1 /*======================================================================
2
3 Aironet driver for 4500 and 4800 series cards
4
5 This code is released under both the GPL version 2 and BSD licenses.
6 Either license may be used. The respective licenses are found at
7 the end of this file.
8
9 This code was developed by Benjamin Reed <breed@users.sourceforge.net>
10 including portions of which come from the Aironet PC4500
11 Developer's Reference Manual and used with permission. Copyright
12 (C) 1999 Benjamin Reed. All Rights Reserved. Permission to use
13 code in the Developer's manual was granted for this driver by
14 Aironet. Major code contributions were received from Javier Achirica
15 <achirica@users.sourceforge.net> and Jean Tourrilhes <jt@hpl.hp.com>.
16 Code was also integrated from the Cisco Aironet driver for Linux.
17 Support for MPI350 cards was added by Fabrice Bellet
18 <fabrice@bellet.info>.
19
20 ======================================================================*/
21
22 #include <linux/err.h>
23 #include <linux/init.h>
24
25 #include <linux/kernel.h>
26 #include <linux/module.h>
27 #include <linux/proc_fs.h>
28
29 #include <linux/sched.h>
30 #include <linux/ptrace.h>
31 #include <linux/slab.h>
32 #include <linux/string.h>
33 #include <linux/timer.h>
34 #include <linux/interrupt.h>
35 #include <linux/in.h>
36 #include <linux/bitops.h>
37 #include <linux/scatterlist.h>
38 #include <linux/crypto.h>
39 #include <asm/io.h>
40 #include <asm/unaligned.h>
41
42 #include <linux/netdevice.h>
43 #include <linux/etherdevice.h>
44 #include <linux/skbuff.h>
45 #include <linux/if_arp.h>
46 #include <linux/ioport.h>
47 #include <linux/pci.h>
48 #include <asm/uaccess.h>
49 #include <linux/kthread.h>
50 #include <linux/freezer.h>
51
52 #include <linux/ieee80211.h>
53 #include <net/iw_handler.h>
54
55 #include "airo.h"
56
57 #define DRV_NAME "airo"
58
59 #ifdef CONFIG_PCI
60 static DEFINE_PCI_DEVICE_TABLE(card_ids) = {
61 { 0x14b9, 1, PCI_ANY_ID, PCI_ANY_ID, },
62 { 0x14b9, 0x4500, PCI_ANY_ID, PCI_ANY_ID },
63 { 0x14b9, 0x4800, PCI_ANY_ID, PCI_ANY_ID, },
64 { 0x14b9, 0x0340, PCI_ANY_ID, PCI_ANY_ID, },
65 { 0x14b9, 0x0350, PCI_ANY_ID, PCI_ANY_ID, },
66 { 0x14b9, 0x5000, PCI_ANY_ID, PCI_ANY_ID, },
67 { 0x14b9, 0xa504, PCI_ANY_ID, PCI_ANY_ID, },
68 { 0, }
69 };
70 MODULE_DEVICE_TABLE(pci, card_ids);
71
72 static int airo_pci_probe(struct pci_dev *, const struct pci_device_id *);
73 static void airo_pci_remove(struct pci_dev *);
74 static int airo_pci_suspend(struct pci_dev *pdev, pm_message_t state);
75 static int airo_pci_resume(struct pci_dev *pdev);
76
77 static struct pci_driver airo_driver = {
78 .name = DRV_NAME,
79 .id_table = card_ids,
80 .probe = airo_pci_probe,
81 .remove = __devexit_p(airo_pci_remove),
82 .suspend = airo_pci_suspend,
83 .resume = airo_pci_resume,
84 };
85 #endif /* CONFIG_PCI */
86
87 /* Include Wireless Extension definition and check version - Jean II */
88 #include <linux/wireless.h>
89 #define WIRELESS_SPY /* enable iwspy support */
90 #include <net/iw_handler.h> /* New driver API */
91
92 #define CISCO_EXT /* enable Cisco extensions */
93 #ifdef CISCO_EXT
94 #include <linux/delay.h>
95 #endif
96
97 /* Hack to do some power saving */
98 #define POWER_ON_DOWN
99
100 /* As you can see this list is HUGH!
101 I really don't know what a lot of these counts are about, but they
102 are all here for completeness. If the IGNLABEL macro is put in
103 infront of the label, that statistic will not be included in the list
104 of statistics in the /proc filesystem */
105
106 #define IGNLABEL(comment) NULL
107 static const char *statsLabels[] = {
108 "RxOverrun",
109 IGNLABEL("RxPlcpCrcErr"),
110 IGNLABEL("RxPlcpFormatErr"),
111 IGNLABEL("RxPlcpLengthErr"),
112 "RxMacCrcErr",
113 "RxMacCrcOk",
114 "RxWepErr",
115 "RxWepOk",
116 "RetryLong",
117 "RetryShort",
118 "MaxRetries",
119 "NoAck",
120 "NoCts",
121 "RxAck",
122 "RxCts",
123 "TxAck",
124 "TxRts",
125 "TxCts",
126 "TxMc",
127 "TxBc",
128 "TxUcFrags",
129 "TxUcPackets",
130 "TxBeacon",
131 "RxBeacon",
132 "TxSinColl",
133 "TxMulColl",
134 "DefersNo",
135 "DefersProt",
136 "DefersEngy",
137 "DupFram",
138 "RxFragDisc",
139 "TxAged",
140 "RxAged",
141 "LostSync-MaxRetry",
142 "LostSync-MissedBeacons",
143 "LostSync-ArlExceeded",
144 "LostSync-Deauth",
145 "LostSync-Disassoced",
146 "LostSync-TsfTiming",
147 "HostTxMc",
148 "HostTxBc",
149 "HostTxUc",
150 "HostTxFail",
151 "HostRxMc",
152 "HostRxBc",
153 "HostRxUc",
154 "HostRxDiscard",
155 IGNLABEL("HmacTxMc"),
156 IGNLABEL("HmacTxBc"),
157 IGNLABEL("HmacTxUc"),
158 IGNLABEL("HmacTxFail"),
159 IGNLABEL("HmacRxMc"),
160 IGNLABEL("HmacRxBc"),
161 IGNLABEL("HmacRxUc"),
162 IGNLABEL("HmacRxDiscard"),
163 IGNLABEL("HmacRxAccepted"),
164 "SsidMismatch",
165 "ApMismatch",
166 "RatesMismatch",
167 "AuthReject",
168 "AuthTimeout",
169 "AssocReject",
170 "AssocTimeout",
171 IGNLABEL("ReasonOutsideTable"),
172 IGNLABEL("ReasonStatus1"),
173 IGNLABEL("ReasonStatus2"),
174 IGNLABEL("ReasonStatus3"),
175 IGNLABEL("ReasonStatus4"),
176 IGNLABEL("ReasonStatus5"),
177 IGNLABEL("ReasonStatus6"),
178 IGNLABEL("ReasonStatus7"),
179 IGNLABEL("ReasonStatus8"),
180 IGNLABEL("ReasonStatus9"),
181 IGNLABEL("ReasonStatus10"),
182 IGNLABEL("ReasonStatus11"),
183 IGNLABEL("ReasonStatus12"),
184 IGNLABEL("ReasonStatus13"),
185 IGNLABEL("ReasonStatus14"),
186 IGNLABEL("ReasonStatus15"),
187 IGNLABEL("ReasonStatus16"),
188 IGNLABEL("ReasonStatus17"),
189 IGNLABEL("ReasonStatus18"),
190 IGNLABEL("ReasonStatus19"),
191 "RxMan",
192 "TxMan",
193 "RxRefresh",
194 "TxRefresh",
195 "RxPoll",
196 "TxPoll",
197 "HostRetries",
198 "LostSync-HostReq",
199 "HostTxBytes",
200 "HostRxBytes",
201 "ElapsedUsec",
202 "ElapsedSec",
203 "LostSyncBetterAP",
204 "PrivacyMismatch",
205 "Jammed",
206 "DiscRxNotWepped",
207 "PhyEleMismatch",
208 (char*)-1 };
209 #ifndef RUN_AT
210 #define RUN_AT(x) (jiffies+(x))
211 #endif
212
213
214 /* These variables are for insmod, since it seems that the rates
215 can only be set in setup_card. Rates should be a comma separated
216 (no spaces) list of rates (up to 8). */
217
218 static int rates[8];
219 static char *ssids[3];
220
221 static int io[4];
222 static int irq[4];
223
224 static
225 int maxencrypt /* = 0 */; /* The highest rate that the card can encrypt at.
226 0 means no limit. For old cards this was 4 */
227
228 static int auto_wep /* = 0 */; /* If set, it tries to figure out the wep mode */
229 static int aux_bap /* = 0 */; /* Checks to see if the aux ports are needed to read
230 the bap, needed on some older cards and buses. */
231 static int adhoc;
232
233 static int probe = 1;
234
235 static int proc_uid /* = 0 */;
236
237 static int proc_gid /* = 0 */;
238
239 static int airo_perm = 0555;
240
241 static int proc_perm = 0644;
242
243 MODULE_AUTHOR("Benjamin Reed");
244 MODULE_DESCRIPTION("Support for Cisco/Aironet 802.11 wireless ethernet cards. "
245 "Direct support for ISA/PCI/MPI cards and support for PCMCIA when used with airo_cs.");
246 MODULE_LICENSE("Dual BSD/GPL");
247 MODULE_SUPPORTED_DEVICE("Aironet 4500, 4800 and Cisco 340/350");
248 module_param_array(io, int, NULL, 0);
249 module_param_array(irq, int, NULL, 0);
250 module_param_array(rates, int, NULL, 0);
251 module_param_array(ssids, charp, NULL, 0);
252 module_param(auto_wep, int, 0);
253 MODULE_PARM_DESC(auto_wep,
254 "If non-zero, the driver will keep looping through the authentication options until an association is made. "
255 "The value of auto_wep is number of the wep keys to check. "
256 "A value of 2 will try using the key at index 0 and index 1.");
257 module_param(aux_bap, int, 0);
258 MODULE_PARM_DESC(aux_bap,
259 "If non-zero, the driver will switch into a mode that seems to work better for older cards with some older buses. "
260 "Before switching it checks that the switch is needed.");
261 module_param(maxencrypt, int, 0);
262 MODULE_PARM_DESC(maxencrypt,
263 "The maximum speed that the card can do encryption. "
264 "Units are in 512kbs. "
265 "Zero (default) means there is no limit. "
266 "Older cards used to be limited to 2mbs (4).");
267 module_param(adhoc, int, 0);
268 MODULE_PARM_DESC(adhoc, "If non-zero, the card will start in adhoc mode.");
269 module_param(probe, int, 0);
270 MODULE_PARM_DESC(probe, "If zero, the driver won't start the card.");
271
272 module_param(proc_uid, int, 0);
273 MODULE_PARM_DESC(proc_uid, "The uid that the /proc files will belong to.");
274 module_param(proc_gid, int, 0);
275 MODULE_PARM_DESC(proc_gid, "The gid that the /proc files will belong to.");
276 module_param(airo_perm, int, 0);
277 MODULE_PARM_DESC(airo_perm, "The permission bits of /proc/[driver/]aironet.");
278 module_param(proc_perm, int, 0);
279 MODULE_PARM_DESC(proc_perm, "The permission bits of the files in /proc");
280
281 /* This is a kind of sloppy hack to get this information to OUT4500 and
282 IN4500. I would be extremely interested in the situation where this
283 doesn't work though!!! */
284 static int do8bitIO /* = 0 */;
285
286 /* Return codes */
287 #define SUCCESS 0
288 #define ERROR -1
289 #define NO_PACKET -2
290
291 /* Commands */
292 #define NOP2 0x0000
293 #define MAC_ENABLE 0x0001
294 #define MAC_DISABLE 0x0002
295 #define CMD_LOSE_SYNC 0x0003 /* Not sure what this does... */
296 #define CMD_SOFTRESET 0x0004
297 #define HOSTSLEEP 0x0005
298 #define CMD_MAGIC_PKT 0x0006
299 #define CMD_SETWAKEMASK 0x0007
300 #define CMD_READCFG 0x0008
301 #define CMD_SETMODE 0x0009
302 #define CMD_ALLOCATETX 0x000a
303 #define CMD_TRANSMIT 0x000b
304 #define CMD_DEALLOCATETX 0x000c
305 #define NOP 0x0010
306 #define CMD_WORKAROUND 0x0011
307 #define CMD_ALLOCATEAUX 0x0020
308 #define CMD_ACCESS 0x0021
309 #define CMD_PCIBAP 0x0022
310 #define CMD_PCIAUX 0x0023
311 #define CMD_ALLOCBUF 0x0028
312 #define CMD_GETTLV 0x0029
313 #define CMD_PUTTLV 0x002a
314 #define CMD_DELTLV 0x002b
315 #define CMD_FINDNEXTTLV 0x002c
316 #define CMD_PSPNODES 0x0030
317 #define CMD_SETCW 0x0031
318 #define CMD_SETPCF 0x0032
319 #define CMD_SETPHYREG 0x003e
320 #define CMD_TXTEST 0x003f
321 #define MAC_ENABLETX 0x0101
322 #define CMD_LISTBSS 0x0103
323 #define CMD_SAVECFG 0x0108
324 #define CMD_ENABLEAUX 0x0111
325 #define CMD_WRITERID 0x0121
326 #define CMD_USEPSPNODES 0x0130
327 #define MAC_ENABLERX 0x0201
328
329 /* Command errors */
330 #define ERROR_QUALIF 0x00
331 #define ERROR_ILLCMD 0x01
332 #define ERROR_ILLFMT 0x02
333 #define ERROR_INVFID 0x03
334 #define ERROR_INVRID 0x04
335 #define ERROR_LARGE 0x05
336 #define ERROR_NDISABL 0x06
337 #define ERROR_ALLOCBSY 0x07
338 #define ERROR_NORD 0x0B
339 #define ERROR_NOWR 0x0C
340 #define ERROR_INVFIDTX 0x0D
341 #define ERROR_TESTACT 0x0E
342 #define ERROR_TAGNFND 0x12
343 #define ERROR_DECODE 0x20
344 #define ERROR_DESCUNAV 0x21
345 #define ERROR_BADLEN 0x22
346 #define ERROR_MODE 0x80
347 #define ERROR_HOP 0x81
348 #define ERROR_BINTER 0x82
349 #define ERROR_RXMODE 0x83
350 #define ERROR_MACADDR 0x84
351 #define ERROR_RATES 0x85
352 #define ERROR_ORDER 0x86
353 #define ERROR_SCAN 0x87
354 #define ERROR_AUTH 0x88
355 #define ERROR_PSMODE 0x89
356 #define ERROR_RTYPE 0x8A
357 #define ERROR_DIVER 0x8B
358 #define ERROR_SSID 0x8C
359 #define ERROR_APLIST 0x8D
360 #define ERROR_AUTOWAKE 0x8E
361 #define ERROR_LEAP 0x8F
362
363 /* Registers */
364 #define COMMAND 0x00
365 #define PARAM0 0x02
366 #define PARAM1 0x04
367 #define PARAM2 0x06
368 #define STATUS 0x08
369 #define RESP0 0x0a
370 #define RESP1 0x0c
371 #define RESP2 0x0e
372 #define LINKSTAT 0x10
373 #define SELECT0 0x18
374 #define OFFSET0 0x1c
375 #define RXFID 0x20
376 #define TXALLOCFID 0x22
377 #define TXCOMPLFID 0x24
378 #define DATA0 0x36
379 #define EVSTAT 0x30
380 #define EVINTEN 0x32
381 #define EVACK 0x34
382 #define SWS0 0x28
383 #define SWS1 0x2a
384 #define SWS2 0x2c
385 #define SWS3 0x2e
386 #define AUXPAGE 0x3A
387 #define AUXOFF 0x3C
388 #define AUXDATA 0x3E
389
390 #define FID_TX 1
391 #define FID_RX 2
392 /* Offset into aux memory for descriptors */
393 #define AUX_OFFSET 0x800
394 /* Size of allocated packets */
395 #define PKTSIZE 1840
396 #define RIDSIZE 2048
397 /* Size of the transmit queue */
398 #define MAXTXQ 64
399
400 /* BAP selectors */
401 #define BAP0 0 /* Used for receiving packets */
402 #define BAP1 2 /* Used for xmiting packets and working with RIDS */
403
404 /* Flags */
405 #define COMMAND_BUSY 0x8000
406
407 #define BAP_BUSY 0x8000
408 #define BAP_ERR 0x4000
409 #define BAP_DONE 0x2000
410
411 #define PROMISC 0xffff
412 #define NOPROMISC 0x0000
413
414 #define EV_CMD 0x10
415 #define EV_CLEARCOMMANDBUSY 0x4000
416 #define EV_RX 0x01
417 #define EV_TX 0x02
418 #define EV_TXEXC 0x04
419 #define EV_ALLOC 0x08
420 #define EV_LINK 0x80
421 #define EV_AWAKE 0x100
422 #define EV_TXCPY 0x400
423 #define EV_UNKNOWN 0x800
424 #define EV_MIC 0x1000 /* Message Integrity Check Interrupt */
425 #define EV_AWAKEN 0x2000
426 #define STATUS_INTS (EV_AWAKE|EV_LINK|EV_TXEXC|EV_TX|EV_TXCPY|EV_RX|EV_MIC)
427
428 #ifdef CHECK_UNKNOWN_INTS
429 #define IGNORE_INTS ( EV_CMD | EV_UNKNOWN)
430 #else
431 #define IGNORE_INTS (~STATUS_INTS)
432 #endif
433
434 /* RID TYPES */
435 #define RID_RW 0x20
436
437 /* The RIDs */
438 #define RID_CAPABILITIES 0xFF00
439 #define RID_APINFO 0xFF01
440 #define RID_RADIOINFO 0xFF02
441 #define RID_UNKNOWN3 0xFF03
442 #define RID_RSSI 0xFF04
443 #define RID_CONFIG 0xFF10
444 #define RID_SSID 0xFF11
445 #define RID_APLIST 0xFF12
446 #define RID_DRVNAME 0xFF13
447 #define RID_ETHERENCAP 0xFF14
448 #define RID_WEP_TEMP 0xFF15
449 #define RID_WEP_PERM 0xFF16
450 #define RID_MODULATION 0xFF17
451 #define RID_OPTIONS 0xFF18
452 #define RID_ACTUALCONFIG 0xFF20 /*readonly*/
453 #define RID_FACTORYCONFIG 0xFF21
454 #define RID_UNKNOWN22 0xFF22
455 #define RID_LEAPUSERNAME 0xFF23
456 #define RID_LEAPPASSWORD 0xFF24
457 #define RID_STATUS 0xFF50
458 #define RID_BEACON_HST 0xFF51
459 #define RID_BUSY_HST 0xFF52
460 #define RID_RETRIES_HST 0xFF53
461 #define RID_UNKNOWN54 0xFF54
462 #define RID_UNKNOWN55 0xFF55
463 #define RID_UNKNOWN56 0xFF56
464 #define RID_MIC 0xFF57
465 #define RID_STATS16 0xFF60
466 #define RID_STATS16DELTA 0xFF61
467 #define RID_STATS16DELTACLEAR 0xFF62
468 #define RID_STATS 0xFF68
469 #define RID_STATSDELTA 0xFF69
470 #define RID_STATSDELTACLEAR 0xFF6A
471 #define RID_ECHOTEST_RID 0xFF70
472 #define RID_ECHOTEST_RESULTS 0xFF71
473 #define RID_BSSLISTFIRST 0xFF72
474 #define RID_BSSLISTNEXT 0xFF73
475 #define RID_WPA_BSSLISTFIRST 0xFF74
476 #define RID_WPA_BSSLISTNEXT 0xFF75
477
478 typedef struct {
479 u16 cmd;
480 u16 parm0;
481 u16 parm1;
482 u16 parm2;
483 } Cmd;
484
485 typedef struct {
486 u16 status;
487 u16 rsp0;
488 u16 rsp1;
489 u16 rsp2;
490 } Resp;
491
492 /*
493 * Rids and endian-ness: The Rids will always be in cpu endian, since
494 * this all the patches from the big-endian guys end up doing that.
495 * so all rid access should use the read/writeXXXRid routines.
496 */
497
498 /* This structure came from an email sent to me from an engineer at
499 aironet for inclusion into this driver */
500 typedef struct WepKeyRid WepKeyRid;
501 struct WepKeyRid {
502 __le16 len;
503 __le16 kindex;
504 u8 mac[ETH_ALEN];
505 __le16 klen;
506 u8 key[16];
507 } __packed;
508
509 /* These structures are from the Aironet's PC4500 Developers Manual */
510 typedef struct Ssid Ssid;
511 struct Ssid {
512 __le16 len;
513 u8 ssid[32];
514 } __packed;
515
516 typedef struct SsidRid SsidRid;
517 struct SsidRid {
518 __le16 len;
519 Ssid ssids[3];
520 } __packed;
521
522 typedef struct ModulationRid ModulationRid;
523 struct ModulationRid {
524 __le16 len;
525 __le16 modulation;
526 #define MOD_DEFAULT cpu_to_le16(0)
527 #define MOD_CCK cpu_to_le16(1)
528 #define MOD_MOK cpu_to_le16(2)
529 } __packed;
530
531 typedef struct ConfigRid ConfigRid;
532 struct ConfigRid {
533 __le16 len; /* sizeof(ConfigRid) */
534 __le16 opmode; /* operating mode */
535 #define MODE_STA_IBSS cpu_to_le16(0)
536 #define MODE_STA_ESS cpu_to_le16(1)
537 #define MODE_AP cpu_to_le16(2)
538 #define MODE_AP_RPTR cpu_to_le16(3)
539 #define MODE_CFG_MASK cpu_to_le16(0xff)
540 #define MODE_ETHERNET_HOST cpu_to_le16(0<<8) /* rx payloads converted */
541 #define MODE_LLC_HOST cpu_to_le16(1<<8) /* rx payloads left as is */
542 #define MODE_AIRONET_EXTEND cpu_to_le16(1<<9) /* enable Aironet extenstions */
543 #define MODE_AP_INTERFACE cpu_to_le16(1<<10) /* enable ap interface extensions */
544 #define MODE_ANTENNA_ALIGN cpu_to_le16(1<<11) /* enable antenna alignment */
545 #define MODE_ETHER_LLC cpu_to_le16(1<<12) /* enable ethernet LLC */
546 #define MODE_LEAF_NODE cpu_to_le16(1<<13) /* enable leaf node bridge */
547 #define MODE_CF_POLLABLE cpu_to_le16(1<<14) /* enable CF pollable */
548 #define MODE_MIC cpu_to_le16(1<<15) /* enable MIC */
549 __le16 rmode; /* receive mode */
550 #define RXMODE_BC_MC_ADDR cpu_to_le16(0)
551 #define RXMODE_BC_ADDR cpu_to_le16(1) /* ignore multicasts */
552 #define RXMODE_ADDR cpu_to_le16(2) /* ignore multicast and broadcast */
553 #define RXMODE_RFMON cpu_to_le16(3) /* wireless monitor mode */
554 #define RXMODE_RFMON_ANYBSS cpu_to_le16(4)
555 #define RXMODE_LANMON cpu_to_le16(5) /* lan style monitor -- data packets only */
556 #define RXMODE_MASK cpu_to_le16(255)
557 #define RXMODE_DISABLE_802_3_HEADER cpu_to_le16(1<<8) /* disables 802.3 header on rx */
558 #define RXMODE_FULL_MASK (RXMODE_MASK | RXMODE_DISABLE_802_3_HEADER)
559 #define RXMODE_NORMALIZED_RSSI cpu_to_le16(1<<9) /* return normalized RSSI */
560 __le16 fragThresh;
561 __le16 rtsThres;
562 u8 macAddr[ETH_ALEN];
563 u8 rates[8];
564 __le16 shortRetryLimit;
565 __le16 longRetryLimit;
566 __le16 txLifetime; /* in kusec */
567 __le16 rxLifetime; /* in kusec */
568 __le16 stationary;
569 __le16 ordering;
570 __le16 u16deviceType; /* for overriding device type */
571 __le16 cfpRate;
572 __le16 cfpDuration;
573 __le16 _reserved1[3];
574 /*---------- Scanning/Associating ----------*/
575 __le16 scanMode;
576 #define SCANMODE_ACTIVE cpu_to_le16(0)
577 #define SCANMODE_PASSIVE cpu_to_le16(1)
578 #define SCANMODE_AIROSCAN cpu_to_le16(2)
579 __le16 probeDelay; /* in kusec */
580 __le16 probeEnergyTimeout; /* in kusec */
581 __le16 probeResponseTimeout;
582 __le16 beaconListenTimeout;
583 __le16 joinNetTimeout;
584 __le16 authTimeout;
585 __le16 authType;
586 #define AUTH_OPEN cpu_to_le16(0x1)
587 #define AUTH_ENCRYPT cpu_to_le16(0x101)
588 #define AUTH_SHAREDKEY cpu_to_le16(0x102)
589 #define AUTH_ALLOW_UNENCRYPTED cpu_to_le16(0x200)
590 __le16 associationTimeout;
591 __le16 specifiedApTimeout;
592 __le16 offlineScanInterval;
593 __le16 offlineScanDuration;
594 __le16 linkLossDelay;
595 __le16 maxBeaconLostTime;
596 __le16 refreshInterval;
597 #define DISABLE_REFRESH cpu_to_le16(0xFFFF)
598 __le16 _reserved1a[1];
599 /*---------- Power save operation ----------*/
600 __le16 powerSaveMode;
601 #define POWERSAVE_CAM cpu_to_le16(0)
602 #define POWERSAVE_PSP cpu_to_le16(1)
603 #define POWERSAVE_PSPCAM cpu_to_le16(2)
604 __le16 sleepForDtims;
605 __le16 listenInterval;
606 __le16 fastListenInterval;
607 __le16 listenDecay;
608 __le16 fastListenDelay;
609 __le16 _reserved2[2];
610 /*---------- Ap/Ibss config items ----------*/
611 __le16 beaconPeriod;
612 __le16 atimDuration;
613 __le16 hopPeriod;
614 __le16 channelSet;
615 __le16 channel;
616 __le16 dtimPeriod;
617 __le16 bridgeDistance;
618 __le16 radioID;
619 /*---------- Radio configuration ----------*/
620 __le16 radioType;
621 #define RADIOTYPE_DEFAULT cpu_to_le16(0)
622 #define RADIOTYPE_802_11 cpu_to_le16(1)
623 #define RADIOTYPE_LEGACY cpu_to_le16(2)
624 u8 rxDiversity;
625 u8 txDiversity;
626 __le16 txPower;
627 #define TXPOWER_DEFAULT 0
628 __le16 rssiThreshold;
629 #define RSSI_DEFAULT 0
630 __le16 modulation;
631 #define PREAMBLE_AUTO cpu_to_le16(0)
632 #define PREAMBLE_LONG cpu_to_le16(1)
633 #define PREAMBLE_SHORT cpu_to_le16(2)
634 __le16 preamble;
635 __le16 homeProduct;
636 __le16 radioSpecific;
637 /*---------- Aironet Extensions ----------*/
638 u8 nodeName[16];
639 __le16 arlThreshold;
640 __le16 arlDecay;
641 __le16 arlDelay;
642 __le16 _reserved4[1];
643 /*---------- Aironet Extensions ----------*/
644 u8 magicAction;
645 #define MAGIC_ACTION_STSCHG 1
646 #define MAGIC_ACTION_RESUME 2
647 #define MAGIC_IGNORE_MCAST (1<<8)
648 #define MAGIC_IGNORE_BCAST (1<<9)
649 #define MAGIC_SWITCH_TO_PSP (0<<10)
650 #define MAGIC_STAY_IN_CAM (1<<10)
651 u8 magicControl;
652 __le16 autoWake;
653 } __packed;
654
655 typedef struct StatusRid StatusRid;
656 struct StatusRid {
657 __le16 len;
658 u8 mac[ETH_ALEN];
659 __le16 mode;
660 __le16 errorCode;
661 __le16 sigQuality;
662 __le16 SSIDlen;
663 char SSID[32];
664 char apName[16];
665 u8 bssid[4][ETH_ALEN];
666 __le16 beaconPeriod;
667 __le16 dimPeriod;
668 __le16 atimDuration;
669 __le16 hopPeriod;
670 __le16 channelSet;
671 __le16 channel;
672 __le16 hopsToBackbone;
673 __le16 apTotalLoad;
674 __le16 generatedLoad;
675 __le16 accumulatedArl;
676 __le16 signalQuality;
677 __le16 currentXmitRate;
678 __le16 apDevExtensions;
679 __le16 normalizedSignalStrength;
680 __le16 shortPreamble;
681 u8 apIP[4];
682 u8 noisePercent; /* Noise percent in last second */
683 u8 noisedBm; /* Noise dBm in last second */
684 u8 noiseAvePercent; /* Noise percent in last minute */
685 u8 noiseAvedBm; /* Noise dBm in last minute */
686 u8 noiseMaxPercent; /* Highest noise percent in last minute */
687 u8 noiseMaxdBm; /* Highest noise dbm in last minute */
688 __le16 load;
689 u8 carrier[4];
690 __le16 assocStatus;
691 #define STAT_NOPACKETS 0
692 #define STAT_NOCARRIERSET 10
693 #define STAT_GOTCARRIERSET 11
694 #define STAT_WRONGSSID 20
695 #define STAT_BADCHANNEL 25
696 #define STAT_BADBITRATES 30
697 #define STAT_BADPRIVACY 35
698 #define STAT_APFOUND 40
699 #define STAT_APREJECTED 50
700 #define STAT_AUTHENTICATING 60
701 #define STAT_DEAUTHENTICATED 61
702 #define STAT_AUTHTIMEOUT 62
703 #define STAT_ASSOCIATING 70
704 #define STAT_DEASSOCIATED 71
705 #define STAT_ASSOCTIMEOUT 72
706 #define STAT_NOTAIROAP 73
707 #define STAT_ASSOCIATED 80
708 #define STAT_LEAPING 90
709 #define STAT_LEAPFAILED 91
710 #define STAT_LEAPTIMEDOUT 92
711 #define STAT_LEAPCOMPLETE 93
712 } __packed;
713
714 typedef struct StatsRid StatsRid;
715 struct StatsRid {
716 __le16 len;
717 __le16 spacer;
718 __le32 vals[100];
719 } __packed;
720
721 typedef struct APListRid APListRid;
722 struct APListRid {
723 __le16 len;
724 u8 ap[4][ETH_ALEN];
725 } __packed;
726
727 typedef struct CapabilityRid CapabilityRid;
728 struct CapabilityRid {
729 __le16 len;
730 char oui[3];
731 char zero;
732 __le16 prodNum;
733 char manName[32];
734 char prodName[16];
735 char prodVer[8];
736 char factoryAddr[ETH_ALEN];
737 char aironetAddr[ETH_ALEN];
738 __le16 radioType;
739 __le16 country;
740 char callid[ETH_ALEN];
741 char supportedRates[8];
742 char rxDiversity;
743 char txDiversity;
744 __le16 txPowerLevels[8];
745 __le16 hardVer;
746 __le16 hardCap;
747 __le16 tempRange;
748 __le16 softVer;
749 __le16 softSubVer;
750 __le16 interfaceVer;
751 __le16 softCap;
752 __le16 bootBlockVer;
753 __le16 requiredHard;
754 __le16 extSoftCap;
755 } __packed;
756
757 /* Only present on firmware >= 5.30.17 */
758 typedef struct BSSListRidExtra BSSListRidExtra;
759 struct BSSListRidExtra {
760 __le16 unknown[4];
761 u8 fixed[12]; /* WLAN management frame */
762 u8 iep[624];
763 } __packed;
764
765 typedef struct BSSListRid BSSListRid;
766 struct BSSListRid {
767 __le16 len;
768 __le16 index; /* First is 0 and 0xffff means end of list */
769 #define RADIO_FH 1 /* Frequency hopping radio type */
770 #define RADIO_DS 2 /* Direct sequence radio type */
771 #define RADIO_TMA 4 /* Proprietary radio used in old cards (2500) */
772 __le16 radioType;
773 u8 bssid[ETH_ALEN]; /* Mac address of the BSS */
774 u8 zero;
775 u8 ssidLen;
776 u8 ssid[32];
777 __le16 dBm;
778 #define CAP_ESS cpu_to_le16(1<<0)
779 #define CAP_IBSS cpu_to_le16(1<<1)
780 #define CAP_PRIVACY cpu_to_le16(1<<4)
781 #define CAP_SHORTHDR cpu_to_le16(1<<5)
782 __le16 cap;
783 __le16 beaconInterval;
784 u8 rates[8]; /* Same as rates for config rid */
785 struct { /* For frequency hopping only */
786 __le16 dwell;
787 u8 hopSet;
788 u8 hopPattern;
789 u8 hopIndex;
790 u8 fill;
791 } fh;
792 __le16 dsChannel;
793 __le16 atimWindow;
794
795 /* Only present on firmware >= 5.30.17 */
796 BSSListRidExtra extra;
797 } __packed;
798
799 typedef struct {
800 BSSListRid bss;
801 struct list_head list;
802 } BSSListElement;
803
804 typedef struct tdsRssiEntry tdsRssiEntry;
805 struct tdsRssiEntry {
806 u8 rssipct;
807 u8 rssidBm;
808 } __packed;
809
810 typedef struct tdsRssiRid tdsRssiRid;
811 struct tdsRssiRid {
812 u16 len;
813 tdsRssiEntry x[256];
814 } __packed;
815
816 typedef struct MICRid MICRid;
817 struct MICRid {
818 __le16 len;
819 __le16 state;
820 __le16 multicastValid;
821 u8 multicast[16];
822 __le16 unicastValid;
823 u8 unicast[16];
824 } __packed;
825
826 typedef struct MICBuffer MICBuffer;
827 struct MICBuffer {
828 __be16 typelen;
829
830 union {
831 u8 snap[8];
832 struct {
833 u8 dsap;
834 u8 ssap;
835 u8 control;
836 u8 orgcode[3];
837 u8 fieldtype[2];
838 } llc;
839 } u;
840 __be32 mic;
841 __be32 seq;
842 } __packed;
843
844 typedef struct {
845 u8 da[ETH_ALEN];
846 u8 sa[ETH_ALEN];
847 } etherHead;
848
849 #define TXCTL_TXOK (1<<1) /* report if tx is ok */
850 #define TXCTL_TXEX (1<<2) /* report if tx fails */
851 #define TXCTL_802_3 (0<<3) /* 802.3 packet */
852 #define TXCTL_802_11 (1<<3) /* 802.11 mac packet */
853 #define TXCTL_ETHERNET (0<<4) /* payload has ethertype */
854 #define TXCTL_LLC (1<<4) /* payload is llc */
855 #define TXCTL_RELEASE (0<<5) /* release after completion */
856 #define TXCTL_NORELEASE (1<<5) /* on completion returns to host */
857
858 #define BUSY_FID 0x10000
859
860 #ifdef CISCO_EXT
861 #define AIROMAGIC 0xa55a
862 /* Warning : SIOCDEVPRIVATE may disapear during 2.5.X - Jean II */
863 #ifdef SIOCIWFIRSTPRIV
864 #ifdef SIOCDEVPRIVATE
865 #define AIROOLDIOCTL SIOCDEVPRIVATE
866 #define AIROOLDIDIFC AIROOLDIOCTL + 1
867 #endif /* SIOCDEVPRIVATE */
868 #else /* SIOCIWFIRSTPRIV */
869 #define SIOCIWFIRSTPRIV SIOCDEVPRIVATE
870 #endif /* SIOCIWFIRSTPRIV */
871 /* This may be wrong. When using the new SIOCIWFIRSTPRIV range, we probably
872 * should use only "GET" ioctls (last bit set to 1). "SET" ioctls are root
873 * only and don't return the modified struct ifreq to the application which
874 * is usually a problem. - Jean II */
875 #define AIROIOCTL SIOCIWFIRSTPRIV
876 #define AIROIDIFC AIROIOCTL + 1
877
878 /* Ioctl constants to be used in airo_ioctl.command */
879
880 #define AIROGCAP 0 // Capability rid
881 #define AIROGCFG 1 // USED A LOT
882 #define AIROGSLIST 2 // System ID list
883 #define AIROGVLIST 3 // List of specified AP's
884 #define AIROGDRVNAM 4 // NOTUSED
885 #define AIROGEHTENC 5 // NOTUSED
886 #define AIROGWEPKTMP 6
887 #define AIROGWEPKNV 7
888 #define AIROGSTAT 8
889 #define AIROGSTATSC32 9
890 #define AIROGSTATSD32 10
891 #define AIROGMICRID 11
892 #define AIROGMICSTATS 12
893 #define AIROGFLAGS 13
894 #define AIROGID 14
895 #define AIRORRID 15
896 #define AIRORSWVERSION 17
897
898 /* Leave gap of 40 commands after AIROGSTATSD32 for future */
899
900 #define AIROPCAP AIROGSTATSD32 + 40
901 #define AIROPVLIST AIROPCAP + 1
902 #define AIROPSLIST AIROPVLIST + 1
903 #define AIROPCFG AIROPSLIST + 1
904 #define AIROPSIDS AIROPCFG + 1
905 #define AIROPAPLIST AIROPSIDS + 1
906 #define AIROPMACON AIROPAPLIST + 1 /* Enable mac */
907 #define AIROPMACOFF AIROPMACON + 1 /* Disable mac */
908 #define AIROPSTCLR AIROPMACOFF + 1
909 #define AIROPWEPKEY AIROPSTCLR + 1
910 #define AIROPWEPKEYNV AIROPWEPKEY + 1
911 #define AIROPLEAPPWD AIROPWEPKEYNV + 1
912 #define AIROPLEAPUSR AIROPLEAPPWD + 1
913
914 /* Flash codes */
915
916 #define AIROFLSHRST AIROPWEPKEYNV + 40
917 #define AIROFLSHGCHR AIROFLSHRST + 1
918 #define AIROFLSHSTFL AIROFLSHGCHR + 1
919 #define AIROFLSHPCHR AIROFLSHSTFL + 1
920 #define AIROFLPUTBUF AIROFLSHPCHR + 1
921 #define AIRORESTART AIROFLPUTBUF + 1
922
923 #define FLASHSIZE 32768
924 #define AUXMEMSIZE (256 * 1024)
925
926 typedef struct aironet_ioctl {
927 unsigned short command; // What to do
928 unsigned short len; // Len of data
929 unsigned short ridnum; // rid number
930 unsigned char __user *data; // d-data
931 } aironet_ioctl;
932
933 static const char swversion[] = "2.1";
934 #endif /* CISCO_EXT */
935
936 #define NUM_MODULES 2
937 #define MIC_MSGLEN_MAX 2400
938 #define EMMH32_MSGLEN_MAX MIC_MSGLEN_MAX
939 #define AIRO_DEF_MTU 2312
940
941 typedef struct {
942 u32 size; // size
943 u8 enabled; // MIC enabled or not
944 u32 rxSuccess; // successful packets received
945 u32 rxIncorrectMIC; // pkts dropped due to incorrect MIC comparison
946 u32 rxNotMICed; // pkts dropped due to not being MIC'd
947 u32 rxMICPlummed; // pkts dropped due to not having a MIC plummed
948 u32 rxWrongSequence; // pkts dropped due to sequence number violation
949 u32 reserve[32];
950 } mic_statistics;
951
952 typedef struct {
953 u32 coeff[((EMMH32_MSGLEN_MAX)+3)>>2];
954 u64 accum; // accumulated mic, reduced to u32 in final()
955 int position; // current position (byte offset) in message
956 union {
957 u8 d8[4];
958 __be32 d32;
959 } part; // saves partial message word across update() calls
960 } emmh32_context;
961
962 typedef struct {
963 emmh32_context seed; // Context - the seed
964 u32 rx; // Received sequence number
965 u32 tx; // Tx sequence number
966 u32 window; // Start of window
967 u8 valid; // Flag to say if context is valid or not
968 u8 key[16];
969 } miccntx;
970
971 typedef struct {
972 miccntx mCtx; // Multicast context
973 miccntx uCtx; // Unicast context
974 } mic_module;
975
976 typedef struct {
977 unsigned int rid: 16;
978 unsigned int len: 15;
979 unsigned int valid: 1;
980 dma_addr_t host_addr;
981 } Rid;
982
983 typedef struct {
984 unsigned int offset: 15;
985 unsigned int eoc: 1;
986 unsigned int len: 15;
987 unsigned int valid: 1;
988 dma_addr_t host_addr;
989 } TxFid;
990
991 struct rx_hdr {
992 __le16 status, len;
993 u8 rssi[2];
994 u8 rate;
995 u8 freq;
996 __le16 tmp[4];
997 } __packed;
998
999 typedef struct {
1000 unsigned int ctl: 15;
1001 unsigned int rdy: 1;
1002 unsigned int len: 15;
1003 unsigned int valid: 1;
1004 dma_addr_t host_addr;
1005 } RxFid;
1006
1007 /*
1008 * Host receive descriptor
1009 */
1010 typedef struct {
1011 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1012 desc */
1013 RxFid rx_desc; /* card receive descriptor */
1014 char *virtual_host_addr; /* virtual address of host receive
1015 buffer */
1016 int pending;
1017 } HostRxDesc;
1018
1019 /*
1020 * Host transmit descriptor
1021 */
1022 typedef struct {
1023 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1024 desc */
1025 TxFid tx_desc; /* card transmit descriptor */
1026 char *virtual_host_addr; /* virtual address of host receive
1027 buffer */
1028 int pending;
1029 } HostTxDesc;
1030
1031 /*
1032 * Host RID descriptor
1033 */
1034 typedef struct {
1035 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1036 descriptor */
1037 Rid rid_desc; /* card RID descriptor */
1038 char *virtual_host_addr; /* virtual address of host receive
1039 buffer */
1040 } HostRidDesc;
1041
1042 typedef struct {
1043 u16 sw0;
1044 u16 sw1;
1045 u16 status;
1046 u16 len;
1047 #define HOST_SET (1 << 0)
1048 #define HOST_INT_TX (1 << 1) /* Interrupt on successful TX */
1049 #define HOST_INT_TXERR (1 << 2) /* Interrupt on unseccessful TX */
1050 #define HOST_LCC_PAYLOAD (1 << 4) /* LLC payload, 0 = Ethertype */
1051 #define HOST_DONT_RLSE (1 << 5) /* Don't release buffer when done */
1052 #define HOST_DONT_RETRY (1 << 6) /* Don't retry trasmit */
1053 #define HOST_CLR_AID (1 << 7) /* clear AID failure */
1054 #define HOST_RTS (1 << 9) /* Force RTS use */
1055 #define HOST_SHORT (1 << 10) /* Do short preamble */
1056 u16 ctl;
1057 u16 aid;
1058 u16 retries;
1059 u16 fill;
1060 } TxCtlHdr;
1061
1062 typedef struct {
1063 u16 ctl;
1064 u16 duration;
1065 char addr1[6];
1066 char addr2[6];
1067 char addr3[6];
1068 u16 seq;
1069 char addr4[6];
1070 } WifiHdr;
1071
1072
1073 typedef struct {
1074 TxCtlHdr ctlhdr;
1075 u16 fill1;
1076 u16 fill2;
1077 WifiHdr wifihdr;
1078 u16 gaplen;
1079 u16 status;
1080 } WifiCtlHdr;
1081
1082 static WifiCtlHdr wifictlhdr8023 = {
1083 .ctlhdr = {
1084 .ctl = HOST_DONT_RLSE,
1085 }
1086 };
1087
1088 // A few details needed for WEP (Wireless Equivalent Privacy)
1089 #define MAX_KEY_SIZE 13 // 128 (?) bits
1090 #define MIN_KEY_SIZE 5 // 40 bits RC4 - WEP
1091 typedef struct wep_key_t {
1092 u16 len;
1093 u8 key[16]; /* 40-bit and 104-bit keys */
1094 } wep_key_t;
1095
1096 /* List of Wireless Handlers (new API) */
1097 static const struct iw_handler_def airo_handler_def;
1098
1099 static const char version[] = "airo.c 0.6 (Ben Reed & Javier Achirica)";
1100
1101 struct airo_info;
1102
1103 static int get_dec_u16( char *buffer, int *start, int limit );
1104 static void OUT4500( struct airo_info *, u16 register, u16 value );
1105 static unsigned short IN4500( struct airo_info *, u16 register );
1106 static u16 setup_card(struct airo_info*, u8 *mac, int lock);
1107 static int enable_MAC(struct airo_info *ai, int lock);
1108 static void disable_MAC(struct airo_info *ai, int lock);
1109 static void enable_interrupts(struct airo_info*);
1110 static void disable_interrupts(struct airo_info*);
1111 static u16 issuecommand(struct airo_info*, Cmd *pCmd, Resp *pRsp);
1112 static int bap_setup(struct airo_info*, u16 rid, u16 offset, int whichbap);
1113 static int aux_bap_read(struct airo_info*, __le16 *pu16Dst, int bytelen,
1114 int whichbap);
1115 static int fast_bap_read(struct airo_info*, __le16 *pu16Dst, int bytelen,
1116 int whichbap);
1117 static int bap_write(struct airo_info*, const __le16 *pu16Src, int bytelen,
1118 int whichbap);
1119 static int PC4500_accessrid(struct airo_info*, u16 rid, u16 accmd);
1120 static int PC4500_readrid(struct airo_info*, u16 rid, void *pBuf, int len, int lock);
1121 static int PC4500_writerid(struct airo_info*, u16 rid, const void
1122 *pBuf, int len, int lock);
1123 static int do_writerid( struct airo_info*, u16 rid, const void *rid_data,
1124 int len, int dummy );
1125 static u16 transmit_allocate(struct airo_info*, int lenPayload, int raw);
1126 static int transmit_802_3_packet(struct airo_info*, int len, char *pPacket);
1127 static int transmit_802_11_packet(struct airo_info*, int len, char *pPacket);
1128
1129 static int mpi_send_packet (struct net_device *dev);
1130 static void mpi_unmap_card(struct pci_dev *pci);
1131 static void mpi_receive_802_3(struct airo_info *ai);
1132 static void mpi_receive_802_11(struct airo_info *ai);
1133 static int waitbusy (struct airo_info *ai);
1134
1135 static irqreturn_t airo_interrupt( int irq, void* dev_id);
1136 static int airo_thread(void *data);
1137 static void timer_func( struct net_device *dev );
1138 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd);
1139 static struct iw_statistics *airo_get_wireless_stats (struct net_device *dev);
1140 static void airo_read_wireless_stats (struct airo_info *local);
1141 #ifdef CISCO_EXT
1142 static int readrids(struct net_device *dev, aironet_ioctl *comp);
1143 static int writerids(struct net_device *dev, aironet_ioctl *comp);
1144 static int flashcard(struct net_device *dev, aironet_ioctl *comp);
1145 #endif /* CISCO_EXT */
1146 static void micinit(struct airo_info *ai);
1147 static int micsetup(struct airo_info *ai);
1148 static int encapsulate(struct airo_info *ai, etherHead *pPacket, MICBuffer *buffer, int len);
1149 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *pPacket, u16 payLen);
1150
1151 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi);
1152 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm);
1153
1154 static void airo_networks_free(struct airo_info *ai);
1155
1156 struct airo_info {
1157 struct net_device *dev;
1158 struct list_head dev_list;
1159 /* Note, we can have MAX_FIDS outstanding. FIDs are 16-bits, so we
1160 use the high bit to mark whether it is in use. */
1161 #define MAX_FIDS 6
1162 #define MPI_MAX_FIDS 1
1163 u32 fids[MAX_FIDS];
1164 ConfigRid config;
1165 char keyindex; // Used with auto wep
1166 char defindex; // Used with auto wep
1167 struct proc_dir_entry *proc_entry;
1168 spinlock_t aux_lock;
1169 #define FLAG_RADIO_OFF 0 /* User disabling of MAC */
1170 #define FLAG_RADIO_DOWN 1 /* ifup/ifdown disabling of MAC */
1171 #define FLAG_RADIO_MASK 0x03
1172 #define FLAG_ENABLED 2
1173 #define FLAG_ADHOC 3 /* Needed by MIC */
1174 #define FLAG_MIC_CAPABLE 4
1175 #define FLAG_UPDATE_MULTI 5
1176 #define FLAG_UPDATE_UNI 6
1177 #define FLAG_802_11 7
1178 #define FLAG_PROMISC 8 /* IFF_PROMISC 0x100 - include/linux/if.h */
1179 #define FLAG_PENDING_XMIT 9
1180 #define FLAG_PENDING_XMIT11 10
1181 #define FLAG_MPI 11
1182 #define FLAG_REGISTERED 12
1183 #define FLAG_COMMIT 13
1184 #define FLAG_RESET 14
1185 #define FLAG_FLASHING 15
1186 #define FLAG_WPA_CAPABLE 16
1187 unsigned long flags;
1188 #define JOB_DIE 0
1189 #define JOB_XMIT 1
1190 #define JOB_XMIT11 2
1191 #define JOB_STATS 3
1192 #define JOB_PROMISC 4
1193 #define JOB_MIC 5
1194 #define JOB_EVENT 6
1195 #define JOB_AUTOWEP 7
1196 #define JOB_WSTATS 8
1197 #define JOB_SCAN_RESULTS 9
1198 unsigned long jobs;
1199 int (*bap_read)(struct airo_info*, __le16 *pu16Dst, int bytelen,
1200 int whichbap);
1201 unsigned short *flash;
1202 tdsRssiEntry *rssi;
1203 struct task_struct *list_bss_task;
1204 struct task_struct *airo_thread_task;
1205 struct semaphore sem;
1206 wait_queue_head_t thr_wait;
1207 unsigned long expires;
1208 struct {
1209 struct sk_buff *skb;
1210 int fid;
1211 } xmit, xmit11;
1212 struct net_device *wifidev;
1213 struct iw_statistics wstats; // wireless stats
1214 unsigned long scan_timeout; /* Time scan should be read */
1215 struct iw_spy_data spy_data;
1216 struct iw_public_data wireless_data;
1217 /* MIC stuff */
1218 struct crypto_cipher *tfm;
1219 mic_module mod[2];
1220 mic_statistics micstats;
1221 HostRxDesc rxfids[MPI_MAX_FIDS]; // rx/tx/config MPI350 descriptors
1222 HostTxDesc txfids[MPI_MAX_FIDS];
1223 HostRidDesc config_desc;
1224 unsigned long ridbus; // phys addr of config_desc
1225 struct sk_buff_head txq;// tx queue used by mpi350 code
1226 struct pci_dev *pci;
1227 unsigned char __iomem *pcimem;
1228 unsigned char __iomem *pciaux;
1229 unsigned char *shared;
1230 dma_addr_t shared_dma;
1231 pm_message_t power;
1232 SsidRid *SSID;
1233 APListRid *APList;
1234 #define PCI_SHARED_LEN 2*MPI_MAX_FIDS*PKTSIZE+RIDSIZE
1235 char proc_name[IFNAMSIZ];
1236
1237 int wep_capable;
1238 int max_wep_idx;
1239
1240 /* WPA-related stuff */
1241 unsigned int bssListFirst;
1242 unsigned int bssListNext;
1243 unsigned int bssListRidLen;
1244
1245 struct list_head network_list;
1246 struct list_head network_free_list;
1247 BSSListElement *networks;
1248 };
1249
bap_read(struct airo_info * ai,__le16 * pu16Dst,int bytelen,int whichbap)1250 static inline int bap_read(struct airo_info *ai, __le16 *pu16Dst, int bytelen,
1251 int whichbap)
1252 {
1253 return ai->bap_read(ai, pu16Dst, bytelen, whichbap);
1254 }
1255
1256 static int setup_proc_entry( struct net_device *dev,
1257 struct airo_info *apriv );
1258 static int takedown_proc_entry( struct net_device *dev,
1259 struct airo_info *apriv );
1260
1261 static int cmdreset(struct airo_info *ai);
1262 static int setflashmode (struct airo_info *ai);
1263 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime);
1264 static int flashputbuf(struct airo_info *ai);
1265 static int flashrestart(struct airo_info *ai,struct net_device *dev);
1266
1267 #define airo_print(type, name, fmt, args...) \
1268 printk(type DRV_NAME "(%s): " fmt "\n", name, ##args)
1269
1270 #define airo_print_info(name, fmt, args...) \
1271 airo_print(KERN_INFO, name, fmt, ##args)
1272
1273 #define airo_print_dbg(name, fmt, args...) \
1274 airo_print(KERN_DEBUG, name, fmt, ##args)
1275
1276 #define airo_print_warn(name, fmt, args...) \
1277 airo_print(KERN_WARNING, name, fmt, ##args)
1278
1279 #define airo_print_err(name, fmt, args...) \
1280 airo_print(KERN_ERR, name, fmt, ##args)
1281
1282 #define AIRO_FLASH(dev) (((struct airo_info *)dev->ml_priv)->flash)
1283
1284 /***********************************************************************
1285 * MIC ROUTINES *
1286 ***********************************************************************
1287 */
1288
1289 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq);
1290 static void MoveWindow(miccntx *context, u32 micSeq);
1291 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen,
1292 struct crypto_cipher *tfm);
1293 static void emmh32_init(emmh32_context *context);
1294 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len);
1295 static void emmh32_final(emmh32_context *context, u8 digest[4]);
1296 static int flashpchar(struct airo_info *ai,int byte,int dwelltime);
1297
age_mic_context(miccntx * cur,miccntx * old,u8 * key,int key_len,struct crypto_cipher * tfm)1298 static void age_mic_context(miccntx *cur, miccntx *old, u8 *key, int key_len,
1299 struct crypto_cipher *tfm)
1300 {
1301 /* If the current MIC context is valid and its key is the same as
1302 * the MIC register, there's nothing to do.
