mesh_recv_action_meshlmetric_rep);
418 ieee80211_send_action_register(IEEE80211_ACTION_CAT_MESHPEERING,
419 IEEE80211_ACTION_MESHPEERING_OPEN,
420 mesh_send_action_meshpeering_open);
421 ieee80211_send_action_register(IEEE80211_ACTION_CAT_MESHPEERING,
422 IEEE80211_ACTION_MESHPEERING_CONFIRM,
423 mesh_send_action_meshpeering_confirm);
424 ieee80211_send_action_register(IEEE80211_ACTION_CAT_MESHPEERING,
425 IEEE80211_ACTION_MESHPEERING_CLOSE,
426 mesh_send_action_meshpeering_close);
427 ieee80211_send_action_register(IEEE80211_ACTION_CAT_MESHLMETRIC,
428 IEEE80211_ACTION_MESHLMETRIC_REQ,
429 mesh_send_action_meshlink_request);
430 ieee80211_send_action_register(IEEE80211_ACTION_CAT_MESHLMETRIC,
431 IEEE80211_ACTION_MESHLMETRIC_REP,
432 mesh_send_action_meshlink_reply);
435 * Register Airtime Link Metric.
437 ieee80211_mesh_register_proto_metric(&mesh_metric_airtime);
440 SYSINIT(wlan_mesh, SI_SUB_DRIVERS, SI_ORDER_FIRST, ieee80211_mesh_init, NULL);
443 ieee80211_mesh_attach(struct ieee80211com *ic)
445 ic->ic_vattach[IEEE80211_M_MBSS] = mesh_vattach;
449 ieee80211_mesh_detach(struct ieee80211com *ic)
454 mesh_vdetach_peers(void *arg, struct ieee80211_node *ni)
456 struct ieee80211com *ic = ni->ni_ic;
459 if (ni->ni_mlstate == IEEE80211_NODE_MESH_ESTABLISHED) {
460 args[0] = ni->ni_mlpid;
461 args[1] = ni->ni_mllid;
462 args[2] = IEEE80211_REASON_PEER_LINK_CANCELED;
463 ieee80211_send_action(ni,
464 IEEE80211_ACTION_CAT_MESHPEERING,
465 IEEE80211_ACTION_MESHPEERING_CLOSE,
468 callout_stop(&ni->ni_mltimer);
469 /* XXX belongs in hwmp */
470 ieee80211_ageq_drain_node(&ic->ic_stageq,
471 (void *)(uintptr_t) ieee80211_mac_hash(ic, ni->ni_macaddr));
475 mesh_vdetach(struct ieee80211vap *vap)
477 struct ieee80211_mesh_state *ms = vap->iv_mesh;
479 callout_stop(&ms->ms_cleantimer);
480 ieee80211_iterate_nodes(&vap->iv_ic->ic_sta, mesh_vdetach_peers,
482 ieee80211_mesh_rt_flush(vap);
483 ms->ms_ppath->mpp_vdetach(vap);
484 kfree(vap->iv_mesh, M_80211_VAP);
489 mesh_vattach(struct ieee80211vap *vap)
491 struct ieee80211_mesh_state *ms;
492 vap->iv_newstate = mesh_newstate;
493 vap->iv_input = mesh_input;
494 vap->iv_opdetach = mesh_vdetach;
495 vap->iv_recv_mgmt = mesh_recv_mgmt;
496 ms = kmalloc(sizeof(struct ieee80211_mesh_state), M_80211_VAP,
500 ms->ms_flags = (IEEE80211_MESHFLAGS_AP | IEEE80211_MESHFLAGS_FWD);
501 ms->ms_ttl = IEEE80211_MESH_DEFAULT_TTL;
502 TAILQ_INIT(&ms->ms_routes);
503 callout_init_mp(&ms->ms_cleantimer);
504 mesh_select_proto_metric(vap, "AIRTIME");
505 KASSERT(ms->ms_pmetric, ("ms_pmetric == NULL"));
506 mesh_select_proto_path(vap, "HWMP");
507 KASSERT(ms->ms_ppath, ("ms_ppath == NULL"));
508 ms->ms_ppath->mpp_vattach(vap);
512 * IEEE80211_M_MBSS vap state machine handler.
515 mesh_newstate(struct ieee80211vap *vap, enum ieee80211_state nstate, int arg)
517 struct ieee80211_mesh_state *ms = vap->iv_mesh;
518 struct ieee80211com *ic = vap->iv_ic;
519 enum ieee80211_state ostate;
520 #ifdef IEEE80211_DEBUG
521 char ethstr[ETHER_ADDRSTRLEN + 1];
524 ostate = vap->iv_state;
525 IEEE80211_DPRINTF(vap, IEEE80211_MSG_STATE, "%s: %s -> %s (%d)\n",
526 __func__, ieee80211_state_name[ostate],
527 ieee80211_state_name[nstate], arg);
528 vap->iv_state = nstate; /* state transition */
529 if (ostate != IEEE80211_S_SCAN)
530 ieee80211_cancel_scan(vap); /* background scan */
531 if (nstate != IEEE80211_S_RUN && ostate == IEEE80211_S_RUN)
532 callout_stop(&ms->ms_cleantimer);
534 case IEEE80211_S_INIT:
536 case IEEE80211_S_SCAN:
537 ieee80211_cancel_scan(vap);
539 case IEEE80211_S_CAC:
540 ieee80211_dfs_cac_stop(vap);
542 case IEEE80211_S_RUN:
543 ieee80211_iterate_nodes(&ic->ic_sta,
544 mesh_vdetach_peers, NULL);
549 if (ostate != IEEE80211_S_INIT) {
550 /* NB: optimize INIT -> INIT case */
551 ieee80211_reset_bss(vap);
552 ieee80211_mesh_rt_flush(vap);
555 case IEEE80211_S_SCAN:
557 case IEEE80211_S_INIT:
558 if (vap->iv_des_chan != IEEE80211_CHAN_ANYC &&
559 !IEEE80211_IS_CHAN_RADAR(vap->iv_des_chan) &&
562 * Already have a channel and a mesh ID; bypass
563 * the scan and startup immediately.
565 ieee80211_create_ibss(vap, vap->iv_des_chan);
569 * Initiate a scan. We can come here as a result
570 * of an IEEE80211_IOC_SCAN_REQ too in which case
571 * the vap will be marked with IEEE80211_FEXT_SCANREQ
572 * and the scan request parameters will be present
573 * in iv_scanreq. Otherwise we do the default.
575 if (vap->iv_flags_ext & IEEE80211_FEXT_SCANREQ) {
576 ieee80211_check_scan(vap,
577 vap->iv_scanreq_flags,
578 vap->iv_scanreq_duration,
579 vap->iv_scanreq_mindwell,
580 vap->iv_scanreq_maxdwell,
581 vap->iv_scanreq_nssid, vap->iv_scanreq_ssid);
582 vap->iv_flags_ext &= ~IEEE80211_FEXT_SCANREQ;
584 ieee80211_check_scan_current(vap);
590 case IEEE80211_S_CAC:
592 * Start CAC on a DFS channel. We come here when starting
593 * a bss on a DFS channel (see ieee80211_create_ibss).
595 ieee80211_dfs_cac_start(vap);
597 case IEEE80211_S_RUN:
599 case IEEE80211_S_INIT:
601 * Already have a channel; bypass the
602 * scan and startup immediately.
603 * Note that ieee80211_create_ibss will call
604 * back to do a RUN->RUN state change.
606 ieee80211_create_ibss(vap,
607 ieee80211_ht_adjust_channel(ic,
608 ic->ic_curchan, vap->iv_flags_ht));
609 /* NB: iv_bss is changed on return */
611 case IEEE80211_S_CAC:
613 * NB: This is the normal state change when CAC
614 * expires and no radar was detected; no need to
615 * clear the CAC timer as it's already expired.
618 case IEEE80211_S_CSA:
621 * Shorten inactivity timer of associated stations
622 * to weed out sta's that don't follow a CSA.
624 ieee80211_iterate_nodes(&ic->ic_sta, sta_csa, vap);
627 * Update bss node channel to reflect where
628 * we landed after CSA.
630 ieee80211_node_set_chan(vap->iv_bss,
631 ieee80211_ht_adjust_channel(ic, ic->ic_curchan,
632 ieee80211_htchanflags(vap->iv_bss->ni_chan)));
633 /* XXX bypass debug msgs */
635 case IEEE80211_S_SCAN:
636 case IEEE80211_S_RUN:
637 #ifdef IEEE80211_DEBUG
638 if (ieee80211_msg_debug(vap)) {
639 struct ieee80211_node *ni = vap->iv_bss;
641 "synchronized with %s meshid ",
642 kether_ntoa(ni->ni_meshid, ethstr));
643 ieee80211_print_essid(ni->ni_meshid,
646 kprintf(" channel %d\n",
647 ieee80211_chan2ieee(ic, ic->ic_curchan));
654 ieee80211_node_authorize(vap->iv_bss);
655 callout_reset(&ms->ms_cleantimer, ms->ms_ppath->mpp_inact,
656 mesh_rt_cleanup_callout, vap);
661 /* NB: ostate not nstate */
662 ms->ms_ppath->mpp_newstate(vap, ostate, arg);
667 mesh_rt_cleanup_callout(void *arg)
669 struct ieee80211vap *vap = arg;
670 struct ieee80211_mesh_state *ms = vap->iv_mesh;
672 wlan_serialize_enter();
673 mesh_rt_flush_invalid(vap);
674 callout_reset(&ms->ms_cleantimer, ms->ms_ppath->mpp_inact,
675 mesh_rt_cleanup_callout, vap);
676 wlan_serialize_exit();
681 * Helper function to note the Mesh Peer Link FSM change.
684 mesh_linkchange(struct ieee80211_node *ni, enum ieee80211_mesh_mlstate state)
686 struct ieee80211vap *vap = ni->ni_vap;
687 struct ieee80211_mesh_state *ms = vap->iv_mesh;
688 #ifdef IEEE80211_DEBUG
689 static const char *meshlinkstates[] = {
690 [IEEE80211_NODE_MESH_IDLE] = "IDLE",
691 [IEEE80211_NODE_MESH_OPENSNT] = "OPEN SENT",
692 [IEEE80211_NODE_MESH_OPENRCV] = "OPEN RECEIVED",
693 [IEEE80211_NODE_MESH_CONFIRMRCV] = "CONFIRM RECEIVED",
694 [IEEE80211_NODE_MESH_ESTABLISHED] = "ESTABLISHED",
695 [IEEE80211_NODE_MESH_HOLDING] = "HOLDING"
698 IEEE80211_NOTE(vap, IEEE80211_MSG_MESH,
699 ni, "peer link: %s -> %s",
700 meshlinkstates[ni->ni_mlstate], meshlinkstates[state]);
702 /* track neighbor count */
703 if (state == IEEE80211_NODE_MESH_ESTABLISHED &&
704 ni->ni_mlstate != IEEE80211_NODE_MESH_ESTABLISHED) {
705 KASSERT(ms->ms_neighbors < 65535, ("neighbor count overflow"));
707 ieee80211_beacon_notify(vap, IEEE80211_BEACON_MESHCONF);
708 } else if (ni->ni_mlstate == IEEE80211_NODE_MESH_ESTABLISHED &&
709 state != IEEE80211_NODE_MESH_ESTABLISHED) {
710 KASSERT(ms->ms_neighbors > 0, ("neighbor count 0"));
712 ieee80211_beacon_notify(vap, IEEE80211_BEACON_MESHCONF);
714 ni->ni_mlstate = state;
716 case IEEE80211_NODE_MESH_HOLDING:
717 ms->ms_ppath->mpp_peerdown(ni);
719 case IEEE80211_NODE_MESH_ESTABLISHED:
720 ieee80211_mesh_discover(vap, ni->ni_macaddr, NULL);
728 * Helper function to generate a unique local ID required for mesh
729 * peer establishment.
