2 * mac80211 work implementation
4 * Copyright 2003-2008, Jouni Malinen <j@w1.fi>
5 * Copyright 2004, Instant802 Networks, Inc.
6 * Copyright 2005, Devicescape Software, Inc.
7 * Copyright 2006-2007 Jiri Benc <jbenc@suse.cz>
8 * Copyright 2007, Michael Wu <flamingice@sourmilk.net>
9 * Copyright 2009, Johannes Berg <johannes@sipsolutions.net>
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of the GNU General Public License version 2 as
13 * published by the Free Software Foundation.
16 #include <linux/delay.h>
17 #include <linux/if_ether.h>
18 #include <linux/skbuff.h>
19 #include <linux/if_arp.h>
20 #include <linux/etherdevice.h>
21 #include <linux/crc32.h>
22 #include <linux/slab.h>
23 #include <net/mac80211.h>
24 #include <asm/unaligned.h>
26 #include "ieee80211_i.h"
28 #include "driver-ops.h"
30 #define IEEE80211_AUTH_TIMEOUT (HZ / 5)
31 #define IEEE80211_AUTH_MAX_TRIES 3
32 #define IEEE80211_ASSOC_TIMEOUT (HZ / 5)
33 #define IEEE80211_ASSOC_MAX_TRIES 3
44 static inline void ASSERT_WORK_MTX(struct ieee80211_local *local)
46 lockdep_assert_held(&local->mtx);
50 * We can have multiple work items (and connection probing)
51 * scheduling this timer, but we need to take care to only
52 * reschedule it when it should fire _earlier_ than it was
53 * asked for before, or if it's not pending right now. This
54 * function ensures that. Note that it then is required to
55 * run this function for all timeouts after the first one
56 * has happened -- the work that runs from this timer will
59 static void run_again(struct ieee80211_local *local,
60 unsigned long timeout)
62 ASSERT_WORK_MTX(local);
64 if (!timer_pending(&local->work_timer) ||
65 time_before(timeout, local->work_timer.expires))
66 mod_timer(&local->work_timer, timeout);
69 void free_work(struct ieee80211_work *wk)
71 kfree_rcu(wk, rcu_head);
74 static int ieee80211_compatible_rates(const u8 *supp_rates, int supp_rates_len,
75 struct ieee80211_supported_band *sband,
81 for (i = 0; i < supp_rates_len; i++) {
82 int rate = (supp_rates[i] & 0x7F) * 5;
84 for (j = 0; j < sband->n_bitrates; j++)
85 if (sband->bitrates[j].bitrate == rate) {
95 /* frame sending functions */
97 static void ieee80211_add_ht_ie(struct sk_buff *skb, const u8 *ht_info_ie,
98 struct ieee80211_supported_band *sband,
99 struct ieee80211_channel *channel,
100 enum ieee80211_smps_mode smps)
102 struct ieee80211_ht_info *ht_info;
104 u32 flags = channel->flags;
105 u16 cap = sband->ht_cap.cap;
107 if (!sband->ht_cap.ht_supported)
113 if (ht_info_ie[1] < sizeof(struct ieee80211_ht_info))
116 ht_info = (struct ieee80211_ht_info *)(ht_info_ie + 2);
118 /* determine capability flags */
120 switch (ht_info->ht_param & IEEE80211_HT_PARAM_CHA_SEC_OFFSET) {
121 case IEEE80211_HT_PARAM_CHA_SEC_ABOVE:
122 if (flags & IEEE80211_CHAN_NO_HT40PLUS) {
123 cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
124 cap &= ~IEEE80211_HT_CAP_SGI_40;
127 case IEEE80211_HT_PARAM_CHA_SEC_BELOW:
128 if (flags & IEEE80211_CHAN_NO_HT40MINUS) {
129 cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
130 cap &= ~IEEE80211_HT_CAP_SGI_40;
135 /* set SM PS mode properly */
136 cap &= ~IEEE80211_HT_CAP_SM_PS;
138 case IEEE80211_SMPS_AUTOMATIC:
139 case IEEE80211_SMPS_NUM_MODES:
141 case IEEE80211_SMPS_OFF:
142 cap |= WLAN_HT_CAP_SM_PS_DISABLED <<
143 IEEE80211_HT_CAP_SM_PS_SHIFT;
145 case IEEE80211_SMPS_STATIC:
146 cap |= WLAN_HT_CAP_SM_PS_STATIC <<
147 IEEE80211_HT_CAP_SM_PS_SHIFT;
149 case IEEE80211_SMPS_DYNAMIC:
150 cap |= WLAN_HT_CAP_SM_PS_DYNAMIC <<
151 IEEE80211_HT_CAP_SM_PS_SHIFT;
155 /* reserve and fill IE */
156 pos = skb_put(skb, sizeof(struct ieee80211_ht_cap) + 2);
157 ieee80211_ie_build_ht_cap(pos, sband, cap);
160 static void ieee80211_send_assoc(struct ieee80211_sub_if_data *sdata,
161 struct ieee80211_work *wk)
163 struct ieee80211_local *local = sdata->local;
165 struct ieee80211_mgmt *mgmt;
167 size_t offset = 0, noffset;
168 int i, count, rates_len, supp_rates_len;
170 struct ieee80211_supported_band *sband;
173 sband = local->hw.wiphy->bands[wk->chan->band];
175 if (wk->assoc.supp_rates_len) {
177 * Get all rates supported by the device and the AP as
178 * some APs don't like getting a superset of their rates
179 * in the association request (e.g. D-Link DAP 1353 in
182 rates_len = ieee80211_compatible_rates(wk->assoc.supp_rates,
183 wk->assoc.supp_rates_len,
187 * In case AP not provide any supported rates information
188 * before association, we send information element(s) with
189 * all rates that we support.
