1 /* IEEE 802.11 SoftMAC layer
2 * Copyright (c) 2005 Andrea Merello <andreamrl@tiscali.it>
4 * Mostly extracted from the rtl8180-sa2400 driver for the
5 * in-kernel generic ieee802.11 stack.
7 * Few lines might be stolen from other part of the ieee80211
8 * stack. Copyright who own it's copyright
10 * WPA code stolen from the ipw2200 driver.
11 * Copyright who own it's copyright.
13 * released under the GPL
17 #include "ieee80211.h"
19 #include <linux/random.h>
20 #include <linux/delay.h>
21 #include <linux/slab.h>
22 #include <asm/uaccess.h>
23 #include <linux/etherdevice.h>
27 u8 rsn_authen_cipher_suite[16][4] = {
28 {0x00,0x0F,0xAC,0x00}, //Use group key, //Reserved
29 {0x00,0x0F,0xAC,0x01}, //WEP-40 //RSNA default
30 {0x00,0x0F,0xAC,0x02}, //TKIP //NONE //{used just as default}
31 {0x00,0x0F,0xAC,0x03}, //WRAP-historical
32 {0x00,0x0F,0xAC,0x04}, //CCMP
33 {0x00,0x0F,0xAC,0x05}, //WEP-104
36 short ieee80211_is_54g(const struct ieee80211_network *net)
38 return (net->rates_ex_len > 0) || (net->rates_len > 4);
41 short ieee80211_is_shortslot(const struct ieee80211_network *net)
43 return net->capability & WLAN_CAPABILITY_SHORT_SLOT;
46 /* returns the total length needed for pleacing the RATE MFIE
47 * tag and the EXTENDED RATE MFIE tag if needed.
48 * It encludes two bytes per tag for the tag itself and its len
50 unsigned int ieee80211_MFIE_rate_len(struct ieee80211_device *ieee)
52 unsigned int rate_len = 0;
54 if (ieee->modulation & IEEE80211_CCK_MODULATION)
55 rate_len = IEEE80211_CCK_RATE_LEN + 2;
57 if (ieee->modulation & IEEE80211_OFDM_MODULATION)
59 rate_len += IEEE80211_OFDM_RATE_LEN + 2;
64 /* pleace the MFIE rate, tag to the memory (double) poined.
65 * Then it updates the pointer so that
66 * it points after the new MFIE tag added.
68 void ieee80211_MFIE_Brate(struct ieee80211_device *ieee, u8 **tag_p)
72 if (ieee->modulation & IEEE80211_CCK_MODULATION){
73 *tag++ = MFIE_TYPE_RATES;
75 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_1MB;
76 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_2MB;
77 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_5MB;
78 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_11MB;
81 /* We may add an option for custom rates that specific HW might support */
85 void ieee80211_MFIE_Grate(struct ieee80211_device *ieee, u8 **tag_p)
89 if (ieee->modulation & IEEE80211_OFDM_MODULATION){
91 *tag++ = MFIE_TYPE_RATES_EX;
93 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_6MB;
94 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_9MB;
95 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_12MB;
96 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_18MB;
97 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_24MB;
98 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_36MB;
99 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_48MB;
100 *tag++ = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_54MB;
104 /* We may add an option for custom rates that specific HW might support */
109 void ieee80211_WMM_Info(struct ieee80211_device *ieee, u8 **tag_p) {
112 *tag++ = MFIE_TYPE_GENERIC; //0
121 if(ieee->current_network.wmm_info & 0x80) {
122 *tag++ = 0x0f|MAX_SP_Len;
133 void ieee80211_TURBO_Info(struct ieee80211_device *ieee, u8 **tag_p) {
136 *tag++ = MFIE_TYPE_GENERIC; //0
147 printk(KERN_ALERT "This is enable turbo mode IE process\n");
151 void enqueue_mgmt(struct ieee80211_device *ieee, struct sk_buff *skb)
154 nh = (ieee->mgmt_queue_head +1) % MGMT_QUEUE_NUM;
157 * if the queue is full but we have newer frames then
158 * just overwrites the oldest.
160 * if (nh == ieee->mgmt_queue_tail)
163 ieee->mgmt_queue_head = nh;
164 ieee->mgmt_queue_ring[nh] = skb;
169 struct sk_buff *dequeue_mgmt(struct ieee80211_device *ieee)
173 if(ieee->mgmt_queue_tail == ieee->mgmt_queue_head)
176 ret = ieee->mgmt_queue_ring[ieee->mgmt_queue_tail];
178 ieee->mgmt_queue_tail =
179 (ieee->mgmt_queue_tail+1) % MGMT_QUEUE_NUM;
184 void init_mgmt_queue(struct ieee80211_device *ieee)
186 ieee->mgmt_queue_tail = ieee->mgmt_queue_head = 0;
189 u8 MgntQuery_MgntFrameTxRate(struct ieee80211_device *ieee)
191 PRT_HIGH_THROUGHPUT pHTInfo = ieee->pHTInfo;
194 // 2008/01/25 MH For broadcom, MGNT frame set as OFDM 6M.
195 if(pHTInfo->IOTAction & HT_IOT_ACT_MGNT_USE_CCK_6M)
198 rate = ieee->basic_rate & 0x7f;
201 // 2005.01.26, by rcnjko.
202 if(ieee->mode == IEEE_A||
203 ieee->mode== IEEE_N_5G||
204 (ieee->mode== IEEE_N_24G&&!pHTInfo->bCurSuppCCK))
211 // Data rate of ProbeReq is already decided. Annie, 2005-03-31
212 if( pMgntInfo->bScanInProgress || (pMgntInfo->bDualModeScanStep!=0) )
214 if(pMgntInfo->dot11CurrentWirelessMode==WIRELESS_MODE_A)
224 void ieee80211_sta_wakeup(struct ieee80211_device *ieee, short nl);
226 inline void softmac_mgmt_xmit(struct sk_buff *skb, struct ieee80211_device *ieee)
229 short single = ieee->softmac_features & IEEE_SOFTMAC_SINGLE_QUEUE;
230 struct ieee80211_hdr_3addr *header=
231 (struct ieee80211_hdr_3addr *) skb->data;
233 cb_desc *tcb_desc = (cb_desc *)(skb->cb + 8);
234 spin_lock_irqsave(&ieee->lock, flags);
236 /* called with 2nd param 0, no mgmt lock required */
237 ieee80211_sta_wakeup(ieee,0);
239 tcb_desc->queue_index = MGNT_QUEUE;
240 tcb_desc->data_rate = MgntQuery_MgntFrameTxRate(ieee);
241 tcb_desc->RATRIndex = 7;
242 tcb_desc->bTxDisableRateFallBack = 1;
243 tcb_desc->bTxUseDriverAssingedRate = 1;
246 if(ieee->queue_stop){
247 enqueue_mgmt(ieee,skb);
249 header->seq_ctl = cpu_to_le16(ieee->seq_ctrl[0]<<4);
251 if (ieee->seq_ctrl[0] == 0xFFF)
252 ieee->seq_ctrl[0] = 0;
256 /* avoid watchdog triggers */
257 ieee->dev->trans_start = jiffies;
258 ieee->softmac_data_hard_start_xmit(skb,ieee->dev,ieee->basic_rate);
259 //dev_kfree_skb_any(skb);//edit by thomas
262 spin_unlock_irqrestore(&ieee->lock, flags);
264 spin_unlock_irqrestore(&ieee->lock, flags);
265 spin_lock_irqsave(&ieee->mgmt_tx_lock, flags);
267 header->seq_ctl = cpu_to_le16(ieee->seq_ctrl[0] << 4);
269 if (ieee->seq_ctrl[0] == 0xFFF)
270 ieee->seq_ctrl[0] = 0;
274 /* check whether the managed packet queued greater than 5 */
275 if(!ieee->check_nic_enough_desc(ieee->dev,tcb_desc->queue_index)||\
276 (skb_queue_len(&ieee->skb_waitQ[tcb_desc->queue_index]) != 0)||\
277 (ieee->queue_stop) ) {
278 /* insert the skb packet to the management queue */
279 /* as for the completion function, it does not need
280 * to check it any more.
282 printk("%s():insert to waitqueue!\n",__FUNCTION__);
283 skb_queue_tail(&ieee->skb_waitQ[tcb_desc->queue_index], skb);
285 //printk("TX packet!\n");
286 ieee->softmac_hard_start_xmit(skb,ieee->dev);
287 //dev_kfree_skb_any(skb);//edit by thomas
289 spin_unlock_irqrestore(&ieee->mgmt_tx_lock, flags);
293 inline void softmac_ps_mgmt_xmit(struct sk_buff *skb, struct ieee80211_device *ieee)
296 short single = ieee->softmac_features & IEEE_SOFTMAC_SINGLE_QUEUE;
297 struct ieee80211_hdr_3addr *header =
298 (struct ieee80211_hdr_3addr *) skb->data;
303 header->seq_ctl = cpu_to_le16(ieee->seq_ctrl[0] << 4);
305 if (ieee->seq_ctrl[0] == 0xFFF)
306 ieee->seq_ctrl[0] = 0;
310 /* avoid watchdog triggers */
311 ieee->dev->trans_start = jiffies;
312 ieee->softmac_data_hard_start_xmit(skb,ieee->dev,ieee->basic_rate);
316 header->seq_ctl = cpu_to_le16(ieee->seq_ctrl[0] << 4);
318 if (ieee->seq_ctrl[0] == 0xFFF)
319 ieee->seq_ctrl[0] = 0;
323 ieee->softmac_hard_start_xmit(skb,ieee->dev);
326 //dev_kfree_skb_any(skb);//edit by thomas
329 inline struct sk_buff *ieee80211_probe_req(struct ieee80211_device *ieee)
331 unsigned int len,rate_len;
334 struct ieee80211_probe_request *req;
336 len = ieee->current_network.ssid_len;
338 rate_len = ieee80211_MFIE_rate_len(ieee);
340 skb = dev_alloc_skb(sizeof(struct ieee80211_probe_request) +
341 2 + len + rate_len + ieee->tx_headroom);
345 skb_reserve(skb, ieee->tx_headroom);
347 req = (struct ieee80211_probe_request *) skb_put(skb,sizeof(struct ieee80211_probe_request));
348 req->header.frame_ctl = cpu_to_le16(IEEE80211_STYPE_PROBE_REQ);
349 req->header.duration_id = 0; //FIXME: is this OK ?
351 memset(req->header.addr1, 0xff, ETH_ALEN);
352 memcpy(req->header.addr2, ieee->dev->dev_addr, ETH_ALEN);
353 memset(req->header.addr3, 0xff, ETH_ALEN);
355 tag = (u8 *) skb_put(skb,len+2+rate_len);
357 *tag++ = MFIE_TYPE_SSID;
359 memcpy(tag, ieee->current_network.ssid, len);
362 ieee80211_MFIE_Brate(ieee,&tag);
363 ieee80211_MFIE_Grate(ieee,&tag);
367 struct sk_buff *ieee80211_get_beacon_(struct ieee80211_device *ieee);
368 void ieee80211_send_beacon(struct ieee80211_device *ieee)
373 //unsigned long flags;
374 skb = ieee80211_get_beacon_(ieee);
377 softmac_mgmt_xmit(skb, ieee);
378 ieee->softmac_stats.tx_beacons++;
379 //dev_kfree_skb_any(skb);//edit by thomas
381 // ieee->beacon_timer.expires = jiffies +
382 // (MSECS( ieee->current_network.beacon_interval -5));
384 //spin_lock_irqsave(&ieee->beacon_lock,flags);
385 if(ieee->beacon_txing && ieee->ieee_up){
386 // if(!timer_pending(&ieee->beacon_timer))
387 // add_timer(&ieee->beacon_timer);
388 mod_timer(&ieee->beacon_timer,jiffies+(MSECS(ieee->current_network.beacon_interval-5)));
390 //spin_unlock_irqrestore(&ieee->beacon_lock,flags);
394 void ieee80211_send_beacon_cb(unsigned long _ieee)
396 struct ieee80211_device *ieee =
397 (struct ieee80211_device *) _ieee;
400 spin_lock_irqsave(&ieee->beacon_lock, flags);
401 ieee80211_send_beacon(ieee);
402 spin_unlock_irqrestore(&ieee->beacon_lock, flags);
406 void ieee80211_send_probe(struct ieee80211_device *ieee)
410 skb = ieee80211_probe_req(ieee);
412 softmac_mgmt_xmit(skb, ieee);
413 ieee->softmac_stats.tx_probe_rq++;
414 //dev_kfree_skb_any(skb);//edit by thomas
418 void ieee80211_send_probe_requests(struct ieee80211_device *ieee)
420 if (ieee->active_scan && (ieee->softmac_features & IEEE_SOFTMAC_PROBERQ)){
421 ieee80211_send_probe(ieee);
422 ieee80211_send_probe(ieee);
426 /* this performs syncro scan blocking the caller until all channels
427 * in the allowed channel map has been checked.
429 void ieee80211_softmac_scan_syncro(struct ieee80211_device *ieee)
432 u8 channel_map[MAX_CHANNEL_NUMBER+1];
433 memcpy(channel_map, GET_DOT11D_INFO(ieee)->channel_map, MAX_CHANNEL_NUMBER+1);
434 down(&ieee->scan_sem);
441 if (ch > MAX_CHANNEL_NUMBER)
442 goto out; /* scan completed */
443 }while(!channel_map[ch]);
445 /* this function can be called in two situations
446 * 1- We have switched to ad-hoc mode and we are
447 * performing a complete syncro scan before conclude
448 * there are no interesting cell and to create a
449 * new one. In this case the link state is
450 * IEEE80211_NOLINK until we found an interesting cell.
451 * If so the ieee8021_new_net, called by the RX path
452 * will set the state to IEEE80211_LINKED, so we stop
454 * 2- We are linked and the root uses run iwlist scan.
455 * So we switch to IEEE80211_LINKED_SCANNING to remember
456 * that we are still logically linked (not interested in
457 * new network events, despite for updating the net list,
458 * but we are temporarly 'unlinked' as the driver shall
459 * not filter RX frames and the channel is changing.
