]> git.ipfire.org Git - thirdparty/iw.git/blob - scan.c
projects / thirdparty / iw.git / blob
? search:
summary | shortlog | log | commit | commitdiff | tree
blame | history | raw | HEAD
split out multicast group adding
[thirdparty/iw.git] / scan.c
1 #include <net/if.h>
2 #include <errno.h>
3 #include <string.h>
4 #include <ctype.h>
5 #include <stdbool.h>
6
7 #include <netlink/genl/genl.h>
8 #include <netlink/genl/family.h>
9 #include <netlink/genl/ctrl.h>
10 #include <netlink/msg.h>
11 #include <netlink/attr.h>
12
13 #include "nl80211.h"
14 #include "iw.h"
15
16 #define WLAN_CAPABILITY_ESS (1<<0)
17 #define WLAN_CAPABILITY_IBSS (1<<1)
18 #define WLAN_CAPABILITY_CF_POLLABLE (1<<2)
19 #define WLAN_CAPABILITY_CF_POLL_REQUEST (1<<3)
20 #define WLAN_CAPABILITY_PRIVACY (1<<4)
21 #define WLAN_CAPABILITY_SHORT_PREAMBLE (1<<5)
22 #define WLAN_CAPABILITY_PBCC (1<<6)
23 #define WLAN_CAPABILITY_CHANNEL_AGILITY (1<<7)
24 #define WLAN_CAPABILITY_SPECTRUM_MGMT (1<<8)
25 #define WLAN_CAPABILITY_QOS (1<<9)
26 #define WLAN_CAPABILITY_SHORT_SLOT_TIME (1<<10)
27 #define WLAN_CAPABILITY_APSD (1<<11)
28 #define WLAN_CAPABILITY_DSSS_OFDM (1<<13)
29
30 static unsigned char wifi_oui[3] = { 0x00, 0x50, 0xf2 };
31 static unsigned char ieee80211_oui[3] = { 0x00, 0x0f, 0xac };
32
33 struct scan_params {
34 bool unknown;
35 enum print_ie_type type;
36 bool show_both_ie_sets;
37 };
38
39 #define IEEE80211_COUNTRY_EXTENSION_ID 201
40
41 struct ieee80211_country_ie_triplet {
42 union {
43 struct {
44 __u8 first_channel;
45 __u8 num_channels;
46 __s8 max_power;
47 } __attribute__ ((packed)) chans;
48 struct {
49 __u8 reg_extension_id;
50 __u8 reg_class;
51 __u8 coverage_class;
52 } __attribute__ ((packed)) ext;
53 };
54 } __attribute__ ((packed));
55
56 static int handle_scan(struct nl80211_state *state,
57 struct nl_cb *cb,
58 struct nl_msg *msg,
59 int argc, char **argv)
60 {
61 struct nl_msg *ssids = NULL, *freqs = NULL;
62 char *eptr;
63 int err = -ENOBUFS;
64 int i;
65 enum {
66 NONE,
67 FREQ,
68 IES,
69 SSID,
70 DONE,
71 } parse = NONE;
72 int freq;
73 bool passive = false, have_ssids = false, have_freqs = false;
74 size_t tmp;
75 unsigned char *ies;
76
77 ssids = nlmsg_alloc();
78 if (!ssids)
79 return -ENOMEM;
80
81 freqs = nlmsg_alloc();
82 if (!freqs) {
83 nlmsg_free(ssids);
84 return -ENOMEM;
85 }
86
87 for (i = 0; i < argc; i++) {
88 switch (parse) {
89 case NONE:
90 if (strcmp(argv[i], "freq") == 0) {
91 parse = FREQ;
92 have_freqs = true;
93 break;
94 } else if (strcmp(argv[i], "ies") == 0) {
95 parse = IES;
96 break;
97 } else if (strcmp(argv[i], "ssid") == 0) {
98 parse = SSID;
99 have_ssids = true;
100 break;
101 } else if (strcmp(argv[i], "passive") == 0) {
102 parse = DONE;
103 passive = true;
104 break;
105 }
106 case DONE:
107 return 1;
108 case FREQ:
109 freq = strtoul(argv[i], &eptr, 10);
110 if (eptr != argv[i] + strlen(argv[i]))
111 return 1;
112 NLA_PUT_U32(freqs, i, freq);
113 parse = NONE;
114 break;
115 case IES:
116 ies = parse_hex(argv[i], &tmp);
117 if (!ies)
118 goto nla_put_failure;
119 NLA_PUT(msg, NL80211_ATTR_IE, tmp, ies);
120 free(ies);
121 parse = NONE;
122 break;
123 case SSID:
124 NLA_PUT(ssids, i, strlen(argv[i]), argv[i]);
125 break;
126 }
127 }
128
129 if (!have_ssids)
130 NLA_PUT(ssids, 1, 0, "");
131 if (!passive)
132 nla_put_nested(msg, NL80211_ATTR_SCAN_SSIDS, ssids);
133
134 if (have_freqs)
135 nla_put_nested(msg, NL80211_ATTR_SCAN_FREQUENCIES, freqs);
136
137 err = 0;
138 nla_put_failure:
139 nlmsg_free(ssids);
140 nlmsg_free(freqs);
141 return err;
142 }
143
144 static void tab_on_first(bool *first)
145 {
146 if (!*first)
147 printf("\t");
148 else
149 *first = false;
150 }
151
152 static void print_ssid(const uint8_t type, uint8_t len, const uint8_t *data)
153 {
154 printf(" ");