192 rates_len = sband->n_bitrates;
195 skb = alloc_skb(local->hw.extra_tx_headroom +
196 sizeof(*mgmt) + /* bit too much but doesn't matter */
197 2 + wk->assoc.ssid_len + /* SSID */
198 4 + rates_len + /* (extended) rates */
199 4 + /* power capability */
200 2 + 2 * sband->n_channels + /* supported channels */
201 2 + sizeof(struct ieee80211_ht_cap) + /* HT */
202 wk->ie_len + /* extra IEs */
208 skb_reserve(skb, local->hw.extra_tx_headroom);
210 capab = WLAN_CAPABILITY_ESS;
212 if (sband->band == IEEE80211_BAND_2GHZ) {
213 if (!(local->hw.flags & IEEE80211_HW_2GHZ_SHORT_SLOT_INCAPABLE))
214 capab |= WLAN_CAPABILITY_SHORT_SLOT_TIME;
215 if (!(local->hw.flags & IEEE80211_HW_2GHZ_SHORT_PREAMBLE_INCAPABLE))
216 capab |= WLAN_CAPABILITY_SHORT_PREAMBLE;
219 if (wk->assoc.capability & WLAN_CAPABILITY_PRIVACY)
220 capab |= WLAN_CAPABILITY_PRIVACY;
222 if ((wk->assoc.capability & WLAN_CAPABILITY_SPECTRUM_MGMT) &&
223 (local->hw.flags & IEEE80211_HW_SPECTRUM_MGMT))
224 capab |= WLAN_CAPABILITY_SPECTRUM_MGMT;
226 mgmt = (struct ieee80211_mgmt *) skb_put(skb, 24);
228 memcpy(mgmt->da, wk->filter_ta, ETH_ALEN);
229 memcpy(mgmt->sa, sdata->vif.addr, ETH_ALEN);
230 memcpy(mgmt->bssid, wk->filter_ta, ETH_ALEN);
232 if (!is_zero_ether_addr(wk->assoc.prev_bssid)) {
234 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
235 IEEE80211_STYPE_REASSOC_REQ);
236 mgmt->u.reassoc_req.capab_info = cpu_to_le16(capab);
237 mgmt->u.reassoc_req.listen_interval =
238 cpu_to_le16(local->hw.conf.listen_interval);
239 memcpy(mgmt->u.reassoc_req.current_ap, wk->assoc.prev_bssid,
243 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
244 IEEE80211_STYPE_ASSOC_REQ);
245 mgmt->u.assoc_req.capab_info = cpu_to_le16(capab);
246 mgmt->u.assoc_req.listen_interval =
247 cpu_to_le16(local->hw.conf.listen_interval);
251 pos = skb_put(skb, 2 + wk->assoc.ssid_len);
252 *pos++ = WLAN_EID_SSID;
253 *pos++ = wk->assoc.ssid_len;
254 memcpy(pos, wk->assoc.ssid, wk->assoc.ssid_len);
256 /* add all rates which were marked to be used above */
257 supp_rates_len = rates_len;
258 if (supp_rates_len > 8)
261 pos = skb_put(skb, supp_rates_len + 2);
262 *pos++ = WLAN_EID_SUPP_RATES;
263 *pos++ = supp_rates_len;
266 for (i = 0; i < sband->n_bitrates; i++) {
267 if (BIT(i) & rates) {
268 int rate = sband->bitrates[i].bitrate;
269 *pos++ = (u8) (rate / 5);
275 if (rates_len > count) {
276 pos = skb_put(skb, rates_len - count + 2);
277 *pos++ = WLAN_EID_EXT_SUPP_RATES;
278 *pos++ = rates_len - count;
280 for (i++; i < sband->n_bitrates; i++) {
281 if (BIT(i) & rates) {
282 int rate = sband->bitrates[i].bitrate;
283 *pos++ = (u8) (rate / 5);
288 if (capab & WLAN_CAPABILITY_SPECTRUM_MGMT) {
289 /* 1. power capabilities */
290 pos = skb_put(skb, 4);
291 *pos++ = WLAN_EID_PWR_CAPABILITY;
293 *pos++ = 0; /* min tx power */
294 *pos++ = wk->chan->max_power; /* max tx power */
296 /* 2. supported channels */
297 /* TODO: get this in reg domain format */
298 pos = skb_put(skb, 2 * sband->n_channels + 2);
299 *pos++ = WLAN_EID_SUPPORTED_CHANNELS;
300 *pos++ = 2 * sband->n_channels;
301 for (i = 0; i < sband->n_channels; i++) {
302 *pos++ = ieee80211_frequency_to_channel(
303 sband->channels[i].center_freq);
