2 * Copyright (c) 2010 Broadcom Corporation
4 * Permission to use, copy, modify, and/or distribute this software for any
5 * purpose with or without fee is hereby granted, provided that the above
6 * copyright notice and this permission notice appear in all copies.
8 * THE SOFTWARE IS PROVIDED "AS IS" AND THE AUTHOR DISCLAIMS ALL WARRANTIES
9 * WITH REGARD TO THIS SOFTWARE INCLUDING ALL IMPLIED WARRANTIES OF
10 * MERCHANTABILITY AND FITNESS. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY
11 * SPECIAL, DIRECT, INDIRECT, OR CONSEQUENTIAL DAMAGES OR ANY DAMAGES
12 * WHATSOEVER RESULTING FROM LOSS OF USE, DATA OR PROFITS, WHETHER IN AN ACTION
13 * OF CONTRACT, NEGLIGENCE OR OTHER TORTIOUS ACTION, ARISING OUT OF OR IN
14 * CONNECTION WITH THE USE OR PERFORMANCE OF THIS SOFTWARE.
17 /* Toplevel file. Relies on dhd_linux.c to send commands to the dongle. */
19 #include <linux/kernel.h>
20 #include <linux/etherdevice.h>
21 #include <linux/module.h>
22 #include <linux/vmalloc.h>
23 #include <net/cfg80211.h>
24 #include <net/netlink.h>
26 #include <brcmu_utils.h>
28 #include <brcmu_wifi.h>
31 #include "tracepoint.h"
32 #include "fwil_types.h"
44 #define BRCMF_SCAN_IE_LEN_MAX 2048
46 #define WPA_OUI "\x00\x50\xF2" /* WPA OUI */
47 #define WPA_OUI_TYPE 1
48 #define RSN_OUI "\x00\x0F\xAC" /* RSN OUI */
49 #define WME_OUI_TYPE 2
50 #define WPS_OUI_TYPE 4
52 #define VS_IE_FIXED_HDR_LEN 6
53 #define WPA_IE_VERSION_LEN 2
54 #define WPA_IE_MIN_OUI_LEN 4
55 #define WPA_IE_SUITE_COUNT_LEN 2
57 #define WPA_CIPHER_NONE 0 /* None */
58 #define WPA_CIPHER_WEP_40 1 /* WEP (40-bit) */
59 #define WPA_CIPHER_TKIP 2 /* TKIP: default for WPA */
60 #define WPA_CIPHER_AES_CCM 4 /* AES (CCM) */
61 #define WPA_CIPHER_WEP_104 5 /* WEP (104-bit) */
63 #define RSN_AKM_NONE 0 /* None (IBSS) */
64 #define RSN_AKM_UNSPECIFIED 1 /* Over 802.1x */
65 #define RSN_AKM_PSK 2 /* Pre-shared Key */
66 #define RSN_AKM_SHA256_1X 5 /* SHA256, 802.1X */
67 #define RSN_AKM_SHA256_PSK 6 /* SHA256, Pre-shared Key */
68 #define RSN_CAP_LEN 2 /* Length of RSN capabilities */
69 #define RSN_CAP_PTK_REPLAY_CNTR_MASK (BIT(2) | BIT(3))
70 #define RSN_CAP_MFPR_MASK BIT(6)
71 #define RSN_CAP_MFPC_MASK BIT(7)
72 #define RSN_PMKID_COUNT_LEN 2
74 #define VNDR_IE_CMD_LEN 4 /* length of the set command
75 * string :"add", "del" (+ NUL)
77 #define VNDR_IE_COUNT_OFFSET 4
78 #define VNDR_IE_PKTFLAG_OFFSET 8
79 #define VNDR_IE_VSIE_OFFSET 12
80 #define VNDR_IE_HDR_SIZE 12
81 #define VNDR_IE_PARSE_LIMIT 5
83 #define DOT11_MGMT_HDR_LEN 24 /* d11 management header len */
84 #define DOT11_BCN_PRB_FIXED_LEN 12 /* beacon/probe fixed length */
86 #define BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS 320
87 #define BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS 400
88 #define BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS 20
90 #define BRCMF_SCAN_CHANNEL_TIME 40
91 #define BRCMF_SCAN_UNASSOC_TIME 40
92 #define BRCMF_SCAN_PASSIVE_TIME 120
94 #define BRCMF_ND_INFO_TIMEOUT msecs_to_jiffies(2000)
96 #define BRCMF_ASSOC_PARAMS_FIXED_SIZE \
97 (sizeof(struct brcmf_assoc_params_le) - sizeof(u16))
99 static bool check_vif_up(struct brcmf_cfg80211_vif *vif)
101 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state)) {
102 brcmf_dbg(INFO, "device is not ready : status (%lu)\n",
109 #define RATE_TO_BASE100KBPS(rate) (((rate) * 10) / 2)
110 #define RATETAB_ENT(_rateid, _flags) \
112 .bitrate = RATE_TO_BASE100KBPS(_rateid), \
113 .hw_value = (_rateid), \
117 static struct ieee80211_rate __wl_rates[] = {
118 RATETAB_ENT(BRCM_RATE_1M, 0),
119 RATETAB_ENT(BRCM_RATE_2M, IEEE80211_RATE_SHORT_PREAMBLE),
120 RATETAB_ENT(BRCM_RATE_5M5, IEEE80211_RATE_SHORT_PREAMBLE),
121 RATETAB_ENT(BRCM_RATE_11M, IEEE80211_RATE_SHORT_PREAMBLE),
122 RATETAB_ENT(BRCM_RATE_6M, 0),
123 RATETAB_ENT(BRCM_RATE_9M, 0),
124 RATETAB_ENT(BRCM_RATE_12M, 0),
125 RATETAB_ENT(BRCM_RATE_18M, 0),
126 RATETAB_ENT(BRCM_RATE_24M, 0),
127 RATETAB_ENT(BRCM_RATE_36M, 0),
128 RATETAB_ENT(BRCM_RATE_48M, 0),
129 RATETAB_ENT(BRCM_RATE_54M, 0),
132 #define wl_g_rates (__wl_rates + 0)
133 #define wl_g_rates_size ARRAY_SIZE(__wl_rates)
134 #define wl_a_rates (__wl_rates + 4)
135 #define wl_a_rates_size (wl_g_rates_size - 4)
137 #define CHAN2G(_channel, _freq) { \
138 .band = NL80211_BAND_2GHZ, \
139 .center_freq = (_freq), \
140 .hw_value = (_channel), \
141 .max_antenna_gain = 0, \
145 #define CHAN5G(_channel) { \
146 .band = NL80211_BAND_5GHZ, \
147 .center_freq = 5000 + (5 * (_channel)), \
148 .hw_value = (_channel), \
149 .max_antenna_gain = 0, \
153 static struct ieee80211_channel __wl_2ghz_channels[] = {
154 CHAN2G(1, 2412), CHAN2G(2, 2417), CHAN2G(3, 2422), CHAN2G(4, 2427),
155 CHAN2G(5, 2432), CHAN2G(6, 2437), CHAN2G(7, 2442), CHAN2G(8, 2447),
156 CHAN2G(9, 2452), CHAN2G(10, 2457), CHAN2G(11, 2462), CHAN2G(12, 2467),
157 CHAN2G(13, 2472), CHAN2G(14, 2484)
160 static struct ieee80211_channel __wl_5ghz_channels[] = {
161 CHAN5G(34), CHAN5G(36), CHAN5G(38), CHAN5G(40), CHAN5G(42),
162 CHAN5G(44), CHAN5G(46), CHAN5G(48), CHAN5G(52), CHAN5G(56),
163 CHAN5G(60), CHAN5G(64), CHAN5G(100), CHAN5G(104), CHAN5G(108),
164 CHAN5G(112), CHAN5G(116), CHAN5G(120), CHAN5G(124), CHAN5G(128),
165 CHAN5G(132), CHAN5G(136), CHAN5G(140), CHAN5G(144), CHAN5G(149),
166 CHAN5G(153), CHAN5G(157), CHAN5G(161), CHAN5G(165)
169 /* Band templates duplicated per wiphy. The channel info
170 * above is added to the band during setup.
172 static const struct ieee80211_supported_band __wl_band_2ghz = {
173 .band = NL80211_BAND_2GHZ,
174 .bitrates = wl_g_rates,
175 .n_bitrates = wl_g_rates_size,
178 static const struct ieee80211_supported_band __wl_band_5ghz = {
179 .band = NL80211_BAND_5GHZ,
180 .bitrates = wl_a_rates,
181 .n_bitrates = wl_a_rates_size,
184 /* This is to override regulatory domains defined in cfg80211 module (reg.c)
185 * By default world regulatory domain defined in reg.c puts the flags
186 * NL80211_RRF_NO_IR for 5GHz channels (for * 36..48 and 149..165).
187 * With respect to these flags, wpa_supplicant doesn't * start p2p
188 * operations on 5GHz channels. All the changes in world regulatory
189 * domain are to be done here.
191 static const struct ieee80211_regdomain brcmf_regdom = {
195 /* IEEE 802.11b/g, channels 1..11 */
196 REG_RULE(2412-10, 2472+10, 40, 6, 20, 0),
198 /* IEEE 802.11 channel 14 - Only JP enables
199 * this and for 802.11b only
201 REG_RULE(2484-10, 2484+10, 20, 6, 20, 0),
202 /* IEEE 802.11a, channel 36..64 */
203 REG_RULE(5150-10, 5350+10, 80, 6, 20, 0),
204 /* IEEE 802.11a, channel 100..165 */
205 REG_RULE(5470-10, 5850+10, 80, 6, 20, 0), }
208 /* Note: brcmf_cipher_suites is an array of int defining which cipher suites
209 * are supported. A pointer to this array and the number of entries is passed
210 * on to upper layers. AES_CMAC defines whether or not the driver supports MFP.
211 * So the cipher suite AES_CMAC has to be the last one in the array, and when
212 * device does not support MFP then the number of suites will be decreased by 1
214 static const u32 brcmf_cipher_suites[] = {
215 WLAN_CIPHER_SUITE_WEP40,
216 WLAN_CIPHER_SUITE_WEP104,
217 WLAN_CIPHER_SUITE_TKIP,
218 WLAN_CIPHER_SUITE_CCMP,
219 /* Keep as last entry: */
220 WLAN_CIPHER_SUITE_AES_CMAC
223 /* Vendor specific ie. id = 221, oui and type defines exact ie */
224 struct brcmf_vs_tlv {
231 struct parsed_vndr_ie_info {
233 u32 ie_len; /* total length including id & length field */
234 struct brcmf_vs_tlv vndrie;
237 struct parsed_vndr_ies {
239 struct parsed_vndr_ie_info ie_info[VNDR_IE_PARSE_LIMIT];
242 static u8 nl80211_band_to_fwil(enum nl80211_band band)
245 case NL80211_BAND_2GHZ:
247 case NL80211_BAND_5GHZ:
256 static u16 chandef_to_chanspec(struct brcmu_d11inf *d11inf,
257 struct cfg80211_chan_def *ch)
259 struct brcmu_chan ch_inf;
262 brcmf_dbg(TRACE, "chandef: control %d center %d width %d\n",
263 ch->chan->center_freq, ch->center_freq1, ch->width);
264 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq1);
265 primary_offset = ch->chan->center_freq - ch->center_freq1;
267 case NL80211_CHAN_WIDTH_20:
268 case NL80211_CHAN_WIDTH_20_NOHT:
269 ch_inf.bw = BRCMU_CHAN_BW_20;
270 WARN_ON(primary_offset != 0);
272 case NL80211_CHAN_WIDTH_40:
273 ch_inf.bw = BRCMU_CHAN_BW_40;
274 if (primary_offset > 0)
275 ch_inf.sb = BRCMU_CHAN_SB_U;
277 ch_inf.sb = BRCMU_CHAN_SB_L;
279 case NL80211_CHAN_WIDTH_80:
280 ch_inf.bw = BRCMU_CHAN_BW_80;
281 if (primary_offset == -30)
282 ch_inf.sb = BRCMU_CHAN_SB_LL;
283 else if (primary_offset == -10)
284 ch_inf.sb = BRCMU_CHAN_SB_LU;
285 else if (primary_offset == 10)
286 ch_inf.sb = BRCMU_CHAN_SB_UL;
288 ch_inf.sb = BRCMU_CHAN_SB_UU;
290 case NL80211_CHAN_WIDTH_80P80:
291 case NL80211_CHAN_WIDTH_160:
292 case NL80211_CHAN_WIDTH_5:
293 case NL80211_CHAN_WIDTH_10:
297 switch (ch->chan->band) {
298 case NL80211_BAND_2GHZ:
299 ch_inf.band = BRCMU_CHAN_BAND_2G;
301 case NL80211_BAND_5GHZ:
302 ch_inf.band = BRCMU_CHAN_BAND_5G;
304 case NL80211_BAND_60GHZ:
308 d11inf->encchspec(&ch_inf);
310 return ch_inf.chspec;
313 u16 channel_to_chanspec(struct brcmu_d11inf *d11inf,
314 struct ieee80211_channel *ch)
316 struct brcmu_chan ch_inf;
318 ch_inf.chnum = ieee80211_frequency_to_channel(ch->center_freq);
319 ch_inf.bw = BRCMU_CHAN_BW_20;
320 d11inf->encchspec(&ch_inf);
322 return ch_inf.chspec;
325 /* Traverse a string of 1-byte tag/1-byte length/variable-length value
326 * triples, returning a pointer to the substring whose first element
329 static const struct brcmf_tlv *
330 brcmf_parse_tlvs(const void *buf, int buflen, uint key)
332 const struct brcmf_tlv *elt = buf;
335 /* find tagged parameter */
336 while (totlen >= TLV_HDR_LEN) {
339 /* validate remaining totlen */
340 if ((elt->id == key) && (totlen >= (len + TLV_HDR_LEN)))
343 elt = (struct brcmf_tlv *)((u8 *)elt + (len + TLV_HDR_LEN));
344 totlen -= (len + TLV_HDR_LEN);
350 /* Is any of the tlvs the expected entry? If
351 * not update the tlvs buffer pointer/length.
354 brcmf_tlv_has_ie(const u8 *ie, const u8 **tlvs, u32 *tlvs_len,
355 const u8 *oui, u32 oui_len, u8 type)
357 /* If the contents match the OUI and the type */
358 if (ie[TLV_LEN_OFF] >= oui_len + 1 &&
359 !memcmp(&ie[TLV_BODY_OFF], oui, oui_len) &&
360 type == ie[TLV_BODY_OFF + oui_len]) {
366 /* point to the next ie */
367 ie += ie[TLV_LEN_OFF] + TLV_HDR_LEN;
368 /* calculate the length of the rest of the buffer */
369 *tlvs_len -= (int)(ie - *tlvs);
370 /* update the pointer to the start of the buffer */
376 static struct brcmf_vs_tlv *
377 brcmf_find_wpaie(const u8 *parse, u32 len)
379 const struct brcmf_tlv *ie;
381 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
382 if (brcmf_tlv_has_ie((const u8 *)ie, &parse, &len,
383 WPA_OUI, TLV_OUI_LEN, WPA_OUI_TYPE))
384 return (struct brcmf_vs_tlv *)ie;
389 static struct brcmf_vs_tlv *
390 brcmf_find_wpsie(const u8 *parse, u32 len)
392 const struct brcmf_tlv *ie;
394 while ((ie = brcmf_parse_tlvs(parse, len, WLAN_EID_VENDOR_SPECIFIC))) {
395 if (brcmf_tlv_has_ie((u8 *)ie, &parse, &len,
396 WPA_OUI, TLV_OUI_LEN, WPS_OUI_TYPE))
397 return (struct brcmf_vs_tlv *)ie;
402 static int brcmf_vif_change_validate(struct brcmf_cfg80211_info *cfg,
403 struct brcmf_cfg80211_vif *vif,
404 enum nl80211_iftype new_type)
406 struct brcmf_cfg80211_vif *pos;
407 bool check_combos = false;
409 struct iface_combination_params params = {
410 .num_different_channels = 1,
413 list_for_each_entry(pos, &cfg->vif_list, list)
415 params.iftype_num[new_type]++;
417 /* concurrent interfaces so need check combinations */
419 params.iftype_num[pos->wdev.iftype]++;
423 ret = cfg80211_check_combinations(cfg->wiphy, ¶ms);
428 static int brcmf_vif_add_validate(struct brcmf_cfg80211_info *cfg,
429 enum nl80211_iftype new_type)
431 struct brcmf_cfg80211_vif *pos;
432 struct iface_combination_params params = {
433 .num_different_channels = 1,
436 list_for_each_entry(pos, &cfg->vif_list, list)
437 params.iftype_num[pos->wdev.iftype]++;
439 params.iftype_num[new_type]++;
440 return cfg80211_check_combinations(cfg->wiphy, ¶ms);
443 static void convert_key_from_CPU(struct brcmf_wsec_key *key,
444 struct brcmf_wsec_key_le *key_le)
446 key_le->index = cpu_to_le32(key->index);
447 key_le->len = cpu_to_le32(key->len);
448 key_le->algo = cpu_to_le32(key->algo);
449 key_le->flags = cpu_to_le32(key->flags);
450 key_le->rxiv.hi = cpu_to_le32(key->rxiv.hi);
451 key_le->rxiv.lo = cpu_to_le16(key->rxiv.lo);
452 key_le->iv_initialized = cpu_to_le32(key->iv_initialized);
453 memcpy(key_le->data, key->data, sizeof(key->data));
454 memcpy(key_le->ea, key->ea, sizeof(key->ea));
458 send_key_to_dongle(struct brcmf_if *ifp, struct brcmf_wsec_key *key)
461 struct brcmf_wsec_key_le key_le;
463 convert_key_from_CPU(key, &key_le);
465 brcmf_netdev_wait_pend8021x(ifp);
467 err = brcmf_fil_bsscfg_data_set(ifp, "wsec_key", &key_le,
471 brcmf_err("wsec_key error (%d)\n", err);
476 brcmf_cfg80211_update_proto_addr_mode(struct wireless_dev *wdev)
478 struct brcmf_cfg80211_vif *vif;
479 struct brcmf_if *ifp;
481 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
484 if ((wdev->iftype == NL80211_IFTYPE_ADHOC) ||
485 (wdev->iftype == NL80211_IFTYPE_AP) ||
486 (wdev->iftype == NL80211_IFTYPE_P2P_GO))
487 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
490 brcmf_proto_configure_addr_mode(ifp->drvr, ifp->ifidx,
494 static int brcmf_get_first_free_bsscfgidx(struct brcmf_pub *drvr)
498 for (bsscfgidx = 0; bsscfgidx < BRCMF_MAX_IFS; bsscfgidx++) {
499 /* bsscfgidx 1 is reserved for legacy P2P */
502 if (!drvr->iflist[bsscfgidx])
509 static int brcmf_cfg80211_request_ap_if(struct brcmf_if *ifp)
511 struct brcmf_mbss_ssid_le mbss_ssid_le;
515 memset(&mbss_ssid_le, 0, sizeof(mbss_ssid_le));
516 bsscfgidx = brcmf_get_first_free_bsscfgidx(ifp->drvr);
520 mbss_ssid_le.bsscfgidx = cpu_to_le32(bsscfgidx);
521 mbss_ssid_le.SSID_len = cpu_to_le32(5);
522 sprintf(mbss_ssid_le.SSID, "ssid%d" , bsscfgidx);
524 err = brcmf_fil_bsscfg_data_set(ifp, "bsscfg:ssid", &mbss_ssid_le,
525 sizeof(mbss_ssid_le));
527 brcmf_err("setting ssid failed %d\n", err);
533 * brcmf_ap_add_vif() - create a new AP virtual interface for multiple BSS
535 * @wiphy: wiphy device of new interface.
536 * @name: name of the new interface.
537 * @params: contains mac address for AP device.
540 struct wireless_dev *brcmf_ap_add_vif(struct wiphy *wiphy, const char *name,
541 struct vif_params *params)
543 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
544 struct brcmf_if *ifp = netdev_priv(cfg_to_ndev(cfg));
545 struct brcmf_cfg80211_vif *vif;
548 if (brcmf_cfg80211_vif_event_armed(cfg))
549 return ERR_PTR(-EBUSY);
551 brcmf_dbg(INFO, "Adding vif \"%s\"\n", name);
553 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_AP);
555 return (struct wireless_dev *)vif;
557 brcmf_cfg80211_arm_vif_event(cfg, vif);
559 err = brcmf_cfg80211_request_ap_if(ifp);
561 brcmf_cfg80211_arm_vif_event(cfg, NULL);
565 /* wait for firmware event */
566 err = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_ADD,
567 BRCMF_VIF_EVENT_TIMEOUT);
568 brcmf_cfg80211_arm_vif_event(cfg, NULL);
570 brcmf_err("timeout occurred\n");
575 /* interface created in firmware */
578 brcmf_err("no if pointer provided\n");
583 strncpy(ifp->ndev->name, name, sizeof(ifp->ndev->name) - 1);
584 err = brcmf_net_attach(ifp, true);
586 brcmf_err("Registering netdevice failed\n");
587 free_netdev(ifp->ndev);
591 return &ifp->vif->wdev;
598 static bool brcmf_is_apmode(struct brcmf_cfg80211_vif *vif)
600 enum nl80211_iftype iftype;
602 iftype = vif->wdev.iftype;
603 return iftype == NL80211_IFTYPE_AP || iftype == NL80211_IFTYPE_P2P_GO;
606 static bool brcmf_is_ibssmode(struct brcmf_cfg80211_vif *vif)
608 return vif->wdev.iftype == NL80211_IFTYPE_ADHOC;
611 static struct wireless_dev *brcmf_cfg80211_add_iface(struct wiphy *wiphy,
613 unsigned char name_assign_type,
614 enum nl80211_iftype type,
615 struct vif_params *params)
617 struct wireless_dev *wdev;
620 brcmf_dbg(TRACE, "enter: %s type %d\n", name, type);
621 err = brcmf_vif_add_validate(wiphy_to_cfg(wiphy), type);
623 brcmf_err("iface validation failed: err=%d\n", err);
627 case NL80211_IFTYPE_ADHOC:
628 case NL80211_IFTYPE_STATION:
629 case NL80211_IFTYPE_AP_VLAN:
630 case NL80211_IFTYPE_WDS:
631 case NL80211_IFTYPE_MONITOR:
632 case NL80211_IFTYPE_MESH_POINT:
633 return ERR_PTR(-EOPNOTSUPP);
634 case NL80211_IFTYPE_AP:
635 wdev = brcmf_ap_add_vif(wiphy, name, params);
637 case NL80211_IFTYPE_P2P_CLIENT:
638 case NL80211_IFTYPE_P2P_GO:
639 case NL80211_IFTYPE_P2P_DEVICE:
640 wdev = brcmf_p2p_add_vif(wiphy, name, name_assign_type, type, params);
642 case NL80211_IFTYPE_UNSPECIFIED:
644 return ERR_PTR(-EINVAL);
648 brcmf_err("add iface %s type %d failed: err=%d\n",
649 name, type, (int)PTR_ERR(wdev));
651 brcmf_cfg80211_update_proto_addr_mode(wdev);
656 static void brcmf_scan_config_mpc(struct brcmf_if *ifp, int mpc)
658 if (brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_NEED_MPC))
659 brcmf_set_mpc(ifp, mpc);
662 void brcmf_set_mpc(struct brcmf_if *ifp, int mpc)
666 if (check_vif_up(ifp->vif)) {
667 err = brcmf_fil_iovar_int_set(ifp, "mpc", mpc);
669 brcmf_err("fail to set mpc\n");
672 brcmf_dbg(INFO, "MPC : %d\n", mpc);
676 s32 brcmf_notify_escan_complete(struct brcmf_cfg80211_info *cfg,
677 struct brcmf_if *ifp, bool aborted,
680 struct brcmf_scan_params_le params_le;
681 struct cfg80211_scan_request *scan_request;
686 brcmf_dbg(SCAN, "Enter\n");
688 /* clear scan request, because the FW abort can cause a second call */
689 /* to this functon and might cause a double cfg80211_scan_done */
690 scan_request = cfg->scan_request;
691 cfg->scan_request = NULL;
693 if (timer_pending(&cfg->escan_timeout))
694 del_timer_sync(&cfg->escan_timeout);
697 /* Do a scan abort to stop the driver's scan engine */
698 brcmf_dbg(SCAN, "ABORT scan in firmware\n");
699 memset(¶ms_le, 0, sizeof(params_le));
700 eth_broadcast_addr(params_le.bssid);
701 params_le.bss_type = DOT11_BSSTYPE_ANY;
702 params_le.scan_type = 0;
703 params_le.channel_num = cpu_to_le32(1);
704 params_le.nprobes = cpu_to_le32(1);
705 params_le.active_time = cpu_to_le32(-1);
706 params_le.passive_time = cpu_to_le32(-1);
707 params_le.home_time = cpu_to_le32(-1);
708 /* Scan is aborted by setting channel_list[0] to -1 */
709 params_le.channel_list[0] = cpu_to_le16(-1);
710 /* E-Scan (or anyother type) can be aborted by SCAN */
711 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCAN,
712 ¶ms_le, sizeof(params_le));
714 brcmf_err("Scan abort failed\n");
717 brcmf_scan_config_mpc(ifp, 1);
720 * e-scan can be initiated internally
721 * which takes precedence.
723 if (cfg->int_escan_map) {
724 brcmf_dbg(SCAN, "scheduled scan completed (%x)\n",
726 while (cfg->int_escan_map) {
727 bucket = __ffs(cfg->int_escan_map);
728 cfg->int_escan_map &= ~BIT(bucket);
729 reqid = brcmf_pno_find_reqid_by_bucket(cfg->pno,
732 brcmf_dbg(SCAN, "report results: reqid=%llu\n",
734 cfg80211_sched_scan_results(cfg_to_wiphy(cfg),
738 } else if (scan_request) {
739 struct cfg80211_scan_info info = {
743 brcmf_dbg(SCAN, "ESCAN Completed scan: %s\n",
744 aborted ? "Aborted" : "Done");
745 cfg80211_scan_done(scan_request, &info);
747 if (!test_and_clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
748 brcmf_dbg(SCAN, "Scan complete, probably P2P scan\n");
753 static int brcmf_cfg80211_del_ap_iface(struct wiphy *wiphy,
754 struct wireless_dev *wdev)
756 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
757 struct net_device *ndev = wdev->netdev;
758 struct brcmf_if *ifp = netdev_priv(ndev);
762 brcmf_cfg80211_arm_vif_event(cfg, ifp->vif);
764 err = brcmf_fil_bsscfg_data_set(ifp, "interface_remove", NULL, 0);
766 brcmf_err("interface_remove failed %d\n", err);
770 /* wait for firmware event */
771 ret = brcmf_cfg80211_wait_vif_event(cfg, BRCMF_E_IF_DEL,
772 BRCMF_VIF_EVENT_TIMEOUT);
774 brcmf_err("timeout occurred\n");
779 brcmf_remove_interface(ifp, true);
782 brcmf_cfg80211_arm_vif_event(cfg, NULL);
787 int brcmf_cfg80211_del_iface(struct wiphy *wiphy, struct wireless_dev *wdev)
789 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
790 struct net_device *ndev = wdev->netdev;
792 if (ndev && ndev == cfg_to_ndev(cfg))
795 /* vif event pending in firmware */
796 if (brcmf_cfg80211_vif_event_armed(cfg))
800 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status) &&
801 cfg->escan_info.ifp == netdev_priv(ndev))
802 brcmf_notify_escan_complete(cfg, netdev_priv(ndev),
805 brcmf_fil_iovar_int_set(netdev_priv(ndev), "mpc", 1);
808 switch (wdev->iftype) {
809 case NL80211_IFTYPE_ADHOC:
810 case NL80211_IFTYPE_STATION:
811 case NL80211_IFTYPE_AP_VLAN:
812 case NL80211_IFTYPE_WDS:
813 case NL80211_IFTYPE_MONITOR:
814 case NL80211_IFTYPE_MESH_POINT:
816 case NL80211_IFTYPE_AP:
817 return brcmf_cfg80211_del_ap_iface(wiphy, wdev);
818 case NL80211_IFTYPE_P2P_CLIENT:
819 case NL80211_IFTYPE_P2P_GO:
820 case NL80211_IFTYPE_P2P_DEVICE:
821 return brcmf_p2p_del_vif(wiphy, wdev);
822 case NL80211_IFTYPE_UNSPECIFIED:
830 brcmf_cfg80211_change_iface(struct wiphy *wiphy, struct net_device *ndev,
831 enum nl80211_iftype type,
832 struct vif_params *params)
834 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
835 struct brcmf_if *ifp = netdev_priv(ndev);
836 struct brcmf_cfg80211_vif *vif = ifp->vif;
841 brcmf_dbg(TRACE, "Enter, bsscfgidx=%d, type=%d\n", ifp->bsscfgidx,
844 /* WAR: There are a number of p2p interface related problems which
845 * need to be handled initially (before doing the validate).
846 * wpa_supplicant tends to do iface changes on p2p device/client/go
847 * which are not always possible/allowed. However we need to return
848 * OK otherwise the wpa_supplicant wont start. The situation differs
849 * on configuration and setup (p2pon=1 module param). The first check
850 * is to see if the request is a change to station for p2p iface.
852 if ((type == NL80211_IFTYPE_STATION) &&
853 ((vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) ||
854 (vif->wdev.iftype == NL80211_IFTYPE_P2P_GO) ||
855 (vif->wdev.iftype == NL80211_IFTYPE_P2P_DEVICE))) {
856 brcmf_dbg(TRACE, "Ignoring cmd for p2p if\n");
857 /* Now depending on whether module param p2pon=1 was used the
858 * response needs to be either 0 or EOPNOTSUPP. The reason is
859 * that if p2pon=1 is used, but a newer supplicant is used then
860 * we should return an error, as this combination wont work.
