1 /*======================================================================
3 Aironet driver for 4500 and 4800 series cards
5 This code is released under both the GPL version 2 and BSD licenses.
6 Either license may be used. The respective licenses are found at
9 This code was developed by Benjamin Reed <breed@users.sourceforge.net>
10 including portions of which come from the Aironet PC4500
11 Developer's Reference Manual and used with permission. Copyright
12 (C) 1999 Benjamin Reed. All Rights Reserved. Permission to use
13 code in the Developer's manual was granted for this driver by
14 Aironet. Major code contributions were received from Javier Achirica
15 <achirica@users.sourceforge.net> and Jean Tourrilhes <jt@hpl.hp.com>.
16 Code was also integrated from the Cisco Aironet driver for Linux.
17 Support for MPI350 cards was added by Fabrice Bellet
18 <fabrice@bellet.info>.
20 ======================================================================*/
22 #include <linux/err.h>
23 #include <linux/init.h>
25 #include <linux/kernel.h>
26 #include <linux/module.h>
27 #include <linux/proc_fs.h>
29 #include <linux/sched.h>
30 #include <linux/ptrace.h>
31 #include <linux/slab.h>
32 #include <linux/string.h>
33 #include <linux/timer.h>
34 #include <linux/interrupt.h>
36 #include <linux/bitops.h>
37 #include <linux/scatterlist.h>
38 #include <linux/crypto.h>
40 #include <asm/system.h>
41 #include <asm/unaligned.h>
43 #include <linux/netdevice.h>
44 #include <linux/etherdevice.h>
45 #include <linux/skbuff.h>
46 #include <linux/if_arp.h>
47 #include <linux/ioport.h>
48 #include <linux/pci.h>
49 #include <asm/uaccess.h>
50 #include <net/ieee80211.h>
51 #include <linux/kthread.h>
52 #include <linux/freezer.h>
56 #define DRV_NAME "airo"
59 static struct pci_device_id card_ids[] = {
60 { 0x14b9, 1, PCI_ANY_ID, PCI_ANY_ID, },
61 { 0x14b9, 0x4500, PCI_ANY_ID, PCI_ANY_ID },
62 { 0x14b9, 0x4800, PCI_ANY_ID, PCI_ANY_ID, },
63 { 0x14b9, 0x0340, PCI_ANY_ID, PCI_ANY_ID, },
64 { 0x14b9, 0x0350, PCI_ANY_ID, PCI_ANY_ID, },
65 { 0x14b9, 0x5000, PCI_ANY_ID, PCI_ANY_ID, },
66 { 0x14b9, 0xa504, PCI_ANY_ID, PCI_ANY_ID, },
69 MODULE_DEVICE_TABLE(pci, card_ids);
71 static int airo_pci_probe(struct pci_dev *, const struct pci_device_id *);
72 static void airo_pci_remove(struct pci_dev *);
73 static int airo_pci_suspend(struct pci_dev *pdev, pm_message_t state);
74 static int airo_pci_resume(struct pci_dev *pdev);
76 static struct pci_driver airo_driver = {
79 .probe = airo_pci_probe,
80 .remove = __devexit_p(airo_pci_remove),
81 .suspend = airo_pci_suspend,
82 .resume = airo_pci_resume,
84 #endif /* CONFIG_PCI */
86 /* Include Wireless Extension definition and check version - Jean II */
87 #include <linux/wireless.h>
88 #define WIRELESS_SPY // enable iwspy support
89 #include <net/iw_handler.h> // New driver API
91 #define CISCO_EXT // enable Cisco extensions
93 #include <linux/delay.h>
96 /* Hack to do some power saving */
99 /* As you can see this list is HUGH!
100 I really don't know what a lot of these counts are about, but they
101 are all here for completeness. If the IGNLABEL macro is put in
102 infront of the label, that statistic will not be included in the list
103 of statistics in the /proc filesystem */
105 #define IGNLABEL(comment) NULL
106 static char *statsLabels[] = {
108 IGNLABEL("RxPlcpCrcErr"),
109 IGNLABEL("RxPlcpFormatErr"),
110 IGNLABEL("RxPlcpLengthErr"),
141 "LostSync-MissedBeacons",
142 "LostSync-ArlExceeded",
144 "LostSync-Disassoced",
145 "LostSync-TsfTiming",
154 IGNLABEL("HmacTxMc"),
155 IGNLABEL("HmacTxBc"),
156 IGNLABEL("HmacTxUc"),
157 IGNLABEL("HmacTxFail"),
158 IGNLABEL("HmacRxMc"),
159 IGNLABEL("HmacRxBc"),
160 IGNLABEL("HmacRxUc"),
161 IGNLABEL("HmacRxDiscard"),
162 IGNLABEL("HmacRxAccepted"),
170 IGNLABEL("ReasonOutsideTable"),
171 IGNLABEL("ReasonStatus1"),
172 IGNLABEL("ReasonStatus2"),
173 IGNLABEL("ReasonStatus3"),
174 IGNLABEL("ReasonStatus4"),
175 IGNLABEL("ReasonStatus5"),
176 IGNLABEL("ReasonStatus6"),
177 IGNLABEL("ReasonStatus7"),
178 IGNLABEL("ReasonStatus8"),
179 IGNLABEL("ReasonStatus9"),
180 IGNLABEL("ReasonStatus10"),
181 IGNLABEL("ReasonStatus11"),
182 IGNLABEL("ReasonStatus12"),
183 IGNLABEL("ReasonStatus13"),
184 IGNLABEL("ReasonStatus14"),
185 IGNLABEL("ReasonStatus15"),
186 IGNLABEL("ReasonStatus16"),
187 IGNLABEL("ReasonStatus17"),
188 IGNLABEL("ReasonStatus18"),
189 IGNLABEL("ReasonStatus19"),
209 #define RUN_AT(x) (jiffies+(x))
213 /* These variables are for insmod, since it seems that the rates
214 can only be set in setup_card. Rates should be a comma separated
215 (no spaces) list of rates (up to 8). */
218 static int basic_rate;
219 static char *ssids[3];
225 int maxencrypt /* = 0 */; /* The highest rate that the card can encrypt at.
226 0 means no limit. For old cards this was 4 */
228 static int auto_wep /* = 0 */; /* If set, it tries to figure out the wep mode */
229 static int aux_bap /* = 0 */; /* Checks to see if the aux ports are needed to read
230 the bap, needed on some older cards and buses. */
233 static int probe = 1;
235 static int proc_uid /* = 0 */;
237 static int proc_gid /* = 0 */;
239 static int airo_perm = 0555;
241 static int proc_perm = 0644;
243 MODULE_AUTHOR("Benjamin Reed");
244 MODULE_DESCRIPTION("Support for Cisco/Aironet 802.11 wireless ethernet \
245 cards. Direct support for ISA/PCI/MPI cards and support \
246 for PCMCIA when used with airo_cs.");
247 MODULE_LICENSE("Dual BSD/GPL");
248 MODULE_SUPPORTED_DEVICE("Aironet 4500, 4800 and Cisco 340/350");
249 module_param_array(io, int, NULL, 0);
250 module_param_array(irq, int, NULL, 0);
251 module_param(basic_rate, int, 0);
252 module_param_array(rates, int, NULL, 0);
253 module_param_array(ssids, charp, NULL, 0);
254 module_param(auto_wep, int, 0);
255 MODULE_PARM_DESC(auto_wep, "If non-zero, the driver will keep looping through \
256 the authentication options until an association is made. The value of \
257 auto_wep is number of the wep keys to check. A value of 2 will try using \
258 the key at index 0 and index 1.");
259 module_param(aux_bap, int, 0);
260 MODULE_PARM_DESC(aux_bap, "If non-zero, the driver will switch into a mode \
261 than seems to work better for older cards with some older buses. Before \
262 switching it checks that the switch is needed.");
263 module_param(maxencrypt, int, 0);
264 MODULE_PARM_DESC(maxencrypt, "The maximum speed that the card can do \
265 encryption. Units are in 512kbs. Zero (default) means there is no limit. \
266 Older cards used to be limited to 2mbs (4).");
267 module_param(adhoc, int, 0);
268 MODULE_PARM_DESC(adhoc, "If non-zero, the card will start in adhoc mode.");
269 module_param(probe, int, 0);
270 MODULE_PARM_DESC(probe, "If zero, the driver won't start the card.");
272 module_param(proc_uid, int, 0);
273 MODULE_PARM_DESC(proc_uid, "The uid that the /proc files will belong to.");
274 module_param(proc_gid, int, 0);
275 MODULE_PARM_DESC(proc_gid, "The gid that the /proc files will belong to.");
276 module_param(airo_perm, int, 0);
277 MODULE_PARM_DESC(airo_perm, "The permission bits of /proc/[driver/]aironet.");
278 module_param(proc_perm, int, 0);
279 MODULE_PARM_DESC(proc_perm, "The permission bits of the files in /proc");
281 /* This is a kind of sloppy hack to get this information to OUT4500 and
282 IN4500. I would be extremely interested in the situation where this
283 doesn't work though!!! */
284 static int do8bitIO = 0;
293 #define MAC_ENABLE 0x0001
294 #define MAC_DISABLE 0x0002
295 #define CMD_LOSE_SYNC 0x0003 /* Not sure what this does... */
296 #define CMD_SOFTRESET 0x0004
297 #define HOSTSLEEP 0x0005
298 #define CMD_MAGIC_PKT 0x0006
299 #define CMD_SETWAKEMASK 0x0007
300 #define CMD_READCFG 0x0008
301 #define CMD_SETMODE 0x0009
302 #define CMD_ALLOCATETX 0x000a
303 #define CMD_TRANSMIT 0x000b
304 #define CMD_DEALLOCATETX 0x000c
306 #define CMD_WORKAROUND 0x0011
307 #define CMD_ALLOCATEAUX 0x0020
308 #define CMD_ACCESS 0x0021
309 #define CMD_PCIBAP 0x0022
310 #define CMD_PCIAUX 0x0023
311 #define CMD_ALLOCBUF 0x0028
312 #define CMD_GETTLV 0x0029
313 #define CMD_PUTTLV 0x002a
314 #define CMD_DELTLV 0x002b
315 #define CMD_FINDNEXTTLV 0x002c
316 #define CMD_PSPNODES 0x0030
317 #define CMD_SETCW 0x0031
318 #define CMD_SETPCF 0x0032
319 #define CMD_SETPHYREG 0x003e
320 #define CMD_TXTEST 0x003f
321 #define MAC_ENABLETX 0x0101
322 #define CMD_LISTBSS 0x0103
323 #define CMD_SAVECFG 0x0108
324 #define CMD_ENABLEAUX 0x0111
325 #define CMD_WRITERID 0x0121
326 #define CMD_USEPSPNODES 0x0130
327 #define MAC_ENABLERX 0x0201
330 #define ERROR_QUALIF 0x00
331 #define ERROR_ILLCMD 0x01
332 #define ERROR_ILLFMT 0x02
333 #define ERROR_INVFID 0x03
334 #define ERROR_INVRID 0x04
335 #define ERROR_LARGE 0x05
336 #define ERROR_NDISABL 0x06
337 #define ERROR_ALLOCBSY 0x07
338 #define ERROR_NORD 0x0B
339 #define ERROR_NOWR 0x0C
340 #define ERROR_INVFIDTX 0x0D
341 #define ERROR_TESTACT 0x0E
342 #define ERROR_TAGNFND 0x12
343 #define ERROR_DECODE 0x20
344 #define ERROR_DESCUNAV 0x21
345 #define ERROR_BADLEN 0x22
346 #define ERROR_MODE 0x80
347 #define ERROR_HOP 0x81
348 #define ERROR_BINTER 0x82
349 #define ERROR_RXMODE 0x83
350 #define ERROR_MACADDR 0x84
351 #define ERROR_RATES 0x85
352 #define ERROR_ORDER 0x86
353 #define ERROR_SCAN 0x87
354 #define ERROR_AUTH 0x88
355 #define ERROR_PSMODE 0x89
356 #define ERROR_RTYPE 0x8A
357 #define ERROR_DIVER 0x8B
358 #define ERROR_SSID 0x8C
359 #define ERROR_APLIST 0x8D
360 #define ERROR_AUTOWAKE 0x8E
361 #define ERROR_LEAP 0x8F
372 #define LINKSTAT 0x10
376 #define TXALLOCFID 0x22
377 #define TXCOMPLFID 0x24
392 /* Offset into aux memory for descriptors */
393 #define AUX_OFFSET 0x800
394 /* Size of allocated packets */
397 /* Size of the transmit queue */
401 #define BAP0 0 // Used for receiving packets
402 #define BAP1 2 // Used for xmiting packets and working with RIDS
405 #define COMMAND_BUSY 0x8000
407 #define BAP_BUSY 0x8000
408 #define BAP_ERR 0x4000
409 #define BAP_DONE 0x2000
411 #define PROMISC 0xffff
412 #define NOPROMISC 0x0000
415 #define EV_CLEARCOMMANDBUSY 0x4000
418 #define EV_TXEXC 0x04
419 #define EV_ALLOC 0x08
421 #define EV_AWAKE 0x100
422 #define EV_TXCPY 0x400
423 #define EV_UNKNOWN 0x800
424 #define EV_MIC 0x1000 /* Message Integrity Check Interrupt */
425 #define EV_AWAKEN 0x2000
426 #define STATUS_INTS (EV_AWAKE|EV_LINK|EV_TXEXC|EV_TX|EV_TXCPY|EV_RX|EV_MIC)
428 #ifdef CHECK_UNKNOWN_INTS
429 #define IGNORE_INTS ( EV_CMD | EV_UNKNOWN)
431 #define IGNORE_INTS (~STATUS_INTS)
438 #define RID_CAPABILITIES 0xFF00
439 #define RID_APINFO 0xFF01
440 #define RID_RADIOINFO 0xFF02
441 #define RID_UNKNOWN3 0xFF03
442 #define RID_RSSI 0xFF04
443 #define RID_CONFIG 0xFF10
444 #define RID_SSID 0xFF11
445 #define RID_APLIST 0xFF12
446 #define RID_DRVNAME 0xFF13
447 #define RID_ETHERENCAP 0xFF14
448 #define RID_WEP_TEMP 0xFF15
449 #define RID_WEP_PERM 0xFF16
450 #define RID_MODULATION 0xFF17
451 #define RID_OPTIONS 0xFF18
452 #define RID_ACTUALCONFIG 0xFF20 /*readonly*/
453 #define RID_FACTORYCONFIG 0xFF21
454 #define RID_UNKNOWN22 0xFF22
455 #define RID_LEAPUSERNAME 0xFF23
456 #define RID_LEAPPASSWORD 0xFF24
457 #define RID_STATUS 0xFF50
458 #define RID_BEACON_HST 0xFF51
459 #define RID_BUSY_HST 0xFF52
460 #define RID_RETRIES_HST 0xFF53
461 #define RID_UNKNOWN54 0xFF54
462 #define RID_UNKNOWN55 0xFF55
463 #define RID_UNKNOWN56 0xFF56
464 #define RID_MIC 0xFF57
465 #define RID_STATS16 0xFF60
466 #define RID_STATS16DELTA 0xFF61
467 #define RID_STATS16DELTACLEAR 0xFF62
468 #define RID_STATS 0xFF68
469 #define RID_STATSDELTA 0xFF69
470 #define RID_STATSDELTACLEAR 0xFF6A
471 #define RID_ECHOTEST_RID 0xFF70
472 #define RID_ECHOTEST_RESULTS 0xFF71
473 #define RID_BSSLISTFIRST 0xFF72
474 #define RID_BSSLISTNEXT 0xFF73
475 #define RID_WPA_BSSLISTFIRST 0xFF74
476 #define RID_WPA_BSSLISTNEXT 0xFF75
493 * Rids and endian-ness: The Rids will always be in cpu endian, since
494 * this all the patches from the big-endian guys end up doing that.
495 * so all rid access should use the read/writeXXXRid routines.
498 /* This is redundant for x86 archs, but it seems necessary for ARM */
501 /* This structure came from an email sent to me from an engineer at
502 aironet for inclusion into this driver */
511 /* These structures are from the Aironet's PC4500 Developers Manual */
525 #define MOD_DEFAULT cpu_to_le16(0)
526 #define MOD_CCK cpu_to_le16(1)
527 #define MOD_MOK cpu_to_le16(2)
531 __le16 len; /* sizeof(ConfigRid) */
532 __le16 opmode; /* operating mode */
533 #define MODE_STA_IBSS cpu_to_le16(0)
534 #define MODE_STA_ESS cpu_to_le16(1)
535 #define MODE_AP cpu_to_le16(2)
536 #define MODE_AP_RPTR cpu_to_le16(3)
537 #define MODE_CFG_MASK cpu_to_le16(0xff)
538 #define MODE_ETHERNET_HOST cpu_to_le16(0<<8) /* rx payloads converted */
539 #define MODE_LLC_HOST cpu_to_le16(1<<8) /* rx payloads left as is */
540 #define MODE_AIRONET_EXTEND cpu_to_le16(1<<9) /* enable Aironet extenstions */
541 #define MODE_AP_INTERFACE cpu_to_le16(1<<10) /* enable ap interface extensions */
542 #define MODE_ANTENNA_ALIGN cpu_to_le16(1<<11) /* enable antenna alignment */
543 #define MODE_ETHER_LLC cpu_to_le16(1<<12) /* enable ethernet LLC */
544 #define MODE_LEAF_NODE cpu_to_le16(1<<13) /* enable leaf node bridge */
545 #define MODE_CF_POLLABLE cpu_to_le16(1<<14) /* enable CF pollable */
546 #define MODE_MIC cpu_to_le16(1<<15) /* enable MIC */
547 __le16 rmode; /* receive mode */
548 #define RXMODE_BC_MC_ADDR cpu_to_le16(0)
549 #define RXMODE_BC_ADDR cpu_to_le16(1) /* ignore multicasts */
550 #define RXMODE_ADDR cpu_to_le16(2) /* ignore multicast and broadcast */
551 #define RXMODE_RFMON cpu_to_le16(3) /* wireless monitor mode */
552 #define RXMODE_RFMON_ANYBSS cpu_to_le16(4)
553 #define RXMODE_LANMON cpu_to_le16(5) /* lan style monitor -- data packets only */
554 #define RXMODE_MASK cpu_to_le16(255)
555 #define RXMODE_DISABLE_802_3_HEADER cpu_to_le16(1<<8) /* disables 802.3 header on rx */
556 #define RXMODE_FULL_MASK (RXMODE_MASK | RXMODE_DISABLE_802_3_HEADER)
557 #define RXMODE_NORMALIZED_RSSI cpu_to_le16(1<<9) /* return normalized RSSI */
560 u8 macAddr[ETH_ALEN];
562 __le16 shortRetryLimit;
563 __le16 longRetryLimit;
564 __le16 txLifetime; /* in kusec */
565 __le16 rxLifetime; /* in kusec */
568 __le16 u16deviceType; /* for overriding device type */
571 __le16 _reserved1[3];
572 /*---------- Scanning/Associating ----------*/
574 #define SCANMODE_ACTIVE cpu_to_le16(0)
575 #define SCANMODE_PASSIVE cpu_to_le16(1)
576 #define SCANMODE_AIROSCAN cpu_to_le16(2)
577 __le16 probeDelay; /* in kusec */
578 __le16 probeEnergyTimeout; /* in kusec */
579 __le16 probeResponseTimeout;
580 __le16 beaconListenTimeout;
581 __le16 joinNetTimeout;
584 #define AUTH_OPEN cpu_to_le16(0x1)
585 #define AUTH_ENCRYPT cpu_to_le16(0x101)
586 #define AUTH_SHAREDKEY cpu_to_le16(0x102)
587 #define AUTH_ALLOW_UNENCRYPTED cpu_to_le16(0x200)
588 __le16 associationTimeout;
589 __le16 specifiedApTimeout;
590 __le16 offlineScanInterval;
591 __le16 offlineScanDuration;
592 __le16 linkLossDelay;
593 __le16 maxBeaconLostTime;
594 __le16 refreshInterval;
595 #define DISABLE_REFRESH cpu_to_le16(0xFFFF)
596 __le16 _reserved1a[1];
597 /*---------- Power save operation ----------*/
598 __le16 powerSaveMode;
599 #define POWERSAVE_CAM cpu_to_le16(0)
600 #define POWERSAVE_PSP cpu_to_le16(1)
601 #define POWERSAVE_PSPCAM cpu_to_le16(2)
602 __le16 sleepForDtims;
603 __le16 listenInterval;
604 __le16 fastListenInterval;
606 __le16 fastListenDelay;
607 __le16 _reserved2[2];
608 /*---------- Ap/Ibss config items ----------*/
615 __le16 bridgeDistance;
617 /*---------- Radio configuration ----------*/
619 #define RADIOTYPE_DEFAULT cpu_to_le16(0)
620 #define RADIOTYPE_802_11 cpu_to_le16(1)
621 #define RADIOTYPE_LEGACY cpu_to_le16(2)
625 #define TXPOWER_DEFAULT 0
626 __le16 rssiThreshold;
627 #define RSSI_DEFAULT 0
629 #define PREAMBLE_AUTO cpu_to_le16(0)
630 #define PREAMBLE_LONG cpu_to_le16(1)
631 #define PREAMBLE_SHORT cpu_to_le16(2)
634 __le16 radioSpecific;
635 /*---------- Aironet Extensions ----------*/
640 __le16 _reserved4[1];
641 /*---------- Aironet Extensions ----------*/
643 #define MAGIC_ACTION_STSCHG 1
644 #define MAGIC_ACTION_RESUME 2
645 #define MAGIC_IGNORE_MCAST (1<<8)
646 #define MAGIC_IGNORE_BCAST (1<<9)
647 #define MAGIC_SWITCH_TO_PSP (0<<10)
648 #define MAGIC_STAY_IN_CAM (1<<10)
662 u8 bssid[4][ETH_ALEN];
669 __le16 hopsToBackbone;
671 __le16 generatedLoad;
672 __le16 accumulatedArl;
673 __le16 signalQuality;
674 __le16 currentXmitRate;
675 __le16 apDevExtensions;
676 __le16 normalizedSignalStrength;
677 __le16 shortPreamble;
679 u8 noisePercent; /* Noise percent in last second */
680 u8 noisedBm; /* Noise dBm in last second */
681 u8 noiseAvePercent; /* Noise percent in last minute */
682 u8 noiseAvedBm; /* Noise dBm in last minute */
683 u8 noiseMaxPercent; /* Highest noise percent in last minute */
684 u8 noiseMaxdBm; /* Highest noise dbm in last minute */
688 #define STAT_NOPACKETS 0
689 #define STAT_NOCARRIERSET 10
690 #define STAT_GOTCARRIERSET 11
691 #define STAT_WRONGSSID 20
692 #define STAT_BADCHANNEL 25
693 #define STAT_BADBITRATES 30
694 #define STAT_BADPRIVACY 35
695 #define STAT_APFOUND 40
696 #define STAT_APREJECTED 50
697 #define STAT_AUTHENTICATING 60
698 #define STAT_DEAUTHENTICATED 61
699 #define STAT_AUTHTIMEOUT 62
700 #define STAT_ASSOCIATING 70
701 #define STAT_DEASSOCIATED 71
702 #define STAT_ASSOCTIMEOUT 72
703 #define STAT_NOTAIROAP 73
704 #define STAT_ASSOCIATED 80
705 #define STAT_LEAPING 90
706 #define STAT_LEAPFAILED 91
707 #define STAT_LEAPTIMEDOUT 92
708 #define STAT_LEAPCOMPLETE 93
731 char factoryAddr[ETH_ALEN];
732 char aironetAddr[ETH_ALEN];
735 char callid[ETH_ALEN];
736 char supportedRates[8];
739 __le16 txPowerLevels[8];
753 /* Only present on firmware >= 5.30.17 */
756 u8 fixed[12]; /* WLAN management frame */
762 __le16 index; /* First is 0 and 0xffff means end of list */
763 #define RADIO_FH 1 /* Frequency hopping radio type */
764 #define RADIO_DS 2 /* Direct sequence radio type */
765 #define RADIO_TMA 4 /* Proprietary radio used in old cards (2500) */
767 u8 bssid[ETH_ALEN]; /* Mac address of the BSS */
772 #define CAP_ESS cpu_to_le16(1<<0)
773 #define CAP_IBSS cpu_to_le16(1<<1)
774 #define CAP_PRIVACY cpu_to_le16(1<<4)
775 #define CAP_SHORTHDR cpu_to_le16(1<<5)
777 __le16 beaconInterval;
778 u8 rates[8]; /* Same as rates for config rid */
779 struct { /* For frequency hopping only */
789 /* Only present on firmware >= 5.30.17 */
790 BSSListRidExtra extra;
795 struct list_head list;
841 #define TXCTL_TXOK (1<<1) /* report if tx is ok */
842 #define TXCTL_TXEX (1<<2) /* report if tx fails */
843 #define TXCTL_802_3 (0<<3) /* 802.3 packet */
844 #define TXCTL_802_11 (1<<3) /* 802.11 mac packet */
845 #define TXCTL_ETHERNET (0<<4) /* payload has ethertype */
846 #define TXCTL_LLC (1<<4) /* payload is llc */
847 #define TXCTL_RELEASE (0<<5) /* release after completion */
848 #define TXCTL_NORELEASE (1<<5) /* on completion returns to host */
850 #define BUSY_FID 0x10000
853 #define AIROMAGIC 0xa55a
854 /* Warning : SIOCDEVPRIVATE may disapear during 2.5.X - Jean II */
855 #ifdef SIOCIWFIRSTPRIV
856 #ifdef SIOCDEVPRIVATE
857 #define AIROOLDIOCTL SIOCDEVPRIVATE
858 #define AIROOLDIDIFC AIROOLDIOCTL + 1
859 #endif /* SIOCDEVPRIVATE */
860 #else /* SIOCIWFIRSTPRIV */
861 #define SIOCIWFIRSTPRIV SIOCDEVPRIVATE
862 #endif /* SIOCIWFIRSTPRIV */
863 /* This may be wrong. When using the new SIOCIWFIRSTPRIV range, we probably
864 * should use only "GET" ioctls (last bit set to 1). "SET" ioctls are root
865 * only and don't return the modified struct ifreq to the application which
866 * is usually a problem. - Jean II */
867 #define AIROIOCTL SIOCIWFIRSTPRIV
868 #define AIROIDIFC AIROIOCTL + 1
870 /* Ioctl constants to be used in airo_ioctl.command */
872 #define AIROGCAP 0 // Capability rid
873 #define AIROGCFG 1 // USED A LOT
874 #define AIROGSLIST 2 // System ID list
875 #define AIROGVLIST 3 // List of specified AP's
876 #define AIROGDRVNAM 4 // NOTUSED
877 #define AIROGEHTENC 5 // NOTUSED
878 #define AIROGWEPKTMP 6
879 #define AIROGWEPKNV 7
881 #define AIROGSTATSC32 9
882 #define AIROGSTATSD32 10
883 #define AIROGMICRID 11
884 #define AIROGMICSTATS 12
885 #define AIROGFLAGS 13
888 #define AIRORSWVERSION 17
890 /* Leave gap of 40 commands after AIROGSTATSD32 for future */
892 #define AIROPCAP AIROGSTATSD32 + 40
893 #define AIROPVLIST AIROPCAP + 1
894 #define AIROPSLIST AIROPVLIST + 1
895 #define AIROPCFG AIROPSLIST + 1
896 #define AIROPSIDS AIROPCFG + 1
897 #define AIROPAPLIST AIROPSIDS + 1
898 #define AIROPMACON AIROPAPLIST + 1 /* Enable mac */
899 #define AIROPMACOFF AIROPMACON + 1 /* Disable mac */
900 #define AIROPSTCLR AIROPMACOFF + 1
901 #define AIROPWEPKEY AIROPSTCLR + 1
902 #define AIROPWEPKEYNV AIROPWEPKEY + 1
903 #define AIROPLEAPPWD AIROPWEPKEYNV + 1
904 #define AIROPLEAPUSR AIROPLEAPPWD + 1
908 #define AIROFLSHRST AIROPWEPKEYNV + 40
909 #define AIROFLSHGCHR AIROFLSHRST + 1
910 #define AIROFLSHSTFL AIROFLSHGCHR + 1
911 #define AIROFLSHPCHR AIROFLSHSTFL + 1
912 #define AIROFLPUTBUF AIROFLSHPCHR + 1
913 #define AIRORESTART AIROFLPUTBUF + 1
915 #define FLASHSIZE 32768
916 #define AUXMEMSIZE (256 * 1024)
918 typedef struct aironet_ioctl {
919 unsigned short command; // What to do
920 unsigned short len; // Len of data
921 unsigned short ridnum; // rid number
922 unsigned char __user *data; // d-data
925 static char swversion[] = "2.1";
926 #endif /* CISCO_EXT */
928 #define NUM_MODULES 2
929 #define MIC_MSGLEN_MAX 2400
930 #define EMMH32_MSGLEN_MAX MIC_MSGLEN_MAX
931 #define AIRO_DEF_MTU 2312
935 u8 enabled; // MIC enabled or not
936 u32 rxSuccess; // successful packets received
937 u32 rxIncorrectMIC; // pkts dropped due to incorrect MIC comparison
938 u32 rxNotMICed; // pkts dropped due to not being MIC'd
939 u32 rxMICPlummed; // pkts dropped due to not having a MIC plummed
940 u32 rxWrongSequence; // pkts dropped due to sequence number violation
945 u32 coeff[((EMMH32_MSGLEN_MAX)+3)>>2];
946 u64 accum; // accumulated mic, reduced to u32 in final()
947 int position; // current position (byte offset) in message
951 } part; // saves partial message word across update() calls
955 emmh32_context seed; // Context - the seed
956 u32 rx; // Received sequence number
957 u32 tx; // Tx sequence number
958 u32 window; // Start of window
959 u8 valid; // Flag to say if context is valid or not
964 miccntx mCtx; // Multicast context
965 miccntx uCtx; // Unicast context
969 unsigned int rid: 16;
970 unsigned int len: 15;
971 unsigned int valid: 1;
972 dma_addr_t host_addr;
976 unsigned int offset: 15;
978 unsigned int len: 15;
979 unsigned int valid: 1;
980 dma_addr_t host_addr;
984 unsigned int ctl: 15;
986 unsigned int len: 15;
987 unsigned int valid: 1;
988 dma_addr_t host_addr;
992 * Host receive descriptor
995 unsigned char __iomem *card_ram_off; /* offset into card memory of the
997 RxFid rx_desc; /* card receive descriptor */
998 char *virtual_host_addr; /* virtual address of host receive
1004 * Host transmit descriptor
1007 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1009 TxFid tx_desc; /* card transmit descriptor */
1010 char *virtual_host_addr; /* virtual address of host receive
1016 * Host RID descriptor
1019 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1021 Rid rid_desc; /* card RID descriptor */
1022 char *virtual_host_addr; /* virtual address of host receive
1031 #define HOST_SET (1 << 0)
1032 #define HOST_INT_TX (1 << 1) /* Interrupt on successful TX */
1033 #define HOST_INT_TXERR (1 << 2) /* Interrupt on unseccessful TX */
1034 #define HOST_LCC_PAYLOAD (1 << 4) /* LLC payload, 0 = Ethertype */
1035 #define HOST_DONT_RLSE (1 << 5) /* Don't release buffer when done */
1036 #define HOST_DONT_RETRY (1 << 6) /* Don't retry trasmit */
1037 #define HOST_CLR_AID (1 << 7) /* clear AID failure */
1038 #define HOST_RTS (1 << 9) /* Force RTS use */
1039 #define HOST_SHORT (1 << 10) /* Do short preamble */
1066 static WifiCtlHdr wifictlhdr8023 = {
1068 .ctl = HOST_DONT_RLSE,
1072 // Frequency list (map channels to frequencies)
1073 static const long frequency_list[] = { 2412, 2417, 2422, 2427, 2432, 2437, 2442,
1074 2447, 2452, 2457, 2462, 2467, 2472, 2484 };
1076 // A few details needed for WEP (Wireless Equivalent Privacy)
1077 #define MAX_KEY_SIZE 13 // 128 (?) bits
1078 #define MIN_KEY_SIZE 5 // 40 bits RC4 - WEP
1079 typedef struct wep_key_t {
1081 u8 key[16]; /* 40-bit and 104-bit keys */
1084 /* Backward compatibility */
1085 #ifndef IW_ENCODE_NOKEY
1086 #define IW_ENCODE_NOKEY 0x0800 /* Key is write only, so not present */
1087 #define IW_ENCODE_MODE (IW_ENCODE_DISABLED | IW_ENCODE_RESTRICTED | IW_ENCODE_OPEN)
1088 #endif /* IW_ENCODE_NOKEY */
1090 /* List of Wireless Handlers (new API) */
1091 static const struct iw_handler_def airo_handler_def;
1093 static const char version[] = "airo.c 0.6 (Ben Reed & Javier Achirica)";
1097 static int get_dec_u16( char *buffer, int *start, int limit );
1098 static void OUT4500( struct airo_info *, u16 register, u16 value );
1099 static unsigned short IN4500( struct airo_info *, u16 register );
1100 static u16 setup_card(struct airo_info*, u8 *mac, int lock);
1101 static int enable_MAC(struct airo_info *ai, int lock);
1102 static void disable_MAC(struct airo_info *ai, int lock);
1103 static void enable_interrupts(struct airo_info*);
1104 static void disable_interrupts(struct airo_info*);
1105 static u16 issuecommand(struct airo_info*, Cmd *pCmd, Resp *pRsp);
1106 static int bap_setup(struct airo_info*, u16 rid, u16 offset, int whichbap);
1107 static int aux_bap_read(struct airo_info*, __le16 *pu16Dst, int bytelen,
1109 static int fast_bap_read(struct airo_info*, __le16 *pu16Dst, int bytelen,
1111 static int bap_write(struct airo_info*, const __le16 *pu16Src, int bytelen,
1113 static int PC4500_accessrid(struct airo_info*, u16 rid, u16 accmd);
