1 // SPDX-License-Identifier: GPL-2.0
2 /******************************************************************************
4 * Copyright(c) 2007 - 2012 Realtek Corporation. All rights reserved.
6 ******************************************************************************/
9 #include <rtw_wifi_regd.h>
10 #include <hal_btcoex.h>
11 #include <linux/kernel.h>
12 #include <asm/unaligned.h>
14 static struct mlme_handler mlme_sta_tbl[] = {
15 {WIFI_ASSOCREQ, "OnAssocReq", &OnAssocReq},
16 {WIFI_ASSOCRSP, "OnAssocRsp", &OnAssocRsp},
17 {WIFI_REASSOCREQ, "OnReAssocReq", &OnAssocReq},
18 {WIFI_REASSOCRSP, "OnReAssocRsp", &OnAssocRsp},
19 {WIFI_PROBEREQ, "OnProbeReq", &OnProbeReq},
20 {WIFI_PROBERSP, "OnProbeRsp", &OnProbeRsp},
22 /*----------------------------------------------------------
24 -----------------------------------------------------------*/
25 {0, "DoReserved", &DoReserved},
26 {0, "DoReserved", &DoReserved},
27 {WIFI_BEACON, "OnBeacon", &OnBeacon},
28 {WIFI_ATIM, "OnATIM", &OnAtim},
29 {WIFI_DISASSOC, "OnDisassoc", &OnDisassoc},
30 {WIFI_AUTH, "OnAuth", &OnAuthClient},
31 {WIFI_DEAUTH, "OnDeAuth", &OnDeAuth},
32 {WIFI_ACTION, "OnAction", &OnAction},
33 {WIFI_ACTION_NOACK, "OnActionNoAck", &OnAction},
36 static struct action_handler OnAction_tbl[] = {
37 {RTW_WLAN_CATEGORY_SPECTRUM_MGMT, "ACTION_SPECTRUM_MGMT", on_action_spct},
38 {RTW_WLAN_CATEGORY_QOS, "ACTION_QOS", &DoReserved},
39 {RTW_WLAN_CATEGORY_DLS, "ACTION_DLS", &DoReserved},
40 {RTW_WLAN_CATEGORY_BACK, "ACTION_BACK", &OnAction_back},
41 {RTW_WLAN_CATEGORY_PUBLIC, "ACTION_PUBLIC", on_action_public},
42 {RTW_WLAN_CATEGORY_RADIO_MEASUREMENT, "ACTION_RADIO_MEASUREMENT", &DoReserved},
43 {RTW_WLAN_CATEGORY_FT, "ACTION_FT", &DoReserved},
44 {RTW_WLAN_CATEGORY_HT, "ACTION_HT", &OnAction_ht},
45 {RTW_WLAN_CATEGORY_SA_QUERY, "ACTION_SA_QUERY", &OnAction_sa_query},
46 {RTW_WLAN_CATEGORY_UNPROTECTED_WNM, "ACTION_UNPROTECTED_WNM", &DoReserved},
47 {RTW_WLAN_CATEGORY_SELF_PROTECTED, "ACTION_SELF_PROTECTED", &DoReserved},
48 {RTW_WLAN_CATEGORY_WMM, "ACTION_WMM", &DoReserved},
49 {RTW_WLAN_CATEGORY_P2P, "ACTION_P2P", &DoReserved},
52 static u8 null_addr[ETH_ALEN] = {0, 0, 0, 0, 0, 0};
54 /**************************************************
55 OUI definitions for the vendor specific IE
56 ***************************************************/
57 unsigned char RTW_WPA_OUI[] = {0x00, 0x50, 0xf2, 0x01};
58 unsigned char WMM_OUI[] = {0x00, 0x50, 0xf2, 0x02};
59 unsigned char WPS_OUI[] = {0x00, 0x50, 0xf2, 0x04};
60 unsigned char P2P_OUI[] = {0x50, 0x6F, 0x9A, 0x09};
61 unsigned char WFD_OUI[] = {0x50, 0x6F, 0x9A, 0x0A};
63 unsigned char WMM_INFO_OUI[] = {0x00, 0x50, 0xf2, 0x02, 0x00, 0x01};
64 unsigned char WMM_PARA_OUI[] = {0x00, 0x50, 0xf2, 0x02, 0x01, 0x01};
66 static unsigned char REALTEK_96B_IE[] = {0x00, 0xe0, 0x4c, 0x02, 0x01, 0x20};
68 /********************************************************
69 ChannelPlan definitions
70 *********************************************************/
71 static struct rt_channel_plan_2g RTW_ChannelPlan2G[RT_CHANNEL_DOMAIN_2G_MAX] = {
72 {{1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13}, 13}, /* 0x00, RT_CHANNEL_DOMAIN_2G_WORLD , Passive scan CH 12, 13 */
73 {{1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13}, 13}, /* 0x01, RT_CHANNEL_DOMAIN_2G_ETSI1 */
74 {{1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11}, 11}, /* 0x02, RT_CHANNEL_DOMAIN_2G_FCC1 */
75 {{1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14}, 14}, /* 0x03, RT_CHANNEL_DOMAIN_2G_MIKK1 */
76 {{10, 11, 12, 13}, 4}, /* 0x04, RT_CHANNEL_DOMAIN_2G_ETSI2 */
77 {{1, 2, 3, 4, 5, 6, 7, 8, 9, 10, 11, 12, 13, 14}, 14}, /* 0x05, RT_CHANNEL_DOMAIN_2G_GLOBAL , Passive scan CH 12, 13, 14 */
78 {{}, 0}, /* 0x06, RT_CHANNEL_DOMAIN_2G_NULL */
81 static struct rt_channel_plan_map RTW_ChannelPlanMap[RT_CHANNEL_DOMAIN_MAX] = {
82 /* 0x00 ~ 0x1F , Old Define ===== */
83 {0x02}, /* 0x00, RT_CHANNEL_DOMAIN_FCC */
84 {0x02}, /* 0x01, RT_CHANNEL_DOMAIN_IC */
85 {0x01}, /* 0x02, RT_CHANNEL_DOMAIN_ETSI */
86 {0x01}, /* 0x03, RT_CHANNEL_DOMAIN_SPAIN */
87 {0x01}, /* 0x04, RT_CHANNEL_DOMAIN_FRANCE */
88 {0x03}, /* 0x05, RT_CHANNEL_DOMAIN_MKK */
89 {0x03}, /* 0x06, RT_CHANNEL_DOMAIN_MKK1 */
90 {0x01}, /* 0x07, RT_CHANNEL_DOMAIN_ISRAEL */
91 {0x03}, /* 0x08, RT_CHANNEL_DOMAIN_TELEC */
92 {0x03}, /* 0x09, RT_CHANNEL_DOMAIN_GLOBAL_DOAMIN */
93 {0x00}, /* 0x0A, RT_CHANNEL_DOMAIN_WORLD_WIDE_13 */
94 {0x02}, /* 0x0B, RT_CHANNEL_DOMAIN_TAIWAN */
95 {0x01}, /* 0x0C, RT_CHANNEL_DOMAIN_CHINA */
96 {0x02}, /* 0x0D, RT_CHANNEL_DOMAIN_SINGAPORE_INDIA_MEXICO */
97 {0x02}, /* 0x0E, RT_CHANNEL_DOMAIN_KOREA */
98 {0x02}, /* 0x0F, RT_CHANNEL_DOMAIN_TURKEY */
99 {0x01}, /* 0x10, RT_CHANNEL_DOMAIN_JAPAN */
100 {0x02}, /* 0x11, RT_CHANNEL_DOMAIN_FCC_NO_DFS */
101 {0x01}, /* 0x12, RT_CHANNEL_DOMAIN_JAPAN_NO_DFS */
102 {0x00}, /* 0x13, RT_CHANNEL_DOMAIN_WORLD_WIDE_5G */
103 {0x02}, /* 0x14, RT_CHANNEL_DOMAIN_TAIWAN_NO_DFS */
104 {0x00}, /* 0x15, RT_CHANNEL_DOMAIN_ETSI_NO_DFS */
105 {0x00}, /* 0x16, RT_CHANNEL_DOMAIN_KOREA_NO_DFS */
106 {0x03}, /* 0x17, RT_CHANNEL_DOMAIN_JAPAN_NO_DFS */
107 {0x06}, /* 0x18, RT_CHANNEL_DOMAIN_PAKISTAN_NO_DFS */
108 {0x02}, /* 0x19, RT_CHANNEL_DOMAIN_TAIWAN2_NO_DFS */
114 {0x06}, /* 0x1F, RT_CHANNEL_DOMAIN_WORLD_WIDE_ONLY_5G */
115 /* 0x20 ~ 0x7F , New Define ===== */
116 {0x00}, /* 0x20, RT_CHANNEL_DOMAIN_WORLD_NULL */
117 {0x01}, /* 0x21, RT_CHANNEL_DOMAIN_ETSI1_NULL */
118 {0x02}, /* 0x22, RT_CHANNEL_DOMAIN_FCC1_NULL */
119 {0x03}, /* 0x23, RT_CHANNEL_DOMAIN_MKK1_NULL */
120 {0x04}, /* 0x24, RT_CHANNEL_DOMAIN_ETSI2_NULL */
121 {0x02}, /* 0x25, RT_CHANNEL_DOMAIN_FCC1_FCC1 */
122 {0x00}, /* 0x26, RT_CHANNEL_DOMAIN_WORLD_ETSI1 */
123 {0x03}, /* 0x27, RT_CHANNEL_DOMAIN_MKK1_MKK1 */
124 {0x00}, /* 0x28, RT_CHANNEL_DOMAIN_WORLD_KCC1 */
125 {0x00}, /* 0x29, RT_CHANNEL_DOMAIN_WORLD_FCC2 */
132 {0x00}, /* 0x30, RT_CHANNEL_DOMAIN_WORLD_FCC3 */
133 {0x00}, /* 0x31, RT_CHANNEL_DOMAIN_WORLD_FCC4 */
134 {0x00}, /* 0x32, RT_CHANNEL_DOMAIN_WORLD_FCC5 */
135 {0x00}, /* 0x33, RT_CHANNEL_DOMAIN_WORLD_FCC6 */
136 {0x02}, /* 0x34, RT_CHANNEL_DOMAIN_FCC1_FCC7 */
137 {0x00}, /* 0x35, RT_CHANNEL_DOMAIN_WORLD_ETSI2 */
138 {0x00}, /* 0x36, RT_CHANNEL_DOMAIN_WORLD_ETSI3 */
139 {0x03}, /* 0x37, RT_CHANNEL_DOMAIN_MKK1_MKK2 */
140 {0x03}, /* 0x38, RT_CHANNEL_DOMAIN_MKK1_MKK3 */
141 {0x02}, /* 0x39, RT_CHANNEL_DOMAIN_FCC1_NCC1 */
148 {0x02}, /* 0x40, RT_CHANNEL_DOMAIN_FCC1_NCC2 */
149 {0x05}, /* 0x41, RT_CHANNEL_DOMAIN_GLOBAL_NULL */
150 {0x01}, /* 0x42, RT_CHANNEL_DOMAIN_ETSI1_ETSI4 */
151 {0x02}, /* 0x43, RT_CHANNEL_DOMAIN_FCC1_FCC2 */
152 {0x02}, /* 0x44, RT_CHANNEL_DOMAIN_FCC1_NCC3 */
153 {0x00}, /* 0x45, RT_CHANNEL_DOMAIN_WORLD_ETSI5 */
154 {0x02}, /* 0x46, RT_CHANNEL_DOMAIN_FCC1_FCC8 */
155 {0x00}, /* 0x47, RT_CHANNEL_DOMAIN_WORLD_ETSI6 */
156 {0x00}, /* 0x48, RT_CHANNEL_DOMAIN_WORLD_ETSI7 */
157 {0x00}, /* 0x49, RT_CHANNEL_DOMAIN_WORLD_ETSI8 */
158 {0x00}, /* 0x50, RT_CHANNEL_DOMAIN_WORLD_ETSI9 */
159 {0x00}, /* 0x51, RT_CHANNEL_DOMAIN_WORLD_ETSI10 */
160 {0x00}, /* 0x52, RT_CHANNEL_DOMAIN_WORLD_ETSI11 */
161 {0x02}, /* 0x53, RT_CHANNEL_DOMAIN_FCC1_NCC4 */
162 {0x00}, /* 0x54, RT_CHANNEL_DOMAIN_WORLD_ETSI12 */
163 {0x02}, /* 0x55, RT_CHANNEL_DOMAIN_FCC1_FCC9 */
164 {0x00}, /* 0x56, RT_CHANNEL_DOMAIN_WORLD_ETSI13 */
165 {0x02}, /* 0x57, RT_CHANNEL_DOMAIN_FCC1_FCC10 */
168 /* use the combination for max channel numbers */
169 static struct rt_channel_plan_map RTW_CHANNEL_PLAN_MAP_REALTEK_DEFINE = {0x03};
171 /* Search the @param ch in given @param ch_set
172 * @ch_set: the given channel set
173 * @ch: the given channel number
175 * return the index of channel_num in channel_set, -1 if not found
177 int rtw_ch_set_search_ch(struct rt_channel_info *ch_set, const u32 ch)
181 for (i = 0; ch_set[i].ChannelNum != 0; i++) {
182 if (ch == ch_set[i].ChannelNum)
186 if (i >= ch_set[i].ChannelNum)
191 /****************************************************************************
193 Following are the initialization functions for WiFi MLME
195 *****************************************************************************/
197 int init_hw_mlme_ext(struct adapter *padapter)
199 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
201 set_channel_bwmode(padapter, pmlmeext->cur_channel, pmlmeext->cur_ch_offset, pmlmeext->cur_bwmode);
205 void init_mlme_default_rate_set(struct adapter *padapter)
207 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
209 unsigned char mixed_datarate[NumRates] = {_1M_RATE_, _2M_RATE_, _5M_RATE_, _11M_RATE_, _6M_RATE_, _9M_RATE_, _12M_RATE_, _18M_RATE_, _24M_RATE_, _36M_RATE_, _48M_RATE_, _54M_RATE_, 0xff};
210 unsigned char mixed_basicrate[NumRates] = {_1M_RATE_, _2M_RATE_, _5M_RATE_, _11M_RATE_, _6M_RATE_, _12M_RATE_, _24M_RATE_, 0xff,};
211 unsigned char supported_mcs_set[16] = {0xff, 0xff, 0x00, 0x00, 0x01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0};
213 memcpy(pmlmeext->datarate, mixed_datarate, NumRates);
214 memcpy(pmlmeext->basicrate, mixed_basicrate, NumRates);
216 memcpy(pmlmeext->default_supported_mcs_set, supported_mcs_set, sizeof(pmlmeext->default_supported_mcs_set));
219 static void init_mlme_ext_priv_value(struct adapter *padapter)
221 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
222 struct mlme_ext_info *pmlmeinfo = &pmlmeext->mlmext_info;
224 atomic_set(&pmlmeext->event_seq, 0);
225 pmlmeext->mgnt_seq = 0;/* reset to zero when disconnect at client mode */
226 pmlmeext->sa_query_seq = 0;
227 pmlmeext->mgnt_80211w_IPN = 0;
228 pmlmeext->mgnt_80211w_IPN_rx = 0;
229 pmlmeext->cur_channel = padapter->registrypriv.channel;
230 pmlmeext->cur_bwmode = CHANNEL_WIDTH_20;
231 pmlmeext->cur_ch_offset = HAL_PRIME_CHNL_OFFSET_DONT_CARE;
235 pmlmeext->cur_wireless_mode = padapter->registrypriv.wireless_mode;
237 init_mlme_default_rate_set(padapter);
239 pmlmeext->tx_rate = IEEE80211_CCK_RATE_1MB;
240 pmlmeext->sitesurvey_res.state = SCAN_DISABLE;
241 pmlmeext->sitesurvey_res.channel_idx = 0;
242 pmlmeext->sitesurvey_res.bss_cnt = 0;
243 pmlmeext->scan_abort = false;
245 pmlmeinfo->state = WIFI_FW_NULL_STATE;
246 pmlmeinfo->reauth_count = 0;
247 pmlmeinfo->reassoc_count = 0;
248 pmlmeinfo->link_count = 0;
249 pmlmeinfo->auth_seq = 0;
250 pmlmeinfo->auth_algo = dot11AuthAlgrthm_Open;
251 pmlmeinfo->key_index = 0;
254 pmlmeinfo->enc_algo = _NO_PRIVACY_;
255 pmlmeinfo->authModeToggle = 0;
257 memset(pmlmeinfo->chg_txt, 0, 128);
259 pmlmeinfo->slotTime = SHORT_SLOT_TIME;
260 pmlmeinfo->preamble_mode = PREAMBLE_AUTO;
262 pmlmeinfo->dialogToken = 0;
264 pmlmeext->action_public_rxseq = 0xffff;
265 pmlmeext->action_public_dialog_token = 0xff;
268 static int has_channel(struct rt_channel_info *channel_set,
274 for (i = 0; i < chanset_size; i++)
275 if (channel_set[i].ChannelNum == chan)
281 static void init_channel_list(struct adapter *padapter, struct rt_channel_info *channel_set,
283 struct p2p_channels *channel_list)
286 static const struct p2p_oper_class_map op_class[] = {
287 { IEEE80211G, 81, 1, 13, 1, BW20 },
288 { IEEE80211G, 82, 14, 14, 1, BW20 },
289 { IEEE80211A, 115, 36, 48, 4, BW20 },
290 { IEEE80211A, 116, 36, 44, 8, BW40PLUS },
291 { IEEE80211A, 117, 40, 48, 8, BW40MINUS },
292 { IEEE80211A, 124, 149, 161, 4, BW20 },
293 { IEEE80211A, 125, 149, 169, 4, BW20 },
294 { IEEE80211A, 126, 149, 157, 8, BW40PLUS },
295 { IEEE80211A, 127, 153, 161, 8, BW40MINUS },
296 { -1, 0, 0, 0, 0, BW20 }
303 for (op = 0; op_class[op].op_class; op++) {
305 const struct p2p_oper_class_map *o = &op_class[op];
306 struct p2p_reg_class *reg = NULL;
308 for (ch = o->min_chan; ch <= o->max_chan; ch += o->inc) {
309 if (!has_channel(channel_set, chanset_size, ch))
312 if ((padapter->registrypriv.ht_enable == 0) && (o->inc == 8))
315 if ((0 < (padapter->registrypriv.bw_mode & 0xf0)) &&
316 ((o->bw == BW40MINUS) || (o->bw == BW40PLUS)))
320 reg = &channel_list->reg_class[cla];
322 reg->reg_class = o->op_class;
325 reg->channel[reg->channels] = ch;
329 channel_list->reg_classes = cla;
333 static u8 init_channel_set(struct adapter *padapter, u8 ChannelPlan, struct rt_channel_info *channel_set)
335 u8 index, chanset_size = 0;
336 u8 b2_4GBand = false;
339 memset(channel_set, 0, sizeof(struct rt_channel_info)*MAX_CHANNEL_NUM);
341 if (ChannelPlan >= RT_CHANNEL_DOMAIN_MAX && ChannelPlan != RT_CHANNEL_DOMAIN_REALTEK_DEFINE)
344 if (is_supported_24g(padapter->registrypriv.wireless_mode)) {
346 if (ChannelPlan == RT_CHANNEL_DOMAIN_REALTEK_DEFINE)
347 Index2G = RTW_CHANNEL_PLAN_MAP_REALTEK_DEFINE.Index2G;
349 Index2G = RTW_ChannelPlanMap[ChannelPlan].Index2G;
353 for (index = 0; index < RTW_ChannelPlan2G[Index2G].Len; index++) {
354 channel_set[chanset_size].ChannelNum = RTW_ChannelPlan2G[Index2G].Channel[index];
356 if ((ChannelPlan == RT_CHANNEL_DOMAIN_GLOBAL_DOAMIN) ||/* Channel 1~11 is active, and 12~14 is passive */
357 (ChannelPlan == RT_CHANNEL_DOMAIN_GLOBAL_NULL)) {
358 if (channel_set[chanset_size].ChannelNum >= 1 && channel_set[chanset_size].ChannelNum <= 11)
359 channel_set[chanset_size].ScanType = SCAN_ACTIVE;
360 else if ((channel_set[chanset_size].ChannelNum >= 12 && channel_set[chanset_size].ChannelNum <= 14))
361 channel_set[chanset_size].ScanType = SCAN_PASSIVE;
362 } else if (ChannelPlan == RT_CHANNEL_DOMAIN_WORLD_WIDE_13 ||
363 Index2G == RT_CHANNEL_DOMAIN_2G_WORLD) { /* channel 12~13, passive scan */
364 if (channel_set[chanset_size].ChannelNum <= 11)
365 channel_set[chanset_size].ScanType = SCAN_ACTIVE;
367 channel_set[chanset_size].ScanType = SCAN_PASSIVE;
369 channel_set[chanset_size].ScanType = SCAN_ACTIVE;
378 void init_mlme_ext_priv(struct adapter *padapter)
380 struct registry_priv *pregistrypriv = &padapter->registrypriv;
381 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
382 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
383 struct mlme_ext_info *pmlmeinfo = &pmlmeext->mlmext_info;
385 pmlmeext->padapter = padapter;
387 /* fill_fwpriv(padapter, &(pmlmeext->fwpriv)); */
389 init_mlme_ext_priv_value(padapter);
390 pmlmeinfo->accept_addba_req = pregistrypriv->accept_addba_req;
392 init_mlme_ext_timer(padapter);
394 init_mlme_ap_info(padapter);
396 pmlmeext->max_chan_nums = init_channel_set(padapter, pmlmepriv->ChannelPlan, pmlmeext->channel_set);
397 init_channel_list(padapter, pmlmeext->channel_set, pmlmeext->max_chan_nums, &pmlmeext->channel_list);
398 pmlmeext->last_scan_time = 0;
399 pmlmeext->chan_scan_time = SURVEY_TO;
400 pmlmeext->mlmeext_init = true;
401 pmlmeext->active_keep_alive_check = true;
403 #ifdef DBG_FIXED_CHAN
404 pmlmeext->fixed_chan = 0xFF;
408 void free_mlme_ext_priv(struct mlme_ext_priv *pmlmeext)
410 struct adapter *padapter = pmlmeext->padapter;
415 if (padapter->bDriverStopped) {
416 del_timer_sync(&pmlmeext->survey_timer);
417 del_timer_sync(&pmlmeext->link_timer);
418 /* del_timer_sync(&pmlmeext->ADDBA_timer); */
422 static void _mgt_dispatcher(struct adapter *padapter, struct mlme_handler *ptable, union recv_frame *precv_frame)
424 u8 bc_addr[ETH_ALEN] = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
425 u8 *pframe = precv_frame->u.hdr.rx_data;
428 /* receive the frames that ra(a1) is my address or ra(a1) is bc address. */
429 if (memcmp(GetAddr1Ptr(pframe), myid(&padapter->eeprompriv), ETH_ALEN) &&
430 memcmp(GetAddr1Ptr(pframe), bc_addr, ETH_ALEN))
433 ptable->func(padapter, precv_frame);
437 void mgt_dispatcher(struct adapter *padapter, union recv_frame *precv_frame)
440 struct mlme_handler *ptable;
441 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
442 u8 bc_addr[ETH_ALEN] = {0xff, 0xff, 0xff, 0xff, 0xff, 0xff};
443 u8 *pframe = precv_frame->u.hdr.rx_data;
444 struct sta_info *psta = rtw_get_stainfo(&padapter->stapriv, GetAddr2Ptr(pframe));
445 struct dvobj_priv *psdpriv = padapter->dvobj;
446 struct debug_priv *pdbgpriv = &psdpriv->drv_dbg;
448 if (GetFrameType(pframe) != WIFI_MGT_TYPE)
451 /* receive the frames that ra(a1) is my address or ra(a1) is bc address. */
452 if (memcmp(GetAddr1Ptr(pframe), myid(&padapter->eeprompriv), ETH_ALEN) &&
453 memcmp(GetAddr1Ptr(pframe), bc_addr, ETH_ALEN)) {
457 ptable = mlme_sta_tbl;
459 index = GetFrameSubType(pframe) >> 4;
461 if (index >= ARRAY_SIZE(mlme_sta_tbl))
467 if (GetRetry(pframe)) {
468 if (precv_frame->u.hdr.attrib.seq_num == psta->RxMgmtFrameSeqNum) {
469 /* drop the duplicate management frame */
470 pdbgpriv->dbg_rx_dup_mgt_frame_drop_count++;
474 psta->RxMgmtFrameSeqNum = precv_frame->u.hdr.attrib.seq_num;
477 switch (GetFrameSubType(pframe)) {
479 if (check_fwstate(pmlmepriv, WIFI_AP_STATE))
480 ptable->func = &OnAuth;
482 ptable->func = &OnAuthClient;
485 case WIFI_REASSOCREQ:
486 _mgt_dispatcher(padapter, ptable, precv_frame);
489 _mgt_dispatcher(padapter, ptable, precv_frame);
492 _mgt_dispatcher(padapter, ptable, precv_frame);
495 /* if (check_fwstate(pmlmepriv, WIFI_AP_STATE) == true) */
496 _mgt_dispatcher(padapter, ptable, precv_frame);
499 _mgt_dispatcher(padapter, ptable, precv_frame);
504 /****************************************************************************
506 Following are the callback functions for each subtype of the management frames
508 *****************************************************************************/
510 unsigned int OnProbeReq(struct adapter *padapter, union recv_frame *precv_frame)
514 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
515 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
516 struct mlme_ext_info *pmlmeinfo = &pmlmeext->mlmext_info;
517 struct wlan_bssid_ex *cur = &pmlmeinfo->network;
518 u8 *pframe = precv_frame->u.hdr.rx_data;
519 uint len = precv_frame->u.hdr.len;
520 u8 is_valid_p2p_probereq = false;
522 if (check_fwstate(pmlmepriv, WIFI_STATION_STATE))
525 if (check_fwstate(pmlmepriv, _FW_LINKED) == false &&
526 check_fwstate(pmlmepriv, WIFI_ADHOC_MASTER_STATE|WIFI_AP_STATE) == false) {
530 p = rtw_get_ie(pframe + WLAN_HDR_A3_LEN + _PROBEREQ_IE_OFFSET_, WLAN_EID_SSID, (int *)&ielen,
531 len - WLAN_HDR_A3_LEN - _PROBEREQ_IE_OFFSET_);
534 /* check (wildcard) SSID */
536 if (is_valid_p2p_probereq)
537 goto _issue_probersp;
539 if ((ielen != 0 && false == !memcmp((void *)(p+2), (void *)cur->ssid.ssid, cur->ssid.ssid_length))
540 || (ielen == 0 && pmlmeinfo->hidden_ssid_mode)
545 if ((check_fwstate(pmlmepriv, _FW_LINKED) &&
546 pmlmepriv->cur_network.join_res) ||
547 check_fwstate(pmlmepriv, WIFI_ADHOC_MASTER_STATE))
548 issue_probersp(padapter, get_sa(pframe), is_valid_p2p_probereq);
555 unsigned int OnProbeRsp(struct adapter *padapter, union recv_frame *precv_frame)
557 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
559 if (pmlmeext->sitesurvey_res.state == SCAN_PROCESS) {
560 report_survey_event(padapter, precv_frame);
568 unsigned int OnBeacon(struct adapter *padapter, union recv_frame *precv_frame)
571 struct sta_info *psta;
572 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
573 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
574 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
575 struct sta_priv *pstapriv = &padapter->stapriv;
576 u8 *pframe = precv_frame->u.hdr.rx_data;
577 uint len = precv_frame->u.hdr.len;
578 struct wlan_bssid_ex *pbss;
583 p = rtw_get_ie(pframe + sizeof(struct ieee80211_hdr_3addr) + _BEACON_IE_OFFSET_, WLAN_EID_EXT_SUPP_RATES, &ielen, precv_frame->u.hdr.len - sizeof(struct ieee80211_hdr_3addr) - _BEACON_IE_OFFSET_);
584 if (p && ielen > 0) {
585 if ((*(p + 1 + ielen) == 0x2D) && (*(p + 2 + ielen) != 0x2D))
586 /* Invalid value 0x2D is detected in Extended Supported Rates (ESR) IE. Try to fix the IE length to avoid failed Beacon parsing. */
587 *(p + 1) = ielen - 1;
590 if (pmlmeext->sitesurvey_res.state == SCAN_PROCESS) {
591 report_survey_event(padapter, precv_frame);
595 if (!memcmp(GetAddr3Ptr(pframe), get_my_bssid(&pmlmeinfo->network), ETH_ALEN)) {
596 if (pmlmeinfo->state & WIFI_FW_AUTH_NULL) {
597 /* we should update current network before auth, or some IE is wrong */
598 pbss = rtw_malloc(sizeof(struct wlan_bssid_ex));
600 if (collect_bss_info(padapter, precv_frame, pbss) == _SUCCESS) {
601 update_network(&(pmlmepriv->cur_network.network), pbss, padapter, true);
602 rtw_get_bcn_info(&(pmlmepriv->cur_network));
607 /* check the vendor of the assoc AP */
608 pmlmeinfo->assoc_AP_vendor = check_assoc_AP(pframe+sizeof(struct ieee80211_hdr_3addr), len-sizeof(struct ieee80211_hdr_3addr));
610 /* update TSF Value */
611 update_TSF(pmlmeext, pframe, len);
613 /* reset for adaptive_early_32k */
614 pmlmeext->adaptive_tsf_done = false;
615 pmlmeext->DrvBcnEarly = 0xff;
616 pmlmeext->DrvBcnTimeOut = 0xff;
617 pmlmeext->bcn_cnt = 0;
618 memset(pmlmeext->bcn_delay_cnt, 0, sizeof(pmlmeext->bcn_delay_cnt));
