2 * Copyright (c) 2010 Broadcom Corporation
4 * Permission to use, copy, modify, and/or distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
11 * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
13 * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
14 * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 /* Toplevel file. Relies on dhd_linux.c to send commands to the dongle. */
19 #include <linux/kernel.h>
20 #include <linux/etherdevice.h>
21 #include <linux/module.h>
22 #include <linux/vmalloc.h>
23 #include <net/cfg80211.h>
24 #include <net/netlink.h>
26 #include <brcmu_utils.h>
28 #include <brcmu_wifi.h>
31 #include "tracepoint.h"
32 #include "fwil_types.h"
44 #define BRCMF_SCAN_IE_LEN_MAX 2048
46 #define WPA_OUI "\x00\x50\xF2" /* WPA OUI */
47 #define WPA_OUI_TYPE 1
48 #define RSN_OUI "\x00\x0F\xAC" /* RSN OUI */
49 #define WME_OUI_TYPE 2
50 #define WPS_OUI_TYPE 4
52 #define VS_IE_FIXED_HDR_LEN 6
53 #define WPA_IE_VERSION_LEN 2
54 #define WPA_IE_MIN_OUI_LEN 4
55 #define WPA_IE_SUITE_COUNT_LEN 2
57 #define WPA_CIPHER_NONE 0 /* None */
58 #define WPA_CIPHER_WEP_40 1 /* WEP (40-bit) */
59 #define WPA_CIPHER_TKIP 2 /* TKIP: default for WPA */
60 #define WPA_CIPHER_AES_CCM 4 /* AES (CCM) */
61 #define WPA_CIPHER_WEP_104 5 /* WEP (104-bit) */
63 #define RSN_AKM_NONE 0 /* None (IBSS) */
64 #define RSN_AKM_UNSPECIFIED 1 /* Over 802.1x */
65 #define RSN_AKM_PSK 2 /* Pre-shared Key */
66 #define RSN_AKM_SHA256_1X 5 /* SHA256, 802.1X */
67 #define RSN_AKM_SHA256_PSK 6 /* SHA256, Pre-shared Key */
68 #define RSN_CAP_LEN 2 /* Length of RSN capabilities */
69 #define RSN_CAP_PTK_REPLAY_CNTR_MASK (BIT(2) | BIT(3))
70 #define RSN_CAP_MFPR_MASK BIT(6)
71 #define RSN_CAP_MFPC_MASK BIT(7)
72 #define RSN_PMKID_COUNT_LEN 2
74 #define VNDR_IE_CMD_LEN 4 /* length of the set command
75 * string :"add", "del" (+ NUL)
77 #define VNDR_IE_COUNT_OFFSET 4
78 #define VNDR_IE_PKTFLAG_OFFSET 8
79 #define VNDR_IE_VSIE_OFFSET 12
80 #define VNDR_IE_HDR_SIZE 12
81 #define VNDR_IE_PARSE_LIMIT 5
83 #define DOT11_MGMT_HDR_LEN 24 /* d11 management header len */
84 #define DOT11_BCN_PRB_FIXED_LEN 12 /* beacon/probe fixed length */
86 #define BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS 320
87 #define BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS 400
88 #define BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS 20
90 #define BRCMF_SCAN_CHANNEL_TIME 40
91 #define BRCMF_SCAN_UNASSOC_TIME 40
92 #define BRCMF_SCAN_PASSIVE_TIME 120
94 #define BRCMF_ND_INFO_TIMEOUT msecs_to_jiffies(2000)
96 #define BRCMF_ASSOC_PARAMS_FIXED_SIZE \
97 (sizeof(struct brcmf_assoc_params_le) - sizeof(u16))
99 static bool check_vif_up(struct brcmf_cfg80211_vif *vif)
101 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state)) {
102 brcmf_dbg(INFO, "device is not ready : status (%lu)\n",
109 #define RATE_TO_BASE100KBPS(rate) (((rate) * 10) / 2)
110 #define RATETAB_ENT(_rateid, _flags) \
112 .bitrate = RATE_TO_BASE100KBPS(_rateid), \
113 .hw_value = (_rateid), \
117 static struct ieee80211_rate __wl_rates[] = {
118 RATETAB_ENT(BRCM_RATE_1M, 0),
119 RATETAB_ENT(BRCM_RATE_2M, IEEE80211_RATE_SHORT_PREAMBLE),
120 RATETAB_ENT(BRCM_RATE_5M5, IEEE80211_RATE_SHORT_PREAMBLE),
121 RATETAB_ENT(BRCM_RATE_11M, IEEE80211_RATE_SHORT_PREAMBLE),
122 RATETAB_ENT(BRCM_RATE_6M, 0),
123 RATETAB_ENT(BRCM_RATE_9M, 0),
124 RATETAB_ENT(BRCM_RATE_12M, 0),
125 RATETAB_ENT(BRCM_RATE_18M, 0),
126 RATETAB_ENT(BRCM_RATE_24M, 0),
127 RATETAB_ENT(BRCM_RATE_36M, 0),
128 RATETAB_ENT(BRCM_RATE_48M, 0),
129 RATETAB_ENT(BRCM_RATE_54M, 0),
132 #define wl_g_rates (__wl_rates + 0)
133 #define wl_g_rates_size ARRAY_SIZE(__wl_rates)
134 #define wl_a_rates (__wl_rates + 4)
135 #define wl_a_rates_size (wl_g_rates_size - 4)
137 #define CHAN2G(_channel, _freq) { \
138 .band = NL80211_BAND_2GHZ, \
139 .center_freq = (_freq), \
140 .hw_value = (_channel), \
141 .max_antenna_gain = 0, \
145 #define CHAN5G(_channel) { \
146 .band = NL80211_BAND_5GHZ, \
147 .center_freq = 5000 + (5 * (_channel)), \
148 .hw_value = (_channel), \
149 .max_antenna_gain = 0, \
153 static struct ieee80211_channel __wl_2ghz_channels[] = {
154 CHAN2G(1, 2412), CHAN2G(2, 2417), CHAN2G(3, 2422), CHAN2G(4, 2427),
155 CHAN2G(5, 2432), CHAN2G(6, 2437), CHAN2G(7, 2442), CHAN2G(8, 2447),
156 CHAN2G(9, 2452), CHAN2G(10, 2457), CHAN2G(11, 2462), CHAN2G(12, 2467),
157 CHAN2G(13, 2472), CHAN2G(14, 2484)
160 static struct ieee80211_channel __wl_5ghz_channels[] = {
161 CHAN5G(34), CHAN5G(36), CHAN5G(38), CHAN5G(40), CHAN5G(42),
162 CHAN5G(44), CHAN5G(46), CHAN5G(48), CHAN5G(52), CHAN5G(56),
163 CHAN5G(60), CHAN5G(64), CHAN5G(100), CHAN5G(104), CHAN5G(108),
164 CHAN5G(112), CHAN5G(116), CHAN5G(120), CHAN5G(124), CHAN5G(128),
165 CHAN5G(132), CHAN5G(136), CHAN5G(140), CHAN5G(144), CHAN5G(149),
166 CHAN5G(153), CHAN5G(157), CHAN5G(161), CHAN5G(165)
169 /* Band templates duplicated per wiphy. The channel info
170 * above is added to the band during setup.
172 static const struct ieee80211_supported_band __wl_band_2ghz = {
173 .band = NL80211_BAND_2GHZ,
174 .bitrates = wl_g_rates,
175 .n_bitrates = wl_g_rates_size,
178 static const struct ieee80211_supported_band __wl_band_5ghz = {
179 .band = NL80211_BAND_5GHZ,
180 .bitrates = wl_a_rates,
181 .n_bitrates = wl_a_rates_size,
184 /* This is to override regulatory domains defined in cfg80211 module (reg.c)
185 * By default world regulatory domain defined in reg.c puts the flags
186 * NL80211_RRF_NO_IR for 5GHz channels (for * 36..48 and 149..165).
187 * With respect to these flags, wpa_supplicant doesn't * start p2p
188 * operations on 5GHz channels. All the changes in world regulatory
189 * domain are to be done here.
191 static const struct ieee80211_regdomain brcmf_regdom = {
195 /* IEEE 802.11b/g, channels 1..11 */
196 REG_RULE(2412-10, 2472+10, 40, 6, 20, 0),
198 /* IEEE 802.11 channel 14 - Only JP enables
199 * this and for 802.11b only
201 REG_RULE(2484-10, 2484+10, 20, 6, 20, 0),
202 /* IEEE 802.11a, channel 36..64 */
203 REG_RULE(5150-10, 5350+10, 80, 6, 20, 0),
204 /* IEEE 802.11a, channel 100..165 */
205 REG_RULE(5470-10, 5850+10, 80, 6, 20, 0), }
208 /* Note: brcmf_cipher_suites is an array of int defining which cipher suites
209 * are supported. A pointer to this array and the number of entries is passed
210 * on to upper layers. AES_CMAC defines whether or not the driver supports MFP.
211 * So the cipher suite AES_CMAC has to be the last one in the array, and when
212 * device does not support MFP then the number of suites will be decreased by 1
214 static const u32 brcmf_cipher_suites[] = {
215 WLAN_CIPHER_SUITE_WEP40,
216 WLAN_CIPHER_SUITE_WEP104,
217 WLAN_CIPHER_SUITE_TKIP,
218 WLAN_CIPHER_SUITE_CCMP,
219 /* Keep as last entry: */
220 WLAN_CIPHER_SUITE_AES_CMAC
223 /* Vendor specific ie. id = 221, oui and type defines exact ie */
224 struct brcmf_vs_tlv {
231 struct parsed_vndr_ie_info {
233 u32 ie_len; /* total length including id & length field */
234 struct brcmf_vs_tlv vndrie;
237 struct parsed_vndr_ies {
239 struct parsed_vndr_ie_info ie_info[VNDR_IE_PARSE_LIMIT];
242 static u8 nl80211_band_to_fwil(enum nl80211_band band)
245 case NL80211_BAND_2GHZ:
247 case NL80211_BAND_5GHZ:
256 static u16 chandef_to_chanspec(struct brcmu_d11inf *d11inf,
257 struct cfg80211_chan_def *ch)
259 struct brcmu_chan ch_inf;
262 brcmf_dbg(TRACE, "chandef: control %d center %d width %d\n",
263 ch->chan->center_freq, ch->center_freq1, ch->width);
264 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq1);
265 primary_offset = ch->chan->center_freq - ch->center_freq1;
267 case NL80211_CHAN_WIDTH_20:
268 case NL80211_CHAN_WIDTH_20_NOHT:
269 ch_inf.bw = BRCMU_CHAN_BW_20;
270 WARN_ON(primary_offset != 0);
272 case NL80211_CHAN_WIDTH_40:
273 ch_inf.bw = BRCMU_CHAN_BW_40;
274 if (primary_offset > 0)
275 ch_inf.sb = BRCMU_CHAN_SB_U;
277 ch_inf.sb = BRCMU_CHAN_SB_L;
279 case NL80211_CHAN_WIDTH_80:
280 ch_inf.bw = BRCMU_CHAN_BW_80;
281 if (primary_offset == -30)
282 ch_inf.sb = BRCMU_CHAN_SB_LL;
283 else if (primary_offset == -10)
284 ch_inf.sb = BRCMU_CHAN_SB_LU;
285 else if (primary_offset == 10)
286 ch_inf.sb = BRCMU_CHAN_SB_UL;
288 ch_inf.sb = BRCMU_CHAN_SB_UU;
290 case NL80211_CHAN_WIDTH_80P80:
291 case NL80211_CHAN_WIDTH_160:
292 case NL80211_CHAN_WIDTH_5:
293 case NL80211_CHAN_WIDTH_10:
297 switch (ch->chan->band) {
298 case NL80211_BAND_2GHZ:
299 ch_inf.band = BRCMU_CHAN_BAND_2G;
301 case NL80211_BAND_5GHZ:
302 ch_inf.band = BRCMU_CHAN_BAND_5G;
304 case NL80211_BAND_60GHZ:
308 d11inf->encchspec(&ch_inf);
310 return ch_inf.chspec;
313 u16 channel_to_chanspec(struct brcmu_d11inf *d11inf,
314 struct ieee80211_channel *ch)
316 struct brcmu_chan ch_inf;
318 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq);
319 ch_inf.bw = BRCMU_CHAN_BW_20;
320 d11inf->encchspec(&ch_inf);
322 return ch_inf.chspec;
325 /* Traverse a string of 1-byte tag/1-byte length/variable-length value
326 * triples, returning a pointer to the substring whose first element
329 static const struct brcmf_tlv *
330 brcmf_parse_tlvs(const void *buf, int buflen, uint key)
332 const struct brcmf_tlv *elt = buf;
335 /* find tagged parameter */
336 while (totlen >= TLV_HDR_LEN) {
339 /* validate remaining totlen */
340 if ((elt->id == key) && (totlen >= (len + TLV_HDR_LEN)))
343 elt = (struct brcmf_tlv *)((u8 *)elt + (len + TLV_HDR_LEN));
344 totlen -= (len + TLV_HDR_LEN);
350 /* Is any of the tlvs the expected entry? If
351 * not update the tlvs buffer pointer/length.
354 brcmf_tlv_has_ie(const u8 *ie, const u8 **tlvs, u32 *tlvs_len,
355 const u8 *oui, u32 oui_len, u8 type)
357 /* If the contents match the OUI and the type */
358 if (ie[TLV_LEN_OFF] >= oui_len + 1 &&
359 !memcmp(&ie[TLV_BODY_OFF], oui, oui_len) &&
360 type == ie[TLV_BODY_OFF + oui_len]) {
366 /* point to the next ie */
367 ie += ie[TLV_LEN_OFF] + TLV_HDR_LEN;
368 /* calculate the length of the rest of the buffer */
369 *tlvs_len -= (int)(ie - *tlvs);
370 /* update the pointer to the start of the buffer */
376 static struct brcmf_vs_tlv *
377 brcmf_find_wpaie(const u8 *parse, u32 len)
379 const struct brcmf_tlv *ie;
381 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
382 if (brcmf_tlv_has_ie((const u8 *)ie, &parse, &len,
383 WPA_OUI, TLV_OUI_LEN, WPA_OUI_TYPE))
384 return (struct brcmf_vs_tlv *)ie;
389 static struct brcmf_vs_tlv *
390 brcmf_find_wpsie(const u8 *parse, u32 len)
392 const struct brcmf_tlv *ie;
394 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
395 if (brcmf_tlv_has_ie((u8 *)ie, &parse, &len,
396 WPA_OUI, TLV_OUI_LEN, WPS_OUI_TYPE))
397 return (struct brcmf_vs_tlv *)ie;
402 static int brcmf_vif_change_validate(struct brcmf_cfg80211_info *cfg,
403 struct brcmf_cfg80211_vif *vif,
404 enum nl80211_iftype new_type)
406 struct brcmf_cfg80211_vif *pos;
407 bool check_combos = false;
409 struct iface_combination_params params = {
410 .num_different_channels = 1,
413 list_for_each_entry(pos, &cfg->vif_list, list)
415 params.iftype_num[new_type]++;
417 /* concurrent interfaces so need check combinations */
419 params.iftype_num[pos->wdev.iftype]++;
423 ret = cfg80211_check_combinations(cfg->wiphy, ¶ms);
428 static int brcmf_vif_add_validate(struct brcmf_cfg80211_info *cfg,
429 enum nl80211_iftype new_type)
431 struct brcmf_cfg80211_vif *pos;
432 struct iface_combination_params params = {
433 .num_different_channels = 1,
436 list_for_each_entry(pos, &cfg->vif_list, list)
437 params.iftype_num[pos->wdev.iftype]++;
439 params.iftype_num[new_type]++;
440 return cfg80211_check_combinations(cfg->wiphy, ¶ms);
443 static void convert_key_from_CPU(struct brcmf_wsec_key *key,
444 struct brcmf_wsec_key_le *key_le)
446 key_le->index = cpu_to_le32(key->index);
447 key_le->len = cpu_to_le32(key->len);
448 key_le->algo = cpu_to_le32(key->algo);
449 key_le->flags = cpu_to_le32(key->flags);
450 key_le->rxiv.hi = cpu_to_le32(key->rxiv.hi);
451 key_le->rxiv.lo = cpu_to_le16(key->rxiv.lo);
452 key_le->iv_initialized = cpu_to_le32(key->iv_initialized);
453 memcpy(key_le->data, key->data, sizeof(key->data));
454 memcpy(key_le->ea, key->ea, sizeof(key->ea));
458 send_key_to_dongle(struct brcmf_if *ifp, struct brcmf_wsec_key *key)
461 struct brcmf_wsec_key_le key_le;
463 convert_key_from_CPU(key, &key_le);
465 brcmf_netdev_wait_pend8021x(ifp);
467 err = brcmf_fil_bsscfg_data_set(ifp, "wsec_key", &key_le,
471 brcmf_err("wsec_key error (%d)\n", err);
476 brcmf_cfg80211_update_proto_addr_mode(struct wireless_dev *wdev)
478 struct brcmf_cfg80211_vif *vif;
479 struct brcmf_if *ifp;
481 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
484 if ((wdev->iftype == NL80211_IFTYPE_ADHOC) ||
485 (wdev->iftype == NL80211_IFTYPE_AP) ||
486 (wdev->iftype == NL80211_IFTYPE_P2P_GO))
487 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
490 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
494 static int brcmf_get_first_free_bsscfgidx(struct brcmf_pub *drvr)
498 for (bsscfgidx = 0; bsscfgidx < BRCMF_MAX_IFS; bsscfgidx++) {
499 /* bsscfgidx 1 is reserved for legacy P2P */
502 if (!drvr->iflist[bsscfgidx])
509 static int brcmf_cfg80211_request_ap_if(struct brcmf_if *ifp)
511 struct brcmf_mbss_ssid_le mbss_ssid_le;
515 memset(&mbss_ssid_le, 0, sizeof(mbss_ssid_le));
516 bsscfgidx = brcmf_get_first_free_bsscfgidx(ifp->drvr);
520 mbss_ssid_le.bsscfgidx = cpu_to_le32(bsscfgidx);
521 mbss_ssid_le.SSID_len = cpu_to_le32(5);
522 sprintf(mbss_ssid_le.SSID, "ssid%d" , bsscfgidx);
524 err = brcmf_fil_bsscfg_data_set(ifp, "bsscfg:ssid", &mbss_ssid_le,
525 sizeof(mbss_ssid_le));
527 brcmf_err("setting ssid failed %d\n", err);
533 * brcmf_ap_add_vif() - create a new AP virtual interface for multiple BSS
535 * @wiphy: wiphy device of new interface.
536 * @name: name of the new interface.
537 * @params: contains mac address for AP device.
540 struct wireless_dev *brcmf_ap_add_vif(struct wiphy *wiphy, const char *name,
541 struct vif_params *params)
543 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
544 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
545 struct brcmf_cfg80211_vif *vif;
548 if (brcmf_cfg80211_vif_event_armed(cfg))
549 return ERR_PTR(-EBUSY);
551 brcmf_dbg(INFO, "Adding vif \"%s\"\n", name);
553 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_AP);
555 return (struct wireless_dev *)vif;
557 brcmf_cfg80211_arm_vif_event(cfg, vif);
559 err = brcmf_cfg80211_request_ap_if(ifp);
561 brcmf_cfg80211_arm_vif_event(cfg, NULL);
565 /* wait for firmware event */
566 err = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_ADD,
567 BRCMF_VIF_EVENT_TIMEOUT);
568 brcmf_cfg80211_arm_vif_event(cfg, NULL);
570 brcmf_err("timeout occurred\n");
575 /* interface created in firmware */
578 brcmf_err("no if pointer provided\n");
583 strncpy(ifp->ndev->name, name, sizeof(ifp->ndev->name) - 1);
584 err = brcmf_net_attach(ifp, true);
586 brcmf_err("Registering netdevice failed\n");
587 free_netdev(ifp->ndev);
591 return &ifp->vif->wdev;
598 static bool brcmf_is_apmode(struct brcmf_cfg80211_vif *vif)
600 enum nl80211_iftype iftype;
602 iftype = vif->wdev.iftype;
603 return iftype == NL80211_IFTYPE_AP || iftype == NL80211_IFTYPE_P2P_GO;
606 static bool brcmf_is_ibssmode(struct brcmf_cfg80211_vif *vif)
608 return vif->wdev.iftype == NL80211_IFTYPE_ADHOC;
611 static struct wireless_dev *brcmf_cfg80211_add_iface(struct wiphy *wiphy,
613 unsigned char name_assign_type,
614 enum nl80211_iftype type,
615 struct vif_params *params)
617 struct wireless_dev *wdev;
620 brcmf_dbg(TRACE, "enter: %s type %d\n", name, type);
621 err = brcmf_vif_add_validate(wiphy_to_cfg(wiphy), type);
623 brcmf_err("iface validation failed: err=%d\n", err);
627 case NL80211_IFTYPE_ADHOC:
628 case NL80211_IFTYPE_STATION:
629 case NL80211_IFTYPE_AP_VLAN:
630 case NL80211_IFTYPE_WDS:
631 case NL80211_IFTYPE_MONITOR:
632 case NL80211_IFTYPE_MESH_POINT:
633 return ERR_PTR(-EOPNOTSUPP);
634 case NL80211_IFTYPE_AP:
635 wdev = brcmf_ap_add_vif(wiphy, name, params);
637 case NL80211_IFTYPE_P2P_CLIENT:
638 case NL80211_IFTYPE_P2P_GO:
639 case NL80211_IFTYPE_P2P_DEVICE:
640 wdev = brcmf_p2p_add_vif(wiphy, name, name_assign_type, type, params);
642 case NL80211_IFTYPE_UNSPECIFIED:
644 return ERR_PTR(-EINVAL);
648 brcmf_err("add iface %s type %d failed: err=%d\n",
649 name, type, (int)PTR_ERR(wdev));
651 brcmf_cfg80211_update_proto_addr_mode(wdev);
656 static void brcmf_scan_config_mpc(struct brcmf_if *ifp, int mpc)
658 if (brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_NEED_MPC))
659 brcmf_set_mpc(ifp, mpc);
662 void brcmf_set_mpc(struct brcmf_if *ifp, int mpc)
666 if (check_vif_up(ifp->vif)) {
667 err = brcmf_fil_iovar_int_set(ifp, "mpc", mpc);
669 brcmf_err("fail to set mpc\n");
672 brcmf_dbg(INFO, "MPC : %d\n", mpc);
676 s32 brcmf_notify_escan_complete(struct brcmf_cfg80211_info *cfg,
677 struct brcmf_if *ifp, bool aborted,
680 struct brcmf_scan_params_le params_le;
681 struct cfg80211_scan_request *scan_request;
686 brcmf_dbg(SCAN, "Enter\n");
688 /* clear scan request, because the FW abort can cause a second call */
689 /* to this functon and might cause a double cfg80211_scan_done */
690 scan_request = cfg->scan_request;
691 cfg->scan_request = NULL;
693 if (timer_pending(&cfg->escan_timeout))
694 del_timer_sync(&cfg->escan_timeout);
697 /* Do a scan abort to stop the driver's scan engine */
698 brcmf_dbg(SCAN, "ABORT scan in firmware\n");
699 memset(¶ms_le, 0, sizeof(params_le));
700 eth_broadcast_addr(params_le.bssid);
701 params_le.bss_type = DOT11_BSSTYPE_ANY;
702 params_le.scan_type = 0;
703 params_le.channel_num = cpu_to_le32(1);
704 params_le.nprobes = cpu_to_le32(1);
705 params_le.active_time = cpu_to_le32(-1);
706 params_le.passive_time = cpu_to_le32(-1);
707 params_le.home_time = cpu_to_le32(-1);
708 /* Scan is aborted by setting channel_list[0] to -1 */
709 params_le.channel_list[0] = cpu_to_le16(-1);
710 /* E-Scan (or anyother type) can be aborted by SCAN */
711 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCAN,
712 ¶ms_le, sizeof(params_le));
714 brcmf_err("Scan abort failed\n");
717 brcmf_scan_config_mpc(ifp, 1);
720 * e-scan can be initiated internally
721 * which takes precedence.
723 if (cfg->int_escan_map) {
724 brcmf_dbg(SCAN, "scheduled scan completed (%x)\n",
726 while (cfg->int_escan_map) {
727 bucket = __ffs(cfg->int_escan_map);
728 cfg->int_escan_map &= ~BIT(bucket);
729 reqid = brcmf_pno_find_reqid_by_bucket(cfg->pno,
732 brcmf_dbg(SCAN, "report results: reqid=%llu\n",
734 cfg80211_sched_scan_results(cfg_to_wiphy(cfg),
738 } else if (scan_request) {
739 struct cfg80211_scan_info info = {
743 brcmf_dbg(SCAN, "ESCAN Completed scan: %s\n",
744 aborted ? "Aborted" : "Done");
745 cfg80211_scan_done(scan_request, &info);
747 if (!test_and_clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
748 brcmf_dbg(SCAN, "Scan complete, probably P2P scan\n");
753 static int brcmf_cfg80211_del_ap_iface(struct wiphy *wiphy,
754 struct wireless_dev *wdev)
756 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
757 struct net_device *ndev = wdev->netdev;
758 struct brcmf_if *ifp = netdev_priv(ndev);
762 brcmf_cfg80211_arm_vif_event(cfg, ifp->vif);
764 err = brcmf_fil_bsscfg_data_set(ifp, "interface_remove", NULL, 0);
766 brcmf_err("interface_remove failed %d\n", err);
770 /* wait for firmware event */
771 ret = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_DEL,
772 BRCMF_VIF_EVENT_TIMEOUT);
774 brcmf_err("timeout occurred\n");
779 brcmf_remove_interface(ifp, true);
782 brcmf_cfg80211_arm_vif_event(cfg, NULL);
787 int brcmf_cfg80211_del_iface(struct wiphy *wiphy, struct wireless_dev *wdev)
789 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
790 struct net_device *ndev = wdev->netdev;
792 if (ndev && ndev == cfg_to_ndev(cfg))
795 /* vif event pending in firmware */
796 if (brcmf_cfg80211_vif_event_armed(cfg))
800 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status) &&
801 cfg->escan_info.ifp == netdev_priv(ndev))
802 brcmf_notify_escan_complete(cfg, netdev_priv(ndev),
805 brcmf_fil_iovar_int_set(netdev_priv(ndev), "mpc", 1);
808 switch (wdev->iftype) {
809 case NL80211_IFTYPE_ADHOC:
810 case NL80211_IFTYPE_STATION:
811 case NL80211_IFTYPE_AP_VLAN:
812 case NL80211_IFTYPE_WDS:
813 case NL80211_IFTYPE_MONITOR:
814 case NL80211_IFTYPE_MESH_POINT:
816 case NL80211_IFTYPE_AP:
817 return brcmf_cfg80211_del_ap_iface(wiphy, wdev);
818 case NL80211_IFTYPE_P2P_CLIENT:
819 case NL80211_IFTYPE_P2P_GO:
820 case NL80211_IFTYPE_P2P_DEVICE:
821 return brcmf_p2p_del_vif(wiphy, wdev);
822 case NL80211_IFTYPE_UNSPECIFIED:
830 brcmf_cfg80211_change_iface(struct wiphy *wiphy, struct net_device *ndev,
831 enum nl80211_iftype type,
832 struct vif_params *params)
834 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
835 struct brcmf_if *ifp = netdev_priv(ndev);
836 struct brcmf_cfg80211_vif *vif = ifp->vif;
841 brcmf_dbg(TRACE, "Enter, bsscfgidx=%d, type=%d\n", ifp->bsscfgidx,
844 /* WAR: There are a number of p2p interface related problems which
845 * need to be handled initially (before doing the validate).
846 * wpa_supplicant tends to do iface changes on p2p device/client/go
847 * which are not always possible/allowed. However we need to return
848 * OK otherwise the wpa_supplicant wont start. The situation differs
849 * on configuration and setup (p2pon=1 module param). The first check
850 * is to see if the request is a change to station for p2p iface.
