2 * Copyright (c) 2010 Broadcom Corporation
4 * Permission to use, copy, modify, and/or distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
11 * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
13 * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
14 * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 /* Toplevel file. Relies on dhd_linux.c to send commands to the dongle. */
19 #include <linux/kernel.h>
20 #include <linux/etherdevice.h>
21 #include <linux/module.h>
22 #include <linux/vmalloc.h>
23 #include <net/cfg80211.h>
24 #include <net/netlink.h>
26 #include <brcmu_utils.h>
28 #include <brcmu_wifi.h>
31 #include "tracepoint.h"
32 #include "fwil_types.h"
44 #define BRCMF_SCAN_IE_LEN_MAX 2048
46 #define WPA_OUI "\x00\x50\xF2" /* WPA OUI */
47 #define WPA_OUI_TYPE 1
48 #define RSN_OUI "\x00\x0F\xAC" /* RSN OUI */
49 #define WME_OUI_TYPE 2
50 #define WPS_OUI_TYPE 4
52 #define VS_IE_FIXED_HDR_LEN 6
53 #define WPA_IE_VERSION_LEN 2
54 #define WPA_IE_MIN_OUI_LEN 4
55 #define WPA_IE_SUITE_COUNT_LEN 2
57 #define WPA_CIPHER_NONE 0 /* None */
58 #define WPA_CIPHER_WEP_40 1 /* WEP (40-bit) */
59 #define WPA_CIPHER_TKIP 2 /* TKIP: default for WPA */
60 #define WPA_CIPHER_AES_CCM 4 /* AES (CCM) */
61 #define WPA_CIPHER_WEP_104 5 /* WEP (104-bit) */
63 #define RSN_AKM_NONE 0 /* None (IBSS) */
64 #define RSN_AKM_UNSPECIFIED 1 /* Over 802.1x */
65 #define RSN_AKM_PSK 2 /* Pre-shared Key */
66 #define RSN_AKM_SHA256_1X 5 /* SHA256, 802.1X */
67 #define RSN_AKM_SHA256_PSK 6 /* SHA256, Pre-shared Key */
68 #define RSN_CAP_LEN 2 /* Length of RSN capabilities */
69 #define RSN_CAP_PTK_REPLAY_CNTR_MASK (BIT(2) | BIT(3))
70 #define RSN_CAP_MFPR_MASK BIT(6)
71 #define RSN_CAP_MFPC_MASK BIT(7)
72 #define RSN_PMKID_COUNT_LEN 2
74 #define VNDR_IE_CMD_LEN 4 /* length of the set command
75 * string :"add", "del" (+ NUL)
77 #define VNDR_IE_COUNT_OFFSET 4
78 #define VNDR_IE_PKTFLAG_OFFSET 8
79 #define VNDR_IE_VSIE_OFFSET 12
80 #define VNDR_IE_HDR_SIZE 12
81 #define VNDR_IE_PARSE_LIMIT 5
83 #define DOT11_MGMT_HDR_LEN 24 /* d11 management header len */
84 #define DOT11_BCN_PRB_FIXED_LEN 12 /* beacon/probe fixed length */
86 #define BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS 320
87 #define BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS 400
88 #define BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS 20
90 #define BRCMF_SCAN_CHANNEL_TIME 40
91 #define BRCMF_SCAN_UNASSOC_TIME 40
92 #define BRCMF_SCAN_PASSIVE_TIME 120
94 #define BRCMF_ND_INFO_TIMEOUT msecs_to_jiffies(2000)
96 #define BRCMF_ASSOC_PARAMS_FIXED_SIZE \
97 (sizeof(struct brcmf_assoc_params_le) - sizeof(u16))
99 static bool check_vif_up(struct brcmf_cfg80211_vif *vif)
101 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state)) {
102 brcmf_dbg(INFO, "device is not ready : status (%lu)\n",
109 #define RATE_TO_BASE100KBPS(rate) (((rate) * 10) / 2)
110 #define RATETAB_ENT(_rateid, _flags) \
112 .bitrate = RATE_TO_BASE100KBPS(_rateid), \
113 .hw_value = (_rateid), \
117 static struct ieee80211_rate __wl_rates[] = {
118 RATETAB_ENT(BRCM_RATE_1M, 0),
119 RATETAB_ENT(BRCM_RATE_2M, IEEE80211_RATE_SHORT_PREAMBLE),
120 RATETAB_ENT(BRCM_RATE_5M5, IEEE80211_RATE_SHORT_PREAMBLE),
121 RATETAB_ENT(BRCM_RATE_11M, IEEE80211_RATE_SHORT_PREAMBLE),
122 RATETAB_ENT(BRCM_RATE_6M, 0),
123 RATETAB_ENT(BRCM_RATE_9M, 0),
124 RATETAB_ENT(BRCM_RATE_12M, 0),
125 RATETAB_ENT(BRCM_RATE_18M, 0),
126 RATETAB_ENT(BRCM_RATE_24M, 0),
127 RATETAB_ENT(BRCM_RATE_36M, 0),
128 RATETAB_ENT(BRCM_RATE_48M, 0),
129 RATETAB_ENT(BRCM_RATE_54M, 0),
132 #define wl_g_rates (__wl_rates + 0)
133 #define wl_g_rates_size ARRAY_SIZE(__wl_rates)
134 #define wl_a_rates (__wl_rates + 4)
135 #define wl_a_rates_size (wl_g_rates_size - 4)
137 #define CHAN2G(_channel, _freq) { \
138 .band = NL80211_BAND_2GHZ, \
139 .center_freq = (_freq), \
140 .hw_value = (_channel), \
141 .max_antenna_gain = 0, \
145 #define CHAN5G(_channel) { \
146 .band = NL80211_BAND_5GHZ, \
147 .center_freq = 5000 + (5 * (_channel)), \
148 .hw_value = (_channel), \
149 .max_antenna_gain = 0, \
153 static struct ieee80211_channel __wl_2ghz_channels[] = {
154 CHAN2G(1, 2412), CHAN2G(2, 2417), CHAN2G(3, 2422), CHAN2G(4, 2427),
155 CHAN2G(5, 2432), CHAN2G(6, 2437), CHAN2G(7, 2442), CHAN2G(8, 2447),
156 CHAN2G(9, 2452), CHAN2G(10, 2457), CHAN2G(11, 2462), CHAN2G(12, 2467),
157 CHAN2G(13, 2472), CHAN2G(14, 2484)
160 static struct ieee80211_channel __wl_5ghz_channels[] = {
161 CHAN5G(34), CHAN5G(36), CHAN5G(38), CHAN5G(40), CHAN5G(42),
162 CHAN5G(44), CHAN5G(46), CHAN5G(48), CHAN5G(52), CHAN5G(56),
163 CHAN5G(60), CHAN5G(64), CHAN5G(100), CHAN5G(104), CHAN5G(108),
164 CHAN5G(112), CHAN5G(116), CHAN5G(120), CHAN5G(124), CHAN5G(128),
165 CHAN5G(132), CHAN5G(136), CHAN5G(140), CHAN5G(144), CHAN5G(149),
166 CHAN5G(153), CHAN5G(157), CHAN5G(161), CHAN5G(165)
169 /* Band templates duplicated per wiphy. The channel info
170 * above is added to the band during setup.
172 static const struct ieee80211_supported_band __wl_band_2ghz = {
173 .band = NL80211_BAND_2GHZ,
174 .bitrates = wl_g_rates,
175 .n_bitrates = wl_g_rates_size,
178 static const struct ieee80211_supported_band __wl_band_5ghz = {
179 .band = NL80211_BAND_5GHZ,
180 .bitrates = wl_a_rates,
181 .n_bitrates = wl_a_rates_size,
184 /* This is to override regulatory domains defined in cfg80211 module (reg.c)
185 * By default world regulatory domain defined in reg.c puts the flags
186 * NL80211_RRF_NO_IR for 5GHz channels (for * 36..48 and 149..165).
187 * With respect to these flags, wpa_supplicant doesn't * start p2p
188 * operations on 5GHz channels. All the changes in world regulatory
189 * domain are to be done here.
191 static const struct ieee80211_regdomain brcmf_regdom = {
195 /* IEEE 802.11b/g, channels 1..11 */
196 REG_RULE(2412-10, 2472+10, 40, 6, 20, 0),
198 /* IEEE 802.11 channel 14 - Only JP enables
199 * this and for 802.11b only
201 REG_RULE(2484-10, 2484+10, 20, 6, 20, 0),
202 /* IEEE 802.11a, channel 36..64 */
203 REG_RULE(5150-10, 5350+10, 80, 6, 20, 0),
204 /* IEEE 802.11a, channel 100..165 */
205 REG_RULE(5470-10, 5850+10, 80, 6, 20, 0), }
208 /* Note: brcmf_cipher_suites is an array of int defining which cipher suites
209 * are supported. A pointer to this array and the number of entries is passed
210 * on to upper layers. AES_CMAC defines whether or not the driver supports MFP.
211 * So the cipher suite AES_CMAC has to be the last one in the array, and when
212 * device does not support MFP then the number of suites will be decreased by 1
214 static const u32 brcmf_cipher_suites[] = {
215 WLAN_CIPHER_SUITE_WEP40,
216 WLAN_CIPHER_SUITE_WEP104,
217 WLAN_CIPHER_SUITE_TKIP,
218 WLAN_CIPHER_SUITE_CCMP,
219 /* Keep as last entry: */
220 WLAN_CIPHER_SUITE_AES_CMAC
223 /* Vendor specific ie. id = 221, oui and type defines exact ie */
224 struct brcmf_vs_tlv {
231 struct parsed_vndr_ie_info {
233 u32 ie_len; /* total length including id & length field */
234 struct brcmf_vs_tlv vndrie;
237 struct parsed_vndr_ies {
239 struct parsed_vndr_ie_info ie_info[VNDR_IE_PARSE_LIMIT];
242 static u8 nl80211_band_to_fwil(enum nl80211_band band)
245 case NL80211_BAND_2GHZ:
247 case NL80211_BAND_5GHZ:
256 static u16 chandef_to_chanspec(struct brcmu_d11inf *d11inf,
257 struct cfg80211_chan_def *ch)
259 struct brcmu_chan ch_inf;
262 brcmf_dbg(TRACE, "chandef: control %d center %d width %d\n",
263 ch->chan->center_freq, ch->center_freq1, ch->width);
264 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq1);
265 primary_offset = ch->chan->center_freq - ch->center_freq1;
267 case NL80211_CHAN_WIDTH_20:
268 case NL80211_CHAN_WIDTH_20_NOHT:
269 ch_inf.bw = BRCMU_CHAN_BW_20;
270 WARN_ON(primary_offset != 0);
272 case NL80211_CHAN_WIDTH_40:
273 ch_inf.bw = BRCMU_CHAN_BW_40;
274 if (primary_offset > 0)
275 ch_inf.sb = BRCMU_CHAN_SB_U;
277 ch_inf.sb = BRCMU_CHAN_SB_L;
279 case NL80211_CHAN_WIDTH_80:
280 ch_inf.bw = BRCMU_CHAN_BW_80;
281 if (primary_offset == -30)
282 ch_inf.sb = BRCMU_CHAN_SB_LL;
283 else if (primary_offset == -10)
284 ch_inf.sb = BRCMU_CHAN_SB_LU;
285 else if (primary_offset == 10)
286 ch_inf.sb = BRCMU_CHAN_SB_UL;
288 ch_inf.sb = BRCMU_CHAN_SB_UU;
290 case NL80211_CHAN_WIDTH_80P80:
291 case NL80211_CHAN_WIDTH_160:
292 case NL80211_CHAN_WIDTH_5:
293 case NL80211_CHAN_WIDTH_10:
297 switch (ch->chan->band) {
298 case NL80211_BAND_2GHZ:
299 ch_inf.band = BRCMU_CHAN_BAND_2G;
301 case NL80211_BAND_5GHZ:
302 ch_inf.band = BRCMU_CHAN_BAND_5G;
304 case NL80211_BAND_60GHZ:
308 d11inf->encchspec(&ch_inf);
310 return ch_inf.chspec;
313 u16 channel_to_chanspec(struct brcmu_d11inf *d11inf,
314 struct ieee80211_channel *ch)
316 struct brcmu_chan ch_inf;
318 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq);
319 ch_inf.bw = BRCMU_CHAN_BW_20;
320 d11inf->encchspec(&ch_inf);
322 return ch_inf.chspec;
325 /* Traverse a string of 1-byte tag/1-byte length/variable-length value
326 * triples, returning a pointer to the substring whose first element
329 static const struct brcmf_tlv *
330 brcmf_parse_tlvs(const void *buf, int buflen, uint key)
332 const struct brcmf_tlv *elt = buf;
335 /* find tagged parameter */
336 while (totlen >= TLV_HDR_LEN) {
339 /* validate remaining totlen */
340 if ((elt->id == key) && (totlen >= (len + TLV_HDR_LEN)))
343 elt = (struct brcmf_tlv *)((u8 *)elt + (len + TLV_HDR_LEN));
344 totlen -= (len + TLV_HDR_LEN);
350 /* Is any of the tlvs the expected entry? If
351 * not update the tlvs buffer pointer/length.
354 brcmf_tlv_has_ie(const u8 *ie, const u8 **tlvs, u32 *tlvs_len,
355 const u8 *oui, u32 oui_len, u8 type)
357 /* If the contents match the OUI and the type */
358 if (ie[TLV_LEN_OFF] >= oui_len + 1 &&
359 !memcmp(&ie[TLV_BODY_OFF], oui, oui_len) &&
360 type == ie[TLV_BODY_OFF + oui_len]) {
366 /* point to the next ie */
367 ie += ie[TLV_LEN_OFF] + TLV_HDR_LEN;
368 /* calculate the length of the rest of the buffer */
369 *tlvs_len -= (int)(ie - *tlvs);
370 /* update the pointer to the start of the buffer */
376 static struct brcmf_vs_tlv *
377 brcmf_find_wpaie(const u8 *parse, u32 len)
379 const struct brcmf_tlv *ie;
381 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
382 if (brcmf_tlv_has_ie((const u8 *)ie, &parse, &len,
383 WPA_OUI, TLV_OUI_LEN, WPA_OUI_TYPE))
384 return (struct brcmf_vs_tlv *)ie;
389 static struct brcmf_vs_tlv *
390 brcmf_find_wpsie(const u8 *parse, u32 len)
392 const struct brcmf_tlv *ie;
394 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
395 if (brcmf_tlv_has_ie((u8 *)ie, &parse, &len,
396 WPA_OUI, TLV_OUI_LEN, WPS_OUI_TYPE))
397 return (struct brcmf_vs_tlv *)ie;
402 static int brcmf_vif_change_validate(struct brcmf_cfg80211_info *cfg,
403 struct brcmf_cfg80211_vif *vif,
404 enum nl80211_iftype new_type)
406 struct brcmf_cfg80211_vif *pos;
407 bool check_combos = false;
409 struct iface_combination_params params = {
410 .num_different_channels = 1,
413 list_for_each_entry(pos, &cfg->vif_list, list)
415 params.iftype_num[new_type]++;
417 /* concurrent interfaces so need check combinations */
419 params.iftype_num[pos->wdev.iftype]++;
423 ret = cfg80211_check_combinations(cfg->wiphy, ¶ms);
428 static int brcmf_vif_add_validate(struct brcmf_cfg80211_info *cfg,
429 enum nl80211_iftype new_type)
431 struct brcmf_cfg80211_vif *pos;
432 struct iface_combination_params params = {
433 .num_different_channels = 1,
436 list_for_each_entry(pos, &cfg->vif_list, list)
437 params.iftype_num[pos->wdev.iftype]++;
439 params.iftype_num[new_type]++;
440 return cfg80211_check_combinations(cfg->wiphy, ¶ms);
443 static void convert_key_from_CPU(struct brcmf_wsec_key *key,
444 struct brcmf_wsec_key_le *key_le)
446 key_le->index = cpu_to_le32(key->index);
447 key_le->len = cpu_to_le32(key->len);
448 key_le->algo = cpu_to_le32(key->algo);
449 key_le->flags = cpu_to_le32(key->flags);
450 key_le->rxiv.hi = cpu_to_le32(key->rxiv.hi);
451 key_le->rxiv.lo = cpu_to_le16(key->rxiv.lo);
452 key_le->iv_initialized = cpu_to_le32(key->iv_initialized);
453 memcpy(key_le->data, key->data, sizeof(key->data));
454 memcpy(key_le->ea, key->ea, sizeof(key->ea));
458 send_key_to_dongle(struct brcmf_if *ifp, struct brcmf_wsec_key *key)
461 struct brcmf_wsec_key_le key_le;
463 convert_key_from_CPU(key, &key_le);
465 brcmf_netdev_wait_pend8021x(ifp);
467 err = brcmf_fil_bsscfg_data_set(ifp, "wsec_key", &key_le,
471 brcmf_err("wsec_key error (%d)\n", err);
476 brcmf_configure_arp_nd_offload(struct brcmf_if *ifp, bool enable)
482 mode = BRCMF_ARP_OL_AGENT | BRCMF_ARP_OL_PEER_AUTO_REPLY;
486 /* Try to set and enable ARP offload feature, this may fail, then it */
487 /* is simply not supported and err 0 will be returned */
488 err = brcmf_fil_iovar_int_set(ifp, "arp_ol", mode);
490 brcmf_dbg(TRACE, "failed to set ARP offload mode to 0x%x, err = %d\n",
494 err = brcmf_fil_iovar_int_set(ifp, "arpoe", enable);
496 brcmf_dbg(TRACE, "failed to configure (%d) ARP offload err = %d\n",
500 brcmf_dbg(TRACE, "successfully configured (%d) ARP offload to 0x%x\n",
504 err = brcmf_fil_iovar_int_set(ifp, "ndoe", enable);
506 brcmf_dbg(TRACE, "failed to configure (%d) ND offload err = %d\n",
510 brcmf_dbg(TRACE, "successfully configured (%d) ND offload to 0x%x\n",
517 brcmf_cfg80211_update_proto_addr_mode(struct wireless_dev *wdev)
519 struct brcmf_cfg80211_vif *vif;
520 struct brcmf_if *ifp;
522 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
525 if ((wdev->iftype == NL80211_IFTYPE_ADHOC) ||
526 (wdev->iftype == NL80211_IFTYPE_AP) ||
527 (wdev->iftype == NL80211_IFTYPE_P2P_GO))
528 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
531 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
535 static int brcmf_get_first_free_bsscfgidx(struct brcmf_pub *drvr)
539 for (bsscfgidx = 0; bsscfgidx < BRCMF_MAX_IFS; bsscfgidx++) {
540 /* bsscfgidx 1 is reserved for legacy P2P */
543 if (!drvr->iflist[bsscfgidx])
550 static int brcmf_cfg80211_request_ap_if(struct brcmf_if *ifp)
552 struct brcmf_mbss_ssid_le mbss_ssid_le;
556 memset(&mbss_ssid_le, 0, sizeof(mbss_ssid_le));
557 bsscfgidx = brcmf_get_first_free_bsscfgidx(ifp->drvr);
561 mbss_ssid_le.bsscfgidx = cpu_to_le32(bsscfgidx);
562 mbss_ssid_le.SSID_len = cpu_to_le32(5);
563 sprintf(mbss_ssid_le.SSID, "ssid%d" , bsscfgidx);
565 err = brcmf_fil_bsscfg_data_set(ifp, "bsscfg:ssid", &mbss_ssid_le,
566 sizeof(mbss_ssid_le));
568 brcmf_err("setting ssid failed %d\n", err);
574 * brcmf_ap_add_vif() - create a new AP virtual interface for multiple BSS
576 * @wiphy: wiphy device of new interface.
577 * @name: name of the new interface.
578 * @params: contains mac address for AP device.
581 struct wireless_dev *brcmf_ap_add_vif(struct wiphy *wiphy, const char *name,
582 struct vif_params *params)
584 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
585 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
586 struct brcmf_cfg80211_vif *vif;
589 if (brcmf_cfg80211_vif_event_armed(cfg))
590 return ERR_PTR(-EBUSY);
592 brcmf_dbg(INFO, "Adding vif \"%s\"\n", name);
594 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_AP);
596 return (struct wireless_dev *)vif;
598 brcmf_cfg80211_arm_vif_event(cfg, vif);
600 err = brcmf_cfg80211_request_ap_if(ifp);
602 brcmf_cfg80211_arm_vif_event(cfg, NULL);
606 /* wait for firmware event */
607 err = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_ADD,
608 BRCMF_VIF_EVENT_TIMEOUT);
609 brcmf_cfg80211_arm_vif_event(cfg, NULL);
611 brcmf_err("timeout occurred\n");
616 /* interface created in firmware */
619 brcmf_err("no if pointer provided\n");
624 strncpy(ifp->ndev->name, name, sizeof(ifp->ndev->name) - 1);
625 err = brcmf_net_attach(ifp, true);
627 brcmf_err("Registering netdevice failed\n");
628 free_netdev(ifp->ndev);
632 return &ifp->vif->wdev;
639 static bool brcmf_is_apmode(struct brcmf_cfg80211_vif *vif)
641 enum nl80211_iftype iftype;
643 iftype = vif->wdev.iftype;
644 return iftype == NL80211_IFTYPE_AP || iftype == NL80211_IFTYPE_P2P_GO;
647 static bool brcmf_is_ibssmode(struct brcmf_cfg80211_vif *vif)
649 return vif->wdev.iftype == NL80211_IFTYPE_ADHOC;
652 static struct wireless_dev *brcmf_cfg80211_add_iface(struct wiphy *wiphy,
654 unsigned char name_assign_type,
655 enum nl80211_iftype type,
656 struct vif_params *params)
658 struct wireless_dev *wdev;
661 brcmf_dbg(TRACE, "enter: %s type %d\n", name, type);
662 err = brcmf_vif_add_validate(wiphy_to_cfg(wiphy), type);
664 brcmf_err("iface validation failed: err=%d\n", err);
668 case NL80211_IFTYPE_ADHOC:
669 case NL80211_IFTYPE_STATION:
670 case NL80211_IFTYPE_AP_VLAN:
671 case NL80211_IFTYPE_WDS:
672 case NL80211_IFTYPE_MONITOR:
673 case NL80211_IFTYPE_MESH_POINT:
674 return ERR_PTR(-EOPNOTSUPP);
675 case NL80211_IFTYPE_AP:
676 wdev = brcmf_ap_add_vif(wiphy, name, params);
678 case NL80211_IFTYPE_P2P_CLIENT:
679 case NL80211_IFTYPE_P2P_GO:
680 case NL80211_IFTYPE_P2P_DEVICE:
681 wdev = brcmf_p2p_add_vif(wiphy, name, name_assign_type, type, params);
683 case NL80211_IFTYPE_UNSPECIFIED:
685 return ERR_PTR(-EINVAL);
689 brcmf_err("add iface %s type %d failed: err=%d\n",
690 name, type, (int)PTR_ERR(wdev));
692 brcmf_cfg80211_update_proto_addr_mode(wdev);
697 static void brcmf_scan_config_mpc(struct brcmf_if *ifp, int mpc)
699 if (brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_NEED_MPC))
700 brcmf_set_mpc(ifp, mpc);
703 void brcmf_set_mpc(struct brcmf_if *ifp, int mpc)
707 if (check_vif_up(ifp->vif)) {
708 err = brcmf_fil_iovar_int_set(ifp, "mpc", mpc);
710 brcmf_err("fail to set mpc\n");
713 brcmf_dbg(INFO, "MPC : %d\n", mpc);
717 s32 brcmf_notify_escan_complete(struct brcmf_cfg80211_info *cfg,
718 struct brcmf_if *ifp, bool aborted,
721 struct brcmf_scan_params_le params_le;
722 struct cfg80211_scan_request *scan_request;
727 brcmf_dbg(SCAN, "Enter\n");
729 /* clear scan request, because the FW abort can cause a second call */
730 /* to this functon and might cause a double cfg80211_scan_done */
731 scan_request = cfg->scan_request;
732 cfg->scan_request = NULL;
734 if (timer_pending(&cfg->escan_timeout))
735 del_timer_sync(&cfg->escan_timeout);
738 /* Do a scan abort to stop the driver's scan engine */
739 brcmf_dbg(SCAN, "ABORT scan in firmware\n");
740 memset(¶ms_le, 0, sizeof(params_le));
741 eth_broadcast_addr(params_le.bssid);
742 params_le.bss_type = DOT11_BSSTYPE_ANY;
743 params_le.scan_type = 0;
744 params_le.channel_num = cpu_to_le32(1);
745 params_le.nprobes = cpu_to_le32(1);
746 params_le.active_time = cpu_to_le32(-1);
747 params_le.passive_time = cpu_to_le32(-1);
748 params_le.home_time = cpu_to_le32(-1);
749 /* Scan is aborted by setting channel_list[0] to -1 */
750 params_le.channel_list[0] = cpu_to_le16(-1);
751 /* E-Scan (or anyother type) can be aborted by SCAN */
752 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCAN,
753 ¶ms_le, sizeof(params_le));
755 brcmf_err("Scan abort failed\n");
758 brcmf_scan_config_mpc(ifp, 1);
761 * e-scan can be initiated internally
762 * which takes precedence.
764 if (cfg->int_escan_map) {
765 brcmf_dbg(SCAN, "scheduled scan completed (%x)\n",
767 while (cfg->int_escan_map) {
768 bucket = __ffs(cfg->int_escan_map);
769 cfg->int_escan_map &= ~BIT(bucket);
770 reqid = brcmf_pno_find_reqid_by_bucket(cfg->pno,
773 brcmf_dbg(SCAN, "report results: reqid=%llu\n",
775 cfg80211_sched_scan_results(cfg_to_wiphy(cfg),
779 } else if (scan_request) {
780 struct cfg80211_scan_info info = {
784 brcmf_dbg(SCAN, "ESCAN Completed scan: %s\n",
785 aborted ? "Aborted" : "Done");
786 cfg80211_scan_done(scan_request, &info);
788 if (!test_and_clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
789 brcmf_dbg(SCAN, "Scan complete, probably P2P scan\n");
794 static int brcmf_cfg80211_del_ap_iface(struct wiphy *wiphy,
795 struct wireless_dev *wdev)
797 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
798 struct net_device *ndev = wdev->netdev;
799 struct brcmf_if *ifp = netdev_priv(ndev);
803 brcmf_cfg80211_arm_vif_event(cfg, ifp->vif);
805 err = brcmf_fil_bsscfg_data_set(ifp, "interface_remove", NULL, 0);
807 brcmf_err("interface_remove failed %d\n", err);
811 /* wait for firmware event */
812 ret = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_DEL,
813 BRCMF_VIF_EVENT_TIMEOUT);
815 brcmf_err("timeout occurred\n");
820 brcmf_remove_interface(ifp, true);
823 brcmf_cfg80211_arm_vif_event(cfg, NULL);
828 int brcmf_cfg80211_del_iface(struct wiphy *wiphy, struct wireless_dev *wdev)
830 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
831 struct net_device *ndev = wdev->netdev;
833 if (ndev && ndev == cfg_to_ndev(cfg))
836 /* vif event pending in firmware */
837 if (brcmf_cfg80211_vif_event_armed(cfg))
841 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status) &&
842 cfg->escan_info.ifp == netdev_priv(ndev))
843 brcmf_notify_escan_complete(cfg, netdev_priv(ndev),
846 brcmf_fil_iovar_int_set(netdev_priv(ndev), "mpc", 1);
849 switch (wdev->iftype) {
850 case NL80211_IFTYPE_ADHOC:
851 case NL80211_IFTYPE_STATION:
852 case NL80211_IFTYPE_AP_VLAN:
853 case NL80211_IFTYPE_WDS:
854 case NL80211_IFTYPE_MONITOR:
855 case NL80211_IFTYPE_MESH_POINT:
857 case NL80211_IFTYPE_AP:
858 return brcmf_cfg80211_del_ap_iface(wiphy, wdev);
859 case NL80211_IFTYPE_P2P_CLIENT:
860 case NL80211_IFTYPE_P2P_GO:
861 case NL80211_IFTYPE_P2P_DEVICE:
862 return brcmf_p2p_del_vif(wiphy, wdev);
863 case NL80211_IFTYPE_UNSPECIFIED:
871 brcmf_cfg80211_change_iface(struct wiphy *wiphy, struct net_device *ndev,
872 enum nl80211_iftype type,
873 struct vif_params *params)
875 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
876 struct brcmf_if *ifp = netdev_priv(ndev);
877 struct brcmf_cfg80211_vif *vif = ifp->vif;
882 brcmf_dbg(TRACE, "Enter, bsscfgidx=%d, type=%d\n", ifp->bsscfgidx,
885 /* WAR: There are a number of p2p interface related problems which
886 * need to be handled initially (before doing the validate).