619 memset(pmlmeext->bcn_delay_ratio, 0, sizeof(pmlmeext->bcn_delay_ratio));
622 start_clnt_auth(padapter);
627 if (((pmlmeinfo->state&0x03) == WIFI_FW_STATION_STATE) && (pmlmeinfo->state & WIFI_FW_ASSOC_SUCCESS)) {
628 psta = rtw_get_stainfo(pstapriv, GetAddr2Ptr(pframe));
630 ret = rtw_check_bcn_info(padapter, pframe, len);
632 netdev_dbg(padapter->pnetdev,
633 "ap has changed, disconnect now\n ");
634 receive_disconnect(padapter,
635 pmlmeinfo->network.mac_address, 0);
638 /* update WMM, ERP in the beacon */
639 /* todo: the timer is used instead of the number of the beacon received */
640 if ((sta_rx_pkts(psta) & 0xf) == 0)
641 update_beacon_info(padapter, pframe, len, psta);
643 adaptive_early_32k(pmlmeext, pframe, len);
645 } else if ((pmlmeinfo->state&0x03) == WIFI_FW_ADHOC_STATE) {
646 psta = rtw_get_stainfo(pstapriv, GetAddr2Ptr(pframe));
648 /* update WMM, ERP in the beacon */
649 /* todo: the timer is used instead of the number of the beacon received */
650 if ((sta_rx_pkts(psta) & 0xf) == 0)
651 update_beacon_info(padapter, pframe, len, psta);
653 /* allocate a new CAM entry for IBSS station */
654 cam_idx = allocate_fw_sta_entry(padapter);
655 if (cam_idx == NUM_STA)
658 /* get supported rate */
659 if (update_sta_support_rate(padapter, (pframe + WLAN_HDR_A3_LEN + _BEACON_IE_OFFSET_), (len - WLAN_HDR_A3_LEN - _BEACON_IE_OFFSET_), cam_idx) == _FAIL) {
660 pmlmeinfo->FW_sta_info[cam_idx].status = 0;
664 /* update TSF Value */
665 update_TSF(pmlmeext, pframe, len);
667 /* report sta add event */
668 report_add_sta_event(padapter, GetAddr2Ptr(pframe), cam_idx);
679 unsigned int OnAuth(struct adapter *padapter, union recv_frame *precv_frame)
681 unsigned int auth_mode, seq, ie_len;
682 unsigned char *sa, *p;
685 static struct sta_info stat;
686 struct sta_info *pstat = NULL;
687 struct sta_priv *pstapriv = &padapter->stapriv;
688 struct security_priv *psecuritypriv = &padapter->securitypriv;
689 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
690 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
691 u8 *pframe = precv_frame->u.hdr.rx_data;
692 uint len = precv_frame->u.hdr.len;
695 if ((pmlmeinfo->state&0x03) != WIFI_FW_AP_STATE)
698 sa = GetAddr2Ptr(pframe);
700 auth_mode = psecuritypriv->dot11AuthAlgrthm;
702 if (GetPrivacy(pframe)) {
704 struct rx_pkt_attrib *prxattrib = &(precv_frame->u.hdr.attrib);
706 prxattrib->hdrlen = WLAN_HDR_A3_LEN;
707 prxattrib->encrypt = _WEP40_;
709 iv = pframe+prxattrib->hdrlen;
710 prxattrib->key_index = ((iv[3]>>6)&0x3);
712 prxattrib->iv_len = 4;
713 prxattrib->icv_len = 4;
715 rtw_wep_decrypt(padapter, (u8 *)precv_frame);
720 algorithm = le16_to_cpu(*(__le16 *)((SIZE_PTR)pframe + WLAN_HDR_A3_LEN + offset));
721 seq = le16_to_cpu(*(__le16 *)((SIZE_PTR)pframe + WLAN_HDR_A3_LEN + offset + 2));
723 if (auth_mode == 2 &&
724 psecuritypriv->dot11PrivacyAlgrthm != _WEP40_ &&
725 psecuritypriv->dot11PrivacyAlgrthm != _WEP104_)
728 if ((algorithm > 0 && auth_mode == 0) || /* rx a shared-key auth but shared not enabled */
729 (algorithm == 0 && auth_mode == 1)) { /* rx a open-system auth but shared-key is enabled */
731 status = WLAN_STATUS_NOT_SUPPORTED_AUTH_ALG;
736 if (rtw_access_ctrl(padapter, sa) == false) {
737 status = WLAN_STATUS_AP_UNABLE_TO_HANDLE_NEW_STA;
741 pstat = rtw_get_stainfo(pstapriv, sa);
744 /* allocate a new one */
745 pstat = rtw_alloc_stainfo(pstapriv, sa);
747 status = WLAN_STATUS_AP_UNABLE_TO_HANDLE_NEW_STA;
751 pstat->state = WIFI_FW_AUTH_NULL;
754 /* pstat->flags = 0; */
755 /* pstat->capability = 0; */
758 spin_lock_bh(&pstapriv->asoc_list_lock);
759 if (list_empty(&pstat->asoc_list) == false) {
760 list_del_init(&pstat->asoc_list);
761 pstapriv->asoc_list_cnt--;
762 if (pstat->expire_to > 0) {
763 /* TODO: STA re_auth within expire_to */
766 spin_unlock_bh(&pstapriv->asoc_list_lock);
769 /* TODO: STA re_auth and auth timeout */
773 spin_lock_bh(&pstapriv->auth_list_lock);
774 if (list_empty(&pstat->auth_list)) {
776 list_add_tail(&pstat->auth_list, &pstapriv->auth_list);
777 pstapriv->auth_list_cnt++;
779 spin_unlock_bh(&pstapriv->auth_list_lock);
781 if (pstat->auth_seq == 0)
782 pstat->expire_to = pstapriv->auth_to;
785 if ((pstat->auth_seq + 1) != seq) {
786 status = WLAN_STATUS_UNKNOWN_AUTH_TRANSACTION;
790 if (algorithm == 0 && (auth_mode == 0 || auth_mode == 2 || auth_mode == 3)) {
792 pstat->state &= ~WIFI_FW_AUTH_NULL;
793 pstat->state |= WIFI_FW_AUTH_SUCCESS;
794 pstat->expire_to = pstapriv->assoc_to;
795 pstat->authalg = algorithm;
797 status = WLAN_STATUS_UNKNOWN_AUTH_TRANSACTION;
800 } else { /* shared system or auto authentication */
802 /* prepare for the challenging txt... */
803 memset((void *)pstat->chg_txt, 78, 128);
805 pstat->state &= ~WIFI_FW_AUTH_NULL;
806 pstat->state |= WIFI_FW_AUTH_STATE;
807 pstat->authalg = algorithm;
808 } else if (seq == 3) {
810 p = rtw_get_ie(pframe + WLAN_HDR_A3_LEN + 4 + _AUTH_IE_OFFSET_, WLAN_EID_CHALLENGE, (int *)&ie_len,
811 len - WLAN_HDR_A3_LEN - _AUTH_IE_OFFSET_ - 4);
813 if (!p || ie_len <= 0) {
814 status = WLAN_STATUS_CHALLENGE_FAIL;
818 if (!memcmp((void *)(p + 2), pstat->chg_txt, 128)) {
819 pstat->state &= (~WIFI_FW_AUTH_STATE);
820 pstat->state |= WIFI_FW_AUTH_SUCCESS;
821 /* challenging txt is correct... */
822 pstat->expire_to = pstapriv->assoc_to;
824 status = WLAN_STATUS_CHALLENGE_FAIL;
828 status = WLAN_STATUS_UNKNOWN_AUTH_TRANSACTION;
834 /* Now, we are going to issue_auth... */
835 pstat->auth_seq = seq + 1;
837 issue_auth(padapter, pstat, (unsigned short)(WLAN_STATUS_SUCCESS));
839 if (pstat->state & WIFI_FW_AUTH_SUCCESS)
848 rtw_free_stainfo(padapter, pstat);
851 memset((char *)pstat, '\0', sizeof(stat));
853 memcpy(pstat->hwaddr, sa, 6);
855 issue_auth(padapter, pstat, (unsigned short)status);
861 unsigned int OnAuthClient(struct adapter *padapter, union recv_frame *precv_frame)
863 unsigned int seq, len, status, offset;
865 unsigned int go2asoc = 0;
866 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
867 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
868 u8 *pframe = precv_frame->u.hdr.rx_data;
869 uint pkt_len = precv_frame->u.hdr.len;
871 /* check A1 matches or not */
872 if (memcmp(myid(&(padapter->eeprompriv)), get_da(pframe), ETH_ALEN))
875 if (!(pmlmeinfo->state & WIFI_FW_AUTH_STATE))
878 offset = (GetPrivacy(pframe)) ? 4 : 0;
880 seq = le16_to_cpu(*(__le16 *)((SIZE_PTR)pframe + WLAN_HDR_A3_LEN + offset + 2));
881 status = le16_to_cpu(*(__le16 *)((SIZE_PTR)pframe + WLAN_HDR_A3_LEN + offset + 4));
884 if (status == 13) { /* pmlmeinfo->auth_algo == dot11AuthAlgrthm_Auto) */
885 if (pmlmeinfo->auth_algo == dot11AuthAlgrthm_Shared)
886 pmlmeinfo->auth_algo = dot11AuthAlgrthm_Open;
888 pmlmeinfo->auth_algo = dot11AuthAlgrthm_Shared;
889 /* pmlmeinfo->reauth_count = 0; */
892 set_link_timer(pmlmeext, 1);
897 if (pmlmeinfo->auth_algo == dot11AuthAlgrthm_Shared) {
898 /* legendary shared system */
899 p = rtw_get_ie(pframe + WLAN_HDR_A3_LEN + _AUTH_IE_OFFSET_, WLAN_EID_CHALLENGE, (int *)&len,
900 pkt_len - WLAN_HDR_A3_LEN - _AUTH_IE_OFFSET_);
905 memcpy((void *)(pmlmeinfo->chg_txt), (void *)(p + 2), len);
906 pmlmeinfo->auth_seq = 3;
907 issue_auth(padapter, NULL, 0);
908 set_link_timer(pmlmeext, REAUTH_TO);
914 } else if (seq == 4) {
915 if (pmlmeinfo->auth_algo == dot11AuthAlgrthm_Shared)
920 /* this is also illegal */
925 netdev_dbg(padapter->pnetdev, "auth success, start assoc\n");
926 start_clnt_assoc(padapter);
932 /* pmlmeinfo->state &= ~(WIFI_FW_AUTH_STATE); */
938 unsigned int OnAssocReq(struct adapter *padapter, union recv_frame *precv_frame)
941 struct rtw_ieee802_11_elems elems;
942 struct sta_info *pstat;
943 unsigned char *p, *pos, *wpa_ie;
944 unsigned char WMM_IE[] = {0x00, 0x50, 0xf2, 0x02, 0x00, 0x01};
945 int i, ie_len, wpa_ie_len, left;
946 unsigned char supportRate[16];
948 unsigned short status = WLAN_STATUS_SUCCESS;
949 unsigned short frame_type, ie_offset = 0;
950 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
951 struct security_priv *psecuritypriv = &padapter->securitypriv;
952 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
953 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
954 struct wlan_bssid_ex *cur = &(pmlmeinfo->network);
955 struct sta_priv *pstapriv = &padapter->stapriv;
956 u8 *pframe = precv_frame->u.hdr.rx_data;
957 uint pkt_len = precv_frame->u.hdr.len;
959 if ((pmlmeinfo->state&0x03) != WIFI_FW_AP_STATE)
962 frame_type = GetFrameSubType(pframe);
963 if (frame_type == WIFI_ASSOCREQ)
964 ie_offset = _ASOCREQ_IE_OFFSET_;
965 else /* WIFI_REASSOCREQ */
966 ie_offset = _REASOCREQ_IE_OFFSET_;
969 if (pkt_len < sizeof(struct ieee80211_hdr_3addr) + ie_offset)
972 pstat = rtw_get_stainfo(pstapriv, GetAddr2Ptr(pframe));
974 status = WLAN_REASON_CLASS2_FRAME_FROM_NONAUTH_STA;
975 goto asoc_class2_error;
978 capab_info = get_unaligned_le16(pframe + WLAN_HDR_A3_LEN);
979 /* capab_info = le16_to_cpu(*(unsigned short *)(pframe + WLAN_HDR_A3_LEN)); */
981 left = pkt_len - (sizeof(struct ieee80211_hdr_3addr) + ie_offset);
982 pos = pframe + (sizeof(struct ieee80211_hdr_3addr) + ie_offset);
984 /* check if this stat has been successfully authenticated/assocated */
985 if (!((pstat->state) & WIFI_FW_AUTH_SUCCESS)) {
986 if (!((pstat->state) & WIFI_FW_ASSOC_SUCCESS)) {
987 status = WLAN_REASON_CLASS2_FRAME_FROM_NONAUTH_STA;
988 goto asoc_class2_error;
990 pstat->state &= (~WIFI_FW_ASSOC_SUCCESS);
991 pstat->state |= WIFI_FW_ASSOC_STATE;
994 pstat->state &= (~WIFI_FW_AUTH_SUCCESS);
995 pstat->state |= WIFI_FW_ASSOC_STATE;
999 pstat->capability = capab_info;
1001 /* now parse all ieee802_11 ie to point to elems */
1002 if (rtw_ieee802_11_parse_elems(pos, left, &elems, 1) == ParseFailed ||
1004 status = WLAN_STATUS_CHALLENGE_FAIL;
1005 goto OnAssocReqFail;
1008 /* now we should check all the fields... */
1010 p = rtw_get_ie(pframe + WLAN_HDR_A3_LEN + ie_offset, WLAN_EID_SSID, &ie_len,
1011 pkt_len - WLAN_HDR_A3_LEN - ie_offset);
1013 if (!p || ie_len == 0) {
1014 /* broadcast ssid, however it is not allowed in assocreq */
1015 status = WLAN_STATUS_CHALLENGE_FAIL;
1016 goto OnAssocReqFail;
1018 /* check if ssid match */
1019 if (memcmp((void *)(p+2), cur->ssid.ssid, cur->ssid.ssid_length))
1020 status = WLAN_STATUS_CHALLENGE_FAIL;
1022 if (ie_len != cur->ssid.ssid_length)
1023 status = WLAN_STATUS_CHALLENGE_FAIL;
1026 if (status != WLAN_STATUS_SUCCESS)
1027 goto OnAssocReqFail;
1029 /* check if the supported rate is ok */
1030 p = rtw_get_ie(pframe + WLAN_HDR_A3_LEN + ie_offset, WLAN_EID_SUPP_RATES, &ie_len, pkt_len - WLAN_HDR_A3_LEN - ie_offset);
1032 /* use our own rate set as statoin used */
1033 /* memcpy(supportRate, AP_BSSRATE, AP_BSSRATE_LEN); */
1034 /* supportRateNum = AP_BSSRATE_LEN; */
1036 status = WLAN_STATUS_CHALLENGE_FAIL;
1037 goto OnAssocReqFail;
1039 memcpy(supportRate, p+2, ie_len);
1040 supportRateNum = ie_len;
1042 p = rtw_get_ie(pframe + WLAN_HDR_A3_LEN + ie_offset, WLAN_EID_EXT_SUPP_RATES, &ie_len,
1043 pkt_len - WLAN_HDR_A3_LEN - ie_offset);
1046 if (supportRateNum <= sizeof(supportRate)) {
1047 memcpy(supportRate+supportRateNum, p+2, ie_len);
1048 supportRateNum += ie_len;
1053 /* todo: mask supportRate between AP & STA -> move to update raid */
1054 /* get_matched_rate(pmlmeext, supportRate, &supportRateNum, 0); */
1056 /* update station supportRate */
1057 pstat->bssratelen = supportRateNum;
1058 memcpy(pstat->bssrateset, supportRate, supportRateNum);
1059 UpdateBrateTblForSoftAP(pstat->bssrateset, pstat->bssratelen);
1061 /* check RSN/WPA/WPS */
1062 pstat->dot8021xalg = 0;
1064 pstat->wpa_group_cipher = 0;
1065 pstat->wpa2_group_cipher = 0;
1066 pstat->wpa_pairwise_cipher = 0;
1067 pstat->wpa2_pairwise_cipher = 0;
1068 memset(pstat->wpa_ie, 0, sizeof(pstat->wpa_ie));
1069 if ((psecuritypriv->wpa_psk & BIT(1)) && elems.rsn_ie) {
1071 int group_cipher = 0, pairwise_cipher = 0;
1073 wpa_ie = elems.rsn_ie;
1074 wpa_ie_len = elems.rsn_ie_len;
1076 if (rtw_parse_wpa2_ie(wpa_ie-2, wpa_ie_len+2, &group_cipher, &pairwise_cipher, NULL) == _SUCCESS) {
1077 pstat->dot8021xalg = 1;/* psk, todo:802.1x */
1078 pstat->wpa_psk |= BIT(1);
1080 pstat->wpa2_group_cipher = group_cipher&psecuritypriv->wpa2_group_cipher;
1081 pstat->wpa2_pairwise_cipher = pairwise_cipher&psecuritypriv->wpa2_pairwise_cipher;
1083 if (!pstat->wpa2_group_cipher)
1084 status = WLAN_STATUS_INVALID_GROUP_CIPHER;
1086 if (!pstat->wpa2_pairwise_cipher)
1087 status = WLAN_STATUS_INVALID_PAIRWISE_CIPHER;
1089 status = WLAN_STATUS_INVALID_IE;
1092 } else if ((psecuritypriv->wpa_psk & BIT(0)) && elems.wpa_ie) {
1094 int group_cipher = 0, pairwise_cipher = 0;
1096 wpa_ie = elems.wpa_ie;
1097 wpa_ie_len = elems.wpa_ie_len;
1099 if (rtw_parse_wpa_ie(wpa_ie-2, wpa_ie_len+2, &group_cipher, &pairwise_cipher, NULL) == _SUCCESS) {
1100 pstat->dot8021xalg = 1;/* psk, todo:802.1x */
1101 pstat->wpa_psk |= BIT(0);
1103 pstat->wpa_group_cipher = group_cipher&psecuritypriv->wpa_group_cipher;
1104 pstat->wpa_pairwise_cipher = pairwise_cipher&psecuritypriv->wpa_pairwise_cipher;
1106 if (!pstat->wpa_group_cipher)
1107 status = WLAN_STATUS_INVALID_GROUP_CIPHER;
1109 if (!pstat->wpa_pairwise_cipher)
1110 status = WLAN_STATUS_INVALID_PAIRWISE_CIPHER;
1113 status = WLAN_STATUS_INVALID_IE;
1121 if (status != WLAN_STATUS_SUCCESS)
1122 goto OnAssocReqFail;
1124 pstat->flags &= ~(WLAN_STA_WPS | WLAN_STA_MAYBE_WPS);
1127 pstat->flags |= WLAN_STA_WPS;
1128 /* wpabuf_free(sta->wps_ie); */
1129 /* sta->wps_ie = wpabuf_alloc_copy(elems.wps_ie + 4, */
1130 /* elems.wps_ie_len - 4); */
1132 pstat->flags |= WLAN_STA_MAYBE_WPS;
1136 /* AP support WPA/RSN, and sta is going to do WPS, but AP is not ready */
1137 /* that the selected registrar of AP is _FLASE */
1138 if ((psecuritypriv->wpa_psk > 0)
1139 && (pstat->flags & (WLAN_STA_WPS|WLAN_STA_MAYBE_WPS))) {
1140 if (pmlmepriv->wps_beacon_ie) {
1141 u8 selected_registrar = 0;
1143 rtw_get_wps_attr_content(pmlmepriv->wps_beacon_ie, pmlmepriv->wps_beacon_ie_len, WPS_ATTR_SELECTED_REGISTRAR, &selected_registrar, NULL);
1145 if (!selected_registrar) {
1146 status = WLAN_STATUS_AP_UNABLE_TO_HANDLE_NEW_STA;
1148 goto OnAssocReqFail;
1156 if (psecuritypriv->wpa_psk == 0) {
1157 status = WLAN_STATUS_INVALID_IE;
1159 goto OnAssocReqFail;
1164 pstat->flags |= WLAN_STA_WPS;
1167 copy_len = ((wpa_ie_len+2) > sizeof(pstat->wpa_ie)) ? (sizeof(pstat->wpa_ie)):(wpa_ie_len+2);
1172 memcpy(pstat->wpa_ie, wpa_ie-2, copy_len);
1177 /* check if there is WMM IE & support WWM-PS */
1178 pstat->flags &= ~WLAN_STA_WME;
1179 pstat->qos_option = 0;
1180 pstat->qos_info = 0;
1181 pstat->has_legacy_ac = true;
1182 pstat->uapsd_vo = 0;
1183 pstat->uapsd_vi = 0;
1184 pstat->uapsd_be = 0;
1185 pstat->uapsd_bk = 0;
1186 if (pmlmepriv->qospriv.qos_option) {
1187 p = pframe + WLAN_HDR_A3_LEN + ie_offset; ie_len = 0;
1189 p = rtw_get_ie(p, WLAN_EID_VENDOR_SPECIFIC, &ie_len, pkt_len - WLAN_HDR_A3_LEN - ie_offset);
1191 if (!memcmp(p+2, WMM_IE, 6)) {
1193 pstat->flags |= WLAN_STA_WME;
1195 pstat->qos_option = 1;
1196 pstat->qos_info = *(p+8);
1198 pstat->max_sp_len = (pstat->qos_info>>5)&0x3;
1200 if ((pstat->qos_info&0xf) != 0xf)
1201 pstat->has_legacy_ac = true;
1203 pstat->has_legacy_ac = false;
1205 if (pstat->qos_info&0xf) {
1206 if (pstat->qos_info&BIT(0))
1207 pstat->uapsd_vo = BIT(0)|BIT(1);
1209 pstat->uapsd_vo = 0;
1211 if (pstat->qos_info&BIT(1))
1212 pstat->uapsd_vi = BIT(0)|BIT(1);
1214 pstat->uapsd_vi = 0;
1216 if (pstat->qos_info&BIT(2))
1217 pstat->uapsd_bk = BIT(0)|BIT(1);
1219 pstat->uapsd_bk = 0;
1221 if (pstat->qos_info&BIT(3))
1222 pstat->uapsd_be = BIT(0)|BIT(1);
1224 pstat->uapsd_be = 0;
1237 /* save HT capabilities in the sta object */
1238 memset(&pstat->htpriv.ht_cap, 0, sizeof(struct ieee80211_ht_cap));
1239 if (elems.ht_capabilities && elems.ht_capabilities_len >= sizeof(struct ieee80211_ht_cap)) {
1240 pstat->flags |= WLAN_STA_HT;
1242 pstat->flags |= WLAN_STA_WME;
1244 memcpy(&pstat->htpriv.ht_cap, elems.ht_capabilities, sizeof(struct ieee80211_ht_cap));
1247 pstat->flags &= ~WLAN_STA_HT;
1250 if ((pmlmepriv->htpriv.ht_option == false) && (pstat->flags&WLAN_STA_HT)) {
1251 status = WLAN_STATUS_CHALLENGE_FAIL;
1252 goto OnAssocReqFail;
1256 if ((pstat->flags & WLAN_STA_HT) &&
1257 ((pstat->wpa2_pairwise_cipher&WPA_CIPHER_TKIP) ||
1258 (pstat->wpa_pairwise_cipher&WPA_CIPHER_TKIP))) {
1259 /* status = WLAN_STATUS_CIPHER_SUITE_REJECTED; */
1260 /* goto OnAssocReqFail; */
1262 pstat->flags |= WLAN_STA_NONERP;
1263 for (i = 0; i < pstat->bssratelen; i++) {
1264 if ((pstat->bssrateset[i] & 0x7f) > 22) {
1265 pstat->flags &= ~WLAN_STA_NONERP;
1270 if (pstat->capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
1271 pstat->flags |= WLAN_STA_SHORT_PREAMBLE;
1273 pstat->flags &= ~WLAN_STA_SHORT_PREAMBLE;
1277 if (status != WLAN_STATUS_SUCCESS)
1278 goto OnAssocReqFail;
1280 /* TODO: identify_proprietary_vendor_ie(); */
1281 /* Realtek proprietary IE */
1282 /* identify if this is Broadcom sta */
1283 /* identify if this is ralink sta */
1284 /* Customer proprietary IE */
1288 /* get a unique AID */
1289 if (pstat->aid == 0) {
1290 for (pstat->aid = 1; pstat->aid <= NUM_STA; pstat->aid++)
1291 if (!pstapriv->sta_aid[pstat->aid - 1])
1294 /* if (pstat->aid > NUM_STA) { */
1295 if (pstat->aid > pstapriv->max_num_sta) {
1299 status = WLAN_STATUS_AP_UNABLE_TO_HANDLE_NEW_STA;
1301 goto OnAssocReqFail;
1305 pstapriv->sta_aid[pstat->aid - 1] = pstat;
1310 pstat->state &= (~WIFI_FW_ASSOC_STATE);
1311 pstat->state |= WIFI_FW_ASSOC_SUCCESS;
1313 spin_lock_bh(&pstapriv->auth_list_lock);
1314 if (!list_empty(&pstat->auth_list)) {
1315 list_del_init(&pstat->auth_list);
1316 pstapriv->auth_list_cnt--;
1318 spin_unlock_bh(&pstapriv->auth_list_lock);
1320 spin_lock_bh(&pstapriv->asoc_list_lock);
1321 if (list_empty(&pstat->asoc_list)) {
1322 pstat->expire_to = pstapriv->expire_to;
1323 list_add_tail(&pstat->asoc_list, &pstapriv->asoc_list);
1324 pstapriv->asoc_list_cnt++;
1326 spin_unlock_bh(&pstapriv->asoc_list_lock);
1328 /* now the station is qualified to join our BSS... */
1329 if (pstat && (pstat->state & WIFI_FW_ASSOC_SUCCESS) && (status == WLAN_STATUS_SUCCESS)) {
1330 /* 1 bss_cap_update & sta_info_update */
1331 bss_cap_update_on_sta_join(padapter, pstat);
1332 sta_info_update(padapter, pstat);
1334 /* 2 issue assoc rsp before notify station join event. */
1335 if (frame_type == WIFI_ASSOCREQ)
1336 issue_asocrsp(padapter, status, pstat, WIFI_ASSOCRSP);
1338 issue_asocrsp(padapter, status, pstat, WIFI_REASSOCRSP);
1340 spin_lock_bh(&pstat->lock);
1341 kfree(pstat->passoc_req);
1342 pstat->assoc_req_len = 0;
1343 pstat->passoc_req = rtw_zmalloc(pkt_len);
1344 if (pstat->passoc_req) {
1345 memcpy(pstat->passoc_req, pframe, pkt_len);
1346 pstat->assoc_req_len = pkt_len;
1348 spin_unlock_bh(&pstat->lock);
1350 /* 3-(1) report sta add event */
1351 report_add_sta_event(padapter, pstat->hwaddr, pstat->aid);
1358 issue_deauth(padapter, (void *)GetAddr2Ptr(pframe), status);
1365 if (frame_type == WIFI_ASSOCREQ)
1366 issue_asocrsp(padapter, status, pstat, WIFI_ASSOCRSP);
1368 issue_asocrsp(padapter, status, pstat, WIFI_REASSOCRSP);
1373 unsigned int OnAssocRsp(struct adapter *padapter, union recv_frame *precv_frame)
1377 unsigned short status;
1378 struct ndis_80211_var_ie *pIE;
1379 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
1380 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
1381 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
1382 /* struct wlan_bssid_ex *cur_network = &(pmlmeinfo->network); */
1383 u8 *pframe = precv_frame->u.hdr.rx_data;
1384 uint pkt_len = precv_frame->u.hdr.len;
1386 /* check A1 matches or not */
1387 if (memcmp(myid(&(padapter->eeprompriv)), get_da(pframe), ETH_ALEN))
1390 if (!(pmlmeinfo->state & (WIFI_FW_AUTH_SUCCESS | WIFI_FW_ASSOC_STATE)))
1393 if (pmlmeinfo->state & WIFI_FW_ASSOC_SUCCESS)
1396 del_timer_sync(&pmlmeext->link_timer);
1399 status = le16_to_cpu(*(__le16 *)(pframe + WLAN_HDR_A3_LEN + 2));
1401 pmlmeinfo->state = WIFI_FW_NULL_STATE;
1403 goto report_assoc_result;
1406 /* get capabilities */
1407 pmlmeinfo->capability = le16_to_cpu(*(__le16 *)(pframe + WLAN_HDR_A3_LEN));
1410 pmlmeinfo->slotTime = (pmlmeinfo->capability & BIT(10)) ? 9 : 20;
1413 res = pmlmeinfo->aid = (int)(le16_to_cpu(*(__le16 *)(pframe + WLAN_HDR_A3_LEN + 4))&0x3fff);
1415 /* following are moved to join event callback function */
1416 /* to handle HT, WMM, rate adaptive, update MAC reg */
1417 /* for not to handle the synchronous IO in the tasklet */
1418 for (i = (6 + WLAN_HDR_A3_LEN); i < pkt_len;) {
1419 pIE = (struct ndis_80211_var_ie *)(pframe + i);
1421 switch (pIE->element_id) {
1422 case WLAN_EID_VENDOR_SPECIFIC:
1423 if (!memcmp(pIE->data, WMM_PARA_OUI, 6)) /* WMM */
1424 WMM_param_handler(padapter, pIE);
1427 case WLAN_EID_HT_CAPABILITY: /* HT caps */
1428 HT_caps_handler(padapter, pIE);
1431 case WLAN_EID_HT_OPERATION: /* HT info */
1432 HT_info_handler(padapter, pIE);
1435 case WLAN_EID_ERP_INFO:
1436 ERP_IE_handler(padapter, pIE);
1443 i += (pIE->length + 2);
1446 pmlmeinfo->state &= (~WIFI_FW_ASSOC_STATE);
1447 pmlmeinfo->state |= WIFI_FW_ASSOC_SUCCESS;
1449 /* Update Basic Rate Table for spec, 2010-12-28 , by thomas */
1450 UpdateBrateTbl(padapter, pmlmeinfo->network.supported_rates);
1452 report_assoc_result:
1454 rtw_buf_update(&pmlmepriv->assoc_rsp, &pmlmepriv->assoc_rsp_len, pframe, pkt_len);
1456 rtw_buf_free(&pmlmepriv->assoc_rsp, &pmlmepriv->assoc_rsp_len);
1458 report_join_res(padapter, res);
1463 unsigned int OnDeAuth(struct adapter *padapter, union recv_frame *precv_frame)
1465 unsigned short reason;
1466 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
1467 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
1468 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
1469 u8 *pframe = precv_frame->u.hdr.rx_data;
1470 int ignore_received_deauth = 0;
1473 if (memcmp(GetAddr3Ptr(pframe), get_my_bssid(&pmlmeinfo->network), ETH_ALEN))
1476 reason = le16_to_cpu(*(__le16 *)(pframe + WLAN_HDR_A3_LEN));
1478 if (check_fwstate(pmlmepriv, WIFI_AP_STATE)) {
1479 struct sta_info *psta;
1480 struct sta_priv *pstapriv = &padapter->stapriv;
1482 /* rtw_free_stainfo(padapter, psta); */
1484 netdev_dbg(padapter->pnetdev,
1485 "ap recv deauth reason code(%d) sta:%pM\n", reason,
1486 GetAddr2Ptr(pframe));
1488 psta = rtw_get_stainfo(pstapriv, GetAddr2Ptr(pframe));
1492 spin_lock_bh(&pstapriv->asoc_list_lock);
1493 if (list_empty(&psta->asoc_list) == false) {
1494 list_del_init(&psta->asoc_list);
1495 pstapriv->asoc_list_cnt--;
1496 updated = ap_free_sta(padapter, psta, false, reason);
1499 spin_unlock_bh(&pstapriv->asoc_list_lock);
1501 associated_clients_update(padapter, updated);
1508 /* Commented by Albert 20130604 */
1509 /* Before sending the auth frame to start the STA/GC mode connection with AP/GO, */
1510 /* we will send the deauth first. */
1511 /* However, the Win8.1 with BRCM Wi-Fi will send the deauth with reason code 6 to us after receieving our deauth. */
1512 /* Added the following code to avoid this case. */
1513 if ((pmlmeinfo->state & WIFI_FW_AUTH_STATE) ||
1514 (pmlmeinfo->state & WIFI_FW_ASSOC_STATE)) {
1515 if (reason == WLAN_REASON_CLASS2_FRAME_FROM_NONAUTH_STA) {
1516 ignore_received_deauth = 1;
1517 } else if (reason == WLAN_REASON_PREV_AUTH_NOT_VALID) {
1519 ignore_received_deauth = 1;
1523 netdev_dbg(padapter->pnetdev,
1524 "sta recv deauth reason code(%d) sta:%pM, ignore = %d\n",
1525 reason, GetAddr3Ptr(pframe),
1526 ignore_received_deauth);
1528 if (ignore_received_deauth == 0)
1529 receive_disconnect(padapter, GetAddr3Ptr(pframe), reason);
1531 pmlmepriv->LinkDetectInfo.bBusyTraffic = false;
1535 unsigned int OnDisassoc(struct adapter *padapter, union recv_frame *precv_frame)
1537 unsigned short reason;
1538 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
1539 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
1540 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
1541 u8 *pframe = precv_frame->u.hdr.rx_data;
1544 if (memcmp(GetAddr3Ptr(pframe), get_my_bssid(&pmlmeinfo->network), ETH_ALEN))
1547 reason = le16_to_cpu(*(__le16 *)(pframe + WLAN_HDR_A3_LEN));
1549 if (check_fwstate(pmlmepriv, WIFI_AP_STATE)) {
1550 struct sta_info *psta;
1551 struct sta_priv *pstapriv = &padapter->stapriv;
1553 /* rtw_free_stainfo(padapter, psta); */
1555 netdev_dbg(padapter->pnetdev,
1556 "ap recv disassoc reason code(%d) sta:%pM\n",
1557 reason, GetAddr2Ptr(pframe));
1559 psta = rtw_get_stainfo(pstapriv, GetAddr2Ptr(pframe));
1563 spin_lock_bh(&pstapriv->asoc_list_lock);
1564 if (list_empty(&psta->asoc_list) == false) {
1565 list_del_init(&psta->asoc_list);
1566 pstapriv->asoc_list_cnt--;
1567 updated = ap_free_sta(padapter, psta, false, reason);
1570 spin_unlock_bh(&pstapriv->asoc_list_lock);
1572 associated_clients_update(padapter, updated);
1577 netdev_dbg(padapter->pnetdev,
1578 "sta recv disassoc reason code(%d) sta:%pM\n",
1579 reason, GetAddr3Ptr(pframe));
1581 receive_disconnect(padapter, GetAddr3Ptr(pframe), reason);
1583 pmlmepriv->LinkDetectInfo.bBusyTraffic = false;
1588 unsigned int OnAtim(struct adapter *padapter, union recv_frame *precv_frame)
1593 unsigned int on_action_spct(struct adapter *padapter, union recv_frame *precv_frame)
1595 struct sta_info *psta = NULL;
1596 struct sta_priv *pstapriv = &padapter->stapriv;
1597 u8 *pframe = precv_frame->u.hdr.rx_data;
1598 u8 *frame_body = (u8 *)(pframe + sizeof(struct ieee80211_hdr_3addr));
1602 psta = rtw_get_stainfo(pstapriv, GetAddr2Ptr(pframe));
1607 category = frame_body[0];
1608 if (category != RTW_WLAN_CATEGORY_SPECTRUM_MGMT)
1611 action = frame_body[1];
1613 case WLAN_ACTION_SPCT_MSR_REQ:
1614 case WLAN_ACTION_SPCT_MSR_RPRT:
1615 case WLAN_ACTION_SPCT_TPC_REQ:
1616 case WLAN_ACTION_SPCT_TPC_RPRT:
1617 case WLAN_ACTION_SPCT_CHL_SWITCH:
1627 unsigned int OnAction_back(struct adapter *padapter, union recv_frame *precv_frame)
1630 struct sta_info *psta = NULL;
1631 struct recv_reorder_ctrl *preorder_ctrl;
1632 unsigned char *frame_body;
1633 unsigned char category, action;
1634 unsigned short tid, status;
1635 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
1636 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
1637 u8 *pframe = precv_frame->u.hdr.rx_data;
1638 struct sta_priv *pstapriv = &padapter->stapriv;
1640 /* check RA matches or not */
1641 if (memcmp(myid(&(padapter->eeprompriv)), GetAddr1Ptr(pframe), ETH_ALEN))/* for if1, sta/ap mode */
1644 if ((pmlmeinfo->state&0x03) != WIFI_FW_AP_STATE)
1645 if (!(pmlmeinfo->state & WIFI_FW_ASSOC_SUCCESS))
1648 addr = GetAddr2Ptr(pframe);
1649 psta = rtw_get_stainfo(pstapriv, addr);
1654 frame_body = (unsigned char *)(pframe + sizeof(struct ieee80211_hdr_3addr));
1656 category = frame_body[0];
1657 if (category == RTW_WLAN_CATEGORY_BACK) {/* representing Block Ack */
1658 if (!pmlmeinfo->HT_enable)
1661 action = frame_body[1];
1663 case WLAN_ACTION_ADDBA_REQ: /* ADDBA request */
1665 memcpy(&(pmlmeinfo->ADDBA_req), &(frame_body[2]), sizeof(struct ADDBA_request));
1666 /* process_addba_req(padapter, (u8 *)&(pmlmeinfo->ADDBA_req), GetAddr3Ptr(pframe)); */
1667 process_addba_req(padapter, (u8 *)&(pmlmeinfo->ADDBA_req), addr);
1669 if (pmlmeinfo->accept_addba_req)
1670 issue_action_BA(padapter, addr, WLAN_ACTION_ADDBA_RESP, 0);
1672 issue_action_BA(padapter, addr, WLAN_ACTION_ADDBA_RESP, 37);/* reject ADDBA Req */
1676 case WLAN_ACTION_ADDBA_RESP: /* ADDBA response */
1677 status = get_unaligned_le16(&frame_body[3]);
1678 tid = ((frame_body[5] >> 2) & 0x7);
1682 psta->htpriv.agg_enable_bitmap |= BIT(tid);
1683 psta->htpriv.candidate_tid_bitmap &= ~BIT(tid);
1685 psta->htpriv.agg_enable_bitmap &= ~BIT(tid);
1688 if (psta->state & WIFI_STA_ALIVE_CHK_STATE) {
1689 psta->htpriv.agg_enable_bitmap &= ~BIT(tid);
1690 psta->expire_to = pstapriv->expire_to;
1691 psta->state ^= WIFI_STA_ALIVE_CHK_STATE;
1696 case WLAN_ACTION_DELBA: /* DELBA */
1697 if ((frame_body[3] & BIT(3)) == 0) {
1698 psta->htpriv.agg_enable_bitmap &=
1699 ~BIT((frame_body[3] >> 4) & 0xf);
1700 psta->htpriv.candidate_tid_bitmap &=
1701 ~BIT((frame_body[3] >> 4) & 0xf);
1702 } else if ((frame_body[3] & BIT(3)) == BIT(3)) {
1703 tid = (frame_body[3] >> 4) & 0x0F;
1705 preorder_ctrl = &psta->recvreorder_ctrl[tid];
1706 preorder_ctrl->enable = false;
1707 preorder_ctrl->indicate_seq = 0xffff;
1709 /* todo: how to notify the host while receiving DELETE BA */
1719 static s32 rtw_action_public_decache(union recv_frame *recv_frame, s32 token)
1721 struct adapter *adapter = recv_frame->u.hdr.adapter;
1722 struct mlme_ext_priv *mlmeext = &(adapter->mlmeextpriv);
1723 u8 *frame = recv_frame->u.hdr.rx_data;
1724 u16 seq_ctrl = ((recv_frame->u.hdr.attrib.seq_num&0xffff) << 4) |
1725 (recv_frame->u.hdr.attrib.frag_num & 0xf);
1727 if (GetRetry(frame)) {
1729 if ((seq_ctrl == mlmeext->action_public_rxseq)
1730 && (token == mlmeext->action_public_dialog_token))
1733 if (seq_ctrl == mlmeext->action_public_rxseq)
1738 mlmeext->action_public_rxseq = seq_ctrl;
1741 mlmeext->action_public_dialog_token = token;
1746 static unsigned int on_action_public_p2p(union recv_frame *precv_frame)
1748 u8 *pframe = precv_frame->u.hdr.rx_data;
1752 frame_body = (unsigned char *)(pframe + sizeof(struct ieee80211_hdr_3addr));
1754 dialogToken = frame_body[7];
1756 if (rtw_action_public_decache(precv_frame, dialogToken) == _FAIL)
1762 static unsigned int on_action_public_vendor(union recv_frame *precv_frame)
1764 unsigned int ret = _FAIL;
1765 u8 *pframe = precv_frame->u.hdr.rx_data;
1766 u8 *frame_body = pframe + sizeof(struct ieee80211_hdr_3addr);
1768 if (!memcmp(frame_body + 2, P2P_OUI, 4))
1769 ret = on_action_public_p2p(precv_frame);
1774 static unsigned int on_action_public_default(union recv_frame *precv_frame, u8 action)
1776 unsigned int ret = _FAIL;
1777 u8 *pframe = precv_frame->u.hdr.rx_data;
1778 uint frame_len = precv_frame->u.hdr.len;
1779 u8 *frame_body = pframe + sizeof(struct ieee80211_hdr_3addr);
1781 struct adapter *adapter = precv_frame->u.hdr.adapter;
1784 token = frame_body[2];
1786 if (rtw_action_public_decache(precv_frame, token) == _FAIL)
1789 scnprintf(msg, sizeof(msg), "%s(token:%u)", action_public_str(action), token);
1790 rtw_cfg80211_rx_action(adapter, pframe, frame_len, msg);
1798 unsigned int on_action_public(struct adapter *padapter, union recv_frame *precv_frame)
1800 unsigned int ret = _FAIL;
1801 u8 *pframe = precv_frame->u.hdr.rx_data;
1802 u8 *frame_body = pframe + sizeof(struct ieee80211_hdr_3addr);
1803 u8 category, action;
1805 /* check RA matches or not */
1806 if (memcmp(myid(&(padapter->eeprompriv)), GetAddr1Ptr(pframe), ETH_ALEN))
1809 category = frame_body[0];
1810 if (category != RTW_WLAN_CATEGORY_PUBLIC)
1813 action = frame_body[1];
1815 case ACT_PUBLIC_VENDOR:
1816 ret = on_action_public_vendor(precv_frame);
1819 ret = on_action_public_default(precv_frame, action);
1827 unsigned int OnAction_ht(struct adapter *padapter, union recv_frame *precv_frame)
1829 u8 *pframe = precv_frame->u.hdr.rx_data;
1830 u8 *frame_body = pframe + sizeof(struct ieee80211_hdr_3addr);
1831 u8 category, action;
1833 /* check RA matches or not */
1834 if (memcmp(myid(&(padapter->eeprompriv)), GetAddr1Ptr(pframe), ETH_ALEN))
1837 category = frame_body[0];
1838 if (category != RTW_WLAN_CATEGORY_HT)
1841 action = frame_body[1];
1843 case WLAN_HT_ACTION_COMPRESSED_BF:
1854 unsigned int OnAction_sa_query(struct adapter *padapter, union recv_frame *precv_frame)
1856 u8 *pframe = precv_frame->u.hdr.rx_data;
1857 struct rx_pkt_attrib *pattrib = &precv_frame->u.hdr.attrib;
1858 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
1861 switch (pframe[WLAN_HDR_A3_LEN+1]) {
1862 case 0: /* SA Query req */
1863 memcpy(&tid, &pframe[WLAN_HDR_A3_LEN+2], sizeof(unsigned short));
1864 issue_action_SA_Query(padapter, GetAddr2Ptr(pframe), 1, tid);
1867 case 1: /* SA Query rsp */
1868 del_timer_sync(&pmlmeext->sa_query_timer);
1876 printk("pattrib->pktlen = %d =>", pattrib->pkt_len);
1877 for (pp = 0; pp < pattrib->pkt_len; pp++)
1878 printk(" %02x ", pframe[pp]);
1885 unsigned int OnAction(struct adapter *padapter, union recv_frame *precv_frame)
1888 unsigned char category;
1889 struct action_handler *ptable;
1890 unsigned char *frame_body;
1891 u8 *pframe = precv_frame->u.hdr.rx_data;
1893 frame_body = (unsigned char *)(pframe + sizeof(struct ieee80211_hdr_3addr));
1895 category = frame_body[0];
1897 for (i = 0; i < ARRAY_SIZE(OnAction_tbl); i++) {
1898 ptable = &OnAction_tbl[i];
1900 if (category == ptable->num)
1901 ptable->func(padapter, precv_frame);
1909 unsigned int DoReserved(struct adapter *padapter, union recv_frame *precv_frame)
1914 static struct xmit_frame *_alloc_mgtxmitframe(struct xmit_priv *pxmitpriv, bool once)
1916 struct xmit_frame *pmgntframe;
1917 struct xmit_buf *pxmitbuf;
1920 pmgntframe = rtw_alloc_xmitframe_once(pxmitpriv);
1922 pmgntframe = rtw_alloc_xmitframe_ext(pxmitpriv);
1927 pxmitbuf = rtw_alloc_xmitbuf_ext(pxmitpriv);
1929 rtw_free_xmitframe(pxmitpriv, pmgntframe);
1934 pmgntframe->frame_tag = MGNT_FRAMETAG;
1935 pmgntframe->pxmitbuf = pxmitbuf;
1936 pmgntframe->buf_addr = pxmitbuf->pbuf;
1937 pxmitbuf->priv_data = pmgntframe;
1944 inline struct xmit_frame *alloc_mgtxmitframe(struct xmit_priv *pxmitpriv)
1946 return _alloc_mgtxmitframe(pxmitpriv, false);
1949 /****************************************************************************
1951 Following are some TX functions for WiFi MLME
1953 *****************************************************************************/
1955 void update_mgnt_tx_rate(struct adapter *padapter, u8 rate)
1957 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
1959 pmlmeext->tx_rate = rate;
1962 void update_mgntframe_attrib(struct adapter *padapter, struct pkt_attrib *pattrib)
1965 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
1967 /* memset((u8 *)(pattrib), 0, sizeof(struct pkt_attrib)); */
1969 pattrib->hdrlen = 24;
1970 pattrib->nr_frags = 1;
1971 pattrib->priority = 7;
1972 pattrib->mac_id = 0;
1973 pattrib->qsel = 0x12;
1975 pattrib->pktlen = 0;
1977 if (pmlmeext->tx_rate == IEEE80211_CCK_RATE_1MB)
1978 wireless_mode = WIRELESS_11B;
1980 wireless_mode = WIRELESS_11G;
1981 pattrib->raid = rtw_get_mgntframe_raid(padapter, wireless_mode);
1982 pattrib->rate = pmlmeext->tx_rate;
1984 pattrib->encrypt = _NO_PRIVACY_;
1985 pattrib->bswenc = false;
1987 pattrib->qos_en = false;
1988 pattrib->ht_en = false;
1989 pattrib->bwmode = CHANNEL_WIDTH_20;
1990 pattrib->ch_offset = HAL_PRIME_CHNL_OFFSET_DONT_CARE;
1991 pattrib->sgi = false;
1993 pattrib->seqnum = pmlmeext->mgnt_seq;
1995 pattrib->retry_ctrl = true;
1997 pattrib->mbssid = 0;
2001 void update_mgntframe_attrib_addr(struct adapter *padapter, struct xmit_frame *pmgntframe)
2004 struct pkt_attrib *pattrib = &pmgntframe->attrib;
2006 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
2008 memcpy(pattrib->ra, GetAddr1Ptr(pframe), ETH_ALEN);
2009 memcpy(pattrib->ta, GetAddr2Ptr(pframe), ETH_ALEN);
2012 void dump_mgntframe(struct adapter *padapter, struct xmit_frame *pmgntframe)
2014 if (padapter->bSurpriseRemoved ||
2015 padapter->bDriverStopped) {
2016 rtw_free_xmitbuf(&padapter->xmitpriv, pmgntframe->pxmitbuf);
2017 rtw_free_xmitframe(&padapter->xmitpriv, pmgntframe);
2021 rtw_hal_mgnt_xmit(padapter, pmgntframe);
2024 s32 dump_mgntframe_and_wait(struct adapter *padapter, struct xmit_frame *pmgntframe, int timeout_ms)
2028 struct xmit_priv *pxmitpriv = &padapter->xmitpriv;
2029 struct xmit_buf *pxmitbuf = pmgntframe->pxmitbuf;
2030 struct submit_ctx sctx;
2032 if (padapter->bSurpriseRemoved ||
2033 padapter->bDriverStopped) {
2034 rtw_free_xmitbuf(&padapter->xmitpriv, pmgntframe->pxmitbuf);
2035 rtw_free_xmitframe(&padapter->xmitpriv, pmgntframe);
2039 rtw_sctx_init(&sctx, timeout_ms);
2040 pxmitbuf->sctx = &sctx;
2042 ret = rtw_hal_mgnt_xmit(padapter, pmgntframe);
2044 if (ret == _SUCCESS)
2045 ret = rtw_sctx_wait(&sctx);
2047 spin_lock_irqsave(&pxmitpriv->lock_sctx, irqL);
2048 pxmitbuf->sctx = NULL;
2049 spin_unlock_irqrestore(&pxmitpriv->lock_sctx, irqL);
2054 s32 dump_mgntframe_and_wait_ack(struct adapter *padapter, struct xmit_frame *pmgntframe)
2058 u32 timeout_ms = 500;/* 500ms */
2059 struct xmit_priv *pxmitpriv = &padapter->xmitpriv;
2061 if (padapter->bSurpriseRemoved ||
2062 padapter->bDriverStopped) {
2063 rtw_free_xmitbuf(&padapter->xmitpriv, pmgntframe->pxmitbuf);
2064 rtw_free_xmitframe(&padapter->xmitpriv, pmgntframe);
2068 if (mutex_lock_interruptible(&pxmitpriv->ack_tx_mutex) == 0) {
2069 pxmitpriv->ack_tx = true;
2070 pxmitpriv->seq_no = seq_no++;
2071 pmgntframe->ack_report = 1;
2072 if (rtw_hal_mgnt_xmit(padapter, pmgntframe) == _SUCCESS)
2073 ret = rtw_ack_tx_wait(pxmitpriv, timeout_ms);
2075 pxmitpriv->ack_tx = false;
2076 mutex_unlock(&pxmitpriv->ack_tx_mutex);
2082 static int update_hidden_ssid(u8 *ies, u32 ies_len, u8 hidden_ssid_mode)
2085 signed int ssid_len_ori;
2088 ssid_ie = rtw_get_ie(ies, WLAN_EID_SSID, &ssid_len_ori, ies_len);
2090 if (ssid_ie && ssid_len_ori > 0) {
2091 switch (hidden_ssid_mode) {
2094 u8 *next_ie = ssid_ie + 2 + ssid_len_ori;
2097 remain_len = ies_len - (next_ie-ies);
2100 memcpy(ssid_ie+2, next_ie, remain_len);
2101 len_diff -= ssid_len_ori;
2106 memset(&ssid_ie[2], 0, ssid_len_ori);
2116 void issue_beacon(struct adapter *padapter, int timeout_ms)
2118 struct xmit_frame *pmgntframe;
2119 struct pkt_attrib *pattrib;
2120 unsigned char *pframe;
2121 struct ieee80211_hdr *pwlanhdr;
2123 unsigned int rate_len;
2124 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
2125 struct mlme_priv *pmlmepriv = &(padapter->mlmepriv);
2126 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
2127 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
2128 struct wlan_bssid_ex *cur_network = &(pmlmeinfo->network);
2130 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
2134 spin_lock_bh(&pmlmepriv->bcn_update_lock);
2136 /* update attribute */
2137 pattrib = &pmgntframe->attrib;
2138 update_mgntframe_attrib(padapter, pattrib);
2139 pattrib->qsel = 0x10;
2141 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
2143 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
2144 pwlanhdr = (struct ieee80211_hdr *)pframe;
2147 fctrl = &(pwlanhdr->frame_control);
2150 eth_broadcast_addr(pwlanhdr->addr1);
2151 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
2152 memcpy(pwlanhdr->addr3, get_my_bssid(cur_network), ETH_ALEN);
2154 SetSeqNum(pwlanhdr, 0/*pmlmeext->mgnt_seq*/);
2155 /* pmlmeext->mgnt_seq++; */
2156 SetFrameSubType(pframe, WIFI_BEACON);
2158 pframe += sizeof(struct ieee80211_hdr_3addr);
2159 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
2161 if ((pmlmeinfo->state&0x03) == WIFI_FW_AP_STATE) {
2165 memcpy(pframe, cur_network->ies, cur_network->ie_length);
2166 len_diff = update_hidden_ssid(pframe+_BEACON_IE_OFFSET_,
2167 cur_network->ie_length-_BEACON_IE_OFFSET_,
2168 pmlmeinfo->hidden_ssid_mode);
2169 pframe += (cur_network->ie_length+len_diff);
2170 pattrib->pktlen += (cur_network->ie_length+len_diff);
2178 wps_ie = rtw_get_wps_ie(pmgntframe->buf_addr+TXDESC_OFFSET+sizeof(struct ieee80211_hdr_3addr)+_BEACON_IE_OFFSET_,
2179 pattrib->pktlen-sizeof(struct ieee80211_hdr_3addr)-_BEACON_IE_OFFSET_, NULL, &wps_ielen);
2180 if (wps_ie && wps_ielen > 0)
2181 rtw_get_wps_attr_content(wps_ie, wps_ielen, WPS_ATTR_SELECTED_REGISTRAR, (u8 *)(&sr), NULL);
2183 set_fwstate(pmlmepriv, WIFI_UNDER_WPS);
2185 _clr_fwstate_(pmlmepriv, WIFI_UNDER_WPS);
2192 /* below for ad-hoc mode */
2194 /* timestamp will be inserted by hardware */
2196 pattrib->pktlen += 8;
2198 /* beacon interval: 2 bytes */
2200 memcpy(pframe, (unsigned char *)(rtw_get_beacon_interval_from_ie(cur_network->ies)), 2);
2203 pattrib->pktlen += 2;
2205 /* capability info: 2 bytes */
2207 memcpy(pframe, (unsigned char *)(rtw_get_capability_from_ie(cur_network->ies)), 2);
2210 pattrib->pktlen += 2;
2213 pframe = rtw_set_ie(pframe, WLAN_EID_SSID, cur_network->ssid.ssid_length, cur_network->ssid.ssid, &pattrib->pktlen);
2215 /* supported rates... */
2216 rate_len = rtw_get_rateset_len(cur_network->supported_rates);
2217 pframe = rtw_set_ie(pframe, WLAN_EID_SUPP_RATES, ((rate_len > 8) ? 8 : rate_len), cur_network->supported_rates, &pattrib->pktlen);
2219 /* DS parameter set */
2220 pframe = rtw_set_ie(pframe, WLAN_EID_DS_PARAMS, 1, (unsigned char *)&(cur_network->configuration.ds_config), &pattrib->pktlen);
2222 /* if ((pmlmeinfo->state&0x03) == WIFI_FW_ADHOC_STATE) */
2226 /* IBSS Parameter Set... */
2227 /* ATIMWindow = cur->configuration.ATIMWindow; */
2229 pframe = rtw_set_ie(pframe, WLAN_EID_IBSS_PARAMS, 2, (unsigned char *)(&ATIMWindow), &pattrib->pktlen);
2232 pframe = rtw_set_ie(pframe, WLAN_EID_ERP_INFO, 1, &erpinfo, &pattrib->pktlen);
2236 /* EXTERNDED SUPPORTED RATE */
2238 pframe = rtw_set_ie(pframe, WLAN_EID_EXT_SUPP_RATES, (rate_len - 8), (cur_network->supported_rates + 8), &pattrib->pktlen);
2241 /* todo:HT for adhoc */
2245 pmlmepriv->update_bcn = false;
2247 spin_unlock_bh(&pmlmepriv->bcn_update_lock);
2249 if ((pattrib->pktlen + TXDESC_SIZE) > 512)
2252 pattrib->last_txcmdsz = pattrib->pktlen;
2255 dump_mgntframe_and_wait(padapter, pmgntframe, timeout_ms);
2257 dump_mgntframe(padapter, pmgntframe);
2261 void issue_probersp(struct adapter *padapter, unsigned char *da, u8 is_valid_p2p_probereq)
