projects / GitHub / mt8127 / android_kernel_alcatel_ttab.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
mac80211: annotate sleeping driver ops
[GitHub/mt8127/android_kernel_alcatel_ttab.git] / drivers / net / wireless / libertas / scan.c
CommitLineData
876c9d3a
MT		 1/**
2 * Functions implementing wlan scan IOCTL and firmware command APIs
3 *
4 * IOCTL handlers as well as command preperation and response routines
5 * for sending scan commands to the firmware.
6 */
7e272fcf 7#include <linux/types.h>
430453fc 8#include <linux/kernel.h>
fcdb53db 9#include <linux/etherdevice.h>
2c706002 10#include <linux/if_arp.h>
ac630c2b 11#include <asm/unaligned.h>
7e272fcf
JL		 12#include <net/lib80211.h>
13
876c9d3a 14#include "host.h"
876c9d3a
MT		 15#include "dev.h"
16#include "scan.h"
2d46502d 17#include "assoc.h"
e93156e7 18#include "wext.h"
fa62f99c 19#include "cmd.h"
876c9d3a
MT		 20
21//! Approximate amount of data needed to pass a scan result back to iwlist
22#define MAX_SCAN_CELL_SIZE (IW_EV_ADDR_LEN \
243e84e9 23 + IEEE80211_MAX_SSID_LEN \
876c9d3a
MT		 24 + IW_EV_UINT_LEN \
25 + IW_EV_FREQ_LEN \
26 + IW_EV_QUAL_LEN \
243e84e9 27 + IEEE80211_MAX_SSID_LEN \
876c9d3a
MT		 28 + IW_EV_PARAM_LEN \
29 + 40) /* 40 for WPAIE */
30
31//! Memory needed to store a max sized channel List TLV for a firmware scan
75b6a61a 32#define CHAN_TLV_MAX_SIZE (sizeof(struct mrvl_ie_header) \
876c9d3a
MT		 33 + (MRVDRV_MAX_CHANNELS_PER_SCAN \
34 * sizeof(struct chanscanparamset)))
35
36//! Memory needed to store a max number/size SSID TLV for a firmware scan
75b6a61a 37#define SSID_TLV_MAX_SIZE (1 * sizeof(struct mrvl_ie_ssid_param_set))
876c9d3a 38
fa62f99c
DW		 39//! Maximum memory needed for a cmd_ds_802_11_scan with all TLVs at max
40#define MAX_SCAN_CFG_ALLOC (sizeof(struct cmd_ds_802_11_scan) \
41 + CHAN_TLV_MAX_SIZE + SSID_TLV_MAX_SIZE)
876c9d3a
MT		 42
43//! The maximum number of channels the firmware can scan per command
44#define MRVDRV_MAX_CHANNELS_PER_SCAN 14
45
46/**
47 * @brief Number of channels to scan per firmware scan command issuance.
48 *
49 * Number restricted to prevent hitting the limit on the amount of scan data
50 * returned in a single firmware scan command.
51 */
52#define MRVDRV_CHANNELS_PER_SCAN_CMD 4
53
54//! Scan time specified in the channel TLV for each channel for passive scans
55#define MRVDRV_PASSIVE_SCAN_CHAN_TIME 100
56
57//! Scan time specified in the channel TLV for each channel for active scans
58#define MRVDRV_ACTIVE_SCAN_CHAN_TIME 100
59
2c706002
JB		 60#define DEFAULT_MAX_SCAN_AGE (15 * HZ)
61
fa62f99c
DW		 62static int lbs_ret_80211_scan(struct lbs_private *priv, unsigned long dummy,
63 struct cmd_header *resp);
e56188ac
HS		 64
65/*********************************************************************/
66/* */
67/* Misc helper functions */
68/* */
69/*********************************************************************/
70
23ff5036
HS		 71/**
72 * @brief Unsets the MSB on basic rates
73 *
74 * Scan through an array and unset the MSB for basic data rates.
75 *
76 * @param rates buffer of data rates
77 * @param len size of buffer
78 */
79static void lbs_unset_basic_rate_flags(u8 *rates, size_t len)
80{
81 int i;
82
83 for (i = 0; i < len; i++)
84 rates[i] &= 0x7f;
85}
86
87
f137e054 88static inline void clear_bss_descriptor(struct bss_descriptor *bss)
fcdb53db
DW		 89{
90 /* Don't blow away ->list, just BSS data */
91 memset(bss, 0, offsetof(struct bss_descriptor, list));
92}
93
ffd074fc
HS		 94/**
95 * @brief Compare two SSIDs
96 *
97 * @param ssid1 A pointer to ssid to compare
98 * @param ssid2 A pointer to ssid to compare
99 *
100 * @return 0: ssid is same, otherwise is different
101 */
f137e054
DW		 102int lbs_ssid_cmp(uint8_t *ssid1, uint8_t ssid1_len, uint8_t *ssid2,
103 uint8_t ssid2_len)
ffd074fc
HS		 104{
105 if (ssid1_len != ssid2_len)
106 return -1;
107
108 return memcmp(ssid1, ssid2, ssid1_len);
109}
110
ffd074fc
HS		 111static inline int is_same_network(struct bss_descriptor *src,
112 struct bss_descriptor *dst)
113{
114 /* A network is only a duplicate if the channel, BSSID, and ESSID
115 * all match. We treat all <hidden> with the same BSSID and channel
116 * as one network */
117 return ((src->ssid_len == dst->ssid_len) &&
118 (src->channel == dst->channel) &&
119 !compare_ether_addr(src->bssid, dst->bssid) &&
120 !memcmp(src->ssid, dst->ssid, src->ssid_len));
121}
122
876c9d3a 123
e56188ac 124
2d46502d
HS		 125/*********************************************************************/
126/* */
127/* Region channel support */
128/* */
129/*********************************************************************/
130
131#define LBS_TX_PWR_DEFAULT 20 /*100mW */
132#define LBS_TX_PWR_US_DEFAULT 20 /*100mW */
133#define LBS_TX_PWR_JP_DEFAULT 16 /*50mW */
134#define LBS_TX_PWR_FR_DEFAULT 20 /*100mW */
135#define LBS_TX_PWR_EMEA_DEFAULT 20 /*100mW */
136
137/* Format { channel, frequency (MHz), maxtxpower } */
138/* band: 'B/G', region: USA FCC/Canada IC */
139static struct chan_freq_power channel_freq_power_US_BG[] = {
140 {1, 2412, LBS_TX_PWR_US_DEFAULT},
141 {2, 2417, LBS_TX_PWR_US_DEFAULT},
142 {3, 2422, LBS_TX_PWR_US_DEFAULT},
143 {4, 2427, LBS_TX_PWR_US_DEFAULT},
144 {5, 2432, LBS_TX_PWR_US_DEFAULT},
145 {6, 2437, LBS_TX_PWR_US_DEFAULT},
146 {7, 2442, LBS_TX_PWR_US_DEFAULT},
147 {8, 2447, LBS_TX_PWR_US_DEFAULT},
148 {9, 2452, LBS_TX_PWR_US_DEFAULT},
149 {10, 2457, LBS_TX_PWR_US_DEFAULT},
150 {11, 2462, LBS_TX_PWR_US_DEFAULT}
151};
152
153/* band: 'B/G', region: Europe ETSI */
154static struct chan_freq_power channel_freq_power_EU_BG[] = {
155 {1, 2412, LBS_TX_PWR_EMEA_DEFAULT},
156 {2, 2417, LBS_TX_PWR_EMEA_DEFAULT},
157 {3, 2422, LBS_TX_PWR_EMEA_DEFAULT},
158 {4, 2427, LBS_TX_PWR_EMEA_DEFAULT},
159 {5, 2432, LBS_TX_PWR_EMEA_DEFAULT},
160 {6, 2437, LBS_TX_PWR_EMEA_DEFAULT},
161 {7, 2442, LBS_TX_PWR_EMEA_DEFAULT},
162 {8, 2447, LBS_TX_PWR_EMEA_DEFAULT},
163 {9, 2452, LBS_TX_PWR_EMEA_DEFAULT},
164 {10, 2457, LBS_TX_PWR_EMEA_DEFAULT},
165 {11, 2462, LBS_TX_PWR_EMEA_DEFAULT},
166 {12, 2467, LBS_TX_PWR_EMEA_DEFAULT},
167 {13, 2472, LBS_TX_PWR_EMEA_DEFAULT}
168};
169
170/* band: 'B/G', region: Spain */
