2 * Copyright (c) 2010 Broadcom Corporation
4 * Permission to use, copy, modify, and/or distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
11 * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
13 * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
14 * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 /* Toplevel file. Relies on dhd_linux.c to send commands to the dongle. */
19 #include <linux/kernel.h>
20 #include <linux/etherdevice.h>
21 #include <linux/module.h>
22 #include <linux/vmalloc.h>
23 #include <net/cfg80211.h>
24 #include <net/netlink.h>
26 #include <brcmu_utils.h>
28 #include <brcmu_wifi.h>
31 #include "tracepoint.h"
32 #include "fwil_types.h"
43 #define BRCMF_SCAN_IE_LEN_MAX 2048
44 #define BRCMF_PNO_VERSION 2
45 #define BRCMF_PNO_TIME 30
46 #define BRCMF_PNO_REPEAT 4
47 #define BRCMF_PNO_FREQ_EXPO_MAX 3
48 #define BRCMF_PNO_MAX_PFN_COUNT 16
49 #define BRCMF_PNO_ENABLE_ADAPTSCAN_BIT 6
50 #define BRCMF_PNO_HIDDEN_BIT 2
51 #define BRCMF_PNO_WPA_AUTH_ANY 0xFFFFFFFF
52 #define BRCMF_PNO_SCAN_COMPLETE 1
53 #define BRCMF_PNO_SCAN_INCOMPLETE 0
55 #define WPA_OUI "\x00\x50\xF2" /* WPA OUI */
56 #define WPA_OUI_TYPE 1
57 #define RSN_OUI "\x00\x0F\xAC" /* RSN OUI */
58 #define WME_OUI_TYPE 2
59 #define WPS_OUI_TYPE 4
61 #define VS_IE_FIXED_HDR_LEN 6
62 #define WPA_IE_VERSION_LEN 2
63 #define WPA_IE_MIN_OUI_LEN 4
64 #define WPA_IE_SUITE_COUNT_LEN 2
66 #define WPA_CIPHER_NONE 0 /* None */
67 #define WPA_CIPHER_WEP_40 1 /* WEP (40-bit) */
68 #define WPA_CIPHER_TKIP 2 /* TKIP: default for WPA */
69 #define WPA_CIPHER_AES_CCM 4 /* AES (CCM) */
70 #define WPA_CIPHER_WEP_104 5 /* WEP (104-bit) */
72 #define RSN_AKM_NONE 0 /* None (IBSS) */
73 #define RSN_AKM_UNSPECIFIED 1 /* Over 802.1x */
74 #define RSN_AKM_PSK 2 /* Pre-shared Key */
75 #define RSN_AKM_SHA256_1X 5 /* SHA256, 802.1X */
76 #define RSN_AKM_SHA256_PSK 6 /* SHA256, Pre-shared Key */
77 #define RSN_CAP_LEN 2 /* Length of RSN capabilities */
78 #define RSN_CAP_PTK_REPLAY_CNTR_MASK (BIT(2) | BIT(3))
79 #define RSN_CAP_MFPR_MASK BIT(6)
80 #define RSN_CAP_MFPC_MASK BIT(7)
81 #define RSN_PMKID_COUNT_LEN 2
83 #define VNDR_IE_CMD_LEN 4 /* length of the set command
84 * string :"add", "del" (+ NUL)
86 #define VNDR_IE_COUNT_OFFSET 4
87 #define VNDR_IE_PKTFLAG_OFFSET 8
88 #define VNDR_IE_VSIE_OFFSET 12
89 #define VNDR_IE_HDR_SIZE 12
90 #define VNDR_IE_PARSE_LIMIT 5
92 #define DOT11_MGMT_HDR_LEN 24 /* d11 management header len */
93 #define DOT11_BCN_PRB_FIXED_LEN 12 /* beacon/probe fixed length */
95 #define BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS 320
96 #define BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS 400
97 #define BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS 20
99 #define BRCMF_SCAN_CHANNEL_TIME 40
100 #define BRCMF_SCAN_UNASSOC_TIME 40
101 #define BRCMF_SCAN_PASSIVE_TIME 120
103 #define BRCMF_ND_INFO_TIMEOUT msecs_to_jiffies(2000)
105 #define BRCMF_ASSOC_PARAMS_FIXED_SIZE \
106 (sizeof(struct brcmf_assoc_params_le) - sizeof(u16))
108 static bool check_vif_up(struct brcmf_cfg80211_vif *vif)
110 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state)) {
111 brcmf_dbg(INFO, "device is not ready : status (%lu)\n",
118 #define RATE_TO_BASE100KBPS(rate) (((rate) * 10) / 2)
119 #define RATETAB_ENT(_rateid, _flags) \
121 .bitrate = RATE_TO_BASE100KBPS(_rateid), \
122 .hw_value = (_rateid), \
126 static struct ieee80211_rate __wl_rates[] = {
127 RATETAB_ENT(BRCM_RATE_1M, 0),
128 RATETAB_ENT(BRCM_RATE_2M, IEEE80211_RATE_SHORT_PREAMBLE),
129 RATETAB_ENT(BRCM_RATE_5M5, IEEE80211_RATE_SHORT_PREAMBLE),
130 RATETAB_ENT(BRCM_RATE_11M, IEEE80211_RATE_SHORT_PREAMBLE),
131 RATETAB_ENT(BRCM_RATE_6M, 0),
132 RATETAB_ENT(BRCM_RATE_9M, 0),
133 RATETAB_ENT(BRCM_RATE_12M, 0),
134 RATETAB_ENT(BRCM_RATE_18M, 0),
135 RATETAB_ENT(BRCM_RATE_24M, 0),
136 RATETAB_ENT(BRCM_RATE_36M, 0),
137 RATETAB_ENT(BRCM_RATE_48M, 0),
138 RATETAB_ENT(BRCM_RATE_54M, 0),
141 #define wl_g_rates (__wl_rates + 0)
142 #define wl_g_rates_size ARRAY_SIZE(__wl_rates)
143 #define wl_a_rates (__wl_rates + 4)
144 #define wl_a_rates_size (wl_g_rates_size - 4)
146 #define CHAN2G(_channel, _freq) { \
147 .band = NL80211_BAND_2GHZ, \
148 .center_freq = (_freq), \
149 .hw_value = (_channel), \
150 .flags = IEEE80211_CHAN_DISABLED, \
151 .max_antenna_gain = 0, \
155 #define CHAN5G(_channel) { \
156 .band = NL80211_BAND_5GHZ, \
157 .center_freq = 5000 + (5 * (_channel)), \
158 .hw_value = (_channel), \
159 .flags = IEEE80211_CHAN_DISABLED, \
160 .max_antenna_gain = 0, \
164 static struct ieee80211_channel __wl_2ghz_channels[] = {
165 CHAN2G(1, 2412), CHAN2G(2, 2417), CHAN2G(3, 2422), CHAN2G(4, 2427),
166 CHAN2G(5, 2432), CHAN2G(6, 2437), CHAN2G(7, 2442), CHAN2G(8, 2447),
167 CHAN2G(9, 2452), CHAN2G(10, 2457), CHAN2G(11, 2462), CHAN2G(12, 2467),
168 CHAN2G(13, 2472), CHAN2G(14, 2484)
171 static struct ieee80211_channel __wl_5ghz_channels[] = {
172 CHAN5G(34), CHAN5G(36), CHAN5G(38), CHAN5G(40), CHAN5G(42),
173 CHAN5G(44), CHAN5G(46), CHAN5G(48), CHAN5G(52), CHAN5G(56),
174 CHAN5G(60), CHAN5G(64), CHAN5G(100), CHAN5G(104), CHAN5G(108),
175 CHAN5G(112), CHAN5G(116), CHAN5G(120), CHAN5G(124), CHAN5G(128),
176 CHAN5G(132), CHAN5G(136), CHAN5G(140), CHAN5G(144), CHAN5G(149),
177 CHAN5G(153), CHAN5G(157), CHAN5G(161), CHAN5G(165)
180 /* Band templates duplicated per wiphy. The channel info
181 * above is added to the band during setup.
183 static const struct ieee80211_supported_band __wl_band_2ghz = {
184 .band = NL80211_BAND_2GHZ,
185 .bitrates = wl_g_rates,
186 .n_bitrates = wl_g_rates_size,
189 static const struct ieee80211_supported_band __wl_band_5ghz = {
190 .band = NL80211_BAND_5GHZ,
191 .bitrates = wl_a_rates,
192 .n_bitrates = wl_a_rates_size,
195 /* This is to override regulatory domains defined in cfg80211 module (reg.c)
196 * By default world regulatory domain defined in reg.c puts the flags
197 * NL80211_RRF_NO_IR for 5GHz channels (for * 36..48 and 149..165).
198 * With respect to these flags, wpa_supplicant doesn't * start p2p
199 * operations on 5GHz channels. All the changes in world regulatory
200 * domain are to be done here.
202 static const struct ieee80211_regdomain brcmf_regdom = {
206 /* IEEE 802.11b/g, channels 1..11 */
207 REG_RULE(2412-10, 2472+10, 40, 6, 20, 0),
209 /* IEEE 802.11 channel 14 - Only JP enables
210 * this and for 802.11b only
212 REG_RULE(2484-10, 2484+10, 20, 6, 20, 0),
213 /* IEEE 802.11a, channel 36..64 */
214 REG_RULE(5150-10, 5350+10, 80, 6, 20, 0),
215 /* IEEE 802.11a, channel 100..165 */
216 REG_RULE(5470-10, 5850+10, 80, 6, 20, 0), }
219 /* Note: brcmf_cipher_suites is an array of int defining which cipher suites
220 * are supported. A pointer to this array and the number of entries is passed
221 * on to upper layers. AES_CMAC defines whether or not the driver supports MFP.
222 * So the cipher suite AES_CMAC has to be the last one in the array, and when
223 * device does not support MFP then the number of suites will be decreased by 1
225 static const u32 brcmf_cipher_suites[] = {
226 WLAN_CIPHER_SUITE_WEP40,
227 WLAN_CIPHER_SUITE_WEP104,
228 WLAN_CIPHER_SUITE_TKIP,
229 WLAN_CIPHER_SUITE_CCMP,
230 /* Keep as last entry: */
231 WLAN_CIPHER_SUITE_AES_CMAC
234 /* Vendor specific ie. id = 221, oui and type defines exact ie */
235 struct brcmf_vs_tlv {
242 struct parsed_vndr_ie_info {
244 u32 ie_len; /* total length including id & length field */
245 struct brcmf_vs_tlv vndrie;
248 struct parsed_vndr_ies {
250 struct parsed_vndr_ie_info ie_info[VNDR_IE_PARSE_LIMIT];
253 static u8 nl80211_band_to_fwil(enum nl80211_band band)
256 case NL80211_BAND_2GHZ:
258 case NL80211_BAND_5GHZ:
267 static u16 chandef_to_chanspec(struct brcmu_d11inf *d11inf,
268 struct cfg80211_chan_def *ch)
270 struct brcmu_chan ch_inf;
273 brcmf_dbg(TRACE, "chandef: control %d center %d width %d\n",
274 ch->chan->center_freq, ch->center_freq1, ch->width);
275 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq1);
276 primary_offset = ch->chan->center_freq - ch->center_freq1;
278 case NL80211_CHAN_WIDTH_20:
279 case NL80211_CHAN_WIDTH_20_NOHT:
280 ch_inf.bw = BRCMU_CHAN_BW_20;
281 WARN_ON(primary_offset != 0);
283 case NL80211_CHAN_WIDTH_40:
284 ch_inf.bw = BRCMU_CHAN_BW_40;
285 if (primary_offset > 0)
286 ch_inf.sb = BRCMU_CHAN_SB_U;
288 ch_inf.sb = BRCMU_CHAN_SB_L;
290 case NL80211_CHAN_WIDTH_80:
291 ch_inf.bw = BRCMU_CHAN_BW_80;
292 if (primary_offset == -30)
293 ch_inf.sb = BRCMU_CHAN_SB_LL;
294 else if (primary_offset == -10)
295 ch_inf.sb = BRCMU_CHAN_SB_LU;
296 else if (primary_offset == 10)
297 ch_inf.sb = BRCMU_CHAN_SB_UL;
299 ch_inf.sb = BRCMU_CHAN_SB_UU;
301 case NL80211_CHAN_WIDTH_80P80:
302 case NL80211_CHAN_WIDTH_160:
303 case NL80211_CHAN_WIDTH_5:
304 case NL80211_CHAN_WIDTH_10:
308 switch (ch->chan->band) {
309 case NL80211_BAND_2GHZ:
310 ch_inf.band = BRCMU_CHAN_BAND_2G;
312 case NL80211_BAND_5GHZ:
313 ch_inf.band = BRCMU_CHAN_BAND_5G;
315 case NL80211_BAND_60GHZ:
319 d11inf->encchspec(&ch_inf);
321 return ch_inf.chspec;
324 u16 channel_to_chanspec(struct brcmu_d11inf *d11inf,
325 struct ieee80211_channel *ch)
327 struct brcmu_chan ch_inf;
329 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq);
330 ch_inf.bw = BRCMU_CHAN_BW_20;
331 d11inf->encchspec(&ch_inf);
333 return ch_inf.chspec;
336 /* Traverse a string of 1-byte tag/1-byte length/variable-length value
337 * triples, returning a pointer to the substring whose first element
340 const struct brcmf_tlv *
341 brcmf_parse_tlvs(const void *buf, int buflen, uint key)
343 const struct brcmf_tlv *elt = buf;
346 /* find tagged parameter */
347 while (totlen >= TLV_HDR_LEN) {
350 /* validate remaining totlen */
351 if ((elt->id == key) && (totlen >= (len + TLV_HDR_LEN)))
354 elt = (struct brcmf_tlv *)((u8 *)elt + (len + TLV_HDR_LEN));
355 totlen -= (len + TLV_HDR_LEN);
361 /* Is any of the tlvs the expected entry? If
362 * not update the tlvs buffer pointer/length.
365 brcmf_tlv_has_ie(const u8 *ie, const u8 **tlvs, u32 *tlvs_len,
366 const u8 *oui, u32 oui_len, u8 type)
368 /* If the contents match the OUI and the type */
369 if (ie[TLV_LEN_OFF] >= oui_len + 1 &&
370 !memcmp(&ie[TLV_BODY_OFF], oui, oui_len) &&
371 type == ie[TLV_BODY_OFF + oui_len]) {
377 /* point to the next ie */
378 ie += ie[TLV_LEN_OFF] + TLV_HDR_LEN;
379 /* calculate the length of the rest of the buffer */
380 *tlvs_len -= (int)(ie - *tlvs);
381 /* update the pointer to the start of the buffer */
387 static struct brcmf_vs_tlv *
388 brcmf_find_wpaie(const u8 *parse, u32 len)
390 const struct brcmf_tlv *ie;
392 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
393 if (brcmf_tlv_has_ie((const u8 *)ie, &parse, &len,
394 WPA_OUI, TLV_OUI_LEN, WPA_OUI_TYPE))
395 return (struct brcmf_vs_tlv *)ie;
400 static struct brcmf_vs_tlv *
401 brcmf_find_wpsie(const u8 *parse, u32 len)
403 const struct brcmf_tlv *ie;
405 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
406 if (brcmf_tlv_has_ie((u8 *)ie, &parse, &len,
407 WPA_OUI, TLV_OUI_LEN, WPS_OUI_TYPE))
408 return (struct brcmf_vs_tlv *)ie;
413 static int brcmf_vif_change_validate(struct brcmf_cfg80211_info *cfg,
414 struct brcmf_cfg80211_vif *vif,
415 enum nl80211_iftype new_type)
417 int iftype_num[NUM_NL80211_IFTYPES];
418 struct brcmf_cfg80211_vif *pos;
419 bool check_combos = false;
422 memset(&iftype_num[0], 0, sizeof(iftype_num));
423 list_for_each_entry(pos, &cfg->vif_list, list)
425 iftype_num[new_type]++;
427 /* concurrent interfaces so need check combinations */
429 iftype_num[pos->wdev.iftype]++;
433 ret = cfg80211_check_combinations(cfg->wiphy, 1, 0, iftype_num);
438 static int brcmf_vif_add_validate(struct brcmf_cfg80211_info *cfg,
439 enum nl80211_iftype new_type)
441 int iftype_num[NUM_NL80211_IFTYPES];
442 struct brcmf_cfg80211_vif *pos;
444 memset(&iftype_num[0], 0, sizeof(iftype_num));
445 list_for_each_entry(pos, &cfg->vif_list, list)
446 iftype_num[pos->wdev.iftype]++;
448 iftype_num[new_type]++;
449 return cfg80211_check_combinations(cfg->wiphy, 1, 0, iftype_num);
452 static void convert_key_from_CPU(struct brcmf_wsec_key *key,
453 struct brcmf_wsec_key_le *key_le)
455 key_le->index = cpu_to_le32(key->index);
456 key_le->len = cpu_to_le32(key->len);
457 key_le->algo = cpu_to_le32(key->algo);
458 key_le->flags = cpu_to_le32(key->flags);
459 key_le->rxiv.hi = cpu_to_le32(key->rxiv.hi);
460 key_le->rxiv.lo = cpu_to_le16(key->rxiv.lo);
461 key_le->iv_initialized = cpu_to_le32(key->iv_initialized);
462 memcpy(key_le->data, key->data, sizeof(key->data));
463 memcpy(key_le->ea, key->ea, sizeof(key->ea));
467 send_key_to_dongle(struct brcmf_if *ifp, struct brcmf_wsec_key *key)
470 struct brcmf_wsec_key_le key_le;
472 convert_key_from_CPU(key, &key_le);
474 brcmf_netdev_wait_pend8021x(ifp);
476 err = brcmf_fil_bsscfg_data_set(ifp, "wsec_key", &key_le,
480 brcmf_err("wsec_key error (%d)\n", err);
485 brcmf_configure_arp_nd_offload(struct brcmf_if *ifp, bool enable)
491 mode = BRCMF_ARP_OL_AGENT | BRCMF_ARP_OL_PEER_AUTO_REPLY;
495 /* Try to set and enable ARP offload feature, this may fail, then it */
496 /* is simply not supported and err 0 will be returned */
497 err = brcmf_fil_iovar_int_set(ifp, "arp_ol", mode);
499 brcmf_dbg(TRACE, "failed to set ARP offload mode to 0x%x, err = %d\n",
503 err = brcmf_fil_iovar_int_set(ifp, "arpoe", enable);
505 brcmf_dbg(TRACE, "failed to configure (%d) ARP offload err = %d\n",
509 brcmf_dbg(TRACE, "successfully configured (%d) ARP offload to 0x%x\n",
513 err = brcmf_fil_iovar_int_set(ifp, "ndoe", enable);
515 brcmf_dbg(TRACE, "failed to configure (%d) ND offload err = %d\n",
519 brcmf_dbg(TRACE, "successfully configured (%d) ND offload to 0x%x\n",
526 brcmf_cfg80211_update_proto_addr_mode(struct wireless_dev *wdev)
528 struct brcmf_cfg80211_vif *vif;
529 struct brcmf_if *ifp;
531 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
534 if ((wdev->iftype == NL80211_IFTYPE_ADHOC) ||
535 (wdev->iftype == NL80211_IFTYPE_AP) ||
536 (wdev->iftype == NL80211_IFTYPE_P2P_GO))
537 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
540 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
544 static int brcmf_get_first_free_bsscfgidx(struct brcmf_pub *drvr)
548 for (bsscfgidx = 0; bsscfgidx < BRCMF_MAX_IFS; bsscfgidx++) {
549 /* bsscfgidx 1 is reserved for legacy P2P */
552 if (!drvr->iflist[bsscfgidx])
559 static int brcmf_cfg80211_request_ap_if(struct brcmf_if *ifp)
561 struct brcmf_mbss_ssid_le mbss_ssid_le;
565 memset(&mbss_ssid_le, 0, sizeof(mbss_ssid_le));
566 bsscfgidx = brcmf_get_first_free_bsscfgidx(ifp->drvr);
570 mbss_ssid_le.bsscfgidx = cpu_to_le32(bsscfgidx);
571 mbss_ssid_le.SSID_len = cpu_to_le32(5);
572 sprintf(mbss_ssid_le.SSID, "ssid%d" , bsscfgidx);
574 err = brcmf_fil_bsscfg_data_set(ifp, "bsscfg:ssid", &mbss_ssid_le,
575 sizeof(mbss_ssid_le));
577 brcmf_err("setting ssid failed %d\n", err);
583 * brcmf_ap_add_vif() - create a new AP virtual interface for multiple BSS
585 * @wiphy: wiphy device of new interface.
586 * @name: name of the new interface.
588 * @params: contains mac address for AP device.
591 struct wireless_dev *brcmf_ap_add_vif(struct wiphy *wiphy, const char *name,
592 u32 *flags, struct vif_params *params)
594 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
595 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
596 struct brcmf_cfg80211_vif *vif;
599 if (brcmf_cfg80211_vif_event_armed(cfg))
600 return ERR_PTR(-EBUSY);
602 brcmf_dbg(INFO, "Adding vif \"%s\"\n", name);
604 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_AP, false);
606 return (struct wireless_dev *)vif;
608 brcmf_cfg80211_arm_vif_event(cfg, vif);
610 err = brcmf_cfg80211_request_ap_if(ifp);
612 brcmf_cfg80211_arm_vif_event(cfg, NULL);
616 /* wait for firmware event */
617 err = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_ADD,
618 BRCMF_VIF_EVENT_TIMEOUT);
619 brcmf_cfg80211_arm_vif_event(cfg, NULL);
621 brcmf_err("timeout occurred\n");
626 /* interface created in firmware */
629 brcmf_err("no if pointer provided\n");
634 strncpy(ifp->ndev->name, name, sizeof(ifp->ndev->name) - 1);
635 err = brcmf_net_attach(ifp, true);
637 brcmf_err("Registering netdevice failed\n");
641 return &ifp->vif->wdev;
648 static bool brcmf_is_apmode(struct brcmf_cfg80211_vif *vif)
650 enum nl80211_iftype iftype;
652 iftype = vif->wdev.iftype;
653 return iftype == NL80211_IFTYPE_AP || iftype == NL80211_IFTYPE_P2P_GO;
656 static bool brcmf_is_ibssmode(struct brcmf_cfg80211_vif *vif)
658 return vif->wdev.iftype == NL80211_IFTYPE_ADHOC;
661 static struct wireless_dev *brcmf_cfg80211_add_iface(struct wiphy *wiphy,
663 unsigned char name_assign_type,
664 enum nl80211_iftype type,
666 struct vif_params *params)
668 struct wireless_dev *wdev;
671 brcmf_dbg(TRACE, "enter: %s type %d\n", name, type);
672 err = brcmf_vif_add_validate(wiphy_to_cfg(wiphy), type);
674 brcmf_err("iface validation failed: err=%d\n", err);
678 case NL80211_IFTYPE_ADHOC:
679 case NL80211_IFTYPE_STATION:
680 case NL80211_IFTYPE_AP_VLAN:
681 case NL80211_IFTYPE_WDS:
682 case NL80211_IFTYPE_MONITOR:
683 case NL80211_IFTYPE_MESH_POINT:
684 return ERR_PTR(-EOPNOTSUPP);
685 case NL80211_IFTYPE_AP:
686 wdev = brcmf_ap_add_vif(wiphy, name, flags, params);
688 brcmf_cfg80211_update_proto_addr_mode(wdev);
690 case NL80211_IFTYPE_P2P_CLIENT:
691 case NL80211_IFTYPE_P2P_GO:
692 case NL80211_IFTYPE_P2P_DEVICE:
693 wdev = brcmf_p2p_add_vif(wiphy, name, name_assign_type, type, flags, params);
695 brcmf_cfg80211_update_proto_addr_mode(wdev);
697 case NL80211_IFTYPE_UNSPECIFIED:
699 return ERR_PTR(-EINVAL);
703 static void brcmf_scan_config_mpc(struct brcmf_if *ifp, int mpc)
705 if (brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_NEED_MPC))
706 brcmf_set_mpc(ifp, mpc);
709 void brcmf_set_mpc(struct brcmf_if *ifp, int mpc)
713 if (check_vif_up(ifp->vif)) {
714 err = brcmf_fil_iovar_int_set(ifp, "mpc", mpc);
716 brcmf_err("fail to set mpc\n");
719 brcmf_dbg(INFO, "MPC : %d\n", mpc);
723 s32 brcmf_notify_escan_complete(struct brcmf_cfg80211_info *cfg,
724 struct brcmf_if *ifp, bool aborted,
727 struct brcmf_scan_params_le params_le;
728 struct cfg80211_scan_request *scan_request;
731 brcmf_dbg(SCAN, "Enter\n");
733 /* clear scan request, because the FW abort can cause a second call */
734 /* to this functon and might cause a double cfg80211_scan_done */
735 scan_request = cfg->scan_request;
736 cfg->scan_request = NULL;
738 if (timer_pending(&cfg->escan_timeout))
739 del_timer_sync(&cfg->escan_timeout);
742 /* Do a scan abort to stop the driver's scan engine */
743 brcmf_dbg(SCAN, "ABORT scan in firmware\n");
744 memset(¶ms_le, 0, sizeof(params_le));
745 eth_broadcast_addr(params_le.bssid);
746 params_le.bss_type = DOT11_BSSTYPE_ANY;
747 params_le.scan_type = 0;
748 params_le.channel_num = cpu_to_le32(1);
749 params_le.nprobes = cpu_to_le32(1);
750 params_le.active_time = cpu_to_le32(-1);
751 params_le.passive_time = cpu_to_le32(-1);
752 params_le.home_time = cpu_to_le32(-1);
753 /* Scan is aborted by setting channel_list[0] to -1 */
754 params_le.channel_list[0] = cpu_to_le16(-1);
755 /* E-Scan (or anyother type) can be aborted by SCAN */
756 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCAN,
757 ¶ms_le, sizeof(params_le));
759 brcmf_err("Scan abort failed\n");
762 brcmf_scan_config_mpc(ifp, 1);
765 * e-scan can be initiated by scheduled scan
766 * which takes precedence.
768 if (cfg->sched_escan) {
769 brcmf_dbg(SCAN, "scheduled scan completed\n");
770 cfg->sched_escan = false;
772 cfg80211_sched_scan_results(cfg_to_wiphy(cfg));
773 } else if (scan_request) {
774 brcmf_dbg(SCAN, "ESCAN Completed scan: %s\n",
775 aborted ? "Aborted" : "Done");
776 cfg80211_scan_done(scan_request, aborted);
778 if (!test_and_clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
779 brcmf_dbg(SCAN, "Scan complete, probably P2P scan\n");
785 int brcmf_cfg80211_del_iface(struct wiphy *wiphy, struct wireless_dev *wdev)
787 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
788 struct net_device *ndev = wdev->netdev;
790 /* vif event pending in firmware */
791 if (brcmf_cfg80211_vif_event_armed(cfg))
795 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status) &&
796 cfg->escan_info.ifp == netdev_priv(ndev))
797 brcmf_notify_escan_complete(cfg, netdev_priv(ndev),
800 brcmf_fil_iovar_int_set(netdev_priv(ndev), "mpc", 1);
803 switch (wdev->iftype) {
804 case NL80211_IFTYPE_ADHOC:
805 case NL80211_IFTYPE_STATION:
806 case NL80211_IFTYPE_AP:
807 case NL80211_IFTYPE_AP_VLAN:
808 case NL80211_IFTYPE_WDS:
809 case NL80211_IFTYPE_MONITOR:
810 case NL80211_IFTYPE_MESH_POINT:
812 case NL80211_IFTYPE_P2P_CLIENT:
813 case NL80211_IFTYPE_P2P_GO:
814 case NL80211_IFTYPE_P2P_DEVICE:
815 return brcmf_p2p_del_vif(wiphy, wdev);
816 case NL80211_IFTYPE_UNSPECIFIED:
824 brcmf_cfg80211_change_iface(struct wiphy *wiphy, struct net_device *ndev,
825 enum nl80211_iftype type, u32 *flags,
826 struct vif_params *params)
828 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
829 struct brcmf_if *ifp = netdev_priv(ndev);
830 struct brcmf_cfg80211_vif *vif = ifp->vif;
835 brcmf_dbg(TRACE, "Enter, bsscfgidx=%d, type=%d\n", ifp->bsscfgidx,
838 /* WAR: There are a number of p2p interface related problems which
839 * need to be handled initially (before doing the validate).
