1 /*======================================================================
3 Aironet driver for 4500 and 4800 series cards
5 This code is released under both the GPL version 2 and BSD licenses.
6 Either license may be used. The respective licenses are found at
10 including portions of which come from the Aironet PC4500
11 Developer's Reference Manual and used with permission. Copyright
12 (C) 1999 Benjamin Reed. All Rights Reserved. Permission to use
13 code in the Developer's manual was granted for this driver by
14 Aironet. Major code contributions were received from Javier Achirica
16 Code was also integrated from the Cisco Aironet driver for Linux.
17 Support for MPI350 cards was added by Fabrice Bellet
20 ======================================================================*/
22 #include <linux/err.h>
23 #include <linux/init.h>
25 #include <linux/kernel.h>
26 #include <linux/module.h>
27 #include <linux/proc_fs.h>
29 #include <linux/sched.h>
30 #include <linux/ptrace.h>
31 #include <linux/slab.h>
32 #include <linux/string.h>
33 #include <linux/timer.h>
34 #include <linux/interrupt.h>
36 #include <linux/bitops.h>
37 #include <linux/scatterlist.h>
38 #include <linux/crypto.h>
40 #include <asm/unaligned.h>
42 #include <linux/netdevice.h>
43 #include <linux/etherdevice.h>
44 #include <linux/skbuff.h>
45 #include <linux/if_arp.h>
46 #include <linux/ioport.h>
47 #include <linux/pci.h>
48 #include <linux/uaccess.h>
49 #include <linux/kthread.h>
50 #include <linux/freezer.h>
52 #include <crypto/aes.h>
53 #include <crypto/skcipher.h>
55 #include <net/cfg80211.h>
56 #include <net/iw_handler.h>
60 #define DRV_NAME "airo"
63 static const struct pci_device_id card_ids[] = {
64 { 0x14b9, 1, PCI_ANY_ID, PCI_ANY_ID, },
65 { 0x14b9, 0x4500, PCI_ANY_ID, PCI_ANY_ID },
66 { 0x14b9, 0x4800, PCI_ANY_ID, PCI_ANY_ID, },
67 { 0x14b9, 0x0340, PCI_ANY_ID, PCI_ANY_ID, },
68 { 0x14b9, 0x0350, PCI_ANY_ID, PCI_ANY_ID, },
69 { 0x14b9, 0x5000, PCI_ANY_ID, PCI_ANY_ID, },
70 { 0x14b9, 0xa504, PCI_ANY_ID, PCI_ANY_ID, },
73 MODULE_DEVICE_TABLE(pci, card_ids);
75 static int airo_pci_probe(struct pci_dev *, const struct pci_device_id *);
76 static void airo_pci_remove(struct pci_dev *);
77 static int __maybe_unused airo_pci_suspend(struct device *dev);
78 static int __maybe_unused airo_pci_resume(struct device *dev);
80 static SIMPLE_DEV_PM_OPS(airo_pci_pm_ops,
84 static struct pci_driver airo_driver = {
87 .probe = airo_pci_probe,
88 .remove = airo_pci_remove,
89 .driver.pm = &airo_pci_pm_ops,
91 #endif /* CONFIG_PCI */
93 /* Include Wireless Extension definition and check version - Jean II */
94 #include <linux/wireless.h>
95 #define WIRELESS_SPY /* enable iwspy support */
97 #define CISCO_EXT /* enable Cisco extensions */
99 #include <linux/delay.h>
102 /* Hack to do some power saving */
103 #define POWER_ON_DOWN
105 /* As you can see this list is HUGH!
106 I really don't know what a lot of these counts are about, but they
107 are all here for completeness. If the IGNLABEL macro is put in
108 infront of the label, that statistic will not be included in the list
109 of statistics in the /proc filesystem */
111 #define IGNLABEL(comment) NULL
112 static const char *statsLabels[] = {
114 IGNLABEL("RxPlcpCrcErr"),
115 IGNLABEL("RxPlcpFormatErr"),
116 IGNLABEL("RxPlcpLengthErr"),
147 "LostSync-MissedBeacons",
148 "LostSync-ArlExceeded",
150 "LostSync-Disassoced",
151 "LostSync-TsfTiming",
160 IGNLABEL("HmacTxMc"),
161 IGNLABEL("HmacTxBc"),
162 IGNLABEL("HmacTxUc"),
163 IGNLABEL("HmacTxFail"),
164 IGNLABEL("HmacRxMc"),
165 IGNLABEL("HmacRxBc"),
166 IGNLABEL("HmacRxUc"),
167 IGNLABEL("HmacRxDiscard"),
168 IGNLABEL("HmacRxAccepted"),
176 IGNLABEL("ReasonOutsideTable"),
177 IGNLABEL("ReasonStatus1"),
178 IGNLABEL("ReasonStatus2"),
179 IGNLABEL("ReasonStatus3"),
180 IGNLABEL("ReasonStatus4"),
181 IGNLABEL("ReasonStatus5"),
182 IGNLABEL("ReasonStatus6"),
183 IGNLABEL("ReasonStatus7"),
184 IGNLABEL("ReasonStatus8"),
185 IGNLABEL("ReasonStatus9"),
186 IGNLABEL("ReasonStatus10"),
187 IGNLABEL("ReasonStatus11"),
188 IGNLABEL("ReasonStatus12"),
189 IGNLABEL("ReasonStatus13"),
190 IGNLABEL("ReasonStatus14"),
191 IGNLABEL("ReasonStatus15"),
192 IGNLABEL("ReasonStatus16"),
193 IGNLABEL("ReasonStatus17"),
194 IGNLABEL("ReasonStatus18"),
195 IGNLABEL("ReasonStatus19"),
215 #define RUN_AT(x) (jiffies+(x))
219 /* These variables are for insmod, since it seems that the rates
220 can only be set in setup_card. Rates should be a comma separated
221 (no spaces) list of rates (up to 8). */
224 static char *ssids[3];
230 int maxencrypt /* = 0 */; /* The highest rate that the card can encrypt at.
231 0 means no limit. For old cards this was 4 */
233 static int auto_wep /* = 0 */; /* If set, it tries to figure out the wep mode */
234 static int aux_bap /* = 0 */; /* Checks to see if the aux ports are needed to read
235 the bap, needed on some older cards and buses. */
238 static int probe = 1;
240 static kuid_t proc_kuid;
241 static int proc_uid /* = 0 */;
243 static kgid_t proc_kgid;
244 static int proc_gid /* = 0 */;
246 static int airo_perm = 0555;
248 static int proc_perm = 0644;
250 MODULE_AUTHOR("Benjamin Reed");
251 MODULE_DESCRIPTION("Support for Cisco/Aironet 802.11 wireless ethernet cards. "
252 "Direct support for ISA/PCI/MPI cards and support for PCMCIA when used with airo_cs.");
253 MODULE_LICENSE("Dual BSD/GPL");
254 MODULE_SUPPORTED_DEVICE("Aironet 4500, 4800 and Cisco 340/350");
255 module_param_hw_array(io, int, ioport, NULL, 0);
256 module_param_hw_array(irq, int, irq, NULL, 0);
257 module_param_array(rates, int, NULL, 0);
258 module_param_array(ssids, charp, NULL, 0);
259 module_param(auto_wep, int, 0);
260 MODULE_PARM_DESC(auto_wep,
261 "If non-zero, the driver will keep looping through the authentication options until an association is made. "
262 "The value of auto_wep is number of the wep keys to check. "
263 "A value of 2 will try using the key at index 0 and index 1.");
264 module_param(aux_bap, int, 0);
265 MODULE_PARM_DESC(aux_bap,
266 "If non-zero, the driver will switch into a mode that seems to work better for older cards with some older buses. "
267 "Before switching it checks that the switch is needed.");
268 module_param(maxencrypt, int, 0);
269 MODULE_PARM_DESC(maxencrypt,
270 "The maximum speed that the card can do encryption. "
271 "Units are in 512kbs. "
272 "Zero (default) means there is no limit. "
273 "Older cards used to be limited to 2mbs (4).");
274 module_param(adhoc, int, 0);
275 MODULE_PARM_DESC(adhoc, "If non-zero, the card will start in adhoc mode.");
276 module_param(probe, int, 0);
277 MODULE_PARM_DESC(probe, "If zero, the driver won't start the card.");
279 module_param(proc_uid, int, 0);
280 MODULE_PARM_DESC(proc_uid, "The uid that the /proc files will belong to.");
281 module_param(proc_gid, int, 0);
282 MODULE_PARM_DESC(proc_gid, "The gid that the /proc files will belong to.");
283 module_param(airo_perm, int, 0);
284 MODULE_PARM_DESC(airo_perm, "The permission bits of /proc/[driver/]aironet.");
285 module_param(proc_perm, int, 0);
286 MODULE_PARM_DESC(proc_perm, "The permission bits of the files in /proc");
288 /* This is a kind of sloppy hack to get this information to OUT4500 and
289 IN4500. I would be extremely interested in the situation where this
290 doesn't work though!!! */
291 static int do8bitIO /* = 0 */;
300 #define MAC_ENABLE 0x0001
301 #define MAC_DISABLE 0x0002
302 #define CMD_LOSE_SYNC 0x0003 /* Not sure what this does... */
303 #define CMD_SOFTRESET 0x0004
304 #define HOSTSLEEP 0x0005
305 #define CMD_MAGIC_PKT 0x0006
306 #define CMD_SETWAKEMASK 0x0007
307 #define CMD_READCFG 0x0008
308 #define CMD_SETMODE 0x0009
309 #define CMD_ALLOCATETX 0x000a
310 #define CMD_TRANSMIT 0x000b
311 #define CMD_DEALLOCATETX 0x000c
313 #define CMD_WORKAROUND 0x0011
314 #define CMD_ALLOCATEAUX 0x0020
315 #define CMD_ACCESS 0x0021
316 #define CMD_PCIBAP 0x0022
317 #define CMD_PCIAUX 0x0023
318 #define CMD_ALLOCBUF 0x0028
319 #define CMD_GETTLV 0x0029
320 #define CMD_PUTTLV 0x002a
321 #define CMD_DELTLV 0x002b
322 #define CMD_FINDNEXTTLV 0x002c
323 #define CMD_PSPNODES 0x0030
324 #define CMD_SETCW 0x0031
325 #define CMD_SETPCF 0x0032
326 #define CMD_SETPHYREG 0x003e
327 #define CMD_TXTEST 0x003f
328 #define MAC_ENABLETX 0x0101
329 #define CMD_LISTBSS 0x0103
330 #define CMD_SAVECFG 0x0108
331 #define CMD_ENABLEAUX 0x0111
332 #define CMD_WRITERID 0x0121
333 #define CMD_USEPSPNODES 0x0130
334 #define MAC_ENABLERX 0x0201
337 #define ERROR_QUALIF 0x00
338 #define ERROR_ILLCMD 0x01
339 #define ERROR_ILLFMT 0x02
340 #define ERROR_INVFID 0x03
341 #define ERROR_INVRID 0x04
342 #define ERROR_LARGE 0x05
343 #define ERROR_NDISABL 0x06
344 #define ERROR_ALLOCBSY 0x07
345 #define ERROR_NORD 0x0B
346 #define ERROR_NOWR 0x0C
347 #define ERROR_INVFIDTX 0x0D
348 #define ERROR_TESTACT 0x0E
349 #define ERROR_TAGNFND 0x12
350 #define ERROR_DECODE 0x20
351 #define ERROR_DESCUNAV 0x21
352 #define ERROR_BADLEN 0x22
353 #define ERROR_MODE 0x80
354 #define ERROR_HOP 0x81
355 #define ERROR_BINTER 0x82
356 #define ERROR_RXMODE 0x83
357 #define ERROR_MACADDR 0x84
358 #define ERROR_RATES 0x85
359 #define ERROR_ORDER 0x86
360 #define ERROR_SCAN 0x87
361 #define ERROR_AUTH 0x88
362 #define ERROR_PSMODE 0x89
363 #define ERROR_RTYPE 0x8A
364 #define ERROR_DIVER 0x8B
365 #define ERROR_SSID 0x8C
366 #define ERROR_APLIST 0x8D
367 #define ERROR_AUTOWAKE 0x8E
368 #define ERROR_LEAP 0x8F
379 #define LINKSTAT 0x10
383 #define TXALLOCFID 0x22
384 #define TXCOMPLFID 0x24
399 /* Offset into aux memory for descriptors */
400 #define AUX_OFFSET 0x800
401 /* Size of allocated packets */
404 /* Size of the transmit queue */
408 #define BAP0 0 /* Used for receiving packets */
409 #define BAP1 2 /* Used for xmiting packets and working with RIDS */
412 #define COMMAND_BUSY 0x8000
414 #define BAP_BUSY 0x8000
415 #define BAP_ERR 0x4000
416 #define BAP_DONE 0x2000
418 #define PROMISC 0xffff
419 #define NOPROMISC 0x0000
422 #define EV_CLEARCOMMANDBUSY 0x4000
425 #define EV_TXEXC 0x04
426 #define EV_ALLOC 0x08
428 #define EV_AWAKE 0x100
429 #define EV_TXCPY 0x400
430 #define EV_UNKNOWN 0x800
431 #define EV_MIC 0x1000 /* Message Integrity Check Interrupt */
432 #define EV_AWAKEN 0x2000
433 #define STATUS_INTS (EV_AWAKE|EV_LINK|EV_TXEXC|EV_TX|EV_TXCPY|EV_RX|EV_MIC)
435 #ifdef CHECK_UNKNOWN_INTS
436 #define IGNORE_INTS ( EV_CMD | EV_UNKNOWN)
438 #define IGNORE_INTS (~STATUS_INTS)
445 #define RID_CAPABILITIES 0xFF00
446 #define RID_APINFO 0xFF01
447 #define RID_RADIOINFO 0xFF02
448 #define RID_UNKNOWN3 0xFF03
449 #define RID_RSSI 0xFF04
450 #define RID_CONFIG 0xFF10
451 #define RID_SSID 0xFF11
452 #define RID_APLIST 0xFF12
453 #define RID_DRVNAME 0xFF13
454 #define RID_ETHERENCAP 0xFF14
455 #define RID_WEP_TEMP 0xFF15
456 #define RID_WEP_PERM 0xFF16
457 #define RID_MODULATION 0xFF17
458 #define RID_OPTIONS 0xFF18
459 #define RID_ACTUALCONFIG 0xFF20 /*readonly*/
460 #define RID_FACTORYCONFIG 0xFF21
461 #define RID_UNKNOWN22 0xFF22
462 #define RID_LEAPUSERNAME 0xFF23
463 #define RID_LEAPPASSWORD 0xFF24
464 #define RID_STATUS 0xFF50
465 #define RID_BEACON_HST 0xFF51
466 #define RID_BUSY_HST 0xFF52
467 #define RID_RETRIES_HST 0xFF53
468 #define RID_UNKNOWN54 0xFF54
469 #define RID_UNKNOWN55 0xFF55
470 #define RID_UNKNOWN56 0xFF56
471 #define RID_MIC 0xFF57
472 #define RID_STATS16 0xFF60
473 #define RID_STATS16DELTA 0xFF61
474 #define RID_STATS16DELTACLEAR 0xFF62
475 #define RID_STATS 0xFF68
476 #define RID_STATSDELTA 0xFF69
477 #define RID_STATSDELTACLEAR 0xFF6A
478 #define RID_ECHOTEST_RID 0xFF70
479 #define RID_ECHOTEST_RESULTS 0xFF71
480 #define RID_BSSLISTFIRST 0xFF72
481 #define RID_BSSLISTNEXT 0xFF73
482 #define RID_WPA_BSSLISTFIRST 0xFF74
483 #define RID_WPA_BSSLISTNEXT 0xFF75
500 * Rids and endian-ness: The Rids will always be in cpu endian, since
501 * this all the patches from the big-endian guys end up doing that.
502 * so all rid access should use the read/writeXXXRid routines.
505 /* This structure came from an email sent to me from an engineer at
506 aironet for inclusion into this driver */
507 typedef struct WepKeyRid WepKeyRid;
516 /* These structures are from the Aironet's PC4500 Developers Manual */
517 typedef struct Ssid Ssid;
523 typedef struct SsidRid SsidRid;
529 typedef struct ModulationRid ModulationRid;
530 struct ModulationRid {
533 #define MOD_DEFAULT cpu_to_le16(0)
534 #define MOD_CCK cpu_to_le16(1)
535 #define MOD_MOK cpu_to_le16(2)
538 typedef struct ConfigRid ConfigRid;
540 __le16 len; /* sizeof(ConfigRid) */
541 __le16 opmode; /* operating mode */
542 #define MODE_STA_IBSS cpu_to_le16(0)
543 #define MODE_STA_ESS cpu_to_le16(1)
544 #define MODE_AP cpu_to_le16(2)
545 #define MODE_AP_RPTR cpu_to_le16(3)
546 #define MODE_CFG_MASK cpu_to_le16(0xff)
547 #define MODE_ETHERNET_HOST cpu_to_le16(0<<8) /* rx payloads converted */
548 #define MODE_LLC_HOST cpu_to_le16(1<<8) /* rx payloads left as is */
549 #define MODE_AIRONET_EXTEND cpu_to_le16(1<<9) /* enable Aironet extenstions */
550 #define MODE_AP_INTERFACE cpu_to_le16(1<<10) /* enable ap interface extensions */
551 #define MODE_ANTENNA_ALIGN cpu_to_le16(1<<11) /* enable antenna alignment */
552 #define MODE_ETHER_LLC cpu_to_le16(1<<12) /* enable ethernet LLC */
553 #define MODE_LEAF_NODE cpu_to_le16(1<<13) /* enable leaf node bridge */
554 #define MODE_CF_POLLABLE cpu_to_le16(1<<14) /* enable CF pollable */
555 #define MODE_MIC cpu_to_le16(1<<15) /* enable MIC */
556 __le16 rmode; /* receive mode */
557 #define RXMODE_BC_MC_ADDR cpu_to_le16(0)
558 #define RXMODE_BC_ADDR cpu_to_le16(1) /* ignore multicasts */
559 #define RXMODE_ADDR cpu_to_le16(2) /* ignore multicast and broadcast */
560 #define RXMODE_RFMON cpu_to_le16(3) /* wireless monitor mode */
561 #define RXMODE_RFMON_ANYBSS cpu_to_le16(4)
562 #define RXMODE_LANMON cpu_to_le16(5) /* lan style monitor -- data packets only */
563 #define RXMODE_MASK cpu_to_le16(255)
564 #define RXMODE_DISABLE_802_3_HEADER cpu_to_le16(1<<8) /* disables 802.3 header on rx */
565 #define RXMODE_FULL_MASK (RXMODE_MASK | RXMODE_DISABLE_802_3_HEADER)
566 #define RXMODE_NORMALIZED_RSSI cpu_to_le16(1<<9) /* return normalized RSSI */
569 u8 macAddr[ETH_ALEN];
571 __le16 shortRetryLimit;
572 __le16 longRetryLimit;
573 __le16 txLifetime; /* in kusec */
574 __le16 rxLifetime; /* in kusec */
577 __le16 u16deviceType; /* for overriding device type */
580 __le16 _reserved1[3];
581 /*---------- Scanning/Associating ----------*/
583 #define SCANMODE_ACTIVE cpu_to_le16(0)
584 #define SCANMODE_PASSIVE cpu_to_le16(1)
585 #define SCANMODE_AIROSCAN cpu_to_le16(2)
586 __le16 probeDelay; /* in kusec */
587 __le16 probeEnergyTimeout; /* in kusec */
588 __le16 probeResponseTimeout;
589 __le16 beaconListenTimeout;
590 __le16 joinNetTimeout;
593 #define AUTH_OPEN cpu_to_le16(0x1)
594 #define AUTH_ENCRYPT cpu_to_le16(0x101)
595 #define AUTH_SHAREDKEY cpu_to_le16(0x102)
596 #define AUTH_ALLOW_UNENCRYPTED cpu_to_le16(0x200)
597 __le16 associationTimeout;
598 __le16 specifiedApTimeout;
599 __le16 offlineScanInterval;
600 __le16 offlineScanDuration;
601 __le16 linkLossDelay;
602 __le16 maxBeaconLostTime;
603 __le16 refreshInterval;
604 #define DISABLE_REFRESH cpu_to_le16(0xFFFF)
605 __le16 _reserved1a[1];
606 /*---------- Power save operation ----------*/
607 __le16 powerSaveMode;
608 #define POWERSAVE_CAM cpu_to_le16(0)
609 #define POWERSAVE_PSP cpu_to_le16(1)
610 #define POWERSAVE_PSPCAM cpu_to_le16(2)
611 __le16 sleepForDtims;
612 __le16 listenInterval;
613 __le16 fastListenInterval;
615 __le16 fastListenDelay;
616 __le16 _reserved2[2];
617 /*---------- Ap/Ibss config items ----------*/
624 __le16 bridgeDistance;
626 /*---------- Radio configuration ----------*/
628 #define RADIOTYPE_DEFAULT cpu_to_le16(0)
629 #define RADIOTYPE_802_11 cpu_to_le16(1)
630 #define RADIOTYPE_LEGACY cpu_to_le16(2)
634 #define TXPOWER_DEFAULT 0
635 __le16 rssiThreshold;
636 #define RSSI_DEFAULT 0
638 #define PREAMBLE_AUTO cpu_to_le16(0)
639 #define PREAMBLE_LONG cpu_to_le16(1)
640 #define PREAMBLE_SHORT cpu_to_le16(2)
643 __le16 radioSpecific;
644 /*---------- Aironet Extensions ----------*/
649 __le16 _reserved4[1];
650 /*---------- Aironet Extensions ----------*/
652 #define MAGIC_ACTION_STSCHG 1
653 #define MAGIC_ACTION_RESUME 2
654 #define MAGIC_IGNORE_MCAST (1<<8)
655 #define MAGIC_IGNORE_BCAST (1<<9)
656 #define MAGIC_SWITCH_TO_PSP (0<<10)
657 #define MAGIC_STAY_IN_CAM (1<<10)
662 typedef struct StatusRid StatusRid;
672 u8 bssid[4][ETH_ALEN];
679 __le16 hopsToBackbone;
681 __le16 generatedLoad;
682 __le16 accumulatedArl;
683 __le16 signalQuality;
684 __le16 currentXmitRate;
685 __le16 apDevExtensions;
686 __le16 normalizedSignalStrength;
687 __le16 shortPreamble;
689 u8 noisePercent; /* Noise percent in last second */
690 u8 noisedBm; /* Noise dBm in last second */
691 u8 noiseAvePercent; /* Noise percent in last minute */
692 u8 noiseAvedBm; /* Noise dBm in last minute */
693 u8 noiseMaxPercent; /* Highest noise percent in last minute */
694 u8 noiseMaxdBm; /* Highest noise dbm in last minute */
698 #define STAT_NOPACKETS 0
699 #define STAT_NOCARRIERSET 10
700 #define STAT_GOTCARRIERSET 11
701 #define STAT_WRONGSSID 20
702 #define STAT_BADCHANNEL 25
703 #define STAT_BADBITRATES 30
704 #define STAT_BADPRIVACY 35
705 #define STAT_APFOUND 40
706 #define STAT_APREJECTED 50
707 #define STAT_AUTHENTICATING 60
708 #define STAT_DEAUTHENTICATED 61
709 #define STAT_AUTHTIMEOUT 62
710 #define STAT_ASSOCIATING 70
711 #define STAT_DEASSOCIATED 71
712 #define STAT_ASSOCTIMEOUT 72
713 #define STAT_NOTAIROAP 73
714 #define STAT_ASSOCIATED 80
715 #define STAT_LEAPING 90
716 #define STAT_LEAPFAILED 91
717 #define STAT_LEAPTIMEDOUT 92
718 #define STAT_LEAPCOMPLETE 93
721 typedef struct StatsRid StatsRid;
728 typedef struct APListRid APListRid;
734 typedef struct CapabilityRid CapabilityRid;
735 struct CapabilityRid {
743 char factoryAddr[ETH_ALEN];
744 char aironetAddr[ETH_ALEN];
747 char callid[ETH_ALEN];
748 char supportedRates[8];
751 __le16 txPowerLevels[8];
764 /* Only present on firmware >= 5.30.17 */
765 typedef struct BSSListRidExtra BSSListRidExtra;
766 struct BSSListRidExtra {
768 u8 fixed[12]; /* WLAN management frame */
772 typedef struct BSSListRid BSSListRid;
775 __le16 index; /* First is 0 and 0xffff means end of list */
776 #define RADIO_FH 1 /* Frequency hopping radio type */
777 #define RADIO_DS 2 /* Direct sequence radio type */
778 #define RADIO_TMA 4 /* Proprietary radio used in old cards (2500) */
780 u8 bssid[ETH_ALEN]; /* Mac address of the BSS */
785 #define CAP_ESS cpu_to_le16(1<<0)
786 #define CAP_IBSS cpu_to_le16(1<<1)
787 #define CAP_PRIVACY cpu_to_le16(1<<4)
788 #define CAP_SHORTHDR cpu_to_le16(1<<5)
790 __le16 beaconInterval;
791 u8 rates[8]; /* Same as rates for config rid */
792 struct { /* For frequency hopping only */
802 /* Only present on firmware >= 5.30.17 */
803 BSSListRidExtra extra;
808 struct list_head list;
811 typedef struct tdsRssiEntry tdsRssiEntry;
812 struct tdsRssiEntry {
817 typedef struct tdsRssiRid tdsRssiRid;
823 typedef struct MICRid MICRid;
827 __le16 multicastValid;
833 typedef struct MICBuffer MICBuffer;
856 #define TXCTL_TXOK (1<<1) /* report if tx is ok */
857 #define TXCTL_TXEX (1<<2) /* report if tx fails */
858 #define TXCTL_802_3 (0<<3) /* 802.3 packet */
859 #define TXCTL_802_11 (1<<3) /* 802.11 mac packet */
860 #define TXCTL_ETHERNET (0<<4) /* payload has ethertype */
861 #define TXCTL_LLC (1<<4) /* payload is llc */
862 #define TXCTL_RELEASE (0<<5) /* release after completion */
863 #define TXCTL_NORELEASE (1<<5) /* on completion returns to host */
865 #define BUSY_FID 0x10000
868 #define AIROMAGIC 0xa55a
869 /* Warning : SIOCDEVPRIVATE may disapear during 2.5.X - Jean II */
870 #ifdef SIOCIWFIRSTPRIV
871 #ifdef SIOCDEVPRIVATE
872 #define AIROOLDIOCTL SIOCDEVPRIVATE
873 #define AIROOLDIDIFC AIROOLDIOCTL + 1
874 #endif /* SIOCDEVPRIVATE */
875 #else /* SIOCIWFIRSTPRIV */
876 #define SIOCIWFIRSTPRIV SIOCDEVPRIVATE
877 #endif /* SIOCIWFIRSTPRIV */
878 /* This may be wrong. When using the new SIOCIWFIRSTPRIV range, we probably
879 * should use only "GET" ioctls (last bit set to 1). "SET" ioctls are root
880 * only and don't return the modified struct ifreq to the application which
881 * is usually a problem. - Jean II */
882 #define AIROIOCTL SIOCIWFIRSTPRIV
883 #define AIROIDIFC AIROIOCTL + 1
885 /* Ioctl constants to be used in airo_ioctl.command */
887 #define AIROGCAP 0 // Capability rid
888 #define AIROGCFG 1 // USED A LOT
889 #define AIROGSLIST 2 // System ID list
890 #define AIROGVLIST 3 // List of specified AP's
891 #define AIROGDRVNAM 4 // NOTUSED
892 #define AIROGEHTENC 5 // NOTUSED
893 #define AIROGWEPKTMP 6
894 #define AIROGWEPKNV 7
896 #define AIROGSTATSC32 9
897 #define AIROGSTATSD32 10
898 #define AIROGMICRID 11
899 #define AIROGMICSTATS 12
900 #define AIROGFLAGS 13
903 #define AIRORSWVERSION 17
905 /* Leave gap of 40 commands after AIROGSTATSD32 for future */
907 #define AIROPCAP AIROGSTATSD32 + 40
908 #define AIROPVLIST AIROPCAP + 1
909 #define AIROPSLIST AIROPVLIST + 1
910 #define AIROPCFG AIROPSLIST + 1
911 #define AIROPSIDS AIROPCFG + 1
912 #define AIROPAPLIST AIROPSIDS + 1
913 #define AIROPMACON AIROPAPLIST + 1 /* Enable mac */
914 #define AIROPMACOFF AIROPMACON + 1 /* Disable mac */
915 #define AIROPSTCLR AIROPMACOFF + 1
916 #define AIROPWEPKEY AIROPSTCLR + 1
917 #define AIROPWEPKEYNV AIROPWEPKEY + 1
918 #define AIROPLEAPPWD AIROPWEPKEYNV + 1
919 #define AIROPLEAPUSR AIROPLEAPPWD + 1
923 #define AIROFLSHRST AIROPWEPKEYNV + 40
924 #define AIROFLSHGCHR AIROFLSHRST + 1
925 #define AIROFLSHSTFL AIROFLSHGCHR + 1
926 #define AIROFLSHPCHR AIROFLSHSTFL + 1
927 #define AIROFLPUTBUF AIROFLSHPCHR + 1
928 #define AIRORESTART AIROFLPUTBUF + 1
930 #define FLASHSIZE 32768
931 #define AUXMEMSIZE (256 * 1024)
933 typedef struct aironet_ioctl {
934 unsigned short command; // What to do
935 unsigned short len; // Len of data
936 unsigned short ridnum; // rid number
937 unsigned char __user *data; // d-data
940 static const char swversion[] = "2.1";
941 #endif /* CISCO_EXT */
943 #define NUM_MODULES 2
944 #define MIC_MSGLEN_MAX 2400
945 #define EMMH32_MSGLEN_MAX MIC_MSGLEN_MAX
946 #define AIRO_DEF_MTU 2312
950 u8 enabled; // MIC enabled or not
951 u32 rxSuccess; // successful packets received
952 u32 rxIncorrectMIC; // pkts dropped due to incorrect MIC comparison
953 u32 rxNotMICed; // pkts dropped due to not being MIC'd
954 u32 rxMICPlummed; // pkts dropped due to not having a MIC plummed
955 u32 rxWrongSequence; // pkts dropped due to sequence number violation
960 __be32 coeff[((EMMH32_MSGLEN_MAX)+3)>>2];
961 u64 accum; // accumulated mic, reduced to u32 in final()
962 int position; // current position (byte offset) in message
966 } part; // saves partial message word across update() calls
970 emmh32_context seed; // Context - the seed
971 u32 rx; // Received sequence number
972 u32 tx; // Tx sequence number
973 u32 window; // Start of window
974 u8 valid; // Flag to say if context is valid or not
979 miccntx mCtx; // Multicast context
980 miccntx uCtx; // Unicast context
984 unsigned int rid: 16;
985 unsigned int len: 15;
986 unsigned int valid: 1;
987 dma_addr_t host_addr;
991 unsigned int offset: 15;
993 unsigned int len: 15;
994 unsigned int valid: 1;
995 dma_addr_t host_addr;
1007 unsigned int ctl: 15;
1008 unsigned int rdy: 1;
1009 unsigned int len: 15;
1010 unsigned int valid: 1;
1011 dma_addr_t host_addr;
1015 * Host receive descriptor
1018 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1020 RxFid rx_desc; /* card receive descriptor */
1021 char *virtual_host_addr; /* virtual address of host receive
1027 * Host transmit descriptor
1030 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1032 TxFid tx_desc; /* card transmit descriptor */
1033 char *virtual_host_addr; /* virtual address of host receive
1039 * Host RID descriptor
1042 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1044 Rid rid_desc; /* card RID descriptor */
1045 char *virtual_host_addr; /* virtual address of host receive
1054 #define HOST_SET (1 << 0)
1055 #define HOST_INT_TX (1 << 1) /* Interrupt on successful TX */
1056 #define HOST_INT_TXERR (1 << 2) /* Interrupt on unseccessful TX */
1057 #define HOST_LCC_PAYLOAD (1 << 4) /* LLC payload, 0 = Ethertype */
1058 #define HOST_DONT_RLSE (1 << 5) /* Don't release buffer when done */
1059 #define HOST_DONT_RETRY (1 << 6) /* Don't retry trasmit */
1060 #define HOST_CLR_AID (1 << 7) /* clear AID failure */
1061 #define HOST_RTS (1 << 9) /* Force RTS use */
1062 #define HOST_SHORT (1 << 10) /* Do short preamble */
1089 static WifiCtlHdr wifictlhdr8023 = {
1091 .ctl = HOST_DONT_RLSE,
1095 // A few details needed for WEP (Wireless Equivalent Privacy)
1096 #define MAX_KEY_SIZE 13 // 128 (?) bits
1097 #define MIN_KEY_SIZE 5 // 40 bits RC4 - WEP
1098 typedef struct wep_key_t {
1100 u8 key[16]; /* 40-bit and 104-bit keys */
1103 /* List of Wireless Handlers (new API) */
1104 static const struct iw_handler_def airo_handler_def;
1106 static const char version[] = "airo.c 0.6 (Ben Reed & Javier Achirica)";
1110 static int get_dec_u16( char *buffer, int *start, int limit );
1111 static void OUT4500( struct airo_info *, u16 reg, u16 value );
1112 static unsigned short IN4500( struct airo_info *, u16 reg );
1113 static u16 setup_card(struct airo_info*, u8 *mac, int lock);
1114 static int enable_MAC(struct airo_info *ai, int lock);
1115 static void disable_MAC(struct airo_info *ai, int lock);
1116 static void enable_interrupts(struct airo_info*);
1117 static void disable_interrupts(struct airo_info*);
1118 static u16 issuecommand(struct airo_info*, Cmd *pCmd, Resp *pRsp);
1119 static int bap_setup(struct airo_info*, u16 rid, u16 offset, int whichbap);
1120 static int aux_bap_read(struct airo_info*, __le16 *pu16Dst, int bytelen,
