2 * Copyright (c) 2010 Broadcom Corporation
4 * Permission to use, copy, modify, and/or distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
11 * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
13 * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
14 * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 /* Toplevel file. Relies on dhd_linux.c to send commands to the dongle. */
19 #include <linux/kernel.h>
20 #include <linux/etherdevice.h>
21 #include <linux/module.h>
22 #include <linux/vmalloc.h>
23 #include <net/cfg80211.h>
24 #include <net/netlink.h>
26 #include <brcmu_utils.h>
28 #include <brcmu_wifi.h>
31 #include "tracepoint.h"
32 #include "fwil_types.h"
43 #define BRCMF_SCAN_IE_LEN_MAX 2048
44 #define BRCMF_PNO_VERSION 2
45 #define BRCMF_PNO_TIME 30
46 #define BRCMF_PNO_REPEAT 4
47 #define BRCMF_PNO_FREQ_EXPO_MAX 3
48 #define BRCMF_PNO_MAX_PFN_COUNT 16
49 #define BRCMF_PNO_ENABLE_ADAPTSCAN_BIT 6
50 #define BRCMF_PNO_HIDDEN_BIT 2
51 #define BRCMF_PNO_WPA_AUTH_ANY 0xFFFFFFFF
52 #define BRCMF_PNO_SCAN_COMPLETE 1
53 #define BRCMF_PNO_SCAN_INCOMPLETE 0
55 #define WPA_OUI "\x00\x50\xF2" /* WPA OUI */
56 #define WPA_OUI_TYPE 1
57 #define RSN_OUI "\x00\x0F\xAC" /* RSN OUI */
58 #define WME_OUI_TYPE 2
59 #define WPS_OUI_TYPE 4
61 #define VS_IE_FIXED_HDR_LEN 6
62 #define WPA_IE_VERSION_LEN 2
63 #define WPA_IE_MIN_OUI_LEN 4
64 #define WPA_IE_SUITE_COUNT_LEN 2
66 #define WPA_CIPHER_NONE 0 /* None */
67 #define WPA_CIPHER_WEP_40 1 /* WEP (40-bit) */
68 #define WPA_CIPHER_TKIP 2 /* TKIP: default for WPA */
69 #define WPA_CIPHER_AES_CCM 4 /* AES (CCM) */
70 #define WPA_CIPHER_WEP_104 5 /* WEP (104-bit) */
72 #define RSN_AKM_NONE 0 /* None (IBSS) */
73 #define RSN_AKM_UNSPECIFIED 1 /* Over 802.1x */
74 #define RSN_AKM_PSK 2 /* Pre-shared Key */
75 #define RSN_AKM_SHA256_1X 5 /* SHA256, 802.1X */
76 #define RSN_AKM_SHA256_PSK 6 /* SHA256, Pre-shared Key */
77 #define RSN_CAP_LEN 2 /* Length of RSN capabilities */
78 #define RSN_CAP_PTK_REPLAY_CNTR_MASK (BIT(2) | BIT(3))
79 #define RSN_CAP_MFPR_MASK BIT(6)
80 #define RSN_CAP_MFPC_MASK BIT(7)
81 #define RSN_PMKID_COUNT_LEN 2
83 #define VNDR_IE_CMD_LEN 4 /* length of the set command
84 * string :"add", "del" (+ NUL)
86 #define VNDR_IE_COUNT_OFFSET 4
87 #define VNDR_IE_PKTFLAG_OFFSET 8
88 #define VNDR_IE_VSIE_OFFSET 12
89 #define VNDR_IE_HDR_SIZE 12
90 #define VNDR_IE_PARSE_LIMIT 5
92 #define DOT11_MGMT_HDR_LEN 24 /* d11 management header len */
93 #define DOT11_BCN_PRB_FIXED_LEN 12 /* beacon/probe fixed length */
95 #define BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS 320
96 #define BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS 400
97 #define BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS 20
99 #define BRCMF_SCAN_CHANNEL_TIME 40
100 #define BRCMF_SCAN_UNASSOC_TIME 40
101 #define BRCMF_SCAN_PASSIVE_TIME 120
103 #define BRCMF_ND_INFO_TIMEOUT msecs_to_jiffies(2000)
105 #define BRCMF_ASSOC_PARAMS_FIXED_SIZE \
106 (sizeof(struct brcmf_assoc_params_le) - sizeof(u16))
108 static bool check_vif_up(struct brcmf_cfg80211_vif *vif)
110 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state)) {
111 brcmf_dbg(INFO, "device is not ready : status (%lu)\n",
118 #define RATE_TO_BASE100KBPS(rate) (((rate) * 10) / 2)
119 #define RATETAB_ENT(_rateid, _flags) \
121 .bitrate = RATE_TO_BASE100KBPS(_rateid), \
122 .hw_value = (_rateid), \
126 static struct ieee80211_rate __wl_rates[] = {
127 RATETAB_ENT(BRCM_RATE_1M, 0),
128 RATETAB_ENT(BRCM_RATE_2M, IEEE80211_RATE_SHORT_PREAMBLE),
129 RATETAB_ENT(BRCM_RATE_5M5, IEEE80211_RATE_SHORT_PREAMBLE),
130 RATETAB_ENT(BRCM_RATE_11M, IEEE80211_RATE_SHORT_PREAMBLE),
131 RATETAB_ENT(BRCM_RATE_6M, 0),
132 RATETAB_ENT(BRCM_RATE_9M, 0),
133 RATETAB_ENT(BRCM_RATE_12M, 0),
134 RATETAB_ENT(BRCM_RATE_18M, 0),
135 RATETAB_ENT(BRCM_RATE_24M, 0),
136 RATETAB_ENT(BRCM_RATE_36M, 0),
137 RATETAB_ENT(BRCM_RATE_48M, 0),
138 RATETAB_ENT(BRCM_RATE_54M, 0),
141 #define wl_g_rates (__wl_rates + 0)
142 #define wl_g_rates_size ARRAY_SIZE(__wl_rates)
143 #define wl_a_rates (__wl_rates + 4)
144 #define wl_a_rates_size (wl_g_rates_size - 4)
146 #define CHAN2G(_channel, _freq) { \
147 .band = NL80211_BAND_2GHZ, \
148 .center_freq = (_freq), \
149 .hw_value = (_channel), \
150 .flags = IEEE80211_CHAN_DISABLED, \
151 .max_antenna_gain = 0, \
155 #define CHAN5G(_channel) { \
156 .band = NL80211_BAND_5GHZ, \
157 .center_freq = 5000 + (5 * (_channel)), \
158 .hw_value = (_channel), \
159 .flags = IEEE80211_CHAN_DISABLED, \
160 .max_antenna_gain = 0, \
164 static struct ieee80211_channel __wl_2ghz_channels[] = {
165 CHAN2G(1, 2412), CHAN2G(2, 2417), CHAN2G(3, 2422), CHAN2G(4, 2427),
166 CHAN2G(5, 2432), CHAN2G(6, 2437), CHAN2G(7, 2442), CHAN2G(8, 2447),
167 CHAN2G(9, 2452), CHAN2G(10, 2457), CHAN2G(11, 2462), CHAN2G(12, 2467),
168 CHAN2G(13, 2472), CHAN2G(14, 2484)
171 static struct ieee80211_channel __wl_5ghz_channels[] = {
172 CHAN5G(34), CHAN5G(36), CHAN5G(38), CHAN5G(40), CHAN5G(42),
173 CHAN5G(44), CHAN5G(46), CHAN5G(48), CHAN5G(52), CHAN5G(56),
174 CHAN5G(60), CHAN5G(64), CHAN5G(100), CHAN5G(104), CHAN5G(108),
175 CHAN5G(112), CHAN5G(116), CHAN5G(120), CHAN5G(124), CHAN5G(128),
176 CHAN5G(132), CHAN5G(136), CHAN5G(140), CHAN5G(144), CHAN5G(149),
177 CHAN5G(153), CHAN5G(157), CHAN5G(161), CHAN5G(165)
180 /* Band templates duplicated per wiphy. The channel info
181 * above is added to the band during setup.
183 static const struct ieee80211_supported_band __wl_band_2ghz = {
184 .band = NL80211_BAND_2GHZ,
185 .bitrates = wl_g_rates,
186 .n_bitrates = wl_g_rates_size,
189 static const struct ieee80211_supported_band __wl_band_5ghz = {
190 .band = NL80211_BAND_5GHZ,
191 .bitrates = wl_a_rates,
192 .n_bitrates = wl_a_rates_size,
195 /* This is to override regulatory domains defined in cfg80211 module (reg.c)
196 * By default world regulatory domain defined in reg.c puts the flags
197 * NL80211_RRF_NO_IR for 5GHz channels (for * 36..48 and 149..165).
198 * With respect to these flags, wpa_supplicant doesn't * start p2p
199 * operations on 5GHz channels. All the changes in world regulatory
200 * domain are to be done here.
202 static const struct ieee80211_regdomain brcmf_regdom = {
206 /* IEEE 802.11b/g, channels 1..11 */
207 REG_RULE(2412-10, 2472+10, 40, 6, 20, 0),
209 /* IEEE 802.11 channel 14 - Only JP enables
210 * this and for 802.11b only
212 REG_RULE(2484-10, 2484+10, 20, 6, 20, 0),
213 /* IEEE 802.11a, channel 36..64 */
214 REG_RULE(5150-10, 5350+10, 80, 6, 20, 0),
215 /* IEEE 802.11a, channel 100..165 */
216 REG_RULE(5470-10, 5850+10, 80, 6, 20, 0), }
219 /* Note: brcmf_cipher_suites is an array of int defining which cipher suites
220 * are supported. A pointer to this array and the number of entries is passed
221 * on to upper layers. AES_CMAC defines whether or not the driver supports MFP.
222 * So the cipher suite AES_CMAC has to be the last one in the array, and when
223 * device does not support MFP then the number of suites will be decreased by 1
225 static const u32 brcmf_cipher_suites[] = {
226 WLAN_CIPHER_SUITE_WEP40,
227 WLAN_CIPHER_SUITE_WEP104,
228 WLAN_CIPHER_SUITE_TKIP,
229 WLAN_CIPHER_SUITE_CCMP,
230 /* Keep as last entry: */
231 WLAN_CIPHER_SUITE_AES_CMAC
234 /* Vendor specific ie. id = 221, oui and type defines exact ie */
235 struct brcmf_vs_tlv {
242 struct parsed_vndr_ie_info {
244 u32 ie_len; /* total length including id & length field */
245 struct brcmf_vs_tlv vndrie;
248 struct parsed_vndr_ies {
250 struct parsed_vndr_ie_info ie_info[VNDR_IE_PARSE_LIMIT];
253 static u8 nl80211_band_to_fwil(enum nl80211_band band)
256 case NL80211_BAND_2GHZ:
258 case NL80211_BAND_5GHZ:
267 static u16 chandef_to_chanspec(struct brcmu_d11inf *d11inf,
268 struct cfg80211_chan_def *ch)
270 struct brcmu_chan ch_inf;
273 brcmf_dbg(TRACE, "chandef: control %d center %d width %d\n",
274 ch->chan->center_freq, ch->center_freq1, ch->width);
275 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq1);
276 primary_offset = ch->chan->center_freq - ch->center_freq1;
278 case NL80211_CHAN_WIDTH_20:
279 case NL80211_CHAN_WIDTH_20_NOHT:
280 ch_inf.bw = BRCMU_CHAN_BW_20;
281 WARN_ON(primary_offset != 0);
283 case NL80211_CHAN_WIDTH_40:
284 ch_inf.bw = BRCMU_CHAN_BW_40;
285 if (primary_offset > 0)
286 ch_inf.sb = BRCMU_CHAN_SB_U;
288 ch_inf.sb = BRCMU_CHAN_SB_L;
290 case NL80211_CHAN_WIDTH_80:
291 ch_inf.bw = BRCMU_CHAN_BW_80;
292 if (primary_offset == -30)
293 ch_inf.sb = BRCMU_CHAN_SB_LL;
294 else if (primary_offset == -10)
295 ch_inf.sb = BRCMU_CHAN_SB_LU;
296 else if (primary_offset == 10)
297 ch_inf.sb = BRCMU_CHAN_SB_UL;
299 ch_inf.sb = BRCMU_CHAN_SB_UU;
301 case NL80211_CHAN_WIDTH_80P80:
302 case NL80211_CHAN_WIDTH_160:
303 case NL80211_CHAN_WIDTH_5:
304 case NL80211_CHAN_WIDTH_10:
308 switch (ch->chan->band) {
309 case NL80211_BAND_2GHZ:
310 ch_inf.band = BRCMU_CHAN_BAND_2G;
312 case NL80211_BAND_5GHZ:
313 ch_inf.band = BRCMU_CHAN_BAND_5G;
315 case NL80211_BAND_60GHZ:
319 d11inf->encchspec(&ch_inf);
321 return ch_inf.chspec;
324 u16 channel_to_chanspec(struct brcmu_d11inf *d11inf,
325 struct ieee80211_channel *ch)
327 struct brcmu_chan ch_inf;
329 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq);
330 ch_inf.bw = BRCMU_CHAN_BW_20;
331 d11inf->encchspec(&ch_inf);
333 return ch_inf.chspec;
336 /* Traverse a string of 1-byte tag/1-byte length/variable-length value
337 * triples, returning a pointer to the substring whose first element
340 const struct brcmf_tlv *
341 brcmf_parse_tlvs(const void *buf, int buflen, uint key)
343 const struct brcmf_tlv *elt = buf;
346 /* find tagged parameter */
347 while (totlen >= TLV_HDR_LEN) {
350 /* validate remaining totlen */
351 if ((elt->id == key) && (totlen >= (len + TLV_HDR_LEN)))
354 elt = (struct brcmf_tlv *)((u8 *)elt + (len + TLV_HDR_LEN));
355 totlen -= (len + TLV_HDR_LEN);
361 /* Is any of the tlvs the expected entry? If
362 * not update the tlvs buffer pointer/length.
365 brcmf_tlv_has_ie(const u8 *ie, const u8 **tlvs, u32 *tlvs_len,
366 const u8 *oui, u32 oui_len, u8 type)
368 /* If the contents match the OUI and the type */
369 if (ie[TLV_LEN_OFF] >= oui_len + 1 &&
370 !memcmp(&ie[TLV_BODY_OFF], oui, oui_len) &&
371 type == ie[TLV_BODY_OFF + oui_len]) {
377 /* point to the next ie */
378 ie += ie[TLV_LEN_OFF] + TLV_HDR_LEN;
379 /* calculate the length of the rest of the buffer */
380 *tlvs_len -= (int)(ie - *tlvs);
381 /* update the pointer to the start of the buffer */
387 static struct brcmf_vs_tlv *
388 brcmf_find_wpaie(const u8 *parse, u32 len)
390 const struct brcmf_tlv *ie;
392 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
393 if (brcmf_tlv_has_ie((const u8 *)ie, &parse, &len,
394 WPA_OUI, TLV_OUI_LEN, WPA_OUI_TYPE))
395 return (struct brcmf_vs_tlv *)ie;
400 static struct brcmf_vs_tlv *
401 brcmf_find_wpsie(const u8 *parse, u32 len)
403 const struct brcmf_tlv *ie;
405 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
406 if (brcmf_tlv_has_ie((u8 *)ie, &parse, &len,
407 WPA_OUI, TLV_OUI_LEN, WPS_OUI_TYPE))
408 return (struct brcmf_vs_tlv *)ie;
413 static int brcmf_vif_change_validate(struct brcmf_cfg80211_info *cfg,
414 struct brcmf_cfg80211_vif *vif,
415 enum nl80211_iftype new_type)
417 int iftype_num[NUM_NL80211_IFTYPES];
418 struct brcmf_cfg80211_vif *pos;
419 bool check_combos = false;
422 memset(&iftype_num[0], 0, sizeof(iftype_num));
423 list_for_each_entry(pos, &cfg->vif_list, list)
425 iftype_num[new_type]++;
427 /* concurrent interfaces so need check combinations */
429 iftype_num[pos->wdev.iftype]++;
433 ret = cfg80211_check_combinations(cfg->wiphy, 1, 0, iftype_num);
438 static int brcmf_vif_add_validate(struct brcmf_cfg80211_info *cfg,
439 enum nl80211_iftype new_type)
441 int iftype_num[NUM_NL80211_IFTYPES];
442 struct brcmf_cfg80211_vif *pos;
444 memset(&iftype_num[0], 0, sizeof(iftype_num));
445 list_for_each_entry(pos, &cfg->vif_list, list)
446 iftype_num[pos->wdev.iftype]++;
448 iftype_num[new_type]++;
449 return cfg80211_check_combinations(cfg->wiphy, 1, 0, iftype_num);
452 static void convert_key_from_CPU(struct brcmf_wsec_key *key,
453 struct brcmf_wsec_key_le *key_le)
455 key_le->index = cpu_to_le32(key->index);
456 key_le->len = cpu_to_le32(key->len);
457 key_le->algo = cpu_to_le32(key->algo);
458 key_le->flags = cpu_to_le32(key->flags);
459 key_le->rxiv.hi = cpu_to_le32(key->rxiv.hi);
460 key_le->rxiv.lo = cpu_to_le16(key->rxiv.lo);
461 key_le->iv_initialized = cpu_to_le32(key->iv_initialized);
462 memcpy(key_le->data, key->data, sizeof(key->data));
463 memcpy(key_le->ea, key->ea, sizeof(key->ea));
467 send_key_to_dongle(struct brcmf_if *ifp, struct brcmf_wsec_key *key)
470 struct brcmf_wsec_key_le key_le;
472 convert_key_from_CPU(key, &key_le);
474 brcmf_netdev_wait_pend8021x(ifp);
476 err = brcmf_fil_bsscfg_data_set(ifp, "wsec_key", &key_le,
480 brcmf_err("wsec_key error (%d)\n", err);
485 brcmf_configure_arp_nd_offload(struct brcmf_if *ifp, bool enable)
491 mode = BRCMF_ARP_OL_AGENT | BRCMF_ARP_OL_PEER_AUTO_REPLY;
495 /* Try to set and enable ARP offload feature, this may fail, then it */
496 /* is simply not supported and err 0 will be returned */
497 err = brcmf_fil_iovar_int_set(ifp, "arp_ol", mode);
499 brcmf_dbg(TRACE, "failed to set ARP offload mode to 0x%x, err = %d\n",
503 err = brcmf_fil_iovar_int_set(ifp, "arpoe", enable);
505 brcmf_dbg(TRACE, "failed to configure (%d) ARP offload err = %d\n",
509 brcmf_dbg(TRACE, "successfully configured (%d) ARP offload to 0x%x\n",
513 err = brcmf_fil_iovar_int_set(ifp, "ndoe", enable);
515 brcmf_dbg(TRACE, "failed to configure (%d) ND offload err = %d\n",
519 brcmf_dbg(TRACE, "successfully configured (%d) ND offload to 0x%x\n",
526 brcmf_cfg80211_update_proto_addr_mode(struct wireless_dev *wdev)
528 struct brcmf_cfg80211_vif *vif;
529 struct brcmf_if *ifp;
531 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
534 if ((wdev->iftype == NL80211_IFTYPE_ADHOC) ||
535 (wdev->iftype == NL80211_IFTYPE_AP) ||
536 (wdev->iftype == NL80211_IFTYPE_P2P_GO))
537 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
540 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
544 static int brcmf_get_first_free_bsscfgidx(struct brcmf_pub *drvr)
548 for (bsscfgidx = 0; bsscfgidx < BRCMF_MAX_IFS; bsscfgidx++) {
549 /* bsscfgidx 1 is reserved for legacy P2P */
552 if (!drvr->iflist[bsscfgidx])
559 static int brcmf_cfg80211_request_ap_if(struct brcmf_if *ifp)
561 struct brcmf_mbss_ssid_le mbss_ssid_le;
565 memset(&mbss_ssid_le, 0, sizeof(mbss_ssid_le));
566 bsscfgidx = brcmf_get_first_free_bsscfgidx(ifp->drvr);
570 mbss_ssid_le.bsscfgidx = cpu_to_le32(bsscfgidx);
571 mbss_ssid_le.SSID_len = cpu_to_le32(5);
572 sprintf(mbss_ssid_le.SSID, "ssid%d" , bsscfgidx);
574 err = brcmf_fil_bsscfg_data_set(ifp, "bsscfg:ssid", &mbss_ssid_le,
575 sizeof(mbss_ssid_le));
577 brcmf_err("setting ssid failed %d\n", err);
583 * brcmf_ap_add_vif() - create a new AP virtual interface for multiple BSS
585 * @wiphy: wiphy device of new interface.
586 * @name: name of the new interface.
588 * @params: contains mac address for AP device.
591 struct wireless_dev *brcmf_ap_add_vif(struct wiphy *wiphy, const char *name,
592 u32 *flags, struct vif_params *params)
594 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
595 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
596 struct brcmf_cfg80211_vif *vif;
599 if (brcmf_cfg80211_vif_event_armed(cfg))
600 return ERR_PTR(-EBUSY);
602 brcmf_dbg(INFO, "Adding vif \"%s\"\n", name);
604 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_AP);
606 return (struct wireless_dev *)vif;
608 brcmf_cfg80211_arm_vif_event(cfg, vif);
610 err = brcmf_cfg80211_request_ap_if(ifp);
612 brcmf_cfg80211_arm_vif_event(cfg, NULL);
616 /* wait for firmware event */
617 err = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_ADD,
618 BRCMF_VIF_EVENT_TIMEOUT);
619 brcmf_cfg80211_arm_vif_event(cfg, NULL);
621 brcmf_err("timeout occurred\n");
626 /* interface created in firmware */
629 brcmf_err("no if pointer provided\n");
634 strncpy(ifp->ndev->name, name, sizeof(ifp->ndev->name) - 1);
635 err = brcmf_net_attach(ifp, true);
637 brcmf_err("Registering netdevice failed\n");
641 return &ifp->vif->wdev;
648 static bool brcmf_is_apmode(struct brcmf_cfg80211_vif *vif)
650 enum nl80211_iftype iftype;
652 iftype = vif->wdev.iftype;
653 return iftype == NL80211_IFTYPE_AP || iftype == NL80211_IFTYPE_P2P_GO;
656 static bool brcmf_is_ibssmode(struct brcmf_cfg80211_vif *vif)
658 return vif->wdev.iftype == NL80211_IFTYPE_ADHOC;
661 static struct wireless_dev *brcmf_cfg80211_add_iface(struct wiphy *wiphy,
663 unsigned char name_assign_type,
664 enum nl80211_iftype type,
666 struct vif_params *params)
668 struct wireless_dev *wdev;
671 brcmf_dbg(TRACE, "enter: %s type %d\n", name, type);
672 err = brcmf_vif_add_validate(wiphy_to_cfg(wiphy), type);
674 brcmf_err("iface validation failed: err=%d\n", err);
678 case NL80211_IFTYPE_ADHOC:
679 case NL80211_IFTYPE_STATION:
680 case NL80211_IFTYPE_AP_VLAN:
681 case NL80211_IFTYPE_WDS:
682 case NL80211_IFTYPE_MONITOR:
683 case NL80211_IFTYPE_MESH_POINT:
684 return ERR_PTR(-EOPNOTSUPP);
685 case NL80211_IFTYPE_AP:
686 wdev = brcmf_ap_add_vif(wiphy, name, flags, params);
688 case NL80211_IFTYPE_P2P_CLIENT:
689 case NL80211_IFTYPE_P2P_GO:
690 case NL80211_IFTYPE_P2P_DEVICE:
691 wdev = brcmf_p2p_add_vif(wiphy, name, name_assign_type, type, flags, params);
693 case NL80211_IFTYPE_UNSPECIFIED:
695 return ERR_PTR(-EINVAL);
699 brcmf_err("add iface %s type %d failed: err=%d\n",
700 name, type, (int)PTR_ERR(wdev));
702 brcmf_cfg80211_update_proto_addr_mode(wdev);
707 static void brcmf_scan_config_mpc(struct brcmf_if *ifp, int mpc)
709 if (brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_NEED_MPC))
710 brcmf_set_mpc(ifp, mpc);
713 void brcmf_set_mpc(struct brcmf_if *ifp, int mpc)
717 if (check_vif_up(ifp->vif)) {
718 err = brcmf_fil_iovar_int_set(ifp, "mpc", mpc);
720 brcmf_err("fail to set mpc\n");
723 brcmf_dbg(INFO, "MPC : %d\n", mpc);
727 s32 brcmf_notify_escan_complete(struct brcmf_cfg80211_info *cfg,
728 struct brcmf_if *ifp, bool aborted,
731 struct brcmf_scan_params_le params_le;
732 struct cfg80211_scan_request *scan_request;
735 brcmf_dbg(SCAN, "Enter\n");
737 /* clear scan request, because the FW abort can cause a second call */
738 /* to this functon and might cause a double cfg80211_scan_done */
739 scan_request = cfg->scan_request;
740 cfg->scan_request = NULL;
742 if (timer_pending(&cfg->escan_timeout))
743 del_timer_sync(&cfg->escan_timeout);
746 /* Do a scan abort to stop the driver's scan engine */
747 brcmf_dbg(SCAN, "ABORT scan in firmware\n");
748 memset(¶ms_le, 0, sizeof(params_le));
749 eth_broadcast_addr(params_le.bssid);
750 params_le.bss_type = DOT11_BSSTYPE_ANY;
751 params_le.scan_type = 0;
752 params_le.channel_num = cpu_to_le32(1);
753 params_le.nprobes = cpu_to_le32(1);
754 params_le.active_time = cpu_to_le32(-1);
755 params_le.passive_time = cpu_to_le32(-1);
756 params_le.home_time = cpu_to_le32(-1);
757 /* Scan is aborted by setting channel_list[0] to -1 */
758 params_le.channel_list[0] = cpu_to_le16(-1);
759 /* E-Scan (or anyother type) can be aborted by SCAN */
760 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCAN,
761 ¶ms_le, sizeof(params_le));
763 brcmf_err("Scan abort failed\n");
766 brcmf_scan_config_mpc(ifp, 1);
769 * e-scan can be initiated by scheduled scan
770 * which takes precedence.
772 if (cfg->sched_escan) {
773 brcmf_dbg(SCAN, "scheduled scan completed\n");
774 cfg->sched_escan = false;
776 cfg80211_sched_scan_results(cfg_to_wiphy(cfg));
777 } else if (scan_request) {
778 struct cfg80211_scan_info info = {
782 brcmf_dbg(SCAN, "ESCAN Completed scan: %s\n",
783 aborted ? "Aborted" : "Done");
784 cfg80211_scan_done(scan_request, &info);
786 if (!test_and_clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
787 brcmf_dbg(SCAN, "Scan complete, probably P2P scan\n");
792 static int brcmf_cfg80211_del_ap_iface(struct wiphy *wiphy,
793 struct wireless_dev *wdev)
795 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
796 struct net_device *ndev = wdev->netdev;
797 struct brcmf_if *ifp = netdev_priv(ndev);
801 brcmf_cfg80211_arm_vif_event(cfg, ifp->vif);
803 err = brcmf_fil_bsscfg_data_set(ifp, "interface_remove", NULL, 0);
805 brcmf_err("interface_remove failed %d\n", err);
809 /* wait for firmware event */
810 ret = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_DEL,
811 BRCMF_VIF_EVENT_TIMEOUT);
813 brcmf_err("timeout occurred\n");
818 brcmf_remove_interface(ifp, true);
821 brcmf_cfg80211_arm_vif_event(cfg, NULL);
826 int brcmf_cfg80211_del_iface(struct wiphy *wiphy, struct wireless_dev *wdev)
828 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
829 struct net_device *ndev = wdev->netdev;
831 if (ndev && ndev == cfg_to_ndev(cfg))
834 /* vif event pending in firmware */
835 if (brcmf_cfg80211_vif_event_armed(cfg))
839 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status) &&
840 cfg->escan_info.ifp == netdev_priv(ndev))
841 brcmf_notify_escan_complete(cfg, netdev_priv(ndev),
844 brcmf_fil_iovar_int_set(netdev_priv(ndev), "mpc", 1);
847 switch (wdev->iftype) {
848 case NL80211_IFTYPE_ADHOC:
849 case NL80211_IFTYPE_STATION:
850 case NL80211_IFTYPE_AP_VLAN:
851 case NL80211_IFTYPE_WDS:
852 case NL80211_IFTYPE_MONITOR:
853 case NL80211_IFTYPE_MESH_POINT:
855 case NL80211_IFTYPE_AP:
856 return brcmf_cfg80211_del_ap_iface(wiphy, wdev);
857 case NL80211_IFTYPE_P2P_CLIENT:
858 case NL80211_IFTYPE_P2P_GO:
859 case NL80211_IFTYPE_P2P_DEVICE:
860 return brcmf_p2p_del_vif(wiphy, wdev);
861 case NL80211_IFTYPE_UNSPECIFIED:
869 brcmf_cfg80211_change_iface(struct wiphy *wiphy, struct net_device *ndev,
870 enum nl80211_iftype type, u32 *flags,
871 struct vif_params *params)
873 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
874 struct brcmf_if *ifp = netdev_priv(ndev);
875 struct brcmf_cfg80211_vif *vif = ifp->vif;
880 brcmf_dbg(TRACE, "Enter, bsscfgidx=%d, type=%d\n", ifp->bsscfgidx,
883 /* WAR: There are a number of p2p interface related problems which
884 * need to be handled initially (before doing the validate).