840 * wpa_supplicant tends to do iface changes on p2p device/client/go
841 * which are not always possible/allowed. However we need to return
842 * OK otherwise the wpa_supplicant wont start. The situation differs
843 * on configuration and setup (p2pon=1 module param). The first check
844 * is to see if the request is a change to station for p2p iface.
846 if ((type == NL80211_IFTYPE_STATION) &&
847 ((vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) ||
848 (vif->wdev.iftype == NL80211_IFTYPE_P2P_GO) ||
849 (vif->wdev.iftype == NL80211_IFTYPE_P2P_DEVICE))) {
850 brcmf_dbg(TRACE, "Ignoring cmd for p2p if\n");
851 /* Now depending on whether module param p2pon=1 was used the
852 * response needs to be either 0 or EOPNOTSUPP. The reason is
853 * that if p2pon=1 is used, but a newer supplicant is used then
854 * we should return an error, as this combination wont work.
855 * In other situations 0 is returned and supplicant will start
856 * normally. It will give a trace in cfg80211, but it is the
857 * only way to get it working. Unfortunately this will result
858 * in situation where we wont support new supplicant in
859 * combination with module param p2pon=1, but that is the way
860 * it is. If the user tries this then unloading of driver might
863 if (cfg->p2p.p2pdev_dynamically)
868 err = brcmf_vif_change_validate(wiphy_to_cfg(wiphy), vif, type);
870 brcmf_err("iface validation failed: err=%d\n", err);
874 case NL80211_IFTYPE_MONITOR:
875 case NL80211_IFTYPE_WDS:
876 brcmf_err("type (%d) : currently we do not support this type\n",
879 case NL80211_IFTYPE_ADHOC:
882 case NL80211_IFTYPE_STATION:
885 case NL80211_IFTYPE_AP:
886 case NL80211_IFTYPE_P2P_GO:
895 if (type == NL80211_IFTYPE_P2P_GO) {
896 brcmf_dbg(INFO, "IF Type = P2P GO\n");
897 err = brcmf_p2p_ifchange(cfg, BRCMF_FIL_P2P_IF_GO);
900 brcmf_dbg(INFO, "IF Type = AP\n");
903 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, infra);
905 brcmf_err("WLC_SET_INFRA error (%d)\n", err);
909 brcmf_dbg(INFO, "IF Type = %s\n", brcmf_is_ibssmode(vif) ?
912 ndev->ieee80211_ptr->iftype = type;
914 brcmf_cfg80211_update_proto_addr_mode(&vif->wdev);
917 brcmf_dbg(TRACE, "Exit\n");
922 static void brcmf_escan_prep(struct brcmf_cfg80211_info *cfg,
923 struct brcmf_scan_params_le *params_le,
924 struct cfg80211_scan_request *request)
932 struct brcmf_ssid_le ssid_le;
934 eth_broadcast_addr(params_le->bssid);
935 params_le->bss_type = DOT11_BSSTYPE_ANY;
936 params_le->scan_type = 0;
937 params_le->channel_num = 0;
938 params_le->nprobes = cpu_to_le32(-1);
939 params_le->active_time = cpu_to_le32(-1);
940 params_le->passive_time = cpu_to_le32(-1);
941 params_le->home_time = cpu_to_le32(-1);
942 memset(¶ms_le->ssid_le, 0, sizeof(params_le->ssid_le));
944 /* if request is null exit so it will be all channel broadcast scan */
948 n_ssids = request->n_ssids;
949 n_channels = request->n_channels;
950 /* Copy channel array if applicable */
951 brcmf_dbg(SCAN, "### List of channelspecs to scan ### %d\n",
953 if (n_channels > 0) {
954 for (i = 0; i < n_channels; i++) {
955 chanspec = channel_to_chanspec(&cfg->d11inf,
956 request->channels[i]);
957 brcmf_dbg(SCAN, "Chan : %d, Channel spec: %x\n",
958 request->channels[i]->hw_value, chanspec);
959 params_le->channel_list[i] = cpu_to_le16(chanspec);
962 brcmf_dbg(SCAN, "Scanning all channels\n");
964 /* Copy ssid array if applicable */
965 brcmf_dbg(SCAN, "### List of SSIDs to scan ### %d\n", n_ssids);
967 offset = offsetof(struct brcmf_scan_params_le, channel_list) +
968 n_channels * sizeof(u16);
969 offset = roundup(offset, sizeof(u32));
970 ptr = (char *)params_le + offset;
971 for (i = 0; i < n_ssids; i++) {
972 memset(&ssid_le, 0, sizeof(ssid_le));
974 cpu_to_le32(request->ssids[i].ssid_len);
975 memcpy(ssid_le.SSID, request->ssids[i].ssid,
976 request->ssids[i].ssid_len);
977 if (!ssid_le.SSID_len)
978 brcmf_dbg(SCAN, "%d: Broadcast scan\n", i);
980 brcmf_dbg(SCAN, "%d: scan for %s size =%d\n",
981 i, ssid_le.SSID, ssid_le.SSID_len);
982 memcpy(ptr, &ssid_le, sizeof(ssid_le));
983 ptr += sizeof(ssid_le);
986 brcmf_dbg(SCAN, "Broadcast scan %p\n", request->ssids);
987 if ((request->ssids) && request->ssids->ssid_len) {
988 brcmf_dbg(SCAN, "SSID %s len=%d\n",
989 params_le->ssid_le.SSID,
990 request->ssids->ssid_len);
991 params_le->ssid_le.SSID_len =
992 cpu_to_le32(request->ssids->ssid_len);
993 memcpy(¶ms_le->ssid_le.SSID, request->ssids->ssid,
994 request->ssids->ssid_len);
997 /* Adding mask to channel numbers */
998 params_le->channel_num =
999 cpu_to_le32((n_ssids << BRCMF_SCAN_PARAMS_NSSID_SHIFT) |
1000 (n_channels & BRCMF_SCAN_PARAMS_COUNT_MASK));
1004 brcmf_run_escan(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp,
1005 struct cfg80211_scan_request *request)
1007 s32 params_size = BRCMF_SCAN_PARAMS_FIXED_SIZE +
1008 offsetof(struct brcmf_escan_params_le, params_le);
1009 struct brcmf_escan_params_le *params;
1012 brcmf_dbg(SCAN, "E-SCAN START\n");
1014 if (request != NULL) {
1015 /* Allocate space for populating ssids in struct */
1016 params_size += sizeof(u32) * ((request->n_channels + 1) / 2);
1018 /* Allocate space for populating ssids in struct */
1019 params_size += sizeof(struct brcmf_ssid_le) * request->n_ssids;
1022 params = kzalloc(params_size, GFP_KERNEL);
1027 BUG_ON(params_size + sizeof("escan") >= BRCMF_DCMD_MEDLEN);
1028 brcmf_escan_prep(cfg, ¶ms->params_le, request);
1029 params->version = cpu_to_le32(BRCMF_ESCAN_REQ_VERSION);
1030 params->action = cpu_to_le16(WL_ESCAN_ACTION_START);
1031 params->sync_id = cpu_to_le16(0x1234);
1033 err = brcmf_fil_iovar_data_set(ifp, "escan", params, params_size);
1036 brcmf_dbg(INFO, "system busy : escan canceled\n");
1038 brcmf_err("error (%d)\n", err);
1047 brcmf_do_escan(struct brcmf_cfg80211_info *cfg, struct wiphy *wiphy,
1048 struct brcmf_if *ifp, struct cfg80211_scan_request *request)
1052 struct brcmf_scan_results *results;
1053 struct escan_info *escan = &cfg->escan_info;
1055 brcmf_dbg(SCAN, "Enter\n");
1057 escan->wiphy = wiphy;
1058 escan->escan_state = WL_ESCAN_STATE_SCANNING;
1059 passive_scan = cfg->active_scan ? 0 : 1;
1060 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PASSIVE_SCAN,
1063 brcmf_err("error (%d)\n", err);
1066 brcmf_scan_config_mpc(ifp, 0);
1067 results = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
1068 results->version = 0;
1070 results->buflen = WL_ESCAN_RESULTS_FIXED_SIZE;
1072 err = escan->run(cfg, ifp, request);
1074 brcmf_scan_config_mpc(ifp, 1);
1079 brcmf_cfg80211_escan(struct wiphy *wiphy, struct brcmf_cfg80211_vif *vif,
1080 struct cfg80211_scan_request *request,
1081 struct cfg80211_ssid *this_ssid)
1083 struct brcmf_if *ifp = vif->ifp;
1084 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1085 struct cfg80211_ssid *ssids;
1090 struct brcmf_ssid_le ssid_le;
1093 brcmf_dbg(SCAN, "START ESCAN\n");
1095 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
1096 brcmf_err("Scanning already: status (%lu)\n", cfg->scan_status);
1099 if (test_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status)) {
1100 brcmf_err("Scanning being aborted: status (%lu)\n",
1104 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
1105 brcmf_err("Scanning suppressed: status (%lu)\n",
1109 if (test_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state)) {
1110 brcmf_err("Connecting: status (%lu)\n", ifp->vif->sme_state);
1114 /* If scan req comes for p2p0, send it over primary I/F */
1115 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
1116 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif;
1121 ssids = request->ssids;
1125 /* we don't do escan in ibss */
1129 cfg->scan_request = request;
1130 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1132 cfg->escan_info.run = brcmf_run_escan;
1133 err = brcmf_p2p_scan_prep(wiphy, request, vif);
1137 err = brcmf_do_escan(cfg, wiphy, vif->ifp, request);
1141 brcmf_dbg(SCAN, "ssid \"%s\", ssid_len (%d)\n",
1142 ssids->ssid, ssids->ssid_len);
1143 memset(&ssid_le, 0, sizeof(ssid_le));
1144 SSID_len = min_t(u8, sizeof(ssid_le.SSID), ssids->ssid_len);
1145 ssid_le.SSID_len = cpu_to_le32(0);
1148 memcpy(ssid_le.SSID, ssids->ssid, SSID_len);
1149 ssid_le.SSID_len = cpu_to_le32(SSID_len);
1152 brcmf_dbg(SCAN, "Broadcast scan\n");
1154 passive_scan = cfg->active_scan ? 0 : 1;
1155 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PASSIVE_SCAN,
1158 brcmf_err("WLC_SET_PASSIVE_SCAN error (%d)\n", err);
1161 brcmf_scan_config_mpc(ifp, 0);
1162 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCAN, &ssid_le,
1166 brcmf_dbg(INFO, "BUSY: scan for \"%s\" canceled\n",
1169 brcmf_err("WLC_SCAN error (%d)\n", err);
1171 brcmf_scan_config_mpc(ifp, 1);
1176 /* Arm scan timeout timer */
1177 mod_timer(&cfg->escan_timeout, jiffies +
1178 BRCMF_ESCAN_TIMER_INTERVAL_MS * HZ / 1000);
1183 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1184 cfg->scan_request = NULL;
1189 brcmf_cfg80211_scan(struct wiphy *wiphy, struct cfg80211_scan_request *request)
1191 struct brcmf_cfg80211_vif *vif;
1194 brcmf_dbg(TRACE, "Enter\n");
1195 vif = container_of(request->wdev, struct brcmf_cfg80211_vif, wdev);
1196 if (!check_vif_up(vif))
1199 err = brcmf_cfg80211_escan(wiphy, vif, request, NULL);
1202 brcmf_err("scan error (%d)\n", err);
1204 brcmf_dbg(TRACE, "Exit\n");
1208 static s32 brcmf_set_rts(struct net_device *ndev, u32 rts_threshold)
1212 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "rtsthresh",
1215 brcmf_err("Error (%d)\n", err);
1220 static s32 brcmf_set_frag(struct net_device *ndev, u32 frag_threshold)
1224 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "fragthresh",
1227 brcmf_err("Error (%d)\n", err);
1232 static s32 brcmf_set_retry(struct net_device *ndev, u32 retry, bool l)
1235 u32 cmd = (l ? BRCMF_C_SET_LRL : BRCMF_C_SET_SRL);
1237 err = brcmf_fil_cmd_int_set(netdev_priv(ndev), cmd, retry);
1239 brcmf_err("cmd (%d) , error (%d)\n", cmd, err);
1245 static s32 brcmf_cfg80211_set_wiphy_params(struct wiphy *wiphy, u32 changed)
1247 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1248 struct net_device *ndev = cfg_to_ndev(cfg);
1249 struct brcmf_if *ifp = netdev_priv(ndev);
1252 brcmf_dbg(TRACE, "Enter\n");
1253 if (!check_vif_up(ifp->vif))
1256 if (changed & WIPHY_PARAM_RTS_THRESHOLD &&
1257 (cfg->conf->rts_threshold != wiphy->rts_threshold)) {
1258 cfg->conf->rts_threshold = wiphy->rts_threshold;
1259 err = brcmf_set_rts(ndev, cfg->conf->rts_threshold);
1263 if (changed & WIPHY_PARAM_FRAG_THRESHOLD &&
1264 (cfg->conf->frag_threshold != wiphy->frag_threshold)) {
1265 cfg->conf->frag_threshold = wiphy->frag_threshold;
1266 err = brcmf_set_frag(ndev, cfg->conf->frag_threshold);
1270 if (changed & WIPHY_PARAM_RETRY_LONG
1271 && (cfg->conf->retry_long != wiphy->retry_long)) {
1272 cfg->conf->retry_long = wiphy->retry_long;
1273 err = brcmf_set_retry(ndev, cfg->conf->retry_long, true);
1277 if (changed & WIPHY_PARAM_RETRY_SHORT
1278 && (cfg->conf->retry_short != wiphy->retry_short)) {
1279 cfg->conf->retry_short = wiphy->retry_short;
1280 err = brcmf_set_retry(ndev, cfg->conf->retry_short, false);
1286 brcmf_dbg(TRACE, "Exit\n");
1290 static void brcmf_init_prof(struct brcmf_cfg80211_profile *prof)
1292 memset(prof, 0, sizeof(*prof));
1295 static u16 brcmf_map_fw_linkdown_reason(const struct brcmf_event_msg *e)
1299 switch (e->event_code) {
1300 case BRCMF_E_DEAUTH:
1301 case BRCMF_E_DEAUTH_IND:
1302 case BRCMF_E_DISASSOC_IND:
1313 static void brcmf_link_down(struct brcmf_cfg80211_vif *vif, u16 reason)
1315 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(vif->wdev.wiphy);
1318 brcmf_dbg(TRACE, "Enter\n");
1320 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTED, &vif->sme_state)) {
1321 brcmf_dbg(INFO, "Call WLC_DISASSOC to stop excess roaming\n ");
1322 err = brcmf_fil_cmd_data_set(vif->ifp,
1323 BRCMF_C_DISASSOC, NULL, 0);
1325 brcmf_err("WLC_DISASSOC failed (%d)\n", err);
1327 if ((vif->wdev.iftype == NL80211_IFTYPE_STATION) ||
1328 (vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT))
1329 cfg80211_disconnected(vif->wdev.netdev, reason, NULL, 0,
1332 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &vif->sme_state);
1333 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
1334 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
1335 brcmf_dbg(TRACE, "Exit\n");
1339 brcmf_cfg80211_join_ibss(struct wiphy *wiphy, struct net_device *ndev,
1340 struct cfg80211_ibss_params *params)
1342 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1343 struct brcmf_if *ifp = netdev_priv(ndev);
1344 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1345 struct brcmf_join_params join_params;
1346 size_t join_params_size = 0;
1353 brcmf_dbg(TRACE, "Enter\n");
1354 if (!check_vif_up(ifp->vif))
1358 brcmf_dbg(CONN, "SSID: %s\n", params->ssid);
1360 brcmf_dbg(CONN, "SSID: NULL, Not supported\n");
1364 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1367 brcmf_dbg(CONN, "BSSID: %pM\n", params->bssid);
1369 brcmf_dbg(CONN, "No BSSID specified\n");
1371 if (params->chandef.chan)
1372 brcmf_dbg(CONN, "channel: %d\n",
1373 params->chandef.chan->center_freq);
1375 brcmf_dbg(CONN, "no channel specified\n");
1377 if (params->channel_fixed)
1378 brcmf_dbg(CONN, "fixed channel required\n");
1380 brcmf_dbg(CONN, "no fixed channel required\n");
1382 if (params->ie && params->ie_len)
1383 brcmf_dbg(CONN, "ie len: %d\n", params->ie_len);
1385 brcmf_dbg(CONN, "no ie specified\n");
1387 if (params->beacon_interval)
1388 brcmf_dbg(CONN, "beacon interval: %d\n",
1389 params->beacon_interval);
1391 brcmf_dbg(CONN, "no beacon interval specified\n");
1393 if (params->basic_rates)
1394 brcmf_dbg(CONN, "basic rates: %08X\n", params->basic_rates);
1396 brcmf_dbg(CONN, "no basic rates specified\n");
1398 if (params->privacy)
1399 brcmf_dbg(CONN, "privacy required\n");
1401 brcmf_dbg(CONN, "no privacy required\n");
1403 /* Configure Privacy for starter */
1404 if (params->privacy)
1405 wsec |= WEP_ENABLED;
1407 err = brcmf_fil_iovar_int_set(ifp, "wsec", wsec);
1409 brcmf_err("wsec failed (%d)\n", err);
1413 /* Configure Beacon Interval for starter */
1414 if (params->beacon_interval)
1415 bcnprd = params->beacon_interval;
1419 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD, bcnprd);
1421 brcmf_err("WLC_SET_BCNPRD failed (%d)\n", err);
1425 /* Configure required join parameter */
1426 memset(&join_params, 0, sizeof(struct brcmf_join_params));
1429 ssid_len = min_t(u32, params->ssid_len, IEEE80211_MAX_SSID_LEN);
1430 memcpy(join_params.ssid_le.SSID, params->ssid, ssid_len);
1431 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
1432 join_params_size = sizeof(join_params.ssid_le);
1435 if (params->bssid) {
1436 memcpy(join_params.params_le.bssid, params->bssid, ETH_ALEN);
1437 join_params_size += BRCMF_ASSOC_PARAMS_FIXED_SIZE;
1438 memcpy(profile->bssid, params->bssid, ETH_ALEN);
1440 eth_broadcast_addr(join_params.params_le.bssid);
1441 eth_zero_addr(profile->bssid);
1445 if (params->chandef.chan) {
1449 ieee80211_frequency_to_channel(
1450 params->chandef.chan->center_freq);
1451 if (params->channel_fixed) {
1452 /* adding chanspec */
1453 chanspec = chandef_to_chanspec(&cfg->d11inf,
1455 join_params.params_le.chanspec_list[0] =
1456 cpu_to_le16(chanspec);
1457 join_params.params_le.chanspec_num = cpu_to_le32(1);
1458 join_params_size += sizeof(join_params.params_le);
1461 /* set channel for starter */
1462 target_channel = cfg->channel;
1463 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_CHANNEL,
1466 brcmf_err("WLC_SET_CHANNEL failed (%d)\n", err);
1472 cfg->ibss_starter = false;
1475 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
1476 &join_params, join_params_size);
1478 brcmf_err("WLC_SET_SSID failed (%d)\n", err);
1484 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1485 brcmf_dbg(TRACE, "Exit\n");
1490 brcmf_cfg80211_leave_ibss(struct wiphy *wiphy, struct net_device *ndev)
1492 struct brcmf_if *ifp = netdev_priv(ndev);
1494 brcmf_dbg(TRACE, "Enter\n");
1495 if (!check_vif_up(ifp->vif)) {
1496 /* When driver is being unloaded, it can end up here. If an
1497 * error is returned then later on a debug trace in the wireless
1498 * core module will be printed. To avoid this 0 is returned.
