return 0;
        }
 
+       if (GET_BSS_ROLE(priv) == MWIFIEX_BSS_ROLE_UAP) {
+               if (ieee80211_is_auth(mgmt->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "auth: send auth to %pM\n", mgmt->da);
+               if (ieee80211_is_deauth(mgmt->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "auth: send deauth to %pM\n", mgmt->da);
+               if (ieee80211_is_disassoc(mgmt->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "assoc: send disassoc to %pM\n", mgmt->da);
+               if (ieee80211_is_assoc_resp(mgmt->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "assoc: send assoc resp to %pM\n",
+                                   mgmt->da);
+               if (ieee80211_is_reassoc_resp(mgmt->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "assoc: send reassoc resp to %pM\n",
+                                   mgmt->da);
+       }
+
        pkt_len = len + ETH_ALEN;
        skb = dev_alloc_skb(MWIFIEX_MIN_DATA_HEADER_LEN +
                            MWIFIEX_MGMT_FRAME_HEADER_SIZE +
 
        wiphy_dbg(wiphy, "set default mgmt key, key index=%d\n", key_index);
 
+       if (priv->adapter->host_mlme_enabled)
+               return 0;
+
        memset(&encrypt_key, 0, sizeof(struct mwifiex_ds_encrypt_key));
        encrypt_key.key_len = WLAN_KEY_LEN_CCMP;
        encrypt_key.key_index = key_index;
        }
 }
 
+static int
+mwifiex_cfg80211_uap_add_station(struct mwifiex_private *priv, const u8 *mac,
+                                struct station_parameters *params)
+{
+       struct mwifiex_sta_info add_sta;
+       int ret;
+
+       memcpy(add_sta.peer_mac, mac, ETH_ALEN);
+       add_sta.params = params;
+
+       ret = mwifiex_send_cmd(priv, HostCmd_CMD_ADD_NEW_STATION,
+                              HostCmd_ACT_ADD_STA, 0, (void *)&add_sta, true);
+
+       if (!ret) {
+               struct station_info *sinfo;
+
+               sinfo = kzalloc(sizeof(*sinfo), GFP_KERNEL);
+               if (!sinfo)
+                       return -ENOMEM;
+
+               cfg80211_new_sta(priv->netdev, mac, sinfo, GFP_KERNEL);
+               kfree(sinfo);
+       }
+
+       return ret;
+}
+
 static int
 mwifiex_cfg80211_add_station(struct wiphy *wiphy, struct net_device *dev,
                             const u8 *mac, struct station_parameters *params)
 {
        struct mwifiex_private *priv = mwifiex_netdev_get_priv(dev);
 
+       if (priv->adapter->host_mlme_enabled &&
+           (GET_BSS_ROLE(priv) == MWIFIEX_BSS_ROLE_UAP))
+               return mwifiex_cfg80211_uap_add_station(priv, mac, params);
+
        if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
                return -EOPNOTSUPP;
 
        int ret;
        struct mwifiex_private *priv = mwifiex_netdev_get_priv(dev);
 
+       if (priv->adapter->host_mlme_enabled &&
+           (GET_BSS_ROLE(priv) == MWIFIEX_BSS_ROLE_UAP))
+               return 0;
+
        /* we support change_station handler only for TDLS peers*/
        if (!(params->sta_flags_set & BIT(NL80211_STA_FLAG_TDLS_PEER)))
                return -EOPNOTSUPP;
        }
        wiphy->max_scan_ssids = MWIFIEX_MAX_SSID_LIST_LENGTH;
        wiphy->max_scan_ie_len = MWIFIEX_MAX_VSIE_LEN;
-       wiphy->mgmt_stypes = mwifiex_mgmt_stypes;
+       if (adapter->host_mlme_enabled) {
+               memcpy(adapter->mwifiex_mgmt_stypes,
+                      mwifiex_mgmt_stypes,
+                      NUM_NL80211_IFTYPES *
+                      sizeof(struct ieee80211_txrx_stypes));
+
+               adapter->mwifiex_mgmt_stypes[NL80211_IFTYPE_AP].tx = 0xffff;
+               adapter->mwifiex_mgmt_stypes[NL80211_IFTYPE_AP].rx =
+                       BIT(IEEE80211_STYPE_ASSOC_REQ >> 4) |
+                       BIT(IEEE80211_STYPE_REASSOC_REQ >> 4) |
+                       BIT(IEEE80211_STYPE_PROBE_REQ >> 4) |
+                       BIT(IEEE80211_STYPE_DISASSOC >> 4) |
+                       BIT(IEEE80211_STYPE_AUTH >> 4) |
+                       BIT(IEEE80211_STYPE_DEAUTH >> 4) |
+                       BIT(IEEE80211_STYPE_ACTION >> 4);
+               wiphy->mgmt_stypes = adapter->mwifiex_mgmt_stypes;
+       } else {
+               wiphy->mgmt_stypes = mwifiex_mgmt_stypes;
+       }
        wiphy->max_remain_on_channel_duration = 5000;
        wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION) |
                                 BIT(NL80211_IFTYPE_P2P_CLIENT) |
 