852 if ((type == NL80211_IFTYPE_STATION) &&
853 ((vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) ||
854 (vif->wdev.iftype == NL80211_IFTYPE_P2P_GO) ||
855 (vif->wdev.iftype == NL80211_IFTYPE_P2P_DEVICE))) {
856 brcmf_dbg(TRACE, "Ignoring cmd for p2p if\n");
857 /* Now depending on whether module param p2pon=1 was used the
858 * response needs to be either 0 or EOPNOTSUPP. The reason is
859 * that if p2pon=1 is used, but a newer supplicant is used then
860 * we should return an error, as this combination wont work.
861 * In other situations 0 is returned and supplicant will start
862 * normally. It will give a trace in cfg80211, but it is the
863 * only way to get it working. Unfortunately this will result
864 * in situation where we wont support new supplicant in
865 * combination with module param p2pon=1, but that is the way
866 * it is. If the user tries this then unloading of driver might
869 if (cfg->p2p.p2pdev_dynamically)
874 err = brcmf_vif_change_validate(wiphy_to_cfg(wiphy), vif, type);
876 brcmf_err("iface validation failed: err=%d\n", err);
880 case NL80211_IFTYPE_MONITOR:
881 case NL80211_IFTYPE_WDS:
882 brcmf_err("type (%d) : currently we do not support this type\n",
885 case NL80211_IFTYPE_ADHOC:
888 case NL80211_IFTYPE_STATION:
891 case NL80211_IFTYPE_AP:
892 case NL80211_IFTYPE_P2P_GO:
901 if (type == NL80211_IFTYPE_P2P_GO) {
902 brcmf_dbg(INFO, "IF Type = P2P GO\n");
903 err = brcmf_p2p_ifchange(cfg, BRCMF_FIL_P2P_IF_GO);
906 brcmf_dbg(INFO, "IF Type = AP\n");
909 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, infra);
911 brcmf_err("WLC_SET_INFRA error (%d)\n", err);
915 brcmf_dbg(INFO, "IF Type = %s\n", brcmf_is_ibssmode(vif) ?
918 ndev->ieee80211_ptr->iftype = type;
920 brcmf_cfg80211_update_proto_addr_mode(&vif->wdev);
923 brcmf_dbg(TRACE, "Exit\n");
928 static void brcmf_escan_prep(struct brcmf_cfg80211_info *cfg,
929 struct brcmf_scan_params_le *params_le,
930 struct cfg80211_scan_request *request)
938 struct brcmf_ssid_le ssid_le;
940 eth_broadcast_addr(params_le->bssid);
941 params_le->bss_type = DOT11_BSSTYPE_ANY;
942 params_le->scan_type = BRCMF_SCANTYPE_ACTIVE;
943 params_le->channel_num = 0;
944 params_le->nprobes = cpu_to_le32(-1);
945 params_le->active_time = cpu_to_le32(-1);
946 params_le->passive_time = cpu_to_le32(-1);
947 params_le->home_time = cpu_to_le32(-1);
948 memset(¶ms_le->ssid_le, 0, sizeof(params_le->ssid_le));
950 n_ssids = request->n_ssids;
951 n_channels = request->n_channels;
953 /* Copy channel array if applicable */
954 brcmf_dbg(SCAN, "### List of channelspecs to scan ### %d\n",
956 if (n_channels > 0) {
957 for (i = 0; i < n_channels; i++) {
958 chanspec = channel_to_chanspec(&cfg->d11inf,
959 request->channels[i]);
960 brcmf_dbg(SCAN, "Chan : %d, Channel spec: %x\n",
961 request->channels[i]->hw_value, chanspec);
962 params_le->channel_list[i] = cpu_to_le16(chanspec);
965 brcmf_dbg(SCAN, "Scanning all channels\n");
967 /* Copy ssid array if applicable */
968 brcmf_dbg(SCAN, "### List of SSIDs to scan ### %d\n", n_ssids);
970 offset = offsetof(struct brcmf_scan_params_le, channel_list) +
971 n_channels * sizeof(u16);
972 offset = roundup(offset, sizeof(u32));
973 ptr = (char *)params_le + offset;
974 for (i = 0; i < n_ssids; i++) {
975 memset(&ssid_le, 0, sizeof(ssid_le));
977 cpu_to_le32(request->ssids[i].ssid_len);
978 memcpy(ssid_le.SSID, request->ssids[i].ssid,
979 request->ssids[i].ssid_len);
980 if (!ssid_le.SSID_len)
981 brcmf_dbg(SCAN, "%d: Broadcast scan\n", i);
983 brcmf_dbg(SCAN, "%d: scan for %.32s size=%d\n",
984 i, ssid_le.SSID, ssid_le.SSID_len);
985 memcpy(ptr, &ssid_le, sizeof(ssid_le));
986 ptr += sizeof(ssid_le);
989 brcmf_dbg(SCAN, "Performing passive scan\n");
990 params_le->scan_type = BRCMF_SCANTYPE_PASSIVE;
992 /* Adding mask to channel numbers */
993 params_le->channel_num =
994 cpu_to_le32((n_ssids << BRCMF_SCAN_PARAMS_NSSID_SHIFT) |
995 (n_channels & BRCMF_SCAN_PARAMS_COUNT_MASK));
999 brcmf_run_escan(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp,
1000 struct cfg80211_scan_request *request)
1002 s32 params_size = BRCMF_SCAN_PARAMS_FIXED_SIZE +
1003 offsetof(struct brcmf_escan_params_le, params_le);
1004 struct brcmf_escan_params_le *params;
1007 brcmf_dbg(SCAN, "E-SCAN START\n");
1009 if (request != NULL) {
1010 /* Allocate space for populating ssids in struct */
1011 params_size += sizeof(u32) * ((request->n_channels + 1) / 2);
1013 /* Allocate space for populating ssids in struct */
1014 params_size += sizeof(struct brcmf_ssid_le) * request->n_ssids;
1017 params = kzalloc(params_size, GFP_KERNEL);
1022 BUG_ON(params_size + sizeof("escan") >= BRCMF_DCMD_MEDLEN);
1023 brcmf_escan_prep(cfg, ¶ms->params_le, request);
1024 params->version = cpu_to_le32(BRCMF_ESCAN_REQ_VERSION);
1025 params->action = cpu_to_le16(WL_ESCAN_ACTION_START);
1026 params->sync_id = cpu_to_le16(0x1234);
1028 err = brcmf_fil_iovar_data_set(ifp, "escan", params, params_size);
1031 brcmf_dbg(INFO, "system busy : escan canceled\n");
1033 brcmf_err("error (%d)\n", err);
1042 brcmf_do_escan(struct brcmf_if *ifp, struct cfg80211_scan_request *request)
1044 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
1046 struct brcmf_scan_results *results;
1047 struct escan_info *escan = &cfg->escan_info;
1049 brcmf_dbg(SCAN, "Enter\n");
1051 escan->wiphy = cfg->wiphy;
1052 escan->escan_state = WL_ESCAN_STATE_SCANNING;
1054 brcmf_scan_config_mpc(ifp, 0);
1055 results = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
1056 results->version = 0;
1058 results->buflen = WL_ESCAN_RESULTS_FIXED_SIZE;
1060 err = escan->run(cfg, ifp, request);
1062 brcmf_scan_config_mpc(ifp, 1);
1067 brcmf_cfg80211_scan(struct wiphy *wiphy, struct cfg80211_scan_request *request)
1069 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1070 struct brcmf_cfg80211_vif *vif;
1073 brcmf_dbg(TRACE, "Enter\n");
1074 vif = container_of(request->wdev, struct brcmf_cfg80211_vif, wdev);
1075 if (!check_vif_up(vif))
1078 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
1079 brcmf_err("Scanning already: status (%lu)\n", cfg->scan_status);
1082 if (test_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status)) {
1083 brcmf_err("Scanning being aborted: status (%lu)\n",
1087 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
1088 brcmf_err("Scanning suppressed: status (%lu)\n",
1092 if (test_bit(BRCMF_VIF_STATUS_CONNECTING, &vif->sme_state)) {
1093 brcmf_err("Connecting: status (%lu)\n", vif->sme_state);
1097 /* If scan req comes for p2p0, send it over primary I/F */
1098 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
1099 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif;
1101 brcmf_dbg(SCAN, "START ESCAN\n");
1103 cfg->scan_request = request;
1104 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1106 cfg->escan_info.run = brcmf_run_escan;
1107 err = brcmf_p2p_scan_prep(wiphy, request, vif);
1111 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_PRBREQ_FLAG,
1112 request->ie, request->ie_len);
1116 err = brcmf_do_escan(vif->ifp, request);
1120 /* Arm scan timeout timer */
1121 mod_timer(&cfg->escan_timeout,
1122 jiffies + msecs_to_jiffies(BRCMF_ESCAN_TIMER_INTERVAL_MS));
1127 brcmf_err("scan error (%d)\n", err);
1128 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1129 cfg->scan_request = NULL;
1133 static s32 brcmf_set_rts(struct net_device *ndev, u32 rts_threshold)
1137 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "rtsthresh",
1140 brcmf_err("Error (%d)\n", err);
1145 static s32 brcmf_set_frag(struct net_device *ndev, u32 frag_threshold)
1149 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "fragthresh",
1152 brcmf_err("Error (%d)\n", err);
1157 static s32 brcmf_set_retry(struct net_device *ndev, u32 retry, bool l)
1160 u32 cmd = (l ? BRCMF_C_SET_LRL : BRCMF_C_SET_SRL);
1162 err = brcmf_fil_cmd_int_set(netdev_priv(ndev), cmd, retry);
1164 brcmf_err("cmd (%d) , error (%d)\n", cmd, err);
1170 static s32 brcmf_cfg80211_set_wiphy_params(struct wiphy *wiphy, u32 changed)
1172 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1173 struct net_device *ndev = cfg_to_ndev(cfg);
1174 struct brcmf_if *ifp = netdev_priv(ndev);
1177 brcmf_dbg(TRACE, "Enter\n");
1178 if (!check_vif_up(ifp->vif))
1181 if (changed & WIPHY_PARAM_RTS_THRESHOLD &&
1182 (cfg->conf->rts_threshold != wiphy->rts_threshold)) {
1183 cfg->conf->rts_threshold = wiphy->rts_threshold;
1184 err = brcmf_set_rts(ndev, cfg->conf->rts_threshold);
1188 if (changed & WIPHY_PARAM_FRAG_THRESHOLD &&
1189 (cfg->conf->frag_threshold != wiphy->frag_threshold)) {
1190 cfg->conf->frag_threshold = wiphy->frag_threshold;
1191 err = brcmf_set_frag(ndev, cfg->conf->frag_threshold);
1195 if (changed & WIPHY_PARAM_RETRY_LONG
1196 && (cfg->conf->retry_long != wiphy->retry_long)) {
1197 cfg->conf->retry_long = wiphy->retry_long;
1198 err = brcmf_set_retry(ndev, cfg->conf->retry_long, true);
1202 if (changed & WIPHY_PARAM_RETRY_SHORT
1203 && (cfg->conf->retry_short != wiphy->retry_short)) {
1204 cfg->conf->retry_short = wiphy->retry_short;
1205 err = brcmf_set_retry(ndev, cfg->conf->retry_short, false);
1211 brcmf_dbg(TRACE, "Exit\n");
1215 static void brcmf_init_prof(struct brcmf_cfg80211_profile *prof)
1217 memset(prof, 0, sizeof(*prof));
1220 static u16 brcmf_map_fw_linkdown_reason(const struct brcmf_event_msg *e)
1224 switch (e->event_code) {
1225 case BRCMF_E_DEAUTH:
1226 case BRCMF_E_DEAUTH_IND:
1227 case BRCMF_E_DISASSOC_IND:
1238 static int brcmf_set_pmk(struct brcmf_if *ifp, const u8 *pmk_data, u16 pmk_len)
1240 struct brcmf_wsec_pmk_le pmk;
1243 /* convert to firmware key format */
1244 pmk.key_len = cpu_to_le16(pmk_len << 1);
1245 pmk.flags = cpu_to_le16(BRCMF_WSEC_PASSPHRASE);
1246 for (i = 0; i < pmk_len; i++)
1247 snprintf(&pmk.key[2 * i], 3, "%02x", pmk_data[i]);
1249 /* store psk in firmware */
1250 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_WSEC_PMK,
1253 brcmf_err("failed to change PSK in firmware (len=%u)\n",
1259 static void brcmf_link_down(struct brcmf_cfg80211_vif *vif, u16 reason)
1261 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(vif->wdev.wiphy);
1264 brcmf_dbg(TRACE, "Enter\n");
1266 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTED, &vif->sme_state)) {
1267 brcmf_dbg(INFO, "Call WLC_DISASSOC to stop excess roaming\n");
1268 err = brcmf_fil_cmd_data_set(vif->ifp,
1269 BRCMF_C_DISASSOC, NULL, 0);
1271 brcmf_err("WLC_DISASSOC failed (%d)\n", err);
1273 if ((vif->wdev.iftype == NL80211_IFTYPE_STATION) ||
1274 (vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT))
1275 cfg80211_disconnected(vif->wdev.netdev, reason, NULL, 0,
1278 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &vif->sme_state);
1279 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
1280 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
1281 if (vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_NONE) {
1282 brcmf_set_pmk(vif->ifp, NULL, 0);
1283 vif->profile.use_fwsup = BRCMF_PROFILE_FWSUP_NONE;
1285 brcmf_dbg(TRACE, "Exit\n");
1289 brcmf_cfg80211_join_ibss(struct wiphy *wiphy, struct net_device *ndev,
1290 struct cfg80211_ibss_params *params)
1292 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1293 struct brcmf_if *ifp = netdev_priv(ndev);
1294 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1295 struct brcmf_join_params join_params;
1296 size_t join_params_size = 0;
1303 brcmf_dbg(TRACE, "Enter\n");
1304 if (!check_vif_up(ifp->vif))
1308 brcmf_dbg(CONN, "SSID: %s\n", params->ssid);
1310 brcmf_dbg(CONN, "SSID: NULL, Not supported\n");
1314 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1317 brcmf_dbg(CONN, "BSSID: %pM\n", params->bssid);
1319 brcmf_dbg(CONN, "No BSSID specified\n");
1321 if (params->chandef.chan)
1322 brcmf_dbg(CONN, "channel: %d\n",
1323 params->chandef.chan->center_freq);
1325 brcmf_dbg(CONN, "no channel specified\n");
1327 if (params->channel_fixed)
1328 brcmf_dbg(CONN, "fixed channel required\n");
1330 brcmf_dbg(CONN, "no fixed channel required\n");
1332 if (params->ie && params->ie_len)
1333 brcmf_dbg(CONN, "ie len: %d\n", params->ie_len);
1335 brcmf_dbg(CONN, "no ie specified\n");
1337 if (params->beacon_interval)
1338 brcmf_dbg(CONN, "beacon interval: %d\n",
1339 params->beacon_interval);
1341 brcmf_dbg(CONN, "no beacon interval specified\n");
1343 if (params->basic_rates)
1344 brcmf_dbg(CONN, "basic rates: %08X\n", params->basic_rates);
1346 brcmf_dbg(CONN, "no basic rates specified\n");
1348 if (params->privacy)
1349 brcmf_dbg(CONN, "privacy required\n");
1351 brcmf_dbg(CONN, "no privacy required\n");
1353 /* Configure Privacy for starter */
1354 if (params->privacy)
1355 wsec |= WEP_ENABLED;
1357 err = brcmf_fil_iovar_int_set(ifp, "wsec", wsec);
1359 brcmf_err("wsec failed (%d)\n", err);
1363 /* Configure Beacon Interval for starter */
1364 if (params->beacon_interval)
1365 bcnprd = params->beacon_interval;
1369 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD, bcnprd);
1371 brcmf_err("WLC_SET_BCNPRD failed (%d)\n", err);
1375 /* Configure required join parameter */
1376 memset(&join_params, 0, sizeof(struct brcmf_join_params));
1379 ssid_len = min_t(u32, params->ssid_len, IEEE80211_MAX_SSID_LEN);
1380 memcpy(join_params.ssid_le.SSID, params->ssid, ssid_len);
1381 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
1382 join_params_size = sizeof(join_params.ssid_le);
1385 if (params->bssid) {
1386 memcpy(join_params.params_le.bssid, params->bssid, ETH_ALEN);
1387 join_params_size += BRCMF_ASSOC_PARAMS_FIXED_SIZE;
1388 memcpy(profile->bssid, params->bssid, ETH_ALEN);
1390 eth_broadcast_addr(join_params.params_le.bssid);
1391 eth_zero_addr(profile->bssid);
1395 if (params->chandef.chan) {
1399 ieee80211_frequency_to_channel(
1400 params->chandef.chan->center_freq);
1401 if (params->channel_fixed) {
1402 /* adding chanspec */
1403 chanspec = chandef_to_chanspec(&cfg->d11inf,
1405 join_params.params_le.chanspec_list[0] =
1406 cpu_to_le16(chanspec);
1407 join_params.params_le.chanspec_num = cpu_to_le32(1);
1408 join_params_size += sizeof(join_params.params_le);
1411 /* set channel for starter */
1412 target_channel = cfg->channel;
1413 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_CHANNEL,
1416 brcmf_err("WLC_SET_CHANNEL failed (%d)\n", err);
1422 cfg->ibss_starter = false;
1425 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
1426 &join_params, join_params_size);
1428 brcmf_err("WLC_SET_SSID failed (%d)\n", err);
1434 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1435 brcmf_dbg(TRACE, "Exit\n");
1440 brcmf_cfg80211_leave_ibss(struct wiphy *wiphy, struct net_device *ndev)
1442 struct brcmf_if *ifp = netdev_priv(ndev);
1444 brcmf_dbg(TRACE, "Enter\n");
1445 if (!check_vif_up(ifp->vif)) {
1446 /* When driver is being unloaded, it can end up here. If an
1447 * error is returned then later on a debug trace in the wireless
1448 * core module will be printed. To avoid this 0 is returned.
1453 brcmf_link_down(ifp->vif, WLAN_REASON_DEAUTH_LEAVING);
1454 brcmf_net_setcarrier(ifp, false);
1456 brcmf_dbg(TRACE, "Exit\n");
1461 static s32 brcmf_set_wpa_version(struct net_device *ndev,
1462 struct cfg80211_connect_params *sme)
1464 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1465 struct brcmf_cfg80211_security *sec;
1469 if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_1)
1470 val = WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED;
1471 else if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_2)
1472 val = WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED;
1474 val = WPA_AUTH_DISABLED;
1475 brcmf_dbg(CONN, "setting wpa_auth to 0x%0x\n", val);
1476 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1478 brcmf_err("set wpa_auth failed (%d)\n", err);
1481 sec = &profile->sec;
1482 sec->wpa_versions = sme->crypto.wpa_versions;
1486 static s32 brcmf_set_auth_type(struct net_device *ndev,
1487 struct cfg80211_connect_params *sme)
1489 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1490 struct brcmf_cfg80211_security *sec;
1494 switch (sme->auth_type) {
1495 case NL80211_AUTHTYPE_OPEN_SYSTEM:
1497 brcmf_dbg(CONN, "open system\n");
1499 case NL80211_AUTHTYPE_SHARED_KEY:
1501 brcmf_dbg(CONN, "shared key\n");
1505 brcmf_dbg(CONN, "automatic, auth type (%d)\n", sme->auth_type);
1509 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1511 brcmf_err("set auth failed (%d)\n", err);
1514 sec = &profile->sec;
1515 sec->auth_type = sme->auth_type;
1520 brcmf_set_wsec_mode(struct net_device *ndev,
1521 struct cfg80211_connect_params *sme)
1523 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1524 struct brcmf_cfg80211_security *sec;
1530 if (sme->crypto.n_ciphers_pairwise) {
1531 switch (sme->crypto.ciphers_pairwise[0]) {
1532 case WLAN_CIPHER_SUITE_WEP40:
1533 case WLAN_CIPHER_SUITE_WEP104:
1536 case WLAN_CIPHER_SUITE_TKIP:
1537 pval = TKIP_ENABLED;
1539 case WLAN_CIPHER_SUITE_CCMP:
1542 case WLAN_CIPHER_SUITE_AES_CMAC:
1546 brcmf_err("invalid cipher pairwise (%d)\n",
1547 sme->crypto.ciphers_pairwise[0]);
1551 if (sme->crypto.cipher_group) {
1552 switch (sme->crypto.cipher_group) {
1553 case WLAN_CIPHER_SUITE_WEP40:
1554 case WLAN_CIPHER_SUITE_WEP104:
1557 case WLAN_CIPHER_SUITE_TKIP:
1558 gval = TKIP_ENABLED;
1560 case WLAN_CIPHER_SUITE_CCMP:
1563 case WLAN_CIPHER_SUITE_AES_CMAC:
1567 brcmf_err("invalid cipher group (%d)\n",
1568 sme->crypto.cipher_group);
1573 brcmf_dbg(CONN, "pval (%d) gval (%d)\n", pval, gval);
1574 /* In case of privacy, but no security and WPS then simulate */
1575 /* setting AES. WPS-2.0 allows no security */
1576 if (brcmf_find_wpsie(sme->ie, sme->ie_len) && !pval && !gval &&
1581 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wsec", wsec);
1583 brcmf_err("error (%d)\n", err);
1587 sec = &profile->sec;
1588 sec->cipher_pairwise = sme->crypto.ciphers_pairwise[0];
1589 sec->cipher_group = sme->crypto.cipher_group;
1595 brcmf_set_key_mgmt(struct net_device *ndev, struct cfg80211_connect_params *sme)
1597 struct brcmf_if *ifp = netdev_priv(ndev);
1598 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1601 const struct brcmf_tlv *rsn_ie;
1609 profile->use_fwsup = BRCMF_PROFILE_FWSUP_NONE;
1611 if (!sme->crypto.n_akm_suites)
1614 err = brcmf_fil_bsscfg_int_get(netdev_priv(ndev), "wpa_auth", &val);
1616 brcmf_err("could not get wpa_auth (%d)\n", err);
1619 if (val & (WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED)) {
1620 switch (sme->crypto.akm_suites[0]) {
1621 case WLAN_AKM_SUITE_8021X:
1622 val = WPA_AUTH_UNSPECIFIED;
1624 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1626 case WLAN_AKM_SUITE_PSK:
1630 brcmf_err("invalid cipher group (%d)\n",
1631 sme->crypto.cipher_group);
1634 } else if (val & (WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED)) {
1635 switch (sme->crypto.akm_suites[0]) {
1636 case WLAN_AKM_SUITE_8021X:
1637 val = WPA2_AUTH_UNSPECIFIED;
1639 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1641 case WLAN_AKM_SUITE_8021X_SHA256:
1642 val = WPA2_AUTH_1X_SHA256;
1644 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1646 case WLAN_AKM_SUITE_PSK_SHA256:
1647 val = WPA2_AUTH_PSK_SHA256;
1649 case WLAN_AKM_SUITE_PSK:
1650 val = WPA2_AUTH_PSK;
1652 case WLAN_AKM_SUITE_FT_8021X:
1653 val = WPA2_AUTH_UNSPECIFIED | WPA2_AUTH_FT;
1655 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1657 case WLAN_AKM_SUITE_FT_PSK:
1658 val = WPA2_AUTH_PSK | WPA2_AUTH_FT;
1661 brcmf_err("invalid cipher group (%d)\n",
1662 sme->crypto.cipher_group);
1667 if (profile->use_fwsup == BRCMF_PROFILE_FWSUP_1X)
1668 brcmf_dbg(INFO, "using 1X offload\n");
1670 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
1671 goto skip_mfp_config;
1672 /* The MFP mode (1 or 2) needs to be determined, parse IEs. The
1673 * IE will not be verified, just a quick search for MFP config
1675 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie, sme->ie_len,
1678 goto skip_mfp_config;
1679 ie = (const u8 *)rsn_ie;
1680 ie_len = rsn_ie->len + TLV_HDR_LEN;
1681 /* Skip unicast suite */
1682 offset = TLV_HDR_LEN + WPA_IE_VERSION_LEN + WPA_IE_MIN_OUI_LEN;
1683 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1684 goto skip_mfp_config;
1685 /* Skip multicast suite */
1686 count = ie[offset] + (ie[offset + 1] << 8);
1687 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1688 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1689 goto skip_mfp_config;
1690 /* Skip auth key management suite(s) */
1691 count = ie[offset] + (ie[offset + 1] << 8);
1692 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1693 if (offset + WPA_IE_SUITE_COUNT_LEN > ie_len)
1694 goto skip_mfp_config;
1695 /* Ready to read capabilities */
1696 mfp = BRCMF_MFP_NONE;
1697 rsn_cap = ie[offset] + (ie[offset + 1] << 8);
1698 if (rsn_cap & RSN_CAP_MFPR_MASK)
1699 mfp = BRCMF_MFP_REQUIRED;
1700 else if (rsn_cap & RSN_CAP_MFPC_MASK)
1701 mfp = BRCMF_MFP_CAPABLE;
1702 brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "mfp", mfp);
1705 brcmf_dbg(CONN, "setting wpa_auth to %d\n", val);
1706 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1708 brcmf_err("could not set wpa_auth (%d)\n", err);
1716 brcmf_set_sharedkey(struct net_device *ndev,
1717 struct cfg80211_connect_params *sme)
1719 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1720 struct brcmf_cfg80211_security *sec;
1721 struct brcmf_wsec_key key;
1725 brcmf_dbg(CONN, "key len (%d)\n", sme->key_len);
1727 if (sme->key_len == 0)
1730 sec = &profile->sec;
1731 brcmf_dbg(CONN, "wpa_versions 0x%x cipher_pairwise 0x%x\n",
1732 sec->wpa_versions, sec->cipher_pairwise);
1734 if (sec->wpa_versions & (NL80211_WPA_VERSION_1 | NL80211_WPA_VERSION_2))
1737 if (!(sec->cipher_pairwise &
1738 (WLAN_CIPHER_SUITE_WEP40 | WLAN_CIPHER_SUITE_WEP104)))
1741 memset(&key, 0, sizeof(key));
1742 key.len = (u32) sme->key_len;
1743 key.index = (u32) sme->key_idx;
1744 if (key.len > sizeof(key.data)) {
1745 brcmf_err("Too long key length (%u)\n", key.len);
1748 memcpy(key.data, sme->key, key.len);
1749 key.flags = BRCMF_PRIMARY_KEY;
1750 switch (sec->cipher_pairwise) {
1751 case WLAN_CIPHER_SUITE_WEP40:
1752 key.algo = CRYPTO_ALGO_WEP1;
1754 case WLAN_CIPHER_SUITE_WEP104:
1755 key.algo = CRYPTO_ALGO_WEP128;
1758 brcmf_err("Invalid algorithm (%d)\n",
1759 sme->crypto.ciphers_pairwise[0]);
1762 /* Set the new key/index */
1763 brcmf_dbg(CONN, "key length (%d) key index (%d) algo (%d)\n",
1764 key.len, key.index, key.algo);
1765 brcmf_dbg(CONN, "key \"%s\"\n", key.data);
1766 err = send_key_to_dongle(netdev_priv(ndev), &key);
1770 if (sec->auth_type == NL80211_AUTHTYPE_SHARED_KEY) {
1771 brcmf_dbg(CONN, "set auth_type to shared key\n");
1772 val = WL_AUTH_SHARED_KEY; /* shared key */
1773 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1775 brcmf_err("set auth failed (%d)\n", err);
1781 enum nl80211_auth_type brcmf_war_auth_type(struct brcmf_if *ifp,
1782 enum nl80211_auth_type type)
1784 if (type == NL80211_AUTHTYPE_AUTOMATIC &&
1785 brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_AUTO_AUTH)) {
1786 brcmf_dbg(CONN, "WAR: use OPEN instead of AUTO\n");
1787 type = NL80211_AUTHTYPE_OPEN_SYSTEM;
1792 static void brcmf_set_join_pref(struct brcmf_if *ifp,
1793 struct cfg80211_bss_selection *bss_select)
1795 struct brcmf_join_pref_params join_pref_params[2];
1796 enum nl80211_band band;
1799 join_pref_params[i].len = 2;
1800 join_pref_params[i].rssi_gain = 0;
1802 if (bss_select->behaviour != NL80211_BSS_SELECT_ATTR_BAND_PREF)
1803 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_ASSOC_PREFER, WLC_BAND_AUTO);
1805 switch (bss_select->behaviour) {
1806 case __NL80211_BSS_SELECT_ATTR_INVALID:
1807 brcmf_c_set_joinpref_default(ifp);
1809 case NL80211_BSS_SELECT_ATTR_BAND_PREF:
1810 join_pref_params[i].type = BRCMF_JOIN_PREF_BAND;
1811 band = bss_select->param.band_pref;
1812 join_pref_params[i].band = nl80211_band_to_fwil(band);
1815 case NL80211_BSS_SELECT_ATTR_RSSI_ADJUST:
1816 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI_DELTA;
1817 band = bss_select->param.adjust.band;
1818 join_pref_params[i].band = nl80211_band_to_fwil(band);
1819 join_pref_params[i].rssi_gain = bss_select->param.adjust.delta;
1822 case NL80211_BSS_SELECT_ATTR_RSSI:
1826 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI;
1827 join_pref_params[i].len = 2;
1828 join_pref_params[i].rssi_gain = 0;
1829 join_pref_params[i].band = 0;
1830 err = brcmf_fil_iovar_data_set(ifp, "join_pref", join_pref_params,
1831 sizeof(join_pref_params));
1833 brcmf_err("Set join_pref error (%d)\n", err);
1837 brcmf_cfg80211_connect(struct wiphy *wiphy, struct net_device *ndev,
1838 struct cfg80211_connect_params *sme)
1840 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1841 struct brcmf_if *ifp = netdev_priv(ndev);
1842 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1843 struct ieee80211_channel *chan = sme->channel;
1844 struct brcmf_join_params join_params;
1845 size_t join_params_size;
1846 const struct brcmf_tlv *rsn_ie;
1847 const struct brcmf_vs_tlv *wpa_ie;
1850 struct brcmf_ext_join_params_le *ext_join_params;
1855 brcmf_dbg(TRACE, "Enter\n");
1856 if (!check_vif_up(ifp->vif))
1860 brcmf_err("Invalid ssid\n");
1864 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif) {
1865 /* A normal (non P2P) connection request setup. */
1868 /* find the WPA_IE */
1869 wpa_ie = brcmf_find_wpaie((u8 *)sme->ie, sme->ie_len);
1872 ie_len = wpa_ie->len + TLV_HDR_LEN;
1874 /* find the RSN_IE */
1875 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie,
1880 ie_len = rsn_ie->len + TLV_HDR_LEN;
1883 brcmf_fil_iovar_data_set(ifp, "wpaie", ie, ie_len);
1886 err = brcmf_vif_set_mgmt_ie(ifp->vif, BRCMF_VNDR_IE_ASSOCREQ_FLAG,
1887 sme->ie, sme->ie_len);
1889 brcmf_err("Set Assoc REQ IE Failed\n");
1891 brcmf_dbg(TRACE, "Applied Vndr IEs for Assoc request\n");
1893 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1897 ieee80211_frequency_to_channel(chan->center_freq);
1898 chanspec = channel_to_chanspec(&cfg->d11inf, chan);
1899 brcmf_dbg(CONN, "channel=%d, center_req=%d, chanspec=0x%04x\n",
1900 cfg->channel, chan->center_freq, chanspec);
1906 brcmf_dbg(INFO, "ie (%p), ie_len (%zd)\n", sme->ie, sme->ie_len);
1908 err = brcmf_set_wpa_version(ndev, sme);
1910 brcmf_err("wl_set_wpa_version failed (%d)\n", err);
1914 sme->auth_type = brcmf_war_auth_type(ifp, sme->auth_type);
1915 err = brcmf_set_auth_type(ndev, sme);
1917 brcmf_err("wl_set_auth_type failed (%d)\n", err);
1921 err = brcmf_set_wsec_mode(ndev, sme);
1923 brcmf_err("wl_set_set_cipher failed (%d)\n", err);
1927 err = brcmf_set_key_mgmt(ndev, sme);
1929 brcmf_err("wl_set_key_mgmt failed (%d)\n", err);
1933 err = brcmf_set_sharedkey(ndev, sme);
1935 brcmf_err("brcmf_set_sharedkey failed (%d)\n", err);
1939 if (sme->crypto.psk) {
1940 if (WARN_ON(profile->use_fwsup != BRCMF_PROFILE_FWSUP_NONE)) {
1944 brcmf_dbg(INFO, "using PSK offload\n");
1945 profile->use_fwsup = BRCMF_PROFILE_FWSUP_PSK;
1948 if (profile->use_fwsup != BRCMF_PROFILE_FWSUP_NONE) {
1949 /* enable firmware supplicant for this interface */
1950 err = brcmf_fil_iovar_int_set(ifp, "sup_wpa", 1);
1952 brcmf_err("failed to enable fw supplicant\n");
1957 if (profile->use_fwsup == BRCMF_PROFILE_FWSUP_PSK) {
1958 err = brcmf_set_pmk(ifp, sme->crypto.psk,
1959 BRCMF_WSEC_MAX_PSK_LEN);
1964 /* Join with specific BSSID and cached SSID
1965 * If SSID is zero join based on BSSID only
1967 join_params_size = offsetof(struct brcmf_ext_join_params_le, assoc_le) +
1968 offsetof(struct brcmf_assoc_params_le, chanspec_list);
1970 join_params_size += sizeof(u16);
1971 ext_join_params = kzalloc(join_params_size, GFP_KERNEL);
1972 if (ext_join_params == NULL) {
1976 ssid_len = min_t(u32, sme->ssid_len, IEEE80211_MAX_SSID_LEN);
1977 ext_join_params->ssid_le.SSID_len = cpu_to_le32(ssid_len);
1978 memcpy(&ext_join_params->ssid_le.SSID, sme->ssid, ssid_len);
1979 if (ssid_len < IEEE80211_MAX_SSID_LEN)
1980 brcmf_dbg(CONN, "SSID \"%s\", len (%d)\n",
1981 ext_join_params->ssid_le.SSID, ssid_len);
1983 /* Set up join scan parameters */
1984 ext_join_params->scan_le.scan_type = -1;
1985 ext_join_params->scan_le.home_time = cpu_to_le32(-1);
1988 memcpy(&ext_join_params->assoc_le.bssid, sme->bssid, ETH_ALEN);
1990 eth_broadcast_addr(ext_join_params->assoc_le.bssid);
1993 ext_join_params->assoc_le.chanspec_num = cpu_to_le32(1);
1995 ext_join_params->assoc_le.chanspec_list[0] =
1996 cpu_to_le16(chanspec);
1997 /* Increase dwell time to receive probe response or detect
1998 * beacon from target AP at a noisy air only during connect
2001 ext_join_params->scan_le.active_time =
2002 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS);
2003 ext_join_params->scan_le.passive_time =
2004 cpu_to_le32(BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS);
2005 /* To sync with presence period of VSDB GO send probe request
2006 * more frequently. Probe request will be stopped when it gets
2007 * probe response from target AP/GO.