304 *pos++ = 1; /* one channel in the subband*/
308 /* if present, add any custom IEs that go before HT */
309 if (wk->ie_len && wk->ie) {
310 static const u8 before_ht[] = {
313 WLAN_EID_EXT_SUPP_RATES,
314 WLAN_EID_PWR_CAPABILITY,
315 WLAN_EID_SUPPORTED_CHANNELS,
318 WLAN_EID_RRM_ENABLED_CAPABILITIES,
319 WLAN_EID_MOBILITY_DOMAIN,
320 WLAN_EID_SUPPORTED_REGULATORY_CLASSES,
322 noffset = ieee80211_ie_split(wk->ie, wk->ie_len,
323 before_ht, ARRAY_SIZE(before_ht),
325 pos = skb_put(skb, noffset - offset);
326 memcpy(pos, wk->ie + offset, noffset - offset);
330 if (wk->assoc.use_11n && wk->assoc.wmm_used &&
331 local->hw.queues >= 4)
332 ieee80211_add_ht_ie(skb, wk->assoc.ht_information_ie,
333 sband, wk->chan, wk->assoc.smps);
335 /* if present, add any custom non-vendor IEs that go after HT */
336 if (wk->ie_len && wk->ie) {
337 noffset = ieee80211_ie_split_vendor(wk->ie, wk->ie_len,
339 pos = skb_put(skb, noffset - offset);
340 memcpy(pos, wk->ie + offset, noffset - offset);
344 if (wk->assoc.wmm_used && local->hw.queues >= 4) {
345 if (wk->assoc.uapsd_used) {
346 qos_info = local->uapsd_queues;
347 qos_info |= (local->uapsd_max_sp_len <<
348 IEEE80211_WMM_IE_STA_QOSINFO_SP_SHIFT);
353 pos = skb_put(skb, 9);
354 *pos++ = WLAN_EID_VENDOR_SPECIFIC;
355 *pos++ = 7; /* len */
356 *pos++ = 0x00; /* Microsoft OUI 00:50:F2 */
359 *pos++ = 2; /* WME */
360 *pos++ = 0; /* WME info */
361 *pos++ = 1; /* WME ver */
365 /* add any remaining custom (i.e. vendor specific here) IEs */
366 if (wk->ie_len && wk->ie) {
367 noffset = wk->ie_len;
368 pos = skb_put(skb, noffset - offset);
369 memcpy(pos, wk->ie + offset, noffset - offset);
372 IEEE80211_SKB_CB(skb)->flags |= IEEE80211_TX_INTFL_DONT_ENCRYPT;
373 ieee80211_tx_skb(sdata, skb);
376 static void ieee80211_remove_auth_bss(struct ieee80211_local *local,
377 struct ieee80211_work *wk)
379 struct cfg80211_bss *cbss;
380 u16 capa_val = WLAN_CAPABILITY_ESS;
382 if (wk->probe_auth.privacy)
383 capa_val |= WLAN_CAPABILITY_PRIVACY;
385 cbss = cfg80211_get_bss(local->hw.wiphy, wk->chan, wk->filter_ta,
386 wk->probe_auth.ssid, wk->probe_auth.ssid_len,
387 WLAN_CAPABILITY_ESS | WLAN_CAPABILITY_PRIVACY,
392 cfg80211_unlink_bss(local->hw.wiphy, cbss);
393 cfg80211_put_bss(cbss);
396 static enum work_action __must_check
397 ieee80211_direct_probe(struct ieee80211_work *wk)
399 struct ieee80211_sub_if_data *sdata = wk->sdata;
400 struct ieee80211_local *local = sdata->local;
402 if (!wk->probe_auth.synced) {
403 int ret = drv_tx_sync(local, sdata, wk->filter_ta,
404 IEEE80211_TX_SYNC_AUTH);
406 return WORK_ACT_TIMEOUT;
408 wk->probe_auth.synced = true;
410 wk->probe_auth.tries++;
411 if (wk->probe_auth.tries > IEEE80211_AUTH_MAX_TRIES) {
412 printk(KERN_DEBUG "%s: direct probe to %pM timed out\n",
413 sdata->name, wk->filter_ta);
416 * Most likely AP is not in the range so remove the
417 * bss struct for that AP.
419 ieee80211_remove_auth_bss(local, wk);
421 return WORK_ACT_TIMEOUT;
424 printk(KERN_DEBUG "%s: direct probe to %pM (try %d/%i)\n",
425 sdata->name, wk->filter_ta, wk->probe_auth.tries,
426 IEEE80211_AUTH_MAX_TRIES);
429 * Direct probe is sent to broadcast address as some APs
430 * will not answer to direct packet in unassociated state.