        ether_addr_copy(wiphy->perm_addr, adapter->perm_addr);
        wiphy->signal_type = CFG80211_SIGNAL_TYPE_MBM;
-       wiphy->flags |= WIPHY_FLAG_HAVE_AP_SME |
-                       WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD |
+       wiphy->flags |= WIPHY_FLAG_AP_PROBE_RESP_OFFLOAD |
                        WIPHY_FLAG_AP_UAPSD |
                        WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL |
                        WIPHY_FLAG_HAS_CHANNEL_SWITCH |
                        WIPHY_FLAG_NETNS_OK |
                        WIPHY_FLAG_PS_ON_BY_DEFAULT;
 
+       if (adapter->host_mlme_enabled)
+               wiphy->flags |= WIPHY_FLAG_REPORTS_OBSS;
+       else
+               wiphy->flags |= WIPHY_FLAG_HAVE_AP_SME;
+
        if (ISSUPP_TDLS_ENABLED(adapter->fw_cap_info))
                wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS |
                                WIPHY_FLAG_TDLS_EXTERNAL_SETUP;
 
                case HostCmd_CMD_UAP_STA_DEAUTH:
                case HOST_CMD_APCMD_SYS_RESET:
                case HOST_CMD_APCMD_STA_LIST:
+               case HostCmd_CMD_CHAN_REPORT_REQUEST:
+               case HostCmd_CMD_ADD_NEW_STATION:
                        ret = mwifiex_uap_prepare_cmd(priv, cmd_no, cmd_action,
                                                      cmd_oid, data_buf,
                                                      cmd_ptr);
 
 #define TLV_TYPE_CHAN_ATTR_CFG      (PROPRIETARY_TLV_BASE_ID + 237)
 #define TLV_TYPE_MAX_CONN           (PROPRIETARY_TLV_BASE_ID + 279)
 #define TLV_TYPE_HOST_MLME          (PROPRIETARY_TLV_BASE_ID + 307)
+#define TLV_TYPE_UAP_STA_FLAGS      (PROPRIETARY_TLV_BASE_ID + 313)
 #define TLV_TYPE_SAE_PWE_MODE       (PROPRIETARY_TLV_BASE_ID + 339)
 
 #define MWIFIEX_TX_DATA_BUF_SIZE_2K        2048
 #define HostCmd_CMD_STA_CONFIGURE                    0x023f
 #define HostCmd_CMD_CHAN_REGION_CFG                  0x0242
 #define HostCmd_CMD_PACKET_AGGR_CTRL                 0x0251
+#define HostCmd_CMD_ADD_NEW_STATION                  0x025f
 
 #define PROTOCOL_NO_SECURITY        0x01
 #define PROTOCOL_STATIC_WEP         0x02
 #define KEY_MGMT_NONE               0x04
 #define KEY_MGMT_PSK                0x02
 #define KEY_MGMT_EAP                0x01
+#define KEY_MGMT_SAE                0x400
 #define CIPHER_TKIP                 0x04
 #define CIPHER_AES_CCMP             0x08
 #define VALID_CIPHER_BITMAP         0x0c
 #define HostCmd_ACT_GET_TX              0x0008
 #define HostCmd_ACT_GET_BOTH            0x000c
 