171static struct chan_freq_power channel_freq_power_SPN_BG[] = {
172 {10, 2457, LBS_TX_PWR_DEFAULT},
173 {11, 2462, LBS_TX_PWR_DEFAULT}
174};
175
176/* band: 'B/G', region: France */
177static struct chan_freq_power channel_freq_power_FR_BG[] = {
178 {10, 2457, LBS_TX_PWR_FR_DEFAULT},
179 {11, 2462, LBS_TX_PWR_FR_DEFAULT},
180 {12, 2467, LBS_TX_PWR_FR_DEFAULT},
181 {13, 2472, LBS_TX_PWR_FR_DEFAULT}
182};
183
184/* band: 'B/G', region: Japan */
185static struct chan_freq_power channel_freq_power_JPN_BG[] = {
186 {1, 2412, LBS_TX_PWR_JP_DEFAULT},
187 {2, 2417, LBS_TX_PWR_JP_DEFAULT},
188 {3, 2422, LBS_TX_PWR_JP_DEFAULT},
189 {4, 2427, LBS_TX_PWR_JP_DEFAULT},
190 {5, 2432, LBS_TX_PWR_JP_DEFAULT},
191 {6, 2437, LBS_TX_PWR_JP_DEFAULT},
192 {7, 2442, LBS_TX_PWR_JP_DEFAULT},
193 {8, 2447, LBS_TX_PWR_JP_DEFAULT},
194 {9, 2452, LBS_TX_PWR_JP_DEFAULT},
195 {10, 2457, LBS_TX_PWR_JP_DEFAULT},
196 {11, 2462, LBS_TX_PWR_JP_DEFAULT},
197 {12, 2467, LBS_TX_PWR_JP_DEFAULT},
198 {13, 2472, LBS_TX_PWR_JP_DEFAULT},
199 {14, 2484, LBS_TX_PWR_JP_DEFAULT}
200};
201
202/**
203 * the structure for channel, frequency and power
204 */
205struct region_cfp_table {
206 u8 region;
207 struct chan_freq_power *cfp_BG;
208 int cfp_no_BG;
209};
210
211/**
212 * the structure for the mapping between region and CFP
213 */
214static struct region_cfp_table region_cfp_table[] = {
215 {0x10, /*US FCC */
216 channel_freq_power_US_BG,
217 ARRAY_SIZE(channel_freq_power_US_BG),
218 }
219 ,
220 {0x20, /*CANADA IC */
221 channel_freq_power_US_BG,
222 ARRAY_SIZE(channel_freq_power_US_BG),
223 }
224 ,
225 {0x30, /*EU*/ channel_freq_power_EU_BG,
226 ARRAY_SIZE(channel_freq_power_EU_BG),
227 }
228 ,
229 {0x31, /*SPAIN*/ channel_freq_power_SPN_BG,
230 ARRAY_SIZE(channel_freq_power_SPN_BG),
231 }
232 ,
233 {0x32, /*FRANCE*/ channel_freq_power_FR_BG,
234 ARRAY_SIZE(channel_freq_power_FR_BG),
235 }
236 ,
237 {0x40, /*JAPAN*/ channel_freq_power_JPN_BG,
238 ARRAY_SIZE(channel_freq_power_JPN_BG),
239 }
240 ,
241/*Add new region here */
242};
243
244/**
245 * @brief This function finds the CFP in
246 * region_cfp_table based on region and band parameter.
247 *
248 * @param region The region code
249 * @param band The band
250 * @param cfp_no A pointer to CFP number
251 * @return A pointer to CFP
252 */
253static struct chan_freq_power *lbs_get_region_cfp_table(u8 region, int *cfp_no)
254{
255 int i, end;
256
257 lbs_deb_enter(LBS_DEB_MAIN);
258
259 end = ARRAY_SIZE(region_cfp_table);
260
261 for (i = 0; i < end ; i++) {
262 lbs_deb_main("region_cfp_table[i].region=%d\n",
263 region_cfp_table[i].region);
264 if (region_cfp_table[i].region == region) {
265 *cfp_no = region_cfp_table[i].cfp_no_BG;
266 lbs_deb_leave(LBS_DEB_MAIN);
267 return region_cfp_table[i].cfp_BG;
268 }
269 }
270
271 lbs_deb_leave_args(LBS_DEB_MAIN, "ret NULL");
272 return NULL;
273}
274
275int lbs_set_regiontable(struct lbs_private *priv, u8 region, u8 band)
276{
277 int ret = 0;
278 int i = 0;
279
280 struct chan_freq_power *cfp;
281 int cfp_no;
282
283 lbs_deb_enter(LBS_DEB_MAIN);
284
285 memset(priv->region_channel, 0, sizeof(priv->region_channel));
286
287 cfp = lbs_get_region_cfp_table(region, &cfp_no);
288 if (cfp != NULL) {
289 priv->region_channel[i].nrcfp = cfp_no;
290 priv->region_channel[i].CFP = cfp;
291 } else {
292 lbs_deb_main("wrong region code %#x in band B/G\n",
293 region);
294 ret = -1;
295 goto out;
296 }
297 priv->region_channel[i].valid = 1;
298 priv->region_channel[i].region = region;
299 priv->region_channel[i].band = band;
300 i++;
301out:
302 lbs_deb_leave_args(LBS_DEB_MAIN, "ret %d", ret);
303 return ret;
304}
305
306
307
e56188ac 308
e56188ac
HS		 309/*********************************************************************/
310/* */
311/* Main scanning support */
312/* */
313/*********************************************************************/
314
876c9d3a
MT		 315/**
316 * @brief Create a channel list for the driver to scan based on region info
317 *
10078321 318 * Only used from lbs_scan_setup_scan_config()
e56188ac 319 *
876c9d3a
MT		 320 * Use the driver region/band information to construct a comprehensive list
321 * of channels to scan. This routine is used for any scan that is not
322 * provided a specific channel list to scan.
323 *
69f9032d 324 * @param priv A pointer to struct lbs_private structure
876c9d3a 325 * @param scanchanlist Output parameter: resulting channel list to scan
876c9d3a
MT		 326 *
327 * @return void
328 */
ffd074fc 329static int lbs_scan_create_channel_list(struct lbs_private *priv,
52933d81 330 struct chanscanparamset *scanchanlist)
876c9d3a 331{
876c9d3a
MT		 332 struct region_channel *scanregion;
333 struct chan_freq_power *cfp;
334 int rgnidx;
335 int chanidx;
336 int nextchan;
f137e054 337 uint8_t scantype;
876c9d3a
MT		 338
339 chanidx = 0;
340
341 /* Set the default scan type to the user specified type, will later
342 * be changed to passive on a per channel basis if restricted by
343 * regulatory requirements (11d or 11h)
344 */
4f2fdaaf 345 scantype = CMD_SCAN_TYPE_ACTIVE;
876c9d3a 346
aa21c004 347 for (rgnidx = 0; rgnidx < ARRAY_SIZE(priv->region_channel); rgnidx++) {
d37b4fdd
HS		 348 if (!priv->region_channel[rgnidx].valid)
349 continue;
350 scanregion = &priv->region_channel[rgnidx];
876c9d3a 351
f137e054
DW		 352 for (nextchan = 0; nextchan < scanregion->nrcfp; nextchan++, chanidx++) {
353 struct chanscanparamset *chan = &scanchanlist[chanidx];
876c9d3a
MT		 354
355 cfp = scanregion->CFP + nextchan;
356
f137e054
DW		 357 if (scanregion->band == BAND_B || scanregion->band == BAND_G)
358 chan->radiotype = CMD_SCAN_RADIO_TYPE_BG;
876c9d3a 359
0aef64d7 360 if (scantype == CMD_SCAN_TYPE_PASSIVE) {
f137e054
DW		 361 chan->maxscantime = cpu_to_le16(MRVDRV_PASSIVE_SCAN_CHAN_TIME);
362 chan->chanscanmode.passivescan = 1;
876c9d3a 363 } else {
f137e054
DW		 364 chan->maxscantime = cpu_to_le16(MRVDRV_ACTIVE_SCAN_CHAN_TIME);
365 chan->chanscanmode.passivescan = 0;
876c9d3a
MT		 366 }
367
f137e054 368 chan->channumber = cfp->channel;
876c9d3a
MT		 369 }
370 }
ffd074fc 371 return chanidx;
876c9d3a
MT		 372}
373
ffd074fc
HS		 374/*
375 * Add SSID TLV of the form:
376 *
