2 * mac80211 work implementation
4 * Copyright 2003-2008, Jouni Malinen <j@w1.fi>
5 * Copyright 2004, Instant802 Networks, Inc.
6 * Copyright 2005, Devicescape Software, Inc.
7 * Copyright 2006-2007 Jiri Benc <jbenc@suse.cz>
8 * Copyright 2007, Michael Wu <flamingice@sourmilk.net>
9 * Copyright 2009, Johannes Berg <johannes@sipsolutions.net>
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of the GNU General Public License version 2 as
13 * published by the Free Software Foundation.
16 #include <linux/delay.h>
17 #include <linux/if_ether.h>
18 #include <linux/skbuff.h>
19 #include <linux/if_arp.h>
20 #include <linux/etherdevice.h>
21 #include <linux/crc32.h>
22 #include <linux/slab.h>
23 #include <net/mac80211.h>
24 #include <asm/unaligned.h>
26 #include "ieee80211_i.h"
28 #include "driver-ops.h"
30 #define IEEE80211_AUTH_TIMEOUT (HZ / 5)
31 #define IEEE80211_AUTH_MAX_TRIES 3
32 #define IEEE80211_ASSOC_TIMEOUT (HZ / 5)
33 #define IEEE80211_ASSOC_MAX_TRIES 3
44 static inline void ASSERT_WORK_MTX(struct ieee80211_local *local)
46 lockdep_assert_held(&local->mtx);
50 * We can have multiple work items (and connection probing)
51 * scheduling this timer, but we need to take care to only
52 * reschedule it when it should fire _earlier_ than it was
53 * asked for before, or if it's not pending right now. This
54 * function ensures that. Note that it then is required to
55 * run this function for all timeouts after the first one
56 * has happened -- the work that runs from this timer will
59 static void run_again(struct ieee80211_local *local,
60 unsigned long timeout)
62 ASSERT_WORK_MTX(local);
64 if (!timer_pending(&local->work_timer) ||
65 time_before(timeout, local->work_timer.expires))
66 mod_timer(&local->work_timer, timeout);
69 void free_work(struct ieee80211_work *wk)
71 kfree_rcu(wk, rcu_head);
74 static int ieee80211_compatible_rates(const u8 *supp_rates, int supp_rates_len,
75 struct ieee80211_supported_band *sband,
81 for (i = 0; i < supp_rates_len; i++) {
82 int rate = (supp_rates[i] & 0x7F) * 5;
84 for (j = 0; j < sband->n_bitrates; j++)
85 if (sband->bitrates[j].bitrate == rate) {
95 /* frame sending functions */
97 static void ieee80211_add_ht_ie(struct sk_buff *skb, const u8 *ht_info_ie,
98 struct ieee80211_supported_band *sband,
99 struct ieee80211_channel *channel,
100 enum ieee80211_smps_mode smps)
102 struct ieee80211_ht_info *ht_info;
104 u32 flags = channel->flags;
105 u16 cap = sband->ht_cap.cap;
108 if (!sband->ht_cap.ht_supported)
114 if (ht_info_ie[1] < sizeof(struct ieee80211_ht_info))
117 ht_info = (struct ieee80211_ht_info *)(ht_info_ie + 2);
119 /* determine capability flags */
121 switch (ht_info->ht_param & IEEE80211_HT_PARAM_CHA_SEC_OFFSET) {
122 case IEEE80211_HT_PARAM_CHA_SEC_ABOVE:
123 if (flags & IEEE80211_CHAN_NO_HT40PLUS) {
124 cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
125 cap &= ~IEEE80211_HT_CAP_SGI_40;
128 case IEEE80211_HT_PARAM_CHA_SEC_BELOW:
129 if (flags & IEEE80211_CHAN_NO_HT40MINUS) {
130 cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
131 cap &= ~IEEE80211_HT_CAP_SGI_40;
136 /* set SM PS mode properly */
137 cap &= ~IEEE80211_HT_CAP_SM_PS;
139 case IEEE80211_SMPS_AUTOMATIC:
140 case IEEE80211_SMPS_NUM_MODES:
142 case IEEE80211_SMPS_OFF:
143 cap |= WLAN_HT_CAP_SM_PS_DISABLED <<
144 IEEE80211_HT_CAP_SM_PS_SHIFT;
146 case IEEE80211_SMPS_STATIC:
147 cap |= WLAN_HT_CAP_SM_PS_STATIC <<
148 IEEE80211_HT_CAP_SM_PS_SHIFT;
150 case IEEE80211_SMPS_DYNAMIC:
151 cap |= WLAN_HT_CAP_SM_PS_DYNAMIC <<
152 IEEE80211_HT_CAP_SM_PS_SHIFT;
156 /* reserve and fill IE */
158 pos = skb_put(skb, sizeof(struct ieee80211_ht_cap) + 2);
159 *pos++ = WLAN_EID_HT_CAPABILITY;
160 *pos++ = sizeof(struct ieee80211_ht_cap);