1503 brcmf_link_down(ifp->vif, WLAN_REASON_DEAUTH_LEAVING);
1504 brcmf_net_setcarrier(ifp, false);
1506 brcmf_dbg(TRACE, "Exit\n");
1511 static s32 brcmf_set_wpa_version(struct net_device *ndev,
1512 struct cfg80211_connect_params *sme)
1514 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1515 struct brcmf_cfg80211_security *sec;
1519 if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_1)
1520 val = WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED;
1521 else if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_2)
1522 val = WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED;
1524 val = WPA_AUTH_DISABLED;
1525 brcmf_dbg(CONN, "setting wpa_auth to 0x%0x\n", val);
1526 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1528 brcmf_err("set wpa_auth failed (%d)\n", err);
1531 sec = &profile->sec;
1532 sec->wpa_versions = sme->crypto.wpa_versions;
1536 static s32 brcmf_set_auth_type(struct net_device *ndev,
1537 struct cfg80211_connect_params *sme)
1539 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1540 struct brcmf_cfg80211_security *sec;
1544 switch (sme->auth_type) {
1545 case NL80211_AUTHTYPE_OPEN_SYSTEM:
1547 brcmf_dbg(CONN, "open system\n");
1549 case NL80211_AUTHTYPE_SHARED_KEY:
1551 brcmf_dbg(CONN, "shared key\n");
1553 case NL80211_AUTHTYPE_AUTOMATIC:
1555 brcmf_dbg(CONN, "automatic\n");
1557 case NL80211_AUTHTYPE_NETWORK_EAP:
1558 brcmf_dbg(CONN, "network eap\n");
1561 brcmf_err("invalid auth type (%d)\n", sme->auth_type);
1565 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1567 brcmf_err("set auth failed (%d)\n", err);
1570 sec = &profile->sec;
1571 sec->auth_type = sme->auth_type;
1576 brcmf_set_wsec_mode(struct net_device *ndev,
1577 struct cfg80211_connect_params *sme)
1579 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1580 struct brcmf_cfg80211_security *sec;
1586 if (sme->crypto.n_ciphers_pairwise) {
1587 switch (sme->crypto.ciphers_pairwise[0]) {
1588 case WLAN_CIPHER_SUITE_WEP40:
1589 case WLAN_CIPHER_SUITE_WEP104:
1592 case WLAN_CIPHER_SUITE_TKIP:
1593 pval = TKIP_ENABLED;
1595 case WLAN_CIPHER_SUITE_CCMP:
1598 case WLAN_CIPHER_SUITE_AES_CMAC:
1602 brcmf_err("invalid cipher pairwise (%d)\n",
1603 sme->crypto.ciphers_pairwise[0]);
1607 if (sme->crypto.cipher_group) {
1608 switch (sme->crypto.cipher_group) {
1609 case WLAN_CIPHER_SUITE_WEP40:
1610 case WLAN_CIPHER_SUITE_WEP104:
1613 case WLAN_CIPHER_SUITE_TKIP:
1614 gval = TKIP_ENABLED;
1616 case WLAN_CIPHER_SUITE_CCMP:
1619 case WLAN_CIPHER_SUITE_AES_CMAC:
1623 brcmf_err("invalid cipher group (%d)\n",
1624 sme->crypto.cipher_group);
1629 brcmf_dbg(CONN, "pval (%d) gval (%d)\n", pval, gval);
1630 /* In case of privacy, but no security and WPS then simulate */
1631 /* setting AES. WPS-2.0 allows no security */
1632 if (brcmf_find_wpsie(sme->ie, sme->ie_len) && !pval && !gval &&
1637 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wsec", wsec);
1639 brcmf_err("error (%d)\n", err);
1643 sec = &profile->sec;
1644 sec->cipher_pairwise = sme->crypto.ciphers_pairwise[0];
1645 sec->cipher_group = sme->crypto.cipher_group;
1651 brcmf_set_key_mgmt(struct net_device *ndev, struct cfg80211_connect_params *sme)
1653 struct brcmf_if *ifp = netdev_priv(ndev);
1656 const struct brcmf_tlv *rsn_ie;
1664 if (!sme->crypto.n_akm_suites)
1667 err = brcmf_fil_bsscfg_int_get(netdev_priv(ndev), "wpa_auth", &val);
1669 brcmf_err("could not get wpa_auth (%d)\n", err);
1672 if (val & (WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED)) {
1673 switch (sme->crypto.akm_suites[0]) {
1674 case WLAN_AKM_SUITE_8021X:
1675 val = WPA_AUTH_UNSPECIFIED;
1677 case WLAN_AKM_SUITE_PSK:
1681 brcmf_err("invalid cipher group (%d)\n",
1682 sme->crypto.cipher_group);
1685 } else if (val & (WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED)) {
1686 switch (sme->crypto.akm_suites[0]) {
1687 case WLAN_AKM_SUITE_8021X:
1688 val = WPA2_AUTH_UNSPECIFIED;
1690 case WLAN_AKM_SUITE_8021X_SHA256:
1691 val = WPA2_AUTH_1X_SHA256;
1693 case WLAN_AKM_SUITE_PSK_SHA256:
1694 val = WPA2_AUTH_PSK_SHA256;
1696 case WLAN_AKM_SUITE_PSK:
1697 val = WPA2_AUTH_PSK;
1700 brcmf_err("invalid cipher group (%d)\n",
1701 sme->crypto.cipher_group);
1706 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
1707 goto skip_mfp_config;
1708 /* The MFP mode (1 or 2) needs to be determined, parse IEs. The
1709 * IE will not be verified, just a quick search for MFP config
1711 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie, sme->ie_len,
1714 goto skip_mfp_config;
1715 ie = (const u8 *)rsn_ie;
1716 ie_len = rsn_ie->len + TLV_HDR_LEN;
1717 /* Skip unicast suite */
1718 offset = TLV_HDR_LEN + WPA_IE_VERSION_LEN + WPA_IE_MIN_OUI_LEN;
1719 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1720 goto skip_mfp_config;
1721 /* Skip multicast suite */
1722 count = ie[offset] + (ie[offset + 1] << 8);
1723 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1724 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1725 goto skip_mfp_config;
1726 /* Skip auth key management suite(s) */
1727 count = ie[offset] + (ie[offset + 1] << 8);
1728 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1729 if (offset + WPA_IE_SUITE_COUNT_LEN > ie_len)
1730 goto skip_mfp_config;
1731 /* Ready to read capabilities */
1732 mfp = BRCMF_MFP_NONE;
1733 rsn_cap = ie[offset] + (ie[offset + 1] << 8);
1734 if (rsn_cap & RSN_CAP_MFPR_MASK)
1735 mfp = BRCMF_MFP_REQUIRED;
1736 else if (rsn_cap & RSN_CAP_MFPC_MASK)
1737 mfp = BRCMF_MFP_CAPABLE;
1738 brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "mfp", mfp);
1741 brcmf_dbg(CONN, "setting wpa_auth to %d\n", val);
1742 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1744 brcmf_err("could not set wpa_auth (%d)\n", err);
1752 brcmf_set_sharedkey(struct net_device *ndev,
1753 struct cfg80211_connect_params *sme)
1755 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1756 struct brcmf_cfg80211_security *sec;
1757 struct brcmf_wsec_key key;
1761 brcmf_dbg(CONN, "key len (%d)\n", sme->key_len);
1763 if (sme->key_len == 0)
1766 sec = &profile->sec;
1767 brcmf_dbg(CONN, "wpa_versions 0x%x cipher_pairwise 0x%x\n",
1768 sec->wpa_versions, sec->cipher_pairwise);
1770 if (sec->wpa_versions & (NL80211_WPA_VERSION_1 | NL80211_WPA_VERSION_2))
1773 if (!(sec->cipher_pairwise &
1774 (WLAN_CIPHER_SUITE_WEP40 | WLAN_CIPHER_SUITE_WEP104)))
1777 memset(&key, 0, sizeof(key));
1778 key.len = (u32) sme->key_len;
1779 key.index = (u32) sme->key_idx;
1780 if (key.len > sizeof(key.data)) {
1781 brcmf_err("Too long key length (%u)\n", key.len);
1784 memcpy(key.data, sme->key, key.len);
1785 key.flags = BRCMF_PRIMARY_KEY;
1786 switch (sec->cipher_pairwise) {
1787 case WLAN_CIPHER_SUITE_WEP40:
1788 key.algo = CRYPTO_ALGO_WEP1;
1790 case WLAN_CIPHER_SUITE_WEP104:
1791 key.algo = CRYPTO_ALGO_WEP128;
1794 brcmf_err("Invalid algorithm (%d)\n",
1795 sme->crypto.ciphers_pairwise[0]);
1798 /* Set the new key/index */
1799 brcmf_dbg(CONN, "key length (%d) key index (%d) algo (%d)\n",
1800 key.len, key.index, key.algo);
1801 brcmf_dbg(CONN, "key \"%s\"\n", key.data);
1802 err = send_key_to_dongle(netdev_priv(ndev), &key);
1806 if (sec->auth_type == NL80211_AUTHTYPE_SHARED_KEY) {
1807 brcmf_dbg(CONN, "set auth_type to shared key\n");
1808 val = WL_AUTH_SHARED_KEY; /* shared key */
1809 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1811 brcmf_err("set auth failed (%d)\n", err);
1817 enum nl80211_auth_type brcmf_war_auth_type(struct brcmf_if *ifp,
1818 enum nl80211_auth_type type)
1820 if (type == NL80211_AUTHTYPE_AUTOMATIC &&
1821 brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_AUTO_AUTH)) {
1822 brcmf_dbg(CONN, "WAR: use OPEN instead of AUTO\n");
1823 type = NL80211_AUTHTYPE_OPEN_SYSTEM;
1828 static void brcmf_set_join_pref(struct brcmf_if *ifp,
1829 struct cfg80211_bss_selection *bss_select)
1831 struct brcmf_join_pref_params join_pref_params[2];
1832 enum nl80211_band band;
1835 join_pref_params[i].len = 2;
1836 join_pref_params[i].rssi_gain = 0;
1838 if (bss_select->behaviour != NL80211_BSS_SELECT_ATTR_BAND_PREF)
1839 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_ASSOC_PREFER, WLC_BAND_AUTO);
1841 switch (bss_select->behaviour) {
1842 case __NL80211_BSS_SELECT_ATTR_INVALID:
1843 brcmf_c_set_joinpref_default(ifp);
1845 case NL80211_BSS_SELECT_ATTR_BAND_PREF:
1846 join_pref_params[i].type = BRCMF_JOIN_PREF_BAND;
1847 band = bss_select->param.band_pref;
1848 join_pref_params[i].band = nl80211_band_to_fwil(band);
1851 case NL80211_BSS_SELECT_ATTR_RSSI_ADJUST:
1852 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI_DELTA;
1853 band = bss_select->param.adjust.band;
1854 join_pref_params[i].band = nl80211_band_to_fwil(band);
1855 join_pref_params[i].rssi_gain = bss_select->param.adjust.delta;
1858 case NL80211_BSS_SELECT_ATTR_RSSI:
1862 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI;
1863 join_pref_params[i].len = 2;
1864 join_pref_params[i].rssi_gain = 0;
1865 join_pref_params[i].band = 0;
1866 err = brcmf_fil_iovar_data_set(ifp, "join_pref", join_pref_params,
1867 sizeof(join_pref_params));
1869 brcmf_err("Set join_pref error (%d)\n", err);
1873 brcmf_cfg80211_connect(struct wiphy *wiphy, struct net_device *ndev,
1874 struct cfg80211_connect_params *sme)
1876 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1877 struct brcmf_if *ifp = netdev_priv(ndev);
1878 struct ieee80211_channel *chan = sme->channel;
1879 struct brcmf_join_params join_params;
1880 size_t join_params_size;
1881 const struct brcmf_tlv *rsn_ie;
1882 const struct brcmf_vs_tlv *wpa_ie;
1885 struct brcmf_ext_join_params_le *ext_join_params;
1890 brcmf_dbg(TRACE, "Enter\n");
1891 if (!check_vif_up(ifp->vif))
1895 brcmf_err("Invalid ssid\n");
1899 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif) {
1900 /* A normal (non P2P) connection request setup. */
1903 /* find the WPA_IE */
1904 wpa_ie = brcmf_find_wpaie((u8 *)sme->ie, sme->ie_len);
1907 ie_len = wpa_ie->len + TLV_HDR_LEN;
1909 /* find the RSN_IE */
1910 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie,
1915 ie_len = rsn_ie->len + TLV_HDR_LEN;
1918 brcmf_fil_iovar_data_set(ifp, "wpaie", ie, ie_len);
1921 err = brcmf_vif_set_mgmt_ie(ifp->vif, BRCMF_VNDR_IE_ASSOCREQ_FLAG,
1922 sme->ie, sme->ie_len);
1924 brcmf_err("Set Assoc REQ IE Failed\n");
1926 brcmf_dbg(TRACE, "Applied Vndr IEs for Assoc request\n");
1928 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1932 ieee80211_frequency_to_channel(chan->center_freq);
1933 chanspec = channel_to_chanspec(&cfg->d11inf, chan);
1934 brcmf_dbg(CONN, "channel=%d, center_req=%d, chanspec=0x%04x\n",
1935 cfg->channel, chan->center_freq, chanspec);
1941 brcmf_dbg(INFO, "ie (%p), ie_len (%zd)\n", sme->ie, sme->ie_len);
1943 err = brcmf_set_wpa_version(ndev, sme);
1945 brcmf_err("wl_set_wpa_version failed (%d)\n", err);
1949 sme->auth_type = brcmf_war_auth_type(ifp, sme->auth_type);
1950 err = brcmf_set_auth_type(ndev, sme);
1952 brcmf_err("wl_set_auth_type failed (%d)\n", err);
1956 err = brcmf_set_wsec_mode(ndev, sme);
1958 brcmf_err("wl_set_set_cipher failed (%d)\n", err);
1962 err = brcmf_set_key_mgmt(ndev, sme);
1964 brcmf_err("wl_set_key_mgmt failed (%d)\n", err);
1968 err = brcmf_set_sharedkey(ndev, sme);
1970 brcmf_err("brcmf_set_sharedkey failed (%d)\n", err);
1974 /* Join with specific BSSID and cached SSID
1975 * If SSID is zero join based on BSSID only
1977 join_params_size = offsetof(struct brcmf_ext_join_params_le, assoc_le) +
1978 offsetof(struct brcmf_assoc_params_le, chanspec_list);
1980 join_params_size += sizeof(u16);
1981 ext_join_params = kzalloc(join_params_size, GFP_KERNEL);
1982 if (ext_join_params == NULL) {
1986 ssid_len = min_t(u32, sme->ssid_len, IEEE80211_MAX_SSID_LEN);
1987 ext_join_params->ssid_le.SSID_len = cpu_to_le32(ssid_len);
1988 memcpy(&ext_join_params->ssid_le.SSID, sme->ssid, ssid_len);
1989 if (ssid_len < IEEE80211_MAX_SSID_LEN)
1990 brcmf_dbg(CONN, "SSID \"%s\", len (%d)\n",
1991 ext_join_params->ssid_le.SSID, ssid_len);
1993 /* Set up join scan parameters */
1994 ext_join_params->scan_le.scan_type = -1;
1995 ext_join_params->scan_le.home_time = cpu_to_le32(-1);
1998 memcpy(&ext_join_params->assoc_le.bssid, sme->bssid, ETH_ALEN);
2000 eth_broadcast_addr(ext_join_params->assoc_le.bssid);
2003 ext_join_params->assoc_le.chanspec_num = cpu_to_le32(1);
2005 ext_join_params->assoc_le.chanspec_list[0] =
2006 cpu_to_le16(chanspec);
2007 /* Increase dwell time to receive probe response or detect
2008 * beacon from target AP at a noisy air only during connect
2011 ext_join_params->scan_le.active_time =
2012 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS);
2013 ext_join_params->scan_le.passive_time =
2014 cpu_to_le32(BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS);
2015 /* To sync with presence period of VSDB GO send probe request
2016 * more frequently. Probe request will be stopped when it gets
2017 * probe response from target AP/GO.
2019 ext_join_params->scan_le.nprobes =
2020 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS /
2021 BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS);
2023 ext_join_params->scan_le.active_time = cpu_to_le32(-1);
2024 ext_join_params->scan_le.passive_time = cpu_to_le32(-1);
2025 ext_join_params->scan_le.nprobes = cpu_to_le32(-1);
2028 brcmf_set_join_pref(ifp, &sme->bss_select);
2030 err = brcmf_fil_bsscfg_data_set(ifp, "join", ext_join_params,
2032 kfree(ext_join_params);
2034 /* This is it. join command worked, we are done */
2037 /* join command failed, fallback to set ssid */
2038 memset(&join_params, 0, sizeof(join_params));
2039 join_params_size = sizeof(join_params.ssid_le);
2041 memcpy(&join_params.ssid_le.SSID, sme->ssid, ssid_len);
2042 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
2045 memcpy(join_params.params_le.bssid, sme->bssid, ETH_ALEN);
2047 eth_broadcast_addr(join_params.params_le.bssid);
2050 join_params.params_le.chanspec_list[0] = cpu_to_le16(chanspec);
2051 join_params.params_le.chanspec_num = cpu_to_le32(1);
2052 join_params_size += sizeof(join_params.params_le);
2054 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
2055 &join_params, join_params_size);
2057 brcmf_err("BRCMF_C_SET_SSID failed (%d)\n", err);
2061 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2062 brcmf_dbg(TRACE, "Exit\n");
2067 brcmf_cfg80211_disconnect(struct wiphy *wiphy, struct net_device *ndev,
2070 struct brcmf_if *ifp = netdev_priv(ndev);
2071 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2072 struct brcmf_scb_val_le scbval;
2075 brcmf_dbg(TRACE, "Enter. Reason code = %d\n", reason_code);
2076 if (!check_vif_up(ifp->vif))
2079 clear_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
2080 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2081 cfg80211_disconnected(ndev, reason_code, NULL, 0, true, GFP_KERNEL);
2083 memcpy(&scbval.ea, &profile->bssid, ETH_ALEN);
2084 scbval.val = cpu_to_le32(reason_code);
2085 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_DISASSOC,
2086 &scbval, sizeof(scbval));
2088 brcmf_err("error (%d)\n", err);
2090 brcmf_dbg(TRACE, "Exit\n");
2095 brcmf_cfg80211_set_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2096 enum nl80211_tx_power_setting type, s32 mbm)
2098 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2099 struct net_device *ndev = cfg_to_ndev(cfg);
2100 struct brcmf_if *ifp = netdev_priv(ndev);
2105 brcmf_dbg(TRACE, "Enter %d %d\n", type, mbm);
2106 if (!check_vif_up(ifp->vif))
2110 case NL80211_TX_POWER_AUTOMATIC:
2112 case NL80211_TX_POWER_LIMITED:
2113 case NL80211_TX_POWER_FIXED:
2115 brcmf_err("TX_POWER_FIXED - dbm is negative\n");
2119 qdbm = MBM_TO_DBM(4 * mbm);
2122 qdbm |= WL_TXPWR_OVERRIDE;
2125 brcmf_err("Unsupported type %d\n", type);
2129 /* Make sure radio is off or on as far as software is concerned */
2130 disable = WL_RADIO_SW_DISABLE << 16;
2131 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_RADIO, disable);
2133 brcmf_err("WLC_SET_RADIO error (%d)\n", err);
2135 err = brcmf_fil_iovar_int_set(ifp, "qtxpower", qdbm);
2137 brcmf_err("qtxpower error (%d)\n", err);
2140 brcmf_dbg(TRACE, "Exit %d (qdbm)\n", qdbm & ~WL_TXPWR_OVERRIDE);
2145 brcmf_cfg80211_get_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2148 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2149 struct net_device *ndev = cfg_to_ndev(cfg);
2150 struct brcmf_if *ifp = netdev_priv(ndev);
2154 brcmf_dbg(TRACE, "Enter\n");
2155 if (!check_vif_up(ifp->vif))
2158 err = brcmf_fil_iovar_int_get(ifp, "qtxpower", &qdbm);
2160 brcmf_err("error (%d)\n", err);
2163 *dbm = (qdbm & ~WL_TXPWR_OVERRIDE) / 4;
2166 brcmf_dbg(TRACE, "Exit (0x%x %d)\n", qdbm, *dbm);
2171 brcmf_cfg80211_config_default_key(struct wiphy *wiphy, struct net_device *ndev,
2172 u8 key_idx, bool unicast, bool multicast)
2174 struct brcmf_if *ifp = netdev_priv(ndev);
2179 brcmf_dbg(TRACE, "Enter\n");
2180 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2181 if (!check_vif_up(ifp->vif))
2184 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2186 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2190 if (wsec & WEP_ENABLED) {
2191 /* Just select a new current key */
2193 err = brcmf_fil_cmd_int_set(ifp,
2194 BRCMF_C_SET_KEY_PRIMARY, index);
2196 brcmf_err("error (%d)\n", err);
2199 brcmf_dbg(TRACE, "Exit\n");
2204 brcmf_cfg80211_del_key(struct wiphy *wiphy, struct net_device *ndev,
2205 u8 key_idx, bool pairwise, const u8 *mac_addr)
2207 struct brcmf_if *ifp = netdev_priv(ndev);
2208 struct brcmf_wsec_key *key;
2211 brcmf_dbg(TRACE, "Enter\n");
2212 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2214 if (!check_vif_up(ifp->vif))
2217 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2218 /* we ignore this key index in this case */
2222 key = &ifp->vif->profile.key[key_idx];
2224 if (key->algo == CRYPTO_ALGO_OFF) {
2225 brcmf_dbg(CONN, "Ignore clearing of (never configured) key\n");
2229 memset(key, 0, sizeof(*key));
2230 key->index = (u32)key_idx;
2231 key->flags = BRCMF_PRIMARY_KEY;
2233 /* Clear the key/index */
2234 err = send_key_to_dongle(ifp, key);
2236 brcmf_dbg(TRACE, "Exit\n");
2241 brcmf_cfg80211_add_key(struct wiphy *wiphy, struct net_device *ndev,
2242 u8 key_idx, bool pairwise, const u8 *mac_addr,
2243 struct key_params *params)
2245 struct brcmf_if *ifp = netdev_priv(ndev);
2246 struct brcmf_wsec_key *key;
2253 brcmf_dbg(TRACE, "Enter\n");
2254 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2255 if (!check_vif_up(ifp->vif))
2258 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2259 /* we ignore this key index in this case */
2260 brcmf_err("invalid key index (%d)\n", key_idx);
2264 if (params->key_len == 0)
2265 return brcmf_cfg80211_del_key(wiphy, ndev, key_idx, pairwise,
2268 if (params->key_len > sizeof(key->data)) {
2269 brcmf_err("Too long key length (%u)\n", params->key_len);
2274 if (mac_addr && (params->cipher != WLAN_CIPHER_SUITE_WEP40) &&
2275 (params->cipher != WLAN_CIPHER_SUITE_WEP104)) {
2276 brcmf_dbg(TRACE, "Ext key, mac %pM", mac_addr);
2280 key = &ifp->vif->profile.key[key_idx];
2281 memset(key, 0, sizeof(*key));
2282 if ((ext_key) && (!is_multicast_ether_addr(mac_addr)))
2283 memcpy((char *)&key->ea, (void *)mac_addr, ETH_ALEN);
2284 key->len = params->key_len;
2285 key->index = key_idx;
2286 memcpy(key->data, params->key, key->len);
2288 key->flags = BRCMF_PRIMARY_KEY;
2290 switch (params->cipher) {
2291 case WLAN_CIPHER_SUITE_WEP40:
2292 key->algo = CRYPTO_ALGO_WEP1;
2294 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2296 case WLAN_CIPHER_SUITE_WEP104:
2297 key->algo = CRYPTO_ALGO_WEP128;
2299 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2301 case WLAN_CIPHER_SUITE_TKIP:
2302 if (!brcmf_is_apmode(ifp->vif)) {
2303 brcmf_dbg(CONN, "Swapping RX/TX MIC key\n");
2304 memcpy(keybuf, &key->data[24], sizeof(keybuf));
2305 memcpy(&key->data[24], &key->data[16], sizeof(keybuf));
2306 memcpy(&key->data[16], keybuf, sizeof(keybuf));
2308 key->algo = CRYPTO_ALGO_TKIP;
2310 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2312 case WLAN_CIPHER_SUITE_AES_CMAC:
2313 key->algo = CRYPTO_ALGO_AES_CCM;
2315 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2317 case WLAN_CIPHER_SUITE_CCMP:
2318 key->algo = CRYPTO_ALGO_AES_CCM;
2320 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_CCMP\n");
2323 brcmf_err("Invalid cipher (0x%x)\n", params->cipher);
2328 err = send_key_to_dongle(ifp, key);
2332 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2334 brcmf_err("get wsec error (%d)\n", err);
2338 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2340 brcmf_err("set wsec error (%d)\n", err);
2345 brcmf_dbg(TRACE, "Exit\n");
2350 brcmf_cfg80211_get_key(struct wiphy *wiphy, struct net_device *ndev, u8 key_idx,
2351 bool pairwise, const u8 *mac_addr, void *cookie,
2352 void (*callback)(void *cookie,
2353 struct key_params *params))
2355 struct key_params params;
2356 struct brcmf_if *ifp = netdev_priv(ndev);
2357 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2358 struct brcmf_cfg80211_security *sec;
2362 brcmf_dbg(TRACE, "Enter\n");
2363 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2364 if (!check_vif_up(ifp->vif))
2367 memset(¶ms, 0, sizeof(params));
2369 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2371 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2372 /* Ignore this error, may happen during DISASSOC */
2376 if (wsec & WEP_ENABLED) {
2377 sec = &profile->sec;
2378 if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP40) {
2379 params.cipher = WLAN_CIPHER_SUITE_WEP40;
2380 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2381 } else if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP104) {
2382 params.cipher = WLAN_CIPHER_SUITE_WEP104;
2383 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2385 } else if (wsec & TKIP_ENABLED) {
2386 params.cipher = WLAN_CIPHER_SUITE_TKIP;
2387 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2388 } else if (wsec & AES_ENABLED) {
2389 params.cipher = WLAN_CIPHER_SUITE_AES_CMAC;
2390 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2392 brcmf_err("Invalid algo (0x%x)\n", wsec);
2396 callback(cookie, ¶ms);
2399 brcmf_dbg(TRACE, "Exit\n");
2404 brcmf_cfg80211_config_default_mgmt_key(struct wiphy *wiphy,
2405 struct net_device *ndev, u8 key_idx)
2407 struct brcmf_if *ifp = netdev_priv(ndev);
2409 brcmf_dbg(TRACE, "Enter key_idx %d\n", key_idx);
2411 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
2414 brcmf_dbg(INFO, "Not supported\n");
2420 brcmf_cfg80211_reconfigure_wep(struct brcmf_if *ifp)
2424 struct brcmf_wsec_key *key;
2427 for (key_idx = 0; key_idx < BRCMF_MAX_DEFAULT_KEYS; key_idx++) {
2428 key = &ifp->vif->profile.key[key_idx];
2429 if ((key->algo == CRYPTO_ALGO_WEP1) ||
2430 (key->algo == CRYPTO_ALGO_WEP128))
2433 if (key_idx == BRCMF_MAX_DEFAULT_KEYS)
2436 err = send_key_to_dongle(ifp, key);
2438 brcmf_err("Setting WEP key failed (%d)\n", err);
2441 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2443 brcmf_err("get wsec error (%d)\n", err);
2446 wsec |= WEP_ENABLED;
2447 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2449 brcmf_err("set wsec error (%d)\n", err);
2452 static void brcmf_convert_sta_flags(u32 fw_sta_flags, struct station_info *si)
2454 struct nl80211_sta_flag_update *sfu;
2456 brcmf_dbg(TRACE, "flags %08x\n", fw_sta_flags);
2457 si->filled |= BIT(NL80211_STA_INFO_STA_FLAGS);
2458 sfu = &si->sta_flags;
2459 sfu->mask = BIT(NL80211_STA_FLAG_WME) |
2460 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
2461 BIT(NL80211_STA_FLAG_ASSOCIATED) |
2462 BIT(NL80211_STA_FLAG_AUTHORIZED);
2463 if (fw_sta_flags & BRCMF_STA_WME)
2464 sfu->set |= BIT(NL80211_STA_FLAG_WME);
2465 if (fw_sta_flags & BRCMF_STA_AUTHE)
2466 sfu->set |= BIT(NL80211_STA_FLAG_AUTHENTICATED);
2467 if (fw_sta_flags & BRCMF_STA_ASSOC)
2468 sfu->set |= BIT(NL80211_STA_FLAG_ASSOCIATED);
2469 if (fw_sta_flags & BRCMF_STA_AUTHO)
2470 sfu->set |= BIT(NL80211_STA_FLAG_AUTHORIZED);
2473 static void brcmf_fill_bss_param(struct brcmf_if *ifp, struct station_info *si)
2477 struct brcmf_bss_info_le bss_le;
2482 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2486 buf->len = cpu_to_le32(WL_BSS_INFO_MAX);
2487 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO, buf,
2490 brcmf_err("Failed to get bss info (%d)\n", err);
2493 si->filled |= BIT(NL80211_STA_INFO_BSS_PARAM);
2494 si->bss_param.beacon_interval = le16_to_cpu(buf->bss_le.beacon_period);
2495 si->bss_param.dtim_period = buf->bss_le.dtim_period;
2496 capability = le16_to_cpu(buf->bss_le.capability);
2497 if (capability & IEEE80211_HT_STBC_PARAM_DUAL_CTS_PROT)
2498 si->bss_param.flags |= BSS_PARAM_FLAGS_CTS_PROT;
2499 if (capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
2500 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_PREAMBLE;
2501 if (capability & WLAN_CAPABILITY_SHORT_SLOT_TIME)
2502 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_SLOT_TIME;
2506 brcmf_cfg80211_get_station_ibss(struct brcmf_if *ifp,
2507 struct station_info *sinfo)
2509 struct brcmf_scb_val_le scbval;
2510 struct brcmf_pktcnt_le pktcnt;
2515 /* Get the current tx rate */
2516 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_RATE, &rate);
2518 brcmf_err("BRCMF_C_GET_RATE error (%d)\n", err);
2521 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BITRATE);
2522 sinfo->txrate.legacy = rate * 5;
2524 memset(&scbval, 0, sizeof(scbval));
2525 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI, &scbval,
2528 brcmf_err("BRCMF_C_GET_RSSI error (%d)\n", err);
2531 rssi = le32_to_cpu(scbval.val);
2532 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL);
2533 sinfo->signal = rssi;
2535 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_GET_PKTCNTS, &pktcnt,
2538 brcmf_err("BRCMF_C_GET_GET_PKTCNTS error (%d)\n", err);