377 * TLV-ID SSID 00 00
378 * length 06 00
379 * ssid 4d 4e 54 45 53 54
380 */
52933d81 381static int lbs_scan_add_ssid_tlv(struct lbs_private *priv, u8 *tlv)
2afc0c5d 382{
75b6a61a 383 struct mrvl_ie_ssid_param_set *ssid_tlv = (void *)tlv;
f137e054 384
ffd074fc 385 ssid_tlv->header.type = cpu_to_le16(TLV_TYPE_SSID);
52933d81
HS		 386 ssid_tlv->header.len = cpu_to_le16(priv->scan_ssid_len);
387 memcpy(ssid_tlv->ssid, priv->scan_ssid, priv->scan_ssid_len);
388 return sizeof(ssid_tlv->header) + priv->scan_ssid_len;
2afc0c5d
DW		 389}
390
ffd074fc
HS		 391/*
392 * Add CHANLIST TLV of the form
876c9d3a 393 *
ffd074fc
HS		 394 * TLV-ID CHANLIST 01 01
395 * length 5b 00
396 * channel 1 00 01 00 00 00 64 00
397 * radio type 00
398 * channel 01
399 * scan type 00
400 * min scan time 00 00
401 * max scan time 64 00
402 * channel 2 00 02 00 00 00 64 00
403 * channel 3 00 03 00 00 00 64 00
404 * channel 4 00 04 00 00 00 64 00
405 * channel 5 00 05 00 00 00 64 00
406 * channel 6 00 06 00 00 00 64 00
407 * channel 7 00 07 00 00 00 64 00
408 * channel 8 00 08 00 00 00 64 00
409 * channel 9 00 09 00 00 00 64 00
410 * channel 10 00 0a 00 00 00 64 00
411 * channel 11 00 0b 00 00 00 64 00
412 * channel 12 00 0c 00 00 00 64 00
413 * channel 13 00 0d 00 00 00 64 00
876c9d3a 414 *
876c9d3a 415 */
f137e054
DW		 416static int lbs_scan_add_chanlist_tlv(uint8_t *tlv,
417 struct chanscanparamset *chan_list,
418 int chan_count)
876c9d3a 419{
f137e054 420 size_t size = sizeof(struct chanscanparamset) *chan_count;
75b6a61a 421 struct mrvl_ie_chanlist_param_set *chan_tlv = (void *)tlv;
ffd074fc
HS		 422
423 chan_tlv->header.type = cpu_to_le16(TLV_TYPE_CHANLIST);
424 memcpy(chan_tlv->chanscanparam, chan_list, size);
425 chan_tlv->header.len = cpu_to_le16(size);
426 return sizeof(chan_tlv->header) + size;
876c9d3a
MT		 427}
428
ffd074fc
HS		 429/*
430 * Add RATES TLV of the form
876c9d3a 431 *
ffd074fc
HS		 432 * TLV-ID RATES 01 00
433 * length 0e 00
434 * rates 82 84 8b 96 0c 12 18 24 30 48 60 6c
876c9d3a 435 *
ffd074fc
HS		 436 * The rates are in lbs_bg_rates[], but for the 802.11b
437 * rates the high bit isn't set.
876c9d3a 438 */
f137e054 439static int lbs_scan_add_rates_tlv(uint8_t *tlv)
876c9d3a 440{
ffd074fc 441 int i;
75b6a61a 442 struct mrvl_ie_rates_param_set *rate_tlv = (void *)tlv;
ffd074fc
HS		 443
444 rate_tlv->header.type = cpu_to_le16(TLV_TYPE_RATES);
445 tlv += sizeof(rate_tlv->header);
446 for (i = 0; i < MAX_RATES; i++) {
447 *tlv = lbs_bg_rates[i];
448 if (*tlv == 0)
449 break;
450 /* This code makes sure that the 802.11b rates (1 MBit/s, 2
451 MBit/s, 5.5 MBit/s and 11 MBit/s get's the high bit set.
452 Note that the values are MBit/s * 2, to mark them as
453 basic rates so that the firmware likes it better */
454 if (*tlv == 0x02 || *tlv == 0x04 ||
455 *tlv == 0x0b || *tlv == 0x16)
456 *tlv |= 0x80;
457 tlv++;
2afc0c5d 458 }
ffd074fc
HS		 459 rate_tlv->header.len = cpu_to_le16(i);
460 return sizeof(rate_tlv->header) + i;
876c9d3a
MT		 461}
462
e56188ac 463/*
ffd074fc
HS		 464 * Generate the CMD_802_11_SCAN command with the proper tlv
465 * for a bunch of channels.
466 */
fa62f99c 467static int lbs_do_scan(struct lbs_private *priv, uint8_t bsstype,
52933d81 468 struct chanscanparamset *chan_list, int chan_count)
eb8f7330 469{
ffd074fc 470 int ret = -ENOMEM;
fa62f99c
DW		 471 struct cmd_ds_802_11_scan *scan_cmd;
472 uint8_t *tlv; /* pointer into our current, growing TLV storage area */
eb8f7330 473
fa62f99c 474 lbs_deb_enter_args(LBS_DEB_SCAN, "bsstype %d, chanlist[].chan %d, chan_count %d",
c0d43990
HS		 475 bsstype, chan_list ? chan_list[0].channumber : -1,
476 chan_count);
e56188ac 477
ffd074fc
HS		 478 /* create the fixed part for scan command */
479 scan_cmd = kzalloc(MAX_SCAN_CFG_ALLOC, GFP_KERNEL);
480 if (scan_cmd == NULL)
e56188ac 481 goto out;
fa62f99c 482
ffd074fc 483 tlv = scan_cmd->tlvbuffer;
52933d81
HS		 484 /* TODO: do we need to scan for a specific BSSID?
485 memcpy(scan_cmd->bssid, priv->scan_bssid, ETH_ALEN); */
ffd074fc
HS		 486 scan_cmd->bsstype = bsstype;
487
488 /* add TLVs */
52933d81
HS		 489 if (priv->scan_ssid_len)
490 tlv += lbs_scan_add_ssid_tlv(priv, tlv);
ffd074fc
HS		 491 if (chan_list && chan_count)
492 tlv += lbs_scan_add_chanlist_tlv(tlv, chan_list, chan_count);
493 tlv += lbs_scan_add_rates_tlv(tlv);
494
495 /* This is the final data we are about to send */
fa62f99c
DW		 496 scan_cmd->hdr.size = cpu_to_le16(tlv - (uint8_t *)scan_cmd);
497 lbs_deb_hex(LBS_DEB_SCAN, "SCAN_CMD", (void *)scan_cmd,
498 sizeof(*scan_cmd));
ffd074fc 499 lbs_deb_hex(LBS_DEB_SCAN, "SCAN_TLV", scan_cmd->tlvbuffer,
fa62f99c
DW		 500 tlv - scan_cmd->tlvbuffer);
501
502 ret = __lbs_cmd(priv, CMD_802_11_SCAN, &scan_cmd->hdr,
503 le16_to_cpu(scan_cmd->hdr.size),
504 lbs_ret_80211_scan, 0);
ffd074fc 505
e56188ac 506out:
ffd074fc
HS		 507 kfree(scan_cmd);
508 lbs_deb_leave_args(LBS_DEB_SCAN, "ret %d", ret);
509 return ret;
eb8f7330
DW		 510}
511
876c9d3a
MT		 512/**
513 * @brief Internal function used to start a scan based on an input config
514 *
515 * Use the input user scan configuration information when provided in
516 * order to send the appropriate scan commands to firmware to populate or
517 * update the internal driver scan table
518 *
69f9032d 519 * @param priv A pointer to struct lbs_private structure
52933d81 520 * @param full_scan Do a full-scan (blocking)
876c9d3a
MT		 521 *
522 * @return 0 or < 0 if error
523 */
245bf20f 524int lbs_scan_networks(struct lbs_private *priv, int full_scan)
876c9d3a 525{
ffd074fc
HS		 526 int ret = -ENOMEM;
527 struct chanscanparamset *chan_list;
528 struct chanscanparamset *curr_chans;
529 int chan_count;
f137e054 530 uint8_t bsstype = CMD_BSS_TYPE_ANY;
ffd074fc 531 int numchannels = MRVDRV_CHANNELS_PER_SCAN_CMD;
ffd074fc 532 union iwreq_data wrqu;
f8f55108 533#ifdef CONFIG_LIBERTAS_DEBUG
ffd074fc 534 struct bss_descriptor *iter;
f8f55108 535 int i = 0;
9387b7ca 536 DECLARE_SSID_BUF(ssid);
f8f55108 537#endif
876c9d3a 538
f137e054 539 lbs_deb_enter_args(LBS_DEB_SCAN, "full_scan %d", full_scan);
2afc0c5d
DW		 540
541 /* Cancel any partial outstanding partial scans if this scan
542 * is a full scan.