2009 ext_join_params->scan_le.nprobes =
2010 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS /
2011 BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS);
2013 ext_join_params->scan_le.active_time = cpu_to_le32(-1);
2014 ext_join_params->scan_le.passive_time = cpu_to_le32(-1);
2015 ext_join_params->scan_le.nprobes = cpu_to_le32(-1);
2018 brcmf_set_join_pref(ifp, &sme->bss_select);
2020 err = brcmf_fil_bsscfg_data_set(ifp, "join", ext_join_params,
2022 kfree(ext_join_params);
2024 /* This is it. join command worked, we are done */
2027 /* join command failed, fallback to set ssid */
2028 memset(&join_params, 0, sizeof(join_params));
2029 join_params_size = sizeof(join_params.ssid_le);
2031 memcpy(&join_params.ssid_le.SSID, sme->ssid, ssid_len);
2032 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
2035 memcpy(join_params.params_le.bssid, sme->bssid, ETH_ALEN);
2037 eth_broadcast_addr(join_params.params_le.bssid);
2040 join_params.params_le.chanspec_list[0] = cpu_to_le16(chanspec);
2041 join_params.params_le.chanspec_num = cpu_to_le32(1);
2042 join_params_size += sizeof(join_params.params_le);
2044 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
2045 &join_params, join_params_size);
2047 brcmf_err("BRCMF_C_SET_SSID failed (%d)\n", err);
2051 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2052 brcmf_dbg(TRACE, "Exit\n");
2057 brcmf_cfg80211_disconnect(struct wiphy *wiphy, struct net_device *ndev,
2060 struct brcmf_if *ifp = netdev_priv(ndev);
2061 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2062 struct brcmf_scb_val_le scbval;
2065 brcmf_dbg(TRACE, "Enter. Reason code = %d\n", reason_code);
2066 if (!check_vif_up(ifp->vif))
2069 clear_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
2070 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2071 cfg80211_disconnected(ndev, reason_code, NULL, 0, true, GFP_KERNEL);
2073 memcpy(&scbval.ea, &profile->bssid, ETH_ALEN);
2074 scbval.val = cpu_to_le32(reason_code);
2075 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_DISASSOC,
2076 &scbval, sizeof(scbval));
2078 brcmf_err("error (%d)\n", err);
2080 brcmf_dbg(TRACE, "Exit\n");
2085 brcmf_cfg80211_set_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2086 enum nl80211_tx_power_setting type, s32 mbm)
2088 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2089 struct net_device *ndev = cfg_to_ndev(cfg);
2090 struct brcmf_if *ifp = netdev_priv(ndev);
2095 brcmf_dbg(TRACE, "Enter %d %d\n", type, mbm);
2096 if (!check_vif_up(ifp->vif))
2100 case NL80211_TX_POWER_AUTOMATIC:
2102 case NL80211_TX_POWER_LIMITED:
2103 case NL80211_TX_POWER_FIXED:
2105 brcmf_err("TX_POWER_FIXED - dbm is negative\n");
2109 qdbm = MBM_TO_DBM(4 * mbm);
2112 qdbm |= WL_TXPWR_OVERRIDE;
2115 brcmf_err("Unsupported type %d\n", type);
2119 /* Make sure radio is off or on as far as software is concerned */
2120 disable = WL_RADIO_SW_DISABLE << 16;
2121 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_RADIO, disable);
2123 brcmf_err("WLC_SET_RADIO error (%d)\n", err);
2125 err = brcmf_fil_iovar_int_set(ifp, "qtxpower", qdbm);
2127 brcmf_err("qtxpower error (%d)\n", err);
2130 brcmf_dbg(TRACE, "Exit %d (qdbm)\n", qdbm & ~WL_TXPWR_OVERRIDE);
2135 brcmf_cfg80211_get_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2138 struct brcmf_cfg80211_vif *vif = wdev_to_vif(wdev);
2142 brcmf_dbg(TRACE, "Enter\n");
2143 if (!check_vif_up(vif))
2146 err = brcmf_fil_iovar_int_get(vif->ifp, "qtxpower", &qdbm);
2148 brcmf_err("error (%d)\n", err);
2151 *dbm = (qdbm & ~WL_TXPWR_OVERRIDE) / 4;
2154 brcmf_dbg(TRACE, "Exit (0x%x %d)\n", qdbm, *dbm);
2159 brcmf_cfg80211_config_default_key(struct wiphy *wiphy, struct net_device *ndev,
2160 u8 key_idx, bool unicast, bool multicast)
2162 struct brcmf_if *ifp = netdev_priv(ndev);
2167 brcmf_dbg(TRACE, "Enter\n");
2168 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2169 if (!check_vif_up(ifp->vif))
2172 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2174 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2178 if (wsec & WEP_ENABLED) {
2179 /* Just select a new current key */
2181 err = brcmf_fil_cmd_int_set(ifp,
2182 BRCMF_C_SET_KEY_PRIMARY, index);
2184 brcmf_err("error (%d)\n", err);
2187 brcmf_dbg(TRACE, "Exit\n");
2192 brcmf_cfg80211_del_key(struct wiphy *wiphy, struct net_device *ndev,
2193 u8 key_idx, bool pairwise, const u8 *mac_addr)
2195 struct brcmf_if *ifp = netdev_priv(ndev);
2196 struct brcmf_wsec_key *key;
2199 brcmf_dbg(TRACE, "Enter\n");
2200 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2202 if (!check_vif_up(ifp->vif))
2205 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2206 /* we ignore this key index in this case */
2210 key = &ifp->vif->profile.key[key_idx];
2212 if (key->algo == CRYPTO_ALGO_OFF) {
2213 brcmf_dbg(CONN, "Ignore clearing of (never configured) key\n");
2217 memset(key, 0, sizeof(*key));
2218 key->index = (u32)key_idx;
2219 key->flags = BRCMF_PRIMARY_KEY;
2221 /* Clear the key/index */
2222 err = send_key_to_dongle(ifp, key);
2224 brcmf_dbg(TRACE, "Exit\n");
2229 brcmf_cfg80211_add_key(struct wiphy *wiphy, struct net_device *ndev,
2230 u8 key_idx, bool pairwise, const u8 *mac_addr,
2231 struct key_params *params)
2233 struct brcmf_if *ifp = netdev_priv(ndev);
2234 struct brcmf_wsec_key *key;
2241 brcmf_dbg(TRACE, "Enter\n");
2242 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2243 if (!check_vif_up(ifp->vif))
2246 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2247 /* we ignore this key index in this case */
2248 brcmf_err("invalid key index (%d)\n", key_idx);
2252 if (params->key_len == 0)
2253 return brcmf_cfg80211_del_key(wiphy, ndev, key_idx, pairwise,
2256 if (params->key_len > sizeof(key->data)) {
2257 brcmf_err("Too long key length (%u)\n", params->key_len);
2262 if (mac_addr && (params->cipher != WLAN_CIPHER_SUITE_WEP40) &&
2263 (params->cipher != WLAN_CIPHER_SUITE_WEP104)) {
2264 brcmf_dbg(TRACE, "Ext key, mac %pM", mac_addr);
2268 key = &ifp->vif->profile.key[key_idx];
2269 memset(key, 0, sizeof(*key));
2270 if ((ext_key) && (!is_multicast_ether_addr(mac_addr)))
2271 memcpy((char *)&key->ea, (void *)mac_addr, ETH_ALEN);
2272 key->len = params->key_len;
2273 key->index = key_idx;
2274 memcpy(key->data, params->key, key->len);
2276 key->flags = BRCMF_PRIMARY_KEY;
2278 switch (params->cipher) {
2279 case WLAN_CIPHER_SUITE_WEP40:
2280 key->algo = CRYPTO_ALGO_WEP1;
2282 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2284 case WLAN_CIPHER_SUITE_WEP104:
2285 key->algo = CRYPTO_ALGO_WEP128;
2287 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2289 case WLAN_CIPHER_SUITE_TKIP:
2290 if (!brcmf_is_apmode(ifp->vif)) {
2291 brcmf_dbg(CONN, "Swapping RX/TX MIC key\n");
2292 memcpy(keybuf, &key->data[24], sizeof(keybuf));
2293 memcpy(&key->data[24], &key->data[16], sizeof(keybuf));
2294 memcpy(&key->data[16], keybuf, sizeof(keybuf));
2296 key->algo = CRYPTO_ALGO_TKIP;
2298 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2300 case WLAN_CIPHER_SUITE_AES_CMAC:
2301 key->algo = CRYPTO_ALGO_AES_CCM;
2303 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2305 case WLAN_CIPHER_SUITE_CCMP:
2306 key->algo = CRYPTO_ALGO_AES_CCM;
2308 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_CCMP\n");
2311 brcmf_err("Invalid cipher (0x%x)\n", params->cipher);
2316 err = send_key_to_dongle(ifp, key);
2320 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2322 brcmf_err("get wsec error (%d)\n", err);
2326 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2328 brcmf_err("set wsec error (%d)\n", err);
2333 brcmf_dbg(TRACE, "Exit\n");
2338 brcmf_cfg80211_get_key(struct wiphy *wiphy, struct net_device *ndev, u8 key_idx,
2339 bool pairwise, const u8 *mac_addr, void *cookie,
2340 void (*callback)(void *cookie,
2341 struct key_params *params))
2343 struct key_params params;
2344 struct brcmf_if *ifp = netdev_priv(ndev);
2345 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2346 struct brcmf_cfg80211_security *sec;
2350 brcmf_dbg(TRACE, "Enter\n");
2351 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2352 if (!check_vif_up(ifp->vif))
2355 memset(¶ms, 0, sizeof(params));
2357 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2359 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2360 /* Ignore this error, may happen during DISASSOC */
2364 if (wsec & WEP_ENABLED) {
2365 sec = &profile->sec;
2366 if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP40) {
2367 params.cipher = WLAN_CIPHER_SUITE_WEP40;
2368 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2369 } else if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP104) {
2370 params.cipher = WLAN_CIPHER_SUITE_WEP104;
2371 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2373 } else if (wsec & TKIP_ENABLED) {
2374 params.cipher = WLAN_CIPHER_SUITE_TKIP;
2375 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2376 } else if (wsec & AES_ENABLED) {
2377 params.cipher = WLAN_CIPHER_SUITE_AES_CMAC;
2378 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2380 brcmf_err("Invalid algo (0x%x)\n", wsec);
2384 callback(cookie, ¶ms);
2387 brcmf_dbg(TRACE, "Exit\n");
2392 brcmf_cfg80211_config_default_mgmt_key(struct wiphy *wiphy,
2393 struct net_device *ndev, u8 key_idx)
2395 struct brcmf_if *ifp = netdev_priv(ndev);
2397 brcmf_dbg(TRACE, "Enter key_idx %d\n", key_idx);
2399 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
2402 brcmf_dbg(INFO, "Not supported\n");
2408 brcmf_cfg80211_reconfigure_wep(struct brcmf_if *ifp)
2412 struct brcmf_wsec_key *key;
2415 for (key_idx = 0; key_idx < BRCMF_MAX_DEFAULT_KEYS; key_idx++) {
2416 key = &ifp->vif->profile.key[key_idx];
2417 if ((key->algo == CRYPTO_ALGO_WEP1) ||
2418 (key->algo == CRYPTO_ALGO_WEP128))
2421 if (key_idx == BRCMF_MAX_DEFAULT_KEYS)
2424 err = send_key_to_dongle(ifp, key);
2426 brcmf_err("Setting WEP key failed (%d)\n", err);
2429 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2431 brcmf_err("get wsec error (%d)\n", err);
2434 wsec |= WEP_ENABLED;
2435 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2437 brcmf_err("set wsec error (%d)\n", err);
2440 static void brcmf_convert_sta_flags(u32 fw_sta_flags, struct station_info *si)
2442 struct nl80211_sta_flag_update *sfu;
2444 brcmf_dbg(TRACE, "flags %08x\n", fw_sta_flags);
2445 si->filled |= BIT_ULL(NL80211_STA_INFO_STA_FLAGS);
2446 sfu = &si->sta_flags;
2447 sfu->mask = BIT(NL80211_STA_FLAG_WME) |
2448 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
2449 BIT(NL80211_STA_FLAG_ASSOCIATED) |
2450 BIT(NL80211_STA_FLAG_AUTHORIZED);
2451 if (fw_sta_flags & BRCMF_STA_WME)
2452 sfu->set |= BIT(NL80211_STA_FLAG_WME);
2453 if (fw_sta_flags & BRCMF_STA_AUTHE)
2454 sfu->set |= BIT(NL80211_STA_FLAG_AUTHENTICATED);
2455 if (fw_sta_flags & BRCMF_STA_ASSOC)
2456 sfu->set |= BIT(NL80211_STA_FLAG_ASSOCIATED);
2457 if (fw_sta_flags & BRCMF_STA_AUTHO)
2458 sfu->set |= BIT(NL80211_STA_FLAG_AUTHORIZED);
2461 static void brcmf_fill_bss_param(struct brcmf_if *ifp, struct station_info *si)
2465 struct brcmf_bss_info_le bss_le;
2470 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2474 buf->len = cpu_to_le32(WL_BSS_INFO_MAX);
2475 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO, buf,
2478 brcmf_err("Failed to get bss info (%d)\n", err);
2481 si->filled |= BIT_ULL(NL80211_STA_INFO_BSS_PARAM);
2482 si->bss_param.beacon_interval = le16_to_cpu(buf->bss_le.beacon_period);
2483 si->bss_param.dtim_period = buf->bss_le.dtim_period;
2484 capability = le16_to_cpu(buf->bss_le.capability);
2485 if (capability & IEEE80211_HT_STBC_PARAM_DUAL_CTS_PROT)
2486 si->bss_param.flags |= BSS_PARAM_FLAGS_CTS_PROT;
2487 if (capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
2488 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_PREAMBLE;
2489 if (capability & WLAN_CAPABILITY_SHORT_SLOT_TIME)
2490 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_SLOT_TIME;
2497 brcmf_cfg80211_get_station_ibss(struct brcmf_if *ifp,
2498 struct station_info *sinfo)
2500 struct brcmf_scb_val_le scbval;
2501 struct brcmf_pktcnt_le pktcnt;
2506 /* Get the current tx rate */
2507 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_RATE, &rate);
2509 brcmf_err("BRCMF_C_GET_RATE error (%d)\n", err);
2512 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_BITRATE);
2513 sinfo->txrate.legacy = rate * 5;
2515 memset(&scbval, 0, sizeof(scbval));
2516 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI, &scbval,
2519 brcmf_err("BRCMF_C_GET_RSSI error (%d)\n", err);
2522 rssi = le32_to_cpu(scbval.val);
2523 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_SIGNAL);
2524 sinfo->signal = rssi;
2526 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_GET_PKTCNTS, &pktcnt,
2529 brcmf_err("BRCMF_C_GET_GET_PKTCNTS error (%d)\n", err);
2532 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_RX_PACKETS) |
2533 BIT_ULL(NL80211_STA_INFO_RX_DROP_MISC) |
2534 BIT_ULL(NL80211_STA_INFO_TX_PACKETS) |
2535 BIT_ULL(NL80211_STA_INFO_TX_FAILED);
2536 sinfo->rx_packets = le32_to_cpu(pktcnt.rx_good_pkt);
2537 sinfo->rx_dropped_misc = le32_to_cpu(pktcnt.rx_bad_pkt);
2538 sinfo->tx_packets = le32_to_cpu(pktcnt.tx_good_pkt);
2539 sinfo->tx_failed = le32_to_cpu(pktcnt.tx_bad_pkt);
2545 brcmf_cfg80211_get_station(struct wiphy *wiphy, struct net_device *ndev,
2546 const u8 *mac, struct station_info *sinfo)
2548 struct brcmf_if *ifp = netdev_priv(ndev);
2549 struct brcmf_scb_val_le scb_val;
2551 struct brcmf_sta_info_le sta_info_le;
2559 brcmf_dbg(TRACE, "Enter, MAC %pM\n", mac);
2560 if (!check_vif_up(ifp->vif))
2563 if (brcmf_is_ibssmode(ifp->vif))
2564 return brcmf_cfg80211_get_station_ibss(ifp, sinfo);
2566 memset(&sta_info_le, 0, sizeof(sta_info_le));
2567 memcpy(&sta_info_le, mac, ETH_ALEN);
2568 err = brcmf_fil_iovar_data_get(ifp, "tdls_sta_info",
2570 sizeof(sta_info_le));
2571 is_tdls_peer = !err;
2573 err = brcmf_fil_iovar_data_get(ifp, "sta_info",
2575 sizeof(sta_info_le));
2577 brcmf_err("GET STA INFO failed, %d\n", err);
2581 brcmf_dbg(TRACE, "version %d\n", le16_to_cpu(sta_info_le.ver));
2582 sinfo->filled = BIT_ULL(NL80211_STA_INFO_INACTIVE_TIME);
2583 sinfo->inactive_time = le32_to_cpu(sta_info_le.idle) * 1000;
2584 sta_flags = le32_to_cpu(sta_info_le.flags);
2585 brcmf_convert_sta_flags(sta_flags, sinfo);
2586 sinfo->sta_flags.mask |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2588 sinfo->sta_flags.set |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2590 sinfo->sta_flags.set &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
2591 if (sta_flags & BRCMF_STA_ASSOC) {
2592 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_CONNECTED_TIME);
2593 sinfo->connected_time = le32_to_cpu(sta_info_le.in);
2594 brcmf_fill_bss_param(ifp, sinfo);
2596 if (sta_flags & BRCMF_STA_SCBSTATS) {
2597 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_FAILED);
2598 sinfo->tx_failed = le32_to_cpu(sta_info_le.tx_failures);
2599 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_PACKETS);
2600 sinfo->tx_packets = le32_to_cpu(sta_info_le.tx_pkts);
2601 sinfo->tx_packets += le32_to_cpu(sta_info_le.tx_mcast_pkts);
2602 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_RX_PACKETS);
2603 sinfo->rx_packets = le32_to_cpu(sta_info_le.rx_ucast_pkts);
2604 sinfo->rx_packets += le32_to_cpu(sta_info_le.rx_mcast_pkts);
2605 if (sinfo->tx_packets) {
2606 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_BITRATE);
2607 sinfo->txrate.legacy =
2608 le32_to_cpu(sta_info_le.tx_rate) / 100;
2610 if (sinfo->rx_packets) {
2611 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_RX_BITRATE);
2612 sinfo->rxrate.legacy =
2613 le32_to_cpu(sta_info_le.rx_rate) / 100;
2615 if (le16_to_cpu(sta_info_le.ver) >= 4) {
2616 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_BYTES);
2617 sinfo->tx_bytes = le64_to_cpu(sta_info_le.tx_tot_bytes);
2618 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_RX_BYTES);
2619 sinfo->rx_bytes = le64_to_cpu(sta_info_le.rx_tot_bytes);
2623 for (i = 0; i < BRCMF_ANT_MAX; i++) {
2624 if (sta_info_le.rssi[i]) {
2625 sinfo->chain_signal_avg[count_rssi] =
2626 sta_info_le.rssi[i];
2627 sinfo->chain_signal[count_rssi] =
2628 sta_info_le.rssi[i];
2629 total_rssi += sta_info_le.rssi[i];
2634 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL);
2635 sinfo->chains = count_rssi;
2637 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_SIGNAL);
2638 total_rssi /= count_rssi;
2639 sinfo->signal = total_rssi;
2640 } else if (test_bit(BRCMF_VIF_STATUS_CONNECTED,
2641 &ifp->vif->sme_state)) {
2642 memset(&scb_val, 0, sizeof(scb_val));
2643 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI,
2644 &scb_val, sizeof(scb_val));
2646 brcmf_err("Could not get rssi (%d)\n", err);
2649 rssi = le32_to_cpu(scb_val.val);
2650 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_SIGNAL);
2651 sinfo->signal = rssi;
2652 brcmf_dbg(CONN, "RSSI %d dBm\n", rssi);
2657 brcmf_dbg(TRACE, "Exit\n");
2662 brcmf_cfg80211_dump_station(struct wiphy *wiphy, struct net_device *ndev,
2663 int idx, u8 *mac, struct station_info *sinfo)
2665 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2666 struct brcmf_if *ifp = netdev_priv(ndev);
2669 brcmf_dbg(TRACE, "Enter, idx %d\n", idx);
2672 cfg->assoclist.count = cpu_to_le32(BRCMF_MAX_ASSOCLIST);
2673 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_ASSOCLIST,
2675 sizeof(cfg->assoclist));
2677 brcmf_err("BRCMF_C_GET_ASSOCLIST unsupported, err=%d\n",
2679 cfg->assoclist.count = 0;
2683 if (idx < le32_to_cpu(cfg->assoclist.count)) {
2684 memcpy(mac, cfg->assoclist.mac[idx], ETH_ALEN);
2685 return brcmf_cfg80211_get_station(wiphy, ndev, mac, sinfo);
2691 brcmf_cfg80211_set_power_mgmt(struct wiphy *wiphy, struct net_device *ndev,
2692 bool enabled, s32 timeout)
2696 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2697 struct brcmf_if *ifp = netdev_priv(ndev);
2699 brcmf_dbg(TRACE, "Enter\n");
2702 * Powersave enable/disable request is coming from the
2703 * cfg80211 even before the interface is up. In that
2704 * scenario, driver will be storing the power save
2705 * preference in cfg struct to apply this to
2706 * FW later while initializing the dongle
2708 cfg->pwr_save = enabled;
2709 if (!check_vif_up(ifp->vif)) {
2711 brcmf_dbg(INFO, "Device is not ready, storing the value in cfg_info struct\n");
2715 pm = enabled ? PM_FAST : PM_OFF;
2716 /* Do not enable the power save after assoc if it is a p2p interface */
2717 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) {
2718 brcmf_dbg(INFO, "Do not enable power save for P2P clients\n");
2721 brcmf_dbg(INFO, "power save %s\n", (pm ? "enabled" : "disabled"));
2723 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, pm);
2726 brcmf_err("net_device is not ready yet\n");
2728 brcmf_err("error (%d)\n", err);
2731 brcmf_dbg(TRACE, "Exit\n");
2735 static s32 brcmf_inform_single_bss(struct brcmf_cfg80211_info *cfg,
2736 struct brcmf_bss_info_le *bi)
2738 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2739 struct cfg80211_bss *bss;
2740 enum nl80211_band band;
2741 struct brcmu_chan ch;
2744 u16 notify_capability;
2745 u16 notify_interval;
2747 size_t notify_ielen;
2748 struct cfg80211_inform_bss bss_data = {};
2750 if (le32_to_cpu(bi->length) > WL_BSS_INFO_MAX) {
2751 brcmf_err("Bss info is larger than buffer. Discarding\n");
2756 ch.chspec = le16_to_cpu(bi->chanspec);
2757 cfg->d11inf.decchspec(&ch);
2758 bi->ctl_ch = ch.control_ch_num;
2760 channel = bi->ctl_ch;
2762 if (channel <= CH_MAX_2G_CHANNEL)
2763 band = NL80211_BAND_2GHZ;
2765 band = NL80211_BAND_5GHZ;
2767 freq = ieee80211_channel_to_frequency(channel, band);
2768 bss_data.chan = ieee80211_get_channel(wiphy, freq);
2769 bss_data.scan_width = NL80211_BSS_CHAN_WIDTH_20;
2770 bss_data.boottime_ns = ktime_to_ns(ktime_get_boottime());
2772 notify_capability = le16_to_cpu(bi->capability);
2773 notify_interval = le16_to_cpu(bi->beacon_period);
2774 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2775 notify_ielen = le32_to_cpu(bi->ie_length);
2776 bss_data.signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2778 brcmf_dbg(CONN, "bssid: %pM\n", bi->BSSID);
2779 brcmf_dbg(CONN, "Channel: %d(%d)\n", channel, freq);
2780 brcmf_dbg(CONN, "Capability: %X\n", notify_capability);
2781 brcmf_dbg(CONN, "Beacon interval: %d\n", notify_interval);
2782 brcmf_dbg(CONN, "Signal: %d\n", bss_data.signal);
2784 bss = cfg80211_inform_bss_data(wiphy, &bss_data,
2785 CFG80211_BSS_FTYPE_UNKNOWN,
2786 (const u8 *)bi->BSSID,
2787 0, notify_capability,
2788 notify_interval, notify_ie,
2789 notify_ielen, GFP_KERNEL);
2794 cfg80211_put_bss(wiphy, bss);
2799 static struct brcmf_bss_info_le *
2800 next_bss_le(struct brcmf_scan_results *list, struct brcmf_bss_info_le *bss)
2803 return list->bss_info_le;
2804 return (struct brcmf_bss_info_le *)((unsigned long)bss +
2805 le32_to_cpu(bss->length));
2808 static s32 brcmf_inform_bss(struct brcmf_cfg80211_info *cfg)
2810 struct brcmf_scan_results *bss_list;
2811 struct brcmf_bss_info_le *bi = NULL; /* must be initialized */
2815 bss_list = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
2816 if (bss_list->count != 0 &&
2817 bss_list->version != BRCMF_BSS_INFO_VERSION) {
2818 brcmf_err("Version %d != WL_BSS_INFO_VERSION\n",
2822 brcmf_dbg(SCAN, "scanned AP count (%d)\n", bss_list->count);
2823 for (i = 0; i < bss_list->count; i++) {
2824 bi = next_bss_le(bss_list, bi);
2825 err = brcmf_inform_single_bss(cfg, bi);
2832 static s32 brcmf_inform_ibss(struct brcmf_cfg80211_info *cfg,
2833 struct net_device *ndev, const u8 *bssid)
2835 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2836 struct ieee80211_channel *notify_channel;
2837 struct brcmf_bss_info_le *bi = NULL;
2838 struct ieee80211_supported_band *band;
2839 struct cfg80211_bss *bss;
2840 struct brcmu_chan ch;
2844 u16 notify_capability;
2845 u16 notify_interval;
2847 size_t notify_ielen;
2850 brcmf_dbg(TRACE, "Enter\n");
2852 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2858 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
2860 err = brcmf_fil_cmd_data_get(netdev_priv(ndev), BRCMF_C_GET_BSS_INFO,
2861 buf, WL_BSS_INFO_MAX);
2863 brcmf_err("WLC_GET_BSS_INFO failed: %d\n", err);
2867 bi = (struct brcmf_bss_info_le *)(buf + 4);
2869 ch.chspec = le16_to_cpu(bi->chanspec);
2870 cfg->d11inf.decchspec(&ch);
2872 if (ch.band == BRCMU_CHAN_BAND_2G)
2873 band = wiphy->bands[NL80211_BAND_2GHZ];
2875 band = wiphy->bands[NL80211_BAND_5GHZ];
2877 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
2878 cfg->channel = freq;
2879 notify_channel = ieee80211_get_channel(wiphy, freq);
2881 notify_capability = le16_to_cpu(bi->capability);
2882 notify_interval = le16_to_cpu(bi->beacon_period);
2883 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2884 notify_ielen = le32_to_cpu(bi->ie_length);
2885 notify_signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2887 brcmf_dbg(CONN, "channel: %d(%d)\n", ch.control_ch_num, freq);
2888 brcmf_dbg(CONN, "capability: %X\n", notify_capability);
2889 brcmf_dbg(CONN, "beacon interval: %d\n", notify_interval);
2890 brcmf_dbg(CONN, "signal: %d\n", notify_signal);
2892 bss = cfg80211_inform_bss(wiphy, notify_channel,
2893 CFG80211_BSS_FTYPE_UNKNOWN, bssid, 0,
2894 notify_capability, notify_interval,
2895 notify_ie, notify_ielen, notify_signal,
2903 cfg80211_put_bss(wiphy, bss);
2909 brcmf_dbg(TRACE, "Exit\n");
2914 static s32 brcmf_update_bss_info(struct brcmf_cfg80211_info *cfg,
2915 struct brcmf_if *ifp)
2917 struct brcmf_bss_info_le *bi;
2918 const struct brcmf_tlv *tim;
2919 u16 beacon_interval;
2925 brcmf_dbg(TRACE, "Enter\n");
2926 if (brcmf_is_ibssmode(ifp->vif))
2929 *(__le32 *)cfg->extra_buf = cpu_to_le32(WL_EXTRA_BUF_MAX);
2930 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
2931 cfg->extra_buf, WL_EXTRA_BUF_MAX);
2933 brcmf_err("Could not get bss info %d\n", err);
2934 goto update_bss_info_out;
2937 bi = (struct brcmf_bss_info_le *)(cfg->extra_buf + 4);
2938 err = brcmf_inform_single_bss(cfg, bi);
2940 goto update_bss_info_out;
2942 ie = ((u8 *)bi) + le16_to_cpu(bi->ie_offset);
2943 ie_len = le32_to_cpu(bi->ie_length);
2944 beacon_interval = le16_to_cpu(bi->beacon_period);
2946 tim = brcmf_parse_tlvs(ie, ie_len, WLAN_EID_TIM);
2948 dtim_period = tim->data[1];
2951 * active scan was done so we could not get dtim
2952 * information out of probe response.