2541 sinfo->filled |= BIT(NL80211_STA_INFO_RX_PACKETS) |
2542 BIT(NL80211_STA_INFO_RX_DROP_MISC) |
2543 BIT(NL80211_STA_INFO_TX_PACKETS) |
2544 BIT(NL80211_STA_INFO_TX_FAILED);
2545 sinfo->rx_packets = le32_to_cpu(pktcnt.rx_good_pkt);
2546 sinfo->rx_dropped_misc = le32_to_cpu(pktcnt.rx_bad_pkt);
2547 sinfo->tx_packets = le32_to_cpu(pktcnt.tx_good_pkt);
2548 sinfo->tx_failed = le32_to_cpu(pktcnt.tx_bad_pkt);
2554 brcmf_cfg80211_get_station(struct wiphy *wiphy, struct net_device *ndev,
2555 const u8 *mac, struct station_info *sinfo)
2557 struct brcmf_if *ifp = netdev_priv(ndev);
2559 struct brcmf_sta_info_le sta_info_le;
2566 brcmf_dbg(TRACE, "Enter, MAC %pM\n", mac);
2567 if (!check_vif_up(ifp->vif))
2570 if (brcmf_is_ibssmode(ifp->vif))
2571 return brcmf_cfg80211_get_station_ibss(ifp, sinfo);
2573 memset(&sta_info_le, 0, sizeof(sta_info_le));
2574 memcpy(&sta_info_le, mac, ETH_ALEN);
2575 err = brcmf_fil_iovar_data_get(ifp, "tdls_sta_info",
2577 sizeof(sta_info_le));
2578 is_tdls_peer = !err;
2580 err = brcmf_fil_iovar_data_get(ifp, "sta_info",
2582 sizeof(sta_info_le));
2584 brcmf_err("GET STA INFO failed, %d\n", err);
2588 brcmf_dbg(TRACE, "version %d\n", le16_to_cpu(sta_info_le.ver));
2589 sinfo->filled = BIT(NL80211_STA_INFO_INACTIVE_TIME);
2590 sinfo->inactive_time = le32_to_cpu(sta_info_le.idle) * 1000;
2591 sta_flags = le32_to_cpu(sta_info_le.flags);
2592 brcmf_convert_sta_flags(sta_flags, sinfo);
2593 sinfo->sta_flags.mask |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2595 sinfo->sta_flags.set |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2597 sinfo->sta_flags.set &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
2598 if (sta_flags & BRCMF_STA_ASSOC) {
2599 sinfo->filled |= BIT(NL80211_STA_INFO_CONNECTED_TIME);
2600 sinfo->connected_time = le32_to_cpu(sta_info_le.in);
2601 brcmf_fill_bss_param(ifp, sinfo);
2603 if (sta_flags & BRCMF_STA_SCBSTATS) {
2604 sinfo->filled |= BIT(NL80211_STA_INFO_TX_FAILED);
2605 sinfo->tx_failed = le32_to_cpu(sta_info_le.tx_failures);
2606 sinfo->filled |= BIT(NL80211_STA_INFO_TX_PACKETS);
2607 sinfo->tx_packets = le32_to_cpu(sta_info_le.tx_pkts);
2608 sinfo->tx_packets += le32_to_cpu(sta_info_le.tx_mcast_pkts);
2609 sinfo->filled |= BIT(NL80211_STA_INFO_RX_PACKETS);
2610 sinfo->rx_packets = le32_to_cpu(sta_info_le.rx_ucast_pkts);
2611 sinfo->rx_packets += le32_to_cpu(sta_info_le.rx_mcast_pkts);
2612 if (sinfo->tx_packets) {
2613 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BITRATE);
2614 sinfo->txrate.legacy =
2615 le32_to_cpu(sta_info_le.tx_rate) / 100;
2617 if (sinfo->rx_packets) {
2618 sinfo->filled |= BIT(NL80211_STA_INFO_RX_BITRATE);
2619 sinfo->rxrate.legacy =
2620 le32_to_cpu(sta_info_le.rx_rate) / 100;
2622 if (le16_to_cpu(sta_info_le.ver) >= 4) {
2623 sinfo->filled |= BIT(NL80211_STA_INFO_TX_BYTES);
2624 sinfo->tx_bytes = le64_to_cpu(sta_info_le.tx_tot_bytes);
2625 sinfo->filled |= BIT(NL80211_STA_INFO_RX_BYTES);
2626 sinfo->rx_bytes = le64_to_cpu(sta_info_le.rx_tot_bytes);
2630 for (i = 0; i < BRCMF_ANT_MAX; i++) {
2631 if (sta_info_le.rssi[i]) {
2632 sinfo->chain_signal_avg[count_rssi] =
2633 sta_info_le.rssi[i];
2634 sinfo->chain_signal[count_rssi] =
2635 sta_info_le.rssi[i];
2636 total_rssi += sta_info_le.rssi[i];
2641 sinfo->filled |= BIT(NL80211_STA_INFO_CHAIN_SIGNAL);
2642 sinfo->chains = count_rssi;
2644 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL);
2645 total_rssi /= count_rssi;
2646 sinfo->signal = total_rssi;
2650 brcmf_dbg(TRACE, "Exit\n");
2655 brcmf_cfg80211_dump_station(struct wiphy *wiphy, struct net_device *ndev,
2656 int idx, u8 *mac, struct station_info *sinfo)
2658 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2659 struct brcmf_if *ifp = netdev_priv(ndev);
2662 brcmf_dbg(TRACE, "Enter, idx %d\n", idx);
2665 cfg->assoclist.count = cpu_to_le32(BRCMF_MAX_ASSOCLIST);
2666 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_ASSOCLIST,
2668 sizeof(cfg->assoclist));
2670 brcmf_err("BRCMF_C_GET_ASSOCLIST unsupported, err=%d\n",
2672 cfg->assoclist.count = 0;
2676 if (idx < le32_to_cpu(cfg->assoclist.count)) {
2677 memcpy(mac, cfg->assoclist.mac[idx], ETH_ALEN);
2678 return brcmf_cfg80211_get_station(wiphy, ndev, mac, sinfo);
2684 brcmf_cfg80211_set_power_mgmt(struct wiphy *wiphy, struct net_device *ndev,
2685 bool enabled, s32 timeout)
2689 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2690 struct brcmf_if *ifp = netdev_priv(ndev);
2692 brcmf_dbg(TRACE, "Enter\n");
2695 * Powersave enable/disable request is coming from the
2696 * cfg80211 even before the interface is up. In that
2697 * scenario, driver will be storing the power save
2698 * preference in cfg struct to apply this to
2699 * FW later while initializing the dongle
2701 cfg->pwr_save = enabled;
2702 if (!check_vif_up(ifp->vif)) {
2704 brcmf_dbg(INFO, "Device is not ready, storing the value in cfg_info struct\n");
2708 pm = enabled ? PM_FAST : PM_OFF;
2709 /* Do not enable the power save after assoc if it is a p2p interface */
2710 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) {
2711 brcmf_dbg(INFO, "Do not enable power save for P2P clients\n");
2714 brcmf_dbg(INFO, "power save %s\n", (pm ? "enabled" : "disabled"));
2716 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, pm);
2719 brcmf_err("net_device is not ready yet\n");
2721 brcmf_err("error (%d)\n", err);
2724 brcmf_dbg(TRACE, "Exit\n");
2728 static s32 brcmf_inform_single_bss(struct brcmf_cfg80211_info *cfg,
2729 struct brcmf_bss_info_le *bi)
2731 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2732 struct ieee80211_channel *notify_channel;
2733 struct cfg80211_bss *bss;
2734 struct ieee80211_supported_band *band;
2735 struct brcmu_chan ch;
2738 u16 notify_capability;
2739 u16 notify_interval;
2741 size_t notify_ielen;
2744 if (le32_to_cpu(bi->length) > WL_BSS_INFO_MAX) {
2745 brcmf_err("Bss info is larger than buffer. Discarding\n");
2750 ch.chspec = le16_to_cpu(bi->chanspec);
2751 cfg->d11inf.decchspec(&ch);
2752 bi->ctl_ch = ch.control_ch_num;
2754 channel = bi->ctl_ch;
2756 if (channel <= CH_MAX_2G_CHANNEL)
2757 band = wiphy->bands[NL80211_BAND_2GHZ];
2759 band = wiphy->bands[NL80211_BAND_5GHZ];
2761 freq = ieee80211_channel_to_frequency(channel, band->band);
2762 notify_channel = ieee80211_get_channel(wiphy, freq);
2764 notify_capability = le16_to_cpu(bi->capability);
2765 notify_interval = le16_to_cpu(bi->beacon_period);
2766 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2767 notify_ielen = le32_to_cpu(bi->ie_length);
2768 notify_signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2770 brcmf_dbg(CONN, "bssid: %pM\n", bi->BSSID);
2771 brcmf_dbg(CONN, "Channel: %d(%d)\n", channel, freq);
2772 brcmf_dbg(CONN, "Capability: %X\n", notify_capability);
2773 brcmf_dbg(CONN, "Beacon interval: %d\n", notify_interval);
2774 brcmf_dbg(CONN, "Signal: %d\n", notify_signal);
2776 bss = cfg80211_inform_bss(wiphy, notify_channel,
2777 CFG80211_BSS_FTYPE_UNKNOWN,
2778 (const u8 *)bi->BSSID,
2779 0, notify_capability,
2780 notify_interval, notify_ie,
2781 notify_ielen, notify_signal,
2787 cfg80211_put_bss(wiphy, bss);
2792 static struct brcmf_bss_info_le *
2793 next_bss_le(struct brcmf_scan_results *list, struct brcmf_bss_info_le *bss)
2796 return list->bss_info_le;
2797 return (struct brcmf_bss_info_le *)((unsigned long)bss +
2798 le32_to_cpu(bss->length));
2801 static s32 brcmf_inform_bss(struct brcmf_cfg80211_info *cfg)
2803 struct brcmf_scan_results *bss_list;
2804 struct brcmf_bss_info_le *bi = NULL; /* must be initialized */
2808 bss_list = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
2809 if (bss_list->count != 0 &&
2810 bss_list->version != BRCMF_BSS_INFO_VERSION) {
2811 brcmf_err("Version %d != WL_BSS_INFO_VERSION\n",
2815 brcmf_dbg(SCAN, "scanned AP count (%d)\n", bss_list->count);
2816 for (i = 0; i < bss_list->count; i++) {
2817 bi = next_bss_le(bss_list, bi);
2818 err = brcmf_inform_single_bss(cfg, bi);
2825 static s32 brcmf_inform_ibss(struct brcmf_cfg80211_info *cfg,
2826 struct net_device *ndev, const u8 *bssid)
2828 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2829 struct ieee80211_channel *notify_channel;
2830 struct brcmf_bss_info_le *bi = NULL;
2831 struct ieee80211_supported_band *band;
2832 struct cfg80211_bss *bss;
2833 struct brcmu_chan ch;
2837 u16 notify_capability;
2838 u16 notify_interval;
2840 size_t notify_ielen;
2843 brcmf_dbg(TRACE, "Enter\n");
2845 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2851 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
2853 err = brcmf_fil_cmd_data_get(netdev_priv(ndev), BRCMF_C_GET_BSS_INFO,
2854 buf, WL_BSS_INFO_MAX);
2856 brcmf_err("WLC_GET_BSS_INFO failed: %d\n", err);
2860 bi = (struct brcmf_bss_info_le *)(buf + 4);
2862 ch.chspec = le16_to_cpu(bi->chanspec);
2863 cfg->d11inf.decchspec(&ch);
2865 if (ch.band == BRCMU_CHAN_BAND_2G)
2866 band = wiphy->bands[NL80211_BAND_2GHZ];
2868 band = wiphy->bands[NL80211_BAND_5GHZ];
2870 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
2871 cfg->channel = freq;
2872 notify_channel = ieee80211_get_channel(wiphy, freq);
2874 notify_capability = le16_to_cpu(bi->capability);
2875 notify_interval = le16_to_cpu(bi->beacon_period);
2876 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2877 notify_ielen = le32_to_cpu(bi->ie_length);
2878 notify_signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2880 brcmf_dbg(CONN, "channel: %d(%d)\n", ch.control_ch_num, freq);
2881 brcmf_dbg(CONN, "capability: %X\n", notify_capability);
2882 brcmf_dbg(CONN, "beacon interval: %d\n", notify_interval);
2883 brcmf_dbg(CONN, "signal: %d\n", notify_signal);
2885 bss = cfg80211_inform_bss(wiphy, notify_channel,
2886 CFG80211_BSS_FTYPE_UNKNOWN, bssid, 0,
2887 notify_capability, notify_interval,
2888 notify_ie, notify_ielen, notify_signal,
2896 cfg80211_put_bss(wiphy, bss);
2902 brcmf_dbg(TRACE, "Exit\n");
2907 static s32 brcmf_update_bss_info(struct brcmf_cfg80211_info *cfg,
2908 struct brcmf_if *ifp)
2910 struct brcmf_bss_info_le *bi;
2911 const struct brcmf_tlv *tim;
2912 u16 beacon_interval;
2918 brcmf_dbg(TRACE, "Enter\n");
2919 if (brcmf_is_ibssmode(ifp->vif))
2922 *(__le32 *)cfg->extra_buf = cpu_to_le32(WL_EXTRA_BUF_MAX);
2923 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
2924 cfg->extra_buf, WL_EXTRA_BUF_MAX);
2926 brcmf_err("Could not get bss info %d\n", err);
2927 goto update_bss_info_out;
2930 bi = (struct brcmf_bss_info_le *)(cfg->extra_buf + 4);
2931 err = brcmf_inform_single_bss(cfg, bi);
2933 goto update_bss_info_out;
2935 ie = ((u8 *)bi) + le16_to_cpu(bi->ie_offset);
2936 ie_len = le32_to_cpu(bi->ie_length);
2937 beacon_interval = le16_to_cpu(bi->beacon_period);
2939 tim = brcmf_parse_tlvs(ie, ie_len, WLAN_EID_TIM);
2941 dtim_period = tim->data[1];
2944 * active scan was done so we could not get dtim
2945 * information out of probe response.
2946 * so we speficially query dtim information to dongle.
2949 err = brcmf_fil_iovar_int_get(ifp, "dtim_assoc", &var);
2951 brcmf_err("wl dtim_assoc failed (%d)\n", err);
2952 goto update_bss_info_out;
2954 dtim_period = (u8)var;
2957 update_bss_info_out:
2958 brcmf_dbg(TRACE, "Exit");
2962 void brcmf_abort_scanning(struct brcmf_cfg80211_info *cfg)
2964 struct escan_info *escan = &cfg->escan_info;
2966 set_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
2967 if (cfg->scan_request) {
2968 escan->escan_state = WL_ESCAN_STATE_IDLE;
2969 brcmf_notify_escan_complete(cfg, escan->ifp, true, true);
2971 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
2972 clear_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
2975 static void brcmf_cfg80211_escan_timeout_worker(struct work_struct *work)
2977 struct brcmf_cfg80211_info *cfg =
2978 container_of(work, struct brcmf_cfg80211_info,
2979 escan_timeout_work);
2981 brcmf_inform_bss(cfg);
2982 brcmf_notify_escan_complete(cfg, cfg->escan_info.ifp, true, true);
2985 static void brcmf_escan_timeout(unsigned long data)
2987 struct brcmf_cfg80211_info *cfg =
2988 (struct brcmf_cfg80211_info *)data;
2990 if (cfg->scan_request) {
2991 brcmf_err("timer expired\n");
2992 schedule_work(&cfg->escan_timeout_work);
2997 brcmf_compare_update_same_bss(struct brcmf_cfg80211_info *cfg,
2998 struct brcmf_bss_info_le *bss,
2999 struct brcmf_bss_info_le *bss_info_le)
3001 struct brcmu_chan ch_bss, ch_bss_info_le;
3003 ch_bss.chspec = le16_to_cpu(bss->chanspec);
3004 cfg->d11inf.decchspec(&ch_bss);
3005 ch_bss_info_le.chspec = le16_to_cpu(bss_info_le->chanspec);
3006 cfg->d11inf.decchspec(&ch_bss_info_le);
3008 if (!memcmp(&bss_info_le->BSSID, &bss->BSSID, ETH_ALEN) &&
3009 ch_bss.band == ch_bss_info_le.band &&
3010 bss_info_le->SSID_len == bss->SSID_len &&
3011 !memcmp(bss_info_le->SSID, bss->SSID, bss_info_le->SSID_len)) {
3012 if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) ==
3013 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL)) {
3014 s16 bss_rssi = le16_to_cpu(bss->RSSI);
3015 s16 bss_info_rssi = le16_to_cpu(bss_info_le->RSSI);
3017 /* preserve max RSSI if the measurements are
3018 * both on-channel or both off-channel
3020 if (bss_info_rssi > bss_rssi)
3021 bss->RSSI = bss_info_le->RSSI;
3022 } else if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) &&
3023 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL) == 0) {
3024 /* preserve the on-channel rssi measurement
3025 * if the new measurement is off channel
3027 bss->RSSI = bss_info_le->RSSI;
3028 bss->flags |= BRCMF_BSS_RSSI_ON_CHANNEL;
3036 brcmf_cfg80211_escan_handler(struct brcmf_if *ifp,
3037 const struct brcmf_event_msg *e, void *data)
3039 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3041 struct brcmf_escan_result_le *escan_result_le;
3042 struct brcmf_bss_info_le *bss_info_le;
3043 struct brcmf_bss_info_le *bss = NULL;
3045 struct brcmf_scan_results *list;
3051 if (!test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3052 brcmf_err("scan not ready, bsscfgidx=%d\n", ifp->bsscfgidx);
3056 if (status == BRCMF_E_STATUS_PARTIAL) {
3057 brcmf_dbg(SCAN, "ESCAN Partial result\n");
3058 escan_result_le = (struct brcmf_escan_result_le *) data;
3059 if (!escan_result_le) {
3060 brcmf_err("Invalid escan result (NULL pointer)\n");
3063 if (le16_to_cpu(escan_result_le->bss_count) != 1) {
3064 brcmf_err("Invalid bss_count %d: ignoring\n",
3065 escan_result_le->bss_count);
3068 bss_info_le = &escan_result_le->bss_info_le;
3070 if (brcmf_p2p_scan_finding_common_channel(cfg, bss_info_le))
3073 if (!cfg->scan_request) {
3074 brcmf_dbg(SCAN, "result without cfg80211 request\n");
3078 bi_length = le32_to_cpu(bss_info_le->length);
3079 if (bi_length != (le32_to_cpu(escan_result_le->buflen) -
3080 WL_ESCAN_RESULTS_FIXED_SIZE)) {
3081 brcmf_err("Invalid bss_info length %d: ignoring\n",
3086 if (!(cfg_to_wiphy(cfg)->interface_modes &
3087 BIT(NL80211_IFTYPE_ADHOC))) {
3088 if (le16_to_cpu(bss_info_le->capability) &
3089 WLAN_CAPABILITY_IBSS) {
3090 brcmf_err("Ignoring IBSS result\n");
3095 list = (struct brcmf_scan_results *)
3096 cfg->escan_info.escan_buf;
3097 if (bi_length > BRCMF_ESCAN_BUF_SIZE - list->buflen) {
3098 brcmf_err("Buffer is too small: ignoring\n");
3102 for (i = 0; i < list->count; i++) {
3103 bss = bss ? (struct brcmf_bss_info_le *)
3104 ((unsigned char *)bss +
3105 le32_to_cpu(bss->length)) : list->bss_info_le;
3106 if (brcmf_compare_update_same_bss(cfg, bss,
3110 memcpy(&cfg->escan_info.escan_buf[list->buflen], bss_info_le,
3112 list->version = le32_to_cpu(bss_info_le->version);
3113 list->buflen += bi_length;
3116 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3117 if (brcmf_p2p_scan_finding_common_channel(cfg, NULL))
3119 if (cfg->scan_request) {
3120 brcmf_inform_bss(cfg);
3121 aborted = status != BRCMF_E_STATUS_SUCCESS;
3122 brcmf_notify_escan_complete(cfg, ifp, aborted, false);
3124 brcmf_dbg(SCAN, "Ignored scan complete result 0x%x\n",
3131 static void brcmf_init_escan(struct brcmf_cfg80211_info *cfg)
3133 brcmf_fweh_register(cfg->pub, BRCMF_E_ESCAN_RESULT,
3134 brcmf_cfg80211_escan_handler);
3135 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3136 /* Init scan_timeout timer */
3137 init_timer(&cfg->escan_timeout);
3138 cfg->escan_timeout.data = (unsigned long) cfg;
3139 cfg->escan_timeout.function = brcmf_escan_timeout;
3140 INIT_WORK(&cfg->escan_timeout_work,
3141 brcmf_cfg80211_escan_timeout_worker);
3144 /* PFN result doesn't have all the info which are required by the supplicant
3145 * (For e.g IEs) Do a target Escan so that sched scan results are reported
3146 * via wl_inform_single_bss in the required format. Escan does require the
3147 * scan request in the form of cfg80211_scan_request. For timebeing, create
3148 * cfg80211_scan_request one out of the received PNO event.
3151 brcmf_notify_sched_scan_results(struct brcmf_if *ifp,
3152 const struct brcmf_event_msg *e, void *data)
3154 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3155 struct brcmf_pno_net_info_le *netinfo, *netinfo_start;
3156 struct cfg80211_scan_request *request = NULL;
3157 struct cfg80211_ssid *ssid = NULL;
3158 struct ieee80211_channel *channel = NULL;
3159 struct wiphy *wiphy = cfg_to_wiphy(cfg);
3161 int channel_req = 0;
3163 struct brcmf_pno_scanresults_le *pfn_result;
3167 brcmf_dbg(SCAN, "Enter\n");
3169 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3170 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3174 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3175 brcmf_dbg(SCAN, "PFN NET LOST event. Do Nothing\n");
3179 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3180 result_count = le32_to_cpu(pfn_result->count);
3181 status = le32_to_cpu(pfn_result->status);
3183 /* PFN event is limited to fit 512 bytes so we may get
3184 * multiple NET_FOUND events. For now place a warning here.
3186 WARN_ON(status != BRCMF_PNO_SCAN_COMPLETE);
3187 brcmf_dbg(SCAN, "PFN NET FOUND event. count: %d\n", result_count);
3188 if (result_count > 0) {
3191 request = kzalloc(sizeof(*request), GFP_KERNEL);
3192 ssid = kcalloc(result_count, sizeof(*ssid), GFP_KERNEL);
3193 channel = kcalloc(result_count, sizeof(*channel), GFP_KERNEL);
3194 if (!request || !ssid || !channel) {
3199 request->wiphy = wiphy;
3200 data += sizeof(struct brcmf_pno_scanresults_le);
3201 netinfo_start = (struct brcmf_pno_net_info_le *)data;
3203 for (i = 0; i < result_count; i++) {
3204 netinfo = &netinfo_start[i];
3206 brcmf_err("Invalid netinfo ptr. index: %d\n",
3212 brcmf_dbg(SCAN, "SSID:%s Channel:%d\n",
3213 netinfo->SSID, netinfo->channel);
3214 memcpy(ssid[i].ssid, netinfo->SSID, netinfo->SSID_len);
3215 ssid[i].ssid_len = netinfo->SSID_len;
3218 channel_req = netinfo->channel;
3219 if (channel_req <= CH_MAX_2G_CHANNEL)
3220 band = NL80211_BAND_2GHZ;
3222 band = NL80211_BAND_5GHZ;
3223 channel[i].center_freq =
3224 ieee80211_channel_to_frequency(channel_req,
3226 channel[i].band = band;
3227 channel[i].flags |= IEEE80211_CHAN_NO_HT40;
3228 request->channels[i] = &channel[i];
3229 request->n_channels++;
3232 /* assign parsed ssid array */
3233 if (request->n_ssids)
3234 request->ssids = &ssid[0];
3236 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3237 /* Abort any on-going scan */
3238 brcmf_abort_scanning(cfg);
3241 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3242 cfg->escan_info.run = brcmf_run_escan;
3243 err = brcmf_do_escan(cfg, wiphy, ifp, request);
3245 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3248 cfg->sched_escan = true;
3249 cfg->scan_request = request;
3251 brcmf_err("FALSE PNO Event. (pfn_count == 0)\n");
3264 cfg80211_sched_scan_stopped(wiphy);
3268 static int brcmf_dev_pno_clean(struct net_device *ndev)
3273 ret = brcmf_fil_iovar_int_set(netdev_priv(ndev), "pfn", 0);
3276 ret = brcmf_fil_iovar_data_set(netdev_priv(ndev), "pfnclear",
3280 brcmf_err("failed code %d\n", ret);
3285 static int brcmf_dev_pno_config(struct brcmf_if *ifp,
3286 struct cfg80211_sched_scan_request *request)
3288 struct brcmf_pno_param_le pfn_param;
3289 struct brcmf_pno_macaddr_le pfn_mac;
3294 memset(&pfn_param, 0, sizeof(pfn_param));
3295 pfn_param.version = cpu_to_le32(BRCMF_PNO_VERSION);
3297 /* set extra pno params */
3298 pfn_param.flags = cpu_to_le16(1 << BRCMF_PNO_ENABLE_ADAPTSCAN_BIT);
3299 pfn_param.repeat = BRCMF_PNO_REPEAT;
3300 pfn_param.exp = BRCMF_PNO_FREQ_EXPO_MAX;
3302 /* set up pno scan fr */
3303 pfn_param.scan_freq = cpu_to_le32(BRCMF_PNO_TIME);
3305 err = brcmf_fil_iovar_data_set(ifp, "pfn_set", &pfn_param,
3308 brcmf_err("pfn_set failed, err=%d\n", err);
3312 /* Find out if mac randomization should be turned on */
3313 if (!(request->flags & NL80211_SCAN_FLAG_RANDOM_ADDR))
3316 pfn_mac.version = BRCMF_PFN_MACADDR_CFG_VER;
3317 pfn_mac.flags = BRCMF_PFN_MAC_OUI_ONLY | BRCMF_PFN_SET_MAC_UNASSOC;
3319 memcpy(pfn_mac.mac, request->mac_addr, ETH_ALEN);
3320 mac_mask = request->mac_addr_mask;
3321 for (i = 0; i < ETH_ALEN; i++) {
3322 pfn_mac.mac[i] &= mac_mask[i];
3323 pfn_mac.mac[i] |= get_random_int() & ~(mac_mask[i]);
3325 /* Clear multi bit */
3326 pfn_mac.mac[0] &= 0xFE;
3327 /* Set locally administered */
3328 pfn_mac.mac[0] |= 0x02;
3330 err = brcmf_fil_iovar_data_set(ifp, "pfn_macaddr", &pfn_mac,
3333 brcmf_err("pfn_macaddr failed, err=%d\n", err);
3339 brcmf_cfg80211_sched_scan_start(struct wiphy *wiphy,
3340 struct net_device *ndev,
3341 struct cfg80211_sched_scan_request *request)
3343 struct brcmf_if *ifp = netdev_priv(ndev);
3344 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
3345 struct brcmf_pno_net_param_le pfn;
3349 brcmf_dbg(SCAN, "Enter n_match_sets:%d n_ssids:%d\n",
3350 request->n_match_sets, request->n_ssids);
3351 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3352 brcmf_err("Scanning already: status (%lu)\n", cfg->scan_status);
3355 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
3356 brcmf_err("Scanning suppressed: status (%lu)\n",
3361 if (!request->n_ssids || !request->n_match_sets) {
3362 brcmf_dbg(SCAN, "Invalid sched scan req!! n_ssids:%d\n",
3367 if (request->n_ssids > 0) {
3368 for (i = 0; i < request->n_ssids; i++) {
3369 /* Active scan req for ssids */
3370 brcmf_dbg(SCAN, ">>> Active scan req for ssid (%s)\n",
3371 request->ssids[i].ssid);
3373 /* match_set ssids is a supert set of n_ssid list,
3374 * so we need not add these set separately.
3379 if (request->n_match_sets > 0) {
3380 /* clean up everything */
3381 ret = brcmf_dev_pno_clean(ndev);
3383 brcmf_err("failed error=%d\n", ret);
3388 if (brcmf_dev_pno_config(ifp, request))
3391 /* configure each match set */
3392 for (i = 0; i < request->n_match_sets; i++) {
3393 struct cfg80211_ssid *ssid;
3396 ssid = &request->match_sets[i].ssid;
3397 ssid_len = ssid->ssid_len;
3400 brcmf_err("skip broadcast ssid\n");
3403 pfn.auth = cpu_to_le32(WLAN_AUTH_OPEN);
3404 pfn.wpa_auth = cpu_to_le32(BRCMF_PNO_WPA_AUTH_ANY);
3405 pfn.wsec = cpu_to_le32(0);
3406 pfn.infra = cpu_to_le32(1);
3407 pfn.flags = cpu_to_le32(1 << BRCMF_PNO_HIDDEN_BIT);
3408 pfn.ssid.SSID_len = cpu_to_le32(ssid_len);
3409 memcpy(pfn.ssid.SSID, ssid->ssid, ssid_len);
3410 ret = brcmf_fil_iovar_data_set(ifp, "pfn_add", &pfn,
3412 brcmf_dbg(SCAN, ">>> PNO filter %s for ssid (%s)\n",
3413 ret == 0 ? "set" : "failed", ssid->ssid);
3415 /* Enable the PNO */
3416 if (brcmf_fil_iovar_int_set(ifp, "pfn", 1) < 0) {
3417 brcmf_err("PNO enable failed!! ret=%d\n", ret);
3427 static int brcmf_cfg80211_sched_scan_stop(struct wiphy *wiphy,
3428 struct net_device *ndev)
3430 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3432 brcmf_dbg(SCAN, "enter\n");
3433 brcmf_dev_pno_clean(ndev);
3434 if (cfg->sched_escan)
3435 brcmf_notify_escan_complete(cfg, netdev_priv(ndev), true, true);
3439 static __always_inline void brcmf_delay(u32 ms)
3441 if (ms < 1000 / HZ) {
3449 static s32 brcmf_config_wowl_pattern(struct brcmf_if *ifp, u8 cmd[4],
3450 u8 *pattern, u32 patternsize, u8 *mask,
3453 struct brcmf_fil_wowl_pattern_le *filter;
3460 masksize = (patternsize + 7) / 8;
3461 patternoffset = sizeof(*filter) - sizeof(filter->cmd) + masksize;
3463 bufsize = sizeof(*filter) + patternsize + masksize;
3464 buf = kzalloc(bufsize, GFP_KERNEL);
3467 filter = (struct brcmf_fil_wowl_pattern_le *)buf;
3469 memcpy(filter->cmd, cmd, 4);
3470 filter->masksize = cpu_to_le32(masksize);
3471 filter->offset = cpu_to_le32(packet_offset);
3472 filter->patternoffset = cpu_to_le32(patternoffset);
3473 filter->patternsize = cpu_to_le32(patternsize);
3474 filter->type = cpu_to_le32(BRCMF_WOWL_PATTERN_TYPE_BITMAP);
3476 if ((mask) && (masksize))
3477 memcpy(buf + sizeof(*filter), mask, masksize);
3478 if ((pattern) && (patternsize))
3479 memcpy(buf + sizeof(*filter) + masksize, pattern, patternsize);
3481 ret = brcmf_fil_iovar_data_set(ifp, "wowl_pattern", buf, bufsize);
3488 brcmf_wowl_nd_results(struct brcmf_if *ifp, const struct brcmf_event_msg *e,
3491 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3492 struct brcmf_pno_scanresults_le *pfn_result;
3493 struct brcmf_pno_net_info_le *netinfo;
3495 brcmf_dbg(SCAN, "Enter\n");
3497 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3498 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3502 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3504 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3505 brcmf_dbg(SCAN, "PFN NET LOST event. Ignore\n");
3509 if (le32_to_cpu(pfn_result->count) < 1) {
3510 brcmf_err("Invalid result count, expected 1 (%d)\n",
3511 le32_to_cpu(pfn_result->count));
3515 data += sizeof(struct brcmf_pno_scanresults_le);
3516 netinfo = (struct brcmf_pno_net_info_le *)data;
3517 memcpy(cfg->wowl.nd->ssid.ssid, netinfo->SSID, netinfo->SSID_len);
3518 cfg->wowl.nd->ssid.ssid_len = netinfo->SSID_len;
3519 cfg->wowl.nd->n_channels = 1;
3520 cfg->wowl.nd->channels[0] =
3521 ieee80211_channel_to_frequency(netinfo->channel,
3522 netinfo->channel <= CH_MAX_2G_CHANNEL ?