887 * wpa_supplicant tends to do iface changes on p2p device/client/go
888 * which are not always possible/allowed. However we need to return
889 * OK otherwise the wpa_supplicant wont start. The situation differs
890 * on configuration and setup (p2pon=1 module param). The first check
891 * is to see if the request is a change to station for p2p iface.
893 if ((type == NL80211_IFTYPE_STATION) &&
894 ((vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) ||
895 (vif->wdev.iftype == NL80211_IFTYPE_P2P_GO) ||
896 (vif->wdev.iftype == NL80211_IFTYPE_P2P_DEVICE))) {
897 brcmf_dbg(TRACE, "Ignoring cmd for p2p if\n");
898 /* Now depending on whether module param p2pon=1 was used the
899 * response needs to be either 0 or EOPNOTSUPP. The reason is
900 * that if p2pon=1 is used, but a newer supplicant is used then
901 * we should return an error, as this combination wont work.
902 * In other situations 0 is returned and supplicant will start
903 * normally. It will give a trace in cfg80211, but it is the
904 * only way to get it working. Unfortunately this will result
905 * in situation where we wont support new supplicant in
906 * combination with module param p2pon=1, but that is the way
907 * it is. If the user tries this then unloading of driver might
910 if (cfg->p2p.p2pdev_dynamically)
915 err = brcmf_vif_change_validate(wiphy_to_cfg(wiphy), vif, type);
917 brcmf_err("iface validation failed: err=%d\n", err);
921 case NL80211_IFTYPE_MONITOR:
922 case NL80211_IFTYPE_WDS:
923 brcmf_err("type (%d) : currently we do not support this type\n",
926 case NL80211_IFTYPE_ADHOC:
929 case NL80211_IFTYPE_STATION:
932 case NL80211_IFTYPE_AP:
933 case NL80211_IFTYPE_P2P_GO:
942 if (type == NL80211_IFTYPE_P2P_GO) {
943 brcmf_dbg(INFO, "IF Type = P2P GO\n");
944 err = brcmf_p2p_ifchange(cfg, BRCMF_FIL_P2P_IF_GO);
947 brcmf_dbg(INFO, "IF Type = AP\n");
950 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, infra);
952 brcmf_err("WLC_SET_INFRA error (%d)\n", err);
956 brcmf_dbg(INFO, "IF Type = %s\n", brcmf_is_ibssmode(vif) ?
959 ndev->ieee80211_ptr->iftype = type;
961 brcmf_cfg80211_update_proto_addr_mode(&vif->wdev);
964 brcmf_dbg(TRACE, "Exit\n");
969 static void brcmf_escan_prep(struct brcmf_cfg80211_info *cfg,
970 struct brcmf_scan_params_le *params_le,
971 struct cfg80211_scan_request *request)
979 struct brcmf_ssid_le ssid_le;
981 eth_broadcast_addr(params_le->bssid);
982 params_le->bss_type = DOT11_BSSTYPE_ANY;
983 params_le->scan_type = 0;
984 params_le->channel_num = 0;
985 params_le->nprobes = cpu_to_le32(-1);
986 params_le->active_time = cpu_to_le32(-1);
987 params_le->passive_time = cpu_to_le32(-1);
988 params_le->home_time = cpu_to_le32(-1);
989 memset(¶ms_le->ssid_le, 0, sizeof(params_le->ssid_le));
991 /* if request is null exit so it will be all channel broadcast scan */
995 n_ssids = request->n_ssids;
996 n_channels = request->n_channels;
997 /* Copy channel array if applicable */
998 brcmf_dbg(SCAN, "### List of channelspecs to scan ### %d\n",
1000 if (n_channels > 0) {
1001 for (i = 0; i < n_channels; i++) {
1002 chanspec = channel_to_chanspec(&cfg->d11inf,
1003 request->channels[i]);
1004 brcmf_dbg(SCAN, "Chan : %d, Channel spec: %x\n",
1005 request->channels[i]->hw_value, chanspec);
1006 params_le->channel_list[i] = cpu_to_le16(chanspec);
1009 brcmf_dbg(SCAN, "Scanning all channels\n");
1011 /* Copy ssid array if applicable */
1012 brcmf_dbg(SCAN, "### List of SSIDs to scan ### %d\n", n_ssids);
1014 offset = offsetof(struct brcmf_scan_params_le, channel_list) +
1015 n_channels * sizeof(u16);
1016 offset = roundup(offset, sizeof(u32));
1017 ptr = (char *)params_le + offset;
1018 for (i = 0; i < n_ssids; i++) {
1019 memset(&ssid_le, 0, sizeof(ssid_le));
1021 cpu_to_le32(request->ssids[i].ssid_len);
1022 memcpy(ssid_le.SSID, request->ssids[i].ssid,
1023 request->ssids[i].ssid_len);
1024 if (!ssid_le.SSID_len)
1025 brcmf_dbg(SCAN, "%d: Broadcast scan\n", i);
1027 brcmf_dbg(SCAN, "%d: scan for %.32s size=%d\n",
1028 i, ssid_le.SSID, ssid_le.SSID_len);
1029 memcpy(ptr, &ssid_le, sizeof(ssid_le));
1030 ptr += sizeof(ssid_le);
1033 brcmf_dbg(SCAN, "Broadcast scan %p\n", request->ssids);
1034 if ((request->ssids) && request->ssids->ssid_len) {
1035 brcmf_dbg(SCAN, "SSID %s len=%d\n",
1036 params_le->ssid_le.SSID,
1037 request->ssids->ssid_len);
1038 params_le->ssid_le.SSID_len =
1039 cpu_to_le32(request->ssids->ssid_len);
1040 memcpy(¶ms_le->ssid_le.SSID, request->ssids->ssid,
1041 request->ssids->ssid_len);
1044 /* Adding mask to channel numbers */
1045 params_le->channel_num =
1046 cpu_to_le32((n_ssids << BRCMF_SCAN_PARAMS_NSSID_SHIFT) |
1047 (n_channels & BRCMF_SCAN_PARAMS_COUNT_MASK));
1051 brcmf_run_escan(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp,
1052 struct cfg80211_scan_request *request)
1054 s32 params_size = BRCMF_SCAN_PARAMS_FIXED_SIZE +
1055 offsetof(struct brcmf_escan_params_le, params_le);
1056 struct brcmf_escan_params_le *params;
1059 brcmf_dbg(SCAN, "E-SCAN START\n");
1061 if (request != NULL) {
1062 /* Allocate space for populating ssids in struct */
1063 params_size += sizeof(u32) * ((request->n_channels + 1) / 2);
1065 /* Allocate space for populating ssids in struct */
1066 params_size += sizeof(struct brcmf_ssid_le) * request->n_ssids;
1069 params = kzalloc(params_size, GFP_KERNEL);
1074 BUG_ON(params_size + sizeof("escan") >= BRCMF_DCMD_MEDLEN);
1075 brcmf_escan_prep(cfg, ¶ms->params_le, request);
1076 params->version = cpu_to_le32(BRCMF_ESCAN_REQ_VERSION);
1077 params->action = cpu_to_le16(WL_ESCAN_ACTION_START);
1078 params->sync_id = cpu_to_le16(0x1234);
1080 err = brcmf_fil_iovar_data_set(ifp, "escan", params, params_size);
1083 brcmf_dbg(INFO, "system busy : escan canceled\n");
1085 brcmf_err("error (%d)\n", err);
1094 brcmf_do_escan(struct brcmf_if *ifp, struct cfg80211_scan_request *request)
1096 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
1099 struct brcmf_scan_results *results;
1100 struct escan_info *escan = &cfg->escan_info;
1102 brcmf_dbg(SCAN, "Enter\n");
1104 escan->wiphy = cfg->wiphy;
1105 escan->escan_state = WL_ESCAN_STATE_SCANNING;
1106 passive_scan = cfg->active_scan ? 0 : 1;
1107 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PASSIVE_SCAN,
1110 brcmf_err("error (%d)\n", err);
1113 brcmf_scan_config_mpc(ifp, 0);
1114 results = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
1115 results->version = 0;
1117 results->buflen = WL_ESCAN_RESULTS_FIXED_SIZE;
1119 err = escan->run(cfg, ifp, request);
1121 brcmf_scan_config_mpc(ifp, 1);
1126 brcmf_cfg80211_escan(struct wiphy *wiphy, struct brcmf_cfg80211_vif *vif,
1127 struct cfg80211_scan_request *request,
1128 struct cfg80211_ssid *this_ssid)
1130 struct brcmf_if *ifp = vif->ifp;
1131 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1132 struct cfg80211_ssid *ssids;
1137 struct brcmf_ssid_le ssid_le;
1140 brcmf_dbg(SCAN, "START ESCAN\n");
1142 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
1143 brcmf_err("Scanning already: status (%lu)\n", cfg->scan_status);
1146 if (test_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status)) {
1147 brcmf_err("Scanning being aborted: status (%lu)\n",
1151 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
1152 brcmf_err("Scanning suppressed: status (%lu)\n",
1156 if (test_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state)) {
1157 brcmf_err("Connecting: status (%lu)\n", ifp->vif->sme_state);
1161 /* If scan req comes for p2p0, send it over primary I/F */
1162 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
1163 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif;
1168 ssids = request->ssids;
1172 /* we don't do escan in ibss */
1176 cfg->scan_request = request;
1177 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1179 cfg->escan_info.run = brcmf_run_escan;
1180 err = brcmf_p2p_scan_prep(wiphy, request, vif);
1184 err = brcmf_do_escan(vif->ifp, request);
1188 brcmf_dbg(SCAN, "ssid \"%s\", ssid_len (%d)\n",
1189 ssids->ssid, ssids->ssid_len);
1190 memset(&ssid_le, 0, sizeof(ssid_le));
1191 SSID_len = min_t(u8, sizeof(ssid_le.SSID), ssids->ssid_len);
1192 ssid_le.SSID_len = cpu_to_le32(0);
1195 memcpy(ssid_le.SSID, ssids->ssid, SSID_len);
1196 ssid_le.SSID_len = cpu_to_le32(SSID_len);
1199 brcmf_dbg(SCAN, "Broadcast scan\n");
1201 passive_scan = cfg->active_scan ? 0 : 1;
1202 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PASSIVE_SCAN,
1205 brcmf_err("WLC_SET_PASSIVE_SCAN error (%d)\n", err);
1208 brcmf_scan_config_mpc(ifp, 0);
1209 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCAN, &ssid_le,
1213 brcmf_dbg(INFO, "BUSY: scan for \"%s\" canceled\n",
1216 brcmf_err("WLC_SCAN error (%d)\n", err);
1218 brcmf_scan_config_mpc(ifp, 1);
1223 /* Arm scan timeout timer */
1224 mod_timer(&cfg->escan_timeout, jiffies +
1225 BRCMF_ESCAN_TIMER_INTERVAL_MS * HZ / 1000);
1230 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1231 cfg->scan_request = NULL;
1236 brcmf_cfg80211_scan(struct wiphy *wiphy, struct cfg80211_scan_request *request)
1238 struct brcmf_cfg80211_vif *vif;
1241 brcmf_dbg(TRACE, "Enter\n");
1242 vif = container_of(request->wdev, struct brcmf_cfg80211_vif, wdev);
1243 if (!check_vif_up(vif))
1246 err = brcmf_cfg80211_escan(wiphy, vif, request, NULL);
1249 brcmf_err("scan error (%d)\n", err);
1251 brcmf_dbg(TRACE, "Exit\n");
1255 static s32 brcmf_set_rts(struct net_device *ndev, u32 rts_threshold)
1259 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "rtsthresh",
1262 brcmf_err("Error (%d)\n", err);
1267 static s32 brcmf_set_frag(struct net_device *ndev, u32 frag_threshold)
1271 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "fragthresh",
1274 brcmf_err("Error (%d)\n", err);
1279 static s32 brcmf_set_retry(struct net_device *ndev, u32 retry, bool l)
1282 u32 cmd = (l ? BRCMF_C_SET_LRL : BRCMF_C_SET_SRL);
1284 err = brcmf_fil_cmd_int_set(netdev_priv(ndev), cmd, retry);
1286 brcmf_err("cmd (%d) , error (%d)\n", cmd, err);
1292 static s32 brcmf_cfg80211_set_wiphy_params(struct wiphy *wiphy, u32 changed)
1294 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1295 struct net_device *ndev = cfg_to_ndev(cfg);
1296 struct brcmf_if *ifp = netdev_priv(ndev);
1299 brcmf_dbg(TRACE, "Enter\n");
1300 if (!check_vif_up(ifp->vif))
1303 if (changed & WIPHY_PARAM_RTS_THRESHOLD &&
1304 (cfg->conf->rts_threshold != wiphy->rts_threshold)) {
1305 cfg->conf->rts_threshold = wiphy->rts_threshold;
1306 err = brcmf_set_rts(ndev, cfg->conf->rts_threshold);
1310 if (changed & WIPHY_PARAM_FRAG_THRESHOLD &&
1311 (cfg->conf->frag_threshold != wiphy->frag_threshold)) {
1312 cfg->conf->frag_threshold = wiphy->frag_threshold;
1313 err = brcmf_set_frag(ndev, cfg->conf->frag_threshold);
1317 if (changed & WIPHY_PARAM_RETRY_LONG
1318 && (cfg->conf->retry_long != wiphy->retry_long)) {
1319 cfg->conf->retry_long = wiphy->retry_long;
1320 err = brcmf_set_retry(ndev, cfg->conf->retry_long, true);
1324 if (changed & WIPHY_PARAM_RETRY_SHORT
1325 && (cfg->conf->retry_short != wiphy->retry_short)) {
1326 cfg->conf->retry_short = wiphy->retry_short;
1327 err = brcmf_set_retry(ndev, cfg->conf->retry_short, false);
1333 brcmf_dbg(TRACE, "Exit\n");
1337 static void brcmf_init_prof(struct brcmf_cfg80211_profile *prof)
1339 memset(prof, 0, sizeof(*prof));
1342 static u16 brcmf_map_fw_linkdown_reason(const struct brcmf_event_msg *e)
1346 switch (e->event_code) {
1347 case BRCMF_E_DEAUTH:
1348 case BRCMF_E_DEAUTH_IND:
1349 case BRCMF_E_DISASSOC_IND:
1360 static int brcmf_set_pmk(struct brcmf_if *ifp, const u8 *pmk_data, u16 pmk_len)
1362 struct brcmf_wsec_pmk_le pmk;
1365 /* convert to firmware key format */
1366 pmk.key_len = cpu_to_le16(pmk_len << 1);
1367 pmk.flags = cpu_to_le16(BRCMF_WSEC_PASSPHRASE);
1368 for (i = 0; i < pmk_len; i++)
1369 snprintf(&pmk.key[2 * i], 3, "%02x", pmk_data[i]);
1371 /* store psk in firmware */
1372 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_WSEC_PMK,
1375 brcmf_err("failed to change PSK in firmware (len=%u)\n",
1381 static void brcmf_link_down(struct brcmf_cfg80211_vif *vif, u16 reason)
1383 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(vif->wdev.wiphy);
1386 brcmf_dbg(TRACE, "Enter\n");
1388 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTED, &vif->sme_state)) {
1389 brcmf_dbg(INFO, "Call WLC_DISASSOC to stop excess roaming\n ");
1390 err = brcmf_fil_cmd_data_set(vif->ifp,
1391 BRCMF_C_DISASSOC, NULL, 0);
1393 brcmf_err("WLC_DISASSOC failed (%d)\n", err);
1395 if ((vif->wdev.iftype == NL80211_IFTYPE_STATION) ||
1396 (vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT))
1397 cfg80211_disconnected(vif->wdev.netdev, reason, NULL, 0,
1400 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &vif->sme_state);
1401 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
1402 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
1403 if (vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_NONE) {
1404 brcmf_set_pmk(vif->ifp, NULL, 0);
1405 vif->profile.use_fwsup = BRCMF_PROFILE_FWSUP_NONE;
1407 brcmf_dbg(TRACE, "Exit\n");
1411 brcmf_cfg80211_join_ibss(struct wiphy *wiphy, struct net_device *ndev,
1412 struct cfg80211_ibss_params *params)
1414 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1415 struct brcmf_if *ifp = netdev_priv(ndev);
1416 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1417 struct brcmf_join_params join_params;
1418 size_t join_params_size = 0;
1425 brcmf_dbg(TRACE, "Enter\n");
1426 if (!check_vif_up(ifp->vif))
1430 brcmf_dbg(CONN, "SSID: %s\n", params->ssid);
1432 brcmf_dbg(CONN, "SSID: NULL, Not supported\n");
1436 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1439 brcmf_dbg(CONN, "BSSID: %pM\n", params->bssid);
1441 brcmf_dbg(CONN, "No BSSID specified\n");
1443 if (params->chandef.chan)
1444 brcmf_dbg(CONN, "channel: %d\n",
1445 params->chandef.chan->center_freq);
1447 brcmf_dbg(CONN, "no channel specified\n");
1449 if (params->channel_fixed)
1450 brcmf_dbg(CONN, "fixed channel required\n");
1452 brcmf_dbg(CONN, "no fixed channel required\n");
1454 if (params->ie && params->ie_len)
1455 brcmf_dbg(CONN, "ie len: %d\n", params->ie_len);
1457 brcmf_dbg(CONN, "no ie specified\n");
1459 if (params->beacon_interval)
1460 brcmf_dbg(CONN, "beacon interval: %d\n",
1461 params->beacon_interval);
1463 brcmf_dbg(CONN, "no beacon interval specified\n");
1465 if (params->basic_rates)
1466 brcmf_dbg(CONN, "basic rates: %08X\n", params->basic_rates);
1468 brcmf_dbg(CONN, "no basic rates specified\n");
1470 if (params->privacy)
1471 brcmf_dbg(CONN, "privacy required\n");
1473 brcmf_dbg(CONN, "no privacy required\n");
1475 /* Configure Privacy for starter */
1476 if (params->privacy)
1477 wsec |= WEP_ENABLED;
1479 err = brcmf_fil_iovar_int_set(ifp, "wsec", wsec);
1481 brcmf_err("wsec failed (%d)\n", err);
1485 /* Configure Beacon Interval for starter */
1486 if (params->beacon_interval)
1487 bcnprd = params->beacon_interval;
1491 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD, bcnprd);
1493 brcmf_err("WLC_SET_BCNPRD failed (%d)\n", err);
1497 /* Configure required join parameter */
1498 memset(&join_params, 0, sizeof(struct brcmf_join_params));
1501 ssid_len = min_t(u32, params->ssid_len, IEEE80211_MAX_SSID_LEN);
1502 memcpy(join_params.ssid_le.SSID, params->ssid, ssid_len);
1503 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
1504 join_params_size = sizeof(join_params.ssid_le);
1507 if (params->bssid) {
1508 memcpy(join_params.params_le.bssid, params->bssid, ETH_ALEN);
1509 join_params_size += BRCMF_ASSOC_PARAMS_FIXED_SIZE;
1510 memcpy(profile->bssid, params->bssid, ETH_ALEN);
1512 eth_broadcast_addr(join_params.params_le.bssid);
1513 eth_zero_addr(profile->bssid);
1517 if (params->chandef.chan) {
1521 ieee80211_frequency_to_channel(
1522 params->chandef.chan->center_freq);
1523 if (params->channel_fixed) {
1524 /* adding chanspec */
1525 chanspec = chandef_to_chanspec(&cfg->d11inf,
1527 join_params.params_le.chanspec_list[0] =
1528 cpu_to_le16(chanspec);
1529 join_params.params_le.chanspec_num = cpu_to_le32(1);
1530 join_params_size += sizeof(join_params.params_le);
1533 /* set channel for starter */
1534 target_channel = cfg->channel;
1535 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_CHANNEL,
1538 brcmf_err("WLC_SET_CHANNEL failed (%d)\n", err);
1544 cfg->ibss_starter = false;
1547 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
1548 &join_params, join_params_size);
1550 brcmf_err("WLC_SET_SSID failed (%d)\n", err);
1556 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1557 brcmf_dbg(TRACE, "Exit\n");
1562 brcmf_cfg80211_leave_ibss(struct wiphy *wiphy, struct net_device *ndev)
1564 struct brcmf_if *ifp = netdev_priv(ndev);
1566 brcmf_dbg(TRACE, "Enter\n");
1567 if (!check_vif_up(ifp->vif)) {
1568 /* When driver is being unloaded, it can end up here. If an
1569 * error is returned then later on a debug trace in the wireless
1570 * core module will be printed. To avoid this 0 is returned.