161 memset(pos, 0, sizeof(struct ieee80211_ht_cap));
163 /* capability flags */
164 tmp = cpu_to_le16(cap);
165 memcpy(pos, &tmp, sizeof(u16));
168 /* AMPDU parameters */
169 *pos++ = sband->ht_cap.ampdu_factor |
170 (sband->ht_cap.ampdu_density <<
171 IEEE80211_HT_AMPDU_PARM_DENSITY_SHIFT);
174 memcpy(pos, &sband->ht_cap.mcs, sizeof(sband->ht_cap.mcs));
175 pos += sizeof(sband->ht_cap.mcs);
177 /* extended capabilities */
178 pos += sizeof(__le16);
180 /* BF capabilities */
181 pos += sizeof(__le32);
183 /* antenna selection */
187 static void ieee80211_send_assoc(struct ieee80211_sub_if_data *sdata,
188 struct ieee80211_work *wk)
190 struct ieee80211_local *local = sdata->local;
192 struct ieee80211_mgmt *mgmt;
194 size_t offset = 0, noffset;
195 int i, count, rates_len, supp_rates_len;
197 struct ieee80211_supported_band *sband;
200 sband = local->hw.wiphy->bands[wk->chan->band];
202 if (wk->assoc.supp_rates_len) {
204 * Get all rates supported by the device and the AP as
205 * some APs don't like getting a superset of their rates
206 * in the association request (e.g. D-Link DAP 1353 in
209 rates_len = ieee80211_compatible_rates(wk->assoc.supp_rates,
210 wk->assoc.supp_rates_len,
214 * In case AP not provide any supported rates information
215 * before association, we send information element(s) with
216 * all rates that we support.
219 rates_len = sband->n_bitrates;
222 skb = alloc_skb(local->hw.extra_tx_headroom +
223 sizeof(*mgmt) + /* bit too much but doesn't matter */
224 2 + wk->assoc.ssid_len + /* SSID */
225 4 + rates_len + /* (extended) rates */
226 4 + /* power capability */
227 2 + 2 * sband->n_channels + /* supported channels */
228 2 + sizeof(struct ieee80211_ht_cap) + /* HT */
229 wk->ie_len + /* extra IEs */
235 skb_reserve(skb, local->hw.extra_tx_headroom);
237 capab = WLAN_CAPABILITY_ESS;
239 if (sband->band == IEEE80211_BAND_2GHZ) {
240 if (!(local->hw.flags & IEEE80211_HW_2GHZ_SHORT_SLOT_INCAPABLE))
241 capab |= WLAN_CAPABILITY_SHORT_SLOT_TIME;
242 if (!(local->hw.flags & IEEE80211_HW_2GHZ_SHORT_PREAMBLE_INCAPABLE))
243 capab |= WLAN_CAPABILITY_SHORT_PREAMBLE;
246 if (wk->assoc.capability & WLAN_CAPABILITY_PRIVACY)
247 capab |= WLAN_CAPABILITY_PRIVACY;
249 if ((wk->assoc.capability & WLAN_CAPABILITY_SPECTRUM_MGMT) &&
250 (local->hw.flags & IEEE80211_HW_SPECTRUM_MGMT))
251 capab |= WLAN_CAPABILITY_SPECTRUM_MGMT;
253 mgmt = (struct ieee80211_mgmt *) skb_put(skb, 24);
255 memcpy(mgmt->da, wk->filter_ta, ETH_ALEN);
256 memcpy(mgmt->sa, sdata->vif.addr, ETH_ALEN);
257 memcpy(mgmt->bssid, wk->filter_ta, ETH_ALEN);
259 if (!is_zero_ether_addr(wk->assoc.prev_bssid)) {
261 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
262 IEEE80211_STYPE_REASSOC_REQ);
263 mgmt->u.reassoc_req.capab_info = cpu_to_le16(capab);
264 mgmt->u.reassoc_req.listen_interval =
265 cpu_to_le16(local->hw.conf.listen_interval);
266 memcpy(mgmt->u.reassoc_req.current_ap, wk->assoc.prev_bssid,
270 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
271 IEEE80211_STYPE_ASSOC_REQ);
272 mgmt->u.assoc_req.capab_info = cpu_to_le16(capab);
273 mgmt->u.assoc_req.listen_interval =
274 cpu_to_le16(local->hw.conf.listen_interval);
278 pos = skb_put(skb, 2 + wk->assoc.ssid_len);
279 *pos++ = WLAN_EID_SSID;
280 *pos++ = wk->assoc.ssid_len;
281 memcpy(pos, wk->assoc.ssid, wk->assoc.ssid_len);
283 /* add all rates which were marked to be used above */
284 supp_rates_len = rates_len;
285 if (supp_rates_len > 8)
288 pos = skb_put(skb, supp_rates_len + 2);
289 *pos++ = WLAN_EID_SUPP_RATES;
290 *pos++ = supp_rates_len;
293 for (i = 0; i < sband->n_bitrates; i++) {
294 if (BIT(i) & rates) {
295 int rate = sband->bitrates[i].bitrate;
296 *pos++ = (u8) (rate / 5);
302 if (rates_len > count) {