2953 * so we speficially query dtim information to dongle.
2956 err = brcmf_fil_iovar_int_get(ifp, "dtim_assoc", &var);
2958 brcmf_err("wl dtim_assoc failed (%d)\n", err);
2959 goto update_bss_info_out;
2961 dtim_period = (u8)var;
2964 update_bss_info_out:
2965 brcmf_dbg(TRACE, "Exit");
2969 void brcmf_abort_scanning(struct brcmf_cfg80211_info *cfg)
2971 struct escan_info *escan = &cfg->escan_info;
2973 set_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
2974 if (cfg->int_escan_map || cfg->scan_request) {
2975 escan->escan_state = WL_ESCAN_STATE_IDLE;
2976 brcmf_notify_escan_complete(cfg, escan->ifp, true, true);
2978 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
2979 clear_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
2982 static void brcmf_cfg80211_escan_timeout_worker(struct work_struct *work)
2984 struct brcmf_cfg80211_info *cfg =
2985 container_of(work, struct brcmf_cfg80211_info,
2986 escan_timeout_work);
2988 brcmf_inform_bss(cfg);
2989 brcmf_notify_escan_complete(cfg, cfg->escan_info.ifp, true, true);
2992 static void brcmf_escan_timeout(struct timer_list *t)
2994 struct brcmf_cfg80211_info *cfg =
2995 from_timer(cfg, t, escan_timeout);
2997 if (cfg->int_escan_map || cfg->scan_request) {
2998 brcmf_err("timer expired\n");
2999 schedule_work(&cfg->escan_timeout_work);
3004 brcmf_compare_update_same_bss(struct brcmf_cfg80211_info *cfg,
3005 struct brcmf_bss_info_le *bss,
3006 struct brcmf_bss_info_le *bss_info_le)
3008 struct brcmu_chan ch_bss, ch_bss_info_le;
3010 ch_bss.chspec = le16_to_cpu(bss->chanspec);
3011 cfg->d11inf.decchspec(&ch_bss);
3012 ch_bss_info_le.chspec = le16_to_cpu(bss_info_le->chanspec);
3013 cfg->d11inf.decchspec(&ch_bss_info_le);
3015 if (!memcmp(&bss_info_le->BSSID, &bss->BSSID, ETH_ALEN) &&
3016 ch_bss.band == ch_bss_info_le.band &&
3017 bss_info_le->SSID_len == bss->SSID_len &&
3018 !memcmp(bss_info_le->SSID, bss->SSID, bss_info_le->SSID_len)) {
3019 if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) ==
3020 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL)) {
3021 s16 bss_rssi = le16_to_cpu(bss->RSSI);
3022 s16 bss_info_rssi = le16_to_cpu(bss_info_le->RSSI);
3024 /* preserve max RSSI if the measurements are
3025 * both on-channel or both off-channel
3027 if (bss_info_rssi > bss_rssi)
3028 bss->RSSI = bss_info_le->RSSI;
3029 } else if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) &&
3030 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL) == 0) {
3031 /* preserve the on-channel rssi measurement
3032 * if the new measurement is off channel
3034 bss->RSSI = bss_info_le->RSSI;
3035 bss->flags |= BRCMF_BSS_RSSI_ON_CHANNEL;
3043 brcmf_cfg80211_escan_handler(struct brcmf_if *ifp,
3044 const struct brcmf_event_msg *e, void *data)
3046 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3048 struct brcmf_escan_result_le *escan_result_le;
3050 struct brcmf_bss_info_le *bss_info_le;
3051 struct brcmf_bss_info_le *bss = NULL;
3053 struct brcmf_scan_results *list;
3059 if (status == BRCMF_E_STATUS_ABORT)
3062 if (!test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3063 brcmf_err("scan not ready, bsscfgidx=%d\n", ifp->bsscfgidx);
3067 if (status == BRCMF_E_STATUS_PARTIAL) {
3068 brcmf_dbg(SCAN, "ESCAN Partial result\n");
3069 if (e->datalen < sizeof(*escan_result_le)) {
3070 brcmf_err("invalid event data length\n");
3073 escan_result_le = (struct brcmf_escan_result_le *) data;
3074 if (!escan_result_le) {
3075 brcmf_err("Invalid escan result (NULL pointer)\n");
3078 escan_buflen = le32_to_cpu(escan_result_le->buflen);
3079 if (escan_buflen > BRCMF_ESCAN_BUF_SIZE ||
3080 escan_buflen > e->datalen ||
3081 escan_buflen < sizeof(*escan_result_le)) {
3082 brcmf_err("Invalid escan buffer length: %d\n",
3086 if (le16_to_cpu(escan_result_le->bss_count) != 1) {
3087 brcmf_err("Invalid bss_count %d: ignoring\n",
3088 escan_result_le->bss_count);
3091 bss_info_le = &escan_result_le->bss_info_le;
3093 if (brcmf_p2p_scan_finding_common_channel(cfg, bss_info_le))
3096 if (!cfg->int_escan_map && !cfg->scan_request) {
3097 brcmf_dbg(SCAN, "result without cfg80211 request\n");
3101 bi_length = le32_to_cpu(bss_info_le->length);
3102 if (bi_length != escan_buflen - WL_ESCAN_RESULTS_FIXED_SIZE) {
3103 brcmf_err("Ignoring invalid bss_info length: %d\n",
3108 if (!(cfg_to_wiphy(cfg)->interface_modes &
3109 BIT(NL80211_IFTYPE_ADHOC))) {
3110 if (le16_to_cpu(bss_info_le->capability) &
3111 WLAN_CAPABILITY_IBSS) {
3112 brcmf_err("Ignoring IBSS result\n");
3117 list = (struct brcmf_scan_results *)
3118 cfg->escan_info.escan_buf;
3119 if (bi_length > BRCMF_ESCAN_BUF_SIZE - list->buflen) {
3120 brcmf_err("Buffer is too small: ignoring\n");
3124 for (i = 0; i < list->count; i++) {
3125 bss = bss ? (struct brcmf_bss_info_le *)
3126 ((unsigned char *)bss +
3127 le32_to_cpu(bss->length)) : list->bss_info_le;
3128 if (brcmf_compare_update_same_bss(cfg, bss,
3132 memcpy(&cfg->escan_info.escan_buf[list->buflen], bss_info_le,
3134 list->version = le32_to_cpu(bss_info_le->version);
3135 list->buflen += bi_length;
3138 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3139 if (brcmf_p2p_scan_finding_common_channel(cfg, NULL))
3141 if (cfg->int_escan_map || cfg->scan_request) {
3142 brcmf_inform_bss(cfg);
3143 aborted = status != BRCMF_E_STATUS_SUCCESS;
3144 brcmf_notify_escan_complete(cfg, ifp, aborted, false);
3146 brcmf_dbg(SCAN, "Ignored scan complete result 0x%x\n",
3153 static void brcmf_init_escan(struct brcmf_cfg80211_info *cfg)
3155 brcmf_fweh_register(cfg->pub, BRCMF_E_ESCAN_RESULT,
3156 brcmf_cfg80211_escan_handler);
3157 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3158 /* Init scan_timeout timer */
3159 timer_setup(&cfg->escan_timeout, brcmf_escan_timeout, 0);
3160 INIT_WORK(&cfg->escan_timeout_work,
3161 brcmf_cfg80211_escan_timeout_worker);
3164 static struct cfg80211_scan_request *
3165 brcmf_alloc_internal_escan_request(struct wiphy *wiphy, u32 n_netinfo) {
3166 struct cfg80211_scan_request *req;
3169 req_size = sizeof(*req) +
3170 n_netinfo * sizeof(req->channels[0]) +
3171 n_netinfo * sizeof(*req->ssids);
3173 req = kzalloc(req_size, GFP_KERNEL);
3176 req->ssids = (void *)(&req->channels[0]) +
3177 n_netinfo * sizeof(req->channels[0]);
3182 static int brcmf_internal_escan_add_info(struct cfg80211_scan_request *req,
3183 u8 *ssid, u8 ssid_len, u8 channel)
3185 struct ieee80211_channel *chan;
3186 enum nl80211_band band;
3189 if (channel <= CH_MAX_2G_CHANNEL)
3190 band = NL80211_BAND_2GHZ;
3192 band = NL80211_BAND_5GHZ;
3194 freq = ieee80211_channel_to_frequency(channel, band);
3198 chan = ieee80211_get_channel(req->wiphy, freq);
3202 for (i = 0; i < req->n_channels; i++) {
3203 if (req->channels[i] == chan)
3206 if (i == req->n_channels)
3207 req->channels[req->n_channels++] = chan;
3209 for (i = 0; i < req->n_ssids; i++) {
3210 if (req->ssids[i].ssid_len == ssid_len &&
3211 !memcmp(req->ssids[i].ssid, ssid, ssid_len))
3214 if (i == req->n_ssids) {
3215 memcpy(req->ssids[req->n_ssids].ssid, ssid, ssid_len);
3216 req->ssids[req->n_ssids++].ssid_len = ssid_len;
3221 static int brcmf_start_internal_escan(struct brcmf_if *ifp, u32 fwmap,
3222 struct cfg80211_scan_request *request)
3224 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3227 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3228 if (cfg->int_escan_map)
3229 brcmf_dbg(SCAN, "aborting internal scan: map=%u\n",
3230 cfg->int_escan_map);
3231 /* Abort any on-going scan */
3232 brcmf_abort_scanning(cfg);
3235 brcmf_dbg(SCAN, "start internal scan: map=%u\n", fwmap);
3236 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3237 cfg->escan_info.run = brcmf_run_escan;
3238 err = brcmf_do_escan(ifp, request);
3240 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3243 cfg->int_escan_map = fwmap;
3247 static struct brcmf_pno_net_info_le *
3248 brcmf_get_netinfo_array(struct brcmf_pno_scanresults_le *pfn_v1)
3250 struct brcmf_pno_scanresults_v2_le *pfn_v2;
3251 struct brcmf_pno_net_info_le *netinfo;
3253 switch (pfn_v1->version) {
3257 case cpu_to_le32(1):
3258 netinfo = (struct brcmf_pno_net_info_le *)(pfn_v1 + 1);
3260 case cpu_to_le32(2):
3261 pfn_v2 = (struct brcmf_pno_scanresults_v2_le *)pfn_v1;
3262 netinfo = (struct brcmf_pno_net_info_le *)(pfn_v2 + 1);
3269 /* PFN result doesn't have all the info which are required by the supplicant
3270 * (For e.g IEs) Do a target Escan so that sched scan results are reported
3271 * via wl_inform_single_bss in the required format. Escan does require the
3272 * scan request in the form of cfg80211_scan_request. For timebeing, create
3273 * cfg80211_scan_request one out of the received PNO event.
3276 brcmf_notify_sched_scan_results(struct brcmf_if *ifp,
3277 const struct brcmf_event_msg *e, void *data)
3279 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3280 struct brcmf_pno_net_info_le *netinfo, *netinfo_start;
3281 struct cfg80211_scan_request *request = NULL;
3282 struct wiphy *wiphy = cfg_to_wiphy(cfg);
3284 struct brcmf_pno_scanresults_le *pfn_result;
3290 brcmf_dbg(SCAN, "Enter\n");
3292 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3293 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3297 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3298 brcmf_dbg(SCAN, "PFN NET LOST event. Do Nothing\n");
3302 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3303 result_count = le32_to_cpu(pfn_result->count);
3304 status = le32_to_cpu(pfn_result->status);
3306 /* PFN event is limited to fit 512 bytes so we may get
3307 * multiple NET_FOUND events. For now place a warning here.
3309 WARN_ON(status != BRCMF_PNO_SCAN_COMPLETE);
3310 brcmf_dbg(SCAN, "PFN NET FOUND event. count: %d\n", result_count);
3311 if (!result_count) {
3312 brcmf_err("FALSE PNO Event. (pfn_count == 0)\n");
3316 netinfo_start = brcmf_get_netinfo_array(pfn_result);
3317 datalen = e->datalen - ((void *)netinfo_start - (void *)pfn_result);
3318 if (datalen < result_count * sizeof(*netinfo)) {
3319 brcmf_err("insufficient event data\n");
3323 request = brcmf_alloc_internal_escan_request(wiphy,
3331 for (i = 0; i < result_count; i++) {
3332 netinfo = &netinfo_start[i];
3334 if (netinfo->SSID_len > IEEE80211_MAX_SSID_LEN)
3335 netinfo->SSID_len = IEEE80211_MAX_SSID_LEN;
3336 brcmf_dbg(SCAN, "SSID:%.32s Channel:%d\n",
3337 netinfo->SSID, netinfo->channel);
3338 bucket_map |= brcmf_pno_get_bucket_map(cfg->pno, netinfo);
3339 err = brcmf_internal_escan_add_info(request,
3350 err = brcmf_start_internal_escan(ifp, bucket_map, request);
3355 cfg80211_sched_scan_stopped(wiphy, 0);
3362 brcmf_cfg80211_sched_scan_start(struct wiphy *wiphy,
3363 struct net_device *ndev,
3364 struct cfg80211_sched_scan_request *req)
3366 struct brcmf_if *ifp = netdev_priv(ndev);
3367 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3369 brcmf_dbg(SCAN, "Enter: n_match_sets=%d n_ssids=%d\n",
3370 req->n_match_sets, req->n_ssids);
3372 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
3373 brcmf_err("Scanning suppressed: status=%lu\n",
3378 if (req->n_match_sets <= 0) {
3379 brcmf_dbg(SCAN, "invalid number of matchsets specified: %d\n",
3384 return brcmf_pno_start_sched_scan(ifp, req);
3387 static int brcmf_cfg80211_sched_scan_stop(struct wiphy *wiphy,
3388 struct net_device *ndev, u64 reqid)
3390 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3391 struct brcmf_if *ifp = netdev_priv(ndev);
3393 brcmf_dbg(SCAN, "enter\n");
3394 brcmf_pno_stop_sched_scan(ifp, reqid);
3395 if (cfg->int_escan_map)
3396 brcmf_notify_escan_complete(cfg, ifp, true, true);
3400 static __always_inline void brcmf_delay(u32 ms)
3402 if (ms < 1000 / HZ) {
3410 static s32 brcmf_config_wowl_pattern(struct brcmf_if *ifp, u8 cmd[4],
3411 u8 *pattern, u32 patternsize, u8 *mask,
3414 struct brcmf_fil_wowl_pattern_le *filter;
3421 masksize = (patternsize + 7) / 8;
3422 patternoffset = sizeof(*filter) - sizeof(filter->cmd) + masksize;
3424 bufsize = sizeof(*filter) + patternsize + masksize;
3425 buf = kzalloc(bufsize, GFP_KERNEL);
3428 filter = (struct brcmf_fil_wowl_pattern_le *)buf;
3430 memcpy(filter->cmd, cmd, 4);
3431 filter->masksize = cpu_to_le32(masksize);
3432 filter->offset = cpu_to_le32(packet_offset);
3433 filter->patternoffset = cpu_to_le32(patternoffset);
3434 filter->patternsize = cpu_to_le32(patternsize);
3435 filter->type = cpu_to_le32(BRCMF_WOWL_PATTERN_TYPE_BITMAP);
3437 if ((mask) && (masksize))
3438 memcpy(buf + sizeof(*filter), mask, masksize);
3439 if ((pattern) && (patternsize))
3440 memcpy(buf + sizeof(*filter) + masksize, pattern, patternsize);
3442 ret = brcmf_fil_iovar_data_set(ifp, "wowl_pattern", buf, bufsize);
3449 brcmf_wowl_nd_results(struct brcmf_if *ifp, const struct brcmf_event_msg *e,
3452 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3453 struct brcmf_pno_scanresults_le *pfn_result;
3454 struct brcmf_pno_net_info_le *netinfo;
3456 brcmf_dbg(SCAN, "Enter\n");
3458 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3459 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3463 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3465 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3466 brcmf_dbg(SCAN, "PFN NET LOST event. Ignore\n");
3470 if (le32_to_cpu(pfn_result->count) < 1) {
3471 brcmf_err("Invalid result count, expected 1 (%d)\n",
3472 le32_to_cpu(pfn_result->count));
3476 netinfo = brcmf_get_netinfo_array(pfn_result);
3477 memcpy(cfg->wowl.nd->ssid.ssid, netinfo->SSID, netinfo->SSID_len);
3478 cfg->wowl.nd->ssid.ssid_len = netinfo->SSID_len;
3479 cfg->wowl.nd->n_channels = 1;
3480 cfg->wowl.nd->channels[0] =
3481 ieee80211_channel_to_frequency(netinfo->channel,
3482 netinfo->channel <= CH_MAX_2G_CHANNEL ?
3483 NL80211_BAND_2GHZ : NL80211_BAND_5GHZ);
3484 cfg->wowl.nd_info->n_matches = 1;
3485 cfg->wowl.nd_info->matches[0] = cfg->wowl.nd;
3487 /* Inform (the resume task) that the net detect information was recvd */
3488 cfg->wowl.nd_data_completed = true;
3489 wake_up(&cfg->wowl.nd_data_wait);
3496 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3498 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3499 struct brcmf_wowl_wakeind_le wake_ind_le;
3500 struct cfg80211_wowlan_wakeup wakeup_data;
3501 struct cfg80211_wowlan_wakeup *wakeup;
3506 err = brcmf_fil_iovar_data_get(ifp, "wowl_wakeind", &wake_ind_le,
3507 sizeof(wake_ind_le));
3509 brcmf_err("Get wowl_wakeind failed, err = %d\n", err);
3513 wakeind = le32_to_cpu(wake_ind_le.ucode_wakeind);
3514 if (wakeind & (BRCMF_WOWL_MAGIC | BRCMF_WOWL_DIS | BRCMF_WOWL_BCN |
3515 BRCMF_WOWL_RETR | BRCMF_WOWL_NET |
3516 BRCMF_WOWL_PFN_FOUND)) {
3517 wakeup = &wakeup_data;
3518 memset(&wakeup_data, 0, sizeof(wakeup_data));
3519 wakeup_data.pattern_idx = -1;
3521 if (wakeind & BRCMF_WOWL_MAGIC) {
3522 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_MAGIC\n");
3523 wakeup_data.magic_pkt = true;
3525 if (wakeind & BRCMF_WOWL_DIS) {
3526 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_DIS\n");
3527 wakeup_data.disconnect = true;
3529 if (wakeind & BRCMF_WOWL_BCN) {
3530 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_BCN\n");
3531 wakeup_data.disconnect = true;
3533 if (wakeind & BRCMF_WOWL_RETR) {
3534 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_RETR\n");
3535 wakeup_data.disconnect = true;
3537 if (wakeind & BRCMF_WOWL_NET) {
3538 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_NET\n");
3539 /* For now always map to pattern 0, no API to get
3540 * correct information available at the moment.