732 mesh_checkid(void *arg, struct ieee80211_node *ni)
736 if (*r == ni->ni_mllid)
737 *(uint16_t *)arg = 0;
741 mesh_generateid(struct ieee80211vap *vap)
747 get_random_bytes(&r, 2);
748 ieee80211_iterate_nodes(&vap->iv_ic->ic_sta, mesh_checkid, &r);
750 } while (r == 0 && maxiter > 0);
755 * Verifies if we already received this packet by checking its
757 * Returns 0 if the frame is to be accepted, 1 otherwise.
760 mesh_checkpseq(struct ieee80211vap *vap,
761 const uint8_t source[IEEE80211_ADDR_LEN], uint32_t seq)
763 struct ieee80211_mesh_route *rt;
765 rt = ieee80211_mesh_rt_find(vap, source);
767 rt = ieee80211_mesh_rt_add(vap, source);
769 IEEE80211_NOTE_MAC(vap, IEEE80211_MSG_MESH, source,
770 "%s", "add mcast route failed");
771 vap->iv_stats.is_mesh_rtaddfailed++;
774 IEEE80211_NOTE_MAC(vap, IEEE80211_MSG_MESH, source,
775 "add mcast route, mesh seqno %d", seq);
776 rt->rt_lastmseq = seq;
779 if (IEEE80211_MESH_SEQ_GEQ(rt->rt_lastmseq, seq)) {
782 rt->rt_lastmseq = seq;
788 * Iterate the routing table and locate the next hop.
790 static struct ieee80211_node *
791 mesh_find_txnode(struct ieee80211vap *vap,
792 const uint8_t dest[IEEE80211_ADDR_LEN])
794 struct ieee80211_mesh_route *rt;
796 rt = ieee80211_mesh_rt_find(vap, dest);
799 if ((rt->rt_flags & IEEE80211_MESHRT_FLAGS_VALID) == 0 ||
800 (rt->rt_flags & IEEE80211_MESHRT_FLAGS_PROXY)) {
801 IEEE80211_NOTE_MAC(vap, IEEE80211_MSG_MESH, dest,
802 "%s: !valid or proxy, flags 0x%x", __func__, rt->rt_flags);
806 return ieee80211_find_txnode(vap, rt->rt_nexthop);
810 * Forward the specified frame.
811 * Decrement the TTL and set TA to our MAC address.
814 mesh_forward(struct ieee80211vap *vap, struct mbuf *m,
815 const struct ieee80211_meshcntl *mc)
817 struct ieee80211com *ic = vap->iv_ic;
818 struct ieee80211_mesh_state *ms = vap->iv_mesh;
819 struct ifnet *ifp = vap->iv_ifp;
820 struct ifnet *parent = ic->ic_ifp;
821 const struct ieee80211_frame *wh =
822 mtod(m, const struct ieee80211_frame *);
824 struct ieee80211_meshcntl *mccopy;
825 struct ieee80211_frame *whcopy;
826 struct ieee80211_node *ni;
829 if (mc->mc_ttl == 0) {
830 IEEE80211_NOTE_FRAME(vap, IEEE80211_MSG_MESH, wh,
831 "%s", "frame not fwd'd, ttl 0");
832 vap->iv_stats.is_mesh_fwd_ttl++;
835 if (!(ms->ms_flags & IEEE80211_MESHFLAGS_FWD)) {
836 IEEE80211_NOTE_FRAME(vap, IEEE80211_MSG_MESH, wh,
837 "%s", "frame not fwd'd, fwding disabled");
838 vap->iv_stats.is_mesh_fwd_disabled++;
841 mcopy = m_dup(m, MB_DONTWAIT);
843 IEEE80211_NOTE_FRAME(vap, IEEE80211_MSG_MESH, wh,
844 "%s", "frame not fwd'd, cannot dup");
845 vap->iv_stats.is_mesh_fwd_nobuf++;
846 IFNET_STAT_INC(ifp, oerrors, 1);
849 mcopy = m_pullup(mcopy, ieee80211_hdrspace(ic, wh) +
850 sizeof(struct ieee80211_meshcntl));
852 IEEE80211_NOTE_FRAME(vap, IEEE80211_MSG_MESH, wh,
853 "%s", "frame not fwd'd, too short");
854 vap->iv_stats.is_mesh_fwd_tooshort++;
855 IFNET_STAT_INC(ifp, oerrors, 1);
859 whcopy = mtod(mcopy, struct ieee80211_frame *);
860 mccopy = (struct ieee80211_meshcntl *)
861 (mtod(mcopy, uint8_t *) + ieee80211_hdrspace(ic, wh));
862 /* XXX clear other bits? */
863 whcopy->i_fc[1] &= ~IEEE80211_FC1_RETRY;
864 IEEE80211_ADDR_COPY(whcopy->i_addr2, vap->iv_myaddr);
865 if (IEEE80211_IS_MULTICAST(wh->i_addr1)) {
866 ni = ieee80211_ref_node(vap->iv_bss);
867 mcopy->m_flags |= M_MCAST;
869 ni = mesh_find_txnode(vap, whcopy->i_addr3);
871 IEEE80211_NOTE_FRAME(vap, IEEE80211_MSG_MESH, wh,
872 "%s", "frame not fwd'd, no path");
873 vap->iv_stats.is_mesh_fwd_nopath++;
877 IEEE80211_ADDR_COPY(whcopy->i_addr1, ni->ni_macaddr);
879 KASSERT(mccopy->mc_ttl > 0, ("%s called with wrong ttl", __func__));
882 /* XXX calculate priority so drivers can find the tx queue */
883 M_WME_SETAC(mcopy, WME_AC_BE);
885 /* XXX do we know m_nextpkt is NULL? */
886 mcopy->m_pkthdr.rcvif = (void *) ni;
887 err = ieee80211_handoff(parent, mcopy);
889 /* NB: IFQ_HANDOFF reclaims mbuf */
890 ieee80211_free_node(ni);
892 IFNET_STAT_INC(ifp, opackets, 1);
897 mesh_decap(struct ieee80211vap *vap, struct mbuf *m, int hdrlen, int meshdrlen)
899 #define WHDIR(wh) ((wh)->i_fc[1] & IEEE80211_FC1_DIR_MASK)
900 uint8_t b[sizeof(struct ieee80211_qosframe_addr4) +
901 sizeof(struct ieee80211_meshcntl_ae11)];
902 const struct ieee80211_qosframe_addr4 *wh;
903 const struct ieee80211_meshcntl_ae10 *mc;
904 struct ether_header *eh;
908 if (m->m_len < hdrlen + sizeof(*llc) &&
909 (m = m_pullup(m, hdrlen + sizeof(*llc))) == NULL) {
910 IEEE80211_DPRINTF(vap, IEEE80211_MSG_ANY,
911 "discard data frame: %s", "m_pullup failed");
912 vap->iv_stats.is_rx_tooshort++;
915 memcpy(b, mtod(m, caddr_t), hdrlen);
916 wh = (const struct ieee80211_qosframe_addr4 *)&b[0];
917 mc = (const struct ieee80211_meshcntl_ae10 *)&b[hdrlen - meshdrlen];
918 KASSERT(WHDIR(wh) == IEEE80211_FC1_DIR_FROMDS ||
919 WHDIR(wh) == IEEE80211_FC1_DIR_DSTODS,
920 ("bogus dir, fc 0x%x:0x%x", wh->i_fc[0], wh->i_fc[1]));
922 llc = (struct llc *)(mtod(m, caddr_t) + hdrlen);
923 if (llc->llc_dsap == LLC_SNAP_LSAP && llc->llc_ssap == LLC_SNAP_LSAP &&
924 llc->llc_control == LLC_UI && llc->llc_snap.org_code[0] == 0 &&
925 llc->llc_snap.org_code[1] == 0 && llc->llc_snap.org_code[2] == 0 &&
926 !(llc->llc_snap.ether_type == htons(ETHERTYPE_IPX))) {
927 m_adj(m, hdrlen + sizeof(struct llc) - sizeof(*eh));
930 m_adj(m, hdrlen - sizeof(*eh));
932 eh = mtod(m, struct ether_header *);
933 ae = mc->mc_flags & 3;
934 if (WHDIR(wh) == IEEE80211_FC1_DIR_FROMDS) {
935 IEEE80211_ADDR_COPY(eh->ether_dhost, wh->i_addr1);
937 IEEE80211_ADDR_COPY(eh->ether_shost, wh->i_addr3);
938 } else if (ae == 1) {
939 IEEE80211_ADDR_COPY(eh->ether_shost, mc->mc_addr4);
941 IEEE80211_DISCARD(vap, IEEE80211_MSG_ANY,
942 (const struct ieee80211_frame *)wh, NULL,
944 vap->iv_stats.is_mesh_badae++;
950 IEEE80211_ADDR_COPY(eh->ether_dhost, wh->i_addr3);
951 IEEE80211_ADDR_COPY(eh->ether_shost, wh->i_addr4);
952 } else if (ae == 2) {
953 IEEE80211_ADDR_COPY(eh->ether_dhost, mc->mc_addr4);
954 IEEE80211_ADDR_COPY(eh->ether_shost, mc->mc_addr5);
956 IEEE80211_DISCARD(vap, IEEE80211_MSG_ANY,
957 (const struct ieee80211_frame *)wh, NULL,
959 vap->iv_stats.is_mesh_badae++;
964 #ifdef ALIGNED_POINTER
965 if (!ALIGNED_POINTER(mtod(m, caddr_t) + sizeof(*eh), uint32_t)) {
966 m = ieee80211_realign(vap, m, sizeof(*eh));
970 #endif /* ALIGNED_POINTER */
972 eh = mtod(m, struct ether_header *);
973 eh->ether_type = htons(m->m_pkthdr.len - sizeof(*eh));
980 * Return non-zero if the unicast mesh data frame should be processed
981 * locally. Frames that are not proxy'd have our address, otherwise
982 * we need to consult the routing table to look for a proxy entry.