+#define HostCmd_ACT_REMOVE_STA          0x0
+#define HostCmd_ACT_ADD_STA             0x1
+
 #define RF_ANTENNA_AUTO                 0xFFFF
 
 #define HostCmd_SET_SEQ_NO_BSS_INFO(seq, num, type) \
        u8 tlv_buffer[];
 } __packed;
 
+struct mwifiex_ie_types_sta_flag {
+       struct mwifiex_ie_types_header header;
+       __le32 sta_flags;
+} __packed;
+
+struct host_cmd_ds_add_station {
+       __le16 action;
+       __le16 aid;
+       u8 peer_mac[ETH_ALEN];
+       __le32 listen_interval;
+       __le16 cap_info;
+       u8 tlv[];
+} __packed;
+
 struct host_cmd_ds_command {
        __le16 command;
        __le16 size;
                struct host_cmd_ds_chan_region_cfg reg_cfg;
                struct host_cmd_ds_pkt_aggr_ctrl pkt_aggr_ctrl;
                struct host_cmd_ds_sta_configure sta_cfg;
+               struct host_cmd_ds_add_station sta_info;
        } params;
 } __packed;
 
 
        u8 bssid[ETH_ALEN];
 };
 
+struct mwifiex_sta_info {
+       u8 peer_mac[ETH_ALEN];
+       struct station_parameters *params;
+};
+
 #define MAX_NUM_TID     8
 
 #define MAX_RX_WINSIZE  64
 
 
        bool ext_scan;
        bool host_mlme_enabled;
+       struct ieee80211_txrx_stypes mwifiex_mgmt_stypes[NUM_NL80211_IFTYPES];
        u8 fw_api_ver;
        u8 key_api_major_ver, key_api_minor_ver;
        u8 max_p2p_conn, max_sta_conn;
 
                break;
        case HostCmd_CMD_UAP_STA_DEAUTH:
                break;
+       case HostCmd_CMD_ADD_NEW_STATION:
+               break;
        case HOST_CMD_APCMD_SYS_RESET:
                break;
        case HostCmd_CMD_MEF_CFG:
 
                                bss_config->key_mgmt = KEY_MGMT_PSK;
                        }
                        break;
+               case WLAN_AKM_SUITE_SAE:
+                       bss_config->protocol = PROTOCOL_WPA2;
+                       bss_config->key_mgmt = KEY_MGMT_SAE;
+                       break;
                default:
                        break;
                }
        return 0;
 }
 
+/* This function prepares AP start up command with or without host MLME
+ */
+static void mwifiex_cmd_uap_bss_start(struct mwifiex_private *priv,
+                                    struct host_cmd_ds_command *cmd)
+{
+       struct mwifiex_ie_types_host_mlme *tlv;
+       int size;
+
+       cmd->command = cpu_to_le16(HostCmd_CMD_UAP_BSS_START);
+       size = S_DS_GEN;
+
+       if (priv->adapter->host_mlme_enabled) {
+               tlv = (struct mwifiex_ie_types_host_mlme *)((u8 *)cmd + size);
+               tlv->header.type = cpu_to_le16(TLV_TYPE_HOST_MLME);
+               tlv->header.len = cpu_to_le16(sizeof(tlv->host_mlme));
+               tlv->host_mlme = 1;
+               size += sizeof(struct mwifiex_ie_types_host_mlme);
+       }
+
+       cmd->size = cpu_to_le16(size);
+}
+
 /* This function prepares AP specific deauth command with mac supplied in
  * function parameter.
  */
        return 0;
 }
 