155 print_ssid_escaped(len, data);
156 printf("\n");
157 }
158
159 static void print_supprates(const uint8_t type, uint8_t len, const uint8_t *data)
160 {
161 int i;
162
163 printf(" ");
164
165 for (i = 0; i < len; i++) {
166 int r = data[i] & 0x7f;
167 printf("%d.%d%s ", r/2, 5*(r&1), data[i] & 0x80 ? "*":"");
168 }
169 printf("\n");
170 }
171
172 static void print_ds(const uint8_t type, uint8_t len, const uint8_t *data)
173 {
174 printf(" channel %d\n", data[0]);
175 }
176
177 static const char *country_env_str(char environment)
178 {
179 switch (environment) {
180 case 'I':
181 return "Indoor only";
182 case 'O':
183 return "Outdoor only";
184 case ' ':
185 return "Indoor/Outdoor";
186 default:
187 return "bogus";
188 }
189 }
190
191 static void print_country(const uint8_t type, uint8_t len, const uint8_t *data)
192 {
193 printf(" %.*s", 2, data);
194
195 printf("\tEnvironment: %s\n", country_env_str(data[2]));
196
197 data += 3;
198 len -= 3;
199
200 if (len < 3) {
201 printf("\t\tNo country IE triplets present\n");
202 return;
203 }
204
205 while (len >= 3) {
206 int end_channel;
207 struct ieee80211_country_ie_triplet *triplet =
208 (struct ieee80211_country_ie_triplet *) data;
209
210 if (triplet->ext.reg_extension_id >= IEEE80211_COUNTRY_EXTENSION_ID) {
211 printf("\t\tExtension ID: %d Regulatory Class: %d Coverage class: %d (up to %dm)\n",
212 triplet->ext.reg_extension_id,
213 triplet->ext.reg_class,
214 triplet->ext.coverage_class,
215 triplet->ext.coverage_class * 450);
216
217 data += 3;
218 len -= 3;
219 continue;
220 }
221
222 /* 2 GHz */
223 if (triplet->chans.first_channel <= 14)
224 end_channel = triplet->chans.first_channel + (triplet->chans.num_channels - 1);
225 else
226 end_channel = triplet->chans.first_channel + (4 * (triplet->chans.num_channels - 1));
227
228 printf("\t\tChannels [%d - %d]\n", triplet->chans.first_channel, end_channel);
229
230 data += 3;
231 len -= 3;
232 }
233
234 return;
235 }
236
237 static void print_powerconstraint(const uint8_t type, uint8_t len, const uint8_t *data)
238 {
239 printf(" %d dB\n", data[0]);
240 }
241
242 static void print_erp(const uint8_t type, uint8_t len, const uint8_t *data)
243 {
244 if (data[0] == 0x00)
245 printf(" <no flags>");
246 if (data[0] & 0x01)
247 printf(" NonERP_Present");
248 if (data[0] & 0x02)
249 printf(" Use_Protection");
250 if (data[0] & 0x04)
251 printf(" Barker_Preamble_Mode");
252 printf("\n");
253 }
254
255 static void print_cipher(const uint8_t *data)
256 {
257 if (memcmp(data, wifi_oui, 3) == 0) {
258 switch (data[3]) {
259 case 0:
260 printf("Use group cipher suite");
261 break;
262 case 1:
263 printf("WEP-40");
264 break;
265 case 2:
266 printf("TKIP");
267 break;
268 case 4:
269 printf("CCMP");
270 break;
271 case 5:
272 printf("WEP-104");
273 break;
274 default:
275 printf("%.02x-%.02x-%.02x:%d",
276 data[0], data[1] ,data[2], data[3]);
277 break;
278 }
279 } else if (memcmp(data, ieee80211_oui, 3) == 0) {
280 switch (data[3]) {
281 case 0:
282 printf("Use group cipher suite");
283 break;
284 case 1:
285 printf("WEP-40");
286 break;
287 case 2:
288 printf("TKIP");
289 break;
290 case 4:
291 printf("CCMP");
292 break;
293 case 5:
294 printf("WEP-104");
295 break;
296 case 6:
297 printf("AES-128-CMAC");
298 break;
299 default:
300 printf("%.02x-%.02x-%.02x:%d",
301 data[0], data[1] ,data[2], data[3]);
302 break;
303 }
304 } else
305 printf("%.02x-%.02x-%.02x:%d",
306 data[0], data[1] ,data[2], data[3]);
307 }
308
309 static void print_auth(const uint8_t *data)
310 {
311 if (memcmp(data, wifi_oui, 3) == 0) {
312 switch (data[3]) {
313 case 1:
314 printf("IEEE 802.1X");
315 break;
316 case 2:
317 printf("PSK");
318 break;
319 default:
320 printf("%.02x-%.02x-%.02x:%d",
321 data[0], data[1] ,data[2], data[3]);
322 break;
323 }