985 mesh_isucastforme(struct ieee80211vap *vap, const struct ieee80211_frame *wh,
986 const struct ieee80211_meshcntl *mc)
988 int ae = mc->mc_flags & 3;
990 KASSERT((wh->i_fc[1] & IEEE80211_FC1_DIR_MASK) == IEEE80211_FC1_DIR_DSTODS,
991 ("bad dir 0x%x:0x%x", wh->i_fc[0], wh->i_fc[1]));
992 KASSERT(ae == 0 || ae == 2, ("bad AE %d", ae));
993 if (ae == 2) { /* ucast w/ proxy */
994 const struct ieee80211_meshcntl_ae10 *mc10 =
995 (const struct ieee80211_meshcntl_ae10 *) mc;
996 struct ieee80211_mesh_route *rt =
997 ieee80211_mesh_rt_find(vap, mc10->mc_addr4);
998 /* check for proxy route to ourself */
999 return (rt != NULL &&
1000 (rt->rt_flags & IEEE80211_MESHRT_FLAGS_PROXY));
1001 } else /* ucast w/o proxy */
1002 return IEEE80211_ADDR_EQ(wh->i_addr3, vap->iv_myaddr);
1006 mesh_input(struct ieee80211_node *ni, struct mbuf *m, int rssi, int nf)
1008 #define SEQ_LEQ(a,b) ((int)((a)-(b)) <= 0)
1009 #define HAS_SEQ(type) ((type & 0x4) == 0)
1010 struct ieee80211vap *vap = ni->ni_vap;
1011 struct ieee80211com *ic = ni->ni_ic;
1012 struct ifnet *ifp = vap->iv_ifp;
1013 struct ieee80211_frame *wh;
1014 const struct ieee80211_meshcntl *mc;
1015 int hdrspace, meshdrlen, need_tap;
1016 uint8_t dir, type, subtype, qos;
1019 ieee80211_seq rxseq;
1020 #ifdef IEEE80211_DEBUG
1021 char ethstr[ETHER_ADDRSTRLEN + 1];
1024 KASSERT(ni != NULL, ("null node"));
1025 ni->ni_inact = ni->ni_inact_reload;
1027 need_tap = 1; /* mbuf need to be tapped. */
1028 type = -1; /* undefined */
1030 if (m->m_pkthdr.len < sizeof(struct ieee80211_frame_min)) {
1031 IEEE80211_DISCARD_MAC(vap, IEEE80211_MSG_ANY,
1032 ni->ni_macaddr, NULL,
1033 "too short (1): len %u", m->m_pkthdr.len);
1034 vap->iv_stats.is_rx_tooshort++;
1038 * Bit of a cheat here, we use a pointer for a 3-address
1039 * frame format but don't reference fields past outside
1040 * ieee80211_frame_min w/o first validating the data is
1043 wh = mtod(m, struct ieee80211_frame *);
1045 if ((wh->i_fc[0] & IEEE80211_FC0_VERSION_MASK) !=
1046 IEEE80211_FC0_VERSION_0) {
1047 IEEE80211_DISCARD_MAC(vap, IEEE80211_MSG_ANY,
1048 ni->ni_macaddr, NULL, "wrong version %x", wh->i_fc[0]);
1049 vap->iv_stats.is_rx_badversion++;
1052 dir = wh->i_fc[1] & IEEE80211_FC1_DIR_MASK;
1053 type = wh->i_fc[0] & IEEE80211_FC0_TYPE_MASK;
1054 subtype = wh->i_fc[0] & IEEE80211_FC0_SUBTYPE_MASK;
1055 if ((ic->ic_flags & IEEE80211_F_SCAN) == 0) {
1056 IEEE80211_RSSI_LPF(ni->ni_avgrssi, rssi);
1058 if (HAS_SEQ(type)) {
1059 uint8_t tid = ieee80211_gettid(wh);
1061 if (IEEE80211_QOS_HAS_SEQ(wh) &&
1062 TID_TO_WME_AC(tid) >= WME_AC_VI)
1063 ic->ic_wme.wme_hipri_traffic++;
1064 rxseq = le16toh(*(uint16_t *)wh->i_seq);
1065 if ((ni->ni_flags & IEEE80211_NODE_HT) == 0 &&
1066 (wh->i_fc[1] & IEEE80211_FC1_RETRY) &&
1067 SEQ_LEQ(rxseq, ni->ni_rxseqs[tid])) {
1068 /* duplicate, discard */
1069 IEEE80211_DISCARD_MAC(vap, IEEE80211_MSG_INPUT,
1070 wh->i_addr1, "duplicate",
1071 "seqno <%u,%u> fragno <%u,%u> tid %u",
1072 rxseq >> IEEE80211_SEQ_SEQ_SHIFT,
1073 ni->ni_rxseqs[tid] >>
1074 IEEE80211_SEQ_SEQ_SHIFT,
1075 rxseq & IEEE80211_SEQ_FRAG_MASK,
1076 ni->ni_rxseqs[tid] &
1077 IEEE80211_SEQ_FRAG_MASK,
1079 vap->iv_stats.is_rx_dup++;
1080 IEEE80211_NODE_STAT(ni, rx_dup);
1083 ni->ni_rxseqs[tid] = rxseq;
1086 #ifdef IEEE80211_DEBUG
1088 * It's easier, but too expensive, to simulate different mesh
1089 * topologies by consulting the ACL policy very early, so do this
1092 * NB: this check is also done upon peering link initiation.
1094 if (vap->iv_acl != NULL && !vap->iv_acl->iac_check(vap, wh->i_addr2)) {
1095 IEEE80211_DISCARD(vap, IEEE80211_MSG_ACL,
1096 wh, NULL, "%s", "disallowed by ACL");
1097 vap->iv_stats.is_rx_acl++;
1102 case IEEE80211_FC0_TYPE_DATA:
1103 if (ni == vap->iv_bss)
1105 if (ni->ni_mlstate != IEEE80211_NODE_MESH_ESTABLISHED) {
1106 IEEE80211_DISCARD_MAC(vap, IEEE80211_MSG_MESH,
1107 ni->ni_macaddr, NULL,
1108 "peer link not yet established (%d)",
1110 vap->iv_stats.is_mesh_nolink++;
1113 if (dir != IEEE80211_FC1_DIR_FROMDS &&
1114 dir != IEEE80211_FC1_DIR_DSTODS) {
1115 IEEE80211_DISCARD(vap, IEEE80211_MSG_INPUT,
1116 wh, "data", "incorrect dir 0x%x", dir);
1117 vap->iv_stats.is_rx_wrongdir++;
1120 /* pull up enough to get to the mesh control */
1121 hdrspace = ieee80211_hdrspace(ic, wh);
1122 if (m->m_len < hdrspace + sizeof(struct ieee80211_meshcntl) &&
1123 (m = m_pullup(m, hdrspace +
1124 sizeof(struct ieee80211_meshcntl))) == NULL) {
1125 IEEE80211_DISCARD_MAC(vap, IEEE80211_MSG_ANY,
1126 ni->ni_macaddr, NULL,
1127 "data too short: expecting %u", hdrspace);
1128 vap->iv_stats.is_rx_tooshort++;
1132 * Now calculate the full extent of the headers. Note
1133 * mesh_decap will pull up anything we didn't get
1134 * above when it strips the 802.11 headers.
1136 mc = (const struct ieee80211_meshcntl *)
1137 (mtod(m, const uint8_t *) + hdrspace);
1138 meshdrlen = sizeof(struct ieee80211_meshcntl) +
1139 (mc->mc_flags & 3) * IEEE80211_ADDR_LEN;
1140 hdrspace += meshdrlen;
1141 seq = LE_READ_4(mc->mc_seq);
1142 if (IEEE80211_IS_MULTICAST(wh->i_addr1))
1145 addr = ((struct ieee80211_qosframe_addr4 *)wh)->i_addr4;
1146 if (IEEE80211_ADDR_EQ(vap->iv_myaddr, addr)) {
1147 IEEE80211_DISCARD_MAC(vap, IEEE80211_MSG_INPUT,
1148 addr, "data", "%s", "not to me");
1149 vap->iv_stats.is_rx_wrongbss++; /* XXX kinda */
1152 if (mesh_checkpseq(vap, addr, seq) != 0) {
1153 vap->iv_stats.is_rx_dup++;
1158 * Potentially forward packet. See table s36 (p140)
1159 * for the rules. XXX tap fwd'd packets not for us?
1161 if (dir == IEEE80211_FC1_DIR_FROMDS ||
1162 !mesh_isucastforme(vap, wh, mc)) {
1163 mesh_forward(vap, m, mc);
1164 if (dir == IEEE80211_FC1_DIR_DSTODS)
1166 /* NB: fall thru to deliver mcast frames locally */
1170 * Save QoS bits for use below--before we strip the header.
1172 if (subtype == IEEE80211_FC0_SUBTYPE_QOS) {
1173 qos = (dir == IEEE80211_FC1_DIR_DSTODS) ?
1174 ((struct ieee80211_qosframe_addr4 *)wh)->i_qos[0] :
1175 ((struct ieee80211_qosframe *)wh)->i_qos[0];
1179 * Next up, any fragmentation.
1181 if (!IEEE80211_IS_MULTICAST(wh->i_addr1)) {
1182 m = ieee80211_defrag(ni, m, hdrspace);
1184 /* Fragment dropped or frame not complete yet */
1188 wh = NULL; /* no longer valid, catch any uses */
1190 if (ieee80211_radiotap_active_vap(vap))
1191 ieee80211_radiotap_rx(vap, m);
1195 * Finally, strip the 802.11 header.
1197 m = mesh_decap(vap, m, hdrspace, meshdrlen);
1199 /* XXX mask bit to check for both */
1200 /* don't count Null data frames as errors */
1201 if (subtype == IEEE80211_FC0_SUBTYPE_NODATA ||
1202 subtype == IEEE80211_FC0_SUBTYPE_QOS_NULL)
1204 IEEE80211_DISCARD_MAC(vap, IEEE80211_MSG_INPUT,
1205 ni->ni_macaddr, "data", "%s", "decap error");
1206 vap->iv_stats.is_rx_decap++;
1207 IEEE80211_NODE_STAT(ni, rx_decap);
1210 if (qos & IEEE80211_QOS_AMSDU) {
1211 m = ieee80211_decap_amsdu(ni, m);
1213 return IEEE80211_FC0_TYPE_DATA;
1215 ieee80211_deliver_data(vap, ni, m);
1217 case IEEE80211_FC0_TYPE_MGT:
1218 vap->iv_stats.is_rx_mgmt++;
1219 IEEE80211_NODE_STAT(ni, rx_mgmt);
1220 if (dir != IEEE80211_FC1_DIR_NODS) {
1221 IEEE80211_DISCARD(vap, IEEE80211_MSG_INPUT,
1222 wh, "mgt", "incorrect dir 0x%x", dir);
1223 vap->iv_stats.is_rx_wrongdir++;
1226 if (m->m_pkthdr.len < sizeof(struct ieee80211_frame)) {
1227 IEEE80211_DISCARD_MAC(vap, IEEE80211_MSG_ANY,
1228 ni->ni_macaddr, "mgt", "too short: len %u",
1230 vap->iv_stats.is_rx_tooshort++;
1233 #ifdef IEEE80211_DEBUG
1234 if ((ieee80211_msg_debug(vap) &&
1235 (vap->iv_ic->ic_flags & IEEE80211_F_SCAN)) ||
1236 ieee80211_msg_dumppkts(vap)) {
1237 if_printf(ifp, "received %s from %s rssi %d\n",
1238 ieee80211_mgt_subtype_name[subtype >>
1239 IEEE80211_FC0_SUBTYPE_SHIFT],
1240 kether_ntoa(wh->i_addr2, ethstr), rssi);
1243 if (wh->i_fc[1] & IEEE80211_FC1_WEP) {
1244 IEEE80211_DISCARD(vap, IEEE80211_MSG_INPUT,
1245 wh, NULL, "%s", "WEP set but not permitted");
1246 vap->iv_stats.is_rx_mgtdiscard++; /* XXX */
1249 vap->iv_recv_mgmt(ni, m, subtype, rssi, nf);
1251 case IEEE80211_FC0_TYPE_CTL:
1252 vap->iv_stats.is_rx_ctl++;
1253 IEEE80211_NODE_STAT(ni, rx_ctrl);
1256 IEEE80211_DISCARD(vap, IEEE80211_MSG_ANY,
1257 wh, "bad", "frame type 0x%x", type);
1258 /* should not come here */
1262 IFNET_STAT_INC(ifp, ierrors, 1);
1265 if (need_tap && ieee80211_radiotap_active_vap(vap))
1266 ieee80211_radiotap_rx(vap, m);
1273 mesh_recv_mgmt(struct ieee80211_node *ni, struct mbuf *m0, int subtype,
1276 struct ieee80211vap *vap = ni->ni_vap;
1277 struct ieee80211_mesh_state *ms = vap->iv_mesh;
1278 struct ieee80211com *ic = ni->ni_ic;
1279 struct ieee80211_frame *wh;
1280 uint8_t *frm, *efrm;
1282 wh = mtod(m0, struct ieee80211_frame *);
1283 frm = (uint8_t *)&wh[1];
1284 efrm = mtod(m0, uint8_t *) + m0->m_len;
1286 case IEEE80211_FC0_SUBTYPE_PROBE_RESP:
1287 case IEEE80211_FC0_SUBTYPE_BEACON:
1289 struct ieee80211_scanparams scan;
1291 * We process beacon/probe response
1292 * frames to discover neighbors.