432 ieee80211_send_probe_req(sdata, NULL, wk->probe_auth.ssid,
433 wk->probe_auth.ssid_len, NULL, 0,
434 (u32) -1, true, false);
436 wk->timeout = jiffies + IEEE80211_AUTH_TIMEOUT;
437 run_again(local, wk->timeout);
439 return WORK_ACT_NONE;
443 static enum work_action __must_check
444 ieee80211_authenticate(struct ieee80211_work *wk)
446 struct ieee80211_sub_if_data *sdata = wk->sdata;
447 struct ieee80211_local *local = sdata->local;
449 if (!wk->probe_auth.synced) {
450 int ret = drv_tx_sync(local, sdata, wk->filter_ta,
451 IEEE80211_TX_SYNC_AUTH);
453 return WORK_ACT_TIMEOUT;
455 wk->probe_auth.synced = true;
457 wk->probe_auth.tries++;
458 if (wk->probe_auth.tries > IEEE80211_AUTH_MAX_TRIES) {
459 printk(KERN_DEBUG "%s: authentication with %pM"
460 " timed out\n", sdata->name, wk->filter_ta);
463 * Most likely AP is not in the range so remove the
464 * bss struct for that AP.
466 ieee80211_remove_auth_bss(local, wk);
468 return WORK_ACT_TIMEOUT;
471 printk(KERN_DEBUG "%s: authenticate with %pM (try %d)\n",
472 sdata->name, wk->filter_ta, wk->probe_auth.tries);
474 ieee80211_send_auth(sdata, 1, wk->probe_auth.algorithm, wk->ie,
475 wk->ie_len, wk->filter_ta, NULL, 0, 0);
476 wk->probe_auth.transaction = 2;
478 wk->timeout = jiffies + IEEE80211_AUTH_TIMEOUT;
479 run_again(local, wk->timeout);
481 return WORK_ACT_NONE;
484 static enum work_action __must_check
485 ieee80211_associate(struct ieee80211_work *wk)
487 struct ieee80211_sub_if_data *sdata = wk->sdata;
488 struct ieee80211_local *local = sdata->local;
490 if (!wk->assoc.synced) {
491 int ret = drv_tx_sync(local, sdata, wk->filter_ta,
492 IEEE80211_TX_SYNC_ASSOC);
494 return WORK_ACT_TIMEOUT;
496 wk->assoc.synced = true;
499 if (wk->assoc.tries > IEEE80211_ASSOC_MAX_TRIES) {
500 printk(KERN_DEBUG "%s: association with %pM"
502 sdata->name, wk->filter_ta);
505 * Most likely AP is not in the range so remove the
506 * bss struct for that AP.
509 cfg80211_unlink_bss(local->hw.wiphy, wk->assoc.bss);
511 return WORK_ACT_TIMEOUT;
514 printk(KERN_DEBUG "%s: associate with %pM (try %d)\n",
515 sdata->name, wk->filter_ta, wk->assoc.tries);
516 ieee80211_send_assoc(sdata, wk);
518 wk->timeout = jiffies + IEEE80211_ASSOC_TIMEOUT;
519 run_again(local, wk->timeout);
521 return WORK_ACT_NONE;
524 static enum work_action __must_check
525 ieee80211_remain_on_channel_timeout(struct ieee80211_work *wk)
528 * First time we run, do nothing -- the generic code will
529 * have switched to the right channel etc.
532 wk->timeout = jiffies + msecs_to_jiffies(wk->remain.duration);
534 cfg80211_ready_on_channel(wk->sdata->dev, (unsigned long) wk,
535 wk->chan, wk->chan_type,
536 wk->remain.duration, GFP_KERNEL);
538 return WORK_ACT_NONE;
541 return WORK_ACT_TIMEOUT;
544 static enum work_action __must_check
545 ieee80211_offchannel_tx(struct ieee80211_work *wk)
548 wk->timeout = jiffies + msecs_to_jiffies(wk->offchan_tx.wait);
551 * After this, offchan_tx.frame remains but now is no
552 * longer a valid pointer -- we still need it as the
553 * cookie for canceling this work/status matching.
555 ieee80211_tx_skb(wk->sdata, wk->offchan_tx.frame);
557 return WORK_ACT_NONE;
560 return WORK_ACT_TIMEOUT;
563 static enum work_action __must_check
564 ieee80211_assoc_beacon_wait(struct ieee80211_work *wk)
567 return WORK_ACT_TIMEOUT;
570 * Wait up to one beacon interval ...
571 * should this be more if we miss one?