324 } else if (memcmp(data, ieee80211_oui, 3) == 0) {
325 switch (data[3]) {
326 case 1:
327 printf("IEEE 802.1X");
328 break;
329 case 2:
330 printf("PSK");
331 break;
332 case 3:
333 printf("FT/IEEE 802.1X");
334 break;
335 case 4:
336 printf("FT/PSK");
337 break;
338 case 5:
339 printf("IEEE 802.1X/SHA-256");
340 break;
341 case 6:
342 printf("PSK/SHA-256");
343 break;
344 default:
345 printf("%.02x-%.02x-%.02x:%d",
346 data[0], data[1] ,data[2], data[3]);
347 break;
348 }
349 } else
350 printf("%.02x-%.02x-%.02x:%d",
351 data[0], data[1] ,data[2], data[3]);
352 }
353
354 static void print_rsn_ie(const char *defcipher, const char *defauth,
355 uint8_t len, const uint8_t *data)
356 {
357 bool first = true;
358 __u16 version, count, capa;
359 int i;
360
361 version = data[0] + (data[1] << 8);
362 tab_on_first(&first);
363 printf("\t * Version: %d\n", version);
364
365 data += 2;
366 len -= 2;
367
368 if (len < 4) {
369 tab_on_first(&first);
370 printf("\t * Group cipher: %s\n", defcipher);
371 printf("\t * Pairwise ciphers: %s\n", defcipher);
372 return;
373 }
374
375 tab_on_first(&first);
376 printf("\t * Group cipher: ");
377 print_cipher(data);
378 printf("\n");
379
380 data += 4;
381 len -= 4;
382
383 if (len < 2) {
384 tab_on_first(&first);
385 printf("\t * Pairwise ciphers: %s\n", defcipher);
386 return;
387 }
388
389 count = data[0] | (data[1] << 8);
390 if (2 + (count * 4) > len)
391 goto invalid;
392
393 tab_on_first(&first);
394 printf("\t * Pairwise ciphers:");
395 for (i = 0; i < count; i++) {
396 printf(" ");
397 print_cipher(data + 2 + (i * 4));
398 }
399 printf("\n");
400
401 data += 2 + (count * 4);
402 len -= 2 + (count * 4);
403
404 if (len < 2) {
405 tab_on_first(&first);
406 printf("\t * Authentication suites: %s\n", defauth);
407 return;
408 }
409
410 count = data[0] | (data[1] << 8);
411 if (2 + (count * 4) > len)
412 goto invalid;
413
414 tab_on_first(&first);
415 printf("\t * Authentication suites:");
416 for (i = 0; i < count; i++) {
417 printf(" ");
418 print_auth(data + 2 + (i * 4));
419 }
420 printf("\n");
421
422 data += 2 + (count * 4);
423 len -= 2 + (count * 4);
424
425 if (len >= 2) {
426 capa = data[0] | (data[1] << 8);
427 tab_on_first(&first);
428 printf("\t * Capabilities:");
429 if (capa & 0x0001)
430 printf(" PreAuth");
431 if (capa & 0x0002)
432 printf(" NoPairwise");
433 switch ((capa & 0x000c) >> 2) {
434 case 0:
435 break;
436 case 1:
437 printf(" 2-PTKSA-RC");
438 break;
439 case 2:
440 printf(" 4-PTKSA-RC");
441 break;
442 case 3:
443 printf(" 16-PTKSA-RC");
444 break;
445 }
446 switch ((capa & 0x0030) >> 4) {
447 case 0:
448 break;
449 case 1:
450 printf(" 2-GTKSA-RC");
451 break;
452 case 2:
453 printf(" 4-GTKSA-RC");
454 break;
455 case 3:
456 printf(" 16-GTKSA-RC");
457 break;
458 }
459 if (capa & 0x0040)
460 printf(" MFP-required");
461 if (capa & 0x0080)
462 printf(" MFP-capable");
463 if (capa & 0x0200)
464 printf(" Peerkey-enabled");
465 if (capa & 0x0400)
466 printf(" SPP-AMSDU-capable");
467 if (capa & 0x0800)
468 printf(" SPP-AMSDU-required");
469 printf(" (0x%.4x)\n", capa);
470 data += 2;
471 len -= 2;
472 }
473
474 invalid:
475 if (len != 0) {
476 printf("\t\t * bogus tail data (%d):", len);
477 while (len) {
478 printf(" %.2x", *data);
479 data++;
480 len--;
481 }
482 printf("\n");
483 }
484 }
485
486 static void print_rsn(const uint8_t type, uint8_t len, const uint8_t *data)
487 {
488 print_rsn_ie("CCMP", "IEEE 802.1X", len, data);
489 }
490
491 static void print_ht_capa(const uint8_t type, uint8_t len, const uint8_t *data)
492 {
493 if (len != 26) {
494 printf("\n\t\tHT Capability IE len != expected 26 bytes, skipping parse\n");
495 return;
496 }
497 printf("\n");
498 print_ht_capability(data[0] | (data[1] << 8));
499 print_ampdu_length(data[2] & 3);