1294 if (ieee80211_parse_beacon(ni, m0, &scan) != 0)
1297 * Count frame now that we know it's to be processed.
1299 if (subtype == IEEE80211_FC0_SUBTYPE_BEACON) {
1300 vap->iv_stats.is_rx_beacon++; /* XXX remove */
1301 IEEE80211_NODE_STAT(ni, rx_beacons);
1303 IEEE80211_NODE_STAT(ni, rx_proberesp);
1305 * If scanning, just pass information to the scan module.
1307 if (ic->ic_flags & IEEE80211_F_SCAN) {
1308 if (ic->ic_flags_ext & IEEE80211_FEXT_PROBECHAN) {
1310 * Actively scanning a channel marked passive;
1311 * send a probe request now that we know there
1312 * is 802.11 traffic present.
1314 * XXX check if the beacon we recv'd gives
1315 * us what we need and suppress the probe req
1317 ieee80211_probe_curchan(vap, 1);
1318 ic->ic_flags_ext &= ~IEEE80211_FEXT_PROBECHAN;
1320 ieee80211_add_scan(vap, &scan, wh,
1325 /* The rest of this code assumes we are running */
1326 if (vap->iv_state != IEEE80211_S_RUN)
1329 * Ignore non-mesh STAs.
1332 (IEEE80211_CAPINFO_ESS|IEEE80211_CAPINFO_IBSS)) ||
1333 scan.meshid == NULL || scan.meshconf == NULL) {
1334 IEEE80211_DISCARD(vap, IEEE80211_MSG_INPUT,
1335 wh, "beacon", "%s", "not a mesh sta");
1336 vap->iv_stats.is_mesh_wrongmesh++;
1340 * Ignore STAs for other mesh networks.
1342 if (memcmp(scan.meshid+2, ms->ms_id, ms->ms_idlen) != 0 ||
1343 mesh_verify_meshconf(vap, scan.meshconf)) {
1344 IEEE80211_DISCARD(vap, IEEE80211_MSG_INPUT,
1345 wh, "beacon", "%s", "not for our mesh");
1346 vap->iv_stats.is_mesh_wrongmesh++;
1350 * Peer only based on the current ACL policy.
1352 if (vap->iv_acl != NULL &&
1353 !vap->iv_acl->iac_check(vap, wh->i_addr2)) {
1354 IEEE80211_DISCARD(vap, IEEE80211_MSG_ACL,
1355 wh, NULL, "%s", "disallowed by ACL");
1356 vap->iv_stats.is_rx_acl++;
1360 * Do neighbor discovery.
1362 if (!IEEE80211_ADDR_EQ(wh->i_addr2, ni->ni_macaddr)) {
1364 * Create a new entry in the neighbor table.
1366 ni = ieee80211_add_neighbor(vap, wh, &scan);
1369 * Automatically peer with discovered nodes if possible.
1370 * XXX backoff on repeated failure
1372 if (ni != vap->iv_bss &&
1373 (ms->ms_flags & IEEE80211_MESHFLAGS_AP) &&
1374 ni->ni_mlstate == IEEE80211_NODE_MESH_IDLE) {
1377 ni->ni_mlpid = mesh_generateid(vap);
1378 if (ni->ni_mlpid == 0)
1380 mesh_linkchange(ni, IEEE80211_NODE_MESH_OPENSNT);
1381 args[0] = ni->ni_mlpid;
1382 ieee80211_send_action(ni,
1383 IEEE80211_ACTION_CAT_MESHPEERING,
1384 IEEE80211_ACTION_MESHPEERING_OPEN, args);
1386 mesh_peer_timeout_setup(ni);
1390 case IEEE80211_FC0_SUBTYPE_PROBE_REQ:
1392 uint8_t *ssid, *meshid, *rates, *xrates;
1394 if (vap->iv_state != IEEE80211_S_RUN) {
1395 IEEE80211_DISCARD(vap, IEEE80211_MSG_INPUT,
1396 wh, NULL, "wrong state %s",
1397 ieee80211_state_name[vap->iv_state]);
1398 vap->iv_stats.is_rx_mgtdiscard++;
1401 if (IEEE80211_IS_MULTICAST(wh->i_addr2)) {
1402 /* frame must be directed */
1403 IEEE80211_DISCARD(vap, IEEE80211_MSG_INPUT,
1404 wh, NULL, "%s", "not unicast");
1405 vap->iv_stats.is_rx_mgtdiscard++; /* XXX stat */
1409 * prreq frame format
1411 * [tlv] supported rates
1412 * [tlv] extended supported rates
1415 ssid = meshid = rates = xrates = NULL;
1416 while (efrm - frm > 1) {
1417 IEEE80211_VERIFY_LENGTH(efrm - frm, frm[1] + 2, return);
1419 case IEEE80211_ELEMID_SSID:
1422 case IEEE80211_ELEMID_RATES:
1425 case IEEE80211_ELEMID_XRATES:
1428 case IEEE80211_ELEMID_MESHID:
1434 IEEE80211_VERIFY_ELEMENT(ssid, IEEE80211_NWID_LEN, return);
1435 IEEE80211_VERIFY_ELEMENT(rates, IEEE80211_RATE_MAXSIZE, return);
1437 IEEE80211_VERIFY_ELEMENT(xrates,
1438 IEEE80211_RATE_MAXSIZE - rates[1], return);
1439 if (meshid != NULL) {
1440 IEEE80211_VERIFY_ELEMENT(meshid,
1441 IEEE80211_MESHID_LEN, return);
1442 /* NB: meshid, not ssid */
1443 IEEE80211_VERIFY_SSID(vap->iv_bss, meshid, return);
1446 /* XXX find a better class or define it's own */
1447 IEEE80211_NOTE_MAC(vap, IEEE80211_MSG_INPUT, wh->i_addr2,
1448 "%s", "recv probe req");
1450 * Some legacy 11b clients cannot hack a complete
1451 * probe response frame. When the request includes
1452 * only a bare-bones rate set, communicate this to
1453 * the transmit side.
1455 ieee80211_send_proberesp(vap, wh->i_addr2, 0);
1458 case IEEE80211_FC0_SUBTYPE_ACTION:
1459 if (vap->iv_state != IEEE80211_S_RUN) {
1460 vap->iv_stats.is_rx_mgtdiscard++;
1464 * We received an action for an unknown neighbor.
1465 * XXX: wait for it to beacon or create ieee80211_node?
1467 if (ni == vap->iv_bss) {
1468 IEEE80211_DISCARD(vap, IEEE80211_MSG_MESH,
1469 wh, NULL, "%s", "unknown node");
1470 vap->iv_stats.is_rx_mgtdiscard++;
1474 * Discard if not for us.
1476 if (!IEEE80211_ADDR_EQ(vap->iv_myaddr, wh->i_addr1) &&
1477 !IEEE80211_IS_MULTICAST(wh->i_addr1)) {
1478 IEEE80211_DISCARD(vap, IEEE80211_MSG_MESH,
1479 wh, NULL, "%s", "not for me");
1480 vap->iv_stats.is_rx_mgtdiscard++;
1483 /* XXX parse_action is a bit useless now */
1484 if (ieee80211_parse_action(ni, m0) == 0)
1485 ic->ic_recv_action(ni, wh, frm, efrm);
1487 case IEEE80211_FC0_SUBTYPE_AUTH:
1488 case IEEE80211_FC0_SUBTYPE_ASSOC_REQ:
1489 case IEEE80211_FC0_SUBTYPE_REASSOC_REQ:
1490 case IEEE80211_FC0_SUBTYPE_ASSOC_RESP:
1491 case IEEE80211_FC0_SUBTYPE_REASSOC_RESP:
1492 case IEEE80211_FC0_SUBTYPE_DEAUTH:
1493 case IEEE80211_FC0_SUBTYPE_DISASSOC:
1494 IEEE80211_DISCARD(vap, IEEE80211_MSG_INPUT,
1495 wh, NULL, "%s", "not handled");
1496 vap->iv_stats.is_rx_mgtdiscard++;
1499 IEEE80211_DISCARD(vap, IEEE80211_MSG_ANY,
1500 wh, "mgt", "subtype 0x%x not handled", subtype);
1501 vap->iv_stats.is_rx_badsubtype++;
1507 * Parse meshpeering action ie's for open+confirm frames; the
1508 * important bits are returned in the supplied structure.
1510 static const struct ieee80211_meshpeer_ie *
1511 mesh_parse_meshpeering_action(struct ieee80211_node *ni,
1512 const struct ieee80211_frame *wh, /* XXX for VERIFY_LENGTH */
1513 const uint8_t *frm, const uint8_t *efrm,
1514 struct ieee80211_meshpeer_ie *mp, uint8_t subtype)
1516 struct ieee80211vap *vap = ni->ni_vap;
1517 const struct ieee80211_meshpeer_ie *mpie;
1518 const uint8_t *meshid, *meshconf, *meshpeer;
1520 meshid = meshconf = meshpeer = NULL;
1521 while (efrm - frm > 1) {
1522 IEEE80211_VERIFY_LENGTH(efrm - frm, frm[1] + 2, return NULL);
1524 case IEEE80211_ELEMID_MESHID:
1527 case IEEE80211_ELEMID_MESHCONF:
1530 case IEEE80211_ELEMID_MESHPEER:
1532 mpie = (const struct ieee80211_meshpeer_ie *) frm;
1533 memset(mp, 0, sizeof(*mp));
1534 mp->peer_llinkid = LE_READ_2(&mpie->peer_llinkid);
1535 /* NB: peer link ID is optional on these frames */
1536 if (subtype == IEEE80211_MESH_PEER_LINK_CLOSE &&
1537 mpie->peer_len == 8) {
1538 mp->peer_linkid = 0;
1539 mp->peer_rcode = LE_READ_2(&mpie->peer_linkid);
1541 mp->peer_linkid = LE_READ_2(&mpie->peer_linkid);
1542 mp->peer_rcode = LE_READ_2(&mpie->peer_rcode);
1550 * Verify the contents of the frame. Action frames with
1551 * close subtype don't have a Mesh Configuration IE.