885 * wpa_supplicant tends to do iface changes on p2p device/client/go
886 * which are not always possible/allowed. However we need to return
887 * OK otherwise the wpa_supplicant wont start. The situation differs
888 * on configuration and setup (p2pon=1 module param). The first check
889 * is to see if the request is a change to station for p2p iface.
891 if ((type == NL80211_IFTYPE_STATION) &&
892 ((vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) ||
893 (vif->wdev.iftype == NL80211_IFTYPE_P2P_GO) ||
894 (vif->wdev.iftype == NL80211_IFTYPE_P2P_DEVICE))) {
895 brcmf_dbg(TRACE, "Ignoring cmd for p2p if\n");
896 /* Now depending on whether module param p2pon=1 was used the
897 * response needs to be either 0 or EOPNOTSUPP. The reason is
898 * that if p2pon=1 is used, but a newer supplicant is used then
899 * we should return an error, as this combination wont work.
900 * In other situations 0 is returned and supplicant will start
901 * normally. It will give a trace in cfg80211, but it is the
902 * only way to get it working. Unfortunately this will result
903 * in situation where we wont support new supplicant in
904 * combination with module param p2pon=1, but that is the way
905 * it is. If the user tries this then unloading of driver might
908 if (cfg->p2p.p2pdev_dynamically)
913 err = brcmf_vif_change_validate(wiphy_to_cfg(wiphy), vif, type);
915 brcmf_err("iface validation failed: err=%d\n", err);
919 case NL80211_IFTYPE_MONITOR:
920 case NL80211_IFTYPE_WDS:
921 brcmf_err("type (%d) : currently we do not support this type\n",
924 case NL80211_IFTYPE_ADHOC:
927 case NL80211_IFTYPE_STATION:
930 case NL80211_IFTYPE_AP:
931 case NL80211_IFTYPE_P2P_GO:
940 if (type == NL80211_IFTYPE_P2P_GO) {
941 brcmf_dbg(INFO, "IF Type = P2P GO\n");
942 err = brcmf_p2p_ifchange(cfg, BRCMF_FIL_P2P_IF_GO);
945 brcmf_dbg(INFO, "IF Type = AP\n");
948 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, infra);
950 brcmf_err("WLC_SET_INFRA error (%d)\n", err);
954 brcmf_dbg(INFO, "IF Type = %s\n", brcmf_is_ibssmode(vif) ?
957 ndev->ieee80211_ptr->iftype = type;
959 brcmf_cfg80211_update_proto_addr_mode(&vif->wdev);
962 brcmf_dbg(TRACE, "Exit\n");
967 static void brcmf_escan_prep(struct brcmf_cfg80211_info *cfg,
968 struct brcmf_scan_params_le *params_le,
969 struct cfg80211_scan_request *request)
977 struct brcmf_ssid_le ssid_le;
979 eth_broadcast_addr(params_le->bssid);
980 params_le->bss_type = DOT11_BSSTYPE_ANY;
981 params_le->scan_type = 0;
982 params_le->channel_num = 0;
983 params_le->nprobes = cpu_to_le32(-1);
984 params_le->active_time = cpu_to_le32(-1);
985 params_le->passive_time = cpu_to_le32(-1);
986 params_le->home_time = cpu_to_le32(-1);
987 memset(¶ms_le->ssid_le, 0, sizeof(params_le->ssid_le));
989 /* if request is null exit so it will be all channel broadcast scan */
993 n_ssids = request->n_ssids;
994 n_channels = request->n_channels;
995 /* Copy channel array if applicable */
996 brcmf_dbg(SCAN, "### List of channelspecs to scan ### %d\n",
998 if (n_channels > 0) {
999 for (i = 0; i < n_channels; i++) {
1000 chanspec = channel_to_chanspec(&cfg->d11inf,
1001 request->channels[i]);
1002 brcmf_dbg(SCAN, "Chan : %d, Channel spec: %x\n",
1003 request->channels[i]->hw_value, chanspec);
1004 params_le->channel_list[i] = cpu_to_le16(chanspec);
1007 brcmf_dbg(SCAN, "Scanning all channels\n");
1009 /* Copy ssid array if applicable */
1010 brcmf_dbg(SCAN, "### List of SSIDs to scan ### %d\n", n_ssids);
1012 offset = offsetof(struct brcmf_scan_params_le, channel_list) +
1013 n_channels * sizeof(u16);
1014 offset = roundup(offset, sizeof(u32));
1015 ptr = (char *)params_le + offset;
1016 for (i = 0; i < n_ssids; i++) {
1017 memset(&ssid_le, 0, sizeof(ssid_le));
1019 cpu_to_le32(request->ssids[i].ssid_len);
1020 memcpy(ssid_le.SSID, request->ssids[i].ssid,
1021 request->ssids[i].ssid_len);
1022 if (!ssid_le.SSID_len)
1023 brcmf_dbg(SCAN, "%d: Broadcast scan\n", i);
1025 brcmf_dbg(SCAN, "%d: scan for %s size =%d\n",
1026 i, ssid_le.SSID, ssid_le.SSID_len);
1027 memcpy(ptr, &ssid_le, sizeof(ssid_le));
1028 ptr += sizeof(ssid_le);
1031 brcmf_dbg(SCAN, "Broadcast scan %p\n", request->ssids);
1032 if ((request->ssids) && request->ssids->ssid_len) {
1033 brcmf_dbg(SCAN, "SSID %s len=%d\n",
1034 params_le->ssid_le.SSID,
1035 request->ssids->ssid_len);
1036 params_le->ssid_le.SSID_len =
1037 cpu_to_le32(request->ssids->ssid_len);
1038 memcpy(¶ms_le->ssid_le.SSID, request->ssids->ssid,
1039 request->ssids->ssid_len);
1042 /* Adding mask to channel numbers */
1043 params_le->channel_num =
1044 cpu_to_le32((n_ssids << BRCMF_SCAN_PARAMS_NSSID_SHIFT) |
1045 (n_channels & BRCMF_SCAN_PARAMS_COUNT_MASK));
1049 brcmf_run_escan(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp,
1050 struct cfg80211_scan_request *request)
1052 s32 params_size = BRCMF_SCAN_PARAMS_FIXED_SIZE +
1053 offsetof(struct brcmf_escan_params_le, params_le);
1054 struct brcmf_escan_params_le *params;
1057 brcmf_dbg(SCAN, "E-SCAN START\n");
1059 if (request != NULL) {
1060 /* Allocate space for populating ssids in struct */
1061 params_size += sizeof(u32) * ((request->n_channels + 1) / 2);
1063 /* Allocate space for populating ssids in struct */
1064 params_size += sizeof(struct brcmf_ssid_le) * request->n_ssids;
1067 params = kzalloc(params_size, GFP_KERNEL);
1072 BUG_ON(params_size + sizeof("escan") >= BRCMF_DCMD_MEDLEN);
1073 brcmf_escan_prep(cfg, ¶ms->params_le, request);
1074 params->version = cpu_to_le32(BRCMF_ESCAN_REQ_VERSION);
1075 params->action = cpu_to_le16(WL_ESCAN_ACTION_START);
1076 params->sync_id = cpu_to_le16(0x1234);
1078 err = brcmf_fil_iovar_data_set(ifp, "escan", params, params_size);
1081 brcmf_dbg(INFO, "system busy : escan canceled\n");
1083 brcmf_err("error (%d)\n", err);
1092 brcmf_do_escan(struct brcmf_cfg80211_info *cfg, struct wiphy *wiphy,
1093 struct brcmf_if *ifp, struct cfg80211_scan_request *request)
1097 struct brcmf_scan_results *results;
1098 struct escan_info *escan = &cfg->escan_info;
1100 brcmf_dbg(SCAN, "Enter\n");
1102 escan->wiphy = wiphy;
1103 escan->escan_state = WL_ESCAN_STATE_SCANNING;
1104 passive_scan = cfg->active_scan ? 0 : 1;
1105 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PASSIVE_SCAN,
1108 brcmf_err("error (%d)\n", err);
1111 brcmf_scan_config_mpc(ifp, 0);
1112 results = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
1113 results->version = 0;
1115 results->buflen = WL_ESCAN_RESULTS_FIXED_SIZE;
1117 err = escan->run(cfg, ifp, request);
1119 brcmf_scan_config_mpc(ifp, 1);
1124 brcmf_cfg80211_escan(struct wiphy *wiphy, struct brcmf_cfg80211_vif *vif,
1125 struct cfg80211_scan_request *request,
1126 struct cfg80211_ssid *this_ssid)
1128 struct brcmf_if *ifp = vif->ifp;
1129 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1130 struct cfg80211_ssid *ssids;
1135 struct brcmf_ssid_le ssid_le;
1138 brcmf_dbg(SCAN, "START ESCAN\n");
1140 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
1141 brcmf_err("Scanning already: status (%lu)\n", cfg->scan_status);
1144 if (test_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status)) {
1145 brcmf_err("Scanning being aborted: status (%lu)\n",
1149 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
1150 brcmf_err("Scanning suppressed: status (%lu)\n",
1154 if (test_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state)) {
1155 brcmf_err("Connecting: status (%lu)\n", ifp->vif->sme_state);
1159 /* If scan req comes for p2p0, send it over primary I/F */
1160 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
1161 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif;
1166 ssids = request->ssids;
1170 /* we don't do escan in ibss */
1174 cfg->scan_request = request;
1175 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1177 cfg->escan_info.run = brcmf_run_escan;
1178 err = brcmf_p2p_scan_prep(wiphy, request, vif);
1182 err = brcmf_do_escan(cfg, wiphy, vif->ifp, request);
1186 brcmf_dbg(SCAN, "ssid \"%s\", ssid_len (%d)\n",
1187 ssids->ssid, ssids->ssid_len);
1188 memset(&ssid_le, 0, sizeof(ssid_le));
1189 SSID_len = min_t(u8, sizeof(ssid_le.SSID), ssids->ssid_len);
1190 ssid_le.SSID_len = cpu_to_le32(0);
1193 memcpy(ssid_le.SSID, ssids->ssid, SSID_len);
1194 ssid_le.SSID_len = cpu_to_le32(SSID_len);
1197 brcmf_dbg(SCAN, "Broadcast scan\n");
1199 passive_scan = cfg->active_scan ? 0 : 1;
1200 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PASSIVE_SCAN,
1203 brcmf_err("WLC_SET_PASSIVE_SCAN error (%d)\n", err);
1206 brcmf_scan_config_mpc(ifp, 0);
1207 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCAN, &ssid_le,
1211 brcmf_dbg(INFO, "BUSY: scan for \"%s\" canceled\n",
1214 brcmf_err("WLC_SCAN error (%d)\n", err);
1216 brcmf_scan_config_mpc(ifp, 1);
1221 /* Arm scan timeout timer */
1222 mod_timer(&cfg->escan_timeout, jiffies +
1223 BRCMF_ESCAN_TIMER_INTERVAL_MS * HZ / 1000);
1228 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1229 cfg->scan_request = NULL;
1234 brcmf_cfg80211_scan(struct wiphy *wiphy, struct cfg80211_scan_request *request)
1236 struct brcmf_cfg80211_vif *vif;
1239 brcmf_dbg(TRACE, "Enter\n");
1240 vif = container_of(request->wdev, struct brcmf_cfg80211_vif, wdev);
1241 if (!check_vif_up(vif))
1244 err = brcmf_cfg80211_escan(wiphy, vif, request, NULL);
1247 brcmf_err("scan error (%d)\n", err);
1249 brcmf_dbg(TRACE, "Exit\n");
1253 static s32 brcmf_set_rts(struct net_device *ndev, u32 rts_threshold)
1257 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "rtsthresh",
1260 brcmf_err("Error (%d)\n", err);
1265 static s32 brcmf_set_frag(struct net_device *ndev, u32 frag_threshold)
1269 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "fragthresh",
1272 brcmf_err("Error (%d)\n", err);
1277 static s32 brcmf_set_retry(struct net_device *ndev, u32 retry, bool l)
1280 u32 cmd = (l ? BRCMF_C_SET_LRL : BRCMF_C_SET_SRL);
1282 err = brcmf_fil_cmd_int_set(netdev_priv(ndev), cmd, retry);
1284 brcmf_err("cmd (%d) , error (%d)\n", cmd, err);
1290 static s32 brcmf_cfg80211_set_wiphy_params(struct wiphy *wiphy, u32 changed)
1292 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1293 struct net_device *ndev = cfg_to_ndev(cfg);
1294 struct brcmf_if *ifp = netdev_priv(ndev);
1297 brcmf_dbg(TRACE, "Enter\n");
1298 if (!check_vif_up(ifp->vif))
1301 if (changed & WIPHY_PARAM_RTS_THRESHOLD &&
1302 (cfg->conf->rts_threshold != wiphy->rts_threshold)) {
1303 cfg->conf->rts_threshold = wiphy->rts_threshold;
1304 err = brcmf_set_rts(ndev, cfg->conf->rts_threshold);
1308 if (changed & WIPHY_PARAM_FRAG_THRESHOLD &&
1309 (cfg->conf->frag_threshold != wiphy->frag_threshold)) {
1310 cfg->conf->frag_threshold = wiphy->frag_threshold;
1311 err = brcmf_set_frag(ndev, cfg->conf->frag_threshold);
1315 if (changed & WIPHY_PARAM_RETRY_LONG
1316 && (cfg->conf->retry_long != wiphy->retry_long)) {
1317 cfg->conf->retry_long = wiphy->retry_long;
1318 err = brcmf_set_retry(ndev, cfg->conf->retry_long, true);
1322 if (changed & WIPHY_PARAM_RETRY_SHORT
1323 && (cfg->conf->retry_short != wiphy->retry_short)) {
1324 cfg->conf->retry_short = wiphy->retry_short;
1325 err = brcmf_set_retry(ndev, cfg->conf->retry_short, false);
1331 brcmf_dbg(TRACE, "Exit\n");
1335 static void brcmf_init_prof(struct brcmf_cfg80211_profile *prof)
1337 memset(prof, 0, sizeof(*prof));
1340 static u16 brcmf_map_fw_linkdown_reason(const struct brcmf_event_msg *e)
1344 switch (e->event_code) {
1345 case BRCMF_E_DEAUTH:
1346 case BRCMF_E_DEAUTH_IND:
1347 case BRCMF_E_DISASSOC_IND:
1358 static void brcmf_link_down(struct brcmf_cfg80211_vif *vif, u16 reason)
1360 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(vif->wdev.wiphy);
1363 brcmf_dbg(TRACE, "Enter\n");
1365 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTED, &vif->sme_state)) {
1366 brcmf_dbg(INFO, "Call WLC_DISASSOC to stop excess roaming\n ");
1367 err = brcmf_fil_cmd_data_set(vif->ifp,
1368 BRCMF_C_DISASSOC, NULL, 0);
1370 brcmf_err("WLC_DISASSOC failed (%d)\n", err);
1372 if ((vif->wdev.iftype == NL80211_IFTYPE_STATION) ||
1373 (vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT))
1374 cfg80211_disconnected(vif->wdev.netdev, reason, NULL, 0,
1377 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &vif->sme_state);
1378 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
1379 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
1380 brcmf_dbg(TRACE, "Exit\n");
1384 brcmf_cfg80211_join_ibss(struct wiphy *wiphy, struct net_device *ndev,
1385 struct cfg80211_ibss_params *params)
1387 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1388 struct brcmf_if *ifp = netdev_priv(ndev);
1389 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1390 struct brcmf_join_params join_params;
1391 size_t join_params_size = 0;
1398 brcmf_dbg(TRACE, "Enter\n");
1399 if (!check_vif_up(ifp->vif))
1403 brcmf_dbg(CONN, "SSID: %s\n", params->ssid);
1405 brcmf_dbg(CONN, "SSID: NULL, Not supported\n");
1409 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1412 brcmf_dbg(CONN, "BSSID: %pM\n", params->bssid);
1414 brcmf_dbg(CONN, "No BSSID specified\n");
1416 if (params->chandef.chan)
1417 brcmf_dbg(CONN, "channel: %d\n",
1418 params->chandef.chan->center_freq);
1420 brcmf_dbg(CONN, "no channel specified\n");
1422 if (params->channel_fixed)
1423 brcmf_dbg(CONN, "fixed channel required\n");
1425 brcmf_dbg(CONN, "no fixed channel required\n");
1427 if (params->ie && params->ie_len)
1428 brcmf_dbg(CONN, "ie len: %d\n", params->ie_len);
1430 brcmf_dbg(CONN, "no ie specified\n");
1432 if (params->beacon_interval)
1433 brcmf_dbg(CONN, "beacon interval: %d\n",
1434 params->beacon_interval);
1436 brcmf_dbg(CONN, "no beacon interval specified\n");
1438 if (params->basic_rates)
1439 brcmf_dbg(CONN, "basic rates: %08X\n", params->basic_rates);
1441 brcmf_dbg(CONN, "no basic rates specified\n");
1443 if (params->privacy)
1444 brcmf_dbg(CONN, "privacy required\n");
1446 brcmf_dbg(CONN, "no privacy required\n");
1448 /* Configure Privacy for starter */
1449 if (params->privacy)
1450 wsec |= WEP_ENABLED;
1452 err = brcmf_fil_iovar_int_set(ifp, "wsec", wsec);
1454 brcmf_err("wsec failed (%d)\n", err);
1458 /* Configure Beacon Interval for starter */
1459 if (params->beacon_interval)
1460 bcnprd = params->beacon_interval;
1464 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD, bcnprd);
1466 brcmf_err("WLC_SET_BCNPRD failed (%d)\n", err);
1470 /* Configure required join parameter */
1471 memset(&join_params, 0, sizeof(struct brcmf_join_params));
1474 ssid_len = min_t(u32, params->ssid_len, IEEE80211_MAX_SSID_LEN);
1475 memcpy(join_params.ssid_le.SSID, params->ssid, ssid_len);
1476 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
1477 join_params_size = sizeof(join_params.ssid_le);
1480 if (params->bssid) {
1481 memcpy(join_params.params_le.bssid, params->bssid, ETH_ALEN);
1482 join_params_size += BRCMF_ASSOC_PARAMS_FIXED_SIZE;
1483 memcpy(profile->bssid, params->bssid, ETH_ALEN);
1485 eth_broadcast_addr(join_params.params_le.bssid);
1486 eth_zero_addr(profile->bssid);
1490 if (params->chandef.chan) {
1494 ieee80211_frequency_to_channel(
1495 params->chandef.chan->center_freq);
1496 if (params->channel_fixed) {
1497 /* adding chanspec */
1498 chanspec = chandef_to_chanspec(&cfg->d11inf,
1500 join_params.params_le.chanspec_list[0] =
1501 cpu_to_le16(chanspec);
1502 join_params.params_le.chanspec_num = cpu_to_le32(1);
1503 join_params_size += sizeof(join_params.params_le);
1506 /* set channel for starter */
1507 target_channel = cfg->channel;
1508 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_CHANNEL,
1511 brcmf_err("WLC_SET_CHANNEL failed (%d)\n", err);
1517 cfg->ibss_starter = false;
1520 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
1521 &join_params, join_params_size);
1523 brcmf_err("WLC_SET_SSID failed (%d)\n", err);
1529 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1530 brcmf_dbg(TRACE, "Exit\n");
1535 brcmf_cfg80211_leave_ibss(struct wiphy *wiphy, struct net_device *ndev)
1537 struct brcmf_if *ifp = netdev_priv(ndev);
1539 brcmf_dbg(TRACE, "Enter\n");
1540 if (!check_vif_up(ifp->vif)) {
1541 /* When driver is being unloaded, it can end up here. If an
1542 * error is returned then later on a debug trace in the wireless
1543 * core module will be printed. To avoid this 0 is returned.