543 */
544 if (full_scan && delayed_work_pending(&priv->scan_work))
545 cancel_delayed_work(&priv->scan_work);
876c9d3a 546
52933d81
HS		 547 /* User-specified bsstype or channel list
548 TODO: this can be implemented if some user-space application
549 need the feature. Formerly, it was accessible from debugfs,
550 but then nowhere used.
ffd074fc
HS		 551 if (user_cfg) {
552 if (user_cfg->bsstype)
52933d81
HS		 553 bsstype = user_cfg->bsstype;
554 } */
555
556 lbs_deb_scan("numchannels %d, bsstype %d\n", numchannels, bsstype);
876c9d3a 557
ffd074fc
HS		 558 /* Create list of channels to scan */
559 chan_list = kzalloc(sizeof(struct chanscanparamset) *
f137e054 560 LBS_IOCTL_USER_SCAN_CHAN_MAX, GFP_KERNEL);
ffd074fc
HS		 561 if (!chan_list) {
562 lbs_pr_alert("SCAN: chan_list empty\n");
876c9d3a
MT		 563 goto out;
564 }
565
ffd074fc 566 /* We want to scan all channels */
52933d81 567 chan_count = lbs_scan_create_channel_list(priv, chan_list);
876c9d3a 568
ffd074fc
HS		 569 netif_stop_queue(priv->dev);
570 netif_carrier_off(priv->dev);
571 if (priv->mesh_dev) {
a27b9f96
DW		 572 netif_stop_queue(priv->mesh_dev);
573 netif_carrier_off(priv->mesh_dev);
876c9d3a
MT		 574 }
575
ffd074fc 576 /* Prepare to continue an interrupted scan */
8816edce
HS		 577 lbs_deb_scan("chan_count %d, scan_channel %d\n",
578 chan_count, priv->scan_channel);
ffd074fc
HS		 579 curr_chans = chan_list;
580 /* advance channel list by already-scanned-channels */
8816edce
HS		 581 if (priv->scan_channel > 0) {
582 curr_chans += priv->scan_channel;
583 chan_count -= priv->scan_channel;
ffd074fc
HS		 584 }
585
586 /* Send scan command(s)
587 * numchannels contains the number of channels we should maximally scan
588 * chan_count is the total number of channels to scan
589 */
590
591 while (chan_count) {
592 int to_scan = min(numchannels, chan_count);
593 lbs_deb_scan("scanning %d of %d channels\n",
f137e054 594 to_scan, chan_count);
ffd074fc 595 ret = lbs_do_scan(priv, bsstype, curr_chans,
52933d81 596 to_scan);
ffd074fc
HS		 597 if (ret) {
598 lbs_pr_err("SCAN_CMD failed\n");
599 goto out2;
600 }
601 curr_chans += to_scan;
602 chan_count -= to_scan;
603
604 /* somehow schedule the next part of the scan */
f137e054 605 if (chan_count && !full_scan &&
aa21c004 606 !priv->surpriseremoved) {
ffd074fc 607 /* -1 marks just that we're currently scanning */
8816edce
HS		 608 if (priv->scan_channel < 0)
609 priv->scan_channel = to_scan;
ffd074fc 610 else
8816edce 611 priv->scan_channel += to_scan;
ffd074fc
HS		 612 cancel_delayed_work(&priv->scan_work);
613 queue_delayed_work(priv->work_thread, &priv->scan_work,
f137e054 614 msecs_to_jiffies(300));
ffd074fc
HS		 615 /* skip over GIWSCAN event */
616 goto out;
617 }
618
619 }
620 memset(&wrqu, 0, sizeof(union iwreq_data));
621 wireless_send_event(priv->dev, SIOCGIWSCAN, &wrqu, NULL);
876c9d3a 622
f8f55108
DW		 623#ifdef CONFIG_LIBERTAS_DEBUG
624 /* Dump the scan table */
aa21c004 625 mutex_lock(&priv->lock);
ffd074fc 626 lbs_deb_scan("scan table:\n");
aa21c004 627 list_for_each_entry(iter, &priv->network_list, list)
e174961c
JB		 628 lbs_deb_scan("%02d: BSSID %pM, RSSI %d, SSID '%s'\n",
629 i++, iter->bssid, iter->rssi,
9387b7ca 630 print_ssid(ssid, iter->ssid, iter->ssid_len));
aa21c004 631 mutex_unlock(&priv->lock);
f8f55108 632#endif
876c9d3a 633
ffd074fc 634out2:
8816edce 635 priv->scan_channel = 0;
ffd074fc
HS		 636
637out:
aa21c004 638 if (priv->connect_status == LBS_CONNECTED) {
634b8f49 639 netif_carrier_on(priv->dev);
a27b9f96
DW		 640 if (!priv->tx_pending_len)
641 netif_wake_queue(priv->dev);
01d77d8d 642 }
602114ae 643 if (priv->mesh_dev && lbs_mesh_connected(priv)) {
01d77d8d 644 netif_carrier_on(priv->mesh_dev);
a27b9f96
DW		 645 if (!priv->tx_pending_len)
646 netif_wake_queue(priv->mesh_dev);
876c9d3a 647 }
ffd074fc 648 kfree(chan_list);
876c9d3a 649
9012b28a 650 lbs_deb_leave_args(LBS_DEB_SCAN, "ret %d", ret);
876c9d3a
MT		 651 return ret;
652}
653
52933d81
HS		 654void lbs_scan_worker(struct work_struct *work)
655{
656 struct lbs_private *priv =
657 container_of(work, struct lbs_private, scan_work.work);
658
659 lbs_deb_enter(LBS_DEB_SCAN);
660 lbs_scan_networks(priv, 0);
661 lbs_deb_leave(LBS_DEB_SCAN);
662}
663
664
ffd074fc
HS		 665/*********************************************************************/
666/* */
667/* Result interpretation */
668/* */
669/*********************************************************************/
670
876c9d3a
MT		 671/**
672 * @brief Interpret a BSS scan response returned from the firmware
673 *
674 * Parse the various fixed fields and IEs passed back for a a BSS probe
ffd074fc
HS		 675 * response or beacon from the scan command. Record information as needed
676 * in the scan table struct bss_descriptor for that entry.