861 * In other situations 0 is returned and supplicant will start
862 * normally. It will give a trace in cfg80211, but it is the
863 * only way to get it working. Unfortunately this will result
864 * in situation where we wont support new supplicant in
865 * combination with module param p2pon=1, but that is the way
866 * it is. If the user tries this then unloading of driver might
869 if (cfg->p2p.p2pdev_dynamically)
874 err = brcmf_vif_change_validate(wiphy_to_cfg(wiphy), vif, type);
876 brcmf_err("iface validation failed: err=%d\n", err);
880 case NL80211_IFTYPE_MONITOR:
881 case NL80211_IFTYPE_WDS:
882 brcmf_err("type (%d) : currently we do not support this type\n",
885 case NL80211_IFTYPE_ADHOC:
888 case NL80211_IFTYPE_STATION:
891 case NL80211_IFTYPE_AP:
892 case NL80211_IFTYPE_P2P_GO:
901 if (type == NL80211_IFTYPE_P2P_GO) {
902 brcmf_dbg(INFO, "IF Type = P2P GO\n");
903 err = brcmf_p2p_ifchange(cfg, BRCMF_FIL_P2P_IF_GO);
906 brcmf_dbg(INFO, "IF Type = AP\n");
909 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, infra);
911 brcmf_err("WLC_SET_INFRA error (%d)\n", err);
915 brcmf_dbg(INFO, "IF Type = %s\n", brcmf_is_ibssmode(vif) ?
918 ndev->ieee80211_ptr->iftype = type;
920 brcmf_cfg80211_update_proto_addr_mode(&vif->wdev);
923 brcmf_dbg(TRACE, "Exit\n");
928 static void brcmf_escan_prep(struct brcmf_cfg80211_info *cfg,
929 struct brcmf_scan_params_le *params_le,
930 struct cfg80211_scan_request *request)
938 struct brcmf_ssid_le ssid_le;
940 eth_broadcast_addr(params_le->bssid);
941 params_le->bss_type = DOT11_BSSTYPE_ANY;
942 params_le->scan_type = BRCMF_SCANTYPE_ACTIVE;
943 params_le->channel_num = 0;
944 params_le->nprobes = cpu_to_le32(-1);
945 params_le->active_time = cpu_to_le32(-1);
946 params_le->passive_time = cpu_to_le32(-1);
947 params_le->home_time = cpu_to_le32(-1);
948 memset(¶ms_le->ssid_le, 0, sizeof(params_le->ssid_le));
950 n_ssids = request->n_ssids;
951 n_channels = request->n_channels;
953 /* Copy channel array if applicable */
954 brcmf_dbg(SCAN, "### List of channelspecs to scan ### %d\n",
956 if (n_channels > 0) {
957 for (i = 0; i < n_channels; i++) {
958 chanspec = channel_to_chanspec(&cfg->d11inf,
959 request->channels[i]);
960 brcmf_dbg(SCAN, "Chan : %d, Channel spec: %x\n",
961 request->channels[i]->hw_value, chanspec);
962 params_le->channel_list[i] = cpu_to_le16(chanspec);
965 brcmf_dbg(SCAN, "Scanning all channels\n");
967 /* Copy ssid array if applicable */
968 brcmf_dbg(SCAN, "### List of SSIDs to scan ### %d\n", n_ssids);
970 offset = offsetof(struct brcmf_scan_params_le, channel_list) +
971 n_channels * sizeof(u16);
972 offset = roundup(offset, sizeof(u32));
973 ptr = (char *)params_le + offset;
974 for (i = 0; i < n_ssids; i++) {
975 memset(&ssid_le, 0, sizeof(ssid_le));
977 cpu_to_le32(request->ssids[i].ssid_len);
978 memcpy(ssid_le.SSID, request->ssids[i].ssid,
979 request->ssids[i].ssid_len);
980 if (!ssid_le.SSID_len)
981 brcmf_dbg(SCAN, "%d: Broadcast scan\n", i);
983 brcmf_dbg(SCAN, "%d: scan for %.32s size=%d\n",
984 i, ssid_le.SSID, ssid_le.SSID_len);
985 memcpy(ptr, &ssid_le, sizeof(ssid_le));
986 ptr += sizeof(ssid_le);
989 brcmf_dbg(SCAN, "Performing passive scan\n");
990 params_le->scan_type = BRCMF_SCANTYPE_PASSIVE;
992 /* Adding mask to channel numbers */
993 params_le->channel_num =
994 cpu_to_le32((n_ssids << BRCMF_SCAN_PARAMS_NSSID_SHIFT) |
995 (n_channels & BRCMF_SCAN_PARAMS_COUNT_MASK));
999 brcmf_run_escan(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp,
1000 struct cfg80211_scan_request *request)
1002 s32 params_size = BRCMF_SCAN_PARAMS_FIXED_SIZE +
1003 offsetof(struct brcmf_escan_params_le, params_le);
1004 struct brcmf_escan_params_le *params;
1007 brcmf_dbg(SCAN, "E-SCAN START\n");
1009 if (request != NULL) {
1010 /* Allocate space for populating ssids in struct */
1011 params_size += sizeof(u32) * ((request->n_channels + 1) / 2);
1013 /* Allocate space for populating ssids in struct */
1014 params_size += sizeof(struct brcmf_ssid_le) * request->n_ssids;
1017 params = kzalloc(params_size, GFP_KERNEL);
1022 BUG_ON(params_size + sizeof("escan") >= BRCMF_DCMD_MEDLEN);
1023 brcmf_escan_prep(cfg, ¶ms->params_le, request);
1024 params->version = cpu_to_le32(BRCMF_ESCAN_REQ_VERSION);
1025 params->action = cpu_to_le16(WL_ESCAN_ACTION_START);
1026 params->sync_id = cpu_to_le16(0x1234);
1028 err = brcmf_fil_iovar_data_set(ifp, "escan", params, params_size);
1031 brcmf_dbg(INFO, "system busy : escan canceled\n");
1033 brcmf_err("error (%d)\n", err);
1042 brcmf_do_escan(struct brcmf_if *ifp, struct cfg80211_scan_request *request)
1044 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
1046 struct brcmf_scan_results *results;
1047 struct escan_info *escan = &cfg->escan_info;
1049 brcmf_dbg(SCAN, "Enter\n");
1051 escan->wiphy = cfg->wiphy;
1052 escan->escan_state = WL_ESCAN_STATE_SCANNING;
1054 brcmf_scan_config_mpc(ifp, 0);
1055 results = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
1056 results->version = 0;
1058 results->buflen = WL_ESCAN_RESULTS_FIXED_SIZE;
1060 err = escan->run(cfg, ifp, request);
1062 brcmf_scan_config_mpc(ifp, 1);
1067 brcmf_cfg80211_scan(struct wiphy *wiphy, struct cfg80211_scan_request *request)
1069 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1070 struct brcmf_cfg80211_vif *vif;
1073 brcmf_dbg(TRACE, "Enter\n");
1074 vif = container_of(request->wdev, struct brcmf_cfg80211_vif, wdev);
1075 if (!check_vif_up(vif))
1078 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
1079 brcmf_err("Scanning already: status (%lu)\n", cfg->scan_status);
1082 if (test_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status)) {
1083 brcmf_err("Scanning being aborted: status (%lu)\n",
1087 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
1088 brcmf_err("Scanning suppressed: status (%lu)\n",
1092 if (test_bit(BRCMF_VIF_STATUS_CONNECTING, &vif->sme_state)) {
1093 brcmf_err("Connecting: status (%lu)\n", vif->sme_state);
1097 /* If scan req comes for p2p0, send it over primary I/F */
1098 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
1099 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif;
1101 brcmf_dbg(SCAN, "START ESCAN\n");
1103 cfg->scan_request = request;
1104 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1106 cfg->escan_info.run = brcmf_run_escan;
1107 err = brcmf_p2p_scan_prep(wiphy, request, vif);
1111 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_PRBREQ_FLAG,
1112 request->ie, request->ie_len);
1116 err = brcmf_do_escan(vif->ifp, request);
1120 /* Arm scan timeout timer */
1121 mod_timer(&cfg->escan_timeout,
1122 jiffies + msecs_to_jiffies(BRCMF_ESCAN_TIMER_INTERVAL_MS));
1127 brcmf_err("scan error (%d)\n", err);
1128 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
1129 cfg->scan_request = NULL;
1133 static s32 brcmf_set_rts(struct net_device *ndev, u32 rts_threshold)
1137 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "rtsthresh",
1140 brcmf_err("Error (%d)\n", err);
1145 static s32 brcmf_set_frag(struct net_device *ndev, u32 frag_threshold)
1149 err = brcmf_fil_iovar_int_set(netdev_priv(ndev), "fragthresh",
1152 brcmf_err("Error (%d)\n", err);
1157 static s32 brcmf_set_retry(struct net_device *ndev, u32 retry, bool l)
1160 u32 cmd = (l ? BRCMF_C_SET_LRL : BRCMF_C_SET_SRL);
1162 err = brcmf_fil_cmd_int_set(netdev_priv(ndev), cmd, retry);
1164 brcmf_err("cmd (%d) , error (%d)\n", cmd, err);
1170 static s32 brcmf_cfg80211_set_wiphy_params(struct wiphy *wiphy, u32 changed)
1172 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1173 struct net_device *ndev = cfg_to_ndev(cfg);
1174 struct brcmf_if *ifp = netdev_priv(ndev);
1177 brcmf_dbg(TRACE, "Enter\n");
1178 if (!check_vif_up(ifp->vif))
1181 if (changed & WIPHY_PARAM_RTS_THRESHOLD &&
1182 (cfg->conf->rts_threshold != wiphy->rts_threshold)) {
1183 cfg->conf->rts_threshold = wiphy->rts_threshold;
1184 err = brcmf_set_rts(ndev, cfg->conf->rts_threshold);
1188 if (changed & WIPHY_PARAM_FRAG_THRESHOLD &&
1189 (cfg->conf->frag_threshold != wiphy->frag_threshold)) {
1190 cfg->conf->frag_threshold = wiphy->frag_threshold;
1191 err = brcmf_set_frag(ndev, cfg->conf->frag_threshold);
1195 if (changed & WIPHY_PARAM_RETRY_LONG
1196 && (cfg->conf->retry_long != wiphy->retry_long)) {
1197 cfg->conf->retry_long = wiphy->retry_long;
1198 err = brcmf_set_retry(ndev, cfg->conf->retry_long, true);
1202 if (changed & WIPHY_PARAM_RETRY_SHORT
1203 && (cfg->conf->retry_short != wiphy->retry_short)) {
1204 cfg->conf->retry_short = wiphy->retry_short;
1205 err = brcmf_set_retry(ndev, cfg->conf->retry_short, false);
1211 brcmf_dbg(TRACE, "Exit\n");
1215 static void brcmf_init_prof(struct brcmf_cfg80211_profile *prof)
1217 memset(prof, 0, sizeof(*prof));
1220 static u16 brcmf_map_fw_linkdown_reason(const struct brcmf_event_msg *e)
1224 switch (e->event_code) {
1225 case BRCMF_E_DEAUTH:
1226 case BRCMF_E_DEAUTH_IND:
1227 case BRCMF_E_DISASSOC_IND:
1238 static int brcmf_set_pmk(struct brcmf_if *ifp, const u8 *pmk_data, u16 pmk_len)
1240 struct brcmf_wsec_pmk_le pmk;
1243 /* convert to firmware key format */
1244 pmk.key_len = cpu_to_le16(pmk_len << 1);
1245 pmk.flags = cpu_to_le16(BRCMF_WSEC_PASSPHRASE);
1246 for (i = 0; i < pmk_len; i++)
1247 snprintf(&pmk.key[2 * i], 3, "%02x", pmk_data[i]);
1249 /* store psk in firmware */
1250 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_WSEC_PMK,
1253 brcmf_err("failed to change PSK in firmware (len=%u)\n",
1259 static void brcmf_link_down(struct brcmf_cfg80211_vif *vif, u16 reason)
1261 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(vif->wdev.wiphy);
1264 brcmf_dbg(TRACE, "Enter\n");
1266 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTED, &vif->sme_state)) {
1267 brcmf_dbg(INFO, "Call WLC_DISASSOC to stop excess roaming\n");
1268 err = brcmf_fil_cmd_data_set(vif->ifp,
1269 BRCMF_C_DISASSOC, NULL, 0);
1271 brcmf_err("WLC_DISASSOC failed (%d)\n", err);
1273 if ((vif->wdev.iftype == NL80211_IFTYPE_STATION) ||
1274 (vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT))
1275 cfg80211_disconnected(vif->wdev.netdev, reason, NULL, 0,
1278 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &vif->sme_state);
1279 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
1280 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
1281 if (vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_NONE) {
1282 brcmf_set_pmk(vif->ifp, NULL, 0);
1283 vif->profile.use_fwsup = BRCMF_PROFILE_FWSUP_NONE;
1285 brcmf_dbg(TRACE, "Exit\n");
1289 brcmf_cfg80211_join_ibss(struct wiphy *wiphy, struct net_device *ndev,
1290 struct cfg80211_ibss_params *params)
1292 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1293 struct brcmf_if *ifp = netdev_priv(ndev);
1294 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1295 struct brcmf_join_params join_params;
1296 size_t join_params_size = 0;
1303 brcmf_dbg(TRACE, "Enter\n");
1304 if (!check_vif_up(ifp->vif))
1308 brcmf_dbg(CONN, "SSID: %s\n", params->ssid);
1310 brcmf_dbg(CONN, "SSID: NULL, Not supported\n");
1314 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1317 brcmf_dbg(CONN, "BSSID: %pM\n", params->bssid);
1319 brcmf_dbg(CONN, "No BSSID specified\n");
1321 if (params->chandef.chan)
1322 brcmf_dbg(CONN, "channel: %d\n",
1323 params->chandef.chan->center_freq);
1325 brcmf_dbg(CONN, "no channel specified\n");
1327 if (params->channel_fixed)
1328 brcmf_dbg(CONN, "fixed channel required\n");
1330 brcmf_dbg(CONN, "no fixed channel required\n");
1332 if (params->ie && params->ie_len)
1333 brcmf_dbg(CONN, "ie len: %d\n", params->ie_len);
1335 brcmf_dbg(CONN, "no ie specified\n");
1337 if (params->beacon_interval)
1338 brcmf_dbg(CONN, "beacon interval: %d\n",
1339 params->beacon_interval);
1341 brcmf_dbg(CONN, "no beacon interval specified\n");
1343 if (params->basic_rates)
1344 brcmf_dbg(CONN, "basic rates: %08X\n", params->basic_rates);
1346 brcmf_dbg(CONN, "no basic rates specified\n");
1348 if (params->privacy)
1349 brcmf_dbg(CONN, "privacy required\n");
1351 brcmf_dbg(CONN, "no privacy required\n");
1353 /* Configure Privacy for starter */
1354 if (params->privacy)
1355 wsec |= WEP_ENABLED;
1357 err = brcmf_fil_iovar_int_set(ifp, "wsec", wsec);
1359 brcmf_err("wsec failed (%d)\n", err);
1363 /* Configure Beacon Interval for starter */
1364 if (params->beacon_interval)
1365 bcnprd = params->beacon_interval;
1369 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD, bcnprd);
1371 brcmf_err("WLC_SET_BCNPRD failed (%d)\n", err);
1375 /* Configure required join parameter */
1376 memset(&join_params, 0, sizeof(struct brcmf_join_params));
1379 ssid_len = min_t(u32, params->ssid_len, IEEE80211_MAX_SSID_LEN);
1380 memcpy(join_params.ssid_le.SSID, params->ssid, ssid_len);
1381 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
1382 join_params_size = sizeof(join_params.ssid_le);
1385 if (params->bssid) {
1386 memcpy(join_params.params_le.bssid, params->bssid, ETH_ALEN);
1387 join_params_size += BRCMF_ASSOC_PARAMS_FIXED_SIZE;
1388 memcpy(profile->bssid, params->bssid, ETH_ALEN);
1390 eth_broadcast_addr(join_params.params_le.bssid);
1391 eth_zero_addr(profile->bssid);
1395 if (params->chandef.chan) {
1399 ieee80211_frequency_to_channel(
1400 params->chandef.chan->center_freq);
1401 if (params->channel_fixed) {
1402 /* adding chanspec */
1403 chanspec = chandef_to_chanspec(&cfg->d11inf,
1405 join_params.params_le.chanspec_list[0] =
1406 cpu_to_le16(chanspec);
1407 join_params.params_le.chanspec_num = cpu_to_le32(1);
1408 join_params_size += sizeof(join_params.params_le);
1411 /* set channel for starter */
1412 target_channel = cfg->channel;
1413 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_CHANNEL,
1416 brcmf_err("WLC_SET_CHANNEL failed (%d)\n", err);
1422 cfg->ibss_starter = false;
1425 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
1426 &join_params, join_params_size);
1428 brcmf_err("WLC_SET_SSID failed (%d)\n", err);
1434 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1435 brcmf_dbg(TRACE, "Exit\n");
1440 brcmf_cfg80211_leave_ibss(struct wiphy *wiphy, struct net_device *ndev)
1442 struct brcmf_if *ifp = netdev_priv(ndev);
1444 brcmf_dbg(TRACE, "Enter\n");
1445 if (!check_vif_up(ifp->vif)) {
1446 /* When driver is being unloaded, it can end up here. If an
1447 * error is returned then later on a debug trace in the wireless
1448 * core module will be printed. To avoid this 0 is returned.
1453 brcmf_link_down(ifp->vif, WLAN_REASON_DEAUTH_LEAVING);
1454 brcmf_net_setcarrier(ifp, false);
1456 brcmf_dbg(TRACE, "Exit\n");
1461 static s32 brcmf_set_wpa_version(struct net_device *ndev,
1462 struct cfg80211_connect_params *sme)
1464 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1465 struct brcmf_cfg80211_security *sec;
1469 if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_1)
1470 val = WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED;
1471 else if (sme->crypto.wpa_versions & NL80211_WPA_VERSION_2)
1472 val = WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED;
1474 val = WPA_AUTH_DISABLED;
1475 brcmf_dbg(CONN, "setting wpa_auth to 0x%0x\n", val);
1476 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1478 brcmf_err("set wpa_auth failed (%d)\n", err);
1481 sec = &profile->sec;
1482 sec->wpa_versions = sme->crypto.wpa_versions;
1486 static s32 brcmf_set_auth_type(struct net_device *ndev,
1487 struct cfg80211_connect_params *sme)
1489 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1490 struct brcmf_cfg80211_security *sec;
1494 switch (sme->auth_type) {
1495 case NL80211_AUTHTYPE_OPEN_SYSTEM:
1497 brcmf_dbg(CONN, "open system\n");
1499 case NL80211_AUTHTYPE_SHARED_KEY:
1501 brcmf_dbg(CONN, "shared key\n");
1505 brcmf_dbg(CONN, "automatic, auth type (%d)\n", sme->auth_type);
1509 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1511 brcmf_err("set auth failed (%d)\n", err);
1514 sec = &profile->sec;
1515 sec->auth_type = sme->auth_type;
1520 brcmf_set_wsec_mode(struct net_device *ndev,
1521 struct cfg80211_connect_params *sme)
1523 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1524 struct brcmf_cfg80211_security *sec;
1530 if (sme->crypto.n_ciphers_pairwise) {
1531 switch (sme->crypto.ciphers_pairwise[0]) {
1532 case WLAN_CIPHER_SUITE_WEP40:
1533 case WLAN_CIPHER_SUITE_WEP104:
1536 case WLAN_CIPHER_SUITE_TKIP:
1537 pval = TKIP_ENABLED;
1539 case WLAN_CIPHER_SUITE_CCMP:
1542 case WLAN_CIPHER_SUITE_AES_CMAC:
1546 brcmf_err("invalid cipher pairwise (%d)\n",
1547 sme->crypto.ciphers_pairwise[0]);
1551 if (sme->crypto.cipher_group) {
1552 switch (sme->crypto.cipher_group) {
1553 case WLAN_CIPHER_SUITE_WEP40:
1554 case WLAN_CIPHER_SUITE_WEP104:
1557 case WLAN_CIPHER_SUITE_TKIP:
1558 gval = TKIP_ENABLED;
1560 case WLAN_CIPHER_SUITE_CCMP:
1563 case WLAN_CIPHER_SUITE_AES_CMAC:
1567 brcmf_err("invalid cipher group (%d)\n",
1568 sme->crypto.cipher_group);
1573 brcmf_dbg(CONN, "pval (%d) gval (%d)\n", pval, gval);
1574 /* In case of privacy, but no security and WPS then simulate */
1575 /* setting AES. WPS-2.0 allows no security */
1576 if (brcmf_find_wpsie(sme->ie, sme->ie_len) && !pval && !gval &&
1581 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wsec", wsec);
1583 brcmf_err("error (%d)\n", err);
1587 sec = &profile->sec;
1588 sec->cipher_pairwise = sme->crypto.ciphers_pairwise[0];
1589 sec->cipher_group = sme->crypto.cipher_group;
1595 brcmf_set_key_mgmt(struct net_device *ndev, struct cfg80211_connect_params *sme)
1597 struct brcmf_if *ifp = netdev_priv(ndev);
1598 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1601 const struct brcmf_tlv *rsn_ie;
1609 profile->use_fwsup = BRCMF_PROFILE_FWSUP_NONE;
1611 if (!sme->crypto.n_akm_suites)
1614 err = brcmf_fil_bsscfg_int_get(netdev_priv(ndev), "wpa_auth", &val);
1616 brcmf_err("could not get wpa_auth (%d)\n", err);
1619 if (val & (WPA_AUTH_PSK | WPA_AUTH_UNSPECIFIED)) {
1620 switch (sme->crypto.akm_suites[0]) {
1621 case WLAN_AKM_SUITE_8021X:
1622 val = WPA_AUTH_UNSPECIFIED;
1624 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1626 case WLAN_AKM_SUITE_PSK:
1630 brcmf_err("invalid cipher group (%d)\n",
1631 sme->crypto.cipher_group);
1634 } else if (val & (WPA2_AUTH_PSK | WPA2_AUTH_UNSPECIFIED)) {
1635 switch (sme->crypto.akm_suites[0]) {
1636 case WLAN_AKM_SUITE_8021X:
1637 val = WPA2_AUTH_UNSPECIFIED;
1639 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1641 case WLAN_AKM_SUITE_8021X_SHA256:
1642 val = WPA2_AUTH_1X_SHA256;
1644 profile->use_fwsup = BRCMF_PROFILE_FWSUP_1X;
1646 case WLAN_AKM_SUITE_PSK_SHA256:
1647 val = WPA2_AUTH_PSK_SHA256;
1649 case WLAN_AKM_SUITE_PSK:
1650 val = WPA2_AUTH_PSK;
1653 brcmf_err("invalid cipher group (%d)\n",
1654 sme->crypto.cipher_group);
1659 if (profile->use_fwsup == BRCMF_PROFILE_FWSUP_1X)
1660 brcmf_dbg(INFO, "using 1X offload\n");
1662 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
1663 goto skip_mfp_config;
1664 /* The MFP mode (1 or 2) needs to be determined, parse IEs. The
1665 * IE will not be verified, just a quick search for MFP config
1667 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie, sme->ie_len,
1670 goto skip_mfp_config;
1671 ie = (const u8 *)rsn_ie;
1672 ie_len = rsn_ie->len + TLV_HDR_LEN;
1673 /* Skip unicast suite */
1674 offset = TLV_HDR_LEN + WPA_IE_VERSION_LEN + WPA_IE_MIN_OUI_LEN;
1675 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1676 goto skip_mfp_config;
1677 /* Skip multicast suite */
1678 count = ie[offset] + (ie[offset + 1] << 8);
1679 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1680 if (offset + WPA_IE_SUITE_COUNT_LEN >= ie_len)
1681 goto skip_mfp_config;
1682 /* Skip auth key management suite(s) */
1683 count = ie[offset] + (ie[offset + 1] << 8);
1684 offset += WPA_IE_SUITE_COUNT_LEN + (count * WPA_IE_MIN_OUI_LEN);
1685 if (offset + WPA_IE_SUITE_COUNT_LEN > ie_len)
1686 goto skip_mfp_config;
1687 /* Ready to read capabilities */
1688 mfp = BRCMF_MFP_NONE;
1689 rsn_cap = ie[offset] + (ie[offset + 1] << 8);
1690 if (rsn_cap & RSN_CAP_MFPR_MASK)
1691 mfp = BRCMF_MFP_REQUIRED;
1692 else if (rsn_cap & RSN_CAP_MFPC_MASK)
1693 mfp = BRCMF_MFP_CAPABLE;
1694 brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "mfp", mfp);
1697 brcmf_dbg(CONN, "setting wpa_auth to %d\n", val);
1698 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "wpa_auth", val);
1700 brcmf_err("could not set wpa_auth (%d)\n", err);
1708 brcmf_set_sharedkey(struct net_device *ndev,
1709 struct cfg80211_connect_params *sme)
1711 struct brcmf_cfg80211_profile *profile = ndev_to_prof(ndev);
1712 struct brcmf_cfg80211_security *sec;
1713 struct brcmf_wsec_key key;
1717 brcmf_dbg(CONN, "key len (%d)\n", sme->key_len);
1719 if (sme->key_len == 0)
1722 sec = &profile->sec;
1723 brcmf_dbg(CONN, "wpa_versions 0x%x cipher_pairwise 0x%x\n",
1724 sec->wpa_versions, sec->cipher_pairwise);
1726 if (sec->wpa_versions & (NL80211_WPA_VERSION_1 | NL80211_WPA_VERSION_2))
1729 if (!(sec->cipher_pairwise &
1730 (WLAN_CIPHER_SUITE_WEP40 | WLAN_CIPHER_SUITE_WEP104)))
1733 memset(&key, 0, sizeof(key));
1734 key.len = (u32) sme->key_len;
1735 key.index = (u32) sme->key_idx;
1736 if (key.len > sizeof(key.data)) {
1737 brcmf_err("Too long key length (%u)\n", key.len);
1740 memcpy(key.data, sme->key, key.len);
1741 key.flags = BRCMF_PRIMARY_KEY;
1742 switch (sec->cipher_pairwise) {
1743 case WLAN_CIPHER_SUITE_WEP40:
1744 key.algo = CRYPTO_ALGO_WEP1;
1746 case WLAN_CIPHER_SUITE_WEP104:
1747 key.algo = CRYPTO_ALGO_WEP128;
1750 brcmf_err("Invalid algorithm (%d)\n",
1751 sme->crypto.ciphers_pairwise[0]);
1754 /* Set the new key/index */
1755 brcmf_dbg(CONN, "key length (%d) key index (%d) algo (%d)\n",
1756 key.len, key.index, key.algo);
1757 brcmf_dbg(CONN, "key \"%s\"\n", key.data);
1758 err = send_key_to_dongle(netdev_priv(ndev), &key);
1762 if (sec->auth_type == NL80211_AUTHTYPE_SHARED_KEY) {
1763 brcmf_dbg(CONN, "set auth_type to shared key\n");
1764 val = WL_AUTH_SHARED_KEY; /* shared key */
1765 err = brcmf_fil_bsscfg_int_set(netdev_priv(ndev), "auth", val);
1767 brcmf_err("set auth failed (%d)\n", err);
1773 enum nl80211_auth_type brcmf_war_auth_type(struct brcmf_if *ifp,
1774 enum nl80211_auth_type type)
1776 if (type == NL80211_AUTHTYPE_AUTOMATIC &&
1777 brcmf_feat_is_quirk_enabled(ifp, BRCMF_FEAT_QUIRK_AUTO_AUTH)) {
1778 brcmf_dbg(CONN, "WAR: use OPEN instead of AUTO\n");
1779 type = NL80211_AUTHTYPE_OPEN_SYSTEM;
1784 static void brcmf_set_join_pref(struct brcmf_if *ifp,
1785 struct cfg80211_bss_selection *bss_select)
1787 struct brcmf_join_pref_params join_pref_params[2];
1788 enum nl80211_band band;
1791 join_pref_params[i].len = 2;
1792 join_pref_params[i].rssi_gain = 0;
1794 if (bss_select->behaviour != NL80211_BSS_SELECT_ATTR_BAND_PREF)
1795 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_ASSOC_PREFER, WLC_BAND_AUTO);
1797 switch (bss_select->behaviour) {
1798 case __NL80211_BSS_SELECT_ATTR_INVALID:
1799 brcmf_c_set_joinpref_default(ifp);
1801 case NL80211_BSS_SELECT_ATTR_BAND_PREF:
1802 join_pref_params[i].type = BRCMF_JOIN_PREF_BAND;
1803 band = bss_select->param.band_pref;
1804 join_pref_params[i].band = nl80211_band_to_fwil(band);
1807 case NL80211_BSS_SELECT_ATTR_RSSI_ADJUST:
1808 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI_DELTA;
1809 band = bss_select->param.adjust.band;
1810 join_pref_params[i].band = nl80211_band_to_fwil(band);
1811 join_pref_params[i].rssi_gain = bss_select->param.adjust.delta;
1814 case NL80211_BSS_SELECT_ATTR_RSSI:
1818 join_pref_params[i].type = BRCMF_JOIN_PREF_RSSI;
1819 join_pref_params[i].len = 2;
1820 join_pref_params[i].rssi_gain = 0;
1821 join_pref_params[i].band = 0;
1822 err = brcmf_fil_iovar_data_set(ifp, "join_pref", join_pref_params,
1823 sizeof(join_pref_params));
1825 brcmf_err("Set join_pref error (%d)\n", err);
1829 brcmf_cfg80211_connect(struct wiphy *wiphy, struct net_device *ndev,
1830 struct cfg80211_connect_params *sme)
1832 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
1833 struct brcmf_if *ifp = netdev_priv(ndev);
1834 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
1835 struct ieee80211_channel *chan = sme->channel;
1836 struct brcmf_join_params join_params;
1837 size_t join_params_size;
1838 const struct brcmf_tlv *rsn_ie;
1839 const struct brcmf_vs_tlv *wpa_ie;
1842 struct brcmf_ext_join_params_le *ext_join_params;
1847 brcmf_dbg(TRACE, "Enter\n");
1848 if (!check_vif_up(ifp->vif))
1852 brcmf_err("Invalid ssid\n");
1856 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif) {
1857 /* A normal (non P2P) connection request setup. */
1860 /* find the WPA_IE */
1861 wpa_ie = brcmf_find_wpaie((u8 *)sme->ie, sme->ie_len);
1864 ie_len = wpa_ie->len + TLV_HDR_LEN;
1866 /* find the RSN_IE */
1867 rsn_ie = brcmf_parse_tlvs((const u8 *)sme->ie,
1872 ie_len = rsn_ie->len + TLV_HDR_LEN;
1875 brcmf_fil_iovar_data_set(ifp, "wpaie", ie, ie_len);
1878 err = brcmf_vif_set_mgmt_ie(ifp->vif, BRCMF_VNDR_IE_ASSOCREQ_FLAG,
1879 sme->ie, sme->ie_len);
1881 brcmf_err("Set Assoc REQ IE Failed\n");
1883 brcmf_dbg(TRACE, "Applied Vndr IEs for Assoc request\n");
1885 set_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
1889 ieee80211_frequency_to_channel(chan->center_freq);
1890 chanspec = channel_to_chanspec(&cfg->d11inf, chan);
1891 brcmf_dbg(CONN, "channel=%d, center_req=%d, chanspec=0x%04x\n",
1892 cfg->channel, chan->center_freq, chanspec);
1898 brcmf_dbg(INFO, "ie (%p), ie_len (%zd)\n", sme->ie, sme->ie_len);
1900 err = brcmf_set_wpa_version(ndev, sme);
1902 brcmf_err("wl_set_wpa_version failed (%d)\n", err);
1906 sme->auth_type = brcmf_war_auth_type(ifp, sme->auth_type);
1907 err = brcmf_set_auth_type(ndev, sme);
1909 brcmf_err("wl_set_auth_type failed (%d)\n", err);
1913 err = brcmf_set_wsec_mode(ndev, sme);
1915 brcmf_err("wl_set_set_cipher failed (%d)\n", err);
1919 err = brcmf_set_key_mgmt(ndev, sme);
1921 brcmf_err("wl_set_key_mgmt failed (%d)\n", err);
1925 err = brcmf_set_sharedkey(ndev, sme);
1927 brcmf_err("brcmf_set_sharedkey failed (%d)\n", err);
1931 if (sme->crypto.psk) {
1932 if (WARN_ON(profile->use_fwsup != BRCMF_PROFILE_FWSUP_NONE)) {
1936 brcmf_dbg(INFO, "using PSK offload\n");
1937 profile->use_fwsup = BRCMF_PROFILE_FWSUP_PSK;
1940 if (profile->use_fwsup != BRCMF_PROFILE_FWSUP_NONE) {
1941 /* enable firmware supplicant for this interface */
1942 err = brcmf_fil_iovar_int_set(ifp, "sup_wpa", 1);
1944 brcmf_err("failed to enable fw supplicant\n");
1949 if (profile->use_fwsup == BRCMF_PROFILE_FWSUP_PSK) {
1950 err = brcmf_set_pmk(ifp, sme->crypto.psk,
1951 BRCMF_WSEC_MAX_PSK_LEN);
1956 /* Join with specific BSSID and cached SSID
1957 * If SSID is zero join based on BSSID only
1959 join_params_size = offsetof(struct brcmf_ext_join_params_le, assoc_le) +
1960 offsetof(struct brcmf_assoc_params_le, chanspec_list);
1962 join_params_size += sizeof(u16);
1963 ext_join_params = kzalloc(join_params_size, GFP_KERNEL);
1964 if (ext_join_params == NULL) {
1968 ssid_len = min_t(u32, sme->ssid_len, IEEE80211_MAX_SSID_LEN);
1969 ext_join_params->ssid_le.SSID_len = cpu_to_le32(ssid_len);
1970 memcpy(&ext_join_params->ssid_le.SSID, sme->ssid, ssid_len);
1971 if (ssid_len < IEEE80211_MAX_SSID_LEN)
1972 brcmf_dbg(CONN, "SSID \"%s\", len (%d)\n",
1973 ext_join_params->ssid_le.SSID, ssid_len);
1975 /* Set up join scan parameters */
1976 ext_join_params->scan_le.scan_type = -1;
1977 ext_join_params->scan_le.home_time = cpu_to_le32(-1);
1980 memcpy(&ext_join_params->assoc_le.bssid, sme->bssid, ETH_ALEN);
1982 eth_broadcast_addr(ext_join_params->assoc_le.bssid);
1985 ext_join_params->assoc_le.chanspec_num = cpu_to_le32(1);
1987 ext_join_params->assoc_le.chanspec_list[0] =
1988 cpu_to_le16(chanspec);
1989 /* Increase dwell time to receive probe response or detect
1990 * beacon from target AP at a noisy air only during connect
1993 ext_join_params->scan_le.active_time =
1994 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS);
1995 ext_join_params->scan_le.passive_time =
1996 cpu_to_le32(BRCMF_SCAN_JOIN_PASSIVE_DWELL_TIME_MS);
1997 /* To sync with presence period of VSDB GO send probe request
1998 * more frequently. Probe request will be stopped when it gets
1999 * probe response from target AP/GO.