1122 static int fast_bap_read(struct airo_info*, __le16 *pu16Dst, int bytelen,
1124 static int bap_write(struct airo_info*, const __le16 *pu16Src, int bytelen,
1126 static int PC4500_accessrid(struct airo_info*, u16 rid, u16 accmd);
1127 static int PC4500_readrid(struct airo_info*, u16 rid, void *pBuf, int len, int lock);
1128 static int PC4500_writerid(struct airo_info*, u16 rid, const void
1129 *pBuf, int len, int lock);
1130 static int do_writerid( struct airo_info*, u16 rid, const void *rid_data,
1131 int len, int dummy );
1132 static u16 transmit_allocate(struct airo_info*, int lenPayload, int raw);
1133 static int transmit_802_3_packet(struct airo_info*, int len, char *pPacket);
1134 static int transmit_802_11_packet(struct airo_info*, int len, char *pPacket);
1136 static int mpi_send_packet (struct net_device *dev);
1137 static void mpi_unmap_card(struct pci_dev *pci);
1138 static void mpi_receive_802_3(struct airo_info *ai);
1139 static void mpi_receive_802_11(struct airo_info *ai);
1140 static int waitbusy (struct airo_info *ai);
1142 static irqreturn_t airo_interrupt( int irq, void* dev_id);
1143 static int airo_thread(void *data);
1144 static void timer_func( struct net_device *dev );
1145 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd);
1146 static struct iw_statistics *airo_get_wireless_stats (struct net_device *dev);
1147 static void airo_read_wireless_stats (struct airo_info *local);
1149 static int readrids(struct net_device *dev, aironet_ioctl *comp);
1150 static int writerids(struct net_device *dev, aironet_ioctl *comp);
1151 static int flashcard(struct net_device *dev, aironet_ioctl *comp);
1152 #endif /* CISCO_EXT */
1153 static void micinit(struct airo_info *ai);
1154 static int micsetup(struct airo_info *ai);
1155 static int encapsulate(struct airo_info *ai, etherHead *pPacket, MICBuffer *buffer, int len);
1156 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *pPacket, u16 payLen);
1158 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi);
1159 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm);
1161 static void airo_networks_free(struct airo_info *ai);
1164 struct net_device *dev;
1165 struct list_head dev_list;
1166 /* Note, we can have MAX_FIDS outstanding. FIDs are 16-bits, so we
1167 use the high bit to mark whether it is in use. */
1169 #define MPI_MAX_FIDS 1
1172 char keyindex; // Used with auto wep
1173 char defindex; // Used with auto wep
1174 struct proc_dir_entry *proc_entry;
1175 spinlock_t aux_lock;
1176 #define FLAG_RADIO_OFF 0 /* User disabling of MAC */
1177 #define FLAG_RADIO_DOWN 1 /* ifup/ifdown disabling of MAC */
1178 #define FLAG_RADIO_MASK 0x03
1179 #define FLAG_ENABLED 2
1180 #define FLAG_ADHOC 3 /* Needed by MIC */
1181 #define FLAG_MIC_CAPABLE 4
1182 #define FLAG_UPDATE_MULTI 5
1183 #define FLAG_UPDATE_UNI 6
1184 #define FLAG_802_11 7
1185 #define FLAG_PROMISC 8 /* IFF_PROMISC 0x100 - include/linux/if.h */
1186 #define FLAG_PENDING_XMIT 9
1187 #define FLAG_PENDING_XMIT11 10
1189 #define FLAG_REGISTERED 12
1190 #define FLAG_COMMIT 13
1191 #define FLAG_RESET 14
1192 #define FLAG_FLASHING 15
1193 #define FLAG_WPA_CAPABLE 16
1194 unsigned long flags;
1197 #define JOB_XMIT11 2
1199 #define JOB_PROMISC 4
1202 #define JOB_AUTOWEP 7
1203 #define JOB_WSTATS 8
1204 #define JOB_SCAN_RESULTS 9
1206 int (*bap_read)(struct airo_info*, __le16 *pu16Dst, int bytelen,
1208 unsigned short *flash;
1210 struct task_struct *list_bss_task;
1211 struct task_struct *airo_thread_task;
1212 struct semaphore sem;
1213 wait_queue_head_t thr_wait;
1214 unsigned long expires;
1216 struct sk_buff *skb;
1219 struct net_device *wifidev;
1220 struct iw_statistics wstats; // wireless stats
1221 unsigned long scan_timeout; /* Time scan should be read */
1222 struct iw_spy_data spy_data;
1223 struct iw_public_data wireless_data;
1225 struct crypto_sync_skcipher *tfm;
1227 mic_statistics micstats;
1228 HostRxDesc rxfids[MPI_MAX_FIDS]; // rx/tx/config MPI350 descriptors
1229 HostTxDesc txfids[MPI_MAX_FIDS];
1230 HostRidDesc config_desc;
1231 unsigned long ridbus; // phys addr of config_desc
1232 struct sk_buff_head txq;// tx queue used by mpi350 code
1233 struct pci_dev *pci;
1234 unsigned char __iomem *pcimem;
1235 unsigned char __iomem *pciaux;
1236 unsigned char *shared;
1237 dma_addr_t shared_dma;
1241 #define PCI_SHARED_LEN 2*MPI_MAX_FIDS*PKTSIZE+RIDSIZE
1242 char proc_name[IFNAMSIZ];
1248 /* WPA-related stuff */
1249 unsigned int bssListFirst;
1250 unsigned int bssListNext;
1251 unsigned int bssListRidLen;
1253 struct list_head network_list;
1254 struct list_head network_free_list;
1255 BSSListElement *networks;
1258 static inline int bap_read(struct airo_info *ai, __le16 *pu16Dst, int bytelen,
1261 return ai->bap_read(ai, pu16Dst, bytelen, whichbap);
1264 static int setup_proc_entry( struct net_device *dev,
1265 struct airo_info *apriv );
1266 static int takedown_proc_entry( struct net_device *dev,
1267 struct airo_info *apriv );
1269 static int cmdreset(struct airo_info *ai);
1270 static int setflashmode (struct airo_info *ai);
1271 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime);
1272 static int flashputbuf(struct airo_info *ai);
1273 static int flashrestart(struct airo_info *ai,struct net_device *dev);
1275 #define airo_print(type, name, fmt, args...) \
1276 printk(type DRV_NAME "(%s): " fmt "\n", name, ##args)
1278 #define airo_print_info(name, fmt, args...) \
1279 airo_print(KERN_INFO, name, fmt, ##args)
1281 #define airo_print_dbg(name, fmt, args...) \
1282 airo_print(KERN_DEBUG, name, fmt, ##args)
1284 #define airo_print_warn(name, fmt, args...) \
1285 airo_print(KERN_WARNING, name, fmt, ##args)
1287 #define airo_print_err(name, fmt, args...) \
1288 airo_print(KERN_ERR, name, fmt, ##args)
1290 #define AIRO_FLASH(dev) (((struct airo_info *)dev->ml_priv)->flash)
1292 /***********************************************************************
1294 ***********************************************************************
1297 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq);
1298 static void MoveWindow(miccntx *context, u32 micSeq);
1299 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen,
1300 struct crypto_sync_skcipher *tfm);
1301 static void emmh32_init(emmh32_context *context);
1302 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len);
1303 static void emmh32_final(emmh32_context *context, u8 digest[4]);
1304 static int flashpchar(struct airo_info *ai,int byte,int dwelltime);
1306 static void age_mic_context(miccntx *cur, miccntx *old, u8 *key, int key_len,
1307 struct crypto_sync_skcipher *tfm)
1309 /* If the current MIC context is valid and its key is the same as
1310 * the MIC register, there's nothing to do.
1312 if (cur->valid && (memcmp(cur->key, key, key_len) == 0))
1315 /* Age current mic Context */
1316 memcpy(old, cur, sizeof(*cur));
1318 /* Initialize new context */
1319 memcpy(cur->key, key, key_len);
1320 cur->window = 33; /* Window always points to the middle */
1321 cur->rx = 0; /* Rx Sequence numbers */
1322 cur->tx = 0; /* Tx sequence numbers */
1323 cur->valid = 1; /* Key is now valid */
1325 /* Give key to mic seed */
1326 emmh32_setseed(&cur->seed, key, key_len, tfm);
1329 /* micinit - Initialize mic seed */
1331 static void micinit(struct airo_info *ai)
1335 clear_bit(JOB_MIC, &ai->jobs);
1336 PC4500_readrid(ai, RID_MIC, &mic_rid, sizeof(mic_rid), 0);
1339 ai->micstats.enabled = (le16_to_cpu(mic_rid.state) & 0x00FF) ? 1 : 0;
1340 if (!ai->micstats.enabled) {
1341 /* So next time we have a valid key and mic is enabled, we will
1342 * update the sequence number if the key is the same as before.
1344 ai->mod[0].uCtx.valid = 0;
1345 ai->mod[0].mCtx.valid = 0;
1349 if (mic_rid.multicastValid) {
1350 age_mic_context(&ai->mod[0].mCtx, &ai->mod[1].mCtx,
1351 mic_rid.multicast, sizeof(mic_rid.multicast),
1355 if (mic_rid.unicastValid) {
1356 age_mic_context(&ai->mod[0].uCtx, &ai->mod[1].uCtx,
1357 mic_rid.unicast, sizeof(mic_rid.unicast),
1362 /* micsetup - Get ready for business */
1364 static int micsetup(struct airo_info *ai) {
1367 if (ai->tfm == NULL)
1368 ai->tfm = crypto_alloc_sync_skcipher("ctr(aes)", 0, 0);
1370 if (IS_ERR(ai->tfm)) {
1371 airo_print_err(ai->dev->name, "failed to load transform for AES");
1376 for (i=0; i < NUM_MODULES; i++) {
1377 memset(&ai->mod[i].mCtx,0,sizeof(miccntx));
1378 memset(&ai->mod[i].uCtx,0,sizeof(miccntx));
1383 static const u8 micsnap[] = {0xAA,0xAA,0x03,0x00,0x40,0x96,0x00,0x02};
1385 /*===========================================================================
1386 * Description: Mic a packet
1388 * Inputs: etherHead * pointer to an 802.3 frame
1390 * Returns: BOOLEAN if successful, otherwise false.
1391 * PacketTxLen will be updated with the mic'd packets size.
1393 * Caveats: It is assumed that the frame buffer will already
1394 * be big enough to hold the largets mic message possible.
1395 * (No memory allocation is done here).
1397 * Author: sbraneky (10/15/01)
1398 * Merciless hacks by rwilcher (1/14/02)
1401 static int encapsulate(struct airo_info *ai ,etherHead *frame, MICBuffer *mic, int payLen)
1405 // Determine correct context
1406 // If not adhoc, always use unicast key
1408 if (test_bit(FLAG_ADHOC, &ai->flags) && (frame->da[0] & 0x1))
1409 context = &ai->mod[0].mCtx;
1411 context = &ai->mod[0].uCtx;
1413 if (!context->valid)
1416 mic->typelen = htons(payLen + 16); //Length of Mic'd packet
1418 memcpy(&mic->u.snap, micsnap, sizeof(micsnap)); // Add Snap
1421 mic->seq = htonl(context->tx);
1424 emmh32_init(&context->seed); // Mic the packet
1425 emmh32_update(&context->seed,frame->da,ETH_ALEN * 2); // DA,SA
1426 emmh32_update(&context->seed,(u8*)&mic->typelen,10); // Type/Length and Snap
1427 emmh32_update(&context->seed,(u8*)&mic->seq,sizeof(mic->seq)); //SEQ
1428 emmh32_update(&context->seed,(u8*)(frame + 1),payLen); //payload
1429 emmh32_final(&context->seed, (u8*)&mic->mic);
1431 /* New Type/length ?????????? */
1432 mic->typelen = 0; //Let NIC know it could be an oversized packet
1444 /*===========================================================================
1445 * Description: Decapsulates a MIC'd packet and returns the 802.3 packet
1446 * (removes the MIC stuff) if packet is a valid packet.
1448 * Inputs: etherHead pointer to the 802.3 packet
1450 * Returns: BOOLEAN - TRUE if packet should be dropped otherwise FALSE
1452 * Author: sbraneky (10/15/01)
1453 * Merciless hacks by rwilcher (1/14/02)
1454 *---------------------------------------------------------------------------
1457 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *eth, u16 payLen)
1463 mic_error micError = NONE;
1465 // Check if the packet is a Mic'd packet
1467 if (!ai->micstats.enabled) {
1468 //No Mic set or Mic OFF but we received a MIC'd packet.
1469 if (memcmp ((u8*)eth + 14, micsnap, sizeof(micsnap)) == 0) {
1470 ai->micstats.rxMICPlummed++;
1476 if (ntohs(mic->typelen) == 0x888E)
1479 if (memcmp (mic->u.snap, micsnap, sizeof(micsnap)) != 0) {
1480 // Mic enabled but packet isn't Mic'd
1481 ai->micstats.rxMICPlummed++;
1485 micSEQ = ntohl(mic->seq); //store SEQ as CPU order
1487 //At this point we a have a mic'd packet and mic is enabled
1488 //Now do the mic error checking.
1490 //Receive seq must be odd
1491 if ( (micSEQ & 1) == 0 ) {
1492 ai->micstats.rxWrongSequence++;
1496 for (i = 0; i < NUM_MODULES; i++) {
1497 int mcast = eth->da[0] & 1;
1498 //Determine proper context
1499 context = mcast ? &ai->mod[i].mCtx : &ai->mod[i].uCtx;
1501 //Make sure context is valid
1502 if (!context->valid) {
1504 micError = NOMICPLUMMED;
1510 mic->typelen = htons(payLen + sizeof(MICBuffer) - 2);
1512 emmh32_init(&context->seed);
1513 emmh32_update(&context->seed, eth->da, ETH_ALEN*2);
1514 emmh32_update(&context->seed, (u8 *)&mic->typelen, sizeof(mic->typelen)+sizeof(mic->u.snap));
1515 emmh32_update(&context->seed, (u8 *)&mic->seq,sizeof(mic->seq));
1516 emmh32_update(&context->seed, (u8 *)(eth + 1),payLen);
1518 emmh32_final(&context->seed, digest);
1520 if (memcmp(digest, &mic->mic, 4)) { //Make sure the mics match
1523 micError = INCORRECTMIC;
1527 //Check Sequence number if mics pass
1528 if (RxSeqValid(ai, context, mcast, micSEQ) == SUCCESS) {
1529 ai->micstats.rxSuccess++;
1533 micError = SEQUENCE;
1536 // Update statistics
1538 case NOMICPLUMMED: ai->micstats.rxMICPlummed++; break;
1539 case SEQUENCE: ai->micstats.rxWrongSequence++; break;
1540 case INCORRECTMIC: ai->micstats.rxIncorrectMIC++; break;
1547 /*===========================================================================
1548 * Description: Checks the Rx Seq number to make sure it is valid
1549 * and hasn't already been received
1551 * Inputs: miccntx - mic context to check seq against
1552 * micSeq - the Mic seq number
1554 * Returns: TRUE if valid otherwise FALSE.
1556 * Author: sbraneky (10/15/01)
1557 * Merciless hacks by rwilcher (1/14/02)
1558 *---------------------------------------------------------------------------
1561 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq)
1565 //Allow for the ap being rebooted - if it is then use the next
1566 //sequence number of the current sequence number - might go backwards
1569 if (test_bit(FLAG_UPDATE_MULTI, &ai->flags)) {
1570 clear_bit (FLAG_UPDATE_MULTI, &ai->flags);
1571 context->window = (micSeq > 33) ? micSeq : 33;
1572 context->rx = 0; // Reset rx
1574 } else if (test_bit(FLAG_UPDATE_UNI, &ai->flags)) {
1575 clear_bit (FLAG_UPDATE_UNI, &ai->flags);
1576 context->window = (micSeq > 33) ? micSeq : 33; // Move window
1577 context->rx = 0; // Reset rx
1580 //Make sequence number relative to START of window
1581 seq = micSeq - (context->window - 33);
1583 //Too old of a SEQ number to check.
1588 //Window is infinite forward
1589 MoveWindow(context,micSeq);
1593 // We are in the window. Now check the context rx bit to see if it was already sent
1594 seq >>= 1; //divide by 2 because we only have odd numbers
1595 index = 1 << seq; //Get an index number
1597 if (!(context->rx & index)) {
1598 //micSEQ falls inside the window.
1599 //Add seqence number to the list of received numbers.
1600 context->rx |= index;
1602 MoveWindow(context,micSeq);
1609 static void MoveWindow(miccntx *context, u32 micSeq)
1613 //Move window if seq greater than the middle of the window
1614 if (micSeq > context->window) {
1615 shift = (micSeq - context->window) >> 1;
1619 context->rx >>= shift;
1623 context->window = micSeq; //Move window
1627 /*==============================================*/
1628 /*========== EMMH ROUTINES ====================*/
1629 /*==============================================*/
1631 /* mic accumulate */
1632 #define MIC_ACCUM(val) \
1633 context->accum += (u64)(val) * be32_to_cpu(context->coeff[coeff_position++]);
1635 /* expand the key to fill the MMH coefficient array */
1636 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen,
1637 struct crypto_sync_skcipher *tfm)
1639 /* take the keying material, expand if necessary, truncate at 16-bytes */
1640 /* run through AES counter mode to generate context->coeff[] */
1642 SYNC_SKCIPHER_REQUEST_ON_STACK(req, tfm);
1643 struct scatterlist sg;
1644 u8 iv[AES_BLOCK_SIZE] = {};
1647 crypto_sync_skcipher_setkey(tfm, pkey, 16);
1649 memset(context->coeff, 0, sizeof(context->coeff));
1650 sg_init_one(&sg, context->coeff, sizeof(context->coeff));
1652 skcipher_request_set_sync_tfm(req, tfm);
1653 skcipher_request_set_callback(req, 0, NULL, NULL);
1654 skcipher_request_set_crypt(req, &sg, &sg, sizeof(context->coeff), iv);
1656 ret = crypto_skcipher_encrypt(req);
1660 /* prepare for calculation of a new mic */
1661 static void emmh32_init(emmh32_context *context)
1663 /* prepare for new mic calculation */
1665 context->position = 0;
1668 /* add some bytes to the mic calculation */
1669 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len)
1671 int coeff_position, byte_position;
1673 if (len == 0) return;
1675 coeff_position = context->position >> 2;
1677 /* deal with partial 32-bit word left over from last update */
1678 byte_position = context->position & 3;
1679 if (byte_position) {
1680 /* have a partial word in part to deal with */
1682 if (len == 0) return;
1683 context->part.d8[byte_position++] = *pOctets++;
1684 context->position++;
1686 } while (byte_position < 4);
1687 MIC_ACCUM(ntohl(context->part.d32));
1690 /* deal with full 32-bit words */
1692 MIC_ACCUM(ntohl(*(__be32 *)pOctets));
1693 context->position += 4;
1698 /* deal with partial 32-bit word that will be left over from this update */
1701 context->part.d8[byte_position++] = *pOctets++;
1702 context->position++;
1707 /* mask used to zero empty bytes for final partial word */
1708 static u32 mask32[4] = { 0x00000000L, 0xFF000000L, 0xFFFF0000L, 0xFFFFFF00L };
1710 /* calculate the mic */
1711 static void emmh32_final(emmh32_context *context, u8 digest[4])
1713 int coeff_position, byte_position;
1719 coeff_position = context->position >> 2;
1721 /* deal with partial 32-bit word left over from last update */
1722 byte_position = context->position & 3;
1723 if (byte_position) {
1724 /* have a partial word in part to deal with */
1725 val = ntohl(context->part.d32);
1726 MIC_ACCUM(val & mask32[byte_position]); /* zero empty bytes */
1729 /* reduce the accumulated u64 to a 32-bit MIC */
1730 sum = context->accum;
1731 stmp = (sum & 0xffffffffLL) - ((sum >> 32) * 15);
1732 utmp = (stmp & 0xffffffffLL) - ((stmp >> 32) * 15);
1733 sum = utmp & 0xffffffffLL;
1734 if (utmp > 0x10000000fLL)
1738 digest[0] = (val>>24) & 0xFF;
1739 digest[1] = (val>>16) & 0xFF;
1740 digest[2] = (val>>8) & 0xFF;
1741 digest[3] = val & 0xFF;
1744 static int readBSSListRid(struct airo_info *ai, int first,
1751 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
1752 memset(&cmd, 0, sizeof(cmd));
1753 cmd.cmd=CMD_LISTBSS;
1754 if (down_interruptible(&ai->sem))
1755 return -ERESTARTSYS;
1756 ai->list_bss_task = current;
1757 issuecommand(ai, &cmd, &rsp);
1759 /* Let the command take effect */
1760 schedule_timeout_uninterruptible(3 * HZ);
1761 ai->list_bss_task = NULL;
1763 return PC4500_readrid(ai, first ? ai->bssListFirst : ai->bssListNext,
1764 list, ai->bssListRidLen, 1);
1767 static int readWepKeyRid(struct airo_info *ai, WepKeyRid *wkr, int temp, int lock)
1769 return PC4500_readrid(ai, temp ? RID_WEP_TEMP : RID_WEP_PERM,
1770 wkr, sizeof(*wkr), lock);
1773 static int writeWepKeyRid(struct airo_info *ai, WepKeyRid *wkr, int perm, int lock)
1776 rc = PC4500_writerid(ai, RID_WEP_TEMP, wkr, sizeof(*wkr), lock);
1778 airo_print_err(ai->dev->name, "WEP_TEMP set %x", rc);
1780 rc = PC4500_writerid(ai, RID_WEP_PERM, wkr, sizeof(*wkr), lock);
1782 airo_print_err(ai->dev->name, "WEP_PERM set %x", rc);
1787 static int readSsidRid(struct airo_info*ai, SsidRid *ssidr)
1789 return PC4500_readrid(ai, RID_SSID, ssidr, sizeof(*ssidr), 1);
1792 static int writeSsidRid(struct airo_info*ai, SsidRid *pssidr, int lock)
1794 return PC4500_writerid(ai, RID_SSID, pssidr, sizeof(*pssidr), lock);
1797 static int readConfigRid(struct airo_info *ai, int lock)
1805 rc = PC4500_readrid(ai, RID_ACTUALCONFIG, &cfg, sizeof(cfg), lock);
1813 static inline void checkThrottle(struct airo_info *ai)
1816 /* Old hardware had a limit on encryption speed */
1817 if (ai->config.authType != AUTH_OPEN && maxencrypt) {
1818 for(i=0; i<8; i++) {
1819 if (ai->config.rates[i] > maxencrypt) {
1820 ai->config.rates[i] = 0;
1826 static int writeConfigRid(struct airo_info *ai, int lock)
1830 if (!test_bit (FLAG_COMMIT, &ai->flags))
1833 clear_bit (FLAG_COMMIT, &ai->flags);
1834 clear_bit (FLAG_RESET, &ai->flags);
1838 if ((cfgr.opmode & MODE_CFG_MASK) == MODE_STA_IBSS)
1839 set_bit(FLAG_ADHOC, &ai->flags);
1841 clear_bit(FLAG_ADHOC, &ai->flags);
1843 return PC4500_writerid( ai, RID_CONFIG, &cfgr, sizeof(cfgr), lock);
1846 static int readStatusRid(struct airo_info *ai, StatusRid *statr, int lock)
1848 return PC4500_readrid(ai, RID_STATUS, statr, sizeof(*statr), lock);
1851 static int writeAPListRid(struct airo_info *ai, APListRid *aplr, int lock)
1853 return PC4500_writerid(ai, RID_APLIST, aplr, sizeof(*aplr), lock);
1856 static int readCapabilityRid(struct airo_info *ai, CapabilityRid *capr, int lock)
1858 return PC4500_readrid(ai, RID_CAPABILITIES, capr, sizeof(*capr), lock);
1861 static int readStatsRid(struct airo_info*ai, StatsRid *sr, int rid, int lock)
1863 return PC4500_readrid(ai, rid, sr, sizeof(*sr), lock);
1866 static void try_auto_wep(struct airo_info *ai)
1868 if (auto_wep && !test_bit(FLAG_RADIO_DOWN, &ai->flags)) {
1869 ai->expires = RUN_AT(3*HZ);
1870 wake_up_interruptible(&ai->thr_wait);
1874 static int airo_open(struct net_device *dev) {
1875 struct airo_info *ai = dev->ml_priv;
1878 if (test_bit(FLAG_FLASHING, &ai->flags))
1881 /* Make sure the card is configured.
1882 * Wireless Extensions may postpone config changes until the card
1883 * is open (to pipeline changes and speed-up card setup). If
1884 * those changes are not yet committed, do it now - Jean II */
1885 if (test_bit(FLAG_COMMIT, &ai->flags)) {
1887 writeConfigRid(ai, 1);
1890 if (ai->wifidev != dev) {
1891 clear_bit(JOB_DIE, &ai->jobs);
1892 ai->airo_thread_task = kthread_run(airo_thread, dev, "%s",
1894 if (IS_ERR(ai->airo_thread_task))
1895 return (int)PTR_ERR(ai->airo_thread_task);
1897 rc = request_irq(dev->irq, airo_interrupt, IRQF_SHARED,
1900 airo_print_err(dev->name,
1901 "register interrupt %d failed, rc %d",
1903 set_bit(JOB_DIE, &ai->jobs);
1904 kthread_stop(ai->airo_thread_task);
1908 /* Power on the MAC controller (which may have been disabled) */
1909 clear_bit(FLAG_RADIO_DOWN, &ai->flags);
1910 enable_interrupts(ai);
1916 netif_start_queue(dev);
1920 static netdev_tx_t mpi_start_xmit(struct sk_buff *skb,
1921 struct net_device *dev)
1923 int npacks, pending;
1924 unsigned long flags;
1925 struct airo_info *ai = dev->ml_priv;
1928 airo_print_err(dev->name, "%s: skb == NULL!",__func__);
1929 return NETDEV_TX_OK;
1931 if (skb_padto(skb, ETH_ZLEN)) {
1932 dev->stats.tx_dropped++;
1933 return NETDEV_TX_OK;
1935 npacks = skb_queue_len (&ai->txq);
1937 if (npacks >= MAXTXQ - 1) {
1938 netif_stop_queue (dev);
1939 if (npacks > MAXTXQ) {
1940 dev->stats.tx_fifo_errors++;
1941 return NETDEV_TX_BUSY;
1943 skb_queue_tail (&ai->txq, skb);
1944 return NETDEV_TX_OK;
1947 spin_lock_irqsave(&ai->aux_lock, flags);
1948 skb_queue_tail (&ai->txq, skb);
1949 pending = test_bit(FLAG_PENDING_XMIT, &ai->flags);
1950 spin_unlock_irqrestore(&ai->aux_lock,flags);
1951 netif_wake_queue (dev);
1954 set_bit(FLAG_PENDING_XMIT, &ai->flags);
1955 mpi_send_packet (dev);
1957 return NETDEV_TX_OK;
1963 * Attempt to transmit a packet. Can be called from interrupt
1964 * or transmit . return number of packets we tried to send
1967 static int mpi_send_packet (struct net_device *dev)
1969 struct sk_buff *skb;
1970 unsigned char *buffer;
1973 struct airo_info *ai = dev->ml_priv;
1976 /* get a packet to send */
1978 if ((skb = skb_dequeue(&ai->txq)) == NULL) {
1979 airo_print_err(dev->name,
1980 "%s: Dequeue'd zero in send_packet()",
1985 /* check min length*/
1986 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
1989 ai->txfids[0].tx_desc.offset = 0;
1990 ai->txfids[0].tx_desc.valid = 1;
1991 ai->txfids[0].tx_desc.eoc = 1;
1992 ai->txfids[0].tx_desc.len =len+sizeof(WifiHdr);
1995 * Magic, the cards firmware needs a length count (2 bytes) in the host buffer
1996 * right after TXFID_HDR.The TXFID_HDR contains the status short so payloadlen
1997 * is immediately after it. ------------------------------------------------
1998 * |TXFIDHDR+STATUS|PAYLOADLEN|802.3HDR|PACKETDATA|
1999 * ------------------------------------------------
2002 memcpy(ai->txfids[0].virtual_host_addr,
2003 (char *)&wifictlhdr8023, sizeof(wifictlhdr8023));
2005 payloadLen = (__le16 *)(ai->txfids[0].virtual_host_addr +
2006 sizeof(wifictlhdr8023));
2007 sendbuf = ai->txfids[0].virtual_host_addr +
2008 sizeof(wifictlhdr8023) + 2 ;
2011 * Firmware automatically puts 802 header on so
2012 * we don't need to account for it in the length
2014 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
2015 (ntohs(((__be16 *)buffer)[6]) != 0x888E)) {
2018 if (encapsulate(ai, (etherHead *)buffer, &pMic, len - sizeof(etherHead)) != SUCCESS)
2021 *payloadLen = cpu_to_le16(len-sizeof(etherHead)+sizeof(pMic));
2022 ai->txfids[0].tx_desc.len += sizeof(pMic);
2023 /* copy data into airo dma buffer */
2024 memcpy (sendbuf, buffer, sizeof(etherHead));
2025 buffer += sizeof(etherHead);
2026 sendbuf += sizeof(etherHead);
2027 memcpy (sendbuf, &pMic, sizeof(pMic));
2028 sendbuf += sizeof(pMic);
2029 memcpy (sendbuf, buffer, len - sizeof(etherHead));
2031 *payloadLen = cpu_to_le16(len - sizeof(etherHead));
2033 netif_trans_update(dev);
2035 /* copy data into airo dma buffer */
2036 memcpy(sendbuf, buffer, len);
2039 memcpy_toio(ai->txfids[0].card_ram_off,
2040 &ai->txfids[0].tx_desc, sizeof(TxFid));
2042 OUT4500(ai, EVACK, 8);
2044 dev_kfree_skb_any(skb);
2048 static void get_tx_error(struct airo_info *ai, s32 fid)
2053 status = ((WifiCtlHdr *)ai->txfids[0].virtual_host_addr)->ctlhdr.status;
2055 if (bap_setup(ai, ai->fids[fid] & 0xffff, 4, BAP0) != SUCCESS)
2057 bap_read(ai, &status, 2, BAP0);
2059 if (le16_to_cpu(status) & 2) /* Too many retries */
2060 ai->dev->stats.tx_aborted_errors++;
2061 if (le16_to_cpu(status) & 4) /* Transmit lifetime exceeded */
2062 ai->dev->stats.tx_heartbeat_errors++;
2063 if (le16_to_cpu(status) & 8) /* Aid fail */
2065 if (le16_to_cpu(status) & 0x10) /* MAC disabled */
2066 ai->dev->stats.tx_carrier_errors++;
2067 if (le16_to_cpu(status) & 0x20) /* Association lost */
2069 /* We produce a TXDROP event only for retry or lifetime
2070 * exceeded, because that's the only status that really mean
2071 * that this particular node went away.