1303 */
1304 if (cur->valid && (memcmp(cur->key, key, key_len) == 0))
1305 return;
1306
1307 /* Age current mic Context */
1308 memcpy(old, cur, sizeof(*cur));
1309
1310 /* Initialize new context */
1311 memcpy(cur->key, key, key_len);
1312 cur->window = 33; /* Window always points to the middle */
1313 cur->rx = 0; /* Rx Sequence numbers */
1314 cur->tx = 0; /* Tx sequence numbers */
1315 cur->valid = 1; /* Key is now valid */
1316
1317 /* Give key to mic seed */
1318 emmh32_setseed(&cur->seed, key, key_len, tfm);
1319 }
1320
1321 /* micinit - Initialize mic seed */
1322
micinit(struct airo_info * ai)1323 static void micinit(struct airo_info *ai)
1324 {
1325 MICRid mic_rid;
1326
1327 clear_bit(JOB_MIC, &ai->jobs);
1328 PC4500_readrid(ai, RID_MIC, &mic_rid, sizeof(mic_rid), 0);
1329 up(&ai->sem);
1330
1331 ai->micstats.enabled = (le16_to_cpu(mic_rid.state) & 0x00FF) ? 1 : 0;
1332 if (!ai->micstats.enabled) {
1333 /* So next time we have a valid key and mic is enabled, we will
1334 * update the sequence number if the key is the same as before.
1335 */
1336 ai->mod[0].uCtx.valid = 0;
1337 ai->mod[0].mCtx.valid = 0;
1338 return;
1339 }
1340
1341 if (mic_rid.multicastValid) {
1342 age_mic_context(&ai->mod[0].mCtx, &ai->mod[1].mCtx,
1343 mic_rid.multicast, sizeof(mic_rid.multicast),
1344 ai->tfm);
1345 }
1346
1347 if (mic_rid.unicastValid) {
1348 age_mic_context(&ai->mod[0].uCtx, &ai->mod[1].uCtx,
1349 mic_rid.unicast, sizeof(mic_rid.unicast),
1350 ai->tfm);
1351 }
1352 }
1353
1354 /* micsetup - Get ready for business */
1355
micsetup(struct airo_info * ai)1356 static int micsetup(struct airo_info *ai) {
1357 int i;
1358
1359 if (ai->tfm == NULL)
1360 ai->tfm = crypto_alloc_cipher("aes", 0, CRYPTO_ALG_ASYNC);
1361
1362 if (IS_ERR(ai->tfm)) {
1363 airo_print_err(ai->dev->name, "failed to load transform for AES");
1364 ai->tfm = NULL;
1365 return ERROR;
1366 }
1367
1368 for (i=0; i < NUM_MODULES; i++) {
1369 memset(&ai->mod[i].mCtx,0,sizeof(miccntx));
1370 memset(&ai->mod[i].uCtx,0,sizeof(miccntx));
1371 }
1372 return SUCCESS;
1373 }
1374
1375 static const u8 micsnap[] = {0xAA,0xAA,0x03,0x00,0x40,0x96,0x00,0x02};
1376
1377 /*===========================================================================
1378 * Description: Mic a packet
1379 *
1380 * Inputs: etherHead * pointer to an 802.3 frame
1381 *
1382 * Returns: BOOLEAN if successful, otherwise false.
1383 * PacketTxLen will be updated with the mic'd packets size.
1384 *
1385 * Caveats: It is assumed that the frame buffer will already
1386 * be big enough to hold the largets mic message possible.
1387 * (No memory allocation is done here).
1388 *
1389 * Author: sbraneky (10/15/01)
1390 * Merciless hacks by rwilcher (1/14/02)
1391 */
1392
encapsulate(struct airo_info * ai,etherHead * frame,MICBuffer * mic,int payLen)1393 static int encapsulate(struct airo_info *ai ,etherHead *frame, MICBuffer *mic, int payLen)
1394 {
1395 miccntx *context;
1396
1397 // Determine correct context
1398 // If not adhoc, always use unicast key
1399
1400 if (test_bit(FLAG_ADHOC, &ai->flags) && (frame->da[0] & 0x1))
1401 context = &ai->mod[0].mCtx;
1402 else
1403 context = &ai->mod[0].uCtx;
1404
1405 if (!context->valid)
1406 return ERROR;
1407
1408 mic->typelen = htons(payLen + 16); //Length of Mic'd packet
1409
1410 memcpy(&mic->u.snap, micsnap, sizeof(micsnap)); // Add Snap
1411
1412 // Add Tx sequence
1413 mic->seq = htonl(context->tx);
1414 context->tx += 2;
1415
1416 emmh32_init(&context->seed); // Mic the packet
1417 emmh32_update(&context->seed,frame->da,ETH_ALEN * 2); // DA,SA
1418 emmh32_update(&context->seed,(u8*)&mic->typelen,10); // Type/Length and Snap
1419 emmh32_update(&context->seed,(u8*)&mic->seq,sizeof(mic->seq)); //SEQ
1420 emmh32_update(&context->seed,(u8*)(frame + 1),payLen); //payload
1421 emmh32_final(&context->seed, (u8*)&mic->mic);
1422
1423 /* New Type/length ?????????? */
1424 mic->typelen = 0; //Let NIC know it could be an oversized packet
1425 return SUCCESS;
1426 }
1427
1428 typedef enum {
1429 NONE,
1430 NOMIC,
1431 NOMICPLUMMED,
1432 SEQUENCE,
1433 INCORRECTMIC,
1434 } mic_error;
1435
1436 /*===========================================================================
1437 * Description: Decapsulates a MIC'd packet and returns the 802.3 packet
1438 * (removes the MIC stuff) if packet is a valid packet.
1439 *
1440 * Inputs: etherHead pointer to the 802.3 packet
1441 *
1442 * Returns: BOOLEAN - TRUE if packet should be dropped otherwise FALSE
1443 *
1444 * Author: sbraneky (10/15/01)
1445 * Merciless hacks by rwilcher (1/14/02)
1446 *---------------------------------------------------------------------------
1447 */
1448
decapsulate(struct airo_info * ai,MICBuffer * mic,etherHead * eth,u16 payLen)1449 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *eth, u16 payLen)
1450 {
1451 int i;
1452 u32 micSEQ;
1453 miccntx *context;
1454 u8 digest[4];
1455 mic_error micError = NONE;
1456
1457 // Check if the packet is a Mic'd packet
1458
1459 if (!ai->micstats.enabled) {
1460 //No Mic set or Mic OFF but we received a MIC'd packet.
1461 if (memcmp ((u8*)eth + 14, micsnap, sizeof(micsnap)) == 0) {
1462 ai->micstats.rxMICPlummed++;
1463 return ERROR;
1464 }
1465 return SUCCESS;
1466 }
1467
1468 if (ntohs(mic->typelen) == 0x888E)
1469 return SUCCESS;
1470
1471 if (memcmp (mic->u.snap, micsnap, sizeof(micsnap)) != 0) {
1472 // Mic enabled but packet isn't Mic'd
1473 ai->micstats.rxMICPlummed++;
1474 return ERROR;
1475 }
1476
1477 micSEQ = ntohl(mic->seq); //store SEQ as CPU order
1478
1479 //At this point we a have a mic'd packet and mic is enabled
1480 //Now do the mic error checking.
1481
1482 //Receive seq must be odd
1483 if ( (micSEQ & 1) == 0 ) {
1484 ai->micstats.rxWrongSequence++;
1485 return ERROR;
1486 }
1487
1488 for (i = 0; i < NUM_MODULES; i++) {
1489 int mcast = eth->da[0] & 1;
1490 //Determine proper context
1491 context = mcast ? &ai->mod[i].mCtx : &ai->mod[i].uCtx;
1492
1493 //Make sure context is valid
1494 if (!context->valid) {
1495 if (i == 0)
1496 micError = NOMICPLUMMED;
1497 continue;
1498 }
1499 //DeMic it
1500
1501 if (!mic->typelen)
1502 mic->typelen = htons(payLen + sizeof(MICBuffer) - 2);
1503
1504 emmh32_init(&context->seed);
1505 emmh32_update(&context->seed, eth->da, ETH_ALEN*2);
1506 emmh32_update(&context->seed, (u8 *)&mic->typelen, sizeof(mic->typelen)+sizeof(mic->u.snap));
1507 emmh32_update(&context->seed, (u8 *)&mic->seq,sizeof(mic->seq));
1508 emmh32_update(&context->seed, (u8 *)(eth + 1),payLen);
1509 //Calculate MIC
1510 emmh32_final(&context->seed, digest);
1511
1512 if (memcmp(digest, &mic->mic, 4)) { //Make sure the mics match
1513 //Invalid Mic
1514 if (i == 0)
1515 micError = INCORRECTMIC;
1516 continue;
1517 }
1518
1519 //Check Sequence number if mics pass
1520 if (RxSeqValid(ai, context, mcast, micSEQ) == SUCCESS) {
1521 ai->micstats.rxSuccess++;
1522 return SUCCESS;
1523 }
1524 if (i == 0)
1525 micError = SEQUENCE;
1526 }
1527
1528 // Update statistics
1529 switch (micError) {
1530 case NOMICPLUMMED: ai->micstats.rxMICPlummed++; break;
1531 case SEQUENCE: ai->micstats.rxWrongSequence++; break;
1532 case INCORRECTMIC: ai->micstats.rxIncorrectMIC++; break;
1533 case NONE: break;
1534 case NOMIC: break;
1535 }
1536 return ERROR;
1537 }
1538
1539 /*===========================================================================
1540 * Description: Checks the Rx Seq number to make sure it is valid
1541 * and hasn't already been received
1542 *
1543 * Inputs: miccntx - mic context to check seq against
1544 * micSeq - the Mic seq number
1545 *
1546 * Returns: TRUE if valid otherwise FALSE.
1547 *
1548 * Author: sbraneky (10/15/01)
1549 * Merciless hacks by rwilcher (1/14/02)
1550 *---------------------------------------------------------------------------
1551 */
1552
RxSeqValid(struct airo_info * ai,miccntx * context,int mcast,u32 micSeq)1553 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq)
1554 {
1555 u32 seq,index;
1556
1557 //Allow for the ap being rebooted - if it is then use the next
1558 //sequence number of the current sequence number - might go backwards
1559
1560 if (mcast) {
1561 if (test_bit(FLAG_UPDATE_MULTI, &ai->flags)) {
1562 clear_bit (FLAG_UPDATE_MULTI, &ai->flags);
1563 context->window = (micSeq > 33) ? micSeq : 33;
1564 context->rx = 0; // Reset rx
1565 }
1566 } else if (test_bit(FLAG_UPDATE_UNI, &ai->flags)) {
1567 clear_bit (FLAG_UPDATE_UNI, &ai->flags);
1568 context->window = (micSeq > 33) ? micSeq : 33; // Move window
1569 context->rx = 0; // Reset rx
1570 }
1571
1572 //Make sequence number relative to START of window
1573 seq = micSeq - (context->window - 33);
1574
1575 //Too old of a SEQ number to check.
1576 if ((s32)seq < 0)
1577 return ERROR;
1578
1579 if ( seq > 64 ) {
1580 //Window is infinite forward
1581 MoveWindow(context,micSeq);
1582 return SUCCESS;
1583 }
1584
1585 // We are in the window. Now check the context rx bit to see if it was already sent
1586 seq >>= 1; //divide by 2 because we only have odd numbers
1587 index = 1 << seq; //Get an index number
1588
1589 if (!(context->rx & index)) {
1590 //micSEQ falls inside the window.
1591 //Add seqence number to the list of received numbers.
1592 context->rx |= index;
1593
1594 MoveWindow(context,micSeq);
1595
1596 return SUCCESS;
1597 }
1598 return ERROR;
1599 }
1600
MoveWindow(miccntx * context,u32 micSeq)1601 static void MoveWindow(miccntx *context, u32 micSeq)
1602 {
1603 u32 shift;
1604
1605 //Move window if seq greater than the middle of the window
1606 if (micSeq > context->window) {
1607 shift = (micSeq - context->window) >> 1;
1608
1609 //Shift out old
1610 if (shift < 32)
1611 context->rx >>= shift;
1612 else
1613 context->rx = 0;
1614
1615 context->window = micSeq; //Move window
1616 }
1617 }
1618
1619 /*==============================================*/
1620 /*========== EMMH ROUTINES ====================*/
1621 /*==============================================*/
1622
1623 /* mic accumulate */
1624 #define MIC_ACCUM(val) \
1625 context->accum += (u64)(val) * context->coeff[coeff_position++];
1626
1627 static unsigned char aes_counter[16];
1628
1629 /* expand the key to fill the MMH coefficient array */
emmh32_setseed(emmh32_context * context,u8 * pkey,int keylen,struct crypto_cipher * tfm)1630 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen,
1631 struct crypto_cipher *tfm)
1632 {
1633 /* take the keying material, expand if necessary, truncate at 16-bytes */
1634 /* run through AES counter mode to generate context->coeff[] */
1635
1636 int i,j;
1637 u32 counter;
1638 u8 *cipher, plain[16];
1639
1640 crypto_cipher_setkey(tfm, pkey, 16);
1641 counter = 0;
1642 for (i = 0; i < ARRAY_SIZE(context->coeff); ) {
1643 aes_counter[15] = (u8)(counter >> 0);
1644 aes_counter[14] = (u8)(counter >> 8);
1645 aes_counter[13] = (u8)(counter >> 16);
1646 aes_counter[12] = (u8)(counter >> 24);
1647 counter++;
1648 memcpy (plain, aes_counter, 16);
1649 crypto_cipher_encrypt_one(tfm, plain, plain);
1650 cipher = plain;
1651 for (j = 0; (j < 16) && (i < ARRAY_SIZE(context->coeff)); ) {
1652 context->coeff[i++] = ntohl(*(__be32 *)&cipher[j]);
1653 j += 4;
1654 }
1655 }
1656 }
1657
1658 /* prepare for calculation of a new mic */
emmh32_init(emmh32_context * context)1659 static void emmh32_init(emmh32_context *context)
1660 {
1661 /* prepare for new mic calculation */
1662 context->accum = 0;
1663 context->position = 0;
1664 }
1665
1666 /* add some bytes to the mic calculation */
emmh32_update(emmh32_context * context,u8 * pOctets,int len)1667 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len)
1668 {
1669 int coeff_position, byte_position;
1670
1671 if (len == 0) return;
1672
1673 coeff_position = context->position >> 2;
1674
1675 /* deal with partial 32-bit word left over from last update */
1676 byte_position = context->position & 3;
1677 if (byte_position) {
1678 /* have a partial word in part to deal with */
1679 do {
1680 if (len == 0) return;
1681 context->part.d8[byte_position++] = *pOctets++;
1682 context->position++;
1683 len--;
1684 } while (byte_position < 4);
1685 MIC_ACCUM(ntohl(context->part.d32));
1686 }
1687
1688 /* deal with full 32-bit words */
1689 while (len >= 4) {
1690 MIC_ACCUM(ntohl(*(__be32 *)pOctets));
1691 context->position += 4;
1692 pOctets += 4;
1693 len -= 4;
1694 }
1695
1696 /* deal with partial 32-bit word that will be left over from this update */
1697 byte_position = 0;
1698 while (len > 0) {
1699 context->part.d8[byte_position++] = *pOctets++;
1700 context->position++;
1701 len--;
1702 }
1703 }
1704
1705 /* mask used to zero empty bytes for final partial word */
1706 static u32 mask32[4] = { 0x00000000L, 0xFF000000L, 0xFFFF0000L, 0xFFFFFF00L };
1707
1708 /* calculate the mic */
emmh32_final(emmh32_context * context,u8 digest[4])1709 static void emmh32_final(emmh32_context *context, u8 digest[4])
1710 {
1711 int coeff_position, byte_position;
1712 u32 val;
1713
1714 u64 sum, utmp;
1715 s64 stmp;
1716
1717 coeff_position = context->position >> 2;
1718
1719 /* deal with partial 32-bit word left over from last update */
1720 byte_position = context->position & 3;
1721 if (byte_position) {
1722 /* have a partial word in part to deal with */
1723 val = ntohl(context->part.d32);
1724 MIC_ACCUM(val & mask32[byte_position]); /* zero empty bytes */
1725 }
1726
1727 /* reduce the accumulated u64 to a 32-bit MIC */
1728 sum = context->accum;
1729 stmp = (sum & 0xffffffffLL) - ((sum >> 32) * 15);
1730 utmp = (stmp & 0xffffffffLL) - ((stmp >> 32) * 15);
1731 sum = utmp & 0xffffffffLL;
1732 if (utmp > 0x10000000fLL)
1733 sum -= 15;
1734
1735 val = (u32)sum;
1736 digest[0] = (val>>24) & 0xFF;
1737 digest[1] = (val>>16) & 0xFF;
1738 digest[2] = (val>>8) & 0xFF;
1739 digest[3] = val & 0xFF;
1740 }
1741
readBSSListRid(struct airo_info * ai,int first,BSSListRid * list)1742 static int readBSSListRid(struct airo_info *ai, int first,
1743 BSSListRid *list)
1744 {
1745 Cmd cmd;
1746 Resp rsp;
1747
1748 if (first == 1) {
1749 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
1750 memset(&cmd, 0, sizeof(cmd));
1751 cmd.cmd=CMD_LISTBSS;
1752 if (down_interruptible(&ai->sem))
1753 return -ERESTARTSYS;
1754 ai->list_bss_task = current;
1755 issuecommand(ai, &cmd, &rsp);
1756 up(&ai->sem);
1757 /* Let the command take effect */
1758 schedule_timeout_uninterruptible(3 * HZ);
1759 ai->list_bss_task = NULL;
1760 }
1761 return PC4500_readrid(ai, first ? ai->bssListFirst : ai->bssListNext,
1762 list, ai->bssListRidLen, 1);
1763 }
1764
readWepKeyRid(struct airo_info * ai,WepKeyRid * wkr,int temp,int lock)1765 static int readWepKeyRid(struct airo_info *ai, WepKeyRid *wkr, int temp, int lock)
1766 {
1767 return PC4500_readrid(ai, temp ? RID_WEP_TEMP : RID_WEP_PERM,
1768 wkr, sizeof(*wkr), lock);
1769 }
1770
writeWepKeyRid(struct airo_info * ai,WepKeyRid * wkr,int perm,int lock)1771 static int writeWepKeyRid(struct airo_info *ai, WepKeyRid *wkr, int perm, int lock)
1772 {
1773 int rc;
1774 rc = PC4500_writerid(ai, RID_WEP_TEMP, wkr, sizeof(*wkr), lock);
1775 if (rc!=SUCCESS)
1776 airo_print_err(ai->dev->name, "WEP_TEMP set %x", rc);
1777 if (perm) {
1778 rc = PC4500_writerid(ai, RID_WEP_PERM, wkr, sizeof(*wkr), lock);
1779 if (rc!=SUCCESS)
1780 airo_print_err(ai->dev->name, "WEP_PERM set %x", rc);
1781 }
1782 return rc;
1783 }
1784
readSsidRid(struct airo_info * ai,SsidRid * ssidr)1785 static int readSsidRid(struct airo_info*ai, SsidRid *ssidr)
1786 {
1787 return PC4500_readrid(ai, RID_SSID, ssidr, sizeof(*ssidr), 1);
1788 }
1789
writeSsidRid(struct airo_info * ai,SsidRid * pssidr,int lock)1790 static int writeSsidRid(struct airo_info*ai, SsidRid *pssidr, int lock)
1791 {
1792 return PC4500_writerid(ai, RID_SSID, pssidr, sizeof(*pssidr), lock);
1793 }
1794
readConfigRid(struct airo_info * ai,int lock)1795 static int readConfigRid(struct airo_info *ai, int lock)
1796 {
1797 int rc;
1798 ConfigRid cfg;
1799
1800 if (ai->config.len)
1801 return SUCCESS;
1802
1803 rc = PC4500_readrid(ai, RID_ACTUALCONFIG, &cfg, sizeof(cfg), lock);
1804 if (rc != SUCCESS)
1805 return rc;
1806
1807 ai->config = cfg;
1808 return SUCCESS;
1809 }
1810
checkThrottle(struct airo_info * ai)1811 static inline void checkThrottle(struct airo_info *ai)
1812 {
1813 int i;
1814 /* Old hardware had a limit on encryption speed */
1815 if (ai->config.authType != AUTH_OPEN && maxencrypt) {
1816 for(i=0; i<8; i++) {
1817 if (ai->config.rates[i] > maxencrypt) {
1818 ai->config.rates[i] = 0;
1819 }
1820 }
1821 }
1822 }
1823
writeConfigRid(struct airo_info * ai,int lock)1824 static int writeConfigRid(struct airo_info *ai, int lock)
1825 {
1826 ConfigRid cfgr;
1827
1828 if (!test_bit (FLAG_COMMIT, &ai->flags))
1829 return SUCCESS;
1830
1831 clear_bit (FLAG_COMMIT, &ai->flags);
1832 clear_bit (FLAG_RESET, &ai->flags);
1833 checkThrottle(ai);
1834 cfgr = ai->config;
1835
1836 if ((cfgr.opmode & MODE_CFG_MASK) == MODE_STA_IBSS)
1837 set_bit(FLAG_ADHOC, &ai->flags);
1838 else
1839 clear_bit(FLAG_ADHOC, &ai->flags);
1840
1841 return PC4500_writerid( ai, RID_CONFIG, &cfgr, sizeof(cfgr), lock);
1842 }
1843
readStatusRid(struct airo_info * ai,StatusRid * statr,int lock)1844 static int readStatusRid(struct airo_info *ai, StatusRid *statr, int lock)
1845 {
1846 return PC4500_readrid(ai, RID_STATUS, statr, sizeof(*statr), lock);
1847 }
1848
readAPListRid(struct airo_info * ai,APListRid * aplr)1849 static int readAPListRid(struct airo_info *ai, APListRid *aplr)
1850 {
1851 return PC4500_readrid(ai, RID_APLIST, aplr, sizeof(*aplr), 1);
1852 }
1853
writeAPListRid(struct airo_info * ai,APListRid * aplr,int lock)1854 static int writeAPListRid(struct airo_info *ai, APListRid *aplr, int lock)
1855 {
1856 return PC4500_writerid(ai, RID_APLIST, aplr, sizeof(*aplr), lock);
1857 }
1858
readCapabilityRid(struct airo_info * ai,CapabilityRid * capr,int lock)1859 static int readCapabilityRid(struct airo_info *ai, CapabilityRid *capr, int lock)
1860 {
1861 return PC4500_readrid(ai, RID_CAPABILITIES, capr, sizeof(*capr), lock);
1862 }
1863
readStatsRid(struct airo_info * ai,StatsRid * sr,int rid,int lock)1864 static int readStatsRid(struct airo_info*ai, StatsRid *sr, int rid, int lock)
1865 {
1866 return PC4500_readrid(ai, rid, sr, sizeof(*sr), lock);
1867 }
1868
try_auto_wep(struct airo_info * ai)1869 static void try_auto_wep(struct airo_info *ai)
1870 {
1871 if (auto_wep && !test_bit(FLAG_RADIO_DOWN, &ai->flags)) {
1872 ai->expires = RUN_AT(3*HZ);
1873 wake_up_interruptible(&ai->thr_wait);
1874 }
1875 }
1876
airo_open(struct net_device * dev)1877 static int airo_open(struct net_device *dev) {
1878 struct airo_info *ai = dev->ml_priv;
1879 int rc = 0;
1880
1881 if (test_bit(FLAG_FLASHING, &ai->flags))
1882 return -EIO;
1883
1884 /* Make sure the card is configured.
1885 * Wireless Extensions may postpone config changes until the card
1886 * is open (to pipeline changes and speed-up card setup). If
1887 * those changes are not yet committed, do it now - Jean II */
1888 if (test_bit(FLAG_COMMIT, &ai->flags)) {
1889 disable_MAC(ai, 1);
1890 writeConfigRid(ai, 1);
1891 }
1892
1893 if (ai->wifidev != dev) {
1894 clear_bit(JOB_DIE, &ai->jobs);
1895 ai->airo_thread_task = kthread_run(airo_thread, dev, dev->name);
1896 if (IS_ERR(ai->airo_thread_task))
1897 return (int)PTR_ERR(ai->airo_thread_task);
1898
1899 rc = request_irq(dev->irq, airo_interrupt, IRQF_SHARED,
1900 dev->name, dev);
1901 if (rc) {
1902 airo_print_err(dev->name,
1903 "register interrupt %d failed, rc %d",
1904 dev->irq, rc);
1905 set_bit(JOB_DIE, &ai->jobs);
1906 kthread_stop(ai->airo_thread_task);
1907 return rc;
1908 }
1909
1910 /* Power on the MAC controller (which may have been disabled) */
1911 clear_bit(FLAG_RADIO_DOWN, &ai->flags);
1912 enable_interrupts(ai);
1913
1914 try_auto_wep(ai);
1915 }
1916 enable_MAC(ai, 1);
1917
1918 netif_start_queue(dev);
1919 return 0;
1920 }
1921
mpi_start_xmit(struct sk_buff * skb,struct net_device * dev)1922 static netdev_tx_t mpi_start_xmit(struct sk_buff *skb,
1923 struct net_device *dev)
1924 {
1925 int npacks, pending;
1926 unsigned long flags;
1927 struct airo_info *ai = dev->ml_priv;
1928
1929 if (!skb) {
1930 airo_print_err(dev->name, "%s: skb == NULL!",__func__);
1931 return NETDEV_TX_OK;
1932 }
1933 npacks = skb_queue_len (&ai->txq);
1934
1935 if (npacks >= MAXTXQ - 1) {
1936 netif_stop_queue (dev);
1937 if (npacks > MAXTXQ) {
1938 dev->stats.tx_fifo_errors++;
1939 return NETDEV_TX_BUSY;
1940 }
1941 skb_queue_tail (&ai->txq, skb);
1942 return NETDEV_TX_OK;
1943 }
1944
1945 spin_lock_irqsave(&ai->aux_lock, flags);
1946 skb_queue_tail (&ai->txq, skb);
1947 pending = test_bit(FLAG_PENDING_XMIT, &ai->flags);
1948 spin_unlock_irqrestore(&ai->aux_lock,flags);
1949 netif_wake_queue (dev);
1950
1951 if (pending == 0) {
1952 set_bit(FLAG_PENDING_XMIT, &ai->flags);
1953 mpi_send_packet (dev);
1954 }
1955 return NETDEV_TX_OK;
1956 }
1957
1958 /*
1959 * @mpi_send_packet
1960 *
1961 * Attempt to transmit a packet. Can be called from interrupt
1962 * or transmit . return number of packets we tried to send
1963 */
1964
mpi_send_packet(struct net_device * dev)1965 static int mpi_send_packet (struct net_device *dev)
1966 {
1967 struct sk_buff *skb;
1968 unsigned char *buffer;
1969 s16 len;
1970 __le16 *payloadLen;
1971 struct airo_info *ai = dev->ml_priv;
1972 u8 *sendbuf;
1973
1974 /* get a packet to send */
1975
1976 if ((skb = skb_dequeue(&ai->txq)) == NULL) {
1977 airo_print_err(dev->name,
1978 "%s: Dequeue'd zero in send_packet()",
1979 __func__);
1980 return 0;
1981 }
1982
1983 /* check min length*/
1984 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
1985 buffer = skb->data;
1986
1987 ai->txfids[0].tx_desc.offset = 0;
1988 ai->txfids[0].tx_desc.valid = 1;
1989 ai->txfids[0].tx_desc.eoc = 1;
1990 ai->txfids[0].tx_desc.len =len+sizeof(WifiHdr);
1991
1992 /*
1993 * Magic, the cards firmware needs a length count (2 bytes) in the host buffer
1994 * right after TXFID_HDR.The TXFID_HDR contains the status short so payloadlen
1995 * is immediately after it. ------------------------------------------------
1996 * |TXFIDHDR+STATUS|PAYLOADLEN|802.3HDR|PACKETDATA|
1997 * ------------------------------------------------
1998 */
1999
2000 memcpy((char *)ai->txfids[0].virtual_host_addr,
2001 (char *)&wifictlhdr8023, sizeof(wifictlhdr8023));
2002
2003 payloadLen = (__le16 *)(ai->txfids[0].virtual_host_addr +
2004 sizeof(wifictlhdr8023));
2005 sendbuf = ai->txfids[0].virtual_host_addr +
2006 sizeof(wifictlhdr8023) + 2 ;
2007
2008 /*
2009 * Firmware automatically puts 802 header on so
2010 * we don't need to account for it in the length
2011 */
2012 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
2013 (ntohs(((__be16 *)buffer)[6]) != 0x888E)) {
2014 MICBuffer pMic;
2015
2016 if (encapsulate(ai, (etherHead *)buffer, &pMic, len - sizeof(etherHead)) != SUCCESS)
2017 return ERROR;
2018
2019 *payloadLen = cpu_to_le16(len-sizeof(etherHead)+sizeof(pMic));
2020 ai->txfids[0].tx_desc.len += sizeof(pMic);
2021 /* copy data into airo dma buffer */
2022 memcpy (sendbuf, buffer, sizeof(etherHead));
2023 buffer += sizeof(etherHead);
2024 sendbuf += sizeof(etherHead);
2025 memcpy (sendbuf, &pMic, sizeof(pMic));
2026 sendbuf += sizeof(pMic);
2027 memcpy (sendbuf, buffer, len - sizeof(etherHead));
2028 } else {
2029 *payloadLen = cpu_to_le16(len - sizeof(etherHead));
2030
2031 dev->trans_start = jiffies;
2032
2033 /* copy data into airo dma buffer */
2034 memcpy(sendbuf, buffer, len);
2035 }
2036
2037 memcpy_toio(ai->txfids[0].card_ram_off,
2038 &ai->txfids[0].tx_desc, sizeof(TxFid));
2039
2040 OUT4500(ai, EVACK, 8);
2041
2042 dev_kfree_skb_any(skb);
2043 return 1;
2044 }
2045
get_tx_error(struct airo_info * ai,s32 fid)2046 static void get_tx_error(struct airo_info *ai, s32 fid)
2047 {
2048 __le16 status;
2049
2050 if (fid < 0)
2051 status = ((WifiCtlHdr *)ai->txfids[0].virtual_host_addr)->ctlhdr.status;
2052 else {
2053 if (bap_setup(ai, ai->fids[fid] & 0xffff, 4, BAP0) != SUCCESS)
2054 return;
2055 bap_read(ai, &status, 2, BAP0);
2056 }
2057 if (le16_to_cpu(status) & 2) /* Too many retries */
2058 ai->dev->stats.tx_aborted_errors++;
2059 if (le16_to_cpu(status) & 4) /* Transmit lifetime exceeded */
2060 ai->dev->stats.tx_heartbeat_errors++;
2061 if (le16_to_cpu(status) & 8) /* Aid fail */
2062 { }
2063 if (le16_to_cpu(status) & 0x10) /* MAC disabled */
2064 ai->dev->stats.tx_carrier_errors++;
2065 if (le16_to_cpu(status) & 0x20) /* Association lost */
2066 { }
2067 /* We produce a TXDROP event only for retry or lifetime
2068 * exceeded, because that's the only status that really mean
2069 * that this particular node went away.