1114 static int PC4500_readrid(struct airo_info*, u16 rid, void *pBuf, int len, int lock);
1115 static int PC4500_writerid(struct airo_info*, u16 rid, const void
1116 *pBuf, int len, int lock);
1117 static int do_writerid( struct airo_info*, u16 rid, const void *rid_data,
1118 int len, int dummy );
1119 static u16 transmit_allocate(struct airo_info*, int lenPayload, int raw);
1120 static int transmit_802_3_packet(struct airo_info*, int len, char *pPacket);
1121 static int transmit_802_11_packet(struct airo_info*, int len, char *pPacket);
1123 static int mpi_send_packet (struct net_device *dev);
1124 static void mpi_unmap_card(struct pci_dev *pci);
1125 static void mpi_receive_802_3(struct airo_info *ai);
1126 static void mpi_receive_802_11(struct airo_info *ai);
1127 static int waitbusy (struct airo_info *ai);
1129 static irqreturn_t airo_interrupt( int irq, void* dev_id);
1130 static int airo_thread(void *data);
1131 static void timer_func( struct net_device *dev );
1132 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd);
1133 static struct iw_statistics *airo_get_wireless_stats (struct net_device *dev);
1134 static void airo_read_wireless_stats (struct airo_info *local);
1136 static int readrids(struct net_device *dev, aironet_ioctl *comp);
1137 static int writerids(struct net_device *dev, aironet_ioctl *comp);
1138 static int flashcard(struct net_device *dev, aironet_ioctl *comp);
1139 #endif /* CISCO_EXT */
1140 static void micinit(struct airo_info *ai);
1141 static int micsetup(struct airo_info *ai);
1142 static int encapsulate(struct airo_info *ai, etherHead *pPacket, MICBuffer *buffer, int len);
1143 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *pPacket, u16 payLen);
1145 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi);
1146 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm);
1148 static void airo_networks_free(struct airo_info *ai);
1151 struct net_device *dev;
1152 struct list_head dev_list;
1153 /* Note, we can have MAX_FIDS outstanding. FIDs are 16-bits, so we
1154 use the high bit to mark whether it is in use. */
1156 #define MPI_MAX_FIDS 1
1159 char keyindex; // Used with auto wep
1160 char defindex; // Used with auto wep
1161 struct proc_dir_entry *proc_entry;
1162 spinlock_t aux_lock;
1163 #define FLAG_RADIO_OFF 0 /* User disabling of MAC */
1164 #define FLAG_RADIO_DOWN 1 /* ifup/ifdown disabling of MAC */
1165 #define FLAG_RADIO_MASK 0x03
1166 #define FLAG_ENABLED 2
1167 #define FLAG_ADHOC 3 /* Needed by MIC */
1168 #define FLAG_MIC_CAPABLE 4
1169 #define FLAG_UPDATE_MULTI 5
1170 #define FLAG_UPDATE_UNI 6
1171 #define FLAG_802_11 7
1172 #define FLAG_PROMISC 8 /* IFF_PROMISC 0x100 - include/linux/if.h */
1173 #define FLAG_PENDING_XMIT 9
1174 #define FLAG_PENDING_XMIT11 10
1176 #define FLAG_REGISTERED 12
1177 #define FLAG_COMMIT 13
1178 #define FLAG_RESET 14
1179 #define FLAG_FLASHING 15
1180 #define FLAG_WPA_CAPABLE 16
1181 unsigned long flags;
1184 #define JOB_XMIT11 2
1186 #define JOB_PROMISC 4
1189 #define JOB_AUTOWEP 7
1190 #define JOB_WSTATS 8
1191 #define JOB_SCAN_RESULTS 9
1193 int (*bap_read)(struct airo_info*, __le16 *pu16Dst, int bytelen,
1195 unsigned short *flash;
1197 struct task_struct *list_bss_task;
1198 struct task_struct *airo_thread_task;
1199 struct semaphore sem;
1200 wait_queue_head_t thr_wait;
1201 unsigned long expires;
1203 struct sk_buff *skb;
1206 struct net_device *wifidev;
1207 struct iw_statistics wstats; // wireless stats
1208 unsigned long scan_timeout; /* Time scan should be read */
1209 struct iw_spy_data spy_data;
1210 struct iw_public_data wireless_data;
1212 struct crypto_cipher *tfm;
1214 mic_statistics micstats;
1215 HostRxDesc rxfids[MPI_MAX_FIDS]; // rx/tx/config MPI350 descriptors
1216 HostTxDesc txfids[MPI_MAX_FIDS];
1217 HostRidDesc config_desc;
1218 unsigned long ridbus; // phys addr of config_desc
1219 struct sk_buff_head txq;// tx queue used by mpi350 code
1220 struct pci_dev *pci;
1221 unsigned char __iomem *pcimem;
1222 unsigned char __iomem *pciaux;
1223 unsigned char *shared;
1224 dma_addr_t shared_dma;
1228 #define PCI_SHARED_LEN 2*MPI_MAX_FIDS*PKTSIZE+RIDSIZE
1229 char proc_name[IFNAMSIZ];
1231 /* WPA-related stuff */
1232 unsigned int bssListFirst;
1233 unsigned int bssListNext;
1234 unsigned int bssListRidLen;
1236 struct list_head network_list;
1237 struct list_head network_free_list;
1238 BSSListElement *networks;
1241 static inline int bap_read(struct airo_info *ai, __le16 *pu16Dst, int bytelen,
1244 return ai->bap_read(ai, pu16Dst, bytelen, whichbap);
1247 static int setup_proc_entry( struct net_device *dev,
1248 struct airo_info *apriv );
1249 static int takedown_proc_entry( struct net_device *dev,
1250 struct airo_info *apriv );
1252 static int cmdreset(struct airo_info *ai);
1253 static int setflashmode (struct airo_info *ai);
1254 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime);
1255 static int flashputbuf(struct airo_info *ai);
1256 static int flashrestart(struct airo_info *ai,struct net_device *dev);
1258 #define airo_print(type, name, fmt, args...) \
1259 printk(type DRV_NAME "(%s): " fmt "\n", name, ##args)
1261 #define airo_print_info(name, fmt, args...) \
1262 airo_print(KERN_INFO, name, fmt, ##args)
1264 #define airo_print_dbg(name, fmt, args...) \
1265 airo_print(KERN_DEBUG, name, fmt, ##args)
1267 #define airo_print_warn(name, fmt, args...) \
1268 airo_print(KERN_WARNING, name, fmt, ##args)
1270 #define airo_print_err(name, fmt, args...) \
1271 airo_print(KERN_ERR, name, fmt, ##args)
1274 /***********************************************************************
1276 ***********************************************************************
1279 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq);
1280 static void MoveWindow(miccntx *context, u32 micSeq);
1281 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen,
1282 struct crypto_cipher *tfm);
1283 static void emmh32_init(emmh32_context *context);
1284 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len);
1285 static void emmh32_final(emmh32_context *context, u8 digest[4]);
1286 static int flashpchar(struct airo_info *ai,int byte,int dwelltime);
1288 /* micinit - Initialize mic seed */
1290 static void micinit(struct airo_info *ai)
1294 clear_bit(JOB_MIC, &ai->jobs);
1295 PC4500_readrid(ai, RID_MIC, &mic_rid, sizeof(mic_rid), 0);
1298 ai->micstats.enabled = (mic_rid.state & 0x00FF) ? 1 : 0;
1300 if (ai->micstats.enabled) {
1301 /* Key must be valid and different */
1302 if (mic_rid.multicastValid && (!ai->mod[0].mCtx.valid ||
1303 (memcmp (ai->mod[0].mCtx.key, mic_rid.multicast,
1304 sizeof(ai->mod[0].mCtx.key)) != 0))) {
1305 /* Age current mic Context */
1306 memcpy(&ai->mod[1].mCtx,&ai->mod[0].mCtx,sizeof(miccntx));
1307 /* Initialize new context */
1308 memcpy(&ai->mod[0].mCtx.key,mic_rid.multicast,sizeof(mic_rid.multicast));
1309 ai->mod[0].mCtx.window = 33; //Window always points to the middle
1310 ai->mod[0].mCtx.rx = 0; //Rx Sequence numbers
1311 ai->mod[0].mCtx.tx = 0; //Tx sequence numbers
1312 ai->mod[0].mCtx.valid = 1; //Key is now valid
1314 /* Give key to mic seed */
1315 emmh32_setseed(&ai->mod[0].mCtx.seed,mic_rid.multicast,sizeof(mic_rid.multicast), ai->tfm);
1318 /* Key must be valid and different */
1319 if (mic_rid.unicastValid && (!ai->mod[0].uCtx.valid ||
1320 (memcmp(ai->mod[0].uCtx.key, mic_rid.unicast,
1321 sizeof(ai->mod[0].uCtx.key)) != 0))) {
1322 /* Age current mic Context */
1323 memcpy(&ai->mod[1].uCtx,&ai->mod[0].uCtx,sizeof(miccntx));
1324 /* Initialize new context */
1325 memcpy(&ai->mod[0].uCtx.key,mic_rid.unicast,sizeof(mic_rid.unicast));
1327 ai->mod[0].uCtx.window = 33; //Window always points to the middle
1328 ai->mod[0].uCtx.rx = 0; //Rx Sequence numbers
1329 ai->mod[0].uCtx.tx = 0; //Tx sequence numbers
1330 ai->mod[0].uCtx.valid = 1; //Key is now valid
1332 //Give key to mic seed
1333 emmh32_setseed(&ai->mod[0].uCtx.seed, mic_rid.unicast, sizeof(mic_rid.unicast), ai->tfm);
1336 /* So next time we have a valid key and mic is enabled, we will update
1337 * the sequence number if the key is the same as before.
1339 ai->mod[0].uCtx.valid = 0;
1340 ai->mod[0].mCtx.valid = 0;
1344 /* micsetup - Get ready for business */
1346 static int micsetup(struct airo_info *ai) {
1349 if (ai->tfm == NULL)
1350 ai->tfm = crypto_alloc_cipher("aes", 0, CRYPTO_ALG_ASYNC);
1352 if (IS_ERR(ai->tfm)) {
1353 airo_print_err(ai->dev->name, "failed to load transform for AES");
1358 for (i=0; i < NUM_MODULES; i++) {
1359 memset(&ai->mod[i].mCtx,0,sizeof(miccntx));
1360 memset(&ai->mod[i].uCtx,0,sizeof(miccntx));
1365 static char micsnap[] = {0xAA,0xAA,0x03,0x00,0x40,0x96,0x00,0x02};
1367 /*===========================================================================
1368 * Description: Mic a packet
1370 * Inputs: etherHead * pointer to an 802.3 frame
1372 * Returns: BOOLEAN if successful, otherwise false.
1373 * PacketTxLen will be updated with the mic'd packets size.
1375 * Caveats: It is assumed that the frame buffer will already
1376 * be big enough to hold the largets mic message possible.
1377 * (No memory allocation is done here).
1379 * Author: sbraneky (10/15/01)
1380 * Merciless hacks by rwilcher (1/14/02)
1383 static int encapsulate(struct airo_info *ai ,etherHead *frame, MICBuffer *mic, int payLen)
1387 // Determine correct context
1388 // If not adhoc, always use unicast key
1390 if (test_bit(FLAG_ADHOC, &ai->flags) && (frame->da[0] & 0x1))
1391 context = &ai->mod[0].mCtx;
1393 context = &ai->mod[0].uCtx;
1395 if (!context->valid)
1398 mic->typelen = htons(payLen + 16); //Length of Mic'd packet
1400 memcpy(&mic->u.snap, micsnap, sizeof(micsnap)); // Add Snap
1403 mic->seq = htonl(context->tx);
1406 emmh32_init(&context->seed); // Mic the packet
1407 emmh32_update(&context->seed,frame->da,ETH_ALEN * 2); // DA,SA
1408 emmh32_update(&context->seed,(u8*)&mic->typelen,10); // Type/Length and Snap
1409 emmh32_update(&context->seed,(u8*)&mic->seq,sizeof(mic->seq)); //SEQ
1410 emmh32_update(&context->seed,frame->da + ETH_ALEN * 2,payLen); //payload
1411 emmh32_final(&context->seed, (u8*)&mic->mic);
1413 /* New Type/length ?????????? */
1414 mic->typelen = 0; //Let NIC know it could be an oversized packet
1426 /*===========================================================================
1427 * Description: Decapsulates a MIC'd packet and returns the 802.3 packet
1428 * (removes the MIC stuff) if packet is a valid packet.
1430 * Inputs: etherHead pointer to the 802.3 packet
1432 * Returns: BOOLEAN - TRUE if packet should be dropped otherwise FALSE
1434 * Author: sbraneky (10/15/01)
1435 * Merciless hacks by rwilcher (1/14/02)
1436 *---------------------------------------------------------------------------
1439 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *eth, u16 payLen)
1445 mic_error micError = NONE;
1447 // Check if the packet is a Mic'd packet
1449 if (!ai->micstats.enabled) {
1450 //No Mic set or Mic OFF but we received a MIC'd packet.
1451 if (memcmp ((u8*)eth + 14, micsnap, sizeof(micsnap)) == 0) {
1452 ai->micstats.rxMICPlummed++;
1458 if (ntohs(mic->typelen) == 0x888E)
1461 if (memcmp (mic->u.snap, micsnap, sizeof(micsnap)) != 0) {
1462 // Mic enabled but packet isn't Mic'd
1463 ai->micstats.rxMICPlummed++;
1467 micSEQ = ntohl(mic->seq); //store SEQ as CPU order
1469 //At this point we a have a mic'd packet and mic is enabled
1470 //Now do the mic error checking.
1472 //Receive seq must be odd
1473 if ( (micSEQ & 1) == 0 ) {
1474 ai->micstats.rxWrongSequence++;
1478 for (i = 0; i < NUM_MODULES; i++) {
1479 int mcast = eth->da[0] & 1;
1480 //Determine proper context
1481 context = mcast ? &ai->mod[i].mCtx : &ai->mod[i].uCtx;
1483 //Make sure context is valid
1484 if (!context->valid) {
1486 micError = NOMICPLUMMED;
1492 mic->typelen = htons(payLen + sizeof(MICBuffer) - 2);
1494 emmh32_init(&context->seed);
1495 emmh32_update(&context->seed, eth->da, ETH_ALEN*2);
1496 emmh32_update(&context->seed, (u8 *)&mic->typelen, sizeof(mic->typelen)+sizeof(mic->u.snap));
1497 emmh32_update(&context->seed, (u8 *)&mic->seq,sizeof(mic->seq));
1498 emmh32_update(&context->seed, eth->da + ETH_ALEN*2,payLen);
1500 emmh32_final(&context->seed, digest);
1502 if (memcmp(digest, &mic->mic, 4)) { //Make sure the mics match
1505 micError = INCORRECTMIC;
1509 //Check Sequence number if mics pass
1510 if (RxSeqValid(ai, context, mcast, micSEQ) == SUCCESS) {
1511 ai->micstats.rxSuccess++;
1515 micError = SEQUENCE;
1518 // Update statistics
1520 case NOMICPLUMMED: ai->micstats.rxMICPlummed++; break;
1521 case SEQUENCE: ai->micstats.rxWrongSequence++; break;
1522 case INCORRECTMIC: ai->micstats.rxIncorrectMIC++; break;
1529 /*===========================================================================
1530 * Description: Checks the Rx Seq number to make sure it is valid
1531 * and hasn't already been received
1533 * Inputs: miccntx - mic context to check seq against
1534 * micSeq - the Mic seq number
1536 * Returns: TRUE if valid otherwise FALSE.
1538 * Author: sbraneky (10/15/01)
1539 * Merciless hacks by rwilcher (1/14/02)
1540 *---------------------------------------------------------------------------
1543 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq)
1547 //Allow for the ap being rebooted - if it is then use the next
1548 //sequence number of the current sequence number - might go backwards
1551 if (test_bit(FLAG_UPDATE_MULTI, &ai->flags)) {
1552 clear_bit (FLAG_UPDATE_MULTI, &ai->flags);
1553 context->window = (micSeq > 33) ? micSeq : 33;
1554 context->rx = 0; // Reset rx
1556 } else if (test_bit(FLAG_UPDATE_UNI, &ai->flags)) {
1557 clear_bit (FLAG_UPDATE_UNI, &ai->flags);
1558 context->window = (micSeq > 33) ? micSeq : 33; // Move window
1559 context->rx = 0; // Reset rx
1562 //Make sequence number relative to START of window
1563 seq = micSeq - (context->window - 33);
1565 //Too old of a SEQ number to check.
1570 //Window is infinite forward
1571 MoveWindow(context,micSeq);
1575 // We are in the window. Now check the context rx bit to see if it was already sent
1576 seq >>= 1; //divide by 2 because we only have odd numbers
1577 index = 1 << seq; //Get an index number
1579 if (!(context->rx & index)) {
1580 //micSEQ falls inside the window.
1581 //Add seqence number to the list of received numbers.
1582 context->rx |= index;
1584 MoveWindow(context,micSeq);
1591 static void MoveWindow(miccntx *context, u32 micSeq)
1595 //Move window if seq greater than the middle of the window
1596 if (micSeq > context->window) {
1597 shift = (micSeq - context->window) >> 1;
1601 context->rx >>= shift;
1605 context->window = micSeq; //Move window
1609 /*==============================================*/
1610 /*========== EMMH ROUTINES ====================*/
1611 /*==============================================*/
1613 /* mic accumulate */
1614 #define MIC_ACCUM(val) \
1615 context->accum += (u64)(val) * context->coeff[coeff_position++];
1617 static unsigned char aes_counter[16];
1619 /* expand the key to fill the MMH coefficient array */
1620 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen,
1621 struct crypto_cipher *tfm)
1623 /* take the keying material, expand if necessary, truncate at 16-bytes */
1624 /* run through AES counter mode to generate context->coeff[] */
1628 u8 *cipher, plain[16];
1630 crypto_cipher_setkey(tfm, pkey, 16);
1632 for (i = 0; i < ARRAY_SIZE(context->coeff); ) {
1633 aes_counter[15] = (u8)(counter >> 0);
1634 aes_counter[14] = (u8)(counter >> 8);
1635 aes_counter[13] = (u8)(counter >> 16);
1636 aes_counter[12] = (u8)(counter >> 24);
1638 memcpy (plain, aes_counter, 16);
1639 crypto_cipher_encrypt_one(tfm, plain, plain);
1641 for (j = 0; (j < 16) && (i < ARRAY_SIZE(context->coeff)); ) {
1642 context->coeff[i++] = ntohl(*(__be32 *)&cipher[j]);
1648 /* prepare for calculation of a new mic */
1649 static void emmh32_init(emmh32_context *context)
1651 /* prepare for new mic calculation */
1653 context->position = 0;
1656 /* add some bytes to the mic calculation */
1657 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len)
1659 int coeff_position, byte_position;
1661 if (len == 0) return;
1663 coeff_position = context->position >> 2;
1665 /* deal with partial 32-bit word left over from last update */
1666 byte_position = context->position & 3;
1667 if (byte_position) {
1668 /* have a partial word in part to deal with */
1670 if (len == 0) return;
1671 context->part.d8[byte_position++] = *pOctets++;
1672 context->position++;
1674 } while (byte_position < 4);
1675 MIC_ACCUM(ntohl(context->part.d32));
1678 /* deal with full 32-bit words */
1680 MIC_ACCUM(ntohl(*(__be32 *)pOctets));
1681 context->position += 4;
1686 /* deal with partial 32-bit word that will be left over from this update */
1689 context->part.d8[byte_position++] = *pOctets++;
1690 context->position++;
1695 /* mask used to zero empty bytes for final partial word */
1696 static u32 mask32[4] = { 0x00000000L, 0xFF000000L, 0xFFFF0000L, 0xFFFFFF00L };
1698 /* calculate the mic */
1699 static void emmh32_final(emmh32_context *context, u8 digest[4])
1701 int coeff_position, byte_position;
1707 coeff_position = context->position >> 2;
1709 /* deal with partial 32-bit word left over from last update */
1710 byte_position = context->position & 3;
1711 if (byte_position) {
1712 /* have a partial word in part to deal with */
1713 val = ntohl(context->part.d32);
1714 MIC_ACCUM(val & mask32[byte_position]); /* zero empty bytes */
1717 /* reduce the accumulated u64 to a 32-bit MIC */
1718 sum = context->accum;
1719 stmp = (sum & 0xffffffffLL) - ((sum >> 32) * 15);
1720 utmp = (stmp & 0xffffffffLL) - ((stmp >> 32) * 15);
1721 sum = utmp & 0xffffffffLL;
1722 if (utmp > 0x10000000fLL)
1726 digest[0] = (val>>24) & 0xFF;
1727 digest[1] = (val>>16) & 0xFF;
1728 digest[2] = (val>>8) & 0xFF;
1729 digest[3] = val & 0xFF;
1732 static int readBSSListRid(struct airo_info *ai, int first,
1739 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
1740 memset(&cmd, 0, sizeof(cmd));
1741 cmd.cmd=CMD_LISTBSS;
1742 if (down_interruptible(&ai->sem))
1743 return -ERESTARTSYS;
1744 ai->list_bss_task = current;
1745 issuecommand(ai, &cmd, &rsp);
1747 /* Let the command take effect */
1748 schedule_timeout_uninterruptible(3 * HZ);
1749 ai->list_bss_task = NULL;
1751 return PC4500_readrid(ai, first ? ai->bssListFirst : ai->bssListNext,
1752 list, ai->bssListRidLen, 1);
1755 static int readWepKeyRid(struct airo_info *ai, WepKeyRid *wkr, int temp, int lock)
1757 return PC4500_readrid(ai, temp ? RID_WEP_TEMP : RID_WEP_PERM,
1758 wkr, sizeof(*wkr), lock);
1761 static int writeWepKeyRid(struct airo_info *ai, WepKeyRid *wkr, int perm, int lock)
1764 rc = PC4500_writerid(ai, RID_WEP_TEMP, wkr, sizeof(*wkr), lock);
1766 airo_print_err(ai->dev->name, "WEP_TEMP set %x", rc);
1768 rc = PC4500_writerid(ai, RID_WEP_PERM, wkr, sizeof(*wkr), lock);
1770 airo_print_err(ai->dev->name, "WEP_PERM set %x", rc);
1775 static int readSsidRid(struct airo_info*ai, SsidRid *ssidr)
1777 return PC4500_readrid(ai, RID_SSID, ssidr, sizeof(*ssidr), 1);
1780 static int writeSsidRid(struct airo_info*ai, SsidRid *pssidr, int lock)
1782 return PC4500_writerid(ai, RID_SSID, pssidr, sizeof(*pssidr), lock);
1785 static int readConfigRid(struct airo_info *ai, int lock)
1793 rc = PC4500_readrid(ai, RID_ACTUALCONFIG, &cfg, sizeof(cfg), lock);
1801 static inline void checkThrottle(struct airo_info *ai)
1804 /* Old hardware had a limit on encryption speed */
1805 if (ai->config.authType != AUTH_OPEN && maxencrypt) {
1806 for(i=0; i<8; i++) {
1807 if (ai->config.rates[i] > maxencrypt) {
1808 ai->config.rates[i] = 0;
1814 static int writeConfigRid(struct airo_info *ai, int lock)
1818 if (!test_bit (FLAG_COMMIT, &ai->flags))
1821 clear_bit (FLAG_COMMIT, &ai->flags);
1822 clear_bit (FLAG_RESET, &ai->flags);
1826 if ((cfgr.opmode & MODE_CFG_MASK) == MODE_STA_IBSS)
1827 set_bit(FLAG_ADHOC, &ai->flags);
1829 clear_bit(FLAG_ADHOC, &ai->flags);
1831 return PC4500_writerid( ai, RID_CONFIG, &cfgr, sizeof(cfgr), lock);
1834 static int readStatusRid(struct airo_info *ai, StatusRid *statr, int lock)
1836 return PC4500_readrid(ai, RID_STATUS, statr, sizeof(*statr), lock);
1839 static int readAPListRid(struct airo_info *ai, APListRid *aplr)
1841 return PC4500_readrid(ai, RID_APLIST, aplr, sizeof(*aplr), 1);
1844 static int writeAPListRid(struct airo_info *ai, APListRid *aplr, int lock)
1846 return PC4500_writerid(ai, RID_APLIST, aplr, sizeof(*aplr), lock);
1849 static int readCapabilityRid(struct airo_info *ai, CapabilityRid *capr, int lock)
1851 return PC4500_readrid(ai, RID_CAPABILITIES, capr, sizeof(*capr), lock);
1854 static int readStatsRid(struct airo_info*ai, StatsRid *sr, int rid, int lock)
1856 return PC4500_readrid(ai, rid, sr, sizeof(*sr), lock);
1859 static void try_auto_wep(struct airo_info *ai)
1861 if (auto_wep && !(ai->flags & FLAG_RADIO_DOWN)) {
1862 ai->expires = RUN_AT(3*HZ);
1863 wake_up_interruptible(&ai->thr_wait);
1867 static int airo_open(struct net_device *dev) {
1868 struct airo_info *ai = dev->priv;
1871 if (test_bit(FLAG_FLASHING, &ai->flags))
1874 /* Make sure the card is configured.
1875 * Wireless Extensions may postpone config changes until the card
1876 * is open (to pipeline changes and speed-up card setup). If
1877 * those changes are not yet commited, do it now - Jean II */
1878 if (test_bit(FLAG_COMMIT, &ai->flags)) {
1880 writeConfigRid(ai, 1);
1883 if (ai->wifidev != dev) {
1884 clear_bit(JOB_DIE, &ai->jobs);
1885 ai->airo_thread_task = kthread_run(airo_thread, dev, dev->name);
1886 if (IS_ERR(ai->airo_thread_task))
1887 return (int)PTR_ERR(ai->airo_thread_task);
1889 rc = request_irq(dev->irq, airo_interrupt, IRQF_SHARED,
1892 airo_print_err(dev->name,
1893 "register interrupt %d failed, rc %d",
1895 set_bit(JOB_DIE, &ai->jobs);
1896 kthread_stop(ai->airo_thread_task);
1900 /* Power on the MAC controller (which may have been disabled) */
1901 clear_bit(FLAG_RADIO_DOWN, &ai->flags);
1902 enable_interrupts(ai);
1908 netif_start_queue(dev);
1912 static int mpi_start_xmit(struct sk_buff *skb, struct net_device *dev) {
1913 int npacks, pending;
1914 unsigned long flags;
1915 struct airo_info *ai = dev->priv;
1918 airo_print_err(dev->name, "%s: skb == NULL!",__FUNCTION__);
1921 npacks = skb_queue_len (&ai->txq);
1923 if (npacks >= MAXTXQ - 1) {
1924 netif_stop_queue (dev);
1925 if (npacks > MAXTXQ) {
1926 dev->stats.tx_fifo_errors++;
1929 skb_queue_tail (&ai->txq, skb);
1933 spin_lock_irqsave(&ai->aux_lock, flags);
1934 skb_queue_tail (&ai->txq, skb);
1935 pending = test_bit(FLAG_PENDING_XMIT, &ai->flags);
1936 spin_unlock_irqrestore(&ai->aux_lock,flags);
1937 netif_wake_queue (dev);
1940 set_bit(FLAG_PENDING_XMIT, &ai->flags);
1941 mpi_send_packet (dev);
1949 * Attempt to transmit a packet. Can be called from interrupt
1950 * or transmit . return number of packets we tried to send
1953 static int mpi_send_packet (struct net_device *dev)
1955 struct sk_buff *skb;
1956 unsigned char *buffer;
1959 struct airo_info *ai = dev->priv;
1962 /* get a packet to send */
1964 if ((skb = skb_dequeue(&ai->txq)) == NULL) {
1965 airo_print_err(dev->name,
1966 "%s: Dequeue'd zero in send_packet()",
1971 /* check min length*/
1972 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
1975 ai->txfids[0].tx_desc.offset = 0;
1976 ai->txfids[0].tx_desc.valid = 1;
1977 ai->txfids[0].tx_desc.eoc = 1;
1978 ai->txfids[0].tx_desc.len =len+sizeof(WifiHdr);
1981 * Magic, the cards firmware needs a length count (2 bytes) in the host buffer
1982 * right after TXFID_HDR.The TXFID_HDR contains the status short so payloadlen
1983 * is immediatly after it. ------------------------------------------------
1984 * |TXFIDHDR+STATUS|PAYLOADLEN|802.3HDR|PACKETDATA|
1985 * ------------------------------------------------
1988 memcpy((char *)ai->txfids[0].virtual_host_addr,
1989 (char *)&wifictlhdr8023, sizeof(wifictlhdr8023));
1991 payloadLen = (__le16 *)(ai->txfids[0].virtual_host_addr +
1992 sizeof(wifictlhdr8023));
1993 sendbuf = ai->txfids[0].virtual_host_addr +
1994 sizeof(wifictlhdr8023) + 2 ;
1997 * Firmware automaticly puts 802 header on so
1998 * we don't need to account for it in the length
2000 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
2001 (ntohs(((__be16 *)buffer)[6]) != 0x888E)) {
2004 if (encapsulate(ai, (etherHead *)buffer, &pMic, len - sizeof(etherHead)) != SUCCESS)
2007 *payloadLen = cpu_to_le16(len-sizeof(etherHead)+sizeof(pMic));
2008 ai->txfids[0].tx_desc.len += sizeof(pMic);
2009 /* copy data into airo dma buffer */
2010 memcpy (sendbuf, buffer, sizeof(etherHead));
2011 buffer += sizeof(etherHead);
2012 sendbuf += sizeof(etherHead);
2013 memcpy (sendbuf, &pMic, sizeof(pMic));
2014 sendbuf += sizeof(pMic);
2015 memcpy (sendbuf, buffer, len - sizeof(etherHead));
2017 *payloadLen = cpu_to_le16(len - sizeof(etherHead));
2019 dev->trans_start = jiffies;
2021 /* copy data into airo dma buffer */
2022 memcpy(sendbuf, buffer, len);
2025 memcpy_toio(ai->txfids[0].card_ram_off,
2026 &ai->txfids[0].tx_desc, sizeof(TxFid));
2028 OUT4500(ai, EVACK, 8);
2030 dev_kfree_skb_any(skb);
2034 static void get_tx_error(struct airo_info *ai, s32 fid)
2039 status = ((WifiCtlHdr *)ai->txfids[0].virtual_host_addr)->ctlhdr.status;
2041 if (bap_setup(ai, ai->fids[fid] & 0xffff, 4, BAP0) != SUCCESS)
2043 bap_read(ai, &status, 2, BAP0);
2045 if (le16_to_cpu(status) & 2) /* Too many retries */
2046 ai->dev->stats.tx_aborted_errors++;
2047 if (le16_to_cpu(status) & 4) /* Transmit lifetime exceeded */
2048 ai->dev->stats.tx_heartbeat_errors++;
2049 if (le16_to_cpu(status) & 8) /* Aid fail */
2051 if (le16_to_cpu(status) & 0x10) /* MAC disabled */
2052 ai->dev->stats.tx_carrier_errors++;
2053 if (le16_to_cpu(status) & 0x20) /* Association lost */
2055 /* We produce a TXDROP event only for retry or lifetime
2056 * exceeded, because that's the only status that really mean
2057 * that this particular node went away.