2072 * Other errors means that *we* screwed up. - Jean II */
2073 if ((le16_to_cpu(status) & 2) ||
2074 (le16_to_cpu(status) & 4)) {
2075 union iwreq_data wrqu;
2078 /* Faster to skip over useless data than to do
2079 * another bap_setup(). We are at offset 0x6 and
2080 * need to go to 0x18 and read 6 bytes - Jean II */
2081 bap_read(ai, (__le16 *) junk, 0x18, BAP0);
2083 /* Copy 802.11 dest address.
2084 * We use the 802.11 header because the frame may
2085 * not be 802.3 or may be mangled...
2086 * In Ad-Hoc mode, it will be the node address.
2087 * In managed mode, it will be most likely the AP addr
2088 * User space will figure out how to convert it to
2089 * whatever it needs (IP address or else).
2091 memcpy(wrqu.addr.sa_data, junk + 0x12, ETH_ALEN);
2092 wrqu.addr.sa_family = ARPHRD_ETHER;
2094 /* Send event to user space */
2095 wireless_send_event(ai->dev, IWEVTXDROP, &wrqu, NULL);
2099 static void airo_end_xmit(struct net_device *dev) {
2102 struct airo_info *priv = dev->ml_priv;
2103 struct sk_buff *skb = priv->xmit.skb;
2104 int fid = priv->xmit.fid;
2105 u32 *fids = priv->fids;
2107 clear_bit(JOB_XMIT, &priv->jobs);
2108 clear_bit(FLAG_PENDING_XMIT, &priv->flags);
2109 status = transmit_802_3_packet (priv, fids[fid], skb->data);
2113 if ( status == SUCCESS ) {
2114 netif_trans_update(dev);
2115 for (; i < MAX_FIDS / 2 && (priv->fids[i] & 0xffff0000); i++);
2117 priv->fids[fid] &= 0xffff;
2118 dev->stats.tx_window_errors++;
2120 if (i < MAX_FIDS / 2)
2121 netif_wake_queue(dev);
2125 static netdev_tx_t airo_start_xmit(struct sk_buff *skb,
2126 struct net_device *dev)
2130 struct airo_info *priv = dev->ml_priv;
2131 u32 *fids = priv->fids;
2133 if ( skb == NULL ) {
2134 airo_print_err(dev->name, "%s: skb == NULL!", __func__);
2135 return NETDEV_TX_OK;
2137 if (skb_padto(skb, ETH_ZLEN)) {
2138 dev->stats.tx_dropped++;
2139 return NETDEV_TX_OK;
2142 /* Find a vacant FID */
2143 for( i = 0; i < MAX_FIDS / 2 && (fids[i] & 0xffff0000); i++ );
2144 for( j = i + 1; j < MAX_FIDS / 2 && (fids[j] & 0xffff0000); j++ );
2146 if ( j >= MAX_FIDS / 2 ) {
2147 netif_stop_queue(dev);
2149 if (i == MAX_FIDS / 2) {
2150 dev->stats.tx_fifo_errors++;
2151 return NETDEV_TX_BUSY;
2154 /* check min length*/
2155 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2156 /* Mark fid as used & save length for later */
2157 fids[i] |= (len << 16);
2158 priv->xmit.skb = skb;
2160 if (down_trylock(&priv->sem) != 0) {
2161 set_bit(FLAG_PENDING_XMIT, &priv->flags);
2162 netif_stop_queue(dev);
2163 set_bit(JOB_XMIT, &priv->jobs);
2164 wake_up_interruptible(&priv->thr_wait);
2167 return NETDEV_TX_OK;
2170 static void airo_end_xmit11(struct net_device *dev) {
2173 struct airo_info *priv = dev->ml_priv;
2174 struct sk_buff *skb = priv->xmit11.skb;
2175 int fid = priv->xmit11.fid;
2176 u32 *fids = priv->fids;
2178 clear_bit(JOB_XMIT11, &priv->jobs);
2179 clear_bit(FLAG_PENDING_XMIT11, &priv->flags);
2180 status = transmit_802_11_packet (priv, fids[fid], skb->data);
2184 if ( status == SUCCESS ) {
2185 netif_trans_update(dev);
2186 for (; i < MAX_FIDS && (priv->fids[i] & 0xffff0000); i++);
2188 priv->fids[fid] &= 0xffff;
2189 dev->stats.tx_window_errors++;
2192 netif_wake_queue(dev);
2196 static netdev_tx_t airo_start_xmit11(struct sk_buff *skb,
2197 struct net_device *dev)
2201 struct airo_info *priv = dev->ml_priv;
2202 u32 *fids = priv->fids;
2204 if (test_bit(FLAG_MPI, &priv->flags)) {
2205 /* Not implemented yet for MPI350 */
2206 netif_stop_queue(dev);
2207 dev_kfree_skb_any(skb);
2208 return NETDEV_TX_OK;
2211 if ( skb == NULL ) {
2212 airo_print_err(dev->name, "%s: skb == NULL!", __func__);
2213 return NETDEV_TX_OK;
2215 if (skb_padto(skb, ETH_ZLEN)) {
2216 dev->stats.tx_dropped++;
2217 return NETDEV_TX_OK;
2220 /* Find a vacant FID */
2221 for( i = MAX_FIDS / 2; i < MAX_FIDS && (fids[i] & 0xffff0000); i++ );
2222 for( j = i + 1; j < MAX_FIDS && (fids[j] & 0xffff0000); j++ );
2224 if ( j >= MAX_FIDS ) {
2225 netif_stop_queue(dev);
2227 if (i == MAX_FIDS) {
2228 dev->stats.tx_fifo_errors++;
2229 return NETDEV_TX_BUSY;
2232 /* check min length*/
2233 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2234 /* Mark fid as used & save length for later */
2235 fids[i] |= (len << 16);
2236 priv->xmit11.skb = skb;
2237 priv->xmit11.fid = i;
2238 if (down_trylock(&priv->sem) != 0) {
2239 set_bit(FLAG_PENDING_XMIT11, &priv->flags);
2240 netif_stop_queue(dev);
2241 set_bit(JOB_XMIT11, &priv->jobs);
2242 wake_up_interruptible(&priv->thr_wait);
2244 airo_end_xmit11(dev);
2245 return NETDEV_TX_OK;
2248 static void airo_read_stats(struct net_device *dev)
2250 struct airo_info *ai = dev->ml_priv;
2252 __le32 *vals = stats_rid.vals;
2254 clear_bit(JOB_STATS, &ai->jobs);
2255 if (ai->power.event) {
2259 readStatsRid(ai, &stats_rid, RID_STATS, 0);
2262 dev->stats.rx_packets = le32_to_cpu(vals[43]) + le32_to_cpu(vals[44]) +
2263 le32_to_cpu(vals[45]);
2264 dev->stats.tx_packets = le32_to_cpu(vals[39]) + le32_to_cpu(vals[40]) +
2265 le32_to_cpu(vals[41]);
2266 dev->stats.rx_bytes = le32_to_cpu(vals[92]);
2267 dev->stats.tx_bytes = le32_to_cpu(vals[91]);
2268 dev->stats.rx_errors = le32_to_cpu(vals[0]) + le32_to_cpu(vals[2]) +
2269 le32_to_cpu(vals[3]) + le32_to_cpu(vals[4]);
2270 dev->stats.tx_errors = le32_to_cpu(vals[42]) +
2271 dev->stats.tx_fifo_errors;
2272 dev->stats.multicast = le32_to_cpu(vals[43]);
2273 dev->stats.collisions = le32_to_cpu(vals[89]);
2275 /* detailed rx_errors: */
2276 dev->stats.rx_length_errors = le32_to_cpu(vals[3]);
2277 dev->stats.rx_crc_errors = le32_to_cpu(vals[4]);
2278 dev->stats.rx_frame_errors = le32_to_cpu(vals[2]);
2279 dev->stats.rx_fifo_errors = le32_to_cpu(vals[0]);
2282 static struct net_device_stats *airo_get_stats(struct net_device *dev)
2284 struct airo_info *local = dev->ml_priv;
2286 if (!test_bit(JOB_STATS, &local->jobs)) {
2287 /* Get stats out of the card if available */
2288 if (down_trylock(&local->sem) != 0) {
2289 set_bit(JOB_STATS, &local->jobs);
2290 wake_up_interruptible(&local->thr_wait);
2292 airo_read_stats(dev);
2298 static void airo_set_promisc(struct airo_info *ai) {
2302 memset(&cmd, 0, sizeof(cmd));
2303 cmd.cmd=CMD_SETMODE;
2304 clear_bit(JOB_PROMISC, &ai->jobs);
2305 cmd.parm0=(ai->flags&IFF_PROMISC) ? PROMISC : NOPROMISC;
2306 issuecommand(ai, &cmd, &rsp);
2310 static void airo_set_multicast_list(struct net_device *dev) {
2311 struct airo_info *ai = dev->ml_priv;
2313 if ((dev->flags ^ ai->flags) & IFF_PROMISC) {
2314 change_bit(FLAG_PROMISC, &ai->flags);
2315 if (down_trylock(&ai->sem) != 0) {
2316 set_bit(JOB_PROMISC, &ai->jobs);
2317 wake_up_interruptible(&ai->thr_wait);
2319 airo_set_promisc(ai);
2322 if ((dev->flags&IFF_ALLMULTI) || !netdev_mc_empty(dev)) {
2323 /* Turn on multicast. (Should be already setup...) */
2327 static int airo_set_mac_address(struct net_device *dev, void *p)
2329 struct airo_info *ai = dev->ml_priv;
2330 struct sockaddr *addr = p;
2332 readConfigRid(ai, 1);
2333 memcpy (ai->config.macAddr, addr->sa_data, dev->addr_len);
2334 set_bit (FLAG_COMMIT, &ai->flags);
2336 writeConfigRid (ai, 1);
2338 memcpy (ai->dev->dev_addr, addr->sa_data, dev->addr_len);
2340 memcpy (ai->wifidev->dev_addr, addr->sa_data, dev->addr_len);
2344 static LIST_HEAD(airo_devices);
2346 static void add_airo_dev(struct airo_info *ai)
2348 /* Upper layers already keep track of PCI devices,
2349 * so we only need to remember our non-PCI cards. */
2351 list_add_tail(&ai->dev_list, &airo_devices);
2354 static void del_airo_dev(struct airo_info *ai)
2357 list_del(&ai->dev_list);
2360 static int airo_close(struct net_device *dev) {
2361 struct airo_info *ai = dev->ml_priv;
2363 netif_stop_queue(dev);
2365 if (ai->wifidev != dev) {
2366 #ifdef POWER_ON_DOWN
2367 /* Shut power to the card. The idea is that the user can save
2368 * power when he doesn't need the card with "ifconfig down".
2369 * That's the method that is most friendly towards the network
2370 * stack (i.e. the network stack won't try to broadcast
2371 * anything on the interface and routes are gone. Jean II */
2372 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2375 disable_interrupts( ai );
2377 free_irq(dev->irq, dev);
2379 set_bit(JOB_DIE, &ai->jobs);
2380 kthread_stop(ai->airo_thread_task);
2385 void stop_airo_card( struct net_device *dev, int freeres )
2387 struct airo_info *ai = dev->ml_priv;
2389 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2391 disable_interrupts(ai);
2392 takedown_proc_entry( dev, ai );
2393 if (test_bit(FLAG_REGISTERED, &ai->flags)) {
2394 unregister_netdev( dev );
2396 unregister_netdev(ai->wifidev);
2397 free_netdev(ai->wifidev);
2400 clear_bit(FLAG_REGISTERED, &ai->flags);
2403 * Clean out tx queue
2405 if (test_bit(FLAG_MPI, &ai->flags) && !skb_queue_empty(&ai->txq)) {
2406 struct sk_buff *skb = NULL;
2407 for (;(skb = skb_dequeue(&ai->txq));)
2411 airo_networks_free (ai);
2417 /* PCMCIA frees this stuff, so only for PCI and ISA */
2418 release_region( dev->base_addr, 64 );
2419 if (test_bit(FLAG_MPI, &ai->flags)) {
2421 mpi_unmap_card(ai->pci);
2423 iounmap(ai->pcimem);
2425 iounmap(ai->pciaux);
2426 pci_free_consistent(ai->pci, PCI_SHARED_LEN,
2427 ai->shared, ai->shared_dma);
2430 crypto_free_sync_skcipher(ai->tfm);
2435 EXPORT_SYMBOL(stop_airo_card);
2437 static int wll_header_parse(const struct sk_buff *skb, unsigned char *haddr)
2439 memcpy(haddr, skb_mac_header(skb) + 10, ETH_ALEN);
2443 static void mpi_unmap_card(struct pci_dev *pci)
2445 unsigned long mem_start = pci_resource_start(pci, 1);
2446 unsigned long mem_len = pci_resource_len(pci, 1);
2447 unsigned long aux_start = pci_resource_start(pci, 2);
2448 unsigned long aux_len = AUXMEMSIZE;
2450 release_mem_region(aux_start, aux_len);
2451 release_mem_region(mem_start, mem_len);
2454 /*************************************************************
2455 * This routine assumes that descriptors have been setup .
2456 * Run at insmod time or after reset when the descriptors
2457 * have been initialized . Returns 0 if all is well nz
2458 * otherwise . Does not allocate memory but sets up card
2459 * using previously allocated descriptors.
2461 static int mpi_init_descriptors (struct airo_info *ai)
2468 /* Alloc card RX descriptors */
2469 netif_stop_queue(ai->dev);
2471 memset(&rsp,0,sizeof(rsp));
2472 memset(&cmd,0,sizeof(cmd));
2474 cmd.cmd = CMD_ALLOCATEAUX;
2476 cmd.parm1 = (ai->rxfids[0].card_ram_off - ai->pciaux);
2477 cmd.parm2 = MPI_MAX_FIDS;
2478 rc=issuecommand(ai, &cmd, &rsp);
2479 if (rc != SUCCESS) {
2480 airo_print_err(ai->dev->name, "Couldn't allocate RX FID");
2484 for (i=0; i<MPI_MAX_FIDS; i++) {
2485 memcpy_toio(ai->rxfids[i].card_ram_off,
2486 &ai->rxfids[i].rx_desc, sizeof(RxFid));
2489 /* Alloc card TX descriptors */
2491 memset(&rsp,0,sizeof(rsp));
2492 memset(&cmd,0,sizeof(cmd));
2494 cmd.cmd = CMD_ALLOCATEAUX;
2496 cmd.parm1 = (ai->txfids[0].card_ram_off - ai->pciaux);
2497 cmd.parm2 = MPI_MAX_FIDS;
2499 for (i=0; i<MPI_MAX_FIDS; i++) {
2500 ai->txfids[i].tx_desc.valid = 1;
2501 memcpy_toio(ai->txfids[i].card_ram_off,
2502 &ai->txfids[i].tx_desc, sizeof(TxFid));
2504 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2506 rc=issuecommand(ai, &cmd, &rsp);
2507 if (rc != SUCCESS) {
2508 airo_print_err(ai->dev->name, "Couldn't allocate TX FID");
2512 /* Alloc card Rid descriptor */
2513 memset(&rsp,0,sizeof(rsp));
2514 memset(&cmd,0,sizeof(cmd));
2516 cmd.cmd = CMD_ALLOCATEAUX;
2518 cmd.parm1 = (ai->config_desc.card_ram_off - ai->pciaux);
2519 cmd.parm2 = 1; /* Magic number... */
2520 rc=issuecommand(ai, &cmd, &rsp);
2521 if (rc != SUCCESS) {
2522 airo_print_err(ai->dev->name, "Couldn't allocate RID");
2526 memcpy_toio(ai->config_desc.card_ram_off,
2527 &ai->config_desc.rid_desc, sizeof(Rid));
2533 * We are setting up three things here:
2534 * 1) Map AUX memory for descriptors: Rid, TxFid, or RxFid.
2535 * 2) Map PCI memory for issuing commands.
2536 * 3) Allocate memory (shared) to send and receive ethernet frames.
2538 static int mpi_map_card(struct airo_info *ai, struct pci_dev *pci)
2540 unsigned long mem_start, mem_len, aux_start, aux_len;
2543 dma_addr_t busaddroff;
2544 unsigned char *vpackoff;
2545 unsigned char __iomem *pciaddroff;
2547 mem_start = pci_resource_start(pci, 1);
2548 mem_len = pci_resource_len(pci, 1);
2549 aux_start = pci_resource_start(pci, 2);
2550 aux_len = AUXMEMSIZE;
2552 if (!request_mem_region(mem_start, mem_len, DRV_NAME)) {
2553 airo_print_err("", "Couldn't get region %x[%x]",
2554 (int)mem_start, (int)mem_len);
2557 if (!request_mem_region(aux_start, aux_len, DRV_NAME)) {
2558 airo_print_err("", "Couldn't get region %x[%x]",
2559 (int)aux_start, (int)aux_len);
2563 ai->pcimem = ioremap(mem_start, mem_len);
2565 airo_print_err("", "Couldn't map region %x[%x]",
2566 (int)mem_start, (int)mem_len);
2569 ai->pciaux = ioremap(aux_start, aux_len);
2571 airo_print_err("", "Couldn't map region %x[%x]",
2572 (int)aux_start, (int)aux_len);
2576 /* Reserve PKTSIZE for each fid and 2K for the Rids */
2577 ai->shared = pci_alloc_consistent(pci, PCI_SHARED_LEN, &ai->shared_dma);
2579 airo_print_err("", "Couldn't alloc_consistent %d",
2585 * Setup descriptor RX, TX, CONFIG
2587 busaddroff = ai->shared_dma;
2588 pciaddroff = ai->pciaux + AUX_OFFSET;
2589 vpackoff = ai->shared;
2591 /* RX descriptor setup */
2592 for(i = 0; i < MPI_MAX_FIDS; i++) {
2593 ai->rxfids[i].pending = 0;
2594 ai->rxfids[i].card_ram_off = pciaddroff;
2595 ai->rxfids[i].virtual_host_addr = vpackoff;
2596 ai->rxfids[i].rx_desc.host_addr = busaddroff;
2597 ai->rxfids[i].rx_desc.valid = 1;
2598 ai->rxfids[i].rx_desc.len = PKTSIZE;
2599 ai->rxfids[i].rx_desc.rdy = 0;
2601 pciaddroff += sizeof(RxFid);
2602 busaddroff += PKTSIZE;
2603 vpackoff += PKTSIZE;
2606 /* TX descriptor setup */
2607 for(i = 0; i < MPI_MAX_FIDS; i++) {
2608 ai->txfids[i].card_ram_off = pciaddroff;
2609 ai->txfids[i].virtual_host_addr = vpackoff;
2610 ai->txfids[i].tx_desc.valid = 1;
2611 ai->txfids[i].tx_desc.host_addr = busaddroff;
2612 memcpy(ai->txfids[i].virtual_host_addr,
2613 &wifictlhdr8023, sizeof(wifictlhdr8023));
2615 pciaddroff += sizeof(TxFid);
2616 busaddroff += PKTSIZE;
2617 vpackoff += PKTSIZE;
2619 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2621 /* Rid descriptor setup */
2622 ai->config_desc.card_ram_off = pciaddroff;
2623 ai->config_desc.virtual_host_addr = vpackoff;
2624 ai->config_desc.rid_desc.host_addr = busaddroff;
2625 ai->ridbus = busaddroff;
2626 ai->config_desc.rid_desc.rid = 0;
2627 ai->config_desc.rid_desc.len = RIDSIZE;
2628 ai->config_desc.rid_desc.valid = 1;
2629 pciaddroff += sizeof(Rid);
2630 busaddroff += RIDSIZE;
2631 vpackoff += RIDSIZE;
2633 /* Tell card about descriptors */
2634 if (mpi_init_descriptors (ai) != SUCCESS)
2639 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2641 iounmap(ai->pciaux);
2643 iounmap(ai->pcimem);
2645 release_mem_region(aux_start, aux_len);
2647 release_mem_region(mem_start, mem_len);
2652 static const struct header_ops airo_header_ops = {
2653 .parse = wll_header_parse,
2656 static const struct net_device_ops airo11_netdev_ops = {
2657 .ndo_open = airo_open,
2658 .ndo_stop = airo_close,
2659 .ndo_start_xmit = airo_start_xmit11,
2660 .ndo_get_stats = airo_get_stats,
2661 .ndo_set_mac_address = airo_set_mac_address,
2662 .ndo_do_ioctl = airo_ioctl,
2665 static void wifi_setup(struct net_device *dev)
2667 dev->netdev_ops = &airo11_netdev_ops;
2668 dev->header_ops = &airo_header_ops;
2669 dev->wireless_handlers = &airo_handler_def;
2671 dev->type = ARPHRD_IEEE80211;
2672 dev->hard_header_len = ETH_HLEN;
2673 dev->mtu = AIRO_DEF_MTU;
2675 dev->max_mtu = MIC_MSGLEN_MAX;
2676 dev->addr_len = ETH_ALEN;
2677 dev->tx_queue_len = 100;
2679 eth_broadcast_addr(dev->broadcast);
2681 dev->flags = IFF_BROADCAST|IFF_MULTICAST;
2684 static struct net_device *init_wifidev(struct airo_info *ai,
2685 struct net_device *ethdev)
2688 struct net_device *dev = alloc_netdev(0, "wifi%d", NET_NAME_UNKNOWN,
2692 dev->ml_priv = ethdev->ml_priv;
2693 dev->irq = ethdev->irq;
2694 dev->base_addr = ethdev->base_addr;
2695 dev->wireless_data = ethdev->wireless_data;
2696 SET_NETDEV_DEV(dev, ethdev->dev.parent);
2697 eth_hw_addr_inherit(dev, ethdev);
2698 err = register_netdev(dev);
2706 static int reset_card( struct net_device *dev , int lock) {
2707 struct airo_info *ai = dev->ml_priv;
2709 if (lock && down_interruptible(&ai->sem))
2712 OUT4500(ai,COMMAND,CMD_SOFTRESET);
2721 #define AIRO_MAX_NETWORK_COUNT 64
2722 static int airo_networks_allocate(struct airo_info *ai)
2727 ai->networks = kcalloc(AIRO_MAX_NETWORK_COUNT, sizeof(BSSListElement),
2729 if (!ai->networks) {
2730 airo_print_warn("", "Out of memory allocating beacons");
2737 static void airo_networks_free(struct airo_info *ai)
2739 kfree(ai->networks);
2740 ai->networks = NULL;
2743 static void airo_networks_initialize(struct airo_info *ai)
2747 INIT_LIST_HEAD(&ai->network_free_list);
2748 INIT_LIST_HEAD(&ai->network_list);
2749 for (i = 0; i < AIRO_MAX_NETWORK_COUNT; i++)
2750 list_add_tail(&ai->networks[i].list,
2751 &ai->network_free_list);
2754 static const struct net_device_ops airo_netdev_ops = {
2755 .ndo_open = airo_open,
2756 .ndo_stop = airo_close,
2757 .ndo_start_xmit = airo_start_xmit,
2758 .ndo_get_stats = airo_get_stats,
2759 .ndo_set_rx_mode = airo_set_multicast_list,
2760 .ndo_set_mac_address = airo_set_mac_address,
2761 .ndo_do_ioctl = airo_ioctl,
2762 .ndo_validate_addr = eth_validate_addr,
2765 static const struct net_device_ops mpi_netdev_ops = {
2766 .ndo_open = airo_open,
2767 .ndo_stop = airo_close,
2768 .ndo_start_xmit = mpi_start_xmit,
2769 .ndo_get_stats = airo_get_stats,
2770 .ndo_set_rx_mode = airo_set_multicast_list,
2771 .ndo_set_mac_address = airo_set_mac_address,
2772 .ndo_do_ioctl = airo_ioctl,
2773 .ndo_validate_addr = eth_validate_addr,
2777 static struct net_device *_init_airo_card( unsigned short irq, int port,
2778 int is_pcmcia, struct pci_dev *pci,
2779 struct device *dmdev )
2781 struct net_device *dev;
2782 struct airo_info *ai;
2784 CapabilityRid cap_rid;
2786 /* Create the network device object. */
2787 dev = alloc_netdev(sizeof(*ai), "", NET_NAME_UNKNOWN, ether_setup);
2789 airo_print_err("", "Couldn't alloc_etherdev");
2793 ai = dev->ml_priv = netdev_priv(dev);
2795 ai->flags = 1 << FLAG_RADIO_DOWN;
2798 if (pci && (pci->device == 0x5000 || pci->device == 0xa504)) {
2799 airo_print_dbg("", "Found an MPI350 card");
2800 set_bit(FLAG_MPI, &ai->flags);
2802 spin_lock_init(&ai->aux_lock);
2803 sema_init(&ai->sem, 1);
2806 init_waitqueue_head (&ai->thr_wait);
2809 ai->APList.len = cpu_to_le16(sizeof(struct APListRid));
2811 if (airo_networks_allocate (ai))
2813 airo_networks_initialize (ai);
2815 skb_queue_head_init (&ai->txq);
2817 /* The Airo-specific entries in the device structure. */
2818 if (test_bit(FLAG_MPI,&ai->flags))
2819 dev->netdev_ops = &mpi_netdev_ops;
2821 dev->netdev_ops = &airo_netdev_ops;
2822 dev->wireless_handlers = &airo_handler_def;
2823 ai->wireless_data.spy_data = &ai->spy_data;
2824 dev->wireless_data = &ai->wireless_data;
2826 dev->base_addr = port;
2827 dev->priv_flags &= ~IFF_TX_SKB_SHARING;
2828 dev->max_mtu = MIC_MSGLEN_MAX;
2830 SET_NETDEV_DEV(dev, dmdev);
2832 reset_card (dev, 1);
2836 if (!request_region(dev->base_addr, 64, DRV_NAME)) {
2838 airo_print_err(dev->name, "Couldn't request region");
2843 if (test_bit(FLAG_MPI,&ai->flags)) {
2844 if (mpi_map_card(ai, pci)) {
2845 airo_print_err("", "Could not map memory");
2851 if (setup_card(ai, dev->dev_addr, 1) != SUCCESS) {
2852 airo_print_err(dev->name, "MAC could not be enabled" );
2856 } else if (!test_bit(FLAG_MPI,&ai->flags)) {
2857 ai->bap_read = fast_bap_read;
2858 set_bit(FLAG_FLASHING, &ai->flags);
2861 strcpy(dev->name, "eth%d");
2862 rc = register_netdev(dev);
2864 airo_print_err(dev->name, "Couldn't register_netdev");
2867 ai->wifidev = init_wifidev(ai, dev);
2871 rc = readCapabilityRid(ai, &cap_rid, 1);
2872 if (rc != SUCCESS) {
2876 /* WEP capability discovery */
2877 ai->wep_capable = (cap_rid.softCap & cpu_to_le16(0x02)) ? 1 : 0;
2878 ai->max_wep_idx = (cap_rid.softCap & cpu_to_le16(0x80)) ? 3 : 0;
2880 airo_print_info(dev->name, "Firmware version %x.%x.%02d",
2881 ((le16_to_cpu(cap_rid.softVer) >> 8) & 0xF),
2882 (le16_to_cpu(cap_rid.softVer) & 0xFF),
2883 le16_to_cpu(cap_rid.softSubVer));
2885 /* Test for WPA support */
2886 /* Only firmware versions 5.30.17 or better can do WPA */
2887 if (le16_to_cpu(cap_rid.softVer) > 0x530
2888 || (le16_to_cpu(cap_rid.softVer) == 0x530
2889 && le16_to_cpu(cap_rid.softSubVer) >= 17)) {
2890 airo_print_info(ai->dev->name, "WPA supported.");
2892 set_bit(FLAG_WPA_CAPABLE, &ai->flags);
2893 ai->bssListFirst = RID_WPA_BSSLISTFIRST;
2894 ai->bssListNext = RID_WPA_BSSLISTNEXT;
2895 ai->bssListRidLen = sizeof(BSSListRid);
2897 airo_print_info(ai->dev->name, "WPA unsupported with firmware "
2898 "versions older than 5.30.17.");
2900 ai->bssListFirst = RID_BSSLISTFIRST;
2901 ai->bssListNext = RID_BSSLISTNEXT;
2902 ai->bssListRidLen = sizeof(BSSListRid) - sizeof(BSSListRidExtra);
2905 set_bit(FLAG_REGISTERED,&ai->flags);
2906 airo_print_info(dev->name, "MAC enabled %pM", dev->dev_addr);
2908 /* Allocate the transmit buffers */
2909 if (probe && !test_bit(FLAG_MPI,&ai->flags))
2910 for( i = 0; i < MAX_FIDS; i++ )
2911 ai->fids[i] = transmit_allocate(ai,AIRO_DEF_MTU,i>=MAX_FIDS/2);
2913 if (setup_proc_entry(dev, dev->ml_priv) < 0)
2919 unregister_netdev(ai->wifidev);
2920 free_netdev(ai->wifidev);
2922 unregister_netdev(dev);
2924 if (test_bit(FLAG_MPI,&ai->flags) && pci) {
2925 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2926 iounmap(ai->pciaux);
2927 iounmap(ai->pcimem);
2928 mpi_unmap_card(ai->pci);
2932 release_region( dev->base_addr, 64 );
2934 airo_networks_free(ai);
2941 struct net_device *init_airo_card( unsigned short irq, int port, int is_pcmcia,
2942 struct device *dmdev)
2944 return _init_airo_card ( irq, port, is_pcmcia, NULL, dmdev);
2947 EXPORT_SYMBOL(init_airo_card);
2949 static int waitbusy (struct airo_info *ai) {
2951 while ((IN4500(ai, COMMAND) & COMMAND_BUSY) && (delay < 10000)) {
2953 if ((++delay % 20) == 0)
2954 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
2956 return delay < 10000;
2959 int reset_airo_card( struct net_device *dev )
2962 struct airo_info *ai = dev->ml_priv;
2964 if (reset_card (dev, 1))
2967 if ( setup_card(ai, dev->dev_addr, 1 ) != SUCCESS ) {
2968 airo_print_err(dev->name, "MAC could not be enabled");
2971 airo_print_info(dev->name, "MAC enabled %pM", dev->dev_addr);
2972 /* Allocate the transmit buffers if needed */
2973 if (!test_bit(FLAG_MPI,&ai->flags))
2974 for( i = 0; i < MAX_FIDS; i++ )
2975 ai->fids[i] = transmit_allocate (ai,AIRO_DEF_MTU,i>=MAX_FIDS/2);
2977 enable_interrupts( ai );
2978 netif_wake_queue(dev);
2982 EXPORT_SYMBOL(reset_airo_card);
2984 static void airo_send_event(struct net_device *dev) {
2985 struct airo_info *ai = dev->ml_priv;
2986 union iwreq_data wrqu;
2987 StatusRid status_rid;
2989 clear_bit(JOB_EVENT, &ai->jobs);
2990 PC4500_readrid(ai, RID_STATUS, &status_rid, sizeof(status_rid), 0);
2992 wrqu.data.length = 0;
2993 wrqu.data.flags = 0;
2994 memcpy(wrqu.ap_addr.sa_data, status_rid.bssid[0], ETH_ALEN);
2995 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
2997 /* Send event to user space */
2998 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
3001 static void airo_process_scan_results (struct airo_info *ai) {
3002 union iwreq_data wrqu;
3005 BSSListElement * loop_net;
3006 BSSListElement * tmp_net;
3008 /* Blow away current list of scan results */
3009 list_for_each_entry_safe (loop_net, tmp_net, &ai->network_list, list) {
3010 list_move_tail (&loop_net->list, &ai->network_free_list);
3011 /* Don't blow away ->list, just BSS data */
3012 memset (loop_net, 0, sizeof (loop_net->bss));
3015 /* Try to read the first entry of the scan result */
3016 rc = PC4500_readrid(ai, ai->bssListFirst, &bss, ai->bssListRidLen, 0);
3017 if((rc) || (bss.index == cpu_to_le16(0xffff))) {
3018 /* No scan results */
3022 /* Read and parse all entries */
3024 while((!rc) && (bss.index != cpu_to_le16(0xffff))) {
3025 /* Grab a network off the free list */
3026 if (!list_empty(&ai->network_free_list)) {
3027 tmp_net = list_entry(ai->network_free_list.next,
3028 BSSListElement, list);
3029 list_del(ai->network_free_list.next);
3032 if (tmp_net != NULL) {
3033 memcpy(tmp_net, &bss, sizeof(tmp_net->bss));
3034 list_add_tail(&tmp_net->list, &ai->network_list);
3038 /* Read next entry */
3039 rc = PC4500_readrid(ai, ai->bssListNext,
3040 &bss, ai->bssListRidLen, 0);
3044 /* write APList back (we cleared it in airo_set_scan) */
3046 writeAPListRid(ai, &ai->APList, 0);
3049 ai->scan_timeout = 0;
3050 clear_bit(JOB_SCAN_RESULTS, &ai->jobs);
3053 /* Send an empty event to user space.