1548 brcmf_link_down(ifp->vif, WLAN_REASON_DEAUTH_LEAVING);
1549 brcmf_net_setcarrier(ifp, false);
1551 brcmf_dbg(TRACE, "Exit\n");
1556 static s32 brcmf_set_wpa_version(struct net_device *ndev,
1557 struct cfg80211_connect_params *sme)
1559 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1560 struct brcmf_cfg80211_security *sec;
1564 if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_1)
1565 val = WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED;
1566 else if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_2)
1567 val = WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED;
1569 val = WPA_AUTH_DISABLED;
1570 brcmf_dbg(CONN, "setting wpa_auth to 0x%0x\n", val);
1571 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1573 brcmf_err("set wpa_auth failed (%d)\n", err);
1576 sec = &profile->sec;
1577 sec->wpa_versions = sme->crypto.wpa_versions;
1581 static s32 brcmf_set_auth_type(struct net_device *ndev,
1582 struct cfg80211_connect_params *sme)
1584 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1585 struct brcmf_cfg80211_security *sec;
1589 switch (sme->auth_type) {
1590 case NL80211_AUTHTYPE_OPEN_SYSTEM:
1592 brcmf_dbg(CONN, "open system\n");
1594 case NL80211_AUTHTYPE_SHARED_KEY:
1596 brcmf_dbg(CONN, "shared key\n");
1600 brcmf_dbg(CONN, "automatic, auth type (%d)\n", sme->auth_type);
1604 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1606 brcmf_err("set auth failed (%d)\n", err);
1609 sec = &profile->sec;
1610 sec->auth_type = sme->auth_type;
1615 brcmf_set_wsec_mode(struct net_device *ndev,
1616 struct cfg80211_connect_params *sme)
1618 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1619 struct brcmf_cfg80211_security *sec;
1625 if (sme->crypto.n_ciphers_pairwise) {
1626 switch (sme->crypto.ciphers_pairwise[0]) {
1627 case WLAN_CIPHER_SUITE_WEP40:
1628 case WLAN_CIPHER_SUITE_WEP104:
1631 case WLAN_CIPHER_SUITE_TKIP:
1632 pval = TKIP_ENABLED;
1634 case WLAN_CIPHER_SUITE_CCMP:
1637 case WLAN_CIPHER_SUITE_AES_CMAC:
1641 brcmf_err("invalid cipher pairwise (%d)\n",
1642 sme->crypto.ciphers_pairwise[0]);
1646 if (sme->crypto.cipher_group) {
1647 switch (sme->crypto.cipher_group) {
1648 case WLAN_CIPHER_SUITE_WEP40:
1649 case WLAN_CIPHER_SUITE_WEP104:
1652 case WLAN_CIPHER_SUITE_TKIP:
1653 gval = TKIP_ENABLED;
1655 case WLAN_CIPHER_SUITE_CCMP:
1658 case WLAN_CIPHER_SUITE_AES_CMAC:
1662 brcmf_err("invalid cipher group (%d)\n",
1663 sme->crypto.cipher_group);
1668 brcmf_dbg(CONN, "pval (%d) gval (%d)\n", pval, gval);
1669 /* In case of privacy, but no security and WPS then simulate */
1670 /* setting AES. WPS-2.0 allows no security */
1671 if (brcmf_find_wpsie(sme->ie, sme->ie_len) && !pval && !gval &&
1676 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wsec", wsec);
1678 brcmf_err("error (%d)\n", err);
1682 sec = &profile->sec;
1683 sec->cipher_pairwise = sme->crypto.ciphers_pairwise[0];
1684 sec->cipher_group = sme->crypto.cipher_group;
1690 brcmf_set_key_mgmt(struct net_device *ndev, struct cfg80211_connect_params *sme)
1692 struct brcmf_if *ifp = netdev_priv(ndev);
1695 const struct brcmf_tlv *rsn_ie;
1703 if (!sme->crypto.n_akm_suites)
1706 err = brcmf_fil_bsscfg_int_get(netdev_priv(ndev), "wpa_auth", &val);
1708 brcmf_err("could not get wpa_auth (%d)\n", err);
1711 if (val & (WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED)) {
1712 switch (sme->crypto.akm_suites[0]) {
1713 case WLAN_AKM_SUITE_8021X:
1714 val = WPA_AUTH_UNSPECIFIED;
1716 case WLAN_AKM_SUITE_PSK:
1720 brcmf_err("invalid cipher group (%d)\n",
1721 sme->crypto.cipher_group);
1724 } else if (val & (WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED)) {
1725 switch (sme->crypto.akm_suites[0]) {
1726 case WLAN_AKM_SUITE_8021X:
1727 val = WPA2_AUTH_UNSPECIFIED;
1729 case WLAN_AKM_SUITE_8021X_SHA256:
1730 val = WPA2_AUTH_1X_SHA256;
1732 case WLAN_AKM_SUITE_PSK_SHA256:
1733 val = WPA2_AUTH_PSK_SHA256;
1735 case WLAN_AKM_SUITE_PSK:
1736 val = WPA2_AUTH_PSK;
1739 brcmf_err("invalid cipher group (%d)\n",
1740 sme->crypto.cipher_group);
1745 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
1746 goto skip_mfp_config;
1747 /* The MFP mode (1 or 2) needs to be determined, parse IEs. The
1748 * IE will not be verified, just a quick search for MFP config
1750 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie, sme->ie_len,
1753 goto skip_mfp_config;
1754 ie = (const u8 *)rsn_ie;
1755 ie_len = rsn_ie->len + TLV_HDR_LEN;
1756 /* Skip unicast suite */
1757 offset = TLV_HDR_LEN + WPA_IE_VERSION_LEN + WPA_IE_MIN_OUI_LEN;
1758 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1759 goto skip_mfp_config;
1760 /* Skip multicast suite */
1761 count = ie[offset] + (ie[offset + 1] << 8);
1762 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1763 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1764 goto skip_mfp_config;
1765 /* Skip auth key management suite(s) */
1766 count = ie[offset] + (ie[offset + 1] << 8);
1767 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1768 if (offset + WPA_IE_SUITE_COUNT_LEN > ie_len)
1769 goto skip_mfp_config;
1770 /* Ready to read capabilities */
1771 mfp = BRCMF_MFP_NONE;
1772 rsn_cap = ie[offset] + (ie[offset + 1] << 8);
1773 if (rsn_cap & RSN_CAP_MFPR_MASK)
1774 mfp = BRCMF_MFP_REQUIRED;
1775 else if (rsn_cap & RSN_CAP_MFPC_MASK)
1776 mfp = BRCMF_MFP_CAPABLE;
1777 brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "mfp", mfp);
1780 brcmf_dbg(CONN, "setting wpa_auth to %d\n", val);
1781 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1783 brcmf_err("could not set wpa_auth (%d)\n", err);
1791 brcmf_set_sharedkey(struct net_device *ndev,
1792 struct cfg80211_connect_params *sme)
1794 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1795 struct brcmf_cfg80211_security *sec;
1796 struct brcmf_wsec_key key;
1800 brcmf_dbg(CONN, "key len (%d)\n", sme->key_len);
1802 if (sme->key_len == 0)
1805 sec = &profile->sec;
1806 brcmf_dbg(CONN, "wpa_versions 0x%x cipher_pairwise 0x%x\n",
1807 sec->wpa_versions, sec->cipher_pairwise);
1809 if (sec->wpa_versions & (NL80211_WPA_VERSION_1 | NL80211_WPA_VERSION_2))
1812 if (!(sec->cipher_pairwise &
1813 (WLAN_CIPHER_SUITE_WEP40 | WLAN_CIPHER_SUITE_WEP104)))
1816 memset(&key, 0, sizeof(key));
1817 key.len = (u32) sme->key_len;
1818 key.index = (u32) sme->key_idx;
1819 if (key.len > sizeof(key.data)) {
1820 brcmf_err("Too long key length (%u)\n", key.len);
1823 memcpy(key.data, sme->key, key.len);
1824 key.flags = BRCMF_PRIMARY_KEY;
1825 switch (sec->cipher_pairwise) {
1826 case WLAN_CIPHER_SUITE_WEP40:
1827 key.algo = CRYPTO_ALGO_WEP1;
1829 case WLAN_CIPHER_SUITE_WEP104:
1830 key.algo = CRYPTO_ALGO_WEP128;
1833 brcmf_err("Invalid algorithm (%d)\n",
1834 sme->crypto.ciphers_pairwise[0]);
1837 /* Set the new key/index */
1838 brcmf_dbg(CONN, "key length (%d) key index (%d) algo (%d)\n",
1839 key.len, key.index, key.algo);
1840 brcmf_dbg(CONN, "key \"%s\"\n", key.data);
1841 err = send_key_to_dongle(netdev_priv(ndev), &key);
1845 if (sec->auth_type == NL80211_AUTHTYPE_SHARED_KEY) {
1846 brcmf_dbg(CONN, "set auth_type to shared key\n");
1847 val = WL_AUTH_SHARED_KEY; /* shared key */
1848 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1850 brcmf_err("set auth failed (%d)\n", err);
1856 enum nl80211_auth_type brcmf_war_auth_type(struct brcmf_if *ifp,
1857 enum nl80211_auth_type type)
1859 if (type == NL80211_AUTHTYPE_AUTOMATIC &&
1860 brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_AUTO_AUTH)) {
1861 brcmf_dbg(CONN, "WAR: use OPEN instead of AUTO\n");
1862 type = NL80211_AUTHTYPE_OPEN_SYSTEM;
1867 static void brcmf_set_join_pref(struct brcmf_if *ifp,
1868 struct cfg80211_bss_selection *bss_select)
1870 struct brcmf_join_pref_params join_pref_params[2];
1871 enum nl80211_band band;
1874 join_pref_params[i].len = 2;
1875 join_pref_params[i].rssi_gain = 0;
1877 if (bss_select->behaviour != NL80211_BSS_SELECT_ATTR_BAND_PREF)
1878 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_ASSOC_PREFER, WLC_BAND_AUTO);
1880 switch (bss_select->behaviour) {
1881 case __NL80211_BSS_SELECT_ATTR_INVALID:
1882 brcmf_c_set_joinpref_default(ifp);
1884 case NL80211_BSS_SELECT_ATTR_BAND_PREF:
1885 join_pref_params[i].type = BRCMF_JOIN_PREF_BAND;
1886 band = bss_select->param.band_pref;
1887 join_pref_params[i].band = nl80211_band_to_fwil(band);
1890 case NL80211_BSS_SELECT_ATTR_RSSI_ADJUST:
1891 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI_DELTA;
1892 band = bss_select->param.adjust.band;
1893 join_pref_params[i].band = nl80211_band_to_fwil(band);
1894 join_pref_params[i].rssi_gain = bss_select->param.adjust.delta;
1897 case NL80211_BSS_SELECT_ATTR_RSSI:
1901 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI;
1902 join_pref_params[i].len = 2;
1903 join_pref_params[i].rssi_gain = 0;
1904 join_pref_params[i].band = 0;
1905 err = brcmf_fil_iovar_data_set(ifp, "join_pref", join_pref_params,
1906 sizeof(join_pref_params));
1908 brcmf_err("Set join_pref error (%d)\n", err);
1912 brcmf_cfg80211_connect(struct wiphy *wiphy, struct net_device *ndev,
1913 struct cfg80211_connect_params *sme)
1915 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1916 struct brcmf_if *ifp = netdev_priv(ndev);
1917 struct ieee80211_channel *chan = sme->channel;
1918 struct brcmf_join_params join_params;
1919 size_t join_params_size;
1920 const struct brcmf_tlv *rsn_ie;
1921 const struct brcmf_vs_tlv *wpa_ie;
1924 struct brcmf_ext_join_params_le *ext_join_params;
1929 brcmf_dbg(TRACE, "Enter\n");
1930 if (!check_vif_up(ifp->vif))
1934 brcmf_err("Invalid ssid\n");
1938 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif) {
1939 /* A normal (non P2P) connection request setup. */
1942 /* find the WPA_IE */
1943 wpa_ie = brcmf_find_wpaie((u8 *)sme->ie, sme->ie_len);
1946 ie_len = wpa_ie->len + TLV_HDR_LEN;
1948 /* find the RSN_IE */
1949 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie,
1954 ie_len = rsn_ie->len + TLV_HDR_LEN;
1957 brcmf_fil_iovar_data_set(ifp, "wpaie", ie, ie_len);
1960 err = brcmf_vif_set_mgmt_ie(ifp->vif, BRCMF_VNDR_IE_ASSOCREQ_FLAG,
1961 sme->ie, sme->ie_len);
1963 brcmf_err("Set Assoc REQ IE Failed\n");
1965 brcmf_dbg(TRACE, "Applied Vndr IEs for Assoc request\n");
1967 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1971 ieee80211_frequency_to_channel(chan->center_freq);
1972 chanspec = channel_to_chanspec(&cfg->d11inf, chan);
1973 brcmf_dbg(CONN, "channel=%d, center_req=%d, chanspec=0x%04x\n",
1974 cfg->channel, chan->center_freq, chanspec);
1980 brcmf_dbg(INFO, "ie (%p), ie_len (%zd)\n", sme->ie, sme->ie_len);
1982 err = brcmf_set_wpa_version(ndev, sme);
1984 brcmf_err("wl_set_wpa_version failed (%d)\n", err);
1988 sme->auth_type = brcmf_war_auth_type(ifp, sme->auth_type);
1989 err = brcmf_set_auth_type(ndev, sme);
1991 brcmf_err("wl_set_auth_type failed (%d)\n", err);
1995 err = brcmf_set_wsec_mode(ndev, sme);
1997 brcmf_err("wl_set_set_cipher failed (%d)\n", err);
2001 err = brcmf_set_key_mgmt(ndev, sme);
2003 brcmf_err("wl_set_key_mgmt failed (%d)\n", err);
2007 err = brcmf_set_sharedkey(ndev, sme);
2009 brcmf_err("brcmf_set_sharedkey failed (%d)\n", err);
2013 /* Join with specific BSSID and cached SSID
2014 * If SSID is zero join based on BSSID only
2016 join_params_size = offsetof(struct brcmf_ext_join_params_le, assoc_le) +
2017 offsetof(struct brcmf_assoc_params_le, chanspec_list);
2019 join_params_size += sizeof(u16);
2020 ext_join_params = kzalloc(join_params_size, GFP_KERNEL);
2021 if (ext_join_params == NULL) {
2025 ssid_len = min_t(u32, sme->ssid_len, IEEE80211_MAX_SSID_LEN);
2026 ext_join_params->ssid_le.SSID_len = cpu_to_le32(ssid_len);
2027 memcpy(&ext_join_params->ssid_le.SSID, sme->ssid, ssid_len);
2028 if (ssid_len < IEEE80211_MAX_SSID_LEN)
2029 brcmf_dbg(CONN, "SSID \"%s\", len (%d)\n",
2030 ext_join_params->ssid_le.SSID, ssid_len);
2032 /* Set up join scan parameters */
2033 ext_join_params->scan_le.scan_type = -1;
2034 ext_join_params->scan_le.home_time = cpu_to_le32(-1);
2037 memcpy(&ext_join_params->assoc_le.bssid, sme->bssid, ETH_ALEN);
2039 eth_broadcast_addr(ext_join_params->assoc_le.bssid);
2042 ext_join_params->assoc_le.chanspec_num = cpu_to_le32(1);
2044 ext_join_params->assoc_le.chanspec_list[0] =
2045 cpu_to_le16(chanspec);
2046 /* Increase dwell time to receive probe response or detect
2047 * beacon from target AP at a noisy air only during connect
2050 ext_join_params->scan_le.active_time =
2051 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS);
2052 ext_join_params->scan_le.passive_time =
2053 cpu_to_le32(BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS);
2054 /* To sync with presence period of VSDB GO send probe request
2055 * more frequently. Probe request will be stopped when it gets
2056 * probe response from target AP/GO.
2058 ext_join_params->scan_le.nprobes =
2059 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS /
2060 BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS);
2062 ext_join_params->scan_le.active_time = cpu_to_le32(-1);
2063 ext_join_params->scan_le.passive_time = cpu_to_le32(-1);
2064 ext_join_params->scan_le.nprobes = cpu_to_le32(-1);
2067 brcmf_set_join_pref(ifp, &sme->bss_select);
2069 err = brcmf_fil_bsscfg_data_set(ifp, "join", ext_join_params,
2071 kfree(ext_join_params);
2073 /* This is it. join command worked, we are done */
2076 /* join command failed, fallback to set ssid */
2077 memset(&join_params, 0, sizeof(join_params));
2078 join_params_size = sizeof(join_params.ssid_le);
2080 memcpy(&join_params.ssid_le.SSID, sme->ssid, ssid_len);
2081 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
2084 memcpy(join_params.params_le.bssid, sme->bssid, ETH_ALEN);
2086 eth_broadcast_addr(join_params.params_le.bssid);
2089 join_params.params_le.chanspec_list[0] = cpu_to_le16(chanspec);
2090 join_params.params_le.chanspec_num = cpu_to_le32(1);
2091 join_params_size += sizeof(join_params.params_le);
2093 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
2094 &join_params, join_params_size);
2096 brcmf_err("BRCMF_C_SET_SSID failed (%d)\n", err);
2100 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2101 brcmf_dbg(TRACE, "Exit\n");
2106 brcmf_cfg80211_disconnect(struct wiphy *wiphy, struct net_device *ndev,
2109 struct brcmf_if *ifp = netdev_priv(ndev);
2110 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2111 struct brcmf_scb_val_le scbval;
2114 brcmf_dbg(TRACE, "Enter. Reason code = %d\n", reason_code);
2115 if (!check_vif_up(ifp->vif))
2118 clear_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
2119 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2120 cfg80211_disconnected(ndev, reason_code, NULL, 0, true, GFP_KERNEL);
2122 memcpy(&scbval.ea, &profile->bssid, ETH_ALEN);
2123 scbval.val = cpu_to_le32(reason_code);
2124 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_DISASSOC,
2125 &scbval, sizeof(scbval));
2127 brcmf_err("error (%d)\n", err);
2129 brcmf_dbg(TRACE, "Exit\n");
2134 brcmf_cfg80211_set_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2135 enum nl80211_tx_power_setting type, s32 mbm)
2137 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2138 struct net_device *ndev = cfg_to_ndev(cfg);
2139 struct brcmf_if *ifp = netdev_priv(ndev);
2144 brcmf_dbg(TRACE, "Enter %d %d\n", type, mbm);
2145 if (!check_vif_up(ifp->vif))
2149 case NL80211_TX_POWER_AUTOMATIC:
2151 case NL80211_TX_POWER_LIMITED:
2152 case NL80211_TX_POWER_FIXED:
2154 brcmf_err("TX_POWER_FIXED - dbm is negative\n");
2158 qdbm = MBM_TO_DBM(4 * mbm);
2161 qdbm |= WL_TXPWR_OVERRIDE;
2164 brcmf_err("Unsupported type %d\n", type);
2168 /* Make sure radio is off or on as far as software is concerned */
2169 disable = WL_RADIO_SW_DISABLE << 16;
2170 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_RADIO, disable);
2172 brcmf_err("WLC_SET_RADIO error (%d)\n", err);
2174 err = brcmf_fil_iovar_int_set(ifp, "qtxpower", qdbm);
2176 brcmf_err("qtxpower error (%d)\n", err);
2179 brcmf_dbg(TRACE, "Exit %d (qdbm)\n", qdbm & ~WL_TXPWR_OVERRIDE);
2184 brcmf_cfg80211_get_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2187 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2188 struct net_device *ndev = cfg_to_ndev(cfg);
2189 struct brcmf_if *ifp = netdev_priv(ndev);
2193 brcmf_dbg(TRACE, "Enter\n");
2194 if (!check_vif_up(ifp->vif))
2197 err = brcmf_fil_iovar_int_get(ifp, "qtxpower", &qdbm);
2199 brcmf_err("error (%d)\n", err);
2202 *dbm = (qdbm & ~WL_TXPWR_OVERRIDE) / 4;
2205 brcmf_dbg(TRACE, "Exit (0x%x %d)\n", qdbm, *dbm);
2210 brcmf_cfg80211_config_default_key(struct wiphy *wiphy, struct net_device *ndev,
2211 u8 key_idx, bool unicast, bool multicast)
2213 struct brcmf_if *ifp = netdev_priv(ndev);
2218 brcmf_dbg(TRACE, "Enter\n");
2219 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2220 if (!check_vif_up(ifp->vif))
2223 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2225 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2229 if (wsec & WEP_ENABLED) {
2230 /* Just select a new current key */
2232 err = brcmf_fil_cmd_int_set(ifp,
2233 BRCMF_C_SET_KEY_PRIMARY, index);
2235 brcmf_err("error (%d)\n", err);
2238 brcmf_dbg(TRACE, "Exit\n");
2243 brcmf_cfg80211_del_key(struct wiphy *wiphy, struct net_device *ndev,
2244 u8 key_idx, bool pairwise, const u8 *mac_addr)
2246 struct brcmf_if *ifp = netdev_priv(ndev);
2247 struct brcmf_wsec_key *key;
2250 brcmf_dbg(TRACE, "Enter\n");
2251 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2253 if (!check_vif_up(ifp->vif))
2256 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2257 /* we ignore this key index in this case */
2261 key = &ifp->vif->profile.key[key_idx];
2263 if (key->algo == CRYPTO_ALGO_OFF) {
2264 brcmf_dbg(CONN, "Ignore clearing of (never configured) key\n");
2268 memset(key, 0, sizeof(*key));
2269 key->index = (u32)key_idx;
2270 key->flags = BRCMF_PRIMARY_KEY;
2272 /* Clear the key/index */
2273 err = send_key_to_dongle(ifp, key);
2275 brcmf_dbg(TRACE, "Exit\n");
2280 brcmf_cfg80211_add_key(struct wiphy *wiphy, struct net_device *ndev,
2281 u8 key_idx, bool pairwise, const u8 *mac_addr,
2282 struct key_params *params)
2284 struct brcmf_if *ifp = netdev_priv(ndev);
2285 struct brcmf_wsec_key *key;
2292 brcmf_dbg(TRACE, "Enter\n");
2293 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2294 if (!check_vif_up(ifp->vif))
2297 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2298 /* we ignore this key index in this case */
2299 brcmf_err("invalid key index (%d)\n", key_idx);
2303 if (params->key_len == 0)
2304 return brcmf_cfg80211_del_key(wiphy, ndev, key_idx, pairwise,
2307 if (params->key_len > sizeof(key->data)) {
2308 brcmf_err("Too long key length (%u)\n", params->key_len);
2313 if (mac_addr && (params->cipher != WLAN_CIPHER_SUITE_WEP40) &&
2314 (params->cipher != WLAN_CIPHER_SUITE_WEP104)) {
2315 brcmf_dbg(TRACE, "Ext key, mac %pM", mac_addr);
2319 key = &ifp->vif->profile.key[key_idx];
2320 memset(key, 0, sizeof(*key));
2321 if ((ext_key) && (!is_multicast_ether_addr(mac_addr)))
2322 memcpy((char *)&key->ea, (void *)mac_addr, ETH_ALEN);
2323 key->len = params->key_len;
2324 key->index = key_idx;
2325 memcpy(key->data, params->key, key->len);
2327 key->flags = BRCMF_PRIMARY_KEY;
2329 switch (params->cipher) {
2330 case WLAN_CIPHER_SUITE_WEP40:
2331 key->algo = CRYPTO_ALGO_WEP1;
2333 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2335 case WLAN_CIPHER_SUITE_WEP104:
2336 key->algo = CRYPTO_ALGO_WEP128;
2338 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2340 case WLAN_CIPHER_SUITE_TKIP:
2341 if (!brcmf_is_apmode(ifp->vif)) {
2342 brcmf_dbg(CONN, "Swapping RX/TX MIC key\n");
2343 memcpy(keybuf, &key->data[24], sizeof(keybuf));
2344 memcpy(&key->data[24], &key->data[16], sizeof(keybuf));
2345 memcpy(&key->data[16], keybuf, sizeof(keybuf));
2347 key->algo = CRYPTO_ALGO_TKIP;
2349 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2351 case WLAN_CIPHER_SUITE_AES_CMAC:
2352 key->algo = CRYPTO_ALGO_AES_CCM;
2354 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2356 case WLAN_CIPHER_SUITE_CCMP:
2357 key->algo = CRYPTO_ALGO_AES_CCM;
2359 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_CCMP\n");
2362 brcmf_err("Invalid cipher (0x%x)\n", params->cipher);
2367 err = send_key_to_dongle(ifp, key);
2371 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2373 brcmf_err("get wsec error (%d)\n", err);
2377 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2379 brcmf_err("set wsec error (%d)\n", err);
2384 brcmf_dbg(TRACE, "Exit\n");
2389 brcmf_cfg80211_get_key(struct wiphy *wiphy, struct net_device *ndev, u8 key_idx,
2390 bool pairwise, const u8 *mac_addr, void *cookie,
2391 void (*callback)(void *cookie,
2392 struct key_params *params))
2394 struct key_params params;
2395 struct brcmf_if *ifp = netdev_priv(ndev);
2396 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2397 struct brcmf_cfg80211_security *sec;
2401 brcmf_dbg(TRACE, "Enter\n");
2402 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2403 if (!check_vif_up(ifp->vif))
2406 memset(¶ms, 0, sizeof(params));
2408 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2410 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2411 /* Ignore this error, may happen during DISASSOC */
2415 if (wsec & WEP_ENABLED) {
2416 sec = &profile->sec;
2417 if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP40) {
2418 params.cipher = WLAN_CIPHER_SUITE_WEP40;
2419 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2420 } else if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP104) {
2421 params.cipher = WLAN_CIPHER_SUITE_WEP104;
2422 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2424 } else if (wsec & TKIP_ENABLED) {
2425 params.cipher = WLAN_CIPHER_SUITE_TKIP;
2426 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2427 } else if (wsec & AES_ENABLED) {
2428 params.cipher = WLAN_CIPHER_SUITE_AES_CMAC;
2429 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2431 brcmf_err("Invalid algo (0x%x)\n", wsec);
2435 callback(cookie, ¶ms);
2438 brcmf_dbg(TRACE, "Exit\n");
2443 brcmf_cfg80211_config_default_mgmt_key(struct wiphy *wiphy,
2444 struct net_device *ndev, u8 key_idx)
2446 struct brcmf_if *ifp = netdev_priv(ndev);
2448 brcmf_dbg(TRACE, "Enter key_idx %d\n", key_idx);
2450 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
2453 brcmf_dbg(INFO, "Not supported\n");
2459 brcmf_cfg80211_reconfigure_wep(struct brcmf_if *ifp)
2463 struct brcmf_wsec_key *key;
2466 for (key_idx = 0; key_idx < BRCMF_MAX_DEFAULT_KEYS; key_idx++) {
2467 key = &ifp->vif->profile.key[key_idx];
2468 if ((key->algo == CRYPTO_ALGO_WEP1) ||
2469 (key->algo == CRYPTO_ALGO_WEP128))
2472 if (key_idx == BRCMF_MAX_DEFAULT_KEYS)
2475 err = send_key_to_dongle(ifp, key);
2477 brcmf_err("Setting WEP key failed (%d)\n", err);
2480 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2482 brcmf_err("get wsec error (%d)\n", err);
2485 wsec |= WEP_ENABLED;
2486 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2488 brcmf_err("set wsec error (%d)\n", err);
2491 static void brcmf_convert_sta_flags(u32 fw_sta_flags, struct station_info *si)
2493 struct nl80211_sta_flag_update *sfu;
2495 brcmf_dbg(TRACE, "flags %08x\n", fw_sta_flags);
2496 si->filled |= BIT(NL80211_STA_INFO_STA_FLAGS);
2497 sfu = &si->sta_flags;
2498 sfu->mask = BIT(NL80211_STA_FLAG_WME) |
2499 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
2500 BIT(NL80211_STA_FLAG_ASSOCIATED) |
2501 BIT(NL80211_STA_FLAG_AUTHORIZED);
2502 if (fw_sta_flags & BRCMF_STA_WME)
2503 sfu->set |= BIT(NL80211_STA_FLAG_WME);
2504 if (fw_sta_flags & BRCMF_STA_AUTHE)
2505 sfu->set |= BIT(NL80211_STA_FLAG_AUTHENTICATED);
2506 if (fw_sta_flags & BRCMF_STA_ASSOC)
2507 sfu->set |= BIT(NL80211_STA_FLAG_ASSOCIATED);
2508 if (fw_sta_flags & BRCMF_STA_AUTHO)
2509 sfu->set |= BIT(NL80211_STA_FLAG_AUTHORIZED);
2512 static void brcmf_fill_bss_param(struct brcmf_if *ifp, struct station_info *si)
2516 struct brcmf_bss_info_le bss_le;
2521 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2525 buf->len = cpu_to_le32(WL_BSS_INFO_MAX);
2526 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO, buf,
2529 brcmf_err("Failed to get bss info (%d)\n", err);
2532 si->filled |= BIT(NL80211_STA_INFO_BSS_PARAM);
2533 si->bss_param.beacon_interval = le16_to_cpu(buf->bss_le.beacon_period);
2534 si->bss_param.dtim_period = buf->bss_le.dtim_period;
2535 capability = le16_to_cpu(buf->bss_le.capability);
2536 if (capability & IEEE80211_HT_STBC_PARAM_DUAL_CTS_PROT)
2537 si->bss_param.flags |= BSS_PARAM_FLAGS_CTS_PROT;
2538 if (capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
2539 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_PREAMBLE;
2540 if (capability & WLAN_CAPABILITY_SHORT_SLOT_TIME)
2541 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_SLOT_TIME;
2548 brcmf_cfg80211_get_station_ibss(struct brcmf_if *ifp,
2549 struct station_info *sinfo)
2551 struct brcmf_scb_val_le scbval;
2552 struct brcmf_pktcnt_le pktcnt;
2557 /* Get the current tx rate */
2558 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_RATE, &rate);
2560 brcmf_err("BRCMF_C_GET_RATE error (%d)\n", err);
2563 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BITRATE);
2564 sinfo->txrate.legacy = rate * 5;
2566 memset(&scbval, 0, sizeof(scbval));
2567 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI, &scbval,
2570 brcmf_err("BRCMF_C_GET_RSSI error (%d)\n", err);
2573 rssi = le32_to_cpu(scbval.val);
2574 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL);
2575 sinfo->signal = rssi;
2577 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_GET_PKTCNTS, &pktcnt,
2580 brcmf_err("BRCMF_C_GET_GET_PKTCNTS error (%d)\n", err);
2583 sinfo->filled |= BIT(NL80211_STA_INFO_RX_PACKETS) |
2584 BIT(NL80211_STA_INFO_RX_DROP_MISC) |
2585 BIT(NL80211_STA_INFO_TX_PACKETS) |
2586 BIT(NL80211_STA_INFO_TX_FAILED);
2587 sinfo->rx_packets = le32_to_cpu(pktcnt.rx_good_pkt);
2588 sinfo->rx_dropped_misc = le32_to_cpu(pktcnt.rx_bad_pkt);
2589 sinfo->tx_packets = le32_to_cpu(pktcnt.tx_good_pkt);