+/* This function prepares AP specific add station command.
+ */
+static int mwifiex_cmd_uap_add_station(struct mwifiex_private *priv,
+                                      struct host_cmd_ds_command *cmd,
+                                      u16 cmd_action, void *data_buf)
+{
+       struct host_cmd_ds_add_station *new_sta = &cmd->params.sta_info;
+       struct mwifiex_sta_info *add_sta = (struct mwifiex_sta_info *)data_buf;
+       struct station_parameters *params = add_sta->params;
+       struct mwifiex_sta_node *sta_ptr;
+       u8 *pos;
+       u8 qos_capa;
+       u16 header_len = sizeof(struct mwifiex_ie_types_header);
+       u16 tlv_len;
+       int size;
+       struct mwifiex_ie_types_data *tlv;
+       struct mwifiex_ie_types_sta_flag *sta_flag;
+       int i;
+
+       cmd->command = cpu_to_le16(HostCmd_CMD_ADD_NEW_STATION);
+       new_sta->action = cpu_to_le16(cmd_action);
+       size = sizeof(struct host_cmd_ds_add_station) + S_DS_GEN;
+
+       if (cmd_action == HostCmd_ACT_ADD_STA)
+               sta_ptr = mwifiex_add_sta_entry(priv, add_sta->peer_mac);
+       else
+               sta_ptr = mwifiex_get_sta_entry(priv, add_sta->peer_mac);
+
+       if (!sta_ptr)
+               return -1;
+
+       memcpy(new_sta->peer_mac, add_sta->peer_mac, ETH_ALEN);
+
+       if (cmd_action == HostCmd_ACT_REMOVE_STA) {
+               cmd->size = cpu_to_le16(size);
+               return 0;
+       }
+
+       new_sta->aid = cpu_to_le16(params->aid);
+       new_sta->listen_interval = cpu_to_le32(params->listen_interval);
+       new_sta->cap_info = cpu_to_le16(params->capability);
+
+       pos = new_sta->tlv;
+
+       if (params->sta_flags_set & NL80211_STA_FLAG_WME)
+               sta_ptr->is_wmm_enabled = 1;
+       sta_flag = (struct mwifiex_ie_types_sta_flag *)pos;
+       sta_flag->header.type = cpu_to_le16(TLV_TYPE_UAP_STA_FLAGS);
+       sta_flag->header.len = cpu_to_le16(sizeof(__le32));
+       sta_flag->sta_flags = cpu_to_le32(params->sta_flags_set);
+       pos += sizeof(struct mwifiex_ie_types_sta_flag);
+       size += sizeof(struct mwifiex_ie_types_sta_flag);
+
+       if (params->ext_capab_len) {
+               tlv = (struct mwifiex_ie_types_data *)pos;
+               tlv->header.type = cpu_to_le16(WLAN_EID_EXT_CAPABILITY);
+               tlv_len = params->ext_capab_len;
+               tlv->header.len = cpu_to_le16(tlv_len);
+               memcpy(tlv->data, params->ext_capab, tlv_len);
+               pos += (header_len + tlv_len);
+               size += (header_len + tlv_len);
+       }
+
+       if (params->link_sta_params.supported_rates_len) {
+               tlv = (struct mwifiex_ie_types_data *)pos;
+               tlv->header.type = cpu_to_le16(WLAN_EID_SUPP_RATES);
+               tlv_len = params->link_sta_params.supported_rates_len;
+               tlv->header.len = cpu_to_le16(tlv_len);
+               memcpy(tlv->data,
+                      params->link_sta_params.supported_rates, tlv_len);
+               pos += (header_len + tlv_len);
+               size += (header_len + tlv_len);
+       }
+
+       if (params->uapsd_queues || params->max_sp) {
+               tlv = (struct mwifiex_ie_types_data *)pos;
+               tlv->header.type = cpu_to_le16(WLAN_EID_QOS_CAPA);
+               tlv_len = sizeof(qos_capa);
+               tlv->header.len = cpu_to_le16(tlv_len);
+               qos_capa = params->uapsd_queues | (params->max_sp << 5);
+               memcpy(tlv->data, &qos_capa, tlv_len);
+               pos += (header_len + tlv_len);
+               size += (header_len + tlv_len);
+               sta_ptr->is_wmm_enabled = 1;
+       }
+
+       if (params->link_sta_params.ht_capa) {
+               tlv = (struct mwifiex_ie_types_data *)pos;
+               tlv->header.type = cpu_to_le16(WLAN_EID_HT_CAPABILITY);
+               tlv_len = sizeof(struct ieee80211_ht_cap);
+               tlv->header.len = cpu_to_le16(tlv_len);
+               memcpy(tlv->data, params->link_sta_params.ht_capa, tlv_len);
+               pos += (header_len + tlv_len);
+               size += (header_len + tlv_len);
+               sta_ptr->is_11n_enabled = 1;
+               sta_ptr->max_amsdu =
+                       le16_to_cpu(params->link_sta_params.ht_capa->cap_info) &
+                       IEEE80211_HT_CAP_MAX_AMSDU ?
+                       MWIFIEX_TX_DATA_BUF_SIZE_8K :
+                       MWIFIEX_TX_DATA_BUF_SIZE_4K;
+       }
+
+       if (params->link_sta_params.vht_capa) {
+               tlv = (struct mwifiex_ie_types_data *)pos;
+               tlv->header.type = cpu_to_le16(WLAN_EID_VHT_CAPABILITY);
+               tlv_len = sizeof(struct ieee80211_vht_cap);
+               tlv->header.len = cpu_to_le16(tlv_len);
+               memcpy(tlv->data, params->link_sta_params.vht_capa, tlv_len);
+               pos += (header_len + tlv_len);
+               size += (header_len + tlv_len);
+               sta_ptr->is_11ac_enabled = 1;
+       }
+
+       if (params->link_sta_params.opmode_notif_used) {
+               tlv = (struct mwifiex_ie_types_data *)pos;
+               tlv->header.type = cpu_to_le16(WLAN_EID_OPMODE_NOTIF);
+               tlv_len = sizeof(u8);
+               tlv->header.len = cpu_to_le16(tlv_len);
+               memcpy(tlv->data, ¶ms->link_sta_params.opmode_notif,
+                      tlv_len);
+               pos += (header_len + tlv_len);
+               size += (header_len + tlv_len);
+       }
+
+       for (i = 0; i < MAX_NUM_TID; i++) {
+               if (sta_ptr->is_11n_enabled)
+                       sta_ptr->ampdu_sta[i] =
+                                     priv->aggr_prio_tbl[i].ampdu_user;
+               else
+                       sta_ptr->ampdu_sta[i] = BA_STREAM_NOT_ALLOWED;
+       }
+
+       memset(sta_ptr->rx_seq, 0xff, sizeof(sta_ptr->rx_seq));
+       cmd->size = cpu_to_le16(size);
+
+       return 0;
+}
+
 /* This function prepares the AP specific commands before sending them
  * to the firmware.
  * This is a generic function which calls specific command preparation
                        return -1;
                break;
        case HostCmd_CMD_UAP_BSS_START:
+               mwifiex_cmd_uap_bss_start(priv, cmd);
+               break;
        case HostCmd_CMD_UAP_BSS_STOP:
        case HOST_CMD_APCMD_SYS_RESET:
        case HOST_CMD_APCMD_STA_LIST:
                                                          data_buf))
                        return -1;
                break;
+       case HostCmd_CMD_ADD_NEW_STATION:
+               if (mwifiex_cmd_uap_add_station(priv, cmd, cmd_action,
+                                               data_buf))
+                       return -1;
+               break;
        default:
                mwifiex_dbg(priv->adapter, ERROR,
                            "PREP_CMD: unknown cmd %#x\n", cmd_no);
 