3054 * We don't send the received data on
3055 * the event because it would require
3056 * us to do complex transcoding, and
3057 * we want to minimise the work done in
3058 * the irq handler. Use a request to
3059 * extract the data - Jean II */
3060 wrqu.data.length = 0;
3061 wrqu.data.flags = 0;
3062 wireless_send_event(ai->dev, SIOCGIWSCAN, &wrqu, NULL);
3065 static int airo_thread(void *data) {
3066 struct net_device *dev = data;
3067 struct airo_info *ai = dev->ml_priv;
3072 /* make swsusp happy with our thread */
3075 if (test_bit(JOB_DIE, &ai->jobs))
3079 locked = down_interruptible(&ai->sem);
3081 wait_queue_entry_t wait;
3083 init_waitqueue_entry(&wait, current);
3084 add_wait_queue(&ai->thr_wait, &wait);
3086 set_current_state(TASK_INTERRUPTIBLE);
3089 if (ai->expires || ai->scan_timeout) {
3090 if (ai->scan_timeout &&
3091 time_after_eq(jiffies,ai->scan_timeout)){
3092 set_bit(JOB_SCAN_RESULTS, &ai->jobs);
3094 } else if (ai->expires &&
3095 time_after_eq(jiffies,ai->expires)){
3096 set_bit(JOB_AUTOWEP, &ai->jobs);
3099 if (!kthread_should_stop() &&
3100 !freezing(current)) {
3101 unsigned long wake_at;
3102 if (!ai->expires || !ai->scan_timeout) {
3103 wake_at = max(ai->expires,
3106 wake_at = min(ai->expires,
3109 schedule_timeout(wake_at - jiffies);
3112 } else if (!kthread_should_stop() &&
3113 !freezing(current)) {
3119 __set_current_state(TASK_RUNNING);
3120 remove_wait_queue(&ai->thr_wait, &wait);
3127 if (test_bit(JOB_DIE, &ai->jobs)) {
3132 if (ai->power.event || test_bit(FLAG_FLASHING, &ai->flags)) {
3137 if (test_bit(JOB_XMIT, &ai->jobs))
3139 else if (test_bit(JOB_XMIT11, &ai->jobs))
3140 airo_end_xmit11(dev);
3141 else if (test_bit(JOB_STATS, &ai->jobs))
3142 airo_read_stats(dev);
3143 else if (test_bit(JOB_WSTATS, &ai->jobs))
3144 airo_read_wireless_stats(ai);
3145 else if (test_bit(JOB_PROMISC, &ai->jobs))
3146 airo_set_promisc(ai);
3147 else if (test_bit(JOB_MIC, &ai->jobs))
3149 else if (test_bit(JOB_EVENT, &ai->jobs))
3150 airo_send_event(dev);
3151 else if (test_bit(JOB_AUTOWEP, &ai->jobs))
3153 else if (test_bit(JOB_SCAN_RESULTS, &ai->jobs))
3154 airo_process_scan_results(ai);
3155 else /* Shouldn't get here, but we make sure to unlock */
3162 static int header_len(__le16 ctl)
3164 u16 fc = le16_to_cpu(ctl);
3167 if ((fc & 0xe0) == 0xc0)
3168 return 10; /* one-address control packet */
3169 return 16; /* two-address control packet */
3171 if ((fc & 0x300) == 0x300)
3172 return 30; /* WDS packet */
3177 static void airo_handle_cisco_mic(struct airo_info *ai)
3179 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags)) {
3180 set_bit(JOB_MIC, &ai->jobs);
3181 wake_up_interruptible(&ai->thr_wait);
3185 /* Airo Status codes */
3186 #define STAT_NOBEACON 0x8000 /* Loss of sync - missed beacons */
3187 #define STAT_MAXRETRIES 0x8001 /* Loss of sync - max retries */
3188 #define STAT_MAXARL 0x8002 /* Loss of sync - average retry level exceeded*/
3189 #define STAT_FORCELOSS 0x8003 /* Loss of sync - host request */
3190 #define STAT_TSFSYNC 0x8004 /* Loss of sync - TSF synchronization */
3191 #define STAT_DEAUTH 0x8100 /* low byte is 802.11 reason code */
3192 #define STAT_DISASSOC 0x8200 /* low byte is 802.11 reason code */
3193 #define STAT_ASSOC_FAIL 0x8400 /* low byte is 802.11 reason code */
3194 #define STAT_AUTH_FAIL 0x0300 /* low byte is 802.11 reason code */
3195 #define STAT_ASSOC 0x0400 /* Associated */
3196 #define STAT_REASSOC 0x0600 /* Reassociated? Only on firmware >= 5.30.17 */
3198 static void airo_print_status(const char *devname, u16 status)
3200 u8 reason = status & 0xFF;
3202 switch (status & 0xFF00) {
3206 airo_print_dbg(devname, "link lost (missed beacons)");
3208 case STAT_MAXRETRIES:
3210 airo_print_dbg(devname, "link lost (max retries)");
3212 case STAT_FORCELOSS:
3213 airo_print_dbg(devname, "link lost (local choice)");
3216 airo_print_dbg(devname, "link lost (TSF sync lost)");
3219 airo_print_dbg(devname, "unknown status %x\n", status);
3224 airo_print_dbg(devname, "deauthenticated (reason: %d)", reason);
3227 airo_print_dbg(devname, "disassociated (reason: %d)", reason);
3229 case STAT_ASSOC_FAIL:
3230 airo_print_dbg(devname, "association failed (reason: %d)",
3233 case STAT_AUTH_FAIL:
3234 airo_print_dbg(devname, "authentication failed (reason: %d)",
3241 airo_print_dbg(devname, "unknown status %x\n", status);
3246 static void airo_handle_link(struct airo_info *ai)
3248 union iwreq_data wrqu;
3249 int scan_forceloss = 0;
3252 /* Get new status and acknowledge the link change */
3253 status = le16_to_cpu(IN4500(ai, LINKSTAT));
3254 OUT4500(ai, EVACK, EV_LINK);
3256 if ((status == STAT_FORCELOSS) && (ai->scan_timeout > 0))
3259 airo_print_status(ai->dev->name, status);
3261 if ((status == STAT_ASSOC) || (status == STAT_REASSOC)) {
3264 if (ai->list_bss_task)
3265 wake_up_process(ai->list_bss_task);
3266 set_bit(FLAG_UPDATE_UNI, &ai->flags);
3267 set_bit(FLAG_UPDATE_MULTI, &ai->flags);
3269 if (down_trylock(&ai->sem) != 0) {
3270 set_bit(JOB_EVENT, &ai->jobs);
3271 wake_up_interruptible(&ai->thr_wait);
3273 airo_send_event(ai->dev);
3274 netif_carrier_on(ai->dev);
3275 } else if (!scan_forceloss) {
3276 if (auto_wep && !ai->expires) {
3277 ai->expires = RUN_AT(3*HZ);
3278 wake_up_interruptible(&ai->thr_wait);
3281 /* Send event to user space */
3282 eth_zero_addr(wrqu.ap_addr.sa_data);
3283 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
3284 wireless_send_event(ai->dev, SIOCGIWAP, &wrqu, NULL);
3285 netif_carrier_off(ai->dev);
3287 netif_carrier_off(ai->dev);
3291 static void airo_handle_rx(struct airo_info *ai)
3293 struct sk_buff *skb = NULL;
3294 __le16 fc, v, *buffer, tmpbuf[4];
3295 u16 len, hdrlen = 0, gap, fid;
3299 if (test_bit(FLAG_MPI, &ai->flags)) {
3300 if (test_bit(FLAG_802_11, &ai->flags))
3301 mpi_receive_802_11(ai);
3303 mpi_receive_802_3(ai);
3304 OUT4500(ai, EVACK, EV_RX);
3308 fid = IN4500(ai, RXFID);
3310 /* Get the packet length */
3311 if (test_bit(FLAG_802_11, &ai->flags)) {
3312 bap_setup (ai, fid, 4, BAP0);
3313 bap_read (ai, (__le16*)&hdr, sizeof(hdr), BAP0);
3314 /* Bad CRC. Ignore packet */
3315 if (le16_to_cpu(hdr.status) & 2)
3317 if (ai->wifidev == NULL)
3320 bap_setup(ai, fid, 0x36, BAP0);
3321 bap_read(ai, &hdr.len, 2, BAP0);
3323 len = le16_to_cpu(hdr.len);
3325 if (len > AIRO_DEF_MTU) {
3326 airo_print_err(ai->dev->name, "Bad size %d", len);
3332 if (test_bit(FLAG_802_11, &ai->flags)) {
3333 bap_read(ai, &fc, sizeof (fc), BAP0);
3334 hdrlen = header_len(fc);
3336 hdrlen = ETH_ALEN * 2;
3338 skb = dev_alloc_skb(len + hdrlen + 2 + 2);
3340 ai->dev->stats.rx_dropped++;
3344 skb_reserve(skb, 2); /* This way the IP header is aligned */
3345 buffer = skb_put(skb, len + hdrlen);
3346 if (test_bit(FLAG_802_11, &ai->flags)) {
3348 bap_read(ai, buffer + 1, hdrlen - 2, BAP0);
3350 bap_read(ai, tmpbuf, 6, BAP0);
3352 bap_read(ai, &v, sizeof(v), BAP0);
3353 gap = le16_to_cpu(v);
3356 bap_read(ai, tmpbuf, gap, BAP0);
3358 airo_print_err(ai->dev->name, "gaplen too "
3359 "big. Problems will follow...");
3362 bap_read(ai, buffer + hdrlen/2, len, BAP0);
3366 bap_read(ai, buffer, ETH_ALEN * 2, BAP0);
3367 if (ai->micstats.enabled) {
3368 bap_read(ai, (__le16 *) &micbuf, sizeof (micbuf), BAP0);
3369 if (ntohs(micbuf.typelen) > 0x05DC)
3370 bap_setup(ai, fid, 0x44, BAP0);
3372 if (len <= sizeof (micbuf)) {
3373 dev_kfree_skb_irq(skb);
3377 len -= sizeof(micbuf);
3378 skb_trim(skb, len + hdrlen);
3382 bap_read(ai, buffer + ETH_ALEN, len, BAP0);
3383 if (decapsulate(ai, &micbuf, (etherHead*) buffer, len))
3384 dev_kfree_skb_irq (skb);
3390 if (success && (ai->spy_data.spy_number > 0)) {
3392 struct iw_quality wstats;
3394 /* Prepare spy data : addr + qual */
3395 if (!test_bit(FLAG_802_11, &ai->flags)) {
3396 sa = (char *) buffer + 6;
3397 bap_setup(ai, fid, 8, BAP0);
3398 bap_read(ai, (__le16 *) hdr.rssi, 2, BAP0);
3400 sa = (char *) buffer + 10;
3401 wstats.qual = hdr.rssi[0];
3403 wstats.level = 0x100 - ai->rssi[hdr.rssi[1]].rssidBm;
3405 wstats.level = (hdr.rssi[1] + 321) / 2;
3406 wstats.noise = ai->wstats.qual.noise;
3407 wstats.updated = IW_QUAL_LEVEL_UPDATED
3408 | IW_QUAL_QUAL_UPDATED
3410 /* Update spy records */
3411 wireless_spy_update(ai->dev, sa, &wstats);
3413 #endif /* WIRELESS_SPY */
3416 OUT4500(ai, EVACK, EV_RX);
3419 if (test_bit(FLAG_802_11, &ai->flags)) {
3420 skb_reset_mac_header(skb);
3421 skb->pkt_type = PACKET_OTHERHOST;
3422 skb->dev = ai->wifidev;
3423 skb->protocol = htons(ETH_P_802_2);
3425 skb->protocol = eth_type_trans(skb, ai->dev);
3426 skb->ip_summed = CHECKSUM_NONE;
3432 static void airo_handle_tx(struct airo_info *ai, u16 status)
3437 if (test_bit(FLAG_MPI, &ai->flags)) {
3438 unsigned long flags;
3440 if (status & EV_TXEXC)
3441 get_tx_error(ai, -1);
3443 spin_lock_irqsave(&ai->aux_lock, flags);
3444 if (!skb_queue_empty(&ai->txq)) {
3445 spin_unlock_irqrestore(&ai->aux_lock,flags);
3446 mpi_send_packet(ai->dev);
3448 clear_bit(FLAG_PENDING_XMIT, &ai->flags);
3449 spin_unlock_irqrestore(&ai->aux_lock,flags);
3450 netif_wake_queue(ai->dev);
3452 OUT4500(ai, EVACK, status & (EV_TX | EV_TXCPY | EV_TXEXC));
3456 fid = IN4500(ai, TXCOMPLFID);
3458 for (i = 0; i < MAX_FIDS; i++) {
3459 if ((ai->fids[i] & 0xffff) == fid)
3464 if (status & EV_TXEXC)
3465 get_tx_error(ai, index);
3467 OUT4500(ai, EVACK, status & (EV_TX | EV_TXEXC));
3469 /* Set up to be used again */
3470 ai->fids[index] &= 0xffff;
3471 if (index < MAX_FIDS / 2) {
3472 if (!test_bit(FLAG_PENDING_XMIT, &ai->flags))
3473 netif_wake_queue(ai->dev);
3475 if (!test_bit(FLAG_PENDING_XMIT11, &ai->flags))
3476 netif_wake_queue(ai->wifidev);
3479 OUT4500(ai, EVACK, status & (EV_TX | EV_TXCPY | EV_TXEXC));
3480 airo_print_err(ai->dev->name, "Unallocated FID was used to xmit");
3484 static irqreturn_t airo_interrupt(int irq, void *dev_id)
3486 struct net_device *dev = dev_id;
3487 u16 status, savedInterrupts = 0;
3488 struct airo_info *ai = dev->ml_priv;
3491 if (!netif_device_present(dev))
3495 status = IN4500(ai, EVSTAT);
3496 if (!(status & STATUS_INTS) || (status == 0xffff))
3501 if (status & EV_AWAKE) {
3502 OUT4500(ai, EVACK, EV_AWAKE);
3503 OUT4500(ai, EVACK, EV_AWAKE);
3506 if (!savedInterrupts) {
3507 savedInterrupts = IN4500(ai, EVINTEN);
3508 OUT4500(ai, EVINTEN, 0);
3511 if (status & EV_MIC) {
3512 OUT4500(ai, EVACK, EV_MIC);
3513 airo_handle_cisco_mic(ai);
3516 if (status & EV_LINK) {
3517 /* Link status changed */
3518 airo_handle_link(ai);
3521 /* Check to see if there is something to receive */
3525 /* Check to see if a packet has been transmitted */
3526 if (status & (EV_TX | EV_TXCPY | EV_TXEXC))
3527 airo_handle_tx(ai, status);
3529 if ( status & ~STATUS_INTS & ~IGNORE_INTS ) {
3530 airo_print_warn(ai->dev->name, "Got weird status %x",
3531 status & ~STATUS_INTS & ~IGNORE_INTS );
3535 if (savedInterrupts)
3536 OUT4500(ai, EVINTEN, savedInterrupts);
3538 return IRQ_RETVAL(handled);
3542 * Routines to talk to the card
3546 * This was originally written for the 4500, hence the name
3547 * NOTE: If use with 8bit mode and SMP bad things will happen!
3548 * Why would some one do 8 bit IO in an SMP machine?!?
3550 static void OUT4500( struct airo_info *ai, u16 reg, u16 val ) {
3551 if (test_bit(FLAG_MPI,&ai->flags))
3554 outw( val, ai->dev->base_addr + reg );
3556 outb( val & 0xff, ai->dev->base_addr + reg );
3557 outb( val >> 8, ai->dev->base_addr + reg + 1 );
3561 static u16 IN4500( struct airo_info *ai, u16 reg ) {
3564 if (test_bit(FLAG_MPI,&ai->flags))
3567 rc = inw( ai->dev->base_addr + reg );
3569 rc = inb( ai->dev->base_addr + reg );
3570 rc += ((int)inb( ai->dev->base_addr + reg + 1 )) << 8;
3575 static int enable_MAC(struct airo_info *ai, int lock)
3581 /* FLAG_RADIO_OFF : Radio disabled via /proc or Wireless Extensions
3582 * FLAG_RADIO_DOWN : Radio disabled via "ifconfig ethX down"
3583 * Note : we could try to use !netif_running(dev) in enable_MAC()
3584 * instead of this flag, but I don't trust it *within* the
3585 * open/close functions, and testing both flags together is
3586 * "cheaper" - Jean II */
3587 if (ai->flags & FLAG_RADIO_MASK) return SUCCESS;
3589 if (lock && down_interruptible(&ai->sem))
3590 return -ERESTARTSYS;
3592 if (!test_bit(FLAG_ENABLED, &ai->flags)) {
3593 memset(&cmd, 0, sizeof(cmd));
3594 cmd.cmd = MAC_ENABLE;
3595 rc = issuecommand(ai, &cmd, &rsp);
3597 set_bit(FLAG_ENABLED, &ai->flags);
3605 airo_print_err(ai->dev->name, "Cannot enable MAC");
3606 else if ((rsp.status & 0xFF00) != 0) {
3607 airo_print_err(ai->dev->name, "Bad MAC enable reason=%x, "
3608 "rid=%x, offset=%d", rsp.rsp0, rsp.rsp1, rsp.rsp2);
3614 static void disable_MAC( struct airo_info *ai, int lock ) {
3618 if (lock == 1 && down_interruptible(&ai->sem))
3621 if (test_bit(FLAG_ENABLED, &ai->flags)) {
3622 if (lock != 2) /* lock == 2 means don't disable carrier */
3623 netif_carrier_off(ai->dev);
3624 memset(&cmd, 0, sizeof(cmd));
3625 cmd.cmd = MAC_DISABLE; // disable in case already enabled
3626 issuecommand(ai, &cmd, &rsp);
3627 clear_bit(FLAG_ENABLED, &ai->flags);
3633 static void enable_interrupts( struct airo_info *ai ) {
3634 /* Enable the interrupts */
3635 OUT4500( ai, EVINTEN, STATUS_INTS );
3638 static void disable_interrupts( struct airo_info *ai ) {
3639 OUT4500( ai, EVINTEN, 0 );
3642 static void mpi_receive_802_3(struct airo_info *ai)
3646 struct sk_buff *skb;
3651 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3652 /* Make sure we got something */
3653 if (rxd.rdy && rxd.valid == 0) {
3655 if (len < 12 || len > 2048)
3658 skb = dev_alloc_skb(len);
3660 ai->dev->stats.rx_dropped++;
3663 buffer = skb_put(skb,len);
3664 memcpy(buffer, ai->rxfids[0].virtual_host_addr, ETH_ALEN * 2);
3665 if (ai->micstats.enabled) {
3667 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2,
3669 if (ntohs(micbuf.typelen) <= 0x05DC) {
3670 if (len <= sizeof(micbuf) + ETH_ALEN * 2)
3673 off = sizeof(micbuf);
3674 skb_trim (skb, len - off);
3677 memcpy(buffer + ETH_ALEN * 2,
3678 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2 + off,
3679 len - ETH_ALEN * 2 - off);
3680 if (decapsulate (ai, &micbuf, (etherHead*)buffer, len - off - ETH_ALEN * 2)) {
3682 dev_kfree_skb_irq (skb);
3686 if (ai->spy_data.spy_number > 0) {
3688 struct iw_quality wstats;
3689 /* Prepare spy data : addr + qual */
3690 sa = buffer + ETH_ALEN;
3691 wstats.qual = 0; /* XXX Where do I get that info from ??? */
3694 /* Update spy records */
3695 wireless_spy_update(ai->dev, sa, &wstats);
3697 #endif /* WIRELESS_SPY */
3699 skb->ip_summed = CHECKSUM_NONE;
3700 skb->protocol = eth_type_trans(skb, ai->dev);
3704 if (rxd.valid == 0) {
3708 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3712 static void mpi_receive_802_11(struct airo_info *ai)
3715 struct sk_buff *skb = NULL;
3716 u16 len, hdrlen = 0;
3721 char *ptr = ai->rxfids[0].virtual_host_addr + 4;
3723 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3724 memcpy ((char *)&hdr, ptr, sizeof(hdr));
3726 /* Bad CRC. Ignore packet */
3727 if (le16_to_cpu(hdr.status) & 2)
3729 if (ai->wifidev == NULL)
3731 len = le16_to_cpu(hdr.len);
3732 if (len > AIRO_DEF_MTU) {
3733 airo_print_err(ai->dev->name, "Bad size %d", len);
3739 fc = get_unaligned((__le16 *)ptr);
3740 hdrlen = header_len(fc);
3742 skb = dev_alloc_skb( len + hdrlen + 2 );
3744 ai->dev->stats.rx_dropped++;
3747 buffer = skb_put(skb, len + hdrlen);
3748 memcpy ((char *)buffer, ptr, hdrlen);
3752 gap = get_unaligned_le16(ptr);
3753 ptr += sizeof(__le16);
3758 airo_print_err(ai->dev->name,
3759 "gaplen too big. Problems will follow...");
3761 memcpy ((char *)buffer + hdrlen, ptr, len);
3763 #ifdef IW_WIRELESS_SPY /* defined in iw_handler.h */
3764 if (ai->spy_data.spy_number > 0) {
3766 struct iw_quality wstats;
3767 /* Prepare spy data : addr + qual */
3768 sa = (char*)buffer + 10;
3769 wstats.qual = hdr.rssi[0];
3771 wstats.level = 0x100 - ai->rssi[hdr.rssi[1]].rssidBm;
3773 wstats.level = (hdr.rssi[1] + 321) / 2;
3774 wstats.noise = ai->wstats.qual.noise;
3775 wstats.updated = IW_QUAL_QUAL_UPDATED
3776 | IW_QUAL_LEVEL_UPDATED
3778 /* Update spy records */
3779 wireless_spy_update(ai->dev, sa, &wstats);
3781 #endif /* IW_WIRELESS_SPY */
3782 skb_reset_mac_header(skb);
3783 skb->pkt_type = PACKET_OTHERHOST;
3784 skb->dev = ai->wifidev;
3785 skb->protocol = htons(ETH_P_802_2);
3786 skb->ip_summed = CHECKSUM_NONE;
3790 if (rxd.valid == 0) {
3794 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3798 static inline void set_auth_type(struct airo_info *local, int auth_type)
3800 local->config.authType = auth_type;
3801 /* Cache the last auth type used (of AUTH_OPEN and AUTH_ENCRYPT).
3802 * Used by airo_set_auth()
3804 if (auth_type == AUTH_OPEN || auth_type == AUTH_ENCRYPT)
3805 local->last_auth = auth_type;
3808 static u16 setup_card(struct airo_info *ai, u8 *mac, int lock)
3818 memset( &mySsid, 0, sizeof( mySsid ) );
3822 /* The NOP is the first step in getting the card going */
3824 cmd.parm0 = cmd.parm1 = cmd.parm2 = 0;
3825 if (lock && down_interruptible(&ai->sem))
3827 if ( issuecommand( ai, &cmd, &rsp ) != SUCCESS ) {
3832 disable_MAC( ai, 0);
3834 // Let's figure out if we need to use the AUX port
3835 if (!test_bit(FLAG_MPI,&ai->flags)) {
3836 cmd.cmd = CMD_ENABLEAUX;
3837 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
3840 airo_print_err(ai->dev->name, "Error checking for AUX port");
3843 if (!aux_bap || rsp.status & 0xff00) {
3844 ai->bap_read = fast_bap_read;
3845 airo_print_dbg(ai->dev->name, "Doing fast bap_reads");
3847 ai->bap_read = aux_bap_read;
3848 airo_print_dbg(ai->dev->name, "Doing AUX bap_reads");
3853 if (ai->config.len == 0) {
3855 tdsRssiRid rssi_rid;
3856 CapabilityRid cap_rid;
3860 // general configuration (read/modify/write)
3861 status = readConfigRid(ai, lock);
3862 if ( status != SUCCESS ) return ERROR;
3864 status = readCapabilityRid(ai, &cap_rid, lock);
3865 if ( status != SUCCESS ) return ERROR;
3867 status = PC4500_readrid(ai,RID_RSSI,&rssi_rid,sizeof(rssi_rid),lock);
3868 if ( status == SUCCESS ) {
3869 if (ai->rssi || (ai->rssi = kmalloc(512, GFP_KERNEL)) != NULL)
3870 memcpy(ai->rssi, (u8*)&rssi_rid + 2, 512); /* Skip RID length member */
3875 if (cap_rid.softCap & cpu_to_le16(8))
3876 ai->config.rmode |= RXMODE_NORMALIZED_RSSI;
3878 airo_print_warn(ai->dev->name, "unknown received signal "
3881 ai->config.opmode = adhoc ? MODE_STA_IBSS : MODE_STA_ESS;
3882 set_auth_type(ai, AUTH_OPEN);
3883 ai->config.modulation = MOD_CCK;
3885 if (le16_to_cpu(cap_rid.len) >= sizeof(cap_rid) &&
3886 (cap_rid.extSoftCap & cpu_to_le16(1)) &&
3887 micsetup(ai) == SUCCESS) {
3888 ai->config.opmode |= MODE_MIC;
3889 set_bit(FLAG_MIC_CAPABLE, &ai->flags);
3892 /* Save off the MAC */
3893 for( i = 0; i < ETH_ALEN; i++ ) {
3894 mac[i] = ai->config.macAddr[i];
3897 /* Check to see if there are any insmod configured
3900 memset(ai->config.rates,0,sizeof(ai->config.rates));
3901 for( i = 0; i < 8 && rates[i]; i++ ) {
3902 ai->config.rates[i] = rates[i];
3905 set_bit (FLAG_COMMIT, &ai->flags);
3908 /* Setup the SSIDs if present */
3911 for( i = 0; i < 3 && ssids[i]; i++ ) {
3912 size_t len = strlen(ssids[i]);
3915 mySsid.ssids[i].len = cpu_to_le16(len);
3916 memcpy(mySsid.ssids[i].ssid, ssids[i], len);
3918 mySsid.len = cpu_to_le16(sizeof(mySsid));
3921 status = writeConfigRid(ai, lock);
3922 if ( status != SUCCESS ) return ERROR;
3924 /* Set up the SSID list */
3926 status = writeSsidRid(ai, &mySsid, lock);
3927 if ( status != SUCCESS ) return ERROR;
3930 status = enable_MAC(ai, lock);
3931 if (status != SUCCESS)
3934 /* Grab the initial wep key, we gotta save it for auto_wep */
3935 rc = readWepKeyRid(ai, &wkr, 1, lock);
3936 if (rc == SUCCESS) do {
3937 lastindex = wkr.kindex;
3938 if (wkr.kindex == cpu_to_le16(0xffff)) {
3939 ai->defindex = wkr.mac[0];
3941 rc = readWepKeyRid(ai, &wkr, 0, lock);
3942 } while(lastindex != wkr.kindex);
3949 static u16 issuecommand(struct airo_info *ai, Cmd *pCmd, Resp *pRsp) {
3950 // Im really paranoid about letting it run forever!