2001 ext_join_params->scan_le.nprobes =
2002 cpu_to_le32(BRCMF_SCAN_JOIN_ACTIVE_DWELL_TIME_MS /
2003 BRCMF_SCAN_JOIN_PROBE_INTERVAL_MS);
2005 ext_join_params->scan_le.active_time = cpu_to_le32(-1);
2006 ext_join_params->scan_le.passive_time = cpu_to_le32(-1);
2007 ext_join_params->scan_le.nprobes = cpu_to_le32(-1);
2010 brcmf_set_join_pref(ifp, &sme->bss_select);
2012 err = brcmf_fil_bsscfg_data_set(ifp, "join", ext_join_params,
2014 kfree(ext_join_params);
2016 /* This is it. join command worked, we are done */
2019 /* join command failed, fallback to set ssid */
2020 memset(&join_params, 0, sizeof(join_params));
2021 join_params_size = sizeof(join_params.ssid_le);
2023 memcpy(&join_params.ssid_le.SSID, sme->ssid, ssid_len);
2024 join_params.ssid_le.SSID_len = cpu_to_le32(ssid_len);
2027 memcpy(join_params.params_le.bssid, sme->bssid, ETH_ALEN);
2029 eth_broadcast_addr(join_params.params_le.bssid);
2032 join_params.params_le.chanspec_list[0] = cpu_to_le16(chanspec);
2033 join_params.params_le.chanspec_num = cpu_to_le32(1);
2034 join_params_size += sizeof(join_params.params_le);
2036 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
2037 &join_params, join_params_size);
2039 brcmf_err("BRCMF_C_SET_SSID failed (%d)\n", err);
2043 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2044 brcmf_dbg(TRACE, "Exit\n");
2049 brcmf_cfg80211_disconnect(struct wiphy *wiphy, struct net_device *ndev,
2052 struct brcmf_if *ifp = netdev_priv(ndev);
2053 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2054 struct brcmf_scb_val_le scbval;
2057 brcmf_dbg(TRACE, "Enter. Reason code = %d\n", reason_code);
2058 if (!check_vif_up(ifp->vif))
2061 clear_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
2062 clear_bit(BRCMF_VIF_STATUS_CONNECTING, &ifp->vif->sme_state);
2063 cfg80211_disconnected(ndev, reason_code, NULL, 0, true, GFP_KERNEL);
2065 memcpy(&scbval.ea, &profile->bssid, ETH_ALEN);
2066 scbval.val = cpu_to_le32(reason_code);
2067 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_DISASSOC,
2068 &scbval, sizeof(scbval));
2070 brcmf_err("error (%d)\n", err);
2072 brcmf_dbg(TRACE, "Exit\n");
2077 brcmf_cfg80211_set_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2078 enum nl80211_tx_power_setting type, s32 mbm)
2080 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2081 struct net_device *ndev = cfg_to_ndev(cfg);
2082 struct brcmf_if *ifp = netdev_priv(ndev);
2087 brcmf_dbg(TRACE, "Enter %d %d\n", type, mbm);
2088 if (!check_vif_up(ifp->vif))
2092 case NL80211_TX_POWER_AUTOMATIC:
2094 case NL80211_TX_POWER_LIMITED:
2095 case NL80211_TX_POWER_FIXED:
2097 brcmf_err("TX_POWER_FIXED - dbm is negative\n");
2101 qdbm = MBM_TO_DBM(4 * mbm);
2104 qdbm |= WL_TXPWR_OVERRIDE;
2107 brcmf_err("Unsupported type %d\n", type);
2111 /* Make sure radio is off or on as far as software is concerned */
2112 disable = WL_RADIO_SW_DISABLE << 16;
2113 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_RADIO, disable);
2115 brcmf_err("WLC_SET_RADIO error (%d)\n", err);
2117 err = brcmf_fil_iovar_int_set(ifp, "qtxpower", qdbm);
2119 brcmf_err("qtxpower error (%d)\n", err);
2122 brcmf_dbg(TRACE, "Exit %d (qdbm)\n", qdbm & ~WL_TXPWR_OVERRIDE);
2127 brcmf_cfg80211_get_tx_power(struct wiphy *wiphy, struct wireless_dev *wdev,
2130 struct brcmf_cfg80211_vif *vif = wdev_to_vif(wdev);
2134 brcmf_dbg(TRACE, "Enter\n");
2135 if (!check_vif_up(vif))
2138 err = brcmf_fil_iovar_int_get(vif->ifp, "qtxpower", &qdbm);
2140 brcmf_err("error (%d)\n", err);
2143 *dbm = (qdbm & ~WL_TXPWR_OVERRIDE) / 4;
2146 brcmf_dbg(TRACE, "Exit (0x%x %d)\n", qdbm, *dbm);
2151 brcmf_cfg80211_config_default_key(struct wiphy *wiphy, struct net_device *ndev,
2152 u8 key_idx, bool unicast, bool multicast)
2154 struct brcmf_if *ifp = netdev_priv(ndev);
2159 brcmf_dbg(TRACE, "Enter\n");
2160 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2161 if (!check_vif_up(ifp->vif))
2164 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2166 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2170 if (wsec & WEP_ENABLED) {
2171 /* Just select a new current key */
2173 err = brcmf_fil_cmd_int_set(ifp,
2174 BRCMF_C_SET_KEY_PRIMARY, index);
2176 brcmf_err("error (%d)\n", err);
2179 brcmf_dbg(TRACE, "Exit\n");
2184 brcmf_cfg80211_del_key(struct wiphy *wiphy, struct net_device *ndev,
2185 u8 key_idx, bool pairwise, const u8 *mac_addr)
2187 struct brcmf_if *ifp = netdev_priv(ndev);
2188 struct brcmf_wsec_key *key;
2191 brcmf_dbg(TRACE, "Enter\n");
2192 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2194 if (!check_vif_up(ifp->vif))
2197 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2198 /* we ignore this key index in this case */
2202 key = &ifp->vif->profile.key[key_idx];
2204 if (key->algo == CRYPTO_ALGO_OFF) {
2205 brcmf_dbg(CONN, "Ignore clearing of (never configured) key\n");
2209 memset(key, 0, sizeof(*key));
2210 key->index = (u32)key_idx;
2211 key->flags = BRCMF_PRIMARY_KEY;
2213 /* Clear the key/index */
2214 err = send_key_to_dongle(ifp, key);
2216 brcmf_dbg(TRACE, "Exit\n");
2221 brcmf_cfg80211_add_key(struct wiphy *wiphy, struct net_device *ndev,
2222 u8 key_idx, bool pairwise, const u8 *mac_addr,
2223 struct key_params *params)
2225 struct brcmf_if *ifp = netdev_priv(ndev);
2226 struct brcmf_wsec_key *key;
2233 brcmf_dbg(TRACE, "Enter\n");
2234 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2235 if (!check_vif_up(ifp->vif))
2238 if (key_idx >= BRCMF_MAX_DEFAULT_KEYS) {
2239 /* we ignore this key index in this case */
2240 brcmf_err("invalid key index (%d)\n", key_idx);
2244 if (params->key_len == 0)
2245 return brcmf_cfg80211_del_key(wiphy, ndev, key_idx, pairwise,
2248 if (params->key_len > sizeof(key->data)) {
2249 brcmf_err("Too long key length (%u)\n", params->key_len);
2254 if (mac_addr && (params->cipher != WLAN_CIPHER_SUITE_WEP40) &&
2255 (params->cipher != WLAN_CIPHER_SUITE_WEP104)) {
2256 brcmf_dbg(TRACE, "Ext key, mac %pM", mac_addr);
2260 key = &ifp->vif->profile.key[key_idx];
2261 memset(key, 0, sizeof(*key));
2262 if ((ext_key) && (!is_multicast_ether_addr(mac_addr)))
2263 memcpy((char *)&key->ea, (void *)mac_addr, ETH_ALEN);
2264 key->len = params->key_len;
2265 key->index = key_idx;
2266 memcpy(key->data, params->key, key->len);
2268 key->flags = BRCMF_PRIMARY_KEY;
2270 switch (params->cipher) {
2271 case WLAN_CIPHER_SUITE_WEP40:
2272 key->algo = CRYPTO_ALGO_WEP1;
2274 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2276 case WLAN_CIPHER_SUITE_WEP104:
2277 key->algo = CRYPTO_ALGO_WEP128;
2279 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2281 case WLAN_CIPHER_SUITE_TKIP:
2282 if (!brcmf_is_apmode(ifp->vif)) {
2283 brcmf_dbg(CONN, "Swapping RX/TX MIC key\n");
2284 memcpy(keybuf, &key->data[24], sizeof(keybuf));
2285 memcpy(&key->data[24], &key->data[16], sizeof(keybuf));
2286 memcpy(&key->data[16], keybuf, sizeof(keybuf));
2288 key->algo = CRYPTO_ALGO_TKIP;
2290 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2292 case WLAN_CIPHER_SUITE_AES_CMAC:
2293 key->algo = CRYPTO_ALGO_AES_CCM;
2295 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2297 case WLAN_CIPHER_SUITE_CCMP:
2298 key->algo = CRYPTO_ALGO_AES_CCM;
2300 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_CCMP\n");
2303 brcmf_err("Invalid cipher (0x%x)\n", params->cipher);
2308 err = send_key_to_dongle(ifp, key);
2312 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2314 brcmf_err("get wsec error (%d)\n", err);
2318 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2320 brcmf_err("set wsec error (%d)\n", err);
2325 brcmf_dbg(TRACE, "Exit\n");
2330 brcmf_cfg80211_get_key(struct wiphy *wiphy, struct net_device *ndev, u8 key_idx,
2331 bool pairwise, const u8 *mac_addr, void *cookie,
2332 void (*callback)(void *cookie,
2333 struct key_params *params))
2335 struct key_params params;
2336 struct brcmf_if *ifp = netdev_priv(ndev);
2337 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
2338 struct brcmf_cfg80211_security *sec;
2342 brcmf_dbg(TRACE, "Enter\n");
2343 brcmf_dbg(CONN, "key index (%d)\n", key_idx);
2344 if (!check_vif_up(ifp->vif))
2347 memset(¶ms, 0, sizeof(params));
2349 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2351 brcmf_err("WLC_GET_WSEC error (%d)\n", err);
2352 /* Ignore this error, may happen during DISASSOC */
2356 if (wsec & WEP_ENABLED) {
2357 sec = &profile->sec;
2358 if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP40) {
2359 params.cipher = WLAN_CIPHER_SUITE_WEP40;
2360 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP40\n");
2361 } else if (sec->cipher_pairwise & WLAN_CIPHER_SUITE_WEP104) {
2362 params.cipher = WLAN_CIPHER_SUITE_WEP104;
2363 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_WEP104\n");
2365 } else if (wsec & TKIP_ENABLED) {
2366 params.cipher = WLAN_CIPHER_SUITE_TKIP;
2367 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_TKIP\n");
2368 } else if (wsec & AES_ENABLED) {
2369 params.cipher = WLAN_CIPHER_SUITE_AES_CMAC;
2370 brcmf_dbg(CONN, "WLAN_CIPHER_SUITE_AES_CMAC\n");
2372 brcmf_err("Invalid algo (0x%x)\n", wsec);
2376 callback(cookie, ¶ms);
2379 brcmf_dbg(TRACE, "Exit\n");
2384 brcmf_cfg80211_config_default_mgmt_key(struct wiphy *wiphy,
2385 struct net_device *ndev, u8 key_idx)
2387 struct brcmf_if *ifp = netdev_priv(ndev);
2389 brcmf_dbg(TRACE, "Enter key_idx %d\n", key_idx);
2391 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
2394 brcmf_dbg(INFO, "Not supported\n");
2400 brcmf_cfg80211_reconfigure_wep(struct brcmf_if *ifp)
2404 struct brcmf_wsec_key *key;
2407 for (key_idx = 0; key_idx < BRCMF_MAX_DEFAULT_KEYS; key_idx++) {
2408 key = &ifp->vif->profile.key[key_idx];
2409 if ((key->algo == CRYPTO_ALGO_WEP1) ||
2410 (key->algo == CRYPTO_ALGO_WEP128))
2413 if (key_idx == BRCMF_MAX_DEFAULT_KEYS)
2416 err = send_key_to_dongle(ifp, key);
2418 brcmf_err("Setting WEP key failed (%d)\n", err);
2421 err = brcmf_fil_bsscfg_int_get(ifp, "wsec", &wsec);
2423 brcmf_err("get wsec error (%d)\n", err);
2426 wsec |= WEP_ENABLED;
2427 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
2429 brcmf_err("set wsec error (%d)\n", err);
2432 static void brcmf_convert_sta_flags(u32 fw_sta_flags, struct station_info *si)
2434 struct nl80211_sta_flag_update *sfu;
2436 brcmf_dbg(TRACE, "flags %08x\n", fw_sta_flags);
2437 si->filled |= BIT_ULL(NL80211_STA_INFO_STA_FLAGS);
2438 sfu = &si->sta_flags;
2439 sfu->mask = BIT(NL80211_STA_FLAG_WME) |
2440 BIT(NL80211_STA_FLAG_AUTHENTICATED) |
2441 BIT(NL80211_STA_FLAG_ASSOCIATED) |
2442 BIT(NL80211_STA_FLAG_AUTHORIZED);
2443 if (fw_sta_flags & BRCMF_STA_WME)
2444 sfu->set |= BIT(NL80211_STA_FLAG_WME);
2445 if (fw_sta_flags & BRCMF_STA_AUTHE)
2446 sfu->set |= BIT(NL80211_STA_FLAG_AUTHENTICATED);
2447 if (fw_sta_flags & BRCMF_STA_ASSOC)
2448 sfu->set |= BIT(NL80211_STA_FLAG_ASSOCIATED);
2449 if (fw_sta_flags & BRCMF_STA_AUTHO)
2450 sfu->set |= BIT(NL80211_STA_FLAG_AUTHORIZED);
2453 static void brcmf_fill_bss_param(struct brcmf_if *ifp, struct station_info *si)
2457 struct brcmf_bss_info_le bss_le;
2462 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2466 buf->len = cpu_to_le32(WL_BSS_INFO_MAX);
2467 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO, buf,
2470 brcmf_err("Failed to get bss info (%d)\n", err);
2473 si->filled |= BIT_ULL(NL80211_STA_INFO_BSS_PARAM);
2474 si->bss_param.beacon_interval = le16_to_cpu(buf->bss_le.beacon_period);
2475 si->bss_param.dtim_period = buf->bss_le.dtim_period;
2476 capability = le16_to_cpu(buf->bss_le.capability);
2477 if (capability & IEEE80211_HT_STBC_PARAM_DUAL_CTS_PROT)
2478 si->bss_param.flags |= BSS_PARAM_FLAGS_CTS_PROT;
2479 if (capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
2480 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_PREAMBLE;
2481 if (capability & WLAN_CAPABILITY_SHORT_SLOT_TIME)
2482 si->bss_param.flags |= BSS_PARAM_FLAGS_SHORT_SLOT_TIME;
2489 brcmf_cfg80211_get_station_ibss(struct brcmf_if *ifp,
2490 struct station_info *sinfo)
2492 struct brcmf_scb_val_le scbval;
2493 struct brcmf_pktcnt_le pktcnt;
2498 /* Get the current tx rate */
2499 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_RATE, &rate);
2501 brcmf_err("BRCMF_C_GET_RATE error (%d)\n", err);
2504 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_BITRATE);
2505 sinfo->txrate.legacy = rate * 5;
2507 memset(&scbval, 0, sizeof(scbval));
2508 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI, &scbval,
2511 brcmf_err("BRCMF_C_GET_RSSI error (%d)\n", err);
2514 rssi = le32_to_cpu(scbval.val);
2515 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_SIGNAL);
2516 sinfo->signal = rssi;
2518 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_GET_PKTCNTS, &pktcnt,
2521 brcmf_err("BRCMF_C_GET_GET_PKTCNTS error (%d)\n", err);
2524 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_RX_PACKETS) |
2525 BIT_ULL(NL80211_STA_INFO_RX_DROP_MISC) |
2526 BIT_ULL(NL80211_STA_INFO_TX_PACKETS) |
2527 BIT_ULL(NL80211_STA_INFO_TX_FAILED);
2528 sinfo->rx_packets = le32_to_cpu(pktcnt.rx_good_pkt);
2529 sinfo->rx_dropped_misc = le32_to_cpu(pktcnt.rx_bad_pkt);
2530 sinfo->tx_packets = le32_to_cpu(pktcnt.tx_good_pkt);
2531 sinfo->tx_failed = le32_to_cpu(pktcnt.tx_bad_pkt);
2537 brcmf_cfg80211_get_station(struct wiphy *wiphy, struct net_device *ndev,
2538 const u8 *mac, struct station_info *sinfo)
2540 struct brcmf_if *ifp = netdev_priv(ndev);
2541 struct brcmf_scb_val_le scb_val;
2543 struct brcmf_sta_info_le sta_info_le;
2546 s32 total_rssi_avg = 0;
2552 brcmf_dbg(TRACE, "Enter, MAC %pM\n", mac);
2553 if (!check_vif_up(ifp->vif))
2556 if (brcmf_is_ibssmode(ifp->vif))
2557 return brcmf_cfg80211_get_station_ibss(ifp, sinfo);
2559 memset(&sta_info_le, 0, sizeof(sta_info_le));
2560 memcpy(&sta_info_le, mac, ETH_ALEN);
2561 err = brcmf_fil_iovar_data_get(ifp, "tdls_sta_info",
2563 sizeof(sta_info_le));
2564 is_tdls_peer = !err;
2566 err = brcmf_fil_iovar_data_get(ifp, "sta_info",
2568 sizeof(sta_info_le));
2570 brcmf_err("GET STA INFO failed, %d\n", err);
2574 brcmf_dbg(TRACE, "version %d\n", le16_to_cpu(sta_info_le.ver));
2575 sinfo->filled = BIT_ULL(NL80211_STA_INFO_INACTIVE_TIME);
2576 sinfo->inactive_time = le32_to_cpu(sta_info_le.idle) * 1000;
2577 sta_flags = le32_to_cpu(sta_info_le.flags);
2578 brcmf_convert_sta_flags(sta_flags, sinfo);
2579 sinfo->sta_flags.mask |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2581 sinfo->sta_flags.set |= BIT(NL80211_STA_FLAG_TDLS_PEER);
2583 sinfo->sta_flags.set &= ~BIT(NL80211_STA_FLAG_TDLS_PEER);
2584 if (sta_flags & BRCMF_STA_ASSOC) {
2585 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_CONNECTED_TIME);
2586 sinfo->connected_time = le32_to_cpu(sta_info_le.in);
2587 brcmf_fill_bss_param(ifp, sinfo);
2589 if (sta_flags & BRCMF_STA_SCBSTATS) {
2590 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_FAILED);
2591 sinfo->tx_failed = le32_to_cpu(sta_info_le.tx_failures);
2592 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_PACKETS);
2593 sinfo->tx_packets = le32_to_cpu(sta_info_le.tx_pkts);
2594 sinfo->tx_packets += le32_to_cpu(sta_info_le.tx_mcast_pkts);
2595 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_RX_PACKETS);
2596 sinfo->rx_packets = le32_to_cpu(sta_info_le.rx_ucast_pkts);
2597 sinfo->rx_packets += le32_to_cpu(sta_info_le.rx_mcast_pkts);
2598 if (sinfo->tx_packets) {
2599 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_BITRATE);
2600 sinfo->txrate.legacy =
2601 le32_to_cpu(sta_info_le.tx_rate) / 100;
2603 if (sinfo->rx_packets) {
2604 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_RX_BITRATE);
2605 sinfo->rxrate.legacy =
2606 le32_to_cpu(sta_info_le.rx_rate) / 100;
2608 if (le16_to_cpu(sta_info_le.ver) >= 4) {
2609 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_TX_BYTES);
2610 sinfo->tx_bytes = le64_to_cpu(sta_info_le.tx_tot_bytes);
2611 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_RX_BYTES);
2612 sinfo->rx_bytes = le64_to_cpu(sta_info_le.rx_tot_bytes);
2614 for (i = 0; i < BRCMF_ANT_MAX; i++) {
2615 if (sta_info_le.rssi[i] == 0 ||
2616 sta_info_le.rx_lastpkt_rssi[i] == 0)
2618 sinfo->chains |= BIT(count_rssi);
2619 sinfo->chain_signal[count_rssi] =
2620 sta_info_le.rx_lastpkt_rssi[i];
2621 sinfo->chain_signal_avg[count_rssi] =
2622 sta_info_le.rssi[i];
2623 total_rssi += sta_info_le.rx_lastpkt_rssi[i];
2624 total_rssi_avg += sta_info_le.rssi[i];
2628 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_SIGNAL);
2629 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_SIGNAL_AVG);
2630 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL);
2632 BIT_ULL(NL80211_STA_INFO_CHAIN_SIGNAL_AVG);
2633 sinfo->signal = total_rssi / count_rssi;
2634 sinfo->signal_avg = total_rssi_avg / count_rssi;
2635 } else if (test_bit(BRCMF_VIF_STATUS_CONNECTED,
2636 &ifp->vif->sme_state)) {
2637 memset(&scb_val, 0, sizeof(scb_val));
2638 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_RSSI,
2639 &scb_val, sizeof(scb_val));
2641 brcmf_err("Could not get rssi (%d)\n", err);
2644 rssi = le32_to_cpu(scb_val.val);
2645 sinfo->filled |= BIT_ULL(NL80211_STA_INFO_SIGNAL);
2646 sinfo->signal = rssi;
2647 brcmf_dbg(CONN, "RSSI %d dBm\n", rssi);
2652 brcmf_dbg(TRACE, "Exit\n");
2657 brcmf_cfg80211_dump_station(struct wiphy *wiphy, struct net_device *ndev,
2658 int idx, u8 *mac, struct station_info *sinfo)
2660 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2661 struct brcmf_if *ifp = netdev_priv(ndev);
2664 brcmf_dbg(TRACE, "Enter, idx %d\n", idx);
2667 cfg->assoclist.count = cpu_to_le32(BRCMF_MAX_ASSOCLIST);
2668 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_ASSOCLIST,
2670 sizeof(cfg->assoclist));
2672 brcmf_err("BRCMF_C_GET_ASSOCLIST unsupported, err=%d\n",
2674 cfg->assoclist.count = 0;
2678 if (idx < le32_to_cpu(cfg->assoclist.count)) {
2679 memcpy(mac, cfg->assoclist.mac[idx], ETH_ALEN);
2680 return brcmf_cfg80211_get_station(wiphy, ndev, mac, sinfo);
2686 brcmf_cfg80211_set_power_mgmt(struct wiphy *wiphy, struct net_device *ndev,
2687 bool enabled, s32 timeout)
2691 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
2692 struct brcmf_if *ifp = netdev_priv(ndev);
2694 brcmf_dbg(TRACE, "Enter\n");
2697 * Powersave enable/disable request is coming from the
2698 * cfg80211 even before the interface is up. In that
2699 * scenario, driver will be storing the power save
2700 * preference in cfg struct to apply this to
2701 * FW later while initializing the dongle
2703 cfg->pwr_save = enabled;
2704 if (!check_vif_up(ifp->vif)) {
2706 brcmf_dbg(INFO, "Device is not ready, storing the value in cfg_info struct\n");
2710 pm = enabled ? PM_FAST : PM_OFF;
2711 /* Do not enable the power save after assoc if it is a p2p interface */
2712 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_P2P_CLIENT) {
2713 brcmf_dbg(INFO, "Do not enable power save for P2P clients\n");
2716 brcmf_dbg(INFO, "power save %s\n", (pm ? "enabled" : "disabled"));
2718 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, pm);
2721 brcmf_err("net_device is not ready yet\n");
2723 brcmf_err("error (%d)\n", err);
2726 brcmf_dbg(TRACE, "Exit\n");
2730 static s32 brcmf_inform_single_bss(struct brcmf_cfg80211_info *cfg,
2731 struct brcmf_bss_info_le *bi)
2733 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2734 struct cfg80211_bss *bss;
2735 enum nl80211_band band;
2736 struct brcmu_chan ch;
2739 u16 notify_capability;
2740 u16 notify_interval;
2742 size_t notify_ielen;
2743 struct cfg80211_inform_bss bss_data = {};
2745 if (le32_to_cpu(bi->length) > WL_BSS_INFO_MAX) {
2746 brcmf_err("Bss info is larger than buffer. Discarding\n");
2751 ch.chspec = le16_to_cpu(bi->chanspec);
2752 cfg->d11inf.decchspec(&ch);
2753 bi->ctl_ch = ch.control_ch_num;
2755 channel = bi->ctl_ch;
2757 if (channel <= CH_MAX_2G_CHANNEL)
2758 band = NL80211_BAND_2GHZ;
2760 band = NL80211_BAND_5GHZ;
2762 freq = ieee80211_channel_to_frequency(channel, band);
2763 bss_data.chan = ieee80211_get_channel(wiphy, freq);
2764 bss_data.scan_width = NL80211_BSS_CHAN_WIDTH_20;
2765 bss_data.boottime_ns = ktime_to_ns(ktime_get_boottime());
2767 notify_capability = le16_to_cpu(bi->capability);
2768 notify_interval = le16_to_cpu(bi->beacon_period);
2769 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2770 notify_ielen = le32_to_cpu(bi->ie_length);
2771 bss_data.signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2773 brcmf_dbg(CONN, "bssid: %pM\n", bi->BSSID);
2774 brcmf_dbg(CONN, "Channel: %d(%d)\n", channel, freq);
2775 brcmf_dbg(CONN, "Capability: %X\n", notify_capability);
2776 brcmf_dbg(CONN, "Beacon interval: %d\n", notify_interval);
2777 brcmf_dbg(CONN, "Signal: %d\n", bss_data.signal);
2779 bss = cfg80211_inform_bss_data(wiphy, &bss_data,
2780 CFG80211_BSS_FTYPE_UNKNOWN,
2781 (const u8 *)bi->BSSID,
2782 0, notify_capability,
2783 notify_interval, notify_ie,
2784 notify_ielen, GFP_KERNEL);
2789 cfg80211_put_bss(wiphy, bss);
2794 static struct brcmf_bss_info_le *
2795 next_bss_le(struct brcmf_scan_results *list, struct brcmf_bss_info_le *bss)
2798 return list->bss_info_le;
2799 return (struct brcmf_bss_info_le *)((unsigned long)bss +
2800 le32_to_cpu(bss->length));
2803 static s32 brcmf_inform_bss(struct brcmf_cfg80211_info *cfg)
2805 struct brcmf_scan_results *bss_list;
2806 struct brcmf_bss_info_le *bi = NULL; /* must be initialized */
2810 bss_list = (struct brcmf_scan_results *)cfg->escan_info.escan_buf;
2811 if (bss_list->count != 0 &&
2812 bss_list->version != BRCMF_BSS_INFO_VERSION) {
2813 brcmf_err("Version %d != WL_BSS_INFO_VERSION\n",
2817 brcmf_dbg(SCAN, "scanned AP count (%d)\n", bss_list->count);
2818 for (i = 0; i < bss_list->count; i++) {
2819 bi = next_bss_le(bss_list, bi);
2820 err = brcmf_inform_single_bss(cfg, bi);
2827 static s32 brcmf_inform_ibss(struct brcmf_cfg80211_info *cfg,
2828 struct net_device *ndev, const u8 *bssid)
2830 struct wiphy *wiphy = cfg_to_wiphy(cfg);
2831 struct ieee80211_channel *notify_channel;
2832 struct brcmf_bss_info_le *bi = NULL;
2833 struct ieee80211_supported_band *band;
2834 struct cfg80211_bss *bss;
2835 struct brcmu_chan ch;
2839 u16 notify_capability;
2840 u16 notify_interval;
2842 size_t notify_ielen;
2845 brcmf_dbg(TRACE, "Enter\n");
2847 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
2853 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
2855 err = brcmf_fil_cmd_data_get(netdev_priv(ndev), BRCMF_C_GET_BSS_INFO,
2856 buf, WL_BSS_INFO_MAX);
2858 brcmf_err("WLC_GET_BSS_INFO failed: %d\n", err);
2862 bi = (struct brcmf_bss_info_le *)(buf + 4);
2864 ch.chspec = le16_to_cpu(bi->chanspec);
2865 cfg->d11inf.decchspec(&ch);
2867 if (ch.band == BRCMU_CHAN_BAND_2G)
2868 band = wiphy->bands[NL80211_BAND_2GHZ];
2870 band = wiphy->bands[NL80211_BAND_5GHZ];
2872 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
2873 cfg->channel = freq;
2874 notify_channel = ieee80211_get_channel(wiphy, freq);
2876 notify_capability = le16_to_cpu(bi->capability);
2877 notify_interval = le16_to_cpu(bi->beacon_period);
2878 notify_ie = (u8 *)bi + le16_to_cpu(bi->ie_offset);
2879 notify_ielen = le32_to_cpu(bi->ie_length);
2880 notify_signal = (s16)le16_to_cpu(bi->RSSI) * 100;
2882 brcmf_dbg(CONN, "channel: %d(%d)\n", ch.control_ch_num, freq);
2883 brcmf_dbg(CONN, "capability: %X\n", notify_capability);
2884 brcmf_dbg(CONN, "beacon interval: %d\n", notify_interval);
2885 brcmf_dbg(CONN, "signal: %d\n", notify_signal);
2887 bss = cfg80211_inform_bss(wiphy, notify_channel,
2888 CFG80211_BSS_FTYPE_UNKNOWN, bssid, 0,
2889 notify_capability, notify_interval,
2890 notify_ie, notify_ielen, notify_signal,
2898 cfg80211_put_bss(wiphy, bss);
2904 brcmf_dbg(TRACE, "Exit\n");
2909 static s32 brcmf_update_bss_info(struct brcmf_cfg80211_info *cfg,
2910 struct brcmf_if *ifp)
2912 struct brcmf_bss_info_le *bi;
2913 const struct brcmf_tlv *tim;
2914 u16 beacon_interval;
2920 brcmf_dbg(TRACE, "Enter\n");
2921 if (brcmf_is_ibssmode(ifp->vif))
2924 *(__le32 *)cfg->extra_buf = cpu_to_le32(WL_EXTRA_BUF_MAX);
2925 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
2926 cfg->extra_buf, WL_EXTRA_BUF_MAX);
2928 brcmf_err("Could not get bss info %d\n", err);
2929 goto update_bss_info_out;
2932 bi = (struct brcmf_bss_info_le *)(cfg->extra_buf + 4);
2933 err = brcmf_inform_single_bss(cfg, bi);
2935 goto update_bss_info_out;
2937 ie = ((u8 *)bi) + le16_to_cpu(bi->ie_offset);
2938 ie_len = le32_to_cpu(bi->ie_length);
2939 beacon_interval = le16_to_cpu(bi->beacon_period);
2941 tim = brcmf_parse_tlvs(ie, ie_len, WLAN_EID_TIM);
2943 dtim_period = tim->data[1];
2946 * active scan was done so we could not get dtim
2947 * information out of probe response.