500 print_ampdu_spacing((data[2] >> 2) & 3);
501 print_ht_mcs(data + 3);
502 }
503
504 static void print_capabilities(const uint8_t type, uint8_t len, const uint8_t *data)
505 {
506 int i, base, bit;
507 bool first = true;
508
509
510 for (i = 0; i < len; i++) {
511 base = i * 8;
512
513 for (bit = 0; bit < 8; bit++) {
514 if (!(data[i] & (1 << bit)))
515 continue;
516
517 if (!first)
518 printf(",");
519 else
520 first = false;
521
522 switch (bit + base) {
523 case 0:
524 printf(" HT Information Exchange Supported");
525 break;
526 case 1:
527 printf(" On-demand Beacon");
528 break;
529 case 2:
530 printf(" Extended Channel Switching");
531 break;
532 case 3:
533 printf(" Wave Indication");
534 break;
535 case 4:
536 printf(" PSMP Capability");
537 break;
538 case 5:
539 printf(" Service Interval Granularity");
540 break;
541 case 6:
542 printf(" S-PSMP Capability");
543 break;
544 default:
545 printf(" %d", bit);
546 break;
547 }
548 }
549 }
550
551 printf("\n");
552 }
553
554 static void print_tim(const uint8_t type, uint8_t len, const uint8_t *data)
555 {
556 printf(" DTIM Count %u DTIM Period %u Bitmap Control 0x%x "
557 "Bitmap[0] 0x%x",
558 data[0], data[1], data[2], data[3]);
559 if (len - 4)
560 printf(" (+ %u octet%s)", len - 4, len - 4 == 1 ? "" : "s");
561 printf("\n");
562 }
563
564 struct ie_print {
565 const char *name;
566 void (*print)(const uint8_t type, uint8_t len, const uint8_t *data);
567 uint8_t minlen, maxlen;
568 uint8_t flags;
569 };
570
571 static void print_ie(const struct ie_print *p, const uint8_t type,
572 uint8_t len, const uint8_t *data)
573 {
574 int i;
575
576 if (!p->print)
577 return;
578
579 printf("\t%s:", p->name);
580 if (len < p->minlen || len > p->maxlen) {
581 if (len > 1) {
582 printf(" <invalid: %d bytes:", len);
583 for (i = 0; i < len; i++)
584 printf(" %.02x", data[i]);
585 printf(">\n");
586 } else if (len)
587 printf(" <invalid: 1 byte: %.02x>\n", data[0]);
588 else
589 printf(" <invalid: no data>\n");
590 return;
591 }
592
593 p->print(type, len, data);
594 }
595
596 #define PRINT_IGN { \
597 .name = "IGNORE", \
598 .print = NULL, \
599 .minlen = 0, \
600 .maxlen = 255, \
601 }
602
603 static const struct ie_print ieprinters[] = {
604 [0] = { "SSID", print_ssid, 0, 32, BIT(PRINT_SCAN) | BIT(PRINT_LINK), },
605 [1] = { "Supported rates", print_supprates, 0, 255, BIT(PRINT_SCAN), },
606 [3] = { "DS Parameter set", print_ds, 1, 1, BIT(PRINT_SCAN), },
607 [5] = { "TIM", print_tim, 4, 255, BIT(PRINT_SCAN), },
608 [7] = { "Country", print_country, 3, 255, BIT(PRINT_SCAN), },
609 [32] = { "Power constraint", print_powerconstraint, 1, 1, BIT(PRINT_SCAN), },
610 [42] = { "ERP", print_erp, 1, 255, BIT(PRINT_SCAN), },
611 [45] = { "HT capabilities", print_ht_capa, 1, 255, BIT(PRINT_SCAN), },
612 [48] = { "RSN", print_rsn, 2, 255, BIT(PRINT_SCAN), },
613 [50] = { "Extended supported rates", print_supprates, 0, 255, BIT(PRINT_SCAN), },
614 [127] = { "Extended capabilities", print_capabilities, 0, 255, BIT(PRINT_SCAN), },
615 };
616
617 static void print_wifi_wpa(const uint8_t type, uint8_t len, const uint8_t *data)
618 {
619 print_rsn_ie("TKIP", "IEEE 802.1X", len, data);
620 }
621
622 static bool print_wifi_wmm_param(const uint8_t *data, uint8_t len)
623 {
624 int i;
625 static const char *aci_tbl[] = { "BE", "BK", "VI", "VO" };
626
627 if (len < 19)
628 goto invalid;
629
630 if (data[0] != 1) {
631 printf("Parameter: not version 1: ");
632 return false;
633 }
634
635 printf("\t * Parameter version 1");
636
637 data++;
638
639 if (data[0] & 0x80)
640 printf("\n\t\t * u-APSD");
641
642 data += 2;
643
644 for (i = 0; i < 4; i++) {
645 printf("\n\t\t * %s:", aci_tbl[(data[0] >> 5) & 3]);
646 if (data[4] & 0x10)
647 printf(" acm");
648 printf(" CW %d-%d", (1 << (data[1] & 0xf)) - 1,