2263 struct xmit_frame *pmgntframe;
2264 struct pkt_attrib *pattrib;
2265 unsigned char *pframe;
2266 struct ieee80211_hdr *pwlanhdr;
2268 unsigned char *mac, *bssid;
2269 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
2273 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
2274 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
2275 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
2276 struct wlan_bssid_ex *cur_network = &(pmlmeinfo->network);
2277 unsigned int rate_len;
2282 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
2286 /* update attribute */
2287 pattrib = &pmgntframe->attrib;
2288 update_mgntframe_attrib(padapter, pattrib);
2290 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
2292 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
2293 pwlanhdr = (struct ieee80211_hdr *)pframe;
2295 mac = myid(&(padapter->eeprompriv));
2296 bssid = cur_network->mac_address;
2298 fctrl = &(pwlanhdr->frame_control);
2300 memcpy(pwlanhdr->addr1, da, ETH_ALEN);
2301 memcpy(pwlanhdr->addr2, mac, ETH_ALEN);
2302 memcpy(pwlanhdr->addr3, bssid, ETH_ALEN);
2304 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
2305 pmlmeext->mgnt_seq++;
2306 SetFrameSubType(fctrl, WIFI_PROBERSP);
2308 pattrib->hdrlen = sizeof(struct ieee80211_hdr_3addr);
2309 pattrib->pktlen = pattrib->hdrlen;
2310 pframe += pattrib->hdrlen;
2313 if (cur_network->ie_length > MAX_IE_SZ)
2316 if ((pmlmeinfo->state&0x03) == WIFI_FW_AP_STATE) {
2317 pwps_ie = rtw_get_wps_ie(cur_network->ies+_FIXED_IE_LENGTH_, cur_network->ie_length-_FIXED_IE_LENGTH_, NULL, &wps_ielen);
2319 /* inerset & update wps_probe_resp_ie */
2320 if (pmlmepriv->wps_probe_resp_ie && pwps_ie && wps_ielen > 0) {
2321 uint wps_offset, remainder_ielen;
2324 wps_offset = (uint)(pwps_ie - cur_network->ies);
2326 premainder_ie = pwps_ie + wps_ielen;
2328 remainder_ielen = cur_network->ie_length - wps_offset - wps_ielen;
2330 memcpy(pframe, cur_network->ies, wps_offset);
2331 pframe += wps_offset;
2332 pattrib->pktlen += wps_offset;
2334 wps_ielen = (uint)pmlmepriv->wps_probe_resp_ie[1];/* to get ie data len */
2335 if ((wps_offset+wps_ielen+2) <= MAX_IE_SZ) {
2336 memcpy(pframe, pmlmepriv->wps_probe_resp_ie, wps_ielen+2);
2337 pframe += wps_ielen+2;
2338 pattrib->pktlen += wps_ielen+2;
2341 if ((wps_offset+wps_ielen+2+remainder_ielen) <= MAX_IE_SZ) {
2342 memcpy(pframe, premainder_ie, remainder_ielen);
2343 pframe += remainder_ielen;
2344 pattrib->pktlen += remainder_ielen;
2347 memcpy(pframe, cur_network->ies, cur_network->ie_length);
2348 pframe += cur_network->ie_length;
2349 pattrib->pktlen += cur_network->ie_length;
2352 /* retrieve SSID IE from cur_network->ssid */
2355 signed int ssid_ielen;
2356 signed int ssid_ielen_diff;
2358 u8 *ies = pmgntframe->buf_addr+TXDESC_OFFSET+sizeof(struct ieee80211_hdr_3addr);
2360 buf = rtw_zmalloc(MAX_IE_SZ);
2364 ssid_ie = rtw_get_ie(ies+_FIXED_IE_LENGTH_, WLAN_EID_SSID, &ssid_ielen,
2365 (pframe-ies)-_FIXED_IE_LENGTH_);
2367 ssid_ielen_diff = cur_network->ssid.ssid_length - ssid_ielen;
2369 if (ssid_ie && cur_network->ssid.ssid_length) {
2370 uint remainder_ielen;
2373 remainder_ie = ssid_ie+2;
2374 remainder_ielen = (pframe-remainder_ie);
2376 if (remainder_ielen > MAX_IE_SZ) {
2377 netdev_warn(padapter->pnetdev,
2378 FUNC_ADPT_FMT " remainder_ielen > MAX_IE_SZ\n",
2379 FUNC_ADPT_ARG(padapter));
2380 remainder_ielen = MAX_IE_SZ;
2383 memcpy(buf, remainder_ie, remainder_ielen);
2384 memcpy(remainder_ie+ssid_ielen_diff, buf, remainder_ielen);
2385 *(ssid_ie+1) = cur_network->ssid.ssid_length;
2386 memcpy(ssid_ie+2, cur_network->ssid.ssid, cur_network->ssid.ssid_length);
2388 pframe += ssid_ielen_diff;
2389 pattrib->pktlen += ssid_ielen_diff;
2394 /* timestamp will be inserted by hardware */
2396 pattrib->pktlen += 8;
2398 /* beacon interval: 2 bytes */
2400 memcpy(pframe, (unsigned char *)(rtw_get_beacon_interval_from_ie(cur_network->ies)), 2);
2403 pattrib->pktlen += 2;
2405 /* capability info: 2 bytes */
2407 memcpy(pframe, (unsigned char *)(rtw_get_capability_from_ie(cur_network->ies)), 2);
2410 pattrib->pktlen += 2;
2412 /* below for ad-hoc mode */
2415 pframe = rtw_set_ie(pframe, WLAN_EID_SSID, cur_network->ssid.ssid_length, cur_network->ssid.ssid, &pattrib->pktlen);
2417 /* supported rates... */
2418 rate_len = rtw_get_rateset_len(cur_network->supported_rates);
2419 pframe = rtw_set_ie(pframe, WLAN_EID_SUPP_RATES, ((rate_len > 8) ? 8 : rate_len), cur_network->supported_rates, &pattrib->pktlen);
2421 /* DS parameter set */
2422 pframe = rtw_set_ie(pframe, WLAN_EID_DS_PARAMS, 1, (unsigned char *)&(cur_network->configuration.ds_config), &pattrib->pktlen);
2424 if ((pmlmeinfo->state&0x03) == WIFI_FW_ADHOC_STATE) {
2427 /* IBSS Parameter Set... */
2428 /* ATIMWindow = cur->configuration.ATIMWindow; */
2430 pframe = rtw_set_ie(pframe, WLAN_EID_IBSS_PARAMS, 2, (unsigned char *)(&ATIMWindow), &pattrib->pktlen);
2433 pframe = rtw_set_ie(pframe, WLAN_EID_ERP_INFO, 1, &erpinfo, &pattrib->pktlen);
2437 /* EXTERNDED SUPPORTED RATE */
2439 pframe = rtw_set_ie(pframe, WLAN_EID_EXT_SUPP_RATES, (rate_len - 8), (cur_network->supported_rates + 8), &pattrib->pktlen);
2442 /* todo:HT for adhoc */
2446 pattrib->last_txcmdsz = pattrib->pktlen;
2449 dump_mgntframe(padapter, pmgntframe);
2455 static int _issue_probereq(struct adapter *padapter,
2456 struct ndis_802_11_ssid *pssid,
2457 u8 *da, u8 ch, bool append_wps, bool wait_ack)
2460 struct xmit_frame *pmgntframe;
2461 struct pkt_attrib *pattrib;
2462 unsigned char *pframe;
2463 struct ieee80211_hdr *pwlanhdr;
2466 unsigned char bssrate[NumRates];
2467 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
2468 struct mlme_priv *pmlmepriv = &(padapter->mlmepriv);
2469 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
2470 int bssrate_len = 0;
2472 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
2476 /* update attribute */
2477 pattrib = &pmgntframe->attrib;
2478 update_mgntframe_attrib(padapter, pattrib);
2481 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
2483 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
2484 pwlanhdr = (struct ieee80211_hdr *)pframe;
2486 mac = myid(&(padapter->eeprompriv));
2488 fctrl = &(pwlanhdr->frame_control);
2492 /* unicast probe request frame */
2493 memcpy(pwlanhdr->addr1, da, ETH_ALEN);
2494 memcpy(pwlanhdr->addr3, da, ETH_ALEN);
2496 /* broadcast probe request frame */
2497 eth_broadcast_addr(pwlanhdr->addr1);
2498 eth_broadcast_addr(pwlanhdr->addr3);
2501 memcpy(pwlanhdr->addr2, mac, ETH_ALEN);
2503 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
2504 pmlmeext->mgnt_seq++;
2505 SetFrameSubType(pframe, WIFI_PROBEREQ);
2507 pframe += sizeof(struct ieee80211_hdr_3addr);
2508 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
2511 pframe = rtw_set_ie(pframe, WLAN_EID_SSID, pssid->ssid_length, pssid->ssid, &(pattrib->pktlen));
2513 pframe = rtw_set_ie(pframe, WLAN_EID_SSID, 0, NULL, &(pattrib->pktlen));
2515 get_rate_set(padapter, bssrate, &bssrate_len);
2517 if (bssrate_len > 8) {
2518 pframe = rtw_set_ie(pframe, WLAN_EID_SUPP_RATES, 8, bssrate, &(pattrib->pktlen));
2519 pframe = rtw_set_ie(pframe, WLAN_EID_EXT_SUPP_RATES, (bssrate_len - 8), (bssrate + 8), &(pattrib->pktlen));
2521 pframe = rtw_set_ie(pframe, WLAN_EID_SUPP_RATES, bssrate_len, bssrate, &(pattrib->pktlen));
2525 pframe = rtw_set_ie(pframe, WLAN_EID_DS_PARAMS, 1, &ch, &pattrib->pktlen);
2528 /* add wps_ie for wps2.0 */
2529 if (pmlmepriv->wps_probe_req_ie_len > 0 && pmlmepriv->wps_probe_req_ie) {
2530 memcpy(pframe, pmlmepriv->wps_probe_req_ie, pmlmepriv->wps_probe_req_ie_len);
2531 pframe += pmlmepriv->wps_probe_req_ie_len;
2532 pattrib->pktlen += pmlmepriv->wps_probe_req_ie_len;
2536 pattrib->last_txcmdsz = pattrib->pktlen;
2539 ret = dump_mgntframe_and_wait_ack(padapter, pmgntframe);
2541 dump_mgntframe(padapter, pmgntframe);
2549 inline void issue_probereq(struct adapter *padapter, struct ndis_802_11_ssid *pssid, u8 *da)
2551 _issue_probereq(padapter, pssid, da, 0, 1, false);
2554 int issue_probereq_ex(struct adapter *padapter, struct ndis_802_11_ssid *pssid, u8 *da, u8 ch, bool append_wps,
2555 int try_cnt, int wait_ms)
2561 ret = _issue_probereq(padapter, pssid, da, ch, append_wps,
2566 if (padapter->bDriverStopped || padapter->bSurpriseRemoved)
2569 if (i < try_cnt && wait_ms > 0 && ret == _FAIL)
2572 } while ((i < try_cnt) && ((ret == _FAIL) || (wait_ms == 0)));
2576 #ifndef DBG_XMIT_ACK
2585 /* if psta == NULL, indicate we are station(client) now... */
2586 void issue_auth(struct adapter *padapter, struct sta_info *psta, unsigned short status)
2588 struct xmit_frame *pmgntframe;
2589 struct pkt_attrib *pattrib;
2590 unsigned char *pframe;
2591 struct ieee80211_hdr *pwlanhdr;
2594 unsigned short val16;
2595 int use_shared_key = 0;
2596 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
2597 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
2598 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
2601 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
2605 /* update attribute */
2606 pattrib = &pmgntframe->attrib;
2607 update_mgntframe_attrib(padapter, pattrib);
2609 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
2611 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
2612 pwlanhdr = (struct ieee80211_hdr *)pframe;
2614 fctrl = &(pwlanhdr->frame_control);
2617 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
2618 pmlmeext->mgnt_seq++;
2619 SetFrameSubType(pframe, WIFI_AUTH);
2621 pframe += sizeof(struct ieee80211_hdr_3addr);
2622 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
2625 if (psta) { /* for AP mode */
2626 memcpy(pwlanhdr->addr1, psta->hwaddr, ETH_ALEN);
2627 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
2628 memcpy(pwlanhdr->addr3, myid(&(padapter->eeprompriv)), ETH_ALEN);
2630 /* setting auth algo number */
2631 val16 = (u16)psta->authalg;
2633 if (status != WLAN_STATUS_SUCCESS)
2639 le_tmp = cpu_to_le16(val16);
2641 pframe = rtw_set_fixed_ie(pframe, _AUTH_ALGM_NUM_, (unsigned char *)&le_tmp, &(pattrib->pktlen));
2643 /* setting auth seq number */
2644 val16 = (u16)psta->auth_seq;
2645 le_tmp = cpu_to_le16(val16);
2646 pframe = rtw_set_fixed_ie(pframe, _AUTH_SEQ_NUM_, (unsigned char *)&le_tmp, &(pattrib->pktlen));
2648 /* setting status code... */
2650 le_tmp = cpu_to_le16(val16);
2651 pframe = rtw_set_fixed_ie(pframe, _STATUS_CODE_, (unsigned char *)&le_tmp, &(pattrib->pktlen));
2653 /* added challenging text... */
2654 if ((psta->auth_seq == 2) && (psta->state & WIFI_FW_AUTH_STATE) && (use_shared_key == 1))
2655 pframe = rtw_set_ie(pframe, WLAN_EID_CHALLENGE, 128, psta->chg_txt, &(pattrib->pktlen));
2658 memcpy(pwlanhdr->addr1, get_my_bssid(&pmlmeinfo->network), ETH_ALEN);
2659 memcpy(pwlanhdr->addr2, myid(&padapter->eeprompriv), ETH_ALEN);
2660 memcpy(pwlanhdr->addr3, get_my_bssid(&pmlmeinfo->network), ETH_ALEN);
2662 /* setting auth algo number */
2663 val16 = (pmlmeinfo->auth_algo == dot11AuthAlgrthm_Shared) ? 1 : 0;/* 0:OPEN System, 1:Shared key */
2666 le_tmp = cpu_to_le16(val16);
2668 /* setting IV for auth seq #3 */
2669 if ((pmlmeinfo->auth_seq == 3) && (pmlmeinfo->state & WIFI_FW_AUTH_STATE) && (use_shared_key == 1)) {
2672 val32 = ((pmlmeinfo->iv++) | (pmlmeinfo->key_index << 30));
2673 le_tmp32 = cpu_to_le32(val32);
2674 pframe = rtw_set_fixed_ie(pframe, 4, (unsigned char *)&le_tmp32, &(pattrib->pktlen));
2676 pattrib->iv_len = 4;
2679 pframe = rtw_set_fixed_ie(pframe, _AUTH_ALGM_NUM_, (unsigned char *)&le_tmp, &(pattrib->pktlen));
2681 /* setting auth seq number */
2682 le_tmp = cpu_to_le16(pmlmeinfo->auth_seq);
2683 pframe = rtw_set_fixed_ie(pframe, _AUTH_SEQ_NUM_, (unsigned char *)&le_tmp, &(pattrib->pktlen));
2686 /* setting status code... */
2687 le_tmp = cpu_to_le16(status);
2688 pframe = rtw_set_fixed_ie(pframe, _STATUS_CODE_, (unsigned char *)&le_tmp, &(pattrib->pktlen));
2690 /* then checking to see if sending challenging text... */
2691 if ((pmlmeinfo->auth_seq == 3) && (pmlmeinfo->state & WIFI_FW_AUTH_STATE) && (use_shared_key == 1)) {
2692 pframe = rtw_set_ie(pframe, WLAN_EID_CHALLENGE, 128, pmlmeinfo->chg_txt, &(pattrib->pktlen));
2696 pattrib->hdrlen = sizeof(struct ieee80211_hdr_3addr);
2698 pattrib->encrypt = _WEP40_;
2700 pattrib->icv_len = 4;
2702 pattrib->pktlen += pattrib->icv_len;
2708 pattrib->last_txcmdsz = pattrib->pktlen;
2710 rtw_wep_encrypt(padapter, (u8 *)pmgntframe);
2711 dump_mgntframe(padapter, pmgntframe);
2715 void issue_asocrsp(struct adapter *padapter, unsigned short status, struct sta_info *pstat, int pkt_type)
2717 struct xmit_frame *pmgntframe;
2718 struct ieee80211_hdr *pwlanhdr;
2719 struct pkt_attrib *pattrib;
2720 unsigned char *pbuf, *pframe;
2723 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
2724 struct mlme_priv *pmlmepriv = &(padapter->mlmepriv);
2725 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
2726 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
2727 struct wlan_bssid_ex *pnetwork = &(pmlmeinfo->network);
2728 u8 *ie = pnetwork->ies;
2729 __le16 lestatus, le_tmp;
2731 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
2735 /* update attribute */
2736 pattrib = &pmgntframe->attrib;
2737 update_mgntframe_attrib(padapter, pattrib);
2740 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
2742 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
2743 pwlanhdr = (struct ieee80211_hdr *)pframe;
2745 fctrl = &(pwlanhdr->frame_control);
2748 memcpy((void *)GetAddr1Ptr(pwlanhdr), pstat->hwaddr, ETH_ALEN);
2749 memcpy((void *)GetAddr2Ptr(pwlanhdr), myid(&(padapter->eeprompriv)), ETH_ALEN);
2750 memcpy((void *)GetAddr3Ptr(pwlanhdr), get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
2753 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
2754 pmlmeext->mgnt_seq++;
2755 if ((pkt_type == WIFI_ASSOCRSP) || (pkt_type == WIFI_REASSOCRSP))
2756 SetFrameSubType(pwlanhdr, pkt_type);
2760 pattrib->hdrlen = sizeof(struct ieee80211_hdr_3addr);
2761 pattrib->pktlen += pattrib->hdrlen;
2762 pframe += pattrib->hdrlen;
2765 val = *(unsigned short *)rtw_get_capability_from_ie(ie);
2767 pframe = rtw_set_fixed_ie(pframe, _CAPABILITY_, (unsigned char *)&val, &(pattrib->pktlen));
2769 lestatus = cpu_to_le16(status);
2770 pframe = rtw_set_fixed_ie(pframe, _STATUS_CODE_, (unsigned char *)&lestatus, &(pattrib->pktlen));
2772 le_tmp = cpu_to_le16(pstat->aid | BIT(14) | BIT(15));
2773 pframe = rtw_set_fixed_ie(pframe, _ASOC_ID_, (unsigned char *)&le_tmp, &(pattrib->pktlen));
2775 if (pstat->bssratelen <= 8) {
2776 pframe = rtw_set_ie(pframe, WLAN_EID_SUPP_RATES, pstat->bssratelen, pstat->bssrateset, &(pattrib->pktlen));
2778 pframe = rtw_set_ie(pframe, WLAN_EID_SUPP_RATES, 8, pstat->bssrateset, &(pattrib->pktlen));
2779 pframe = rtw_set_ie(pframe, WLAN_EID_EXT_SUPP_RATES, (pstat->bssratelen-8), pstat->bssrateset+8, &(pattrib->pktlen));
2782 if ((pstat->flags & WLAN_STA_HT) && (pmlmepriv->htpriv.ht_option)) {
2785 /* FILL HT CAP INFO IE */
2786 /* p = hostapd_eid_ht_capabilities_info(hapd, p); */
2787 pbuf = rtw_get_ie(ie + _BEACON_IE_OFFSET_, WLAN_EID_HT_CAPABILITY, &ie_len, (pnetwork->ie_length - _BEACON_IE_OFFSET_));
2788 if (pbuf && ie_len > 0) {
2789 memcpy(pframe, pbuf, ie_len+2);
2790 pframe += (ie_len+2);
2791 pattrib->pktlen += (ie_len+2);
2794 /* FILL HT ADD INFO IE */
2795 /* p = hostapd_eid_ht_operation(hapd, p); */
2796 pbuf = rtw_get_ie(ie + _BEACON_IE_OFFSET_, WLAN_EID_HT_OPERATION, &ie_len, (pnetwork->ie_length - _BEACON_IE_OFFSET_));
2797 if (pbuf && ie_len > 0) {
2798 memcpy(pframe, pbuf, ie_len+2);
2799 pframe += (ie_len+2);
2800 pattrib->pktlen += (ie_len+2);
2806 if ((pstat->flags & WLAN_STA_WME) && (pmlmepriv->qospriv.qos_option)) {
2808 unsigned char WMM_PARA_IE[] = {0x00, 0x50, 0xf2, 0x02, 0x01, 0x01};
2810 for (pbuf = ie + _BEACON_IE_OFFSET_; ; pbuf += (ie_len + 2)) {
2811 pbuf = rtw_get_ie(pbuf, WLAN_EID_VENDOR_SPECIFIC, &ie_len, (pnetwork->ie_length - _BEACON_IE_OFFSET_ - (ie_len + 2)));
2812 if (pbuf && !memcmp(pbuf+2, WMM_PARA_IE, 6)) {
2813 memcpy(pframe, pbuf, ie_len+2);
2814 pframe += (ie_len+2);
2815 pattrib->pktlen += (ie_len+2);
2820 if (!pbuf || ie_len == 0)
2826 if (pmlmeinfo->assoc_AP_vendor == HT_IOT_PEER_REALTEK)
2827 pframe = rtw_set_ie(pframe, WLAN_EID_VENDOR_SPECIFIC, 6, REALTEK_96B_IE, &(pattrib->pktlen));
2829 /* add WPS IE ie for wps 2.0 */
2830 if (pmlmepriv->wps_assoc_resp_ie && pmlmepriv->wps_assoc_resp_ie_len > 0) {
2831 memcpy(pframe, pmlmepriv->wps_assoc_resp_ie, pmlmepriv->wps_assoc_resp_ie_len);
2833 pframe += pmlmepriv->wps_assoc_resp_ie_len;
2834 pattrib->pktlen += pmlmepriv->wps_assoc_resp_ie_len;
2837 pattrib->last_txcmdsz = pattrib->pktlen;
2839 dump_mgntframe(padapter, pmgntframe);
2842 void issue_assocreq(struct adapter *padapter)
2845 struct xmit_frame *pmgntframe;
2846 struct pkt_attrib *pattrib;
2847 unsigned char *pframe;
2848 struct ieee80211_hdr *pwlanhdr;
2851 unsigned int i, j, index = 0;
2852 unsigned char bssrate[NumRates], sta_bssrate[NumRates];
2853 struct ndis_80211_var_ie *pIE;
2854 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
2855 struct mlme_priv *pmlmepriv = &(padapter->mlmepriv);
2856 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
2857 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
2858 int bssrate_len = 0, sta_bssrate_len = 0;
2859 u8 vs_ie_length = 0;
2861 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
2865 /* update attribute */
2866 pattrib = &pmgntframe->attrib;
2867 update_mgntframe_attrib(padapter, pattrib);
2869 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
2871 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
2872 pwlanhdr = (struct ieee80211_hdr *)pframe;
2874 fctrl = &(pwlanhdr->frame_control);
2876 memcpy(pwlanhdr->addr1, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
2877 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
2878 memcpy(pwlanhdr->addr3, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
2880 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
2881 pmlmeext->mgnt_seq++;
2882 SetFrameSubType(pframe, WIFI_ASSOCREQ);
2884 pframe += sizeof(struct ieee80211_hdr_3addr);
2885 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
2888 memcpy(pframe, rtw_get_capability_from_ie(pmlmeinfo->network.ies), 2);
2891 pattrib->pktlen += 2;
2893 /* listen interval */
2894 /* todo: listen interval for power saving */
2895 val16 = cpu_to_le16(3);
2896 memcpy(pframe, (unsigned char *)&val16, 2);
2898 pattrib->pktlen += 2;
2901 pframe = rtw_set_ie(pframe, WLAN_EID_SSID, pmlmeinfo->network.ssid.ssid_length, pmlmeinfo->network.ssid.ssid, &(pattrib->pktlen));
2903 /* supported rate & extended supported rate */
2905 /* Check if the AP's supported rates are also supported by STA. */
2906 get_rate_set(padapter, sta_bssrate, &sta_bssrate_len);
2908 if (pmlmeext->cur_channel == 14) /* for JAPAN, channel 14 can only uses B Mode(CCK) */
2909 sta_bssrate_len = 4;
2912 /* for (i = 0; i < sta_bssrate_len; i++) { */
2915 for (i = 0; i < NDIS_802_11_LENGTH_RATES_EX; i++) {
2916 if (pmlmeinfo->network.supported_rates[i] == 0)
2921 for (i = 0; i < NDIS_802_11_LENGTH_RATES_EX; i++) {
2922 if (pmlmeinfo->network.supported_rates[i] == 0)
2926 /* Check if the AP's supported rates are also supported by STA. */
2927 for (j = 0; j < sta_bssrate_len; j++) {
2928 /* Avoid the proprietary data rate (22Mbps) of Handlink WSG-4000 AP */
2929 if ((pmlmeinfo->network.supported_rates[i] | IEEE80211_BASIC_RATE_MASK)
2930 == (sta_bssrate[j] | IEEE80211_BASIC_RATE_MASK))
2934 if (j != sta_bssrate_len)
2935 /* the rate is supported by STA */
2936 bssrate[index++] = pmlmeinfo->network.supported_rates[i];
2939 bssrate_len = index;
2941 if (bssrate_len == 0) {
2942 rtw_free_xmitbuf(pxmitpriv, pmgntframe->pxmitbuf);
2943 rtw_free_xmitframe(pxmitpriv, pmgntframe);
2944 goto exit; /* don't connect to AP if no joint supported rate */
2948 if (bssrate_len > 8) {
2949 pframe = rtw_set_ie(pframe, WLAN_EID_SUPP_RATES, 8, bssrate, &(pattrib->pktlen));
2950 pframe = rtw_set_ie(pframe, WLAN_EID_EXT_SUPP_RATES, (bssrate_len - 8), (bssrate + 8), &(pattrib->pktlen));
2952 pframe = rtw_set_ie(pframe, WLAN_EID_SUPP_RATES, bssrate_len, bssrate, &(pattrib->pktlen));
2954 /* vendor specific IE, such as WPA, WMM, WPS */
2955 for (i = sizeof(struct ndis_802_11_fix_ie); i < pmlmeinfo->network.ie_length;) {
2956 pIE = (struct ndis_80211_var_ie *)(pmlmeinfo->network.ies + i);
2958 switch (pIE->element_id) {
2959 case WLAN_EID_VENDOR_SPECIFIC:
2960 if ((!memcmp(pIE->data, RTW_WPA_OUI, 4)) ||
2961 (!memcmp(pIE->data, WMM_OUI, 4)) ||
2962 (!memcmp(pIE->data, WPS_OUI, 4))) {
2963 vs_ie_length = pIE->length;
2964 if ((!padapter->registrypriv.wifi_spec) && (!memcmp(pIE->data, WPS_OUI, 4))) {