2948 * so we speficially query dtim information to dongle.
2951 err = brcmf_fil_iovar_int_get(ifp, "dtim_assoc", &var);
2953 brcmf_err("wl dtim_assoc failed (%d)\n", err);
2954 goto update_bss_info_out;
2956 dtim_period = (u8)var;
2959 update_bss_info_out:
2960 brcmf_dbg(TRACE, "Exit");
2964 void brcmf_abort_scanning(struct brcmf_cfg80211_info *cfg)
2966 struct escan_info *escan = &cfg->escan_info;
2968 set_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
2969 if (cfg->int_escan_map || cfg->scan_request) {
2970 escan->escan_state = WL_ESCAN_STATE_IDLE;
2971 brcmf_notify_escan_complete(cfg, escan->ifp, true, true);
2973 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
2974 clear_bit(BRCMF_SCAN_STATUS_ABORT, &cfg->scan_status);
2977 static void brcmf_cfg80211_escan_timeout_worker(struct work_struct *work)
2979 struct brcmf_cfg80211_info *cfg =
2980 container_of(work, struct brcmf_cfg80211_info,
2981 escan_timeout_work);
2983 brcmf_inform_bss(cfg);
2984 brcmf_notify_escan_complete(cfg, cfg->escan_info.ifp, true, true);
2987 static void brcmf_escan_timeout(struct timer_list *t)
2989 struct brcmf_cfg80211_info *cfg =
2990 from_timer(cfg, t, escan_timeout);
2992 if (cfg->int_escan_map || cfg->scan_request) {
2993 brcmf_err("timer expired\n");
2994 schedule_work(&cfg->escan_timeout_work);
2999 brcmf_compare_update_same_bss(struct brcmf_cfg80211_info *cfg,
3000 struct brcmf_bss_info_le *bss,
3001 struct brcmf_bss_info_le *bss_info_le)
3003 struct brcmu_chan ch_bss, ch_bss_info_le;
3005 ch_bss.chspec = le16_to_cpu(bss->chanspec);
3006 cfg->d11inf.decchspec(&ch_bss);
3007 ch_bss_info_le.chspec = le16_to_cpu(bss_info_le->chanspec);
3008 cfg->d11inf.decchspec(&ch_bss_info_le);
3010 if (!memcmp(&bss_info_le->BSSID, &bss->BSSID, ETH_ALEN) &&
3011 ch_bss.band == ch_bss_info_le.band &&
3012 bss_info_le->SSID_len == bss->SSID_len &&
3013 !memcmp(bss_info_le->SSID, bss->SSID, bss_info_le->SSID_len)) {
3014 if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) ==
3015 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL)) {
3016 s16 bss_rssi = le16_to_cpu(bss->RSSI);
3017 s16 bss_info_rssi = le16_to_cpu(bss_info_le->RSSI);
3019 /* preserve max RSSI if the measurements are
3020 * both on-channel or both off-channel
3022 if (bss_info_rssi > bss_rssi)
3023 bss->RSSI = bss_info_le->RSSI;
3024 } else if ((bss->flags & BRCMF_BSS_RSSI_ON_CHANNEL) &&
3025 (bss_info_le->flags & BRCMF_BSS_RSSI_ON_CHANNEL) == 0) {
3026 /* preserve the on-channel rssi measurement
3027 * if the new measurement is off channel
3029 bss->RSSI = bss_info_le->RSSI;
3030 bss->flags |= BRCMF_BSS_RSSI_ON_CHANNEL;
3038 brcmf_cfg80211_escan_handler(struct brcmf_if *ifp,
3039 const struct brcmf_event_msg *e, void *data)
3041 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3043 struct brcmf_escan_result_le *escan_result_le;
3045 struct brcmf_bss_info_le *bss_info_le;
3046 struct brcmf_bss_info_le *bss = NULL;
3048 struct brcmf_scan_results *list;
3054 if (status == BRCMF_E_STATUS_ABORT)
3057 if (!test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3058 brcmf_err("scan not ready, bsscfgidx=%d\n", ifp->bsscfgidx);
3062 if (status == BRCMF_E_STATUS_PARTIAL) {
3063 brcmf_dbg(SCAN, "ESCAN Partial result\n");
3064 if (e->datalen < sizeof(*escan_result_le)) {
3065 brcmf_err("invalid event data length\n");
3068 escan_result_le = (struct brcmf_escan_result_le *) data;
3069 if (!escan_result_le) {
3070 brcmf_err("Invalid escan result (NULL pointer)\n");
3073 escan_buflen = le32_to_cpu(escan_result_le->buflen);
3074 if (escan_buflen > BRCMF_ESCAN_BUF_SIZE ||
3075 escan_buflen > e->datalen ||
3076 escan_buflen < sizeof(*escan_result_le)) {
3077 brcmf_err("Invalid escan buffer length: %d\n",
3081 if (le16_to_cpu(escan_result_le->bss_count) != 1) {
3082 brcmf_err("Invalid bss_count %d: ignoring\n",
3083 escan_result_le->bss_count);
3086 bss_info_le = &escan_result_le->bss_info_le;
3088 if (brcmf_p2p_scan_finding_common_channel(cfg, bss_info_le))
3091 if (!cfg->int_escan_map && !cfg->scan_request) {
3092 brcmf_dbg(SCAN, "result without cfg80211 request\n");
3096 bi_length = le32_to_cpu(bss_info_le->length);
3097 if (bi_length != escan_buflen - WL_ESCAN_RESULTS_FIXED_SIZE) {
3098 brcmf_err("Ignoring invalid bss_info length: %d\n",
3103 if (!(cfg_to_wiphy(cfg)->interface_modes &
3104 BIT(NL80211_IFTYPE_ADHOC))) {
3105 if (le16_to_cpu(bss_info_le->capability) &
3106 WLAN_CAPABILITY_IBSS) {
3107 brcmf_err("Ignoring IBSS result\n");
3112 list = (struct brcmf_scan_results *)
3113 cfg->escan_info.escan_buf;
3114 if (bi_length > BRCMF_ESCAN_BUF_SIZE - list->buflen) {
3115 brcmf_err("Buffer is too small: ignoring\n");
3119 for (i = 0; i < list->count; i++) {
3120 bss = bss ? (struct brcmf_bss_info_le *)
3121 ((unsigned char *)bss +
3122 le32_to_cpu(bss->length)) : list->bss_info_le;
3123 if (brcmf_compare_update_same_bss(cfg, bss,
3127 memcpy(&cfg->escan_info.escan_buf[list->buflen], bss_info_le,
3129 list->version = le32_to_cpu(bss_info_le->version);
3130 list->buflen += bi_length;
3133 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3134 if (brcmf_p2p_scan_finding_common_channel(cfg, NULL))
3136 if (cfg->int_escan_map || cfg->scan_request) {
3137 brcmf_inform_bss(cfg);
3138 aborted = status != BRCMF_E_STATUS_SUCCESS;
3139 brcmf_notify_escan_complete(cfg, ifp, aborted, false);
3141 brcmf_dbg(SCAN, "Ignored scan complete result 0x%x\n",
3148 static void brcmf_init_escan(struct brcmf_cfg80211_info *cfg)
3150 brcmf_fweh_register(cfg->pub, BRCMF_E_ESCAN_RESULT,
3151 brcmf_cfg80211_escan_handler);
3152 cfg->escan_info.escan_state = WL_ESCAN_STATE_IDLE;
3153 /* Init scan_timeout timer */
3154 timer_setup(&cfg->escan_timeout, brcmf_escan_timeout, 0);
3155 INIT_WORK(&cfg->escan_timeout_work,
3156 brcmf_cfg80211_escan_timeout_worker);
3159 static struct cfg80211_scan_request *
3160 brcmf_alloc_internal_escan_request(struct wiphy *wiphy, u32 n_netinfo) {
3161 struct cfg80211_scan_request *req;
3164 req_size = sizeof(*req) +
3165 n_netinfo * sizeof(req->channels[0]) +
3166 n_netinfo * sizeof(*req->ssids);
3168 req = kzalloc(req_size, GFP_KERNEL);
3171 req->ssids = (void *)(&req->channels[0]) +
3172 n_netinfo * sizeof(req->channels[0]);
3177 static int brcmf_internal_escan_add_info(struct cfg80211_scan_request *req,
3178 u8 *ssid, u8 ssid_len, u8 channel)
3180 struct ieee80211_channel *chan;
3181 enum nl80211_band band;
3184 if (channel <= CH_MAX_2G_CHANNEL)
3185 band = NL80211_BAND_2GHZ;
3187 band = NL80211_BAND_5GHZ;
3189 freq = ieee80211_channel_to_frequency(channel, band);
3193 chan = ieee80211_get_channel(req->wiphy, freq);
3197 for (i = 0; i < req->n_channels; i++) {
3198 if (req->channels[i] == chan)
3201 if (i == req->n_channels)
3202 req->channels[req->n_channels++] = chan;
3204 for (i = 0; i < req->n_ssids; i++) {
3205 if (req->ssids[i].ssid_len == ssid_len &&
3206 !memcmp(req->ssids[i].ssid, ssid, ssid_len))
3209 if (i == req->n_ssids) {
3210 memcpy(req->ssids[req->n_ssids].ssid, ssid, ssid_len);
3211 req->ssids[req->n_ssids++].ssid_len = ssid_len;
3216 static int brcmf_start_internal_escan(struct brcmf_if *ifp, u32 fwmap,
3217 struct cfg80211_scan_request *request)
3219 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3222 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status)) {
3223 if (cfg->int_escan_map)
3224 brcmf_dbg(SCAN, "aborting internal scan: map=%u\n",
3225 cfg->int_escan_map);
3226 /* Abort any on-going scan */
3227 brcmf_abort_scanning(cfg);
3230 brcmf_dbg(SCAN, "start internal scan: map=%u\n", fwmap);
3231 set_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3232 cfg->escan_info.run = brcmf_run_escan;
3233 err = brcmf_do_escan(ifp, request);
3235 clear_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status);
3238 cfg->int_escan_map = fwmap;
3242 static struct brcmf_pno_net_info_le *
3243 brcmf_get_netinfo_array(struct brcmf_pno_scanresults_le *pfn_v1)
3245 struct brcmf_pno_scanresults_v2_le *pfn_v2;
3246 struct brcmf_pno_net_info_le *netinfo;
3248 switch (pfn_v1->version) {
3252 case cpu_to_le32(1):
3253 netinfo = (struct brcmf_pno_net_info_le *)(pfn_v1 + 1);
3255 case cpu_to_le32(2):
3256 pfn_v2 = (struct brcmf_pno_scanresults_v2_le *)pfn_v1;
3257 netinfo = (struct brcmf_pno_net_info_le *)(pfn_v2 + 1);
3264 /* PFN result doesn't have all the info which are required by the supplicant
3265 * (For e.g IEs) Do a target Escan so that sched scan results are reported
3266 * via wl_inform_single_bss in the required format. Escan does require the
3267 * scan request in the form of cfg80211_scan_request. For timebeing, create
3268 * cfg80211_scan_request one out of the received PNO event.
3271 brcmf_notify_sched_scan_results(struct brcmf_if *ifp,
3272 const struct brcmf_event_msg *e, void *data)
3274 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3275 struct brcmf_pno_net_info_le *netinfo, *netinfo_start;
3276 struct cfg80211_scan_request *request = NULL;
3277 struct wiphy *wiphy = cfg_to_wiphy(cfg);
3279 struct brcmf_pno_scanresults_le *pfn_result;
3285 brcmf_dbg(SCAN, "Enter\n");
3287 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3288 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3292 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3293 brcmf_dbg(SCAN, "PFN NET LOST event. Do Nothing\n");
3297 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3298 result_count = le32_to_cpu(pfn_result->count);
3299 status = le32_to_cpu(pfn_result->status);
3301 /* PFN event is limited to fit 512 bytes so we may get
3302 * multiple NET_FOUND events. For now place a warning here.
3304 WARN_ON(status != BRCMF_PNO_SCAN_COMPLETE);
3305 brcmf_dbg(SCAN, "PFN NET FOUND event. count: %d\n", result_count);
3306 if (!result_count) {
3307 brcmf_err("FALSE PNO Event. (pfn_count == 0)\n");
3311 netinfo_start = brcmf_get_netinfo_array(pfn_result);
3312 datalen = e->datalen - ((void *)netinfo_start - (void *)pfn_result);
3313 if (datalen < result_count * sizeof(*netinfo)) {
3314 brcmf_err("insufficient event data\n");
3318 request = brcmf_alloc_internal_escan_request(wiphy,
3326 for (i = 0; i < result_count; i++) {
3327 netinfo = &netinfo_start[i];
3329 if (netinfo->SSID_len > IEEE80211_MAX_SSID_LEN)
3330 netinfo->SSID_len = IEEE80211_MAX_SSID_LEN;
3331 brcmf_dbg(SCAN, "SSID:%.32s Channel:%d\n",
3332 netinfo->SSID, netinfo->channel);
3333 bucket_map |= brcmf_pno_get_bucket_map(cfg->pno, netinfo);
3334 err = brcmf_internal_escan_add_info(request,
3345 err = brcmf_start_internal_escan(ifp, bucket_map, request);
3350 cfg80211_sched_scan_stopped(wiphy, 0);
3357 brcmf_cfg80211_sched_scan_start(struct wiphy *wiphy,
3358 struct net_device *ndev,
3359 struct cfg80211_sched_scan_request *req)
3361 struct brcmf_if *ifp = netdev_priv(ndev);
3362 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3364 brcmf_dbg(SCAN, "Enter: n_match_sets=%d n_ssids=%d\n",
3365 req->n_match_sets, req->n_ssids);
3367 if (test_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status)) {
3368 brcmf_err("Scanning suppressed: status=%lu\n",
3373 if (req->n_match_sets <= 0) {
3374 brcmf_dbg(SCAN, "invalid number of matchsets specified: %d\n",
3379 return brcmf_pno_start_sched_scan(ifp, req);
3382 static int brcmf_cfg80211_sched_scan_stop(struct wiphy *wiphy,
3383 struct net_device *ndev, u64 reqid)
3385 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3386 struct brcmf_if *ifp = netdev_priv(ndev);
3388 brcmf_dbg(SCAN, "enter\n");
3389 brcmf_pno_stop_sched_scan(ifp, reqid);
3390 if (cfg->int_escan_map)
3391 brcmf_notify_escan_complete(cfg, ifp, true, true);
3395 static __always_inline void brcmf_delay(u32 ms)
3397 if (ms < 1000 / HZ) {
3405 static s32 brcmf_config_wowl_pattern(struct brcmf_if *ifp, u8 cmd[4],
3406 u8 *pattern, u32 patternsize, u8 *mask,
3409 struct brcmf_fil_wowl_pattern_le *filter;
3416 masksize = (patternsize + 7) / 8;
3417 patternoffset = sizeof(*filter) - sizeof(filter->cmd) + masksize;
3419 bufsize = sizeof(*filter) + patternsize + masksize;
3420 buf = kzalloc(bufsize, GFP_KERNEL);
3423 filter = (struct brcmf_fil_wowl_pattern_le *)buf;
3425 memcpy(filter->cmd, cmd, 4);
3426 filter->masksize = cpu_to_le32(masksize);
3427 filter->offset = cpu_to_le32(packet_offset);
3428 filter->patternoffset = cpu_to_le32(patternoffset);
3429 filter->patternsize = cpu_to_le32(patternsize);
3430 filter->type = cpu_to_le32(BRCMF_WOWL_PATTERN_TYPE_BITMAP);
3432 if ((mask) && (masksize))
3433 memcpy(buf + sizeof(*filter), mask, masksize);
3434 if ((pattern) && (patternsize))
3435 memcpy(buf + sizeof(*filter) + masksize, pattern, patternsize);
3437 ret = brcmf_fil_iovar_data_set(ifp, "wowl_pattern", buf, bufsize);
3444 brcmf_wowl_nd_results(struct brcmf_if *ifp, const struct brcmf_event_msg *e,
3447 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
3448 struct brcmf_pno_scanresults_le *pfn_result;
3449 struct brcmf_pno_net_info_le *netinfo;
3451 brcmf_dbg(SCAN, "Enter\n");
3453 if (e->datalen < (sizeof(*pfn_result) + sizeof(*netinfo))) {
3454 brcmf_dbg(SCAN, "Event data to small. Ignore\n");
3458 pfn_result = (struct brcmf_pno_scanresults_le *)data;
3460 if (e->event_code == BRCMF_E_PFN_NET_LOST) {
3461 brcmf_dbg(SCAN, "PFN NET LOST event. Ignore\n");
3465 if (le32_to_cpu(pfn_result->count) < 1) {
3466 brcmf_err("Invalid result count, expected 1 (%d)\n",
3467 le32_to_cpu(pfn_result->count));
3471 netinfo = brcmf_get_netinfo_array(pfn_result);
3472 if (netinfo->SSID_len > IEEE80211_MAX_SSID_LEN)
3473 netinfo->SSID_len = IEEE80211_MAX_SSID_LEN;
3474 memcpy(cfg->wowl.nd->ssid.ssid, netinfo->SSID, netinfo->SSID_len);
3475 cfg->wowl.nd->ssid.ssid_len = netinfo->SSID_len;
3476 cfg->wowl.nd->n_channels = 1;
3477 cfg->wowl.nd->channels[0] =
3478 ieee80211_channel_to_frequency(netinfo->channel,
3479 netinfo->channel <= CH_MAX_2G_CHANNEL ?
3480 NL80211_BAND_2GHZ : NL80211_BAND_5GHZ);
3481 cfg->wowl.nd_info->n_matches = 1;
3482 cfg->wowl.nd_info->matches[0] = cfg->wowl.nd;
3484 /* Inform (the resume task) that the net detect information was recvd */
3485 cfg->wowl.nd_data_completed = true;
3486 wake_up(&cfg->wowl.nd_data_wait);
3493 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3495 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3496 struct brcmf_wowl_wakeind_le wake_ind_le;
3497 struct cfg80211_wowlan_wakeup wakeup_data;
3498 struct cfg80211_wowlan_wakeup *wakeup;
3503 err = brcmf_fil_iovar_data_get(ifp, "wowl_wakeind", &wake_ind_le,
3504 sizeof(wake_ind_le));
3506 brcmf_err("Get wowl_wakeind failed, err = %d\n", err);
3510 wakeind = le32_to_cpu(wake_ind_le.ucode_wakeind);
3511 if (wakeind & (BRCMF_WOWL_MAGIC | BRCMF_WOWL_DIS | BRCMF_WOWL_BCN |
3512 BRCMF_WOWL_RETR | BRCMF_WOWL_NET |
3513 BRCMF_WOWL_PFN_FOUND)) {
3514 wakeup = &wakeup_data;
3515 memset(&wakeup_data, 0, sizeof(wakeup_data));
3516 wakeup_data.pattern_idx = -1;
3518 if (wakeind & BRCMF_WOWL_MAGIC) {
3519 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_MAGIC\n");
3520 wakeup_data.magic_pkt = true;
3522 if (wakeind & BRCMF_WOWL_DIS) {
3523 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_DIS\n");
3524 wakeup_data.disconnect = true;
3526 if (wakeind & BRCMF_WOWL_BCN) {
3527 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_BCN\n");
3528 wakeup_data.disconnect = true;
3530 if (wakeind & BRCMF_WOWL_RETR) {
3531 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_RETR\n");
3532 wakeup_data.disconnect = true;
3534 if (wakeind & BRCMF_WOWL_NET) {
3535 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_NET\n");
3536 /* For now always map to pattern 0, no API to get
3537 * correct information available at the moment.
3539 wakeup_data.pattern_idx = 0;
3541 if (wakeind & BRCMF_WOWL_PFN_FOUND) {
3542 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_PFN_FOUND\n");
3543 timeout = wait_event_timeout(cfg->wowl.nd_data_wait,
3544 cfg->wowl.nd_data_completed,
3545 BRCMF_ND_INFO_TIMEOUT);
3547 brcmf_err("No result for wowl net detect\n");
3549 wakeup_data.net_detect = cfg->wowl.nd_info;
3551 if (wakeind & BRCMF_WOWL_GTK_FAILURE) {
3552 brcmf_dbg(INFO, "WOWL Wake indicator: BRCMF_WOWL_GTK_FAILURE\n");
3553 wakeup_data.gtk_rekey_failure = true;
3558 cfg80211_report_wowlan_wakeup(&ifp->vif->wdev, wakeup, GFP_KERNEL);
3563 static void brcmf_report_wowl_wakeind(struct wiphy *wiphy, struct brcmf_if *ifp)
3567 #endif /* CONFIG_PM */
3569 static s32 brcmf_cfg80211_resume(struct wiphy *wiphy)
3571 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3572 struct net_device *ndev = cfg_to_ndev(cfg);
3573 struct brcmf_if *ifp = netdev_priv(ndev);
3575 brcmf_dbg(TRACE, "Enter\n");
3577 if (cfg->wowl.active) {
3578 brcmf_report_wowl_wakeind(wiphy, ifp);
3579 brcmf_fil_iovar_int_set(ifp, "wowl_clear", 0);
3580 brcmf_config_wowl_pattern(ifp, "clr", NULL, 0, NULL, 0);
3581 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3582 brcmf_configure_arp_nd_offload(ifp, true);
3583 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM,
3584 cfg->wowl.pre_pmmode);
3585 cfg->wowl.active = false;
3586 if (cfg->wowl.nd_enabled) {
3587 brcmf_cfg80211_sched_scan_stop(cfg->wiphy, ifp->ndev, 0);
3588 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3589 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3590 brcmf_notify_sched_scan_results);
3591 cfg->wowl.nd_enabled = false;
3597 static void brcmf_configure_wowl(struct brcmf_cfg80211_info *cfg,
3598 struct brcmf_if *ifp,
3599 struct cfg80211_wowlan *wowl)
3602 struct brcmf_wowl_wakeind_le wowl_wakeind;
3605 brcmf_dbg(TRACE, "Suspend, wowl config.\n");
3607 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ARP_ND))
3608 brcmf_configure_arp_nd_offload(ifp, false);
3609 brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_PM, &cfg->wowl.pre_pmmode);
3610 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, PM_MAX);
3613 if (wowl->disconnect)
3614 wowl_config = BRCMF_WOWL_DIS | BRCMF_WOWL_BCN | BRCMF_WOWL_RETR;
3615 if (wowl->magic_pkt)
3616 wowl_config |= BRCMF_WOWL_MAGIC;
3617 if ((wowl->patterns) && (wowl->n_patterns)) {
3618 wowl_config |= BRCMF_WOWL_NET;
3619 for (i = 0; i < wowl->n_patterns; i++) {
3620 brcmf_config_wowl_pattern(ifp, "add",
3621 (u8 *)wowl->patterns[i].pattern,
3622 wowl->patterns[i].pattern_len,
3623 (u8 *)wowl->patterns[i].mask,
3624 wowl->patterns[i].pkt_offset);
3627 if (wowl->nd_config) {
3628 brcmf_cfg80211_sched_scan_start(cfg->wiphy, ifp->ndev,
3630 wowl_config |= BRCMF_WOWL_PFN_FOUND;
3632 cfg->wowl.nd_data_completed = false;
3633 cfg->wowl.nd_enabled = true;
3634 /* Now reroute the event for PFN to the wowl function. */
3635 brcmf_fweh_unregister(cfg->pub, BRCMF_E_PFN_NET_FOUND);
3636 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
3637 brcmf_wowl_nd_results);
3639 if (wowl->gtk_rekey_failure)
3640 wowl_config |= BRCMF_WOWL_GTK_FAILURE;
3641 if (!test_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state))
3642 wowl_config |= BRCMF_WOWL_UNASSOC;
3644 memcpy(&wowl_wakeind, "clear", 6);
3645 brcmf_fil_iovar_data_set(ifp, "wowl_wakeind", &wowl_wakeind,
3646 sizeof(wowl_wakeind));
3647 brcmf_fil_iovar_int_set(ifp, "wowl", wowl_config);
3648 brcmf_fil_iovar_int_set(ifp, "wowl_activate", 1);
3649 brcmf_bus_wowl_config(cfg->pub->bus_if, true);
3650 cfg->wowl.active = true;
3653 static s32 brcmf_cfg80211_suspend(struct wiphy *wiphy,
3654 struct cfg80211_wowlan *wowl)
3656 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3657 struct net_device *ndev = cfg_to_ndev(cfg);
3658 struct brcmf_if *ifp = netdev_priv(ndev);
3659 struct brcmf_cfg80211_vif *vif;
3661 brcmf_dbg(TRACE, "Enter\n");
3663 /* if the primary net_device is not READY there is nothing
3664 * we can do but pray resume goes smoothly.