1552 * If if fails validation, close the peer link.
1554 KASSERT(meshpeer != NULL &&
1555 subtype != IEEE80211_ACTION_MESHPEERING_CLOSE,
1556 ("parsing close action"));
1558 if (mesh_verify_meshid(vap, meshid) ||
1559 mesh_verify_meshpeer(vap, subtype, meshpeer) ||
1560 mesh_verify_meshconf(vap, meshconf)) {
1563 IEEE80211_DISCARD(vap,
1564 IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH,
1565 wh, NULL, "%s", "not for our mesh");
1566 vap->iv_stats.is_rx_mgtdiscard++;
1567 switch (ni->ni_mlstate) {
1568 case IEEE80211_NODE_MESH_IDLE:
1569 case IEEE80211_NODE_MESH_ESTABLISHED:
1570 case IEEE80211_NODE_MESH_HOLDING:
1573 case IEEE80211_NODE_MESH_OPENSNT:
1574 case IEEE80211_NODE_MESH_OPENRCV:
1575 case IEEE80211_NODE_MESH_CONFIRMRCV:
1576 args[0] = ni->ni_mlpid;
1577 args[1] = ni->ni_mllid;
1578 args[2] = IEEE80211_REASON_PEER_LINK_CANCELED;
1579 ieee80211_send_action(ni,
1580 IEEE80211_ACTION_CAT_MESHPEERING,
1581 IEEE80211_ACTION_MESHPEERING_CLOSE,
1583 mesh_linkchange(ni, IEEE80211_NODE_MESH_HOLDING);
1584 mesh_peer_timeout_setup(ni);
1589 return (const struct ieee80211_meshpeer_ie *) mp;
1593 mesh_recv_action_meshpeering_open(struct ieee80211_node *ni,
1594 const struct ieee80211_frame *wh,
1595 const uint8_t *frm, const uint8_t *efrm)
1597 struct ieee80211vap *vap = ni->ni_vap;
1598 struct ieee80211_meshpeer_ie ie;
1599 const struct ieee80211_meshpeer_ie *meshpeer;
1602 /* +2+2 for action + code + capabilites */
1603 meshpeer = mesh_parse_meshpeering_action(ni, wh, frm+2+2, efrm, &ie,
1604 IEEE80211_ACTION_MESHPEERING_OPEN);
1605 if (meshpeer == NULL) {
1610 IEEE80211_NOTE(vap, IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH, ni,
1611 "recv PEER OPEN, lid 0x%x", meshpeer->peer_llinkid);
1613 switch (ni->ni_mlstate) {
1614 case IEEE80211_NODE_MESH_IDLE:
1615 mesh_linkchange(ni, IEEE80211_NODE_MESH_OPENRCV);
1616 ni->ni_mllid = meshpeer->peer_llinkid;
1617 ni->ni_mlpid = mesh_generateid(vap);
1618 if (ni->ni_mlpid == 0)
1620 args[0] = ni->ni_mlpid;
1621 /* Announce we're open too... */
1622 ieee80211_send_action(ni,
1623 IEEE80211_ACTION_CAT_MESHPEERING,
1624 IEEE80211_ACTION_MESHPEERING_OPEN, args);
1625 /* ...and confirm the link. */
1626 args[0] = ni->ni_mlpid;
1627 args[1] = ni->ni_mllid;
1628 ieee80211_send_action(ni,
1629 IEEE80211_ACTION_CAT_MESHPEERING,
1630 IEEE80211_ACTION_MESHPEERING_CONFIRM,
1632 mesh_peer_timeout_setup(ni);
1634 case IEEE80211_NODE_MESH_OPENRCV:
1636 if (ni->ni_mllid != meshpeer->peer_llinkid) {
1637 args[0] = ni->ni_mllid;
1638 args[1] = ni->ni_mlpid;
1639 args[2] = IEEE80211_REASON_PEER_LINK_CANCELED;
1640 ieee80211_send_action(ni,
1641 IEEE80211_ACTION_CAT_MESHPEERING,
1642 IEEE80211_ACTION_MESHPEERING_CLOSE,
1644 mesh_linkchange(ni, IEEE80211_NODE_MESH_HOLDING);
1645 mesh_peer_timeout_setup(ni);
1648 /* Duplicate open, confirm again. */
1649 args[0] = ni->ni_mlpid;
1650 args[1] = ni->ni_mllid;
1651 ieee80211_send_action(ni,
1652 IEEE80211_ACTION_CAT_MESHPEERING,
1653 IEEE80211_ACTION_MESHPEERING_CONFIRM,
1656 case IEEE80211_NODE_MESH_OPENSNT:
1657 ni->ni_mllid = meshpeer->peer_llinkid;
1658 mesh_linkchange(ni, IEEE80211_NODE_MESH_OPENRCV);
1659 args[0] = ni->ni_mlpid;
1660 args[1] = ni->ni_mllid;
1661 ieee80211_send_action(ni,
1662 IEEE80211_ACTION_CAT_MESHPEERING,
1663 IEEE80211_ACTION_MESHPEERING_CONFIRM,
1665 /* NB: don't setup/clear any timeout */
1667 case IEEE80211_NODE_MESH_CONFIRMRCV:
1668 if (ni->ni_mlpid != meshpeer->peer_linkid ||
1669 ni->ni_mllid != meshpeer->peer_llinkid) {
1670 args[0] = ni->ni_mlpid;
1671 args[1] = ni->ni_mllid;
1672 args[2] = IEEE80211_REASON_PEER_LINK_CANCELED;
1673 ieee80211_send_action(ni,
1674 IEEE80211_ACTION_CAT_MESHPEERING,
1675 IEEE80211_ACTION_MESHPEERING_CLOSE,
1678 IEEE80211_NODE_MESH_HOLDING);
1679 mesh_peer_timeout_setup(ni);
1682 mesh_linkchange(ni, IEEE80211_NODE_MESH_ESTABLISHED);
1683 ni->ni_mllid = meshpeer->peer_llinkid;
1684 args[0] = ni->ni_mlpid;
1685 args[1] = ni->ni_mllid;
1686 ieee80211_send_action(ni,
1687 IEEE80211_ACTION_CAT_MESHPEERING,
1688 IEEE80211_ACTION_MESHPEERING_CONFIRM,
1690 mesh_peer_timeout_stop(ni);
1692 case IEEE80211_NODE_MESH_ESTABLISHED:
1693 if (ni->ni_mllid != meshpeer->peer_llinkid) {
1694 args[0] = ni->ni_mllid;
1695 args[1] = ni->ni_mlpid;
1696 args[2] = IEEE80211_REASON_PEER_LINK_CANCELED;
1697 ieee80211_send_action(ni,
1698 IEEE80211_ACTION_CAT_MESHPEERING,
1699 IEEE80211_ACTION_MESHPEERING_CLOSE,
1701 mesh_linkchange(ni, IEEE80211_NODE_MESH_HOLDING);
1702 mesh_peer_timeout_setup(ni);
1705 args[0] = ni->ni_mlpid;
1706 args[1] = ni->ni_mllid;
1707 ieee80211_send_action(ni,
1708 IEEE80211_ACTION_CAT_MESHPEERING,
1709 IEEE80211_ACTION_MESHPEERING_CONFIRM,
1712 case IEEE80211_NODE_MESH_HOLDING:
1713 args[0] = ni->ni_mlpid;
1714 args[1] = meshpeer->peer_llinkid;
1715 args[2] = IEEE80211_REASON_MESH_MAX_RETRIES;
1716 ieee80211_send_action(ni,
1717 IEEE80211_ACTION_CAT_MESHPEERING,
1718 IEEE80211_ACTION_MESHPEERING_CLOSE,
1726 mesh_recv_action_meshpeering_confirm(struct ieee80211_node *ni,
1727 const struct ieee80211_frame *wh,
1728 const uint8_t *frm, const uint8_t *efrm)
1730 struct ieee80211vap *vap = ni->ni_vap;
1731 struct ieee80211_meshpeer_ie ie;
1732 const struct ieee80211_meshpeer_ie *meshpeer;
1735 /* +2+2+2+2 for action + code + capabilites + status code + AID */
1736 meshpeer = mesh_parse_meshpeering_action(ni, wh, frm+2+2+2+2, efrm, &ie,
1737 IEEE80211_ACTION_MESHPEERING_CONFIRM);
1738 if (meshpeer == NULL) {
1742 IEEE80211_NOTE(vap, IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH, ni,
1743 "recv PEER CONFIRM, local id 0x%x, peer id 0x%x",
1744 meshpeer->peer_llinkid, meshpeer->peer_linkid);
1746 switch (ni->ni_mlstate) {
1747 case IEEE80211_NODE_MESH_OPENRCV:
1748 mesh_linkchange(ni, IEEE80211_NODE_MESH_ESTABLISHED);
1749 mesh_peer_timeout_stop(ni);
1751 case IEEE80211_NODE_MESH_OPENSNT:
1752 mesh_linkchange(ni, IEEE80211_NODE_MESH_CONFIRMRCV);
1754 case IEEE80211_NODE_MESH_HOLDING:
1755 args[0] = ni->ni_mlpid;
1756 args[1] = meshpeer->peer_llinkid;
1757 args[2] = IEEE80211_REASON_MESH_MAX_RETRIES;
1758 ieee80211_send_action(ni,
1759 IEEE80211_ACTION_CAT_MESHPEERING,
1760 IEEE80211_ACTION_MESHPEERING_CLOSE,
1763 case IEEE80211_NODE_MESH_CONFIRMRCV:
1764 if (ni->ni_mllid != meshpeer->peer_llinkid) {
1765 args[0] = ni->ni_mlpid;
1766 args[1] = ni->ni_mllid;
1767 args[2] = IEEE80211_REASON_PEER_LINK_CANCELED;
1768 ieee80211_send_action(ni,
1769 IEEE80211_ACTION_CAT_MESHPEERING,
1770 IEEE80211_ACTION_MESHPEERING_CLOSE,
1772 mesh_linkchange(ni, IEEE80211_NODE_MESH_HOLDING);
1773 mesh_peer_timeout_setup(ni);
1777 IEEE80211_DISCARD(vap,
1778 IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH,
1779 wh, NULL, "received confirm in invalid state %d",
1781 vap->iv_stats.is_rx_mgtdiscard++;
1788 mesh_recv_action_meshpeering_close(struct ieee80211_node *ni,
1789 const struct ieee80211_frame *wh,
1790 const uint8_t *frm, const uint8_t *efrm)
1794 IEEE80211_NOTE(ni->ni_vap, IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH,
1795 ni, "%s", "recv PEER CLOSE");
1797 switch (ni->ni_mlstate) {
1798 case IEEE80211_NODE_MESH_IDLE:
1801 case IEEE80211_NODE_MESH_OPENRCV:
1802 case IEEE80211_NODE_MESH_OPENSNT:
1803 case IEEE80211_NODE_MESH_CONFIRMRCV:
1804 case IEEE80211_NODE_MESH_ESTABLISHED:
1805 args[0] = ni->ni_mlpid;
1806 args[1] = ni->ni_mllid;
1807 args[2] = IEEE80211_REASON_MESH_CLOSE_RCVD;
1808 ieee80211_send_action(ni,
1809 IEEE80211_ACTION_CAT_MESHPEERING,
1810 IEEE80211_ACTION_MESHPEERING_CLOSE,
1812 mesh_linkchange(ni, IEEE80211_NODE_MESH_HOLDING);
1813 mesh_peer_timeout_setup(ni);
1815 case IEEE80211_NODE_MESH_HOLDING:
1816 mesh_linkchange(ni, IEEE80211_NODE_MESH_IDLE);
1817 mesh_peer_timeout_setup(ni);
1824 * Link Metric handling.