2070 * Other errors means that *we* screwed up. - Jean II */
2071 if ((le16_to_cpu(status) & 2) ||
2072 (le16_to_cpu(status) & 4)) {
2073 union iwreq_data wrqu;
2074 char junk[0x18];
2075
2076 /* Faster to skip over useless data than to do
2077 * another bap_setup(). We are at offset 0x6 and
2078 * need to go to 0x18 and read 6 bytes - Jean II */
2079 bap_read(ai, (__le16 *) junk, 0x18, BAP0);
2080
2081 /* Copy 802.11 dest address.
2082 * We use the 802.11 header because the frame may
2083 * not be 802.3 or may be mangled...
2084 * In Ad-Hoc mode, it will be the node address.
2085 * In managed mode, it will be most likely the AP addr
2086 * User space will figure out how to convert it to
2087 * whatever it needs (IP address or else).
2088 * - Jean II */
2089 memcpy(wrqu.addr.sa_data, junk + 0x12, ETH_ALEN);
2090 wrqu.addr.sa_family = ARPHRD_ETHER;
2091
2092 /* Send event to user space */
2093 wireless_send_event(ai->dev, IWEVTXDROP, &wrqu, NULL);
2094 }
2095 }
2096
airo_end_xmit(struct net_device * dev)2097 static void airo_end_xmit(struct net_device *dev) {
2098 u16 status;
2099 int i;
2100 struct airo_info *priv = dev->ml_priv;
2101 struct sk_buff *skb = priv->xmit.skb;
2102 int fid = priv->xmit.fid;
2103 u32 *fids = priv->fids;
2104
2105 clear_bit(JOB_XMIT, &priv->jobs);
2106 clear_bit(FLAG_PENDING_XMIT, &priv->flags);
2107 status = transmit_802_3_packet (priv, fids[fid], skb->data);
2108 up(&priv->sem);
2109
2110 i = 0;
2111 if ( status == SUCCESS ) {
2112 dev->trans_start = jiffies;
2113 for (; i < MAX_FIDS / 2 && (priv->fids[i] & 0xffff0000); i++);
2114 } else {
2115 priv->fids[fid] &= 0xffff;
2116 dev->stats.tx_window_errors++;
2117 }
2118 if (i < MAX_FIDS / 2)
2119 netif_wake_queue(dev);
2120 dev_kfree_skb(skb);
2121 }
2122
airo_start_xmit(struct sk_buff * skb,struct net_device * dev)2123 static netdev_tx_t airo_start_xmit(struct sk_buff *skb,
2124 struct net_device *dev)
2125 {
2126 s16 len;
2127 int i, j;
2128 struct airo_info *priv = dev->ml_priv;
2129 u32 *fids = priv->fids;
2130
2131 if ( skb == NULL ) {
2132 airo_print_err(dev->name, "%s: skb == NULL!", __func__);
2133 return NETDEV_TX_OK;
2134 }
2135
2136 /* Find a vacant FID */
2137 for( i = 0; i < MAX_FIDS / 2 && (fids[i] & 0xffff0000); i++ );
2138 for( j = i + 1; j < MAX_FIDS / 2 && (fids[j] & 0xffff0000); j++ );
2139
2140 if ( j >= MAX_FIDS / 2 ) {
2141 netif_stop_queue(dev);
2142
2143 if (i == MAX_FIDS / 2) {
2144 dev->stats.tx_fifo_errors++;
2145 return NETDEV_TX_BUSY;
2146 }
2147 }
2148 /* check min length*/
2149 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2150 /* Mark fid as used & save length for later */
2151 fids[i] |= (len << 16);
2152 priv->xmit.skb = skb;
2153 priv->xmit.fid = i;
2154 if (down_trylock(&priv->sem) != 0) {
2155 set_bit(FLAG_PENDING_XMIT, &priv->flags);
2156 netif_stop_queue(dev);
2157 set_bit(JOB_XMIT, &priv->jobs);
2158 wake_up_interruptible(&priv->thr_wait);
2159 } else
2160 airo_end_xmit(dev);
2161 return NETDEV_TX_OK;
2162 }
2163
airo_end_xmit11(struct net_device * dev)2164 static void airo_end_xmit11(struct net_device *dev) {
2165 u16 status;
2166 int i;
2167 struct airo_info *priv = dev->ml_priv;
2168 struct sk_buff *skb = priv->xmit11.skb;
2169 int fid = priv->xmit11.fid;
2170 u32 *fids = priv->fids;
2171
2172 clear_bit(JOB_XMIT11, &priv->jobs);
2173 clear_bit(FLAG_PENDING_XMIT11, &priv->flags);
2174 status = transmit_802_11_packet (priv, fids[fid], skb->data);
2175 up(&priv->sem);
2176
2177 i = MAX_FIDS / 2;
2178 if ( status == SUCCESS ) {
2179 dev->trans_start = jiffies;
2180 for (; i < MAX_FIDS && (priv->fids[i] & 0xffff0000); i++);
2181 } else {
2182 priv->fids[fid] &= 0xffff;
2183 dev->stats.tx_window_errors++;
2184 }
2185 if (i < MAX_FIDS)
2186 netif_wake_queue(dev);
2187 dev_kfree_skb(skb);
2188 }
2189
airo_start_xmit11(struct sk_buff * skb,struct net_device * dev)2190 static netdev_tx_t airo_start_xmit11(struct sk_buff *skb,
2191 struct net_device *dev)
2192 {
2193 s16 len;
2194 int i, j;
2195 struct airo_info *priv = dev->ml_priv;
2196 u32 *fids = priv->fids;
2197
2198 if (test_bit(FLAG_MPI, &priv->flags)) {
2199 /* Not implemented yet for MPI350 */
2200 netif_stop_queue(dev);
2201 dev_kfree_skb_any(skb);
2202 return NETDEV_TX_OK;
2203 }
2204
2205 if ( skb == NULL ) {
2206 airo_print_err(dev->name, "%s: skb == NULL!", __func__);
2207 return NETDEV_TX_OK;
2208 }
2209
2210 /* Find a vacant FID */
2211 for( i = MAX_FIDS / 2; i < MAX_FIDS && (fids[i] & 0xffff0000); i++ );
2212 for( j = i + 1; j < MAX_FIDS && (fids[j] & 0xffff0000); j++ );
2213
2214 if ( j >= MAX_FIDS ) {
2215 netif_stop_queue(dev);
2216
2217 if (i == MAX_FIDS) {
2218 dev->stats.tx_fifo_errors++;
2219 return NETDEV_TX_BUSY;
2220 }
2221 }
2222 /* check min length*/
2223 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2224 /* Mark fid as used & save length for later */
2225 fids[i] |= (len << 16);
2226 priv->xmit11.skb = skb;
2227 priv->xmit11.fid = i;
2228 if (down_trylock(&priv->sem) != 0) {
2229 set_bit(FLAG_PENDING_XMIT11, &priv->flags);
2230 netif_stop_queue(dev);
2231 set_bit(JOB_XMIT11, &priv->jobs);
2232 wake_up_interruptible(&priv->thr_wait);
2233 } else
2234 airo_end_xmit11(dev);
2235 return NETDEV_TX_OK;
2236 }
2237
airo_read_stats(struct net_device * dev)2238 static void airo_read_stats(struct net_device *dev)
2239 {
2240 struct airo_info *ai = dev->ml_priv;
2241 StatsRid stats_rid;
2242 __le32 *vals = stats_rid.vals;
2243
2244 clear_bit(JOB_STATS, &ai->jobs);
2245 if (ai->power.event) {
2246 up(&ai->sem);
2247 return;
2248 }
2249 readStatsRid(ai, &stats_rid, RID_STATS, 0);
2250 up(&ai->sem);
2251
2252 dev->stats.rx_packets = le32_to_cpu(vals[43]) + le32_to_cpu(vals[44]) +
2253 le32_to_cpu(vals[45]);
2254 dev->stats.tx_packets = le32_to_cpu(vals[39]) + le32_to_cpu(vals[40]) +
2255 le32_to_cpu(vals[41]);
2256 dev->stats.rx_bytes = le32_to_cpu(vals[92]);
2257 dev->stats.tx_bytes = le32_to_cpu(vals[91]);
2258 dev->stats.rx_errors = le32_to_cpu(vals[0]) + le32_to_cpu(vals[2]) +
2259 le32_to_cpu(vals[3]) + le32_to_cpu(vals[4]);
2260 dev->stats.tx_errors = le32_to_cpu(vals[42]) +
2261 dev->stats.tx_fifo_errors;
2262 dev->stats.multicast = le32_to_cpu(vals[43]);
2263 dev->stats.collisions = le32_to_cpu(vals[89]);
2264
2265 /* detailed rx_errors: */
2266 dev->stats.rx_length_errors = le32_to_cpu(vals[3]);
2267 dev->stats.rx_crc_errors = le32_to_cpu(vals[4]);
2268 dev->stats.rx_frame_errors = le32_to_cpu(vals[2]);
2269 dev->stats.rx_fifo_errors = le32_to_cpu(vals[0]);
2270 }
2271
airo_get_stats(struct net_device * dev)2272 static struct net_device_stats *airo_get_stats(struct net_device *dev)
2273 {
2274 struct airo_info *local = dev->ml_priv;
2275
2276 if (!test_bit(JOB_STATS, &local->jobs)) {
2277 /* Get stats out of the card if available */
2278 if (down_trylock(&local->sem) != 0) {
2279 set_bit(JOB_STATS, &local->jobs);
2280 wake_up_interruptible(&local->thr_wait);
2281 } else
2282 airo_read_stats(dev);
2283 }
2284
2285 return &dev->stats;
2286 }
2287
airo_set_promisc(struct airo_info * ai)2288 static void airo_set_promisc(struct airo_info *ai) {
2289 Cmd cmd;
2290 Resp rsp;
2291
2292 memset(&cmd, 0, sizeof(cmd));
2293 cmd.cmd=CMD_SETMODE;
2294 clear_bit(JOB_PROMISC, &ai->jobs);
2295 cmd.parm0=(ai->flags&IFF_PROMISC) ? PROMISC : NOPROMISC;
2296 issuecommand(ai, &cmd, &rsp);
2297 up(&ai->sem);
2298 }
2299
airo_set_multicast_list(struct net_device * dev)2300 static void airo_set_multicast_list(struct net_device *dev) {
2301 struct airo_info *ai = dev->ml_priv;
2302
2303 if ((dev->flags ^ ai->flags) & IFF_PROMISC) {
2304 change_bit(FLAG_PROMISC, &ai->flags);
2305 if (down_trylock(&ai->sem) != 0) {
2306 set_bit(JOB_PROMISC, &ai->jobs);
2307 wake_up_interruptible(&ai->thr_wait);
2308 } else
2309 airo_set_promisc(ai);
2310 }
2311
2312 if ((dev->flags&IFF_ALLMULTI) || !netdev_mc_empty(dev)) {
2313 /* Turn on multicast. (Should be already setup...) */
2314 }
2315 }
2316
airo_set_mac_address(struct net_device * dev,void * p)2317 static int airo_set_mac_address(struct net_device *dev, void *p)
2318 {
2319 struct airo_info *ai = dev->ml_priv;
2320 struct sockaddr *addr = p;
2321
2322 readConfigRid(ai, 1);
2323 memcpy (ai->config.macAddr, addr->sa_data, dev->addr_len);
2324 set_bit (FLAG_COMMIT, &ai->flags);
2325 disable_MAC(ai, 1);
2326 writeConfigRid (ai, 1);
2327 enable_MAC(ai, 1);
2328 memcpy (ai->dev->dev_addr, addr->sa_data, dev->addr_len);
2329 if (ai->wifidev)
2330 memcpy (ai->wifidev->dev_addr, addr->sa_data, dev->addr_len);
2331 return 0;
2332 }
2333
airo_change_mtu(struct net_device * dev,int new_mtu)2334 static int airo_change_mtu(struct net_device *dev, int new_mtu)
2335 {
2336 if ((new_mtu < 68) || (new_mtu > 2400))
2337 return -EINVAL;
2338 dev->mtu = new_mtu;
2339 return 0;
2340 }
2341
2342 static LIST_HEAD(airo_devices);
2343
add_airo_dev(struct airo_info * ai)2344 static void add_airo_dev(struct airo_info *ai)
2345 {
2346 /* Upper layers already keep track of PCI devices,
2347 * so we only need to remember our non-PCI cards. */
2348 if (!ai->pci)
2349 list_add_tail(&ai->dev_list, &airo_devices);
2350 }
2351
del_airo_dev(struct airo_info * ai)2352 static void del_airo_dev(struct airo_info *ai)
2353 {
2354 if (!ai->pci)
2355 list_del(&ai->dev_list);
2356 }
2357
airo_close(struct net_device * dev)2358 static int airo_close(struct net_device *dev) {
2359 struct airo_info *ai = dev->ml_priv;
2360
2361 netif_stop_queue(dev);
2362
2363 if (ai->wifidev != dev) {
2364 #ifdef POWER_ON_DOWN
2365 /* Shut power to the card. The idea is that the user can save
2366 * power when he doesn't need the card with "ifconfig down".
2367 * That's the method that is most friendly towards the network
2368 * stack (i.e. the network stack won't try to broadcast
2369 * anything on the interface and routes are gone. Jean II */
2370 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2371 disable_MAC(ai, 1);
2372 #endif
2373 disable_interrupts( ai );
2374
2375 free_irq(dev->irq, dev);
2376
2377 set_bit(JOB_DIE, &ai->jobs);
2378 kthread_stop(ai->airo_thread_task);
2379 }
2380 return 0;
2381 }
2382
stop_airo_card(struct net_device * dev,int freeres)2383 void stop_airo_card( struct net_device *dev, int freeres )
2384 {
2385 struct airo_info *ai = dev->ml_priv;
2386
2387 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2388 disable_MAC(ai, 1);
2389 disable_interrupts(ai);
2390 takedown_proc_entry( dev, ai );
2391 if (test_bit(FLAG_REGISTERED, &ai->flags)) {
2392 unregister_netdev( dev );
2393 if (ai->wifidev) {
2394 unregister_netdev(ai->wifidev);
2395 free_netdev(ai->wifidev);
2396 ai->wifidev = NULL;
2397 }
2398 clear_bit(FLAG_REGISTERED, &ai->flags);
2399 }
2400 /*
2401 * Clean out tx queue
2402 */
2403 if (test_bit(FLAG_MPI, &ai->flags) && !skb_queue_empty(&ai->txq)) {
2404 struct sk_buff *skb = NULL;
2405 for (;(skb = skb_dequeue(&ai->txq));)
2406 dev_kfree_skb(skb);
2407 }
2408
2409 airo_networks_free (ai);
2410
2411 kfree(ai->flash);
2412 kfree(ai->rssi);
2413 kfree(ai->APList);
2414 kfree(ai->SSID);
2415 if (freeres) {
2416 /* PCMCIA frees this stuff, so only for PCI and ISA */
2417 release_region( dev->base_addr, 64 );
2418 if (test_bit(FLAG_MPI, &ai->flags)) {
2419 if (ai->pci)
2420 mpi_unmap_card(ai->pci);
2421 if (ai->pcimem)
2422 iounmap(ai->pcimem);
2423 if (ai->pciaux)
2424 iounmap(ai->pciaux);
2425 pci_free_consistent(ai->pci, PCI_SHARED_LEN,
2426 ai->shared, ai->shared_dma);
2427 }
2428 }
2429 crypto_free_cipher(ai->tfm);
2430 del_airo_dev(ai);
2431 free_netdev( dev );
2432 }
2433
2434 EXPORT_SYMBOL(stop_airo_card);
2435
wll_header_parse(const struct sk_buff * skb,unsigned char * haddr)2436 static int wll_header_parse(const struct sk_buff *skb, unsigned char *haddr)
2437 {
2438 memcpy(haddr, skb_mac_header(skb) + 10, ETH_ALEN);
2439 return ETH_ALEN;
2440 }
2441
mpi_unmap_card(struct pci_dev * pci)2442 static void mpi_unmap_card(struct pci_dev *pci)
2443 {
2444 unsigned long mem_start = pci_resource_start(pci, 1);
2445 unsigned long mem_len = pci_resource_len(pci, 1);
2446 unsigned long aux_start = pci_resource_start(pci, 2);
2447 unsigned long aux_len = AUXMEMSIZE;
2448
2449 release_mem_region(aux_start, aux_len);
2450 release_mem_region(mem_start, mem_len);
2451 }
2452
2453 /*************************************************************
2454 * This routine assumes that descriptors have been setup .
2455 * Run at insmod time or after reset when the decriptors
2456 * have been initialized . Returns 0 if all is well nz
2457 * otherwise . Does not allocate memory but sets up card
2458 * using previously allocated descriptors.
2459 */
mpi_init_descriptors(struct airo_info * ai)2460 static int mpi_init_descriptors (struct airo_info *ai)
2461 {
2462 Cmd cmd;
2463 Resp rsp;
2464 int i;
2465 int rc = SUCCESS;
2466
2467 /* Alloc card RX descriptors */
2468 netif_stop_queue(ai->dev);
2469
2470 memset(&rsp,0,sizeof(rsp));
2471 memset(&cmd,0,sizeof(cmd));
2472
2473 cmd.cmd = CMD_ALLOCATEAUX;
2474 cmd.parm0 = FID_RX;
2475 cmd.parm1 = (ai->rxfids[0].card_ram_off - ai->pciaux);
2476 cmd.parm2 = MPI_MAX_FIDS;
2477 rc=issuecommand(ai, &cmd, &rsp);
2478 if (rc != SUCCESS) {
2479 airo_print_err(ai->dev->name, "Couldn't allocate RX FID");
2480 return rc;
2481 }
2482
2483 for (i=0; i<MPI_MAX_FIDS; i++) {
2484 memcpy_toio(ai->rxfids[i].card_ram_off,
2485 &ai->rxfids[i].rx_desc, sizeof(RxFid));
2486 }
2487
2488 /* Alloc card TX descriptors */
2489
2490 memset(&rsp,0,sizeof(rsp));
2491 memset(&cmd,0,sizeof(cmd));
2492
2493 cmd.cmd = CMD_ALLOCATEAUX;
2494 cmd.parm0 = FID_TX;
2495 cmd.parm1 = (ai->txfids[0].card_ram_off - ai->pciaux);
2496 cmd.parm2 = MPI_MAX_FIDS;
2497
2498 for (i=0; i<MPI_MAX_FIDS; i++) {
2499 ai->txfids[i].tx_desc.valid = 1;
2500 memcpy_toio(ai->txfids[i].card_ram_off,
2501 &ai->txfids[i].tx_desc, sizeof(TxFid));
2502 }
2503 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2504
2505 rc=issuecommand(ai, &cmd, &rsp);
2506 if (rc != SUCCESS) {
2507 airo_print_err(ai->dev->name, "Couldn't allocate TX FID");
2508 return rc;
2509 }
2510
2511 /* Alloc card Rid descriptor */
2512 memset(&rsp,0,sizeof(rsp));
2513 memset(&cmd,0,sizeof(cmd));
2514
2515 cmd.cmd = CMD_ALLOCATEAUX;
2516 cmd.parm0 = RID_RW;
2517 cmd.parm1 = (ai->config_desc.card_ram_off - ai->pciaux);
2518 cmd.parm2 = 1; /* Magic number... */
2519 rc=issuecommand(ai, &cmd, &rsp);
2520 if (rc != SUCCESS) {
2521 airo_print_err(ai->dev->name, "Couldn't allocate RID");
2522 return rc;
2523 }
2524
2525 memcpy_toio(ai->config_desc.card_ram_off,
2526 &ai->config_desc.rid_desc, sizeof(Rid));
2527
2528 return rc;
2529 }
2530
2531 /*
2532 * We are setting up three things here:
2533 * 1) Map AUX memory for descriptors: Rid, TxFid, or RxFid.
2534 * 2) Map PCI memory for issuing commands.
2535 * 3) Allocate memory (shared) to send and receive ethernet frames.
2536 */
mpi_map_card(struct airo_info * ai,struct pci_dev * pci)2537 static int mpi_map_card(struct airo_info *ai, struct pci_dev *pci)
2538 {
2539 unsigned long mem_start, mem_len, aux_start, aux_len;
2540 int rc = -1;
2541 int i;
2542 dma_addr_t busaddroff;
2543 unsigned char *vpackoff;
2544 unsigned char __iomem *pciaddroff;
2545
2546 mem_start = pci_resource_start(pci, 1);
2547 mem_len = pci_resource_len(pci, 1);
2548 aux_start = pci_resource_start(pci, 2);
2549 aux_len = AUXMEMSIZE;
2550
2551 if (!request_mem_region(mem_start, mem_len, DRV_NAME)) {
2552 airo_print_err("", "Couldn't get region %x[%x]",
2553 (int)mem_start, (int)mem_len);
2554 goto out;
2555 }
2556 if (!request_mem_region(aux_start, aux_len, DRV_NAME)) {
2557 airo_print_err("", "Couldn't get region %x[%x]",
2558 (int)aux_start, (int)aux_len);
2559 goto free_region1;
2560 }
2561
2562 ai->pcimem = ioremap(mem_start, mem_len);
2563 if (!ai->pcimem) {
2564 airo_print_err("", "Couldn't map region %x[%x]",
2565 (int)mem_start, (int)mem_len);
2566 goto free_region2;
2567 }
2568 ai->pciaux = ioremap(aux_start, aux_len);
2569 if (!ai->pciaux) {
2570 airo_print_err("", "Couldn't map region %x[%x]",
2571 (int)aux_start, (int)aux_len);
2572 goto free_memmap;
2573 }
2574
2575 /* Reserve PKTSIZE for each fid and 2K for the Rids */
2576 ai->shared = pci_alloc_consistent(pci, PCI_SHARED_LEN, &ai->shared_dma);
2577 if (!ai->shared) {
2578 airo_print_err("", "Couldn't alloc_consistent %d",
2579 PCI_SHARED_LEN);
2580 goto free_auxmap;
2581 }
2582
2583 /*
2584 * Setup descriptor RX, TX, CONFIG
2585 */
2586 busaddroff = ai->shared_dma;
2587 pciaddroff = ai->pciaux + AUX_OFFSET;
2588 vpackoff = ai->shared;
2589
2590 /* RX descriptor setup */
2591 for(i = 0; i < MPI_MAX_FIDS; i++) {
2592 ai->rxfids[i].pending = 0;
2593 ai->rxfids[i].card_ram_off = pciaddroff;
2594 ai->rxfids[i].virtual_host_addr = vpackoff;
2595 ai->rxfids[i].rx_desc.host_addr = busaddroff;
2596 ai->rxfids[i].rx_desc.valid = 1;
2597 ai->rxfids[i].rx_desc.len = PKTSIZE;
2598 ai->rxfids[i].rx_desc.rdy = 0;
2599
2600 pciaddroff += sizeof(RxFid);
2601 busaddroff += PKTSIZE;
2602 vpackoff += PKTSIZE;
2603 }
2604
2605 /* TX descriptor setup */
2606 for(i = 0; i < MPI_MAX_FIDS; i++) {
2607 ai->txfids[i].card_ram_off = pciaddroff;
2608 ai->txfids[i].virtual_host_addr = vpackoff;
2609 ai->txfids[i].tx_desc.valid = 1;
2610 ai->txfids[i].tx_desc.host_addr = busaddroff;
2611 memcpy(ai->txfids[i].virtual_host_addr,
2612 &wifictlhdr8023, sizeof(wifictlhdr8023));
2613
2614 pciaddroff += sizeof(TxFid);
2615 busaddroff += PKTSIZE;
2616 vpackoff += PKTSIZE;
2617 }
2618 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2619
2620 /* Rid descriptor setup */
2621 ai->config_desc.card_ram_off = pciaddroff;
2622 ai->config_desc.virtual_host_addr = vpackoff;
2623 ai->config_desc.rid_desc.host_addr = busaddroff;
2624 ai->ridbus = busaddroff;
2625 ai->config_desc.rid_desc.rid = 0;
2626 ai->config_desc.rid_desc.len = RIDSIZE;
2627 ai->config_desc.rid_desc.valid = 1;
2628 pciaddroff += sizeof(Rid);
2629 busaddroff += RIDSIZE;
2630 vpackoff += RIDSIZE;
2631
2632 /* Tell card about descriptors */
2633 if (mpi_init_descriptors (ai) != SUCCESS)
2634 goto free_shared;
2635
2636 return 0;
2637 free_shared:
2638 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2639 free_auxmap:
2640 iounmap(ai->pciaux);
2641 free_memmap:
2642 iounmap(ai->pcimem);
2643 free_region2:
2644 release_mem_region(aux_start, aux_len);
2645 free_region1:
2646 release_mem_region(mem_start, mem_len);
2647 out:
2648 return rc;
2649 }
2650
2651 static const struct header_ops airo_header_ops = {
2652 .parse = wll_header_parse,
2653 };
2654
2655 static const struct net_device_ops airo11_netdev_ops = {
2656 .ndo_open = airo_open,
2657 .ndo_stop = airo_close,
2658 .ndo_start_xmit = airo_start_xmit11,
2659 .ndo_get_stats = airo_get_stats,
2660 .ndo_set_mac_address = airo_set_mac_address,
2661 .ndo_do_ioctl = airo_ioctl,
2662 .ndo_change_mtu = airo_change_mtu,
2663 };
2664
wifi_setup(struct net_device * dev)2665 static void wifi_setup(struct net_device *dev)
2666 {
2667 dev->netdev_ops = &airo11_netdev_ops;
2668 dev->header_ops = &airo_header_ops;
2669 dev->wireless_handlers = &airo_handler_def;
2670
2671 dev->type = ARPHRD_IEEE80211;
2672 dev->hard_header_len = ETH_HLEN;
2673 dev->mtu = AIRO_DEF_MTU;
2674 dev->addr_len = ETH_ALEN;
2675 dev->tx_queue_len = 100;
2676
2677 memset(dev->broadcast,0xFF, ETH_ALEN);
2678
2679 dev->flags = IFF_BROADCAST|IFF_MULTICAST;
2680 }
2681
init_wifidev(struct airo_info * ai,struct net_device * ethdev)2682 static struct net_device *init_wifidev(struct airo_info *ai,
2683 struct net_device *ethdev)
2684 {
2685 int err;
2686 struct net_device *dev = alloc_netdev(0, "wifi%d", wifi_setup);
2687 if (!dev)
2688 return NULL;
2689 dev->ml_priv = ethdev->ml_priv;
2690 dev->irq = ethdev->irq;
2691 dev->base_addr = ethdev->base_addr;
2692 dev->wireless_data = ethdev->wireless_data;
2693 SET_NETDEV_DEV(dev, ethdev->dev.parent);
2694 memcpy(dev->dev_addr, ethdev->dev_addr, dev->addr_len);
2695 err = register_netdev(dev);
2696 if (err<0) {
2697 free_netdev(dev);
2698 return NULL;
2699 }
2700 return dev;
2701 }
2702
reset_card(struct net_device * dev,int lock)2703 static int reset_card( struct net_device *dev , int lock) {
2704 struct airo_info *ai = dev->ml_priv;
2705
2706 if (lock && down_interruptible(&ai->sem))
2707 return -1;
2708 waitbusy (ai);
2709 OUT4500(ai,COMMAND,CMD_SOFTRESET);
2710 msleep(200);
2711 waitbusy (ai);
2712 msleep(200);
2713 if (lock)
2714 up(&ai->sem);
2715 return 0;
2716 }
2717
2718 #define AIRO_MAX_NETWORK_COUNT 64
airo_networks_allocate(struct airo_info * ai)2719 static int airo_networks_allocate(struct airo_info *ai)
2720 {
2721 if (ai->networks)
2722 return 0;
2723
2724 ai->networks = kcalloc(AIRO_MAX_NETWORK_COUNT, sizeof(BSSListElement),
2725 GFP_KERNEL);
2726 if (!ai->networks) {
2727 airo_print_warn("", "Out of memory allocating beacons");
2728 return -ENOMEM;
2729 }
2730
2731 return 0;
2732 }
2733
airo_networks_free(struct airo_info * ai)2734 static void airo_networks_free(struct airo_info *ai)
2735 {
2736 kfree(ai->networks);
2737 ai->networks = NULL;
2738 }
2739
airo_networks_initialize(struct airo_info * ai)2740 static void airo_networks_initialize(struct airo_info *ai)
2741 {
2742 int i;
2743
2744 INIT_LIST_HEAD(&ai->network_free_list);
2745 INIT_LIST_HEAD(&ai->network_list);
2746 for (i = 0; i < AIRO_MAX_NETWORK_COUNT; i++)
2747 list_add_tail(&ai->networks[i].list,
2748 &ai->network_free_list);
2749 }
2750
2751 static const struct net_device_ops airo_netdev_ops = {
2752 .ndo_open = airo_open,
2753 .ndo_stop = airo_close,
2754 .ndo_start_xmit = airo_start_xmit,
2755 .ndo_get_stats = airo_get_stats,
2756 .ndo_set_rx_mode = airo_set_multicast_list,
2757 .ndo_set_mac_address = airo_set_mac_address,
2758 .ndo_do_ioctl = airo_ioctl,
2759 .ndo_change_mtu = airo_change_mtu,
2760 .ndo_validate_addr = eth_validate_addr,
2761 };
2762
2763 static const struct net_device_ops mpi_netdev_ops = {
2764 .ndo_open = airo_open,
2765 .ndo_stop = airo_close,
2766 .ndo_start_xmit = mpi_start_xmit,
2767 .ndo_get_stats = airo_get_stats,
2768 .ndo_set_rx_mode = airo_set_multicast_list,
2769 .ndo_set_mac_address = airo_set_mac_address,
2770 .ndo_do_ioctl = airo_ioctl,
2771 .ndo_change_mtu = airo_change_mtu,
2772 .ndo_validate_addr = eth_validate_addr,
2773 };
2774
2775
_init_airo_card(unsigned short irq,int port,int is_pcmcia,struct pci_dev * pci,struct device * dmdev)2776 static struct net_device *_init_airo_card( unsigned short irq, int port,
2777 int is_pcmcia, struct pci_dev *pci,
2778 struct device *dmdev )
2779 {
2780 struct net_device *dev;
2781 struct airo_info *ai;
2782 int i, rc;
2783 CapabilityRid cap_rid;
2784
2785 /* Create the network device object. */
2786 dev = alloc_netdev(sizeof(*ai), "", ether_setup);
2787 if (!dev) {
2788 airo_print_err("", "Couldn't alloc_etherdev");
2789 return NULL;
2790 }
2791
2792 ai = dev->ml_priv = netdev_priv(dev);
2793 ai->wifidev = NULL;
2794 ai->flags = 1 << FLAG_RADIO_DOWN;
2795 ai->jobs = 0;
2796 ai->dev = dev;
2797 if (pci && (pci->device == 0x5000 || pci->device == 0xa504)) {
2798 airo_print_dbg("", "Found an MPI350 card");
2799 set_bit(FLAG_MPI, &ai->flags);
2800 }
2801 spin_lock_init(&ai->aux_lock);
2802 sema_init(&ai->sem, 1);
2803 ai->config.len = 0;
2804 ai->pci = pci;
2805 init_waitqueue_head (&ai->thr_wait);
2806 ai->tfm = NULL;
2807 add_airo_dev(ai);
2808
2809 if (airo_networks_allocate (ai))
2810 goto err_out_free;
2811 airo_networks_initialize (ai);
2812
2813 skb_queue_head_init (&ai->txq);
2814
2815 /* The Airo-specific entries in the device structure. */
2816 if (test_bit(FLAG_MPI,&ai->flags))
2817 dev->netdev_ops = &mpi_netdev_ops;
2818 else
2819 dev->netdev_ops = &airo_netdev_ops;
2820 dev->wireless_handlers = &airo_handler_def;
2821 ai->wireless_data.spy_data = &ai->spy_data;
2822 dev->wireless_data = &ai->wireless_data;
2823 dev->irq = irq;
2824 dev->base_addr = port;
2825 dev->priv_flags &= ~IFF_TX_SKB_SHARING;
2826
2827 SET_NETDEV_DEV(dev, dmdev);
2828
2829 reset_card (dev, 1);
2830 msleep(400);
2831
2832 if (!is_pcmcia) {
2833 if (!request_region(dev->base_addr, 64, DRV_NAME)) {
2834 rc = -EBUSY;
2835 airo_print_err(dev->name, "Couldn't request region");
2836 goto err_out_nets;
2837 }
2838 }
2839
2840 if (test_bit(FLAG_MPI,&ai->flags)) {
2841 if (mpi_map_card(ai, pci)) {
2842 airo_print_err("", "Could not map memory");
2843 goto err_out_res;
2844 }
2845 }
2846
2847 if (probe) {
2848 if (setup_card(ai, dev->dev_addr, 1) != SUCCESS) {
2849 airo_print_err(dev->name, "MAC could not be enabled" );
2850 rc = -EIO;
2851 goto err_out_map;
2852 }
2853 } else if (!test_bit(FLAG_MPI,&ai->flags)) {
2854 ai->bap_read = fast_bap_read;
2855 set_bit(FLAG_FLASHING, &ai->flags);
2856 }
2857
2858 strcpy(dev->name, "eth%d");
2859 rc = register_netdev(dev);
2860 if (rc) {
2861 airo_print_err(dev->name, "Couldn't register_netdev");
2862 goto err_out_map;
2863 }
2864 ai->wifidev = init_wifidev(ai, dev);
2865 if (!ai->wifidev)
2866 goto err_out_reg;
2867
2868 rc = readCapabilityRid(ai, &cap_rid, 1);
2869 if (rc != SUCCESS) {
2870 rc = -EIO;
2871 goto err_out_wifi;
2872 }
2873 /* WEP capability discovery */
2874 ai->wep_capable = (cap_rid.softCap & cpu_to_le16(0x02)) ? 1 : 0;
2875 ai->max_wep_idx = (cap_rid.softCap & cpu_to_le16(0x80)) ? 3 : 0;
2876
2877 airo_print_info(dev->name, "Firmware version %x.%x.%02d",
2878 ((le16_to_cpu(cap_rid.softVer) >> 8) & 0xF),
2879 (le16_to_cpu(cap_rid.softVer) & 0xFF),
2880 le16_to_cpu(cap_rid.softSubVer));
2881
2882 /* Test for WPA support */
2883 /* Only firmware versions 5.30.17 or better can do WPA */
2884 if (le16_to_cpu(cap_rid.softVer) > 0x530
2885 || (le16_to_cpu(cap_rid.softVer) == 0x530
2886 && le16_to_cpu(cap_rid.softSubVer) >= 17)) {
2887 airo_print_info(ai->dev->name, "WPA supported.");
2888
2889 set_bit(FLAG_WPA_CAPABLE, &ai->flags);
2890 ai->bssListFirst = RID_WPA_BSSLISTFIRST;
2891 ai->bssListNext = RID_WPA_BSSLISTNEXT;
2892 ai->bssListRidLen = sizeof(BSSListRid);
2893 } else {
2894 airo_print_info(ai->dev->name, "WPA unsupported with firmware "
2895 "versions older than 5.30.17.");
2896
2897 ai->bssListFirst = RID_BSSLISTFIRST;
2898 ai->bssListNext = RID_BSSLISTNEXT;
2899 ai->bssListRidLen = sizeof(BSSListRid) - sizeof(BSSListRidExtra);
2900 }
2901
2902 set_bit(FLAG_REGISTERED,&ai->flags);
2903 airo_print_info(dev->name, "MAC enabled %pM", dev->dev_addr);
2904
2905 /* Allocate the transmit buffers */
2906 if (probe && !test_bit(FLAG_MPI,&ai->flags))
2907 for( i = 0; i < MAX_FIDS; i++ )
2908 ai->fids[i] = transmit_allocate(ai,AIRO_DEF_MTU,i>=MAX_FIDS/2);
2909
2910 if (setup_proc_entry(dev, dev->ml_priv) < 0)
2911 goto err_out_wifi;
2912
2913 return dev;
2914
2915 err_out_wifi:
2916 unregister_netdev(ai->wifidev);
2917 free_netdev(ai->wifidev);
2918 err_out_reg:
2919 unregister_netdev(dev);
2920 err_out_map:
2921 if (test_bit(FLAG_MPI,&ai->flags) && pci) {
2922 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2923 iounmap(ai->pciaux);
2924 iounmap(ai->pcimem);
2925 mpi_unmap_card(ai->pci);
2926 }
2927 err_out_res:
2928 if (!is_pcmcia)
2929 release_region( dev->base_addr, 64 );
2930 err_out_nets:
2931 airo_networks_free(ai);
2932 err_out_free:
2933 del_airo_dev(ai);
2934 free_netdev(dev);
2935 return NULL;
2936 }
2937
init_airo_card(unsigned short irq,int port,int is_pcmcia,struct device * dmdev)2938 struct net_device *init_airo_card( unsigned short irq, int port, int is_pcmcia,
2939 struct device *dmdev)
2940 {
2941 return _init_airo_card ( irq, port, is_pcmcia, NULL, dmdev);
2942 }
2943
2944 EXPORT_SYMBOL(init_airo_card);
2945
waitbusy(struct airo_info * ai)2946 static int waitbusy (struct airo_info *ai) {
2947 int delay = 0;
2948 while ((IN4500(ai, COMMAND) & COMMAND_BUSY) && (delay < 10000)) {
2949 udelay (10);
2950 if ((++delay % 20) == 0)
2951 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
2952 }
2953 return delay < 10000;
2954 }
2955
reset_airo_card(struct net_device * dev)2956 int reset_airo_card( struct net_device *dev )
2957 {
2958 int i;
2959 struct airo_info *ai = dev->ml_priv;
2960
2961 if (reset_card (dev, 1))
2962 return -1;
2963
2964 if ( setup_card(ai, dev->dev_addr, 1 ) != SUCCESS ) {
2965 airo_print_err(dev->name, "MAC could not be enabled");
2966 return -1;
2967 }
2968 airo_print_info(dev->name, "MAC enabled %pM", dev->dev_addr);
2969 /* Allocate the transmit buffers if needed */
2970 if (!test_bit(FLAG_MPI,&ai->flags))
2971 for( i = 0; i < MAX_FIDS; i++ )
2972 ai->fids[i] = transmit_allocate (ai,AIRO_DEF_MTU,i>=MAX_FIDS/2);
2973
2974 enable_interrupts( ai );
2975 netif_wake_queue(dev);
2976 return 0;
2977 }
2978
2979 EXPORT_SYMBOL(reset_airo_card);
2980
airo_send_event(struct net_device * dev)2981 static void airo_send_event(struct net_device *dev) {
2982 struct airo_info *ai = dev->ml_priv;
2983 union iwreq_data wrqu;
2984 StatusRid status_rid;
2985
2986 clear_bit(JOB_EVENT, &ai->jobs);
2987 PC4500_readrid(ai, RID_STATUS, &status_rid, sizeof(status_rid), 0);
2988 up(&ai->sem);
2989 wrqu.data.length = 0;
2990 wrqu.data.flags = 0;
2991 memcpy(wrqu.ap_addr.sa_data, status_rid.bssid[0], ETH_ALEN);
2992 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
2993
2994 /* Send event to user space */
2995 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
2996 }
2997
airo_process_scan_results(struct airo_info * ai)2998 static void airo_process_scan_results (struct airo_info *ai) {
2999 union iwreq_data wrqu;
3000 BSSListRid bss;
3001 int rc;
3002 BSSListElement * loop_net;
3003 BSSListElement * tmp_net;
3004
3005 /* Blow away current list of scan results */
3006 list_for_each_entry_safe (loop_net, tmp_net, &ai->network_list, list) {
3007 list_move_tail (&loop_net->list, &ai->network_free_list);
3008 /* Don't blow away ->list, just BSS data */
3009 memset (loop_net, 0, sizeof (loop_net->bss));
3010 }
3011
3012 /* Try to read the first entry of the scan result */
3013 rc = PC4500_readrid(ai, ai->bssListFirst, &bss, ai->bssListRidLen, 0);
3014 if((rc) || (bss.index == cpu_to_le16(0xffff))) {
3015 /* No scan results */
3016 goto out;
3017 }
3018
3019 /* Read and parse all entries */
3020 tmp_net = NULL;
3021 while((!rc) && (bss.index != cpu_to_le16(0xffff))) {
3022 /* Grab a network off the free list */
3023 if (!list_empty(&ai->network_free_list)) {
3024 tmp_net = list_entry(ai->network_free_list.next,
3025 BSSListElement, list);
3026 list_del(ai->network_free_list.next);
3027 }
3028
3029 if (tmp_net != NULL) {
3030 memcpy(tmp_net, &bss, sizeof(tmp_net->bss));
3031 list_add_tail(&tmp_net->list, &ai->network_list);
3032 tmp_net = NULL;
3033 }
3034
3035 /* Read next entry */
3036 rc = PC4500_readrid(ai, ai->bssListNext,
3037 &bss, ai->bssListRidLen, 0);
3038 }
3039
3040 out:
3041 ai->scan_timeout = 0;
3042 clear_bit(JOB_SCAN_RESULTS, &ai->jobs);
3043 up(&ai->sem);
3044
3045 /* Send an empty event to user space.
