2 * This file contains the handling of command
3 * responses as well as events generated by firmware.
5 #include <linux/delay.h>
6 #include <linux/sched.h>
7 #include <linux/if_arp.h>
8 #include <linux/netdevice.h>
9 #include <asm/unaligned.h>
10 #include <net/iw_handler.h>
21 * @brief This function handles disconnect event. it
22 * reports disconnect to upper layer, clean tx/rx packets,
23 * reset link state etc.
25 * @param priv A pointer to struct lbs_private structure
28 void lbs_mac_event_disconnected(struct lbs_private *priv)
30 union iwreq_data wrqu;
32 if (priv->connect_status != LBS_CONNECTED)
35 lbs_deb_enter(LBS_DEB_ASSOC);
37 memset(wrqu.ap_addr.sa_data, 0x00, ETH_ALEN);
38 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
41 * Cisco AP sends EAP failure and de-auth in less than 0.5 ms.
42 * It causes problem in the Supplicant
45 msleep_interruptible(1000);
46 wireless_send_event(priv->dev, SIOCGIWAP, &wrqu, NULL);
48 /* report disconnect to upper layer */
49 netif_stop_queue(priv->dev);
50 netif_carrier_off(priv->dev);
52 /* Free Tx and Rx packets */
53 kfree_skb(priv->currenttxskb);
54 priv->currenttxskb = NULL;
55 priv->tx_pending_len = 0;
57 /* reset SNR/NF/RSSI values */
58 memset(priv->SNR, 0x00, sizeof(priv->SNR));
59 memset(priv->NF, 0x00, sizeof(priv->NF));
60 memset(priv->RSSI, 0x00, sizeof(priv->RSSI));
61 memset(priv->rawSNR, 0x00, sizeof(priv->rawSNR));
62 memset(priv->rawNF, 0x00, sizeof(priv->rawNF));
65 priv->connect_status = LBS_DISCONNECTED;
67 /* Clear out associated SSID and BSSID since connection is
70 memset(&priv->curbssparams.bssid, 0, ETH_ALEN);
71 memset(&priv->curbssparams.ssid, 0, IEEE80211_MAX_SSID_LEN);
72 priv->curbssparams.ssid_len = 0;
74 if (priv->psstate != PS_STATE_FULL_POWER) {
75 /* make firmware to exit PS mode */
76 lbs_deb_cmd("disconnected, so exit PS mode\n");
77 lbs_ps_wakeup(priv, 0);
79 lbs_deb_leave(LBS_DEB_ASSOC);
83 * @brief This function handles MIC failure event.
85 * @param priv A pointer to struct lbs_private structure
86 * @para event the event id
89 static void handle_mic_failureevent(struct lbs_private *priv, u32 event)
93 lbs_deb_enter(LBS_DEB_CMD);
94 memset(buf, 0, sizeof(buf));
96 sprintf(buf, "%s", "MLME-MICHAELMICFAILURE.indication ");
98 if (event == MACREG_INT_CODE_MIC_ERR_UNICAST) {
99 strcat(buf, "unicast ");
101 strcat(buf, "multicast ");
104 lbs_send_iwevcustom_event(priv, buf);
105 lbs_deb_leave(LBS_DEB_CMD);
108 static int lbs_ret_reg_access(struct lbs_private *priv,
109 u16 type, struct cmd_ds_command *resp)
113 lbs_deb_enter(LBS_DEB_CMD);
116 case CMD_RET(CMD_MAC_REG_ACCESS):
118 struct cmd_ds_mac_reg_access *reg = &resp->params.macreg;
120 priv->offsetvalue.offset = (u32)le16_to_cpu(reg->offset);
121 priv->offsetvalue.value = le32_to_cpu(reg->value);
125 case CMD_RET(CMD_BBP_REG_ACCESS):
127 struct cmd_ds_bbp_reg_access *reg = &resp->params.bbpreg;
129 priv->offsetvalue.offset = (u32)le16_to_cpu(reg->offset);
130 priv->offsetvalue.value = reg->value;
134 case CMD_RET(CMD_RF_REG_ACCESS):
136 struct cmd_ds_rf_reg_access *reg = &resp->params.rfreg;
138 priv->offsetvalue.offset = (u32)le16_to_cpu(reg->offset);
139 priv->offsetvalue.value = reg->value;
147 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
151 static inline int handle_cmd_response(struct lbs_private *priv,
152 struct cmd_header *cmd_response)
154 struct cmd_ds_command *resp = (struct cmd_ds_command *) cmd_response;
157 uint16_t respcmd = le16_to_cpu(resp->command);
159 lbs_deb_enter(LBS_DEB_HOST);
162 case CMD_RET(CMD_MAC_REG_ACCESS):
163 case CMD_RET(CMD_BBP_REG_ACCESS):
164 case CMD_RET(CMD_RF_REG_ACCESS):
165 ret = lbs_ret_reg_access(priv, respcmd, resp);
168 case CMD_RET(CMD_802_11_SET_AFC):
169 case CMD_RET(CMD_802_11_GET_AFC):
170 spin_lock_irqsave(&priv->driver_lock, flags);