1575 brcmf_link_down(ifp->vif, WLAN_REASON_DEAUTH_LEAVING);
1576 brcmf_net_setcarrier(ifp, false);
1578 brcmf_dbg(TRACE, "Exit\n");
1583 static s32 brcmf_set_wpa_version(struct net_device *ndev,
1584 struct cfg80211_connect_params *sme)
1586 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1587 struct brcmf_cfg80211_security *sec;
1591 if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_1)
1592 val = WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED;
1593 else if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_2)
1594 val = WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED;
1596 val = WPA_AUTH_DISABLED;
1597 brcmf_dbg(CONN, "setting wpa_auth to 0x%0x\n", val);
1598 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1600 brcmf_err("set wpa_auth failed (%d)\n", err);
1603 sec = &profile->sec;
1604 sec->wpa_versions = sme->crypto.wpa_versions;
1608 static s32 brcmf_set_auth_type(struct net_device *ndev,
1609 struct cfg80211_connect_params *sme)
1611 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1612 struct brcmf_cfg80211_security *sec;
1616 switch (sme->auth_type) {
1617 case NL80211_AUTHTYPE_OPEN_SYSTEM:
1619 brcmf_dbg(CONN, "open system\n");
1621 case NL80211_AUTHTYPE_SHARED_KEY:
1623 brcmf_dbg(CONN, "shared key\n");
1627 brcmf_dbg(CONN, "automatic, auth type (%d)\n", sme->auth_type);
1631 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1633 brcmf_err("set auth failed (%d)\n", err);
1636 sec = &profile->sec;
1637 sec->auth_type = sme->auth_type;
1642 brcmf_set_wsec_mode(struct net_device *ndev,
1643 struct cfg80211_connect_params *sme)
1645 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1646 struct brcmf_cfg80211_security *sec;
1652 if (sme->crypto.n_ciphers_pairwise) {
1653 switch (sme->crypto.ciphers_pairwise[0]) {
1654 case WLAN_CIPHER_SUITE_WEP40:
1655 case WLAN_CIPHER_SUITE_WEP104:
1658 case WLAN_CIPHER_SUITE_TKIP:
1659 pval = TKIP_ENABLED;
1661 case WLAN_CIPHER_SUITE_CCMP:
1664 case WLAN_CIPHER_SUITE_AES_CMAC:
1668 brcmf_err("invalid cipher pairwise (%d)\n",
1669 sme->crypto.ciphers_pairwise[0]);
1673 if (sme->crypto.cipher_group) {
1674 switch (sme->crypto.cipher_group) {
1675 case WLAN_CIPHER_SUITE_WEP40:
1676 case WLAN_CIPHER_SUITE_WEP104:
1679 case WLAN_CIPHER_SUITE_TKIP:
1680 gval = TKIP_ENABLED;
1682 case WLAN_CIPHER_SUITE_CCMP:
1685 case WLAN_CIPHER_SUITE_AES_CMAC:
1689 brcmf_err("invalid cipher group (%d)\n",
1690 sme->crypto.cipher_group);
1695 brcmf_dbg(CONN, "pval (%d) gval (%d)\n", pval, gval);
1696 /* In case of privacy, but no security and WPS then simulate */
1697 /* setting AES. WPS-2.0 allows no security */
1698 if (brcmf_find_wpsie(sme->ie, sme->ie_len) && !pval && !gval &&
1703 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wsec", wsec);
1705 brcmf_err("error (%d)\n", err);
1709 sec = &profile->sec;
1710 sec->cipher_pairwise = sme->crypto.ciphers_pairwise[0];
1711 sec->cipher_group = sme->crypto.cipher_group;
1717 brcmf_set_key_mgmt(struct net_device *ndev, struct cfg80211_connect_params *sme)
1719 struct brcmf_if *ifp = netdev_priv(ndev);
1720 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1723 const struct brcmf_tlv *rsn_ie;
1731 profile->use_fwsup = BRCMF_PROFILE_FWSUP_NONE;
1733 if (!sme->crypto.n_akm_suites)
1736 err = brcmf_fil_bsscfg_int_get(netdev_priv(ndev), "wpa_auth", &val);
1738 brcmf_err("could not get wpa_auth (%d)\n", err);
1741 if (val & (WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED)) {
1742 switch (sme->crypto.akm_suites[0]) {
1743 case WLAN_AKM_SUITE_8021X:
1744 val = WPA_AUTH_UNSPECIFIED;
1746 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1748 case WLAN_AKM_SUITE_PSK:
1752 brcmf_err("invalid cipher group (%d)\n",
1753 sme->crypto.cipher_group);
1756 } else if (val & (WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED)) {
1757 switch (sme->crypto.akm_suites[0]) {
1758 case WLAN_AKM_SUITE_8021X:
1759 val = WPA2_AUTH_UNSPECIFIED;
1761 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1763 case WLAN_AKM_SUITE_8021X_SHA256:
1764 val = WPA2_AUTH_1X_SHA256;
1766 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1768 case WLAN_AKM_SUITE_PSK_SHA256:
1769 val = WPA2_AUTH_PSK_SHA256;
1771 case WLAN_AKM_SUITE_PSK:
1772 val = WPA2_AUTH_PSK;
1775 brcmf_err("invalid cipher group (%d)\n",
1776 sme->crypto.cipher_group);
1781 if (profile->use_fwsup == BRCMF_PROFILE_FWSUP_1X)
1782 brcmf_dbg(INFO, "using 1X offload\n");
1784 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
1785 goto skip_mfp_config;
1786 /* The MFP mode (1 or 2) needs to be determined, parse IEs. The
1787 * IE will not be verified, just a quick search for MFP config
1789 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie, sme->ie_len,
1792 goto skip_mfp_config;
1793 ie = (const u8 *)rsn_ie;
1794 ie_len = rsn_ie->len + TLV_HDR_LEN;
1795 /* Skip unicast suite */
1796 offset = TLV_HDR_LEN + WPA_IE_VERSION_LEN + WPA_IE_MIN_OUI_LEN;
1797 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1798 goto skip_mfp_config;
1799 /* Skip multicast suite */
1800 count = ie[offset] + (ie[offset + 1] << 8);
1801 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1802 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1803 goto skip_mfp_config;
1804 /* Skip auth key management suite(s) */
1805 count = ie[offset] + (ie[offset + 1] << 8);
1806 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1807 if (offset + WPA_IE_SUITE_COUNT_LEN > ie_len)
1808 goto skip_mfp_config;
1809 /* Ready to read capabilities */
1810 mfp = BRCMF_MFP_NONE;
1811 rsn_cap = ie[offset] + (ie[offset + 1] << 8);
1812 if (rsn_cap & RSN_CAP_MFPR_MASK)
1813 mfp = BRCMF_MFP_REQUIRED;
1814 else if (rsn_cap & RSN_CAP_MFPC_MASK)
1815 mfp = BRCMF_MFP_CAPABLE;
1816 brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "mfp", mfp);
1819 brcmf_dbg(CONN, "setting wpa_auth to %d\n", val);
1820 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1822 brcmf_err("could not set wpa_auth (%d)\n", err);
1830 brcmf_set_sharedkey(struct net_device *ndev,
1831 struct cfg80211_connect_params *sme)
1833 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1834 struct brcmf_cfg80211_security *sec;
1835 struct brcmf_wsec_key key;
1839 brcmf_dbg(CONN, "key len (%d)\n", sme->key_len);
1841 if (sme->key_len == 0)
1844 sec = &profile->sec;
1845 brcmf_dbg(CONN, "wpa_versions 0x%x cipher_pairwise 0x%x\n",
1846 sec->wpa_versions, sec->cipher_pairwise);
1848 if (sec->wpa_versions & (NL80211_WPA_VERSION_1 | NL80211_WPA_VERSION_2))
1851 if (!(sec->cipher_pairwise &
1852 (WLAN_CIPHER_SUITE_WEP40 | WLAN_CIPHER_SUITE_WEP104)))
1855 memset(&key, 0, sizeof(key));
1856 key.len = (u32) sme->key_len;
1857 key.index = (u32) sme->key_idx;
1858 if (key.len > sizeof(key.data)) {
1859 brcmf_err("Too long key length (%u)\n", key.len);
1862 memcpy(key.data, sme->key, key.len);
1863 key.flags = BRCMF_PRIMARY_KEY;
1864 switch (sec->cipher_pairwise) {
1865 case WLAN_CIPHER_SUITE_WEP40:
1866 key.algo = CRYPTO_ALGO_WEP1;
1868 case WLAN_CIPHER_SUITE_WEP104:
1869 key.algo = CRYPTO_ALGO_WEP128;
1872 brcmf_err("Invalid algorithm (%d)\n",
1873 sme->crypto.ciphers_pairwise[0]);
1876 /* Set the new key/index */
1877 brcmf_dbg(CONN, "key length (%d) key index (%d) algo (%d)\n",
1878 key.len, key.index, key.algo);
1879 brcmf_dbg(CONN, "key \"%s\"\n", key.data);
1880 err = send_key_to_dongle(netdev_priv(ndev), &key);
1884 if (sec->auth_type == NL80211_AUTHTYPE_SHARED_KEY) {
1885 brcmf_dbg(CONN, "set auth_type to shared key\n");
1886 val = WL_AUTH_SHARED_KEY; /* shared key */
1887 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1889 brcmf_err("set auth failed (%d)\n", err);
1895 enum nl80211_auth_type brcmf_war_auth_type(struct brcmf_if *ifp,
1896 enum nl80211_auth_type type)
1898 if (type == NL80211_AUTHTYPE_AUTOMATIC &&
1899 brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_AUTO_AUTH)) {
1900 brcmf_dbg(CONN, "WAR: use OPEN instead of AUTO\n");
1901 type = NL80211_AUTHTYPE_OPEN_SYSTEM;
1906 static void brcmf_set_join_pref(struct brcmf_if *ifp,
1907 struct cfg80211_bss_selection *bss_select)
1909 struct brcmf_join_pref_params join_pref_params[2];
1910 enum nl80211_band band;
1913 join_pref_params[i].len = 2;
1914 join_pref_params[i].rssi_gain = 0;
1916 if (bss_select->behaviour != NL80211_BSS_SELECT_ATTR_BAND_PREF)
1917 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_ASSOC_PREFER, WLC_BAND_AUTO);
1919 switch (bss_select->behaviour) {
1920 case __NL80211_BSS_SELECT_ATTR_INVALID:
1921 brcmf_c_set_joinpref_default(ifp);
1923 case NL80211_BSS_SELECT_ATTR_BAND_PREF:
1924 join_pref_params[i].type = BRCMF_JOIN_PREF_BAND;
1925 band = bss_select->param.band_pref;
1926 join_pref_params[i].band = nl80211_band_to_fwil(band);
1929 case NL80211_BSS_SELECT_ATTR_RSSI_ADJUST:
1930 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI_DELTA;
1931 band = bss_select->param.adjust.band;
1932 join_pref_params[i].band = nl80211_band_to_fwil(band);
1933 join_pref_params[i].rssi_gain = bss_select->param.adjust.delta;
1936 case NL80211_BSS_SELECT_ATTR_RSSI:
1940 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI;
1941 join_pref_params[i].len = 2;
1942 join_pref_params[i].rssi_gain = 0;
1943 join_pref_params[i].band = 0;
1944 err = brcmf_fil_iovar_data_set(ifp, "join_pref", join_pref_params,
1945 sizeof(join_pref_params));
1947 brcmf_err("Set join_pref error (%d)\n", err);
1951 brcmf_cfg80211_connect(struct wiphy *wiphy, struct net_device *ndev,
1952 struct cfg80211_connect_params *sme)
1954 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1955 struct brcmf_if *ifp = netdev_priv(ndev);
1956 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1957 struct ieee80211_channel *chan = sme->channel;
1958 struct brcmf_join_params join_params;
1959 size_t join_params_size;
1960 const struct brcmf_tlv *rsn_ie;
1961 const struct brcmf_vs_tlv *wpa_ie;
1964 struct brcmf_ext_join_params_le *ext_join_params;
1969 brcmf_dbg(TRACE, "Enter\n");
1970 if (!check_vif_up(ifp->vif))
1974 brcmf_err("Invalid ssid\n");
1978 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif) {
1979 /* A normal (non P2P) connection request setup. */
1982 /* find the WPA_IE */
1983 wpa_ie = brcmf_find_wpaie((u8 *)sme->ie, sme->ie_len);
1986 ie_len = wpa_ie->len + TLV_HDR_LEN;
1988 /* find the RSN_IE */
1989 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie,
1994 ie_len = rsn_ie->len + TLV_HDR_LEN;
1997 brcmf_fil_iovar_data_set(ifp, "wpaie", ie, ie_len);
2000 err = brcmf_vif_set_mgmt_ie(ifp->vif, BRCMF_VNDR_IE_ASSOCREQ_FLAG,
2001 sme->ie, sme->ie_len);
2003 brcmf_err("Set Assoc REQ IE Failed\n");
2005 brcmf_dbg(TRACE, "Applied Vndr IEs for Assoc request\n");
2007 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2011 ieee80211_frequency_to_channel(chan->center_freq);
2012 chanspec = channel_to_chanspec(&cfg->d11inf, chan);
2013 brcmf_dbg(CONN, "channel=%d, center_req=%d, chanspec=0x%04x\n",
2014 cfg->channel, chan->center_freq, chanspec);
2020 brcmf_dbg(INFO, "ie (%p), ie_len (%zd)\n", sme->ie, sme->ie_len);
2022 err = brcmf_set_wpa_version(ndev, sme);
2024 brcmf_err("wl_set_wpa_version failed (%d)\n", err);
2028 sme->auth_type = brcmf_war_auth_type(ifp, sme->auth_type);
2029 err = brcmf_set_auth_type(ndev, sme);
2031 brcmf_err("wl_set_auth_type failed (%d)\n", err);
2035 err = brcmf_set_wsec_mode(ndev, sme);
2037 brcmf_err("wl_set_set_cipher failed (%d)\n", err);
2041 err = brcmf_set_key_mgmt(ndev, sme);
2043 brcmf_err("wl_set_key_mgmt failed (%d)\n", err);
2047 err = brcmf_set_sharedkey(ndev, sme);
2049 brcmf_err("brcmf_set_sharedkey failed (%d)\n", err);
2053 if (sme->crypto.psk) {
2054 if (WARN_ON(profile->use_fwsup != BRCMF_PROFILE_FWSUP_NONE)) {
2058 brcmf_dbg(INFO, "using PSK offload\n");
2059 profile->use_fwsup = BRCMF_PROFILE_FWSUP_PSK;
2062 if (profile->use_fwsup != BRCMF_PROFILE_FWSUP_NONE) {
2063 /* enable firmware supplicant for this interface */
2064 err = brcmf_fil_iovar_int_set(ifp, "sup_wpa", 1);
2066 brcmf_err("failed to enable fw supplicant\n");
2071 if (profile->use_fwsup == BRCMF_PROFILE_FWSUP_PSK) {
2072 err = brcmf_set_pmk(ifp, sme->crypto.psk,
2073 BRCMF_WSEC_MAX_PSK_LEN);
2078 /* Join with specific BSSID and cached SSID
2079 * If SSID is zero join based on BSSID only
2081 join_params_size = offsetof(struct brcmf_ext_join_params_le, assoc_le) +
2082 offsetof(struct brcmf_assoc_params_le, chanspec_list);
2084 join_params_size += sizeof(u16);
2085 ext_join_params = kzalloc(join_params_size, GFP_KERNEL);
2086 if (ext_join_params == NULL) {
2090 ssid_len = min_t(u32, sme->ssid_len, IEEE80211_MAX_SSID_LEN);
2091 ext_join_params->ssid_le.SSID_len = cpu_to_le32(ssid_len);
2092 memcpy(&ext_join_params->ssid_le.SSID, sme->ssid, ssid_len);
2093 if (ssid_len < IEEE80211_MAX_SSID_LEN)
2094 brcmf_dbg(CONN, "SSID \"%s\", len (%d)\n",
2095 ext_join_params->ssid_le.SSID, ssid_len);
2097 /* Set up join scan parameters */
2098 ext_join_params->scan_le.scan_type = -1;
2099 ext_join_params->scan_le.home_time = cpu_to_le32(-1);
2102 memcpy(&ext_join_params->assoc_le.bssid, sme->bssid, ETH_ALEN);
2104 eth_broadcast_addr(ext_join_params->assoc_le.bssid);
2107 ext_join_params->assoc_le.chanspec_num = cpu_to_le32(1);
2109 ext_join_params->assoc_le.chanspec_list[0] =
2110 cpu_to_le16(chanspec);
2111 /* Increase dwell time to receive probe response or detect
2112 * beacon from target AP at a noisy air only during connect
2115 ext_join_params->scan_le.active_time =
2116 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS);
2117 ext_join_params->scan_le.passive_time =
2118 cpu_to_le32(BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS);
2119 /* To sync with presence period of VSDB GO send probe request
2120 * more frequently. Probe request will be stopped when it gets
2121 * probe response from target AP/GO.
2123 ext_join_params->scan_le.nprobes =
2124 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS /
2125 BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS);
2127 ext_join_params->scan_le.active_time = cpu_to_le32(-1);
2128 ext_join_params->scan_le.passive_time = cpu_to_le32(-1);
2129 ext_join_params->scan_le.nprobes = cpu_to_le32(-1);
2132 brcmf_set_join_pref(ifp, &sme->bss_select);
2134 err = brcmf_fil_bsscfg_data_set(ifp, "join", ext_join_params,
2136 kfree(ext_join_params);
2138 /* This is it. join command worked, we are done */
2141 /* join command failed, fallback to set ssid */
2142 memset(&join_params, 0, sizeof(join_params));
2143 join_params_size = sizeof(join_params.ssid_le);
2145 memcpy(&join_params.ssid_le.SSID, sme->ssid, ssid_len);
2146 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
2149 memcpy(join_params.params_le.bssid, sme->bssid, ETH_ALEN);
2151 eth_broadcast_addr(join_params.params_le.bssid);
2154 join_params.params_le.chanspec_list[0] = cpu_to_le16(chanspec);
2155 join_params.params_le.chanspec_num = cpu_to_le32(1);
2156 join_params_size += sizeof(join_params.params_le);
2158 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
2159 &join_params, join_params_size);
2161 brcmf_err("BRCMF_C_SET_SSID failed (%d)\n", err);
2165 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2166 brcmf_dbg(TRACE, "Exit\n");
2171 brcmf_cfg80211_disconnect(struct wiphy *wiphy, struct net_device *ndev,
2174 struct brcmf_if *ifp = netdev_priv(ndev);
2175 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2176 struct brcmf_scb_val_le scbval;
2179 brcmf_dbg(TRACE, "Enter. Reason code = %d\n", reason_code);
2180 if (!check_vif_up(ifp->vif))
2183 clear_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
2184 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2185 cfg80211_disconnected(ndev, reason_code, NULL, 0, true, GFP_KERNEL);
2187 memcpy(&scbval.ea, &profile->bssid, ETH_ALEN);
2188 scbval.val = cpu_to_le32(reason_code);
2189 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_DISASSOC,
2190 &scbval, sizeof(scbval));
2192 brcmf_err("error (%d)\n", err);
2194 brcmf_dbg(TRACE, "Exit\n");
2199 brcmf_cfg80211_set_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2200 enum nl80211_tx_power_setting type, s32 mbm)
2202 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2203 struct net_device *ndev = cfg_to_ndev(cfg);
2204 struct brcmf_if *ifp = netdev_priv(ndev);
2209 brcmf_dbg(TRACE, "Enter %d %d\n", type, mbm);
2210 if (!check_vif_up(ifp->vif))
2214 case NL80211_TX_POWER_AUTOMATIC:
2216 case NL80211_TX_POWER_LIMITED:
2217 case NL80211_TX_POWER_FIXED:
2219 brcmf_err("TX_POWER_FIXED - dbm is negative\n");
2223 qdbm = MBM_TO_DBM(4 * mbm);
2226 qdbm |= WL_TXPWR_OVERRIDE;
2229 brcmf_err("Unsupported type %d\n", type);
2233 /* Make sure radio is off or on as far as software is concerned */
2234 disable = WL_RADIO_SW_DISABLE << 16;
2235 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_RADIO, disable);
2237 brcmf_err("WLC_SET_RADIO error (%d)\n", err);
2239 err = brcmf_fil_iovar_int_set(ifp, "qtxpower", qdbm);
2241 brcmf_err("qtxpower error (%d)\n", err);
2244 brcmf_dbg(TRACE, "Exit %d (qdbm)\n", qdbm & ~WL_TXPWR_OVERRIDE);
2249 brcmf_cfg80211_get_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2252 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2253 struct net_device *ndev = cfg_to_ndev(cfg);
2254 struct brcmf_if *ifp = netdev_priv(ndev);
2258 brcmf_dbg(TRACE, "Enter\n");
2259 if (!check_vif_up(ifp->vif))
2262 err = brcmf_fil_iovar_int_get(ifp, "qtxpower", &qdbm);
2264 brcmf_err("error (%d)\n", err);
2267 *dbm = (qdbm & ~WL_TXPWR_OVERRIDE) / 4;
2270 brcmf_dbg(TRACE, "Exit (0x%x %d)\n", qdbm, *dbm);
2275 brcmf_cfg80211_config_default_key(struct wiphy *wiphy, struct net_device *ndev,
2276 u8 key_idx, bool unicast, bool multicast)
2278 struct brcmf_if *ifp = netdev_priv(ndev);
2283 brcmf_dbg(TRACE, "Enter\n");
2284 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2285 if (!check_vif_up(ifp->vif))
2288 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2290 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2294 if (wsec & WEP_ENABLED) {
2295 /* Just select a new current key */
2297 err = brcmf_fil_cmd_int_set(ifp,
2298 BRCMF_C_SET_KEY_PRIMARY, index);
2300 brcmf_err("error (%d)\n", err);
2303 brcmf_dbg(TRACE, "Exit\n");
2308 brcmf_cfg80211_del_key(struct wiphy *wiphy, struct net_device *ndev,
2309 u8 key_idx, bool pairwise, const u8 *mac_addr)
2311 struct brcmf_if *ifp = netdev_priv(ndev);
2312 struct brcmf_wsec_key *key;
2315 brcmf_dbg(TRACE, "Enter\n");
2316 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2318 if (!check_vif_up(ifp->vif))
2321 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2322 /* we ignore this key index in this case */
2326 key = &ifp->vif->profile.key[key_idx];
2328 if (key->algo == CRYPTO_ALGO_OFF) {
2329 brcmf_dbg(CONN, "Ignore clearing of (never configured) key\n");
2333 memset(key, 0, sizeof(*key));
2334 key->index = (u32)key_idx;
2335 key->flags = BRCMF_PRIMARY_KEY;
2337 /* Clear the key/index */
2338 err = send_key_to_dongle(ifp, key);
2340 brcmf_dbg(TRACE, "Exit\n");
2345 brcmf_cfg80211_add_key(struct wiphy *wiphy, struct net_device *ndev,
2346 u8 key_idx, bool pairwise, const u8 *mac_addr,
2347 struct key_params *params)
2349 struct brcmf_if *ifp = netdev_priv(ndev);
2350 struct brcmf_wsec_key *key;
2357 brcmf_dbg(TRACE, "Enter\n");
2358 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2359 if (!check_vif_up(ifp->vif))
2362 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2363 /* we ignore this key index in this case */
2364 brcmf_err("invalid key index (%d)\n", key_idx);
2368 if (params->key_len == 0)
2369 return brcmf_cfg80211_del_key(wiphy, ndev, key_idx, pairwise,
2372 if (params->key_len > sizeof(key->data)) {
2373 brcmf_err("Too long key length (%u)\n", params->key_len);
2378 if (mac_addr && (params->cipher != WLAN_CIPHER_SUITE_WEP40) &&
2379 (params->cipher != WLAN_CIPHER_SUITE_WEP104)) {
2380 brcmf_dbg(TRACE, "Ext key, mac %pM", mac_addr);
2384 key = &ifp->vif->profile.key[key_idx];
2385 memset(key, 0, sizeof(*key));
2386 if ((ext_key) && (!is_multicast_ether_addr(mac_addr)))
2387 memcpy((char *)&key->ea, (void *)mac_addr, ETH_ALEN);
2388 key->len = params->key_len;
2389 key->index = key_idx;
2390 memcpy(key->data, params->key, key->len);
2392 key->flags = BRCMF_PRIMARY_KEY;
2394 switch (params->cipher) {
2395 case WLAN_CIPHER_SUITE_WEP40:
2396 key->algo = CRYPTO_ALGO_WEP1;
2398 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2400 case WLAN_CIPHER_SUITE_WEP104:
2401 key->algo = CRYPTO_ALGO_WEP128;
2403 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2405 case WLAN_CIPHER_SUITE_TKIP:
2406 if (!brcmf_is_apmode(ifp->vif)) {
2407 brcmf_dbg(CONN, "Swapping RX/TX MIC key\n");
2408 memcpy(keybuf, &key->data[24], sizeof(keybuf));
2409 memcpy(&key->data[24], &key->data[16], sizeof(keybuf));
2410 memcpy(&key->data[16], keybuf, sizeof(keybuf));
2412 key->algo = CRYPTO_ALGO_TKIP;
2414 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2416 case WLAN_CIPHER_SUITE_AES_CMAC:
2417 key->algo = CRYPTO_ALGO_AES_CCM;
2419 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2421 case WLAN_CIPHER_SUITE_CCMP:
2422 key->algo = CRYPTO_ALGO_AES_CCM;
2424 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_CCMP\n");
2427 brcmf_err("Invalid cipher (0x%x)\n", params->cipher);
2432 err = send_key_to_dongle(ifp, key);
2436 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2438 brcmf_err("get wsec error (%d)\n", err);
2442 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2444 brcmf_err("set wsec error (%d)\n", err);
2449 brcmf_dbg(TRACE, "Exit\n");
2454 brcmf_cfg80211_get_key(struct wiphy *wiphy, struct net_device *ndev, u8 key_idx,
2455 bool pairwise, const u8 *mac_addr, void *cookie,
2456 void (*callback)(void *cookie,
2457 struct key_params *params))
2459 struct key_params params;
2460 struct brcmf_if *ifp = netdev_priv(ndev);
2461 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2462 struct brcmf_cfg80211_security *sec;
2466 brcmf_dbg(TRACE, "Enter\n");
2467 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2468 if (!check_vif_up(ifp->vif))
2471 memset(¶ms, 0, sizeof(params));
2473 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2475 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2476 /* Ignore this error, may happen during DISASSOC */
2480 if (wsec & WEP_ENABLED) {
2481 sec = &profile->sec;
2482 if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP40) {
2483 params.cipher = WLAN_CIPHER_SUITE_WEP40;
2484 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2485 } else if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP104) {
2486 params.cipher = WLAN_CIPHER_SUITE_WEP104;
2487 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2489 } else if (wsec & TKIP_ENABLED) {
2490 params.cipher = WLAN_CIPHER_SUITE_TKIP;
2491 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2492 } else if (wsec & AES_ENABLED) {
2493 params.cipher = WLAN_CIPHER_SUITE_AES_CMAC;
2494 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2496 brcmf_err("Invalid algo (0x%x)\n", wsec);
2500 callback(cookie, ¶ms);
2503 brcmf_dbg(TRACE, "Exit\n");
2508 brcmf_cfg80211_config_default_mgmt_key(struct wiphy *wiphy,
2509 struct net_device *ndev, u8 key_idx)
2511 struct brcmf_if *ifp = netdev_priv(ndev);
2513 brcmf_dbg(TRACE, "Enter key_idx %d\n", key_idx);
2515 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
2518 brcmf_dbg(INFO, "Not supported\n");
2524 brcmf_cfg80211_reconfigure_wep(struct brcmf_if *ifp)
2528 struct brcmf_wsec_key *key;
2531 for (key_idx = 0; key_idx < BRCMF_MAX_DEFAULT_KEYS; key_idx++) {
2532 key = &ifp->vif->profile.key[key_idx];
2533 if ((key->algo == CRYPTO_ALGO_WEP1) ||
2534 (key->algo == CRYPTO_ALGO_WEP128))
2537 if (key_idx == BRCMF_MAX_DEFAULT_KEYS)
2540 err = send_key_to_dongle(ifp, key);
2542 brcmf_err("Setting WEP key failed (%d)\n", err);
2545 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2547 brcmf_err("get wsec error (%d)\n", err);
2550 wsec |= WEP_ENABLED;
2551 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2553 brcmf_err("set wsec error (%d)\n", err);
2556 static void brcmf_convert_sta_flags(u32 fw_sta_flags, struct station_info *si)
2558 struct nl80211_sta_flag_update *sfu;
2560 brcmf_dbg(TRACE, "flags %08x\n", fw_sta_flags);
2561 si->filled |= BIT(NL80211_STA_INFO_STA_FLAGS);
2562 sfu = &si->sta_flags;
2563 sfu->mask = BIT(NL80211_STA_FLAG_WME) |
2564 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
2565 BIT(NL80211_STA_FLAG_ASSOCIATED) |
2566 BIT(NL80211_STA_FLAG_AUTHORIZED);
2567 if (fw_sta_flags & BRCMF_STA_WME)
2568 sfu->set |= BIT(NL80211_STA_FLAG_WME);
2569 if (fw_sta_flags & BRCMF_STA_AUTHE)
2570 sfu->set |= BIT(NL80211_STA_FLAG_AUTHENTICATED);
2571 if (fw_sta_flags & BRCMF_STA_ASSOC)
2572 sfu->set |= BIT(NL80211_STA_FLAG_ASSOCIATED);
2573 if (fw_sta_flags & BRCMF_STA_AUTHO)
2574 sfu->set |= BIT(NL80211_STA_FLAG_AUTHORIZED);
2577 static void brcmf_fill_bss_param(struct brcmf_if *ifp, struct station_info *si)
2581 struct brcmf_bss_info_le bss_le;
2586 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2590 buf->len = cpu_to_le32(WL_BSS_INFO_MAX);
2591 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO, buf,
2594 brcmf_err("Failed to get bss info (%d)\n", err);
2597 si->filled |= BIT(NL80211_STA_INFO_BSS_PARAM);
2598 si->bss_param.beacon_interval = le16_to_cpu(buf->bss_le.beacon_period);
2599 si->bss_param.dtim_period = buf->bss_le.dtim_period;
2600 capability = le16_to_cpu(buf->bss_le.capability);
2601 if (capability & IEEE80211_HT_STBC_PARAM_DUAL_CTS_PROT)
2602 si->bss_param.flags |= BSS_PARAM_FLAGS_CTS_PROT;
2603 if (capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
2604 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_PREAMBLE;
2605 if (capability & WLAN_CAPABILITY_SHORT_SLOT_TIME)
2606 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_SLOT_TIME;
2613 brcmf_cfg80211_get_station_ibss(struct brcmf_if *ifp,
2614 struct station_info *sinfo)
2616 struct brcmf_scb_val_le scbval;
2617 struct brcmf_pktcnt_le pktcnt;
2622 /* Get the current tx rate */
2623 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_RATE, &rate);
2625 brcmf_err("BRCMF_C_GET_RATE error (%d)\n", err);
2628 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BITRATE);
2629 sinfo->txrate.legacy = rate * 5;
2631 memset(&scbval, 0, sizeof(scbval));
2632 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI, &scbval,
2635 brcmf_err("BRCMF_C_GET_RSSI error (%d)\n", err);
2638 rssi = le32_to_cpu(scbval.val);
2639 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL);
2640 sinfo->signal = rssi;
2642 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_GET_PKTCNTS, &pktcnt,
2645 brcmf_err("BRCMF_C_GET_GET_PKTCNTS error (%d)\n", err);