3523 NL80211_BAND_2GHZ : NL80211_BAND_5GHZ);
3524 cfg->wowl.nd_info->n_matches = 1;
3525 cfg->wowl.nd_info->matches[0] = cfg->wowl.nd;
3527 /* Inform (the resume task) that the net detect information was recvd */
3528 cfg->wowl.nd_data_completed = true;
3529 wake_up(&cfg->wowl.nd_data_wait);
3536 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3538 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3539 struct brcmf_wowl_wakeind_le wake_ind_le;
3540 struct cfg80211_wowlan_wakeup wakeup_data;
3541 struct cfg80211_wowlan_wakeup *wakeup;
3546 err = brcmf_fil_iovar_data_get(ifp, "wowl_wakeind", &wake_ind_le,
3547 sizeof(wake_ind_le));
3549 brcmf_err("Get wowl_wakeind failed, err = %d\n", err);
3553 wakeind = le32_to_cpu(wake_ind_le.ucode_wakeind);
3554 if (wakeind & (BRCMF_WOWL_MAGIC | BRCMF_WOWL_DIS | BRCMF_WOWL_BCN |
3555 BRCMF_WOWL_RETR | BRCMF_WOWL_NET |
3556 BRCMF_WOWL_PFN_FOUND)) {
3557 wakeup = &wakeup_data;
3558 memset(&wakeup_data, 0, sizeof(wakeup_data));
3559 wakeup_data.pattern_idx = -1;
3561 if (wakeind & BRCMF_WOWL_MAGIC) {
3562 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_MAGIC\n");
3563 wakeup_data.magic_pkt = true;
3565 if (wakeind & BRCMF_WOWL_DIS) {
3566 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_DIS\n");
3567 wakeup_data.disconnect = true;
3569 if (wakeind & BRCMF_WOWL_BCN) {
3570 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_BCN\n");
3571 wakeup_data.disconnect = true;
3573 if (wakeind & BRCMF_WOWL_RETR) {
3574 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_RETR\n");
3575 wakeup_data.disconnect = true;
3577 if (wakeind & BRCMF_WOWL_NET) {
3578 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_NET\n");
3579 /* For now always map to pattern 0, no API to get
3580 * correct information available at the moment.
3582 wakeup_data.pattern_idx = 0;
3584 if (wakeind & BRCMF_WOWL_PFN_FOUND) {
3585 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_PFN_FOUND\n");
3586 timeout = wait_event_timeout(cfg->wowl.nd_data_wait,
3587 cfg->wowl.nd_data_completed,
3588 BRCMF_ND_INFO_TIMEOUT);
3590 brcmf_err("No result for wowl net detect\n");
3592 wakeup_data.net_detect = cfg->wowl.nd_info;
3594 if (wakeind & BRCMF_WOWL_GTK_FAILURE) {
3595 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_GTK_FAILURE\n");
3596 wakeup_data.gtk_rekey_failure = true;
3601 cfg80211_report_wowlan_wakeup(&ifp->vif->wdev, wakeup, GFP_KERNEL);
3606 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3610 #endif /* CONFIG_PM */
3612 static s32 brcmf_cfg80211_resume(struct wiphy *wiphy)
3614 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3615 struct net_device *ndev = cfg_to_ndev(cfg);
3616 struct brcmf_if *ifp = netdev_priv(ndev);
3618 brcmf_dbg(TRACE, "Enter\n");
3620 if (cfg->wowl.active) {
3621 brcmf_report_wowl_wakeind(wiphy, ifp);
3622 brcmf_fil_iovar_int_set(ifp, "wowl_clear", 0);
3623 brcmf_config_wowl_pattern(ifp, "clr", NULL, 0, NULL, 0);
3624 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3625 brcmf_configure_arp_nd_offload(ifp, true);
3626 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM,
3627 cfg->wowl.pre_pmmode);
3628 cfg->wowl.active = false;
3629 if (cfg->wowl.nd_enabled) {
3630 brcmf_cfg80211_sched_scan_stop(cfg->wiphy, ifp->ndev);
3631 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3632 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3633 brcmf_notify_sched_scan_results);
3634 cfg->wowl.nd_enabled = false;
3640 static void brcmf_configure_wowl(struct brcmf_cfg80211_info *cfg,
3641 struct brcmf_if *ifp,
3642 struct cfg80211_wowlan *wowl)
3647 brcmf_dbg(TRACE, "Suspend, wowl config.\n");
3649 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3650 brcmf_configure_arp_nd_offload(ifp, false);
3651 brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_PM, &cfg->wowl.pre_pmmode);
3652 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, PM_MAX);
3655 if (wowl->disconnect)
3656 wowl_config = BRCMF_WOWL_DIS | BRCMF_WOWL_BCN | BRCMF_WOWL_RETR;
3657 if (wowl->magic_pkt)
3658 wowl_config |= BRCMF_WOWL_MAGIC;
3659 if ((wowl->patterns) && (wowl->n_patterns)) {
3660 wowl_config |= BRCMF_WOWL_NET;
3661 for (i = 0; i < wowl->n_patterns; i++) {
3662 brcmf_config_wowl_pattern(ifp, "add",
3663 (u8 *)wowl->patterns[i].pattern,
3664 wowl->patterns[i].pattern_len,
3665 (u8 *)wowl->patterns[i].mask,
3666 wowl->patterns[i].pkt_offset);
3669 if (wowl->nd_config) {
3670 brcmf_cfg80211_sched_scan_start(cfg->wiphy, ifp->ndev,
3672 wowl_config |= BRCMF_WOWL_PFN_FOUND;
3674 cfg->wowl.nd_data_completed = false;
3675 cfg->wowl.nd_enabled = true;
3676 /* Now reroute the event for PFN to the wowl function. */
3677 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3678 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3679 brcmf_wowl_nd_results);
3681 if (wowl->gtk_rekey_failure)
3682 wowl_config |= BRCMF_WOWL_GTK_FAILURE;
3683 if (!test_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state))
3684 wowl_config |= BRCMF_WOWL_UNASSOC;
3686 brcmf_fil_iovar_data_set(ifp, "wowl_wakeind", "clear",
3687 sizeof(struct brcmf_wowl_wakeind_le));
3688 brcmf_fil_iovar_int_set(ifp, "wowl", wowl_config);
3689 brcmf_fil_iovar_int_set(ifp, "wowl_activate", 1);
3690 brcmf_bus_wowl_config(cfg->pub->bus_if, true);
3691 cfg->wowl.active = true;
3694 static s32 brcmf_cfg80211_suspend(struct wiphy *wiphy,
3695 struct cfg80211_wowlan *wowl)
3697 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3698 struct net_device *ndev = cfg_to_ndev(cfg);
3699 struct brcmf_if *ifp = netdev_priv(ndev);
3700 struct brcmf_cfg80211_vif *vif;
3702 brcmf_dbg(TRACE, "Enter\n");
3704 /* if the primary net_device is not READY there is nothing
3705 * we can do but pray resume goes smoothly.
3707 if (!check_vif_up(ifp->vif))
3710 /* Stop scheduled scan */
3711 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO))
3712 brcmf_cfg80211_sched_scan_stop(wiphy, ndev);
3714 /* end any scanning */
3715 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
3716 brcmf_abort_scanning(cfg);
3719 brcmf_bus_wowl_config(cfg->pub->bus_if, false);
3720 list_for_each_entry(vif, &cfg->vif_list, list) {
3721 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state))
3723 /* While going to suspend if associated with AP
3724 * disassociate from AP to save power while system is
3725 * in suspended state
3727 brcmf_link_down(vif, WLAN_REASON_UNSPECIFIED);
3728 /* Make sure WPA_Supplicant receives all the event
3729 * generated due to DISASSOC call to the fw to keep
3730 * the state fw and WPA_Supplicant state consistent
3735 brcmf_set_mpc(ifp, 1);
3738 /* Configure WOWL paramaters */
3739 brcmf_configure_wowl(cfg, ifp, wowl);
3743 brcmf_dbg(TRACE, "Exit\n");
3744 /* clear any scanning activity */
3745 cfg->scan_status = 0;
3750 brcmf_update_pmklist(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp)
3752 struct brcmf_pmk_list_le *pmk_list;
3757 pmk_list = &cfg->pmk_list;
3758 npmk = le32_to_cpu(pmk_list->npmk);
3760 brcmf_dbg(CONN, "No of elements %d\n", npmk);
3761 for (i = 0; i < npmk; i++)
3762 brcmf_dbg(CONN, "PMK[%d]: %pM\n", i, &pmk_list->pmk[i].bssid);
3764 err = brcmf_fil_iovar_data_set(ifp, "pmkid_info", pmk_list,
3771 brcmf_cfg80211_set_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3772 struct cfg80211_pmksa *pmksa)
3774 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3775 struct brcmf_if *ifp = netdev_priv(ndev);
3776 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3780 brcmf_dbg(TRACE, "Enter\n");
3781 if (!check_vif_up(ifp->vif))
3784 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3785 for (i = 0; i < npmk; i++)
3786 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3788 if (i < BRCMF_MAXPMKID) {
3789 memcpy(pmk[i].bssid, pmksa->bssid, ETH_ALEN);
3790 memcpy(pmk[i].pmkid, pmksa->pmkid, WLAN_PMKID_LEN);
3793 cfg->pmk_list.npmk = cpu_to_le32(npmk);
3796 brcmf_err("Too many PMKSA entries cached %d\n", npmk);
3800 brcmf_dbg(CONN, "set_pmksa - PMK bssid: %pM =\n", pmk[npmk].bssid);
3801 for (i = 0; i < WLAN_PMKID_LEN; i += 4)
3802 brcmf_dbg(CONN, "%02x %02x %02x %02x\n", pmk[npmk].pmkid[i],
3803 pmk[npmk].pmkid[i + 1], pmk[npmk].pmkid[i + 2],
3804 pmk[npmk].pmkid[i + 3]);
3806 err = brcmf_update_pmklist(cfg, ifp);
3808 brcmf_dbg(TRACE, "Exit\n");
3813 brcmf_cfg80211_del_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3814 struct cfg80211_pmksa *pmksa)
3816 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3817 struct brcmf_if *ifp = netdev_priv(ndev);
3818 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3822 brcmf_dbg(TRACE, "Enter\n");
3823 if (!check_vif_up(ifp->vif))
3826 brcmf_dbg(CONN, "del_pmksa - PMK bssid = %pM\n", &pmksa->bssid);
3828 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3829 for (i = 0; i < npmk; i++)
3830 if (!memcmp(&pmksa->bssid, &pmk[i].bssid, ETH_ALEN))
3833 if ((npmk > 0) && (i < npmk)) {
3834 for (; i < (npmk - 1); i++) {
3835 memcpy(&pmk[i].bssid, &pmk[i + 1].bssid, ETH_ALEN);
3836 memcpy(&pmk[i].pmkid, &pmk[i + 1].pmkid,
3839 memset(&pmk[i], 0, sizeof(*pmk));
3840 cfg->pmk_list.npmk = cpu_to_le32(npmk - 1);
3842 brcmf_err("Cache entry not found\n");
3846 err = brcmf_update_pmklist(cfg, ifp);
3848 brcmf_dbg(TRACE, "Exit\n");
3854 brcmf_cfg80211_flush_pmksa(struct wiphy *wiphy, struct net_device *ndev)
3856 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3857 struct brcmf_if *ifp = netdev_priv(ndev);
3860 brcmf_dbg(TRACE, "Enter\n");
3861 if (!check_vif_up(ifp->vif))
3864 memset(&cfg->pmk_list, 0, sizeof(cfg->pmk_list));
3865 err = brcmf_update_pmklist(cfg, ifp);
3867 brcmf_dbg(TRACE, "Exit\n");
3872 static s32 brcmf_configure_opensecurity(struct brcmf_if *ifp)
3877 err = brcmf_fil_bsscfg_int_set(ifp, "auth", 0);
3879 brcmf_err("auth error %d\n", err);
3883 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", 0);
3885 brcmf_err("wsec error %d\n", err);
3888 /* set upper-layer auth */
3889 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", WPA_AUTH_NONE);
3891 brcmf_err("wpa_auth error %d\n", err);
3898 static bool brcmf_valid_wpa_oui(u8 *oui, bool is_rsn_ie)
3901 return (memcmp(oui, RSN_OUI, TLV_OUI_LEN) == 0);
3903 return (memcmp(oui, WPA_OUI, TLV_OUI_LEN) == 0);
3907 brcmf_configure_wpaie(struct brcmf_if *ifp,
3908 const struct brcmf_vs_tlv *wpa_ie,
3911 u32 auth = 0; /* d11 open authentication */
3923 u32 wme_bss_disable;
3926 brcmf_dbg(TRACE, "Enter\n");
3930 len = wpa_ie->len + TLV_HDR_LEN;
3931 data = (u8 *)wpa_ie;
3932 offset = TLV_HDR_LEN;
3934 offset += VS_IE_FIXED_HDR_LEN;
3936 offset += WPA_IE_VERSION_LEN;
3938 /* check for multicast cipher suite */
3939 if (offset + WPA_IE_MIN_OUI_LEN > len) {
3941 brcmf_err("no multicast cipher suite\n");
3945 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
3947 brcmf_err("ivalid OUI\n");
3950 offset += TLV_OUI_LEN;
3952 /* pick up multicast cipher */
3953 switch (data[offset]) {
3954 case WPA_CIPHER_NONE:
3957 case WPA_CIPHER_WEP_40:
3958 case WPA_CIPHER_WEP_104:
3961 case WPA_CIPHER_TKIP:
3962 gval = TKIP_ENABLED;
3964 case WPA_CIPHER_AES_CCM:
3969 brcmf_err("Invalid multi cast cipher info\n");
3974 /* walk thru unicast cipher list and pick up what we recognize */
3975 count = data[offset] + (data[offset + 1] << 8);
3976 offset += WPA_IE_SUITE_COUNT_LEN;
3977 /* Check for unicast suite(s) */
3978 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
3980 brcmf_err("no unicast cipher suite\n");
3983 for (i = 0; i < count; i++) {
3984 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
3986 brcmf_err("ivalid OUI\n");
3989 offset += TLV_OUI_LEN;
3990 switch (data[offset]) {
3991 case WPA_CIPHER_NONE:
3993 case WPA_CIPHER_WEP_40:
3994 case WPA_CIPHER_WEP_104:
3995 pval |= WEP_ENABLED;
3997 case WPA_CIPHER_TKIP:
3998 pval |= TKIP_ENABLED;
4000 case WPA_CIPHER_AES_CCM:
4001 pval |= AES_ENABLED;
4004 brcmf_err("Ivalid unicast security info\n");
4008 /* walk thru auth management suite list and pick up what we recognize */
4009 count = data[offset] + (data[offset + 1] << 8);
4010 offset += WPA_IE_SUITE_COUNT_LEN;
4011 /* Check for auth key management suite(s) */
4012 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
4014 brcmf_err("no auth key mgmt suite\n");
4017 for (i = 0; i < count; i++) {
4018 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
4020 brcmf_err("ivalid OUI\n");
4023 offset += TLV_OUI_LEN;
4024 switch (data[offset]) {
4026 brcmf_dbg(TRACE, "RSN_AKM_NONE\n");
4027 wpa_auth |= WPA_AUTH_NONE;
4029 case RSN_AKM_UNSPECIFIED:
4030 brcmf_dbg(TRACE, "RSN_AKM_UNSPECIFIED\n");
4031 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_UNSPECIFIED) :
4032 (wpa_auth |= WPA_AUTH_UNSPECIFIED);
4035 brcmf_dbg(TRACE, "RSN_AKM_PSK\n");
4036 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_PSK) :
4037 (wpa_auth |= WPA_AUTH_PSK);
4039 case RSN_AKM_SHA256_PSK:
4040 brcmf_dbg(TRACE, "RSN_AKM_MFP_PSK\n");
4041 wpa_auth |= WPA2_AUTH_PSK_SHA256;
4043 case RSN_AKM_SHA256_1X:
4044 brcmf_dbg(TRACE, "RSN_AKM_MFP_1X\n");
4045 wpa_auth |= WPA2_AUTH_1X_SHA256;
4048 brcmf_err("Ivalid key mgmt info\n");
4053 mfp = BRCMF_MFP_NONE;
4055 wme_bss_disable = 1;
4056 if ((offset + RSN_CAP_LEN) <= len) {
4057 rsn_cap = data[offset] + (data[offset + 1] << 8);
4058 if (rsn_cap & RSN_CAP_PTK_REPLAY_CNTR_MASK)
4059 wme_bss_disable = 0;
4060 if (rsn_cap & RSN_CAP_MFPR_MASK) {
4061 brcmf_dbg(TRACE, "MFP Required\n");
4062 mfp = BRCMF_MFP_REQUIRED;
4063 /* Firmware only supports mfp required in
4064 * combination with WPA2_AUTH_PSK_SHA256 or
4065 * WPA2_AUTH_1X_SHA256.
4067 if (!(wpa_auth & (WPA2_AUTH_PSK_SHA256 |
4068 WPA2_AUTH_1X_SHA256))) {
4072 /* Firmware has requirement that WPA2_AUTH_PSK/
4073 * WPA2_AUTH_UNSPECIFIED be set, if SHA256 OUI
4074 * is to be included in the rsn ie.
4076 if (wpa_auth & WPA2_AUTH_PSK_SHA256)
4077 wpa_auth |= WPA2_AUTH_PSK;
4078 else if (wpa_auth & WPA2_AUTH_1X_SHA256)
4079 wpa_auth |= WPA2_AUTH_UNSPECIFIED;
4080 } else if (rsn_cap & RSN_CAP_MFPC_MASK) {
4081 brcmf_dbg(TRACE, "MFP Capable\n");
4082 mfp = BRCMF_MFP_CAPABLE;
4085 offset += RSN_CAP_LEN;
4086 /* set wme_bss_disable to sync RSN Capabilities */
4087 err = brcmf_fil_bsscfg_int_set(ifp, "wme_bss_disable",
4090 brcmf_err("wme_bss_disable error %d\n", err);
4094 /* Skip PMKID cnt as it is know to be 0 for AP. */
4095 offset += RSN_PMKID_COUNT_LEN;
4097 /* See if there is BIP wpa suite left for MFP */
4098 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP) &&
4099 ((offset + WPA_IE_MIN_OUI_LEN) <= len)) {
4100 err = brcmf_fil_bsscfg_data_set(ifp, "bip",
4102 WPA_IE_MIN_OUI_LEN);
4104 brcmf_err("bip error %d\n", err);
4109 /* FOR WPS , set SES_OW_ENABLED */
4110 wsec = (pval | gval | SES_OW_ENABLED);
4113 err = brcmf_fil_bsscfg_int_set(ifp, "auth", auth);
4115 brcmf_err("auth error %d\n", err);
4119 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
4121 brcmf_err("wsec error %d\n", err);
4124 /* Configure MFP, this needs to go after wsec otherwise the wsec command
4125 * will overwrite the values set by MFP
4127 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP)) {
4128 err = brcmf_fil_bsscfg_int_set(ifp, "mfp", mfp);
4130 brcmf_err("mfp error %d\n", err);
4134 /* set upper-layer auth */
4135 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", wpa_auth);
4137 brcmf_err("wpa_auth error %d\n", err);
4146 brcmf_parse_vndr_ies(const u8 *vndr_ie_buf, u32 vndr_ie_len,
4147 struct parsed_vndr_ies *vndr_ies)
4149 struct brcmf_vs_tlv *vndrie;
4150 struct brcmf_tlv *ie;
4151 struct parsed_vndr_ie_info *parsed_info;
4154 remaining_len = (s32)vndr_ie_len;
4155 memset(vndr_ies, 0, sizeof(*vndr_ies));
4157 ie = (struct brcmf_tlv *)vndr_ie_buf;
4159 if (ie->id != WLAN_EID_VENDOR_SPECIFIC)
4161 vndrie = (struct brcmf_vs_tlv *)ie;
4162 /* len should be bigger than OUI length + one */
4163 if (vndrie->len < (VS_IE_FIXED_HDR_LEN - TLV_HDR_LEN + 1)) {
4164 brcmf_err("invalid vndr ie. length is too small %d\n",
4168 /* if wpa or wme ie, do not add ie */
4169 if (!memcmp(vndrie->oui, (u8 *)WPA_OUI, TLV_OUI_LEN) &&
4170 ((vndrie->oui_type == WPA_OUI_TYPE) ||
4171 (vndrie->oui_type == WME_OUI_TYPE))) {
4172 brcmf_dbg(TRACE, "Found WPA/WME oui. Do not add it\n");
4176 parsed_info = &vndr_ies->ie_info[vndr_ies->count];
4178 /* save vndr ie information */
4179 parsed_info->ie_ptr = (char *)vndrie;
4180 parsed_info->ie_len = vndrie->len + TLV_HDR_LEN;
4181 memcpy(&parsed_info->vndrie, vndrie, sizeof(*vndrie));
4185 brcmf_dbg(TRACE, "** OUI %02x %02x %02x, type 0x%02x\n",
4186 parsed_info->vndrie.oui[0],
4187 parsed_info->vndrie.oui[1],
4188 parsed_info->vndrie.oui[2],
4189 parsed_info->vndrie.oui_type);
4191 if (vndr_ies->count >= VNDR_IE_PARSE_LIMIT)
4194 remaining_len -= (ie->len + TLV_HDR_LEN);
4195 if (remaining_len <= TLV_HDR_LEN)
4198 ie = (struct brcmf_tlv *)(((u8 *)ie) + ie->len +
4205 brcmf_vndr_ie(u8 *iebuf, s32 pktflag, u8 *ie_ptr, u32 ie_len, s8 *add_del_cmd)
4208 strncpy(iebuf, add_del_cmd, VNDR_IE_CMD_LEN - 1);
4209 iebuf[VNDR_IE_CMD_LEN - 1] = '\0';
4211 put_unaligned_le32(1, &iebuf[VNDR_IE_COUNT_OFFSET]);
4213 put_unaligned_le32(pktflag, &iebuf[VNDR_IE_PKTFLAG_OFFSET]);
4215 memcpy(&iebuf[VNDR_IE_VSIE_OFFSET], ie_ptr, ie_len);
4217 return ie_len + VNDR_IE_HDR_SIZE;
4220 s32 brcmf_vif_set_mgmt_ie(struct brcmf_cfg80211_vif *vif, s32 pktflag,
4221 const u8 *vndr_ie_buf, u32 vndr_ie_len)
4223 struct brcmf_if *ifp;
4224 struct vif_saved_ie *saved_ie;
4228 u8 *mgmt_ie_buf = NULL;
4229 int mgmt_ie_buf_len;
4231 u32 del_add_ie_buf_len = 0;
4232 u32 total_ie_buf_len = 0;
4233 u32 parsed_ie_buf_len = 0;
4234 struct parsed_vndr_ies old_vndr_ies;
4235 struct parsed_vndr_ies new_vndr_ies;
4236 struct parsed_vndr_ie_info *vndrie_info;
4239 int remained_buf_len;
4244 saved_ie = &vif->saved_ie;
4246 brcmf_dbg(TRACE, "bsscfgidx %d, pktflag : 0x%02X\n", ifp->bsscfgidx,
4248 iovar_ie_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
4251 curr_ie_buf = iovar_ie_buf;
4253 case BRCMF_VNDR_IE_PRBREQ_FLAG:
4254 mgmt_ie_buf = saved_ie->probe_req_ie;
4255 mgmt_ie_len = &saved_ie->probe_req_ie_len;
4256 mgmt_ie_buf_len = sizeof(saved_ie->probe_req_ie);
4258 case BRCMF_VNDR_IE_PRBRSP_FLAG:
4259 mgmt_ie_buf = saved_ie->probe_res_ie;
4260 mgmt_ie_len = &saved_ie->probe_res_ie_len;
4261 mgmt_ie_buf_len = sizeof(saved_ie->probe_res_ie);
4263 case BRCMF_VNDR_IE_BEACON_FLAG:
4264 mgmt_ie_buf = saved_ie->beacon_ie;
4265 mgmt_ie_len = &saved_ie->beacon_ie_len;
4266 mgmt_ie_buf_len = sizeof(saved_ie->beacon_ie);
4268 case BRCMF_VNDR_IE_ASSOCREQ_FLAG:
4269 mgmt_ie_buf = saved_ie->assoc_req_ie;
4270 mgmt_ie_len = &saved_ie->assoc_req_ie_len;
4271 mgmt_ie_buf_len = sizeof(saved_ie->assoc_req_ie);
4275 brcmf_err("not suitable type\n");
4279 if (vndr_ie_len > mgmt_ie_buf_len) {
4281 brcmf_err("extra IE size too big\n");
4285 /* parse and save new vndr_ie in curr_ie_buff before comparing it */
4286 if (vndr_ie_buf && vndr_ie_len && curr_ie_buf) {
4288 brcmf_parse_vndr_ies(vndr_ie_buf, vndr_ie_len, &new_vndr_ies);
4289 for (i = 0; i < new_vndr_ies.count; i++) {
4290 vndrie_info = &new_vndr_ies.ie_info[i];
4291 memcpy(ptr + parsed_ie_buf_len, vndrie_info->ie_ptr,
4292 vndrie_info->ie_len);
4293 parsed_ie_buf_len += vndrie_info->ie_len;
4297 if (mgmt_ie_buf && *mgmt_ie_len) {
4298 if (parsed_ie_buf_len && (parsed_ie_buf_len == *mgmt_ie_len) &&
4299 (memcmp(mgmt_ie_buf, curr_ie_buf,
4300 parsed_ie_buf_len) == 0)) {
4301 brcmf_dbg(TRACE, "Previous mgmt IE equals to current IE\n");
4305 /* parse old vndr_ie */
4306 brcmf_parse_vndr_ies(mgmt_ie_buf, *mgmt_ie_len, &old_vndr_ies);
4308 /* make a command to delete old ie */
4309 for (i = 0; i < old_vndr_ies.count; i++) {
4310 vndrie_info = &old_vndr_ies.ie_info[i];
4312 brcmf_dbg(TRACE, "DEL ID : %d, Len: %d , OUI:%02x:%02x:%02x\n",
4313 vndrie_info->vndrie.id,
4314 vndrie_info->vndrie.len,
4315 vndrie_info->vndrie.oui[0],
4316 vndrie_info->vndrie.oui[1],
4317 vndrie_info->vndrie.oui[2]);
4319 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4320 vndrie_info->ie_ptr,
4321 vndrie_info->ie_len,
4323 curr_ie_buf += del_add_ie_buf_len;
4324 total_ie_buf_len += del_add_ie_buf_len;
4329 /* Add if there is any extra IE */
4330 if (mgmt_ie_buf && parsed_ie_buf_len) {