3666 if (!check_vif_up(ifp->vif))
3669 /* Stop scheduled scan */
3670 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO))
3671 brcmf_cfg80211_sched_scan_stop(wiphy, ndev, 0);
3673 /* end any scanning */
3674 if (test_bit(BRCMF_SCAN_STATUS_BUSY, &cfg->scan_status))
3675 brcmf_abort_scanning(cfg);
3678 brcmf_bus_wowl_config(cfg->pub->bus_if, false);
3679 list_for_each_entry(vif, &cfg->vif_list, list) {
3680 if (!test_bit(BRCMF_VIF_STATUS_READY, &vif->sme_state))
3682 /* While going to suspend if associated with AP
3683 * disassociate from AP to save power while system is
3684 * in suspended state
3686 brcmf_link_down(vif, WLAN_REASON_UNSPECIFIED);
3687 /* Make sure WPA_Supplicant receives all the event
3688 * generated due to DISASSOC call to the fw to keep
3689 * the state fw and WPA_Supplicant state consistent
3694 brcmf_set_mpc(ifp, 1);
3697 /* Configure WOWL paramaters */
3698 brcmf_configure_wowl(cfg, ifp, wowl);
3702 brcmf_dbg(TRACE, "Exit\n");
3703 /* clear any scanning activity */
3704 cfg->scan_status = 0;
3709 brcmf_update_pmklist(struct brcmf_cfg80211_info *cfg, struct brcmf_if *ifp)
3711 struct brcmf_pmk_list_le *pmk_list;
3716 pmk_list = &cfg->pmk_list;
3717 npmk = le32_to_cpu(pmk_list->npmk);
3719 brcmf_dbg(CONN, "No of elements %d\n", npmk);
3720 for (i = 0; i < npmk; i++)
3721 brcmf_dbg(CONN, "PMK[%d]: %pM\n", i, &pmk_list->pmk[i].bssid);
3723 err = brcmf_fil_iovar_data_set(ifp, "pmkid_info", pmk_list,
3730 brcmf_cfg80211_set_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3731 struct cfg80211_pmksa *pmksa)
3733 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3734 struct brcmf_if *ifp = netdev_priv(ndev);
3735 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3739 brcmf_dbg(TRACE, "Enter\n");
3740 if (!check_vif_up(ifp->vif))
3743 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3744 for (i = 0; i < npmk; i++)
3745 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3747 if (i < BRCMF_MAXPMKID) {
3748 memcpy(pmk[i].bssid, pmksa->bssid, ETH_ALEN);
3749 memcpy(pmk[i].pmkid, pmksa->pmkid, WLAN_PMKID_LEN);
3752 cfg->pmk_list.npmk = cpu_to_le32(npmk);
3755 brcmf_err("Too many PMKSA entries cached %d\n", npmk);
3759 brcmf_dbg(CONN, "set_pmksa - PMK bssid: %pM =\n", pmk[npmk].bssid);
3760 for (i = 0; i < WLAN_PMKID_LEN; i += 4)
3761 brcmf_dbg(CONN, "%02x %02x %02x %02x\n", pmk[npmk].pmkid[i],
3762 pmk[npmk].pmkid[i + 1], pmk[npmk].pmkid[i + 2],
3763 pmk[npmk].pmkid[i + 3]);
3765 err = brcmf_update_pmklist(cfg, ifp);
3767 brcmf_dbg(TRACE, "Exit\n");
3772 brcmf_cfg80211_del_pmksa(struct wiphy *wiphy, struct net_device *ndev,
3773 struct cfg80211_pmksa *pmksa)
3775 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3776 struct brcmf_if *ifp = netdev_priv(ndev);
3777 struct brcmf_pmksa *pmk = &cfg->pmk_list.pmk[0];
3781 brcmf_dbg(TRACE, "Enter\n");
3782 if (!check_vif_up(ifp->vif))
3785 brcmf_dbg(CONN, "del_pmksa - PMK bssid = %pM\n", pmksa->bssid);
3787 npmk = le32_to_cpu(cfg->pmk_list.npmk);
3788 for (i = 0; i < npmk; i++)
3789 if (!memcmp(pmksa->bssid, pmk[i].bssid, ETH_ALEN))
3792 if ((npmk > 0) && (i < npmk)) {
3793 for (; i < (npmk - 1); i++) {
3794 memcpy(&pmk[i].bssid, &pmk[i + 1].bssid, ETH_ALEN);
3795 memcpy(&pmk[i].pmkid, &pmk[i + 1].pmkid,
3798 memset(&pmk[i], 0, sizeof(*pmk));
3799 cfg->pmk_list.npmk = cpu_to_le32(npmk - 1);
3801 brcmf_err("Cache entry not found\n");
3805 err = brcmf_update_pmklist(cfg, ifp);
3807 brcmf_dbg(TRACE, "Exit\n");
3813 brcmf_cfg80211_flush_pmksa(struct wiphy *wiphy, struct net_device *ndev)
3815 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
3816 struct brcmf_if *ifp = netdev_priv(ndev);
3819 brcmf_dbg(TRACE, "Enter\n");
3820 if (!check_vif_up(ifp->vif))
3823 memset(&cfg->pmk_list, 0, sizeof(cfg->pmk_list));
3824 err = brcmf_update_pmklist(cfg, ifp);
3826 brcmf_dbg(TRACE, "Exit\n");
3831 static s32 brcmf_configure_opensecurity(struct brcmf_if *ifp)
3837 err = brcmf_fil_bsscfg_int_set(ifp, "auth", 0);
3839 brcmf_err("auth error %d\n", err);
3843 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", 0);
3845 brcmf_err("wsec error %d\n", err);
3848 /* set upper-layer auth */
3849 if (brcmf_is_ibssmode(ifp->vif))
3850 wpa_val = WPA_AUTH_NONE;
3852 wpa_val = WPA_AUTH_DISABLED;
3853 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", wpa_val);
3855 brcmf_err("wpa_auth error %d\n", err);
3862 static bool brcmf_valid_wpa_oui(u8 *oui, bool is_rsn_ie)
3865 return (memcmp(oui, RSN_OUI, TLV_OUI_LEN) == 0);
3867 return (memcmp(oui, WPA_OUI, TLV_OUI_LEN) == 0);
3871 brcmf_configure_wpaie(struct brcmf_if *ifp,
3872 const struct brcmf_vs_tlv *wpa_ie,
3875 u32 auth = 0; /* d11 open authentication */
3887 u32 wme_bss_disable;
3890 brcmf_dbg(TRACE, "Enter\n");
3894 len = wpa_ie->len + TLV_HDR_LEN;
3895 data = (u8 *)wpa_ie;
3896 offset = TLV_HDR_LEN;
3898 offset += VS_IE_FIXED_HDR_LEN;
3900 offset += WPA_IE_VERSION_LEN;
3902 /* check for multicast cipher suite */
3903 if (offset + WPA_IE_MIN_OUI_LEN > len) {
3905 brcmf_err("no multicast cipher suite\n");
3909 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
3911 brcmf_err("ivalid OUI\n");
3914 offset += TLV_OUI_LEN;
3916 /* pick up multicast cipher */
3917 switch (data[offset]) {
3918 case WPA_CIPHER_NONE:
3921 case WPA_CIPHER_WEP_40:
3922 case WPA_CIPHER_WEP_104:
3925 case WPA_CIPHER_TKIP:
3926 gval = TKIP_ENABLED;
3928 case WPA_CIPHER_AES_CCM:
3933 brcmf_err("Invalid multi cast cipher info\n");
3938 /* walk thru unicast cipher list and pick up what we recognize */
3939 count = data[offset] + (data[offset + 1] << 8);
3940 offset += WPA_IE_SUITE_COUNT_LEN;
3941 /* Check for unicast suite(s) */
3942 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
3944 brcmf_err("no unicast cipher suite\n");
3947 for (i = 0; i < count; i++) {
3948 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
3950 brcmf_err("ivalid OUI\n");
3953 offset += TLV_OUI_LEN;
3954 switch (data[offset]) {
3955 case WPA_CIPHER_NONE:
3957 case WPA_CIPHER_WEP_40:
3958 case WPA_CIPHER_WEP_104:
3959 pval |= WEP_ENABLED;
3961 case WPA_CIPHER_TKIP:
3962 pval |= TKIP_ENABLED;
3964 case WPA_CIPHER_AES_CCM:
3965 pval |= AES_ENABLED;
3968 brcmf_err("Invalid unicast security info\n");
3972 /* walk thru auth management suite list and pick up what we recognize */
3973 count = data[offset] + (data[offset + 1] << 8);
3974 offset += WPA_IE_SUITE_COUNT_LEN;
3975 /* Check for auth key management suite(s) */
3976 if (offset + (WPA_IE_MIN_OUI_LEN * count) > len) {
3978 brcmf_err("no auth key mgmt suite\n");
3981 for (i = 0; i < count; i++) {
3982 if (!brcmf_valid_wpa_oui(&data[offset], is_rsn_ie)) {
3984 brcmf_err("ivalid OUI\n");
3987 offset += TLV_OUI_LEN;
3988 switch (data[offset]) {
3990 brcmf_dbg(TRACE, "RSN_AKM_NONE\n");
3991 wpa_auth |= WPA_AUTH_NONE;
3993 case RSN_AKM_UNSPECIFIED:
3994 brcmf_dbg(TRACE, "RSN_AKM_UNSPECIFIED\n");
3995 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_UNSPECIFIED) :
3996 (wpa_auth |= WPA_AUTH_UNSPECIFIED);
3999 brcmf_dbg(TRACE, "RSN_AKM_PSK\n");
4000 is_rsn_ie ? (wpa_auth |= WPA2_AUTH_PSK) :
4001 (wpa_auth |= WPA_AUTH_PSK);
4003 case RSN_AKM_SHA256_PSK:
4004 brcmf_dbg(TRACE, "RSN_AKM_MFP_PSK\n");
4005 wpa_auth |= WPA2_AUTH_PSK_SHA256;
4007 case RSN_AKM_SHA256_1X:
4008 brcmf_dbg(TRACE, "RSN_AKM_MFP_1X\n");
4009 wpa_auth |= WPA2_AUTH_1X_SHA256;
4012 brcmf_err("Invalid key mgmt info\n");
4017 mfp = BRCMF_MFP_NONE;
4019 wme_bss_disable = 1;
4020 if ((offset + RSN_CAP_LEN) <= len) {
4021 rsn_cap = data[offset] + (data[offset + 1] << 8);
4022 if (rsn_cap & RSN_CAP_PTK_REPLAY_CNTR_MASK)
4023 wme_bss_disable = 0;
4024 if (rsn_cap & RSN_CAP_MFPR_MASK) {
4025 brcmf_dbg(TRACE, "MFP Required\n");
4026 mfp = BRCMF_MFP_REQUIRED;
4027 /* Firmware only supports mfp required in
4028 * combination with WPA2_AUTH_PSK_SHA256 or
4029 * WPA2_AUTH_1X_SHA256.
4031 if (!(wpa_auth & (WPA2_AUTH_PSK_SHA256 |
4032 WPA2_AUTH_1X_SHA256))) {
4036 /* Firmware has requirement that WPA2_AUTH_PSK/
4037 * WPA2_AUTH_UNSPECIFIED be set, if SHA256 OUI
4038 * is to be included in the rsn ie.
4040 if (wpa_auth & WPA2_AUTH_PSK_SHA256)
4041 wpa_auth |= WPA2_AUTH_PSK;
4042 else if (wpa_auth & WPA2_AUTH_1X_SHA256)
4043 wpa_auth |= WPA2_AUTH_UNSPECIFIED;
4044 } else if (rsn_cap & RSN_CAP_MFPC_MASK) {
4045 brcmf_dbg(TRACE, "MFP Capable\n");
4046 mfp = BRCMF_MFP_CAPABLE;
4049 offset += RSN_CAP_LEN;
4050 /* set wme_bss_disable to sync RSN Capabilities */
4051 err = brcmf_fil_bsscfg_int_set(ifp, "wme_bss_disable",
4054 brcmf_err("wme_bss_disable error %d\n", err);
4058 /* Skip PMKID cnt as it is know to be 0 for AP. */
4059 offset += RSN_PMKID_COUNT_LEN;
4061 /* See if there is BIP wpa suite left for MFP */
4062 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP) &&
4063 ((offset + WPA_IE_MIN_OUI_LEN) <= len)) {
4064 err = brcmf_fil_bsscfg_data_set(ifp, "bip",
4066 WPA_IE_MIN_OUI_LEN);
4068 brcmf_err("bip error %d\n", err);
4073 /* FOR WPS , set SES_OW_ENABLED */
4074 wsec = (pval | gval | SES_OW_ENABLED);
4077 err = brcmf_fil_bsscfg_int_set(ifp, "auth", auth);
4079 brcmf_err("auth error %d\n", err);
4083 err = brcmf_fil_bsscfg_int_set(ifp, "wsec", wsec);
4085 brcmf_err("wsec error %d\n", err);
4088 /* Configure MFP, this needs to go after wsec otherwise the wsec command
4089 * will overwrite the values set by MFP
4091 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP)) {
4092 err = brcmf_fil_bsscfg_int_set(ifp, "mfp", mfp);
4094 brcmf_err("mfp error %d\n", err);
4098 /* set upper-layer auth */
4099 err = brcmf_fil_bsscfg_int_set(ifp, "wpa_auth", wpa_auth);
4101 brcmf_err("wpa_auth error %d\n", err);
4110 brcmf_parse_vndr_ies(const u8 *vndr_ie_buf, u32 vndr_ie_len,
4111 struct parsed_vndr_ies *vndr_ies)
4113 struct brcmf_vs_tlv *vndrie;
4114 struct brcmf_tlv *ie;
4115 struct parsed_vndr_ie_info *parsed_info;
4118 remaining_len = (s32)vndr_ie_len;
4119 memset(vndr_ies, 0, sizeof(*vndr_ies));
4121 ie = (struct brcmf_tlv *)vndr_ie_buf;
4123 if (ie->id != WLAN_EID_VENDOR_SPECIFIC)
4125 vndrie = (struct brcmf_vs_tlv *)ie;
4126 /* len should be bigger than OUI length + one */
4127 if (vndrie->len < (VS_IE_FIXED_HDR_LEN - TLV_HDR_LEN + 1)) {
4128 brcmf_err("invalid vndr ie. length is too small %d\n",
4132 /* if wpa or wme ie, do not add ie */
4133 if (!memcmp(vndrie->oui, (u8 *)WPA_OUI, TLV_OUI_LEN) &&
4134 ((vndrie->oui_type == WPA_OUI_TYPE) ||
4135 (vndrie->oui_type == WME_OUI_TYPE))) {
4136 brcmf_dbg(TRACE, "Found WPA/WME oui. Do not add it\n");
4140 parsed_info = &vndr_ies->ie_info[vndr_ies->count];
4142 /* save vndr ie information */
4143 parsed_info->ie_ptr = (char *)vndrie;
4144 parsed_info->ie_len = vndrie->len + TLV_HDR_LEN;
4145 memcpy(&parsed_info->vndrie, vndrie, sizeof(*vndrie));
4149 brcmf_dbg(TRACE, "** OUI %02x %02x %02x, type 0x%02x\n",
4150 parsed_info->vndrie.oui[0],
4151 parsed_info->vndrie.oui[1],
4152 parsed_info->vndrie.oui[2],
4153 parsed_info->vndrie.oui_type);
4155 if (vndr_ies->count >= VNDR_IE_PARSE_LIMIT)
4158 remaining_len -= (ie->len + TLV_HDR_LEN);
4159 if (remaining_len <= TLV_HDR_LEN)
4162 ie = (struct brcmf_tlv *)(((u8 *)ie) + ie->len +
4169 brcmf_vndr_ie(u8 *iebuf, s32 pktflag, u8 *ie_ptr, u32 ie_len, s8 *add_del_cmd)
4172 strncpy(iebuf, add_del_cmd, VNDR_IE_CMD_LEN - 1);
4173 iebuf[VNDR_IE_CMD_LEN - 1] = '\0';
4175 put_unaligned_le32(1, &iebuf[VNDR_IE_COUNT_OFFSET]);
4177 put_unaligned_le32(pktflag, &iebuf[VNDR_IE_PKTFLAG_OFFSET]);
4179 memcpy(&iebuf[VNDR_IE_VSIE_OFFSET], ie_ptr, ie_len);
4181 return ie_len + VNDR_IE_HDR_SIZE;
4184 s32 brcmf_vif_set_mgmt_ie(struct brcmf_cfg80211_vif *vif, s32 pktflag,
4185 const u8 *vndr_ie_buf, u32 vndr_ie_len)
4187 struct brcmf_if *ifp;
4188 struct vif_saved_ie *saved_ie;
4192 u8 *mgmt_ie_buf = NULL;
4193 int mgmt_ie_buf_len;
4195 u32 del_add_ie_buf_len = 0;
4196 u32 total_ie_buf_len = 0;
4197 u32 parsed_ie_buf_len = 0;
4198 struct parsed_vndr_ies old_vndr_ies;
4199 struct parsed_vndr_ies new_vndr_ies;
4200 struct parsed_vndr_ie_info *vndrie_info;
4203 int remained_buf_len;
4208 saved_ie = &vif->saved_ie;
4210 brcmf_dbg(TRACE, "bsscfgidx %d, pktflag : 0x%02X\n", ifp->bsscfgidx,
4212 iovar_ie_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
4215 curr_ie_buf = iovar_ie_buf;
4217 case BRCMF_VNDR_IE_PRBREQ_FLAG:
4218 mgmt_ie_buf = saved_ie->probe_req_ie;
4219 mgmt_ie_len = &saved_ie->probe_req_ie_len;
4220 mgmt_ie_buf_len = sizeof(saved_ie->probe_req_ie);
4222 case BRCMF_VNDR_IE_PRBRSP_FLAG:
4223 mgmt_ie_buf = saved_ie->probe_res_ie;
4224 mgmt_ie_len = &saved_ie->probe_res_ie_len;
4225 mgmt_ie_buf_len = sizeof(saved_ie->probe_res_ie);
4227 case BRCMF_VNDR_IE_BEACON_FLAG:
4228 mgmt_ie_buf = saved_ie->beacon_ie;
4229 mgmt_ie_len = &saved_ie->beacon_ie_len;
4230 mgmt_ie_buf_len = sizeof(saved_ie->beacon_ie);
4232 case BRCMF_VNDR_IE_ASSOCREQ_FLAG:
4233 mgmt_ie_buf = saved_ie->assoc_req_ie;
4234 mgmt_ie_len = &saved_ie->assoc_req_ie_len;
4235 mgmt_ie_buf_len = sizeof(saved_ie->assoc_req_ie);
4239 brcmf_err("not suitable type\n");
4243 if (vndr_ie_len > mgmt_ie_buf_len) {
4245 brcmf_err("extra IE size too big\n");
4249 /* parse and save new vndr_ie in curr_ie_buff before comparing it */
4250 if (vndr_ie_buf && vndr_ie_len && curr_ie_buf) {
4252 brcmf_parse_vndr_ies(vndr_ie_buf, vndr_ie_len, &new_vndr_ies);
4253 for (i = 0; i < new_vndr_ies.count; i++) {
4254 vndrie_info = &new_vndr_ies.ie_info[i];
4255 memcpy(ptr + parsed_ie_buf_len, vndrie_info->ie_ptr,
4256 vndrie_info->ie_len);
4257 parsed_ie_buf_len += vndrie_info->ie_len;
4261 if (mgmt_ie_buf && *mgmt_ie_len) {
4262 if (parsed_ie_buf_len && (parsed_ie_buf_len == *mgmt_ie_len) &&
4263 (memcmp(mgmt_ie_buf, curr_ie_buf,
4264 parsed_ie_buf_len) == 0)) {
4265 brcmf_dbg(TRACE, "Previous mgmt IE equals to current IE\n");
4269 /* parse old vndr_ie */
4270 brcmf_parse_vndr_ies(mgmt_ie_buf, *mgmt_ie_len, &old_vndr_ies);
4272 /* make a command to delete old ie */
4273 for (i = 0; i < old_vndr_ies.count; i++) {
4274 vndrie_info = &old_vndr_ies.ie_info[i];
4276 brcmf_dbg(TRACE, "DEL ID : %d, Len: %d , OUI:%02x:%02x:%02x\n",
4277 vndrie_info->vndrie.id,
4278 vndrie_info->vndrie.len,
4279 vndrie_info->vndrie.oui[0],
4280 vndrie_info->vndrie.oui[1],
4281 vndrie_info->vndrie.oui[2]);
4283 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4284 vndrie_info->ie_ptr,
4285 vndrie_info->ie_len,
4287 curr_ie_buf += del_add_ie_buf_len;
4288 total_ie_buf_len += del_add_ie_buf_len;
4293 /* Add if there is any extra IE */
4294 if (mgmt_ie_buf && parsed_ie_buf_len) {
4297 remained_buf_len = mgmt_ie_buf_len;
4299 /* make a command to add new ie */
4300 for (i = 0; i < new_vndr_ies.count; i++) {
4301 vndrie_info = &new_vndr_ies.ie_info[i];
4303 /* verify remained buf size before copy data */
4304 if (remained_buf_len < (vndrie_info->vndrie.len +
4305 VNDR_IE_VSIE_OFFSET)) {
4306 brcmf_err("no space in mgmt_ie_buf: len left %d",
4310 remained_buf_len -= (vndrie_info->ie_len +
4311 VNDR_IE_VSIE_OFFSET);
4313 brcmf_dbg(TRACE, "ADDED ID : %d, Len: %d, OUI:%02x:%02x:%02x\n",
4314 vndrie_info->vndrie.id,
4315 vndrie_info->vndrie.len,
4316 vndrie_info->vndrie.oui[0],
4317 vndrie_info->vndrie.oui[1],
4318 vndrie_info->vndrie.oui[2]);
4320 del_add_ie_buf_len = brcmf_vndr_ie(curr_ie_buf, pktflag,
4321 vndrie_info->ie_ptr,
4322 vndrie_info->ie_len,
4325 /* save the parsed IE in wl struct */
4326 memcpy(ptr + (*mgmt_ie_len), vndrie_info->ie_ptr,
4327 vndrie_info->ie_len);
4328 *mgmt_ie_len += vndrie_info->ie_len;
4330 curr_ie_buf += del_add_ie_buf_len;
4331 total_ie_buf_len += del_add_ie_buf_len;
4334 if (total_ie_buf_len) {
4335 err = brcmf_fil_bsscfg_data_set(ifp, "vndr_ie", iovar_ie_buf,
4338 brcmf_err("vndr ie set error : %d\n", err);
4342 kfree(iovar_ie_buf);
4346 s32 brcmf_vif_clear_mgmt_ies(struct brcmf_cfg80211_vif *vif)
4349 BRCMF_VNDR_IE_PRBREQ_FLAG,
4350 BRCMF_VNDR_IE_PRBRSP_FLAG,
4351 BRCMF_VNDR_IE_BEACON_FLAG
4355 for (i = 0; i < ARRAY_SIZE(pktflags); i++)
4356 brcmf_vif_set_mgmt_ie(vif, pktflags[i], NULL, 0);
4358 memset(&vif->saved_ie, 0, sizeof(vif->saved_ie));
4363 brcmf_config_ap_mgmt_ie(struct brcmf_cfg80211_vif *vif,
4364 struct cfg80211_beacon_data *beacon)
4368 /* Set Beacon IEs to FW */
4369 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_BEACON_FLAG,
4370 beacon->tail, beacon->tail_len);
4372 brcmf_err("Set Beacon IE Failed\n");
4375 brcmf_dbg(TRACE, "Applied Vndr IEs for Beacon\n");
4377 /* Set Probe Response IEs to FW */
4378 err = brcmf_vif_set_mgmt_ie(vif, BRCMF_VNDR_IE_PRBRSP_FLAG,
4379 beacon->proberesp_ies,
4380 beacon->proberesp_ies_len);
4382 brcmf_err("Set Probe Resp IE Failed\n");
4384 brcmf_dbg(TRACE, "Applied Vndr IEs for Probe Resp\n");
4390 brcmf_cfg80211_start_ap(struct wiphy *wiphy, struct net_device *ndev,
4391 struct cfg80211_ap_settings *settings)
4394 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4395 struct brcmf_if *ifp = netdev_priv(ndev);
4396 const struct brcmf_tlv *ssid_ie;
4397 const struct brcmf_tlv *country_ie;
4398 struct brcmf_ssid_le ssid_le;
4400 const struct brcmf_tlv *rsn_ie;
4401 const struct brcmf_vs_tlv *wpa_ie;
4402 struct brcmf_join_params join_params;
4403 enum nl80211_iftype dev_role;
4404 struct brcmf_fil_bss_enable_le bss_enable;
4405 u16 chanspec = chandef_to_chanspec(&cfg->d11inf, &settings->chandef);
4410 brcmf_dbg(TRACE, "ctrlchn=%d, center=%d, bw=%d, beacon_interval=%d, dtim_period=%d,\n",
4411 settings->chandef.chan->hw_value,
4412 settings->chandef.center_freq1, settings->chandef.width,
4413 settings->beacon_interval, settings->dtim_period);
4414 brcmf_dbg(TRACE, "ssid=%s(%zu), auth_type=%d, inactivity_timeout=%d\n",
4415 settings->ssid, settings->ssid_len, settings->auth_type,
4416 settings->inactivity_timeout);
4417 dev_role = ifp->vif->wdev.iftype;
4418 mbss = ifp->vif->mbss;
4420 /* store current 11d setting */
4421 if (brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_REGULATORY,
4422 &ifp->vif->is_11d)) {
4423 is_11d = supports_11d = false;
4425 country_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4426 settings->beacon.tail_len,
4428 is_11d = country_ie ? 1 : 0;
4429 supports_11d = true;
4432 memset(&ssid_le, 0, sizeof(ssid_le));
4433 if (settings->ssid == NULL || settings->ssid_len == 0) {
4434 ie_offset = DOT11_MGMT_HDR_LEN + DOT11_BCN_PRB_FIXED_LEN;
4435 ssid_ie = brcmf_parse_tlvs(
4436 (u8 *)&settings->beacon.head[ie_offset],
4437 settings->beacon.head_len - ie_offset,
4439 if (!ssid_ie || ssid_ie->len > IEEE80211_MAX_SSID_LEN)
4442 memcpy(ssid_le.SSID, ssid_ie->data, ssid_ie->len);
4443 ssid_le.SSID_len = cpu_to_le32(ssid_ie->len);
4444 brcmf_dbg(TRACE, "SSID is (%s) in Head\n", ssid_le.SSID);
4446 memcpy(ssid_le.SSID, settings->ssid, settings->ssid_len);
4447 ssid_le.SSID_len = cpu_to_le32((u32)settings->ssid_len);
4451 brcmf_set_mpc(ifp, 0);
4452 brcmf_configure_arp_nd_offload(ifp, false);
4455 /* find the RSN_IE */
4456 rsn_ie = brcmf_parse_tlvs((u8 *)settings->beacon.tail,
4457 settings->beacon.tail_len, WLAN_EID_RSN);
4459 /* find the WPA_IE */
4460 wpa_ie = brcmf_find_wpaie((u8 *)settings->beacon.tail,
4461 settings->beacon.tail_len);
4463 if ((wpa_ie != NULL || rsn_ie != NULL)) {
4464 brcmf_dbg(TRACE, "WPA(2) IE is found\n");
4465 if (wpa_ie != NULL) {
4467 err = brcmf_configure_wpaie(ifp, wpa_ie, false);
4471 struct brcmf_vs_tlv *tmp_ie;
4473 tmp_ie = (struct brcmf_vs_tlv *)rsn_ie;
4476 err = brcmf_configure_wpaie(ifp, tmp_ie, true);
4481 brcmf_dbg(TRACE, "No WPA(2) IEs found\n");
4482 brcmf_configure_opensecurity(ifp);
4485 /* Parameters shared by all radio interfaces */
4487 if ((supports_11d) && (is_11d != ifp->vif->is_11d)) {
4488 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4491 brcmf_err("Regulatory Set Error, %d\n", err);
4495 if (settings->beacon_interval) {
4496 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_BCNPRD,
4497 settings->beacon_interval);
4499 brcmf_err("Beacon Interval Set Error, %d\n",
4504 if (settings->dtim_period) {
4505 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_DTIMPRD,
4506 settings->dtim_period);
4508 brcmf_err("DTIM Interval Set Error, %d\n", err);
4513 if ((dev_role == NL80211_IFTYPE_AP) &&
4514 ((ifp->ifidx == 0) ||
4515 !brcmf_feat_is_enabled(ifp, BRCMF_FEAT_RSDB))) {
4516 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4518 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4521 brcmf_fil_iovar_int_set(ifp, "apsta", 0);
4524 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_INFRA, 1);
4526 brcmf_err("SET INFRA error %d\n", err);
4529 } else if (WARN_ON(supports_11d && (is_11d != ifp->vif->is_11d))) {
4530 /* Multiple-BSS should use same 11d configuration */
4535 /* Interface specific setup */
4536 if (dev_role == NL80211_IFTYPE_AP) {
4537 if ((brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS)) && (!mbss))
4538 brcmf_fil_iovar_int_set(ifp, "mbss", 1);
4540 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 1);
4542 brcmf_err("setting AP mode failed %d\n", err);
4546 /* Firmware 10.x requires setting channel after enabling
4547 * AP and before bringing interface up.