460 * So the only situation in witch are interested is to check
461 * if the state become LINKED because of the #1 situation
464 if (ieee->state == IEEE80211_LINKED)
466 ieee->set_chan(ieee->dev, ch);
467 if(channel_map[ch] == 1)
468 ieee80211_send_probe_requests(ieee);
470 /* this prevent excessive time wait when we
471 * need to wait for a syncro scan to end..
473 if(ieee->state < IEEE80211_LINKED)
476 if (ieee->sync_scan_hurryup)
480 msleep_interruptible_rsl(IEEE80211_SOFTMAC_SCAN_TIME);
484 if(ieee->state < IEEE80211_LINKED){
485 ieee->actscanning = false;
489 ieee->sync_scan_hurryup = 0;
490 if(IS_DOT11D_ENABLE(ieee))
491 DOT11D_ScanComplete(ieee);
497 void ieee80211_softmac_scan_wq(struct work_struct *work)
499 struct delayed_work *dwork = container_of(work, struct delayed_work, work);
500 struct ieee80211_device *ieee = container_of(dwork, struct ieee80211_device, softmac_scan_wq);
501 static short watchdog;
502 u8 channel_map[MAX_CHANNEL_NUMBER+1];
503 memcpy(channel_map, GET_DOT11D_INFO(ieee)->channel_map, MAX_CHANNEL_NUMBER+1);
506 down(&ieee->scan_sem);
508 ieee->current_network.channel =
509 (ieee->current_network.channel + 1) % MAX_CHANNEL_NUMBER;
510 if (watchdog++ > MAX_CHANNEL_NUMBER)
512 //if current channel is not in channel map, set to default channel.
513 if (!channel_map[ieee->current_network.channel]) {
514 ieee->current_network.channel = 6;
515 goto out; /* no good chans */
518 }while(!channel_map[ieee->current_network.channel]);
519 if (ieee->scanning == 0 )
521 ieee->set_chan(ieee->dev, ieee->current_network.channel);
522 if(channel_map[ieee->current_network.channel] == 1)
523 ieee80211_send_probe_requests(ieee);
526 queue_delayed_work(ieee->wq, &ieee->softmac_scan_wq, IEEE80211_SOFTMAC_SCAN_TIME);
531 if(IS_DOT11D_ENABLE(ieee))
532 DOT11D_ScanComplete(ieee);
533 ieee->actscanning = false;
541 void ieee80211_beacons_start(struct ieee80211_device *ieee)
544 spin_lock_irqsave(&ieee->beacon_lock,flags);
546 ieee->beacon_txing = 1;
547 ieee80211_send_beacon(ieee);
549 spin_unlock_irqrestore(&ieee->beacon_lock,flags);
552 void ieee80211_beacons_stop(struct ieee80211_device *ieee)
556 spin_lock_irqsave(&ieee->beacon_lock,flags);
558 ieee->beacon_txing = 0;
559 del_timer_sync(&ieee->beacon_timer);
561 spin_unlock_irqrestore(&ieee->beacon_lock,flags);
566 void ieee80211_stop_send_beacons(struct ieee80211_device *ieee)
568 if(ieee->stop_send_beacons)
569 ieee->stop_send_beacons(ieee->dev);
570 if (ieee->softmac_features & IEEE_SOFTMAC_BEACONS)
571 ieee80211_beacons_stop(ieee);
575 void ieee80211_start_send_beacons(struct ieee80211_device *ieee)
577 if(ieee->start_send_beacons)
578 ieee->start_send_beacons(ieee->dev,ieee->basic_rate);
579 if(ieee->softmac_features & IEEE_SOFTMAC_BEACONS)
580 ieee80211_beacons_start(ieee);
584 void ieee80211_softmac_stop_scan(struct ieee80211_device *ieee)
586 // unsigned long flags;
588 //ieee->sync_scan_hurryup = 1;
590 down(&ieee->scan_sem);
591 // spin_lock_irqsave(&ieee->lock, flags);
593 if (ieee->scanning == 1){
596 cancel_delayed_work(&ieee->softmac_scan_wq);
599 // spin_unlock_irqrestore(&ieee->lock, flags);
603 void ieee80211_stop_scan(struct ieee80211_device *ieee)
605 if (ieee->softmac_features & IEEE_SOFTMAC_SCAN)
606 ieee80211_softmac_stop_scan(ieee);
608 ieee->stop_scan(ieee->dev);
611 /* called with ieee->lock held */
612 void ieee80211_start_scan(struct ieee80211_device *ieee)
614 if(IS_DOT11D_ENABLE(ieee) )
616 if(IS_COUNTRY_IE_VALID(ieee))
618 RESET_CIE_WATCHDOG(ieee);
621 if (ieee->softmac_features & IEEE_SOFTMAC_SCAN){
622 if (ieee->scanning == 0){
624 queue_delayed_work(ieee->wq, &ieee->softmac_scan_wq, 0);
627 ieee->start_scan(ieee->dev);
631 /* called with wx_sem held */
632 void ieee80211_start_scan_syncro(struct ieee80211_device *ieee)
634 if(IS_DOT11D_ENABLE(ieee) )
636 if(IS_COUNTRY_IE_VALID(ieee))
638 RESET_CIE_WATCHDOG(ieee);
641 ieee->sync_scan_hurryup = 0;
642 if (ieee->softmac_features & IEEE_SOFTMAC_SCAN)
643 ieee80211_softmac_scan_syncro(ieee);
645 ieee->scan_syncro(ieee->dev);
649 inline struct sk_buff *ieee80211_authentication_req(struct ieee80211_network *beacon,
650 struct ieee80211_device *ieee, int challengelen)
653 struct ieee80211_authentication *auth;
654 int len = sizeof(struct ieee80211_authentication) + challengelen + ieee->tx_headroom;
657 skb = dev_alloc_skb(len);
658 if (!skb) return NULL;
660 skb_reserve(skb, ieee->tx_headroom);
661 auth = (struct ieee80211_authentication *)
662 skb_put(skb, sizeof(struct ieee80211_authentication));
664 auth->header.frame_ctl = IEEE80211_STYPE_AUTH;
665 if (challengelen) auth->header.frame_ctl |= IEEE80211_FCTL_WEP;
667 auth->header.duration_id = 0x013a; //FIXME
669 memcpy(auth->header.addr1, beacon->bssid, ETH_ALEN);
670 memcpy(auth->header.addr2, ieee->dev->dev_addr, ETH_ALEN);
671 memcpy(auth->header.addr3, beacon->bssid, ETH_ALEN);
673 //auth->algorithm = ieee->open_wep ? WLAN_AUTH_OPEN : WLAN_AUTH_SHARED_KEY;
674 if(ieee->auth_mode == 0)
675 auth->algorithm = WLAN_AUTH_OPEN;
676 else if(ieee->auth_mode == 1)
677 auth->algorithm = WLAN_AUTH_SHARED_KEY;
678 else if(ieee->auth_mode == 2)
679 auth->algorithm = WLAN_AUTH_OPEN;//0x80;
680 printk("=================>%s():auth->algorithm is %d\n",__FUNCTION__,auth->algorithm);
681 auth->transaction = cpu_to_le16(ieee->associate_seq);
682 ieee->associate_seq++;
684 auth->status = cpu_to_le16(WLAN_STATUS_SUCCESS);
691 static struct sk_buff* ieee80211_probe_resp(struct ieee80211_device *ieee, u8 *dest)
695 struct ieee80211_probe_response *beacon_buf;
696 struct sk_buff *skb = NULL;
698 int atim_len,erp_len;
699 struct ieee80211_crypt_data* crypt;
701 char *ssid = ieee->current_network.ssid;
702 int ssid_len = ieee->current_network.ssid_len;
703 int rate_len = ieee->current_network.rates_len+2;
704 int rate_ex_len = ieee->current_network.rates_ex_len;
705 int wpa_ie_len = ieee->wpa_ie_len;
706 u8 erpinfo_content = 0;
711 u8 tmp_ht_info_len=0;
712 PRT_HIGH_THROUGHPUT pHTInfo = ieee->pHTInfo;
713 u8* tmp_generic_ie_buf=NULL;
714 u8 tmp_generic_ie_len=0;
716 if(rate_ex_len > 0) rate_ex_len+=2;
718 if(ieee->current_network.capability & WLAN_CAPABILITY_IBSS)
723 if(ieee80211_is_54g(&ieee->current_network))
729 crypt = ieee->crypt[ieee->tx_keyidx];
732 encrypt = ieee->host_encrypt && crypt && crypt->ops &&
733 ((0 == strcmp(crypt->ops->name, "WEP") || wpa_ie_len));
735 tmp_ht_cap_buf =(u8*) &(ieee->pHTInfo->SelfHTCap);
736 tmp_ht_cap_len = sizeof(ieee->pHTInfo->SelfHTCap);
737 tmp_ht_info_buf =(u8*) &(ieee->pHTInfo->SelfHTInfo);
738 tmp_ht_info_len = sizeof(ieee->pHTInfo->SelfHTInfo);
739 HTConstructCapabilityElement(ieee, tmp_ht_cap_buf, &tmp_ht_cap_len,encrypt);
740 HTConstructInfoElement(ieee,tmp_ht_info_buf,&tmp_ht_info_len, encrypt);
743 if(pHTInfo->bRegRT2RTAggregation)
745 tmp_generic_ie_buf = ieee->pHTInfo->szRT2RTAggBuffer;
746 tmp_generic_ie_len = sizeof(ieee->pHTInfo->szRT2RTAggBuffer);
747 HTConstructRT2RTAggElement(ieee, tmp_generic_ie_buf, &tmp_generic_ie_len);
749 // printk("===============>tmp_ht_cap_len is %d,tmp_ht_info_len is %d, tmp_generic_ie_len is %d\n",tmp_ht_cap_len,tmp_ht_info_len,tmp_generic_ie_len);
750 beacon_size = sizeof(struct ieee80211_probe_response)+2+
760 // +tmp_generic_ie_len
763 skb = dev_alloc_skb(beacon_size);
766 skb_reserve(skb, ieee->tx_headroom);
767 beacon_buf = (struct ieee80211_probe_response*) skb_put(skb, (beacon_size - ieee->tx_headroom));
768 memcpy (beacon_buf->header.addr1, dest,ETH_ALEN);
769 memcpy (beacon_buf->header.addr2, ieee->dev->dev_addr, ETH_ALEN);
770 memcpy (beacon_buf->header.addr3, ieee->current_network.bssid, ETH_ALEN);
772 beacon_buf->header.duration_id = 0; //FIXME
773 beacon_buf->beacon_interval =
774 cpu_to_le16(ieee->current_network.beacon_interval);
775 beacon_buf->capability =
776 cpu_to_le16(ieee->current_network.capability & WLAN_CAPABILITY_IBSS);
777 beacon_buf->capability |=
778 cpu_to_le16(ieee->current_network.capability & WLAN_CAPABILITY_SHORT_PREAMBLE); //add short preamble here
780 if(ieee->short_slot && (ieee->current_network.capability & WLAN_CAPABILITY_SHORT_SLOT))
781 beacon_buf->capability |= cpu_to_le16(WLAN_CAPABILITY_SHORT_SLOT);
783 crypt = ieee->crypt[ieee->tx_keyidx];
785 beacon_buf->capability |= cpu_to_le16(WLAN_CAPABILITY_PRIVACY);
788 beacon_buf->header.frame_ctl = cpu_to_le16(IEEE80211_STYPE_PROBE_RESP);
789 beacon_buf->info_element[0].id = MFIE_TYPE_SSID;
790 beacon_buf->info_element[0].len = ssid_len;
792 tag = (u8*) beacon_buf->info_element[0].data;
794 memcpy(tag, ssid, ssid_len);
798 *(tag++) = MFIE_TYPE_RATES;
799 *(tag++) = rate_len-2;
800 memcpy(tag,ieee->current_network.rates,rate_len-2);
803 *(tag++) = MFIE_TYPE_DS_SET;
805 *(tag++) = ieee->current_network.channel;
809 *(tag++) = MFIE_TYPE_IBSS_SET;
811 //*((u16*)(tag)) = cpu_to_le16(ieee->current_network.atim_window);
812 val16 = cpu_to_le16(ieee->current_network.atim_window);
813 memcpy((u8 *)tag, (u8 *)&val16, 2);
818 *(tag++) = MFIE_TYPE_ERP;
820 *(tag++) = erpinfo_content;
823 *(tag++) = MFIE_TYPE_RATES_EX;
824 *(tag++) = rate_ex_len-2;
825 memcpy(tag,ieee->current_network.rates_ex,rate_ex_len-2);
831 if (ieee->iw_mode == IW_MODE_ADHOC)
832 {//as Windows will set pairwise key same as the group key which is not allowed in Linux, so set this for IOT issue. WB 2008.07.07
833 memcpy(&ieee->wpa_ie[14], &ieee->wpa_ie[8], 4);
835 memcpy(tag, ieee->wpa_ie, ieee->wpa_ie_len);
839 //skb->dev = ieee->dev;
844 struct sk_buff* ieee80211_assoc_resp(struct ieee80211_device *ieee, u8 *dest)
849 struct ieee80211_crypt_data* crypt;
850 struct ieee80211_assoc_response_frame *assoc;
853 unsigned int rate_len = ieee80211_MFIE_rate_len(ieee);
854 int len = sizeof(struct ieee80211_assoc_response_frame) + rate_len + ieee->tx_headroom;
856 skb = dev_alloc_skb(len);
861 skb_reserve(skb, ieee->tx_headroom);
863 assoc = (struct ieee80211_assoc_response_frame *)
864 skb_put(skb,sizeof(struct ieee80211_assoc_response_frame));
866 assoc->header.frame_ctl = cpu_to_le16(IEEE80211_STYPE_ASSOC_RESP);
867 memcpy(assoc->header.addr1, dest,ETH_ALEN);
868 memcpy(assoc->header.addr3, ieee->dev->dev_addr, ETH_ALEN);
869 memcpy(assoc->header.addr2, ieee->dev->dev_addr, ETH_ALEN);
870 assoc->capability = cpu_to_le16(ieee->iw_mode == IW_MODE_MASTER ?