1827 mesh_recv_action_meshlmetric_req(struct ieee80211_node *ni,
1828 const struct ieee80211_frame *wh,
1829 const uint8_t *frm, const uint8_t *efrm)
1833 metric = mesh_airtime_calc(ni);
1834 ieee80211_send_action(ni,
1835 IEEE80211_ACTION_CAT_MESHLMETRIC,
1836 IEEE80211_ACTION_MESHLMETRIC_REP,
1842 mesh_recv_action_meshlmetric_rep(struct ieee80211_node *ni,
1843 const struct ieee80211_frame *wh,
1844 const uint8_t *frm, const uint8_t *efrm)
1850 mesh_send_action(struct ieee80211_node *ni, struct mbuf *m)
1852 struct ieee80211_bpf_params params;
1854 memset(¶ms, 0, sizeof(params));
1855 params.ibp_pri = WME_AC_VO;
1856 params.ibp_rate0 = ni->ni_txparms->mgmtrate;
1857 /* XXX ucast/mcast */
1858 params.ibp_try0 = ni->ni_txparms->maxretry;
1859 params.ibp_power = ni->ni_txpower;
1860 return ieee80211_mgmt_output(ni, m, IEEE80211_FC0_SUBTYPE_ACTION,
1864 #define ADDSHORT(frm, v) do { \
1865 frm[0] = (v) & 0xff; \
1866 frm[1] = (v) >> 8; \
1869 #define ADDWORD(frm, v) do { \
1870 frm[0] = (v) & 0xff; \
1871 frm[1] = ((v) >> 8) & 0xff; \
1872 frm[2] = ((v) >> 16) & 0xff; \
1873 frm[3] = ((v) >> 24) & 0xff; \
1878 mesh_send_action_meshpeering_open(struct ieee80211_node *ni,
1879 int category, int action, void *args0)
1881 struct ieee80211vap *vap = ni->ni_vap;
1882 struct ieee80211com *ic = ni->ni_ic;
1883 uint16_t *args = args0;
1884 const struct ieee80211_rateset *rs;
1887 #ifdef IEEE80211_DEBUG
1888 char ethstr[ETHER_ADDRSTRLEN + 1];
1891 IEEE80211_NOTE(vap, IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH, ni,
1892 "send PEER OPEN action: localid 0x%x", args[0]);
1894 IEEE80211_DPRINTF(vap, IEEE80211_MSG_NODE,
1895 "ieee80211_ref_node (%s:%u) %p<%s> refcnt %d\n", __func__, __LINE__,
1896 ni, kether_ntoa(ni->ni_macaddr, ethstr), ieee80211_node_refcnt(ni)+1);
1897 ieee80211_ref_node(ni);
1899 m = ieee80211_getmgtframe(&frm,
1900 ic->ic_headroom + sizeof(struct ieee80211_frame),
1901 sizeof(uint16_t) /* action+category */
1902 + sizeof(uint16_t) /* capabilites */
1903 + 2 + IEEE80211_RATE_SIZE
1904 + 2 + (IEEE80211_RATE_MAXSIZE - IEEE80211_RATE_SIZE)
1905 + 2 + IEEE80211_MESHID_LEN
1906 + sizeof(struct ieee80211_meshconf_ie)
1907 + sizeof(struct ieee80211_meshpeer_ie)
1911 * mesh peer open action frame format:
1919 * [tlv] mesh peer link mgmt
1923 ADDSHORT(frm, ieee80211_getcapinfo(vap, ni->ni_chan));
1924 rs = ieee80211_get_suprates(ic, ic->ic_curchan);
1925 frm = ieee80211_add_rates(frm, rs);
1926 frm = ieee80211_add_xrates(frm, rs);
1927 frm = ieee80211_add_meshid(frm, vap);
1928 frm = ieee80211_add_meshconf(frm, vap);
1929 frm = ieee80211_add_meshpeer(frm, IEEE80211_MESH_PEER_LINK_OPEN,
1931 m->m_pkthdr.len = m->m_len = frm - mtod(m, uint8_t *);
1932 return mesh_send_action(ni, m);
1934 vap->iv_stats.is_tx_nobuf++;
1935 ieee80211_free_node(ni);
1941 mesh_send_action_meshpeering_confirm(struct ieee80211_node *ni,
1942 int category, int action, void *args0)
1944 struct ieee80211vap *vap = ni->ni_vap;
1945 struct ieee80211com *ic = ni->ni_ic;
1946 uint16_t *args = args0;
1947 const struct ieee80211_rateset *rs;
1950 #ifdef IEEE80211_DEBUG
1951 char ethstr[ETHER_ADDRSTRLEN + 1];
1954 IEEE80211_NOTE(vap, IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH, ni,
1955 "send PEER CONFIRM action: localid 0x%x, peerid 0x%x",
1958 IEEE80211_DPRINTF(vap, IEEE80211_MSG_NODE,
1959 "ieee80211_ref_node (%s:%u) %p<%s> refcnt %d\n", __func__, __LINE__,
1960 ni, kether_ntoa(ni->ni_macaddr, ethstr), ieee80211_node_refcnt(ni)+1);
1961 ieee80211_ref_node(ni);
1963 m = ieee80211_getmgtframe(&frm,
1964 ic->ic_headroom + sizeof(struct ieee80211_frame),
1965 sizeof(uint16_t) /* action+category */
1966 + sizeof(uint16_t) /* capabilites */
1967 + sizeof(uint16_t) /* status code */
1968 + sizeof(uint16_t) /* AID */
1969 + 2 + IEEE80211_RATE_SIZE
1970 + 2 + (IEEE80211_RATE_MAXSIZE - IEEE80211_RATE_SIZE)
1971 + 2 + IEEE80211_MESHID_LEN
1972 + sizeof(struct ieee80211_meshconf_ie)
1973 + sizeof(struct ieee80211_meshpeer_ie)
1977 * mesh peer confirm action frame format:
1982 * [2] association id (peer ID)
1987 * [tlv] mesh peer link mgmt
1991 ADDSHORT(frm, ieee80211_getcapinfo(vap, ni->ni_chan));
1992 ADDSHORT(frm, 0); /* status code */
1993 ADDSHORT(frm, args[1]); /* AID */
1994 rs = ieee80211_get_suprates(ic, ic->ic_curchan);
1995 frm = ieee80211_add_rates(frm, rs);
1996 frm = ieee80211_add_xrates(frm, rs);
1997 frm = ieee80211_add_meshid(frm, vap);
1998 frm = ieee80211_add_meshconf(frm, vap);
1999 frm = ieee80211_add_meshpeer(frm,
2000 IEEE80211_MESH_PEER_LINK_CONFIRM,
2001 args[0], args[1], 0);
2002 m->m_pkthdr.len = m->m_len = frm - mtod(m, uint8_t *);
2003 return mesh_send_action(ni, m);
2005 vap->iv_stats.is_tx_nobuf++;
2006 ieee80211_free_node(ni);
2012 mesh_send_action_meshpeering_close(struct ieee80211_node *ni,
2013 int category, int action, void *args0)
2015 struct ieee80211vap *vap = ni->ni_vap;
2016 struct ieee80211com *ic = ni->ni_ic;
2017 uint16_t *args = args0;
2020 #ifdef IEEE80211_DEBUG
2021 char ethstr[ETHER_ADDRSTRLEN + 1];
2024 IEEE80211_NOTE(vap, IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH, ni,
2025 "send PEER CLOSE action: localid 0x%x, peerid 0x%x reason %d",
2026 args[0], args[1], args[2]);
2028 IEEE80211_DPRINTF(vap, IEEE80211_MSG_NODE,
2029 "ieee80211_ref_node (%s:%u) %p<%s> refcnt %d\n", __func__, __LINE__,
2030 ni, kether_ntoa(ni->ni_macaddr, ethstr), ieee80211_node_refcnt(ni)+1);
2031 ieee80211_ref_node(ni);
2033 m = ieee80211_getmgtframe(&frm,
2034 ic->ic_headroom + sizeof(struct ieee80211_frame),
2035 sizeof(uint16_t) /* action+category */
2036 + sizeof(uint16_t) /* reason code */
2037 + 2 + IEEE80211_MESHID_LEN
2038 + sizeof(struct ieee80211_meshpeer_ie)
2042 * mesh peer close action frame format:
2047 * [tlv] mesh peer link mgmt
2051 ADDSHORT(frm, args[2]); /* reason code */
2052 frm = ieee80211_add_meshid(frm, vap);
2053 frm = ieee80211_add_meshpeer(frm,
2054 IEEE80211_MESH_PEER_LINK_CLOSE,
2055 args[0], args[1], args[2]);
2056 m->m_pkthdr.len = m->m_len = frm - mtod(m, uint8_t *);
2057 return mesh_send_action(ni, m);
2059 vap->iv_stats.is_tx_nobuf++;
2060 ieee80211_free_node(ni);
2066 mesh_send_action_meshlink_request(struct ieee80211_node *ni,
2067 int category, int action, void *arg0)
2069 struct ieee80211vap *vap = ni->ni_vap;
2070 struct ieee80211com *ic = ni->ni_ic;
2073 #ifdef IEEE80211_DEBUG
2074 char ethstr[ETHER_ADDRSTRLEN + 1];
2077 IEEE80211_NOTE(vap, IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH, ni,
2078 "%s", "send LINK METRIC REQUEST action");
2080 IEEE80211_DPRINTF(vap, IEEE80211_MSG_NODE,
2081 "ieee80211_ref_node (%s:%u) %p<%s> refcnt %d\n", __func__, __LINE__,
2082 ni, kether_ntoa(ni->ni_macaddr, ethstr), ieee80211_node_refcnt(ni)+1);
2083 ieee80211_ref_node(ni);
2085 m = ieee80211_getmgtframe(&frm,
2086 ic->ic_headroom + sizeof(struct ieee80211_frame),
2087 sizeof(uint16_t) /* action+category */
2091 * mesh link metric request
2097 m->m_pkthdr.len = m->m_len = frm - mtod(m, uint8_t *);
2098 return mesh_send_action(ni, m);
2100 vap->iv_stats.is_tx_nobuf++;
2101 ieee80211_free_node(ni);
2107 mesh_send_action_meshlink_reply(struct ieee80211_node *ni,
2108 int category, int action, void *args0)
2110 struct ieee80211vap *vap = ni->ni_vap;
2111 struct ieee80211com *ic = ni->ni_ic;
2112 uint32_t *metric = args0;
2115 #ifdef IEEE80211_DEBUG
2116 char ethstr[ETHER_ADDRSTRLEN + 1];
2119 IEEE80211_NOTE(vap, IEEE80211_MSG_ACTION | IEEE80211_MSG_MESH, ni,
2120 "send LINK METRIC REPLY action: metric 0x%x", *metric);
2122 IEEE80211_DPRINTF(vap, IEEE80211_MSG_NODE,
2123 "ieee80211_ref_node (%s:%u) %p<%s> refcnt %d\n", __func__, __LINE__,
2124 ni, kether_ntoa(ni->ni_macaddr, ethstr), ieee80211_node_refcnt(ni)+1);
2125 ieee80211_ref_node(ni);
2127 m = ieee80211_getmgtframe(&frm,
2128 ic->ic_headroom + sizeof(struct ieee80211_frame),
2129 sizeof(uint16_t) /* action+category */
2130 + sizeof(struct ieee80211_meshlmetric_ie)
2134 * mesh link metric reply
2137 * [tlv] mesh link metric
2141 frm = ieee80211_add_meshlmetric(frm, *metric);
2142 m->m_pkthdr.len = m->m_len = frm - mtod(m, uint8_t *);
2143 return mesh_send_action(ni, m);
2145 vap->iv_stats.is_tx_nobuf++;
2146 ieee80211_free_node(ni);
2152 mesh_peer_timeout_setup(struct ieee80211_node *ni)
2154 switch (ni->ni_mlstate) {
2155 case IEEE80211_NODE_MESH_HOLDING:
2156 ni->ni_mltval = ieee80211_mesh_holdingtimeout;
2158 case IEEE80211_NODE_MESH_CONFIRMRCV:
2159 ni->ni_mltval = ieee80211_mesh_confirmtimeout;
2161 case IEEE80211_NODE_MESH_IDLE:
2165 ni->ni_mltval = ieee80211_mesh_retrytimeout;
2168 if (ni->ni_mltval) {
2169 callout_reset(&ni->ni_mltimer, ni->ni_mltval,
2170 mesh_peer_timeout_callout, ni);
2175 * Same as above but backoffs timer statisically 50%.