4549 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4551 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4556 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4558 brcmf_err("BRCMF_C_UP error (%d)\n", err);
4561 /* On DOWN the firmware removes the WEP keys, reconfigure
4562 * them if they were set.
4564 brcmf_cfg80211_reconfigure_wep(ifp);
4566 memset(&join_params, 0, sizeof(join_params));
4567 /* join parameters starts with ssid */
4568 memcpy(&join_params.ssid_le, &ssid_le, sizeof(ssid_le));
4570 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4571 &join_params, sizeof(join_params));
4573 brcmf_err("SET SSID error (%d)\n", err);
4577 if (settings->hidden_ssid) {
4578 err = brcmf_fil_iovar_int_set(ifp, "closednet", 1);
4580 brcmf_err("closednet error (%d)\n", err);
4585 brcmf_dbg(TRACE, "AP mode configuration complete\n");
4586 } else if (dev_role == NL80211_IFTYPE_P2P_GO) {
4587 err = brcmf_fil_iovar_int_set(ifp, "chanspec", chanspec);
4589 brcmf_err("Set Channel failed: chspec=%d, %d\n",
4593 err = brcmf_fil_bsscfg_data_set(ifp, "ssid", &ssid_le,
4596 brcmf_err("setting ssid failed %d\n", err);
4599 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4600 bss_enable.enable = cpu_to_le32(1);
4601 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4602 sizeof(bss_enable));
4604 brcmf_err("bss_enable config failed %d\n", err);
4608 brcmf_dbg(TRACE, "GO mode configuration complete\n");
4613 brcmf_config_ap_mgmt_ie(ifp->vif, &settings->beacon);
4614 set_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4615 brcmf_net_setcarrier(ifp, true);
4618 if ((err) && (!mbss)) {
4619 brcmf_set_mpc(ifp, 1);
4620 brcmf_configure_arp_nd_offload(ifp, true);
4625 static int brcmf_cfg80211_stop_ap(struct wiphy *wiphy, struct net_device *ndev)
4627 struct brcmf_if *ifp = netdev_priv(ndev);
4629 struct brcmf_fil_bss_enable_le bss_enable;
4630 struct brcmf_join_params join_params;
4632 brcmf_dbg(TRACE, "Enter\n");
4634 if (ifp->vif->wdev.iftype == NL80211_IFTYPE_AP) {
4635 /* Due to most likely deauths outstanding we sleep */
4636 /* first to make sure they get processed by fw. */
4639 if (ifp->vif->mbss) {
4640 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4644 /* First BSS doesn't get a full reset */
4645 if (ifp->bsscfgidx == 0)
4646 brcmf_fil_iovar_int_set(ifp, "closednet", 0);
4648 memset(&join_params, 0, sizeof(join_params));
4649 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SSID,
4650 &join_params, sizeof(join_params));
4652 brcmf_err("SET SSID error (%d)\n", err);
4653 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_DOWN, 1);
4655 brcmf_err("BRCMF_C_DOWN error %d\n", err);
4656 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_AP, 0);
4658 brcmf_err("setting AP mode failed %d\n", err);
4659 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS))
4660 brcmf_fil_iovar_int_set(ifp, "mbss", 0);
4661 brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_REGULATORY,
4663 /* Bring device back up so it can be used again */
4664 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 1);
4666 brcmf_err("BRCMF_C_UP error %d\n", err);
4668 brcmf_vif_clear_mgmt_ies(ifp->vif);
4670 bss_enable.bsscfgidx = cpu_to_le32(ifp->bsscfgidx);
4671 bss_enable.enable = cpu_to_le32(0);
4672 err = brcmf_fil_iovar_data_set(ifp, "bss", &bss_enable,
4673 sizeof(bss_enable));
4675 brcmf_err("bss_enable config failed %d\n", err);
4677 brcmf_set_mpc(ifp, 1);
4678 brcmf_configure_arp_nd_offload(ifp, true);
4679 clear_bit(BRCMF_VIF_STATUS_AP_CREATED, &ifp->vif->sme_state);
4680 brcmf_net_setcarrier(ifp, false);
4686 brcmf_cfg80211_change_beacon(struct wiphy *wiphy, struct net_device *ndev,
4687 struct cfg80211_beacon_data *info)
4689 struct brcmf_if *ifp = netdev_priv(ndev);
4692 brcmf_dbg(TRACE, "Enter\n");
4694 err = brcmf_config_ap_mgmt_ie(ifp->vif, info);
4700 brcmf_cfg80211_del_station(struct wiphy *wiphy, struct net_device *ndev,
4701 struct station_del_parameters *params)
4703 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4704 struct brcmf_scb_val_le scbval;
4705 struct brcmf_if *ifp = netdev_priv(ndev);
4711 brcmf_dbg(TRACE, "Enter %pM\n", params->mac);
4713 if (ifp->vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif)
4714 ifp = cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif->ifp;
4715 if (!check_vif_up(ifp->vif))
4718 memcpy(&scbval.ea, params->mac, ETH_ALEN);
4719 scbval.val = cpu_to_le32(params->reason_code);
4720 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SCB_DEAUTHENTICATE_FOR_REASON,
4721 &scbval, sizeof(scbval));
4723 brcmf_err("SCB_DEAUTHENTICATE_FOR_REASON failed %d\n", err);
4725 brcmf_dbg(TRACE, "Exit\n");
4730 brcmf_cfg80211_change_station(struct wiphy *wiphy, struct net_device *ndev,
4731 const u8 *mac, struct station_parameters *params)
4733 struct brcmf_if *ifp = netdev_priv(ndev);
4736 brcmf_dbg(TRACE, "Enter, MAC %pM, mask 0x%04x set 0x%04x\n", mac,
4737 params->sta_flags_mask, params->sta_flags_set);
4739 /* Ignore all 00 MAC */
4740 if (is_zero_ether_addr(mac))
4743 if (!(params->sta_flags_mask & BIT(NL80211_STA_FLAG_AUTHORIZED)))
4746 if (params->sta_flags_set & BIT(NL80211_STA_FLAG_AUTHORIZED))
4747 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_AUTHORIZE,
4748 (void *)mac, ETH_ALEN);
4750 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_SCB_DEAUTHORIZE,
4751 (void *)mac, ETH_ALEN);
4753 brcmf_err("Setting SCB (de-)authorize failed, %d\n", err);
4759 brcmf_cfg80211_mgmt_frame_register(struct wiphy *wiphy,
4760 struct wireless_dev *wdev,
4761 u16 frame_type, bool reg)
4763 struct brcmf_cfg80211_vif *vif;
4766 brcmf_dbg(TRACE, "Enter, frame_type %04x, reg=%d\n", frame_type, reg);
4768 mgmt_type = (frame_type & IEEE80211_FCTL_STYPE) >> 4;
4769 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4771 vif->mgmt_rx_reg |= BIT(mgmt_type);
4773 vif->mgmt_rx_reg &= ~BIT(mgmt_type);
4778 brcmf_cfg80211_mgmt_tx(struct wiphy *wiphy, struct wireless_dev *wdev,
4779 struct cfg80211_mgmt_tx_params *params, u64 *cookie)
4781 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4782 struct ieee80211_channel *chan = params->chan;
4783 const u8 *buf = params->buf;
4784 size_t len = params->len;
4785 const struct ieee80211_mgmt *mgmt;
4786 struct brcmf_cfg80211_vif *vif;
4790 struct brcmf_fil_action_frame_le *action_frame;
4791 struct brcmf_fil_af_params_le *af_params;
4796 brcmf_dbg(TRACE, "Enter\n");
4800 mgmt = (const struct ieee80211_mgmt *)buf;
4802 if (!ieee80211_is_mgmt(mgmt->frame_control)) {
4803 brcmf_err("Driver only allows MGMT packet type\n");
4807 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4809 if (ieee80211_is_probe_resp(mgmt->frame_control)) {
4810 /* Right now the only reason to get a probe response */
4811 /* is for p2p listen response or for p2p GO from */
4812 /* wpa_supplicant. Unfortunately the probe is send */
4813 /* on primary ndev, while dongle wants it on the p2p */
4814 /* vif. Since this is only reason for a probe */
4815 /* response to be sent, the vif is taken from cfg. */
4816 /* If ever desired to send proberesp for non p2p */
4817 /* response then data should be checked for */
4818 /* "DIRECT-". Note in future supplicant will take */
4819 /* dedicated p2p wdev to do this and then this 'hack'*/
4820 /* is not needed anymore. */
4821 ie_offset = DOT11_MGMT_HDR_LEN +
4822 DOT11_BCN_PRB_FIXED_LEN;
4823 ie_len = len - ie_offset;
4824 if (vif == cfg->p2p.bss_idx[P2PAPI_BSSCFG_PRIMARY].vif)
4825 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4826 err = brcmf_vif_set_mgmt_ie(vif,
4827 BRCMF_VNDR_IE_PRBRSP_FLAG,
4830 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, true,
4832 } else if (ieee80211_is_action(mgmt->frame_control)) {
4833 if (len > BRCMF_FIL_ACTION_FRAME_SIZE + DOT11_MGMT_HDR_LEN) {
4834 brcmf_err("invalid action frame length\n");
4838 af_params = kzalloc(sizeof(*af_params), GFP_KERNEL);
4839 if (af_params == NULL) {
4840 brcmf_err("unable to allocate frame\n");
4844 action_frame = &af_params->action_frame;
4845 /* Add the packet Id */
4846 action_frame->packet_id = cpu_to_le32(*cookie);
4848 memcpy(&action_frame->da[0], &mgmt->da[0], ETH_ALEN);
4849 memcpy(&af_params->bssid[0], &mgmt->bssid[0], ETH_ALEN);
4850 /* Add the length exepted for 802.11 header */
4851 action_frame->len = cpu_to_le16(len - DOT11_MGMT_HDR_LEN);
4852 /* Add the channel. Use the one specified as parameter if any or
4853 * the current one (got from the firmware) otherwise
4856 freq = chan->center_freq;
4858 brcmf_fil_cmd_int_get(vif->ifp, BRCMF_C_GET_CHANNEL,
4860 chan_nr = ieee80211_frequency_to_channel(freq);
4861 af_params->channel = cpu_to_le32(chan_nr);
4863 memcpy(action_frame->data, &buf[DOT11_MGMT_HDR_LEN],
4864 le16_to_cpu(action_frame->len));
4866 brcmf_dbg(TRACE, "Action frame, cookie=%lld, len=%d, freq=%d\n",
4867 *cookie, le16_to_cpu(action_frame->len), freq);
4869 ack = brcmf_p2p_send_action_frame(cfg, cfg_to_ndev(cfg),
4872 cfg80211_mgmt_tx_status(wdev, *cookie, buf, len, ack,
4876 brcmf_dbg(TRACE, "Unhandled, fc=%04x!!\n", mgmt->frame_control);
4877 brcmf_dbg_hex_dump(true, buf, len, "payload, len=%zu\n", len);
4886 brcmf_cfg80211_cancel_remain_on_channel(struct wiphy *wiphy,
4887 struct wireless_dev *wdev,
4890 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4891 struct brcmf_cfg80211_vif *vif;
4894 brcmf_dbg(TRACE, "Enter p2p listen cancel\n");
4896 vif = cfg->p2p.bss_idx[P2PAPI_BSSCFG_DEVICE].vif;
4898 brcmf_err("No p2p device available for probe response\n");
4902 brcmf_p2p_cancel_remain_on_channel(vif->ifp);
4907 static int brcmf_cfg80211_get_channel(struct wiphy *wiphy,
4908 struct wireless_dev *wdev,
4909 struct cfg80211_chan_def *chandef)
4911 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4912 struct net_device *ndev = wdev->netdev;
4913 struct brcmf_if *ifp;
4914 struct brcmu_chan ch;
4915 enum nl80211_band band = 0;
4916 enum nl80211_chan_width width = 0;
4922 ifp = netdev_priv(ndev);
4924 err = brcmf_fil_iovar_int_get(ifp, "chanspec", &chanspec);
4926 brcmf_err("chanspec failed (%d)\n", err);
4930 ch.chspec = chanspec;
4931 cfg->d11inf.decchspec(&ch);
4934 case BRCMU_CHAN_BAND_2G:
4935 band = NL80211_BAND_2GHZ;
4937 case BRCMU_CHAN_BAND_5G:
4938 band = NL80211_BAND_5GHZ;
4943 case BRCMU_CHAN_BW_80:
4944 width = NL80211_CHAN_WIDTH_80;
4946 case BRCMU_CHAN_BW_40:
4947 width = NL80211_CHAN_WIDTH_40;
4949 case BRCMU_CHAN_BW_20:
4950 width = NL80211_CHAN_WIDTH_20;
4952 case BRCMU_CHAN_BW_80P80:
4953 width = NL80211_CHAN_WIDTH_80P80;
4955 case BRCMU_CHAN_BW_160:
4956 width = NL80211_CHAN_WIDTH_160;
4960 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band);
4961 chandef->chan = ieee80211_get_channel(wiphy, freq);
4962 chandef->width = width;
4963 chandef->center_freq1 = ieee80211_channel_to_frequency(ch.chnum, band);
4964 chandef->center_freq2 = 0;
4969 static int brcmf_cfg80211_crit_proto_start(struct wiphy *wiphy,
4970 struct wireless_dev *wdev,
4971 enum nl80211_crit_proto_id proto,
4974 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4975 struct brcmf_cfg80211_vif *vif;
4977 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4979 /* only DHCP support for now */
4980 if (proto != NL80211_CRIT_PROTO_DHCP)
4983 /* suppress and abort scanning */
4984 set_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
4985 brcmf_abort_scanning(cfg);
4987 return brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_DISABLED, duration);
4990 static void brcmf_cfg80211_crit_proto_stop(struct wiphy *wiphy,
4991 struct wireless_dev *wdev)
4993 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
4994 struct brcmf_cfg80211_vif *vif;
4996 vif = container_of(wdev, struct brcmf_cfg80211_vif, wdev);
4998 brcmf_btcoex_set_mode(vif, BRCMF_BTCOEX_ENABLED, 0);
4999 clear_bit(BRCMF_SCAN_STATUS_SUPPRESS, &cfg->scan_status);
5003 brcmf_notify_tdls_peer_event(struct brcmf_if *ifp,
5004 const struct brcmf_event_msg *e, void *data)
5006 switch (e->reason) {
5007 case BRCMF_E_REASON_TDLS_PEER_DISCOVERED:
5008 brcmf_dbg(TRACE, "TDLS Peer Discovered\n");
5010 case BRCMF_E_REASON_TDLS_PEER_CONNECTED:
5011 brcmf_dbg(TRACE, "TDLS Peer Connected\n");
5012 brcmf_proto_add_tdls_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5014 case BRCMF_E_REASON_TDLS_PEER_DISCONNECTED:
5015 brcmf_dbg(TRACE, "TDLS Peer Disconnected\n");
5016 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5023 static int brcmf_convert_nl80211_tdls_oper(enum nl80211_tdls_operation oper)
5028 case NL80211_TDLS_DISCOVERY_REQ:
5029 ret = BRCMF_TDLS_MANUAL_EP_DISCOVERY;
5031 case NL80211_TDLS_SETUP:
5032 ret = BRCMF_TDLS_MANUAL_EP_CREATE;
5034 case NL80211_TDLS_TEARDOWN:
5035 ret = BRCMF_TDLS_MANUAL_EP_DELETE;
5038 brcmf_err("unsupported operation: %d\n", oper);
5044 static int brcmf_cfg80211_tdls_oper(struct wiphy *wiphy,
5045 struct net_device *ndev, const u8 *peer,
5046 enum nl80211_tdls_operation oper)
5048 struct brcmf_if *ifp;
5049 struct brcmf_tdls_iovar_le info;
5052 ret = brcmf_convert_nl80211_tdls_oper(oper);
5056 ifp = netdev_priv(ndev);
5057 memset(&info, 0, sizeof(info));
5058 info.mode = (u8)ret;
5060 memcpy(info.ea, peer, ETH_ALEN);
5062 ret = brcmf_fil_iovar_data_set(ifp, "tdls_endpoint",
5063 &info, sizeof(info));
5065 brcmf_err("tdls_endpoint iovar failed: ret=%d\n", ret);
5071 brcmf_cfg80211_update_conn_params(struct wiphy *wiphy,
5072 struct net_device *ndev,
5073 struct cfg80211_connect_params *sme,
5076 struct brcmf_if *ifp;
5079 if (!(changed & UPDATE_ASSOC_IES))
5082 ifp = netdev_priv(ndev);
5083 err = brcmf_vif_set_mgmt_ie(ifp->vif, BRCMF_VNDR_IE_ASSOCREQ_FLAG,
5084 sme->ie, sme->ie_len);
5086 brcmf_err("Set Assoc REQ IE Failed\n");
5088 brcmf_dbg(TRACE, "Applied Vndr IEs for Assoc request\n");
5095 brcmf_cfg80211_set_rekey_data(struct wiphy *wiphy, struct net_device *ndev,
5096 struct cfg80211_gtk_rekey_data *gtk)
5098 struct brcmf_if *ifp = netdev_priv(ndev);
5099 struct brcmf_gtk_keyinfo_le gtk_le;
5102 brcmf_dbg(TRACE, "Enter, bssidx=%d\n", ifp->bsscfgidx);
5104 memcpy(gtk_le.kck, gtk->kck, sizeof(gtk_le.kck));
5105 memcpy(gtk_le.kek, gtk->kek, sizeof(gtk_le.kek));
5106 memcpy(gtk_le.replay_counter, gtk->replay_ctr,
5107 sizeof(gtk_le.replay_counter));
5109 ret = brcmf_fil_iovar_data_set(ifp, "gtk_key_info", >k_le,
5112 brcmf_err("gtk_key_info iovar failed: ret=%d\n", ret);
5118 static int brcmf_cfg80211_set_pmk(struct wiphy *wiphy, struct net_device *dev,
5119 const struct cfg80211_pmk_conf *conf)
5121 struct brcmf_if *ifp;
5123 brcmf_dbg(TRACE, "enter\n");
5125 /* expect using firmware supplicant for 1X */
5126 ifp = netdev_priv(dev);
5127 if (WARN_ON(ifp->vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_1X))
5130 if (conf->pmk_len > BRCMF_WSEC_MAX_PSK_LEN)
5133 return brcmf_set_pmk(ifp, conf->pmk, conf->pmk_len);
5136 static int brcmf_cfg80211_del_pmk(struct wiphy *wiphy, struct net_device *dev,
5139 struct brcmf_if *ifp;
5141 brcmf_dbg(TRACE, "enter\n");
5142 ifp = netdev_priv(dev);
5143 if (WARN_ON(ifp->vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_1X))
5146 return brcmf_set_pmk(ifp, NULL, 0);
5149 static struct cfg80211_ops brcmf_cfg80211_ops = {
5150 .add_virtual_intf = brcmf_cfg80211_add_iface,
5151 .del_virtual_intf = brcmf_cfg80211_del_iface,
5152 .change_virtual_intf = brcmf_cfg80211_change_iface,
5153 .scan = brcmf_cfg80211_scan,
5154 .set_wiphy_params = brcmf_cfg80211_set_wiphy_params,
5155 .join_ibss = brcmf_cfg80211_join_ibss,
5156 .leave_ibss = brcmf_cfg80211_leave_ibss,
5157 .get_station = brcmf_cfg80211_get_station,
5158 .dump_station = brcmf_cfg80211_dump_station,
5159 .set_tx_power = brcmf_cfg80211_set_tx_power,
5160 .get_tx_power = brcmf_cfg80211_get_tx_power,
5161 .add_key = brcmf_cfg80211_add_key,
5162 .del_key = brcmf_cfg80211_del_key,
5163 .get_key = brcmf_cfg80211_get_key,
5164 .set_default_key = brcmf_cfg80211_config_default_key,
5165 .set_default_mgmt_key = brcmf_cfg80211_config_default_mgmt_key,
5166 .set_power_mgmt = brcmf_cfg80211_set_power_mgmt,
5167 .connect = brcmf_cfg80211_connect,
5168 .disconnect = brcmf_cfg80211_disconnect,
5169 .suspend = brcmf_cfg80211_suspend,
5170 .resume = brcmf_cfg80211_resume,
5171 .set_pmksa = brcmf_cfg80211_set_pmksa,
5172 .del_pmksa = brcmf_cfg80211_del_pmksa,
5173 .flush_pmksa = brcmf_cfg80211_flush_pmksa,
5174 .start_ap = brcmf_cfg80211_start_ap,
5175 .stop_ap = brcmf_cfg80211_stop_ap,
5176 .change_beacon = brcmf_cfg80211_change_beacon,
5177 .del_station = brcmf_cfg80211_del_station,
5178 .change_station = brcmf_cfg80211_change_station,
5179 .sched_scan_start = brcmf_cfg80211_sched_scan_start,
5180 .sched_scan_stop = brcmf_cfg80211_sched_scan_stop,
5181 .mgmt_frame_register = brcmf_cfg80211_mgmt_frame_register,
5182 .mgmt_tx = brcmf_cfg80211_mgmt_tx,
5183 .remain_on_channel = brcmf_p2p_remain_on_channel,
5184 .cancel_remain_on_channel = brcmf_cfg80211_cancel_remain_on_channel,
5185 .get_channel = brcmf_cfg80211_get_channel,
5186 .start_p2p_device = brcmf_p2p_start_device,
5187 .stop_p2p_device = brcmf_p2p_stop_device,
5188 .crit_proto_start = brcmf_cfg80211_crit_proto_start,
5189 .crit_proto_stop = brcmf_cfg80211_crit_proto_stop,
5190 .tdls_oper = brcmf_cfg80211_tdls_oper,
5191 .update_connect_params = brcmf_cfg80211_update_conn_params,
5192 .set_pmk = brcmf_cfg80211_set_pmk,
5193 .del_pmk = brcmf_cfg80211_del_pmk,
5196 struct cfg80211_ops *brcmf_cfg80211_get_ops(struct brcmf_mp_device *settings)
5198 struct cfg80211_ops *ops;
5200 ops = kmemdup(&brcmf_cfg80211_ops, sizeof(brcmf_cfg80211_ops),
5203 if (ops && settings->roamoff)
5204 ops->update_connect_params = NULL;
5209 struct brcmf_cfg80211_vif *brcmf_alloc_vif(struct brcmf_cfg80211_info *cfg,
5210 enum nl80211_iftype type)
5212 struct brcmf_cfg80211_vif *vif_walk;
5213 struct brcmf_cfg80211_vif *vif;
5216 brcmf_dbg(TRACE, "allocating virtual interface (size=%zu)\n",
5218 vif = kzalloc(sizeof(*vif), GFP_KERNEL);
5220 return ERR_PTR(-ENOMEM);
5222 vif->wdev.wiphy = cfg->wiphy;
5223 vif->wdev.iftype = type;
5225 brcmf_init_prof(&vif->profile);
5227 if (type == NL80211_IFTYPE_AP) {
5229 list_for_each_entry(vif_walk, &cfg->vif_list, list) {
5230 if (vif_walk->wdev.iftype == NL80211_IFTYPE_AP) {
5238 list_add_tail(&vif->list, &cfg->vif_list);
5242 void brcmf_free_vif(struct brcmf_cfg80211_vif *vif)
5244 list_del(&vif->list);
5248 void brcmf_cfg80211_free_netdev(struct net_device *ndev)
5250 struct brcmf_cfg80211_vif *vif;
5251 struct brcmf_if *ifp;
5253 ifp = netdev_priv(ndev);
5257 brcmf_free_vif(vif);
5260 static bool brcmf_is_linkup(struct brcmf_cfg80211_vif *vif,
5261 const struct brcmf_event_msg *e)
5263 u32 event = e->event_code;
5264 u32 status = e->status;
5266 if (vif->profile.use_fwsup == BRCMF_PROFILE_FWSUP_PSK &&
5267 event == BRCMF_E_PSK_SUP &&
5268 status == BRCMF_E_STATUS_FWSUP_COMPLETED)
5269 set_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state);
5270 if (event == BRCMF_E_SET_SSID && status == BRCMF_E_STATUS_SUCCESS) {
5271 brcmf_dbg(CONN, "Processing set ssid\n");
5272 memcpy(vif->profile.bssid, e->addr, ETH_ALEN);
5273 if (vif->profile.use_fwsup != BRCMF_PROFILE_FWSUP_PSK)
5276 set_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state);
5279 if (test_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state) &&
5280 test_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state)) {
5281 clear_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state);
5282 clear_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state);
5288 static bool brcmf_is_linkdown(struct brcmf_cfg80211_vif *vif,
5289 const struct brcmf_event_msg *e)
5291 u32 event = e->event_code;
5292 u16 flags = e->flags;
5294 if ((event == BRCMF_E_DEAUTH) || (event == BRCMF_E_DEAUTH_IND) ||
5295 (event == BRCMF_E_DISASSOC_IND) ||
5296 ((event == BRCMF_E_LINK) && (!(flags & BRCMF_EVENT_MSG_LINK)))) {
5297 brcmf_dbg(CONN, "Processing link down\n");
5298 clear_bit(BRCMF_VIF_STATUS_EAP_SUCCESS, &vif->sme_state);
5299 clear_bit(BRCMF_VIF_STATUS_ASSOC_SUCCESS, &vif->sme_state);
5305 static bool brcmf_is_nonetwork(struct brcmf_cfg80211_info *cfg,
5306 const struct brcmf_event_msg *e)
5308 u32 event = e->event_code;
5309 u32 status = e->status;
5311 if (event == BRCMF_E_LINK && status == BRCMF_E_STATUS_NO_NETWORKS) {
5312 brcmf_dbg(CONN, "Processing Link %s & no network found\n",
5313 e->flags & BRCMF_EVENT_MSG_LINK ? "up" : "down");
5317 if (event == BRCMF_E_SET_SSID && status != BRCMF_E_STATUS_SUCCESS) {
5318 brcmf_dbg(CONN, "Processing connecting & no network found\n");
5322 if (event == BRCMF_E_PSK_SUP &&
5323 status != BRCMF_E_STATUS_FWSUP_COMPLETED) {
5324 brcmf_dbg(CONN, "Processing failed supplicant state: %u\n",
5332 static void brcmf_clear_assoc_ies(struct brcmf_cfg80211_info *cfg)
5334 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5336 kfree(conn_info->req_ie);
5337 conn_info->req_ie = NULL;
5338 conn_info->req_ie_len = 0;
5339 kfree(conn_info->resp_ie);
5340 conn_info->resp_ie = NULL;
5341 conn_info->resp_ie_len = 0;
5344 static s32 brcmf_get_assoc_ies(struct brcmf_cfg80211_info *cfg,
5345 struct brcmf_if *ifp)
5347 struct brcmf_cfg80211_assoc_ielen_le *assoc_info;
5348 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5353 brcmf_clear_assoc_ies(cfg);
5355 err = brcmf_fil_iovar_data_get(ifp, "assoc_info",
5356 cfg->extra_buf, WL_ASSOC_INFO_MAX);
5358 brcmf_err("could not get assoc info (%d)\n", err);
5362 (struct brcmf_cfg80211_assoc_ielen_le *)cfg->extra_buf;
5363 req_len = le32_to_cpu(assoc_info->req_len);
5364 resp_len = le32_to_cpu(assoc_info->resp_len);
5366 err = brcmf_fil_iovar_data_get(ifp, "assoc_req_ies",
5370 brcmf_err("could not get assoc req (%d)\n", err);
5373 conn_info->req_ie_len = req_len;
5375 kmemdup(cfg->extra_buf, conn_info->req_ie_len,
5377 if (!conn_info->req_ie)
5378 conn_info->req_ie_len = 0;
5380 conn_info->req_ie_len = 0;
5381 conn_info->req_ie = NULL;
5384 err = brcmf_fil_iovar_data_get(ifp, "assoc_resp_ies",
5388 brcmf_err("could not get assoc resp (%d)\n", err);
5391 conn_info->resp_ie_len = resp_len;
5392 conn_info->resp_ie =
5393 kmemdup(cfg->extra_buf, conn_info->resp_ie_len,
5395 if (!conn_info->resp_ie)
5396 conn_info->resp_ie_len = 0;
5398 conn_info->resp_ie_len = 0;
5399 conn_info->resp_ie = NULL;
5401 brcmf_dbg(CONN, "req len (%d) resp len (%d)\n",
5402 conn_info->req_ie_len, conn_info->resp_ie_len);
5408 brcmf_bss_roaming_done(struct brcmf_cfg80211_info *cfg,
5409 struct net_device *ndev,
5410 const struct brcmf_event_msg *e)
5412 struct brcmf_if *ifp = netdev_priv(ndev);
5413 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5414 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5415 struct wiphy *wiphy = cfg_to_wiphy(cfg);
5416 struct ieee80211_channel *notify_channel = NULL;
5417 struct ieee80211_supported_band *band;
5418 struct brcmf_bss_info_le *bi;
5419 struct brcmu_chan ch;
5420 struct cfg80211_roam_info roam_info = {};
5425 brcmf_dbg(TRACE, "Enter\n");
5427 brcmf_get_assoc_ies(cfg, ifp);
5428 memcpy(profile->bssid, e->addr, ETH_ALEN);
5429 brcmf_update_bss_info(cfg, ifp);
5431 buf = kzalloc(WL_BSS_INFO_MAX, GFP_KERNEL);
5437 /* data sent to dongle has to be little endian */
5438 *(__le32 *)buf = cpu_to_le32(WL_BSS_INFO_MAX);
5439 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BSS_INFO,
5440 buf, WL_BSS_INFO_MAX);
5445 bi = (struct brcmf_bss_info_le *)(buf + 4);
5446 ch.chspec = le16_to_cpu(bi->chanspec);
5447 cfg->d11inf.decchspec(&ch);
5449 if (ch.band == BRCMU_CHAN_BAND_2G)
5450 band = wiphy->bands[NL80211_BAND_2GHZ];
5452 band = wiphy->bands[NL80211_BAND_5GHZ];
5454 freq = ieee80211_channel_to_frequency(ch.control_ch_num, band->band);
5455 notify_channel = ieee80211_get_channel(wiphy, freq);
5460 roam_info.channel = notify_channel;
5461 roam_info.bssid = profile->bssid;