871 WLAN_CAPABILITY_BSS : WLAN_CAPABILITY_IBSS);
875 assoc->capability |= cpu_to_le16(WLAN_CAPABILITY_SHORT_SLOT);
877 if (ieee->host_encrypt)
878 crypt = ieee->crypt[ieee->tx_keyidx];
881 encrypt = ( crypt && crypt->ops);
884 assoc->capability |= cpu_to_le16(WLAN_CAPABILITY_PRIVACY);
887 assoc->aid = cpu_to_le16(ieee->assoc_id);
888 if (ieee->assoc_id == 0x2007) ieee->assoc_id=0;
889 else ieee->assoc_id++;
891 tag = (u8*) skb_put(skb, rate_len);
893 ieee80211_MFIE_Brate(ieee, &tag);
894 ieee80211_MFIE_Grate(ieee, &tag);
899 struct sk_buff* ieee80211_auth_resp(struct ieee80211_device *ieee,int status, u8 *dest)
902 struct ieee80211_authentication *auth;
903 int len = ieee->tx_headroom + sizeof(struct ieee80211_authentication)+1;
905 skb = dev_alloc_skb(len);
910 skb->len = sizeof(struct ieee80211_authentication);
912 auth = (struct ieee80211_authentication *)skb->data;
914 auth->status = cpu_to_le16(status);
915 auth->transaction = cpu_to_le16(2);
916 auth->algorithm = cpu_to_le16(WLAN_AUTH_OPEN);
918 memcpy(auth->header.addr3, ieee->dev->dev_addr, ETH_ALEN);
919 memcpy(auth->header.addr2, ieee->dev->dev_addr, ETH_ALEN);
920 memcpy(auth->header.addr1, dest, ETH_ALEN);
921 auth->header.frame_ctl = cpu_to_le16(IEEE80211_STYPE_AUTH);
927 struct sk_buff* ieee80211_null_func(struct ieee80211_device *ieee,short pwr)
930 struct ieee80211_hdr_3addr* hdr;
932 skb = dev_alloc_skb(sizeof(struct ieee80211_hdr_3addr));
937 hdr = (struct ieee80211_hdr_3addr*)skb_put(skb,sizeof(struct ieee80211_hdr_3addr));
939 memcpy(hdr->addr1, ieee->current_network.bssid, ETH_ALEN);
940 memcpy(hdr->addr2, ieee->dev->dev_addr, ETH_ALEN);
941 memcpy(hdr->addr3, ieee->current_network.bssid, ETH_ALEN);
943 hdr->frame_ctl = cpu_to_le16(IEEE80211_FTYPE_DATA |
944 IEEE80211_STYPE_NULLFUNC | IEEE80211_FCTL_TODS |
945 (pwr ? IEEE80211_FCTL_PM:0));
953 void ieee80211_resp_to_assoc_rq(struct ieee80211_device *ieee, u8* dest)
955 struct sk_buff *buf = ieee80211_assoc_resp(ieee, dest);
958 softmac_mgmt_xmit(buf, ieee);
962 void ieee80211_resp_to_auth(struct ieee80211_device *ieee, int s, u8* dest)
964 struct sk_buff *buf = ieee80211_auth_resp(ieee, s, dest);
967 softmac_mgmt_xmit(buf, ieee);
971 void ieee80211_resp_to_probe(struct ieee80211_device *ieee, u8 *dest)
975 struct sk_buff *buf = ieee80211_probe_resp(ieee, dest);
977 softmac_mgmt_xmit(buf, ieee);
981 inline struct sk_buff *ieee80211_association_req(struct ieee80211_network *beacon,struct ieee80211_device *ieee)
984 //unsigned long flags;
986 struct ieee80211_assoc_request_frame *hdr;
988 //short info_addr = 0;
990 //u16 suite_count = 0;
991 //u8 suit_select = 0;
992 //unsigned int wpa_len = beacon->wpa_ie_len;
994 u8* ht_cap_buf = NULL;
996 u8* realtek_ie_buf=NULL;
998 int wpa_ie_len= ieee->wpa_ie_len;
999 unsigned int ckip_ie_len=0;
1000 unsigned int ccxrm_ie_len=0;
1001 unsigned int cxvernum_ie_len=0;
1002 struct ieee80211_crypt_data* crypt;
1005 unsigned int rate_len = ieee80211_MFIE_rate_len(ieee);
1006 unsigned int wmm_info_len = beacon->qos_data.supported?9:0;
1008 unsigned int turbo_info_len = beacon->Turbo_Enable?9:0;
1013 crypt = ieee->crypt[ieee->tx_keyidx];
1014 encrypt = ieee->host_encrypt && crypt && crypt->ops && ((0 == strcmp(crypt->ops->name,"WEP") || wpa_ie_len));
1016 //Include High Throuput capability && Realtek proprietary
1017 if(ieee->pHTInfo->bCurrentHTSupport&&ieee->pHTInfo->bEnableHT)
1019 ht_cap_buf = (u8*)&(ieee->pHTInfo->SelfHTCap);
1020 ht_cap_len = sizeof(ieee->pHTInfo->SelfHTCap);
1021 HTConstructCapabilityElement(ieee, ht_cap_buf, &ht_cap_len, encrypt);
1022 if(ieee->pHTInfo->bCurrentRT2RTAggregation)
1024 realtek_ie_buf = ieee->pHTInfo->szRT2RTAggBuffer;
1025 realtek_ie_len = sizeof( ieee->pHTInfo->szRT2RTAggBuffer);
1026 HTConstructRT2RTAggElement(ieee, realtek_ie_buf, &realtek_ie_len);
1030 if(ieee->qos_support){
1031 wmm_info_len = beacon->qos_data.supported?9:0;
1035 if(beacon->bCkipSupported)
1039 if(beacon->bCcxRmEnable)
1043 if( beacon->BssCcxVerNumber >= 2 )
1045 cxvernum_ie_len = 5+2;
1048 len = sizeof(struct ieee80211_assoc_request_frame)+ 2
1049 + beacon->ssid_len//essid tagged val
1050 + rate_len//rates tagged val
1059 + ieee->tx_headroom;
1061 len = sizeof(struct ieee80211_assoc_request_frame)+ 2
1062 + beacon->ssid_len//essid tagged val
1063 + rate_len//rates tagged val
1071 + ieee->tx_headroom;
1074 skb = dev_alloc_skb(len);
1079 skb_reserve(skb, ieee->tx_headroom);
1081 hdr = (struct ieee80211_assoc_request_frame *)
1082 skb_put(skb, sizeof(struct ieee80211_assoc_request_frame)+2);
1085 hdr->header.frame_ctl = IEEE80211_STYPE_ASSOC_REQ;
1086 hdr->header.duration_id= 37; //FIXME
1087 memcpy(hdr->header.addr1, beacon->bssid, ETH_ALEN);
1088 memcpy(hdr->header.addr2, ieee->dev->dev_addr, ETH_ALEN);
1089 memcpy(hdr->header.addr3, beacon->bssid, ETH_ALEN);
1091 memcpy(ieee->ap_mac_addr, beacon->bssid, ETH_ALEN);//for HW security, John
1093 hdr->capability = cpu_to_le16(WLAN_CAPABILITY_BSS);
1094 if (beacon->capability & WLAN_CAPABILITY_PRIVACY )
1095 hdr->capability |= cpu_to_le16(WLAN_CAPABILITY_PRIVACY);
1097 if (beacon->capability & WLAN_CAPABILITY_SHORT_PREAMBLE)
1098 hdr->capability |= cpu_to_le16(WLAN_CAPABILITY_SHORT_PREAMBLE); //add short_preamble here
1100 if(ieee->short_slot)
1101 hdr->capability |= cpu_to_le16(WLAN_CAPABILITY_SHORT_SLOT);
1102 if (wmm_info_len) //QOS
1103 hdr->capability |= cpu_to_le16(WLAN_CAPABILITY_QOS);
1105 hdr->listen_interval = 0xa; //FIXME
1107 hdr->info_element[0].id = MFIE_TYPE_SSID;
1109 hdr->info_element[0].len = beacon->ssid_len;
1110 tag = skb_put(skb, beacon->ssid_len);
1111 memcpy(tag, beacon->ssid, beacon->ssid_len);
1113 tag = skb_put(skb, rate_len);
1115 ieee80211_MFIE_Brate(ieee, &tag);
1116 ieee80211_MFIE_Grate(ieee, &tag);
1117 // For CCX 1 S13, CKIP. Added by Annie, 2006-08-14.
1118 if( beacon->bCkipSupported )
1120 static u8 AironetIeOui[] = {0x00, 0x01, 0x66}; // "4500-client"
1121 u8 CcxAironetBuf[30];
1122 OCTET_STRING osCcxAironetIE;
1124 memset(CcxAironetBuf, 0,30);
1125 osCcxAironetIE.Octet = CcxAironetBuf;
1126 osCcxAironetIE.Length = sizeof(CcxAironetBuf);
1128 // Ref. CCX test plan v3.61, 3.2.3.1 step 13.
1129 // We want to make the device type as "4500-client". 060926, by CCW.
1131 memcpy(osCcxAironetIE.Octet, AironetIeOui, sizeof(AironetIeOui));
1133 // CCX1 spec V1.13, A01.1 CKIP Negotiation (page23):
1134 // "The CKIP negotiation is started with the associate request from the client to the access point,
1135 // containing an Aironet element with both the MIC and KP bits set."
1136 osCcxAironetIE.Octet[IE_CISCO_FLAG_POSITION] |= (SUPPORT_CKIP_PK|SUPPORT_CKIP_MIC) ;
1137 tag = skb_put(skb, ckip_ie_len);
1138 *tag++ = MFIE_TYPE_AIRONET;
1139 *tag++ = osCcxAironetIE.Length;
1140 memcpy(tag,osCcxAironetIE.Octet,osCcxAironetIE.Length);
1141 tag += osCcxAironetIE.Length;
1144 if(beacon->bCcxRmEnable)
1146 static u8 CcxRmCapBuf[] = {0x00, 0x40, 0x96, 0x01, 0x01, 0x00};
1147 OCTET_STRING osCcxRmCap;
1149 osCcxRmCap.Octet = CcxRmCapBuf;
1150 osCcxRmCap.Length = sizeof(CcxRmCapBuf);
1151 tag = skb_put(skb,ccxrm_ie_len);
1152 *tag++ = MFIE_TYPE_GENERIC;
1153 *tag++ = osCcxRmCap.Length;
1154 memcpy(tag,osCcxRmCap.Octet,osCcxRmCap.Length);
1155 tag += osCcxRmCap.Length;
1158 if( beacon->BssCcxVerNumber >= 2 )
1160 u8 CcxVerNumBuf[] = {0x00, 0x40, 0x96, 0x03, 0x00};
1161 OCTET_STRING osCcxVerNum;
1162 CcxVerNumBuf[4] = beacon->BssCcxVerNumber;
1163 osCcxVerNum.Octet = CcxVerNumBuf;
1164 osCcxVerNum.Length = sizeof(CcxVerNumBuf);
1165 tag = skb_put(skb,cxvernum_ie_len);
1166 *tag++ = MFIE_TYPE_GENERIC;
1167 *tag++ = osCcxVerNum.Length;
1168 memcpy(tag,osCcxVerNum.Octet,osCcxVerNum.Length);
1169 tag += osCcxVerNum.Length;
1172 if(ieee->pHTInfo->bCurrentHTSupport&&ieee->pHTInfo->bEnableHT){
1173 if(ieee->pHTInfo->ePeerHTSpecVer != HT_SPEC_VER_EWC)
1175 tag = skb_put(skb, ht_cap_len);
1176 *tag++ = MFIE_TYPE_HT_CAP;
1177 *tag++ = ht_cap_len - 2;
1178 memcpy(tag, ht_cap_buf,ht_cap_len -2);
1179 tag += ht_cap_len -2;
1184 //choose what wpa_supplicant gives to associate.
1185 tag = skb_put(skb, wpa_ie_len);
1187 memcpy(tag, ieee->wpa_ie, ieee->wpa_ie_len);
1190 tag = skb_put(skb,wmm_info_len);
1192 ieee80211_WMM_Info(ieee, &tag);
1195 tag = skb_put(skb,turbo_info_len);
1196 if(turbo_info_len) {
1197 ieee80211_TURBO_Info(ieee, &tag);
1201 if(ieee->pHTInfo->bCurrentHTSupport&&ieee->pHTInfo->bEnableHT){
1202 if(ieee->pHTInfo->ePeerHTSpecVer == HT_SPEC_VER_EWC)
1204 tag = skb_put(skb, ht_cap_len);
1205 *tag++ = MFIE_TYPE_GENERIC;
1206 *tag++ = ht_cap_len - 2;
1207 memcpy(tag, ht_cap_buf,ht_cap_len - 2);
1208 tag += ht_cap_len -2;
1211 if(ieee->pHTInfo->bCurrentRT2RTAggregation){
1212 tag = skb_put(skb, realtek_ie_len);
1213 *tag++ = MFIE_TYPE_GENERIC;
1214 *tag++ = realtek_ie_len - 2;
1215 memcpy(tag, realtek_ie_buf,realtek_ie_len -2 );
1218 // printk("<=====%s(), %p, %p\n", __FUNCTION__, ieee->dev, ieee->dev->dev_addr);
1219 // IEEE80211_DEBUG_DATA(IEEE80211_DL_DATA, skb->data, skb->len);
1223 void ieee80211_associate_abort(struct ieee80211_device *ieee)
1226 unsigned long flags;
1227 spin_lock_irqsave(&ieee->lock, flags);
1229 ieee->associate_seq++;
1231 /* don't scan, and avoid to have the RX path possibily
1232 * try again to associate. Even do not react to AUTH or
1233 * ASSOC response. Just wait for the retry wq to be scheduled.