2648 sinfo->filled |= BIT(NL80211_STA_INFO_RX_PACKETS) |
2649 BIT(NL80211_STA_INFO_RX_DROP_MISC) |
2650 BIT(NL80211_STA_INFO_TX_PACKETS) |
2651 BIT(NL80211_STA_INFO_TX_FAILED);
2652 sinfo->rx_packets = le32_to_cpu(pktcnt.rx_good_pkt);
2653 sinfo->rx_dropped_misc = le32_to_cpu(pktcnt.rx_bad_pkt);
2654 sinfo->tx_packets = le32_to_cpu(pktcnt.tx_good_pkt);
2655 sinfo->tx_failed = le32_to_cpu(pktcnt.tx_bad_pkt);
2661 brcmf_cfg80211_get_station(struct wiphy *wiphy, struct net_device *ndev,
2662 const u8 *mac, struct station_info *sinfo)
2664 struct brcmf_if *ifp = netdev_priv(ndev);
2665 struct brcmf_scb_val_le scb_val;
2667 struct brcmf_sta_info_le sta_info_le;
2675 brcmf_dbg(TRACE, "Enter, MAC %pM\n", mac);
2676 if (!check_vif_up(ifp->vif))
2679 if (brcmf_is_ibssmode(ifp->vif))
2680 return brcmf_cfg80211_get_station_ibss(ifp, sinfo);
2682 memset(&sta_info_le, 0, sizeof(sta_info_le));
2683 memcpy(&sta_info_le, mac, ETH_ALEN);
2684 err = brcmf_fil_iovar_data_get(ifp, "tdls_sta_info",
2686 sizeof(sta_info_le));
2687 is_tdls_peer = !err;
2689 err = brcmf_fil_iovar_data_get(ifp, "sta_info",
2691 sizeof(sta_info_le));
2693 brcmf_err("GET STA INFO failed, %d\n", err);
2697 brcmf_dbg(TRACE, "version %d\n", le16_to_cpu(sta_info_le.ver));
2698 sinfo->filled = BIT(NL80211_STA_INFO_INACTIVE_TIME);
2699 sinfo->inactive_time = le32_to_cpu(sta_info_le.idle) * 1000;
2700 sta_flags = le32_to_cpu(sta_info_le.flags);
2701 brcmf_convert_sta_flags(sta_flags, sinfo);
2702 sinfo->sta_flags.mask |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2704 sinfo->sta_flags.set |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2706 sinfo->sta_flags.set &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
2707 if (sta_flags & BRCMF_STA_ASSOC) {
2708 sinfo->filled |= BIT(NL80211_STA_INFO_CONNECTED_TIME);
2709 sinfo->connected_time = le32_to_cpu(sta_info_le.in);
2710 brcmf_fill_bss_param(ifp, sinfo);
2712 if (sta_flags & BRCMF_STA_SCBSTATS) {
2713 sinfo->filled |= BIT(NL80211_STA_INFO_TX_FAILED);
2714 sinfo->tx_failed = le32_to_cpu(sta_info_le.tx_failures);
2715 sinfo->filled |= BIT(NL80211_STA_INFO_TX_PACKETS);
2716 sinfo->tx_packets = le32_to_cpu(sta_info_le.tx_pkts);
2717 sinfo->tx_packets += le32_to_cpu(sta_info_le.tx_mcast_pkts);
2718 sinfo->filled |= BIT(NL80211_STA_INFO_RX_PACKETS);
2719 sinfo->rx_packets = le32_to_cpu(sta_info_le.rx_ucast_pkts);
2720 sinfo->rx_packets += le32_to_cpu(sta_info_le.rx_mcast_pkts);
2721 if (sinfo->tx_packets) {
2722 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BITRATE);
2723 sinfo->txrate.legacy =
2724 le32_to_cpu(sta_info_le.tx_rate) / 100;
2726 if (sinfo->rx_packets) {
2727 sinfo->filled |= BIT(NL80211_STA_INFO_RX_BITRATE);
2728 sinfo->rxrate.legacy =
2729 le32_to_cpu(sta_info_le.rx_rate) / 100;
2731 if (le16_to_cpu(sta_info_le.ver) >= 4) {
2732 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BYTES);
2733 sinfo->tx_bytes = le64_to_cpu(sta_info_le.tx_tot_bytes);
2734 sinfo->filled |= BIT(NL80211_STA_INFO_RX_BYTES);
2735 sinfo->rx_bytes = le64_to_cpu(sta_info_le.rx_tot_bytes);
2739 for (i = 0; i < BRCMF_ANT_MAX; i++) {
2740 if (sta_info_le.rssi[i]) {
2741 sinfo->chain_signal_avg[count_rssi] =
2742 sta_info_le.rssi[i];
2743 sinfo->chain_signal[count_rssi] =
2744 sta_info_le.rssi[i];
2745 total_rssi += sta_info_le.rssi[i];
2750 sinfo->filled |= BIT(NL80211_STA_INFO_CHAIN_SIGNAL);
2751 sinfo->chains = count_rssi;
2753 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL);
2754 total_rssi /= count_rssi;
2755 sinfo->signal = total_rssi;
2756 } else if (test_bit(BRCMF_VIF_STATUS_CONNECTED,
2757 &ifp->vif->sme_state)) {
2758 memset(&scb_val, 0, sizeof(scb_val));
2759 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI,
2760 &scb_val, sizeof(scb_val));
2762 brcmf_err("Could not get rssi (%d)\n", err);
2765 rssi = le32_to_cpu(scb_val.val);
2766 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL);
2767 sinfo->signal = rssi;
2768 brcmf_dbg(CONN, "RSSI %d dBm\n", rssi);
2773 brcmf_dbg(TRACE, "Exit\n");
2778 brcmf_cfg80211_dump_station(struct wiphy *wiphy, struct net_device *ndev,
2779 int idx, u8 *mac, struct station_info *sinfo)
2781 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2782 struct brcmf_if *ifp = netdev_priv(ndev);
2785 brcmf_dbg(TRACE, "Enter, idx %d\n", idx);
2788 cfg->assoclist.count = cpu_to_le32(BRCMF_MAX_ASSOCLIST);
2789 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_ASSOCLIST,
2791 sizeof(cfg->assoclist));
2793 brcmf_err("BRCMF_C_GET_ASSOCLIST unsupported, err=%d\n",
2795 cfg->assoclist.count = 0;
2799 if (idx < le32_to_cpu(cfg->assoclist.count)) {
2800 memcpy(mac, cfg->assoclist.mac[idx], ETH_ALEN);
2801 return brcmf_cfg80211_get_station(wiphy, ndev, mac, sinfo);
2807 brcmf_cfg80211_set_power_mgmt(struct wiphy *wiphy, struct net_device *ndev,
2808 bool enabled, s32 timeout)
2812 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2813 struct brcmf_if *ifp = netdev_priv(ndev);
2815 brcmf_dbg(TRACE, "Enter\n");
2818 * Powersave enable/disable request is coming from the
2819 * cfg80211 even before the interface is up. In that
2820 * scenario, driver will be storing the power save
2821 * preference in cfg struct to apply this to
2822 * FW later while initializing the dongle
2824 cfg->pwr_save = enabled;
2825 if (!check_vif_up(ifp->vif)) {
2827 brcmf_dbg(INFO, "Device is not ready, storing the value in cfg_info struct\n");
2831 pm = enabled ? PM_FAST : PM_OFF;
2832 /* Do not enable the power save after assoc if it is a p2p interface */
2833 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) {
2834 brcmf_dbg(INFO, "Do not enable power save for P2P clients\n");
2837 brcmf_dbg(INFO, "power save %s\n", (pm ? "enabled" : "disabled"));
2839 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, pm);
2842 brcmf_err("net_device is not ready yet\n");
2844 brcmf_err("error (%d)\n", err);
2847 brcmf_dbg(TRACE, "Exit\n");
2851 static s32 brcmf_inform_single_bss(struct brcmf_cfg80211_info *cfg,
2852 struct brcmf_bss_info_le *bi)
2854 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2855 struct ieee80211_channel *notify_channel;
2856 struct cfg80211_bss *bss;
2857 struct ieee80211_supported_band *band;
2858 struct brcmu_chan ch;
2861 u16 notify_capability;
2862 u16 notify_interval;
2864 size_t notify_ielen;
2867 if (le32_to_cpu(bi->length) > WL_BSS_INFO_MAX) {
2868 brcmf_err("Bss info is larger than buffer. Discarding\n");
2873 ch.chspec = le16_to_cpu(bi->chanspec);
2874 cfg->d11inf.decchspec(&ch);
2875 bi->ctl_ch = ch.control_ch_num;
2877 channel = bi->ctl_ch;
2879 if (channel <= CH_MAX_2G_CHANNEL)
2880 band = wiphy->bands[NL80211_BAND_2GHZ];
2882 band = wiphy->bands[NL80211_BAND_5GHZ];
2884 freq = ieee80211_channel_to_frequency(channel, band->band);
2885 notify_channel = ieee80211_get_channel(wiphy, freq);
2887 notify_capability = le16_to_cpu(bi->capability);
2888 notify_interval = le16_to_cpu(bi->beacon_period);
2889 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2890 notify_ielen = le32_to_cpu(bi->ie_length);
2891 notify_signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2893 brcmf_dbg(CONN, "bssid: %pM\n", bi->BSSID);
2894 brcmf_dbg(CONN, "Channel: %d(%d)\n", channel, freq);
2895 brcmf_dbg(CONN, "Capability: %X\n", notify_capability);
2896 brcmf_dbg(CONN, "Beacon interval: %d\n", notify_interval);
2897 brcmf_dbg(CONN, "Signal: %d\n", notify_signal);
2899 bss = cfg80211_inform_bss(wiphy, notify_channel,
2900 CFG80211_BSS_FTYPE_UNKNOWN,
2901 (const u8 *)bi->BSSID,
2902 0, notify_capability,
2903 notify_interval, notify_ie,
2904 notify_ielen, notify_signal,
2910 cfg80211_put_bss(wiphy, bss);
2915 static struct brcmf_bss_info_le *
2916 next_bss_le(struct brcmf_scan_results *list, struct brcmf_bss_info_le *bss)
2919 return list->bss_info_le;
2920 return (struct brcmf_bss_info_le *)((unsigned long)bss +
2921 le32_to_cpu(bss->length));
2924 static s32 brcmf_inform_bss(struct brcmf_cfg80211_info *cfg)
2926 struct brcmf_scan_results *bss_list;
2927 struct brcmf_bss_info_le *bi = NULL; /* must be initialized */
2931 bss_list = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
2932 if (bss_list->count != 0 &&
2933 bss_list->version != BRCMF_BSS_INFO_VERSION) {
2934 brcmf_err("Version %d != WL_BSS_INFO_VERSION\n",
2938 brcmf_dbg(SCAN, "scanned AP count (%d)\n", bss_list->count);
2939 for (i = 0; i < bss_list->count; i++) {
2940 bi = next_bss_le(bss_list, bi);
2941 err = brcmf_inform_single_bss(cfg, bi);
2948 static s32 brcmf_inform_ibss(struct brcmf_cfg80211_info *cfg,
2949 struct net_device *ndev, const u8 *bssid)
2951 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2952 struct ieee80211_channel *notify_channel;
2953 struct brcmf_bss_info_le *bi = NULL;
2954 struct ieee80211_supported_band *band;
2955 struct cfg80211_bss *bss;
2956 struct brcmu_chan ch;
2960 u16 notify_capability;
2961 u16 notify_interval;
2963 size_t notify_ielen;
2966 brcmf_dbg(TRACE, "Enter\n");
2968 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2974 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
2976 err = brcmf_fil_cmd_data_get(netdev_priv(ndev), BRCMF_C_GET_BSS_INFO,
2977 buf, WL_BSS_INFO_MAX);
2979 brcmf_err("WLC_GET_BSS_INFO failed: %d\n", err);
2983 bi = (struct brcmf_bss_info_le *)(buf + 4);
2985 ch.chspec = le16_to_cpu(bi->chanspec);
2986 cfg->d11inf.decchspec(&ch);
2988 if (ch.band == BRCMU_CHAN_BAND_2G)
2989 band = wiphy->bands[NL80211_BAND_2GHZ];
2991 band = wiphy->bands[NL80211_BAND_5GHZ];
2993 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
2994 cfg->channel = freq;
2995 notify_channel = ieee80211_get_channel(wiphy, freq);
2997 notify_capability = le16_to_cpu(bi->capability);
2998 notify_interval = le16_to_cpu(bi->beacon_period);
2999 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
3000 notify_ielen = le32_to_cpu(bi->ie_length);
3001 notify_signal = (s16)le16_to_cpu(bi->RSSI) * 100;
3003 brcmf_dbg(CONN, "channel: %d(%d)\n", ch.control_ch_num, freq);
3004 brcmf_dbg(CONN, "capability: %X\n", notify_capability);
3005 brcmf_dbg(CONN, "beacon interval: %d\n", notify_interval);
3006 brcmf_dbg(CONN, "signal: %d\n", notify_signal);
3008 bss = cfg80211_inform_bss(wiphy, notify_channel,
3009 CFG80211_BSS_FTYPE_UNKNOWN, bssid, 0,
3010 notify_capability, notify_interval,
3011 notify_ie, notify_ielen, notify_signal,
3019 cfg80211_put_bss(wiphy, bss);
3025 brcmf_dbg(TRACE, "Exit\n");
3030 static s32 brcmf_update_bss_info(struct brcmf_cfg80211_info *cfg,
3031 struct brcmf_if *ifp)
3033 struct brcmf_bss_info_le *bi;
3034 const struct brcmf_tlv *tim;
3035 u16 beacon_interval;
3041 brcmf_dbg(TRACE, "Enter\n");
3042 if (brcmf_is_ibssmode(ifp->vif))
3045 *(__le32 *)cfg->extra_buf = cpu_to_le32(WL_EXTRA_BUF_MAX);
3046 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
3047 cfg->extra_buf, WL_EXTRA_BUF_MAX);
3049 brcmf_err("Could not get bss info %d\n", err);
3050 goto update_bss_info_out;
3053 bi = (struct brcmf_bss_info_le *)(cfg->extra_buf + 4);
3054 err = brcmf_inform_single_bss(cfg, bi);
3056 goto update_bss_info_out;
3058 ie = ((u8 *)bi) + le16_to_cpu(bi->ie_offset);
3059 ie_len = le32_to_cpu(bi->ie_length);
3060 beacon_interval = le16_to_cpu(bi->beacon_period);
3062 tim = brcmf_parse_tlvs(ie, ie_len, WLAN_EID_TIM);
3064 dtim_period = tim->data[1];
3067 * active scan was done so we could not get dtim
3068 * information out of probe response.
3069 * so we speficially query dtim information to dongle.
3072 err = brcmf_fil_iovar_int_get(ifp, "dtim_assoc", &var);
3074 brcmf_err("wl dtim_assoc failed (%d)\n", err);
3075 goto update_bss_info_out;
3077 dtim_period = (u8)var;
3080 update_bss_info_out:
3081 brcmf_dbg(TRACE, "Exit");
3085 void brcmf_abort_scanning(struct brcmf_cfg80211_info *cfg)
3087 struct escan_info *escan = &cfg->escan_info;
3089 set_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
3090 if (cfg->int_escan_map || cfg->scan_request) {
3091 escan->escan_state = WL_ESCAN_STATE_IDLE;
3092 brcmf_notify_escan_complete(cfg, escan->ifp, true, true);
3094 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3095 clear_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
3098 static void brcmf_cfg80211_escan_timeout_worker(struct work_struct *work)
3100 struct brcmf_cfg80211_info *cfg =
3101 container_of(work, struct brcmf_cfg80211_info,
3102 escan_timeout_work);
3104 brcmf_inform_bss(cfg);
3105 brcmf_notify_escan_complete(cfg, cfg->escan_info.ifp, true, true);
3108 static void brcmf_escan_timeout(unsigned long data)
3110 struct brcmf_cfg80211_info *cfg =
3111 (struct brcmf_cfg80211_info *)data;
3113 if (cfg->int_escan_map || cfg->scan_request) {
3114 brcmf_err("timer expired\n");
3115 schedule_work(&cfg->escan_timeout_work);
3120 brcmf_compare_update_same_bss(struct brcmf_cfg80211_info *cfg,
3121 struct brcmf_bss_info_le *bss,
3122 struct brcmf_bss_info_le *bss_info_le)
3124 struct brcmu_chan ch_bss, ch_bss_info_le;
3126 ch_bss.chspec = le16_to_cpu(bss->chanspec);
3127 cfg->d11inf.decchspec(&ch_bss);
3128 ch_bss_info_le.chspec = le16_to_cpu(bss_info_le->chanspec);
3129 cfg->d11inf.decchspec(&ch_bss_info_le);
3131 if (!memcmp(&bss_info_le->BSSID, &bss->BSSID, ETH_ALEN) &&
3132 ch_bss.band == ch_bss_info_le.band &&
3133 bss_info_le->SSID_len == bss->SSID_len &&
3134 !memcmp(bss_info_le->SSID, bss->SSID, bss_info_le->SSID_len)) {
3135 if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) ==
3136 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL)) {
3137 s16 bss_rssi = le16_to_cpu(bss->RSSI);
3138 s16 bss_info_rssi = le16_to_cpu(bss_info_le->RSSI);
3140 /* preserve max RSSI if the measurements are
3141 * both on-channel or both off-channel
3143 if (bss_info_rssi > bss_rssi)
3144 bss->RSSI = bss_info_le->RSSI;
3145 } else if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) &&
3146 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL) == 0) {
3147 /* preserve the on-channel rssi measurement
3148 * if the new measurement is off channel
3150 bss->RSSI = bss_info_le->RSSI;
3151 bss->flags |= BRCMF_BSS_RSSI_ON_CHANNEL;
3159 brcmf_cfg80211_escan_handler(struct brcmf_if *ifp,
3160 const struct brcmf_event_msg *e, void *data)
3162 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3164 struct brcmf_escan_result_le *escan_result_le;
3165 struct brcmf_bss_info_le *bss_info_le;
3166 struct brcmf_bss_info_le *bss = NULL;
3168 struct brcmf_scan_results *list;
3174 if (status == BRCMF_E_STATUS_ABORT)
3177 if (!test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3178 brcmf_err("scan not ready, bsscfgidx=%d\n", ifp->bsscfgidx);
3182 if (status == BRCMF_E_STATUS_PARTIAL) {
3183 brcmf_dbg(SCAN, "ESCAN Partial result\n");
3184 escan_result_le = (struct brcmf_escan_result_le *) data;
3185 if (!escan_result_le) {
3186 brcmf_err("Invalid escan result (NULL pointer)\n");
3189 if (le16_to_cpu(escan_result_le->bss_count) != 1) {
3190 brcmf_err("Invalid bss_count %d: ignoring\n",
3191 escan_result_le->bss_count);
3194 bss_info_le = &escan_result_le->bss_info_le;
3196 if (brcmf_p2p_scan_finding_common_channel(cfg, bss_info_le))
3199 if (!cfg->int_escan_map && !cfg->scan_request) {
3200 brcmf_dbg(SCAN, "result without cfg80211 request\n");
3204 bi_length = le32_to_cpu(bss_info_le->length);
3205 if (bi_length != (le32_to_cpu(escan_result_le->buflen) -
3206 WL_ESCAN_RESULTS_FIXED_SIZE)) {
3207 brcmf_err("Invalid bss_info length %d: ignoring\n",
3212 if (!(cfg_to_wiphy(cfg)->interface_modes &
3213 BIT(NL80211_IFTYPE_ADHOC))) {
3214 if (le16_to_cpu(bss_info_le->capability) &
3215 WLAN_CAPABILITY_IBSS) {
3216 brcmf_err("Ignoring IBSS result\n");
3221 list = (struct brcmf_scan_results *)
3222 cfg->escan_info.escan_buf;
3223 if (bi_length > BRCMF_ESCAN_BUF_SIZE - list->buflen) {
3224 brcmf_err("Buffer is too small: ignoring\n");
3228 for (i = 0; i < list->count; i++) {
3229 bss = bss ? (struct brcmf_bss_info_le *)
3230 ((unsigned char *)bss +
3231 le32_to_cpu(bss->length)) : list->bss_info_le;
3232 if (brcmf_compare_update_same_bss(cfg, bss,
3236 memcpy(&cfg->escan_info.escan_buf[list->buflen], bss_info_le,
3238 list->version = le32_to_cpu(bss_info_le->version);
3239 list->buflen += bi_length;
3242 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3243 if (brcmf_p2p_scan_finding_common_channel(cfg, NULL))
3245 if (cfg->int_escan_map || cfg->scan_request) {
3246 brcmf_inform_bss(cfg);
3247 aborted = status != BRCMF_E_STATUS_SUCCESS;
3248 brcmf_notify_escan_complete(cfg, ifp, aborted, false);
3250 brcmf_dbg(SCAN, "Ignored scan complete result 0x%x\n",
3257 static void brcmf_init_escan(struct brcmf_cfg80211_info *cfg)
3259 brcmf_fweh_register(cfg->pub, BRCMF_E_ESCAN_RESULT,
3260 brcmf_cfg80211_escan_handler);
3261 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3262 /* Init scan_timeout timer */
3263 init_timer(&cfg->escan_timeout);
3264 cfg->escan_timeout.data = (unsigned long) cfg;
3265 cfg->escan_timeout.function = brcmf_escan_timeout;
3266 INIT_WORK(&cfg->escan_timeout_work,
3267 brcmf_cfg80211_escan_timeout_worker);
3270 static struct cfg80211_scan_request *
3271 brcmf_alloc_internal_escan_request(struct wiphy *wiphy, u32 n_netinfo) {
3272 struct cfg80211_scan_request *req;
3275 req_size = sizeof(*req) +
3276 n_netinfo * sizeof(req->channels[0]) +
3277 n_netinfo * sizeof(*req->ssids);
3279 req = kzalloc(req_size, GFP_KERNEL);
3282 req->ssids = (void *)(&req->channels[0]) +
3283 n_netinfo * sizeof(req->channels[0]);
3288 static int brcmf_internal_escan_add_info(struct cfg80211_scan_request *req,
3289 u8 *ssid, u8 ssid_len, u8 channel)
3291 struct ieee80211_channel *chan;
3292 enum nl80211_band band;
3295 if (channel <= CH_MAX_2G_CHANNEL)
3296 band = NL80211_BAND_2GHZ;
3298 band = NL80211_BAND_5GHZ;
3300 freq = ieee80211_channel_to_frequency(channel, band);
3304 chan = ieee80211_get_channel(req->wiphy, freq);
3308 for (i = 0; i < req->n_channels; i++) {
3309 if (req->channels[i] == chan)
3312 if (i == req->n_channels)
3313 req->channels[req->n_channels++] = chan;
3315 for (i = 0; i < req->n_ssids; i++) {
3316 if (req->ssids[i].ssid_len == ssid_len &&
3317 !memcmp(req->ssids[i].ssid, ssid, ssid_len))
3320 if (i == req->n_ssids) {
3321 memcpy(req->ssids[req->n_ssids].ssid, ssid, ssid_len);
3322 req->ssids[req->n_ssids++].ssid_len = ssid_len;
3327 static int brcmf_start_internal_escan(struct brcmf_if *ifp, u32 fwmap,
3328 struct cfg80211_scan_request *request)
3330 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3333 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3334 if (cfg->int_escan_map)
3335 brcmf_dbg(SCAN, "aborting internal scan: map=%u\n",
3336 cfg->int_escan_map);
3337 /* Abort any on-going scan */
3338 brcmf_abort_scanning(cfg);
3341 brcmf_dbg(SCAN, "start internal scan: map=%u\n", fwmap);
3342 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3343 cfg->escan_info.run = brcmf_run_escan;
3344 err = brcmf_do_escan(ifp, request);
3346 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3349 cfg->int_escan_map = fwmap;
3353 static struct brcmf_pno_net_info_le *
3354 brcmf_get_netinfo_array(struct brcmf_pno_scanresults_le *pfn_v1)
3356 struct brcmf_pno_scanresults_v2_le *pfn_v2;
3357 struct brcmf_pno_net_info_le *netinfo;
3359 switch (pfn_v1->version) {
3363 case cpu_to_le32(1):
3364 netinfo = (struct brcmf_pno_net_info_le *)(pfn_v1 + 1);
3366 case cpu_to_le32(2):
3367 pfn_v2 = (struct brcmf_pno_scanresults_v2_le *)pfn_v1;
3368 netinfo = (struct brcmf_pno_net_info_le *)(pfn_v2 + 1);
3375 /* PFN result doesn't have all the info which are required by the supplicant
3376 * (For e.g IEs) Do a target Escan so that sched scan results are reported
3377 * via wl_inform_single_bss in the required format. Escan does require the
3378 * scan request in the form of cfg80211_scan_request. For timebeing, create
3379 * cfg80211_scan_request one out of the received PNO event.
3382 brcmf_notify_sched_scan_results(struct brcmf_if *ifp,
3383 const struct brcmf_event_msg *e, void *data)
3385 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3386 struct brcmf_pno_net_info_le *netinfo, *netinfo_start;
3387 struct cfg80211_scan_request *request = NULL;
3388 struct wiphy *wiphy = cfg_to_wiphy(cfg);
3390 struct brcmf_pno_scanresults_le *pfn_result;
3396 brcmf_dbg(SCAN, "Enter\n");
3398 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3399 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3403 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3404 brcmf_dbg(SCAN, "PFN NET LOST event. Do Nothing\n");
3408 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3409 result_count = le32_to_cpu(pfn_result->count);
3410 status = le32_to_cpu(pfn_result->status);
3412 /* PFN event is limited to fit 512 bytes so we may get
3413 * multiple NET_FOUND events. For now place a warning here.
3415 WARN_ON(status != BRCMF_PNO_SCAN_COMPLETE);
3416 brcmf_dbg(SCAN, "PFN NET FOUND event. count: %d\n", result_count);
3417 if (!result_count) {
3418 brcmf_err("FALSE PNO Event. (pfn_count == 0)\n");
3422 netinfo_start = brcmf_get_netinfo_array(pfn_result);
3423 datalen = e->datalen - ((void *)netinfo_start - (void *)pfn_result);
3424 if (datalen < result_count * sizeof(*netinfo)) {
3425 brcmf_err("insufficient event data\n");
3429 request = brcmf_alloc_internal_escan_request(wiphy,
3437 for (i = 0; i < result_count; i++) {
3438 netinfo = &netinfo_start[i];
3440 if (netinfo->SSID_len > IEEE80211_MAX_SSID_LEN)
3441 netinfo->SSID_len = IEEE80211_MAX_SSID_LEN;
3442 brcmf_dbg(SCAN, "SSID:%.32s Channel:%d\n",
3443 netinfo->SSID, netinfo->channel);
3444 bucket_map |= brcmf_pno_get_bucket_map(cfg->pno, netinfo);
3445 err = brcmf_internal_escan_add_info(request,
3456 err = brcmf_start_internal_escan(ifp, bucket_map, request);
3461 cfg80211_sched_scan_stopped(wiphy, 0);
3468 brcmf_cfg80211_sched_scan_start(struct wiphy *wiphy,
3469 struct net_device *ndev,
3470 struct cfg80211_sched_scan_request *req)
3472 struct brcmf_if *ifp = netdev_priv(ndev);
3473 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
3475 brcmf_dbg(SCAN, "Enter: n_match_sets=%d n_ssids=%d\n",
3476 req->n_match_sets, req->n_ssids);
3478 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
3479 brcmf_err("Scanning suppressed: status=%lu\n",
3484 if (req->n_match_sets <= 0) {
3485 brcmf_dbg(SCAN, "invalid number of matchsets specified: %d\n",
3490 return brcmf_pno_start_sched_scan(ifp, req);
3493 static int brcmf_cfg80211_sched_scan_stop(struct wiphy *wiphy,
3494 struct net_device *ndev, u64 reqid)
3496 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3497 struct brcmf_if *ifp = netdev_priv(ndev);
3499 brcmf_dbg(SCAN, "enter\n");
3500 brcmf_pno_stop_sched_scan(ifp, reqid);
3501 if (cfg->int_escan_map)
3502 brcmf_notify_escan_complete(cfg, ifp, true, true);
3506 static __always_inline void brcmf_delay(u32 ms)
3508 if (ms < 1000 / HZ) {
3516 static s32 brcmf_config_wowl_pattern(struct brcmf_if *ifp, u8 cmd[4],
3517 u8 *pattern, u32 patternsize, u8 *mask,
3520 struct brcmf_fil_wowl_pattern_le *filter;
3527 masksize = (patternsize + 7) / 8;
3528 patternoffset = sizeof(*filter) - sizeof(filter->cmd) + masksize;
3530 bufsize = sizeof(*filter) + patternsize + masksize;
3531 buf = kzalloc(bufsize, GFP_KERNEL);
3534 filter = (struct brcmf_fil_wowl_pattern_le *)buf;
3536 memcpy(filter->cmd, cmd, 4);
3537 filter->masksize = cpu_to_le32(masksize);
3538 filter->offset = cpu_to_le32(packet_offset);
3539 filter->patternoffset = cpu_to_le32(patternoffset);
3540 filter->patternsize = cpu_to_le32(patternsize);
3541 filter->type = cpu_to_le32(BRCMF_WOWL_PATTERN_TYPE_BITMAP);
3543 if ((mask) && (masksize))
3544 memcpy(buf + sizeof(*filter), mask, masksize);
3545 if ((pattern) && (patternsize))
3546 memcpy(buf + sizeof(*filter) + masksize, pattern, patternsize);
3548 ret = brcmf_fil_iovar_data_set(ifp, "wowl_pattern", buf, bufsize);
3555 brcmf_wowl_nd_results(struct brcmf_if *ifp, const struct brcmf_event_msg *e,
3558 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3559 struct brcmf_pno_scanresults_le *pfn_result;
3560 struct brcmf_pno_net_info_le *netinfo;
3562 brcmf_dbg(SCAN, "Enter\n");
3564 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3565 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3569 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3571 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3572 brcmf_dbg(SCAN, "PFN NET LOST event. Ignore\n");
3576 if (le32_to_cpu(pfn_result->count) < 1) {
3577 brcmf_err("Invalid result count, expected 1 (%d)\n",
3578 le32_to_cpu(pfn_result->count));
3582 netinfo = brcmf_get_netinfo_array(pfn_result);
3583 memcpy(cfg->wowl.nd->ssid.ssid, netinfo->SSID, netinfo->SSID_len);
3584 cfg->wowl.nd->ssid.ssid_len = netinfo->SSID_len;
3585 cfg->wowl.nd->n_channels = 1;
3586 cfg->wowl.nd->channels[0] =
3587 ieee80211_channel_to_frequency(netinfo->channel,
3588 netinfo->channel <= CH_MAX_2G_CHANNEL ?
3589 NL80211_BAND_2GHZ : NL80211_BAND_5GHZ);
3590 cfg->wowl.nd_info->n_matches = 1;
3591 cfg->wowl.nd_info->matches[0] = cfg->wowl.nd;
3593 /* Inform (the resume task) that the net detect information was recvd */
3594 cfg->wowl.nd_data_completed = true;
3595 wake_up(&cfg->wowl.nd_data_wait);
3602 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3604 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3605 struct brcmf_wowl_wakeind_le wake_ind_le;
3606 struct cfg80211_wowlan_wakeup wakeup_data;
3607 struct cfg80211_wowlan_wakeup *wakeup;
3612 err = brcmf_fil_iovar_data_get(ifp, "wowl_wakeind", &wake_ind_le,
3613 sizeof(wake_ind_le));
3615 brcmf_err("Get wowl_wakeind failed, err = %d\n", err);
3619 wakeind = le32_to_cpu(wake_ind_le.ucode_wakeind);
3620 if (wakeind & (BRCMF_WOWL_MAGIC | BRCMF_WOWL_DIS | BRCMF_WOWL_BCN |
3621 BRCMF_WOWL_RETR | BRCMF_WOWL_NET |
3622 BRCMF_WOWL_PFN_FOUND)) {
3623 wakeup = &wakeup_data;
3624 memset(&wakeup_data, 0, sizeof(wakeup_data));
3625 wakeup_data.pattern_idx = -1;
3627 if (wakeind & BRCMF_WOWL_MAGIC) {
3628 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_MAGIC\n");
3629 wakeup_data.magic_pkt = true;
3631 if (wakeind & BRCMF_WOWL_DIS) {
3632 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_DIS\n");
3633 wakeup_data.disconnect = true;
3635 if (wakeind & BRCMF_WOWL_BCN) {
3636 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_BCN\n");
3637 wakeup_data.disconnect = true;
3639 if (wakeind & BRCMF_WOWL_RETR) {
3640 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_RETR\n");
3641 wakeup_data.disconnect = true;
3643 if (wakeind & BRCMF_WOWL_NET) {
3644 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_NET\n");
3645 /* For now always map to pattern 0, no API to get
3646 * correct information available at the moment.