2590 sinfo->tx_failed = le32_to_cpu(pktcnt.tx_bad_pkt);
2596 brcmf_cfg80211_get_station(struct wiphy *wiphy, struct net_device *ndev,
2597 const u8 *mac, struct station_info *sinfo)
2599 struct brcmf_if *ifp = netdev_priv(ndev);
2600 struct brcmf_scb_val_le scb_val;
2602 struct brcmf_sta_info_le sta_info_le;
2610 brcmf_dbg(TRACE, "Enter, MAC %pM\n", mac);
2611 if (!check_vif_up(ifp->vif))
2614 if (brcmf_is_ibssmode(ifp->vif))
2615 return brcmf_cfg80211_get_station_ibss(ifp, sinfo);
2617 memset(&sta_info_le, 0, sizeof(sta_info_le));
2618 memcpy(&sta_info_le, mac, ETH_ALEN);
2619 err = brcmf_fil_iovar_data_get(ifp, "tdls_sta_info",
2621 sizeof(sta_info_le));
2622 is_tdls_peer = !err;
2624 err = brcmf_fil_iovar_data_get(ifp, "sta_info",
2626 sizeof(sta_info_le));
2628 brcmf_err("GET STA INFO failed, %d\n", err);
2632 brcmf_dbg(TRACE, "version %d\n", le16_to_cpu(sta_info_le.ver));
2633 sinfo->filled = BIT(NL80211_STA_INFO_INACTIVE_TIME);
2634 sinfo->inactive_time = le32_to_cpu(sta_info_le.idle) * 1000;
2635 sta_flags = le32_to_cpu(sta_info_le.flags);
2636 brcmf_convert_sta_flags(sta_flags, sinfo);
2637 sinfo->sta_flags.mask |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2639 sinfo->sta_flags.set |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2641 sinfo->sta_flags.set &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
2642 if (sta_flags & BRCMF_STA_ASSOC) {
2643 sinfo->filled |= BIT(NL80211_STA_INFO_CONNECTED_TIME);
2644 sinfo->connected_time = le32_to_cpu(sta_info_le.in);
2645 brcmf_fill_bss_param(ifp, sinfo);
2647 if (sta_flags & BRCMF_STA_SCBSTATS) {
2648 sinfo->filled |= BIT(NL80211_STA_INFO_TX_FAILED);
2649 sinfo->tx_failed = le32_to_cpu(sta_info_le.tx_failures);
2650 sinfo->filled |= BIT(NL80211_STA_INFO_TX_PACKETS);
2651 sinfo->tx_packets = le32_to_cpu(sta_info_le.tx_pkts);
2652 sinfo->tx_packets += le32_to_cpu(sta_info_le.tx_mcast_pkts);
2653 sinfo->filled |= BIT(NL80211_STA_INFO_RX_PACKETS);
2654 sinfo->rx_packets = le32_to_cpu(sta_info_le.rx_ucast_pkts);
2655 sinfo->rx_packets += le32_to_cpu(sta_info_le.rx_mcast_pkts);
2656 if (sinfo->tx_packets) {
2657 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BITRATE);
2658 sinfo->txrate.legacy =
2659 le32_to_cpu(sta_info_le.tx_rate) / 100;
2661 if (sinfo->rx_packets) {
2662 sinfo->filled |= BIT(NL80211_STA_INFO_RX_BITRATE);
2663 sinfo->rxrate.legacy =
2664 le32_to_cpu(sta_info_le.rx_rate) / 100;
2666 if (le16_to_cpu(sta_info_le.ver) >= 4) {
2667 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BYTES);
2668 sinfo->tx_bytes = le64_to_cpu(sta_info_le.tx_tot_bytes);
2669 sinfo->filled |= BIT(NL80211_STA_INFO_RX_BYTES);
2670 sinfo->rx_bytes = le64_to_cpu(sta_info_le.rx_tot_bytes);
2674 for (i = 0; i < BRCMF_ANT_MAX; i++) {
2675 if (sta_info_le.rssi[i]) {
2676 sinfo->chain_signal_avg[count_rssi] =
2677 sta_info_le.rssi[i];
2678 sinfo->chain_signal[count_rssi] =
2679 sta_info_le.rssi[i];
2680 total_rssi += sta_info_le.rssi[i];
2685 sinfo->filled |= BIT(NL80211_STA_INFO_CHAIN_SIGNAL);
2686 sinfo->chains = count_rssi;
2688 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL);
2689 total_rssi /= count_rssi;
2690 sinfo->signal = total_rssi;
2691 } else if (test_bit(BRCMF_VIF_STATUS_CONNECTED,
2692 &ifp->vif->sme_state)) {
2693 memset(&scb_val, 0, sizeof(scb_val));
2694 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI,
2695 &scb_val, sizeof(scb_val));
2697 brcmf_err("Could not get rssi (%d)\n", err);
2700 rssi = le32_to_cpu(scb_val.val);
2701 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL);
2702 sinfo->signal = rssi;
2703 brcmf_dbg(CONN, "RSSI %d dBm\n", rssi);
2708 brcmf_dbg(TRACE, "Exit\n");
2713 brcmf_cfg80211_dump_station(struct wiphy *wiphy, struct net_device *ndev,
2714 int idx, u8 *mac, struct station_info *sinfo)
2716 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2717 struct brcmf_if *ifp = netdev_priv(ndev);
2720 brcmf_dbg(TRACE, "Enter, idx %d\n", idx);
2723 cfg->assoclist.count = cpu_to_le32(BRCMF_MAX_ASSOCLIST);
2724 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_ASSOCLIST,
2726 sizeof(cfg->assoclist));
2728 brcmf_err("BRCMF_C_GET_ASSOCLIST unsupported, err=%d\n",
2730 cfg->assoclist.count = 0;
2734 if (idx < le32_to_cpu(cfg->assoclist.count)) {
2735 memcpy(mac, cfg->assoclist.mac[idx], ETH_ALEN);
2736 return brcmf_cfg80211_get_station(wiphy, ndev, mac, sinfo);
2742 brcmf_cfg80211_set_power_mgmt(struct wiphy *wiphy, struct net_device *ndev,
2743 bool enabled, s32 timeout)
2747 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2748 struct brcmf_if *ifp = netdev_priv(ndev);
2750 brcmf_dbg(TRACE, "Enter\n");
2753 * Powersave enable/disable request is coming from the
2754 * cfg80211 even before the interface is up. In that
2755 * scenario, driver will be storing the power save
2756 * preference in cfg struct to apply this to
2757 * FW later while initializing the dongle
2759 cfg->pwr_save = enabled;
2760 if (!check_vif_up(ifp->vif)) {
2762 brcmf_dbg(INFO, "Device is not ready, storing the value in cfg_info struct\n");
2766 pm = enabled ? PM_FAST : PM_OFF;
2767 /* Do not enable the power save after assoc if it is a p2p interface */
2768 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) {
2769 brcmf_dbg(INFO, "Do not enable power save for P2P clients\n");
2772 brcmf_dbg(INFO, "power save %s\n", (pm ? "enabled" : "disabled"));
2774 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, pm);
2777 brcmf_err("net_device is not ready yet\n");
2779 brcmf_err("error (%d)\n", err);
2782 brcmf_dbg(TRACE, "Exit\n");
2786 static s32 brcmf_inform_single_bss(struct brcmf_cfg80211_info *cfg,
2787 struct brcmf_bss_info_le *bi)
2789 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2790 struct ieee80211_channel *notify_channel;
2791 struct cfg80211_bss *bss;
2792 struct ieee80211_supported_band *band;
2793 struct brcmu_chan ch;
2796 u16 notify_capability;
2797 u16 notify_interval;
2799 size_t notify_ielen;
2802 if (le32_to_cpu(bi->length) > WL_BSS_INFO_MAX) {
2803 brcmf_err("Bss info is larger than buffer. Discarding\n");
2808 ch.chspec = le16_to_cpu(bi->chanspec);
2809 cfg->d11inf.decchspec(&ch);
2810 bi->ctl_ch = ch.control_ch_num;
2812 channel = bi->ctl_ch;
2814 if (channel <= CH_MAX_2G_CHANNEL)
2815 band = wiphy->bands[NL80211_BAND_2GHZ];
2817 band = wiphy->bands[NL80211_BAND_5GHZ];
2819 freq = ieee80211_channel_to_frequency(channel, band->band);
2820 notify_channel = ieee80211_get_channel(wiphy, freq);
2822 notify_capability = le16_to_cpu(bi->capability);
2823 notify_interval = le16_to_cpu(bi->beacon_period);
2824 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2825 notify_ielen = le32_to_cpu(bi->ie_length);
2826 notify_signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2828 brcmf_dbg(CONN, "bssid: %pM\n", bi->BSSID);
2829 brcmf_dbg(CONN, "Channel: %d(%d)\n", channel, freq);
2830 brcmf_dbg(CONN, "Capability: %X\n", notify_capability);
2831 brcmf_dbg(CONN, "Beacon interval: %d\n", notify_interval);
2832 brcmf_dbg(CONN, "Signal: %d\n", notify_signal);
2834 bss = cfg80211_inform_bss(wiphy, notify_channel,
2835 CFG80211_BSS_FTYPE_UNKNOWN,
2836 (const u8 *)bi->BSSID,
2837 0, notify_capability,
2838 notify_interval, notify_ie,
2839 notify_ielen, notify_signal,
2845 cfg80211_put_bss(wiphy, bss);
2850 static struct brcmf_bss_info_le *
2851 next_bss_le(struct brcmf_scan_results *list, struct brcmf_bss_info_le *bss)
2854 return list->bss_info_le;
2855 return (struct brcmf_bss_info_le *)((unsigned long)bss +
2856 le32_to_cpu(bss->length));
2859 static s32 brcmf_inform_bss(struct brcmf_cfg80211_info *cfg)
2861 struct brcmf_scan_results *bss_list;
2862 struct brcmf_bss_info_le *bi = NULL; /* must be initialized */
2866 bss_list = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
2867 if (bss_list->count != 0 &&
2868 bss_list->version != BRCMF_BSS_INFO_VERSION) {
2869 brcmf_err("Version %d != WL_BSS_INFO_VERSION\n",
2873 brcmf_dbg(SCAN, "scanned AP count (%d)\n", bss_list->count);
2874 for (i = 0; i < bss_list->count; i++) {
2875 bi = next_bss_le(bss_list, bi);
2876 err = brcmf_inform_single_bss(cfg, bi);
2883 static s32 brcmf_inform_ibss(struct brcmf_cfg80211_info *cfg,
2884 struct net_device *ndev, const u8 *bssid)
2886 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2887 struct ieee80211_channel *notify_channel;
2888 struct brcmf_bss_info_le *bi = NULL;
2889 struct ieee80211_supported_band *band;
2890 struct cfg80211_bss *bss;
2891 struct brcmu_chan ch;
2895 u16 notify_capability;
2896 u16 notify_interval;
2898 size_t notify_ielen;
2901 brcmf_dbg(TRACE, "Enter\n");
2903 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2909 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
2911 err = brcmf_fil_cmd_data_get(netdev_priv(ndev), BRCMF_C_GET_BSS_INFO,
2912 buf, WL_BSS_INFO_MAX);
2914 brcmf_err("WLC_GET_BSS_INFO failed: %d\n", err);
2918 bi = (struct brcmf_bss_info_le *)(buf + 4);
2920 ch.chspec = le16_to_cpu(bi->chanspec);
2921 cfg->d11inf.decchspec(&ch);
2923 if (ch.band == BRCMU_CHAN_BAND_2G)
2924 band = wiphy->bands[NL80211_BAND_2GHZ];
2926 band = wiphy->bands[NL80211_BAND_5GHZ];
2928 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
2929 cfg->channel = freq;
2930 notify_channel = ieee80211_get_channel(wiphy, freq);
2932 notify_capability = le16_to_cpu(bi->capability);
2933 notify_interval = le16_to_cpu(bi->beacon_period);
2934 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2935 notify_ielen = le32_to_cpu(bi->ie_length);
2936 notify_signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2938 brcmf_dbg(CONN, "channel: %d(%d)\n", ch.control_ch_num, freq);
2939 brcmf_dbg(CONN, "capability: %X\n", notify_capability);
2940 brcmf_dbg(CONN, "beacon interval: %d\n", notify_interval);
2941 brcmf_dbg(CONN, "signal: %d\n", notify_signal);
2943 bss = cfg80211_inform_bss(wiphy, notify_channel,
2944 CFG80211_BSS_FTYPE_UNKNOWN, bssid, 0,
2945 notify_capability, notify_interval,
2946 notify_ie, notify_ielen, notify_signal,
2954 cfg80211_put_bss(wiphy, bss);
2960 brcmf_dbg(TRACE, "Exit\n");
2965 static s32 brcmf_update_bss_info(struct brcmf_cfg80211_info *cfg,
2966 struct brcmf_if *ifp)
2968 struct brcmf_bss_info_le *bi;
2969 const struct brcmf_tlv *tim;
2970 u16 beacon_interval;
2976 brcmf_dbg(TRACE, "Enter\n");
2977 if (brcmf_is_ibssmode(ifp->vif))
2980 *(__le32 *)cfg->extra_buf = cpu_to_le32(WL_EXTRA_BUF_MAX);
2981 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
2982 cfg->extra_buf, WL_EXTRA_BUF_MAX);
2984 brcmf_err("Could not get bss info %d\n", err);
2985 goto update_bss_info_out;
2988 bi = (struct brcmf_bss_info_le *)(cfg->extra_buf + 4);
2989 err = brcmf_inform_single_bss(cfg, bi);
2991 goto update_bss_info_out;
2993 ie = ((u8 *)bi) + le16_to_cpu(bi->ie_offset);
2994 ie_len = le32_to_cpu(bi->ie_length);
2995 beacon_interval = le16_to_cpu(bi->beacon_period);
2997 tim = brcmf_parse_tlvs(ie, ie_len, WLAN_EID_TIM);
2999 dtim_period = tim->data[1];
3002 * active scan was done so we could not get dtim
3003 * information out of probe response.
3004 * so we speficially query dtim information to dongle.
3007 err = brcmf_fil_iovar_int_get(ifp, "dtim_assoc", &var);
3009 brcmf_err("wl dtim_assoc failed (%d)\n", err);
3010 goto update_bss_info_out;
3012 dtim_period = (u8)var;
3015 update_bss_info_out:
3016 brcmf_dbg(TRACE, "Exit");
3020 void brcmf_abort_scanning(struct brcmf_cfg80211_info *cfg)
3022 struct escan_info *escan = &cfg->escan_info;
3024 set_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
3025 if (cfg->scan_request) {
3026 escan->escan_state = WL_ESCAN_STATE_IDLE;
3027 brcmf_notify_escan_complete(cfg, escan->ifp, true, true);
3029 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3030 clear_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
3033 static void brcmf_cfg80211_escan_timeout_worker(struct work_struct *work)
3035 struct brcmf_cfg80211_info *cfg =
3036 container_of(work, struct brcmf_cfg80211_info,
3037 escan_timeout_work);
3039 brcmf_inform_bss(cfg);
3040 brcmf_notify_escan_complete(cfg, cfg->escan_info.ifp, true, true);
3043 static void brcmf_escan_timeout(unsigned long data)
3045 struct brcmf_cfg80211_info *cfg =
3046 (struct brcmf_cfg80211_info *)data;
3048 if (cfg->scan_request) {
3049 brcmf_err("timer expired\n");
3050 schedule_work(&cfg->escan_timeout_work);
3055 brcmf_compare_update_same_bss(struct brcmf_cfg80211_info *cfg,
3056 struct brcmf_bss_info_le *bss,
3057 struct brcmf_bss_info_le *bss_info_le)
3059 struct brcmu_chan ch_bss, ch_bss_info_le;
3061 ch_bss.chspec = le16_to_cpu(bss->chanspec);
3062 cfg->d11inf.decchspec(&ch_bss);
3063 ch_bss_info_le.chspec = le16_to_cpu(bss_info_le->chanspec);
3064 cfg->d11inf.decchspec(&ch_bss_info_le);
3066 if (!memcmp(&bss_info_le->BSSID, &bss->BSSID, ETH_ALEN) &&
3067 ch_bss.band == ch_bss_info_le.band &&
3068 bss_info_le->SSID_len == bss->SSID_len &&
3069 !memcmp(bss_info_le->SSID, bss->SSID, bss_info_le->SSID_len)) {
3070 if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) ==
3071 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL)) {
3072 s16 bss_rssi = le16_to_cpu(bss->RSSI);
3073 s16 bss_info_rssi = le16_to_cpu(bss_info_le->RSSI);
3075 /* preserve max RSSI if the measurements are
3076 * both on-channel or both off-channel
3078 if (bss_info_rssi > bss_rssi)
3079 bss->RSSI = bss_info_le->RSSI;
3080 } else if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) &&
3081 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL) == 0) {
3082 /* preserve the on-channel rssi measurement
3083 * if the new measurement is off channel
3085 bss->RSSI = bss_info_le->RSSI;
3086 bss->flags |= BRCMF_BSS_RSSI_ON_CHANNEL;
3094 brcmf_cfg80211_escan_handler(struct brcmf_if *ifp,
3095 const struct brcmf_event_msg *e, void *data)
3097 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3099 struct brcmf_escan_result_le *escan_result_le;
3100 struct brcmf_bss_info_le *bss_info_le;
3101 struct brcmf_bss_info_le *bss = NULL;
3103 struct brcmf_scan_results *list;
3109 if (!test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3110 brcmf_err("scan not ready, bsscfgidx=%d\n", ifp->bsscfgidx);
3114 if (status == BRCMF_E_STATUS_PARTIAL) {
3115 brcmf_dbg(SCAN, "ESCAN Partial result\n");
3116 escan_result_le = (struct brcmf_escan_result_le *) data;
3117 if (!escan_result_le) {
3118 brcmf_err("Invalid escan result (NULL pointer)\n");
3121 if (le16_to_cpu(escan_result_le->bss_count) != 1) {
3122 brcmf_err("Invalid bss_count %d: ignoring\n",
3123 escan_result_le->bss_count);
3126 bss_info_le = &escan_result_le->bss_info_le;
3128 if (brcmf_p2p_scan_finding_common_channel(cfg, bss_info_le))
3131 if (!cfg->scan_request) {
3132 brcmf_dbg(SCAN, "result without cfg80211 request\n");
3136 bi_length = le32_to_cpu(bss_info_le->length);
3137 if (bi_length != (le32_to_cpu(escan_result_le->buflen) -
3138 WL_ESCAN_RESULTS_FIXED_SIZE)) {
3139 brcmf_err("Invalid bss_info length %d: ignoring\n",
3144 if (!(cfg_to_wiphy(cfg)->interface_modes &
3145 BIT(NL80211_IFTYPE_ADHOC))) {
3146 if (le16_to_cpu(bss_info_le->capability) &
3147 WLAN_CAPABILITY_IBSS) {
3148 brcmf_err("Ignoring IBSS result\n");
3153 list = (struct brcmf_scan_results *)
3154 cfg->escan_info.escan_buf;
3155 if (bi_length > BRCMF_ESCAN_BUF_SIZE - list->buflen) {
3156 brcmf_err("Buffer is too small: ignoring\n");
3160 for (i = 0; i < list->count; i++) {
3161 bss = bss ? (struct brcmf_bss_info_le *)
3162 ((unsigned char *)bss +
3163 le32_to_cpu(bss->length)) : list->bss_info_le;
3164 if (brcmf_compare_update_same_bss(cfg, bss,
3168 memcpy(&cfg->escan_info.escan_buf[list->buflen], bss_info_le,
3170 list->version = le32_to_cpu(bss_info_le->version);
3171 list->buflen += bi_length;
3174 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3175 if (brcmf_p2p_scan_finding_common_channel(cfg, NULL))
3177 if (cfg->scan_request) {
3178 brcmf_inform_bss(cfg);
3179 aborted = status != BRCMF_E_STATUS_SUCCESS;
3180 brcmf_notify_escan_complete(cfg, ifp, aborted, false);
3182 brcmf_dbg(SCAN, "Ignored scan complete result 0x%x\n",
3189 static void brcmf_init_escan(struct brcmf_cfg80211_info *cfg)
3191 brcmf_fweh_register(cfg->pub, BRCMF_E_ESCAN_RESULT,
3192 brcmf_cfg80211_escan_handler);
3193 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3194 /* Init scan_timeout timer */
3195 init_timer(&cfg->escan_timeout);
3196 cfg->escan_timeout.data = (unsigned long) cfg;
3197 cfg->escan_timeout.function = brcmf_escan_timeout;
3198 INIT_WORK(&cfg->escan_timeout_work,
3199 brcmf_cfg80211_escan_timeout_worker);
3202 /* PFN result doesn't have all the info which are required by the supplicant
3203 * (For e.g IEs) Do a target Escan so that sched scan results are reported
3204 * via wl_inform_single_bss in the required format. Escan does require the
3205 * scan request in the form of cfg80211_scan_request. For timebeing, create
3206 * cfg80211_scan_request one out of the received PNO event.
3209 brcmf_notify_sched_scan_results(struct brcmf_if *ifp,
3210 const struct brcmf_event_msg *e, void *data)
3212 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3213 struct brcmf_pno_net_info_le *netinfo, *netinfo_start;
3214 struct cfg80211_scan_request *request = NULL;
3215 struct cfg80211_ssid *ssid = NULL;
3216 struct ieee80211_channel *channel = NULL;
3217 struct wiphy *wiphy = cfg_to_wiphy(cfg);
3219 int channel_req = 0;
3221 struct brcmf_pno_scanresults_le *pfn_result;
3225 brcmf_dbg(SCAN, "Enter\n");
3227 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3228 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3232 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3233 brcmf_dbg(SCAN, "PFN NET LOST event. Do Nothing\n");
3237 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3238 result_count = le32_to_cpu(pfn_result->count);
3239 status = le32_to_cpu(pfn_result->status);
3241 /* PFN event is limited to fit 512 bytes so we may get
3242 * multiple NET_FOUND events. For now place a warning here.
3244 WARN_ON(status != BRCMF_PNO_SCAN_COMPLETE);
3245 brcmf_dbg(SCAN, "PFN NET FOUND event. count: %d\n", result_count);
3246 if (result_count > 0) {
3249 request = kzalloc(sizeof(*request), GFP_KERNEL);
3250 ssid = kcalloc(result_count, sizeof(*ssid), GFP_KERNEL);
3251 channel = kcalloc(result_count, sizeof(*channel), GFP_KERNEL);
3252 if (!request || !ssid || !channel) {
3257 request->wiphy = wiphy;
3258 data += sizeof(struct brcmf_pno_scanresults_le);
3259 netinfo_start = (struct brcmf_pno_net_info_le *)data;
3261 for (i = 0; i < result_count; i++) {
3262 netinfo = &netinfo_start[i];
3264 brcmf_err("Invalid netinfo ptr. index: %d\n",
3270 brcmf_dbg(SCAN, "SSID:%s Channel:%d\n",
3271 netinfo->SSID, netinfo->channel);
3272 memcpy(ssid[i].ssid, netinfo->SSID, netinfo->SSID_len);
3273 ssid[i].ssid_len = netinfo->SSID_len;
3276 channel_req = netinfo->channel;
3277 if (channel_req <= CH_MAX_2G_CHANNEL)
3278 band = NL80211_BAND_2GHZ;
3280 band = NL80211_BAND_5GHZ;
3281 channel[i].center_freq =
3282 ieee80211_channel_to_frequency(channel_req,
3284 channel[i].band = band;
3285 channel[i].flags |= IEEE80211_CHAN_NO_HT40;
3286 request->channels[i] = &channel[i];
3287 request->n_channels++;
3290 /* assign parsed ssid array */
3291 if (request->n_ssids)
3292 request->ssids = &ssid[0];
3294 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3295 /* Abort any on-going scan */
3296 brcmf_abort_scanning(cfg);
3299 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3300 cfg->escan_info.run = brcmf_run_escan;
3301 err = brcmf_do_escan(cfg, wiphy, ifp, request);
3303 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3306 cfg->sched_escan = true;
3307 cfg->scan_request = request;
3309 brcmf_err("FALSE PNO Event. (pfn_count == 0)\n");
3322 cfg80211_sched_scan_stopped(wiphy);
3326 static int brcmf_dev_pno_clean(struct net_device *ndev)
3331 ret = brcmf_fil_iovar_int_set(netdev_priv(ndev), "pfn", 0);
3334 ret = brcmf_fil_iovar_data_set(netdev_priv(ndev), "pfnclear",
3338 brcmf_err("failed code %d\n", ret);
3343 static int brcmf_dev_pno_config(struct brcmf_if *ifp,
3344 struct cfg80211_sched_scan_request *request)
3346 struct brcmf_pno_param_le pfn_param;
3347 struct brcmf_pno_macaddr_le pfn_mac;
3352 memset(&pfn_param, 0, sizeof(pfn_param));
3353 pfn_param.version = cpu_to_le32(BRCMF_PNO_VERSION);
3355 /* set extra pno params */
3356 pfn_param.flags = cpu_to_le16(1 << BRCMF_PNO_ENABLE_ADAPTSCAN_BIT);
3357 pfn_param.repeat = BRCMF_PNO_REPEAT;
3358 pfn_param.exp = BRCMF_PNO_FREQ_EXPO_MAX;
3360 /* set up pno scan fr */
3361 pfn_param.scan_freq = cpu_to_le32(BRCMF_PNO_TIME);
3363 err = brcmf_fil_iovar_data_set(ifp, "pfn_set", &pfn_param,
3366 brcmf_err("pfn_set failed, err=%d\n", err);
3370 /* Find out if mac randomization should be turned on */
3371 if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR))
3374 pfn_mac.version = BRCMF_PFN_MACADDR_CFG_VER;
3375 pfn_mac.flags = BRCMF_PFN_MAC_OUI_ONLY | BRCMF_PFN_SET_MAC_UNASSOC;
3377 memcpy(pfn_mac.mac, request->mac_addr, ETH_ALEN);
3378 mac_mask = request->mac_addr_mask;
3379 for (i = 0; i < ETH_ALEN; i++) {
3380 pfn_mac.mac[i] &= mac_mask[i];
3381 pfn_mac.mac[i] |= get_random_int() & ~(mac_mask[i]);
3383 /* Clear multi bit */
3384 pfn_mac.mac[0] &= 0xFE;
3385 /* Set locally administered */
3386 pfn_mac.mac[0] |= 0x02;
3388 err = brcmf_fil_iovar_data_set(ifp, "pfn_macaddr", &pfn_mac,
3391 brcmf_err("pfn_macaddr failed, err=%d\n", err);
3397 brcmf_cfg80211_sched_scan_start(struct wiphy *wiphy,
3398 struct net_device *ndev,
3399 struct cfg80211_sched_scan_request *request)
3401 struct brcmf_if *ifp = netdev_priv(ndev);
3402 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
3403 struct brcmf_pno_net_param_le pfn;
3407 brcmf_dbg(SCAN, "Enter n_match_sets:%d n_ssids:%d\n",
3408 request->n_match_sets, request->n_ssids);
3409 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3410 brcmf_err("Scanning already: status (%lu)\n", cfg->scan_status);
3413 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
3414 brcmf_err("Scanning suppressed: status (%lu)\n",
3419 if (!request->n_ssids || !request->n_match_sets) {
3420 brcmf_dbg(SCAN, "Invalid sched scan req!! n_ssids:%d\n",
3425 if (request->n_ssids > 0) {
3426 for (i = 0; i < request->n_ssids; i++) {
3427 /* Active scan req for ssids */
3428 brcmf_dbg(SCAN, ">>> Active scan req for ssid (%s)\n",
3429 request->ssids[i].ssid);
3431 /* match_set ssids is a supert set of n_ssid list,
3432 * so we need not add these set separately.
3437 if (request->n_match_sets > 0) {
3438 /* clean up everything */
3439 ret = brcmf_dev_pno_clean(ndev);
3441 brcmf_err("failed error=%d\n", ret);
3446 if (brcmf_dev_pno_config(ifp, request))
3449 /* configure each match set */
3450 for (i = 0; i < request->n_match_sets; i++) {
3451 struct cfg80211_ssid *ssid;
3454 ssid = &request->match_sets[i].ssid;
3455 ssid_len = ssid->ssid_len;
3458 brcmf_err("skip broadcast ssid\n");
3461 pfn.auth = cpu_to_le32(WLAN_AUTH_OPEN);
3462 pfn.wpa_auth = cpu_to_le32(BRCMF_PNO_WPA_AUTH_ANY);
3463 pfn.wsec = cpu_to_le32(0);
3464 pfn.infra = cpu_to_le32(1);
3465 pfn.flags = cpu_to_le32(1 << BRCMF_PNO_HIDDEN_BIT);
3466 pfn.ssid.SSID_len = cpu_to_le32(ssid_len);
3467 memcpy(pfn.ssid.SSID, ssid->ssid, ssid_len);
3468 ret = brcmf_fil_iovar_data_set(ifp, "pfn_add", &pfn,
3470 brcmf_dbg(SCAN, ">>> PNO filter %s for ssid (%s)\n",
3471 ret == 0 ? "set" : "failed", ssid->ssid);
3473 /* Enable the PNO */
3474 if (brcmf_fil_iovar_int_set(ifp, "pfn", 1) < 0) {
3475 brcmf_err("PNO enable failed!! ret=%d\n", ret);
3485 static int brcmf_cfg80211_sched_scan_stop(struct wiphy *wiphy,
3486 struct net_device *ndev)
3488 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3490 brcmf_dbg(SCAN, "enter\n");
3491 brcmf_dev_pno_clean(ndev);
3492 if (cfg->sched_escan)
3493 brcmf_notify_escan_complete(cfg, netdev_priv(ndev), true, true);
3497 static __always_inline void brcmf_delay(u32 ms)
3499 if (ms < 1000 / HZ) {
3507 static s32 brcmf_config_wowl_pattern(struct brcmf_if *ifp, u8 cmd[4],
3508 u8 *pattern, u32 patternsize, u8 *mask,
3511 struct brcmf_fil_wowl_pattern_le *filter;
3518 masksize = (patternsize + 7) / 8;
3519 patternoffset = sizeof(*filter) - sizeof(filter->cmd) + masksize;
3521 bufsize = sizeof(*filter) + patternsize + masksize;
3522 buf = kzalloc(bufsize, GFP_KERNEL);
3525 filter = (struct brcmf_fil_wowl_pattern_le *)buf;
3527 memcpy(filter->cmd, cmd, 4);
3528 filter->masksize = cpu_to_le32(masksize);
3529 filter->offset = cpu_to_le32(packet_offset);
3530 filter->patternoffset = cpu_to_le32(patternoffset);
3531 filter->patternsize = cpu_to_le32(patternsize);
3532 filter->type = cpu_to_le32(BRCMF_WOWL_PATTERN_TYPE_BITMAP);
3534 if ((mask) && (masksize))
3535 memcpy(buf + sizeof(*filter), mask, masksize);
3536 if ((pattern) && (patternsize))
3537 memcpy(buf + sizeof(*filter) + masksize, pattern, patternsize);
3539 ret = brcmf_fil_iovar_data_set(ifp, "wowl_pattern", buf, bufsize);
3546 brcmf_wowl_nd_results(struct brcmf_if *ifp, const struct brcmf_event_msg *e,
3549 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3550 struct brcmf_pno_scanresults_le *pfn_result;
3551 struct brcmf_pno_net_info_le *netinfo;
3553 brcmf_dbg(SCAN, "Enter\n");
3555 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3556 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3560 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3562 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3563 brcmf_dbg(SCAN, "PFN NET LOST event. Ignore\n");
3567 if (le32_to_cpu(pfn_result->count) < 1) {
3568 brcmf_err("Invalid result count, expected 1 (%d)\n",
3569 le32_to_cpu(pfn_result->count));
3573 data += sizeof(struct brcmf_pno_scanresults_le);
3574 netinfo = (struct brcmf_pno_net_info_le *)data;
3575 memcpy(cfg->wowl.nd->ssid.ssid, netinfo->SSID, netinfo->SSID_len);
3576 cfg->wowl.nd->ssid.ssid_len = netinfo->SSID_len;
3577 cfg->wowl.nd->n_channels = 1;
3578 cfg->wowl.nd->channels[0] =
3579 ieee80211_channel_to_frequency(netinfo->channel,
3580 netinfo->channel <= CH_MAX_2G_CHANNEL ?