876c9d3a 677 *
fcdb53db 678 * @param bss Output parameter: Pointer to the BSS Entry
876c9d3a
MT		 679 *
680 * @return 0 or -1
681 */
10078321 682static int lbs_process_bss(struct bss_descriptor *bss,
f137e054 683 uint8_t **pbeaconinfo, int *bytesleft)
876c9d3a 684{
5fd164e9
DW		 685 struct ieee_ie_fh_param_set *fh;
686 struct ieee_ie_ds_param_set *ds;
687 struct ieee_ie_cf_param_set *cf;
688 struct ieee_ie_ibss_param_set *ibss;
9387b7ca 689 DECLARE_SSID_BUF(ssid);
f137e054
DW		 690 uint8_t *pos, *end, *p;
691 uint8_t n_ex_rates = 0, got_basic_rates = 0, n_basic_rates = 0;
692 uint16_t beaconsize = 0;
8c512765 693 int ret;
876c9d3a 694
e56188ac 695 lbs_deb_enter(LBS_DEB_SCAN);
876c9d3a 696
876c9d3a
MT		 697 if (*bytesleft >= sizeof(beaconsize)) {
698 /* Extract & convert beacon size from the command buffer */
533dd1b0 699 beaconsize = get_unaligned_le16(*pbeaconinfo);
876c9d3a
MT		 700 *bytesleft -= sizeof(beaconsize);
701 *pbeaconinfo += sizeof(beaconsize);
702 }
703
704 if (beaconsize == 0 || beaconsize > *bytesleft) {
876c9d3a
MT		 705 *pbeaconinfo += *bytesleft;
706 *bytesleft = 0;
e56188ac
HS		 707 ret = -1;
708 goto done;
876c9d3a
MT		 709 }
710
711 /* Initialize the current working beacon pointer for this BSS iteration */
ab617971
DW		 712 pos = *pbeaconinfo;
713 end = pos + beaconsize;
876c9d3a
MT		 714
715 /* Advance the return beacon pointer past the current beacon */
716 *pbeaconinfo += beaconsize;
717 *bytesleft -= beaconsize;
718
ab617971 719 memcpy(bss->bssid, pos, ETH_ALEN);
e174961c 720 lbs_deb_scan("process_bss: BSSID %pM\n", bss->bssid);
ab617971 721 pos += ETH_ALEN;
876c9d3a 722
ab617971 723 if ((end - pos) < 12) {
fcdb53db 724 lbs_deb_scan("process_bss: Not enough bytes left\n");
e56188ac
HS		 725 ret = -1;
726 goto done;
876c9d3a
MT		 727 }
728
729 /*
730 * next 4 fields are RSSI, time stamp, beacon interval,
731 * and capability information
732 */
733
734 /* RSSI is 1 byte long */
ab617971 735 bss->rssi = *pos;
ffd074fc 736 lbs_deb_scan("process_bss: RSSI %d\n", *pos);
ab617971 737 pos++;
876c9d3a
MT		 738
739 /* time stamp is 8 bytes long */
ab617971 740 pos += 8;
876c9d3a
MT		 741
742 /* beacon interval is 2 bytes long */
814feefa 743 bss->beaconperiod = get_unaligned_le16(pos);
ab617971 744 pos += 2;
876c9d3a
MT		 745
746 /* capability information is 2 bytes long */
814feefa 747 bss->capability = get_unaligned_le16(pos);
ffd074fc 748 lbs_deb_scan("process_bss: capabilities 0x%04x\n", bss->capability);
ab617971 749 pos += 2;
876c9d3a 750
0c9ca690 751 if (bss->capability & WLAN_CAPABILITY_PRIVACY)
ffd074fc 752 lbs_deb_scan("process_bss: WEP enabled\n");
0c9ca690
DW		 753 if (bss->capability & WLAN_CAPABILITY_IBSS)
754 bss->mode = IW_MODE_ADHOC;
755 else
756 bss->mode = IW_MODE_INFRA;
757
876c9d3a 758 /* rest of the current buffer are IE's */
ffd074fc 759 lbs_deb_scan("process_bss: IE len %zd\n", end - pos);
ece56191 760 lbs_deb_hex(LBS_DEB_SCAN, "process_bss: IE info", pos, end - pos);
876c9d3a 761
876c9d3a 762 /* process variable IE */
ab617971 763 while (pos <= end - 2) {
2c706002 764 if (pos + pos[1] > end) {
fcdb53db 765 lbs_deb_scan("process_bss: error in processing IE, "
f137e054 766 "bytes left < IE length\n");
ab617971 767 break;
876c9d3a
MT		 768 }
769
2c706002
JB		 770 switch (pos[0]) {
771 case WLAN_EID_SSID:
772 bss->ssid_len = min_t(int, IEEE80211_MAX_SSID_LEN, pos[1]);
773 memcpy(bss->ssid, pos + 2, bss->ssid_len);
ffd074fc 774 lbs_deb_scan("got SSID IE: '%s', len %u\n",
9387b7ca 775 print_ssid(ssid, bss->ssid, bss->ssid_len),
d8efea25 776 bss->ssid_len);
876c9d3a
MT		 777 break;
778
2c706002
JB		 779 case WLAN_EID_SUPP_RATES:
780 n_basic_rates = min_t(uint8_t, MAX_RATES, pos[1]);
781 memcpy(bss->rates, pos + 2, n_basic_rates);
8c512765 782 got_basic_rates = 1;
ffd074fc 783 lbs_deb_scan("got RATES IE\n");
876c9d3a
MT		 784 break;
785
2c706002 786 case WLAN_EID_FH_PARAMS:
5fd164e9
DW		 787 fh = (struct ieee_ie_fh_param_set *) pos;
788 memcpy(&bss->phy.fh, fh, sizeof(*fh));
ffd074fc 789 lbs_deb_scan("got FH IE\n");
876c9d3a
MT		 790 break;
791
2c706002 792 case WLAN_EID_DS_PARAMS:
5fd164e9
DW		 793 ds = (struct ieee_ie_ds_param_set *) pos;
794 bss->channel = ds->channel;
795 memcpy(&bss->phy.ds, ds, sizeof(*ds));
ffd074fc 796 lbs_deb_scan("got DS IE, channel %d\n", bss->channel);
876c9d3a
MT		 797 break;
798
2c706002 799 case WLAN_EID_CF_PARAMS:
5fd164e9
DW		 800 cf = (struct ieee_ie_cf_param_set *) pos;
801 memcpy(&bss->ss.cf, cf, sizeof(*cf));
ffd074fc 802 lbs_deb_scan("got CF IE\n");
876c9d3a
MT		 803 break;
804
2c706002 805 case WLAN_EID_IBSS_PARAMS:
5fd164e9
DW		 806 ibss = (struct ieee_ie_ibss_param_set *) pos;
807 bss->atimwindow = ibss->atimwindow;
808 memcpy(&bss->ss.ibss, ibss, sizeof(*ibss));
ffd074fc 809 lbs_deb_scan("got IBSS IE\n");
876c9d3a
MT		 810 break;
811
2c706002 812 case WLAN_EID_EXT_SUPP_RATES:
ab617971
DW		 813 /* only process extended supported rate if data rate is
814 * already found. Data rate IE should come before
876c9d3a
MT		 815 * extended supported rate IE
816 */
ffd074fc
HS		 817 lbs_deb_scan("got RATESEX IE\n");
818 if (!got_basic_rates) {
819 lbs_deb_scan("... but ignoring it\n");
ab617971 820 break;
ffd074fc 821 }
876c9d3a 822
2c706002 823 n_ex_rates = pos[1];
8c512765
DW		 824 if (n_basic_rates + n_ex_rates > MAX_RATES)
825 n_ex_rates = MAX_RATES - n_basic_rates;
876c9d3a 826
8c512765 827 p = bss->rates + n_basic_rates;
2c706002 828 memcpy(p, pos + 2, n_ex_rates);
876c9d3a 829 break;
ab617971 830
2c706002
JB		 831 case WLAN_EID_GENERIC:
832 if (pos[1] >= 4 &&
833 pos[2] == 0x00 && pos[3] == 0x50 &&
834 pos[4] == 0xf2 && pos[5] == 0x01) {