3648 wakeup_data.pattern_idx = 0;
3650 if (wakeind & BRCMF_WOWL_PFN_FOUND) {
3651 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_PFN_FOUND\n");
3652 timeout = wait_event_timeout(cfg->wowl.nd_data_wait,
3653 cfg->wowl.nd_data_completed,
3654 BRCMF_ND_INFO_TIMEOUT);
3656 brcmf_err("No result for wowl net detect\n");
3658 wakeup_data.net_detect = cfg->wowl.nd_info;
3660 if (wakeind & BRCMF_WOWL_GTK_FAILURE) {
3661 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_GTK_FAILURE\n");
3662 wakeup_data.gtk_rekey_failure = true;
3667 cfg80211_report_wowlan_wakeup(&ifp->vif->wdev, wakeup, GFP_KERNEL);
3672 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3676 #endif /* CONFIG_PM */
3678 static s32 brcmf_cfg80211_resume(struct wiphy *wiphy)
3680 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3681 struct net_device *ndev = cfg_to_ndev(cfg);
3682 struct brcmf_if *ifp = netdev_priv(ndev);
3684 brcmf_dbg(TRACE, "Enter\n");
3686 if (cfg->wowl.active) {
3687 brcmf_report_wowl_wakeind(wiphy, ifp);
3688 brcmf_fil_iovar_int_set(ifp, "wowl_clear", 0);
3689 brcmf_config_wowl_pattern(ifp, "clr", NULL, 0, NULL, 0);
3690 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3691 brcmf_configure_arp_nd_offload(ifp, true);
3692 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM,
3693 cfg->wowl.pre_pmmode);
3694 cfg->wowl.active = false;
3695 if (cfg->wowl.nd_enabled) {
3696 brcmf_cfg80211_sched_scan_stop(cfg->wiphy, ifp->ndev, 0);
3697 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3698 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3699 brcmf_notify_sched_scan_results);
3700 cfg->wowl.nd_enabled = false;
3706 static void brcmf_configure_wowl(struct brcmf_cfg80211_info *cfg,
3707 struct brcmf_if *ifp,
3708 struct cfg80211_wowlan *wowl)
3711 struct brcmf_wowl_wakeind_le wowl_wakeind;
3714 brcmf_dbg(TRACE, "Suspend, wowl config.\n");
3716 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3717 brcmf_configure_arp_nd_offload(ifp, false);
3718 brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_PM, &cfg->wowl.pre_pmmode);
3719 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, PM_MAX);
3722 if (wowl->disconnect)
3723 wowl_config = BRCMF_WOWL_DIS | BRCMF_WOWL_BCN | BRCMF_WOWL_RETR;
3724 if (wowl->magic_pkt)
3725 wowl_config |= BRCMF_WOWL_MAGIC;
3726 if ((wowl->patterns) && (wowl->n_patterns)) {
3727 wowl_config |= BRCMF_WOWL_NET;
3728 for (i = 0; i < wowl->n_patterns; i++) {
3729 brcmf_config_wowl_pattern(ifp, "add",
3730 (u8 *)wowl->patterns[i].pattern,
3731 wowl->patterns[i].pattern_len,
3732 (u8 *)wowl->patterns[i].mask,
3733 wowl->patterns[i].pkt_offset);
3736 if (wowl->nd_config) {
3737 brcmf_cfg80211_sched_scan_start(cfg->wiphy, ifp->ndev,
3739 wowl_config |= BRCMF_WOWL_PFN_FOUND;
3741 cfg->wowl.nd_data_completed = false;
3742 cfg->wowl.nd_enabled = true;
3743 /* Now reroute the event for PFN to the wowl function. */
3744 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3745 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3746 brcmf_wowl_nd_results);
3748 if (wowl->gtk_rekey_failure)
3749 wowl_config |= BRCMF_WOWL_GTK_FAILURE;
3750 if (!test_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state))
3751 wowl_config |= BRCMF_WOWL_UNASSOC;
3753 memcpy(&wowl_wakeind, "clear", 6);
3754 brcmf_fil_iovar_data_set(ifp, "wowl_wakeind", &wowl_wakeind,
3755 sizeof(wowl_wakeind));
3756 brcmf_fil_iovar_int_set(ifp, "wowl", wowl_config);
3757 brcmf_fil_iovar_int_set(ifp, "wowl_activate", 1);
3758 brcmf_bus_wowl_config(cfg->pub->bus_if, true);
3759 cfg->wowl.active = true;
3762 static s32 brcmf_cfg80211_suspend(struct wiphy *wiphy,
3763 struct cfg80211_wowlan *wowl)
3765 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3766 struct net_device *ndev = cfg_to_ndev(cfg);
3767 struct brcmf_if *ifp = netdev_priv(ndev);
3768 struct brcmf_cfg80211_vif *vif;
3770 brcmf_dbg(TRACE, "Enter\n");
3772 /* if the primary net_device is not READY there is nothing
3773 * we can do but pray resume goes smoothly.
3775 if (!check_vif_up(ifp->vif))
3778 /* Stop scheduled scan */
3779 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO))
3780 brcmf_cfg80211_sched_scan_stop(wiphy, ndev, 0);
3782 /* end any scanning */
3783 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
3784 brcmf_abort_scanning(cfg);
3787 brcmf_bus_wowl_config(cfg->pub->bus_if, false);
3788 list_for_each_entry(vif, &cfg->vif_list, list) {
3789 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state))
3791 /* While going to suspend if associated with AP
3792 * disassociate from AP to save power while system is
3793 * in suspended state
3795 brcmf_link_down(vif, WLAN_REASON_UNSPECIFIED);
3796 /* Make sure WPA_Supplicant receives all the event
3797 * generated due to DISASSOC call to the fw to keep
3798 * the state fw and WPA_Supplicant state consistent
3803 brcmf_set_mpc(ifp, 1);
3806 /* Configure WOWL paramaters */
3807 brcmf_configure_wowl(cfg, ifp, wowl);
3811 brcmf_dbg(TRACE, "Exit\n");
3812 /* clear any scanning activity */
3813 cfg->scan_status = 0;
3818 brcmf_update_pmklist(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp)
3820 struct brcmf_pmk_list_le *pmk_list;
3825 pmk_list = &cfg->pmk_list;
3826 npmk = le32_to_cpu(pmk_list->npmk);
3828 brcmf_dbg(CONN, "No of elements %d\n", npmk);
3829 for (i = 0; i < npmk; i++)
3830 brcmf_dbg(CONN, "PMK[%d]: %pM\n", i, &pmk_list->pmk[i].bssid);
3832 err = brcmf_fil_iovar_data_set(ifp, "pmkid_info", pmk_list,
3839 brcmf_cfg80211_set_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3840 struct cfg80211_pmksa *pmksa)
3842 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3843 struct brcmf_if *ifp = netdev_priv(ndev);
3844 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3848 brcmf_dbg(TRACE, "Enter\n");
3849 if (!check_vif_up(ifp->vif))
3852 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3853 for (i = 0; i < npmk; i++)
3854 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3856 if (i < BRCMF_MAXPMKID) {
3857 memcpy(pmk[i].bssid, pmksa->bssid, ETH_ALEN);
3858 memcpy(pmk[i].pmkid, pmksa->pmkid, WLAN_PMKID_LEN);
3861 cfg->pmk_list.npmk = cpu_to_le32(npmk);
3864 brcmf_err("Too many PMKSA entries cached %d\n", npmk);
3868 brcmf_dbg(CONN, "set_pmksa - PMK bssid: %pM =\n", pmk[npmk].bssid);
3869 for (i = 0; i < WLAN_PMKID_LEN; i += 4)
3870 brcmf_dbg(CONN, "%02x %02x %02x %02x\n", pmk[npmk].pmkid[i],
3871 pmk[npmk].pmkid[i + 1], pmk[npmk].pmkid[i + 2],
3872 pmk[npmk].pmkid[i + 3]);
3874 err = brcmf_update_pmklist(cfg, ifp);
3876 brcmf_dbg(TRACE, "Exit\n");
3881 brcmf_cfg80211_del_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3882 struct cfg80211_pmksa *pmksa)
3884 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3885 struct brcmf_if *ifp = netdev_priv(ndev);
3886 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3890 brcmf_dbg(TRACE, "Enter\n");
3891 if (!check_vif_up(ifp->vif))
3894 brcmf_dbg(CONN, "del_pmksa - PMK bssid = %pM\n", pmksa->bssid);
3896 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3897 for (i = 0; i < npmk; i++)
3898 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3901 if ((npmk > 0) && (i < npmk)) {
3902 for (; i < (npmk - 1); i++) {
3903 memcpy(&pmk[i].bssid, &pmk[i + 1].bssid, ETH_ALEN);
3904 memcpy(&pmk[i].pmkid, &pmk[i + 1].pmkid,
3907 memset(&pmk[i], 0, sizeof(*pmk));
3908 cfg->pmk_list.npmk = cpu_to_le32(npmk - 1);
3910 brcmf_err("Cache entry not found\n");
3914 err = brcmf_update_pmklist(cfg, ifp);
3916 brcmf_dbg(TRACE, "Exit\n");
3922 brcmf_cfg80211_flush_pmksa(struct wiphy *wiphy, struct net_device *ndev)
3924 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3925 struct brcmf_if *ifp = netdev_priv(ndev);
3928 brcmf_dbg(TRACE, "Enter\n");
3929 if (!check_vif_up(ifp->vif))
3932 memset(&cfg->pmk_list, 0, sizeof(cfg->pmk_list));
3933 err = brcmf_update_pmklist(cfg, ifp);
3935 brcmf_dbg(TRACE, "Exit\n");
3940 static s32 brcmf_configure_opensecurity(struct brcmf_if *ifp)
3946 err = brcmf_fil_bsscfg_int_set(ifp, "auth", 0);
3948 brcmf_err("auth error %d\n", err);
3952 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", 0);
3954 brcmf_err("wsec error %d\n", err);
3957 /* set upper-layer auth */
3958 if (brcmf_is_ibssmode(ifp->vif))
3959 wpa_val = WPA_AUTH_NONE;
3961 wpa_val = WPA_AUTH_DISABLED;
3962 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", wpa_val);
3964 brcmf_err("wpa_auth error %d\n", err);
3971 static bool brcmf_valid_wpa_oui(u8 *oui, bool is_rsn_ie)
3974 return (memcmp(oui, RSN_OUI, TLV_OUI_LEN) == 0);
3976 return (memcmp(oui, WPA_OUI, TLV_OUI_LEN) == 0);
3980 brcmf_configure_wpaie(struct brcmf_if *ifp,
3981 const struct brcmf_vs_tlv *wpa_ie,
3984 u32 auth = 0; /* d11 open authentication */
3996 u32 wme_bss_disable;
3999 brcmf_dbg(TRACE, "Enter\n");
4003 len = wpa_ie->len + TLV_HDR_LEN;
4004 data = (u8 *)wpa_ie;
4005 offset = TLV_HDR_LEN;
4007 offset += VS_IE_FIXED_HDR_LEN;
4009 offset += WPA_IE_VERSION_LEN;
4011 /* check for multicast cipher suite */
4012 if (offset + WPA_IE_MIN_OUI_LEN > len) {
4014 brcmf_err("no multicast cipher suite\n");
4018 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
4020 brcmf_err("ivalid OUI\n");
4023 offset += TLV_OUI_LEN;
4025 /* pick up multicast cipher */
4026 switch (data[offset]) {
4027 case WPA_CIPHER_NONE:
4030 case WPA_CIPHER_WEP_40:
4031 case WPA_CIPHER_WEP_104:
4034 case WPA_CIPHER_TKIP:
4035 gval = TKIP_ENABLED;
4037 case WPA_CIPHER_AES_CCM:
4042 brcmf_err("Invalid multi cast cipher info\n");
4047 /* walk thru unicast cipher list and pick up what we recognize */
4048 count = data[offset] + (data[offset + 1] << 8);
4049 offset += WPA_IE_SUITE_COUNT_LEN;
4050 /* Check for unicast suite(s) */
4051 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
4053 brcmf_err("no unicast cipher suite\n");
4056 for (i = 0; i < count; i++) {
4057 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
4059 brcmf_err("ivalid OUI\n");
4062 offset += TLV_OUI_LEN;
4063 switch (data[offset]) {
4064 case WPA_CIPHER_NONE:
4066 case WPA_CIPHER_WEP_40:
4067 case WPA_CIPHER_WEP_104:
4068 pval |= WEP_ENABLED;
4070 case WPA_CIPHER_TKIP:
4071 pval |= TKIP_ENABLED;
4073 case WPA_CIPHER_AES_CCM:
4074 pval |= AES_ENABLED;
4077 brcmf_err("Invalid unicast security info\n");
4081 /* walk thru auth management suite list and pick up what we recognize */
4082 count = data[offset] + (data[offset + 1] << 8);
4083 offset += WPA_IE_SUITE_COUNT_LEN;
4084 /* Check for auth key management suite(s) */
4085 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
4087 brcmf_err("no auth key mgmt suite\n");
4090 for (i = 0; i < count; i++) {
4091 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
4093 brcmf_err("ivalid OUI\n");
4096 offset += TLV_OUI_LEN;
4097 switch (data[offset]) {
4099 brcmf_dbg(TRACE, "RSN_AKM_NONE\n");
4100 wpa_auth |= WPA_AUTH_NONE;
4102 case RSN_AKM_UNSPECIFIED:
4103 brcmf_dbg(TRACE, "RSN_AKM_UNSPECIFIED\n");
4104 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_UNSPECIFIED) :
4105 (wpa_auth |= WPA_AUTH_UNSPECIFIED);
4108 brcmf_dbg(TRACE, "RSN_AKM_PSK\n");
4109 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_PSK) :
4110 (wpa_auth |= WPA_AUTH_PSK);
4112 case RSN_AKM_SHA256_PSK:
4113 brcmf_dbg(TRACE, "RSN_AKM_MFP_PSK\n");
4114 wpa_auth |= WPA2_AUTH_PSK_SHA256;
4116 case RSN_AKM_SHA256_1X:
4117 brcmf_dbg(TRACE, "RSN_AKM_MFP_1X\n");
4118 wpa_auth |= WPA2_AUTH_1X_SHA256;
4121 brcmf_err("Invalid key mgmt info\n");
4126 mfp = BRCMF_MFP_NONE;
4128 wme_bss_disable = 1;
4129 if ((offset + RSN_CAP_LEN) <= len) {
4130 rsn_cap = data[offset] + (data[offset + 1] << 8);
4131 if (rsn_cap & RSN_CAP_PTK_REPLAY_CNTR_MASK)
4132 wme_bss_disable = 0;
4133 if (rsn_cap & RSN_CAP_MFPR_MASK) {
4134 brcmf_dbg(TRACE, "MFP Required\n");
4135 mfp = BRCMF_MFP_REQUIRED;
4136 /* Firmware only supports mfp required in
4137 * combination with WPA2_AUTH_PSK_SHA256 or
4138 * WPA2_AUTH_1X_SHA256.
4140 if (!(wpa_auth & (WPA2_AUTH_PSK_SHA256 |
4141 WPA2_AUTH_1X_SHA256))) {
4145 /* Firmware has requirement that WPA2_AUTH_PSK/
4146 * WPA2_AUTH_UNSPECIFIED be set, if SHA256 OUI
4147 * is to be included in the rsn ie.
4149 if (wpa_auth & WPA2_AUTH_PSK_SHA256)
4150 wpa_auth |= WPA2_AUTH_PSK;
4151 else if (wpa_auth & WPA2_AUTH_1X_SHA256)
4152 wpa_auth |= WPA2_AUTH_UNSPECIFIED;
4153 } else if (rsn_cap & RSN_CAP_MFPC_MASK) {
4154 brcmf_dbg(TRACE, "MFP Capable\n");
4155 mfp = BRCMF_MFP_CAPABLE;
4158 offset += RSN_CAP_LEN;
4159 /* set wme_bss_disable to sync RSN Capabilities */
4160 err = brcmf_fil_bsscfg_int_set(ifp, "wme_bss_disable",
4163 brcmf_err("wme_bss_disable error %d\n", err);
4167 /* Skip PMKID cnt as it is know to be 0 for AP. */
4168 offset += RSN_PMKID_COUNT_LEN;
4170 /* See if there is BIP wpa suite left for MFP */
4171 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP) &&
4172 ((offset + WPA_IE_MIN_OUI_LEN) <= len)) {
4173 err = brcmf_fil_bsscfg_data_set(ifp, "bip",
4175 WPA_IE_MIN_OUI_LEN);
4177 brcmf_err("bip error %d\n", err);
4182 /* FOR WPS , set SES_OW_ENABLED */
4183 wsec = (pval | gval | SES_OW_ENABLED);
4186 err = brcmf_fil_bsscfg_int_set(ifp, "auth", auth);
4188 brcmf_err("auth error %d\n", err);
4192 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
4194 brcmf_err("wsec error %d\n", err);
4197 /* Configure MFP, this needs to go after wsec otherwise the wsec command
4198 * will overwrite the values set by MFP
4200 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP)) {
4201 err = brcmf_fil_bsscfg_int_set(ifp, "mfp", mfp);
4203 brcmf_err("mfp error %d\n", err);
4207 /* set upper-layer auth */
4208 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", wpa_auth);
4210 brcmf_err("wpa_auth error %d\n", err);
4219 brcmf_parse_vndr_ies(const u8 *vndr_ie_buf, u32 vndr_ie_len,
4220 struct parsed_vndr_ies *vndr_ies)
4222 struct brcmf_vs_tlv *vndrie;
4223 struct brcmf_tlv *ie;
4224 struct parsed_vndr_ie_info *parsed_info;
4227 remaining_len = (s32)vndr_ie_len;
4228 memset(vndr_ies, 0, sizeof(*vndr_ies));
4230 ie = (struct brcmf_tlv *)vndr_ie_buf;
4232 if (ie->id != WLAN_EID_VENDOR_SPECIFIC)
4234 vndrie = (struct brcmf_vs_tlv *)ie;
4235 /* len should be bigger than OUI length + one */
4236 if (vndrie->len < (VS_IE_FIXED_HDR_LEN - TLV_HDR_LEN + 1)) {
4237 brcmf_err("invalid vndr ie. length is too small %d\n",
4241 /* if wpa or wme ie, do not add ie */
4242 if (!memcmp(vndrie->oui, (u8 *)WPA_OUI, TLV_OUI_LEN) &&
4243 ((vndrie->oui_type == WPA_OUI_TYPE) ||
4244 (vndrie->oui_type == WME_OUI_TYPE))) {
4245 brcmf_dbg(TRACE, "Found WPA/WME oui. Do not add it\n");
4249 parsed_info = &vndr_ies->ie_info[vndr_ies->count];
4251 /* save vndr ie information */
4252 parsed_info->ie_ptr = (char *)vndrie;
4253 parsed_info->ie_len = vndrie->len + TLV_HDR_LEN;
4254 memcpy(&parsed_info->vndrie, vndrie, sizeof(*vndrie));
4258 brcmf_dbg(TRACE, "** OUI %02x %02x %02x, type 0x%02x\n",
4259 parsed_info->vndrie.oui[0],
4260 parsed_info->vndrie.oui[1],
4261 parsed_info->vndrie.oui[2],
4262 parsed_info->vndrie.oui_type);
4264 if (vndr_ies->count >= VNDR_IE_PARSE_LIMIT)
4267 remaining_len -= (ie->len + TLV_HDR_LEN);
4268 if (remaining_len <= TLV_HDR_LEN)
4271 ie = (struct brcmf_tlv *)(((u8 *)ie) + ie->len +
4278 brcmf_vndr_ie(u8 *iebuf, s32 pktflag, u8 *ie_ptr, u32 ie_len, s8 *add_del_cmd)
4281 strncpy(iebuf, add_del_cmd, VNDR_IE_CMD_LEN - 1);
4282 iebuf[VNDR_IE_CMD_LEN - 1] = '\0';
4284 put_unaligned_le32(1, &iebuf[VNDR_IE_COUNT_OFFSET]);
4286 put_unaligned_le32(pktflag, &iebuf[VNDR_IE_PKTFLAG_OFFSET]);
4288 memcpy(&iebuf[VNDR_IE_VSIE_OFFSET], ie_ptr, ie_len);
4290 return ie_len + VNDR_IE_HDR_SIZE;
4293 s32 brcmf_vif_set_mgmt_ie(struct brcmf_cfg80211_vif *vif, s32 pktflag,
4294 const u8 *vndr_ie_buf, u32 vndr_ie_len)
4296 struct brcmf_if *ifp;
4297 struct vif_saved_ie *saved_ie;
4301 u8 *mgmt_ie_buf = NULL;
4302 int mgmt_ie_buf_len;
4304 u32 del_add_ie_buf_len = 0;
4305 u32 total_ie_buf_len = 0;
4306 u32 parsed_ie_buf_len = 0;
4307 struct parsed_vndr_ies old_vndr_ies;
4308 struct parsed_vndr_ies new_vndr_ies;
4309 struct parsed_vndr_ie_info *vndrie_info;
4312 int remained_buf_len;
4317 saved_ie = &vif->saved_ie;
4319 brcmf_dbg(TRACE, "bsscfgidx %d, pktflag : 0x%02X\n", ifp->bsscfgidx,
4321 iovar_ie_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
4324 curr_ie_buf = iovar_ie_buf;
4326 case BRCMF_VNDR_IE_PRBREQ_FLAG:
4327 mgmt_ie_buf = saved_ie->probe_req_ie;
4328 mgmt_ie_len = &saved_ie->probe_req_ie_len;
4329 mgmt_ie_buf_len = sizeof(saved_ie->probe_req_ie);
4331 case BRCMF_VNDR_IE_PRBRSP_FLAG:
4332 mgmt_ie_buf = saved_ie->probe_res_ie;
4333 mgmt_ie_len = &saved_ie->probe_res_ie_len;
4334 mgmt_ie_buf_len = sizeof(saved_ie->probe_res_ie);
4336 case BRCMF_VNDR_IE_BEACON_FLAG:
4337 mgmt_ie_buf = saved_ie->beacon_ie;
4338 mgmt_ie_len = &saved_ie->beacon_ie_len;
4339 mgmt_ie_buf_len = sizeof(saved_ie->beacon_ie);
4341 case BRCMF_VNDR_IE_ASSOCREQ_FLAG:
4342 mgmt_ie_buf = saved_ie->assoc_req_ie;
4343 mgmt_ie_len = &saved_ie->assoc_req_ie_len;
4344 mgmt_ie_buf_len = sizeof(saved_ie->assoc_req_ie);
4348 brcmf_err("not suitable type\n");
4352 if (vndr_ie_len > mgmt_ie_buf_len) {
4354 brcmf_err("extra IE size too big\n");
4358 /* parse and save new vndr_ie in curr_ie_buff before comparing it */
4359 if (vndr_ie_buf && vndr_ie_len && curr_ie_buf) {
4361 brcmf_parse_vndr_ies(vndr_ie_buf, vndr_ie_len, &new_vndr_ies);
4362 for (i = 0; i < new_vndr_ies.count; i++) {
4363 vndrie_info = &new_vndr_ies.ie_info[i];
4364 memcpy(ptr + parsed_ie_buf_len, vndrie_info->ie_ptr,
4365 vndrie_info->ie_len);
4366 parsed_ie_buf_len += vndrie_info->ie_len;
4370 if (mgmt_ie_buf && *mgmt_ie_len) {
4371 if (parsed_ie_buf_len && (parsed_ie_buf_len == *mgmt_ie_len) &&
4372 (memcmp(mgmt_ie_buf, curr_ie_buf,
4373 parsed_ie_buf_len) == 0)) {
4374 brcmf_dbg(TRACE, "Previous mgmt IE equals to current IE\n");
4378 /* parse old vndr_ie */
4379 brcmf_parse_vndr_ies(mgmt_ie_buf, *mgmt_ie_len, &old_vndr_ies);
4381 /* make a command to delete old ie */
4382 for (i = 0; i < old_vndr_ies.count; i++) {
4383 vndrie_info = &old_vndr_ies.ie_info[i];
4385 brcmf_dbg(TRACE, "DEL ID : %d, Len: %d , OUI:%02x:%02x:%02x\n",
4386 vndrie_info->vndrie.id,
4387 vndrie_info->vndrie.len,
4388 vndrie_info->vndrie.oui[0],
4389 vndrie_info->vndrie.oui[1],
4390 vndrie_info->vndrie.oui[2]);
4392 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4393 vndrie_info->ie_ptr,
4394 vndrie_info->ie_len,
4396 curr_ie_buf += del_add_ie_buf_len;
4397 total_ie_buf_len += del_add_ie_buf_len;
4402 /* Add if there is any extra IE */
4403 if (mgmt_ie_buf && parsed_ie_buf_len) {
4406 remained_buf_len = mgmt_ie_buf_len;
4408 /* make a command to add new ie */
4409 for (i = 0; i < new_vndr_ies.count; i++) {
4410 vndrie_info = &new_vndr_ies.ie_info[i];
4412 /* verify remained buf size before copy data */
4413 if (remained_buf_len < (vndrie_info->vndrie.len +
4414 VNDR_IE_VSIE_OFFSET)) {
4415 brcmf_err("no space in mgmt_ie_buf: len left %d",
4419 remained_buf_len -= (vndrie_info->ie_len +
4420 VNDR_IE_VSIE_OFFSET);
4422 brcmf_dbg(TRACE, "ADDED ID : %d, Len: %d, OUI:%02x:%02x:%02x\n",
4423 vndrie_info->vndrie.id,
4424 vndrie_info->vndrie.len,
4425 vndrie_info->vndrie.oui[0],
4426 vndrie_info->vndrie.oui[1],
4427 vndrie_info->vndrie.oui[2]);
4429 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4430 vndrie_info->ie_ptr,
4431 vndrie_info->ie_len,
4434 /* save the parsed IE in wl struct */
4435 memcpy(ptr + (*mgmt_ie_len), vndrie_info->ie_ptr,
4436 vndrie_info->ie_len);
4437 *mgmt_ie_len += vndrie_info->ie_len;
4439 curr_ie_buf += del_add_ie_buf_len;
4440 total_ie_buf_len += del_add_ie_buf_len;
4443 if (total_ie_buf_len) {
4444 err = brcmf_fil_bsscfg_data_set(ifp, "vndr_ie", iovar_ie_buf,
4447 brcmf_err("vndr ie set error : %d\n", err);
4451 kfree(iovar_ie_buf);
4455 s32 brcmf_vif_clear_mgmt_ies(struct brcmf_cfg80211_vif *vif)
4458 BRCMF_VNDR_IE_PRBREQ_FLAG,
4459 BRCMF_VNDR_IE_PRBRSP_FLAG,
4460 BRCMF_VNDR_IE_BEACON_FLAG
4464 for (i = 0; i < ARRAY_SIZE(pktflags); i++)
4465 brcmf_vif_set_mgmt_ie(vif, pktflags[i], NULL, 0);
4467 memset(&vif->saved_ie, 0, sizeof(vif->saved_ie));
4472 brcmf_config_ap_mgmt_ie(struct brcmf_cfg80211_vif *vif,
4473 struct cfg80211_beacon_data *beacon)
4477 /* Set Beacon IEs to FW */
4478 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_BEACON_FLAG,
4479 beacon->tail, beacon->tail_len);
4481 brcmf_err("Set Beacon IE Failed\n");
4484 brcmf_dbg(TRACE, "Applied Vndr IEs for Beacon\n");
4486 /* Set Probe Response IEs to FW */
4487 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_PRBRSP_FLAG,
4488 beacon->proberesp_ies,
4489 beacon->proberesp_ies_len);
4491 brcmf_err("Set Probe Resp IE Failed\n");
4493 brcmf_dbg(TRACE, "Applied Vndr IEs for Probe Resp\n");
4499 brcmf_cfg80211_start_ap(struct wiphy *wiphy, struct net_device *ndev,
4500 struct cfg80211_ap_settings *settings)
4503 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4504 struct brcmf_if *ifp = netdev_priv(ndev);
4505 const struct brcmf_tlv *ssid_ie;
4506 const struct brcmf_tlv *country_ie;
4507 struct brcmf_ssid_le ssid_le;
4509 const struct brcmf_tlv *rsn_ie;
4510 const struct brcmf_vs_tlv *wpa_ie;
4511 struct brcmf_join_params join_params;
4512 enum nl80211_iftype dev_role;
4513 struct brcmf_fil_bss_enable_le bss_enable;
4514 u16 chanspec = chandef_to_chanspec(&cfg->d11inf, &settings->chandef);
4519 brcmf_dbg(TRACE, "ctrlchn=%d, center=%d, bw=%d, beacon_interval=%d, dtim_period=%d,\n",
4520 settings->chandef.chan->hw_value,
4521 settings->chandef.center_freq1, settings->chandef.width,
4522 settings->beacon_interval, settings->dtim_period);
4523 brcmf_dbg(TRACE, "ssid=%s(%zu), auth_type=%d, inactivity_timeout=%d\n",
4524 settings->ssid, settings->ssid_len, settings->auth_type,
4525 settings->inactivity_timeout);
4526 dev_role = ifp->vif->wdev.iftype;
4527 mbss = ifp->vif->mbss;
4529 /* store current 11d setting */
4530 if (brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_REGULATORY,
4531 &ifp->vif->is_11d)) {
4532 is_11d = supports_11d = false;
4534 country_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4535 settings->beacon.tail_len,
4537 is_11d = country_ie ? 1 : 0;
4538 supports_11d = true;
4541 memset(&ssid_le, 0, sizeof(ssid_le));
4542 if (settings->ssid == NULL || settings->ssid_len == 0) {
4543 ie_offset = DOT11_MGMT_HDR_LEN + DOT11_BCN_PRB_FIXED_LEN;
4544 ssid_ie = brcmf_parse_tlvs(
4545 (u8 *)&settings->beacon.head[ie_offset],
4546 settings->beacon.head_len - ie_offset,
4548 if (!ssid_ie || ssid_ie->len > IEEE80211_MAX_SSID_LEN)
4551 memcpy(ssid_le.SSID, ssid_ie->data, ssid_ie->len);
4552 ssid_le.SSID_len = cpu_to_le32(ssid_ie->len);
4553 brcmf_dbg(TRACE, "SSID is (%s) in Head\n", ssid_le.SSID);
4555 memcpy(ssid_le.SSID, settings->ssid, settings->ssid_len);
4556 ssid_le.SSID_len = cpu_to_le32((u32)settings->ssid_len);
4560 brcmf_set_mpc(ifp, 0);
4561 brcmf_configure_arp_nd_offload(ifp, false);
4564 /* find the RSN_IE */
4565 rsn_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4566 settings->beacon.tail_len, WLAN_EID_RSN);
4568 /* find the WPA_IE */
4569 wpa_ie = brcmf_find_wpaie((u8 *)settings->beacon.tail,
4570 settings->beacon.tail_len);
4572 if ((wpa_ie != NULL || rsn_ie != NULL)) {
4573 brcmf_dbg(TRACE, "WPA(2) IE is found\n");
4574 if (wpa_ie != NULL) {
4576 err = brcmf_configure_wpaie(ifp, wpa_ie, false);
4580 struct brcmf_vs_tlv *tmp_ie;
4582 tmp_ie = (struct brcmf_vs_tlv *)rsn_ie;
4585 err = brcmf_configure_wpaie(ifp, tmp_ie, true);
4590 brcmf_dbg(TRACE, "No WPA(2) IEs found\n");
4591 brcmf_configure_opensecurity(ifp);
4594 /* Parameters shared by all radio interfaces */
4596 if ((supports_11d) && (is_11d != ifp->vif->is_11d)) {
4597 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4600 brcmf_err("Regulatory Set Error, %d\n", err);
4604 if (settings->beacon_interval) {
4605 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD,
4606 settings->beacon_interval);
4608 brcmf_err("Beacon Interval Set Error, %d\n",
4613 if (settings->dtim_period) {
4614 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_DTIMPRD,
4615 settings->dtim_period);
4617 brcmf_err("DTIM Interval Set Error, %d\n", err);
4622 if ((dev_role == NL80211_IFTYPE_AP) &&
4623 ((ifp->ifidx == 0) ||
4624 !brcmf_feat_is_enabled(ifp, BRCMF_FEAT_RSDB))) {
4625 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4627 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4630 brcmf_fil_iovar_int_set(ifp, "apsta", 0);
4633 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, 1);
4635 brcmf_err("SET INFRA error %d\n", err);
4638 } else if (WARN_ON(supports_11d && (is_11d != ifp->vif->is_11d))) {
4639 /* Multiple-BSS should use same 11d configuration */
4644 /* Interface specific setup */
4645 if (dev_role == NL80211_IFTYPE_AP) {
4646 if ((brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS)) && (!mbss))
4647 brcmf_fil_iovar_int_set(ifp, "mbss", 1);
4649 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 1);
4651 brcmf_err("setting AP mode failed %d\n", err);
4655 /* Firmware 10.x requires setting channel after enabling
4656 * AP and before bringing interface up.