2058 * Other errors means that *we* screwed up. - Jean II */
2059 if ((le16_to_cpu(status) & 2) ||
2060 (le16_to_cpu(status) & 4)) {
2061 union iwreq_data wrqu;
2064 /* Faster to skip over useless data than to do
2065 * another bap_setup(). We are at offset 0x6 and
2066 * need to go to 0x18 and read 6 bytes - Jean II */
2067 bap_read(ai, (__le16 *) junk, 0x18, BAP0);
2069 /* Copy 802.11 dest address.
2070 * We use the 802.11 header because the frame may
2071 * not be 802.3 or may be mangled...
2072 * In Ad-Hoc mode, it will be the node address.
2073 * In managed mode, it will be most likely the AP addr
2074 * User space will figure out how to convert it to
2075 * whatever it needs (IP address or else).
2077 memcpy(wrqu.addr.sa_data, junk + 0x12, ETH_ALEN);
2078 wrqu.addr.sa_family = ARPHRD_ETHER;
2080 /* Send event to user space */
2081 wireless_send_event(ai->dev, IWEVTXDROP, &wrqu, NULL);
2085 static void airo_end_xmit(struct net_device *dev) {
2088 struct airo_info *priv = dev->priv;
2089 struct sk_buff *skb = priv->xmit.skb;
2090 int fid = priv->xmit.fid;
2091 u32 *fids = priv->fids;
2093 clear_bit(JOB_XMIT, &priv->jobs);
2094 clear_bit(FLAG_PENDING_XMIT, &priv->flags);
2095 status = transmit_802_3_packet (priv, fids[fid], skb->data);
2099 if ( status == SUCCESS ) {
2100 dev->trans_start = jiffies;
2101 for (; i < MAX_FIDS / 2 && (priv->fids[i] & 0xffff0000); i++);
2103 priv->fids[fid] &= 0xffff;
2104 dev->stats.tx_window_errors++;
2106 if (i < MAX_FIDS / 2)
2107 netif_wake_queue(dev);
2111 static int airo_start_xmit(struct sk_buff *skb, struct net_device *dev) {
2114 struct airo_info *priv = dev->priv;
2115 u32 *fids = priv->fids;
2117 if ( skb == NULL ) {
2118 airo_print_err(dev->name, "%s: skb == NULL!", __FUNCTION__);
2122 /* Find a vacant FID */
2123 for( i = 0; i < MAX_FIDS / 2 && (fids[i] & 0xffff0000); i++ );
2124 for( j = i + 1; j < MAX_FIDS / 2 && (fids[j] & 0xffff0000); j++ );
2126 if ( j >= MAX_FIDS / 2 ) {
2127 netif_stop_queue(dev);
2129 if (i == MAX_FIDS / 2) {
2130 dev->stats.tx_fifo_errors++;
2134 /* check min length*/
2135 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2136 /* Mark fid as used & save length for later */
2137 fids[i] |= (len << 16);
2138 priv->xmit.skb = skb;
2140 if (down_trylock(&priv->sem) != 0) {
2141 set_bit(FLAG_PENDING_XMIT, &priv->flags);
2142 netif_stop_queue(dev);
2143 set_bit(JOB_XMIT, &priv->jobs);
2144 wake_up_interruptible(&priv->thr_wait);
2150 static void airo_end_xmit11(struct net_device *dev) {
2153 struct airo_info *priv = dev->priv;
2154 struct sk_buff *skb = priv->xmit11.skb;
2155 int fid = priv->xmit11.fid;
2156 u32 *fids = priv->fids;
2158 clear_bit(JOB_XMIT11, &priv->jobs);
2159 clear_bit(FLAG_PENDING_XMIT11, &priv->flags);
2160 status = transmit_802_11_packet (priv, fids[fid], skb->data);
2164 if ( status == SUCCESS ) {
2165 dev->trans_start = jiffies;
2166 for (; i < MAX_FIDS && (priv->fids[i] & 0xffff0000); i++);
2168 priv->fids[fid] &= 0xffff;
2169 dev->stats.tx_window_errors++;
2172 netif_wake_queue(dev);
2176 static int airo_start_xmit11(struct sk_buff *skb, struct net_device *dev) {
2179 struct airo_info *priv = dev->priv;
2180 u32 *fids = priv->fids;
2182 if (test_bit(FLAG_MPI, &priv->flags)) {
2183 /* Not implemented yet for MPI350 */
2184 netif_stop_queue(dev);
2188 if ( skb == NULL ) {
2189 airo_print_err(dev->name, "%s: skb == NULL!", __FUNCTION__);
2193 /* Find a vacant FID */
2194 for( i = MAX_FIDS / 2; i < MAX_FIDS && (fids[i] & 0xffff0000); i++ );
2195 for( j = i + 1; j < MAX_FIDS && (fids[j] & 0xffff0000); j++ );
2197 if ( j >= MAX_FIDS ) {
2198 netif_stop_queue(dev);
2200 if (i == MAX_FIDS) {
2201 dev->stats.tx_fifo_errors++;
2205 /* check min length*/
2206 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2207 /* Mark fid as used & save length for later */
2208 fids[i] |= (len << 16);
2209 priv->xmit11.skb = skb;
2210 priv->xmit11.fid = i;
2211 if (down_trylock(&priv->sem) != 0) {
2212 set_bit(FLAG_PENDING_XMIT11, &priv->flags);
2213 netif_stop_queue(dev);
2214 set_bit(JOB_XMIT11, &priv->jobs);
2215 wake_up_interruptible(&priv->thr_wait);
2217 airo_end_xmit11(dev);
2221 static void airo_read_stats(struct net_device *dev)
2223 struct airo_info *ai = dev->priv;
2225 __le32 *vals = stats_rid.vals;
2227 clear_bit(JOB_STATS, &ai->jobs);
2228 if (ai->power.event) {
2232 readStatsRid(ai, &stats_rid, RID_STATS, 0);
2235 dev->stats.rx_packets = le32_to_cpu(vals[43]) + le32_to_cpu(vals[44]) +
2236 le32_to_cpu(vals[45]);
2237 dev->stats.tx_packets = le32_to_cpu(vals[39]) + le32_to_cpu(vals[40]) +
2238 le32_to_cpu(vals[41]);
2239 dev->stats.rx_bytes = le32_to_cpu(vals[92]);
2240 dev->stats.tx_bytes = le32_to_cpu(vals[91]);
2241 dev->stats.rx_errors = le32_to_cpu(vals[0]) + le32_to_cpu(vals[2]) +
2242 le32_to_cpu(vals[3]) + le32_to_cpu(vals[4]);
2243 dev->stats.tx_errors = le32_to_cpu(vals[42]) +
2244 dev->stats.tx_fifo_errors;
2245 dev->stats.multicast = le32_to_cpu(vals[43]);
2246 dev->stats.collisions = le32_to_cpu(vals[89]);
2248 /* detailed rx_errors: */
2249 dev->stats.rx_length_errors = le32_to_cpu(vals[3]);
2250 dev->stats.rx_crc_errors = le32_to_cpu(vals[4]);
2251 dev->stats.rx_frame_errors = le32_to_cpu(vals[2]);
2252 dev->stats.rx_fifo_errors = le32_to_cpu(vals[0]);
2255 static struct net_device_stats *airo_get_stats(struct net_device *dev)
2257 struct airo_info *local = dev->priv;
2259 if (!test_bit(JOB_STATS, &local->jobs)) {
2260 /* Get stats out of the card if available */
2261 if (down_trylock(&local->sem) != 0) {
2262 set_bit(JOB_STATS, &local->jobs);
2263 wake_up_interruptible(&local->thr_wait);
2265 airo_read_stats(dev);
2271 static void airo_set_promisc(struct airo_info *ai) {
2275 memset(&cmd, 0, sizeof(cmd));
2276 cmd.cmd=CMD_SETMODE;
2277 clear_bit(JOB_PROMISC, &ai->jobs);
2278 cmd.parm0=(ai->flags&IFF_PROMISC) ? PROMISC : NOPROMISC;
2279 issuecommand(ai, &cmd, &rsp);
2283 static void airo_set_multicast_list(struct net_device *dev) {
2284 struct airo_info *ai = dev->priv;
2286 if ((dev->flags ^ ai->flags) & IFF_PROMISC) {
2287 change_bit(FLAG_PROMISC, &ai->flags);
2288 if (down_trylock(&ai->sem) != 0) {
2289 set_bit(JOB_PROMISC, &ai->jobs);
2290 wake_up_interruptible(&ai->thr_wait);
2292 airo_set_promisc(ai);
2295 if ((dev->flags&IFF_ALLMULTI)||dev->mc_count>0) {
2296 /* Turn on multicast. (Should be already setup...) */
2300 static int airo_set_mac_address(struct net_device *dev, void *p)
2302 struct airo_info *ai = dev->priv;
2303 struct sockaddr *addr = p;
2305 readConfigRid(ai, 1);
2306 memcpy (ai->config.macAddr, addr->sa_data, dev->addr_len);
2307 set_bit (FLAG_COMMIT, &ai->flags);
2309 writeConfigRid (ai, 1);
2311 memcpy (ai->dev->dev_addr, addr->sa_data, dev->addr_len);
2313 memcpy (ai->wifidev->dev_addr, addr->sa_data, dev->addr_len);
2317 static int airo_change_mtu(struct net_device *dev, int new_mtu)
2319 if ((new_mtu < 68) || (new_mtu > 2400))
2325 static LIST_HEAD(airo_devices);
2327 static void add_airo_dev(struct airo_info *ai)
2329 /* Upper layers already keep track of PCI devices,
2330 * so we only need to remember our non-PCI cards. */
2332 list_add_tail(&ai->dev_list, &airo_devices);
2335 static void del_airo_dev(struct airo_info *ai)
2338 list_del(&ai->dev_list);
2341 static int airo_close(struct net_device *dev) {
2342 struct airo_info *ai = dev->priv;
2344 netif_stop_queue(dev);
2346 if (ai->wifidev != dev) {
2347 #ifdef POWER_ON_DOWN
2348 /* Shut power to the card. The idea is that the user can save
2349 * power when he doesn't need the card with "ifconfig down".
2350 * That's the method that is most friendly towards the network
2351 * stack (i.e. the network stack won't try to broadcast
2352 * anything on the interface and routes are gone. Jean II */
2353 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2356 disable_interrupts( ai );
2358 free_irq(dev->irq, dev);
2360 set_bit(JOB_DIE, &ai->jobs);
2361 kthread_stop(ai->airo_thread_task);
2366 void stop_airo_card( struct net_device *dev, int freeres )
2368 struct airo_info *ai = dev->priv;
2370 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2372 disable_interrupts(ai);
2373 takedown_proc_entry( dev, ai );
2374 if (test_bit(FLAG_REGISTERED, &ai->flags)) {
2375 unregister_netdev( dev );
2377 unregister_netdev(ai->wifidev);
2378 free_netdev(ai->wifidev);
2381 clear_bit(FLAG_REGISTERED, &ai->flags);
2384 * Clean out tx queue
2386 if (test_bit(FLAG_MPI, &ai->flags) && !skb_queue_empty(&ai->txq)) {
2387 struct sk_buff *skb = NULL;
2388 for (;(skb = skb_dequeue(&ai->txq));)
2392 airo_networks_free (ai);
2399 /* PCMCIA frees this stuff, so only for PCI and ISA */
2400 release_region( dev->base_addr, 64 );
2401 if (test_bit(FLAG_MPI, &ai->flags)) {
2403 mpi_unmap_card(ai->pci);
2405 iounmap(ai->pcimem);
2407 iounmap(ai->pciaux);
2408 pci_free_consistent(ai->pci, PCI_SHARED_LEN,
2409 ai->shared, ai->shared_dma);
2412 crypto_free_cipher(ai->tfm);
2417 EXPORT_SYMBOL(stop_airo_card);
2419 static int wll_header_parse(const struct sk_buff *skb, unsigned char *haddr)
2421 memcpy(haddr, skb_mac_header(skb) + 10, ETH_ALEN);
2425 static void mpi_unmap_card(struct pci_dev *pci)
2427 unsigned long mem_start = pci_resource_start(pci, 1);
2428 unsigned long mem_len = pci_resource_len(pci, 1);
2429 unsigned long aux_start = pci_resource_start(pci, 2);
2430 unsigned long aux_len = AUXMEMSIZE;
2432 release_mem_region(aux_start, aux_len);
2433 release_mem_region(mem_start, mem_len);
2436 /*************************************************************
2437 * This routine assumes that descriptors have been setup .
2438 * Run at insmod time or after reset when the decriptors
2439 * have been initialized . Returns 0 if all is well nz
2440 * otherwise . Does not allocate memory but sets up card
2441 * using previously allocated descriptors.
2443 static int mpi_init_descriptors (struct airo_info *ai)
2450 /* Alloc card RX descriptors */
2451 netif_stop_queue(ai->dev);
2453 memset(&rsp,0,sizeof(rsp));
2454 memset(&cmd,0,sizeof(cmd));
2456 cmd.cmd = CMD_ALLOCATEAUX;
2458 cmd.parm1 = (ai->rxfids[0].card_ram_off - ai->pciaux);
2459 cmd.parm2 = MPI_MAX_FIDS;
2460 rc=issuecommand(ai, &cmd, &rsp);
2461 if (rc != SUCCESS) {
2462 airo_print_err(ai->dev->name, "Couldn't allocate RX FID");
2466 for (i=0; i<MPI_MAX_FIDS; i++) {
2467 memcpy_toio(ai->rxfids[i].card_ram_off,
2468 &ai->rxfids[i].rx_desc, sizeof(RxFid));
2471 /* Alloc card TX descriptors */
2473 memset(&rsp,0,sizeof(rsp));
2474 memset(&cmd,0,sizeof(cmd));
2476 cmd.cmd = CMD_ALLOCATEAUX;
2478 cmd.parm1 = (ai->txfids[0].card_ram_off - ai->pciaux);
2479 cmd.parm2 = MPI_MAX_FIDS;
2481 for (i=0; i<MPI_MAX_FIDS; i++) {
2482 ai->txfids[i].tx_desc.valid = 1;
2483 memcpy_toio(ai->txfids[i].card_ram_off,
2484 &ai->txfids[i].tx_desc, sizeof(TxFid));
2486 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2488 rc=issuecommand(ai, &cmd, &rsp);
2489 if (rc != SUCCESS) {
2490 airo_print_err(ai->dev->name, "Couldn't allocate TX FID");
2494 /* Alloc card Rid descriptor */
2495 memset(&rsp,0,sizeof(rsp));
2496 memset(&cmd,0,sizeof(cmd));
2498 cmd.cmd = CMD_ALLOCATEAUX;
2500 cmd.parm1 = (ai->config_desc.card_ram_off - ai->pciaux);
2501 cmd.parm2 = 1; /* Magic number... */
2502 rc=issuecommand(ai, &cmd, &rsp);
2503 if (rc != SUCCESS) {
2504 airo_print_err(ai->dev->name, "Couldn't allocate RID");
2508 memcpy_toio(ai->config_desc.card_ram_off,
2509 &ai->config_desc.rid_desc, sizeof(Rid));
2515 * We are setting up three things here:
2516 * 1) Map AUX memory for descriptors: Rid, TxFid, or RxFid.
2517 * 2) Map PCI memory for issueing commands.
2518 * 3) Allocate memory (shared) to send and receive ethernet frames.
2520 static int mpi_map_card(struct airo_info *ai, struct pci_dev *pci)
2522 unsigned long mem_start, mem_len, aux_start, aux_len;
2525 dma_addr_t busaddroff;
2526 unsigned char *vpackoff;
2527 unsigned char __iomem *pciaddroff;
2529 mem_start = pci_resource_start(pci, 1);
2530 mem_len = pci_resource_len(pci, 1);
2531 aux_start = pci_resource_start(pci, 2);
2532 aux_len = AUXMEMSIZE;
2534 if (!request_mem_region(mem_start, mem_len, DRV_NAME)) {
2535 airo_print_err("", "Couldn't get region %x[%x]",
2536 (int)mem_start, (int)mem_len);
2539 if (!request_mem_region(aux_start, aux_len, DRV_NAME)) {
2540 airo_print_err("", "Couldn't get region %x[%x]",
2541 (int)aux_start, (int)aux_len);
2545 ai->pcimem = ioremap(mem_start, mem_len);
2547 airo_print_err("", "Couldn't map region %x[%x]",
2548 (int)mem_start, (int)mem_len);
2551 ai->pciaux = ioremap(aux_start, aux_len);
2553 airo_print_err("", "Couldn't map region %x[%x]",
2554 (int)aux_start, (int)aux_len);
2558 /* Reserve PKTSIZE for each fid and 2K for the Rids */
2559 ai->shared = pci_alloc_consistent(pci, PCI_SHARED_LEN, &ai->shared_dma);
2561 airo_print_err("", "Couldn't alloc_consistent %d",
2567 * Setup descriptor RX, TX, CONFIG
2569 busaddroff = ai->shared_dma;
2570 pciaddroff = ai->pciaux + AUX_OFFSET;
2571 vpackoff = ai->shared;
2573 /* RX descriptor setup */
2574 for(i = 0; i < MPI_MAX_FIDS; i++) {
2575 ai->rxfids[i].pending = 0;
2576 ai->rxfids[i].card_ram_off = pciaddroff;
2577 ai->rxfids[i].virtual_host_addr = vpackoff;
2578 ai->rxfids[i].rx_desc.host_addr = busaddroff;
2579 ai->rxfids[i].rx_desc.valid = 1;
2580 ai->rxfids[i].rx_desc.len = PKTSIZE;
2581 ai->rxfids[i].rx_desc.rdy = 0;
2583 pciaddroff += sizeof(RxFid);
2584 busaddroff += PKTSIZE;
2585 vpackoff += PKTSIZE;
2588 /* TX descriptor setup */
2589 for(i = 0; i < MPI_MAX_FIDS; i++) {
2590 ai->txfids[i].card_ram_off = pciaddroff;
2591 ai->txfids[i].virtual_host_addr = vpackoff;
2592 ai->txfids[i].tx_desc.valid = 1;
2593 ai->txfids[i].tx_desc.host_addr = busaddroff;
2594 memcpy(ai->txfids[i].virtual_host_addr,
2595 &wifictlhdr8023, sizeof(wifictlhdr8023));
2597 pciaddroff += sizeof(TxFid);
2598 busaddroff += PKTSIZE;
2599 vpackoff += PKTSIZE;
2601 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2603 /* Rid descriptor setup */
2604 ai->config_desc.card_ram_off = pciaddroff;
2605 ai->config_desc.virtual_host_addr = vpackoff;
2606 ai->config_desc.rid_desc.host_addr = busaddroff;
2607 ai->ridbus = busaddroff;
2608 ai->config_desc.rid_desc.rid = 0;
2609 ai->config_desc.rid_desc.len = RIDSIZE;
2610 ai->config_desc.rid_desc.valid = 1;
2611 pciaddroff += sizeof(Rid);
2612 busaddroff += RIDSIZE;
2613 vpackoff += RIDSIZE;
2615 /* Tell card about descriptors */
2616 if (mpi_init_descriptors (ai) != SUCCESS)
2621 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2623 iounmap(ai->pciaux);
2625 iounmap(ai->pcimem);
2627 release_mem_region(aux_start, aux_len);
2629 release_mem_region(mem_start, mem_len);
2634 static const struct header_ops airo_header_ops = {
2635 .parse = wll_header_parse,
2638 static void wifi_setup(struct net_device *dev)
2640 dev->header_ops = &airo_header_ops;
2641 dev->hard_start_xmit = &airo_start_xmit11;
2642 dev->get_stats = &airo_get_stats;
2643 dev->set_mac_address = &airo_set_mac_address;
2644 dev->do_ioctl = &airo_ioctl;
2645 dev->wireless_handlers = &airo_handler_def;
2646 dev->change_mtu = &airo_change_mtu;
2647 dev->open = &airo_open;
2648 dev->stop = &airo_close;
2650 dev->type = ARPHRD_IEEE80211;
2651 dev->hard_header_len = ETH_HLEN;
2652 dev->mtu = AIRO_DEF_MTU;
2653 dev->addr_len = ETH_ALEN;
2654 dev->tx_queue_len = 100;
2656 memset(dev->broadcast,0xFF, ETH_ALEN);
2658 dev->flags = IFF_BROADCAST|IFF_MULTICAST;
2661 static struct net_device *init_wifidev(struct airo_info *ai,
2662 struct net_device *ethdev)
2665 struct net_device *dev = alloc_netdev(0, "wifi%d", wifi_setup);
2668 dev->priv = ethdev->priv;
2669 dev->irq = ethdev->irq;
2670 dev->base_addr = ethdev->base_addr;
2671 dev->wireless_data = ethdev->wireless_data;
2672 SET_NETDEV_DEV(dev, ethdev->dev.parent);
2673 memcpy(dev->dev_addr, ethdev->dev_addr, dev->addr_len);
2674 err = register_netdev(dev);
2682 static int reset_card( struct net_device *dev , int lock) {
2683 struct airo_info *ai = dev->priv;
2685 if (lock && down_interruptible(&ai->sem))
2688 OUT4500(ai,COMMAND,CMD_SOFTRESET);
2697 #define AIRO_MAX_NETWORK_COUNT 64
2698 static int airo_networks_allocate(struct airo_info *ai)
2704 kzalloc(AIRO_MAX_NETWORK_COUNT * sizeof(BSSListElement),
2706 if (!ai->networks) {
2707 airo_print_warn("", "Out of memory allocating beacons");
2714 static void airo_networks_free(struct airo_info *ai)
2716 kfree(ai->networks);
2717 ai->networks = NULL;
2720 static void airo_networks_initialize(struct airo_info *ai)
2724 INIT_LIST_HEAD(&ai->network_free_list);
2725 INIT_LIST_HEAD(&ai->network_list);
2726 for (i = 0; i < AIRO_MAX_NETWORK_COUNT; i++)
2727 list_add_tail(&ai->networks[i].list,
2728 &ai->network_free_list);
2731 static int airo_test_wpa_capable(struct airo_info *ai)
2734 CapabilityRid cap_rid;
2736 status = readCapabilityRid(ai, &cap_rid, 1);
2737 if (status != SUCCESS) return 0;
2739 /* Only firmware versions 5.30.17 or better can do WPA */
2740 if (le16_to_cpu(cap_rid.softVer) > 0x530
2741 || (le16_to_cpu(cap_rid.softVer) == 0x530
2742 && le16_to_cpu(cap_rid.softSubVer) >= 17)) {
2743 airo_print_info("", "WPA is supported.");
2747 /* No WPA support */
2748 airo_print_info("", "WPA unsupported (only firmware versions 5.30.17"
2749 " and greater support WPA. Detected %s)", cap_rid.prodVer);
2753 static struct net_device *_init_airo_card( unsigned short irq, int port,
2754 int is_pcmcia, struct pci_dev *pci,
2755 struct device *dmdev )
2757 struct net_device *dev;
2758 struct airo_info *ai;
2760 DECLARE_MAC_BUF(mac);
2762 /* Create the network device object. */
2763 dev = alloc_netdev(sizeof(*ai), "", ether_setup);
2765 airo_print_err("", "Couldn't alloc_etherdev");
2771 ai->flags = 1 << FLAG_RADIO_DOWN;
2774 if (pci && (pci->device == 0x5000 || pci->device == 0xa504)) {
2775 airo_print_dbg("", "Found an MPI350 card");
2776 set_bit(FLAG_MPI, &ai->flags);
2778 spin_lock_init(&ai->aux_lock);
2779 sema_init(&ai->sem, 1);
2782 init_waitqueue_head (&ai->thr_wait);
2786 if (airo_networks_allocate (ai))
2788 airo_networks_initialize (ai);
2790 /* The Airo-specific entries in the device structure. */
2791 if (test_bit(FLAG_MPI,&ai->flags)) {
2792 skb_queue_head_init (&ai->txq);
2793 dev->hard_start_xmit = &mpi_start_xmit;
2795 dev->hard_start_xmit = &airo_start_xmit;
2796 dev->get_stats = &airo_get_stats;
2797 dev->set_multicast_list = &airo_set_multicast_list;
2798 dev->set_mac_address = &airo_set_mac_address;
2799 dev->do_ioctl = &airo_ioctl;
2800 dev->wireless_handlers = &airo_handler_def;
2801 ai->wireless_data.spy_data = &ai->spy_data;
2802 dev->wireless_data = &ai->wireless_data;
2803 dev->change_mtu = &airo_change_mtu;
2804 dev->open = &airo_open;
2805 dev->stop = &airo_close;
2807 dev->base_addr = port;
2809 SET_NETDEV_DEV(dev, dmdev);
2811 reset_card (dev, 1);
2815 if (!request_region(dev->base_addr, 64, DRV_NAME)) {
2817 airo_print_err(dev->name, "Couldn't request region");
2822 if (test_bit(FLAG_MPI,&ai->flags)) {
2823 if (mpi_map_card(ai, pci)) {
2824 airo_print_err("", "Could not map memory");
2830 if ( setup_card( ai, dev->dev_addr, 1 ) != SUCCESS ) {
2831 airo_print_err(dev->name, "MAC could not be enabled" );
2835 } else if (!test_bit(FLAG_MPI,&ai->flags)) {
2836 ai->bap_read = fast_bap_read;
2837 set_bit(FLAG_FLASHING, &ai->flags);
2840 /* Test for WPA support */
2841 if (airo_test_wpa_capable(ai)) {
2842 set_bit(FLAG_WPA_CAPABLE, &ai->flags);
2843 ai->bssListFirst = RID_WPA_BSSLISTFIRST;
2844 ai->bssListNext = RID_WPA_BSSLISTNEXT;
2845 ai->bssListRidLen = sizeof(BSSListRid);
2847 ai->bssListFirst = RID_BSSLISTFIRST;
2848 ai->bssListNext = RID_BSSLISTNEXT;
2849 ai->bssListRidLen = sizeof(BSSListRid) - sizeof(BSSListRidExtra);
2852 strcpy(dev->name, "eth%d");
2853 rc = register_netdev(dev);
2855 airo_print_err(dev->name, "Couldn't register_netdev");
2858 ai->wifidev = init_wifidev(ai, dev);
2862 set_bit(FLAG_REGISTERED,&ai->flags);
2863 airo_print_info(dev->name, "MAC enabled %s",
2864 print_mac(mac, dev->dev_addr));
2866 /* Allocate the transmit buffers */
2867 if (probe && !test_bit(FLAG_MPI,&ai->flags))
2868 for( i = 0; i < MAX_FIDS; i++ )
2869 ai->fids[i] = transmit_allocate(ai,AIRO_DEF_MTU,i>=MAX_FIDS/2);
2871 if (setup_proc_entry(dev, dev->priv) < 0)
2877 unregister_netdev(ai->wifidev);
2878 free_netdev(ai->wifidev);
2880 unregister_netdev(dev);
2882 if (test_bit(FLAG_MPI,&ai->flags) && pci) {
2883 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2884 iounmap(ai->pciaux);
2885 iounmap(ai->pcimem);
2886 mpi_unmap_card(ai->pci);
2890 release_region( dev->base_addr, 64 );
2892 airo_networks_free(ai);
2899 struct net_device *init_airo_card( unsigned short irq, int port, int is_pcmcia,
2900 struct device *dmdev)
2902 return _init_airo_card ( irq, port, is_pcmcia, NULL, dmdev);
2905 EXPORT_SYMBOL(init_airo_card);
2907 static int waitbusy (struct airo_info *ai) {
2909 while ((IN4500(ai, COMMAND) & COMMAND_BUSY) && (delay < 10000)) {
2911 if ((++delay % 20) == 0)
2912 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
2914 return delay < 10000;
2917 int reset_airo_card( struct net_device *dev )
2920 struct airo_info *ai = dev->priv;
2921 DECLARE_MAC_BUF(mac);
2923 if (reset_card (dev, 1))
2926 if ( setup_card(ai, dev->dev_addr, 1 ) != SUCCESS ) {
2927 airo_print_err(dev->name, "MAC could not be enabled");
2930 airo_print_info(dev->name, "MAC enabled %s",
2931 print_mac(mac, dev->dev_addr));
2932 /* Allocate the transmit buffers if needed */
2933 if (!test_bit(FLAG_MPI,&ai->flags))
2934 for( i = 0; i < MAX_FIDS; i++ )
2935 ai->fids[i] = transmit_allocate (ai,AIRO_DEF_MTU,i>=MAX_FIDS/2);
2937 enable_interrupts( ai );
2938 netif_wake_queue(dev);
2942 EXPORT_SYMBOL(reset_airo_card);
2944 static void airo_send_event(struct net_device *dev) {
2945 struct airo_info *ai = dev->priv;
2946 union iwreq_data wrqu;
2947 StatusRid status_rid;
2949 clear_bit(JOB_EVENT, &ai->jobs);
2950 PC4500_readrid(ai, RID_STATUS, &status_rid, sizeof(status_rid), 0);
2952 wrqu.data.length = 0;
2953 wrqu.data.flags = 0;
2954 memcpy(wrqu.ap_addr.sa_data, status_rid.bssid[0], ETH_ALEN);
2955 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
2957 /* Send event to user space */
2958 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
2961 static void airo_process_scan_results (struct airo_info *ai) {
2962 union iwreq_data wrqu;
2965 BSSListElement * loop_net;
2966 BSSListElement * tmp_net;
2968 /* Blow away current list of scan results */
2969 list_for_each_entry_safe (loop_net, tmp_net, &ai->network_list, list) {
2970 list_move_tail (&loop_net->list, &ai->network_free_list);
2971 /* Don't blow away ->list, just BSS data */
2972 memset (loop_net, 0, sizeof (loop_net->bss));
2975 /* Try to read the first entry of the scan result */
2976 rc = PC4500_readrid(ai, ai->bssListFirst, &bss, ai->bssListRidLen, 0);
2977 if((rc) || (bss.index == cpu_to_le16(0xffff))) {
2978 /* No scan results */
2982 /* Read and parse all entries */
2984 while((!rc) && (bss.index != cpu_to_le16(0xffff))) {
2985 /* Grab a network off the free list */
2986 if (!list_empty(&ai->network_free_list)) {
2987 tmp_net = list_entry(ai->network_free_list.next,
2988 BSSListElement, list);
2989 list_del(ai->network_free_list.next);
2992 if (tmp_net != NULL) {
2993 memcpy(tmp_net, &bss, sizeof(tmp_net->bss));
2994 list_add_tail(&tmp_net->list, &ai->network_list);
2998 /* Read next entry */
2999 rc = PC4500_readrid(ai, ai->bssListNext,
3000 &bss, ai->bssListRidLen, 0);
3004 ai->scan_timeout = 0;
3005 clear_bit(JOB_SCAN_RESULTS, &ai->jobs);
3008 /* Send an empty event to user space.