3542 wakeup_data.pattern_idx = 0;
3544 if (wakeind & BRCMF_WOWL_PFN_FOUND) {
3545 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_PFN_FOUND\n");
3546 timeout = wait_event_timeout(cfg->wowl.nd_data_wait,
3547 cfg->wowl.nd_data_completed,
3548 BRCMF_ND_INFO_TIMEOUT);
3550 brcmf_err("No result for wowl net detect\n");
3552 wakeup_data.net_detect = cfg->wowl.nd_info;
3554 if (wakeind & BRCMF_WOWL_GTK_FAILURE) {
3555 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_GTK_FAILURE\n");
3556 wakeup_data.gtk_rekey_failure = true;
3561 cfg80211_report_wowlan_wakeup(&ifp->vif->wdev, wakeup, GFP_KERNEL);
3566 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3570 #endif /* CONFIG_PM */
3572 static s32 brcmf_cfg80211_resume(struct wiphy *wiphy)
3574 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3575 struct net_device *ndev = cfg_to_ndev(cfg);
3576 struct brcmf_if *ifp = netdev_priv(ndev);
3578 brcmf_dbg(TRACE, "Enter\n");
3580 if (cfg->wowl.active) {
3581 brcmf_report_wowl_wakeind(wiphy, ifp);
3582 brcmf_fil_iovar_int_set(ifp, "wowl_clear", 0);
3583 brcmf_config_wowl_pattern(ifp, "clr", NULL, 0, NULL, 0);
3584 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3585 brcmf_configure_arp_nd_offload(ifp, true);
3586 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM,
3587 cfg->wowl.pre_pmmode);
3588 cfg->wowl.active = false;
3589 if (cfg->wowl.nd_enabled) {
3590 brcmf_cfg80211_sched_scan_stop(cfg->wiphy, ifp->ndev, 0);
3591 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3592 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3593 brcmf_notify_sched_scan_results);
3594 cfg->wowl.nd_enabled = false;
3600 static void brcmf_configure_wowl(struct brcmf_cfg80211_info *cfg,
3601 struct brcmf_if *ifp,
3602 struct cfg80211_wowlan *wowl)
3605 struct brcmf_wowl_wakeind_le wowl_wakeind;
3608 brcmf_dbg(TRACE, "Suspend, wowl config.\n");
3610 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3611 brcmf_configure_arp_nd_offload(ifp, false);
3612 brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_PM, &cfg->wowl.pre_pmmode);
3613 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, PM_MAX);
3616 if (wowl->disconnect)
3617 wowl_config = BRCMF_WOWL_DIS | BRCMF_WOWL_BCN | BRCMF_WOWL_RETR;
3618 if (wowl->magic_pkt)
3619 wowl_config |= BRCMF_WOWL_MAGIC;
3620 if ((wowl->patterns) && (wowl->n_patterns)) {
3621 wowl_config |= BRCMF_WOWL_NET;
3622 for (i = 0; i < wowl->n_patterns; i++) {
3623 brcmf_config_wowl_pattern(ifp, "add",
3624 (u8 *)wowl->patterns[i].pattern,
3625 wowl->patterns[i].pattern_len,
3626 (u8 *)wowl->patterns[i].mask,
3627 wowl->patterns[i].pkt_offset);
3630 if (wowl->nd_config) {
3631 brcmf_cfg80211_sched_scan_start(cfg->wiphy, ifp->ndev,
3633 wowl_config |= BRCMF_WOWL_PFN_FOUND;
3635 cfg->wowl.nd_data_completed = false;
3636 cfg->wowl.nd_enabled = true;
3637 /* Now reroute the event for PFN to the wowl function. */
3638 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3639 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3640 brcmf_wowl_nd_results);
3642 if (wowl->gtk_rekey_failure)
3643 wowl_config |= BRCMF_WOWL_GTK_FAILURE;
3644 if (!test_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state))
3645 wowl_config |= BRCMF_WOWL_UNASSOC;
3647 memcpy(&wowl_wakeind, "clear", 6);
3648 brcmf_fil_iovar_data_set(ifp, "wowl_wakeind", &wowl_wakeind,
3649 sizeof(wowl_wakeind));
3650 brcmf_fil_iovar_int_set(ifp, "wowl", wowl_config);
3651 brcmf_fil_iovar_int_set(ifp, "wowl_activate", 1);
3652 brcmf_bus_wowl_config(cfg->pub->bus_if, true);
3653 cfg->wowl.active = true;
3656 static s32 brcmf_cfg80211_suspend(struct wiphy *wiphy,
3657 struct cfg80211_wowlan *wowl)
3659 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3660 struct net_device *ndev = cfg_to_ndev(cfg);
3661 struct brcmf_if *ifp = netdev_priv(ndev);
3662 struct brcmf_cfg80211_vif *vif;
3664 brcmf_dbg(TRACE, "Enter\n");
3666 /* if the primary net_device is not READY there is nothing
3667 * we can do but pray resume goes smoothly.
3669 if (!check_vif_up(ifp->vif))
3672 /* Stop scheduled scan */
3673 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO))
3674 brcmf_cfg80211_sched_scan_stop(wiphy, ndev, 0);
3676 /* end any scanning */
3677 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
3678 brcmf_abort_scanning(cfg);
3681 brcmf_bus_wowl_config(cfg->pub->bus_if, false);
3682 list_for_each_entry(vif, &cfg->vif_list, list) {
3683 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state))
3685 /* While going to suspend if associated with AP
3686 * disassociate from AP to save power while system is
3687 * in suspended state
3689 brcmf_link_down(vif, WLAN_REASON_UNSPECIFIED);
3690 /* Make sure WPA_Supplicant receives all the event
3691 * generated due to DISASSOC call to the fw to keep
3692 * the state fw and WPA_Supplicant state consistent
3697 brcmf_set_mpc(ifp, 1);
3700 /* Configure WOWL paramaters */
3701 brcmf_configure_wowl(cfg, ifp, wowl);
3705 brcmf_dbg(TRACE, "Exit\n");
3706 /* clear any scanning activity */
3707 cfg->scan_status = 0;
3712 brcmf_update_pmklist(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp)
3714 struct brcmf_pmk_list_le *pmk_list;
3719 pmk_list = &cfg->pmk_list;
3720 npmk = le32_to_cpu(pmk_list->npmk);
3722 brcmf_dbg(CONN, "No of elements %d\n", npmk);
3723 for (i = 0; i < npmk; i++)
3724 brcmf_dbg(CONN, "PMK[%d]: %pM\n", i, &pmk_list->pmk[i].bssid);
3726 err = brcmf_fil_iovar_data_set(ifp, "pmkid_info", pmk_list,
3733 brcmf_cfg80211_set_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3734 struct cfg80211_pmksa *pmksa)
3736 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3737 struct brcmf_if *ifp = netdev_priv(ndev);
3738 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3742 brcmf_dbg(TRACE, "Enter\n");
3743 if (!check_vif_up(ifp->vif))
3746 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3747 for (i = 0; i < npmk; i++)
3748 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3750 if (i < BRCMF_MAXPMKID) {
3751 memcpy(pmk[i].bssid, pmksa->bssid, ETH_ALEN);
3752 memcpy(pmk[i].pmkid, pmksa->pmkid, WLAN_PMKID_LEN);
3755 cfg->pmk_list.npmk = cpu_to_le32(npmk);
3758 brcmf_err("Too many PMKSA entries cached %d\n", npmk);
3762 brcmf_dbg(CONN, "set_pmksa - PMK bssid: %pM =\n", pmk[npmk].bssid);
3763 for (i = 0; i < WLAN_PMKID_LEN; i += 4)
3764 brcmf_dbg(CONN, "%02x %02x %02x %02x\n", pmk[npmk].pmkid[i],
3765 pmk[npmk].pmkid[i + 1], pmk[npmk].pmkid[i + 2],
3766 pmk[npmk].pmkid[i + 3]);
3768 err = brcmf_update_pmklist(cfg, ifp);
3770 brcmf_dbg(TRACE, "Exit\n");
3775 brcmf_cfg80211_del_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3776 struct cfg80211_pmksa *pmksa)
3778 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3779 struct brcmf_if *ifp = netdev_priv(ndev);
3780 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3784 brcmf_dbg(TRACE, "Enter\n");
3785 if (!check_vif_up(ifp->vif))
3788 brcmf_dbg(CONN, "del_pmksa - PMK bssid = %pM\n", pmksa->bssid);
3790 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3791 for (i = 0; i < npmk; i++)
3792 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3795 if ((npmk > 0) && (i < npmk)) {
3796 for (; i < (npmk - 1); i++) {
3797 memcpy(&pmk[i].bssid, &pmk[i + 1].bssid, ETH_ALEN);
3798 memcpy(&pmk[i].pmkid, &pmk[i + 1].pmkid,
3801 memset(&pmk[i], 0, sizeof(*pmk));
3802 cfg->pmk_list.npmk = cpu_to_le32(npmk - 1);
3804 brcmf_err("Cache entry not found\n");
3808 err = brcmf_update_pmklist(cfg, ifp);
3810 brcmf_dbg(TRACE, "Exit\n");
3816 brcmf_cfg80211_flush_pmksa(struct wiphy *wiphy, struct net_device *ndev)
3818 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3819 struct brcmf_if *ifp = netdev_priv(ndev);
3822 brcmf_dbg(TRACE, "Enter\n");
3823 if (!check_vif_up(ifp->vif))
3826 memset(&cfg->pmk_list, 0, sizeof(cfg->pmk_list));
3827 err = brcmf_update_pmklist(cfg, ifp);
3829 brcmf_dbg(TRACE, "Exit\n");
3834 static s32 brcmf_configure_opensecurity(struct brcmf_if *ifp)
3840 err = brcmf_fil_bsscfg_int_set(ifp, "auth", 0);
3842 brcmf_err("auth error %d\n", err);
3846 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", 0);
3848 brcmf_err("wsec error %d\n", err);
3851 /* set upper-layer auth */
3852 if (brcmf_is_ibssmode(ifp->vif))
3853 wpa_val = WPA_AUTH_NONE;
3855 wpa_val = WPA_AUTH_DISABLED;
3856 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", wpa_val);
3858 brcmf_err("wpa_auth error %d\n", err);
3865 static bool brcmf_valid_wpa_oui(u8 *oui, bool is_rsn_ie)
3868 return (memcmp(oui, RSN_OUI, TLV_OUI_LEN) == 0);
3870 return (memcmp(oui, WPA_OUI, TLV_OUI_LEN) == 0);
3874 brcmf_configure_wpaie(struct brcmf_if *ifp,
3875 const struct brcmf_vs_tlv *wpa_ie,
3878 u32 auth = 0; /* d11 open authentication */
3890 u32 wme_bss_disable;
3893 brcmf_dbg(TRACE, "Enter\n");
3897 len = wpa_ie->len + TLV_HDR_LEN;
3898 data = (u8 *)wpa_ie;
3899 offset = TLV_HDR_LEN;
3901 offset += VS_IE_FIXED_HDR_LEN;
3903 offset += WPA_IE_VERSION_LEN;
3905 /* check for multicast cipher suite */
3906 if (offset + WPA_IE_MIN_OUI_LEN > len) {
3908 brcmf_err("no multicast cipher suite\n");
3912 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
3914 brcmf_err("ivalid OUI\n");
3917 offset += TLV_OUI_LEN;
3919 /* pick up multicast cipher */
3920 switch (data[offset]) {
3921 case WPA_CIPHER_NONE:
3924 case WPA_CIPHER_WEP_40:
3925 case WPA_CIPHER_WEP_104:
3928 case WPA_CIPHER_TKIP:
3929 gval = TKIP_ENABLED;
3931 case WPA_CIPHER_AES_CCM:
3936 brcmf_err("Invalid multi cast cipher info\n");
3941 /* walk thru unicast cipher list and pick up what we recognize */
3942 count = data[offset] + (data[offset + 1] << 8);
3943 offset += WPA_IE_SUITE_COUNT_LEN;
3944 /* Check for unicast suite(s) */
3945 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
3947 brcmf_err("no unicast cipher suite\n");
3950 for (i = 0; i < count; i++) {
3951 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
3953 brcmf_err("ivalid OUI\n");
3956 offset += TLV_OUI_LEN;
3957 switch (data[offset]) {
3958 case WPA_CIPHER_NONE:
3960 case WPA_CIPHER_WEP_40:
3961 case WPA_CIPHER_WEP_104:
3962 pval |= WEP_ENABLED;
3964 case WPA_CIPHER_TKIP:
3965 pval |= TKIP_ENABLED;
3967 case WPA_CIPHER_AES_CCM:
3968 pval |= AES_ENABLED;
3971 brcmf_err("Invalid unicast security info\n");
3975 /* walk thru auth management suite list and pick up what we recognize */
3976 count = data[offset] + (data[offset + 1] << 8);
3977 offset += WPA_IE_SUITE_COUNT_LEN;
3978 /* Check for auth key management suite(s) */
3979 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
3981 brcmf_err("no auth key mgmt suite\n");
3984 for (i = 0; i < count; i++) {
3985 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
3987 brcmf_err("ivalid OUI\n");
3990 offset += TLV_OUI_LEN;
3991 switch (data[offset]) {
3993 brcmf_dbg(TRACE, "RSN_AKM_NONE\n");
3994 wpa_auth |= WPA_AUTH_NONE;
3996 case RSN_AKM_UNSPECIFIED:
3997 brcmf_dbg(TRACE, "RSN_AKM_UNSPECIFIED\n");
3998 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_UNSPECIFIED) :
3999 (wpa_auth |= WPA_AUTH_UNSPECIFIED);
4002 brcmf_dbg(TRACE, "RSN_AKM_PSK\n");
4003 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_PSK) :
4004 (wpa_auth |= WPA_AUTH_PSK);
4006 case RSN_AKM_SHA256_PSK:
4007 brcmf_dbg(TRACE, "RSN_AKM_MFP_PSK\n");
4008 wpa_auth |= WPA2_AUTH_PSK_SHA256;
4010 case RSN_AKM_SHA256_1X:
4011 brcmf_dbg(TRACE, "RSN_AKM_MFP_1X\n");
4012 wpa_auth |= WPA2_AUTH_1X_SHA256;
4015 brcmf_err("Invalid key mgmt info\n");
4020 mfp = BRCMF_MFP_NONE;
4022 wme_bss_disable = 1;
4023 if ((offset + RSN_CAP_LEN) <= len) {
4024 rsn_cap = data[offset] + (data[offset + 1] << 8);
4025 if (rsn_cap & RSN_CAP_PTK_REPLAY_CNTR_MASK)
4026 wme_bss_disable = 0;
4027 if (rsn_cap & RSN_CAP_MFPR_MASK) {
4028 brcmf_dbg(TRACE, "MFP Required\n");
4029 mfp = BRCMF_MFP_REQUIRED;
4030 /* Firmware only supports mfp required in
4031 * combination with WPA2_AUTH_PSK_SHA256 or
4032 * WPA2_AUTH_1X_SHA256.
4034 if (!(wpa_auth & (WPA2_AUTH_PSK_SHA256 |
4035 WPA2_AUTH_1X_SHA256))) {
4039 /* Firmware has requirement that WPA2_AUTH_PSK/
4040 * WPA2_AUTH_UNSPECIFIED be set, if SHA256 OUI
4041 * is to be included in the rsn ie.
4043 if (wpa_auth & WPA2_AUTH_PSK_SHA256)
4044 wpa_auth |= WPA2_AUTH_PSK;
4045 else if (wpa_auth & WPA2_AUTH_1X_SHA256)
4046 wpa_auth |= WPA2_AUTH_UNSPECIFIED;
4047 } else if (rsn_cap & RSN_CAP_MFPC_MASK) {
4048 brcmf_dbg(TRACE, "MFP Capable\n");
4049 mfp = BRCMF_MFP_CAPABLE;
4052 offset += RSN_CAP_LEN;
4053 /* set wme_bss_disable to sync RSN Capabilities */
4054 err = brcmf_fil_bsscfg_int_set(ifp, "wme_bss_disable",
4057 brcmf_err("wme_bss_disable error %d\n", err);
4061 /* Skip PMKID cnt as it is know to be 0 for AP. */
4062 offset += RSN_PMKID_COUNT_LEN;
4064 /* See if there is BIP wpa suite left for MFP */
4065 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP) &&
4066 ((offset + WPA_IE_MIN_OUI_LEN) <= len)) {
4067 err = brcmf_fil_bsscfg_data_set(ifp, "bip",
4069 WPA_IE_MIN_OUI_LEN);
4071 brcmf_err("bip error %d\n", err);
4076 /* FOR WPS , set SES_OW_ENABLED */
4077 wsec = (pval | gval | SES_OW_ENABLED);
4080 err = brcmf_fil_bsscfg_int_set(ifp, "auth", auth);
4082 brcmf_err("auth error %d\n", err);
4086 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
4088 brcmf_err("wsec error %d\n", err);
4091 /* Configure MFP, this needs to go after wsec otherwise the wsec command
4092 * will overwrite the values set by MFP
4094 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP)) {
4095 err = brcmf_fil_bsscfg_int_set(ifp, "mfp", mfp);
4097 brcmf_err("mfp error %d\n", err);
4101 /* set upper-layer auth */
4102 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", wpa_auth);
4104 brcmf_err("wpa_auth error %d\n", err);
4113 brcmf_parse_vndr_ies(const u8 *vndr_ie_buf, u32 vndr_ie_len,
4114 struct parsed_vndr_ies *vndr_ies)
4116 struct brcmf_vs_tlv *vndrie;
4117 struct brcmf_tlv *ie;
4118 struct parsed_vndr_ie_info *parsed_info;
4121 remaining_len = (s32)vndr_ie_len;
4122 memset(vndr_ies, 0, sizeof(*vndr_ies));
4124 ie = (struct brcmf_tlv *)vndr_ie_buf;
4126 if (ie->id != WLAN_EID_VENDOR_SPECIFIC)
4128 vndrie = (struct brcmf_vs_tlv *)ie;
4129 /* len should be bigger than OUI length + one */
4130 if (vndrie->len < (VS_IE_FIXED_HDR_LEN - TLV_HDR_LEN + 1)) {
4131 brcmf_err("invalid vndr ie. length is too small %d\n",
4135 /* if wpa or wme ie, do not add ie */
4136 if (!memcmp(vndrie->oui, (u8 *)WPA_OUI, TLV_OUI_LEN) &&
4137 ((vndrie->oui_type == WPA_OUI_TYPE) ||
4138 (vndrie->oui_type == WME_OUI_TYPE))) {
4139 brcmf_dbg(TRACE, "Found WPA/WME oui. Do not add it\n");
4143 parsed_info = &vndr_ies->ie_info[vndr_ies->count];
4145 /* save vndr ie information */
4146 parsed_info->ie_ptr = (char *)vndrie;
4147 parsed_info->ie_len = vndrie->len + TLV_HDR_LEN;
4148 memcpy(&parsed_info->vndrie, vndrie, sizeof(*vndrie));
4152 brcmf_dbg(TRACE, "** OUI %02x %02x %02x, type 0x%02x\n",
4153 parsed_info->vndrie.oui[0],
4154 parsed_info->vndrie.oui[1],
4155 parsed_info->vndrie.oui[2],
4156 parsed_info->vndrie.oui_type);
4158 if (vndr_ies->count >= VNDR_IE_PARSE_LIMIT)
4161 remaining_len -= (ie->len + TLV_HDR_LEN);
4162 if (remaining_len <= TLV_HDR_LEN)
4165 ie = (struct brcmf_tlv *)(((u8 *)ie) + ie->len +
4172 brcmf_vndr_ie(u8 *iebuf, s32 pktflag, u8 *ie_ptr, u32 ie_len, s8 *add_del_cmd)
4175 strncpy(iebuf, add_del_cmd, VNDR_IE_CMD_LEN - 1);
4176 iebuf[VNDR_IE_CMD_LEN - 1] = '\0';
4178 put_unaligned_le32(1, &iebuf[VNDR_IE_COUNT_OFFSET]);
4180 put_unaligned_le32(pktflag, &iebuf[VNDR_IE_PKTFLAG_OFFSET]);
4182 memcpy(&iebuf[VNDR_IE_VSIE_OFFSET], ie_ptr, ie_len);
4184 return ie_len + VNDR_IE_HDR_SIZE;
4187 s32 brcmf_vif_set_mgmt_ie(struct brcmf_cfg80211_vif *vif, s32 pktflag,
4188 const u8 *vndr_ie_buf, u32 vndr_ie_len)
4190 struct brcmf_if *ifp;
4191 struct vif_saved_ie *saved_ie;
4195 u8 *mgmt_ie_buf = NULL;
4196 int mgmt_ie_buf_len;
4198 u32 del_add_ie_buf_len = 0;
4199 u32 total_ie_buf_len = 0;
4200 u32 parsed_ie_buf_len = 0;
4201 struct parsed_vndr_ies old_vndr_ies;
4202 struct parsed_vndr_ies new_vndr_ies;
4203 struct parsed_vndr_ie_info *vndrie_info;
4206 int remained_buf_len;
4211 saved_ie = &vif->saved_ie;
4213 brcmf_dbg(TRACE, "bsscfgidx %d, pktflag : 0x%02X\n", ifp->bsscfgidx,
4215 iovar_ie_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
4218 curr_ie_buf = iovar_ie_buf;
4220 case BRCMF_VNDR_IE_PRBREQ_FLAG:
4221 mgmt_ie_buf = saved_ie->probe_req_ie;
4222 mgmt_ie_len = &saved_ie->probe_req_ie_len;
4223 mgmt_ie_buf_len = sizeof(saved_ie->probe_req_ie);
4225 case BRCMF_VNDR_IE_PRBRSP_FLAG:
4226 mgmt_ie_buf = saved_ie->probe_res_ie;
4227 mgmt_ie_len = &saved_ie->probe_res_ie_len;
4228 mgmt_ie_buf_len = sizeof(saved_ie->probe_res_ie);
4230 case BRCMF_VNDR_IE_BEACON_FLAG:
4231 mgmt_ie_buf = saved_ie->beacon_ie;
4232 mgmt_ie_len = &saved_ie->beacon_ie_len;
4233 mgmt_ie_buf_len = sizeof(saved_ie->beacon_ie);
4235 case BRCMF_VNDR_IE_ASSOCREQ_FLAG:
4236 mgmt_ie_buf = saved_ie->assoc_req_ie;
4237 mgmt_ie_len = &saved_ie->assoc_req_ie_len;
4238 mgmt_ie_buf_len = sizeof(saved_ie->assoc_req_ie);
4242 brcmf_err("not suitable type\n");
4246 if (vndr_ie_len > mgmt_ie_buf_len) {
4248 brcmf_err("extra IE size too big\n");
4252 /* parse and save new vndr_ie in curr_ie_buff before comparing it */
4253 if (vndr_ie_buf && vndr_ie_len && curr_ie_buf) {
4255 brcmf_parse_vndr_ies(vndr_ie_buf, vndr_ie_len, &new_vndr_ies);
4256 for (i = 0; i < new_vndr_ies.count; i++) {
4257 vndrie_info = &new_vndr_ies.ie_info[i];
4258 memcpy(ptr + parsed_ie_buf_len, vndrie_info->ie_ptr,
4259 vndrie_info->ie_len);
4260 parsed_ie_buf_len += vndrie_info->ie_len;
4264 if (mgmt_ie_buf && *mgmt_ie_len) {
4265 if (parsed_ie_buf_len && (parsed_ie_buf_len == *mgmt_ie_len) &&
4266 (memcmp(mgmt_ie_buf, curr_ie_buf,
4267 parsed_ie_buf_len) == 0)) {
4268 brcmf_dbg(TRACE, "Previous mgmt IE equals to current IE\n");
4272 /* parse old vndr_ie */
4273 brcmf_parse_vndr_ies(mgmt_ie_buf, *mgmt_ie_len, &old_vndr_ies);
4275 /* make a command to delete old ie */
4276 for (i = 0; i < old_vndr_ies.count; i++) {
4277 vndrie_info = &old_vndr_ies.ie_info[i];
4279 brcmf_dbg(TRACE, "DEL ID : %d, Len: %d , OUI:%02x:%02x:%02x\n",
4280 vndrie_info->vndrie.id,
4281 vndrie_info->vndrie.len,
4282 vndrie_info->vndrie.oui[0],
4283 vndrie_info->vndrie.oui[1],
4284 vndrie_info->vndrie.oui[2]);
4286 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4287 vndrie_info->ie_ptr,
4288 vndrie_info->ie_len,
4290 curr_ie_buf += del_add_ie_buf_len;
4291 total_ie_buf_len += del_add_ie_buf_len;
4296 /* Add if there is any extra IE */
4297 if (mgmt_ie_buf && parsed_ie_buf_len) {
4300 remained_buf_len = mgmt_ie_buf_len;
4302 /* make a command to add new ie */
4303 for (i = 0; i < new_vndr_ies.count; i++) {
4304 vndrie_info = &new_vndr_ies.ie_info[i];
4306 /* verify remained buf size before copy data */
4307 if (remained_buf_len < (vndrie_info->vndrie.len +
4308 VNDR_IE_VSIE_OFFSET)) {
4309 brcmf_err("no space in mgmt_ie_buf: len left %d",
4313 remained_buf_len -= (vndrie_info->ie_len +
4314 VNDR_IE_VSIE_OFFSET);
4316 brcmf_dbg(TRACE, "ADDED ID : %d, Len: %d, OUI:%02x:%02x:%02x\n",
4317 vndrie_info->vndrie.id,
4318 vndrie_info->vndrie.len,
4319 vndrie_info->vndrie.oui[0],
4320 vndrie_info->vndrie.oui[1],
4321 vndrie_info->vndrie.oui[2]);
4323 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4324 vndrie_info->ie_ptr,
4325 vndrie_info->ie_len,
4328 /* save the parsed IE in wl struct */
4329 memcpy(ptr + (*mgmt_ie_len), vndrie_info->ie_ptr,
4330 vndrie_info->ie_len);
4331 *mgmt_ie_len += vndrie_info->ie_len;
4333 curr_ie_buf += del_add_ie_buf_len;
4334 total_ie_buf_len += del_add_ie_buf_len;
4337 if (total_ie_buf_len) {
4338 err = brcmf_fil_bsscfg_data_set(ifp, "vndr_ie", iovar_ie_buf,
4341 brcmf_err("vndr ie set error : %d\n", err);
4345 kfree(iovar_ie_buf);
4349 s32 brcmf_vif_clear_mgmt_ies(struct brcmf_cfg80211_vif *vif)
4352 BRCMF_VNDR_IE_PRBREQ_FLAG,
4353 BRCMF_VNDR_IE_PRBRSP_FLAG,
4354 BRCMF_VNDR_IE_BEACON_FLAG
4358 for (i = 0; i < ARRAY_SIZE(pktflags); i++)
4359 brcmf_vif_set_mgmt_ie(vif, pktflags[i], NULL, 0);
4361 memset(&vif->saved_ie, 0, sizeof(vif->saved_ie));
4366 brcmf_config_ap_mgmt_ie(struct brcmf_cfg80211_vif *vif,
4367 struct cfg80211_beacon_data *beacon)
4371 /* Set Beacon IEs to FW */
4372 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_BEACON_FLAG,
4373 beacon->tail, beacon->tail_len);
4375 brcmf_err("Set Beacon IE Failed\n");
4378 brcmf_dbg(TRACE, "Applied Vndr IEs for Beacon\n");
4380 /* Set Probe Response IEs to FW */
4381 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_PRBRSP_FLAG,
4382 beacon->proberesp_ies,
4383 beacon->proberesp_ies_len);
4385 brcmf_err("Set Probe Resp IE Failed\n");
4387 brcmf_dbg(TRACE, "Applied Vndr IEs for Probe Resp\n");
4393 brcmf_cfg80211_start_ap(struct wiphy *wiphy, struct net_device *ndev,
4394 struct cfg80211_ap_settings *settings)
4397 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4398 struct brcmf_if *ifp = netdev_priv(ndev);
4399 const struct brcmf_tlv *ssid_ie;
4400 const struct brcmf_tlv *country_ie;
4401 struct brcmf_ssid_le ssid_le;
4403 const struct brcmf_tlv *rsn_ie;
4404 const struct brcmf_vs_tlv *wpa_ie;
4405 struct brcmf_join_params join_params;
4406 enum nl80211_iftype dev_role;
4407 struct brcmf_fil_bss_enable_le bss_enable;
4408 u16 chanspec = chandef_to_chanspec(&cfg->d11inf, &settings->chandef);
4413 brcmf_dbg(TRACE, "ctrlchn=%d, center=%d, bw=%d, beacon_interval=%d, dtim_period=%d,\n",
4414 settings->chandef.chan->hw_value,
4415 settings->chandef.center_freq1, settings->chandef.width,
4416 settings->beacon_interval, settings->dtim_period);
4417 brcmf_dbg(TRACE, "ssid=%s(%zu), auth_type=%d, inactivity_timeout=%d\n",
4418 settings->ssid, settings->ssid_len, settings->auth_type,
4419 settings->inactivity_timeout);
4420 dev_role = ifp->vif->wdev.iftype;
4421 mbss = ifp->vif->mbss;
4423 /* store current 11d setting */
4424 if (brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_REGULATORY,
4425 &ifp->vif->is_11d)) {
4426 is_11d = supports_11d = false;
4428 country_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4429 settings->beacon.tail_len,
4431 is_11d = country_ie ? 1 : 0;
4432 supports_11d = true;
4435 memset(&ssid_le, 0, sizeof(ssid_le));
4436 if (settings->ssid == NULL || settings->ssid_len == 0) {
4437 ie_offset = DOT11_MGMT_HDR_LEN + DOT11_BCN_PRB_FIXED_LEN;
4438 ssid_ie = brcmf_parse_tlvs(
4439 (u8 *)&settings->beacon.head[ie_offset],
4440 settings->beacon.head_len - ie_offset,
4442 if (!ssid_ie || ssid_ie->len > IEEE80211_MAX_SSID_LEN)
4445 memcpy(ssid_le.SSID, ssid_ie->data, ssid_ie->len);
4446 ssid_le.SSID_len = cpu_to_le32(ssid_ie->len);
4447 brcmf_dbg(TRACE, "SSID is (%s) in Head\n", ssid_le.SSID);
4449 memcpy(ssid_le.SSID, settings->ssid, settings->ssid_len);
4450 ssid_le.SSID_len = cpu_to_le32((u32)settings->ssid_len);
4454 brcmf_set_mpc(ifp, 0);
4455 brcmf_configure_arp_nd_offload(ifp, false);
4458 /* find the RSN_IE */
4459 rsn_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4460 settings->beacon.tail_len, WLAN_EID_RSN);
4462 /* find the WPA_IE */
4463 wpa_ie = brcmf_find_wpaie((u8 *)settings->beacon.tail,
4464 settings->beacon.tail_len);
4466 if ((wpa_ie != NULL || rsn_ie != NULL)) {
4467 brcmf_dbg(TRACE, "WPA(2) IE is found\n");
4468 if (wpa_ie != NULL) {
4470 err = brcmf_configure_wpaie(ifp, wpa_ie, false);
4474 struct brcmf_vs_tlv *tmp_ie;
4476 tmp_ie = (struct brcmf_vs_tlv *)rsn_ie;
4479 err = brcmf_configure_wpaie(ifp, tmp_ie, true);
4484 brcmf_dbg(TRACE, "No WPA(2) IEs found\n");
4485 brcmf_configure_opensecurity(ifp);
4488 /* Parameters shared by all radio interfaces */
4490 if ((supports_11d) && (is_11d != ifp->vif->is_11d)) {
4491 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4494 brcmf_err("Regulatory Set Error, %d\n", err);
4498 if (settings->beacon_interval) {
4499 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD,
4500 settings->beacon_interval);
4502 brcmf_err("Beacon Interval Set Error, %d\n",
4507 if (settings->dtim_period) {
4508 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_DTIMPRD,
4509 settings->dtim_period);
4511 brcmf_err("DTIM Interval Set Error, %d\n", err);
4516 if ((dev_role == NL80211_IFTYPE_AP) &&
4517 ((ifp->ifidx == 0) ||
4518 !brcmf_feat_is_enabled(ifp, BRCMF_FEAT_RSDB))) {
4519 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4521 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4524 brcmf_fil_iovar_int_set(ifp, "apsta", 0);
4527 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, 1);
4529 brcmf_err("SET INFRA error %d\n", err);
4532 } else if (WARN_ON(supports_11d && (is_11d != ifp->vif->is_11d))) {
4533 /* Multiple-BSS should use same 11d configuration */
4538 /* Interface specific setup */
4539 if (dev_role == NL80211_IFTYPE_AP) {
4540 if ((brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS)) && (!mbss))
4541 brcmf_fil_iovar_int_set(ifp, "mbss", 1);
4543 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 1);
4545 brcmf_err("setting AP mode failed %d\n", err);
4549 /* Firmware 10.x requires setting channel after enabling
4550 * AP and before bringing interface up.