3581 NL80211_BAND_2GHZ : NL80211_BAND_5GHZ);
3582 cfg->wowl.nd_info->n_matches = 1;
3583 cfg->wowl.nd_info->matches[0] = cfg->wowl.nd;
3585 /* Inform (the resume task) that the net detect information was recvd */
3586 cfg->wowl.nd_data_completed = true;
3587 wake_up(&cfg->wowl.nd_data_wait);
3594 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3596 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3597 struct brcmf_wowl_wakeind_le wake_ind_le;
3598 struct cfg80211_wowlan_wakeup wakeup_data;
3599 struct cfg80211_wowlan_wakeup *wakeup;
3604 err = brcmf_fil_iovar_data_get(ifp, "wowl_wakeind", &wake_ind_le,
3605 sizeof(wake_ind_le));
3607 brcmf_err("Get wowl_wakeind failed, err = %d\n", err);
3611 wakeind = le32_to_cpu(wake_ind_le.ucode_wakeind);
3612 if (wakeind & (BRCMF_WOWL_MAGIC | BRCMF_WOWL_DIS | BRCMF_WOWL_BCN |
3613 BRCMF_WOWL_RETR | BRCMF_WOWL_NET |
3614 BRCMF_WOWL_PFN_FOUND)) {
3615 wakeup = &wakeup_data;
3616 memset(&wakeup_data, 0, sizeof(wakeup_data));
3617 wakeup_data.pattern_idx = -1;
3619 if (wakeind & BRCMF_WOWL_MAGIC) {
3620 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_MAGIC\n");
3621 wakeup_data.magic_pkt = true;
3623 if (wakeind & BRCMF_WOWL_DIS) {
3624 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_DIS\n");
3625 wakeup_data.disconnect = true;
3627 if (wakeind & BRCMF_WOWL_BCN) {
3628 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_BCN\n");
3629 wakeup_data.disconnect = true;
3631 if (wakeind & BRCMF_WOWL_RETR) {
3632 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_RETR\n");
3633 wakeup_data.disconnect = true;
3635 if (wakeind & BRCMF_WOWL_NET) {
3636 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_NET\n");
3637 /* For now always map to pattern 0, no API to get
3638 * correct information available at the moment.
3640 wakeup_data.pattern_idx = 0;
3642 if (wakeind & BRCMF_WOWL_PFN_FOUND) {
3643 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_PFN_FOUND\n");
3644 timeout = wait_event_timeout(cfg->wowl.nd_data_wait,
3645 cfg->wowl.nd_data_completed,
3646 BRCMF_ND_INFO_TIMEOUT);
3648 brcmf_err("No result for wowl net detect\n");
3650 wakeup_data.net_detect = cfg->wowl.nd_info;
3652 if (wakeind & BRCMF_WOWL_GTK_FAILURE) {
3653 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_GTK_FAILURE\n");
3654 wakeup_data.gtk_rekey_failure = true;
3659 cfg80211_report_wowlan_wakeup(&ifp->vif->wdev, wakeup, GFP_KERNEL);
3664 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3668 #endif /* CONFIG_PM */
3670 static s32 brcmf_cfg80211_resume(struct wiphy *wiphy)
3672 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3673 struct net_device *ndev = cfg_to_ndev(cfg);
3674 struct brcmf_if *ifp = netdev_priv(ndev);
3676 brcmf_dbg(TRACE, "Enter\n");
3678 if (cfg->wowl.active) {
3679 brcmf_report_wowl_wakeind(wiphy, ifp);
3680 brcmf_fil_iovar_int_set(ifp, "wowl_clear", 0);
3681 brcmf_config_wowl_pattern(ifp, "clr", NULL, 0, NULL, 0);
3682 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3683 brcmf_configure_arp_nd_offload(ifp, true);
3684 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM,
3685 cfg->wowl.pre_pmmode);
3686 cfg->wowl.active = false;
3687 if (cfg->wowl.nd_enabled) {
3688 brcmf_cfg80211_sched_scan_stop(cfg->wiphy, ifp->ndev);
3689 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3690 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3691 brcmf_notify_sched_scan_results);
3692 cfg->wowl.nd_enabled = false;
3698 static void brcmf_configure_wowl(struct brcmf_cfg80211_info *cfg,
3699 struct brcmf_if *ifp,
3700 struct cfg80211_wowlan *wowl)
3703 struct brcmf_wowl_wakeind_le wowl_wakeind;
3706 brcmf_dbg(TRACE, "Suspend, wowl config.\n");
3708 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3709 brcmf_configure_arp_nd_offload(ifp, false);
3710 brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_PM, &cfg->wowl.pre_pmmode);
3711 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, PM_MAX);
3714 if (wowl->disconnect)
3715 wowl_config = BRCMF_WOWL_DIS | BRCMF_WOWL_BCN | BRCMF_WOWL_RETR;
3716 if (wowl->magic_pkt)
3717 wowl_config |= BRCMF_WOWL_MAGIC;
3718 if ((wowl->patterns) && (wowl->n_patterns)) {
3719 wowl_config |= BRCMF_WOWL_NET;
3720 for (i = 0; i < wowl->n_patterns; i++) {
3721 brcmf_config_wowl_pattern(ifp, "add",
3722 (u8 *)wowl->patterns[i].pattern,
3723 wowl->patterns[i].pattern_len,
3724 (u8 *)wowl->patterns[i].mask,
3725 wowl->patterns[i].pkt_offset);
3728 if (wowl->nd_config) {
3729 brcmf_cfg80211_sched_scan_start(cfg->wiphy, ifp->ndev,
3731 wowl_config |= BRCMF_WOWL_PFN_FOUND;
3733 cfg->wowl.nd_data_completed = false;
3734 cfg->wowl.nd_enabled = true;
3735 /* Now reroute the event for PFN to the wowl function. */
3736 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3737 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3738 brcmf_wowl_nd_results);
3740 if (wowl->gtk_rekey_failure)
3741 wowl_config |= BRCMF_WOWL_GTK_FAILURE;
3742 if (!test_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state))
3743 wowl_config |= BRCMF_WOWL_UNASSOC;
3745 memcpy(&wowl_wakeind, "clear", 6);
3746 brcmf_fil_iovar_data_set(ifp, "wowl_wakeind", &wowl_wakeind,
3747 sizeof(wowl_wakeind));
3748 brcmf_fil_iovar_int_set(ifp, "wowl", wowl_config);
3749 brcmf_fil_iovar_int_set(ifp, "wowl_activate", 1);
3750 brcmf_bus_wowl_config(cfg->pub->bus_if, true);
3751 cfg->wowl.active = true;
3754 static s32 brcmf_cfg80211_suspend(struct wiphy *wiphy,
3755 struct cfg80211_wowlan *wowl)
3757 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3758 struct net_device *ndev = cfg_to_ndev(cfg);
3759 struct brcmf_if *ifp = netdev_priv(ndev);
3760 struct brcmf_cfg80211_vif *vif;
3762 brcmf_dbg(TRACE, "Enter\n");
3764 /* if the primary net_device is not READY there is nothing
3765 * we can do but pray resume goes smoothly.
3767 if (!check_vif_up(ifp->vif))
3770 /* Stop scheduled scan */
3771 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO))
3772 brcmf_cfg80211_sched_scan_stop(wiphy, ndev);
3774 /* end any scanning */
3775 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
3776 brcmf_abort_scanning(cfg);
3779 brcmf_bus_wowl_config(cfg->pub->bus_if, false);
3780 list_for_each_entry(vif, &cfg->vif_list, list) {
3781 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state))
3783 /* While going to suspend if associated with AP
3784 * disassociate from AP to save power while system is
3785 * in suspended state
3787 brcmf_link_down(vif, WLAN_REASON_UNSPECIFIED);
3788 /* Make sure WPA_Supplicant receives all the event
3789 * generated due to DISASSOC call to the fw to keep
3790 * the state fw and WPA_Supplicant state consistent
3795 brcmf_set_mpc(ifp, 1);
3798 /* Configure WOWL paramaters */
3799 brcmf_configure_wowl(cfg, ifp, wowl);
3803 brcmf_dbg(TRACE, "Exit\n");
3804 /* clear any scanning activity */
3805 cfg->scan_status = 0;
3810 brcmf_update_pmklist(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp)
3812 struct brcmf_pmk_list_le *pmk_list;
3817 pmk_list = &cfg->pmk_list;
3818 npmk = le32_to_cpu(pmk_list->npmk);
3820 brcmf_dbg(CONN, "No of elements %d\n", npmk);
3821 for (i = 0; i < npmk; i++)
3822 brcmf_dbg(CONN, "PMK[%d]: %pM\n", i, &pmk_list->pmk[i].bssid);
3824 err = brcmf_fil_iovar_data_set(ifp, "pmkid_info", pmk_list,
3831 brcmf_cfg80211_set_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3832 struct cfg80211_pmksa *pmksa)
3834 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3835 struct brcmf_if *ifp = netdev_priv(ndev);
3836 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3840 brcmf_dbg(TRACE, "Enter\n");
3841 if (!check_vif_up(ifp->vif))
3844 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3845 for (i = 0; i < npmk; i++)
3846 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3848 if (i < BRCMF_MAXPMKID) {
3849 memcpy(pmk[i].bssid, pmksa->bssid, ETH_ALEN);
3850 memcpy(pmk[i].pmkid, pmksa->pmkid, WLAN_PMKID_LEN);
3853 cfg->pmk_list.npmk = cpu_to_le32(npmk);
3856 brcmf_err("Too many PMKSA entries cached %d\n", npmk);
3860 brcmf_dbg(CONN, "set_pmksa - PMK bssid: %pM =\n", pmk[npmk].bssid);
3861 for (i = 0; i < WLAN_PMKID_LEN; i += 4)
3862 brcmf_dbg(CONN, "%02x %02x %02x %02x\n", pmk[npmk].pmkid[i],
3863 pmk[npmk].pmkid[i + 1], pmk[npmk].pmkid[i + 2],
3864 pmk[npmk].pmkid[i + 3]);
3866 err = brcmf_update_pmklist(cfg, ifp);
3868 brcmf_dbg(TRACE, "Exit\n");
3873 brcmf_cfg80211_del_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3874 struct cfg80211_pmksa *pmksa)
3876 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3877 struct brcmf_if *ifp = netdev_priv(ndev);
3878 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3882 brcmf_dbg(TRACE, "Enter\n");
3883 if (!check_vif_up(ifp->vif))
3886 brcmf_dbg(CONN, "del_pmksa - PMK bssid = %pM\n", pmksa->bssid);
3888 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3889 for (i = 0; i < npmk; i++)
3890 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3893 if ((npmk > 0) && (i < npmk)) {
3894 for (; i < (npmk - 1); i++) {
3895 memcpy(&pmk[i].bssid, &pmk[i + 1].bssid, ETH_ALEN);
3896 memcpy(&pmk[i].pmkid, &pmk[i + 1].pmkid,
3899 memset(&pmk[i], 0, sizeof(*pmk));
3900 cfg->pmk_list.npmk = cpu_to_le32(npmk - 1);
3902 brcmf_err("Cache entry not found\n");
3906 err = brcmf_update_pmklist(cfg, ifp);
3908 brcmf_dbg(TRACE, "Exit\n");
3914 brcmf_cfg80211_flush_pmksa(struct wiphy *wiphy, struct net_device *ndev)
3916 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3917 struct brcmf_if *ifp = netdev_priv(ndev);
3920 brcmf_dbg(TRACE, "Enter\n");
3921 if (!check_vif_up(ifp->vif))
3924 memset(&cfg->pmk_list, 0, sizeof(cfg->pmk_list));
3925 err = brcmf_update_pmklist(cfg, ifp);
3927 brcmf_dbg(TRACE, "Exit\n");
3932 static s32 brcmf_configure_opensecurity(struct brcmf_if *ifp)
3937 err = brcmf_fil_bsscfg_int_set(ifp, "auth", 0);
3939 brcmf_err("auth error %d\n", err);
3943 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", 0);
3945 brcmf_err("wsec error %d\n", err);
3948 /* set upper-layer auth */
3949 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", WPA_AUTH_NONE);
3951 brcmf_err("wpa_auth error %d\n", err);
3958 static bool brcmf_valid_wpa_oui(u8 *oui, bool is_rsn_ie)
3961 return (memcmp(oui, RSN_OUI, TLV_OUI_LEN) == 0);
3963 return (memcmp(oui, WPA_OUI, TLV_OUI_LEN) == 0);
3967 brcmf_configure_wpaie(struct brcmf_if *ifp,
3968 const struct brcmf_vs_tlv *wpa_ie,
3971 u32 auth = 0; /* d11 open authentication */
3983 u32 wme_bss_disable;
3986 brcmf_dbg(TRACE, "Enter\n");
3990 len = wpa_ie->len + TLV_HDR_LEN;
3991 data = (u8 *)wpa_ie;
3992 offset = TLV_HDR_LEN;
3994 offset += VS_IE_FIXED_HDR_LEN;
3996 offset += WPA_IE_VERSION_LEN;
3998 /* check for multicast cipher suite */
3999 if (offset + WPA_IE_MIN_OUI_LEN > len) {
4001 brcmf_err("no multicast cipher suite\n");
4005 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
4007 brcmf_err("ivalid OUI\n");
4010 offset += TLV_OUI_LEN;
4012 /* pick up multicast cipher */
4013 switch (data[offset]) {
4014 case WPA_CIPHER_NONE:
4017 case WPA_CIPHER_WEP_40:
4018 case WPA_CIPHER_WEP_104:
4021 case WPA_CIPHER_TKIP:
4022 gval = TKIP_ENABLED;
4024 case WPA_CIPHER_AES_CCM:
4029 brcmf_err("Invalid multi cast cipher info\n");
4034 /* walk thru unicast cipher list and pick up what we recognize */
4035 count = data[offset] + (data[offset + 1] << 8);
4036 offset += WPA_IE_SUITE_COUNT_LEN;
4037 /* Check for unicast suite(s) */
4038 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
4040 brcmf_err("no unicast cipher suite\n");
4043 for (i = 0; i < count; i++) {
4044 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
4046 brcmf_err("ivalid OUI\n");
4049 offset += TLV_OUI_LEN;
4050 switch (data[offset]) {
4051 case WPA_CIPHER_NONE:
4053 case WPA_CIPHER_WEP_40:
4054 case WPA_CIPHER_WEP_104:
4055 pval |= WEP_ENABLED;
4057 case WPA_CIPHER_TKIP:
4058 pval |= TKIP_ENABLED;
4060 case WPA_CIPHER_AES_CCM:
4061 pval |= AES_ENABLED;
4064 brcmf_err("Ivalid unicast security info\n");
4068 /* walk thru auth management suite list and pick up what we recognize */
4069 count = data[offset] + (data[offset + 1] << 8);
4070 offset += WPA_IE_SUITE_COUNT_LEN;
4071 /* Check for auth key management suite(s) */
4072 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
4074 brcmf_err("no auth key mgmt suite\n");
4077 for (i = 0; i < count; i++) {
4078 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
4080 brcmf_err("ivalid OUI\n");
4083 offset += TLV_OUI_LEN;
4084 switch (data[offset]) {
4086 brcmf_dbg(TRACE, "RSN_AKM_NONE\n");
4087 wpa_auth |= WPA_AUTH_NONE;
4089 case RSN_AKM_UNSPECIFIED:
4090 brcmf_dbg(TRACE, "RSN_AKM_UNSPECIFIED\n");
4091 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_UNSPECIFIED) :
4092 (wpa_auth |= WPA_AUTH_UNSPECIFIED);
4095 brcmf_dbg(TRACE, "RSN_AKM_PSK\n");
4096 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_PSK) :
4097 (wpa_auth |= WPA_AUTH_PSK);
4099 case RSN_AKM_SHA256_PSK:
4100 brcmf_dbg(TRACE, "RSN_AKM_MFP_PSK\n");
4101 wpa_auth |= WPA2_AUTH_PSK_SHA256;
4103 case RSN_AKM_SHA256_1X:
4104 brcmf_dbg(TRACE, "RSN_AKM_MFP_1X\n");
4105 wpa_auth |= WPA2_AUTH_1X_SHA256;
4108 brcmf_err("Ivalid key mgmt info\n");
4113 mfp = BRCMF_MFP_NONE;
4115 wme_bss_disable = 1;
4116 if ((offset + RSN_CAP_LEN) <= len) {
4117 rsn_cap = data[offset] + (data[offset + 1] << 8);
4118 if (rsn_cap & RSN_CAP_PTK_REPLAY_CNTR_MASK)
4119 wme_bss_disable = 0;
4120 if (rsn_cap & RSN_CAP_MFPR_MASK) {
4121 brcmf_dbg(TRACE, "MFP Required\n");
4122 mfp = BRCMF_MFP_REQUIRED;
4123 /* Firmware only supports mfp required in
4124 * combination with WPA2_AUTH_PSK_SHA256 or
4125 * WPA2_AUTH_1X_SHA256.
4127 if (!(wpa_auth & (WPA2_AUTH_PSK_SHA256 |
4128 WPA2_AUTH_1X_SHA256))) {
4132 /* Firmware has requirement that WPA2_AUTH_PSK/
4133 * WPA2_AUTH_UNSPECIFIED be set, if SHA256 OUI
4134 * is to be included in the rsn ie.
4136 if (wpa_auth & WPA2_AUTH_PSK_SHA256)
4137 wpa_auth |= WPA2_AUTH_PSK;
4138 else if (wpa_auth & WPA2_AUTH_1X_SHA256)
4139 wpa_auth |= WPA2_AUTH_UNSPECIFIED;
4140 } else if (rsn_cap & RSN_CAP_MFPC_MASK) {
4141 brcmf_dbg(TRACE, "MFP Capable\n");
4142 mfp = BRCMF_MFP_CAPABLE;
4145 offset += RSN_CAP_LEN;
4146 /* set wme_bss_disable to sync RSN Capabilities */
4147 err = brcmf_fil_bsscfg_int_set(ifp, "wme_bss_disable",
4150 brcmf_err("wme_bss_disable error %d\n", err);
4154 /* Skip PMKID cnt as it is know to be 0 for AP. */
4155 offset += RSN_PMKID_COUNT_LEN;
4157 /* See if there is BIP wpa suite left for MFP */
4158 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP) &&
4159 ((offset + WPA_IE_MIN_OUI_LEN) <= len)) {
4160 err = brcmf_fil_bsscfg_data_set(ifp, "bip",
4162 WPA_IE_MIN_OUI_LEN);
4164 brcmf_err("bip error %d\n", err);
4169 /* FOR WPS , set SES_OW_ENABLED */
4170 wsec = (pval | gval | SES_OW_ENABLED);
4173 err = brcmf_fil_bsscfg_int_set(ifp, "auth", auth);
4175 brcmf_err("auth error %d\n", err);
4179 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
4181 brcmf_err("wsec error %d\n", err);
4184 /* Configure MFP, this needs to go after wsec otherwise the wsec command
4185 * will overwrite the values set by MFP
4187 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP)) {
4188 err = brcmf_fil_bsscfg_int_set(ifp, "mfp", mfp);
4190 brcmf_err("mfp error %d\n", err);
4194 /* set upper-layer auth */
4195 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", wpa_auth);
4197 brcmf_err("wpa_auth error %d\n", err);
4206 brcmf_parse_vndr_ies(const u8 *vndr_ie_buf, u32 vndr_ie_len,
4207 struct parsed_vndr_ies *vndr_ies)
4209 struct brcmf_vs_tlv *vndrie;
4210 struct brcmf_tlv *ie;
4211 struct parsed_vndr_ie_info *parsed_info;
4214 remaining_len = (s32)vndr_ie_len;
4215 memset(vndr_ies, 0, sizeof(*vndr_ies));
4217 ie = (struct brcmf_tlv *)vndr_ie_buf;
4219 if (ie->id != WLAN_EID_VENDOR_SPECIFIC)
4221 vndrie = (struct brcmf_vs_tlv *)ie;
4222 /* len should be bigger than OUI length + one */
4223 if (vndrie->len < (VS_IE_FIXED_HDR_LEN - TLV_HDR_LEN + 1)) {
4224 brcmf_err("invalid vndr ie. length is too small %d\n",
4228 /* if wpa or wme ie, do not add ie */
4229 if (!memcmp(vndrie->oui, (u8 *)WPA_OUI, TLV_OUI_LEN) &&
4230 ((vndrie->oui_type == WPA_OUI_TYPE) ||
4231 (vndrie->oui_type == WME_OUI_TYPE))) {
4232 brcmf_dbg(TRACE, "Found WPA/WME oui. Do not add it\n");
4236 parsed_info = &vndr_ies->ie_info[vndr_ies->count];
4238 /* save vndr ie information */
4239 parsed_info->ie_ptr = (char *)vndrie;
4240 parsed_info->ie_len = vndrie->len + TLV_HDR_LEN;
4241 memcpy(&parsed_info->vndrie, vndrie, sizeof(*vndrie));
4245 brcmf_dbg(TRACE, "** OUI %02x %02x %02x, type 0x%02x\n",
4246 parsed_info->vndrie.oui[0],
4247 parsed_info->vndrie.oui[1],
4248 parsed_info->vndrie.oui[2],
4249 parsed_info->vndrie.oui_type);
4251 if (vndr_ies->count >= VNDR_IE_PARSE_LIMIT)
4254 remaining_len -= (ie->len + TLV_HDR_LEN);
4255 if (remaining_len <= TLV_HDR_LEN)
4258 ie = (struct brcmf_tlv *)(((u8 *)ie) + ie->len +
4265 brcmf_vndr_ie(u8 *iebuf, s32 pktflag, u8 *ie_ptr, u32 ie_len, s8 *add_del_cmd)
4268 strncpy(iebuf, add_del_cmd, VNDR_IE_CMD_LEN - 1);
4269 iebuf[VNDR_IE_CMD_LEN - 1] = '\0';
4271 put_unaligned_le32(1, &iebuf[VNDR_IE_COUNT_OFFSET]);
4273 put_unaligned_le32(pktflag, &iebuf[VNDR_IE_PKTFLAG_OFFSET]);
4275 memcpy(&iebuf[VNDR_IE_VSIE_OFFSET], ie_ptr, ie_len);
4277 return ie_len + VNDR_IE_HDR_SIZE;
4280 s32 brcmf_vif_set_mgmt_ie(struct brcmf_cfg80211_vif *vif, s32 pktflag,
4281 const u8 *vndr_ie_buf, u32 vndr_ie_len)
4283 struct brcmf_if *ifp;
4284 struct vif_saved_ie *saved_ie;
4288 u8 *mgmt_ie_buf = NULL;
4289 int mgmt_ie_buf_len;
4291 u32 del_add_ie_buf_len = 0;
4292 u32 total_ie_buf_len = 0;
4293 u32 parsed_ie_buf_len = 0;
4294 struct parsed_vndr_ies old_vndr_ies;
4295 struct parsed_vndr_ies new_vndr_ies;
4296 struct parsed_vndr_ie_info *vndrie_info;
4299 int remained_buf_len;
4304 saved_ie = &vif->saved_ie;
4306 brcmf_dbg(TRACE, "bsscfgidx %d, pktflag : 0x%02X\n", ifp->bsscfgidx,
4308 iovar_ie_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
4311 curr_ie_buf = iovar_ie_buf;
4313 case BRCMF_VNDR_IE_PRBREQ_FLAG:
4314 mgmt_ie_buf = saved_ie->probe_req_ie;
4315 mgmt_ie_len = &saved_ie->probe_req_ie_len;
4316 mgmt_ie_buf_len = sizeof(saved_ie->probe_req_ie);
4318 case BRCMF_VNDR_IE_PRBRSP_FLAG:
4319 mgmt_ie_buf = saved_ie->probe_res_ie;
4320 mgmt_ie_len = &saved_ie->probe_res_ie_len;
4321 mgmt_ie_buf_len = sizeof(saved_ie->probe_res_ie);
4323 case BRCMF_VNDR_IE_BEACON_FLAG:
4324 mgmt_ie_buf = saved_ie->beacon_ie;
4325 mgmt_ie_len = &saved_ie->beacon_ie_len;
4326 mgmt_ie_buf_len = sizeof(saved_ie->beacon_ie);
4328 case BRCMF_VNDR_IE_ASSOCREQ_FLAG:
4329 mgmt_ie_buf = saved_ie->assoc_req_ie;
4330 mgmt_ie_len = &saved_ie->assoc_req_ie_len;
4331 mgmt_ie_buf_len = sizeof(saved_ie->assoc_req_ie);
4335 brcmf_err("not suitable type\n");
4339 if (vndr_ie_len > mgmt_ie_buf_len) {
4341 brcmf_err("extra IE size too big\n");
4345 /* parse and save new vndr_ie in curr_ie_buff before comparing it */
4346 if (vndr_ie_buf && vndr_ie_len && curr_ie_buf) {
4348 brcmf_parse_vndr_ies(vndr_ie_buf, vndr_ie_len, &new_vndr_ies);
4349 for (i = 0; i < new_vndr_ies.count; i++) {
4350 vndrie_info = &new_vndr_ies.ie_info[i];
4351 memcpy(ptr + parsed_ie_buf_len, vndrie_info->ie_ptr,
4352 vndrie_info->ie_len);
4353 parsed_ie_buf_len += vndrie_info->ie_len;
4357 if (mgmt_ie_buf && *mgmt_ie_len) {
4358 if (parsed_ie_buf_len && (parsed_ie_buf_len == *mgmt_ie_len) &&
4359 (memcmp(mgmt_ie_buf, curr_ie_buf,
4360 parsed_ie_buf_len) == 0)) {
4361 brcmf_dbg(TRACE, "Previous mgmt IE equals to current IE\n");
4365 /* parse old vndr_ie */
4366 brcmf_parse_vndr_ies(mgmt_ie_buf, *mgmt_ie_len, &old_vndr_ies);
4368 /* make a command to delete old ie */
4369 for (i = 0; i < old_vndr_ies.count; i++) {
4370 vndrie_info = &old_vndr_ies.ie_info[i];
4372 brcmf_dbg(TRACE, "DEL ID : %d, Len: %d , OUI:%02x:%02x:%02x\n",
4373 vndrie_info->vndrie.id,
4374 vndrie_info->vndrie.len,
4375 vndrie_info->vndrie.oui[0],
4376 vndrie_info->vndrie.oui[1],
4377 vndrie_info->vndrie.oui[2]);
4379 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4380 vndrie_info->ie_ptr,
4381 vndrie_info->ie_len,
4383 curr_ie_buf += del_add_ie_buf_len;
4384 total_ie_buf_len += del_add_ie_buf_len;
4389 /* Add if there is any extra IE */
4390 if (mgmt_ie_buf && parsed_ie_buf_len) {
4393 remained_buf_len = mgmt_ie_buf_len;
4395 /* make a command to add new ie */
4396 for (i = 0; i < new_vndr_ies.count; i++) {
4397 vndrie_info = &new_vndr_ies.ie_info[i];
4399 /* verify remained buf size before copy data */
4400 if (remained_buf_len < (vndrie_info->vndrie.len +
4401 VNDR_IE_VSIE_OFFSET)) {
4402 brcmf_err("no space in mgmt_ie_buf: len left %d",
4406 remained_buf_len -= (vndrie_info->ie_len +
4407 VNDR_IE_VSIE_OFFSET);
4409 brcmf_dbg(TRACE, "ADDED ID : %d, Len: %d, OUI:%02x:%02x:%02x\n",
4410 vndrie_info->vndrie.id,
4411 vndrie_info->vndrie.len,