3009 * We don't send the received data on
3010 * the event because it would require
3011 * us to do complex transcoding, and
3012 * we want to minimise the work done in
3013 * the irq handler. Use a request to
3014 * extract the data - Jean II */
3015 wrqu.data.length = 0;
3016 wrqu.data.flags = 0;
3017 wireless_send_event(ai->dev, SIOCGIWSCAN, &wrqu, NULL);
3020 static int airo_thread(void *data) {
3021 struct net_device *dev = data;
3022 struct airo_info *ai = dev->priv;
3027 /* make swsusp happy with our thread */
3030 if (test_bit(JOB_DIE, &ai->jobs))
3034 locked = down_interruptible(&ai->sem);
3038 init_waitqueue_entry(&wait, current);
3039 add_wait_queue(&ai->thr_wait, &wait);
3041 set_current_state(TASK_INTERRUPTIBLE);
3044 if (ai->expires || ai->scan_timeout) {
3045 if (ai->scan_timeout &&
3046 time_after_eq(jiffies,ai->scan_timeout)){
3047 set_bit(JOB_SCAN_RESULTS, &ai->jobs);
3049 } else if (ai->expires &&
3050 time_after_eq(jiffies,ai->expires)){
3051 set_bit(JOB_AUTOWEP, &ai->jobs);
3054 if (!kthread_should_stop() &&
3055 !freezing(current)) {
3056 unsigned long wake_at;
3057 if (!ai->expires || !ai->scan_timeout) {
3058 wake_at = max(ai->expires,
3061 wake_at = min(ai->expires,
3064 schedule_timeout(wake_at - jiffies);
3067 } else if (!kthread_should_stop() &&
3068 !freezing(current)) {
3074 current->state = TASK_RUNNING;
3075 remove_wait_queue(&ai->thr_wait, &wait);
3082 if (test_bit(JOB_DIE, &ai->jobs)) {
3087 if (ai->power.event || test_bit(FLAG_FLASHING, &ai->flags)) {
3092 if (test_bit(JOB_XMIT, &ai->jobs))
3094 else if (test_bit(JOB_XMIT11, &ai->jobs))
3095 airo_end_xmit11(dev);
3096 else if (test_bit(JOB_STATS, &ai->jobs))
3097 airo_read_stats(dev);
3098 else if (test_bit(JOB_WSTATS, &ai->jobs))
3099 airo_read_wireless_stats(ai);
3100 else if (test_bit(JOB_PROMISC, &ai->jobs))
3101 airo_set_promisc(ai);
3102 else if (test_bit(JOB_MIC, &ai->jobs))
3104 else if (test_bit(JOB_EVENT, &ai->jobs))
3105 airo_send_event(dev);
3106 else if (test_bit(JOB_AUTOWEP, &ai->jobs))
3108 else if (test_bit(JOB_SCAN_RESULTS, &ai->jobs))
3109 airo_process_scan_results(ai);
3110 else /* Shouldn't get here, but we make sure to unlock */
3117 static int header_len(__le16 ctl)
3119 u16 fc = le16_to_cpu(ctl);
3122 if ((fc & 0xe0) == 0xc0)
3123 return 10; /* one-address control packet */
3124 return 16; /* two-address control packet */
3126 if ((fc & 0x300) == 0x300)
3127 return 30; /* WDS packet */
3132 static irqreturn_t airo_interrupt(int irq, void *dev_id)
3134 struct net_device *dev = dev_id;
3137 struct airo_info *apriv = dev->priv;
3138 u16 savedInterrupts = 0;
3141 if (!netif_device_present(dev))
3145 status = IN4500( apriv, EVSTAT );
3146 if ( !(status & STATUS_INTS) || status == 0xffff ) break;
3150 if ( status & EV_AWAKE ) {
3151 OUT4500( apriv, EVACK, EV_AWAKE );
3152 OUT4500( apriv, EVACK, EV_AWAKE );
3155 if (!savedInterrupts) {
3156 savedInterrupts = IN4500( apriv, EVINTEN );
3157 OUT4500( apriv, EVINTEN, 0 );
3160 if ( status & EV_MIC ) {
3161 OUT4500( apriv, EVACK, EV_MIC );
3162 if (test_bit(FLAG_MIC_CAPABLE, &apriv->flags)) {
3163 set_bit(JOB_MIC, &apriv->jobs);
3164 wake_up_interruptible(&apriv->thr_wait);
3167 if ( status & EV_LINK ) {
3168 union iwreq_data wrqu;
3169 int scan_forceloss = 0;
3170 /* The link status has changed, if you want to put a
3171 monitor hook in, do it here. (Remember that
3172 interrupts are still disabled!)
3174 u16 newStatus = IN4500(apriv, LINKSTAT);
3175 OUT4500( apriv, EVACK, EV_LINK);
3176 /* Here is what newStatus means: */
3177 #define NOBEACON 0x8000 /* Loss of sync - missed beacons */
3178 #define MAXRETRIES 0x8001 /* Loss of sync - max retries */
3179 #define MAXARL 0x8002 /* Loss of sync - average retry level exceeded*/
3180 #define FORCELOSS 0x8003 /* Loss of sync - host request */
3181 #define TSFSYNC 0x8004 /* Loss of sync - TSF synchronization */
3182 #define DEAUTH 0x8100 /* Deauthentication (low byte is reason code) */
3183 #define DISASS 0x8200 /* Disassociation (low byte is reason code) */
3184 #define ASSFAIL 0x8400 /* Association failure (low byte is reason
3186 #define AUTHFAIL 0x0300 /* Authentication failure (low byte is reason
3188 #define ASSOCIATED 0x0400 /* Associated */
3189 #define REASSOCIATED 0x0600 /* Reassociated? Only on firmware >= 5.30.17 */
3190 #define RC_RESERVED 0 /* Reserved return code */
3191 #define RC_NOREASON 1 /* Unspecified reason */
3192 #define RC_AUTHINV 2 /* Previous authentication invalid */
3193 #define RC_DEAUTH 3 /* Deauthenticated because sending station is
3195 #define RC_NOACT 4 /* Disassociated due to inactivity */
3196 #define RC_MAXLOAD 5 /* Disassociated because AP is unable to handle
3197 all currently associated stations */
3198 #define RC_BADCLASS2 6 /* Class 2 frame received from
3199 non-Authenticated station */
3200 #define RC_BADCLASS3 7 /* Class 3 frame received from
3201 non-Associated station */
3202 #define RC_STATLEAVE 8 /* Disassociated because sending station is
3204 #define RC_NOAUTH 9 /* Station requesting (Re)Association is not
3205 Authenticated with the responding station */
3206 if (newStatus == FORCELOSS && apriv->scan_timeout > 0)
3208 if(newStatus == ASSOCIATED || newStatus == REASSOCIATED) {
3211 if (apriv->list_bss_task)
3212 wake_up_process(apriv->list_bss_task);
3213 set_bit(FLAG_UPDATE_UNI, &apriv->flags);
3214 set_bit(FLAG_UPDATE_MULTI, &apriv->flags);
3216 if (down_trylock(&apriv->sem) != 0) {
3217 set_bit(JOB_EVENT, &apriv->jobs);
3218 wake_up_interruptible(&apriv->thr_wait);
3220 airo_send_event(dev);
3221 } else if (!scan_forceloss) {
3222 if (auto_wep && !apriv->expires) {
3223 apriv->expires = RUN_AT(3*HZ);
3224 wake_up_interruptible(&apriv->thr_wait);
3227 /* Send event to user space */
3228 memset(wrqu.ap_addr.sa_data, '\0', ETH_ALEN);
3229 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
3230 wireless_send_event(dev, SIOCGIWAP, &wrqu,NULL);
3234 /* Check to see if there is something to receive */
3235 if ( status & EV_RX ) {
3236 struct sk_buff *skb = NULL;
3238 u16 len, hdrlen = 0;
3252 if (test_bit(FLAG_MPI,&apriv->flags)) {
3253 if (test_bit(FLAG_802_11, &apriv->flags))
3254 mpi_receive_802_11(apriv);
3256 mpi_receive_802_3(apriv);
3257 OUT4500(apriv, EVACK, EV_RX);
3261 fid = IN4500( apriv, RXFID );
3263 /* Get the packet length */
3264 if (test_bit(FLAG_802_11, &apriv->flags)) {
3265 bap_setup (apriv, fid, 4, BAP0);
3266 bap_read (apriv, (__le16*)&hdr, sizeof(hdr), BAP0);
3267 /* Bad CRC. Ignore packet */
3268 if (le16_to_cpu(hdr.status) & 2)
3270 if (apriv->wifidev == NULL)
3273 bap_setup (apriv, fid, 0x36, BAP0);
3274 bap_read (apriv, &hdr.len, 2, BAP0);
3276 len = le16_to_cpu(hdr.len);
3278 if (len > AIRO_DEF_MTU) {
3279 airo_print_err(apriv->dev->name, "Bad size %d", len);
3285 if (test_bit(FLAG_802_11, &apriv->flags)) {
3286 bap_read (apriv, &fc, sizeof(fc), BAP0);
3287 hdrlen = header_len(fc);
3289 hdrlen = ETH_ALEN * 2;
3291 skb = dev_alloc_skb( len + hdrlen + 2 + 2 );
3293 dev->stats.rx_dropped++;
3296 skb_reserve(skb, 2); /* This way the IP header is aligned */
3297 buffer = (__le16*)skb_put (skb, len + hdrlen);
3298 if (test_bit(FLAG_802_11, &apriv->flags)) {
3300 bap_read (apriv, buffer + 1, hdrlen - 2, BAP0);
3302 bap_read (apriv, tmpbuf, 6, BAP0);
3304 bap_read (apriv, &v, sizeof(v), BAP0);
3305 gap = le16_to_cpu(v);
3308 bap_read (apriv, tmpbuf, gap, BAP0);
3310 airo_print_err(apriv->dev->name, "gaplen too "
3311 "big. Problems will follow...");
3314 bap_read (apriv, buffer + hdrlen/2, len, BAP0);
3317 bap_read (apriv, buffer, ETH_ALEN*2, BAP0);
3318 if (apriv->micstats.enabled) {
3319 bap_read (apriv,(__le16*)&micbuf,sizeof(micbuf),BAP0);
3320 if (ntohs(micbuf.typelen) > 0x05DC)
3321 bap_setup (apriv, fid, 0x44, BAP0);
3323 if (len <= sizeof(micbuf))
3326 len -= sizeof(micbuf);
3327 skb_trim (skb, len + hdrlen);
3330 bap_read(apriv,buffer+ETH_ALEN,len,BAP0);
3331 if (decapsulate(apriv,&micbuf,(etherHead*)buffer,len)) {
3333 dev_kfree_skb_irq (skb);
3335 OUT4500( apriv, EVACK, EV_RX);
3340 if (apriv->spy_data.spy_number > 0) {
3342 struct iw_quality wstats;
3343 /* Prepare spy data : addr + qual */
3344 if (!test_bit(FLAG_802_11, &apriv->flags)) {
3345 sa = (char*)buffer + 6;
3346 bap_setup (apriv, fid, 8, BAP0);
3347 bap_read (apriv, (__le16*)hdr.rssi, 2, BAP0);
3349 sa = (char*)buffer + 10;
3350 wstats.qual = hdr.rssi[0];
3352 wstats.level = 0x100 - apriv->rssi[hdr.rssi[1]].rssidBm;
3354 wstats.level = (hdr.rssi[1] + 321) / 2;
3355 wstats.noise = apriv->wstats.qual.noise;
3356 wstats.updated = IW_QUAL_LEVEL_UPDATED
3357 | IW_QUAL_QUAL_UPDATED
3359 /* Update spy records */
3360 wireless_spy_update(dev, sa, &wstats);
3362 #endif /* WIRELESS_SPY */
3363 OUT4500( apriv, EVACK, EV_RX);
3365 if (test_bit(FLAG_802_11, &apriv->flags)) {
3366 skb_reset_mac_header(skb);
3367 skb->pkt_type = PACKET_OTHERHOST;
3368 skb->dev = apriv->wifidev;
3369 skb->protocol = htons(ETH_P_802_2);
3371 skb->protocol = eth_type_trans(skb,dev);
3372 skb->dev->last_rx = jiffies;
3373 skb->ip_summed = CHECKSUM_NONE;
3379 /* Check to see if a packet has been transmitted */
3380 if ( status & ( EV_TX|EV_TXCPY|EV_TXEXC ) ) {
3385 if (test_bit(FLAG_MPI,&apriv->flags)) {
3386 unsigned long flags;
3388 if (status & EV_TXEXC)
3389 get_tx_error(apriv, -1);
3390 spin_lock_irqsave(&apriv->aux_lock, flags);
3391 if (!skb_queue_empty(&apriv->txq)) {
3392 spin_unlock_irqrestore(&apriv->aux_lock,flags);
3393 mpi_send_packet (dev);
3395 clear_bit(FLAG_PENDING_XMIT, &apriv->flags);
3396 spin_unlock_irqrestore(&apriv->aux_lock,flags);
3397 netif_wake_queue (dev);
3399 OUT4500( apriv, EVACK,
3400 status & (EV_TX|EV_TXCPY|EV_TXEXC));
3404 fid = IN4500(apriv, TXCOMPLFID);
3406 for( i = 0; i < MAX_FIDS; i++ ) {
3407 if ( ( apriv->fids[i] & 0xffff ) == fid ) {
3408 len = apriv->fids[i] >> 16;
3413 if (status & EV_TXEXC)
3414 get_tx_error(apriv, index);
3415 OUT4500( apriv, EVACK, status & (EV_TX | EV_TXEXC));
3416 /* Set up to be used again */
3417 apriv->fids[index] &= 0xffff;
3418 if (index < MAX_FIDS / 2) {
3419 if (!test_bit(FLAG_PENDING_XMIT, &apriv->flags))
3420 netif_wake_queue(dev);
3422 if (!test_bit(FLAG_PENDING_XMIT11, &apriv->flags))
3423 netif_wake_queue(apriv->wifidev);
3426 OUT4500( apriv, EVACK, status & (EV_TX | EV_TXCPY | EV_TXEXC));
3427 airo_print_err(apriv->dev->name, "Unallocated FID was "
3432 if ( status & ~STATUS_INTS & ~IGNORE_INTS )
3433 airo_print_warn(apriv->dev->name, "Got weird status %x",
3434 status & ~STATUS_INTS & ~IGNORE_INTS );
3437 if (savedInterrupts)
3438 OUT4500( apriv, EVINTEN, savedInterrupts );
3441 return IRQ_RETVAL(handled);
3445 * Routines to talk to the card
3449 * This was originally written for the 4500, hence the name
3450 * NOTE: If use with 8bit mode and SMP bad things will happen!
3451 * Why would some one do 8 bit IO in an SMP machine?!?
3453 static void OUT4500( struct airo_info *ai, u16 reg, u16 val ) {
3454 if (test_bit(FLAG_MPI,&ai->flags))
3457 outw( val, ai->dev->base_addr + reg );
3459 outb( val & 0xff, ai->dev->base_addr + reg );
3460 outb( val >> 8, ai->dev->base_addr + reg + 1 );
3464 static u16 IN4500( struct airo_info *ai, u16 reg ) {
3467 if (test_bit(FLAG_MPI,&ai->flags))
3470 rc = inw( ai->dev->base_addr + reg );
3472 rc = inb( ai->dev->base_addr + reg );
3473 rc += ((int)inb( ai->dev->base_addr + reg + 1 )) << 8;
3478 static int enable_MAC(struct airo_info *ai, int lock)
3484 /* FLAG_RADIO_OFF : Radio disabled via /proc or Wireless Extensions
3485 * FLAG_RADIO_DOWN : Radio disabled via "ifconfig ethX down"
3486 * Note : we could try to use !netif_running(dev) in enable_MAC()
3487 * instead of this flag, but I don't trust it *within* the
3488 * open/close functions, and testing both flags together is
3489 * "cheaper" - Jean II */
3490 if (ai->flags & FLAG_RADIO_MASK) return SUCCESS;
3492 if (lock && down_interruptible(&ai->sem))
3493 return -ERESTARTSYS;
3495 if (!test_bit(FLAG_ENABLED, &ai->flags)) {
3496 memset(&cmd, 0, sizeof(cmd));
3497 cmd.cmd = MAC_ENABLE;
3498 rc = issuecommand(ai, &cmd, &rsp);
3500 set_bit(FLAG_ENABLED, &ai->flags);
3508 airo_print_err(ai->dev->name, "Cannot enable MAC");
3509 else if ((rsp.status & 0xFF00) != 0) {
3510 airo_print_err(ai->dev->name, "Bad MAC enable reason=%x, "
3511 "rid=%x, offset=%d", rsp.rsp0, rsp.rsp1, rsp.rsp2);
3517 static void disable_MAC( struct airo_info *ai, int lock ) {
3521 if (lock && down_interruptible(&ai->sem))
3524 if (test_bit(FLAG_ENABLED, &ai->flags)) {
3525 memset(&cmd, 0, sizeof(cmd));
3526 cmd.cmd = MAC_DISABLE; // disable in case already enabled
3527 issuecommand(ai, &cmd, &rsp);
3528 clear_bit(FLAG_ENABLED, &ai->flags);
3534 static void enable_interrupts( struct airo_info *ai ) {
3535 /* Enable the interrupts */
3536 OUT4500( ai, EVINTEN, STATUS_INTS );
3539 static void disable_interrupts( struct airo_info *ai ) {
3540 OUT4500( ai, EVINTEN, 0 );
3543 static void mpi_receive_802_3(struct airo_info *ai)
3547 struct sk_buff *skb;
3552 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3553 /* Make sure we got something */
3554 if (rxd.rdy && rxd.valid == 0) {
3556 if (len < 12 || len > 2048)
3559 skb = dev_alloc_skb(len);
3561 ai->dev->stats.rx_dropped++;
3564 buffer = skb_put(skb,len);
3565 memcpy(buffer, ai->rxfids[0].virtual_host_addr, ETH_ALEN * 2);
3566 if (ai->micstats.enabled) {
3568 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2,
3570 if (ntohs(micbuf.typelen) <= 0x05DC) {
3571 if (len <= sizeof(micbuf) + ETH_ALEN * 2)
3574 off = sizeof(micbuf);
3575 skb_trim (skb, len - off);
3578 memcpy(buffer + ETH_ALEN * 2,
3579 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2 + off,
3580 len - ETH_ALEN * 2 - off);
3581 if (decapsulate (ai, &micbuf, (etherHead*)buffer, len - off - ETH_ALEN * 2)) {
3583 dev_kfree_skb_irq (skb);
3587 if (ai->spy_data.spy_number > 0) {
3589 struct iw_quality wstats;
3590 /* Prepare spy data : addr + qual */
3591 sa = buffer + ETH_ALEN;
3592 wstats.qual = 0; /* XXX Where do I get that info from ??? */
3595 /* Update spy records */
3596 wireless_spy_update(ai->dev, sa, &wstats);
3598 #endif /* WIRELESS_SPY */
3600 skb->ip_summed = CHECKSUM_NONE;
3601 skb->protocol = eth_type_trans(skb, ai->dev);
3602 skb->dev->last_rx = jiffies;
3606 if (rxd.valid == 0) {
3610 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3614 void mpi_receive_802_11 (struct airo_info *ai)
3617 struct sk_buff *skb = NULL;
3618 u16 len, hdrlen = 0;
3631 char *ptr = ai->rxfids[0].virtual_host_addr+4;
3633 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3634 memcpy ((char *)&hdr, ptr, sizeof(hdr));
3636 /* Bad CRC. Ignore packet */
3637 if (le16_to_cpu(hdr.status) & 2)
3639 if (ai->wifidev == NULL)
3641 len = le16_to_cpu(hdr.len);
3642 if (len > AIRO_DEF_MTU) {
3643 airo_print_err(ai->dev->name, "Bad size %d", len);
3649 fc = get_unaligned((__le16 *)ptr);
3650 hdrlen = header_len(fc);
3652 skb = dev_alloc_skb( len + hdrlen + 2 );
3654 ai->dev->stats.rx_dropped++;
3657 buffer = (u16*)skb_put (skb, len + hdrlen);
3658 memcpy ((char *)buffer, ptr, hdrlen);
3662 gap = get_unaligned_le16(ptr);
3663 ptr += sizeof(__le16);
3668 airo_print_err(ai->dev->name,
3669 "gaplen too big. Problems will follow...");
3671 memcpy ((char *)buffer + hdrlen, ptr, len);
3673 #ifdef IW_WIRELESS_SPY /* defined in iw_handler.h */
3674 if (ai->spy_data.spy_number > 0) {
3676 struct iw_quality wstats;
3677 /* Prepare spy data : addr + qual */
3678 sa = (char*)buffer + 10;
3679 wstats.qual = hdr.rssi[0];
3681 wstats.level = 0x100 - ai->rssi[hdr.rssi[1]].rssidBm;
3683 wstats.level = (hdr.rssi[1] + 321) / 2;
3684 wstats.noise = ai->wstats.qual.noise;
3685 wstats.updated = IW_QUAL_QUAL_UPDATED
3686 | IW_QUAL_LEVEL_UPDATED
3688 /* Update spy records */
3689 wireless_spy_update(ai->dev, sa, &wstats);
3691 #endif /* IW_WIRELESS_SPY */
3692 skb_reset_mac_header(skb);
3693 skb->pkt_type = PACKET_OTHERHOST;
3694 skb->dev = ai->wifidev;
3695 skb->protocol = htons(ETH_P_802_2);
3696 skb->dev->last_rx = jiffies;
3697 skb->ip_summed = CHECKSUM_NONE;
3700 if (rxd.valid == 0) {
3704 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3708 static u16 setup_card(struct airo_info *ai, u8 *mac, int lock)
3719 memset( &mySsid, 0, sizeof( mySsid ) );
3723 /* The NOP is the first step in getting the card going */
3725 cmd.parm0 = cmd.parm1 = cmd.parm2 = 0;
3726 if (lock && down_interruptible(&ai->sem))
3728 if ( issuecommand( ai, &cmd, &rsp ) != SUCCESS ) {
3733 disable_MAC( ai, 0);
3735 // Let's figure out if we need to use the AUX port
3736 if (!test_bit(FLAG_MPI,&ai->flags)) {
3737 cmd.cmd = CMD_ENABLEAUX;
3738 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
3741 airo_print_err(ai->dev->name, "Error checking for AUX port");
3744 if (!aux_bap || rsp.status & 0xff00) {
3745 ai->bap_read = fast_bap_read;
3746 airo_print_dbg(ai->dev->name, "Doing fast bap_reads");
3748 ai->bap_read = aux_bap_read;
3749 airo_print_dbg(ai->dev->name, "Doing AUX bap_reads");
3754 if (ai->config.len == 0) {
3755 tdsRssiRid rssi_rid;
3756 CapabilityRid cap_rid;
3762 // general configuration (read/modify/write)
3763 status = readConfigRid(ai, lock);
3764 if ( status != SUCCESS ) return ERROR;
3766 status = readCapabilityRid(ai, &cap_rid, lock);
3767 if ( status != SUCCESS ) return ERROR;
3769 status = PC4500_readrid(ai,RID_RSSI,&rssi_rid,sizeof(rssi_rid),lock);
3770 if ( status == SUCCESS ) {
3771 if (ai->rssi || (ai->rssi = kmalloc(512, GFP_KERNEL)) != NULL)
3772 memcpy(ai->rssi, (u8*)&rssi_rid + 2, 512); /* Skip RID length member */
3777 if (cap_rid.softCap & cpu_to_le16(8))
3778 ai->config.rmode |= RXMODE_NORMALIZED_RSSI;
3780 airo_print_warn(ai->dev->name, "unknown received signal "
3783 ai->config.opmode = adhoc ? MODE_STA_IBSS : MODE_STA_ESS;
3784 ai->config.authType = AUTH_OPEN;
3785 ai->config.modulation = MOD_CCK;
3787 if (le16_to_cpu(cap_rid.len) >= sizeof(cap_rid) &&
3788 (cap_rid.extSoftCap & cpu_to_le16(1)) &&
3789 micsetup(ai) == SUCCESS) {
3790 ai->config.opmode |= MODE_MIC;
3791 set_bit(FLAG_MIC_CAPABLE, &ai->flags);
3794 /* Save off the MAC */
3795 for( i = 0; i < ETH_ALEN; i++ ) {
3796 mac[i] = ai->config.macAddr[i];
3799 /* Check to see if there are any insmod configured
3803 memset(ai->config.rates,0,sizeof(ai->config.rates));
3804 for( i = 0; i < 8 && rates[i]; i++ ) {
3805 ai->config.rates[i] = rates[i];
3808 if ( basic_rate > 0 ) {
3810 for( i = 0; i < 8; i++ ) {
3811 if ( ai->config.rates[i] == basic_rate ||
3812 !ai->config.rates ) {
3813 ai->config.rates[i] = basic_rate | 0x80;
3818 set_bit (FLAG_COMMIT, &ai->flags);
3821 /* Setup the SSIDs if present */
3824 for( i = 0; i < 3 && ssids[i]; i++ ) {
3825 size_t len = strlen(ssids[i]);
3828 mySsid.ssids[i].len = cpu_to_le16(len);
3829 memcpy(mySsid.ssids[i].ssid, ssids[i], len);
3831 mySsid.len = cpu_to_le16(sizeof(mySsid));
3834 status = writeConfigRid(ai, lock);
3835 if ( status != SUCCESS ) return ERROR;
3837 /* Set up the SSID list */
3839 status = writeSsidRid(ai, &mySsid, lock);
3840 if ( status != SUCCESS ) return ERROR;
3843 status = enable_MAC(ai, lock);
3844 if (status != SUCCESS)
3847 /* Grab the initial wep key, we gotta save it for auto_wep */
3848 rc = readWepKeyRid(ai, &wkr, 1, lock);
3849 if (rc == SUCCESS) do {
3850 lastindex = wkr.kindex;
3851 if (wkr.kindex == cpu_to_le16(0xffff)) {
3852 ai->defindex = wkr.mac[0];
3854 rc = readWepKeyRid(ai, &wkr, 0, lock);
3855 } while(lastindex != wkr.kindex);
3862 static u16 issuecommand(struct airo_info *ai, Cmd *pCmd, Resp *pRsp) {
3863 // Im really paranoid about letting it run forever!