3951 int max_tries = 600000;
3953 if (IN4500(ai, EVSTAT) & EV_CMD)
3954 OUT4500(ai, EVACK, EV_CMD);
3956 OUT4500(ai, PARAM0, pCmd->parm0);
3957 OUT4500(ai, PARAM1, pCmd->parm1);
3958 OUT4500(ai, PARAM2, pCmd->parm2);
3959 OUT4500(ai, COMMAND, pCmd->cmd);
3961 while (max_tries-- && (IN4500(ai, EVSTAT) & EV_CMD) == 0) {
3962 if ((IN4500(ai, COMMAND)) == pCmd->cmd)
3963 // PC4500 didn't notice command, try again
3964 OUT4500(ai, COMMAND, pCmd->cmd);
3965 if (!in_atomic() && (max_tries & 255) == 0)
3969 if ( max_tries == -1 ) {
3970 airo_print_err(ai->dev->name,
3971 "Max tries exceeded when issuing command");
3972 if (IN4500(ai, COMMAND) & COMMAND_BUSY)
3973 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3977 // command completed
3978 pRsp->status = IN4500(ai, STATUS);
3979 pRsp->rsp0 = IN4500(ai, RESP0);
3980 pRsp->rsp1 = IN4500(ai, RESP1);
3981 pRsp->rsp2 = IN4500(ai, RESP2);
3982 if ((pRsp->status & 0xff00)!=0 && pCmd->cmd != CMD_SOFTRESET)
3983 airo_print_err(ai->dev->name,
3984 "cmd:%x status:%x rsp0:%x rsp1:%x rsp2:%x",
3985 pCmd->cmd, pRsp->status, pRsp->rsp0, pRsp->rsp1,
3988 // clear stuck command busy if necessary
3989 if (IN4500(ai, COMMAND) & COMMAND_BUSY) {
3990 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3992 // acknowledge processing the status/response
3993 OUT4500(ai, EVACK, EV_CMD);
3998 /* Sets up the bap to start exchange data. whichbap should
3999 * be one of the BAP0 or BAP1 defines. Locks should be held before
4001 static int bap_setup(struct airo_info *ai, u16 rid, u16 offset, int whichbap )
4006 OUT4500(ai, SELECT0+whichbap, rid);
4007 OUT4500(ai, OFFSET0+whichbap, offset);
4009 int status = IN4500(ai, OFFSET0+whichbap);
4010 if (status & BAP_BUSY) {
4011 /* This isn't really a timeout, but its kinda
4016 } else if ( status & BAP_ERR ) {
4017 /* invalid rid or offset */
4018 airo_print_err(ai->dev->name, "BAP error %x %d",
4021 } else if (status & BAP_DONE) { // success
4024 if ( !(max_tries--) ) {
4025 airo_print_err(ai->dev->name,
4026 "BAP setup error too many retries\n");
4029 // -- PC4500 missed it, try again
4030 OUT4500(ai, SELECT0+whichbap, rid);
4031 OUT4500(ai, OFFSET0+whichbap, offset);
4036 /* should only be called by aux_bap_read. This aux function and the
4037 following use concepts not documented in the developers guide. I
4038 got them from a patch given to my by Aironet */
4039 static u16 aux_setup(struct airo_info *ai, u16 page,
4040 u16 offset, u16 *len)
4044 OUT4500(ai, AUXPAGE, page);
4045 OUT4500(ai, AUXOFF, 0);
4046 next = IN4500(ai, AUXDATA);
4047 *len = IN4500(ai, AUXDATA)&0xff;
4048 if (offset != 4) OUT4500(ai, AUXOFF, offset);
4052 /* requires call to bap_setup() first */
4053 static int aux_bap_read(struct airo_info *ai, __le16 *pu16Dst,
4054 int bytelen, int whichbap)
4062 unsigned long flags;
4064 spin_lock_irqsave(&ai->aux_lock, flags);
4065 page = IN4500(ai, SWS0+whichbap);
4066 offset = IN4500(ai, SWS2+whichbap);
4067 next = aux_setup(ai, page, offset, &len);
4068 words = (bytelen+1)>>1;
4070 for (i=0; i<words;) {
4072 count = (len>>1) < (words-i) ? (len>>1) : (words-i);
4074 insw( ai->dev->base_addr+DATA0+whichbap,
4077 insb( ai->dev->base_addr+DATA0+whichbap,
4078 pu16Dst+i, count << 1 );
4081 next = aux_setup(ai, next, 4, &len);
4084 spin_unlock_irqrestore(&ai->aux_lock, flags);
4089 /* requires call to bap_setup() first */
4090 static int fast_bap_read(struct airo_info *ai, __le16 *pu16Dst,
4091 int bytelen, int whichbap)
4093 bytelen = (bytelen + 1) & (~1); // round up to even value
4095 insw( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen>>1 );
4097 insb( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen );
4101 /* requires call to bap_setup() first */
4102 static int bap_write(struct airo_info *ai, const __le16 *pu16Src,
4103 int bytelen, int whichbap)
4105 bytelen = (bytelen + 1) & (~1); // round up to even value
4107 outsw( ai->dev->base_addr+DATA0+whichbap,
4108 pu16Src, bytelen>>1 );
4110 outsb( ai->dev->base_addr+DATA0+whichbap, pu16Src, bytelen );
4114 static int PC4500_accessrid(struct airo_info *ai, u16 rid, u16 accmd)
4116 Cmd cmd; /* for issuing commands */
4117 Resp rsp; /* response from commands */
4120 memset(&cmd, 0, sizeof(cmd));
4123 status = issuecommand(ai, &cmd, &rsp);
4124 if (status != 0) return status;
4125 if ( (rsp.status & 0x7F00) != 0) {
4126 return (accmd << 8) + (rsp.rsp0 & 0xFF);
4131 /* Note, that we are using BAP1 which is also used by transmit, so
4132 * we must get a lock. */
4133 static int PC4500_readrid(struct airo_info *ai, u16 rid, void *pBuf, int len, int lock)
4139 if (down_interruptible(&ai->sem))
4142 if (test_bit(FLAG_MPI,&ai->flags)) {
4146 memset(&cmd, 0, sizeof(cmd));
4147 memset(&rsp, 0, sizeof(rsp));
4148 ai->config_desc.rid_desc.valid = 1;
4149 ai->config_desc.rid_desc.len = RIDSIZE;
4150 ai->config_desc.rid_desc.rid = 0;
4151 ai->config_desc.rid_desc.host_addr = ai->ridbus;
4153 cmd.cmd = CMD_ACCESS;
4156 memcpy_toio(ai->config_desc.card_ram_off,
4157 &ai->config_desc.rid_desc, sizeof(Rid));
4159 rc = issuecommand(ai, &cmd, &rsp);
4161 if (rsp.status & 0x7f00)
4164 memcpy(pBuf, ai->config_desc.virtual_host_addr, len);
4167 if ((status = PC4500_accessrid(ai, rid, CMD_ACCESS))!=SUCCESS) {
4171 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4175 // read the rid length field
4176 bap_read(ai, pBuf, 2, BAP1);
4177 // length for remaining part of rid
4178 len = min(len, (int)le16_to_cpu(*(__le16*)pBuf)) - 2;
4181 airo_print_err(ai->dev->name,
4182 "Rid %x has a length of %d which is too short",
4183 (int)rid, (int)len );
4187 // read remainder of the rid
4188 rc = bap_read(ai, ((__le16*)pBuf)+1, len, BAP1);
4196 /* Note, that we are using BAP1 which is also used by transmit, so
4197 * make sure this isn't called when a transmit is happening */
4198 static int PC4500_writerid(struct airo_info *ai, u16 rid,
4199 const void *pBuf, int len, int lock)
4204 *(__le16*)pBuf = cpu_to_le16((u16)len);
4207 if (down_interruptible(&ai->sem))
4210 if (test_bit(FLAG_MPI,&ai->flags)) {
4214 if (test_bit(FLAG_ENABLED, &ai->flags) && (RID_WEP_TEMP != rid))
4215 airo_print_err(ai->dev->name,
4216 "%s: MAC should be disabled (rid=%04x)",
4218 memset(&cmd, 0, sizeof(cmd));
4219 memset(&rsp, 0, sizeof(rsp));
4221 ai->config_desc.rid_desc.valid = 1;
4222 ai->config_desc.rid_desc.len = *((u16 *)pBuf);
4223 ai->config_desc.rid_desc.rid = 0;
4225 cmd.cmd = CMD_WRITERID;
4228 memcpy_toio(ai->config_desc.card_ram_off,
4229 &ai->config_desc.rid_desc, sizeof(Rid));
4231 if (len < 4 || len > 2047) {
4232 airo_print_err(ai->dev->name, "%s: len=%d", __func__, len);
4235 memcpy(ai->config_desc.virtual_host_addr,
4238 rc = issuecommand(ai, &cmd, &rsp);
4239 if ((rc & 0xff00) != 0) {
4240 airo_print_err(ai->dev->name, "%s: Write rid Error %d",
4242 airo_print_err(ai->dev->name, "%s: Cmd=%04x",
4246 if ((rsp.status & 0x7f00))
4250 // --- first access so that we can write the rid data
4251 if ( (status = PC4500_accessrid(ai, rid, CMD_ACCESS)) != 0) {
4255 // --- now write the rid data
4256 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4260 bap_write(ai, pBuf, len, BAP1);
4261 // ---now commit the rid data
4262 rc = PC4500_accessrid(ai, rid, 0x100|CMD_ACCESS);
4270 /* Allocates a FID to be used for transmitting packets. We only use
4272 static u16 transmit_allocate(struct airo_info *ai, int lenPayload, int raw)
4274 unsigned int loop = 3000;
4280 cmd.cmd = CMD_ALLOCATETX;
4281 cmd.parm0 = lenPayload;
4282 if (down_interruptible(&ai->sem))
4284 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
4288 if ( (rsp.status & 0xFF00) != 0) {
4292 /* wait for the allocate event/indication
4293 * It makes me kind of nervous that this can just sit here and spin,
4294 * but in practice it only loops like four times. */
4295 while (((IN4500(ai, EVSTAT) & EV_ALLOC) == 0) && --loop);
4301 // get the allocated fid and acknowledge
4302 txFid = IN4500(ai, TXALLOCFID);
4303 OUT4500(ai, EVACK, EV_ALLOC);
4305 /* The CARD is pretty cool since it converts the ethernet packet
4306 * into 802.11. Also note that we don't release the FID since we
4307 * will be using the same one over and over again. */
4308 /* We only have to setup the control once since we are not
4309 * releasing the fid. */
4311 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_11
4312 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4314 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_3
4315 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4316 if (bap_setup(ai, txFid, 0x0008, BAP1) != SUCCESS)
4319 bap_write(ai, &txControl, sizeof(txControl), BAP1);
4327 /* In general BAP1 is dedicated to transmiting packets. However,
4328 since we need a BAP when accessing RIDs, we also use BAP1 for that.
4329 Make sure the BAP1 spinlock is held when this is called. */
4330 static int transmit_802_3_packet(struct airo_info *ai, int len, char *pPacket)
4341 if (len <= ETH_ALEN * 2) {
4342 airo_print_warn(ai->dev->name, "Short packet %d", len);
4345 len -= ETH_ALEN * 2;
4347 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
4348 (ntohs(((__be16 *)pPacket)[6]) != 0x888E)) {
4349 if (encapsulate(ai,(etherHead *)pPacket,&pMic,len) != SUCCESS)
4351 miclen = sizeof(pMic);
4353 // packet is destination[6], source[6], payload[len-12]
4354 // write the payload length and dst/src/payload
4355 if (bap_setup(ai, txFid, 0x0036, BAP1) != SUCCESS) return ERROR;
4356 /* The hardware addresses aren't counted as part of the payload, so
4357 * we have to subtract the 12 bytes for the addresses off */
4358 payloadLen = cpu_to_le16(len + miclen);
4359 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4360 bap_write(ai, (__le16*)pPacket, sizeof(etherHead), BAP1);
4362 bap_write(ai, (__le16*)&pMic, miclen, BAP1);
4363 bap_write(ai, (__le16*)(pPacket + sizeof(etherHead)), len, BAP1);
4364 // issue the transmit command
4365 memset( &cmd, 0, sizeof( cmd ) );
4366 cmd.cmd = CMD_TRANSMIT;
4368 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4369 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4373 static int transmit_802_11_packet(struct airo_info *ai, int len, char *pPacket)
4375 __le16 fc, payloadLen;
4379 static u8 tail[(30-10) + 2 + 6] = {[30-10] = 6};
4380 /* padding of header to full size + le16 gaplen (6) + gaplen bytes */
4384 fc = *(__le16*)pPacket;
4385 hdrlen = header_len(fc);
4388 airo_print_warn(ai->dev->name, "Short packet %d", len);
4392 /* packet is 802.11 header + payload
4393 * write the payload length and dst/src/payload */
4394 if (bap_setup(ai, txFid, 6, BAP1) != SUCCESS) return ERROR;
4395 /* The 802.11 header aren't counted as part of the payload, so
4396 * we have to subtract the header bytes off */
4397 payloadLen = cpu_to_le16(len-hdrlen);
4398 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4399 if (bap_setup(ai, txFid, 0x0014, BAP1) != SUCCESS) return ERROR;
4400 bap_write(ai, (__le16 *)pPacket, hdrlen, BAP1);
4401 bap_write(ai, (__le16 *)(tail + (hdrlen - 10)), 38 - hdrlen, BAP1);
4403 bap_write(ai, (__le16 *)(pPacket + hdrlen), len - hdrlen, BAP1);
4404 // issue the transmit command
4405 memset( &cmd, 0, sizeof( cmd ) );
4406 cmd.cmd = CMD_TRANSMIT;
4408 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4409 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4414 * This is the proc_fs routines. It is a bit messier than I would
4415 * like! Feel free to clean it up!
4418 static ssize_t proc_read( struct file *file,
4419 char __user *buffer,
4423 static ssize_t proc_write( struct file *file,
4424 const char __user *buffer,
4427 static int proc_close( struct inode *inode, struct file *file );
4429 static int proc_stats_open( struct inode *inode, struct file *file );
4430 static int proc_statsdelta_open( struct inode *inode, struct file *file );
4431 static int proc_status_open( struct inode *inode, struct file *file );
4432 static int proc_SSID_open( struct inode *inode, struct file *file );
4433 static int proc_APList_open( struct inode *inode, struct file *file );
4434 static int proc_BSSList_open( struct inode *inode, struct file *file );
4435 static int proc_config_open( struct inode *inode, struct file *file );
4436 static int proc_wepkey_open( struct inode *inode, struct file *file );
4438 static const struct proc_ops proc_statsdelta_ops = {
4439 .proc_read = proc_read,
4440 .proc_open = proc_statsdelta_open,
4441 .proc_release = proc_close,
4442 .proc_lseek = default_llseek,
4445 static const struct proc_ops proc_stats_ops = {
4446 .proc_read = proc_read,
4447 .proc_open = proc_stats_open,
4448 .proc_release = proc_close,
4449 .proc_lseek = default_llseek,
4452 static const struct proc_ops proc_status_ops = {
4453 .proc_read = proc_read,
4454 .proc_open = proc_status_open,
4455 .proc_release = proc_close,
4456 .proc_lseek = default_llseek,
4459 static const struct proc_ops proc_SSID_ops = {
4460 .proc_read = proc_read,
4461 .proc_write = proc_write,
4462 .proc_open = proc_SSID_open,
4463 .proc_release = proc_close,
4464 .proc_lseek = default_llseek,
4467 static const struct proc_ops proc_BSSList_ops = {
4468 .proc_read = proc_read,
4469 .proc_write = proc_write,
4470 .proc_open = proc_BSSList_open,
4471 .proc_release = proc_close,
4472 .proc_lseek = default_llseek,
4475 static const struct proc_ops proc_APList_ops = {
4476 .proc_read = proc_read,
4477 .proc_write = proc_write,
4478 .proc_open = proc_APList_open,
4479 .proc_release = proc_close,
4480 .proc_lseek = default_llseek,
4483 static const struct proc_ops proc_config_ops = {
4484 .proc_read = proc_read,
4485 .proc_write = proc_write,
4486 .proc_open = proc_config_open,
4487 .proc_release = proc_close,
4488 .proc_lseek = default_llseek,
4491 static const struct proc_ops proc_wepkey_ops = {
4492 .proc_read = proc_read,
4493 .proc_write = proc_write,
4494 .proc_open = proc_wepkey_open,
4495 .proc_release = proc_close,
4496 .proc_lseek = default_llseek,
4499 static struct proc_dir_entry *airo_entry;
4508 void (*on_close) (struct inode *, struct file *);
4511 static int setup_proc_entry( struct net_device *dev,
4512 struct airo_info *apriv ) {
4513 struct proc_dir_entry *entry;
4515 /* First setup the device directory */
4516 strcpy(apriv->proc_name,dev->name);
4517 apriv->proc_entry = proc_mkdir_mode(apriv->proc_name, airo_perm,
4519 if (!apriv->proc_entry)
4521 proc_set_user(apriv->proc_entry, proc_kuid, proc_kgid);
4523 /* Setup the StatsDelta */
4524 entry = proc_create_data("StatsDelta", 0444 & proc_perm,
4525 apriv->proc_entry, &proc_statsdelta_ops, dev);
4528 proc_set_user(entry, proc_kuid, proc_kgid);
4530 /* Setup the Stats */
4531 entry = proc_create_data("Stats", 0444 & proc_perm,
4532 apriv->proc_entry, &proc_stats_ops, dev);
4535 proc_set_user(entry, proc_kuid, proc_kgid);
4537 /* Setup the Status */
4538 entry = proc_create_data("Status", 0444 & proc_perm,
4539 apriv->proc_entry, &proc_status_ops, dev);
4542 proc_set_user(entry, proc_kuid, proc_kgid);
4544 /* Setup the Config */
4545 entry = proc_create_data("Config", proc_perm,
4546 apriv->proc_entry, &proc_config_ops, dev);
4549 proc_set_user(entry, proc_kuid, proc_kgid);
4551 /* Setup the SSID */
4552 entry = proc_create_data("SSID", proc_perm,
4553 apriv->proc_entry, &proc_SSID_ops, dev);
4556 proc_set_user(entry, proc_kuid, proc_kgid);
4558 /* Setup the APList */
4559 entry = proc_create_data("APList", proc_perm,
4560 apriv->proc_entry, &proc_APList_ops, dev);
4563 proc_set_user(entry, proc_kuid, proc_kgid);
4565 /* Setup the BSSList */
4566 entry = proc_create_data("BSSList", proc_perm,
4567 apriv->proc_entry, &proc_BSSList_ops, dev);
4570 proc_set_user(entry, proc_kuid, proc_kgid);
4572 /* Setup the WepKey */
4573 entry = proc_create_data("WepKey", proc_perm,
4574 apriv->proc_entry, &proc_wepkey_ops, dev);
4577 proc_set_user(entry, proc_kuid, proc_kgid);
4581 remove_proc_subtree(apriv->proc_name, airo_entry);
4585 static int takedown_proc_entry( struct net_device *dev,
4586 struct airo_info *apriv )
4588 remove_proc_subtree(apriv->proc_name, airo_entry);
4593 * What we want from the proc_fs is to be able to efficiently read
4594 * and write the configuration. To do this, we want to read the
4595 * configuration when the file is opened and write it when the file is
4596 * closed. So basically we allocate a read buffer at open and fill it
4597 * with data, and allocate a write buffer and read it at close.
4601 * The read routine is generic, it relies on the preallocated rbuffer
4602 * to supply the data.
4604 static ssize_t proc_read( struct file *file,
4605 char __user *buffer,
4609 struct proc_data *priv = file->private_data;
4614 return simple_read_from_buffer(buffer, len, offset, priv->rbuffer,
4619 * The write routine is generic, it fills in a preallocated rbuffer
4620 * to supply the data.
4622 static ssize_t proc_write( struct file *file,
4623 const char __user *buffer,
4628 struct proc_data *priv = file->private_data;
4633 ret = simple_write_to_buffer(priv->wbuffer, priv->maxwritelen, offset,
4636 priv->writelen = max_t(int, priv->writelen, *offset);
4641 static int proc_status_open(struct inode *inode, struct file *file)
4643 struct proc_data *data;
4644 struct net_device *dev = PDE_DATA(inode);
4645 struct airo_info *apriv = dev->ml_priv;
4646 CapabilityRid cap_rid;
4647 StatusRid status_rid;
4651 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4653 data = file->private_data;
4654 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
4655 kfree (file->private_data);
4659 readStatusRid(apriv, &status_rid, 1);
4660 readCapabilityRid(apriv, &cap_rid, 1);
4662 mode = le16_to_cpu(status_rid.mode);
4664 i = sprintf(data->rbuffer, "Status: %s%s%s%s%s%s%s%s%s\n",
4665 mode & 1 ? "CFG ": "",
4666 mode & 2 ? "ACT ": "",
4667 mode & 0x10 ? "SYN ": "",
4668 mode & 0x20 ? "LNK ": "",
4669 mode & 0x40 ? "LEAP ": "",
4670 mode & 0x80 ? "PRIV ": "",
4671 mode & 0x100 ? "KEY ": "",
4672 mode & 0x200 ? "WEP ": "",
4673 mode & 0x8000 ? "ERR ": "");
4674 sprintf( data->rbuffer+i, "Mode: %x\n"
4675 "Signal Strength: %d\n"
4676 "Signal Quality: %d\n"
4681 "Driver Version: %s\n"
4682 "Device: %s\nManufacturer: %s\nFirmware Version: %s\n"
4683 "Radio type: %x\nCountry: %x\nHardware Version: %x\n"
4684 "Software Version: %x\nSoftware Subversion: %x\n"
4685 "Boot block version: %x\n",
4686 le16_to_cpu(status_rid.mode),
4687 le16_to_cpu(status_rid.normalizedSignalStrength),
4688 le16_to_cpu(status_rid.signalQuality),
4689 le16_to_cpu(status_rid.SSIDlen),
4692 le16_to_cpu(status_rid.channel),
4693 le16_to_cpu(status_rid.currentXmitRate) / 2,
4698 le16_to_cpu(cap_rid.radioType),
4699 le16_to_cpu(cap_rid.country),
4700 le16_to_cpu(cap_rid.hardVer),
4701 le16_to_cpu(cap_rid.softVer),
4702 le16_to_cpu(cap_rid.softSubVer),
4703 le16_to_cpu(cap_rid.bootBlockVer));
4704 data->readlen = strlen( data->rbuffer );
4708 static int proc_stats_rid_open(struct inode*, struct file*, u16);
4709 static int proc_statsdelta_open( struct inode *inode,
4710 struct file *file ) {
4711 if (file->f_mode&FMODE_WRITE) {
4712 return proc_stats_rid_open(inode, file, RID_STATSDELTACLEAR);
4714 return proc_stats_rid_open(inode, file, RID_STATSDELTA);
4717 static int proc_stats_open( struct inode *inode, struct file *file ) {
4718 return proc_stats_rid_open(inode, file, RID_STATS);
4721 static int proc_stats_rid_open( struct inode *inode,
4725 struct proc_data *data;
4726 struct net_device *dev = PDE_DATA(inode);
4727 struct airo_info *apriv = dev->ml_priv;
4730 __le32 *vals = stats.vals;
4733 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4735 data = file->private_data;
4736 if ((data->rbuffer = kmalloc( 4096, GFP_KERNEL )) == NULL) {
4737 kfree (file->private_data);
4741 readStatsRid(apriv, &stats, rid, 1);
4742 len = le16_to_cpu(stats.len);
4745 for(i=0; statsLabels[i]!=(char *)-1 && i*4<len; i++) {
4746 if (!statsLabels[i]) continue;
4747 if (j+strlen(statsLabels[i])+16>4096) {
4748 airo_print_warn(apriv->dev->name,
4749 "Potentially disastrous buffer overflow averted!");
4752 j+=sprintf(data->rbuffer+j, "%s: %u\n", statsLabels[i],
4753 le32_to_cpu(vals[i]));
4756 airo_print_warn(apriv->dev->name, "Got a short rid");
4762 static int get_dec_u16( char *buffer, int *start, int limit ) {
4765 for (value = 0; *start < limit && buffer[*start] >= '0' &&
4766 buffer[*start] <= '9'; (*start)++) {
4769 value += buffer[*start] - '0';
4771 if ( !valid ) return -1;
4775 static int airo_config_commit(struct net_device *dev,
4776 struct iw_request_info *info, void *zwrq,
4779 static inline int sniffing_mode(struct airo_info *ai)
4781 return (le16_to_cpu(ai->config.rmode) & le16_to_cpu(RXMODE_MASK)) >=
4782 le16_to_cpu(RXMODE_RFMON);
4785 static void proc_config_on_close(struct inode *inode, struct file *file)
4787 struct proc_data *data = file->private_data;
4788 struct net_device *dev = PDE_DATA(inode);
4789 struct airo_info *ai = dev->ml_priv;
4792 if ( !data->writelen ) return;
4794 readConfigRid(ai, 1);
4795 set_bit (FLAG_COMMIT, &ai->flags);
4797 line = data->wbuffer;
4799 /*** Mode processing */
4800 if ( !strncmp( line, "Mode: ", 6 ) ) {
4802 if (sniffing_mode(ai))
4803 set_bit (FLAG_RESET, &ai->flags);
4804 ai->config.rmode &= ~RXMODE_FULL_MASK;
4805 clear_bit (FLAG_802_11, &ai->flags);
4806 ai->config.opmode &= ~MODE_CFG_MASK;
4807 ai->config.scanMode = SCANMODE_ACTIVE;
4808 if ( line[0] == 'a' ) {
4809 ai->config.opmode |= MODE_STA_IBSS;
4811 ai->config.opmode |= MODE_STA_ESS;
4812 if ( line[0] == 'r' ) {
4813 ai->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
4814 ai->config.scanMode = SCANMODE_PASSIVE;
4815 set_bit (FLAG_802_11, &ai->flags);
4816 } else if ( line[0] == 'y' ) {
4817 ai->config.rmode |= RXMODE_RFMON_ANYBSS | RXMODE_DISABLE_802_3_HEADER;
4818 ai->config.scanMode = SCANMODE_PASSIVE;
4819 set_bit (FLAG_802_11, &ai->flags);
4820 } else if ( line[0] == 'l' )
4821 ai->config.rmode |= RXMODE_LANMON;
4823 set_bit (FLAG_COMMIT, &ai->flags);
4826 /*** Radio status */
4827 else if (!strncmp(line,"Radio: ", 7)) {
4829 if (!strncmp(line,"off",3)) {
4830 set_bit (FLAG_RADIO_OFF, &ai->flags);
4832 clear_bit (FLAG_RADIO_OFF, &ai->flags);
4835 /*** NodeName processing */
4836 else if ( !strncmp( line, "NodeName: ", 10 ) ) {
4840 memset( ai->config.nodeName, 0, 16 );
4841 /* Do the name, assume a space between the mode and node name */
4842 for( j = 0; j < 16 && line[j] != '\n'; j++ ) {
4843 ai->config.nodeName[j] = line[j];
4845 set_bit (FLAG_COMMIT, &ai->flags);
4848 /*** PowerMode processing */
4849 else if ( !strncmp( line, "PowerMode: ", 11 ) ) {
4851 if ( !strncmp( line, "PSPCAM", 6 ) ) {
4852 ai->config.powerSaveMode = POWERSAVE_PSPCAM;
4853 set_bit (FLAG_COMMIT, &ai->flags);
4854 } else if ( !strncmp( line, "PSP", 3 ) ) {
4855 ai->config.powerSaveMode = POWERSAVE_PSP;
4856 set_bit (FLAG_COMMIT, &ai->flags);
4858 ai->config.powerSaveMode = POWERSAVE_CAM;
4859 set_bit (FLAG_COMMIT, &ai->flags);
4861 } else if ( !strncmp( line, "DataRates: ", 11 ) ) {
4862 int v, i = 0, k = 0; /* i is index into line,
4863 k is index to rates */
4866 while((v = get_dec_u16(line, &i, 3))!=-1) {
4867 ai->config.rates[k++] = (u8)v;
4871 set_bit (FLAG_COMMIT, &ai->flags);
4872 } else if ( !strncmp( line, "Channel: ", 9 ) ) {
4875 v = get_dec_u16(line, &i, i+3);
4877 ai->config.channelSet = cpu_to_le16(v);
4878 set_bit (FLAG_COMMIT, &ai->flags);
4880 } else if ( !strncmp( line, "XmitPower: ", 11 ) ) {
4883 v = get_dec_u16(line, &i, i+3);
4885 ai->config.txPower = cpu_to_le16(v);
4886 set_bit (FLAG_COMMIT, &ai->flags);
4888 } else if ( !strncmp( line, "WEP: ", 5 ) ) {
4892 set_auth_type(ai, AUTH_SHAREDKEY);
4895 set_auth_type(ai, AUTH_ENCRYPT);
4898 set_auth_type(ai, AUTH_OPEN);
4901 set_bit (FLAG_COMMIT, &ai->flags);
4902 } else if ( !strncmp( line, "LongRetryLimit: ", 16 ) ) {
4906 v = get_dec_u16(line, &i, 3);
4907 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4908 ai->config.longRetryLimit = cpu_to_le16(v);
4909 set_bit (FLAG_COMMIT, &ai->flags);
4910 } else if ( !strncmp( line, "ShortRetryLimit: ", 17 ) ) {
4914 v = get_dec_u16(line, &i, 3);
4915 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4916 ai->config.shortRetryLimit = cpu_to_le16(v);
4917 set_bit (FLAG_COMMIT, &ai->flags);
4918 } else if ( !strncmp( line, "RTSThreshold: ", 14 ) ) {
4922 v = get_dec_u16(line, &i, 4);
4923 v = (v<0) ? 0 : ((v>AIRO_DEF_MTU) ? AIRO_DEF_MTU : v);
4924 ai->config.rtsThres = cpu_to_le16(v);
4925 set_bit (FLAG_COMMIT, &ai->flags);
4926 } else if ( !strncmp( line, "TXMSDULifetime: ", 16 ) ) {
4930 v = get_dec_u16(line, &i, 5);
4932 ai->config.txLifetime = cpu_to_le16(v);
4933 set_bit (FLAG_COMMIT, &ai->flags);
4934 } else if ( !strncmp( line, "RXMSDULifetime: ", 16 ) ) {
4938 v = get_dec_u16(line, &i, 5);
4940 ai->config.rxLifetime = cpu_to_le16(v);
4941 set_bit (FLAG_COMMIT, &ai->flags);
4942 } else if ( !strncmp( line, "TXDiversity: ", 13 ) ) {
4943 ai->config.txDiversity =
4944 (line[13]=='l') ? 1 :
4945 ((line[13]=='r')? 2: 3);
4946 set_bit (FLAG_COMMIT, &ai->flags);
4947 } else if ( !strncmp( line, "RXDiversity: ", 13 ) ) {
4948 ai->config.rxDiversity =
4949 (line[13]=='l') ? 1 :
4950 ((line[13]=='r')? 2: 3);
4951 set_bit (FLAG_COMMIT, &ai->flags);
4952 } else if ( !strncmp( line, "FragThreshold: ", 15 ) ) {
4956 v = get_dec_u16(line, &i, 4);
4957 v = (v<256) ? 256 : ((v>AIRO_DEF_MTU) ? AIRO_DEF_MTU : v);
4958 v = v & 0xfffe; /* Make sure its even */
4959 ai->config.fragThresh = cpu_to_le16(v);
4960 set_bit (FLAG_COMMIT, &ai->flags);
4961 } else if (!strncmp(line, "Modulation: ", 12)) {
4964 case 'd': ai->config.modulation=MOD_DEFAULT; set_bit(FLAG_COMMIT, &ai->flags); break;
4965 case 'c': ai->config.modulation=MOD_CCK; set_bit(FLAG_COMMIT, &ai->flags); break;
4966 case 'm': ai->config.modulation=MOD_MOK; set_bit(FLAG_COMMIT, &ai->flags); break;
4967 default: airo_print_warn(ai->dev->name, "Unknown modulation");
4969 } else if (!strncmp(line, "Preamble: ", 10)) {
4972 case 'a': ai->config.preamble=PREAMBLE_AUTO; set_bit(FLAG_COMMIT, &ai->flags); break;
4973 case 'l': ai->config.preamble=PREAMBLE_LONG; set_bit(FLAG_COMMIT, &ai->flags); break;
4974 case 's': ai->config.preamble=PREAMBLE_SHORT; set_bit(FLAG_COMMIT, &ai->flags); break;
4975 default: airo_print_warn(ai->dev->name, "Unknown preamble");
4978 airo_print_warn(ai->dev->name, "Couldn't figure out %s", line);
4980 while( line[0] && line[0] != '\n' ) line++;
4981 if ( line[0] ) line++;
4983 airo_config_commit(dev, NULL, NULL, NULL);
4986 static const char *get_rmode(__le16 mode)
4988 switch(mode & RXMODE_MASK) {
4989 case RXMODE_RFMON: return "rfmon";
4990 case RXMODE_RFMON_ANYBSS: return "yna (any) bss rfmon";
4991 case RXMODE_LANMON: return "lanmon";
4996 static int proc_config_open(struct inode *inode, struct file *file)
4998 struct proc_data *data;
4999 struct net_device *dev = PDE_DATA(inode);
5000 struct airo_info *ai = dev->ml_priv;
5004 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5006 data = file->private_data;
5007 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
5008 kfree (file->private_data);
5011 if ((data->wbuffer = kzalloc( 2048, GFP_KERNEL )) == NULL) {
5012 kfree (data->rbuffer);
5013 kfree (file->private_data);
5016 data->maxwritelen = 2048;
5017 data->on_close = proc_config_on_close;
5019 readConfigRid(ai, 1);
5021 mode = ai->config.opmode & MODE_CFG_MASK;
5022 i = sprintf( data->rbuffer,
5027 "DataRates: %d %d %d %d %d %d %d %d\n"
5030 mode == MODE_STA_IBSS ? "adhoc" :
5031 mode == MODE_STA_ESS ? get_rmode(ai->config.rmode):
5032 mode == MODE_AP ? "AP" :
5033 mode == MODE_AP_RPTR ? "AP RPTR" : "Error",
5034 test_bit(FLAG_RADIO_OFF, &ai->flags) ? "off" : "on",
5035 ai->config.nodeName,
5036 ai->config.powerSaveMode == POWERSAVE_CAM ? "CAM" :
5037 ai->config.powerSaveMode == POWERSAVE_PSP ? "PSP" :
5038 ai->config.powerSaveMode == POWERSAVE_PSPCAM ? "PSPCAM" :
5040 (int)ai->config.rates[0],
5041 (int)ai->config.rates[1],
5042 (int)ai->config.rates[2],
5043 (int)ai->config.rates[3],
5044 (int)ai->config.rates[4],
5045 (int)ai->config.rates[5],
5046 (int)ai->config.rates[6],
5047 (int)ai->config.rates[7],
5048 le16_to_cpu(ai->config.channelSet),
5049 le16_to_cpu(ai->config.txPower)
5051 sprintf( data->rbuffer + i,
5052 "LongRetryLimit: %d\n"
5053 "ShortRetryLimit: %d\n"
5054 "RTSThreshold: %d\n"
5055 "TXMSDULifetime: %d\n"
5056 "RXMSDULifetime: %d\n"
5059 "FragThreshold: %d\n"
5063 le16_to_cpu(ai->config.longRetryLimit),
5064 le16_to_cpu(ai->config.shortRetryLimit),
5065 le16_to_cpu(ai->config.rtsThres),
5066 le16_to_cpu(ai->config.txLifetime),
5067 le16_to_cpu(ai->config.rxLifetime),
5068 ai->config.txDiversity == 1 ? "left" :
5069 ai->config.txDiversity == 2 ? "right" : "both",
5070 ai->config.rxDiversity == 1 ? "left" :
5071 ai->config.rxDiversity == 2 ? "right" : "both",
5072 le16_to_cpu(ai->config.fragThresh),
5073 ai->config.authType == AUTH_ENCRYPT ? "encrypt" :
5074 ai->config.authType == AUTH_SHAREDKEY ? "shared" : "open",
5075 ai->config.modulation == MOD_DEFAULT ? "default" :
5076 ai->config.modulation == MOD_CCK ? "cck" :
5077 ai->config.modulation == MOD_MOK ? "mok" : "error",
5078 ai->config.preamble == PREAMBLE_AUTO ? "auto" :
5079 ai->config.preamble == PREAMBLE_LONG ? "long" :
5080 ai->config.preamble == PREAMBLE_SHORT ? "short" : "error"
5082 data->readlen = strlen( data->rbuffer );
5086 static void proc_SSID_on_close(struct inode *inode, struct file *file)
5088 struct proc_data *data = file->private_data;
5089 struct net_device *dev = PDE_DATA(inode);
5090 struct airo_info *ai = dev->ml_priv;
5093 char *p = data->wbuffer;
5094 char *end = p + data->writelen;
5096 if (!data->writelen)
5099 *end = '\n'; /* sentinel; we have space for it */
5101 memset(&SSID_rid, 0, sizeof(SSID_rid));
5103 for (i = 0; i < 3 && p < end; i++) {
5105 /* copy up to 32 characters from this line */
5106 while (*p != '\n' && j < 32)
5107 SSID_rid.ssids[i].ssid[j++] = *p++;
5110 SSID_rid.ssids[i].len = cpu_to_le16(j);
5111 /* skip to the beginning of the next line */
5112 while (*p++ != '\n')
5116 SSID_rid.len = cpu_to_le16(sizeof(SSID_rid));
5118 writeSsidRid(ai, &SSID_rid, 1);
5122 static void proc_APList_on_close( struct inode *inode, struct file *file ) {
5123 struct proc_data *data = file->private_data;
5124 struct net_device *dev = PDE_DATA(inode);
5125 struct airo_info *ai = dev->ml_priv;
5126 APListRid *APList_rid = &ai->APList;
5129 if ( !data->writelen ) return;
5131 memset(APList_rid, 0, sizeof(*APList_rid));
5132 APList_rid->len = cpu_to_le16(sizeof(*APList_rid));
5134 for (i = 0; i < 4 && data->writelen >= (i + 1) * 6 * 3; i++)
5135 mac_pton(data->wbuffer + i * 6 * 3, APList_rid->ap[i]);
5138 writeAPListRid(ai, APList_rid, 1);
5142 /* This function wraps PC4500_writerid with a MAC disable */
5143 static int do_writerid( struct airo_info *ai, u16 rid, const void *rid_data,
5144 int len, int dummy ) {
5148 rc = PC4500_writerid(ai, rid, rid_data, len, 1);
5153 /* Returns the WEP key at the specified index, or -1 if that key does
5154 * not exist. The buffer is assumed to be at least 16 bytes in length.