171 memmove((void *)priv->cur_cmd->callback_arg, &resp->params.afc,
172 sizeof(struct cmd_ds_802_11_afc));
173 spin_unlock_irqrestore(&priv->driver_lock, flags);
177 case CMD_RET(CMD_802_11_BEACON_STOP):
180 case CMD_RET(CMD_802_11_RSSI):
181 ret = lbs_ret_802_11_rssi(priv, resp);
184 case CMD_RET(CMD_802_11_TPC_CFG):
185 spin_lock_irqsave(&priv->driver_lock, flags);
186 memmove((void *)priv->cur_cmd->callback_arg, &resp->params.tpccfg,
187 sizeof(struct cmd_ds_802_11_tpc_cfg));
188 spin_unlock_irqrestore(&priv->driver_lock, flags);
191 case CMD_RET(CMD_GET_TSF):
192 spin_lock_irqsave(&priv->driver_lock, flags);
193 memcpy((void *)priv->cur_cmd->callback_arg,
194 &resp->params.gettsf.tsfvalue, sizeof(u64));
195 spin_unlock_irqrestore(&priv->driver_lock, flags);
197 case CMD_RET(CMD_BT_ACCESS):
198 spin_lock_irqsave(&priv->driver_lock, flags);
199 if (priv->cur_cmd->callback_arg)
200 memcpy((void *)priv->cur_cmd->callback_arg,
201 &resp->params.bt.addr1, 2 * ETH_ALEN);
202 spin_unlock_irqrestore(&priv->driver_lock, flags);
204 case CMD_RET(CMD_FWT_ACCESS):
205 spin_lock_irqsave(&priv->driver_lock, flags);
206 if (priv->cur_cmd->callback_arg)
207 memcpy((void *)priv->cur_cmd->callback_arg, &resp->params.fwt,
208 sizeof(resp->params.fwt));
209 spin_unlock_irqrestore(&priv->driver_lock, flags);
211 case CMD_RET(CMD_802_11_BEACON_CTRL):
212 ret = lbs_ret_802_11_bcn_ctrl(priv, resp);
216 lbs_pr_err("CMD_RESP: unknown cmd response 0x%04x\n",
217 le16_to_cpu(resp->command));
220 lbs_deb_leave(LBS_DEB_HOST);
224 int lbs_process_command_response(struct lbs_private *priv, u8 *data, u32 len)
226 uint16_t respcmd, curcmd;
227 struct cmd_header *resp;
232 lbs_deb_enter(LBS_DEB_HOST);
234 mutex_lock(&priv->lock);
235 spin_lock_irqsave(&priv->driver_lock, flags);
237 if (!priv->cur_cmd) {
238 lbs_deb_host("CMD_RESP: cur_cmd is NULL\n");
240 spin_unlock_irqrestore(&priv->driver_lock, flags);
245 curcmd = le16_to_cpu(priv->cur_cmd->cmdbuf->command);
246 respcmd = le16_to_cpu(resp->command);
247 result = le16_to_cpu(resp->result);
249 lbs_deb_cmd("CMD_RESP: response 0x%04x, seq %d, size %d\n",
250 respcmd, le16_to_cpu(resp->seqnum), len);
251 lbs_deb_hex(LBS_DEB_CMD, "CMD_RESP", (void *) resp, len);
253 if (resp->seqnum != priv->cur_cmd->cmdbuf->seqnum) {
254 lbs_pr_info("Received CMD_RESP with invalid sequence %d (expected %d)\n",
255 le16_to_cpu(resp->seqnum), le16_to_cpu(priv->cur_cmd->cmdbuf->seqnum));
256 spin_unlock_irqrestore(&priv->driver_lock, flags);
260 if (respcmd != CMD_RET(curcmd) &&
261 respcmd != CMD_RET_802_11_ASSOCIATE && curcmd != CMD_802_11_ASSOCIATE) {
262 lbs_pr_info("Invalid CMD_RESP %x to command %x!\n", respcmd, curcmd);
263 spin_unlock_irqrestore(&priv->driver_lock, flags);
268 if (resp->result == cpu_to_le16(0x0004)) {
269 /* 0x0004 means -EAGAIN. Drop the response, let it time out
270 and be resubmitted */
271 lbs_pr_info("Firmware returns DEFER to command %x. Will let it time out...\n",
272 le16_to_cpu(resp->command));
273 spin_unlock_irqrestore(&priv->driver_lock, flags);
278 /* Now we got response from FW, cancel the command timer */
279 del_timer(&priv->command_timer);
280 priv->cmd_timed_out = 0;
281 if (priv->nr_retries) {
282 lbs_pr_info("Received result %x to command %x after %d retries\n",
283 result, curcmd, priv->nr_retries);
284 priv->nr_retries = 0;
287 /* Store the response code to cur_cmd_retcode. */
288 priv->cur_cmd_retcode = result;
290 if (respcmd == CMD_RET(CMD_802_11_PS_MODE)) {
291 struct cmd_ds_802_11_ps_mode *psmode = (void *) &resp[1];
292 u16 action = le16_to_cpu(psmode->action);
295 "CMD_RESP: PS_MODE cmd reply result 0x%x, action 0x%x\n",
299 lbs_deb_host("CMD_RESP: PS command failed with 0x%x\n",
302 * We should not re-try enter-ps command in
303 * ad-hoc mode. It takes place in
304 * lbs_execute_next_command().