3864 int max_tries = 600000;
3866 if (IN4500(ai, EVSTAT) & EV_CMD)
3867 OUT4500(ai, EVACK, EV_CMD);
3869 OUT4500(ai, PARAM0, pCmd->parm0);
3870 OUT4500(ai, PARAM1, pCmd->parm1);
3871 OUT4500(ai, PARAM2, pCmd->parm2);
3872 OUT4500(ai, COMMAND, pCmd->cmd);
3874 while (max_tries-- && (IN4500(ai, EVSTAT) & EV_CMD) == 0) {
3875 if ((IN4500(ai, COMMAND)) == pCmd->cmd)
3876 // PC4500 didn't notice command, try again
3877 OUT4500(ai, COMMAND, pCmd->cmd);
3878 if (!in_atomic() && (max_tries & 255) == 0)
3882 if ( max_tries == -1 ) {
3883 airo_print_err(ai->dev->name,
3884 "Max tries exceeded when issueing command");
3885 if (IN4500(ai, COMMAND) & COMMAND_BUSY)
3886 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3890 // command completed
3891 pRsp->status = IN4500(ai, STATUS);
3892 pRsp->rsp0 = IN4500(ai, RESP0);
3893 pRsp->rsp1 = IN4500(ai, RESP1);
3894 pRsp->rsp2 = IN4500(ai, RESP2);
3895 if ((pRsp->status & 0xff00)!=0 && pCmd->cmd != CMD_SOFTRESET)
3896 airo_print_err(ai->dev->name,
3897 "cmd:%x status:%x rsp0:%x rsp1:%x rsp2:%x",
3898 pCmd->cmd, pRsp->status, pRsp->rsp0, pRsp->rsp1,
3901 // clear stuck command busy if necessary
3902 if (IN4500(ai, COMMAND) & COMMAND_BUSY) {
3903 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3905 // acknowledge processing the status/response
3906 OUT4500(ai, EVACK, EV_CMD);
3911 /* Sets up the bap to start exchange data. whichbap should
3912 * be one of the BAP0 or BAP1 defines. Locks should be held before
3914 static int bap_setup(struct airo_info *ai, u16 rid, u16 offset, int whichbap )
3919 OUT4500(ai, SELECT0+whichbap, rid);
3920 OUT4500(ai, OFFSET0+whichbap, offset);
3922 int status = IN4500(ai, OFFSET0+whichbap);
3923 if (status & BAP_BUSY) {
3924 /* This isn't really a timeout, but its kinda
3929 } else if ( status & BAP_ERR ) {
3930 /* invalid rid or offset */
3931 airo_print_err(ai->dev->name, "BAP error %x %d",
3934 } else if (status & BAP_DONE) { // success
3937 if ( !(max_tries--) ) {
3938 airo_print_err(ai->dev->name,
3939 "BAP setup error too many retries\n");
3942 // -- PC4500 missed it, try again
3943 OUT4500(ai, SELECT0+whichbap, rid);
3944 OUT4500(ai, OFFSET0+whichbap, offset);
3949 /* should only be called by aux_bap_read. This aux function and the
3950 following use concepts not documented in the developers guide. I
3951 got them from a patch given to my by Aironet */
3952 static u16 aux_setup(struct airo_info *ai, u16 page,
3953 u16 offset, u16 *len)
3957 OUT4500(ai, AUXPAGE, page);
3958 OUT4500(ai, AUXOFF, 0);
3959 next = IN4500(ai, AUXDATA);
3960 *len = IN4500(ai, AUXDATA)&0xff;
3961 if (offset != 4) OUT4500(ai, AUXOFF, offset);
3965 /* requires call to bap_setup() first */
3966 static int aux_bap_read(struct airo_info *ai, __le16 *pu16Dst,
3967 int bytelen, int whichbap)
3975 unsigned long flags;
3977 spin_lock_irqsave(&ai->aux_lock, flags);
3978 page = IN4500(ai, SWS0+whichbap);
3979 offset = IN4500(ai, SWS2+whichbap);
3980 next = aux_setup(ai, page, offset, &len);
3981 words = (bytelen+1)>>1;
3983 for (i=0; i<words;) {
3985 count = (len>>1) < (words-i) ? (len>>1) : (words-i);
3987 insw( ai->dev->base_addr+DATA0+whichbap,
3990 insb( ai->dev->base_addr+DATA0+whichbap,
3991 pu16Dst+i, count << 1 );
3994 next = aux_setup(ai, next, 4, &len);
3997 spin_unlock_irqrestore(&ai->aux_lock, flags);
4002 /* requires call to bap_setup() first */
4003 static int fast_bap_read(struct airo_info *ai, __le16 *pu16Dst,
4004 int bytelen, int whichbap)
4006 bytelen = (bytelen + 1) & (~1); // round up to even value
4008 insw( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen>>1 );
4010 insb( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen );
4014 /* requires call to bap_setup() first */
4015 static int bap_write(struct airo_info *ai, const __le16 *pu16Src,
4016 int bytelen, int whichbap)
4018 bytelen = (bytelen + 1) & (~1); // round up to even value
4020 outsw( ai->dev->base_addr+DATA0+whichbap,
4021 pu16Src, bytelen>>1 );
4023 outsb( ai->dev->base_addr+DATA0+whichbap, pu16Src, bytelen );
4027 static int PC4500_accessrid(struct airo_info *ai, u16 rid, u16 accmd)
4029 Cmd cmd; /* for issuing commands */
4030 Resp rsp; /* response from commands */
4033 memset(&cmd, 0, sizeof(cmd));
4036 status = issuecommand(ai, &cmd, &rsp);
4037 if (status != 0) return status;
4038 if ( (rsp.status & 0x7F00) != 0) {
4039 return (accmd << 8) + (rsp.rsp0 & 0xFF);
4044 /* Note, that we are using BAP1 which is also used by transmit, so
4045 * we must get a lock. */
4046 static int PC4500_readrid(struct airo_info *ai, u16 rid, void *pBuf, int len, int lock)
4052 if (down_interruptible(&ai->sem))
4055 if (test_bit(FLAG_MPI,&ai->flags)) {
4059 memset(&cmd, 0, sizeof(cmd));
4060 memset(&rsp, 0, sizeof(rsp));
4061 ai->config_desc.rid_desc.valid = 1;
4062 ai->config_desc.rid_desc.len = RIDSIZE;
4063 ai->config_desc.rid_desc.rid = 0;
4064 ai->config_desc.rid_desc.host_addr = ai->ridbus;
4066 cmd.cmd = CMD_ACCESS;
4069 memcpy_toio(ai->config_desc.card_ram_off,
4070 &ai->config_desc.rid_desc, sizeof(Rid));
4072 rc = issuecommand(ai, &cmd, &rsp);
4074 if (rsp.status & 0x7f00)
4077 memcpy(pBuf, ai->config_desc.virtual_host_addr, len);
4080 if ((status = PC4500_accessrid(ai, rid, CMD_ACCESS))!=SUCCESS) {
4084 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4088 // read the rid length field
4089 bap_read(ai, pBuf, 2, BAP1);
4090 // length for remaining part of rid
4091 len = min(len, (int)le16_to_cpu(*(__le16*)pBuf)) - 2;
4094 airo_print_err(ai->dev->name,
4095 "Rid %x has a length of %d which is too short",
4096 (int)rid, (int)len );
4100 // read remainder of the rid
4101 rc = bap_read(ai, ((__le16*)pBuf)+1, len, BAP1);
4109 /* Note, that we are using BAP1 which is also used by transmit, so
4110 * make sure this isnt called when a transmit is happening */
4111 static int PC4500_writerid(struct airo_info *ai, u16 rid,
4112 const void *pBuf, int len, int lock)
4117 *(__le16*)pBuf = cpu_to_le16((u16)len);
4120 if (down_interruptible(&ai->sem))
4123 if (test_bit(FLAG_MPI,&ai->flags)) {
4127 if (test_bit(FLAG_ENABLED, &ai->flags) && (RID_WEP_TEMP != rid))
4128 airo_print_err(ai->dev->name,
4129 "%s: MAC should be disabled (rid=%04x)",
4131 memset(&cmd, 0, sizeof(cmd));
4132 memset(&rsp, 0, sizeof(rsp));
4134 ai->config_desc.rid_desc.valid = 1;
4135 ai->config_desc.rid_desc.len = *((u16 *)pBuf);
4136 ai->config_desc.rid_desc.rid = 0;
4138 cmd.cmd = CMD_WRITERID;
4141 memcpy_toio(ai->config_desc.card_ram_off,
4142 &ai->config_desc.rid_desc, sizeof(Rid));
4144 if (len < 4 || len > 2047) {
4145 airo_print_err(ai->dev->name, "%s: len=%d", __FUNCTION__, len);
4148 memcpy((char *)ai->config_desc.virtual_host_addr,
4151 rc = issuecommand(ai, &cmd, &rsp);
4152 if ((rc & 0xff00) != 0) {
4153 airo_print_err(ai->dev->name, "%s: Write rid Error %d",
4155 airo_print_err(ai->dev->name, "%s: Cmd=%04x",
4156 __FUNCTION__, cmd.cmd);
4159 if ((rsp.status & 0x7f00))
4163 // --- first access so that we can write the rid data
4164 if ( (status = PC4500_accessrid(ai, rid, CMD_ACCESS)) != 0) {
4168 // --- now write the rid data
4169 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4173 bap_write(ai, pBuf, len, BAP1);
4174 // ---now commit the rid data
4175 rc = PC4500_accessrid(ai, rid, 0x100|CMD_ACCESS);
4183 /* Allocates a FID to be used for transmitting packets. We only use
4185 static u16 transmit_allocate(struct airo_info *ai, int lenPayload, int raw)
4187 unsigned int loop = 3000;
4193 cmd.cmd = CMD_ALLOCATETX;
4194 cmd.parm0 = lenPayload;
4195 if (down_interruptible(&ai->sem))
4197 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
4201 if ( (rsp.status & 0xFF00) != 0) {
4205 /* wait for the allocate event/indication
4206 * It makes me kind of nervous that this can just sit here and spin,
4207 * but in practice it only loops like four times. */
4208 while (((IN4500(ai, EVSTAT) & EV_ALLOC) == 0) && --loop);
4214 // get the allocated fid and acknowledge
4215 txFid = IN4500(ai, TXALLOCFID);
4216 OUT4500(ai, EVACK, EV_ALLOC);
4218 /* The CARD is pretty cool since it converts the ethernet packet
4219 * into 802.11. Also note that we don't release the FID since we
4220 * will be using the same one over and over again. */
4221 /* We only have to setup the control once since we are not
4222 * releasing the fid. */
4224 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_11
4225 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4227 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_3
4228 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4229 if (bap_setup(ai, txFid, 0x0008, BAP1) != SUCCESS)
4232 bap_write(ai, &txControl, sizeof(txControl), BAP1);
4240 /* In general BAP1 is dedicated to transmiting packets. However,
4241 since we need a BAP when accessing RIDs, we also use BAP1 for that.
4242 Make sure the BAP1 spinlock is held when this is called. */
4243 static int transmit_802_3_packet(struct airo_info *ai, int len, char *pPacket)
4254 if (len <= ETH_ALEN * 2) {
4255 airo_print_warn(ai->dev->name, "Short packet %d", len);
4258 len -= ETH_ALEN * 2;
4260 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
4261 (ntohs(((__be16 *)pPacket)[6]) != 0x888E)) {
4262 if (encapsulate(ai,(etherHead *)pPacket,&pMic,len) != SUCCESS)
4264 miclen = sizeof(pMic);
4266 // packet is destination[6], source[6], payload[len-12]
4267 // write the payload length and dst/src/payload
4268 if (bap_setup(ai, txFid, 0x0036, BAP1) != SUCCESS) return ERROR;
4269 /* The hardware addresses aren't counted as part of the payload, so
4270 * we have to subtract the 12 bytes for the addresses off */
4271 payloadLen = cpu_to_le16(len + miclen);
4272 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4273 bap_write(ai, (__le16*)pPacket, sizeof(etherHead), BAP1);
4275 bap_write(ai, (__le16*)&pMic, miclen, BAP1);
4276 bap_write(ai, (__le16*)(pPacket + sizeof(etherHead)), len, BAP1);
4277 // issue the transmit command
4278 memset( &cmd, 0, sizeof( cmd ) );
4279 cmd.cmd = CMD_TRANSMIT;
4281 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4282 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4286 static int transmit_802_11_packet(struct airo_info *ai, int len, char *pPacket)
4288 __le16 fc, payloadLen;
4292 static u8 tail[(30-10) + 2 + 6] = {[30-10] = 6};
4293 /* padding of header to full size + le16 gaplen (6) + gaplen bytes */
4297 fc = *(__le16*)pPacket;
4298 hdrlen = header_len(fc);
4301 airo_print_warn(ai->dev->name, "Short packet %d", len);
4305 /* packet is 802.11 header + payload
4306 * write the payload length and dst/src/payload */
4307 if (bap_setup(ai, txFid, 6, BAP1) != SUCCESS) return ERROR;
4308 /* The 802.11 header aren't counted as part of the payload, so
4309 * we have to subtract the header bytes off */
4310 payloadLen = cpu_to_le16(len-hdrlen);
4311 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4312 if (bap_setup(ai, txFid, 0x0014, BAP1) != SUCCESS) return ERROR;
4313 bap_write(ai, (__le16 *)pPacket, hdrlen, BAP1);
4314 bap_write(ai, (__le16 *)(tail + (hdrlen - 10)), 38 - hdrlen, BAP1);
4316 bap_write(ai, (__le16 *)(pPacket + hdrlen), len - hdrlen, BAP1);
4317 // issue the transmit command
4318 memset( &cmd, 0, sizeof( cmd ) );
4319 cmd.cmd = CMD_TRANSMIT;
4321 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4322 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4327 * This is the proc_fs routines. It is a bit messier than I would
4328 * like! Feel free to clean it up!
4331 static ssize_t proc_read( struct file *file,
4332 char __user *buffer,
4336 static ssize_t proc_write( struct file *file,
4337 const char __user *buffer,
4340 static int proc_close( struct inode *inode, struct file *file );
4342 static int proc_stats_open( struct inode *inode, struct file *file );
4343 static int proc_statsdelta_open( struct inode *inode, struct file *file );
4344 static int proc_status_open( struct inode *inode, struct file *file );
4345 static int proc_SSID_open( struct inode *inode, struct file *file );
4346 static int proc_APList_open( struct inode *inode, struct file *file );
4347 static int proc_BSSList_open( struct inode *inode, struct file *file );
4348 static int proc_config_open( struct inode *inode, struct file *file );
4349 static int proc_wepkey_open( struct inode *inode, struct file *file );
4351 static const struct file_operations proc_statsdelta_ops = {
4352 .owner = THIS_MODULE,
4354 .open = proc_statsdelta_open,
4355 .release = proc_close
4358 static const struct file_operations proc_stats_ops = {
4359 .owner = THIS_MODULE,
4361 .open = proc_stats_open,
4362 .release = proc_close
4365 static const struct file_operations proc_status_ops = {
4366 .owner = THIS_MODULE,
4368 .open = proc_status_open,
4369 .release = proc_close
4372 static const struct file_operations proc_SSID_ops = {
4373 .owner = THIS_MODULE,
4375 .write = proc_write,
4376 .open = proc_SSID_open,
4377 .release = proc_close
4380 static const struct file_operations proc_BSSList_ops = {
4381 .owner = THIS_MODULE,
4383 .write = proc_write,
4384 .open = proc_BSSList_open,
4385 .release = proc_close
4388 static const struct file_operations proc_APList_ops = {
4389 .owner = THIS_MODULE,
4391 .write = proc_write,
4392 .open = proc_APList_open,
4393 .release = proc_close
4396 static const struct file_operations proc_config_ops = {
4397 .owner = THIS_MODULE,
4399 .write = proc_write,
4400 .open = proc_config_open,
4401 .release = proc_close
4404 static const struct file_operations proc_wepkey_ops = {
4405 .owner = THIS_MODULE,
4407 .write = proc_write,
4408 .open = proc_wepkey_open,
4409 .release = proc_close
4412 static struct proc_dir_entry *airo_entry;
4421 void (*on_close) (struct inode *, struct file *);
4424 static int setup_proc_entry( struct net_device *dev,
4425 struct airo_info *apriv ) {
4426 struct proc_dir_entry *entry;
4427 /* First setup the device directory */
4428 strcpy(apriv->proc_name,dev->name);
4429 apriv->proc_entry = create_proc_entry(apriv->proc_name,
4432 if (!apriv->proc_entry)
4434 apriv->proc_entry->uid = proc_uid;
4435 apriv->proc_entry->gid = proc_gid;
4436 apriv->proc_entry->owner = THIS_MODULE;
4438 /* Setup the StatsDelta */
4439 entry = proc_create_data("StatsDelta",
4440 S_IFREG | (S_IRUGO&proc_perm),
4441 apriv->proc_entry, &proc_statsdelta_ops, dev);
4443 goto fail_stats_delta;
4444 entry->uid = proc_uid;
4445 entry->gid = proc_gid;
4447 /* Setup the Stats */
4448 entry = proc_create_data("Stats",
4449 S_IFREG | (S_IRUGO&proc_perm),
4450 apriv->proc_entry, &proc_stats_ops, dev);
4453 entry->uid = proc_uid;
4454 entry->gid = proc_gid;
4456 /* Setup the Status */
4457 entry = proc_create_data("Status",
4458 S_IFREG | (S_IRUGO&proc_perm),
4459 apriv->proc_entry, &proc_status_ops, dev);
4462 entry->uid = proc_uid;
4463 entry->gid = proc_gid;
4465 /* Setup the Config */
4466 entry = proc_create_data("Config",
4467 S_IFREG | proc_perm,
4468 apriv->proc_entry, &proc_config_ops, dev);
4471 entry->uid = proc_uid;
4472 entry->gid = proc_gid;
4474 /* Setup the SSID */
4475 entry = proc_create_data("SSID",
4476 S_IFREG | proc_perm,
4477 apriv->proc_entry, &proc_SSID_ops, dev);
4480 entry->uid = proc_uid;
4481 entry->gid = proc_gid;
4483 /* Setup the APList */
4484 entry = proc_create_data("APList",
4485 S_IFREG | proc_perm,
4486 apriv->proc_entry, &proc_APList_ops, dev);
4489 entry->uid = proc_uid;
4490 entry->gid = proc_gid;
4492 /* Setup the BSSList */
4493 entry = proc_create_data("BSSList",
4494 S_IFREG | proc_perm,
4495 apriv->proc_entry, &proc_BSSList_ops, dev);
4498 entry->uid = proc_uid;
4499 entry->gid = proc_gid;
4501 /* Setup the WepKey */
4502 entry = proc_create_data("WepKey",
4503 S_IFREG | proc_perm,
4504 apriv->proc_entry, &proc_wepkey_ops, dev);
4507 entry->uid = proc_uid;
4508 entry->gid = proc_gid;
4513 remove_proc_entry("BSSList", apriv->proc_entry);
4515 remove_proc_entry("APList", apriv->proc_entry);
4517 remove_proc_entry("SSID", apriv->proc_entry);
4519 remove_proc_entry("Config", apriv->proc_entry);
4521 remove_proc_entry("Status", apriv->proc_entry);
4523 remove_proc_entry("Stats", apriv->proc_entry);
4525 remove_proc_entry("StatsDelta", apriv->proc_entry);
4527 remove_proc_entry(apriv->proc_name, airo_entry);
4532 static int takedown_proc_entry( struct net_device *dev,
4533 struct airo_info *apriv ) {
4534 if ( !apriv->proc_entry->namelen ) return 0;
4535 remove_proc_entry("Stats",apriv->proc_entry);
4536 remove_proc_entry("StatsDelta",apriv->proc_entry);
4537 remove_proc_entry("Status",apriv->proc_entry);
4538 remove_proc_entry("Config",apriv->proc_entry);
4539 remove_proc_entry("SSID",apriv->proc_entry);
4540 remove_proc_entry("APList",apriv->proc_entry);
4541 remove_proc_entry("BSSList",apriv->proc_entry);
4542 remove_proc_entry("WepKey",apriv->proc_entry);
4543 remove_proc_entry(apriv->proc_name,airo_entry);
4548 * What we want from the proc_fs is to be able to efficiently read
4549 * and write the configuration. To do this, we want to read the
4550 * configuration when the file is opened and write it when the file is
4551 * closed. So basically we allocate a read buffer at open and fill it
4552 * with data, and allocate a write buffer and read it at close.
4556 * The read routine is generic, it relies on the preallocated rbuffer
4557 * to supply the data.
4559 static ssize_t proc_read( struct file *file,
4560 char __user *buffer,
4564 loff_t pos = *offset;
4565 struct proc_data *priv = (struct proc_data*)file->private_data;
4572 if (pos >= priv->readlen)
4574 if (len > priv->readlen - pos)
4575 len = priv->readlen - pos;
4576 if (copy_to_user(buffer, priv->rbuffer + pos, len))
4578 *offset = pos + len;
4583 * The write routine is generic, it fills in a preallocated rbuffer
4584 * to supply the data.
4586 static ssize_t proc_write( struct file *file,
4587 const char __user *buffer,
4591 loff_t pos = *offset;
4592 struct proc_data *priv = (struct proc_data*)file->private_data;
4599 if (pos >= priv->maxwritelen)
4601 if (len > priv->maxwritelen - pos)
4602 len = priv->maxwritelen - pos;
4603 if (copy_from_user(priv->wbuffer + pos, buffer, len))
4605 if ( pos + len > priv->writelen )
4606 priv->writelen = len + file->f_pos;
4607 *offset = pos + len;
4611 static int proc_status_open(struct inode *inode, struct file *file)
4613 struct proc_data *data;
4614 struct proc_dir_entry *dp = PDE(inode);
4615 struct net_device *dev = dp->data;
4616 struct airo_info *apriv = dev->priv;
4617 CapabilityRid cap_rid;
4618 StatusRid status_rid;
4622 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4624 data = (struct proc_data *)file->private_data;
4625 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
4626 kfree (file->private_data);
4630 readStatusRid(apriv, &status_rid, 1);
4631 readCapabilityRid(apriv, &cap_rid, 1);
4633 mode = le16_to_cpu(status_rid.mode);
4635 i = sprintf(data->rbuffer, "Status: %s%s%s%s%s%s%s%s%s\n",
4636 mode & 1 ? "CFG ": "",
4637 mode & 2 ? "ACT ": "",
4638 mode & 0x10 ? "SYN ": "",
4639 mode & 0x20 ? "LNK ": "",
4640 mode & 0x40 ? "LEAP ": "",
4641 mode & 0x80 ? "PRIV ": "",
4642 mode & 0x100 ? "KEY ": "",
4643 mode & 0x200 ? "WEP ": "",
4644 mode & 0x8000 ? "ERR ": "");
4645 sprintf( data->rbuffer+i, "Mode: %x\n"
4646 "Signal Strength: %d\n"
4647 "Signal Quality: %d\n"
4652 "Driver Version: %s\n"
4653 "Device: %s\nManufacturer: %s\nFirmware Version: %s\n"
4654 "Radio type: %x\nCountry: %x\nHardware Version: %x\n"
4655 "Software Version: %x\nSoftware Subversion: %x\n"
4656 "Boot block version: %x\n",
4657 le16_to_cpu(status_rid.mode),
4658 le16_to_cpu(status_rid.normalizedSignalStrength),
4659 le16_to_cpu(status_rid.signalQuality),
4660 le16_to_cpu(status_rid.SSIDlen),
4663 le16_to_cpu(status_rid.channel),
4664 le16_to_cpu(status_rid.currentXmitRate) / 2,
4669 le16_to_cpu(cap_rid.radioType),
4670 le16_to_cpu(cap_rid.country),
4671 le16_to_cpu(cap_rid.hardVer),
4672 le16_to_cpu(cap_rid.softVer),
4673 le16_to_cpu(cap_rid.softSubVer),
4674 le16_to_cpu(cap_rid.bootBlockVer));
4675 data->readlen = strlen( data->rbuffer );
4679 static int proc_stats_rid_open(struct inode*, struct file*, u16);
4680 static int proc_statsdelta_open( struct inode *inode,
4681 struct file *file ) {
4682 if (file->f_mode&FMODE_WRITE) {
4683 return proc_stats_rid_open(inode, file, RID_STATSDELTACLEAR);
4685 return proc_stats_rid_open(inode, file, RID_STATSDELTA);
4688 static int proc_stats_open( struct inode *inode, struct file *file ) {
4689 return proc_stats_rid_open(inode, file, RID_STATS);
4692 static int proc_stats_rid_open( struct inode *inode,
4696 struct proc_data *data;
4697 struct proc_dir_entry *dp = PDE(inode);
4698 struct net_device *dev = dp->data;
4699 struct airo_info *apriv = dev->priv;
4702 __le32 *vals = stats.vals;
4703 int len = le16_to_cpu(stats.len);
4705 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4707 data = (struct proc_data *)file->private_data;
4708 if ((data->rbuffer = kmalloc( 4096, GFP_KERNEL )) == NULL) {
4709 kfree (file->private_data);
4713 readStatsRid(apriv, &stats, rid, 1);
4716 for(i=0; statsLabels[i]!=(char *)-1 && i*4<len; i++) {
4717 if (!statsLabels[i]) continue;
4718 if (j+strlen(statsLabels[i])+16>4096) {
4719 airo_print_warn(apriv->dev->name,
4720 "Potentially disasterous buffer overflow averted!");
4723 j+=sprintf(data->rbuffer+j, "%s: %u\n", statsLabels[i],
4724 le32_to_cpu(vals[i]));
4727 airo_print_warn(apriv->dev->name, "Got a short rid");
4733 static int get_dec_u16( char *buffer, int *start, int limit ) {
4736 for( value = 0; buffer[*start] >= '0' &&
4737 buffer[*start] <= '9' &&
4738 *start < limit; (*start)++ ) {
4741 value += buffer[*start] - '0';
4743 if ( !valid ) return -1;
4747 static int airo_config_commit(struct net_device *dev,
4748 struct iw_request_info *info, void *zwrq,
4751 static inline int sniffing_mode(struct airo_info *ai)
4753 return le16_to_cpu(ai->config.rmode & RXMODE_MASK) >=
4754 le16_to_cpu(RXMODE_RFMON);
4757 static void proc_config_on_close(struct inode *inode, struct file *file)
4759 struct proc_data *data = file->private_data;
4760 struct proc_dir_entry *dp = PDE(inode);
4761 struct net_device *dev = dp->data;
4762 struct airo_info *ai = dev->priv;
4765 if ( !data->writelen ) return;
4767 readConfigRid(ai, 1);
4768 set_bit (FLAG_COMMIT, &ai->flags);
4770 line = data->wbuffer;
4772 /*** Mode processing */
4773 if ( !strncmp( line, "Mode: ", 6 ) ) {
4775 if (sniffing_mode(ai))
4776 set_bit (FLAG_RESET, &ai->flags);
4777 ai->config.rmode &= ~RXMODE_FULL_MASK;
4778 clear_bit (FLAG_802_11, &ai->flags);
4779 ai->config.opmode &= ~MODE_CFG_MASK;
4780 ai->config.scanMode = SCANMODE_ACTIVE;
4781 if ( line[0] == 'a' ) {
4782 ai->config.opmode |= MODE_STA_IBSS;
4784 ai->config.opmode |= MODE_STA_ESS;
4785 if ( line[0] == 'r' ) {
4786 ai->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
4787 ai->config.scanMode = SCANMODE_PASSIVE;
4788 set_bit (FLAG_802_11, &ai->flags);
4789 } else if ( line[0] == 'y' ) {
4790 ai->config.rmode |= RXMODE_RFMON_ANYBSS | RXMODE_DISABLE_802_3_HEADER;
4791 ai->config.scanMode = SCANMODE_PASSIVE;
4792 set_bit (FLAG_802_11, &ai->flags);
4793 } else if ( line[0] == 'l' )
4794 ai->config.rmode |= RXMODE_LANMON;
4796 set_bit (FLAG_COMMIT, &ai->flags);
4799 /*** Radio status */
4800 else if (!strncmp(line,"Radio: ", 7)) {
4802 if (!strncmp(line,"off",3)) {
4803 set_bit (FLAG_RADIO_OFF, &ai->flags);
4805 clear_bit (FLAG_RADIO_OFF, &ai->flags);
4808 /*** NodeName processing */
4809 else if ( !strncmp( line, "NodeName: ", 10 ) ) {
4813 memset( ai->config.nodeName, 0, 16 );
4814 /* Do the name, assume a space between the mode and node name */
4815 for( j = 0; j < 16 && line[j] != '\n'; j++ ) {
4816 ai->config.nodeName[j] = line[j];
4818 set_bit (FLAG_COMMIT, &ai->flags);
4821 /*** PowerMode processing */
4822 else if ( !strncmp( line, "PowerMode: ", 11 ) ) {
4824 if ( !strncmp( line, "PSPCAM", 6 ) ) {
4825 ai->config.powerSaveMode = POWERSAVE_PSPCAM;
4826 set_bit (FLAG_COMMIT, &ai->flags);
4827 } else if ( !strncmp( line, "PSP", 3 ) ) {
4828 ai->config.powerSaveMode = POWERSAVE_PSP;
4829 set_bit (FLAG_COMMIT, &ai->flags);
4831 ai->config.powerSaveMode = POWERSAVE_CAM;
4832 set_bit (FLAG_COMMIT, &ai->flags);
4834 } else if ( !strncmp( line, "DataRates: ", 11 ) ) {
4835 int v, i = 0, k = 0; /* i is index into line,
4836 k is index to rates */
4839 while((v = get_dec_u16(line, &i, 3))!=-1) {
4840 ai->config.rates[k++] = (u8)v;
4844 set_bit (FLAG_COMMIT, &ai->flags);
4845 } else if ( !strncmp( line, "Channel: ", 9 ) ) {
4848 v = get_dec_u16(line, &i, i+3);
4850 ai->config.channelSet = cpu_to_le16(v);
4851 set_bit (FLAG_COMMIT, &ai->flags);
4853 } else if ( !strncmp( line, "XmitPower: ", 11 ) ) {
4856 v = get_dec_u16(line, &i, i+3);
4858 ai->config.txPower = cpu_to_le16(v);
4859 set_bit (FLAG_COMMIT, &ai->flags);
4861 } else if ( !strncmp( line, "WEP: ", 5 ) ) {
4865 ai->config.authType = AUTH_SHAREDKEY;
4868 ai->config.authType = AUTH_ENCRYPT;
4871 ai->config.authType = AUTH_OPEN;
4874 set_bit (FLAG_COMMIT, &ai->flags);
4875 } else if ( !strncmp( line, "LongRetryLimit: ", 16 ) ) {
4879 v = get_dec_u16(line, &i, 3);
4880 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4881 ai->config.longRetryLimit = cpu_to_le16(v);
4882 set_bit (FLAG_COMMIT, &ai->flags);
4883 } else if ( !strncmp( line, "ShortRetryLimit: ", 17 ) ) {
4887 v = get_dec_u16(line, &i, 3);
4888 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4889 ai->config.shortRetryLimit = cpu_to_le16(v);
4890 set_bit (FLAG_COMMIT, &ai->flags);
4891 } else if ( !strncmp( line, "RTSThreshold: ", 14 ) ) {
4895 v = get_dec_u16(line, &i, 4);
4896 v = (v<0) ? 0 : ((v>AIRO_DEF_MTU) ? AIRO_DEF_MTU : v);
4897 ai->config.rtsThres = cpu_to_le16(v);
4898 set_bit (FLAG_COMMIT, &ai->flags);
4899 } else if ( !strncmp( line, "TXMSDULifetime: ", 16 ) ) {
4903 v = get_dec_u16(line, &i, 5);
4905 ai->config.txLifetime = cpu_to_le16(v);
4906 set_bit (FLAG_COMMIT, &ai->flags);
4907 } else if ( !strncmp( line, "RXMSDULifetime: ", 16 ) ) {
4911 v = get_dec_u16(line, &i, 5);
4913 ai->config.rxLifetime = cpu_to_le16(v);
4914 set_bit (FLAG_COMMIT, &ai->flags);
4915 } else if ( !strncmp( line, "TXDiversity: ", 13 ) ) {
4916 ai->config.txDiversity =
4917 (line[13]=='l') ? 1 :
4918 ((line[13]=='r')? 2: 3);
4919 set_bit (FLAG_COMMIT, &ai->flags);
4920 } else if ( !strncmp( line, "RXDiversity: ", 13 ) ) {
4921 ai->config.rxDiversity =
4922 (line[13]=='l') ? 1 :
4923 ((line[13]=='r')? 2: 3);
4924 set_bit (FLAG_COMMIT, &ai->flags);
4925 } else if ( !strncmp( line, "FragThreshold: ", 15 ) ) {
4929 v = get_dec_u16(line, &i, 4);
4930 v = (v<256) ? 256 : ((v>AIRO_DEF_MTU) ? AIRO_DEF_MTU : v);
4931 v = v & 0xfffe; /* Make sure its even */
4932 ai->config.fragThresh = cpu_to_le16(v);
4933 set_bit (FLAG_COMMIT, &ai->flags);
4934 } else if (!strncmp(line, "Modulation: ", 12)) {
4937 case 'd': ai->config.modulation=MOD_DEFAULT; set_bit(FLAG_COMMIT, &ai->flags); break;
4938 case 'c': ai->config.modulation=MOD_CCK; set_bit(FLAG_COMMIT, &ai->flags); break;
4939 case 'm': ai->config.modulation=MOD_MOK; set_bit(FLAG_COMMIT, &ai->flags); break;
4940 default: airo_print_warn(ai->dev->name, "Unknown modulation");
4942 } else if (!strncmp(line, "Preamble: ", 10)) {
4945 case 'a': ai->config.preamble=PREAMBLE_AUTO; set_bit(FLAG_COMMIT, &ai->flags); break;
4946 case 'l': ai->config.preamble=PREAMBLE_LONG; set_bit(FLAG_COMMIT, &ai->flags); break;
4947 case 's': ai->config.preamble=PREAMBLE_SHORT; set_bit(FLAG_COMMIT, &ai->flags); break;
4948 default: airo_print_warn(ai->dev->name, "Unknown preamble");
4951 airo_print_warn(ai->dev->name, "Couldn't figure out %s", line);
4953 while( line[0] && line[0] != '\n' ) line++;
4954 if ( line[0] ) line++;
4956 airo_config_commit(dev, NULL, NULL, NULL);
4959 static char *get_rmode(__le16 mode)
4961 switch(mode & RXMODE_MASK) {
4962 case RXMODE_RFMON: return "rfmon";
4963 case RXMODE_RFMON_ANYBSS: return "yna (any) bss rfmon";
4964 case RXMODE_LANMON: return "lanmon";
4969 static int proc_config_open(struct inode *inode, struct file *file)
4971 struct proc_data *data;
4972 struct proc_dir_entry *dp = PDE(inode);
4973 struct net_device *dev = dp->data;
4974 struct airo_info *ai = dev->priv;
4978 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4980 data = (struct proc_data *)file->private_data;
4981 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
4982 kfree (file->private_data);
4985 if ((data->wbuffer = kzalloc( 2048, GFP_KERNEL )) == NULL) {
4986 kfree (data->rbuffer);
4987 kfree (file->private_data);
4990 data->maxwritelen = 2048;
4991 data->on_close = proc_config_on_close;
4993 readConfigRid(ai, 1);
4995 mode = ai->config.opmode & MODE_CFG_MASK;
4996 i = sprintf( data->rbuffer,
5001 "DataRates: %d %d %d %d %d %d %d %d\n"
5004 mode == MODE_STA_IBSS ? "adhoc" :
5005 mode == MODE_STA_ESS ? get_rmode(ai->config.rmode):
5006 mode == MODE_AP ? "AP" :
5007 mode == MODE_AP_RPTR ? "AP RPTR" : "Error",
5008 test_bit(FLAG_RADIO_OFF, &ai->flags) ? "off" : "on",
5009 ai->config.nodeName,
5010 ai->config.powerSaveMode == POWERSAVE_CAM ? "CAM" :
5011 ai->config.powerSaveMode == POWERSAVE_PSP ? "PSP" :
5012 ai->config.powerSaveMode == POWERSAVE_PSPCAM ? "PSPCAM" :
5014 (int)ai->config.rates[0],
5015 (int)ai->config.rates[1],
5016 (int)ai->config.rates[2],
5017 (int)ai->config.rates[3],
5018 (int)ai->config.rates[4],
5019 (int)ai->config.rates[5],
5020 (int)ai->config.rates[6],
5021 (int)ai->config.rates[7],
5022 le16_to_cpu(ai->config.channelSet),
5023 le16_to_cpu(ai->config.txPower)
5025 sprintf( data->rbuffer + i,
5026 "LongRetryLimit: %d\n"
5027 "ShortRetryLimit: %d\n"
5028 "RTSThreshold: %d\n"
5029 "TXMSDULifetime: %d\n"
5030 "RXMSDULifetime: %d\n"
5033 "FragThreshold: %d\n"
5037 le16_to_cpu(ai->config.longRetryLimit),
5038 le16_to_cpu(ai->config.shortRetryLimit),
5039 le16_to_cpu(ai->config.rtsThres),
5040 le16_to_cpu(ai->config.txLifetime),
5041 le16_to_cpu(ai->config.rxLifetime),
5042 ai->config.txDiversity == 1 ? "left" :
5043 ai->config.txDiversity == 2 ? "right" : "both",
5044 ai->config.rxDiversity == 1 ? "left" :
5045 ai->config.rxDiversity == 2 ? "right" : "both",
5046 le16_to_cpu(ai->config.fragThresh),
5047 ai->config.authType == AUTH_ENCRYPT ? "encrypt" :
5048 ai->config.authType == AUTH_SHAREDKEY ? "shared" : "open",
5049 ai->config.modulation == MOD_DEFAULT ? "default" :
5050 ai->config.modulation == MOD_CCK ? "cck" :
5051 ai->config.modulation == MOD_MOK ? "mok" : "error",
5052 ai->config.preamble == PREAMBLE_AUTO ? "auto" :
5053 ai->config.preamble == PREAMBLE_LONG ? "long" :
5054 ai->config.preamble == PREAMBLE_SHORT ? "short" : "error"
5056 data->readlen = strlen( data->rbuffer );
5060 static void proc_SSID_on_close(struct inode *inode, struct file *file)
5062 struct proc_data *data = (struct proc_data *)file->private_data;
5063 struct proc_dir_entry *dp = PDE(inode);
5064 struct net_device *dev = dp->data;
5065 struct airo_info *ai = dev->priv;
5068 char *p = data->wbuffer;
5069 char *end = p + data->writelen;
5071 if (!data->writelen)
5074 *end = '\n'; /* sentinel; we have space for it */
5076 memset(&SSID_rid, 0, sizeof(SSID_rid));
5078 for (i = 0; i < 3 && p < end; i++) {
5080 /* copy up to 32 characters from this line */
5081 while (*p != '\n' && j < 32)
5082 SSID_rid.ssids[i].ssid[j++] = *p++;
5085 SSID_rid.ssids[i].len = cpu_to_le16(j);
5086 /* skip to the beginning of the next line */
5087 while (*p++ != '\n')
5091 SSID_rid.len = cpu_to_le16(sizeof(SSID_rid));
5093 writeSsidRid(ai, &SSID_rid, 1);
5097 static inline u8 hexVal(char c) {
5098 if (c>='0' && c<='9') return c -= '0';
5099 if (c>='a' && c<='f') return c -= 'a'-10;
5100 if (c>='A' && c<='F') return c -= 'A'-10;
5104 static void proc_APList_on_close( struct inode *inode, struct file *file ) {
5105 struct proc_data *data = (struct proc_data *)file->private_data;
5106 struct proc_dir_entry *dp = PDE(inode);
5107 struct net_device *dev = dp->data;
5108 struct airo_info *ai = dev->priv;
5109 APListRid APList_rid;
5112 if ( !data->writelen ) return;
5114 memset( &APList_rid, 0, sizeof(APList_rid) );
5115 APList_rid.len = cpu_to_le16(sizeof(APList_rid));
5117 for( i = 0; i < 4 && data->writelen >= (i+1)*6*3; i++ ) {
5119 for( j = 0; j < 6*3 && data->wbuffer[j+i*6*3]; j++ ) {
5122 APList_rid.ap[i][j/3]=
5123 hexVal(data->wbuffer[j+i*6*3])<<4;
5126 APList_rid.ap[i][j/3]|=
5127 hexVal(data->wbuffer[j+i*6*3]);
5133 writeAPListRid(ai, &APList_rid, 1);
5137 /* This function wraps PC4500_writerid with a MAC disable */
5138 static int do_writerid( struct airo_info *ai, u16 rid, const void *rid_data,
5139 int len, int dummy ) {
5143 rc = PC4500_writerid(ai, rid, rid_data, len, 1);
5148 /* Returns the length of the key at the index. If index == 0xffff
5149 * the index of the transmit key is returned. If the key doesn't exist,
5150 * -1 will be returned.