1234 * Here we will check if there are good nets to associate
1235 * with, so we retry or just get back to NO_LINK and scanning
1237 if (ieee->state == IEEE80211_ASSOCIATING_AUTHENTICATING){
1238 IEEE80211_DEBUG_MGMT("Authentication failed\n");
1239 ieee->softmac_stats.no_auth_rs++;
1241 IEEE80211_DEBUG_MGMT("Association failed\n");
1242 ieee->softmac_stats.no_ass_rs++;
1245 ieee->state = IEEE80211_ASSOCIATING_RETRY;
1247 queue_delayed_work(ieee->wq, &ieee->associate_retry_wq, \
1248 IEEE80211_SOFTMAC_ASSOC_RETRY_TIME);
1250 spin_unlock_irqrestore(&ieee->lock, flags);
1253 void ieee80211_associate_abort_cb(unsigned long dev)
1255 ieee80211_associate_abort((struct ieee80211_device *) dev);
1259 void ieee80211_associate_step1(struct ieee80211_device *ieee)
1261 struct ieee80211_network *beacon = &ieee->current_network;
1262 struct sk_buff *skb;
1264 IEEE80211_DEBUG_MGMT("Stopping scan\n");
1266 ieee->softmac_stats.tx_auth_rq++;
1267 skb=ieee80211_authentication_req(beacon, ieee, 0);
1270 ieee80211_associate_abort(ieee);
1272 ieee->state = IEEE80211_ASSOCIATING_AUTHENTICATING ;
1273 IEEE80211_DEBUG_MGMT("Sending authentication request\n");
1274 //printk(KERN_WARNING "Sending authentication request\n");
1275 softmac_mgmt_xmit(skb, ieee);
1276 //BUGON when you try to add_timer twice, using mod_timer may be better, john0709
1277 if(!timer_pending(&ieee->associate_timer)){
1278 ieee->associate_timer.expires = jiffies + (HZ / 2);
1279 add_timer(&ieee->associate_timer);
1281 //dev_kfree_skb_any(skb);//edit by thomas
1285 void ieee80211_auth_challenge(struct ieee80211_device *ieee, u8 *challenge, int chlen)
1288 struct sk_buff *skb;
1289 struct ieee80211_network *beacon = &ieee->current_network;
1290 // int hlen = sizeof(struct ieee80211_authentication);
1292 ieee->associate_seq++;
1293 ieee->softmac_stats.tx_auth_rq++;
1295 skb = ieee80211_authentication_req(beacon, ieee, chlen+2);
1297 ieee80211_associate_abort(ieee);
1299 c = skb_put(skb, chlen+2);
1300 *(c++) = MFIE_TYPE_CHALLENGE;
1302 memcpy(c, challenge, chlen);
1304 IEEE80211_DEBUG_MGMT("Sending authentication challenge response\n");
1306 ieee80211_encrypt_fragment(ieee, skb, sizeof(struct ieee80211_hdr_3addr ));
1308 softmac_mgmt_xmit(skb, ieee);
1309 mod_timer(&ieee->associate_timer, jiffies + (HZ/2));
1310 //dev_kfree_skb_any(skb);//edit by thomas
1315 void ieee80211_associate_step2(struct ieee80211_device *ieee)
1317 struct sk_buff* skb;
1318 struct ieee80211_network *beacon = &ieee->current_network;
1320 del_timer_sync(&ieee->associate_timer);
1322 IEEE80211_DEBUG_MGMT("Sending association request\n");
1324 ieee->softmac_stats.tx_ass_rq++;
1325 skb=ieee80211_association_req(beacon, ieee);
1327 ieee80211_associate_abort(ieee);
1329 softmac_mgmt_xmit(skb, ieee);
1330 mod_timer(&ieee->associate_timer, jiffies + (HZ/2));
1331 //dev_kfree_skb_any(skb);//edit by thomas
1334 void ieee80211_associate_complete_wq(struct work_struct *work)
1336 struct ieee80211_device *ieee = container_of(work, struct ieee80211_device, associate_complete_wq);
1337 printk(KERN_INFO "Associated successfully\n");
1338 if(ieee80211_is_54g(&ieee->current_network) &&
1339 (ieee->modulation & IEEE80211_OFDM_MODULATION)){
1342 printk(KERN_INFO"Using G rates:%d\n", ieee->rate);
1345 printk(KERN_INFO"Using B rates:%d\n", ieee->rate);
1347 if (ieee->pHTInfo->bCurrentHTSupport&&ieee->pHTInfo->bEnableHT)
1349 printk("Successfully associated, ht enabled\n");
1354 printk("Successfully associated, ht not enabled(%d, %d)\n", ieee->pHTInfo->bCurrentHTSupport, ieee->pHTInfo->bEnableHT);
1355 memset(ieee->dot11HTOperationalRateSet, 0, 16);
1356 //HTSetConnectBwMode(ieee, HT_CHANNEL_WIDTH_20, HT_EXTCHNL_OFFSET_NO_EXT);
1358 ieee->LinkDetectInfo.SlotNum = 2 * (1 + ieee->current_network.beacon_interval/500);
1359 // To prevent the immediately calling watch_dog after association.
1360 if(ieee->LinkDetectInfo.NumRecvBcnInPeriod==0||ieee->LinkDetectInfo.NumRecvDataInPeriod==0 )
1362 ieee->LinkDetectInfo.NumRecvBcnInPeriod = 1;
1363 ieee->LinkDetectInfo.NumRecvDataInPeriod= 1;
1365 ieee->link_change(ieee->dev);
1366 if(ieee->is_silent_reset == 0){
1367 printk("============>normal associate\n");
1368 notify_wx_assoc_event(ieee);
1370 else if(ieee->is_silent_reset == 1)
1372 printk("==================>silent reset associate\n");
1373 ieee->is_silent_reset = 0;
1376 if (ieee->data_hard_resume)
1377 ieee->data_hard_resume(ieee->dev);
1378 netif_carrier_on(ieee->dev);
1381 void ieee80211_associate_complete(struct ieee80211_device *ieee)
1384 // struct net_device* dev = ieee->dev;
1385 del_timer_sync(&ieee->associate_timer);
1387 ieee->state = IEEE80211_LINKED;
1388 //ieee->UpdateHalRATRTableHandler(dev, ieee->dot11HTOperationalRateSet);
1389 queue_work(ieee->wq, &ieee->associate_complete_wq);
1392 void ieee80211_associate_procedure_wq(struct work_struct *work)
1394 struct ieee80211_device *ieee = container_of(work, struct ieee80211_device, associate_procedure_wq);
1395 ieee->sync_scan_hurryup = 1;
1396 down(&ieee->wx_sem);
1398 if (ieee->data_hard_stop)
1399 ieee->data_hard_stop(ieee->dev);
1401 ieee80211_stop_scan(ieee);
1402 printk("===>%s(), chan:%d\n", __FUNCTION__, ieee->current_network.channel);
1403 //ieee->set_chan(ieee->dev, ieee->current_network.channel);
1404 HTSetConnectBwMode(ieee, HT_CHANNEL_WIDTH_20, HT_EXTCHNL_OFFSET_NO_EXT);
1406 ieee->associate_seq = 1;
1407 ieee80211_associate_step1(ieee);
1412 inline void ieee80211_softmac_new_net(struct ieee80211_device *ieee, struct ieee80211_network *net)
1414 u8 tmp_ssid[IW_ESSID_MAX_SIZE+1];
1415 int tmp_ssid_len = 0;
1417 short apset,ssidset,ssidbroad,apmatch,ssidmatch;
1419 /* we are interested in new new only if we are not associated
1420 * and we are not associating / authenticating
1422 if (ieee->state != IEEE80211_NOLINK)
1425 if ((ieee->iw_mode == IW_MODE_INFRA) && !(net->capability & WLAN_CAPABILITY_BSS))
1428 if ((ieee->iw_mode == IW_MODE_ADHOC) && !(net->capability & WLAN_CAPABILITY_IBSS))
1432 if (ieee->iw_mode == IW_MODE_INFRA || ieee->iw_mode == IW_MODE_ADHOC){
1433 /* if the user specified the AP MAC, we need also the essid
1434 * This could be obtained by beacons or, if the network does not
1435 * broadcast it, it can be put manually.
1437 apset = ieee->wap_set;//(memcmp(ieee->current_network.bssid, zero,ETH_ALEN)!=0 );
1438 ssidset = ieee->ssid_set;//ieee->current_network.ssid[0] != '\0';
1439 ssidbroad = !(net->ssid_len == 0 || net->ssid[0]== '\0');
1440 apmatch = (memcmp(ieee->current_network.bssid, net->bssid, ETH_ALEN)==0);
1441 ssidmatch = (ieee->current_network.ssid_len == net->ssid_len)&&\
1442 (!strncmp(ieee->current_network.ssid, net->ssid, net->ssid_len));
1445 if ( /* if the user set the AP check if match.
1446 * if the network does not broadcast essid we check the user supplyed ANY essid
1447 * if the network does broadcast and the user does not set essid it is OK
1448 * if the network does broadcast and the user did set essid chech if essid match
1450 ( apset && apmatch &&
1451 ((ssidset && ssidbroad && ssidmatch) || (ssidbroad && !ssidset) || (!ssidbroad && ssidset)) ) ||
1452 /* if the ap is not set, check that the user set the bssid
1453 * and the network does broadcast and that those two bssid matches
1455 (!apset && ssidset && ssidbroad && ssidmatch)
1457 /* if the essid is hidden replace it with the
1458 * essid provided by the user.
1461 strncpy(tmp_ssid, ieee->current_network.ssid, IW_ESSID_MAX_SIZE);
1462 tmp_ssid_len = ieee->current_network.ssid_len;
1464 memcpy(&ieee->current_network, net, sizeof(struct ieee80211_network));
1467 strncpy(ieee->current_network.ssid, tmp_ssid, IW_ESSID_MAX_SIZE);
1468 ieee->current_network.ssid_len = tmp_ssid_len;
1470 printk(KERN_INFO"Linking with %s,channel:%d, qos:%d, myHT:%d, networkHT:%d\n",ieee->current_network.ssid,ieee->current_network.channel, ieee->current_network.qos_data.supported, ieee->pHTInfo->bEnableHT, ieee->current_network.bssht.bdSupportHT);
1472 //ieee->pHTInfo->IOTAction = 0;
1473 HTResetIOTSetting(ieee->pHTInfo);
1474 if (ieee->iw_mode == IW_MODE_INFRA){
1475 /* Join the network for the first time */
1476 ieee->AsocRetryCount = 0;
1477 //for HT by amy 080514
1478 if((ieee->current_network.qos_data.supported == 1) &&
1479 // (ieee->pHTInfo->bEnableHT && ieee->current_network.bssht.bdSupportHT))
1480 ieee->current_network.bssht.bdSupportHT)
1481 /*WB, 2008.09.09:bCurrentHTSupport and bEnableHT two flags are going to put together to check whether we are in HT now, so needn't to check bEnableHT flags here. That's is to say we will set to HT support whenever joined AP has the ability to support HT. And whether we are in HT or not, please check bCurrentHTSupport&&bEnableHT now please.*/
1483 // ieee->pHTInfo->bCurrentHTSupport = true;
1484 HTResetSelfAndSavePeerSetting(ieee, &(ieee->current_network));
1488 ieee->pHTInfo->bCurrentHTSupport = false;
1491 ieee->state = IEEE80211_ASSOCIATING;
1492 queue_work(ieee->wq, &ieee->associate_procedure_wq);
1494 if(ieee80211_is_54g(&ieee->current_network) &&
1495 (ieee->modulation & IEEE80211_OFDM_MODULATION)){
1497 ieee->SetWirelessMode(ieee->dev, IEEE_G);
1498 printk(KERN_INFO"Using G rates\n");
1501 ieee->SetWirelessMode(ieee->dev, IEEE_B);
1502 printk(KERN_INFO"Using B rates\n");
1504 memset(ieee->dot11HTOperationalRateSet, 0, 16);
1505 //HTSetConnectBwMode(ieee, HT_CHANNEL_WIDTH_20, HT_EXTCHNL_OFFSET_NO_EXT);
1506 ieee->state = IEEE80211_LINKED;
1514 void ieee80211_softmac_check_all_nets(struct ieee80211_device *ieee)
1516 unsigned long flags;
1517 struct ieee80211_network *target;
1519 spin_lock_irqsave(&ieee->lock, flags);
1521 list_for_each_entry(target, &ieee->network_list, list) {
1523 /* if the state become different that NOLINK means
1524 * we had found what we are searching for
1527 if (ieee->state != IEEE80211_NOLINK)
1530 if (ieee->scan_age == 0 || time_after(target->last_scanned + ieee->scan_age, jiffies))
1531 ieee80211_softmac_new_net(ieee, target);
1534 spin_unlock_irqrestore(&ieee->lock, flags);
1539 static inline u16 auth_parse(struct sk_buff *skb, u8** challenge, int *chlen)
1541 struct ieee80211_authentication *a;
1543 if (skb->len < (sizeof(struct ieee80211_authentication)-sizeof(struct ieee80211_info_element))){
1544 IEEE80211_DEBUG_MGMT("invalid len in auth resp: %d\n",skb->len);