4552 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4554 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4559 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4561 brcmf_err("BRCMF_C_UP error (%d)\n", err);
4564 /* On DOWN the firmware removes the WEP keys, reconfigure
4565 * them if they were set.
4567 brcmf_cfg80211_reconfigure_wep(ifp);
4569 memset(&join_params, 0, sizeof(join_params));
4570 /* join parameters starts with ssid */
4571 memcpy(&join_params.ssid_le, &ssid_le, sizeof(ssid_le));
4573 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4574 &join_params, sizeof(join_params));
4576 brcmf_err("SET SSID error (%d)\n", err);
4580 if (settings->hidden_ssid) {
4581 err = brcmf_fil_iovar_int_set(ifp, "closednet", 1);
4583 brcmf_err("closednet error (%d)\n", err);
4588 brcmf_dbg(TRACE, "AP mode configuration complete\n");
4589 } else if (dev_role == NL80211_IFTYPE_P2P_GO) {
4590 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4592 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4596 err = brcmf_fil_bsscfg_data_set(ifp, "ssid", &ssid_le,
4599 brcmf_err("setting ssid failed %d\n", err);
4602 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4603 bss_enable.enable = cpu_to_le32(1);
4604 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4605 sizeof(bss_enable));
4607 brcmf_err("bss_enable config failed %d\n", err);
4611 brcmf_dbg(TRACE, "GO mode configuration complete\n");
4616 brcmf_config_ap_mgmt_ie(ifp->vif, &settings->beacon);
4617 set_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4618 brcmf_net_setcarrier(ifp, true);
4621 if ((err) && (!mbss)) {
4622 brcmf_set_mpc(ifp, 1);
4623 brcmf_configure_arp_nd_offload(ifp, true);
4628 static int brcmf_cfg80211_stop_ap(struct wiphy *wiphy, struct net_device *ndev)
4630 struct brcmf_if *ifp = netdev_priv(ndev);
4632 struct brcmf_fil_bss_enable_le bss_enable;
4633 struct brcmf_join_params join_params;
4635 brcmf_dbg(TRACE, "Enter\n");
4637 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_AP) {
4638 /* Due to most likely deauths outstanding we sleep */
4639 /* first to make sure they get processed by fw. */
4642 if (ifp->vif->mbss) {
4643 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4647 /* First BSS doesn't get a full reset */
4648 if (ifp->bsscfgidx == 0)
4649 brcmf_fil_iovar_int_set(ifp, "closednet", 0);
4651 memset(&join_params, 0, sizeof(join_params));
4652 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4653 &join_params, sizeof(join_params));
4655 brcmf_err("SET SSID error (%d)\n", err);
4656 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4658 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4659 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 0);
4661 brcmf_err("setting AP mode failed %d\n", err);
4662 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS))
4663 brcmf_fil_iovar_int_set(ifp, "mbss", 0);
4664 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4666 /* Bring device back up so it can be used again */
4667 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4669 brcmf_err("BRCMF_C_UP error %d\n", err);
4671 brcmf_vif_clear_mgmt_ies(ifp->vif);
4673 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4674 bss_enable.enable = cpu_to_le32(0);
4675 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4676 sizeof(bss_enable));
4678 brcmf_err("bss_enable config failed %d\n", err);
4680 brcmf_set_mpc(ifp, 1);
4681 brcmf_configure_arp_nd_offload(ifp, true);
4682 clear_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4683 brcmf_net_setcarrier(ifp, false);
4689 brcmf_cfg80211_change_beacon(struct wiphy *wiphy, struct net_device *ndev,
4690 struct cfg80211_beacon_data *info)
4692 struct brcmf_if *ifp = netdev_priv(ndev);
4695 brcmf_dbg(TRACE, "Enter\n");
4697 err = brcmf_config_ap_mgmt_ie(ifp->vif, info);
4703 brcmf_cfg80211_del_station(struct wiphy *wiphy, struct net_device *ndev,
4704 struct station_del_parameters *params)
4706 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4707 struct brcmf_scb_val_le scbval;
4708 struct brcmf_if *ifp = netdev_priv(ndev);
4714 brcmf_dbg(TRACE, "Enter %pM\n", params->mac);
4716 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
4717 ifp = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif->ifp;
4718 if (!check_vif_up(ifp->vif))
4721 memcpy(&scbval.ea, params->mac, ETH_ALEN);
4722 scbval.val = cpu_to_le32(params->reason_code);
4723 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCB_DEAUTHENTICATE_FOR_REASON,
4724 &scbval, sizeof(scbval));
4726 brcmf_err("SCB_DEAUTHENTICATE_FOR_REASON failed %d\n", err);
4728 brcmf_dbg(TRACE, "Exit\n");
4733 brcmf_cfg80211_change_station(struct wiphy *wiphy, struct net_device *ndev,
4734 const u8 *mac, struct station_parameters *params)
4736 struct brcmf_if *ifp = netdev_priv(ndev);
4739 brcmf_dbg(TRACE, "Enter, MAC %pM, mask 0x%04x set 0x%04x\n", mac,
4740 params->sta_flags_mask, params->sta_flags_set);
4742 /* Ignore all 00 MAC */
4743 if (is_zero_ether_addr(mac))
4746 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
4749 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED))
4750 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_AUTHORIZE,
4751 (void *)mac, ETH_ALEN);
4753 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_DEAUTHORIZE,
4754 (void *)mac, ETH_ALEN);
4756 brcmf_err("Setting SCB (de-)authorize failed, %d\n", err);
4762 brcmf_cfg80211_mgmt_frame_register(struct wiphy *wiphy,
4763 struct wireless_dev *wdev,
4764 u16 frame_type, bool reg)
4766 struct brcmf_cfg80211_vif *vif;
4769 brcmf_dbg(TRACE, "Enter, frame_type %04x, reg=%d\n", frame_type, reg);
4771 mgmt_type = (frame_type & IEEE80211_FCTL_STYPE) >> 4;
4772 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4774 vif->mgmt_rx_reg |= BIT(mgmt_type);
4776 vif->mgmt_rx_reg &= ~BIT(mgmt_type);
4781 brcmf_cfg80211_mgmt_tx(struct wiphy *wiphy, struct wireless_dev *wdev,
4782 struct cfg80211_mgmt_tx_params *params, u64 *cookie)
4784 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4785 struct ieee80211_channel *chan = params->chan;
4786 const u8 *buf = params->buf;
4787 size_t len = params->len;
4788 const struct ieee80211_mgmt *mgmt;
4789 struct brcmf_cfg80211_vif *vif;
4793 struct brcmf_fil_action_frame_le *action_frame;
4794 struct brcmf_fil_af_params_le *af_params;
4799 brcmf_dbg(TRACE, "Enter\n");
4803 mgmt = (const struct ieee80211_mgmt *)buf;
4805 if (!ieee80211_is_mgmt(mgmt->frame_control)) {
4806 brcmf_err("Driver only allows MGMT packet type\n");
4810 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4812 if (ieee80211_is_probe_resp(mgmt->frame_control)) {
4813 /* Right now the only reason to get a probe response */
4814 /* is for p2p listen response or for p2p GO from */
4815 /* wpa_supplicant. Unfortunately the probe is send */
4816 /* on primary ndev, while dongle wants it on the p2p */
4817 /* vif. Since this is only reason for a probe */
4818 /* response to be sent, the vif is taken from cfg. */
4819 /* If ever desired to send proberesp for non p2p */
4820 /* response then data should be checked for */
4821 /* "DIRECT-". Note in future supplicant will take */
4822 /* dedicated p2p wdev to do this and then this 'hack'*/
4823 /* is not needed anymore. */
4824 ie_offset = DOT11_MGMT_HDR_LEN +
4825 DOT11_BCN_PRB_FIXED_LEN;
4826 ie_len = len - ie_offset;
4827 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif)
4828 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4829 err = brcmf_vif_set_mgmt_ie(vif,
4830 BRCMF_VNDR_IE_PRBRSP_FLAG,
4833 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, true,
4835 } else if (ieee80211_is_action(mgmt->frame_control)) {
4836 if (len > BRCMF_FIL_ACTION_FRAME_SIZE + DOT11_MGMT_HDR_LEN) {
4837 brcmf_err("invalid action frame length\n");
4841 af_params = kzalloc(sizeof(*af_params), GFP_KERNEL);
4842 if (af_params == NULL) {
4843 brcmf_err("unable to allocate frame\n");
4847 action_frame = &af_params->action_frame;
4848 /* Add the packet Id */
4849 action_frame->packet_id = cpu_to_le32(*cookie);
4851 memcpy(&action_frame->da[0], &mgmt->da[0], ETH_ALEN);
4852 memcpy(&af_params->bssid[0], &mgmt->bssid[0], ETH_ALEN);
4853 /* Add the length exepted for 802.11 header */
4854 action_frame->len = cpu_to_le16(len - DOT11_MGMT_HDR_LEN);
4855 /* Add the channel. Use the one specified as parameter if any or
4856 * the current one (got from the firmware) otherwise
4859 freq = chan->center_freq;
4861 brcmf_fil_cmd_int_get(vif->ifp, BRCMF_C_GET_CHANNEL,
4863 chan_nr = ieee80211_frequency_to_channel(freq);
4864 af_params->channel = cpu_to_le32(chan_nr);
4866 memcpy(action_frame->data, &buf[DOT11_MGMT_HDR_LEN],
4867 le16_to_cpu(action_frame->len));
4869 brcmf_dbg(TRACE, "Action frame, cookie=%lld, len=%d, freq=%d\n",
4870 *cookie, le16_to_cpu(action_frame->len), freq);
4872 ack = brcmf_p2p_send_action_frame(cfg, cfg_to_ndev(cfg),
4875 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, ack,
4879 brcmf_dbg(TRACE, "Unhandled, fc=%04x!!\n", mgmt->frame_control);
4880 brcmf_dbg_hex_dump(true, buf, len, "payload, len=%zu\n", len);
4889 brcmf_cfg80211_cancel_remain_on_channel(struct wiphy *wiphy,
4890 struct wireless_dev *wdev,
4893 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4894 struct brcmf_cfg80211_vif *vif;
4897 brcmf_dbg(TRACE, "Enter p2p listen cancel\n");
4899 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4901 brcmf_err("No p2p device available for probe response\n");
4905 brcmf_p2p_cancel_remain_on_channel(vif->ifp);
4910 static int brcmf_cfg80211_get_channel(struct wiphy *wiphy,
4911 struct wireless_dev *wdev,
4912 struct cfg80211_chan_def *chandef)
4914 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4915 struct net_device *ndev = wdev->netdev;
4916 struct brcmf_if *ifp;
4917 struct brcmu_chan ch;
4918 enum nl80211_band band = 0;
4919 enum nl80211_chan_width width = 0;
4925 ifp = netdev_priv(ndev);
4927 err = brcmf_fil_iovar_int_get(ifp, "chanspec", &chanspec);
4929 brcmf_err("chanspec failed (%d)\n", err);
4933 ch.chspec = chanspec;
4934 cfg->d11inf.decchspec(&ch);
4937 case BRCMU_CHAN_BAND_2G:
4938 band = NL80211_BAND_2GHZ;
4940 case BRCMU_CHAN_BAND_5G:
4941 band = NL80211_BAND_5GHZ;
4946 case BRCMU_CHAN_BW_80:
4947 width = NL80211_CHAN_WIDTH_80;
4949 case BRCMU_CHAN_BW_40:
4950 width = NL80211_CHAN_WIDTH_40;
4952 case BRCMU_CHAN_BW_20:
4953 width = NL80211_CHAN_WIDTH_20;
4955 case BRCMU_CHAN_BW_80P80:
4956 width = NL80211_CHAN_WIDTH_80P80;
4958 case BRCMU_CHAN_BW_160:
4959 width = NL80211_CHAN_WIDTH_160;
4963 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band);
4964 chandef->chan = ieee80211_get_channel(wiphy, freq);
4965 chandef->width = width;
4966 chandef->center_freq1 = ieee80211_channel_to_frequency(ch.chnum, band);
4967 chandef->center_freq2 = 0;
4972 static int brcmf_cfg80211_crit_proto_start(struct wiphy *wiphy,
4973 struct wireless_dev *wdev,
4974 enum nl80211_crit_proto_id proto,
4977 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4978 struct brcmf_cfg80211_vif *vif;
4980 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4982 /* only DHCP support for now */
4983 if (proto != NL80211_CRIT_PROTO_DHCP)
4986 /* suppress and abort scanning */
4987 set_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
4988 brcmf_abort_scanning(cfg);
4990 return brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_DISABLED, duration);
4993 static void brcmf_cfg80211_crit_proto_stop(struct wiphy *wiphy,
4994 struct wireless_dev *wdev)
4996 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4997 struct brcmf_cfg80211_vif *vif;
4999 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
5001 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
5002 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
5006 brcmf_notify_tdls_peer_event(struct brcmf_if *ifp,
5007 const struct brcmf_event_msg *e, void *data)
5009 switch (e->reason) {
5010 case BRCMF_E_REASON_TDLS_PEER_DISCOVERED:
5011 brcmf_dbg(TRACE, "TDLS Peer Discovered\n");
5013 case BRCMF_E_REASON_TDLS_PEER_CONNECTED:
5014 brcmf_dbg(TRACE, "TDLS Peer Connected\n");
5015 brcmf_proto_add_tdls_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5017 case BRCMF_E_REASON_TDLS_PEER_DISCONNECTED:
5018 brcmf_dbg(TRACE, "TDLS Peer Disconnected\n");
5019 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5026 static int brcmf_convert_nl80211_tdls_oper(enum nl80211_tdls_operation oper)
5031 case NL80211_TDLS_DISCOVERY_REQ:
5032 ret = BRCMF_TDLS_MANUAL_EP_DISCOVERY;
5034 case NL80211_TDLS_SETUP:
5035 ret = BRCMF_TDLS_MANUAL_EP_CREATE;
5037 case NL80211_TDLS_TEARDOWN:
5038 ret = BRCMF_TDLS_MANUAL_EP_DELETE;
5041 brcmf_err("unsupported operation: %d\n", oper);
5047 static int brcmf_cfg80211_tdls_oper(struct wiphy *wiphy,
5048 struct net_device *ndev, const u8 *peer,
5049 enum nl80211_tdls_operation oper)
5051 struct brcmf_if *ifp;
5052 struct brcmf_tdls_iovar_le info;
5055 ret = brcmf_convert_nl80211_tdls_oper(oper);
5059 ifp = netdev_priv(ndev);
5060 memset(&info, 0, sizeof(info));
5061 info.mode = (u8)ret;
5063 memcpy(info.ea, peer, ETH_ALEN);
5065 ret = brcmf_fil_iovar_data_set(ifp, "tdls_endpoint",
5066 &info, sizeof(info));
5068 brcmf_err("tdls_endpoint iovar failed: ret=%d\n", ret);
5074 brcmf_cfg80211_update_conn_params(struct wiphy *wiphy,
5075 struct net_device *ndev,
5076 struct cfg80211_connect_params *sme,
5079 struct brcmf_if *ifp;
5082 if (!(changed & UPDATE_ASSOC_IES))
5085 ifp = netdev_priv(ndev);
5086 err = brcmf_vif_set_mgmt_ie(ifp->vif, BRCMF_VNDR_IE_ASSOCREQ_FLAG,
5087 sme->ie, sme->ie_len);
5089 brcmf_err("Set Assoc REQ IE Failed\n");
5091 brcmf_dbg(TRACE, "Applied Vndr IEs for Assoc request\n");
5098 brcmf_cfg80211_set_rekey_data(struct wiphy *wiphy, struct net_device *ndev,
5099 struct cfg80211_gtk_rekey_data *gtk)
5101 struct brcmf_if *ifp = netdev_priv(ndev);
5102 struct brcmf_gtk_keyinfo_le gtk_le;
5105 brcmf_dbg(TRACE, "Enter, bssidx=%d\n", ifp->bsscfgidx);
5107 memcpy(gtk_le.kck, gtk->kck, sizeof(gtk_le.kck));
5108 memcpy(gtk_le.kek, gtk->kek, sizeof(gtk_le.kek));
5109 memcpy(gtk_le.replay_counter, gtk->replay_ctr,
5110 sizeof(gtk_le.replay_counter));
5112 ret = brcmf_fil_iovar_data_set(ifp, "gtk_key_info", >k_le,
5115 brcmf_err("gtk_key_info iovar failed: ret=%d\n", ret);
5121 static int brcmf_cfg80211_set_pmk(struct wiphy *wiphy, struct net_device *dev,
5122 const struct cfg80211_pmk_conf *conf)
5124 struct brcmf_if *ifp;
5126 brcmf_dbg(TRACE, "enter\n");
5128 /* expect using firmware supplicant for 1X */
5129 ifp = netdev_priv(dev);
5130 if (WARN_ON(ifp->vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_1X))
5133 if (conf->pmk_len > BRCMF_WSEC_MAX_PSK_LEN)
5136 return brcmf_set_pmk(ifp, conf->pmk, conf->pmk_len);
5139 static int brcmf_cfg80211_del_pmk(struct wiphy *wiphy, struct net_device *dev,
5142 struct brcmf_if *ifp;
5144 brcmf_dbg(TRACE, "enter\n");
5145 ifp = netdev_priv(dev);
5146 if (WARN_ON(ifp->vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_1X))
5149 return brcmf_set_pmk(ifp, NULL, 0);
5152 static struct cfg80211_ops brcmf_cfg80211_ops = {
5153 .add_virtual_intf = brcmf_cfg80211_add_iface,
5154 .del_virtual_intf = brcmf_cfg80211_del_iface,
5155 .change_virtual_intf = brcmf_cfg80211_change_iface,
5156 .scan = brcmf_cfg80211_scan,
5157 .set_wiphy_params = brcmf_cfg80211_set_wiphy_params,
5158 .join_ibss = brcmf_cfg80211_join_ibss,
5159 .leave_ibss = brcmf_cfg80211_leave_ibss,
5160 .get_station = brcmf_cfg80211_get_station,
5161 .dump_station = brcmf_cfg80211_dump_station,
5162 .set_tx_power = brcmf_cfg80211_set_tx_power,
5163 .get_tx_power = brcmf_cfg80211_get_tx_power,
5164 .add_key = brcmf_cfg80211_add_key,
5165 .del_key = brcmf_cfg80211_del_key,
5166 .get_key = brcmf_cfg80211_get_key,
5167 .set_default_key = brcmf_cfg80211_config_default_key,
5168 .set_default_mgmt_key = brcmf_cfg80211_config_default_mgmt_key,
5169 .set_power_mgmt = brcmf_cfg80211_set_power_mgmt,
5170 .connect = brcmf_cfg80211_connect,
5171 .disconnect = brcmf_cfg80211_disconnect,
5172 .suspend = brcmf_cfg80211_suspend,
5173 .resume = brcmf_cfg80211_resume,
5174 .set_pmksa = brcmf_cfg80211_set_pmksa,
5175 .del_pmksa = brcmf_cfg80211_del_pmksa,
5176 .flush_pmksa = brcmf_cfg80211_flush_pmksa,
5177 .start_ap = brcmf_cfg80211_start_ap,
5178 .stop_ap = brcmf_cfg80211_stop_ap,
5179 .change_beacon = brcmf_cfg80211_change_beacon,
5180 .del_station = brcmf_cfg80211_del_station,
5181 .change_station = brcmf_cfg80211_change_station,
5182 .sched_scan_start = brcmf_cfg80211_sched_scan_start,
5183 .sched_scan_stop = brcmf_cfg80211_sched_scan_stop,
5184 .mgmt_frame_register = brcmf_cfg80211_mgmt_frame_register,
5185 .mgmt_tx = brcmf_cfg80211_mgmt_tx,
5186 .remain_on_channel = brcmf_p2p_remain_on_channel,
5187 .cancel_remain_on_channel = brcmf_cfg80211_cancel_remain_on_channel,
5188 .get_channel = brcmf_cfg80211_get_channel,
5189 .start_p2p_device = brcmf_p2p_start_device,
5190 .stop_p2p_device = brcmf_p2p_stop_device,
5191 .crit_proto_start = brcmf_cfg80211_crit_proto_start,
5192 .crit_proto_stop = brcmf_cfg80211_crit_proto_stop,
5193 .tdls_oper = brcmf_cfg80211_tdls_oper,
5194 .update_connect_params = brcmf_cfg80211_update_conn_params,
5195 .set_pmk = brcmf_cfg80211_set_pmk,
5196 .del_pmk = brcmf_cfg80211_del_pmk,
5199 struct cfg80211_ops *brcmf_cfg80211_get_ops(void)
5201 return kmemdup(&brcmf_cfg80211_ops, sizeof(brcmf_cfg80211_ops),
5205 struct brcmf_cfg80211_vif *brcmf_alloc_vif(struct brcmf_cfg80211_info *cfg,
5206 enum nl80211_iftype type)
5208 struct brcmf_cfg80211_vif *vif_walk;
5209 struct brcmf_cfg80211_vif *vif;
5212 brcmf_dbg(TRACE, "allocating virtual interface (size=%zu)\n",
5214 vif = kzalloc(sizeof(*vif), GFP_KERNEL);
5216 return ERR_PTR(-ENOMEM);
5218 vif->wdev.wiphy = cfg->wiphy;
5219 vif->wdev.iftype = type;
5221 brcmf_init_prof(&vif->profile);
5223 if (type == NL80211_IFTYPE_AP) {
5225 list_for_each_entry(vif_walk, &cfg->vif_list, list) {
5226 if (vif_walk->wdev.iftype == NL80211_IFTYPE_AP) {
5234 list_add_tail(&vif->list, &cfg->vif_list);
5238 void brcmf_free_vif(struct brcmf_cfg80211_vif *vif)
5240 list_del(&vif->list);
5244 void brcmf_cfg80211_free_netdev(struct net_device *ndev)
5246 struct brcmf_cfg80211_vif *vif;
5247 struct brcmf_if *ifp;
5249 ifp = netdev_priv(ndev);
5253 brcmf_free_vif(vif);
5256 static bool brcmf_is_linkup(struct brcmf_cfg80211_vif *vif,
5257 const struct brcmf_event_msg *e)
5259 u32 event = e->event_code;
5260 u32 status = e->status;
5262 if (vif->profile.use_fwsup == BRCMF_PROFILE_FWSUP_PSK &&
5263 event == BRCMF_E_PSK_SUP &&
5264 status == BRCMF_E_STATUS_FWSUP_COMPLETED)
5265 set_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state);
5266 if (event == BRCMF_E_SET_SSID && status == BRCMF_E_STATUS_SUCCESS) {
5267 brcmf_dbg(CONN, "Processing set ssid\n");
5268 memcpy(vif->profile.bssid, e->addr, ETH_ALEN);
5269 if (vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_PSK)
5272 set_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state);
5275 if (test_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state) &&
5276 test_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state)) {
5277 clear_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state);
5278 clear_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state);
5284 static bool brcmf_is_linkdown(const struct brcmf_event_msg *e)
5286 u32 event = e->event_code;