4658 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4660 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4665 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4667 brcmf_err("BRCMF_C_UP error (%d)\n", err);
4670 /* On DOWN the firmware removes the WEP keys, reconfigure
4671 * them if they were set.
4673 brcmf_cfg80211_reconfigure_wep(ifp);
4675 memset(&join_params, 0, sizeof(join_params));
4676 /* join parameters starts with ssid */
4677 memcpy(&join_params.ssid_le, &ssid_le, sizeof(ssid_le));
4679 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4680 &join_params, sizeof(join_params));
4682 brcmf_err("SET SSID error (%d)\n", err);
4686 if (settings->hidden_ssid) {
4687 err = brcmf_fil_iovar_int_set(ifp, "closednet", 1);
4689 brcmf_err("closednet error (%d)\n", err);
4694 brcmf_dbg(TRACE, "AP mode configuration complete\n");
4695 } else if (dev_role == NL80211_IFTYPE_P2P_GO) {
4696 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4698 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4702 err = brcmf_fil_bsscfg_data_set(ifp, "ssid", &ssid_le,
4705 brcmf_err("setting ssid failed %d\n", err);
4708 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4709 bss_enable.enable = cpu_to_le32(1);
4710 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4711 sizeof(bss_enable));
4713 brcmf_err("bss_enable config failed %d\n", err);
4717 brcmf_dbg(TRACE, "GO mode configuration complete\n");
4722 brcmf_config_ap_mgmt_ie(ifp->vif, &settings->beacon);
4723 set_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4724 brcmf_net_setcarrier(ifp, true);
4727 if ((err) && (!mbss)) {
4728 brcmf_set_mpc(ifp, 1);
4729 brcmf_configure_arp_nd_offload(ifp, true);
4734 static int brcmf_cfg80211_stop_ap(struct wiphy *wiphy, struct net_device *ndev)
4736 struct brcmf_if *ifp = netdev_priv(ndev);
4738 struct brcmf_fil_bss_enable_le bss_enable;
4739 struct brcmf_join_params join_params;
4741 brcmf_dbg(TRACE, "Enter\n");
4743 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_AP) {
4744 /* Due to most likely deauths outstanding we sleep */
4745 /* first to make sure they get processed by fw. */
4748 if (ifp->vif->mbss) {
4749 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4753 /* First BSS doesn't get a full reset */
4754 if (ifp->bsscfgidx == 0)
4755 brcmf_fil_iovar_int_set(ifp, "closednet", 0);
4757 memset(&join_params, 0, sizeof(join_params));
4758 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4759 &join_params, sizeof(join_params));
4761 brcmf_err("SET SSID error (%d)\n", err);
4762 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4764 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4765 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 0);
4767 brcmf_err("setting AP mode failed %d\n", err);
4768 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS))
4769 brcmf_fil_iovar_int_set(ifp, "mbss", 0);
4770 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4772 /* Bring device back up so it can be used again */
4773 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4775 brcmf_err("BRCMF_C_UP error %d\n", err);
4777 brcmf_vif_clear_mgmt_ies(ifp->vif);
4779 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4780 bss_enable.enable = cpu_to_le32(0);
4781 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4782 sizeof(bss_enable));
4784 brcmf_err("bss_enable config failed %d\n", err);
4786 brcmf_set_mpc(ifp, 1);
4787 brcmf_configure_arp_nd_offload(ifp, true);
4788 clear_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4789 brcmf_net_setcarrier(ifp, false);
4795 brcmf_cfg80211_change_beacon(struct wiphy *wiphy, struct net_device *ndev,
4796 struct cfg80211_beacon_data *info)
4798 struct brcmf_if *ifp = netdev_priv(ndev);
4801 brcmf_dbg(TRACE, "Enter\n");
4803 err = brcmf_config_ap_mgmt_ie(ifp->vif, info);
4809 brcmf_cfg80211_del_station(struct wiphy *wiphy, struct net_device *ndev,
4810 struct station_del_parameters *params)
4812 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4813 struct brcmf_scb_val_le scbval;
4814 struct brcmf_if *ifp = netdev_priv(ndev);
4820 brcmf_dbg(TRACE, "Enter %pM\n", params->mac);
4822 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
4823 ifp = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif->ifp;
4824 if (!check_vif_up(ifp->vif))
4827 memcpy(&scbval.ea, params->mac, ETH_ALEN);
4828 scbval.val = cpu_to_le32(params->reason_code);
4829 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCB_DEAUTHENTICATE_FOR_REASON,
4830 &scbval, sizeof(scbval));
4832 brcmf_err("SCB_DEAUTHENTICATE_FOR_REASON failed %d\n", err);
4834 brcmf_dbg(TRACE, "Exit\n");
4839 brcmf_cfg80211_change_station(struct wiphy *wiphy, struct net_device *ndev,
4840 const u8 *mac, struct station_parameters *params)
4842 struct brcmf_if *ifp = netdev_priv(ndev);
4845 brcmf_dbg(TRACE, "Enter, MAC %pM, mask 0x%04x set 0x%04x\n", mac,
4846 params->sta_flags_mask, params->sta_flags_set);
4848 /* Ignore all 00 MAC */
4849 if (is_zero_ether_addr(mac))
4852 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
4855 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED))
4856 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_AUTHORIZE,
4857 (void *)mac, ETH_ALEN);
4859 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_DEAUTHORIZE,
4860 (void *)mac, ETH_ALEN);
4862 brcmf_err("Setting SCB (de-)authorize failed, %d\n", err);
4868 brcmf_cfg80211_mgmt_frame_register(struct wiphy *wiphy,
4869 struct wireless_dev *wdev,
4870 u16 frame_type, bool reg)
4872 struct brcmf_cfg80211_vif *vif;
4875 brcmf_dbg(TRACE, "Enter, frame_type %04x, reg=%d\n", frame_type, reg);
4877 mgmt_type = (frame_type & IEEE80211_FCTL_STYPE) >> 4;
4878 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4880 vif->mgmt_rx_reg |= BIT(mgmt_type);
4882 vif->mgmt_rx_reg &= ~BIT(mgmt_type);
4887 brcmf_cfg80211_mgmt_tx(struct wiphy *wiphy, struct wireless_dev *wdev,
4888 struct cfg80211_mgmt_tx_params *params, u64 *cookie)
4890 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4891 struct ieee80211_channel *chan = params->chan;
4892 const u8 *buf = params->buf;
4893 size_t len = params->len;
4894 const struct ieee80211_mgmt *mgmt;
4895 struct brcmf_cfg80211_vif *vif;
4899 struct brcmf_fil_action_frame_le *action_frame;
4900 struct brcmf_fil_af_params_le *af_params;
4905 brcmf_dbg(TRACE, "Enter\n");
4909 mgmt = (const struct ieee80211_mgmt *)buf;
4911 if (!ieee80211_is_mgmt(mgmt->frame_control)) {
4912 brcmf_err("Driver only allows MGMT packet type\n");
4916 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4918 if (ieee80211_is_probe_resp(mgmt->frame_control)) {
4919 /* Right now the only reason to get a probe response */
4920 /* is for p2p listen response or for p2p GO from */
4921 /* wpa_supplicant. Unfortunately the probe is send */
4922 /* on primary ndev, while dongle wants it on the p2p */
4923 /* vif. Since this is only reason for a probe */
4924 /* response to be sent, the vif is taken from cfg. */
4925 /* If ever desired to send proberesp for non p2p */
4926 /* response then data should be checked for */
4927 /* "DIRECT-". Note in future supplicant will take */
4928 /* dedicated p2p wdev to do this and then this 'hack'*/
4929 /* is not needed anymore. */
4930 ie_offset = DOT11_MGMT_HDR_LEN +
4931 DOT11_BCN_PRB_FIXED_LEN;
4932 ie_len = len - ie_offset;
4933 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif)
4934 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4935 err = brcmf_vif_set_mgmt_ie(vif,
4936 BRCMF_VNDR_IE_PRBRSP_FLAG,
4939 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, true,
4941 } else if (ieee80211_is_action(mgmt->frame_control)) {
4942 if (len > BRCMF_FIL_ACTION_FRAME_SIZE + DOT11_MGMT_HDR_LEN) {
4943 brcmf_err("invalid action frame length\n");
4947 af_params = kzalloc(sizeof(*af_params), GFP_KERNEL);
4948 if (af_params == NULL) {
4949 brcmf_err("unable to allocate frame\n");
4953 action_frame = &af_params->action_frame;
4954 /* Add the packet Id */
4955 action_frame->packet_id = cpu_to_le32(*cookie);
4957 memcpy(&action_frame->da[0], &mgmt->da[0], ETH_ALEN);
4958 memcpy(&af_params->bssid[0], &mgmt->bssid[0], ETH_ALEN);
4959 /* Add the length exepted for 802.11 header */
4960 action_frame->len = cpu_to_le16(len - DOT11_MGMT_HDR_LEN);
4961 /* Add the channel. Use the one specified as parameter if any or
4962 * the current one (got from the firmware) otherwise
4965 freq = chan->center_freq;
4967 brcmf_fil_cmd_int_get(vif->ifp, BRCMF_C_GET_CHANNEL,
4969 chan_nr = ieee80211_frequency_to_channel(freq);
4970 af_params->channel = cpu_to_le32(chan_nr);
4972 memcpy(action_frame->data, &buf[DOT11_MGMT_HDR_LEN],
4973 le16_to_cpu(action_frame->len));
4975 brcmf_dbg(TRACE, "Action frame, cookie=%lld, len=%d, freq=%d\n",
4976 *cookie, le16_to_cpu(action_frame->len), freq);
4978 ack = brcmf_p2p_send_action_frame(cfg, cfg_to_ndev(cfg),
4981 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, ack,
4985 brcmf_dbg(TRACE, "Unhandled, fc=%04x!!\n", mgmt->frame_control);
4986 brcmf_dbg_hex_dump(true, buf, len, "payload, len=%zu\n", len);
4995 brcmf_cfg80211_cancel_remain_on_channel(struct wiphy *wiphy,
4996 struct wireless_dev *wdev,
4999 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
5000 struct brcmf_cfg80211_vif *vif;
5003 brcmf_dbg(TRACE, "Enter p2p listen cancel\n");
5005 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
5007 brcmf_err("No p2p device available for probe response\n");
5011 brcmf_p2p_cancel_remain_on_channel(vif->ifp);
5016 static int brcmf_cfg80211_get_channel(struct wiphy *wiphy,
5017 struct wireless_dev *wdev,
5018 struct cfg80211_chan_def *chandef)
5020 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
5021 struct net_device *ndev = wdev->netdev;
5022 struct brcmf_if *ifp;
5023 struct brcmu_chan ch;
5024 enum nl80211_band band = 0;
5025 enum nl80211_chan_width width = 0;
5031 ifp = netdev_priv(ndev);
5033 err = brcmf_fil_iovar_int_get(ifp, "chanspec", &chanspec);
5035 brcmf_err("chanspec failed (%d)\n", err);
5039 ch.chspec = chanspec;
5040 cfg->d11inf.decchspec(&ch);
5043 case BRCMU_CHAN_BAND_2G:
5044 band = NL80211_BAND_2GHZ;
5046 case BRCMU_CHAN_BAND_5G:
5047 band = NL80211_BAND_5GHZ;
5052 case BRCMU_CHAN_BW_80:
5053 width = NL80211_CHAN_WIDTH_80;
5055 case BRCMU_CHAN_BW_40:
5056 width = NL80211_CHAN_WIDTH_40;
5058 case BRCMU_CHAN_BW_20:
5059 width = NL80211_CHAN_WIDTH_20;
5061 case BRCMU_CHAN_BW_80P80:
5062 width = NL80211_CHAN_WIDTH_80P80;
5064 case BRCMU_CHAN_BW_160:
5065 width = NL80211_CHAN_WIDTH_160;
5069 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band);
5070 chandef->chan = ieee80211_get_channel(wiphy, freq);
5071 chandef->width = width;
5072 chandef->center_freq1 = ieee80211_channel_to_frequency(ch.chnum, band);
5073 chandef->center_freq2 = 0;
5078 static int brcmf_cfg80211_crit_proto_start(struct wiphy *wiphy,
5079 struct wireless_dev *wdev,
5080 enum nl80211_crit_proto_id proto,
5083 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
5084 struct brcmf_cfg80211_vif *vif;
5086 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
5088 /* only DHCP support for now */
5089 if (proto != NL80211_CRIT_PROTO_DHCP)
5092 /* suppress and abort scanning */
5093 set_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
5094 brcmf_abort_scanning(cfg);
5096 return brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_DISABLED, duration);
5099 static void brcmf_cfg80211_crit_proto_stop(struct wiphy *wiphy,
5100 struct wireless_dev *wdev)
5102 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
5103 struct brcmf_cfg80211_vif *vif;
5105 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
5107 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
5108 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
5112 brcmf_notify_tdls_peer_event(struct brcmf_if *ifp,
5113 const struct brcmf_event_msg *e, void *data)
5115 switch (e->reason) {
5116 case BRCMF_E_REASON_TDLS_PEER_DISCOVERED:
5117 brcmf_dbg(TRACE, "TDLS Peer Discovered\n");
5119 case BRCMF_E_REASON_TDLS_PEER_CONNECTED:
5120 brcmf_dbg(TRACE, "TDLS Peer Connected\n");
5121 brcmf_proto_add_tdls_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5123 case BRCMF_E_REASON_TDLS_PEER_DISCONNECTED:
5124 brcmf_dbg(TRACE, "TDLS Peer Disconnected\n");
5125 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5132 static int brcmf_convert_nl80211_tdls_oper(enum nl80211_tdls_operation oper)
5137 case NL80211_TDLS_DISCOVERY_REQ:
5138 ret = BRCMF_TDLS_MANUAL_EP_DISCOVERY;
5140 case NL80211_TDLS_SETUP:
5141 ret = BRCMF_TDLS_MANUAL_EP_CREATE;
5143 case NL80211_TDLS_TEARDOWN:
5144 ret = BRCMF_TDLS_MANUAL_EP_DELETE;
5147 brcmf_err("unsupported operation: %d\n", oper);
5153 static int brcmf_cfg80211_tdls_oper(struct wiphy *wiphy,
5154 struct net_device *ndev, const u8 *peer,
5155 enum nl80211_tdls_operation oper)
5157 struct brcmf_if *ifp;
5158 struct brcmf_tdls_iovar_le info;
5161 ret = brcmf_convert_nl80211_tdls_oper(oper);
5165 ifp = netdev_priv(ndev);
5166 memset(&info, 0, sizeof(info));
5167 info.mode = (u8)ret;
5169 memcpy(info.ea, peer, ETH_ALEN);
5171 ret = brcmf_fil_iovar_data_set(ifp, "tdls_endpoint",
5172 &info, sizeof(info));
5174 brcmf_err("tdls_endpoint iovar failed: ret=%d\n", ret);
5180 brcmf_cfg80211_update_conn_params(struct wiphy *wiphy,
5181 struct net_device *ndev,
5182 struct cfg80211_connect_params *sme,
5185 struct brcmf_if *ifp;
5188 if (!(changed & UPDATE_ASSOC_IES))
5191 ifp = netdev_priv(ndev);
5192 err = brcmf_vif_set_mgmt_ie(ifp->vif, BRCMF_VNDR_IE_ASSOCREQ_FLAG,
5193 sme->ie, sme->ie_len);
5195 brcmf_err("Set Assoc REQ IE Failed\n");
5197 brcmf_dbg(TRACE, "Applied Vndr IEs for Assoc request\n");
5204 brcmf_cfg80211_set_rekey_data(struct wiphy *wiphy, struct net_device *ndev,
5205 struct cfg80211_gtk_rekey_data *gtk)
5207 struct brcmf_if *ifp = netdev_priv(ndev);
5208 struct brcmf_gtk_keyinfo_le gtk_le;
5211 brcmf_dbg(TRACE, "Enter, bssidx=%d\n", ifp->bsscfgidx);
5213 memcpy(gtk_le.kck, gtk->kck, sizeof(gtk_le.kck));
5214 memcpy(gtk_le.kek, gtk->kek, sizeof(gtk_le.kek));
5215 memcpy(gtk_le.replay_counter, gtk->replay_ctr,
5216 sizeof(gtk_le.replay_counter));
5218 ret = brcmf_fil_iovar_data_set(ifp, "gtk_key_info", >k_le,
5221 brcmf_err("gtk_key_info iovar failed: ret=%d\n", ret);
5227 static int brcmf_cfg80211_set_pmk(struct wiphy *wiphy, struct net_device *dev,
5228 const struct cfg80211_pmk_conf *conf)
5230 struct brcmf_if *ifp;
5232 brcmf_dbg(TRACE, "enter\n");
5234 /* expect using firmware supplicant for 1X */
5235 ifp = netdev_priv(dev);
5236 if (WARN_ON(ifp->vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_1X))
5239 return brcmf_set_pmk(ifp, conf->pmk, conf->pmk_len);
5242 static int brcmf_cfg80211_del_pmk(struct wiphy *wiphy, struct net_device *dev,
5245 struct brcmf_if *ifp;
5247 brcmf_dbg(TRACE, "enter\n");
5248 ifp = netdev_priv(dev);
5249 if (WARN_ON(ifp->vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_1X))
5252 return brcmf_set_pmk(ifp, NULL, 0);
5255 static struct cfg80211_ops brcmf_cfg80211_ops = {
5256 .add_virtual_intf = brcmf_cfg80211_add_iface,
5257 .del_virtual_intf = brcmf_cfg80211_del_iface,
5258 .change_virtual_intf = brcmf_cfg80211_change_iface,
5259 .scan = brcmf_cfg80211_scan,
5260 .set_wiphy_params = brcmf_cfg80211_set_wiphy_params,
5261 .join_ibss = brcmf_cfg80211_join_ibss,
5262 .leave_ibss = brcmf_cfg80211_leave_ibss,
5263 .get_station = brcmf_cfg80211_get_station,
5264 .dump_station = brcmf_cfg80211_dump_station,
5265 .set_tx_power = brcmf_cfg80211_set_tx_power,
5266 .get_tx_power = brcmf_cfg80211_get_tx_power,
5267 .add_key = brcmf_cfg80211_add_key,
5268 .del_key = brcmf_cfg80211_del_key,
5269 .get_key = brcmf_cfg80211_get_key,
5270 .set_default_key = brcmf_cfg80211_config_default_key,
5271 .set_default_mgmt_key = brcmf_cfg80211_config_default_mgmt_key,
5272 .set_power_mgmt = brcmf_cfg80211_set_power_mgmt,
5273 .connect = brcmf_cfg80211_connect,
5274 .disconnect = brcmf_cfg80211_disconnect,
5275 .suspend = brcmf_cfg80211_suspend,
5276 .resume = brcmf_cfg80211_resume,
5277 .set_pmksa = brcmf_cfg80211_set_pmksa,
5278 .del_pmksa = brcmf_cfg80211_del_pmksa,
5279 .flush_pmksa = brcmf_cfg80211_flush_pmksa,
5280 .start_ap = brcmf_cfg80211_start_ap,
5281 .stop_ap = brcmf_cfg80211_stop_ap,
5282 .change_beacon = brcmf_cfg80211_change_beacon,
5283 .del_station = brcmf_cfg80211_del_station,
5284 .change_station = brcmf_cfg80211_change_station,
5285 .sched_scan_start = brcmf_cfg80211_sched_scan_start,
5286 .sched_scan_stop = brcmf_cfg80211_sched_scan_stop,
5287 .mgmt_frame_register = brcmf_cfg80211_mgmt_frame_register,
5288 .mgmt_tx = brcmf_cfg80211_mgmt_tx,
5289 .remain_on_channel = brcmf_p2p_remain_on_channel,
5290 .cancel_remain_on_channel = brcmf_cfg80211_cancel_remain_on_channel,
5291 .get_channel = brcmf_cfg80211_get_channel,
5292 .start_p2p_device = brcmf_p2p_start_device,
5293 .stop_p2p_device = brcmf_p2p_stop_device,
5294 .crit_proto_start = brcmf_cfg80211_crit_proto_start,
5295 .crit_proto_stop = brcmf_cfg80211_crit_proto_stop,
5296 .tdls_oper = brcmf_cfg80211_tdls_oper,
5297 .update_connect_params = brcmf_cfg80211_update_conn_params,
5298 .set_pmk = brcmf_cfg80211_set_pmk,
5299 .del_pmk = brcmf_cfg80211_del_pmk,
5302 struct brcmf_cfg80211_vif *brcmf_alloc_vif(struct brcmf_cfg80211_info *cfg,
5303 enum nl80211_iftype type)
5305 struct brcmf_cfg80211_vif *vif_walk;
5306 struct brcmf_cfg80211_vif *vif;
5309 brcmf_dbg(TRACE, "allocating virtual interface (size=%zu)\n",
5311 vif = kzalloc(sizeof(*vif), GFP_KERNEL);
5313 return ERR_PTR(-ENOMEM);
5315 vif->wdev.wiphy = cfg->wiphy;
5316 vif->wdev.iftype = type;
5318 brcmf_init_prof(&vif->profile);
5320 if (type == NL80211_IFTYPE_AP) {
5322 list_for_each_entry(vif_walk, &cfg->vif_list, list) {
5323 if (vif_walk->wdev.iftype == NL80211_IFTYPE_AP) {
5331 list_add_tail(&vif->list, &cfg->vif_list);
5335 void brcmf_free_vif(struct brcmf_cfg80211_vif *vif)
5337 list_del(&vif->list);
5341 void brcmf_cfg80211_free_netdev(struct net_device *ndev)
5343 struct brcmf_cfg80211_vif *vif;
5344 struct brcmf_if *ifp;
5346 ifp = netdev_priv(ndev);
5350 brcmf_free_vif(vif);
5353 static bool brcmf_is_linkup(struct brcmf_cfg80211_vif *vif,
5354 const struct brcmf_event_msg *e)
5356 u32 event = e->event_code;
5357 u32 status = e->status;
5359 if (vif->profile.use_fwsup == BRCMF_PROFILE_FWSUP_PSK &&
5360 event == BRCMF_E_PSK_SUP &&
5361 status == BRCMF_E_STATUS_FWSUP_COMPLETED)
5362 set_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state);
5363 if (event == BRCMF_E_SET_SSID && status == BRCMF_E_STATUS_SUCCESS) {
5364 brcmf_dbg(CONN, "Processing set ssid\n");
5365 memcpy(vif->profile.bssid, e->addr, ETH_ALEN);
5366 if (vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_PSK)
5369 set_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state);
5372 if (test_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state) &&
5373 test_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state)) {
5374 clear_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state);
5375 clear_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state);
5381 static bool brcmf_is_linkdown(const struct brcmf_event_msg *e)
5383 u32 event = e->event_code;
5384 u16 flags = e->flags;
5386 if ((event == BRCMF_E_DEAUTH) || (event == BRCMF_E_DEAUTH_IND) ||