2965 /* Commented by Kurt 20110629
2966 * In some older APs, WPS handshake
2967 * would be fail if we append vendor
2968 * extensions information to AP
2974 pframe = rtw_set_ie(pframe, WLAN_EID_VENDOR_SPECIFIC, vs_ie_length, pIE->data, &(pattrib->pktlen));
2979 pframe = rtw_set_ie(pframe, WLAN_EID_RSN, pIE->length, pIE->data, &(pattrib->pktlen));
2981 case WLAN_EID_HT_CAPABILITY:
2982 if (padapter->mlmepriv.htpriv.ht_option) {
2983 if (!(is_ap_in_tkip(padapter))) {
2984 memcpy(&(pmlmeinfo->HT_caps), pIE->data, sizeof(struct HT_caps_element));
2985 pframe = rtw_set_ie(pframe, WLAN_EID_HT_CAPABILITY, pIE->length, (u8 *)(&(pmlmeinfo->HT_caps)), &(pattrib->pktlen));
2990 case WLAN_EID_EXT_CAPABILITY:
2991 if (padapter->mlmepriv.htpriv.ht_option)
2992 pframe = rtw_set_ie(pframe, WLAN_EID_EXT_CAPABILITY, pIE->length, pIE->data, &(pattrib->pktlen));
2998 i += (pIE->length + 2);
3001 if (pmlmeinfo->assoc_AP_vendor == HT_IOT_PEER_REALTEK)
3002 pframe = rtw_set_ie(pframe, WLAN_EID_VENDOR_SPECIFIC, 6, REALTEK_96B_IE, &(pattrib->pktlen));
3005 pattrib->last_txcmdsz = pattrib->pktlen;
3006 dump_mgntframe(padapter, pmgntframe);
3011 if (ret == _SUCCESS)
3012 rtw_buf_update(&pmlmepriv->assoc_req, &pmlmepriv->assoc_req_len, (u8 *)pwlanhdr, pattrib->pktlen);
3014 rtw_buf_free(&pmlmepriv->assoc_req, &pmlmepriv->assoc_req_len);
3017 /* when wait_ack is true, this function should be called at process context */
3018 static int _issue_nulldata(struct adapter *padapter, unsigned char *da,
3019 unsigned int power_mode, bool wait_ack)
3022 struct xmit_frame *pmgntframe;
3023 struct pkt_attrib *pattrib;
3024 unsigned char *pframe;
3025 struct ieee80211_hdr *pwlanhdr;
3027 struct xmit_priv *pxmitpriv;
3028 struct mlme_ext_priv *pmlmeext;
3029 struct mlme_ext_info *pmlmeinfo;
3034 pxmitpriv = &(padapter->xmitpriv);
3035 pmlmeext = &(padapter->mlmeextpriv);
3036 pmlmeinfo = &(pmlmeext->mlmext_info);
3038 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
3042 /* update attribute */
3043 pattrib = &pmgntframe->attrib;
3044 update_mgntframe_attrib(padapter, pattrib);
3045 pattrib->retry_ctrl = false;
3047 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
3049 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
3050 pwlanhdr = (struct ieee80211_hdr *)pframe;
3052 fctrl = &(pwlanhdr->frame_control);
3055 if ((pmlmeinfo->state&0x03) == WIFI_FW_AP_STATE)
3057 else if ((pmlmeinfo->state&0x03) == WIFI_FW_STATION_STATE)
3063 memcpy(pwlanhdr->addr1, da, ETH_ALEN);
3064 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
3065 memcpy(pwlanhdr->addr3, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
3067 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
3068 pmlmeext->mgnt_seq++;
3069 SetFrameSubType(pframe, WIFI_DATA_NULL);
3071 pframe += sizeof(struct ieee80211_hdr_3addr);
3072 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
3074 pattrib->last_txcmdsz = pattrib->pktlen;
3077 ret = dump_mgntframe_and_wait_ack(padapter, pmgntframe);
3079 dump_mgntframe(padapter, pmgntframe);
3088 * [IMPORTANT] Don't call this function in interrupt context
3090 * When wait_ms > 0, this function should be called at process context
3091 * da == NULL for station mode
3093 int issue_nulldata(struct adapter *padapter, unsigned char *da, unsigned int power_mode, int try_cnt, int wait_ms)
3097 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
3098 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3099 struct sta_info *psta;
3102 /* da == NULL, assume it's null data for sta to ap*/
3104 da = get_my_bssid(&(pmlmeinfo->network));
3106 psta = rtw_get_stainfo(&padapter->stapriv, da);
3109 rtw_hal_macid_sleep(padapter, psta->mac_id);
3111 rtw_hal_macid_wakeup(padapter, psta->mac_id);
3117 ret = _issue_nulldata(padapter, da, power_mode, wait_ms > 0);
3121 if (padapter->bDriverStopped || padapter->bSurpriseRemoved)
3124 if (i < try_cnt && wait_ms > 0 && ret == _FAIL)
3127 } while ((i < try_cnt) && ((ret == _FAIL) || (wait_ms == 0)));
3131 #ifndef DBG_XMIT_ACK
3141 * [IMPORTANT] This function run in interrupt context
3143 * The null data packet would be sent without power bit,
3144 * and not guarantee success.
3146 s32 issue_nulldata_in_interrupt(struct adapter *padapter, u8 *da)
3148 struct mlme_ext_priv *pmlmeext;
3149 struct mlme_ext_info *pmlmeinfo;
3152 pmlmeext = &padapter->mlmeextpriv;
3153 pmlmeinfo = &pmlmeext->mlmext_info;
3155 /* da == NULL, assume it's null data for sta to ap*/
3157 da = get_my_bssid(&(pmlmeinfo->network));
3159 return _issue_nulldata(padapter, da, 0, false);
3162 /* when wait_ack is true, this function should be called at process context */
3163 static int _issue_qos_nulldata(struct adapter *padapter, unsigned char *da,
3164 u16 tid, bool wait_ack)
3167 struct xmit_frame *pmgntframe;
3168 struct pkt_attrib *pattrib;
3169 unsigned char *pframe;
3170 struct ieee80211_hdr *pwlanhdr;
3173 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
3174 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
3175 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3177 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
3181 /* update attribute */
3182 pattrib = &pmgntframe->attrib;
3183 update_mgntframe_attrib(padapter, pattrib);
3185 pattrib->hdrlen += 2;
3186 pattrib->qos_en = true;
3188 pattrib->ack_policy = 0;
3191 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
3193 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
3194 pwlanhdr = (struct ieee80211_hdr *)pframe;
3196 fctrl = &(pwlanhdr->frame_control);
3199 if ((pmlmeinfo->state&0x03) == WIFI_FW_AP_STATE)
3201 else if ((pmlmeinfo->state&0x03) == WIFI_FW_STATION_STATE)
3204 qc = (unsigned short *)(pframe + pattrib->hdrlen - 2);
3206 SetPriority(qc, tid);
3208 SetEOSP(qc, pattrib->eosp);
3210 SetAckpolicy(qc, pattrib->ack_policy);
3212 memcpy(pwlanhdr->addr1, da, ETH_ALEN);
3213 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
3214 memcpy(pwlanhdr->addr3, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
3216 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
3217 pmlmeext->mgnt_seq++;
3218 SetFrameSubType(pframe, WIFI_QOS_DATA_NULL);
3220 pframe += sizeof(struct ieee80211_qos_hdr);
3221 pattrib->pktlen = sizeof(struct ieee80211_qos_hdr);
3223 pattrib->last_txcmdsz = pattrib->pktlen;
3226 ret = dump_mgntframe_and_wait_ack(padapter, pmgntframe);
3228 dump_mgntframe(padapter, pmgntframe);
3236 /* when wait_ms >0 , this function should be called at process context */
3237 /* da == NULL for station mode */
3238 int issue_qos_nulldata(struct adapter *padapter, unsigned char *da, u16 tid, int try_cnt, int wait_ms)
3242 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
3243 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3245 /* da == NULL, assume it's null data for sta to ap*/
3247 da = get_my_bssid(&(pmlmeinfo->network));
3250 ret = _issue_qos_nulldata(padapter, da, tid, wait_ms > 0);
3254 if (padapter->bDriverStopped || padapter->bSurpriseRemoved)
3257 if (i < try_cnt && wait_ms > 0 && ret == _FAIL)
3260 } while ((i < try_cnt) && ((ret == _FAIL) || (wait_ms == 0)));
3264 #ifndef DBG_XMIT_ACK
3273 static int _issue_deauth(struct adapter *padapter, unsigned char *da,
3274 unsigned short reason, bool wait_ack)
3276 struct xmit_frame *pmgntframe;
3277 struct pkt_attrib *pattrib;
3278 unsigned char *pframe;
3279 struct ieee80211_hdr *pwlanhdr;
3281 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
3282 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
3283 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3287 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
3291 /* update attribute */
3292 pattrib = &pmgntframe->attrib;
3293 update_mgntframe_attrib(padapter, pattrib);
3294 pattrib->retry_ctrl = false;
3296 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
3298 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
3299 pwlanhdr = (struct ieee80211_hdr *)pframe;
3301 fctrl = &(pwlanhdr->frame_control);
3304 memcpy(pwlanhdr->addr1, da, ETH_ALEN);
3305 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
3306 memcpy(pwlanhdr->addr3, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
3308 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
3309 pmlmeext->mgnt_seq++;
3310 SetFrameSubType(pframe, WIFI_DEAUTH);
3312 pframe += sizeof(struct ieee80211_hdr_3addr);
3313 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
3315 le_tmp = cpu_to_le16(reason);
3316 pframe = rtw_set_fixed_ie(pframe, _RSON_CODE_, (unsigned char *)&le_tmp, &(pattrib->pktlen));
3318 pattrib->last_txcmdsz = pattrib->pktlen;
3322 ret = dump_mgntframe_and_wait_ack(padapter, pmgntframe);
3324 dump_mgntframe(padapter, pmgntframe);
3332 int issue_deauth(struct adapter *padapter, unsigned char *da, unsigned short reason)
3334 return _issue_deauth(padapter, da, reason, false);
3337 int issue_deauth_ex(struct adapter *padapter, u8 *da, unsigned short reason, int try_cnt,
3344 ret = _issue_deauth(padapter, da, reason, wait_ms > 0);
3348 if (padapter->bDriverStopped || padapter->bSurpriseRemoved)
3351 if (i < try_cnt && wait_ms > 0 && ret == _FAIL)
3354 } while ((i < try_cnt) && ((ret == _FAIL) || (wait_ms == 0)));
3358 #ifndef DBG_XMIT_ACK
3367 void issue_action_SA_Query(struct adapter *padapter, unsigned char *raddr, unsigned char action, unsigned short tid)
3369 u8 category = RTW_WLAN_CATEGORY_SA_QUERY;
3370 struct xmit_frame *pmgntframe;
3371 struct pkt_attrib *pattrib;
3373 struct ieee80211_hdr *pwlanhdr;
3375 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
3376 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
3377 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3380 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
3384 /* update attribute */
3385 pattrib = &pmgntframe->attrib;
3386 update_mgntframe_attrib(padapter, pattrib);
3388 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
3390 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
3391 pwlanhdr = (struct ieee80211_hdr *)pframe;
3393 fctrl = &(pwlanhdr->frame_control);
3397 memcpy(pwlanhdr->addr1, raddr, ETH_ALEN);
3399 memcpy(pwlanhdr->addr1, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
3400 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
3401 memcpy(pwlanhdr->addr3, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
3403 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
3404 pmlmeext->mgnt_seq++;
3405 SetFrameSubType(pframe, WIFI_ACTION);
3407 pframe += sizeof(struct ieee80211_hdr_3addr);
3408 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
3410 pframe = rtw_set_fixed_ie(pframe, 1, &category, &pattrib->pktlen);
3411 pframe = rtw_set_fixed_ie(pframe, 1, &action, &pattrib->pktlen);
3414 case 0: /* SA Query req */
3415 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)&pmlmeext->sa_query_seq, &pattrib->pktlen);
3416 pmlmeext->sa_query_seq++;
3417 /* send sa query request to AP, AP should reply sa query response in 1 second */
3418 set_sa_query_timer(pmlmeext, 1000);
3421 case 1: /* SA Query rsp */
3422 le_tmp = cpu_to_le16(tid);
3423 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)&le_tmp, &pattrib->pktlen);
3429 pattrib->last_txcmdsz = pattrib->pktlen;
3431 dump_mgntframe(padapter, pmgntframe);
3434 void issue_action_BA(struct adapter *padapter, unsigned char *raddr, unsigned char action, unsigned short status)
3436 u8 category = RTW_WLAN_CATEGORY_BACK;
3440 u16 BA_timeout_value;
3441 u16 BA_starting_seqctrl = 0;
3442 enum ieee80211_max_ampdu_length_exp max_rx_ampdu_factor;
3443 struct xmit_frame *pmgntframe;
3444 struct pkt_attrib *pattrib;
3446 struct ieee80211_hdr *pwlanhdr;
3448 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
3449 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
3450 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3451 struct sta_info *psta;
3452 struct sta_priv *pstapriv = &padapter->stapriv;
3453 struct registry_priv *pregpriv = &padapter->registrypriv;
3456 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
3460 /* update attribute */
3461 pattrib = &pmgntframe->attrib;
3462 update_mgntframe_attrib(padapter, pattrib);
3464 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
3466 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
3467 pwlanhdr = (struct ieee80211_hdr *)pframe;
3469 fctrl = &(pwlanhdr->frame_control);
3472 /* memcpy(pwlanhdr->addr1, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN); */
3473 memcpy(pwlanhdr->addr1, raddr, ETH_ALEN);
3474 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
3475 memcpy(pwlanhdr->addr3, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
3477 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
3478 pmlmeext->mgnt_seq++;
3479 SetFrameSubType(pframe, WIFI_ACTION);
3481 pframe += sizeof(struct ieee80211_hdr_3addr);
3482 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
3484 pframe = rtw_set_fixed_ie(pframe, 1, &(category), &(pattrib->pktlen));
3485 pframe = rtw_set_fixed_ie(pframe, 1, &(action), &(pattrib->pktlen));
3487 if (category == 3) {
3489 case 0: /* ADDBA req */
3491 pmlmeinfo->dialogToken++;
3492 } while (pmlmeinfo->dialogToken == 0);
3493 pframe = rtw_set_fixed_ie(pframe, 1, &(pmlmeinfo->dialogToken), &(pattrib->pktlen));
3495 if (hal_btcoex_IsBTCoexCtrlAMPDUSize(padapter)) {
3496 /* A-MSDU NOT Supported */
3498 /* immediate Block Ack */
3499 BA_para_set |= BIT(1) & IEEE80211_ADDBA_PARAM_POLICY_MASK;
3501 BA_para_set |= (status << 2) & IEEE80211_ADDBA_PARAM_TID_MASK;
3502 /* max buffer size is 8 MSDU */
3503 BA_para_set |= (8 << 6) & IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK;
3505 BA_para_set = (0x1002 | ((status & 0xf) << 2)); /* immediate ack & 64 buffer size */
3507 le_tmp = cpu_to_le16(BA_para_set);
3508 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)(&(le_tmp)), &(pattrib->pktlen));
3510 BA_timeout_value = 5000;/* 5ms */
3511 le_tmp = cpu_to_le16(BA_timeout_value);
3512 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)(&(le_tmp)), &(pattrib->pktlen));
3514 /* if ((psta = rtw_get_stainfo(pstapriv, pmlmeinfo->network.mac_address)) != NULL) */
3515 psta = rtw_get_stainfo(pstapriv, raddr);
3517 start_seq = (psta->sta_xmitpriv.txseq_tid[status & 0x07]&0xfff) + 1;
3519 psta->BA_starting_seqctrl[status & 0x07] = start_seq;
3521 BA_starting_seqctrl = start_seq << 4;
3524 le_tmp = cpu_to_le16(BA_starting_seqctrl);
3525 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)(&(le_tmp)), &(pattrib->pktlen));
3528 case 1: /* ADDBA rsp */
3529 pframe = rtw_set_fixed_ie(pframe, 1, &(pmlmeinfo->ADDBA_req.dialog_token), &(pattrib->pktlen));
3530 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)(&status), &(pattrib->pktlen));
3531 if (padapter->driver_rx_ampdu_factor != 0xFF)
3532 max_rx_ampdu_factor =
3533 (enum ieee80211_max_ampdu_length_exp)padapter->driver_rx_ampdu_factor;
3535 rtw_hal_get_def_var(padapter,
3536 HW_VAR_MAX_RX_AMPDU_FACTOR, &max_rx_ampdu_factor);
3538 if (max_rx_ampdu_factor == IEEE80211_HT_MAX_AMPDU_64K)
3539 BA_para_set = ((le16_to_cpu(pmlmeinfo->ADDBA_req.BA_para_set) & 0x3f) | 0x1000); /* 64 buffer size */
3540 else if (max_rx_ampdu_factor == IEEE80211_HT_MAX_AMPDU_32K)
3541 BA_para_set = ((le16_to_cpu(pmlmeinfo->ADDBA_req.BA_para_set) & 0x3f) | 0x0800); /* 32 buffer size */
3542 else if (max_rx_ampdu_factor == IEEE80211_HT_MAX_AMPDU_16K)
3543 BA_para_set = ((le16_to_cpu(pmlmeinfo->ADDBA_req.BA_para_set) & 0x3f) | 0x0400); /* 16 buffer size */
3544 else if (max_rx_ampdu_factor == IEEE80211_HT_MAX_AMPDU_8K)
3545 BA_para_set = ((le16_to_cpu(pmlmeinfo->ADDBA_req.BA_para_set) & 0x3f) | 0x0200); /* 8 buffer size */
3547 BA_para_set = ((le16_to_cpu(pmlmeinfo->ADDBA_req.BA_para_set) & 0x3f) | 0x1000); /* 64 buffer size */
3549 if (hal_btcoex_IsBTCoexCtrlAMPDUSize(padapter) &&
3550 padapter->driver_rx_ampdu_factor == 0xFF) {
3551 /* max buffer size is 8 MSDU */
3552 BA_para_set &= ~IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK;
3553 BA_para_set |= (8 << 6) & IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK;
3556 if (pregpriv->ampdu_amsdu == 0)/* disabled */
3557 le_tmp = cpu_to_le16(BA_para_set & ~BIT(0));
3558 else if (pregpriv->ampdu_amsdu == 1)/* enabled */
3559 le_tmp = cpu_to_le16(BA_para_set | BIT(0));
3561 le_tmp = cpu_to_le16(BA_para_set);
3563 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)(&(le_tmp)), &(pattrib->pktlen));
3564 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)(&(pmlmeinfo->ADDBA_req.BA_timeout_value)), &(pattrib->pktlen));
3567 BA_para_set = (status & 0x1F) << 3;
3568 le_tmp = cpu_to_le16(BA_para_set);
3569 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)(&(le_tmp)), &(pattrib->pktlen));
3572 le_tmp = cpu_to_le16(reason_code);
3573 pframe = rtw_set_fixed_ie(pframe, 2, (unsigned char *)(&(le_tmp)), &(pattrib->pktlen));
3580 pattrib->last_txcmdsz = pattrib->pktlen;
3582 dump_mgntframe(padapter, pmgntframe);
3585 static void issue_action_BSSCoexistPacket(struct adapter *padapter)
3587 struct list_head *plist, *phead;
3588 unsigned char category, action;
3589 struct xmit_frame *pmgntframe;
3590 struct pkt_attrib *pattrib;
3591 unsigned char *pframe;
3592 struct ieee80211_hdr *pwlanhdr;
3594 struct wlan_network *pnetwork = NULL;
3595 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
3596 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
3597 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
3598 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3599 struct __queue *queue = &(pmlmepriv->scanned_queue);
3600 u8 InfoContent[16] = {0};
3603 if ((pmlmepriv->num_FortyMHzIntolerant == 0) || (pmlmepriv->num_sta_no_ht == 0))
3606 if (true == pmlmeinfo->bwmode_updated)
3609 category = RTW_WLAN_CATEGORY_PUBLIC;
3610 action = ACT_PUBLIC_BSSCOEXIST;
3612 pmgntframe = alloc_mgtxmitframe(pxmitpriv);
3616 /* update attribute */
3617 pattrib = &pmgntframe->attrib;
3618 update_mgntframe_attrib(padapter, pattrib);
3620 memset(pmgntframe->buf_addr, 0, WLANHDR_OFFSET + TXDESC_OFFSET);
3622 pframe = (u8 *)(pmgntframe->buf_addr) + TXDESC_OFFSET;
3623 pwlanhdr = (struct ieee80211_hdr *)pframe;
3625 fctrl = &(pwlanhdr->frame_control);
3628 memcpy(pwlanhdr->addr1, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
3629 memcpy(pwlanhdr->addr2, myid(&(padapter->eeprompriv)), ETH_ALEN);
3630 memcpy(pwlanhdr->addr3, get_my_bssid(&(pmlmeinfo->network)), ETH_ALEN);
3632 SetSeqNum(pwlanhdr, pmlmeext->mgnt_seq);
3633 pmlmeext->mgnt_seq++;
3634 SetFrameSubType(pframe, WIFI_ACTION);
3636 pframe += sizeof(struct ieee80211_hdr_3addr);
3637 pattrib->pktlen = sizeof(struct ieee80211_hdr_3addr);
3639 pframe = rtw_set_fixed_ie(pframe, 1, &(category), &(pattrib->pktlen));
3640 pframe = rtw_set_fixed_ie(pframe, 1, &(action), &(pattrib->pktlen));
3644 if (pmlmepriv->num_FortyMHzIntolerant > 0) {
3647 iedata |= BIT(2);/* 20 MHz BSS Width Request */
3649 pframe = rtw_set_ie(pframe, WLAN_EID_BSS_COEX_2040, 1, &iedata, &(pattrib->pktlen));
3655 memset(ICS, 0, sizeof(ICS));
3656 if (pmlmepriv->num_sta_no_ht > 0) {
3659 spin_lock_bh(&(pmlmepriv->scanned_queue.lock));
3661 phead = get_list_head(queue);
3662 plist = get_next(phead);
3667 struct wlan_bssid_ex *pbss_network;
3672 pnetwork = container_of(plist, struct wlan_network, list);
3674 plist = get_next(plist);
3676 pbss_network = (struct wlan_bssid_ex *)&pnetwork->network;
3678 p = rtw_get_ie(pbss_network->ies + _FIXED_IE_LENGTH_, WLAN_EID_HT_CAPABILITY, &len, pbss_network->ie_length - _FIXED_IE_LENGTH_);
3679 if (!p || len == 0) {/* non-HT */
3681 if (pbss_network->configuration.ds_config <= 0)
3684 ICS[0][pbss_network->configuration.ds_config] = 1;
3692 spin_unlock_bh(&(pmlmepriv->scanned_queue.lock));
3695 for (i = 0; i < 8; i++) {
3696 if (ICS[i][0] == 1) {
3700 /* SET_BSS_INTOLERANT_ELE_REG_CLASS(InfoContent, i); */
3703 for (j = 1; j <= 14; j++) {
3704 if (ICS[i][j] == 1) {
3706 InfoContent[k] = j; /* channel number */
3707 /* SET_BSS_INTOLERANT_ELE_CHANNEL(InfoContent+k, j); */
3713 pframe = rtw_set_ie(pframe, WLAN_EID_BSS_INTOLERANT_CHL_REPORT, k, InfoContent, &(pattrib->pktlen));
3723 pattrib->last_txcmdsz = pattrib->pktlen;
3725 dump_mgntframe(padapter, pmgntframe);
3728 unsigned int send_delba(struct adapter *padapter, u8 initiator, u8 *addr)
3730 struct sta_priv *pstapriv = &padapter->stapriv;
3731 struct sta_info *psta = NULL;
3732 /* struct recv_reorder_ctrl *preorder_ctrl; */
3733 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
3734 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3737 if ((pmlmeinfo->state&0x03) != WIFI_FW_AP_STATE)
3738 if (!(pmlmeinfo->state & WIFI_FW_ASSOC_SUCCESS))
3741 psta = rtw_get_stainfo(pstapriv, addr);
3745 if (initiator == 0) {/* recipient */