5287 u16 flags = e->flags;
5289 if ((event == BRCMF_E_DEAUTH) || (event == BRCMF_E_DEAUTH_IND) ||
5290 (event == BRCMF_E_DISASSOC_IND) ||
5291 ((event == BRCMF_E_LINK) && (!(flags & BRCMF_EVENT_MSG_LINK)))) {
5292 brcmf_dbg(CONN, "Processing link down\n");
5298 static bool brcmf_is_nonetwork(struct brcmf_cfg80211_info *cfg,
5299 const struct brcmf_event_msg *e)
5301 u32 event = e->event_code;
5302 u32 status = e->status;
5304 if (event == BRCMF_E_LINK && status == BRCMF_E_STATUS_NO_NETWORKS) {
5305 brcmf_dbg(CONN, "Processing Link %s & no network found\n",
5306 e->flags & BRCMF_EVENT_MSG_LINK ? "up" : "down");
5310 if (event == BRCMF_E_SET_SSID && status != BRCMF_E_STATUS_SUCCESS) {
5311 brcmf_dbg(CONN, "Processing connecting & no network found\n");
5315 if (event == BRCMF_E_PSK_SUP &&
5316 status != BRCMF_E_STATUS_FWSUP_COMPLETED) {
5317 brcmf_dbg(CONN, "Processing failed supplicant state: %u\n",
5325 static void brcmf_clear_assoc_ies(struct brcmf_cfg80211_info *cfg)
5327 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5329 kfree(conn_info->req_ie);
5330 conn_info->req_ie = NULL;
5331 conn_info->req_ie_len = 0;
5332 kfree(conn_info->resp_ie);
5333 conn_info->resp_ie = NULL;
5334 conn_info->resp_ie_len = 0;
5337 static s32 brcmf_get_assoc_ies(struct brcmf_cfg80211_info *cfg,
5338 struct brcmf_if *ifp)
5340 struct brcmf_cfg80211_assoc_ielen_le *assoc_info;
5341 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5346 brcmf_clear_assoc_ies(cfg);
5348 err = brcmf_fil_iovar_data_get(ifp, "assoc_info",
5349 cfg->extra_buf, WL_ASSOC_INFO_MAX);
5351 brcmf_err("could not get assoc info (%d)\n", err);
5355 (struct brcmf_cfg80211_assoc_ielen_le *)cfg->extra_buf;
5356 req_len = le32_to_cpu(assoc_info->req_len);
5357 resp_len = le32_to_cpu(assoc_info->resp_len);
5359 err = brcmf_fil_iovar_data_get(ifp, "assoc_req_ies",
5363 brcmf_err("could not get assoc req (%d)\n", err);
5366 conn_info->req_ie_len = req_len;
5368 kmemdup(cfg->extra_buf, conn_info->req_ie_len,
5371 conn_info->req_ie_len = 0;
5372 conn_info->req_ie = NULL;
5375 err = brcmf_fil_iovar_data_get(ifp, "assoc_resp_ies",
5379 brcmf_err("could not get assoc resp (%d)\n", err);
5382 conn_info->resp_ie_len = resp_len;
5383 conn_info->resp_ie =
5384 kmemdup(cfg->extra_buf, conn_info->resp_ie_len,
5387 conn_info->resp_ie_len = 0;
5388 conn_info->resp_ie = NULL;
5390 brcmf_dbg(CONN, "req len (%d) resp len (%d)\n",
5391 conn_info->req_ie_len, conn_info->resp_ie_len);
5397 brcmf_bss_roaming_done(struct brcmf_cfg80211_info *cfg,
5398 struct net_device *ndev,
5399 const struct brcmf_event_msg *e)
5401 struct brcmf_if *ifp = netdev_priv(ndev);
5402 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5403 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5404 struct wiphy *wiphy = cfg_to_wiphy(cfg);
5405 struct ieee80211_channel *notify_channel = NULL;
5406 struct ieee80211_supported_band *band;
5407 struct brcmf_bss_info_le *bi;
5408 struct brcmu_chan ch;
5409 struct cfg80211_roam_info roam_info = {};
5414 brcmf_dbg(TRACE, "Enter\n");
5416 brcmf_get_assoc_ies(cfg, ifp);
5417 memcpy(profile->bssid, e->addr, ETH_ALEN);
5418 brcmf_update_bss_info(cfg, ifp);
5420 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
5426 /* data sent to dongle has to be little endian */
5427 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
5428 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
5429 buf, WL_BSS_INFO_MAX);
5434 bi = (struct brcmf_bss_info_le *)(buf + 4);
5435 ch.chspec = le16_to_cpu(bi->chanspec);
5436 cfg->d11inf.decchspec(&ch);
5438 if (ch.band == BRCMU_CHAN_BAND_2G)
5439 band = wiphy->bands[NL80211_BAND_2GHZ];
5441 band = wiphy->bands[NL80211_BAND_5GHZ];
5443 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
5444 notify_channel = ieee80211_get_channel(wiphy, freq);
5449 roam_info.channel = notify_channel;
5450 roam_info.bssid = profile->bssid;
5451 roam_info.req_ie = conn_info->req_ie;
5452 roam_info.req_ie_len = conn_info->req_ie_len;
5453 roam_info.resp_ie = conn_info->resp_ie;
5454 roam_info.resp_ie_len = conn_info->resp_ie_len;
5456 cfg80211_roamed(ndev, &roam_info, GFP_KERNEL);
5457 brcmf_dbg(CONN, "Report roaming result\n");
5459 set_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
5460 brcmf_dbg(TRACE, "Exit\n");
5465 brcmf_bss_connect_done(struct brcmf_cfg80211_info *cfg,
5466 struct net_device *ndev, const struct brcmf_event_msg *e,
5469 struct brcmf_if *ifp = netdev_priv(ndev);
5470 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5471 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5472 struct cfg80211_connect_resp_params conn_params;
5474 brcmf_dbg(TRACE, "Enter\n");
5476 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5477 &ifp->vif->sme_state)) {
5478 memset(&conn_params, 0, sizeof(conn_params));
5480 brcmf_get_assoc_ies(cfg, ifp);
5481 brcmf_update_bss_info(cfg, ifp);
5482 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5483 &ifp->vif->sme_state);
5484 conn_params.status = WLAN_STATUS_SUCCESS;
5486 conn_params.status = WLAN_STATUS_AUTH_TIMEOUT;
5488 conn_params.bssid = profile->bssid;
5489 conn_params.req_ie = conn_info->req_ie;
5490 conn_params.req_ie_len = conn_info->req_ie_len;
5491 conn_params.resp_ie = conn_info->resp_ie;
5492 conn_params.resp_ie_len = conn_info->resp_ie_len;
5493 cfg80211_connect_done(ndev, &conn_params, GFP_KERNEL);
5494 brcmf_dbg(CONN, "Report connect result - connection %s\n",
5495 completed ? "succeeded" : "failed");
5497 brcmf_dbg(TRACE, "Exit\n");
5502 brcmf_notify_connect_status_ap(struct brcmf_cfg80211_info *cfg,
5503 struct net_device *ndev,
5504 const struct brcmf_event_msg *e, void *data)
5506 static int generation;
5507 u32 event = e->event_code;
5508 u32 reason = e->reason;
5509 struct station_info *sinfo;
5511 brcmf_dbg(CONN, "event %s (%u), reason %d\n",
5512 brcmf_fweh_event_name(event), event, reason);
5513 if (event == BRCMF_E_LINK && reason == BRCMF_E_REASON_LINK_BSSCFG_DIS &&
5514 ndev != cfg_to_ndev(cfg)) {
5515 brcmf_dbg(CONN, "AP mode link down\n");
5516 complete(&cfg->vif_disabled);
5520 if (((event == BRCMF_E_ASSOC_IND) || (event == BRCMF_E_REASSOC_IND)) &&
5521 (reason == BRCMF_E_STATUS_SUCCESS)) {
5523 brcmf_err("No IEs present in ASSOC/REASSOC_IND");
5527 sinfo = kzalloc(sizeof(*sinfo), GFP_KERNEL);
5531 sinfo->assoc_req_ies = data;
5532 sinfo->assoc_req_ies_len = e->datalen;
5534 sinfo->generation = generation;
5535 cfg80211_new_sta(ndev, e->addr, sinfo, GFP_KERNEL);
5538 } else if ((event == BRCMF_E_DISASSOC_IND) ||
5539 (event == BRCMF_E_DEAUTH_IND) ||
5540 (event == BRCMF_E_DEAUTH)) {
5541 cfg80211_del_sta(ndev, e->addr, GFP_KERNEL);
5547 brcmf_notify_connect_status(struct brcmf_if *ifp,
5548 const struct brcmf_event_msg *e, void *data)
5550 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5551 struct net_device *ndev = ifp->ndev;
5552 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5553 struct ieee80211_channel *chan;
5556 if ((e->event_code == BRCMF_E_DEAUTH) ||
5557 (e->event_code == BRCMF_E_DEAUTH_IND) ||
5558 (e->event_code == BRCMF_E_DISASSOC_IND) ||
5559 ((e->event_code == BRCMF_E_LINK) && (!e->flags))) {
5560 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5563 if (brcmf_is_apmode(ifp->vif)) {
5564 err = brcmf_notify_connect_status_ap(cfg, ndev, e, data);
5565 } else if (brcmf_is_linkup(ifp->vif, e)) {
5566 brcmf_dbg(CONN, "Linkup\n");
5567 if (brcmf_is_ibssmode(ifp->vif)) {
5568 brcmf_inform_ibss(cfg, ndev, e->addr);
5569 chan = ieee80211_get_channel(cfg->wiphy, cfg->channel);
5570 memcpy(profile->bssid, e->addr, ETH_ALEN);
5571 cfg80211_ibss_joined(ndev, e->addr, chan, GFP_KERNEL);
5572 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5573 &ifp->vif->sme_state);
5574 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5575 &ifp->vif->sme_state);
5577 brcmf_bss_connect_done(cfg, ndev, e, true);
5578 brcmf_net_setcarrier(ifp, true);
5579 } else if (brcmf_is_linkdown(e)) {
5580 brcmf_dbg(CONN, "Linkdown\n");
5581 if (!brcmf_is_ibssmode(ifp->vif)) {
5582 brcmf_bss_connect_done(cfg, ndev, e, false);
5583 brcmf_link_down(ifp->vif,
5584 brcmf_map_fw_linkdown_reason(e));
5585 brcmf_init_prof(ndev_to_prof(ndev));
5586 if (ndev != cfg_to_ndev(cfg))
5587 complete(&cfg->vif_disabled);
5588 brcmf_net_setcarrier(ifp, false);
5590 } else if (brcmf_is_nonetwork(cfg, e)) {
5591 if (brcmf_is_ibssmode(ifp->vif))
5592 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5593 &ifp->vif->sme_state);
5595 brcmf_bss_connect_done(cfg, ndev, e, false);
5602 brcmf_notify_roaming_status(struct brcmf_if *ifp,
5603 const struct brcmf_event_msg *e, void *data)
5605 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5606 u32 event = e->event_code;
5607 u32 status = e->status;
5609 if (event == BRCMF_E_ROAM && status == BRCMF_E_STATUS_SUCCESS) {
5610 if (test_bit(BRCMF_VIF_STATUS_CONNECTED,
5611 &ifp->vif->sme_state)) {
5612 brcmf_bss_roaming_done(cfg, ifp->ndev, e);
5614 brcmf_bss_connect_done(cfg, ifp->ndev, e, true);
5615 brcmf_net_setcarrier(ifp, true);
5623 brcmf_notify_mic_status(struct brcmf_if *ifp,
5624 const struct brcmf_event_msg *e, void *data)
5626 u16 flags = e->flags;
5627 enum nl80211_key_type key_type;
5629 if (flags & BRCMF_EVENT_MSG_GROUP)
5630 key_type = NL80211_KEYTYPE_GROUP;
5632 key_type = NL80211_KEYTYPE_PAIRWISE;
5634 cfg80211_michael_mic_failure(ifp->ndev, (u8 *)&e->addr, key_type, -1,
5640 static s32 brcmf_notify_vif_event(struct brcmf_if *ifp,
5641 const struct brcmf_event_msg *e, void *data)
5643 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5644 struct brcmf_if_event *ifevent = (struct brcmf_if_event *)data;
5645 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
5646 struct brcmf_cfg80211_vif *vif;
5648 brcmf_dbg(TRACE, "Enter: action %u flags %u ifidx %u bsscfgidx %u\n",
5649 ifevent->action, ifevent->flags, ifevent->ifidx,
5650 ifevent->bsscfgidx);
5652 spin_lock(&event->vif_event_lock);
5653 event->action = ifevent->action;
5656 switch (ifevent->action) {
5657 case BRCMF_E_IF_ADD:
5658 /* waiting process may have timed out */
5659 if (!cfg->vif_event.vif) {
5660 spin_unlock(&event->vif_event_lock);
5667 vif->wdev.netdev = ifp->ndev;
5668 ifp->ndev->ieee80211_ptr = &vif->wdev;
5669 SET_NETDEV_DEV(ifp->ndev, wiphy_dev(cfg->wiphy));
5671 spin_unlock(&event->vif_event_lock);
5672 wake_up(&event->vif_wq);
5675 case BRCMF_E_IF_DEL:
5676 spin_unlock(&event->vif_event_lock);
5677 /* event may not be upon user request */
5678 if (brcmf_cfg80211_vif_event_armed(cfg))
5679 wake_up(&event->vif_wq);
5682 case BRCMF_E_IF_CHANGE:
5683 spin_unlock(&event->vif_event_lock);
5684 wake_up(&event->vif_wq);
5688 spin_unlock(&event->vif_event_lock);
5694 static void brcmf_init_conf(struct brcmf_cfg80211_conf *conf)
5696 conf->frag_threshold = (u32)-1;
5697 conf->rts_threshold = (u32)-1;
5698 conf->retry_short = (u32)-1;
5699 conf->retry_long = (u32)-1;
5702 static void brcmf_register_event_handlers(struct brcmf_cfg80211_info *cfg)
5704 brcmf_fweh_register(cfg->pub, BRCMF_E_LINK,
5705 brcmf_notify_connect_status);
5706 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH_IND,
5707 brcmf_notify_connect_status);
5708 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH,
5709 brcmf_notify_connect_status);
5710 brcmf_fweh_register(cfg->pub, BRCMF_E_DISASSOC_IND,
5711 brcmf_notify_connect_status);
5712 brcmf_fweh_register(cfg->pub, BRCMF_E_ASSOC_IND,
5713 brcmf_notify_connect_status);
5714 brcmf_fweh_register(cfg->pub, BRCMF_E_REASSOC_IND,
5715 brcmf_notify_connect_status);
5716 brcmf_fweh_register(cfg->pub, BRCMF_E_ROAM,
5717 brcmf_notify_roaming_status);
5718 brcmf_fweh_register(cfg->pub, BRCMF_E_MIC_ERROR,
5719 brcmf_notify_mic_status);
5720 brcmf_fweh_register(cfg->pub, BRCMF_E_SET_SSID,
5721 brcmf_notify_connect_status);
5722 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
5723 brcmf_notify_sched_scan_results);
5724 brcmf_fweh_register(cfg->pub, BRCMF_E_IF,
5725 brcmf_notify_vif_event);
5726 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_PROBEREQ_MSG,
5727 brcmf_p2p_notify_rx_mgmt_p2p_probereq);
5728 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_DISC_LISTEN_COMPLETE,
5729 brcmf_p2p_notify_listen_complete);
5730 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_RX,
5731 brcmf_p2p_notify_action_frame_rx);
5732 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_COMPLETE,
5733 brcmf_p2p_notify_action_tx_complete);
5734 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_OFF_CHAN_COMPLETE,
5735 brcmf_p2p_notify_action_tx_complete);
5736 brcmf_fweh_register(cfg->pub, BRCMF_E_PSK_SUP,
5737 brcmf_notify_connect_status);
5740 static void brcmf_deinit_priv_mem(struct brcmf_cfg80211_info *cfg)
5744 kfree(cfg->extra_buf);
5745 cfg->extra_buf = NULL;
5746 kfree(cfg->wowl.nd);
5747 cfg->wowl.nd = NULL;
5748 kfree(cfg->wowl.nd_info);
5749 cfg->wowl.nd_info = NULL;
5750 kfree(cfg->escan_info.escan_buf);
5751 cfg->escan_info.escan_buf = NULL;
5754 static s32 brcmf_init_priv_mem(struct brcmf_cfg80211_info *cfg)
5756 cfg->conf = kzalloc(sizeof(*cfg->conf), GFP_KERNEL);
5758 goto init_priv_mem_out;
5759 cfg->extra_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
5760 if (!cfg->extra_buf)
5761 goto init_priv_mem_out;
5762 cfg->wowl.nd = kzalloc(sizeof(*cfg->wowl.nd) + sizeof(u32), GFP_KERNEL);
5764 goto init_priv_mem_out;
5765 cfg->wowl.nd_info = kzalloc(sizeof(*cfg->wowl.nd_info) +
5766 sizeof(struct cfg80211_wowlan_nd_match *),
5768 if (!cfg->wowl.nd_info)
5769 goto init_priv_mem_out;
5770 cfg->escan_info.escan_buf = kzalloc(BRCMF_ESCAN_BUF_SIZE, GFP_KERNEL);
5771 if (!cfg->escan_info.escan_buf)
5772 goto init_priv_mem_out;
5777 brcmf_deinit_priv_mem(cfg);
5782 static s32 wl_init_priv(struct brcmf_cfg80211_info *cfg)
5786 cfg->scan_request = NULL;
5787 cfg->pwr_save = true;
5788 cfg->dongle_up = false; /* dongle is not up yet */
5789 err = brcmf_init_priv_mem(cfg);
5792 brcmf_register_event_handlers(cfg);
5793 mutex_init(&cfg->usr_sync);
5794 brcmf_init_escan(cfg);
5795 brcmf_init_conf(cfg->conf);
5796 init_completion(&cfg->vif_disabled);
5800 static void wl_deinit_priv(struct brcmf_cfg80211_info *cfg)
5802 cfg->dongle_up = false; /* dongle down */
5803 brcmf_abort_scanning(cfg);
5804 brcmf_deinit_priv_mem(cfg);
5807 static void init_vif_event(struct brcmf_cfg80211_vif_event *event)
5809 init_waitqueue_head(&event->vif_wq);
5810 spin_lock_init(&event->vif_event_lock);
5813 static s32 brcmf_dongle_roam(struct brcmf_if *ifp)
5817 __le32 roamtrigger[2];
5818 __le32 roam_delta[2];
5820 /* Configure beacon timeout value based upon roaming setting */
5821 if (ifp->drvr->settings->roamoff)
5822 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_OFF;
5824 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_ON;
5825 err = brcmf_fil_iovar_int_set(ifp, "bcn_timeout", bcn_timeout);
5827 brcmf_err("bcn_timeout error (%d)\n", err);
5828 goto roam_setup_done;
5831 /* Enable/Disable built-in roaming to allow supplicant to take care of
5834 brcmf_dbg(INFO, "Internal Roaming = %s\n",
5835 ifp->drvr->settings->roamoff ? "Off" : "On");
5836 err = brcmf_fil_iovar_int_set(ifp, "roam_off",
5837 ifp->drvr->settings->roamoff);
5839 brcmf_err("roam_off error (%d)\n", err);
5840 goto roam_setup_done;
5843 roamtrigger[0] = cpu_to_le32(WL_ROAM_TRIGGER_LEVEL);
5844 roamtrigger[1] = cpu_to_le32(BRCM_BAND_ALL);
5845 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_TRIGGER,
5846 (void *)roamtrigger, sizeof(roamtrigger));
5848 brcmf_err("WLC_SET_ROAM_TRIGGER error (%d)\n", err);
5849 goto roam_setup_done;
5852 roam_delta[0] = cpu_to_le32(WL_ROAM_DELTA);
5853 roam_delta[1] = cpu_to_le32(BRCM_BAND_ALL);
5854 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_DELTA,
5855 (void *)roam_delta, sizeof(roam_delta));
5857 brcmf_err("WLC_SET_ROAM_DELTA error (%d)\n", err);
5858 goto roam_setup_done;
5866 brcmf_dongle_scantime(struct brcmf_if *ifp)
5870 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_CHANNEL_TIME,
5871 BRCMF_SCAN_CHANNEL_TIME);
5873 brcmf_err("Scan assoc time error (%d)\n", err);
5874 goto dongle_scantime_out;
5876 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_UNASSOC_TIME,
5877 BRCMF_SCAN_UNASSOC_TIME);
5879 brcmf_err("Scan unassoc time error (%d)\n", err);
5880 goto dongle_scantime_out;
5883 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_PASSIVE_TIME,
5884 BRCMF_SCAN_PASSIVE_TIME);
5886 brcmf_err("Scan passive time error (%d)\n", err);
5887 goto dongle_scantime_out;
5890 dongle_scantime_out:
5894 static void brcmf_update_bw40_channel_flag(struct ieee80211_channel *channel,
5895 struct brcmu_chan *ch)
5899 ht40_flag = channel->flags & IEEE80211_CHAN_NO_HT40;
5900 if (ch->sb == BRCMU_CHAN_SB_U) {
5901 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5902 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5903 channel->flags |= IEEE80211_CHAN_NO_HT40PLUS;
5905 /* It should be one of
5906 * IEEE80211_CHAN_NO_HT40 or
5907 * IEEE80211_CHAN_NO_HT40PLUS
5909 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5910 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5911 channel->flags |= IEEE80211_CHAN_NO_HT40MINUS;
5915 static int brcmf_construct_chaninfo(struct brcmf_cfg80211_info *cfg,
5918 struct brcmf_if *ifp = brcmf_get_ifp(cfg->pub, 0);
5919 struct ieee80211_supported_band *band;
5920 struct ieee80211_channel *channel;
5921 struct wiphy *wiphy;
5922 struct brcmf_chanspec_list *list;
5923 struct brcmu_chan ch;
5930 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
5935 list = (struct brcmf_chanspec_list *)pbuf;
5937 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
5940 brcmf_err("get chanspecs error (%d)\n", err);
5944 wiphy = cfg_to_wiphy(cfg);
5945 band = wiphy->bands[NL80211_BAND_2GHZ];
5947 for (i = 0; i < band->n_channels; i++)
5948 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
5949 band = wiphy->bands[NL80211_BAND_5GHZ];
5951 for (i = 0; i < band->n_channels; i++)
5952 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
5954 total = le32_to_cpu(list->count);
5955 for (i = 0; i < total; i++) {
5956 ch.chspec = (u16)le32_to_cpu(list->element[i]);
5957 cfg->d11inf.decchspec(&ch);
5959 if (ch.band == BRCMU_CHAN_BAND_2G) {
5960 band = wiphy->bands[NL80211_BAND_2GHZ];
5961 } else if (ch.band == BRCMU_CHAN_BAND_5G) {
5962 band = wiphy->bands[NL80211_BAND_5GHZ];
5964 brcmf_err("Invalid channel Spec. 0x%x.\n", ch.chspec);
5969 if (!(bw_cap[band->band] & WLC_BW_40MHZ_BIT) &&
5970 ch.bw == BRCMU_CHAN_BW_40)
5972 if (!(bw_cap[band->band] & WLC_BW_80MHZ_BIT) &&
5973 ch.bw == BRCMU_CHAN_BW_80)
5977 for (j = 0; j < band->n_channels; j++) {
5978 if (band->channels[j].hw_value == ch.control_ch_num) {
5979 channel = &band->channels[j];
5984 /* It seems firmware supports some channel we never
5985 * considered. Something new in IEEE standard?
5987 brcmf_err("Ignoring unexpected firmware channel %d\n",
5992 if (channel->orig_flags & IEEE80211_CHAN_DISABLED)
5995 /* assuming the chanspecs order is HT20,
5996 * HT40 upper, HT40 lower, and VHT80.
5998 if (ch.bw == BRCMU_CHAN_BW_80) {
5999 channel->flags &= ~IEEE80211_CHAN_NO_80MHZ;
6000 } else if (ch.bw == BRCMU_CHAN_BW_40) {
6001 brcmf_update_bw40_channel_flag(channel, &ch);
6003 /* enable the channel and disable other bandwidths
6004 * for now as mentioned order assure they are enabled
6005 * for subsequent chanspecs.