303 pos = skb_put(skb, rates_len - count + 2);
304 *pos++ = WLAN_EID_EXT_SUPP_RATES;
305 *pos++ = rates_len - count;
307 for (i++; i < sband->n_bitrates; i++) {
308 if (BIT(i) & rates) {
309 int rate = sband->bitrates[i].bitrate;
310 *pos++ = (u8) (rate / 5);
315 if (capab & WLAN_CAPABILITY_SPECTRUM_MGMT) {
316 /* 1. power capabilities */
317 pos = skb_put(skb, 4);
318 *pos++ = WLAN_EID_PWR_CAPABILITY;
320 *pos++ = 0; /* min tx power */
321 *pos++ = wk->chan->max_power; /* max tx power */
323 /* 2. supported channels */
324 /* TODO: get this in reg domain format */
325 pos = skb_put(skb, 2 * sband->n_channels + 2);
326 *pos++ = WLAN_EID_SUPPORTED_CHANNELS;
327 *pos++ = 2 * sband->n_channels;
328 for (i = 0; i < sband->n_channels; i++) {
329 *pos++ = ieee80211_frequency_to_channel(
330 sband->channels[i].center_freq);
331 *pos++ = 1; /* one channel in the subband*/
335 /* if present, add any custom IEs that go before HT */
336 if (wk->ie_len && wk->ie) {
337 static const u8 before_ht[] = {
340 WLAN_EID_EXT_SUPP_RATES,
341 WLAN_EID_PWR_CAPABILITY,
342 WLAN_EID_SUPPORTED_CHANNELS,
345 WLAN_EID_RRM_ENABLED_CAPABILITIES,
346 WLAN_EID_MOBILITY_DOMAIN,
347 WLAN_EID_SUPPORTED_REGULATORY_CLASSES,
349 noffset = ieee80211_ie_split(wk->ie, wk->ie_len,
350 before_ht, ARRAY_SIZE(before_ht),
352 pos = skb_put(skb, noffset - offset);
353 memcpy(pos, wk->ie + offset, noffset - offset);
357 if (wk->assoc.use_11n && wk->assoc.wmm_used &&
358 local->hw.queues >= 4)
359 ieee80211_add_ht_ie(skb, wk->assoc.ht_information_ie,
360 sband, wk->chan, wk->assoc.smps);
362 /* if present, add any custom non-vendor IEs that go after HT */
363 if (wk->ie_len && wk->ie) {
364 noffset = ieee80211_ie_split_vendor(wk->ie, wk->ie_len,
366 pos = skb_put(skb, noffset - offset);
367 memcpy(pos, wk->ie + offset, noffset - offset);
371 if (wk->assoc.wmm_used && local->hw.queues >= 4) {
372 if (wk->assoc.uapsd_used) {
373 qos_info = local->uapsd_queues;
374 qos_info |= (local->uapsd_max_sp_len <<
375 IEEE80211_WMM_IE_STA_QOSINFO_SP_SHIFT);
380 pos = skb_put(skb, 9);
381 *pos++ = WLAN_EID_VENDOR_SPECIFIC;
382 *pos++ = 7; /* len */
383 *pos++ = 0x00; /* Microsoft OUI 00:50:F2 */
386 *pos++ = 2; /* WME */
387 *pos++ = 0; /* WME info */
388 *pos++ = 1; /* WME ver */
392 /* add any remaining custom (i.e. vendor specific here) IEs */
393 if (wk->ie_len && wk->ie) {
394 noffset = wk->ie_len;
395 pos = skb_put(skb, noffset - offset);
396 memcpy(pos, wk->ie + offset, noffset - offset);
399 IEEE80211_SKB_CB(skb)->flags |= IEEE80211_TX_INTFL_DONT_ENCRYPT;
400 ieee80211_tx_skb(sdata, skb);
403 static void ieee80211_remove_auth_bss(struct ieee80211_local *local,
404 struct ieee80211_work *wk)
406 struct cfg80211_bss *cbss;
407 u16 capa_val = WLAN_CAPABILITY_ESS;
409 if (wk->probe_auth.privacy)
410 capa_val |= WLAN_CAPABILITY_PRIVACY;
412 cbss = cfg80211_get_bss(local->hw.wiphy, wk->chan, wk->filter_ta,
413 wk->probe_auth.ssid, wk->probe_auth.ssid_len,
414 WLAN_CAPABILITY_ESS | WLAN_CAPABILITY_PRIVACY,
419 cfg80211_unlink_bss(local->hw.wiphy, cbss);
420 cfg80211_put_bss(cbss);
423 static enum work_action __must_check
424 ieee80211_direct_probe(struct ieee80211_work *wk)
426 struct ieee80211_sub_if_data *sdata = wk->sdata;
427 struct ieee80211_local *local = sdata->local;
429 if (!wk->probe_auth.synced) {
430 int ret = drv_tx_sync(local, sdata, wk->filter_ta,
431 IEEE80211_TX_SYNC_AUTH);
433 return WORK_ACT_TIMEOUT;
435 wk->probe_auth.synced = true;
437 wk->probe_auth.tries++;
438 if (wk->probe_auth.tries > IEEE80211_AUTH_MAX_TRIES) {
439 printk(KERN_DEBUG "%s: direct probe to %pM timed out\n",
440 sdata->name, wk->filter_ta);
443 * Most likely AP is not in the range so remove the
444 * bss struct for that AP.