835 bss->wpa_ie_len = min(pos[1] + 2, MAX_WPA_IE_LEN);
836 memcpy(bss->wpa_ie, pos, bss->wpa_ie_len);
ffd074fc 837 lbs_deb_scan("got WPA IE\n");
2c706002
JB		 838 lbs_deb_hex(LBS_DEB_SCAN, "WPA IE", bss->wpa_ie,
839 bss->wpa_ie_len);
840 } else if (pos[1] >= MARVELL_MESH_IE_LENGTH &&
841 pos[2] == 0x00 && pos[3] == 0x50 &&
baf62eec 842 pos[4] == 0x43 && pos[5] == 0x04) {
ffd074fc 843 lbs_deb_scan("got mesh IE\n");
1e838bf3 844 bss->mesh = 1;
ffd074fc 845 } else {
f137e054 846 lbs_deb_scan("got generic IE: %02x:%02x:%02x:%02x, len %d\n",
2c706002
JB		 847 pos[2], pos[3],
848 pos[4], pos[5],
849 pos[1]);
ab617971 850 }
876c9d3a 851 break;
ab617971 852
2c706002 853 case WLAN_EID_RSN:
ffd074fc 854 lbs_deb_scan("got RSN IE\n");
2c706002
JB		 855 bss->rsn_ie_len = min(pos[1] + 2, MAX_WPA_IE_LEN);
856 memcpy(bss->rsn_ie, pos, bss->rsn_ie_len);
ffd074fc 857 lbs_deb_hex(LBS_DEB_SCAN, "process_bss: RSN_IE",
2c706002 858 bss->rsn_ie, bss->rsn_ie_len);
876c9d3a
MT		 859 break;
860
ab617971 861 default:
ffd074fc 862 lbs_deb_scan("got IE 0x%04x, len %d\n",
2c706002 863 pos[0], pos[1]);
876c9d3a
MT		 864 break;
865 }
866
2c706002 867 pos += pos[1] + 2;
ab617971 868 }
fcdb53db
DW		 869
870 /* Timestamp */
871 bss->last_scanned = jiffies;
10078321 872 lbs_unset_basic_rate_flags(bss->rates, sizeof(bss->rates));
fcdb53db 873
9012b28a 874 ret = 0;
876c9d3a 875
9012b28a
HS		 876done:
877 lbs_deb_leave_args(LBS_DEB_SCAN, "ret %d", ret);
878 return ret;
876c9d3a
MT		 879}
880
876c9d3a
MT		 881/**
882 * @brief Send a scan command for all available channels filtered on a spec
883 *
e56188ac
HS		 884 * Used in association code and from debugfs
885 *
69f9032d 886 * @param priv A pointer to struct lbs_private structure
e56188ac
HS		 887 * @param ssid A pointer to the SSID to scan for
888 * @param ssid_len Length of the SSID
876c9d3a
MT		 889 *
890 * @return 0-success, otherwise fail
891 */
f137e054 892int lbs_send_specific_ssid_scan(struct lbs_private *priv, uint8_t *ssid,
52933d81 893 uint8_t ssid_len)
876c9d3a 894{
9387b7ca 895 DECLARE_SSID_BUF(ssid_buf);
eb8f7330 896 int ret = 0;
876c9d3a 897
52933d81 898 lbs_deb_enter_args(LBS_DEB_SCAN, "SSID '%s'\n",
9387b7ca 899 print_ssid(ssid_buf, ssid, ssid_len));
876c9d3a 900
d8efea25 901 if (!ssid_len)
eb8f7330 902 goto out;
876c9d3a 903
52933d81
HS		 904 memcpy(priv->scan_ssid, ssid, ssid_len);
905 priv->scan_ssid_len = ssid_len;
876c9d3a 906
52933d81 907 lbs_scan_networks(priv, 1);
aa21c004 908 if (priv->surpriseremoved) {
e56188ac
HS		 909 ret = -1;
910 goto out;
911 }
876c9d3a 912
eb8f7330 913out:
e56188ac 914 lbs_deb_leave_args(LBS_DEB_SCAN, "ret %d", ret);
eb8f7330 915 return ret;
876c9d3a
MT		 916}
917
e56188ac
HS		 918
919
920
921/*********************************************************************/
922/* */
923/* Support for Wireless Extensions */
924/* */
925/*********************************************************************/
926
ffd074fc 927
00af0157
DW		 928#define MAX_CUSTOM_LEN 64
929
69f9032d 930static inline char *lbs_translate_scan(struct lbs_private *priv,
ccc58057
DM		 931 struct iw_request_info *info,
932 char *start, char *stop,
933 struct bss_descriptor *bss)
876c9d3a 934{
876c9d3a 935 struct chan_freq_power *cfp;
876c9d3a
MT		 936 char *current_val; /* For rates */
937 struct iw_event iwe; /* Temporary buffer */
876c9d3a 938 int j;
f137e054
DW		 939#define PERFECT_RSSI ((uint8_t)50)
940#define WORST_RSSI ((uint8_t)0)
941#define RSSI_DIFF ((uint8_t)(PERFECT_RSSI - WORST_RSSI))
942 uint8_t rssi;
876c9d3a 943
e56188ac
HS		 944 lbs_deb_enter(LBS_DEB_SCAN);
945
aa21c004 946 cfp = lbs_find_cfp_by_band_and_channel(priv, 0, bss->channel);
fcdb53db
DW		 947 if (!cfp) {
948 lbs_deb_scan("Invalid channel number %d\n", bss->channel);
e56188ac
HS		 949 start = NULL;
950 goto out;
2be92196 951 }
876c9d3a 952
ffd074fc 953 /* First entry *MUST* be the BSSID */
fcdb53db
DW		 954 iwe.cmd = SIOCGIWAP;
955 iwe.u.ap_addr.sa_family = ARPHRD_ETHER;
956 memcpy(iwe.u.ap_addr.sa_data, &bss->bssid, ETH_ALEN);
ccc58057 957 start = iwe_stream_add_event(info, start, stop, &iwe, IW_EV_ADDR_LEN);
fcdb53db
DW		 958
959 /* SSID */
960 iwe.cmd = SIOCGIWESSID;
961 iwe.u.data.flags = 1;
243e84e9 962 iwe.u.data.length = min((uint32_t) bss->ssid_len, (uint32_t) IEEE80211_MAX_SSID_LEN);
ccc58057 963 start = iwe_stream_add_point(info, start, stop, &iwe, bss->ssid);
fcdb53db
DW		 964
965 /* Mode */
966 iwe.cmd = SIOCGIWMODE;
967 iwe.u.mode = bss->mode;
ccc58057 968 start = iwe_stream_add_event(info, start, stop, &iwe, IW_EV_UINT_LEN);
fcdb53db
DW		 969
970 /* Frequency */
971 iwe.cmd = SIOCGIWFREQ;
972 iwe.u.freq.m = (long)cfp->freq * 100000;
973 iwe.u.freq.e = 1;
ccc58057 974 start = iwe_stream_add_event(info, start, stop, &iwe, IW_EV_FREQ_LEN);
fcdb53db
DW		 975
976 /* Add quality statistics */
977 iwe.cmd = IWEVQUAL;
978 iwe.u.qual.updated = IW_QUAL_ALL_UPDATED;
979 iwe.u.qual.level = SCAN_RSSI(bss->rssi);
980
981 rssi = iwe.u.qual.level - MRVDRV_NF_DEFAULT_SCAN_VALUE;
982 iwe.u.qual.qual =
f137e054
DW		 983 (100 * RSSI_DIFF * RSSI_DIFF - (PERFECT_RSSI - rssi) *
984 (15 * (RSSI_DIFF) + 62 * (PERFECT_RSSI - rssi))) /
985 (RSSI_DIFF * RSSI_DIFF);
fcdb53db
DW		 986 if (iwe.u.qual.qual > 100)
987 iwe.u.qual.qual = 100;
988
aa21c004 989 if (priv->NF[TYPE_BEACON][TYPE_NOAVG] == 0) {
fcdb53db
DW		 990 iwe.u.qual.noise = MRVDRV_NF_DEFAULT_SCAN_VALUE;
991 } else {
f137e054 992 iwe.u.qual.noise = CAL_NF(priv->NF[TYPE_BEACON][TYPE_NOAVG]);
fcdb53db 993 }
80e78ef7
DW		 994
995 /* Locally created ad-hoc BSSs won't have beacons if this is the
996 * only station in the adhoc network; so get signal strength
997 * from receive statistics.