4412 vndrie_info->vndrie.oui[0],
4413 vndrie_info->vndrie.oui[1],
4414 vndrie_info->vndrie.oui[2]);
4416 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4417 vndrie_info->ie_ptr,
4418 vndrie_info->ie_len,
4421 /* save the parsed IE in wl struct */
4422 memcpy(ptr + (*mgmt_ie_len), vndrie_info->ie_ptr,
4423 vndrie_info->ie_len);
4424 *mgmt_ie_len += vndrie_info->ie_len;
4426 curr_ie_buf += del_add_ie_buf_len;
4427 total_ie_buf_len += del_add_ie_buf_len;
4430 if (total_ie_buf_len) {
4431 err = brcmf_fil_bsscfg_data_set(ifp, "vndr_ie", iovar_ie_buf,
4434 brcmf_err("vndr ie set error : %d\n", err);
4438 kfree(iovar_ie_buf);
4442 s32 brcmf_vif_clear_mgmt_ies(struct brcmf_cfg80211_vif *vif)
4445 BRCMF_VNDR_IE_PRBREQ_FLAG,
4446 BRCMF_VNDR_IE_PRBRSP_FLAG,
4447 BRCMF_VNDR_IE_BEACON_FLAG
4451 for (i = 0; i < ARRAY_SIZE(pktflags); i++)
4452 brcmf_vif_set_mgmt_ie(vif, pktflags[i], NULL, 0);
4454 memset(&vif->saved_ie, 0, sizeof(vif->saved_ie));
4459 brcmf_config_ap_mgmt_ie(struct brcmf_cfg80211_vif *vif,
4460 struct cfg80211_beacon_data *beacon)
4464 /* Set Beacon IEs to FW */
4465 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_BEACON_FLAG,
4466 beacon->tail, beacon->tail_len);
4468 brcmf_err("Set Beacon IE Failed\n");
4471 brcmf_dbg(TRACE, "Applied Vndr IEs for Beacon\n");
4473 /* Set Probe Response IEs to FW */
4474 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_PRBRSP_FLAG,
4475 beacon->proberesp_ies,
4476 beacon->proberesp_ies_len);
4478 brcmf_err("Set Probe Resp IE Failed\n");
4480 brcmf_dbg(TRACE, "Applied Vndr IEs for Probe Resp\n");
4486 brcmf_cfg80211_start_ap(struct wiphy *wiphy, struct net_device *ndev,
4487 struct cfg80211_ap_settings *settings)
4490 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4491 struct brcmf_if *ifp = netdev_priv(ndev);
4492 const struct brcmf_tlv *ssid_ie;
4493 const struct brcmf_tlv *country_ie;
4494 struct brcmf_ssid_le ssid_le;
4496 const struct brcmf_tlv *rsn_ie;
4497 const struct brcmf_vs_tlv *wpa_ie;
4498 struct brcmf_join_params join_params;
4499 enum nl80211_iftype dev_role;
4500 struct brcmf_fil_bss_enable_le bss_enable;
4501 u16 chanspec = chandef_to_chanspec(&cfg->d11inf, &settings->chandef);
4506 brcmf_dbg(TRACE, "ctrlchn=%d, center=%d, bw=%d, beacon_interval=%d, dtim_period=%d,\n",
4507 settings->chandef.chan->hw_value,
4508 settings->chandef.center_freq1, settings->chandef.width,
4509 settings->beacon_interval, settings->dtim_period);
4510 brcmf_dbg(TRACE, "ssid=%s(%zu), auth_type=%d, inactivity_timeout=%d\n",
4511 settings->ssid, settings->ssid_len, settings->auth_type,
4512 settings->inactivity_timeout);
4513 dev_role = ifp->vif->wdev.iftype;
4514 mbss = ifp->vif->mbss;
4516 /* store current 11d setting */
4517 if (brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_REGULATORY,
4518 &ifp->vif->is_11d)) {
4519 is_11d = supports_11d = false;
4521 country_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4522 settings->beacon.tail_len,
4524 is_11d = country_ie ? 1 : 0;
4525 supports_11d = true;
4528 memset(&ssid_le, 0, sizeof(ssid_le));
4529 if (settings->ssid == NULL || settings->ssid_len == 0) {
4530 ie_offset = DOT11_MGMT_HDR_LEN + DOT11_BCN_PRB_FIXED_LEN;
4531 ssid_ie = brcmf_parse_tlvs(
4532 (u8 *)&settings->beacon.head[ie_offset],
4533 settings->beacon.head_len - ie_offset,
4535 if (!ssid_ie || ssid_ie->len > IEEE80211_MAX_SSID_LEN)
4538 memcpy(ssid_le.SSID, ssid_ie->data, ssid_ie->len);
4539 ssid_le.SSID_len = cpu_to_le32(ssid_ie->len);
4540 brcmf_dbg(TRACE, "SSID is (%s) in Head\n", ssid_le.SSID);
4542 memcpy(ssid_le.SSID, settings->ssid, settings->ssid_len);
4543 ssid_le.SSID_len = cpu_to_le32((u32)settings->ssid_len);
4547 brcmf_set_mpc(ifp, 0);
4548 brcmf_configure_arp_nd_offload(ifp, false);
4551 /* find the RSN_IE */
4552 rsn_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4553 settings->beacon.tail_len, WLAN_EID_RSN);
4555 /* find the WPA_IE */
4556 wpa_ie = brcmf_find_wpaie((u8 *)settings->beacon.tail,
4557 settings->beacon.tail_len);
4559 if ((wpa_ie != NULL || rsn_ie != NULL)) {
4560 brcmf_dbg(TRACE, "WPA(2) IE is found\n");
4561 if (wpa_ie != NULL) {
4563 err = brcmf_configure_wpaie(ifp, wpa_ie, false);
4567 struct brcmf_vs_tlv *tmp_ie;
4569 tmp_ie = (struct brcmf_vs_tlv *)rsn_ie;
4572 err = brcmf_configure_wpaie(ifp, tmp_ie, true);
4577 brcmf_dbg(TRACE, "No WPA(2) IEs found\n");
4578 brcmf_configure_opensecurity(ifp);
4581 brcmf_config_ap_mgmt_ie(ifp->vif, &settings->beacon);
4583 /* Parameters shared by all radio interfaces */
4585 if ((supports_11d) && (is_11d != ifp->vif->is_11d)) {
4586 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4589 brcmf_err("Regulatory Set Error, %d\n", err);
4593 if (settings->beacon_interval) {
4594 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD,
4595 settings->beacon_interval);
4597 brcmf_err("Beacon Interval Set Error, %d\n",
4602 if (settings->dtim_period) {
4603 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_DTIMPRD,
4604 settings->dtim_period);
4606 brcmf_err("DTIM Interval Set Error, %d\n", err);
4611 if ((dev_role == NL80211_IFTYPE_AP) &&
4612 ((ifp->ifidx == 0) ||
4613 !brcmf_feat_is_enabled(ifp, BRCMF_FEAT_RSDB))) {
4614 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4616 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4619 brcmf_fil_iovar_int_set(ifp, "apsta", 0);
4622 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, 1);
4624 brcmf_err("SET INFRA error %d\n", err);
4627 } else if (WARN_ON(supports_11d && (is_11d != ifp->vif->is_11d))) {
4628 /* Multiple-BSS should use same 11d configuration */
4633 /* Interface specific setup */
4634 if (dev_role == NL80211_IFTYPE_AP) {
4635 if ((brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS)) && (!mbss))
4636 brcmf_fil_iovar_int_set(ifp, "mbss", 1);
4638 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 1);
4640 brcmf_err("setting AP mode failed %d\n", err);
4644 /* Firmware 10.x requires setting channel after enabling
4645 * AP and before bringing interface up.
4647 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4649 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4654 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4656 brcmf_err("BRCMF_C_UP error (%d)\n", err);
4659 /* On DOWN the firmware removes the WEP keys, reconfigure
4660 * them if they were set.
4662 brcmf_cfg80211_reconfigure_wep(ifp);
4664 memset(&join_params, 0, sizeof(join_params));
4665 /* join parameters starts with ssid */
4666 memcpy(&join_params.ssid_le, &ssid_le, sizeof(ssid_le));
4668 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4669 &join_params, sizeof(join_params));
4671 brcmf_err("SET SSID error (%d)\n", err);
4675 if (settings->hidden_ssid) {
4676 err = brcmf_fil_iovar_int_set(ifp, "closednet", 1);
4678 brcmf_err("closednet error (%d)\n", err);
4683 brcmf_dbg(TRACE, "AP mode configuration complete\n");
4684 } else if (dev_role == NL80211_IFTYPE_P2P_GO) {
4685 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4687 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4691 err = brcmf_fil_bsscfg_data_set(ifp, "ssid", &ssid_le,
4694 brcmf_err("setting ssid failed %d\n", err);
4697 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4698 bss_enable.enable = cpu_to_le32(1);
4699 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4700 sizeof(bss_enable));
4702 brcmf_err("bss_enable config failed %d\n", err);
4706 brcmf_dbg(TRACE, "GO mode configuration complete\n");
4711 set_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4712 brcmf_net_setcarrier(ifp, true);
4715 if ((err) && (!mbss)) {
4716 brcmf_set_mpc(ifp, 1);
4717 brcmf_configure_arp_nd_offload(ifp, true);
4722 static int brcmf_cfg80211_stop_ap(struct wiphy *wiphy, struct net_device *ndev)
4724 struct brcmf_if *ifp = netdev_priv(ndev);
4726 struct brcmf_fil_bss_enable_le bss_enable;
4727 struct brcmf_join_params join_params;
4729 brcmf_dbg(TRACE, "Enter\n");
4731 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_AP) {
4732 /* Due to most likely deauths outstanding we sleep */
4733 /* first to make sure they get processed by fw. */
4736 if (ifp->vif->mbss) {
4737 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4741 /* First BSS doesn't get a full reset */
4742 if (ifp->bsscfgidx == 0)
4743 brcmf_fil_iovar_int_set(ifp, "closednet", 0);
4745 memset(&join_params, 0, sizeof(join_params));
4746 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4747 &join_params, sizeof(join_params));
4749 brcmf_err("SET SSID error (%d)\n", err);
4750 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4752 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4753 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 0);
4755 brcmf_err("setting AP mode failed %d\n", err);
4756 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, 0);
4758 brcmf_err("setting INFRA mode failed %d\n", err);
4759 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS))
4760 brcmf_fil_iovar_int_set(ifp, "mbss", 0);
4761 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4763 /* Bring device back up so it can be used again */
4764 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4766 brcmf_err("BRCMF_C_UP error %d\n", err);
4768 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4769 bss_enable.enable = cpu_to_le32(0);
4770 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4771 sizeof(bss_enable));
4773 brcmf_err("bss_enable config failed %d\n", err);
4775 brcmf_set_mpc(ifp, 1);
4776 brcmf_configure_arp_nd_offload(ifp, true);
4777 clear_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4778 brcmf_net_setcarrier(ifp, false);
4784 brcmf_cfg80211_change_beacon(struct wiphy *wiphy, struct net_device *ndev,
4785 struct cfg80211_beacon_data *info)
4787 struct brcmf_if *ifp = netdev_priv(ndev);
4790 brcmf_dbg(TRACE, "Enter\n");
4792 err = brcmf_config_ap_mgmt_ie(ifp->vif, info);
4798 brcmf_cfg80211_del_station(struct wiphy *wiphy, struct net_device *ndev,
4799 struct station_del_parameters *params)
4801 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4802 struct brcmf_scb_val_le scbval;
4803 struct brcmf_if *ifp = netdev_priv(ndev);
4809 brcmf_dbg(TRACE, "Enter %pM\n", params->mac);
4811 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
4812 ifp = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif->ifp;
4813 if (!check_vif_up(ifp->vif))
4816 memcpy(&scbval.ea, params->mac, ETH_ALEN);
4817 scbval.val = cpu_to_le32(params->reason_code);
4818 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCB_DEAUTHENTICATE_FOR_REASON,
4819 &scbval, sizeof(scbval));
4821 brcmf_err("SCB_DEAUTHENTICATE_FOR_REASON failed %d\n", err);
4823 brcmf_dbg(TRACE, "Exit\n");
4828 brcmf_cfg80211_change_station(struct wiphy *wiphy, struct net_device *ndev,
4829 const u8 *mac, struct station_parameters *params)
4831 struct brcmf_if *ifp = netdev_priv(ndev);
4834 brcmf_dbg(TRACE, "Enter, MAC %pM, mask 0x%04x set 0x%04x\n", mac,
4835 params->sta_flags_mask, params->sta_flags_set);
4837 /* Ignore all 00 MAC */
4838 if (is_zero_ether_addr(mac))
4841 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
4844 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED))
4845 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_AUTHORIZE,
4846 (void *)mac, ETH_ALEN);
4848 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_DEAUTHORIZE,
4849 (void *)mac, ETH_ALEN);
4851 brcmf_err("Setting SCB (de-)authorize failed, %d\n", err);
4857 brcmf_cfg80211_mgmt_frame_register(struct wiphy *wiphy,
4858 struct wireless_dev *wdev,
4859 u16 frame_type, bool reg)
4861 struct brcmf_cfg80211_vif *vif;
4864 brcmf_dbg(TRACE, "Enter, frame_type %04x, reg=%d\n", frame_type, reg);
4866 mgmt_type = (frame_type & IEEE80211_FCTL_STYPE) >> 4;
4867 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4869 vif->mgmt_rx_reg |= BIT(mgmt_type);
4871 vif->mgmt_rx_reg &= ~BIT(mgmt_type);
4876 brcmf_cfg80211_mgmt_tx(struct wiphy *wiphy, struct wireless_dev *wdev,
4877 struct cfg80211_mgmt_tx_params *params, u64 *cookie)
4879 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4880 struct ieee80211_channel *chan = params->chan;
4881 const u8 *buf = params->buf;
4882 size_t len = params->len;
4883 const struct ieee80211_mgmt *mgmt;
4884 struct brcmf_cfg80211_vif *vif;
4888 struct brcmf_fil_action_frame_le *action_frame;
4889 struct brcmf_fil_af_params_le *af_params;
4894 brcmf_dbg(TRACE, "Enter\n");
4898 mgmt = (const struct ieee80211_mgmt *)buf;
4900 if (!ieee80211_is_mgmt(mgmt->frame_control)) {
4901 brcmf_err("Driver only allows MGMT packet type\n");
4905 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4907 if (ieee80211_is_probe_resp(mgmt->frame_control)) {
4908 /* Right now the only reason to get a probe response */
4909 /* is for p2p listen response or for p2p GO from */
4910 /* wpa_supplicant. Unfortunately the probe is send */
4911 /* on primary ndev, while dongle wants it on the p2p */
4912 /* vif. Since this is only reason for a probe */
4913 /* response to be sent, the vif is taken from cfg. */
4914 /* If ever desired to send proberesp for non p2p */
4915 /* response then data should be checked for */
4916 /* "DIRECT-". Note in future supplicant will take */
4917 /* dedicated p2p wdev to do this and then this 'hack'*/
4918 /* is not needed anymore. */
4919 ie_offset = DOT11_MGMT_HDR_LEN +
4920 DOT11_BCN_PRB_FIXED_LEN;
4921 ie_len = len - ie_offset;
4922 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif)
4923 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4924 err = brcmf_vif_set_mgmt_ie(vif,
4925 BRCMF_VNDR_IE_PRBRSP_FLAG,
4928 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, true,
4930 } else if (ieee80211_is_action(mgmt->frame_control)) {
4931 af_params = kzalloc(sizeof(*af_params), GFP_KERNEL);
4932 if (af_params == NULL) {
4933 brcmf_err("unable to allocate frame\n");
4937 action_frame = &af_params->action_frame;
4938 /* Add the packet Id */
4939 action_frame->packet_id = cpu_to_le32(*cookie);
4941 memcpy(&action_frame->da[0], &mgmt->da[0], ETH_ALEN);
4942 memcpy(&af_params->bssid[0], &mgmt->bssid[0], ETH_ALEN);
4943 /* Add the length exepted for 802.11 header */
4944 action_frame->len = cpu_to_le16(len - DOT11_MGMT_HDR_LEN);
4945 /* Add the channel. Use the one specified as parameter if any or
4946 * the current one (got from the firmware) otherwise
4949 freq = chan->center_freq;
4951 brcmf_fil_cmd_int_get(vif->ifp, BRCMF_C_GET_CHANNEL,
4953 chan_nr = ieee80211_frequency_to_channel(freq);
4954 af_params->channel = cpu_to_le32(chan_nr);
4956 memcpy(action_frame->data, &buf[DOT11_MGMT_HDR_LEN],
4957 le16_to_cpu(action_frame->len));
4959 brcmf_dbg(TRACE, "Action frame, cookie=%lld, len=%d, freq=%d\n",
4960 *cookie, le16_to_cpu(action_frame->len), freq);
4962 ack = brcmf_p2p_send_action_frame(cfg, cfg_to_ndev(cfg),
4965 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, ack,
4969 brcmf_dbg(TRACE, "Unhandled, fc=%04x!!\n", mgmt->frame_control);
4970 brcmf_dbg_hex_dump(true, buf, len, "payload, len=%Zu\n", len);
4979 brcmf_cfg80211_cancel_remain_on_channel(struct wiphy *wiphy,
4980 struct wireless_dev *wdev,
4983 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4984 struct brcmf_cfg80211_vif *vif;
4987 brcmf_dbg(TRACE, "Enter p2p listen cancel\n");
4989 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4991 brcmf_err("No p2p device available for probe response\n");
4995 brcmf_p2p_cancel_remain_on_channel(vif->ifp);
5000 static int brcmf_cfg80211_get_channel(struct wiphy *wiphy,
5001 struct wireless_dev *wdev,
5002 struct cfg80211_chan_def *chandef)
5004 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
5005 struct net_device *ndev = wdev->netdev;
5006 struct brcmf_if *ifp;
5007 struct brcmu_chan ch;
5008 enum nl80211_band band = 0;
5009 enum nl80211_chan_width width = 0;
5015 ifp = netdev_priv(ndev);
5017 err = brcmf_fil_iovar_int_get(ifp, "chanspec", &chanspec);
5019 brcmf_err("chanspec failed (%d)\n", err);
5023 ch.chspec = chanspec;
5024 cfg->d11inf.decchspec(&ch);
5027 case BRCMU_CHAN_BAND_2G:
5028 band = NL80211_BAND_2GHZ;
5030 case BRCMU_CHAN_BAND_5G:
5031 band = NL80211_BAND_5GHZ;
5036 case BRCMU_CHAN_BW_80:
5037 width = NL80211_CHAN_WIDTH_80;
5039 case BRCMU_CHAN_BW_40:
5040 width = NL80211_CHAN_WIDTH_40;
5042 case BRCMU_CHAN_BW_20:
5043 width = NL80211_CHAN_WIDTH_20;
5045 case BRCMU_CHAN_BW_80P80:
5046 width = NL80211_CHAN_WIDTH_80P80;
5048 case BRCMU_CHAN_BW_160:
5049 width = NL80211_CHAN_WIDTH_160;
5053 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band);
5054 chandef->chan = ieee80211_get_channel(wiphy, freq);
5055 chandef->width = width;
5056 chandef->center_freq1 = ieee80211_channel_to_frequency(ch.chnum, band);
5057 chandef->center_freq2 = 0;
5062 static int brcmf_cfg80211_crit_proto_start(struct wiphy *wiphy,
5063 struct wireless_dev *wdev,
5064 enum nl80211_crit_proto_id proto,
5067 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
5068 struct brcmf_cfg80211_vif *vif;
5070 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
5072 /* only DHCP support for now */
5073 if (proto != NL80211_CRIT_PROTO_DHCP)
5076 /* suppress and abort scanning */
5077 set_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
5078 brcmf_abort_scanning(cfg);
5080 return brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_DISABLED, duration);
5083 static void brcmf_cfg80211_crit_proto_stop(struct wiphy *wiphy,
5084 struct wireless_dev *wdev)
5086 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
5087 struct brcmf_cfg80211_vif *vif;
5089 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
5091 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
5092 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
5096 brcmf_notify_tdls_peer_event(struct brcmf_if *ifp,
5097 const struct brcmf_event_msg *e, void *data)
5099 switch (e->reason) {
5100 case BRCMF_E_REASON_TDLS_PEER_DISCOVERED:
5101 brcmf_dbg(TRACE, "TDLS Peer Discovered\n");
5103 case BRCMF_E_REASON_TDLS_PEER_CONNECTED:
5104 brcmf_dbg(TRACE, "TDLS Peer Connected\n");
5105 brcmf_proto_add_tdls_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5107 case BRCMF_E_REASON_TDLS_PEER_DISCONNECTED:
5108 brcmf_dbg(TRACE, "TDLS Peer Disconnected\n");
5109 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5116 static int brcmf_convert_nl80211_tdls_oper(enum nl80211_tdls_operation oper)
5121 case NL80211_TDLS_DISCOVERY_REQ:
5122 ret = BRCMF_TDLS_MANUAL_EP_DISCOVERY;
5124 case NL80211_TDLS_SETUP:
5125 ret = BRCMF_TDLS_MANUAL_EP_CREATE;
5127 case NL80211_TDLS_TEARDOWN:
5128 ret = BRCMF_TDLS_MANUAL_EP_DELETE;
5131 brcmf_err("unsupported operation: %d\n", oper);
5137 static int brcmf_cfg80211_tdls_oper(struct wiphy *wiphy,
5138 struct net_device *ndev, const u8 *peer,
5139 enum nl80211_tdls_operation oper)
5141 struct brcmf_if *ifp;
5142 struct brcmf_tdls_iovar_le info;
5145 ret = brcmf_convert_nl80211_tdls_oper(oper);
5149 ifp = netdev_priv(ndev);
5150 memset(&info, 0, sizeof(info));
5151 info.mode = (u8)ret;
5153 memcpy(info.ea, peer, ETH_ALEN);
5155 ret = brcmf_fil_iovar_data_set(ifp, "tdls_endpoint",
5156 &info, sizeof(info));
5158 brcmf_err("tdls_endpoint iovar failed: ret=%d\n", ret);
5165 brcmf_cfg80211_set_rekey_data(struct wiphy *wiphy, struct net_device *ndev,
5166 struct cfg80211_gtk_rekey_data *gtk)
5168 struct brcmf_if *ifp = netdev_priv(ndev);
5169 struct brcmf_gtk_keyinfo_le gtk_le;
5172 brcmf_dbg(TRACE, "Enter, bssidx=%d\n", ifp->bsscfgidx);
5174 memcpy(gtk_le.kck, gtk->kck, sizeof(gtk_le.kck));
5175 memcpy(gtk_le.kek, gtk->kek, sizeof(gtk_le.kek));
5176 memcpy(gtk_le.replay_counter, gtk->replay_ctr,
5177 sizeof(gtk_le.replay_counter));
5179 ret = brcmf_fil_iovar_data_set(ifp, "gtk_key_info", >k_le,
5182 brcmf_err("gtk_key_info iovar failed: ret=%d\n", ret);
5188 static struct cfg80211_ops brcmf_cfg80211_ops = {
5189 .add_virtual_intf = brcmf_cfg80211_add_iface,
5190 .del_virtual_intf = brcmf_cfg80211_del_iface,
5191 .change_virtual_intf = brcmf_cfg80211_change_iface,
5192 .scan = brcmf_cfg80211_scan,
5193 .set_wiphy_params = brcmf_cfg80211_set_wiphy_params,
5194 .join_ibss = brcmf_cfg80211_join_ibss,
5195 .leave_ibss = brcmf_cfg80211_leave_ibss,
5196 .get_station = brcmf_cfg80211_get_station,
5197 .dump_station = brcmf_cfg80211_dump_station,
5198 .set_tx_power = brcmf_cfg80211_set_tx_power,
5199 .get_tx_power = brcmf_cfg80211_get_tx_power,
5200 .add_key = brcmf_cfg80211_add_key,
5201 .del_key = brcmf_cfg80211_del_key,
5202 .get_key = brcmf_cfg80211_get_key,
5203 .set_default_key = brcmf_cfg80211_config_default_key,
5204 .set_default_mgmt_key = brcmf_cfg80211_config_default_mgmt_key,
5205 .set_power_mgmt = brcmf_cfg80211_set_power_mgmt,
5206 .connect = brcmf_cfg80211_connect,
5207 .disconnect = brcmf_cfg80211_disconnect,
5208 .suspend = brcmf_cfg80211_suspend,
5209 .resume = brcmf_cfg80211_resume,