446 ieee80211_remove_auth_bss(local, wk);
448 return WORK_ACT_TIMEOUT;
451 printk(KERN_DEBUG "%s: direct probe to %pM (try %d/%i)\n",
452 sdata->name, wk->filter_ta, wk->probe_auth.tries,
453 IEEE80211_AUTH_MAX_TRIES);
456 * Direct probe is sent to broadcast address as some APs
457 * will not answer to direct packet in unassociated state.
459 ieee80211_send_probe_req(sdata, NULL, wk->probe_auth.ssid,
460 wk->probe_auth.ssid_len, NULL, 0,
461 (u32) -1, true, false);
463 wk->timeout = jiffies + IEEE80211_AUTH_TIMEOUT;
464 run_again(local, wk->timeout);
466 return WORK_ACT_NONE;
470 static enum work_action __must_check
471 ieee80211_authenticate(struct ieee80211_work *wk)
473 struct ieee80211_sub_if_data *sdata = wk->sdata;
474 struct ieee80211_local *local = sdata->local;
476 if (!wk->probe_auth.synced) {
477 int ret = drv_tx_sync(local, sdata, wk->filter_ta,
478 IEEE80211_TX_SYNC_AUTH);
480 return WORK_ACT_TIMEOUT;
482 wk->probe_auth.synced = true;
484 wk->probe_auth.tries++;
485 if (wk->probe_auth.tries > IEEE80211_AUTH_MAX_TRIES) {
486 printk(KERN_DEBUG "%s: authentication with %pM"
487 " timed out\n", sdata->name, wk->filter_ta);
490 * Most likely AP is not in the range so remove the
491 * bss struct for that AP.
493 ieee80211_remove_auth_bss(local, wk);
495 return WORK_ACT_TIMEOUT;
498 printk(KERN_DEBUG "%s: authenticate with %pM (try %d)\n",
499 sdata->name, wk->filter_ta, wk->probe_auth.tries);
501 ieee80211_send_auth(sdata, 1, wk->probe_auth.algorithm, wk->ie,
502 wk->ie_len, wk->filter_ta, NULL, 0, 0);
503 wk->probe_auth.transaction = 2;
505 wk->timeout = jiffies + IEEE80211_AUTH_TIMEOUT;
506 run_again(local, wk->timeout);
508 return WORK_ACT_NONE;
511 static enum work_action __must_check
512 ieee80211_associate(struct ieee80211_work *wk)
514 struct ieee80211_sub_if_data *sdata = wk->sdata;
515 struct ieee80211_local *local = sdata->local;
517 if (!wk->assoc.synced) {
518 int ret = drv_tx_sync(local, sdata, wk->filter_ta,
519 IEEE80211_TX_SYNC_ASSOC);
521 return WORK_ACT_TIMEOUT;
523 wk->assoc.synced = true;
526 if (wk->assoc.tries > IEEE80211_ASSOC_MAX_TRIES) {
527 printk(KERN_DEBUG "%s: association with %pM"
529 sdata->name, wk->filter_ta);
532 * Most likely AP is not in the range so remove the
533 * bss struct for that AP.
536 cfg80211_unlink_bss(local->hw.wiphy, wk->assoc.bss);
538 return WORK_ACT_TIMEOUT;
541 printk(KERN_DEBUG "%s: associate with %pM (try %d)\n",
542 sdata->name, wk->filter_ta, wk->assoc.tries);
543 ieee80211_send_assoc(sdata, wk);
545 wk->timeout = jiffies + IEEE80211_ASSOC_TIMEOUT;
546 run_again(local, wk->timeout);
548 return WORK_ACT_NONE;
551 static enum work_action __must_check
552 ieee80211_remain_on_channel_timeout(struct ieee80211_work *wk)
555 * First time we run, do nothing -- the generic code will
556 * have switched to the right channel etc.
559 wk->timeout = jiffies + msecs_to_jiffies(wk->remain.duration);
561 cfg80211_ready_on_channel(wk->sdata->dev, (unsigned long) wk,
562 wk->chan, wk->chan_type,
563 wk->remain.duration, GFP_KERNEL);
565 return WORK_ACT_NONE;
568 return WORK_ACT_TIMEOUT;
571 static enum work_action __must_check
572 ieee80211_offchannel_tx(struct ieee80211_work *wk)
575 wk->timeout = jiffies + msecs_to_jiffies(wk->offchan_tx.wait);
578 * After this, offchan_tx.frame remains but now is no
579 * longer a valid pointer -- we still need it as the
580 * cookie for canceling this work/status matching.