6007 channel->flags = IEEE80211_CHAN_NO_HT40 |
6008 IEEE80211_CHAN_NO_80MHZ |
6009 IEEE80211_CHAN_NO_160MHZ;
6010 ch.bw = BRCMU_CHAN_BW_20;
6011 cfg->d11inf.encchspec(&ch);
6012 chaninfo = ch.chspec;
6013 err = brcmf_fil_bsscfg_int_get(ifp, "per_chan_info",
6016 if (chaninfo & WL_CHAN_RADAR)
6018 (IEEE80211_CHAN_RADAR |
6019 IEEE80211_CHAN_NO_IR);
6020 if (chaninfo & WL_CHAN_PASSIVE)
6022 IEEE80211_CHAN_NO_IR;
6032 static int brcmf_enable_bw40_2g(struct brcmf_cfg80211_info *cfg)
6034 struct brcmf_if *ifp = brcmf_get_ifp(cfg->pub, 0);
6035 struct ieee80211_supported_band *band;
6036 struct brcmf_fil_bwcap_le band_bwcap;
6037 struct brcmf_chanspec_list *list;
6041 struct brcmu_chan ch;
6045 /* verify support for bw_cap command */
6047 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &val);
6050 /* only set 2G bandwidth using bw_cap command */
6051 band_bwcap.band = cpu_to_le32(WLC_BAND_2G);
6052 band_bwcap.bw_cap = cpu_to_le32(WLC_BW_CAP_40MHZ);
6053 err = brcmf_fil_iovar_data_set(ifp, "bw_cap", &band_bwcap,
6054 sizeof(band_bwcap));
6056 brcmf_dbg(INFO, "fallback to mimo_bw_cap\n");
6057 val = WLC_N_BW_40ALL;
6058 err = brcmf_fil_iovar_int_set(ifp, "mimo_bw_cap", val);
6062 /* update channel info in 2G band */
6063 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
6068 ch.band = BRCMU_CHAN_BAND_2G;
6069 ch.bw = BRCMU_CHAN_BW_40;
6070 ch.sb = BRCMU_CHAN_SB_NONE;
6072 cfg->d11inf.encchspec(&ch);
6074 /* pass encoded chanspec in query */
6075 *(__le16 *)pbuf = cpu_to_le16(ch.chspec);
6077 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
6080 brcmf_err("get chanspecs error (%d)\n", err);
6085 band = cfg_to_wiphy(cfg)->bands[NL80211_BAND_2GHZ];
6086 list = (struct brcmf_chanspec_list *)pbuf;
6087 num_chan = le32_to_cpu(list->count);
6088 for (i = 0; i < num_chan; i++) {
6089 ch.chspec = (u16)le32_to_cpu(list->element[i]);
6090 cfg->d11inf.decchspec(&ch);
6091 if (WARN_ON(ch.band != BRCMU_CHAN_BAND_2G))
6093 if (WARN_ON(ch.bw != BRCMU_CHAN_BW_40))
6095 for (j = 0; j < band->n_channels; j++) {
6096 if (band->channels[j].hw_value == ch.control_ch_num)
6099 if (WARN_ON(j == band->n_channels))
6102 brcmf_update_bw40_channel_flag(&band->channels[j], &ch);
6109 static void brcmf_get_bwcap(struct brcmf_if *ifp, u32 bw_cap[])
6111 u32 band, mimo_bwcap;
6115 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
6117 bw_cap[NL80211_BAND_2GHZ] = band;
6119 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
6121 bw_cap[NL80211_BAND_5GHZ] = band;
6127 brcmf_dbg(INFO, "fallback to mimo_bw_cap info\n");
6129 err = brcmf_fil_iovar_int_get(ifp, "mimo_bw_cap", &mimo_bwcap);
6131 /* assume 20MHz if firmware does not give a clue */
6132 mimo_bwcap = WLC_N_BW_20ALL;
6134 switch (mimo_bwcap) {
6135 case WLC_N_BW_40ALL:
6136 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_40MHZ_BIT;
6138 case WLC_N_BW_20IN2G_40IN5G:
6139 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_40MHZ_BIT;
6141 case WLC_N_BW_20ALL:
6142 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_20MHZ_BIT;
6143 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_20MHZ_BIT;
6146 brcmf_err("invalid mimo_bw_cap value\n");
6150 static void brcmf_update_ht_cap(struct ieee80211_supported_band *band,
6151 u32 bw_cap[2], u32 nchain)
6153 band->ht_cap.ht_supported = true;
6154 if (bw_cap[band->band] & WLC_BW_40MHZ_BIT) {
6155 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40;
6156 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6158 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20;
6159 band->ht_cap.cap |= IEEE80211_HT_CAP_DSSSCCK40;
6160 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K;
6161 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_16;
6162 memset(band->ht_cap.mcs.rx_mask, 0xff, nchain);
6163 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED;
6166 static __le16 brcmf_get_mcs_map(u32 nchain, enum ieee80211_vht_mcs_support supp)
6171 for (i = 0, mcs_map = 0xFFFF; i < nchain; i++)
6172 mcs_map = (mcs_map << 2) | supp;
6174 return cpu_to_le16(mcs_map);
6177 static void brcmf_update_vht_cap(struct ieee80211_supported_band *band,
6178 u32 bw_cap[2], u32 nchain, u32 txstreams,
6179 u32 txbf_bfe_cap, u32 txbf_bfr_cap)
6183 /* not allowed in 2.4G band */
6184 if (band->band == NL80211_BAND_2GHZ)
6187 band->vht_cap.vht_supported = true;
6188 /* 80MHz is mandatory */
6189 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_80;
6190 if (bw_cap[band->band] & WLC_BW_160MHZ_BIT) {
6191 band->vht_cap.cap |= IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
6192 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_160;
6194 /* all support 256-QAM */
6195 mcs_map = brcmf_get_mcs_map(nchain, IEEE80211_VHT_MCS_SUPPORT_0_9);
6196 band->vht_cap.vht_mcs.rx_mcs_map = mcs_map;
6197 band->vht_cap.vht_mcs.tx_mcs_map = mcs_map;
6199 /* Beamforming support information */
6200 if (txbf_bfe_cap & BRCMF_TXBF_SU_BFE_CAP)
6201 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE;
6202 if (txbf_bfe_cap & BRCMF_TXBF_MU_BFE_CAP)
6203 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE;
6204 if (txbf_bfr_cap & BRCMF_TXBF_SU_BFR_CAP)
6205 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE;
6206 if (txbf_bfr_cap & BRCMF_TXBF_MU_BFR_CAP)
6207 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMER_CAPABLE;
6209 if ((txbf_bfe_cap || txbf_bfr_cap) && (txstreams > 1)) {
6210 band->vht_cap.cap |=
6211 (2 << IEEE80211_VHT_CAP_BEAMFORMEE_STS_SHIFT);
6212 band->vht_cap.cap |= ((txstreams - 1) <<
6213 IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_SHIFT);
6214 band->vht_cap.cap |=
6215 IEEE80211_VHT_CAP_VHT_LINK_ADAPTATION_VHT_MRQ_MFB;
6219 static int brcmf_setup_wiphybands(struct brcmf_cfg80211_info *cfg)
6221 struct brcmf_if *ifp = brcmf_get_ifp(cfg->pub, 0);
6222 struct wiphy *wiphy;
6225 u32 bw_cap[2] = { WLC_BW_20MHZ_BIT, WLC_BW_20MHZ_BIT };
6230 struct ieee80211_supported_band *band;
6232 u32 txbf_bfe_cap = 0;
6233 u32 txbf_bfr_cap = 0;
6235 (void)brcmf_fil_iovar_int_get(ifp, "vhtmode", &vhtmode);
6236 err = brcmf_fil_iovar_int_get(ifp, "nmode", &nmode);
6238 brcmf_err("nmode error (%d)\n", err);
6240 brcmf_get_bwcap(ifp, bw_cap);
6242 brcmf_dbg(INFO, "nmode=%d, vhtmode=%d, bw_cap=(%d, %d)\n",
6243 nmode, vhtmode, bw_cap[NL80211_BAND_2GHZ],
6244 bw_cap[NL80211_BAND_5GHZ]);
6246 err = brcmf_fil_iovar_int_get(ifp, "rxchain", &rxchain);
6248 brcmf_err("rxchain error (%d)\n", err);
6251 for (nchain = 0; rxchain; nchain++)
6252 rxchain = rxchain & (rxchain - 1);
6254 brcmf_dbg(INFO, "nchain=%d\n", nchain);
6256 err = brcmf_construct_chaninfo(cfg, bw_cap);
6258 brcmf_err("brcmf_construct_chaninfo failed (%d)\n", err);
6263 (void)brcmf_fil_iovar_int_get(ifp, "txstreams", &txstreams);
6264 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfe_cap",
6266 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfr_cap",
6270 wiphy = cfg_to_wiphy(cfg);
6271 for (i = 0; i < ARRAY_SIZE(wiphy->bands); i++) {
6272 band = wiphy->bands[i];
6277 brcmf_update_ht_cap(band, bw_cap, nchain);
6279 brcmf_update_vht_cap(band, bw_cap, nchain, txstreams,
6280 txbf_bfe_cap, txbf_bfr_cap);
6286 static const struct ieee80211_txrx_stypes
6287 brcmf_txrx_stypes[NUM_NL80211_IFTYPES] = {
6288 [NL80211_IFTYPE_STATION] = {
6290 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6291 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6293 [NL80211_IFTYPE_P2P_CLIENT] = {
6295 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6296 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6298 [NL80211_IFTYPE_P2P_GO] = {
6300 .rx = BIT(IEEE80211_STYPE_ASSOC_REQ >> 4) |
6301 BIT(IEEE80211_STYPE_REASSOC_REQ >> 4) |
6302 BIT(IEEE80211_STYPE_PROBE_REQ >> 4) |
6303 BIT(IEEE80211_STYPE_DISASSOC >> 4) |
6304 BIT(IEEE80211_STYPE_AUTH >> 4) |
6305 BIT(IEEE80211_STYPE_DEAUTH >> 4) |
6306 BIT(IEEE80211_STYPE_ACTION >> 4)
6308 [NL80211_IFTYPE_P2P_DEVICE] = {
6310 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6311 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6316 * brcmf_setup_ifmodes() - determine interface modes and combinations.
6318 * @wiphy: wiphy object.
6319 * @ifp: interface object needed for feat module api.
6321 * The interface modes and combinations are determined dynamically here
6322 * based on firmware functionality.
6324 * no p2p and no mbss:
6326 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6330 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6331 * #AP <= 4, matching BI, channels = 1, 4 total
6333 * p2p, no mchan, and mbss:
6335 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 1, 3 total
6336 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6337 * #AP <= 4, matching BI, channels = 1, 4 total
6339 * p2p, mchan, and mbss:
6341 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 2, 3 total
6342 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6343 * #AP <= 4, matching BI, channels = 1, 4 total
6345 static int brcmf_setup_ifmodes(struct wiphy *wiphy, struct brcmf_if *ifp)
6347 struct ieee80211_iface_combination *combo = NULL;
6348 struct ieee80211_iface_limit *c0_limits = NULL;
6349 struct ieee80211_iface_limit *p2p_limits = NULL;
6350 struct ieee80211_iface_limit *mbss_limits = NULL;
6354 mbss = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS);
6355 p2p = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_P2P);
6357 n_combos = 1 + !!p2p + !!mbss;
6358 combo = kcalloc(n_combos, sizeof(*combo), GFP_KERNEL);
6362 wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION) |
6363 BIT(NL80211_IFTYPE_ADHOC) |
6364 BIT(NL80211_IFTYPE_AP);
6368 c0_limits = kcalloc(p2p ? 3 : 2, sizeof(*c0_limits), GFP_KERNEL);
6371 c0_limits[i].max = 1;
6372 c0_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6374 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MCHAN))
6375 combo[c].num_different_channels = 2;
6377 combo[c].num_different_channels = 1;
6378 wiphy->interface_modes |= BIT(NL80211_IFTYPE_P2P_CLIENT) |
6379 BIT(NL80211_IFTYPE_P2P_GO) |
6380 BIT(NL80211_IFTYPE_P2P_DEVICE);
6381 c0_limits[i].max = 1;
6382 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6383 c0_limits[i].max = 1;
6384 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT) |
6385 BIT(NL80211_IFTYPE_P2P_GO);
6387 combo[c].num_different_channels = 1;
6388 c0_limits[i].max = 1;
6389 c0_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6391 combo[c].max_interfaces = i;
6392 combo[c].n_limits = i;
6393 combo[c].limits = c0_limits;
6398 p2p_limits = kcalloc(4, sizeof(*p2p_limits), GFP_KERNEL);
6401 p2p_limits[i].max = 1;
6402 p2p_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6403 p2p_limits[i].max = 1;
6404 p2p_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6405 p2p_limits[i].max = 1;
6406 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT);
6407 p2p_limits[i].max = 1;
6408 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6409 combo[c].num_different_channels = 1;
6410 combo[c].max_interfaces = i;
6411 combo[c].n_limits = i;
6412 combo[c].limits = p2p_limits;
6418 mbss_limits = kcalloc(1, sizeof(*mbss_limits), GFP_KERNEL);
6421 mbss_limits[i].max = 4;
6422 mbss_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6423 combo[c].beacon_int_infra_match = true;
6424 combo[c].num_different_channels = 1;
6425 combo[c].max_interfaces = 4;
6426 combo[c].n_limits = i;
6427 combo[c].limits = mbss_limits;
6430 wiphy->n_iface_combinations = n_combos;
6431 wiphy->iface_combinations = combo;
6443 static const struct wiphy_wowlan_support brcmf_wowlan_support = {
6444 .flags = WIPHY_WOWLAN_MAGIC_PKT | WIPHY_WOWLAN_DISCONNECT,
6445 .n_patterns = BRCMF_WOWL_MAXPATTERNS,
6446 .pattern_max_len = BRCMF_WOWL_MAXPATTERNSIZE,
6447 .pattern_min_len = 1,
6448 .max_pkt_offset = 1500,
6452 static void brcmf_wiphy_wowl_params(struct wiphy *wiphy, struct brcmf_if *ifp)
6455 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
6456 struct wiphy_wowlan_support *wowl;
6458 wowl = kmemdup(&brcmf_wowlan_support, sizeof(brcmf_wowlan_support),
6461 brcmf_err("only support basic wowlan features\n");
6462 wiphy->wowlan = &brcmf_wowlan_support;
6466 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO)) {
6467 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ND)) {
6468 wowl->flags |= WIPHY_WOWLAN_NET_DETECT;
6469 wowl->max_nd_match_sets = BRCMF_PNO_MAX_PFN_COUNT;
6470 init_waitqueue_head(&cfg->wowl.nd_data_wait);
6473 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK)) {
6474 wowl->flags |= WIPHY_WOWLAN_SUPPORTS_GTK_REKEY;
6475 wowl->flags |= WIPHY_WOWLAN_GTK_REKEY_FAILURE;
6478 wiphy->wowlan = wowl;
6482 static int brcmf_setup_wiphy(struct wiphy *wiphy, struct brcmf_if *ifp)
6484 struct brcmf_pub *drvr = ifp->drvr;
6485 const struct ieee80211_iface_combination *combo;
6486 struct ieee80211_supported_band *band;
6487 u16 max_interfaces = 0;
6493 wiphy->max_scan_ssids = WL_NUM_SCAN_MAX;
6494 wiphy->max_scan_ie_len = BRCMF_SCAN_IE_LEN_MAX;
6495 wiphy->max_num_pmkids = BRCMF_MAXPMKID;
6497 err = brcmf_setup_ifmodes(wiphy, ifp);
6501 for (i = 0, combo = wiphy->iface_combinations;
6502 i < wiphy->n_iface_combinations; i++, combo++) {
6503 max_interfaces = max(max_interfaces, combo->max_interfaces);
6506 for (i = 0; i < max_interfaces && i < ARRAY_SIZE(drvr->addresses);
6508 u8 *addr = drvr->addresses[i].addr;
6510 memcpy(addr, drvr->mac, ETH_ALEN);
6513 addr[ETH_ALEN - 1] ^= i;
6516 wiphy->addresses = drvr->addresses;
6517 wiphy->n_addresses = i;
6519 wiphy->signal_type = CFG80211_SIGNAL_TYPE_MBM;
6520 wiphy->cipher_suites = brcmf_cipher_suites;
6521 wiphy->n_cipher_suites = ARRAY_SIZE(brcmf_cipher_suites);
6522 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
6523 wiphy->n_cipher_suites--;
6524 wiphy->bss_select_support = BIT(NL80211_BSS_SELECT_ATTR_RSSI) |
6525 BIT(NL80211_BSS_SELECT_ATTR_BAND_PREF) |
6526 BIT(NL80211_BSS_SELECT_ATTR_RSSI_ADJUST);
6528 wiphy->flags |= WIPHY_FLAG_NETNS_OK |
6529 WIPHY_FLAG_PS_ON_BY_DEFAULT |
6530 WIPHY_FLAG_HAVE_AP_SME |
6531 WIPHY_FLAG_OFFCHAN_TX |
6532 WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL;
6533 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS))
6534 wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS;
6535 if (!ifp->drvr->settings->roamoff)
6536 wiphy->flags |= WIPHY_FLAG_SUPPORTS_FW_ROAM;
6537 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_FWSUP)) {
6538 wiphy_ext_feature_set(wiphy,
6539 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK);
6540 wiphy_ext_feature_set(wiphy,
6541 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X);
6543 wiphy->mgmt_stypes = brcmf_txrx_stypes;
6544 wiphy->max_remain_on_channel_duration = 5000;
6545 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO)) {
6546 gscan = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_GSCAN);
6547 brcmf_pno_wiphy_params(wiphy, gscan);
6549 /* vendor commands/events support */
6550 wiphy->vendor_commands = brcmf_vendor_cmds;
6551 wiphy->n_vendor_commands = BRCMF_VNDR_CMDS_LAST - 1;
6553 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL))
6554 brcmf_wiphy_wowl_params(wiphy, ifp);
6555 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BANDLIST, &bandlist,
6558 brcmf_err("could not obtain band info: err=%d\n", err);
6561 /* first entry in bandlist is number of bands */
6562 n_bands = le32_to_cpu(bandlist[0]);
6563 for (i = 1; i <= n_bands && i < ARRAY_SIZE(bandlist); i++) {
6564 if (bandlist[i] == cpu_to_le32(WLC_BAND_2G)) {
6565 band = kmemdup(&__wl_band_2ghz, sizeof(__wl_band_2ghz),
6570 band->channels = kmemdup(&__wl_2ghz_channels,
6571 sizeof(__wl_2ghz_channels),
6573 if (!band->channels) {
6578 band->n_channels = ARRAY_SIZE(__wl_2ghz_channels);
6579 wiphy->bands[NL80211_BAND_2GHZ] = band;
6581 if (bandlist[i] == cpu_to_le32(WLC_BAND_5G)) {
6582 band = kmemdup(&__wl_band_5ghz, sizeof(__wl_band_5ghz),
6587 band->channels = kmemdup(&__wl_5ghz_channels,
6588 sizeof(__wl_5ghz_channels),
6590 if (!band->channels) {
6595 band->n_channels = ARRAY_SIZE(__wl_5ghz_channels);
6596 wiphy->bands[NL80211_BAND_5GHZ] = band;
6600 wiphy_read_of_freq_limits(wiphy);
6605 static s32 brcmf_config_dongle(struct brcmf_cfg80211_info *cfg)
6607 struct net_device *ndev;
6608 struct wireless_dev *wdev;
6609 struct brcmf_if *ifp;
6616 ndev = cfg_to_ndev(cfg);
6617 wdev = ndev->ieee80211_ptr;
6618 ifp = netdev_priv(ndev);
6620 /* make sure RF is ready for work */
6621 brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 0);
6623 brcmf_dongle_scantime(ifp);
6625 power_mode = cfg->pwr_save ? PM_FAST : PM_OFF;
6626 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, power_mode);
6628 goto default_conf_out;
6629 brcmf_dbg(INFO, "power save set to %s\n",
6630 (power_mode ? "enabled" : "disabled"));
6632 err = brcmf_dongle_roam(ifp);
6634 goto default_conf_out;
6635 err = brcmf_cfg80211_change_iface(wdev->wiphy, ndev, wdev->iftype,
6638 goto default_conf_out;
6640 brcmf_configure_arp_nd_offload(ifp, true);
6642 cfg->dongle_up = true;
6649 static s32 __brcmf_cfg80211_up(struct brcmf_if *ifp)
6651 set_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6653 return brcmf_config_dongle(ifp->drvr->config);
6656 static s32 __brcmf_cfg80211_down(struct brcmf_if *ifp)
6658 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6661 * While going down, if associated with AP disassociate
6662 * from AP to save power
6664 if (check_vif_up(ifp->vif)) {
6665 brcmf_link_down(ifp->vif, WLAN_REASON_UNSPECIFIED);
6667 /* Make sure WPA_Supplicant receives all the event
6668 generated due to DISASSOC call to the fw to keep
6669 the state fw and WPA_Supplicant state consistent
6674 brcmf_abort_scanning(cfg);
6675 clear_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6680 s32 brcmf_cfg80211_up(struct net_device *ndev)
6682 struct brcmf_if *ifp = netdev_priv(ndev);
6683 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6686 mutex_lock(&cfg->usr_sync);
6687 err = __brcmf_cfg80211_up(ifp);
6688 mutex_unlock(&cfg->usr_sync);
6693 s32 brcmf_cfg80211_down(struct net_device *ndev)
6695 struct brcmf_if *ifp = netdev_priv(ndev);
6696 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6699 mutex_lock(&cfg->usr_sync);
6700 err = __brcmf_cfg80211_down(ifp);
6701 mutex_unlock(&cfg->usr_sync);
6706 enum nl80211_iftype brcmf_cfg80211_get_iftype(struct brcmf_if *ifp)
6708 struct wireless_dev *wdev = &ifp->vif->wdev;
6710 return wdev->iftype;
6713 bool brcmf_get_vif_state_any(struct brcmf_cfg80211_info *cfg,
6714 unsigned long state)
6716 struct brcmf_cfg80211_vif *vif;
6718 list_for_each_entry(vif, &cfg->vif_list, list) {
6719 if (test_bit(state, &vif->sme_state))
6725 static inline bool vif_event_equals(struct brcmf_cfg80211_vif_event *event,
6730 spin_lock(&event->vif_event_lock);
6731 evt_action = event->action;
6732 spin_unlock(&event->vif_event_lock);
6733 return evt_action == action;
6736 void brcmf_cfg80211_arm_vif_event(struct brcmf_cfg80211_info *cfg,
6737 struct brcmf_cfg80211_vif *vif)
6739 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6741 spin_lock(&event->vif_event_lock);
6744 spin_unlock(&event->vif_event_lock);
6747 bool brcmf_cfg80211_vif_event_armed(struct brcmf_cfg80211_info *cfg)
6749 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6752 spin_lock(&event->vif_event_lock);
6753 armed = event->vif != NULL;
6754 spin_unlock(&event->vif_event_lock);
6759 int brcmf_cfg80211_wait_vif_event(struct brcmf_cfg80211_info *cfg,
6760 u8 action, ulong timeout)
6762 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6764 return wait_event_timeout(event->vif_wq,
6765 vif_event_equals(event, action), timeout);
6768 static s32 brcmf_translate_country_code(struct brcmf_pub *drvr, char alpha2[2],
6769 struct brcmf_fil_country_le *ccreq)
6771 struct brcmfmac_pd_cc *country_codes;
6772 struct brcmfmac_pd_cc_entry *cc;
6776 country_codes = drvr->settings->country_codes;
6777 if (!country_codes) {
6778 brcmf_dbg(TRACE, "No country codes configured for device\n");
6782 if ((alpha2[0] == ccreq->country_abbrev[0]) &&
6783 (alpha2[1] == ccreq->country_abbrev[1])) {
6784 brcmf_dbg(TRACE, "Country code already set\n");
6789 for (i = 0; i < country_codes->table_size; i++) {
6790 cc = &country_codes->table[i];
6791 if ((cc->iso3166[0] == '\0') && (found_index == -1))
6793 if ((cc->iso3166[0] == alpha2[0]) &&
6794 (cc->iso3166[1] == alpha2[1])) {
6799 if (found_index == -1) {
6800 brcmf_dbg(TRACE, "No country code match found\n");
6803 memset(ccreq, 0, sizeof(*ccreq));
6804 ccreq->rev = cpu_to_le32(country_codes->table[found_index].rev);
6805 memcpy(ccreq->ccode, country_codes->table[found_index].cc,
6806 BRCMF_COUNTRY_BUF_SZ);
6807 ccreq->country_abbrev[0] = alpha2[0];
6808 ccreq->country_abbrev[1] = alpha2[1];
6809 ccreq->country_abbrev[2] = 0;
6814 static void brcmf_cfg80211_reg_notifier(struct wiphy *wiphy,
6815 struct regulatory_request *req)
6817 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
6818 struct brcmf_if *ifp = brcmf_get_ifp(cfg->pub, 0);
6819 struct brcmf_fil_country_le ccreq;
6823 /* The country code gets set to "00" by default at boot, ignore */
6824 if (req->alpha2[0] == '0' && req->alpha2[1] == '0')
6827 /* ignore non-ISO3166 country codes */
6828 for (i = 0; i < 2; i++)
6829 if (req->alpha2[i] < 'A' || req->alpha2[i] > 'Z') {
6830 brcmf_err("not an ISO3166 code (0x%02x 0x%02x)\n",
6831 req->alpha2[0], req->alpha2[1]);
6835 brcmf_dbg(TRACE, "Enter: initiator=%d, alpha=%c%c\n", req->initiator,
6836 req->alpha2[0], req->alpha2[1]);
6838 err = brcmf_fil_iovar_data_get(ifp, "country", &ccreq, sizeof(ccreq));
6840 brcmf_err("Country code iovar returned err = %d\n", err);
6844 err = brcmf_translate_country_code(ifp->drvr, req->alpha2, &ccreq);
6848 err = brcmf_fil_iovar_data_set(ifp, "country", &ccreq, sizeof(ccreq));
6850 brcmf_err("Firmware rejected country setting\n");
6853 brcmf_setup_wiphybands(cfg);
6856 static void brcmf_free_wiphy(struct wiphy *wiphy)
6863 if (wiphy->iface_combinations) {
6864 for (i = 0; i < wiphy->n_iface_combinations; i++)
6865 kfree(wiphy->iface_combinations[i].limits);
6867 kfree(wiphy->iface_combinations);
6868 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6869 kfree(wiphy->bands[NL80211_BAND_2GHZ]->channels);
6870 kfree(wiphy->bands[NL80211_BAND_2GHZ]);
6872 if (wiphy->bands[NL80211_BAND_5GHZ]) {
6873 kfree(wiphy->bands[NL80211_BAND_5GHZ]->channels);
6874 kfree(wiphy->bands[NL80211_BAND_5GHZ]);
6876 #if IS_ENABLED(CONFIG_PM)
6877 if (wiphy->wowlan != &brcmf_wowlan_support)
6878 kfree(wiphy->wowlan);
6882 struct brcmf_cfg80211_info *brcmf_cfg80211_attach(struct brcmf_pub *drvr,
6883 struct cfg80211_ops *ops,
6886 struct wiphy *wiphy = drvr->wiphy;
6887 struct net_device *ndev = brcmf_get_ifp(drvr, 0)->ndev;
6888 struct brcmf_cfg80211_info *cfg;
6889 struct brcmf_cfg80211_vif *vif;
6890 struct brcmf_if *ifp;
6896 brcmf_err("ndev is invalid\n");
6900 cfg = kzalloc(sizeof(*cfg), GFP_KERNEL);
6902 brcmf_err("Could not allocate wiphy device\n");
6908 init_vif_event(&cfg->vif_event);
6909 INIT_LIST_HEAD(&cfg->vif_list);
6911 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_STATION);
6915 ifp = netdev_priv(ndev);
6917 vif->wdev.netdev = ndev;
6918 ndev->ieee80211_ptr = &vif->wdev;
6919 SET_NETDEV_DEV(ndev, wiphy_dev(cfg->wiphy));
6921 err = wl_init_priv(cfg);
6923 brcmf_err("Failed to init iwm_priv (%d)\n", err);
6924 brcmf_free_vif(vif);
6929 /* determine d11 io type before wiphy setup */
6930 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_VERSION, &io_type);
6932 brcmf_err("Failed to get D11 version (%d)\n", err);
6935 cfg->d11inf.io_type = (u8)io_type;
6936 brcmu_d11_attach(&cfg->d11inf);
6938 /* regulatory notifer below needs access to cfg so
6943 err = brcmf_setup_wiphy(wiphy, ifp);
6947 brcmf_dbg(INFO, "Registering custom regulatory\n");
6948 wiphy->reg_notifier = brcmf_cfg80211_reg_notifier;
6949 wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG;
6950 wiphy_apply_custom_regulatory(wiphy, &brcmf_regdom);
6952 /* firmware defaults to 40MHz disabled in 2G band. We signal
6953 * cfg80211 here that we do and have it decide we can enable
6954 * it. But first check if device does support 2G operation.
6956 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6957 cap = &wiphy->bands[NL80211_BAND_2GHZ]->ht_cap.cap;
6958 *cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6961 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK))
6962 ops->set_rekey_data = brcmf_cfg80211_set_rekey_data;
6964 err = wiphy_register(wiphy);
6966 brcmf_err("Could not register wiphy device (%d)\n", err);
6970 err = brcmf_setup_wiphybands(cfg);
6972 brcmf_err("Setting wiphy bands failed (%d)\n", err);
6973 goto wiphy_unreg_out;
6976 /* If cfg80211 didn't disable 40MHz HT CAP in wiphy_register(),
6977 * setup 40MHz in 2GHz band and enable OBSS scanning.
6979 if (cap && (*cap & IEEE80211_HT_CAP_SUP_WIDTH_20_40)) {
6980 err = brcmf_enable_bw40_2g(cfg);
6982 err = brcmf_fil_iovar_int_set(ifp, "obss_coex",
6983 BRCMF_OBSS_COEX_AUTO);
6985 *cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6988 err = brcmf_fweh_activate_events(ifp);
6990 brcmf_err("FWEH activation failed (%d)\n", err);
6991 goto wiphy_unreg_out;
6994 err = brcmf_p2p_attach(cfg, p2pdev_forced);
6996 brcmf_err("P2P initialisation failed (%d)\n", err);
6997 goto wiphy_unreg_out;
6999 err = brcmf_btcoex_attach(cfg);
7001 brcmf_err("BT-coex initialisation failed (%d)\n", err);
7002 brcmf_p2p_detach(&cfg->p2p);
7003 goto wiphy_unreg_out;
7005 err = brcmf_pno_attach(cfg);
7007 brcmf_err("PNO initialisation failed (%d)\n", err);
7008 brcmf_btcoex_detach(cfg);
7009 brcmf_p2p_detach(&cfg->p2p);
7010 goto wiphy_unreg_out;
7013 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS)) {
7014 err = brcmf_fil_iovar_int_set(ifp, "tdls_enable", 1);
7016 brcmf_dbg(INFO, "TDLS not enabled (%d)\n", err);
7017 wiphy->flags &= ~WIPHY_FLAG_SUPPORTS_TDLS;
7019 brcmf_fweh_register(cfg->pub, BRCMF_E_TDLS_PEER_EVENT,
7020 brcmf_notify_tdls_peer_event);
7024 /* (re-) activate FWEH event handling */
7025 err = brcmf_fweh_activate_events(ifp);
7027 brcmf_err("FWEH activation failed (%d)\n", err);
7031 /* Fill in some of the advertised nl80211 supported features */
7032 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_SCAN_RANDOM_MAC)) {
7033 wiphy->features |= NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR;
7035 if (wiphy->wowlan &&
7036 wiphy->wowlan->flags & WIPHY_WOWLAN_NET_DETECT)
7037 wiphy->features |= NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7044 brcmf_pno_detach(cfg);
7045 brcmf_btcoex_detach(cfg);
7046 brcmf_p2p_detach(&cfg->p2p);
7048 wiphy_unregister(cfg->wiphy);
7050 wl_deinit_priv(cfg);
7051 brcmf_free_vif(vif);
7054 brcmf_free_wiphy(wiphy);
7059 void brcmf_cfg80211_detach(struct brcmf_cfg80211_info *cfg)
7064 brcmf_pno_detach(cfg);
7065 brcmf_btcoex_detach(cfg);
7066 wiphy_unregister(cfg->wiphy);
7068 wl_deinit_priv(cfg);
7069 brcmf_free_wiphy(cfg->wiphy);
projects / linux.git / blob