573 printk(KERN_DEBUG "%s: waiting for beacon from %pM\n",
574 wk->sdata->name, wk->filter_ta);
575 wk->timeout = TU_TO_EXP_TIME(wk->assoc.bss->beacon_interval);
576 return WORK_ACT_NONE;
579 static void ieee80211_auth_challenge(struct ieee80211_work *wk,
580 struct ieee80211_mgmt *mgmt,
583 struct ieee80211_sub_if_data *sdata = wk->sdata;
585 struct ieee802_11_elems elems;
587 pos = mgmt->u.auth.variable;
588 ieee802_11_parse_elems(pos, len - (pos - (u8 *) mgmt), &elems);
589 if (!elems.challenge)
591 ieee80211_send_auth(sdata, 3, wk->probe_auth.algorithm,
592 elems.challenge - 2, elems.challenge_len + 2,
593 wk->filter_ta, wk->probe_auth.key,
594 wk->probe_auth.key_len, wk->probe_auth.key_idx);
595 wk->probe_auth.transaction = 4;
598 static enum work_action __must_check
599 ieee80211_rx_mgmt_auth(struct ieee80211_work *wk,
600 struct ieee80211_mgmt *mgmt, size_t len)
602 u16 auth_alg, auth_transaction, status_code;
604 if (wk->type != IEEE80211_WORK_AUTH)
605 return WORK_ACT_MISMATCH;
608 return WORK_ACT_NONE;
610 auth_alg = le16_to_cpu(mgmt->u.auth.auth_alg);
611 auth_transaction = le16_to_cpu(mgmt->u.auth.auth_transaction);
612 status_code = le16_to_cpu(mgmt->u.auth.status_code);
614 if (auth_alg != wk->probe_auth.algorithm ||
615 auth_transaction != wk->probe_auth.transaction)
616 return WORK_ACT_NONE;
618 if (status_code != WLAN_STATUS_SUCCESS) {
619 printk(KERN_DEBUG "%s: %pM denied authentication (status %d)\n",
620 wk->sdata->name, mgmt->sa, status_code);
621 return WORK_ACT_DONE;
624 switch (wk->probe_auth.algorithm) {
629 case WLAN_AUTH_SHARED_KEY:
630 if (wk->probe_auth.transaction != 4) {
631 ieee80211_auth_challenge(wk, mgmt, len);
632 /* need another frame */
633 return WORK_ACT_NONE;
638 return WORK_ACT_NONE;
641 printk(KERN_DEBUG "%s: authenticated\n", wk->sdata->name);
642 return WORK_ACT_DONE;
645 static enum work_action __must_check
646 ieee80211_rx_mgmt_assoc_resp(struct ieee80211_work *wk,
647 struct ieee80211_mgmt *mgmt, size_t len,
650 struct ieee80211_sub_if_data *sdata = wk->sdata;
651 struct ieee80211_local *local = sdata->local;
652 u16 capab_info, status_code, aid;
653 struct ieee802_11_elems elems;
656 if (wk->type != IEEE80211_WORK_ASSOC)
657 return WORK_ACT_MISMATCH;
660 * AssocResp and ReassocResp have identical structure, so process both
661 * of them in this function.
665 return WORK_ACT_NONE;
667 capab_info = le16_to_cpu(mgmt->u.assoc_resp.capab_info);
668 status_code = le16_to_cpu(mgmt->u.assoc_resp.status_code);
669 aid = le16_to_cpu(mgmt->u.assoc_resp.aid);
671 printk(KERN_DEBUG "%s: RX %sssocResp from %pM (capab=0x%x "
672 "status=%d aid=%d)\n",
673 sdata->name, reassoc ? "Rea" : "A", mgmt->sa,
674 capab_info, status_code, (u16)(aid & ~(BIT(15) | BIT(14))));
676 pos = mgmt->u.assoc_resp.variable;
677 ieee802_11_parse_elems(pos, len - (pos - (u8 *) mgmt), &elems);
679 if (status_code == WLAN_STATUS_ASSOC_REJECTED_TEMPORARILY &&
680 elems.timeout_int && elems.timeout_int_len == 5 &&
681 elems.timeout_int[0] == WLAN_TIMEOUT_ASSOC_COMEBACK) {
683 tu = get_unaligned_le32(elems.timeout_int + 1);
684 ms = tu * 1024 / 1000;
685 printk(KERN_DEBUG "%s: %pM rejected association temporarily; "
686 "comeback duration %u TU (%u ms)\n",
687 sdata->name, mgmt->sa, tu, ms);
688 wk->timeout = jiffies + msecs_to_jiffies(ms);
689 if (ms > IEEE80211_ASSOC_TIMEOUT)
690 run_again(local, wk->timeout);
691 return WORK_ACT_NONE;
694 if (status_code != WLAN_STATUS_SUCCESS)
695 printk(KERN_DEBUG "%s: %pM denied association (code=%d)\n",
696 sdata->name, mgmt->sa, status_code);
698 printk(KERN_DEBUG "%s: associated\n", sdata->name);
700 return WORK_ACT_DONE;
703 static enum work_action __must_check
704 ieee80211_rx_mgmt_probe_resp(struct ieee80211_work *wk,
705 struct ieee80211_mgmt *mgmt, size_t len,
706 struct ieee80211_rx_status *rx_status)
708 struct ieee80211_sub_if_data *sdata = wk->sdata;
709 struct ieee80211_local *local = sdata->local;
712 ASSERT_WORK_MTX(local);
714 if (wk->type != IEEE80211_WORK_DIRECT_PROBE)