306 if (priv->mode == IW_MODE_ADHOC &&
307 action == CMD_SUBCMD_ENTER_PS)
308 priv->psmode = LBS802_11POWERMODECAM;
309 } else if (action == CMD_SUBCMD_ENTER_PS) {
310 priv->needtowakeup = 0;
311 priv->psstate = PS_STATE_AWAKE;
313 lbs_deb_host("CMD_RESP: ENTER_PS command response\n");
314 if (priv->connect_status != LBS_CONNECTED) {
316 * When Deauth Event received before Enter_PS command
317 * response, We need to wake up the firmware.
320 "disconnected, invoking lbs_ps_wakeup\n");
322 spin_unlock_irqrestore(&priv->driver_lock, flags);
323 mutex_unlock(&priv->lock);
324 lbs_ps_wakeup(priv, 0);
325 mutex_lock(&priv->lock);
326 spin_lock_irqsave(&priv->driver_lock, flags);
328 } else if (action == CMD_SUBCMD_EXIT_PS) {
329 priv->needtowakeup = 0;
330 priv->psstate = PS_STATE_FULL_POWER;
331 lbs_deb_host("CMD_RESP: EXIT_PS command response\n");
333 lbs_deb_host("CMD_RESP: PS action 0x%X\n", action);
336 lbs_complete_command(priv, priv->cur_cmd, result);
337 spin_unlock_irqrestore(&priv->driver_lock, flags);
343 /* If the command is not successful, cleanup and return failure */
344 if ((result != 0 || !(respcmd & 0x8000))) {
345 lbs_deb_host("CMD_RESP: error 0x%04x in command reply 0x%04x\n",
348 * Handling errors here
351 case CMD_RET(CMD_GET_HW_SPEC):
352 case CMD_RET(CMD_802_11_RESET):
353 lbs_deb_host("CMD_RESP: reset failed\n");
357 lbs_complete_command(priv, priv->cur_cmd, result);
358 spin_unlock_irqrestore(&priv->driver_lock, flags);
364 spin_unlock_irqrestore(&priv->driver_lock, flags);
366 if (priv->cur_cmd && priv->cur_cmd->callback) {
367 ret = priv->cur_cmd->callback(priv, priv->cur_cmd->callback_arg,
370 ret = handle_cmd_response(priv, resp);
372 spin_lock_irqsave(&priv->driver_lock, flags);
375 /* Clean up and Put current command back to cmdfreeq */
376 lbs_complete_command(priv, priv->cur_cmd, result);
378 spin_unlock_irqrestore(&priv->driver_lock, flags);
381 mutex_unlock(&priv->lock);
382 lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
386 static int lbs_send_confirmwake(struct lbs_private *priv)
388 struct cmd_header cmd;
391 lbs_deb_enter(LBS_DEB_HOST);
393 cmd.command = cpu_to_le16(CMD_802_11_WAKEUP_CONFIRM);
394 cmd.size = cpu_to_le16(sizeof(cmd));
395 cmd.seqnum = cpu_to_le16(++priv->seqnum);
398 lbs_deb_hex(LBS_DEB_HOST, "wake confirm", (u8 *) &cmd,
401 ret = priv->hw_host_to_card(priv, MVMS_CMD, (u8 *) &cmd, sizeof(cmd));
403 lbs_pr_alert("SEND_WAKEC_CMD: Host to Card failed for Confirm Wake\n");
405 lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
409 int lbs_process_event(struct lbs_private *priv, u32 event)
413 lbs_deb_enter(LBS_DEB_CMD);
416 case MACREG_INT_CODE_LINK_SENSED:
417 lbs_deb_cmd("EVENT: link sensed\n");
420 case MACREG_INT_CODE_DEAUTHENTICATED:
421 lbs_deb_cmd("EVENT: deauthenticated\n");
422 lbs_mac_event_disconnected(priv);
425 case MACREG_INT_CODE_DISASSOCIATED:
426 lbs_deb_cmd("EVENT: disassociated\n");
427 lbs_mac_event_disconnected(priv);