5462 roam_info.req_ie = conn_info->req_ie;
5463 roam_info.req_ie_len = conn_info->req_ie_len;
5464 roam_info.resp_ie = conn_info->resp_ie;
5465 roam_info.resp_ie_len = conn_info->resp_ie_len;
5467 cfg80211_roamed(ndev, &roam_info, GFP_KERNEL);
5468 brcmf_dbg(CONN, "Report roaming result\n");
5470 set_bit(BRCMF_VIF_STATUS_CONNECTED, &ifp->vif->sme_state);
5471 brcmf_dbg(TRACE, "Exit\n");
5476 brcmf_bss_connect_done(struct brcmf_cfg80211_info *cfg,
5477 struct net_device *ndev, const struct brcmf_event_msg *e,
5480 struct brcmf_if *ifp = netdev_priv(ndev);
5481 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5482 struct brcmf_cfg80211_connect_info *conn_info = cfg_to_conn(cfg);
5483 struct cfg80211_connect_resp_params conn_params;
5485 brcmf_dbg(TRACE, "Enter\n");
5487 if (test_and_clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5488 &ifp->vif->sme_state)) {
5489 memset(&conn_params, 0, sizeof(conn_params));
5491 brcmf_get_assoc_ies(cfg, ifp);
5492 brcmf_update_bss_info(cfg, ifp);
5493 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5494 &ifp->vif->sme_state);
5495 conn_params.status = WLAN_STATUS_SUCCESS;
5497 conn_params.status = WLAN_STATUS_AUTH_TIMEOUT;
5499 conn_params.bssid = profile->bssid;
5500 conn_params.req_ie = conn_info->req_ie;
5501 conn_params.req_ie_len = conn_info->req_ie_len;
5502 conn_params.resp_ie = conn_info->resp_ie;
5503 conn_params.resp_ie_len = conn_info->resp_ie_len;
5504 cfg80211_connect_done(ndev, &conn_params, GFP_KERNEL);
5505 brcmf_dbg(CONN, "Report connect result - connection %s\n",
5506 completed ? "succeeded" : "failed");
5508 brcmf_dbg(TRACE, "Exit\n");
5513 brcmf_notify_connect_status_ap(struct brcmf_cfg80211_info *cfg,
5514 struct net_device *ndev,
5515 const struct brcmf_event_msg *e, void *data)
5517 static int generation;
5518 u32 event = e->event_code;
5519 u32 reason = e->reason;
5520 struct station_info *sinfo;
5522 brcmf_dbg(CONN, "event %s (%u), reason %d\n",
5523 brcmf_fweh_event_name(event), event, reason);
5524 if (event == BRCMF_E_LINK && reason == BRCMF_E_REASON_LINK_BSSCFG_DIS &&
5525 ndev != cfg_to_ndev(cfg)) {
5526 brcmf_dbg(CONN, "AP mode link down\n");
5527 complete(&cfg->vif_disabled);
5531 if (((event == BRCMF_E_ASSOC_IND) || (event == BRCMF_E_REASSOC_IND)) &&
5532 (reason == BRCMF_E_STATUS_SUCCESS)) {
5534 brcmf_err("No IEs present in ASSOC/REASSOC_IND");
5538 sinfo = kzalloc(sizeof(*sinfo), GFP_KERNEL);
5542 sinfo->assoc_req_ies = data;
5543 sinfo->assoc_req_ies_len = e->datalen;
5545 sinfo->generation = generation;
5546 cfg80211_new_sta(ndev, e->addr, sinfo, GFP_KERNEL);
5549 } else if ((event == BRCMF_E_DISASSOC_IND) ||
5550 (event == BRCMF_E_DEAUTH_IND) ||
5551 (event == BRCMF_E_DEAUTH)) {
5552 cfg80211_del_sta(ndev, e->addr, GFP_KERNEL);
5558 brcmf_notify_connect_status(struct brcmf_if *ifp,
5559 const struct brcmf_event_msg *e, void *data)
5561 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5562 struct net_device *ndev = ifp->ndev;
5563 struct brcmf_cfg80211_profile *profile = &ifp->vif->profile;
5564 struct ieee80211_channel *chan;
5567 if ((e->event_code == BRCMF_E_DEAUTH) ||
5568 (e->event_code == BRCMF_E_DEAUTH_IND) ||
5569 (e->event_code == BRCMF_E_DISASSOC_IND) ||
5570 ((e->event_code == BRCMF_E_LINK) && (!e->flags))) {
5571 brcmf_proto_delete_peer(ifp->drvr, ifp->ifidx, (u8 *)e->addr);
5574 if (brcmf_is_apmode(ifp->vif)) {
5575 err = brcmf_notify_connect_status_ap(cfg, ndev, e, data);
5576 } else if (brcmf_is_linkup(ifp->vif, e)) {
5577 brcmf_dbg(CONN, "Linkup\n");
5578 if (brcmf_is_ibssmode(ifp->vif)) {
5579 brcmf_inform_ibss(cfg, ndev, e->addr);
5580 chan = ieee80211_get_channel(cfg->wiphy, cfg->channel);
5581 memcpy(profile->bssid, e->addr, ETH_ALEN);
5582 cfg80211_ibss_joined(ndev, e->addr, chan, GFP_KERNEL);
5583 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5584 &ifp->vif->sme_state);
5585 set_bit(BRCMF_VIF_STATUS_CONNECTED,
5586 &ifp->vif->sme_state);
5588 brcmf_bss_connect_done(cfg, ndev, e, true);
5589 brcmf_net_setcarrier(ifp, true);
5590 } else if (brcmf_is_linkdown(ifp->vif, e)) {
5591 brcmf_dbg(CONN, "Linkdown\n");
5592 if (!brcmf_is_ibssmode(ifp->vif)) {
5593 brcmf_bss_connect_done(cfg, ndev, e, false);
5594 brcmf_link_down(ifp->vif,
5595 brcmf_map_fw_linkdown_reason(e));
5596 brcmf_init_prof(ndev_to_prof(ndev));
5597 if (ndev != cfg_to_ndev(cfg))
5598 complete(&cfg->vif_disabled);
5599 brcmf_net_setcarrier(ifp, false);
5601 } else if (brcmf_is_nonetwork(cfg, e)) {
5602 if (brcmf_is_ibssmode(ifp->vif))
5603 clear_bit(BRCMF_VIF_STATUS_CONNECTING,
5604 &ifp->vif->sme_state);
5606 brcmf_bss_connect_done(cfg, ndev, e, false);
5613 brcmf_notify_roaming_status(struct brcmf_if *ifp,
5614 const struct brcmf_event_msg *e, void *data)
5616 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5617 u32 event = e->event_code;
5618 u32 status = e->status;
5620 if (event == BRCMF_E_ROAM && status == BRCMF_E_STATUS_SUCCESS) {
5621 if (test_bit(BRCMF_VIF_STATUS_CONNECTED,
5622 &ifp->vif->sme_state)) {
5623 brcmf_bss_roaming_done(cfg, ifp->ndev, e);
5625 brcmf_bss_connect_done(cfg, ifp->ndev, e, true);
5626 brcmf_net_setcarrier(ifp, true);
5634 brcmf_notify_mic_status(struct brcmf_if *ifp,
5635 const struct brcmf_event_msg *e, void *data)
5637 u16 flags = e->flags;
5638 enum nl80211_key_type key_type;
5640 if (flags & BRCMF_EVENT_MSG_GROUP)
5641 key_type = NL80211_KEYTYPE_GROUP;
5643 key_type = NL80211_KEYTYPE_PAIRWISE;
5645 cfg80211_michael_mic_failure(ifp->ndev, (u8 *)&e->addr, key_type, -1,
5651 static s32 brcmf_notify_vif_event(struct brcmf_if *ifp,
5652 const struct brcmf_event_msg *e, void *data)
5654 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
5655 struct brcmf_if_event *ifevent = (struct brcmf_if_event *)data;
5656 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
5657 struct brcmf_cfg80211_vif *vif;
5659 brcmf_dbg(TRACE, "Enter: action %u flags %u ifidx %u bsscfgidx %u\n",
5660 ifevent->action, ifevent->flags, ifevent->ifidx,
5661 ifevent->bsscfgidx);
5663 spin_lock(&event->vif_event_lock);
5664 event->action = ifevent->action;
5667 switch (ifevent->action) {
5668 case BRCMF_E_IF_ADD:
5669 /* waiting process may have timed out */
5670 if (!cfg->vif_event.vif) {
5671 spin_unlock(&event->vif_event_lock);
5678 vif->wdev.netdev = ifp->ndev;
5679 ifp->ndev->ieee80211_ptr = &vif->wdev;
5680 SET_NETDEV_DEV(ifp->ndev, wiphy_dev(cfg->wiphy));
5682 spin_unlock(&event->vif_event_lock);
5683 wake_up(&event->vif_wq);
5686 case BRCMF_E_IF_DEL:
5687 spin_unlock(&event->vif_event_lock);
5688 /* event may not be upon user request */
5689 if (brcmf_cfg80211_vif_event_armed(cfg))
5690 wake_up(&event->vif_wq);
5693 case BRCMF_E_IF_CHANGE:
5694 spin_unlock(&event->vif_event_lock);
5695 wake_up(&event->vif_wq);
5699 spin_unlock(&event->vif_event_lock);
5705 static void brcmf_init_conf(struct brcmf_cfg80211_conf *conf)
5707 conf->frag_threshold = (u32)-1;
5708 conf->rts_threshold = (u32)-1;
5709 conf->retry_short = (u32)-1;
5710 conf->retry_long = (u32)-1;
5713 static void brcmf_register_event_handlers(struct brcmf_cfg80211_info *cfg)
5715 brcmf_fweh_register(cfg->pub, BRCMF_E_LINK,
5716 brcmf_notify_connect_status);
5717 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH_IND,
5718 brcmf_notify_connect_status);
5719 brcmf_fweh_register(cfg->pub, BRCMF_E_DEAUTH,
5720 brcmf_notify_connect_status);
5721 brcmf_fweh_register(cfg->pub, BRCMF_E_DISASSOC_IND,
5722 brcmf_notify_connect_status);
5723 brcmf_fweh_register(cfg->pub, BRCMF_E_ASSOC_IND,
5724 brcmf_notify_connect_status);
5725 brcmf_fweh_register(cfg->pub, BRCMF_E_REASSOC_IND,
5726 brcmf_notify_connect_status);
5727 brcmf_fweh_register(cfg->pub, BRCMF_E_ROAM,
5728 brcmf_notify_roaming_status);
5729 brcmf_fweh_register(cfg->pub, BRCMF_E_MIC_ERROR,
5730 brcmf_notify_mic_status);
5731 brcmf_fweh_register(cfg->pub, BRCMF_E_SET_SSID,
5732 brcmf_notify_connect_status);
5733 brcmf_fweh_register(cfg->pub, BRCMF_E_PFN_NET_FOUND,
5734 brcmf_notify_sched_scan_results);
5735 brcmf_fweh_register(cfg->pub, BRCMF_E_IF,
5736 brcmf_notify_vif_event);
5737 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_PROBEREQ_MSG,
5738 brcmf_p2p_notify_rx_mgmt_p2p_probereq);
5739 brcmf_fweh_register(cfg->pub, BRCMF_E_P2P_DISC_LISTEN_COMPLETE,
5740 brcmf_p2p_notify_listen_complete);
5741 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_RX,
5742 brcmf_p2p_notify_action_frame_rx);
5743 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_COMPLETE,
5744 brcmf_p2p_notify_action_tx_complete);
5745 brcmf_fweh_register(cfg->pub, BRCMF_E_ACTION_FRAME_OFF_CHAN_COMPLETE,
5746 brcmf_p2p_notify_action_tx_complete);
5747 brcmf_fweh_register(cfg->pub, BRCMF_E_PSK_SUP,
5748 brcmf_notify_connect_status);
5751 static void brcmf_deinit_priv_mem(struct brcmf_cfg80211_info *cfg)
5755 kfree(cfg->extra_buf);
5756 cfg->extra_buf = NULL;
5757 kfree(cfg->wowl.nd);
5758 cfg->wowl.nd = NULL;
5759 kfree(cfg->wowl.nd_info);
5760 cfg->wowl.nd_info = NULL;
5761 kfree(cfg->escan_info.escan_buf);
5762 cfg->escan_info.escan_buf = NULL;
5765 static s32 brcmf_init_priv_mem(struct brcmf_cfg80211_info *cfg)
5767 cfg->conf = kzalloc(sizeof(*cfg->conf), GFP_KERNEL);
5769 goto init_priv_mem_out;
5770 cfg->extra_buf = kzalloc(WL_EXTRA_BUF_MAX, GFP_KERNEL);
5771 if (!cfg->extra_buf)
5772 goto init_priv_mem_out;
5773 cfg->wowl.nd = kzalloc(sizeof(*cfg->wowl.nd) + sizeof(u32), GFP_KERNEL);
5775 goto init_priv_mem_out;
5776 cfg->wowl.nd_info = kzalloc(sizeof(*cfg->wowl.nd_info) +
5777 sizeof(struct cfg80211_wowlan_nd_match *),
5779 if (!cfg->wowl.nd_info)
5780 goto init_priv_mem_out;
5781 cfg->escan_info.escan_buf = kzalloc(BRCMF_ESCAN_BUF_SIZE, GFP_KERNEL);
5782 if (!cfg->escan_info.escan_buf)
5783 goto init_priv_mem_out;
5788 brcmf_deinit_priv_mem(cfg);
5793 static s32 wl_init_priv(struct brcmf_cfg80211_info *cfg)
5797 cfg->scan_request = NULL;
5798 cfg->pwr_save = true;
5799 cfg->dongle_up = false; /* dongle is not up yet */
5800 err = brcmf_init_priv_mem(cfg);
5803 brcmf_register_event_handlers(cfg);
5804 mutex_init(&cfg->usr_sync);
5805 brcmf_init_escan(cfg);
5806 brcmf_init_conf(cfg->conf);
5807 init_completion(&cfg->vif_disabled);
5811 static void wl_deinit_priv(struct brcmf_cfg80211_info *cfg)
5813 cfg->dongle_up = false; /* dongle down */
5814 brcmf_abort_scanning(cfg);
5815 brcmf_deinit_priv_mem(cfg);
5818 static void init_vif_event(struct brcmf_cfg80211_vif_event *event)
5820 init_waitqueue_head(&event->vif_wq);
5821 spin_lock_init(&event->vif_event_lock);
5824 static s32 brcmf_dongle_roam(struct brcmf_if *ifp)
5828 __le32 roamtrigger[2];
5829 __le32 roam_delta[2];
5831 /* Configure beacon timeout value based upon roaming setting */
5832 if (ifp->drvr->settings->roamoff)
5833 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_OFF;
5835 bcn_timeout = BRCMF_DEFAULT_BCN_TIMEOUT_ROAM_ON;
5836 err = brcmf_fil_iovar_int_set(ifp, "bcn_timeout", bcn_timeout);
5838 brcmf_err("bcn_timeout error (%d)\n", err);
5839 goto roam_setup_done;
5842 /* Enable/Disable built-in roaming to allow supplicant to take care of
5845 brcmf_dbg(INFO, "Internal Roaming = %s\n",
5846 ifp->drvr->settings->roamoff ? "Off" : "On");
5847 err = brcmf_fil_iovar_int_set(ifp, "roam_off",
5848 ifp->drvr->settings->roamoff);
5850 brcmf_err("roam_off error (%d)\n", err);
5851 goto roam_setup_done;
5854 roamtrigger[0] = cpu_to_le32(WL_ROAM_TRIGGER_LEVEL);
5855 roamtrigger[1] = cpu_to_le32(BRCM_BAND_ALL);
5856 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_TRIGGER,
5857 (void *)roamtrigger, sizeof(roamtrigger));
5859 brcmf_err("WLC_SET_ROAM_TRIGGER error (%d)\n", err);
5860 goto roam_setup_done;
5863 roam_delta[0] = cpu_to_le32(WL_ROAM_DELTA);
5864 roam_delta[1] = cpu_to_le32(BRCM_BAND_ALL);
5865 err = brcmf_fil_cmd_data_set(ifp, BRCMF_C_SET_ROAM_DELTA,
5866 (void *)roam_delta, sizeof(roam_delta));
5868 brcmf_err("WLC_SET_ROAM_DELTA error (%d)\n", err);
5869 goto roam_setup_done;
5877 brcmf_dongle_scantime(struct brcmf_if *ifp)
5881 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_CHANNEL_TIME,
5882 BRCMF_SCAN_CHANNEL_TIME);
5884 brcmf_err("Scan assoc time error (%d)\n", err);
5885 goto dongle_scantime_out;
5887 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_UNASSOC_TIME,
5888 BRCMF_SCAN_UNASSOC_TIME);
5890 brcmf_err("Scan unassoc time error (%d)\n", err);
5891 goto dongle_scantime_out;
5894 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_SCAN_PASSIVE_TIME,
5895 BRCMF_SCAN_PASSIVE_TIME);
5897 brcmf_err("Scan passive time error (%d)\n", err);
5898 goto dongle_scantime_out;
5901 dongle_scantime_out:
5905 static void brcmf_update_bw40_channel_flag(struct ieee80211_channel *channel,
5906 struct brcmu_chan *ch)
5910 ht40_flag = channel->flags & IEEE80211_CHAN_NO_HT40;
5911 if (ch->sb == BRCMU_CHAN_SB_U) {
5912 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5913 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5914 channel->flags |= IEEE80211_CHAN_NO_HT40PLUS;
5916 /* It should be one of
5917 * IEEE80211_CHAN_NO_HT40 or
5918 * IEEE80211_CHAN_NO_HT40PLUS
5920 channel->flags &= ~IEEE80211_CHAN_NO_HT40;
5921 if (ht40_flag == IEEE80211_CHAN_NO_HT40)
5922 channel->flags |= IEEE80211_CHAN_NO_HT40MINUS;
5926 static int brcmf_construct_chaninfo(struct brcmf_cfg80211_info *cfg,
5929 struct brcmf_if *ifp = brcmf_get_ifp(cfg->pub, 0);
5930 struct ieee80211_supported_band *band;
5931 struct ieee80211_channel *channel;
5932 struct wiphy *wiphy;
5933 struct brcmf_chanspec_list *list;
5934 struct brcmu_chan ch;
5941 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
5946 list = (struct brcmf_chanspec_list *)pbuf;
5948 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
5951 brcmf_err("get chanspecs error (%d)\n", err);
5955 wiphy = cfg_to_wiphy(cfg);
5956 band = wiphy->bands[NL80211_BAND_2GHZ];
5958 for (i = 0; i < band->n_channels; i++)
5959 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
5960 band = wiphy->bands[NL80211_BAND_5GHZ];
5962 for (i = 0; i < band->n_channels; i++)
5963 band->channels[i].flags = IEEE80211_CHAN_DISABLED;
5965 total = le32_to_cpu(list->count);
5966 for (i = 0; i < total; i++) {
5967 ch.chspec = (u16)le32_to_cpu(list->element[i]);
5968 cfg->d11inf.decchspec(&ch);
5970 if (ch.band == BRCMU_CHAN_BAND_2G) {
5971 band = wiphy->bands[NL80211_BAND_2GHZ];
5972 } else if (ch.band == BRCMU_CHAN_BAND_5G) {
5973 band = wiphy->bands[NL80211_BAND_5GHZ];
5975 brcmf_err("Invalid channel Spec. 0x%x.\n", ch.chspec);
5980 if (!(bw_cap[band->band] & WLC_BW_40MHZ_BIT) &&
5981 ch.bw == BRCMU_CHAN_BW_40)
5983 if (!(bw_cap[band->band] & WLC_BW_80MHZ_BIT) &&
5984 ch.bw == BRCMU_CHAN_BW_80)
5988 for (j = 0; j < band->n_channels; j++) {
5989 if (band->channels[j].hw_value == ch.control_ch_num) {
5990 channel = &band->channels[j];
5995 /* It seems firmware supports some channel we never
5996 * considered. Something new in IEEE standard?
5998 brcmf_err("Ignoring unexpected firmware channel %d\n",
6003 if (channel->orig_flags & IEEE80211_CHAN_DISABLED)
6006 /* assuming the chanspecs order is HT20,
6007 * HT40 upper, HT40 lower, and VHT80.
6009 if (ch.bw == BRCMU_CHAN_BW_80) {
6010 channel->flags &= ~IEEE80211_CHAN_NO_80MHZ;
6011 } else if (ch.bw == BRCMU_CHAN_BW_40) {
6012 brcmf_update_bw40_channel_flag(channel, &ch);
6014 /* enable the channel and disable other bandwidths
6015 * for now as mentioned order assure they are enabled
6016 * for subsequent chanspecs.
6018 channel->flags = IEEE80211_CHAN_NO_HT40 |
6019 IEEE80211_CHAN_NO_80MHZ |
6020 IEEE80211_CHAN_NO_160MHZ;
6021 ch.bw = BRCMU_CHAN_BW_20;
6022 cfg->d11inf.encchspec(&ch);
6023 chaninfo = ch.chspec;
6024 err = brcmf_fil_bsscfg_int_get(ifp, "per_chan_info",
6027 if (chaninfo & WL_CHAN_RADAR)
6029 (IEEE80211_CHAN_RADAR |
6030 IEEE80211_CHAN_NO_IR);
6031 if (chaninfo & WL_CHAN_PASSIVE)
6033 IEEE80211_CHAN_NO_IR;
6043 static int brcmf_enable_bw40_2g(struct brcmf_cfg80211_info *cfg)
6045 struct brcmf_if *ifp = brcmf_get_ifp(cfg->pub, 0);
6046 struct ieee80211_supported_band *band;
6047 struct brcmf_fil_bwcap_le band_bwcap;
6048 struct brcmf_chanspec_list *list;
6052 struct brcmu_chan ch;
6056 /* verify support for bw_cap command */
6058 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &val);
6061 /* only set 2G bandwidth using bw_cap command */
6062 band_bwcap.band = cpu_to_le32(WLC_BAND_2G);
6063 band_bwcap.bw_cap = cpu_to_le32(WLC_BW_CAP_40MHZ);
6064 err = brcmf_fil_iovar_data_set(ifp, "bw_cap", &band_bwcap,
6065 sizeof(band_bwcap));
6067 brcmf_dbg(INFO, "fallback to mimo_bw_cap\n");
6068 val = WLC_N_BW_40ALL;
6069 err = brcmf_fil_iovar_int_set(ifp, "mimo_bw_cap", val);
6073 /* update channel info in 2G band */
6074 pbuf = kzalloc(BRCMF_DCMD_MEDLEN, GFP_KERNEL);
6079 ch.band = BRCMU_CHAN_BAND_2G;
6080 ch.bw = BRCMU_CHAN_BW_40;
6081 ch.sb = BRCMU_CHAN_SB_NONE;
6083 cfg->d11inf.encchspec(&ch);
6085 /* pass encoded chanspec in query */
6086 *(__le16 *)pbuf = cpu_to_le16(ch.chspec);
6088 err = brcmf_fil_iovar_data_get(ifp, "chanspecs", pbuf,
6091 brcmf_err("get chanspecs error (%d)\n", err);
6096 band = cfg_to_wiphy(cfg)->bands[NL80211_BAND_2GHZ];
6097 list = (struct brcmf_chanspec_list *)pbuf;
6098 num_chan = le32_to_cpu(list->count);
6099 for (i = 0; i < num_chan; i++) {
6100 ch.chspec = (u16)le32_to_cpu(list->element[i]);
6101 cfg->d11inf.decchspec(&ch);
6102 if (WARN_ON(ch.band != BRCMU_CHAN_BAND_2G))
6104 if (WARN_ON(ch.bw != BRCMU_CHAN_BW_40))
6106 for (j = 0; j < band->n_channels; j++) {
6107 if (band->channels[j].hw_value == ch.control_ch_num)
6110 if (WARN_ON(j == band->n_channels))
6113 brcmf_update_bw40_channel_flag(&band->channels[j], &ch);
6120 static void brcmf_get_bwcap(struct brcmf_if *ifp, u32 bw_cap[])
6122 u32 band, mimo_bwcap;
6126 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
6128 bw_cap[NL80211_BAND_2GHZ] = band;
6130 err = brcmf_fil_iovar_int_get(ifp, "bw_cap", &band);
6132 bw_cap[NL80211_BAND_5GHZ] = band;
6138 brcmf_dbg(INFO, "fallback to mimo_bw_cap info\n");
6140 err = brcmf_fil_iovar_int_get(ifp, "mimo_bw_cap", &mimo_bwcap);
6142 /* assume 20MHz if firmware does not give a clue */
6143 mimo_bwcap = WLC_N_BW_20ALL;
6145 switch (mimo_bwcap) {
6146 case WLC_N_BW_40ALL:
6147 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_40MHZ_BIT;
6149 case WLC_N_BW_20IN2G_40IN5G:
6150 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_40MHZ_BIT;
6152 case WLC_N_BW_20ALL:
6153 bw_cap[NL80211_BAND_2GHZ] |= WLC_BW_20MHZ_BIT;
6154 bw_cap[NL80211_BAND_5GHZ] |= WLC_BW_20MHZ_BIT;
6157 brcmf_err("invalid mimo_bw_cap value\n");
6161 static void brcmf_update_ht_cap(struct ieee80211_supported_band *band,
6162 u32 bw_cap[2], u32 nchain)
6164 band->ht_cap.ht_supported = true;
6165 if (bw_cap[band->band] & WLC_BW_40MHZ_BIT) {
6166 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_40;
6167 band->ht_cap.cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6169 band->ht_cap.cap |= IEEE80211_HT_CAP_SGI_20;
6170 band->ht_cap.cap |= IEEE80211_HT_CAP_DSSSCCK40;
6171 band->ht_cap.ampdu_factor = IEEE80211_HT_MAX_AMPDU_64K;
6172 band->ht_cap.ampdu_density = IEEE80211_HT_MPDU_DENSITY_16;
6173 memset(band->ht_cap.mcs.rx_mask, 0xff, nchain);
6174 band->ht_cap.mcs.tx_params = IEEE80211_HT_MCS_TX_DEFINED;
6177 static __le16 brcmf_get_mcs_map(u32 nchain, enum ieee80211_vht_mcs_support supp)
6182 for (i = 0, mcs_map = 0xFFFF; i < nchain; i++)
6183 mcs_map = (mcs_map << 2) | supp;
6185 return cpu_to_le16(mcs_map);
6188 static void brcmf_update_vht_cap(struct ieee80211_supported_band *band,
6189 u32 bw_cap[2], u32 nchain, u32 txstreams,
6190 u32 txbf_bfe_cap, u32 txbf_bfr_cap)
6194 /* not allowed in 2.4G band */
6195 if (band->band == NL80211_BAND_2GHZ)
6198 band->vht_cap.vht_supported = true;
6199 /* 80MHz is mandatory */
6200 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_80;
6201 if (bw_cap[band->band] & WLC_BW_160MHZ_BIT) {
6202 band->vht_cap.cap |= IEEE80211_VHT_CAP_SUPP_CHAN_WIDTH_160MHZ;
6203 band->vht_cap.cap |= IEEE80211_VHT_CAP_SHORT_GI_160;
6205 /* all support 256-QAM */
6206 mcs_map = brcmf_get_mcs_map(nchain, IEEE80211_VHT_MCS_SUPPORT_0_9);
6207 band->vht_cap.vht_mcs.rx_mcs_map = mcs_map;
6208 band->vht_cap.vht_mcs.tx_mcs_map = mcs_map;
6210 /* Beamforming support information */
6211 if (txbf_bfe_cap & BRCMF_TXBF_SU_BFE_CAP)
6212 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMEE_CAPABLE;
6213 if (txbf_bfe_cap & BRCMF_TXBF_MU_BFE_CAP)
6214 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMEE_CAPABLE;
6215 if (txbf_bfr_cap & BRCMF_TXBF_SU_BFR_CAP)
6216 band->vht_cap.cap |= IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE;
6217 if (txbf_bfr_cap & BRCMF_TXBF_MU_BFR_CAP)
6218 band->vht_cap.cap |= IEEE80211_VHT_CAP_MU_BEAMFORMER_CAPABLE;
6220 if ((txbf_bfe_cap || txbf_bfr_cap) && (txstreams > 1)) {
6221 band->vht_cap.cap |=
6222 (2 << IEEE80211_VHT_CAP_BEAMFORMEE_STS_SHIFT);
6223 band->vht_cap.cap |= ((txstreams - 1) <<
6224 IEEE80211_VHT_CAP_SOUNDING_DIMENSIONS_SHIFT);
6225 band->vht_cap.cap |=
6226 IEEE80211_VHT_CAP_VHT_LINK_ADAPTATION_VHT_MRQ_MFB;
6230 static int brcmf_setup_wiphybands(struct brcmf_cfg80211_info *cfg)
6232 struct brcmf_if *ifp = brcmf_get_ifp(cfg->pub, 0);
6233 struct wiphy *wiphy;
6236 u32 bw_cap[2] = { WLC_BW_20MHZ_BIT, WLC_BW_20MHZ_BIT };
6241 struct ieee80211_supported_band *band;
6243 u32 txbf_bfe_cap = 0;
6244 u32 txbf_bfr_cap = 0;
6246 (void)brcmf_fil_iovar_int_get(ifp, "vhtmode", &vhtmode);
6247 err = brcmf_fil_iovar_int_get(ifp, "nmode", &nmode);
6249 brcmf_err("nmode error (%d)\n", err);
6251 brcmf_get_bwcap(ifp, bw_cap);
6253 brcmf_dbg(INFO, "nmode=%d, vhtmode=%d, bw_cap=(%d, %d)\n",
6254 nmode, vhtmode, bw_cap[NL80211_BAND_2GHZ],
6255 bw_cap[NL80211_BAND_5GHZ]);
6257 err = brcmf_fil_iovar_int_get(ifp, "rxchain", &rxchain);
6259 brcmf_err("rxchain error (%d)\n", err);
6262 for (nchain = 0; rxchain; nchain++)
6263 rxchain = rxchain & (rxchain - 1);
6265 brcmf_dbg(INFO, "nchain=%d\n", nchain);
6267 err = brcmf_construct_chaninfo(cfg, bw_cap);
6269 brcmf_err("brcmf_construct_chaninfo failed (%d)\n", err);
6274 (void)brcmf_fil_iovar_int_get(ifp, "txstreams", &txstreams);
6275 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfe_cap",
6277 (void)brcmf_fil_iovar_int_get(ifp, "txbf_bfr_cap",
6281 wiphy = cfg_to_wiphy(cfg);
6282 for (i = 0; i < ARRAY_SIZE(wiphy->bands); i++) {
6283 band = wiphy->bands[i];
6288 brcmf_update_ht_cap(band, bw_cap, nchain);
6290 brcmf_update_vht_cap(band, bw_cap, nchain, txstreams,
6291 txbf_bfe_cap, txbf_bfr_cap);
6297 static const struct ieee80211_txrx_stypes
6298 brcmf_txrx_stypes[NUM_NL80211_IFTYPES] = {
6299 [NL80211_IFTYPE_STATION] = {
6301 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6302 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6304 [NL80211_IFTYPE_P2P_CLIENT] = {
6306 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6307 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6309 [NL80211_IFTYPE_P2P_GO] = {
6311 .rx = BIT(IEEE80211_STYPE_ASSOC_REQ >> 4) |
6312 BIT(IEEE80211_STYPE_REASSOC_REQ >> 4) |
6313 BIT(IEEE80211_STYPE_PROBE_REQ >> 4) |
6314 BIT(IEEE80211_STYPE_DISASSOC >> 4) |
6315 BIT(IEEE80211_STYPE_AUTH >> 4) |
6316 BIT(IEEE80211_STYPE_DEAUTH >> 4) |
6317 BIT(IEEE80211_STYPE_ACTION >> 4)
6319 [NL80211_IFTYPE_P2P_DEVICE] = {
6321 .rx = BIT(IEEE80211_STYPE_ACTION >> 4) |
6322 BIT(IEEE80211_STYPE_PROBE_REQ >> 4)
6324 [NL80211_IFTYPE_AP] = {
6326 .rx = BIT(IEEE80211_STYPE_ASSOC_REQ >> 4) |
6327 BIT(IEEE80211_STYPE_REASSOC_REQ >> 4) |
6328 BIT(IEEE80211_STYPE_PROBE_REQ >> 4) |
6329 BIT(IEEE80211_STYPE_DISASSOC >> 4) |
6330 BIT(IEEE80211_STYPE_AUTH >> 4) |
6331 BIT(IEEE80211_STYPE_DEAUTH >> 4) |
6332 BIT(IEEE80211_STYPE_ACTION >> 4)
6337 * brcmf_setup_ifmodes() - determine interface modes and combinations.