715 return WORK_ACT_MISMATCH;
718 return WORK_ACT_NONE;
720 baselen = (u8 *) mgmt->u.probe_resp.variable - (u8 *) mgmt;
722 return WORK_ACT_NONE;
724 printk(KERN_DEBUG "%s: direct probe responded\n", sdata->name);
725 return WORK_ACT_DONE;
728 static enum work_action __must_check
729 ieee80211_rx_mgmt_beacon(struct ieee80211_work *wk,
730 struct ieee80211_mgmt *mgmt, size_t len)
732 struct ieee80211_sub_if_data *sdata = wk->sdata;
733 struct ieee80211_local *local = sdata->local;
735 ASSERT_WORK_MTX(local);
737 if (wk->type != IEEE80211_WORK_ASSOC_BEACON_WAIT)
738 return WORK_ACT_MISMATCH;
741 return WORK_ACT_NONE;
743 printk(KERN_DEBUG "%s: beacon received\n", sdata->name);
744 return WORK_ACT_DONE;
747 static void ieee80211_work_rx_queued_mgmt(struct ieee80211_local *local,
750 struct ieee80211_rx_status *rx_status;
751 struct ieee80211_mgmt *mgmt;
752 struct ieee80211_work *wk;
753 enum work_action rma = WORK_ACT_NONE;
756 rx_status = (struct ieee80211_rx_status *) skb->cb;
757 mgmt = (struct ieee80211_mgmt *) skb->data;
758 fc = le16_to_cpu(mgmt->frame_control);
760 mutex_lock(&local->mtx);
762 list_for_each_entry(wk, &local->work_list, list) {
763 const u8 *bssid = NULL;
766 case IEEE80211_WORK_DIRECT_PROBE:
767 case IEEE80211_WORK_AUTH:
768 case IEEE80211_WORK_ASSOC:
769 case IEEE80211_WORK_ASSOC_BEACON_WAIT:
770 bssid = wk->filter_ta;
777 * Before queuing, we already verified mgmt->sa,
778 * so this is needed just for matching.
780 if (compare_ether_addr(bssid, mgmt->bssid))
783 switch (fc & IEEE80211_FCTL_STYPE) {
784 case IEEE80211_STYPE_BEACON:
785 rma = ieee80211_rx_mgmt_beacon(wk, mgmt, skb->len);
787 case IEEE80211_STYPE_PROBE_RESP:
788 rma = ieee80211_rx_mgmt_probe_resp(wk, mgmt, skb->len,
791 case IEEE80211_STYPE_AUTH:
792 rma = ieee80211_rx_mgmt_auth(wk, mgmt, skb->len);
794 case IEEE80211_STYPE_ASSOC_RESP:
795 rma = ieee80211_rx_mgmt_assoc_resp(wk, mgmt,
798 case IEEE80211_STYPE_REASSOC_RESP:
799 rma = ieee80211_rx_mgmt_assoc_resp(wk, mgmt,
808 * We've either received an unexpected frame, or we have
809 * multiple work items and need to match the frame to the
812 if (rma == WORK_ACT_MISMATCH)
816 * We've processed this frame for that work, so it can't
817 * belong to another work struct.
818 * NB: this is also required for correctness for 'rma'!
824 case WORK_ACT_MISMATCH:
825 /* ignore this unmatched frame */
830 list_del_rcu(&wk->list);
833 WARN(1, "unexpected: %d", rma);
836 mutex_unlock(&local->mtx);
838 if (rma != WORK_ACT_DONE)
841 switch (wk->done(wk, skb)) {
842 case WORK_DONE_DESTROY:
845 case WORK_DONE_REQUEUE:
847 wk->started = false; /* restart */
848 mutex_lock(&local->mtx);
849 list_add_tail(&wk->list, &local->work_list);
850 mutex_unlock(&local->mtx);
857 static bool ieee80211_work_ct_coexists(enum nl80211_channel_type wk_ct,
858 enum nl80211_channel_type oper_ct)
861 case NL80211_CHAN_NO_HT:
863 case NL80211_CHAN_HT20:
864 if (oper_ct != NL80211_CHAN_NO_HT)
867 case NL80211_CHAN_HT40MINUS:
868 case NL80211_CHAN_HT40PLUS:
869 return (wk_ct == oper_ct);
871 WARN_ON(1); /* shouldn't get here */
875 static enum nl80211_channel_type
876 ieee80211_calc_ct(enum nl80211_channel_type wk_ct,
877 enum nl80211_channel_type oper_ct)
880 case NL80211_CHAN_NO_HT:
882 case NL80211_CHAN_HT20:
883 if (oper_ct != NL80211_CHAN_NO_HT)
886 case NL80211_CHAN_HT40MINUS:
887 case NL80211_CHAN_HT40PLUS:
890 WARN_ON(1); /* shouldn't get here */
895 static void ieee80211_work_timer(unsigned long data)
897 struct ieee80211_local *local = (void *) data;
899 if (local->quiescing)
902 ieee80211_queue_work(&local->hw, &local->work_work);
905 static void ieee80211_work_work(struct work_struct *work)
907 struct ieee80211_local *local =
908 container_of(work, struct ieee80211_local, work_work);
910 struct ieee80211_work *wk, *tmp;
911 LIST_HEAD(free_work);
912 enum work_action rma;
913 bool remain_off_channel = false;
919 * ieee80211_queue_work() should have picked up most cases,
920 * here we'll pick the rest.