1548 a = (struct ieee80211_authentication*) skb->data;
1549 if(skb->len > (sizeof(struct ieee80211_authentication) +3)){
1550 t = skb->data + sizeof(struct ieee80211_authentication);
1552 if(*(t++) == MFIE_TYPE_CHALLENGE){
1554 *challenge = kmemdup(t, *chlen, GFP_ATOMIC);
1560 return cpu_to_le16(a->status);
1565 int auth_rq_parse(struct sk_buff *skb,u8* dest)
1567 struct ieee80211_authentication *a;
1569 if (skb->len < (sizeof(struct ieee80211_authentication)-sizeof(struct ieee80211_info_element))){
1570 IEEE80211_DEBUG_MGMT("invalid len in auth request: %d\n",skb->len);
1573 a = (struct ieee80211_authentication*) skb->data;
1575 memcpy(dest,a->header.addr2, ETH_ALEN);
1577 if (le16_to_cpu(a->algorithm) != WLAN_AUTH_OPEN)
1578 return WLAN_STATUS_NOT_SUPPORTED_AUTH_ALG;
1580 return WLAN_STATUS_SUCCESS;
1583 static short probe_rq_parse(struct ieee80211_device *ieee, struct sk_buff *skb, u8 *src)
1590 struct ieee80211_hdr_3addr *header =
1591 (struct ieee80211_hdr_3addr *) skb->data;
1593 if (skb->len < sizeof (struct ieee80211_hdr_3addr ))
1594 return -1; /* corrupted */
1596 memcpy(src,header->addr2, ETH_ALEN);
1598 skbend = (u8*)skb->data + skb->len;
1600 tag = skb->data + sizeof (struct ieee80211_hdr_3addr );
1602 while (tag+1 < skbend){
1608 tag++; /* point to the len field */
1609 tag = tag + *(tag); /* point to the last data byte of the tag */
1610 tag++; /* point to the next tag */
1613 //IEEE80211DMESG("Card MAC address is "MACSTR, MAC2STR(src));
1614 if (ssidlen == 0) return 1;
1616 if (!ssid) return 1; /* ssid not found in tagged param */
1617 return (!strncmp(ssid, ieee->current_network.ssid, ssidlen));
1621 int assoc_rq_parse(struct sk_buff *skb,u8* dest)
1623 struct ieee80211_assoc_request_frame *a;
1625 if (skb->len < (sizeof(struct ieee80211_assoc_request_frame) -
1626 sizeof(struct ieee80211_info_element))) {
1628 IEEE80211_DEBUG_MGMT("invalid len in auth request:%d \n", skb->len);
1632 a = (struct ieee80211_assoc_request_frame*) skb->data;
1634 memcpy(dest,a->header.addr2,ETH_ALEN);
1639 static inline u16 assoc_parse(struct ieee80211_device *ieee, struct sk_buff *skb, int *aid)
1641 struct ieee80211_assoc_response_frame *response_head;
1644 if (skb->len < sizeof(struct ieee80211_assoc_response_frame)){
1645 IEEE80211_DEBUG_MGMT("invalid len in auth resp: %d\n", skb->len);
1649 response_head = (struct ieee80211_assoc_response_frame*) skb->data;
1650 *aid = le16_to_cpu(response_head->aid) & 0x3fff;
1652 status_code = le16_to_cpu(response_head->status);
1653 if((status_code==WLAN_STATUS_ASSOC_DENIED_RATES || \
1654 status_code==WLAN_STATUS_CAPS_UNSUPPORTED)&&
1655 ((ieee->mode == IEEE_G) &&
1656 (ieee->current_network.mode == IEEE_N_24G) &&
1657 (ieee->AsocRetryCount++ < (RT_ASOC_RETRY_LIMIT-1)))) {
1658 ieee->pHTInfo->IOTAction |= HT_IOT_ACT_PURE_N_MODE;
1660 ieee->AsocRetryCount = 0;
1663 return le16_to_cpu(response_head->status);
1667 ieee80211_rx_probe_rq(struct ieee80211_device *ieee, struct sk_buff *skb)
1671 //IEEE80211DMESG("Rx probe");
1672 ieee->softmac_stats.rx_probe_rq++;
1673 //DMESG("Dest is "MACSTR, MAC2STR(dest));
1674 if (probe_rq_parse(ieee, skb, dest)){
1675 //IEEE80211DMESG("Was for me!");
1676 ieee->softmac_stats.tx_probe_rs++;
1677 ieee80211_resp_to_probe(ieee, dest);
1682 ieee80211_rx_auth_rq(struct ieee80211_device *ieee, struct sk_buff *skb)
1686 //IEEE80211DMESG("Rx probe");
1687 ieee->softmac_stats.rx_auth_rq++;
1689 status = auth_rq_parse(skb, dest);
1691 ieee80211_resp_to_auth(ieee, status, dest);
1693 //DMESG("Dest is "MACSTR, MAC2STR(dest));
1698 ieee80211_rx_assoc_rq(struct ieee80211_device *ieee, struct sk_buff *skb)
1702 //unsigned long flags;
1704 ieee->softmac_stats.rx_ass_rq++;
1705 if (assoc_rq_parse(skb,dest) != -1){
1706 ieee80211_resp_to_assoc_rq(ieee, dest);
1709 printk(KERN_INFO"New client associated: %pM\n", dest);
1715 void ieee80211_sta_ps_send_null_frame(struct ieee80211_device *ieee, short pwr)
1718 struct sk_buff *buf = ieee80211_null_func(ieee, pwr);
1721 softmac_ps_mgmt_xmit(buf, ieee);
1726 short ieee80211_sta_ps_sleep(struct ieee80211_device *ieee, u32 *time_h, u32 *time_l)
1728 int timeout = ieee->ps_timeout;
1730 /*if(ieee->ps == IEEE80211_PS_DISABLED ||
1731 ieee->iw_mode != IW_MODE_INFRA ||
1732 ieee->state != IEEE80211_LINKED)
1736 dtim = ieee->current_network.dtim_data;
1738 if(!(dtim & IEEE80211_DTIM_VALID))
1740 timeout = ieee->current_network.beacon_interval; //should we use ps_timeout value or beacon_interval
1741 //printk("VALID\n");
1742 ieee->current_network.dtim_data = IEEE80211_DTIM_INVALID;
1744 if(dtim & ((IEEE80211_DTIM_UCAST | IEEE80211_DTIM_MBCAST)& ieee->ps))
1747 if(!time_after(jiffies, ieee->dev->trans_start + MSECS(timeout)))
1750 if(!time_after(jiffies, ieee->last_rx_ps_time + MSECS(timeout)))
1753 if((ieee->softmac_features & IEEE_SOFTMAC_SINGLE_QUEUE ) &&
1754 (ieee->mgmt_queue_tail != ieee->mgmt_queue_head))
1758 *time_l = ieee->current_network.last_dtim_sta_time[0]
1759 + (ieee->current_network.beacon_interval
1760 * ieee->current_network.dtim_period) * 1000;
1764 *time_h = ieee->current_network.last_dtim_sta_time[1];
1765 if(time_l && *time_l < ieee->current_network.last_dtim_sta_time[0])
1774 inline void ieee80211_sta_ps(struct ieee80211_device *ieee)
1780 unsigned long flags,flags2;
1782 spin_lock_irqsave(&ieee->lock, flags);
1784 if((ieee->ps == IEEE80211_PS_DISABLED ||
1785 ieee->iw_mode != IW_MODE_INFRA ||
1786 ieee->state != IEEE80211_LINKED)){
1788 // #warning CHECK_LOCK_HERE
1789 spin_lock_irqsave(&ieee->mgmt_tx_lock, flags2);
1791 ieee80211_sta_wakeup(ieee, 1);
1793 spin_unlock_irqrestore(&ieee->mgmt_tx_lock, flags2);
1796 sleep = ieee80211_sta_ps_sleep(ieee,&th, &tl);
1797 /* 2 wake, 1 sleep, 0 do nothing */
1803 if(ieee->sta_sleep == 1)
1804 ieee->enter_sleep_state(ieee->dev,th,tl);
1806 else if(ieee->sta_sleep == 0){
1807 // printk("send null 1\n");
1808 spin_lock_irqsave(&ieee->mgmt_tx_lock, flags2);
1810 if(ieee->ps_is_queue_empty(ieee->dev)){
1813 ieee->sta_sleep = 2;
1815 ieee->ps_request_tx_ack(ieee->dev);
1817 ieee80211_sta_ps_send_null_frame(ieee,1);
1822 spin_unlock_irqrestore(&ieee->mgmt_tx_lock, flags2);
1827 }else if(sleep == 2){
1828 //#warning CHECK_LOCK_HERE
1829 spin_lock_irqsave(&ieee->mgmt_tx_lock, flags2);
1831 ieee80211_sta_wakeup(ieee,1);
1833 spin_unlock_irqrestore(&ieee->mgmt_tx_lock, flags2);
1837 spin_unlock_irqrestore(&ieee->lock, flags);
1841 void ieee80211_sta_wakeup(struct ieee80211_device *ieee, short nl)
1843 if(ieee->sta_sleep == 0){
1845 printk("Warning: driver is probably failing to report TX ps error\n");
1846 ieee->ps_request_tx_ack(ieee->dev);
1847 ieee80211_sta_ps_send_null_frame(ieee, 0);
1853 if(ieee->sta_sleep == 1)
1854 ieee->sta_wake_up(ieee->dev);
1856 ieee->sta_sleep = 0;
1859 ieee->ps_request_tx_ack(ieee->dev);
1860 ieee80211_sta_ps_send_null_frame(ieee, 0);
1864 void ieee80211_ps_tx_ack(struct ieee80211_device *ieee, short success)
1866 unsigned long flags,flags2;
1868 spin_lock_irqsave(&ieee->lock, flags);
1870 if(ieee->sta_sleep == 2){
1871 /* Null frame with PS bit set */
1873 ieee->sta_sleep = 1;
1874 ieee->enter_sleep_state(ieee->dev,ieee->ps_th,ieee->ps_tl);
1876 /* if the card report not success we can't be sure the AP
1877 * has not RXed so we can't assume the AP believe us awake
1880 /* 21112005 - tx again null without PS bit if lost */
1883 if((ieee->sta_sleep == 0) && !success){
1884 spin_lock_irqsave(&ieee->mgmt_tx_lock, flags2);
1885 ieee80211_sta_ps_send_null_frame(ieee, 0);
1886 spin_unlock_irqrestore(&ieee->mgmt_tx_lock, flags2);
1889 spin_unlock_irqrestore(&ieee->lock, flags);
1891 void ieee80211_process_action(struct ieee80211_device* ieee, struct sk_buff* skb)
1893 struct ieee80211_hdr* header = (struct ieee80211_hdr*)skb->data;
1894 u8* act = ieee80211_get_payload(header);
1896 // IEEE80211_DEBUG_DATA(IEEE80211_DL_DATA|IEEE80211_DL_BA, skb->data, skb->len);
1899 IEEE80211_DEBUG(IEEE80211_DL_ERR, "error to get payload of action frame\n");
1907 if (*act == ACT_ADDBAREQ)
1908 ieee80211_rx_ADDBAReq(ieee, skb);
1909 else if (*act == ACT_ADDBARSP)
1910 ieee80211_rx_ADDBARsp(ieee, skb);
1911 else if (*act == ACT_DELBA)
1912 ieee80211_rx_DELBA(ieee, skb);
1915 // if (net_ratelimit())
1916 // IEEE80211_DEBUG(IEEE80211_DL_BA, "unknown action frame(%d)\n", tmp);
1923 ieee80211_rx_frame_softmac(struct ieee80211_device *ieee, struct sk_buff *skb,
1924 struct ieee80211_rx_stats *rx_stats, u16 type,
1927 struct ieee80211_hdr_3addr *header = (struct ieee80211_hdr_3addr *) skb->data;
1932 struct ieee80211_assoc_response_frame *assoc_resp;
1933 // struct ieee80211_info_element *info_element;
1934 bool bSupportNmode = true, bHalfSupportNmode = false; //default support N mode, disable halfNmode
1936 if(!ieee->proto_started)
1939 if(ieee->sta_sleep || (ieee->ps != IEEE80211_PS_DISABLED &&
1940 ieee->iw_mode == IW_MODE_INFRA &&
1941 ieee->state == IEEE80211_LINKED))
1943 tasklet_schedule(&ieee->ps_task);
1945 if(WLAN_FC_GET_STYPE(header->frame_ctl) != IEEE80211_STYPE_PROBE_RESP &&
1946 WLAN_FC_GET_STYPE(header->frame_ctl) != IEEE80211_STYPE_BEACON)
1947 ieee->last_rx_ps_time = jiffies;
1949 switch (WLAN_FC_GET_STYPE(header->frame_ctl)) {
1951 case IEEE80211_STYPE_ASSOC_RESP:
1952 case IEEE80211_STYPE_REASSOC_RESP:
1954 IEEE80211_DEBUG_MGMT("received [RE]ASSOCIATION RESPONSE (%d)\n",
1955 WLAN_FC_GET_STYPE(header->frame_ctl));
1956 if ((ieee->softmac_features & IEEE_SOFTMAC_ASSOCIATE) &&
1957 ieee->state == IEEE80211_ASSOCIATING_AUTHENTICATED &&
1958 ieee->iw_mode == IW_MODE_INFRA){
1959 struct ieee80211_network network_resp;
1960 struct ieee80211_network *network = &network_resp;
1962 if (0 == (errcode=assoc_parse(ieee,skb, &aid))){
1963 ieee->state=IEEE80211_LINKED;
1964 ieee->assoc_id = aid;
1965 ieee->softmac_stats.rx_ass_ok++;
1966 /* station support qos */
1967 /* Let the register setting defaultly with Legacy station */
1968 if(ieee->qos_support) {
1969 assoc_resp = (struct ieee80211_assoc_response_frame*)skb->data;
1970 memset(network, 0, sizeof(*network));
1971 if (ieee80211_parse_info_param(ieee,assoc_resp->info_element,\
1972 rx_stats->len - sizeof(*assoc_resp),\
1977 { //filling the PeerHTCap. //maybe not necessary as we can get its info from current_network.