3746 for (tid = 0; tid < MAXTID; tid++) {
3747 if (psta->recvreorder_ctrl[tid].enable) {
3748 issue_action_BA(padapter, addr, WLAN_ACTION_DELBA, (((tid << 1) | initiator)&0x1F));
3749 psta->recvreorder_ctrl[tid].enable = false;
3750 psta->recvreorder_ctrl[tid].indicate_seq = 0xffff;
3753 } else if (initiator == 1) {/* originator */
3754 for (tid = 0; tid < MAXTID; tid++) {
3755 if (psta->htpriv.agg_enable_bitmap & BIT(tid)) {
3756 issue_action_BA(padapter, addr, WLAN_ACTION_DELBA, (((tid << 1) | initiator)&0x1F));
3757 psta->htpriv.agg_enable_bitmap &= ~BIT(tid);
3758 psta->htpriv.candidate_tid_bitmap &= ~BIT(tid);
3768 unsigned int send_beacon(struct adapter *padapter)
3774 rtw_hal_set_hwreg(padapter, HW_VAR_BCN_VALID, NULL);
3775 rtw_hal_set_hwreg(padapter, HW_VAR_DL_BCN_SEL, NULL);
3777 issue_beacon(padapter, 100);
3781 rtw_hal_get_hwreg(padapter, HW_VAR_BCN_VALID, (u8 *)(&bxmitok));
3783 } while ((poll%10) != 0 && false == bxmitok && !padapter->bSurpriseRemoved && !padapter->bDriverStopped);
3785 } while (false == bxmitok && issue < 100 && !padapter->bSurpriseRemoved && !padapter->bDriverStopped);
3787 if (padapter->bSurpriseRemoved || padapter->bDriverStopped)
3796 /****************************************************************************
3798 Following are some utility functions for WiFi MLME
3800 *****************************************************************************/
3802 void site_survey(struct adapter *padapter)
3804 unsigned char survey_channel = 0, val8;
3805 enum rt_scan_type ScanType = SCAN_PASSIVE;
3806 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
3807 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3808 u32 initialgain = 0;
3809 u32 channel_scan_time_ms = 0;
3812 struct rtw_ieee80211_channel *ch;
3814 if (pmlmeext->sitesurvey_res.channel_idx < pmlmeext->sitesurvey_res.ch_num) {
3815 ch = &pmlmeext->sitesurvey_res.ch[pmlmeext->sitesurvey_res.channel_idx];
3816 survey_channel = ch->hw_value;
3817 ScanType = (ch->flags & RTW_IEEE80211_CHAN_PASSIVE_SCAN) ? SCAN_PASSIVE : SCAN_ACTIVE;
3821 if (survey_channel != 0) {
3822 /* PAUSE 4-AC Queue when site_survey */
3823 /* rtw_hal_get_hwreg(padapter, HW_VAR_TXPAUSE, (u8 *)(&val8)); */
3825 /* rtw_hal_set_hwreg(padapter, HW_VAR_TXPAUSE, (u8 *)(&val8)); */
3826 if (pmlmeext->sitesurvey_res.channel_idx == 0) {
3827 #ifdef DBG_FIXED_CHAN
3828 if (pmlmeext->fixed_chan != 0xff)
3829 set_channel_bwmode(padapter, pmlmeext->fixed_chan, HAL_PRIME_CHNL_OFFSET_DONT_CARE, CHANNEL_WIDTH_20);
3832 set_channel_bwmode(padapter, survey_channel, HAL_PRIME_CHNL_OFFSET_DONT_CARE, CHANNEL_WIDTH_20);
3834 #ifdef DBG_FIXED_CHAN
3835 if (pmlmeext->fixed_chan != 0xff)
3836 SelectChannel(padapter, pmlmeext->fixed_chan);
3839 SelectChannel(padapter, survey_channel);
3842 if (ScanType == SCAN_ACTIVE) { /* obey the channel plan setting... */
3846 for (i = 0; i < RTW_SSID_SCAN_AMOUNT; i++) {
3847 if (pmlmeext->sitesurvey_res.ssid[i].ssid_length) {
3848 /* IOT issue, When wifi_spec is not set, send one probe req without WPS IE. */
3849 if (padapter->registrypriv.wifi_spec)
3850 issue_probereq(padapter, &(pmlmeext->sitesurvey_res.ssid[i]), NULL);
3852 issue_probereq_ex(padapter, &(pmlmeext->sitesurvey_res.ssid[i]), NULL, 0, 0, 0, 0);
3853 issue_probereq(padapter, &(pmlmeext->sitesurvey_res.ssid[i]), NULL);
3857 if (pmlmeext->sitesurvey_res.scan_mode == SCAN_ACTIVE) {
3858 /* IOT issue, When wifi_spec is not set, send one probe req without WPS IE. */
3859 if (padapter->registrypriv.wifi_spec)
3860 issue_probereq(padapter, NULL, NULL);
3862 issue_probereq_ex(padapter, NULL, NULL, 0, 0, 0, 0);
3863 issue_probereq(padapter, NULL, NULL);
3868 channel_scan_time_ms = pmlmeext->chan_scan_time;
3870 set_survey_timer(pmlmeext, channel_scan_time_ms);
3873 /* channel number is 0 or this channel is not valid. */
3876 pmlmeext->sitesurvey_res.state = SCAN_COMPLETE;
3878 /* switch back to the original channel */
3879 /* SelectChannel(padapter, pmlmeext->cur_channel, pmlmeext->cur_ch_offset); */
3881 set_channel_bwmode(padapter, pmlmeext->cur_channel, pmlmeext->cur_ch_offset, pmlmeext->cur_bwmode);
3883 /* flush 4-AC Queue after site_survey */
3885 /* rtw_hal_set_hwreg(padapter, HW_VAR_TXPAUSE, (u8 *)(&val8)); */
3888 Set_MSR(padapter, (pmlmeinfo->state & 0x3));
3890 initialgain = 0xff; /* restore RX GAIN */
3891 rtw_hal_set_hwreg(padapter, HW_VAR_INITIAL_GAIN, (u8 *)(&initialgain));
3892 /* turn on dynamic functions */
3893 Restore_DM_Func_Flag(padapter);
3894 /* Switch_DM_Func(padapter, DYNAMIC_ALL_FUNC_ENABLE, true); */
3896 if (is_client_associated_to_ap(padapter))
3897 issue_nulldata(padapter, NULL, 0, 3, 500);
3899 val8 = 0; /* survey done */
3900 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_SITESURVEY, (u8 *)(&val8));
3902 report_surveydone_event(padapter);
3904 pmlmeext->chan_scan_time = SURVEY_TO;
3905 pmlmeext->sitesurvey_res.state = SCAN_DISABLE;
3907 issue_action_BSSCoexistPacket(padapter);
3908 issue_action_BSSCoexistPacket(padapter);
3909 issue_action_BSSCoexistPacket(padapter);
3917 /* collect bss info from Beacon and Probe request/response frames. */
3918 u8 collect_bss_info(struct adapter *padapter, union recv_frame *precv_frame, struct wlan_bssid_ex *bssid)
3924 u8 *pframe = precv_frame->u.hdr.rx_data;
3925 u32 packet_len = precv_frame->u.hdr.len;
3927 struct registry_priv *pregistrypriv = &padapter->registrypriv;
3928 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
3929 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
3932 len = packet_len - sizeof(struct ieee80211_hdr_3addr);
3934 if (len > MAX_IE_SZ)
3937 memset(bssid, 0, sizeof(struct wlan_bssid_ex));
3939 subtype = GetFrameSubType(pframe);
3941 if (subtype == WIFI_BEACON) {
3942 bssid->reserved[0] = 1;
3943 ie_offset = _BEACON_IE_OFFSET_;
3945 /* FIXME : more type */
3946 if (subtype == WIFI_PROBERSP) {
3947 ie_offset = _PROBERSP_IE_OFFSET_;
3948 bssid->reserved[0] = 3;
3949 } else if (subtype == WIFI_PROBEREQ) {
3950 ie_offset = _PROBEREQ_IE_OFFSET_;
3951 bssid->reserved[0] = 2;
3953 bssid->reserved[0] = 0;
3954 ie_offset = _FIXED_IE_LENGTH_;
3958 bssid->length = sizeof(struct wlan_bssid_ex) - MAX_IE_SZ + len;
3960 /* below is to copy the information element */
3961 bssid->ie_length = len;
3962 memcpy(bssid->ies, (pframe + sizeof(struct ieee80211_hdr_3addr)), bssid->ie_length);
3964 /* get the signal strength */
3965 bssid->rssi = precv_frame->u.hdr.attrib.phy_info.RecvSignalPower; /* in dBM.raw data */
3966 bssid->phy_info.signal_quality = precv_frame->u.hdr.attrib.phy_info.SignalQuality;/* in percentage */
3967 bssid->phy_info.signal_strength = precv_frame->u.hdr.attrib.phy_info.SignalStrength;/* in percentage */
3970 p = rtw_get_ie(bssid->ies + ie_offset, WLAN_EID_SSID, &len, bssid->ie_length - ie_offset);
3975 if (len > NDIS_802_11_LENGTH_SSID)
3978 memcpy(bssid->ssid.ssid, (p + 2), *(p + 1));
3979 bssid->ssid.ssid_length = *(p + 1);
3981 bssid->ssid.ssid_length = 0;
3983 memset(bssid->supported_rates, 0, NDIS_802_11_LENGTH_RATES_EX);
3985 /* checking rate info... */
3987 p = rtw_get_ie(bssid->ies + ie_offset, WLAN_EID_SUPP_RATES, &len, bssid->ie_length - ie_offset);
3989 if (len > NDIS_802_11_LENGTH_RATES_EX)
3992 memcpy(bssid->supported_rates, (p + 2), len);
3996 p = rtw_get_ie(bssid->ies + ie_offset, WLAN_EID_EXT_SUPP_RATES, &len, bssid->ie_length - ie_offset);
3998 if (len > (NDIS_802_11_LENGTH_RATES_EX-i))
4001 memcpy(bssid->supported_rates + i, (p + 2), len);
4004 bssid->network_type_in_use = Ndis802_11OFDM24;
4006 if (bssid->ie_length < 12)
4009 /* Checking for ds_config */
4010 p = rtw_get_ie(bssid->ies + ie_offset, WLAN_EID_DS_PARAMS, &len, bssid->ie_length - ie_offset);
4012 bssid->configuration.ds_config = 0;
4013 bssid->configuration.length = 0;
4016 bssid->configuration.ds_config = *(p + 2);
4018 /* In 5G, some ap do not have DSSET IE */
4019 /* checking HT info for channel */
4020 p = rtw_get_ie(bssid->ies + ie_offset, WLAN_EID_HT_OPERATION, &len, bssid->ie_length - ie_offset);
4022 struct HT_info_element *HT_info = (struct HT_info_element *)(p + 2);
4024 bssid->configuration.ds_config = HT_info->primary_channel;
4025 } else { /* use current channel */
4026 bssid->configuration.ds_config = rtw_get_oper_ch(padapter);
4030 memcpy(&le32_tmp, rtw_get_beacon_interval_from_ie(bssid->ies), 2);
4031 bssid->configuration.beacon_period = le32_to_cpu(le32_tmp);
4033 val16 = rtw_get_capability((struct wlan_bssid_ex *)bssid);
4035 if (val16 & BIT(0)) {
4036 bssid->infrastructure_mode = Ndis802_11Infrastructure;
4037 memcpy(bssid->mac_address, GetAddr2Ptr(pframe), ETH_ALEN);
4039 bssid->infrastructure_mode = Ndis802_11IBSS;
4040 memcpy(bssid->mac_address, GetAddr3Ptr(pframe), ETH_ALEN);
4048 bssid->configuration.atim_window = 0;
4050 /* 20/40 BSS Coexistence check */
4051 if ((pregistrypriv->wifi_spec == 1) && (false == pmlmeinfo->bwmode_updated)) {
4052 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
4054 p = rtw_get_ie(bssid->ies + ie_offset, WLAN_EID_HT_CAPABILITY, &len, bssid->ie_length - ie_offset);
4056 struct HT_caps_element *pHT_caps;
4058 pHT_caps = (struct HT_caps_element *)(p + 2);
4060 if (le16_to_cpu(pHT_caps->u.HT_cap_element.HT_caps_info) & BIT(14))
4061 pmlmepriv->num_FortyMHzIntolerant++;
4063 pmlmepriv->num_sta_no_ht++;
4066 /* mark bss info receiving from nearby channel as signal_quality 101 */
4067 if (bssid->configuration.ds_config != rtw_get_oper_ch(padapter))
4068 bssid->phy_info.signal_quality = 101;
4073 void start_create_ibss(struct adapter *padapter)
4075 unsigned short caps;
4078 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4079 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4080 struct wlan_bssid_ex *pnetwork = (struct wlan_bssid_ex *)(&(pmlmeinfo->network));
4082 pmlmeext->cur_channel = (u8)pnetwork->configuration.ds_config;
4083 pmlmeinfo->bcn_interval = get_beacon_interval(pnetwork);
4085 /* update wireless mode */
4086 update_wireless_mode(padapter);
4088 /* update capability */
4089 caps = rtw_get_capability((struct wlan_bssid_ex *)pnetwork);
4090 update_capinfo(padapter, caps);
4091 if (caps&WLAN_CAPABILITY_IBSS) {/* adhoc master */
4093 rtw_hal_set_hwreg(padapter, HW_VAR_SEC_CFG, (u8 *)(&val8));
4095 rtw_hal_set_hwreg(padapter, HW_VAR_DO_IQK, NULL);
4097 /* switch channel */
4098 /* SelectChannel(padapter, pmlmeext->cur_channel, HAL_PRIME_CHNL_OFFSET_DONT_CARE); */
4099 set_channel_bwmode(padapter, pmlmeext->cur_channel, HAL_PRIME_CHNL_OFFSET_DONT_CARE, CHANNEL_WIDTH_20);
4101 beacon_timing_control(padapter);
4103 /* set msr to WIFI_FW_ADHOC_STATE */
4104 pmlmeinfo->state = WIFI_FW_ADHOC_STATE;
4105 Set_MSR(padapter, (pmlmeinfo->state & 0x3));
4108 if (send_beacon(padapter) == _FAIL) {
4109 report_join_res(padapter, -1);
4110 pmlmeinfo->state = WIFI_FW_NULL_STATE;
4112 rtw_hal_set_hwreg(padapter, HW_VAR_BSSID, padapter->registrypriv.dev_network.mac_address);
4114 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_JOIN, (u8 *)(&join_type));
4116 report_join_res(padapter, 1);
4117 pmlmeinfo->state |= WIFI_FW_ASSOC_SUCCESS;
4118 rtw_indicate_connect(padapter);
4123 /* update bc/mc sta_info */
4124 update_bmc_sta(padapter);
4128 void start_clnt_join(struct adapter *padapter)
4130 unsigned short caps;
4132 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4133 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4134 struct wlan_bssid_ex *pnetwork = (struct wlan_bssid_ex *)(&(pmlmeinfo->network));
4137 /* update wireless mode */
4138 update_wireless_mode(padapter);
4140 /* update capability */
4141 caps = rtw_get_capability((struct wlan_bssid_ex *)pnetwork);
4142 update_capinfo(padapter, caps);
4143 if (caps&WLAN_CAPABILITY_ESS) {
4144 Set_MSR(padapter, WIFI_FW_STATION_STATE);
4146 val8 = (pmlmeinfo->auth_algo == dot11AuthAlgrthm_8021X) ? 0xcc : 0xcf;
4148 rtw_hal_set_hwreg(padapter, HW_VAR_SEC_CFG, (u8 *)(&val8));
4150 /* Because of AP's not receiving deauth before */
4151 /* AP may: 1)not response auth or 2)deauth us after link is complete */
4152 /* issue deauth before issuing auth to deal with the situation */
4154 /* Commented by Albert 2012/07/21 */
4155 /* For the Win8 P2P connection, it will be hard to have a successful connection if this Wi-Fi doesn't connect to it. */
4157 /* To avoid connecting to AP fail during resume process, change retry count from 5 to 1 */
4158 issue_deauth_ex(padapter, pnetwork->mac_address, WLAN_REASON_DEAUTH_LEAVING, 1, 100);
4161 /* here wait for receiving the beacon to start auth */
4162 /* and enable a timer */
4163 beacon_timeout = decide_wait_for_beacon_timeout(pmlmeinfo->bcn_interval);
4164 set_link_timer(pmlmeext, beacon_timeout);
4165 _set_timer(&padapter->mlmepriv.assoc_timer,
4166 (REAUTH_TO * REAUTH_LIMIT) + (REASSOC_TO*REASSOC_LIMIT) + beacon_timeout);
4168 pmlmeinfo->state = WIFI_FW_AUTH_NULL | WIFI_FW_STATION_STATE;
4169 } else if (caps&WLAN_CAPABILITY_IBSS) { /* adhoc client */
4170 Set_MSR(padapter, WIFI_FW_ADHOC_STATE);
4173 rtw_hal_set_hwreg(padapter, HW_VAR_SEC_CFG, (u8 *)(&val8));
4175 beacon_timing_control(padapter);
4177 pmlmeinfo->state = WIFI_FW_ADHOC_STATE;
4179 report_join_res(padapter, 1);
4186 void start_clnt_auth(struct adapter *padapter)
4188 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4189 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4191 del_timer_sync(&pmlmeext->link_timer);
4193 pmlmeinfo->state &= (~WIFI_FW_AUTH_NULL);
4194 pmlmeinfo->state |= WIFI_FW_AUTH_STATE;
4196 pmlmeinfo->auth_seq = 1;
4197 pmlmeinfo->reauth_count = 0;
4198 pmlmeinfo->reassoc_count = 0;
4199 pmlmeinfo->link_count = 0;
4200 pmlmeext->retry = 0;
4203 netdev_dbg(padapter->pnetdev, "start auth\n");
4204 issue_auth(padapter, NULL, 0);
4206 set_link_timer(pmlmeext, REAUTH_TO);
4211 void start_clnt_assoc(struct adapter *padapter)
4213 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4214 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4216 del_timer_sync(&pmlmeext->link_timer);
4218 pmlmeinfo->state &= (~(WIFI_FW_AUTH_NULL | WIFI_FW_AUTH_STATE));
4219 pmlmeinfo->state |= (WIFI_FW_AUTH_SUCCESS | WIFI_FW_ASSOC_STATE);
4221 issue_assocreq(padapter);
4223 set_link_timer(pmlmeext, REASSOC_TO);
4226 unsigned int receive_disconnect(struct adapter *padapter, unsigned char *MacAddr, unsigned short reason)
4228 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4229 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4232 if (!(!memcmp(MacAddr, get_my_bssid(&pmlmeinfo->network), ETH_ALEN)))
4235 if ((pmlmeinfo->state&0x03) == WIFI_FW_STATION_STATE) {
4236 if (pmlmeinfo->state & WIFI_FW_ASSOC_SUCCESS) {
4237 pmlmeinfo->state = WIFI_FW_NULL_STATE;
4238 report_del_sta_event(padapter, MacAddr, reason);
4240 } else if (pmlmeinfo->state & WIFI_FW_LINKING_STATE) {
4241 pmlmeinfo->state = WIFI_FW_NULL_STATE;
4242 report_join_res(padapter, -2);
4249 static void process_80211d(struct adapter *padapter, struct wlan_bssid_ex *bssid)
4251 struct registry_priv *pregistrypriv;
4252 struct mlme_ext_priv *pmlmeext;
4253 struct rt_channel_info *chplan_new;
4258 pregistrypriv = &padapter->registrypriv;
4259 pmlmeext = &padapter->mlmeextpriv;
4261 /* Adjust channel plan by AP Country IE */
4262 if (pregistrypriv->enable80211d &&
4263 (!pmlmeext->update_channel_plan_by_ap_done)) {
4266 struct rt_channel_plan chplan_ap;
4267 struct rt_channel_info chplan_sta[MAX_CHANNEL_NUM];
4269 u8 fcn; /* first channel number */
4270 u8 noc; /* number of channel */
4273 ie = rtw_get_ie(bssid->ies + _FIXED_IE_LENGTH_, WLAN_EID_COUNTRY, &len, bssid->ie_length - _FIXED_IE_LENGTH_);
4283 memset(country, 0, 4);
4284 memcpy(country, p, 3);
4288 while ((ie - p) >= 3) {
4293 for (j = 0; j < noc; j++) {
4295 channel = fcn + j; /* 2.4 GHz */
4297 channel = fcn + j*4; /* 5 GHz */
4299 chplan_ap.Channel[i++] = channel;
4304 memcpy(chplan_sta, pmlmeext->channel_set, sizeof(chplan_sta));
4306 memset(pmlmeext->channel_set, 0, sizeof(pmlmeext->channel_set));
4307 chplan_new = pmlmeext->channel_set;
4310 if (pregistrypriv->wireless_mode & WIRELESS_11G) {
4312 if ((i == MAX_CHANNEL_NUM) ||
4313 (chplan_sta[i].ChannelNum == 0) ||
4314 (chplan_sta[i].ChannelNum > 14))
4317 if ((j == chplan_ap.Len) || (chplan_ap.Channel[j] > 14))
4320 if (chplan_sta[i].ChannelNum == chplan_ap.Channel[j]) {
4321 chplan_new[k].ChannelNum = chplan_ap.Channel[j];
4322 chplan_new[k].ScanType = SCAN_ACTIVE;
4326 } else if (chplan_sta[i].ChannelNum < chplan_ap.Channel[j]) {
4327 chplan_new[k].ChannelNum = chplan_sta[i].ChannelNum;
4328 /* chplan_new[k].ScanType = chplan_sta[i].ScanType; */
4329 chplan_new[k].ScanType = SCAN_PASSIVE;
4332 } else if (chplan_sta[i].ChannelNum > chplan_ap.Channel[j]) {
4333 chplan_new[k].ChannelNum = chplan_ap.Channel[j];
4334 chplan_new[k].ScanType = SCAN_ACTIVE;
4340 /* change AP not support channel to Passive scan */
4341 while ((i < MAX_CHANNEL_NUM) &&
4342 (chplan_sta[i].ChannelNum != 0) &&
4343 (chplan_sta[i].ChannelNum <= 14)) {
4345 chplan_new[k].ChannelNum = chplan_sta[i].ChannelNum;
4346 /* chplan_new[k].ScanType = chplan_sta[i].ScanType; */
4347 chplan_new[k].ScanType = SCAN_PASSIVE;
4352 /* add channel AP supported */
4353 while ((j < chplan_ap.Len) && (chplan_ap.Channel[j] <= 14)) {
4354 chplan_new[k].ChannelNum = chplan_ap.Channel[j];
4355 chplan_new[k].ScanType = SCAN_ACTIVE;
4360 /* keep original STA 2.4G channel plan */
4361 while ((i < MAX_CHANNEL_NUM) &&
4362 (chplan_sta[i].ChannelNum != 0) &&
4363 (chplan_sta[i].ChannelNum <= 14)) {
4364 chplan_new[k].ChannelNum = chplan_sta[i].ChannelNum;
4365 chplan_new[k].ScanType = chplan_sta[i].ScanType;
4370 /* skip AP 2.4G channel plan */
4371 while ((j < chplan_ap.Len) && (chplan_ap.Channel[j] <= 14))
4375 pmlmeext->update_channel_plan_by_ap_done = 1;
4378 /* If channel is used by AP, set channel scan type to active */
4379 channel = bssid->configuration.ds_config;
4380 chplan_new = pmlmeext->channel_set;
4382 while ((i < MAX_CHANNEL_NUM) && (chplan_new[i].ChannelNum != 0)) {
4383 if (chplan_new[i].ChannelNum == channel) {
4384 if (chplan_new[i].ScanType == SCAN_PASSIVE)
4385 chplan_new[i].ScanType = SCAN_ACTIVE;
4392 /****************************************************************************
4394 Following are the functions to report events
4396 *****************************************************************************/
4398 void report_survey_event(struct adapter *padapter, union recv_frame *precv_frame)
4400 struct cmd_obj *pcmd_obj;
4403 struct survey_event *psurvey_evt;
4404 struct C2HEvent_Header *pc2h_evt_hdr;
4405 struct mlme_ext_priv *pmlmeext;
4406 struct cmd_priv *pcmdpriv;
4407 /* u8 *pframe = precv_frame->u.hdr.rx_data; */
4408 /* uint len = precv_frame->u.hdr.len; */
4413 pmlmeext = &padapter->mlmeextpriv;
4414 pcmdpriv = &padapter->cmdpriv;
4416 pcmd_obj = rtw_zmalloc(sizeof(struct cmd_obj));
4420 cmdsz = (sizeof(struct survey_event) + sizeof(struct C2HEvent_Header));
4421 pevtcmd = rtw_zmalloc(cmdsz);
4427 INIT_LIST_HEAD(&pcmd_obj->list);
4429 pcmd_obj->cmdcode = GEN_CMD_CODE(_Set_MLME_EVT);
4430 pcmd_obj->cmdsz = cmdsz;
4431 pcmd_obj->parmbuf = pevtcmd;
4433 pcmd_obj->rsp = NULL;
4434 pcmd_obj->rspsz = 0;
4436 pc2h_evt_hdr = (struct C2HEvent_Header *)(pevtcmd);
4437 pc2h_evt_hdr->len = sizeof(struct survey_event);
4438 pc2h_evt_hdr->ID = GEN_EVT_CODE(_Survey);
4439 pc2h_evt_hdr->seq = atomic_inc_return(&pmlmeext->event_seq);
4441 psurvey_evt = (struct survey_event *)(pevtcmd + sizeof(struct C2HEvent_Header));
4443 if (collect_bss_info(padapter, precv_frame, (struct wlan_bssid_ex *)&psurvey_evt->bss) == _FAIL) {
4449 process_80211d(padapter, &psurvey_evt->bss);
4451 rtw_enqueue_cmd(pcmdpriv, pcmd_obj);
4453 pmlmeext->sitesurvey_res.bss_cnt++;
4459 void report_surveydone_event(struct adapter *padapter)
4461 struct cmd_obj *pcmd_obj;
4464 struct surveydone_event *psurveydone_evt;
4465 struct C2HEvent_Header *pc2h_evt_hdr;
4466 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4467 struct cmd_priv *pcmdpriv = &padapter->cmdpriv;
4469 pcmd_obj = rtw_zmalloc(sizeof(struct cmd_obj));
4473 cmdsz = (sizeof(struct surveydone_event) + sizeof(struct C2HEvent_Header));
4474 pevtcmd = rtw_zmalloc(cmdsz);
4480 INIT_LIST_HEAD(&pcmd_obj->list);
4482 pcmd_obj->cmdcode = GEN_CMD_CODE(_Set_MLME_EVT);
4483 pcmd_obj->cmdsz = cmdsz;
4484 pcmd_obj->parmbuf = pevtcmd;
4486 pcmd_obj->rsp = NULL;
4487 pcmd_obj->rspsz = 0;
4489 pc2h_evt_hdr = (struct C2HEvent_Header *)(pevtcmd);
4490 pc2h_evt_hdr->len = sizeof(struct surveydone_event);
4491 pc2h_evt_hdr->ID = GEN_EVT_CODE(_SurveyDone);
4492 pc2h_evt_hdr->seq = atomic_inc_return(&pmlmeext->event_seq);
4494 psurveydone_evt = (struct surveydone_event *)(pevtcmd + sizeof(struct C2HEvent_Header));