4333 remained_buf_len = mgmt_ie_buf_len;
4335 /* make a command to add new ie */
4336 for (i = 0; i < new_vndr_ies.count; i++) {
4337 vndrie_info = &new_vndr_ies.ie_info[i];
4339 /* verify remained buf size before copy data */
4340 if (remained_buf_len < (vndrie_info->vndrie.len +
4341 VNDR_IE_VSIE_OFFSET)) {
4342 brcmf_err("no space in mgmt_ie_buf: len left %d",
4346 remained_buf_len -= (vndrie_info->ie_len +
4347 VNDR_IE_VSIE_OFFSET);
4349 brcmf_dbg(TRACE, "ADDED ID : %d, Len: %d, OUI:%02x:%02x:%02x\n",
4350 vndrie_info->vndrie.id,
4351 vndrie_info->vndrie.len,
4352 vndrie_info->vndrie.oui[0],
4353 vndrie_info->vndrie.oui[1],
4354 vndrie_info->vndrie.oui[2]);
4356 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4357 vndrie_info->ie_ptr,
4358 vndrie_info->ie_len,
4361 /* save the parsed IE in wl struct */
4362 memcpy(ptr + (*mgmt_ie_len), vndrie_info->ie_ptr,
4363 vndrie_info->ie_len);
4364 *mgmt_ie_len += vndrie_info->ie_len;
4366 curr_ie_buf += del_add_ie_buf_len;
4367 total_ie_buf_len += del_add_ie_buf_len;
4370 if (total_ie_buf_len) {
4371 err = brcmf_fil_bsscfg_data_set(ifp, "vndr_ie", iovar_ie_buf,
4374 brcmf_err("vndr ie set error : %d\n", err);
4378 kfree(iovar_ie_buf);
4382 s32 brcmf_vif_clear_mgmt_ies(struct brcmf_cfg80211_vif *vif)
4385 BRCMF_VNDR_IE_PRBREQ_FLAG,
4386 BRCMF_VNDR_IE_PRBRSP_FLAG,
4387 BRCMF_VNDR_IE_BEACON_FLAG
4391 for (i = 0; i < ARRAY_SIZE(pktflags); i++)
4392 brcmf_vif_set_mgmt_ie(vif, pktflags[i], NULL, 0);
4394 memset(&vif->saved_ie, 0, sizeof(vif->saved_ie));
4399 brcmf_config_ap_mgmt_ie(struct brcmf_cfg80211_vif *vif,
4400 struct cfg80211_beacon_data *beacon)
4404 /* Set Beacon IEs to FW */
4405 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_BEACON_FLAG,
4406 beacon->tail, beacon->tail_len);
4408 brcmf_err("Set Beacon IE Failed\n");
4411 brcmf_dbg(TRACE, "Applied Vndr IEs for Beacon\n");
4413 /* Set Probe Response IEs to FW */
4414 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_PRBRSP_FLAG,
4415 beacon->proberesp_ies,
4416 beacon->proberesp_ies_len);
4418 brcmf_err("Set Probe Resp IE Failed\n");
4420 brcmf_dbg(TRACE, "Applied Vndr IEs for Probe Resp\n");
4426 brcmf_cfg80211_start_ap(struct wiphy *wiphy, struct net_device *ndev,
4427 struct cfg80211_ap_settings *settings)
4430 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4431 struct brcmf_if *ifp = netdev_priv(ndev);
4432 const struct brcmf_tlv *ssid_ie;
4433 const struct brcmf_tlv *country_ie;
4434 struct brcmf_ssid_le ssid_le;
4436 const struct brcmf_tlv *rsn_ie;
4437 const struct brcmf_vs_tlv *wpa_ie;
4438 struct brcmf_join_params join_params;
4439 enum nl80211_iftype dev_role;
4440 struct brcmf_fil_bss_enable_le bss_enable;
4445 brcmf_dbg(TRACE, "ctrlchn=%d, center=%d, bw=%d, beacon_interval=%d, dtim_period=%d,\n",
4446 settings->chandef.chan->hw_value,
4447 settings->chandef.center_freq1, settings->chandef.width,
4448 settings->beacon_interval, settings->dtim_period);
4449 brcmf_dbg(TRACE, "ssid=%s(%zu), auth_type=%d, inactivity_timeout=%d\n",
4450 settings->ssid, settings->ssid_len, settings->auth_type,
4451 settings->inactivity_timeout);
4452 dev_role = ifp->vif->wdev.iftype;
4453 mbss = ifp->vif->mbss;
4455 /* store current 11d setting */
4456 brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_REGULATORY, &ifp->vif->is_11d);
4457 country_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4458 settings->beacon.tail_len,
4460 is_11d = country_ie ? 1 : 0;
4462 memset(&ssid_le, 0, sizeof(ssid_le));
4463 if (settings->ssid == NULL || settings->ssid_len == 0) {
4464 ie_offset = DOT11_MGMT_HDR_LEN + DOT11_BCN_PRB_FIXED_LEN;
4465 ssid_ie = brcmf_parse_tlvs(
4466 (u8 *)&settings->beacon.head[ie_offset],
4467 settings->beacon.head_len - ie_offset,
4472 memcpy(ssid_le.SSID, ssid_ie->data, ssid_ie->len);
4473 ssid_le.SSID_len = cpu_to_le32(ssid_ie->len);
4474 brcmf_dbg(TRACE, "SSID is (%s) in Head\n", ssid_le.SSID);
4476 memcpy(ssid_le.SSID, settings->ssid, settings->ssid_len);
4477 ssid_le.SSID_len = cpu_to_le32((u32)settings->ssid_len);
4481 brcmf_set_mpc(ifp, 0);
4482 brcmf_configure_arp_nd_offload(ifp, false);
4485 /* find the RSN_IE */
4486 rsn_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4487 settings->beacon.tail_len, WLAN_EID_RSN);
4489 /* find the WPA_IE */
4490 wpa_ie = brcmf_find_wpaie((u8 *)settings->beacon.tail,
4491 settings->beacon.tail_len);
4493 if ((wpa_ie != NULL || rsn_ie != NULL)) {
4494 brcmf_dbg(TRACE, "WPA(2) IE is found\n");
4495 if (wpa_ie != NULL) {
4497 err = brcmf_configure_wpaie(ifp, wpa_ie, false);
4501 struct brcmf_vs_tlv *tmp_ie;
4503 tmp_ie = (struct brcmf_vs_tlv *)rsn_ie;
4506 err = brcmf_configure_wpaie(ifp, tmp_ie, true);
4511 brcmf_dbg(TRACE, "No WPA(2) IEs found\n");
4512 brcmf_configure_opensecurity(ifp);
4515 brcmf_config_ap_mgmt_ie(ifp->vif, &settings->beacon);
4518 chanspec = chandef_to_chanspec(&cfg->d11inf,
4519 &settings->chandef);
4520 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4522 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4527 if (is_11d != ifp->vif->is_11d) {
4528 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4531 brcmf_err("Regulatory Set Error, %d\n", err);
4535 if (settings->beacon_interval) {
4536 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD,
4537 settings->beacon_interval);
4539 brcmf_err("Beacon Interval Set Error, %d\n",
4544 if (settings->dtim_period) {
4545 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_DTIMPRD,
4546 settings->dtim_period);
4548 brcmf_err("DTIM Interval Set Error, %d\n", err);
4553 if ((dev_role == NL80211_IFTYPE_AP) &&
4554 ((ifp->ifidx == 0) ||
4555 !brcmf_feat_is_enabled(ifp, BRCMF_FEAT_RSDB))) {
4556 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4558 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4561 brcmf_fil_iovar_int_set(ifp, "apsta", 0);
4564 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, 1);
4566 brcmf_err("SET INFRA error %d\n", err);
4569 } else if (WARN_ON(is_11d != ifp->vif->is_11d)) {
4570 /* Multiple-BSS should use same 11d configuration */
4574 if (dev_role == NL80211_IFTYPE_AP) {
4575 if ((brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS)) && (!mbss))
4576 brcmf_fil_iovar_int_set(ifp, "mbss", 1);
4578 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 1);
4580 brcmf_err("setting AP mode failed %d\n", err);
4583 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4585 brcmf_err("BRCMF_C_UP error (%d)\n", err);
4588 /* On DOWN the firmware removes the WEP keys, reconfigure
4589 * them if they were set.
4591 brcmf_cfg80211_reconfigure_wep(ifp);
4593 memset(&join_params, 0, sizeof(join_params));
4594 /* join parameters starts with ssid */
4595 memcpy(&join_params.ssid_le, &ssid_le, sizeof(ssid_le));
4597 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4598 &join_params, sizeof(join_params));
4600 brcmf_err("SET SSID error (%d)\n", err);
4603 brcmf_dbg(TRACE, "AP mode configuration complete\n");
4605 err = brcmf_fil_bsscfg_data_set(ifp, "ssid", &ssid_le,
4608 brcmf_err("setting ssid failed %d\n", err);
4611 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4612 bss_enable.enable = cpu_to_le32(1);
4613 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4614 sizeof(bss_enable));
4616 brcmf_err("bss_enable config failed %d\n", err);
4620 brcmf_dbg(TRACE, "GO mode configuration complete\n");
4622 set_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4623 brcmf_net_setcarrier(ifp, true);
4626 if ((err) && (!mbss)) {
4627 brcmf_set_mpc(ifp, 1);
4628 brcmf_configure_arp_nd_offload(ifp, true);
4633 static int brcmf_cfg80211_stop_ap(struct wiphy *wiphy, struct net_device *ndev)
4635 struct brcmf_if *ifp = netdev_priv(ndev);
4637 struct brcmf_fil_bss_enable_le bss_enable;
4638 struct brcmf_join_params join_params;
4640 brcmf_dbg(TRACE, "Enter\n");
4642 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_AP) {
4643 /* Due to most likely deauths outstanding we sleep */
4644 /* first to make sure they get processed by fw. */
4647 if (ifp->vif->mbss) {
4648 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4652 memset(&join_params, 0, sizeof(join_params));
4653 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4654 &join_params, sizeof(join_params));
4656 brcmf_err("SET SSID error (%d)\n", err);
4657 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4659 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4660 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 0);
4662 brcmf_err("setting AP mode failed %d\n", err);
4663 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, 0);
4665 brcmf_err("setting INFRA mode failed %d\n", err);
4666 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS))
4667 brcmf_fil_iovar_int_set(ifp, "mbss", 0);
4668 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4671 brcmf_err("restoring REGULATORY setting failed %d\n",
4673 /* Bring device back up so it can be used again */
4674 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4676 brcmf_err("BRCMF_C_UP error %d\n", err);
4678 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4679 bss_enable.enable = cpu_to_le32(0);
4680 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4681 sizeof(bss_enable));
4683 brcmf_err("bss_enable config failed %d\n", err);
4685 brcmf_set_mpc(ifp, 1);
4686 brcmf_configure_arp_nd_offload(ifp, true);
4687 clear_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4688 brcmf_net_setcarrier(ifp, false);
4694 brcmf_cfg80211_change_beacon(struct wiphy *wiphy, struct net_device *ndev,
4695 struct cfg80211_beacon_data *info)
4697 struct brcmf_if *ifp = netdev_priv(ndev);
4700 brcmf_dbg(TRACE, "Enter\n");
4702 err = brcmf_config_ap_mgmt_ie(ifp->vif, info);
4708 brcmf_cfg80211_del_station(struct wiphy *wiphy, struct net_device *ndev,
4709 struct station_del_parameters *params)
4711 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4712 struct brcmf_scb_val_le scbval;
4713 struct brcmf_if *ifp = netdev_priv(ndev);
4719 brcmf_dbg(TRACE, "Enter %pM\n", params->mac);
4721 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
4722 ifp = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif->ifp;
4723 if (!check_vif_up(ifp->vif))
4726 memcpy(&scbval.ea, params->mac, ETH_ALEN);
4727 scbval.val = cpu_to_le32(params->reason_code);
4728 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCB_DEAUTHENTICATE_FOR_REASON,
4729 &scbval, sizeof(scbval));
4731 brcmf_err("SCB_DEAUTHENTICATE_FOR_REASON failed %d\n", err);
4733 brcmf_dbg(TRACE, "Exit\n");
4738 brcmf_cfg80211_change_station(struct wiphy *wiphy, struct net_device *ndev,
4739 const u8 *mac, struct station_parameters *params)
4741 struct brcmf_if *ifp = netdev_priv(ndev);
4744 brcmf_dbg(TRACE, "Enter, MAC %pM, mask 0x%04x set 0x%04x\n", mac,
4745 params->sta_flags_mask, params->sta_flags_set);
4747 /* Ignore all 00 MAC */
4748 if (is_zero_ether_addr(mac))
4751 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
4754 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED))
4755 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_AUTHORIZE,
4756 (void *)mac, ETH_ALEN);
4758 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_DEAUTHORIZE,
4759 (void *)mac, ETH_ALEN);
4761 brcmf_err("Setting SCB (de-)authorize failed, %d\n", err);
4767 brcmf_cfg80211_mgmt_frame_register(struct wiphy *wiphy,
4768 struct wireless_dev *wdev,
4769 u16 frame_type, bool reg)
4771 struct brcmf_cfg80211_vif *vif;
4774 brcmf_dbg(TRACE, "Enter, frame_type %04x, reg=%d\n", frame_type, reg);
4776 mgmt_type = (frame_type & IEEE80211_FCTL_STYPE) >> 4;
4777 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4779 vif->mgmt_rx_reg |= BIT(mgmt_type);
4781 vif->mgmt_rx_reg &= ~BIT(mgmt_type);
4786 brcmf_cfg80211_mgmt_tx(struct wiphy *wiphy, struct wireless_dev *wdev,
4787 struct cfg80211_mgmt_tx_params *params, u64 *cookie)
4789 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4790 struct ieee80211_channel *chan = params->chan;
4791 const u8 *buf = params->buf;
4792 size_t len = params->len;
4793 const struct ieee80211_mgmt *mgmt;
4794 struct brcmf_cfg80211_vif *vif;
4798 struct brcmf_fil_action_frame_le *action_frame;
4799 struct brcmf_fil_af_params_le *af_params;
4804 brcmf_dbg(TRACE, "Enter\n");
4808 mgmt = (const struct ieee80211_mgmt *)buf;
4810 if (!ieee80211_is_mgmt(mgmt->frame_control)) {
4811 brcmf_err("Driver only allows MGMT packet type\n");
4815 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4817 if (ieee80211_is_probe_resp(mgmt->frame_control)) {
4818 /* Right now the only reason to get a probe response */
4819 /* is for p2p listen response or for p2p GO from */
4820 /* wpa_supplicant. Unfortunately the probe is send */
4821 /* on primary ndev, while dongle wants it on the p2p */
4822 /* vif. Since this is only reason for a probe */
4823 /* response to be sent, the vif is taken from cfg. */
4824 /* If ever desired to send proberesp for non p2p */
4825 /* response then data should be checked for */
4826 /* "DIRECT-". Note in future supplicant will take */
4827 /* dedicated p2p wdev to do this and then this 'hack'*/
4828 /* is not needed anymore. */
4829 ie_offset = DOT11_MGMT_HDR_LEN +
4830 DOT11_BCN_PRB_FIXED_LEN;
4831 ie_len = len - ie_offset;
4832 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif)
4833 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4834 err = brcmf_vif_set_mgmt_ie(vif,
4835 BRCMF_VNDR_IE_PRBRSP_FLAG,
4838 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, true,
4840 } else if (ieee80211_is_action(mgmt->frame_control)) {
4841 af_params = kzalloc(sizeof(*af_params), GFP_KERNEL);
4842 if (af_params == NULL) {
4843 brcmf_err("unable to allocate frame\n");
4847 action_frame = &af_params->action_frame;
4848 /* Add the packet Id */
4849 action_frame->packet_id = cpu_to_le32(*cookie);
4851 memcpy(&action_frame->da[0], &mgmt->da[0], ETH_ALEN);
4852 memcpy(&af_params->bssid[0], &mgmt->bssid[0], ETH_ALEN);
4853 /* Add the length exepted for 802.11 header */
4854 action_frame->len = cpu_to_le16(len - DOT11_MGMT_HDR_LEN);
4855 /* Add the channel. Use the one specified as parameter if any or
4856 * the current one (got from the firmware) otherwise
4859 freq = chan->center_freq;
4861 brcmf_fil_cmd_int_get(vif->ifp, BRCMF_C_GET_CHANNEL,
4863 chan_nr = ieee80211_frequency_to_channel(freq);
4864 af_params->channel = cpu_to_le32(chan_nr);
4866 memcpy(action_frame->data, &buf[DOT11_MGMT_HDR_LEN],
4867 le16_to_cpu(action_frame->len));
4869 brcmf_dbg(TRACE, "Action frame, cookie=%lld, len=%d, freq=%d\n",
4870 *cookie, le16_to_cpu(action_frame->len), freq);
4872 ack = brcmf_p2p_send_action_frame(cfg, cfg_to_ndev(cfg),
4875 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, ack,
4879 brcmf_dbg(TRACE, "Unhandled, fc=%04x!!\n", mgmt->frame_control);
4880 brcmf_dbg_hex_dump(true, buf, len, "payload, len=%Zu\n", len);
4889 brcmf_cfg80211_cancel_remain_on_channel(struct wiphy *wiphy,
4890 struct wireless_dev *wdev,
4893 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4894 struct brcmf_cfg80211_vif *vif;
4897 brcmf_dbg(TRACE, "Enter p2p listen cancel\n");
4899 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4901 brcmf_err("No p2p device available for probe response\n");
4905 brcmf_p2p_cancel_remain_on_channel(vif->ifp);
4910 static int brcmf_cfg80211_crit_proto_start(struct wiphy *wiphy,
4911 struct wireless_dev *wdev,
4912 enum nl80211_crit_proto_id proto,
4915 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4916 struct brcmf_cfg80211_vif *vif;
4918 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4920 /* only DHCP support for now */
4921 if (proto != NL80211_CRIT_PROTO_DHCP)
4924 /* suppress and abort scanning */
4925 set_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
4926 brcmf_abort_scanning(cfg);
4928 return brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_DISABLED, duration);
4931 static void brcmf_cfg80211_crit_proto_stop(struct wiphy *wiphy,
4932 struct wireless_dev *wdev)
4934 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4935 struct brcmf_cfg80211_vif *vif;
4937 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4939 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
4940 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
4944 brcmf_notify_tdls_peer_event(struct brcmf_if *ifp,
4945 const struct brcmf_event_msg *e, void *data)
4947 switch (e->reason) {
4948 case BRCMF_E_REASON_TDLS_PEER_DISCOVERED:
4949 brcmf_dbg(TRACE, "TDLS Peer Discovered\n");
4951 case BRCMF_E_REASON_TDLS_PEER_CONNECTED:
4952 brcmf_dbg(TRACE, "TDLS Peer Connected\n");
4953 brcmf_proto_add_tdls_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
4955 case BRCMF_E_REASON_TDLS_PEER_DISCONNECTED:
4956 brcmf_dbg(TRACE, "TDLS Peer Disconnected\n");
4957 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
4964 static int brcmf_convert_nl80211_tdls_oper(enum nl80211_tdls_operation oper)
4969 case NL80211_TDLS_DISCOVERY_REQ:
4970 ret = BRCMF_TDLS_MANUAL_EP_DISCOVERY;
4972 case NL80211_TDLS_SETUP:
4973 ret = BRCMF_TDLS_MANUAL_EP_CREATE;
4975 case NL80211_TDLS_TEARDOWN:
4976 ret = BRCMF_TDLS_MANUAL_EP_DELETE;
4979 brcmf_err("unsupported operation: %d\n", oper);
4985 static int brcmf_cfg80211_tdls_oper(struct wiphy *wiphy,
4986 struct net_device *ndev, const u8 *peer,
4987 enum nl80211_tdls_operation oper)
4989 struct brcmf_if *ifp;
4990 struct brcmf_tdls_iovar_le info;
4993 ret = brcmf_convert_nl80211_tdls_oper(oper);
4997 ifp = netdev_priv(ndev);
4998 memset(&info, 0, sizeof(info));
4999 info.mode = (u8)ret;
5001 memcpy(info.ea, peer, ETH_ALEN);
5003 ret = brcmf_fil_iovar_data_set(ifp, "tdls_endpoint",
5004 &info, sizeof(info));
5006 brcmf_err("tdls_endpoint iovar failed: ret=%d\n", ret);
5013 brcmf_cfg80211_set_rekey_data(struct wiphy *wiphy, struct net_device *ndev,
5014 struct cfg80211_gtk_rekey_data *gtk)
5016 struct brcmf_if *ifp = netdev_priv(ndev);
5017 struct brcmf_gtk_keyinfo_le gtk_le;
5020 brcmf_dbg(TRACE, "Enter, bssidx=%d\n", ifp->bsscfgidx);
5022 memcpy(gtk_le.kck, gtk->kck, sizeof(gtk_le.kck));
5023 memcpy(gtk_le.kek, gtk->kek, sizeof(gtk_le.kek));
5024 memcpy(gtk_le.replay_counter, gtk->replay_ctr,
5025 sizeof(gtk_le.replay_counter));
5027 ret = brcmf_fil_iovar_data_set(ifp, "gtk_key_info", >k_le,
5030 brcmf_err("gtk_key_info iovar failed: ret=%d\n", ret);
5036 static struct cfg80211_ops brcmf_cfg80211_ops = {
5037 .add_virtual_intf = brcmf_cfg80211_add_iface,
5038 .del_virtual_intf = brcmf_cfg80211_del_iface,
5039 .change_virtual_intf = brcmf_cfg80211_change_iface,
5040 .scan = brcmf_cfg80211_scan,
5041 .set_wiphy_params = brcmf_cfg80211_set_wiphy_params,
5042 .join_ibss = brcmf_cfg80211_join_ibss,
5043 .leave_ibss = brcmf_cfg80211_leave_ibss,
5044 .get_station = brcmf_cfg80211_get_station,
5045 .dump_station = brcmf_cfg80211_dump_station,
5046 .set_tx_power = brcmf_cfg80211_set_tx_power,
5047 .get_tx_power = brcmf_cfg80211_get_tx_power,
5048 .add_key = brcmf_cfg80211_add_key,
5049 .del_key = brcmf_cfg80211_del_key,
5050 .get_key = brcmf_cfg80211_get_key,
5051 .set_default_key = brcmf_cfg80211_config_default_key,
5052 .set_default_mgmt_key = brcmf_cfg80211_config_default_mgmt_key,
5053 .set_power_mgmt = brcmf_cfg80211_set_power_mgmt,
5054 .connect = brcmf_cfg80211_connect,
5055 .disconnect = brcmf_cfg80211_disconnect,
5056 .suspend = brcmf_cfg80211_suspend,
5057 .resume = brcmf_cfg80211_resume,
5058 .set_pmksa = brcmf_cfg80211_set_pmksa,
5059 .del_pmksa = brcmf_cfg80211_del_pmksa,
5060 .flush_pmksa = brcmf_cfg80211_flush_pmksa,
5061 .start_ap = brcmf_cfg80211_start_ap,
5062 .stop_ap = brcmf_cfg80211_stop_ap,
5063 .change_beacon = brcmf_cfg80211_change_beacon,
5064 .del_station = brcmf_cfg80211_del_station,
5065 .change_station = brcmf_cfg80211_change_station,
5066 .sched_scan_start = brcmf_cfg80211_sched_scan_start,
5067 .sched_scan_stop = brcmf_cfg80211_sched_scan_stop,
5068 .mgmt_frame_register = brcmf_cfg80211_mgmt_frame_register,
5069 .mgmt_tx = brcmf_cfg80211_mgmt_tx,
5070 .remain_on_channel = brcmf_p2p_remain_on_channel,
5071 .cancel_remain_on_channel = brcmf_cfg80211_cancel_remain_on_channel,
5072 .start_p2p_device = brcmf_p2p_start_device,