3046 * We don't send the received data on
3047 * the event because it would require
3048 * us to do complex transcoding, and
3049 * we want to minimise the work done in
3050 * the irq handler. Use a request to
3051 * extract the data - Jean II */
3052 wrqu.data.length = 0;
3053 wrqu.data.flags = 0;
3054 wireless_send_event(ai->dev, SIOCGIWSCAN, &wrqu, NULL);
3055 }
3056
airo_thread(void * data)3057 static int airo_thread(void *data) {
3058 struct net_device *dev = data;
3059 struct airo_info *ai = dev->ml_priv;
3060 int locked;
3061
3062 set_freezable();
3063 while(1) {
3064 /* make swsusp happy with our thread */
3065 try_to_freeze();
3066
3067 if (test_bit(JOB_DIE, &ai->jobs))
3068 break;
3069
3070 if (ai->jobs) {
3071 locked = down_interruptible(&ai->sem);
3072 } else {
3073 wait_queue_t wait;
3074
3075 init_waitqueue_entry(&wait, current);
3076 add_wait_queue(&ai->thr_wait, &wait);
3077 for (;;) {
3078 set_current_state(TASK_INTERRUPTIBLE);
3079 if (ai->jobs)
3080 break;
3081 if (ai->expires || ai->scan_timeout) {
3082 if (ai->scan_timeout &&
3083 time_after_eq(jiffies,ai->scan_timeout)){
3084 set_bit(JOB_SCAN_RESULTS, &ai->jobs);
3085 break;
3086 } else if (ai->expires &&
3087 time_after_eq(jiffies,ai->expires)){
3088 set_bit(JOB_AUTOWEP, &ai->jobs);
3089 break;
3090 }
3091 if (!kthread_should_stop() &&
3092 !freezing(current)) {
3093 unsigned long wake_at;
3094 if (!ai->expires || !ai->scan_timeout) {
3095 wake_at = max(ai->expires,
3096 ai->scan_timeout);
3097 } else {
3098 wake_at = min(ai->expires,
3099 ai->scan_timeout);
3100 }
3101 schedule_timeout(wake_at - jiffies);
3102 continue;
3103 }
3104 } else if (!kthread_should_stop() &&
3105 !freezing(current)) {
3106 schedule();
3107 continue;
3108 }
3109 break;
3110 }
3111 current->state = TASK_RUNNING;
3112 remove_wait_queue(&ai->thr_wait, &wait);
3113 locked = 1;
3114 }
3115
3116 if (locked)
3117 continue;
3118
3119 if (test_bit(JOB_DIE, &ai->jobs)) {
3120 up(&ai->sem);
3121 break;
3122 }
3123
3124 if (ai->power.event || test_bit(FLAG_FLASHING, &ai->flags)) {
3125 up(&ai->sem);
3126 continue;
3127 }
3128
3129 if (test_bit(JOB_XMIT, &ai->jobs))
3130 airo_end_xmit(dev);
3131 else if (test_bit(JOB_XMIT11, &ai->jobs))
3132 airo_end_xmit11(dev);
3133 else if (test_bit(JOB_STATS, &ai->jobs))
3134 airo_read_stats(dev);
3135 else if (test_bit(JOB_WSTATS, &ai->jobs))
3136 airo_read_wireless_stats(ai);
3137 else if (test_bit(JOB_PROMISC, &ai->jobs))
3138 airo_set_promisc(ai);
3139 else if (test_bit(JOB_MIC, &ai->jobs))
3140 micinit(ai);
3141 else if (test_bit(JOB_EVENT, &ai->jobs))
3142 airo_send_event(dev);
3143 else if (test_bit(JOB_AUTOWEP, &ai->jobs))
3144 timer_func(dev);
3145 else if (test_bit(JOB_SCAN_RESULTS, &ai->jobs))
3146 airo_process_scan_results(ai);
3147 else /* Shouldn't get here, but we make sure to unlock */
3148 up(&ai->sem);
3149 }
3150
3151 return 0;
3152 }
3153
header_len(__le16 ctl)3154 static int header_len(__le16 ctl)
3155 {
3156 u16 fc = le16_to_cpu(ctl);
3157 switch (fc & 0xc) {
3158 case 4:
3159 if ((fc & 0xe0) == 0xc0)
3160 return 10; /* one-address control packet */
3161 return 16; /* two-address control packet */
3162 case 8:
3163 if ((fc & 0x300) == 0x300)
3164 return 30; /* WDS packet */
3165 }
3166 return 24;
3167 }
3168
airo_handle_cisco_mic(struct airo_info * ai)3169 static void airo_handle_cisco_mic(struct airo_info *ai)
3170 {
3171 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags)) {
3172 set_bit(JOB_MIC, &ai->jobs);
3173 wake_up_interruptible(&ai->thr_wait);
3174 }
3175 }
3176
3177 /* Airo Status codes */
3178 #define STAT_NOBEACON 0x8000 /* Loss of sync - missed beacons */
3179 #define STAT_MAXRETRIES 0x8001 /* Loss of sync - max retries */
3180 #define STAT_MAXARL 0x8002 /* Loss of sync - average retry level exceeded*/
3181 #define STAT_FORCELOSS 0x8003 /* Loss of sync - host request */
3182 #define STAT_TSFSYNC 0x8004 /* Loss of sync - TSF synchronization */
3183 #define STAT_DEAUTH 0x8100 /* low byte is 802.11 reason code */
3184 #define STAT_DISASSOC 0x8200 /* low byte is 802.11 reason code */
3185 #define STAT_ASSOC_FAIL 0x8400 /* low byte is 802.11 reason code */
3186 #define STAT_AUTH_FAIL 0x0300 /* low byte is 802.11 reason code */
3187 #define STAT_ASSOC 0x0400 /* Associated */
3188 #define STAT_REASSOC 0x0600 /* Reassociated? Only on firmware >= 5.30.17 */
3189
airo_print_status(const char * devname,u16 status)3190 static void airo_print_status(const char *devname, u16 status)
3191 {
3192 u8 reason = status & 0xFF;
3193
3194 switch (status & 0xFF00) {
3195 case STAT_NOBEACON:
3196 switch (status) {
3197 case STAT_NOBEACON:
3198 airo_print_dbg(devname, "link lost (missed beacons)");
3199 break;
3200 case STAT_MAXRETRIES:
3201 case STAT_MAXARL:
3202 airo_print_dbg(devname, "link lost (max retries)");
3203 break;
3204 case STAT_FORCELOSS:
3205 airo_print_dbg(devname, "link lost (local choice)");
3206 break;
3207 case STAT_TSFSYNC:
3208 airo_print_dbg(devname, "link lost (TSF sync lost)");
3209 break;
3210 default:
3211 airo_print_dbg(devname, "unknow status %x\n", status);
3212 break;
3213 }
3214 break;
3215 case STAT_DEAUTH:
3216 airo_print_dbg(devname, "deauthenticated (reason: %d)", reason);
3217 break;
3218 case STAT_DISASSOC:
3219 airo_print_dbg(devname, "disassociated (reason: %d)", reason);
3220 break;
3221 case STAT_ASSOC_FAIL:
3222 airo_print_dbg(devname, "association failed (reason: %d)",
3223 reason);
3224 break;
3225 case STAT_AUTH_FAIL:
3226 airo_print_dbg(devname, "authentication failed (reason: %d)",
3227 reason);
3228 break;
3229 case STAT_ASSOC:
3230 case STAT_REASSOC:
3231 break;
3232 default:
3233 airo_print_dbg(devname, "unknow status %x\n", status);
3234 break;
3235 }
3236 }
3237
airo_handle_link(struct airo_info * ai)3238 static void airo_handle_link(struct airo_info *ai)
3239 {
3240 union iwreq_data wrqu;
3241 int scan_forceloss = 0;
3242 u16 status;
3243
3244 /* Get new status and acknowledge the link change */
3245 status = le16_to_cpu(IN4500(ai, LINKSTAT));
3246 OUT4500(ai, EVACK, EV_LINK);
3247
3248 if ((status == STAT_FORCELOSS) && (ai->scan_timeout > 0))
3249 scan_forceloss = 1;
3250
3251 airo_print_status(ai->dev->name, status);
3252
3253 if ((status == STAT_ASSOC) || (status == STAT_REASSOC)) {
3254 if (auto_wep)
3255 ai->expires = 0;
3256 if (ai->list_bss_task)
3257 wake_up_process(ai->list_bss_task);
3258 set_bit(FLAG_UPDATE_UNI, &ai->flags);
3259 set_bit(FLAG_UPDATE_MULTI, &ai->flags);
3260
3261 if (down_trylock(&ai->sem) != 0) {
3262 set_bit(JOB_EVENT, &ai->jobs);
3263 wake_up_interruptible(&ai->thr_wait);
3264 } else
3265 airo_send_event(ai->dev);
3266 } else if (!scan_forceloss) {
3267 if (auto_wep && !ai->expires) {
3268 ai->expires = RUN_AT(3*HZ);
3269 wake_up_interruptible(&ai->thr_wait);
3270 }
3271
3272 /* Send event to user space */
3273 memset(wrqu.ap_addr.sa_data, '\0', ETH_ALEN);
3274 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
3275 wireless_send_event(ai->dev, SIOCGIWAP, &wrqu, NULL);
3276 }
3277 }
3278
airo_handle_rx(struct airo_info * ai)3279 static void airo_handle_rx(struct airo_info *ai)
3280 {
3281 struct sk_buff *skb = NULL;
3282 __le16 fc, v, *buffer, tmpbuf[4];
3283 u16 len, hdrlen = 0, gap, fid;
3284 struct rx_hdr hdr;
3285 int success = 0;
3286
3287 if (test_bit(FLAG_MPI, &ai->flags)) {
3288 if (test_bit(FLAG_802_11, &ai->flags))
3289 mpi_receive_802_11(ai);
3290 else
3291 mpi_receive_802_3(ai);
3292 OUT4500(ai, EVACK, EV_RX);
3293 return;
3294 }
3295
3296 fid = IN4500(ai, RXFID);
3297
3298 /* Get the packet length */
3299 if (test_bit(FLAG_802_11, &ai->flags)) {
3300 bap_setup (ai, fid, 4, BAP0);
3301 bap_read (ai, (__le16*)&hdr, sizeof(hdr), BAP0);
3302 /* Bad CRC. Ignore packet */
3303 if (le16_to_cpu(hdr.status) & 2)
3304 hdr.len = 0;
3305 if (ai->wifidev == NULL)
3306 hdr.len = 0;
3307 } else {
3308 bap_setup(ai, fid, 0x36, BAP0);
3309 bap_read(ai, &hdr.len, 2, BAP0);
3310 }
3311 len = le16_to_cpu(hdr.len);
3312
3313 if (len > AIRO_DEF_MTU) {
3314 airo_print_err(ai->dev->name, "Bad size %d", len);
3315 goto done;
3316 }
3317 if (len == 0)
3318 goto done;
3319
3320 if (test_bit(FLAG_802_11, &ai->flags)) {
3321 bap_read(ai, &fc, sizeof (fc), BAP0);
3322 hdrlen = header_len(fc);
3323 } else
3324 hdrlen = ETH_ALEN * 2;
3325
3326 skb = dev_alloc_skb(len + hdrlen + 2 + 2);
3327 if (!skb) {
3328 ai->dev->stats.rx_dropped++;
3329 goto done;
3330 }
3331
3332 skb_reserve(skb, 2); /* This way the IP header is aligned */
3333 buffer = (__le16 *) skb_put(skb, len + hdrlen);
3334 if (test_bit(FLAG_802_11, &ai->flags)) {
3335 buffer[0] = fc;
3336 bap_read(ai, buffer + 1, hdrlen - 2, BAP0);
3337 if (hdrlen == 24)
3338 bap_read(ai, tmpbuf, 6, BAP0);
3339
3340 bap_read(ai, &v, sizeof(v), BAP0);
3341 gap = le16_to_cpu(v);
3342 if (gap) {
3343 if (gap <= 8) {
3344 bap_read(ai, tmpbuf, gap, BAP0);
3345 } else {
3346 airo_print_err(ai->dev->name, "gaplen too "
3347 "big. Problems will follow...");
3348 }
3349 }
3350 bap_read(ai, buffer + hdrlen/2, len, BAP0);
3351 } else {
3352 MICBuffer micbuf;
3353
3354 bap_read(ai, buffer, ETH_ALEN * 2, BAP0);
3355 if (ai->micstats.enabled) {
3356 bap_read(ai, (__le16 *) &micbuf, sizeof (micbuf), BAP0);
3357 if (ntohs(micbuf.typelen) > 0x05DC)
3358 bap_setup(ai, fid, 0x44, BAP0);
3359 else {
3360 if (len <= sizeof (micbuf)) {
3361 dev_kfree_skb_irq(skb);
3362 goto done;
3363 }
3364
3365 len -= sizeof(micbuf);
3366 skb_trim(skb, len + hdrlen);
3367 }
3368 }
3369
3370 bap_read(ai, buffer + ETH_ALEN, len, BAP0);
3371 if (decapsulate(ai, &micbuf, (etherHead*) buffer, len))
3372 dev_kfree_skb_irq (skb);
3373 else
3374 success = 1;
3375 }
3376
3377 #ifdef WIRELESS_SPY
3378 if (success && (ai->spy_data.spy_number > 0)) {
3379 char *sa;
3380 struct iw_quality wstats;
3381
3382 /* Prepare spy data : addr + qual */
3383 if (!test_bit(FLAG_802_11, &ai->flags)) {
3384 sa = (char *) buffer + 6;
3385 bap_setup(ai, fid, 8, BAP0);
3386 bap_read(ai, (__le16 *) hdr.rssi, 2, BAP0);
3387 } else
3388 sa = (char *) buffer + 10;
3389 wstats.qual = hdr.rssi[0];
3390 if (ai->rssi)
3391 wstats.level = 0x100 - ai->rssi[hdr.rssi[1]].rssidBm;
3392 else
3393 wstats.level = (hdr.rssi[1] + 321) / 2;
3394 wstats.noise = ai->wstats.qual.noise;
3395 wstats.updated = IW_QUAL_LEVEL_UPDATED
3396 | IW_QUAL_QUAL_UPDATED
3397 | IW_QUAL_DBM;
3398 /* Update spy records */
3399 wireless_spy_update(ai->dev, sa, &wstats);
3400 }
3401 #endif /* WIRELESS_SPY */
3402
3403 done:
3404 OUT4500(ai, EVACK, EV_RX);
3405
3406 if (success) {
3407 if (test_bit(FLAG_802_11, &ai->flags)) {
3408 skb_reset_mac_header(skb);
3409 skb->pkt_type = PACKET_OTHERHOST;
3410 skb->dev = ai->wifidev;
3411 skb->protocol = htons(ETH_P_802_2);
3412 } else
3413 skb->protocol = eth_type_trans(skb, ai->dev);
3414 skb->ip_summed = CHECKSUM_NONE;
3415
3416 netif_rx(skb);
3417 }
3418 }
3419
airo_handle_tx(struct airo_info * ai,u16 status)3420 static void airo_handle_tx(struct airo_info *ai, u16 status)
3421 {
3422 int i, len = 0, index = -1;
3423 u16 fid;
3424
3425 if (test_bit(FLAG_MPI, &ai->flags)) {
3426 unsigned long flags;
3427
3428 if (status & EV_TXEXC)
3429 get_tx_error(ai, -1);
3430
3431 spin_lock_irqsave(&ai->aux_lock, flags);
3432 if (!skb_queue_empty(&ai->txq)) {
3433 spin_unlock_irqrestore(&ai->aux_lock,flags);
3434 mpi_send_packet(ai->dev);
3435 } else {
3436 clear_bit(FLAG_PENDING_XMIT, &ai->flags);
3437 spin_unlock_irqrestore(&ai->aux_lock,flags);
3438 netif_wake_queue(ai->dev);
3439 }
3440 OUT4500(ai, EVACK, status & (EV_TX | EV_TXCPY | EV_TXEXC));
3441 return;
3442 }
3443
3444 fid = IN4500(ai, TXCOMPLFID);
3445
3446 for(i = 0; i < MAX_FIDS; i++) {
3447 if ((ai->fids[i] & 0xffff) == fid) {
3448 len = ai->fids[i] >> 16;
3449 index = i;
3450 }
3451 }
3452
3453 if (index != -1) {
3454 if (status & EV_TXEXC)
3455 get_tx_error(ai, index);
3456
3457 OUT4500(ai, EVACK, status & (EV_TX | EV_TXEXC));
3458
3459 /* Set up to be used again */
3460 ai->fids[index] &= 0xffff;
3461 if (index < MAX_FIDS / 2) {
3462 if (!test_bit(FLAG_PENDING_XMIT, &ai->flags))
3463 netif_wake_queue(ai->dev);
3464 } else {
3465 if (!test_bit(FLAG_PENDING_XMIT11, &ai->flags))
3466 netif_wake_queue(ai->wifidev);
3467 }
3468 } else {
3469 OUT4500(ai, EVACK, status & (EV_TX | EV_TXCPY | EV_TXEXC));
3470 airo_print_err(ai->dev->name, "Unallocated FID was used to xmit");
3471 }
3472 }
3473
airo_interrupt(int irq,void * dev_id)3474 static irqreturn_t airo_interrupt(int irq, void *dev_id)
3475 {
3476 struct net_device *dev = dev_id;
3477 u16 status, savedInterrupts = 0;
3478 struct airo_info *ai = dev->ml_priv;
3479 int handled = 0;
3480
3481 if (!netif_device_present(dev))
3482 return IRQ_NONE;
3483
3484 for (;;) {
3485 status = IN4500(ai, EVSTAT);
3486 if (!(status & STATUS_INTS) || (status == 0xffff))
3487 break;
3488
3489 handled = 1;
3490
3491 if (status & EV_AWAKE) {
3492 OUT4500(ai, EVACK, EV_AWAKE);
3493 OUT4500(ai, EVACK, EV_AWAKE);
3494 }
3495
3496 if (!savedInterrupts) {
3497 savedInterrupts = IN4500(ai, EVINTEN);
3498 OUT4500(ai, EVINTEN, 0);
3499 }
3500
3501 if (status & EV_MIC) {
3502 OUT4500(ai, EVACK, EV_MIC);
3503 airo_handle_cisco_mic(ai);
3504 }
3505
3506 if (status & EV_LINK) {
3507 /* Link status changed */
3508 airo_handle_link(ai);
3509 }
3510
3511 /* Check to see if there is something to receive */
3512 if (status & EV_RX)
3513 airo_handle_rx(ai);
3514
3515 /* Check to see if a packet has been transmitted */
3516 if (status & (EV_TX | EV_TXCPY | EV_TXEXC))
3517 airo_handle_tx(ai, status);
3518
3519 if ( status & ~STATUS_INTS & ~IGNORE_INTS ) {
3520 airo_print_warn(ai->dev->name, "Got weird status %x",
3521 status & ~STATUS_INTS & ~IGNORE_INTS );
3522 }
3523 }
3524
3525 if (savedInterrupts)
3526 OUT4500(ai, EVINTEN, savedInterrupts);
3527
3528 return IRQ_RETVAL(handled);
3529 }
3530
3531 /*
3532 * Routines to talk to the card
3533 */
3534
3535 /*
3536 * This was originally written for the 4500, hence the name
3537 * NOTE: If use with 8bit mode and SMP bad things will happen!
3538 * Why would some one do 8 bit IO in an SMP machine?!?
3539 */
OUT4500(struct airo_info * ai,u16 reg,u16 val)3540 static void OUT4500( struct airo_info *ai, u16 reg, u16 val ) {
3541 if (test_bit(FLAG_MPI,&ai->flags))
3542 reg <<= 1;
3543 if ( !do8bitIO )
3544 outw( val, ai->dev->base_addr + reg );
3545 else {
3546 outb( val & 0xff, ai->dev->base_addr + reg );
3547 outb( val >> 8, ai->dev->base_addr + reg + 1 );
3548 }
3549 }
3550
IN4500(struct airo_info * ai,u16 reg)3551 static u16 IN4500( struct airo_info *ai, u16 reg ) {
3552 unsigned short rc;
3553
3554 if (test_bit(FLAG_MPI,&ai->flags))
3555 reg <<= 1;
3556 if ( !do8bitIO )
3557 rc = inw( ai->dev->base_addr + reg );
3558 else {
3559 rc = inb( ai->dev->base_addr + reg );
3560 rc += ((int)inb( ai->dev->base_addr + reg + 1 )) << 8;
3561 }
3562 return rc;
3563 }
3564
enable_MAC(struct airo_info * ai,int lock)3565 static int enable_MAC(struct airo_info *ai, int lock)
3566 {
3567 int rc;
3568 Cmd cmd;
3569 Resp rsp;
3570
3571 /* FLAG_RADIO_OFF : Radio disabled via /proc or Wireless Extensions
3572 * FLAG_RADIO_DOWN : Radio disabled via "ifconfig ethX down"
3573 * Note : we could try to use !netif_running(dev) in enable_MAC()
3574 * instead of this flag, but I don't trust it *within* the
3575 * open/close functions, and testing both flags together is
3576 * "cheaper" - Jean II */
3577 if (ai->flags & FLAG_RADIO_MASK) return SUCCESS;
3578
3579 if (lock && down_interruptible(&ai->sem))
3580 return -ERESTARTSYS;
3581
3582 if (!test_bit(FLAG_ENABLED, &ai->flags)) {
3583 memset(&cmd, 0, sizeof(cmd));
3584 cmd.cmd = MAC_ENABLE;
3585 rc = issuecommand(ai, &cmd, &rsp);
3586 if (rc == SUCCESS)
3587 set_bit(FLAG_ENABLED, &ai->flags);
3588 } else
3589 rc = SUCCESS;
3590
3591 if (lock)
3592 up(&ai->sem);
3593
3594 if (rc)
3595 airo_print_err(ai->dev->name, "Cannot enable MAC");
3596 else if ((rsp.status & 0xFF00) != 0) {
3597 airo_print_err(ai->dev->name, "Bad MAC enable reason=%x, "
3598 "rid=%x, offset=%d", rsp.rsp0, rsp.rsp1, rsp.rsp2);
3599 rc = ERROR;
3600 }
3601 return rc;
3602 }
3603
disable_MAC(struct airo_info * ai,int lock)3604 static void disable_MAC( struct airo_info *ai, int lock ) {
3605 Cmd cmd;
3606 Resp rsp;
3607
3608 if (lock && down_interruptible(&ai->sem))
3609 return;
3610
3611 if (test_bit(FLAG_ENABLED, &ai->flags)) {
3612 memset(&cmd, 0, sizeof(cmd));
3613 cmd.cmd = MAC_DISABLE; // disable in case already enabled
3614 issuecommand(ai, &cmd, &rsp);
3615 clear_bit(FLAG_ENABLED, &ai->flags);
3616 }
3617 if (lock)
3618 up(&ai->sem);
3619 }
3620
enable_interrupts(struct airo_info * ai)3621 static void enable_interrupts( struct airo_info *ai ) {
3622 /* Enable the interrupts */
3623 OUT4500( ai, EVINTEN, STATUS_INTS );
3624 }
3625
disable_interrupts(struct airo_info * ai)3626 static void disable_interrupts( struct airo_info *ai ) {
3627 OUT4500( ai, EVINTEN, 0 );
3628 }
3629
mpi_receive_802_3(struct airo_info * ai)3630 static void mpi_receive_802_3(struct airo_info *ai)
3631 {
3632 RxFid rxd;
3633 int len = 0;
3634 struct sk_buff *skb;
3635 char *buffer;
3636 int off = 0;
3637 MICBuffer micbuf;
3638
3639 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3640 /* Make sure we got something */
3641 if (rxd.rdy && rxd.valid == 0) {
3642 len = rxd.len + 12;
3643 if (len < 12 || len > 2048)
3644 goto badrx;
3645
3646 skb = dev_alloc_skb(len);
3647 if (!skb) {
3648 ai->dev->stats.rx_dropped++;
3649 goto badrx;
3650 }
3651 buffer = skb_put(skb,len);
3652 memcpy(buffer, ai->rxfids[0].virtual_host_addr, ETH_ALEN * 2);
3653 if (ai->micstats.enabled) {
3654 memcpy(&micbuf,
3655 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2,
3656 sizeof(micbuf));
3657 if (ntohs(micbuf.typelen) <= 0x05DC) {
3658 if (len <= sizeof(micbuf) + ETH_ALEN * 2)
3659 goto badmic;
3660
3661 off = sizeof(micbuf);
3662 skb_trim (skb, len - off);
3663 }
3664 }
3665 memcpy(buffer + ETH_ALEN * 2,
3666 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2 + off,
3667 len - ETH_ALEN * 2 - off);
3668 if (decapsulate (ai, &micbuf, (etherHead*)buffer, len - off - ETH_ALEN * 2)) {
3669 badmic:
3670 dev_kfree_skb_irq (skb);
3671 goto badrx;
3672 }
3673 #ifdef WIRELESS_SPY
3674 if (ai->spy_data.spy_number > 0) {
3675 char *sa;
3676 struct iw_quality wstats;
3677 /* Prepare spy data : addr + qual */
3678 sa = buffer + ETH_ALEN;
3679 wstats.qual = 0; /* XXX Where do I get that info from ??? */
3680 wstats.level = 0;
3681 wstats.updated = 0;
3682 /* Update spy records */
3683 wireless_spy_update(ai->dev, sa, &wstats);
3684 }
3685 #endif /* WIRELESS_SPY */
3686
3687 skb->ip_summed = CHECKSUM_NONE;
3688 skb->protocol = eth_type_trans(skb, ai->dev);
3689 netif_rx(skb);
3690 }
3691 badrx:
3692 if (rxd.valid == 0) {
3693 rxd.valid = 1;
3694 rxd.rdy = 0;
3695 rxd.len = PKTSIZE;
3696 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3697 }
3698 }
3699
mpi_receive_802_11(struct airo_info * ai)3700 static void mpi_receive_802_11(struct airo_info *ai)
3701 {
3702 RxFid rxd;
3703 struct sk_buff *skb = NULL;
3704 u16 len, hdrlen = 0;
3705 __le16 fc;
3706 struct rx_hdr hdr;
3707 u16 gap;
3708 u16 *buffer;
3709 char *ptr = ai->rxfids[0].virtual_host_addr + 4;
3710
3711 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3712 memcpy ((char *)&hdr, ptr, sizeof(hdr));
3713 ptr += sizeof(hdr);
3714 /* Bad CRC. Ignore packet */
3715 if (le16_to_cpu(hdr.status) & 2)
3716 hdr.len = 0;
3717 if (ai->wifidev == NULL)
3718 hdr.len = 0;
3719 len = le16_to_cpu(hdr.len);
3720 if (len > AIRO_DEF_MTU) {
3721 airo_print_err(ai->dev->name, "Bad size %d", len);
3722 goto badrx;
3723 }
3724 if (len == 0)
3725 goto badrx;
3726
3727 fc = get_unaligned((__le16 *)ptr);
3728 hdrlen = header_len(fc);
3729
3730 skb = dev_alloc_skb( len + hdrlen + 2 );
3731 if ( !skb ) {
3732 ai->dev->stats.rx_dropped++;
3733 goto badrx;
3734 }
3735 buffer = (u16*)skb_put (skb, len + hdrlen);
3736 memcpy ((char *)buffer, ptr, hdrlen);
3737 ptr += hdrlen;
3738 if (hdrlen == 24)
3739 ptr += 6;
3740 gap = get_unaligned_le16(ptr);
3741 ptr += sizeof(__le16);
3742 if (gap) {
3743 if (gap <= 8)
3744 ptr += gap;
3745 else
3746 airo_print_err(ai->dev->name,
3747 "gaplen too big. Problems will follow...");
3748 }
3749 memcpy ((char *)buffer + hdrlen, ptr, len);
3750 ptr += len;
3751 #ifdef IW_WIRELESS_SPY /* defined in iw_handler.h */
3752 if (ai->spy_data.spy_number > 0) {
3753 char *sa;
3754 struct iw_quality wstats;
3755 /* Prepare spy data : addr + qual */
3756 sa = (char*)buffer + 10;
3757 wstats.qual = hdr.rssi[0];
3758 if (ai->rssi)
3759 wstats.level = 0x100 - ai->rssi[hdr.rssi[1]].rssidBm;
3760 else
3761 wstats.level = (hdr.rssi[1] + 321) / 2;
3762 wstats.noise = ai->wstats.qual.noise;
3763 wstats.updated = IW_QUAL_QUAL_UPDATED
3764 | IW_QUAL_LEVEL_UPDATED
3765 | IW_QUAL_DBM;
3766 /* Update spy records */
3767 wireless_spy_update(ai->dev, sa, &wstats);
3768 }
3769 #endif /* IW_WIRELESS_SPY */
3770 skb_reset_mac_header(skb);
3771 skb->pkt_type = PACKET_OTHERHOST;
3772 skb->dev = ai->wifidev;
3773 skb->protocol = htons(ETH_P_802_2);
3774 skb->ip_summed = CHECKSUM_NONE;
3775 netif_rx( skb );
3776
3777 badrx:
3778 if (rxd.valid == 0) {
3779 rxd.valid = 1;
3780 rxd.rdy = 0;
3781 rxd.len = PKTSIZE;
3782 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3783 }
3784 }
3785
setup_card(struct airo_info * ai,u8 * mac,int lock)3786 static u16 setup_card(struct airo_info *ai, u8 *mac, int lock)
3787 {
3788 Cmd cmd;
3789 Resp rsp;
3790 int status;
3791 SsidRid mySsid;
3792 __le16 lastindex;
3793 WepKeyRid wkr;
3794 int rc;
3795
3796 memset( &mySsid, 0, sizeof( mySsid ) );
3797 kfree (ai->flash);
3798 ai->flash = NULL;
3799
3800 /* The NOP is the first step in getting the card going */
3801 cmd.cmd = NOP;
3802 cmd.parm0 = cmd.parm1 = cmd.parm2 = 0;
3803 if (lock && down_interruptible(&ai->sem))
3804 return ERROR;
3805 if ( issuecommand( ai, &cmd, &rsp ) != SUCCESS ) {
3806 if (lock)
3807 up(&ai->sem);
3808 return ERROR;
3809 }
3810 disable_MAC( ai, 0);
3811
3812 // Let's figure out if we need to use the AUX port
3813 if (!test_bit(FLAG_MPI,&ai->flags)) {
3814 cmd.cmd = CMD_ENABLEAUX;
3815 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
3816 if (lock)
3817 up(&ai->sem);
3818 airo_print_err(ai->dev->name, "Error checking for AUX port");
3819 return ERROR;
3820 }
3821 if (!aux_bap || rsp.status & 0xff00) {
3822 ai->bap_read = fast_bap_read;
3823 airo_print_dbg(ai->dev->name, "Doing fast bap_reads");
3824 } else {
3825 ai->bap_read = aux_bap_read;
3826 airo_print_dbg(ai->dev->name, "Doing AUX bap_reads");
3827 }
3828 }
3829 if (lock)
3830 up(&ai->sem);
3831 if (ai->config.len == 0) {
3832 int i;
3833 tdsRssiRid rssi_rid;
3834 CapabilityRid cap_rid;
3835
3836 kfree(ai->APList);
3837 ai->APList = NULL;
3838 kfree(ai->SSID);
3839 ai->SSID = NULL;
3840 // general configuration (read/modify/write)
3841 status = readConfigRid(ai, lock);
3842 if ( status != SUCCESS ) return ERROR;
3843
3844 status = readCapabilityRid(ai, &cap_rid, lock);
3845 if ( status != SUCCESS ) return ERROR;
3846
3847 status = PC4500_readrid(ai,RID_RSSI,&rssi_rid,sizeof(rssi_rid),lock);
3848 if ( status == SUCCESS ) {
3849 if (ai->rssi || (ai->rssi = kmalloc(512, GFP_KERNEL)) != NULL)
3850 memcpy(ai->rssi, (u8*)&rssi_rid + 2, 512); /* Skip RID length member */
3851 }
3852 else {
3853 kfree(ai->rssi);
3854 ai->rssi = NULL;
3855 if (cap_rid.softCap & cpu_to_le16(8))
3856 ai->config.rmode |= RXMODE_NORMALIZED_RSSI;
3857 else
3858 airo_print_warn(ai->dev->name, "unknown received signal "
3859 "level scale");
3860 }
3861 ai->config.opmode = adhoc ? MODE_STA_IBSS : MODE_STA_ESS;
3862 ai->config.authType = AUTH_OPEN;
3863 ai->config.modulation = MOD_CCK;
3864
3865 if (le16_to_cpu(cap_rid.len) >= sizeof(cap_rid) &&
3866 (cap_rid.extSoftCap & cpu_to_le16(1)) &&
3867 micsetup(ai) == SUCCESS) {
3868 ai->config.opmode |= MODE_MIC;
3869 set_bit(FLAG_MIC_CAPABLE, &ai->flags);
3870 }
3871
3872 /* Save off the MAC */
3873 for( i = 0; i < ETH_ALEN; i++ ) {
3874 mac[i] = ai->config.macAddr[i];
3875 }
3876
3877 /* Check to see if there are any insmod configured
3878 rates to add */
3879 if ( rates[0] ) {
3880 memset(ai->config.rates,0,sizeof(ai->config.rates));
3881 for( i = 0; i < 8 && rates[i]; i++ ) {
3882 ai->config.rates[i] = rates[i];
3883 }
3884 }
3885 set_bit (FLAG_COMMIT, &ai->flags);
3886 }
3887
3888 /* Setup the SSIDs if present */
3889 if ( ssids[0] ) {
3890 int i;
3891 for( i = 0; i < 3 && ssids[i]; i++ ) {
3892 size_t len = strlen(ssids[i]);
3893 if (len > 32)
3894 len = 32;
3895 mySsid.ssids[i].len = cpu_to_le16(len);
3896 memcpy(mySsid.ssids[i].ssid, ssids[i], len);
3897 }
3898 mySsid.len = cpu_to_le16(sizeof(mySsid));
3899 }
3900
3901 status = writeConfigRid(ai, lock);
3902 if ( status != SUCCESS ) return ERROR;
3903
3904 /* Set up the SSID list */
3905 if ( ssids[0] ) {
3906 status = writeSsidRid(ai, &mySsid, lock);
3907 if ( status != SUCCESS ) return ERROR;
3908 }
3909
3910 status = enable_MAC(ai, lock);
3911 if (status != SUCCESS)
3912 return ERROR;
3913
3914 /* Grab the initial wep key, we gotta save it for auto_wep */
3915 rc = readWepKeyRid(ai, &wkr, 1, lock);
3916 if (rc == SUCCESS) do {
3917 lastindex = wkr.kindex;
3918 if (wkr.kindex == cpu_to_le16(0xffff)) {
3919 ai->defindex = wkr.mac[0];
3920 }
3921 rc = readWepKeyRid(ai, &wkr, 0, lock);
3922 } while(lastindex != wkr.kindex);
3923
3924 try_auto_wep(ai);
3925
3926 return SUCCESS;
3927 }
3928
issuecommand(struct airo_info * ai,Cmd * pCmd,Resp * pRsp)3929 static u16 issuecommand(struct airo_info *ai, Cmd *pCmd, Resp *pRsp) {
3930 // Im really paranoid about letting it run forever!