2178 mesh_peer_timeout_backoff(struct ieee80211_node *ni)
2183 ni->ni_mltval += r % ni->ni_mltval;
2184 callout_reset(&ni->ni_mltimer, ni->ni_mltval,
2185 mesh_peer_timeout_callout, ni);
2188 static __inline void
2189 mesh_peer_timeout_stop(struct ieee80211_node *ni)
2191 callout_stop(&ni->ni_mltimer);
2195 * Mesh Peer Link Management FSM timeout handling.
2198 mesh_peer_timeout_callout(void *arg)
2200 struct ieee80211_node *ni = (struct ieee80211_node *)arg;
2203 wlan_serialize_enter();
2204 IEEE80211_NOTE(ni->ni_vap, IEEE80211_MSG_MESH,
2205 ni, "mesh link timeout, state %d, retry counter %d",
2206 ni->ni_mlstate, ni->ni_mlrcnt);
2208 switch (ni->ni_mlstate) {
2209 case IEEE80211_NODE_MESH_IDLE:
2210 case IEEE80211_NODE_MESH_ESTABLISHED:
2212 case IEEE80211_NODE_MESH_OPENSNT:
2213 case IEEE80211_NODE_MESH_OPENRCV:
2214 if (ni->ni_mlrcnt == ieee80211_mesh_maxretries) {
2215 args[0] = ni->ni_mlpid;
2216 args[2] = IEEE80211_REASON_MESH_MAX_RETRIES;
2217 ieee80211_send_action(ni,
2218 IEEE80211_ACTION_CAT_MESHPEERING,
2219 IEEE80211_ACTION_MESHPEERING_CLOSE, args);
2221 mesh_linkchange(ni, IEEE80211_NODE_MESH_HOLDING);
2222 mesh_peer_timeout_setup(ni);
2224 args[0] = ni->ni_mlpid;
2225 ieee80211_send_action(ni,
2226 IEEE80211_ACTION_CAT_MESHPEERING,
2227 IEEE80211_ACTION_MESHPEERING_OPEN, args);
2229 mesh_peer_timeout_backoff(ni);
2232 case IEEE80211_NODE_MESH_CONFIRMRCV:
2233 if (ni->ni_mlrcnt == ieee80211_mesh_maxretries) {
2234 args[0] = ni->ni_mlpid;
2235 args[2] = IEEE80211_REASON_MESH_CONFIRM_TIMEOUT;
2236 ieee80211_send_action(ni,
2237 IEEE80211_ACTION_CAT_MESHPEERING,
2238 IEEE80211_ACTION_MESHPEERING_CLOSE, args);
2240 mesh_linkchange(ni, IEEE80211_NODE_MESH_HOLDING);
2241 mesh_peer_timeout_setup(ni);
2244 mesh_peer_timeout_setup(ni);
2247 case IEEE80211_NODE_MESH_HOLDING:
2248 mesh_linkchange(ni, IEEE80211_NODE_MESH_IDLE);
2251 wlan_serialize_exit();
2255 mesh_verify_meshid(struct ieee80211vap *vap, const uint8_t *ie)
2257 struct ieee80211_mesh_state *ms = vap->iv_mesh;
2259 if (ie == NULL || ie[1] != ms->ms_idlen)
2261 return memcmp(ms->ms_id, ie + 2, ms->ms_idlen);
2265 * Check if we are using the same algorithms for this mesh.
2268 mesh_verify_meshconf(struct ieee80211vap *vap, const uint8_t *ie)
2270 const struct ieee80211_meshconf_ie *meshconf =
2271 (const struct ieee80211_meshconf_ie *) ie;
2272 const struct ieee80211_mesh_state *ms = vap->iv_mesh;
2275 if (meshconf == NULL)
2277 if (meshconf->conf_pselid != ms->ms_ppath->mpp_ie) {
2278 IEEE80211_DPRINTF(vap, IEEE80211_MSG_MESH,
2279 "unknown path selection algorithm: 0x%x\n",
2280 meshconf->conf_pselid);
2283 if (meshconf->conf_pmetid != ms->ms_pmetric->mpm_ie) {
2284 IEEE80211_DPRINTF(vap, IEEE80211_MSG_MESH,
2285 "unknown path metric algorithm: 0x%x\n",
2286 meshconf->conf_pmetid);
2289 if (meshconf->conf_ccid != 0) {
2290 IEEE80211_DPRINTF(vap, IEEE80211_MSG_MESH,
2291 "unknown congestion control algorithm: 0x%x\n",
2292 meshconf->conf_ccid);
2295 if (meshconf->conf_syncid != IEEE80211_MESHCONF_SYNC_NEIGHOFF) {
2296 IEEE80211_DPRINTF(vap, IEEE80211_MSG_MESH,
2297 "unknown sync algorithm: 0x%x\n",
2298 meshconf->conf_syncid);
2301 if (meshconf->conf_authid != 0) {
2302 IEEE80211_DPRINTF(vap, IEEE80211_MSG_MESH,
2303 "unknown auth algorithm: 0x%x\n",
2304 meshconf->conf_pselid);
2307 /* NB: conf_cap is only read correctly here */
2308 cap = LE_READ_2(&meshconf->conf_cap);
2309 /* Not accepting peers */
2310 if (!(cap & IEEE80211_MESHCONF_CAP_AP)) {
2311 IEEE80211_DPRINTF(vap, IEEE80211_MSG_MESH,
2312 "not accepting peers: 0x%x\n", meshconf->conf_cap);
2319 mesh_verify_meshpeer(struct ieee80211vap *vap, uint8_t subtype,
2322 const struct ieee80211_meshpeer_ie *meshpeer =
2323 (const struct ieee80211_meshpeer_ie *) ie;
2325 if (meshpeer == NULL || meshpeer->peer_len < 6 ||
2326 meshpeer->peer_len > 10)
2329 case IEEE80211_MESH_PEER_LINK_OPEN:
2330 if (meshpeer->peer_len != 6)
2333 case IEEE80211_MESH_PEER_LINK_CONFIRM:
2334 if (meshpeer->peer_len != 8)
2337 case IEEE80211_MESH_PEER_LINK_CLOSE:
2338 if (meshpeer->peer_len < 8)
2340 if (meshpeer->peer_len == 8 && meshpeer->peer_linkid != 0)
2342 if (meshpeer->peer_rcode == 0)
2350 * Add a Mesh ID IE to a frame.
2353 ieee80211_add_meshid(uint8_t *frm, struct ieee80211vap *vap)
2355 struct ieee80211_mesh_state *ms = vap->iv_mesh;
2357 KASSERT(vap->iv_opmode == IEEE80211_M_MBSS, ("not a mbss vap"));
2359 *frm++ = IEEE80211_ELEMID_MESHID;
2360 *frm++ = ms->ms_idlen;
2361 memcpy(frm, ms->ms_id, ms->ms_idlen);
2362 return frm + ms->ms_idlen;
2366 * Add a Mesh Configuration IE to a frame.
2367 * For now just use HWMP routing, Airtime link metric, Null Congestion
2368 * Signaling, Null Sync Protocol and Null Authentication.
2371 ieee80211_add_meshconf(uint8_t *frm, struct ieee80211vap *vap)
2373 const struct ieee80211_mesh_state *ms = vap->iv_mesh;
2376 KASSERT(vap->iv_opmode == IEEE80211_M_MBSS, ("not a MBSS vap"));
2378 *frm++ = IEEE80211_ELEMID_MESHCONF;
2379 *frm++ = sizeof(struct ieee80211_meshconf_ie) - 2;
2380 *frm++ = ms->ms_ppath->mpp_ie; /* path selection */
2381 *frm++ = ms->ms_pmetric->mpm_ie; /* link metric */
2382 *frm++ = IEEE80211_MESHCONF_CC_DISABLED;
2383 *frm++ = IEEE80211_MESHCONF_SYNC_NEIGHOFF;
2384 *frm++ = IEEE80211_MESHCONF_AUTH_DISABLED;
2385 /* NB: set the number of neighbors before the rest */
2386 *frm = (ms->ms_neighbors > 15 ? 15 : ms->ms_neighbors) << 1;
2387 if (ms->ms_flags & IEEE80211_MESHFLAGS_PORTAL)
2388 *frm |= IEEE80211_MESHCONF_FORM_MP;
2391 if (ms->ms_flags & IEEE80211_MESHFLAGS_AP)
2392 caps |= IEEE80211_MESHCONF_CAP_AP;
2393 if (ms->ms_flags & IEEE80211_MESHFLAGS_FWD)
2394 caps |= IEEE80211_MESHCONF_CAP_FWRD;
2395 ADDSHORT(frm, caps);
2400 * Add a Mesh Peer Management IE to a frame.