4495 psurveydone_evt->bss_cnt = pmlmeext->sitesurvey_res.bss_cnt;
4497 rtw_enqueue_cmd(pcmdpriv, pcmd_obj);
4503 void report_join_res(struct adapter *padapter, int res)
4505 struct cmd_obj *pcmd_obj;
4508 struct joinbss_event *pjoinbss_evt;
4509 struct C2HEvent_Header *pc2h_evt_hdr;
4510 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4511 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4512 struct cmd_priv *pcmdpriv = &padapter->cmdpriv;
4514 pcmd_obj = rtw_zmalloc(sizeof(struct cmd_obj));
4518 cmdsz = (sizeof(struct joinbss_event) + sizeof(struct C2HEvent_Header));
4519 pevtcmd = rtw_zmalloc(cmdsz);
4525 INIT_LIST_HEAD(&pcmd_obj->list);
4527 pcmd_obj->cmdcode = GEN_CMD_CODE(_Set_MLME_EVT);
4528 pcmd_obj->cmdsz = cmdsz;
4529 pcmd_obj->parmbuf = pevtcmd;
4531 pcmd_obj->rsp = NULL;
4532 pcmd_obj->rspsz = 0;
4534 pc2h_evt_hdr = (struct C2HEvent_Header *)(pevtcmd);
4535 pc2h_evt_hdr->len = sizeof(struct joinbss_event);
4536 pc2h_evt_hdr->ID = GEN_EVT_CODE(_JoinBss);
4537 pc2h_evt_hdr->seq = atomic_inc_return(&pmlmeext->event_seq);
4539 pjoinbss_evt = (struct joinbss_event *)(pevtcmd + sizeof(struct C2HEvent_Header));
4540 memcpy((unsigned char *)(&(pjoinbss_evt->network.network)), &(pmlmeinfo->network), sizeof(struct wlan_bssid_ex));
4541 pjoinbss_evt->network.join_res = pjoinbss_evt->network.aid = res;
4544 rtw_joinbss_event_prehandle(padapter, (u8 *)&pjoinbss_evt->network);
4547 rtw_enqueue_cmd(pcmdpriv, pcmd_obj);
4553 void report_wmm_edca_update(struct adapter *padapter)
4555 struct cmd_obj *pcmd_obj;
4558 struct wmm_event *pwmm_event;
4559 struct C2HEvent_Header *pc2h_evt_hdr;
4560 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4561 struct cmd_priv *pcmdpriv = &padapter->cmdpriv;
4563 pcmd_obj = rtw_zmalloc(sizeof(struct cmd_obj));
4567 cmdsz = (sizeof(struct wmm_event) + sizeof(struct C2HEvent_Header));
4568 pevtcmd = rtw_zmalloc(cmdsz);
4574 INIT_LIST_HEAD(&pcmd_obj->list);
4576 pcmd_obj->cmdcode = GEN_CMD_CODE(_Set_MLME_EVT);
4577 pcmd_obj->cmdsz = cmdsz;
4578 pcmd_obj->parmbuf = pevtcmd;
4580 pcmd_obj->rsp = NULL;
4581 pcmd_obj->rspsz = 0;
4583 pc2h_evt_hdr = (struct C2HEvent_Header *)(pevtcmd);
4584 pc2h_evt_hdr->len = sizeof(struct wmm_event);
4585 pc2h_evt_hdr->ID = GEN_EVT_CODE(_WMM);
4586 pc2h_evt_hdr->seq = atomic_inc_return(&pmlmeext->event_seq);
4588 pwmm_event = (struct wmm_event *)(pevtcmd + sizeof(struct C2HEvent_Header));
4589 pwmm_event->wmm = 0;
4591 rtw_enqueue_cmd(pcmdpriv, pcmd_obj);
4597 void report_del_sta_event(struct adapter *padapter, unsigned char *MacAddr, unsigned short reason)
4599 struct cmd_obj *pcmd_obj;
4602 struct sta_info *psta;
4604 struct stadel_event *pdel_sta_evt;
4605 struct C2HEvent_Header *pc2h_evt_hdr;
4606 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4607 struct cmd_priv *pcmdpriv = &padapter->cmdpriv;
4609 pcmd_obj = rtw_zmalloc(sizeof(struct cmd_obj));
4613 cmdsz = (sizeof(struct stadel_event) + sizeof(struct C2HEvent_Header));
4614 pevtcmd = rtw_zmalloc(cmdsz);
4620 INIT_LIST_HEAD(&pcmd_obj->list);
4622 pcmd_obj->cmdcode = GEN_CMD_CODE(_Set_MLME_EVT);
4623 pcmd_obj->cmdsz = cmdsz;
4624 pcmd_obj->parmbuf = pevtcmd;
4626 pcmd_obj->rsp = NULL;
4627 pcmd_obj->rspsz = 0;
4629 pc2h_evt_hdr = (struct C2HEvent_Header *)(pevtcmd);
4630 pc2h_evt_hdr->len = sizeof(struct stadel_event);
4631 pc2h_evt_hdr->ID = GEN_EVT_CODE(_DelSTA);
4632 pc2h_evt_hdr->seq = atomic_inc_return(&pmlmeext->event_seq);
4634 pdel_sta_evt = (struct stadel_event *)(pevtcmd + sizeof(struct C2HEvent_Header));
4635 memcpy((unsigned char *)(&(pdel_sta_evt->macaddr)), MacAddr, ETH_ALEN);
4636 memcpy((unsigned char *)(pdel_sta_evt->rsvd), (unsigned char *)(&reason), 2);
4639 psta = rtw_get_stainfo(&padapter->stapriv, MacAddr);
4641 mac_id = (int)psta->mac_id;
4645 pdel_sta_evt->mac_id = mac_id;
4647 rtw_enqueue_cmd(pcmdpriv, pcmd_obj);
4650 void report_add_sta_event(struct adapter *padapter, unsigned char *MacAddr, int cam_idx)
4652 struct cmd_obj *pcmd_obj;
4655 struct stassoc_event *padd_sta_evt;
4656 struct C2HEvent_Header *pc2h_evt_hdr;
4657 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4658 struct cmd_priv *pcmdpriv = &padapter->cmdpriv;
4660 pcmd_obj = rtw_zmalloc(sizeof(struct cmd_obj));
4664 cmdsz = (sizeof(struct stassoc_event) + sizeof(struct C2HEvent_Header));
4665 pevtcmd = rtw_zmalloc(cmdsz);
4671 INIT_LIST_HEAD(&pcmd_obj->list);
4673 pcmd_obj->cmdcode = GEN_CMD_CODE(_Set_MLME_EVT);
4674 pcmd_obj->cmdsz = cmdsz;
4675 pcmd_obj->parmbuf = pevtcmd;
4677 pcmd_obj->rsp = NULL;
4678 pcmd_obj->rspsz = 0;
4680 pc2h_evt_hdr = (struct C2HEvent_Header *)(pevtcmd);
4681 pc2h_evt_hdr->len = sizeof(struct stassoc_event);
4682 pc2h_evt_hdr->ID = GEN_EVT_CODE(_AddSTA);
4683 pc2h_evt_hdr->seq = atomic_inc_return(&pmlmeext->event_seq);
4685 padd_sta_evt = (struct stassoc_event *)(pevtcmd + sizeof(struct C2HEvent_Header));
4686 memcpy((unsigned char *)(&(padd_sta_evt->macaddr)), MacAddr, ETH_ALEN);
4687 padd_sta_evt->cam_id = cam_idx;
4689 rtw_enqueue_cmd(pcmdpriv, pcmd_obj);
4692 /****************************************************************************
4694 Following are the event callback functions
4696 *****************************************************************************/
4698 /* for sta/adhoc mode */
4699 void update_sta_info(struct adapter *padapter, struct sta_info *psta)
4701 struct mlme_priv *pmlmepriv = &(padapter->mlmepriv);
4702 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4703 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4706 VCS_update(padapter, psta);
4709 if (pmlmepriv->htpriv.ht_option) {
4710 psta->htpriv.ht_option = true;
4712 psta->htpriv.ampdu_enable = pmlmepriv->htpriv.ampdu_enable;
4714 psta->htpriv.rx_ampdu_min_spacing = (pmlmeinfo->HT_caps.u.HT_cap_element.AMPDU_para&IEEE80211_HT_CAP_AMPDU_DENSITY)>>2;
4716 if (support_short_GI(padapter, &(pmlmeinfo->HT_caps), CHANNEL_WIDTH_20))
4717 psta->htpriv.sgi_20m = true;
4719 if (support_short_GI(padapter, &(pmlmeinfo->HT_caps), CHANNEL_WIDTH_40))
4720 psta->htpriv.sgi_40m = true;
4722 psta->qos_option = true;
4724 psta->htpriv.ldpc_cap = pmlmepriv->htpriv.ldpc_cap;
4725 psta->htpriv.stbc_cap = pmlmepriv->htpriv.stbc_cap;
4726 psta->htpriv.beamform_cap = pmlmepriv->htpriv.beamform_cap;
4728 memcpy(&psta->htpriv.ht_cap, &pmlmeinfo->HT_caps, sizeof(struct ieee80211_ht_cap));
4730 psta->htpriv.ht_option = false;
4732 psta->htpriv.ampdu_enable = false;
4734 psta->htpriv.sgi_20m = false;
4735 psta->htpriv.sgi_40m = false;
4736 psta->qos_option = false;
4740 psta->htpriv.ch_offset = pmlmeext->cur_ch_offset;
4742 psta->htpriv.agg_enable_bitmap = 0x0;/* reset */
4743 psta->htpriv.candidate_tid_bitmap = 0x0;/* reset */
4745 psta->bw_mode = pmlmeext->cur_bwmode;
4748 if (pmlmepriv->qospriv.qos_option)
4749 psta->qos_option = true;
4751 update_ldpc_stbc_cap(psta);
4753 spin_lock_bh(&psta->lock);
4754 psta->state = _FW_LINKED;
4755 spin_unlock_bh(&psta->lock);
4759 static void rtw_mlmeext_disconnect(struct adapter *padapter)
4761 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
4762 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4763 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4764 struct wlan_bssid_ex *pnetwork = (struct wlan_bssid_ex *)(&(pmlmeinfo->network));
4766 /* set_opmode_cmd(padapter, infra_client_with_mlme); */
4768 /* For safety, prevent from keeping macid sleep.
4769 * If we can sure all power mode enter/leave are paired,
4770 * this check can be removed.
4773 /* wakeup macid after disconnect. */
4775 struct sta_info *psta;
4777 psta = rtw_get_stainfo(&padapter->stapriv, get_my_bssid(pnetwork));
4779 rtw_hal_macid_wakeup(padapter, psta->mac_id);
4782 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_DISCONNECT, NULL);
4783 rtw_hal_set_hwreg(padapter, HW_VAR_BSSID, null_addr);
4785 /* set MSR to no link state -> infra. mode */
4786 Set_MSR(padapter, _HW_STATE_STATION_);
4788 pmlmeinfo->state = WIFI_FW_NULL_STATE;
4790 /* switch to the 20M Hz mode after disconnect */
4791 pmlmeext->cur_bwmode = CHANNEL_WIDTH_20;
4792 pmlmeext->cur_ch_offset = HAL_PRIME_CHNL_OFFSET_DONT_CARE;
4794 set_channel_bwmode(padapter, pmlmeext->cur_channel, pmlmeext->cur_ch_offset, pmlmeext->cur_bwmode);
4796 flush_all_cam_entry(padapter);
4798 del_timer_sync(&pmlmeext->link_timer);
4800 /* pmlmepriv->LinkDetectInfo.TrafficBusyState = false; */
4801 pmlmepriv->LinkDetectInfo.TrafficTransitionCount = 0;
4802 pmlmepriv->LinkDetectInfo.LowPowerTransitionCount = 0;
4806 void mlmeext_joinbss_event_callback(struct adapter *padapter, int join_res)
4808 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4809 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4810 struct wlan_bssid_ex *cur_network = &(pmlmeinfo->network);
4811 struct sta_priv *pstapriv = &padapter->stapriv;
4813 struct sta_info *psta;
4817 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_JOIN, (u8 *)(&join_type));
4818 rtw_hal_set_hwreg(padapter, HW_VAR_BSSID, null_addr);
4823 if ((pmlmeinfo->state&0x03) == WIFI_FW_ADHOC_STATE)
4824 /* update bc/mc sta_info */
4825 update_bmc_sta(padapter);
4828 /* turn on dynamic functions */
4829 Switch_DM_Func(padapter, DYNAMIC_ALL_FUNC_ENABLE, true);
4831 /* update IOT-related issue */
4832 update_IOT_info(padapter);
4834 rtw_hal_set_hwreg(padapter, HW_VAR_BASIC_RATE, cur_network->supported_rates);
4837 rtw_hal_set_hwreg(padapter, HW_VAR_BEACON_INTERVAL, (u8 *)(&pmlmeinfo->bcn_interval));
4839 /* update capability */
4840 update_capinfo(padapter, pmlmeinfo->capability);
4842 /* WMM, Update EDCA param */
4843 WMMOnAssocRsp(padapter);
4846 HTOnAssocRsp(padapter);
4848 /* Set cur_channel&cur_bwmode&cur_ch_offset */
4849 set_channel_bwmode(padapter, pmlmeext->cur_channel, pmlmeext->cur_ch_offset, pmlmeext->cur_bwmode);
4851 psta = rtw_get_stainfo(pstapriv, cur_network->mac_address);
4852 if (psta) { /* only for infra. mode */
4854 pmlmeinfo->FW_sta_info[psta->mac_id].psta = psta;
4856 psta->wireless_mode = pmlmeext->cur_wireless_mode;
4858 /* set per sta rate after updating HT cap. */
4859 set_sta_rate(padapter, psta);
4861 rtw_sta_media_status_rpt(padapter, psta, 1);
4863 /* wakeup macid after join bss successfully to ensure
4864 the subsequent data frames can be sent out normally */
4865 rtw_hal_macid_wakeup(padapter, psta->mac_id);
4869 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_JOIN, (u8 *)(&join_type));
4871 if ((pmlmeinfo->state&0x03) == WIFI_FW_STATION_STATE) {
4872 /* correcting TSF */
4873 correct_TSF(padapter, pmlmeext);
4875 /* set_link_timer(pmlmeext, DISCONNECT_TO); */
4878 if (get_iface_type(padapter) == IFACE_PORT0)
4879 rtw_lps_ctrl_wk_cmd(padapter, LPS_CTRL_CONNECT, 0);
4882 /* currently only adhoc mode will go here */
4883 void mlmeext_sta_add_event_callback(struct adapter *padapter, struct sta_info *psta)
4885 struct mlme_ext_priv *pmlmeext = &(padapter->mlmeextpriv);
4886 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4889 if ((pmlmeinfo->state&0x03) == WIFI_FW_ADHOC_STATE) {
4890 if (pmlmeinfo->state & WIFI_FW_ASSOC_SUCCESS) { /* adhoc master or sta_count>1 */
4893 } else { /* adhoc client */
4894 /* update TSF Value */
4895 /* update_TSF(pmlmeext, pframe, len); */
4897 /* correcting TSF */
4898 correct_TSF(padapter, pmlmeext);
4901 if (send_beacon(padapter) == _FAIL) {
4902 pmlmeinfo->FW_sta_info[psta->mac_id].status = 0;
4904 pmlmeinfo->state ^= WIFI_FW_ADHOC_STATE;
4909 pmlmeinfo->state |= WIFI_FW_ASSOC_SUCCESS;
4914 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_JOIN, (u8 *)(&join_type));
4917 pmlmeinfo->FW_sta_info[psta->mac_id].psta = psta;
4919 psta->bssratelen = rtw_get_rateset_len(pmlmeinfo->FW_sta_info[psta->mac_id].SupportedRates);
4920 memcpy(psta->bssrateset, pmlmeinfo->FW_sta_info[psta->mac_id].SupportedRates, psta->bssratelen);
4922 /* update adhoc sta_info */
4923 update_sta_info(padapter, psta);
4925 rtw_hal_update_sta_rate_mask(padapter, psta);
4927 /* ToDo: HT for Ad-hoc */
4928 psta->wireless_mode = rtw_check_network_type(psta->bssrateset, psta->bssratelen, pmlmeext->cur_channel);
4929 psta->raid = networktype_to_raid_ex(padapter, psta);
4931 /* rate radaptive */
4932 Update_RA_Entry(padapter, psta);
4935 void mlmeext_sta_del_event_callback(struct adapter *padapter)
4937 if (is_client_associated_to_ap(padapter) || is_IBSS_empty(padapter))
4938 rtw_mlmeext_disconnect(padapter);
4941 /****************************************************************************
4943 Following are the functions for the timer handlers
4945 *****************************************************************************/
4946 void _linked_info_dump(struct adapter *padapter)
4949 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4950 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4951 int UndecoratedSmoothedPWDB;
4952 struct dvobj_priv *pdvobj = adapter_to_dvobj(padapter);
4954 if (padapter->bLinkInfoDump) {
4956 if ((pmlmeinfo->state&0x03) == WIFI_FW_STATION_STATE)
4957 rtw_hal_get_def_var(padapter, HAL_DEF_UNDERCORATEDSMOOTHEDPWDB, &UndecoratedSmoothedPWDB);
4959 for (i = 0; i < NUM_STA; i++) {
4960 if (pdvobj->macid[i]) {
4961 if (i != 1) /* skip bc/mc sta */
4962 /* tx info ============ */
4963 rtw_hal_get_def_var(padapter, HW_DEF_RA_INFO_DUMP, &i);
4966 rtw_hal_set_def_var(padapter, HAL_DEF_DBG_RX_INFO_DUMP, NULL);
4970 static u8 chk_ap_is_alive(struct adapter *padapter, struct sta_info *psta)
4974 if ((sta_rx_data_pkts(psta) == sta_last_rx_data_pkts(psta))
4975 && sta_rx_beacon_pkts(psta) == sta_last_rx_beacon_pkts(psta)
4976 && sta_rx_probersp_pkts(psta) == sta_last_rx_probersp_pkts(psta)
4983 sta_update_last_rx_pkts(psta);
4988 void linked_status_chk(struct adapter *padapter)
4991 struct sta_info *psta;
4992 struct xmit_priv *pxmitpriv = &(padapter->xmitpriv);
4993 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
4994 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
4995 struct sta_priv *pstapriv = &padapter->stapriv;
4998 if (is_client_associated_to_ap(padapter)) {
4999 /* linked infrastructure client mode */
5001 int tx_chk = _SUCCESS, rx_chk = _SUCCESS;
5003 int link_count_limit;
5005 #if defined(DBG_ROAMING_TEST)
5010 link_count_limit = 7; /* 16 sec */
5012 /* Marked by Kurt 20130715 */
5013 /* For WiDi 3.5 and latered on, they don't ask WiDi sink to do roaming, so we could not check rx limit that strictly. */
5014 /* todo: To check why we under miracast session, rx_chk would be false */
5015 psta = rtw_get_stainfo(pstapriv, pmlmeinfo->network.mac_address);
5017 if (chk_ap_is_alive(padapter, psta) == false)
5020 if (pxmitpriv->last_tx_pkts == pxmitpriv->tx_pkts)
5024 if (rx_chk != _SUCCESS) {
5025 if (pmlmeext->retry == 0) {
5026 issue_probereq_ex(padapter, &pmlmeinfo->network.ssid, pmlmeinfo->network.mac_address, 0, 0, 0, 0);
5027 issue_probereq_ex(padapter, &pmlmeinfo->network.ssid, pmlmeinfo->network.mac_address, 0, 0, 0, 0);
5028 issue_probereq_ex(padapter, &pmlmeinfo->network.ssid, pmlmeinfo->network.mac_address, 0, 0, 0, 0);
5032 if (tx_chk != _SUCCESS &&
5033 pmlmeinfo->link_count++ == link_count_limit)
5034 tx_chk = issue_nulldata_in_interrupt(padapter, NULL);
5037 if (rx_chk == _FAIL) {
5039 if (pmlmeext->retry > rx_chk_limit) {
5040 netdev_dbg(padapter->pnetdev,
5041 FUNC_ADPT_FMT " disconnect or roaming\n",
5042 FUNC_ADPT_ARG(padapter));
5043 receive_disconnect(padapter, pmlmeinfo->network.mac_address
5044 , WLAN_REASON_EXPIRATION_CHK);
5048 pmlmeext->retry = 0;
5051 if (tx_chk == _FAIL) {
5052 pmlmeinfo->link_count %= (link_count_limit+1);
5054 pxmitpriv->last_tx_pkts = pxmitpriv->tx_pkts;
5055 pmlmeinfo->link_count = 0;
5058 } /* end of if ((psta = rtw_get_stainfo(pstapriv, passoc_res->network.mac_address)) != NULL) */
5059 } else if (is_client_associated_to_ibss(padapter)) {
5060 /* linked IBSS mode */
5061 /* for each assoc list entry to check the rx pkt counter */
5062 for (i = IBSS_START_MAC_ID; i < NUM_STA; i++) {
5063 if (pmlmeinfo->FW_sta_info[i].status == 1) {
5064 psta = pmlmeinfo->FW_sta_info[i].psta;
5069 if (pmlmeinfo->FW_sta_info[i].rx_pkt == sta_rx_pkts(psta)) {
5071 if (pmlmeinfo->FW_sta_info[i].retry < 3) {
5072 pmlmeinfo->FW_sta_info[i].retry++;
5074 pmlmeinfo->FW_sta_info[i].retry = 0;
5075 pmlmeinfo->FW_sta_info[i].status = 0;
5076 report_del_sta_event(padapter, psta->hwaddr
5077 , 65535/* indicate disconnect caused by no rx */
5081 pmlmeinfo->FW_sta_info[i].retry = 0;
5082 pmlmeinfo->FW_sta_info[i].rx_pkt = (u32)sta_rx_pkts(psta);
5087 /* set_link_timer(pmlmeext, DISCONNECT_TO); */
5093 void survey_timer_hdl(struct timer_list *t)
5095 struct adapter *padapter =
5096 from_timer(padapter, t, mlmeextpriv.survey_timer);
5097 struct cmd_obj *ph2c;
5098 struct sitesurvey_parm *psurveyPara;
5099 struct cmd_priv *pcmdpriv = &padapter->cmdpriv;
5100 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5102 /* issue rtw_sitesurvey_cmd */
5103 if (pmlmeext->sitesurvey_res.state > SCAN_START) {
5104 if (pmlmeext->sitesurvey_res.state == SCAN_PROCESS)
5105 pmlmeext->sitesurvey_res.channel_idx++;
5107 if (pmlmeext->scan_abort) {
5108 pmlmeext->sitesurvey_res.channel_idx = pmlmeext->sitesurvey_res.ch_num;
5110 pmlmeext->scan_abort = false;/* reset */
5113 ph2c = rtw_zmalloc(sizeof(struct cmd_obj));
5117 psurveyPara = rtw_zmalloc(sizeof(struct sitesurvey_parm));
5123 init_h2fwcmd_w_parm_no_rsp(ph2c, psurveyPara, GEN_CMD_CODE(_SiteSurvey));
5124 rtw_enqueue_cmd(pcmdpriv, ph2c);
5128 void link_timer_hdl(struct timer_list *t)
5130 struct adapter *padapter =
5131 from_timer(padapter, t, mlmeextpriv.link_timer);
5132 /* static unsigned int rx_pkt = 0; */
5133 /* static u64 tx_cnt = 0; */
5134 /* struct xmit_priv *pxmitpriv = &(padapter->xmitpriv); */
5135 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5136 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5137 /* struct sta_priv *pstapriv = &padapter->stapriv; */
5140 if (pmlmeinfo->state & WIFI_FW_AUTH_NULL) {
5141 pmlmeinfo->state = WIFI_FW_NULL_STATE;
5142 report_join_res(padapter, -3);
5143 } else if (pmlmeinfo->state & WIFI_FW_AUTH_STATE) {
5145 if (++pmlmeinfo->reauth_count > REAUTH_LIMIT) {
5146 pmlmeinfo->state = 0;
5147 report_join_res(padapter, -1);
5151 pmlmeinfo->auth_seq = 1;
5152 issue_auth(padapter, NULL, 0);
5153 set_link_timer(pmlmeext, REAUTH_TO);
5154 } else if (pmlmeinfo->state & WIFI_FW_ASSOC_STATE) {
5155 /* re-assoc timer */
5156 if (++pmlmeinfo->reassoc_count > REASSOC_LIMIT) {
5157 pmlmeinfo->state = WIFI_FW_NULL_STATE;
5158 report_join_res(padapter, -2);
5162 issue_assocreq(padapter);
5163 set_link_timer(pmlmeext, REASSOC_TO);
5167 void addba_timer_hdl(struct timer_list *t)
5169 struct sta_info *psta = from_timer(psta, t, addba_retry_timer);
5170 struct ht_priv *phtpriv;
5175 phtpriv = &psta->htpriv;
5177 if (phtpriv->ht_option && phtpriv->ampdu_enable) {
5178 if (phtpriv->candidate_tid_bitmap)
5179 phtpriv->candidate_tid_bitmap = 0x0;
5184 void sa_query_timer_hdl(struct timer_list *t)
5186 struct adapter *padapter =
5187 from_timer(padapter, t, mlmeextpriv.sa_query_timer);
5188 struct mlme_priv *pmlmepriv = &padapter->mlmepriv;
5190 spin_lock_bh(&pmlmepriv->lock);
5192 if (check_fwstate(pmlmepriv, _FW_LINKED)) {
5193 rtw_disassoc_cmd(padapter, 0, true);
5194 rtw_indicate_disconnect(padapter);
5195 rtw_free_assoc_resources(padapter, 1);
5198 spin_unlock_bh(&pmlmepriv->lock);
5201 u8 NULL_hdl(struct adapter *padapter, u8 *pbuf)
5206 u8 setopmode_hdl(struct adapter *padapter, u8 *pbuf)
5209 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5210 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5211 struct setopmode_parm *psetop = (struct setopmode_parm *)pbuf;
5213 if (psetop->mode == Ndis802_11APMode) {
5214 pmlmeinfo->state = WIFI_FW_AP_STATE;
5215 type = _HW_STATE_AP_;
5216 /* start_ap_mode(padapter); */
5217 } else if (psetop->mode == Ndis802_11Infrastructure) {
5218 pmlmeinfo->state &= ~(BIT(0)|BIT(1));/* clear state */
5219 pmlmeinfo->state |= WIFI_FW_STATION_STATE;/* set to STATION_STATE */
5220 type = _HW_STATE_STATION_;
5221 } else if (psetop->mode == Ndis802_11IBSS) {
5222 type = _HW_STATE_ADHOC_;
5224 type = _HW_STATE_NOLINK_;
5227 rtw_hal_set_hwreg(padapter, HW_VAR_SET_OPMODE, (u8 *)(&type));
5228 /* Set_MSR(padapter, type); */
5230 if (psetop->mode == Ndis802_11APMode) {
5231 /* Do this after port switch to */
5232 /* prevent from downloading rsvd page to wrong port */
5233 rtw_btcoex_MediaStatusNotify(padapter, 1); /* connect */
5240 u8 createbss_hdl(struct adapter *padapter, u8 *pbuf)
5242 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5243 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5244 struct wlan_bssid_ex *pnetwork = (struct wlan_bssid_ex *)(&(pmlmeinfo->network));
