projects / GitHub / mt8127 / android_kernel_alcatel_ttab.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
cfg80211: check lost scans later, fix bug
[GitHub/mt8127/android_kernel_alcatel_ttab.git] / drivers / net / wireless / ipw2x00 / ipw2200.c
CommitLineData
43f66a6c 1/******************************************************************************
bf79451e 2
171e7b2f 3 Copyright(c) 2003 - 2006 Intel Corporation. All rights reserved.
43f66a6c
JK		 4
5 802.11 status code portion of this file from ethereal-0.10.6:
6 Copyright 2000, Axis Communications AB
7 Ethereal - Network traffic analyzer
8 By Gerald Combs <gerald@ethereal.com>
9 Copyright 1998 Gerald Combs
10
bf79451e
JG		 11 This program is free software; you can redistribute it and/or modify it
12 under the terms of version 2 of the GNU General Public License as
43f66a6c 13 published by the Free Software Foundation.
bf79451e
JG		 14
15 This program is distributed in the hope that it will be useful, but WITHOUT
16 ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or
17 FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for
43f66a6c 18 more details.
bf79451e 19
43f66a6c 20 You should have received a copy of the GNU General Public License along with
bf79451e 21 this program; if not, write to the Free Software Foundation, Inc., 59
43f66a6c 22 Temple Place - Suite 330, Boston, MA 02111-1307, USA.
bf79451e 23
43f66a6c
JK		 24 The full GNU General Public License is included in this distribution in the
25 file called LICENSE.
bf79451e 26
43f66a6c
JK		 27 Contact Information:
28 James P. Ketrenos <ipw2100-admin@linux.intel.com>
29 Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
30
31******************************************************************************/
32
33#include "ipw2200.h"
34
ae4af61f
ZY		 35
36#ifndef KBUILD_EXTMOD
37#define VK "k"
38#else
39#define VK
40#endif
41
42#ifdef CONFIG_IPW2200_DEBUG
43#define VD "d"
44#else
45#define VD
46#endif
47
48#ifdef CONFIG_IPW2200_MONITOR
49#define VM "m"
50#else
51#define VM
52#endif
53
54#ifdef CONFIG_IPW2200_PROMISCUOUS
55#define VP "p"
56#else
57#define VP
58#endif
59
459d4087 60#ifdef CONFIG_IPW2200_RADIOTAP
ae4af61f
ZY		 61#define VR "r"
62#else
63#define VR
64#endif
65
66#ifdef CONFIG_IPW2200_QOS
67#define VQ "q"
68#else
69#define VQ
70#endif
71
ee2c4add 72#define IPW2200_VERSION "1.2.2" VK VD VM VP VR VQ
43f66a6c 73#define DRV_DESCRIPTION "Intel(R) PRO/Wireless 2200/2915 Network Driver"
171e7b2f 74#define DRV_COPYRIGHT "Copyright(c) 2003-2006 Intel Corporation"
43f66a6c
JK		 75#define DRV_VERSION IPW2200_VERSION
76
b095c381
JK		 77#define ETH_P_80211_STATS (ETH_P_80211_RAW + 1)
78
43f66a6c
JK		 79MODULE_DESCRIPTION(DRV_DESCRIPTION);
80MODULE_VERSION(DRV_VERSION);
81MODULE_AUTHOR(DRV_COPYRIGHT);
82MODULE_LICENSE("GPL");
83
f6c5cb7c 84static int cmdlog = 0;
43f66a6c 85static int debug = 0;
21f8a73f
RC		 86static int default_channel = 0;
87static int network_mode = 0;
43f66a6c
JK		 88
89static u32 ipw_debug_level;
5c7f9b73 90static int associate;
43f66a6c 91static int auto_create = 1;
21f8a73f 92static int led_support = 0;
43f66a6c 93static int disable = 0;
810dabd4 94static int bt_coexist = 0;
bde37d03 95static int hwcrypto = 0;
4bfdb91d 96static int roaming = 1;
43f66a6c
JK		 97static const char ipw_modes[] = {
98 'a', 'b', 'g', '?'
99};
d2b83e12 100static int antenna = CFG_SYS_ANTENNA_BOTH;
43f66a6c 101
d685b8c2
ZY		 102#ifdef CONFIG_IPW2200_PROMISCUOUS
103static int rtap_iface = 0; /* def: 0 -- do not create rtap interface */
104#endif
105
106
e43e3c1e 107#ifdef CONFIG_IPW2200_QOS
b095c381
JK		 108static int qos_enable = 0;
109static int qos_burst_enable = 0;
110static int qos_no_ack_mask = 0;
111static int burst_duration_CCK = 0;
112static int burst_duration_OFDM = 0;
113
114static struct ieee80211_qos_parameters def_qos_parameters_OFDM = {
115 {QOS_TX0_CW_MIN_OFDM, QOS_TX1_CW_MIN_OFDM, QOS_TX2_CW_MIN_OFDM,
116 QOS_TX3_CW_MIN_OFDM},
117 {QOS_TX0_CW_MAX_OFDM, QOS_TX1_CW_MAX_OFDM, QOS_TX2_CW_MAX_OFDM,
118 QOS_TX3_CW_MAX_OFDM},
119 {QOS_TX0_AIFS, QOS_TX1_AIFS, QOS_TX2_AIFS, QOS_TX3_AIFS},
120 {QOS_TX0_ACM, QOS_TX1_ACM, QOS_TX2_ACM, QOS_TX3_ACM},
121 {QOS_TX0_TXOP_LIMIT_OFDM, QOS_TX1_TXOP_LIMIT_OFDM,
122 QOS_TX2_TXOP_LIMIT_OFDM, QOS_TX3_TXOP_LIMIT_OFDM}
123};
124
125static struct ieee80211_qos_parameters def_qos_parameters_CCK = {
126 {QOS_TX0_CW_MIN_CCK, QOS_TX1_CW_MIN_CCK, QOS_TX2_CW_MIN_CCK,
127 QOS_TX3_CW_MIN_CCK},
128 {QOS_TX0_CW_MAX_CCK, QOS_TX1_CW_MAX_CCK, QOS_TX2_CW_MAX_CCK,
129 QOS_TX3_CW_MAX_CCK},
130 {QOS_TX0_AIFS, QOS_TX1_AIFS, QOS_TX2_AIFS, QOS_TX3_AIFS},
131 {QOS_TX0_ACM, QOS_TX1_ACM, QOS_TX2_ACM, QOS_TX3_ACM},
132 {QOS_TX0_TXOP_LIMIT_CCK, QOS_TX1_TXOP_LIMIT_CCK, QOS_TX2_TXOP_LIMIT_CCK,
133 QOS_TX3_TXOP_LIMIT_CCK}
134};
135
136static struct ieee80211_qos_parameters def_parameters_OFDM = {
137 {DEF_TX0_CW_MIN_OFDM, DEF_TX1_CW_MIN_OFDM, DEF_TX2_CW_MIN_OFDM,
138 DEF_TX3_CW_MIN_OFDM},
139 {DEF_TX0_CW_MAX_OFDM, DEF_TX1_CW_MAX_OFDM, DEF_TX2_CW_MAX_OFDM,
140 DEF_TX3_CW_MAX_OFDM},
141 {DEF_TX0_AIFS, DEF_TX1_AIFS, DEF_TX2_AIFS, DEF_TX3_AIFS},
142 {DEF_TX0_ACM, DEF_TX1_ACM, DEF_TX2_ACM, DEF_TX3_ACM},
143 {DEF_TX0_TXOP_LIMIT_OFDM, DEF_TX1_TXOP_LIMIT_OFDM,
144 DEF_TX2_TXOP_LIMIT_OFDM, DEF_TX3_TXOP_LIMIT_OFDM}
145};
146
147static struct ieee80211_qos_parameters def_parameters_CCK = {
148 {DEF_TX0_CW_MIN_CCK, DEF_TX1_CW_MIN_CCK, DEF_TX2_CW_MIN_CCK,
149 DEF_TX3_CW_MIN_CCK},
150 {DEF_TX0_CW_MAX_CCK, DEF_TX1_CW_MAX_CCK, DEF_TX2_CW_MAX_CCK,
151 DEF_TX3_CW_MAX_CCK},
152 {DEF_TX0_AIFS, DEF_TX1_AIFS, DEF_TX2_AIFS, DEF_TX3_AIFS},
153 {DEF_TX0_ACM, DEF_TX1_ACM, DEF_TX2_ACM, DEF_TX3_ACM},
154 {DEF_TX0_TXOP_LIMIT_CCK, DEF_TX1_TXOP_LIMIT_CCK, DEF_TX2_TXOP_LIMIT_CCK,
155 DEF_TX3_TXOP_LIMIT_CCK}
156};
157
158static u8 qos_oui[QOS_OUI_LEN] = { 0x00, 0x50, 0xF2 };
159
160static int from_priority_to_tx_queue[] = {
161 IPW_TX_QUEUE_1, IPW_TX_QUEUE_2, IPW_TX_QUEUE_2, IPW_TX_QUEUE_1,
162 IPW_TX_QUEUE_3, IPW_TX_QUEUE_3, IPW_TX_QUEUE_4, IPW_TX_QUEUE_4
163};
164
165static u32 ipw_qos_get_burst_duration(struct ipw_priv *priv);
166
167static int ipw_send_qos_params_command(struct ipw_priv *priv, struct ieee80211_qos_parameters
168 *qos_param);
169static int ipw_send_qos_info_command(struct ipw_priv *priv, struct ieee80211_qos_information_element
170 *qos_param);
e43e3c1e 171#endif /* CONFIG_IPW2200_QOS */
b095c381 172
97a78ca9 173static struct iw_statistics *ipw_get_wireless_stats(struct net_device *dev);
b095c381 174static void ipw_remove_current_network(struct ipw_priv *priv);
43f66a6c 175static void ipw_rx(struct ipw_priv *priv);
bf79451e 176static int ipw_queue_tx_reclaim(struct ipw_priv *priv,
43f66a6c
JK		 177 struct clx2_tx_queue *txq, int qindex);
178static int ipw_queue_reset(struct ipw_priv *priv);
179
180static int ipw_queue_tx_hcmd(struct ipw_priv *priv, int hcmd, void *buf,
181 int len, int sync);
182
183static void ipw_tx_queue_free(struct ipw_priv *);
184
185static struct ipw_rx_queue *ipw_rx_queue_alloc(struct ipw_priv *);
186static void ipw_rx_queue_free(struct ipw_priv *, struct ipw_rx_queue *);
187static void ipw_rx_queue_replenish(void *);
43f66a6c 188static int ipw_up(struct ipw_priv *);
c4028958 189static void ipw_bg_up(struct work_struct *work);
43f66a6c 190static void ipw_down(struct ipw_priv *);
c4028958 191static void ipw_bg_down(struct work_struct *work);
43f66a6c 192static int ipw_config(struct ipw_priv *);
0edd5b44
JG		 193static int init_supported_rates(struct ipw_priv *priv,
194 struct ipw_supported_rates *prates);
b095c381
JK		 195static void ipw_set_hwcrypto_keys(struct ipw_priv *);
196static void ipw_send_wep_keys(struct ipw_priv *, int);
43f66a6c 197
f6c5cb7c
JK		 198static int snprint_line(char *buf, size_t count,
199 const u8 * data, u32 len, u32 ofs)
43f66a6c
JK		 200{
201 int out, i, j, l;
202 char c;
bf79451e 203
43f66a6c
JK		 204 out = snprintf(buf, count, "%08X", ofs);
205
206 for (l = 0, i = 0; i < 2; i++) {
207 out += snprintf(buf + out, count - out, " ");
bf79451e
JG		 208 for (j = 0; j < 8 && l < len; j++, l++)
209 out += snprintf(buf + out, count - out, "%02X ",
43f66a6c
JK		 210 data[(i * 8 + j)]);
211 for (; j < 8; j++)
212 out += snprintf(buf + out, count - out, " ");
213 }
bf79451e 214
43f66a6c
JK		 215 out += snprintf(buf + out, count - out, " ");
216 for (l = 0, i = 0; i < 2; i++) {
217 out += snprintf(buf + out, count - out, " ");
218 for (j = 0; j < 8 && l < len; j++, l++) {
219 c = data[(i * 8 + j)];
220 if (!isascii(c) || !isprint(c))
221 c = '.';
bf79451e 222
43f66a6c
JK		 223 out += snprintf(buf + out, count - out, "%c", c);
224 }
225
226 for (; j < 8; j++)
227 out += snprintf(buf + out, count - out, " ");
228 }
bf79451e 229
f6c5cb7c 230 return out;
43f66a6c
JK		 231}
232
0edd5b44 233static void printk_buf(int level, const u8 * data, u32 len)
43f66a6c
JK		 234{
235 char line[81];
236 u32 ofs = 0;
237 if (!(ipw_debug_level & level))
238 return;
239
240 while (len) {
f6c5cb7c
JK		 241 snprint_line(line, sizeof(line), &data[ofs],
242 min(len, 16U), ofs);
243 printk(KERN_DEBUG "%s\n", line);
43f66a6c
JK		 244 ofs += 16;
245 len -= min(len, 16U);
246 }
247}
248
f6c5cb7c
JK		 249static int snprintk_buf(u8 * output, size_t size, const u8 * data, size_t len)
250{
251 size_t out = size;
252 u32 ofs = 0;
253 int total = 0;
254
255 while (size && len) {
256 out = snprint_line(output, size, &data[ofs],
257 min_t(size_t, len, 16U), ofs);
258
259 ofs += 16;
260 output += out;
261 size -= out;
262 len -= min_t(size_t, len, 16U);
263 total += out;
264 }
265 return total;
266}
267
c8fe6679 268/* alias for 32-bit indirect read (for SRAM/reg above 4K), with debug wrapper */
43f66a6c
JK		 269static u32 _ipw_read_reg32(struct ipw_priv *priv, u32 reg);
270#define ipw_read_reg32(a, b) _ipw_read_reg32(a, b)
271
c8fe6679 272/* alias for 8-bit indirect read (for SRAM/reg above 4K), with debug wrapper */
43f66a6c
JK		 273static u8 _ipw_read_reg8(struct ipw_priv *ipw, u32 reg);
274#define ipw_read_reg8(a, b) _ipw_read_reg8(a, b)
275
c8fe6679 276/* 8-bit indirect write (for SRAM/reg above 4K), with debug wrapper */
43f66a6c
JK		 277static void _ipw_write_reg8(struct ipw_priv *priv, u32 reg, u8 value);
278static inline void ipw_write_reg8(struct ipw_priv *a, u32 b, u8 c)
279{
0edd5b44
JG		 280 IPW_DEBUG_IO("%s %d: write_indirect8(0x%08X, 0x%08X)\n", __FILE__,
281 __LINE__, (u32) (b), (u32) (c));
43f66a6c
JK		 282 _ipw_write_reg8(a, b, c);
283}
284
c8fe6679 285/* 16-bit indirect write (for SRAM/reg above 4K), with debug wrapper */
43f66a6c
JK		 286static void _ipw_write_reg16(struct ipw_priv *priv, u32 reg, u16 value);
287static inline void ipw_write_reg16(struct ipw_priv *a, u32 b, u16 c)
288{
0edd5b44
JG		 289 IPW_DEBUG_IO("%s %d: write_indirect16(0x%08X, 0x%08X)\n", __FILE__,
290 __LINE__, (u32) (b), (u32) (c));
43f66a6c
JK		 291 _ipw_write_reg16(a, b, c);
292}
293
c8fe6679 294/* 32-bit indirect write (for SRAM/reg above 4K), with debug wrapper */
43f66a6c
JK		 295static void _ipw_write_reg32(struct ipw_priv *priv, u32 reg, u32 value);
296static inline void ipw_write_reg32(struct ipw_priv *a, u32 b, u32 c)
297{
0edd5b44
JG		 298 IPW_DEBUG_IO("%s %d: write_indirect32(0x%08X, 0x%08X)\n", __FILE__,
299 __LINE__, (u32) (b), (u32) (c));
43f66a6c
JK		 300 _ipw_write_reg32(a, b, c);
301}
302
c8fe6679 303/* 8-bit direct write (low 4K) */
1788bcd1
JS		 304static inline void _ipw_write8(struct ipw_priv *ipw, unsigned long ofs,
305 u8 val)
306{
307 writeb(val, ipw->hw_base + ofs);
308}
c8fe6679
ZY		 309
310/* 8-bit direct write (for low 4K of SRAM/regs), with debug wrapper */
fb55d887 311#define ipw_write8(ipw, ofs, val) do { \
1788bcd1
JS		 312 IPW_DEBUG_IO("%s %d: write_direct8(0x%08X, 0x%08X)\n", __FILE__, \
313 __LINE__, (u32)(ofs), (u32)(val)); \
314 _ipw_write8(ipw, ofs, val); \
315} while (0)
43f66a6c 316
c8fe6679 317/* 16-bit direct write (low 4K) */
1788bcd1
JS		 318static inline void _ipw_write16(struct ipw_priv *ipw, unsigned long ofs,
319 u16 val)
320{
321 writew(val, ipw->hw_base + ofs);
322}
c8fe6679
ZY		 323
324/* 16-bit direct write (for low 4K of SRAM/regs), with debug wrapper */
1788bcd1
JS		 325#define ipw_write16(ipw, ofs, val) do { \
326 IPW_DEBUG_IO("%s %d: write_direct16(0x%08X, 0x%08X)\n", __FILE__, \
327 __LINE__, (u32)(ofs), (u32)(val)); \
328 _ipw_write16(ipw, ofs, val); \
329} while (0)
43f66a6c 330
c8fe6679 331/* 32-bit direct write (low 4K) */
1788bcd1
JS		 332static inline void _ipw_write32(struct ipw_priv *ipw, unsigned long ofs,
333 u32 val)
334{
335 writel(val, ipw->hw_base + ofs);
336}
c8fe6679
ZY		 337
338/* 32-bit direct write (for low 4K of SRAM/regs), with debug wrapper */
1788bcd1
JS		 339#define ipw_write32(ipw, ofs, val) do { \
340 IPW_DEBUG_IO("%s %d: write_direct32(0x%08X, 0x%08X)\n", __FILE__, \
341 __LINE__, (u32)(ofs), (u32)(val)); \
342 _ipw_write32(ipw, ofs, val); \
343} while (0)
43f66a6c 344
c8fe6679 345/* 8-bit direct read (low 4K) */
1788bcd1 346static inline u8 _ipw_read8(struct ipw_priv *ipw, unsigned long ofs)
0edd5b44 347{
1788bcd1 348 return readb(ipw->hw_base + ofs);
43f66a6c 349}
0edd5b44 350
c8fe6679 351/* alias to 8-bit direct read (low 4K of SRAM/regs), with debug wrapper */
1788bcd1
JS		 352#define ipw_read8(ipw, ofs) ({ \
353 IPW_DEBUG_IO("%s %d: read_direct8(0x%08X)\n", __FILE__, __LINE__, \
354 (u32)(ofs)); \
355 _ipw_read8(ipw, ofs); \
356})
43f66a6c 357
c8fe6679 358/* 16-bit direct read (low 4K) */
1788bcd1 359static inline u16 _ipw_read16(struct ipw_priv *ipw, unsigned long ofs)
0edd5b44 360{
1788bcd1 361 return readw(ipw->hw_base + ofs);
43f66a6c 362}
0edd5b44 363
c8fe6679 364/* alias to 16-bit direct read (low 4K of SRAM/regs), with debug wrapper */
1788bcd1
JS		 365#define ipw_read16(ipw, ofs) ({ \
366 IPW_DEBUG_IO("%s %d: read_direct16(0x%08X)\n", __FILE__, __LINE__, \
367 (u32)(ofs)); \
368 _ipw_read16(ipw, ofs); \
369})
43f66a6c 370
c8fe6679 371/* 32-bit direct read (low 4K) */
1788bcd1 372static inline u32 _ipw_read32(struct ipw_priv *ipw, unsigned long ofs)
0edd5b44 373{
1788bcd1 374 return readl(ipw->hw_base + ofs);
43f66a6c 375}
0edd5b44 376
c8fe6679 377/* alias to 32-bit direct read (low 4K of SRAM/regs), with debug wrapper */
1788bcd1
JS		 378#define ipw_read32(ipw, ofs) ({ \
379 IPW_DEBUG_IO("%s %d: read_direct32(0x%08X)\n", __FILE__, __LINE__, \
380 (u32)(ofs)); \
381 _ipw_read32(ipw, ofs); \
382})
43f66a6c
JK		 383
384static void _ipw_read_indirect(struct ipw_priv *, u32, u8 *, int);
c8fe6679 385/* alias to multi-byte read (SRAM/regs above 4K), with debug wrapper */
1788bcd1
JS		 386#define ipw_read_indirect(a, b, c, d) ({ \
387 IPW_DEBUG_IO("%s %d: read_indirect(0x%08X) %u bytes\n", __FILE__, \
388 __LINE__, (u32)(b), (u32)(d)); \
389 _ipw_read_indirect(a, b, c, d); \
390})
43f66a6c 391
c8fe6679 392/* alias to multi-byte read (SRAM/regs above 4K), with debug wrapper */
0edd5b44
JG		 393static void _ipw_write_indirect(struct ipw_priv *priv, u32 addr, u8 * data,
394 int num);
1788bcd1
JS		 395#define ipw_write_indirect(a, b, c, d) do { \
396 IPW_DEBUG_IO("%s %d: write_indirect(0x%08X) %u bytes\n", __FILE__, \
397 __LINE__, (u32)(b), (u32)(d)); \
398 _ipw_write_indirect(a, b, c, d); \
399} while (0)
43f66a6c 400
c8fe6679 401/* 32-bit indirect write (above 4K) */
0edd5b44 402static void _ipw_write_reg32(struct ipw_priv *priv, u32 reg, u32 value)
43f66a6c 403{
0edd5b44 404 IPW_DEBUG_IO(" %p : reg = 0x%8X : value = 0x%8X\n", priv, reg, value);
b095c381
JK		 405 _ipw_write32(priv, IPW_INDIRECT_ADDR, reg);
406 _ipw_write32(priv, IPW_INDIRECT_DATA, value);
43f66a6c
JK		 407}
408
c8fe6679 409/* 8-bit indirect write (above 4K) */
43f66a6c
JK		 410static void _ipw_write_reg8(struct ipw_priv *priv, u32 reg, u8 value)
411{
2638bc39 412 u32 aligned_addr = reg & IPW_INDIRECT_ADDR_MASK; /* dword align */
c8fe6679
ZY		 413 u32 dif_len = reg - aligned_addr;
414
43f66a6c 415 IPW_DEBUG_IO(" reg = 0x%8X : value = 0x%8X\n", reg, value);
c8fe6679
ZY		 416 _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr);
417 _ipw_write8(priv, IPW_INDIRECT_DATA + dif_len, value);
43f66a6c
JK		 418}
419
c8fe6679 420/* 16-bit indirect write (above 4K) */
0edd5b44 421static void _ipw_write_reg16(struct ipw_priv *priv, u32 reg, u16 value)
43f66a6c 422{
2638bc39 423 u32 aligned_addr = reg & IPW_INDIRECT_ADDR_MASK; /* dword align */
c8fe6679
ZY		 424 u32 dif_len = (reg - aligned_addr) & (~0x1ul);
425
43f66a6c 426 IPW_DEBUG_IO(" reg = 0x%8X : value = 0x%8X\n", reg, value);
c8fe6679
ZY		 427 _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr);
428 _ipw_write16(priv, IPW_INDIRECT_DATA + dif_len, value);
43f66a6c
JK		 429}
430
c8fe6679 431/* 8-bit indirect read (above 4K) */
43f66a6c
JK		 432static u8 _ipw_read_reg8(struct ipw_priv *priv, u32 reg)
433{
434 u32 word;
b095c381 435 _ipw_write32(priv, IPW_INDIRECT_ADDR, reg & IPW_INDIRECT_ADDR_MASK);
43f66a6c 436 IPW_DEBUG_IO(" reg = 0x%8X : \n", reg);
b095c381 437 word = _ipw_read32(priv, IPW_INDIRECT_DATA);
0edd5b44 438 return (word >> ((reg & 0x3) * 8)) & 0xff;
43f66a6c
JK		 439}
440
c8fe6679 441/* 32-bit indirect read (above 4K) */
43f66a6c
JK		 442static u32 _ipw_read_reg32(struct ipw_priv *priv, u32 reg)
443{
444 u32 value;
445
446 IPW_DEBUG_IO("%p : reg = 0x%08x\n", priv, reg);
447
b095c381
JK		 448 _ipw_write32(priv, IPW_INDIRECT_ADDR, reg);
449 value = _ipw_read32(priv, IPW_INDIRECT_DATA);
43f66a6c
JK		 450 IPW_DEBUG_IO(" reg = 0x%4X : value = 0x%4x \n", reg, value);
451 return value;
452}
453
c8fe6679
ZY		 454/* General purpose, no alignment requirement, iterative (multi-byte) read, */
455/* for area above 1st 4K of SRAM/reg space */
43f66a6c
JK		 456static void _ipw_read_indirect(struct ipw_priv *priv, u32 addr, u8 * buf,
457 int num)
458{
2638bc39 459 u32 aligned_addr = addr & IPW_INDIRECT_ADDR_MASK; /* dword align */
43f66a6c 460 u32 dif_len = addr - aligned_addr;
43f66a6c 461 u32 i;
bf79451e 462
43f66a6c
JK		 463 IPW_DEBUG_IO("addr = %i, buf = %p, num = %i\n", addr, buf, num);
464
ea2b26e0
JK		 465 if (num <= 0) {
466 return;
467 }
468
c8fe6679 469 /* Read the first dword (or portion) byte by byte */
43f66a6c 470 if (unlikely(dif_len)) {
b095c381 471 _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr);
43f66a6c 472 /* Start reading at aligned_addr + dif_len */
ea2b26e0 473 for (i = dif_len; ((i < 4) && (num > 0)); i++, num--)
b095c381 474 *buf++ = _ipw_read8(priv, IPW_INDIRECT_DATA + i);
43f66a6c
JK		 475 aligned_addr += 4;
476 }
477
c8fe6679 478 /* Read all of the middle dwords as dwords, with auto-increment */
b095c381 479 _ipw_write32(priv, IPW_AUTOINC_ADDR, aligned_addr);
ea2b26e0 480 for (; num >= 4; buf += 4, aligned_addr += 4, num -= 4)
b095c381 481 *(u32 *) buf = _ipw_read32(priv, IPW_AUTOINC_DATA);
bf79451e 482
c8fe6679 483 /* Read the last dword (or portion) byte by byte */
ea2b26e0 484 if (unlikely(num)) {
b095c381 485 _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr);
ea2b26e0 486 for (i = 0; num > 0; i++, num--)
b095c381 487 *buf++ = ipw_read8(priv, IPW_INDIRECT_DATA + i);
ea2b26e0 488 }
43f66a6c
JK		 489}
490
c8fe6679
ZY		 491/* General purpose, no alignment requirement, iterative (multi-byte) write, */
492/* for area above 1st 4K of SRAM/reg space */
0edd5b44 493static void _ipw_write_indirect(struct ipw_priv *priv, u32 addr, u8 * buf,
43f66a6c
JK		 494 int num)
495{
2638bc39 496 u32 aligned_addr = addr & IPW_INDIRECT_ADDR_MASK; /* dword align */
43f66a6c 497 u32 dif_len = addr - aligned_addr;
43f66a6c 498 u32 i;
bf79451e 499
43f66a6c 500 IPW_DEBUG_IO("addr = %i, buf = %p, num = %i\n", addr, buf, num);
bf79451e 501
ea2b26e0
JK		 502 if (num <= 0) {
503 return;
504 }
505
c8fe6679 506 /* Write the first dword (or portion) byte by byte */
43f66a6c 507 if (unlikely(dif_len)) {
b095c381 508 _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr);
c8fe6679 509 /* Start writing at aligned_addr + dif_len */
ea2b26e0 510 for (i = dif_len; ((i < 4) && (num > 0)); i++, num--, buf++)
b095c381 511 _ipw_write8(priv, IPW_INDIRECT_DATA + i, *buf);
43f66a6c
JK		 512 aligned_addr += 4;
513 }
bf79451e 514
c8fe6679 515 /* Write all of the middle dwords as dwords, with auto-increment */
b095c381 516 _ipw_write32(priv, IPW_AUTOINC_ADDR, aligned_addr);
ea2b26e0 517 for (; num >= 4; buf += 4, aligned_addr += 4, num -= 4)
b095c381 518 _ipw_write32(priv, IPW_AUTOINC_DATA, *(u32 *) buf);
bf79451e 519
c8fe6679 520 /* Write the last dword (or portion) byte by byte */
ea2b26e0 521 if (unlikely(num)) {
b095c381 522 _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr);
ea2b26e0 523 for (i = 0; num > 0; i++, num--, buf++)
b095c381 524 _ipw_write8(priv, IPW_INDIRECT_DATA + i, *buf);
ea2b26e0 525 }
43f66a6c
JK		 526}
527
c8fe6679
ZY		 528/* General purpose, no alignment requirement, iterative (multi-byte) write, */
529/* for 1st 4K of SRAM/regs space */
bf79451e 530static void ipw_write_direct(struct ipw_priv *priv, u32 addr, void *buf,
43f66a6c
JK		 531 int num)
532{
533 memcpy_toio((priv->hw_base + addr), buf, num);
534}
535
c8fe6679 536/* Set bit(s) in low 4K of SRAM/regs */
43f66a6c
JK		 537static inline void ipw_set_bit(struct ipw_priv *priv, u32 reg, u32 mask)
538{
539 ipw_write32(priv, reg, ipw_read32(priv, reg) | mask);
540}
541
c8fe6679 542/* Clear bit(s) in low 4K of SRAM/regs */
43f66a6c
JK		 543static inline void ipw_clear_bit(struct ipw_priv *priv, u32 reg, u32 mask)
544{
545 ipw_write32(priv, reg, ipw_read32(priv, reg) & ~mask);
546}
547
89c318ed 548static inline void __ipw_enable_interrupts(struct ipw_priv *priv)
43f66a6c
JK		 549{
550 if (priv->status & STATUS_INT_ENABLED)
551 return;
552 priv->status |= STATUS_INT_ENABLED;
b095c381 553 ipw_write32(priv, IPW_INTA_MASK_R, IPW_INTA_MASK_ALL);
43f66a6c
JK		 554}
555
89c318ed 556static inline void __ipw_disable_interrupts(struct ipw_priv *priv)
43f66a6c
JK		 557{
558 if (!(priv->status & STATUS_INT_ENABLED))
559 return;
560 priv->status &= ~STATUS_INT_ENABLED;
b095c381 561 ipw_write32(priv, IPW_INTA_MASK_R, ~IPW_INTA_MASK_ALL);
43f66a6c
JK		 562}
563
89c318ed
ZY		 564static inline void ipw_enable_interrupts(struct ipw_priv *priv)
565{
566 unsigned long flags;
567
568 spin_lock_irqsave(&priv->irq_lock, flags);
569 __ipw_enable_interrupts(priv);
570 spin_unlock_irqrestore(&priv->irq_lock, flags);
571}
572
573static inline void ipw_disable_interrupts(struct ipw_priv *priv)
574{
575 unsigned long flags;
576
577 spin_lock_irqsave(&priv->irq_lock, flags);
578 __ipw_disable_interrupts(priv);
579 spin_unlock_irqrestore(&priv->irq_lock, flags);
580}
581
43f66a6c
JK		 582static char *ipw_error_desc(u32 val)
583{
584 switch (val) {
bf79451e 585 case IPW_FW_ERROR_OK:
43f66a6c 586 return "ERROR_OK";
bf79451e 587 case IPW_FW_ERROR_FAIL:
43f66a6c 588 return "ERROR_FAIL";
bf79451e 589 case IPW_FW_ERROR_MEMORY_UNDERFLOW:
43f66a6c 590 return "MEMORY_UNDERFLOW";
bf79451e 591 case IPW_FW_ERROR_MEMORY_OVERFLOW:
43f66a6c 592 return "MEMORY_OVERFLOW";
bf79451e 593 case IPW_FW_ERROR_BAD_PARAM:
b095c381 594 return "BAD_PARAM";
bf79451e 595 case IPW_FW_ERROR_BAD_CHECKSUM:
b095c381 596 return "BAD_CHECKSUM";
bf79451e 597 case IPW_FW_ERROR_NMI_INTERRUPT:
b095c381 598 return "NMI_INTERRUPT";
bf79451e 599 case IPW_FW_ERROR_BAD_DATABASE:
b095c381 600 return "BAD_DATABASE";
bf79451e 601 case IPW_FW_ERROR_ALLOC_FAIL:
b095c381 602 return "ALLOC_FAIL";
bf79451e 603 case IPW_FW_ERROR_DMA_UNDERRUN:
b095c381 604 return "DMA_UNDERRUN";
bf79451e 605 case IPW_FW_ERROR_DMA_STATUS:
b095c381
JK		 606 return "DMA_STATUS";
607 case IPW_FW_ERROR_DINO_ERROR:
608 return "DINO_ERROR";
609 case IPW_FW_ERROR_EEPROM_ERROR:
610 return "EEPROM_ERROR";
bf79451e 611 case IPW_FW_ERROR_SYSASSERT:
b095c381 612 return "SYSASSERT";
bf79451e 613 case IPW_FW_ERROR_FATAL_ERROR:
b095c381 614 return "FATAL_ERROR";
bf79451e 615 default:
b095c381 616 return "UNKNOWN_ERROR";
43f66a6c
JK		 617 }
618}
619
b39860c6
JK		 620static void ipw_dump_error_log(struct ipw_priv *priv,
621 struct ipw_fw_error *error)
43f66a6c 622{
b39860c6 623 u32 i;
bf79451e 624
b39860c6
JK		 625 if (!error) {
626 IPW_ERROR("Error allocating and capturing error log. "
627 "Nothing to dump.\n");
628 return;
43f66a6c
JK		 629 }
630
b39860c6
JK		 631 IPW_ERROR("Start IPW Error Log Dump:\n");
632 IPW_ERROR("Status: 0x%08X, Config: %08X\n",
633 error->status, error->config);
43f66a6c 634
b39860c6 635 for (i = 0; i < error->elem_len; i++)
0edd5b44 636 IPW_ERROR("%s %i 0x%08x 0x%08x 0x%08x 0x%08x 0x%08x\n",
b39860c6
JK		 637 ipw_error_desc(error->elem[i].desc),
638 error->elem[i].time,
639 error->elem[i].blink1,
640 error->elem[i].blink2,
641 error->elem[i].link1,
642 error->elem[i].link2, error->elem[i].data);
643 for (i = 0; i < error->log_len; i++)
644 IPW_ERROR("%i\t0x%08x\t%i\n",
645 error->log[i].time,
286568ab 646 error->log[i].data, error->log[i].event);
43f66a6c
JK		 647}
648
c848d0af 649static inline int ipw_is_init(struct ipw_priv *priv)
43f66a6c 650{
c848d0af 651 return (priv->status & STATUS_INIT) ? 1 : 0;
43f66a6c
JK		 652}
653
0edd5b44 654static int ipw_get_ordinal(struct ipw_priv *priv, u32 ord, void *val, u32 * len)
43f66a6c
JK		 655{
656 u32 addr, field_info, field_len, field_count, total_len;
657
658 IPW_DEBUG_ORD("ordinal = %i\n", ord);
659
660 if (!priv || !val || !len) {
661 IPW_DEBUG_ORD("Invalid argument\n");
662 return -EINVAL;
663 }
bf79451e 664
43f66a6c
JK		 665 /* verify device ordinal tables have been initialized */
666 if (!priv->table0_addr || !priv->table1_addr || !priv->table2_addr) {
667 IPW_DEBUG_ORD("Access ordinals before initialization\n");
668 return -EINVAL;
669 }
670
671 switch (IPW_ORD_TABLE_ID_MASK & ord) {
672 case IPW_ORD_TABLE_0_MASK:
673 /*
674 * TABLE 0: Direct access to a table of 32 bit values
675 *
bf79451e 676 * This is a very simple table with the data directly
43f66a6c
JK		 677 * read from the table
678 */
679
680 /* remove the table id from the ordinal */
681 ord &= IPW_ORD_TABLE_VALUE_MASK;
682
683 /* boundary check */
684 if (ord > priv->table0_len) {
685 IPW_DEBUG_ORD("ordinal value (%i) longer then "
686 "max (%i)\n", ord, priv->table0_len);
687 return -EINVAL;
688 }
689
690 /* verify we have enough room to store the value */
691 if (*len < sizeof(u32)) {
692 IPW_DEBUG_ORD("ordinal buffer length too small, "
aaa4d308 693 "need %zd\n", sizeof(u32));
43f66a6c
JK		 694 return -EINVAL;
695 }
696
697 IPW_DEBUG_ORD("Reading TABLE0[%i] from offset 0x%08x\n",
0edd5b44 698 ord, priv->table0_addr + (ord << 2));
43f66a6c
JK		 699
700 *len = sizeof(u32);
701 ord <<= 2;
0edd5b44 702 *((u32 *) val) = ipw_read32(priv, priv->table0_addr + ord);
43f66a6c
JK		 703 break;
704
705 case IPW_ORD_TABLE_1_MASK:
706 /*
707 * TABLE 1: Indirect access to a table of 32 bit values
bf79451e
JG		 708 *
709 * This is a fairly large table of u32 values each
43f66a6c
JK		 710 * representing starting addr for the data (which is
711 * also a u32)
712 */
713
714 /* remove the table id from the ordinal */
715 ord &= IPW_ORD_TABLE_VALUE_MASK;
bf79451e 716
43f66a6c
JK		 717 /* boundary check */
718 if (ord > priv->table1_len) {
719 IPW_DEBUG_ORD("ordinal value too long\n");
720 return -EINVAL;
721 }
722
723 /* verify we have enough room to store the value */
724 if (*len < sizeof(u32)) {
725 IPW_DEBUG_ORD("ordinal buffer length too small, "
aaa4d308 726 "need %zd\n", sizeof(u32));
43f66a6c
JK		 727 return -EINVAL;
728 }
729
0edd5b44
JG		 730 *((u32 *) val) =
731 ipw_read_reg32(priv, (priv->table1_addr + (ord << 2)));
43f66a6c
JK		 732 *len = sizeof(u32);
733 break;
734
735 case IPW_ORD_TABLE_2_MASK:
736 /*
737 * TABLE 2: Indirect access to a table of variable sized values
738 *
739 * This table consist of six values, each containing
740 * - dword containing the starting offset of the data
741 * - dword containing the lengh in the first 16bits
742 * and the count in the second 16bits
743 */
744
745 /* remove the table id from the ordinal */
746 ord &= IPW_ORD_TABLE_VALUE_MASK;
747
748 /* boundary check */
749 if (ord > priv->table2_len) {
750 IPW_DEBUG_ORD("ordinal value too long\n");
751 return -EINVAL;
752 }
753
754 /* get the address of statistic */
755 addr = ipw_read_reg32(priv, priv->table2_addr + (ord << 3));
bf79451e
JG		 756
757 /* get the second DW of statistics ;
43f66a6c 758 * two 16-bit words - first is length, second is count */
0edd5b44
JG		 759 field_info =
760 ipw_read_reg32(priv,
761 priv->table2_addr + (ord << 3) +
762 sizeof(u32));
bf79451e 763
43f66a6c 764 /* get each entry length */
0edd5b44 765 field_len = *((u16 *) & field_info);
bf79451e 766
43f66a6c 767 /* get number of entries */
0edd5b44 768 field_count = *(((u16 *) & field_info) + 1);
bf79451e 769
43f66a6c
JK		 770 /* abort if not enought memory */
771 total_len = field_len * field_count;
772 if (total_len > *len) {
773 *len = total_len;
774 return -EINVAL;
775 }
bf79451e 776
43f66a6c
JK		 777 *len = total_len;
778 if (!total_len)
779 return 0;
780
781 IPW_DEBUG_ORD("addr = 0x%08x, total_len = %i, "
bf79451e 782 "field_info = 0x%08x\n",
43f66a6c
JK		 783 addr, total_len, field_info);
784 ipw_read_indirect(priv, addr, val, total_len);
785 break;
786
787 default:
788 IPW_DEBUG_ORD("Invalid ordinal!\n");
789 return -EINVAL;
790
791 }
792
43f66a6c
JK		 793 return 0;
794}
795
796static void ipw_init_ordinals(struct ipw_priv *priv)
797{
798 priv->table0_addr = IPW_ORDINALS_TABLE_LOWER;
bf79451e 799 priv->table0_len = ipw_read32(priv, priv->table0_addr);
43f66a6c
JK		 800
801 IPW_DEBUG_ORD("table 0 offset at 0x%08x, len = %i\n",
802 priv->table0_addr, priv->table0_len);
803
804 priv->table1_addr = ipw_read32(priv, IPW_ORDINALS_TABLE_1);
805 priv->table1_len = ipw_read_reg32(priv, priv->table1_addr);
806
807 IPW_DEBUG_ORD("table 1 offset at 0x%08x, len = %i\n",
808 priv->table1_addr, priv->table1_len);
809
810 priv->table2_addr = ipw_read32(priv, IPW_ORDINALS_TABLE_2);
811 priv->table2_len = ipw_read_reg32(priv, priv->table2_addr);
0edd5b44 812 priv->table2_len &= 0x0000ffff; /* use first two bytes */
43f66a6c
JK		 813
814 IPW_DEBUG_ORD("table 2 offset at 0x%08x, len = %i\n",
815 priv->table2_addr, priv->table2_len);
816
817}
818
a73e22b2 819static u32 ipw_register_toggle(u32 reg)
a613bffd 820{
b095c381
JK		 821 reg &= ~IPW_START_STANDBY;
822 if (reg & IPW_GATE_ODMA)
823 reg &= ~IPW_GATE_ODMA;
824 if (reg & IPW_GATE_IDMA)
825 reg &= ~IPW_GATE_IDMA;
826 if (reg & IPW_GATE_ADMA)
827 reg &= ~IPW_GATE_ADMA;
a613bffd
JK		 828 return reg;
829}
830
831/*
832 * LED behavior:
833 * - On radio ON, turn on any LEDs that require to be on during start
834 * - On initialization, start unassociated blink
835 * - On association, disable unassociated blink
836 * - On disassociation, start unassociated blink
837 * - On radio OFF, turn off any LEDs started during radio on
838 *
839 */
ede6111c
ZY		 840#define LD_TIME_LINK_ON msecs_to_jiffies(300)
841#define LD_TIME_LINK_OFF msecs_to_jiffies(2700)
842#define LD_TIME_ACT_ON msecs_to_jiffies(250)
a613bffd 843
a73e22b2 844static void ipw_led_link_on(struct ipw_priv *priv)
a613bffd
JK		 845{
846 unsigned long flags;
847 u32 led;
848
849 /* If configured to not use LEDs, or nic_type is 1,
850 * then we don't toggle a LINK led */
851 if (priv->config & CFG_NO_LED || priv->nic_type == EEPROM_NIC_TYPE_1)
852 return;
853
854 spin_lock_irqsave(&priv->lock, flags);
855
856 if (!(priv->status & STATUS_RF_KILL_MASK) &&
857 !(priv->status & STATUS_LED_LINK_ON)) {
858 IPW_DEBUG_LED("Link LED On\n");
b095c381 859 led = ipw_read_reg32(priv, IPW_EVENT_REG);
a613bffd
JK		 860 led |= priv->led_association_on;
861
862 led = ipw_register_toggle(led);
863
864 IPW_DEBUG_LED("Reg: 0x%08X\n", led);
b095c381 865 ipw_write_reg32(priv, IPW_EVENT_REG, led);
a613bffd
JK		 866
867 priv->status |= STATUS_LED_LINK_ON;
868
869 /* If we aren't associated, schedule turning the LED off */
870 if (!(priv->status & STATUS_ASSOCIATED))
871 queue_delayed_work(priv->workqueue,
872 &priv->led_link_off,
873 LD_TIME_LINK_ON);
874 }
875
876 spin_unlock_irqrestore(&priv->lock, flags);
877}
878
c4028958 879static void ipw_bg_led_link_on(struct work_struct *work)
c848d0af 880{
c4028958
DH		 881 struct ipw_priv *priv =
882 container_of(work, struct ipw_priv, led_link_on.work);
4644151b 883 mutex_lock(&priv->mutex);
c4028958 884 ipw_led_link_on(priv);
4644151b 885 mutex_unlock(&priv->mutex);
c848d0af
JK		 886}
887
a73e22b2 888static void ipw_led_link_off(struct ipw_priv *priv)
a613bffd
JK		 889{
890 unsigned long flags;
891 u32 led;
892
893 /* If configured not to use LEDs, or nic type is 1,
894 * then we don't goggle the LINK led. */
895 if (priv->config & CFG_NO_LED || priv->nic_type == EEPROM_NIC_TYPE_1)
896 return;
897
898 spin_lock_irqsave(&priv->lock, flags);
899
900 if (priv->status & STATUS_LED_LINK_ON) {
b095c381 901 led = ipw_read_reg32(priv, IPW_EVENT_REG);
a613bffd
JK		 902 led &= priv->led_association_off;
903 led = ipw_register_toggle(led);
904
905 IPW_DEBUG_LED("Reg: 0x%08X\n", led);
b095c381 906 ipw_write_reg32(priv, IPW_EVENT_REG, led);
a613bffd
JK		 907
908 IPW_DEBUG_LED("Link LED Off\n");
909
910 priv->status &= ~STATUS_LED_LINK_ON;
911
912 /* If we aren't associated and the radio is on, schedule
913 * turning the LED on (blink while unassociated) */
914 if (!(priv->status & STATUS_RF_KILL_MASK) &&
915 !(priv->status & STATUS_ASSOCIATED))
916 queue_delayed_work(priv->workqueue, &priv->led_link_on,
917 LD_TIME_LINK_OFF);
918
919 }
920
921 spin_unlock_irqrestore(&priv->lock, flags);
922}
923
c4028958 924static void ipw_bg_led_link_off(struct work_struct *work)
c848d0af 925{
c4028958
DH		 926 struct ipw_priv *priv =
927 container_of(work, struct ipw_priv, led_link_off.work);
4644151b 928 mutex_lock(&priv->mutex);
c4028958 929 ipw_led_link_off(priv);
4644151b 930 mutex_unlock(&priv->mutex);
c848d0af
JK		 931}
932
858119e1 933static void __ipw_led_activity_on(struct ipw_priv *priv)
a613bffd 934{
a613bffd
JK		 935 u32 led;
936
937 if (priv->config & CFG_NO_LED)
938 return;
939
b095c381 940 if (priv->status & STATUS_RF_KILL_MASK)
a613bffd 941 return;
a613bffd
JK		 942
943 if (!(priv->status & STATUS_LED_ACT_ON)) {
b095c381 944 led = ipw_read_reg32(priv, IPW_EVENT_REG);
a613bffd
JK		 945 led |= priv->led_activity_on;
946
947 led = ipw_register_toggle(led);
948
949 IPW_DEBUG_LED("Reg: 0x%08X\n", led);
b095c381 950 ipw_write_reg32(priv, IPW_EVENT_REG, led);
a613bffd
JK		 951
952 IPW_DEBUG_LED("Activity LED On\n");
953
954 priv->status |= STATUS_LED_ACT_ON;
955
c848d0af 956 cancel_delayed_work(&priv->led_act_off);
a613bffd
JK		 957 queue_delayed_work(priv->workqueue, &priv->led_act_off,
958 LD_TIME_ACT_ON);
959 } else {
960 /* Reschedule LED off for full time period */
961 cancel_delayed_work(&priv->led_act_off);
962 queue_delayed_work(priv->workqueue, &priv->led_act_off,
963 LD_TIME_ACT_ON);
964 }
b095c381 965}
a613bffd 966
a73e22b2 967#if 0
b095c381
JK		 968void ipw_led_activity_on(struct ipw_priv *priv)
969{
970 unsigned long flags;
971 spin_lock_irqsave(&priv->lock, flags);
972 __ipw_led_activity_on(priv);
a613bffd
JK		 973 spin_unlock_irqrestore(&priv->lock, flags);
974}
a73e22b2 975#endif /* 0 */
a613bffd 976
a73e22b2 977static void ipw_led_activity_off(struct ipw_priv *priv)
a613bffd
JK		 978{
979 unsigned long flags;
980 u32 led;
981
982 if (priv->config & CFG_NO_LED)
983 return;
984
985 spin_lock_irqsave(&priv->lock, flags);
986
987 if (priv->status & STATUS_LED_ACT_ON) {
b095c381 988 led = ipw_read_reg32(priv, IPW_EVENT_REG);
a613bffd
JK		 989 led &= priv->led_activity_off;
990
991 led = ipw_register_toggle(led);
992
993 IPW_DEBUG_LED("Reg: 0x%08X\n", led);
b095c381 994 ipw_write_reg32(priv, IPW_EVENT_REG, led);
a613bffd
JK		 995
996 IPW_DEBUG_LED("Activity LED Off\n");
997
998 priv->status &= ~STATUS_LED_ACT_ON;
999 }
1000
1001 spin_unlock_irqrestore(&priv->lock, flags);
1002}
1003
c4028958 1004static void ipw_bg_led_activity_off(struct work_struct *work)
c848d0af 1005{
c4028958
DH		 1006 struct ipw_priv *priv =
1007 container_of(work, struct ipw_priv, led_act_off.work);
4644151b 1008 mutex_lock(&priv->mutex);
c4028958 1009 ipw_led_activity_off(priv);
4644151b 1010 mutex_unlock(&priv->mutex);
c848d0af
JK		 1011}
1012
a73e22b2 1013static void ipw_led_band_on(struct ipw_priv *priv)
a613bffd
JK		 1014{
1015 unsigned long flags;
1016 u32 led;
1017
1018 /* Only nic type 1 supports mode LEDs */
c848d0af
JK		 1019 if (priv->config & CFG_NO_LED ||
1020 priv->nic_type != EEPROM_NIC_TYPE_1 || !priv->assoc_network)
a613bffd
JK		 1021 return;
1022
1023 spin_lock_irqsave(&priv->lock, flags);
1024
b095c381 1025 led = ipw_read_reg32(priv, IPW_EVENT_REG);
a613bffd
JK		 1026 if (priv->assoc_network->mode == IEEE_A) {
1027 led |= priv->led_ofdm_on;
1028 led &= priv->led_association_off;
1029 IPW_DEBUG_LED("Mode LED On: 802.11a\n");
1030 } else if (priv->assoc_network->mode == IEEE_G) {
1031 led |= priv->led_ofdm_on;
1032 led |= priv->led_association_on;
1033 IPW_DEBUG_LED("Mode LED On: 802.11g\n");
1034 } else {
1035 led &= priv->led_ofdm_off;
1036 led |= priv->led_association_on;
1037 IPW_DEBUG_LED("Mode LED On: 802.11b\n");
1038 }
1039
1040 led = ipw_register_toggle(led);
1041
1042 IPW_DEBUG_LED("Reg: 0x%08X\n", led);
b095c381 1043 ipw_write_reg32(priv, IPW_EVENT_REG, led);
a613bffd
JK		 1044
1045 spin_unlock_irqrestore(&priv->lock, flags);
1046}
1047
a73e22b2 1048static void ipw_led_band_off(struct ipw_priv *priv)
a613bffd
JK		 1049{
1050 unsigned long flags;
1051 u32 led;
1052
1053 /* Only nic type 1 supports mode LEDs */
1054 if (priv->config & CFG_NO_LED || priv->nic_type != EEPROM_NIC_TYPE_1)
1055 return;
1056
1057 spin_lock_irqsave(&priv->lock, flags);
1058
b095c381 1059 led = ipw_read_reg32(priv, IPW_EVENT_REG);
a613bffd
JK		 1060 led &= priv->led_ofdm_off;
1061 led &= priv->led_association_off;
1062
1063 led = ipw_register_toggle(led);
1064
1065 IPW_DEBUG_LED("Reg: 0x%08X\n", led);
b095c381 1066 ipw_write_reg32(priv, IPW_EVENT_REG, led);
a613bffd
JK		 1067
1068 spin_unlock_irqrestore(&priv->lock, flags);
1069}
1070
a73e22b2 1071static void ipw_led_radio_on(struct ipw_priv *priv)
a613bffd
JK		 1072{
1073 ipw_led_link_on(priv);
1074}
1075
a73e22b2 1076static void ipw_led_radio_off(struct ipw_priv *priv)
a613bffd
JK		 1077{
1078 ipw_led_activity_off(priv);
1079 ipw_led_link_off(priv);
1080}
1081
a73e22b2 1082static void ipw_led_link_up(struct ipw_priv *priv)
a613bffd
JK		 1083{
1084 /* Set the Link Led on for all nic types */
1085 ipw_led_link_on(priv);
1086}
1087
a73e22b2 1088static void ipw_led_link_down(struct ipw_priv *priv)
a613bffd
JK		 1089{
1090 ipw_led_activity_off(priv);
1091 ipw_led_link_off(priv);
1092
1093 if (priv->status & STATUS_RF_KILL_MASK)
1094 ipw_led_radio_off(priv);
1095}
1096
a73e22b2 1097static void ipw_led_init(struct ipw_priv *priv)
a613bffd
JK		 1098{
1099 priv->nic_type = priv->eeprom[EEPROM_NIC_TYPE];
1100
1101 /* Set the default PINs for the link and activity leds */
b095c381
JK		 1102 priv->led_activity_on = IPW_ACTIVITY_LED;
1103 priv->led_activity_off = ~(IPW_ACTIVITY_LED);
a613bffd 1104
b095c381
JK		 1105 priv->led_association_on = IPW_ASSOCIATED_LED;
1106 priv->led_association_off = ~(IPW_ASSOCIATED_LED);
a613bffd
JK		 1107
1108 /* Set the default PINs for the OFDM leds */
b095c381
JK		 1109 priv->led_ofdm_on = IPW_OFDM_LED;
1110 priv->led_ofdm_off = ~(IPW_OFDM_LED);
a613bffd
JK		 1111
1112 switch (priv->nic_type) {
1113 case EEPROM_NIC_TYPE_1:
1114 /* In this NIC type, the LEDs are reversed.... */
b095c381
JK		 1115 priv->led_activity_on = IPW_ASSOCIATED_LED;
1116 priv->led_activity_off = ~(IPW_ASSOCIATED_LED);
1117 priv->led_association_on = IPW_ACTIVITY_LED;
1118 priv->led_association_off = ~(IPW_ACTIVITY_LED);
a613bffd
JK		 1119
1120 if (!(priv->config & CFG_NO_LED))
1121 ipw_led_band_on(priv);
1122
1123 /* And we don't blink link LEDs for this nic, so
1124 * just return here */
1125 return;
1126
1127 case EEPROM_NIC_TYPE_3:
1128 case EEPROM_NIC_TYPE_2:
1129 case EEPROM_NIC_TYPE_4:
1130 case EEPROM_NIC_TYPE_0:
1131 break;
1132
1133 default:
1134 IPW_DEBUG_INFO("Unknown NIC type from EEPROM: %d\n",
1135 priv->nic_type);
1136 priv->nic_type = EEPROM_NIC_TYPE_0;
1137 break;
1138 }
1139
1140 if (!(priv->config & CFG_NO_LED)) {
1141 if (priv->status & STATUS_ASSOCIATED)
1142 ipw_led_link_on(priv);
1143 else
1144 ipw_led_link_off(priv);
1145 }
1146}
1147
a73e22b2 1148static void ipw_led_shutdown(struct ipw_priv *priv)
a613bffd 1149{
a613bffd
JK		 1150 ipw_led_activity_off(priv);
1151 ipw_led_link_off(priv);
1152 ipw_led_band_off(priv);
afbf30a2
JK		 1153 cancel_delayed_work(&priv->led_link_on);
1154 cancel_delayed_work(&priv->led_link_off);
1155 cancel_delayed_work(&priv->led_act_off);
a613bffd
JK		 1156}
1157
43f66a6c
JK		 1158/*
1159 * The following adds a new attribute to the sysfs representation
1160 * of this device driver (i.e. a new file in /sys/bus/pci/drivers/ipw/)
1161 * used for controling the debug level.
bf79451e 1162 *
43f66a6c
JK		 1163 * See the level definitions in ipw for details.
1164 */
1165static ssize_t show_debug_level(struct device_driver *d, char *buf)
1166{
1167 return sprintf(buf, "0x%08X\n", ipw_debug_level);
1168}
a613bffd
JK		 1169
1170static ssize_t store_debug_level(struct device_driver *d, const char *buf,
1171 size_t count)
43f66a6c
JK		 1172{
1173 char *p = (char *)buf;
1174 u32 val;
1175
1176 if (p[1] == 'x' || p[1] == 'X' || p[0] == 'x' || p[0] == 'X') {
1177 p++;
1178 if (p[0] == 'x' || p[0] == 'X')
1179 p++;
1180 val = simple_strtoul(p, &p, 16);
1181 } else
1182 val = simple_strtoul(p, &p, 10);
bf79451e
JG		 1183 if (p == buf)
1184 printk(KERN_INFO DRV_NAME
43f66a6c
JK		 1185 ": %s is not in hex or decimal form.\n", buf);
1186 else
1187 ipw_debug_level = val;
1188
1189 return strnlen(buf, count);
1190}
1191
bf79451e 1192static DRIVER_ATTR(debug_level, S_IWUSR | S_IRUGO,
43f66a6c
JK		 1193 show_debug_level, store_debug_level);
1194
b39860c6 1195static inline u32 ipw_get_event_log_len(struct ipw_priv *priv)
43f66a6c 1196{
c8fe6679 1197 /* length = 1st dword in log */
b39860c6 1198 return ipw_read_reg32(priv, ipw_read32(priv, IPW_EVENT_LOG));
43f66a6c 1199}
0edd5b44 1200
b39860c6
JK		 1201static void ipw_capture_event_log(struct ipw_priv *priv,
1202 u32 log_len, struct ipw_event *log)
43f66a6c 1203{
b39860c6 1204 u32 base;
0edd5b44 1205
b39860c6
JK		 1206 if (log_len) {
1207 base = ipw_read32(priv, IPW_EVENT_LOG);
1208 ipw_read_indirect(priv, base + sizeof(base) + sizeof(u32),
1209 (u8 *) log, sizeof(*log) * log_len);
1210 }
1211}
43f66a6c 1212
b39860c6 1213static struct ipw_fw_error *ipw_alloc_error_log(struct ipw_priv *priv)
43f66a6c 1214{
b39860c6
JK		 1215 struct ipw_fw_error *error;
1216 u32 log_len = ipw_get_event_log_len(priv);
1217 u32 base = ipw_read32(priv, IPW_ERROR_LOG);
1218 u32 elem_len = ipw_read_reg32(priv, base);
43f66a6c 1219
b39860c6
JK		 1220 error = kmalloc(sizeof(*error) +
1221 sizeof(*error->elem) * elem_len +
1222 sizeof(*error->log) * log_len, GFP_ATOMIC);
1223 if (!error) {
1224 IPW_ERROR("Memory allocation for firmware error log "
1225 "failed.\n");
1226 return NULL;
43f66a6c 1227 }
f6c5cb7c 1228 error->jiffies = jiffies;
b39860c6
JK		 1229 error->status = priv->status;
1230 error->config = priv->config;
1231 error->elem_len = elem_len;
1232 error->log_len = log_len;
1233 error->elem = (struct ipw_error_elem *)error->payload;
3b26b110 1234 error->log = (struct ipw_event *)(error->elem + elem_len);
b39860c6
JK		 1235
1236 ipw_capture_event_log(priv, log_len, error->log);
bf79451e 1237
b39860c6
JK		 1238 if (elem_len)
1239 ipw_read_indirect(priv, base + sizeof(base), (u8 *) error->elem,
1240 sizeof(*error->elem) * elem_len);
1241
1242 return error;
43f66a6c 1243}
0edd5b44 1244
b39860c6
JK		 1245static ssize_t show_event_log(struct device *d,
1246 struct device_attribute *attr, char *buf)
43f66a6c 1247{
b39860c6
JK		 1248 struct ipw_priv *priv = dev_get_drvdata(d);
1249 u32 log_len = ipw_get_event_log_len(priv);
412e9e78
RC		 1250 u32 log_size;
1251 struct ipw_event *log;
b39860c6 1252 u32 len = 0, i;
43f66a6c 1253
412e9e78
RC		 1254 /* not using min() because of its strict type checking */
1255 log_size = PAGE_SIZE / sizeof(*log) > log_len ?
1256 sizeof(*log) * log_len : PAGE_SIZE;
1257 log = kzalloc(log_size, GFP_KERNEL);
1258 if (!log) {
1259 IPW_ERROR("Unable to allocate memory for log\n");
1260 return 0;
1261 }
1262 log_len = log_size / sizeof(*log);
b39860c6 1263 ipw_capture_event_log(priv, log_len, log);
43f66a6c 1264
b39860c6
JK		 1265 len += snprintf(buf + len, PAGE_SIZE - len, "%08X", log_len);
1266 for (i = 0; i < log_len; i++)
1267 len += snprintf(buf + len, PAGE_SIZE - len,
1268 "\n%08X%08X%08X",
1269 log[i].time, log[i].event, log[i].data);
1270 len += snprintf(buf + len, PAGE_SIZE - len, "\n");
412e9e78 1271 kfree(log);
b39860c6 1272 return len;
43f66a6c 1273}
0edd5b44 1274
b39860c6 1275static DEVICE_ATTR(event_log, S_IRUGO, show_event_log, NULL);
43f66a6c 1276
b39860c6
JK		 1277static ssize_t show_error(struct device *d,
1278 struct device_attribute *attr, char *buf)
43f66a6c 1279{
b39860c6
JK		 1280 struct ipw_priv *priv = dev_get_drvdata(d);
1281 u32 len = 0, i;
1282 if (!priv->error)
1283 return 0;
1284 len += snprintf(buf + len, PAGE_SIZE - len,
f6c5cb7c
JK		 1285 "%08lX%08X%08X%08X",
1286 priv->error->jiffies,
b39860c6
JK		 1287 priv->error->status,
1288 priv->error->config, priv->error->elem_len);
1289 for (i = 0; i < priv->error->elem_len; i++)
1290 len += snprintf(buf + len, PAGE_SIZE - len,
1291 "\n%08X%08X%08X%08X%08X%08X%08X",
1292 priv->error->elem[i].time,
1293 priv->error->elem[i].desc,
1294 priv->error->elem[i].blink1,
1295 priv->error->elem[i].blink2,
1296 priv->error->elem[i].link1,
1297 priv->error->elem[i].link2,
1298 priv->error->elem[i].data);
1299
1300 len += snprintf(buf + len, PAGE_SIZE - len,
1301 "\n%08X", priv->error->log_len);
1302 for (i = 0; i < priv->error->log_len; i++)
1303 len += snprintf(buf + len, PAGE_SIZE - len,
1304 "\n%08X%08X%08X",
1305 priv->error->log[i].time,
1306 priv->error->log[i].event,
1307 priv->error->log[i].data);
1308 len += snprintf(buf + len, PAGE_SIZE - len, "\n");
1309 return len;
1310}
1311
1312static ssize_t clear_error(struct device *d,
1313 struct device_attribute *attr,
1314 const char *buf, size_t count)
1315{
1316 struct ipw_priv *priv = dev_get_drvdata(d);
8f760780
JJ		 1317
1318 kfree(priv->error);
1319 priv->error = NULL;
b39860c6
JK		 1320 return count;
1321}
43f66a6c 1322
b39860c6 1323static DEVICE_ATTR(error, S_IRUGO | S_IWUSR, show_error, clear_error);
43f66a6c 1324
f6c5cb7c
JK		 1325static ssize_t show_cmd_log(struct device *d,
1326 struct device_attribute *attr, char *buf)
1327{
1328 struct ipw_priv *priv = dev_get_drvdata(d);
1329 u32 len = 0, i;
1330 if (!priv->cmdlog)
1331 return 0;
1332 for (i = (priv->cmdlog_pos + 1) % priv->cmdlog_len;
1333 (i != priv->cmdlog_pos) && (PAGE_SIZE - len);
1334 i = (i + 1) % priv->cmdlog_len) {
1335 len +=
1336 snprintf(buf + len, PAGE_SIZE - len,
1337 "\n%08lX%08X%08X%08X\n", priv->cmdlog[i].jiffies,
1338 priv->cmdlog[i].retcode, priv->cmdlog[i].cmd.cmd,
1339 priv->cmdlog[i].cmd.len);
1340 len +=
1341 snprintk_buf(buf + len, PAGE_SIZE - len,
1342 (u8 *) priv->cmdlog[i].cmd.param,
1343 priv->cmdlog[i].cmd.len);
1344 len += snprintf(buf + len, PAGE_SIZE - len, "\n");
1345 }
1346 len += snprintf(buf + len, PAGE_SIZE - len, "\n");
1347 return len;
43f66a6c 1348}
0edd5b44 1349
f6c5cb7c 1350static DEVICE_ATTR(cmd_log, S_IRUGO, show_cmd_log, NULL);
43f66a6c 1351
d685b8c2
ZY		 1352#ifdef CONFIG_IPW2200_PROMISCUOUS
1353static void ipw_prom_free(struct ipw_priv *priv);
1354static int ipw_prom_alloc(struct ipw_priv *priv);
1355static ssize_t store_rtap_iface(struct device *d,
1356 struct device_attribute *attr,
1357 const char *buf, size_t count)
1358{
1359 struct ipw_priv *priv = dev_get_drvdata(d);
1360 int rc = 0;
1361
1362 if (count < 1)
1363 return -EINVAL;
1364
1365 switch (buf[0]) {
1366 case '0':
1367 if (!rtap_iface)
1368 return count;
1369
1370 if (netif_running(priv->prom_net_dev)) {
1371 IPW_WARNING("Interface is up. Cannot unregister.\n");
1372 return count;
1373 }
1374
1375 ipw_prom_free(priv);
1376 rtap_iface = 0;
1377 break;
1378
1379 case '1':
1380 if (rtap_iface)
1381 return count;
1382
1383 rc = ipw_prom_alloc(priv);
1384 if (!rc)
1385 rtap_iface = 1;
1386 break;
1387
1388 default:
1389 return -EINVAL;
1390 }
1391
1392 if (rc) {
1393 IPW_ERROR("Failed to register promiscuous network "
1394 "device (error %d).\n", rc);
1395 }
1396
1397 return count;
1398}
1399
1400static ssize_t show_rtap_iface(struct device *d,
1401 struct device_attribute *attr,
1402 char *buf)
1403{
1404 struct ipw_priv *priv = dev_get_drvdata(d);
1405 if (rtap_iface)
1406 return sprintf(buf, "%s", priv->prom_net_dev->name);
1407 else {
1408 buf[0] = '-';
1409 buf[1] = '1';
1410 buf[2] = '\0';
1411 return 3;
1412 }
1413}
1414
1415static DEVICE_ATTR(rtap_iface, S_IWUSR | S_IRUSR, show_rtap_iface,
1416 store_rtap_iface);
1417
1418static ssize_t store_rtap_filter(struct device *d,
1419 struct device_attribute *attr,
1420 const char *buf, size_t count)
1421{
1422 struct ipw_priv *priv = dev_get_drvdata(d);
1423
1424 if (!priv->prom_priv) {
1425 IPW_ERROR("Attempting to set filter without "
1426 "rtap_iface enabled.\n");
1427 return -EPERM;
1428 }
1429
1430 priv->prom_priv->filter = simple_strtol(buf, NULL, 0);
1431
1432 IPW_DEBUG_INFO("Setting rtap filter to " BIT_FMT16 "\n",
1433 BIT_ARG16(priv->prom_priv->filter));
1434
1435 return count;
1436}
1437
1438static ssize_t show_rtap_filter(struct device *d,
1439 struct device_attribute *attr,
1440 char *buf)
1441{
1442 struct ipw_priv *priv = dev_get_drvdata(d);
1443 return sprintf(buf, "0x%04X",
1444 priv->prom_priv ? priv->prom_priv->filter : 0);
1445}
1446
1447static DEVICE_ATTR(rtap_filter, S_IWUSR | S_IRUSR, show_rtap_filter,
1448 store_rtap_filter);
1449#endif
1450
a613bffd
JK		 1451static ssize_t show_scan_age(struct device *d, struct device_attribute *attr,
1452 char *buf)
43f66a6c 1453{
a613bffd
JK		 1454 struct ipw_priv *priv = dev_get_drvdata(d);
1455 return sprintf(buf, "%d\n", priv->ieee->scan_age);
1456}
1457
1458static ssize_t store_scan_age(struct device *d, struct device_attribute *attr,
1459 const char *buf, size_t count)
1460{
1461 struct ipw_priv *priv = dev_get_drvdata(d);
1462 struct net_device *dev = priv->net_dev;
1463 char buffer[] = "00000000";
1464 unsigned long len =
1465 (sizeof(buffer) - 1) > count ? count : sizeof(buffer) - 1;
1466 unsigned long val;
1467 char *p = buffer;
1468
1469 IPW_DEBUG_INFO("enter\n");
1470
1471 strncpy(buffer, buf, len);
1472 buffer[len] = 0;
1473
1474 if (p[1] == 'x' || p[1] == 'X' || p[0] == 'x' || p[0] == 'X') {
1475 p++;
1476 if (p[0] == 'x' || p[0] == 'X')
1477 p++;
1478 val = simple_strtoul(p, &p, 16);
1479 } else
1480 val = simple_strtoul(p, &p, 10);
1481 if (p == buffer) {
1482 IPW_DEBUG_INFO("%s: user supplied invalid value.\n", dev->name);
1483 } else {
1484 priv->ieee->scan_age = val;
1485 IPW_DEBUG_INFO("set scan_age = %u\n", priv->ieee->scan_age);
1486 }
1487
1488 IPW_DEBUG_INFO("exit\n");
1489 return len;
1490}
1491
1492static DEVICE_ATTR(scan_age, S_IWUSR | S_IRUGO, show_scan_age, store_scan_age);
1493
1494static ssize_t show_led(struct device *d, struct device_attribute *attr,
1495 char *buf)
1496{
1497 struct ipw_priv *priv = dev_get_drvdata(d);
1498 return sprintf(buf, "%d\n", (priv->config & CFG_NO_LED) ? 0 : 1);
1499}
1500
1501static ssize_t store_led(struct device *d, struct device_attribute *attr,
1502 const char *buf, size_t count)
1503{
1504 struct ipw_priv *priv = dev_get_drvdata(d);
1505
1506 IPW_DEBUG_INFO("enter\n");
1507
1508 if (count == 0)
1509 return 0;
1510
1511 if (*buf == 0) {
1512 IPW_DEBUG_LED("Disabling LED control.\n");
1513 priv->config |= CFG_NO_LED;
1514 ipw_led_shutdown(priv);
1515 } else {
1516 IPW_DEBUG_LED("Enabling LED control.\n");
1517 priv->config &= ~CFG_NO_LED;
1518 ipw_led_init(priv);
1519 }
1520
1521 IPW_DEBUG_INFO("exit\n");
1522 return count;
1523}
1524
1525static DEVICE_ATTR(led, S_IWUSR | S_IRUGO, show_led, store_led);
1526
ad3fee56 1527static ssize_t show_status(struct device *d,
0edd5b44 1528 struct device_attribute *attr, char *buf)
43f66a6c 1529{
928841b1 1530 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c
JK		 1531 return sprintf(buf, "0x%08x\n", (int)p->status);
1532}
0edd5b44 1533
43f66a6c
JK		 1534static DEVICE_ATTR(status, S_IRUGO, show_status, NULL);
1535
ad3fee56
AM		 1536static ssize_t show_cfg(struct device *d, struct device_attribute *attr,
1537 char *buf)
43f66a6c 1538{
928841b1 1539 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c
JK		 1540 return sprintf(buf, "0x%08x\n", (int)p->config);
1541}
0edd5b44 1542
43f66a6c
JK		 1543static DEVICE_ATTR(cfg, S_IRUGO, show_cfg, NULL);
1544
ad3fee56 1545static ssize_t show_nic_type(struct device *d,
0edd5b44 1546 struct device_attribute *attr, char *buf)
43f66a6c 1547{
928841b1 1548 struct ipw_priv *priv = dev_get_drvdata(d);
a613bffd 1549 return sprintf(buf, "TYPE: %d\n", priv->nic_type);
43f66a6c 1550}
0edd5b44 1551
43f66a6c
JK		 1552static DEVICE_ATTR(nic_type, S_IRUGO, show_nic_type, NULL);
1553
ad3fee56 1554static ssize_t show_ucode_version(struct device *d,
0edd5b44 1555 struct device_attribute *attr, char *buf)
43f66a6c
JK		 1556{
1557 u32 len = sizeof(u32), tmp = 0;
928841b1 1558 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c 1559
0edd5b44 1560 if (ipw_get_ordinal(p, IPW_ORD_STAT_UCODE_VERSION, &tmp, &len))
43f66a6c
JK		 1561 return 0;
1562
1563 return sprintf(buf, "0x%08x\n", tmp);
1564}
0edd5b44
JG		 1565
1566static DEVICE_ATTR(ucode_version, S_IWUSR | S_IRUGO, show_ucode_version, NULL);
43f66a6c 1567
ad3fee56
AM		 1568static ssize_t show_rtc(struct device *d, struct device_attribute *attr,
1569 char *buf)
43f66a6c
JK		 1570{
1571 u32 len = sizeof(u32), tmp = 0;
928841b1 1572 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c 1573
0edd5b44 1574 if (ipw_get_ordinal(p, IPW_ORD_STAT_RTC, &tmp, &len))
43f66a6c
JK		 1575 return 0;
1576
1577 return sprintf(buf, "0x%08x\n", tmp);
1578}
0edd5b44
JG		 1579
1580static DEVICE_ATTR(rtc, S_IWUSR | S_IRUGO, show_rtc, NULL);
43f66a6c
JK		 1581
1582/*
1583 * Add a device attribute to view/control the delay between eeprom
1584 * operations.