3931 int max_tries = 600000;
3932
3933 if (IN4500(ai, EVSTAT) & EV_CMD)
3934 OUT4500(ai, EVACK, EV_CMD);
3935
3936 OUT4500(ai, PARAM0, pCmd->parm0);
3937 OUT4500(ai, PARAM1, pCmd->parm1);
3938 OUT4500(ai, PARAM2, pCmd->parm2);
3939 OUT4500(ai, COMMAND, pCmd->cmd);
3940
3941 while (max_tries-- && (IN4500(ai, EVSTAT) & EV_CMD) == 0) {
3942 if ((IN4500(ai, COMMAND)) == pCmd->cmd)
3943 // PC4500 didn't notice command, try again
3944 OUT4500(ai, COMMAND, pCmd->cmd);
3945 if (!in_atomic() && (max_tries & 255) == 0)
3946 schedule();
3947 }
3948
3949 if ( max_tries == -1 ) {
3950 airo_print_err(ai->dev->name,
3951 "Max tries exceeded when issuing command");
3952 if (IN4500(ai, COMMAND) & COMMAND_BUSY)
3953 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3954 return ERROR;
3955 }
3956
3957 // command completed
3958 pRsp->status = IN4500(ai, STATUS);
3959 pRsp->rsp0 = IN4500(ai, RESP0);
3960 pRsp->rsp1 = IN4500(ai, RESP1);
3961 pRsp->rsp2 = IN4500(ai, RESP2);
3962 if ((pRsp->status & 0xff00)!=0 && pCmd->cmd != CMD_SOFTRESET)
3963 airo_print_err(ai->dev->name,
3964 "cmd:%x status:%x rsp0:%x rsp1:%x rsp2:%x",
3965 pCmd->cmd, pRsp->status, pRsp->rsp0, pRsp->rsp1,
3966 pRsp->rsp2);
3967
3968 // clear stuck command busy if necessary
3969 if (IN4500(ai, COMMAND) & COMMAND_BUSY) {
3970 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3971 }
3972 // acknowledge processing the status/response
3973 OUT4500(ai, EVACK, EV_CMD);
3974
3975 return SUCCESS;
3976 }
3977
3978 /* Sets up the bap to start exchange data. whichbap should
3979 * be one of the BAP0 or BAP1 defines. Locks should be held before
3980 * calling! */
bap_setup(struct airo_info * ai,u16 rid,u16 offset,int whichbap)3981 static int bap_setup(struct airo_info *ai, u16 rid, u16 offset, int whichbap )
3982 {
3983 int timeout = 50;
3984 int max_tries = 3;
3985
3986 OUT4500(ai, SELECT0+whichbap, rid);
3987 OUT4500(ai, OFFSET0+whichbap, offset);
3988 while (1) {
3989 int status = IN4500(ai, OFFSET0+whichbap);
3990 if (status & BAP_BUSY) {
3991 /* This isn't really a timeout, but its kinda
3992 close */
3993 if (timeout--) {
3994 continue;
3995 }
3996 } else if ( status & BAP_ERR ) {
3997 /* invalid rid or offset */
3998 airo_print_err(ai->dev->name, "BAP error %x %d",
3999 status, whichbap );
4000 return ERROR;
4001 } else if (status & BAP_DONE) { // success
4002 return SUCCESS;
4003 }
4004 if ( !(max_tries--) ) {
4005 airo_print_err(ai->dev->name,
4006 "BAP setup error too many retries\n");
4007 return ERROR;
4008 }
4009 // -- PC4500 missed it, try again
4010 OUT4500(ai, SELECT0+whichbap, rid);
4011 OUT4500(ai, OFFSET0+whichbap, offset);
4012 timeout = 50;
4013 }
4014 }
4015
4016 /* should only be called by aux_bap_read. This aux function and the
4017 following use concepts not documented in the developers guide. I
4018 got them from a patch given to my by Aironet */
aux_setup(struct airo_info * ai,u16 page,u16 offset,u16 * len)4019 static u16 aux_setup(struct airo_info *ai, u16 page,
4020 u16 offset, u16 *len)
4021 {
4022 u16 next;
4023
4024 OUT4500(ai, AUXPAGE, page);
4025 OUT4500(ai, AUXOFF, 0);
4026 next = IN4500(ai, AUXDATA);
4027 *len = IN4500(ai, AUXDATA)&0xff;
4028 if (offset != 4) OUT4500(ai, AUXOFF, offset);
4029 return next;
4030 }
4031
4032 /* requires call to bap_setup() first */
aux_bap_read(struct airo_info * ai,__le16 * pu16Dst,int bytelen,int whichbap)4033 static int aux_bap_read(struct airo_info *ai, __le16 *pu16Dst,
4034 int bytelen, int whichbap)
4035 {
4036 u16 len;
4037 u16 page;
4038 u16 offset;
4039 u16 next;
4040 int words;
4041 int i;
4042 unsigned long flags;
4043
4044 spin_lock_irqsave(&ai->aux_lock, flags);
4045 page = IN4500(ai, SWS0+whichbap);
4046 offset = IN4500(ai, SWS2+whichbap);
4047 next = aux_setup(ai, page, offset, &len);
4048 words = (bytelen+1)>>1;
4049
4050 for (i=0; i<words;) {
4051 int count;
4052 count = (len>>1) < (words-i) ? (len>>1) : (words-i);
4053 if ( !do8bitIO )
4054 insw( ai->dev->base_addr+DATA0+whichbap,
4055 pu16Dst+i,count );
4056 else
4057 insb( ai->dev->base_addr+DATA0+whichbap,
4058 pu16Dst+i, count << 1 );
4059 i += count;
4060 if (i<words) {
4061 next = aux_setup(ai, next, 4, &len);
4062 }
4063 }
4064 spin_unlock_irqrestore(&ai->aux_lock, flags);
4065 return SUCCESS;
4066 }
4067
4068
4069 /* requires call to bap_setup() first */
fast_bap_read(struct airo_info * ai,__le16 * pu16Dst,int bytelen,int whichbap)4070 static int fast_bap_read(struct airo_info *ai, __le16 *pu16Dst,
4071 int bytelen, int whichbap)
4072 {
4073 bytelen = (bytelen + 1) & (~1); // round up to even value
4074 if ( !do8bitIO )
4075 insw( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen>>1 );
4076 else
4077 insb( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen );
4078 return SUCCESS;
4079 }
4080
4081 /* requires call to bap_setup() first */
bap_write(struct airo_info * ai,const __le16 * pu16Src,int bytelen,int whichbap)4082 static int bap_write(struct airo_info *ai, const __le16 *pu16Src,
4083 int bytelen, int whichbap)
4084 {
4085 bytelen = (bytelen + 1) & (~1); // round up to even value
4086 if ( !do8bitIO )
4087 outsw( ai->dev->base_addr+DATA0+whichbap,
4088 pu16Src, bytelen>>1 );
4089 else
4090 outsb( ai->dev->base_addr+DATA0+whichbap, pu16Src, bytelen );
4091 return SUCCESS;
4092 }
4093
PC4500_accessrid(struct airo_info * ai,u16 rid,u16 accmd)4094 static int PC4500_accessrid(struct airo_info *ai, u16 rid, u16 accmd)
4095 {
4096 Cmd cmd; /* for issuing commands */
4097 Resp rsp; /* response from commands */
4098 u16 status;
4099
4100 memset(&cmd, 0, sizeof(cmd));
4101 cmd.cmd = accmd;
4102 cmd.parm0 = rid;
4103 status = issuecommand(ai, &cmd, &rsp);
4104 if (status != 0) return status;
4105 if ( (rsp.status & 0x7F00) != 0) {
4106 return (accmd << 8) + (rsp.rsp0 & 0xFF);
4107 }
4108 return 0;
4109 }
4110
4111 /* Note, that we are using BAP1 which is also used by transmit, so
4112 * we must get a lock. */
PC4500_readrid(struct airo_info * ai,u16 rid,void * pBuf,int len,int lock)4113 static int PC4500_readrid(struct airo_info *ai, u16 rid, void *pBuf, int len, int lock)
4114 {
4115 u16 status;
4116 int rc = SUCCESS;
4117
4118 if (lock) {
4119 if (down_interruptible(&ai->sem))
4120 return ERROR;
4121 }
4122 if (test_bit(FLAG_MPI,&ai->flags)) {
4123 Cmd cmd;
4124 Resp rsp;
4125
4126 memset(&cmd, 0, sizeof(cmd));
4127 memset(&rsp, 0, sizeof(rsp));
4128 ai->config_desc.rid_desc.valid = 1;
4129 ai->config_desc.rid_desc.len = RIDSIZE;
4130 ai->config_desc.rid_desc.rid = 0;
4131 ai->config_desc.rid_desc.host_addr = ai->ridbus;
4132
4133 cmd.cmd = CMD_ACCESS;
4134 cmd.parm0 = rid;
4135
4136 memcpy_toio(ai->config_desc.card_ram_off,
4137 &ai->config_desc.rid_desc, sizeof(Rid));
4138
4139 rc = issuecommand(ai, &cmd, &rsp);
4140
4141 if (rsp.status & 0x7f00)
4142 rc = rsp.rsp0;
4143 if (!rc)
4144 memcpy(pBuf, ai->config_desc.virtual_host_addr, len);
4145 goto done;
4146 } else {
4147 if ((status = PC4500_accessrid(ai, rid, CMD_ACCESS))!=SUCCESS) {
4148 rc = status;
4149 goto done;
4150 }
4151 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4152 rc = ERROR;
4153 goto done;
4154 }
4155 // read the rid length field
4156 bap_read(ai, pBuf, 2, BAP1);
4157 // length for remaining part of rid
4158 len = min(len, (int)le16_to_cpu(*(__le16*)pBuf)) - 2;
4159
4160 if ( len <= 2 ) {
4161 airo_print_err(ai->dev->name,
4162 "Rid %x has a length of %d which is too short",
4163 (int)rid, (int)len );
4164 rc = ERROR;
4165 goto done;
4166 }
4167 // read remainder of the rid
4168 rc = bap_read(ai, ((__le16*)pBuf)+1, len, BAP1);
4169 }
4170 done:
4171 if (lock)
4172 up(&ai->sem);
4173 return rc;
4174 }
4175
4176 /* Note, that we are using BAP1 which is also used by transmit, so
4177 * make sure this isn't called when a transmit is happening */
PC4500_writerid(struct airo_info * ai,u16 rid,const void * pBuf,int len,int lock)4178 static int PC4500_writerid(struct airo_info *ai, u16 rid,
4179 const void *pBuf, int len, int lock)
4180 {
4181 u16 status;
4182 int rc = SUCCESS;
4183
4184 *(__le16*)pBuf = cpu_to_le16((u16)len);
4185
4186 if (lock) {
4187 if (down_interruptible(&ai->sem))
4188 return ERROR;
4189 }
4190 if (test_bit(FLAG_MPI,&ai->flags)) {
4191 Cmd cmd;
4192 Resp rsp;
4193
4194 if (test_bit(FLAG_ENABLED, &ai->flags) && (RID_WEP_TEMP != rid))
4195 airo_print_err(ai->dev->name,
4196 "%s: MAC should be disabled (rid=%04x)",
4197 __func__, rid);
4198 memset(&cmd, 0, sizeof(cmd));
4199 memset(&rsp, 0, sizeof(rsp));
4200
4201 ai->config_desc.rid_desc.valid = 1;
4202 ai->config_desc.rid_desc.len = *((u16 *)pBuf);
4203 ai->config_desc.rid_desc.rid = 0;
4204
4205 cmd.cmd = CMD_WRITERID;
4206 cmd.parm0 = rid;
4207
4208 memcpy_toio(ai->config_desc.card_ram_off,
4209 &ai->config_desc.rid_desc, sizeof(Rid));
4210
4211 if (len < 4 || len > 2047) {
4212 airo_print_err(ai->dev->name, "%s: len=%d", __func__, len);
4213 rc = -1;
4214 } else {
4215 memcpy((char *)ai->config_desc.virtual_host_addr,
4216 pBuf, len);
4217
4218 rc = issuecommand(ai, &cmd, &rsp);
4219 if ((rc & 0xff00) != 0) {
4220 airo_print_err(ai->dev->name, "%s: Write rid Error %d",
4221 __func__, rc);
4222 airo_print_err(ai->dev->name, "%s: Cmd=%04x",
4223 __func__, cmd.cmd);
4224 }
4225
4226 if ((rsp.status & 0x7f00))
4227 rc = rsp.rsp0;
4228 }
4229 } else {
4230 // --- first access so that we can write the rid data
4231 if ( (status = PC4500_accessrid(ai, rid, CMD_ACCESS)) != 0) {
4232 rc = status;
4233 goto done;
4234 }
4235 // --- now write the rid data
4236 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4237 rc = ERROR;
4238 goto done;
4239 }
4240 bap_write(ai, pBuf, len, BAP1);
4241 // ---now commit the rid data
4242 rc = PC4500_accessrid(ai, rid, 0x100|CMD_ACCESS);
4243 }
4244 done:
4245 if (lock)
4246 up(&ai->sem);
4247 return rc;
4248 }
4249
4250 /* Allocates a FID to be used for transmitting packets. We only use
4251 one for now. */
transmit_allocate(struct airo_info * ai,int lenPayload,int raw)4252 static u16 transmit_allocate(struct airo_info *ai, int lenPayload, int raw)
4253 {
4254 unsigned int loop = 3000;
4255 Cmd cmd;
4256 Resp rsp;
4257 u16 txFid;
4258 __le16 txControl;
4259
4260 cmd.cmd = CMD_ALLOCATETX;
4261 cmd.parm0 = lenPayload;
4262 if (down_interruptible(&ai->sem))
4263 return ERROR;
4264 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
4265 txFid = ERROR;
4266 goto done;
4267 }
4268 if ( (rsp.status & 0xFF00) != 0) {
4269 txFid = ERROR;
4270 goto done;
4271 }
4272 /* wait for the allocate event/indication
4273 * It makes me kind of nervous that this can just sit here and spin,
4274 * but in practice it only loops like four times. */
4275 while (((IN4500(ai, EVSTAT) & EV_ALLOC) == 0) && --loop);
4276 if (!loop) {
4277 txFid = ERROR;
4278 goto done;
4279 }
4280
4281 // get the allocated fid and acknowledge
4282 txFid = IN4500(ai, TXALLOCFID);
4283 OUT4500(ai, EVACK, EV_ALLOC);
4284
4285 /* The CARD is pretty cool since it converts the ethernet packet
4286 * into 802.11. Also note that we don't release the FID since we
4287 * will be using the same one over and over again. */
4288 /* We only have to setup the control once since we are not
4289 * releasing the fid. */
4290 if (raw)
4291 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_11
4292 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4293 else
4294 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_3
4295 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4296 if (bap_setup(ai, txFid, 0x0008, BAP1) != SUCCESS)
4297 txFid = ERROR;
4298 else
4299 bap_write(ai, &txControl, sizeof(txControl), BAP1);
4300
4301 done:
4302 up(&ai->sem);
4303
4304 return txFid;
4305 }
4306
4307 /* In general BAP1 is dedicated to transmiting packets. However,
4308 since we need a BAP when accessing RIDs, we also use BAP1 for that.
4309 Make sure the BAP1 spinlock is held when this is called. */
transmit_802_3_packet(struct airo_info * ai,int len,char * pPacket)4310 static int transmit_802_3_packet(struct airo_info *ai, int len, char *pPacket)
4311 {
4312 __le16 payloadLen;
4313 Cmd cmd;
4314 Resp rsp;
4315 int miclen = 0;
4316 u16 txFid = len;
4317 MICBuffer pMic;
4318
4319 len >>= 16;
4320
4321 if (len <= ETH_ALEN * 2) {
4322 airo_print_warn(ai->dev->name, "Short packet %d", len);
4323 return ERROR;
4324 }
4325 len -= ETH_ALEN * 2;
4326
4327 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
4328 (ntohs(((__be16 *)pPacket)[6]) != 0x888E)) {
4329 if (encapsulate(ai,(etherHead *)pPacket,&pMic,len) != SUCCESS)
4330 return ERROR;
4331 miclen = sizeof(pMic);
4332 }
4333 // packet is destination[6], source[6], payload[len-12]
4334 // write the payload length and dst/src/payload
4335 if (bap_setup(ai, txFid, 0x0036, BAP1) != SUCCESS) return ERROR;
4336 /* The hardware addresses aren't counted as part of the payload, so
4337 * we have to subtract the 12 bytes for the addresses off */
4338 payloadLen = cpu_to_le16(len + miclen);
4339 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4340 bap_write(ai, (__le16*)pPacket, sizeof(etherHead), BAP1);
4341 if (miclen)
4342 bap_write(ai, (__le16*)&pMic, miclen, BAP1);
4343 bap_write(ai, (__le16*)(pPacket + sizeof(etherHead)), len, BAP1);
4344 // issue the transmit command
4345 memset( &cmd, 0, sizeof( cmd ) );
4346 cmd.cmd = CMD_TRANSMIT;
4347 cmd.parm0 = txFid;
4348 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4349 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4350 return SUCCESS;
4351 }
4352
transmit_802_11_packet(struct airo_info * ai,int len,char * pPacket)4353 static int transmit_802_11_packet(struct airo_info *ai, int len, char *pPacket)
4354 {
4355 __le16 fc, payloadLen;
4356 Cmd cmd;
4357 Resp rsp;
4358 int hdrlen;
4359 static u8 tail[(30-10) + 2 + 6] = {[30-10] = 6};
4360 /* padding of header to full size + le16 gaplen (6) + gaplen bytes */
4361 u16 txFid = len;
4362 len >>= 16;
4363
4364 fc = *(__le16*)pPacket;
4365 hdrlen = header_len(fc);
4366
4367 if (len < hdrlen) {
4368 airo_print_warn(ai->dev->name, "Short packet %d", len);
4369 return ERROR;
4370 }
4371
4372 /* packet is 802.11 header + payload
4373 * write the payload length and dst/src/payload */
4374 if (bap_setup(ai, txFid, 6, BAP1) != SUCCESS) return ERROR;
4375 /* The 802.11 header aren't counted as part of the payload, so
4376 * we have to subtract the header bytes off */
4377 payloadLen = cpu_to_le16(len-hdrlen);
4378 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4379 if (bap_setup(ai, txFid, 0x0014, BAP1) != SUCCESS) return ERROR;
4380 bap_write(ai, (__le16 *)pPacket, hdrlen, BAP1);
4381 bap_write(ai, (__le16 *)(tail + (hdrlen - 10)), 38 - hdrlen, BAP1);
4382
4383 bap_write(ai, (__le16 *)(pPacket + hdrlen), len - hdrlen, BAP1);
4384 // issue the transmit command
4385 memset( &cmd, 0, sizeof( cmd ) );
4386 cmd.cmd = CMD_TRANSMIT;
4387 cmd.parm0 = txFid;
4388 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4389 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4390 return SUCCESS;
4391 }
4392
4393 /*
4394 * This is the proc_fs routines. It is a bit messier than I would
4395 * like! Feel free to clean it up!
4396 */
4397
4398 static ssize_t proc_read( struct file *file,
4399 char __user *buffer,
4400 size_t len,
4401 loff_t *offset);
4402
4403 static ssize_t proc_write( struct file *file,
4404 const char __user *buffer,
4405 size_t len,
4406 loff_t *offset );
4407 static int proc_close( struct inode *inode, struct file *file );
4408
4409 static int proc_stats_open( struct inode *inode, struct file *file );
4410 static int proc_statsdelta_open( struct inode *inode, struct file *file );
4411 static int proc_status_open( struct inode *inode, struct file *file );
4412 static int proc_SSID_open( struct inode *inode, struct file *file );
4413 static int proc_APList_open( struct inode *inode, struct file *file );
4414 static int proc_BSSList_open( struct inode *inode, struct file *file );
4415 static int proc_config_open( struct inode *inode, struct file *file );
4416 static int proc_wepkey_open( struct inode *inode, struct file *file );
4417
4418 static const struct file_operations proc_statsdelta_ops = {
4419 .owner = THIS_MODULE,
4420 .read = proc_read,
4421 .open = proc_statsdelta_open,
4422 .release = proc_close,
4423 .llseek = default_llseek,
4424 };
4425
4426 static const struct file_operations proc_stats_ops = {
4427 .owner = THIS_MODULE,
4428 .read = proc_read,
4429 .open = proc_stats_open,
4430 .release = proc_close,
4431 .llseek = default_llseek,
4432 };
4433
4434 static const struct file_operations proc_status_ops = {
4435 .owner = THIS_MODULE,
4436 .read = proc_read,
4437 .open = proc_status_open,
4438 .release = proc_close,
4439 .llseek = default_llseek,
4440 };
4441
4442 static const struct file_operations proc_SSID_ops = {
4443 .owner = THIS_MODULE,
4444 .read = proc_read,
4445 .write = proc_write,
4446 .open = proc_SSID_open,
4447 .release = proc_close,
4448 .llseek = default_llseek,
4449 };
4450
4451 static const struct file_operations proc_BSSList_ops = {
4452 .owner = THIS_MODULE,
4453 .read = proc_read,
4454 .write = proc_write,
4455 .open = proc_BSSList_open,
4456 .release = proc_close,
4457 .llseek = default_llseek,
4458 };
4459
4460 static const struct file_operations proc_APList_ops = {
4461 .owner = THIS_MODULE,
4462 .read = proc_read,
4463 .write = proc_write,
4464 .open = proc_APList_open,
4465 .release = proc_close,
4466 .llseek = default_llseek,
4467 };
4468
4469 static const struct file_operations proc_config_ops = {
4470 .owner = THIS_MODULE,
4471 .read = proc_read,
4472 .write = proc_write,
4473 .open = proc_config_open,
4474 .release = proc_close,
4475 .llseek = default_llseek,
4476 };
4477
4478 static const struct file_operations proc_wepkey_ops = {
4479 .owner = THIS_MODULE,
4480 .read = proc_read,
4481 .write = proc_write,
4482 .open = proc_wepkey_open,
4483 .release = proc_close,
4484 .llseek = default_llseek,
4485 };
4486
4487 static struct proc_dir_entry *airo_entry;
4488
4489 struct proc_data {
4490 int release_buffer;
4491 int readlen;
4492 char *rbuffer;
4493 int writelen;
4494 int maxwritelen;
4495 char *wbuffer;
4496 void (*on_close) (struct inode *, struct file *);
4497 };
4498
setup_proc_entry(struct net_device * dev,struct airo_info * apriv)4499 static int setup_proc_entry( struct net_device *dev,
4500 struct airo_info *apriv ) {
4501 struct proc_dir_entry *entry;
4502 /* First setup the device directory */
4503 strcpy(apriv->proc_name,dev->name);
4504 apriv->proc_entry = proc_mkdir_mode(apriv->proc_name, airo_perm,
4505 airo_entry);
4506 if (!apriv->proc_entry)
4507 goto fail;
4508 apriv->proc_entry->uid = proc_uid;
4509 apriv->proc_entry->gid = proc_gid;
4510
4511 /* Setup the StatsDelta */
4512 entry = proc_create_data("StatsDelta", S_IRUGO & proc_perm,
4513 apriv->proc_entry, &proc_statsdelta_ops, dev);
4514 if (!entry)
4515 goto fail_stats_delta;
4516 entry->uid = proc_uid;
4517 entry->gid = proc_gid;
4518
4519 /* Setup the Stats */
4520 entry = proc_create_data("Stats", S_IRUGO & proc_perm,
4521 apriv->proc_entry, &proc_stats_ops, dev);
4522 if (!entry)
4523 goto fail_stats;
4524 entry->uid = proc_uid;
4525 entry->gid = proc_gid;
4526
4527 /* Setup the Status */
4528 entry = proc_create_data("Status", S_IRUGO & proc_perm,
4529 apriv->proc_entry, &proc_status_ops, dev);
4530 if (!entry)
4531 goto fail_status;
4532 entry->uid = proc_uid;
4533 entry->gid = proc_gid;
4534
4535 /* Setup the Config */
4536 entry = proc_create_data("Config", proc_perm,
4537 apriv->proc_entry, &proc_config_ops, dev);
4538 if (!entry)
4539 goto fail_config;
4540 entry->uid = proc_uid;
4541 entry->gid = proc_gid;
4542
4543 /* Setup the SSID */
4544 entry = proc_create_data("SSID", proc_perm,
4545 apriv->proc_entry, &proc_SSID_ops, dev);
4546 if (!entry)
4547 goto fail_ssid;
4548 entry->uid = proc_uid;
4549 entry->gid = proc_gid;
4550
4551 /* Setup the APList */
4552 entry = proc_create_data("APList", proc_perm,
4553 apriv->proc_entry, &proc_APList_ops, dev);
4554 if (!entry)
4555 goto fail_aplist;
4556 entry->uid = proc_uid;
4557 entry->gid = proc_gid;
4558
4559 /* Setup the BSSList */
4560 entry = proc_create_data("BSSList", proc_perm,
4561 apriv->proc_entry, &proc_BSSList_ops, dev);
4562 if (!entry)
4563 goto fail_bsslist;
4564 entry->uid = proc_uid;
4565 entry->gid = proc_gid;
4566
4567 /* Setup the WepKey */
4568 entry = proc_create_data("WepKey", proc_perm,
4569 apriv->proc_entry, &proc_wepkey_ops, dev);
4570 if (!entry)
4571 goto fail_wepkey;
4572 entry->uid = proc_uid;
4573 entry->gid = proc_gid;
4574
4575 return 0;
4576
4577 fail_wepkey:
4578 remove_proc_entry("BSSList", apriv->proc_entry);
4579 fail_bsslist:
4580 remove_proc_entry("APList", apriv->proc_entry);
4581 fail_aplist:
4582 remove_proc_entry("SSID", apriv->proc_entry);
4583 fail_ssid:
4584 remove_proc_entry("Config", apriv->proc_entry);
4585 fail_config:
4586 remove_proc_entry("Status", apriv->proc_entry);
4587 fail_status:
4588 remove_proc_entry("Stats", apriv->proc_entry);
4589 fail_stats:
4590 remove_proc_entry("StatsDelta", apriv->proc_entry);
4591 fail_stats_delta:
4592 remove_proc_entry(apriv->proc_name, airo_entry);
4593 fail:
4594 return -ENOMEM;
4595 }
4596
takedown_proc_entry(struct net_device * dev,struct airo_info * apriv)4597 static int takedown_proc_entry( struct net_device *dev,
4598 struct airo_info *apriv ) {
4599 if ( !apriv->proc_entry->namelen ) return 0;
4600 remove_proc_entry("Stats",apriv->proc_entry);
4601 remove_proc_entry("StatsDelta",apriv->proc_entry);
4602 remove_proc_entry("Status",apriv->proc_entry);
4603 remove_proc_entry("Config",apriv->proc_entry);
4604 remove_proc_entry("SSID",apriv->proc_entry);
4605 remove_proc_entry("APList",apriv->proc_entry);
4606 remove_proc_entry("BSSList",apriv->proc_entry);
4607 remove_proc_entry("WepKey",apriv->proc_entry);
4608 remove_proc_entry(apriv->proc_name,airo_entry);
4609 return 0;
4610 }
4611
4612 /*
4613 * What we want from the proc_fs is to be able to efficiently read
4614 * and write the configuration. To do this, we want to read the
4615 * configuration when the file is opened and write it when the file is
4616 * closed. So basically we allocate a read buffer at open and fill it
4617 * with data, and allocate a write buffer and read it at close.
4618 */
4619
4620 /*
4621 * The read routine is generic, it relies on the preallocated rbuffer
4622 * to supply the data.
4623 */
proc_read(struct file * file,char __user * buffer,size_t len,loff_t * offset)4624 static ssize_t proc_read( struct file *file,
4625 char __user *buffer,
4626 size_t len,
4627 loff_t *offset )
4628 {
4629 struct proc_data *priv = file->private_data;
4630
4631 if (!priv->rbuffer)
4632 return -EINVAL;
4633
4634 return simple_read_from_buffer(buffer, len, offset, priv->rbuffer,
4635 priv->readlen);
4636 }
4637
4638 /*
4639 * The write routine is generic, it fills in a preallocated rbuffer
4640 * to supply the data.
4641 */
proc_write(struct file * file,const char __user * buffer,size_t len,loff_t * offset)4642 static ssize_t proc_write( struct file *file,
4643 const char __user *buffer,
4644 size_t len,
4645 loff_t *offset )
4646 {
4647 ssize_t ret;
4648 struct proc_data *priv = file->private_data;
4649
4650 if (!priv->wbuffer)
4651 return -EINVAL;
4652
4653 ret = simple_write_to_buffer(priv->wbuffer, priv->maxwritelen, offset,
4654 buffer, len);
4655 if (ret > 0)
4656 priv->writelen = max_t(int, priv->writelen, *offset);
4657
4658 return ret;
4659 }
4660
proc_status_open(struct inode * inode,struct file * file)4661 static int proc_status_open(struct inode *inode, struct file *file)
4662 {
4663 struct proc_data *data;
4664 struct proc_dir_entry *dp = PDE(inode);
4665 struct net_device *dev = dp->data;
4666 struct airo_info *apriv = dev->ml_priv;
4667 CapabilityRid cap_rid;
4668 StatusRid status_rid;
4669 u16 mode;
4670 int i;
4671
4672 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4673 return -ENOMEM;
4674 data = file->private_data;
4675 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
4676 kfree (file->private_data);
4677 return -ENOMEM;
4678 }
4679
4680 readStatusRid(apriv, &status_rid, 1);
4681 readCapabilityRid(apriv, &cap_rid, 1);
4682
4683 mode = le16_to_cpu(status_rid.mode);
4684
4685 i = sprintf(data->rbuffer, "Status: %s%s%s%s%s%s%s%s%s\n",
4686 mode & 1 ? "CFG ": "",
4687 mode & 2 ? "ACT ": "",
4688 mode & 0x10 ? "SYN ": "",
4689 mode & 0x20 ? "LNK ": "",
4690 mode & 0x40 ? "LEAP ": "",
4691 mode & 0x80 ? "PRIV ": "",
4692 mode & 0x100 ? "KEY ": "",
4693 mode & 0x200 ? "WEP ": "",
4694 mode & 0x8000 ? "ERR ": "");
4695 sprintf( data->rbuffer+i, "Mode: %x\n"
4696 "Signal Strength: %d\n"
4697 "Signal Quality: %d\n"
4698 "SSID: %-.*s\n"
4699 "AP: %-.16s\n"
4700 "Freq: %d\n"
4701 "BitRate: %dmbs\n"
4702 "Driver Version: %s\n"
4703 "Device: %s\nManufacturer: %s\nFirmware Version: %s\n"
4704 "Radio type: %x\nCountry: %x\nHardware Version: %x\n"
4705 "Software Version: %x\nSoftware Subversion: %x\n"
4706 "Boot block version: %x\n",
4707 le16_to_cpu(status_rid.mode),
4708 le16_to_cpu(status_rid.normalizedSignalStrength),
4709 le16_to_cpu(status_rid.signalQuality),
4710 le16_to_cpu(status_rid.SSIDlen),
4711 status_rid.SSID,
4712 status_rid.apName,
4713 le16_to_cpu(status_rid.channel),
4714 le16_to_cpu(status_rid.currentXmitRate) / 2,
4715 version,
4716 cap_rid.prodName,
4717 cap_rid.manName,
4718 cap_rid.prodVer,
4719 le16_to_cpu(cap_rid.radioType),
4720 le16_to_cpu(cap_rid.country),
4721 le16_to_cpu(cap_rid.hardVer),
4722 le16_to_cpu(cap_rid.softVer),
4723 le16_to_cpu(cap_rid.softSubVer),
4724 le16_to_cpu(cap_rid.bootBlockVer));
4725 data->readlen = strlen( data->rbuffer );
4726 return 0;
4727 }
4728
4729 static int proc_stats_rid_open(struct inode*, struct file*, u16);
proc_statsdelta_open(struct inode * inode,struct file * file)4730 static int proc_statsdelta_open( struct inode *inode,
4731 struct file *file ) {
4732 if (file->f_mode&FMODE_WRITE) {
4733 return proc_stats_rid_open(inode, file, RID_STATSDELTACLEAR);
4734 }
4735 return proc_stats_rid_open(inode, file, RID_STATSDELTA);
4736 }
4737
proc_stats_open(struct inode * inode,struct file * file)4738 static int proc_stats_open( struct inode *inode, struct file *file ) {
4739 return proc_stats_rid_open(inode, file, RID_STATS);
4740 }
4741
proc_stats_rid_open(struct inode * inode,struct file * file,u16 rid)4742 static int proc_stats_rid_open( struct inode *inode,
4743 struct file *file,
4744 u16 rid )
4745 {
4746 struct proc_data *data;
4747 struct proc_dir_entry *dp = PDE(inode);
4748 struct net_device *dev = dp->data;
4749 struct airo_info *apriv = dev->ml_priv;
4750 StatsRid stats;
4751 int i, j;
4752 __le32 *vals = stats.vals;
4753 int len;
4754
4755 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4756 return -ENOMEM;
4757 data = file->private_data;
4758 if ((data->rbuffer = kmalloc( 4096, GFP_KERNEL )) == NULL) {
4759 kfree (file->private_data);
4760 return -ENOMEM;
4761 }
4762
4763 readStatsRid(apriv, &stats, rid, 1);
4764 len = le16_to_cpu(stats.len);
4765
4766 j = 0;
4767 for(i=0; statsLabels[i]!=(char *)-1 && i*4<len; i++) {
4768 if (!statsLabels[i]) continue;
4769 if (j+strlen(statsLabels[i])+16>4096) {
4770 airo_print_warn(apriv->dev->name,
4771 "Potentially disastrous buffer overflow averted!");
4772 break;
4773 }
4774 j+=sprintf(data->rbuffer+j, "%s: %u\n", statsLabels[i],
4775 le32_to_cpu(vals[i]));
4776 }
4777 if (i*4 >= len) {
4778 airo_print_warn(apriv->dev->name, "Got a short rid");
4779 }
4780 data->readlen = j;
4781 return 0;
4782 }
4783
get_dec_u16(char * buffer,int * start,int limit)4784 static int get_dec_u16( char *buffer, int *start, int limit ) {
4785 u16 value;
4786 int valid = 0;
4787 for (value = 0; *start < limit && buffer[*start] >= '0' &&
4788 buffer[*start] <= '9'; (*start)++) {
4789 valid = 1;
4790 value *= 10;
4791 value += buffer[*start] - '0';
4792 }
4793 if ( !valid ) return -1;
4794 return value;
4795 }
4796
4797 static int airo_config_commit(struct net_device *dev,
4798 struct iw_request_info *info, void *zwrq,
4799 char *extra);
4800
sniffing_mode(struct airo_info * ai)4801 static inline int sniffing_mode(struct airo_info *ai)
4802 {
4803 return (le16_to_cpu(ai->config.rmode) & le16_to_cpu(RXMODE_MASK)) >=
4804 le16_to_cpu(RXMODE_RFMON);
4805 }
4806
proc_config_on_close(struct inode * inode,struct file * file)4807 static void proc_config_on_close(struct inode *inode, struct file *file)
4808 {
4809 struct proc_data *data = file->private_data;
4810 struct proc_dir_entry *dp = PDE(inode);
4811 struct net_device *dev = dp->data;
4812 struct airo_info *ai = dev->ml_priv;
4813 char *line;
4814
4815 if ( !data->writelen ) return;
4816
4817 readConfigRid(ai, 1);
4818 set_bit (FLAG_COMMIT, &ai->flags);
4819
4820 line = data->wbuffer;
4821 while( line[0] ) {
4822 /*** Mode processing */
4823 if ( !strncmp( line, "Mode: ", 6 ) ) {
4824 line += 6;
4825 if (sniffing_mode(ai))
4826 set_bit (FLAG_RESET, &ai->flags);
4827 ai->config.rmode &= ~RXMODE_FULL_MASK;
4828 clear_bit (FLAG_802_11, &ai->flags);
4829 ai->config.opmode &= ~MODE_CFG_MASK;
4830 ai->config.scanMode = SCANMODE_ACTIVE;
4831 if ( line[0] == 'a' ) {
4832 ai->config.opmode |= MODE_STA_IBSS;
4833 } else {
4834 ai->config.opmode |= MODE_STA_ESS;
4835 if ( line[0] == 'r' ) {
4836 ai->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
4837 ai->config.scanMode = SCANMODE_PASSIVE;
4838 set_bit (FLAG_802_11, &ai->flags);
4839 } else if ( line[0] == 'y' ) {
4840 ai->config.rmode |= RXMODE_RFMON_ANYBSS | RXMODE_DISABLE_802_3_HEADER;
4841 ai->config.scanMode = SCANMODE_PASSIVE;
4842 set_bit (FLAG_802_11, &ai->flags);
4843 } else if ( line[0] == 'l' )
4844 ai->config.rmode |= RXMODE_LANMON;
4845 }
4846 set_bit (FLAG_COMMIT, &ai->flags);
4847 }
4848
4849 /*** Radio status */
4850 else if (!strncmp(line,"Radio: ", 7)) {
4851 line += 7;
4852 if (!strncmp(line,"off",3)) {
4853 set_bit (FLAG_RADIO_OFF, &ai->flags);
4854 } else {
4855 clear_bit (FLAG_RADIO_OFF, &ai->flags);
4856 }
4857 }
4858 /*** NodeName processing */
4859 else if ( !strncmp( line, "NodeName: ", 10 ) ) {
4860 int j;
4861
4862 line += 10;
4863 memset( ai->config.nodeName, 0, 16 );
4864 /* Do the name, assume a space between the mode and node name */
4865 for( j = 0; j < 16 && line[j] != '\n'; j++ ) {
4866 ai->config.nodeName[j] = line[j];
4867 }
4868 set_bit (FLAG_COMMIT, &ai->flags);
4869 }
4870
4871 /*** PowerMode processing */
4872 else if ( !strncmp( line, "PowerMode: ", 11 ) ) {
4873 line += 11;
4874 if ( !strncmp( line, "PSPCAM", 6 ) ) {
4875 ai->config.powerSaveMode = POWERSAVE_PSPCAM;
4876 set_bit (FLAG_COMMIT, &ai->flags);
4877 } else if ( !strncmp( line, "PSP", 3 ) ) {
4878 ai->config.powerSaveMode = POWERSAVE_PSP;
4879 set_bit (FLAG_COMMIT, &ai->flags);
4880 } else {
4881 ai->config.powerSaveMode = POWERSAVE_CAM;
4882 set_bit (FLAG_COMMIT, &ai->flags);
4883 }
4884 } else if ( !strncmp( line, "DataRates: ", 11 ) ) {
4885 int v, i = 0, k = 0; /* i is index into line,
4886 k is index to rates */
4887
4888 line += 11;
4889 while((v = get_dec_u16(line, &i, 3))!=-1) {
4890 ai->config.rates[k++] = (u8)v;
4891 line += i + 1;
4892 i = 0;
4893 }
4894 set_bit (FLAG_COMMIT, &ai->flags);
4895 } else if ( !strncmp( line, "Channel: ", 9 ) ) {
4896 int v, i = 0;
4897 line += 9;
4898 v = get_dec_u16(line, &i, i+3);
4899 if ( v != -1 ) {
4900 ai->config.channelSet = cpu_to_le16(v);
4901 set_bit (FLAG_COMMIT, &ai->flags);
4902 }
4903 } else if ( !strncmp( line, "XmitPower: ", 11 ) ) {
4904 int v, i = 0;
4905 line += 11;
4906 v = get_dec_u16(line, &i, i+3);
4907 if ( v != -1 ) {
4908 ai->config.txPower = cpu_to_le16(v);
4909 set_bit (FLAG_COMMIT, &ai->flags);
4910 }
4911 } else if ( !strncmp( line, "WEP: ", 5 ) ) {
4912 line += 5;
4913 switch( line[0] ) {
4914 case 's':
4915 ai->config.authType = AUTH_SHAREDKEY;
4916 break;
4917 case 'e':
4918 ai->config.authType = AUTH_ENCRYPT;
4919 break;
4920 default:
4921 ai->config.authType = AUTH_OPEN;
4922 break;
4923 }
4924 set_bit (FLAG_COMMIT, &ai->flags);
4925 } else if ( !strncmp( line, "LongRetryLimit: ", 16 ) ) {
4926 int v, i = 0;
4927
4928 line += 16;
4929 v = get_dec_u16(line, &i, 3);
4930 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4931 ai->config.longRetryLimit = cpu_to_le16(v);
4932 set_bit (FLAG_COMMIT, &ai->flags);
4933 } else if ( !strncmp( line, "ShortRetryLimit: ", 17 ) ) {
4934 int v, i = 0;
4935
4936 line += 17;
4937 v = get_dec_u16(line, &i, 3);
4938 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4939 ai->config.shortRetryLimit = cpu_to_le16(v);
4940 set_bit (FLAG_COMMIT, &ai->flags);
4941 } else if ( !strncmp( line, "RTSThreshold: ", 14 ) ) {
4942 int v, i = 0;
4943
4944 line += 14;
4945 v = get_dec_u16(line, &i, 4);
4946 v = (v<0) ? 0 : ((v>AIRO_DEF_MTU) ? AIRO_DEF_MTU : v);
4947 ai->config.rtsThres = cpu_to_le16(v);
4948 set_bit (FLAG_COMMIT, &ai->flags);
4949 } else if ( !strncmp( line, "TXMSDULifetime: ", 16 ) ) {
4950 int v, i = 0;
4951
4952 line += 16;
4953 v = get_dec_u16(line, &i, 5);
4954 v = (v<0) ? 0 : v;
4955 ai->config.txLifetime = cpu_to_le16(v);
4956 set_bit (FLAG_COMMIT, &ai->flags);
4957 } else if ( !strncmp( line, "RXMSDULifetime: ", 16 ) ) {
4958 int v, i = 0;
4959
4960 line += 16;
4961 v = get_dec_u16(line, &i, 5);
4962 v = (v<0) ? 0 : v;
4963 ai->config.rxLifetime = cpu_to_le16(v);
4964 set_bit (FLAG_COMMIT, &ai->flags);
4965 } else if ( !strncmp( line, "TXDiversity: ", 13 ) ) {
4966 ai->config.txDiversity =
4967 (line[13]=='l') ? 1 :
4968 ((line[13]=='r')? 2: 3);
4969 set_bit (FLAG_COMMIT, &ai->flags);
4970 } else if ( !strncmp( line, "RXDiversity: ", 13 ) ) {
4971 ai->config.rxDiversity =
4972 (line[13]=='l') ? 1 :
4973 ((line[13]=='r')? 2: 3);
4974 set_bit (FLAG_COMMIT, &ai->flags);
4975 } else if ( !strncmp( line, "FragThreshold: ", 15 ) ) {
4976 int v, i = 0;
4977
4978 line += 15;
4979 v = get_dec_u16(line, &i, 4);
4980 v = (v<256) ? 256 : ((v>AIRO_DEF_MTU) ? AIRO_DEF_MTU : v);
4981 v = v & 0xfffe; /* Make sure its even */
4982 ai->config.fragThresh = cpu_to_le16(v);
4983 set_bit (FLAG_COMMIT, &ai->flags);
4984 } else if (!strncmp(line, "Modulation: ", 12)) {
4985 line += 12;
4986 switch(*line) {
4987 case 'd': ai->config.modulation=MOD_DEFAULT; set_bit(FLAG_COMMIT, &ai->flags); break;
4988 case 'c': ai->config.modulation=MOD_CCK; set_bit(FLAG_COMMIT, &ai->flags); break;
4989 case 'm': ai->config.modulation=MOD_MOK; set_bit(FLAG_COMMIT, &ai->flags); break;
4990 default: airo_print_warn(ai->dev->name, "Unknown modulation");
4991 }
4992 } else if (!strncmp(line, "Preamble: ", 10)) {
4993 line += 10;
4994 switch(*line) {
4995 case 'a': ai->config.preamble=PREAMBLE_AUTO; set_bit(FLAG_COMMIT, &ai->flags); break;
4996 case 'l': ai->config.preamble=PREAMBLE_LONG; set_bit(FLAG_COMMIT, &ai->flags); break;
4997 case 's': ai->config.preamble=PREAMBLE_SHORT; set_bit(FLAG_COMMIT, &ai->flags); break;
4998 default: airo_print_warn(ai->dev->name, "Unknown preamble");
4999 }
5000 } else {
5001 airo_print_warn(ai->dev->name, "Couldn't figure out %s", line);
5002 }
5003 while( line[0] && line[0] != '\n' ) line++;
5004 if ( line[0] ) line++;
5005 }
5006 airo_config_commit(dev, NULL, NULL, NULL);
5007 }
5008
get_rmode(__le16 mode)5009 static const char *get_rmode(__le16 mode)
5010 {
5011 switch(mode & RXMODE_MASK) {
5012 case RXMODE_RFMON: return "rfmon";
5013 case RXMODE_RFMON_ANYBSS: return "yna (any) bss rfmon";
5014 case RXMODE_LANMON: return "lanmon";
5015 }
5016 return "ESS";
5017 }
5018
proc_config_open(struct inode * inode,struct file * file)5019 static int proc_config_open(struct inode *inode, struct file *file)
5020 {
5021 struct proc_data *data;
5022 struct proc_dir_entry *dp = PDE(inode);
5023 struct net_device *dev = dp->data;
5024 struct airo_info *ai = dev->ml_priv;
5025 int i;
5026 __le16 mode;
5027
5028 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5029 return -ENOMEM;
5030 data = file->private_data;
5031 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
5032 kfree (file->private_data);
5033 return -ENOMEM;
5034 }
5035 if ((data->wbuffer = kzalloc( 2048, GFP_KERNEL )) == NULL) {
5036 kfree (data->rbuffer);
5037 kfree (file->private_data);
5038 return -ENOMEM;
5039 }
5040 data->maxwritelen = 2048;
5041 data->on_close = proc_config_on_close;
5042
5043 readConfigRid(ai, 1);
5044
5045 mode = ai->config.opmode & MODE_CFG_MASK;
5046 i = sprintf( data->rbuffer,
5047 "Mode: %s\n"
5048 "Radio: %s\n"
5049 "NodeName: %-16s\n"
5050 "PowerMode: %s\n"
5051 "DataRates: %d %d %d %d %d %d %d %d\n"
5052 "Channel: %d\n"
5053 "XmitPower: %d\n",
5054 mode == MODE_STA_IBSS ? "adhoc" :
5055 mode == MODE_STA_ESS ? get_rmode(ai->config.rmode):
5056 mode == MODE_AP ? "AP" :
5057 mode == MODE_AP_RPTR ? "AP RPTR" : "Error",
5058 test_bit(FLAG_RADIO_OFF, &ai->flags) ? "off" : "on",
5059 ai->config.nodeName,
5060 ai->config.powerSaveMode == POWERSAVE_CAM ? "CAM" :
5061 ai->config.powerSaveMode == POWERSAVE_PSP ? "PSP" :
5062 ai->config.powerSaveMode == POWERSAVE_PSPCAM ? "PSPCAM" :
5063 "Error",
5064 (int)ai->config.rates[0],
5065 (int)ai->config.rates[1],
5066 (int)ai->config.rates[2],
5067 (int)ai->config.rates[3],
5068 (int)ai->config.rates[4],
5069 (int)ai->config.rates[5],
5070 (int)ai->config.rates[6],
5071 (int)ai->config.rates[7],
5072 le16_to_cpu(ai->config.channelSet),
5073 le16_to_cpu(ai->config.txPower)
5074 );
5075 sprintf( data->rbuffer + i,
5076 "LongRetryLimit: %d\n"
5077 "ShortRetryLimit: %d\n"
5078 "RTSThreshold: %d\n"
5079 "TXMSDULifetime: %d\n"
5080 "RXMSDULifetime: %d\n"
5081 "TXDiversity: %s\n"
5082 "RXDiversity: %s\n"
5083 "FragThreshold: %d\n"
5084 "WEP: %s\n"
5085 "Modulation: %s\n"
5086 "Preamble: %s\n",
5087 le16_to_cpu(ai->config.longRetryLimit),
5088 le16_to_cpu(ai->config.shortRetryLimit),
5089 le16_to_cpu(ai->config.rtsThres),
5090 le16_to_cpu(ai->config.txLifetime),
5091 le16_to_cpu(ai->config.rxLifetime),
5092 ai->config.txDiversity == 1 ? "left" :
5093 ai->config.txDiversity == 2 ? "right" : "both",
5094 ai->config.rxDiversity == 1 ? "left" :
5095 ai->config.rxDiversity == 2 ? "right" : "both",
5096 le16_to_cpu(ai->config.fragThresh),
5097 ai->config.authType == AUTH_ENCRYPT ? "encrypt" :
5098 ai->config.authType == AUTH_SHAREDKEY ? "shared" : "open",
5099 ai->config.modulation == MOD_DEFAULT ? "default" :
5100 ai->config.modulation == MOD_CCK ? "cck" :
5101 ai->config.modulation == MOD_MOK ? "mok" : "error",
5102 ai->config.preamble == PREAMBLE_AUTO ? "auto" :
5103 ai->config.preamble == PREAMBLE_LONG ? "long" :
5104 ai->config.preamble == PREAMBLE_SHORT ? "short" : "error"
5105 );
5106 data->readlen = strlen( data->rbuffer );
5107 return 0;
5108 }
5109
proc_SSID_on_close(struct inode * inode,struct file * file)5110 static void proc_SSID_on_close(struct inode *inode, struct file *file)
5111 {
5112 struct proc_data *data = file->private_data;
5113 struct proc_dir_entry *dp = PDE(inode);
5114 struct net_device *dev = dp->data;
5115 struct airo_info *ai = dev->ml_priv;
5116 SsidRid SSID_rid;
5117 int i;
5118 char *p = data->wbuffer;
5119 char *end = p + data->writelen;
5120
5121 if (!data->writelen)
5122 return;
5123
5124 *end = '\n'; /* sentinel; we have space for it */
5125
5126 memset(&SSID_rid, 0, sizeof(SSID_rid));
5127
5128 for (i = 0; i < 3 && p < end; i++) {
5129 int j = 0;
5130 /* copy up to 32 characters from this line */
5131 while (*p != '\n' && j < 32)
5132 SSID_rid.ssids[i].ssid[j++] = *p++;
5133 if (j == 0)
5134 break;
5135 SSID_rid.ssids[i].len = cpu_to_le16(j);
5136 /* skip to the beginning of the next line */
5137 while (*p++ != '\n')
5138 ;
5139 }
5140 if (i)
5141 SSID_rid.len = cpu_to_le16(sizeof(SSID_rid));
5142 disable_MAC(ai, 1);
5143 writeSsidRid(ai, &SSID_rid, 1);
5144 enable_MAC(ai, 1);
5145 }
5146
proc_APList_on_close(struct inode * inode,struct file * file)5147 static void proc_APList_on_close( struct inode *inode, struct file *file ) {
5148 struct proc_data *data = file->private_data;
5149 struct proc_dir_entry *dp = PDE(inode);
5150 struct net_device *dev = dp->data;
5151 struct airo_info *ai = dev->ml_priv;
5152 APListRid APList_rid;
5153 int i;
5154
5155 if ( !data->writelen ) return;
5156
5157 memset( &APList_rid, 0, sizeof(APList_rid) );
5158 APList_rid.len = cpu_to_le16(sizeof(APList_rid));
5159
5160 for( i = 0; i < 4 && data->writelen >= (i+1)*6*3; i++ ) {
5161 int j;
5162 for( j = 0; j < 6*3 && data->wbuffer[j+i*6*3]; j++ ) {
5163 switch(j%3) {
5164 case 0:
5165 APList_rid.ap[i][j/3]=
5166 hex_to_bin(data->wbuffer[j+i*6*3])<<4;
5167 break;
5168 case 1:
5169 APList_rid.ap[i][j/3]|=
5170 hex_to_bin(data->wbuffer[j+i*6*3]);
5171 break;
5172 }
5173 }
5174 }
5175 disable_MAC(ai, 1);
5176 writeAPListRid(ai, &APList_rid, 1);
5177 enable_MAC(ai, 1);
5178 }
5179
5180 /* This function wraps PC4500_writerid with a MAC disable */
do_writerid(struct airo_info * ai,u16 rid,const void * rid_data,int len,int dummy)5181 static int do_writerid( struct airo_info *ai, u16 rid, const void *rid_data,
5182 int len, int dummy ) {
5183 int rc;
5184
5185 disable_MAC(ai, 1);
5186 rc = PC4500_writerid(ai, rid, rid_data, len, 1);
5187 enable_MAC(ai, 1);
5188 return rc;
5189 }
5190
5191 /* Returns the WEP key at the specified index, or -1 if that key does
5192 * not exist. The buffer is assumed to be at least 16 bytes in length.