582 ieee80211_tx_skb(wk->sdata, wk->offchan_tx.frame);
584 return WORK_ACT_NONE;
587 return WORK_ACT_TIMEOUT;
590 static enum work_action __must_check
591 ieee80211_assoc_beacon_wait(struct ieee80211_work *wk)
594 return WORK_ACT_TIMEOUT;
597 * Wait up to one beacon interval ...
598 * should this be more if we miss one?
600 printk(KERN_DEBUG "%s: waiting for beacon from %pM\n",
601 wk->sdata->name, wk->filter_ta);
602 wk->timeout = TU_TO_EXP_TIME(wk->assoc.bss->beacon_interval);
603 return WORK_ACT_NONE;
606 static void ieee80211_auth_challenge(struct ieee80211_work *wk,
607 struct ieee80211_mgmt *mgmt,
610 struct ieee80211_sub_if_data *sdata = wk->sdata;
612 struct ieee802_11_elems elems;
614 pos = mgmt->u.auth.variable;
615 ieee802_11_parse_elems(pos, len - (pos - (u8 *) mgmt), &elems);
616 if (!elems.challenge)
618 ieee80211_send_auth(sdata, 3, wk->probe_auth.algorithm,
619 elems.challenge - 2, elems.challenge_len + 2,
620 wk->filter_ta, wk->probe_auth.key,
621 wk->probe_auth.key_len, wk->probe_auth.key_idx);
622 wk->probe_auth.transaction = 4;
625 static enum work_action __must_check
626 ieee80211_rx_mgmt_auth(struct ieee80211_work *wk,
627 struct ieee80211_mgmt *mgmt, size_t len)
629 u16 auth_alg, auth_transaction, status_code;
631 if (wk->type != IEEE80211_WORK_AUTH)
632 return WORK_ACT_MISMATCH;
635 return WORK_ACT_NONE;
637 auth_alg = le16_to_cpu(mgmt->u.auth.auth_alg);
638 auth_transaction = le16_to_cpu(mgmt->u.auth.auth_transaction);
639 status_code = le16_to_cpu(mgmt->u.auth.status_code);
641 if (auth_alg != wk->probe_auth.algorithm ||
642 auth_transaction != wk->probe_auth.transaction)
643 return WORK_ACT_NONE;
645 if (status_code != WLAN_STATUS_SUCCESS) {
646 printk(KERN_DEBUG "%s: %pM denied authentication (status %d)\n",
647 wk->sdata->name, mgmt->sa, status_code);
648 return WORK_ACT_DONE;
651 switch (wk->probe_auth.algorithm) {
656 case WLAN_AUTH_SHARED_KEY:
657 if (wk->probe_auth.transaction != 4) {
658 ieee80211_auth_challenge(wk, mgmt, len);
659 /* need another frame */
660 return WORK_ACT_NONE;
665 return WORK_ACT_NONE;
668 printk(KERN_DEBUG "%s: authenticated\n", wk->sdata->name);
669 return WORK_ACT_DONE;
672 static enum work_action __must_check
673 ieee80211_rx_mgmt_assoc_resp(struct ieee80211_work *wk,
674 struct ieee80211_mgmt *mgmt, size_t len,
677 struct ieee80211_sub_if_data *sdata = wk->sdata;
678 struct ieee80211_local *local = sdata->local;
679 u16 capab_info, status_code, aid;
680 struct ieee802_11_elems elems;
683 if (wk->type != IEEE80211_WORK_ASSOC)
684 return WORK_ACT_MISMATCH;
687 * AssocResp and ReassocResp have identical structure, so process both
688 * of them in this function.