922 if (WARN(local->suspended, "work scheduled while going to suspend\n"))
925 /* first process frames to avoid timing out while a frame is pending */
926 while ((skb = skb_dequeue(&local->work_skb_queue)))
927 ieee80211_work_rx_queued_mgmt(local, skb);
929 mutex_lock(&local->mtx);
931 ieee80211_recalc_idle(local);
933 list_for_each_entry_safe(wk, tmp, &local->work_list, list) {
934 bool started = wk->started;
936 /* mark work as started if it's on the current off-channel */
937 if (!started && local->tmp_channel &&
938 wk->chan == local->tmp_channel &&
939 wk->chan_type == local->tmp_channel_type) {
941 wk->timeout = jiffies;
944 if (!started && !local->tmp_channel) {
946 bool tmp_chan_changed = false;
948 enum nl80211_channel_type wk_ct;
949 on_oper_chan = ieee80211_cfg_on_oper_channel(local);
951 /* Work with existing channel type if possible. */
952 wk_ct = wk->chan_type;
953 if (wk->chan == local->hw.conf.channel)
954 wk_ct = ieee80211_calc_ct(wk->chan_type,
955 local->hw.conf.channel_type);
957 if (local->tmp_channel)
958 if ((local->tmp_channel != wk->chan) ||
959 (local->tmp_channel_type != wk_ct))
960 tmp_chan_changed = true;
962 local->tmp_channel = wk->chan;
963 local->tmp_channel_type = wk_ct;
965 * Leave the station vifs in awake mode if they
966 * happen to be on the same channel as
967 * the requested channel.
969 on_oper_chan2 = ieee80211_cfg_on_oper_channel(local);
970 if (on_oper_chan != on_oper_chan2) {
972 /* going off oper channel, PS too */
973 ieee80211_offchannel_stop_vifs(local,
975 ieee80211_hw_config(local, 0);
977 /* going on channel, but leave PS
979 ieee80211_hw_config(local, 0);
980 ieee80211_offchannel_return(local,
984 } else if (tmp_chan_changed)
985 /* Still off-channel, but on some other
986 * channel, so update hardware.
987 * PS should already be off-channel.
989 ieee80211_hw_config(local, 0);
992 wk->timeout = jiffies;
995 /* don't try to work with items that aren't started */
999 if (time_is_after_jiffies(wk->timeout)) {
1001 * This work item isn't supposed to be worked on
1002 * right now, but take care to adjust the timer
1005 run_again(local, wk->timeout);
1013 rma = WORK_ACT_NONE;
1015 case IEEE80211_WORK_ABORT:
1016 rma = WORK_ACT_TIMEOUT;
1018 case IEEE80211_WORK_DIRECT_PROBE:
1019 rma = ieee80211_direct_probe(wk);
1021 case IEEE80211_WORK_AUTH:
1022 rma = ieee80211_authenticate(wk);
1024 case IEEE80211_WORK_ASSOC:
1025 rma = ieee80211_associate(wk);
1027 case IEEE80211_WORK_REMAIN_ON_CHANNEL:
1028 rma = ieee80211_remain_on_channel_timeout(wk);
1030 case IEEE80211_WORK_OFFCHANNEL_TX:
1031 rma = ieee80211_offchannel_tx(wk);
1033 case IEEE80211_WORK_ASSOC_BEACON_WAIT:
1034 rma = ieee80211_assoc_beacon_wait(wk);
1038 wk->started = started;
1042 /* might have changed the timeout */
1043 run_again(local, wk->timeout);
1045 case WORK_ACT_TIMEOUT:
1046 list_del_rcu(&wk->list);
1048 list_add(&wk->list, &free_work);
1051 WARN(1, "unexpected: %d", rma);
1055 list_for_each_entry(wk, &local->work_list, list) {
1058 if (wk->chan != local->tmp_channel)
1060 if (!ieee80211_work_ct_coexists(wk->chan_type,
1061 local->tmp_channel_type))
1063 remain_off_channel = true;
1066 if (!remain_off_channel && local->tmp_channel) {
1067 local->tmp_channel = NULL;
1068 /* If tmp_channel wasn't operating channel, then
1069 * we need to go back on-channel.
1070 * NOTE: If we can ever be here while scannning,
1071 * or if the hw_config() channel config logic changes,
1072 * then we may need to do a more thorough check to see if
1073 * we still need to do a hardware config. Currently,
1074 * we cannot be here while scanning, however.
1076 if (!ieee80211_cfg_on_oper_channel(local))
1077 ieee80211_hw_config(local, 0);
1079 /* At the least, we need to disable offchannel_ps,
1080 * so just go ahead and run the entire offchannel
1081 * return logic here. We *could* skip enabling
1082 * beaconing if we were already on-oper-channel
1083 * as a future optimization.