1585 */
ad3fee56 1586static ssize_t show_eeprom_delay(struct device *d,
0edd5b44 1587 struct device_attribute *attr, char *buf)
43f66a6c 1588{
928841b1
GKH		 1589 struct ipw_priv *p = dev_get_drvdata(d);
1590 int n = p->eeprom_delay;
43f66a6c
JK		 1591 return sprintf(buf, "%i\n", n);
1592}
ad3fee56 1593static ssize_t store_eeprom_delay(struct device *d,
0edd5b44
JG		 1594 struct device_attribute *attr,
1595 const char *buf, size_t count)
43f66a6c 1596{
928841b1 1597 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c
JK		 1598 sscanf(buf, "%i", &p->eeprom_delay);
1599 return strnlen(buf, count);
1600}
0edd5b44
JG		 1601
1602static DEVICE_ATTR(eeprom_delay, S_IWUSR | S_IRUGO,
1603 show_eeprom_delay, store_eeprom_delay);
43f66a6c 1604
ad3fee56 1605static ssize_t show_command_event_reg(struct device *d,
0edd5b44 1606 struct device_attribute *attr, char *buf)
43f66a6c
JK		 1607{
1608 u32 reg = 0;
928841b1 1609 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c 1610
b095c381 1611 reg = ipw_read_reg32(p, IPW_INTERNAL_CMD_EVENT);
43f66a6c
JK		 1612 return sprintf(buf, "0x%08x\n", reg);
1613}
ad3fee56 1614static ssize_t store_command_event_reg(struct device *d,
0edd5b44
JG		 1615 struct device_attribute *attr,
1616 const char *buf, size_t count)
43f66a6c
JK		 1617{
1618 u32 reg;
928841b1 1619 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c
JK		 1620
1621 sscanf(buf, "%x", &reg);
b095c381 1622 ipw_write_reg32(p, IPW_INTERNAL_CMD_EVENT, reg);
43f66a6c
JK		 1623 return strnlen(buf, count);
1624}
0edd5b44
JG		 1625
1626static DEVICE_ATTR(command_event_reg, S_IWUSR | S_IRUGO,
1627 show_command_event_reg, store_command_event_reg);
43f66a6c 1628
ad3fee56 1629static ssize_t show_mem_gpio_reg(struct device *d,
0edd5b44 1630 struct device_attribute *attr, char *buf)
43f66a6c
JK		 1631{
1632 u32 reg = 0;
928841b1 1633 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c
JK		 1634
1635 reg = ipw_read_reg32(p, 0x301100);
1636 return sprintf(buf, "0x%08x\n", reg);
1637}
ad3fee56 1638static ssize_t store_mem_gpio_reg(struct device *d,
0edd5b44
JG		 1639 struct device_attribute *attr,
1640 const char *buf, size_t count)
43f66a6c
JK		 1641{
1642 u32 reg;
928841b1 1643 struct ipw_priv *p = dev_get_drvdata(d);
43f66a6c
JK		 1644
1645 sscanf(buf, "%x", &reg);
1646 ipw_write_reg32(p, 0x301100, reg);
1647 return strnlen(buf, count);
1648}
0edd5b44
JG		 1649
1650static DEVICE_ATTR(mem_gpio_reg, S_IWUSR | S_IRUGO,
1651 show_mem_gpio_reg, store_mem_gpio_reg);
43f66a6c 1652
ad3fee56 1653static ssize_t show_indirect_dword(struct device *d,
0edd5b44 1654 struct device_attribute *attr, char *buf)
43f66a6c
JK		 1655{
1656 u32 reg = 0;
928841b1 1657 struct ipw_priv *priv = dev_get_drvdata(d);
afbf30a2 1658
bf79451e 1659 if (priv->status & STATUS_INDIRECT_DWORD)
43f66a6c 1660 reg = ipw_read_reg32(priv, priv->indirect_dword);
bf79451e 1661 else
43f66a6c 1662 reg = 0;
bf79451e 1663
43f66a6c
JK		 1664 return sprintf(buf, "0x%08x\n", reg);
1665}
ad3fee56 1666static ssize_t store_indirect_dword(struct device *d,
0edd5b44
JG		 1667 struct device_attribute *attr,
1668 const char *buf, size_t count)
43f66a6c 1669{
928841b1 1670 struct ipw_priv *priv = dev_get_drvdata(d);
43f66a6c
JK		 1671
1672 sscanf(buf, "%x", &priv->indirect_dword);
1673 priv->status |= STATUS_INDIRECT_DWORD;
1674 return strnlen(buf, count);
1675}
0edd5b44
JG		 1676
1677static DEVICE_ATTR(indirect_dword, S_IWUSR | S_IRUGO,
1678 show_indirect_dword, store_indirect_dword);
43f66a6c 1679
ad3fee56 1680static ssize_t show_indirect_byte(struct device *d,
0edd5b44 1681 struct device_attribute *attr, char *buf)
43f66a6c
JK		 1682{
1683 u8 reg = 0;
928841b1 1684 struct ipw_priv *priv = dev_get_drvdata(d);
afbf30a2 1685
bf79451e 1686 if (priv->status & STATUS_INDIRECT_BYTE)
43f66a6c 1687 reg = ipw_read_reg8(priv, priv->indirect_byte);
bf79451e 1688 else
43f66a6c
JK		 1689 reg = 0;
1690
1691 return sprintf(buf, "0x%02x\n", reg);
1692}
ad3fee56 1693static ssize_t store_indirect_byte(struct device *d,
0edd5b44
JG		 1694 struct device_attribute *attr,
1695 const char *buf, size_t count)
43f66a6c 1696{
928841b1 1697 struct ipw_priv *priv = dev_get_drvdata(d);
43f66a6c
JK		 1698
1699 sscanf(buf, "%x", &priv->indirect_byte);
1700 priv->status |= STATUS_INDIRECT_BYTE;
1701 return strnlen(buf, count);
1702}
0edd5b44
JG		 1703
1704static DEVICE_ATTR(indirect_byte, S_IWUSR | S_IRUGO,
43f66a6c
JK		 1705 show_indirect_byte, store_indirect_byte);
1706
ad3fee56 1707static ssize_t show_direct_dword(struct device *d,
0edd5b44 1708 struct device_attribute *attr, char *buf)
43f66a6c
JK		 1709{
1710 u32 reg = 0;
928841b1 1711 struct ipw_priv *priv = dev_get_drvdata(d);
43f66a6c 1712
bf79451e 1713 if (priv->status & STATUS_DIRECT_DWORD)
43f66a6c 1714 reg = ipw_read32(priv, priv->direct_dword);
bf79451e 1715 else
43f66a6c
JK		 1716 reg = 0;
1717
1718 return sprintf(buf, "0x%08x\n", reg);
1719}
ad3fee56 1720static ssize_t store_direct_dword(struct device *d,
0edd5b44
JG		 1721 struct device_attribute *attr,
1722 const char *buf, size_t count)
43f66a6c 1723{
928841b1 1724 struct ipw_priv *priv = dev_get_drvdata(d);
43f66a6c
JK		 1725
1726 sscanf(buf, "%x", &priv->direct_dword);
1727 priv->status |= STATUS_DIRECT_DWORD;
1728 return strnlen(buf, count);
1729}
43f66a6c 1730
0edd5b44
JG		 1731static DEVICE_ATTR(direct_dword, S_IWUSR | S_IRUGO,
1732 show_direct_dword, store_direct_dword);
43f66a6c 1733
858119e1 1734static int rf_kill_active(struct ipw_priv *priv)
43f66a6c
JK		 1735{
1736 if (0 == (ipw_read32(priv, 0x30) & 0x10000))
1737 priv->status |= STATUS_RF_KILL_HW;
1738 else
1739 priv->status &= ~STATUS_RF_KILL_HW;
1740
1741 return (priv->status & STATUS_RF_KILL_HW) ? 1 : 0;
1742}
1743
ad3fee56 1744static ssize_t show_rf_kill(struct device *d, struct device_attribute *attr,
0edd5b44 1745 char *buf)
43f66a6c
JK		 1746{
1747 /* 0 - RF kill not enabled
bf79451e 1748 1 - SW based RF kill active (sysfs)
43f66a6c
JK		 1749 2 - HW based RF kill active
1750 3 - Both HW and SW baed RF kill active */
928841b1 1751 struct ipw_priv *priv = dev_get_drvdata(d);
43f66a6c 1752 int val = ((priv->status & STATUS_RF_KILL_SW) ? 0x1 : 0x0) |
0edd5b44 1753 (rf_kill_active(priv) ? 0x2 : 0x0);
43f66a6c
JK		 1754 return sprintf(buf, "%i\n", val);
1755}
1756
1757static int ipw_radio_kill_sw(struct ipw_priv *priv, int disable_radio)
1758{
bf79451e 1759 if ((disable_radio ? 1 : 0) ==
ea2b26e0 1760 ((priv->status & STATUS_RF_KILL_SW) ? 1 : 0))
0edd5b44 1761 return 0;
43f66a6c
JK		 1762
1763 IPW_DEBUG_RF_KILL("Manual SW RF Kill set to: RADIO %s\n",
1764 disable_radio ? "OFF" : "ON");
1765
1766 if (disable_radio) {
1767 priv->status |= STATUS_RF_KILL_SW;
1768
0b531676 1769 if (priv->workqueue) {
43f66a6c 1770 cancel_delayed_work(&priv->request_scan);
ea177305
DW		 1771 cancel_delayed_work(&priv->request_direct_scan);
1772 cancel_delayed_work(&priv->request_passive_scan);
0b531676
DW		 1773 cancel_delayed_work(&priv->scan_event);
1774 }
43f66a6c
JK		 1775 queue_work(priv->workqueue, &priv->down);
1776 } else {
1777 priv->status &= ~STATUS_RF_KILL_SW;
1778 if (rf_kill_active(priv)) {
1779 IPW_DEBUG_RF_KILL("Can not turn radio back on - "
1780 "disabled by HW switch\n");
1781 /* Make sure the RF_KILL check timer is running */
1782 cancel_delayed_work(&priv->rf_kill);
bf79451e 1783 queue_delayed_work(priv->workqueue, &priv->rf_kill,
be84e3d6 1784 round_jiffies_relative(2 * HZ));
bf79451e 1785 } else
43f66a6c
JK		 1786 queue_work(priv->workqueue, &priv->up);
1787 }
1788
1789 return 1;
1790}
1791
0edd5b44
JG		 1792static ssize_t store_rf_kill(struct device *d, struct device_attribute *attr,
1793 const char *buf, size_t count)
43f66a6c 1794{
928841b1 1795 struct ipw_priv *priv = dev_get_drvdata(d);
bf79451e 1796
43f66a6c
JK		 1797 ipw_radio_kill_sw(priv, buf[0] == '1');
1798
1799 return count;
1800}
0edd5b44
JG		 1801
1802static DEVICE_ATTR(rf_kill, S_IWUSR | S_IRUGO, show_rf_kill, store_rf_kill);
43f66a6c 1803
b095c381
JK		 1804static ssize_t show_speed_scan(struct device *d, struct device_attribute *attr,
1805 char *buf)
1806{
928841b1 1807 struct ipw_priv *priv = dev_get_drvdata(d);
b095c381
JK		 1808 int pos = 0, len = 0;
1809 if (priv->config & CFG_SPEED_SCAN) {
1810 while (priv->speed_scan[pos] != 0)
1811 len += sprintf(&buf[len], "%d ",
1812 priv->speed_scan[pos++]);
1813 return len + sprintf(&buf[len], "\n");
1814 }
1815
1816 return sprintf(buf, "0\n");
1817}
1818
1819static ssize_t store_speed_scan(struct device *d, struct device_attribute *attr,
1820 const char *buf, size_t count)
1821{
928841b1 1822 struct ipw_priv *priv = dev_get_drvdata(d);
b095c381
JK		 1823 int channel, pos = 0;
1824 const char *p = buf;
1825
1826 /* list of space separated channels to scan, optionally ending with 0 */
1827 while ((channel = simple_strtol(p, NULL, 0))) {
1828 if (pos == MAX_SPEED_SCAN - 1) {
1829 priv->speed_scan[pos] = 0;
1830 break;
1831 }
1832
1867b117 1833 if (ieee80211_is_valid_channel(priv->ieee, channel))
b095c381
JK		 1834 priv->speed_scan[pos++] = channel;
1835 else
1836 IPW_WARNING("Skipping invalid channel request: %d\n",
1837 channel);
1838 p = strchr(p, ' ');
1839 if (!p)
1840 break;
1841 while (*p == ' ' || *p == '\t')
1842 p++;
1843 }
1844
1845 if (pos == 0)
1846 priv->config &= ~CFG_SPEED_SCAN;
1847 else {
1848 priv->speed_scan_pos = 0;
1849 priv->config |= CFG_SPEED_SCAN;
1850 }
1851
1852 return count;
1853}
1854
1855static DEVICE_ATTR(speed_scan, S_IWUSR | S_IRUGO, show_speed_scan,
1856 store_speed_scan);
1857
1858static ssize_t show_net_stats(struct device *d, struct device_attribute *attr,
1859 char *buf)
1860{
928841b1 1861 struct ipw_priv *priv = dev_get_drvdata(d);
b095c381
JK		 1862 return sprintf(buf, "%c\n", (priv->config & CFG_NET_STATS) ? '1' : '0');
1863}
1864
1865static ssize_t store_net_stats(struct device *d, struct device_attribute *attr,
1866 const char *buf, size_t count)
1867{
928841b1 1868 struct ipw_priv *priv = dev_get_drvdata(d);
b095c381
JK		 1869 if (buf[0] == '1')
1870 priv->config |= CFG_NET_STATS;
1871 else
1872 priv->config &= ~CFG_NET_STATS;
1873
1874 return count;
1875}
1876
afbf30a2
JK		 1877static DEVICE_ATTR(net_stats, S_IWUSR | S_IRUGO,
1878 show_net_stats, store_net_stats);
b095c381 1879
375dd244
ZY		 1880static ssize_t show_channels(struct device *d,
1881 struct device_attribute *attr,
1882 char *buf)
1883{
1884 struct ipw_priv *priv = dev_get_drvdata(d);
742e9910 1885 const struct ieee80211_geo *geo = ieee80211_get_geo(priv->ieee);
375dd244
ZY		 1886 int len = 0, i;
1887
1888 len = sprintf(&buf[len],
1889 "Displaying %d channels in 2.4Ghz band "
1890 "(802.11bg):\n", geo->bg_channels);
1891
1892 for (i = 0; i < geo->bg_channels; i++) {
1893 len += sprintf(&buf[len], "%d: BSS%s%s, %s, Band %s.\n",
1894 geo->bg[i].channel,
1895 geo->bg[i].flags & IEEE80211_CH_RADAR_DETECT ?
1896 " (radar spectrum)" : "",
1897 ((geo->bg[i].flags & IEEE80211_CH_NO_IBSS) ||
1898 (geo->bg[i].flags & IEEE80211_CH_RADAR_DETECT))
1899 ? "" : ", IBSS",
1900 geo->bg[i].flags & IEEE80211_CH_PASSIVE_ONLY ?
1901 "passive only" : "active/passive",
1902 geo->bg[i].flags & IEEE80211_CH_B_ONLY ?
1903 "B" : "B/G");
1904 }
1905
1906 len += sprintf(&buf[len],
1907 "Displaying %d channels in 5.2Ghz band "
1908 "(802.11a):\n", geo->a_channels);
1909 for (i = 0; i < geo->a_channels; i++) {
1910 len += sprintf(&buf[len], "%d: BSS%s%s, %s.\n",
1911 geo->a[i].channel,
1912 geo->a[i].flags & IEEE80211_CH_RADAR_DETECT ?
1913 " (radar spectrum)" : "",
1914 ((geo->a[i].flags & IEEE80211_CH_NO_IBSS) ||
1915 (geo->a[i].flags & IEEE80211_CH_RADAR_DETECT))
1916 ? "" : ", IBSS",
1917 geo->a[i].flags & IEEE80211_CH_PASSIVE_ONLY ?
1918 "passive only" : "active/passive");
1919 }
1920
1921 return len;
1922}
1923
1924static DEVICE_ATTR(channels, S_IRUSR, show_channels, NULL);
1925
ea2b26e0
JK		 1926static void notify_wx_assoc_event(struct ipw_priv *priv)
1927{
1928 union iwreq_data wrqu;
1929 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
1930 if (priv->status & STATUS_ASSOCIATED)
1931 memcpy(wrqu.ap_addr.sa_data, priv->bssid, ETH_ALEN);
1932 else
1933 memset(wrqu.ap_addr.sa_data, 0, ETH_ALEN);
1934 wireless_send_event(priv->net_dev, SIOCGIWAP, &wrqu, NULL);
1935}
1936
43f66a6c
JK		 1937static void ipw_irq_tasklet(struct ipw_priv *priv)
1938{
1939 u32 inta, inta_mask, handled = 0;
1940 unsigned long flags;
1941 int rc = 0;
1942
89c318ed 1943 spin_lock_irqsave(&priv->irq_lock, flags);
43f66a6c 1944
b095c381
JK		 1945 inta = ipw_read32(priv, IPW_INTA_RW);
1946 inta_mask = ipw_read32(priv, IPW_INTA_MASK_R);
1947 inta &= (IPW_INTA_MASK_ALL & inta_mask);
43f66a6c
JK		 1948
1949 /* Add any cached INTA values that need to be handled */
1950 inta |= priv->isr_inta;
1951
89c318ed
ZY		 1952 spin_unlock_irqrestore(&priv->irq_lock, flags);
1953
1954 spin_lock_irqsave(&priv->lock, flags);
1955
43f66a6c 1956 /* handle all the justifications for the interrupt */
b095c381 1957 if (inta & IPW_INTA_BIT_RX_TRANSFER) {
43f66a6c 1958 ipw_rx(priv);
b095c381 1959 handled |= IPW_INTA_BIT_RX_TRANSFER;
43f66a6c
JK		 1960 }
1961
b095c381 1962 if (inta & IPW_INTA_BIT_TX_CMD_QUEUE) {
43f66a6c 1963 IPW_DEBUG_HC("Command completed.\n");
0edd5b44 1964 rc = ipw_queue_tx_reclaim(priv, &priv->txq_cmd, -1);
43f66a6c
JK		 1965 priv->status &= ~STATUS_HCMD_ACTIVE;
1966 wake_up_interruptible(&priv->wait_command_queue);
b095c381 1967 handled |= IPW_INTA_BIT_TX_CMD_QUEUE;
43f66a6c
JK		 1968 }
1969
b095c381 1970 if (inta & IPW_INTA_BIT_TX_QUEUE_1) {
43f66a6c 1971 IPW_DEBUG_TX("TX_QUEUE_1\n");
0edd5b44 1972 rc = ipw_queue_tx_reclaim(priv, &priv->txq[0], 0);
b095c381 1973 handled |= IPW_INTA_BIT_TX_QUEUE_1;
43f66a6c
JK		 1974 }
1975
b095c381 1976 if (inta & IPW_INTA_BIT_TX_QUEUE_2) {
43f66a6c 1977 IPW_DEBUG_TX("TX_QUEUE_2\n");
0edd5b44 1978 rc = ipw_queue_tx_reclaim(priv, &priv->txq[1], 1);
b095c381 1979 handled |= IPW_INTA_BIT_TX_QUEUE_2;
43f66a6c
JK		 1980 }
1981
b095c381 1982 if (inta & IPW_INTA_BIT_TX_QUEUE_3) {
43f66a6c 1983 IPW_DEBUG_TX("TX_QUEUE_3\n");
0edd5b44 1984 rc = ipw_queue_tx_reclaim(priv, &priv->txq[2], 2);
b095c381 1985 handled |= IPW_INTA_BIT_TX_QUEUE_3;
43f66a6c
JK		 1986 }
1987
b095c381 1988 if (inta & IPW_INTA_BIT_TX_QUEUE_4) {
43f66a6c 1989 IPW_DEBUG_TX("TX_QUEUE_4\n");
0edd5b44 1990 rc = ipw_queue_tx_reclaim(priv, &priv->txq[3], 3);
b095c381 1991 handled |= IPW_INTA_BIT_TX_QUEUE_4;
43f66a6c
JK		 1992 }
1993
b095c381 1994 if (inta & IPW_INTA_BIT_STATUS_CHANGE) {
43f66a6c 1995 IPW_WARNING("STATUS_CHANGE\n");
b095c381 1996 handled |= IPW_INTA_BIT_STATUS_CHANGE;
43f66a6c
JK		 1997 }
1998
b095c381 1999 if (inta & IPW_INTA_BIT_BEACON_PERIOD_EXPIRED) {
43f66a6c 2000 IPW_WARNING("TX_PERIOD_EXPIRED\n");
b095c381 2001 handled |= IPW_INTA_BIT_BEACON_PERIOD_EXPIRED;
43f66a6c
JK		 2002 }
2003
b095c381 2004 if (inta & IPW_INTA_BIT_SLAVE_MODE_HOST_CMD_DONE) {
43f66a6c 2005 IPW_WARNING("HOST_CMD_DONE\n");
b095c381 2006 handled |= IPW_INTA_BIT_SLAVE_MODE_HOST_CMD_DONE;
43f66a6c
JK		 2007 }
2008
b095c381 2009 if (inta & IPW_INTA_BIT_FW_INITIALIZATION_DONE) {
43f66a6c 2010 IPW_WARNING("FW_INITIALIZATION_DONE\n");
b095c381 2011 handled |= IPW_INTA_BIT_FW_INITIALIZATION_DONE;
43f66a6c
JK		 2012 }
2013
b095c381 2014 if (inta & IPW_INTA_BIT_FW_CARD_DISABLE_PHY_OFF_DONE) {
43f66a6c 2015 IPW_WARNING("PHY_OFF_DONE\n");
b095c381 2016 handled |= IPW_INTA_BIT_FW_CARD_DISABLE_PHY_OFF_DONE;
43f66a6c
JK		 2017 }
2018
b095c381 2019 if (inta & IPW_INTA_BIT_RF_KILL_DONE) {
43f66a6c
JK		 2020 IPW_DEBUG_RF_KILL("RF_KILL_DONE\n");
2021 priv->status |= STATUS_RF_KILL_HW;
2022 wake_up_interruptible(&priv->wait_command_queue);
ea2b26e0 2023 priv->status &= ~(STATUS_ASSOCIATED | STATUS_ASSOCIATING);
43f66a6c 2024 cancel_delayed_work(&priv->request_scan);
ea177305
DW		 2025 cancel_delayed_work(&priv->request_direct_scan);
2026 cancel_delayed_work(&priv->request_passive_scan);
0b531676 2027 cancel_delayed_work(&priv->scan_event);
a613bffd 2028 schedule_work(&priv->link_down);
43f66a6c 2029 queue_delayed_work(priv->workqueue, &priv->rf_kill, 2 * HZ);
b095c381 2030 handled |= IPW_INTA_BIT_RF_KILL_DONE;
43f66a6c 2031 }
bf79451e 2032
b095c381 2033 if (inta & IPW_INTA_BIT_FATAL_ERROR) {
1d1b09eb 2034 IPW_WARNING("Firmware error detected. Restarting.\n");
b39860c6 2035 if (priv->error) {
1d1b09eb 2036 IPW_DEBUG_FW("Sysfs 'error' log already exists.\n");
b39860c6
JK		 2037 if (ipw_debug_level & IPW_DL_FW_ERRORS) {
2038 struct ipw_fw_error *error =
2039 ipw_alloc_error_log(priv);
2040 ipw_dump_error_log(priv, error);
8f760780 2041 kfree(error);
b39860c6 2042 }
b39860c6
JK		 2043 } else {
2044 priv->error = ipw_alloc_error_log(priv);
2045 if (priv->error)
1d1b09eb 2046 IPW_DEBUG_FW("Sysfs 'error' log captured.\n");
b39860c6 2047 else
1d1b09eb
ZY		 2048 IPW_DEBUG_FW("Error allocating sysfs 'error' "
2049 "log.\n");
b39860c6
JK		 2050 if (ipw_debug_level & IPW_DL_FW_ERRORS)
2051 ipw_dump_error_log(priv, priv->error);
b39860c6
JK		 2052 }
2053
b095c381
JK		 2054 /* XXX: If hardware encryption is for WPA/WPA2,
2055 * we have to notify the supplicant. */
2056 if (priv->ieee->sec.encrypt) {
2057 priv->status &= ~STATUS_ASSOCIATED;
2058 notify_wx_assoc_event(priv);
2059 }
2060
2061 /* Keep the restart process from trying to send host
2062 * commands by clearing the INIT status bit */
2063 priv->status &= ~STATUS_INIT;
afbf30a2
JK		 2064
2065 /* Cancel currently queued command. */
2066 priv->status &= ~STATUS_HCMD_ACTIVE;
2067 wake_up_interruptible(&priv->wait_command_queue);
2068
43f66a6c 2069 queue_work(priv->workqueue, &priv->adapter_restart);
b095c381 2070 handled |= IPW_INTA_BIT_FATAL_ERROR;
43f66a6c
JK		 2071 }
2072
b095c381 2073 if (inta & IPW_INTA_BIT_PARITY_ERROR) {
43f66a6c 2074 IPW_ERROR("Parity error\n");
b095c381 2075 handled |= IPW_INTA_BIT_PARITY_ERROR;
43f66a6c
JK		 2076 }
2077
2078 if (handled != inta) {
0edd5b44 2079 IPW_ERROR("Unhandled INTA bits 0x%08x\n", inta & ~handled);
43f66a6c
JK		 2080 }
2081
89c318ed
ZY		 2082 spin_unlock_irqrestore(&priv->lock, flags);
2083
43f66a6c
JK		 2084 /* enable all interrupts */
2085 ipw_enable_interrupts(priv);
43f66a6c 2086}
bf79451e 2087
43f66a6c
JK		 2088#define IPW_CMD(x) case IPW_CMD_ ## x : return #x
2089static char *get_cmd_string(u8 cmd)
2090{
2091 switch (cmd) {
2092 IPW_CMD(HOST_COMPLETE);
bf79451e
JG		 2093 IPW_CMD(POWER_DOWN);
2094 IPW_CMD(SYSTEM_CONFIG);
2095 IPW_CMD(MULTICAST_ADDRESS);
2096 IPW_CMD(SSID);
2097 IPW_CMD(ADAPTER_ADDRESS);
2098 IPW_CMD(PORT_TYPE);
2099 IPW_CMD(RTS_THRESHOLD);
2100 IPW_CMD(FRAG_THRESHOLD);
2101 IPW_CMD(POWER_MODE);
2102 IPW_CMD(WEP_KEY);
2103 IPW_CMD(TGI_TX_KEY);
2104 IPW_CMD(SCAN_REQUEST);
2105 IPW_CMD(SCAN_REQUEST_EXT);
2106 IPW_CMD(ASSOCIATE);
2107 IPW_CMD(SUPPORTED_RATES);
2108 IPW_CMD(SCAN_ABORT);
2109 IPW_CMD(TX_FLUSH);
2110 IPW_CMD(QOS_PARAMETERS);
2111 IPW_CMD(DINO_CONFIG);
2112 IPW_CMD(RSN_CAPABILITIES);
2113 IPW_CMD(RX_KEY);
2114 IPW_CMD(CARD_DISABLE);
2115 IPW_CMD(SEED_NUMBER);
2116 IPW_CMD(TX_POWER);
2117 IPW_CMD(COUNTRY_INFO);
2118 IPW_CMD(AIRONET_INFO);
2119 IPW_CMD(AP_TX_POWER);
2120 IPW_CMD(CCKM_INFO);
2121 IPW_CMD(CCX_VER_INFO);
2122 IPW_CMD(SET_CALIBRATION);
2123 IPW_CMD(SENSITIVITY_CALIB);
2124 IPW_CMD(RETRY_LIMIT);
2125 IPW_CMD(IPW_PRE_POWER_DOWN);
2126 IPW_CMD(VAP_BEACON_TEMPLATE);
2127 IPW_CMD(VAP_DTIM_PERIOD);
2128 IPW_CMD(EXT_SUPPORTED_RATES);
2129 IPW_CMD(VAP_LOCAL_TX_PWR_CONSTRAINT);
2130 IPW_CMD(VAP_QUIET_INTERVALS);
2131 IPW_CMD(VAP_CHANNEL_SWITCH);
2132 IPW_CMD(VAP_MANDATORY_CHANNELS);
2133 IPW_CMD(VAP_CELL_PWR_LIMIT);
2134 IPW_CMD(VAP_CF_PARAM_SET);
2135 IPW_CMD(VAP_SET_BEACONING_STATE);
2136 IPW_CMD(MEASUREMENT);
2137 IPW_CMD(POWER_CAPABILITY);
2138 IPW_CMD(SUPPORTED_CHANNELS);
2139 IPW_CMD(TPC_REPORT);
2140 IPW_CMD(WME_INFO);
2141 IPW_CMD(PRODUCTION_COMMAND);
2142 default:
43f66a6c
JK		 2143 return "UNKNOWN";
2144 }
2145}
43f66a6c
JK		 2146
2147#define HOST_COMPLETE_TIMEOUT HZ
0a7bcf26
ZY		 2148
2149static int __ipw_send_cmd(struct ipw_priv *priv, struct host_cmd *cmd)
43f66a6c
JK		 2150{
2151 int rc = 0;
a613bffd 2152 unsigned long flags;
43f66a6c 2153
a613bffd 2154 spin_lock_irqsave(&priv->lock, flags);
43f66a6c 2155 if (priv->status & STATUS_HCMD_ACTIVE) {
9ddf84f6
JK		 2156 IPW_ERROR("Failed to send %s: Already sending a command.\n",
2157 get_cmd_string(cmd->cmd));
a613bffd 2158 spin_unlock_irqrestore(&priv->lock, flags);
9ddf84f6 2159 return -EAGAIN;
43f66a6c
JK		 2160 }
2161
2162 priv->status |= STATUS_HCMD_ACTIVE;
bf79451e 2163
f6c5cb7c
JK		 2164 if (priv->cmdlog) {
2165 priv->cmdlog[priv->cmdlog_pos].jiffies = jiffies;
2166 priv->cmdlog[priv->cmdlog_pos].cmd.cmd = cmd->cmd;
2167 priv->cmdlog[priv->cmdlog_pos].cmd.len = cmd->len;
2168 memcpy(priv->cmdlog[priv->cmdlog_pos].cmd.param, cmd->param,
2169 cmd->len);
2170 priv->cmdlog[priv->cmdlog_pos].retcode = -1;
2171 }
2172
b095c381
JK		 2173 IPW_DEBUG_HC("%s command (#%d) %d bytes: 0x%08X\n",
2174 get_cmd_string(cmd->cmd), cmd->cmd, cmd->len,
2175 priv->status);
f516dbcd
ZY		 2176
2177#ifndef DEBUG_CMD_WEP_KEY
2178 if (cmd->cmd == IPW_CMD_WEP_KEY)
2179 IPW_DEBUG_HC("WEP_KEY command masked out for secure.\n");
2180 else
2181#endif
2182 printk_buf(IPW_DL_HOST_COMMAND, (u8 *) cmd->param, cmd->len);
2183
0a7bcf26 2184 rc = ipw_queue_tx_hcmd(priv, cmd->cmd, cmd->param, cmd->len, 0);
a613bffd
JK		 2185 if (rc) {
2186 priv->status &= ~STATUS_HCMD_ACTIVE;
9ddf84f6
JK		 2187 IPW_ERROR("Failed to send %s: Reason %d\n",
2188 get_cmd_string(cmd->cmd), rc);
a613bffd 2189 spin_unlock_irqrestore(&priv->lock, flags);
f6c5cb7c 2190 goto exit;
a613bffd
JK		 2191 }
2192 spin_unlock_irqrestore(&priv->lock, flags);
43f66a6c 2193
0edd5b44
JG		 2194 rc = wait_event_interruptible_timeout(priv->wait_command_queue,
2195 !(priv->
2196 status & STATUS_HCMD_ACTIVE),
2197 HOST_COMPLETE_TIMEOUT);
43f66a6c 2198 if (rc == 0) {
a613bffd
JK		 2199 spin_lock_irqsave(&priv->lock, flags);
2200 if (priv->status & STATUS_HCMD_ACTIVE) {
9ddf84f6
JK		 2201 IPW_ERROR("Failed to send %s: Command timed out.\n",
2202 get_cmd_string(cmd->cmd));
a613bffd
JK		 2203 priv->status &= ~STATUS_HCMD_ACTIVE;
2204 spin_unlock_irqrestore(&priv->lock, flags);
f6c5cb7c
JK		 2205 rc = -EIO;
2206 goto exit;
a613bffd
JK		 2207 }
2208 spin_unlock_irqrestore(&priv->lock, flags);
3b9990cb
JK		 2209 } else
2210 rc = 0;
a613bffd 2211
b095c381 2212 if (priv->status & STATUS_RF_KILL_HW) {
9ddf84f6
JK		 2213 IPW_ERROR("Failed to send %s: Aborted due to RF kill switch.\n",
2214 get_cmd_string(cmd->cmd));
f6c5cb7c
JK		 2215 rc = -EIO;
2216 goto exit;
43f66a6c
JK		 2217 }
2218
2638bc39 2219 exit:
f6c5cb7c
JK		 2220 if (priv->cmdlog) {
2221 priv->cmdlog[priv->cmdlog_pos++].retcode = rc;
2222 priv->cmdlog_pos %= priv->cmdlog_len;
2223 }
2224 return rc;
43f66a6c
JK		 2225}
2226
0a7bcf26
ZY		 2227static int ipw_send_cmd_simple(struct ipw_priv *priv, u8 command)
2228{
2229 struct host_cmd cmd = {
2230 .cmd = command,
2231 };
2232
2233 return __ipw_send_cmd(priv, &cmd);
2234}
2235
2236static int ipw_send_cmd_pdu(struct ipw_priv *priv, u8 command, u8 len,
2237 void *data)
43f66a6c
JK		 2238{
2239 struct host_cmd cmd = {
0a7bcf26
ZY		 2240 .cmd = command,
2241 .len = len,
2242 .param = data,
43f66a6c
JK		 2243 };
2244
0a7bcf26
ZY		 2245 return __ipw_send_cmd(priv, &cmd);
2246}
2247
2248static int ipw_send_host_complete(struct ipw_priv *priv)
2249{
43f66a6c
JK		 2250 if (!priv) {
2251 IPW_ERROR("Invalid args\n");
2252 return -1;
2253 }
2254
0a7bcf26 2255 return ipw_send_cmd_simple(priv, IPW_CMD_HOST_COMPLETE);
43f66a6c
JK		 2256}
2257
d685b8c2 2258static int ipw_send_system_config(struct ipw_priv *priv)
43f66a6c 2259{
d685b8c2
ZY		 2260 return ipw_send_cmd_pdu(priv, IPW_CMD_SYSTEM_CONFIG,
2261 sizeof(priv->sys_config),
2262 &priv->sys_config);
43f66a6c
JK		 2263}
2264
0edd5b44 2265static int ipw_send_ssid(struct ipw_priv *priv, u8 * ssid, int len)
43f66a6c 2266{
43f66a6c
JK		 2267 if (!priv || !ssid) {
2268 IPW_ERROR("Invalid args\n");
2269 return -1;
2270 }
2271
0a7bcf26 2272 return ipw_send_cmd_pdu(priv, IPW_CMD_SSID, min(len, IW_ESSID_MAX_SIZE),
2638bc39 2273 ssid);
43f66a6c
JK		 2274}
2275
0edd5b44 2276static int ipw_send_adapter_address(struct ipw_priv *priv, u8 * mac)
43f66a6c 2277{
43f66a6c
JK		 2278 if (!priv || !mac) {
2279 IPW_ERROR("Invalid args\n");
2280 return -1;
2281 }
2282
e174961c
JB		 2283 IPW_DEBUG_INFO("%s: Setting MAC to %pM\n",
2284 priv->net_dev->name, mac);
43f66a6c 2285
2638bc39 2286 return ipw_send_cmd_pdu(priv, IPW_CMD_ADAPTER_ADDRESS, ETH_ALEN, mac);
43f66a6c
JK		 2287}
2288
a613bffd
JK		 2289/*
2290 * NOTE: This must be executed from our workqueue as it results in udelay
2291 * being called which may corrupt the keyboard if executed on default
2292 * workqueue
2293 */
43f66a6c
JK		 2294static void ipw_adapter_restart(void *adapter)
2295{
2296 struct ipw_priv *priv = adapter;
2297
2298 if (priv->status & STATUS_RF_KILL_MASK)
2299 return;
2300
2301 ipw_down(priv);
b095c381
JK		 2302
2303 if (priv->assoc_network &&
2304 (priv->assoc_network->capability & WLAN_CAPABILITY_IBSS))
2305 ipw_remove_current_network(priv);
2306
43f66a6c
JK		 2307 if (ipw_up(priv)) {
2308 IPW_ERROR("Failed to up device\n");
2309 return;
2310 }
2311}
2312
c4028958 2313static void ipw_bg_adapter_restart(struct work_struct *work)
c848d0af 2314{
c4028958
DH		 2315 struct ipw_priv *priv =
2316 container_of(work, struct ipw_priv, adapter_restart);
4644151b 2317 mutex_lock(&priv->mutex);
c4028958 2318 ipw_adapter_restart(priv);
4644151b 2319 mutex_unlock(&priv->mutex);
c848d0af
JK		 2320}
2321
43f66a6c
JK		 2322#define IPW_SCAN_CHECK_WATCHDOG (5 * HZ)
2323
2324static void ipw_scan_check(void *data)
2325{
2326 struct ipw_priv *priv = data;
2327 if (priv->status & (STATUS_SCANNING | STATUS_SCAN_ABORTING)) {
2328 IPW_DEBUG_SCAN("Scan completion watchdog resetting "
c7b6a674
ZY		 2329 "adapter after (%dms).\n",
2330 jiffies_to_msecs(IPW_SCAN_CHECK_WATCHDOG));
a613bffd 2331 queue_work(priv->workqueue, &priv->adapter_restart);
43f66a6c
JK		 2332 }
2333}
2334
c4028958 2335static void ipw_bg_scan_check(struct work_struct *work)
c848d0af 2336{
c4028958
DH		 2337 struct ipw_priv *priv =
2338 container_of(work, struct ipw_priv, scan_check.work);
4644151b 2339 mutex_lock(&priv->mutex);
c4028958 2340 ipw_scan_check(priv);
4644151b 2341 mutex_unlock(&priv->mutex);
c848d0af
JK		 2342}
2343
43f66a6c
JK		 2344static int ipw_send_scan_request_ext(struct ipw_priv *priv,
2345 struct ipw_scan_request_ext *request)
2346{
0a7bcf26 2347 return ipw_send_cmd_pdu(priv, IPW_CMD_SCAN_REQUEST_EXT,
2638bc39 2348 sizeof(*request), request);
43f66a6c
JK		 2349}
2350
2351static int ipw_send_scan_abort(struct ipw_priv *priv)
2352{
43f66a6c
JK		 2353 if (!priv) {
2354 IPW_ERROR("Invalid args\n");
2355 return -1;
2356 }
2357
0a7bcf26 2358 return ipw_send_cmd_simple(priv, IPW_CMD_SCAN_ABORT);
43f66a6c
JK		 2359}
2360
2361static int ipw_set_sensitivity(struct ipw_priv *priv, u16 sens)
2362{
0a7bcf26 2363 struct ipw_sensitivity_calib calib = {
851ca268 2364 .beacon_rssi_raw = cpu_to_le16(sens),
43f66a6c 2365 };
0a7bcf26
ZY		 2366
2367 return ipw_send_cmd_pdu(priv, IPW_CMD_SENSITIVITY_CALIB, sizeof(calib),
2638bc39 2368 &calib);
43f66a6c
JK		 2369}
2370
2371static int ipw_send_associate(struct ipw_priv *priv,
2372 struct ipw_associate *associate)
2373{
0a7bcf26
ZY		 2374 if (!priv || !associate) {
2375 IPW_ERROR("Invalid args\n");
2376 return -1;
2377 }
2378
5b5e807f
AV		 2379 return ipw_send_cmd_pdu(priv, IPW_CMD_ASSOCIATE, sizeof(*associate),
2380 associate);
43f66a6c
JK		 2381}
2382
2383static int ipw_send_supported_rates(struct ipw_priv *priv,
2384 struct ipw_supported_rates *rates)
2385{
43f66a6c
JK		 2386 if (!priv || !rates) {
2387 IPW_ERROR("Invalid args\n");
2388 return -1;
2389 }
2390
0a7bcf26 2391 return ipw_send_cmd_pdu(priv, IPW_CMD_SUPPORTED_RATES, sizeof(*rates),
2638bc39 2392 rates);
43f66a6c
JK		 2393}
2394
2395static int ipw_set_random_seed(struct ipw_priv *priv)
2396{
0a7bcf26 2397 u32 val;
43f66a6c
JK		 2398
2399 if (!priv) {
2400 IPW_ERROR("Invalid args\n");
2401 return -1;
2402 }
2403
0a7bcf26 2404 get_random_bytes(&val, sizeof(val));
43f66a6c 2405
0a7bcf26 2406 return ipw_send_cmd_pdu(priv, IPW_CMD_SEED_NUMBER, sizeof(val), &val);
43f66a6c
JK		 2407}
2408
43f66a6c
JK		 2409static int ipw_send_card_disable(struct ipw_priv *priv, u32 phy_off)
2410{
e62e1ee0 2411 __le32 v = cpu_to_le32(phy_off);
43f66a6c
JK		 2412 if (!priv) {
2413 IPW_ERROR("Invalid args\n");
2414 return -1;
2415 }
2416
e62e1ee0 2417 return ipw_send_cmd_pdu(priv, IPW_CMD_CARD_DISABLE, sizeof(v), &v);
43f66a6c 2418}
43f66a6c 2419
0edd5b44 2420static int ipw_send_tx_power(struct ipw_priv *priv, struct ipw_tx_power *power)
43f66a6c 2421{
43f66a6c
JK		 2422 if (!priv || !power) {
2423 IPW_ERROR("Invalid args\n");
2424 return -1;
2425 }
2426
2638bc39 2427 return ipw_send_cmd_pdu(priv, IPW_CMD_TX_POWER, sizeof(*power), power);
43f66a6c
JK		 2428}
2429
6de9f7f2
ZY		 2430static int ipw_set_tx_power(struct ipw_priv *priv)
2431{
1867b117 2432 const struct ieee80211_geo *geo = ieee80211_get_geo(priv->ieee);
6de9f7f2
ZY		 2433 struct ipw_tx_power tx_power;
2434 s8 max_power;
2435 int i;
2436
2437 memset(&tx_power, 0, sizeof(tx_power));
2438
2439 /* configure device for 'G' band */
2440 tx_power.ieee_mode = IPW_G_MODE;
2441 tx_power.num_channels = geo->bg_channels;
2442 for (i = 0; i < geo->bg_channels; i++) {
2443 max_power = geo->bg[i].max_power;
2444 tx_power.channels_tx_power[i].channel_number =
2445 geo->bg[i].channel;
2446 tx_power.channels_tx_power[i].tx_power = max_power ?
2447 min(max_power, priv->tx_power) : priv->tx_power;
43f66a6c 2448 }
6de9f7f2
ZY		 2449 if (ipw_send_tx_power(priv, &tx_power))
2450 return -EIO;
2451
2452 /* configure device to also handle 'B' band */
2453 tx_power.ieee_mode = IPW_B_MODE;
2454 if (ipw_send_tx_power(priv, &tx_power))
2455 return -EIO;
bf79451e 2456
6de9f7f2
ZY		 2457 /* configure device to also handle 'A' band */
2458 if (priv->ieee->abg_true) {
2459 tx_power.ieee_mode = IPW_A_MODE;
2460 tx_power.num_channels = geo->a_channels;
2461 for (i = 0; i < tx_power.num_channels; i++) {
2462 max_power = geo->a[i].max_power;
2463 tx_power.channels_tx_power[i].channel_number =
2464 geo->a[i].channel;
2465 tx_power.channels_tx_power[i].tx_power = max_power ?
2466 min(max_power, priv->tx_power) : priv->tx_power;
2467 }
2468 if (ipw_send_tx_power(priv, &tx_power))
2469 return -EIO;
2470 }
43f66a6c
JK		 2471 return 0;
2472}
2473
2474static int ipw_send_rts_threshold(struct ipw_priv *priv, u16 rts)
2475{
2476 struct ipw_rts_threshold rts_threshold = {
851ca268 2477 .rts_threshold = cpu_to_le16(rts),
43f66a6c 2478 };
43f66a6c
JK		 2479
2480 if (!priv) {
2481 IPW_ERROR("Invalid args\n");
2482 return -1;
2483 }
2484
0a7bcf26
ZY		 2485 return ipw_send_cmd_pdu(priv, IPW_CMD_RTS_THRESHOLD,
2486 sizeof(rts_threshold), &rts_threshold);
43f66a6c
JK		 2487}
2488
2489static int ipw_send_frag_threshold(struct ipw_priv *priv, u16 frag)
2490{
2491 struct ipw_frag_threshold frag_threshold = {
851ca268 2492 .frag_threshold = cpu_to_le16(frag),
43f66a6c 2493 };
43f66a6c
JK		 2494
2495 if (!priv) {
2496 IPW_ERROR("Invalid args\n");
2497 return -1;
2498 }
2499
0a7bcf26
ZY		 2500 return ipw_send_cmd_pdu(priv, IPW_CMD_FRAG_THRESHOLD,
2501 sizeof(frag_threshold), &frag_threshold);
43f66a6c
JK		 2502}
2503
2504static int ipw_send_power_mode(struct ipw_priv *priv, u32 mode)
2505{
e62e1ee0 2506 __le32 param;
43f66a6c
JK		 2507
2508 if (!priv) {
2509 IPW_ERROR("Invalid args\n");
2510 return -1;
2511 }
bf79451e 2512
43f66a6c
JK		 2513 /* If on battery, set to 3, if AC set to CAM, else user
2514 * level */
2515 switch (mode) {
2516 case IPW_POWER_BATTERY:
e62e1ee0 2517 param = cpu_to_le32(IPW_POWER_INDEX_3);
43f66a6c
JK		 2518 break;
2519 case IPW_POWER_AC:
e62e1ee0 2520 param = cpu_to_le32(IPW_POWER_MODE_CAM);
43f66a6c
JK		 2521 break;
2522 default:
e62e1ee0 2523 param = cpu_to_le32(mode);
43f66a6c
JK		 2524 break;
2525 }
2526
0a7bcf26 2527 return ipw_send_cmd_pdu(priv, IPW_CMD_POWER_MODE, sizeof(param),
2638bc39 2528 &param);
43f66a6c
JK		 2529}
2530
afbf30a2
JK		 2531static int ipw_send_retry_limit(struct ipw_priv *priv, u8 slimit, u8 llimit)
2532{
2533 struct ipw_retry_limit retry_limit = {
2534 .short_retry_limit = slimit,
2535 .long_retry_limit = llimit
2536 };
afbf30a2
JK		 2537
2538 if (!priv) {
2539 IPW_ERROR("Invalid args\n");
2540 return -1;
2541 }
2542
0a7bcf26 2543 return ipw_send_cmd_pdu(priv, IPW_CMD_RETRY_LIMIT, sizeof(retry_limit),
2638bc39 2544 &retry_limit);
afbf30a2
JK		 2545}
2546
43f66a6c
JK		 2547/*
2548 * The IPW device contains a Microwire compatible EEPROM that stores
2549 * various data like the MAC address. Usually the firmware has exclusive
2550 * access to the eeprom, but during device initialization (before the
2551 * device driver has sent the HostComplete command to the firmware) the
2552 * device driver has read access to the EEPROM by way of indirect addressing
2553 * through a couple of memory mapped registers.
2554 *
2555 * The following is a simplified implementation for pulling data out of the
2556 * the eeprom, along with some helper functions to find information in
2557 * the per device private data's copy of the eeprom.
2558 *
2559 * NOTE: To better understand how these functions work (i.e what is a chip
2560 * select and why do have to keep driving the eeprom clock?), read
2561 * just about any data sheet for a Microwire compatible EEPROM.
2562 */
2563
2564/* write a 32 bit value into the indirect accessor register */
2565static inline void eeprom_write_reg(struct ipw_priv *p, u32 data)
2566{
2567 ipw_write_reg32(p, FW_MEM_REG_EEPROM_ACCESS, data);
bf79451e 2568
43f66a6c
JK		 2569 /* the eeprom requires some time to complete the operation */
2570 udelay(p->eeprom_delay);
2571
2572 return;
2573}
2574
2575/* perform a chip select operation */
858119e1 2576static void eeprom_cs(struct ipw_priv *priv)
43f66a6c 2577{
0edd5b44
JG		 2578 eeprom_write_reg(priv, 0);
2579 eeprom_write_reg(priv, EEPROM_BIT_CS);
2580 eeprom_write_reg(priv, EEPROM_BIT_CS | EEPROM_BIT_SK);
2581 eeprom_write_reg(priv, EEPROM_BIT_CS);
43f66a6c
JK		 2582}
2583
2584/* perform a chip select operation */
858119e1 2585static void eeprom_disable_cs(struct ipw_priv *priv)
43f66a6c 2586{
0edd5b44
JG		 2587 eeprom_write_reg(priv, EEPROM_BIT_CS);
2588 eeprom_write_reg(priv, 0);
2589 eeprom_write_reg(priv, EEPROM_BIT_SK);
43f66a6c
JK		 2590}
2591
2592/* push a single bit down to the eeprom */
0edd5b44 2593static inline void eeprom_write_bit(struct ipw_priv *p, u8 bit)
43f66a6c 2594{
0edd5b44
JG		 2595 int d = (bit ? EEPROM_BIT_DI : 0);
2596 eeprom_write_reg(p, EEPROM_BIT_CS | d);
2597 eeprom_write_reg(p, EEPROM_BIT_CS | d | EEPROM_BIT_SK);
43f66a6c
JK		 2598}
2599
2600/* push an opcode followed by an address down to the eeprom */
0edd5b44 2601static void eeprom_op(struct ipw_priv *priv, u8 op, u8 addr)
43f66a6c
JK		 2602{
2603 int i;
2604
2605 eeprom_cs(priv);
0edd5b44
JG		 2606 eeprom_write_bit(priv, 1);
2607 eeprom_write_bit(priv, op & 2);
2608 eeprom_write_bit(priv, op & 1);
2609 for (i = 7; i >= 0; i--) {
2610 eeprom_write_bit(priv, addr & (1 << i));
43f66a6c
JK		 2611 }
2612}
2613
2614/* pull 16 bits off the eeprom, one bit at a time */
0edd5b44 2615static u16 eeprom_read_u16(struct ipw_priv *priv, u8 addr)
43f66a6c
JK		 2616{
2617 int i;
0edd5b44 2618 u16 r = 0;
bf79451e 2619
43f66a6c 2620 /* Send READ Opcode */
0edd5b44 2621 eeprom_op(priv, EEPROM_CMD_READ, addr);
43f66a6c
JK		 2622
2623 /* Send dummy bit */
0edd5b44 2624 eeprom_write_reg(priv, EEPROM_BIT_CS);
43f66a6c
JK		 2625
2626 /* Read the byte off the eeprom one bit at a time */
0edd5b44 2627 for (i = 0; i < 16; i++) {
43f66a6c 2628 u32 data = 0;
0edd5b44
JG		 2629 eeprom_write_reg(priv, EEPROM_BIT_CS | EEPROM_BIT_SK);
2630 eeprom_write_reg(priv, EEPROM_BIT_CS);
2631 data = ipw_read_reg32(priv, FW_MEM_REG_EEPROM_ACCESS);
2632 r = (r << 1) | ((data & EEPROM_BIT_DO) ? 1 : 0);
43f66a6c 2633 }
bf79451e 2634
43f66a6c 2635 /* Send another dummy bit */
0edd5b44 2636 eeprom_write_reg(priv, 0);
43f66a6c 2637 eeprom_disable_cs(priv);
bf79451e 2638
43f66a6c
JK		 2639 return r;
2640}
2641
2642/* helper function for pulling the mac address out of the private */
2643/* data's copy of the eeprom data */
0edd5b44 2644static void eeprom_parse_mac(struct ipw_priv *priv, u8 * mac)
43f66a6c 2645{
afbf30a2 2646 memcpy(mac, &priv->eeprom[EEPROM_MAC_ADDRESS], 6);
43f66a6c
JK		 2647}
2648
2649/*
2650 * Either the device driver (i.e. the host) or the firmware can
2651 * load eeprom data into the designated region in SRAM. If neither
2652 * happens then the FW will shutdown with a fatal error.
2653 *
2654 * In order to signal the FW to load the EEPROM, the EEPROM_LOAD_DISABLE
2655 * bit needs region of shared SRAM needs to be non-zero.
2656 */
2657static void ipw_eeprom_init_sram(struct ipw_priv *priv)
2658{
2659 int i;
e62e1ee0 2660 __le16 *eeprom = (__le16 *) priv->eeprom;
bf79451e 2661
43f66a6c
JK		 2662 IPW_DEBUG_TRACE(">>\n");
2663
2664 /* read entire contents of eeprom into private buffer */
0edd5b44 2665 for (i = 0; i < 128; i++)
e62e1ee0 2666 eeprom[i] = cpu_to_le16(eeprom_read_u16(priv, (u8) i));
43f66a6c 2667
bf79451e
JG		 2668 /*
2669 If the data looks correct, then copy it to our private
43f66a6c 2670 copy. Otherwise let the firmware know to perform the operation
c7b6a674 2671 on its own.
0edd5b44 2672 */
386093ef 2673 if (priv->eeprom[EEPROM_VERSION] != 0) {
43f66a6c
JK		 2674 IPW_DEBUG_INFO("Writing EEPROM data into SRAM\n");
2675
2676 /* write the eeprom data to sram */
b095c381 2677 for (i = 0; i < IPW_EEPROM_IMAGE_SIZE; i++)
0edd5b44 2678 ipw_write8(priv, IPW_EEPROM_DATA + i, priv->eeprom[i]);
43f66a6c
JK		 2679
2680 /* Do not load eeprom data on fatal error or suspend */
2681 ipw_write32(priv, IPW_EEPROM_LOAD_DISABLE, 0);
2682 } else {
2683 IPW_DEBUG_INFO("Enabling FW initializationg of SRAM\n");
2684
2685 /* Load eeprom data on fatal error or suspend */
2686 ipw_write32(priv, IPW_EEPROM_LOAD_DISABLE, 1);
2687 }
2688
2689 IPW_DEBUG_TRACE("<<\n");
2690}
2691
858119e1 2692static void ipw_zero_memory(struct ipw_priv *priv, u32 start, u32 count)
43f66a6c
JK		 2693{
2694 count >>= 2;
0edd5b44
JG		 2695 if (!count)
2696 return;
b095c381 2697 _ipw_write32(priv, IPW_AUTOINC_ADDR, start);
bf79451e 2698 while (count--)
b095c381 2699 _ipw_write32(priv, IPW_AUTOINC_DATA, 0);
43f66a6c
JK		 2700}
2701
2702static inline void ipw_fw_dma_reset_command_blocks(struct ipw_priv *priv)
2703{
b095c381 2704 ipw_zero_memory(priv, IPW_SHARED_SRAM_DMA_CONTROL,
bf79451e 2705 CB_NUMBER_OF_ELEMENTS_SMALL *
43f66a6c
JK		 2706 sizeof(struct command_block));
2707}
2708
2709static int ipw_fw_dma_enable(struct ipw_priv *priv)
0edd5b44 2710{ /* start dma engine but no transfers yet */
43f66a6c
JK		 2711
2712 IPW_DEBUG_FW(">> : \n");
bf79451e 2713
43f66a6c
JK		 2714 /* Start the dma */
2715 ipw_fw_dma_reset_command_blocks(priv);
bf79451e 2716
43f66a6c 2717 /* Write CB base address */
b095c381 2718 ipw_write_reg32(priv, IPW_DMA_I_CB_BASE, IPW_SHARED_SRAM_DMA_CONTROL);
43f66a6c
JK		 2719
2720 IPW_DEBUG_FW("<< : \n");
2721 return 0;
2722}
2723
2724static void ipw_fw_dma_abort(struct ipw_priv *priv)
2725{
2726 u32 control = 0;
2727
2728 IPW_DEBUG_FW(">> :\n");
bf79451e 2729
67fd6b45 2730 /* set the Stop and Abort bit */
43f66a6c 2731 control = DMA_CONTROL_SMALL_CB_CONST_VALUE | DMA_CB_STOP_AND_ABORT;
b095c381 2732 ipw_write_reg32(priv, IPW_DMA_I_DMA_CONTROL, control);
43f66a6c 2733 priv->sram_desc.last_cb_index = 0;
bf79451e 2734
43f66a6c
JK		 2735 IPW_DEBUG_FW("<< \n");
2736}
2737
0edd5b44
JG		 2738static int ipw_fw_dma_write_command_block(struct ipw_priv *priv, int index,
2739 struct command_block *cb)
43f66a6c 2740{
0edd5b44 2741 u32 address =
b095c381 2742 IPW_SHARED_SRAM_DMA_CONTROL +
0edd5b44 2743 (sizeof(struct command_block) * index);
43f66a6c
JK		 2744 IPW_DEBUG_FW(">> :\n");
2745
0edd5b44
JG		 2746 ipw_write_indirect(priv, address, (u8 *) cb,
2747 (int)sizeof(struct command_block));
43f66a6c
JK		 2748
2749 IPW_DEBUG_FW("<< :\n");
2750 return 0;
2751
2752}
2753
2754static int ipw_fw_dma_kick(struct ipw_priv *priv)
2755{
2756 u32 control = 0;
0edd5b44 2757 u32 index = 0;
43f66a6c
JK		 2758
2759 IPW_DEBUG_FW(">> :\n");
bf79451e 2760
43f66a6c 2761 for (index = 0; index < priv->sram_desc.last_cb_index; index++)
0edd5b44
JG		 2762 ipw_fw_dma_write_command_block(priv, index,
2763 &priv->sram_desc.cb_list[index]);
43f66a6c
JK		 2764
2765 /* Enable the DMA in the CSR register */
b095c381
JK		 2766 ipw_clear_bit(priv, IPW_RESET_REG,
2767 IPW_RESET_REG_MASTER_DISABLED |
2768 IPW_RESET_REG_STOP_MASTER);
bf79451e 2769
0edd5b44 2770 /* Set the Start bit. */
43f66a6c 2771 control = DMA_CONTROL_SMALL_CB_CONST_VALUE | DMA_CB_START;
b095c381 2772 ipw_write_reg32(priv, IPW_DMA_I_DMA_CONTROL, control);
43f66a6c
JK		 2773
2774 IPW_DEBUG_FW("<< :\n");
2775 return 0;
2776}
2777
2778static void ipw_fw_dma_dump_command_block(struct ipw_priv *priv)
2779{
2780 u32 address;
0edd5b44
JG		 2781 u32 register_value = 0;
2782 u32 cb_fields_address = 0;
43f66a6c
JK		 2783
2784 IPW_DEBUG_FW(">> :\n");
b095c381 2785 address = ipw_read_reg32(priv, IPW_DMA_I_CURRENT_CB);
0edd5b44 2786 IPW_DEBUG_FW_INFO("Current CB is 0x%x \n", address);
43f66a6c
JK		 2787
2788 /* Read the DMA Controlor register */
b095c381
JK		 2789 register_value = ipw_read_reg32(priv, IPW_DMA_I_DMA_CONTROL);
2790 IPW_DEBUG_FW_INFO("IPW_DMA_I_DMA_CONTROL is 0x%x \n", register_value);
43f66a6c 2791
0edd5b44 2792 /* Print the CB values */
43f66a6c
JK		 2793 cb_fields_address = address;
2794 register_value = ipw_read_reg32(priv, cb_fields_address);
0edd5b44 2795 IPW_DEBUG_FW_INFO("Current CB ControlField is 0x%x \n", register_value);
43f66a6c
JK		 2796
2797 cb_fields_address += sizeof(u32);
2798 register_value = ipw_read_reg32(priv, cb_fields_address);
0edd5b44 2799 IPW_DEBUG_FW_INFO("Current CB Source Field is 0x%x \n", register_value);
43f66a6c
JK		 2800
2801 cb_fields_address += sizeof(u32);
2802 register_value = ipw_read_reg32(priv, cb_fields_address);
2803 IPW_DEBUG_FW_INFO("Current CB Destination Field is 0x%x \n",
2804 register_value);
2805
2806 cb_fields_address += sizeof(u32);
2807 register_value = ipw_read_reg32(priv, cb_fields_address);
0edd5b44 2808 IPW_DEBUG_FW_INFO("Current CB Status Field is 0x%x \n", register_value);
43f66a6c
JK		 2809
2810 IPW_DEBUG_FW(">> :\n");
2811}
2812
2813static int ipw_fw_dma_command_block_index(struct ipw_priv *priv)
2814{
2815 u32 current_cb_address = 0;
2816 u32 current_cb_index = 0;
2817
2818 IPW_DEBUG_FW("<< :\n");
b095c381 2819 current_cb_address = ipw_read_reg32(priv, IPW_DMA_I_CURRENT_CB);
bf79451e 2820
b095c381 2821 current_cb_index = (current_cb_address - IPW_SHARED_SRAM_DMA_CONTROL) /
0edd5b44 2822 sizeof(struct command_block);
bf79451e 2823
43f66a6c 2824 IPW_DEBUG_FW_INFO("Current CB index 0x%x address = 0x%X \n",
0edd5b44 2825 current_cb_index, current_cb_address);
43f66a6c
JK		 2826
2827 IPW_DEBUG_FW(">> :\n");
2828 return current_cb_index;
2829
2830}
2831
2832static int ipw_fw_dma_add_command_block(struct ipw_priv *priv,
2833 u32 src_address,
2834 u32 dest_address,
2835 u32 length,
0edd5b44 2836 int interrupt_enabled, int is_last)
43f66a6c
JK		 2837{
2838
bf79451e 2839 u32 control = CB_VALID | CB_SRC_LE | CB_DEST_LE | CB_SRC_AUTOINC |
0edd5b44
JG		 2840 CB_SRC_IO_GATED | CB_DEST_AUTOINC | CB_SRC_SIZE_LONG |
2841 CB_DEST_SIZE_LONG;
43f66a6c 2842 struct command_block *cb;
0edd5b44 2843 u32 last_cb_element = 0;
43f66a6c
JK		 2844
2845 IPW_DEBUG_FW_INFO("src_address=0x%x dest_address=0x%x length=0x%x\n",
2846 src_address, dest_address, length);
2847
2848 if (priv->sram_desc.last_cb_index >= CB_NUMBER_OF_ELEMENTS_SMALL)
2849 return -1;
2850
2851 last_cb_element = priv->sram_desc.last_cb_index;
2852 cb = &priv->sram_desc.cb_list[last_cb_element];
2853 priv->sram_desc.last_cb_index++;
2854
2855 /* Calculate the new CB control word */
0edd5b44 2856 if (interrupt_enabled)
43f66a6c
JK		 2857 control |= CB_INT_ENABLED;
2858
2859 if (is_last)
2860 control |= CB_LAST_VALID;
bf79451e 2861
43f66a6c
JK		 2862 control |= length;
2863
2864 /* Calculate the CB Element's checksum value */
0edd5b44 2865 cb->status = control ^ src_address ^ dest_address;
43f66a6c
JK		 2866
2867 /* Copy the Source and Destination addresses */
2868 cb->dest_addr = dest_address;
2869 cb->source_addr = src_address;
2870
2871 /* Copy the Control Word last */
2872 cb->control = control;
2873
2874 return 0;
2875}
2876
2877static int ipw_fw_dma_add_buffer(struct ipw_priv *priv,
0edd5b44 2878 u32 src_phys, u32 dest_address, u32 length)
43f66a6c
JK		 2879{
2880 u32 bytes_left = length;
0edd5b44
JG		 2881 u32 src_offset = 0;
2882 u32 dest_offset = 0;
43f66a6c
JK		 2883 int status = 0;
2884 IPW_DEBUG_FW(">> \n");
2885 IPW_DEBUG_FW_INFO("src_phys=0x%x dest_address=0x%x length=0x%x\n",
2886 src_phys, dest_address, length);
2887 while (bytes_left > CB_MAX_LENGTH) {
0edd5b44
JG		 2888 status = ipw_fw_dma_add_command_block(priv,
2889 src_phys + src_offset,
2890 dest_address +
2891 dest_offset,
2892 CB_MAX_LENGTH, 0, 0);
43f66a6c
JK		 2893 if (status) {
2894 IPW_DEBUG_FW_INFO(": Failed\n");
2895 return -1;
bf79451e 2896 } else
43f66a6c
JK		 2897 IPW_DEBUG_FW_INFO(": Added new cb\n");
2898
2899 src_offset += CB_MAX_LENGTH;
2900 dest_offset += CB_MAX_LENGTH;
2901 bytes_left -= CB_MAX_LENGTH;
2902 }
2903
2904 /* add the buffer tail */
2905 if (bytes_left > 0) {
0edd5b44
JG		 2906 status =
2907 ipw_fw_dma_add_command_block(priv, src_phys + src_offset,
2908 dest_address + dest_offset,
2909 bytes_left, 0, 0);
43f66a6c
JK		 2910 if (status) {
2911 IPW_DEBUG_FW_INFO(": Failed on the buffer tail\n");
2912 return -1;
bf79451e 2913 } else
0edd5b44
JG		 2914 IPW_DEBUG_FW_INFO
2915 (": Adding new cb - the buffer tail\n");
43f66a6c 2916 }
bf79451e 2917
43f66a6c
JK		 2918 IPW_DEBUG_FW("<< \n");
2919 return 0;
2920}
2921
2922static int ipw_fw_dma_wait(struct ipw_priv *priv)
2923{
397ae121 2924 u32 current_index = 0, previous_index;
43f66a6c
JK		 2925 u32 watchdog = 0;
2926
2927 IPW_DEBUG_FW(">> : \n");
2928
2929 current_index = ipw_fw_dma_command_block_index(priv);
397ae121 2930 IPW_DEBUG_FW_INFO("sram_desc.last_cb_index:0x%08X\n",
0edd5b44 2931 (int)priv->sram_desc.last_cb_index);
43f66a6c
JK		 2932
2933 while (current_index < priv->sram_desc.last_cb_index) {
2934 udelay(50);
397ae121 2935 previous_index = current_index;
43f66a6c
JK		 2936 current_index = ipw_fw_dma_command_block_index(priv);
2937
397ae121
ZY		 2938 if (previous_index < current_index) {
2939 watchdog = 0;
2940 continue;
2941 }
2942 if (++watchdog > 400) {
43f66a6c
JK		 2943 IPW_DEBUG_FW_INFO("Timeout\n");
2944 ipw_fw_dma_dump_command_block(priv);
2945 ipw_fw_dma_abort(priv);
2946 return -1;
2947 }
2948 }
2949
2950 ipw_fw_dma_abort(priv);
2951
0edd5b44 2952 /*Disable the DMA in the CSR register */
b095c381
JK		 2953 ipw_set_bit(priv, IPW_RESET_REG,
2954 IPW_RESET_REG_MASTER_DISABLED | IPW_RESET_REG_STOP_MASTER);
43f66a6c
JK		 2955
2956 IPW_DEBUG_FW("<< dmaWaitSync \n");
2957 return 0;
2958}
2959
bf79451e 2960static void ipw_remove_current_network(struct ipw_priv *priv)
43f66a6c
JK		 2961{
2962 struct list_head *element, *safe;
bf79451e 2963 struct ieee80211_network *network = NULL;
a613bffd
JK		 2964 unsigned long flags;
2965
2966 spin_lock_irqsave(&priv->ieee->lock, flags);
43f66a6c
JK		 2967 list_for_each_safe(element, safe, &priv->ieee->network_list) {
2968 network = list_entry(element, struct ieee80211_network, list);
2969 if (!memcmp(network->bssid, priv->bssid, ETH_ALEN)) {
2970 list_del(element);
bf79451e 2971 list_add_tail(&network->list,
43f66a6c
JK		 2972 &priv->ieee->network_free_list);
2973 }
2974 }
a613bffd 2975 spin_unlock_irqrestore(&priv->ieee->lock, flags);
43f66a6c
JK		 2976}
2977
2978/**
bf79451e 2979 * Check that card is still alive.
43f66a6c
JK		 2980 * Reads debug register from domain0.
2981 * If card is present, pre-defined value should
2982 * be found there.
bf79451e 2983 *
43f66a6c
JK		 2984 * @param priv
2985 * @return 1 if card is present, 0 otherwise
2986 */
2987static inline int ipw_alive(struct ipw_priv *priv)
2988{
2989 return ipw_read32(priv, 0x90) == 0xd55555d5;
2990}
2991
c7b6a674 2992/* timeout in msec, attempted in 10-msec quanta */
858119e1 2993static int ipw_poll_bit(struct ipw_priv *priv, u32 addr, u32 mask,
43f66a6c
JK		 2994 int timeout)
2995{
2996 int i = 0;
2997
2998 do {
bf79451e 2999 if ((ipw_read32(priv, addr) & mask) == mask)
43f66a6c
JK		 3000 return i;
3001 mdelay(10);
3002 i += 10;
3003 } while (i < timeout);
bf79451e 3004
43f66a6c
JK		 3005 return -ETIME;
3006}
3007
bf79451e 3008/* These functions load the firmware and micro code for the operation of
43f66a6c
JK		 3009 * the ipw hardware. It assumes the buffer has all the bits for the
3010 * image and the caller is handling the memory allocation and clean up.