692 return WORK_ACT_NONE;
694 capab_info = le16_to_cpu(mgmt->u.assoc_resp.capab_info);
695 status_code = le16_to_cpu(mgmt->u.assoc_resp.status_code);
696 aid = le16_to_cpu(mgmt->u.assoc_resp.aid);
698 printk(KERN_DEBUG "%s: RX %sssocResp from %pM (capab=0x%x "
699 "status=%d aid=%d)\n",
700 sdata->name, reassoc ? "Rea" : "A", mgmt->sa,
701 capab_info, status_code, (u16)(aid & ~(BIT(15) | BIT(14))));
703 pos = mgmt->u.assoc_resp.variable;
704 ieee802_11_parse_elems(pos, len - (pos - (u8 *) mgmt), &elems);
706 if (status_code == WLAN_STATUS_ASSOC_REJECTED_TEMPORARILY &&
707 elems.timeout_int && elems.timeout_int_len == 5 &&
708 elems.timeout_int[0] == WLAN_TIMEOUT_ASSOC_COMEBACK) {
710 tu = get_unaligned_le32(elems.timeout_int + 1);
711 ms = tu * 1024 / 1000;
712 printk(KERN_DEBUG "%s: %pM rejected association temporarily; "
713 "comeback duration %u TU (%u ms)\n",
714 sdata->name, mgmt->sa, tu, ms);
715 wk->timeout = jiffies + msecs_to_jiffies(ms);
716 if (ms > IEEE80211_ASSOC_TIMEOUT)
717 run_again(local, wk->timeout);
718 return WORK_ACT_NONE;
721 if (status_code != WLAN_STATUS_SUCCESS)
722 printk(KERN_DEBUG "%s: %pM denied association (code=%d)\n",
723 sdata->name, mgmt->sa, status_code);
725 printk(KERN_DEBUG "%s: associated\n", sdata->name);
727 return WORK_ACT_DONE;
730 static enum work_action __must_check
731 ieee80211_rx_mgmt_probe_resp(struct ieee80211_work *wk,
732 struct ieee80211_mgmt *mgmt, size_t len,
733 struct ieee80211_rx_status *rx_status)
735 struct ieee80211_sub_if_data *sdata = wk->sdata;
736 struct ieee80211_local *local = sdata->local;
739 ASSERT_WORK_MTX(local);
741 if (wk->type != IEEE80211_WORK_DIRECT_PROBE)
742 return WORK_ACT_MISMATCH;
745 return WORK_ACT_NONE;
747 baselen = (u8 *) mgmt->u.probe_resp.variable - (u8 *) mgmt;
749 return WORK_ACT_NONE;
751 printk(KERN_DEBUG "%s: direct probe responded\n", sdata->name);
752 return WORK_ACT_DONE;
755 static enum work_action __must_check
756 ieee80211_rx_mgmt_beacon(struct ieee80211_work *wk,
757 struct ieee80211_mgmt *mgmt, size_t len)
759 struct ieee80211_sub_if_data *sdata = wk->sdata;
760 struct ieee80211_local *local = sdata->local;
762 ASSERT_WORK_MTX(local);
764 if (wk->type != IEEE80211_WORK_ASSOC_BEACON_WAIT)
765 return WORK_ACT_MISMATCH;
768 return WORK_ACT_NONE;
770 printk(KERN_DEBUG "%s: beacon received\n", sdata->name);
771 return WORK_ACT_DONE;
774 static void ieee80211_work_rx_queued_mgmt(struct ieee80211_local *local,
777 struct ieee80211_rx_status *rx_status;
778 struct ieee80211_mgmt *mgmt;
779 struct ieee80211_work *wk;
780 enum work_action rma = WORK_ACT_NONE;
783 rx_status = (struct ieee80211_rx_status *) skb->cb;
784 mgmt = (struct ieee80211_mgmt *) skb->data;
785 fc = le16_to_cpu(mgmt->frame_control);
787 mutex_lock(&local->mtx);
789 list_for_each_entry(wk, &local->work_list, list) {
790 const u8 *bssid = NULL;
793 case IEEE80211_WORK_DIRECT_PROBE:
794 case IEEE80211_WORK_AUTH:
795 case IEEE80211_WORK_ASSOC:
796 case IEEE80211_WORK_ASSOC_BEACON_WAIT:
797 bssid = wk->filter_ta;
804 * Before queuing, we already verified mgmt->sa,
805 * so this is needed just for matching.
807 if (compare_ether_addr(bssid, mgmt->bssid))
810 switch (fc & IEEE80211_FCTL_STYPE) {
811 case IEEE80211_STYPE_BEACON:
812 rma = ieee80211_rx_mgmt_beacon(wk, mgmt, skb->len);
814 case IEEE80211_STYPE_PROBE_RESP:
815 rma = ieee80211_rx_mgmt_probe_resp(wk, mgmt, skb->len,
818 case IEEE80211_STYPE_AUTH:
819 rma = ieee80211_rx_mgmt_auth(wk, mgmt, skb->len);
821 case IEEE80211_STYPE_ASSOC_RESP:
822 rma = ieee80211_rx_mgmt_assoc_resp(wk, mgmt,
825 case IEEE80211_STYPE_REASSOC_RESP:
826 rma = ieee80211_rx_mgmt_assoc_resp(wk, mgmt,
835 * We've either received an unexpected frame, or we have
836 * multiple work items and need to match the frame to the
839 if (rma == WORK_ACT_MISMATCH)
843 * We've processed this frame for that work, so it can't
844 * belong to another work struct.
845 * NB: this is also required for correctness for 'rma'!