998 */
f137e054 999 if ((priv->mode == IW_MODE_ADHOC) && priv->adhoccreate
aa21c004 1000 && !lbs_ssid_cmp(priv->curbssparams.ssid,
f137e054
DW		 1001 priv->curbssparams.ssid_len,
1002 bss->ssid, bss->ssid_len)) {
80e78ef7 1003 int snr, nf;
aa21c004
DW		 1004 snr = priv->SNR[TYPE_RXPD][TYPE_AVG] / AVG_SCALE;
1005 nf = priv->NF[TYPE_RXPD][TYPE_AVG] / AVG_SCALE;
80e78ef7 1006 iwe.u.qual.level = CAL_RSSI(snr, nf);
fcdb53db 1007 }
ccc58057 1008 start = iwe_stream_add_event(info, start, stop, &iwe, IW_EV_QUAL_LEN);
876c9d3a 1009
fcdb53db
DW		 1010 /* Add encryption capability */
1011 iwe.cmd = SIOCGIWENCODE;
0c9ca690 1012 if (bss->capability & WLAN_CAPABILITY_PRIVACY) {
fcdb53db
DW		 1013 iwe.u.data.flags = IW_ENCODE_ENABLED | IW_ENCODE_NOKEY;
1014 } else {
1015 iwe.u.data.flags = IW_ENCODE_DISABLED;
1016 }
1017 iwe.u.data.length = 0;
ccc58057 1018 start = iwe_stream_add_point(info, start, stop, &iwe, bss->ssid);
876c9d3a 1019
ccc58057 1020 current_val = start + iwe_stream_lcp_len(info);
876c9d3a 1021
fcdb53db
DW		 1022 iwe.cmd = SIOCGIWRATE;
1023 iwe.u.bitrate.fixed = 0;
1024 iwe.u.bitrate.disabled = 0;
1025 iwe.u.bitrate.value = 0;
876c9d3a 1026
430453fc 1027 for (j = 0; j < ARRAY_SIZE(bss->rates) && bss->rates[j]; j++) {
8c512765
DW		 1028 /* Bit rate given in 500 kb/s units */
1029 iwe.u.bitrate.value = bss->rates[j] * 500000;
ccc58057
DM		 1030 current_val = iwe_stream_add_value(info, start, current_val,
1031 stop, &iwe, IW_EV_PARAM_LEN);
fcdb53db 1032 }
f137e054 1033 if ((bss->mode == IW_MODE_ADHOC) && priv->adhoccreate
aa21c004 1034 && !lbs_ssid_cmp(priv->curbssparams.ssid,
f137e054
DW		 1035 priv->curbssparams.ssid_len,
1036 bss->ssid, bss->ssid_len)) {
fcdb53db 1037 iwe.u.bitrate.value = 22 * 500000;
ccc58057 1038 current_val = iwe_stream_add_value(info, start, current_val,
f137e054 1039 stop, &iwe, IW_EV_PARAM_LEN);
fcdb53db
DW		 1040 }
1041 /* Check if we added any event */
ccc58057 1042 if ((current_val - start) > iwe_stream_lcp_len(info))
fcdb53db
DW		 1043 start = current_val;
1044
1045 memset(&iwe, 0, sizeof(iwe));
1046 if (bss->wpa_ie_len) {
1047 char buf[MAX_WPA_IE_LEN];
1048 memcpy(buf, bss->wpa_ie, bss->wpa_ie_len);
1049 iwe.cmd = IWEVGENIE;
1050 iwe.u.data.length = bss->wpa_ie_len;
ccc58057 1051 start = iwe_stream_add_point(info, start, stop, &iwe, buf);
fcdb53db 1052 }
876c9d3a 1053
fcdb53db
DW		 1054 memset(&iwe, 0, sizeof(iwe));
1055 if (bss->rsn_ie_len) {
1056 char buf[MAX_WPA_IE_LEN];
1057 memcpy(buf, bss->rsn_ie, bss->rsn_ie_len);
1058 iwe.cmd = IWEVGENIE;
1059 iwe.u.data.length = bss->rsn_ie_len;
ccc58057 1060 start = iwe_stream_add_point(info, start, stop, &iwe, buf);
fcdb53db 1061 }
876c9d3a 1062
00af0157
DW		 1063 if (bss->mesh) {
1064 char custom[MAX_CUSTOM_LEN];
1065 char *p = custom;
1066
1067 iwe.cmd = IWEVCUSTOM;
f137e054 1068 p += snprintf(p, MAX_CUSTOM_LEN, "mesh-type: olpc");
00af0157
DW		 1069 iwe.u.data.length = p - custom;
1070 if (iwe.u.data.length)
ccc58057
DM		 1071 start = iwe_stream_add_point(info, start, stop,
1072 &iwe, custom);
00af0157
DW		 1073 }
1074
e56188ac
HS		 1075out:
1076 lbs_deb_leave_args(LBS_DEB_SCAN, "start %p", start);
fcdb53db
DW		 1077 return start;
1078}
876c9d3a 1079
ffd074fc
HS		 1080
1081/**
1082 * @brief Handle Scan Network ioctl
1083 *
1084 * @param dev A pointer to net_device structure
1085 * @param info A pointer to iw_request_info structure
1086 * @param vwrq A pointer to iw_param structure
1087 * @param extra A pointer to extra data buf
1088 *
1089 * @return 0 --success, otherwise fail
1090 */
1091int lbs_set_scan(struct net_device *dev, struct iw_request_info *info,
52933d81 1092 union iwreq_data *wrqu, char *extra)
ffd074fc 1093{
9387b7ca 1094 DECLARE_SSID_BUF(ssid);
ab65f649 1095 struct lbs_private *priv = dev->ml_priv;
52933d81 1096 int ret = 0;
ffd074fc 1097
52933d81 1098 lbs_deb_enter(LBS_DEB_WEXT);
ffd074fc 1099
d5db2dfa
DW		 1100 if (!priv->radio_on) {
1101 ret = -EINVAL;
1102 goto out;
1103 }
1104
52933d81
HS		 1105 if (!netif_running(dev)) {
1106 ret = -ENETDOWN;
1107 goto out;
1108 }
ffd074fc
HS		 1109
1110 /* mac80211 does this:
1111 struct ieee80211_sub_if_data *sdata = IEEE80211_DEV_TO_SUB_IF(dev);
52933d81
HS		 1112 if (sdata->type != IEEE80211_IF_TYPE_xxx) {
1113 ret = -EOPNOTSUPP;
1114 goto out;
1115 }
1116 */
ffd074fc
HS		 1117
1118 if (wrqu->data.length == sizeof(struct iw_scan_req) &&
1119 wrqu->data.flags & IW_SCAN_THIS_ESSID) {
52933d81
HS		 1120 struct iw_scan_req *req = (struct iw_scan_req *)extra;
1121 priv->scan_ssid_len = req->essid_len;
1122 memcpy(priv->scan_ssid, req->essid, priv->scan_ssid_len);
1123 lbs_deb_wext("set_scan, essid '%s'\n",
9387b7ca 1124 print_ssid(ssid, priv->scan_ssid, priv->scan_ssid_len));
52933d81
HS		 1125 } else {
1126 priv->scan_ssid_len = 0;
ffd074fc 1127 }
ffd074fc
HS		 1128
1129 if (!delayed_work_pending(&priv->scan_work))
1130 queue_delayed_work(priv->work_thread, &priv->scan_work,
f137e054 1131 msecs_to_jiffies(50));
ffd074fc 1132 /* set marker that currently a scan is taking place */
8816edce 1133 priv->scan_channel = -1;
ffd074fc 1134
aa21c004 1135 if (priv->surpriseremoved)
52933d81 1136 ret = -EIO;
ffd074fc 1137
52933d81
HS		 1138out:
1139 lbs_deb_leave_args(LBS_DEB_WEXT, "ret %d", ret);
1140 return ret;
ffd074fc
HS		 1141}
1142
1143
fcdb53db 1144/**
e56188ac 1145 * @brief Handle Retrieve scan table ioctl
fcdb53db
DW		 1146 *
1147 * @param dev A pointer to net_device structure
1148 * @param info A pointer to iw_request_info structure
1149 * @param dwrq A pointer to iw_point structure
1150 * @param extra A pointer to extra data buf
1151 *
1152 * @return 0 --success, otherwise fail
1153 */
10078321 1154int lbs_get_scan(struct net_device *dev, struct iw_request_info *info,
f137e054 1155 struct iw_point *dwrq, char *extra)
fcdb53db
DW		 1156{
1157#define SCAN_ITEM_SIZE 128
ab65f649 1158 struct lbs_private *priv = dev->ml_priv;
fcdb53db
DW		 1159 int err = 0;
1160 char *ev = extra;
1161 char *stop = ev + dwrq->length;
f137e054
DW		 1162 struct bss_descriptor *iter_bss;
1163 struct bss_descriptor *safe;
876c9d3a 1164
52933d81 1165 lbs_deb_enter(LBS_DEB_WEXT);
876c9d3a 1166
ffd074fc 1167 /* iwlist should wait until the current scan is finished */
8816edce 1168 if (priv->scan_channel)
ffd074fc
HS		 1169 return -EAGAIN;
1170
80e78ef7 1171 /* Update RSSI if current BSS is a locally created ad-hoc BSS */
c0bbd576
AK		 1172 if ((priv->mode == IW_MODE_ADHOC) && priv->adhoccreate) {
1173 err = lbs_prepare_and_send_command(priv, CMD_802_11_RSSI, 0,
1174 CMD_OPTION_WAITFORRSP, 0, NULL);
1175 if (err)
1176 goto out;
1177 }
80e78ef7 1178
aa21c004
DW		 1179 mutex_lock(&priv->lock);
1180 list_for_each_entry_safe (iter_bss, safe, &priv->network_list, list) {
f137e054 1181 char *next_ev;
fcdb53db 1182 unsigned long stale_time;
876c9d3a 1183
fcdb53db
DW		 1184 if (stop - ev < SCAN_ITEM_SIZE) {
1185 err = -E2BIG;
1186 break;
876c9d3a 1187 }
876c9d3a 1188
1e838bf3
LCC		 1189 /* For mesh device, list only mesh networks */
1190 if (dev == priv->mesh_dev && !iter_bss->mesh)
1191 continue;
1192
fcdb53db
DW		 1193 /* Prune old an old scan result */
1194 stale_time = iter_bss->last_scanned + DEFAULT_MAX_SCAN_AGE;
1195 if (time_after(jiffies, stale_time)) {
f137e054 1196 list_move_tail(&iter_bss->list, &priv->network_free_list);
fcdb53db
DW		 1197 clear_bss_descriptor(iter_bss);
1198 continue;
876c9d3a
MT		 1199 }
1200
fcdb53db 1201 /* Translate to WE format this entry */
ccc58057 1202 next_ev = lbs_translate_scan(priv, info, ev, stop, iter_bss);
fcdb53db
DW		 1203 if (next_ev == NULL)
1204 continue;
1205 ev = next_ev;
876c9d3a 1206 }
aa21c004 1207 mutex_unlock(&priv->lock);
876c9d3a 1208
fcdb53db 1209 dwrq->length = (ev - extra);
876c9d3a 1210 dwrq->flags = 0;
c0bbd576 1211out:
52933d81 1212 lbs_deb_leave_args(LBS_DEB_WEXT, "ret %d", err);
fcdb53db 1213 return err;
876c9d3a
MT		 1214}
1215
e56188ac
HS		 1216
1217
1218
1219/*********************************************************************/
1220/* */
1221/* Command execution */
1222/* */
1223/*********************************************************************/
1224
1225
876c9d3a
MT		 1226/**
1227 * @brief This function handles the command response of scan
1228 *
e56188ac
HS		 1229 * Called from handle_cmd_response() in cmdrespc.