5152 static int get_wep_key(struct airo_info *ai, u16 index) {
5157 rc = readWepKeyRid(ai, &wkr, 1, 1);
5158 if (rc == SUCCESS) do {
5159 lastindex = wkr.kindex;
5160 if (wkr.kindex == cpu_to_le16(index)) {
5161 if (index == 0xffff) {
5164 return le16_to_cpu(wkr.klen);
5166 readWepKeyRid(ai, &wkr, 0, 1);
5167 } while (lastindex != wkr.kindex);
5171 static int set_wep_key(struct airo_info *ai, u16 index,
5172 const char *key, u16 keylen, int perm, int lock )
5174 static const unsigned char macaddr[ETH_ALEN] = { 0x01, 0, 0, 0, 0, 0 };
5177 memset(&wkr, 0, sizeof(wkr));
5179 // We are selecting which key to use
5180 wkr.len = cpu_to_le16(sizeof(wkr));
5181 wkr.kindex = cpu_to_le16(0xffff);
5182 wkr.mac[0] = (char)index;
5183 if (perm) ai->defindex = (char)index;
5185 // We are actually setting the key
5186 wkr.len = cpu_to_le16(sizeof(wkr));
5187 wkr.kindex = cpu_to_le16(index);
5188 wkr.klen = cpu_to_le16(keylen);
5189 memcpy( wkr.key, key, keylen );
5190 memcpy( wkr.mac, macaddr, ETH_ALEN );
5193 if (perm) disable_MAC(ai, lock);
5194 writeWepKeyRid(ai, &wkr, perm, lock);
5195 if (perm) enable_MAC(ai, lock);
5199 static void proc_wepkey_on_close( struct inode *inode, struct file *file ) {
5200 struct proc_data *data;
5201 struct proc_dir_entry *dp = PDE(inode);
5202 struct net_device *dev = dp->data;
5203 struct airo_info *ai = dev->priv;
5209 memset(key, 0, sizeof(key));
5211 data = (struct proc_data *)file->private_data;
5212 if ( !data->writelen ) return;
5214 if (data->wbuffer[0] >= '0' && data->wbuffer[0] <= '3' &&
5215 (data->wbuffer[1] == ' ' || data->wbuffer[1] == '\n')) {
5216 index = data->wbuffer[0] - '0';
5217 if (data->wbuffer[1] == '\n') {
5218 set_wep_key(ai, index, NULL, 0, 1, 1);
5223 airo_print_err(ai->dev->name, "WepKey passed invalid key index");
5227 for( i = 0; i < 16*3 && data->wbuffer[i+j]; i++ ) {
5230 key[i/3] = hexVal(data->wbuffer[i+j])<<4;
5233 key[i/3] |= hexVal(data->wbuffer[i+j]);
5237 set_wep_key(ai, index, key, i/3, 1, 1);
5240 static int proc_wepkey_open( struct inode *inode, struct file *file )
5242 struct proc_data *data;
5243 struct proc_dir_entry *dp = PDE(inode);
5244 struct net_device *dev = dp->data;
5245 struct airo_info *ai = dev->priv;
5252 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5254 memset(&wkr, 0, sizeof(wkr));
5255 data = (struct proc_data *)file->private_data;
5256 if ((data->rbuffer = kzalloc( 180, GFP_KERNEL )) == NULL) {
5257 kfree (file->private_data);
5261 data->maxwritelen = 80;
5262 if ((data->wbuffer = kzalloc( 80, GFP_KERNEL )) == NULL) {
5263 kfree (data->rbuffer);
5264 kfree (file->private_data);
5267 data->on_close = proc_wepkey_on_close;
5269 ptr = data->rbuffer;
5270 strcpy(ptr, "No wep keys\n");
5271 rc = readWepKeyRid(ai, &wkr, 1, 1);
5272 if (rc == SUCCESS) do {
5273 lastindex = wkr.kindex;
5274 if (wkr.kindex == cpu_to_le16(0xffff)) {
5275 j += sprintf(ptr+j, "Tx key = %d\n",
5278 j += sprintf(ptr+j, "Key %d set with length = %d\n",
5279 le16_to_cpu(wkr.kindex),
5280 le16_to_cpu(wkr.klen));
5282 readWepKeyRid(ai, &wkr, 0, 1);
5283 } while((lastindex != wkr.kindex) && (j < 180-30));
5285 data->readlen = strlen( data->rbuffer );
5289 static int proc_SSID_open(struct inode *inode, struct file *file)
5291 struct proc_data *data;
5292 struct proc_dir_entry *dp = PDE(inode);
5293 struct net_device *dev = dp->data;
5294 struct airo_info *ai = dev->priv;
5299 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5301 data = (struct proc_data *)file->private_data;
5302 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5303 kfree (file->private_data);
5307 data->maxwritelen = 33*3;
5308 /* allocate maxwritelen + 1; we'll want a sentinel */
5309 if ((data->wbuffer = kzalloc(33*3 + 1, GFP_KERNEL)) == NULL) {
5310 kfree (data->rbuffer);
5311 kfree (file->private_data);
5314 data->on_close = proc_SSID_on_close;
5316 readSsidRid(ai, &SSID_rid);
5317 ptr = data->rbuffer;
5318 for (i = 0; i < 3; i++) {
5320 size_t len = le16_to_cpu(SSID_rid.ssids[i].len);
5325 for (j = 0; j < len && SSID_rid.ssids[i].ssid[j]; j++)
5326 *ptr++ = SSID_rid.ssids[i].ssid[j];
5330 data->readlen = strlen( data->rbuffer );
5334 static int proc_APList_open( struct inode *inode, struct file *file ) {
5335 struct proc_data *data;
5336 struct proc_dir_entry *dp = PDE(inode);
5337 struct net_device *dev = dp->data;
5338 struct airo_info *ai = dev->priv;
5341 APListRid APList_rid;
5342 DECLARE_MAC_BUF(mac);
5344 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5346 data = (struct proc_data *)file->private_data;
5347 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5348 kfree (file->private_data);
5352 data->maxwritelen = 4*6*3;
5353 if ((data->wbuffer = kzalloc( data->maxwritelen, GFP_KERNEL )) == NULL) {
5354 kfree (data->rbuffer);
5355 kfree (file->private_data);
5358 data->on_close = proc_APList_on_close;
5360 readAPListRid(ai, &APList_rid);
5361 ptr = data->rbuffer;
5362 for( i = 0; i < 4; i++ ) {
5363 // We end when we find a zero MAC
5364 if ( !*(int*)APList_rid.ap[i] &&
5365 !*(int*)&APList_rid.ap[i][2]) break;
5366 ptr += sprintf(ptr, "%s\n",
5367 print_mac(mac, APList_rid.ap[i]));
5369 if (i==0) ptr += sprintf(ptr, "Not using specific APs\n");
5372 data->readlen = strlen( data->rbuffer );
5376 static int proc_BSSList_open( struct inode *inode, struct file *file ) {
5377 struct proc_data *data;
5378 struct proc_dir_entry *dp = PDE(inode);
5379 struct net_device *dev = dp->data;
5380 struct airo_info *ai = dev->priv;
5382 BSSListRid BSSList_rid;
5384 /* If doLoseSync is not 1, we won't do a Lose Sync */
5385 int doLoseSync = -1;
5386 DECLARE_MAC_BUF(mac);
5388 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5390 data = (struct proc_data *)file->private_data;
5391 if ((data->rbuffer = kmalloc( 1024, GFP_KERNEL )) == NULL) {
5392 kfree (file->private_data);
5396 data->maxwritelen = 0;
5397 data->wbuffer = NULL;
5398 data->on_close = NULL;
5400 if (file->f_mode & FMODE_WRITE) {
5401 if (!(file->f_mode & FMODE_READ)) {
5405 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
5406 memset(&cmd, 0, sizeof(cmd));
5407 cmd.cmd=CMD_LISTBSS;
5408 if (down_interruptible(&ai->sem))
5409 return -ERESTARTSYS;
5410 issuecommand(ai, &cmd, &rsp);
5417 ptr = data->rbuffer;
5418 /* There is a race condition here if there are concurrent opens.
5419 Since it is a rare condition, we'll just live with it, otherwise
5420 we have to add a spin lock... */
5421 rc = readBSSListRid(ai, doLoseSync, &BSSList_rid);
5422 while(rc == 0 && BSSList_rid.index != cpu_to_le16(0xffff)) {
5423 ptr += sprintf(ptr, "%s %*s rssi = %d",
5424 print_mac(mac, BSSList_rid.bssid),
5425 (int)BSSList_rid.ssidLen,
5427 le16_to_cpu(BSSList_rid.dBm));
5428 ptr += sprintf(ptr, " channel = %d %s %s %s %s\n",
5429 le16_to_cpu(BSSList_rid.dsChannel),
5430 BSSList_rid.cap & CAP_ESS ? "ESS" : "",
5431 BSSList_rid.cap & CAP_IBSS ? "adhoc" : "",
5432 BSSList_rid.cap & CAP_PRIVACY ? "wep" : "",
5433 BSSList_rid.cap & CAP_SHORTHDR ? "shorthdr" : "");
5434 rc = readBSSListRid(ai, 0, &BSSList_rid);
5437 data->readlen = strlen( data->rbuffer );
5441 static int proc_close( struct inode *inode, struct file *file )
5443 struct proc_data *data = file->private_data;
5445 if (data->on_close != NULL)
5446 data->on_close(inode, file);
5447 kfree(data->rbuffer);
5448 kfree(data->wbuffer);
5453 /* Since the card doesn't automatically switch to the right WEP mode,
5454 we will make it do it. If the card isn't associated, every secs we
5455 will switch WEP modes to see if that will help. If the card is
5456 associated we will check every minute to see if anything has
5458 static void timer_func( struct net_device *dev ) {
5459 struct airo_info *apriv = dev->priv;
5461 /* We don't have a link so try changing the authtype */
5462 readConfigRid(apriv, 0);
5463 disable_MAC(apriv, 0);
5464 switch(apriv->config.authType) {
5466 /* So drop to OPEN */
5467 apriv->config.authType = AUTH_OPEN;
5469 case AUTH_SHAREDKEY:
5470 if (apriv->keyindex < auto_wep) {
5471 set_wep_key(apriv, apriv->keyindex, NULL, 0, 0, 0);
5472 apriv->config.authType = AUTH_SHAREDKEY;
5475 /* Drop to ENCRYPT */
5476 apriv->keyindex = 0;
5477 set_wep_key(apriv, apriv->defindex, NULL, 0, 0, 0);
5478 apriv->config.authType = AUTH_ENCRYPT;
5481 default: /* We'll escalate to SHAREDKEY */
5482 apriv->config.authType = AUTH_SHAREDKEY;
5484 set_bit (FLAG_COMMIT, &apriv->flags);
5485 writeConfigRid(apriv, 0);
5486 enable_MAC(apriv, 0);
5489 /* Schedule check to see if the change worked */
5490 clear_bit(JOB_AUTOWEP, &apriv->jobs);
5491 apriv->expires = RUN_AT(HZ*3);
5495 static int __devinit airo_pci_probe(struct pci_dev *pdev,
5496 const struct pci_device_id *pent)
5498 struct net_device *dev;
5500 if (pci_enable_device(pdev))
5502 pci_set_master(pdev);
5504 if (pdev->device == 0x5000 || pdev->device == 0xa504)
5505 dev = _init_airo_card(pdev->irq, pdev->resource[0].start, 0, pdev, &pdev->dev);
5507 dev = _init_airo_card(pdev->irq, pdev->resource[2].start, 0, pdev, &pdev->dev);
5509 pci_disable_device(pdev);
5513 pci_set_drvdata(pdev, dev);
5517 static void __devexit airo_pci_remove(struct pci_dev *pdev)
5519 struct net_device *dev = pci_get_drvdata(pdev);
5521 airo_print_info(dev->name, "Unregistering...");
5522 stop_airo_card(dev, 1);
5523 pci_disable_device(pdev);
5524 pci_set_drvdata(pdev, NULL);
5527 static int airo_pci_suspend(struct pci_dev *pdev, pm_message_t state)
5529 struct net_device *dev = pci_get_drvdata(pdev);
5530 struct airo_info *ai = dev->priv;
5534 if ((ai->APList == NULL) &&
5535 (ai->APList = kmalloc(sizeof(APListRid), GFP_KERNEL)) == NULL)
5537 if ((ai->SSID == NULL) &&
5538 (ai->SSID = kmalloc(sizeof(SsidRid), GFP_KERNEL)) == NULL)
5540 readAPListRid(ai, ai->APList);
5541 readSsidRid(ai, ai->SSID);
5542 memset(&cmd, 0, sizeof(cmd));
5543 /* the lock will be released at the end of the resume callback */
5544 if (down_interruptible(&ai->sem))
5547 netif_device_detach(dev);
5550 issuecommand(ai, &cmd, &rsp);
5552 pci_enable_wake(pdev, pci_choose_state(pdev, state), 1);
5553 pci_save_state(pdev);
5554 return pci_set_power_state(pdev, pci_choose_state(pdev, state));
5557 static int airo_pci_resume(struct pci_dev *pdev)
5559 struct net_device *dev = pci_get_drvdata(pdev);
5560 struct airo_info *ai = dev->priv;
5561 pci_power_t prev_state = pdev->current_state;
5563 pci_set_power_state(pdev, PCI_D0);
5564 pci_restore_state(pdev);
5565 pci_enable_wake(pdev, PCI_D0, 0);
5567 if (prev_state != PCI_D1) {
5569 mpi_init_descriptors(ai);
5570 setup_card(ai, dev->dev_addr, 0);
5571 clear_bit(FLAG_RADIO_OFF, &ai->flags);
5572 clear_bit(FLAG_PENDING_XMIT, &ai->flags);
5574 OUT4500(ai, EVACK, EV_AWAKEN);
5575 OUT4500(ai, EVACK, EV_AWAKEN);
5579 set_bit (FLAG_COMMIT, &ai->flags);
5583 writeSsidRid(ai, ai->SSID, 0);
5588 writeAPListRid(ai, ai->APList, 0);
5592 writeConfigRid(ai, 0);
5594 ai->power = PMSG_ON;
5595 netif_device_attach(dev);
5596 netif_wake_queue(dev);
5597 enable_interrupts(ai);
5603 static int __init airo_init_module( void )
5607 int have_isa_dev = 0;
5610 airo_entry = create_proc_entry("driver/aironet",
5611 S_IFDIR | airo_perm,
5615 airo_entry->uid = proc_uid;
5616 airo_entry->gid = proc_gid;
5619 for( i = 0; i < 4 && io[i] && irq[i]; i++ ) {
5620 airo_print_info("", "Trying to configure ISA adapter at irq=%d "
5621 "io=0x%x", irq[i], io[i] );
5622 if (init_airo_card( irq[i], io[i], 0, NULL ))
5631 airo_print_info("", "Probing for PCI adapters");
5632 i = pci_register_driver(&airo_driver);
5633 airo_print_info("", "Finished probing for PCI adapters");
5636 remove_proc_entry("driver/aironet", NULL);
5641 /* Always exit with success, as we are a library module
5642 * as well as a driver module
5647 static void __exit airo_cleanup_module( void )
5649 struct airo_info *ai;
5650 while(!list_empty(&airo_devices)) {
5651 ai = list_entry(airo_devices.next, struct airo_info, dev_list);
5652 airo_print_info(ai->dev->name, "Unregistering...");
5653 stop_airo_card(ai->dev, 1);
5656 pci_unregister_driver(&airo_driver);
5658 remove_proc_entry("driver/aironet", NULL);
5662 * Initial Wireless Extension code for Aironet driver by :
5663 * Jean Tourrilhes <jt@hpl.hp.com> - HPL - 17 November 00
5664 * Conversion to new driver API by :
5665 * Jean Tourrilhes <jt@hpl.hp.com> - HPL - 26 March 02
5666 * Javier also did a good amount of work here, adding some new extensions
5667 * and fixing my code. Let's just say that without him this code just
5668 * would not work at all... - Jean II
5671 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi)
5676 return (0x100 - rssi_rid[rssi].rssidBm);
5679 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm)
5686 for( i = 0; i < 256; i++ )
5687 if (rssi_rid[i].rssidBm == dbm)
5688 return rssi_rid[i].rssipct;
5694 static int airo_get_quality (StatusRid *status_rid, CapabilityRid *cap_rid)
5699 if ((status_rid->mode & cpu_to_le16(0x3f)) != cpu_to_le16(0x3f))
5702 if (!(cap_rid->hardCap & cpu_to_le16(8)))
5705 sq = le16_to_cpu(status_rid->signalQuality);
5706 if (memcmp(cap_rid->prodName, "350", 3))
5710 quality = 0x20 - sq;
5717 quality = 0xb0 - sq;
5721 #define airo_get_max_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x20 : 0xa0)
5722 #define airo_get_avg_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x10 : 0x50);
5724 /*------------------------------------------------------------------*/
5726 * Wireless Handler : get protocol name
5728 static int airo_get_name(struct net_device *dev,
5729 struct iw_request_info *info,
5733 strcpy(cwrq, "IEEE 802.11-DS");
5737 /*------------------------------------------------------------------*/
5739 * Wireless Handler : set frequency
5741 static int airo_set_freq(struct net_device *dev,
5742 struct iw_request_info *info,
5743 struct iw_freq *fwrq,
5746 struct airo_info *local = dev->priv;
5747 int rc = -EINPROGRESS; /* Call commit handler */
5749 /* If setting by frequency, convert to a channel */
5750 if((fwrq->e == 1) &&
5751 (fwrq->m >= (int) 2.412e8) &&
5752 (fwrq->m <= (int) 2.487e8)) {
5753 int f = fwrq->m / 100000;
5755 while((c < 14) && (f != frequency_list[c]))
5757 /* Hack to fall through... */
5761 /* Setting by channel number */
5762 if((fwrq->m > 1000) || (fwrq->e > 0))
5765 int channel = fwrq->m;
5766 /* We should do a better check than that,
5767 * based on the card capability !!! */
5768 if((channel < 1) || (channel > 14)) {
5769 airo_print_dbg(dev->name, "New channel value of %d is invalid!",
5773 readConfigRid(local, 1);
5774 /* Yes ! We can set it !!! */
5775 local->config.channelSet = cpu_to_le16(channel);
5776 set_bit (FLAG_COMMIT, &local->flags);
5782 /*------------------------------------------------------------------*/
5784 * Wireless Handler : get frequency
5786 static int airo_get_freq(struct net_device *dev,
5787 struct iw_request_info *info,
5788 struct iw_freq *fwrq,
5791 struct airo_info *local = dev->priv;
5792 StatusRid status_rid; /* Card status info */
5795 readConfigRid(local, 1);
5796 if ((local->config.opmode & MODE_CFG_MASK) == MODE_STA_ESS)
5797 status_rid.channel = local->config.channelSet;
5799 readStatusRid(local, &status_rid, 1);
5801 ch = le16_to_cpu(status_rid.channel);
5802 if((ch > 0) && (ch < 15)) {
5803 fwrq->m = frequency_list[ch - 1] * 100000;
5813 /*------------------------------------------------------------------*/
5815 * Wireless Handler : set ESSID
5817 static int airo_set_essid(struct net_device *dev,
5818 struct iw_request_info *info,
5819 struct iw_point *dwrq,
5822 struct airo_info *local = dev->priv;
5823 SsidRid SSID_rid; /* SSIDs */
5825 /* Reload the list of current SSID */
5826 readSsidRid(local, &SSID_rid);
5828 /* Check if we asked for `any' */
5829 if(dwrq->flags == 0) {
5830 /* Just send an empty SSID list */
5831 memset(&SSID_rid, 0, sizeof(SSID_rid));
5833 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
5835 /* Check the size of the string */
5836 if(dwrq->length > IW_ESSID_MAX_SIZE) {
5839 /* Check if index is valid */
5840 if((index < 0) || (index >= 4)) {
5845 memset(SSID_rid.ssids[index].ssid, 0,
5846 sizeof(SSID_rid.ssids[index].ssid));
5847 memcpy(SSID_rid.ssids[index].ssid, extra, dwrq->length);
5848 SSID_rid.ssids[index].len = cpu_to_le16(dwrq->length);
5850 SSID_rid.len = cpu_to_le16(sizeof(SSID_rid));
5851 /* Write it to the card */
5852 disable_MAC(local, 1);
5853 writeSsidRid(local, &SSID_rid, 1);
5854 enable_MAC(local, 1);
5859 /*------------------------------------------------------------------*/
5861 * Wireless Handler : get ESSID
5863 static int airo_get_essid(struct net_device *dev,
5864 struct iw_request_info *info,
5865 struct iw_point *dwrq,
5868 struct airo_info *local = dev->priv;
5869 StatusRid status_rid; /* Card status info */
5871 readStatusRid(local, &status_rid, 1);
5873 /* Note : if dwrq->flags != 0, we should
5874 * get the relevant SSID from the SSID list... */
5876 /* Get the current SSID */
5877 memcpy(extra, status_rid.SSID, le16_to_cpu(status_rid.SSIDlen));
5878 /* If none, we may want to get the one that was set */
5881 dwrq->length = le16_to_cpu(status_rid.SSIDlen);
5882 dwrq->flags = 1; /* active */
5887 /*------------------------------------------------------------------*/
5889 * Wireless Handler : set AP address
5891 static int airo_set_wap(struct net_device *dev,
5892 struct iw_request_info *info,
5893 struct sockaddr *awrq,
5896 struct airo_info *local = dev->priv;
5899 APListRid APList_rid;
5900 static const u8 any[ETH_ALEN] = { 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF };
5901 static const u8 off[ETH_ALEN] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
5903 if (awrq->sa_family != ARPHRD_ETHER)
5905 else if (!memcmp(any, awrq->sa_data, ETH_ALEN) ||
5906 !memcmp(off, awrq->sa_data, ETH_ALEN)) {
5907 memset(&cmd, 0, sizeof(cmd));
5908 cmd.cmd=CMD_LOSE_SYNC;
5909 if (down_interruptible(&local->sem))
5910 return -ERESTARTSYS;
5911 issuecommand(local, &cmd, &rsp);
5914 memset(&APList_rid, 0, sizeof(APList_rid));
5915 APList_rid.len = cpu_to_le16(sizeof(APList_rid));
5916 memcpy(APList_rid.ap[0], awrq->sa_data, ETH_ALEN);
5917 disable_MAC(local, 1);
5918 writeAPListRid(local, &APList_rid, 1);
5919 enable_MAC(local, 1);
5924 /*------------------------------------------------------------------*/
5926 * Wireless Handler : get AP address
5928 static int airo_get_wap(struct net_device *dev,
5929 struct iw_request_info *info,
5930 struct sockaddr *awrq,
5933 struct airo_info *local = dev->priv;
5934 StatusRid status_rid; /* Card status info */
5936 readStatusRid(local, &status_rid, 1);
5938 /* Tentative. This seems to work, wow, I'm lucky !!! */
5939 memcpy(awrq->sa_data, status_rid.bssid[0], ETH_ALEN);
5940 awrq->sa_family = ARPHRD_ETHER;
5945 /*------------------------------------------------------------------*/
5947 * Wireless Handler : set Nickname
5949 static int airo_set_nick(struct net_device *dev,
5950 struct iw_request_info *info,
5951 struct iw_point *dwrq,
5954 struct airo_info *local = dev->priv;
5956 /* Check the size of the string */
5957 if(dwrq->length > 16) {
5960 readConfigRid(local, 1);
5961 memset(local->config.nodeName, 0, sizeof(local->config.nodeName));
5962 memcpy(local->config.nodeName, extra, dwrq->length);
5963 set_bit (FLAG_COMMIT, &local->flags);
5965 return -EINPROGRESS; /* Call commit handler */
5968 /*------------------------------------------------------------------*/
5970 * Wireless Handler : get Nickname
5972 static int airo_get_nick(struct net_device *dev,
5973 struct iw_request_info *info,
5974 struct iw_point *dwrq,
5977 struct airo_info *local = dev->priv;
5979 readConfigRid(local, 1);
5980 strncpy(extra, local->config.nodeName, 16);
5982 dwrq->length = strlen(extra);
5987 /*------------------------------------------------------------------*/
5989 * Wireless Handler : set Bit-Rate
5991 static int airo_set_rate(struct net_device *dev,
5992 struct iw_request_info *info,
5993 struct iw_param *vwrq,
5996 struct airo_info *local = dev->priv;
5997 CapabilityRid cap_rid; /* Card capability info */
6001 /* First : get a valid bit rate value */
6002 readCapabilityRid(local, &cap_rid, 1);
6004 /* Which type of value ? */
6005 if((vwrq->value < 8) && (vwrq->value >= 0)) {
6006 /* Setting by rate index */
6007 /* Find value in the magic rate table */
6008 brate = cap_rid.supportedRates[vwrq->value];
6010 /* Setting by frequency value */
6011 u8 normvalue = (u8) (vwrq->value/500000);
6013 /* Check if rate is valid */
6014 for(i = 0 ; i < 8 ; i++) {
6015 if(normvalue == cap_rid.supportedRates[i]) {
6021 /* -1 designed the max rate (mostly auto mode) */
6022 if(vwrq->value == -1) {
6023 /* Get the highest available rate */
6024 for(i = 0 ; i < 8 ; i++) {
6025 if(cap_rid.supportedRates[i] == 0)
6029 brate = cap_rid.supportedRates[i - 1];
6031 /* Check that it is valid */
6036 readConfigRid(local, 1);
6037 /* Now, check if we want a fixed or auto value */
6038 if(vwrq->fixed == 0) {
6039 /* Fill all the rates up to this max rate */
6040 memset(local->config.rates, 0, 8);
6041 for(i = 0 ; i < 8 ; i++) {
6042 local->config.rates[i] = cap_rid.supportedRates[i];
6043 if(local->config.rates[i] == brate)
6048 /* One rate, fixed */
6049 memset(local->config.rates, 0, 8);
6050 local->config.rates[0] = brate;
6052 set_bit (FLAG_COMMIT, &local->flags);
6054 return -EINPROGRESS; /* Call commit handler */
6057 /*------------------------------------------------------------------*/
6059 * Wireless Handler : get Bit-Rate
6061 static int airo_get_rate(struct net_device *dev,
6062 struct iw_request_info *info,
6063 struct iw_param *vwrq,
6066 struct airo_info *local = dev->priv;
6067 StatusRid status_rid; /* Card status info */
6069 readStatusRid(local, &status_rid, 1);
6071 vwrq->value = le16_to_cpu(status_rid.currentXmitRate) * 500000;
6072 /* If more than one rate, set auto */
6073 readConfigRid(local, 1);
6074 vwrq->fixed = (local->config.rates[1] == 0);
6079 /*------------------------------------------------------------------*/
6081 * Wireless Handler : set RTS threshold
6083 static int airo_set_rts(struct net_device *dev,
6084 struct iw_request_info *info,
6085 struct iw_param *vwrq,
6088 struct airo_info *local = dev->priv;
6089 int rthr = vwrq->value;
6092 rthr = AIRO_DEF_MTU;
6093 if((rthr < 0) || (rthr > AIRO_DEF_MTU)) {
6096 readConfigRid(local, 1);
6097 local->config.rtsThres = cpu_to_le16(rthr);
6098 set_bit (FLAG_COMMIT, &local->flags);
6100 return -EINPROGRESS; /* Call commit handler */
6103 /*------------------------------------------------------------------*/
6105 * Wireless Handler : get RTS threshold
6107 static int airo_get_rts(struct net_device *dev,
6108 struct iw_request_info *info,
6109 struct iw_param *vwrq,
6112 struct airo_info *local = dev->priv;
6114 readConfigRid(local, 1);
6115 vwrq->value = le16_to_cpu(local->config.rtsThres);
6116 vwrq->disabled = (vwrq->value >= AIRO_DEF_MTU);
6122 /*------------------------------------------------------------------*/
6124 * Wireless Handler : set Fragmentation threshold
6126 static int airo_set_frag(struct net_device *dev,
6127 struct iw_request_info *info,
6128 struct iw_param *vwrq,
6131 struct airo_info *local = dev->priv;
6132 int fthr = vwrq->value;
6135 fthr = AIRO_DEF_MTU;
6136 if((fthr < 256) || (fthr > AIRO_DEF_MTU)) {
6139 fthr &= ~0x1; /* Get an even value - is it really needed ??? */
6140 readConfigRid(local, 1);
6141 local->config.fragThresh = cpu_to_le16(fthr);
6142 set_bit (FLAG_COMMIT, &local->flags);
6144 return -EINPROGRESS; /* Call commit handler */
6147 /*------------------------------------------------------------------*/
6149 * Wireless Handler : get Fragmentation threshold
6151 static int airo_get_frag(struct net_device *dev,
6152 struct iw_request_info *info,
6153 struct iw_param *vwrq,
6156 struct airo_info *local = dev->priv;
6158 readConfigRid(local, 1);
6159 vwrq->value = le16_to_cpu(local->config.fragThresh);
6160 vwrq->disabled = (vwrq->value >= AIRO_DEF_MTU);
6166 /*------------------------------------------------------------------*/
6168 * Wireless Handler : set Mode of Operation
6170 static int airo_set_mode(struct net_device *dev,
6171 struct iw_request_info *info,
6175 struct airo_info *local = dev->priv;
6178 readConfigRid(local, 1);
6179 if (sniffing_mode(local))
6184 local->config.opmode &= ~MODE_CFG_MASK;
6185 local->config.opmode |= MODE_STA_IBSS;
6186 local->config.rmode &= ~RXMODE_FULL_MASK;
6187 local->config.scanMode = SCANMODE_ACTIVE;
6188 clear_bit (FLAG_802_11, &local->flags);
6191 local->config.opmode &= ~MODE_CFG_MASK;
6192 local->config.opmode |= MODE_STA_ESS;
6193 local->config.rmode &= ~RXMODE_FULL_MASK;
6194 local->config.scanMode = SCANMODE_ACTIVE;
6195 clear_bit (FLAG_802_11, &local->flags);
6197 case IW_MODE_MASTER:
6198 local->config.opmode &= ~MODE_CFG_MASK;
6199 local->config.opmode |= MODE_AP;
6200 local->config.rmode &= ~RXMODE_FULL_MASK;
6201 local->config.scanMode = SCANMODE_ACTIVE;
6202 clear_bit (FLAG_802_11, &local->flags);
6204 case IW_MODE_REPEAT:
6205 local->config.opmode &= ~MODE_CFG_MASK;
6206 local->config.opmode |= MODE_AP_RPTR;
6207 local->config.rmode &= ~RXMODE_FULL_MASK;
6208 local->config.scanMode = SCANMODE_ACTIVE;
6209 clear_bit (FLAG_802_11, &local->flags);
6211 case IW_MODE_MONITOR:
6212 local->config.opmode &= ~MODE_CFG_MASK;
6213 local->config.opmode |= MODE_STA_ESS;
6214 local->config.rmode &= ~RXMODE_FULL_MASK;
6215 local->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
6216 local->config.scanMode = SCANMODE_PASSIVE;
6217 set_bit (FLAG_802_11, &local->flags);
6223 set_bit (FLAG_RESET, &local->flags);
6224 set_bit (FLAG_COMMIT, &local->flags);
6226 return -EINPROGRESS; /* Call commit handler */
6229 /*------------------------------------------------------------------*/
6231 * Wireless Handler : get Mode of Operation
6233 static int airo_get_mode(struct net_device *dev,
6234 struct iw_request_info *info,
6238 struct airo_info *local = dev->priv;
6240 readConfigRid(local, 1);
6241 /* If not managed, assume it's ad-hoc */
6242 switch (local->config.opmode & MODE_CFG_MASK) {
6244 *uwrq = IW_MODE_INFRA;
6247 *uwrq = IW_MODE_MASTER;
6250 *uwrq = IW_MODE_REPEAT;
6253 *uwrq = IW_MODE_ADHOC;
6259 static inline int valid_index(CapabilityRid *p, int index)
6263 return index < (p->softCap & cpu_to_le16(0x80) ? 4 : 1);
6266 /*------------------------------------------------------------------*/
6268 * Wireless Handler : set Encryption Key
6270 static int airo_set_encode(struct net_device *dev,
6271 struct iw_request_info *info,
6272 struct iw_point *dwrq,
6275 struct airo_info *local = dev->priv;
6276 CapabilityRid cap_rid; /* Card capability info */
6277 int perm = ( dwrq->flags & IW_ENCODE_TEMP ? 0 : 1 );
6278 __le16 currentAuthType = local->config.authType;
6280 /* Is WEP supported ? */
6281 readCapabilityRid(local, &cap_rid, 1);
6282 /* Older firmware doesn't support this...