                cfg80211_rx_mlme_mgmt(priv->netdev, skb->data, pkt_len);
        }
 
+       if (priv->adapter->host_mlme_enabled &&
+           (GET_BSS_ROLE(priv) == MWIFIEX_BSS_ROLE_UAP)) {
+               if (ieee80211_is_auth(ieee_hdr->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "auth: receive auth from %pM\n",
+                                   ieee_hdr->addr2);
+               if (ieee80211_is_deauth(ieee_hdr->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "auth: receive deauth from %pM\n",
+                                   ieee_hdr->addr2);
+               if (ieee80211_is_disassoc(ieee_hdr->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "assoc: receive disassoc from %pM\n",
+                                   ieee_hdr->addr2);
+               if (ieee80211_is_assoc_req(ieee_hdr->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "assoc: receive assoc req from %pM\n",
+                                   ieee_hdr->addr2);
+               if (ieee80211_is_reassoc_req(ieee_hdr->frame_control))
+                       mwifiex_dbg(priv->adapter, MSG,
+                                   "assoc: receive reassoc req from %pM\n",
+                                   ieee_hdr->addr2);
+       }
+
        cfg80211_rx_mgmt(&priv->wdev, priv->roc_cfg.chan.center_freq,
                         CAL_RSSI(rx_pd->snr, rx_pd->nf), skb->data, pkt_len,
                         0);