3011 */
3012
0edd5b44 3013static int ipw_stop_master(struct ipw_priv *priv)
43f66a6c
JK		 3014{
3015 int rc;
bf79451e 3016
43f66a6c
JK		 3017 IPW_DEBUG_TRACE(">> \n");
3018 /* stop master. typical delay - 0 */
b095c381 3019 ipw_set_bit(priv, IPW_RESET_REG, IPW_RESET_REG_STOP_MASTER);
43f66a6c 3020
c7b6a674 3021 /* timeout is in msec, polled in 10-msec quanta */
b095c381
JK		 3022 rc = ipw_poll_bit(priv, IPW_RESET_REG,
3023 IPW_RESET_REG_MASTER_DISABLED, 100);
43f66a6c 3024 if (rc < 0) {
c7b6a674 3025 IPW_ERROR("wait for stop master failed after 100ms\n");
43f66a6c
JK		 3026 return -1;
3027 }
3028
3029 IPW_DEBUG_INFO("stop master %dms\n", rc);
3030
3031 return rc;
3032}
3033
3034static void ipw_arc_release(struct ipw_priv *priv)
3035{
3036 IPW_DEBUG_TRACE(">> \n");
3037 mdelay(5);
3038
b095c381 3039 ipw_clear_bit(priv, IPW_RESET_REG, CBD_RESET_REG_PRINCETON_RESET);
43f66a6c
JK		 3040
3041 /* no one knows timing, for safety add some delay */
3042 mdelay(5);
3043}
3044
43f66a6c 3045struct fw_chunk {
e62e1ee0
AV		 3046 __le32 address;
3047 __le32 length;
43f66a6c
JK		 3048};
3049
0edd5b44 3050static int ipw_load_ucode(struct ipw_priv *priv, u8 * data, size_t len)
43f66a6c
JK		 3051{
3052 int rc = 0, i, addr;
3053 u8 cr = 0;
e62e1ee0 3054 __le16 *image;
43f66a6c 3055
e62e1ee0 3056 image = (__le16 *) data;
bf79451e 3057
43f66a6c
JK		 3058 IPW_DEBUG_TRACE(">> \n");
3059
3060 rc = ipw_stop_master(priv);
3061
3062 if (rc < 0)
3063 return rc;
bf79451e 3064
b095c381
JK		 3065 for (addr = IPW_SHARED_LOWER_BOUND;
3066 addr < IPW_REGISTER_DOMAIN1_END; addr += 4) {
43f66a6c
JK		 3067 ipw_write32(priv, addr, 0);
3068 }
3069
3070 /* no ucode (yet) */
3071 memset(&priv->dino_alive, 0, sizeof(priv->dino_alive));
3072 /* destroy DMA queues */
3073 /* reset sequence */
3074
b095c381 3075 ipw_write_reg32(priv, IPW_MEM_HALT_AND_RESET, IPW_BIT_HALT_RESET_ON);
43f66a6c 3076 ipw_arc_release(priv);
b095c381 3077 ipw_write_reg32(priv, IPW_MEM_HALT_AND_RESET, IPW_BIT_HALT_RESET_OFF);
43f66a6c
JK		 3078 mdelay(1);
3079
3080 /* reset PHY */
b095c381 3081 ipw_write_reg32(priv, IPW_INTERNAL_CMD_EVENT, IPW_BASEBAND_POWER_DOWN);
43f66a6c 3082 mdelay(1);
bf79451e 3083
b095c381 3084 ipw_write_reg32(priv, IPW_INTERNAL_CMD_EVENT, 0);
43f66a6c 3085 mdelay(1);
bf79451e 3086
43f66a6c 3087 /* enable ucode store */
c8fe6679
ZY		 3088 ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, 0x0);
3089 ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, DINO_ENABLE_CS);
43f66a6c
JK		 3090 mdelay(1);
3091
3092 /* write ucode */
3093 /**
3094 * @bug
3095 * Do NOT set indirect address register once and then
3096 * store data to indirect data register in the loop.
3097 * It seems very reasonable, but in this case DINO do not
3098 * accept ucode. It is essential to set address each time.
3099 */
3100 /* load new ipw uCode */
3101 for (i = 0; i < len / 2; i++)
b095c381 3102 ipw_write_reg16(priv, IPW_BASEBAND_CONTROL_STORE,
e62e1ee0 3103 le16_to_cpu(image[i]));
43f66a6c 3104
43f66a6c 3105 /* enable DINO */
b095c381
JK		 3106 ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, 0);
3107 ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, DINO_ENABLE_SYSTEM);
43f66a6c 3108
0edd5b44 3109 /* this is where the igx / win driver deveates from the VAP driver. */
43f66a6c
JK		 3110
3111 /* wait for alive response */
3112 for (i = 0; i < 100; i++) {
3113 /* poll for incoming data */
b095c381 3114 cr = ipw_read_reg8(priv, IPW_BASEBAND_CONTROL_STATUS);
43f66a6c
JK		 3115 if (cr & DINO_RXFIFO_DATA)
3116 break;
3117 mdelay(1);
3118 }
3119
3120 if (cr & DINO_RXFIFO_DATA) {
3121 /* alive_command_responce size is NOT multiple of 4 */
e62e1ee0 3122 __le32 response_buffer[(sizeof(priv->dino_alive) + 3) / 4];
bf79451e
JG		 3123
3124 for (i = 0; i < ARRAY_SIZE(response_buffer); i++)
43f66a6c 3125 response_buffer[i] =
e62e1ee0 3126 cpu_to_le32(ipw_read_reg32(priv,
b095c381 3127 IPW_BASEBAND_RX_FIFO_READ));
43f66a6c
JK		 3128 memcpy(&priv->dino_alive, response_buffer,
3129 sizeof(priv->dino_alive));
3130 if (priv->dino_alive.alive_command == 1
3131 && priv->dino_alive.ucode_valid == 1) {
3132 rc = 0;
0edd5b44
JG		 3133 IPW_DEBUG_INFO
3134 ("Microcode OK, rev. %d (0x%x) dev. %d (0x%x) "
3135 "of %02d/%02d/%02d %02d:%02d\n",
3136 priv->dino_alive.software_revision,
3137 priv->dino_alive.software_revision,
3138 priv->dino_alive.device_identifier,
3139 priv->dino_alive.device_identifier,
3140 priv->dino_alive.time_stamp[0],
3141 priv->dino_alive.time_stamp[1],
3142 priv->dino_alive.time_stamp[2],
3143 priv->dino_alive.time_stamp[3],
3144 priv->dino_alive.time_stamp[4]);
43f66a6c
JK		 3145 } else {
3146 IPW_DEBUG_INFO("Microcode is not alive\n");
3147 rc = -EINVAL;
3148 }
3149 } else {
3150 IPW_DEBUG_INFO("No alive response from DINO\n");
3151 rc = -ETIME;
3152 }
3153
3154 /* disable DINO, otherwise for some reason
3155 firmware have problem getting alive resp. */
b095c381 3156 ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, 0);
43f66a6c 3157
43f66a6c
JK		 3158 return rc;
3159}
3160
0edd5b44 3161static int ipw_load_firmware(struct ipw_priv *priv, u8 * data, size_t len)
43f66a6c
JK		 3162{
3163 int rc = -1;
3164 int offset = 0;
3165 struct fw_chunk *chunk;
3166 dma_addr_t shared_phys;
3167 u8 *shared_virt;
3168
3169 IPW_DEBUG_TRACE("<< : \n");
3170 shared_virt = pci_alloc_consistent(priv->pci_dev, len, &shared_phys);
3171
3172 if (!shared_virt)
3173 return -ENOMEM;
3174
3175 memmove(shared_virt, data, len);
3176
3177 /* Start the Dma */
3178 rc = ipw_fw_dma_enable(priv);
3179
0ee904c3
AB		 3180 /* the DMA is already ready this would be a bug. */
3181 BUG_ON(priv->sram_desc.last_cb_index > 0);
43f66a6c
JK		 3182
3183 do {
3184 chunk = (struct fw_chunk *)(data + offset);
3185 offset += sizeof(struct fw_chunk);
3186 /* build DMA packet and queue up for sending */
bf79451e 3187 /* dma to chunk->address, the chunk->length bytes from data +
43f66a6c
JK		 3188 * offeset*/
3189 /* Dma loading */
3190 rc = ipw_fw_dma_add_buffer(priv, shared_phys + offset,
a613bffd
JK		 3191 le32_to_cpu(chunk->address),
3192 le32_to_cpu(chunk->length));
43f66a6c
JK		 3193 if (rc) {
3194 IPW_DEBUG_INFO("dmaAddBuffer Failed\n");
3195 goto out;
3196 }
bf79451e 3197
a613bffd 3198 offset += le32_to_cpu(chunk->length);
43f66a6c
JK		 3199 } while (offset < len);
3200
0edd5b44 3201 /* Run the DMA and wait for the answer */
43f66a6c
JK		 3202 rc = ipw_fw_dma_kick(priv);
3203 if (rc) {
3204 IPW_ERROR("dmaKick Failed\n");
3205 goto out;
3206 }
3207
3208 rc = ipw_fw_dma_wait(priv);
3209 if (rc) {
3210 IPW_ERROR("dmaWaitSync Failed\n");
3211 goto out;
3212 }
0edd5b44
JG		 3213 out:
3214 pci_free_consistent(priv->pci_dev, len, shared_virt, shared_phys);
43f66a6c
JK		 3215 return rc;
3216}
3217
3218/* stop nic */
3219static int ipw_stop_nic(struct ipw_priv *priv)
3220{
3221 int rc = 0;
3222
0edd5b44 3223 /* stop */
b095c381 3224 ipw_write32(priv, IPW_RESET_REG, IPW_RESET_REG_STOP_MASTER);
bf79451e 3225
b095c381
JK		 3226 rc = ipw_poll_bit(priv, IPW_RESET_REG,
3227 IPW_RESET_REG_MASTER_DISABLED, 500);
43f66a6c 3228 if (rc < 0) {
c7b6a674 3229 IPW_ERROR("wait for reg master disabled failed after 500ms\n");
43f66a6c 3230 return rc;
bf79451e 3231 }
43f66a6c 3232
b095c381 3233 ipw_set_bit(priv, IPW_RESET_REG, CBD_RESET_REG_PRINCETON_RESET);
bf79451e 3234
43f66a6c
JK		 3235 return rc;
3236}
3237
3238static void ipw_start_nic(struct ipw_priv *priv)
3239{
3240 IPW_DEBUG_TRACE(">>\n");
3241
0edd5b44 3242 /* prvHwStartNic release ARC */
b095c381
JK		 3243 ipw_clear_bit(priv, IPW_RESET_REG,
3244 IPW_RESET_REG_MASTER_DISABLED |
3245 IPW_RESET_REG_STOP_MASTER |
43f66a6c 3246 CBD_RESET_REG_PRINCETON_RESET);
bf79451e 3247
43f66a6c 3248 /* enable power management */
b095c381
JK		 3249 ipw_set_bit(priv, IPW_GP_CNTRL_RW,
3250 IPW_GP_CNTRL_BIT_HOST_ALLOWS_STANDBY);
43f66a6c
JK		 3251
3252 IPW_DEBUG_TRACE("<<\n");
3253}
bf79451e 3254
43f66a6c
JK		 3255static int ipw_init_nic(struct ipw_priv *priv)
3256{
3257 int rc;
3258
3259 IPW_DEBUG_TRACE(">>\n");
bf79451e 3260 /* reset */
43f66a6c
JK		 3261 /*prvHwInitNic */
3262 /* set "initialization complete" bit to move adapter to D0 state */
b095c381 3263 ipw_set_bit(priv, IPW_GP_CNTRL_RW, IPW_GP_CNTRL_BIT_INIT_DONE);
43f66a6c
JK		 3264
3265 /* low-level PLL activation */
b095c381
JK		 3266 ipw_write32(priv, IPW_READ_INT_REGISTER,
3267 IPW_BIT_INT_HOST_SRAM_READ_INT_REGISTER);
43f66a6c
JK		 3268
3269 /* wait for clock stabilization */
b095c381
JK		 3270 rc = ipw_poll_bit(priv, IPW_GP_CNTRL_RW,
3271 IPW_GP_CNTRL_BIT_CLOCK_READY, 250);
0edd5b44 3272 if (rc < 0)
43f66a6c
JK		 3273 IPW_DEBUG_INFO("FAILED wait for clock stablization\n");
3274
3275 /* assert SW reset */
b095c381 3276 ipw_set_bit(priv, IPW_RESET_REG, IPW_RESET_REG_SW_RESET);
43f66a6c
JK		 3277
3278 udelay(10);
3279
3280 /* set "initialization complete" bit to move adapter to D0 state */
b095c381 3281 ipw_set_bit(priv, IPW_GP_CNTRL_RW, IPW_GP_CNTRL_BIT_INIT_DONE);
43f66a6c
JK		 3282
3283 IPW_DEBUG_TRACE(">>\n");
3284 return 0;
3285}
3286
bf79451e 3287/* Call this function from process context, it will sleep in request_firmware.
43f66a6c
JK		 3288 * Probe is an ok place to call this from.
3289 */
3290static int ipw_reset_nic(struct ipw_priv *priv)
3291{
3292 int rc = 0;
a613bffd 3293 unsigned long flags;
43f66a6c
JK		 3294
3295 IPW_DEBUG_TRACE(">>\n");
bf79451e 3296
43f66a6c 3297 rc = ipw_init_nic(priv);
bf79451e 3298
a613bffd 3299 spin_lock_irqsave(&priv->lock, flags);
43f66a6c
JK		 3300 /* Clear the 'host command active' bit... */
3301 priv->status &= ~STATUS_HCMD_ACTIVE;
3302 wake_up_interruptible(&priv->wait_command_queue);
afbf30a2
JK		 3303 priv->status &= ~(STATUS_SCANNING | STATUS_SCAN_ABORTING);
3304 wake_up_interruptible(&priv->wait_state);
a613bffd 3305 spin_unlock_irqrestore(&priv->lock, flags);
43f66a6c
JK		 3306
3307 IPW_DEBUG_TRACE("<<\n");
3308 return rc;
bf79451e 3309}
43f66a6c 3310
9006ea75
JK		 3311
3312struct ipw_fw {
0070f8c7
ZY		 3313 __le32 ver;
3314 __le32 boot_size;
3315 __le32 ucode_size;
3316 __le32 fw_size;
9006ea75
JK		 3317 u8 data[0];
3318};
3319
bf79451e 3320static int ipw_get_fw(struct ipw_priv *priv,
9006ea75 3321 const struct firmware **raw, const char *name)
43f66a6c 3322{
9006ea75 3323 struct ipw_fw *fw;
43f66a6c
JK		 3324 int rc;
3325
3326 /* ask firmware_class module to get the boot firmware off disk */
9006ea75 3327 rc = request_firmware(raw, name, &priv->pci_dev->dev);
43f66a6c 3328 if (rc < 0) {
9006ea75 3329 IPW_ERROR("%s request_firmware failed: Reason %d\n", name, rc);
43f66a6c 3330 return rc;
bf79451e 3331 }
43f66a6c 3332
9006ea75
JK		 3333 if ((*raw)->size < sizeof(*fw)) {
3334 IPW_ERROR("%s is too small (%zd)\n", name, (*raw)->size);
3335 return -EINVAL;
3336 }
3337
3338 fw = (void *)(*raw)->data;
3339
0070f8c7
ZY		 3340 if ((*raw)->size < sizeof(*fw) + le32_to_cpu(fw->boot_size) +
3341 le32_to_cpu(fw->ucode_size) + le32_to_cpu(fw->fw_size)) {
9006ea75
JK		 3342 IPW_ERROR("%s is too small or corrupt (%zd)\n",
3343 name, (*raw)->size);
43f66a6c
JK		 3344 return -EINVAL;
3345 }
3346
9006ea75 3347 IPW_DEBUG_INFO("Read firmware '%s' image v%d.%d (%zd bytes)\n",
43f66a6c 3348 name,
9006ea75
JK		 3349 le32_to_cpu(fw->ver) >> 16,
3350 le32_to_cpu(fw->ver) & 0xff,
3351 (*raw)->size - sizeof(*fw));
43f66a6c
JK		 3352 return 0;
3353}
3354
b095c381 3355#define IPW_RX_BUF_SIZE (3000)
43f66a6c 3356
858119e1 3357static void ipw_rx_queue_reset(struct ipw_priv *priv,
43f66a6c
JK		 3358 struct ipw_rx_queue *rxq)
3359{
3360 unsigned long flags;
3361 int i;
3362
3363 spin_lock_irqsave(&rxq->lock, flags);
3364
3365 INIT_LIST_HEAD(&rxq->rx_free);
3366 INIT_LIST_HEAD(&rxq->rx_used);
3367
3368 /* Fill the rx_used queue with _all_ of the Rx buffers */
3369 for (i = 0; i < RX_FREE_BUFFERS + RX_QUEUE_SIZE; i++) {
3370 /* In the reset function, these buffers may have been allocated
3371 * to an SKB, so we need to unmap and free potential storage */
3372 if (rxq->pool[i].skb != NULL) {
3373 pci_unmap_single(priv->pci_dev, rxq->pool[i].dma_addr,
b095c381 3374 IPW_RX_BUF_SIZE, PCI_DMA_FROMDEVICE);
43f66a6c 3375 dev_kfree_skb(rxq->pool[i].skb);
a613bffd 3376 rxq->pool[i].skb = NULL;
43f66a6c
JK		 3377 }
3378 list_add_tail(&rxq->pool[i].list, &rxq->rx_used);
3379 }
bf79451e 3380
43f66a6c
JK		 3381 /* Set us so that we have processed and used all buffers, but have
3382 * not restocked the Rx queue with fresh buffers */
3383 rxq->read = rxq->write = 0;
43f66a6c
JK		 3384 rxq->free_count = 0;
3385 spin_unlock_irqrestore(&rxq->lock, flags);
3386}
3387
3388#ifdef CONFIG_PM
3389static int fw_loaded = 0;
9006ea75 3390static const struct firmware *raw = NULL;
afbf30a2
JK		 3391
3392static void free_firmware(void)
3393{
3394 if (fw_loaded) {
9006ea75
JK		 3395 release_firmware(raw);
3396 raw = NULL;
afbf30a2
JK		 3397 fw_loaded = 0;
3398 }
3399}
3400#else
3401#define free_firmware() do {} while (0)
43f66a6c
JK		 3402#endif
3403
3404static int ipw_load(struct ipw_priv *priv)
3405{
3406#ifndef CONFIG_PM
9006ea75 3407 const struct firmware *raw = NULL;
43f66a6c 3408#endif
9006ea75
JK		 3409 struct ipw_fw *fw;
3410 u8 *boot_img, *ucode_img, *fw_img;
3411 u8 *name = NULL;
43f66a6c
JK		 3412 int rc = 0, retries = 3;
3413
397ae121
ZY		 3414 switch (priv->ieee->iw_mode) {
3415 case IW_MODE_ADHOC:
9006ea75 3416 name = "ipw2200-ibss.fw";
397ae121 3417 break;
b095c381 3418#ifdef CONFIG_IPW2200_MONITOR
397ae121 3419 case IW_MODE_MONITOR:
9006ea75 3420 name = "ipw2200-sniffer.fw";
397ae121 3421 break;
43f66a6c 3422#endif
397ae121 3423 case IW_MODE_INFRA:
9006ea75 3424 name = "ipw2200-bss.fw";
397ae121 3425 break;
9006ea75
JK		 3426 }
3427
3428 if (!name) {
397ae121 3429 rc = -EINVAL;
9006ea75
JK		 3430 goto error;
3431 }
3432
3433#ifdef CONFIG_PM
3434 if (!fw_loaded) {
3435#endif
3436 rc = ipw_get_fw(priv, &raw, name);
3437 if (rc < 0)
3438 goto error;
3439#ifdef CONFIG_PM
43f66a6c 3440 }
9006ea75
JK		 3441#endif
3442
3443 fw = (void *)raw->data;
3444 boot_img = &fw->data[0];
0070f8c7
ZY		 3445 ucode_img = &fw->data[le32_to_cpu(fw->boot_size)];
3446 fw_img = &fw->data[le32_to_cpu(fw->boot_size) +
3447 le32_to_cpu(fw->ucode_size)];
397ae121
ZY		 3448
3449 if (rc < 0)
3450 goto error;
43f66a6c
JK		 3451
3452 if (!priv->rxq)
3453 priv->rxq = ipw_rx_queue_alloc(priv);
3454 else
3455 ipw_rx_queue_reset(priv, priv->rxq);
3456 if (!priv->rxq) {
3457 IPW_ERROR("Unable to initialize Rx queue\n");
3458 goto error;
3459 }
3460
0edd5b44 3461 retry:
43f66a6c 3462 /* Ensure interrupts are disabled */
b095c381 3463 ipw_write32(priv, IPW_INTA_MASK_R, ~IPW_INTA_MASK_ALL);
43f66a6c
JK		 3464 priv->status &= ~STATUS_INT_ENABLED;
3465
3466 /* ack pending interrupts */
b095c381 3467 ipw_write32(priv, IPW_INTA_RW, IPW_INTA_MASK_ALL);
bf79451e 3468
43f66a6c
JK		 3469 ipw_stop_nic(priv);
3470
3471 rc = ipw_reset_nic(priv);
397ae121 3472 if (rc < 0) {
43f66a6c
JK		 3473 IPW_ERROR("Unable to reset NIC\n");
3474 goto error;
3475 }
3476
b095c381
JK		 3477 ipw_zero_memory(priv, IPW_NIC_SRAM_LOWER_BOUND,
3478 IPW_NIC_SRAM_UPPER_BOUND - IPW_NIC_SRAM_LOWER_BOUND);
43f66a6c
JK		 3479
3480 /* DMA the initial boot firmware into the device */
0070f8c7 3481 rc = ipw_load_firmware(priv, boot_img, le32_to_cpu(fw->boot_size));
43f66a6c 3482 if (rc < 0) {
a4f6bbb3 3483 IPW_ERROR("Unable to load boot firmware: %d\n", rc);
43f66a6c
JK		 3484 goto error;
3485 }
3486
3487 /* kick start the device */
3488 ipw_start_nic(priv);
3489
c7b6a674 3490 /* wait for the device to finish its initial startup sequence */
b095c381
JK		 3491 rc = ipw_poll_bit(priv, IPW_INTA_RW,
3492 IPW_INTA_BIT_FW_INITIALIZATION_DONE, 500);
43f66a6c
JK		 3493 if (rc < 0) {
3494 IPW_ERROR("device failed to boot initial fw image\n");
3495 goto error;
3496 }
3497 IPW_DEBUG_INFO("initial device response after %dms\n", rc);
3498
bf79451e 3499 /* ack fw init done interrupt */
b095c381 3500 ipw_write32(priv, IPW_INTA_RW, IPW_INTA_BIT_FW_INITIALIZATION_DONE);
43f66a6c
JK		 3501
3502 /* DMA the ucode into the device */
0070f8c7 3503 rc = ipw_load_ucode(priv, ucode_img, le32_to_cpu(fw->ucode_size));
43f66a6c 3504 if (rc < 0) {
a4f6bbb3 3505 IPW_ERROR("Unable to load ucode: %d\n", rc);
43f66a6c
JK		 3506 goto error;
3507 }
bf79451e 3508
43f66a6c
JK		 3509 /* stop nic */
3510 ipw_stop_nic(priv);
3511
3512 /* DMA bss firmware into the device */
0070f8c7 3513 rc = ipw_load_firmware(priv, fw_img, le32_to_cpu(fw->fw_size));
0edd5b44 3514 if (rc < 0) {
a4f6bbb3 3515 IPW_ERROR("Unable to load firmware: %d\n", rc);
43f66a6c
JK		 3516 goto error;
3517 }
397ae121
ZY		 3518#ifdef CONFIG_PM
3519 fw_loaded = 1;
3520#endif
3521
43f66a6c
JK		 3522 ipw_write32(priv, IPW_EEPROM_LOAD_DISABLE, 0);
3523
3524 rc = ipw_queue_reset(priv);
397ae121 3525 if (rc < 0) {
43f66a6c
JK		 3526 IPW_ERROR("Unable to initialize queues\n");
3527 goto error;
3528 }
3529
3530 /* Ensure interrupts are disabled */
b095c381 3531 ipw_write32(priv, IPW_INTA_MASK_R, ~IPW_INTA_MASK_ALL);
c848d0af 3532 /* ack pending interrupts */
b095c381 3533 ipw_write32(priv, IPW_INTA_RW, IPW_INTA_MASK_ALL);
bf79451e 3534
43f66a6c
JK		 3535 /* kick start the device */
3536 ipw_start_nic(priv);
3537
b095c381 3538 if (ipw_read32(priv, IPW_INTA_RW) & IPW_INTA_BIT_PARITY_ERROR) {
43f66a6c
JK		 3539 if (retries > 0) {
3540 IPW_WARNING("Parity error. Retrying init.\n");
3541 retries--;
3542 goto retry;
3543 }
3544
3545 IPW_ERROR("TODO: Handle parity error -- schedule restart?\n");
3546 rc = -EIO;
3547 goto error;
3548 }
3549
3550 /* wait for the device */
b095c381
JK		 3551 rc = ipw_poll_bit(priv, IPW_INTA_RW,
3552 IPW_INTA_BIT_FW_INITIALIZATION_DONE, 500);
43f66a6c 3553 if (rc < 0) {
c7b6a674 3554 IPW_ERROR("device failed to start within 500ms\n");
43f66a6c
JK		 3555 goto error;
3556 }
3557 IPW_DEBUG_INFO("device response after %dms\n", rc);
3558
3559 /* ack fw init done interrupt */
b095c381 3560 ipw_write32(priv, IPW_INTA_RW, IPW_INTA_BIT_FW_INITIALIZATION_DONE);
43f66a6c
JK		 3561
3562 /* read eeprom data and initialize the eeprom region of sram */
3563 priv->eeprom_delay = 1;
bf79451e 3564 ipw_eeprom_init_sram(priv);
43f66a6c
JK		 3565
3566 /* enable interrupts */
3567 ipw_enable_interrupts(priv);
3568
3569 /* Ensure our queue has valid packets */
3570 ipw_rx_queue_replenish(priv);
3571
b095c381 3572 ipw_write32(priv, IPW_RX_READ_INDEX, priv->rxq->read);
43f66a6c
JK		 3573
3574 /* ack pending interrupts */
b095c381 3575 ipw_write32(priv, IPW_INTA_RW, IPW_INTA_MASK_ALL);
43f66a6c
JK		 3576
3577#ifndef CONFIG_PM
9006ea75 3578 release_firmware(raw);
43f66a6c
JK		 3579#endif
3580 return 0;
3581
0edd5b44 3582 error:
43f66a6c
JK		 3583 if (priv->rxq) {
3584 ipw_rx_queue_free(priv, priv->rxq);
3585 priv->rxq = NULL;
3586 }
3587 ipw_tx_queue_free(priv);
9006ea75
JK		 3588 if (raw)
3589 release_firmware(raw);
43f66a6c
JK		 3590#ifdef CONFIG_PM
3591 fw_loaded = 0;
9006ea75 3592 raw = NULL;
43f66a6c
JK		 3593#endif
3594
3595 return rc;
3596}
3597
bf79451e 3598/**
43f66a6c
JK		 3599 * DMA services
3600 *
3601 * Theory of operation
3602 *
3603 * A queue is a circular buffers with 'Read' and 'Write' pointers.
3604 * 2 empty entries always kept in the buffer to protect from overflow.
3605 *
3606 * For Tx queue, there are low mark and high mark limits. If, after queuing
bf79451e
JG		 3607 * the packet for Tx, free space become < low mark, Tx queue stopped. When
3608 * reclaiming packets (on 'tx done IRQ), if free space become > high mark,
43f66a6c
JK		 3609 * Tx queue resumed.
3610 *
3611 * The IPW operates with six queues, one receive queue in the device's
3612 * sram, one transmit queue for sending commands to the device firmware,
bf79451e 3613 * and four transmit queues for data.
43f66a6c 3614 *
bf79451e 3615 * The four transmit queues allow for performing quality of service (qos)
43f66a6c 3616 * transmissions as per the 802.11 protocol. Currently Linux does not
bf79451e 3617 * provide a mechanism to the user for utilizing prioritized queues, so
43f66a6c
JK		 3618 * we only utilize the first data transmit queue (queue1).
3619 */
3620
3621/**
3622 * Driver allocates buffers of this size for Rx
3623 */
3624
943dbef4
DW		 3625/**
3626 * ipw_rx_queue_space - Return number of free slots available in queue.
3627 */
3628static int ipw_rx_queue_space(const struct ipw_rx_queue *q)
3629{
3630 int s = q->read - q->write;
3631 if (s <= 0)
3632 s += RX_QUEUE_SIZE;
3633 /* keep some buffer to not confuse full and empty queue */
3634 s -= 2;
3635 if (s < 0)
3636 s = 0;
3637 return s;
3638}
3639
3640static inline int ipw_tx_queue_space(const struct clx2_queue *q)
43f66a6c
JK		 3641{
3642 int s = q->last_used - q->first_empty;
3643 if (s <= 0)
3644 s += q->n_bd;
3645 s -= 2; /* keep some reserve to not confuse empty and full situations */
3646 if (s < 0)
3647 s = 0;
3648 return s;
3649}
3650
3651static inline int ipw_queue_inc_wrap(int index, int n_bd)
3652{
3653 return (++index == n_bd) ? 0 : index;
3654}
3655
3656/**
3657 * Initialize common DMA queue structure
bf79451e 3658 *
43f66a6c
JK		 3659 * @param q queue to init
3660 * @param count Number of BD's to allocate. Should be power of 2
3661 * @param read_register Address for 'read' register
3662 * (not offset within BAR, full address)
3663 * @param write_register Address for 'write' register
3664 * (not offset within BAR, full address)
3665 * @param base_register Address for 'base' register
3666 * (not offset within BAR, full address)
3667 * @param size Address for 'size' register
3668 * (not offset within BAR, full address)
3669 */
bf79451e 3670static void ipw_queue_init(struct ipw_priv *priv, struct clx2_queue *q,
0edd5b44 3671 int count, u32 read, u32 write, u32 base, u32 size)
43f66a6c
JK		 3672{
3673 q->n_bd = count;
3674
3675 q->low_mark = q->n_bd / 4;
3676 if (q->low_mark < 4)
3677 q->low_mark = 4;
3678
3679 q->high_mark = q->n_bd / 8;
3680 if (q->high_mark < 2)
3681 q->high_mark = 2;
3682
3683 q->first_empty = q->last_used = 0;
3684 q->reg_r = read;
3685 q->reg_w = write;
3686
3687 ipw_write32(priv, base, q->dma_addr);
3688 ipw_write32(priv, size, count);
3689 ipw_write32(priv, read, 0);
3690 ipw_write32(priv, write, 0);
3691
3692 _ipw_read32(priv, 0x90);
3693}
3694
bf79451e 3695static int ipw_queue_tx_init(struct ipw_priv *priv,
43f66a6c 3696 struct clx2_tx_queue *q,
0edd5b44 3697 int count, u32 read, u32 write, u32 base, u32 size)
43f66a6c
JK		 3698{
3699 struct pci_dev *dev = priv->pci_dev;
3700
3701 q->txb = kmalloc(sizeof(q->txb[0]) * count, GFP_KERNEL);
3702 if (!q->txb) {
3703 IPW_ERROR("vmalloc for auxilary BD structures failed\n");
3704 return -ENOMEM;
3705 }
3706
0edd5b44
JG		 3707 q->bd =
3708 pci_alloc_consistent(dev, sizeof(q->bd[0]) * count, &q->q.dma_addr);
43f66a6c 3709 if (!q->bd) {
aaa4d308 3710 IPW_ERROR("pci_alloc_consistent(%zd) failed\n",
0edd5b44 3711 sizeof(q->bd[0]) * count);
43f66a6c
JK		 3712 kfree(q->txb);
3713 q->txb = NULL;
3714 return -ENOMEM;
3715 }
3716
3717 ipw_queue_init(priv, &q->q, count, read, write, base, size);
3718 return 0;
3719}
3720
3721/**
3722 * Free one TFD, those at index [txq->q.last_used].
3723 * Do NOT advance any indexes
bf79451e 3724 *
43f66a6c
JK		 3725 * @param dev
3726 * @param txq
3727 */
3728static void ipw_queue_tx_free_tfd(struct ipw_priv *priv,
3729 struct clx2_tx_queue *txq)
3730{
3731 struct tfd_frame *bd = &txq->bd[txq->q.last_used];
3732 struct pci_dev *dev = priv->pci_dev;
3733 int i;
bf79451e 3734
43f66a6c
JK		 3735 /* classify bd */
3736 if (bd->control_flags.message_type == TX_HOST_COMMAND_TYPE)
3737 /* nothing to cleanup after for host commands */
3738 return;
3739
3740 /* sanity check */
a613bffd
JK		 3741 if (le32_to_cpu(bd->u.data.num_chunks) > NUM_TFD_CHUNKS) {
3742 IPW_ERROR("Too many chunks: %i\n",
3743 le32_to_cpu(bd->u.data.num_chunks));
43f66a6c
JK		 3744 /** @todo issue fatal error, it is quite serious situation */
3745 return;
3746 }
3747
3748 /* unmap chunks if any */
a613bffd
JK		 3749 for (i = 0; i < le32_to_cpu(bd->u.data.num_chunks); i++) {
3750 pci_unmap_single(dev, le32_to_cpu(bd->u.data.chunk_ptr[i]),
3751 le16_to_cpu(bd->u.data.chunk_len[i]),
3752 PCI_DMA_TODEVICE);
43f66a6c
JK		 3753 if (txq->txb[txq->q.last_used]) {
3754 ieee80211_txb_free(txq->txb[txq->q.last_used]);
3755 txq->txb[txq->q.last_used] = NULL;
3756 }
3757 }
3758}
3759
3760/**
3761 * Deallocate DMA queue.
bf79451e 3762 *
43f66a6c
JK		 3763 * Empty queue by removing and destroying all BD's.
3764 * Free all buffers.
bf79451e 3765 *
43f66a6c
JK		 3766 * @param dev
3767 * @param q
3768 */
0edd5b44 3769static void ipw_queue_tx_free(struct ipw_priv *priv, struct clx2_tx_queue *txq)
43f66a6c
JK		 3770{
3771 struct clx2_queue *q = &txq->q;
3772 struct pci_dev *dev = priv->pci_dev;
3773
bf79451e
JG		 3774 if (q->n_bd == 0)
3775 return;
43f66a6c
JK		 3776
3777 /* first, empty all BD's */
3778 for (; q->first_empty != q->last_used;
3779 q->last_used = ipw_queue_inc_wrap(q->last_used, q->n_bd)) {
3780 ipw_queue_tx_free_tfd(priv, txq);
3781 }
bf79451e 3782
43f66a6c 3783 /* free buffers belonging to queue itself */
0edd5b44 3784 pci_free_consistent(dev, sizeof(txq->bd[0]) * q->n_bd, txq->bd,
43f66a6c
JK		 3785 q->dma_addr);
3786 kfree(txq->txb);
3787
3788 /* 0 fill whole structure */
3789 memset(txq, 0, sizeof(*txq));
3790}
3791
43f66a6c
JK		 3792/**
3793 * Destroy all DMA queues and structures
bf79451e 3794 *
43f66a6c
JK		 3795 * @param priv
3796 */
3797static void ipw_tx_queue_free(struct ipw_priv *priv)
3798{
3799 /* Tx CMD queue */
3800 ipw_queue_tx_free(priv, &priv->txq_cmd);
3801
3802 /* Tx queues */
3803 ipw_queue_tx_free(priv, &priv->txq[0]);
3804 ipw_queue_tx_free(priv, &priv->txq[1]);
3805 ipw_queue_tx_free(priv, &priv->txq[2]);
3806 ipw_queue_tx_free(priv, &priv->txq[3]);
3807}
3808
858119e1 3809static void ipw_create_bssid(struct ipw_priv *priv, u8 * bssid)
43f66a6c
JK		 3810{
3811 /* First 3 bytes are manufacturer */
3812 bssid[0] = priv->mac_addr[0];
3813 bssid[1] = priv->mac_addr[1];
3814 bssid[2] = priv->mac_addr[2];
3815
3816 /* Last bytes are random */
0edd5b44 3817 get_random_bytes(&bssid[3], ETH_ALEN - 3);
43f66a6c 3818
0edd5b44
JG		 3819 bssid[0] &= 0xfe; /* clear multicast bit */
3820 bssid[0] |= 0x02; /* set local assignment bit (IEEE802) */
43f66a6c
JK		 3821}
3822
858119e1 3823static u8 ipw_add_station(struct ipw_priv *priv, u8 * bssid)
43f66a6c
JK		 3824{
3825 struct ipw_station_entry entry;
3826 int i;
3827
3828 for (i = 0; i < priv->num_stations; i++) {
3829 if (!memcmp(priv->stations[i], bssid, ETH_ALEN)) {
3830 /* Another node is active in network */
3831 priv->missed_adhoc_beacons = 0;
3832 if (!(priv->config & CFG_STATIC_CHANNEL))
3833 /* when other nodes drop out, we drop out */
3834 priv->config &= ~CFG_ADHOC_PERSIST;
3835
3836 return i;
3837 }
3838 }
3839
3840 if (i == MAX_STATIONS)
3841 return IPW_INVALID_STATION;
3842
e174961c 3843 IPW_DEBUG_SCAN("Adding AdHoc station: %pM\n", bssid);
43f66a6c
JK		 3844
3845 entry.reserved = 0;
3846 entry.support_mode = 0;
3847 memcpy(entry.mac_addr, bssid, ETH_ALEN);
3848 memcpy(priv->stations[i], bssid, ETH_ALEN);
3849 ipw_write_direct(priv, IPW_STATION_TABLE_LOWER + i * sizeof(entry),
0edd5b44 3850 &entry, sizeof(entry));
43f66a6c
JK		 3851 priv->num_stations++;
3852
3853 return i;
3854}
3855
858119e1 3856static u8 ipw_find_station(struct ipw_priv *priv, u8 * bssid)
43f66a6c
JK		 3857{
3858 int i;
3859
bf79451e
JG		 3860 for (i = 0; i < priv->num_stations; i++)
3861 if (!memcmp(priv->stations[i], bssid, ETH_ALEN))
43f66a6c
JK		 3862 return i;
3863
3864 return IPW_INVALID_STATION;
3865}
3866
3867static void ipw_send_disassociate(struct ipw_priv *priv, int quiet)
3868{
3869 int err;
3870
7b99659f
HL		 3871 if (priv->status & STATUS_ASSOCIATING) {
3872 IPW_DEBUG_ASSOC("Disassociating while associating.\n");
3873 queue_work(priv->workqueue, &priv->disassociate);
3874 return;
3875 }
3876
3877 if (!(priv->status & STATUS_ASSOCIATED)) {
43f66a6c
JK		 3878 IPW_DEBUG_ASSOC("Disassociating while not associated.\n");
3879 return;
3880 }
3881
e174961c 3882 IPW_DEBUG_ASSOC("Disassocation attempt from %pM "
43f66a6c 3883 "on channel %d.\n",
e174961c 3884 priv->assoc_request.bssid,
43f66a6c
JK		 3885 priv->assoc_request.channel);
3886
3887 priv->status &= ~(STATUS_ASSOCIATING | STATUS_ASSOCIATED);
3888 priv->status |= STATUS_DISASSOCIATING;
3889
3890 if (quiet)
3891 priv->assoc_request.assoc_type = HC_DISASSOC_QUIET;
3892 else
3893 priv->assoc_request.assoc_type = HC_DISASSOCIATE;
e6324726 3894
43f66a6c
JK		 3895 err = ipw_send_associate(priv, &priv->assoc_request);
3896 if (err) {
3897 IPW_DEBUG_HC("Attempt to send [dis]associate command "
3898 "failed.\n");
3899 return;
3900 }
3901
3902}
3903
c848d0af 3904static int ipw_disassociate(void *data)
43f66a6c 3905{
c848d0af
JK		 3906 struct ipw_priv *priv = data;
3907 if (!(priv->status & (STATUS_ASSOCIATED | STATUS_ASSOCIATING)))
3908 return 0;
43f66a6c 3909 ipw_send_disassociate(data, 0);
b8ddafd7 3910 netif_carrier_off(priv->net_dev);
c848d0af 3911 return 1;
43f66a6c
JK		 3912}
3913
c4028958 3914static void ipw_bg_disassociate(struct work_struct *work)
43f66a6c 3915{
c4028958
DH		 3916 struct ipw_priv *priv =
3917 container_of(work, struct ipw_priv, disassociate);
4644151b 3918 mutex_lock(&priv->mutex);
c4028958 3919 ipw_disassociate(priv);
4644151b 3920 mutex_unlock(&priv->mutex);
43f66a6c
JK		 3921}
3922
c4028958 3923static void ipw_system_config(struct work_struct *work)
d8bad6df 3924{
c4028958
DH		 3925 struct ipw_priv *priv =
3926 container_of(work, struct ipw_priv, system_config);
d685b8c2
ZY		 3927
3928#ifdef CONFIG_IPW2200_PROMISCUOUS
3929 if (priv->prom_net_dev && netif_running(priv->prom_net_dev)) {
3930 priv->sys_config.accept_all_data_frames = 1;
3931 priv->sys_config.accept_non_directed_frames = 1;
3932 priv->sys_config.accept_all_mgmt_bcpr = 1;
3933 priv->sys_config.accept_all_mgmt_frames = 1;
3934 }
3935#endif
3936
3937 ipw_send_system_config(priv);
43f66a6c
JK		 3938}
3939
3940struct ipw_status_code {
3941 u16 status;
3942 const char *reason;
3943};
3944
3945static const struct ipw_status_code ipw_status_codes[] = {
3946 {0x00, "Successful"},
3947 {0x01, "Unspecified failure"},
3948 {0x0A, "Cannot support all requested capabilities in the "
3949 "Capability information field"},
3950 {0x0B, "Reassociation denied due to inability to confirm that "
3951 "association exists"},
3952 {0x0C, "Association denied due to reason outside the scope of this "
3953 "standard"},
0edd5b44
JG		 3954 {0x0D,
3955 "Responding station does not support the specified authentication "
43f66a6c 3956 "algorithm"},
0edd5b44
JG		 3957 {0x0E,
3958 "Received an Authentication frame with authentication sequence "
43f66a6c
JK		 3959 "transaction sequence number out of expected sequence"},
3960 {0x0F, "Authentication rejected because of challenge failure"},
3961 {0x10, "Authentication rejected due to timeout waiting for next "
3962 "frame in sequence"},
3963 {0x11, "Association denied because AP is unable to handle additional "
3964 "associated stations"},
0edd5b44
JG		 3965 {0x12,
3966 "Association denied due to requesting station not supporting all "
43f66a6c 3967 "of the datarates in the BSSBasicServiceSet Parameter"},
0edd5b44
JG		 3968 {0x13,
3969 "Association denied due to requesting station not supporting "
43f66a6c 3970 "short preamble operation"},
0edd5b44
JG		 3971 {0x14,
3972 "Association denied due to requesting station not supporting "
43f66a6c 3973 "PBCC encoding"},
0edd5b44
JG		 3974 {0x15,
3975 "Association denied due to requesting station not supporting "
43f66a6c 3976 "channel agility"},
0edd5b44
JG		 3977 {0x19,
3978 "Association denied due to requesting station not supporting "
43f66a6c 3979 "short slot operation"},
0edd5b44
JG		 3980 {0x1A,
3981 "Association denied due to requesting station not supporting "
43f66a6c
JK		 3982 "DSSS-OFDM operation"},
3983 {0x28, "Invalid Information Element"},
3984 {0x29, "Group Cipher is not valid"},
3985 {0x2A, "Pairwise Cipher is not valid"},
3986 {0x2B, "AKMP is not valid"},
3987 {0x2C, "Unsupported RSN IE version"},
3988 {0x2D, "Invalid RSN IE Capabilities"},
3989 {0x2E, "Cipher suite is rejected per security policy"},
3990};
3991
bf79451e 3992static const char *ipw_get_status_code(u16 status)
43f66a6c
JK		 3993{
3994 int i;
bf79451e 3995 for (i = 0; i < ARRAY_SIZE(ipw_status_codes); i++)
ea2b26e0 3996 if (ipw_status_codes[i].status == (status & 0xff))
43f66a6c
JK		 3997 return ipw_status_codes[i].reason;
3998 return "Unknown status value.";
3999}
43f66a6c
JK		 4000
4001static void inline average_init(struct average *avg)
4002{
4003 memset(avg, 0, sizeof(*avg));
4004}
4005
00d21de5
ZY		 4006#define DEPTH_RSSI 8
4007#define DEPTH_NOISE 16
4008static s16 exponential_average(s16 prev_avg, s16 val, u8 depth)
4009{
4010 return ((depth-1)*prev_avg + val)/depth;
4011}
4012
858119e1 4013static void average_add(struct average *avg, s16 val)
43f66a6c
JK		 4014{
4015 avg->sum -= avg->entries[avg->pos];
4016 avg->sum += val;
4017 avg->entries[avg->pos++] = val;
4018 if (unlikely(avg->pos == AVG_ENTRIES)) {
4019 avg->init = 1;
4020 avg->pos = 0;
4021 }
4022}
4023
858119e1 4024static s16 average_value(struct average *avg)
43f66a6c
JK		 4025{
4026 if (!unlikely(avg->init)) {
4027 if (avg->pos)
4028 return avg->sum / avg->pos;
4029 return 0;
4030 }
4031
4032 return avg->sum / AVG_ENTRIES;
4033}
4034
4035static void ipw_reset_stats(struct ipw_priv *priv)
4036{
4037 u32 len = sizeof(u32);
4038
4039 priv->quality = 0;
4040
4041 average_init(&priv->average_missed_beacons);
00d21de5
ZY		 4042 priv->exp_avg_rssi = -60;
4043 priv->exp_avg_noise = -85 + 0x100;
43f66a6c
JK		 4044
4045 priv->last_rate = 0;
4046 priv->last_missed_beacons = 0;
4047 priv->last_rx_packets = 0;
4048 priv->last_tx_packets = 0;
4049 priv->last_tx_failures = 0;
bf79451e 4050
43f66a6c
JK		 4051 /* Firmware managed, reset only when NIC is restarted, so we have to
4052 * normalize on the current value */
bf79451e 4053 ipw_get_ordinal(priv, IPW_ORD_STAT_RX_ERR_CRC,
43f66a6c 4054 &priv->last_rx_err, &len);
bf79451e 4055 ipw_get_ordinal(priv, IPW_ORD_STAT_TX_FAILURE,
43f66a6c
JK		 4056 &priv->last_tx_failures, &len);
4057
4058 /* Driver managed, reset with each association */
4059 priv->missed_adhoc_beacons = 0;
4060 priv->missed_beacons = 0;
4061 priv->tx_packets = 0;
4062 priv->rx_packets = 0;
4063
4064}
4065
858119e1 4066static u32 ipw_get_max_rate(struct ipw_priv *priv)
43f66a6c
JK		 4067{
4068 u32 i = 0x80000000;
4069 u32 mask = priv->rates_mask;
4070 /* If currently associated in B mode, restrict the maximum
4071 * rate match to B rates */
4072 if (priv->assoc_request.ieee_mode == IPW_B_MODE)
4073 mask &= IEEE80211_CCK_RATES_MASK;
4074
4075 /* TODO: Verify that the rate is supported by the current rates
4076 * list. */
4077
0edd5b44
JG		 4078 while (i && !(mask & i))
4079 i >>= 1;
43f66a6c 4080 switch (i) {
ea2b26e0
JK		 4081 case IEEE80211_CCK_RATE_1MB_MASK:
4082 return 1000000;
4083 case IEEE80211_CCK_RATE_2MB_MASK:
4084 return 2000000;
4085 case IEEE80211_CCK_RATE_5MB_MASK:
4086 return 5500000;
4087 case IEEE80211_OFDM_RATE_6MB_MASK:
4088 return 6000000;
4089 case IEEE80211_OFDM_RATE_9MB_MASK:
4090 return 9000000;
4091 case IEEE80211_CCK_RATE_11MB_MASK:
4092 return 11000000;
4093 case IEEE80211_OFDM_RATE_12MB_MASK:
4094 return 12000000;
4095 case IEEE80211_OFDM_RATE_18MB_MASK:
4096 return 18000000;
4097 case IEEE80211_OFDM_RATE_24MB_MASK:
4098 return 24000000;
4099 case IEEE80211_OFDM_RATE_36MB_MASK:
4100 return 36000000;
4101 case IEEE80211_OFDM_RATE_48MB_MASK:
4102 return 48000000;
4103 case IEEE80211_OFDM_RATE_54MB_MASK:
4104 return 54000000;
43f66a6c
JK		 4105 }
4106
bf79451e 4107 if (priv->ieee->mode == IEEE_B)
43f66a6c
JK		 4108 return 11000000;
4109 else
4110 return 54000000;
4111}
4112
4113static u32 ipw_get_current_rate(struct ipw_priv *priv)
4114{
4115 u32 rate, len = sizeof(rate);
4116 int err;
4117
bf79451e 4118 if (!(priv->status & STATUS_ASSOCIATED))
43f66a6c
JK		 4119 return 0;
4120
4121 if (priv->tx_packets > IPW_REAL_RATE_RX_PACKET_THRESHOLD) {
bf79451e 4122 err = ipw_get_ordinal(priv, IPW_ORD_STAT_TX_CURR_RATE, &rate,
43f66a6c
JK		 4123 &len);
4124 if (err) {
4125 IPW_DEBUG_INFO("failed querying ordinals.\n");
4126 return 0;
4127 }
bf79451e 4128 } else
43f66a6c
JK		 4129 return ipw_get_max_rate(priv);
4130
4131 switch (rate) {
ea2b26e0
JK		 4132 case IPW_TX_RATE_1MB:
4133 return 1000000;
4134 case IPW_TX_RATE_2MB:
4135 return 2000000;
4136 case IPW_TX_RATE_5MB:
4137 return 5500000;
4138 case IPW_TX_RATE_6MB:
4139 return 6000000;
4140 case IPW_TX_RATE_9MB:
4141 return 9000000;
4142 case IPW_TX_RATE_11MB:
4143 return 11000000;
4144 case IPW_TX_RATE_12MB:
4145 return 12000000;
4146 case IPW_TX_RATE_18MB:
4147 return 18000000;
4148 case IPW_TX_RATE_24MB:
4149 return 24000000;
4150 case IPW_TX_RATE_36MB:
4151 return 36000000;
4152 case IPW_TX_RATE_48MB:
4153 return 48000000;
4154 case IPW_TX_RATE_54MB:
4155 return 54000000;
43f66a6c
JK		 4156 }
4157
4158 return 0;
4159}
4160
43f66a6c
JK		 4161#define IPW_STATS_INTERVAL (2 * HZ)
4162static void ipw_gather_stats(struct ipw_priv *priv)
4163{
4164 u32 rx_err, rx_err_delta, rx_packets_delta;
4165 u32 tx_failures, tx_failures_delta, tx_packets_delta;
4166 u32 missed_beacons_percent, missed_beacons_delta;
4167 u32 quality = 0;
4168 u32 len = sizeof(u32);
4169 s16 rssi;
bf79451e 4170 u32 beacon_quality, signal_quality, tx_quality, rx_quality,
0edd5b44 4171 rate_quality;
ea2b26e0 4172 u32 max_rate;
43f66a6c
JK		 4173
4174 if (!(priv->status & STATUS_ASSOCIATED)) {
4175 priv->quality = 0;
4176 return;
4177 }
4178
4179 /* Update the statistics */
bf79451e 4180 ipw_get_ordinal(priv, IPW_ORD_STAT_MISSED_BEACONS,
43f66a6c 4181 &priv->missed_beacons, &len);
0edd5b44 4182 missed_beacons_delta = priv->missed_beacons - priv->last_missed_beacons;
43f66a6c
JK		 4183 priv->last_missed_beacons = priv->missed_beacons;
4184 if (priv->assoc_request.beacon_interval) {
4185 missed_beacons_percent = missed_beacons_delta *
5b5e807f 4186 (HZ * le16_to_cpu(priv->assoc_request.beacon_interval)) /
0edd5b44 4187 (IPW_STATS_INTERVAL * 10);
43f66a6c
JK		 4188 } else {
4189 missed_beacons_percent = 0;
4190 }
4191 average_add(&priv->average_missed_beacons, missed_beacons_percent);
4192
4193 ipw_get_ordinal(priv, IPW_ORD_STAT_RX_ERR_CRC, &rx_err, &len);
4194 rx_err_delta = rx_err - priv->last_rx_err;
4195 priv->last_rx_err = rx_err;
4196
4197 ipw_get_ordinal(priv, IPW_ORD_STAT_TX_FAILURE, &tx_failures, &len);
4198 tx_failures_delta = tx_failures - priv->last_tx_failures;
4199 priv->last_tx_failures = tx_failures;
4200
4201 rx_packets_delta = priv->rx_packets - priv->last_rx_packets;
4202 priv->last_rx_packets = priv->rx_packets;
4203
4204 tx_packets_delta = priv->tx_packets - priv->last_tx_packets;
4205 priv->last_tx_packets = priv->tx_packets;
4206
4207 /* Calculate quality based on the following:
bf79451e 4208 *
43f66a6c
JK		 4209 * Missed beacon: 100% = 0, 0% = 70% missed
4210 * Rate: 60% = 1Mbs, 100% = Max
4211 * Rx and Tx errors represent a straight % of total Rx/Tx
4212 * RSSI: 100% = > -50, 0% = < -80
4213 * Rx errors: 100% = 0, 0% = 50% missed
bf79451e 4214 *
43f66a6c
JK		 4215 * The lowest computed quality is used.
4216 *
4217 */
4218#define BEACON_THRESHOLD 5
4219 beacon_quality = 100 - missed_beacons_percent;
4220 if (beacon_quality < BEACON_THRESHOLD)
4221 beacon_quality = 0;
4222 else
bf79451e 4223 beacon_quality = (beacon_quality - BEACON_THRESHOLD) * 100 /
0edd5b44 4224 (100 - BEACON_THRESHOLD);
bf79451e 4225 IPW_DEBUG_STATS("Missed beacon: %3d%% (%d%%)\n",
43f66a6c 4226 beacon_quality, missed_beacons_percent);
bf79451e 4227
43f66a6c 4228 priv->last_rate = ipw_get_current_rate(priv);
ea2b26e0
JK		 4229 max_rate = ipw_get_max_rate(priv);
4230 rate_quality = priv->last_rate * 40 / max_rate + 60;
43f66a6c
JK		 4231 IPW_DEBUG_STATS("Rate quality : %3d%% (%dMbs)\n",
4232 rate_quality, priv->last_rate / 1000000);
bf79451e 4233
0edd5b44 4234 if (rx_packets_delta > 100 && rx_packets_delta + rx_err_delta)
bf79451e 4235 rx_quality = 100 - (rx_err_delta * 100) /
0edd5b44 4236 (rx_packets_delta + rx_err_delta);
43f66a6c
JK		 4237 else
4238 rx_quality = 100;
4239 IPW_DEBUG_STATS("Rx quality : %3d%% (%u errors, %u packets)\n",
4240 rx_quality, rx_err_delta, rx_packets_delta);
bf79451e 4241
0edd5b44 4242 if (tx_packets_delta > 100 && tx_packets_delta + tx_failures_delta)
bf79451e 4243 tx_quality = 100 - (tx_failures_delta * 100) /
0edd5b44 4244 (tx_packets_delta + tx_failures_delta);
43f66a6c
JK		 4245 else
4246 tx_quality = 100;
4247 IPW_DEBUG_STATS("Tx quality : %3d%% (%u errors, %u packets)\n",
4248 tx_quality, tx_failures_delta, tx_packets_delta);
bf79451e 4249
00d21de5 4250 rssi = priv->exp_avg_rssi;
c848d0af
JK		 4251 signal_quality =
4252 (100 *
4253 (priv->ieee->perfect_rssi - priv->ieee->worst_rssi) *
4254 (priv->ieee->perfect_rssi - priv->ieee->worst_rssi) -
4255 (priv->ieee->perfect_rssi - rssi) *
4256 (15 * (priv->ieee->perfect_rssi - priv->ieee->worst_rssi) +
4257 62 * (priv->ieee->perfect_rssi - rssi))) /
4258 ((priv->ieee->perfect_rssi - priv->ieee->worst_rssi) *
4259 (priv->ieee->perfect_rssi - priv->ieee->worst_rssi));
4260 if (signal_quality > 100)
43f66a6c 4261 signal_quality = 100;
c848d0af 4262 else if (signal_quality < 1)
43f66a6c 4263 signal_quality = 0;
ea2b26e0 4264
61fb9ed9 4265 IPW_DEBUG_STATS("Signal level : %3d%% (%d dBm)\n",
43f66a6c 4266 signal_quality, rssi);
bf79451e 4267
21f8a73f
RC		 4268 quality = min(rx_quality, signal_quality);
4269 quality = min(tx_quality, quality);
4270 quality = min(rate_quality, quality);
4271 quality = min(beacon_quality, quality);
43f66a6c 4272 if (quality == beacon_quality)
0edd5b44
JG		 4273 IPW_DEBUG_STATS("Quality (%d%%): Clamped to missed beacons.\n",
4274 quality);
43f66a6c 4275 if (quality == rate_quality)
0edd5b44
JG		 4276 IPW_DEBUG_STATS("Quality (%d%%): Clamped to rate quality.\n",
4277 quality);
43f66a6c 4278 if (quality == tx_quality)
0edd5b44
JG		 4279 IPW_DEBUG_STATS("Quality (%d%%): Clamped to Tx quality.\n",
4280 quality);
43f66a6c 4281 if (quality == rx_quality)
0edd5b44
JG		 4282 IPW_DEBUG_STATS("Quality (%d%%): Clamped to Rx quality.\n",
4283 quality);
43f66a6c 4284 if (quality == signal_quality)
0edd5b44
JG		 4285 IPW_DEBUG_STATS("Quality (%d%%): Clamped to signal quality.\n",
4286 quality);
43f66a6c
JK		 4287
4288 priv->quality = quality;
bf79451e
JG		 4289
4290 queue_delayed_work(priv->workqueue, &priv->gather_stats,
43f66a6c
JK		 4291 IPW_STATS_INTERVAL);
4292}
4293
c4028958 4294static void ipw_bg_gather_stats(struct work_struct *work)
c848d0af 4295{
c4028958
DH		 4296 struct ipw_priv *priv =
4297 container_of(work, struct ipw_priv, gather_stats.work);
4644151b 4298 mutex_lock(&priv->mutex);
c4028958 4299 ipw_gather_stats(priv);
4644151b 4300 mutex_unlock(&priv->mutex);
c848d0af
JK		 4301}
4302
e7582561
BC		 4303/* Missed beacon behavior:
4304 * 1st missed -> roaming_threshold, just wait, don't do any scan/roam.
4305 * roaming_threshold -> disassociate_threshold, scan and roam for better signal.
4306 * Above disassociate threshold, give up and stop scanning.
4307 * Roaming is disabled if disassociate_threshold <= roaming_threshold */
858119e1 4308static void ipw_handle_missed_beacon(struct ipw_priv *priv,
ea2b26e0
JK		 4309 int missed_count)
4310{
4311 priv->notif_missed_beacons = missed_count;
4312
afbf30a2 4313 if (missed_count > priv->disassociate_threshold &&
ea2b26e0
JK		 4314 priv->status & STATUS_ASSOCIATED) {
4315 /* If associated and we've hit the missed
4316 * beacon threshold, disassociate, turn
4317 * off roaming, and abort any active scans */
4318 IPW_DEBUG(IPW_DL_INFO | IPW_DL_NOTIF |
afbf30a2 4319 IPW_DL_STATE | IPW_DL_ASSOC,
ea2b26e0
JK		 4320 "Missed beacon: %d - disassociate\n", missed_count);
4321 priv->status &= ~STATUS_ROAMING;
a613bffd
JK		 4322 if (priv->status & STATUS_SCANNING) {
4323 IPW_DEBUG(IPW_DL_INFO | IPW_DL_NOTIF |
4324 IPW_DL_STATE,
4325 "Aborting scan with missed beacon.\n");
ea2b26e0 4326 queue_work(priv->workqueue, &priv->abort_scan);
a613bffd
JK		 4327 }
4328
ea2b26e0
JK		 4329 queue_work(priv->workqueue, &priv->disassociate);
4330 return;
4331 }
4332
4333 if (priv->status & STATUS_ROAMING) {
4334 /* If we are currently roaming, then just
4335 * print a debug statement... */
4336 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE,
4337 "Missed beacon: %d - roam in progress\n",
4338 missed_count);
4339 return;
4340 }
4341
4bfdb91d
ZY		 4342 if (roaming &&
4343 (missed_count > priv->roaming_threshold &&
4344 missed_count <= priv->disassociate_threshold)) {
ea2b26e0 4345 /* If we are not already roaming, set the ROAM
e7582561
BC		 4346 * bit in the status and kick off a scan.
4347 * This can happen several times before we reach
4348 * disassociate_threshold. */
ea2b26e0
JK		 4349 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE,
4350 "Missed beacon: %d - initiate "
4351 "roaming\n", missed_count);
4352 if (!(priv->status & STATUS_ROAMING)) {
4353 priv->status |= STATUS_ROAMING;
4354 if (!(priv->status & STATUS_SCANNING))
c4028958
DH		 4355 queue_delayed_work(priv->workqueue,
4356 &priv->request_scan, 0);
ea2b26e0
JK		 4357 }
4358 return;
4359 }
4360
14a4dfe2
HS		 4361 if (priv->status & STATUS_SCANNING &&
4362 missed_count > IPW_MB_SCAN_CANCEL_THRESHOLD) {
ea2b26e0
JK		 4363 /* Stop scan to keep fw from getting
4364 * stuck (only if we aren't roaming --
4365 * otherwise we'll never scan more than 2 or 3
4366 * channels..) */
b095c381
JK		 4367 IPW_DEBUG(IPW_DL_INFO | IPW_DL_NOTIF | IPW_DL_STATE,
4368 "Aborting scan with missed beacon.\n");
ea2b26e0
JK		 4369 queue_work(priv->workqueue, &priv->abort_scan);
4370 }
4371
4372 IPW_DEBUG_NOTIF("Missed beacon: %d\n", missed_count);
ea2b26e0
JK		 4373}
4374
0b531676
DW		 4375static void ipw_scan_event(struct work_struct *work)
4376{
4377 union iwreq_data wrqu;
4378
4379 struct ipw_priv *priv =
4380 container_of(work, struct ipw_priv, scan_event.work);
4381
4382 wrqu.data.length = 0;
4383 wrqu.data.flags = 0;
4384 wireless_send_event(priv->net_dev, SIOCGIWSCAN, &wrqu, NULL);
4385}
4386
4387static void handle_scan_event(struct ipw_priv *priv)
4388{
4389 /* Only userspace-requested scan completion events go out immediately */
4390 if (!priv->user_requested_scan) {
4391 if (!delayed_work_pending(&priv->scan_event))
4392 queue_delayed_work(priv->workqueue, &priv->scan_event,
be84e3d6 4393 round_jiffies_relative(msecs_to_jiffies(4000)));
0b531676
DW		 4394 } else {
4395 union iwreq_data wrqu;
4396
4397 priv->user_requested_scan = 0;
4398 cancel_delayed_work(&priv->scan_event);
4399
4400 wrqu.data.length = 0;
4401 wrqu.data.flags = 0;
4402 wireless_send_event(priv->net_dev, SIOCGIWSCAN, &wrqu, NULL);
4403 }
4404}
4405
43f66a6c
JK		 4406/**
4407 * Handle host notification packet.
4408 * Called from interrupt routine
4409 */
858119e1 4410static void ipw_rx_notification(struct ipw_priv *priv,
43f66a6c
JK		 4411 struct ipw_rx_notification *notif)
4412{
9387b7ca 4413 DECLARE_SSID_BUF(ssid);
e62e1ee0 4414 u16 size = le16_to_cpu(notif->size);
a613bffd 4415
e62e1ee0 4416 IPW_DEBUG_NOTIF("type = %i (%d bytes)\n", notif->subtype, size);
bf79451e 4417
43f66a6c 4418 switch (notif->subtype) {
0edd5b44
JG		 4419 case HOST_NOTIFICATION_STATUS_ASSOCIATED:{
4420 struct notif_association *assoc = &notif->u.assoc;
4421
4422 switch (assoc->state) {
4423 case CMAS_ASSOCIATED:{
4424 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4425 IPW_DL_ASSOC,
e174961c 4426 "associated: '%s' %pM \n",
9387b7ca
JL		 4427 print_ssid(ssid, priv->essid,
4428 priv->essid_len),
e174961c 4429 priv->bssid);
0edd5b44
JG		 4430
4431 switch (priv->ieee->iw_mode) {
4432 case IW_MODE_INFRA:
4433 memcpy(priv->ieee->bssid,
4434 priv->bssid, ETH_ALEN);
4435 break;
4436
4437 case IW_MODE_ADHOC:
4438 memcpy(priv->ieee->bssid,
4439 priv->bssid, ETH_ALEN);
4440
4441 /* clear out the station table */
4442 priv->num_stations = 0;
4443
4444 IPW_DEBUG_ASSOC
4445 ("queueing adhoc check\n");
4446 queue_delayed_work(priv->
4447 workqueue,
4448 &priv->
4449 adhoc_check,
5b5e807f 4450 le16_to_cpu(priv->
0edd5b44 4451 assoc_request.
5b5e807f 4452 beacon_interval));
0edd5b44
JG		 4453 break;
4454 }
4455
4456 priv->status &= ~STATUS_ASSOCIATING;
4457 priv->status |= STATUS_ASSOCIATED;
d8bad6df
ZY		 4458 queue_work(priv->workqueue,
4459 &priv->system_config);
0edd5b44 4460
e43e3c1e 4461#ifdef CONFIG_IPW2200_QOS
afbf30a2 4462#define IPW_GET_PACKET_STYPE(x) WLAN_FC_GET_STYPE( \
72118015 4463 le16_to_cpu(((struct ieee80211_hdr *)(x))->frame_control))
afbf30a2
JK		 4464 if ((priv->status & STATUS_AUTH) &&
4465 (IPW_GET_PACKET_STYPE(&notif->u.raw)
4466 == IEEE80211_STYPE_ASSOC_RESP)) {
b095c381
JK		 4467 if ((sizeof
4468 (struct
2b184d5b 4469 ieee80211_assoc_response)
e62e1ee0
AV		 4470 <= size)
4471 && (size <= 2314)) {
b095c381
JK		 4472 struct
4473 ieee80211_rx_stats
4474 stats = {
e62e1ee0 4475 .len = size - 1,
b095c381
JK		 4476 };
4477
4478 IPW_DEBUG_QOS
4479 ("QoS Associate "
e62e1ee0 4480 "size %d\n", size);
b095c381
JK		 4481 ieee80211_rx_mgt(priv->
4482 ieee,
4483 (struct
2b184d5b 4484 ieee80211_hdr_4addr
b095c381
JK		 4485 *)
4486 &notif->u.raw, &stats);
4487 }
0edd5b44 4488 }
b095c381 4489#endif
0edd5b44 4490
a613bffd 4491 schedule_work(&priv->link_up);
43f66a6c 4492
0edd5b44
JG		 4493 break;
4494 }
bf79451e 4495
0edd5b44
JG		 4496 case CMAS_AUTHENTICATED:{
4497 if (priv->
4498 status & (STATUS_ASSOCIATED |
4499 STATUS_AUTH)) {
0edd5b44
JG		 4500 struct notif_authenticate *auth
4501 = &notif->u.auth;
4502 IPW_DEBUG(IPW_DL_NOTIF |
4503 IPW_DL_STATE |
4504 IPW_DL_ASSOC,
4505 "deauthenticated: '%s' "
e174961c 4506 "%pM"
0edd5b44 4507 ": (0x%04X) - %s \n",
9387b7ca
JL		 4508 print_ssid(ssid,
4509 priv->
4510 essid,
4511 priv->
4512 essid_len),
e174961c 4513 priv->bssid,
83f7d57c 4514 le16_to_cpu(auth->status),
0edd5b44 4515 ipw_get_status_code
83f7d57c 4516 (le16_to_cpu
0edd5b44 4517 (auth->status)));
43f66a6c 4518
0edd5b44
JG		 4519 priv->status &=
4520 ~(STATUS_ASSOCIATING |
4521 STATUS_AUTH |
4522 STATUS_ASSOCIATED);
4523
a613bffd 4524 schedule_work(&priv->link_down);
0edd5b44
JG		 4525 break;
4526 }
4527
4528 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4529 IPW_DL_ASSOC,
e174961c 4530 "authenticated: '%s' %pM\n",
9387b7ca
JL		 4531 print_ssid(ssid, priv->essid,
4532 priv->essid_len),
e174961c 4533 priv->bssid);
0edd5b44
JG		 4534 break;
4535 }
4536
4537 case CMAS_INIT:{
ea2b26e0
JK		 4538 if (priv->status & STATUS_AUTH) {
4539 struct
4540 ieee80211_assoc_response
4541 *resp;
4542 resp =
4543 (struct
4544 ieee80211_assoc_response
4545 *)&notif->u.raw;
4546 IPW_DEBUG(IPW_DL_NOTIF |
4547 IPW_DL_STATE |
4548 IPW_DL_ASSOC,
4549 "association failed (0x%04X): %s\n",
83f7d57c 4550 le16_to_cpu(resp->status),
ea2b26e0 4551 ipw_get_status_code
83f7d57c 4552 (le16_to_cpu
ea2b26e0
JK		 4553 (resp->status)));
4554 }
4555
0edd5b44
JG		 4556 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4557 IPW_DL_ASSOC,
e174961c 4558 "disassociated: '%s' %pM \n",
9387b7ca
JL		 4559 print_ssid(ssid, priv->essid,
4560 priv->essid_len),
e174961c 4561 priv->bssid);
0edd5b44
JG		 4562
4563 priv->status &=
4564 ~(STATUS_DISASSOCIATING |
4565 STATUS_ASSOCIATING |
4566 STATUS_ASSOCIATED | STATUS_AUTH);
b095c381
JK		 4567 if (priv->assoc_network
4568 && (priv->assoc_network->
4569 capability &
4570 WLAN_CAPABILITY_IBSS))
4571 ipw_remove_current_network
4572 (priv);
0edd5b44 4573
a613bffd 4574 schedule_work(&priv->link_down);
0edd5b44 4575
0edd5b44
JG		 4576 break;
4577 }
43f66a6c 4578
b095c381
JK		 4579 case CMAS_RX_ASSOC_RESP:
4580 break;
4581
0edd5b44
JG		 4582 default:
4583 IPW_ERROR("assoc: unknown (%d)\n",
4584 assoc->state);
43f66a6c 4585 break;
bf79451e 4586 }
43f66a6c 4587
43f66a6c
JK		 4588 break;
4589 }
bf79451e 4590
0edd5b44
JG		 4591 case HOST_NOTIFICATION_STATUS_AUTHENTICATE:{
4592 struct notif_authenticate *auth = &notif->u.auth;
4593 switch (auth->state) {
4594 case CMAS_AUTHENTICATED:
4595 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE,
e174961c 4596 "authenticated: '%s' %pM \n",
9387b7ca
JL		 4597 print_ssid(ssid, priv->essid,
4598 priv->essid_len),
e174961c 4599 priv->bssid);
0edd5b44
JG		 4600 priv->status |= STATUS_AUTH;
4601 break;
43f66a6c 4602
0edd5b44
JG		 4603 case CMAS_INIT:
4604 if (priv->status & STATUS_AUTH) {
4605 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4606 IPW_DL_ASSOC,
4607 "authentication failed (0x%04X): %s\n",
83f7d57c
AV		 4608 le16_to_cpu(auth->status),
4609 ipw_get_status_code(le16_to_cpu
0edd5b44
JG		 4610 (auth->
4611 status)));
4612 }
4613 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4614 IPW_DL_ASSOC,
e174961c 4615 "deauthenticated: '%s' %pM\n",
9387b7ca
JL		 4616 print_ssid(ssid, priv->essid,
4617 priv->essid_len),
e174961c 4618 priv->bssid);
bf79451e 4619
0edd5b44
JG		 4620 priv->status &= ~(STATUS_ASSOCIATING |
4621 STATUS_AUTH |
4622 STATUS_ASSOCIATED);
43f66a6c 4623
a613bffd 4624 schedule_work(&priv->link_down);
0edd5b44 4625 break;
43f66a6c 4626
0edd5b44
JG		 4627 case CMAS_TX_AUTH_SEQ_1:
4628 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4629 IPW_DL_ASSOC, "AUTH_SEQ_1\n");
4630 break;
4631 case CMAS_RX_AUTH_SEQ_2:
4632 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4633 IPW_DL_ASSOC, "AUTH_SEQ_2\n");
4634 break;
4635 case CMAS_AUTH_SEQ_1_PASS:
4636 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4637 IPW_DL_ASSOC, "AUTH_SEQ_1_PASS\n");
4638 break;
4639 case CMAS_AUTH_SEQ_1_FAIL:
4640 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4641 IPW_DL_ASSOC, "AUTH_SEQ_1_FAIL\n");
4642 break;
4643 case CMAS_TX_AUTH_SEQ_3:
4644 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4645 IPW_DL_ASSOC, "AUTH_SEQ_3\n");
4646 break;
4647 case CMAS_RX_AUTH_SEQ_4:
4648 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4649 IPW_DL_ASSOC, "RX_AUTH_SEQ_4\n");
4650 break;
4651 case CMAS_AUTH_SEQ_2_PASS:
4652 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4653 IPW_DL_ASSOC, "AUTH_SEQ_2_PASS\n");
4654 break;
4655 case CMAS_AUTH_SEQ_2_FAIL:
4656 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4657 IPW_DL_ASSOC, "AUT_SEQ_2_FAIL\n");
4658 break;
4659 case CMAS_TX_ASSOC:
4660 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4661 IPW_DL_ASSOC, "TX_ASSOC\n");
4662 break;
4663 case CMAS_RX_ASSOC_RESP:
4664 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4665 IPW_DL_ASSOC, "RX_ASSOC_RESP\n");
b095c381 4666
0edd5b44
JG		 4667 break;
4668 case CMAS_ASSOCIATED:
4669 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE |
4670 IPW_DL_ASSOC, "ASSOCIATED\n");
4671 break;
4672 default:
4673 IPW_DEBUG_NOTIF("auth: failure - %d\n",
4674 auth->state);
4675 break;
43f66a6c 4676 }
43f66a6c
JK		 4677 break;
4678 }
4679
0edd5b44
JG		 4680 case HOST_NOTIFICATION_STATUS_SCAN_CHANNEL_RESULT:{
4681 struct notif_channel_result *x =
4682 &notif->u.channel_result;
43f66a6c 4683
e62e1ee0 4684 if (size == sizeof(*x)) {
0edd5b44
JG		 4685 IPW_DEBUG_SCAN("Scan result for channel %d\n",
4686 x->channel_num);
4687 } else {
4688 IPW_DEBUG_SCAN("Scan result of wrong size %d "
4689 "(should be %zd)\n",
e62e1ee0 4690 size, sizeof(*x));
bf79451e 4691 }
43f66a6c
JK		 4692 break;
4693 }
43f66a6c 4694
0edd5b44
JG		 4695 case HOST_NOTIFICATION_STATUS_SCAN_COMPLETED:{
4696 struct notif_scan_complete *x = &notif->u.scan_complete;
e62e1ee0 4697 if (size == sizeof(*x)) {
0edd5b44
JG		 4698 IPW_DEBUG_SCAN
4699 ("Scan completed: type %d, %d channels, "
4700 "%d status\n", x->scan_type,
4701 x->num_channels, x->status);
4702 } else {
4703 IPW_ERROR("Scan completed of wrong size %d "
4704 "(should be %zd)\n",
e62e1ee0 4705 size, sizeof(*x));
0edd5b44 4706 }
43f66a6c 4707
0edd5b44
JG		 4708 priv->status &=
4709 ~(STATUS_SCANNING | STATUS_SCAN_ABORTING);
4710
a0e04ab3 4711 wake_up_interruptible(&priv->wait_state);
0edd5b44
JG		 4712 cancel_delayed_work(&priv->scan_check);
4713
b095c381
JK		 4714 if (priv->status & STATUS_EXIT_PENDING)
4715 break;
4716
4717 priv->ieee->scans++;
4718
4719#ifdef CONFIG_IPW2200_MONITOR
4720 if (priv->ieee->iw_mode == IW_MODE_MONITOR) {
afbf30a2 4721 priv->status |= STATUS_SCAN_FORCED;
c4028958
DH		 4722 queue_delayed_work(priv->workqueue,
4723 &priv->request_scan, 0);
b095c381
JK		 4724 break;
4725 }
afbf30a2 4726 priv->status &= ~STATUS_SCAN_FORCED;
b095c381
JK		 4727#endif /* CONFIG_IPW2200_MONITOR */
4728
ea177305
DW		 4729 /* Do queued direct scans first */
4730 if (priv->status & STATUS_DIRECT_SCAN_PENDING) {
4731 queue_delayed_work(priv->workqueue,
4732 &priv->request_direct_scan, 0);
4733 }
4734
0edd5b44
JG		 4735 if (!(priv->status & (STATUS_ASSOCIATED |
4736 STATUS_ASSOCIATING |
4737 STATUS_ROAMING |
4738 STATUS_DISASSOCIATING)))
4739 queue_work(priv->workqueue, &priv->associate);
4740 else if (priv->status & STATUS_ROAMING) {
e7582561
BC		 4741 if (x->status == SCAN_COMPLETED_STATUS_COMPLETE)
4742 /* If a scan completed and we are in roam mode, then
4743 * the scan that completed was the one requested as a
4744 * result of entering roam... so, schedule the
4745 * roam work */
4746 queue_work(priv->workqueue,
4747 &priv->roam);
4748 else
4749 /* Don't schedule if we aborted the scan */
4750 priv->status &= ~STATUS_ROAMING;
0edd5b44 4751 } else if (priv->status & STATUS_SCAN_PENDING)
c4028958
DH		 4752 queue_delayed_work(priv->workqueue,
4753 &priv->request_scan, 0);
a613bffd
JK		 4754 else if (priv->config & CFG_BACKGROUND_SCAN
4755 && priv->status & STATUS_ASSOCIATED)
4756 queue_delayed_work(priv->workqueue,
1c9d5e41 4757 &priv->request_scan,
be84e3d6 4758 round_jiffies_relative(HZ));
07f02e46
ZY		 4759
4760 /* Send an empty event to user space.