6283 if(!(cap_rid.softCap & cpu_to_le16(2))) {
6286 readConfigRid(local, 1);
6288 /* Basic checking: do we have a key to set ?
6289 * Note : with the new API, it's impossible to get a NULL pointer.
6290 * Therefore, we need to check a key size == 0 instead.
6291 * New version of iwconfig properly set the IW_ENCODE_NOKEY flag
6292 * when no key is present (only change flags), but older versions
6293 * don't do it. - Jean II */
6294 if (dwrq->length > 0) {
6296 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6297 int current_index = get_wep_key(local, 0xffff);
6298 /* Check the size of the key */
6299 if (dwrq->length > MAX_KEY_SIZE) {
6302 /* Check the index (none -> use current) */
6303 if (!valid_index(&cap_rid, index))
6304 index = current_index;
6305 /* Set the length */
6306 if (dwrq->length > MIN_KEY_SIZE)
6307 key.len = MAX_KEY_SIZE;
6309 if (dwrq->length > 0)
6310 key.len = MIN_KEY_SIZE;
6312 /* Disable the key */
6314 /* Check if the key is not marked as invalid */
6315 if(!(dwrq->flags & IW_ENCODE_NOKEY)) {
6317 memset(key.key, 0, MAX_KEY_SIZE);
6318 /* Copy the key in the driver */
6319 memcpy(key.key, extra, dwrq->length);
6320 /* Send the key to the card */
6321 set_wep_key(local, index, key.key, key.len, perm, 1);
6323 /* WE specify that if a valid key is set, encryption
6324 * should be enabled (user may turn it off later)
6325 * This is also how "iwconfig ethX key on" works */
6326 if((index == current_index) && (key.len > 0) &&
6327 (local->config.authType == AUTH_OPEN)) {
6328 local->config.authType = AUTH_ENCRYPT;
6331 /* Do we want to just set the transmit key index ? */
6332 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6333 if (valid_index(&cap_rid, index)) {
6334 set_wep_key(local, index, NULL, 0, perm, 1);
6336 /* Don't complain if only change the mode */
6337 if (!(dwrq->flags & IW_ENCODE_MODE))
6340 /* Read the flags */
6341 if(dwrq->flags & IW_ENCODE_DISABLED)
6342 local->config.authType = AUTH_OPEN; // disable encryption
6343 if(dwrq->flags & IW_ENCODE_RESTRICTED)
6344 local->config.authType = AUTH_SHAREDKEY; // Only Both
6345 if(dwrq->flags & IW_ENCODE_OPEN)
6346 local->config.authType = AUTH_ENCRYPT; // Only Wep
6347 /* Commit the changes to flags if needed */
6348 if (local->config.authType != currentAuthType)
6349 set_bit (FLAG_COMMIT, &local->flags);
6350 return -EINPROGRESS; /* Call commit handler */
6353 /*------------------------------------------------------------------*/
6355 * Wireless Handler : get Encryption Key
6357 static int airo_get_encode(struct net_device *dev,
6358 struct iw_request_info *info,
6359 struct iw_point *dwrq,
6362 struct airo_info *local = dev->priv;
6363 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6364 CapabilityRid cap_rid; /* Card capability info */
6366 /* Is it supported ? */
6367 readCapabilityRid(local, &cap_rid, 1);
6368 if(!(cap_rid.softCap & cpu_to_le16(2))) {
6371 readConfigRid(local, 1);
6372 /* Check encryption mode */
6373 switch(local->config.authType) {
6375 dwrq->flags = IW_ENCODE_OPEN;
6377 case AUTH_SHAREDKEY:
6378 dwrq->flags = IW_ENCODE_RESTRICTED;
6382 dwrq->flags = IW_ENCODE_DISABLED;
6385 /* We can't return the key, so set the proper flag and return zero */
6386 dwrq->flags |= IW_ENCODE_NOKEY;
6387 memset(extra, 0, 16);
6389 /* Which key do we want ? -1 -> tx index */
6390 if (!valid_index(&cap_rid, index))
6391 index = get_wep_key(local, 0xffff);
6392 dwrq->flags |= index + 1;
6393 /* Copy the key to the user buffer */
6394 dwrq->length = get_wep_key(local, index);
6395 if (dwrq->length > 16) {
6401 /*------------------------------------------------------------------*/
6403 * Wireless Handler : set extended Encryption parameters
6405 static int airo_set_encodeext(struct net_device *dev,
6406 struct iw_request_info *info,
6407 union iwreq_data *wrqu,
6410 struct airo_info *local = dev->priv;
6411 struct iw_point *encoding = &wrqu->encoding;
6412 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6413 CapabilityRid cap_rid; /* Card capability info */
6414 int perm = ( encoding->flags & IW_ENCODE_TEMP ? 0 : 1 );
6415 __le16 currentAuthType = local->config.authType;
6416 int idx, key_len, alg = ext->alg, set_key = 1;
6419 /* Is WEP supported ? */
6420 readCapabilityRid(local, &cap_rid, 1);
6421 /* Older firmware doesn't support this...
6422 if(!(cap_rid.softCap & cpu_to_le16(2))) {
6425 readConfigRid(local, 1);
6427 /* Determine and validate the key index */
6428 idx = encoding->flags & IW_ENCODE_INDEX;
6430 if (!valid_index(&cap_rid, idx - 1))
6434 idx = get_wep_key(local, 0xffff);
6436 if (encoding->flags & IW_ENCODE_DISABLED)
6437 alg = IW_ENCODE_ALG_NONE;
6439 if (ext->ext_flags & IW_ENCODE_EXT_SET_TX_KEY) {
6440 /* Only set transmit key index here, actual
6441 * key is set below if needed.
6443 set_wep_key(local, idx, NULL, 0, perm, 1);
6444 set_key = ext->key_len > 0 ? 1 : 0;
6448 /* Set the requested key first */
6449 memset(key.key, 0, MAX_KEY_SIZE);
6451 case IW_ENCODE_ALG_NONE:
6454 case IW_ENCODE_ALG_WEP:
6455 if (ext->key_len > MIN_KEY_SIZE) {
6456 key.len = MAX_KEY_SIZE;
6457 } else if (ext->key_len > 0) {
6458 key.len = MIN_KEY_SIZE;
6462 key_len = min (ext->key_len, key.len);
6463 memcpy(key.key, ext->key, key_len);
6468 /* Send the key to the card */
6469 set_wep_key(local, idx, key.key, key.len, perm, 1);
6472 /* Read the flags */
6473 if(encoding->flags & IW_ENCODE_DISABLED)
6474 local->config.authType = AUTH_OPEN; // disable encryption
6475 if(encoding->flags & IW_ENCODE_RESTRICTED)
6476 local->config.authType = AUTH_SHAREDKEY; // Only Both
6477 if(encoding->flags & IW_ENCODE_OPEN)
6478 local->config.authType = AUTH_ENCRYPT; // Only Wep
6479 /* Commit the changes to flags if needed */
6480 if (local->config.authType != currentAuthType)
6481 set_bit (FLAG_COMMIT, &local->flags);
6483 return -EINPROGRESS;
6487 /*------------------------------------------------------------------*/
6489 * Wireless Handler : get extended Encryption parameters
6491 static int airo_get_encodeext(struct net_device *dev,
6492 struct iw_request_info *info,
6493 union iwreq_data *wrqu,
6496 struct airo_info *local = dev->priv;
6497 struct iw_point *encoding = &wrqu->encoding;
6498 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6499 CapabilityRid cap_rid; /* Card capability info */
6500 int idx, max_key_len;
6502 /* Is it supported ? */
6503 readCapabilityRid(local, &cap_rid, 1);
6504 if(!(cap_rid.softCap & cpu_to_le16(2))) {
6507 readConfigRid(local, 1);
6509 max_key_len = encoding->length - sizeof(*ext);
6510 if (max_key_len < 0)
6513 idx = encoding->flags & IW_ENCODE_INDEX;
6515 if (!valid_index(&cap_rid, idx - 1))
6519 idx = get_wep_key(local, 0xffff);
6521 encoding->flags = idx + 1;
6522 memset(ext, 0, sizeof(*ext));
6524 /* Check encryption mode */
6525 switch(local->config.authType) {
6527 encoding->flags = IW_ENCODE_ALG_WEP | IW_ENCODE_ENABLED;
6529 case AUTH_SHAREDKEY:
6530 encoding->flags = IW_ENCODE_ALG_WEP | IW_ENCODE_ENABLED;
6534 encoding->flags = IW_ENCODE_ALG_NONE | IW_ENCODE_DISABLED;
6537 /* We can't return the key, so set the proper flag and return zero */
6538 encoding->flags |= IW_ENCODE_NOKEY;
6539 memset(extra, 0, 16);
6541 /* Copy the key to the user buffer */
6542 ext->key_len = get_wep_key(local, idx);
6543 if (ext->key_len > 16) {
6551 /*------------------------------------------------------------------*/
6553 * Wireless Handler : set extended authentication parameters
6555 static int airo_set_auth(struct net_device *dev,
6556 struct iw_request_info *info,
6557 union iwreq_data *wrqu, char *extra)
6559 struct airo_info *local = dev->priv;
6560 struct iw_param *param = &wrqu->param;
6561 __le16 currentAuthType = local->config.authType;
6563 switch (param->flags & IW_AUTH_INDEX) {
6564 case IW_AUTH_WPA_VERSION:
6565 case IW_AUTH_CIPHER_PAIRWISE:
6566 case IW_AUTH_CIPHER_GROUP:
6567 case IW_AUTH_KEY_MGMT:
6568 case IW_AUTH_RX_UNENCRYPTED_EAPOL:
6569 case IW_AUTH_PRIVACY_INVOKED:
6571 * airo does not use these parameters
6575 case IW_AUTH_DROP_UNENCRYPTED:
6577 /* Only change auth type if unencrypted */
6578 if (currentAuthType == AUTH_OPEN)
6579 local->config.authType = AUTH_ENCRYPT;
6581 local->config.authType = AUTH_OPEN;
6584 /* Commit the changes to flags if needed */
6585 if (local->config.authType != currentAuthType)
6586 set_bit (FLAG_COMMIT, &local->flags);
6589 case IW_AUTH_80211_AUTH_ALG: {
6590 /* FIXME: What about AUTH_OPEN? This API seems to
6591 * disallow setting our auth to AUTH_OPEN.
6593 if (param->value & IW_AUTH_ALG_SHARED_KEY) {
6594 local->config.authType = AUTH_SHAREDKEY;
6595 } else if (param->value & IW_AUTH_ALG_OPEN_SYSTEM) {
6596 local->config.authType = AUTH_ENCRYPT;
6601 /* Commit the changes to flags if needed */
6602 if (local->config.authType != currentAuthType)
6603 set_bit (FLAG_COMMIT, &local->flags);
6606 case IW_AUTH_WPA_ENABLED:
6607 /* Silently accept disable of WPA */
6608 if (param->value > 0)
6615 return -EINPROGRESS;
6619 /*------------------------------------------------------------------*/
6621 * Wireless Handler : get extended authentication parameters
6623 static int airo_get_auth(struct net_device *dev,
6624 struct iw_request_info *info,
6625 union iwreq_data *wrqu, char *extra)
6627 struct airo_info *local = dev->priv;
6628 struct iw_param *param = &wrqu->param;
6629 __le16 currentAuthType = local->config.authType;
6631 switch (param->flags & IW_AUTH_INDEX) {
6632 case IW_AUTH_DROP_UNENCRYPTED:
6633 switch (currentAuthType) {
6634 case AUTH_SHAREDKEY:
6644 case IW_AUTH_80211_AUTH_ALG:
6645 switch (currentAuthType) {
6646 case AUTH_SHAREDKEY:
6647 param->value = IW_AUTH_ALG_SHARED_KEY;
6651 param->value = IW_AUTH_ALG_OPEN_SYSTEM;
6656 case IW_AUTH_WPA_ENABLED:
6667 /*------------------------------------------------------------------*/
6669 * Wireless Handler : set Tx-Power
6671 static int airo_set_txpow(struct net_device *dev,
6672 struct iw_request_info *info,
6673 struct iw_param *vwrq,
6676 struct airo_info *local = dev->priv;
6677 CapabilityRid cap_rid; /* Card capability info */
6680 __le16 v = cpu_to_le16(vwrq->value);
6682 readCapabilityRid(local, &cap_rid, 1);
6684 if (vwrq->disabled) {
6685 set_bit (FLAG_RADIO_OFF, &local->flags);
6686 set_bit (FLAG_COMMIT, &local->flags);
6687 return -EINPROGRESS; /* Call commit handler */
6689 if (vwrq->flags != IW_TXPOW_MWATT) {
6692 clear_bit (FLAG_RADIO_OFF, &local->flags);
6693 for (i = 0; cap_rid.txPowerLevels[i] && (i < 8); i++)
6694 if (v == cap_rid.txPowerLevels[i]) {
6695 readConfigRid(local, 1);
6696 local->config.txPower = v;
6697 set_bit (FLAG_COMMIT, &local->flags);
6698 rc = -EINPROGRESS; /* Call commit handler */
6704 /*------------------------------------------------------------------*/
6706 * Wireless Handler : get Tx-Power
6708 static int airo_get_txpow(struct net_device *dev,
6709 struct iw_request_info *info,
6710 struct iw_param *vwrq,
6713 struct airo_info *local = dev->priv;
6715 readConfigRid(local, 1);
6716 vwrq->value = le16_to_cpu(local->config.txPower);
6717 vwrq->fixed = 1; /* No power control */
6718 vwrq->disabled = test_bit(FLAG_RADIO_OFF, &local->flags);
6719 vwrq->flags = IW_TXPOW_MWATT;
6724 /*------------------------------------------------------------------*/
6726 * Wireless Handler : set Retry limits
6728 static int airo_set_retry(struct net_device *dev,
6729 struct iw_request_info *info,
6730 struct iw_param *vwrq,
6733 struct airo_info *local = dev->priv;
6736 if(vwrq->disabled) {
6739 readConfigRid(local, 1);
6740 if(vwrq->flags & IW_RETRY_LIMIT) {
6741 __le16 v = cpu_to_le16(vwrq->value);
6742 if(vwrq->flags & IW_RETRY_LONG)
6743 local->config.longRetryLimit = v;
6744 else if (vwrq->flags & IW_RETRY_SHORT)
6745 local->config.shortRetryLimit = v;
6747 /* No modifier : set both */
6748 local->config.longRetryLimit = v;
6749 local->config.shortRetryLimit = v;
6751 set_bit (FLAG_COMMIT, &local->flags);
6752 rc = -EINPROGRESS; /* Call commit handler */
6754 if(vwrq->flags & IW_RETRY_LIFETIME) {
6755 local->config.txLifetime = cpu_to_le16(vwrq->value / 1024);
6756 set_bit (FLAG_COMMIT, &local->flags);
6757 rc = -EINPROGRESS; /* Call commit handler */
6762 /*------------------------------------------------------------------*/
6764 * Wireless Handler : get Retry limits
6766 static int airo_get_retry(struct net_device *dev,
6767 struct iw_request_info *info,
6768 struct iw_param *vwrq,
6771 struct airo_info *local = dev->priv;
6773 vwrq->disabled = 0; /* Can't be disabled */
6775 readConfigRid(local, 1);
6776 /* Note : by default, display the min retry number */
6777 if((vwrq->flags & IW_RETRY_TYPE) == IW_RETRY_LIFETIME) {
6778 vwrq->flags = IW_RETRY_LIFETIME;
6779 vwrq->value = le16_to_cpu(local->config.txLifetime) * 1024;
6780 } else if((vwrq->flags & IW_RETRY_LONG)) {
6781 vwrq->flags = IW_RETRY_LIMIT | IW_RETRY_LONG;
6782 vwrq->value = le16_to_cpu(local->config.longRetryLimit);
6784 vwrq->flags = IW_RETRY_LIMIT;
6785 vwrq->value = le16_to_cpu(local->config.shortRetryLimit);
6786 if(local->config.shortRetryLimit != local->config.longRetryLimit)
6787 vwrq->flags |= IW_RETRY_SHORT;
6793 /*------------------------------------------------------------------*/
6795 * Wireless Handler : get range info
6797 static int airo_get_range(struct net_device *dev,
6798 struct iw_request_info *info,
6799 struct iw_point *dwrq,
6802 struct airo_info *local = dev->priv;
6803 struct iw_range *range = (struct iw_range *) extra;
6804 CapabilityRid cap_rid; /* Card capability info */
6808 readCapabilityRid(local, &cap_rid, 1);
6810 dwrq->length = sizeof(struct iw_range);
6811 memset(range, 0, sizeof(*range));
6812 range->min_nwid = 0x0000;
6813 range->max_nwid = 0x0000;
6814 range->num_channels = 14;
6815 /* Should be based on cap_rid.country to give only
6816 * what the current card support */
6818 for(i = 0; i < 14; i++) {
6819 range->freq[k].i = i + 1; /* List index */
6820 range->freq[k].m = frequency_list[i] * 100000;
6821 range->freq[k++].e = 1; /* Values in table in MHz -> * 10^5 * 10 */
6823 range->num_frequency = k;
6825 range->sensitivity = 65535;
6827 /* Hum... Should put the right values there */
6829 range->max_qual.qual = 100; /* % */
6831 range->max_qual.qual = airo_get_max_quality(&cap_rid);
6832 range->max_qual.level = 0x100 - 120; /* -120 dBm */
6833 range->max_qual.noise = 0x100 - 120; /* -120 dBm */
6835 /* Experimental measurements - boundary 11/5.5 Mb/s */
6836 /* Note : with or without the (local->rssi), results
6837 * are somewhat different. - Jean II */
6839 range->avg_qual.qual = 50; /* % */
6840 range->avg_qual.level = 0x100 - 70; /* -70 dBm */
6842 range->avg_qual.qual = airo_get_avg_quality(&cap_rid);
6843 range->avg_qual.level = 0x100 - 80; /* -80 dBm */
6845 range->avg_qual.noise = 0x100 - 85; /* -85 dBm */
6847 for(i = 0 ; i < 8 ; i++) {
6848 range->bitrate[i] = cap_rid.supportedRates[i] * 500000;
6849 if(range->bitrate[i] == 0)
6852 range->num_bitrates = i;
6854 /* Set an indication of the max TCP throughput
6855 * in bit/s that we can expect using this interface.
6856 * May be use for QoS stuff... Jean II */
6858 range->throughput = 5000 * 1000;
6860 range->throughput = 1500 * 1000;
6863 range->max_rts = AIRO_DEF_MTU;
6864 range->min_frag = 256;
6865 range->max_frag = AIRO_DEF_MTU;
6867 if(cap_rid.softCap & cpu_to_le16(2)) {
6869 range->encoding_size[0] = 5;
6871 if (cap_rid.softCap & cpu_to_le16(0x100)) {
6872 range->encoding_size[1] = 13;
6873 range->num_encoding_sizes = 2;
6875 range->num_encoding_sizes = 1;
6876 range->max_encoding_tokens =
6877 cap_rid.softCap & cpu_to_le16(0x80) ? 4 : 1;
6879 range->num_encoding_sizes = 0;
6880 range->max_encoding_tokens = 0;
6883 range->max_pmp = 5000000; /* 5 secs */
6885 range->max_pmt = 65535 * 1024; /* ??? */
6886 range->pmp_flags = IW_POWER_PERIOD;
6887 range->pmt_flags = IW_POWER_TIMEOUT;
6888 range->pm_capa = IW_POWER_PERIOD | IW_POWER_TIMEOUT | IW_POWER_ALL_R;
6890 /* Transmit Power - values are in mW */
6891 for(i = 0 ; i < 8 ; i++) {
6892 range->txpower[i] = le16_to_cpu(cap_rid.txPowerLevels[i]);
6893 if(range->txpower[i] == 0)
6896 range->num_txpower = i;
6897 range->txpower_capa = IW_TXPOW_MWATT;
6898 range->we_version_source = 19;
6899 range->we_version_compiled = WIRELESS_EXT;
6900 range->retry_capa = IW_RETRY_LIMIT | IW_RETRY_LIFETIME;
6901 range->retry_flags = IW_RETRY_LIMIT;
6902 range->r_time_flags = IW_RETRY_LIFETIME;
6903 range->min_retry = 1;
6904 range->max_retry = 65535;
6905 range->min_r_time = 1024;
6906 range->max_r_time = 65535 * 1024;
6908 /* Event capability (kernel + driver) */
6909 range->event_capa[0] = (IW_EVENT_CAPA_K_0 |
6910 IW_EVENT_CAPA_MASK(SIOCGIWTHRSPY) |
6911 IW_EVENT_CAPA_MASK(SIOCGIWAP) |
6912 IW_EVENT_CAPA_MASK(SIOCGIWSCAN));
6913 range->event_capa[1] = IW_EVENT_CAPA_K_1;
6914 range->event_capa[4] = IW_EVENT_CAPA_MASK(IWEVTXDROP);
6918 /*------------------------------------------------------------------*/
6920 * Wireless Handler : set Power Management
6922 static int airo_set_power(struct net_device *dev,
6923 struct iw_request_info *info,
6924 struct iw_param *vwrq,
6927 struct airo_info *local = dev->priv;
6929 readConfigRid(local, 1);
6930 if (vwrq->disabled) {
6931 if (sniffing_mode(local))
6933 local->config.powerSaveMode = POWERSAVE_CAM;
6934 local->config.rmode &= ~RXMODE_MASK;
6935 local->config.rmode |= RXMODE_BC_MC_ADDR;
6936 set_bit (FLAG_COMMIT, &local->flags);
6937 return -EINPROGRESS; /* Call commit handler */
6939 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
6940 local->config.fastListenDelay = cpu_to_le16((vwrq->value + 500) / 1024);
6941 local->config.powerSaveMode = POWERSAVE_PSPCAM;
6942 set_bit (FLAG_COMMIT, &local->flags);
6943 } else if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_PERIOD) {
6944 local->config.fastListenInterval =
6945 local->config.listenInterval =
6946 cpu_to_le16((vwrq->value + 500) / 1024);
6947 local->config.powerSaveMode = POWERSAVE_PSPCAM;
6948 set_bit (FLAG_COMMIT, &local->flags);
6950 switch (vwrq->flags & IW_POWER_MODE) {
6951 case IW_POWER_UNICAST_R:
6952 if (sniffing_mode(local))
6954 local->config.rmode &= ~RXMODE_MASK;
6955 local->config.rmode |= RXMODE_ADDR;
6956 set_bit (FLAG_COMMIT, &local->flags);
6958 case IW_POWER_ALL_R:
6959 if (sniffing_mode(local))
6961 local->config.rmode &= ~RXMODE_MASK;
6962 local->config.rmode |= RXMODE_BC_MC_ADDR;
6963 set_bit (FLAG_COMMIT, &local->flags);
6965 /* This is broken, fixme ;-) */
6970 // Note : we may want to factor local->need_commit here
6971 // Note2 : may also want to factor RXMODE_RFMON test
6972 return -EINPROGRESS; /* Call commit handler */
6975 /*------------------------------------------------------------------*/
6977 * Wireless Handler : get Power Management
6979 static int airo_get_power(struct net_device *dev,
6980 struct iw_request_info *info,
6981 struct iw_param *vwrq,
6984 struct airo_info *local = dev->priv;
6987 readConfigRid(local, 1);
6988 mode = local->config.powerSaveMode;
6989 if ((vwrq->disabled = (mode == POWERSAVE_CAM)))
6991 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
6992 vwrq->value = le16_to_cpu(local->config.fastListenDelay) * 1024;
6993 vwrq->flags = IW_POWER_TIMEOUT;
6995 vwrq->value = le16_to_cpu(local->config.fastListenInterval) * 1024;
6996 vwrq->flags = IW_POWER_PERIOD;
6998 if ((local->config.rmode & RXMODE_MASK) == RXMODE_ADDR)
6999 vwrq->flags |= IW_POWER_UNICAST_R;
7001 vwrq->flags |= IW_POWER_ALL_R;
7006 /*------------------------------------------------------------------*/
7008 * Wireless Handler : set Sensitivity
7010 static int airo_set_sens(struct net_device *dev,
7011 struct iw_request_info *info,
7012 struct iw_param *vwrq,
7015 struct airo_info *local = dev->priv;
7017 readConfigRid(local, 1);
7018 local->config.rssiThreshold =
7019 cpu_to_le16(vwrq->disabled ? RSSI_DEFAULT : vwrq->value);
7020 set_bit (FLAG_COMMIT, &local->flags);
7022 return -EINPROGRESS; /* Call commit handler */
7025 /*------------------------------------------------------------------*/
7027 * Wireless Handler : get Sensitivity
7029 static int airo_get_sens(struct net_device *dev,
7030 struct iw_request_info *info,
7031 struct iw_param *vwrq,
7034 struct airo_info *local = dev->priv;
7036 readConfigRid(local, 1);
7037 vwrq->value = le16_to_cpu(local->config.rssiThreshold);
7038 vwrq->disabled = (vwrq->value == 0);
7044 /*------------------------------------------------------------------*/
7046 * Wireless Handler : get AP List
7047 * Note : this is deprecated in favor of IWSCAN
7049 static int airo_get_aplist(struct net_device *dev,
7050 struct iw_request_info *info,
7051 struct iw_point *dwrq,
7054 struct airo_info *local = dev->priv;
7055 struct sockaddr *address = (struct sockaddr *) extra;
7056 struct iw_quality qual[IW_MAX_AP];
7059 int loseSync = capable(CAP_NET_ADMIN) ? 1: -1;
7061 for (i = 0; i < IW_MAX_AP; i++) {
7063 if (readBSSListRid(local, loseSync, &BSSList))
7066 memcpy(address[i].sa_data, BSSList.bssid, ETH_ALEN);
7067 address[i].sa_family = ARPHRD_ETHER;
7068 dBm = le16_to_cpu(BSSList.dBm);
7070 qual[i].level = 0x100 - dBm;
7071 qual[i].qual = airo_dbm_to_pct(local->rssi, dBm);
7072 qual[i].updated = IW_QUAL_QUAL_UPDATED
7073 | IW_QUAL_LEVEL_UPDATED
7076 qual[i].level = (dBm + 321) / 2;
7078 qual[i].updated = IW_QUAL_QUAL_INVALID
7079 | IW_QUAL_LEVEL_UPDATED
7082 qual[i].noise = local->wstats.qual.noise;
7083 if (BSSList.index == cpu_to_le16(0xffff))
7087 StatusRid status_rid; /* Card status info */
7088 readStatusRid(local, &status_rid, 1);
7090 i < min(IW_MAX_AP, 4) &&
7091 (status_rid.bssid[i][0]
7092 & status_rid.bssid[i][1]
7093 & status_rid.bssid[i][2]
7094 & status_rid.bssid[i][3]
7095 & status_rid.bssid[i][4]
7096 & status_rid.bssid[i][5])!=0xff &&
7097 (status_rid.bssid[i][0]
7098 | status_rid.bssid[i][1]
7099 | status_rid.bssid[i][2]
7100 | status_rid.bssid[i][3]
7101 | status_rid.bssid[i][4]
7102 | status_rid.bssid[i][5]);
7104 memcpy(address[i].sa_data,
7105 status_rid.bssid[i], ETH_ALEN);
7106 address[i].sa_family = ARPHRD_ETHER;
7109 dwrq->flags = 1; /* Should be define'd */
7110 memcpy(extra + sizeof(struct sockaddr)*i,
7111 &qual, sizeof(struct iw_quality)*i);
7118 /*------------------------------------------------------------------*/
7120 * Wireless Handler : Initiate Scan
7122 static int airo_set_scan(struct net_device *dev,
7123 struct iw_request_info *info,
7124 struct iw_param *vwrq,
7127 struct airo_info *ai = dev->priv;
7132 /* Note : you may have realised that, as this is a SET operation,
7133 * this is privileged and therefore a normal user can't
7135 * This is not an error, while the device perform scanning,
7136 * traffic doesn't flow, so it's a perfect DoS...