5193 */
get_wep_key(struct airo_info * ai,u16 index,char * buf,u16 buflen)5194 static int get_wep_key(struct airo_info *ai, u16 index, char *buf, u16 buflen)
5195 {
5196 WepKeyRid wkr;
5197 int rc;
5198 __le16 lastindex;
5199
5200 rc = readWepKeyRid(ai, &wkr, 1, 1);
5201 if (rc != SUCCESS)
5202 return -1;
5203 do {
5204 lastindex = wkr.kindex;
5205 if (le16_to_cpu(wkr.kindex) == index) {
5206 int klen = min_t(int, buflen, le16_to_cpu(wkr.klen));
5207 memcpy(buf, wkr.key, klen);
5208 return klen;
5209 }
5210 rc = readWepKeyRid(ai, &wkr, 0, 1);
5211 if (rc != SUCCESS)
5212 return -1;
5213 } while (lastindex != wkr.kindex);
5214 return -1;
5215 }
5216
get_wep_tx_idx(struct airo_info * ai)5217 static int get_wep_tx_idx(struct airo_info *ai)
5218 {
5219 WepKeyRid wkr;
5220 int rc;
5221 __le16 lastindex;
5222
5223 rc = readWepKeyRid(ai, &wkr, 1, 1);
5224 if (rc != SUCCESS)
5225 return -1;
5226 do {
5227 lastindex = wkr.kindex;
5228 if (wkr.kindex == cpu_to_le16(0xffff))
5229 return wkr.mac[0];
5230 rc = readWepKeyRid(ai, &wkr, 0, 1);
5231 if (rc != SUCCESS)
5232 return -1;
5233 } while (lastindex != wkr.kindex);
5234 return -1;
5235 }
5236
set_wep_key(struct airo_info * ai,u16 index,const char * key,u16 keylen,int perm,int lock)5237 static int set_wep_key(struct airo_info *ai, u16 index, const char *key,
5238 u16 keylen, int perm, int lock)
5239 {
5240 static const unsigned char macaddr[ETH_ALEN] = { 0x01, 0, 0, 0, 0, 0 };
5241 WepKeyRid wkr;
5242 int rc;
5243
5244 if (WARN_ON(keylen == 0))
5245 return -1;
5246
5247 memset(&wkr, 0, sizeof(wkr));
5248 wkr.len = cpu_to_le16(sizeof(wkr));
5249 wkr.kindex = cpu_to_le16(index);
5250 wkr.klen = cpu_to_le16(keylen);
5251 memcpy(wkr.key, key, keylen);
5252 memcpy(wkr.mac, macaddr, ETH_ALEN);
5253
5254 if (perm) disable_MAC(ai, lock);
5255 rc = writeWepKeyRid(ai, &wkr, perm, lock);
5256 if (perm) enable_MAC(ai, lock);
5257 return rc;
5258 }
5259
set_wep_tx_idx(struct airo_info * ai,u16 index,int perm,int lock)5260 static int set_wep_tx_idx(struct airo_info *ai, u16 index, int perm, int lock)
5261 {
5262 WepKeyRid wkr;
5263 int rc;
5264
5265 memset(&wkr, 0, sizeof(wkr));
5266 wkr.len = cpu_to_le16(sizeof(wkr));
5267 wkr.kindex = cpu_to_le16(0xffff);
5268 wkr.mac[0] = (char)index;
5269
5270 if (perm) {
5271 ai->defindex = (char)index;
5272 disable_MAC(ai, lock);
5273 }
5274
5275 rc = writeWepKeyRid(ai, &wkr, perm, lock);
5276
5277 if (perm)
5278 enable_MAC(ai, lock);
5279 return rc;
5280 }
5281
proc_wepkey_on_close(struct inode * inode,struct file * file)5282 static void proc_wepkey_on_close( struct inode *inode, struct file *file ) {
5283 struct proc_data *data;
5284 struct proc_dir_entry *dp = PDE(inode);
5285 struct net_device *dev = dp->data;
5286 struct airo_info *ai = dev->ml_priv;
5287 int i, rc;
5288 char key[16];
5289 u16 index = 0;
5290 int j = 0;
5291
5292 memset(key, 0, sizeof(key));
5293
5294 data = file->private_data;
5295 if ( !data->writelen ) return;
5296
5297 if (data->wbuffer[0] >= '0' && data->wbuffer[0] <= '3' &&
5298 (data->wbuffer[1] == ' ' || data->wbuffer[1] == '\n')) {
5299 index = data->wbuffer[0] - '0';
5300 if (data->wbuffer[1] == '\n') {
5301 rc = set_wep_tx_idx(ai, index, 1, 1);
5302 if (rc < 0) {
5303 airo_print_err(ai->dev->name, "failed to set "
5304 "WEP transmit index to %d: %d.",
5305 index, rc);
5306 }
5307 return;
5308 }
5309 j = 2;
5310 } else {
5311 airo_print_err(ai->dev->name, "WepKey passed invalid key index");
5312 return;
5313 }
5314
5315 for( i = 0; i < 16*3 && data->wbuffer[i+j]; i++ ) {
5316 switch(i%3) {
5317 case 0:
5318 key[i/3] = hex_to_bin(data->wbuffer[i+j])<<4;
5319 break;
5320 case 1:
5321 key[i/3] |= hex_to_bin(data->wbuffer[i+j]);
5322 break;
5323 }
5324 }
5325
5326 rc = set_wep_key(ai, index, key, i/3, 1, 1);
5327 if (rc < 0) {
5328 airo_print_err(ai->dev->name, "failed to set WEP key at index "
5329 "%d: %d.", index, rc);
5330 }
5331 }
5332
proc_wepkey_open(struct inode * inode,struct file * file)5333 static int proc_wepkey_open( struct inode *inode, struct file *file )
5334 {
5335 struct proc_data *data;
5336 struct proc_dir_entry *dp = PDE(inode);
5337 struct net_device *dev = dp->data;
5338 struct airo_info *ai = dev->ml_priv;
5339 char *ptr;
5340 WepKeyRid wkr;
5341 __le16 lastindex;
5342 int j=0;
5343 int rc;
5344
5345 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5346 return -ENOMEM;
5347 memset(&wkr, 0, sizeof(wkr));
5348 data = file->private_data;
5349 if ((data->rbuffer = kzalloc( 180, GFP_KERNEL )) == NULL) {
5350 kfree (file->private_data);
5351 return -ENOMEM;
5352 }
5353 data->writelen = 0;
5354 data->maxwritelen = 80;
5355 if ((data->wbuffer = kzalloc( 80, GFP_KERNEL )) == NULL) {
5356 kfree (data->rbuffer);
5357 kfree (file->private_data);
5358 return -ENOMEM;
5359 }
5360 data->on_close = proc_wepkey_on_close;
5361
5362 ptr = data->rbuffer;
5363 strcpy(ptr, "No wep keys\n");
5364 rc = readWepKeyRid(ai, &wkr, 1, 1);
5365 if (rc == SUCCESS) do {
5366 lastindex = wkr.kindex;
5367 if (wkr.kindex == cpu_to_le16(0xffff)) {
5368 j += sprintf(ptr+j, "Tx key = %d\n",
5369 (int)wkr.mac[0]);
5370 } else {
5371 j += sprintf(ptr+j, "Key %d set with length = %d\n",
5372 le16_to_cpu(wkr.kindex),
5373 le16_to_cpu(wkr.klen));
5374 }
5375 readWepKeyRid(ai, &wkr, 0, 1);
5376 } while((lastindex != wkr.kindex) && (j < 180-30));
5377
5378 data->readlen = strlen( data->rbuffer );
5379 return 0;
5380 }
5381
proc_SSID_open(struct inode * inode,struct file * file)5382 static int proc_SSID_open(struct inode *inode, struct file *file)
5383 {
5384 struct proc_data *data;
5385 struct proc_dir_entry *dp = PDE(inode);
5386 struct net_device *dev = dp->data;
5387 struct airo_info *ai = dev->ml_priv;
5388 int i;
5389 char *ptr;
5390 SsidRid SSID_rid;
5391
5392 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5393 return -ENOMEM;
5394 data = file->private_data;
5395 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5396 kfree (file->private_data);
5397 return -ENOMEM;
5398 }
5399 data->writelen = 0;
5400 data->maxwritelen = 33*3;
5401 /* allocate maxwritelen + 1; we'll want a sentinel */
5402 if ((data->wbuffer = kzalloc(33*3 + 1, GFP_KERNEL)) == NULL) {
5403 kfree (data->rbuffer);
5404 kfree (file->private_data);
5405 return -ENOMEM;
5406 }
5407 data->on_close = proc_SSID_on_close;
5408
5409 readSsidRid(ai, &SSID_rid);
5410 ptr = data->rbuffer;
5411 for (i = 0; i < 3; i++) {
5412 int j;
5413 size_t len = le16_to_cpu(SSID_rid.ssids[i].len);
5414 if (!len)
5415 break;
5416 if (len > 32)
5417 len = 32;
5418 for (j = 0; j < len && SSID_rid.ssids[i].ssid[j]; j++)
5419 *ptr++ = SSID_rid.ssids[i].ssid[j];
5420 *ptr++ = '\n';
5421 }
5422 *ptr = '\0';
5423 data->readlen = strlen( data->rbuffer );
5424 return 0;
5425 }
5426
proc_APList_open(struct inode * inode,struct file * file)5427 static int proc_APList_open( struct inode *inode, struct file *file ) {
5428 struct proc_data *data;
5429 struct proc_dir_entry *dp = PDE(inode);
5430 struct net_device *dev = dp->data;
5431 struct airo_info *ai = dev->ml_priv;
5432 int i;
5433 char *ptr;
5434 APListRid APList_rid;
5435
5436 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5437 return -ENOMEM;
5438 data = file->private_data;
5439 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5440 kfree (file->private_data);
5441 return -ENOMEM;
5442 }
5443 data->writelen = 0;
5444 data->maxwritelen = 4*6*3;
5445 if ((data->wbuffer = kzalloc( data->maxwritelen, GFP_KERNEL )) == NULL) {
5446 kfree (data->rbuffer);
5447 kfree (file->private_data);
5448 return -ENOMEM;
5449 }
5450 data->on_close = proc_APList_on_close;
5451
5452 readAPListRid(ai, &APList_rid);
5453 ptr = data->rbuffer;
5454 for( i = 0; i < 4; i++ ) {
5455 // We end when we find a zero MAC
5456 if ( !*(int*)APList_rid.ap[i] &&
5457 !*(int*)&APList_rid.ap[i][2]) break;
5458 ptr += sprintf(ptr, "%pM\n", APList_rid.ap[i]);
5459 }
5460 if (i==0) ptr += sprintf(ptr, "Not using specific APs\n");
5461
5462 *ptr = '\0';
5463 data->readlen = strlen( data->rbuffer );
5464 return 0;
5465 }
5466
proc_BSSList_open(struct inode * inode,struct file * file)5467 static int proc_BSSList_open( struct inode *inode, struct file *file ) {
5468 struct proc_data *data;
5469 struct proc_dir_entry *dp = PDE(inode);
5470 struct net_device *dev = dp->data;
5471 struct airo_info *ai = dev->ml_priv;
5472 char *ptr;
5473 BSSListRid BSSList_rid;
5474 int rc;
5475 /* If doLoseSync is not 1, we won't do a Lose Sync */
5476 int doLoseSync = -1;
5477
5478 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5479 return -ENOMEM;
5480 data = file->private_data;
5481 if ((data->rbuffer = kmalloc( 1024, GFP_KERNEL )) == NULL) {
5482 kfree (file->private_data);
5483 return -ENOMEM;
5484 }
5485 data->writelen = 0;
5486 data->maxwritelen = 0;
5487 data->wbuffer = NULL;
5488 data->on_close = NULL;
5489
5490 if (file->f_mode & FMODE_WRITE) {
5491 if (!(file->f_mode & FMODE_READ)) {
5492 Cmd cmd;
5493 Resp rsp;
5494
5495 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
5496 memset(&cmd, 0, sizeof(cmd));
5497 cmd.cmd=CMD_LISTBSS;
5498 if (down_interruptible(&ai->sem))
5499 return -ERESTARTSYS;
5500 issuecommand(ai, &cmd, &rsp);
5501 up(&ai->sem);
5502 data->readlen = 0;
5503 return 0;
5504 }
5505 doLoseSync = 1;
5506 }
5507 ptr = data->rbuffer;
5508 /* There is a race condition here if there are concurrent opens.
5509 Since it is a rare condition, we'll just live with it, otherwise
5510 we have to add a spin lock... */
5511 rc = readBSSListRid(ai, doLoseSync, &BSSList_rid);
5512 while(rc == 0 && BSSList_rid.index != cpu_to_le16(0xffff)) {
5513 ptr += sprintf(ptr, "%pM %*s rssi = %d",
5514 BSSList_rid.bssid,
5515 (int)BSSList_rid.ssidLen,
5516 BSSList_rid.ssid,
5517 le16_to_cpu(BSSList_rid.dBm));
5518 ptr += sprintf(ptr, " channel = %d %s %s %s %s\n",
5519 le16_to_cpu(BSSList_rid.dsChannel),
5520 BSSList_rid.cap & CAP_ESS ? "ESS" : "",
5521 BSSList_rid.cap & CAP_IBSS ? "adhoc" : "",
5522 BSSList_rid.cap & CAP_PRIVACY ? "wep" : "",
5523 BSSList_rid.cap & CAP_SHORTHDR ? "shorthdr" : "");
5524 rc = readBSSListRid(ai, 0, &BSSList_rid);
5525 }
5526 *ptr = '\0';
5527 data->readlen = strlen( data->rbuffer );
5528 return 0;
5529 }
5530
proc_close(struct inode * inode,struct file * file)5531 static int proc_close( struct inode *inode, struct file *file )
5532 {
5533 struct proc_data *data = file->private_data;
5534
5535 if (data->on_close != NULL)
5536 data->on_close(inode, file);
5537 kfree(data->rbuffer);
5538 kfree(data->wbuffer);
5539 kfree(data);
5540 return 0;
5541 }
5542
5543 /* Since the card doesn't automatically switch to the right WEP mode,
5544 we will make it do it. If the card isn't associated, every secs we
5545 will switch WEP modes to see if that will help. If the card is
5546 associated we will check every minute to see if anything has
5547 changed. */
timer_func(struct net_device * dev)5548 static void timer_func( struct net_device *dev ) {
5549 struct airo_info *apriv = dev->ml_priv;
5550
5551 /* We don't have a link so try changing the authtype */
5552 readConfigRid(apriv, 0);
5553 disable_MAC(apriv, 0);
5554 switch(apriv->config.authType) {
5555 case AUTH_ENCRYPT:
5556 /* So drop to OPEN */
5557 apriv->config.authType = AUTH_OPEN;
5558 break;
5559 case AUTH_SHAREDKEY:
5560 if (apriv->keyindex < auto_wep) {
5561 set_wep_tx_idx(apriv, apriv->keyindex, 0, 0);
5562 apriv->config.authType = AUTH_SHAREDKEY;
5563 apriv->keyindex++;
5564 } else {
5565 /* Drop to ENCRYPT */
5566 apriv->keyindex = 0;
5567 set_wep_tx_idx(apriv, apriv->defindex, 0, 0);
5568 apriv->config.authType = AUTH_ENCRYPT;
5569 }
5570 break;
5571 default: /* We'll escalate to SHAREDKEY */
5572 apriv->config.authType = AUTH_SHAREDKEY;
5573 }
5574 set_bit (FLAG_COMMIT, &apriv->flags);
5575 writeConfigRid(apriv, 0);
5576 enable_MAC(apriv, 0);
5577 up(&apriv->sem);
5578
5579 /* Schedule check to see if the change worked */
5580 clear_bit(JOB_AUTOWEP, &apriv->jobs);
5581 apriv->expires = RUN_AT(HZ*3);
5582 }
5583
5584 #ifdef CONFIG_PCI
airo_pci_probe(struct pci_dev * pdev,const struct pci_device_id * pent)5585 static int __devinit airo_pci_probe(struct pci_dev *pdev,
5586 const struct pci_device_id *pent)
5587 {
5588 struct net_device *dev;
5589
5590 if (pci_enable_device(pdev))
5591 return -ENODEV;
5592 pci_set_master(pdev);
5593
5594 if (pdev->device == 0x5000 || pdev->device == 0xa504)
5595 dev = _init_airo_card(pdev->irq, pdev->resource[0].start, 0, pdev, &pdev->dev);
5596 else
5597 dev = _init_airo_card(pdev->irq, pdev->resource[2].start, 0, pdev, &pdev->dev);
5598 if (!dev) {
5599 pci_disable_device(pdev);
5600 return -ENODEV;
5601 }
5602
5603 pci_set_drvdata(pdev, dev);
5604 return 0;
5605 }
5606
airo_pci_remove(struct pci_dev * pdev)5607 static void __devexit airo_pci_remove(struct pci_dev *pdev)
5608 {
5609 struct net_device *dev = pci_get_drvdata(pdev);
5610
5611 airo_print_info(dev->name, "Unregistering...");
5612 stop_airo_card(dev, 1);
5613 pci_disable_device(pdev);
5614 pci_set_drvdata(pdev, NULL);
5615 }
5616
airo_pci_suspend(struct pci_dev * pdev,pm_message_t state)5617 static int airo_pci_suspend(struct pci_dev *pdev, pm_message_t state)
5618 {
5619 struct net_device *dev = pci_get_drvdata(pdev);
5620 struct airo_info *ai = dev->ml_priv;
5621 Cmd cmd;
5622 Resp rsp;
5623
5624 if (!ai->APList)
5625 ai->APList = kmalloc(sizeof(APListRid), GFP_KERNEL);
5626 if (!ai->APList)
5627 return -ENOMEM;
5628 if (!ai->SSID)
5629 ai->SSID = kmalloc(sizeof(SsidRid), GFP_KERNEL);
5630 if (!ai->SSID)
5631 return -ENOMEM;
5632 readAPListRid(ai, ai->APList);
5633 readSsidRid(ai, ai->SSID);
5634 memset(&cmd, 0, sizeof(cmd));
5635 /* the lock will be released at the end of the resume callback */
5636 if (down_interruptible(&ai->sem))
5637 return -EAGAIN;
5638 disable_MAC(ai, 0);
5639 netif_device_detach(dev);
5640 ai->power = state;
5641 cmd.cmd = HOSTSLEEP;
5642 issuecommand(ai, &cmd, &rsp);
5643
5644 pci_enable_wake(pdev, pci_choose_state(pdev, state), 1);
5645 pci_save_state(pdev);
5646 pci_set_power_state(pdev, pci_choose_state(pdev, state));
5647 return 0;
5648 }
5649
airo_pci_resume(struct pci_dev * pdev)5650 static int airo_pci_resume(struct pci_dev *pdev)
5651 {
5652 struct net_device *dev = pci_get_drvdata(pdev);
5653 struct airo_info *ai = dev->ml_priv;
5654 pci_power_t prev_state = pdev->current_state;
5655
5656 pci_set_power_state(pdev, PCI_D0);
5657 pci_restore_state(pdev);
5658 pci_enable_wake(pdev, PCI_D0, 0);
5659
5660 if (prev_state != PCI_D1) {
5661 reset_card(dev, 0);
5662 mpi_init_descriptors(ai);
5663 setup_card(ai, dev->dev_addr, 0);
5664 clear_bit(FLAG_RADIO_OFF, &ai->flags);
5665 clear_bit(FLAG_PENDING_XMIT, &ai->flags);
5666 } else {
5667 OUT4500(ai, EVACK, EV_AWAKEN);
5668 OUT4500(ai, EVACK, EV_AWAKEN);
5669 msleep(100);
5670 }
5671
5672 set_bit(FLAG_COMMIT, &ai->flags);
5673 disable_MAC(ai, 0);
5674 msleep(200);
5675 if (ai->SSID) {
5676 writeSsidRid(ai, ai->SSID, 0);
5677 kfree(ai->SSID);
5678 ai->SSID = NULL;
5679 }
5680 if (ai->APList) {
5681 writeAPListRid(ai, ai->APList, 0);
5682 kfree(ai->APList);
5683 ai->APList = NULL;
5684 }
5685 writeConfigRid(ai, 0);
5686 enable_MAC(ai, 0);
5687 ai->power = PMSG_ON;
5688 netif_device_attach(dev);
5689 netif_wake_queue(dev);
5690 enable_interrupts(ai);
5691 up(&ai->sem);
5692 return 0;
5693 }
5694 #endif
5695
airo_init_module(void)5696 static int __init airo_init_module( void )
5697 {
5698 int i;
5699
5700 airo_entry = proc_mkdir_mode("driver/aironet", airo_perm, NULL);
5701
5702 if (airo_entry) {
5703 airo_entry->uid = proc_uid;
5704 airo_entry->gid = proc_gid;
5705 }
5706
5707 for (i = 0; i < 4 && io[i] && irq[i]; i++) {
5708 airo_print_info("", "Trying to configure ISA adapter at irq=%d "
5709 "io=0x%x", irq[i], io[i] );
5710 if (init_airo_card( irq[i], io[i], 0, NULL ))
5711 /* do nothing */ ;
5712 }
5713
5714 #ifdef CONFIG_PCI
5715 airo_print_info("", "Probing for PCI adapters");
5716 i = pci_register_driver(&airo_driver);
5717 airo_print_info("", "Finished probing for PCI adapters");
5718
5719 if (i) {
5720 remove_proc_entry("driver/aironet", NULL);
5721 return i;
5722 }
5723 #endif
5724
5725 /* Always exit with success, as we are a library module
5726 * as well as a driver module
5727 */
5728 return 0;
5729 }
5730
airo_cleanup_module(void)5731 static void __exit airo_cleanup_module( void )
5732 {
5733 struct airo_info *ai;
5734 while(!list_empty(&airo_devices)) {
5735 ai = list_entry(airo_devices.next, struct airo_info, dev_list);
5736 airo_print_info(ai->dev->name, "Unregistering...");
5737 stop_airo_card(ai->dev, 1);
5738 }
5739 #ifdef CONFIG_PCI
5740 pci_unregister_driver(&airo_driver);
5741 #endif
5742 remove_proc_entry("driver/aironet", NULL);
5743 }
5744
5745 /*
5746 * Initial Wireless Extension code for Aironet driver by :
5747 * Jean Tourrilhes <jt@hpl.hp.com> - HPL - 17 November 00
5748 * Conversion to new driver API by :
5749 * Jean Tourrilhes <jt@hpl.hp.com> - HPL - 26 March 02
5750 * Javier also did a good amount of work here, adding some new extensions
5751 * and fixing my code. Let's just say that without him this code just
5752 * would not work at all... - Jean II
5753 */
5754
airo_rssi_to_dbm(tdsRssiEntry * rssi_rid,u8 rssi)5755 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi)
5756 {
5757 if (!rssi_rid)
5758 return 0;
5759
5760 return (0x100 - rssi_rid[rssi].rssidBm);
5761 }
5762
airo_dbm_to_pct(tdsRssiEntry * rssi_rid,u8 dbm)5763 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm)
5764 {
5765 int i;
5766
5767 if (!rssi_rid)
5768 return 0;
5769
5770 for (i = 0; i < 256; i++)
5771 if (rssi_rid[i].rssidBm == dbm)
5772 return rssi_rid[i].rssipct;
5773
5774 return 0;
5775 }
5776
5777
airo_get_quality(StatusRid * status_rid,CapabilityRid * cap_rid)5778 static int airo_get_quality (StatusRid *status_rid, CapabilityRid *cap_rid)
5779 {
5780 int quality = 0;
5781 u16 sq;
5782
5783 if ((status_rid->mode & cpu_to_le16(0x3f)) != cpu_to_le16(0x3f))
5784 return 0;
5785
5786 if (!(cap_rid->hardCap & cpu_to_le16(8)))
5787 return 0;
5788
5789 sq = le16_to_cpu(status_rid->signalQuality);
5790 if (memcmp(cap_rid->prodName, "350", 3))
5791 if (sq > 0x20)
5792 quality = 0;
5793 else
5794 quality = 0x20 - sq;
5795 else
5796 if (sq > 0xb0)
5797 quality = 0;
5798 else if (sq < 0x10)
5799 quality = 0xa0;
5800 else
5801 quality = 0xb0 - sq;
5802 return quality;
5803 }
5804
5805 #define airo_get_max_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x20 : 0xa0)
5806 #define airo_get_avg_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x10 : 0x50);
5807
5808 /*------------------------------------------------------------------*/
5809 /*
5810 * Wireless Handler : get protocol name
5811 */
airo_get_name(struct net_device * dev,struct iw_request_info * info,char * cwrq,char * extra)5812 static int airo_get_name(struct net_device *dev,
5813 struct iw_request_info *info,
5814 char *cwrq,
5815 char *extra)
5816 {
5817 strcpy(cwrq, "IEEE 802.11-DS");
5818 return 0;
5819 }
5820
5821 /*------------------------------------------------------------------*/
5822 /*
5823 * Wireless Handler : set frequency
5824 */
airo_set_freq(struct net_device * dev,struct iw_request_info * info,struct iw_freq * fwrq,char * extra)5825 static int airo_set_freq(struct net_device *dev,
5826 struct iw_request_info *info,
5827 struct iw_freq *fwrq,
5828 char *extra)
5829 {
5830 struct airo_info *local = dev->ml_priv;
5831 int rc = -EINPROGRESS; /* Call commit handler */
5832
5833 /* If setting by frequency, convert to a channel */
5834 if(fwrq->e == 1) {
5835 int f = fwrq->m / 100000;
5836
5837 /* Hack to fall through... */
5838 fwrq->e = 0;
5839 fwrq->m = ieee80211_freq_to_dsss_chan(f);
5840 }
5841 /* Setting by channel number */
5842 if((fwrq->m > 1000) || (fwrq->e > 0))
5843 rc = -EOPNOTSUPP;
5844 else {
5845 int channel = fwrq->m;
5846 /* We should do a better check than that,
5847 * based on the card capability !!! */
5848 if((channel < 1) || (channel > 14)) {
5849 airo_print_dbg(dev->name, "New channel value of %d is invalid!",
5850 fwrq->m);
5851 rc = -EINVAL;
5852 } else {
5853 readConfigRid(local, 1);
5854 /* Yes ! We can set it !!! */
5855 local->config.channelSet = cpu_to_le16(channel);
5856 set_bit (FLAG_COMMIT, &local->flags);
5857 }
5858 }
5859 return rc;
5860 }
5861
5862 /*------------------------------------------------------------------*/
5863 /*
5864 * Wireless Handler : get frequency
5865 */
airo_get_freq(struct net_device * dev,struct iw_request_info * info,struct iw_freq * fwrq,char * extra)5866 static int airo_get_freq(struct net_device *dev,
5867 struct iw_request_info *info,
5868 struct iw_freq *fwrq,
5869 char *extra)
5870 {
5871 struct airo_info *local = dev->ml_priv;
5872 StatusRid status_rid; /* Card status info */
5873 int ch;
5874
5875 readConfigRid(local, 1);
5876 if ((local->config.opmode & MODE_CFG_MASK) == MODE_STA_ESS)
5877 status_rid.channel = local->config.channelSet;
5878 else
5879 readStatusRid(local, &status_rid, 1);
5880
5881 ch = le16_to_cpu(status_rid.channel);
5882 if((ch > 0) && (ch < 15)) {
5883 fwrq->m = ieee80211_dsss_chan_to_freq(ch) * 100000;
5884 fwrq->e = 1;
5885 } else {
5886 fwrq->m = ch;
5887 fwrq->e = 0;
5888 }
5889
5890 return 0;
5891 }
5892
5893 /*------------------------------------------------------------------*/
5894 /*
5895 * Wireless Handler : set ESSID
5896 */
airo_set_essid(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)5897 static int airo_set_essid(struct net_device *dev,
5898 struct iw_request_info *info,
5899 struct iw_point *dwrq,
5900 char *extra)
5901 {
5902 struct airo_info *local = dev->ml_priv;
5903 SsidRid SSID_rid; /* SSIDs */
5904
5905 /* Reload the list of current SSID */
5906 readSsidRid(local, &SSID_rid);
5907
5908 /* Check if we asked for `any' */
5909 if (dwrq->flags == 0) {
5910 /* Just send an empty SSID list */
5911 memset(&SSID_rid, 0, sizeof(SSID_rid));
5912 } else {
5913 unsigned index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
5914
5915 /* Check the size of the string */
5916 if (dwrq->length > IW_ESSID_MAX_SIZE)
5917 return -E2BIG ;
5918
5919 /* Check if index is valid */
5920 if (index >= ARRAY_SIZE(SSID_rid.ssids))
5921 return -EINVAL;
5922
5923 /* Set the SSID */
5924 memset(SSID_rid.ssids[index].ssid, 0,
5925 sizeof(SSID_rid.ssids[index].ssid));
5926 memcpy(SSID_rid.ssids[index].ssid, extra, dwrq->length);
5927 SSID_rid.ssids[index].len = cpu_to_le16(dwrq->length);
5928 }
5929 SSID_rid.len = cpu_to_le16(sizeof(SSID_rid));
5930 /* Write it to the card */
5931 disable_MAC(local, 1);
5932 writeSsidRid(local, &SSID_rid, 1);
5933 enable_MAC(local, 1);
5934
5935 return 0;
5936 }
5937
5938 /*------------------------------------------------------------------*/
5939 /*
5940 * Wireless Handler : get ESSID
5941 */
airo_get_essid(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)5942 static int airo_get_essid(struct net_device *dev,
5943 struct iw_request_info *info,
5944 struct iw_point *dwrq,
5945 char *extra)
5946 {
5947 struct airo_info *local = dev->ml_priv;
5948 StatusRid status_rid; /* Card status info */
5949
5950 readStatusRid(local, &status_rid, 1);
5951
5952 /* Note : if dwrq->flags != 0, we should
5953 * get the relevant SSID from the SSID list... */
5954
5955 /* Get the current SSID */
5956 memcpy(extra, status_rid.SSID, le16_to_cpu(status_rid.SSIDlen));
5957 /* If none, we may want to get the one that was set */
5958
5959 /* Push it out ! */
5960 dwrq->length = le16_to_cpu(status_rid.SSIDlen);
5961 dwrq->flags = 1; /* active */
5962
5963 return 0;
5964 }
5965
5966 /*------------------------------------------------------------------*/
5967 /*
5968 * Wireless Handler : set AP address
5969 */
airo_set_wap(struct net_device * dev,struct iw_request_info * info,struct sockaddr * awrq,char * extra)5970 static int airo_set_wap(struct net_device *dev,
5971 struct iw_request_info *info,
5972 struct sockaddr *awrq,
5973 char *extra)
5974 {
5975 struct airo_info *local = dev->ml_priv;
5976 Cmd cmd;
5977 Resp rsp;
5978 APListRid APList_rid;
5979 static const u8 any[ETH_ALEN] = { 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF };
5980 static const u8 off[ETH_ALEN] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
5981
5982 if (awrq->sa_family != ARPHRD_ETHER)
5983 return -EINVAL;
5984 else if (!memcmp(any, awrq->sa_data, ETH_ALEN) ||
5985 !memcmp(off, awrq->sa_data, ETH_ALEN)) {
5986 memset(&cmd, 0, sizeof(cmd));
5987 cmd.cmd=CMD_LOSE_SYNC;
5988 if (down_interruptible(&local->sem))
5989 return -ERESTARTSYS;
5990 issuecommand(local, &cmd, &rsp);
5991 up(&local->sem);
5992 } else {
5993 memset(&APList_rid, 0, sizeof(APList_rid));
5994 APList_rid.len = cpu_to_le16(sizeof(APList_rid));
5995 memcpy(APList_rid.ap[0], awrq->sa_data, ETH_ALEN);
5996 disable_MAC(local, 1);
5997 writeAPListRid(local, &APList_rid, 1);
5998 enable_MAC(local, 1);
5999 }
6000 return 0;
6001 }
6002
6003 /*------------------------------------------------------------------*/
6004 /*
6005 * Wireless Handler : get AP address
6006 */
airo_get_wap(struct net_device * dev,struct iw_request_info * info,struct sockaddr * awrq,char * extra)6007 static int airo_get_wap(struct net_device *dev,
6008 struct iw_request_info *info,
6009 struct sockaddr *awrq,
6010 char *extra)
6011 {
6012 struct airo_info *local = dev->ml_priv;
6013 StatusRid status_rid; /* Card status info */
6014
6015 readStatusRid(local, &status_rid, 1);
6016
6017 /* Tentative. This seems to work, wow, I'm lucky !!! */
6018 memcpy(awrq->sa_data, status_rid.bssid[0], ETH_ALEN);
6019 awrq->sa_family = ARPHRD_ETHER;
6020
6021 return 0;
6022 }
6023
6024 /*------------------------------------------------------------------*/
6025 /*
6026 * Wireless Handler : set Nickname
6027 */
airo_set_nick(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)6028 static int airo_set_nick(struct net_device *dev,
6029 struct iw_request_info *info,
6030 struct iw_point *dwrq,
6031 char *extra)
6032 {
6033 struct airo_info *local = dev->ml_priv;
6034
6035 /* Check the size of the string */
6036 if(dwrq->length > 16) {
6037 return -E2BIG;
6038 }
6039 readConfigRid(local, 1);
6040 memset(local->config.nodeName, 0, sizeof(local->config.nodeName));
6041 memcpy(local->config.nodeName, extra, dwrq->length);
6042 set_bit (FLAG_COMMIT, &local->flags);
6043
6044 return -EINPROGRESS; /* Call commit handler */
6045 }
6046
6047 /*------------------------------------------------------------------*/
6048 /*
6049 * Wireless Handler : get Nickname
6050 */
airo_get_nick(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)6051 static int airo_get_nick(struct net_device *dev,
6052 struct iw_request_info *info,
6053 struct iw_point *dwrq,
6054 char *extra)
6055 {
6056 struct airo_info *local = dev->ml_priv;
6057
6058 readConfigRid(local, 1);
6059 strncpy(extra, local->config.nodeName, 16);
6060 extra[16] = '\0';
6061 dwrq->length = strlen(extra);
6062
6063 return 0;
6064 }
6065
6066 /*------------------------------------------------------------------*/
6067 /*
6068 * Wireless Handler : set Bit-Rate
6069 */
airo_set_rate(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6070 static int airo_set_rate(struct net_device *dev,
6071 struct iw_request_info *info,
6072 struct iw_param *vwrq,
6073 char *extra)
6074 {
6075 struct airo_info *local = dev->ml_priv;
6076 CapabilityRid cap_rid; /* Card capability info */
6077 u8 brate = 0;
6078 int i;
6079
6080 /* First : get a valid bit rate value */
6081 readCapabilityRid(local, &cap_rid, 1);
6082
6083 /* Which type of value ? */
6084 if((vwrq->value < 8) && (vwrq->value >= 0)) {
6085 /* Setting by rate index */
6086 /* Find value in the magic rate table */
6087 brate = cap_rid.supportedRates[vwrq->value];
6088 } else {
6089 /* Setting by frequency value */
6090 u8 normvalue = (u8) (vwrq->value/500000);
6091
6092 /* Check if rate is valid */
6093 for(i = 0 ; i < 8 ; i++) {
6094 if(normvalue == cap_rid.supportedRates[i]) {
6095 brate = normvalue;
6096 break;
6097 }
6098 }
6099 }
6100 /* -1 designed the max rate (mostly auto mode) */
6101 if(vwrq->value == -1) {
6102 /* Get the highest available rate */
6103 for(i = 0 ; i < 8 ; i++) {
6104 if(cap_rid.supportedRates[i] == 0)
6105 break;
6106 }
6107 if(i != 0)
6108 brate = cap_rid.supportedRates[i - 1];
6109 }
6110 /* Check that it is valid */
6111 if(brate == 0) {
6112 return -EINVAL;
6113 }
6114
6115 readConfigRid(local, 1);
6116 /* Now, check if we want a fixed or auto value */
6117 if(vwrq->fixed == 0) {
6118 /* Fill all the rates up to this max rate */
6119 memset(local->config.rates, 0, 8);
6120 for(i = 0 ; i < 8 ; i++) {
6121 local->config.rates[i] = cap_rid.supportedRates[i];
6122 if(local->config.rates[i] == brate)
6123 break;
6124 }
6125 } else {
6126 /* Fixed mode */
6127 /* One rate, fixed */
6128 memset(local->config.rates, 0, 8);
6129 local->config.rates[0] = brate;
6130 }
6131 set_bit (FLAG_COMMIT, &local->flags);
6132
6133 return -EINPROGRESS; /* Call commit handler */
6134 }
6135
6136 /*------------------------------------------------------------------*/
6137 /*
6138 * Wireless Handler : get Bit-Rate
6139 */
airo_get_rate(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6140 static int airo_get_rate(struct net_device *dev,
6141 struct iw_request_info *info,
6142 struct iw_param *vwrq,
6143 char *extra)
6144 {
6145 struct airo_info *local = dev->ml_priv;
6146 StatusRid status_rid; /* Card status info */
6147
6148 readStatusRid(local, &status_rid, 1);
6149
6150 vwrq->value = le16_to_cpu(status_rid.currentXmitRate) * 500000;
6151 /* If more than one rate, set auto */
6152 readConfigRid(local, 1);
6153 vwrq->fixed = (local->config.rates[1] == 0);
6154
6155 return 0;
6156 }
6157
6158 /*------------------------------------------------------------------*/
6159 /*
6160 * Wireless Handler : set RTS threshold
6161 */
airo_set_rts(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6162 static int airo_set_rts(struct net_device *dev,
6163 struct iw_request_info *info,
6164 struct iw_param *vwrq,
6165 char *extra)
6166 {
6167 struct airo_info *local = dev->ml_priv;
6168 int rthr = vwrq->value;
6169
6170 if(vwrq->disabled)
6171 rthr = AIRO_DEF_MTU;
6172 if((rthr < 0) || (rthr > AIRO_DEF_MTU)) {
6173 return -EINVAL;
6174 }
6175 readConfigRid(local, 1);
6176 local->config.rtsThres = cpu_to_le16(rthr);
6177 set_bit (FLAG_COMMIT, &local->flags);
6178
6179 return -EINPROGRESS; /* Call commit handler */
6180 }
6181
6182 /*------------------------------------------------------------------*/
6183 /*
6184 * Wireless Handler : get RTS threshold
6185 */
airo_get_rts(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6186 static int airo_get_rts(struct net_device *dev,
6187 struct iw_request_info *info,
6188 struct iw_param *vwrq,
6189 char *extra)
6190 {
6191 struct airo_info *local = dev->ml_priv;
6192
6193 readConfigRid(local, 1);
6194 vwrq->value = le16_to_cpu(local->config.rtsThres);
6195 vwrq->disabled = (vwrq->value >= AIRO_DEF_MTU);
6196 vwrq->fixed = 1;
6197
6198 return 0;
6199 }
6200
6201 /*------------------------------------------------------------------*/
6202 /*
6203 * Wireless Handler : set Fragmentation threshold
6204 */
airo_set_frag(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6205 static int airo_set_frag(struct net_device *dev,
6206 struct iw_request_info *info,
6207 struct iw_param *vwrq,
6208 char *extra)
6209 {
6210 struct airo_info *local = dev->ml_priv;
6211 int fthr = vwrq->value;
6212
6213 if(vwrq->disabled)
6214 fthr = AIRO_DEF_MTU;
6215 if((fthr < 256) || (fthr > AIRO_DEF_MTU)) {
6216 return -EINVAL;
6217 }
6218 fthr &= ~0x1; /* Get an even value - is it really needed ??? */
6219 readConfigRid(local, 1);
6220 local->config.fragThresh = cpu_to_le16(fthr);
6221 set_bit (FLAG_COMMIT, &local->flags);
6222
6223 return -EINPROGRESS; /* Call commit handler */
6224 }
6225
6226 /*------------------------------------------------------------------*/
6227 /*
6228 * Wireless Handler : get Fragmentation threshold
6229 */
airo_get_frag(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6230 static int airo_get_frag(struct net_device *dev,
6231 struct iw_request_info *info,
6232 struct iw_param *vwrq,
6233 char *extra)
6234 {
6235 struct airo_info *local = dev->ml_priv;
6236
6237 readConfigRid(local, 1);
6238 vwrq->value = le16_to_cpu(local->config.fragThresh);
6239 vwrq->disabled = (vwrq->value >= AIRO_DEF_MTU);
6240 vwrq->fixed = 1;
6241
6242 return 0;
6243 }
6244
6245 /*------------------------------------------------------------------*/
6246 /*
6247 * Wireless Handler : set Mode of Operation
6248 */
airo_set_mode(struct net_device * dev,struct iw_request_info * info,__u32 * uwrq,char * extra)6249 static int airo_set_mode(struct net_device *dev,
6250 struct iw_request_info *info,
6251 __u32 *uwrq,
6252 char *extra)
6253 {
6254 struct airo_info *local = dev->ml_priv;
6255 int reset = 0;
6256
6257 readConfigRid(local, 1);
6258 if (sniffing_mode(local))
6259 reset = 1;
6260
6261 switch(*uwrq) {
6262 case IW_MODE_ADHOC:
6263 local->config.opmode &= ~MODE_CFG_MASK;
6264 local->config.opmode |= MODE_STA_IBSS;
6265 local->config.rmode &= ~RXMODE_FULL_MASK;
6266 local->config.scanMode = SCANMODE_ACTIVE;
6267 clear_bit (FLAG_802_11, &local->flags);
6268 break;
6269 case IW_MODE_INFRA:
6270 local->config.opmode &= ~MODE_CFG_MASK;
6271 local->config.opmode |= MODE_STA_ESS;
6272 local->config.rmode &= ~RXMODE_FULL_MASK;
6273 local->config.scanMode = SCANMODE_ACTIVE;
6274 clear_bit (FLAG_802_11, &local->flags);
6275 break;
6276 case IW_MODE_MASTER:
6277 local->config.opmode &= ~MODE_CFG_MASK;
6278 local->config.opmode |= MODE_AP;
6279 local->config.rmode &= ~RXMODE_FULL_MASK;
6280 local->config.scanMode = SCANMODE_ACTIVE;
6281 clear_bit (FLAG_802_11, &local->flags);
6282 break;
6283 case IW_MODE_REPEAT:
6284 local->config.opmode &= ~MODE_CFG_MASK;
6285 local->config.opmode |= MODE_AP_RPTR;
6286 local->config.rmode &= ~RXMODE_FULL_MASK;
6287 local->config.scanMode = SCANMODE_ACTIVE;
6288 clear_bit (FLAG_802_11, &local->flags);
6289 break;
6290 case IW_MODE_MONITOR:
6291 local->config.opmode &= ~MODE_CFG_MASK;
6292 local->config.opmode |= MODE_STA_ESS;
6293 local->config.rmode &= ~RXMODE_FULL_MASK;
6294 local->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
6295 local->config.scanMode = SCANMODE_PASSIVE;
6296 set_bit (FLAG_802_11, &local->flags);
6297 break;
6298 default:
6299 return -EINVAL;
6300 }
6301 if (reset)
6302 set_bit (FLAG_RESET, &local->flags);
6303 set_bit (FLAG_COMMIT, &local->flags);
6304
6305 return -EINPROGRESS; /* Call commit handler */
6306 }
6307
6308 /*------------------------------------------------------------------*/
6309 /*
6310 * Wireless Handler : get Mode of Operation
6311 */
airo_get_mode(struct net_device * dev,struct iw_request_info * info,__u32 * uwrq,char * extra)6312 static int airo_get_mode(struct net_device *dev,
6313 struct iw_request_info *info,
6314 __u32 *uwrq,
6315 char *extra)
6316 {
6317 struct airo_info *local = dev->ml_priv;
6318
6319 readConfigRid(local, 1);
6320 /* If not managed, assume it's ad-hoc */
6321 switch (local->config.opmode & MODE_CFG_MASK) {
6322 case MODE_STA_ESS:
6323 *uwrq = IW_MODE_INFRA;
6324 break;
6325 case MODE_AP:
6326 *uwrq = IW_MODE_MASTER;
6327 break;
6328 case MODE_AP_RPTR:
6329 *uwrq = IW_MODE_REPEAT;
6330 break;
6331 default:
6332 *uwrq = IW_MODE_ADHOC;
6333 }
6334
6335 return 0;
6336 }
6337
valid_index(struct airo_info * ai,int index)6338 static inline int valid_index(struct airo_info *ai, int index)
6339 {
6340 return (index >= 0) && (index <= ai->max_wep_idx);
6341 }
6342
6343 /*------------------------------------------------------------------*/
6344 /*
6345 * Wireless Handler : set Encryption Key
6346 */
airo_set_encode(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)6347 static int airo_set_encode(struct net_device *dev,
6348 struct iw_request_info *info,
6349 struct iw_point *dwrq,
6350 char *extra)
6351 {
6352 struct airo_info *local = dev->ml_priv;
6353 int perm = (dwrq->flags & IW_ENCODE_TEMP ? 0 : 1);
6354 __le16 currentAuthType = local->config.authType;
6355 int rc = 0;
6356
6357 if (!local->wep_capable)
6358 return -EOPNOTSUPP;
6359
6360 readConfigRid(local, 1);
6361
6362 /* Basic checking: do we have a key to set ?