851 case WORK_ACT_MISMATCH:
852 /* ignore this unmatched frame */
857 list_del_rcu(&wk->list);
860 WARN(1, "unexpected: %d", rma);
863 mutex_unlock(&local->mtx);
865 if (rma != WORK_ACT_DONE)
868 switch (wk->done(wk, skb)) {
869 case WORK_DONE_DESTROY:
872 case WORK_DONE_REQUEUE:
874 wk->started = false; /* restart */
875 mutex_lock(&local->mtx);
876 list_add_tail(&wk->list, &local->work_list);
877 mutex_unlock(&local->mtx);
884 static bool ieee80211_work_ct_coexists(enum nl80211_channel_type wk_ct,
885 enum nl80211_channel_type oper_ct)
888 case NL80211_CHAN_NO_HT:
890 case NL80211_CHAN_HT20:
891 if (oper_ct != NL80211_CHAN_NO_HT)
894 case NL80211_CHAN_HT40MINUS:
895 case NL80211_CHAN_HT40PLUS:
896 return (wk_ct == oper_ct);
898 WARN_ON(1); /* shouldn't get here */
902 static void ieee80211_work_timer(unsigned long data)
904 struct ieee80211_local *local = (void *) data;
906 if (local->quiescing)
909 ieee80211_queue_work(&local->hw, &local->work_work);
912 static void ieee80211_work_work(struct work_struct *work)
914 struct ieee80211_local *local =
915 container_of(work, struct ieee80211_local, work_work);
917 struct ieee80211_work *wk, *tmp;
918 LIST_HEAD(free_work);
919 enum work_action rma;
920 bool remain_off_channel = false;
926 * ieee80211_queue_work() should have picked up most cases,
927 * here we'll pick the rest.
929 if (WARN(local->suspended, "work scheduled while going to suspend\n"))
932 /* first process frames to avoid timing out while a frame is pending */
933 while ((skb = skb_dequeue(&local->work_skb_queue)))
934 ieee80211_work_rx_queued_mgmt(local, skb);
936 mutex_lock(&local->mtx);
938 ieee80211_recalc_idle(local);
940 list_for_each_entry_safe(wk, tmp, &local->work_list, list) {
941 bool started = wk->started;
943 /* mark work as started if it's on the current off-channel */
944 if (!started && local->tmp_channel &&
945 wk->chan == local->tmp_channel &&
946 wk->chan_type == local->tmp_channel_type) {
948 wk->timeout = jiffies;
951 if (!started && !local->tmp_channel) {
953 * TODO: could optimize this by leaving the
954 * station vifs in awake mode if they
955 * happen to be on the same channel as
956 * the requested channel
958 ieee80211_offchannel_stop_beaconing(local);
959 ieee80211_offchannel_stop_station(local);
961 local->tmp_channel = wk->chan;
962 local->tmp_channel_type = wk->chan_type;
963 ieee80211_hw_config(local, 0);
965 wk->timeout = jiffies;
968 /* don't try to work with items that aren't started */
972 if (time_is_after_jiffies(wk->timeout)) {
974 * This work item isn't supposed to be worked on
975 * right now, but take care to adjust the timer
978 run_again(local, wk->timeout);
988 case IEEE80211_WORK_ABORT:
989 rma = WORK_ACT_TIMEOUT;
991 case IEEE80211_WORK_DIRECT_PROBE:
992 rma = ieee80211_direct_probe(wk);
994 case IEEE80211_WORK_AUTH:
995 rma = ieee80211_authenticate(wk);
997 case IEEE80211_WORK_ASSOC:
998 rma = ieee80211_associate(wk);
1000 case IEEE80211_WORK_REMAIN_ON_CHANNEL:
1001 rma = ieee80211_remain_on_channel_timeout(wk);
1003 case IEEE80211_WORK_OFFCHANNEL_TX:
1004 rma = ieee80211_offchannel_tx(wk);
1006 case IEEE80211_WORK_ASSOC_BEACON_WAIT:
1007 rma = ieee80211_assoc_beacon_wait(wk);
1011 wk->started = started;
1015 /* might have changed the timeout */
1016 run_again(local, wk->timeout);
1018 case WORK_ACT_TIMEOUT:
1019 list_del_rcu(&wk->list);
1021 list_add(&wk->list, &free_work);
1024 WARN(1, "unexpected: %d", rma);
1028 list_for_each_entry(wk, &local->work_list, list) {
1031 if (wk->chan != local->tmp_channel)
1033 if (!ieee80211_work_ct_coexists(wk->chan_type,
1034 local->tmp_channel_type))
1036 remain_off_channel = true;
1039 if (!remain_off_channel && local->tmp_channel) {
1040 local->tmp_channel = NULL;
1041 /* If tmp_channel wasn't operating channel, then
1042 * we need to go back on-channel.
1043 * NOTE: If we can ever be here while scannning,
1044 * or if the hw_config() channel config logic changes,
1045 * then we may need to do a more thorough check to see if
1046 * we still need to do a hardware config. Currently,
1047 * we cannot be here while scanning, however.
1049 ieee80211_hw_config(local, 0);
1051 /* At the least, we need to disable offchannel_ps,
1052 * so just go ahead and run the entire offchannel
1053 * return logic here. We *could* skip enabling
1054 * beaconing if we were already on-oper-channel
1055 * as a future optimization.