1978 memcpy(ieee->pHTInfo->PeerHTCapBuf, network->bssht.bdHTCapBuf, network->bssht.bdHTCapLen);
1979 memcpy(ieee->pHTInfo->PeerHTInfoBuf, network->bssht.bdHTInfoBuf, network->bssht.bdHTInfoLen);
1981 if (ieee->handle_assoc_response != NULL)
1982 ieee->handle_assoc_response(ieee->dev, (struct ieee80211_assoc_response_frame*)header, network);
1984 ieee80211_associate_complete(ieee);
1986 /* aid could not been allocated */
1987 ieee->softmac_stats.rx_ass_err++;
1989 "Association response status code 0x%x\n",
1991 IEEE80211_DEBUG_MGMT(
1992 "Association response status code 0x%x\n",
1994 if(ieee->AsocRetryCount < RT_ASOC_RETRY_LIMIT) {
1995 queue_work(ieee->wq, &ieee->associate_procedure_wq);
1997 ieee80211_associate_abort(ieee);
2003 case IEEE80211_STYPE_ASSOC_REQ:
2004 case IEEE80211_STYPE_REASSOC_REQ:
2006 if ((ieee->softmac_features & IEEE_SOFTMAC_ASSOCIATE) &&
2007 ieee->iw_mode == IW_MODE_MASTER)
2009 ieee80211_rx_assoc_rq(ieee, skb);
2012 case IEEE80211_STYPE_AUTH:
2014 if (ieee->softmac_features & IEEE_SOFTMAC_ASSOCIATE){
2015 if (ieee->state == IEEE80211_ASSOCIATING_AUTHENTICATING &&
2016 ieee->iw_mode == IW_MODE_INFRA){
2018 IEEE80211_DEBUG_MGMT("Received authentication response");
2020 if (0 == (errcode=auth_parse(skb, &challenge, &chlen))){
2021 if(ieee->open_wep || !challenge){
2022 ieee->state = IEEE80211_ASSOCIATING_AUTHENTICATED;
2023 ieee->softmac_stats.rx_auth_rs_ok++;
2024 if(!(ieee->pHTInfo->IOTAction&HT_IOT_ACT_PURE_N_MODE))
2026 if (!ieee->GetNmodeSupportBySecCfg(ieee->dev))
2028 // WEP or TKIP encryption
2029 if(IsHTHalfNmodeAPs(ieee))
2031 bSupportNmode = true;
2032 bHalfSupportNmode = true;
2036 bSupportNmode = false;
2037 bHalfSupportNmode = false;
2039 printk("==========>to link with AP using SEC(%d, %d)", bSupportNmode, bHalfSupportNmode);
2042 /* Dummy wirless mode setting to avoid encryption issue */
2045 ieee->SetWirelessMode(ieee->dev, \
2046 ieee->current_network.mode);
2050 ieee->SetWirelessMode(ieee->dev, IEEE_G);
2053 if (ieee->current_network.mode == IEEE_N_24G && bHalfSupportNmode == true)
2055 printk("===============>entern half N mode\n");
2056 ieee->bHalfWirelessN24GMode = true;
2059 ieee->bHalfWirelessN24GMode = false;
2061 ieee80211_associate_step2(ieee);
2063 ieee80211_auth_challenge(ieee, challenge, chlen);
2066 ieee->softmac_stats.rx_auth_rs_err++;
2067 IEEE80211_DEBUG_MGMT("Authentication response status code 0x%x",errcode);
2068 ieee80211_associate_abort(ieee);
2071 }else if (ieee->iw_mode == IW_MODE_MASTER){
2072 ieee80211_rx_auth_rq(ieee, skb);
2077 case IEEE80211_STYPE_PROBE_REQ:
2079 if ((ieee->softmac_features & IEEE_SOFTMAC_PROBERS) &&
2080 ((ieee->iw_mode == IW_MODE_ADHOC ||
2081 ieee->iw_mode == IW_MODE_MASTER) &&
2082 ieee->state == IEEE80211_LINKED)){
2083 ieee80211_rx_probe_rq(ieee, skb);
2087 case IEEE80211_STYPE_DISASSOC:
2088 case IEEE80211_STYPE_DEAUTH:
2089 /* FIXME for now repeat all the association procedure
2090 * both for disassociation and deauthentication
2092 if ((ieee->softmac_features & IEEE_SOFTMAC_ASSOCIATE) &&
2093 ieee->state == IEEE80211_LINKED &&
2094 ieee->iw_mode == IW_MODE_INFRA){
2096 ieee->state = IEEE80211_ASSOCIATING;
2097 ieee->softmac_stats.reassoc++;
2099 notify_wx_assoc_event(ieee);
2100 //HTSetConnectBwMode(ieee, HT_CHANNEL_WIDTH_20, HT_EXTCHNL_OFFSET_NO_EXT);
2101 RemovePeerTS(ieee, header->addr2);
2102 queue_work(ieee->wq, &ieee->associate_procedure_wq);
2105 case IEEE80211_STYPE_MANAGE_ACT:
2106 ieee80211_process_action(ieee,skb);
2113 //dev_kfree_skb_any(skb);
2117 /* following are for a simpler TX queue management.
2118 * Instead of using netif_[stop/wake]_queue the driver
2119 * will uses these two function (plus a reset one), that
2120 * will internally uses the kernel netif_* and takes
2121 * care of the ieee802.11 fragmentation.
2122 * So the driver receives a fragment per time and might
2123 * call the stop function when it want without take care
2124 * to have enought room to TX an entire packet.
2125 * This might be useful if each fragment need it's own
2126 * descriptor, thus just keep a total free memory > than
2127 * the max fragmentation treshold is not enought.. If the
2128 * ieee802.11 stack passed a TXB struct then you needed
2129 * to keep N free descriptors where
2130 * N = MAX_PACKET_SIZE / MIN_FRAG_TRESHOLD
2131 * In this way you need just one and the 802.11 stack
2132 * will take care of buffering fragments and pass them to
2133 * to the driver later, when it wakes the queue.
2135 void ieee80211_softmac_xmit(struct ieee80211_txb *txb, struct ieee80211_device *ieee)
2138 unsigned int queue_index = txb->queue_index;
2139 unsigned long flags;
2141 cb_desc *tcb_desc = NULL;
2143 spin_lock_irqsave(&ieee->lock,flags);
2145 /* called with 2nd parm 0, no tx mgmt lock required */
2146 ieee80211_sta_wakeup(ieee,0);
2148 /* update the tx status */
2149 ieee->stats.tx_bytes += txb->payload_size;
2150 ieee->stats.tx_packets++;
2151 tcb_desc = (cb_desc *)(txb->fragments[0]->cb + MAX_DEV_ADDR_SIZE);
2152 if(tcb_desc->bMulticast) {
2153 ieee->stats.multicast++;
2155 /* if xmit available, just xmit it immediately, else just insert it to the wait queue */
2156 for(i = 0; i < txb->nr_frags; i++) {
2157 #ifdef USB_TX_DRIVER_AGGREGATION_ENABLE
2158 if ((skb_queue_len(&ieee->skb_drv_aggQ[queue_index]) != 0) ||
2160 if ((skb_queue_len(&ieee->skb_waitQ[queue_index]) != 0) ||
2162 (!ieee->check_nic_enough_desc(ieee->dev,queue_index))||\
2163 (ieee->queue_stop)) {
2164 /* insert the skb packet to the wait queue */
2165 /* as for the completion function, it does not need
2166 * to check it any more.
2168 //printk("error:no descriptor left@queue_index %d\n", queue_index);
2169 //ieee80211_stop_queue(ieee);
2170 #ifdef USB_TX_DRIVER_AGGREGATION_ENABLE
2171 skb_queue_tail(&ieee->skb_drv_aggQ[queue_index], txb->fragments[i]);
2173 skb_queue_tail(&ieee->skb_waitQ[queue_index], txb->fragments[i]);
2176 ieee->softmac_data_hard_start_xmit(
2178 ieee->dev,ieee->rate);
2179 //ieee->stats.tx_packets++;
2180 //ieee->stats.tx_bytes += txb->fragments[i]->len;
2181 //ieee->dev->trans_start = jiffies;
2184 ieee80211_txb_free(txb);
2187 spin_unlock_irqrestore(&ieee->lock,flags);
2191 /* called with ieee->lock acquired */
2192 void ieee80211_resume_tx(struct ieee80211_device *ieee)
2195 for(i = ieee->tx_pending.frag; i < ieee->tx_pending.txb->nr_frags; i++) {
2197 if (ieee->queue_stop){
2198 ieee->tx_pending.frag = i;
2202 ieee->softmac_data_hard_start_xmit(
2203 ieee->tx_pending.txb->fragments[i],
2204 ieee->dev,ieee->rate);
2205 //(i+1)<ieee->tx_pending.txb->nr_frags);
2206 ieee->stats.tx_packets++;
2207 ieee->dev->trans_start = jiffies;
2212 ieee80211_txb_free(ieee->tx_pending.txb);
2213 ieee->tx_pending.txb = NULL;
2217 void ieee80211_reset_queue(struct ieee80211_device *ieee)
2219 unsigned long flags;
2221 spin_lock_irqsave(&ieee->lock,flags);
2222 init_mgmt_queue(ieee);
2223 if (ieee->tx_pending.txb){
2224 ieee80211_txb_free(ieee->tx_pending.txb);
2225 ieee->tx_pending.txb = NULL;
2227 ieee->queue_stop = 0;
2228 spin_unlock_irqrestore(&ieee->lock,flags);
2232 void ieee80211_wake_queue(struct ieee80211_device *ieee)
2235 unsigned long flags;
2236 struct sk_buff *skb;
2237 struct ieee80211_hdr_3addr *header;
2239 spin_lock_irqsave(&ieee->lock,flags);
2240 if (! ieee->queue_stop) goto exit;
2242 ieee->queue_stop = 0;
2244 if(ieee->softmac_features & IEEE_SOFTMAC_SINGLE_QUEUE){
2245 while (!ieee->queue_stop && (skb = dequeue_mgmt(ieee))){
2247 header = (struct ieee80211_hdr_3addr *) skb->data;
2249 header->seq_ctl = cpu_to_le16(ieee->seq_ctrl[0] << 4);
2251 if (ieee->seq_ctrl[0] == 0xFFF)
2252 ieee->seq_ctrl[0] = 0;
2254 ieee->seq_ctrl[0]++;
2256 ieee->softmac_data_hard_start_xmit(skb,ieee->dev,ieee->basic_rate);
2257 //dev_kfree_skb_any(skb);//edit by thomas
2260 if (!ieee->queue_stop && ieee->tx_pending.txb)
2261 ieee80211_resume_tx(ieee);
2263 if (!ieee->queue_stop && netif_queue_stopped(ieee->dev)){
2264 ieee->softmac_stats.swtxawake++;
2265 netif_wake_queue(ieee->dev);
2269 spin_unlock_irqrestore(&ieee->lock,flags);
2273 void ieee80211_stop_queue(struct ieee80211_device *ieee)
2275 //unsigned long flags;
2276 //spin_lock_irqsave(&ieee->lock,flags);
2278 if (! netif_queue_stopped(ieee->dev)){
2279 netif_stop_queue(ieee->dev);
2280 ieee->softmac_stats.swtxstop++;
2282 ieee->queue_stop = 1;
2283 //spin_unlock_irqrestore(&ieee->lock,flags);
2288 inline void ieee80211_randomize_cell(struct ieee80211_device *ieee)
2291 random_ether_addr(ieee->current_network.bssid);
2294 /* called in user context only */
2295 void ieee80211_start_master_bss(struct ieee80211_device *ieee)
2299 if (ieee->current_network.ssid_len == 0){
2300 strncpy(ieee->current_network.ssid,
2301 IEEE80211_DEFAULT_TX_ESSID,
2304 ieee->current_network.ssid_len = strlen(IEEE80211_DEFAULT_TX_ESSID);
2308 memcpy(ieee->current_network.bssid, ieee->dev->dev_addr, ETH_ALEN);
2310 ieee->set_chan(ieee->dev, ieee->current_network.channel);
2311 ieee->state = IEEE80211_LINKED;
2312 ieee->link_change(ieee->dev);
2313 notify_wx_assoc_event(ieee);
2315 if (ieee->data_hard_resume)
2316 ieee->data_hard_resume(ieee->dev);
2318 netif_carrier_on(ieee->dev);
2321 void ieee80211_start_monitor_mode(struct ieee80211_device *ieee)
2325 if (ieee->data_hard_resume)
2326 ieee->data_hard_resume(ieee->dev);
2328 netif_carrier_on(ieee->dev);
2331 void ieee80211_start_ibss_wq(struct work_struct *work)
2334 struct delayed_work *dwork = container_of(work, struct delayed_work, work);
2335 struct ieee80211_device *ieee = container_of(dwork, struct ieee80211_device, start_ibss_wq);
2336 /* iwconfig mode ad-hoc will schedule this and return
2337 * on the other hand this will block further iwconfig SET
2338 * operations because of the wx_sem hold.
2339 * Anyway some most set operations set a flag to speed-up
2340 * (abort) this wq (when syncro scanning) before sleeping
2343 if(!ieee->proto_started){
2344 printk("==========oh driver down return\n");
2347 down(&ieee->wx_sem);
2349 if (ieee->current_network.ssid_len == 0){
2350 strcpy(ieee->current_network.ssid,IEEE80211_DEFAULT_TX_ESSID);
2351 ieee->current_network.ssid_len = strlen(IEEE80211_DEFAULT_TX_ESSID);
2355 /* check if we have this cell in our network list */
2356 ieee80211_softmac_check_all_nets(ieee);
2359 // if((IS_DOT11D_ENABLE(ieee)) && (ieee->state == IEEE80211_NOLINK))
2360 if (ieee->state == IEEE80211_NOLINK)
2361 ieee->current_network.channel = 6;
2362 /* if not then the state is not linked. Maybe the user swithced to
2363 * ad-hoc mode just after being in monitor mode, or just after
2364 * being very few time in managed mode (so the card have had no
2365 * time to scan all the chans..) or we have just run up the iface
2366 * after setting ad-hoc mode. So we have to give another try..