6363 * Note : with the new API, it's impossible to get a NULL pointer.
6364 * Therefore, we need to check a key size == 0 instead.
6365 * New version of iwconfig properly set the IW_ENCODE_NOKEY flag
6366 * when no key is present (only change flags), but older versions
6367 * don't do it. - Jean II */
6368 if (dwrq->length > 0) {
6369 wep_key_t key;
6370 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6371 int current_index;
6372
6373 /* Check the size of the key */
6374 if (dwrq->length > MAX_KEY_SIZE) {
6375 return -EINVAL;
6376 }
6377
6378 current_index = get_wep_tx_idx(local);
6379 if (current_index < 0)
6380 current_index = 0;
6381
6382 /* Check the index (none -> use current) */
6383 if (!valid_index(local, index))
6384 index = current_index;
6385
6386 /* Set the length */
6387 if (dwrq->length > MIN_KEY_SIZE)
6388 key.len = MAX_KEY_SIZE;
6389 else
6390 key.len = MIN_KEY_SIZE;
6391 /* Check if the key is not marked as invalid */
6392 if(!(dwrq->flags & IW_ENCODE_NOKEY)) {
6393 /* Cleanup */
6394 memset(key.key, 0, MAX_KEY_SIZE);
6395 /* Copy the key in the driver */
6396 memcpy(key.key, extra, dwrq->length);
6397 /* Send the key to the card */
6398 rc = set_wep_key(local, index, key.key, key.len, perm, 1);
6399 if (rc < 0) {
6400 airo_print_err(local->dev->name, "failed to set"
6401 " WEP key at index %d: %d.",
6402 index, rc);
6403 return rc;
6404 }
6405 }
6406 /* WE specify that if a valid key is set, encryption
6407 * should be enabled (user may turn it off later)
6408 * This is also how "iwconfig ethX key on" works */
6409 if((index == current_index) && (key.len > 0) &&
6410 (local->config.authType == AUTH_OPEN)) {
6411 local->config.authType = AUTH_ENCRYPT;
6412 }
6413 } else {
6414 /* Do we want to just set the transmit key index ? */
6415 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6416 if (valid_index(local, index)) {
6417 rc = set_wep_tx_idx(local, index, perm, 1);
6418 if (rc < 0) {
6419 airo_print_err(local->dev->name, "failed to set"
6420 " WEP transmit index to %d: %d.",
6421 index, rc);
6422 return rc;
6423 }
6424 } else {
6425 /* Don't complain if only change the mode */
6426 if (!(dwrq->flags & IW_ENCODE_MODE))
6427 return -EINVAL;
6428 }
6429 }
6430 /* Read the flags */
6431 if(dwrq->flags & IW_ENCODE_DISABLED)
6432 local->config.authType = AUTH_OPEN; // disable encryption
6433 if(dwrq->flags & IW_ENCODE_RESTRICTED)
6434 local->config.authType = AUTH_SHAREDKEY; // Only Both
6435 if(dwrq->flags & IW_ENCODE_OPEN)
6436 local->config.authType = AUTH_ENCRYPT; // Only Wep
6437 /* Commit the changes to flags if needed */
6438 if (local->config.authType != currentAuthType)
6439 set_bit (FLAG_COMMIT, &local->flags);
6440 return -EINPROGRESS; /* Call commit handler */
6441 }
6442
6443 /*------------------------------------------------------------------*/
6444 /*
6445 * Wireless Handler : get Encryption Key
6446 */
airo_get_encode(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)6447 static int airo_get_encode(struct net_device *dev,
6448 struct iw_request_info *info,
6449 struct iw_point *dwrq,
6450 char *extra)
6451 {
6452 struct airo_info *local = dev->ml_priv;
6453 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6454 int wep_key_len;
6455 u8 buf[16];
6456
6457 if (!local->wep_capable)
6458 return -EOPNOTSUPP;
6459
6460 readConfigRid(local, 1);
6461
6462 /* Check encryption mode */
6463 switch(local->config.authType) {
6464 case AUTH_ENCRYPT:
6465 dwrq->flags = IW_ENCODE_OPEN;
6466 break;
6467 case AUTH_SHAREDKEY:
6468 dwrq->flags = IW_ENCODE_RESTRICTED;
6469 break;
6470 default:
6471 case AUTH_OPEN:
6472 dwrq->flags = IW_ENCODE_DISABLED;
6473 break;
6474 }
6475 /* We can't return the key, so set the proper flag and return zero */
6476 dwrq->flags |= IW_ENCODE_NOKEY;
6477 memset(extra, 0, 16);
6478
6479 /* Which key do we want ? -1 -> tx index */
6480 if (!valid_index(local, index)) {
6481 index = get_wep_tx_idx(local);
6482 if (index < 0)
6483 index = 0;
6484 }
6485 dwrq->flags |= index + 1;
6486
6487 /* Copy the key to the user buffer */
6488 wep_key_len = get_wep_key(local, index, &buf[0], sizeof(buf));
6489 if (wep_key_len < 0) {
6490 dwrq->length = 0;
6491 } else {
6492 dwrq->length = wep_key_len;
6493 memcpy(extra, buf, dwrq->length);
6494 }
6495
6496 return 0;
6497 }
6498
6499 /*------------------------------------------------------------------*/
6500 /*
6501 * Wireless Handler : set extended Encryption parameters
6502 */
airo_set_encodeext(struct net_device * dev,struct iw_request_info * info,union iwreq_data * wrqu,char * extra)6503 static int airo_set_encodeext(struct net_device *dev,
6504 struct iw_request_info *info,
6505 union iwreq_data *wrqu,
6506 char *extra)
6507 {
6508 struct airo_info *local = dev->ml_priv;
6509 struct iw_point *encoding = &wrqu->encoding;
6510 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6511 int perm = ( encoding->flags & IW_ENCODE_TEMP ? 0 : 1 );
6512 __le16 currentAuthType = local->config.authType;
6513 int idx, key_len, alg = ext->alg, set_key = 1, rc;
6514 wep_key_t key;
6515
6516 if (!local->wep_capable)
6517 return -EOPNOTSUPP;
6518
6519 readConfigRid(local, 1);
6520
6521 /* Determine and validate the key index */
6522 idx = encoding->flags & IW_ENCODE_INDEX;
6523 if (idx) {
6524 if (!valid_index(local, idx - 1))
6525 return -EINVAL;
6526 idx--;
6527 } else {
6528 idx = get_wep_tx_idx(local);
6529 if (idx < 0)
6530 idx = 0;
6531 }
6532
6533 if (encoding->flags & IW_ENCODE_DISABLED)
6534 alg = IW_ENCODE_ALG_NONE;
6535
6536 if (ext->ext_flags & IW_ENCODE_EXT_SET_TX_KEY) {
6537 /* Only set transmit key index here, actual
6538 * key is set below if needed.
6539 */
6540 rc = set_wep_tx_idx(local, idx, perm, 1);
6541 if (rc < 0) {
6542 airo_print_err(local->dev->name, "failed to set "
6543 "WEP transmit index to %d: %d.",
6544 idx, rc);
6545 return rc;
6546 }
6547 set_key = ext->key_len > 0 ? 1 : 0;
6548 }
6549
6550 if (set_key) {
6551 /* Set the requested key first */
6552 memset(key.key, 0, MAX_KEY_SIZE);
6553 switch (alg) {
6554 case IW_ENCODE_ALG_NONE:
6555 key.len = 0;
6556 break;
6557 case IW_ENCODE_ALG_WEP:
6558 if (ext->key_len > MIN_KEY_SIZE) {
6559 key.len = MAX_KEY_SIZE;
6560 } else if (ext->key_len > 0) {
6561 key.len = MIN_KEY_SIZE;
6562 } else {
6563 return -EINVAL;
6564 }
6565 key_len = min (ext->key_len, key.len);
6566 memcpy(key.key, ext->key, key_len);
6567 break;
6568 default:
6569 return -EINVAL;
6570 }
6571 if (key.len == 0) {
6572 rc = set_wep_tx_idx(local, idx, perm, 1);
6573 if (rc < 0) {
6574 airo_print_err(local->dev->name,
6575 "failed to set WEP transmit index to %d: %d.",
6576 idx, rc);
6577 return rc;
6578 }
6579 } else {
6580 rc = set_wep_key(local, idx, key.key, key.len, perm, 1);
6581 if (rc < 0) {
6582 airo_print_err(local->dev->name,
6583 "failed to set WEP key at index %d: %d.",
6584 idx, rc);
6585 return rc;
6586 }
6587 }
6588 }
6589
6590 /* Read the flags */
6591 if(encoding->flags & IW_ENCODE_DISABLED)
6592 local->config.authType = AUTH_OPEN; // disable encryption
6593 if(encoding->flags & IW_ENCODE_RESTRICTED)
6594 local->config.authType = AUTH_SHAREDKEY; // Only Both
6595 if(encoding->flags & IW_ENCODE_OPEN)
6596 local->config.authType = AUTH_ENCRYPT; // Only Wep
6597 /* Commit the changes to flags if needed */
6598 if (local->config.authType != currentAuthType)
6599 set_bit (FLAG_COMMIT, &local->flags);
6600
6601 return -EINPROGRESS;
6602 }
6603
6604
6605 /*------------------------------------------------------------------*/
6606 /*
6607 * Wireless Handler : get extended Encryption parameters
6608 */
airo_get_encodeext(struct net_device * dev,struct iw_request_info * info,union iwreq_data * wrqu,char * extra)6609 static int airo_get_encodeext(struct net_device *dev,
6610 struct iw_request_info *info,
6611 union iwreq_data *wrqu,
6612 char *extra)
6613 {
6614 struct airo_info *local = dev->ml_priv;
6615 struct iw_point *encoding = &wrqu->encoding;
6616 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6617 int idx, max_key_len, wep_key_len;
6618 u8 buf[16];
6619
6620 if (!local->wep_capable)
6621 return -EOPNOTSUPP;
6622
6623 readConfigRid(local, 1);
6624
6625 max_key_len = encoding->length - sizeof(*ext);
6626 if (max_key_len < 0)
6627 return -EINVAL;
6628
6629 idx = encoding->flags & IW_ENCODE_INDEX;
6630 if (idx) {
6631 if (!valid_index(local, idx - 1))
6632 return -EINVAL;
6633 idx--;
6634 } else {
6635 idx = get_wep_tx_idx(local);
6636 if (idx < 0)
6637 idx = 0;
6638 }
6639
6640 encoding->flags = idx + 1;
6641 memset(ext, 0, sizeof(*ext));
6642
6643 /* Check encryption mode */
6644 switch(local->config.authType) {
6645 case AUTH_ENCRYPT:
6646 encoding->flags = IW_ENCODE_ALG_WEP | IW_ENCODE_ENABLED;
6647 break;
6648 case AUTH_SHAREDKEY:
6649 encoding->flags = IW_ENCODE_ALG_WEP | IW_ENCODE_ENABLED;
6650 break;
6651 default:
6652 case AUTH_OPEN:
6653 encoding->flags = IW_ENCODE_ALG_NONE | IW_ENCODE_DISABLED;
6654 break;
6655 }
6656 /* We can't return the key, so set the proper flag and return zero */
6657 encoding->flags |= IW_ENCODE_NOKEY;
6658 memset(extra, 0, 16);
6659
6660 /* Copy the key to the user buffer */
6661 wep_key_len = get_wep_key(local, idx, &buf[0], sizeof(buf));
6662 if (wep_key_len < 0) {
6663 ext->key_len = 0;
6664 } else {
6665 ext->key_len = wep_key_len;
6666 memcpy(extra, buf, ext->key_len);
6667 }
6668
6669 return 0;
6670 }
6671
6672
6673 /*------------------------------------------------------------------*/
6674 /*
6675 * Wireless Handler : set extended authentication parameters
6676 */
airo_set_auth(struct net_device * dev,struct iw_request_info * info,union iwreq_data * wrqu,char * extra)6677 static int airo_set_auth(struct net_device *dev,
6678 struct iw_request_info *info,
6679 union iwreq_data *wrqu, char *extra)
6680 {
6681 struct airo_info *local = dev->ml_priv;
6682 struct iw_param *param = &wrqu->param;
6683 __le16 currentAuthType = local->config.authType;
6684
6685 switch (param->flags & IW_AUTH_INDEX) {
6686 case IW_AUTH_WPA_VERSION:
6687 case IW_AUTH_CIPHER_PAIRWISE:
6688 case IW_AUTH_CIPHER_GROUP:
6689 case IW_AUTH_KEY_MGMT:
6690 case IW_AUTH_RX_UNENCRYPTED_EAPOL:
6691 case IW_AUTH_PRIVACY_INVOKED:
6692 /*
6693 * airo does not use these parameters
6694 */
6695 break;
6696
6697 case IW_AUTH_DROP_UNENCRYPTED:
6698 if (param->value) {
6699 /* Only change auth type if unencrypted */
6700 if (currentAuthType == AUTH_OPEN)
6701 local->config.authType = AUTH_ENCRYPT;
6702 } else {
6703 local->config.authType = AUTH_OPEN;
6704 }
6705
6706 /* Commit the changes to flags if needed */
6707 if (local->config.authType != currentAuthType)
6708 set_bit (FLAG_COMMIT, &local->flags);
6709 break;
6710
6711 case IW_AUTH_80211_AUTH_ALG: {
6712 /* FIXME: What about AUTH_OPEN? This API seems to
6713 * disallow setting our auth to AUTH_OPEN.
6714 */
6715 if (param->value & IW_AUTH_ALG_SHARED_KEY) {
6716 local->config.authType = AUTH_SHAREDKEY;
6717 } else if (param->value & IW_AUTH_ALG_OPEN_SYSTEM) {
6718 local->config.authType = AUTH_ENCRYPT;
6719 } else
6720 return -EINVAL;
6721
6722 /* Commit the changes to flags if needed */
6723 if (local->config.authType != currentAuthType)
6724 set_bit (FLAG_COMMIT, &local->flags);
6725 break;
6726 }
6727
6728 case IW_AUTH_WPA_ENABLED:
6729 /* Silently accept disable of WPA */
6730 if (param->value > 0)
6731 return -EOPNOTSUPP;
6732 break;
6733
6734 default:
6735 return -EOPNOTSUPP;
6736 }
6737 return -EINPROGRESS;
6738 }
6739
6740
6741 /*------------------------------------------------------------------*/
6742 /*
6743 * Wireless Handler : get extended authentication parameters
6744 */
airo_get_auth(struct net_device * dev,struct iw_request_info * info,union iwreq_data * wrqu,char * extra)6745 static int airo_get_auth(struct net_device *dev,
6746 struct iw_request_info *info,
6747 union iwreq_data *wrqu, char *extra)
6748 {
6749 struct airo_info *local = dev->ml_priv;
6750 struct iw_param *param = &wrqu->param;
6751 __le16 currentAuthType = local->config.authType;
6752
6753 switch (param->flags & IW_AUTH_INDEX) {
6754 case IW_AUTH_DROP_UNENCRYPTED:
6755 switch (currentAuthType) {
6756 case AUTH_SHAREDKEY:
6757 case AUTH_ENCRYPT:
6758 param->value = 1;
6759 break;
6760 default:
6761 param->value = 0;
6762 break;
6763 }
6764 break;
6765
6766 case IW_AUTH_80211_AUTH_ALG:
6767 switch (currentAuthType) {
6768 case AUTH_SHAREDKEY:
6769 param->value = IW_AUTH_ALG_SHARED_KEY;
6770 break;
6771 case AUTH_ENCRYPT:
6772 default:
6773 param->value = IW_AUTH_ALG_OPEN_SYSTEM;
6774 break;
6775 }
6776 break;
6777
6778 case IW_AUTH_WPA_ENABLED:
6779 param->value = 0;
6780 break;
6781
6782 default:
6783 return -EOPNOTSUPP;
6784 }
6785 return 0;
6786 }
6787
6788
6789 /*------------------------------------------------------------------*/
6790 /*
6791 * Wireless Handler : set Tx-Power
6792 */
airo_set_txpow(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6793 static int airo_set_txpow(struct net_device *dev,
6794 struct iw_request_info *info,
6795 struct iw_param *vwrq,
6796 char *extra)
6797 {
6798 struct airo_info *local = dev->ml_priv;
6799 CapabilityRid cap_rid; /* Card capability info */
6800 int i;
6801 int rc = -EINVAL;
6802 __le16 v = cpu_to_le16(vwrq->value);
6803
6804 readCapabilityRid(local, &cap_rid, 1);
6805
6806 if (vwrq->disabled) {
6807 set_bit (FLAG_RADIO_OFF, &local->flags);
6808 set_bit (FLAG_COMMIT, &local->flags);
6809 return -EINPROGRESS; /* Call commit handler */
6810 }
6811 if (vwrq->flags != IW_TXPOW_MWATT) {
6812 return -EINVAL;
6813 }
6814 clear_bit (FLAG_RADIO_OFF, &local->flags);
6815 for (i = 0; i < 8 && cap_rid.txPowerLevels[i]; i++)
6816 if (v == cap_rid.txPowerLevels[i]) {
6817 readConfigRid(local, 1);
6818 local->config.txPower = v;
6819 set_bit (FLAG_COMMIT, &local->flags);
6820 rc = -EINPROGRESS; /* Call commit handler */
6821 break;
6822 }
6823 return rc;
6824 }
6825
6826 /*------------------------------------------------------------------*/
6827 /*
6828 * Wireless Handler : get Tx-Power
6829 */
airo_get_txpow(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6830 static int airo_get_txpow(struct net_device *dev,
6831 struct iw_request_info *info,
6832 struct iw_param *vwrq,
6833 char *extra)
6834 {
6835 struct airo_info *local = dev->ml_priv;
6836
6837 readConfigRid(local, 1);
6838 vwrq->value = le16_to_cpu(local->config.txPower);
6839 vwrq->fixed = 1; /* No power control */
6840 vwrq->disabled = test_bit(FLAG_RADIO_OFF, &local->flags);
6841 vwrq->flags = IW_TXPOW_MWATT;
6842
6843 return 0;
6844 }
6845
6846 /*------------------------------------------------------------------*/
6847 /*
6848 * Wireless Handler : set Retry limits
6849 */
airo_set_retry(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6850 static int airo_set_retry(struct net_device *dev,
6851 struct iw_request_info *info,
6852 struct iw_param *vwrq,
6853 char *extra)
6854 {
6855 struct airo_info *local = dev->ml_priv;
6856 int rc = -EINVAL;
6857
6858 if(vwrq->disabled) {
6859 return -EINVAL;
6860 }
6861 readConfigRid(local, 1);
6862 if(vwrq->flags & IW_RETRY_LIMIT) {
6863 __le16 v = cpu_to_le16(vwrq->value);
6864 if(vwrq->flags & IW_RETRY_LONG)
6865 local->config.longRetryLimit = v;
6866 else if (vwrq->flags & IW_RETRY_SHORT)
6867 local->config.shortRetryLimit = v;
6868 else {
6869 /* No modifier : set both */
6870 local->config.longRetryLimit = v;
6871 local->config.shortRetryLimit = v;
6872 }
6873 set_bit (FLAG_COMMIT, &local->flags);
6874 rc = -EINPROGRESS; /* Call commit handler */
6875 }
6876 if(vwrq->flags & IW_RETRY_LIFETIME) {
6877 local->config.txLifetime = cpu_to_le16(vwrq->value / 1024);
6878 set_bit (FLAG_COMMIT, &local->flags);
6879 rc = -EINPROGRESS; /* Call commit handler */
6880 }
6881 return rc;
6882 }
6883
6884 /*------------------------------------------------------------------*/
6885 /*
6886 * Wireless Handler : get Retry limits
6887 */
airo_get_retry(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)6888 static int airo_get_retry(struct net_device *dev,
6889 struct iw_request_info *info,
6890 struct iw_param *vwrq,
6891 char *extra)
6892 {
6893 struct airo_info *local = dev->ml_priv;
6894
6895 vwrq->disabled = 0; /* Can't be disabled */
6896
6897 readConfigRid(local, 1);
6898 /* Note : by default, display the min retry number */
6899 if((vwrq->flags & IW_RETRY_TYPE) == IW_RETRY_LIFETIME) {
6900 vwrq->flags = IW_RETRY_LIFETIME;
6901 vwrq->value = le16_to_cpu(local->config.txLifetime) * 1024;
6902 } else if((vwrq->flags & IW_RETRY_LONG)) {
6903 vwrq->flags = IW_RETRY_LIMIT | IW_RETRY_LONG;
6904 vwrq->value = le16_to_cpu(local->config.longRetryLimit);
6905 } else {
6906 vwrq->flags = IW_RETRY_LIMIT;
6907 vwrq->value = le16_to_cpu(local->config.shortRetryLimit);
6908 if(local->config.shortRetryLimit != local->config.longRetryLimit)
6909 vwrq->flags |= IW_RETRY_SHORT;
6910 }
6911
6912 return 0;
6913 }
6914
6915 /*------------------------------------------------------------------*/
6916 /*
6917 * Wireless Handler : get range info
6918 */
airo_get_range(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)6919 static int airo_get_range(struct net_device *dev,
6920 struct iw_request_info *info,
6921 struct iw_point *dwrq,
6922 char *extra)
6923 {
6924 struct airo_info *local = dev->ml_priv;
6925 struct iw_range *range = (struct iw_range *) extra;
6926 CapabilityRid cap_rid; /* Card capability info */
6927 int i;
6928 int k;
6929
6930 readCapabilityRid(local, &cap_rid, 1);
6931
6932 dwrq->length = sizeof(struct iw_range);
6933 memset(range, 0, sizeof(*range));
6934 range->min_nwid = 0x0000;
6935 range->max_nwid = 0x0000;
6936 range->num_channels = 14;
6937 /* Should be based on cap_rid.country to give only
6938 * what the current card support */
6939 k = 0;
6940 for(i = 0; i < 14; i++) {
6941 range->freq[k].i = i + 1; /* List index */
6942 range->freq[k].m = ieee80211_dsss_chan_to_freq(i + 1) * 100000;
6943 range->freq[k++].e = 1; /* Values in MHz -> * 10^5 * 10 */
6944 }
6945 range->num_frequency = k;
6946
6947 range->sensitivity = 65535;
6948
6949 /* Hum... Should put the right values there */
6950 if (local->rssi)
6951 range->max_qual.qual = 100; /* % */
6952 else
6953 range->max_qual.qual = airo_get_max_quality(&cap_rid);
6954 range->max_qual.level = 0x100 - 120; /* -120 dBm */
6955 range->max_qual.noise = 0x100 - 120; /* -120 dBm */
6956
6957 /* Experimental measurements - boundary 11/5.5 Mb/s */
6958 /* Note : with or without the (local->rssi), results
6959 * are somewhat different. - Jean II */
6960 if (local->rssi) {
6961 range->avg_qual.qual = 50; /* % */
6962 range->avg_qual.level = 0x100 - 70; /* -70 dBm */
6963 } else {
6964 range->avg_qual.qual = airo_get_avg_quality(&cap_rid);
6965 range->avg_qual.level = 0x100 - 80; /* -80 dBm */
6966 }
6967 range->avg_qual.noise = 0x100 - 85; /* -85 dBm */
6968
6969 for(i = 0 ; i < 8 ; i++) {
6970 range->bitrate[i] = cap_rid.supportedRates[i] * 500000;
6971 if(range->bitrate[i] == 0)
6972 break;
6973 }
6974 range->num_bitrates = i;
6975
6976 /* Set an indication of the max TCP throughput
6977 * in bit/s that we can expect using this interface.
6978 * May be use for QoS stuff... Jean II */
6979 if(i > 2)
6980 range->throughput = 5000 * 1000;
6981 else
6982 range->throughput = 1500 * 1000;
6983
6984 range->min_rts = 0;
6985 range->max_rts = AIRO_DEF_MTU;
6986 range->min_frag = 256;
6987 range->max_frag = AIRO_DEF_MTU;
6988
6989 if(cap_rid.softCap & cpu_to_le16(2)) {
6990 // WEP: RC4 40 bits
6991 range->encoding_size[0] = 5;
6992 // RC4 ~128 bits
6993 if (cap_rid.softCap & cpu_to_le16(0x100)) {
6994 range->encoding_size[1] = 13;
6995 range->num_encoding_sizes = 2;
6996 } else
6997 range->num_encoding_sizes = 1;
6998 range->max_encoding_tokens =
6999 cap_rid.softCap & cpu_to_le16(0x80) ? 4 : 1;
7000 } else {
7001 range->num_encoding_sizes = 0;
7002 range->max_encoding_tokens = 0;
7003 }
7004 range->min_pmp = 0;
7005 range->max_pmp = 5000000; /* 5 secs */
7006 range->min_pmt = 0;
7007 range->max_pmt = 65535 * 1024; /* ??? */
7008 range->pmp_flags = IW_POWER_PERIOD;
7009 range->pmt_flags = IW_POWER_TIMEOUT;
7010 range->pm_capa = IW_POWER_PERIOD | IW_POWER_TIMEOUT | IW_POWER_ALL_R;
7011
7012 /* Transmit Power - values are in mW */
7013 for(i = 0 ; i < 8 ; i++) {
7014 range->txpower[i] = le16_to_cpu(cap_rid.txPowerLevels[i]);
7015 if(range->txpower[i] == 0)
7016 break;
7017 }
7018 range->num_txpower = i;
7019 range->txpower_capa = IW_TXPOW_MWATT;
7020 range->we_version_source = 19;
7021 range->we_version_compiled = WIRELESS_EXT;
7022 range->retry_capa = IW_RETRY_LIMIT | IW_RETRY_LIFETIME;
7023 range->retry_flags = IW_RETRY_LIMIT;
7024 range->r_time_flags = IW_RETRY_LIFETIME;
7025 range->min_retry = 1;
7026 range->max_retry = 65535;
7027 range->min_r_time = 1024;
7028 range->max_r_time = 65535 * 1024;
7029
7030 /* Event capability (kernel + driver) */
7031 range->event_capa[0] = (IW_EVENT_CAPA_K_0 |
7032 IW_EVENT_CAPA_MASK(SIOCGIWTHRSPY) |
7033 IW_EVENT_CAPA_MASK(SIOCGIWAP) |
7034 IW_EVENT_CAPA_MASK(SIOCGIWSCAN));
7035 range->event_capa[1] = IW_EVENT_CAPA_K_1;
7036 range->event_capa[4] = IW_EVENT_CAPA_MASK(IWEVTXDROP);
7037 return 0;
7038 }
7039
7040 /*------------------------------------------------------------------*/
7041 /*
7042 * Wireless Handler : set Power Management
7043 */
airo_set_power(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)7044 static int airo_set_power(struct net_device *dev,
7045 struct iw_request_info *info,
7046 struct iw_param *vwrq,
7047 char *extra)
7048 {
7049 struct airo_info *local = dev->ml_priv;
7050
7051 readConfigRid(local, 1);
7052 if (vwrq->disabled) {
7053 if (sniffing_mode(local))
7054 return -EINVAL;
7055 local->config.powerSaveMode = POWERSAVE_CAM;
7056 local->config.rmode &= ~RXMODE_MASK;
7057 local->config.rmode |= RXMODE_BC_MC_ADDR;
7058 set_bit (FLAG_COMMIT, &local->flags);
7059 return -EINPROGRESS; /* Call commit handler */
7060 }
7061 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
7062 local->config.fastListenDelay = cpu_to_le16((vwrq->value + 500) / 1024);
7063 local->config.powerSaveMode = POWERSAVE_PSPCAM;
7064 set_bit (FLAG_COMMIT, &local->flags);
7065 } else if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_PERIOD) {
7066 local->config.fastListenInterval =
7067 local->config.listenInterval =
7068 cpu_to_le16((vwrq->value + 500) / 1024);
7069 local->config.powerSaveMode = POWERSAVE_PSPCAM;
7070 set_bit (FLAG_COMMIT, &local->flags);
7071 }
7072 switch (vwrq->flags & IW_POWER_MODE) {
7073 case IW_POWER_UNICAST_R:
7074 if (sniffing_mode(local))
7075 return -EINVAL;
7076 local->config.rmode &= ~RXMODE_MASK;
7077 local->config.rmode |= RXMODE_ADDR;
7078 set_bit (FLAG_COMMIT, &local->flags);
7079 break;
7080 case IW_POWER_ALL_R:
7081 if (sniffing_mode(local))
7082 return -EINVAL;
7083 local->config.rmode &= ~RXMODE_MASK;
7084 local->config.rmode |= RXMODE_BC_MC_ADDR;
7085 set_bit (FLAG_COMMIT, &local->flags);
7086 case IW_POWER_ON:
7087 /* This is broken, fixme ;-) */
7088 break;
7089 default:
7090 return -EINVAL;
7091 }
7092 // Note : we may want to factor local->need_commit here
7093 // Note2 : may also want to factor RXMODE_RFMON test
7094 return -EINPROGRESS; /* Call commit handler */
7095 }
7096
7097 /*------------------------------------------------------------------*/
7098 /*
7099 * Wireless Handler : get Power Management
7100 */
airo_get_power(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)7101 static int airo_get_power(struct net_device *dev,
7102 struct iw_request_info *info,
7103 struct iw_param *vwrq,
7104 char *extra)
7105 {
7106 struct airo_info *local = dev->ml_priv;
7107 __le16 mode;
7108
7109 readConfigRid(local, 1);
7110 mode = local->config.powerSaveMode;
7111 if ((vwrq->disabled = (mode == POWERSAVE_CAM)))
7112 return 0;
7113 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
7114 vwrq->value = le16_to_cpu(local->config.fastListenDelay) * 1024;
7115 vwrq->flags = IW_POWER_TIMEOUT;
7116 } else {
7117 vwrq->value = le16_to_cpu(local->config.fastListenInterval) * 1024;
7118 vwrq->flags = IW_POWER_PERIOD;
7119 }
7120 if ((local->config.rmode & RXMODE_MASK) == RXMODE_ADDR)
7121 vwrq->flags |= IW_POWER_UNICAST_R;
7122 else
7123 vwrq->flags |= IW_POWER_ALL_R;
7124
7125 return 0;
7126 }
7127
7128 /*------------------------------------------------------------------*/
7129 /*
7130 * Wireless Handler : set Sensitivity
7131 */
airo_set_sens(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)7132 static int airo_set_sens(struct net_device *dev,
7133 struct iw_request_info *info,
7134 struct iw_param *vwrq,
7135 char *extra)
7136 {
7137 struct airo_info *local = dev->ml_priv;
7138
7139 readConfigRid(local, 1);
7140 local->config.rssiThreshold =
7141 cpu_to_le16(vwrq->disabled ? RSSI_DEFAULT : vwrq->value);
7142 set_bit (FLAG_COMMIT, &local->flags);
7143
7144 return -EINPROGRESS; /* Call commit handler */
7145 }
7146
7147 /*------------------------------------------------------------------*/
7148 /*
7149 * Wireless Handler : get Sensitivity
7150 */
airo_get_sens(struct net_device * dev,struct iw_request_info * info,struct iw_param * vwrq,char * extra)7151 static int airo_get_sens(struct net_device *dev,
7152 struct iw_request_info *info,
7153 struct iw_param *vwrq,
7154 char *extra)
7155 {
7156 struct airo_info *local = dev->ml_priv;
7157
7158 readConfigRid(local, 1);
7159 vwrq->value = le16_to_cpu(local->config.rssiThreshold);
7160 vwrq->disabled = (vwrq->value == 0);
7161 vwrq->fixed = 1;
7162
7163 return 0;
7164 }
7165
7166 /*------------------------------------------------------------------*/
7167 /*
7168 * Wireless Handler : get AP List
7169 * Note : this is deprecated in favor of IWSCAN
7170 */
airo_get_aplist(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)7171 static int airo_get_aplist(struct net_device *dev,
7172 struct iw_request_info *info,
7173 struct iw_point *dwrq,
7174 char *extra)
7175 {
7176 struct airo_info *local = dev->ml_priv;
7177 struct sockaddr *address = (struct sockaddr *) extra;
7178 struct iw_quality *qual;
7179 BSSListRid BSSList;
7180 int i;
7181 int loseSync = capable(CAP_NET_ADMIN) ? 1: -1;
7182
7183 qual = kmalloc(IW_MAX_AP * sizeof(*qual), GFP_KERNEL);
7184 if (!qual)
7185 return -ENOMEM;
7186
7187 for (i = 0; i < IW_MAX_AP; i++) {
7188 u16 dBm;
7189 if (readBSSListRid(local, loseSync, &BSSList))
7190 break;
7191 loseSync = 0;
7192 memcpy(address[i].sa_data, BSSList.bssid, ETH_ALEN);
7193 address[i].sa_family = ARPHRD_ETHER;
7194 dBm = le16_to_cpu(BSSList.dBm);
7195 if (local->rssi) {
7196 qual[i].level = 0x100 - dBm;
7197 qual[i].qual = airo_dbm_to_pct(local->rssi, dBm);
7198 qual[i].updated = IW_QUAL_QUAL_UPDATED
7199 | IW_QUAL_LEVEL_UPDATED
7200 | IW_QUAL_DBM;
7201 } else {
7202 qual[i].level = (dBm + 321) / 2;
7203 qual[i].qual = 0;
7204 qual[i].updated = IW_QUAL_QUAL_INVALID
7205 | IW_QUAL_LEVEL_UPDATED
7206 | IW_QUAL_DBM;
7207 }
7208 qual[i].noise = local->wstats.qual.noise;
7209 if (BSSList.index == cpu_to_le16(0xffff))
7210 break;
7211 }
7212 if (!i) {
7213 StatusRid status_rid; /* Card status info */
7214 readStatusRid(local, &status_rid, 1);
7215 for (i = 0;
7216 i < min(IW_MAX_AP, 4) &&
7217 (status_rid.bssid[i][0]
7218 & status_rid.bssid[i][1]
7219 & status_rid.bssid[i][2]
7220 & status_rid.bssid[i][3]
7221 & status_rid.bssid[i][4]
7222 & status_rid.bssid[i][5])!=0xff &&
7223 (status_rid.bssid[i][0]
7224 | status_rid.bssid[i][1]
7225 | status_rid.bssid[i][2]
7226 | status_rid.bssid[i][3]
7227 | status_rid.bssid[i][4]
7228 | status_rid.bssid[i][5]);
7229 i++) {
7230 memcpy(address[i].sa_data,
7231 status_rid.bssid[i], ETH_ALEN);
7232 address[i].sa_family = ARPHRD_ETHER;
7233 }
7234 } else {
7235 dwrq->flags = 1; /* Should be define'd */
7236 memcpy(extra + sizeof(struct sockaddr)*i,
7237 &qual, sizeof(struct iw_quality)*i);
7238 }
7239 dwrq->length = i;
7240
7241 kfree(qual);
7242 return 0;
7243 }
7244
7245 /*------------------------------------------------------------------*/
7246 /*
7247 * Wireless Handler : Initiate Scan
7248 */
airo_set_scan(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)7249 static int airo_set_scan(struct net_device *dev,
7250 struct iw_request_info *info,
7251 struct iw_point *dwrq,
7252 char *extra)
7253 {
7254 struct airo_info *ai = dev->ml_priv;
7255 Cmd cmd;
7256 Resp rsp;
7257 int wake = 0;
7258
7259 /* Note : you may have realised that, as this is a SET operation,
7260 * this is privileged and therefore a normal user can't
7261 * perform scanning.