2403 ieee80211_add_meshpeer(uint8_t *frm, uint8_t subtype, uint16_t localid,
2404 uint16_t peerid, uint16_t reason)
2406 /* XXX change for AH */
2407 static const uint8_t meshpeerproto[4] = IEEE80211_MESH_PEER_PROTO;
2409 KASSERT(localid != 0, ("localid == 0"));
2411 *frm++ = IEEE80211_ELEMID_MESHPEER;
2413 case IEEE80211_MESH_PEER_LINK_OPEN:
2414 *frm++ = 6; /* length */
2415 memcpy(frm, meshpeerproto, 4);
2417 ADDSHORT(frm, localid); /* local ID */
2419 case IEEE80211_MESH_PEER_LINK_CONFIRM:
2420 KASSERT(peerid != 0, ("sending peer confirm without peer id"));
2421 *frm++ = 8; /* length */
2422 memcpy(frm, meshpeerproto, 4);
2424 ADDSHORT(frm, localid); /* local ID */
2425 ADDSHORT(frm, peerid); /* peer ID */
2427 case IEEE80211_MESH_PEER_LINK_CLOSE:
2429 *frm++ = 10; /* length */
2431 *frm++ = 8; /* length */
2432 memcpy(frm, meshpeerproto, 4);
2434 ADDSHORT(frm, localid); /* local ID */
2436 ADDSHORT(frm, peerid); /* peer ID */
2437 ADDSHORT(frm, reason);
2444 * Compute an Airtime Link Metric for the link with this node.
2446 * Based on Draft 3.0 spec (11B.10, p.149).
2449 * Max 802.11s overhead.
2451 #define IEEE80211_MESH_MAXOVERHEAD \
2452 (sizeof(struct ieee80211_qosframe_addr4) \
2453 + sizeof(struct ieee80211_meshcntl_ae11) \
2454 + sizeof(struct llc) \
2455 + IEEE80211_ADDR_LEN \
2456 + IEEE80211_WEP_IVLEN \
2457 + IEEE80211_WEP_KIDLEN \
2458 + IEEE80211_WEP_CRCLEN \
2459 + IEEE80211_WEP_MICLEN \
2460 + IEEE80211_CRC_LEN)
2462 mesh_airtime_calc(struct ieee80211_node *ni)
2465 #define S_FACTOR (2 * M_BITS)
2466 struct ieee80211com *ic = ni->ni_ic;
2467 struct ifnet *ifp = ni->ni_vap->iv_ifp;
2468 static const int nbits = 8192 << M_BITS;
2469 uint32_t overhead, rate, errrate;
2473 /* Time to transmit a frame */
2474 rate = ni->ni_txrate;
2475 overhead = ieee80211_compute_duration(ic->ic_rt,
2476 ifp->if_mtu + IEEE80211_MESH_MAXOVERHEAD, rate, 0) << M_BITS;
2477 /* Error rate in percentage */
2478 /* XXX assuming small failures are ok */
2479 IFNET_STAT_GET(ifp, oerrors, oerr);
2480 IFNET_STAT_GET(ifp, ierrors, ierr);
2481 errrate = (((oerr + ierr) / 100) << M_BITS) / 100;
2482 res = (overhead + (nbits / rate)) *
2483 ((1 << S_FACTOR) / ((1 << M_BITS) - errrate));
2485 return (uint32_t)(res >> S_FACTOR);
2491 * Add a Mesh Link Metric report IE to a frame.
2494 ieee80211_add_meshlmetric(uint8_t *frm, uint32_t metric)
2496 *frm++ = IEEE80211_ELEMID_MESHLINK;
2498 ADDWORD(frm, metric);
2505 * Initialize any mesh-specific node state.
2508 ieee80211_mesh_node_init(struct ieee80211vap *vap, struct ieee80211_node *ni)
2510 ni->ni_flags |= IEEE80211_NODE_QOS;
2511 callout_init_mp(&ni->ni_mltimer);
2515 * Cleanup any mesh-specific node state.
2518 ieee80211_mesh_node_cleanup(struct ieee80211_node *ni)
2520 struct ieee80211vap *vap = ni->ni_vap;
2521 struct ieee80211_mesh_state *ms = vap->iv_mesh;
2523 callout_stop(&ni->ni_mltimer);
2524 /* NB: short-circuit callbacks after mesh_vdetach */
2525 if (vap->iv_mesh != NULL)
2526 ms->ms_ppath->mpp_peerdown(ni);
2530 ieee80211_parse_meshid(struct ieee80211_node *ni, const uint8_t *ie)
2532 ni->ni_meshidlen = ie[1];
2533 memcpy(ni->ni_meshid, ie + 2, ie[1]);
2537 * Setup mesh-specific node state on neighbor discovery.
2540 ieee80211_mesh_init_neighbor(struct ieee80211_node *ni,
2541 const struct ieee80211_frame *wh,
2542 const struct ieee80211_scanparams *sp)
2544 ieee80211_parse_meshid(ni, sp->meshid);
2548 ieee80211_mesh_update_beacon(struct ieee80211vap *vap,
2549 struct ieee80211_beacon_offsets *bo)
2551 KASSERT(vap->iv_opmode == IEEE80211_M_MBSS, ("not a MBSS vap"));
2553 if (isset(bo->bo_flags, IEEE80211_BEACON_MESHCONF)) {
2554 (void)ieee80211_add_meshconf(bo->bo_meshconf, vap);
2555 clrbit(bo->bo_flags, IEEE80211_BEACON_MESHCONF);
2560 mesh_ioctl_get80211(struct ieee80211vap *vap, struct ieee80211req *ireq)
2562 struct ieee80211_mesh_state *ms = vap->iv_mesh;
2563 uint8_t tmpmeshid[IEEE80211_NWID_LEN];
2564 struct ieee80211_mesh_route *rt;
2565 struct ieee80211req_mesh_route *imr;
2570 if (vap->iv_opmode != IEEE80211_M_MBSS)
2574 switch (ireq->i_type) {
2575 case IEEE80211_IOC_MESH_ID:
2576 ireq->i_len = ms->ms_idlen;
2577 memcpy(tmpmeshid, ms->ms_id, ireq->i_len);
2578 error = copyout(tmpmeshid, ireq->i_data, ireq->i_len);
2580 case IEEE80211_IOC_MESH_AP:
2581 ireq->i_val = (ms->ms_flags & IEEE80211_MESHFLAGS_AP) != 0;
2583 case IEEE80211_IOC_MESH_FWRD:
2584 ireq->i_val = (ms->ms_flags & IEEE80211_MESHFLAGS_FWD) != 0;
2586 case IEEE80211_IOC_MESH_TTL:
2587 ireq->i_val = ms->ms_ttl;
2589 case IEEE80211_IOC_MESH_RTCMD:
2590 switch (ireq->i_val) {
2591 case IEEE80211_MESH_RTCMD_LIST:
2593 TAILQ_FOREACH(rt, &ms->ms_routes, rt_next) {
2594 len += sizeof(*imr);
2596 if (len > ireq->i_len || ireq->i_len < sizeof(*imr)) {
2602 p = kmalloc(len, M_TEMP, M_INTWAIT | M_ZERO);
2604 TAILQ_FOREACH(rt, &ms->ms_routes, rt_next) {
2607 imr = (struct ieee80211req_mesh_route *)
2609 imr->imr_flags = rt->rt_flags;
2610 IEEE80211_ADDR_COPY(imr->imr_dest,
2612 IEEE80211_ADDR_COPY(imr->imr_nexthop,
2614 imr->imr_metric = rt->rt_metric;
2615 imr->imr_nhops = rt->rt_nhops;
2616 imr->imr_lifetime = rt->rt_lifetime;
2617 imr->imr_lastmseq = rt->rt_lastmseq;
2618 off += sizeof(*imr);
2620 error = copyout(p, (uint8_t *)ireq->i_data,
2624 case IEEE80211_MESH_RTCMD_FLUSH:
2625 case IEEE80211_MESH_RTCMD_ADD:
2626 case IEEE80211_MESH_RTCMD_DELETE:
2632 case IEEE80211_IOC_MESH_PR_METRIC:
2633 len = strlen(ms->ms_pmetric->mpm_descr);
2634 if (ireq->i_len < len)
2637 error = copyout(ms->ms_pmetric->mpm_descr,
2638 (uint8_t *)ireq->i_data, len);
2640 case IEEE80211_IOC_MESH_PR_PATH:
2641 len = strlen(ms->ms_ppath->mpp_descr);
2642 if (ireq->i_len < len)
2645 error = copyout(ms->ms_ppath->mpp_descr,
2646 (uint8_t *)ireq->i_data, len);
2654 IEEE80211_IOCTL_GET(mesh, mesh_ioctl_get80211);
2657 mesh_ioctl_set80211(struct ieee80211vap *vap, struct ieee80211req *ireq)
2659 struct ieee80211_mesh_state *ms = vap->iv_mesh;
2660 uint8_t tmpmeshid[IEEE80211_NWID_LEN];
2661 uint8_t tmpaddr[IEEE80211_ADDR_LEN];
2662 char tmpproto[IEEE80211_MESH_PROTO_DSZ];
2665 if (vap->iv_opmode != IEEE80211_M_MBSS)
2669 switch (ireq->i_type) {
2670 case IEEE80211_IOC_MESH_ID:
2671 if (ireq->i_val != 0 || ireq->i_len > IEEE80211_MESHID_LEN)
2673 error = copyin(ireq->i_data, tmpmeshid, ireq->i_len);
2676 memset(ms->ms_id, 0, IEEE80211_NWID_LEN);
2677 ms->ms_idlen = ireq->i_len;
2678 memcpy(ms->ms_id, tmpmeshid, ireq->i_len);
2681 case IEEE80211_IOC_MESH_AP:
2683 ms->ms_flags |= IEEE80211_MESHFLAGS_AP;
2685 ms->ms_flags &= ~IEEE80211_MESHFLAGS_AP;
2688 case IEEE80211_IOC_MESH_FWRD:
2690 ms->ms_flags |= IEEE80211_MESHFLAGS_FWD;
2692 ms->ms_flags &= ~IEEE80211_MESHFLAGS_FWD;
2694 case IEEE80211_IOC_MESH_TTL:
2695 ms->ms_ttl = (uint8_t) ireq->i_val;
2697 case IEEE80211_IOC_MESH_RTCMD:
2698 switch (ireq->i_val) {
2699 case IEEE80211_MESH_RTCMD_LIST:
2701 case IEEE80211_MESH_RTCMD_FLUSH:
2702 ieee80211_mesh_rt_flush(vap);
2704 case IEEE80211_MESH_RTCMD_ADD:
2705 if (IEEE80211_ADDR_EQ(vap->iv_myaddr, ireq->i_data) ||
2706 IEEE80211_ADDR_EQ(broadcastaddr, ireq->i_data))
2708 error = copyin(ireq->i_data, &tmpaddr,
2709 IEEE80211_ADDR_LEN);
2711 ieee80211_mesh_discover(vap, tmpaddr, NULL);
2713 case IEEE80211_MESH_RTCMD_DELETE:
2714 ieee80211_mesh_rt_del(vap, ireq->i_data);
2720 case IEEE80211_IOC_MESH_PR_METRIC:
2721 error = copyin(ireq->i_data, tmpproto, sizeof(tmpproto));
2723 error = mesh_select_proto_metric(vap, tmpproto);
2728 case IEEE80211_IOC_MESH_PR_PATH:
2729 error = copyin(ireq->i_data, tmpproto, sizeof(tmpproto));
2731 error = mesh_select_proto_path(vap, tmpproto);
2741 IEEE80211_IOCTL_SET(mesh, mesh_ioctl_set80211);
tuxillo's projects / dragonfly.git / blob