5156 static int get_wep_key(struct airo_info *ai, u16 index, char *buf, u16 buflen)
5162 rc = readWepKeyRid(ai, &wkr, 1, 1);
5166 lastindex = wkr.kindex;
5167 if (le16_to_cpu(wkr.kindex) == index) {
5168 int klen = min_t(int, buflen, le16_to_cpu(wkr.klen));
5169 memcpy(buf, wkr.key, klen);
5172 rc = readWepKeyRid(ai, &wkr, 0, 1);
5175 } while (lastindex != wkr.kindex);
5179 static int get_wep_tx_idx(struct airo_info *ai)
5185 rc = readWepKeyRid(ai, &wkr, 1, 1);
5189 lastindex = wkr.kindex;
5190 if (wkr.kindex == cpu_to_le16(0xffff))
5192 rc = readWepKeyRid(ai, &wkr, 0, 1);
5195 } while (lastindex != wkr.kindex);
5199 static int set_wep_key(struct airo_info *ai, u16 index, const char *key,
5200 u16 keylen, int perm, int lock)
5202 static const unsigned char macaddr[ETH_ALEN] = { 0x01, 0, 0, 0, 0, 0 };
5206 if (WARN_ON(keylen == 0))
5209 memset(&wkr, 0, sizeof(wkr));
5210 wkr.len = cpu_to_le16(sizeof(wkr));
5211 wkr.kindex = cpu_to_le16(index);
5212 wkr.klen = cpu_to_le16(keylen);
5213 memcpy(wkr.key, key, keylen);
5214 memcpy(wkr.mac, macaddr, ETH_ALEN);
5216 if (perm) disable_MAC(ai, lock);
5217 rc = writeWepKeyRid(ai, &wkr, perm, lock);
5218 if (perm) enable_MAC(ai, lock);
5222 static int set_wep_tx_idx(struct airo_info *ai, u16 index, int perm, int lock)
5227 memset(&wkr, 0, sizeof(wkr));
5228 wkr.len = cpu_to_le16(sizeof(wkr));
5229 wkr.kindex = cpu_to_le16(0xffff);
5230 wkr.mac[0] = (char)index;
5233 ai->defindex = (char)index;
5234 disable_MAC(ai, lock);
5237 rc = writeWepKeyRid(ai, &wkr, perm, lock);
5240 enable_MAC(ai, lock);
5244 static void proc_wepkey_on_close( struct inode *inode, struct file *file ) {
5245 struct proc_data *data;
5246 struct net_device *dev = PDE_DATA(inode);
5247 struct airo_info *ai = dev->ml_priv;
5253 memset(key, 0, sizeof(key));
5255 data = file->private_data;
5256 if ( !data->writelen ) return;
5258 if (data->wbuffer[0] >= '0' && data->wbuffer[0] <= '3' &&
5259 (data->wbuffer[1] == ' ' || data->wbuffer[1] == '\n')) {
5260 index = data->wbuffer[0] - '0';
5261 if (data->wbuffer[1] == '\n') {
5262 rc = set_wep_tx_idx(ai, index, 1, 1);
5264 airo_print_err(ai->dev->name, "failed to set "
5265 "WEP transmit index to %d: %d.",
5272 airo_print_err(ai->dev->name, "WepKey passed invalid key index");
5276 for( i = 0; i < 16*3 && data->wbuffer[i+j]; i++ ) {
5279 key[i/3] = hex_to_bin(data->wbuffer[i+j])<<4;
5282 key[i/3] |= hex_to_bin(data->wbuffer[i+j]);
5287 rc = set_wep_key(ai, index, key, i/3, 1, 1);
5289 airo_print_err(ai->dev->name, "failed to set WEP key at index "
5290 "%d: %d.", index, rc);
5294 static int proc_wepkey_open( struct inode *inode, struct file *file )
5296 struct proc_data *data;
5297 struct net_device *dev = PDE_DATA(inode);
5298 struct airo_info *ai = dev->ml_priv;
5305 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5307 memset(&wkr, 0, sizeof(wkr));
5308 data = file->private_data;
5309 if ((data->rbuffer = kzalloc( 180, GFP_KERNEL )) == NULL) {
5310 kfree (file->private_data);
5314 data->maxwritelen = 80;
5315 if ((data->wbuffer = kzalloc( 80, GFP_KERNEL )) == NULL) {
5316 kfree (data->rbuffer);
5317 kfree (file->private_data);
5320 data->on_close = proc_wepkey_on_close;
5322 ptr = data->rbuffer;
5323 strcpy(ptr, "No wep keys\n");
5324 rc = readWepKeyRid(ai, &wkr, 1, 1);
5325 if (rc == SUCCESS) do {
5326 lastindex = wkr.kindex;
5327 if (wkr.kindex == cpu_to_le16(0xffff)) {
5328 j += sprintf(ptr+j, "Tx key = %d\n",
5331 j += sprintf(ptr+j, "Key %d set with length = %d\n",
5332 le16_to_cpu(wkr.kindex),
5333 le16_to_cpu(wkr.klen));
5335 readWepKeyRid(ai, &wkr, 0, 1);
5336 } while((lastindex != wkr.kindex) && (j < 180-30));
5338 data->readlen = strlen( data->rbuffer );
5342 static int proc_SSID_open(struct inode *inode, struct file *file)
5344 struct proc_data *data;
5345 struct net_device *dev = PDE_DATA(inode);
5346 struct airo_info *ai = dev->ml_priv;
5351 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5353 data = file->private_data;
5354 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5355 kfree (file->private_data);
5359 data->maxwritelen = 33*3;
5360 /* allocate maxwritelen + 1; we'll want a sentinel */
5361 if ((data->wbuffer = kzalloc(33*3 + 1, GFP_KERNEL)) == NULL) {
5362 kfree (data->rbuffer);
5363 kfree (file->private_data);
5366 data->on_close = proc_SSID_on_close;
5368 readSsidRid(ai, &SSID_rid);
5369 ptr = data->rbuffer;
5370 for (i = 0; i < 3; i++) {
5372 size_t len = le16_to_cpu(SSID_rid.ssids[i].len);
5377 for (j = 0; j < len && SSID_rid.ssids[i].ssid[j]; j++)
5378 *ptr++ = SSID_rid.ssids[i].ssid[j];
5382 data->readlen = strlen( data->rbuffer );
5386 static int proc_APList_open( struct inode *inode, struct file *file ) {
5387 struct proc_data *data;
5388 struct net_device *dev = PDE_DATA(inode);
5389 struct airo_info *ai = dev->ml_priv;
5392 APListRid *APList_rid = &ai->APList;
5394 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5396 data = file->private_data;
5397 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5398 kfree (file->private_data);
5402 data->maxwritelen = 4*6*3;
5403 if ((data->wbuffer = kzalloc( data->maxwritelen, GFP_KERNEL )) == NULL) {
5404 kfree (data->rbuffer);
5405 kfree (file->private_data);
5408 data->on_close = proc_APList_on_close;
5410 ptr = data->rbuffer;
5411 for( i = 0; i < 4; i++ ) {
5412 // We end when we find a zero MAC
5413 if ( !*(int*)APList_rid->ap[i] &&
5414 !*(int*)&APList_rid->ap[i][2]) break;
5415 ptr += sprintf(ptr, "%pM\n", APList_rid->ap[i]);
5417 if (i==0) ptr += sprintf(ptr, "Not using specific APs\n");
5420 data->readlen = strlen( data->rbuffer );
5424 static int proc_BSSList_open( struct inode *inode, struct file *file ) {
5425 struct proc_data *data;
5426 struct net_device *dev = PDE_DATA(inode);
5427 struct airo_info *ai = dev->ml_priv;
5429 BSSListRid BSSList_rid;
5431 /* If doLoseSync is not 1, we won't do a Lose Sync */
5432 int doLoseSync = -1;
5434 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5436 data = file->private_data;
5437 if ((data->rbuffer = kmalloc( 1024, GFP_KERNEL )) == NULL) {
5438 kfree (file->private_data);
5442 data->maxwritelen = 0;
5443 data->wbuffer = NULL;
5444 data->on_close = NULL;
5446 if (file->f_mode & FMODE_WRITE) {
5447 if (!(file->f_mode & FMODE_READ)) {
5451 if (ai->flags & FLAG_RADIO_MASK) {
5452 kfree(data->rbuffer);
5453 kfree(file->private_data);
5456 memset(&cmd, 0, sizeof(cmd));
5457 cmd.cmd=CMD_LISTBSS;
5458 if (down_interruptible(&ai->sem)) {
5459 kfree(data->rbuffer);
5460 kfree(file->private_data);
5461 return -ERESTARTSYS;
5463 issuecommand(ai, &cmd, &rsp);
5470 ptr = data->rbuffer;
5471 /* There is a race condition here if there are concurrent opens.
5472 Since it is a rare condition, we'll just live with it, otherwise
5473 we have to add a spin lock... */
5474 rc = readBSSListRid(ai, doLoseSync, &BSSList_rid);
5475 while(rc == 0 && BSSList_rid.index != cpu_to_le16(0xffff)) {
5476 ptr += sprintf(ptr, "%pM %.*s rssi = %d",
5478 (int)BSSList_rid.ssidLen,
5480 le16_to_cpu(BSSList_rid.dBm));
5481 ptr += sprintf(ptr, " channel = %d %s %s %s %s\n",
5482 le16_to_cpu(BSSList_rid.dsChannel),
5483 BSSList_rid.cap & CAP_ESS ? "ESS" : "",
5484 BSSList_rid.cap & CAP_IBSS ? "adhoc" : "",
5485 BSSList_rid.cap & CAP_PRIVACY ? "wep" : "",
5486 BSSList_rid.cap & CAP_SHORTHDR ? "shorthdr" : "");
5487 rc = readBSSListRid(ai, 0, &BSSList_rid);
5490 data->readlen = strlen( data->rbuffer );
5494 static int proc_close( struct inode *inode, struct file *file )
5496 struct proc_data *data = file->private_data;
5498 if (data->on_close != NULL)
5499 data->on_close(inode, file);
5500 kfree(data->rbuffer);
5501 kfree(data->wbuffer);
5506 /* Since the card doesn't automatically switch to the right WEP mode,
5507 we will make it do it. If the card isn't associated, every secs we
5508 will switch WEP modes to see if that will help. If the card is
5509 associated we will check every minute to see if anything has
5511 static void timer_func( struct net_device *dev ) {
5512 struct airo_info *apriv = dev->ml_priv;
5514 /* We don't have a link so try changing the authtype */
5515 readConfigRid(apriv, 0);
5516 disable_MAC(apriv, 0);
5517 switch(apriv->config.authType) {
5519 /* So drop to OPEN */
5520 apriv->config.authType = AUTH_OPEN;
5522 case AUTH_SHAREDKEY:
5523 if (apriv->keyindex < auto_wep) {
5524 set_wep_tx_idx(apriv, apriv->keyindex, 0, 0);
5525 apriv->config.authType = AUTH_SHAREDKEY;
5528 /* Drop to ENCRYPT */
5529 apriv->keyindex = 0;
5530 set_wep_tx_idx(apriv, apriv->defindex, 0, 0);
5531 apriv->config.authType = AUTH_ENCRYPT;
5534 default: /* We'll escalate to SHAREDKEY */
5535 apriv->config.authType = AUTH_SHAREDKEY;
5537 set_bit (FLAG_COMMIT, &apriv->flags);
5538 writeConfigRid(apriv, 0);
5539 enable_MAC(apriv, 0);
5542 /* Schedule check to see if the change worked */
5543 clear_bit(JOB_AUTOWEP, &apriv->jobs);
5544 apriv->expires = RUN_AT(HZ*3);
5548 static int airo_pci_probe(struct pci_dev *pdev,
5549 const struct pci_device_id *pent)
5551 struct net_device *dev;
5553 if (pci_enable_device(pdev))
5555 pci_set_master(pdev);
5557 if (pdev->device == 0x5000 || pdev->device == 0xa504)
5558 dev = _init_airo_card(pdev->irq, pdev->resource[0].start, 0, pdev, &pdev->dev);
5560 dev = _init_airo_card(pdev->irq, pdev->resource[2].start, 0, pdev, &pdev->dev);
5562 pci_disable_device(pdev);
5566 pci_set_drvdata(pdev, dev);
5570 static void airo_pci_remove(struct pci_dev *pdev)
5572 struct net_device *dev = pci_get_drvdata(pdev);
5574 airo_print_info(dev->name, "Unregistering...");
5575 stop_airo_card(dev, 1);
5576 pci_disable_device(pdev);
5579 static int __maybe_unused airo_pci_suspend(struct device *dev_d)
5581 struct net_device *dev = dev_get_drvdata(dev_d);
5582 struct airo_info *ai = dev->ml_priv;
5587 ai->SSID = kmalloc(sizeof(SsidRid), GFP_KERNEL);
5590 readSsidRid(ai, ai->SSID);
5591 memset(&cmd, 0, sizeof(cmd));
5592 /* the lock will be released at the end of the resume callback */
5593 if (down_interruptible(&ai->sem))
5596 netif_device_detach(dev);
5597 ai->power = PMSG_SUSPEND;
5598 cmd.cmd = HOSTSLEEP;
5599 issuecommand(ai, &cmd, &rsp);
5601 device_wakeup_enable(dev_d);
5605 static int __maybe_unused airo_pci_resume(struct device *dev_d)
5607 struct net_device *dev = dev_get_drvdata(dev_d);
5608 struct airo_info *ai = dev->ml_priv;
5609 pci_power_t prev_state = to_pci_dev(dev_d)->current_state;
5611 device_wakeup_disable(dev_d);
5613 if (prev_state != PCI_D1) {
5615 mpi_init_descriptors(ai);
5616 setup_card(ai, dev->dev_addr, 0);
5617 clear_bit(FLAG_RADIO_OFF, &ai->flags);
5618 clear_bit(FLAG_PENDING_XMIT, &ai->flags);
5620 OUT4500(ai, EVACK, EV_AWAKEN);
5621 OUT4500(ai, EVACK, EV_AWAKEN);
5625 set_bit(FLAG_COMMIT, &ai->flags);
5629 writeSsidRid(ai, ai->SSID, 0);
5633 writeAPListRid(ai, &ai->APList, 0);
5634 writeConfigRid(ai, 0);
5636 ai->power = PMSG_ON;
5637 netif_device_attach(dev);
5638 netif_wake_queue(dev);
5639 enable_interrupts(ai);
5645 static int __init airo_init_module( void )
5649 proc_kuid = make_kuid(&init_user_ns, proc_uid);
5650 proc_kgid = make_kgid(&init_user_ns, proc_gid);
5651 if (!uid_valid(proc_kuid) || !gid_valid(proc_kgid))
5654 airo_entry = proc_mkdir_mode("driver/aironet", airo_perm, NULL);
5657 proc_set_user(airo_entry, proc_kuid, proc_kgid);
5659 for (i = 0; i < 4 && io[i] && irq[i]; i++) {
5660 airo_print_info("", "Trying to configure ISA adapter at irq=%d "
5661 "io=0x%x", irq[i], io[i] );
5662 if (init_airo_card( irq[i], io[i], 0, NULL ))
5667 airo_print_info("", "Probing for PCI adapters");
5668 i = pci_register_driver(&airo_driver);
5669 airo_print_info("", "Finished probing for PCI adapters");
5672 remove_proc_entry("driver/aironet", NULL);
5677 /* Always exit with success, as we are a library module
5678 * as well as a driver module
5683 static void __exit airo_cleanup_module( void )
5685 struct airo_info *ai;
5686 while(!list_empty(&airo_devices)) {
5687 ai = list_entry(airo_devices.next, struct airo_info, dev_list);
5688 airo_print_info(ai->dev->name, "Unregistering...");
5689 stop_airo_card(ai->dev, 1);
5692 pci_unregister_driver(&airo_driver);
5694 remove_proc_entry("driver/aironet", NULL);
5698 * Initial Wireless Extension code for Aironet driver by :
5700 * Conversion to new driver API by :
5702 * Javier also did a good amount of work here, adding some new extensions
5703 * and fixing my code. Let's just say that without him this code just
5704 * would not work at all... - Jean II
5707 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi)
5712 return (0x100 - rssi_rid[rssi].rssidBm);
5715 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm)
5722 for (i = 0; i < 256; i++)
5723 if (rssi_rid[i].rssidBm == dbm)
5724 return rssi_rid[i].rssipct;
5730 static int airo_get_quality (StatusRid *status_rid, CapabilityRid *cap_rid)
5735 if ((status_rid->mode & cpu_to_le16(0x3f)) != cpu_to_le16(0x3f))
5738 if (!(cap_rid->hardCap & cpu_to_le16(8)))
5741 sq = le16_to_cpu(status_rid->signalQuality);
5742 if (memcmp(cap_rid->prodName, "350", 3))
5746 quality = 0x20 - sq;
5753 quality = 0xb0 - sq;
5757 #define airo_get_max_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x20 : 0xa0)
5758 #define airo_get_avg_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x10 : 0x50);
5760 /*------------------------------------------------------------------*/
5762 * Wireless Handler : get protocol name
5764 static int airo_get_name(struct net_device *dev,
5765 struct iw_request_info *info,
5769 strcpy(cwrq, "IEEE 802.11-DS");
5773 /*------------------------------------------------------------------*/
5775 * Wireless Handler : set frequency
5777 static int airo_set_freq(struct net_device *dev,
5778 struct iw_request_info *info,
5779 struct iw_freq *fwrq,
5782 struct airo_info *local = dev->ml_priv;
5783 int rc = -EINPROGRESS; /* Call commit handler */
5785 /* If setting by frequency, convert to a channel */
5787 int f = fwrq->m / 100000;
5789 /* Hack to fall through... */
5791 fwrq->m = ieee80211_frequency_to_channel(f);
5793 /* Setting by channel number */
5794 if (fwrq->m < 0 || fwrq->m > 1000 || fwrq->e > 0)
5797 int channel = fwrq->m;
5798 /* We should do a better check than that,
5799 * based on the card capability !!! */
5800 if((channel < 1) || (channel > 14)) {
5801 airo_print_dbg(dev->name, "New channel value of %d is invalid!",
5805 readConfigRid(local, 1);
5806 /* Yes ! We can set it !!! */
5807 local->config.channelSet = cpu_to_le16(channel);
5808 set_bit (FLAG_COMMIT, &local->flags);
5814 /*------------------------------------------------------------------*/
5816 * Wireless Handler : get frequency
5818 static int airo_get_freq(struct net_device *dev,
5819 struct iw_request_info *info,
5820 struct iw_freq *fwrq,
5823 struct airo_info *local = dev->ml_priv;
5824 StatusRid status_rid; /* Card status info */
5827 readConfigRid(local, 1);
5828 if ((local->config.opmode & MODE_CFG_MASK) == MODE_STA_ESS)
5829 status_rid.channel = local->config.channelSet;
5831 readStatusRid(local, &status_rid, 1);
5833 ch = le16_to_cpu(status_rid.channel);
5834 if((ch > 0) && (ch < 15)) {
5836 ieee80211_channel_to_frequency(ch, NL80211_BAND_2GHZ);
5846 /*------------------------------------------------------------------*/
5848 * Wireless Handler : set ESSID
5850 static int airo_set_essid(struct net_device *dev,
5851 struct iw_request_info *info,
5852 struct iw_point *dwrq,
5855 struct airo_info *local = dev->ml_priv;
5856 SsidRid SSID_rid; /* SSIDs */
5858 /* Reload the list of current SSID */
5859 readSsidRid(local, &SSID_rid);
5861 /* Check if we asked for `any' */
5862 if (dwrq->flags == 0) {
5863 /* Just send an empty SSID list */
5864 memset(&SSID_rid, 0, sizeof(SSID_rid));
5866 unsigned index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
5868 /* Check the size of the string */
5869 if (dwrq->length > IW_ESSID_MAX_SIZE)
5872 /* Check if index is valid */
5873 if (index >= ARRAY_SIZE(SSID_rid.ssids))
5877 memset(SSID_rid.ssids[index].ssid, 0,
5878 sizeof(SSID_rid.ssids[index].ssid));
5879 memcpy(SSID_rid.ssids[index].ssid, extra, dwrq->length);
5880 SSID_rid.ssids[index].len = cpu_to_le16(dwrq->length);
5882 SSID_rid.len = cpu_to_le16(sizeof(SSID_rid));
5883 /* Write it to the card */
5884 disable_MAC(local, 1);
5885 writeSsidRid(local, &SSID_rid, 1);
5886 enable_MAC(local, 1);
5891 /*------------------------------------------------------------------*/
5893 * Wireless Handler : get ESSID
5895 static int airo_get_essid(struct net_device *dev,
5896 struct iw_request_info *info,
5897 struct iw_point *dwrq,
5900 struct airo_info *local = dev->ml_priv;
5901 StatusRid status_rid; /* Card status info */
5903 readStatusRid(local, &status_rid, 1);
5905 /* Note : if dwrq->flags != 0, we should
5906 * get the relevant SSID from the SSID list... */
5908 /* Get the current SSID */
5909 memcpy(extra, status_rid.SSID, le16_to_cpu(status_rid.SSIDlen));
5910 /* If none, we may want to get the one that was set */
5913 dwrq->length = le16_to_cpu(status_rid.SSIDlen);
5914 dwrq->flags = 1; /* active */
5919 /*------------------------------------------------------------------*/
5921 * Wireless Handler : set AP address
5923 static int airo_set_wap(struct net_device *dev,
5924 struct iw_request_info *info,
5925 struct sockaddr *awrq,
5928 struct airo_info *local = dev->ml_priv;
5931 APListRid *APList_rid = &local->APList;
5933 if (awrq->sa_family != ARPHRD_ETHER)
5935 else if (is_broadcast_ether_addr(awrq->sa_data) ||
5936 is_zero_ether_addr(awrq->sa_data)) {
5937 memset(&cmd, 0, sizeof(cmd));
5938 cmd.cmd=CMD_LOSE_SYNC;
5939 if (down_interruptible(&local->sem))
5940 return -ERESTARTSYS;
5941 issuecommand(local, &cmd, &rsp);
5944 memset(APList_rid, 0, sizeof(*APList_rid));
5945 APList_rid->len = cpu_to_le16(sizeof(*APList_rid));
5946 memcpy(APList_rid->ap[0], awrq->sa_data, ETH_ALEN);
5947 disable_MAC(local, 1);
5948 writeAPListRid(local, APList_rid, 1);
5949 enable_MAC(local, 1);
5954 /*------------------------------------------------------------------*/
5956 * Wireless Handler : get AP address
5958 static int airo_get_wap(struct net_device *dev,
5959 struct iw_request_info *info,
5960 struct sockaddr *awrq,
5963 struct airo_info *local = dev->ml_priv;
5964 StatusRid status_rid; /* Card status info */
5966 readStatusRid(local, &status_rid, 1);
5968 /* Tentative. This seems to work, wow, I'm lucky !!! */
5969 memcpy(awrq->sa_data, status_rid.bssid[0], ETH_ALEN);
5970 awrq->sa_family = ARPHRD_ETHER;
5975 /*------------------------------------------------------------------*/
5977 * Wireless Handler : set Nickname
5979 static int airo_set_nick(struct net_device *dev,
5980 struct iw_request_info *info,
5981 struct iw_point *dwrq,
5984 struct airo_info *local = dev->ml_priv;
5986 /* Check the size of the string */
5987 if(dwrq->length > 16) {
5990 readConfigRid(local, 1);
5991 memset(local->config.nodeName, 0, sizeof(local->config.nodeName));
5992 memcpy(local->config.nodeName, extra, dwrq->length);
5993 set_bit (FLAG_COMMIT, &local->flags);
5995 return -EINPROGRESS; /* Call commit handler */
5998 /*------------------------------------------------------------------*/
6000 * Wireless Handler : get Nickname
6002 static int airo_get_nick(struct net_device *dev,
6003 struct iw_request_info *info,
6004 struct iw_point *dwrq,
6007 struct airo_info *local = dev->ml_priv;
6009 readConfigRid(local, 1);
6010 strncpy(extra, local->config.nodeName, 16);
6012 dwrq->length = strlen(extra);
6017 /*------------------------------------------------------------------*/
6019 * Wireless Handler : set Bit-Rate
6021 static int airo_set_rate(struct net_device *dev,
6022 struct iw_request_info *info,
6023 struct iw_param *vwrq,
6026 struct airo_info *local = dev->ml_priv;
6027 CapabilityRid cap_rid; /* Card capability info */
6031 /* First : get a valid bit rate value */
6032 readCapabilityRid(local, &cap_rid, 1);
6034 /* Which type of value ? */
6035 if((vwrq->value < 8) && (vwrq->value >= 0)) {
6036 /* Setting by rate index */
6037 /* Find value in the magic rate table */
6038 brate = cap_rid.supportedRates[vwrq->value];
6040 /* Setting by frequency value */
6041 u8 normvalue = (u8) (vwrq->value/500000);
6043 /* Check if rate is valid */
6044 for(i = 0 ; i < 8 ; i++) {
6045 if(normvalue == cap_rid.supportedRates[i]) {
6051 /* -1 designed the max rate (mostly auto mode) */
6052 if(vwrq->value == -1) {
6053 /* Get the highest available rate */
6054 for(i = 0 ; i < 8 ; i++) {
6055 if(cap_rid.supportedRates[i] == 0)
6059 brate = cap_rid.supportedRates[i - 1];
6061 /* Check that it is valid */
6066 readConfigRid(local, 1);
6067 /* Now, check if we want a fixed or auto value */
6068 if(vwrq->fixed == 0) {
6069 /* Fill all the rates up to this max rate */
6070 memset(local->config.rates, 0, 8);
6071 for(i = 0 ; i < 8 ; i++) {
6072 local->config.rates[i] = cap_rid.supportedRates[i];
6073 if(local->config.rates[i] == brate)
6078 /* One rate, fixed */
6079 memset(local->config.rates, 0, 8);
6080 local->config.rates[0] = brate;
6082 set_bit (FLAG_COMMIT, &local->flags);
6084 return -EINPROGRESS; /* Call commit handler */
6087 /*------------------------------------------------------------------*/
6089 * Wireless Handler : get Bit-Rate
6091 static int airo_get_rate(struct net_device *dev,
6092 struct iw_request_info *info,
6093 struct iw_param *vwrq,
6096 struct airo_info *local = dev->ml_priv;
6097 StatusRid status_rid; /* Card status info */
6099 readStatusRid(local, &status_rid, 1);
6101 vwrq->value = le16_to_cpu(status_rid.currentXmitRate) * 500000;
6102 /* If more than one rate, set auto */
6103 readConfigRid(local, 1);
6104 vwrq->fixed = (local->config.rates[1] == 0);
6109 /*------------------------------------------------------------------*/
6111 * Wireless Handler : set RTS threshold
6113 static int airo_set_rts(struct net_device *dev,
6114 struct iw_request_info *info,
6115 struct iw_param *vwrq,
6118 struct airo_info *local = dev->ml_priv;
6119 int rthr = vwrq->value;
6122 rthr = AIRO_DEF_MTU;
6123 if((rthr < 0) || (rthr > AIRO_DEF_MTU)) {
6126 readConfigRid(local, 1);
6127 local->config.rtsThres = cpu_to_le16(rthr);
6128 set_bit (FLAG_COMMIT, &local->flags);
6130 return -EINPROGRESS; /* Call commit handler */
6133 /*------------------------------------------------------------------*/
6135 * Wireless Handler : get RTS threshold
6137 static int airo_get_rts(struct net_device *dev,
6138 struct iw_request_info *info,
6139 struct iw_param *vwrq,
6142 struct airo_info *local = dev->ml_priv;
6144 readConfigRid(local, 1);
6145 vwrq->value = le16_to_cpu(local->config.rtsThres);
6146 vwrq->disabled = (vwrq->value >= AIRO_DEF_MTU);
6152 /*------------------------------------------------------------------*/
6154 * Wireless Handler : set Fragmentation threshold
6156 static int airo_set_frag(struct net_device *dev,
6157 struct iw_request_info *info,
6158 struct iw_param *vwrq,
6161 struct airo_info *local = dev->ml_priv;
6162 int fthr = vwrq->value;
6165 fthr = AIRO_DEF_MTU;
6166 if((fthr < 256) || (fthr > AIRO_DEF_MTU)) {
6169 fthr &= ~0x1; /* Get an even value - is it really needed ??? */
6170 readConfigRid(local, 1);
6171 local->config.fragThresh = cpu_to_le16(fthr);
6172 set_bit (FLAG_COMMIT, &local->flags);
6174 return -EINPROGRESS; /* Call commit handler */
6177 /*------------------------------------------------------------------*/
6179 * Wireless Handler : get Fragmentation threshold
6181 static int airo_get_frag(struct net_device *dev,
6182 struct iw_request_info *info,
6183 struct iw_param *vwrq,
6186 struct airo_info *local = dev->ml_priv;
6188 readConfigRid(local, 1);
6189 vwrq->value = le16_to_cpu(local->config.fragThresh);
6190 vwrq->disabled = (vwrq->value >= AIRO_DEF_MTU);
6196 /*------------------------------------------------------------------*/
6198 * Wireless Handler : set Mode of Operation
6200 static int airo_set_mode(struct net_device *dev,
6201 struct iw_request_info *info,
6205 struct airo_info *local = dev->ml_priv;
6208 readConfigRid(local, 1);
6209 if (sniffing_mode(local))
6214 local->config.opmode &= ~MODE_CFG_MASK;
6215 local->config.opmode |= MODE_STA_IBSS;
6216 local->config.rmode &= ~RXMODE_FULL_MASK;
6217 local->config.scanMode = SCANMODE_ACTIVE;
6218 clear_bit (FLAG_802_11, &local->flags);
6221 local->config.opmode &= ~MODE_CFG_MASK;
6222 local->config.opmode |= MODE_STA_ESS;
6223 local->config.rmode &= ~RXMODE_FULL_MASK;
6224 local->config.scanMode = SCANMODE_ACTIVE;
6225 clear_bit (FLAG_802_11, &local->flags);
6227 case IW_MODE_MASTER:
6228 local->config.opmode &= ~MODE_CFG_MASK;
6229 local->config.opmode |= MODE_AP;
6230 local->config.rmode &= ~RXMODE_FULL_MASK;
6231 local->config.scanMode = SCANMODE_ACTIVE;
6232 clear_bit (FLAG_802_11, &local->flags);
6234 case IW_MODE_REPEAT:
6235 local->config.opmode &= ~MODE_CFG_MASK;
6236 local->config.opmode |= MODE_AP_RPTR;
6237 local->config.rmode &= ~RXMODE_FULL_MASK;
6238 local->config.scanMode = SCANMODE_ACTIVE;
6239 clear_bit (FLAG_802_11, &local->flags);
6241 case IW_MODE_MONITOR:
6242 local->config.opmode &= ~MODE_CFG_MASK;
6243 local->config.opmode |= MODE_STA_ESS;
6244 local->config.rmode &= ~RXMODE_FULL_MASK;
6245 local->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
6246 local->config.scanMode = SCANMODE_PASSIVE;
6247 set_bit (FLAG_802_11, &local->flags);
6253 set_bit (FLAG_RESET, &local->flags);
6254 set_bit (FLAG_COMMIT, &local->flags);
6256 return -EINPROGRESS; /* Call commit handler */
6259 /*------------------------------------------------------------------*/
6261 * Wireless Handler : get Mode of Operation
6263 static int airo_get_mode(struct net_device *dev,
6264 struct iw_request_info *info,
6268 struct airo_info *local = dev->ml_priv;
6270 readConfigRid(local, 1);
6271 /* If not managed, assume it's ad-hoc */
6272 switch (local->config.opmode & MODE_CFG_MASK) {
6274 *uwrq = IW_MODE_INFRA;
6277 *uwrq = IW_MODE_MASTER;
6280 *uwrq = IW_MODE_REPEAT;
6283 *uwrq = IW_MODE_ADHOC;
6289 static inline int valid_index(struct airo_info *ai, int index)
6291 return (index >= 0) && (index <= ai->max_wep_idx);
6294 /*------------------------------------------------------------------*/
6296 * Wireless Handler : set Encryption Key
6298 static int airo_set_encode(struct net_device *dev,
6299 struct iw_request_info *info,
6300 struct iw_point *dwrq,
6303 struct airo_info *local = dev->ml_priv;
6304 int perm = (dwrq->flags & IW_ENCODE_TEMP ? 0 : 1);
6305 __le16 currentAuthType = local->config.authType;
6308 if (!local->wep_capable)
6311 readConfigRid(local, 1);
6313 /* Basic checking: do we have a key to set ?