649 (1 << (data[1] >> 4)) - 1);
650 printf(", AIFSN %d", data[0] & 0xf);
651 if (data[2] | data[3])
652 printf(", TXOP %d usec", (data[2] + (data[3] << 8)) * 32);
653 data += 4;
654 }
655
656 printf("\n");
657 return true;
658
659 invalid:
660 printf("invalid: ");
661 return false;
662 }
663
664 static void print_wifi_wmm(const uint8_t type, uint8_t len, const uint8_t *data)
665 {
666 int i;
667
668 switch (data[0]) {
669 case 0x00:
670 printf(" information:");
671 break;
672 case 0x01:
673 if (print_wifi_wmm_param(data + 1, len - 1))
674 return;
675 break;
676 default:
677 printf(" type %d:", data[0]);
678 break;
679 }
680
681 for(i = 1; i < len; i++)
682 printf(" %.02x", data[i]);
683 printf("\n");
684 }
685
686 static const char * wifi_wps_dev_passwd_id(uint16_t id)
687 {
688 switch (id) {
689 case 0:
690 return "Default (PIN)";
691 case 1:
692 return "User-specified";
693 case 2:
694 return "Machine-specified";
695 case 3:
696 return "Rekey";
697 case 4:
698 return "PushButton";
699 case 5:
700 return "Registrar-specified";
701 default:
702 return "??";
703 }
704 }
705
706 static void print_wifi_wps(const uint8_t type, uint8_t len, const uint8_t *data)
707 {
708 bool first = true;
709 __u16 subtype, sublen;
710
711 while (len >= 4) {
712 subtype = (data[0] << 8) + data[1];
713 sublen = (data[2] << 8) + data[3];
714 if (sublen > len)
715 break;
716
717 switch (subtype) {
718 case 0x104a:
719 tab_on_first(&first);
720 printf("\t * Version: %d.%d\n", data[4] >> 4, data[4] & 0xF);
721 break;
722 case 0x1011:
723 tab_on_first(&first);
724 printf("\t * Device name: %.*s\n", sublen, data + 4);
725 break;
726 case 0x1012: {
727 uint16_t id;
728 tab_on_first(&first);
729 if (sublen != 2) {
730 printf("\t * Device Password ID: (invalid "
731 "length %d)\n", sublen);
732 break;
733 }
734 id = data[4] << 8 | data[5];
735 printf("\t * Device Password ID: %u (%s)\n",
736 id, wifi_wps_dev_passwd_id(id));
737 break;
738 }
739 case 0x1021:
740 tab_on_first(&first);
741 printf("\t * Manufacturer: %.*s\n", sublen, data + 4);
742 break;
743 case 0x1023:
744 tab_on_first(&first);
745 printf("\t * Model: %.*s\n", sublen, data + 4);
746 break;
747 case 0x1024:
748 tab_on_first(&first);
749 printf("\t * Model Number: %.*s\n", sublen, data + 4);
750 break;
751 case 0x103b: {
752 __u8 val = data[4];
753 tab_on_first(&first);
754 printf("\t * Response Type: %d%s\n",
755 val, val == 3 ? " (AP)" : "");
756 break;
757 }
758 case 0x103c: {
759 __u8 val = data[4];
760 tab_on_first(&first);
761 printf("\t * RF Bands: 0x%x\n", val);
762 break;
763 }
764 case 0x1041: {
765 __u8 val = data[4];
766 tab_on_first(&first);
767 printf("\t * Selected Registrar: 0x%x\n", val);
768 break;
769 }
770 case 0x1042:
771 tab_on_first(&first);
772 printf("\t * Serial Number: %.*s\n", sublen, data + 4);
773 break;
774 case 0x1044: {
775 __u8 val = data[4];
776 tab_on_first(&first);
777 printf("\t * Wi-Fi Protected Setup State: %d%s%s\n",
778 val,
779 val == 1 ? " (Unconfigured)" : "",
780 val == 2 ? " (Configured)" : "");
781 break;
782 }
783 case 0x1054: {
784 tab_on_first(&first);
785 if (sublen != 8) {
786 printf("\t * Primary Device Type: (invalid "
787 "length %d)\n", sublen);
788 break;
789 }
790 printf("\t * Primary Device Type: "
791 "%u-%02x%02x%02x%02x-%u\n",
792 data[4] << 8 | data[5],
793 data[6], data[7], data[8], data[9],
794 data[10] << 8 | data[11]);
795 break;
796 }
797 case 0x1057: {
798 __u8 val = data[4];
799 tab_on_first(&first);
800 printf("\t * AP setup locked: 0x%.2x\n", val);
801 break;
802 }
803 case 0x1008:
804 case 0x1053: {
805 __u16 meth = (data[4] << 8) + data[5];
806 bool comma = false;
807 tab_on_first(&first);
808 printf("\t * %sConfig methods:",
809 subtype == 0x1053 ? "Selected Registrar ": "");
810 #define T(bit, name) do { \