7262 * This is not an error, while the device perform scanning,
7263 * traffic doesn't flow, so it's a perfect DoS...
7264 * Jean II */
7265 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
7266
7267 if (down_interruptible(&ai->sem))
7268 return -ERESTARTSYS;
7269
7270 /* If there's already a scan in progress, don't
7271 * trigger another one. */
7272 if (ai->scan_timeout > 0)
7273 goto out;
7274
7275 /* Initiate a scan command */
7276 ai->scan_timeout = RUN_AT(3*HZ);
7277 memset(&cmd, 0, sizeof(cmd));
7278 cmd.cmd=CMD_LISTBSS;
7279 issuecommand(ai, &cmd, &rsp);
7280 wake = 1;
7281
7282 out:
7283 up(&ai->sem);
7284 if (wake)
7285 wake_up_interruptible(&ai->thr_wait);
7286 return 0;
7287 }
7288
7289 /*------------------------------------------------------------------*/
7290 /*
7291 * Translate scan data returned from the card to a card independent
7292 * format that the Wireless Tools will understand - Jean II
7293 */
airo_translate_scan(struct net_device * dev,struct iw_request_info * info,char * current_ev,char * end_buf,BSSListRid * bss)7294 static inline char *airo_translate_scan(struct net_device *dev,
7295 struct iw_request_info *info,
7296 char *current_ev,
7297 char *end_buf,
7298 BSSListRid *bss)
7299 {
7300 struct airo_info *ai = dev->ml_priv;
7301 struct iw_event iwe; /* Temporary buffer */
7302 __le16 capabilities;
7303 char * current_val; /* For rates */
7304 int i;
7305 char * buf;
7306 u16 dBm;
7307
7308 /* First entry *MUST* be the AP MAC address */
7309 iwe.cmd = SIOCGIWAP;
7310 iwe.u.ap_addr.sa_family = ARPHRD_ETHER;
7311 memcpy(iwe.u.ap_addr.sa_data, bss->bssid, ETH_ALEN);
7312 current_ev = iwe_stream_add_event(info, current_ev, end_buf,
7313 &iwe, IW_EV_ADDR_LEN);
7314
7315 /* Other entries will be displayed in the order we give them */
7316
7317 /* Add the ESSID */
7318 iwe.u.data.length = bss->ssidLen;
7319 if(iwe.u.data.length > 32)
7320 iwe.u.data.length = 32;
7321 iwe.cmd = SIOCGIWESSID;
7322 iwe.u.data.flags = 1;
7323 current_ev = iwe_stream_add_point(info, current_ev, end_buf,
7324 &iwe, bss->ssid);
7325
7326 /* Add mode */
7327 iwe.cmd = SIOCGIWMODE;
7328 capabilities = bss->cap;
7329 if(capabilities & (CAP_ESS | CAP_IBSS)) {
7330 if(capabilities & CAP_ESS)
7331 iwe.u.mode = IW_MODE_MASTER;
7332 else
7333 iwe.u.mode = IW_MODE_ADHOC;
7334 current_ev = iwe_stream_add_event(info, current_ev, end_buf,
7335 &iwe, IW_EV_UINT_LEN);
7336 }
7337
7338 /* Add frequency */
7339 iwe.cmd = SIOCGIWFREQ;
7340 iwe.u.freq.m = le16_to_cpu(bss->dsChannel);
7341 iwe.u.freq.m = ieee80211_dsss_chan_to_freq(iwe.u.freq.m) * 100000;
7342 iwe.u.freq.e = 1;
7343 current_ev = iwe_stream_add_event(info, current_ev, end_buf,
7344 &iwe, IW_EV_FREQ_LEN);
7345
7346 dBm = le16_to_cpu(bss->dBm);
7347
7348 /* Add quality statistics */
7349 iwe.cmd = IWEVQUAL;
7350 if (ai->rssi) {
7351 iwe.u.qual.level = 0x100 - dBm;
7352 iwe.u.qual.qual = airo_dbm_to_pct(ai->rssi, dBm);
7353 iwe.u.qual.updated = IW_QUAL_QUAL_UPDATED
7354 | IW_QUAL_LEVEL_UPDATED
7355 | IW_QUAL_DBM;
7356 } else {
7357 iwe.u.qual.level = (dBm + 321) / 2;
7358 iwe.u.qual.qual = 0;
7359 iwe.u.qual.updated = IW_QUAL_QUAL_INVALID
7360 | IW_QUAL_LEVEL_UPDATED
7361 | IW_QUAL_DBM;
7362 }
7363 iwe.u.qual.noise = ai->wstats.qual.noise;
7364 current_ev = iwe_stream_add_event(info, current_ev, end_buf,
7365 &iwe, IW_EV_QUAL_LEN);
7366
7367 /* Add encryption capability */
7368 iwe.cmd = SIOCGIWENCODE;
7369 if(capabilities & CAP_PRIVACY)
7370 iwe.u.data.flags = IW_ENCODE_ENABLED | IW_ENCODE_NOKEY;
7371 else
7372 iwe.u.data.flags = IW_ENCODE_DISABLED;
7373 iwe.u.data.length = 0;
7374 current_ev = iwe_stream_add_point(info, current_ev, end_buf,
7375 &iwe, bss->ssid);
7376
7377 /* Rate : stuffing multiple values in a single event require a bit
7378 * more of magic - Jean II */
7379 current_val = current_ev + iwe_stream_lcp_len(info);
7380
7381 iwe.cmd = SIOCGIWRATE;
7382 /* Those two flags are ignored... */
7383 iwe.u.bitrate.fixed = iwe.u.bitrate.disabled = 0;
7384 /* Max 8 values */
7385 for(i = 0 ; i < 8 ; i++) {
7386 /* NULL terminated */
7387 if(bss->rates[i] == 0)
7388 break;
7389 /* Bit rate given in 500 kb/s units (+ 0x80) */
7390 iwe.u.bitrate.value = ((bss->rates[i] & 0x7f) * 500000);
7391 /* Add new value to event */
7392 current_val = iwe_stream_add_value(info, current_ev,
7393 current_val, end_buf,
7394 &iwe, IW_EV_PARAM_LEN);
7395 }
7396 /* Check if we added any event */
7397 if ((current_val - current_ev) > iwe_stream_lcp_len(info))
7398 current_ev = current_val;
7399
7400 /* Beacon interval */
7401 buf = kmalloc(30, GFP_KERNEL);
7402 if (buf) {
7403 iwe.cmd = IWEVCUSTOM;
7404 sprintf(buf, "bcn_int=%d", bss->beaconInterval);
7405 iwe.u.data.length = strlen(buf);
7406 current_ev = iwe_stream_add_point(info, current_ev, end_buf,
7407 &iwe, buf);
7408 kfree(buf);
7409 }
7410
7411 /* Put WPA/RSN Information Elements into the event stream */
7412 if (test_bit(FLAG_WPA_CAPABLE, &ai->flags)) {
7413 unsigned int num_null_ies = 0;
7414 u16 length = sizeof (bss->extra.iep);
7415 u8 *ie = (void *)&bss->extra.iep;
7416
7417 while ((length >= 2) && (num_null_ies < 2)) {
7418 if (2 + ie[1] > length) {
7419 /* Invalid element, don't continue parsing IE */
7420 break;
7421 }
7422
7423 switch (ie[0]) {
7424 case WLAN_EID_SSID:
7425 /* Two zero-length SSID elements
7426 * mean we're done parsing elements */
7427 if (!ie[1])
7428 num_null_ies++;
7429 break;
7430
7431 case WLAN_EID_GENERIC:
7432 if (ie[1] >= 4 &&
7433 ie[2] == 0x00 &&
7434 ie[3] == 0x50 &&
7435 ie[4] == 0xf2 &&
7436 ie[5] == 0x01) {
7437 iwe.cmd = IWEVGENIE;
7438 /* 64 is an arbitrary cut-off */
7439 iwe.u.data.length = min(ie[1] + 2,
7440 64);
7441 current_ev = iwe_stream_add_point(
7442 info, current_ev,
7443 end_buf, &iwe, ie);
7444 }
7445 break;
7446
7447 case WLAN_EID_RSN:
7448 iwe.cmd = IWEVGENIE;
7449 /* 64 is an arbitrary cut-off */
7450 iwe.u.data.length = min(ie[1] + 2, 64);
7451 current_ev = iwe_stream_add_point(
7452 info, current_ev, end_buf,
7453 &iwe, ie);
7454 break;
7455
7456 default:
7457 break;
7458 }
7459
7460 length -= 2 + ie[1];
7461 ie += 2 + ie[1];
7462 }
7463 }
7464 return current_ev;
7465 }
7466
7467 /*------------------------------------------------------------------*/
7468 /*
7469 * Wireless Handler : Read Scan Results
7470 */
airo_get_scan(struct net_device * dev,struct iw_request_info * info,struct iw_point * dwrq,char * extra)7471 static int airo_get_scan(struct net_device *dev,
7472 struct iw_request_info *info,
7473 struct iw_point *dwrq,
7474 char *extra)
7475 {
7476 struct airo_info *ai = dev->ml_priv;
7477 BSSListElement *net;
7478 int err = 0;
7479 char *current_ev = extra;
7480
7481 /* If a scan is in-progress, return -EAGAIN */
7482 if (ai->scan_timeout > 0)
7483 return -EAGAIN;
7484
7485 if (down_interruptible(&ai->sem))
7486 return -EAGAIN;
7487
7488 list_for_each_entry (net, &ai->network_list, list) {
7489 /* Translate to WE format this entry */
7490 current_ev = airo_translate_scan(dev, info, current_ev,
7491 extra + dwrq->length,
7492 &net->bss);
7493
7494 /* Check if there is space for one more entry */
7495 if((extra + dwrq->length - current_ev) <= IW_EV_ADDR_LEN) {
7496 /* Ask user space to try again with a bigger buffer */
7497 err = -E2BIG;
7498 goto out;
7499 }
7500 }
7501
7502 /* Length of data */
7503 dwrq->length = (current_ev - extra);
7504 dwrq->flags = 0; /* todo */
7505
7506 out:
7507 up(&ai->sem);
7508 return err;
7509 }
7510
7511 /*------------------------------------------------------------------*/
7512 /*
7513 * Commit handler : called after a bunch of SET operations
7514 */
airo_config_commit(struct net_device * dev,struct iw_request_info * info,void * zwrq,char * extra)7515 static int airo_config_commit(struct net_device *dev,
7516 struct iw_request_info *info, /* NULL */
7517 void *zwrq, /* NULL */
7518 char *extra) /* NULL */
7519 {
7520 struct airo_info *local = dev->ml_priv;
7521
7522 if (!test_bit (FLAG_COMMIT, &local->flags))
7523 return 0;
7524
7525 /* Some of the "SET" function may have modified some of the
7526 * parameters. It's now time to commit them in the card */
7527 disable_MAC(local, 1);
7528 if (test_bit (FLAG_RESET, &local->flags)) {
7529 APListRid APList_rid;
7530 SsidRid SSID_rid;
7531
7532 readAPListRid(local, &APList_rid);
7533 readSsidRid(local, &SSID_rid);
7534 if (test_bit(FLAG_MPI,&local->flags))
7535 setup_card(local, dev->dev_addr, 1 );
7536 else
7537 reset_airo_card(dev);
7538 disable_MAC(local, 1);
7539 writeSsidRid(local, &SSID_rid, 1);
7540 writeAPListRid(local, &APList_rid, 1);
7541 }
7542 if (down_interruptible(&local->sem))
7543 return -ERESTARTSYS;
7544 writeConfigRid(local, 0);
7545 enable_MAC(local, 0);
7546 if (test_bit (FLAG_RESET, &local->flags))
7547 airo_set_promisc(local);
7548 else
7549 up(&local->sem);
7550
7551 return 0;
7552 }
7553
7554 /*------------------------------------------------------------------*/
7555 /*
7556 * Structures to export the Wireless Handlers
7557 */
7558
7559 static const struct iw_priv_args airo_private_args[] = {
7560 /*{ cmd, set_args, get_args, name } */
7561 { AIROIOCTL, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7562 IW_PRIV_TYPE_BYTE | 2047, "airoioctl" },
7563 { AIROIDIFC, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7564 IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 1, "airoidifc" },
7565 };
7566
7567 static const iw_handler airo_handler[] =
7568 {
7569 (iw_handler) airo_config_commit, /* SIOCSIWCOMMIT */
7570 (iw_handler) airo_get_name, /* SIOCGIWNAME */
7571 (iw_handler) NULL, /* SIOCSIWNWID */
7572 (iw_handler) NULL, /* SIOCGIWNWID */
7573 (iw_handler) airo_set_freq, /* SIOCSIWFREQ */
7574 (iw_handler) airo_get_freq, /* SIOCGIWFREQ */
7575 (iw_handler) airo_set_mode, /* SIOCSIWMODE */
7576 (iw_handler) airo_get_mode, /* SIOCGIWMODE */
7577 (iw_handler) airo_set_sens, /* SIOCSIWSENS */
7578 (iw_handler) airo_get_sens, /* SIOCGIWSENS */
7579 (iw_handler) NULL, /* SIOCSIWRANGE */
7580 (iw_handler) airo_get_range, /* SIOCGIWRANGE */
7581 (iw_handler) NULL, /* SIOCSIWPRIV */
7582 (iw_handler) NULL, /* SIOCGIWPRIV */
7583 (iw_handler) NULL, /* SIOCSIWSTATS */
7584 (iw_handler) NULL, /* SIOCGIWSTATS */
7585 iw_handler_set_spy, /* SIOCSIWSPY */
7586 iw_handler_get_spy, /* SIOCGIWSPY */
7587 iw_handler_set_thrspy, /* SIOCSIWTHRSPY */
7588 iw_handler_get_thrspy, /* SIOCGIWTHRSPY */
7589 (iw_handler) airo_set_wap, /* SIOCSIWAP */
7590 (iw_handler) airo_get_wap, /* SIOCGIWAP */
7591 (iw_handler) NULL, /* -- hole -- */
7592 (iw_handler) airo_get_aplist, /* SIOCGIWAPLIST */
7593 (iw_handler) airo_set_scan, /* SIOCSIWSCAN */
7594 (iw_handler) airo_get_scan, /* SIOCGIWSCAN */
7595 (iw_handler) airo_set_essid, /* SIOCSIWESSID */
7596 (iw_handler) airo_get_essid, /* SIOCGIWESSID */
7597 (iw_handler) airo_set_nick, /* SIOCSIWNICKN */
7598 (iw_handler) airo_get_nick, /* SIOCGIWNICKN */
7599 (iw_handler) NULL, /* -- hole -- */
7600 (iw_handler) NULL, /* -- hole -- */
7601 (iw_handler) airo_set_rate, /* SIOCSIWRATE */
7602 (iw_handler) airo_get_rate, /* SIOCGIWRATE */
7603 (iw_handler) airo_set_rts, /* SIOCSIWRTS */
7604 (iw_handler) airo_get_rts, /* SIOCGIWRTS */
7605 (iw_handler) airo_set_frag, /* SIOCSIWFRAG */
7606 (iw_handler) airo_get_frag, /* SIOCGIWFRAG */
7607 (iw_handler) airo_set_txpow, /* SIOCSIWTXPOW */
7608 (iw_handler) airo_get_txpow, /* SIOCGIWTXPOW */
7609 (iw_handler) airo_set_retry, /* SIOCSIWRETRY */
7610 (iw_handler) airo_get_retry, /* SIOCGIWRETRY */
7611 (iw_handler) airo_set_encode, /* SIOCSIWENCODE */
7612 (iw_handler) airo_get_encode, /* SIOCGIWENCODE */
7613 (iw_handler) airo_set_power, /* SIOCSIWPOWER */
7614 (iw_handler) airo_get_power, /* SIOCGIWPOWER */
7615 (iw_handler) NULL, /* -- hole -- */
7616 (iw_handler) NULL, /* -- hole -- */
7617 (iw_handler) NULL, /* SIOCSIWGENIE */
7618 (iw_handler) NULL, /* SIOCGIWGENIE */
7619 (iw_handler) airo_set_auth, /* SIOCSIWAUTH */
7620 (iw_handler) airo_get_auth, /* SIOCGIWAUTH */
7621 (iw_handler) airo_set_encodeext, /* SIOCSIWENCODEEXT */
7622 (iw_handler) airo_get_encodeext, /* SIOCGIWENCODEEXT */
7623 (iw_handler) NULL, /* SIOCSIWPMKSA */
7624 };
7625
7626 /* Note : don't describe AIROIDIFC and AIROOLDIDIFC in here.
7627 * We want to force the use of the ioctl code, because those can't be
7628 * won't work the iw_handler code (because they simultaneously read
7629 * and write data and iw_handler can't do that).
7630 * Note that it's perfectly legal to read/write on a single ioctl command,
7631 * you just can't use iwpriv and need to force it via the ioctl handler.
7632 * Jean II */
7633 static const iw_handler airo_private_handler[] =
7634 {
7635 NULL, /* SIOCIWFIRSTPRIV */
7636 };
7637
7638 static const struct iw_handler_def airo_handler_def =
7639 {
7640 .num_standard = ARRAY_SIZE(airo_handler),
7641 .num_private = ARRAY_SIZE(airo_private_handler),
7642 .num_private_args = ARRAY_SIZE(airo_private_args),
7643 .standard = airo_handler,
7644 .private = airo_private_handler,
7645 .private_args = airo_private_args,
7646 .get_wireless_stats = airo_get_wireless_stats,
7647 };
7648
7649 /*
7650 * This defines the configuration part of the Wireless Extensions
7651 * Note : irq and spinlock protection will occur in the subroutines
7652 *
7653 * TODO :
7654 * o Check input value more carefully and fill correct values in range
7655 * o Test and shakeout the bugs (if any)
7656 *
7657 * Jean II
7658 *
7659 * Javier Achirica did a great job of merging code from the unnamed CISCO
7660 * developer that added support for flashing the card.
7661 */
airo_ioctl(struct net_device * dev,struct ifreq * rq,int cmd)7662 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd)
7663 {
7664 int rc = 0;
7665 struct airo_info *ai = dev->ml_priv;
7666
7667 if (ai->power.event)
7668 return 0;
7669
7670 switch (cmd) {
7671 #ifdef CISCO_EXT
7672 case AIROIDIFC:
7673 #ifdef AIROOLDIDIFC
7674 case AIROOLDIDIFC:
7675 #endif
7676 {
7677 int val = AIROMAGIC;
7678 aironet_ioctl com;
7679 if (copy_from_user(&com,rq->ifr_data,sizeof(com)))
7680 rc = -EFAULT;
7681 else if (copy_to_user(com.data,(char *)&val,sizeof(val)))
7682 rc = -EFAULT;
7683 }
7684 break;
7685
7686 case AIROIOCTL:
7687 #ifdef AIROOLDIOCTL
7688 case AIROOLDIOCTL:
7689 #endif
7690 /* Get the command struct and hand it off for evaluation by
7691 * the proper subfunction
7692 */
7693 {
7694 aironet_ioctl com;
7695 if (copy_from_user(&com,rq->ifr_data,sizeof(com))) {
7696 rc = -EFAULT;
7697 break;
7698 }
7699
7700 /* Separate R/W functions bracket legality here
7701 */
7702 if ( com.command == AIRORSWVERSION ) {
7703 if (copy_to_user(com.data, swversion, sizeof(swversion)))
7704 rc = -EFAULT;
7705 else
7706 rc = 0;
7707 }
7708 else if ( com.command <= AIRORRID)
7709 rc = readrids(dev,&com);
7710 else if ( com.command >= AIROPCAP && com.command <= (AIROPLEAPUSR+2) )
7711 rc = writerids(dev,&com);
7712 else if ( com.command >= AIROFLSHRST && com.command <= AIRORESTART )
7713 rc = flashcard(dev,&com);
7714 else
7715 rc = -EINVAL; /* Bad command in ioctl */
7716 }
7717 break;
7718 #endif /* CISCO_EXT */
7719
7720 // All other calls are currently unsupported
7721 default:
7722 rc = -EOPNOTSUPP;
7723 }
7724 return rc;
7725 }
7726
7727 /*
7728 * Get the Wireless stats out of the driver
7729 * Note : irq and spinlock protection will occur in the subroutines
7730 *
7731 * TODO :
7732 * o Check if work in Ad-Hoc mode (otherwise, use SPY, as in wvlan_cs)
7733 *
7734 * Jean
7735 */
airo_read_wireless_stats(struct airo_info * local)7736 static void airo_read_wireless_stats(struct airo_info *local)
7737 {
7738 StatusRid status_rid;
7739 StatsRid stats_rid;
7740 CapabilityRid cap_rid;
7741 __le32 *vals = stats_rid.vals;
7742
7743 /* Get stats out of the card */
7744 clear_bit(JOB_WSTATS, &local->jobs);
7745 if (local->power.event) {
7746 up(&local->sem);
7747 return;
7748 }
7749 readCapabilityRid(local, &cap_rid, 0);
7750 readStatusRid(local, &status_rid, 0);
7751 readStatsRid(local, &stats_rid, RID_STATS, 0);
7752 up(&local->sem);
7753
7754 /* The status */
7755 local->wstats.status = le16_to_cpu(status_rid.mode);
7756
7757 /* Signal quality and co */
7758 if (local->rssi) {
7759 local->wstats.qual.level =
7760 airo_rssi_to_dbm(local->rssi,
7761 le16_to_cpu(status_rid.sigQuality));
7762 /* normalizedSignalStrength appears to be a percentage */
7763 local->wstats.qual.qual =
7764 le16_to_cpu(status_rid.normalizedSignalStrength);
7765 } else {
7766 local->wstats.qual.level =
7767 (le16_to_cpu(status_rid.normalizedSignalStrength) + 321) / 2;
7768 local->wstats.qual.qual = airo_get_quality(&status_rid, &cap_rid);
7769 }
7770 if (le16_to_cpu(status_rid.len) >= 124) {
7771 local->wstats.qual.noise = 0x100 - status_rid.noisedBm;
7772 local->wstats.qual.updated = IW_QUAL_ALL_UPDATED | IW_QUAL_DBM;
7773 } else {
7774 local->wstats.qual.noise = 0;
7775 local->wstats.qual.updated = IW_QUAL_QUAL_UPDATED | IW_QUAL_LEVEL_UPDATED | IW_QUAL_NOISE_INVALID | IW_QUAL_DBM;
7776 }
7777
7778 /* Packets discarded in the wireless adapter due to wireless
7779 * specific problems */
7780 local->wstats.discard.nwid = le32_to_cpu(vals[56]) +
7781 le32_to_cpu(vals[57]) +
7782 le32_to_cpu(vals[58]); /* SSID Mismatch */
7783 local->wstats.discard.code = le32_to_cpu(vals[6]);/* RxWepErr */
7784 local->wstats.discard.fragment = le32_to_cpu(vals[30]);
7785 local->wstats.discard.retries = le32_to_cpu(vals[10]);
7786 local->wstats.discard.misc = le32_to_cpu(vals[1]) +
7787 le32_to_cpu(vals[32]);
7788 local->wstats.miss.beacon = le32_to_cpu(vals[34]);
7789 }
7790
airo_get_wireless_stats(struct net_device * dev)7791 static struct iw_statistics *airo_get_wireless_stats(struct net_device *dev)
7792 {
7793 struct airo_info *local = dev->ml_priv;
7794
7795 if (!test_bit(JOB_WSTATS, &local->jobs)) {
7796 /* Get stats out of the card if available */
7797 if (down_trylock(&local->sem) != 0) {
7798 set_bit(JOB_WSTATS, &local->jobs);
7799 wake_up_interruptible(&local->thr_wait);
7800 } else
7801 airo_read_wireless_stats(local);
7802 }
7803
7804 return &local->wstats;
7805 }
7806
7807 #ifdef CISCO_EXT
7808 /*
7809 * This just translates from driver IOCTL codes to the command codes to
7810 * feed to the radio's host interface. Things can be added/deleted
7811 * as needed. This represents the READ side of control I/O to
7812 * the card
7813 */
readrids(struct net_device * dev,aironet_ioctl * comp)7814 static int readrids(struct net_device *dev, aironet_ioctl *comp) {
7815 unsigned short ridcode;
7816 unsigned char *iobuf;
7817 int len;
7818 struct airo_info *ai = dev->ml_priv;
7819
7820 if (test_bit(FLAG_FLASHING, &ai->flags))
7821 return -EIO;
7822
7823 switch(comp->command)
7824 {
7825 case AIROGCAP: ridcode = RID_CAPABILITIES; break;
7826 case AIROGCFG: ridcode = RID_CONFIG;
7827 if (test_bit(FLAG_COMMIT, &ai->flags)) {
7828 disable_MAC (ai, 1);
7829 writeConfigRid (ai, 1);
7830 enable_MAC(ai, 1);
7831 }
7832 break;
7833 case AIROGSLIST: ridcode = RID_SSID; break;
7834 case AIROGVLIST: ridcode = RID_APLIST; break;
7835 case AIROGDRVNAM: ridcode = RID_DRVNAME; break;
7836 case AIROGEHTENC: ridcode = RID_ETHERENCAP; break;
7837 case AIROGWEPKTMP: ridcode = RID_WEP_TEMP;
7838 /* Only super-user can read WEP keys */
7839 if (!capable(CAP_NET_ADMIN))
7840 return -EPERM;
7841 break;
7842 case AIROGWEPKNV: ridcode = RID_WEP_PERM;
7843 /* Only super-user can read WEP keys */
7844 if (!capable(CAP_NET_ADMIN))
7845 return -EPERM;
7846 break;
7847 case AIROGSTAT: ridcode = RID_STATUS; break;
7848 case AIROGSTATSD32: ridcode = RID_STATSDELTA; break;
7849 case AIROGSTATSC32: ridcode = RID_STATS; break;
7850 case AIROGMICSTATS:
7851 if (copy_to_user(comp->data, &ai->micstats,
7852 min((int)comp->len,(int)sizeof(ai->micstats))))
7853 return -EFAULT;
7854 return 0;
7855 case AIRORRID: ridcode = comp->ridnum; break;
7856 default:
7857 return -EINVAL;
7858 break;
7859 }
7860
7861 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7862 return -ENOMEM;
7863
7864 PC4500_readrid(ai,ridcode,iobuf,RIDSIZE, 1);
7865 /* get the count of bytes in the rid docs say 1st 2 bytes is it.
7866 * then return it to the user
7867 * 9/22/2000 Honor user given length
7868 */
7869 len = comp->len;
7870
7871 if (copy_to_user(comp->data, iobuf, min(len, (int)RIDSIZE))) {
7872 kfree (iobuf);
7873 return -EFAULT;
7874 }
7875 kfree (iobuf);
7876 return 0;
7877 }
7878
7879 /*
7880 * Danger Will Robinson write the rids here
7881 */
7882
writerids(struct net_device * dev,aironet_ioctl * comp)7883 static int writerids(struct net_device *dev, aironet_ioctl *comp) {
7884 struct airo_info *ai = dev->ml_priv;
7885 int ridcode;
7886 int enabled;
7887 static int (* writer)(struct airo_info *, u16 rid, const void *, int, int);
7888 unsigned char *iobuf;
7889
7890 /* Only super-user can write RIDs */
7891 if (!capable(CAP_NET_ADMIN))
7892 return -EPERM;
7893
7894 if (test_bit(FLAG_FLASHING, &ai->flags))
7895 return -EIO;
7896
7897 ridcode = 0;
7898 writer = do_writerid;
7899
7900 switch(comp->command)
7901 {
7902 case AIROPSIDS: ridcode = RID_SSID; break;
7903 case AIROPCAP: ridcode = RID_CAPABILITIES; break;
7904 case AIROPAPLIST: ridcode = RID_APLIST; break;
7905 case AIROPCFG: ai->config.len = 0;
7906 clear_bit(FLAG_COMMIT, &ai->flags);
7907 ridcode = RID_CONFIG; break;
7908 case AIROPWEPKEYNV: ridcode = RID_WEP_PERM; break;
7909 case AIROPLEAPUSR: ridcode = RID_LEAPUSERNAME; break;
7910 case AIROPLEAPPWD: ridcode = RID_LEAPPASSWORD; break;
7911 case AIROPWEPKEY: ridcode = RID_WEP_TEMP; writer = PC4500_writerid;
7912 break;
7913 case AIROPLEAPUSR+1: ridcode = 0xFF2A; break;
7914 case AIROPLEAPUSR+2: ridcode = 0xFF2B; break;
7915
7916 /* this is not really a rid but a command given to the card
7917 * same with MAC off
7918 */
7919 case AIROPMACON:
7920 if (enable_MAC(ai, 1) != 0)
7921 return -EIO;
7922 return 0;
7923
7924 /*
7925 * Evidently this code in the airo driver does not get a symbol
7926 * as disable_MAC. it's probably so short the compiler does not gen one.
7927 */
7928 case AIROPMACOFF:
7929 disable_MAC(ai, 1);
7930 return 0;
7931
7932 /* This command merely clears the counts does not actually store any data
7933 * only reads rid. But as it changes the cards state, I put it in the
7934 * writerid routines.
7935 */
7936 case AIROPSTCLR:
7937 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7938 return -ENOMEM;
7939
7940 PC4500_readrid(ai,RID_STATSDELTACLEAR,iobuf,RIDSIZE, 1);
7941
7942 enabled = ai->micstats.enabled;
7943 memset(&ai->micstats,0,sizeof(ai->micstats));
7944 ai->micstats.enabled = enabled;
7945
7946 if (copy_to_user(comp->data, iobuf,
7947 min((int)comp->len, (int)RIDSIZE))) {
7948 kfree (iobuf);
7949 return -EFAULT;
7950 }
7951 kfree (iobuf);
7952 return 0;
7953
7954 default:
7955 return -EOPNOTSUPP; /* Blarg! */
7956 }
7957 if(comp->len > RIDSIZE)
7958 return -EINVAL;
7959
7960 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7961 return -ENOMEM;
7962
7963 if (copy_from_user(iobuf,comp->data,comp->len)) {
7964 kfree (iobuf);
7965 return -EFAULT;
7966 }
7967
7968 if (comp->command == AIROPCFG) {
7969 ConfigRid *cfg = (ConfigRid *)iobuf;
7970
7971 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags))
7972 cfg->opmode |= MODE_MIC;
7973
7974 if ((cfg->opmode & MODE_CFG_MASK) == MODE_STA_IBSS)
7975 set_bit (FLAG_ADHOC, &ai->flags);
7976 else
7977 clear_bit (FLAG_ADHOC, &ai->flags);
7978 }
7979
7980 if((*writer)(ai, ridcode, iobuf,comp->len,1)) {
7981 kfree (iobuf);
7982 return -EIO;
7983 }
7984 kfree (iobuf);
7985 return 0;
7986 }
7987
7988 /*****************************************************************************
7989 * Ancillary flash / mod functions much black magic lurkes here *
7990 *****************************************************************************
7991 */
7992
7993 /*
7994 * Flash command switch table
7995 */
7996
flashcard(struct net_device * dev,aironet_ioctl * comp)7997 static int flashcard(struct net_device *dev, aironet_ioctl *comp) {
7998 int z;
7999
8000 /* Only super-user can modify flash */
8001 if (!capable(CAP_NET_ADMIN))
8002 return -EPERM;
8003
8004 switch(comp->command)
8005 {
8006 case AIROFLSHRST:
8007 return cmdreset((struct airo_info *)dev->ml_priv);
8008
8009 case AIROFLSHSTFL:
8010 if (!AIRO_FLASH(dev) &&
8011 (AIRO_FLASH(dev) = kmalloc(FLASHSIZE, GFP_KERNEL)) == NULL)
8012 return -ENOMEM;
8013 return setflashmode((struct airo_info *)dev->ml_priv);
8014
8015 case AIROFLSHGCHR: /* Get char from aux */
8016 if(comp->len != sizeof(int))
8017 return -EINVAL;
8018 if (copy_from_user(&z,comp->data,comp->len))
8019 return -EFAULT;
8020 return flashgchar((struct airo_info *)dev->ml_priv, z, 8000);
8021
8022 case AIROFLSHPCHR: /* Send char to card. */
8023 if(comp->len != sizeof(int))
8024 return -EINVAL;
8025 if (copy_from_user(&z,comp->data,comp->len))
8026 return -EFAULT;
8027 return flashpchar((struct airo_info *)dev->ml_priv, z, 8000);
8028
8029 case AIROFLPUTBUF: /* Send 32k to card */
8030 if (!AIRO_FLASH(dev))
8031 return -ENOMEM;
8032 if(comp->len > FLASHSIZE)
8033 return -EINVAL;
8034 if (copy_from_user(AIRO_FLASH(dev), comp->data, comp->len))
8035 return -EFAULT;
8036
8037 flashputbuf((struct airo_info *)dev->ml_priv);
8038 return 0;
8039
8040 case AIRORESTART:
8041 if (flashrestart((struct airo_info *)dev->ml_priv, dev))
8042 return -EIO;
8043 return 0;
8044 }
8045 return -EINVAL;
8046 }
8047
8048 #define FLASH_COMMAND 0x7e7e
8049
8050 /*
8051 * STEP 1)
8052 * Disable MAC and do soft reset on
8053 * card.
8054 */
8055
cmdreset(struct airo_info * ai)8056 static int cmdreset(struct airo_info *ai) {
8057 disable_MAC(ai, 1);
8058
8059 if(!waitbusy (ai)){
8060 airo_print_info(ai->dev->name, "Waitbusy hang before RESET");
8061 return -EBUSY;
8062 }
8063
8064 OUT4500(ai,COMMAND,CMD_SOFTRESET);
8065
8066 ssleep(1); /* WAS 600 12/7/00 */
8067
8068 if(!waitbusy (ai)){
8069 airo_print_info(ai->dev->name, "Waitbusy hang AFTER RESET");
8070 return -EBUSY;
8071 }
8072 return 0;
8073 }
8074
8075 /* STEP 2)
8076 * Put the card in legendary flash
8077 * mode
8078 */
8079
setflashmode(struct airo_info * ai)8080 static int setflashmode (struct airo_info *ai) {
8081 set_bit (FLAG_FLASHING, &ai->flags);
8082
8083 OUT4500(ai, SWS0, FLASH_COMMAND);
8084 OUT4500(ai, SWS1, FLASH_COMMAND);
8085 if (probe) {
8086 OUT4500(ai, SWS0, FLASH_COMMAND);
8087 OUT4500(ai, COMMAND,0x10);
8088 } else {
8089 OUT4500(ai, SWS2, FLASH_COMMAND);
8090 OUT4500(ai, SWS3, FLASH_COMMAND);
8091 OUT4500(ai, COMMAND,0);
8092 }
8093 msleep(500); /* 500ms delay */
8094
8095 if(!waitbusy(ai)) {
8096 clear_bit (FLAG_FLASHING, &ai->flags);
8097 airo_print_info(ai->dev->name, "Waitbusy hang after setflash mode");
8098 return -EIO;
8099 }
8100 return 0;
8101 }
8102
8103 /* Put character to SWS0 wait for dwelltime
8104 * x 50us for echo .
8105 */
8106
flashpchar(struct airo_info * ai,int byte,int dwelltime)8107 static int flashpchar(struct airo_info *ai,int byte,int dwelltime) {
8108 int echo;
8109 int waittime;
8110
8111 byte |= 0x8000;
8112
8113 if(dwelltime == 0 )
8114 dwelltime = 200;
8115
8116 waittime=dwelltime;
8117
8118 /* Wait for busy bit d15 to go false indicating buffer empty */
8119 while ((IN4500 (ai, SWS0) & 0x8000) && waittime > 0) {
8120 udelay (50);
8121 waittime -= 50;
8122 }
8123
8124 /* timeout for busy clear wait */
8125 if(waittime <= 0 ){
8126 airo_print_info(ai->dev->name, "flash putchar busywait timeout!");
8127 return -EBUSY;
8128 }
8129
8130 /* Port is clear now write byte and wait for it to echo back */
8131 do {
8132 OUT4500(ai,SWS0,byte);
8133 udelay(50);
8134 dwelltime -= 50;
8135 echo = IN4500(ai,SWS1);
8136 } while (dwelltime >= 0 && echo != byte);
8137
8138 OUT4500(ai,SWS1,0);
8139
8140 return (echo == byte) ? 0 : -EIO;
8141 }
8142
8143 /*
8144 * Get a character from the card matching matchbyte
8145 * Step 3)
8146 */
flashgchar(struct airo_info * ai,int matchbyte,int dwelltime)8147 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime){
8148 int rchar;
8149 unsigned char rbyte=0;
8150
8151 do {
8152 rchar = IN4500(ai,SWS1);
8153
8154 if(dwelltime && !(0x8000 & rchar)){
8155 dwelltime -= 10;
8156 mdelay(10);
8157 continue;
8158 }
8159 rbyte = 0xff & rchar;
8160
8161 if( (rbyte == matchbyte) && (0x8000 & rchar) ){
8162 OUT4500(ai,SWS1,0);
8163 return 0;
8164 }
8165 if( rbyte == 0x81 || rbyte == 0x82 || rbyte == 0x83 || rbyte == 0x1a || 0xffff == rchar)
8166 break;
8167 OUT4500(ai,SWS1,0);
8168
8169 }while(dwelltime > 0);
8170 return -EIO;
8171 }
8172
8173 /*
8174 * Transfer 32k of firmware data from user buffer to our buffer and
8175 * send to the card
8176 */
8177
flashputbuf(struct airo_info * ai)8178 static int flashputbuf(struct airo_info *ai){
8179 int nwords;
8180
8181 /* Write stuff */
8182 if (test_bit(FLAG_MPI,&ai->flags))
8183 memcpy_toio(ai->pciaux + 0x8000, ai->flash, FLASHSIZE);
8184 else {
8185 OUT4500(ai,AUXPAGE,0x100);
8186 OUT4500(ai,AUXOFF,0);
8187
8188 for(nwords=0;nwords != FLASHSIZE / 2;nwords++){
8189 OUT4500(ai,AUXDATA,ai->flash[nwords] & 0xffff);
8190 }
8191 }
8192 OUT4500(ai,SWS0,0x8000);
8193
8194 return 0;
8195 }
8196
8197 /*
8198 *
8199 */
flashrestart(struct airo_info * ai,struct net_device * dev)8200 static int flashrestart(struct airo_info *ai,struct net_device *dev){
8201 int i,status;
8202
8203 ssleep(1); /* Added 12/7/00 */
8204 clear_bit (FLAG_FLASHING, &ai->flags);
8205 if (test_bit(FLAG_MPI, &ai->flags)) {
8206 status = mpi_init_descriptors(ai);
8207 if (status != SUCCESS)
8208 return status;
8209 }
8210 status = setup_card(ai, dev->dev_addr, 1);
8211
8212 if (!test_bit(FLAG_MPI,&ai->flags))
8213 for( i = 0; i < MAX_FIDS; i++ ) {
8214 ai->fids[i] = transmit_allocate
8215 ( ai, AIRO_DEF_MTU, i >= MAX_FIDS / 2 );
8216 }
8217
8218 ssleep(1); /* Added 12/7/00 */
8219 return status;
8220 }
8221 #endif /* CISCO_EXT */
8222
8223 /*
8224 This program is free software; you can redistribute it and/or
8225 modify it under the terms of the GNU General Public License
8226 as published by the Free Software Foundation; either version 2
8227 of the License, or (at your option) any later version.
8228
8229 This program is distributed in the hope that it will be useful,
8230 but WITHOUT ANY WARRANTY; without even the implied warranty of
8231 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
8232 GNU General Public License for more details.
8233
8234 In addition:
8235
8236 Redistribution and use in source and binary forms, with or without
8237 modification, are permitted provided that the following conditions
8238 are met:
8239
8240 1. Redistributions of source code must retain the above copyright
8241 notice, this list of conditions and the following disclaimer.
8242 2. Redistributions in binary form must reproduce the above copyright
8243 notice, this list of conditions and the following disclaimer in the
8244 documentation and/or other materials provided with the distribution.
8245 3. The name of the author may not be used to endorse or promote
8246 products derived from this software without specific prior written
8247 permission.
8248
8249 THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
8250 IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
8251 WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
8252 ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
8253 INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
8254 (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
8255 SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
8256 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
8257 STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
8258 IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
8259 POSSIBILITY OF SUCH DAMAGE.
8260 */
8261
8262 module_init(airo_init_module);
8263 module_exit(airo_cleanup_module);
8264