5387 (event == BRCMF_E_DISASSOC_IND) ||
5388 ((event == BRCMF_E_LINK) && (!(flags & BRCMF_EVENT_MSG_LINK)))) {
5389 brcmf_dbg(CONN, "Processing link down\n");
5395 static bool brcmf_is_nonetwork(struct brcmf_cfg80211_info *cfg,
5396 const struct brcmf_event_msg *e)
5398 u32 event = e->event_code;
5399 u32 status = e->status;
5401 if (event == BRCMF_E_LINK && status == BRCMF_E_STATUS_NO_NETWORKS) {
5402 brcmf_dbg(CONN, "Processing Link %s & no network found\n",
5403 e->flags & BRCMF_EVENT_MSG_LINK ? "up" : "down");
5407 if (event == BRCMF_E_SET_SSID && status != BRCMF_E_STATUS_SUCCESS) {
5408 brcmf_dbg(CONN, "Processing connecting & no network found\n");
5412 if (event == BRCMF_E_PSK_SUP &&
5413 status != BRCMF_E_STATUS_FWSUP_COMPLETED) {
5414 brcmf_dbg(CONN, "Processing failed supplicant state: %u\n",
5422 static void brcmf_clear_assoc_ies(struct brcmf_cfg80211_info *cfg)
5424 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5426 kfree(conn_info->req_ie);
5427 conn_info->req_ie = NULL;
5428 conn_info->req_ie_len = 0;
5429 kfree(conn_info->resp_ie);
5430 conn_info->resp_ie = NULL;
5431 conn_info->resp_ie_len = 0;
5434 static s32 brcmf_get_assoc_ies(struct brcmf_cfg80211_info *cfg,
5435 struct brcmf_if *ifp)
5437 struct brcmf_cfg80211_assoc_ielen_le *assoc_info;
5438 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5443 brcmf_clear_assoc_ies(cfg);
5445 err = brcmf_fil_iovar_data_get(ifp, "assoc_info",
5446 cfg->extra_buf, WL_ASSOC_INFO_MAX);
5448 brcmf_err("could not get assoc info (%d)\n", err);
5452 (struct brcmf_cfg80211_assoc_ielen_le *)cfg->extra_buf;
5453 req_len = le32_to_cpu(assoc_info->req_len);
5454 resp_len = le32_to_cpu(assoc_info->resp_len);
5456 err = brcmf_fil_iovar_data_get(ifp, "assoc_req_ies",
5460 brcmf_err("could not get assoc req (%d)\n", err);
5463 conn_info->req_ie_len = req_len;
5465 kmemdup(cfg->extra_buf, conn_info->req_ie_len,
5468 conn_info->req_ie_len = 0;
5469 conn_info->req_ie = NULL;
5472 err = brcmf_fil_iovar_data_get(ifp, "assoc_resp_ies",
5476 brcmf_err("could not get assoc resp (%d)\n", err);
5479 conn_info->resp_ie_len = resp_len;
5480 conn_info->resp_ie =
5481 kmemdup(cfg->extra_buf, conn_info->resp_ie_len,
5484 conn_info->resp_ie_len = 0;
5485 conn_info->resp_ie = NULL;
5487 brcmf_dbg(CONN, "req len (%d) resp len (%d)\n",
5488 conn_info->req_ie_len, conn_info->resp_ie_len);
5494 brcmf_bss_roaming_done(struct brcmf_cfg80211_info *cfg,
5495 struct net_device *ndev,
5496 const struct brcmf_event_msg *e)
5498 struct brcmf_if *ifp = netdev_priv(ndev);
5499 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5500 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5501 struct wiphy *wiphy = cfg_to_wiphy(cfg);
5502 struct ieee80211_channel *notify_channel = NULL;
5503 struct ieee80211_supported_band *band;
5504 struct brcmf_bss_info_le *bi;
5505 struct brcmu_chan ch;
5506 struct cfg80211_roam_info roam_info = {};
5511 brcmf_dbg(TRACE, "Enter\n");
5513 brcmf_get_assoc_ies(cfg, ifp);
5514 memcpy(profile->bssid, e->addr, ETH_ALEN);
5515 brcmf_update_bss_info(cfg, ifp);
5517 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
5523 /* data sent to dongle has to be little endian */
5524 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
5525 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
5526 buf, WL_BSS_INFO_MAX);
5531 bi = (struct brcmf_bss_info_le *)(buf + 4);
5532 ch.chspec = le16_to_cpu(bi->chanspec);
5533 cfg->d11inf.decchspec(&ch);
5535 if (ch.band == BRCMU_CHAN_BAND_2G)
5536 band = wiphy->bands[NL80211_BAND_2GHZ];
5538 band = wiphy->bands[NL80211_BAND_5GHZ];
5540 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
5541 notify_channel = ieee80211_get_channel(wiphy, freq);
5546 roam_info.channel = notify_channel;
5547 roam_info.bssid = profile->bssid;
5548 roam_info.req_ie = conn_info->req_ie;
5549 roam_info.req_ie_len = conn_info->req_ie_len;
5550 roam_info.resp_ie = conn_info->resp_ie;
5551 roam_info.resp_ie_len = conn_info->resp_ie_len;
5553 cfg80211_roamed(ndev, &roam_info, GFP_KERNEL);
5554 brcmf_dbg(CONN, "Report roaming result\n");
5556 set_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
5557 brcmf_dbg(TRACE, "Exit\n");
5562 brcmf_bss_connect_done(struct brcmf_cfg80211_info *cfg,
5563 struct net_device *ndev, const struct brcmf_event_msg *e,
5566 struct brcmf_if *ifp = netdev_priv(ndev);
5567 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5568 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5569 struct cfg80211_connect_resp_params conn_params;
5571 brcmf_dbg(TRACE, "Enter\n");
5573 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5574 &ifp->vif->sme_state)) {
5575 memset(&conn_params, 0, sizeof(conn_params));
5577 brcmf_get_assoc_ies(cfg, ifp);
5578 brcmf_update_bss_info(cfg, ifp);
5579 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5580 &ifp->vif->sme_state);
5581 conn_params.status = WLAN_STATUS_SUCCESS;
5583 conn_params.status = WLAN_STATUS_AUTH_TIMEOUT;
5585 conn_params.bssid = profile->bssid;
5586 conn_params.req_ie = conn_info->req_ie;
5587 conn_params.req_ie_len = conn_info->req_ie_len;
5588 conn_params.resp_ie = conn_info->resp_ie;
5589 conn_params.resp_ie_len = conn_info->resp_ie_len;
5590 cfg80211_connect_done(ndev, &conn_params, GFP_KERNEL);
5591 brcmf_dbg(CONN, "Report connect result - connection %s\n",
5592 completed ? "succeeded" : "failed");
5594 brcmf_dbg(TRACE, "Exit\n");
5599 brcmf_notify_connect_status_ap(struct brcmf_cfg80211_info *cfg,
5600 struct net_device *ndev,
5601 const struct brcmf_event_msg *e, void *data)
5603 static int generation;
5604 u32 event = e->event_code;
5605 u32 reason = e->reason;
5606 struct station_info sinfo;
5608 brcmf_dbg(CONN, "event %s (%u), reason %d\n",
5609 brcmf_fweh_event_name(event), event, reason);
5610 if (event == BRCMF_E_LINK && reason == BRCMF_E_REASON_LINK_BSSCFG_DIS &&
5611 ndev != cfg_to_ndev(cfg)) {
5612 brcmf_dbg(CONN, "AP mode link down\n");
5613 complete(&cfg->vif_disabled);
5617 if (((event == BRCMF_E_ASSOC_IND) || (event == BRCMF_E_REASSOC_IND)) &&
5618 (reason == BRCMF_E_STATUS_SUCCESS)) {
5619 memset(&sinfo, 0, sizeof(sinfo));
5621 brcmf_err("No IEs present in ASSOC/REASSOC_IND");
5624 sinfo.assoc_req_ies = data;
5625 sinfo.assoc_req_ies_len = e->datalen;
5627 sinfo.generation = generation;
5628 cfg80211_new_sta(ndev, e->addr, &sinfo, GFP_KERNEL);
5629 } else if ((event == BRCMF_E_DISASSOC_IND) ||
5630 (event == BRCMF_E_DEAUTH_IND) ||
5631 (event == BRCMF_E_DEAUTH)) {
5632 cfg80211_del_sta(ndev, e->addr, GFP_KERNEL);
5638 brcmf_notify_connect_status(struct brcmf_if *ifp,
5639 const struct brcmf_event_msg *e, void *data)
5641 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5642 struct net_device *ndev = ifp->ndev;
5643 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5644 struct ieee80211_channel *chan;
5647 if ((e->event_code == BRCMF_E_DEAUTH) ||
5648 (e->event_code == BRCMF_E_DEAUTH_IND) ||
5649 (e->event_code == BRCMF_E_DISASSOC_IND) ||
5650 ((e->event_code == BRCMF_E_LINK) && (!e->flags))) {
5651 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5654 if (brcmf_is_apmode(ifp->vif)) {
5655 err = brcmf_notify_connect_status_ap(cfg, ndev, e, data);
5656 } else if (brcmf_is_linkup(ifp->vif, e)) {
5657 brcmf_dbg(CONN, "Linkup\n");
5658 if (brcmf_is_ibssmode(ifp->vif)) {
5659 brcmf_inform_ibss(cfg, ndev, e->addr);
5660 chan = ieee80211_get_channel(cfg->wiphy, cfg->channel);
5661 memcpy(profile->bssid, e->addr, ETH_ALEN);
5662 cfg80211_ibss_joined(ndev, e->addr, chan, GFP_KERNEL);
5663 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5664 &ifp->vif->sme_state);
5665 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5666 &ifp->vif->sme_state);
5668 brcmf_bss_connect_done(cfg, ndev, e, true);
5669 brcmf_net_setcarrier(ifp, true);
5670 } else if (brcmf_is_linkdown(e)) {
5671 brcmf_dbg(CONN, "Linkdown\n");
5672 if (!brcmf_is_ibssmode(ifp->vif)) {
5673 brcmf_bss_connect_done(cfg, ndev, e, false);
5674 brcmf_link_down(ifp->vif,
5675 brcmf_map_fw_linkdown_reason(e));
5676 brcmf_init_prof(ndev_to_prof(ndev));
5677 if (ndev != cfg_to_ndev(cfg))
5678 complete(&cfg->vif_disabled);
5679 brcmf_net_setcarrier(ifp, false);
5681 } else if (brcmf_is_nonetwork(cfg, e)) {
5682 if (brcmf_is_ibssmode(ifp->vif))
5683 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5684 &ifp->vif->sme_state);
5686 brcmf_bss_connect_done(cfg, ndev, e, false);
5693 brcmf_notify_roaming_status(struct brcmf_if *ifp,
5694 const struct brcmf_event_msg *e, void *data)
5696 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5697 u32 event = e->event_code;
5698 u32 status = e->status;
5700 if (event == BRCMF_E_ROAM && status == BRCMF_E_STATUS_SUCCESS) {
5701 if (test_bit(BRCMF_VIF_STATUS_CONNECTED,
5702 &ifp->vif->sme_state)) {
5703 brcmf_bss_roaming_done(cfg, ifp->ndev, e);
5705 brcmf_bss_connect_done(cfg, ifp->ndev, e, true);
5706 brcmf_net_setcarrier(ifp, true);
5714 brcmf_notify_mic_status(struct brcmf_if *ifp,
5715 const struct brcmf_event_msg *e, void *data)
5717 u16 flags = e->flags;
5718 enum nl80211_key_type key_type;
5720 if (flags & BRCMF_EVENT_MSG_GROUP)
5721 key_type = NL80211_KEYTYPE_GROUP;
5723 key_type = NL80211_KEYTYPE_PAIRWISE;
5725 cfg80211_michael_mic_failure(ifp->ndev, (u8 *)&e->addr, key_type, -1,
5731 static s32 brcmf_notify_vif_event(struct brcmf_if *ifp,
5732 const struct brcmf_event_msg *e, void *data)
5734 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5735 struct brcmf_if_event *ifevent = (struct brcmf_if_event *)data;
5736 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
5737 struct brcmf_cfg80211_vif *vif;
5739 brcmf_dbg(TRACE, "Enter: action %u flags %u ifidx %u bsscfgidx %u\n",
5740 ifevent->action, ifevent->flags, ifevent->ifidx,
5741 ifevent->bsscfgidx);
5743 spin_lock(&event->vif_event_lock);
5744 event->action = ifevent->action;
5747 switch (ifevent->action) {
5748 case BRCMF_E_IF_ADD:
5749 /* waiting process may have timed out */
5750 if (!cfg->vif_event.vif) {
5751 spin_unlock(&event->vif_event_lock);
5758 vif->wdev.netdev = ifp->ndev;
5759 ifp->ndev->ieee80211_ptr = &vif->wdev;
5760 SET_NETDEV_DEV(ifp->ndev, wiphy_dev(cfg->wiphy));
5762 spin_unlock(&event->vif_event_lock);
5763 wake_up(&event->vif_wq);
5766 case BRCMF_E_IF_DEL:
5767 spin_unlock(&event->vif_event_lock);
5768 /* event may not be upon user request */
5769 if (brcmf_cfg80211_vif_event_armed(cfg))
5770 wake_up(&event->vif_wq);
5773 case BRCMF_E_IF_CHANGE:
5774 spin_unlock(&event->vif_event_lock);
5775 wake_up(&event->vif_wq);
5779 spin_unlock(&event->vif_event_lock);
5785 static void brcmf_init_conf(struct brcmf_cfg80211_conf *conf)
5787 conf->frag_threshold = (u32)-1;
5788 conf->rts_threshold = (u32)-1;
5789 conf->retry_short = (u32)-1;
5790 conf->retry_long = (u32)-1;
5793 static void brcmf_register_event_handlers(struct brcmf_cfg80211_info *cfg)
5795 brcmf_fweh_register(cfg->pub, BRCMF_E_LINK,
5796 brcmf_notify_connect_status);
5797 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH_IND,
5798 brcmf_notify_connect_status);
5799 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH,
5800 brcmf_notify_connect_status);
5801 brcmf_fweh_register(cfg->pub, BRCMF_E_DISASSOC_IND,
5802 brcmf_notify_connect_status);
5803 brcmf_fweh_register(cfg->pub, BRCMF_E_ASSOC_IND,
5804 brcmf_notify_connect_status);
5805 brcmf_fweh_register(cfg->pub, BRCMF_E_REASSOC_IND,
5806 brcmf_notify_connect_status);
5807 brcmf_fweh_register(cfg->pub, BRCMF_E_ROAM,
5808 brcmf_notify_roaming_status);
5809 brcmf_fweh_register(cfg->pub, BRCMF_E_MIC_ERROR,
5810 brcmf_notify_mic_status);
5811 brcmf_fweh_register(cfg->pub, BRCMF_E_SET_SSID,
5812 brcmf_notify_connect_status);
5813 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
5814 brcmf_notify_sched_scan_results);
5815 brcmf_fweh_register(cfg->pub, BRCMF_E_IF,
5816 brcmf_notify_vif_event);
5817 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_PROBEREQ_MSG,
5818 brcmf_p2p_notify_rx_mgmt_p2p_probereq);
5819 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_DISC_LISTEN_COMPLETE,
5820 brcmf_p2p_notify_listen_complete);
5821 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_RX,
5822 brcmf_p2p_notify_action_frame_rx);
5823 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_COMPLETE,
5824 brcmf_p2p_notify_action_tx_complete);
5825 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_OFF_CHAN_COMPLETE,
5826 brcmf_p2p_notify_action_tx_complete);
5827 brcmf_fweh_register(cfg->pub, BRCMF_E_PSK_SUP,
5828 brcmf_notify_connect_status);
5831 static void brcmf_deinit_priv_mem(struct brcmf_cfg80211_info *cfg)
5835 kfree(cfg->extra_buf);
5836 cfg->extra_buf = NULL;
5837 kfree(cfg->wowl.nd);
5838 cfg->wowl.nd = NULL;
5839 kfree(cfg->wowl.nd_info);
5840 cfg->wowl.nd_info = NULL;
5841 kfree(cfg->escan_info.escan_buf);
5842 cfg->escan_info.escan_buf = NULL;
5845 static s32 brcmf_init_priv_mem(struct brcmf_cfg80211_info *cfg)
5847 cfg->conf = kzalloc(sizeof(*cfg->conf), GFP_KERNEL);
5849 goto init_priv_mem_out;
5850 cfg->extra_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
5851 if (!cfg->extra_buf)
5852 goto init_priv_mem_out;
5853 cfg->wowl.nd = kzalloc(sizeof(*cfg->wowl.nd) + sizeof(u32), GFP_KERNEL);
5855 goto init_priv_mem_out;
5856 cfg->wowl.nd_info = kzalloc(sizeof(*cfg->wowl.nd_info) +
5857 sizeof(struct cfg80211_wowlan_nd_match *),
5859 if (!cfg->wowl.nd_info)
5860 goto init_priv_mem_out;
5861 cfg->escan_info.escan_buf = kzalloc(BRCMF_ESCAN_BUF_SIZE, GFP_KERNEL);
5862 if (!cfg->escan_info.escan_buf)
5863 goto init_priv_mem_out;
5868 brcmf_deinit_priv_mem(cfg);
5873 static s32 wl_init_priv(struct brcmf_cfg80211_info *cfg)
5877 cfg->scan_request = NULL;
5878 cfg->pwr_save = true;
5879 cfg->active_scan = true; /* we do active scan per default */
5880 cfg->dongle_up = false; /* dongle is not up yet */
5881 err = brcmf_init_priv_mem(cfg);
5884 brcmf_register_event_handlers(cfg);
5885 mutex_init(&cfg->usr_sync);
5886 brcmf_init_escan(cfg);
5887 brcmf_init_conf(cfg->conf);
5888 init_completion(&cfg->vif_disabled);
5892 static void wl_deinit_priv(struct brcmf_cfg80211_info *cfg)
5894 cfg->dongle_up = false; /* dongle down */
5895 brcmf_abort_scanning(cfg);
5896 brcmf_deinit_priv_mem(cfg);
5899 static void init_vif_event(struct brcmf_cfg80211_vif_event *event)
5901 init_waitqueue_head(&event->vif_wq);
5902 spin_lock_init(&event->vif_event_lock);
5905 static s32 brcmf_dongle_roam(struct brcmf_if *ifp)
5909 __le32 roamtrigger[2];
5910 __le32 roam_delta[2];
5912 /* Configure beacon timeout value based upon roaming setting */
5913 if (ifp->drvr->settings->roamoff)
5914 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_OFF;
5916 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_ON;
5917 err = brcmf_fil_iovar_int_set(ifp, "bcn_timeout", bcn_timeout);
5919 brcmf_err("bcn_timeout error (%d)\n", err);
5920 goto roam_setup_done;
5923 /* Enable/Disable built-in roaming to allow supplicant to take care of
5926 brcmf_dbg(INFO, "Internal Roaming = %s\n",
5927 ifp->drvr->settings->roamoff ? "Off" : "On");
5928 err = brcmf_fil_iovar_int_set(ifp, "roam_off",
5929 ifp->drvr->settings->roamoff);
5931 brcmf_err("roam_off error (%d)\n", err);
5932 goto roam_setup_done;
5935 roamtrigger[0] = cpu_to_le32(WL_ROAM_TRIGGER_LEVEL);
5936 roamtrigger[1] = cpu_to_le32(BRCM_BAND_ALL);
5937 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_TRIGGER,
5938 (void *)roamtrigger, sizeof(roamtrigger));
5940 brcmf_err("WLC_SET_ROAM_TRIGGER error (%d)\n", err);
5941 goto roam_setup_done;
5944 roam_delta[0] = cpu_to_le32(WL_ROAM_DELTA);
5945 roam_delta[1] = cpu_to_le32(BRCM_BAND_ALL);
5946 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_DELTA,
5947 (void *)roam_delta, sizeof(roam_delta));
5949 brcmf_err("WLC_SET_ROAM_DELTA error (%d)\n", err);
5950 goto roam_setup_done;
5958 brcmf_dongle_scantime(struct brcmf_if *ifp)
5962 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_CHANNEL_TIME,
5963 BRCMF_SCAN_CHANNEL_TIME);
5965 brcmf_err("Scan assoc time error (%d)\n", err);
5966 goto dongle_scantime_out;
5968 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_UNASSOC_TIME,
5969 BRCMF_SCAN_UNASSOC_TIME);
5971 brcmf_err("Scan unassoc time error (%d)\n", err);
5972 goto dongle_scantime_out;
5975 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_PASSIVE_TIME,
5976 BRCMF_SCAN_PASSIVE_TIME);
5978 brcmf_err("Scan passive time error (%d)\n", err);
5979 goto dongle_scantime_out;
5982 dongle_scantime_out:
5986 static void brcmf_update_bw40_channel_flag(struct ieee80211_channel *channel,
5987 struct brcmu_chan *ch)
5991 ht40_flag = channel->flags & IEEE80211_CHAN_NO_HT40;
5992 if (ch->sb == BRCMU_CHAN_SB_U) {
5993 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5994 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5995 channel->flags |= IEEE80211_CHAN_NO_HT40PLUS;
5997 /* It should be one of
5998 * IEEE80211_CHAN_NO_HT40 or
5999 * IEEE80211_CHAN_NO_HT40PLUS
6001 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
6002 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
6003 channel->flags |= IEEE80211_CHAN_NO_HT40MINUS;
6007 static int brcmf_construct_chaninfo(struct brcmf_cfg80211_info *cfg,
6010 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6011 struct ieee80211_supported_band *band;
6012 struct ieee80211_channel *channel;
6013 struct wiphy *wiphy;
6014 struct brcmf_chanspec_list *list;
6015 struct brcmu_chan ch;
6022 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
6027 list = (struct brcmf_chanspec_list *)pbuf;
6029 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
6032 brcmf_err("get chanspecs error (%d)\n", err);
6036 wiphy = cfg_to_wiphy(cfg);
6037 band = wiphy->bands[NL80211_BAND_2GHZ];
6039 for (i = 0; i < band->n_channels; i++)
6040 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
6041 band = wiphy->bands[NL80211_BAND_5GHZ];
6043 for (i = 0; i < band->n_channels; i++)
6044 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
6046 total = le32_to_cpu(list->count);
6047 for (i = 0; i < total; i++) {
6048 ch.chspec = (u16)le32_to_cpu(list->element[i]);
6049 cfg->d11inf.decchspec(&ch);
6051 if (ch.band == BRCMU_CHAN_BAND_2G) {
6052 band = wiphy->bands[NL80211_BAND_2GHZ];
6053 } else if (ch.band == BRCMU_CHAN_BAND_5G) {
6054 band = wiphy->bands[NL80211_BAND_5GHZ];
6056 brcmf_err("Invalid channel Spec. 0x%x.\n", ch.chspec);
6061 if (!(bw_cap[band->band] & WLC_BW_40MHZ_BIT) &&
6062 ch.bw == BRCMU_CHAN_BW_40)
6064 if (!(bw_cap[band->band] & WLC_BW_80MHZ_BIT) &&
6065 ch.bw == BRCMU_CHAN_BW_80)
6069 for (j = 0; j < band->n_channels; j++) {
6070 if (band->channels[j].hw_value == ch.control_ch_num) {
6071 channel = &band->channels[j];
6076 /* It seems firmware supports some channel we never
6077 * considered. Something new in IEEE standard?
6079 brcmf_err("Ignoring unexpected firmware channel %d\n",
6084 if (channel->orig_flags & IEEE80211_CHAN_DISABLED)
6087 /* assuming the chanspecs order is HT20,
6088 * HT40 upper, HT40 lower, and VHT80.
6090 if (ch.bw == BRCMU_CHAN_BW_80) {
6091 channel->flags &= ~IEEE80211_CHAN_NO_80MHZ;
6092 } else if (ch.bw == BRCMU_CHAN_BW_40) {
6093 brcmf_update_bw40_channel_flag(channel, &ch);
6095 /* enable the channel and disable other bandwidths
6096 * for now as mentioned order assure they are enabled
6097 * for subsequent chanspecs.