1230 *
876c9d3a
MT		 1231 * The response buffer for the scan command has the following
1232 * memory layout:
1233 *
1234 * .-----------------------------------------------------------.
1235 * | header (4 * sizeof(u16)): Standard command response hdr |
1236 * .-----------------------------------------------------------.
1237 * | bufsize (u16) : sizeof the BSS Description data |
1238 * .-----------------------------------------------------------.
1239 * | NumOfSet (u8) : Number of BSS Descs returned |
1240 * .-----------------------------------------------------------.
1241 * | BSSDescription data (variable, size given in bufsize) |
1242 * .-----------------------------------------------------------.
1243 * | TLV data (variable, size calculated using header->size, |
1244 * | bufsize and sizeof the fixed fields above) |
1245 * .-----------------------------------------------------------.
1246 *
69f9032d 1247 * @param priv A pointer to struct lbs_private structure
876c9d3a
MT		 1248 * @param resp A pointer to cmd_ds_command
1249 *
1250 * @return 0 or -1
1251 */
fa62f99c
DW		 1252static int lbs_ret_80211_scan(struct lbs_private *priv, unsigned long dummy,
1253 struct cmd_header *resp)
876c9d3a 1254{
fa62f99c 1255 struct cmd_ds_802_11_scan_rsp *scanresp = (void *)resp;
f137e054
DW		 1256 struct bss_descriptor *iter_bss;
1257 struct bss_descriptor *safe;
fa62f99c
DW		 1258 uint8_t *bssinfo;
1259 uint16_t scanrespsize;
876c9d3a 1260 int bytesleft;
876c9d3a
MT		 1261 int idx;
1262 int tlvbufsize;
9012b28a 1263 int ret;
876c9d3a 1264
e56188ac 1265 lbs_deb_enter(LBS_DEB_SCAN);
876c9d3a 1266
fcdb53db 1267 /* Prune old entries from scan table */
aa21c004 1268 list_for_each_entry_safe (iter_bss, safe, &priv->network_list, list) {
fcdb53db
DW		 1269 unsigned long stale_time = iter_bss->last_scanned + DEFAULT_MAX_SCAN_AGE;
1270 if (time_before(jiffies, stale_time))
1271 continue;
aa21c004 1272 list_move_tail (&iter_bss->list, &priv->network_free_list);
fcdb53db
DW		 1273 clear_bss_descriptor(iter_bss);
1274 }
1275
fa62f99c
DW		 1276 if (scanresp->nr_sets > MAX_NETWORK_COUNT) {
1277 lbs_deb_scan("SCAN_RESP: too many scan results (%d, max %d)\n",
1278 scanresp->nr_sets, MAX_NETWORK_COUNT);
9012b28a
HS		 1279 ret = -1;
1280 goto done;
876c9d3a
MT		 1281 }
1282
2c5b9e51 1283 bytesleft = get_unaligned_le16(&scanresp->bssdescriptsize);
9012b28a 1284 lbs_deb_scan("SCAN_RESP: bssdescriptsize %d\n", bytesleft);
876c9d3a 1285
e7240aca 1286 scanrespsize = le16_to_cpu(resp->size);
fa62f99c 1287 lbs_deb_scan("SCAN_RESP: scan results %d\n", scanresp->nr_sets);
876c9d3a 1288
fa62f99c 1289 bssinfo = scanresp->bssdesc_and_tlvbuffer;
876c9d3a
MT		 1290
1291 /* The size of the TLV buffer is equal to the entire command response
1292 * size (scanrespsize) minus the fixed fields (sizeof()'s), the
1293 * BSS Descriptions (bssdescriptsize as bytesLef) and the command
8ec97cc8 1294 * response header (sizeof(struct cmd_header))
876c9d3a 1295 */
fa62f99c
DW		 1296 tlvbufsize = scanrespsize - (bytesleft + sizeof(scanresp->bssdescriptsize)
1297 + sizeof(scanresp->nr_sets)
8ec97cc8 1298 + sizeof(struct cmd_header));
876c9d3a 1299
876c9d3a 1300 /*
fa62f99c 1301 * Process each scan response returned (scanresp->nr_sets). Save
876c9d3a
MT		 1302 * the information in the newbssentry and then insert into the
1303 * driver scan table either as an update to an existing entry
1304 * or as an addition at the end of the table
1305 */
fa62f99c 1306 for (idx = 0; idx < scanresp->nr_sets && bytesleft; idx++) {
fcdb53db 1307 struct bss_descriptor new;
fa62f99c
DW		 1308 struct bss_descriptor *found = NULL;
1309 struct bss_descriptor *oldest = NULL;
876c9d3a
MT		 1310
1311 /* Process the data fields and IEs returned for this BSS */
fcdb53db 1312 memset(&new, 0, sizeof (struct bss_descriptor));
fa62f99c 1313 if (lbs_process_bss(&new, &bssinfo, &bytesleft) != 0) {
fcdb53db
DW		 1314 /* error parsing the scan response, skipped */
1315 lbs_deb_scan("SCAN_RESP: process_bss returned ERROR\n");
1316 continue;
1317 }
876c9d3a 1318
fcdb53db 1319 /* Try to find this bss in the scan table */
aa21c004 1320 list_for_each_entry (iter_bss, &priv->network_list, list) {
fcdb53db
DW		 1321 if (is_same_network(iter_bss, &new)) {
1322 found = iter_bss;
1323 break;
876c9d3a
MT		 1324 }
1325
fcdb53db
DW		 1326 if ((oldest == NULL) ||
1327 (iter_bss->last_scanned < oldest->last_scanned))
1328 oldest = iter_bss;
1329 }
876c9d3a 1330
fcdb53db
DW		 1331 if (found) {
1332 /* found, clear it */
1333 clear_bss_descriptor(found);
aa21c004 1334 } else if (!list_empty(&priv->network_free_list)) {
fcdb53db 1335 /* Pull one from the free list */
aa21c004 1336 found = list_entry(priv->network_free_list.next,
fcdb53db 1337 struct bss_descriptor, list);
aa21c004 1338 list_move_tail(&found->list, &priv->network_list);
fcdb53db
DW		 1339 } else if (oldest) {
1340 /* If there are no more slots, expire the oldest */
1341 found = oldest;
1342 clear_bss_descriptor(found);
aa21c004 1343 list_move_tail(&found->list, &priv->network_list);
876c9d3a 1344 } else {
fcdb53db
DW		 1345 continue;
1346 }
876c9d3a 1347
e174961c 1348 lbs_deb_scan("SCAN_RESP: BSSID %pM\n", new.bssid);
fcdb53db 1349
fcdb53db
DW		 1350 /* Copy the locally created newbssentry to the scan table */
1351 memcpy(found, &new, offsetof(struct bss_descriptor, list));
1352 }
876c9d3a 1353
9012b28a 1354 ret = 0;
876c9d3a 1355
9012b28a
HS		 1356done:
1357 lbs_deb_leave_args(LBS_DEB_SCAN, "ret %d", ret);
1358 return ret;
876c9d3a 1359}
kernel source for telekom puls (alcatel/mediatek)