6339 * @wiphy: wiphy object.
6340 * @ifp: interface object needed for feat module api.
6342 * The interface modes and combinations are determined dynamically here
6343 * based on firmware functionality.
6345 * no p2p and no mbss:
6347 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6351 * #STA <= 1, #AP <= 1, channels = 1, 2 total
6352 * #AP <= 4, matching BI, channels = 1, 4 total
6354 * p2p, no mchan, and mbss:
6356 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 1, 3 total
6357 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6358 * #AP <= 4, matching BI, channels = 1, 4 total
6360 * p2p, mchan, and mbss:
6362 * #STA <= 1, #P2P-DEV <= 1, #{P2P-CL, P2P-GO} <= 1, channels = 2, 3 total
6363 * #STA <= 1, #P2P-DEV <= 1, #AP <= 1, #P2P-CL <= 1, channels = 1, 4 total
6364 * #AP <= 4, matching BI, channels = 1, 4 total
6366 static int brcmf_setup_ifmodes(struct wiphy *wiphy, struct brcmf_if *ifp)
6368 struct ieee80211_iface_combination *combo = NULL;
6369 struct ieee80211_iface_limit *c0_limits = NULL;
6370 struct ieee80211_iface_limit *p2p_limits = NULL;
6371 struct ieee80211_iface_limit *mbss_limits = NULL;
6375 mbss = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MBSS);
6376 p2p = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_P2P);
6378 n_combos = 1 + !!p2p + !!mbss;
6379 combo = kcalloc(n_combos, sizeof(*combo), GFP_KERNEL);
6383 wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION) |
6384 BIT(NL80211_IFTYPE_ADHOC) |
6385 BIT(NL80211_IFTYPE_AP);
6389 c0_limits = kcalloc(p2p ? 3 : 2, sizeof(*c0_limits), GFP_KERNEL);
6392 c0_limits[i].max = 1;
6393 c0_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6395 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MCHAN))
6396 combo[c].num_different_channels = 2;
6398 combo[c].num_different_channels = 1;
6399 wiphy->interface_modes |= BIT(NL80211_IFTYPE_P2P_CLIENT) |
6400 BIT(NL80211_IFTYPE_P2P_GO) |
6401 BIT(NL80211_IFTYPE_P2P_DEVICE);
6402 c0_limits[i].max = 1;
6403 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6404 c0_limits[i].max = 1;
6405 c0_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT) |
6406 BIT(NL80211_IFTYPE_P2P_GO);
6408 combo[c].num_different_channels = 1;
6409 c0_limits[i].max = 1;
6410 c0_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6412 combo[c].max_interfaces = i;
6413 combo[c].n_limits = i;
6414 combo[c].limits = c0_limits;
6419 p2p_limits = kcalloc(4, sizeof(*p2p_limits), GFP_KERNEL);
6422 p2p_limits[i].max = 1;
6423 p2p_limits[i++].types = BIT(NL80211_IFTYPE_STATION);
6424 p2p_limits[i].max = 1;
6425 p2p_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6426 p2p_limits[i].max = 1;
6427 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_CLIENT);
6428 p2p_limits[i].max = 1;
6429 p2p_limits[i++].types = BIT(NL80211_IFTYPE_P2P_DEVICE);
6430 combo[c].num_different_channels = 1;
6431 combo[c].max_interfaces = i;
6432 combo[c].n_limits = i;
6433 combo[c].limits = p2p_limits;
6439 mbss_limits = kcalloc(1, sizeof(*mbss_limits), GFP_KERNEL);
6442 mbss_limits[i].max = 4;
6443 mbss_limits[i++].types = BIT(NL80211_IFTYPE_AP);
6444 combo[c].beacon_int_infra_match = true;
6445 combo[c].num_different_channels = 1;
6446 combo[c].max_interfaces = 4;
6447 combo[c].n_limits = i;
6448 combo[c].limits = mbss_limits;
6451 wiphy->n_iface_combinations = n_combos;
6452 wiphy->iface_combinations = combo;
6464 static const struct wiphy_wowlan_support brcmf_wowlan_support = {
6465 .flags = WIPHY_WOWLAN_MAGIC_PKT | WIPHY_WOWLAN_DISCONNECT,
6466 .n_patterns = BRCMF_WOWL_MAXPATTERNS,
6467 .pattern_max_len = BRCMF_WOWL_MAXPATTERNSIZE,
6468 .pattern_min_len = 1,
6469 .max_pkt_offset = 1500,
6473 static void brcmf_wiphy_wowl_params(struct wiphy *wiphy, struct brcmf_if *ifp)
6476 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
6477 struct wiphy_wowlan_support *wowl;
6479 wowl = kmemdup(&brcmf_wowlan_support, sizeof(brcmf_wowlan_support),
6482 brcmf_err("only support basic wowlan features\n");
6483 wiphy->wowlan = &brcmf_wowlan_support;
6487 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO)) {
6488 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_ND)) {
6489 wowl->flags |= WIPHY_WOWLAN_NET_DETECT;
6490 wowl->max_nd_match_sets = BRCMF_PNO_MAX_PFN_COUNT;
6491 init_waitqueue_head(&cfg->wowl.nd_data_wait);
6494 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK)) {
6495 wowl->flags |= WIPHY_WOWLAN_SUPPORTS_GTK_REKEY;
6496 wowl->flags |= WIPHY_WOWLAN_GTK_REKEY_FAILURE;
6499 wiphy->wowlan = wowl;
6503 static int brcmf_setup_wiphy(struct wiphy *wiphy, struct brcmf_if *ifp)
6505 struct brcmf_pub *drvr = ifp->drvr;
6506 const struct ieee80211_iface_combination *combo;
6507 struct ieee80211_supported_band *band;
6508 u16 max_interfaces = 0;
6514 wiphy->max_scan_ssids = WL_NUM_SCAN_MAX;
6515 wiphy->max_scan_ie_len = BRCMF_SCAN_IE_LEN_MAX;
6516 wiphy->max_num_pmkids = BRCMF_MAXPMKID;
6518 err = brcmf_setup_ifmodes(wiphy, ifp);
6522 for (i = 0, combo = wiphy->iface_combinations;
6523 i < wiphy->n_iface_combinations; i++, combo++) {
6524 max_interfaces = max(max_interfaces, combo->max_interfaces);
6527 for (i = 0; i < max_interfaces && i < ARRAY_SIZE(drvr->addresses);
6529 u8 *addr = drvr->addresses[i].addr;
6531 memcpy(addr, drvr->mac, ETH_ALEN);
6534 addr[ETH_ALEN - 1] ^= i;
6537 wiphy->addresses = drvr->addresses;
6538 wiphy->n_addresses = i;
6540 wiphy->signal_type = CFG80211_SIGNAL_TYPE_MBM;
6541 wiphy->cipher_suites = brcmf_cipher_suites;
6542 wiphy->n_cipher_suites = ARRAY_SIZE(brcmf_cipher_suites);
6543 if (!brcmf_feat_is_enabled(ifp, BRCMF_FEAT_MFP))
6544 wiphy->n_cipher_suites--;
6545 wiphy->bss_select_support = BIT(NL80211_BSS_SELECT_ATTR_RSSI) |
6546 BIT(NL80211_BSS_SELECT_ATTR_BAND_PREF) |
6547 BIT(NL80211_BSS_SELECT_ATTR_RSSI_ADJUST);
6549 wiphy->flags |= WIPHY_FLAG_NETNS_OK |
6550 WIPHY_FLAG_PS_ON_BY_DEFAULT |
6551 WIPHY_FLAG_HAVE_AP_SME |
6552 WIPHY_FLAG_OFFCHAN_TX |
6553 WIPHY_FLAG_HAS_REMAIN_ON_CHANNEL;
6554 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS))
6555 wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS;
6556 if (!ifp->drvr->settings->roamoff)
6557 wiphy->flags |= WIPHY_FLAG_SUPPORTS_FW_ROAM;
6558 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_FWSUP)) {
6559 wiphy_ext_feature_set(wiphy,
6560 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_PSK);
6561 wiphy_ext_feature_set(wiphy,
6562 NL80211_EXT_FEATURE_4WAY_HANDSHAKE_STA_1X);
6564 wiphy->mgmt_stypes = brcmf_txrx_stypes;
6565 wiphy->max_remain_on_channel_duration = 5000;
6566 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_PNO)) {
6567 gscan = brcmf_feat_is_enabled(ifp, BRCMF_FEAT_GSCAN);
6568 brcmf_pno_wiphy_params(wiphy, gscan);
6570 /* vendor commands/events support */
6571 wiphy->vendor_commands = brcmf_vendor_cmds;
6572 wiphy->n_vendor_commands = BRCMF_VNDR_CMDS_LAST - 1;
6574 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL))
6575 brcmf_wiphy_wowl_params(wiphy, ifp);
6576 err = brcmf_fil_cmd_data_get(ifp, BRCMF_C_GET_BANDLIST, &bandlist,
6579 brcmf_err("could not obtain band info: err=%d\n", err);
6582 /* first entry in bandlist is number of bands */
6583 n_bands = le32_to_cpu(bandlist[0]);
6584 for (i = 1; i <= n_bands && i < ARRAY_SIZE(bandlist); i++) {
6585 if (bandlist[i] == cpu_to_le32(WLC_BAND_2G)) {
6586 band = kmemdup(&__wl_band_2ghz, sizeof(__wl_band_2ghz),
6591 band->channels = kmemdup(&__wl_2ghz_channels,
6592 sizeof(__wl_2ghz_channels),
6594 if (!band->channels) {
6599 band->n_channels = ARRAY_SIZE(__wl_2ghz_channels);
6600 wiphy->bands[NL80211_BAND_2GHZ] = band;
6602 if (bandlist[i] == cpu_to_le32(WLC_BAND_5G)) {
6603 band = kmemdup(&__wl_band_5ghz, sizeof(__wl_band_5ghz),
6608 band->channels = kmemdup(&__wl_5ghz_channels,
6609 sizeof(__wl_5ghz_channels),
6611 if (!band->channels) {
6616 band->n_channels = ARRAY_SIZE(__wl_5ghz_channels);
6617 wiphy->bands[NL80211_BAND_5GHZ] = band;
6621 wiphy_read_of_freq_limits(wiphy);
6626 static s32 brcmf_config_dongle(struct brcmf_cfg80211_info *cfg)
6628 struct net_device *ndev;
6629 struct wireless_dev *wdev;
6630 struct brcmf_if *ifp;
6637 ndev = cfg_to_ndev(cfg);
6638 wdev = ndev->ieee80211_ptr;
6639 ifp = netdev_priv(ndev);
6641 /* make sure RF is ready for work */
6642 brcmf_fil_cmd_int_set(ifp, BRCMF_C_UP, 0);
6644 brcmf_dongle_scantime(ifp);
6646 power_mode = cfg->pwr_save ? PM_FAST : PM_OFF;
6647 err = brcmf_fil_cmd_int_set(ifp, BRCMF_C_SET_PM, power_mode);
6649 goto default_conf_out;
6650 brcmf_dbg(INFO, "power save set to %s\n",
6651 (power_mode ? "enabled" : "disabled"));
6653 err = brcmf_dongle_roam(ifp);
6655 goto default_conf_out;
6656 err = brcmf_cfg80211_change_iface(wdev->wiphy, ndev, wdev->iftype,
6659 goto default_conf_out;
6661 brcmf_configure_arp_nd_offload(ifp, true);
6663 cfg->dongle_up = true;
6670 static s32 __brcmf_cfg80211_up(struct brcmf_if *ifp)
6672 set_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6674 return brcmf_config_dongle(ifp->drvr->config);
6677 static s32 __brcmf_cfg80211_down(struct brcmf_if *ifp)
6679 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6682 * While going down, if associated with AP disassociate
6683 * from AP to save power
6685 if (check_vif_up(ifp->vif)) {
6686 brcmf_link_down(ifp->vif, WLAN_REASON_UNSPECIFIED);
6688 /* Make sure WPA_Supplicant receives all the event
6689 generated due to DISASSOC call to the fw to keep
6690 the state fw and WPA_Supplicant state consistent
6695 brcmf_abort_scanning(cfg);
6696 clear_bit(BRCMF_VIF_STATUS_READY, &ifp->vif->sme_state);
6701 s32 brcmf_cfg80211_up(struct net_device *ndev)
6703 struct brcmf_if *ifp = netdev_priv(ndev);
6704 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6707 mutex_lock(&cfg->usr_sync);
6708 err = __brcmf_cfg80211_up(ifp);
6709 mutex_unlock(&cfg->usr_sync);
6714 s32 brcmf_cfg80211_down(struct net_device *ndev)
6716 struct brcmf_if *ifp = netdev_priv(ndev);
6717 struct brcmf_cfg80211_info *cfg = ifp->drvr->config;
6720 mutex_lock(&cfg->usr_sync);
6721 err = __brcmf_cfg80211_down(ifp);
6722 mutex_unlock(&cfg->usr_sync);
6727 enum nl80211_iftype brcmf_cfg80211_get_iftype(struct brcmf_if *ifp)
6729 struct wireless_dev *wdev = &ifp->vif->wdev;
6731 return wdev->iftype;
6734 bool brcmf_get_vif_state_any(struct brcmf_cfg80211_info *cfg,
6735 unsigned long state)
6737 struct brcmf_cfg80211_vif *vif;
6739 list_for_each_entry(vif, &cfg->vif_list, list) {
6740 if (test_bit(state, &vif->sme_state))
6746 static inline bool vif_event_equals(struct brcmf_cfg80211_vif_event *event,
6751 spin_lock(&event->vif_event_lock);
6752 evt_action = event->action;
6753 spin_unlock(&event->vif_event_lock);
6754 return evt_action == action;
6757 void brcmf_cfg80211_arm_vif_event(struct brcmf_cfg80211_info *cfg,
6758 struct brcmf_cfg80211_vif *vif)
6760 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6762 spin_lock(&event->vif_event_lock);
6765 spin_unlock(&event->vif_event_lock);
6768 bool brcmf_cfg80211_vif_event_armed(struct brcmf_cfg80211_info *cfg)
6770 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6773 spin_lock(&event->vif_event_lock);
6774 armed = event->vif != NULL;
6775 spin_unlock(&event->vif_event_lock);
6780 int brcmf_cfg80211_wait_vif_event(struct brcmf_cfg80211_info *cfg,
6781 u8 action, ulong timeout)
6783 struct brcmf_cfg80211_vif_event *event = &cfg->vif_event;
6785 return wait_event_timeout(event->vif_wq,
6786 vif_event_equals(event, action), timeout);
6789 static s32 brcmf_translate_country_code(struct brcmf_pub *drvr, char alpha2[2],
6790 struct brcmf_fil_country_le *ccreq)
6792 struct brcmfmac_pd_cc *country_codes;
6793 struct brcmfmac_pd_cc_entry *cc;
6797 country_codes = drvr->settings->country_codes;
6798 if (!country_codes) {
6799 brcmf_dbg(TRACE, "No country codes configured for device\n");
6803 if ((alpha2[0] == ccreq->country_abbrev[0]) &&
6804 (alpha2[1] == ccreq->country_abbrev[1])) {
6805 brcmf_dbg(TRACE, "Country code already set\n");
6810 for (i = 0; i < country_codes->table_size; i++) {
6811 cc = &country_codes->table[i];
6812 if ((cc->iso3166[0] == '\0') && (found_index == -1))
6814 if ((cc->iso3166[0] == alpha2[0]) &&
6815 (cc->iso3166[1] == alpha2[1])) {
6820 if (found_index == -1) {
6821 brcmf_dbg(TRACE, "No country code match found\n");
6824 memset(ccreq, 0, sizeof(*ccreq));
6825 ccreq->rev = cpu_to_le32(country_codes->table[found_index].rev);
6826 memcpy(ccreq->ccode, country_codes->table[found_index].cc,
6827 BRCMF_COUNTRY_BUF_SZ);
6828 ccreq->country_abbrev[0] = alpha2[0];
6829 ccreq->country_abbrev[1] = alpha2[1];
6830 ccreq->country_abbrev[2] = 0;
6835 static void brcmf_cfg80211_reg_notifier(struct wiphy *wiphy,
6836 struct regulatory_request *req)
6838 struct brcmf_cfg80211_info *cfg = wiphy_to_cfg(wiphy);
6839 struct brcmf_if *ifp = brcmf_get_ifp(cfg->pub, 0);
6840 struct brcmf_fil_country_le ccreq;
6844 /* The country code gets set to "00" by default at boot, ignore */
6845 if (req->alpha2[0] == '0' && req->alpha2[1] == '0')
6848 /* ignore non-ISO3166 country codes */
6849 for (i = 0; i < 2; i++)
6850 if (req->alpha2[i] < 'A' || req->alpha2[i] > 'Z') {
6851 brcmf_err("not an ISO3166 code (0x%02x 0x%02x)\n",
6852 req->alpha2[0], req->alpha2[1]);
6856 brcmf_dbg(TRACE, "Enter: initiator=%d, alpha=%c%c\n", req->initiator,
6857 req->alpha2[0], req->alpha2[1]);
6859 err = brcmf_fil_iovar_data_get(ifp, "country", &ccreq, sizeof(ccreq));
6861 brcmf_err("Country code iovar returned err = %d\n", err);
6865 err = brcmf_translate_country_code(ifp->drvr, req->alpha2, &ccreq);
6869 err = brcmf_fil_iovar_data_set(ifp, "country", &ccreq, sizeof(ccreq));
6871 brcmf_err("Firmware rejected country setting\n");
6874 brcmf_setup_wiphybands(cfg);
6877 static void brcmf_free_wiphy(struct wiphy *wiphy)
6884 if (wiphy->iface_combinations) {
6885 for (i = 0; i < wiphy->n_iface_combinations; i++)
6886 kfree(wiphy->iface_combinations[i].limits);
6888 kfree(wiphy->iface_combinations);
6889 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6890 kfree(wiphy->bands[NL80211_BAND_2GHZ]->channels);
6891 kfree(wiphy->bands[NL80211_BAND_2GHZ]);
6893 if (wiphy->bands[NL80211_BAND_5GHZ]) {
6894 kfree(wiphy->bands[NL80211_BAND_5GHZ]->channels);
6895 kfree(wiphy->bands[NL80211_BAND_5GHZ]);
6897 #if IS_ENABLED(CONFIG_PM)
6898 if (wiphy->wowlan != &brcmf_wowlan_support)
6899 kfree(wiphy->wowlan);
6903 struct brcmf_cfg80211_info *brcmf_cfg80211_attach(struct brcmf_pub *drvr,
6904 struct cfg80211_ops *ops,
6907 struct wiphy *wiphy = drvr->wiphy;
6908 struct net_device *ndev = brcmf_get_ifp(drvr, 0)->ndev;
6909 struct brcmf_cfg80211_info *cfg;
6910 struct brcmf_cfg80211_vif *vif;
6911 struct brcmf_if *ifp;
6917 brcmf_err("ndev is invalid\n");
6921 cfg = kzalloc(sizeof(*cfg), GFP_KERNEL);
6923 brcmf_err("Could not allocate wiphy device\n");
6929 init_vif_event(&cfg->vif_event);
6930 INIT_LIST_HEAD(&cfg->vif_list);
6932 vif = brcmf_alloc_vif(cfg, NL80211_IFTYPE_STATION);
6936 ifp = netdev_priv(ndev);
6938 vif->wdev.netdev = ndev;
6939 ndev->ieee80211_ptr = &vif->wdev;
6940 SET_NETDEV_DEV(ndev, wiphy_dev(cfg->wiphy));
6942 err = wl_init_priv(cfg);
6944 brcmf_err("Failed to init iwm_priv (%d)\n", err);
6945 brcmf_free_vif(vif);
6950 /* determine d11 io type before wiphy setup */
6951 err = brcmf_fil_cmd_int_get(ifp, BRCMF_C_GET_VERSION, &io_type);
6953 brcmf_err("Failed to get D11 version (%d)\n", err);
6956 cfg->d11inf.io_type = (u8)io_type;
6957 brcmu_d11_attach(&cfg->d11inf);
6959 /* regulatory notifer below needs access to cfg so
6964 err = brcmf_setup_wiphy(wiphy, ifp);
6968 brcmf_dbg(INFO, "Registering custom regulatory\n");
6969 wiphy->reg_notifier = brcmf_cfg80211_reg_notifier;
6970 wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG;
6971 wiphy_apply_custom_regulatory(wiphy, &brcmf_regdom);
6973 /* firmware defaults to 40MHz disabled in 2G band. We signal
6974 * cfg80211 here that we do and have it decide we can enable
6975 * it. But first check if device does support 2G operation.
6977 if (wiphy->bands[NL80211_BAND_2GHZ]) {
6978 cap = &wiphy->bands[NL80211_BAND_2GHZ]->ht_cap.cap;
6979 *cap |= IEEE80211_HT_CAP_SUP_WIDTH_20_40;
6982 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_WOWL_GTK))
6983 ops->set_rekey_data = brcmf_cfg80211_set_rekey_data;
6985 err = wiphy_register(wiphy);
6987 brcmf_err("Could not register wiphy device (%d)\n", err);
6991 err = brcmf_setup_wiphybands(cfg);
6993 brcmf_err("Setting wiphy bands failed (%d)\n", err);
6994 goto wiphy_unreg_out;
6997 /* If cfg80211 didn't disable 40MHz HT CAP in wiphy_register(),
6998 * setup 40MHz in 2GHz band and enable OBSS scanning.
7000 if (cap && (*cap & IEEE80211_HT_CAP_SUP_WIDTH_20_40)) {
7001 err = brcmf_enable_bw40_2g(cfg);
7003 err = brcmf_fil_iovar_int_set(ifp, "obss_coex",
7004 BRCMF_OBSS_COEX_AUTO);
7006 *cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
7009 err = brcmf_fweh_activate_events(ifp);
7011 brcmf_err("FWEH activation failed (%d)\n", err);
7012 goto wiphy_unreg_out;
7015 err = brcmf_p2p_attach(cfg, p2pdev_forced);
7017 brcmf_err("P2P initialisation failed (%d)\n", err);
7018 goto wiphy_unreg_out;
7020 err = brcmf_btcoex_attach(cfg);
7022 brcmf_err("BT-coex initialisation failed (%d)\n", err);
7023 brcmf_p2p_detach(&cfg->p2p);
7024 goto wiphy_unreg_out;
7026 err = brcmf_pno_attach(cfg);
7028 brcmf_err("PNO initialisation failed (%d)\n", err);
7029 brcmf_btcoex_detach(cfg);
7030 brcmf_p2p_detach(&cfg->p2p);
7031 goto wiphy_unreg_out;
7034 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_TDLS)) {
7035 err = brcmf_fil_iovar_int_set(ifp, "tdls_enable", 1);
7037 brcmf_dbg(INFO, "TDLS not enabled (%d)\n", err);
7038 wiphy->flags &= ~WIPHY_FLAG_SUPPORTS_TDLS;
7040 brcmf_fweh_register(cfg->pub, BRCMF_E_TDLS_PEER_EVENT,
7041 brcmf_notify_tdls_peer_event);
7045 /* (re-) activate FWEH event handling */
7046 err = brcmf_fweh_activate_events(ifp);
7048 brcmf_err("FWEH activation failed (%d)\n", err);
7052 /* Fill in some of the advertised nl80211 supported features */
7053 if (brcmf_feat_is_enabled(ifp, BRCMF_FEAT_SCAN_RANDOM_MAC)) {
7054 wiphy->features |= NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR;
7056 if (wiphy->wowlan &&
7057 wiphy->wowlan->flags & WIPHY_WOWLAN_NET_DETECT)
7058 wiphy->features |= NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
7065 brcmf_pno_detach(cfg);
7066 brcmf_btcoex_detach(cfg);
7067 brcmf_p2p_detach(&cfg->p2p);
7069 wiphy_unregister(cfg->wiphy);
7071 wl_deinit_priv(cfg);
7072 brcmf_free_vif(vif);
7075 brcmf_free_wiphy(wiphy);
7080 void brcmf_cfg80211_detach(struct brcmf_cfg80211_info *cfg)
7085 brcmf_pno_detach(cfg);
7086 brcmf_btcoex_detach(cfg);
7087 wiphy_unregister(cfg->wiphy);
7089 wl_deinit_priv(cfg);
7090 brcmf_free_wiphy(cfg->wiphy);