7138 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
7140 if (down_interruptible(&ai->sem))
7141 return -ERESTARTSYS;
7143 /* If there's already a scan in progress, don't
7144 * trigger another one. */
7145 if (ai->scan_timeout > 0)
7148 /* Initiate a scan command */
7149 ai->scan_timeout = RUN_AT(3*HZ);
7150 memset(&cmd, 0, sizeof(cmd));
7151 cmd.cmd=CMD_LISTBSS;
7152 issuecommand(ai, &cmd, &rsp);
7158 wake_up_interruptible(&ai->thr_wait);
7162 /*------------------------------------------------------------------*/
7164 * Translate scan data returned from the card to a card independent
7165 * format that the Wireless Tools will understand - Jean II
7167 static inline char *airo_translate_scan(struct net_device *dev,
7172 struct airo_info *ai = dev->priv;
7173 struct iw_event iwe; /* Temporary buffer */
7174 __le16 capabilities;
7175 char * current_val; /* For rates */
7180 /* First entry *MUST* be the AP MAC address */
7181 iwe.cmd = SIOCGIWAP;
7182 iwe.u.ap_addr.sa_family = ARPHRD_ETHER;
7183 memcpy(iwe.u.ap_addr.sa_data, bss->bssid, ETH_ALEN);
7184 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_ADDR_LEN);
7186 /* Other entries will be displayed in the order we give them */
7189 iwe.u.data.length = bss->ssidLen;
7190 if(iwe.u.data.length > 32)
7191 iwe.u.data.length = 32;
7192 iwe.cmd = SIOCGIWESSID;
7193 iwe.u.data.flags = 1;
7194 current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, bss->ssid);
7197 iwe.cmd = SIOCGIWMODE;
7198 capabilities = bss->cap;
7199 if(capabilities & (CAP_ESS | CAP_IBSS)) {
7200 if(capabilities & CAP_ESS)
7201 iwe.u.mode = IW_MODE_MASTER;
7203 iwe.u.mode = IW_MODE_ADHOC;
7204 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_UINT_LEN);
7208 iwe.cmd = SIOCGIWFREQ;
7209 iwe.u.freq.m = le16_to_cpu(bss->dsChannel);
7210 /* iwe.u.freq.m containt the channel (starting 1), our
7211 * frequency_list array start at index 0...
7213 iwe.u.freq.m = frequency_list[iwe.u.freq.m - 1] * 100000;
7215 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_FREQ_LEN);
7217 dBm = le16_to_cpu(bss->dBm);
7219 /* Add quality statistics */
7222 iwe.u.qual.level = 0x100 - dBm;
7223 iwe.u.qual.qual = airo_dbm_to_pct(ai->rssi, dBm);
7224 iwe.u.qual.updated = IW_QUAL_QUAL_UPDATED
7225 | IW_QUAL_LEVEL_UPDATED
7228 iwe.u.qual.level = (dBm + 321) / 2;
7229 iwe.u.qual.qual = 0;
7230 iwe.u.qual.updated = IW_QUAL_QUAL_INVALID
7231 | IW_QUAL_LEVEL_UPDATED
7234 iwe.u.qual.noise = ai->wstats.qual.noise;
7235 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_QUAL_LEN);
7237 /* Add encryption capability */
7238 iwe.cmd = SIOCGIWENCODE;
7239 if(capabilities & CAP_PRIVACY)
7240 iwe.u.data.flags = IW_ENCODE_ENABLED | IW_ENCODE_NOKEY;
7242 iwe.u.data.flags = IW_ENCODE_DISABLED;
7243 iwe.u.data.length = 0;
7244 current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, bss->ssid);
7246 /* Rate : stuffing multiple values in a single event require a bit
7247 * more of magic - Jean II */
7248 current_val = current_ev + IW_EV_LCP_LEN;
7250 iwe.cmd = SIOCGIWRATE;
7251 /* Those two flags are ignored... */
7252 iwe.u.bitrate.fixed = iwe.u.bitrate.disabled = 0;
7254 for(i = 0 ; i < 8 ; i++) {
7255 /* NULL terminated */
7256 if(bss->rates[i] == 0)
7258 /* Bit rate given in 500 kb/s units (+ 0x80) */
7259 iwe.u.bitrate.value = ((bss->rates[i] & 0x7f) * 500000);
7260 /* Add new value to event */
7261 current_val = iwe_stream_add_value(current_ev, current_val, end_buf, &iwe, IW_EV_PARAM_LEN);
7263 /* Check if we added any event */
7264 if((current_val - current_ev) > IW_EV_LCP_LEN)
7265 current_ev = current_val;
7267 /* Beacon interval */
7268 buf = kmalloc(30, GFP_KERNEL);
7270 iwe.cmd = IWEVCUSTOM;
7271 sprintf(buf, "bcn_int=%d", bss->beaconInterval);
7272 iwe.u.data.length = strlen(buf);
7273 current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, buf);
7277 /* Put WPA/RSN Information Elements into the event stream */
7278 if (test_bit(FLAG_WPA_CAPABLE, &ai->flags)) {
7279 unsigned int num_null_ies = 0;
7280 u16 length = sizeof (bss->extra.iep);
7281 struct ieee80211_info_element *info_element =
7282 (struct ieee80211_info_element *) &bss->extra.iep;
7284 while ((length >= sizeof(*info_element)) && (num_null_ies < 2)) {
7285 if (sizeof(*info_element) + info_element->len > length) {
7286 /* Invalid element, don't continue parsing IE */
7290 switch (info_element->id) {
7291 case MFIE_TYPE_SSID:
7292 /* Two zero-length SSID elements
7293 * mean we're done parsing elements */
7294 if (!info_element->len)
7298 case MFIE_TYPE_GENERIC:
7299 if (info_element->len >= 4 &&
7300 info_element->data[0] == 0x00 &&
7301 info_element->data[1] == 0x50 &&
7302 info_element->data[2] == 0xf2 &&
7303 info_element->data[3] == 0x01) {
7304 iwe.cmd = IWEVGENIE;
7305 iwe.u.data.length = min(info_element->len + 2,
7307 current_ev = iwe_stream_add_point(current_ev, end_buf,
7308 &iwe, (char *) info_element);
7313 iwe.cmd = IWEVGENIE;
7314 iwe.u.data.length = min(info_element->len + 2,
7316 current_ev = iwe_stream_add_point(current_ev, end_buf,
7317 &iwe, (char *) info_element);
7324 length -= sizeof(*info_element) + info_element->len;
7326 (struct ieee80211_info_element *)&info_element->
7327 data[info_element->len];
7333 /*------------------------------------------------------------------*/
7335 * Wireless Handler : Read Scan Results
7337 static int airo_get_scan(struct net_device *dev,
7338 struct iw_request_info *info,
7339 struct iw_point *dwrq,
7342 struct airo_info *ai = dev->priv;
7343 BSSListElement *net;
7345 char *current_ev = extra;
7347 /* If a scan is in-progress, return -EAGAIN */
7348 if (ai->scan_timeout > 0)
7351 if (down_interruptible(&ai->sem))
7354 list_for_each_entry (net, &ai->network_list, list) {
7355 /* Translate to WE format this entry */
7356 current_ev = airo_translate_scan(dev, current_ev,
7357 extra + dwrq->length,
7360 /* Check if there is space for one more entry */
7361 if((extra + dwrq->length - current_ev) <= IW_EV_ADDR_LEN) {
7362 /* Ask user space to try again with a bigger buffer */
7368 /* Length of data */
7369 dwrq->length = (current_ev - extra);
7370 dwrq->flags = 0; /* todo */
7377 /*------------------------------------------------------------------*/
7379 * Commit handler : called after a bunch of SET operations
7381 static int airo_config_commit(struct net_device *dev,
7382 struct iw_request_info *info, /* NULL */
7383 void *zwrq, /* NULL */
7384 char *extra) /* NULL */
7386 struct airo_info *local = dev->priv;
7388 if (!test_bit (FLAG_COMMIT, &local->flags))
7391 /* Some of the "SET" function may have modified some of the
7392 * parameters. It's now time to commit them in the card */
7393 disable_MAC(local, 1);
7394 if (test_bit (FLAG_RESET, &local->flags)) {
7395 APListRid APList_rid;
7398 readAPListRid(local, &APList_rid);
7399 readSsidRid(local, &SSID_rid);
7400 if (test_bit(FLAG_MPI,&local->flags))
7401 setup_card(local, dev->dev_addr, 1 );
7403 reset_airo_card(dev);
7404 disable_MAC(local, 1);
7405 writeSsidRid(local, &SSID_rid, 1);
7406 writeAPListRid(local, &APList_rid, 1);
7408 if (down_interruptible(&local->sem))
7409 return -ERESTARTSYS;
7410 writeConfigRid(local, 0);
7411 enable_MAC(local, 0);
7412 if (test_bit (FLAG_RESET, &local->flags))
7413 airo_set_promisc(local);
7420 /*------------------------------------------------------------------*/
7422 * Structures to export the Wireless Handlers
7425 static const struct iw_priv_args airo_private_args[] = {
7426 /*{ cmd, set_args, get_args, name } */
7427 { AIROIOCTL, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7428 IW_PRIV_TYPE_BYTE | 2047, "airoioctl" },
7429 { AIROIDIFC, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7430 IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 1, "airoidifc" },
7433 static const iw_handler airo_handler[] =
7435 (iw_handler) airo_config_commit, /* SIOCSIWCOMMIT */
7436 (iw_handler) airo_get_name, /* SIOCGIWNAME */
7437 (iw_handler) NULL, /* SIOCSIWNWID */
7438 (iw_handler) NULL, /* SIOCGIWNWID */
7439 (iw_handler) airo_set_freq, /* SIOCSIWFREQ */
7440 (iw_handler) airo_get_freq, /* SIOCGIWFREQ */
7441 (iw_handler) airo_set_mode, /* SIOCSIWMODE */
7442 (iw_handler) airo_get_mode, /* SIOCGIWMODE */
7443 (iw_handler) airo_set_sens, /* SIOCSIWSENS */
7444 (iw_handler) airo_get_sens, /* SIOCGIWSENS */
7445 (iw_handler) NULL, /* SIOCSIWRANGE */
7446 (iw_handler) airo_get_range, /* SIOCGIWRANGE */
7447 (iw_handler) NULL, /* SIOCSIWPRIV */
7448 (iw_handler) NULL, /* SIOCGIWPRIV */
7449 (iw_handler) NULL, /* SIOCSIWSTATS */
7450 (iw_handler) NULL, /* SIOCGIWSTATS */
7451 iw_handler_set_spy, /* SIOCSIWSPY */
7452 iw_handler_get_spy, /* SIOCGIWSPY */
7453 iw_handler_set_thrspy, /* SIOCSIWTHRSPY */
7454 iw_handler_get_thrspy, /* SIOCGIWTHRSPY */
7455 (iw_handler) airo_set_wap, /* SIOCSIWAP */
7456 (iw_handler) airo_get_wap, /* SIOCGIWAP */
7457 (iw_handler) NULL, /* -- hole -- */
7458 (iw_handler) airo_get_aplist, /* SIOCGIWAPLIST */
7459 (iw_handler) airo_set_scan, /* SIOCSIWSCAN */
7460 (iw_handler) airo_get_scan, /* SIOCGIWSCAN */
7461 (iw_handler) airo_set_essid, /* SIOCSIWESSID */
7462 (iw_handler) airo_get_essid, /* SIOCGIWESSID */
7463 (iw_handler) airo_set_nick, /* SIOCSIWNICKN */
7464 (iw_handler) airo_get_nick, /* SIOCGIWNICKN */
7465 (iw_handler) NULL, /* -- hole -- */
7466 (iw_handler) NULL, /* -- hole -- */
7467 (iw_handler) airo_set_rate, /* SIOCSIWRATE */
7468 (iw_handler) airo_get_rate, /* SIOCGIWRATE */
7469 (iw_handler) airo_set_rts, /* SIOCSIWRTS */
7470 (iw_handler) airo_get_rts, /* SIOCGIWRTS */
7471 (iw_handler) airo_set_frag, /* SIOCSIWFRAG */
7472 (iw_handler) airo_get_frag, /* SIOCGIWFRAG */
7473 (iw_handler) airo_set_txpow, /* SIOCSIWTXPOW */
7474 (iw_handler) airo_get_txpow, /* SIOCGIWTXPOW */
7475 (iw_handler) airo_set_retry, /* SIOCSIWRETRY */
7476 (iw_handler) airo_get_retry, /* SIOCGIWRETRY */
7477 (iw_handler) airo_set_encode, /* SIOCSIWENCODE */
7478 (iw_handler) airo_get_encode, /* SIOCGIWENCODE */
7479 (iw_handler) airo_set_power, /* SIOCSIWPOWER */
7480 (iw_handler) airo_get_power, /* SIOCGIWPOWER */
7481 (iw_handler) NULL, /* -- hole -- */
7482 (iw_handler) NULL, /* -- hole -- */
7483 (iw_handler) NULL, /* SIOCSIWGENIE */
7484 (iw_handler) NULL, /* SIOCGIWGENIE */
7485 (iw_handler) airo_set_auth, /* SIOCSIWAUTH */
7486 (iw_handler) airo_get_auth, /* SIOCGIWAUTH */
7487 (iw_handler) airo_set_encodeext, /* SIOCSIWENCODEEXT */
7488 (iw_handler) airo_get_encodeext, /* SIOCGIWENCODEEXT */
7489 (iw_handler) NULL, /* SIOCSIWPMKSA */
7492 /* Note : don't describe AIROIDIFC and AIROOLDIDIFC in here.
7493 * We want to force the use of the ioctl code, because those can't be
7494 * won't work the iw_handler code (because they simultaneously read
7495 * and write data and iw_handler can't do that).
7496 * Note that it's perfectly legal to read/write on a single ioctl command,
7497 * you just can't use iwpriv and need to force it via the ioctl handler.
7499 static const iw_handler airo_private_handler[] =
7501 NULL, /* SIOCIWFIRSTPRIV */
7504 static const struct iw_handler_def airo_handler_def =
7506 .num_standard = ARRAY_SIZE(airo_handler),
7507 .num_private = ARRAY_SIZE(airo_private_handler),
7508 .num_private_args = ARRAY_SIZE(airo_private_args),
7509 .standard = airo_handler,
7510 .private = airo_private_handler,
7511 .private_args = airo_private_args,
7512 .get_wireless_stats = airo_get_wireless_stats,
7516 * This defines the configuration part of the Wireless Extensions
7517 * Note : irq and spinlock protection will occur in the subroutines
7520 * o Check input value more carefully and fill correct values in range
7521 * o Test and shakeout the bugs (if any)
7525 * Javier Achirica did a great job of merging code from the unnamed CISCO
7526 * developer that added support for flashing the card.
7528 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd)
7531 struct airo_info *ai = (struct airo_info *)dev->priv;
7533 if (ai->power.event)
7543 int val = AIROMAGIC;
7545 if (copy_from_user(&com,rq->ifr_data,sizeof(com)))
7547 else if (copy_to_user(com.data,(char *)&val,sizeof(val)))
7556 /* Get the command struct and hand it off for evaluation by
7557 * the proper subfunction
7561 if (copy_from_user(&com,rq->ifr_data,sizeof(com))) {
7566 /* Separate R/W functions bracket legality here
7568 if ( com.command == AIRORSWVERSION ) {
7569 if (copy_to_user(com.data, swversion, sizeof(swversion)))
7574 else if ( com.command <= AIRORRID)
7575 rc = readrids(dev,&com);
7576 else if ( com.command >= AIROPCAP && com.command <= (AIROPLEAPUSR+2) )
7577 rc = writerids(dev,&com);
7578 else if ( com.command >= AIROFLSHRST && com.command <= AIRORESTART )
7579 rc = flashcard(dev,&com);
7581 rc = -EINVAL; /* Bad command in ioctl */
7584 #endif /* CISCO_EXT */
7586 // All other calls are currently unsupported
7594 * Get the Wireless stats out of the driver
7595 * Note : irq and spinlock protection will occur in the subroutines
7598 * o Check if work in Ad-Hoc mode (otherwise, use SPY, as in wvlan_cs)
7602 static void airo_read_wireless_stats(struct airo_info *local)
7604 StatusRid status_rid;
7606 CapabilityRid cap_rid;
7607 __le32 *vals = stats_rid.vals;
7609 /* Get stats out of the card */
7610 clear_bit(JOB_WSTATS, &local->jobs);
7611 if (local->power.event) {
7615 readCapabilityRid(local, &cap_rid, 0);
7616 readStatusRid(local, &status_rid, 0);
7617 readStatsRid(local, &stats_rid, RID_STATS, 0);
7621 local->wstats.status = le16_to_cpu(status_rid.mode);
7623 /* Signal quality and co */
7625 local->wstats.qual.level =
7626 airo_rssi_to_dbm(local->rssi,
7627 le16_to_cpu(status_rid.sigQuality));
7628 /* normalizedSignalStrength appears to be a percentage */
7629 local->wstats.qual.qual =
7630 le16_to_cpu(status_rid.normalizedSignalStrength);
7632 local->wstats.qual.level =
7633 (le16_to_cpu(status_rid.normalizedSignalStrength) + 321) / 2;
7634 local->wstats.qual.qual = airo_get_quality(&status_rid, &cap_rid);
7636 if (le16_to_cpu(status_rid.len) >= 124) {
7637 local->wstats.qual.noise = 0x100 - status_rid.noisedBm;
7638 local->wstats.qual.updated = IW_QUAL_ALL_UPDATED | IW_QUAL_DBM;
7640 local->wstats.qual.noise = 0;
7641 local->wstats.qual.updated = IW_QUAL_QUAL_UPDATED | IW_QUAL_LEVEL_UPDATED | IW_QUAL_NOISE_INVALID | IW_QUAL_DBM;
7644 /* Packets discarded in the wireless adapter due to wireless
7645 * specific problems */
7646 local->wstats.discard.nwid = le32_to_cpu(vals[56]) +
7647 le32_to_cpu(vals[57]) +
7648 le32_to_cpu(vals[58]); /* SSID Mismatch */
7649 local->wstats.discard.code = le32_to_cpu(vals[6]);/* RxWepErr */
7650 local->wstats.discard.fragment = le32_to_cpu(vals[30]);
7651 local->wstats.discard.retries = le32_to_cpu(vals[10]);
7652 local->wstats.discard.misc = le32_to_cpu(vals[1]) +
7653 le32_to_cpu(vals[32]);
7654 local->wstats.miss.beacon = le32_to_cpu(vals[34]);
7657 static struct iw_statistics *airo_get_wireless_stats(struct net_device *dev)
7659 struct airo_info *local = dev->priv;
7661 if (!test_bit(JOB_WSTATS, &local->jobs)) {
7662 /* Get stats out of the card if available */
7663 if (down_trylock(&local->sem) != 0) {
7664 set_bit(JOB_WSTATS, &local->jobs);
7665 wake_up_interruptible(&local->thr_wait);
7667 airo_read_wireless_stats(local);
7670 return &local->wstats;
7675 * This just translates from driver IOCTL codes to the command codes to
7676 * feed to the radio's host interface. Things can be added/deleted
7677 * as needed. This represents the READ side of control I/O to
7680 static int readrids(struct net_device *dev, aironet_ioctl *comp) {
7681 unsigned short ridcode;
7682 unsigned char *iobuf;
7684 struct airo_info *ai = dev->priv;
7686 if (test_bit(FLAG_FLASHING, &ai->flags))
7689 switch(comp->command)
7691 case AIROGCAP: ridcode = RID_CAPABILITIES; break;
7692 case AIROGCFG: ridcode = RID_CONFIG;
7693 if (test_bit(FLAG_COMMIT, &ai->flags)) {
7694 disable_MAC (ai, 1);
7695 writeConfigRid (ai, 1);
7699 case AIROGSLIST: ridcode = RID_SSID; break;
7700 case AIROGVLIST: ridcode = RID_APLIST; break;
7701 case AIROGDRVNAM: ridcode = RID_DRVNAME; break;
7702 case AIROGEHTENC: ridcode = RID_ETHERENCAP; break;
7703 case AIROGWEPKTMP: ridcode = RID_WEP_TEMP;
7704 /* Only super-user can read WEP keys */
7705 if (!capable(CAP_NET_ADMIN))
7708 case AIROGWEPKNV: ridcode = RID_WEP_PERM;
7709 /* Only super-user can read WEP keys */
7710 if (!capable(CAP_NET_ADMIN))
7713 case AIROGSTAT: ridcode = RID_STATUS; break;
7714 case AIROGSTATSD32: ridcode = RID_STATSDELTA; break;
7715 case AIROGSTATSC32: ridcode = RID_STATS; break;
7717 if (copy_to_user(comp->data, &ai->micstats,
7718 min((int)comp->len,(int)sizeof(ai->micstats))))
7721 case AIRORRID: ridcode = comp->ridnum; break;
7727 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7730 PC4500_readrid(ai,ridcode,iobuf,RIDSIZE, 1);
7731 /* get the count of bytes in the rid docs say 1st 2 bytes is it.
7732 * then return it to the user
7733 * 9/22/2000 Honor user given length
7737 if (copy_to_user(comp->data, iobuf, min(len, (int)RIDSIZE))) {
7746 * Danger Will Robinson write the rids here
7749 static int writerids(struct net_device *dev, aironet_ioctl *comp) {
7750 struct airo_info *ai = dev->priv;
7753 static int (* writer)(struct airo_info *, u16 rid, const void *, int, int);
7754 unsigned char *iobuf;
7756 /* Only super-user can write RIDs */
7757 if (!capable(CAP_NET_ADMIN))
7760 if (test_bit(FLAG_FLASHING, &ai->flags))
7764 writer = do_writerid;
7766 switch(comp->command)
7768 case AIROPSIDS: ridcode = RID_SSID; break;
7769 case AIROPCAP: ridcode = RID_CAPABILITIES; break;
7770 case AIROPAPLIST: ridcode = RID_APLIST; break;
7771 case AIROPCFG: ai->config.len = 0;
7772 clear_bit(FLAG_COMMIT, &ai->flags);
7773 ridcode = RID_CONFIG; break;
7774 case AIROPWEPKEYNV: ridcode = RID_WEP_PERM; break;
7775 case AIROPLEAPUSR: ridcode = RID_LEAPUSERNAME; break;
7776 case AIROPLEAPPWD: ridcode = RID_LEAPPASSWORD; break;
7777 case AIROPWEPKEY: ridcode = RID_WEP_TEMP; writer = PC4500_writerid;
7779 case AIROPLEAPUSR+1: ridcode = 0xFF2A; break;
7780 case AIROPLEAPUSR+2: ridcode = 0xFF2B; break;
7782 /* this is not really a rid but a command given to the card
7786 if (enable_MAC(ai, 1) != 0)
7791 * Evidently this code in the airo driver does not get a symbol
7792 * as disable_MAC. it's probably so short the compiler does not gen one.
7798 /* This command merely clears the counts does not actually store any data
7799 * only reads rid. But as it changes the cards state, I put it in the
7800 * writerid routines.
7803 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7806 PC4500_readrid(ai,RID_STATSDELTACLEAR,iobuf,RIDSIZE, 1);
7808 enabled = ai->micstats.enabled;
7809 memset(&ai->micstats,0,sizeof(ai->micstats));
7810 ai->micstats.enabled = enabled;
7812 if (copy_to_user(comp->data, iobuf,
7813 min((int)comp->len, (int)RIDSIZE))) {
7821 return -EOPNOTSUPP; /* Blarg! */
7823 if(comp->len > RIDSIZE)
7826 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7829 if (copy_from_user(iobuf,comp->data,comp->len)) {
7834 if (comp->command == AIROPCFG) {
7835 ConfigRid *cfg = (ConfigRid *)iobuf;
7837 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags))
7838 cfg->opmode |= MODE_MIC;
7840 if ((cfg->opmode & MODE_CFG_MASK) == MODE_STA_IBSS)
7841 set_bit (FLAG_ADHOC, &ai->flags);
7843 clear_bit (FLAG_ADHOC, &ai->flags);
7846 if((*writer)(ai, ridcode, iobuf,comp->len,1)) {
7854 /*****************************************************************************
7855 * Ancillary flash / mod functions much black magic lurkes here *
7856 *****************************************************************************
7860 * Flash command switch table
7863 static int flashcard(struct net_device *dev, aironet_ioctl *comp) {
7866 /* Only super-user can modify flash */
7867 if (!capable(CAP_NET_ADMIN))
7870 switch(comp->command)
7873 return cmdreset((struct airo_info *)dev->priv);
7876 if (!((struct airo_info *)dev->priv)->flash &&
7877 (((struct airo_info *)dev->priv)->flash = kmalloc (FLASHSIZE, GFP_KERNEL)) == NULL)
7879 return setflashmode((struct airo_info *)dev->priv);
7881 case AIROFLSHGCHR: /* Get char from aux */
7882 if(comp->len != sizeof(int))
7884 if (copy_from_user(&z,comp->data,comp->len))
7886 return flashgchar((struct airo_info *)dev->priv,z,8000);
7888 case AIROFLSHPCHR: /* Send char to card. */
7889 if(comp->len != sizeof(int))
7891 if (copy_from_user(&z,comp->data,comp->len))
7893 return flashpchar((struct airo_info *)dev->priv,z,8000);
7895 case AIROFLPUTBUF: /* Send 32k to card */
7896 if (!((struct airo_info *)dev->priv)->flash)
7898 if(comp->len > FLASHSIZE)
7900 if(copy_from_user(((struct airo_info *)dev->priv)->flash,comp->data,comp->len))
7903 flashputbuf((struct airo_info *)dev->priv);
7907 if(flashrestart((struct airo_info *)dev->priv,dev))
7914 #define FLASH_COMMAND 0x7e7e
7918 * Disable MAC and do soft reset on
7922 static int cmdreset(struct airo_info *ai) {
7926 airo_print_info(ai->dev->name, "Waitbusy hang before RESET");
7930 OUT4500(ai,COMMAND,CMD_SOFTRESET);
7932 ssleep(1); /* WAS 600 12/7/00 */
7935 airo_print_info(ai->dev->name, "Waitbusy hang AFTER RESET");
7942 * Put the card in legendary flash
7946 static int setflashmode (struct airo_info *ai) {
7947 set_bit (FLAG_FLASHING, &ai->flags);
7949 OUT4500(ai, SWS0, FLASH_COMMAND);
7950 OUT4500(ai, SWS1, FLASH_COMMAND);
7952 OUT4500(ai, SWS0, FLASH_COMMAND);
7953 OUT4500(ai, COMMAND,0x10);
7955 OUT4500(ai, SWS2, FLASH_COMMAND);
7956 OUT4500(ai, SWS3, FLASH_COMMAND);
7957 OUT4500(ai, COMMAND,0);
7959 msleep(500); /* 500ms delay */
7962 clear_bit (FLAG_FLASHING, &ai->flags);
7963 airo_print_info(ai->dev->name, "Waitbusy hang after setflash mode");
7969 /* Put character to SWS0 wait for dwelltime
7973 static int flashpchar(struct airo_info *ai,int byte,int dwelltime) {
7984 /* Wait for busy bit d15 to go false indicating buffer empty */
7985 while ((IN4500 (ai, SWS0) & 0x8000) && waittime > 0) {
7990 /* timeout for busy clear wait */
7992 airo_print_info(ai->dev->name, "flash putchar busywait timeout!");
7996 /* Port is clear now write byte and wait for it to echo back */
7998 OUT4500(ai,SWS0,byte);
8001 echo = IN4500(ai,SWS1);
8002 } while (dwelltime >= 0 && echo != byte);
8006 return (echo == byte) ? 0 : -EIO;
8010 * Get a character from the card matching matchbyte
8013 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime){
8015 unsigned char rbyte=0;
8018 rchar = IN4500(ai,SWS1);
8020 if(dwelltime && !(0x8000 & rchar)){
8025 rbyte = 0xff & rchar;
8027 if( (rbyte == matchbyte) && (0x8000 & rchar) ){
8031 if( rbyte == 0x81 || rbyte == 0x82 || rbyte == 0x83 || rbyte == 0x1a || 0xffff == rchar)
8035 }while(dwelltime > 0);
8040 * Transfer 32k of firmware data from user buffer to our buffer and
8044 static int flashputbuf(struct airo_info *ai){
8048 if (test_bit(FLAG_MPI,&ai->flags))
8049 memcpy_toio(ai->pciaux + 0x8000, ai->flash, FLASHSIZE);
8051 OUT4500(ai,AUXPAGE,0x100);
8052 OUT4500(ai,AUXOFF,0);
8054 for(nwords=0;nwords != FLASHSIZE / 2;nwords++){
8055 OUT4500(ai,AUXDATA,ai->flash[nwords] & 0xffff);
8058 OUT4500(ai,SWS0,0x8000);
8066 static int flashrestart(struct airo_info *ai,struct net_device *dev){
8069 ssleep(1); /* Added 12/7/00 */
8070 clear_bit (FLAG_FLASHING, &ai->flags);
8071 if (test_bit(FLAG_MPI, &ai->flags)) {
8072 status = mpi_init_descriptors(ai);
8073 if (status != SUCCESS)
8076 status = setup_card(ai, dev->dev_addr, 1);
8078 if (!test_bit(FLAG_MPI,&ai->flags))
8079 for( i = 0; i < MAX_FIDS; i++ ) {
8080 ai->fids[i] = transmit_allocate
8081 ( ai, AIRO_DEF_MTU, i >= MAX_FIDS / 2 );
8084 ssleep(1); /* Added 12/7/00 */
8087 #endif /* CISCO_EXT */
8090 This program is free software; you can redistribute it and/or
8091 modify it under the terms of the GNU General Public License
8092 as published by the Free Software Foundation; either version 2
8093 of the License, or (at your option) any later version.
8095 This program is distributed in the hope that it will be useful,
8096 but WITHOUT ANY WARRANTY; without even the implied warranty of
8097 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
8098 GNU General Public License for more details.
8102 Redistribution and use in source and binary forms, with or without
8103 modification, are permitted provided that the following conditions
8106 1. Redistributions of source code must retain the above copyright
8107 notice, this list of conditions and the following disclaimer.
8108 2. Redistributions in binary form must reproduce the above copyright
8109 notice, this list of conditions and the following disclaimer in the
8110 documentation and/or other materials provided with the distribution.
8111 3. The name of the author may not be used to endorse or promote
8112 products derived from this software without specific prior written
8115 THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
8116 IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
8117 WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
8118 ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
8119 INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
8120 (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
8121 SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
8122 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
8123 STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
8124 IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
8125 POSSIBILITY OF SUCH DAMAGE.
8128 module_init(airo_init_module);
8129 module_exit(airo_cleanup_module);