1057 ieee80211_offchannel_return(local, true);
1059 /* give connection some time to breathe */
1060 run_again(local, jiffies + HZ/2);
1063 if (list_empty(&local->work_list) && local->scan_req &&
1065 ieee80211_queue_delayed_work(&local->hw,
1067 round_jiffies_relative(0));
1069 ieee80211_recalc_idle(local);
1071 mutex_unlock(&local->mtx);
1073 list_for_each_entry_safe(wk, tmp, &free_work, list) {
1075 list_del(&wk->list);
1080 void ieee80211_add_work(struct ieee80211_work *wk)
1082 struct ieee80211_local *local;
1084 if (WARN_ON(!wk->chan))
1087 if (WARN_ON(!wk->sdata))
1090 if (WARN_ON(!wk->done))
1093 if (WARN_ON(!ieee80211_sdata_running(wk->sdata)))
1096 wk->started = false;
1098 local = wk->sdata->local;
1099 mutex_lock(&local->mtx);
1100 list_add_tail(&wk->list, &local->work_list);
1101 mutex_unlock(&local->mtx);
1103 ieee80211_queue_work(&local->hw, &local->work_work);
1106 void ieee80211_work_init(struct ieee80211_local *local)
1108 INIT_LIST_HEAD(&local->work_list);
1109 setup_timer(&local->work_timer, ieee80211_work_timer,
1110 (unsigned long)local);
1111 INIT_WORK(&local->work_work, ieee80211_work_work);
1112 skb_queue_head_init(&local->work_skb_queue);
1115 void ieee80211_work_purge(struct ieee80211_sub_if_data *sdata)
1117 struct ieee80211_local *local = sdata->local;
1118 struct ieee80211_work *wk;
1119 bool cleanup = false;
1121 mutex_lock(&local->mtx);
1122 list_for_each_entry(wk, &local->work_list, list) {
1123 if (wk->sdata != sdata)
1126 wk->type = IEEE80211_WORK_ABORT;
1128 wk->timeout = jiffies;
1130 mutex_unlock(&local->mtx);
1132 /* run cleanups etc. */
1134 ieee80211_work_work(&local->work_work);
1136 mutex_lock(&local->mtx);
1137 list_for_each_entry(wk, &local->work_list, list) {
1138 if (wk->sdata != sdata)
1143 mutex_unlock(&local->mtx);
1146 ieee80211_rx_result ieee80211_work_rx_mgmt(struct ieee80211_sub_if_data *sdata,
1147 struct sk_buff *skb)
1149 struct ieee80211_local *local = sdata->local;
1150 struct ieee80211_mgmt *mgmt;
1151 struct ieee80211_work *wk;
1155 return RX_DROP_MONITOR;
1157 mgmt = (struct ieee80211_mgmt *) skb->data;
1158 fc = le16_to_cpu(mgmt->frame_control);
1160 list_for_each_entry_rcu(wk, &local->work_list, list) {
1161 if (sdata != wk->sdata)
1163 if (compare_ether_addr(wk->filter_ta, mgmt->sa))
1165 if (compare_ether_addr(wk->filter_ta, mgmt->bssid))
1168 switch (fc & IEEE80211_FCTL_STYPE) {
1169 case IEEE80211_STYPE_AUTH:
1170 case IEEE80211_STYPE_PROBE_RESP:
1171 case IEEE80211_STYPE_ASSOC_RESP:
1172 case IEEE80211_STYPE_REASSOC_RESP:
1173 case IEEE80211_STYPE_BEACON:
1174 skb_queue_tail(&local->work_skb_queue, skb);
1175 ieee80211_queue_work(&local->hw, &local->work_work);
1183 static enum work_done_result ieee80211_remain_done(struct ieee80211_work *wk,
1184 struct sk_buff *skb)
1187 * We are done serving the remain-on-channel command.
1189 cfg80211_remain_on_channel_expired(wk->sdata->dev, (unsigned long) wk,
1190 wk->chan, wk->chan_type,
1193 return WORK_DONE_DESTROY;
1196 int ieee80211_wk_remain_on_channel(struct ieee80211_sub_if_data *sdata,
1197 struct ieee80211_channel *chan,
1198 enum nl80211_channel_type channel_type,
1199 unsigned int duration, u64 *cookie)
1201 struct ieee80211_work *wk;
1203 wk = kzalloc(sizeof(*wk), GFP_KERNEL);
1207 wk->type = IEEE80211_WORK_REMAIN_ON_CHANNEL;
1209 wk->chan_type = channel_type;
1211 wk->done = ieee80211_remain_done;
1213 wk->remain.duration = duration;
1215 *cookie = (unsigned long) wk;
1217 ieee80211_add_work(wk);
1222 int ieee80211_wk_cancel_remain_on_channel(struct ieee80211_sub_if_data *sdata,
1225 struct ieee80211_local *local = sdata->local;
1226 struct ieee80211_work *wk, *tmp;
1229 mutex_lock(&local->mtx);
1230 list_for_each_entry_safe(wk, tmp, &local->work_list, list) {
1231 if ((unsigned long) wk == cookie) {
1232 wk->timeout = jiffies;
1237 mutex_unlock(&local->mtx);
1242 ieee80211_queue_work(&local->hw, &local->work_work);
git.openpandora.org / pandora-kernel.git / blob