4761 * We don't send the received data on the event because
4762 * it would require us to do complex transcoding, and
4763 * we want to minimise the work done in the irq handler
4764 * Use a request to extract the data.
4765 * Also, we generate this even for any scan, regardless
4766 * on how the scan was initiated. User space can just
4767 * sync on periodic scan to get fresh data...
4768 * Jean II */
0b531676
DW		 4769 if (x->status == SCAN_COMPLETED_STATUS_COMPLETE)
4770 handle_scan_event(priv);
0edd5b44 4771 break;
43f66a6c 4772 }
43f66a6c 4773
0edd5b44
JG		 4774 case HOST_NOTIFICATION_STATUS_FRAG_LENGTH:{
4775 struct notif_frag_length *x = &notif->u.frag_len;
43f66a6c 4776
e62e1ee0 4777 if (size == sizeof(*x))
a613bffd
JK		 4778 IPW_ERROR("Frag length: %d\n",
4779 le16_to_cpu(x->frag_length));
4780 else
0edd5b44
JG		 4781 IPW_ERROR("Frag length of wrong size %d "
4782 "(should be %zd)\n",
e62e1ee0 4783 size, sizeof(*x));
0edd5b44 4784 break;
43f66a6c 4785 }
43f66a6c 4786
0edd5b44
JG		 4787 case HOST_NOTIFICATION_STATUS_LINK_DETERIORATION:{
4788 struct notif_link_deterioration *x =
4789 &notif->u.link_deterioration;
afbf30a2 4790
e62e1ee0 4791 if (size == sizeof(*x)) {
0edd5b44 4792 IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE,
12977154
BC		 4793 "link deterioration: type %d, cnt %d\n",
4794 x->silence_notification_type,
4795 x->silence_count);
0edd5b44
JG		 4796 memcpy(&priv->last_link_deterioration, x,
4797 sizeof(*x));
4798 } else {
4799 IPW_ERROR("Link Deterioration of wrong size %d "
4800 "(should be %zd)\n",
e62e1ee0 4801 size, sizeof(*x));
0edd5b44 4802 }
43f66a6c
JK		 4803 break;
4804 }
4805
0edd5b44
JG		 4806 case HOST_NOTIFICATION_DINO_CONFIG_RESPONSE:{
4807 IPW_ERROR("Dino config\n");
4808 if (priv->hcmd
a613bffd 4809 && priv->hcmd->cmd != HOST_CMD_DINO_CONFIG)
0edd5b44 4810 IPW_ERROR("Unexpected DINO_CONFIG_RESPONSE\n");
a613bffd 4811
0edd5b44
JG		 4812 break;
4813 }
43f66a6c 4814
0edd5b44
JG		 4815 case HOST_NOTIFICATION_STATUS_BEACON_STATE:{
4816 struct notif_beacon_state *x = &notif->u.beacon_state;
e62e1ee0 4817 if (size != sizeof(*x)) {
0edd5b44
JG		 4818 IPW_ERROR
4819 ("Beacon state of wrong size %d (should "
e62e1ee0 4820 "be %zd)\n", size, sizeof(*x));
0edd5b44 4821 break;
43f66a6c
JK		 4822 }
4823
a613bffd
JK		 4824 if (le32_to_cpu(x->state) ==
4825 HOST_NOTIFICATION_STATUS_BEACON_MISSING)
4826 ipw_handle_missed_beacon(priv,
4827 le32_to_cpu(x->
4828 number));
43f66a6c 4829
0edd5b44
JG		 4830 break;
4831 }
43f66a6c 4832
0edd5b44
JG		 4833 case HOST_NOTIFICATION_STATUS_TGI_TX_KEY:{
4834 struct notif_tgi_tx_key *x = &notif->u.tgi_tx_key;
e62e1ee0 4835 if (size == sizeof(*x)) {
0edd5b44
JG		 4836 IPW_ERROR("TGi Tx Key: state 0x%02x sec type "
4837 "0x%02x station %d\n",
4838 x->key_state, x->security_type,
4839 x->station_index);
4840 break;
4841 }
43f66a6c 4842
0edd5b44
JG		 4843 IPW_ERROR
4844 ("TGi Tx Key of wrong size %d (should be %zd)\n",
e62e1ee0 4845 size, sizeof(*x));
43f66a6c 4846 break;
bf79451e 4847 }
43f66a6c 4848
0edd5b44
JG		 4849 case HOST_NOTIFICATION_CALIB_KEEP_RESULTS:{
4850 struct notif_calibration *x = &notif->u.calibration;
43f66a6c 4851
e62e1ee0 4852 if (size == sizeof(*x)) {
0edd5b44
JG		 4853 memcpy(&priv->calib, x, sizeof(*x));
4854 IPW_DEBUG_INFO("TODO: Calibration\n");
4855 break;
4856 }
43f66a6c 4857
0edd5b44
JG		 4858 IPW_ERROR
4859 ("Calibration of wrong size %d (should be %zd)\n",
e62e1ee0 4860 size, sizeof(*x));
43f66a6c 4861 break;
bf79451e
JG		 4862 }
4863
0edd5b44 4864 case HOST_NOTIFICATION_NOISE_STATS:{
e62e1ee0 4865 if (size == sizeof(u32)) {
00d21de5
ZY		 4866 priv->exp_avg_noise =
4867 exponential_average(priv->exp_avg_noise,
4868 (u8) (le32_to_cpu(notif->u.noise.value) & 0xff),
4869 DEPTH_NOISE);
0edd5b44
JG		 4870 break;
4871 }
43f66a6c 4872
0edd5b44
JG		 4873 IPW_ERROR
4874 ("Noise stat is wrong size %d (should be %zd)\n",
e62e1ee0 4875 size, sizeof(u32));
43f66a6c
JK		 4876 break;
4877 }
4878
43f66a6c 4879 default:
1dd31b6c
ZY		 4880 IPW_DEBUG_NOTIF("Unknown notification: "
4881 "subtype=%d,flags=0x%2x,size=%d\n",
e62e1ee0 4882 notif->subtype, notif->flags, size);
43f66a6c
JK		 4883 }
4884}
4885
4886/**
4887 * Destroys all DMA structures and initialise them again
bf79451e 4888 *
43f66a6c
JK		 4889 * @param priv
4890 * @return error code
4891 */
4892static int ipw_queue_reset(struct ipw_priv *priv)
4893{
4894 int rc = 0;
4895 /** @todo customize queue sizes */
4896 int nTx = 64, nTxCmd = 8;
4897 ipw_tx_queue_free(priv);
4898 /* Tx CMD queue */
4899 rc = ipw_queue_tx_init(priv, &priv->txq_cmd, nTxCmd,
b095c381
JK		 4900 IPW_TX_CMD_QUEUE_READ_INDEX,
4901 IPW_TX_CMD_QUEUE_WRITE_INDEX,
4902 IPW_TX_CMD_QUEUE_BD_BASE,
4903 IPW_TX_CMD_QUEUE_BD_SIZE);
43f66a6c
JK		 4904 if (rc) {
4905 IPW_ERROR("Tx Cmd queue init failed\n");
4906 goto error;
4907 }
4908 /* Tx queue(s) */
4909 rc = ipw_queue_tx_init(priv, &priv->txq[0], nTx,
b095c381
JK		 4910 IPW_TX_QUEUE_0_READ_INDEX,
4911 IPW_TX_QUEUE_0_WRITE_INDEX,
4912 IPW_TX_QUEUE_0_BD_BASE, IPW_TX_QUEUE_0_BD_SIZE);
43f66a6c
JK		 4913 if (rc) {
4914 IPW_ERROR("Tx 0 queue init failed\n");
4915 goto error;
4916 }
4917 rc = ipw_queue_tx_init(priv, &priv->txq[1], nTx,
b095c381
JK		 4918 IPW_TX_QUEUE_1_READ_INDEX,
4919 IPW_TX_QUEUE_1_WRITE_INDEX,
4920 IPW_TX_QUEUE_1_BD_BASE, IPW_TX_QUEUE_1_BD_SIZE);
43f66a6c
JK		 4921 if (rc) {
4922 IPW_ERROR("Tx 1 queue init failed\n");
4923 goto error;
4924 }
4925 rc = ipw_queue_tx_init(priv, &priv->txq[2], nTx,
b095c381
JK		 4926 IPW_TX_QUEUE_2_READ_INDEX,
4927 IPW_TX_QUEUE_2_WRITE_INDEX,
4928 IPW_TX_QUEUE_2_BD_BASE, IPW_TX_QUEUE_2_BD_SIZE);
43f66a6c
JK		 4929 if (rc) {
4930 IPW_ERROR("Tx 2 queue init failed\n");
4931 goto error;
4932 }
4933 rc = ipw_queue_tx_init(priv, &priv->txq[3], nTx,
b095c381
JK		 4934 IPW_TX_QUEUE_3_READ_INDEX,
4935 IPW_TX_QUEUE_3_WRITE_INDEX,
4936 IPW_TX_QUEUE_3_BD_BASE, IPW_TX_QUEUE_3_BD_SIZE);
43f66a6c
JK		 4937 if (rc) {
4938 IPW_ERROR("Tx 3 queue init failed\n");
4939 goto error;
4940 }
4941 /* statistics */
4942 priv->rx_bufs_min = 0;
4943 priv->rx_pend_max = 0;
4944 return rc;
4945
0edd5b44 4946 error:
43f66a6c
JK		 4947 ipw_tx_queue_free(priv);
4948 return rc;
4949}
4950
4951/**
4952 * Reclaim Tx queue entries no more used by NIC.
bf79451e 4953 *
8ff9d21e 4954 * When FW advances 'R' index, all entries between old and
43f66a6c
JK		 4955 * new 'R' index need to be reclaimed. As result, some free space
4956 * forms. If there is enough free space (> low mark), wake Tx queue.
bf79451e 4957 *
43f66a6c
JK		 4958 * @note Need to protect against garbage in 'R' index
4959 * @param priv
4960 * @param txq
4961 * @param qindex
4962 * @return Number of used entries remains in the queue
4963 */
bf79451e 4964static int ipw_queue_tx_reclaim(struct ipw_priv *priv,
43f66a6c
JK		 4965 struct clx2_tx_queue *txq, int qindex)
4966{
4967 u32 hw_tail;
4968 int used;
4969 struct clx2_queue *q = &txq->q;
4970
4971 hw_tail = ipw_read32(priv, q->reg_r);
4972 if (hw_tail >= q->n_bd) {
4973 IPW_ERROR
0edd5b44
JG		 4974 ("Read index for DMA queue (%d) is out of range [0-%d)\n",
4975 hw_tail, q->n_bd);
43f66a6c
JK		 4976 goto done;
4977 }
4978 for (; q->last_used != hw_tail;
4979 q->last_used = ipw_queue_inc_wrap(q->last_used, q->n_bd)) {
4980 ipw_queue_tx_free_tfd(priv, txq);
4981 priv->tx_packets++;
4982 }
0edd5b44 4983 done:
943dbef4 4984 if ((ipw_tx_queue_space(q) > q->low_mark) &&
521c4d96 4985 (qindex >= 0))
9ddf84f6 4986 netif_wake_queue(priv->net_dev);
43f66a6c
JK		 4987 used = q->first_empty - q->last_used;
4988 if (used < 0)
4989 used += q->n_bd;
4990
4991 return used;
4992}
4993
4994static int ipw_queue_tx_hcmd(struct ipw_priv *priv, int hcmd, void *buf,
4995 int len, int sync)
4996{
4997 struct clx2_tx_queue *txq = &priv->txq_cmd;
4998 struct clx2_queue *q = &txq->q;
4999 struct tfd_frame *tfd;
5000
943dbef4 5001 if (ipw_tx_queue_space(q) < (sync ? 1 : 2)) {
43f66a6c
JK		 5002 IPW_ERROR("No space for Tx\n");
5003 return -EBUSY;
5004 }
5005
5006 tfd = &txq->bd[q->first_empty];
5007 txq->txb[q->first_empty] = NULL;
5008
5009 memset(tfd, 0, sizeof(*tfd));
5010 tfd->control_flags.message_type = TX_HOST_COMMAND_TYPE;
5011 tfd->control_flags.control_bits = TFD_NEED_IRQ_MASK;
5012 priv->hcmd_seq++;
5013 tfd->u.cmd.index = hcmd;
5014 tfd->u.cmd.length = len;
5015 memcpy(tfd->u.cmd.payload, buf, len);
5016 q->first_empty = ipw_queue_inc_wrap(q->first_empty, q->n_bd);
5017 ipw_write32(priv, q->reg_w, q->first_empty);
5018 _ipw_read32(priv, 0x90);
5019
5020 return 0;
5021}
5022
bf79451e 5023/*
43f66a6c
JK		 5024 * Rx theory of operation
5025 *
5026 * The host allocates 32 DMA target addresses and passes the host address
b095c381 5027 * to the firmware at register IPW_RFDS_TABLE_LOWER + N * RFD_SIZE where N is
43f66a6c
JK		 5028 * 0 to 31
5029 *
5030 * Rx Queue Indexes
5031 * The host/firmware share two index registers for managing the Rx buffers.
5032 *
bf79451e
JG		 5033 * The READ index maps to the first position that the firmware may be writing
5034 * to -- the driver can read up to (but not including) this position and get
5035 * good data.
43f66a6c
JK		 5036 * The READ index is managed by the firmware once the card is enabled.
5037 *
5038 * The WRITE index maps to the last position the driver has read from -- the
5039 * position preceding WRITE is the last slot the firmware can place a packet.
5040 *
5041 * The queue is empty (no good data) if WRITE = READ - 1, and is full if
bf79451e 5042 * WRITE = READ.
43f66a6c 5043 *
bf79451e 5044 * During initialization the host sets up the READ queue position to the first
43f66a6c
JK		 5045 * INDEX position, and WRITE to the last (READ - 1 wrapped)
5046 *
5047 * When the firmware places a packet in a buffer it will advance the READ index
5048 * and fire the RX interrupt. The driver can then query the READ index and
5049 * process as many packets as possible, moving the WRITE index forward as it
5050 * resets the Rx queue buffers with new memory.
bf79451e 5051 *
43f66a6c 5052 * The management in the driver is as follows:
bf79451e 5053 * + A list of pre-allocated SKBs is stored in ipw->rxq->rx_free. When
43f66a6c 5054 * ipw->rxq->free_count drops to or below RX_LOW_WATERMARK, work is scheduled
bf79451e 5055 * to replensish the ipw->rxq->rx_free.
43f66a6c
JK		 5056 * + In ipw_rx_queue_replenish (scheduled) if 'processed' != 'read' then the
5057 * ipw->rxq is replenished and the READ INDEX is updated (updating the
5058 * 'processed' and 'read' driver indexes as well)
5059 * + A received packet is processed and handed to the kernel network stack,
5060 * detached from the ipw->rxq. The driver 'processed' index is updated.
5061 * + The Host/Firmware ipw->rxq is replenished at tasklet time from the rx_free
bf79451e
JG		 5062 * list. If there are no allocated buffers in ipw->rxq->rx_free, the READ
5063 * INDEX is not incremented and ipw->status(RX_STALLED) is set. If there
43f66a6c
JK		 5064 * were enough free buffers and RX_STALLED is set it is cleared.
5065 *
5066 *
5067 * Driver sequence:
5068 *
bf79451e 5069 * ipw_rx_queue_alloc() Allocates rx_free
43f66a6c
JK		 5070 * ipw_rx_queue_replenish() Replenishes rx_free list from rx_used, and calls
5071 * ipw_rx_queue_restock
5072 * ipw_rx_queue_restock() Moves available buffers from rx_free into Rx
5073 * queue, updates firmware pointers, and updates
5074 * the WRITE index. If insufficient rx_free buffers
5075 * are available, schedules ipw_rx_queue_replenish
5076 *
5077 * -- enable interrupts --
5078 * ISR - ipw_rx() Detach ipw_rx_mem_buffers from pool up to the
bf79451e 5079 * READ INDEX, detaching the SKB from the pool.
43f66a6c
JK		 5080 * Moves the packet buffer from queue to rx_used.
5081 * Calls ipw_rx_queue_restock to refill any empty
5082 * slots.
5083 * ...
5084 *
5085 */
5086
bf79451e 5087/*
43f66a6c
JK		 5088 * If there are slots in the RX queue that need to be restocked,
5089 * and we have free pre-allocated buffers, fill the ranks as much
5090 * as we can pulling from rx_free.
5091 *
5092 * This moves the 'write' index forward to catch up with 'processed', and
5093 * also updates the memory address in the firmware to reference the new
5094 * target buffer.
5095 */
5096static void ipw_rx_queue_restock(struct ipw_priv *priv)
5097{
5098 struct ipw_rx_queue *rxq = priv->rxq;
5099 struct list_head *element;
5100 struct ipw_rx_mem_buffer *rxb;
5101 unsigned long flags;
5102 int write;
5103
5104 spin_lock_irqsave(&rxq->lock, flags);
5105 write = rxq->write;
943dbef4 5106 while ((ipw_rx_queue_space(rxq) > 0) && (rxq->free_count)) {
43f66a6c
JK		 5107 element = rxq->rx_free.next;
5108 rxb = list_entry(element, struct ipw_rx_mem_buffer, list);
5109 list_del(element);
5110
b095c381 5111 ipw_write32(priv, IPW_RFDS_TABLE_LOWER + rxq->write * RFD_SIZE,
43f66a6c
JK		 5112 rxb->dma_addr);
5113 rxq->queue[rxq->write] = rxb;
5114 rxq->write = (rxq->write + 1) % RX_QUEUE_SIZE;
5115 rxq->free_count--;
5116 }
5117 spin_unlock_irqrestore(&rxq->lock, flags);
5118
bf79451e 5119 /* If the pre-allocated buffer pool is dropping low, schedule to
43f66a6c
JK		 5120 * refill it */
5121 if (rxq->free_count <= RX_LOW_WATERMARK)
5122 queue_work(priv->workqueue, &priv->rx_replenish);
5123
5124 /* If we've added more space for the firmware to place data, tell it */
bf79451e 5125 if (write != rxq->write)
b095c381 5126 ipw_write32(priv, IPW_RX_WRITE_INDEX, rxq->write);
43f66a6c
JK		 5127}
5128
5129/*
5130 * Move all used packet from rx_used to rx_free, allocating a new SKB for each.
bf79451e
JG		 5131 * Also restock the Rx queue via ipw_rx_queue_restock.
5132 *
43f66a6c
JK		 5133 * This is called as a scheduled work item (except for during intialization)
5134 */
5135static void ipw_rx_queue_replenish(void *data)
5136{
5137 struct ipw_priv *priv = data;
5138 struct ipw_rx_queue *rxq = priv->rxq;
5139 struct list_head *element;
5140 struct ipw_rx_mem_buffer *rxb;
5141 unsigned long flags;
5142
5143 spin_lock_irqsave(&rxq->lock, flags);
5144 while (!list_empty(&rxq->rx_used)) {
5145 element = rxq->rx_used.next;
5146 rxb = list_entry(element, struct ipw_rx_mem_buffer, list);
b095c381 5147 rxb->skb = alloc_skb(IPW_RX_BUF_SIZE, GFP_ATOMIC);
43f66a6c
JK		 5148 if (!rxb->skb) {
5149 printk(KERN_CRIT "%s: Can not allocate SKB buffers.\n",
5150 priv->net_dev->name);
5151 /* We don't reschedule replenish work here -- we will
5152 * call the restock method and if it still needs
5153 * more buffers it will schedule replenish */
5154 break;
5155 }
5156 list_del(element);
bf79451e 5157
0edd5b44
JG		 5158 rxb->dma_addr =
5159 pci_map_single(priv->pci_dev, rxb->skb->data,
b095c381 5160 IPW_RX_BUF_SIZE, PCI_DMA_FROMDEVICE);
bf79451e 5161
43f66a6c
JK		 5162 list_add_tail(&rxb->list, &rxq->rx_free);
5163 rxq->free_count++;
5164 }
5165 spin_unlock_irqrestore(&rxq->lock, flags);
5166
5167 ipw_rx_queue_restock(priv);
5168}
5169
c4028958 5170static void ipw_bg_rx_queue_replenish(struct work_struct *work)
c848d0af 5171{
c4028958
DH		 5172 struct ipw_priv *priv =
5173 container_of(work, struct ipw_priv, rx_replenish);
4644151b 5174 mutex_lock(&priv->mutex);
c4028958 5175 ipw_rx_queue_replenish(priv);
4644151b 5176 mutex_unlock(&priv->mutex);
c848d0af
JK		 5177}
5178
43f66a6c 5179/* Assumes that the skb field of the buffers in 'pool' is kept accurate.
c7b6a674 5180 * If an SKB has been detached, the POOL needs to have its SKB set to NULL
bf79451e 5181 * This free routine walks the list of POOL entries and if SKB is set to
43f66a6c
JK		 5182 * non NULL it is unmapped and freed
5183 */
0edd5b44 5184static void ipw_rx_queue_free(struct ipw_priv *priv, struct ipw_rx_queue *rxq)
43f66a6c
JK		 5185{
5186 int i;
5187
5188 if (!rxq)
5189 return;
bf79451e 5190
43f66a6c
JK		 5191 for (i = 0; i < RX_QUEUE_SIZE + RX_FREE_BUFFERS; i++) {
5192 if (rxq->pool[i].skb != NULL) {
5193 pci_unmap_single(priv->pci_dev, rxq->pool[i].dma_addr,
b095c381 5194 IPW_RX_BUF_SIZE, PCI_DMA_FROMDEVICE);
43f66a6c
JK		 5195 dev_kfree_skb(rxq->pool[i].skb);
5196 }
5197 }
5198
5199 kfree(rxq);
5200}
5201
5202static struct ipw_rx_queue *ipw_rx_queue_alloc(struct ipw_priv *priv)
5203{
5204 struct ipw_rx_queue *rxq;
5205 int i;
5206
c75f4742 5207 rxq = kzalloc(sizeof(*rxq), GFP_KERNEL);
ad18b0ea
PI		 5208 if (unlikely(!rxq)) {
5209 IPW_ERROR("memory allocation failed\n");
5210 return NULL;
5211 }
43f66a6c
JK		 5212 spin_lock_init(&rxq->lock);
5213 INIT_LIST_HEAD(&rxq->rx_free);
5214 INIT_LIST_HEAD(&rxq->rx_used);
5215
5216 /* Fill the rx_used queue with _all_ of the Rx buffers */
bf79451e 5217 for (i = 0; i < RX_FREE_BUFFERS + RX_QUEUE_SIZE; i++)
43f66a6c
JK		 5218 list_add_tail(&rxq->pool[i].list, &rxq->rx_used);
5219
5220 /* Set us so that we have processed and used all buffers, but have
5221 * not restocked the Rx queue with fresh buffers */
5222 rxq->read = rxq->write = 0;
43f66a6c
JK		 5223 rxq->free_count = 0;
5224
5225 return rxq;
5226}
5227
5228static int ipw_is_rate_in_mask(struct ipw_priv *priv, int ieee_mode, u8 rate)
5229{
5230 rate &= ~IEEE80211_BASIC_RATE_MASK;
5231 if (ieee_mode == IEEE_A) {
5232 switch (rate) {
bf79451e
JG		 5233 case IEEE80211_OFDM_RATE_6MB:
5234 return priv->rates_mask & IEEE80211_OFDM_RATE_6MB_MASK ?
0edd5b44 5235 1 : 0;
bf79451e
JG		 5236 case IEEE80211_OFDM_RATE_9MB:
5237 return priv->rates_mask & IEEE80211_OFDM_RATE_9MB_MASK ?
0edd5b44 5238 1 : 0;
bf79451e 5239 case IEEE80211_OFDM_RATE_12MB:
0edd5b44
JG		 5240 return priv->
5241 rates_mask & IEEE80211_OFDM_RATE_12MB_MASK ? 1 : 0;
bf79451e 5242 case IEEE80211_OFDM_RATE_18MB:
0edd5b44
JG		 5243 return priv->
5244 rates_mask & IEEE80211_OFDM_RATE_18MB_MASK ? 1 : 0;
bf79451e 5245 case IEEE80211_OFDM_RATE_24MB:
0edd5b44
JG		 5246 return priv->
5247 rates_mask & IEEE80211_OFDM_RATE_24MB_MASK ? 1 : 0;
bf79451e 5248 case IEEE80211_OFDM_RATE_36MB:
0edd5b44
JG		 5249 return priv->
5250 rates_mask & IEEE80211_OFDM_RATE_36MB_MASK ? 1 : 0;
bf79451e 5251 case IEEE80211_OFDM_RATE_48MB:
0edd5b44
JG		 5252 return priv->
5253 rates_mask & IEEE80211_OFDM_RATE_48MB_MASK ? 1 : 0;
bf79451e 5254 case IEEE80211_OFDM_RATE_54MB:
0edd5b44
JG		 5255 return priv->
5256 rates_mask & IEEE80211_OFDM_RATE_54MB_MASK ? 1 : 0;
43f66a6c
JK		 5257 default:
5258 return 0;
5259 }
5260 }
bf79451e 5261
43f66a6c
JK		 5262 /* B and G mixed */
5263 switch (rate) {
bf79451e 5264 case IEEE80211_CCK_RATE_1MB:
43f66a6c 5265 return priv->rates_mask & IEEE80211_CCK_RATE_1MB_MASK ? 1 : 0;
bf79451e 5266 case IEEE80211_CCK_RATE_2MB:
43f66a6c 5267 return priv->rates_mask & IEEE80211_CCK_RATE_2MB_MASK ? 1 : 0;
bf79451e 5268 case IEEE80211_CCK_RATE_5MB:
43f66a6c 5269 return priv->rates_mask & IEEE80211_CCK_RATE_5MB_MASK ? 1 : 0;
bf79451e 5270 case IEEE80211_CCK_RATE_11MB:
43f66a6c
JK		 5271 return priv->rates_mask & IEEE80211_CCK_RATE_11MB_MASK ? 1 : 0;
5272 }
5273
5274 /* If we are limited to B modulations, bail at this point */
5275 if (ieee_mode == IEEE_B)
5276 return 0;
5277
5278 /* G */
5279 switch (rate) {
bf79451e 5280 case IEEE80211_OFDM_RATE_6MB:
43f66a6c 5281 return priv->rates_mask & IEEE80211_OFDM_RATE_6MB_MASK ? 1 : 0;
bf79451e 5282 case IEEE80211_OFDM_RATE_9MB:
43f66a6c 5283 return priv->rates_mask & IEEE80211_OFDM_RATE_9MB_MASK ? 1 : 0;
bf79451e 5284 case IEEE80211_OFDM_RATE_12MB:
43f66a6c 5285 return priv->rates_mask & IEEE80211_OFDM_RATE_12MB_MASK ? 1 : 0;
bf79451e 5286 case IEEE80211_OFDM_RATE_18MB:
43f66a6c 5287 return priv->rates_mask & IEEE80211_OFDM_RATE_18MB_MASK ? 1 : 0;
bf79451e 5288 case IEEE80211_OFDM_RATE_24MB:
43f66a6c 5289 return priv->rates_mask & IEEE80211_OFDM_RATE_24MB_MASK ? 1 : 0;
bf79451e 5290 case IEEE80211_OFDM_RATE_36MB:
43f66a6c 5291 return priv->rates_mask & IEEE80211_OFDM_RATE_36MB_MASK ? 1 : 0;
bf79451e 5292 case IEEE80211_OFDM_RATE_48MB:
43f66a6c 5293 return priv->rates_mask & IEEE80211_OFDM_RATE_48MB_MASK ? 1 : 0;
bf79451e 5294 case IEEE80211_OFDM_RATE_54MB:
43f66a6c
JK		 5295 return priv->rates_mask & IEEE80211_OFDM_RATE_54MB_MASK ? 1 : 0;
5296 }
5297
5298 return 0;
5299}
5300
bf79451e 5301static int ipw_compatible_rates(struct ipw_priv *priv,
43f66a6c
JK		 5302 const struct ieee80211_network *network,
5303 struct ipw_supported_rates *rates)
5304{
5305 int num_rates, i;
5306
5307 memset(rates, 0, sizeof(*rates));
0edd5b44 5308 num_rates = min(network->rates_len, (u8) IPW_MAX_RATES);
43f66a6c
JK		 5309 rates->num_rates = 0;
5310 for (i = 0; i < num_rates; i++) {
a613bffd
JK		 5311 if (!ipw_is_rate_in_mask(priv, network->mode,
5312 network->rates[i])) {
5313
ea2b26e0 5314 if (network->rates[i] & IEEE80211_BASIC_RATE_MASK) {
a613bffd
JK		 5315 IPW_DEBUG_SCAN("Adding masked mandatory "
5316 "rate %02X\n",
5317 network->rates[i]);
5318 rates->supported_rates[rates->num_rates++] =
5319 network->rates[i];
5320 continue;
ea2b26e0
JK		 5321 }
5322
43f66a6c
JK		 5323 IPW_DEBUG_SCAN("Rate %02X masked : 0x%08X\n",
5324 network->rates[i], priv->rates_mask);
5325 continue;
5326 }
bf79451e 5327
43f66a6c
JK		 5328 rates->supported_rates[rates->num_rates++] = network->rates[i];
5329 }
5330
a613bffd
JK		 5331 num_rates = min(network->rates_ex_len,
5332 (u8) (IPW_MAX_RATES - num_rates));
43f66a6c 5333 for (i = 0; i < num_rates; i++) {
a613bffd
JK		 5334 if (!ipw_is_rate_in_mask(priv, network->mode,
5335 network->rates_ex[i])) {
ea2b26e0 5336 if (network->rates_ex[i] & IEEE80211_BASIC_RATE_MASK) {
a613bffd
JK		 5337 IPW_DEBUG_SCAN("Adding masked mandatory "
5338 "rate %02X\n",
5339 network->rates_ex[i]);
5340 rates->supported_rates[rates->num_rates++] =
5341 network->rates[i];
5342 continue;
ea2b26e0
JK		 5343 }
5344
43f66a6c
JK		 5345 IPW_DEBUG_SCAN("Rate %02X masked : 0x%08X\n",
5346 network->rates_ex[i], priv->rates_mask);
5347 continue;
5348 }
bf79451e 5349
0edd5b44
JG		 5350 rates->supported_rates[rates->num_rates++] =
5351 network->rates_ex[i];
43f66a6c
JK		 5352 }
5353
ea2b26e0 5354 return 1;
43f66a6c
JK		 5355}
5356
858119e1 5357static void ipw_copy_rates(struct ipw_supported_rates *dest,
43f66a6c
JK		 5358 const struct ipw_supported_rates *src)
5359{
5360 u8 i;
5361 for (i = 0; i < src->num_rates; i++)
5362 dest->supported_rates[i] = src->supported_rates[i];
5363 dest->num_rates = src->num_rates;
5364}
5365
5366/* TODO: Look at sniffed packets in the air to determine if the basic rate
5367 * mask should ever be used -- right now all callers to add the scan rates are
5368 * set with the modulation = CCK, so BASIC_RATE_MASK is never set... */
5369static void ipw_add_cck_scan_rates(struct ipw_supported_rates *rates,
0edd5b44 5370 u8 modulation, u32 rate_mask)
43f66a6c 5371{
bf79451e 5372 u8 basic_mask = (IEEE80211_OFDM_MODULATION == modulation) ?
0edd5b44 5373 IEEE80211_BASIC_RATE_MASK : 0;
bf79451e 5374
43f66a6c 5375 if (rate_mask & IEEE80211_CCK_RATE_1MB_MASK)
bf79451e 5376 rates->supported_rates[rates->num_rates++] =
0edd5b44 5377 IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_1MB;
43f66a6c
JK		 5378
5379 if (rate_mask & IEEE80211_CCK_RATE_2MB_MASK)
bf79451e 5380 rates->supported_rates[rates->num_rates++] =
0edd5b44 5381 IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_2MB;
43f66a6c
JK		 5382
5383 if (rate_mask & IEEE80211_CCK_RATE_5MB_MASK)
bf79451e 5384 rates->supported_rates[rates->num_rates++] = basic_mask |
0edd5b44 5385 IEEE80211_CCK_RATE_5MB;
43f66a6c
JK		 5386
5387 if (rate_mask & IEEE80211_CCK_RATE_11MB_MASK)
bf79451e 5388 rates->supported_rates[rates->num_rates++] = basic_mask |
0edd5b44 5389 IEEE80211_CCK_RATE_11MB;
43f66a6c
JK		 5390}
5391
5392static void ipw_add_ofdm_scan_rates(struct ipw_supported_rates *rates,
0edd5b44 5393 u8 modulation, u32 rate_mask)
43f66a6c 5394{
bf79451e 5395 u8 basic_mask = (IEEE80211_OFDM_MODULATION == modulation) ?
0edd5b44 5396 IEEE80211_BASIC_RATE_MASK : 0;
43f66a6c
JK		 5397
5398 if (rate_mask & IEEE80211_OFDM_RATE_6MB_MASK)
bf79451e 5399 rates->supported_rates[rates->num_rates++] = basic_mask |
0edd5b44 5400 IEEE80211_OFDM_RATE_6MB;
43f66a6c
JK		 5401
5402 if (rate_mask & IEEE80211_OFDM_RATE_9MB_MASK)
bf79451e 5403 rates->supported_rates[rates->num_rates++] =
0edd5b44 5404 IEEE80211_OFDM_RATE_9MB;
43f66a6c
JK		 5405
5406 if (rate_mask & IEEE80211_OFDM_RATE_12MB_MASK)
bf79451e 5407 rates->supported_rates[rates->num_rates++] = basic_mask |
0edd5b44 5408 IEEE80211_OFDM_RATE_12MB;
43f66a6c
JK		 5409
5410 if (rate_mask & IEEE80211_OFDM_RATE_18MB_MASK)
bf79451e 5411 rates->supported_rates[rates->num_rates++] =
0edd5b44 5412 IEEE80211_OFDM_RATE_18MB;
43f66a6c
JK		 5413
5414 if (rate_mask & IEEE80211_OFDM_RATE_24MB_MASK)
bf79451e 5415 rates->supported_rates[rates->num_rates++] = basic_mask |
0edd5b44 5416 IEEE80211_OFDM_RATE_24MB;
43f66a6c
JK		 5417
5418 if (rate_mask & IEEE80211_OFDM_RATE_36MB_MASK)
bf79451e 5419 rates->supported_rates[rates->num_rates++] =
0edd5b44 5420 IEEE80211_OFDM_RATE_36MB;
43f66a6c
JK		 5421
5422 if (rate_mask & IEEE80211_OFDM_RATE_48MB_MASK)
bf79451e 5423 rates->supported_rates[rates->num_rates++] =
0edd5b44 5424 IEEE80211_OFDM_RATE_48MB;
43f66a6c
JK		 5425
5426 if (rate_mask & IEEE80211_OFDM_RATE_54MB_MASK)
bf79451e 5427 rates->supported_rates[rates->num_rates++] =
0edd5b44 5428 IEEE80211_OFDM_RATE_54MB;
43f66a6c
JK		 5429}
5430
5431struct ipw_network_match {
5432 struct ieee80211_network *network;
5433 struct ipw_supported_rates rates;
5434};
5435
c848d0af
JK		 5436static int ipw_find_adhoc_network(struct ipw_priv *priv,
5437 struct ipw_network_match *match,
5438 struct ieee80211_network *network,
5439 int roaming)
43f66a6c
JK		 5440{
5441 struct ipw_supported_rates rates;
9387b7ca 5442 DECLARE_SSID_BUF(ssid);
43f66a6c
JK		 5443
5444 /* Verify that this network's capability is compatible with the
5445 * current mode (AdHoc or Infrastructure) */
c848d0af 5446 if ((priv->ieee->iw_mode == IW_MODE_ADHOC &&
43f66a6c 5447 !(network->capability & WLAN_CAPABILITY_IBSS))) {
e174961c 5448 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded due to "
bf79451e 5449 "capability mismatch.\n",
9387b7ca
JL		 5450 print_ssid(ssid, network->ssid,
5451 network->ssid_len),
e174961c 5452 network->bssid);
43f66a6c
JK		 5453 return 0;
5454 }
5455
43f66a6c
JK		 5456 if (unlikely(roaming)) {
5457 /* If we are roaming, then ensure check if this is a valid
5458 * network to try and roam to */
5459 if ((network->ssid_len != match->network->ssid_len) ||
bf79451e 5460 memcmp(network->ssid, match->network->ssid,
43f66a6c 5461 network->ssid_len)) {
e174961c 5462 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
43f66a6c 5463 "because of non-network ESSID.\n",
9387b7ca
JL		 5464 print_ssid(ssid, network->ssid,
5465 network->ssid_len),
e174961c 5466 network->bssid);
43f66a6c
JK		 5467 return 0;
5468 }
5469 } else {
bf79451e
JG		 5470 /* If an ESSID has been configured then compare the broadcast
5471 * ESSID to ours */
5472 if ((priv->config & CFG_STATIC_ESSID) &&
43f66a6c 5473 ((network->ssid_len != priv->essid_len) ||
bf79451e 5474 memcmp(network->ssid, priv->essid,
43f66a6c
JK		 5475 min(network->ssid_len, priv->essid_len)))) {
5476 char escaped[IW_ESSID_MAX_SIZE * 2 + 1];
afbf30a2 5477
0edd5b44 5478 strncpy(escaped,
9387b7ca
JL		 5479 print_ssid(ssid, network->ssid,
5480 network->ssid_len),
43f66a6c 5481 sizeof(escaped));
e174961c 5482 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
bf79451e 5483 "because of ESSID mismatch: '%s'.\n",
e174961c 5484 escaped, network->bssid,
9387b7ca
JL		 5485 print_ssid(ssid, priv->essid,
5486 priv->essid_len));
43f66a6c
JK		 5487 return 0;
5488 }
5489 }
5490
5491 /* If the old network rate is better than this one, don't bother
5492 * testing everything else. */
c848d0af
JK		 5493
5494 if (network->time_stamp[0] < match->network->time_stamp[0]) {
afbf30a2
JK		 5495 IPW_DEBUG_MERGE("Network '%s excluded because newer than "
5496 "current network.\n",
9387b7ca
JL		 5497 print_ssid(ssid, match->network->ssid,
5498 match->network->ssid_len));
43f66a6c 5499 return 0;
c848d0af 5500 } else if (network->time_stamp[1] < match->network->time_stamp[1]) {
afbf30a2
JK		 5501 IPW_DEBUG_MERGE("Network '%s excluded because newer than "
5502 "current network.\n",
9387b7ca
JL		 5503 print_ssid(ssid, match->network->ssid,
5504 match->network->ssid_len));
43f66a6c
JK		 5505 return 0;
5506 }
5507
5508 /* Now go through and see if the requested network is valid... */
bf79451e 5509 if (priv->ieee->scan_age != 0 &&
c848d0af 5510 time_after(jiffies, network->last_scanned + priv->ieee->scan_age)) {
e174961c 5511 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
c7b6a674 5512 "because of age: %ums.\n",
9387b7ca
JL		 5513 print_ssid(ssid, network->ssid,
5514 network->ssid_len),
e174961c 5515 network->bssid,
2638bc39
ZY		 5516 jiffies_to_msecs(jiffies -
5517 network->last_scanned));
43f66a6c 5518 return 0;
bf79451e 5519 }
43f66a6c 5520
bf79451e 5521 if ((priv->config & CFG_STATIC_CHANNEL) &&
43f66a6c 5522 (network->channel != priv->channel)) {
e174961c 5523 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
43f66a6c 5524 "because of channel mismatch: %d != %d.\n",
9387b7ca
JL		 5525 print_ssid(ssid, network->ssid,
5526 network->ssid_len),
e174961c 5527 network->bssid,
43f66a6c
JK		 5528 network->channel, priv->channel);
5529 return 0;
5530 }
bf79451e 5531
43f66a6c 5532 /* Verify privacy compatability */
bf79451e 5533 if (((priv->capability & CAP_PRIVACY_ON) ? 1 : 0) !=
43f66a6c 5534 ((network->capability & WLAN_CAPABILITY_PRIVACY) ? 1 : 0)) {
e174961c 5535 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
43f66a6c 5536 "because of privacy mismatch: %s != %s.\n",
9387b7ca
JL		 5537 print_ssid(ssid, network->ssid,
5538 network->ssid_len),
e174961c 5539 network->bssid,
afbf30a2
JK		 5540 priv->
5541 capability & CAP_PRIVACY_ON ? "on" : "off",
5542 network->
5543 capability & WLAN_CAPABILITY_PRIVACY ? "on" :
5544 "off");
43f66a6c
JK		 5545 return 0;
5546 }
bf79451e 5547
c848d0af 5548 if (!memcmp(network->bssid, priv->bssid, ETH_ALEN)) {
e174961c
JB		 5549 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
5550 "because of the same BSSID match: %pM"
9387b7ca
JL		 5551 ".\n", print_ssid(ssid, network->ssid,
5552 network->ssid_len),
e174961c
JB		 5553 network->bssid,
5554 priv->bssid);
43f66a6c
JK		 5555 return 0;
5556 }
bf79451e 5557
43f66a6c
JK		 5558 /* Filter out any incompatible freq / mode combinations */
5559 if (!ieee80211_is_valid_mode(priv->ieee, network->mode)) {
e174961c 5560 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
43f66a6c
JK		 5561 "because of invalid frequency/mode "
5562 "combination.\n",
9387b7ca
JL		 5563 print_ssid(ssid, network->ssid,
5564 network->ssid_len),
e174961c 5565 network->bssid);
43f66a6c
JK		 5566 return 0;
5567 }
bf79451e 5568
c848d0af
JK		 5569 /* Ensure that the rates supported by the driver are compatible with
5570 * this AP, including verification of basic rates (mandatory) */
5571 if (!ipw_compatible_rates(priv, network, &rates)) {
e174961c 5572 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
c848d0af
JK		 5573 "because configured rate mask excludes "
5574 "AP mandatory rate.\n",
9387b7ca
JL		 5575 print_ssid(ssid, network->ssid,
5576 network->ssid_len),
e174961c 5577 network->bssid);
c848d0af
JK		 5578 return 0;
5579 }
5580
43f66a6c 5581 if (rates.num_rates == 0) {
e174961c 5582 IPW_DEBUG_MERGE("Network '%s (%pM)' excluded "
43f66a6c 5583 "because of no compatible rates.\n",
9387b7ca
JL		 5584 print_ssid(ssid, network->ssid,
5585 network->ssid_len),
e174961c 5586 network->bssid);
43f66a6c
JK		 5587 return 0;
5588 }
bf79451e 5589
43f66a6c
JK		 5590 /* TODO: Perform any further minimal comparititive tests. We do not
5591 * want to put too much policy logic here; intelligent scan selection
5592 * should occur within a generic IEEE 802.11 user space tool. */
5593
5594 /* Set up 'new' AP to this network */
5595 ipw_copy_rates(&match->rates, &rates);
5596 match->network = network;
e174961c 5597 IPW_DEBUG_MERGE("Network '%s (%pM)' is a viable match.\n",
9387b7ca 5598 print_ssid(ssid, network->ssid, network->ssid_len),
e174961c 5599 network->bssid);
43f66a6c
JK		 5600
5601 return 1;
5602}
5603
c4028958 5604static void ipw_merge_adhoc_network(struct work_struct *work)
43f66a6c 5605{
9387b7ca 5606 DECLARE_SSID_BUF(ssid);
c4028958
DH		 5607 struct ipw_priv *priv =
5608 container_of(work, struct ipw_priv, merge_networks);
c848d0af
JK		 5609 struct ieee80211_network *network = NULL;
5610 struct ipw_network_match match = {
5611 .network = priv->assoc_network
5612 };
5613
afbf30a2
JK		 5614 if ((priv->status & STATUS_ASSOCIATED) &&
5615 (priv->ieee->iw_mode == IW_MODE_ADHOC)) {
c848d0af
JK		 5616 /* First pass through ROAM process -- look for a better
5617 * network */
5618 unsigned long flags;
5619
5620 spin_lock_irqsave(&priv->ieee->lock, flags);
5621 list_for_each_entry(network, &priv->ieee->network_list, list) {
5622 if (network != priv->assoc_network)
5623 ipw_find_adhoc_network(priv, &match, network,
5624 1);
5625 }
5626 spin_unlock_irqrestore(&priv->ieee->lock, flags);
5627
5628 if (match.network == priv->assoc_network) {
5629 IPW_DEBUG_MERGE("No better ADHOC in this network to "
5630 "merge to.\n");
5631 return;
5632 }
5633
4644151b 5634 mutex_lock(&priv->mutex);
c848d0af
JK		 5635 if ((priv->ieee->iw_mode == IW_MODE_ADHOC)) {
5636 IPW_DEBUG_MERGE("remove network %s\n",
9387b7ca
JL		 5637 print_ssid(ssid, priv->essid,
5638 priv->essid_len));
c848d0af 5639 ipw_remove_current_network(priv);
43f66a6c 5640 }
c848d0af
JK		 5641
5642 ipw_disassociate(priv);
5643 priv->assoc_network = match.network;
4644151b 5644 mutex_unlock(&priv->mutex);
c848d0af 5645 return;
43f66a6c 5646 }
c848d0af 5647}
43f66a6c 5648
0edd5b44
JG		 5649static int ipw_best_network(struct ipw_priv *priv,
5650 struct ipw_network_match *match,
5651 struct ieee80211_network *network, int roaming)
43f66a6c
JK		 5652{
5653 struct ipw_supported_rates rates;
9387b7ca 5654 DECLARE_SSID_BUF(ssid);
43f66a6c
JK		 5655
5656 /* Verify that this network's capability is compatible with the
5657 * current mode (AdHoc or Infrastructure) */
5658 if ((priv->ieee->iw_mode == IW_MODE_INFRA &&
2474385e 5659 !(network->capability & WLAN_CAPABILITY_ESS)) ||
43f66a6c
JK		 5660 (priv->ieee->iw_mode == IW_MODE_ADHOC &&
5661 !(network->capability & WLAN_CAPABILITY_IBSS))) {
e174961c 5662 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded due to "
bf79451e 5663 "capability mismatch.\n",
9387b7ca
JL		 5664 print_ssid(ssid, network->ssid,
5665 network->ssid_len),
e174961c 5666 network->bssid);
43f66a6c
JK		 5667 return 0;
5668 }
5669
43f66a6c
JK		 5670 if (unlikely(roaming)) {
5671 /* If we are roaming, then ensure check if this is a valid
5672 * network to try and roam to */
5673 if ((network->ssid_len != match->network->ssid_len) ||
bf79451e 5674 memcmp(network->ssid, match->network->ssid,
43f66a6c 5675 network->ssid_len)) {
e174961c 5676 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
43f66a6c 5677 "because of non-network ESSID.\n",
9387b7ca
JL		 5678 print_ssid(ssid, network->ssid,
5679 network->ssid_len),
e174961c 5680 network->bssid);
43f66a6c
JK		 5681 return 0;
5682 }
5683 } else {
bf79451e
JG		 5684 /* If an ESSID has been configured then compare the broadcast
5685 * ESSID to ours */
5686 if ((priv->config & CFG_STATIC_ESSID) &&
43f66a6c 5687 ((network->ssid_len != priv->essid_len) ||
bf79451e 5688 memcmp(network->ssid, priv->essid,
43f66a6c
JK		 5689 min(network->ssid_len, priv->essid_len)))) {
5690 char escaped[IW_ESSID_MAX_SIZE * 2 + 1];
0edd5b44 5691 strncpy(escaped,
9387b7ca
JL		 5692 print_ssid(ssid, network->ssid,
5693 network->ssid_len),
43f66a6c 5694 sizeof(escaped));
e174961c 5695 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
bf79451e 5696 "because of ESSID mismatch: '%s'.\n",
e174961c 5697 escaped, network->bssid,
9387b7ca
JL		 5698 print_ssid(ssid, priv->essid,
5699 priv->essid_len));
43f66a6c
JK		 5700 return 0;
5701 }
5702 }
5703
5704 /* If the old network rate is better than this one, don't bother
5705 * testing everything else. */
0edd5b44 5706 if (match->network && match->network->stats.rssi > network->stats.rssi) {
43f66a6c 5707 char escaped[IW_ESSID_MAX_SIZE * 2 + 1];
bf79451e 5708 strncpy(escaped,
9387b7ca 5709 print_ssid(ssid, network->ssid, network->ssid_len),
43f66a6c 5710 sizeof(escaped));
e174961c
JB		 5711 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded because "
5712 "'%s (%pM)' has a stronger signal.\n",
5713 escaped, network->bssid,
9387b7ca
JL		 5714 print_ssid(ssid, match->network->ssid,
5715 match->network->ssid_len),
e174961c 5716 match->network->bssid);
43f66a6c
JK		 5717 return 0;
5718 }
bf79451e 5719
43f66a6c
JK		 5720 /* If this network has already had an association attempt within the
5721 * last 3 seconds, do not try and associate again... */
5722 if (network->last_associate &&
ea2b26e0 5723 time_after(network->last_associate + (HZ * 3UL), jiffies)) {
e174961c 5724 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
c7b6a674 5725 "because of storming (%ums since last "
43f66a6c 5726 "assoc attempt).\n",
9387b7ca
JL		 5727 print_ssid(ssid, network->ssid,
5728 network->ssid_len),
e174961c 5729 network->bssid,
2638bc39
ZY		 5730 jiffies_to_msecs(jiffies -
5731 network->last_associate));
43f66a6c
JK		 5732 return 0;
5733 }
5734
5735 /* Now go through and see if the requested network is valid... */
bf79451e 5736 if (priv->ieee->scan_age != 0 &&
ea2b26e0 5737 time_after(jiffies, network->last_scanned + priv->ieee->scan_age)) {
e174961c 5738 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
c7b6a674 5739 "because of age: %ums.\n",
9387b7ca
JL		 5740 print_ssid(ssid, network->ssid,
5741 network->ssid_len),
e174961c 5742 network->bssid,
2638bc39
ZY		 5743 jiffies_to_msecs(jiffies -
5744 network->last_scanned));
43f66a6c 5745 return 0;
bf79451e 5746 }
43f66a6c 5747
bf79451e 5748 if ((priv->config & CFG_STATIC_CHANNEL) &&
43f66a6c 5749 (network->channel != priv->channel)) {
e174961c 5750 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
43f66a6c 5751 "because of channel mismatch: %d != %d.\n",
9387b7ca
JL		 5752 print_ssid(ssid, network->ssid,
5753 network->ssid_len),
e174961c 5754 network->bssid,
43f66a6c
JK		 5755 network->channel, priv->channel);
5756 return 0;
5757 }
bf79451e 5758
43f66a6c 5759 /* Verify privacy compatability */
bf79451e 5760 if (((priv->capability & CAP_PRIVACY_ON) ? 1 : 0) !=
43f66a6c 5761 ((network->capability & WLAN_CAPABILITY_PRIVACY) ? 1 : 0)) {
e174961c 5762 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
43f66a6c 5763 "because of privacy mismatch: %s != %s.\n",
9387b7ca
JL		 5764 print_ssid(ssid, network->ssid,
5765 network->ssid_len),
e174961c 5766 network->bssid,
bf79451e 5767 priv->capability & CAP_PRIVACY_ON ? "on" :
43f66a6c 5768 "off",
bf79451e 5769 network->capability &
0edd5b44 5770 WLAN_CAPABILITY_PRIVACY ? "on" : "off");
43f66a6c
JK		 5771 return 0;
5772 }
bf79451e
JG		 5773
5774 if ((priv->config & CFG_STATIC_BSSID) &&
43f66a6c 5775 memcmp(network->bssid, priv->bssid, ETH_ALEN)) {
e174961c
JB		 5776 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
5777 "because of BSSID mismatch: %pM.\n",
9387b7ca
JL		 5778 print_ssid(ssid, network->ssid,
5779 network->ssid_len),
e174961c 5780 network->bssid, priv->bssid);
43f66a6c
JK		 5781 return 0;
5782 }
bf79451e 5783
43f66a6c
JK		 5784 /* Filter out any incompatible freq / mode combinations */
5785 if (!ieee80211_is_valid_mode(priv->ieee, network->mode)) {
e174961c 5786 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
43f66a6c
JK		 5787 "because of invalid frequency/mode "
5788 "combination.\n",
9387b7ca
JL		 5789 print_ssid(ssid, network->ssid,
5790 network->ssid_len),
e174961c 5791 network->bssid);
43f66a6c
JK		 5792 return 0;
5793 }
bf79451e 5794
1fe0adb4 5795 /* Filter out invalid channel in current GEO */
1867b117 5796 if (!ieee80211_is_valid_channel(priv->ieee, network->channel)) {
e174961c 5797 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
1fe0adb4 5798 "because of invalid channel in current GEO\n",
9387b7ca
JL		 5799 print_ssid(ssid, network->ssid,
5800 network->ssid_len),
e174961c 5801 network->bssid);
1fe0adb4
LH		 5802 return 0;
5803 }
5804
ea2b26e0
JK		 5805 /* Ensure that the rates supported by the driver are compatible with
5806 * this AP, including verification of basic rates (mandatory) */
5807 if (!ipw_compatible_rates(priv, network, &rates)) {
e174961c 5808 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
ea2b26e0
JK		 5809 "because configured rate mask excludes "
5810 "AP mandatory rate.\n",
9387b7ca
JL		 5811 print_ssid(ssid, network->ssid,
5812 network->ssid_len),
e174961c 5813 network->bssid);
ea2b26e0
JK		 5814 return 0;
5815 }
5816
43f66a6c 5817 if (rates.num_rates == 0) {
e174961c 5818 IPW_DEBUG_ASSOC("Network '%s (%pM)' excluded "
43f66a6c 5819 "because of no compatible rates.\n",
9387b7ca
JL		 5820 print_ssid(ssid, network->ssid,
5821 network->ssid_len),
e174961c 5822 network->bssid);
43f66a6c
JK		 5823 return 0;
5824 }
bf79451e 5825
43f66a6c
JK		 5826 /* TODO: Perform any further minimal comparititive tests. We do not
5827 * want to put too much policy logic here; intelligent scan selection
5828 * should occur within a generic IEEE 802.11 user space tool. */
5829
5830 /* Set up 'new' AP to this network */
5831 ipw_copy_rates(&match->rates, &rates);
5832 match->network = network;
5833
e174961c 5834 IPW_DEBUG_ASSOC("Network '%s (%pM)' is a viable match.\n",
9387b7ca 5835 print_ssid(ssid, network->ssid, network->ssid_len),
e174961c 5836 network->bssid);
43f66a6c
JK		 5837
5838 return 1;
5839}
5840
bf79451e 5841static void ipw_adhoc_create(struct ipw_priv *priv,
0edd5b44 5842 struct ieee80211_network *network)
43f66a6c 5843{
1867b117 5844 const struct ieee80211_geo *geo = ieee80211_get_geo(priv->ieee);
afbf30a2
JK		 5845 int i;
5846
43f66a6c
JK		 5847 /*
5848 * For the purposes of scanning, we can set our wireless mode
5849 * to trigger scans across combinations of bands, but when it
5850 * comes to creating a new ad-hoc network, we have tell the FW
5851 * exactly which band to use.
5852 *
bf79451e 5853 * We also have the possibility of an invalid channel for the
43f66a6c
JK		 5854 * chossen band. Attempting to create a new ad-hoc network
5855 * with an invalid channel for wireless mode will trigger a
5856 * FW fatal error.
afbf30a2 5857 *
43f66a6c 5858 */
1867b117 5859 switch (ieee80211_is_valid_channel(priv->ieee, priv->channel)) {
afbf30a2
JK		 5860 case IEEE80211_52GHZ_BAND:
5861 network->mode = IEEE_A;
1867b117 5862 i = ieee80211_channel_to_index(priv->ieee, priv->channel);
5d9428de 5863 BUG_ON(i == -1);
afbf30a2
JK		 5864 if (geo->a[i].flags & IEEE80211_CH_PASSIVE_ONLY) {
5865 IPW_WARNING("Overriding invalid channel\n");
5866 priv->channel = geo->a[0].channel;
5867 }
5868 break;
5869
5870 case IEEE80211_24GHZ_BAND:
5871 if (priv->ieee->mode & IEEE_G)
5872 network->mode = IEEE_G;
5873 else
5874 network->mode = IEEE_B;
1867b117 5875 i = ieee80211_channel_to_index(priv->ieee, priv->channel);
5d9428de 5876 BUG_ON(i == -1);
1fe0adb4
LH		 5877 if (geo->bg[i].flags & IEEE80211_CH_PASSIVE_ONLY) {
5878 IPW_WARNING("Overriding invalid channel\n");
5879 priv->channel = geo->bg[0].channel;
5880 }
afbf30a2
JK		 5881 break;
5882
5883 default:
43f66a6c
JK		 5884 IPW_WARNING("Overriding invalid channel\n");
5885 if (priv->ieee->mode & IEEE_A) {
5886 network->mode = IEEE_A;
b095c381 5887 priv->channel = geo->a[0].channel;
43f66a6c
JK		 5888 } else if (priv->ieee->mode & IEEE_G) {
5889 network->mode = IEEE_G;
b095c381 5890 priv->channel = geo->bg[0].channel;
43f66a6c
JK		 5891 } else {
5892 network->mode = IEEE_B;
b095c381 5893 priv->channel = geo->bg[0].channel;
43f66a6c 5894 }
afbf30a2
JK		 5895 break;
5896 }
43f66a6c
JK		 5897
5898 network->channel = priv->channel;
5899 priv->config |= CFG_ADHOC_PERSIST;
5900 ipw_create_bssid(priv, network->bssid);
5901 network->ssid_len = priv->essid_len;
5902 memcpy(network->ssid, priv->essid, priv->essid_len);
5903 memset(&network->stats, 0, sizeof(network->stats));
5904 network->capability = WLAN_CAPABILITY_IBSS;
ea2b26e0
JK		 5905 if (!(priv->config & CFG_PREAMBLE_LONG))
5906 network->capability |= WLAN_CAPABILITY_SHORT_PREAMBLE;
43f66a6c
JK		 5907 if (priv->capability & CAP_PRIVACY_ON)
5908 network->capability |= WLAN_CAPABILITY_PRIVACY;
5909 network->rates_len = min(priv->rates.num_rates, MAX_RATES_LENGTH);
0edd5b44 5910 memcpy(network->rates, priv->rates.supported_rates, network->rates_len);
43f66a6c 5911 network->rates_ex_len = priv->rates.num_rates - network->rates_len;
bf79451e 5912 memcpy(network->rates_ex,
43f66a6c
JK		 5913 &priv->rates.supported_rates[network->rates_len],
5914 network->rates_ex_len);
5915 network->last_scanned = 0;
5916 network->flags = 0;
5917 network->last_associate = 0;
5918 network->time_stamp[0] = 0;
5919 network->time_stamp[1] = 0;
0edd5b44
JG		 5920 network->beacon_interval = 100; /* Default */
5921 network->listen_interval = 10; /* Default */
5922 network->atim_window = 0; /* Default */
43f66a6c
JK		 5923 network->wpa_ie_len = 0;
5924 network->rsn_ie_len = 0;
43f66a6c
JK		 5925}
5926
b095c381
JK		 5927static void ipw_send_tgi_tx_key(struct ipw_priv *priv, int type, int index)
5928{
0a7bcf26 5929 struct ipw_tgi_tx_key key;
b095c381
JK		 5930
5931 if (!(priv->ieee->sec.flags & (1 << index)))
5932 return;
5933
0a7bcf26
ZY		 5934 key.key_id = index;
5935 memcpy(key.key, priv->ieee->sec.keys[index], SCM_TEMPORAL_KEY_LENGTH);
5936 key.security_type = type;
5937 key.station_index = 0; /* always 0 for BSS */
5938 key.flags = 0;
b095c381 5939 /* 0 for new key; previous value of counter (after fatal error) */
851ca268
ZY		 5940 key.tx_counter[0] = cpu_to_le32(0);
5941 key.tx_counter[1] = cpu_to_le32(0);
b095c381 5942
0a7bcf26 5943 ipw_send_cmd_pdu(priv, IPW_CMD_TGI_TX_KEY, sizeof(key), &key);
b095c381
JK		 5944}
5945
5946static void ipw_send_wep_keys(struct ipw_priv *priv, int type)
43f66a6c 5947{
0a7bcf26 5948 struct ipw_wep_key key;
43f66a6c 5949 int i;
43f66a6c 5950
0a7bcf26
ZY		 5951 key.cmd_id = DINO_CMD_WEP_KEY;
5952 key.seq_num = 0;
43f66a6c 5953
b095c381
JK		 5954 /* Note: AES keys cannot be set for multiple times.