6314 * Note : with the new API, it's impossible to get a NULL pointer.
6315 * Therefore, we need to check a key size == 0 instead.
6316 * New version of iwconfig properly set the IW_ENCODE_NOKEY flag
6317 * when no key is present (only change flags), but older versions
6318 * don't do it. - Jean II */
6319 if (dwrq->length > 0) {
6321 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6324 /* Check the size of the key */
6325 if (dwrq->length > MAX_KEY_SIZE) {
6329 current_index = get_wep_tx_idx(local);
6330 if (current_index < 0)
6333 /* Check the index (none -> use current) */
6334 if (!valid_index(local, index))
6335 index = current_index;
6337 /* Set the length */
6338 if (dwrq->length > MIN_KEY_SIZE)
6339 key.len = MAX_KEY_SIZE;
6341 key.len = MIN_KEY_SIZE;
6342 /* Check if the key is not marked as invalid */
6343 if(!(dwrq->flags & IW_ENCODE_NOKEY)) {
6345 memset(key.key, 0, MAX_KEY_SIZE);
6346 /* Copy the key in the driver */
6347 memcpy(key.key, extra, dwrq->length);
6348 /* Send the key to the card */
6349 rc = set_wep_key(local, index, key.key, key.len, perm, 1);
6351 airo_print_err(local->dev->name, "failed to set"
6352 " WEP key at index %d: %d.",
6357 /* WE specify that if a valid key is set, encryption
6358 * should be enabled (user may turn it off later)
6359 * This is also how "iwconfig ethX key on" works */
6360 if((index == current_index) && (key.len > 0) &&
6361 (local->config.authType == AUTH_OPEN))
6362 set_auth_type(local, AUTH_ENCRYPT);
6364 /* Do we want to just set the transmit key index ? */
6365 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6366 if (valid_index(local, index)) {
6367 rc = set_wep_tx_idx(local, index, perm, 1);
6369 airo_print_err(local->dev->name, "failed to set"
6370 " WEP transmit index to %d: %d.",
6375 /* Don't complain if only change the mode */
6376 if (!(dwrq->flags & IW_ENCODE_MODE))
6380 /* Read the flags */
6381 if (dwrq->flags & IW_ENCODE_DISABLED)
6382 set_auth_type(local, AUTH_OPEN); /* disable encryption */
6383 if(dwrq->flags & IW_ENCODE_RESTRICTED)
6384 set_auth_type(local, AUTH_SHAREDKEY); /* Only Both */
6385 if (dwrq->flags & IW_ENCODE_OPEN)
6386 set_auth_type(local, AUTH_ENCRYPT); /* Only Wep */
6387 /* Commit the changes to flags if needed */
6388 if (local->config.authType != currentAuthType)
6389 set_bit (FLAG_COMMIT, &local->flags);
6390 return -EINPROGRESS; /* Call commit handler */
6393 /*------------------------------------------------------------------*/
6395 * Wireless Handler : get Encryption Key
6397 static int airo_get_encode(struct net_device *dev,
6398 struct iw_request_info *info,
6399 struct iw_point *dwrq,
6402 struct airo_info *local = dev->ml_priv;
6403 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6407 if (!local->wep_capable)
6410 readConfigRid(local, 1);
6412 /* Check encryption mode */
6413 switch(local->config.authType) {
6415 dwrq->flags = IW_ENCODE_OPEN;
6417 case AUTH_SHAREDKEY:
6418 dwrq->flags = IW_ENCODE_RESTRICTED;
6422 dwrq->flags = IW_ENCODE_DISABLED;
6425 /* We can't return the key, so set the proper flag and return zero */
6426 dwrq->flags |= IW_ENCODE_NOKEY;
6427 memset(extra, 0, 16);
6429 /* Which key do we want ? -1 -> tx index */
6430 if (!valid_index(local, index)) {
6431 index = get_wep_tx_idx(local);
6435 dwrq->flags |= index + 1;
6437 /* Copy the key to the user buffer */
6438 wep_key_len = get_wep_key(local, index, &buf[0], sizeof(buf));
6439 if (wep_key_len < 0) {
6442 dwrq->length = wep_key_len;
6443 memcpy(extra, buf, dwrq->length);
6449 /*------------------------------------------------------------------*/
6451 * Wireless Handler : set extended Encryption parameters
6453 static int airo_set_encodeext(struct net_device *dev,
6454 struct iw_request_info *info,
6455 union iwreq_data *wrqu,
6458 struct airo_info *local = dev->ml_priv;
6459 struct iw_point *encoding = &wrqu->encoding;
6460 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6461 int perm = ( encoding->flags & IW_ENCODE_TEMP ? 0 : 1 );
6462 __le16 currentAuthType = local->config.authType;
6463 int idx, key_len, alg = ext->alg, set_key = 1, rc;
6466 if (!local->wep_capable)
6469 readConfigRid(local, 1);
6471 /* Determine and validate the key index */
6472 idx = encoding->flags & IW_ENCODE_INDEX;
6474 if (!valid_index(local, idx - 1))
6478 idx = get_wep_tx_idx(local);
6483 if (encoding->flags & IW_ENCODE_DISABLED)
6484 alg = IW_ENCODE_ALG_NONE;
6486 if (ext->ext_flags & IW_ENCODE_EXT_SET_TX_KEY) {
6487 /* Only set transmit key index here, actual
6488 * key is set below if needed.
6490 rc = set_wep_tx_idx(local, idx, perm, 1);
6492 airo_print_err(local->dev->name, "failed to set "
6493 "WEP transmit index to %d: %d.",
6497 set_key = ext->key_len > 0 ? 1 : 0;
6501 /* Set the requested key first */
6502 memset(key.key, 0, MAX_KEY_SIZE);
6504 case IW_ENCODE_ALG_NONE:
6507 case IW_ENCODE_ALG_WEP:
6508 if (ext->key_len > MIN_KEY_SIZE) {
6509 key.len = MAX_KEY_SIZE;
6510 } else if (ext->key_len > 0) {
6511 key.len = MIN_KEY_SIZE;
6515 key_len = min (ext->key_len, key.len);
6516 memcpy(key.key, ext->key, key_len);
6522 rc = set_wep_tx_idx(local, idx, perm, 1);
6524 airo_print_err(local->dev->name,
6525 "failed to set WEP transmit index to %d: %d.",
6530 rc = set_wep_key(local, idx, key.key, key.len, perm, 1);
6532 airo_print_err(local->dev->name,
6533 "failed to set WEP key at index %d: %d.",
6540 /* Read the flags */
6541 if (encoding->flags & IW_ENCODE_DISABLED)
6542 set_auth_type(local, AUTH_OPEN); /* disable encryption */
6543 if(encoding->flags & IW_ENCODE_RESTRICTED)
6544 set_auth_type(local, AUTH_SHAREDKEY); /* Only Both */
6545 if (encoding->flags & IW_ENCODE_OPEN)
6546 set_auth_type(local, AUTH_ENCRYPT);
6547 /* Commit the changes to flags if needed */
6548 if (local->config.authType != currentAuthType)
6549 set_bit (FLAG_COMMIT, &local->flags);
6551 return -EINPROGRESS;
6555 /*------------------------------------------------------------------*/
6557 * Wireless Handler : get extended Encryption parameters
6559 static int airo_get_encodeext(struct net_device *dev,
6560 struct iw_request_info *info,
6561 union iwreq_data *wrqu,
6564 struct airo_info *local = dev->ml_priv;
6565 struct iw_point *encoding = &wrqu->encoding;
6566 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6567 int idx, max_key_len, wep_key_len;
6570 if (!local->wep_capable)
6573 readConfigRid(local, 1);
6575 max_key_len = encoding->length - sizeof(*ext);
6576 if (max_key_len < 0)
6579 idx = encoding->flags & IW_ENCODE_INDEX;
6581 if (!valid_index(local, idx - 1))
6585 idx = get_wep_tx_idx(local);
6590 encoding->flags = idx + 1;
6591 memset(ext, 0, sizeof(*ext));
6593 /* Check encryption mode */
6594 switch(local->config.authType) {
6596 encoding->flags = IW_ENCODE_ALG_WEP | IW_ENCODE_ENABLED;
6598 case AUTH_SHAREDKEY:
6599 encoding->flags = IW_ENCODE_ALG_WEP | IW_ENCODE_ENABLED;
6603 encoding->flags = IW_ENCODE_ALG_NONE | IW_ENCODE_DISABLED;
6606 /* We can't return the key, so set the proper flag and return zero */
6607 encoding->flags |= IW_ENCODE_NOKEY;
6608 memset(extra, 0, 16);
6610 /* Copy the key to the user buffer */
6611 wep_key_len = get_wep_key(local, idx, &buf[0], sizeof(buf));
6612 if (wep_key_len < 0) {
6615 ext->key_len = wep_key_len;
6616 memcpy(extra, buf, ext->key_len);
6623 /*------------------------------------------------------------------*/
6625 * Wireless Handler : set extended authentication parameters
6627 static int airo_set_auth(struct net_device *dev,
6628 struct iw_request_info *info,
6629 union iwreq_data *wrqu, char *extra)
6631 struct airo_info *local = dev->ml_priv;
6632 struct iw_param *param = &wrqu->param;
6633 __le16 currentAuthType = local->config.authType;
6635 switch (param->flags & IW_AUTH_INDEX) {
6636 case IW_AUTH_WPA_VERSION:
6637 case IW_AUTH_CIPHER_PAIRWISE:
6638 case IW_AUTH_CIPHER_GROUP:
6639 case IW_AUTH_KEY_MGMT:
6640 case IW_AUTH_RX_UNENCRYPTED_EAPOL:
6641 case IW_AUTH_PRIVACY_INVOKED:
6643 * airo does not use these parameters
6647 case IW_AUTH_DROP_UNENCRYPTED:
6649 /* Only change auth type if unencrypted */
6650 if (currentAuthType == AUTH_OPEN)
6651 set_auth_type(local, AUTH_ENCRYPT);
6653 set_auth_type(local, AUTH_OPEN);
6656 /* Commit the changes to flags if needed */
6657 if (local->config.authType != currentAuthType)
6658 set_bit (FLAG_COMMIT, &local->flags);
6661 case IW_AUTH_80211_AUTH_ALG: {
6662 if (param->value & IW_AUTH_ALG_SHARED_KEY) {
6663 set_auth_type(local, AUTH_SHAREDKEY);
6664 } else if (param->value & IW_AUTH_ALG_OPEN_SYSTEM) {
6665 /* We don't know here if WEP open system or
6666 * unencrypted mode was requested - so use the
6667 * last mode (of these two) used last time
6669 set_auth_type(local, local->last_auth);
6673 /* Commit the changes to flags if needed */
6674 if (local->config.authType != currentAuthType)
6675 set_bit (FLAG_COMMIT, &local->flags);
6679 case IW_AUTH_WPA_ENABLED:
6680 /* Silently accept disable of WPA */
6681 if (param->value > 0)
6688 return -EINPROGRESS;
6692 /*------------------------------------------------------------------*/
6694 * Wireless Handler : get extended authentication parameters
6696 static int airo_get_auth(struct net_device *dev,
6697 struct iw_request_info *info,
6698 union iwreq_data *wrqu, char *extra)
6700 struct airo_info *local = dev->ml_priv;
6701 struct iw_param *param = &wrqu->param;
6702 __le16 currentAuthType = local->config.authType;
6704 switch (param->flags & IW_AUTH_INDEX) {
6705 case IW_AUTH_DROP_UNENCRYPTED:
6706 switch (currentAuthType) {
6707 case AUTH_SHAREDKEY:
6717 case IW_AUTH_80211_AUTH_ALG:
6718 switch (currentAuthType) {
6719 case AUTH_SHAREDKEY:
6720 param->value = IW_AUTH_ALG_SHARED_KEY;
6724 param->value = IW_AUTH_ALG_OPEN_SYSTEM;
6729 case IW_AUTH_WPA_ENABLED:
6740 /*------------------------------------------------------------------*/
6742 * Wireless Handler : set Tx-Power
6744 static int airo_set_txpow(struct net_device *dev,
6745 struct iw_request_info *info,
6746 struct iw_param *vwrq,
6749 struct airo_info *local = dev->ml_priv;
6750 CapabilityRid cap_rid; /* Card capability info */
6753 __le16 v = cpu_to_le16(vwrq->value);
6755 readCapabilityRid(local, &cap_rid, 1);
6757 if (vwrq->disabled) {
6758 set_bit (FLAG_RADIO_OFF, &local->flags);
6759 set_bit (FLAG_COMMIT, &local->flags);
6760 return -EINPROGRESS; /* Call commit handler */
6762 if (vwrq->flags != IW_TXPOW_MWATT) {
6765 clear_bit (FLAG_RADIO_OFF, &local->flags);
6766 for (i = 0; i < 8 && cap_rid.txPowerLevels[i]; i++)
6767 if (v == cap_rid.txPowerLevels[i]) {
6768 readConfigRid(local, 1);
6769 local->config.txPower = v;
6770 set_bit (FLAG_COMMIT, &local->flags);
6771 rc = -EINPROGRESS; /* Call commit handler */
6777 /*------------------------------------------------------------------*/
6779 * Wireless Handler : get Tx-Power
6781 static int airo_get_txpow(struct net_device *dev,
6782 struct iw_request_info *info,
6783 struct iw_param *vwrq,
6786 struct airo_info *local = dev->ml_priv;
6788 readConfigRid(local, 1);
6789 vwrq->value = le16_to_cpu(local->config.txPower);
6790 vwrq->fixed = 1; /* No power control */
6791 vwrq->disabled = test_bit(FLAG_RADIO_OFF, &local->flags);
6792 vwrq->flags = IW_TXPOW_MWATT;
6797 /*------------------------------------------------------------------*/
6799 * Wireless Handler : set Retry limits
6801 static int airo_set_retry(struct net_device *dev,
6802 struct iw_request_info *info,
6803 struct iw_param *vwrq,
6806 struct airo_info *local = dev->ml_priv;
6809 if(vwrq->disabled) {
6812 readConfigRid(local, 1);
6813 if(vwrq->flags & IW_RETRY_LIMIT) {
6814 __le16 v = cpu_to_le16(vwrq->value);
6815 if(vwrq->flags & IW_RETRY_LONG)
6816 local->config.longRetryLimit = v;
6817 else if (vwrq->flags & IW_RETRY_SHORT)
6818 local->config.shortRetryLimit = v;
6820 /* No modifier : set both */
6821 local->config.longRetryLimit = v;
6822 local->config.shortRetryLimit = v;
6824 set_bit (FLAG_COMMIT, &local->flags);
6825 rc = -EINPROGRESS; /* Call commit handler */
6827 if(vwrq->flags & IW_RETRY_LIFETIME) {
6828 local->config.txLifetime = cpu_to_le16(vwrq->value / 1024);
6829 set_bit (FLAG_COMMIT, &local->flags);
6830 rc = -EINPROGRESS; /* Call commit handler */
6835 /*------------------------------------------------------------------*/
6837 * Wireless Handler : get Retry limits
6839 static int airo_get_retry(struct net_device *dev,
6840 struct iw_request_info *info,
6841 struct iw_param *vwrq,
6844 struct airo_info *local = dev->ml_priv;
6846 vwrq->disabled = 0; /* Can't be disabled */
6848 readConfigRid(local, 1);
6849 /* Note : by default, display the min retry number */
6850 if((vwrq->flags & IW_RETRY_TYPE) == IW_RETRY_LIFETIME) {
6851 vwrq->flags = IW_RETRY_LIFETIME;
6852 vwrq->value = le16_to_cpu(local->config.txLifetime) * 1024;
6853 } else if((vwrq->flags & IW_RETRY_LONG)) {
6854 vwrq->flags = IW_RETRY_LIMIT | IW_RETRY_LONG;
6855 vwrq->value = le16_to_cpu(local->config.longRetryLimit);
6857 vwrq->flags = IW_RETRY_LIMIT;
6858 vwrq->value = le16_to_cpu(local->config.shortRetryLimit);
6859 if(local->config.shortRetryLimit != local->config.longRetryLimit)
6860 vwrq->flags |= IW_RETRY_SHORT;
6866 /*------------------------------------------------------------------*/
6868 * Wireless Handler : get range info
6870 static int airo_get_range(struct net_device *dev,
6871 struct iw_request_info *info,
6872 struct iw_point *dwrq,
6875 struct airo_info *local = dev->ml_priv;
6876 struct iw_range *range = (struct iw_range *) extra;
6877 CapabilityRid cap_rid; /* Card capability info */
6881 readCapabilityRid(local, &cap_rid, 1);
6883 dwrq->length = sizeof(struct iw_range);
6884 memset(range, 0, sizeof(*range));
6885 range->min_nwid = 0x0000;
6886 range->max_nwid = 0x0000;
6887 range->num_channels = 14;
6888 /* Should be based on cap_rid.country to give only
6889 * what the current card support */
6891 for(i = 0; i < 14; i++) {
6892 range->freq[k].i = i + 1; /* List index */
6893 range->freq[k].m = 100000 *
6894 ieee80211_channel_to_frequency(i + 1, NL80211_BAND_2GHZ);
6895 range->freq[k++].e = 1; /* Values in MHz -> * 10^5 * 10 */
6897 range->num_frequency = k;
6899 range->sensitivity = 65535;
6901 /* Hum... Should put the right values there */
6903 range->max_qual.qual = 100; /* % */
6905 range->max_qual.qual = airo_get_max_quality(&cap_rid);
6906 range->max_qual.level = 0x100 - 120; /* -120 dBm */
6907 range->max_qual.noise = 0x100 - 120; /* -120 dBm */
6909 /* Experimental measurements - boundary 11/5.5 Mb/s */
6910 /* Note : with or without the (local->rssi), results
6911 * are somewhat different. - Jean II */
6913 range->avg_qual.qual = 50; /* % */
6914 range->avg_qual.level = 0x100 - 70; /* -70 dBm */
6916 range->avg_qual.qual = airo_get_avg_quality(&cap_rid);
6917 range->avg_qual.level = 0x100 - 80; /* -80 dBm */
6919 range->avg_qual.noise = 0x100 - 85; /* -85 dBm */
6921 for(i = 0 ; i < 8 ; i++) {
6922 range->bitrate[i] = cap_rid.supportedRates[i] * 500000;
6923 if(range->bitrate[i] == 0)
6926 range->num_bitrates = i;
6928 /* Set an indication of the max TCP throughput
6929 * in bit/s that we can expect using this interface.
6930 * May be use for QoS stuff... Jean II */
6932 range->throughput = 5000 * 1000;
6934 range->throughput = 1500 * 1000;
6937 range->max_rts = AIRO_DEF_MTU;
6938 range->min_frag = 256;
6939 range->max_frag = AIRO_DEF_MTU;
6941 if(cap_rid.softCap & cpu_to_le16(2)) {
6943 range->encoding_size[0] = 5;
6945 if (cap_rid.softCap & cpu_to_le16(0x100)) {
6946 range->encoding_size[1] = 13;
6947 range->num_encoding_sizes = 2;
6949 range->num_encoding_sizes = 1;
6950 range->max_encoding_tokens =
6951 cap_rid.softCap & cpu_to_le16(0x80) ? 4 : 1;
6953 range->num_encoding_sizes = 0;
6954 range->max_encoding_tokens = 0;
6957 range->max_pmp = 5000000; /* 5 secs */
6959 range->max_pmt = 65535 * 1024; /* ??? */
6960 range->pmp_flags = IW_POWER_PERIOD;
6961 range->pmt_flags = IW_POWER_TIMEOUT;
6962 range->pm_capa = IW_POWER_PERIOD | IW_POWER_TIMEOUT | IW_POWER_ALL_R;
6964 /* Transmit Power - values are in mW */
6965 for(i = 0 ; i < 8 ; i++) {
6966 range->txpower[i] = le16_to_cpu(cap_rid.txPowerLevels[i]);
6967 if(range->txpower[i] == 0)
6970 range->num_txpower = i;
6971 range->txpower_capa = IW_TXPOW_MWATT;
6972 range->we_version_source = 19;
6973 range->we_version_compiled = WIRELESS_EXT;
6974 range->retry_capa = IW_RETRY_LIMIT | IW_RETRY_LIFETIME;
6975 range->retry_flags = IW_RETRY_LIMIT;
6976 range->r_time_flags = IW_RETRY_LIFETIME;
6977 range->min_retry = 1;
6978 range->max_retry = 65535;
6979 range->min_r_time = 1024;
6980 range->max_r_time = 65535 * 1024;
6982 /* Event capability (kernel + driver) */
6983 range->event_capa[0] = (IW_EVENT_CAPA_K_0 |
6984 IW_EVENT_CAPA_MASK(SIOCGIWTHRSPY) |
6985 IW_EVENT_CAPA_MASK(SIOCGIWAP) |
6986 IW_EVENT_CAPA_MASK(SIOCGIWSCAN));
6987 range->event_capa[1] = IW_EVENT_CAPA_K_1;
6988 range->event_capa[4] = IW_EVENT_CAPA_MASK(IWEVTXDROP);
6992 /*------------------------------------------------------------------*/
6994 * Wireless Handler : set Power Management
6996 static int airo_set_power(struct net_device *dev,
6997 struct iw_request_info *info,
6998 struct iw_param *vwrq,
7001 struct airo_info *local = dev->ml_priv;
7003 readConfigRid(local, 1);
7004 if (vwrq->disabled) {
7005 if (sniffing_mode(local))
7007 local->config.powerSaveMode = POWERSAVE_CAM;
7008 local->config.rmode &= ~RXMODE_MASK;
7009 local->config.rmode |= RXMODE_BC_MC_ADDR;
7010 set_bit (FLAG_COMMIT, &local->flags);
7011 return -EINPROGRESS; /* Call commit handler */
7013 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
7014 local->config.fastListenDelay = cpu_to_le16((vwrq->value + 500) / 1024);
7015 local->config.powerSaveMode = POWERSAVE_PSPCAM;
7016 set_bit (FLAG_COMMIT, &local->flags);
7017 } else if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_PERIOD) {
7018 local->config.fastListenInterval =
7019 local->config.listenInterval =
7020 cpu_to_le16((vwrq->value + 500) / 1024);
7021 local->config.powerSaveMode = POWERSAVE_PSPCAM;
7022 set_bit (FLAG_COMMIT, &local->flags);
7024 switch (vwrq->flags & IW_POWER_MODE) {
7025 case IW_POWER_UNICAST_R:
7026 if (sniffing_mode(local))
7028 local->config.rmode &= ~RXMODE_MASK;
7029 local->config.rmode |= RXMODE_ADDR;
7030 set_bit (FLAG_COMMIT, &local->flags);
7032 case IW_POWER_ALL_R:
7033 if (sniffing_mode(local))
7035 local->config.rmode &= ~RXMODE_MASK;
7036 local->config.rmode |= RXMODE_BC_MC_ADDR;
7037 set_bit (FLAG_COMMIT, &local->flags);
7039 /* This is broken, fixme ;-) */
7044 // Note : we may want to factor local->need_commit here
7045 // Note2 : may also want to factor RXMODE_RFMON test
7046 return -EINPROGRESS; /* Call commit handler */
7049 /*------------------------------------------------------------------*/
7051 * Wireless Handler : get Power Management
7053 static int airo_get_power(struct net_device *dev,
7054 struct iw_request_info *info,
7055 struct iw_param *vwrq,
7058 struct airo_info *local = dev->ml_priv;
7061 readConfigRid(local, 1);
7062 mode = local->config.powerSaveMode;
7063 if ((vwrq->disabled = (mode == POWERSAVE_CAM)))
7065 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
7066 vwrq->value = le16_to_cpu(local->config.fastListenDelay) * 1024;
7067 vwrq->flags = IW_POWER_TIMEOUT;
7069 vwrq->value = le16_to_cpu(local->config.fastListenInterval) * 1024;
7070 vwrq->flags = IW_POWER_PERIOD;
7072 if ((local->config.rmode & RXMODE_MASK) == RXMODE_ADDR)
7073 vwrq->flags |= IW_POWER_UNICAST_R;
7075 vwrq->flags |= IW_POWER_ALL_R;
7080 /*------------------------------------------------------------------*/
7082 * Wireless Handler : set Sensitivity
7084 static int airo_set_sens(struct net_device *dev,
7085 struct iw_request_info *info,
7086 struct iw_param *vwrq,
7089 struct airo_info *local = dev->ml_priv;
7091 readConfigRid(local, 1);
7092 local->config.rssiThreshold =
7093 cpu_to_le16(vwrq->disabled ? RSSI_DEFAULT : vwrq->value);
7094 set_bit (FLAG_COMMIT, &local->flags);
7096 return -EINPROGRESS; /* Call commit handler */
7099 /*------------------------------------------------------------------*/
7101 * Wireless Handler : get Sensitivity
7103 static int airo_get_sens(struct net_device *dev,
7104 struct iw_request_info *info,
7105 struct iw_param *vwrq,
7108 struct airo_info *local = dev->ml_priv;
7110 readConfigRid(local, 1);
7111 vwrq->value = le16_to_cpu(local->config.rssiThreshold);
7112 vwrq->disabled = (vwrq->value == 0);
7118 /*------------------------------------------------------------------*/
7120 * Wireless Handler : get AP List
7121 * Note : this is deprecated in favor of IWSCAN
7123 static int airo_get_aplist(struct net_device *dev,
7124 struct iw_request_info *info,
7125 struct iw_point *dwrq,
7128 struct airo_info *local = dev->ml_priv;
7129 struct sockaddr *address = (struct sockaddr *) extra;
7130 struct iw_quality *qual;
7133 int loseSync = capable(CAP_NET_ADMIN) ? 1: -1;
7135 qual = kmalloc_array(IW_MAX_AP, sizeof(*qual), GFP_KERNEL);
7139 for (i = 0; i < IW_MAX_AP; i++) {
7141 if (readBSSListRid(local, loseSync, &BSSList))
7144 memcpy(address[i].sa_data, BSSList.bssid, ETH_ALEN);
7145 address[i].sa_family = ARPHRD_ETHER;
7146 dBm = le16_to_cpu(BSSList.dBm);
7148 qual[i].level = 0x100 - dBm;
7149 qual[i].qual = airo_dbm_to_pct(local->rssi, dBm);
7150 qual[i].updated = IW_QUAL_QUAL_UPDATED
7151 | IW_QUAL_LEVEL_UPDATED
7154 qual[i].level = (dBm + 321) / 2;
7156 qual[i].updated = IW_QUAL_QUAL_INVALID
7157 | IW_QUAL_LEVEL_UPDATED
7160 qual[i].noise = local->wstats.qual.noise;
7161 if (BSSList.index == cpu_to_le16(0xffff))
7165 StatusRid status_rid; /* Card status info */
7166 readStatusRid(local, &status_rid, 1);
7168 i < min(IW_MAX_AP, 4) &&
7169 (status_rid.bssid[i][0]
7170 & status_rid.bssid[i][1]
7171 & status_rid.bssid[i][2]
7172 & status_rid.bssid[i][3]
7173 & status_rid.bssid[i][4]
7174 & status_rid.bssid[i][5])!=0xff &&
7175 (status_rid.bssid[i][0]
7176 | status_rid.bssid[i][1]
7177 | status_rid.bssid[i][2]
7178 | status_rid.bssid[i][3]
7179 | status_rid.bssid[i][4]
7180 | status_rid.bssid[i][5]);
7182 memcpy(address[i].sa_data,
7183 status_rid.bssid[i], ETH_ALEN);
7184 address[i].sa_family = ARPHRD_ETHER;
7187 dwrq->flags = 1; /* Should be define'd */
7188 memcpy(extra + sizeof(struct sockaddr) * i, qual,
7189 sizeof(struct iw_quality) * i);
7197 /*------------------------------------------------------------------*/
7199 * Wireless Handler : Initiate Scan
7201 static int airo_set_scan(struct net_device *dev,
7202 struct iw_request_info *info,
7203 struct iw_point *dwrq,
7206 struct airo_info *ai = dev->ml_priv;
7210 APListRid APList_rid_empty;
7212 /* Note : you may have realised that, as this is a SET operation,
7213 * this is privileged and therefore a normal user can't
7215 * This is not an error, while the device perform scanning,
7216 * traffic doesn't flow, so it's a perfect DoS...