1085 ieee80211_offchannel_return(local, true, true);
1087 /* give connection some time to breathe */
1088 run_again(local, jiffies + HZ/2);
1091 if (list_empty(&local->work_list) && local->scan_req &&
1093 ieee80211_queue_delayed_work(&local->hw,
1095 round_jiffies_relative(0));
1097 ieee80211_recalc_idle(local);
1099 mutex_unlock(&local->mtx);
1101 list_for_each_entry_safe(wk, tmp, &free_work, list) {
1103 list_del(&wk->list);
1108 void ieee80211_add_work(struct ieee80211_work *wk)
1110 struct ieee80211_local *local;
1112 if (WARN_ON(!wk->chan))
1115 if (WARN_ON(!wk->sdata))
1118 if (WARN_ON(!wk->done))
1121 if (WARN_ON(!ieee80211_sdata_running(wk->sdata)))
1124 wk->started = false;
1126 local = wk->sdata->local;
1127 mutex_lock(&local->mtx);
1128 list_add_tail(&wk->list, &local->work_list);
1129 mutex_unlock(&local->mtx);
1131 ieee80211_queue_work(&local->hw, &local->work_work);
1134 void ieee80211_work_init(struct ieee80211_local *local)
1136 INIT_LIST_HEAD(&local->work_list);
1137 setup_timer(&local->work_timer, ieee80211_work_timer,
1138 (unsigned long)local);
1139 INIT_WORK(&local->work_work, ieee80211_work_work);
1140 skb_queue_head_init(&local->work_skb_queue);
1143 void ieee80211_work_purge(struct ieee80211_sub_if_data *sdata)
1145 struct ieee80211_local *local = sdata->local;
1146 struct ieee80211_work *wk;
1147 bool cleanup = false;
1149 mutex_lock(&local->mtx);
1150 list_for_each_entry(wk, &local->work_list, list) {
1151 if (wk->sdata != sdata)
1154 wk->type = IEEE80211_WORK_ABORT;
1156 wk->timeout = jiffies;
1158 mutex_unlock(&local->mtx);
1160 /* run cleanups etc. */
1162 ieee80211_work_work(&local->work_work);
1164 mutex_lock(&local->mtx);
1165 list_for_each_entry(wk, &local->work_list, list) {
1166 if (wk->sdata != sdata)
1171 mutex_unlock(&local->mtx);
1174 ieee80211_rx_result ieee80211_work_rx_mgmt(struct ieee80211_sub_if_data *sdata,
1175 struct sk_buff *skb)
1177 struct ieee80211_local *local = sdata->local;
1178 struct ieee80211_mgmt *mgmt;
1179 struct ieee80211_work *wk;
1183 return RX_DROP_MONITOR;
1185 mgmt = (struct ieee80211_mgmt *) skb->data;
1186 fc = le16_to_cpu(mgmt->frame_control);
1188 list_for_each_entry_rcu(wk, &local->work_list, list) {
1189 if (sdata != wk->sdata)
1191 if (compare_ether_addr(wk->filter_ta, mgmt->sa))
1193 if (compare_ether_addr(wk->filter_ta, mgmt->bssid))
1196 switch (fc & IEEE80211_FCTL_STYPE) {
1197 case IEEE80211_STYPE_AUTH:
1198 case IEEE80211_STYPE_PROBE_RESP:
1199 case IEEE80211_STYPE_ASSOC_RESP:
1200 case IEEE80211_STYPE_REASSOC_RESP:
1201 case IEEE80211_STYPE_BEACON:
1202 skb_queue_tail(&local->work_skb_queue, skb);
1203 ieee80211_queue_work(&local->hw, &local->work_work);
1211 static enum work_done_result ieee80211_remain_done(struct ieee80211_work *wk,
1212 struct sk_buff *skb)
1215 * We are done serving the remain-on-channel command.
1217 cfg80211_remain_on_channel_expired(wk->sdata->dev, (unsigned long) wk,
1218 wk->chan, wk->chan_type,
1221 return WORK_DONE_DESTROY;
1224 int ieee80211_wk_remain_on_channel(struct ieee80211_sub_if_data *sdata,
1225 struct ieee80211_channel *chan,
1226 enum nl80211_channel_type channel_type,
1227 unsigned int duration, u64 *cookie)
1229 struct ieee80211_work *wk;
1231 wk = kzalloc(sizeof(*wk), GFP_KERNEL);
1235 wk->type = IEEE80211_WORK_REMAIN_ON_CHANNEL;
1237 wk->chan_type = channel_type;
1239 wk->done = ieee80211_remain_done;
1241 wk->remain.duration = duration;
1243 *cookie = (unsigned long) wk;
1245 ieee80211_add_work(wk);
1250 int ieee80211_wk_cancel_remain_on_channel(struct ieee80211_sub_if_data *sdata,
1253 struct ieee80211_local *local = sdata->local;
1254 struct ieee80211_work *wk, *tmp;
1257 mutex_lock(&local->mtx);
1258 list_for_each_entry_safe(wk, tmp, &local->work_list, list) {
1259 if ((unsigned long) wk == cookie) {
1260 wk->timeout = jiffies;
1265 mutex_unlock(&local->mtx);
1270 ieee80211_queue_work(&local->hw, &local->work_work);
projects / karo-tx-linux.git / blob