5210 .set_pmksa = brcmf_cfg80211_set_pmksa,
5211 .del_pmksa = brcmf_cfg80211_del_pmksa,
5212 .flush_pmksa = brcmf_cfg80211_flush_pmksa,
5213 .start_ap = brcmf_cfg80211_start_ap,
5214 .stop_ap = brcmf_cfg80211_stop_ap,
5215 .change_beacon = brcmf_cfg80211_change_beacon,
5216 .del_station = brcmf_cfg80211_del_station,
5217 .change_station = brcmf_cfg80211_change_station,
5218 .sched_scan_start = brcmf_cfg80211_sched_scan_start,
5219 .sched_scan_stop = brcmf_cfg80211_sched_scan_stop,
5220 .mgmt_frame_register = brcmf_cfg80211_mgmt_frame_register,
5221 .mgmt_tx = brcmf_cfg80211_mgmt_tx,
5222 .remain_on_channel = brcmf_p2p_remain_on_channel,
5223 .cancel_remain_on_channel = brcmf_cfg80211_cancel_remain_on_channel,
5224 .get_channel = brcmf_cfg80211_get_channel,
5225 .start_p2p_device = brcmf_p2p_start_device,
5226 .stop_p2p_device = brcmf_p2p_stop_device,
5227 .crit_proto_start = brcmf_cfg80211_crit_proto_start,
5228 .crit_proto_stop = brcmf_cfg80211_crit_proto_stop,
5229 .tdls_oper = brcmf_cfg80211_tdls_oper,
5232 struct brcmf_cfg80211_vif *brcmf_alloc_vif(struct brcmf_cfg80211_info *cfg,
5233 enum nl80211_iftype type)
5235 struct brcmf_cfg80211_vif *vif_walk;
5236 struct brcmf_cfg80211_vif *vif;
5239 brcmf_dbg(TRACE, "allocating virtual interface (size=%zu)\n",
5241 vif = kzalloc(sizeof(*vif), GFP_KERNEL);
5243 return ERR_PTR(-ENOMEM);
5245 vif->wdev.wiphy = cfg->wiphy;
5246 vif->wdev.iftype = type;
5248 brcmf_init_prof(&vif->profile);
5250 if (type == NL80211_IFTYPE_AP) {
5252 list_for_each_entry(vif_walk, &cfg->vif_list, list) {
5253 if (vif_walk->wdev.iftype == NL80211_IFTYPE_AP) {
5261 list_add_tail(&vif->list, &cfg->vif_list);
5265 void brcmf_free_vif(struct brcmf_cfg80211_vif *vif)
5267 list_del(&vif->list);
5271 void brcmf_cfg80211_free_netdev(struct net_device *ndev)
5273 struct brcmf_cfg80211_vif *vif;
5274 struct brcmf_if *ifp;
5276 ifp = netdev_priv(ndev);
5280 brcmf_free_vif(vif);
5284 static bool brcmf_is_linkup(const struct brcmf_event_msg *e)
5286 u32 event = e->event_code;
5287 u32 status = e->status;
5289 if (event == BRCMF_E_SET_SSID && status == BRCMF_E_STATUS_SUCCESS) {
5290 brcmf_dbg(CONN, "Processing set ssid\n");
5297 static bool brcmf_is_linkdown(const struct brcmf_event_msg *e)
5299 u32 event = e->event_code;
5300 u16 flags = e->flags;
5302 if ((event == BRCMF_E_DEAUTH) || (event == BRCMF_E_DEAUTH_IND) ||
5303 (event == BRCMF_E_DISASSOC_IND) ||
5304 ((event == BRCMF_E_LINK) && (!(flags & BRCMF_EVENT_MSG_LINK)))) {
5305 brcmf_dbg(CONN, "Processing link down\n");
5311 static bool brcmf_is_nonetwork(struct brcmf_cfg80211_info *cfg,
5312 const struct brcmf_event_msg *e)
5314 u32 event = e->event_code;
5315 u32 status = e->status;
5317 if (event == BRCMF_E_LINK && status == BRCMF_E_STATUS_NO_NETWORKS) {
5318 brcmf_dbg(CONN, "Processing Link %s & no network found\n",
5319 e->flags & BRCMF_EVENT_MSG_LINK ? "up" : "down");
5323 if (event == BRCMF_E_SET_SSID && status != BRCMF_E_STATUS_SUCCESS) {
5324 brcmf_dbg(CONN, "Processing connecting & no network found\n");
5331 static void brcmf_clear_assoc_ies(struct brcmf_cfg80211_info *cfg)
5333 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5335 kfree(conn_info->req_ie);
5336 conn_info->req_ie = NULL;
5337 conn_info->req_ie_len = 0;
5338 kfree(conn_info->resp_ie);
5339 conn_info->resp_ie = NULL;
5340 conn_info->resp_ie_len = 0;
5343 static s32 brcmf_get_assoc_ies(struct brcmf_cfg80211_info *cfg,
5344 struct brcmf_if *ifp)
5346 struct brcmf_cfg80211_assoc_ielen_le *assoc_info;
5347 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5352 brcmf_clear_assoc_ies(cfg);
5354 err = brcmf_fil_iovar_data_get(ifp, "assoc_info",
5355 cfg->extra_buf, WL_ASSOC_INFO_MAX);
5357 brcmf_err("could not get assoc info (%d)\n", err);
5361 (struct brcmf_cfg80211_assoc_ielen_le *)cfg->extra_buf;
5362 req_len = le32_to_cpu(assoc_info->req_len);
5363 resp_len = le32_to_cpu(assoc_info->resp_len);
5365 err = brcmf_fil_iovar_data_get(ifp, "assoc_req_ies",
5369 brcmf_err("could not get assoc req (%d)\n", err);
5372 conn_info->req_ie_len = req_len;
5374 kmemdup(cfg->extra_buf, conn_info->req_ie_len,
5377 conn_info->req_ie_len = 0;
5378 conn_info->req_ie = NULL;
5381 err = brcmf_fil_iovar_data_get(ifp, "assoc_resp_ies",
5385 brcmf_err("could not get assoc resp (%d)\n", err);
5388 conn_info->resp_ie_len = resp_len;
5389 conn_info->resp_ie =
5390 kmemdup(cfg->extra_buf, conn_info->resp_ie_len,
5393 conn_info->resp_ie_len = 0;
5394 conn_info->resp_ie = NULL;
5396 brcmf_dbg(CONN, "req len (%d) resp len (%d)\n",
5397 conn_info->req_ie_len, conn_info->resp_ie_len);
5403 brcmf_bss_roaming_done(struct brcmf_cfg80211_info *cfg,
5404 struct net_device *ndev,
5405 const struct brcmf_event_msg *e)
5407 struct brcmf_if *ifp = netdev_priv(ndev);
5408 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5409 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5410 struct wiphy *wiphy = cfg_to_wiphy(cfg);
5411 struct ieee80211_channel *notify_channel = NULL;
5412 struct ieee80211_supported_band *band;
5413 struct brcmf_bss_info_le *bi;
5414 struct brcmu_chan ch;
5419 brcmf_dbg(TRACE, "Enter\n");
5421 brcmf_get_assoc_ies(cfg, ifp);
5422 memcpy(profile->bssid, e->addr, ETH_ALEN);
5423 brcmf_update_bss_info(cfg, ifp);
5425 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
5431 /* data sent to dongle has to be little endian */
5432 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
5433 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
5434 buf, WL_BSS_INFO_MAX);
5439 bi = (struct brcmf_bss_info_le *)(buf + 4);
5440 ch.chspec = le16_to_cpu(bi->chanspec);
5441 cfg->d11inf.decchspec(&ch);
5443 if (ch.band == BRCMU_CHAN_BAND_2G)
5444 band = wiphy->bands[NL80211_BAND_2GHZ];
5446 band = wiphy->bands[NL80211_BAND_5GHZ];
5448 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
5449 notify_channel = ieee80211_get_channel(wiphy, freq);
5453 cfg80211_roamed(ndev, notify_channel, (u8 *)profile->bssid,
5454 conn_info->req_ie, conn_info->req_ie_len,
5455 conn_info->resp_ie, conn_info->resp_ie_len, GFP_KERNEL);
5456 brcmf_dbg(CONN, "Report roaming result\n");
5458 set_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
5459 brcmf_dbg(TRACE, "Exit\n");
5464 brcmf_bss_connect_done(struct brcmf_cfg80211_info *cfg,
5465 struct net_device *ndev, const struct brcmf_event_msg *e,
5468 struct brcmf_if *ifp = netdev_priv(ndev);
5469 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5470 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5472 brcmf_dbg(TRACE, "Enter\n");
5474 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5475 &ifp->vif->sme_state)) {
5477 brcmf_get_assoc_ies(cfg, ifp);
5478 memcpy(profile->bssid, e->addr, ETH_ALEN);
5479 brcmf_update_bss_info(cfg, ifp);
5480 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5481 &ifp->vif->sme_state);
5483 cfg80211_connect_result(ndev,
5484 (u8 *)profile->bssid,
5486 conn_info->req_ie_len,
5488 conn_info->resp_ie_len,
5489 completed ? WLAN_STATUS_SUCCESS :
5490 WLAN_STATUS_AUTH_TIMEOUT,
5492 brcmf_dbg(CONN, "Report connect result - connection %s\n",
5493 completed ? "succeeded" : "failed");
5495 brcmf_dbg(TRACE, "Exit\n");
5500 brcmf_notify_connect_status_ap(struct brcmf_cfg80211_info *cfg,
5501 struct net_device *ndev,
5502 const struct brcmf_event_msg *e, void *data)
5504 static int generation;
5505 u32 event = e->event_code;
5506 u32 reason = e->reason;
5507 struct station_info sinfo;
5509 brcmf_dbg(CONN, "event %d, reason %d\n", event, reason);
5510 if (event == BRCMF_E_LINK && reason == BRCMF_E_REASON_LINK_BSSCFG_DIS &&
5511 ndev != cfg_to_ndev(cfg)) {
5512 brcmf_dbg(CONN, "AP mode link down\n");
5513 complete(&cfg->vif_disabled);
5517 if (((event == BRCMF_E_ASSOC_IND) || (event == BRCMF_E_REASSOC_IND)) &&
5518 (reason == BRCMF_E_STATUS_SUCCESS)) {
5519 memset(&sinfo, 0, sizeof(sinfo));
5521 brcmf_err("No IEs present in ASSOC/REASSOC_IND");
5524 sinfo.assoc_req_ies = data;
5525 sinfo.assoc_req_ies_len = e->datalen;
5527 sinfo.generation = generation;
5528 cfg80211_new_sta(ndev, e->addr, &sinfo, GFP_KERNEL);
5529 } else if ((event == BRCMF_E_DISASSOC_IND) ||
5530 (event == BRCMF_E_DEAUTH_IND) ||
5531 (event == BRCMF_E_DEAUTH)) {
5532 cfg80211_del_sta(ndev, e->addr, GFP_KERNEL);
5538 brcmf_notify_connect_status(struct brcmf_if *ifp,
5539 const struct brcmf_event_msg *e, void *data)
5541 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5542 struct net_device *ndev = ifp->ndev;
5543 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5544 struct ieee80211_channel *chan;
5547 if ((e->event_code == BRCMF_E_DEAUTH) ||
5548 (e->event_code == BRCMF_E_DEAUTH_IND) ||
5549 (e->event_code == BRCMF_E_DISASSOC_IND) ||
5550 ((e->event_code == BRCMF_E_LINK) && (!e->flags))) {
5551 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5554 if (brcmf_is_apmode(ifp->vif)) {
5555 err = brcmf_notify_connect_status_ap(cfg, ndev, e, data);
5556 } else if (brcmf_is_linkup(e)) {
5557 brcmf_dbg(CONN, "Linkup\n");
5558 if (brcmf_is_ibssmode(ifp->vif)) {
5559 brcmf_inform_ibss(cfg, ndev, e->addr);
5560 chan = ieee80211_get_channel(cfg->wiphy, cfg->channel);
5561 memcpy(profile->bssid, e->addr, ETH_ALEN);
5562 cfg80211_ibss_joined(ndev, e->addr, chan, GFP_KERNEL);
5563 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5564 &ifp->vif->sme_state);
5565 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5566 &ifp->vif->sme_state);
5568 brcmf_bss_connect_done(cfg, ndev, e, true);
5569 brcmf_net_setcarrier(ifp, true);
5570 } else if (brcmf_is_linkdown(e)) {
5571 brcmf_dbg(CONN, "Linkdown\n");
5572 if (!brcmf_is_ibssmode(ifp->vif)) {
5573 brcmf_bss_connect_done(cfg, ndev, e, false);
5574 brcmf_link_down(ifp->vif,
5575 brcmf_map_fw_linkdown_reason(e));
5576 brcmf_init_prof(ndev_to_prof(ndev));
5577 if (ndev != cfg_to_ndev(cfg))
5578 complete(&cfg->vif_disabled);
5579 brcmf_net_setcarrier(ifp, false);
5581 } else if (brcmf_is_nonetwork(cfg, e)) {
5582 if (brcmf_is_ibssmode(ifp->vif))
5583 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5584 &ifp->vif->sme_state);
5586 brcmf_bss_connect_done(cfg, ndev, e, false);
5593 brcmf_notify_roaming_status(struct brcmf_if *ifp,
5594 const struct brcmf_event_msg *e, void *data)
5596 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5597 u32 event = e->event_code;
5598 u32 status = e->status;
5600 if (event == BRCMF_E_ROAM && status == BRCMF_E_STATUS_SUCCESS) {
5601 if (test_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state))
5602 brcmf_bss_roaming_done(cfg, ifp->ndev, e);
5604 brcmf_bss_connect_done(cfg, ifp->ndev, e, true);
5611 brcmf_notify_mic_status(struct brcmf_if *ifp,
5612 const struct brcmf_event_msg *e, void *data)
5614 u16 flags = e->flags;
5615 enum nl80211_key_type key_type;
5617 if (flags & BRCMF_EVENT_MSG_GROUP)
5618 key_type = NL80211_KEYTYPE_GROUP;
5620 key_type = NL80211_KEYTYPE_PAIRWISE;
5622 cfg80211_michael_mic_failure(ifp->ndev, (u8 *)&e->addr, key_type, -1,
5628 static s32 brcmf_notify_vif_event(struct brcmf_if *ifp,
5629 const struct brcmf_event_msg *e, void *data)
5631 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5632 struct brcmf_if_event *ifevent = (struct brcmf_if_event *)data;
5633 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
5634 struct brcmf_cfg80211_vif *vif;
5636 brcmf_dbg(TRACE, "Enter: action %u flags %u ifidx %u bsscfgidx %u\n",
5637 ifevent->action, ifevent->flags, ifevent->ifidx,
5638 ifevent->bsscfgidx);
5640 spin_lock(&event->vif_event_lock);
5641 event->action = ifevent->action;
5644 switch (ifevent->action) {
5645 case BRCMF_E_IF_ADD:
5646 /* waiting process may have timed out */
5647 if (!cfg->vif_event.vif) {
5648 spin_unlock(&event->vif_event_lock);
5655 vif->wdev.netdev = ifp->ndev;
5656 ifp->ndev->ieee80211_ptr = &vif->wdev;
5657 SET_NETDEV_DEV(ifp->ndev, wiphy_dev(cfg->wiphy));
5659 spin_unlock(&event->vif_event_lock);
5660 wake_up(&event->vif_wq);
5663 case BRCMF_E_IF_DEL:
5664 spin_unlock(&event->vif_event_lock);
5665 /* event may not be upon user request */
5666 if (brcmf_cfg80211_vif_event_armed(cfg))
5667 wake_up(&event->vif_wq);
5670 case BRCMF_E_IF_CHANGE:
5671 spin_unlock(&event->vif_event_lock);
5672 wake_up(&event->vif_wq);
5676 spin_unlock(&event->vif_event_lock);
5682 static void brcmf_init_conf(struct brcmf_cfg80211_conf *conf)
5684 conf->frag_threshold = (u32)-1;
5685 conf->rts_threshold = (u32)-1;
5686 conf->retry_short = (u32)-1;
5687 conf->retry_long = (u32)-1;
5690 static void brcmf_register_event_handlers(struct brcmf_cfg80211_info *cfg)
5692 brcmf_fweh_register(cfg->pub, BRCMF_E_LINK,
5693 brcmf_notify_connect_status);
5694 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH_IND,
5695 brcmf_notify_connect_status);
5696 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH,
5697 brcmf_notify_connect_status);
5698 brcmf_fweh_register(cfg->pub, BRCMF_E_DISASSOC_IND,
5699 brcmf_notify_connect_status);
5700 brcmf_fweh_register(cfg->pub, BRCMF_E_ASSOC_IND,
5701 brcmf_notify_connect_status);
5702 brcmf_fweh_register(cfg->pub, BRCMF_E_REASSOC_IND,
5703 brcmf_notify_connect_status);
5704 brcmf_fweh_register(cfg->pub, BRCMF_E_ROAM,
5705 brcmf_notify_roaming_status);
5706 brcmf_fweh_register(cfg->pub, BRCMF_E_MIC_ERROR,
5707 brcmf_notify_mic_status);
5708 brcmf_fweh_register(cfg->pub, BRCMF_E_SET_SSID,
5709 brcmf_notify_connect_status);
5710 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
5711 brcmf_notify_sched_scan_results);
5712 brcmf_fweh_register(cfg->pub, BRCMF_E_IF,
5713 brcmf_notify_vif_event);
5714 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_PROBEREQ_MSG,
5715 brcmf_p2p_notify_rx_mgmt_p2p_probereq);
5716 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_DISC_LISTEN_COMPLETE,
5717 brcmf_p2p_notify_listen_complete);
5718 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_RX,
5719 brcmf_p2p_notify_action_frame_rx);
5720 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_COMPLETE,
5721 brcmf_p2p_notify_action_tx_complete);
5722 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_OFF_CHAN_COMPLETE,
5723 brcmf_p2p_notify_action_tx_complete);
5726 static void brcmf_deinit_priv_mem(struct brcmf_cfg80211_info *cfg)
5730 kfree(cfg->extra_buf);
5731 cfg->extra_buf = NULL;
5732 kfree(cfg->wowl.nd);
5733 cfg->wowl.nd = NULL;
5734 kfree(cfg->wowl.nd_info);
5735 cfg->wowl.nd_info = NULL;
5736 kfree(cfg->escan_info.escan_buf);
5737 cfg->escan_info.escan_buf = NULL;
5740 static s32 brcmf_init_priv_mem(struct brcmf_cfg80211_info *cfg)
5742 cfg->conf = kzalloc(sizeof(*cfg->conf), GFP_KERNEL);
5744 goto init_priv_mem_out;
5745 cfg->extra_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
5746 if (!cfg->extra_buf)
5747 goto init_priv_mem_out;
5748 cfg->wowl.nd = kzalloc(sizeof(*cfg->wowl.nd) + sizeof(u32), GFP_KERNEL);
5750 goto init_priv_mem_out;
5751 cfg->wowl.nd_info = kzalloc(sizeof(*cfg->wowl.nd_info) +
5752 sizeof(struct cfg80211_wowlan_nd_match *),
5754 if (!cfg->wowl.nd_info)
5755 goto init_priv_mem_out;
5756 cfg->escan_info.escan_buf = kzalloc(BRCMF_ESCAN_BUF_SIZE, GFP_KERNEL);
5757 if (!cfg->escan_info.escan_buf)
5758 goto init_priv_mem_out;
5763 brcmf_deinit_priv_mem(cfg);
5768 static s32 wl_init_priv(struct brcmf_cfg80211_info *cfg)
5772 cfg->scan_request = NULL;
5773 cfg->pwr_save = true;
5774 cfg->active_scan = true; /* we do active scan per default */
5775 cfg->dongle_up = false; /* dongle is not up yet */
5776 err = brcmf_init_priv_mem(cfg);
5779 brcmf_register_event_handlers(cfg);
5780 mutex_init(&cfg->usr_sync);
5781 brcmf_init_escan(cfg);
5782 brcmf_init_conf(cfg->conf);
5783 init_completion(&cfg->vif_disabled);
5787 static void wl_deinit_priv(struct brcmf_cfg80211_info *cfg)
5789 cfg->dongle_up = false; /* dongle down */
5790 brcmf_abort_scanning(cfg);
5791 brcmf_deinit_priv_mem(cfg);
5794 static void init_vif_event(struct brcmf_cfg80211_vif_event *event)
5796 init_waitqueue_head(&event->vif_wq);
5797 spin_lock_init(&event->vif_event_lock);
5800 static s32 brcmf_dongle_roam(struct brcmf_if *ifp)
5804 __le32 roamtrigger[2];
5805 __le32 roam_delta[2];
5807 /* Configure beacon timeout value based upon roaming setting */
5808 if (ifp->drvr->settings->roamoff)
5809 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_OFF;
5811 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_ON;
5812 err = brcmf_fil_iovar_int_set(ifp, "bcn_timeout", bcn_timeout);
5814 brcmf_err("bcn_timeout error (%d)\n", err);
5815 goto roam_setup_done;
5818 /* Enable/Disable built-in roaming to allow supplicant to take care of
5821 brcmf_dbg(INFO, "Internal Roaming = %s\n",
5822 ifp->drvr->settings->roamoff ? "Off" : "On");
5823 err = brcmf_fil_iovar_int_set(ifp, "roam_off",
5824 ifp->drvr->settings->roamoff);
5826 brcmf_err("roam_off error (%d)\n", err);
5827 goto roam_setup_done;
5830 roamtrigger[0] = cpu_to_le32(WL_ROAM_TRIGGER_LEVEL);
5831 roamtrigger[1] = cpu_to_le32(BRCM_BAND_ALL);
5832 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_TRIGGER,
5833 (void *)roamtrigger, sizeof(roamtrigger));
5835 brcmf_err("WLC_SET_ROAM_TRIGGER error (%d)\n", err);
5836 goto roam_setup_done;
5839 roam_delta[0] = cpu_to_le32(WL_ROAM_DELTA);
5840 roam_delta[1] = cpu_to_le32(BRCM_BAND_ALL);
5841 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_DELTA,
5842 (void *)roam_delta, sizeof(roam_delta));
5844 brcmf_err("WLC_SET_ROAM_DELTA error (%d)\n", err);
5845 goto roam_setup_done;
5853 brcmf_dongle_scantime(struct brcmf_if *ifp)
5857 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_CHANNEL_TIME,
5858 BRCMF_SCAN_CHANNEL_TIME);
5860 brcmf_err("Scan assoc time error (%d)\n", err);
5861 goto dongle_scantime_out;
5863 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_UNASSOC_TIME,
5864 BRCMF_SCAN_UNASSOC_TIME);
5866 brcmf_err("Scan unassoc time error (%d)\n", err);
5867 goto dongle_scantime_out;
5870 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_PASSIVE_TIME,
5871 BRCMF_SCAN_PASSIVE_TIME);
5873 brcmf_err("Scan passive time error (%d)\n", err);
5874 goto dongle_scantime_out;
5877 dongle_scantime_out:
5881 static void brcmf_update_bw40_channel_flag(struct ieee80211_channel *channel,
5882 struct brcmu_chan *ch)
5886 ht40_flag = channel->flags & IEEE80211_CHAN_NO_HT40;
5887 if (ch->sb == BRCMU_CHAN_SB_U) {
5888 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5889 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5890 channel->flags |= IEEE80211_CHAN_NO_HT40PLUS;
5892 /* It should be one of
5893 * IEEE80211_CHAN_NO_HT40 or
5894 * IEEE80211_CHAN_NO_HT40PLUS
5896 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5897 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5898 channel->flags |= IEEE80211_CHAN_NO_HT40MINUS;
5902 static int brcmf_construct_chaninfo(struct brcmf_cfg80211_info *cfg,
5905 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
5906 struct ieee80211_supported_band *band;
5907 struct ieee80211_channel *channel;
5908 struct wiphy *wiphy;
5909 struct brcmf_chanspec_list *list;
5910 struct brcmu_chan ch;
5918 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
5923 list = (struct brcmf_chanspec_list *)pbuf;
5925 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
5928 brcmf_err("get chanspecs error (%d)\n", err);
5932 wiphy = cfg_to_wiphy(cfg);
5933 band = wiphy->bands[NL80211_BAND_2GHZ];
5935 for (i = 0; i < band->n_channels; i++)
5936 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
5937 band = wiphy->bands[NL80211_BAND_5GHZ];
5939 for (i = 0; i < band->n_channels; i++)
5940 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
5942 total = le32_to_cpu(list->count);
5943 for (i = 0; i < total; i++) {
5944 ch.chspec = (u16)le32_to_cpu(list->element[i]);
5945 cfg->d11inf.decchspec(&ch);
5947 if (ch.band == BRCMU_CHAN_BAND_2G) {
5948 band = wiphy->bands[NL80211_BAND_2GHZ];
5949 } else if (ch.band == BRCMU_CHAN_BAND_5G) {
5950 band = wiphy->bands[NL80211_BAND_5GHZ];
5952 brcmf_err("Invalid channel Spec. 0x%x.\n", ch.chspec);
5957 if (!(bw_cap[band->band] & WLC_BW_40MHZ_BIT) &&
5958 ch.bw == BRCMU_CHAN_BW_40)
5960 if (!(bw_cap[band->band] & WLC_BW_80MHZ_BIT) &&
5961 ch.bw == BRCMU_CHAN_BW_80)
5964 channel = band->channels;
5965 index = band->n_channels;
5966 for (j = 0; j < band->n_channels; j++) {
5967 if (channel[j].hw_value == ch.control_ch_num) {
5972 channel[index].center_freq =
5973 ieee80211_channel_to_frequency(ch.control_ch_num,
5975 channel[index].hw_value = ch.control_ch_num;
5977 /* assuming the chanspecs order is HT20,
5978 * HT40 upper, HT40 lower, and VHT80.
5980 if (ch.bw == BRCMU_CHAN_BW_80) {
5981 channel[index].flags &= ~IEEE80211_CHAN_NO_80MHZ;
5982 } else if (ch.bw == BRCMU_CHAN_BW_40) {
5983 brcmf_update_bw40_channel_flag(&channel[index], &ch);
5985 /* enable the channel and disable other bandwidths
5986 * for now as mentioned order assure they are enabled
5987 * for subsequent chanspecs.