430 case MACREG_INT_CODE_LINK_LOST_NO_SCAN:
431 lbs_deb_cmd("EVENT: link lost\n");
432 lbs_mac_event_disconnected(priv);
435 case MACREG_INT_CODE_PS_SLEEP:
436 lbs_deb_cmd("EVENT: ps sleep\n");
438 /* handle unexpected PS SLEEP event */
439 if (priv->psstate == PS_STATE_FULL_POWER) {
441 "EVENT: in FULL POWER mode, ignoreing PS_SLEEP\n");
444 priv->psstate = PS_STATE_PRE_SLEEP;
446 lbs_ps_confirm_sleep(priv);
450 case MACREG_INT_CODE_HOST_AWAKE:
451 lbs_deb_cmd("EVENT: host awake\n");
452 if (priv->reset_deep_sleep_wakeup)
453 priv->reset_deep_sleep_wakeup(priv);
454 priv->is_deep_sleep = 0;
455 lbs_send_confirmwake(priv);
458 case MACREG_INT_CODE_DEEP_SLEEP_AWAKE:
459 if (priv->reset_deep_sleep_wakeup)
460 priv->reset_deep_sleep_wakeup(priv);
461 lbs_deb_cmd("EVENT: ds awake\n");
462 priv->is_deep_sleep = 0;
463 priv->wakeup_dev_required = 0;
464 wake_up_interruptible(&priv->ds_awake_q);
467 case MACREG_INT_CODE_PS_AWAKE:
468 lbs_deb_cmd("EVENT: ps awake\n");
469 /* handle unexpected PS AWAKE event */
470 if (priv->psstate == PS_STATE_FULL_POWER) {
472 "EVENT: In FULL POWER mode - ignore PS AWAKE\n");
476 priv->psstate = PS_STATE_AWAKE;
478 if (priv->needtowakeup) {
480 * wait for the command processing to finish
481 * before resuming sending
482 * priv->needtowakeup will be set to FALSE
485 lbs_deb_cmd("waking up ...\n");
486 lbs_ps_wakeup(priv, 0);
490 case MACREG_INT_CODE_MIC_ERR_UNICAST:
491 lbs_deb_cmd("EVENT: UNICAST MIC ERROR\n");
492 handle_mic_failureevent(priv, MACREG_INT_CODE_MIC_ERR_UNICAST);
495 case MACREG_INT_CODE_MIC_ERR_MULTICAST:
496 lbs_deb_cmd("EVENT: MULTICAST MIC ERROR\n");
497 handle_mic_failureevent(priv, MACREG_INT_CODE_MIC_ERR_MULTICAST);
500 case MACREG_INT_CODE_MIB_CHANGED:
501 lbs_deb_cmd("EVENT: MIB CHANGED\n");
503 case MACREG_INT_CODE_INIT_DONE:
504 lbs_deb_cmd("EVENT: INIT DONE\n");
506 case MACREG_INT_CODE_ADHOC_BCN_LOST:
507 lbs_deb_cmd("EVENT: ADHOC beacon lost\n");
509 case MACREG_INT_CODE_RSSI_LOW:
510 lbs_pr_alert("EVENT: rssi low\n");
512 case MACREG_INT_CODE_SNR_LOW:
513 lbs_pr_alert("EVENT: snr low\n");
515 case MACREG_INT_CODE_MAX_FAIL:
516 lbs_pr_alert("EVENT: max fail\n");
518 case MACREG_INT_CODE_RSSI_HIGH:
519 lbs_pr_alert("EVENT: rssi high\n");
521 case MACREG_INT_CODE_SNR_HIGH:
522 lbs_pr_alert("EVENT: snr high\n");
525 case MACREG_INT_CODE_MESH_AUTO_STARTED:
526 /* Ignore spurious autostart events if autostart is disabled */
527 if (!priv->mesh_autostart_enabled) {
528 lbs_pr_info("EVENT: MESH_AUTO_STARTED (ignoring)\n");
531 lbs_pr_info("EVENT: MESH_AUTO_STARTED\n");
532 priv->mesh_connect_status = LBS_CONNECTED;
533 if (priv->mesh_open) {
534 netif_carrier_on(priv->mesh_dev);
535 if (!priv->tx_pending_len)
536 netif_wake_queue(priv->mesh_dev);
538 priv->mode = IW_MODE_ADHOC;
539 schedule_work(&priv->sync_channel);
543 lbs_pr_alert("EVENT: unknown event id %d\n", event);
547 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
git://ftp.safe.ca / safe / jmp / linux-2.6 / blob