5073 .stop_p2p_device = brcmf_p2p_stop_device,
5074 .crit_proto_start = brcmf_cfg80211_crit_proto_start,
5075 .crit_proto_stop = brcmf_cfg80211_crit_proto_stop,
5076 .tdls_oper = brcmf_cfg80211_tdls_oper,
5079 struct brcmf_cfg80211_vif *brcmf_alloc_vif(struct brcmf_cfg80211_info *cfg,
5080 enum nl80211_iftype type,
5083 struct brcmf_cfg80211_vif *vif_walk;
5084 struct brcmf_cfg80211_vif *vif;
5087 brcmf_dbg(TRACE, "allocating virtual interface (size=%zu)\n",
5089 vif = kzalloc(sizeof(*vif), GFP_KERNEL);
5091 return ERR_PTR(-ENOMEM);
5093 vif->wdev.wiphy = cfg->wiphy;
5094 vif->wdev.iftype = type;
5096 vif->pm_block = pm_block;
5098 brcmf_init_prof(&vif->profile);
5100 if (type == NL80211_IFTYPE_AP) {
5102 list_for_each_entry(vif_walk, &cfg->vif_list, list) {
5103 if (vif_walk->wdev.iftype == NL80211_IFTYPE_AP) {
5111 list_add_tail(&vif->list, &cfg->vif_list);
5115 void brcmf_free_vif(struct brcmf_cfg80211_vif *vif)
5117 list_del(&vif->list);
5121 void brcmf_cfg80211_free_netdev(struct net_device *ndev)
5123 struct brcmf_cfg80211_vif *vif;
5124 struct brcmf_if *ifp;
5126 ifp = netdev_priv(ndev);
5130 brcmf_free_vif(vif);
5134 static bool brcmf_is_linkup(const struct brcmf_event_msg *e)
5136 u32 event = e->event_code;
5137 u32 status = e->status;
5139 if (event == BRCMF_E_SET_SSID && status == BRCMF_E_STATUS_SUCCESS) {
5140 brcmf_dbg(CONN, "Processing set ssid\n");
5147 static bool brcmf_is_linkdown(const struct brcmf_event_msg *e)
5149 u32 event = e->event_code;
5150 u16 flags = e->flags;
5152 if ((event == BRCMF_E_DEAUTH) || (event == BRCMF_E_DEAUTH_IND) ||
5153 (event == BRCMF_E_DISASSOC_IND) ||
5154 ((event == BRCMF_E_LINK) && (!(flags & BRCMF_EVENT_MSG_LINK)))) {
5155 brcmf_dbg(CONN, "Processing link down\n");
5161 static bool brcmf_is_nonetwork(struct brcmf_cfg80211_info *cfg,
5162 const struct brcmf_event_msg *e)
5164 u32 event = e->event_code;
5165 u32 status = e->status;
5167 if (event == BRCMF_E_LINK && status == BRCMF_E_STATUS_NO_NETWORKS) {
5168 brcmf_dbg(CONN, "Processing Link %s & no network found\n",
5169 e->flags & BRCMF_EVENT_MSG_LINK ? "up" : "down");
5173 if (event == BRCMF_E_SET_SSID && status != BRCMF_E_STATUS_SUCCESS) {
5174 brcmf_dbg(CONN, "Processing connecting & no network found\n");
5181 static void brcmf_clear_assoc_ies(struct brcmf_cfg80211_info *cfg)
5183 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5185 kfree(conn_info->req_ie);
5186 conn_info->req_ie = NULL;
5187 conn_info->req_ie_len = 0;
5188 kfree(conn_info->resp_ie);
5189 conn_info->resp_ie = NULL;
5190 conn_info->resp_ie_len = 0;
5193 static s32 brcmf_get_assoc_ies(struct brcmf_cfg80211_info *cfg,
5194 struct brcmf_if *ifp)
5196 struct brcmf_cfg80211_assoc_ielen_le *assoc_info;
5197 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5202 brcmf_clear_assoc_ies(cfg);
5204 err = brcmf_fil_iovar_data_get(ifp, "assoc_info",
5205 cfg->extra_buf, WL_ASSOC_INFO_MAX);
5207 brcmf_err("could not get assoc info (%d)\n", err);
5211 (struct brcmf_cfg80211_assoc_ielen_le *)cfg->extra_buf;
5212 req_len = le32_to_cpu(assoc_info->req_len);
5213 resp_len = le32_to_cpu(assoc_info->resp_len);
5215 err = brcmf_fil_iovar_data_get(ifp, "assoc_req_ies",
5219 brcmf_err("could not get assoc req (%d)\n", err);
5222 conn_info->req_ie_len = req_len;
5224 kmemdup(cfg->extra_buf, conn_info->req_ie_len,
5227 conn_info->req_ie_len = 0;
5228 conn_info->req_ie = NULL;
5231 err = brcmf_fil_iovar_data_get(ifp, "assoc_resp_ies",
5235 brcmf_err("could not get assoc resp (%d)\n", err);
5238 conn_info->resp_ie_len = resp_len;
5239 conn_info->resp_ie =
5240 kmemdup(cfg->extra_buf, conn_info->resp_ie_len,
5243 conn_info->resp_ie_len = 0;
5244 conn_info->resp_ie = NULL;
5246 brcmf_dbg(CONN, "req len (%d) resp len (%d)\n",
5247 conn_info->req_ie_len, conn_info->resp_ie_len);
5253 brcmf_bss_roaming_done(struct brcmf_cfg80211_info *cfg,
5254 struct net_device *ndev,
5255 const struct brcmf_event_msg *e)
5257 struct brcmf_if *ifp = netdev_priv(ndev);
5258 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5259 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5260 struct wiphy *wiphy = cfg_to_wiphy(cfg);
5261 struct ieee80211_channel *notify_channel = NULL;
5262 struct ieee80211_supported_band *band;
5263 struct brcmf_bss_info_le *bi;
5264 struct brcmu_chan ch;
5269 brcmf_dbg(TRACE, "Enter\n");
5271 brcmf_get_assoc_ies(cfg, ifp);
5272 memcpy(profile->bssid, e->addr, ETH_ALEN);
5273 brcmf_update_bss_info(cfg, ifp);
5275 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
5281 /* data sent to dongle has to be little endian */
5282 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
5283 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
5284 buf, WL_BSS_INFO_MAX);
5289 bi = (struct brcmf_bss_info_le *)(buf + 4);
5290 ch.chspec = le16_to_cpu(bi->chanspec);
5291 cfg->d11inf.decchspec(&ch);
5293 if (ch.band == BRCMU_CHAN_BAND_2G)
5294 band = wiphy->bands[NL80211_BAND_2GHZ];
5296 band = wiphy->bands[NL80211_BAND_5GHZ];
5298 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
5299 notify_channel = ieee80211_get_channel(wiphy, freq);
5303 cfg80211_roamed(ndev, notify_channel, (u8 *)profile->bssid,
5304 conn_info->req_ie, conn_info->req_ie_len,
5305 conn_info->resp_ie, conn_info->resp_ie_len, GFP_KERNEL);
5306 brcmf_dbg(CONN, "Report roaming result\n");
5308 set_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
5309 brcmf_dbg(TRACE, "Exit\n");
5314 brcmf_bss_connect_done(struct brcmf_cfg80211_info *cfg,
5315 struct net_device *ndev, const struct brcmf_event_msg *e,
5318 struct brcmf_if *ifp = netdev_priv(ndev);
5319 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5320 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5322 brcmf_dbg(TRACE, "Enter\n");
5324 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5325 &ifp->vif->sme_state)) {
5327 brcmf_get_assoc_ies(cfg, ifp);
5328 memcpy(profile->bssid, e->addr, ETH_ALEN);
5329 brcmf_update_bss_info(cfg, ifp);
5330 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5331 &ifp->vif->sme_state);
5333 cfg80211_connect_result(ndev,
5334 (u8 *)profile->bssid,
5336 conn_info->req_ie_len,
5338 conn_info->resp_ie_len,
5339 completed ? WLAN_STATUS_SUCCESS :
5340 WLAN_STATUS_AUTH_TIMEOUT,
5342 brcmf_dbg(CONN, "Report connect result - connection %s\n",
5343 completed ? "succeeded" : "failed");
5345 brcmf_dbg(TRACE, "Exit\n");
5350 brcmf_notify_connect_status_ap(struct brcmf_cfg80211_info *cfg,
5351 struct net_device *ndev,
5352 const struct brcmf_event_msg *e, void *data)
5354 struct brcmf_if *ifp = netdev_priv(ndev);
5355 static int generation;
5356 u32 event = e->event_code;
5357 u32 reason = e->reason;
5358 struct station_info sinfo;
5360 brcmf_dbg(CONN, "event %d, reason %d\n", event, reason);
5361 if (event == BRCMF_E_LINK && reason == BRCMF_E_REASON_LINK_BSSCFG_DIS &&
5362 ndev != cfg_to_ndev(cfg)) {
5363 brcmf_dbg(CONN, "AP mode link down\n");
5364 complete(&cfg->vif_disabled);
5366 brcmf_remove_interface(ifp);
5370 if (((event == BRCMF_E_ASSOC_IND) || (event == BRCMF_E_REASSOC_IND)) &&
5371 (reason == BRCMF_E_STATUS_SUCCESS)) {
5372 memset(&sinfo, 0, sizeof(sinfo));
5374 brcmf_err("No IEs present in ASSOC/REASSOC_IND");
5377 sinfo.assoc_req_ies = data;
5378 sinfo.assoc_req_ies_len = e->datalen;
5380 sinfo.generation = generation;
5381 cfg80211_new_sta(ndev, e->addr, &sinfo, GFP_KERNEL);
5382 } else if ((event == BRCMF_E_DISASSOC_IND) ||
5383 (event == BRCMF_E_DEAUTH_IND) ||
5384 (event == BRCMF_E_DEAUTH)) {
5385 cfg80211_del_sta(ndev, e->addr, GFP_KERNEL);
5391 brcmf_notify_connect_status(struct brcmf_if *ifp,
5392 const struct brcmf_event_msg *e, void *data)
5394 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5395 struct net_device *ndev = ifp->ndev;
5396 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5397 struct ieee80211_channel *chan;
5400 if ((e->event_code == BRCMF_E_DEAUTH) ||
5401 (e->event_code == BRCMF_E_DEAUTH_IND) ||
5402 (e->event_code == BRCMF_E_DISASSOC_IND) ||
5403 ((e->event_code == BRCMF_E_LINK) && (!e->flags))) {
5404 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5407 if (brcmf_is_apmode(ifp->vif)) {
5408 err = brcmf_notify_connect_status_ap(cfg, ndev, e, data);
5409 } else if (brcmf_is_linkup(e)) {
5410 brcmf_dbg(CONN, "Linkup\n");
5411 if (brcmf_is_ibssmode(ifp->vif)) {
5412 brcmf_inform_ibss(cfg, ndev, e->addr);
5413 chan = ieee80211_get_channel(cfg->wiphy, cfg->channel);
5414 memcpy(profile->bssid, e->addr, ETH_ALEN);
5415 cfg80211_ibss_joined(ndev, e->addr, chan, GFP_KERNEL);
5416 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5417 &ifp->vif->sme_state);
5418 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5419 &ifp->vif->sme_state);
5421 brcmf_bss_connect_done(cfg, ndev, e, true);
5422 brcmf_net_setcarrier(ifp, true);
5423 } else if (brcmf_is_linkdown(e)) {
5424 brcmf_dbg(CONN, "Linkdown\n");
5425 if (!brcmf_is_ibssmode(ifp->vif)) {
5426 brcmf_bss_connect_done(cfg, ndev, e, false);
5427 brcmf_link_down(ifp->vif,
5428 brcmf_map_fw_linkdown_reason(e));
5429 brcmf_init_prof(ndev_to_prof(ndev));
5430 if (ndev != cfg_to_ndev(cfg))
5431 complete(&cfg->vif_disabled);
5432 brcmf_net_setcarrier(ifp, false);
5434 } else if (brcmf_is_nonetwork(cfg, e)) {
5435 if (brcmf_is_ibssmode(ifp->vif))
5436 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5437 &ifp->vif->sme_state);
5439 brcmf_bss_connect_done(cfg, ndev, e, false);
5446 brcmf_notify_roaming_status(struct brcmf_if *ifp,
5447 const struct brcmf_event_msg *e, void *data)
5449 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5450 u32 event = e->event_code;
5451 u32 status = e->status;
5453 if (event == BRCMF_E_ROAM && status == BRCMF_E_STATUS_SUCCESS) {
5454 if (test_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state))
5455 brcmf_bss_roaming_done(cfg, ifp->ndev, e);
5457 brcmf_bss_connect_done(cfg, ifp->ndev, e, true);
5464 brcmf_notify_mic_status(struct brcmf_if *ifp,
5465 const struct brcmf_event_msg *e, void *data)
5467 u16 flags = e->flags;
5468 enum nl80211_key_type key_type;
5470 if (flags & BRCMF_EVENT_MSG_GROUP)
5471 key_type = NL80211_KEYTYPE_GROUP;
5473 key_type = NL80211_KEYTYPE_PAIRWISE;
5475 cfg80211_michael_mic_failure(ifp->ndev, (u8 *)&e->addr, key_type, -1,
5481 static s32 brcmf_notify_vif_event(struct brcmf_if *ifp,
5482 const struct brcmf_event_msg *e, void *data)
5484 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5485 struct brcmf_if_event *ifevent = (struct brcmf_if_event *)data;
5486 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
5487 struct brcmf_cfg80211_vif *vif;
5489 brcmf_dbg(TRACE, "Enter: action %u flags %u ifidx %u bsscfgidx %u\n",
5490 ifevent->action, ifevent->flags, ifevent->ifidx,
5491 ifevent->bsscfgidx);
5493 mutex_lock(&event->vif_event_lock);
5494 event->action = ifevent->action;
5497 switch (ifevent->action) {
5498 case BRCMF_E_IF_ADD:
5499 /* waiting process may have timed out */
5500 if (!cfg->vif_event.vif) {
5501 mutex_unlock(&event->vif_event_lock);
5508 vif->wdev.netdev = ifp->ndev;
5509 ifp->ndev->ieee80211_ptr = &vif->wdev;
5510 SET_NETDEV_DEV(ifp->ndev, wiphy_dev(cfg->wiphy));
5512 mutex_unlock(&event->vif_event_lock);
5513 wake_up(&event->vif_wq);
5516 case BRCMF_E_IF_DEL:
5517 mutex_unlock(&event->vif_event_lock);
5518 /* event may not be upon user request */
5519 if (brcmf_cfg80211_vif_event_armed(cfg))
5520 wake_up(&event->vif_wq);
5523 case BRCMF_E_IF_CHANGE:
5524 mutex_unlock(&event->vif_event_lock);
5525 wake_up(&event->vif_wq);
5529 mutex_unlock(&event->vif_event_lock);
5535 static void brcmf_init_conf(struct brcmf_cfg80211_conf *conf)
5537 conf->frag_threshold = (u32)-1;
5538 conf->rts_threshold = (u32)-1;
5539 conf->retry_short = (u32)-1;
5540 conf->retry_long = (u32)-1;
5543 static void brcmf_register_event_handlers(struct brcmf_cfg80211_info *cfg)
5545 brcmf_fweh_register(cfg->pub, BRCMF_E_LINK,
5546 brcmf_notify_connect_status);
5547 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH_IND,
5548 brcmf_notify_connect_status);
5549 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH,
5550 brcmf_notify_connect_status);
5551 brcmf_fweh_register(cfg->pub, BRCMF_E_DISASSOC_IND,
5552 brcmf_notify_connect_status);
5553 brcmf_fweh_register(cfg->pub, BRCMF_E_ASSOC_IND,
5554 brcmf_notify_connect_status);
5555 brcmf_fweh_register(cfg->pub, BRCMF_E_REASSOC_IND,
5556 brcmf_notify_connect_status);
5557 brcmf_fweh_register(cfg->pub, BRCMF_E_ROAM,
5558 brcmf_notify_roaming_status);
5559 brcmf_fweh_register(cfg->pub, BRCMF_E_MIC_ERROR,
5560 brcmf_notify_mic_status);
5561 brcmf_fweh_register(cfg->pub, BRCMF_E_SET_SSID,
5562 brcmf_notify_connect_status);
5563 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
5564 brcmf_notify_sched_scan_results);
5565 brcmf_fweh_register(cfg->pub, BRCMF_E_IF,
5566 brcmf_notify_vif_event);
5567 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_PROBEREQ_MSG,
5568 brcmf_p2p_notify_rx_mgmt_p2p_probereq);
5569 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_DISC_LISTEN_COMPLETE,
5570 brcmf_p2p_notify_listen_complete);
5571 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_RX,
5572 brcmf_p2p_notify_action_frame_rx);
5573 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_COMPLETE,
5574 brcmf_p2p_notify_action_tx_complete);
5575 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_OFF_CHAN_COMPLETE,
5576 brcmf_p2p_notify_action_tx_complete);
5579 static void brcmf_deinit_priv_mem(struct brcmf_cfg80211_info *cfg)
5583 kfree(cfg->extra_buf);
5584 cfg->extra_buf = NULL;
5585 kfree(cfg->wowl.nd);
5586 cfg->wowl.nd = NULL;
5587 kfree(cfg->wowl.nd_info);
5588 cfg->wowl.nd_info = NULL;
5589 kfree(cfg->escan_info.escan_buf);
5590 cfg->escan_info.escan_buf = NULL;
5593 static s32 brcmf_init_priv_mem(struct brcmf_cfg80211_info *cfg)
5595 cfg->conf = kzalloc(sizeof(*cfg->conf), GFP_KERNEL);
5597 goto init_priv_mem_out;
5598 cfg->extra_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
5599 if (!cfg->extra_buf)
5600 goto init_priv_mem_out;
5601 cfg->wowl.nd = kzalloc(sizeof(*cfg->wowl.nd) + sizeof(u32), GFP_KERNEL);
5603 goto init_priv_mem_out;
5604 cfg->wowl.nd_info = kzalloc(sizeof(*cfg->wowl.nd_info) +
5605 sizeof(struct cfg80211_wowlan_nd_match *),
5607 if (!cfg->wowl.nd_info)
5608 goto init_priv_mem_out;
5609 cfg->escan_info.escan_buf = kzalloc(BRCMF_ESCAN_BUF_SIZE, GFP_KERNEL);
5610 if (!cfg->escan_info.escan_buf)
5611 goto init_priv_mem_out;
5616 brcmf_deinit_priv_mem(cfg);
5621 static s32 wl_init_priv(struct brcmf_cfg80211_info *cfg)
5625 cfg->scan_request = NULL;
5626 cfg->pwr_save = true;
5627 cfg->active_scan = true; /* we do active scan per default */
5628 cfg->dongle_up = false; /* dongle is not up yet */
5629 err = brcmf_init_priv_mem(cfg);
5632 brcmf_register_event_handlers(cfg);
5633 mutex_init(&cfg->usr_sync);
5634 brcmf_init_escan(cfg);
5635 brcmf_init_conf(cfg->conf);
5636 init_completion(&cfg->vif_disabled);
5640 static void wl_deinit_priv(struct brcmf_cfg80211_info *cfg)
5642 cfg->dongle_up = false; /* dongle down */
5643 brcmf_abort_scanning(cfg);
5644 brcmf_deinit_priv_mem(cfg);
5647 static void init_vif_event(struct brcmf_cfg80211_vif_event *event)
5649 init_waitqueue_head(&event->vif_wq);
5650 mutex_init(&event->vif_event_lock);
5653 static s32 brcmf_dongle_roam(struct brcmf_if *ifp)
5657 __le32 roamtrigger[2];
5658 __le32 roam_delta[2];
5660 /* Configure beacon timeout value based upon roaming setting */
5661 if (ifp->drvr->settings->roamoff)
5662 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_OFF;
5664 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_ON;
5665 err = brcmf_fil_iovar_int_set(ifp, "bcn_timeout", bcn_timeout);
5667 brcmf_err("bcn_timeout error (%d)\n", err);
5668 goto roam_setup_done;
5671 /* Enable/Disable built-in roaming to allow supplicant to take care of
5674 brcmf_dbg(INFO, "Internal Roaming = %s\n",
5675 ifp->drvr->settings->roamoff ? "Off" : "On");
5676 err = brcmf_fil_iovar_int_set(ifp, "roam_off",
5677 ifp->drvr->settings->roamoff);
5679 brcmf_err("roam_off error (%d)\n", err);
5680 goto roam_setup_done;
5683 roamtrigger[0] = cpu_to_le32(WL_ROAM_TRIGGER_LEVEL);
5684 roamtrigger[1] = cpu_to_le32(BRCM_BAND_ALL);
5685 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_TRIGGER,
5686 (void *)roamtrigger, sizeof(roamtrigger));
5688 brcmf_err("WLC_SET_ROAM_TRIGGER error (%d)\n", err);
5689 goto roam_setup_done;
5692 roam_delta[0] = cpu_to_le32(WL_ROAM_DELTA);
5693 roam_delta[1] = cpu_to_le32(BRCM_BAND_ALL);
5694 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_DELTA,
5695 (void *)roam_delta, sizeof(roam_delta));
5697 brcmf_err("WLC_SET_ROAM_DELTA error (%d)\n", err);
5698 goto roam_setup_done;
5706 brcmf_dongle_scantime(struct brcmf_if *ifp)
5710 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_CHANNEL_TIME,
5711 BRCMF_SCAN_CHANNEL_TIME);
5713 brcmf_err("Scan assoc time error (%d)\n", err);
5714 goto dongle_scantime_out;
5716 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_UNASSOC_TIME,
5717 BRCMF_SCAN_UNASSOC_TIME);
5719 brcmf_err("Scan unassoc time error (%d)\n", err);
5720 goto dongle_scantime_out;
5723 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_PASSIVE_TIME,
5724 BRCMF_SCAN_PASSIVE_TIME);
5726 brcmf_err("Scan passive time error (%d)\n", err);
5727 goto dongle_scantime_out;
5730 dongle_scantime_out:
5734 static void brcmf_update_bw40_channel_flag(struct ieee80211_channel *channel,
5735 struct brcmu_chan *ch)
5739 ht40_flag = channel->flags & IEEE80211_CHAN_NO_HT40;
5740 if (ch->sb == BRCMU_CHAN_SB_U) {
5741 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5742 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5743 channel->flags |= IEEE80211_CHAN_NO_HT40PLUS;
5745 /* It should be one of
5746 * IEEE80211_CHAN_NO_HT40 or
5747 * IEEE80211_CHAN_NO_HT40PLUS
5749 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5750 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5751 channel->flags |= IEEE80211_CHAN_NO_HT40MINUS;
5755 static int brcmf_construct_chaninfo(struct brcmf_cfg80211_info *cfg,
5758 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
5759 struct ieee80211_supported_band *band;
5760 struct ieee80211_channel *channel;
5761 struct wiphy *wiphy;
5762 struct brcmf_chanspec_list *list;
5763 struct brcmu_chan ch;
5771 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
5776 list = (struct brcmf_chanspec_list *)pbuf;
5778 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
5781 brcmf_err("get chanspecs error (%d)\n", err);
5785 wiphy = cfg_to_wiphy(cfg);
5786 band = wiphy->bands[NL80211_BAND_2GHZ];
5788 for (i = 0; i < band->n_channels; i++)
5789 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
5790 band = wiphy->bands[NL80211_BAND_5GHZ];
5792 for (i = 0; i < band->n_channels; i++)
5793 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
5795 total = le32_to_cpu(list->count);
5796 for (i = 0; i < total; i++) {
5797 ch.chspec = (u16)le32_to_cpu(list->element[i]);
5798 cfg->d11inf.decchspec(&ch);
5800 if (ch.band == BRCMU_CHAN_BAND_2G) {
5801 band = wiphy->bands[NL80211_BAND_2GHZ];
5802 } else if (ch.band == BRCMU_CHAN_BAND_5G) {
5803 band = wiphy->bands[NL80211_BAND_5GHZ];
5805 brcmf_err("Invalid channel Spec. 0x%x.\n", ch.chspec);
5810 if (!(bw_cap[band->band] & WLC_BW_40MHZ_BIT) &&
5811 ch.bw == BRCMU_CHAN_BW_40)
5813 if (!(bw_cap[band->band] & WLC_BW_80MHZ_BIT) &&
5814 ch.bw == BRCMU_CHAN_BW_80)
5817 channel = band->channels;
5818 index = band->n_channels;
5819 for (j = 0; j < band->n_channels; j++) {
5820 if (channel[j].hw_value == ch.control_ch_num) {
5825 channel[index].center_freq =
5826 ieee80211_channel_to_frequency(ch.control_ch_num,
5828 channel[index].hw_value = ch.control_ch_num;
5830 /* assuming the chanspecs order is HT20,
5831 * HT40 upper, HT40 lower, and VHT80.
5833 if (ch.bw == BRCMU_CHAN_BW_80) {
5834 channel[index].flags &= ~IEEE80211_CHAN_NO_80MHZ;
5835 } else if (ch.bw == BRCMU_CHAN_BW_40) {
5836 brcmf_update_bw40_channel_flag(&channel[index], &ch);
5838 /* enable the channel and disable other bandwidths
5839 * for now as mentioned order assure they are enabled
5840 * for subsequent chanspecs.