5989 channel[index].flags = IEEE80211_CHAN_NO_HT40 |
5990 IEEE80211_CHAN_NO_80MHZ;
5991 ch.bw = BRCMU_CHAN_BW_20;
5992 cfg->d11inf.encchspec(&ch);
5993 chaninfo = ch.chspec;
5994 err = brcmf_fil_bsscfg_int_get(ifp, "per_chan_info",
5997 if (chaninfo & WL_CHAN_RADAR)
5998 channel[index].flags |=
5999 (IEEE80211_CHAN_RADAR |
6000 IEEE80211_CHAN_NO_IR);
6001 if (chaninfo & WL_CHAN_PASSIVE)
6002 channel[index].flags |=
6003 IEEE80211_CHAN_NO_IR;
6013 static int brcmf_enable_bw40_2g(struct brcmf_cfg80211_info *cfg)
6015 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6016 struct ieee80211_supported_band *band;
6017 struct brcmf_fil_bwcap_le band_bwcap;
6018 struct brcmf_chanspec_list *list;
6022 struct brcmu_chan ch;
6026 /* verify support for bw_cap command */
6028 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &val);
6031 /* only set 2G bandwidth using bw_cap command */
6032 band_bwcap.band = cpu_to_le32(WLC_BAND_2G);
6033 band_bwcap.bw_cap = cpu_to_le32(WLC_BW_CAP_40MHZ);
6034 err = brcmf_fil_iovar_data_set(ifp, "bw_cap", &band_bwcap,
6035 sizeof(band_bwcap));
6037 brcmf_dbg(INFO, "fallback to mimo_bw_cap\n");
6038 val = WLC_N_BW_40ALL;
6039 err = brcmf_fil_iovar_int_set(ifp, "mimo_bw_cap", val);
6043 /* update channel info in 2G band */
6044 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
6049 ch.band = BRCMU_CHAN_BAND_2G;
6050 ch.bw = BRCMU_CHAN_BW_40;
6051 ch.sb = BRCMU_CHAN_SB_NONE;
6053 cfg->d11inf.encchspec(&ch);
6055 /* pass encoded chanspec in query */
6056 *(__le16 *)pbuf = cpu_to_le16(ch.chspec);
6058 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
6061 brcmf_err("get chanspecs error (%d)\n", err);
6066 band = cfg_to_wiphy(cfg)->bands[NL80211_BAND_2GHZ];
6067 list = (struct brcmf_chanspec_list *)pbuf;
6068 num_chan = le32_to_cpu(list->count);
6069 for (i = 0; i < num_chan; i++) {
6070 ch.chspec = (u16)le32_to_cpu(list->element[i]);
6071 cfg->d11inf.decchspec(&ch);
6072 if (WARN_ON(ch.band != BRCMU_CHAN_BAND_2G))
6074 if (WARN_ON(ch.bw != BRCMU_CHAN_BW_40))
6076 for (j = 0; j < band->n_channels; j++) {
6077 if (band->channels[j].hw_value == ch.control_ch_num)
6080 if (WARN_ON(j == band->n_channels))
6083 brcmf_update_bw40_channel_flag(&band->channels[j], &ch);
6090 static void brcmf_get_bwcap(struct brcmf_if *ifp, u32 bw_cap[])
6092 u32 band, mimo_bwcap;
6096 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
6098 bw_cap[NL80211_BAND_2GHZ] = band;
6100 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
6102 bw_cap[NL80211_BAND_5GHZ] = band;
6108 brcmf_dbg(INFO, "fallback to mimo_bw_cap info\n");
6110 err = brcmf_fil_iovar_int_get(ifp, "mimo_bw_cap", &mimo_bwcap);
6112 /* assume 20MHz if firmware does not give a clue */
6113 mimo_bwcap = WLC_N_BW_20ALL;
6115 switch (mimo_bwcap) {
6116 case WLC_N_BW_40ALL:
6117 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_40MHZ_BIT;
6119 case WLC_N_BW_20IN2G_40IN5G:
6120 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_40MHZ_BIT;
6122 case WLC_N_BW_20ALL:
6123 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_20MHZ_BIT;
6124 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_20MHZ_BIT;
6127 brcmf_err("invalid mimo_bw_cap value\n");
6131 static void brcmf_update_ht_cap(struct ieee80211_supported_band *band,
6132 u32 bw_cap[2], u32 nchain)
6134 band->ht_cap.ht_supported = true;
6135 if (bw_cap[band->band] & WLC_BW_40MHZ_BIT) {
6136 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40;
6137 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6139 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20;
6140 band->ht_cap.cap |= IEEE80211_HT_CAP_DSSSCCK40;
6141 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K;
6142 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_16;
6143 memset(band->ht_cap.mcs.rx_mask, 0xff, nchain);
6144 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED;
6147 static __le16 brcmf_get_mcs_map(u32 nchain, enum ieee80211_vht_mcs_support supp)
6152 for (i = 0, mcs_map = 0xFFFF; i < nchain; i++)
6153 mcs_map = (mcs_map << 2) | supp;
6155 return cpu_to_le16(mcs_map);
6158 static void brcmf_update_vht_cap(struct ieee80211_supported_band *band,
6159 u32 bw_cap[2], u32 nchain, u32 txstreams,
6160 u32 txbf_bfe_cap, u32 txbf_bfr_cap)
6164 /* not allowed in 2.4G band */
6165 if (band->band == NL80211_BAND_2GHZ)
6168 band->vht_cap.vht_supported = true;
6169 /* 80MHz is mandatory */
6170 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_80;
6171 if (bw_cap[band->band] & WLC_BW_160MHZ_BIT) {
6172 band->vht_cap.cap |= IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
6173 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_160;
6175 /* all support 256-QAM */
6176 mcs_map = brcmf_get_mcs_map(nchain, IEEE80211_VHT_MCS_SUPPORT_0_9);
6177 band->vht_cap.vht_mcs.rx_mcs_map = mcs_map;
6178 band->vht_cap.vht_mcs.tx_mcs_map = mcs_map;
6180 /* Beamforming support information */
6181 if (txbf_bfe_cap & BRCMF_TXBF_SU_BFE_CAP)
6182 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE;
6183 if (txbf_bfe_cap & BRCMF_TXBF_MU_BFE_CAP)
6184 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE;
6185 if (txbf_bfr_cap & BRCMF_TXBF_SU_BFR_CAP)
6186 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE;
6187 if (txbf_bfr_cap & BRCMF_TXBF_MU_BFR_CAP)
6188 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMER_CAPABLE;
6190 if ((txbf_bfe_cap || txbf_bfr_cap) && (txstreams > 1)) {
6191 band->vht_cap.cap |=
6192 (2 << IEEE80211_VHT_CAP_BEAMFORMEE_STS_SHIFT);
6193 band->vht_cap.cap |= ((txstreams - 1) <<
6194 IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_SHIFT);
6195 band->vht_cap.cap |=
6196 IEEE80211_VHT_CAP_VHT_LINK_ADAPTATION_VHT_MRQ_MFB;
6200 static int brcmf_setup_wiphybands(struct wiphy *wiphy)
6202 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
6203 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6206 u32 bw_cap[2] = { WLC_BW_20MHZ_BIT, WLC_BW_20MHZ_BIT };
6211 struct ieee80211_supported_band *band;
6213 u32 txbf_bfe_cap = 0;
6214 u32 txbf_bfr_cap = 0;
6216 (void)brcmf_fil_iovar_int_get(ifp, "vhtmode", &vhtmode);
6217 err = brcmf_fil_iovar_int_get(ifp, "nmode", &nmode);
6219 brcmf_err("nmode error (%d)\n", err);
6221 brcmf_get_bwcap(ifp, bw_cap);
6223 brcmf_dbg(INFO, "nmode=%d, vhtmode=%d, bw_cap=(%d, %d)\n",
6224 nmode, vhtmode, bw_cap[NL80211_BAND_2GHZ],
6225 bw_cap[NL80211_BAND_5GHZ]);
6227 err = brcmf_fil_iovar_int_get(ifp, "rxchain", &rxchain);
6229 brcmf_err("rxchain error (%d)\n", err);
6232 for (nchain = 0; rxchain; nchain++)
6233 rxchain = rxchain & (rxchain - 1);
6235 brcmf_dbg(INFO, "nchain=%d\n", nchain);
6237 err = brcmf_construct_chaninfo(cfg, bw_cap);
6239 brcmf_err("brcmf_construct_chaninfo failed (%d)\n", err);
6244 (void)brcmf_fil_iovar_int_get(ifp, "txstreams", &txstreams);
6245 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfe_cap",
6247 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfr_cap",
6251 wiphy = cfg_to_wiphy(cfg);
6252 for (i = 0; i < ARRAY_SIZE(wiphy->bands); i++) {
6253 band = wiphy->bands[i];
6258 brcmf_update_ht_cap(band, bw_cap, nchain);
6260 brcmf_update_vht_cap(band, bw_cap, nchain, txstreams,
6261 txbf_bfe_cap, txbf_bfr_cap);
6267 static const struct ieee80211_txrx_stypes
6268 brcmf_txrx_stypes[NUM_NL80211_IFTYPES] = {
6269 [NL80211_IFTYPE_STATION] = {
6271 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6272 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6274 [NL80211_IFTYPE_P2P_CLIENT] = {
6276 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6277 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6279 [NL80211_IFTYPE_P2P_GO] = {
6281 .rx = BIT(IEEE80211_STYPE_ASSOC_REQ >> 4) |
6282 BIT(IEEE80211_STYPE_REASSOC_REQ >> 4) |
6283 BIT(IEEE80211_STYPE_PROBE_REQ >> 4) |
6284 BIT(IEEE80211_STYPE_DISASSOC >> 4) |
6285 BIT(IEEE80211_STYPE_AUTH >> 4) |
6286 BIT(IEEE80211_STYPE_DEAUTH >> 4) |
6287 BIT(IEEE80211_STYPE_ACTION >> 4)
6289 [NL80211_IFTYPE_P2P_DEVICE] = {
6291 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6292 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6297 * brcmf_setup_ifmodes() - determine interface modes and combinations.
6299 * @wiphy: wiphy object.
6300 * @ifp: interface object needed for feat module api.
6302 * The interface modes and combinations are determined dynamically here
6303 * based on firmware functionality.
6305 * no p2p and no mbss:
6307 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6311 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6312 * #AP <= 4, matching BI, channels = 1, 4 total
6314 * p2p, no mchan, and mbss:
6316 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 1, 3 total
6317 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6318 * #AP <= 4, matching BI, channels = 1, 4 total
6320 * p2p, mchan, and mbss:
6322 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 2, 3 total
6323 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6324 * #AP <= 4, matching BI, channels = 1, 4 total
6326 static int brcmf_setup_ifmodes(struct wiphy *wiphy, struct brcmf_if *ifp)
6328 struct ieee80211_iface_combination *combo = NULL;
6329 struct ieee80211_iface_limit *c0_limits = NULL;
6330 struct ieee80211_iface_limit *p2p_limits = NULL;
6331 struct ieee80211_iface_limit *mbss_limits = NULL;
6335 mbss = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS);
6336 p2p = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_P2P);
6338 n_combos = 1 + !!p2p + !!mbss;
6339 combo = kcalloc(n_combos, sizeof(*combo), GFP_KERNEL);
6343 wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION) |
6344 BIT(NL80211_IFTYPE_ADHOC) |
6345 BIT(NL80211_IFTYPE_AP);
6349 c0_limits = kcalloc(p2p ? 3 : 2, sizeof(*c0_limits), GFP_KERNEL);
6352 c0_limits[i].max = 1;
6353 c0_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6355 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MCHAN))
6356 combo[c].num_different_channels = 2;
6357 wiphy->interface_modes |= BIT(NL80211_IFTYPE_P2P_CLIENT) |
6358 BIT(NL80211_IFTYPE_P2P_GO) |
6359 BIT(NL80211_IFTYPE_P2P_DEVICE);
6360 c0_limits[i].max = 1;
6361 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6362 c0_limits[i].max = 1;
6363 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT) |
6364 BIT(NL80211_IFTYPE_P2P_GO);
6366 c0_limits[i].max = 1;
6367 c0_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6369 combo[c].num_different_channels = 1;
6370 combo[c].max_interfaces = i;
6371 combo[c].n_limits = i;
6372 combo[c].limits = c0_limits;
6377 p2p_limits = kcalloc(4, sizeof(*p2p_limits), GFP_KERNEL);
6380 p2p_limits[i].max = 1;
6381 p2p_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6382 p2p_limits[i].max = 1;
6383 p2p_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6384 p2p_limits[i].max = 1;
6385 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT);
6386 p2p_limits[i].max = 1;
6387 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6388 combo[c].num_different_channels = 1;
6389 combo[c].max_interfaces = i;
6390 combo[c].n_limits = i;
6391 combo[c].limits = p2p_limits;
6397 mbss_limits = kcalloc(1, sizeof(*mbss_limits), GFP_KERNEL);
6400 mbss_limits[i].max = 4;
6401 mbss_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6402 combo[c].beacon_int_infra_match = true;
6403 combo[c].num_different_channels = 1;
6404 combo[c].max_interfaces = 4;
6405 combo[c].n_limits = i;
6406 combo[c].limits = mbss_limits;
6409 wiphy->n_iface_combinations = n_combos;
6410 wiphy->iface_combinations = combo;
6421 static void brcmf_wiphy_pno_params(struct wiphy *wiphy)
6423 /* scheduled scan settings */
6424 wiphy->max_sched_scan_ssids = BRCMF_PNO_MAX_PFN_COUNT;
6425 wiphy->max_match_sets = BRCMF_PNO_MAX_PFN_COUNT;
6426 wiphy->max_sched_scan_ie_len = BRCMF_SCAN_IE_LEN_MAX;
6427 wiphy->flags |= WIPHY_FLAG_SUPPORTS_SCHED_SCAN;
6431 static struct wiphy_wowlan_support brcmf_wowlan_support = {
6432 .flags = WIPHY_WOWLAN_MAGIC_PKT | WIPHY_WOWLAN_DISCONNECT,
6433 .n_patterns = BRCMF_WOWL_MAXPATTERNS,
6434 .pattern_max_len = BRCMF_WOWL_MAXPATTERNSIZE,
6435 .pattern_min_len = 1,
6436 .max_pkt_offset = 1500,
6440 static void brcmf_wiphy_wowl_params(struct wiphy *wiphy, struct brcmf_if *ifp)
6443 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
6445 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO)) {
6446 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ND)) {
6447 brcmf_wowlan_support.flags |= WIPHY_WOWLAN_NET_DETECT;
6448 init_waitqueue_head(&cfg->wowl.nd_data_wait);
6451 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK)) {
6452 brcmf_wowlan_support.flags |= WIPHY_WOWLAN_SUPPORTS_GTK_REKEY;
6453 brcmf_wowlan_support.flags |= WIPHY_WOWLAN_GTK_REKEY_FAILURE;
6456 wiphy->wowlan = &brcmf_wowlan_support;
6460 static int brcmf_setup_wiphy(struct wiphy *wiphy, struct brcmf_if *ifp)
6462 struct brcmf_pub *drvr = ifp->drvr;
6463 const struct ieee80211_iface_combination *combo;
6464 struct ieee80211_supported_band *band;
6465 u16 max_interfaces = 0;
6470 wiphy->max_scan_ssids = WL_NUM_SCAN_MAX;
6471 wiphy->max_scan_ie_len = BRCMF_SCAN_IE_LEN_MAX;
6472 wiphy->max_num_pmkids = BRCMF_MAXPMKID;
6474 err = brcmf_setup_ifmodes(wiphy, ifp);
6478 for (i = 0, combo = wiphy->iface_combinations;
6479 i < wiphy->n_iface_combinations; i++, combo++) {
6480 max_interfaces = max(max_interfaces, combo->max_interfaces);
6483 for (i = 0; i < max_interfaces && i < ARRAY_SIZE(drvr->addresses);
6485 u8 *addr = drvr->addresses[i].addr;
6487 memcpy(addr, drvr->mac, ETH_ALEN);
6490 addr[ETH_ALEN - 1] ^= i;
6493 wiphy->addresses = drvr->addresses;
6494 wiphy->n_addresses = i;
6496 wiphy->signal_type = CFG80211_SIGNAL_TYPE_MBM;
6497 wiphy->cipher_suites = brcmf_cipher_suites;
6498 wiphy->n_cipher_suites = ARRAY_SIZE(brcmf_cipher_suites);
6499 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
6500 wiphy->n_cipher_suites--;
6501 wiphy->bss_select_support = BIT(NL80211_BSS_SELECT_ATTR_RSSI) |
6502 BIT(NL80211_BSS_SELECT_ATTR_BAND_PREF) |
6503 BIT(NL80211_BSS_SELECT_ATTR_RSSI_ADJUST);
6505 wiphy->flags |= WIPHY_FLAG_PS_ON_BY_DEFAULT |
6506 WIPHY_FLAG_OFFCHAN_TX |
6507 WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL;
6508 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS))
6509 wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS;
6510 if (!ifp->drvr->settings->roamoff)
6511 wiphy->flags |= WIPHY_FLAG_SUPPORTS_FW_ROAM;
6512 wiphy->mgmt_stypes = brcmf_txrx_stypes;
6513 wiphy->max_remain_on_channel_duration = 5000;
6514 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO))
6515 brcmf_wiphy_pno_params(wiphy);
6517 /* vendor commands/events support */
6518 wiphy->vendor_commands = brcmf_vendor_cmds;
6519 wiphy->n_vendor_commands = BRCMF_VNDR_CMDS_LAST - 1;
6521 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL))
6522 brcmf_wiphy_wowl_params(wiphy, ifp);
6523 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BANDLIST, &bandlist,
6526 brcmf_err("could not obtain band info: err=%d\n", err);
6529 /* first entry in bandlist is number of bands */
6530 n_bands = le32_to_cpu(bandlist[0]);
6531 for (i = 1; i <= n_bands && i < ARRAY_SIZE(bandlist); i++) {
6532 if (bandlist[i] == cpu_to_le32(WLC_BAND_2G)) {
6533 band = kmemdup(&__wl_band_2ghz, sizeof(__wl_band_2ghz),
6538 band->channels = kmemdup(&__wl_2ghz_channels,
6539 sizeof(__wl_2ghz_channels),
6541 if (!band->channels) {
6546 band->n_channels = ARRAY_SIZE(__wl_2ghz_channels);
6547 wiphy->bands[NL80211_BAND_2GHZ] = band;
6549 if (bandlist[i] == cpu_to_le32(WLC_BAND_5G)) {
6550 band = kmemdup(&__wl_band_5ghz, sizeof(__wl_band_5ghz),
6555 band->channels = kmemdup(&__wl_5ghz_channels,
6556 sizeof(__wl_5ghz_channels),
6558 if (!band->channels) {
6563 band->n_channels = ARRAY_SIZE(__wl_5ghz_channels);
6564 wiphy->bands[NL80211_BAND_5GHZ] = band;
6567 err = brcmf_setup_wiphybands(wiphy);
6571 static s32 brcmf_config_dongle(struct brcmf_cfg80211_info *cfg)
6573 struct net_device *ndev;
6574 struct wireless_dev *wdev;
6575 struct brcmf_if *ifp;
6582 ndev = cfg_to_ndev(cfg);
6583 wdev = ndev->ieee80211_ptr;
6584 ifp = netdev_priv(ndev);
6586 /* make sure RF is ready for work */
6587 brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 0);
6589 brcmf_dongle_scantime(ifp);
6591 power_mode = cfg->pwr_save ? PM_FAST : PM_OFF;
6592 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, power_mode);
6594 goto default_conf_out;
6595 brcmf_dbg(INFO, "power save set to %s\n",
6596 (power_mode ? "enabled" : "disabled"));
6598 err = brcmf_dongle_roam(ifp);
6600 goto default_conf_out;
6601 err = brcmf_cfg80211_change_iface(wdev->wiphy, ndev, wdev->iftype,
6604 goto default_conf_out;
6606 brcmf_configure_arp_nd_offload(ifp, true);
6608 cfg->dongle_up = true;
6615 static s32 __brcmf_cfg80211_up(struct brcmf_if *ifp)
6617 set_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6619 return brcmf_config_dongle(ifp->drvr->config);
6622 static s32 __brcmf_cfg80211_down(struct brcmf_if *ifp)
6624 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6627 * While going down, if associated with AP disassociate
6628 * from AP to save power
6630 if (check_vif_up(ifp->vif)) {
6631 brcmf_link_down(ifp->vif, WLAN_REASON_UNSPECIFIED);
6633 /* Make sure WPA_Supplicant receives all the event
6634 generated due to DISASSOC call to the fw to keep
6635 the state fw and WPA_Supplicant state consistent
6640 brcmf_abort_scanning(cfg);
6641 clear_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6646 s32 brcmf_cfg80211_up(struct net_device *ndev)
6648 struct brcmf_if *ifp = netdev_priv(ndev);
6649 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6652 mutex_lock(&cfg->usr_sync);
6653 err = __brcmf_cfg80211_up(ifp);
6654 mutex_unlock(&cfg->usr_sync);
6659 s32 brcmf_cfg80211_down(struct net_device *ndev)
6661 struct brcmf_if *ifp = netdev_priv(ndev);
6662 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6665 mutex_lock(&cfg->usr_sync);
6666 err = __brcmf_cfg80211_down(ifp);
6667 mutex_unlock(&cfg->usr_sync);
6672 enum nl80211_iftype brcmf_cfg80211_get_iftype(struct brcmf_if *ifp)
6674 struct wireless_dev *wdev = &ifp->vif->wdev;
6676 return wdev->iftype;
6679 bool brcmf_get_vif_state_any(struct brcmf_cfg80211_info *cfg,
6680 unsigned long state)
6682 struct brcmf_cfg80211_vif *vif;
6684 list_for_each_entry(vif, &cfg->vif_list, list) {
6685 if (test_bit(state, &vif->sme_state))
6691 static inline bool vif_event_equals(struct brcmf_cfg80211_vif_event *event,
6696 spin_lock(&event->vif_event_lock);
6697 evt_action = event->action;
6698 spin_unlock(&event->vif_event_lock);
6699 return evt_action == action;
6702 void brcmf_cfg80211_arm_vif_event(struct brcmf_cfg80211_info *cfg,
6703 struct brcmf_cfg80211_vif *vif)
6705 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6707 spin_lock(&event->vif_event_lock);
6710 spin_unlock(&event->vif_event_lock);
6713 bool brcmf_cfg80211_vif_event_armed(struct brcmf_cfg80211_info *cfg)
6715 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6718 spin_lock(&event->vif_event_lock);
6719 armed = event->vif != NULL;
6720 spin_unlock(&event->vif_event_lock);
6725 int brcmf_cfg80211_wait_vif_event(struct brcmf_cfg80211_info *cfg,
6726 u8 action, ulong timeout)
6728 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6730 return wait_event_timeout(event->vif_wq,
6731 vif_event_equals(event, action), timeout);
6734 static s32 brcmf_translate_country_code(struct brcmf_pub *drvr, char alpha2[2],
6735 struct brcmf_fil_country_le *ccreq)
6737 struct brcmfmac_pd_cc *country_codes;
6738 struct brcmfmac_pd_cc_entry *cc;
6742 country_codes = drvr->settings->country_codes;
6743 if (!country_codes) {
6744 brcmf_dbg(TRACE, "No country codes configured for device\n");
6748 if ((alpha2[0] == ccreq->country_abbrev[0]) &&
6749 (alpha2[1] == ccreq->country_abbrev[1])) {
6750 brcmf_dbg(TRACE, "Country code already set\n");
6755 for (i = 0; i < country_codes->table_size; i++) {
6756 cc = &country_codes->table[i];
6757 if ((cc->iso3166[0] == '\0') && (found_index == -1))
6759 if ((cc->iso3166[0] == alpha2[0]) &&
6760 (cc->iso3166[1] == alpha2[1])) {
6765 if (found_index == -1) {
6766 brcmf_dbg(TRACE, "No country code match found\n");
6769 memset(ccreq, 0, sizeof(*ccreq));
6770 ccreq->rev = cpu_to_le32(country_codes->table[found_index].rev);
6771 memcpy(ccreq->ccode, country_codes->table[found_index].cc,
6772 BRCMF_COUNTRY_BUF_SZ);
6773 ccreq->country_abbrev[0] = alpha2[0];
6774 ccreq->country_abbrev[1] = alpha2[1];
6775 ccreq->country_abbrev[2] = 0;
6780 static void brcmf_cfg80211_reg_notifier(struct wiphy *wiphy,
6781 struct regulatory_request *req)
6783 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
6784 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6785 struct brcmf_fil_country_le ccreq;
6789 /* ignore non-ISO3166 country codes */
6790 for (i = 0; i < sizeof(req->alpha2); i++)
6791 if (req->alpha2[i] < 'A' || req->alpha2[i] > 'Z') {
6792 brcmf_err("not a ISO3166 code (0x%02x 0x%02x)\n",
6793 req->alpha2[0], req->alpha2[1]);
6797 brcmf_dbg(TRACE, "Enter: initiator=%d, alpha=%c%c\n", req->initiator,
6798 req->alpha2[0], req->alpha2[1]);
6800 err = brcmf_fil_iovar_data_get(ifp, "country", &ccreq, sizeof(ccreq));
6802 brcmf_err("Country code iovar returned err = %d\n", err);
6806 err = brcmf_translate_country_code(ifp->drvr, req->alpha2, &ccreq);
6810 err = brcmf_fil_iovar_data_set(ifp, "country", &ccreq, sizeof(ccreq));
6812 brcmf_err("Firmware rejected country setting\n");
6815 brcmf_setup_wiphybands(wiphy);
6818 static void brcmf_free_wiphy(struct wiphy *wiphy)
6825 if (wiphy->iface_combinations) {
6826 for (i = 0; i < wiphy->n_iface_combinations; i++)
6827 kfree(wiphy->iface_combinations[i].limits);
6829 kfree(wiphy->iface_combinations);
6830 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6831 kfree(wiphy->bands[NL80211_BAND_2GHZ]->channels);
6832 kfree(wiphy->bands[NL80211_BAND_2GHZ]);
6834 if (wiphy->bands[NL80211_BAND_5GHZ]) {
6835 kfree(wiphy->bands[NL80211_BAND_5GHZ]->channels);
6836 kfree(wiphy->bands[NL80211_BAND_5GHZ]);
6841 struct brcmf_cfg80211_info *brcmf_cfg80211_attach(struct brcmf_pub *drvr,
6842 struct device *busdev,
6845 struct net_device *ndev = brcmf_get_ifp(drvr, 0)->ndev;
6846 struct brcmf_cfg80211_info *cfg;
6847 struct wiphy *wiphy;
6848 struct cfg80211_ops *ops;
6849 struct brcmf_cfg80211_vif *vif;
6850 struct brcmf_if *ifp;
6856 brcmf_err("ndev is invalid\n");
6860 ops = kmemdup(&brcmf_cfg80211_ops, sizeof(*ops), GFP_KERNEL);
6864 ifp = netdev_priv(ndev);
6866 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK))
6867 ops->set_rekey_data = brcmf_cfg80211_set_rekey_data;
6869 wiphy = wiphy_new(ops, sizeof(struct brcmf_cfg80211_info));
6871 brcmf_err("Could not allocate wiphy device\n");
6874 memcpy(wiphy->perm_addr, drvr->mac, ETH_ALEN);
6875 set_wiphy_dev(wiphy, busdev);
6877 cfg = wiphy_priv(wiphy);
6881 init_vif_event(&cfg->vif_event);
6882 INIT_LIST_HEAD(&cfg->vif_list);
6884 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_STATION);
6889 vif->wdev.netdev = ndev;
6890 ndev->ieee80211_ptr = &vif->wdev;
6891 SET_NETDEV_DEV(ndev, wiphy_dev(cfg->wiphy));
6893 err = wl_init_priv(cfg);
6895 brcmf_err("Failed to init iwm_priv (%d)\n", err);
6896 brcmf_free_vif(vif);
6901 /* determine d11 io type before wiphy setup */
6902 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_VERSION, &io_type);
6904 brcmf_err("Failed to get D11 version (%d)\n", err);
6907 cfg->d11inf.io_type = (u8)io_type;
6908 brcmu_d11_attach(&cfg->d11inf);
6910 err = brcmf_setup_wiphy(wiphy, ifp);
6914 brcmf_dbg(INFO, "Registering custom regulatory\n");
6915 wiphy->reg_notifier = brcmf_cfg80211_reg_notifier;
6916 wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG;
6917 wiphy_apply_custom_regulatory(wiphy, &brcmf_regdom);
6919 /* firmware defaults to 40MHz disabled in 2G band. We signal
6920 * cfg80211 here that we do and have it decide we can enable
6921 * it. But first check if device does support 2G operation.
6923 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6924 cap = &wiphy->bands[NL80211_BAND_2GHZ]->ht_cap.cap;
6925 *cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6927 err = wiphy_register(wiphy);
6929 brcmf_err("Could not register wiphy device (%d)\n", err);
6933 /* If cfg80211 didn't disable 40MHz HT CAP in wiphy_register(),
6934 * setup 40MHz in 2GHz band and enable OBSS scanning.
6936 if (cap && (*cap & IEEE80211_HT_CAP_SUP_WIDTH_20_40)) {
6937 err = brcmf_enable_bw40_2g(cfg);
6939 err = brcmf_fil_iovar_int_set(ifp, "obss_coex",
6940 BRCMF_OBSS_COEX_AUTO);
6942 *cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6944 /* p2p might require that "if-events" get processed by fweh. So
6945 * activate the already registered event handlers now and activate
6946 * the rest when initialization has completed. drvr->config needs to
6947 * be assigned before activating events.
6950 err = brcmf_fweh_activate_events(ifp);
6952 brcmf_err("FWEH activation failed (%d)\n", err);
6953 goto wiphy_unreg_out;
6956 err = brcmf_p2p_attach(cfg, p2pdev_forced);
6958 brcmf_err("P2P initilisation failed (%d)\n", err);
6959 goto wiphy_unreg_out;
6961 err = brcmf_btcoex_attach(cfg);
6963 brcmf_err("BT-coex initialisation failed (%d)\n", err);
6964 brcmf_p2p_detach(&cfg->p2p);
6965 goto wiphy_unreg_out;
6968 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS)) {
6969 err = brcmf_fil_iovar_int_set(ifp, "tdls_enable", 1);
6971 brcmf_dbg(INFO, "TDLS not enabled (%d)\n", err);
6972 wiphy->flags &= ~WIPHY_FLAG_SUPPORTS_TDLS;
6974 brcmf_fweh_register(cfg->pub, BRCMF_E_TDLS_PEER_EVENT,
6975 brcmf_notify_tdls_peer_event);
6979 /* (re-) activate FWEH event handling */
6980 err = brcmf_fweh_activate_events(ifp);
6982 brcmf_err("FWEH activation failed (%d)\n", err);
6983 goto wiphy_unreg_out;
6986 /* Fill in some of the advertised nl80211 supported features */
6987 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_SCAN_RANDOM_MAC)) {
6988 wiphy->features |= NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR;
6990 if (wiphy->wowlan &&
6991 wiphy->wowlan->flags & WIPHY_WOWLAN_NET_DETECT)
6992 wiphy->features |= NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
6999 wiphy_unregister(cfg->wiphy);
7001 wl_deinit_priv(cfg);
7002 brcmf_free_vif(vif);
7005 brcmf_free_wiphy(wiphy);
7010 void brcmf_cfg80211_detach(struct brcmf_cfg80211_info *cfg)
7015 brcmf_btcoex_detach(cfg);
7016 wiphy_unregister(cfg->wiphy);
7018 wl_deinit_priv(cfg);
7019 brcmf_free_wiphy(cfg->wiphy);
projects / linux.git / blob