5955 * Only set it at the first time. */
bf79451e 5956 for (i = 0; i < 4; i++) {
0a7bcf26 5957 key.key_index = i | type;
b095c381 5958 if (!(priv->ieee->sec.flags & (1 << i))) {
0a7bcf26 5959 key.key_size = 0;
b095c381 5960 continue;
43f66a6c
JK		 5961 }
5962
0a7bcf26
ZY		 5963 key.key_size = priv->ieee->sec.key_sizes[i];
5964 memcpy(key.key, priv->ieee->sec.keys[i], key.key_size);
b095c381 5965
0a7bcf26 5966 ipw_send_cmd_pdu(priv, IPW_CMD_WEP_KEY, sizeof(key), &key);
bf79451e 5967 }
43f66a6c
JK		 5968}
5969
1fbfea54 5970static void ipw_set_hw_decrypt_unicast(struct ipw_priv *priv, int level)
43f66a6c 5971{
1fbfea54 5972 if (priv->ieee->host_encrypt)
43f66a6c 5973 return;
43f66a6c 5974
1fbfea54
ZY		 5975 switch (level) {
5976 case SEC_LEVEL_3:
5977 priv->sys_config.disable_unicast_decryption = 0;
5978 priv->ieee->host_decrypt = 0;
5979 break;
5980 case SEC_LEVEL_2:
5981 priv->sys_config.disable_unicast_decryption = 1;
5982 priv->ieee->host_decrypt = 1;
5983 break;
5984 case SEC_LEVEL_1:
5985 priv->sys_config.disable_unicast_decryption = 0;
5986 priv->ieee->host_decrypt = 0;
5987 break;
5988 case SEC_LEVEL_0:
5989 priv->sys_config.disable_unicast_decryption = 1;
5990 break;
5991 default:
5992 break;
5993 }
5994}
5995
5996static void ipw_set_hw_decrypt_multicast(struct ipw_priv *priv, int level)
5997{
5998 if (priv->ieee->host_encrypt)
5999 return;
6000
6001 switch (level) {
6002 case SEC_LEVEL_3:
6003 priv->sys_config.disable_multicast_decryption = 0;
6004 break;
6005 case SEC_LEVEL_2:
6006 priv->sys_config.disable_multicast_decryption = 1;
6007 break;
6008 case SEC_LEVEL_1:
6009 priv->sys_config.disable_multicast_decryption = 0;
6010 break;
6011 case SEC_LEVEL_0:
6012 priv->sys_config.disable_multicast_decryption = 1;
6013 break;
6014 default:
6015 break;
6016 }
6017}
6018
b095c381
JK		 6019static void ipw_set_hwcrypto_keys(struct ipw_priv *priv)
6020{
6021 switch (priv->ieee->sec.level) {
6022 case SEC_LEVEL_3:
d8bad6df
ZY		 6023 if (priv->ieee->sec.flags & SEC_ACTIVE_KEY)
6024 ipw_send_tgi_tx_key(priv,
6025 DCT_FLAG_EXT_SECURITY_CCM,
6026 priv->ieee->sec.active_key);
afbf30a2 6027
567deaf6
HL		 6028 if (!priv->ieee->host_mc_decrypt)
6029 ipw_send_wep_keys(priv, DCW_WEP_KEY_SEC_TYPE_CCM);
b095c381
JK		 6030 break;
6031 case SEC_LEVEL_2:
d8bad6df
ZY		 6032 if (priv->ieee->sec.flags & SEC_ACTIVE_KEY)
6033 ipw_send_tgi_tx_key(priv,
6034 DCT_FLAG_EXT_SECURITY_TKIP,
6035 priv->ieee->sec.active_key);
b095c381
JK		 6036 break;
6037 case SEC_LEVEL_1:
6038 ipw_send_wep_keys(priv, DCW_WEP_KEY_SEC_TYPE_WEP);
29cb843e
HL		 6039 ipw_set_hw_decrypt_unicast(priv, priv->ieee->sec.level);
6040 ipw_set_hw_decrypt_multicast(priv, priv->ieee->sec.level);
b095c381
JK		 6041 break;
6042 case SEC_LEVEL_0:
6043 default:
6044 break;
6045 }
6046}
6047
43f66a6c
JK		 6048static void ipw_adhoc_check(void *data)
6049{
6050 struct ipw_priv *priv = data;
bf79451e 6051
afbf30a2 6052 if (priv->missed_adhoc_beacons++ > priv->disassociate_threshold &&
43f66a6c 6053 !(priv->config & CFG_ADHOC_PERSIST)) {
afbf30a2
JK		 6054 IPW_DEBUG(IPW_DL_INFO | IPW_DL_NOTIF |
6055 IPW_DL_STATE | IPW_DL_ASSOC,
6056 "Missed beacon: %d - disassociate\n",
6057 priv->missed_adhoc_beacons);
43f66a6c
JK		 6058 ipw_remove_current_network(priv);
6059 ipw_disassociate(priv);
6060 return;
6061 }
6062
bf79451e 6063 queue_delayed_work(priv->workqueue, &priv->adhoc_check,
5b5e807f 6064 le16_to_cpu(priv->assoc_request.beacon_interval));
43f66a6c
JK		 6065}
6066
c4028958 6067static void ipw_bg_adhoc_check(struct work_struct *work)
c848d0af 6068{
c4028958
DH		 6069 struct ipw_priv *priv =
6070 container_of(work, struct ipw_priv, adhoc_check.work);
4644151b 6071 mutex_lock(&priv->mutex);
c4028958 6072 ipw_adhoc_check(priv);
4644151b 6073 mutex_unlock(&priv->mutex);
c848d0af
JK		 6074}
6075
43f66a6c
JK		 6076static void ipw_debug_config(struct ipw_priv *priv)
6077{
9387b7ca 6078 DECLARE_SSID_BUF(ssid);
43f66a6c
JK		 6079 IPW_DEBUG_INFO("Scan completed, no valid APs matched "
6080 "[CFG 0x%08X]\n", priv->config);
6081 if (priv->config & CFG_STATIC_CHANNEL)
0edd5b44 6082 IPW_DEBUG_INFO("Channel locked to %d\n", priv->channel);
43f66a6c
JK		 6083 else
6084 IPW_DEBUG_INFO("Channel unlocked.\n");
6085 if (priv->config & CFG_STATIC_ESSID)
bf79451e 6086 IPW_DEBUG_INFO("ESSID locked to '%s'\n",
9387b7ca 6087 print_ssid(ssid, priv->essid, priv->essid_len));
43f66a6c
JK		 6088 else
6089 IPW_DEBUG_INFO("ESSID unlocked.\n");
6090 if (priv->config & CFG_STATIC_BSSID)
e174961c 6091 IPW_DEBUG_INFO("BSSID locked to %pM\n", priv->bssid);
43f66a6c
JK		 6092 else
6093 IPW_DEBUG_INFO("BSSID unlocked.\n");
6094 if (priv->capability & CAP_PRIVACY_ON)
6095 IPW_DEBUG_INFO("PRIVACY on\n");
6096 else
6097 IPW_DEBUG_INFO("PRIVACY off\n");
6098 IPW_DEBUG_INFO("RATE MASK: 0x%08X\n", priv->rates_mask);
6099}
43f66a6c 6100
858119e1 6101static void ipw_set_fixed_rate(struct ipw_priv *priv, int mode)
43f66a6c
JK		 6102{
6103 /* TODO: Verify that this works... */
21f8a73f 6104 struct ipw_fixed_rate fr;
43f66a6c
JK		 6105 u32 reg;
6106 u16 mask = 0;
21f8a73f 6107 u16 new_tx_rates = priv->rates_mask;
43f66a6c 6108
bf79451e 6109 /* Identify 'current FW band' and match it with the fixed
43f66a6c 6110 * Tx rates */
bf79451e 6111
43f66a6c 6112 switch (priv->ieee->freq_band) {
0edd5b44 6113 case IEEE80211_52GHZ_BAND: /* A only */
43f66a6c
JK		 6114 /* IEEE_A */
6115 if (priv->rates_mask & ~IEEE80211_OFDM_RATES_MASK) {
6116 /* Invalid fixed rate mask */
ea2b26e0
JK		 6117 IPW_DEBUG_WX
6118 ("invalid fixed rate mask in ipw_set_fixed_rate\n");
21f8a73f 6119 new_tx_rates = 0;
43f66a6c
JK		 6120 break;
6121 }
bf79451e 6122
21f8a73f 6123 new_tx_rates >>= IEEE80211_OFDM_SHIFT_MASK_A;
43f66a6c
JK		 6124 break;
6125
0edd5b44 6126 default: /* 2.4Ghz or Mixed */
43f66a6c 6127 /* IEEE_B */
b095c381 6128 if (mode == IEEE_B) {
21f8a73f 6129 if (new_tx_rates & ~IEEE80211_CCK_RATES_MASK) {
43f66a6c 6130 /* Invalid fixed rate mask */
ea2b26e0
JK		 6131 IPW_DEBUG_WX
6132 ("invalid fixed rate mask in ipw_set_fixed_rate\n");
21f8a73f 6133 new_tx_rates = 0;
43f66a6c
JK		 6134 }
6135 break;
bf79451e 6136 }
43f66a6c
JK		 6137
6138 /* IEEE_G */
21f8a73f 6139 if (new_tx_rates & ~(IEEE80211_CCK_RATES_MASK |
43f66a6c
JK		 6140 IEEE80211_OFDM_RATES_MASK)) {
6141 /* Invalid fixed rate mask */
ea2b26e0
JK		 6142 IPW_DEBUG_WX
6143 ("invalid fixed rate mask in ipw_set_fixed_rate\n");
21f8a73f 6144 new_tx_rates = 0;
43f66a6c
JK		 6145 break;
6146 }
bf79451e 6147
21f8a73f 6148 if (IEEE80211_OFDM_RATE_6MB_MASK & new_tx_rates) {
43f66a6c 6149 mask |= (IEEE80211_OFDM_RATE_6MB_MASK >> 1);
21f8a73f 6150 new_tx_rates &= ~IEEE80211_OFDM_RATE_6MB_MASK;
43f66a6c 6151 }
bf79451e 6152
21f8a73f 6153 if (IEEE80211_OFDM_RATE_9MB_MASK & new_tx_rates) {
43f66a6c 6154 mask |= (IEEE80211_OFDM_RATE_9MB_MASK >> 1);
21f8a73f 6155 new_tx_rates &= ~IEEE80211_OFDM_RATE_9MB_MASK;
43f66a6c 6156 }
bf79451e 6157
21f8a73f 6158 if (IEEE80211_OFDM_RATE_12MB_MASK & new_tx_rates) {
43f66a6c 6159 mask |= (IEEE80211_OFDM_RATE_12MB_MASK >> 1);
21f8a73f 6160 new_tx_rates &= ~IEEE80211_OFDM_RATE_12MB_MASK;
43f66a6c 6161 }
bf79451e 6162
21f8a73f 6163 new_tx_rates |= mask;
43f66a6c
JK		 6164 break;
6165 }
6166
21f8a73f
RC		 6167 fr.tx_rates = cpu_to_le16(new_tx_rates);
6168
43f66a6c 6169 reg = ipw_read32(priv, IPW_MEM_FIXED_OVERRIDE);
0edd5b44 6170 ipw_write_reg32(priv, reg, *(u32 *) & fr);
43f66a6c
JK		 6171}
6172
ea2b26e0 6173static void ipw_abort_scan(struct ipw_priv *priv)
43f66a6c
JK		 6174{
6175 int err;
6176
ea2b26e0
JK		 6177 if (priv->status & STATUS_SCAN_ABORTING) {
6178 IPW_DEBUG_HC("Ignoring concurrent scan abort request.\n");
6179 return;
6180 }
6181 priv->status |= STATUS_SCAN_ABORTING;
43f66a6c 6182
ea2b26e0
JK		 6183 err = ipw_send_scan_abort(priv);
6184 if (err)
6185 IPW_DEBUG_HC("Request to abort scan failed.\n");
6186}
6187
afbf30a2
JK		 6188static void ipw_add_scan_channels(struct ipw_priv *priv,
6189 struct ipw_scan_request_ext *scan,
6190 int scan_type)
ea2b26e0 6191{
ea2b26e0 6192 int channel_index = 0;
b095c381 6193 const struct ieee80211_geo *geo;
afbf30a2 6194 int i;
b095c381 6195
1867b117 6196 geo = ieee80211_get_geo(priv->ieee);
43f66a6c 6197
afbf30a2
JK		 6198 if (priv->ieee->freq_band & IEEE80211_52GHZ_BAND) {
6199 int start = channel_index;
6200 for (i = 0; i < geo->a_channels; i++) {
6201 if ((priv->status & STATUS_ASSOCIATED) &&
6202 geo->a[i].channel == priv->channel)
6203 continue;
6204 channel_index++;
6205 scan->channels_list[channel_index] = geo->a[i].channel;
1fe0adb4
LH		 6206 ipw_set_scan_type(scan, channel_index,
6207 geo->a[i].
6208 flags & IEEE80211_CH_PASSIVE_ONLY ?
6209 IPW_SCAN_PASSIVE_FULL_DWELL_SCAN :
6210 scan_type);
afbf30a2
JK		 6211 }
6212
6213 if (start != channel_index) {
6214 scan->channels_list[start] = (u8) (IPW_A_MODE << 6) |
6215 (channel_index - start);
6216 channel_index++;
6217 }
6218 }
6219
6220 if (priv->ieee->freq_band & IEEE80211_24GHZ_BAND) {
6221 int start = channel_index;
6222 if (priv->config & CFG_SPEED_SCAN) {
1fe0adb4 6223 int index;
afbf30a2
JK		 6224 u8 channels[IEEE80211_24GHZ_CHANNELS] = {
6225 /* nop out the list */
6226 [0] = 0
6227 };
6228
6229 u8 channel;
7dd2459d 6230 while (channel_index < IPW_SCAN_CHANNELS - 1) {
afbf30a2
JK		 6231 channel =
6232 priv->speed_scan[priv->speed_scan_pos];
6233 if (channel == 0) {
6234 priv->speed_scan_pos = 0;
6235 channel = priv->speed_scan[0];
6236 }
6237 if ((priv->status & STATUS_ASSOCIATED) &&
6238 channel == priv->channel) {
6239 priv->speed_scan_pos++;
6240 continue;
6241 }
6242
6243 /* If this channel has already been
6244 * added in scan, break from loop
6245 * and this will be the first channel
6246 * in the next scan.
6247 */
6248 if (channels[channel - 1] != 0)
6249 break;
6250
6251 channels[channel - 1] = 1;
6252 priv->speed_scan_pos++;
6253 channel_index++;
6254 scan->channels_list[channel_index] = channel;
1fe0adb4 6255 index =
1867b117 6256 ieee80211_channel_to_index(priv->ieee, channel);
afbf30a2 6257 ipw_set_scan_type(scan, channel_index,
1fe0adb4
LH		 6258 geo->bg[index].
6259 flags &
6260 IEEE80211_CH_PASSIVE_ONLY ?
6261 IPW_SCAN_PASSIVE_FULL_DWELL_SCAN
6262 : scan_type);
afbf30a2
JK		 6263 }
6264 } else {
6265 for (i = 0; i < geo->bg_channels; i++) {
6266 if ((priv->status & STATUS_ASSOCIATED) &&
6267 geo->bg[i].channel == priv->channel)
6268 continue;
6269 channel_index++;
6270 scan->channels_list[channel_index] =
6271 geo->bg[i].channel;
6272 ipw_set_scan_type(scan, channel_index,
1fe0adb4
LH		 6273 geo->bg[i].
6274 flags &
6275 IEEE80211_CH_PASSIVE_ONLY ?
6276 IPW_SCAN_PASSIVE_FULL_DWELL_SCAN
6277 : scan_type);
afbf30a2
JK		 6278 }
6279 }
6280
6281 if (start != channel_index) {
6282 scan->channels_list[start] = (u8) (IPW_B_MODE << 6) |
6283 (channel_index - start);
6284 }
6285 }
6286}
6287
14a4dfe2
HS		 6288static int ipw_passive_dwell_time(struct ipw_priv *priv)
6289{
6290 /* staying on passive channels longer than the DTIM interval during a
6291 * scan, while associated, causes the firmware to cancel the scan
6292 * without notification. Hence, don't stay on passive channels longer
6293 * than the beacon interval.
6294 */
6295 if (priv->status & STATUS_ASSOCIATED
6296 && priv->assoc_network->beacon_interval > 10)
6297 return priv->assoc_network->beacon_interval - 10;
6298 else
6299 return 120;
6300}
6301
ea177305 6302static int ipw_request_scan_helper(struct ipw_priv *priv, int type, int direct)
afbf30a2
JK		 6303{
6304 struct ipw_scan_request_ext scan;
6305 int err = 0, scan_type;
6306
6307 if (!(priv->status & STATUS_INIT) ||
6308 (priv->status & STATUS_EXIT_PENDING))
6309 return 0;
6310
4644151b 6311 mutex_lock(&priv->mutex);
afbf30a2 6312
ea177305
DW		 6313 if (direct && (priv->direct_scan_ssid_len == 0)) {
6314 IPW_DEBUG_HC("Direct scan requested but no SSID to scan for\n");
6315 priv->status &= ~STATUS_DIRECT_SCAN_PENDING;
6316 goto done;
6317 }
6318
ea2b26e0 6319 if (priv->status & STATUS_SCANNING) {
ea177305
DW		 6320 IPW_DEBUG_HC("Concurrent scan requested. Queuing.\n");
6321 priv->status |= direct ? STATUS_DIRECT_SCAN_PENDING :
6322 STATUS_SCAN_PENDING;
b095c381 6323 goto done;
ea2b26e0 6324 }
43f66a6c 6325
afbf30a2
JK		 6326 if (!(priv->status & STATUS_SCAN_FORCED) &&
6327 priv->status & STATUS_SCAN_ABORTING) {
ea2b26e0 6328 IPW_DEBUG_HC("Scan request while abort pending. Queuing.\n");
ea177305
DW		 6329 priv->status |= direct ? STATUS_DIRECT_SCAN_PENDING :
6330 STATUS_SCAN_PENDING;
b095c381 6331 goto done;
43f66a6c
JK		 6332 }
6333
ea2b26e0 6334 if (priv->status & STATUS_RF_KILL_MASK) {
ea177305
DW		 6335 IPW_DEBUG_HC("Queuing scan due to RF Kill activation\n");
6336 priv->status |= direct ? STATUS_DIRECT_SCAN_PENDING :
6337 STATUS_SCAN_PENDING;
b095c381 6338 goto done;
ea2b26e0 6339 }
43f66a6c 6340
ea2b26e0 6341 memset(&scan, 0, sizeof(scan));
094c4d2d 6342 scan.full_scan_index = cpu_to_le32(ieee80211_get_scans(priv->ieee));
43f66a6c 6343
094c4d2d 6344 if (type == IW_SCAN_TYPE_PASSIVE) {
14a4dfe2
HS		 6345 IPW_DEBUG_WX("use passive scanning\n");
6346 scan_type = IPW_SCAN_PASSIVE_FULL_DWELL_SCAN;
094c4d2d 6347 scan.dwell_time[IPW_SCAN_PASSIVE_FULL_DWELL_SCAN] =
14a4dfe2 6348 cpu_to_le16(ipw_passive_dwell_time(priv));
094c4d2d
ZY		 6349 ipw_add_scan_channels(priv, &scan, scan_type);
6350 goto send_request;
6351 }
6352
6353 /* Use active scan by default. */
14a4dfe2 6354 if (priv->config & CFG_SPEED_SCAN)
b095c381 6355 scan.dwell_time[IPW_SCAN_ACTIVE_BROADCAST_SCAN] =
094c4d2d 6356 cpu_to_le16(30);
b095c381
JK		 6357 else
6358 scan.dwell_time[IPW_SCAN_ACTIVE_BROADCAST_SCAN] =
094c4d2d 6359 cpu_to_le16(20);
b095c381 6360
a613bffd 6361 scan.dwell_time[IPW_SCAN_ACTIVE_BROADCAST_AND_DIRECT_SCAN] =
094c4d2d 6362 cpu_to_le16(20);
43f66a6c 6363
14a4dfe2
HS		 6364 scan.dwell_time[IPW_SCAN_PASSIVE_FULL_DWELL_SCAN] =
6365 cpu_to_le16(ipw_passive_dwell_time(priv));
ea177305 6366 scan.dwell_time[IPW_SCAN_ACTIVE_DIRECT_SCAN] = cpu_to_le16(20);
43f66a6c 6367
b095c381 6368#ifdef CONFIG_IPW2200_MONITOR
ea2b26e0 6369 if (priv->ieee->iw_mode == IW_MODE_MONITOR) {
afbf30a2 6370 u8 channel;
b095c381 6371 u8 band = 0;
43f66a6c 6372
1867b117 6373 switch (ieee80211_is_valid_channel(priv->ieee, priv->channel)) {
b095c381 6374 case IEEE80211_52GHZ_BAND:
ea2b26e0 6375 band = (u8) (IPW_A_MODE << 6) | 1;
b095c381
JK		 6376 channel = priv->channel;
6377 break;
ea2b26e0 6378
b095c381 6379 case IEEE80211_24GHZ_BAND:
ea2b26e0 6380 band = (u8) (IPW_B_MODE << 6) | 1;
b095c381
JK		 6381 channel = priv->channel;
6382 break;
ea2b26e0 6383
b095c381 6384 default:
ea2b26e0
JK		 6385 band = (u8) (IPW_B_MODE << 6) | 1;
6386 channel = 9;
b095c381 6387 break;
ea2b26e0
JK		 6388 }
6389
b095c381
JK		 6390 scan.channels_list[0] = band;
6391 scan.channels_list[1] = channel;
6392 ipw_set_scan_type(&scan, 1, IPW_SCAN_PASSIVE_FULL_DWELL_SCAN);
ea2b26e0 6393
b095c381
JK		 6394 /* NOTE: The card will sit on this channel for this time
6395 * period. Scan aborts are timing sensitive and frequently
6396 * result in firmware restarts. As such, it is best to
6397 * set a small dwell_time here and just keep re-issuing
6398 * scans. Otherwise fast channel hopping will not actually
6399 * hop channels.
6400 *
6401 * TODO: Move SPEED SCAN support to all modes and bands */
a613bffd 6402 scan.dwell_time[IPW_SCAN_PASSIVE_FULL_DWELL_SCAN] =
094c4d2d 6403 cpu_to_le16(2000);
43f66a6c 6404 } else {
b095c381 6405#endif /* CONFIG_IPW2200_MONITOR */
ea177305
DW		 6406 /* Honor direct scans first, otherwise if we are roaming make
6407 * this a direct scan for the current network. Finally,
6408 * ensure that every other scan is a fast channel hop scan */
6409 if (direct) {
6410 err = ipw_send_ssid(priv, priv->direct_scan_ssid,
6411 priv->direct_scan_ssid_len);
6412 if (err) {
6413 IPW_DEBUG_HC("Attempt to send SSID command "
6414 "failed\n");
6415 goto done;
6416 }
6417
6418 scan_type = IPW_SCAN_ACTIVE_BROADCAST_AND_DIRECT_SCAN;
6419 } else if ((priv->status & STATUS_ROAMING)
6420 || (!(priv->status & STATUS_ASSOCIATED)
6421 && (priv->config & CFG_STATIC_ESSID)
6422 && (le32_to_cpu(scan.full_scan_index) % 2))) {
ea2b26e0
JK		 6423 err = ipw_send_ssid(priv, priv->essid, priv->essid_len);
6424 if (err) {
b095c381
JK		 6425 IPW_DEBUG_HC("Attempt to send SSID command "
6426 "failed.\n");
6427 goto done;
ea2b26e0 6428 }
43f66a6c 6429
ea2b26e0 6430 scan_type = IPW_SCAN_ACTIVE_BROADCAST_AND_DIRECT_SCAN;
afbf30a2 6431 } else
ea2b26e0 6432 scan_type = IPW_SCAN_ACTIVE_BROADCAST_SCAN;
ea2b26e0 6433
afbf30a2 6434 ipw_add_scan_channels(priv, &scan, scan_type);
b095c381 6435#ifdef CONFIG_IPW2200_MONITOR
43f66a6c 6436 }
ea2b26e0 6437#endif
bf79451e 6438
094c4d2d 6439send_request:
ea2b26e0 6440 err = ipw_send_scan_request_ext(priv, &scan);
43f66a6c 6441 if (err) {
ea2b26e0 6442 IPW_DEBUG_HC("Sending scan command failed: %08X\n", err);
b095c381 6443 goto done;
43f66a6c
JK		 6444 }
6445
ea2b26e0 6446 priv->status |= STATUS_SCANNING;
ea177305
DW		 6447 if (direct) {
6448 priv->status &= ~STATUS_DIRECT_SCAN_PENDING;
6449 priv->direct_scan_ssid_len = 0;
6450 } else
6451 priv->status &= ~STATUS_SCAN_PENDING;
6452
afbf30a2
JK		 6453 queue_delayed_work(priv->workqueue, &priv->scan_check,
6454 IPW_SCAN_CHECK_WATCHDOG);
094c4d2d 6455done:
4644151b 6456 mutex_unlock(&priv->mutex);
b095c381 6457 return err;
c848d0af
JK		 6458}
6459
c4028958
DH		 6460static void ipw_request_passive_scan(struct work_struct *work)
6461{
6462 struct ipw_priv *priv =
ea177305
DW		 6463 container_of(work, struct ipw_priv, request_passive_scan.work);
6464 ipw_request_scan_helper(priv, IW_SCAN_TYPE_PASSIVE, 0);
094c4d2d
ZY		 6465}
6466
c4028958
DH		 6467static void ipw_request_scan(struct work_struct *work)
6468{
6469 struct ipw_priv *priv =
6470 container_of(work, struct ipw_priv, request_scan.work);
ea177305
DW		 6471 ipw_request_scan_helper(priv, IW_SCAN_TYPE_ACTIVE, 0);
6472}
6473
6474static void ipw_request_direct_scan(struct work_struct *work)
6475{
6476 struct ipw_priv *priv =
6477 container_of(work, struct ipw_priv, request_direct_scan.work);
6478 ipw_request_scan_helper(priv, IW_SCAN_TYPE_ACTIVE, 1);
094c4d2d
ZY		 6479}
6480
c4028958 6481static void ipw_bg_abort_scan(struct work_struct *work)
c848d0af 6482{
c4028958
DH		 6483 struct ipw_priv *priv =
6484 container_of(work, struct ipw_priv, abort_scan);
4644151b 6485 mutex_lock(&priv->mutex);
c4028958 6486 ipw_abort_scan(priv);
4644151b 6487 mutex_unlock(&priv->mutex);
c848d0af
JK		 6488}
6489
ea2b26e0
JK		 6490static int ipw_wpa_enable(struct ipw_priv *priv, int value)
6491{
b095c381
JK		 6492 /* This is called when wpa_supplicant loads and closes the driver
6493 * interface. */
cdd1fa1e 6494 priv->ieee->wpa_enabled = value;
b095c381 6495 return 0;
ea2b26e0
JK		 6496}
6497
ea2b26e0
JK		 6498static int ipw_wpa_set_auth_algs(struct ipw_priv *priv, int value)
6499{
6500 struct ieee80211_device *ieee = priv->ieee;
6501 struct ieee80211_security sec = {
6502 .flags = SEC_AUTH_MODE,
6503 };
6504 int ret = 0;
6505
afbf30a2 6506 if (value & IW_AUTH_ALG_SHARED_KEY) {
ea2b26e0
JK		 6507 sec.auth_mode = WLAN_AUTH_SHARED_KEY;
6508 ieee->open_wep = 0;
afbf30a2 6509 } else if (value & IW_AUTH_ALG_OPEN_SYSTEM) {
ea2b26e0
JK		 6510 sec.auth_mode = WLAN_AUTH_OPEN;
6511 ieee->open_wep = 1;
3e234b4e
ZY		 6512 } else if (value & IW_AUTH_ALG_LEAP) {
6513 sec.auth_mode = WLAN_AUTH_LEAP;
6514 ieee->open_wep = 1;
afbf30a2
JK		 6515 } else
6516 return -EINVAL;
ea2b26e0
JK		 6517
6518 if (ieee->set_security)
6519 ieee->set_security(ieee->dev, &sec);
6520 else
6521 ret = -EOPNOTSUPP;
6522
6523 return ret;
6524}
6525
a73e22b2
AB		 6526static void ipw_wpa_assoc_frame(struct ipw_priv *priv, char *wpa_ie,
6527 int wpa_ie_len)
afbf30a2
JK		 6528{
6529 /* make sure WPA is enabled */
6530 ipw_wpa_enable(priv, 1);
afbf30a2
JK		 6531}
6532
6533static int ipw_set_rsn_capa(struct ipw_priv *priv,
6534 char *capabilities, int length)
6535{
afbf30a2
JK		 6536 IPW_DEBUG_HC("HOST_CMD_RSN_CAPABILITIES\n");
6537
0a7bcf26 6538 return ipw_send_cmd_pdu(priv, IPW_CMD_RSN_CAPABILITIES, length,
2638bc39 6539 capabilities);
afbf30a2
JK		 6540}
6541
b095c381 6542/*
afbf30a2
JK		 6543 * WE-18 support
6544 */
6545
6546/* SIOCSIWGENIE */
6547static int ipw_wx_set_genie(struct net_device *dev,
6548 struct iw_request_info *info,
6549 union iwreq_data *wrqu, char *extra)
ea2b26e0 6550{
afbf30a2
JK		 6551 struct ipw_priv *priv = ieee80211_priv(dev);
6552 struct ieee80211_device *ieee = priv->ieee;
6553 u8 *buf;
6554 int err = 0;
ea2b26e0 6555
afbf30a2
JK		 6556 if (wrqu->data.length > MAX_WPA_IE_LEN ||
6557 (wrqu->data.length && extra == NULL))
6558 return -EINVAL;
ea2b26e0 6559
afbf30a2
JK		 6560 if (wrqu->data.length) {
6561 buf = kmalloc(wrqu->data.length, GFP_KERNEL);
6562 if (buf == NULL) {
6563 err = -ENOMEM;
6564 goto out;
6565 }
6566
6567 memcpy(buf, extra, wrqu->data.length);
6568 kfree(ieee->wpa_ie);
6569 ieee->wpa_ie = buf;
6570 ieee->wpa_ie_len = wrqu->data.length;
b095c381 6571 } else {
afbf30a2
JK		 6572 kfree(ieee->wpa_ie);
6573 ieee->wpa_ie = NULL;
6574 ieee->wpa_ie_len = 0;
ea2b26e0 6575 }
afbf30a2
JK		 6576
6577 ipw_wpa_assoc_frame(priv, ieee->wpa_ie, ieee->wpa_ie_len);
6578 out:
afbf30a2
JK		 6579 return err;
6580}
6581
6582/* SIOCGIWGENIE */
6583static int ipw_wx_get_genie(struct net_device *dev,
6584 struct iw_request_info *info,
6585 union iwreq_data *wrqu, char *extra)
6586{
6587 struct ipw_priv *priv = ieee80211_priv(dev);
6588 struct ieee80211_device *ieee = priv->ieee;
6589 int err = 0;
6590
afbf30a2
JK		 6591 if (ieee->wpa_ie_len == 0 || ieee->wpa_ie == NULL) {
6592 wrqu->data.length = 0;
6593 goto out;
6594 }
6595
6596 if (wrqu->data.length < ieee->wpa_ie_len) {
6597 err = -E2BIG;
6598 goto out;
6599 }
6600
6601 wrqu->data.length = ieee->wpa_ie_len;
6602 memcpy(extra, ieee->wpa_ie, ieee->wpa_ie_len);
6603
6604 out:
afbf30a2
JK		 6605 return err;
6606}
6607
1fbfea54
ZY		 6608static int wext_cipher2level(int cipher)
6609{
6610 switch (cipher) {
6611 case IW_AUTH_CIPHER_NONE:
6612 return SEC_LEVEL_0;
6613 case IW_AUTH_CIPHER_WEP40:
6614 case IW_AUTH_CIPHER_WEP104:
6615 return SEC_LEVEL_1;
6616 case IW_AUTH_CIPHER_TKIP:
6617 return SEC_LEVEL_2;
6618 case IW_AUTH_CIPHER_CCMP:
6619 return SEC_LEVEL_3;
6620 default:
6621 return -1;
6622 }
6623}
6624
afbf30a2
JK		 6625/* SIOCSIWAUTH */
6626static int ipw_wx_set_auth(struct net_device *dev,
6627 struct iw_request_info *info,
6628 union iwreq_data *wrqu, char *extra)
6629{
6630 struct ipw_priv *priv = ieee80211_priv(dev);
6631 struct ieee80211_device *ieee = priv->ieee;
6632 struct iw_param *param = &wrqu->param;
274bfb8d 6633 struct lib80211_crypt_data *crypt;
afbf30a2
JK		 6634 unsigned long flags;
6635 int ret = 0;
6636
6637 switch (param->flags & IW_AUTH_INDEX) {
6638 case IW_AUTH_WPA_VERSION:
1fbfea54 6639 break;
afbf30a2 6640 case IW_AUTH_CIPHER_PAIRWISE:
1fbfea54
ZY		 6641 ipw_set_hw_decrypt_unicast(priv,
6642 wext_cipher2level(param->value));
6643 break;
afbf30a2 6644 case IW_AUTH_CIPHER_GROUP:
1fbfea54
ZY		 6645 ipw_set_hw_decrypt_multicast(priv,
6646 wext_cipher2level(param->value));
6647 break;
afbf30a2
JK		 6648 case IW_AUTH_KEY_MGMT:
6649 /*
6650 * ipw2200 does not use these parameters
6651 */
6652 break;
6653
6654 case IW_AUTH_TKIP_COUNTERMEASURES:
274bfb8d 6655 crypt = priv->ieee->crypt_info.crypt[priv->ieee->crypt_info.tx_keyidx];
991d1cc5 6656 if (!crypt || !crypt->ops->set_flags || !crypt->ops->get_flags)
afbf30a2 6657 break;
afbf30a2
JK		 6658
6659 flags = crypt->ops->get_flags(crypt->priv);
6660
6661 if (param->value)
6662 flags |= IEEE80211_CRYPTO_TKIP_COUNTERMEASURES;
6663 else
6664 flags &= ~IEEE80211_CRYPTO_TKIP_COUNTERMEASURES;
6665
6666 crypt->ops->set_flags(flags, crypt->priv);
6667
6668 break;
6669
6670 case IW_AUTH_DROP_UNENCRYPTED:{
6671 /* HACK:
6672 *
6673 * wpa_supplicant calls set_wpa_enabled when the driver
6674 * is loaded and unloaded, regardless of if WPA is being
6675 * used. No other calls are made which can be used to
6676 * determine if encryption will be used or not prior to
6677 * association being expected. If encryption is not being
6678 * used, drop_unencrypted is set to false, else true -- we
6679 * can use this to determine if the CAP_PRIVACY_ON bit should
6680 * be set.
6681 */
6682 struct ieee80211_security sec = {
6683 .flags = SEC_ENABLED,
6684 .enabled = param->value,
6685 };
6686 priv->ieee->drop_unencrypted = param->value;
6687 /* We only change SEC_LEVEL for open mode. Others
6688 * are set by ipw_wpa_set_encryption.
6689 */
6690 if (!param->value) {
6691 sec.flags |= SEC_LEVEL;
6692 sec.level = SEC_LEVEL_0;
6693 } else {
6694 sec.flags |= SEC_LEVEL;
6695 sec.level = SEC_LEVEL_1;
6696 }
6697 if (priv->ieee->set_security)
6698 priv->ieee->set_security(priv->ieee->dev, &sec);
6699 break;
6700 }
6701
6702 case IW_AUTH_80211_AUTH_ALG:
6703 ret = ipw_wpa_set_auth_algs(priv, param->value);
6704 break;
6705
6706 case IW_AUTH_WPA_ENABLED:
6707 ret = ipw_wpa_enable(priv, param->value);
e3c5a64e 6708 ipw_disassociate(priv);
afbf30a2
JK		 6709 break;
6710
6711 case IW_AUTH_RX_UNENCRYPTED_EAPOL:
6712 ieee->ieee802_1x = param->value;
6713 break;
6714
afbf30a2
JK		 6715 case IW_AUTH_PRIVACY_INVOKED:
6716 ieee->privacy_invoked = param->value;
6717 break;
6718
6719 default:
6720 return -EOPNOTSUPP;
6721 }
6722 return ret;
6723}
6724
6725/* SIOCGIWAUTH */
6726static int ipw_wx_get_auth(struct net_device *dev,
6727 struct iw_request_info *info,
6728 union iwreq_data *wrqu, char *extra)
6729{
6730 struct ipw_priv *priv = ieee80211_priv(dev);
6731 struct ieee80211_device *ieee = priv->ieee;
274bfb8d 6732 struct lib80211_crypt_data *crypt;
afbf30a2
JK		 6733 struct iw_param *param = &wrqu->param;
6734 int ret = 0;
6735
6736 switch (param->flags & IW_AUTH_INDEX) {
6737 case IW_AUTH_WPA_VERSION:
6738 case IW_AUTH_CIPHER_PAIRWISE:
6739 case IW_AUTH_CIPHER_GROUP:
6740 case IW_AUTH_KEY_MGMT:
6741 /*
6742 * wpa_supplicant will control these internally
6743 */
6744 ret = -EOPNOTSUPP;
6745 break;
6746
6747 case IW_AUTH_TKIP_COUNTERMEASURES:
274bfb8d 6748 crypt = priv->ieee->crypt_info.crypt[priv->ieee->crypt_info.tx_keyidx];
991d1cc5 6749 if (!crypt || !crypt->ops->get_flags)
afbf30a2 6750 break;
afbf30a2
JK		 6751
6752 param->value = (crypt->ops->get_flags(crypt->priv) &
6753 IEEE80211_CRYPTO_TKIP_COUNTERMEASURES) ? 1 : 0;
6754
6755 break;
6756
6757 case IW_AUTH_DROP_UNENCRYPTED:
6758 param->value = ieee->drop_unencrypted;
6759 break;
6760
6761 case IW_AUTH_80211_AUTH_ALG:
6762 param->value = ieee->sec.auth_mode;
6763 break;
6764
6765 case IW_AUTH_WPA_ENABLED:
6766 param->value = ieee->wpa_enabled;
6767 break;
6768
6769 case IW_AUTH_RX_UNENCRYPTED_EAPOL:
6770 param->value = ieee->ieee802_1x;
6771 break;
6772
6773 case IW_AUTH_ROAMING_CONTROL:
6774 case IW_AUTH_PRIVACY_INVOKED:
6775 param->value = ieee->privacy_invoked;
6776 break;
6777
6778 default:
6779 return -EOPNOTSUPP;
6780 }
6781 return 0;
6782}
6783
6784/* SIOCSIWENCODEEXT */
6785static int ipw_wx_set_encodeext(struct net_device *dev,
6786 struct iw_request_info *info,
6787 union iwreq_data *wrqu, char *extra)
6788{
6789 struct ipw_priv *priv = ieee80211_priv(dev);
6790 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6791
6792 if (hwcrypto) {
afbf30a2 6793 if (ext->alg == IW_ENCODE_ALG_TKIP) {
567deaf6
HL		 6794 /* IPW HW can't build TKIP MIC,
6795 host decryption still needed */
6796 if (ext->ext_flags & IW_ENCODE_EXT_GROUP_KEY)
6797 priv->ieee->host_mc_decrypt = 1;
6798 else {
6799 priv->ieee->host_encrypt = 0;
6800 priv->ieee->host_encrypt_msdu = 1;
6801 priv->ieee->host_decrypt = 1;
6802 }
afbf30a2
JK		 6803 } else {
6804 priv->ieee->host_encrypt = 0;
6805 priv->ieee->host_encrypt_msdu = 0;
6806 priv->ieee->host_decrypt = 0;
567deaf6 6807 priv->ieee->host_mc_decrypt = 0;
afbf30a2
JK		 6808 }
6809 }
6810
6811 return ieee80211_wx_set_encodeext(priv->ieee, info, wrqu, extra);
6812}
6813
6814/* SIOCGIWENCODEEXT */
6815static int ipw_wx_get_encodeext(struct net_device *dev,
6816 struct iw_request_info *info,
6817 union iwreq_data *wrqu, char *extra)
6818{
6819 struct ipw_priv *priv = ieee80211_priv(dev);
6820 return ieee80211_wx_get_encodeext(priv->ieee, info, wrqu, extra);
6821}
6822
6823/* SIOCSIWMLME */
6824static int ipw_wx_set_mlme(struct net_device *dev,
6825 struct iw_request_info *info,
6826 union iwreq_data *wrqu, char *extra)
6827{
6828 struct ipw_priv *priv = ieee80211_priv(dev);
6829 struct iw_mlme *mlme = (struct iw_mlme *)extra;
e62e1ee0 6830 __le16 reason;
afbf30a2
JK		 6831
6832 reason = cpu_to_le16(mlme->reason_code);
6833
6834 switch (mlme->cmd) {
6835 case IW_MLME_DEAUTH:
67fd6b45 6836 /* silently ignore */
afbf30a2
JK		 6837 break;
6838
6839 case IW_MLME_DISASSOC:
6840 ipw_disassociate(priv);
6841 break;
6842
6843 default:
6844 return -EOPNOTSUPP;
6845 }
6846 return 0;
6847}
afbf30a2 6848
e43e3c1e 6849#ifdef CONFIG_IPW2200_QOS
afbf30a2
JK		 6850
6851/* QoS */
6852/*
6853* get the modulation type of the current network or
6854* the card current mode
6855*/
53d0bcf8 6856static u8 ipw_qos_current_mode(struct ipw_priv * priv)
afbf30a2
JK		 6857{
6858 u8 mode = 0;
6859
6860 if (priv->status & STATUS_ASSOCIATED) {
6861 unsigned long flags;
6862
6863 spin_lock_irqsave(&priv->ieee->lock, flags);
6864 mode = priv->assoc_network->mode;
6865 spin_unlock_irqrestore(&priv->ieee->lock, flags);
6866 } else {
6867 mode = priv->ieee->mode;
6868 }
6869 IPW_DEBUG_QOS("QoS network/card mode %d \n", mode);
6870 return mode;
b095c381 6871}
ea2b26e0 6872
b095c381
JK		 6873/*
6874* Handle management frame beacon and probe response
6875*/
3b9990cb
JK		 6876static int ipw_qos_handle_probe_response(struct ipw_priv *priv,
6877 int active_network,
6878 struct ieee80211_network *network)
b095c381
JK		 6879{
6880 u32 size = sizeof(struct ieee80211_qos_parameters);
6881
afbf30a2 6882 if (network->capability & WLAN_CAPABILITY_IBSS)
b095c381
JK		 6883 network->qos_data.active = network->qos_data.supported;
6884
6885 if (network->flags & NETWORK_HAS_QOS_MASK) {
afbf30a2
JK		 6886 if (active_network &&
6887 (network->flags & NETWORK_HAS_QOS_PARAMETERS))
b095c381
JK		 6888 network->qos_data.active = network->qos_data.supported;
6889
6890 if ((network->qos_data.active == 1) && (active_network == 1) &&
6891 (network->flags & NETWORK_HAS_QOS_PARAMETERS) &&
6892 (network->qos_data.old_param_count !=
6893 network->qos_data.param_count)) {
6894 network->qos_data.old_param_count =
6895 network->qos_data.param_count;
6896 schedule_work(&priv->qos_activate);
afbf30a2
JK		 6897 IPW_DEBUG_QOS("QoS parameters change call "
6898 "qos_activate\n");
b095c381 6899 }
ea2b26e0 6900 } else {
afbf30a2
JK		 6901 if ((priv->ieee->mode == IEEE_B) || (network->mode == IEEE_B))
6902 memcpy(&network->qos_data.parameters,
b095c381 6903 &def_parameters_CCK, size);
afbf30a2
JK		 6904 else
6905 memcpy(&network->qos_data.parameters,
b095c381 6906 &def_parameters_OFDM, size);
afbf30a2 6907
b095c381
JK		 6908 if ((network->qos_data.active == 1) && (active_network == 1)) {
6909 IPW_DEBUG_QOS("QoS was disabled call qos_activate \n");
6910 schedule_work(&priv->qos_activate);
6911 }
6912
6913 network->qos_data.active = 0;
6914 network->qos_data.supported = 0;
ea2b26e0 6915 }
afbf30a2
JK		 6916 if ((priv->status & STATUS_ASSOCIATED) &&
6917 (priv->ieee->iw_mode == IW_MODE_ADHOC) && (active_network == 0)) {
6918 if (memcmp(network->bssid, priv->bssid, ETH_ALEN))
c5d3dce8 6919 if (network->capability & WLAN_CAPABILITY_IBSS)
b095c381 6920 if ((network->ssid_len ==
afbf30a2
JK		 6921 priv->assoc_network->ssid_len) &&
6922 !memcmp(network->ssid,
6923 priv->assoc_network->ssid,
6924 network->ssid_len)) {
b095c381
JK		 6925 queue_work(priv->workqueue,
6926 &priv->merge_networks);
6927 }
b095c381 6928 }
ea2b26e0 6929
b095c381
JK		 6930 return 0;
6931}
6932
6933/*
6934* This function set up the firmware to support QoS. It sends
6935* IPW_CMD_QOS_PARAMETERS and IPW_CMD_WME_INFO
6936*/
6937static int ipw_qos_activate(struct ipw_priv *priv,
6938 struct ieee80211_qos_data *qos_network_data)
6939{
6940 int err;
6941 struct ieee80211_qos_parameters qos_parameters[QOS_QOS_SETS];
6942 struct ieee80211_qos_parameters *active_one = NULL;
6943 u32 size = sizeof(struct ieee80211_qos_parameters);
6944 u32 burst_duration;
6945 int i;
6946 u8 type;
6947
6948 type = ipw_qos_current_mode(priv);
6949
6950 active_one = &(qos_parameters[QOS_PARAM_SET_DEF_CCK]);
6951 memcpy(active_one, priv->qos_data.def_qos_parm_CCK, size);
6952 active_one = &(qos_parameters[QOS_PARAM_SET_DEF_OFDM]);
6953 memcpy(active_one, priv->qos_data.def_qos_parm_OFDM, size);
6954
6955 if (qos_network_data == NULL) {
6956 if (type == IEEE_B) {
6957 IPW_DEBUG_QOS("QoS activate network mode %d\n", type);
6958 active_one = &def_parameters_CCK;
6959 } else
6960 active_one = &def_parameters_OFDM;
6961
afbf30a2 6962 memcpy(&qos_parameters[QOS_PARAM_SET_ACTIVE], active_one, size);
b095c381
JK		 6963 burst_duration = ipw_qos_get_burst_duration(priv);
6964 for (i = 0; i < QOS_QUEUE_NUM; i++)
afbf30a2 6965 qos_parameters[QOS_PARAM_SET_ACTIVE].tx_op_limit[i] =
8fffc15d 6966 cpu_to_le16(burst_duration);
afbf30a2 6967 } else if (priv->ieee->iw_mode == IW_MODE_ADHOC) {
b095c381
JK		 6968 if (type == IEEE_B) {
6969 IPW_DEBUG_QOS("QoS activate IBSS nework mode %d\n",
6970 type);
6971 if (priv->qos_data.qos_enable == 0)
6972 active_one = &def_parameters_CCK;
6973 else
6974 active_one = priv->qos_data.def_qos_parm_CCK;
6975 } else {
6976 if (priv->qos_data.qos_enable == 0)
6977 active_one = &def_parameters_OFDM;
6978 else
6979 active_one = priv->qos_data.def_qos_parm_OFDM;
6980 }
afbf30a2 6981 memcpy(&qos_parameters[QOS_PARAM_SET_ACTIVE], active_one, size);
b095c381
JK		 6982 } else {
6983 unsigned long flags;
6984 int active;
6985
6986 spin_lock_irqsave(&priv->ieee->lock, flags);
6987 active_one = &(qos_network_data->parameters);
6988 qos_network_data->old_param_count =
6989 qos_network_data->param_count;
afbf30a2 6990 memcpy(&qos_parameters[QOS_PARAM_SET_ACTIVE], active_one, size);
b095c381
JK		 6991 active = qos_network_data->supported;
6992 spin_unlock_irqrestore(&priv->ieee->lock, flags);
6993
6994 if (active == 0) {
6995 burst_duration = ipw_qos_get_burst_duration(priv);
6996 for (i = 0; i < QOS_QUEUE_NUM; i++)
6997 qos_parameters[QOS_PARAM_SET_ACTIVE].
8fffc15d 6998 tx_op_limit[i] = cpu_to_le16(burst_duration);
b095c381
JK		 6999 }
7000 }
7001
7002 IPW_DEBUG_QOS("QoS sending IPW_CMD_QOS_PARAMETERS\n");
afbf30a2
JK		 7003 err = ipw_send_qos_params_command(priv,
7004 (struct ieee80211_qos_parameters *)
7005 &(qos_parameters[0]));
b095c381
JK		 7006 if (err)
7007 IPW_DEBUG_QOS("QoS IPW_CMD_QOS_PARAMETERS failed\n");
7008
7009 return err;
7010}
7011
7012/*
7013* send IPW_CMD_WME_INFO to the firmware
7014*/
7015static int ipw_qos_set_info_element(struct ipw_priv *priv)
7016{
7017 int ret = 0;
7018 struct ieee80211_qos_information_element qos_info;
7019
7020 if (priv == NULL)
7021 return -1;
7022
7023 qos_info.elementID = QOS_ELEMENT_ID;
7024 qos_info.length = sizeof(struct ieee80211_qos_information_element) - 2;
7025
7026 qos_info.version = QOS_VERSION_1;
7027 qos_info.ac_info = 0;
7028
7029 memcpy(qos_info.qui, qos_oui, QOS_OUI_LEN);
7030 qos_info.qui_type = QOS_OUI_TYPE;
7031 qos_info.qui_subtype = QOS_OUI_INFO_SUB_TYPE;
7032
7033 ret = ipw_send_qos_info_command(priv, &qos_info);
7034 if (ret != 0) {
7035 IPW_DEBUG_QOS("QoS error calling ipw_send_qos_info_command\n");
7036 }
7037 return ret;
7038}
7039
7040/*
7041* Set the QoS parameter with the association request structure
7042*/
7043static int ipw_qos_association(struct ipw_priv *priv,
7044 struct ieee80211_network *network)
7045{
7046 int err = 0;
7047 struct ieee80211_qos_data *qos_data = NULL;
7048 struct ieee80211_qos_data ibss_data = {
7049 .supported = 1,
7050 .active = 1,
7051 };
7052
7053 switch (priv->ieee->iw_mode) {
7054 case IW_MODE_ADHOC:
5d9428de 7055 BUG_ON(!(network->capability & WLAN_CAPABILITY_IBSS));
b095c381
JK		 7056
7057 qos_data = &ibss_data;
7058 break;
7059
7060 case IW_MODE_INFRA:
7061 qos_data = &network->qos_data;
7062 break;
7063
7064 default:
7065 BUG();
7066 break;
7067 }
7068
7069 err = ipw_qos_activate(priv, qos_data);
7070 if (err) {
7071 priv->assoc_request.policy_support &= ~HC_QOS_SUPPORT_ASSOC;
7072 return err;
7073 }
7074
7075 if (priv->qos_data.qos_enable && qos_data->supported) {
7076 IPW_DEBUG_QOS("QoS will be enabled for this association\n");
7077 priv->assoc_request.policy_support |= HC_QOS_SUPPORT_ASSOC;
7078 return ipw_qos_set_info_element(priv);
7079 }
7080
7081 return 0;
7082}
7083
7084/*
0779bf2d
ML		 7085* handling the beaconing responses. if we get different QoS setting
7086* off the network from the associated setting, adjust the QoS
b095c381
JK		 7087* setting
7088*/
7089static int ipw_qos_association_resp(struct ipw_priv *priv,
7090 struct ieee80211_network *network)
7091{
7092 int ret = 0;
7093 unsigned long flags;
7094 u32 size = sizeof(struct ieee80211_qos_parameters);
7095 int set_qos_param = 0;
7096
afbf30a2
JK		 7097 if ((priv == NULL) || (network == NULL) ||
7098 (priv->assoc_network == NULL))
b095c381
JK		 7099 return ret;
7100
7101 if (!(priv->status & STATUS_ASSOCIATED))
7102 return ret;
7103
afbf30a2 7104 if ((priv->ieee->iw_mode != IW_MODE_INFRA))
b095c381 7105 return ret;
b095c381
JK		 7106
7107 spin_lock_irqsave(&priv->ieee->lock, flags);
7108 if (network->flags & NETWORK_HAS_QOS_PARAMETERS) {
afbf30a2 7109 memcpy(&priv->assoc_network->qos_data, &network->qos_data,
b095c381
JK		 7110 sizeof(struct ieee80211_qos_data));
7111 priv->assoc_network->qos_data.active = 1;
7112 if ((network->qos_data.old_param_count !=
7113 network->qos_data.param_count)) {
7114 set_qos_param = 1;
7115 network->qos_data.old_param_count =
7116 network->qos_data.param_count;
7117 }
7118
7119 } else {
afbf30a2
JK		 7120 if ((network->mode == IEEE_B) || (priv->ieee->mode == IEEE_B))
7121 memcpy(&priv->assoc_network->qos_data.parameters,
b095c381 7122 &def_parameters_CCK, size);
afbf30a2
JK		 7123 else
7124 memcpy(&priv->assoc_network->qos_data.parameters,
b095c381 7125 &def_parameters_OFDM, size);
b095c381
JK		 7126 priv->assoc_network->qos_data.active = 0;
7127 priv->assoc_network->qos_data.supported = 0;
7128 set_qos_param = 1;
7129 }
7130
7131 spin_unlock_irqrestore(&priv->ieee->lock, flags);
7132
7133 if (set_qos_param == 1)
7134 schedule_work(&priv->qos_activate);
7135
7136 return ret;
7137}
7138
7139static u32 ipw_qos_get_burst_duration(struct ipw_priv *priv)
7140{
7141 u32 ret = 0;
7142
7143 if ((priv == NULL))
7144 return 0;
7145
afbf30a2 7146 if (!(priv->ieee->modulation & IEEE80211_OFDM_MODULATION))
b095c381 7147 ret = priv->qos_data.burst_duration_CCK;
afbf30a2 7148 else
b095c381 7149 ret = priv->qos_data.burst_duration_OFDM;
afbf30a2 7150
b095c381
JK		 7151 return ret;
7152}
7153
7154/*
7155* Initialize the setting of QoS global
7156*/
7157static void ipw_qos_init(struct ipw_priv *priv, int enable,
7158 int burst_enable, u32 burst_duration_CCK,
7159 u32 burst_duration_OFDM)
7160{
7161 priv->qos_data.qos_enable = enable;
7162
7163 if (priv->qos_data.qos_enable) {
7164 priv->qos_data.def_qos_parm_CCK = &def_qos_parameters_CCK;
7165 priv->qos_data.def_qos_parm_OFDM = &def_qos_parameters_OFDM;
7166 IPW_DEBUG_QOS("QoS is enabled\n");
7167 } else {
7168 priv->qos_data.def_qos_parm_CCK = &def_parameters_CCK;
7169 priv->qos_data.def_qos_parm_OFDM = &def_parameters_OFDM;
7170 IPW_DEBUG_QOS("QoS is not enabled\n");
7171 }
7172
7173 priv->qos_data.burst_enable = burst_enable;
7174
7175 if (burst_enable) {
7176 priv->qos_data.burst_duration_CCK = burst_duration_CCK;
7177 priv->qos_data.burst_duration_OFDM = burst_duration_OFDM;
7178 } else {
7179 priv->qos_data.burst_duration_CCK = 0;
7180 priv->qos_data.burst_duration_OFDM = 0;
7181 }
7182}
7183
7184/*
7185* map the packet priority to the right TX Queue
7186*/
7187static int ipw_get_tx_queue_number(struct ipw_priv *priv, u16 priority)
7188{
7189 if (priority > 7 || !priv->qos_data.qos_enable)
7190 priority = 0;
7191
7192 return from_priority_to_tx_queue[priority] - 1;
7193}
7194
a5cf4fe6
ZY		 7195static int ipw_is_qos_active(struct net_device *dev,
7196 struct sk_buff *skb)
b095c381 7197{
a5cf4fe6 7198 struct ipw_priv *priv = ieee80211_priv(dev);
b095c381
JK		 7199 struct ieee80211_qos_data *qos_data = NULL;
7200 int active, supported;
a5cf4fe6
ZY		 7201 u8 *daddr = skb->data + ETH_ALEN;
7202 int unicast = !is_multicast_ether_addr(daddr);
b095c381
JK		 7203
7204 if (!(priv->status & STATUS_ASSOCIATED))
7205 return 0;
7206
7207 qos_data = &priv->assoc_network->qos_data;
7208
b095c381
JK		 7209 if (priv->ieee->iw_mode == IW_MODE_ADHOC) {
7210 if (unicast == 0)
7211 qos_data->active = 0;
7212 else
7213 qos_data->active = qos_data->supported;
7214 }
b095c381
JK		 7215 active = qos_data->active;
7216 supported = qos_data->supported;
afbf30a2
JK		 7217 IPW_DEBUG_QOS("QoS %d network is QoS active %d supported %d "
7218 "unicast %d\n",
7219 priv->qos_data.qos_enable, active, supported, unicast);
a5cf4fe6
ZY		 7220 if (active && priv->qos_data.qos_enable)
7221 return 1;
b095c381 7222
a5cf4fe6
ZY		 7223 return 0;
7224
7225}
7226/*
7227* add QoS parameter to the TX command
7228*/
7229static int ipw_qos_set_tx_queue_command(struct ipw_priv *priv,
7230 u16 priority,
7231 struct tfd_data *tfd)
7232{
7233 int tx_queue_id = 0;
7234
7235
7236 tx_queue_id = from_priority_to_tx_queue[priority] - 1;
7237 tfd->tx_flags_ext |= DCT_FLAG_EXT_QOS_ENABLED;
7238
7239 if (priv->qos_data.qos_no_ack_mask & (1UL << tx_queue_id)) {
7240 tfd->tx_flags &= ~DCT_FLAG_ACK_REQD;
851ca268 7241 tfd->tfd.tfd_26.mchdr.qos_ctrl |= cpu_to_le16(CTRL_QOS_NO_ACK);
a5cf4fe6
ZY		 7242 }
7243 return 0;
b095c381
JK		 7244}
7245
7246/*
7247* background support to run QoS activate functionality
7248*/
c4028958 7249static void ipw_bg_qos_activate(struct work_struct *work)
b095c381 7250{
c4028958
DH		 7251 struct ipw_priv *priv =
7252 container_of(work, struct ipw_priv, qos_activate);
b095c381 7253
4644151b 7254 mutex_lock(&priv->mutex);
b095c381
JK		 7255
7256 if (priv->status & STATUS_ASSOCIATED)
7257 ipw_qos_activate(priv, &(priv->assoc_network->qos_data));
7258
4644151b 7259 mutex_unlock(&priv->mutex);
b095c381
JK		 7260}
7261
3b9990cb
JK		 7262static int ipw_handle_probe_response(struct net_device *dev,
7263 struct ieee80211_probe_response *resp,
7264 struct ieee80211_network *network)
b095c381
JK		 7265{
7266 struct ipw_priv *priv = ieee80211_priv(dev);
3b9990cb
JK		 7267 int active_network = ((priv->status & STATUS_ASSOCIATED) &&
7268 (network == priv->assoc_network));
43f66a6c 7269
3b9990cb 7270 ipw_qos_handle_probe_response(priv, active_network, network);
43f66a6c 7271
3b9990cb
JK		 7272 return 0;
7273}
43f66a6c 7274
3b9990cb
JK		 7275static int ipw_handle_beacon(struct net_device *dev,
7276 struct ieee80211_beacon *resp,
7277 struct ieee80211_network *network)
7278{
7279 struct ipw_priv *priv = ieee80211_priv(dev);
7280 int active_network = ((priv->status & STATUS_ASSOCIATED) &&
7281 (network == priv->assoc_network));
bf79451e 7282
3b9990cb 7283 ipw_qos_handle_probe_response(priv, active_network, network);
bf79451e 7284
b095c381
JK		 7285 return 0;
7286}
bf79451e 7287
3b9990cb
JK		 7288static int ipw_handle_assoc_response(struct net_device *dev,
7289 struct ieee80211_assoc_response *resp,
7290 struct ieee80211_network *network)
7291{
7292 struct ipw_priv *priv = ieee80211_priv(dev);
7293 ipw_qos_association_resp(priv, network);
7294 return 0;
7295}
43f66a6c 7296
b095c381
JK		 7297static int ipw_send_qos_params_command(struct ipw_priv *priv, struct ieee80211_qos_parameters
7298 *qos_param)
7299{
4e22699f
ZY		 7300 return ipw_send_cmd_pdu(priv, IPW_CMD_QOS_PARAMETERS,
7301 sizeof(*qos_param) * 3, qos_param);
b095c381
JK		 7302}
7303
7304static int ipw_send_qos_info_command(struct ipw_priv *priv, struct ieee80211_qos_information_element
7305 *qos_param)
7306{
4e22699f
ZY		 7307 return ipw_send_cmd_pdu(priv, IPW_CMD_WME_INFO, sizeof(*qos_param),
7308 qos_param);
43f66a6c
JK		 7309}
7310
e43e3c1e 7311#endif /* CONFIG_IPW2200_QOS */
b095c381 7312
43f66a6c
JK		 7313static int ipw_associate_network(struct ipw_priv *priv,
7314 struct ieee80211_network *network,
0edd5b44 7315 struct ipw_supported_rates *rates, int roaming)
43f66a6c
JK		 7316{
7317 int err;
9387b7ca 7318 DECLARE_SSID_BUF(ssid);
43f66a6c
JK		 7319
7320 if (priv->config & CFG_FIXED_RATE)
b095c381 7321 ipw_set_fixed_rate(priv, network->mode);
43f66a6c
JK		 7322
7323 if (!(priv->config & CFG_STATIC_ESSID)) {
bf79451e 7324 priv->essid_len = min(network->ssid_len,
0edd5b44 7325 (u8) IW_ESSID_MAX_SIZE);
43f66a6c
JK		 7326 memcpy(priv->essid, network->ssid, priv->essid_len);
7327 }
7328
7329 network->last_associate = jiffies;
7330
7331 memset(&priv->assoc_request, 0, sizeof(priv->assoc_request));
7332 priv->assoc_request.channel = network->channel;
3e234b4e
ZY		 7333 priv->assoc_request.auth_key = 0;
7334
43f66a6c 7335 if ((priv->capability & CAP_PRIVACY_ON) &&
3e234b4e 7336 (priv->ieee->sec.auth_mode == WLAN_AUTH_SHARED_KEY)) {
43f66a6c 7337 priv->assoc_request.auth_type = AUTH_SHARED_KEY;
b095c381
JK		 7338 priv->assoc_request.auth_key = priv->ieee->sec.active_key;
7339
1ba61e05 7340 if (priv->ieee->sec.level == SEC_LEVEL_1)
b095c381 7341 ipw_send_wep_keys(priv, DCW_WEP_KEY_SEC_TYPE_WEP);
3e234b4e
ZY		 7342
7343 } else if ((priv->capability & CAP_PRIVACY_ON) &&
7344 (priv->ieee->sec.auth_mode == WLAN_AUTH_LEAP))
7345 priv->assoc_request.auth_type = AUTH_LEAP;
7346 else
43f66a6c 7347 priv->assoc_request.auth_type = AUTH_OPEN;
43f66a6c 7348
b095c381 7349 if (priv->ieee->wpa_ie_len) {
5b5e807f 7350 priv->assoc_request.policy_support = cpu_to_le16(0x02); /* RSN active */
ea2b26e0
JK		 7351 ipw_set_rsn_capa(priv, priv->ieee->wpa_ie,
7352 priv->ieee->wpa_ie_len);
7353 }
43f66a6c 7354
bf79451e
JG		 7355 /*
7356 * It is valid for our ieee device to support multiple modes, but
7357 * when it comes to associating to a given network we have to choose
43f66a6c
JK		 7358 * just one mode.
7359 */
7360 if (network->mode & priv->ieee->mode & IEEE_A)
7361 priv->assoc_request.ieee_mode = IPW_A_MODE;
7362 else if (network->mode & priv->ieee->mode & IEEE_G)
7363 priv->assoc_request.ieee_mode = IPW_G_MODE;
7364 else if (network->mode & priv->ieee->mode & IEEE_B)
7365 priv->assoc_request.ieee_mode = IPW_B_MODE;
7366
5b5e807f 7367 priv->assoc_request.capability = cpu_to_le16(network->capability);
ea2b26e0
JK		 7368 if ((network->capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
7369 && !(priv->config & CFG_PREAMBLE_LONG)) {
7370 priv->assoc_request.preamble_length = DCT_FLAG_SHORT_PREAMBLE;
7371 } else {
7372 priv->assoc_request.preamble_length = DCT_FLAG_LONG_PREAMBLE;
7373
7374 /* Clear the short preamble if we won't be supporting it */
7375 priv->assoc_request.capability &=
5b5e807f 7376 ~cpu_to_le16(WLAN_CAPABILITY_SHORT_PREAMBLE);
ea2b26e0
JK		 7377 }
7378
afbf30a2
JK		 7379 /* Clear capability bits that aren't used in Ad Hoc */
7380 if (priv->ieee->iw_mode == IW_MODE_ADHOC)
7381 priv->assoc_request.capability &=
5b5e807f 7382 ~cpu_to_le16(WLAN_CAPABILITY_SHORT_SLOT_TIME);
afbf30a2 7383
43f66a6c 7384 IPW_DEBUG_ASSOC("%sssocation attempt: '%s', channel %d, "
ea2b26e0 7385 "802.11%c [%d], %s[:%s], enc=%s%s%s%c%c\n",
43f66a6c 7386 roaming ? "Rea" : "A",
9387b7ca 7387 print_ssid(ssid, priv->essid, priv->essid_len),
bf79451e
JG		 7388 network->channel,
7389 ipw_modes[priv->assoc_request.ieee_mode],
7390 rates->num_rates,
ea2b26e0
JK		 7391 (priv->assoc_request.preamble_length ==
7392 DCT_FLAG_LONG_PREAMBLE) ? "long" : "short",
7393 network->capability &
7394 WLAN_CAPABILITY_SHORT_PREAMBLE ? "short" : "long",
43f66a6c 7395 priv->capability & CAP_PRIVACY_ON ? "on " : "off",
bf79451e
JG		 7396 priv->capability & CAP_PRIVACY_ON ?
7397 (priv->capability & CAP_SHARED_KEY ? "(shared)" :
43f66a6c
JK		 7398 "(open)") : "",
7399 priv->capability & CAP_PRIVACY_ON ? " key=" : "",
bf79451e 7400 priv->capability & CAP_PRIVACY_ON ?
b095c381 7401 '1' + priv->ieee->sec.active_key : '.',
0edd5b44 7402 priv->capability & CAP_PRIVACY_ON ? '.' : ' ');
43f66a6c 7403
5b5e807f 7404 priv->assoc_request.beacon_interval = cpu_to_le16(network->beacon_interval);
43f66a6c 7405 if ((priv->ieee->iw_mode == IW_MODE_ADHOC) &&
0edd5b44 7406 (network->time_stamp[0] == 0) && (network->time_stamp[1] == 0)) {
43f66a6c
JK		 7407 priv->assoc_request.assoc_type = HC_IBSS_START;
7408 priv->assoc_request.assoc_tsf_msw = 0;
7409 priv->assoc_request.assoc_tsf_lsw = 0;
7410 } else {
7411 if (unlikely(roaming))
7412 priv->assoc_request.assoc_type = HC_REASSOCIATE;
7413 else
7414 priv->assoc_request.assoc_type = HC_ASSOCIATE;
5b5e807f
AV		 7415 priv->assoc_request.assoc_tsf_msw = cpu_to_le32(network->time_stamp[1]);
7416 priv->assoc_request.assoc_tsf_lsw = cpu_to_le32(network->time_stamp[0]);
43f66a6c
JK		 7417 }
7418
afbf30a2 7419 memcpy(priv->assoc_request.bssid, network->bssid, ETH_ALEN);
43f66a6c
JK		 7420
7421 if (priv->ieee->iw_mode == IW_MODE_ADHOC) {
7422 memset(&priv->assoc_request.dest, 0xFF, ETH_ALEN);
5b5e807f 7423 priv->assoc_request.atim_window = cpu_to_le16(network->atim_window);
43f66a6c 7424 } else {
afbf30a2 7425 memcpy(priv->assoc_request.dest, network->bssid, ETH_ALEN);
43f66a6c
JK		 7426 priv->assoc_request.atim_window = 0;
7427 }
7428
5b5e807f 7429 priv->assoc_request.listen_interval = cpu_to_le16(network->listen_interval);
bf79451e 7430
43f66a6c
JK		 7431 err = ipw_send_ssid(priv, priv->essid, priv->essid_len);
7432 if (err) {
7433 IPW_DEBUG_HC("Attempt to send SSID command failed.\n");
7434 return err;
7435 }
7436
7437 rates->ieee_mode = priv->assoc_request.ieee_mode;
7438 rates->purpose = IPW_RATE_CONNECT;
7439 ipw_send_supported_rates(priv, rates);
bf79451e 7440
43f66a6c
JK		 7441 if (priv->assoc_request.ieee_mode == IPW_G_MODE)
7442 priv->sys_config.dot11g_auto_detection = 1;
7443 else
7444 priv->sys_config.dot11g_auto_detection = 0;
c848d0af
JK		 7445
7446 if (priv->ieee->iw_mode == IW_MODE_ADHOC)
7447 priv->sys_config.answer_broadcast_ssid_probe = 1;
7448 else
7449 priv->sys_config.answer_broadcast_ssid_probe = 0;
7450
d685b8c2 7451 err = ipw_send_system_config(priv);
43f66a6c
JK		 7452 if (err) {
7453 IPW_DEBUG_HC("Attempt to send sys config command failed.\n");
7454 return err;
7455 }
bf79451e 7456
43f66a6c 7457 IPW_DEBUG_ASSOC("Association sensitivity: %d\n", network->stats.rssi);
ea2b26e0 7458 err = ipw_set_sensitivity(priv, network->stats.rssi + IPW_RSSI_TO_DBM);
43f66a6c
JK		 7459 if (err) {
7460 IPW_DEBUG_HC("Attempt to send associate command failed.\n");
7461 return err;
7462 }
7463
7464 /*
7465 * If preemption is enabled, it is possible for the association
7466 * to complete before we return from ipw_send_associate. Therefore
7467 * we have to be sure and update our priviate data first.
7468 */
7469 priv->channel = network->channel;
7470 memcpy(priv->bssid, network->bssid, ETH_ALEN);
bf79451e 7471 priv->status |= STATUS_ASSOCIATING;
43f66a6c
JK		 7472 priv->status &= ~STATUS_SECURITY_UPDATED;
7473
7474 priv->assoc_network = network;
7475
e43e3c1e 7476#ifdef CONFIG_IPW2200_QOS
b095c381
JK		 7477 ipw_qos_association(priv, network);
7478#endif
7479
43f66a6c
JK		 7480 err = ipw_send_associate(priv, &priv->assoc_request);
7481 if (err) {
7482 IPW_DEBUG_HC("Attempt to send associate command failed.\n");
7483 return err;
7484 }
bf79451e 7485
e174961c 7486 IPW_DEBUG(IPW_DL_STATE, "associating: '%s' %pM \n",
9387b7ca 7487 print_ssid(ssid, priv->essid, priv->essid_len),
e174961c 7488 priv->bssid);
43f66a6c
JK		 7489
7490 return 0;
7491}
7492
7493static void ipw_roam(void *data)
7494{
7495 struct ipw_priv *priv = data;
7496 struct ieee80211_network *network = NULL;
7497 struct ipw_network_match match = {
7498 .network = priv->assoc_network
7499 };
7500
7501 /* The roaming process is as follows:
bf79451e
JG		 7502 *
7503 * 1. Missed beacon threshold triggers the roaming process by
43f66a6c
JK		 7504 * setting the status ROAM bit and requesting a scan.
7505 * 2. When the scan completes, it schedules the ROAM work
7506 * 3. The ROAM work looks at all of the known networks for one that
7507 * is a better network than the currently associated. If none
7508 * found, the ROAM process is over (ROAM bit cleared)
7509 * 4. If a better network is found, a disassociation request is
7510 * sent.
7511 * 5. When the disassociation completes, the roam work is again
7512 * scheduled. The second time through, the driver is no longer
7513 * associated, and the newly selected network is sent an
bf79451e 7514 * association request.
43f66a6c
JK		 7515 * 6. At this point ,the roaming process is complete and the ROAM
7516 * status bit is cleared.