2367 * Here, in ibss mode, should be safe to do this without extra care
2368 * (in bss mode we had to make sure no-one tryed to associate when
2369 * we had just checked the ieee->state and we was going to start the
2370 * scan) beacause in ibss mode the ieee80211_new_net function, when
2371 * finds a good net, just set the ieee->state to IEEE80211_LINKED,
2372 * so, at worst, we waste a bit of time to initiate an unneeded syncro
2373 * scan, that will stop at the first round because it sees the state
2376 if (ieee->state == IEEE80211_NOLINK)
2377 ieee80211_start_scan_syncro(ieee);
2379 /* the network definitively is not here.. create a new cell */
2380 if (ieee->state == IEEE80211_NOLINK){
2381 printk("creating new IBSS cell\n");
2383 ieee80211_randomize_cell(ieee);
2385 if(ieee->modulation & IEEE80211_CCK_MODULATION){
2387 ieee->current_network.rates_len = 4;
2389 ieee->current_network.rates[0] = IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_1MB;
2390 ieee->current_network.rates[1] = IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_2MB;
2391 ieee->current_network.rates[2] = IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_5MB;
2392 ieee->current_network.rates[3] = IEEE80211_BASIC_RATE_MASK | IEEE80211_CCK_RATE_11MB;
2395 ieee->current_network.rates_len = 0;
2397 if(ieee->modulation & IEEE80211_OFDM_MODULATION){
2398 ieee->current_network.rates_ex_len = 8;
2400 ieee->current_network.rates_ex[0] = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_6MB;
2401 ieee->current_network.rates_ex[1] = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_9MB;
2402 ieee->current_network.rates_ex[2] = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_12MB;
2403 ieee->current_network.rates_ex[3] = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_18MB;
2404 ieee->current_network.rates_ex[4] = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_24MB;
2405 ieee->current_network.rates_ex[5] = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_36MB;
2406 ieee->current_network.rates_ex[6] = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_48MB;
2407 ieee->current_network.rates_ex[7] = IEEE80211_BASIC_RATE_MASK | IEEE80211_OFDM_RATE_54MB;
2411 ieee->current_network.rates_ex_len = 0;
2415 // By default, WMM function will be disabled in IBSS mode
2416 ieee->current_network.QoS_Enable = 0;
2417 ieee->SetWirelessMode(ieee->dev, IEEE_G);
2418 ieee->current_network.atim_window = 0;
2419 ieee->current_network.capability = WLAN_CAPABILITY_IBSS;
2420 if(ieee->short_slot)
2421 ieee->current_network.capability |= WLAN_CAPABILITY_SHORT_SLOT;
2425 ieee->state = IEEE80211_LINKED;
2427 ieee->set_chan(ieee->dev, ieee->current_network.channel);
2428 ieee->link_change(ieee->dev);
2430 notify_wx_assoc_event(ieee);
2432 ieee80211_start_send_beacons(ieee);
2434 if (ieee->data_hard_resume)
2435 ieee->data_hard_resume(ieee->dev);
2436 netif_carrier_on(ieee->dev);
2441 inline void ieee80211_start_ibss(struct ieee80211_device *ieee)
2443 queue_delayed_work(ieee->wq, &ieee->start_ibss_wq, 150);
2446 /* this is called only in user context, with wx_sem held */
2447 void ieee80211_start_bss(struct ieee80211_device *ieee)
2449 unsigned long flags;
2451 // Ref: 802.11d 11.1.3.3
2452 // STA shall not start a BSS unless properly formed Beacon frame including a Country IE.
2454 if(IS_DOT11D_ENABLE(ieee) && !IS_COUNTRY_IE_VALID(ieee))
2456 if(! ieee->bGlobalDomain)
2461 /* check if we have already found the net we
2462 * are interested in (if any).
2463 * if not (we are disassociated and we are not
2464 * in associating / authenticating phase) start the background scanning.
2466 ieee80211_softmac_check_all_nets(ieee);
2468 /* ensure no-one start an associating process (thus setting
2469 * the ieee->state to ieee80211_ASSOCIATING) while we
2470 * have just cheked it and we are going to enable scan.
2471 * The ieee80211_new_net function is always called with
2472 * lock held (from both ieee80211_softmac_check_all_nets and
2473 * the rx path), so we cannot be in the middle of such function
2475 spin_lock_irqsave(&ieee->lock, flags);
2477 if (ieee->state == IEEE80211_NOLINK){
2478 ieee->actscanning = true;
2479 ieee80211_start_scan(ieee);
2481 spin_unlock_irqrestore(&ieee->lock, flags);
2484 /* called only in userspace context */
2485 void ieee80211_disassociate(struct ieee80211_device *ieee)
2489 netif_carrier_off(ieee->dev);
2490 if (ieee->softmac_features & IEEE_SOFTMAC_TX_QUEUE)
2491 ieee80211_reset_queue(ieee);
2493 if (ieee->data_hard_stop)
2494 ieee->data_hard_stop(ieee->dev);
2495 if(IS_DOT11D_ENABLE(ieee))
2497 ieee->state = IEEE80211_NOLINK;
2498 ieee->is_set_key = false;
2499 ieee->link_change(ieee->dev);
2500 //HTSetConnectBwMode(ieee, HT_CHANNEL_WIDTH_20, HT_EXTCHNL_OFFSET_NO_EXT);
2501 notify_wx_assoc_event(ieee);
2504 void ieee80211_associate_retry_wq(struct work_struct *work)
2506 struct delayed_work *dwork = container_of(work, struct delayed_work, work);
2507 struct ieee80211_device *ieee = container_of(dwork, struct ieee80211_device, associate_retry_wq);
2508 unsigned long flags;
2510 down(&ieee->wx_sem);
2511 if(!ieee->proto_started)
2514 if(ieee->state != IEEE80211_ASSOCIATING_RETRY)
2517 /* until we do not set the state to IEEE80211_NOLINK
2518 * there are no possibility to have someone else trying
2519 * to start an association procedure (we get here with
2520 * ieee->state = IEEE80211_ASSOCIATING).
2521 * When we set the state to IEEE80211_NOLINK it is possible
2522 * that the RX path run an attempt to associate, but
2523 * both ieee80211_softmac_check_all_nets and the
2524 * RX path works with ieee->lock held so there are no
2525 * problems. If we are still disassociated then start a scan.
2526 * the lock here is necessary to ensure no one try to start
2527 * an association procedure when we have just checked the
2528 * state and we are going to start the scan.
2530 ieee->state = IEEE80211_NOLINK;
2532 ieee80211_softmac_check_all_nets(ieee);
2534 spin_lock_irqsave(&ieee->lock, flags);
2536 if(ieee->state == IEEE80211_NOLINK)
2537 ieee80211_start_scan(ieee);
2539 spin_unlock_irqrestore(&ieee->lock, flags);
2545 struct sk_buff *ieee80211_get_beacon_(struct ieee80211_device *ieee)
2547 u8 broadcast_addr[] = {0xff,0xff,0xff,0xff,0xff,0xff};
2549 struct sk_buff *skb;
2550 struct ieee80211_probe_response *b;
2552 skb = ieee80211_probe_resp(ieee, broadcast_addr);
2557 b = (struct ieee80211_probe_response *) skb->data;
2558 b->header.frame_ctl = cpu_to_le16(IEEE80211_STYPE_BEACON);
2564 struct sk_buff *ieee80211_get_beacon(struct ieee80211_device *ieee)
2566 struct sk_buff *skb;
2567 struct ieee80211_probe_response *b;
2569 skb = ieee80211_get_beacon_(ieee);
2573 b = (struct ieee80211_probe_response *) skb->data;
2574 b->header.seq_ctl = cpu_to_le16(ieee->seq_ctrl[0] << 4);
2576 if (ieee->seq_ctrl[0] == 0xFFF)
2577 ieee->seq_ctrl[0] = 0;
2579 ieee->seq_ctrl[0]++;
2584 void ieee80211_softmac_stop_protocol(struct ieee80211_device *ieee)
2586 ieee->sync_scan_hurryup = 1;
2587 down(&ieee->wx_sem);
2588 ieee80211_stop_protocol(ieee);
2593 void ieee80211_stop_protocol(struct ieee80211_device *ieee)
2595 if (!ieee->proto_started)
2598 ieee->proto_started = 0;
2600 ieee80211_stop_send_beacons(ieee);
2601 del_timer_sync(&ieee->associate_timer);
2602 cancel_delayed_work(&ieee->associate_retry_wq);
2603 cancel_delayed_work(&ieee->start_ibss_wq);
2604 ieee80211_stop_scan(ieee);
2606 ieee80211_disassociate(ieee);
2607 RemoveAllTS(ieee); //added as we disconnect from the previous BSS, Remove all TS
2610 void ieee80211_softmac_start_protocol(struct ieee80211_device *ieee)
2612 ieee->sync_scan_hurryup = 0;
2613 down(&ieee->wx_sem);
2614 ieee80211_start_protocol(ieee);
2618 void ieee80211_start_protocol(struct ieee80211_device *ieee)
2622 if (ieee->proto_started)
2625 ieee->proto_started = 1;
2627 if (ieee->current_network.channel == 0){
2630 if (ch > MAX_CHANNEL_NUMBER)
2631 return; /* no channel found */
2632 }while(!GET_DOT11D_INFO(ieee)->channel_map[ch]);
2633 ieee->current_network.channel = ch;
2636 if (ieee->current_network.beacon_interval == 0)
2637 ieee->current_network.beacon_interval = 100;
2638 // printk("===>%s(), chan:%d\n", __FUNCTION__, ieee->current_network.channel);
2639 // ieee->set_chan(ieee->dev,ieee->current_network.channel);
2641 for(i = 0; i < 17; i++) {
2642 ieee->last_rxseq_num[i] = -1;
2643 ieee->last_rxfrag_num[i] = -1;
2644 ieee->last_packet_time[i] = 0;
2647 ieee->init_wmmparam_flag = 0;//reinitialize AC_xx_PARAM registers.
2650 /* if the user set the MAC of the ad-hoc cell and then
2651 * switch to managed mode, shall we make sure that association
2652 * attempts does not fail just because the user provide the essid
2653 * and the nic is still checking for the AP MAC ??
2655 if (ieee->iw_mode == IW_MODE_INFRA)
2656 ieee80211_start_bss(ieee);
2658 else if (ieee->iw_mode == IW_MODE_ADHOC)
2659 ieee80211_start_ibss(ieee);
2661 else if (ieee->iw_mode == IW_MODE_MASTER)
2662 ieee80211_start_master_bss(ieee);
2664 else if(ieee->iw_mode == IW_MODE_MONITOR)
2665 ieee80211_start_monitor_mode(ieee);
2669 #define DRV_NAME "Ieee80211"
2670 void ieee80211_softmac_init(struct ieee80211_device *ieee)
2673 memset(&ieee->current_network, 0, sizeof(struct ieee80211_network));
2675 ieee->state = IEEE80211_NOLINK;
2676 ieee->sync_scan_hurryup = 0;
2677 for(i = 0; i < 5; i++) {
2678 ieee->seq_ctrl[i] = 0;
2680 ieee->pDot11dInfo = kzalloc(sizeof(RT_DOT11D_INFO), GFP_ATOMIC);
2681 if (!ieee->pDot11dInfo)
2682 IEEE80211_DEBUG(IEEE80211_DL_ERR, "can't alloc memory for DOT11D\n");
2683 //added for AP roaming
2684 ieee->LinkDetectInfo.SlotNum = 2;
2685 ieee->LinkDetectInfo.NumRecvBcnInPeriod=0;
2686 ieee->LinkDetectInfo.NumRecvDataInPeriod=0;
2689 ieee->queue_stop = 0;
2691 ieee->softmac_features = 0; //so IEEE2100-like driver are happy
2694 ieee->proto_started = 0;
2695 ieee->basic_rate = IEEE80211_DEFAULT_BASIC_RATE;
2697 ieee->ps = IEEE80211_PS_DISABLED;
2698 ieee->sta_sleep = 0;
2699 ieee->Regdot11HTOperationalRateSet[0]= 0xff;//support MCS 0~7
2700 ieee->Regdot11HTOperationalRateSet[1]= 0xff;//support MCS 8~15
2701 ieee->Regdot11HTOperationalRateSet[4]= 0x01;
2703 ieee->actscanning = false;
2704 ieee->beinretry = false;
2705 ieee->is_set_key = false;
2706 init_mgmt_queue(ieee);
2708 ieee->sta_edca_param[0] = 0x0000A403;
2709 ieee->sta_edca_param[1] = 0x0000A427;
2710 ieee->sta_edca_param[2] = 0x005E4342;
2711 ieee->sta_edca_param[3] = 0x002F3262;
2712 ieee->aggregation = true;
2713 ieee->enable_rx_imm_BA = 1;
2714 ieee->tx_pending.txb = NULL;
2716 init_timer(&ieee->associate_timer);
2717 ieee->associate_timer.data = (unsigned long)ieee;
2718 ieee->associate_timer.function = ieee80211_associate_abort_cb;
2720 init_timer(&ieee->beacon_timer);
2721 ieee->beacon_timer.data = (unsigned long) ieee;
2722 ieee->beacon_timer.function = ieee80211_send_beacon_cb;
2724 ieee->wq = create_workqueue(DRV_NAME);
2726 INIT_DELAYED_WORK(&ieee->start_ibss_wq,ieee80211_start_ibss_wq);
2727 INIT_WORK(&ieee->associate_complete_wq, ieee80211_associate_complete_wq);
2728 INIT_WORK(&ieee->associate_procedure_wq, ieee80211_associate_procedure_wq);
2729 INIT_DELAYED_WORK(&ieee->softmac_scan_wq,ieee80211_softmac_scan_wq);
2730 INIT_DELAYED_WORK(&ieee->associate_retry_wq, ieee80211_associate_retry_wq);
2731 INIT_WORK(&ieee->wx_sync_scan_wq,ieee80211_wx_sync_scan_wq);
2734 sema_init(&ieee->wx_sem, 1);
2735 sema_init(&ieee->scan_sem, 1);
2737 spin_lock_init(&ieee->mgmt_tx_lock);
2738 spin_lock_init(&ieee->beacon_lock);
2740 tasklet_init(&ieee->ps_task,
2741 (void(*)(unsigned long)) ieee80211_sta_ps,
2742 (unsigned long)ieee);
2746 void ieee80211_softmac_free(struct ieee80211_device *ieee)
2748 down(&ieee->wx_sem);
2749 kfree(ieee->pDot11dInfo);
2750 ieee->pDot11dInfo = NULL;
2751 del_timer_sync(&ieee->associate_timer);
2753 cancel_delayed_work(&ieee->associate_retry_wq);
2754 destroy_workqueue(ieee->wq);
2759 /********************************************************
2760 * Start of WPA code. *
2761 * this is stolen from the ipw2200 driver *
2762 ********************************************************/
2765 static int ieee80211_wpa_enable(struct ieee80211_device *ieee, int value)
2767 /* This is called when wpa_supplicant loads and closes the driver
2769 printk("%s WPA\n",value ? "enabling" : "disabling");
2770 ieee->wpa_enabled = value;
2775 void ieee80211_wpa_assoc_frame(struct ieee80211_device *ieee, char *wpa_ie, int wpa_ie_len)
2777 /* make sure WPA is enabled */
2778 ieee80211_wpa_enable(ieee, 1);
2780 ieee80211_disassociate(ieee);
2784 static int ieee80211_wpa_mlme(struct ieee80211_device *ieee, int command, int reason)
2790 case IEEE_MLME_STA_DEAUTH:
2794 case IEEE_MLME_STA_DISASSOC:
2795 ieee80211_disassociate(ieee);
2799 printk("Unknown MLME request: %d\n", command);
2807 static int ieee80211_wpa_set_wpa_ie(struct ieee80211_device *ieee,
2808 struct ieee_param *param, int plen)
2812 if (param->u.wpa_ie.len > MAX_WPA_IE_LEN ||
2813 (param->u.wpa_ie.len && param->u.wpa_ie.data == NULL))
2816 if (param->u.wpa_ie.len) {
2817 buf = kmemdup(param->u.wpa_ie.data, param->u.wpa_ie.len,
2822 kfree(ieee->wpa_ie);
2824 ieee->wpa_ie_len = param->u.wpa_ie.len;
2826 kfree(ieee->wpa_ie);
2827 ieee->wpa_ie = NULL;
2828 ieee->wpa_ie_len = 0;
2831 ieee80211_wpa_assoc_frame(ieee, ieee->wpa_ie, ieee->wpa_ie_len);
2835 #define AUTH_ALG_OPEN_SYSTEM 0x1
2836 #define AUTH_ALG_SHARED_KEY 0x2
2838 static int ieee80211_wpa_set_auth_algs(struct ieee80211_device *ieee, int value)
2841 struct ieee80211_security sec = {
2842 .flags = SEC_AUTH_MODE,
2846 if (value & AUTH_ALG_SHARED_KEY) {
2847 sec.auth_mode = WLAN_AUTH_SHARED_KEY;
2849 ieee->auth_mode = 1;
2850 } else if (value & AUTH_ALG_OPEN_SYSTEM){
2851 sec.auth_mode = WLAN_AUTH_OPEN;
2853 ieee->auth_mode = 0;
2855 else if (value & IW_AUTH_ALG_LEAP){
2856 sec.auth_mode = WLAN_AUTH_LEAP;
2858 ieee->auth_mode = 2;
2862 if (ieee->set_security)
2863 ieee->set_security(ieee->dev, &sec);
2865 // ret = -EOPNOTSUPP;
2870 static int ieee80211_wpa_set_param(struct ieee80211_device *ieee, u8 name, u32 value)
2873 unsigned long flags;
2876 case IEEE_PARAM_WPA_ENABLED:
2877 ret = ieee80211_wpa_enable(ieee, value);
2880 case IEEE_PARAM_TKIP_COUNTERMEASURES:
2881 ieee->tkip_countermeasures=value;
2884 case IEEE_PARAM_DROP_UNENCRYPTED: {
2887 * wpa_supplicant calls set_wpa_enabled when the driver
2888 * is loaded and unloaded, regardless of if WPA is being
2889 * used. No other calls are made which can be used to
2890 * determine if encryption will be used or not prior to
2891 * association being expected. If encryption is not being
2892 * used, drop_unencrypted is set to false, else true -- we
2893 * can use this to determine if the CAP_PRIVACY_ON bit should
2896 struct ieee80211_security sec = {
2897 .flags = SEC_ENABLED,
2900 ieee->drop_unencrypted = value;
2901 /* We only change SEC_LEVEL for open mode. Others
2902 * are set by ipw_wpa_set_encryption.