811 if (meth & (1<<bit)) { \
812 if (comma) \
813 printf(","); \
814 comma = true; \
815 printf(" " name); \
816 } } while (0)
817 T(0, "USB");
818 T(1, "Ethernet");
819 T(2, "Label");
820 T(3, "Display");
821 T(4, "Ext. NFC");
822 T(5, "Int. NFC");
823 T(6, "NFC Intf.");
824 T(7, "PBC");
825 T(8, "Keypad");
826 printf("\n");
827 break;
828 #undef T
829 }
830 default: {
831 const __u8 *subdata = data + 4;
832 __u16 tmplen = sublen;
833
834 tab_on_first(&first);
835 printf("\t * Unknown TLV (%#.4x, %d bytes):",
836 subtype, tmplen);
837 while (tmplen) {
838 printf(" %.2x", *subdata);
839 subdata++;
840 tmplen--;
841 }
842 printf("\n");
843 break;
844 }
845 }
846
847 data += sublen + 4;
848 len -= sublen + 4;
849 }
850
851 if (len != 0) {
852 printf("\t\t * bogus tail data (%d):", len);
853 while (len) {
854 printf(" %.2x", *data);
855 data++;
856 len--;
857 }
858 printf("\n");
859 }
860 }
861
862 static const struct ie_print wifiprinters[] = {
863 [1] = { "WPA", print_wifi_wpa, 2, 255, BIT(PRINT_SCAN), },
864 [2] = { "WMM", print_wifi_wmm, 1, 255, BIT(PRINT_SCAN), },
865 [4] = { "WPS", print_wifi_wps, 0, 255, BIT(PRINT_SCAN), },
866 };
867
868 static void print_vendor(unsigned char len, unsigned char *data,
869 bool unknown, enum print_ie_type ptype)
870 {
871 int i;
872
873 if (len < 3) {
874 printf("\tVendor specific: <too short> data:");
875 for(i = 0; i < len; i++)
876 printf(" %.02x", data[i]);
877 printf("\n");
878 return;
879 }
880
881 if (len >= 4 && memcmp(data, wifi_oui, 3) == 0) {
882 if (data[3] < ARRAY_SIZE(wifiprinters) &&
883 wifiprinters[data[3]].name &&
884 wifiprinters[data[3]].flags & BIT(ptype)) {
885 print_ie(&wifiprinters[data[3]], data[3], len - 4, data + 4);
886 return;
887 }
888 if (!unknown)
889 return;
890 printf("\tWiFi OUI %#.2x, data:", data[3]);
891 for(i = 0; i < len - 4; i++)
892 printf(" %.02x", data[i + 4]);
893 printf("\n");
894 return;
895 }
896
897 if (!unknown)
898 return;
899
900 printf("\tVendor specific: OUI %.2x:%.2x:%.2x, data:",
901 data[0], data[1], data[2]);
902 for (i = 3; i < len; i++)
903 printf(" %.2x", data[i]);
904 printf("\n");
905 }
906
907 void print_ies(unsigned char *ie, int ielen, bool unknown,
908 enum print_ie_type ptype)
909 {
910 while (ielen >= 2 && ielen >= ie[1]) {
911 if (ie[0] < ARRAY_SIZE(ieprinters) &&
912 ieprinters[ie[0]].name &&
913 ieprinters[ie[0]].flags & BIT(ptype)) {
914 print_ie(&ieprinters[ie[0]], ie[0], ie[1], ie + 2);
915 } else if (ie[0] == 221 /* vendor */) {
916 print_vendor(ie[1], ie + 2, unknown, ptype);
917 } else if (unknown) {
918 int i;
919
920 printf("\tUnknown IE (%d):", ie[0]);
921 for (i=0; i<ie[1]; i++)
922 printf(" %.2x", ie[2+i]);
923 printf("\n");
924 }
925 ielen -= ie[1] + 2;
926 ie += ie[1] + 2;
927 }
928 }
929
930 static int print_bss_handler(struct nl_msg *msg, void *arg)
931 {
932 struct nlattr *tb[NL80211_ATTR_MAX + 1];
933 struct genlmsghdr *gnlh = nlmsg_data(nlmsg_hdr(msg));
934 struct nlattr *bss[NL80211_BSS_MAX + 1];
935 char mac_addr[20], dev[20];
936 static struct nla_policy bss_policy[NL80211_BSS_MAX + 1] = {
937 [NL80211_BSS_TSF] = { .type = NLA_U64 },
938 [NL80211_BSS_FREQUENCY] = { .type = NLA_U32 },
939 [NL80211_BSS_BSSID] = { },
940 [NL80211_BSS_BEACON_INTERVAL] = { .type = NLA_U16 },
941 [NL80211_BSS_CAPABILITY] = { .type = NLA_U16 },
942 [NL80211_BSS_INFORMATION_ELEMENTS] = { },
943 [NL80211_BSS_SIGNAL_MBM] = { .type = NLA_U32 },
944 [NL80211_BSS_SIGNAL_UNSPEC] = { .type = NLA_U8 },
945 [NL80211_BSS_STATUS] = { .type = NLA_U32 },
946 [NL80211_BSS_SEEN_MS_AGO] = { .type = NLA_U32 },
947 [NL80211_BSS_BEACON_IES] = { },
948 };
949 struct scan_params *params = arg;
950 int show = params->show_both_ie_sets ? 2 : 1;
951
952 nla_parse(tb, NL80211_ATTR_MAX, genlmsg_attrdata(gnlh, 0),
953 genlmsg_attrlen(gnlh, 0), NULL);