5842 channel[index].flags = IEEE80211_CHAN_NO_HT40 |
5843 IEEE80211_CHAN_NO_80MHZ;
5844 ch.bw = BRCMU_CHAN_BW_20;
5845 cfg->d11inf.encchspec(&ch);
5846 chaninfo = ch.chspec;
5847 err = brcmf_fil_bsscfg_int_get(ifp, "per_chan_info",
5850 if (chaninfo & WL_CHAN_RADAR)
5851 channel[index].flags |=
5852 (IEEE80211_CHAN_RADAR |
5853 IEEE80211_CHAN_NO_IR);
5854 if (chaninfo & WL_CHAN_PASSIVE)
5855 channel[index].flags |=
5856 IEEE80211_CHAN_NO_IR;
5866 static int brcmf_enable_bw40_2g(struct brcmf_cfg80211_info *cfg)
5868 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
5869 struct ieee80211_supported_band *band;
5870 struct brcmf_fil_bwcap_le band_bwcap;
5871 struct brcmf_chanspec_list *list;
5875 struct brcmu_chan ch;
5879 /* verify support for bw_cap command */
5881 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &val);
5884 /* only set 2G bandwidth using bw_cap command */
5885 band_bwcap.band = cpu_to_le32(WLC_BAND_2G);
5886 band_bwcap.bw_cap = cpu_to_le32(WLC_BW_CAP_40MHZ);
5887 err = brcmf_fil_iovar_data_set(ifp, "bw_cap", &band_bwcap,
5888 sizeof(band_bwcap));
5890 brcmf_dbg(INFO, "fallback to mimo_bw_cap\n");
5891 val = WLC_N_BW_40ALL;
5892 err = brcmf_fil_iovar_int_set(ifp, "mimo_bw_cap", val);
5896 /* update channel info in 2G band */
5897 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
5902 ch.band = BRCMU_CHAN_BAND_2G;
5903 ch.bw = BRCMU_CHAN_BW_40;
5904 ch.sb = BRCMU_CHAN_SB_NONE;
5906 cfg->d11inf.encchspec(&ch);
5908 /* pass encoded chanspec in query */
5909 *(__le16 *)pbuf = cpu_to_le16(ch.chspec);
5911 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
5914 brcmf_err("get chanspecs error (%d)\n", err);
5919 band = cfg_to_wiphy(cfg)->bands[NL80211_BAND_2GHZ];
5920 list = (struct brcmf_chanspec_list *)pbuf;
5921 num_chan = le32_to_cpu(list->count);
5922 for (i = 0; i < num_chan; i++) {
5923 ch.chspec = (u16)le32_to_cpu(list->element[i]);
5924 cfg->d11inf.decchspec(&ch);
5925 if (WARN_ON(ch.band != BRCMU_CHAN_BAND_2G))
5927 if (WARN_ON(ch.bw != BRCMU_CHAN_BW_40))
5929 for (j = 0; j < band->n_channels; j++) {
5930 if (band->channels[j].hw_value == ch.control_ch_num)
5933 if (WARN_ON(j == band->n_channels))
5936 brcmf_update_bw40_channel_flag(&band->channels[j], &ch);
5943 static void brcmf_get_bwcap(struct brcmf_if *ifp, u32 bw_cap[])
5945 u32 band, mimo_bwcap;
5949 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
5951 bw_cap[NL80211_BAND_2GHZ] = band;
5953 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
5955 bw_cap[NL80211_BAND_5GHZ] = band;
5961 brcmf_dbg(INFO, "fallback to mimo_bw_cap info\n");
5963 err = brcmf_fil_iovar_int_get(ifp, "mimo_bw_cap", &mimo_bwcap);
5965 /* assume 20MHz if firmware does not give a clue */
5966 mimo_bwcap = WLC_N_BW_20ALL;
5968 switch (mimo_bwcap) {
5969 case WLC_N_BW_40ALL:
5970 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_40MHZ_BIT;
5972 case WLC_N_BW_20IN2G_40IN5G:
5973 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_40MHZ_BIT;
5975 case WLC_N_BW_20ALL:
5976 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_20MHZ_BIT;
5977 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_20MHZ_BIT;
5980 brcmf_err("invalid mimo_bw_cap value\n");
5984 static void brcmf_update_ht_cap(struct ieee80211_supported_band *band,
5985 u32 bw_cap[2], u32 nchain)
5987 band->ht_cap.ht_supported = true;
5988 if (bw_cap[band->band] & WLC_BW_40MHZ_BIT) {
5989 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40;
5990 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
5992 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20;
5993 band->ht_cap.cap |= IEEE80211_HT_CAP_DSSSCCK40;
5994 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K;
5995 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_16;
5996 memset(band->ht_cap.mcs.rx_mask, 0xff, nchain);
5997 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED;
6000 static __le16 brcmf_get_mcs_map(u32 nchain, enum ieee80211_vht_mcs_support supp)
6005 for (i = 0, mcs_map = 0xFFFF; i < nchain; i++)
6006 mcs_map = (mcs_map << 2) | supp;
6008 return cpu_to_le16(mcs_map);
6011 static void brcmf_update_vht_cap(struct ieee80211_supported_band *band,
6012 u32 bw_cap[2], u32 nchain, u32 txstreams,
6013 u32 txbf_bfe_cap, u32 txbf_bfr_cap)
6017 /* not allowed in 2.4G band */
6018 if (band->band == NL80211_BAND_2GHZ)
6021 band->vht_cap.vht_supported = true;
6022 /* 80MHz is mandatory */
6023 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_80;
6024 if (bw_cap[band->band] & WLC_BW_160MHZ_BIT) {
6025 band->vht_cap.cap |= IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
6026 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_160;
6028 /* all support 256-QAM */
6029 mcs_map = brcmf_get_mcs_map(nchain, IEEE80211_VHT_MCS_SUPPORT_0_9);
6030 band->vht_cap.vht_mcs.rx_mcs_map = mcs_map;
6031 band->vht_cap.vht_mcs.tx_mcs_map = mcs_map;
6033 /* Beamforming support information */
6034 if (txbf_bfe_cap & BRCMF_TXBF_SU_BFE_CAP)
6035 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE;
6036 if (txbf_bfe_cap & BRCMF_TXBF_MU_BFE_CAP)
6037 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE;
6038 if (txbf_bfr_cap & BRCMF_TXBF_SU_BFR_CAP)
6039 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE;
6040 if (txbf_bfr_cap & BRCMF_TXBF_MU_BFR_CAP)
6041 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMER_CAPABLE;
6043 if ((txbf_bfe_cap || txbf_bfr_cap) && (txstreams > 1)) {
6044 band->vht_cap.cap |=
6045 (2 << IEEE80211_VHT_CAP_BEAMFORMEE_STS_SHIFT);
6046 band->vht_cap.cap |= ((txstreams - 1) <<
6047 IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_SHIFT);
6048 band->vht_cap.cap |=
6049 IEEE80211_VHT_CAP_VHT_LINK_ADAPTATION_VHT_MRQ_MFB;
6053 static int brcmf_setup_wiphybands(struct wiphy *wiphy)
6055 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
6056 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6059 u32 bw_cap[2] = { WLC_BW_20MHZ_BIT, WLC_BW_20MHZ_BIT };
6064 struct ieee80211_supported_band *band;
6066 u32 txbf_bfe_cap = 0;
6067 u32 txbf_bfr_cap = 0;
6069 (void)brcmf_fil_iovar_int_get(ifp, "vhtmode", &vhtmode);
6070 err = brcmf_fil_iovar_int_get(ifp, "nmode", &nmode);
6072 brcmf_err("nmode error (%d)\n", err);
6074 brcmf_get_bwcap(ifp, bw_cap);
6076 brcmf_dbg(INFO, "nmode=%d, vhtmode=%d, bw_cap=(%d, %d)\n",
6077 nmode, vhtmode, bw_cap[NL80211_BAND_2GHZ],
6078 bw_cap[NL80211_BAND_5GHZ]);
6080 err = brcmf_fil_iovar_int_get(ifp, "rxchain", &rxchain);
6082 brcmf_err("rxchain error (%d)\n", err);
6085 for (nchain = 0; rxchain; nchain++)
6086 rxchain = rxchain & (rxchain - 1);
6088 brcmf_dbg(INFO, "nchain=%d\n", nchain);
6090 err = brcmf_construct_chaninfo(cfg, bw_cap);
6092 brcmf_err("brcmf_construct_chaninfo failed (%d)\n", err);
6097 (void)brcmf_fil_iovar_int_get(ifp, "txstreams", &txstreams);
6098 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfe_cap",
6100 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfr_cap",
6104 wiphy = cfg_to_wiphy(cfg);
6105 for (i = 0; i < ARRAY_SIZE(wiphy->bands); i++) {
6106 band = wiphy->bands[i];
6111 brcmf_update_ht_cap(band, bw_cap, nchain);
6113 brcmf_update_vht_cap(band, bw_cap, nchain, txstreams,
6114 txbf_bfe_cap, txbf_bfr_cap);
6120 static const struct ieee80211_txrx_stypes
6121 brcmf_txrx_stypes[NUM_NL80211_IFTYPES] = {
6122 [NL80211_IFTYPE_STATION] = {
6124 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6125 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6127 [NL80211_IFTYPE_P2P_CLIENT] = {
6129 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6130 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6132 [NL80211_IFTYPE_P2P_GO] = {
6134 .rx = BIT(IEEE80211_STYPE_ASSOC_REQ >> 4) |
6135 BIT(IEEE80211_STYPE_REASSOC_REQ >> 4) |
6136 BIT(IEEE80211_STYPE_PROBE_REQ >> 4) |
6137 BIT(IEEE80211_STYPE_DISASSOC >> 4) |
6138 BIT(IEEE80211_STYPE_AUTH >> 4) |
6139 BIT(IEEE80211_STYPE_DEAUTH >> 4) |
6140 BIT(IEEE80211_STYPE_ACTION >> 4)
6142 [NL80211_IFTYPE_P2P_DEVICE] = {
6144 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6145 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6150 * brcmf_setup_ifmodes() - determine interface modes and combinations.
6152 * @wiphy: wiphy object.
6153 * @ifp: interface object needed for feat module api.
6155 * The interface modes and combinations are determined dynamically here
6156 * based on firmware functionality.
6158 * no p2p and no mbss:
6160 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6164 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6165 * #AP <= 4, matching BI, channels = 1, 4 total
6167 * p2p, no mchan, and mbss:
6169 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 1, 3 total
6170 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6171 * #AP <= 4, matching BI, channels = 1, 4 total
6173 * p2p, mchan, and mbss:
6175 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 2, 3 total
6176 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6177 * #AP <= 4, matching BI, channels = 1, 4 total
6179 static int brcmf_setup_ifmodes(struct wiphy *wiphy, struct brcmf_if *ifp)
6181 struct ieee80211_iface_combination *combo = NULL;
6182 struct ieee80211_iface_limit *c0_limits = NULL;
6183 struct ieee80211_iface_limit *p2p_limits = NULL;
6184 struct ieee80211_iface_limit *mbss_limits = NULL;
6188 mbss = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS);
6189 p2p = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_P2P);
6191 n_combos = 1 + !!p2p + !!mbss;
6192 combo = kcalloc(n_combos, sizeof(*combo), GFP_KERNEL);
6196 c0_limits = kcalloc(p2p ? 3 : 2, sizeof(*c0_limits), GFP_KERNEL);
6201 p2p_limits = kcalloc(4, sizeof(*p2p_limits), GFP_KERNEL);
6207 mbss_limits = kcalloc(1, sizeof(*mbss_limits), GFP_KERNEL);
6212 wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION) |
6213 BIT(NL80211_IFTYPE_ADHOC) |
6214 BIT(NL80211_IFTYPE_AP);
6218 combo[c].num_different_channels = 1;
6219 c0_limits[i].max = 1;
6220 c0_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6222 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MCHAN))
6223 combo[c].num_different_channels = 2;
6224 wiphy->interface_modes |= BIT(NL80211_IFTYPE_P2P_CLIENT) |
6225 BIT(NL80211_IFTYPE_P2P_GO) |
6226 BIT(NL80211_IFTYPE_P2P_DEVICE);
6227 c0_limits[i].max = 1;
6228 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6229 c0_limits[i].max = 1;
6230 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT) |
6231 BIT(NL80211_IFTYPE_P2P_GO);
6233 c0_limits[i].max = 1;
6234 c0_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6236 combo[c].max_interfaces = i;
6237 combo[c].n_limits = i;
6238 combo[c].limits = c0_limits;
6243 combo[c].num_different_channels = 1;
6244 p2p_limits[i].max = 1;
6245 p2p_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6246 p2p_limits[i].max = 1;
6247 p2p_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6248 p2p_limits[i].max = 1;
6249 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT);
6250 p2p_limits[i].max = 1;
6251 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6252 combo[c].max_interfaces = i;
6253 combo[c].n_limits = i;
6254 combo[c].limits = p2p_limits;
6259 combo[c].beacon_int_infra_match = true;
6260 combo[c].num_different_channels = 1;
6261 mbss_limits[0].max = 4;
6262 mbss_limits[0].types = BIT(NL80211_IFTYPE_AP);
6263 combo[c].max_interfaces = 4;
6264 combo[c].n_limits = 1;
6265 combo[c].limits = mbss_limits;
6267 wiphy->n_iface_combinations = n_combos;
6268 wiphy->iface_combinations = combo;
6279 static void brcmf_wiphy_pno_params(struct wiphy *wiphy)
6281 /* scheduled scan settings */
6282 wiphy->max_sched_scan_ssids = BRCMF_PNO_MAX_PFN_COUNT;
6283 wiphy->max_match_sets = BRCMF_PNO_MAX_PFN_COUNT;
6284 wiphy->max_sched_scan_ie_len = BRCMF_SCAN_IE_LEN_MAX;
6285 wiphy->flags |= WIPHY_FLAG_SUPPORTS_SCHED_SCAN;
6289 static struct wiphy_wowlan_support brcmf_wowlan_support = {
6290 .flags = WIPHY_WOWLAN_MAGIC_PKT | WIPHY_WOWLAN_DISCONNECT,
6291 .n_patterns = BRCMF_WOWL_MAXPATTERNS,
6292 .pattern_max_len = BRCMF_WOWL_MAXPATTERNSIZE,
6293 .pattern_min_len = 1,
6294 .max_pkt_offset = 1500,
6298 static void brcmf_wiphy_wowl_params(struct wiphy *wiphy, struct brcmf_if *ifp)
6301 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
6303 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO)) {
6304 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ND)) {
6305 brcmf_wowlan_support.flags |= WIPHY_WOWLAN_NET_DETECT;
6306 init_waitqueue_head(&cfg->wowl.nd_data_wait);
6309 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK)) {
6310 brcmf_wowlan_support.flags |= WIPHY_WOWLAN_SUPPORTS_GTK_REKEY;
6311 brcmf_wowlan_support.flags |= WIPHY_WOWLAN_GTK_REKEY_FAILURE;
6314 wiphy->wowlan = &brcmf_wowlan_support;
6318 static int brcmf_setup_wiphy(struct wiphy *wiphy, struct brcmf_if *ifp)
6320 struct brcmf_pub *drvr = ifp->drvr;
6321 const struct ieee80211_iface_combination *combo;
6322 struct ieee80211_supported_band *band;
6323 u16 max_interfaces = 0;
6328 wiphy->max_scan_ssids = WL_NUM_SCAN_MAX;
6329 wiphy->max_scan_ie_len = BRCMF_SCAN_IE_LEN_MAX;
6330 wiphy->max_num_pmkids = BRCMF_MAXPMKID;
6332 err = brcmf_setup_ifmodes(wiphy, ifp);
6336 for (i = 0, combo = wiphy->iface_combinations;
6337 i < wiphy->n_iface_combinations; i++, combo++) {
6338 max_interfaces = max(max_interfaces, combo->max_interfaces);
6341 for (i = 0; i < max_interfaces && i < ARRAY_SIZE(drvr->addresses);
6343 u8 *addr = drvr->addresses[i].addr;
6345 memcpy(addr, drvr->mac, ETH_ALEN);
6348 addr[ETH_ALEN - 1] ^= i;
6351 wiphy->addresses = drvr->addresses;
6352 wiphy->n_addresses = i;
6354 wiphy->signal_type = CFG80211_SIGNAL_TYPE_MBM;
6355 wiphy->cipher_suites = brcmf_cipher_suites;
6356 wiphy->n_cipher_suites = ARRAY_SIZE(brcmf_cipher_suites);
6357 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
6358 wiphy->n_cipher_suites--;
6359 wiphy->bss_select_support = BIT(NL80211_BSS_SELECT_ATTR_RSSI) |
6360 BIT(NL80211_BSS_SELECT_ATTR_BAND_PREF) |
6361 BIT(NL80211_BSS_SELECT_ATTR_RSSI_ADJUST);
6363 wiphy->flags |= WIPHY_FLAG_PS_ON_BY_DEFAULT |
6364 WIPHY_FLAG_OFFCHAN_TX |
6365 WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL;
6366 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS))
6367 wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS;
6368 if (!ifp->drvr->settings->roamoff)
6369 wiphy->flags |= WIPHY_FLAG_SUPPORTS_FW_ROAM;
6370 wiphy->mgmt_stypes = brcmf_txrx_stypes;
6371 wiphy->max_remain_on_channel_duration = 5000;
6372 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO))
6373 brcmf_wiphy_pno_params(wiphy);
6375 /* vendor commands/events support */
6376 wiphy->vendor_commands = brcmf_vendor_cmds;
6377 wiphy->n_vendor_commands = BRCMF_VNDR_CMDS_LAST - 1;
6379 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL))
6380 brcmf_wiphy_wowl_params(wiphy, ifp);
6381 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BANDLIST, &bandlist,
6384 brcmf_err("could not obtain band info: err=%d\n", err);
6387 /* first entry in bandlist is number of bands */
6388 n_bands = le32_to_cpu(bandlist[0]);
6389 for (i = 1; i <= n_bands && i < ARRAY_SIZE(bandlist); i++) {
6390 if (bandlist[i] == cpu_to_le32(WLC_BAND_2G)) {
6391 band = kmemdup(&__wl_band_2ghz, sizeof(__wl_band_2ghz),
6396 band->channels = kmemdup(&__wl_2ghz_channels,
6397 sizeof(__wl_2ghz_channels),
6399 if (!band->channels) {
6404 band->n_channels = ARRAY_SIZE(__wl_2ghz_channels);
6405 wiphy->bands[NL80211_BAND_2GHZ] = band;
6407 if (bandlist[i] == cpu_to_le32(WLC_BAND_5G)) {
6408 band = kmemdup(&__wl_band_5ghz, sizeof(__wl_band_5ghz),
6413 band->channels = kmemdup(&__wl_5ghz_channels,
6414 sizeof(__wl_5ghz_channels),
6416 if (!band->channels) {
6421 band->n_channels = ARRAY_SIZE(__wl_5ghz_channels);
6422 wiphy->bands[NL80211_BAND_5GHZ] = band;
6425 err = brcmf_setup_wiphybands(wiphy);
6429 static s32 brcmf_config_dongle(struct brcmf_cfg80211_info *cfg)
6431 struct net_device *ndev;
6432 struct wireless_dev *wdev;
6433 struct brcmf_if *ifp;
6440 ndev = cfg_to_ndev(cfg);
6441 wdev = ndev->ieee80211_ptr;
6442 ifp = netdev_priv(ndev);
6444 /* make sure RF is ready for work */
6445 brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 0);
6447 brcmf_dongle_scantime(ifp);
6449 power_mode = cfg->pwr_save ? PM_FAST : PM_OFF;
6450 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, power_mode);
6452 goto default_conf_out;
6453 brcmf_dbg(INFO, "power save set to %s\n",
6454 (power_mode ? "enabled" : "disabled"));
6456 err = brcmf_dongle_roam(ifp);
6458 goto default_conf_out;
6459 err = brcmf_cfg80211_change_iface(wdev->wiphy, ndev, wdev->iftype,
6462 goto default_conf_out;
6464 brcmf_configure_arp_nd_offload(ifp, true);
6466 cfg->dongle_up = true;
6473 static s32 __brcmf_cfg80211_up(struct brcmf_if *ifp)
6475 set_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6477 return brcmf_config_dongle(ifp->drvr->config);
6480 static s32 __brcmf_cfg80211_down(struct brcmf_if *ifp)
6482 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6485 * While going down, if associated with AP disassociate
6486 * from AP to save power
6488 if (check_vif_up(ifp->vif)) {
6489 brcmf_link_down(ifp->vif, WLAN_REASON_UNSPECIFIED);
6491 /* Make sure WPA_Supplicant receives all the event
6492 generated due to DISASSOC call to the fw to keep
6493 the state fw and WPA_Supplicant state consistent
6498 brcmf_abort_scanning(cfg);
6499 clear_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6504 s32 brcmf_cfg80211_up(struct net_device *ndev)
6506 struct brcmf_if *ifp = netdev_priv(ndev);
6507 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6510 mutex_lock(&cfg->usr_sync);
6511 err = __brcmf_cfg80211_up(ifp);
6512 mutex_unlock(&cfg->usr_sync);
6517 s32 brcmf_cfg80211_down(struct net_device *ndev)
6519 struct brcmf_if *ifp = netdev_priv(ndev);
6520 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6523 mutex_lock(&cfg->usr_sync);
6524 err = __brcmf_cfg80211_down(ifp);
6525 mutex_unlock(&cfg->usr_sync);
6530 enum nl80211_iftype brcmf_cfg80211_get_iftype(struct brcmf_if *ifp)
6532 struct wireless_dev *wdev = &ifp->vif->wdev;
6534 return wdev->iftype;
6537 bool brcmf_get_vif_state_any(struct brcmf_cfg80211_info *cfg,
6538 unsigned long state)
6540 struct brcmf_cfg80211_vif *vif;
6542 list_for_each_entry(vif, &cfg->vif_list, list) {
6543 if (test_bit(state, &vif->sme_state))
6549 static inline bool vif_event_equals(struct brcmf_cfg80211_vif_event *event,
6554 mutex_lock(&event->vif_event_lock);
6555 evt_action = event->action;
6556 mutex_unlock(&event->vif_event_lock);
6557 return evt_action == action;
6560 void brcmf_cfg80211_arm_vif_event(struct brcmf_cfg80211_info *cfg,
6561 struct brcmf_cfg80211_vif *vif)
6563 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6565 mutex_lock(&event->vif_event_lock);
6568 mutex_unlock(&event->vif_event_lock);
6571 bool brcmf_cfg80211_vif_event_armed(struct brcmf_cfg80211_info *cfg)
6573 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6576 mutex_lock(&event->vif_event_lock);
6577 armed = event->vif != NULL;
6578 mutex_unlock(&event->vif_event_lock);
6583 int brcmf_cfg80211_wait_vif_event(struct brcmf_cfg80211_info *cfg,
6584 u8 action, ulong timeout)
6586 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6588 return wait_event_timeout(event->vif_wq,
6589 vif_event_equals(event, action), timeout);
6592 static s32 brcmf_translate_country_code(struct brcmf_pub *drvr, char alpha2[2],
6593 struct brcmf_fil_country_le *ccreq)
6595 struct brcmfmac_pd_cc *country_codes;
6596 struct brcmfmac_pd_cc_entry *cc;
6600 country_codes = drvr->settings->country_codes;
6601 if (!country_codes) {
6602 brcmf_dbg(TRACE, "No country codes configured for device\n");
6606 if ((alpha2[0] == ccreq->country_abbrev[0]) &&
6607 (alpha2[1] == ccreq->country_abbrev[1])) {
6608 brcmf_dbg(TRACE, "Country code already set\n");
6613 for (i = 0; i < country_codes->table_size; i++) {
6614 cc = &country_codes->table[i];
6615 if ((cc->iso3166[0] == '\0') && (found_index == -1))
6617 if ((cc->iso3166[0] == alpha2[0]) &&
6618 (cc->iso3166[1] == alpha2[1])) {
6623 if (found_index == -1) {
6624 brcmf_dbg(TRACE, "No country code match found\n");
6627 memset(ccreq, 0, sizeof(*ccreq));
6628 ccreq->rev = cpu_to_le32(country_codes->table[found_index].rev);
6629 memcpy(ccreq->ccode, country_codes->table[found_index].cc,
6630 BRCMF_COUNTRY_BUF_SZ);
6631 ccreq->country_abbrev[0] = alpha2[0];
6632 ccreq->country_abbrev[1] = alpha2[1];
6633 ccreq->country_abbrev[2] = 0;
6638 static void brcmf_cfg80211_reg_notifier(struct wiphy *wiphy,
6639 struct regulatory_request *req)
6641 struct brcmf_cfg80211_info *cfg = wiphy_priv(wiphy);
6642 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
6643 struct brcmf_fil_country_le ccreq;
6647 /* ignore non-ISO3166 country codes */
6648 for (i = 0; i < sizeof(req->alpha2); i++)
6649 if (req->alpha2[i] < 'A' || req->alpha2[i] > 'Z') {
6650 brcmf_err("not a ISO3166 code (0x%02x 0x%02x)\n",
6651 req->alpha2[0], req->alpha2[1]);
6655 brcmf_dbg(TRACE, "Enter: initiator=%d, alpha=%c%c\n", req->initiator,
6656 req->alpha2[0], req->alpha2[1]);
6658 err = brcmf_fil_iovar_data_get(ifp, "country", &ccreq, sizeof(ccreq));
6660 brcmf_err("Country code iovar returned err = %d\n", err);
6664 err = brcmf_translate_country_code(ifp->drvr, req->alpha2, &ccreq);
6668 err = brcmf_fil_iovar_data_set(ifp, "country", &ccreq, sizeof(ccreq));
6670 brcmf_err("Firmware rejected country setting\n");
6673 brcmf_setup_wiphybands(wiphy);
6676 static void brcmf_free_wiphy(struct wiphy *wiphy)
6683 if (wiphy->iface_combinations) {
6684 for (i = 0; i < wiphy->n_iface_combinations; i++)
6685 kfree(wiphy->iface_combinations[i].limits);
6687 kfree(wiphy->iface_combinations);
6688 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6689 kfree(wiphy->bands[NL80211_BAND_2GHZ]->channels);
6690 kfree(wiphy->bands[NL80211_BAND_2GHZ]);
6692 if (wiphy->bands[NL80211_BAND_5GHZ]) {
6693 kfree(wiphy->bands[NL80211_BAND_5GHZ]->channels);
6694 kfree(wiphy->bands[NL80211_BAND_5GHZ]);
6699 struct brcmf_cfg80211_info *brcmf_cfg80211_attach(struct brcmf_pub *drvr,
6700 struct device *busdev,
6703 struct net_device *ndev = brcmf_get_ifp(drvr, 0)->ndev;
6704 struct brcmf_cfg80211_info *cfg;
6705 struct wiphy *wiphy;
6706 struct cfg80211_ops *ops;
6707 struct brcmf_cfg80211_vif *vif;
6708 struct brcmf_if *ifp;
6714 brcmf_err("ndev is invalid\n");
6718 ops = kmemdup(&brcmf_cfg80211_ops, sizeof(*ops), GFP_KERNEL);
6722 ifp = netdev_priv(ndev);
6724 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK))
6725 ops->set_rekey_data = brcmf_cfg80211_set_rekey_data;
6727 wiphy = wiphy_new(ops, sizeof(struct brcmf_cfg80211_info));
6729 brcmf_err("Could not allocate wiphy device\n");
6732 memcpy(wiphy->perm_addr, drvr->mac, ETH_ALEN);
6733 set_wiphy_dev(wiphy, busdev);
6735 cfg = wiphy_priv(wiphy);
6739 init_vif_event(&cfg->vif_event);
6740 INIT_LIST_HEAD(&cfg->vif_list);
6742 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_STATION, false);
6747 vif->wdev.netdev = ndev;
6748 ndev->ieee80211_ptr = &vif->wdev;
6749 SET_NETDEV_DEV(ndev, wiphy_dev(cfg->wiphy));
6751 err = wl_init_priv(cfg);
6753 brcmf_err("Failed to init iwm_priv (%d)\n", err);
6754 brcmf_free_vif(vif);
6759 /* determine d11 io type before wiphy setup */
6760 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_VERSION, &io_type);
6762 brcmf_err("Failed to get D11 version (%d)\n", err);
6765 cfg->d11inf.io_type = (u8)io_type;
6766 brcmu_d11_attach(&cfg->d11inf);
6768 err = brcmf_setup_wiphy(wiphy, ifp);
6772 brcmf_dbg(INFO, "Registering custom regulatory\n");
6773 wiphy->reg_notifier = brcmf_cfg80211_reg_notifier;
6774 wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG;
6775 wiphy_apply_custom_regulatory(wiphy, &brcmf_regdom);
6777 /* firmware defaults to 40MHz disabled in 2G band. We signal
6778 * cfg80211 here that we do and have it decide we can enable
6779 * it. But first check if device does support 2G operation.
6781 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6782 cap = &wiphy->bands[NL80211_BAND_2GHZ]->ht_cap.cap;
6783 *cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6785 err = wiphy_register(wiphy);
6787 brcmf_err("Could not register wiphy device (%d)\n", err);
6791 /* If cfg80211 didn't disable 40MHz HT CAP in wiphy_register(),
6792 * setup 40MHz in 2GHz band and enable OBSS scanning.
6794 if (cap && (*cap & IEEE80211_HT_CAP_SUP_WIDTH_20_40)) {
6795 err = brcmf_enable_bw40_2g(cfg);
6797 err = brcmf_fil_iovar_int_set(ifp, "obss_coex",
6798 BRCMF_OBSS_COEX_AUTO);
6800 *cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6802 /* p2p might require that "if-events" get processed by fweh. So
6803 * activate the already registered event handlers now and activate
6804 * the rest when initialization has completed. drvr->config needs to
6805 * be assigned before activating events.
6808 err = brcmf_fweh_activate_events(ifp);
6810 brcmf_err("FWEH activation failed (%d)\n", err);
6811 goto wiphy_unreg_out;
6814 err = brcmf_p2p_attach(cfg, p2pdev_forced);
6816 brcmf_err("P2P initilisation failed (%d)\n", err);
6817 goto wiphy_unreg_out;
6819 err = brcmf_btcoex_attach(cfg);
6821 brcmf_err("BT-coex initialisation failed (%d)\n", err);
6822 brcmf_p2p_detach(&cfg->p2p);
6823 goto wiphy_unreg_out;
6826 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS)) {
6827 err = brcmf_fil_iovar_int_set(ifp, "tdls_enable", 1);
6829 brcmf_dbg(INFO, "TDLS not enabled (%d)\n", err);
6830 wiphy->flags &= ~WIPHY_FLAG_SUPPORTS_TDLS;
6832 brcmf_fweh_register(cfg->pub, BRCMF_E_TDLS_PEER_EVENT,
6833 brcmf_notify_tdls_peer_event);
6837 /* (re-) activate FWEH event handling */
6838 err = brcmf_fweh_activate_events(ifp);
6840 brcmf_err("FWEH activation failed (%d)\n", err);
6841 goto wiphy_unreg_out;
6844 /* Fill in some of the advertised nl80211 supported features */
6845 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_SCAN_RANDOM_MAC)) {
6846 wiphy->features |= NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR;
6848 if (wiphy->wowlan &&
6849 wiphy->wowlan->flags & WIPHY_WOWLAN_NET_DETECT)
6850 wiphy->features |= NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
6857 wiphy_unregister(cfg->wiphy);
6859 wl_deinit_priv(cfg);
6860 brcmf_free_vif(vif);
6863 brcmf_free_wiphy(wiphy);
6868 void brcmf_cfg80211_detach(struct brcmf_cfg80211_info *cfg)
6873 brcmf_btcoex_detach(cfg);
6874 wiphy_unregister(cfg->wiphy);
6876 wl_deinit_priv(cfg);
6877 brcmf_free_wiphy(cfg->wiphy);
projects / cascardo / linux.git / blob