5245 struct joinbss_parm *pparm = (struct joinbss_parm *)pbuf;
5246 /* u32 initialgain; */
5248 if (pmlmeinfo->state == WIFI_FW_AP_STATE) {
5249 start_bss_network(padapter);
5253 /* below is for ad-hoc master */
5254 if (pparm->network.infrastructure_mode == Ndis802_11IBSS) {
5255 rtw_joinbss_reset(padapter);
5257 pmlmeext->cur_bwmode = CHANNEL_WIDTH_20;
5258 pmlmeext->cur_ch_offset = HAL_PRIME_CHNL_OFFSET_DONT_CARE;
5259 pmlmeinfo->ERP_enable = 0;
5260 pmlmeinfo->WMM_enable = 0;
5261 pmlmeinfo->HT_enable = 0;
5262 pmlmeinfo->HT_caps_enable = 0;
5263 pmlmeinfo->HT_info_enable = 0;
5264 pmlmeinfo->agg_enable_bitmap = 0;
5265 pmlmeinfo->candidate_tid_bitmap = 0;
5267 /* disable dynamic functions, such as high power, DIG */
5268 Save_DM_Func_Flag(padapter);
5269 Switch_DM_Func(padapter, DYNAMIC_FUNC_DISABLE, false);
5271 /* config the initial gain under linking, need to write the BB registers */
5272 /* initialgain = 0x1E; */
5273 /* rtw_hal_set_hwreg(padapter, HW_VAR_INITIAL_GAIN, (u8 *)(&initialgain)); */
5275 /* cancel link timer */
5276 del_timer_sync(&pmlmeext->link_timer);
5279 flush_all_cam_entry(padapter);
5281 memcpy(pnetwork, pbuf, FIELD_OFFSET(struct wlan_bssid_ex, ie_length));
5282 pnetwork->ie_length = ((struct wlan_bssid_ex *)pbuf)->ie_length;
5284 if (pnetwork->ie_length > MAX_IE_SZ)/* Check pbuf->ie_length */
5285 return H2C_PARAMETERS_ERROR;
5287 memcpy(pnetwork->ies, ((struct wlan_bssid_ex *)pbuf)->ies, pnetwork->ie_length);
5289 start_create_ibss(padapter);
5297 u8 join_cmd_hdl(struct adapter *padapter, u8 *pbuf)
5300 struct ndis_80211_var_ie *pIE;
5301 struct registry_priv *pregpriv = &padapter->registrypriv;
5302 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5303 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5304 struct wlan_bssid_ex *pnetwork = (struct wlan_bssid_ex *)(&(pmlmeinfo->network));
5306 u8 cbw40_enable = 0;
5307 /* u32 initialgain; */
5311 /* check already connecting to AP or not */
5312 if (pmlmeinfo->state & WIFI_FW_ASSOC_SUCCESS) {
5313 if (pmlmeinfo->state & WIFI_FW_STATION_STATE)
5314 issue_deauth_ex(padapter, pnetwork->mac_address, WLAN_REASON_DEAUTH_LEAVING, 1, 100);
5315 pmlmeinfo->state = WIFI_FW_NULL_STATE;
5318 flush_all_cam_entry(padapter);
5320 del_timer_sync(&pmlmeext->link_timer);
5322 /* set MSR to nolink -> infra. mode */
5323 /* Set_MSR(padapter, _HW_STATE_NOLINK_); */
5324 Set_MSR(padapter, _HW_STATE_STATION_);
5327 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_DISCONNECT, NULL);
5330 rtw_joinbss_reset(padapter);
5332 pmlmeext->cur_bwmode = CHANNEL_WIDTH_20;
5333 pmlmeext->cur_ch_offset = HAL_PRIME_CHNL_OFFSET_DONT_CARE;
5334 pmlmeinfo->ERP_enable = 0;
5335 pmlmeinfo->WMM_enable = 0;
5336 pmlmeinfo->HT_enable = 0;
5337 pmlmeinfo->HT_caps_enable = 0;
5338 pmlmeinfo->HT_info_enable = 0;
5339 pmlmeinfo->agg_enable_bitmap = 0;
5340 pmlmeinfo->candidate_tid_bitmap = 0;
5341 pmlmeinfo->bwmode_updated = false;
5342 /* pmlmeinfo->assoc_AP_vendor = HT_IOT_PEER_MAX; */
5343 pmlmeinfo->VHT_enable = 0;
5345 memcpy(pnetwork, pbuf, FIELD_OFFSET(struct wlan_bssid_ex, ie_length));
5346 pnetwork->ie_length = ((struct wlan_bssid_ex *)pbuf)->ie_length;
5348 if (pnetwork->ie_length > MAX_IE_SZ)/* Check pbuf->ie_length */
5349 return H2C_PARAMETERS_ERROR;
5351 memcpy(pnetwork->ies, ((struct wlan_bssid_ex *)pbuf)->ies, pnetwork->ie_length);
5353 pmlmeext->cur_channel = (u8)pnetwork->configuration.ds_config;
5354 pmlmeinfo->bcn_interval = get_beacon_interval(pnetwork);
5356 /* Check AP vendor to move rtw_joinbss_cmd() */
5357 /* pmlmeinfo->assoc_AP_vendor = check_assoc_AP(pnetwork->ies, pnetwork->ie_length); */
5359 /* sizeof(struct ndis_802_11_fix_ie) */
5360 for (i = _FIXED_IE_LENGTH_; i < pnetwork->ie_length;) {
5361 pIE = (struct ndis_80211_var_ie *)(pnetwork->ies + i);
5363 switch (pIE->element_id) {
5364 case WLAN_EID_VENDOR_SPECIFIC:/* Get WMM IE. */
5365 if (!memcmp(pIE->data, WMM_OUI, 4))
5366 WMM_param_handler(padapter, pIE);
5369 case WLAN_EID_HT_CAPABILITY: /* Get HT Cap IE. */
5370 pmlmeinfo->HT_caps_enable = 1;
5373 case WLAN_EID_HT_OPERATION: /* Get HT Info IE. */
5374 pmlmeinfo->HT_info_enable = 1;
5376 /* spec case only for cisco's ap because cisco's ap issue assoc rsp using mcs rate @40MHz or @20MHz */
5378 struct HT_info_element *pht_info = (struct HT_info_element *)(pIE->data);
5380 if (pnetwork->configuration.ds_config <= 14) {
5381 if ((pregpriv->bw_mode & 0x0f) > CHANNEL_WIDTH_20)
5385 if ((cbw40_enable) && (pht_info->infos[0] & BIT(2))) {
5386 /* switch to the 40M Hz mode according to the AP */
5387 pmlmeext->cur_bwmode = CHANNEL_WIDTH_40;
5388 switch (pht_info->infos[0] & 0x3) {
5390 pmlmeext->cur_ch_offset = HAL_PRIME_CHNL_OFFSET_LOWER;
5394 pmlmeext->cur_ch_offset = HAL_PRIME_CHNL_OFFSET_UPPER;
5398 pmlmeext->cur_ch_offset = HAL_PRIME_CHNL_OFFSET_DONT_CARE;
5399 pmlmeext->cur_bwmode = CHANNEL_WIDTH_20;
5409 i += (pIE->length + 2);
5412 /* check channel, bandwidth, offset and switch */
5413 if (rtw_chk_start_clnt_join(padapter, &ch, &bw, &offset) == _FAIL) {
5414 report_join_res(padapter, (-4));
5418 /* disable dynamic functions, such as high power, DIG */
5419 /* Switch_DM_Func(padapter, DYNAMIC_FUNC_DISABLE, false); */
5421 /* config the initial gain under linking, need to write the BB registers */
5422 /* initialgain = 0x1E; */
5423 /* rtw_hal_set_hwreg(padapter, HW_VAR_INITIAL_GAIN, (u8 *)(&initialgain)); */
5425 rtw_hal_set_hwreg(padapter, HW_VAR_BSSID, pmlmeinfo->network.mac_address);
5427 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_JOIN, (u8 *)(&join_type));
5428 rtw_hal_set_hwreg(padapter, HW_VAR_DO_IQK, NULL);
5430 set_channel_bwmode(padapter, ch, offset, bw);
5432 /* cancel link timer */
5433 del_timer_sync(&pmlmeext->link_timer);
5435 start_clnt_join(padapter);
5441 u8 disconnect_hdl(struct adapter *padapter, unsigned char *pbuf)
5443 struct disconnect_parm *param = (struct disconnect_parm *)pbuf;
5444 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5445 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5446 struct wlan_bssid_ex *pnetwork = (struct wlan_bssid_ex *)(&(pmlmeinfo->network));
5449 if (is_client_associated_to_ap(padapter))
5450 issue_deauth_ex(padapter, pnetwork->mac_address, WLAN_REASON_DEAUTH_LEAVING, param->deauth_timeout_ms/100, 100);
5452 if (((pmlmeinfo->state&0x03) == WIFI_FW_ADHOC_STATE) || ((pmlmeinfo->state&0x03) == WIFI_FW_AP_STATE)) {
5455 rtw_hal_set_hwreg(padapter, HW_VAR_BCN_FUNC, (u8 *)(&val8));
5458 rtw_mlmeext_disconnect(padapter);
5460 rtw_free_uc_swdec_pending_queue(padapter);
5465 static int rtw_scan_ch_decision(struct adapter *padapter, struct rtw_ieee80211_channel *out,
5466 u32 out_num, struct rtw_ieee80211_channel *in, u32 in_num)
5470 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5473 memset(out, 0, sizeof(struct rtw_ieee80211_channel)*out_num);
5475 /* acquire channels from in */
5477 for (i = 0; i < in_num; i++) {
5479 set_idx = rtw_ch_set_search_ch(pmlmeext->channel_set, in[i].hw_value);
5480 if (in[i].hw_value && !(in[i].flags & RTW_IEEE80211_CHAN_DISABLED)
5484 netdev_dbg(padapter->pnetdev,
5485 FUNC_ADPT_FMT " out_num:%u not enough\n",
5486 FUNC_ADPT_ARG(padapter), out_num);
5490 memcpy(&out[j], &in[i], sizeof(struct rtw_ieee80211_channel));
5492 if (pmlmeext->channel_set[set_idx].ScanType == SCAN_PASSIVE)
5493 out[j].flags |= RTW_IEEE80211_CHAN_PASSIVE_SCAN;
5501 /* if out is empty, use channel_set as default */
5503 for (i = 0; i < pmlmeext->max_chan_nums; i++) {
5506 netdev_dbg(padapter->pnetdev,
5507 FUNC_ADPT_FMT " out_num:%u not enough\n",
5508 FUNC_ADPT_ARG(padapter),
5513 out[j].hw_value = pmlmeext->channel_set[i].ChannelNum;
5515 if (pmlmeext->channel_set[i].ScanType == SCAN_PASSIVE)
5516 out[j].flags |= RTW_IEEE80211_CHAN_PASSIVE_SCAN;
5525 u8 sitesurvey_cmd_hdl(struct adapter *padapter, u8 *pbuf)
5527 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5528 struct sitesurvey_parm *pparm = (struct sitesurvey_parm *)pbuf;
5529 u8 bdelayscan = false;
5534 if (pmlmeext->sitesurvey_res.state == SCAN_DISABLE) {
5535 pmlmeext->sitesurvey_res.state = SCAN_START;
5536 pmlmeext->sitesurvey_res.bss_cnt = 0;
5537 pmlmeext->sitesurvey_res.channel_idx = 0;
5539 for (i = 0; i < RTW_SSID_SCAN_AMOUNT; i++) {
5540 if (pparm->ssid[i].ssid_length) {
5541 memcpy(pmlmeext->sitesurvey_res.ssid[i].ssid, pparm->ssid[i].ssid, IW_ESSID_MAX_SIZE);
5542 pmlmeext->sitesurvey_res.ssid[i].ssid_length = pparm->ssid[i].ssid_length;
5544 pmlmeext->sitesurvey_res.ssid[i].ssid_length = 0;
5548 pmlmeext->sitesurvey_res.ch_num = rtw_scan_ch_decision(padapter
5549 , pmlmeext->sitesurvey_res.ch, RTW_CHANNEL_SCAN_AMOUNT
5550 , pparm->ch, pparm->ch_num
5553 pmlmeext->sitesurvey_res.scan_mode = pparm->scan_mode;
5555 /* issue null data if associating to the AP */
5556 if (is_client_associated_to_ap(padapter)) {
5557 pmlmeext->sitesurvey_res.state = SCAN_TXNULL;
5559 issue_nulldata(padapter, NULL, 1, 3, 500);
5564 /* delay 50ms to protect nulldata(1). */
5565 set_survey_timer(pmlmeext, 50);
5570 if ((pmlmeext->sitesurvey_res.state == SCAN_START) || (pmlmeext->sitesurvey_res.state == SCAN_TXNULL)) {
5571 /* disable dynamic functions, such as high power, DIG */
5572 Save_DM_Func_Flag(padapter);
5573 Switch_DM_Func(padapter, DYNAMIC_FUNC_DISABLE, false);
5575 /* config the initial gain under scanning, need to write the BB
5580 rtw_hal_set_hwreg(padapter, HW_VAR_INITIAL_GAIN, (u8 *)(&initialgain));
5582 /* set MSR to no link state */
5583 Set_MSR(padapter, _HW_STATE_NOLINK_);
5585 val8 = 1; /* under site survey */
5586 rtw_hal_set_hwreg(padapter, HW_VAR_MLME_SITESURVEY, (u8 *)(&val8));
5588 pmlmeext->sitesurvey_res.state = SCAN_PROCESS;
5591 site_survey(padapter);
5597 u8 setauth_hdl(struct adapter *padapter, unsigned char *pbuf)
5599 struct setauth_parm *pparm = (struct setauth_parm *)pbuf;
5600 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5601 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5603 if (pparm->mode < 4)
5604 pmlmeinfo->auth_algo = pparm->mode;
5609 u8 setkey_hdl(struct adapter *padapter, u8 *pbuf)
5613 struct setkey_parm *pparm = (struct setkey_parm *)pbuf;
5614 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5615 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5616 unsigned char null_addr[] = {0x00, 0x00, 0x00, 0x00, 0x00, 0x00};
5619 /* main tx key for wep. */
5621 pmlmeinfo->key_index = pparm->keyid;
5623 cam_id = rtw_camid_alloc(padapter, NULL, pparm->keyid);
5627 if (cam_id > 3) /* not default key, searched by A2 */
5628 addr = get_bssid(&padapter->mlmepriv);
5632 ctrl = BIT(15) | BIT6 | ((pparm->algorithm) << 2) | pparm->keyid;
5633 write_cam(padapter, cam_id, ctrl, addr, pparm->key);
5634 netdev_dbg(padapter->pnetdev,
5635 "set group key camid:%d, addr:%pM, kid:%d, type:%s\n",
5636 cam_id, MAC_ARG(addr), pparm->keyid,
5637 security_type_str(pparm->algorithm));
5640 if (cam_id >= 0 && cam_id <= 3)
5641 rtw_hal_set_hwreg(padapter, HW_VAR_SEC_DK_CFG, (u8 *)true);
5643 /* allow multicast packets to driver */
5644 padapter->HalFunc.SetHwRegHandler(padapter, HW_VAR_ON_RCR_AM, null_addr);
5649 u8 set_stakey_hdl(struct adapter *padapter, u8 *pbuf)
5653 u8 ret = H2C_SUCCESS;
5654 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5655 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5656 struct set_stakey_parm *pparm = (struct set_stakey_parm *)pbuf;
5657 struct sta_priv *pstapriv = &padapter->stapriv;
5658 struct sta_info *psta;
5660 if (pparm->algorithm == _NO_PRIVACY_)
5663 psta = rtw_get_stainfo(pstapriv, pparm->addr);
5665 netdev_dbg(padapter->pnetdev, "%s sta:%pM not found\n",
5666 __func__, MAC_ARG(pparm->addr));
5671 pmlmeinfo->enc_algo = pparm->algorithm;
5672 cam_id = rtw_camid_alloc(padapter, psta, 0);
5677 if (pparm->algorithm == _NO_PRIVACY_) {
5678 while ((cam_id = rtw_camid_search(padapter, pparm->addr, -1)) >= 0) {
5679 netdev_dbg(padapter->pnetdev,
5680 "clear key for addr:%pM, camid:%d\n",
5681 MAC_ARG(pparm->addr), cam_id);
5682 clear_cam_entry(padapter, cam_id);
5683 rtw_camid_free(padapter, cam_id);
5686 netdev_dbg(padapter->pnetdev,
5687 "set pairwise key camid:%d, addr:%pM, kid:%d, type:%s\n",
5688 cam_id, MAC_ARG(pparm->addr), pparm->keyid,
5689 security_type_str(pparm->algorithm));
5690 ctrl = BIT(15) | ((pparm->algorithm) << 2) | pparm->keyid;
5691 write_cam(padapter, cam_id, ctrl, pparm->addr, pparm->key);
5693 ret = H2C_SUCCESS_RSP;
5699 u8 add_ba_hdl(struct adapter *padapter, unsigned char *pbuf)
5701 struct addBaReq_parm *pparm = (struct addBaReq_parm *)pbuf;
5702 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5703 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5705 struct sta_info *psta = rtw_get_stainfo(&padapter->stapriv, pparm->addr);
5710 if (((pmlmeinfo->state & WIFI_FW_ASSOC_SUCCESS) && (pmlmeinfo->HT_enable)) ||
5711 ((pmlmeinfo->state&0x03) == WIFI_FW_AP_STATE)) {
5712 /* pmlmeinfo->ADDBA_retry_count = 0; */
5713 /* pmlmeinfo->candidate_tid_bitmap |= (0x1 << pparm->tid); */
5714 /* psta->htpriv.candidate_tid_bitmap |= BIT(pparm->tid); */
5715 issue_action_BA(padapter, pparm->addr, WLAN_ACTION_ADDBA_REQ, (u16)pparm->tid);
5716 /* _set_timer(&pmlmeext->ADDBA_timer, ADDBA_TO); */
5717 _set_timer(&psta->addba_retry_timer, ADDBA_TO);
5719 psta->htpriv.candidate_tid_bitmap &= ~BIT(pparm->tid);
5725 u8 chk_bmc_sleepq_cmd(struct adapter *padapter)
5727 struct cmd_obj *ph2c;
5728 struct cmd_priv *pcmdpriv = &(padapter->cmdpriv);
5731 ph2c = rtw_zmalloc(sizeof(struct cmd_obj));
5737 init_h2fwcmd_w_parm_no_parm_rsp(ph2c, GEN_CMD_CODE(_ChkBMCSleepq));
5739 res = rtw_enqueue_cmd(pcmdpriv, ph2c);
5745 u8 set_tx_beacon_cmd(struct adapter *padapter)
5747 struct cmd_obj *ph2c;
5748 struct Tx_Beacon_param *ptxBeacon_parm;
5749 struct cmd_priv *pcmdpriv = &(padapter->cmdpriv);
5750 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5751 struct mlme_ext_info *pmlmeinfo = &(pmlmeext->mlmext_info);
5755 ph2c = rtw_zmalloc(sizeof(struct cmd_obj));
5761 ptxBeacon_parm = rtw_zmalloc(sizeof(struct Tx_Beacon_param));
5762 if (!ptxBeacon_parm) {
5768 memcpy(&(ptxBeacon_parm->network), &(pmlmeinfo->network), sizeof(struct wlan_bssid_ex));
5770 len_diff = update_hidden_ssid(ptxBeacon_parm->network.ies+_BEACON_IE_OFFSET_,
5771 ptxBeacon_parm->network.ie_length-_BEACON_IE_OFFSET_,
5772 pmlmeinfo->hidden_ssid_mode);
5773 ptxBeacon_parm->network.ie_length += len_diff;
5775 init_h2fwcmd_w_parm_no_rsp(ph2c, ptxBeacon_parm, GEN_CMD_CODE(_TX_Beacon));
5777 res = rtw_enqueue_cmd(pcmdpriv, ph2c);
5783 static struct fwevent wlanevents[] = {
5784 {0, rtw_dummy_event_callback}, /*0*/
5792 {0, &rtw_survey_event_callback}, /*8*/
5793 {sizeof(struct surveydone_event), &rtw_surveydone_event_callback}, /*9*/
5795 {0, &rtw_joinbss_event_callback}, /*10*/
5796 {sizeof(struct stassoc_event), &rtw_stassoc_event_callback},
5797 {sizeof(struct stadel_event), &rtw_stadel_event_callback},
5798 {0, &rtw_atimdone_event_callback},
5799 {0, rtw_dummy_event_callback},
5804 {0, rtw_fwdbg_event_callback},
5808 {0, &rtw_cpwm_event_callback},
5810 {0, &rtw_wmm_event_callback},
5814 u8 mlme_evt_hdl(struct adapter *padapter, unsigned char *pbuf)
5819 void (*event_callback)(struct adapter *dev, u8 *pbuf);
5820 struct evt_priv *pevt_priv = &(padapter->evtpriv);
5825 peventbuf = (uint *)pbuf;
5826 evt_sz = (u16)(*peventbuf&0xffff);
5827 evt_code = (u8)((*peventbuf>>16)&0xff);
5829 /* checking if event code is valid */
5830 if (evt_code >= MAX_C2HEVT)
5833 /* checking if event size match the event parm size */
5834 if ((wlanevents[evt_code].parmsize != 0) &&
5835 (wlanevents[evt_code].parmsize != evt_sz))
5838 atomic_inc(&pevt_priv->event_seq);
5843 event_callback = wlanevents[evt_code].event_callback;
5844 event_callback(padapter, (u8 *)peventbuf);
5846 pevt_priv->evt_done_cnt++;
5857 u8 h2c_msg_hdl(struct adapter *padapter, unsigned char *pbuf)
5860 return H2C_PARAMETERS_ERROR;
5865 u8 chk_bmc_sleepq_hdl(struct adapter *padapter, unsigned char *pbuf)
5867 struct sta_info *psta_bmc;
5868 struct list_head *xmitframe_plist, *xmitframe_phead, *tmp;
5869 struct xmit_frame *pxmitframe = NULL;
5870 struct xmit_priv *pxmitpriv = &padapter->xmitpriv;
5871 struct sta_priv *pstapriv = &padapter->stapriv;
5873 /* for BC/MC Frames */
5874 psta_bmc = rtw_get_bcmc_stainfo(padapter);
5878 if ((pstapriv->tim_bitmap&BIT(0)) && (psta_bmc->sleepq_len > 0)) {
5879 msleep(10);/* 10ms, ATIM(HIQ) Windows */
5881 /* spin_lock_bh(&psta_bmc->sleep_q.lock); */
5882 spin_lock_bh(&pxmitpriv->lock);
5884 xmitframe_phead = get_list_head(&psta_bmc->sleep_q);
5885 list_for_each_safe(xmitframe_plist, tmp, xmitframe_phead) {
5886 pxmitframe = list_entry(xmitframe_plist,
5887 struct xmit_frame, list);
5889 list_del_init(&pxmitframe->list);
5891 psta_bmc->sleepq_len--;
5892 if (psta_bmc->sleepq_len > 0)
5893 pxmitframe->attrib.mdata = 1;
5895 pxmitframe->attrib.mdata = 0;
5897 pxmitframe->attrib.triggered = 1;
5899 if (xmitframe_hiq_filter(pxmitframe))
5900 pxmitframe->attrib.qsel = 0x11;/* HIQ */
5902 rtw_hal_xmitframe_enqueue(padapter, pxmitframe);
5905 /* spin_unlock_bh(&psta_bmc->sleep_q.lock); */
5906 spin_unlock_bh(&pxmitpriv->lock);
5908 /* check hi queue and bmc_sleepq */
5909 rtw_chk_hi_queue_cmd(padapter);
5915 u8 tx_beacon_hdl(struct adapter *padapter, unsigned char *pbuf)
5917 if (send_beacon(padapter) == _FAIL)
5918 return H2C_PARAMETERS_ERROR;
5920 /* tx bc/mc frames after update TIM */
5921 chk_bmc_sleepq_hdl(padapter, NULL);
5926 int rtw_chk_start_clnt_join(struct adapter *padapter, u8 *ch, u8 *bw, u8 *offset)
5928 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5929 unsigned char cur_ch = pmlmeext->cur_channel;
5930 unsigned char cur_bw = pmlmeext->cur_bwmode;
5931 unsigned char cur_ch_offset = pmlmeext->cur_ch_offset;
5932 bool connect_allow = true;
5934 if (!ch || !bw || !offset) {
5936 connect_allow = false;
5939 if (connect_allow) {
5942 *offset = cur_ch_offset;
5945 return connect_allow ? _SUCCESS : _FAIL;
5948 /* Find union about ch, bw, ch_offset of all linked/linking interfaces */
5949 int rtw_get_ch_setting_union(struct adapter *adapter, u8 *ch, u8 *bw, u8 *offset)
5951 struct dvobj_priv *dvobj = adapter_to_dvobj(adapter);
5952 struct adapter *iface;
5957 *bw = CHANNEL_WIDTH_20;
5959 *offset = HAL_PRIME_CHNL_OFFSET_DONT_CARE;
5961 iface = dvobj->padapters;
5963 if (!check_fwstate(&iface->mlmepriv, _FW_LINKED|_FW_UNDER_LINKING))
5969 u8 set_ch_hdl(struct adapter *padapter, u8 *pbuf)
5971 struct set_ch_parm *set_ch_parm;
5972 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5975 return H2C_PARAMETERS_ERROR;
5977 set_ch_parm = (struct set_ch_parm *)pbuf;
5979 pmlmeext->cur_channel = set_ch_parm->ch;
5980 pmlmeext->cur_ch_offset = set_ch_parm->ch_offset;
5981 pmlmeext->cur_bwmode = set_ch_parm->bw;
5983 set_channel_bwmode(padapter, set_ch_parm->ch, set_ch_parm->ch_offset, set_ch_parm->bw);
5988 u8 set_chplan_hdl(struct adapter *padapter, unsigned char *pbuf)
5990 struct SetChannelPlan_param *setChannelPlan_param;
5991 struct mlme_ext_priv *pmlmeext = &padapter->mlmeextpriv;
5994 return H2C_PARAMETERS_ERROR;
5996 setChannelPlan_param = (struct SetChannelPlan_param *)pbuf;
5998 pmlmeext->max_chan_nums = init_channel_set(padapter, setChannelPlan_param->channel_plan, pmlmeext->channel_set);
5999 init_channel_list(padapter, pmlmeext->channel_set, pmlmeext->max_chan_nums, &pmlmeext->channel_list);
6001 if (padapter->rtw_wdev && padapter->rtw_wdev->wiphy) {
6002 struct regulatory_request request;
6004 request.initiator = NL80211_REGDOM_SET_BY_DRIVER;
6005 rtw_reg_notifier(padapter->rtw_wdev->wiphy, &request);
6011 u8 set_csa_hdl(struct adapter *padapter, unsigned char *pbuf)
6013 return H2C_REJECTED;
6016 /* TDLS_ESTABLISHED : write RCR DATA BIT */
6017 /* TDLS_CS_OFF : go back to the channel linked with AP, terminating channel switch procedure */
6018 /* TDLS_INIT_CH_SEN : init channel sensing, receive all data and mgnt frame */
6019 /* TDLS_DONE_CH_SEN: channel sensing and report candidate channel */
6020 /* TDLS_OFF_CH : first time set channel to off channel */
6021 /* TDLS_BASE_CH : go back tp the channel linked with AP when set base channel as target channel */
6022 /* TDLS_P_OFF_CH : periodically go to off channel */
6023 /* TDLS_P_BASE_CH : periodically go back to base channel */
6024 /* TDLS_RS_RCR : restore RCR */
6025 /* TDLS_TEAR_STA : free tdls sta */
6026 u8 tdls_hdl(struct adapter *padapter, unsigned char *pbuf)
6028 return H2C_REJECTED;
6031 u8 run_in_thread_hdl(struct adapter *padapter, u8 *pbuf)
6033 struct RunInThread_param *p;
6037 return H2C_PARAMETERS_ERROR;
6038 p = (struct RunInThread_param *)pbuf;
6041 p->func(p->context);
projects / releases.git / blob