2905 sec.flags |= SEC_LEVEL;
2906 sec.level = SEC_LEVEL_0;
2909 sec.flags |= SEC_LEVEL;
2910 sec.level = SEC_LEVEL_1;
2912 if (ieee->set_security)
2913 ieee->set_security(ieee->dev, &sec);
2917 case IEEE_PARAM_PRIVACY_INVOKED:
2918 ieee->privacy_invoked=value;
2921 case IEEE_PARAM_AUTH_ALGS:
2922 ret = ieee80211_wpa_set_auth_algs(ieee, value);
2925 case IEEE_PARAM_IEEE_802_1X:
2926 ieee->ieee802_1x=value;
2928 case IEEE_PARAM_WPAX_SELECT:
2929 // added for WPA2 mixed mode
2930 spin_lock_irqsave(&ieee->wpax_suitlist_lock,flags);
2931 ieee->wpax_type_set = 1;
2932 ieee->wpax_type_notify = value;
2933 spin_unlock_irqrestore(&ieee->wpax_suitlist_lock,flags);
2937 printk("Unknown WPA param: %d\n",name);
2944 /* implementation borrowed from hostap driver */
2946 static int ieee80211_wpa_set_encryption(struct ieee80211_device *ieee,
2947 struct ieee_param *param, int param_len)
2951 struct ieee80211_crypto_ops *ops;
2952 struct ieee80211_crypt_data **crypt;
2954 struct ieee80211_security sec = {
2958 param->u.crypt.err = 0;
2959 param->u.crypt.alg[IEEE_CRYPT_ALG_NAME_LEN - 1] = '\0';
2962 (int) ((char *) param->u.crypt.key - (char *) param) +
2963 param->u.crypt.key_len) {
2964 printk("Len mismatch %d, %d\n", param_len,
2965 param->u.crypt.key_len);
2968 if (is_broadcast_ether_addr(param->sta_addr)) {
2969 if (param->u.crypt.idx >= WEP_KEYS)
2971 crypt = &ieee->crypt[param->u.crypt.idx];
2976 if (strcmp(param->u.crypt.alg, "none") == 0) {
2981 sec.level = SEC_LEVEL_0;
2982 sec.flags |= SEC_ENABLED | SEC_LEVEL;
2983 ieee80211_crypt_delayed_deinit(ieee, crypt);
2990 sec.flags |= SEC_ENABLED;
2992 /* IPW HW cannot build TKIP MIC, host decryption still needed. */
2993 if (!(ieee->host_encrypt || ieee->host_decrypt) &&
2994 strcmp(param->u.crypt.alg, "TKIP"))
2995 goto skip_host_crypt;
2997 ops = ieee80211_get_crypto_ops(param->u.crypt.alg);
2998 if (ops == NULL && strcmp(param->u.crypt.alg, "WEP") == 0) {
2999 request_module("ieee80211_crypt_wep");
3000 ops = ieee80211_get_crypto_ops(param->u.crypt.alg);
3001 //set WEP40 first, it will be modified according to WEP104 or WEP40 at other place
3002 } else if (ops == NULL && strcmp(param->u.crypt.alg, "TKIP") == 0) {
3003 request_module("ieee80211_crypt_tkip");
3004 ops = ieee80211_get_crypto_ops(param->u.crypt.alg);
3005 } else if (ops == NULL && strcmp(param->u.crypt.alg, "CCMP") == 0) {
3006 request_module("ieee80211_crypt_ccmp");
3007 ops = ieee80211_get_crypto_ops(param->u.crypt.alg);
3010 printk("unknown crypto alg '%s'\n", param->u.crypt.alg);
3011 param->u.crypt.err = IEEE_CRYPT_ERR_UNKNOWN_ALG;
3016 if (*crypt == NULL || (*crypt)->ops != ops) {
3017 struct ieee80211_crypt_data *new_crypt;
3019 ieee80211_crypt_delayed_deinit(ieee, crypt);
3021 new_crypt = kmalloc(sizeof(*new_crypt), GFP_KERNEL);
3022 if (new_crypt == NULL) {
3026 memset(new_crypt, 0, sizeof(struct ieee80211_crypt_data));
3027 new_crypt->ops = ops;
3028 if (new_crypt->ops && try_module_get(new_crypt->ops->owner))
3030 new_crypt->ops->init(param->u.crypt.idx);
3032 if (new_crypt->priv == NULL) {
3034 param->u.crypt.err = IEEE_CRYPT_ERR_CRYPT_INIT_FAILED;
3042 if (param->u.crypt.key_len > 0 && (*crypt)->ops->set_key &&
3043 (*crypt)->ops->set_key(param->u.crypt.key,
3044 param->u.crypt.key_len, param->u.crypt.seq,
3045 (*crypt)->priv) < 0) {
3046 printk("key setting failed\n");
3047 param->u.crypt.err = IEEE_CRYPT_ERR_KEY_SET_FAILED;
3053 if (param->u.crypt.set_tx) {
3054 ieee->tx_keyidx = param->u.crypt.idx;
3055 sec.active_key = param->u.crypt.idx;
3056 sec.flags |= SEC_ACTIVE_KEY;
3058 sec.flags &= ~SEC_ACTIVE_KEY;
3060 if (param->u.crypt.alg != NULL) {
3061 memcpy(sec.keys[param->u.crypt.idx],
3063 param->u.crypt.key_len);
3064 sec.key_sizes[param->u.crypt.idx] = param->u.crypt.key_len;
3065 sec.flags |= (1 << param->u.crypt.idx);
3067 if (strcmp(param->u.crypt.alg, "WEP") == 0) {
3068 sec.flags |= SEC_LEVEL;
3069 sec.level = SEC_LEVEL_1;
3070 } else if (strcmp(param->u.crypt.alg, "TKIP") == 0) {
3071 sec.flags |= SEC_LEVEL;
3072 sec.level = SEC_LEVEL_2;
3073 } else if (strcmp(param->u.crypt.alg, "CCMP") == 0) {
3074 sec.flags |= SEC_LEVEL;
3075 sec.level = SEC_LEVEL_3;
3079 if (ieee->set_security)
3080 ieee->set_security(ieee->dev, &sec);
3082 /* Do not reset port if card is in Managed mode since resetting will
3083 * generate new IEEE 802.11 authentication which may end up in looping
3084 * with IEEE 802.1X. If your hardware requires a reset after WEP
3085 * configuration (for example... Prism2), implement the reset_port in
3086 * the callbacks structures used to initialize the 802.11 stack. */
3087 if (ieee->reset_on_keychange &&
3088 ieee->iw_mode != IW_MODE_INFRA &&
3090 ieee->reset_port(ieee->dev)) {
3091 printk("reset_port failed\n");
3092 param->u.crypt.err = IEEE_CRYPT_ERR_CARD_CONF_FAILED;
3099 inline struct sk_buff *ieee80211_disassociate_skb(
3100 struct ieee80211_network *beacon,
3101 struct ieee80211_device *ieee,
3104 struct sk_buff *skb;
3105 struct ieee80211_disassoc *disass;
3107 skb = dev_alloc_skb(sizeof(struct ieee80211_disassoc));
3111 disass = (struct ieee80211_disassoc *) skb_put(skb,sizeof(struct ieee80211_disassoc));
3112 disass->header.frame_ctl = cpu_to_le16(IEEE80211_STYPE_DISASSOC);
3113 disass->header.duration_id = 0;
3115 memcpy(disass->header.addr1, beacon->bssid, ETH_ALEN);
3116 memcpy(disass->header.addr2, ieee->dev->dev_addr, ETH_ALEN);
3117 memcpy(disass->header.addr3, beacon->bssid, ETH_ALEN);
3119 disass->reason = asRsn;
3126 struct ieee80211_device *ieee,
3131 struct ieee80211_network *beacon = &ieee->current_network;
3132 struct sk_buff *skb;
3133 skb = ieee80211_disassociate_skb(beacon,ieee,asRsn);
3135 softmac_mgmt_xmit(skb, ieee);
3136 //dev_kfree_skb_any(skb);//edit by thomas
3140 int ieee80211_wpa_supplicant_ioctl(struct ieee80211_device *ieee, struct iw_point *p)
3142 struct ieee_param *param;
3145 down(&ieee->wx_sem);
3146 //IEEE_DEBUG_INFO("wpa_supplicant: len=%d\n", p->length);
3148 if (p->length < sizeof(struct ieee_param) || !p->pointer){
3153 param = kmalloc(p->length, GFP_KERNEL);
3158 if (copy_from_user(param, p->pointer, p->length)) {
3164 switch (param->cmd) {
3166 case IEEE_CMD_SET_WPA_PARAM:
3167 ret = ieee80211_wpa_set_param(ieee, param->u.wpa_param.name,
3168 param->u.wpa_param.value);
3171 case IEEE_CMD_SET_WPA_IE:
3172 ret = ieee80211_wpa_set_wpa_ie(ieee, param, p->length);
3175 case IEEE_CMD_SET_ENCRYPTION:
3176 ret = ieee80211_wpa_set_encryption(ieee, param, p->length);
3180 ret = ieee80211_wpa_mlme(ieee, param->u.mlme.command,
3181 param->u.mlme.reason_code);
3185 printk("Unknown WPA supplicant request: %d\n",param->cmd);
3190 if (ret == 0 && copy_to_user(p->pointer, param, p->length))
3200 void notify_wx_assoc_event(struct ieee80211_device *ieee)
3202 union iwreq_data wrqu;
3203 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
3204 if (ieee->state == IEEE80211_LINKED)
3205 memcpy(wrqu.ap_addr.sa_data, ieee->current_network.bssid, ETH_ALEN);
3207 memset(wrqu.ap_addr.sa_data, 0, ETH_ALEN);
3208 wireless_send_event(ieee->dev, SIOCGIWAP, &wrqu, NULL);
3211 EXPORT_SYMBOL(ieee80211_get_beacon);
3212 EXPORT_SYMBOL(ieee80211_wake_queue);
3213 EXPORT_SYMBOL(ieee80211_stop_queue);
3214 EXPORT_SYMBOL(ieee80211_reset_queue);
3215 EXPORT_SYMBOL(ieee80211_softmac_stop_protocol);
3216 EXPORT_SYMBOL(ieee80211_softmac_start_protocol);
3217 EXPORT_SYMBOL(ieee80211_is_shortslot);
3218 EXPORT_SYMBOL(ieee80211_is_54g);
3219 EXPORT_SYMBOL(ieee80211_wpa_supplicant_ioctl);
3220 EXPORT_SYMBOL(ieee80211_ps_tx_ack);
3221 EXPORT_SYMBOL(ieee80211_softmac_xmit);
3222 EXPORT_SYMBOL(ieee80211_stop_send_beacons);
3223 EXPORT_SYMBOL(notify_wx_assoc_event);
3224 EXPORT_SYMBOL(SendDisassociation);
3225 EXPORT_SYMBOL(ieee80211_disassociate);
3226 EXPORT_SYMBOL(ieee80211_start_send_beacons);
3227 EXPORT_SYMBOL(ieee80211_stop_scan);
3228 EXPORT_SYMBOL(ieee80211_send_probe_requests);
3229 EXPORT_SYMBOL(ieee80211_softmac_scan_syncro);
3230 EXPORT_SYMBOL(ieee80211_start_scan_syncro);
3231 //EXPORT_SYMBOL(ieee80211_sta_ps_send_null_frame);
projects / librecmc / linux-libre.git / blob