6099 channel->flags = IEEE80211_CHAN_NO_HT40 |
6100 IEEE80211_CHAN_NO_80MHZ;
6101 ch.bw = BRCMU_CHAN_BW_20;
6102 cfg->d11inf.encchspec(&ch);
6103 chaninfo = ch.chspec;
6104 err = brcmf_fil_bsscfg_int_get(ifp, "per_chan_info",
6107 if (chaninfo & WL_CHAN_RADAR)
6109 (IEEE80211_CHAN_RADAR |
6110 IEEE80211_CHAN_NO_IR);
6111 if (chaninfo & WL_CHAN_PASSIVE)
6113 IEEE80211_CHAN_NO_IR;
6123 static int brcmf_enable_bw40_2g(struct brcmf_cfg80211_info *cfg)
6125 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6126 struct ieee80211_supported_band *band;
6127 struct brcmf_fil_bwcap_le band_bwcap;
6128 struct brcmf_chanspec_list *list;
6132 struct brcmu_chan ch;
6136 /* verify support for bw_cap command */
6138 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &val);
6141 /* only set 2G bandwidth using bw_cap command */
6142 band_bwcap.band = cpu_to_le32(WLC_BAND_2G);
6143 band_bwcap.bw_cap = cpu_to_le32(WLC_BW_CAP_40MHZ);
6144 err = brcmf_fil_iovar_data_set(ifp, "bw_cap", &band_bwcap,
6145 sizeof(band_bwcap));
6147 brcmf_dbg(INFO, "fallback to mimo_bw_cap\n");
6148 val = WLC_N_BW_40ALL;
6149 err = brcmf_fil_iovar_int_set(ifp, "mimo_bw_cap", val);
6153 /* update channel info in 2G band */
6154 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
6159 ch.band = BRCMU_CHAN_BAND_2G;
6160 ch.bw = BRCMU_CHAN_BW_40;
6161 ch.sb = BRCMU_CHAN_SB_NONE;
6163 cfg->d11inf.encchspec(&ch);
6165 /* pass encoded chanspec in query */
6166 *(__le16 *)pbuf = cpu_to_le16(ch.chspec);
6168 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
6171 brcmf_err("get chanspecs error (%d)\n", err);
6176 band = cfg_to_wiphy(cfg)->bands[NL80211_BAND_2GHZ];
6177 list = (struct brcmf_chanspec_list *)pbuf;
6178 num_chan = le32_to_cpu(list->count);
6179 for (i = 0; i < num_chan; i++) {
6180 ch.chspec = (u16)le32_to_cpu(list->element[i]);
6181 cfg->d11inf.decchspec(&ch);
6182 if (WARN_ON(ch.band != BRCMU_CHAN_BAND_2G))
6184 if (WARN_ON(ch.bw != BRCMU_CHAN_BW_40))
6186 for (j = 0; j < band->n_channels; j++) {
6187 if (band->channels[j].hw_value == ch.control_ch_num)
6190 if (WARN_ON(j == band->n_channels))
6193 brcmf_update_bw40_channel_flag(&band->channels[j], &ch);
6200 static void brcmf_get_bwcap(struct brcmf_if *ifp, u32 bw_cap[])
6202 u32 band, mimo_bwcap;
6206 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
6208 bw_cap[NL80211_BAND_2GHZ] = band;
6210 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
6212 bw_cap[NL80211_BAND_5GHZ] = band;
6218 brcmf_dbg(INFO, "fallback to mimo_bw_cap info\n");
6220 err = brcmf_fil_iovar_int_get(ifp, "mimo_bw_cap", &mimo_bwcap);
6222 /* assume 20MHz if firmware does not give a clue */
6223 mimo_bwcap = WLC_N_BW_20ALL;
6225 switch (mimo_bwcap) {
6226 case WLC_N_BW_40ALL:
6227 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_40MHZ_BIT;
6229 case WLC_N_BW_20IN2G_40IN5G:
6230 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_40MHZ_BIT;
6232 case WLC_N_BW_20ALL:
6233 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_20MHZ_BIT;
6234 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_20MHZ_BIT;
6237 brcmf_err("invalid mimo_bw_cap value\n");
6241 static void brcmf_update_ht_cap(struct ieee80211_supported_band *band,
6242 u32 bw_cap[2], u32 nchain)
6244 band->ht_cap.ht_supported = true;
6245 if (bw_cap[band->band] & WLC_BW_40MHZ_BIT) {
6246 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40;
6247 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6249 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20;
6250 band->ht_cap.cap |= IEEE80211_HT_CAP_DSSSCCK40;
6251 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K;
6252 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_16;
6253 memset(band->ht_cap.mcs.rx_mask, 0xff, nchain);
6254 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED;
6257 static __le16 brcmf_get_mcs_map(u32 nchain, enum ieee80211_vht_mcs_support supp)
6262 for (i = 0, mcs_map = 0xFFFF; i < nchain; i++)
6263 mcs_map = (mcs_map << 2) | supp;
6265 return cpu_to_le16(mcs_map);
6268 static void brcmf_update_vht_cap(struct ieee80211_supported_band *band,
6269 u32 bw_cap[2], u32 nchain, u32 txstreams,
6270 u32 txbf_bfe_cap, u32 txbf_bfr_cap)
6274 /* not allowed in 2.4G band */
6275 if (band->band == NL80211_BAND_2GHZ)
6278 band->vht_cap.vht_supported = true;
6279 /* 80MHz is mandatory */
6280 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_80;
6281 if (bw_cap[band->band] & WLC_BW_160MHZ_BIT) {
6282 band->vht_cap.cap |= IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
6283 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_160;
6285 /* all support 256-QAM */
6286 mcs_map = brcmf_get_mcs_map(nchain, IEEE80211_VHT_MCS_SUPPORT_0_9);
6287 band->vht_cap.vht_mcs.rx_mcs_map = mcs_map;
6288 band->vht_cap.vht_mcs.tx_mcs_map = mcs_map;
6290 /* Beamforming support information */
6291 if (txbf_bfe_cap & BRCMF_TXBF_SU_BFE_CAP)
6292 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE;
6293 if (txbf_bfe_cap & BRCMF_TXBF_MU_BFE_CAP)
6294 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE;
6295 if (txbf_bfr_cap & BRCMF_TXBF_SU_BFR_CAP)
6296 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE;
6297 if (txbf_bfr_cap & BRCMF_TXBF_MU_BFR_CAP)
6298 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMER_CAPABLE;
6300 if ((txbf_bfe_cap || txbf_bfr_cap) && (txstreams > 1)) {
6301 band->vht_cap.cap |=
6302 (2 << IEEE80211_VHT_CAP_BEAMFORMEE_STS_SHIFT);
6303 band->vht_cap.cap |= ((txstreams - 1) <<
6304 IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_SHIFT);
6305 band->vht_cap.cap |=
6306 IEEE80211_VHT_CAP_VHT_LINK_ADAPTATION_VHT_MRQ_MFB;
6310 static int brcmf_setup_wiphybands(struct wiphy *wiphy)
6312 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
6313 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6316 u32 bw_cap[2] = { WLC_BW_20MHZ_BIT, WLC_BW_20MHZ_BIT };
6321 struct ieee80211_supported_band *band;
6323 u32 txbf_bfe_cap = 0;
6324 u32 txbf_bfr_cap = 0;
6326 (void)brcmf_fil_iovar_int_get(ifp, "vhtmode", &vhtmode);
6327 err = brcmf_fil_iovar_int_get(ifp, "nmode", &nmode);
6329 brcmf_err("nmode error (%d)\n", err);
6331 brcmf_get_bwcap(ifp, bw_cap);
6333 brcmf_dbg(INFO, "nmode=%d, vhtmode=%d, bw_cap=(%d, %d)\n",
6334 nmode, vhtmode, bw_cap[NL80211_BAND_2GHZ],
6335 bw_cap[NL80211_BAND_5GHZ]);
6337 err = brcmf_fil_iovar_int_get(ifp, "rxchain", &rxchain);
6339 brcmf_err("rxchain error (%d)\n", err);
6342 for (nchain = 0; rxchain; nchain++)
6343 rxchain = rxchain & (rxchain - 1);
6345 brcmf_dbg(INFO, "nchain=%d\n", nchain);
6347 err = brcmf_construct_chaninfo(cfg, bw_cap);
6349 brcmf_err("brcmf_construct_chaninfo failed (%d)\n", err);
6354 (void)brcmf_fil_iovar_int_get(ifp, "txstreams", &txstreams);
6355 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfe_cap",
6357 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfr_cap",
6361 wiphy = cfg_to_wiphy(cfg);
6362 for (i = 0; i < ARRAY_SIZE(wiphy->bands); i++) {
6363 band = wiphy->bands[i];
6368 brcmf_update_ht_cap(band, bw_cap, nchain);
6370 brcmf_update_vht_cap(band, bw_cap, nchain, txstreams,
6371 txbf_bfe_cap, txbf_bfr_cap);
6377 static const struct ieee80211_txrx_stypes
6378 brcmf_txrx_stypes[NUM_NL80211_IFTYPES] = {
6379 [NL80211_IFTYPE_STATION] = {
6381 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6382 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6384 [NL80211_IFTYPE_P2P_CLIENT] = {
6386 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6387 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6389 [NL80211_IFTYPE_P2P_GO] = {
6391 .rx = BIT(IEEE80211_STYPE_ASSOC_REQ >> 4) |
6392 BIT(IEEE80211_STYPE_REASSOC_REQ >> 4) |
6393 BIT(IEEE80211_STYPE_PROBE_REQ >> 4) |
6394 BIT(IEEE80211_STYPE_DISASSOC >> 4) |
6395 BIT(IEEE80211_STYPE_AUTH >> 4) |
6396 BIT(IEEE80211_STYPE_DEAUTH >> 4) |
6397 BIT(IEEE80211_STYPE_ACTION >> 4)
6399 [NL80211_IFTYPE_P2P_DEVICE] = {
6401 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6402 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6407 * brcmf_setup_ifmodes() - determine interface modes and combinations.
6409 * @wiphy: wiphy object.
6410 * @ifp: interface object needed for feat module api.
6412 * The interface modes and combinations are determined dynamically here
6413 * based on firmware functionality.
6415 * no p2p and no mbss:
6417 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6421 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6422 * #AP <= 4, matching BI, channels = 1, 4 total
6424 * p2p, no mchan, and mbss:
6426 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 1, 3 total
6427 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6428 * #AP <= 4, matching BI, channels = 1, 4 total
6430 * p2p, mchan, and mbss:
6432 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 2, 3 total
6433 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6434 * #AP <= 4, matching BI, channels = 1, 4 total
6436 static int brcmf_setup_ifmodes(struct wiphy *wiphy, struct brcmf_if *ifp)
6438 struct ieee80211_iface_combination *combo = NULL;
6439 struct ieee80211_iface_limit *c0_limits = NULL;
6440 struct ieee80211_iface_limit *p2p_limits = NULL;
6441 struct ieee80211_iface_limit *mbss_limits = NULL;
6445 mbss = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS);
6446 p2p = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_P2P);
6448 n_combos = 1 + !!p2p + !!mbss;
6449 combo = kcalloc(n_combos, sizeof(*combo), GFP_KERNEL);
6453 wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION) |
6454 BIT(NL80211_IFTYPE_ADHOC) |
6455 BIT(NL80211_IFTYPE_AP);
6459 c0_limits = kcalloc(p2p ? 3 : 2, sizeof(*c0_limits), GFP_KERNEL);
6462 c0_limits[i].max = 1;
6463 c0_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6465 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MCHAN))
6466 combo[c].num_different_channels = 2;
6468 combo[c].num_different_channels = 1;
6469 wiphy->interface_modes |= BIT(NL80211_IFTYPE_P2P_CLIENT) |
6470 BIT(NL80211_IFTYPE_P2P_GO) |
6471 BIT(NL80211_IFTYPE_P2P_DEVICE);
6472 c0_limits[i].max = 1;
6473 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6474 c0_limits[i].max = 1;
6475 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT) |
6476 BIT(NL80211_IFTYPE_P2P_GO);
6478 combo[c].num_different_channels = 1;
6479 c0_limits[i].max = 1;
6480 c0_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6482 combo[c].max_interfaces = i;
6483 combo[c].n_limits = i;
6484 combo[c].limits = c0_limits;
6489 p2p_limits = kcalloc(4, sizeof(*p2p_limits), GFP_KERNEL);
6492 p2p_limits[i].max = 1;
6493 p2p_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6494 p2p_limits[i].max = 1;
6495 p2p_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6496 p2p_limits[i].max = 1;
6497 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT);
6498 p2p_limits[i].max = 1;
6499 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6500 combo[c].num_different_channels = 1;
6501 combo[c].max_interfaces = i;
6502 combo[c].n_limits = i;
6503 combo[c].limits = p2p_limits;
6509 mbss_limits = kcalloc(1, sizeof(*mbss_limits), GFP_KERNEL);
6512 mbss_limits[i].max = 4;
6513 mbss_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6514 combo[c].beacon_int_infra_match = true;
6515 combo[c].num_different_channels = 1;
6516 combo[c].max_interfaces = 4;
6517 combo[c].n_limits = i;
6518 combo[c].limits = mbss_limits;
6521 wiphy->n_iface_combinations = n_combos;
6522 wiphy->iface_combinations = combo;
6534 static const struct wiphy_wowlan_support brcmf_wowlan_support = {
6535 .flags = WIPHY_WOWLAN_MAGIC_PKT | WIPHY_WOWLAN_DISCONNECT,
6536 .n_patterns = BRCMF_WOWL_MAXPATTERNS,
6537 .pattern_max_len = BRCMF_WOWL_MAXPATTERNSIZE,
6538 .pattern_min_len = 1,
6539 .max_pkt_offset = 1500,
6543 static void brcmf_wiphy_wowl_params(struct wiphy *wiphy, struct brcmf_if *ifp)
6546 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
6547 struct wiphy_wowlan_support *wowl;
6549 wowl = kmemdup(&brcmf_wowlan_support, sizeof(brcmf_wowlan_support),
6552 brcmf_err("only support basic wowlan features\n");
6553 wiphy->wowlan = &brcmf_wowlan_support;
6557 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO)) {
6558 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ND)) {
6559 wowl->flags |= WIPHY_WOWLAN_NET_DETECT;
6560 wowl->max_nd_match_sets = BRCMF_PNO_MAX_PFN_COUNT;
6561 init_waitqueue_head(&cfg->wowl.nd_data_wait);
6564 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK)) {
6565 wowl->flags |= WIPHY_WOWLAN_SUPPORTS_GTK_REKEY;
6566 wowl->flags |= WIPHY_WOWLAN_GTK_REKEY_FAILURE;
6569 wiphy->wowlan = wowl;
6573 static int brcmf_setup_wiphy(struct wiphy *wiphy, struct brcmf_if *ifp)
6575 struct brcmf_pub *drvr = ifp->drvr;
6576 const struct ieee80211_iface_combination *combo;
6577 struct ieee80211_supported_band *band;
6578 u16 max_interfaces = 0;
6584 wiphy->max_scan_ssids = WL_NUM_SCAN_MAX;
6585 wiphy->max_scan_ie_len = BRCMF_SCAN_IE_LEN_MAX;
6586 wiphy->max_num_pmkids = BRCMF_MAXPMKID;
6588 err = brcmf_setup_ifmodes(wiphy, ifp);
6592 for (i = 0, combo = wiphy->iface_combinations;
6593 i < wiphy->n_iface_combinations; i++, combo++) {
6594 max_interfaces = max(max_interfaces, combo->max_interfaces);
6597 for (i = 0; i < max_interfaces && i < ARRAY_SIZE(drvr->addresses);
6599 u8 *addr = drvr->addresses[i].addr;
6601 memcpy(addr, drvr->mac, ETH_ALEN);
6604 addr[ETH_ALEN - 1] ^= i;
6607 wiphy->addresses = drvr->addresses;
6608 wiphy->n_addresses = i;
6610 wiphy->signal_type = CFG80211_SIGNAL_TYPE_MBM;
6611 wiphy->cipher_suites = brcmf_cipher_suites;
6612 wiphy->n_cipher_suites = ARRAY_SIZE(brcmf_cipher_suites);
6613 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
6614 wiphy->n_cipher_suites--;
6615 wiphy->bss_select_support = BIT(NL80211_BSS_SELECT_ATTR_RSSI) |
6616 BIT(NL80211_BSS_SELECT_ATTR_BAND_PREF) |
6617 BIT(NL80211_BSS_SELECT_ATTR_RSSI_ADJUST);
6619 wiphy->flags |= WIPHY_FLAG_NETNS_OK |
6620 WIPHY_FLAG_PS_ON_BY_DEFAULT |
6621 WIPHY_FLAG_OFFCHAN_TX |
6622 WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL;
6623 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS))
6624 wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS;
6625 if (!ifp->drvr->settings->roamoff)
6626 wiphy->flags |= WIPHY_FLAG_SUPPORTS_FW_ROAM;
6627 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_FWSUP)) {
6628 wiphy_ext_feature_set(wiphy,
6629 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK);
6630 wiphy_ext_feature_set(wiphy,
6631 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X);
6633 wiphy->mgmt_stypes = brcmf_txrx_stypes;
6634 wiphy->max_remain_on_channel_duration = 5000;
6635 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO)) {
6636 gscan = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_GSCAN);
6637 brcmf_pno_wiphy_params(wiphy, gscan);
6639 /* vendor commands/events support */
6640 wiphy->vendor_commands = brcmf_vendor_cmds;
6641 wiphy->n_vendor_commands = BRCMF_VNDR_CMDS_LAST - 1;
6643 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL))
6644 brcmf_wiphy_wowl_params(wiphy, ifp);
6645 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BANDLIST, &bandlist,
6648 brcmf_err("could not obtain band info: err=%d\n", err);
6651 /* first entry in bandlist is number of bands */
6652 n_bands = le32_to_cpu(bandlist[0]);
6653 for (i = 1; i <= n_bands && i < ARRAY_SIZE(bandlist); i++) {
6654 if (bandlist[i] == cpu_to_le32(WLC_BAND_2G)) {
6655 band = kmemdup(&__wl_band_2ghz, sizeof(__wl_band_2ghz),
6660 band->channels = kmemdup(&__wl_2ghz_channels,
6661 sizeof(__wl_2ghz_channels),
6663 if (!band->channels) {
6668 band->n_channels = ARRAY_SIZE(__wl_2ghz_channels);
6669 wiphy->bands[NL80211_BAND_2GHZ] = band;
6671 if (bandlist[i] == cpu_to_le32(WLC_BAND_5G)) {
6672 band = kmemdup(&__wl_band_5ghz, sizeof(__wl_band_5ghz),
6677 band->channels = kmemdup(&__wl_5ghz_channels,
6678 sizeof(__wl_5ghz_channels),
6680 if (!band->channels) {
6685 band->n_channels = ARRAY_SIZE(__wl_5ghz_channels);
6686 wiphy->bands[NL80211_BAND_5GHZ] = band;
6690 wiphy_read_of_freq_limits(wiphy);
6695 static s32 brcmf_config_dongle(struct brcmf_cfg80211_info *cfg)
6697 struct net_device *ndev;
6698 struct wireless_dev *wdev;
6699 struct brcmf_if *ifp;
6706 ndev = cfg_to_ndev(cfg);
6707 wdev = ndev->ieee80211_ptr;
6708 ifp = netdev_priv(ndev);
6710 /* make sure RF is ready for work */
6711 brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 0);
6713 brcmf_dongle_scantime(ifp);
6715 power_mode = cfg->pwr_save ? PM_FAST : PM_OFF;
6716 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, power_mode);
6718 goto default_conf_out;
6719 brcmf_dbg(INFO, "power save set to %s\n",
6720 (power_mode ? "enabled" : "disabled"));
6722 err = brcmf_dongle_roam(ifp);
6724 goto default_conf_out;
6725 err = brcmf_cfg80211_change_iface(wdev->wiphy, ndev, wdev->iftype,
6728 goto default_conf_out;
6730 brcmf_configure_arp_nd_offload(ifp, true);
6732 cfg->dongle_up = true;
6739 static s32 __brcmf_cfg80211_up(struct brcmf_if *ifp)
6741 set_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6743 return brcmf_config_dongle(ifp->drvr->config);
6746 static s32 __brcmf_cfg80211_down(struct brcmf_if *ifp)
6748 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6751 * While going down, if associated with AP disassociate
6752 * from AP to save power
6754 if (check_vif_up(ifp->vif)) {
6755 brcmf_link_down(ifp->vif, WLAN_REASON_UNSPECIFIED);
6757 /* Make sure WPA_Supplicant receives all the event
6758 generated due to DISASSOC call to the fw to keep
6759 the state fw and WPA_Supplicant state consistent
6764 brcmf_abort_scanning(cfg);
6765 clear_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6770 s32 brcmf_cfg80211_up(struct net_device *ndev)
6772 struct brcmf_if *ifp = netdev_priv(ndev);
6773 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6776 mutex_lock(&cfg->usr_sync);
6777 err = __brcmf_cfg80211_up(ifp);
6778 mutex_unlock(&cfg->usr_sync);
6783 s32 brcmf_cfg80211_down(struct net_device *ndev)
6785 struct brcmf_if *ifp = netdev_priv(ndev);
6786 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6789 mutex_lock(&cfg->usr_sync);
6790 err = __brcmf_cfg80211_down(ifp);
6791 mutex_unlock(&cfg->usr_sync);
6796 enum nl80211_iftype brcmf_cfg80211_get_iftype(struct brcmf_if *ifp)
6798 struct wireless_dev *wdev = &ifp->vif->wdev;
6800 return wdev->iftype;
6803 bool brcmf_get_vif_state_any(struct brcmf_cfg80211_info *cfg,
6804 unsigned long state)
6806 struct brcmf_cfg80211_vif *vif;
6808 list_for_each_entry(vif, &cfg->vif_list, list) {
6809 if (test_bit(state, &vif->sme_state))
6815 static inline bool vif_event_equals(struct brcmf_cfg80211_vif_event *event,
6820 spin_lock(&event->vif_event_lock);
6821 evt_action = event->action;
6822 spin_unlock(&event->vif_event_lock);
6823 return evt_action == action;
6826 void brcmf_cfg80211_arm_vif_event(struct brcmf_cfg80211_info *cfg,
6827 struct brcmf_cfg80211_vif *vif)
6829 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6831 spin_lock(&event->vif_event_lock);
6834 spin_unlock(&event->vif_event_lock);
6837 bool brcmf_cfg80211_vif_event_armed(struct brcmf_cfg80211_info *cfg)
6839 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6842 spin_lock(&event->vif_event_lock);
6843 armed = event->vif != NULL;
6844 spin_unlock(&event->vif_event_lock);
6849 int brcmf_cfg80211_wait_vif_event(struct brcmf_cfg80211_info *cfg,
6850 u8 action, ulong timeout)
6852 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6854 return wait_event_timeout(event->vif_wq,
6855 vif_event_equals(event, action), timeout);
6858 static s32 brcmf_translate_country_code(struct brcmf_pub *drvr, char alpha2[2],
6859 struct brcmf_fil_country_le *ccreq)
6861 struct brcmfmac_pd_cc *country_codes;
6862 struct brcmfmac_pd_cc_entry *cc;
6866 country_codes = drvr->settings->country_codes;
6867 if (!country_codes) {
6868 brcmf_dbg(TRACE, "No country codes configured for device\n");
6872 if ((alpha2[0] == ccreq->country_abbrev[0]) &&
6873 (alpha2[1] == ccreq->country_abbrev[1])) {
6874 brcmf_dbg(TRACE, "Country code already set\n");
6879 for (i = 0; i < country_codes->table_size; i++) {
6880 cc = &country_codes->table[i];
6881 if ((cc->iso3166[0] == '\0') && (found_index == -1))
6883 if ((cc->iso3166[0] == alpha2[0]) &&
6884 (cc->iso3166[1] == alpha2[1])) {
6889 if (found_index == -1) {
6890 brcmf_dbg(TRACE, "No country code match found\n");
6893 memset(ccreq, 0, sizeof(*ccreq));
6894 ccreq->rev = cpu_to_le32(country_codes->table[found_index].rev);
6895 memcpy(ccreq->ccode, country_codes->table[found_index].cc,
6896 BRCMF_COUNTRY_BUF_SZ);
6897 ccreq->country_abbrev[0] = alpha2[0];
6898 ccreq->country_abbrev[1] = alpha2[1];
6899 ccreq->country_abbrev[2] = 0;
6904 static void brcmf_cfg80211_reg_notifier(struct wiphy *wiphy,
6905 struct regulatory_request *req)
6907 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
6908 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6909 struct brcmf_fil_country_le ccreq;
6913 /* The country code gets set to "00" by default at boot, ignore */
6914 if (req->alpha2[0] == '0' && req->alpha2[1] == '0')
6917 /* ignore non-ISO3166 country codes */
6918 for (i = 0; i < sizeof(req->alpha2); i++)
6919 if (req->alpha2[i] < 'A' || req->alpha2[i] > 'Z') {
6920 brcmf_err("not an ISO3166 code (0x%02x 0x%02x)\n",
6921 req->alpha2[0], req->alpha2[1]);
6925 brcmf_dbg(TRACE, "Enter: initiator=%d, alpha=%c%c\n", req->initiator,
6926 req->alpha2[0], req->alpha2[1]);
6928 err = brcmf_fil_iovar_data_get(ifp, "country", &ccreq, sizeof(ccreq));
6930 brcmf_err("Country code iovar returned err = %d\n", err);
6934 err = brcmf_translate_country_code(ifp->drvr, req->alpha2, &ccreq);
6938 err = brcmf_fil_iovar_data_set(ifp, "country", &ccreq, sizeof(ccreq));
6940 brcmf_err("Firmware rejected country setting\n");
6943 brcmf_setup_wiphybands(wiphy);
6946 static void brcmf_free_wiphy(struct wiphy *wiphy)
6953 if (wiphy->iface_combinations) {
6954 for (i = 0; i < wiphy->n_iface_combinations; i++)
6955 kfree(wiphy->iface_combinations[i].limits);
6957 kfree(wiphy->iface_combinations);
6958 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6959 kfree(wiphy->bands[NL80211_BAND_2GHZ]->channels);
6960 kfree(wiphy->bands[NL80211_BAND_2GHZ]);
6962 if (wiphy->bands[NL80211_BAND_5GHZ]) {
6963 kfree(wiphy->bands[NL80211_BAND_5GHZ]->channels);
6964 kfree(wiphy->bands[NL80211_BAND_5GHZ]);
6966 #if IS_ENABLED(CONFIG_PM)
6967 if (wiphy->wowlan != &brcmf_wowlan_support)
6968 kfree(wiphy->wowlan);
6973 struct brcmf_cfg80211_info *brcmf_cfg80211_attach(struct brcmf_pub *drvr,
6974 struct device *busdev,
6977 struct net_device *ndev = brcmf_get_ifp(drvr, 0)->ndev;
6978 struct brcmf_cfg80211_info *cfg;
6979 struct wiphy *wiphy;
6980 struct cfg80211_ops *ops;
6981 struct brcmf_cfg80211_vif *vif;
6982 struct brcmf_if *ifp;
6988 brcmf_err("ndev is invalid\n");
6992 ops = kmemdup(&brcmf_cfg80211_ops, sizeof(*ops), GFP_KERNEL);
6996 ifp = netdev_priv(ndev);
6998 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK))
6999 ops->set_rekey_data = brcmf_cfg80211_set_rekey_data;
7001 wiphy = wiphy_new(ops, sizeof(struct brcmf_cfg80211_info));
7003 brcmf_err("Could not allocate wiphy device\n");
7006 memcpy(wiphy->perm_addr, drvr->mac, ETH_ALEN);
7007 set_wiphy_dev(wiphy, busdev);
7009 cfg = wiphy_priv(wiphy);
7013 init_vif_event(&cfg->vif_event);
7014 INIT_LIST_HEAD(&cfg->vif_list);
7016 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_STATION);
7021 vif->wdev.netdev = ndev;
7022 ndev->ieee80211_ptr = &vif->wdev;
7023 SET_NETDEV_DEV(ndev, wiphy_dev(cfg->wiphy));
7025 err = wl_init_priv(cfg);
7027 brcmf_err("Failed to init iwm_priv (%d)\n", err);
7028 brcmf_free_vif(vif);
7033 /* determine d11 io type before wiphy setup */
7034 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_VERSION, &io_type);
7036 brcmf_err("Failed to get D11 version (%d)\n", err);
7039 cfg->d11inf.io_type = (u8)io_type;
7040 brcmu_d11_attach(&cfg->d11inf);
7042 err = brcmf_setup_wiphy(wiphy, ifp);
7046 brcmf_dbg(INFO, "Registering custom regulatory\n");
7047 wiphy->reg_notifier = brcmf_cfg80211_reg_notifier;
7048 wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG;
7049 wiphy_apply_custom_regulatory(wiphy, &brcmf_regdom);
7051 /* firmware defaults to 40MHz disabled in 2G band. We signal
7052 * cfg80211 here that we do and have it decide we can enable
7053 * it. But first check if device does support 2G operation.
7055 if (wiphy->bands[NL80211_BAND_2GHZ]) {
7056 cap = &wiphy->bands[NL80211_BAND_2GHZ]->ht_cap.cap;
7057 *cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
7059 err = wiphy_register(wiphy);
7061 brcmf_err("Could not register wiphy device (%d)\n", err);
7065 err = brcmf_setup_wiphybands(wiphy);
7067 brcmf_err("Setting wiphy bands failed (%d)\n", err);
7068 goto wiphy_unreg_out;
7071 /* If cfg80211 didn't disable 40MHz HT CAP in wiphy_register(),
7072 * setup 40MHz in 2GHz band and enable OBSS scanning.
7074 if (cap && (*cap & IEEE80211_HT_CAP_SUP_WIDTH_20_40)) {
7075 err = brcmf_enable_bw40_2g(cfg);
7077 err = brcmf_fil_iovar_int_set(ifp, "obss_coex",
7078 BRCMF_OBSS_COEX_AUTO);
7080 *cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
7082 /* p2p might require that "if-events" get processed by fweh. So
7083 * activate the already registered event handlers now and activate
7084 * the rest when initialization has completed. drvr->config needs to
7085 * be assigned before activating events.
7088 err = brcmf_fweh_activate_events(ifp);
7090 brcmf_err("FWEH activation failed (%d)\n", err);
7091 goto wiphy_unreg_out;
7094 err = brcmf_p2p_attach(cfg, p2pdev_forced);
7096 brcmf_err("P2P initialisation failed (%d)\n", err);
7097 goto wiphy_unreg_out;
7099 err = brcmf_btcoex_attach(cfg);
7101 brcmf_err("BT-coex initialisation failed (%d)\n", err);
7102 brcmf_p2p_detach(&cfg->p2p);
7103 goto wiphy_unreg_out;
7105 err = brcmf_pno_attach(cfg);
7107 brcmf_err("PNO initialisation failed (%d)\n", err);
7108 brcmf_btcoex_detach(cfg);
7109 brcmf_p2p_detach(&cfg->p2p);
7110 goto wiphy_unreg_out;
7113 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS)) {
7114 err = brcmf_fil_iovar_int_set(ifp, "tdls_enable", 1);
7116 brcmf_dbg(INFO, "TDLS not enabled (%d)\n", err);
7117 wiphy->flags &= ~WIPHY_FLAG_SUPPORTS_TDLS;
7119 brcmf_fweh_register(cfg->pub, BRCMF_E_TDLS_PEER_EVENT,
7120 brcmf_notify_tdls_peer_event);
7124 /* (re-) activate FWEH event handling */
7125 err = brcmf_fweh_activate_events(ifp);
7127 brcmf_err("FWEH activation failed (%d)\n", err);
7131 /* Fill in some of the advertised nl80211 supported features */
7132 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_SCAN_RANDOM_MAC)) {
7133 wiphy->features |= NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR;
7135 if (wiphy->wowlan &&
7136 wiphy->wowlan->flags & WIPHY_WOWLAN_NET_DETECT)
7137 wiphy->features |= NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7144 brcmf_pno_detach(cfg);
7145 brcmf_btcoex_detach(cfg);
7146 brcmf_p2p_detach(&cfg->p2p);
7148 wiphy_unregister(cfg->wiphy);
7150 wl_deinit_priv(cfg);
7151 brcmf_free_vif(vif);
7154 brcmf_free_wiphy(wiphy);
7160 void brcmf_cfg80211_detach(struct brcmf_cfg80211_info *cfg)
7165 brcmf_pno_detach(cfg);
7166 brcmf_btcoex_detach(cfg);
7167 wiphy_unregister(cfg->wiphy);
7169 wl_deinit_priv(cfg);
7170 brcmf_free_wiphy(cfg->wiphy);
projects / linux-2.6-microblaze.git / blob