7218 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
7220 if (down_interruptible(&ai->sem))
7221 return -ERESTARTSYS;
7223 /* If there's already a scan in progress, don't
7224 * trigger another one. */
7225 if (ai->scan_timeout > 0)
7228 /* Clear APList as it affects scan results */
7229 memset(&APList_rid_empty, 0, sizeof(APList_rid_empty));
7230 APList_rid_empty.len = cpu_to_le16(sizeof(APList_rid_empty));
7232 writeAPListRid(ai, &APList_rid_empty, 0);
7235 /* Initiate a scan command */
7236 ai->scan_timeout = RUN_AT(3*HZ);
7237 memset(&cmd, 0, sizeof(cmd));
7238 cmd.cmd=CMD_LISTBSS;
7239 issuecommand(ai, &cmd, &rsp);
7245 wake_up_interruptible(&ai->thr_wait);
7249 /*------------------------------------------------------------------*/
7251 * Translate scan data returned from the card to a card independent
7252 * format that the Wireless Tools will understand - Jean II
7254 static inline char *airo_translate_scan(struct net_device *dev,
7255 struct iw_request_info *info,
7260 struct airo_info *ai = dev->ml_priv;
7261 struct iw_event iwe; /* Temporary buffer */
7262 __le16 capabilities;
7263 char * current_val; /* For rates */
7268 /* First entry *MUST* be the AP MAC address */
7269 iwe.cmd = SIOCGIWAP;
7270 iwe.u.ap_addr.sa_family = ARPHRD_ETHER;
7271 memcpy(iwe.u.ap_addr.sa_data, bss->bssid, ETH_ALEN);
7272 current_ev = iwe_stream_add_event(info, current_ev, end_buf,
7273 &iwe, IW_EV_ADDR_LEN);
7275 /* Other entries will be displayed in the order we give them */
7278 iwe.u.data.length = bss->ssidLen;
7279 if(iwe.u.data.length > 32)
7280 iwe.u.data.length = 32;
7281 iwe.cmd = SIOCGIWESSID;
7282 iwe.u.data.flags = 1;
7283 current_ev = iwe_stream_add_point(info, current_ev, end_buf,
7287 iwe.cmd = SIOCGIWMODE;
7288 capabilities = bss->cap;
7289 if(capabilities & (CAP_ESS | CAP_IBSS)) {
7290 if(capabilities & CAP_ESS)
7291 iwe.u.mode = IW_MODE_MASTER;
7293 iwe.u.mode = IW_MODE_ADHOC;
7294 current_ev = iwe_stream_add_event(info, current_ev, end_buf,
7295 &iwe, IW_EV_UINT_LEN);
7299 iwe.cmd = SIOCGIWFREQ;
7300 iwe.u.freq.m = le16_to_cpu(bss->dsChannel);
7301 iwe.u.freq.m = 100000 *
7302 ieee80211_channel_to_frequency(iwe.u.freq.m, NL80211_BAND_2GHZ);
7304 current_ev = iwe_stream_add_event(info, current_ev, end_buf,
7305 &iwe, IW_EV_FREQ_LEN);
7307 dBm = le16_to_cpu(bss->dBm);
7309 /* Add quality statistics */
7312 iwe.u.qual.level = 0x100 - dBm;
7313 iwe.u.qual.qual = airo_dbm_to_pct(ai->rssi, dBm);
7314 iwe.u.qual.updated = IW_QUAL_QUAL_UPDATED
7315 | IW_QUAL_LEVEL_UPDATED
7318 iwe.u.qual.level = (dBm + 321) / 2;
7319 iwe.u.qual.qual = 0;
7320 iwe.u.qual.updated = IW_QUAL_QUAL_INVALID
7321 | IW_QUAL_LEVEL_UPDATED
7324 iwe.u.qual.noise = ai->wstats.qual.noise;
7325 current_ev = iwe_stream_add_event(info, current_ev, end_buf,
7326 &iwe, IW_EV_QUAL_LEN);
7328 /* Add encryption capability */
7329 iwe.cmd = SIOCGIWENCODE;
7330 if(capabilities & CAP_PRIVACY)
7331 iwe.u.data.flags = IW_ENCODE_ENABLED | IW_ENCODE_NOKEY;
7333 iwe.u.data.flags = IW_ENCODE_DISABLED;
7334 iwe.u.data.length = 0;
7335 current_ev = iwe_stream_add_point(info, current_ev, end_buf,
7338 /* Rate : stuffing multiple values in a single event require a bit
7339 * more of magic - Jean II */
7340 current_val = current_ev + iwe_stream_lcp_len(info);
7342 iwe.cmd = SIOCGIWRATE;
7343 /* Those two flags are ignored... */
7344 iwe.u.bitrate.fixed = iwe.u.bitrate.disabled = 0;
7346 for(i = 0 ; i < 8 ; i++) {
7347 /* NULL terminated */
7348 if(bss->rates[i] == 0)
7350 /* Bit rate given in 500 kb/s units (+ 0x80) */
7351 iwe.u.bitrate.value = ((bss->rates[i] & 0x7f) * 500000);
7352 /* Add new value to event */
7353 current_val = iwe_stream_add_value(info, current_ev,
7354 current_val, end_buf,
7355 &iwe, IW_EV_PARAM_LEN);
7357 /* Check if we added any event */
7358 if ((current_val - current_ev) > iwe_stream_lcp_len(info))
7359 current_ev = current_val;
7361 /* Beacon interval */
7362 buf = kmalloc(30, GFP_KERNEL);
7364 iwe.cmd = IWEVCUSTOM;
7365 sprintf(buf, "bcn_int=%d", bss->beaconInterval);
7366 iwe.u.data.length = strlen(buf);
7367 current_ev = iwe_stream_add_point(info, current_ev, end_buf,
7372 /* Put WPA/RSN Information Elements into the event stream */
7373 if (test_bit(FLAG_WPA_CAPABLE, &ai->flags)) {
7374 unsigned int num_null_ies = 0;
7375 u16 length = sizeof (bss->extra.iep);
7376 u8 *ie = (void *)&bss->extra.iep;
7378 while ((length >= 2) && (num_null_ies < 2)) {
7379 if (2 + ie[1] > length) {
7380 /* Invalid element, don't continue parsing IE */
7386 /* Two zero-length SSID elements
7387 * mean we're done parsing elements */
7392 case WLAN_EID_VENDOR_SPECIFIC:
7398 iwe.cmd = IWEVGENIE;
7399 /* 64 is an arbitrary cut-off */
7400 iwe.u.data.length = min(ie[1] + 2,
7402 current_ev = iwe_stream_add_point(
7409 iwe.cmd = IWEVGENIE;
7410 /* 64 is an arbitrary cut-off */
7411 iwe.u.data.length = min(ie[1] + 2, 64);
7412 current_ev = iwe_stream_add_point(
7413 info, current_ev, end_buf,
7421 length -= 2 + ie[1];
7428 /*------------------------------------------------------------------*/
7430 * Wireless Handler : Read Scan Results
7432 static int airo_get_scan(struct net_device *dev,
7433 struct iw_request_info *info,
7434 struct iw_point *dwrq,
7437 struct airo_info *ai = dev->ml_priv;
7438 BSSListElement *net;
7440 char *current_ev = extra;
7442 /* If a scan is in-progress, return -EAGAIN */
7443 if (ai->scan_timeout > 0)
7446 if (down_interruptible(&ai->sem))
7449 list_for_each_entry (net, &ai->network_list, list) {
7450 /* Translate to WE format this entry */
7451 current_ev = airo_translate_scan(dev, info, current_ev,
7452 extra + dwrq->length,
7455 /* Check if there is space for one more entry */
7456 if((extra + dwrq->length - current_ev) <= IW_EV_ADDR_LEN) {
7457 /* Ask user space to try again with a bigger buffer */
7463 /* Length of data */
7464 dwrq->length = (current_ev - extra);
7465 dwrq->flags = 0; /* todo */
7472 /*------------------------------------------------------------------*/
7474 * Commit handler : called after a bunch of SET operations
7476 static int airo_config_commit(struct net_device *dev,
7477 struct iw_request_info *info, /* NULL */
7478 void *zwrq, /* NULL */
7479 char *extra) /* NULL */
7481 struct airo_info *local = dev->ml_priv;
7483 if (!test_bit (FLAG_COMMIT, &local->flags))
7486 /* Some of the "SET" function may have modified some of the
7487 * parameters. It's now time to commit them in the card */
7488 disable_MAC(local, 1);
7489 if (test_bit (FLAG_RESET, &local->flags)) {
7492 readSsidRid(local, &SSID_rid);
7493 if (test_bit(FLAG_MPI,&local->flags))
7494 setup_card(local, dev->dev_addr, 1 );
7496 reset_airo_card(dev);
7497 disable_MAC(local, 1);
7498 writeSsidRid(local, &SSID_rid, 1);
7499 writeAPListRid(local, &local->APList, 1);
7501 if (down_interruptible(&local->sem))
7502 return -ERESTARTSYS;
7503 writeConfigRid(local, 0);
7504 enable_MAC(local, 0);
7505 if (test_bit (FLAG_RESET, &local->flags))
7506 airo_set_promisc(local);
7513 /*------------------------------------------------------------------*/
7515 * Structures to export the Wireless Handlers
7518 static const struct iw_priv_args airo_private_args[] = {
7519 /*{ cmd, set_args, get_args, name } */
7520 { AIROIOCTL, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7521 IW_PRIV_TYPE_BYTE | 2047, "airoioctl" },
7522 { AIROIDIFC, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7523 IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 1, "airoidifc" },
7526 static const iw_handler airo_handler[] =
7528 (iw_handler) airo_config_commit, /* SIOCSIWCOMMIT */
7529 (iw_handler) airo_get_name, /* SIOCGIWNAME */
7530 (iw_handler) NULL, /* SIOCSIWNWID */
7531 (iw_handler) NULL, /* SIOCGIWNWID */
7532 (iw_handler) airo_set_freq, /* SIOCSIWFREQ */
7533 (iw_handler) airo_get_freq, /* SIOCGIWFREQ */
7534 (iw_handler) airo_set_mode, /* SIOCSIWMODE */
7535 (iw_handler) airo_get_mode, /* SIOCGIWMODE */
7536 (iw_handler) airo_set_sens, /* SIOCSIWSENS */
7537 (iw_handler) airo_get_sens, /* SIOCGIWSENS */
7538 (iw_handler) NULL, /* SIOCSIWRANGE */
7539 (iw_handler) airo_get_range, /* SIOCGIWRANGE */
7540 (iw_handler) NULL, /* SIOCSIWPRIV */
7541 (iw_handler) NULL, /* SIOCGIWPRIV */
7542 (iw_handler) NULL, /* SIOCSIWSTATS */
7543 (iw_handler) NULL, /* SIOCGIWSTATS */
7544 iw_handler_set_spy, /* SIOCSIWSPY */
7545 iw_handler_get_spy, /* SIOCGIWSPY */
7546 iw_handler_set_thrspy, /* SIOCSIWTHRSPY */
7547 iw_handler_get_thrspy, /* SIOCGIWTHRSPY */
7548 (iw_handler) airo_set_wap, /* SIOCSIWAP */
7549 (iw_handler) airo_get_wap, /* SIOCGIWAP */
7550 (iw_handler) NULL, /* -- hole -- */
7551 (iw_handler) airo_get_aplist, /* SIOCGIWAPLIST */
7552 (iw_handler) airo_set_scan, /* SIOCSIWSCAN */
7553 (iw_handler) airo_get_scan, /* SIOCGIWSCAN */
7554 (iw_handler) airo_set_essid, /* SIOCSIWESSID */
7555 (iw_handler) airo_get_essid, /* SIOCGIWESSID */
7556 (iw_handler) airo_set_nick, /* SIOCSIWNICKN */
7557 (iw_handler) airo_get_nick, /* SIOCGIWNICKN */
7558 (iw_handler) NULL, /* -- hole -- */
7559 (iw_handler) NULL, /* -- hole -- */
7560 (iw_handler) airo_set_rate, /* SIOCSIWRATE */
7561 (iw_handler) airo_get_rate, /* SIOCGIWRATE */
7562 (iw_handler) airo_set_rts, /* SIOCSIWRTS */
7563 (iw_handler) airo_get_rts, /* SIOCGIWRTS */
7564 (iw_handler) airo_set_frag, /* SIOCSIWFRAG */
7565 (iw_handler) airo_get_frag, /* SIOCGIWFRAG */
7566 (iw_handler) airo_set_txpow, /* SIOCSIWTXPOW */
7567 (iw_handler) airo_get_txpow, /* SIOCGIWTXPOW */
7568 (iw_handler) airo_set_retry, /* SIOCSIWRETRY */
7569 (iw_handler) airo_get_retry, /* SIOCGIWRETRY */
7570 (iw_handler) airo_set_encode, /* SIOCSIWENCODE */
7571 (iw_handler) airo_get_encode, /* SIOCGIWENCODE */
7572 (iw_handler) airo_set_power, /* SIOCSIWPOWER */
7573 (iw_handler) airo_get_power, /* SIOCGIWPOWER */
7574 (iw_handler) NULL, /* -- hole -- */
7575 (iw_handler) NULL, /* -- hole -- */
7576 (iw_handler) NULL, /* SIOCSIWGENIE */
7577 (iw_handler) NULL, /* SIOCGIWGENIE */
7578 (iw_handler) airo_set_auth, /* SIOCSIWAUTH */
7579 (iw_handler) airo_get_auth, /* SIOCGIWAUTH */
7580 (iw_handler) airo_set_encodeext, /* SIOCSIWENCODEEXT */
7581 (iw_handler) airo_get_encodeext, /* SIOCGIWENCODEEXT */
7582 (iw_handler) NULL, /* SIOCSIWPMKSA */
7585 /* Note : don't describe AIROIDIFC and AIROOLDIDIFC in here.
7586 * We want to force the use of the ioctl code, because those can't be
7587 * won't work the iw_handler code (because they simultaneously read
7588 * and write data and iw_handler can't do that).
7589 * Note that it's perfectly legal to read/write on a single ioctl command,
7590 * you just can't use iwpriv and need to force it via the ioctl handler.
7592 static const iw_handler airo_private_handler[] =
7594 NULL, /* SIOCIWFIRSTPRIV */
7597 static const struct iw_handler_def airo_handler_def =
7599 .num_standard = ARRAY_SIZE(airo_handler),
7600 .num_private = ARRAY_SIZE(airo_private_handler),
7601 .num_private_args = ARRAY_SIZE(airo_private_args),
7602 .standard = airo_handler,
7603 .private = airo_private_handler,
7604 .private_args = airo_private_args,
7605 .get_wireless_stats = airo_get_wireless_stats,
7609 * This defines the configuration part of the Wireless Extensions
7610 * Note : irq and spinlock protection will occur in the subroutines
7613 * o Check input value more carefully and fill correct values in range
7614 * o Test and shakeout the bugs (if any)
7618 * Javier Achirica did a great job of merging code from the unnamed CISCO
7619 * developer that added support for flashing the card.
7621 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd)
7624 struct airo_info *ai = dev->ml_priv;
7626 if (ai->power.event)
7636 int val = AIROMAGIC;
7638 if (copy_from_user(&com,rq->ifr_data,sizeof(com)))
7640 else if (copy_to_user(com.data,(char *)&val,sizeof(val)))
7649 /* Get the command struct and hand it off for evaluation by
7650 * the proper subfunction
7654 if (copy_from_user(&com,rq->ifr_data,sizeof(com))) {
7659 /* Separate R/W functions bracket legality here
7661 if ( com.command == AIRORSWVERSION ) {
7662 if (copy_to_user(com.data, swversion, sizeof(swversion)))
7667 else if ( com.command <= AIRORRID)
7668 rc = readrids(dev,&com);
7669 else if ( com.command >= AIROPCAP && com.command <= (AIROPLEAPUSR+2) )
7670 rc = writerids(dev,&com);
7671 else if ( com.command >= AIROFLSHRST && com.command <= AIRORESTART )
7672 rc = flashcard(dev,&com);
7674 rc = -EINVAL; /* Bad command in ioctl */
7677 #endif /* CISCO_EXT */
7679 // All other calls are currently unsupported
7687 * Get the Wireless stats out of the driver
7688 * Note : irq and spinlock protection will occur in the subroutines
7691 * o Check if work in Ad-Hoc mode (otherwise, use SPY, as in wvlan_cs)
7695 static void airo_read_wireless_stats(struct airo_info *local)
7697 StatusRid status_rid;
7699 CapabilityRid cap_rid;
7700 __le32 *vals = stats_rid.vals;
7702 /* Get stats out of the card */
7703 clear_bit(JOB_WSTATS, &local->jobs);
7704 if (local->power.event) {
7708 readCapabilityRid(local, &cap_rid, 0);
7709 readStatusRid(local, &status_rid, 0);
7710 readStatsRid(local, &stats_rid, RID_STATS, 0);
7714 local->wstats.status = le16_to_cpu(status_rid.mode);
7716 /* Signal quality and co */
7718 local->wstats.qual.level =
7719 airo_rssi_to_dbm(local->rssi,
7720 le16_to_cpu(status_rid.sigQuality));
7721 /* normalizedSignalStrength appears to be a percentage */
7722 local->wstats.qual.qual =
7723 le16_to_cpu(status_rid.normalizedSignalStrength);
7725 local->wstats.qual.level =
7726 (le16_to_cpu(status_rid.normalizedSignalStrength) + 321) / 2;
7727 local->wstats.qual.qual = airo_get_quality(&status_rid, &cap_rid);
7729 if (le16_to_cpu(status_rid.len) >= 124) {
7730 local->wstats.qual.noise = 0x100 - status_rid.noisedBm;
7731 local->wstats.qual.updated = IW_QUAL_ALL_UPDATED | IW_QUAL_DBM;
7733 local->wstats.qual.noise = 0;
7734 local->wstats.qual.updated = IW_QUAL_QUAL_UPDATED | IW_QUAL_LEVEL_UPDATED | IW_QUAL_NOISE_INVALID | IW_QUAL_DBM;
7737 /* Packets discarded in the wireless adapter due to wireless
7738 * specific problems */
7739 local->wstats.discard.nwid = le32_to_cpu(vals[56]) +
7740 le32_to_cpu(vals[57]) +
7741 le32_to_cpu(vals[58]); /* SSID Mismatch */
7742 local->wstats.discard.code = le32_to_cpu(vals[6]);/* RxWepErr */
7743 local->wstats.discard.fragment = le32_to_cpu(vals[30]);
7744 local->wstats.discard.retries = le32_to_cpu(vals[10]);
7745 local->wstats.discard.misc = le32_to_cpu(vals[1]) +
7746 le32_to_cpu(vals[32]);
7747 local->wstats.miss.beacon = le32_to_cpu(vals[34]);
7750 static struct iw_statistics *airo_get_wireless_stats(struct net_device *dev)
7752 struct airo_info *local = dev->ml_priv;
7754 if (!test_bit(JOB_WSTATS, &local->jobs)) {
7755 /* Get stats out of the card if available */
7756 if (down_trylock(&local->sem) != 0) {
7757 set_bit(JOB_WSTATS, &local->jobs);
7758 wake_up_interruptible(&local->thr_wait);
7760 airo_read_wireless_stats(local);
7763 return &local->wstats;
7768 * This just translates from driver IOCTL codes to the command codes to
7769 * feed to the radio's host interface. Things can be added/deleted
7770 * as needed. This represents the READ side of control I/O to
7773 static int readrids(struct net_device *dev, aironet_ioctl *comp) {
7774 unsigned short ridcode;
7775 unsigned char *iobuf;
7777 struct airo_info *ai = dev->ml_priv;
7779 if (test_bit(FLAG_FLASHING, &ai->flags))
7782 switch(comp->command)
7784 case AIROGCAP: ridcode = RID_CAPABILITIES; break;
7785 case AIROGCFG: ridcode = RID_CONFIG;
7786 if (test_bit(FLAG_COMMIT, &ai->flags)) {
7787 disable_MAC (ai, 1);
7788 writeConfigRid (ai, 1);
7792 case AIROGSLIST: ridcode = RID_SSID; break;
7793 case AIROGVLIST: ridcode = RID_APLIST; break;
7794 case AIROGDRVNAM: ridcode = RID_DRVNAME; break;
7795 case AIROGEHTENC: ridcode = RID_ETHERENCAP; break;
7796 case AIROGWEPKTMP: ridcode = RID_WEP_TEMP; break;
7797 case AIROGWEPKNV: ridcode = RID_WEP_PERM; break;
7798 case AIROGSTAT: ridcode = RID_STATUS; break;
7799 case AIROGSTATSD32: ridcode = RID_STATSDELTA; break;
7800 case AIROGSTATSC32: ridcode = RID_STATS; break;
7802 if (copy_to_user(comp->data, &ai->micstats,
7803 min((int)comp->len,(int)sizeof(ai->micstats))))
7806 case AIRORRID: ridcode = comp->ridnum; break;
7811 if (ridcode == RID_WEP_TEMP || ridcode == RID_WEP_PERM) {
7812 /* Only super-user can read WEP keys */
7813 if (!capable(CAP_NET_ADMIN))
7817 if ((iobuf = kzalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7820 PC4500_readrid(ai,ridcode,iobuf,RIDSIZE, 1);
7821 /* get the count of bytes in the rid docs say 1st 2 bytes is it.
7822 * then return it to the user
7823 * 9/22/2000 Honor user given length
7827 if (copy_to_user(comp->data, iobuf, min(len, (int)RIDSIZE))) {
7836 * Danger Will Robinson write the rids here
7839 static int writerids(struct net_device *dev, aironet_ioctl *comp) {
7840 struct airo_info *ai = dev->ml_priv;
7843 int (*writer)(struct airo_info *, u16 rid, const void *, int, int);
7844 unsigned char *iobuf;
7846 /* Only super-user can write RIDs */
7847 if (!capable(CAP_NET_ADMIN))
7850 if (test_bit(FLAG_FLASHING, &ai->flags))
7854 writer = do_writerid;
7856 switch(comp->command)
7858 case AIROPSIDS: ridcode = RID_SSID; break;
7859 case AIROPCAP: ridcode = RID_CAPABILITIES; break;
7860 case AIROPAPLIST: ridcode = RID_APLIST; break;
7861 case AIROPCFG: ai->config.len = 0;
7862 clear_bit(FLAG_COMMIT, &ai->flags);
7863 ridcode = RID_CONFIG; break;
7864 case AIROPWEPKEYNV: ridcode = RID_WEP_PERM; break;
7865 case AIROPLEAPUSR: ridcode = RID_LEAPUSERNAME; break;
7866 case AIROPLEAPPWD: ridcode = RID_LEAPPASSWORD; break;
7867 case AIROPWEPKEY: ridcode = RID_WEP_TEMP; writer = PC4500_writerid;
7869 case AIROPLEAPUSR+1: ridcode = 0xFF2A; break;
7870 case AIROPLEAPUSR+2: ridcode = 0xFF2B; break;
7872 /* this is not really a rid but a command given to the card
7876 if (enable_MAC(ai, 1) != 0)
7881 * Evidently this code in the airo driver does not get a symbol
7882 * as disable_MAC. it's probably so short the compiler does not gen one.
7888 /* This command merely clears the counts does not actually store any data
7889 * only reads rid. But as it changes the cards state, I put it in the
7890 * writerid routines.
7893 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7896 PC4500_readrid(ai,RID_STATSDELTACLEAR,iobuf,RIDSIZE, 1);
7898 enabled = ai->micstats.enabled;
7899 memset(&ai->micstats,0,sizeof(ai->micstats));
7900 ai->micstats.enabled = enabled;
7902 if (copy_to_user(comp->data, iobuf,
7903 min((int)comp->len, (int)RIDSIZE))) {
7911 return -EOPNOTSUPP; /* Blarg! */
7913 if(comp->len > RIDSIZE)
7916 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7919 if (copy_from_user(iobuf,comp->data,comp->len)) {
7924 if (comp->command == AIROPCFG) {
7925 ConfigRid *cfg = (ConfigRid *)iobuf;
7927 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags))
7928 cfg->opmode |= MODE_MIC;
7930 if ((cfg->opmode & MODE_CFG_MASK) == MODE_STA_IBSS)
7931 set_bit (FLAG_ADHOC, &ai->flags);
7933 clear_bit (FLAG_ADHOC, &ai->flags);
7936 if((*writer)(ai, ridcode, iobuf,comp->len,1)) {
7944 /*****************************************************************************
7945 * Ancillary flash / mod functions much black magic lurkes here *
7946 *****************************************************************************
7950 * Flash command switch table
7953 static int flashcard(struct net_device *dev, aironet_ioctl *comp) {
7956 /* Only super-user can modify flash */
7957 if (!capable(CAP_NET_ADMIN))
7960 switch(comp->command)
7963 return cmdreset((struct airo_info *)dev->ml_priv);
7966 if (!AIRO_FLASH(dev) &&
7967 (AIRO_FLASH(dev) = kmalloc(FLASHSIZE, GFP_KERNEL)) == NULL)
7969 return setflashmode((struct airo_info *)dev->ml_priv);
7971 case AIROFLSHGCHR: /* Get char from aux */
7972 if(comp->len != sizeof(int))
7974 if (copy_from_user(&z,comp->data,comp->len))
7976 return flashgchar((struct airo_info *)dev->ml_priv, z, 8000);
7978 case AIROFLSHPCHR: /* Send char to card. */
7979 if(comp->len != sizeof(int))
7981 if (copy_from_user(&z,comp->data,comp->len))
7983 return flashpchar((struct airo_info *)dev->ml_priv, z, 8000);
7985 case AIROFLPUTBUF: /* Send 32k to card */
7986 if (!AIRO_FLASH(dev))
7988 if(comp->len > FLASHSIZE)
7990 if (copy_from_user(AIRO_FLASH(dev), comp->data, comp->len))
7993 flashputbuf((struct airo_info *)dev->ml_priv);
7997 if (flashrestart((struct airo_info *)dev->ml_priv, dev))
8004 #define FLASH_COMMAND 0x7e7e
8008 * Disable MAC and do soft reset on
8012 static int cmdreset(struct airo_info *ai) {
8016 airo_print_info(ai->dev->name, "Waitbusy hang before RESET");
8020 OUT4500(ai,COMMAND,CMD_SOFTRESET);
8022 ssleep(1); /* WAS 600 12/7/00 */
8025 airo_print_info(ai->dev->name, "Waitbusy hang AFTER RESET");
8032 * Put the card in legendary flash
8036 static int setflashmode (struct airo_info *ai) {
8037 set_bit (FLAG_FLASHING, &ai->flags);
8039 OUT4500(ai, SWS0, FLASH_COMMAND);
8040 OUT4500(ai, SWS1, FLASH_COMMAND);
8042 OUT4500(ai, SWS0, FLASH_COMMAND);
8043 OUT4500(ai, COMMAND,0x10);
8045 OUT4500(ai, SWS2, FLASH_COMMAND);
8046 OUT4500(ai, SWS3, FLASH_COMMAND);
8047 OUT4500(ai, COMMAND,0);
8049 msleep(500); /* 500ms delay */
8052 clear_bit (FLAG_FLASHING, &ai->flags);
8053 airo_print_info(ai->dev->name, "Waitbusy hang after setflash mode");
8059 /* Put character to SWS0 wait for dwelltime
8063 static int flashpchar(struct airo_info *ai,int byte,int dwelltime) {
8074 /* Wait for busy bit d15 to go false indicating buffer empty */
8075 while ((IN4500 (ai, SWS0) & 0x8000) && waittime > 0) {
8080 /* timeout for busy clear wait */
8082 airo_print_info(ai->dev->name, "flash putchar busywait timeout!");
8086 /* Port is clear now write byte and wait for it to echo back */
8088 OUT4500(ai,SWS0,byte);
8091 echo = IN4500(ai,SWS1);
8092 } while (dwelltime >= 0 && echo != byte);
8096 return (echo == byte) ? 0 : -EIO;
8100 * Get a character from the card matching matchbyte
8103 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime){
8105 unsigned char rbyte=0;
8108 rchar = IN4500(ai,SWS1);
8110 if(dwelltime && !(0x8000 & rchar)){
8115 rbyte = 0xff & rchar;
8117 if( (rbyte == matchbyte) && (0x8000 & rchar) ){
8121 if( rbyte == 0x81 || rbyte == 0x82 || rbyte == 0x83 || rbyte == 0x1a || 0xffff == rchar)
8125 }while(dwelltime > 0);
8130 * Transfer 32k of firmware data from user buffer to our buffer and
8134 static int flashputbuf(struct airo_info *ai){
8138 if (test_bit(FLAG_MPI,&ai->flags))
8139 memcpy_toio(ai->pciaux + 0x8000, ai->flash, FLASHSIZE);
8141 OUT4500(ai,AUXPAGE,0x100);
8142 OUT4500(ai,AUXOFF,0);
8144 for(nwords=0;nwords != FLASHSIZE / 2;nwords++){
8145 OUT4500(ai,AUXDATA,ai->flash[nwords] & 0xffff);
8148 OUT4500(ai,SWS0,0x8000);
8156 static int flashrestart(struct airo_info *ai,struct net_device *dev){
8159 ssleep(1); /* Added 12/7/00 */
8160 clear_bit (FLAG_FLASHING, &ai->flags);
8161 if (test_bit(FLAG_MPI, &ai->flags)) {
8162 status = mpi_init_descriptors(ai);
8163 if (status != SUCCESS)
8166 status = setup_card(ai, dev->dev_addr, 1);
8168 if (!test_bit(FLAG_MPI,&ai->flags))
8169 for( i = 0; i < MAX_FIDS; i++ ) {
8170 ai->fids[i] = transmit_allocate
8171 ( ai, AIRO_DEF_MTU, i >= MAX_FIDS / 2 );
8174 ssleep(1); /* Added 12/7/00 */
8177 #endif /* CISCO_EXT */
8180 This program is free software; you can redistribute it and/or
8181 modify it under the terms of the GNU General Public License
8182 as published by the Free Software Foundation; either version 2
8183 of the License, or (at your option) any later version.
8185 This program is distributed in the hope that it will be useful,
8186 but WITHOUT ANY WARRANTY; without even the implied warranty of
8187 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
8188 GNU General Public License for more details.
8192 Redistribution and use in source and binary forms, with or without
8193 modification, are permitted provided that the following conditions
8196 1. Redistributions of source code must retain the above copyright
8197 notice, this list of conditions and the following disclaimer.
8198 2. Redistributions in binary form must reproduce the above copyright
8199 notice, this list of conditions and the following disclaimer in the
8200 documentation and/or other materials provided with the distribution.
8201 3. The name of the author may not be used to endorse or promote
8202 products derived from this software without specific prior written
8205 THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
8206 IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
8207 WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
8208 ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
8209 INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
8210 (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
8211 SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
8212 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
8213 STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
8214 IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
8215 POSSIBILITY OF SUCH DAMAGE.
8218 module_init(airo_init_module);
8219 module_exit(airo_cleanup_module);
projects / linux.git / blob