954
955 if (!tb[NL80211_ATTR_BSS]) {
956 fprintf(stderr, "bss info missing!\n");
957 return NL_SKIP;
958 }
959 if (nla_parse_nested(bss, NL80211_BSS_MAX,
960 tb[NL80211_ATTR_BSS],
961 bss_policy)) {
962 fprintf(stderr, "failed to parse nested attributes!\n");
963 return NL_SKIP;
964 }
965
966 if (!bss[NL80211_BSS_BSSID])
967 return NL_SKIP;
968
969 mac_addr_n2a(mac_addr, nla_data(bss[NL80211_BSS_BSSID]));
970 if_indextoname(nla_get_u32(tb[NL80211_ATTR_IFINDEX]), dev);
971 printf("BSS %s (on %s)", mac_addr, dev);
972
973 if (bss[NL80211_BSS_STATUS]) {
974 switch (nla_get_u32(bss[NL80211_BSS_STATUS])) {
975 case NL80211_BSS_STATUS_AUTHENTICATED:
976 printf(" -- authenticated");
977 break;
978 case NL80211_BSS_STATUS_ASSOCIATED:
979 printf(" -- associated");
980 break;
981 case NL80211_BSS_STATUS_IBSS_JOINED:
982 printf(" -- joined");
983 break;
984 default:
985 printf(" -- unknown status: %d",
986 nla_get_u32(bss[NL80211_BSS_STATUS]));
987 break;
988 }
989 }
990 printf("\n");
991
992 if (bss[NL80211_BSS_TSF]) {
993 unsigned long long tsf;
994 tsf = (unsigned long long)nla_get_u64(bss[NL80211_BSS_TSF]);
995 printf("\tTSF: %llu usec (%llud, %.2lld:%.2llu:%.2llu)\n",
996 tsf, tsf/1000/1000/60/60/24, (tsf/1000/1000/60/60) % 24,
997 (tsf/1000/1000/60) % 60, (tsf/1000/1000) % 60);
998 }
999 if (bss[NL80211_BSS_FREQUENCY])
1000 printf("\tfreq: %d\n",
1001 nla_get_u32(bss[NL80211_BSS_FREQUENCY]));
1002 if (bss[NL80211_BSS_BEACON_INTERVAL])
1003 printf("\tbeacon interval: %d\n",
1004 nla_get_u16(bss[NL80211_BSS_BEACON_INTERVAL]));
1005 if (bss[NL80211_BSS_CAPABILITY]) {
1006 __u16 capa = nla_get_u16(bss[NL80211_BSS_CAPABILITY]);
1007 printf("\tcapability:");
1008 if (capa & WLAN_CAPABILITY_ESS)
1009 printf(" ESS");
1010 if (capa & WLAN_CAPABILITY_IBSS)
1011 printf(" IBSS");
1012 if (capa & WLAN_CAPABILITY_PRIVACY)
1013 printf(" Privacy");
1014 if (capa & WLAN_CAPABILITY_SHORT_PREAMBLE)
1015 printf(" ShortPreamble");
1016 if (capa & WLAN_CAPABILITY_PBCC)
1017 printf(" PBCC");
1018 if (capa & WLAN_CAPABILITY_CHANNEL_AGILITY)
1019 printf(" ChannelAgility");
1020 if (capa & WLAN_CAPABILITY_SPECTRUM_MGMT)
1021 printf(" SpectrumMgmt");
1022 if (capa & WLAN_CAPABILITY_QOS)
1023 printf(" QoS");
1024 if (capa & WLAN_CAPABILITY_SHORT_SLOT_TIME)
1025 printf(" ShortSlotTime");
1026 if (capa & WLAN_CAPABILITY_APSD)
1027 printf(" APSD");
1028 if (capa & WLAN_CAPABILITY_DSSS_OFDM)
1029 printf(" DSSS-OFDM");
1030 printf(" (0x%.4x)\n", capa);
1031 }
1032 if (bss[NL80211_BSS_SIGNAL_MBM]) {
1033 int s = nla_get_u32(bss[NL80211_BSS_SIGNAL_MBM]);
1034 printf("\tsignal: %d.%.2d dBm\n", s/100, s%100);
1035 }
1036 if (bss[NL80211_BSS_SIGNAL_UNSPEC]) {
1037 unsigned char s = nla_get_u8(bss[NL80211_BSS_SIGNAL_UNSPEC]);
1038 printf("\tsignal: %d/100\n", s);
1039 }
1040 if (bss[NL80211_BSS_SEEN_MS_AGO]) {
1041 int age = nla_get_u32(bss[NL80211_BSS_SEEN_MS_AGO]);
1042 printf("\tlast seen: %d ms ago\n", age);
1043 }
1044
1045 if (bss[NL80211_BSS_INFORMATION_ELEMENTS] && show--) {
1046 if (bss[NL80211_BSS_BEACON_IES])
1047 printf("\tInformation elements from Probe Response "
1048 "frame:\n");
1049 print_ies(nla_data(bss[NL80211_BSS_INFORMATION_ELEMENTS]),
1050 nla_len(bss[NL80211_BSS_INFORMATION_ELEMENTS]),
1051 params->unknown, params->type);
1052 }
1053 if (bss[NL80211_BSS_BEACON_IES] && show--) {
1054 printf("\tInformation elements from Beacon frame:\n");
1055 print_ies(nla_data(bss[NL80211_BSS_BEACON_IES]),
1056 nla_len(bss[NL80211_BSS_BEACON_IES]),
1057 params->unknown, params->type);
1058 }
1059
1060 return NL_SKIP;
1061 }
1062
1063 static struct scan_params scan_params;
1064
1065 static int handle_scan_dump(struct nl80211_state *state,
1066 struct nl_cb *cb,
1067 struct nl_msg *msg,
1068 int argc, char **argv)
1069 {
1070 if (argc > 1)
1071 return 1;