7517 */
7518
7519 /* If we are no longer associated, and the roaming bit is no longer
7520 * set, then we are not actively roaming, so just return */
7521 if (!(priv->status & (STATUS_ASSOCIATED | STATUS_ROAMING)))
7522 return;
bf79451e 7523
43f66a6c 7524 if (priv->status & STATUS_ASSOCIATED) {
bf79451e 7525 /* First pass through ROAM process -- look for a better
43f66a6c 7526 * network */
a613bffd 7527 unsigned long flags;
43f66a6c
JK		 7528 u8 rssi = priv->assoc_network->stats.rssi;
7529 priv->assoc_network->stats.rssi = -128;
a613bffd 7530 spin_lock_irqsave(&priv->ieee->lock, flags);
43f66a6c
JK		 7531 list_for_each_entry(network, &priv->ieee->network_list, list) {
7532 if (network != priv->assoc_network)
7533 ipw_best_network(priv, &match, network, 1);
7534 }
a613bffd 7535 spin_unlock_irqrestore(&priv->ieee->lock, flags);
43f66a6c 7536 priv->assoc_network->stats.rssi = rssi;
bf79451e 7537
43f66a6c
JK		 7538 if (match.network == priv->assoc_network) {
7539 IPW_DEBUG_ASSOC("No better APs in this network to "
7540 "roam to.\n");
7541 priv->status &= ~STATUS_ROAMING;
7542 ipw_debug_config(priv);
7543 return;
7544 }
bf79451e 7545
43f66a6c
JK		 7546 ipw_send_disassociate(priv, 1);
7547 priv->assoc_network = match.network;
7548
7549 return;
bf79451e 7550 }
43f66a6c
JK		 7551
7552 /* Second pass through ROAM process -- request association */
7553 ipw_compatible_rates(priv, priv->assoc_network, &match.rates);
7554 ipw_associate_network(priv, priv->assoc_network, &match.rates, 1);
7555 priv->status &= ~STATUS_ROAMING;
7556}
7557
c4028958 7558static void ipw_bg_roam(struct work_struct *work)
c848d0af 7559{
c4028958
DH		 7560 struct ipw_priv *priv =
7561 container_of(work, struct ipw_priv, roam);
4644151b 7562 mutex_lock(&priv->mutex);
c4028958 7563 ipw_roam(priv);
4644151b 7564 mutex_unlock(&priv->mutex);
c848d0af
JK		 7565}
7566
7567static int ipw_associate(void *data)
43f66a6c
JK		 7568{
7569 struct ipw_priv *priv = data;
7570
7571 struct ieee80211_network *network = NULL;
7572 struct ipw_network_match match = {
7573 .network = NULL
7574 };
7575 struct ipw_supported_rates *rates;
7576 struct list_head *element;
a613bffd 7577 unsigned long flags;
9387b7ca 7578 DECLARE_SSID_BUF(ssid);
43f66a6c 7579
b095c381
JK		 7580 if (priv->ieee->iw_mode == IW_MODE_MONITOR) {
7581 IPW_DEBUG_ASSOC("Not attempting association (monitor mode)\n");
7582 return 0;
7583 }
7584
c848d0af 7585 if (priv->status & (STATUS_ASSOCIATED | STATUS_ASSOCIATING)) {
afbf30a2
JK		 7586 IPW_DEBUG_ASSOC("Not attempting association (already in "
7587 "progress)\n");
c848d0af
JK		 7588 return 0;
7589 }
7590
e6324726
HL		 7591 if (priv->status & STATUS_DISASSOCIATING) {
7592 IPW_DEBUG_ASSOC("Not attempting association (in "
7593 "disassociating)\n ");
7594 queue_work(priv->workqueue, &priv->associate);
7595 return 0;
7596 }
7597
c848d0af 7598 if (!ipw_is_init(priv) || (priv->status & STATUS_SCANNING)) {
afbf30a2
JK		 7599 IPW_DEBUG_ASSOC("Not attempting association (scanning or not "
7600 "initialized)\n");
c848d0af
JK		 7601 return 0;
7602 }
43f66a6c
JK		 7603
7604 if (!(priv->config & CFG_ASSOCIATE) &&
3e4127fa 7605 !(priv->config & (CFG_STATIC_ESSID | CFG_STATIC_BSSID))) {
43f66a6c 7606 IPW_DEBUG_ASSOC("Not attempting association (associate=0)\n");
c848d0af 7607 return 0;
43f66a6c
JK		 7608 }
7609
a613bffd
JK		 7610 /* Protect our use of the network_list */
7611 spin_lock_irqsave(&priv->ieee->lock, flags);
bf79451e 7612 list_for_each_entry(network, &priv->ieee->network_list, list)
0edd5b44 7613 ipw_best_network(priv, &match, network, 0);
43f66a6c
JK		 7614
7615 network = match.network;
7616 rates = &match.rates;
7617
7618 if (network == NULL &&
7619 priv->ieee->iw_mode == IW_MODE_ADHOC &&
7620 priv->config & CFG_ADHOC_CREATE &&
7621 priv->config & CFG_STATIC_ESSID &&
a6d4eae8
DW		 7622 priv->config & CFG_STATIC_CHANNEL) {
7623 /* Use oldest network if the free list is empty */
7624 if (list_empty(&priv->ieee->network_free_list)) {
7625 struct ieee80211_network *oldest = NULL;
7626 struct ieee80211_network *target;
a6d4eae8
DW		 7627
7628 list_for_each_entry(target, &priv->ieee->network_list, list) {
7629 if ((oldest == NULL) ||
7630 (target->last_scanned < oldest->last_scanned))
7631 oldest = target;
7632 }
7633
7634 /* If there are no more slots, expire the oldest */
7635 list_del(&oldest->list);
7636 target = oldest;
e174961c 7637 IPW_DEBUG_ASSOC("Expired '%s' (%pM) from "
a6d4eae8 7638 "network list.\n",
9387b7ca
JL		 7639 print_ssid(ssid, target->ssid,
7640 target->ssid_len),
e174961c 7641 target->bssid);
a6d4eae8
DW		 7642 list_add_tail(&target->list,
7643 &priv->ieee->network_free_list);
7644 }
7645
43f66a6c 7646 element = priv->ieee->network_free_list.next;
0edd5b44 7647 network = list_entry(element, struct ieee80211_network, list);
43f66a6c
JK		 7648 ipw_adhoc_create(priv, network);
7649 rates = &priv->rates;
7650 list_del(element);
7651 list_add_tail(&network->list, &priv->ieee->network_list);
7652 }
a613bffd 7653 spin_unlock_irqrestore(&priv->ieee->lock, flags);
bf79451e 7654
43f66a6c
JK		 7655 /* If we reached the end of the list, then we don't have any valid
7656 * matching APs */
7657 if (!network) {
7658 ipw_debug_config(priv);
7659
b095c381
JK		 7660 if (!(priv->status & STATUS_SCANNING)) {
7661 if (!(priv->config & CFG_SPEED_SCAN))
7662 queue_delayed_work(priv->workqueue,
7663 &priv->request_scan,
7664 SCAN_INTERVAL);
7665 else
c4028958
DH		 7666 queue_delayed_work(priv->workqueue,
7667 &priv->request_scan, 0);
b095c381 7668 }
bf79451e 7669
c848d0af 7670 return 0;
43f66a6c
JK		 7671 }
7672
7673 ipw_associate_network(priv, network, rates, 0);
c848d0af
JK		 7674
7675 return 1;
7676}
7677
c4028958 7678static void ipw_bg_associate(struct work_struct *work)
c848d0af 7679{
c4028958
DH		 7680 struct ipw_priv *priv =
7681 container_of(work, struct ipw_priv, associate);
4644151b 7682 mutex_lock(&priv->mutex);
c4028958 7683 ipw_associate(priv);
4644151b 7684 mutex_unlock(&priv->mutex);
43f66a6c 7685}
bf79451e 7686
b095c381
JK		 7687static void ipw_rebuild_decrypted_skb(struct ipw_priv *priv,
7688 struct sk_buff *skb)
7689{
7690 struct ieee80211_hdr *hdr;
7691 u16 fc;
7692
7693 hdr = (struct ieee80211_hdr *)skb->data;
72118015 7694 fc = le16_to_cpu(hdr->frame_control);
b095c381
JK		 7695 if (!(fc & IEEE80211_FCTL_PROTECTED))
7696 return;
7697
7698 fc &= ~IEEE80211_FCTL_PROTECTED;
72118015 7699 hdr->frame_control = cpu_to_le16(fc);
b095c381
JK		 7700 switch (priv->ieee->sec.level) {
7701 case SEC_LEVEL_3:
7702 /* Remove CCMP HDR */
7703 memmove(skb->data + IEEE80211_3ADDR_LEN,
7704 skb->data + IEEE80211_3ADDR_LEN + 8,
7705 skb->len - IEEE80211_3ADDR_LEN - 8);
f4ff497d 7706 skb_trim(skb, skb->len - 16); /* CCMP_HDR_LEN + CCMP_MIC_LEN */
b095c381
JK		 7707 break;
7708 case SEC_LEVEL_2:
7709 break;
7710 case SEC_LEVEL_1:
7711 /* Remove IV */
7712 memmove(skb->data + IEEE80211_3ADDR_LEN,
7713 skb->data + IEEE80211_3ADDR_LEN + 4,
7714 skb->len - IEEE80211_3ADDR_LEN - 4);
f4ff497d 7715 skb_trim(skb, skb->len - 8); /* IV + ICV */
b095c381
JK		 7716 break;
7717 case SEC_LEVEL_0:
7718 break;
7719 default:
7720 printk(KERN_ERR "Unknow security level %d\n",
7721 priv->ieee->sec.level);
7722 break;
7723 }
43f66a6c 7724}
bf79451e 7725
b095c381
JK		 7726static void ipw_handle_data_packet(struct ipw_priv *priv,
7727 struct ipw_rx_mem_buffer *rxb,
7728 struct ieee80211_rx_stats *stats)
43f66a6c 7729{
ce55cbaf 7730 struct net_device *dev = priv->net_dev;
567deaf6 7731 struct ieee80211_hdr_4addr *hdr;
43f66a6c
JK		 7732 struct ipw_rx_packet *pkt = (struct ipw_rx_packet *)rxb->skb->data;
7733
7734 /* We received data from the HW, so stop the watchdog */
ce55cbaf 7735 dev->trans_start = jiffies;
43f66a6c 7736
bf79451e 7737 /* We only process data packets if the
43f66a6c 7738 * interface is open */
a613bffd 7739 if (unlikely((le16_to_cpu(pkt->u.frame.length) + IPW_RX_FRAME_SIZE) >
43f66a6c 7740 skb_tailroom(rxb->skb))) {
ce55cbaf 7741 dev->stats.rx_errors++;
43f66a6c
JK		 7742 priv->wstats.discard.misc++;
7743 IPW_DEBUG_DROP("Corruption detected! Oh no!\n");
7744 return;
7745 } else if (unlikely(!netif_running(priv->net_dev))) {
ce55cbaf 7746 dev->stats.rx_dropped++;
43f66a6c
JK		 7747 priv->wstats.discard.misc++;
7748 IPW_DEBUG_DROP("Dropping packet while interface is not up.\n");
7749 return;
7750 }
7751
7752 /* Advance skb->data to the start of the actual payload */
aaa4d308 7753 skb_reserve(rxb->skb, offsetof(struct ipw_rx_packet, u.frame.data));
43f66a6c
JK		 7754
7755 /* Set the size of the skb to the size of the frame */
a613bffd 7756 skb_put(rxb->skb, le16_to_cpu(pkt->u.frame.length));
43f66a6c
JK		 7757
7758 IPW_DEBUG_RX("Rx packet of %d bytes.\n", rxb->skb->len);
7759
b095c381 7760 /* HW decrypt will not clear the WEP bit, MIC, PN, etc. */
567deaf6
HL		 7761 hdr = (struct ieee80211_hdr_4addr *)rxb->skb->data;
7762 if (priv->ieee->iw_mode != IW_MODE_MONITOR &&
3c19065a 7763 (is_multicast_ether_addr(hdr->addr1) ?
567deaf6 7764 !priv->ieee->host_mc_decrypt : !priv->ieee->host_decrypt))
b095c381
JK		 7765 ipw_rebuild_decrypted_skb(priv, rxb->skb);
7766
bf79451e 7767 if (!ieee80211_rx(priv->ieee, rxb->skb, stats))
ce55cbaf 7768 dev->stats.rx_errors++;
a613bffd 7769 else { /* ieee80211_rx succeeded, so it now owns the SKB */
43f66a6c 7770 rxb->skb = NULL;
b095c381 7771 __ipw_led_activity_on(priv);
a613bffd 7772 }
43f66a6c
JK		 7773}
7774
459d4087 7775#ifdef CONFIG_IPW2200_RADIOTAP
24a47dbd
MK		 7776static void ipw_handle_data_packet_monitor(struct ipw_priv *priv,
7777 struct ipw_rx_mem_buffer *rxb,
7778 struct ieee80211_rx_stats *stats)
7779{
ce55cbaf 7780 struct net_device *dev = priv->net_dev;
24a47dbd
MK		 7781 struct ipw_rx_packet *pkt = (struct ipw_rx_packet *)rxb->skb->data;
7782 struct ipw_rx_frame *frame = &pkt->u.frame;
7783
7784 /* initial pull of some data */
7785 u16 received_channel = frame->received_channel;
7786 u8 antennaAndPhy = frame->antennaAndPhy;
7787 s8 antsignal = frame->rssi_dbm - IPW_RSSI_TO_DBM; /* call it signed anyhow */
7788 u16 pktrate = frame->rate;
7789
7790 /* Magic struct that slots into the radiotap header -- no reason
7791 * to build this manually element by element, we can write it much
7792 * more efficiently than we can parse it. ORDER MATTERS HERE */
d685b8c2 7793 struct ipw_rt_hdr *ipw_rt;
24a47dbd
MK		 7794
7795 short len = le16_to_cpu(pkt->u.frame.length);
7796
7797 /* We received data from the HW, so stop the watchdog */
ce55cbaf 7798 dev->trans_start = jiffies;
24a47dbd
MK		 7799
7800 /* We only process data packets if the
7801 * interface is open */
7802 if (unlikely((le16_to_cpu(pkt->u.frame.length) + IPW_RX_FRAME_SIZE) >
7803 skb_tailroom(rxb->skb))) {
ce55cbaf 7804 dev->stats.rx_errors++;
24a47dbd
MK		 7805 priv->wstats.discard.misc++;
7806 IPW_DEBUG_DROP("Corruption detected! Oh no!\n");
7807 return;
7808 } else if (unlikely(!netif_running(priv->net_dev))) {
ce55cbaf 7809 dev->stats.rx_dropped++;
24a47dbd
MK		 7810 priv->wstats.discard.misc++;
7811 IPW_DEBUG_DROP("Dropping packet while interface is not up.\n");
7812 return;
7813 }
7814
7815 /* Libpcap 0.9.3+ can handle variable length radiotap, so we'll use
7816 * that now */
7817 if (len > IPW_RX_BUF_SIZE - sizeof(struct ipw_rt_hdr)) {
7818 /* FIXME: Should alloc bigger skb instead */
ce55cbaf 7819 dev->stats.rx_dropped++;
24a47dbd
MK		 7820 priv->wstats.discard.misc++;
7821 IPW_DEBUG_DROP("Dropping too large packet in monitor\n");
7822 return;
7823 }
7824
7825 /* copy the frame itself */
7826 memmove(rxb->skb->data + sizeof(struct ipw_rt_hdr),
7827 rxb->skb->data + IPW_RX_FRAME_SIZE, len);
7828
24a47dbd
MK		 7829 ipw_rt = (struct ipw_rt_hdr *)rxb->skb->data;
7830
7831 ipw_rt->rt_hdr.it_version = PKTHDR_RADIOTAP_VERSION;
7832 ipw_rt->rt_hdr.it_pad = 0; /* always good to zero */
743b84d2 7833 ipw_rt->rt_hdr.it_len = cpu_to_le16(sizeof(struct ipw_rt_hdr)); /* total header+data */
24a47dbd
MK		 7834
7835 /* Big bitfield of all the fields we provide in radiotap */
743b84d2
AV		 7836 ipw_rt->rt_hdr.it_present = cpu_to_le32(
7837 (1 << IEEE80211_RADIOTAP_TSFT) |
4b1f8a99 7838 (1 << IEEE80211_RADIOTAP_FLAGS) |
24a47dbd
MK		 7839 (1 << IEEE80211_RADIOTAP_RATE) |
7840 (1 << IEEE80211_RADIOTAP_CHANNEL) |
7841 (1 << IEEE80211_RADIOTAP_DBM_ANTSIGNAL) |
d685b8c2 7842 (1 << IEEE80211_RADIOTAP_DBM_ANTNOISE) |
24a47dbd
MK		 7843 (1 << IEEE80211_RADIOTAP_ANTENNA));
7844
7845 /* Zero the flags, we'll add to them as we go */
7846 ipw_rt->rt_flags = 0;
4b1f8a99
ZY		 7847 ipw_rt->rt_tsf = (u64)(frame->parent_tsf[3] << 24 |
7848 frame->parent_tsf[2] << 16 |
7849 frame->parent_tsf[1] << 8 |
7850 frame->parent_tsf[0]);
24a47dbd
MK		 7851
7852 /* Convert signal to DBM */
7853 ipw_rt->rt_dbmsignal = antsignal;
21f8a73f 7854 ipw_rt->rt_dbmnoise = (s8) le16_to_cpu(frame->noise);
24a47dbd
MK		 7855
7856 /* Convert the channel data and set the flags */
7857 ipw_rt->rt_channel = cpu_to_le16(ieee80211chan2mhz(received_channel));
7858 if (received_channel > 14) { /* 802.11a */
7859 ipw_rt->rt_chbitmask =
7860 cpu_to_le16((IEEE80211_CHAN_OFDM | IEEE80211_CHAN_5GHZ));
7861 } else if (antennaAndPhy & 32) { /* 802.11b */
7862 ipw_rt->rt_chbitmask =
7863 cpu_to_le16((IEEE80211_CHAN_CCK | IEEE80211_CHAN_2GHZ));
7864 } else { /* 802.11g */
7865 ipw_rt->rt_chbitmask =
472caf8c 7866 cpu_to_le16(IEEE80211_CHAN_OFDM | IEEE80211_CHAN_2GHZ);
24a47dbd
MK		 7867 }
7868
7869 /* set the rate in multiples of 500k/s */
7870 switch (pktrate) {
7871 case IPW_TX_RATE_1MB:
7872 ipw_rt->rt_rate = 2;
7873 break;
7874 case IPW_TX_RATE_2MB:
7875 ipw_rt->rt_rate = 4;
7876 break;
7877 case IPW_TX_RATE_5MB:
7878 ipw_rt->rt_rate = 10;
7879 break;
7880 case IPW_TX_RATE_6MB:
7881 ipw_rt->rt_rate = 12;
7882 break;
7883 case IPW_TX_RATE_9MB:
7884 ipw_rt->rt_rate = 18;
7885 break;
7886 case IPW_TX_RATE_11MB:
7887 ipw_rt->rt_rate = 22;
7888 break;
7889 case IPW_TX_RATE_12MB:
7890 ipw_rt->rt_rate = 24;
7891 break;
7892 case IPW_TX_RATE_18MB:
7893 ipw_rt->rt_rate = 36;
7894 break;
7895 case IPW_TX_RATE_24MB:
7896 ipw_rt->rt_rate = 48;
7897 break;
7898 case IPW_TX_RATE_36MB:
7899 ipw_rt->rt_rate = 72;
7900 break;
7901 case IPW_TX_RATE_48MB:
7902 ipw_rt->rt_rate = 96;
7903 break;
7904 case IPW_TX_RATE_54MB:
7905 ipw_rt->rt_rate = 108;
7906 break;
7907 default:
7908 ipw_rt->rt_rate = 0;
7909 break;
7910 }
7911
7912 /* antenna number */
7913 ipw_rt->rt_antenna = (antennaAndPhy & 3); /* Is this right? */
7914
7915 /* set the preamble flag if we have it */
7916 if ((antennaAndPhy & 64))
7917 ipw_rt->rt_flags |= IEEE80211_RADIOTAP_F_SHORTPRE;
7918
7919 /* Set the size of the skb to the size of the frame */
7920 skb_put(rxb->skb, len + sizeof(struct ipw_rt_hdr));
43f66a6c
JK		 7921
7922 IPW_DEBUG_RX("Rx packet of %d bytes.\n", rxb->skb->len);
7923
bf79451e 7924 if (!ieee80211_rx(priv->ieee, rxb->skb, stats))
ce55cbaf 7925 dev->stats.rx_errors++;
24a47dbd
MK		 7926 else { /* ieee80211_rx succeeded, so it now owns the SKB */
7927 rxb->skb = NULL;
7928 /* no LED during capture */
7929 }
7930}
7931#endif
7932
d685b8c2
ZY		 7933#ifdef CONFIG_IPW2200_PROMISCUOUS
7934#define ieee80211_is_probe_response(fc) \
7935 ((fc & IEEE80211_FCTL_FTYPE) == IEEE80211_FTYPE_MGMT && \
7936 (fc & IEEE80211_FCTL_STYPE) == IEEE80211_STYPE_PROBE_RESP )
7937
7938#define ieee80211_is_management(fc) \
7939 ((fc & IEEE80211_FCTL_FTYPE) == IEEE80211_FTYPE_MGMT)
7940
7941#define ieee80211_is_control(fc) \
7942 ((fc & IEEE80211_FCTL_FTYPE) == IEEE80211_FTYPE_CTL)
7943
7944#define ieee80211_is_data(fc) \
7945 ((fc & IEEE80211_FCTL_FTYPE) == IEEE80211_FTYPE_DATA)
7946
7947#define ieee80211_is_assoc_request(fc) \
7948 ((fc & IEEE80211_FCTL_STYPE) == IEEE80211_STYPE_ASSOC_REQ)
7949
7950#define ieee80211_is_reassoc_request(fc) \
7951 ((fc & IEEE80211_FCTL_STYPE) == IEEE80211_STYPE_REASSOC_REQ)
7952
7953static void ipw_handle_promiscuous_rx(struct ipw_priv *priv,
7954 struct ipw_rx_mem_buffer *rxb,
7955 struct ieee80211_rx_stats *stats)
7956{
ce55cbaf 7957 struct net_device *dev = priv->prom_net_dev;
d685b8c2
ZY		 7958 struct ipw_rx_packet *pkt = (struct ipw_rx_packet *)rxb->skb->data;
7959 struct ipw_rx_frame *frame = &pkt->u.frame;
7960 struct ipw_rt_hdr *ipw_rt;
7961
7962 /* First cache any information we need before we overwrite
7963 * the information provided in the skb from the hardware */
7964 struct ieee80211_hdr *hdr;
7965 u16 channel = frame->received_channel;
7966 u8 phy_flags = frame->antennaAndPhy;
7967 s8 signal = frame->rssi_dbm - IPW_RSSI_TO_DBM;
21f8a73f 7968 s8 noise = (s8) le16_to_cpu(frame->noise);
d685b8c2
ZY		 7969 u8 rate = frame->rate;
7970 short len = le16_to_cpu(pkt->u.frame.length);
d685b8c2
ZY		 7971 struct sk_buff *skb;
7972 int hdr_only = 0;
7973 u16 filter = priv->prom_priv->filter;
7974
7975 /* If the filter is set to not include Rx frames then return */
7976 if (filter & IPW_PROM_NO_RX)
7977 return;
7978
d685b8c2 7979 /* We received data from the HW, so stop the watchdog */
ce55cbaf 7980 dev->trans_start = jiffies;
d685b8c2
ZY		 7981
7982 if (unlikely((len + IPW_RX_FRAME_SIZE) > skb_tailroom(rxb->skb))) {
ce55cbaf 7983 dev->stats.rx_errors++;
d685b8c2
ZY		 7984 IPW_DEBUG_DROP("Corruption detected! Oh no!\n");
7985 return;
7986 }
7987
7988 /* We only process data packets if the interface is open */
ce55cbaf
SH		 7989 if (unlikely(!netif_running(dev))) {
7990 dev->stats.rx_dropped++;
d685b8c2
ZY		 7991 IPW_DEBUG_DROP("Dropping packet while interface is not up.\n");
7992 return;
7993 }
7994
7995 /* Libpcap 0.9.3+ can handle variable length radiotap, so we'll use
7996 * that now */
7997 if (len > IPW_RX_BUF_SIZE - sizeof(struct ipw_rt_hdr)) {
7998 /* FIXME: Should alloc bigger skb instead */
ce55cbaf 7999 dev->stats.rx_dropped++;
d685b8c2
ZY		 8000 IPW_DEBUG_DROP("Dropping too large packet in monitor\n");
8001 return;
8002 }
8003
8004 hdr = (void *)rxb->skb->data + IPW_RX_FRAME_SIZE;
72118015 8005 if (ieee80211_is_management(le16_to_cpu(hdr->frame_control))) {
d685b8c2
ZY		 8006 if (filter & IPW_PROM_NO_MGMT)
8007 return;
8008 if (filter & IPW_PROM_MGMT_HEADER_ONLY)
8009 hdr_only = 1;
72118015 8010 } else if (ieee80211_is_control(le16_to_cpu(hdr->frame_control))) {
d685b8c2
ZY		 8011 if (filter & IPW_PROM_NO_CTL)
8012 return;
8013 if (filter & IPW_PROM_CTL_HEADER_ONLY)
8014 hdr_only = 1;
72118015 8015 } else if (ieee80211_is_data(le16_to_cpu(hdr->frame_control))) {
d685b8c2
ZY		 8016 if (filter & IPW_PROM_NO_DATA)
8017 return;
8018 if (filter & IPW_PROM_DATA_HEADER_ONLY)
8019 hdr_only = 1;
8020 }
8021
8022 /* Copy the SKB since this is for the promiscuous side */
8023 skb = skb_copy(rxb->skb, GFP_ATOMIC);
8024 if (skb == NULL) {
8025 IPW_ERROR("skb_clone failed for promiscuous copy.\n");
8026 return;
8027 }
8028
8029 /* copy the frame data to write after where the radiotap header goes */
8030 ipw_rt = (void *)skb->data;
8031
8032 if (hdr_only)
72118015 8033 len = ieee80211_get_hdrlen(le16_to_cpu(hdr->frame_control));
d685b8c2
ZY		 8034
8035 memcpy(ipw_rt->payload, hdr, len);
8036
d685b8c2
ZY		 8037 ipw_rt->rt_hdr.it_version = PKTHDR_RADIOTAP_VERSION;
8038 ipw_rt->rt_hdr.it_pad = 0; /* always good to zero */
743b84d2 8039 ipw_rt->rt_hdr.it_len = cpu_to_le16(sizeof(*ipw_rt)); /* total header+data */
d685b8c2
ZY		 8040
8041 /* Set the size of the skb to the size of the frame */
743b84d2 8042 skb_put(skb, sizeof(*ipw_rt) + len);
d685b8c2
ZY		 8043
8044 /* Big bitfield of all the fields we provide in radiotap */
743b84d2
AV		 8045 ipw_rt->rt_hdr.it_present = cpu_to_le32(
8046 (1 << IEEE80211_RADIOTAP_TSFT) |
4b1f8a99 8047 (1 << IEEE80211_RADIOTAP_FLAGS) |
d685b8c2
ZY		 8048 (1 << IEEE80211_RADIOTAP_RATE) |
8049 (1 << IEEE80211_RADIOTAP_CHANNEL) |
8050 (1 << IEEE80211_RADIOTAP_DBM_ANTSIGNAL) |
8051 (1 << IEEE80211_RADIOTAP_DBM_ANTNOISE) |
8052 (1 << IEEE80211_RADIOTAP_ANTENNA));
8053
8054 /* Zero the flags, we'll add to them as we go */
8055 ipw_rt->rt_flags = 0;
4b1f8a99
ZY		 8056 ipw_rt->rt_tsf = (u64)(frame->parent_tsf[3] << 24 |
8057 frame->parent_tsf[2] << 16 |
8058 frame->parent_tsf[1] << 8 |
8059 frame->parent_tsf[0]);
d685b8c2
ZY		 8060
8061 /* Convert to DBM */
8062 ipw_rt->rt_dbmsignal = signal;
8063 ipw_rt->rt_dbmnoise = noise;
8064
8065 /* Convert the channel data and set the flags */
8066 ipw_rt->rt_channel = cpu_to_le16(ieee80211chan2mhz(channel));
8067 if (channel > 14) { /* 802.11a */
8068 ipw_rt->rt_chbitmask =
8069 cpu_to_le16((IEEE80211_CHAN_OFDM | IEEE80211_CHAN_5GHZ));
8070 } else if (phy_flags & (1 << 5)) { /* 802.11b */
8071 ipw_rt->rt_chbitmask =
8072 cpu_to_le16((IEEE80211_CHAN_CCK | IEEE80211_CHAN_2GHZ));
8073 } else { /* 802.11g */
8074 ipw_rt->rt_chbitmask =
472caf8c 8075 cpu_to_le16(IEEE80211_CHAN_OFDM | IEEE80211_CHAN_2GHZ);
d685b8c2
ZY		 8076 }
8077
8078 /* set the rate in multiples of 500k/s */
8079 switch (rate) {
8080 case IPW_TX_RATE_1MB:
8081 ipw_rt->rt_rate = 2;
8082 break;
8083 case IPW_TX_RATE_2MB:
8084 ipw_rt->rt_rate = 4;
8085 break;
8086 case IPW_TX_RATE_5MB:
8087 ipw_rt->rt_rate = 10;
8088 break;
8089 case IPW_TX_RATE_6MB:
8090 ipw_rt->rt_rate = 12;
8091 break;
8092 case IPW_TX_RATE_9MB:
8093 ipw_rt->rt_rate = 18;
8094 break;
8095 case IPW_TX_RATE_11MB:
8096 ipw_rt->rt_rate = 22;
8097 break;
8098 case IPW_TX_RATE_12MB:
8099 ipw_rt->rt_rate = 24;
8100 break;
8101 case IPW_TX_RATE_18MB:
8102 ipw_rt->rt_rate = 36;
8103 break;
8104 case IPW_TX_RATE_24MB:
8105 ipw_rt->rt_rate = 48;
8106 break;
8107 case IPW_TX_RATE_36MB:
8108 ipw_rt->rt_rate = 72;
8109 break;
8110 case IPW_TX_RATE_48MB:
8111 ipw_rt->rt_rate = 96;
8112 break;
8113 case IPW_TX_RATE_54MB:
8114 ipw_rt->rt_rate = 108;
8115 break;
8116 default:
8117 ipw_rt->rt_rate = 0;
8118 break;
8119 }
8120
8121 /* antenna number */
8122 ipw_rt->rt_antenna = (phy_flags & 3);
8123
8124 /* set the preamble flag if we have it */
8125 if (phy_flags & (1 << 6))
8126 ipw_rt->rt_flags |= IEEE80211_RADIOTAP_F_SHORTPRE;
8127
8128 IPW_DEBUG_RX("Rx packet of %d bytes.\n", skb->len);
8129
8130 if (!ieee80211_rx(priv->prom_priv->ieee, skb, stats)) {
ce55cbaf 8131 dev->stats.rx_errors++;
d685b8c2
ZY		 8132 dev_kfree_skb_any(skb);
8133 }
8134}
8135#endif
8136
858119e1 8137static int is_network_packet(struct ipw_priv *priv,
ea2b26e0
JK		 8138 struct ieee80211_hdr_4addr *header)
8139{
8140 /* Filter incoming packets to determine if they are targetted toward
8141 * this network, discarding packets coming from ourselves */
8142 switch (priv->ieee->iw_mode) {
a613bffd 8143 case IW_MODE_ADHOC: /* Header: Dest. | Source | BSSID */
c848d0af
JK		 8144 /* packets from our adapter are dropped (echo) */
8145 if (!memcmp(header->addr2, priv->net_dev->dev_addr, ETH_ALEN))
8146 return 0;
8147
90700fd9 8148 /* {broad,multi}cast packets to our BSSID go through */
3c19065a 8149 if (is_multicast_ether_addr(header->addr1))
ea2b26e0 8150 return !memcmp(header->addr3, priv->bssid, ETH_ALEN);
a613bffd
JK		 8151
8152 /* packets to our adapter go through */
8153 return !memcmp(header->addr1, priv->net_dev->dev_addr,
8154 ETH_ALEN);
a613bffd 8155
90700fd9 8156 case IW_MODE_INFRA: /* Header: Dest. | BSSID | Source */
c848d0af
JK		 8157 /* packets from our adapter are dropped (echo) */
8158 if (!memcmp(header->addr3, priv->net_dev->dev_addr, ETH_ALEN))
8159 return 0;
8160
90700fd9 8161 /* {broad,multi}cast packets to our BSS go through */
3c19065a 8162 if (is_multicast_ether_addr(header->addr1))
a613bffd
JK		 8163 return !memcmp(header->addr2, priv->bssid, ETH_ALEN);
8164
8165 /* packets to our adapter go through */
8166 return !memcmp(header->addr1, priv->net_dev->dev_addr,
8167 ETH_ALEN);
ea2b26e0 8168 }
a613bffd 8169
ea2b26e0
JK		 8170 return 1;
8171}
8172
afbf30a2
JK		 8173#define IPW_PACKET_RETRY_TIME HZ
8174
858119e1 8175static int is_duplicate_packet(struct ipw_priv *priv,
afbf30a2
JK		 8176 struct ieee80211_hdr_4addr *header)
8177{
afbf30a2
JK		 8178 u16 sc = le16_to_cpu(header->seq_ctl);
8179 u16 seq = WLAN_GET_SEQ_SEQ(sc);
8180 u16 frag = WLAN_GET_SEQ_FRAG(sc);
8181 u16 *last_seq, *last_frag;
8182 unsigned long *last_time;
8183
8184 switch (priv->ieee->iw_mode) {
8185 case IW_MODE_ADHOC:
8186 {
8187 struct list_head *p;
8188 struct ipw_ibss_seq *entry = NULL;
8189 u8 *mac = header->addr2;
8190 int index = mac[5] % IPW_IBSS_MAC_HASH_SIZE;
8191
8192 __list_for_each(p, &priv->ibss_mac_hash[index]) {
8193 entry =
8194 list_entry(p, struct ipw_ibss_seq, list);
8195 if (!memcmp(entry->mac, mac, ETH_ALEN))
8196 break;
8197 }
8198 if (p == &priv->ibss_mac_hash[index]) {
8199 entry = kmalloc(sizeof(*entry), GFP_ATOMIC);
8200 if (!entry) {
8201 IPW_ERROR
8202 ("Cannot malloc new mac entry\n");
8203 return 0;
8204 }
8205 memcpy(entry->mac, mac, ETH_ALEN);
8206 entry->seq_num = seq;
8207 entry->frag_num = frag;
8208 entry->packet_time = jiffies;
8209 list_add(&entry->list,
8210 &priv->ibss_mac_hash[index]);
8211 return 0;
8212 }
8213 last_seq = &entry->seq_num;
8214 last_frag = &entry->frag_num;
8215 last_time = &entry->packet_time;
8216 break;
8217 }
8218 case IW_MODE_INFRA:
8219 last_seq = &priv->last_seq_num;
8220 last_frag = &priv->last_frag_num;
8221 last_time = &priv->last_packet_time;
8222 break;
8223 default:
8224 return 0;
8225 }
8226 if ((*last_seq == seq) &&
8227 time_after(*last_time + IPW_PACKET_RETRY_TIME, jiffies)) {
8228 if (*last_frag == frag)
8229 goto drop;
8230 if (*last_frag + 1 != frag)
8231 /* out-of-order fragment */
8232 goto drop;
afbf30a2
JK		 8233 } else
8234 *last_seq = seq;
8235
f57ce7ce 8236 *last_frag = frag;
afbf30a2
JK		 8237 *last_time = jiffies;
8238 return 0;
8239
8240 drop:
87b016cb
ZY		 8241 /* Comment this line now since we observed the card receives
8242 * duplicate packets but the FCTL_RETRY bit is not set in the
8243 * IBSS mode with fragmentation enabled.
72118015 8244 BUG_ON(!(le16_to_cpu(header->frame_control) & IEEE80211_FCTL_RETRY)); */
afbf30a2
JK		 8245 return 1;
8246}
8247
b095c381
JK		 8248static void ipw_handle_mgmt_packet(struct ipw_priv *priv,
8249 struct ipw_rx_mem_buffer *rxb,
8250 struct ieee80211_rx_stats *stats)
8251{
8252 struct sk_buff *skb = rxb->skb;
8253 struct ipw_rx_packet *pkt = (struct ipw_rx_packet *)skb->data;
8254 struct ieee80211_hdr_4addr *header = (struct ieee80211_hdr_4addr *)
8255 (skb->data + IPW_RX_FRAME_SIZE);
8256
8257 ieee80211_rx_mgt(priv->ieee, header, stats);
8258
8259 if (priv->ieee->iw_mode == IW_MODE_ADHOC &&
8260 ((WLAN_FC_GET_STYPE(le16_to_cpu(header->frame_ctl)) ==
8261 IEEE80211_STYPE_PROBE_RESP) ||
8262 (WLAN_FC_GET_STYPE(le16_to_cpu(header->frame_ctl)) ==
8263 IEEE80211_STYPE_BEACON))) {
8264 if (!memcmp(header->addr3, priv->bssid, ETH_ALEN))
8265 ipw_add_station(priv, header->addr2);
8266 }
8267
8268 if (priv->config & CFG_NET_STATS) {
8269 IPW_DEBUG_HC("sending stat packet\n");
8270
8271 /* Set the size of the skb to the size of the full
8272 * ipw header and 802.11 frame */
8273 skb_put(skb, le16_to_cpu(pkt->u.frame.length) +
8274 IPW_RX_FRAME_SIZE);
8275
8276 /* Advance past the ipw packet header to the 802.11 frame */
8277 skb_pull(skb, IPW_RX_FRAME_SIZE);
8278
8279 /* Push the ieee80211_rx_stats before the 802.11 frame */
8280 memcpy(skb_push(skb, sizeof(*stats)), stats, sizeof(*stats));
8281
8282 skb->dev = priv->ieee->dev;
8283
8284 /* Point raw at the ieee80211_stats */
459a98ed 8285 skb_reset_mac_header(skb);
b095c381
JK		 8286
8287 skb->pkt_type = PACKET_OTHERHOST;
c1b4aa3f 8288 skb->protocol = cpu_to_be16(ETH_P_80211_STATS);
b095c381
JK		 8289 memset(skb->cb, 0, sizeof(rxb->skb->cb));
8290 netif_rx(skb);
43f66a6c 8291 rxb->skb = NULL;
b095c381 8292 }
43f66a6c
JK		 8293}
8294
43f66a6c
JK		 8295/*
8296 * Main entry function for recieving a packet with 80211 headers. This
8297 * should be called when ever the FW has notified us that there is a new
8298 * skb in the recieve queue.
8299 */
8300static void ipw_rx(struct ipw_priv *priv)
8301{
8302 struct ipw_rx_mem_buffer *rxb;
8303 struct ipw_rx_packet *pkt;
0dacca1f 8304 struct ieee80211_hdr_4addr *header;
43f66a6c
JK		 8305 u32 r, w, i;
8306 u8 network_packet;
943dbef4 8307 u8 fill_rx = 0;
43f66a6c 8308
b095c381
JK		 8309 r = ipw_read32(priv, IPW_RX_READ_INDEX);
8310 w = ipw_read32(priv, IPW_RX_WRITE_INDEX);
943dbef4
DW		 8311 i = priv->rxq->read;
8312
8313 if (ipw_rx_queue_space (priv->rxq) > (RX_QUEUE_SIZE / 2))
8314 fill_rx = 1;
43f66a6c
JK		 8315
8316 while (i != r) {
8317 rxb = priv->rxq->queue[i];
43f66a6c
JK		 8318 if (unlikely(rxb == NULL)) {
8319 printk(KERN_CRIT "Queue not allocated!\n");
8320 break;
8321 }
43f66a6c
JK		 8322 priv->rxq->queue[i] = NULL;
8323
8324 pci_dma_sync_single_for_cpu(priv->pci_dev, rxb->dma_addr,
b095c381 8325 IPW_RX_BUF_SIZE,
43f66a6c
JK		 8326 PCI_DMA_FROMDEVICE);
8327
8328 pkt = (struct ipw_rx_packet *)rxb->skb->data;
8329 IPW_DEBUG_RX("Packet: type=%02X seq=%02X bits=%02X\n",
8330 pkt->header.message_type,
0edd5b44 8331 pkt->header.rx_seq_num, pkt->header.control_bits);
43f66a6c
JK		 8332
8333 switch (pkt->header.message_type) {
0edd5b44
JG		 8334 case RX_FRAME_TYPE: /* 802.11 frame */ {
8335 struct ieee80211_rx_stats stats = {
851ca268 8336 .rssi = pkt->u.frame.rssi_dbm -
0edd5b44 8337 IPW_RSSI_TO_DBM,
c848d0af 8338 .signal =
21f8a73f 8339 pkt->u.frame.rssi_dbm -
b191608a 8340 IPW_RSSI_TO_DBM + 0x100,
c848d0af
JK		 8341 .noise =
8342 le16_to_cpu(pkt->u.frame.noise),
0edd5b44
JG		 8343 .rate = pkt->u.frame.rate,
8344 .mac_time = jiffies,
8345 .received_channel =
8346 pkt->u.frame.received_channel,
8347 .freq =
8348 (pkt->u.frame.
8349 control & (1 << 0)) ?
8350 IEEE80211_24GHZ_BAND :
8351 IEEE80211_52GHZ_BAND,
a613bffd 8352 .len = le16_to_cpu(pkt->u.frame.length),
0edd5b44
JG		 8353 };
8354
8355 if (stats.rssi != 0)
8356 stats.mask |= IEEE80211_STATMASK_RSSI;
8357 if (stats.signal != 0)
8358 stats.mask |= IEEE80211_STATMASK_SIGNAL;
c848d0af
JK		 8359 if (stats.noise != 0)
8360 stats.mask |= IEEE80211_STATMASK_NOISE;
0edd5b44
JG		 8361 if (stats.rate != 0)
8362 stats.mask |= IEEE80211_STATMASK_RATE;
8363
8364 priv->rx_packets++;
43f66a6c 8365
d685b8c2
ZY		 8366#ifdef CONFIG_IPW2200_PROMISCUOUS
8367 if (priv->prom_net_dev && netif_running(priv->prom_net_dev))
8368 ipw_handle_promiscuous_rx(priv, rxb, &stats);
8369#endif
8370
b095c381 8371#ifdef CONFIG_IPW2200_MONITOR
0edd5b44 8372 if (priv->ieee->iw_mode == IW_MODE_MONITOR) {
459d4087 8373#ifdef CONFIG_IPW2200_RADIOTAP
d685b8c2
ZY		 8374
8375 ipw_handle_data_packet_monitor(priv,
8376 rxb,
8377 &stats);
24a47dbd 8378#else
d685b8c2
ZY		 8379 ipw_handle_data_packet(priv, rxb,
8380 &stats);
24a47dbd 8381#endif
0edd5b44
JG		 8382 break;
8383 }
43f66a6c 8384#endif
bf79451e 8385
0edd5b44 8386 header =
0dacca1f
JK		 8387 (struct ieee80211_hdr_4addr *)(rxb->skb->
8388 data +
8389 IPW_RX_FRAME_SIZE);
43f66a6c
JK		 8390 /* TODO: Check Ad-Hoc dest/source and make sure
8391 * that we are actually parsing these packets
bf79451e 8392 * correctly -- we should probably use the
43f66a6c
JK		 8393 * frame control of the packet and disregard
8394 * the current iw_mode */
0edd5b44 8395
ea2b26e0
JK		 8396 network_packet =
8397 is_network_packet(priv, header);
0edd5b44
JG		 8398 if (network_packet && priv->assoc_network) {
8399 priv->assoc_network->stats.rssi =
8400 stats.rssi;
00d21de5
ZY		 8401 priv->exp_avg_rssi =
8402 exponential_average(priv->exp_avg_rssi,
8403 stats.rssi, DEPTH_RSSI);
0edd5b44
JG		 8404 }
8405
8406 IPW_DEBUG_RX("Frame: len=%u\n",
a613bffd 8407 le16_to_cpu(pkt->u.frame.length));
0edd5b44 8408
a613bffd 8409 if (le16_to_cpu(pkt->u.frame.length) <
9d0be03a
ZY		 8410 ieee80211_get_hdrlen(le16_to_cpu(
8411 header->frame_ctl))) {
0edd5b44
JG		 8412 IPW_DEBUG_DROP
8413 ("Received packet is too small. "
8414 "Dropping.\n");
ce55cbaf 8415 priv->net_dev->stats.rx_errors++;
0edd5b44
JG		 8416 priv->wstats.discard.misc++;
8417 break;
8418 }
8419
a613bffd
JK		 8420 switch (WLAN_FC_GET_TYPE
8421 (le16_to_cpu(header->frame_ctl))) {
b095c381 8422
0edd5b44 8423 case IEEE80211_FTYPE_MGMT:
b095c381
JK		 8424 ipw_handle_mgmt_packet(priv, rxb,
8425 &stats);
0edd5b44
JG		 8426 break;
8427
8428 case IEEE80211_FTYPE_CTL:
8429 break;
8430
8431 case IEEE80211_FTYPE_DATA:
afbf30a2
JK		 8432 if (unlikely(!network_packet ||
8433 is_duplicate_packet(priv,
8434 header)))
8435 {
0edd5b44 8436 IPW_DEBUG_DROP("Dropping: "
e174961c
JB		 8437 "%pM, "
8438 "%pM, "
8439 "%pM\n",
8440 header->addr1,
8441 header->addr2,
8442 header->addr3);
b095c381
JK		 8443 break;
8444 }
8445
8446 ipw_handle_data_packet(priv, rxb,
8447 &stats);
8448
0edd5b44
JG		 8449 break;
8450 }
43f66a6c
JK		 8451 break;
8452 }
bf79451e 8453
0edd5b44
JG		 8454 case RX_HOST_NOTIFICATION_TYPE:{
8455 IPW_DEBUG_RX
8456 ("Notification: subtype=%02X flags=%02X size=%d\n",
43f66a6c
JK		 8457 pkt->u.notification.subtype,
8458 pkt->u.notification.flags,
720eeb43 8459 le16_to_cpu(pkt->u.notification.size));
0edd5b44
JG		 8460 ipw_rx_notification(priv, &pkt->u.notification);
8461 break;
8462 }
43f66a6c
JK		 8463
8464 default:
8465 IPW_DEBUG_RX("Bad Rx packet of type %d\n",
8466 pkt->header.message_type);
8467 break;
8468 }
bf79451e
JG		 8469
8470 /* For now we just don't re-use anything. We can tweak this
8471 * later to try and re-use notification packets and SKBs that
43f66a6c
JK		 8472 * fail to Rx correctly */
8473 if (rxb->skb != NULL) {
8474 dev_kfree_skb_any(rxb->skb);
8475 rxb->skb = NULL;
8476 }
bf79451e 8477
43f66a6c 8478 pci_unmap_single(priv->pci_dev, rxb->dma_addr,
b095c381 8479 IPW_RX_BUF_SIZE, PCI_DMA_FROMDEVICE);
43f66a6c 8480 list_add_tail(&rxb->list, &priv->rxq->rx_used);
bf79451e 8481
43f66a6c 8482 i = (i + 1) % RX_QUEUE_SIZE;
943dbef4
DW		 8483
8484 /* If there are a lot of unsued frames, restock the Rx queue
8485 * so the ucode won't assert */
8486 if (fill_rx) {
8487 priv->rxq->read = i;
8488 ipw_rx_queue_replenish(priv);
8489 }
43f66a6c
JK		 8490 }
8491
8492 /* Backtrack one entry */
943dbef4 8493 priv->rxq->read = i;
43f66a6c
JK		 8494 ipw_rx_queue_restock(priv);
8495}
8496
afbf30a2
JK		 8497#define DEFAULT_RTS_THRESHOLD 2304U
8498#define MIN_RTS_THRESHOLD 1U
8499#define MAX_RTS_THRESHOLD 2304U
8500#define DEFAULT_BEACON_INTERVAL 100U
8501#define DEFAULT_SHORT_RETRY_LIMIT 7U
8502#define DEFAULT_LONG_RETRY_LIMIT 4U
8503
d6d5b5c1
ZY		 8504/**
8505 * ipw_sw_reset
8506 * @option: options to control different reset behaviour
8507 * 0 = reset everything except the 'disable' module_param
8508 * 1 = reset everything and print out driver info (for probe only)
8509 * 2 = reset everything
8510 */
8511static int ipw_sw_reset(struct ipw_priv *priv, int option)
43f66a6c 8512{
afbf30a2
JK		 8513 int band, modulation;
8514 int old_mode = priv->ieee->iw_mode;
43f66a6c 8515
afbf30a2
JK		 8516 /* Initialize module parameter values here */
8517 priv->config = 0;
43f66a6c 8518
afbf30a2
JK		 8519 /* We default to disabling the LED code as right now it causes
8520 * too many systems to lock up... */
21f8a73f 8521 if (!led_support)
afbf30a2 8522 priv->config |= CFG_NO_LED;
43f66a6c 8523
afbf30a2
JK		 8524 if (associate)
8525 priv->config |= CFG_ASSOCIATE;
8526 else
8527 IPW_DEBUG_INFO("Auto associate disabled.\n");
bf79451e 8528
afbf30a2
JK		 8529 if (auto_create)
8530 priv->config |= CFG_ADHOC_CREATE;
8531 else
8532 IPW_DEBUG_INFO("Auto adhoc creation disabled.\n");
43f66a6c 8533
17ed081d
ZY		 8534 priv->config &= ~CFG_STATIC_ESSID;
8535 priv->essid_len = 0;
8536 memset(priv->essid, 0, IW_ESSID_MAX_SIZE);
8537
d6d5b5c1 8538 if (disable && option) {
afbf30a2
JK		 8539 priv->status |= STATUS_RF_KILL_SW;
8540 IPW_DEBUG_INFO("Radio disabled.\n");
43f66a6c 8541 }
bf79451e 8542
21f8a73f 8543 if (default_channel != 0) {
afbf30a2 8544 priv->config |= CFG_STATIC_CHANNEL;
21f8a73f
RC		 8545 priv->channel = default_channel;
8546 IPW_DEBUG_INFO("Bind to static channel %d\n", default_channel);
afbf30a2 8547 /* TODO: Validate that provided channel is in range */
43f66a6c 8548 }
e43e3c1e 8549#ifdef CONFIG_IPW2200_QOS
afbf30a2
JK		 8550 ipw_qos_init(priv, qos_enable, qos_burst_enable,
8551 burst_duration_CCK, burst_duration_OFDM);
e43e3c1e 8552#endif /* CONFIG_IPW2200_QOS */
43f66a6c 8553
21f8a73f 8554 switch (network_mode) {
afbf30a2
JK		 8555 case 1:
8556 priv->ieee->iw_mode = IW_MODE_ADHOC;
8557 priv->net_dev->type = ARPHRD_ETHER;
8558
8559 break;
8560#ifdef CONFIG_IPW2200_MONITOR
8561 case 2:
8562 priv->ieee->iw_mode = IW_MODE_MONITOR;
459d4087 8563#ifdef CONFIG_IPW2200_RADIOTAP
24a47dbd
MK		 8564 priv->net_dev->type = ARPHRD_IEEE80211_RADIOTAP;
8565#else
afbf30a2 8566 priv->net_dev->type = ARPHRD_IEEE80211;
24a47dbd 8567#endif
afbf30a2
JK		 8568 break;
8569#endif
8570 default:
8571 case 0:
8572 priv->net_dev->type = ARPHRD_ETHER;
8573 priv->ieee->iw_mode = IW_MODE_INFRA;
8574 break;
43f66a6c
JK		 8575 }
8576
afbf30a2
JK		 8577 if (hwcrypto) {
8578 priv->ieee->host_encrypt = 0;
8579 priv->ieee->host_encrypt_msdu = 0;
8580 priv->ieee->host_decrypt = 0;
567deaf6 8581 priv->ieee->host_mc_decrypt = 0;
afbf30a2
JK		 8582 }
8583 IPW_DEBUG_INFO("Hardware crypto [%s]\n", hwcrypto ? "on" : "off");
43f66a6c 8584
e402c937
ZY		 8585 /* IPW2200/2915 is abled to do hardware fragmentation. */
8586 priv->ieee->host_open_frag = 0;
bf79451e 8587
afbf30a2
JK		 8588 if ((priv->pci_dev->device == 0x4223) ||
8589 (priv->pci_dev->device == 0x4224)) {
e8c69e27 8590 if (option == 1)
afbf30a2
JK		 8591 printk(KERN_INFO DRV_NAME
8592 ": Detected Intel PRO/Wireless 2915ABG Network "
8593 "Connection\n");
8594 priv->ieee->abg_true = 1;
8595 band = IEEE80211_52GHZ_BAND | IEEE80211_24GHZ_BAND;
8596 modulation = IEEE80211_OFDM_MODULATION |
8597 IEEE80211_CCK_MODULATION;
8598 priv->adapter = IPW_2915ABG;
8599 priv->ieee->mode = IEEE_A | IEEE_G | IEEE_B;
43f66a6c 8600 } else {
e8c69e27 8601 if (option == 1)
afbf30a2
JK		 8602 printk(KERN_INFO DRV_NAME
8603 ": Detected Intel PRO/Wireless 2200BG Network "
8604 "Connection\n");
bf79451e 8605
afbf30a2
JK		 8606 priv->ieee->abg_true = 0;
8607 band = IEEE80211_24GHZ_BAND;
8608 modulation = IEEE80211_OFDM_MODULATION |
8609 IEEE80211_CCK_MODULATION;
8610 priv->adapter = IPW_2200BG;
8611 priv->ieee->mode = IEEE_G | IEEE_B;
43f66a6c
JK		 8612 }
8613
afbf30a2
JK		 8614 priv->ieee->freq_band = band;
8615 priv->ieee->modulation = modulation;
43f66a6c 8616
afbf30a2 8617 priv->rates_mask = IEEE80211_DEFAULT_RATES_MASK;
bf79451e 8618
afbf30a2
JK		 8619 priv->disassociate_threshold = IPW_MB_DISASSOCIATE_THRESHOLD_DEFAULT;
8620 priv->roaming_threshold = IPW_MB_ROAMING_THRESHOLD_DEFAULT;
43f66a6c 8621
afbf30a2
JK		 8622 priv->rts_threshold = DEFAULT_RTS_THRESHOLD;
8623 priv->short_retry_limit = DEFAULT_SHORT_RETRY_LIMIT;
8624 priv->long_retry_limit = DEFAULT_LONG_RETRY_LIMIT;
43f66a6c 8625
afbf30a2
JK		 8626 /* If power management is turned on, default to AC mode */
8627 priv->power_mode = IPW_POWER_AC;
8628 priv->tx_power = IPW_TX_POWER_DEFAULT;
8629
0ece35b5 8630 return old_mode == priv->ieee->iw_mode;
43f66a6c
JK		 8631}
8632
8633/*
8634 * This file defines the Wireless Extension handlers. It does not
8635 * define any methods of hardware manipulation and relies on the
8636 * functions defined in ipw_main to provide the HW interaction.
bf79451e
JG		 8637 *
8638 * The exception to this is the use of the ipw_get_ordinal()
43f66a6c
JK		 8639 * function used to poll the hardware vs. making unecessary calls.
8640 *
8641 */
8642
bf79451e
JG		 8643static int ipw_wx_get_name(struct net_device *dev,
8644 struct iw_request_info *info,
43f66a6c
JK		 8645 union iwreq_data *wrqu, char *extra)
8646{
8647 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 8648 mutex_lock(&priv->mutex);
c848d0af 8649 if (priv->status & STATUS_RF_KILL_MASK)
a613bffd 8650 strcpy(wrqu->name, "radio off");
c848d0af 8651 else if (!(priv->status & STATUS_ASSOCIATED))
43f66a6c 8652 strcpy(wrqu->name, "unassociated");
bf79451e 8653 else
43f66a6c
JK		 8654 snprintf(wrqu->name, IFNAMSIZ, "IEEE 802.11%c",
8655 ipw_modes[priv->assoc_request.ieee_mode]);
8656 IPW_DEBUG_WX("Name: %s\n", wrqu->name);
4644151b 8657 mutex_unlock(&priv->mutex);
43f66a6c
JK		 8658 return 0;
8659}
8660
8661static int ipw_set_channel(struct ipw_priv *priv, u8 channel)
8662{
8663 if (channel == 0) {
8664 IPW_DEBUG_INFO("Setting channel to ANY (0)\n");
8665 priv->config &= ~CFG_STATIC_CHANNEL;
c848d0af
JK		 8666 IPW_DEBUG_ASSOC("Attempting to associate with new "
8667 "parameters.\n");
8668 ipw_associate(priv);
43f66a6c
JK		 8669 return 0;
8670 }
8671
8672 priv->config |= CFG_STATIC_CHANNEL;
8673
8674 if (priv->channel == channel) {
0edd5b44
JG		 8675 IPW_DEBUG_INFO("Request to set channel to current value (%d)\n",
8676 channel);
43f66a6c
JK		 8677 return 0;
8678 }
8679
8680 IPW_DEBUG_INFO("Setting channel to %i\n", (int)channel);
8681 priv->channel = channel;
8682
b095c381
JK		 8683#ifdef CONFIG_IPW2200_MONITOR
8684 if (priv->ieee->iw_mode == IW_MODE_MONITOR) {
afbf30a2 8685 int i;
b095c381 8686 if (priv->status & STATUS_SCANNING) {
afbf30a2 8687 IPW_DEBUG_SCAN("Scan abort triggered due to "
b095c381 8688 "channel change.\n");
afbf30a2 8689 ipw_abort_scan(priv);
b095c381
JK		 8690 }
8691
8692 for (i = 1000; i && (priv->status & STATUS_SCANNING); i--)
8693 udelay(10);
8694
8695 if (priv->status & STATUS_SCANNING)
8696 IPW_DEBUG_SCAN("Still scanning...\n");
8697 else
8698 IPW_DEBUG_SCAN("Took %dms to abort current scan\n",
8699 1000 - i);
8700
8701 return 0;
43f66a6c 8702 }
b095c381
JK		 8703#endif /* CONFIG_IPW2200_MONITOR */
8704
c848d0af
JK		 8705 /* Network configuration changed -- force [re]association */
8706 IPW_DEBUG_ASSOC("[re]association triggered due to channel change.\n");
8707 if (!ipw_disassociate(priv))
43f66a6c 8708 ipw_associate(priv);
43f66a6c
JK		 8709
8710 return 0;
8711}
8712
bf79451e
JG		 8713static int ipw_wx_set_freq(struct net_device *dev,
8714 struct iw_request_info *info,
8715 union iwreq_data *wrqu, char *extra)
43f66a6c
JK		 8716{
8717 struct ipw_priv *priv = ieee80211_priv(dev);
1867b117 8718 const struct ieee80211_geo *geo = ieee80211_get_geo(priv->ieee);
43f66a6c 8719 struct iw_freq *fwrq = &wrqu->freq;
afbf30a2 8720 int ret = 0, i;
1fe0adb4
LH		 8721 u8 channel, flags;
8722 int band;
b095c381
JK		 8723
8724 if (fwrq->m == 0) {
8725 IPW_DEBUG_WX("SET Freq/Channel -> any\n");
4644151b 8726 mutex_lock(&priv->mutex);
b095c381 8727 ret = ipw_set_channel(priv, 0);
4644151b 8728 mutex_unlock(&priv->mutex);
b095c381
JK		 8729 return ret;
8730 }
43f66a6c
JK		 8731 /* if setting by freq convert to channel */
8732 if (fwrq->e == 1) {
1867b117 8733 channel = ieee80211_freq_to_channel(priv->ieee, fwrq->m);
b095c381
JK		 8734 if (channel == 0)
8735 return -EINVAL;
8736 } else
8737 channel = fwrq->m;
bf79451e 8738
1867b117 8739 if (!(band = ieee80211_is_valid_channel(priv->ieee, channel)))
b095c381 8740 return -EINVAL;
43f66a6c 8741
1fe0adb4 8742 if (priv->ieee->iw_mode == IW_MODE_ADHOC) {
1867b117 8743 i = ieee80211_channel_to_index(priv->ieee, channel);
afbf30a2
JK		 8744 if (i == -1)
8745 return -EINVAL;
bf79451e 8746
1fe0adb4
LH		 8747 flags = (band == IEEE80211_24GHZ_BAND) ?
8748 geo->bg[i].flags : geo->a[i].flags;
8749 if (flags & IEEE80211_CH_PASSIVE_ONLY) {
afbf30a2
JK		 8750 IPW_DEBUG_WX("Invalid Ad-Hoc channel for 802.11a\n");
8751 return -EINVAL;
43f66a6c
JK		 8752 }
8753 }
bf79451e 8754
43f66a6c 8755 IPW_DEBUG_WX("SET Freq/Channel -> %d \n", fwrq->m);
4644151b 8756 mutex_lock(&priv->mutex);
b095c381 8757 ret = ipw_set_channel(priv, channel);
4644151b 8758 mutex_unlock(&priv->mutex);
c848d0af 8759 return ret;
43f66a6c
JK		 8760}
8761
bf79451e
JG		 8762static int ipw_wx_get_freq(struct net_device *dev,
8763 struct iw_request_info *info,
43f66a6c
JK		 8764 union iwreq_data *wrqu, char *extra)
8765{
8766 struct ipw_priv *priv = ieee80211_priv(dev);
8767
8768 wrqu->freq.e = 0;
8769
8770 /* If we are associated, trying to associate, or have a statically
8771 * configured CHANNEL then return that; otherwise return ANY */
4644151b 8772 mutex_lock(&priv->mutex);
43f66a6c 8773 if (priv->config & CFG_STATIC_CHANNEL ||
c580f67f
ZY		 8774 priv->status & (STATUS_ASSOCIATING | STATUS_ASSOCIATED)) {
8775 int i;
8776
8777 i = ieee80211_channel_to_index(priv->ieee, priv->channel);
8778 BUG_ON(i == -1);
8779 wrqu->freq.e = 1;
8780
8781 switch (ieee80211_is_valid_channel(priv->ieee, priv->channel)) {
8782 case IEEE80211_52GHZ_BAND:
8783 wrqu->freq.m = priv->ieee->geo.a[i].freq * 100000;
8784 break;
8785
8786 case IEEE80211_24GHZ_BAND:
8787 wrqu->freq.m = priv->ieee->geo.bg[i].freq * 100000;
8788 break;
8789
8790 default:
8791 BUG();
8792 }
8793 } else
43f66a6c
JK		 8794 wrqu->freq.m = 0;
8795
4644151b 8796 mutex_unlock(&priv->mutex);
43f66a6c
JK		 8797 IPW_DEBUG_WX("GET Freq/Channel -> %d \n", priv->channel);
8798 return 0;
8799}
8800
bf79451e
JG		 8801static int ipw_wx_set_mode(struct net_device *dev,
8802 struct iw_request_info *info,
43f66a6c
JK		 8803 union iwreq_data *wrqu, char *extra)
8804{
8805 struct ipw_priv *priv = ieee80211_priv(dev);
8806 int err = 0;
8807
8808 IPW_DEBUG_WX("Set MODE: %d\n", wrqu->mode);
8809
43f66a6c 8810 switch (wrqu->mode) {
b095c381 8811#ifdef CONFIG_IPW2200_MONITOR
43f66a6c
JK		 8812 case IW_MODE_MONITOR:
8813#endif
8814 case IW_MODE_ADHOC:
8815 case IW_MODE_INFRA:
8816 break;
8817 case IW_MODE_AUTO:
8818 wrqu->mode = IW_MODE_INFRA;
8819 break;
8820 default:
8821 return -EINVAL;
8822 }
b095c381
JK		 8823 if (wrqu->mode == priv->ieee->iw_mode)
8824 return 0;
43f66a6c 8825
4644151b 8826 mutex_lock(&priv->mutex);
43f66a6c 8827
afbf30a2
JK		 8828 ipw_sw_reset(priv, 0);
8829
b095c381 8830#ifdef CONFIG_IPW2200_MONITOR
bf79451e 8831 if (priv->ieee->iw_mode == IW_MODE_MONITOR)
43f66a6c 8832 priv->net_dev->type = ARPHRD_ETHER;
bf79451e
JG		 8833
8834 if (wrqu->mode == IW_MODE_MONITOR)
459d4087 8835#ifdef CONFIG_IPW2200_RADIOTAP
24a47dbd
MK		 8836 priv->net_dev->type = ARPHRD_IEEE80211_RADIOTAP;
8837#else
43f66a6c 8838 priv->net_dev->type = ARPHRD_IEEE80211;
24a47dbd 8839#endif
b095c381 8840#endif /* CONFIG_IPW2200_MONITOR */
bf79451e 8841
bf79451e 8842 /* Free the existing firmware and reset the fw_loaded
877d0310 8843 * flag so ipw_load() will bring in the new firmware */
afbf30a2 8844 free_firmware();
43f66a6c
JK		 8845
8846 priv->ieee->iw_mode = wrqu->mode;
bf79451e 8847
c848d0af 8848 queue_work(priv->workqueue, &priv->adapter_restart);
4644151b 8849 mutex_unlock(&priv->mutex);
0edd5b44 8850 return err;
43f66a6c
JK		 8851}
8852
bf79451e 8853static int ipw_wx_get_mode(struct net_device *dev,
0edd5b44
JG		 8854 struct iw_request_info *info,
8855 union iwreq_data *wrqu, char *extra)
43f66a6c
JK		 8856{
8857 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 8858 mutex_lock(&priv->mutex);
43f66a6c
JK		 8859 wrqu->mode = priv->ieee->iw_mode;
8860 IPW_DEBUG_WX("Get MODE -> %d\n", wrqu->mode);
4644151b 8861 mutex_unlock(&priv->mutex);
43f66a6c
JK		 8862 return 0;
8863}
8864
43f66a6c
JK		 8865/* Values are in microsecond */
8866static const s32 timeout_duration[] = {
8867 350000,
8868 250000,
8869 75000,
8870 37000,
8871 25000,
8872};
8873
8874static const s32 period_duration[] = {
8875 400000,
8876 700000,
8877 1000000,
8878 1000000,
8879 1000000
8880};
8881
bf79451e
JG		 8882static int ipw_wx_get_range(struct net_device *dev,
8883 struct iw_request_info *info,
43f66a6c
JK		 8884 union iwreq_data *wrqu, char *extra)
8885{
8886 struct ipw_priv *priv = ieee80211_priv(dev);
8887 struct iw_range *range = (struct iw_range *)extra;
1867b117 8888 const struct ieee80211_geo *geo = ieee80211_get_geo(priv->ieee);
b095c381 8889 int i = 0, j;
43f66a6c
JK		 8890
8891 wrqu->data.length = sizeof(*range);
8892 memset(range, 0, sizeof(*range));
8893
8894 /* 54Mbs == ~27 Mb/s real (802.11g) */
bf79451e 8895 range->throughput = 27 * 1000 * 1000;
43f66a6c
JK		 8896
8897 range->max_qual.qual = 100;
8898 /* TODO: Find real max RSSI and stick here */
8899 range->max_qual.level = 0;
b191608a 8900 range->max_qual.noise = 0;
0edd5b44 8901 range->max_qual.updated = 7; /* Updated all three */
43f66a6c
JK		 8902
8903 range->avg_qual.qual = 70;
8904 /* TODO: Find real 'good' to 'bad' threshol value for RSSI */
0edd5b44 8905 range->avg_qual.level = 0; /* FIXME to real average level */
43f66a6c 8906 range->avg_qual.noise = 0;
0edd5b44 8907 range->avg_qual.updated = 7; /* Updated all three */
4644151b 8908 mutex_lock(&priv->mutex);
0edd5b44 8909 range->num_bitrates = min(priv->rates.num_rates, (u8) IW_MAX_BITRATES);
43f66a6c 8910
bf79451e
JG		 8911 for (i = 0; i < range->num_bitrates; i++)
8912 range->bitrate[i] = (priv->rates.supported_rates[i] & 0x7F) *
0edd5b44 8913 500000;
bf79451e 8914
43f66a6c
JK		 8915 range->max_rts = DEFAULT_RTS_THRESHOLD;
8916 range->min_frag = MIN_FRAG_THRESHOLD;
8917 range->max_frag = MAX_FRAG_THRESHOLD;
8918
8919 range->encoding_size[0] = 5;
bf79451e 8920 range->encoding_size[1] = 13;
43f66a6c
JK		 8921 range->num_encoding_sizes = 2;
8922 range->max_encoding_tokens = WEP_KEYS;
8923
8924 /* Set the Wireless Extension versions */
8925 range->we_version_compiled = WIRELESS_EXT;
f1b50863 8926 range->we_version_source = 18;
43f66a6c 8927
b095c381
JK		 8928 i = 0;
8929 if (priv->ieee->mode & (IEEE_B | IEEE_G)) {
e815de42
ZY		 8930 for (j = 0; j < geo->bg_channels && i < IW_MAX_FREQUENCIES; j++) {
8931 if ((priv->ieee->iw_mode == IW_MODE_ADHOC) &&
8932 (geo->bg[j].flags & IEEE80211_CH_PASSIVE_ONLY))
8933 continue;
8934
b095c381
JK		 8935 range->freq[i].i = geo->bg[j].channel;
8936 range->freq[i].m = geo->bg[j].freq * 100000;
8937 range->freq[i].e = 1;
e815de42 8938 i++;
b095c381
JK		 8939 }
8940 }
43f66a6c 8941
b095c381 8942 if (priv->ieee->mode & IEEE_A) {
e815de42
ZY		 8943 for (j = 0; j < geo->a_channels && i < IW_MAX_FREQUENCIES; j++) {
8944 if ((priv->ieee->iw_mode == IW_MODE_ADHOC) &&
8945 (geo->a[j].flags & IEEE80211_CH_PASSIVE_ONLY))
8946 continue;
8947
b095c381
JK		 8948 range->freq[i].i = geo->a[j].channel;
8949 range->freq[i].m = geo->a[j].freq * 100000;
8950 range->freq[i].e = 1;
e815de42 8951 i++;
b095c381 8952 }
43f66a6c 8953 }
b095c381
JK		 8954
8955 range->num_channels = i;
8956 range->num_frequency = i;
8957
4644151b 8958 mutex_unlock(&priv->mutex);
97a78ca9
BB		 8959
8960 /* Event capability (kernel + driver) */
8961 range->event_capa[0] = (IW_EVENT_CAPA_K_0 |
8962 IW_EVENT_CAPA_MASK(SIOCGIWTHRSPY) |
07f02e46
ZY		 8963 IW_EVENT_CAPA_MASK(SIOCGIWAP) |
8964 IW_EVENT_CAPA_MASK(SIOCGIWSCAN));
97a78ca9 8965 range->event_capa[1] = IW_EVENT_CAPA_K_1;
43f66a6c 8966
f1b50863
DW		 8967 range->enc_capa = IW_ENC_CAPA_WPA | IW_ENC_CAPA_WPA2 |
8968 IW_ENC_CAPA_CIPHER_TKIP | IW_ENC_CAPA_CIPHER_CCMP;
8969
374fdfbc
DW		 8970 range->scan_capa = IW_SCAN_CAPA_ESSID | IW_SCAN_CAPA_TYPE;
8971
43f66a6c
JK		 8972 IPW_DEBUG_WX("GET Range\n");
8973 return 0;
8974}
8975
bf79451e
JG		 8976static int ipw_wx_set_wap(struct net_device *dev,
8977 struct iw_request_info *info,
43f66a6c
JK		 8978 union iwreq_data *wrqu, char *extra)
8979{
8980 struct ipw_priv *priv = ieee80211_priv(dev);
8981
8982 static const unsigned char any[] = {
8983 0xff, 0xff, 0xff, 0xff, 0xff, 0xff
8984 };
8985 static const unsigned char off[] = {
8986 0x00, 0x00, 0x00, 0x00, 0x00, 0x00
8987 };
8988
bf79451e 8989 if (wrqu->ap_addr.sa_family != ARPHRD_ETHER)
43f66a6c 8990 return -EINVAL;
4644151b 8991 mutex_lock(&priv->mutex);
43f66a6c
JK		 8992 if (!memcmp(any, wrqu->ap_addr.sa_data, ETH_ALEN) ||
8993 !memcmp(off, wrqu->ap_addr.sa_data, ETH_ALEN)) {
8994 /* we disable mandatory BSSID association */
8995 IPW_DEBUG_WX("Setting AP BSSID to ANY\n");
8996 priv->config &= ~CFG_STATIC_BSSID;
c848d0af
JK		 8997 IPW_DEBUG_ASSOC("Attempting to associate with new "
8998 "parameters.\n");
8999 ipw_associate(priv);
4644151b 9000 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9001 return 0;
9002 }
9003
9004 priv->config |= CFG_STATIC_BSSID;
9005 if (!memcmp(priv->bssid, wrqu->ap_addr.sa_data, ETH_ALEN)) {
9006 IPW_DEBUG_WX("BSSID set to current BSSID.\n");
4644151b 9007 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9008 return 0;
9009 }
9010
e174961c
JB		 9011 IPW_DEBUG_WX("Setting mandatory BSSID to %pM\n",
9012 wrqu->ap_addr.sa_data);
43f66a6c
JK		 9013
9014 memcpy(priv->bssid, wrqu->ap_addr.sa_data, ETH_ALEN);
9015
c848d0af
JK		 9016 /* Network configuration changed -- force [re]association */
9017 IPW_DEBUG_ASSOC("[re]association triggered due to BSSID change.\n");
9018 if (!ipw_disassociate(priv))
43f66a6c 9019 ipw_associate(priv);
43f66a6c 9020
4644151b 9021 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9022 return 0;
9023}
9024
bf79451e
JG		 9025static int ipw_wx_get_wap(struct net_device *dev,
9026 struct iw_request_info *info,
43f66a6c
JK		 9027 union iwreq_data *wrqu, char *extra)
9028{
9029 struct ipw_priv *priv = ieee80211_priv(dev);
0795af57 9030
43f66a6c
JK		 9031 /* If we are associated, trying to associate, or have a statically
9032 * configured BSSID then return that; otherwise return ANY */
4644151b 9033 mutex_lock(&priv->mutex);
bf79451e 9034 if (priv->config & CFG_STATIC_BSSID ||
43f66a6c
JK		 9035 priv->status & (STATUS_ASSOCIATED | STATUS_ASSOCIATING)) {
9036 wrqu->ap_addr.sa_family = ARPHRD_ETHER;
afbf30a2 9037 memcpy(wrqu->ap_addr.sa_data, priv->bssid, ETH_ALEN);
43f66a6c
JK		 9038 } else
9039 memset(wrqu->ap_addr.sa_data, 0, ETH_ALEN);
9040
e174961c
JB		 9041 IPW_DEBUG_WX("Getting WAP BSSID: %pM\n",
9042 wrqu->ap_addr.sa_data);
4644151b 9043 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9044 return 0;
9045}
9046
bf79451e
JG		 9047static int ipw_wx_set_essid(struct net_device *dev,
9048 struct iw_request_info *info,
43f66a6c
JK		 9049 union iwreq_data *wrqu, char *extra)
9050{
9051 struct ipw_priv *priv = ieee80211_priv(dev);
ab644b0b 9052 int length;
9387b7ca 9053 DECLARE_SSID_BUF(ssid);
ab644b0b
ZY		 9054
9055 mutex_lock(&priv->mutex);
43f66a6c 9056
ab644b0b
ZY		 9057 if (!wrqu->essid.flags)
9058 {
9059 IPW_DEBUG_WX("Setting ESSID to ANY\n");
9060 ipw_disassociate(priv);
9061 priv->config &= ~CFG_STATIC_ESSID;
9062 ipw_associate(priv);
9063 mutex_unlock(&priv->mutex);
9064 return 0;
9065 }
43f66a6c 9066
a9f0d423 9067 length = min((int)wrqu->essid.length, IW_ESSID_MAX_SIZE);
43f66a6c
JK		 9068
9069 priv->config |= CFG_STATIC_ESSID;
9070
a9f0d423
ZY		 9071 if (priv->essid_len == length && !memcmp(priv->essid, extra, length)
9072 && (priv->status & (STATUS_ASSOCIATED | STATUS_ASSOCIATING))) {
43f66a6c 9073 IPW_DEBUG_WX("ESSID set to current ESSID.\n");
4644151b 9074 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9075 return 0;
9076 }
9077
9387b7ca
JL		 9078 IPW_DEBUG_WX("Setting ESSID: '%s' (%d)\n",
9079 print_ssid(ssid, extra, length), length);
43f66a6c
JK		 9080
9081 priv->essid_len = length;
a9f0d423 9082 memcpy(priv->essid, extra, priv->essid_len);
bf79451e 9083
c848d0af
JK		 9084 /* Network configuration changed -- force [re]association */
9085 IPW_DEBUG_ASSOC("[re]association triggered due to ESSID change.\n");
9086 if (!ipw_disassociate(priv))
43f66a6c 9087 ipw_associate(priv);
43f66a6c 9088
4644151b 9089 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9090 return 0;
9091}
9092
bf79451e
JG		 9093static int ipw_wx_get_essid(struct net_device *dev,
9094 struct iw_request_info *info,
43f66a6c
JK		 9095 union iwreq_data *wrqu, char *extra)
9096{
9097 struct ipw_priv *priv = ieee80211_priv(dev);
9387b7ca 9098 DECLARE_SSID_BUF(ssid);
43f66a6c
JK		 9099
9100 /* If we are associated, trying to associate, or have a statically
9101 * configured ESSID then return that; otherwise return ANY */
4644151b 9102 mutex_lock(&priv->mutex);
43f66a6c 9103 if (priv->config & CFG_STATIC_ESSID ||
bf79451e
JG		 9104 priv->status & (STATUS_ASSOCIATED | STATUS_ASSOCIATING)) {
9105 IPW_DEBUG_WX("Getting essid: '%s'\n",
9387b7ca 9106 print_ssid(ssid, priv->essid, priv->essid_len));
bf79451e 9107 memcpy(extra, priv->essid, priv->essid_len);
43f66a6c 9108 wrqu->essid.length = priv->essid_len;
0edd5b44 9109 wrqu->essid.flags = 1; /* active */
43f66a6c
JK		 9110 } else {
9111 IPW_DEBUG_WX("Getting essid: ANY\n");
9112 wrqu->essid.length = 0;
0edd5b44 9113 wrqu->essid.flags = 0; /* active */
43f66a6c 9114 }
4644151b 9115 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9116 return 0;
9117}
9118
bf79451e
JG		 9119static int ipw_wx_set_nick(struct net_device *dev,
9120 struct iw_request_info *info,
43f66a6c 9121 union iwreq_data *wrqu, char *extra)
bf79451e 9122{
43f66a6c
JK		 9123 struct ipw_priv *priv = ieee80211_priv(dev);
9124
9125 IPW_DEBUG_WX("Setting nick to '%s'\n", extra);
9126 if (wrqu->data.length > IW_ESSID_MAX_SIZE)
9127 return -E2BIG;
4644151b 9128 mutex_lock(&priv->mutex);
0edd5b44 9129 wrqu->data.length = min((size_t) wrqu->data.length, sizeof(priv->nick));
43f66a6c 9130 memset(priv->nick, 0, sizeof(priv->nick));
0edd5b44 9131 memcpy(priv->nick, extra, wrqu->data.length);
43f66a6c 9132 IPW_DEBUG_TRACE("<<\n");
4644151b 9133 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9134 return 0;
9135
9136}
9137
bf79451e
JG		 9138static int ipw_wx_get_nick(struct net_device *dev,
9139 struct iw_request_info *info,
43f66a6c 9140 union iwreq_data *wrqu, char *extra)
bf79451e 9141{
43f66a6c
JK		 9142 struct ipw_priv *priv = ieee80211_priv(dev);
9143 IPW_DEBUG_WX("Getting nick\n");
4644151b 9144 mutex_lock(&priv->mutex);
919ee6dd 9145 wrqu->data.length = strlen(priv->nick);
43f66a6c 9146 memcpy(extra, priv->nick, wrqu->data.length);
0edd5b44 9147 wrqu->data.flags = 1; /* active */
4644151b 9148 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9149 return 0;
9150}
9151
651be26f
OH		 9152static int ipw_wx_set_sens(struct net_device *dev,
9153 struct iw_request_info *info,
9154 union iwreq_data *wrqu, char *extra)
9155{
9156 struct ipw_priv *priv = ieee80211_priv(dev);
9157 int err = 0;
9158
9159 IPW_DEBUG_WX("Setting roaming threshold to %d\n", wrqu->sens.value);
9160 IPW_DEBUG_WX("Setting disassociate threshold to %d\n", 3*wrqu->sens.value);
9161 mutex_lock(&priv->mutex);
9162
9163 if (wrqu->sens.fixed == 0)
9164 {
9165 priv->roaming_threshold = IPW_MB_ROAMING_THRESHOLD_DEFAULT;
9166 priv->disassociate_threshold = IPW_MB_DISASSOCIATE_THRESHOLD_DEFAULT;
9167 goto out;
9168 }
9169 if ((wrqu->sens.value > IPW_MB_ROAMING_THRESHOLD_MAX) ||
9170 (wrqu->sens.value < IPW_MB_ROAMING_THRESHOLD_MIN)) {
9171 err = -EINVAL;
9172 goto out;
9173 }
9174
9175 priv->roaming_threshold = wrqu->sens.value;
9176 priv->disassociate_threshold = 3*wrqu->sens.value;
9177 out:
9178 mutex_unlock(&priv->mutex);
9179 return err;
9180}
9181
9182static int ipw_wx_get_sens(struct net_device *dev,
9183 struct iw_request_info *info,
9184 union iwreq_data *wrqu, char *extra)
9185{
9186 struct ipw_priv *priv = ieee80211_priv(dev);
9187 mutex_lock(&priv->mutex);
9188 wrqu->sens.fixed = 1;
9189 wrqu->sens.value = priv->roaming_threshold;
9190 mutex_unlock(&priv->mutex);
9191
9192 IPW_DEBUG_WX("GET roaming threshold -> %s %d \n",
9193 wrqu->power.disabled ? "OFF" : "ON", wrqu->power.value);
9194
9195 return 0;
9196}
9197
43f66a6c
JK		 9198static int ipw_wx_set_rate(struct net_device *dev,
9199 struct iw_request_info *info,
9200 union iwreq_data *wrqu, char *extra)
bf79451e 9201{
ea2b26e0
JK		 9202 /* TODO: We should use semaphores or locks for access to priv */
9203 struct ipw_priv *priv = ieee80211_priv(dev);
9204 u32 target_rate = wrqu->bitrate.value;
9205 u32 fixed, mask;
9206
9207 /* value = -1, fixed = 0 means auto only, so we should use all rates offered by AP */
9208 /* value = X, fixed = 1 means only rate X */
9209 /* value = X, fixed = 0 means all rates lower equal X */
9210
9211 if (target_rate == -1) {
9212 fixed = 0;
9213 mask = IEEE80211_DEFAULT_RATES_MASK;
9214 /* Now we should reassociate */
9215 goto apply;
9216 }
9217
9218 mask = 0;
9219 fixed = wrqu->bitrate.fixed;
9220
9221 if (target_rate == 1000000 || !fixed)
9222 mask |= IEEE80211_CCK_RATE_1MB_MASK;
9223 if (target_rate == 1000000)
9224 goto apply;
9225
9226 if (target_rate == 2000000 || !fixed)
9227 mask |= IEEE80211_CCK_RATE_2MB_MASK;
9228 if (target_rate == 2000000)
9229 goto apply;
9230
9231 if (target_rate == 5500000 || !fixed)
9232 mask |= IEEE80211_CCK_RATE_5MB_MASK;
9233 if (target_rate == 5500000)
9234 goto apply;
9235
9236 if (target_rate == 6000000 || !fixed)
9237 mask |= IEEE80211_OFDM_RATE_6MB_MASK;
9238 if (target_rate == 6000000)
9239 goto apply;
9240
9241 if (target_rate == 9000000 || !fixed)
9242 mask |= IEEE80211_OFDM_RATE_9MB_MASK;
9243 if (target_rate == 9000000)
9244 goto apply;
9245
9246 if (target_rate == 11000000 || !fixed)
9247 mask |= IEEE80211_CCK_RATE_11MB_MASK;
9248 if (target_rate == 11000000)
9249 goto apply;
9250
9251 if (target_rate == 12000000 || !fixed)
9252 mask |= IEEE80211_OFDM_RATE_12MB_MASK;
9253 if (target_rate == 12000000)
9254 goto apply;
9255
9256 if (target_rate == 18000000 || !fixed)
9257 mask |= IEEE80211_OFDM_RATE_18MB_MASK;
9258 if (target_rate == 18000000)
9259 goto apply;
9260
9261 if (target_rate == 24000000 || !fixed)
9262 mask |= IEEE80211_OFDM_RATE_24MB_MASK;
9263 if (target_rate == 24000000)
9264 goto apply;
9265
9266 if (target_rate == 36000000 || !fixed)
9267 mask |= IEEE80211_OFDM_RATE_36MB_MASK;
9268 if (target_rate == 36000000)
9269 goto apply;
9270
9271 if (target_rate == 48000000 || !fixed)
9272 mask |= IEEE80211_OFDM_RATE_48MB_MASK;
9273 if (target_rate == 48000000)
9274 goto apply;
9275
9276 if (target_rate == 54000000 || !fixed)
9277 mask |= IEEE80211_OFDM_RATE_54MB_MASK;
9278 if (target_rate == 54000000)
9279 goto apply;
9280
9281 IPW_DEBUG_WX("invalid rate specified, returning error\n");
9282 return -EINVAL;
9283
9284 apply:
9285 IPW_DEBUG_WX("Setting rate mask to 0x%08X [%s]\n",
9286 mask, fixed ? "fixed" : "sub-rates");
4644151b 9287 mutex_lock(&priv->mutex);
b095c381 9288 if (mask == IEEE80211_DEFAULT_RATES_MASK) {
ea2b26e0 9289 priv->config &= ~CFG_FIXED_RATE;
b095c381
JK		 9290 ipw_set_fixed_rate(priv, priv->ieee->mode);
9291 } else
ea2b26e0
JK		 9292 priv->config |= CFG_FIXED_RATE;
9293
c848d0af
JK		 9294 if (priv->rates_mask == mask) {
9295 IPW_DEBUG_WX("Mask set to current mask.\n");
4644151b 9296 mutex_unlock(&priv->mutex);
c848d0af 9297 return 0;
ea2b26e0
JK		 9298 }
9299
c848d0af
JK		 9300 priv->rates_mask = mask;
9301
9302 /* Network configuration changed -- force [re]association */
9303 IPW_DEBUG_ASSOC("[re]association triggered due to rates change.\n");
9304 if (!ipw_disassociate(priv))
9305 ipw_associate(priv);
9306
4644151b 9307 mutex_unlock(&priv->mutex);
ea2b26e0 9308 return 0;
43f66a6c
JK		 9309}
9310
bf79451e
JG		 9311static int ipw_wx_get_rate(struct net_device *dev,
9312 struct iw_request_info *info,
43f66a6c 9313 union iwreq_data *wrqu, char *extra)
bf79451e 9314{
0edd5b44 9315 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9316 mutex_lock(&priv->mutex);
43f66a6c 9317 wrqu->bitrate.value = priv->last_rate;
455936c7 9318 wrqu->bitrate.fixed = (priv->config & CFG_FIXED_RATE) ? 1 : 0;
4644151b 9319 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9320 IPW_DEBUG_WX("GET Rate -> %d \n", wrqu->bitrate.value);
9321 return 0;
9322}
9323
bf79451e
JG		 9324static int ipw_wx_set_rts(struct net_device *dev,
9325 struct iw_request_info *info,
43f66a6c 9326 union iwreq_data *wrqu, char *extra)
bf79451e 9327{
43f66a6c 9328 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9329 mutex_lock(&priv->mutex);
ea8862dc 9330 if (wrqu->rts.disabled || !wrqu->rts.fixed)
43f66a6c
JK		 9331 priv->rts_threshold = DEFAULT_RTS_THRESHOLD;
9332 else {
9333 if (wrqu->rts.value < MIN_RTS_THRESHOLD ||
c848d0af 9334 wrqu->rts.value > MAX_RTS_THRESHOLD) {
4644151b 9335 mutex_unlock(&priv->mutex);
43f66a6c 9336 return -EINVAL;
c848d0af 9337 }
43f66a6c
JK		 9338 priv->rts_threshold = wrqu->rts.value;
9339 }
9340
9341 ipw_send_rts_threshold(priv, priv->rts_threshold);
4644151b 9342 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9343 IPW_DEBUG_WX("SET RTS Threshold -> %d \n", priv->rts_threshold);
9344 return 0;
9345}
9346
bf79451e
JG		 9347static int ipw_wx_get_rts(struct net_device *dev,
9348 struct iw_request_info *info,
43f66a6c 9349 union iwreq_data *wrqu, char *extra)
bf79451e 9350{
43f66a6c 9351 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9352 mutex_lock(&priv->mutex);
43f66a6c
JK		 9353 wrqu->rts.value = priv->rts_threshold;
9354 wrqu->rts.fixed = 0; /* no auto select */
0edd5b44 9355 wrqu->rts.disabled = (wrqu->rts.value == DEFAULT_RTS_THRESHOLD);
4644151b 9356 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9357 IPW_DEBUG_WX("GET RTS Threshold -> %d \n", wrqu->rts.value);
9358 return 0;
9359}
9360
bf79451e
JG		 9361static int ipw_wx_set_txpow(struct net_device *dev,
9362 struct iw_request_info *info,
43f66a6c 9363 union iwreq_data *wrqu, char *extra)
bf79451e 9364{
43f66a6c 9365 struct ipw_priv *priv = ieee80211_priv(dev);
6de9f7f2 9366 int err = 0;
43f66a6c 9367
4644151b 9368 mutex_lock(&priv->mutex);
c848d0af 9369 if (ipw_radio_kill_sw(priv, wrqu->power.disabled)) {
6de9f7f2
ZY		 9370 err = -EINPROGRESS;
9371 goto out;
43f66a6c 9372 }
43f66a6c 9373
b095c381
JK		 9374 if (!wrqu->power.fixed)
9375 wrqu->power.value = IPW_TX_POWER_DEFAULT;
9376
c848d0af 9377 if (wrqu->power.flags != IW_TXPOW_DBM) {
6de9f7f2
ZY		 9378 err = -EINVAL;
9379 goto out;
c848d0af 9380 }
43f66a6c 9381
b095c381 9382 if ((wrqu->power.value > IPW_TX_POWER_MAX) ||
afbf30a2 9383 (wrqu->power.value < IPW_TX_POWER_MIN)) {
6de9f7f2
ZY		 9384 err = -EINVAL;
9385 goto out;
c848d0af 9386 }
43f66a6c 9387
43f66a6c 9388 priv->tx_power = wrqu->power.value;
6de9f7f2
ZY		 9389 err = ipw_set_tx_power(priv);
9390 out:
4644151b 9391 mutex_unlock(&priv->mutex);
6de9f7f2 9392 return err;
43f66a6c
JK		 9393}
9394
bf79451e
JG		 9395static int ipw_wx_get_txpow(struct net_device *dev,
9396 struct iw_request_info *info,
43f66a6c 9397 union iwreq_data *wrqu, char *extra)
bf79451e 9398{
43f66a6c 9399 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9400 mutex_lock(&priv->mutex);
43f66a6c
JK		 9401 wrqu->power.value = priv->tx_power;
9402 wrqu->power.fixed = 1;
9403 wrqu->power.flags = IW_TXPOW_DBM;
9404 wrqu->power.disabled = (priv->status & STATUS_RF_KILL_MASK) ? 1 : 0;
4644151b 9405 mutex_unlock(&priv->mutex);
43f66a6c 9406
bf79451e 9407 IPW_DEBUG_WX("GET TX Power -> %s %d \n",
22501c8e 9408 wrqu->power.disabled ? "OFF" : "ON", wrqu->power.value);
43f66a6c
JK		 9409
9410 return 0;
9411}
9412
bf79451e 9413static int ipw_wx_set_frag(struct net_device *dev,
0edd5b44
JG		 9414 struct iw_request_info *info,
9415 union iwreq_data *wrqu, char *extra)
43f66a6c
JK		 9416{
9417 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9418 mutex_lock(&priv->mutex);
ea8862dc 9419 if (wrqu->frag.disabled || !wrqu->frag.fixed)
43f66a6c
JK		 9420 priv->ieee->fts = DEFAULT_FTS;
9421 else {
9422 if (wrqu->frag.value < MIN_FRAG_THRESHOLD ||
b095c381 9423 wrqu->frag.value > MAX_FRAG_THRESHOLD) {
4644151b 9424 mutex_unlock(&priv->mutex);
43f66a6c 9425 return -EINVAL;
b095c381 9426 }
bf79451e 9427
43f66a6c
JK		 9428 priv->ieee->fts = wrqu->frag.value & ~0x1;
9429 }
9430
9431 ipw_send_frag_threshold(priv, wrqu->frag.value);
4644151b 9432 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9433 IPW_DEBUG_WX("SET Frag Threshold -> %d \n", wrqu->frag.value);
9434 return 0;
9435}
9436
bf79451e 9437static int ipw_wx_get_frag(struct net_device *dev,
0edd5b44
JG		 9438 struct iw_request_info *info,
9439 union iwreq_data *wrqu, char *extra)
43f66a6c
JK		 9440{
9441 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9442 mutex_lock(&priv->mutex);
43f66a6c
JK		 9443 wrqu->frag.value = priv->ieee->fts;
9444 wrqu->frag.fixed = 0; /* no auto select */
0edd5b44 9445 wrqu->frag.disabled = (wrqu->frag.value == DEFAULT_FTS);
4644151b 9446 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9447 IPW_DEBUG_WX("GET Frag Threshold -> %d \n", wrqu->frag.value);
9448
9449 return 0;
9450}
9451
bf79451e
JG		 9452static int ipw_wx_set_retry(struct net_device *dev,
9453 struct iw_request_info *info,
43f66a6c 9454 union iwreq_data *wrqu, char *extra)
bf79451e 9455{
afbf30a2
JK		 9456 struct ipw_priv *priv = ieee80211_priv(dev);
9457
9458 if (wrqu->retry.flags & IW_RETRY_LIFETIME || wrqu->retry.disabled)
9459 return -EINVAL;
9460
9461 if (!(wrqu->retry.flags & IW_RETRY_LIMIT))
9462 return 0;
9463
d5f7ac20 9464 if (wrqu->retry.value < 0 || wrqu->retry.value >= 255)
afbf30a2
JK		 9465 return -EINVAL;
9466
4644151b 9467 mutex_lock(&priv->mutex);
919ee6dd 9468 if (wrqu->retry.flags & IW_RETRY_SHORT)
afbf30a2 9469 priv->short_retry_limit = (u8) wrqu->retry.value;
919ee6dd 9470 else if (wrqu->retry.flags & IW_RETRY_LONG)
afbf30a2
JK		 9471 priv->long_retry_limit = (u8) wrqu->retry.value;
9472 else {
9473 priv->short_retry_limit = (u8) wrqu->retry.value;
9474 priv->long_retry_limit = (u8) wrqu->retry.value;
9475 }
9476
9477 ipw_send_retry_limit(priv, priv->short_retry_limit,
9478 priv->long_retry_limit);
4644151b 9479 mutex_unlock(&priv->mutex);
afbf30a2
JK		 9480 IPW_DEBUG_WX("SET retry limit -> short:%d long:%d\n",
9481 priv->short_retry_limit, priv->long_retry_limit);
9482 return 0;
43f66a6c
JK		 9483}
9484
bf79451e
JG		 9485static int ipw_wx_get_retry(struct net_device *dev,
9486 struct iw_request_info *info,
43f66a6c 9487 union iwreq_data *wrqu, char *extra)
bf79451e 9488{
afbf30a2
JK		 9489 struct ipw_priv *priv = ieee80211_priv(dev);
9490
4644151b 9491 mutex_lock(&priv->mutex);
afbf30a2
JK		 9492 wrqu->retry.disabled = 0;
9493
9494 if ((wrqu->retry.flags & IW_RETRY_TYPE) == IW_RETRY_LIFETIME) {
4644151b 9495 mutex_unlock(&priv->mutex);
afbf30a2
JK		 9496 return -EINVAL;
9497 }
9498
919ee6dd
JT		 9499 if (wrqu->retry.flags & IW_RETRY_LONG) {
9500 wrqu->retry.flags = IW_RETRY_LIMIT | IW_RETRY_LONG;
afbf30a2 9501 wrqu->retry.value = priv->long_retry_limit;
919ee6dd
JT		 9502 } else if (wrqu->retry.flags & IW_RETRY_SHORT) {
9503 wrqu->retry.flags = IW_RETRY_LIMIT | IW_RETRY_SHORT;
afbf30a2
JK		 9504 wrqu->retry.value = priv->short_retry_limit;
9505 } else {
9506 wrqu->retry.flags = IW_RETRY_LIMIT;
9507 wrqu->retry.value = priv->short_retry_limit;
9508 }
4644151b 9509 mutex_unlock(&priv->mutex);
afbf30a2
JK		 9510
9511 IPW_DEBUG_WX("GET retry -> %d \n", wrqu->retry.value);
9512
9513 return 0;
9514}
9515
bf79451e
JG		 9516static int ipw_wx_set_scan(struct net_device *dev,
9517 struct iw_request_info *info,
43f66a6c
JK		 9518 union iwreq_data *wrqu, char *extra)
9519{
9520 struct ipw_priv *priv = ieee80211_priv(dev);
094c4d2d 9521 struct iw_scan_req *req = (struct iw_scan_req *)extra;
ea177305 9522 struct delayed_work *work = NULL;
094c4d2d 9523
0b531676 9524 mutex_lock(&priv->mutex);
ea177305 9525
0b531676 9526 priv->user_requested_scan = 1;
0b531676 9527
094c4d2d 9528 if (wrqu->data.length == sizeof(struct iw_scan_req)) {
afbf30a2 9529 if (wrqu->data.flags & IW_SCAN_THIS_ESSID) {
ea177305
DW		 9530 int len = min((int)req->essid_len,
9531 (int)sizeof(priv->direct_scan_ssid));
9532 memcpy(priv->direct_scan_ssid, req->essid, len);
9533 priv->direct_scan_ssid_len = len;
9534 work = &priv->request_direct_scan;
9535 } else if (req->scan_type == IW_SCAN_TYPE_PASSIVE) {
9536 work = &priv->request_passive_scan;
094c4d2d 9537 }
ea177305
DW		 9538 } else {
9539 /* Normal active broadcast scan */
9540 work = &priv->request_scan;
afbf30a2 9541 }
8935f39e 9542
ea177305
DW		 9543 mutex_unlock(&priv->mutex);
9544
43f66a6c 9545 IPW_DEBUG_WX("Start scan\n");
b095c381 9546
ea177305 9547 queue_delayed_work(priv->workqueue, work, 0);
b095c381 9548
43f66a6c
JK		 9549 return 0;
9550}
9551
bf79451e
JG		 9552static int ipw_wx_get_scan(struct net_device *dev,
9553 struct iw_request_info *info,
43f66a6c 9554 union iwreq_data *wrqu, char *extra)
bf79451e 9555{
43f66a6c
JK		 9556 struct ipw_priv *priv = ieee80211_priv(dev);
9557 return ieee80211_wx_get_scan(priv->ieee, info, wrqu, extra);
9558}
9559
bf79451e 9560static int ipw_wx_set_encode(struct net_device *dev,
0edd5b44
JG		 9561 struct iw_request_info *info,
9562 union iwreq_data *wrqu, char *key)
43f66a6c
JK		 9563{
9564 struct ipw_priv *priv = ieee80211_priv(dev);
afbf30a2 9565 int ret;
caeff81b 9566 u32 cap = priv->capability;
afbf30a2 9567
4644151b 9568 mutex_lock(&priv->mutex);
afbf30a2 9569 ret = ieee80211_wx_set_encode(priv->ieee, info, wrqu, key);
afbf30a2 9570
caeff81b
HL		 9571 /* In IBSS mode, we need to notify the firmware to update
9572 * the beacon info after we changed the capability. */
9573 if (cap != priv->capability &&
9574 priv->ieee->iw_mode == IW_MODE_ADHOC &&
9575 priv->status & STATUS_ASSOCIATED)
9576 ipw_disassociate(priv);
9577
4644151b 9578 mutex_unlock(&priv->mutex);
afbf30a2 9579 return ret;
43f66a6c
JK		 9580}
9581
bf79451e 9582static int ipw_wx_get_encode(struct net_device *dev,
0edd5b44
JG		 9583 struct iw_request_info *info,
9584 union iwreq_data *wrqu, char *key)
43f66a6c
JK		 9585{
9586 struct ipw_priv *priv = ieee80211_priv(dev);
9587 return ieee80211_wx_get_encode(priv->ieee, info, wrqu, key);
9588}
9589
bf79451e 9590static int ipw_wx_set_power(struct net_device *dev,
0edd5b44
JG		 9591 struct iw_request_info *info,
9592 union iwreq_data *wrqu, char *extra)
43f66a6c
JK		 9593{
9594 struct ipw_priv *priv = ieee80211_priv(dev);
9595 int err;
4644151b 9596 mutex_lock(&priv->mutex);
43f66a6c
JK		 9597 if (wrqu->power.disabled) {
9598 priv->power_mode = IPW_POWER_LEVEL(priv->power_mode);
9599 err = ipw_send_power_mode(priv, IPW_POWER_MODE_CAM);
9600 if (err) {
9601 IPW_DEBUG_WX("failed setting power mode.\n");
4644151b 9602 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9603 return err;
9604 }
43f66a6c 9605 IPW_DEBUG_WX("SET Power Management Mode -> off\n");
4644151b 9606 mutex_unlock(&priv->mutex);
43f66a6c 9607 return 0;
bf79451e 9608 }
43f66a6c
JK		 9609
9610 switch (wrqu->power.flags & IW_POWER_MODE) {
0edd5b44
JG		 9611 case IW_POWER_ON: /* If not specified */
9612 case IW_POWER_MODE: /* If set all mask */
c03983ac 9613 case IW_POWER_ALL_R: /* If explicitly state all */
43f66a6c 9614 break;
0edd5b44 9615 default: /* Otherwise we don't support it */
43f66a6c
JK		 9616 IPW_DEBUG_WX("SET PM Mode: %X not supported.\n",
9617 wrqu->power.flags);
4644151b 9618 mutex_unlock(&priv->mutex);
bf79451e 9619 return -EOPNOTSUPP;
43f66a6c 9620 }
bf79451e 9621
43f66a6c
JK		 9622 /* If the user hasn't specified a power management mode yet, default
9623 * to BATTERY */
0edd5b44 9624 if (IPW_POWER_LEVEL(priv->power_mode) == IPW_POWER_AC)
43f66a6c 9625 priv->power_mode = IPW_POWER_ENABLED | IPW_POWER_BATTERY;
bf79451e 9626 else
43f66a6c 9627 priv->power_mode = IPW_POWER_ENABLED | priv->power_mode;
4e157f08 9628
43f66a6c
JK		 9629 err = ipw_send_power_mode(priv, IPW_POWER_LEVEL(priv->power_mode));
9630 if (err) {
9631 IPW_DEBUG_WX("failed setting power mode.\n");
4644151b 9632 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9633 return err;
9634 }
9635
0edd5b44 9636 IPW_DEBUG_WX("SET Power Management Mode -> 0x%02X\n", priv->power_mode);
4644151b 9637 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9638 return 0;
9639}
9640
bf79451e 9641static int ipw_wx_get_power(struct net_device *dev,
0edd5b44
JG		 9642 struct iw_request_info *info,
9643 union iwreq_data *wrqu, char *extra)
43f66a6c
JK		 9644{
9645 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9646 mutex_lock(&priv->mutex);
a613bffd 9647 if (!(priv->power_mode & IPW_POWER_ENABLED))
43f66a6c 9648 wrqu->power.disabled = 1;
a613bffd 9649 else
43f66a6c 9650 wrqu->power.disabled = 0;
43f66a6c 9651
4644151b 9652 mutex_unlock(&priv->mutex);
43f66a6c 9653 IPW_DEBUG_WX("GET Power Management Mode -> %02X\n", priv->power_mode);
bf79451e 9654
43f66a6c
JK		 9655 return 0;
9656}
9657
bf79451e 9658static int ipw_wx_set_powermode(struct net_device *dev,
0edd5b44
JG		 9659 struct iw_request_info *info,
9660 union iwreq_data *wrqu, char *extra)
43f66a6c
JK		 9661{
9662 struct ipw_priv *priv = ieee80211_priv(dev);
9663 int mode = *(int *)extra;
9664 int err;
4e157f08 9665
4644151b 9666 mutex_lock(&priv->mutex);
4e157f08 9667 if ((mode < 1) || (mode > IPW_POWER_LIMIT))
43f66a6c 9668 mode = IPW_POWER_AC;
bf79451e 9669
4e157f08 9670 if (IPW_POWER_LEVEL(priv->power_mode) != mode) {
43f66a6c 9671 err = ipw_send_power_mode(priv, mode);
43f66a6c
JK		 9672 if (err) {
9673 IPW_DEBUG_WX("failed setting power mode.\n");
4644151b 9674 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9675 return err;
9676 }
4e157f08 9677 priv->power_mode = IPW_POWER_ENABLED | mode;
43f66a6c 9678 }
4644151b 9679 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9680 return 0;
9681}
9682
9683#define MAX_WX_STRING 80
bf79451e 9684static int ipw_wx_get_powermode(struct net_device *dev,
0edd5b44
JG		 9685 struct iw_request_info *info,
9686 union iwreq_data *wrqu, char *extra)
43f66a6c
JK		 9687{
9688 struct ipw_priv *priv = ieee80211_priv(dev);
9689 int level = IPW_POWER_LEVEL(priv->power_mode);
9690 char *p = extra;
9691
9692 p += snprintf(p, MAX_WX_STRING, "Power save level: %d ", level);
9693
9694 switch (level) {
9695 case IPW_POWER_AC:
9696 p += snprintf(p, MAX_WX_STRING - (p - extra), "(AC)");
9697 break;
9698 case IPW_POWER_BATTERY:
9699 p += snprintf(p, MAX_WX_STRING - (p - extra), "(BATTERY)");
9700 break;
9701 default:
9702 p += snprintf(p, MAX_WX_STRING - (p - extra),
bf79451e 9703 "(Timeout %dms, Period %dms)",
43f66a6c
JK		 9704 timeout_duration[level - 1] / 1000,
9705 period_duration[level - 1] / 1000);
9706 }
9707
9708 if (!(priv->power_mode & IPW_POWER_ENABLED))
0edd5b44 9709 p += snprintf(p, MAX_WX_STRING - (p - extra), " OFF");
43f66a6c
JK		 9710
9711 wrqu->data.length = p - extra + 1;
9712
9713 return 0;
9714}
9715
9716static int ipw_wx_set_wireless_mode(struct net_device *dev,
0edd5b44
JG		 9717 struct iw_request_info *info,
9718 union iwreq_data *wrqu, char *extra)
43f66a6c 9719{
0edd5b44 9720 struct ipw_priv *priv = ieee80211_priv(dev);
43f66a6c
JK		 9721 int mode = *(int *)extra;
9722 u8 band = 0, modulation = 0;
9723
9724 if (mode == 0 || mode & ~IEEE_MODE_MASK) {
0edd5b44 9725 IPW_WARNING("Attempt to set invalid wireless mode: %d\n", mode);
43f66a6c
JK		 9726 return -EINVAL;
9727 }
4644151b 9728 mutex_lock(&priv->mutex);
43f66a6c 9729 if (priv->adapter == IPW_2915ABG) {
a33a1982 9730 priv->ieee->abg_true = 1;
43f66a6c
JK		 9731 if (mode & IEEE_A) {
9732 band |= IEEE80211_52GHZ_BAND;
9733 modulation |= IEEE80211_OFDM_MODULATION;
9734 } else
a33a1982 9735 priv->ieee->abg_true = 0;
43f66a6c
JK		 9736 } else {
9737 if (mode & IEEE_A) {
9738 IPW_WARNING("Attempt to set 2200BG into "
9739 "802.11a mode\n");
4644151b 9740 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9741 return -EINVAL;
9742 }
9743
a33a1982 9744 priv->ieee->abg_true = 0;
43f66a6c
JK		 9745 }
9746
9747 if (mode & IEEE_B) {
9748 band |= IEEE80211_24GHZ_BAND;
9749 modulation |= IEEE80211_CCK_MODULATION;
9750 } else
a33a1982 9751 priv->ieee->abg_true = 0;
bf79451e 9752
43f66a6c
JK		 9753 if (mode & IEEE_G) {
9754 band |= IEEE80211_24GHZ_BAND;
9755 modulation |= IEEE80211_OFDM_MODULATION;
9756 } else
a33a1982 9757 priv->ieee->abg_true = 0;
43f66a6c
JK		 9758
9759 priv->ieee->mode = mode;
9760 priv->ieee->freq_band = band;
9761 priv->ieee->modulation = modulation;
0edd5b44 9762 init_supported_rates(priv, &priv->rates);
43f66a6c 9763
c848d0af
JK		 9764 /* Network configuration changed -- force [re]association */
9765 IPW_DEBUG_ASSOC("[re]association triggered due to mode change.\n");
9766 if (!ipw_disassociate(priv)) {
43f66a6c 9767 ipw_send_supported_rates(priv, &priv->rates);
c848d0af
JK		 9768 ipw_associate(priv);
9769 }
43f66a6c 9770
a613bffd
JK		 9771 /* Update the band LEDs */
9772 ipw_led_band_on(priv);
43f66a6c 9773
bf79451e 9774 IPW_DEBUG_WX("PRIV SET MODE: %c%c%c\n",
43f66a6c 9775 mode & IEEE_A ? 'a' : '.',
0edd5b44 9776 mode & IEEE_B ? 'b' : '.', mode & IEEE_G ? 'g' : '.');
4644151b 9777 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9778 return 0;
9779}
9780
9781static int ipw_wx_get_wireless_mode(struct net_device *dev,
0edd5b44
JG		 9782 struct iw_request_info *info,
9783 union iwreq_data *wrqu, char *extra)
43f66a6c 9784{
0edd5b44 9785 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9786 mutex_lock(&priv->mutex);
ea2b26e0
JK		 9787 switch (priv->ieee->mode) {
9788 case IEEE_A:
43f66a6c
JK		 9789 strncpy(extra, "802.11a (1)", MAX_WX_STRING);
9790 break;
ea2b26e0
JK		 9791 case IEEE_B:
9792 strncpy(extra, "802.11b (2)", MAX_WX_STRING);
9793 break;
9794 case IEEE_A | IEEE_B:
9795 strncpy(extra, "802.11ab (3)", MAX_WX_STRING);
9796 break;
9797 case IEEE_G:
9798 strncpy(extra, "802.11g (4)", MAX_WX_STRING);
9799 break;
9800 case IEEE_A | IEEE_G:
9801 strncpy(extra, "802.11ag (5)", MAX_WX_STRING);
9802 break;
9803 case IEEE_B | IEEE_G:
9804 strncpy(extra, "802.11bg (6)", MAX_WX_STRING);
9805 break;
9806 case IEEE_A | IEEE_B | IEEE_G:
9807 strncpy(extra, "802.11abg (7)", MAX_WX_STRING);
9808 break;
9809 default:
9810 strncpy(extra, "unknown", MAX_WX_STRING);
43f66a6c 9811 break;
bf79451e
JG		 9812 }
9813
43f66a6c
JK		 9814 IPW_DEBUG_WX("PRIV GET MODE: %s\n", extra);
9815
0edd5b44 9816 wrqu->data.length = strlen(extra) + 1;
4644151b 9817 mutex_unlock(&priv->mutex);
b095c381
JK		 9818
9819 return 0;
9820}
9821
9822static int ipw_wx_set_preamble(struct net_device *dev,
9823 struct iw_request_info *info,
9824 union iwreq_data *wrqu, char *extra)
9825{
9826 struct ipw_priv *priv = ieee80211_priv(dev);
9827 int mode = *(int *)extra;
4644151b 9828 mutex_lock(&priv->mutex);
b095c381
JK		 9829 /* Switching from SHORT -> LONG requires a disassociation */
9830 if (mode == 1) {
9831 if (!(priv->config & CFG_PREAMBLE_LONG)) {
9832 priv->config |= CFG_PREAMBLE_LONG;
9833
9834 /* Network configuration changed -- force [re]association */
9835 IPW_DEBUG_ASSOC
9836 ("[re]association triggered due to preamble change.\n");
9837 if (!ipw_disassociate(priv))
9838 ipw_associate(priv);
9839 }
9840 goto done;
9841 }
43f66a6c 9842
b095c381
JK		 9843 if (mode == 0) {
9844 priv->config &= ~CFG_PREAMBLE_LONG;
9845 goto done;
9846 }
4644151b 9847 mutex_unlock(&priv->mutex);
b095c381
JK		 9848 return -EINVAL;
9849
9850 done:
4644151b 9851 mutex_unlock(&priv->mutex);
b095c381
JK		 9852 return 0;
9853}
9854
9855static int ipw_wx_get_preamble(struct net_device *dev,
9856 struct iw_request_info *info,
9857 union iwreq_data *wrqu, char *extra)
9858{
9859 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 9860 mutex_lock(&priv->mutex);
b095c381
JK		 9861 if (priv->config & CFG_PREAMBLE_LONG)
9862 snprintf(wrqu->name, IFNAMSIZ, "long (1)");
9863 else
9864 snprintf(wrqu->name, IFNAMSIZ, "auto (0)");
4644151b 9865 mutex_unlock(&priv->mutex);
0edd5b44 9866 return 0;
43f66a6c
JK		 9867}
9868
b095c381
JK		 9869#ifdef CONFIG_IPW2200_MONITOR
9870static int ipw_wx_set_monitor(struct net_device *dev,
bf79451e 9871 struct iw_request_info *info,
43f66a6c 9872 union iwreq_data *wrqu, char *extra)
bf79451e 9873{
43f66a6c
JK		 9874 struct ipw_priv *priv = ieee80211_priv(dev);
9875 int *parms = (int *)extra;
9876 int enable = (parms[0] > 0);
4644151b 9877 mutex_lock(&priv->mutex);
b095c381 9878 IPW_DEBUG_WX("SET MONITOR: %d %d\n", enable, parms[1]);
43f66a6c
JK		 9879 if (enable) {
9880 if (priv->ieee->iw_mode != IW_MODE_MONITOR) {
459d4087 9881#ifdef CONFIG_IPW2200_RADIOTAP
24a47dbd
MK		 9882 priv->net_dev->type = ARPHRD_IEEE80211_RADIOTAP;
9883#else
43f66a6c 9884 priv->net_dev->type = ARPHRD_IEEE80211;
24a47dbd 9885#endif
b095c381 9886 queue_work(priv->workqueue, &priv->adapter_restart);
43f66a6c 9887 }
bf79451e 9888
43f66a6c
JK		 9889 ipw_set_channel(priv, parms[1]);
9890 } else {
b095c381 9891 if (priv->ieee->iw_mode != IW_MODE_MONITOR) {
4644151b 9892 mutex_unlock(&priv->mutex);
43f66a6c 9893 return 0;
b095c381 9894 }
43f66a6c 9895 priv->net_dev->type = ARPHRD_ETHER;
b095c381 9896 queue_work(priv->workqueue, &priv->adapter_restart);
43f66a6c 9897 }
4644151b 9898 mutex_unlock(&priv->mutex);
43f66a6c
JK		 9899 return 0;
9900}
9901
67fd6b45 9902#endif /* CONFIG_IPW2200_MONITOR */
b095c381 9903
bf79451e
JG		 9904static int ipw_wx_reset(struct net_device *dev,
9905 struct iw_request_info *info,
43f66a6c 9906 union iwreq_data *wrqu, char *extra)
bf79451e 9907{
43f66a6c
JK		 9908 struct ipw_priv *priv = ieee80211_priv(dev);
9909 IPW_DEBUG_WX("RESET\n");
b095c381
JK		 9910 queue_work(priv->workqueue, &priv->adapter_restart);
9911 return 0;
9912}
9913
b095c381
JK		 9914static int ipw_wx_sw_reset(struct net_device *dev,
9915 struct iw_request_info *info,
9916 union iwreq_data *wrqu, char *extra)
ea2b26e0
JK		 9917{
9918 struct ipw_priv *priv = ieee80211_priv(dev);
b095c381
JK		 9919 union iwreq_data wrqu_sec = {
9920 .encoding = {
9921 .flags = IW_ENCODE_DISABLED,
9922 },
9923 };
afbf30a2 9924 int ret;
c848d0af 9925
b095c381 9926 IPW_DEBUG_WX("SW_RESET\n");
ea2b26e0 9927
4644151b 9928 mutex_lock(&priv->mutex);
ea2b26e0 9929
d6d5b5c1 9930 ret = ipw_sw_reset(priv, 2);
afbf30a2
JK		 9931 if (!ret) {
9932 free_firmware();
9933 ipw_adapter_restart(priv);
9934 }
ea2b26e0 9935
b095c381
JK		 9936 /* The SW reset bit might have been toggled on by the 'disable'
9937 * module parameter, so take appropriate action */
9938 ipw_radio_kill_sw(priv, priv->status & STATUS_RF_KILL_SW);
ea2b26e0 9939
4644151b 9940 mutex_unlock(&priv->mutex);
b095c381 9941 ieee80211_wx_set_encode(priv->ieee, info, &wrqu_sec, NULL);
4644151b 9942 mutex_lock(&priv->mutex);
bf79451e 9943
b095c381
JK		 9944 if (!(priv->status & STATUS_RF_KILL_MASK)) {
9945 /* Configuration likely changed -- force [re]association */
9946 IPW_DEBUG_ASSOC("[re]association triggered due to sw "
9947 "reset.\n");
9948 if (!ipw_disassociate(priv))
9949 ipw_associate(priv);
43f66a6c 9950 }
b095c381 9951
4644151b 9952 mutex_unlock(&priv->mutex);
43f66a6c 9953
43f66a6c
JK		 9954 return 0;
9955}
43f66a6c
JK		 9956
9957/* Rebase the WE IOCTLs to zero for the handler array */
9958#define IW_IOCTL(x) [(x)-SIOCSIWCOMMIT]
0edd5b44 9959static iw_handler ipw_wx_handlers[] = {
ea2b26e0
JK		 9960 IW_IOCTL(SIOCGIWNAME) = ipw_wx_get_name,
9961 IW_IOCTL(SIOCSIWFREQ) = ipw_wx_set_freq,
9962 IW_IOCTL(SIOCGIWFREQ) = ipw_wx_get_freq,
9963 IW_IOCTL(SIOCSIWMODE) = ipw_wx_set_mode,
9964 IW_IOCTL(SIOCGIWMODE) = ipw_wx_get_mode,
651be26f
OH		 9965 IW_IOCTL(SIOCSIWSENS) = ipw_wx_set_sens,
9966 IW_IOCTL(SIOCGIWSENS) = ipw_wx_get_sens,
ea2b26e0
JK		 9967 IW_IOCTL(SIOCGIWRANGE) = ipw_wx_get_range,
9968 IW_IOCTL(SIOCSIWAP) = ipw_wx_set_wap,
9969 IW_IOCTL(SIOCGIWAP) = ipw_wx_get_wap,
9970 IW_IOCTL(SIOCSIWSCAN) = ipw_wx_set_scan,
9971 IW_IOCTL(SIOCGIWSCAN) = ipw_wx_get_scan,
9972 IW_IOCTL(SIOCSIWESSID) = ipw_wx_set_essid,
9973 IW_IOCTL(SIOCGIWESSID) = ipw_wx_get_essid,
9974 IW_IOCTL(SIOCSIWNICKN) = ipw_wx_set_nick,
9975 IW_IOCTL(SIOCGIWNICKN) = ipw_wx_get_nick,
9976 IW_IOCTL(SIOCSIWRATE) = ipw_wx_set_rate,
9977 IW_IOCTL(SIOCGIWRATE) = ipw_wx_get_rate,
9978 IW_IOCTL(SIOCSIWRTS) = ipw_wx_set_rts,
9979 IW_IOCTL(SIOCGIWRTS) = ipw_wx_get_rts,
9980 IW_IOCTL(SIOCSIWFRAG) = ipw_wx_set_frag,
9981 IW_IOCTL(SIOCGIWFRAG) = ipw_wx_get_frag,
9982 IW_IOCTL(SIOCSIWTXPOW) = ipw_wx_set_txpow,
9983 IW_IOCTL(SIOCGIWTXPOW) = ipw_wx_get_txpow,
9984 IW_IOCTL(SIOCSIWRETRY) = ipw_wx_set_retry,
9985 IW_IOCTL(SIOCGIWRETRY) = ipw_wx_get_retry,
9986 IW_IOCTL(SIOCSIWENCODE) = ipw_wx_set_encode,
9987 IW_IOCTL(SIOCGIWENCODE) = ipw_wx_get_encode,
9988 IW_IOCTL(SIOCSIWPOWER) = ipw_wx_set_power,
9989 IW_IOCTL(SIOCGIWPOWER) = ipw_wx_get_power,
a613bffd
JK		 9990 IW_IOCTL(SIOCSIWSPY) = iw_handler_set_spy,
9991 IW_IOCTL(SIOCGIWSPY) = iw_handler_get_spy,
9992 IW_IOCTL(SIOCSIWTHRSPY) = iw_handler_set_thrspy,
9993 IW_IOCTL(SIOCGIWTHRSPY) = iw_handler_get_thrspy,
afbf30a2
JK		 9994 IW_IOCTL(SIOCSIWGENIE) = ipw_wx_set_genie,
9995 IW_IOCTL(SIOCGIWGENIE) = ipw_wx_get_genie,
9996 IW_IOCTL(SIOCSIWMLME) = ipw_wx_set_mlme,
9997 IW_IOCTL(SIOCSIWAUTH) = ipw_wx_set_auth,
9998 IW_IOCTL(SIOCGIWAUTH) = ipw_wx_get_auth,
9999 IW_IOCTL(SIOCSIWENCODEEXT) = ipw_wx_set_encodeext,
10000 IW_IOCTL(SIOCGIWENCODEEXT) = ipw_wx_get_encodeext,
43f66a6c
JK		 10001};
10002
b095c381
JK		 10003enum {
10004 IPW_PRIV_SET_POWER = SIOCIWFIRSTPRIV,
10005 IPW_PRIV_GET_POWER,
10006 IPW_PRIV_SET_MODE,
10007 IPW_PRIV_GET_MODE,
10008 IPW_PRIV_SET_PREAMBLE,
10009 IPW_PRIV_GET_PREAMBLE,
10010 IPW_PRIV_RESET,
10011 IPW_PRIV_SW_RESET,
10012#ifdef CONFIG_IPW2200_MONITOR
10013 IPW_PRIV_SET_MONITOR,
10014#endif
10015};
43f66a6c 10016
bf79451e 10017static struct iw_priv_args ipw_priv_args[] = {
43f66a6c 10018 {
0edd5b44
JG		 10019 .cmd = IPW_PRIV_SET_POWER,
10020 .set_args = IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 1,
10021 .name = "set_power"},
43f66a6c 10022 {
0edd5b44
JG		 10023 .cmd = IPW_PRIV_GET_POWER,
10024 .get_args = IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_FIXED | MAX_WX_STRING,
10025 .name = "get_power"},
43f66a6c 10026 {
0edd5b44
JG		 10027 .cmd = IPW_PRIV_SET_MODE,
10028 .set_args = IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 1,
10029 .name = "set_mode"},
43f66a6c 10030 {
0edd5b44
JG		 10031 .cmd = IPW_PRIV_GET_MODE,
10032 .get_args = IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_FIXED | MAX_WX_STRING,
10033 .name = "get_mode"},
43f66a6c 10034 {
ea2b26e0
JK		 10035 .cmd = IPW_PRIV_SET_PREAMBLE,
10036 .set_args = IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 1,
10037 .name = "set_preamble"},
10038 {
10039 .cmd = IPW_PRIV_GET_PREAMBLE,
10040 .get_args = IW_PRIV_TYPE_CHAR | IW_PRIV_SIZE_FIXED | IFNAMSIZ,
10041 .name = "get_preamble"},
43f66a6c 10042 {
0edd5b44
JG		 10043 IPW_PRIV_RESET,
10044 IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 0, 0, "reset"},
b095c381
JK		 10045 {
10046 IPW_PRIV_SW_RESET,
10047 IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 0, 0, "sw_reset"},
10048#ifdef CONFIG_IPW2200_MONITOR
10049 {
10050 IPW_PRIV_SET_MONITOR,
10051 IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 2, 0, "monitor"},
10052#endif /* CONFIG_IPW2200_MONITOR */
43f66a6c
JK		 10053};
10054
10055static iw_handler ipw_priv_handler[] = {
10056 ipw_wx_set_powermode,
10057 ipw_wx_get_powermode,
10058 ipw_wx_set_wireless_mode,
10059 ipw_wx_get_wireless_mode,
ea2b26e0
JK		 10060 ipw_wx_set_preamble,
10061 ipw_wx_get_preamble,
bf79451e 10062 ipw_wx_reset,
b095c381
JK		 10063 ipw_wx_sw_reset,
10064#ifdef CONFIG_IPW2200_MONITOR
10065 ipw_wx_set_monitor,
43f66a6c
JK		 10066#endif
10067};
10068
0edd5b44 10069static struct iw_handler_def ipw_wx_handler_def = {
ea2b26e0
JK		 10070 .standard = ipw_wx_handlers,
10071 .num_standard = ARRAY_SIZE(ipw_wx_handlers),
10072 .num_private = ARRAY_SIZE(ipw_priv_handler),
10073 .num_private_args = ARRAY_SIZE(ipw_priv_args),
10074 .private = ipw_priv_handler,
10075 .private_args = ipw_priv_args,
97a78ca9 10076 .get_wireless_stats = ipw_get_wireless_stats,
43f66a6c
JK		 10077};
10078
43f66a6c
JK		 10079/*
10080 * Get wireless statistics.
10081 * Called by /proc/net/wireless
10082 * Also called by SIOCGIWSTATS
10083 */
0edd5b44 10084static struct iw_statistics *ipw_get_wireless_stats(struct net_device *dev)
43f66a6c
JK		 10085{
10086 struct ipw_priv *priv = ieee80211_priv(dev);
10087 struct iw_statistics *wstats;
bf79451e 10088
43f66a6c
JK		 10089 wstats = &priv->wstats;
10090
ea2b26e0 10091 /* if hw is disabled, then ipw_get_ordinal() can't be called.
afbf30a2 10092 * netdev->get_wireless_stats seems to be called before fw is
43f66a6c
JK		 10093 * initialized. STATUS_ASSOCIATED will only be set if the hw is up
10094 * and associated; if not associcated, the values are all meaningless
10095 * anyway, so set them all to NULL and INVALID */
10096 if (!(priv->status & STATUS_ASSOCIATED)) {
10097 wstats->miss.beacon = 0;
10098 wstats->discard.retries = 0;
10099 wstats->qual.qual = 0;
10100 wstats->qual.level = 0;
10101 wstats->qual.noise = 0;
10102 wstats->qual.updated = 7;
10103 wstats->qual.updated |= IW_QUAL_NOISE_INVALID |
0edd5b44 10104 IW_QUAL_QUAL_INVALID | IW_QUAL_LEVEL_INVALID;
43f66a6c 10105 return wstats;
bf79451e 10106 }
43f66a6c
JK		 10107
10108 wstats->qual.qual = priv->quality;
00d21de5
ZY		 10109 wstats->qual.level = priv->exp_avg_rssi;
10110 wstats->qual.noise = priv->exp_avg_noise;
43f66a6c 10111 wstats->qual.updated = IW_QUAL_QUAL_UPDATED | IW_QUAL_LEVEL_UPDATED |
b191608a 10112 IW_QUAL_NOISE_UPDATED | IW_QUAL_DBM;
43f66a6c
JK		 10113
10114 wstats->miss.beacon = average_value(&priv->average_missed_beacons);
10115 wstats->discard.retries = priv->last_tx_failures;
10116 wstats->discard.code = priv->ieee->ieee_stats.rx_discards_undecryptable;
bf79451e 10117
43f66a6c
JK		 10118/* if (ipw_get_ordinal(priv, IPW_ORD_STAT_TX_RETRY, &tx_retry, &len))
10119 goto fail_get_ordinal;
10120 wstats->discard.retries += tx_retry; */
bf79451e 10121
43f66a6c
JK		 10122 return wstats;
10123}
10124
43f66a6c
JK		 10125/* net device stuff */
10126
858119e1 10127static void init_sys_config(struct ipw_sys_config *sys_config)
43f66a6c 10128{
0edd5b44 10129 memset(sys_config, 0, sizeof(struct ipw_sys_config));
810dabd4 10130 sys_config->bt_coexistence = 0;
43f66a6c
JK		 10131 sys_config->answer_broadcast_ssid_probe = 0;
10132 sys_config->accept_all_data_frames = 0;
10133 sys_config->accept_non_directed_frames = 1;
10134 sys_config->exclude_unicast_unencrypted = 0;
10135 sys_config->disable_unicast_decryption = 1;
10136 sys_config->exclude_multicast_unencrypted = 0;
10137 sys_config->disable_multicast_decryption = 1;
d2b83e12
ZY		 10138 if (antenna < CFG_SYS_ANTENNA_BOTH || antenna > CFG_SYS_ANTENNA_B)
10139 antenna = CFG_SYS_ANTENNA_BOTH;
10140 sys_config->antenna_diversity = antenna;
0edd5b44 10141 sys_config->pass_crc_to_host = 0; /* TODO: See if 1 gives us FCS */
43f66a6c 10142 sys_config->dot11g_auto_detection = 0;
bf79451e 10143 sys_config->enable_cts_to_self = 0;
43f66a6c 10144 sys_config->bt_coexist_collision_thr = 0;
67fd6b45 10145 sys_config->pass_noise_stats_to_host = 1; /* 1 -- fix for 256 */
12977154 10146 sys_config->silence_threshold = 0x1e;
43f66a6c
JK		 10147}
10148
10149static int ipw_net_open(struct net_device *dev)
10150{
43f66a6c 10151 IPW_DEBUG_INFO("dev->open\n");
521c4d96 10152 netif_start_queue(dev);
43f66a6c
JK		 10153 return 0;
10154}
10155
10156static int ipw_net_stop(struct net_device *dev)
10157{
10158 IPW_DEBUG_INFO("dev->close\n");
10159 netif_stop_queue(dev);
10160 return 0;
10161}
10162
10163/*
10164todo:
10165
10166modify to send one tfd per fragment instead of using chunking. otherwise
10167we need to heavily modify the ieee80211_skb_to_txb.