1072
1073 memset(&scan_params, 0, sizeof(scan_params));
1074
1075 if (argc == 1 && !strcmp(argv[0], "-u"))
1076 scan_params.unknown = true;
1077 else if (argc == 1 && !strcmp(argv[0], "-b"))
1078 scan_params.show_both_ie_sets = true;
1079
1080 scan_params.type = PRINT_SCAN;
1081
1082 nl_cb_set(cb, NL_CB_VALID, NL_CB_CUSTOM, print_bss_handler,
1083 &scan_params);
1084 return 0;
1085 }
1086
1087 static int handle_scan_combined(struct nl80211_state *state,
1088 struct nl_cb *cb,
1089 struct nl_msg *msg,
1090 int argc, char **argv)
1091 {
1092 char **trig_argv;
1093 static char *dump_argv[] = {
1094 NULL,
1095 "scan",
1096 "dump",
1097 NULL,
1098 };
1099 static const __u32 cmds[] = {
1100 NL80211_CMD_NEW_SCAN_RESULTS,
1101 NL80211_CMD_SCAN_ABORTED,
1102 };
1103 int trig_argc, dump_argc, err;
1104
1105 if (argc >= 3 && !strcmp(argv[2], "-u")) {
1106 dump_argc = 4;
1107 dump_argv[3] = "-u";
1108 } else if (argc >= 3 && !strcmp(argv[2], "-b")) {
1109 dump_argc = 4;
1110 dump_argv[3] = "-b";
1111 } else
1112 dump_argc = 3;
1113
1114 trig_argc = 3 + (argc - 2) + (3 - dump_argc);
1115 trig_argv = calloc(trig_argc, sizeof(*trig_argv));
1116 if (!trig_argv)
1117 return -ENOMEM;
1118 trig_argv[0] = argv[0];
1119 trig_argv[1] = "scan";
1120 trig_argv[2] = "trigger";
1121 int i;
1122 for (i = 0; i < argc - 2 - (dump_argc - 3); i++)
1123 trig_argv[i + 3] = argv[i + 2 + (dump_argc - 3)];
1124 err = handle_cmd(state, II_NETDEV, trig_argc, trig_argv);
1125 free(trig_argv);
1126 if (err)
1127 return err;
1128
1129 /*
1130 * WARNING: DO NOT COPY THIS CODE INTO YOUR APPLICATION
1131 *
1132 * This code has a bug, which requires creating a separate
1133 * nl80211 socket to fix:
1134 * It is possible for a NL80211_CMD_NEW_SCAN_RESULTS or
1135 * NL80211_CMD_SCAN_ABORTED message to be sent by the kernel
1136 * before (!) we listen to it, because we only start listening
1137 * after we send our scan request.
1138 *
1139 * Doing it the other way around has a race condition as well,
1140 * if you first open the events socket you may get a notification
1141 * for a previous scan.
1142 *
1143 * The only proper way to fix this would be to listen to events
1144 * before sending the command, and for the kernel to send the
1145 * scan request along with the event, so that you can match up
1146 * whether the scan you requested was finished or aborted (this
1147 * may result in processing a scan that another application
1148 * requested, but that doesn't seem to be a problem).
1149 *
1150 * Alas, the kernel doesn't do that (yet).
1151 */
1152
1153 if (listen_events(state, ARRAY_SIZE(cmds), cmds) ==
1154 NL80211_CMD_SCAN_ABORTED) {
1155 printf("scan aborted!\n");
1156 return 0;
1157 }
1158
1159 dump_argv[0] = argv[0];
1160 return handle_cmd(state, II_NETDEV, dump_argc, dump_argv);
1161 }
1162 TOPLEVEL(scan, "[-u] [freq <freq>*] [ies <hex as 00:11:..>] [ssid <ssid>*|passive]", 0, 0,
1163 CIB_NETDEV, handle_scan_combined,
1164 "Scan on the given frequencies and probe for the given SSIDs\n"
1165 "(or wildcard if not given) unless passive scanning is requested.\n"
1166 "If -u is specified print unknown data in the scan results.\n"
1167 "Specified (vendor) IEs must be well-formed.");
1168 COMMAND(scan, dump, "[-u]",
1169 NL80211_CMD_GET_SCAN, NLM_F_DUMP, CIB_NETDEV, handle_scan_dump,
1170 "Dump the current scan results. If -u is specified, print unknown\n"
1171 "data in scan results.");
1172 COMMAND(scan, trigger, "[freq <freq>*] [ies <hex as 00:11:..>] [ssid <ssid>*|passive]",
1173 NL80211_CMD_TRIGGER_SCAN, 0, CIB_NETDEV, handle_scan,
1174 "Trigger a scan on the given frequencies with probing for the given\n"
1175 "SSIDs (or wildcard if not given) unless passive scanning is requested.");
Mirror git://git.kernel.org/pub/scm/linux/kernel/git/jberg/iw.git