10168*/
10169
858119e1 10170static int ipw_tx_skb(struct ipw_priv *priv, struct ieee80211_txb *txb,
227d2dc1 10171 int pri)
43f66a6c 10172{
a5cf4fe6 10173 struct ieee80211_hdr_3addrqos *hdr = (struct ieee80211_hdr_3addrqos *)
0edd5b44 10174 txb->fragments[0]->data;
43f66a6c
JK		 10175 int i = 0;
10176 struct tfd_frame *tfd;
e43e3c1e 10177#ifdef CONFIG_IPW2200_QOS
b095c381
JK		 10178 int tx_id = ipw_get_tx_queue_number(priv, pri);
10179 struct clx2_tx_queue *txq = &priv->txq[tx_id];
10180#else
43f66a6c 10181 struct clx2_tx_queue *txq = &priv->txq[0];
b095c381 10182#endif
43f66a6c
JK		 10183 struct clx2_queue *q = &txq->q;
10184 u8 id, hdr_len, unicast;
c848d0af 10185 int fc;
43f66a6c 10186
b8ddafd7
ZY		 10187 if (!(priv->status & STATUS_ASSOCIATED))
10188 goto drop;
10189
a5cf4fe6 10190 hdr_len = ieee80211_get_hdrlen(le16_to_cpu(hdr->frame_ctl));
43f66a6c
JK		 10191 switch (priv->ieee->iw_mode) {
10192 case IW_MODE_ADHOC:
3c19065a 10193 unicast = !is_multicast_ether_addr(hdr->addr1);
43f66a6c
JK		 10194 id = ipw_find_station(priv, hdr->addr1);
10195 if (id == IPW_INVALID_STATION) {
10196 id = ipw_add_station(priv, hdr->addr1);
10197 if (id == IPW_INVALID_STATION) {
10198 IPW_WARNING("Attempt to send data to "
e174961c
JB		 10199 "invalid cell: %pM\n",
10200 hdr->addr1);
43f66a6c
JK		 10201 goto drop;
10202 }
10203 }
10204 break;
10205
10206 case IW_MODE_INFRA:
10207 default:
3c19065a 10208 unicast = !is_multicast_ether_addr(hdr->addr3);
43f66a6c
JK		 10209 id = 0;
10210 break;
10211 }
10212
10213 tfd = &txq->bd[q->first_empty];
10214 txq->txb[q->first_empty] = txb;
10215 memset(tfd, 0, sizeof(*tfd));
10216 tfd->u.data.station_number = id;
10217
10218 tfd->control_flags.message_type = TX_FRAME_TYPE;
10219 tfd->control_flags.control_bits = TFD_NEED_IRQ_MASK;
10220
10221 tfd->u.data.cmd_id = DINO_CMD_TX;
a613bffd 10222 tfd->u.data.len = cpu_to_le16(txb->payload_size);
bf79451e 10223
43f66a6c 10224 if (priv->assoc_request.ieee_mode == IPW_B_MODE)
b095c381 10225 tfd->u.data.tx_flags_ext |= DCT_FLAG_EXT_MODE_CCK;
43f66a6c 10226 else
b095c381 10227 tfd->u.data.tx_flags_ext |= DCT_FLAG_EXT_MODE_OFDM;
43f66a6c 10228
ea2b26e0
JK		 10229 if (priv->assoc_request.preamble_length == DCT_FLAG_SHORT_PREAMBLE)
10230 tfd->u.data.tx_flags |= DCT_FLAG_SHORT_PREAMBLE;
43f66a6c 10231
c848d0af
JK		 10232 fc = le16_to_cpu(hdr->frame_ctl);
10233 hdr->frame_ctl = cpu_to_le16(fc & ~IEEE80211_FCTL_MOREFRAGS);
43f66a6c
JK		 10234
10235 memcpy(&tfd->u.data.tfd.tfd_24.mchdr, hdr, hdr_len);
10236
b095c381
JK		 10237 if (likely(unicast))
10238 tfd->u.data.tx_flags |= DCT_FLAG_ACK_REQD;
10239
10240 if (txb->encrypted && !priv->ieee->host_encrypt) {
10241 switch (priv->ieee->sec.level) {
10242 case SEC_LEVEL_3:
10243 tfd->u.data.tfd.tfd_24.mchdr.frame_ctl |=
851ca268 10244 cpu_to_le16(IEEE80211_FCTL_PROTECTED);
b095c381
JK		 10245 /* XXX: ACK flag must be set for CCMP even if it
10246 * is a multicast/broadcast packet, because CCMP
10247 * group communication encrypted by GTK is
10248 * actually done by the AP. */
10249 if (!unicast)
10250 tfd->u.data.tx_flags |= DCT_FLAG_ACK_REQD;
10251
10252 tfd->u.data.tx_flags &= ~DCT_FLAG_NO_WEP;
10253 tfd->u.data.tx_flags_ext |= DCT_FLAG_EXT_SECURITY_CCM;
10254 tfd->u.data.key_index = 0;
10255 tfd->u.data.key_index |= DCT_WEP_INDEX_USE_IMMEDIATE;
10256 break;
10257 case SEC_LEVEL_2:
10258 tfd->u.data.tfd.tfd_24.mchdr.frame_ctl |=
851ca268 10259 cpu_to_le16(IEEE80211_FCTL_PROTECTED);
b095c381
JK		 10260 tfd->u.data.tx_flags &= ~DCT_FLAG_NO_WEP;
10261 tfd->u.data.tx_flags_ext |= DCT_FLAG_EXT_SECURITY_TKIP;
10262 tfd->u.data.key_index = DCT_WEP_INDEX_USE_IMMEDIATE;
10263 break;
10264 case SEC_LEVEL_1:
10265 tfd->u.data.tfd.tfd_24.mchdr.frame_ctl |=
851ca268 10266 cpu_to_le16(IEEE80211_FCTL_PROTECTED);
274bfb8d
JL		 10267 tfd->u.data.key_index = priv->ieee->crypt_info.tx_keyidx;
10268 if (priv->ieee->sec.key_sizes[priv->ieee->crypt_info.tx_keyidx] <=
b095c381
JK		 10269 40)
10270 tfd->u.data.key_index |= DCT_WEP_KEY_64Bit;
10271 else
10272 tfd->u.data.key_index |= DCT_WEP_KEY_128Bit;
10273 break;
10274 case SEC_LEVEL_0:
10275 break;
10276 default:
10277 printk(KERN_ERR "Unknow security level %d\n",
10278 priv->ieee->sec.level);
10279 break;
10280 }
10281 } else
10282 /* No hardware encryption */
10283 tfd->u.data.tx_flags |= DCT_FLAG_NO_WEP;
10284
e43e3c1e 10285#ifdef CONFIG_IPW2200_QOS
a5cf4fe6
ZY		 10286 if (fc & IEEE80211_STYPE_QOS_DATA)
10287 ipw_qos_set_tx_queue_command(priv, pri, &(tfd->u.data));
e43e3c1e 10288#endif /* CONFIG_IPW2200_QOS */
b095c381 10289
43f66a6c 10290 /* payload */
a613bffd
JK		 10291 tfd->u.data.num_chunks = cpu_to_le32(min((u8) (NUM_TFD_CHUNKS - 2),
10292 txb->nr_frags));
10293 IPW_DEBUG_FRAG("%i fragments being sent as %i chunks.\n",
10294 txb->nr_frags, le32_to_cpu(tfd->u.data.num_chunks));
10295 for (i = 0; i < le32_to_cpu(tfd->u.data.num_chunks); i++) {
10296 IPW_DEBUG_FRAG("Adding fragment %i of %i (%d bytes).\n",
10297 i, le32_to_cpu(tfd->u.data.num_chunks),
10298 txb->fragments[i]->len - hdr_len);
bf79451e 10299 IPW_DEBUG_TX("Dumping TX packet frag %i of %i (%d bytes):\n",
43f66a6c
JK		 10300 i, tfd->u.data.num_chunks,
10301 txb->fragments[i]->len - hdr_len);
bf79451e 10302 printk_buf(IPW_DL_TX, txb->fragments[i]->data + hdr_len,
43f66a6c
JK		 10303 txb->fragments[i]->len - hdr_len);
10304
0edd5b44 10305 tfd->u.data.chunk_ptr[i] =
a613bffd
JK		 10306 cpu_to_le32(pci_map_single
10307 (priv->pci_dev,
10308 txb->fragments[i]->data + hdr_len,
10309 txb->fragments[i]->len - hdr_len,
10310 PCI_DMA_TODEVICE));
10311 tfd->u.data.chunk_len[i] =
10312 cpu_to_le16(txb->fragments[i]->len - hdr_len);
43f66a6c
JK		 10313 }
10314
10315 if (i != txb->nr_frags) {
10316 struct sk_buff *skb;
10317 u16 remaining_bytes = 0;
10318 int j;
10319
10320 for (j = i; j < txb->nr_frags; j++)
10321 remaining_bytes += txb->fragments[j]->len - hdr_len;
10322
10323 printk(KERN_INFO "Trying to reallocate for %d bytes\n",
10324 remaining_bytes);
10325 skb = alloc_skb(remaining_bytes, GFP_ATOMIC);
10326 if (skb != NULL) {
a613bffd 10327 tfd->u.data.chunk_len[i] = cpu_to_le16(remaining_bytes);
43f66a6c
JK		 10328 for (j = i; j < txb->nr_frags; j++) {
10329 int size = txb->fragments[j]->len - hdr_len;
afbf30a2 10330
43f66a6c 10331 printk(KERN_INFO "Adding frag %d %d...\n",
0edd5b44 10332 j, size);
43f66a6c 10333 memcpy(skb_put(skb, size),
0edd5b44 10334 txb->fragments[j]->data + hdr_len, size);
43f66a6c
JK		 10335 }
10336 dev_kfree_skb_any(txb->fragments[i]);
10337 txb->fragments[i] = skb;
0edd5b44 10338 tfd->u.data.chunk_ptr[i] =
a613bffd
JK		 10339 cpu_to_le32(pci_map_single
10340 (priv->pci_dev, skb->data,
4958730e 10341 remaining_bytes,
a613bffd
JK		 10342 PCI_DMA_TODEVICE));
10343
5c05863d 10344 le32_add_cpu(&tfd->u.data.num_chunks, 1);
bf79451e 10345 }
43f66a6c
JK		 10346 }
10347
10348 /* kick DMA */
10349 q->first_empty = ipw_queue_inc_wrap(q->first_empty, q->n_bd);
10350 ipw_write32(priv, q->reg_w, q->first_empty);
10351
943dbef4 10352 if (ipw_tx_queue_space(q) < q->high_mark)
f697014a
JK		 10353 netif_stop_queue(priv->net_dev);
10354
227d2dc1 10355 return NETDEV_TX_OK;
43f66a6c 10356
0edd5b44 10357 drop:
43f66a6c
JK		 10358 IPW_DEBUG_DROP("Silently dropping Tx packet.\n");
10359 ieee80211_txb_free(txb);
227d2dc1
JK		 10360 return NETDEV_TX_OK;
10361}
10362
10363static int ipw_net_is_queue_full(struct net_device *dev, int pri)
10364{
10365 struct ipw_priv *priv = ieee80211_priv(dev);
e43e3c1e 10366#ifdef CONFIG_IPW2200_QOS
227d2dc1
JK		 10367 int tx_id = ipw_get_tx_queue_number(priv, pri);
10368 struct clx2_tx_queue *txq = &priv->txq[tx_id];
10369#else
10370 struct clx2_tx_queue *txq = &priv->txq[0];
e43e3c1e 10371#endif /* CONFIG_IPW2200_QOS */
227d2dc1 10372
943dbef4 10373 if (ipw_tx_queue_space(&txq->q) < txq->q.high_mark)
227d2dc1
JK		 10374 return 1;
10375
10376 return 0;
43f66a6c
JK		 10377}
10378
d685b8c2
ZY		 10379#ifdef CONFIG_IPW2200_PROMISCUOUS
10380static void ipw_handle_promiscuous_tx(struct ipw_priv *priv,
10381 struct ieee80211_txb *txb)
10382{
10383 struct ieee80211_rx_stats dummystats;
10384 struct ieee80211_hdr *hdr;
10385 u8 n;
10386 u16 filter = priv->prom_priv->filter;
10387 int hdr_only = 0;
10388
10389 if (filter & IPW_PROM_NO_TX)
10390 return;
10391
10392 memset(&dummystats, 0, sizeof(dummystats));
10393
10394 /* Filtering of fragment chains is done agains the first fragment */
10395 hdr = (void *)txb->fragments[0]->data;
72118015 10396 if (ieee80211_is_management(le16_to_cpu(hdr->frame_control))) {
d685b8c2
ZY		 10397 if (filter & IPW_PROM_NO_MGMT)
10398 return;
10399 if (filter & IPW_PROM_MGMT_HEADER_ONLY)
10400 hdr_only = 1;
72118015 10401 } else if (ieee80211_is_control(le16_to_cpu(hdr->frame_control))) {
d685b8c2
ZY		 10402 if (filter & IPW_PROM_NO_CTL)
10403 return;
10404 if (filter & IPW_PROM_CTL_HEADER_ONLY)
10405 hdr_only = 1;
72118015 10406 } else if (ieee80211_is_data(le16_to_cpu(hdr->frame_control))) {
d685b8c2
ZY		 10407 if (filter & IPW_PROM_NO_DATA)
10408 return;
10409 if (filter & IPW_PROM_DATA_HEADER_ONLY)
10410 hdr_only = 1;
10411 }
10412
10413 for(n=0; n<txb->nr_frags; ++n) {
10414 struct sk_buff *src = txb->fragments[n];
10415 struct sk_buff *dst;
10416 struct ieee80211_radiotap_header *rt_hdr;
10417 int len;
10418
10419 if (hdr_only) {
10420 hdr = (void *)src->data;
72118015 10421 len = ieee80211_get_hdrlen(le16_to_cpu(hdr->frame_control));
d685b8c2
ZY		 10422 } else
10423 len = src->len;
10424
007e5ddd
JB		 10425 dst = alloc_skb(len + sizeof(*rt_hdr), GFP_ATOMIC);
10426 if (!dst)
10427 continue;
d685b8c2
ZY		 10428
10429 rt_hdr = (void *)skb_put(dst, sizeof(*rt_hdr));
10430
10431 rt_hdr->it_version = PKTHDR_RADIOTAP_VERSION;
10432 rt_hdr->it_pad = 0;
10433 rt_hdr->it_present = 0; /* after all, it's just an idea */
743b84d2 10434 rt_hdr->it_present |= cpu_to_le32(1 << IEEE80211_RADIOTAP_CHANNEL);
d685b8c2 10435
e62e1ee0 10436 *(__le16*)skb_put(dst, sizeof(u16)) = cpu_to_le16(
d685b8c2
ZY		 10437 ieee80211chan2mhz(priv->channel));
10438 if (priv->channel > 14) /* 802.11a */
e62e1ee0 10439 *(__le16*)skb_put(dst, sizeof(u16)) =
d685b8c2
ZY		 10440 cpu_to_le16(IEEE80211_CHAN_OFDM |
10441 IEEE80211_CHAN_5GHZ);
10442 else if (priv->ieee->mode == IEEE_B) /* 802.11b */
e62e1ee0 10443 *(__le16*)skb_put(dst, sizeof(u16)) =
d685b8c2
ZY		 10444 cpu_to_le16(IEEE80211_CHAN_CCK |
10445 IEEE80211_CHAN_2GHZ);
10446 else /* 802.11g */
e62e1ee0 10447 *(__le16*)skb_put(dst, sizeof(u16)) =
d685b8c2
ZY		 10448 cpu_to_le16(IEEE80211_CHAN_OFDM |
10449 IEEE80211_CHAN_2GHZ);
10450
743b84d2 10451 rt_hdr->it_len = cpu_to_le16(dst->len);
d685b8c2 10452
d626f62b 10453 skb_copy_from_linear_data(src, skb_put(dst, len), len);
d685b8c2
ZY		 10454
10455 if (!ieee80211_rx(priv->prom_priv->ieee, dst, &dummystats))
10456 dev_kfree_skb_any(dst);
10457 }
10458}
10459#endif
10460
43f66a6c 10461static int ipw_net_hard_start_xmit(struct ieee80211_txb *txb,
c8d42d1a 10462 struct net_device *dev, int pri)
43f66a6c
JK		 10463{
10464 struct ipw_priv *priv = ieee80211_priv(dev);
10465 unsigned long flags;
227d2dc1 10466 int ret;
43f66a6c
JK		 10467
10468 IPW_DEBUG_TX("dev->xmit(%d bytes)\n", txb->payload_size);
43f66a6c
JK		 10469 spin_lock_irqsave(&priv->lock, flags);
10470
d685b8c2
ZY		 10471#ifdef CONFIG_IPW2200_PROMISCUOUS
10472 if (rtap_iface && netif_running(priv->prom_net_dev))
10473 ipw_handle_promiscuous_tx(priv, txb);
10474#endif
10475
227d2dc1
JK		 10476 ret = ipw_tx_skb(priv, txb, pri);
10477 if (ret == NETDEV_TX_OK)
10478 __ipw_led_activity_on(priv);
43f66a6c 10479 spin_unlock_irqrestore(&priv->lock, flags);
43f66a6c 10480
227d2dc1 10481 return ret;
43f66a6c
JK		 10482}
10483
43f66a6c
JK		 10484static void ipw_net_set_multicast_list(struct net_device *dev)
10485{
10486
10487}
10488
10489static int ipw_net_set_mac_address(struct net_device *dev, void *p)
10490{
10491 struct ipw_priv *priv = ieee80211_priv(dev);
10492 struct sockaddr *addr = p;
0795af57 10493
43f66a6c
JK		 10494 if (!is_valid_ether_addr(addr->sa_data))
10495 return -EADDRNOTAVAIL;
4644151b 10496 mutex_lock(&priv->mutex);
43f66a6c
JK		 10497 priv->config |= CFG_CUSTOM_MAC;
10498 memcpy(priv->mac_addr, addr->sa_data, ETH_ALEN);
e174961c
JB		 10499 printk(KERN_INFO "%s: Setting MAC to %pM\n",
10500 priv->net_dev->name, priv->mac_addr);
a613bffd 10501 queue_work(priv->workqueue, &priv->adapter_restart);
4644151b 10502 mutex_unlock(&priv->mutex);
43f66a6c
JK		 10503 return 0;
10504}
10505
bf79451e 10506static void ipw_ethtool_get_drvinfo(struct net_device *dev,
43f66a6c
JK		 10507 struct ethtool_drvinfo *info)
10508{
10509 struct ipw_priv *p = ieee80211_priv(dev);
10510 char vers[64];
10511 char date[32];
10512 u32 len;
10513
10514 strcpy(info->driver, DRV_NAME);
10515 strcpy(info->version, DRV_VERSION);
10516
10517 len = sizeof(vers);
10518 ipw_get_ordinal(p, IPW_ORD_STAT_FW_VERSION, vers, &len);
10519 len = sizeof(date);
10520 ipw_get_ordinal(p, IPW_ORD_STAT_FW_DATE, date, &len);
10521
0edd5b44 10522 snprintf(info->fw_version, sizeof(info->fw_version), "%s (%s)",
43f66a6c
JK		 10523 vers, date);
10524 strcpy(info->bus_info, pci_name(p->pci_dev));
b095c381 10525 info->eedump_len = IPW_EEPROM_IMAGE_SIZE;
43f66a6c
JK		 10526}
10527
10528static u32 ipw_ethtool_get_link(struct net_device *dev)
10529{
10530 struct ipw_priv *priv = ieee80211_priv(dev);
10531 return (priv->status & STATUS_ASSOCIATED) != 0;
10532}
10533
10534static int ipw_ethtool_get_eeprom_len(struct net_device *dev)
10535{
b095c381 10536 return IPW_EEPROM_IMAGE_SIZE;
43f66a6c
JK		 10537}
10538
10539static int ipw_ethtool_get_eeprom(struct net_device *dev,
0edd5b44 10540 struct ethtool_eeprom *eeprom, u8 * bytes)
43f66a6c
JK		 10541{
10542 struct ipw_priv *p = ieee80211_priv(dev);
10543
b095c381 10544 if (eeprom->offset + eeprom->len > IPW_EEPROM_IMAGE_SIZE)
43f66a6c 10545 return -EINVAL;
4644151b 10546 mutex_lock(&p->mutex);
afbf30a2 10547 memcpy(bytes, &p->eeprom[eeprom->offset], eeprom->len);
4644151b 10548 mutex_unlock(&p->mutex);
43f66a6c
JK		 10549 return 0;
10550}
10551
10552static int ipw_ethtool_set_eeprom(struct net_device *dev,
0edd5b44 10553 struct ethtool_eeprom *eeprom, u8 * bytes)
43f66a6c
JK		 10554{
10555 struct ipw_priv *p = ieee80211_priv(dev);
10556 int i;
10557
b095c381 10558 if (eeprom->offset + eeprom->len > IPW_EEPROM_IMAGE_SIZE)
43f66a6c 10559 return -EINVAL;
4644151b 10560 mutex_lock(&p->mutex);
afbf30a2 10561 memcpy(&p->eeprom[eeprom->offset], bytes, eeprom->len);
71e585fc
AB		 10562 for (i = 0; i < IPW_EEPROM_IMAGE_SIZE; i++)
10563 ipw_write8(p, i + IPW_EEPROM_DATA, p->eeprom[i]);
4644151b 10564 mutex_unlock(&p->mutex);
43f66a6c
JK		 10565 return 0;
10566}
10567
7282d491 10568static const struct ethtool_ops ipw_ethtool_ops = {
ea2b26e0
JK		 10569 .get_link = ipw_ethtool_get_link,
10570 .get_drvinfo = ipw_ethtool_get_drvinfo,
10571 .get_eeprom_len = ipw_ethtool_get_eeprom_len,
10572 .get_eeprom = ipw_ethtool_get_eeprom,
10573 .set_eeprom = ipw_ethtool_set_eeprom,
43f66a6c
JK		 10574};
10575
7d12e780 10576static irqreturn_t ipw_isr(int irq, void *data)
43f66a6c
JK		 10577{
10578 struct ipw_priv *priv = data;
10579 u32 inta, inta_mask;
bf79451e 10580
43f66a6c
JK		 10581 if (!priv)
10582 return IRQ_NONE;
10583
89c318ed 10584 spin_lock(&priv->irq_lock);
43f66a6c
JK		 10585
10586 if (!(priv->status & STATUS_INT_ENABLED)) {
d00d0121 10587 /* IRQ is disabled */
43f66a6c
JK		 10588 goto none;
10589 }
10590
b095c381
JK		 10591 inta = ipw_read32(priv, IPW_INTA_RW);
10592 inta_mask = ipw_read32(priv, IPW_INTA_MASK_R);
bf79451e 10593
43f66a6c
JK		 10594 if (inta == 0xFFFFFFFF) {
10595 /* Hardware disappeared */
10596 IPW_WARNING("IRQ INTA == 0xFFFFFFFF\n");
10597 goto none;
10598 }
10599
b095c381 10600 if (!(inta & (IPW_INTA_MASK_ALL & inta_mask))) {
43f66a6c
JK		 10601 /* Shared interrupt */
10602 goto none;
10603 }
10604
10605 /* tell the device to stop sending interrupts */
89c318ed 10606 __ipw_disable_interrupts(priv);
bf79451e 10607
43f66a6c 10608 /* ack current interrupts */
b095c381
JK		 10609 inta &= (IPW_INTA_MASK_ALL & inta_mask);
10610 ipw_write32(priv, IPW_INTA_RW, inta);
bf79451e 10611
43f66a6c
JK		 10612 /* Cache INTA value for our tasklet */
10613 priv->isr_inta = inta;
10614
10615 tasklet_schedule(&priv->irq_tasklet);
10616
89c318ed 10617 spin_unlock(&priv->irq_lock);
43f66a6c
JK		 10618
10619 return IRQ_HANDLED;
0edd5b44 10620 none:
89c318ed 10621 spin_unlock(&priv->irq_lock);
43f66a6c
JK		 10622 return IRQ_NONE;
10623}
10624
10625static void ipw_rf_kill(void *adapter)
10626{
10627 struct ipw_priv *priv = adapter;
10628 unsigned long flags;
bf79451e 10629
43f66a6c
JK		 10630 spin_lock_irqsave(&priv->lock, flags);
10631
10632 if (rf_kill_active(priv)) {
10633 IPW_DEBUG_RF_KILL("RF Kill active, rescheduling GPIO check\n");
10634 if (priv->workqueue)
10635 queue_delayed_work(priv->workqueue,
10636 &priv->rf_kill, 2 * HZ);
10637 goto exit_unlock;
10638 }
10639
10640 /* RF Kill is now disabled, so bring the device back up */
10641
10642 if (!(priv->status & STATUS_RF_KILL_MASK)) {
10643 IPW_DEBUG_RF_KILL("HW RF Kill no longer active, restarting "
10644 "device\n");
10645
10646 /* we can not do an adapter restart while inside an irq lock */
10647 queue_work(priv->workqueue, &priv->adapter_restart);
bf79451e 10648 } else
43f66a6c
JK		 10649 IPW_DEBUG_RF_KILL("HW RF Kill deactivated. SW RF Kill still "
10650 "enabled\n");
10651
0edd5b44 10652 exit_unlock:
43f66a6c
JK		 10653 spin_unlock_irqrestore(&priv->lock, flags);
10654}
10655
c4028958 10656static void ipw_bg_rf_kill(struct work_struct *work)
c848d0af 10657{
c4028958
DH		 10658 struct ipw_priv *priv =
10659 container_of(work, struct ipw_priv, rf_kill.work);
4644151b 10660 mutex_lock(&priv->mutex);
c4028958 10661 ipw_rf_kill(priv);
4644151b 10662 mutex_unlock(&priv->mutex);
c848d0af
JK		 10663}
10664
a73e22b2 10665static void ipw_link_up(struct ipw_priv *priv)
a613bffd 10666{
afbf30a2
JK		 10667 priv->last_seq_num = -1;
10668 priv->last_frag_num = -1;
10669 priv->last_packet_time = 0;
10670
a613bffd 10671 netif_carrier_on(priv->net_dev);
a613bffd 10672
c848d0af 10673 cancel_delayed_work(&priv->request_scan);
ea177305
DW		 10674 cancel_delayed_work(&priv->request_direct_scan);
10675 cancel_delayed_work(&priv->request_passive_scan);
0b531676 10676 cancel_delayed_work(&priv->scan_event);
a613bffd
JK		 10677 ipw_reset_stats(priv);
10678 /* Ensure the rate is updated immediately */
10679 priv->last_rate = ipw_get_current_rate(priv);
10680 ipw_gather_stats(priv);
10681 ipw_led_link_up(priv);
10682 notify_wx_assoc_event(priv);
10683
10684 if (priv->config & CFG_BACKGROUND_SCAN)
10685 queue_delayed_work(priv->workqueue, &priv->request_scan, HZ);
10686}
10687
c4028958 10688static void ipw_bg_link_up(struct work_struct *work)
c848d0af 10689{
c4028958
DH		 10690 struct ipw_priv *priv =
10691 container_of(work, struct ipw_priv, link_up);
4644151b 10692 mutex_lock(&priv->mutex);
c4028958 10693 ipw_link_up(priv);
4644151b 10694 mutex_unlock(&priv->mutex);
c848d0af
JK		 10695}
10696
a73e22b2 10697static void ipw_link_down(struct ipw_priv *priv)
a613bffd
JK		 10698{
10699 ipw_led_link_down(priv);
10700 netif_carrier_off(priv->net_dev);
a613bffd
JK		 10701 notify_wx_assoc_event(priv);
10702
10703 /* Cancel any queued work ... */
10704 cancel_delayed_work(&priv->request_scan);
ea177305
DW		 10705 cancel_delayed_work(&priv->request_direct_scan);
10706 cancel_delayed_work(&priv->request_passive_scan);
a613bffd
JK		 10707 cancel_delayed_work(&priv->adhoc_check);
10708 cancel_delayed_work(&priv->gather_stats);
10709
10710 ipw_reset_stats(priv);
10711
afbf30a2
JK		 10712 if (!(priv->status & STATUS_EXIT_PENDING)) {
10713 /* Queue up another scan... */
c4028958 10714 queue_delayed_work(priv->workqueue, &priv->request_scan, 0);
0b531676
DW		 10715 } else
10716 cancel_delayed_work(&priv->scan_event);
a613bffd
JK		 10717}
10718
c4028958 10719static void ipw_bg_link_down(struct work_struct *work)
c848d0af 10720{
c4028958
DH		 10721 struct ipw_priv *priv =
10722 container_of(work, struct ipw_priv, link_down);
4644151b 10723 mutex_lock(&priv->mutex);
c4028958 10724 ipw_link_down(priv);
4644151b 10725 mutex_unlock(&priv->mutex);
43f66a6c
JK		 10726}
10727
2ef19e63 10728static int __devinit ipw_setup_deferred_work(struct ipw_priv *priv)
43f66a6c
JK		 10729{
10730 int ret = 0;
10731
43f66a6c 10732 priv->workqueue = create_workqueue(DRV_NAME);
43f66a6c 10733 init_waitqueue_head(&priv->wait_command_queue);
afbf30a2 10734 init_waitqueue_head(&priv->wait_state);
43f66a6c 10735
c4028958
DH		 10736 INIT_DELAYED_WORK(&priv->adhoc_check, ipw_bg_adhoc_check);
10737 INIT_WORK(&priv->associate, ipw_bg_associate);
10738 INIT_WORK(&priv->disassociate, ipw_bg_disassociate);
10739 INIT_WORK(&priv->system_config, ipw_system_config);
10740 INIT_WORK(&priv->rx_replenish, ipw_bg_rx_queue_replenish);
10741 INIT_WORK(&priv->adapter_restart, ipw_bg_adapter_restart);
10742 INIT_DELAYED_WORK(&priv->rf_kill, ipw_bg_rf_kill);
10743 INIT_WORK(&priv->up, ipw_bg_up);
10744 INIT_WORK(&priv->down, ipw_bg_down);
10745 INIT_DELAYED_WORK(&priv->request_scan, ipw_request_scan);
ea177305
DW		 10746 INIT_DELAYED_WORK(&priv->request_direct_scan, ipw_request_direct_scan);
10747 INIT_DELAYED_WORK(&priv->request_passive_scan, ipw_request_passive_scan);
0b531676 10748 INIT_DELAYED_WORK(&priv->scan_event, ipw_scan_event);
c4028958
DH		 10749 INIT_DELAYED_WORK(&priv->gather_stats, ipw_bg_gather_stats);
10750 INIT_WORK(&priv->abort_scan, ipw_bg_abort_scan);
10751 INIT_WORK(&priv->roam, ipw_bg_roam);
10752 INIT_DELAYED_WORK(&priv->scan_check, ipw_bg_scan_check);
10753 INIT_WORK(&priv->link_up, ipw_bg_link_up);
10754 INIT_WORK(&priv->link_down, ipw_bg_link_down);
10755 INIT_DELAYED_WORK(&priv->led_link_on, ipw_bg_led_link_on);
10756 INIT_DELAYED_WORK(&priv->led_link_off, ipw_bg_led_link_off);
10757 INIT_DELAYED_WORK(&priv->led_act_off, ipw_bg_led_activity_off);
10758 INIT_WORK(&priv->merge_networks, ipw_merge_adhoc_network);
43f66a6c 10759
e43e3c1e 10760#ifdef CONFIG_IPW2200_QOS
c4028958 10761 INIT_WORK(&priv->qos_activate, ipw_bg_qos_activate);
e43e3c1e 10762#endif /* CONFIG_IPW2200_QOS */
43f66a6c
JK		 10763
10764 tasklet_init(&priv->irq_tasklet, (void (*)(unsigned long))
10765 ipw_irq_tasklet, (unsigned long)priv);
10766
10767 return ret;
10768}
10769
43f66a6c
JK		 10770static void shim__set_security(struct net_device *dev,
10771 struct ieee80211_security *sec)
10772{
10773 struct ipw_priv *priv = ieee80211_priv(dev);
10774 int i;
bf79451e 10775 for (i = 0; i < 4; i++) {
43f66a6c 10776 if (sec->flags & (1 << i)) {
afbf30a2 10777 priv->ieee->sec.encode_alg[i] = sec->encode_alg[i];
b095c381 10778 priv->ieee->sec.key_sizes[i] = sec->key_sizes[i];
43f66a6c 10779 if (sec->key_sizes[i] == 0)
b095c381
JK		 10780 priv->ieee->sec.flags &= ~(1 << i);
10781 else {
10782 memcpy(priv->ieee->sec.keys[i], sec->keys[i],
43f66a6c 10783 sec->key_sizes[i]);
b095c381
JK		 10784 priv->ieee->sec.flags |= (1 << i);
10785 }
43f66a6c 10786 priv->status |= STATUS_SECURITY_UPDATED;
b095c381
JK		 10787 } else if (sec->level != SEC_LEVEL_1)
10788 priv->ieee->sec.flags &= ~(1 << i);
43f66a6c
JK		 10789 }
10790
b095c381 10791 if (sec->flags & SEC_ACTIVE_KEY) {
43f66a6c 10792 if (sec->active_key <= 3) {
b095c381
JK		 10793 priv->ieee->sec.active_key = sec->active_key;
10794 priv->ieee->sec.flags |= SEC_ACTIVE_KEY;
bf79451e 10795 } else
b095c381 10796 priv->ieee->sec.flags &= ~SEC_ACTIVE_KEY;
43f66a6c 10797 priv->status |= STATUS_SECURITY_UPDATED;
b095c381
JK		 10798 } else
10799 priv->ieee->sec.flags &= ~SEC_ACTIVE_KEY;
43f66a6c
JK		 10800
10801 if ((sec->flags & SEC_AUTH_MODE) &&
b095c381
JK		 10802 (priv->ieee->sec.auth_mode != sec->auth_mode)) {
10803 priv->ieee->sec.auth_mode = sec->auth_mode;
10804 priv->ieee->sec.flags |= SEC_AUTH_MODE;
43f66a6c
JK		 10805 if (sec->auth_mode == WLAN_AUTH_SHARED_KEY)
10806 priv->capability |= CAP_SHARED_KEY;
10807 else
10808 priv->capability &= ~CAP_SHARED_KEY;
10809 priv->status |= STATUS_SECURITY_UPDATED;
10810 }
bf79451e 10811
b095c381
JK		 10812 if (sec->flags & SEC_ENABLED && priv->ieee->sec.enabled != sec->enabled) {
10813 priv->ieee->sec.flags |= SEC_ENABLED;
10814 priv->ieee->sec.enabled = sec->enabled;
43f66a6c 10815 priv->status |= STATUS_SECURITY_UPDATED;
bf79451e 10816 if (sec->enabled)
43f66a6c
JK		 10817 priv->capability |= CAP_PRIVACY_ON;
10818 else
10819 priv->capability &= ~CAP_PRIVACY_ON;
10820 }
bf79451e 10821
afbf30a2
JK		 10822 if (sec->flags & SEC_ENCRYPT)
10823 priv->ieee->sec.encrypt = sec->encrypt;
bf79451e 10824
b095c381
JK		 10825 if (sec->flags & SEC_LEVEL && priv->ieee->sec.level != sec->level) {
10826 priv->ieee->sec.level = sec->level;
10827 priv->ieee->sec.flags |= SEC_LEVEL;
43f66a6c
JK		 10828 priv->status |= STATUS_SECURITY_UPDATED;
10829 }
10830
1fbfea54
ZY		 10831 if (!priv->ieee->host_encrypt && (sec->flags & SEC_ENCRYPT))
10832 ipw_set_hwcrypto_keys(priv);
10833
bf79451e
JG		 10834 /* To match current functionality of ipw2100 (which works well w/
10835 * various supplicants, we don't force a disassociate if the
43f66a6c
JK		 10836 * privacy capability changes ... */
10837#if 0
10838 if ((priv->status & (STATUS_ASSOCIATED | STATUS_ASSOCIATING)) &&
bf79451e 10839 (((priv->assoc_request.capability &
5b5e807f 10840 cpu_to_le16(WLAN_CAPABILITY_PRIVACY)) && !sec->enabled) ||
bf79451e 10841 (!(priv->assoc_request.capability &
5b5e807f 10842 cpu_to_le16(WLAN_CAPABILITY_PRIVACY)) && sec->enabled))) {
43f66a6c
JK		 10843 IPW_DEBUG_ASSOC("Disassociating due to capability "
10844 "change.\n");
10845 ipw_disassociate(priv);
10846 }
10847#endif
10848}
10849
bf79451e 10850static int init_supported_rates(struct ipw_priv *priv,
43f66a6c
JK		 10851 struct ipw_supported_rates *rates)
10852{
10853 /* TODO: Mask out rates based on priv->rates_mask */
10854
10855 memset(rates, 0, sizeof(*rates));
0edd5b44 10856 /* configure supported rates */
43f66a6c
JK		 10857 switch (priv->ieee->freq_band) {
10858 case IEEE80211_52GHZ_BAND:
10859 rates->ieee_mode = IPW_A_MODE;
10860 rates->purpose = IPW_RATE_CAPABILITIES;
10861 ipw_add_ofdm_scan_rates(rates, IEEE80211_CCK_MODULATION,
10862 IEEE80211_OFDM_DEFAULT_RATES_MASK);
10863 break;
10864
0edd5b44 10865 default: /* Mixed or 2.4Ghz */
43f66a6c
JK		 10866 rates->ieee_mode = IPW_G_MODE;
10867 rates->purpose = IPW_RATE_CAPABILITIES;
10868 ipw_add_cck_scan_rates(rates, IEEE80211_CCK_MODULATION,
10869 IEEE80211_CCK_DEFAULT_RATES_MASK);
10870 if (priv->ieee->modulation & IEEE80211_OFDM_MODULATION) {
10871 ipw_add_ofdm_scan_rates(rates, IEEE80211_CCK_MODULATION,
10872 IEEE80211_OFDM_DEFAULT_RATES_MASK);
10873 }
10874 break;
10875 }
10876
10877 return 0;
10878}
10879
bf79451e 10880static int ipw_config(struct ipw_priv *priv)
43f66a6c 10881{
43f66a6c
JK		 10882 /* This is only called from ipw_up, which resets/reloads the firmware
10883 so, we don't need to first disable the card before we configure
10884 it */
6de9f7f2 10885 if (ipw_set_tx_power(priv))
43f66a6c
JK		 10886 goto error;
10887
10888 /* initialize adapter address */
10889 if (ipw_send_adapter_address(priv, priv->net_dev->dev_addr))
10890 goto error;
10891
10892 /* set basic system config settings */
10893 init_sys_config(&priv->sys_config);
810dabd4
ZY		 10894
10895 /* Support Bluetooth if we have BT h/w on board, and user wants to.
10896 * Does not support BT priority yet (don't abort or defer our Tx) */
10897 if (bt_coexist) {
2638bc39 10898 unsigned char bt_caps = priv->eeprom[EEPROM_SKU_CAPABILITY];
810dabd4
ZY		 10899
10900 if (bt_caps & EEPROM_SKU_CAP_BT_CHANNEL_SIG)
10901 priv->sys_config.bt_coexistence
2638bc39 10902 |= CFG_BT_COEXISTENCE_SIGNAL_CHNL;
810dabd4
ZY		 10903 if (bt_caps & EEPROM_SKU_CAP_BT_OOB)
10904 priv->sys_config.bt_coexistence
2638bc39 10905 |= CFG_BT_COEXISTENCE_OOB;
810dabd4
ZY		 10906 }
10907
d685b8c2
ZY		 10908#ifdef CONFIG_IPW2200_PROMISCUOUS
10909 if (priv->prom_net_dev && netif_running(priv->prom_net_dev)) {
10910 priv->sys_config.accept_all_data_frames = 1;
10911 priv->sys_config.accept_non_directed_frames = 1;
10912 priv->sys_config.accept_all_mgmt_bcpr = 1;
10913 priv->sys_config.accept_all_mgmt_frames = 1;
10914 }
10915#endif
10916
c848d0af
JK		 10917 if (priv->ieee->iw_mode == IW_MODE_ADHOC)
10918 priv->sys_config.answer_broadcast_ssid_probe = 1;
10919 else
10920 priv->sys_config.answer_broadcast_ssid_probe = 0;
10921
d685b8c2 10922 if (ipw_send_system_config(priv))
43f66a6c
JK		 10923 goto error;
10924
0edd5b44
JG		 10925 init_supported_rates(priv, &priv->rates);
10926 if (ipw_send_supported_rates(priv, &priv->rates))
43f66a6c
JK		 10927 goto error;
10928
10929 /* Set request-to-send threshold */
10930 if (priv->rts_threshold) {
10931 if (ipw_send_rts_threshold(priv, priv->rts_threshold))
10932 goto error;
10933 }
e43e3c1e 10934#ifdef CONFIG_IPW2200_QOS
b095c381
JK		 10935 IPW_DEBUG_QOS("QoS: call ipw_qos_activate\n");
10936 ipw_qos_activate(priv, NULL);
e43e3c1e 10937#endif /* CONFIG_IPW2200_QOS */
43f66a6c
JK		 10938
10939 if (ipw_set_random_seed(priv))
10940 goto error;
bf79451e 10941
43f66a6c
JK		 10942 /* final state transition to the RUN state */
10943 if (ipw_send_host_complete(priv))
10944 goto error;
10945
e666619e
JK		 10946 priv->status |= STATUS_INIT;
10947
10948 ipw_led_init(priv);
10949 ipw_led_radio_on(priv);
10950 priv->notif_missed_beacons = 0;
10951
10952 /* Set hardware WEP key if it is configured. */
10953 if ((priv->capability & CAP_PRIVACY_ON) &&
10954 (priv->ieee->sec.level == SEC_LEVEL_1) &&
10955 !(priv->ieee->host_encrypt || priv->ieee->host_decrypt))
10956 ipw_set_hwcrypto_keys(priv);
43f66a6c
JK		 10957
10958 return 0;
bf79451e 10959
0edd5b44 10960 error:
43f66a6c
JK		 10961 return -EIO;
10962}
10963
4f36f808
JK		 10964/*
10965 * NOTE:
10966 *
10967 * These tables have been tested in conjunction with the
10968 * Intel PRO/Wireless 2200BG and 2915ABG Network Connection Adapters.
10969 *
10970 * Altering this values, using it on other hardware, or in geographies
10971 * not intended for resale of the above mentioned Intel adapters has
10972 * not been tested.
10973 *
48a84770
HBA		 10974 * Remember to update the table in README.ipw2200 when changing this
10975 * table.
10976 *
4f36f808
JK		 10977 */
10978static const struct ieee80211_geo ipw_geos[] = {
10979 { /* Restricted */
10980 "---",
10981 .bg_channels = 11,
10982 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
10983 {2427, 4}, {2432, 5}, {2437, 6},
10984 {2442, 7}, {2447, 8}, {2452, 9},
10985 {2457, 10}, {2462, 11}},
10986 },
10987
10988 { /* Custom US/Canada */
10989 "ZZF",
10990 .bg_channels = 11,
10991 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
10992 {2427, 4}, {2432, 5}, {2437, 6},
10993 {2442, 7}, {2447, 8}, {2452, 9},
10994 {2457, 10}, {2462, 11}},
10995 .a_channels = 8,
10996 .a = {{5180, 36},
10997 {5200, 40},
10998 {5220, 44},
10999 {5240, 48},
11000 {5260, 52, IEEE80211_CH_PASSIVE_ONLY},
11001 {5280, 56, IEEE80211_CH_PASSIVE_ONLY},
11002 {5300, 60, IEEE80211_CH_PASSIVE_ONLY},
11003 {5320, 64, IEEE80211_CH_PASSIVE_ONLY}},
11004 },
11005
11006 { /* Rest of World */
11007 "ZZD",
11008 .bg_channels = 13,
11009 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11010 {2427, 4}, {2432, 5}, {2437, 6},
11011 {2442, 7}, {2447, 8}, {2452, 9},
11012 {2457, 10}, {2462, 11}, {2467, 12},
11013 {2472, 13}},
11014 },
11015
11016 { /* Custom USA & Europe & High */
11017 "ZZA",
11018 .bg_channels = 11,
11019 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11020 {2427, 4}, {2432, 5}, {2437, 6},
11021 {2442, 7}, {2447, 8}, {2452, 9},
11022 {2457, 10}, {2462, 11}},
11023 .a_channels = 13,
11024 .a = {{5180, 36},
11025 {5200, 40},
11026 {5220, 44},
11027 {5240, 48},
11028 {5260, 52, IEEE80211_CH_PASSIVE_ONLY},
11029 {5280, 56, IEEE80211_CH_PASSIVE_ONLY},
11030 {5300, 60, IEEE80211_CH_PASSIVE_ONLY},
11031 {5320, 64, IEEE80211_CH_PASSIVE_ONLY},
11032 {5745, 149},
11033 {5765, 153},
11034 {5785, 157},
11035 {5805, 161},
11036 {5825, 165}},
11037 },
11038
11039 { /* Custom NA & Europe */
11040 "ZZB",
11041 .bg_channels = 11,
11042 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11043 {2427, 4}, {2432, 5}, {2437, 6},
11044 {2442, 7}, {2447, 8}, {2452, 9},
11045 {2457, 10}, {2462, 11}},
11046 .a_channels = 13,
11047 .a = {{5180, 36},
11048 {5200, 40},
11049 {5220, 44},
11050 {5240, 48},
11051 {5260, 52, IEEE80211_CH_PASSIVE_ONLY},
11052 {5280, 56, IEEE80211_CH_PASSIVE_ONLY},
11053 {5300, 60, IEEE80211_CH_PASSIVE_ONLY},
11054 {5320, 64, IEEE80211_CH_PASSIVE_ONLY},
11055 {5745, 149, IEEE80211_CH_PASSIVE_ONLY},
11056 {5765, 153, IEEE80211_CH_PASSIVE_ONLY},
11057 {5785, 157, IEEE80211_CH_PASSIVE_ONLY},
11058 {5805, 161, IEEE80211_CH_PASSIVE_ONLY},
11059 {5825, 165, IEEE80211_CH_PASSIVE_ONLY}},
11060 },
11061
11062 { /* Custom Japan */
11063 "ZZC",
11064 .bg_channels = 11,
11065 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11066 {2427, 4}, {2432, 5}, {2437, 6},
11067 {2442, 7}, {2447, 8}, {2452, 9},
11068 {2457, 10}, {2462, 11}},
11069 .a_channels = 4,
11070 .a = {{5170, 34}, {5190, 38},
11071 {5210, 42}, {5230, 46}},
11072 },
11073
11074 { /* Custom */
11075 "ZZM",
11076 .bg_channels = 11,
11077 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11078 {2427, 4}, {2432, 5}, {2437, 6},
11079 {2442, 7}, {2447, 8}, {2452, 9},
11080 {2457, 10}, {2462, 11}},
11081 },
11082
11083 { /* Europe */
11084 "ZZE",
11085 .bg_channels = 13,
11086 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11087 {2427, 4}, {2432, 5}, {2437, 6},
11088 {2442, 7}, {2447, 8}, {2452, 9},
11089 {2457, 10}, {2462, 11}, {2467, 12},
11090 {2472, 13}},
11091 .a_channels = 19,
11092 .a = {{5180, 36},
11093 {5200, 40},
11094 {5220, 44},
11095 {5240, 48},
11096 {5260, 52, IEEE80211_CH_PASSIVE_ONLY},
11097 {5280, 56, IEEE80211_CH_PASSIVE_ONLY},
11098 {5300, 60, IEEE80211_CH_PASSIVE_ONLY},
11099 {5320, 64, IEEE80211_CH_PASSIVE_ONLY},
11100 {5500, 100, IEEE80211_CH_PASSIVE_ONLY},
11101 {5520, 104, IEEE80211_CH_PASSIVE_ONLY},
11102 {5540, 108, IEEE80211_CH_PASSIVE_ONLY},
11103 {5560, 112, IEEE80211_CH_PASSIVE_ONLY},
11104 {5580, 116, IEEE80211_CH_PASSIVE_ONLY},
11105 {5600, 120, IEEE80211_CH_PASSIVE_ONLY},
11106 {5620, 124, IEEE80211_CH_PASSIVE_ONLY},
11107 {5640, 128, IEEE80211_CH_PASSIVE_ONLY},
11108 {5660, 132, IEEE80211_CH_PASSIVE_ONLY},
11109 {5680, 136, IEEE80211_CH_PASSIVE_ONLY},
11110 {5700, 140, IEEE80211_CH_PASSIVE_ONLY}},
11111 },
11112
11113 { /* Custom Japan */
11114 "ZZJ",
11115 .bg_channels = 14,
11116 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11117 {2427, 4}, {2432, 5}, {2437, 6},
11118 {2442, 7}, {2447, 8}, {2452, 9},
11119 {2457, 10}, {2462, 11}, {2467, 12},
11120 {2472, 13}, {2484, 14, IEEE80211_CH_B_ONLY}},
11121 .a_channels = 4,
11122 .a = {{5170, 34}, {5190, 38},
11123 {5210, 42}, {5230, 46}},
11124 },
11125
03520576
JK		 11126 { /* Rest of World */
11127 "ZZR",
11128 .bg_channels = 14,
11129 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11130 {2427, 4}, {2432, 5}, {2437, 6},
11131 {2442, 7}, {2447, 8}, {2452, 9},
11132 {2457, 10}, {2462, 11}, {2467, 12},
11133 {2472, 13}, {2484, 14, IEEE80211_CH_B_ONLY |
11134 IEEE80211_CH_PASSIVE_ONLY}},
11135 },
11136
4f36f808
JK		 11137 { /* High Band */
11138 "ZZH",
11139 .bg_channels = 13,
11140 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11141 {2427, 4}, {2432, 5}, {2437, 6},
11142 {2442, 7}, {2447, 8}, {2452, 9},
11143 {2457, 10}, {2462, 11},
11144 {2467, 12, IEEE80211_CH_PASSIVE_ONLY},
11145 {2472, 13, IEEE80211_CH_PASSIVE_ONLY}},
11146 .a_channels = 4,
11147 .a = {{5745, 149}, {5765, 153},
11148 {5785, 157}, {5805, 161}},
11149 },
11150
11151 { /* Custom Europe */
11152 "ZZG",
11153 .bg_channels = 13,
11154 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11155 {2427, 4}, {2432, 5}, {2437, 6},
11156 {2442, 7}, {2447, 8}, {2452, 9},
11157 {2457, 10}, {2462, 11},
11158 {2467, 12}, {2472, 13}},
11159 .a_channels = 4,
11160 .a = {{5180, 36}, {5200, 40},
11161 {5220, 44}, {5240, 48}},
11162 },
11163
11164 { /* Europe */
11165 "ZZK",
11166 .bg_channels = 13,
11167 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11168 {2427, 4}, {2432, 5}, {2437, 6},
11169 {2442, 7}, {2447, 8}, {2452, 9},
11170 {2457, 10}, {2462, 11},
11171 {2467, 12, IEEE80211_CH_PASSIVE_ONLY},
11172 {2472, 13, IEEE80211_CH_PASSIVE_ONLY}},
11173 .a_channels = 24,
11174 .a = {{5180, 36, IEEE80211_CH_PASSIVE_ONLY},
11175 {5200, 40, IEEE80211_CH_PASSIVE_ONLY},
11176 {5220, 44, IEEE80211_CH_PASSIVE_ONLY},
11177 {5240, 48, IEEE80211_CH_PASSIVE_ONLY},
11178 {5260, 52, IEEE80211_CH_PASSIVE_ONLY},
11179 {5280, 56, IEEE80211_CH_PASSIVE_ONLY},
11180 {5300, 60, IEEE80211_CH_PASSIVE_ONLY},
11181 {5320, 64, IEEE80211_CH_PASSIVE_ONLY},
11182 {5500, 100, IEEE80211_CH_PASSIVE_ONLY},
11183 {5520, 104, IEEE80211_CH_PASSIVE_ONLY},
11184 {5540, 108, IEEE80211_CH_PASSIVE_ONLY},
11185 {5560, 112, IEEE80211_CH_PASSIVE_ONLY},
11186 {5580, 116, IEEE80211_CH_PASSIVE_ONLY},
11187 {5600, 120, IEEE80211_CH_PASSIVE_ONLY},
11188 {5620, 124, IEEE80211_CH_PASSIVE_ONLY},
11189 {5640, 128, IEEE80211_CH_PASSIVE_ONLY},
11190 {5660, 132, IEEE80211_CH_PASSIVE_ONLY},
11191 {5680, 136, IEEE80211_CH_PASSIVE_ONLY},
11192 {5700, 140, IEEE80211_CH_PASSIVE_ONLY},
11193 {5745, 149, IEEE80211_CH_PASSIVE_ONLY},
11194 {5765, 153, IEEE80211_CH_PASSIVE_ONLY},
11195 {5785, 157, IEEE80211_CH_PASSIVE_ONLY},
11196 {5805, 161, IEEE80211_CH_PASSIVE_ONLY},
11197 {5825, 165, IEEE80211_CH_PASSIVE_ONLY}},
11198 },
11199
11200 { /* Europe */
11201 "ZZL",
11202 .bg_channels = 11,
11203 .bg = {{2412, 1}, {2417, 2}, {2422, 3},
11204 {2427, 4}, {2432, 5}, {2437, 6},
11205 {2442, 7}, {2447, 8}, {2452, 9},
11206 {2457, 10}, {2462, 11}},
11207 .a_channels = 13,
11208 .a = {{5180, 36, IEEE80211_CH_PASSIVE_ONLY},
11209 {5200, 40, IEEE80211_CH_PASSIVE_ONLY},
11210 {5220, 44, IEEE80211_CH_PASSIVE_ONLY},
11211 {5240, 48, IEEE80211_CH_PASSIVE_ONLY},
11212 {5260, 52, IEEE80211_CH_PASSIVE_ONLY},
11213 {5280, 56, IEEE80211_CH_PASSIVE_ONLY},
11214 {5300, 60, IEEE80211_CH_PASSIVE_ONLY},
11215 {5320, 64, IEEE80211_CH_PASSIVE_ONLY},
11216 {5745, 149, IEEE80211_CH_PASSIVE_ONLY},
11217 {5765, 153, IEEE80211_CH_PASSIVE_ONLY},
11218 {5785, 157, IEEE80211_CH_PASSIVE_ONLY},
11219 {5805, 161, IEEE80211_CH_PASSIVE_ONLY},
11220 {5825, 165, IEEE80211_CH_PASSIVE_ONLY}},
11221 }
afbf30a2
JK		 11222};
11223
43f66a6c
JK		 11224#define MAX_HW_RESTARTS 5
11225static int ipw_up(struct ipw_priv *priv)
11226{
4f36f808 11227 int rc, i, j;
43f66a6c 11228
c3d72b96
DW		 11229 /* Age scan list entries found before suspend */
11230 if (priv->suspend_time) {
11231 ieee80211_networks_age(priv->ieee, priv->suspend_time);
11232 priv->suspend_time = 0;
11233 }
11234
43f66a6c
JK		 11235 if (priv->status & STATUS_EXIT_PENDING)
11236 return -EIO;
11237
f6c5cb7c 11238 if (cmdlog && !priv->cmdlog) {
e6e3f12a 11239 priv->cmdlog = kcalloc(cmdlog, sizeof(*priv->cmdlog),
f6c5cb7c
JK		 11240 GFP_KERNEL);
11241 if (priv->cmdlog == NULL) {
11242 IPW_ERROR("Error allocating %d command log entries.\n",
11243 cmdlog);
d0b526b7 11244 return -ENOMEM;
f6c5cb7c 11245 } else {
f6c5cb7c
JK		 11246 priv->cmdlog_len = cmdlog;
11247 }
11248 }
11249
0edd5b44 11250 for (i = 0; i < MAX_HW_RESTARTS; i++) {
bf79451e 11251 /* Load the microcode, firmware, and eeprom.
43f66a6c
JK		 11252 * Also start the clocks. */
11253 rc = ipw_load(priv);
11254 if (rc) {
a4f6bbb3 11255 IPW_ERROR("Unable to load firmware: %d\n", rc);
43f66a6c
JK		 11256 return rc;
11257 }
11258
11259 ipw_init_ordinals(priv);
11260 if (!(priv->config & CFG_CUSTOM_MAC))
11261 eeprom_parse_mac(priv, priv->mac_addr);
11262 memcpy(priv->net_dev->dev_addr, priv->mac_addr, ETH_ALEN);
11263
4f36f808
JK		 11264 for (j = 0; j < ARRAY_SIZE(ipw_geos); j++) {
11265 if (!memcmp(&priv->eeprom[EEPROM_COUNTRY_CODE],
11266 ipw_geos[j].name, 3))
11267 break;
11268 }
03520576
JK		 11269 if (j == ARRAY_SIZE(ipw_geos)) {
11270 IPW_WARNING("SKU [%c%c%c] not recognized.\n",
11271 priv->eeprom[EEPROM_COUNTRY_CODE + 0],
11272 priv->eeprom[EEPROM_COUNTRY_CODE + 1],
11273 priv->eeprom[EEPROM_COUNTRY_CODE + 2]);
4f36f808 11274 j = 0;
03520576 11275 }
1867b117 11276 if (ieee80211_set_geo(priv->ieee, &ipw_geos[j])) {
4f36f808
JK		 11277 IPW_WARNING("Could not set geography.");
11278 return 0;
11279 }
11280
b095c381
JK		 11281 if (priv->status & STATUS_RF_KILL_SW) {
11282 IPW_WARNING("Radio disabled by module parameter.\n");
11283 return 0;
11284 } else if (rf_kill_active(priv)) {
11285 IPW_WARNING("Radio Frequency Kill Switch is On:\n"
11286 "Kill switch must be turned off for "
11287 "wireless networking to work.\n");
11288 queue_delayed_work(priv->workqueue, &priv->rf_kill,
11289 2 * HZ);
43f66a6c 11290 return 0;
c848d0af 11291 }
43f66a6c
JK		 11292
11293 rc = ipw_config(priv);
11294 if (!rc) {
11295 IPW_DEBUG_INFO("Configured device on count %i\n", i);
e666619e
JK		 11296
11297 /* If configure to try and auto-associate, kick
11298 * off a scan. */
c4028958
DH		 11299 queue_delayed_work(priv->workqueue,
11300 &priv->request_scan, 0);
afbf30a2 11301
43f66a6c 11302 return 0;
43f66a6c 11303 }
bf79451e 11304
c848d0af 11305 IPW_DEBUG_INFO("Device configuration failed: 0x%08X\n", rc);
43f66a6c
JK		 11306 IPW_DEBUG_INFO("Failed to config device on retry %d of %d\n",
11307 i, MAX_HW_RESTARTS);
11308
11309 /* We had an error bringing up the hardware, so take it
11310 * all the way back down so we can try again */
11311 ipw_down(priv);
11312 }
11313
bf79451e 11314 /* tried to restart and config the device for as long as our
43f66a6c 11315 * patience could withstand */
0edd5b44 11316 IPW_ERROR("Unable to initialize device after %d attempts.\n", i);
c848d0af 11317
43f66a6c
JK		 11318 return -EIO;
11319}
11320
c4028958 11321static void ipw_bg_up(struct work_struct *work)
c848d0af 11322{
c4028958
DH		 11323 struct ipw_priv *priv =
11324 container_of(work, struct ipw_priv, up);
4644151b 11325 mutex_lock(&priv->mutex);
c4028958 11326 ipw_up(priv);
4644151b 11327 mutex_unlock(&priv->mutex);
c848d0af
JK		 11328}
11329
b095c381 11330static void ipw_deinit(struct ipw_priv *priv)
43f66a6c 11331{
b095c381
JK		 11332 int i;
11333
11334 if (priv->status & STATUS_SCANNING) {
11335 IPW_DEBUG_INFO("Aborting scan during shutdown.\n");
11336 ipw_abort_scan(priv);
11337 }
11338
11339 if (priv->status & STATUS_ASSOCIATED) {
11340 IPW_DEBUG_INFO("Disassociating during shutdown.\n");
11341 ipw_disassociate(priv);
11342 }
11343
11344 ipw_led_shutdown(priv);
11345
11346 /* Wait up to 1s for status to change to not scanning and not
11347 * associated (disassociation can take a while for a ful 802.11
11348 * exchange */
11349 for (i = 1000; i && (priv->status &
11350 (STATUS_DISASSOCIATING |
11351 STATUS_ASSOCIATED | STATUS_SCANNING)); i--)
11352 udelay(10);
11353
11354 if (priv->status & (STATUS_DISASSOCIATING |
11355 STATUS_ASSOCIATED | STATUS_SCANNING))
11356 IPW_DEBUG_INFO("Still associated or scanning...\n");
11357 else
11358 IPW_DEBUG_INFO("Took %dms to de-init\n", 1000 - i);
11359
43f66a6c 11360 /* Attempt to disable the card */
43f66a6c 11361 ipw_send_card_disable(priv, 0);
b095c381
JK		 11362
11363 priv->status &= ~STATUS_INIT;
11364}
11365
11366static void ipw_down(struct ipw_priv *priv)
11367{
11368 int exit_pending = priv->status & STATUS_EXIT_PENDING;
11369
11370 priv->status |= STATUS_EXIT_PENDING;
11371
11372 if (ipw_is_init(priv))
11373 ipw_deinit(priv);
11374
11375 /* Wipe out the EXIT_PENDING status bit if we are not actually
11376 * exiting the module */
11377 if (!exit_pending)
11378 priv->status &= ~STATUS_EXIT_PENDING;
43f66a6c
JK		 11379
11380 /* tell the device to stop sending interrupts */
11381 ipw_disable_interrupts(priv);
11382
11383 /* Clear all bits but the RF Kill */
b095c381 11384 priv->status &= STATUS_RF_KILL_MASK | STATUS_EXIT_PENDING;
43f66a6c 11385 netif_carrier_off(priv->net_dev);
43f66a6c
JK		 11386
11387 ipw_stop_nic(priv);
a613bffd
JK		 11388
11389 ipw_led_radio_off(priv);
43f66a6c
JK		 11390}
11391
c4028958 11392static void ipw_bg_down(struct work_struct *work)
c848d0af 11393{
c4028958
DH		 11394 struct ipw_priv *priv =
11395 container_of(work, struct ipw_priv, down);
4644151b 11396 mutex_lock(&priv->mutex);
c4028958 11397 ipw_down(priv);
4644151b 11398 mutex_unlock(&priv->mutex);
43f66a6c
JK		 11399}
11400
11401/* Called by register_netdev() */
11402static int ipw_net_init(struct net_device *dev)
11403{
11404 struct ipw_priv *priv = ieee80211_priv(dev);
4644151b 11405 mutex_lock(&priv->mutex);
43f66a6c 11406
c848d0af 11407 if (ipw_up(priv)) {
4644151b 11408 mutex_unlock(&priv->mutex);
43f66a6c 11409 return -EIO;
c848d0af 11410 }
43f66a6c 11411
4644151b 11412 mutex_unlock(&priv->mutex);
43f66a6c
JK		 11413 return 0;
11414}
11415
11416/* PCI driver stuff */
11417static struct pci_device_id card_ids[] = {
11418 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2701, 0, 0, 0},
11419 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2702, 0, 0, 0},
11420 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2711, 0, 0, 0},
11421 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2712, 0, 0, 0},
11422 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2721, 0, 0, 0},
11423 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2722, 0, 0, 0},
11424 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2731, 0, 0, 0},
11425 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2732, 0, 0, 0},
11426 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2741, 0, 0, 0},
11427 {PCI_VENDOR_ID_INTEL, 0x1043, 0x103c, 0x2741, 0, 0, 0},
11428 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2742, 0, 0, 0},
11429 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2751, 0, 0, 0},
11430 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2752, 0, 0, 0},
11431 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2753, 0, 0, 0},
11432 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2754, 0, 0, 0},
11433 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2761, 0, 0, 0},
11434 {PCI_VENDOR_ID_INTEL, 0x1043, 0x8086, 0x2762, 0, 0, 0},
8ab0ea77
JP		 11435 {PCI_VDEVICE(INTEL, 0x104f), 0},
11436 {PCI_VDEVICE(INTEL, 0x4220), 0}, /* BG */
11437 {PCI_VDEVICE(INTEL, 0x4221), 0}, /* BG */
11438 {PCI_VDEVICE(INTEL, 0x4223), 0}, /* ABG */
11439 {PCI_VDEVICE(INTEL, 0x4224), 0}, /* ABG */
bf79451e 11440
43f66a6c
JK		 11441 /* required last entry */
11442 {0,}
11443};
11444
11445MODULE_DEVICE_TABLE(pci, card_ids);
11446
11447static struct attribute *ipw_sysfs_entries[] = {
11448 &dev_attr_rf_kill.attr,
11449 &dev_attr_direct_dword.attr,
11450 &dev_attr_indirect_byte.attr,
11451 &dev_attr_indirect_dword.attr,
11452 &dev_attr_mem_gpio_reg.attr,
11453 &dev_attr_command_event_reg.attr,
11454 &dev_attr_nic_type.attr,
11455 &dev_attr_status.attr,
11456 &dev_attr_cfg.attr,
b39860c6
JK		 11457 &dev_attr_error.attr,
11458 &dev_attr_event_log.attr,
f6c5cb7c 11459 &dev_attr_cmd_log.attr,
43f66a6c
JK		 11460 &dev_attr_eeprom_delay.attr,
11461 &dev_attr_ucode_version.attr,
11462 &dev_attr_rtc.attr,
a613bffd
JK		 11463 &dev_attr_scan_age.attr,
11464 &dev_attr_led.attr,
b095c381
JK		 11465 &dev_attr_speed_scan.attr,
11466 &dev_attr_net_stats.attr,
375dd244 11467 &dev_attr_channels.attr,
d685b8c2
ZY		 11468#ifdef CONFIG_IPW2200_PROMISCUOUS
11469 &dev_attr_rtap_iface.attr,
11470 &dev_attr_rtap_filter.attr,
11471#endif
43f66a6c
JK		 11472 NULL
11473};
11474
11475static struct attribute_group ipw_attribute_group = {
11476 .name = NULL, /* put in device directory */
0edd5b44 11477 .attrs = ipw_sysfs_entries,
43f66a6c
JK		 11478};
11479
d685b8c2
ZY		 11480#ifdef CONFIG_IPW2200_PROMISCUOUS
11481static int ipw_prom_open(struct net_device *dev)
11482{
11483 struct ipw_prom_priv *prom_priv = ieee80211_priv(dev);
11484 struct ipw_priv *priv = prom_priv->priv;
11485
11486 IPW_DEBUG_INFO("prom dev->open\n");
11487 netif_carrier_off(dev);
d685b8c2
ZY		 11488
11489 if (priv->ieee->iw_mode != IW_MODE_MONITOR) {
11490 priv->sys_config.accept_all_data_frames = 1;
11491 priv->sys_config.accept_non_directed_frames = 1;
11492 priv->sys_config.accept_all_mgmt_bcpr = 1;
11493 priv->sys_config.accept_all_mgmt_frames = 1;
11494
11495 ipw_send_system_config(priv);
11496 }
11497
11498 return 0;
11499}
11500
11501static int ipw_prom_stop(struct net_device *dev)
11502{
11503 struct ipw_prom_priv *prom_priv = ieee80211_priv(dev);
11504 struct ipw_priv *priv = prom_priv->priv;
11505
11506 IPW_DEBUG_INFO("prom dev->stop\n");
11507
11508 if (priv->ieee->iw_mode != IW_MODE_MONITOR) {
11509 priv->sys_config.accept_all_data_frames = 0;
11510 priv->sys_config.accept_non_directed_frames = 0;
11511 priv->sys_config.accept_all_mgmt_bcpr = 0;
11512 priv->sys_config.accept_all_mgmt_frames = 0;
11513
11514 ipw_send_system_config(priv);
11515 }
11516
11517 return 0;
11518}
11519
11520static int ipw_prom_hard_start_xmit(struct sk_buff *skb, struct net_device *dev)
11521{
11522 IPW_DEBUG_INFO("prom dev->xmit\n");
4153e775
PM		 11523 dev_kfree_skb(skb);
11524 return NETDEV_TX_OK;
d685b8c2
ZY		 11525}
11526
44e9ad0b
SH		 11527static const struct net_device_ops ipw_prom_netdev_ops = {
11528 .ndo_open = ipw_prom_open,
11529 .ndo_stop = ipw_prom_stop,
11530 .ndo_start_xmit = ipw_prom_hard_start_xmit,
11531 .ndo_change_mtu = ieee80211_change_mtu,
11532 .ndo_set_mac_address = eth_mac_addr,
11533 .ndo_validate_addr = eth_validate_addr,
11534};
11535
d685b8c2
ZY		 11536static int ipw_prom_alloc(struct ipw_priv *priv)
11537{
11538 int rc = 0;
11539
11540 if (priv->prom_net_dev)
11541 return -EPERM;
11542
11543 priv->prom_net_dev = alloc_ieee80211(sizeof(struct ipw_prom_priv));
11544 if (priv->prom_net_dev == NULL)
11545 return -ENOMEM;
11546
11547 priv->prom_priv = ieee80211_priv(priv->prom_net_dev);
11548 priv->prom_priv->ieee = netdev_priv(priv->prom_net_dev);
11549 priv->prom_priv->priv = priv;
11550
11551 strcpy(priv->prom_net_dev->name, "rtap%d");
3f2eeac9 11552 memcpy(priv->prom_net_dev->dev_addr, priv->mac_addr, ETH_ALEN);
d685b8c2
ZY		 11553
11554 priv->prom_net_dev->type = ARPHRD_IEEE80211_RADIOTAP;
44e9ad0b 11555 priv->prom_net_dev->netdev_ops = &ipw_prom_netdev_ops;
d685b8c2
ZY		 11556
11557 priv->prom_priv->ieee->iw_mode = IW_MODE_MONITOR;
229ce3ab 11558 SET_NETDEV_DEV(priv->prom_net_dev, &priv->pci_dev->dev);
d685b8c2
ZY		 11559
11560 rc = register_netdev(priv->prom_net_dev);
11561 if (rc) {
11562 free_ieee80211(priv->prom_net_dev);
11563 priv->prom_net_dev = NULL;
11564 return rc;
11565 }
11566
11567 return 0;
11568}
11569
11570static void ipw_prom_free(struct ipw_priv *priv)
11571{
11572 if (!priv->prom_net_dev)
11573 return;
11574
11575 unregister_netdev(priv->prom_net_dev);
11576 free_ieee80211(priv->prom_net_dev);
11577
11578 priv->prom_net_dev = NULL;
11579}
11580
11581#endif
11582
44e9ad0b
SH		 11583static const struct net_device_ops ipw_netdev_ops = {
11584 .ndo_init = ipw_net_init,
11585 .ndo_open = ipw_net_open,
11586 .ndo_stop = ipw_net_stop,
11587 .ndo_set_multicast_list = ipw_net_set_multicast_list,
11588 .ndo_set_mac_address = ipw_net_set_mac_address,
11589 .ndo_start_xmit = ieee80211_xmit,
11590 .ndo_change_mtu = ieee80211_change_mtu,
44e9ad0b
SH		 11591 .ndo_validate_addr = eth_validate_addr,
11592};
d685b8c2 11593
2ef19e63
AB		 11594static int __devinit ipw_pci_probe(struct pci_dev *pdev,
11595 const struct pci_device_id *ent)
43f66a6c
JK		 11596{
11597 int err = 0;
11598 struct net_device *net_dev;
11599 void __iomem *base;
11600 u32 length, val;
11601 struct ipw_priv *priv;
afbf30a2 11602 int i;
43f66a6c
JK		 11603
11604 net_dev = alloc_ieee80211(sizeof(struct ipw_priv));
11605 if (net_dev == NULL) {
11606 err = -ENOMEM;
11607 goto out;
11608 }
11609
11610 priv = ieee80211_priv(net_dev);
11611 priv->ieee = netdev_priv(net_dev);
a613bffd 11612
43f66a6c
JK		 11613 priv->net_dev = net_dev;
11614 priv->pci_dev = pdev;
43f66a6c 11615 ipw_debug_level = debug;
89c318ed 11616 spin_lock_init(&priv->irq_lock);
43f66a6c 11617 spin_lock_init(&priv->lock);
afbf30a2
JK		 11618 for (i = 0; i < IPW_IBSS_MAC_HASH_SIZE; i++)
11619 INIT_LIST_HEAD(&priv->ibss_mac_hash[i]);
43f66a6c 11620
4644151b 11621 mutex_init(&priv->mutex);
43f66a6c
JK		 11622 if (pci_enable_device(pdev)) {
11623 err = -ENODEV;
11624 goto out_free_ieee80211;
11625 }
11626
11627 pci_set_master(pdev);
11628
284901a9 11629 err = pci_set_dma_mask(pdev, DMA_BIT_MASK(32));
bf79451e 11630 if (!err)
284901a9 11631 err = pci_set_consistent_dma_mask(pdev, DMA_BIT_MASK(32));
43f66a6c
JK		 11632 if (err) {
11633 printk(KERN_WARNING DRV_NAME ": No suitable DMA available.\n");
11634 goto out_pci_disable_device;
11635 }
11636
11637 pci_set_drvdata(pdev, priv);
11638
11639 err = pci_request_regions(pdev, DRV_NAME);
bf79451e 11640 if (err)
43f66a6c
JK		 11641 goto out_pci_disable_device;
11642
bf79451e 11643 /* We disable the RETRY_TIMEOUT register (0x41) to keep
43f66a6c 11644 * PCI Tx retries from interfering with C3 CPU state */
bf79451e
JG		 11645 pci_read_config_dword(pdev, 0x40, &val);
11646 if ((val & 0x0000ff00) != 0)
43f66a6c 11647 pci_write_config_dword(pdev, 0x40, val & 0xffff00ff);
bf79451e 11648
43f66a6c
JK		 11649 length = pci_resource_len(pdev, 0);
11650 priv->hw_len = length;
bf79451e 11651
275f165f 11652 base = pci_ioremap_bar(pdev, 0);
43f66a6c
JK		 11653 if (!base) {
11654 err = -ENODEV;
11655 goto out_pci_release_regions;
11656 }
11657
11658 priv->hw_base = base;
11659 IPW_DEBUG_INFO("pci_resource_len = 0x%08x\n", length);
11660 IPW_DEBUG_INFO("pci_resource_base = %p\n", base);
11661
11662 err = ipw_setup_deferred_work(priv);
11663 if (err) {
11664 IPW_ERROR("Unable to setup deferred work\n");
11665 goto out_iounmap;
11666 }
11667
b095c381 11668 ipw_sw_reset(priv, 1);
43f66a6c 11669
1fb9df5d 11670 err = request_irq(pdev->irq, ipw_isr, IRQF_SHARED, DRV_NAME, priv);
43f66a6c
JK		 11671 if (err) {
11672 IPW_ERROR("Error allocating IRQ %d\n", pdev->irq);
11673 goto out_destroy_workqueue;
11674 }
11675
43f66a6c
JK		 11676 SET_NETDEV_DEV(net_dev, &pdev->dev);
11677
4644151b 11678 mutex_lock(&priv->mutex);
c848d0af 11679
43f66a6c
JK		 11680 priv->ieee->hard_start_xmit = ipw_net_hard_start_xmit;
11681 priv->ieee->set_security = shim__set_security;
227d2dc1 11682 priv->ieee->is_queue_full = ipw_net_is_queue_full;
43f66a6c 11683
e43e3c1e 11684#ifdef CONFIG_IPW2200_QOS
a5cf4fe6 11685 priv->ieee->is_qos_active = ipw_is_qos_active;
3b9990cb
JK		 11686 priv->ieee->handle_probe_response = ipw_handle_beacon;
11687 priv->ieee->handle_beacon = ipw_handle_probe_response;
11688 priv->ieee->handle_assoc_response = ipw_handle_assoc_response;
e43e3c1e 11689#endif /* CONFIG_IPW2200_QOS */
b095c381 11690
c848d0af
JK		 11691 priv->ieee->perfect_rssi = -20;
11692 priv->ieee->worst_rssi = -85;
43f66a6c 11693
44e9ad0b 11694 net_dev->netdev_ops = &ipw_netdev_ops;
97a78ca9 11695 priv->wireless_data.spy_data = &priv->ieee->spy_data;
97a78ca9 11696 net_dev->wireless_data = &priv->wireless_data;
43f66a6c
JK		 11697 net_dev->wireless_handlers = &ipw_wx_handler_def;
11698 net_dev->ethtool_ops = &ipw_ethtool_ops;
11699 net_dev->irq = pdev->irq;
0edd5b44 11700 net_dev->base_addr = (unsigned long)priv->hw_base;
43f66a6c
JK		 11701 net_dev->mem_start = pci_resource_start(pdev, 0);
11702 net_dev->mem_end = net_dev->mem_start + pci_resource_len(pdev, 0) - 1;
11703
11704 err = sysfs_create_group(&pdev->dev.kobj, &ipw_attribute_group);
11705 if (err) {
11706 IPW_ERROR("failed to create sysfs device attributes\n");
4644151b 11707 mutex_unlock(&priv->mutex);
43f66a6c
JK		 11708 goto out_release_irq;
11709 }
11710
4644151b 11711 mutex_unlock(&priv->mutex);
43f66a6c
JK		 11712 err = register_netdev(net_dev);
11713 if (err) {
11714 IPW_ERROR("failed to register network device\n");
a613bffd 11715 goto out_remove_sysfs;
43f66a6c 11716 }
48a84770 11717
d685b8c2
ZY		 11718#ifdef CONFIG_IPW2200_PROMISCUOUS
11719 if (rtap_iface) {
11720 err = ipw_prom_alloc(priv);
11721 if (err) {
11722 IPW_ERROR("Failed to register promiscuous network "
11723 "device (error %d).\n", err);
11724 unregister_netdev(priv->net_dev);
11725 goto out_remove_sysfs;
11726 }
11727 }
11728#endif
11729
48a84770
HBA		 11730 printk(KERN_INFO DRV_NAME ": Detected geography %s (%d 802.11bg "
11731 "channels, %d 802.11a channels)\n",
11732 priv->ieee->geo.name, priv->ieee->geo.bg_channels,
11733 priv->ieee->geo.a_channels);
11734
43f66a6c
JK		 11735 return 0;
11736
a613bffd 11737 out_remove_sysfs:
43f66a6c 11738 sysfs_remove_group(&pdev->dev.kobj, &ipw_attribute_group);
0edd5b44 11739 out_release_irq:
43f66a6c 11740 free_irq(pdev->irq, priv);
0edd5b44 11741 out_destroy_workqueue:
43f66a6c
JK		 11742 destroy_workqueue(priv->workqueue);
11743 priv->workqueue = NULL;
0edd5b44 11744 out_iounmap:
43f66a6c 11745 iounmap(priv->hw_base);
0edd5b44 11746 out_pci_release_regions:
43f66a6c 11747 pci_release_regions(pdev);
0edd5b44 11748 out_pci_disable_device:
43f66a6c
JK		 11749 pci_disable_device(pdev);
11750 pci_set_drvdata(pdev, NULL);
0edd5b44 11751 out_free_ieee80211:
43f66a6c 11752 free_ieee80211(priv->net_dev);
0edd5b44 11753 out:
43f66a6c
JK		 11754 return err;
11755}
11756
2ef19e63 11757static void __devexit ipw_pci_remove(struct pci_dev *pdev)
43f66a6c
JK		 11758{
11759 struct ipw_priv *priv = pci_get_drvdata(pdev);
afbf30a2
JK		 11760 struct list_head *p, *q;
11761 int i;
b095c381 11762
43f66a6c
JK		 11763 if (!priv)
11764 return;
11765
4644151b 11766 mutex_lock(&priv->mutex);
43f66a6c 11767
afbf30a2 11768 priv->status |= STATUS_EXIT_PENDING;
43f66a6c 11769 ipw_down(priv);
43f66a6c
JK		 11770 sysfs_remove_group(&pdev->dev.kobj, &ipw_attribute_group);
11771
4644151b 11772 mutex_unlock(&priv->mutex);
43f66a6c
JK		 11773
11774 unregister_netdev(priv->net_dev);
11775
11776 if (priv->rxq) {
11777 ipw_rx_queue_free(priv, priv->rxq);
11778 priv->rxq = NULL;
11779 }
11780 ipw_tx_queue_free(priv);
11781
f6c5cb7c
JK		 11782 if (priv->cmdlog) {
11783 kfree(priv->cmdlog);
11784 priv->cmdlog = NULL;
11785 }
43f66a6c
JK		 11786 /* ipw_down will ensure that there is no more pending work
11787 * in the workqueue's, so we can safely remove them now. */
a613bffd
JK		 11788 cancel_delayed_work(&priv->adhoc_check);
11789 cancel_delayed_work(&priv->gather_stats);
11790 cancel_delayed_work(&priv->request_scan);
ea177305
DW		 11791 cancel_delayed_work(&priv->request_direct_scan);
11792 cancel_delayed_work(&priv->request_passive_scan);
0b531676 11793 cancel_delayed_work(&priv->scan_event);
a613bffd
JK		 11794 cancel_delayed_work(&priv->rf_kill);
11795 cancel_delayed_work(&priv->scan_check);
11796 destroy_workqueue(priv->workqueue);
11797 priv->workqueue = NULL;
43f66a6c 11798
afbf30a2
JK		 11799 /* Free MAC hash list for ADHOC */
11800 for (i = 0; i < IPW_IBSS_MAC_HASH_SIZE; i++) {
11801 list_for_each_safe(p, q, &priv->ibss_mac_hash[i]) {
afbf30a2 11802 list_del(p);
489f4458 11803 kfree(list_entry(p, struct ipw_ibss_seq, list));
afbf30a2
JK		 11804 }
11805 }
11806
8f760780
JJ		 11807 kfree(priv->error);
11808 priv->error = NULL;
43f66a6c 11809
d685b8c2
ZY		 11810#ifdef CONFIG_IPW2200_PROMISCUOUS
11811 ipw_prom_free(priv);
11812#endif
11813
43f66a6c
JK		 11814 free_irq(pdev->irq, priv);
11815 iounmap(priv->hw_base);
11816 pci_release_regions(pdev);
11817 pci_disable_device(pdev);
11818 pci_set_drvdata(pdev, NULL);
11819 free_ieee80211(priv->net_dev);
afbf30a2 11820 free_firmware();
43f66a6c
JK		 11821}
11822
43f66a6c 11823#ifdef CONFIG_PM
583a4e88 11824static int ipw_pci_suspend(struct pci_dev *pdev, pm_message_t state)
43f66a6c
JK		 11825{
11826 struct ipw_priv *priv = pci_get_drvdata(pdev);
11827 struct net_device *dev = priv->net_dev;
11828
11829 printk(KERN_INFO "%s: Going into suspend...\n", dev->name);
11830
0edd5b44 11831 /* Take down the device; powers it off, etc. */
43f66a6c
JK		 11832 ipw_down(priv);
11833
11834 /* Remove the PRESENT state of the device */
11835 netif_device_detach(dev);
11836
43f66a6c 11837 pci_save_state(pdev);
43f66a6c 11838 pci_disable_device(pdev);
583a4e88 11839 pci_set_power_state(pdev, pci_choose_state(pdev, state));
bf79451e 11840
c3d72b96
DW		 11841 priv->suspend_at = get_seconds();
11842
43f66a6c
JK		 11843 return 0;
11844}
11845
11846static int ipw_pci_resume(struct pci_dev *pdev)
11847{
11848 struct ipw_priv *priv = pci_get_drvdata(pdev);
11849 struct net_device *dev = priv->net_dev;
02e0e5e9 11850 int err;
43f66a6c 11851 u32 val;
bf79451e 11852
43f66a6c
JK		 11853 printk(KERN_INFO "%s: Coming out of suspend...\n", dev->name);
11854
ea2b26e0 11855 pci_set_power_state(pdev, PCI_D0);
02e0e5e9
JL		 11856 err = pci_enable_device(pdev);
11857 if (err) {
11858 printk(KERN_ERR "%s: pci_enable_device failed on resume\n",
11859 dev->name);
11860 return err;
11861 }
43f66a6c 11862 pci_restore_state(pdev);
ea2b26e0 11863
43f66a6c
JK		 11864 /*
11865 * Suspend/Resume resets the PCI configuration space, so we have to
11866 * re-disable the RETRY_TIMEOUT register (0x41) to keep PCI Tx retries
11867 * from interfering with C3 CPU state. pci_restore_state won't help
11868 * here since it only restores the first 64 bytes pci config header.
11869 */
bf79451e
JG		 11870 pci_read_config_dword(pdev, 0x40, &val);
11871 if ((val & 0x0000ff00) != 0)
43f66a6c
JK		 11872 pci_write_config_dword(pdev, 0x40, val & 0xffff00ff);
11873
11874 /* Set the device back into the PRESENT state; this will also wake
11875 * the queue of needed */
11876 netif_device_attach(dev);
11877
c3d72b96
DW		 11878 priv->suspend_time = get_seconds() - priv->suspend_at;
11879
43f66a6c
JK		 11880 /* Bring the device back up */
11881 queue_work(priv->workqueue, &priv->up);
bf79451e 11882
43f66a6c
JK		 11883 return 0;
11884}
11885#endif
11886
c8c22c94
ZY		 11887static void ipw_pci_shutdown(struct pci_dev *pdev)
11888{
11889 struct ipw_priv *priv = pci_get_drvdata(pdev);
11890
11891 /* Take down the device; powers it off, etc. */
11892 ipw_down(priv);
11893
11894 pci_disable_device(pdev);
11895}
11896
43f66a6c
JK		 11897/* driver initialization stuff */
11898static struct pci_driver ipw_driver = {
11899 .name = DRV_NAME,
11900 .id_table = card_ids,
11901 .probe = ipw_pci_probe,
11902 .remove = __devexit_p(ipw_pci_remove),
11903#ifdef CONFIG_PM
11904 .suspend = ipw_pci_suspend,
11905 .resume = ipw_pci_resume,
11906#endif
c8c22c94 11907 .shutdown = ipw_pci_shutdown,
43f66a6c
JK		 11908};
11909
11910static int __init ipw_init(void)
11911{
11912 int ret;
11913
11914 printk(KERN_INFO DRV_NAME ": " DRV_DESCRIPTION ", " DRV_VERSION "\n");
11915 printk(KERN_INFO DRV_NAME ": " DRV_COPYRIGHT "\n");
11916
29917620 11917 ret = pci_register_driver(&ipw_driver);
43f66a6c
JK		 11918 if (ret) {
11919 IPW_ERROR("Unable to initialize PCI module\n");
11920 return ret;
11921 }
11922
0edd5b44 11923 ret = driver_create_file(&ipw_driver.driver, &driver_attr_debug_level);
43f66a6c
JK		 11924 if (ret) {
11925 IPW_ERROR("Unable to create driver sysfs file\n");
11926 pci_unregister_driver(&ipw_driver);
11927 return ret;
11928 }
11929
11930 return ret;
11931}
11932
11933static void __exit ipw_exit(void)
11934{
11935 driver_remove_file(&ipw_driver.driver, &driver_attr_debug_level);
11936 pci_unregister_driver(&ipw_driver);
11937}
11938
11939module_param(disable, int, 0444);
11940MODULE_PARM_DESC(disable, "manually disable the radio (default 0 [radio on])");
11941
11942module_param(associate, int, 0444);
5c7f9b73 11943MODULE_PARM_DESC(associate, "auto associate when scanning (default off)");
43f66a6c
JK		 11944
11945module_param(auto_create, int, 0444);
11946MODULE_PARM_DESC(auto_create, "auto create adhoc network (default on)");
11947
21f8a73f 11948module_param_named(led, led_support, int, 0444);
61a2d07d 11949MODULE_PARM_DESC(led, "enable led control on some systems (default 0 off)");
a613bffd 11950
43f66a6c
JK		 11951module_param(debug, int, 0444);
11952MODULE_PARM_DESC(debug, "debug output mask");
11953
21f8a73f 11954module_param_named(channel, default_channel, int, 0444);
bf79451e 11955MODULE_PARM_DESC(channel, "channel to limit associate to (default 0 [ANY])");
43f66a6c 11956
d685b8c2
ZY		 11957#ifdef CONFIG_IPW2200_PROMISCUOUS
11958module_param(rtap_iface, int, 0444);
11959MODULE_PARM_DESC(rtap_iface, "create the rtap interface (1 - create, default 0)");
11960#endif
11961
e43e3c1e 11962#ifdef CONFIG_IPW2200_QOS
b095c381
JK		 11963module_param(qos_enable, int, 0444);
11964MODULE_PARM_DESC(qos_enable, "enable all QoS functionalitis");
11965
11966module_param(qos_burst_enable, int, 0444);
11967MODULE_PARM_DESC(qos_burst_enable, "enable QoS burst mode");
11968
11969module_param(qos_no_ack_mask, int, 0444);
11970MODULE_PARM_DESC(qos_no_ack_mask, "mask Tx_Queue to no ack");
43f66a6c 11971
b095c381
JK		 11972module_param(burst_duration_CCK, int, 0444);
11973MODULE_PARM_DESC(burst_duration_CCK, "set CCK burst value");
11974
11975module_param(burst_duration_OFDM, int, 0444);
11976MODULE_PARM_DESC(burst_duration_OFDM, "set OFDM burst value");
e43e3c1e 11977#endif /* CONFIG_IPW2200_QOS */
b095c381
JK		 11978
11979#ifdef CONFIG_IPW2200_MONITOR
21f8a73f 11980module_param_named(mode, network_mode, int, 0444);
43f66a6c
JK		 11981MODULE_PARM_DESC(mode, "network mode (0=BSS,1=IBSS,2=Monitor)");
11982#else
21f8a73f 11983module_param_named(mode, network_mode, int, 0444);
43f66a6c
JK		 11984MODULE_PARM_DESC(mode, "network mode (0=BSS,1=IBSS)");
11985#endif
11986
810dabd4
ZY		 11987module_param(bt_coexist, int, 0444);
11988MODULE_PARM_DESC(bt_coexist, "enable bluetooth coexistence (default off)");
11989
b095c381 11990module_param(hwcrypto, int, 0444);
bde37d03 11991MODULE_PARM_DESC(hwcrypto, "enable hardware crypto (default off)");
b095c381 11992
f6c5cb7c
JK		 11993module_param(cmdlog, int, 0444);
11994MODULE_PARM_DESC(cmdlog,
11995 "allocate a ring buffer for logging firmware commands");
11996
4bfdb91d
ZY		 11997module_param(roaming, int, 0444);
11998MODULE_PARM_DESC(roaming, "enable roaming support (default on)");
11999
d2b83e12
ZY		 12000module_param(antenna, int, 0444);
12001MODULE_PARM_DESC(antenna, "select antenna 1=Main, 3=Aux, default 0 [both], 2=slow_diversity (choose the one with lower background noise)");
12002
43f66a6c
JK		 12003module_exit(ipw_exit);
12004module_init(ipw_init);
kernel source for telekom puls (alcatel/mediatek)