1 /*======================================================================
3 Aironet driver for 4500 and 4800 series cards
5 This code is released under both the GPL version 2 and BSD licenses.
6 Either license may be used. The respective licenses are found at
9 This code was developed by Benjamin Reed <breed@users.sourceforge.net>
10 including portions of which come from the Aironet PC4500
11 Developer's Reference Manual and used with permission. Copyright
12 (C) 1999 Benjamin Reed. All Rights Reserved. Permission to use
13 code in the Developer's manual was granted for this driver by
14 Aironet. Major code contributions were received from Javier Achirica
15 <achirica@users.sourceforge.net> and Jean Tourrilhes <jt@hpl.hp.com>.
16 Code was also integrated from the Cisco Aironet driver for Linux.
17 Support for MPI350 cards was added by Fabrice Bellet
18 <fabrice@bellet.info>.
20 ======================================================================*/
22 #include <linux/err.h>
23 #include <linux/init.h>
25 #include <linux/kernel.h>
26 #include <linux/module.h>
27 #include <linux/proc_fs.h>
29 #include <linux/sched.h>
30 #include <linux/ptrace.h>
31 #include <linux/slab.h>
32 #include <linux/string.h>
33 #include <linux/timer.h>
34 #include <linux/interrupt.h>
36 #include <linux/bitops.h>
37 #include <linux/scatterlist.h>
38 #include <linux/crypto.h>
40 #include <asm/system.h>
41 #include <asm/unaligned.h>
43 #include <linux/netdevice.h>
44 #include <linux/etherdevice.h>
45 #include <linux/skbuff.h>
46 #include <linux/if_arp.h>
47 #include <linux/ioport.h>
48 #include <linux/pci.h>
49 #include <asm/uaccess.h>
50 #include <net/ieee80211.h>
51 #include <linux/kthread.h>
52 #include <linux/freezer.h>
56 #define DRV_NAME "airo"
59 static struct pci_device_id card_ids[] = {
60 { 0x14b9, 1, PCI_ANY_ID, PCI_ANY_ID, },
61 { 0x14b9, 0x4500, PCI_ANY_ID, PCI_ANY_ID },
62 { 0x14b9, 0x4800, PCI_ANY_ID, PCI_ANY_ID, },
63 { 0x14b9, 0x0340, PCI_ANY_ID, PCI_ANY_ID, },
64 { 0x14b9, 0x0350, PCI_ANY_ID, PCI_ANY_ID, },
65 { 0x14b9, 0x5000, PCI_ANY_ID, PCI_ANY_ID, },
66 { 0x14b9, 0xa504, PCI_ANY_ID, PCI_ANY_ID, },
69 MODULE_DEVICE_TABLE(pci, card_ids);
71 static int airo_pci_probe(struct pci_dev *, const struct pci_device_id *);
72 static void airo_pci_remove(struct pci_dev *);
73 static int airo_pci_suspend(struct pci_dev *pdev, pm_message_t state);
74 static int airo_pci_resume(struct pci_dev *pdev);
76 static struct pci_driver airo_driver = {
79 .probe = airo_pci_probe,
80 .remove = __devexit_p(airo_pci_remove),
81 .suspend = airo_pci_suspend,
82 .resume = airo_pci_resume,
84 #endif /* CONFIG_PCI */
86 /* Include Wireless Extension definition and check version - Jean II */
87 #include <linux/wireless.h>
88 #define WIRELESS_SPY // enable iwspy support
89 #include <net/iw_handler.h> // New driver API
91 #define CISCO_EXT // enable Cisco extensions
93 #include <linux/delay.h>
96 /* Hack to do some power saving */
99 /* As you can see this list is HUGH!
100 I really don't know what a lot of these counts are about, but they
101 are all here for completeness. If the IGNLABEL macro is put in
102 infront of the label, that statistic will not be included in the list
103 of statistics in the /proc filesystem */
105 #define IGNLABEL(comment) NULL
106 static char *statsLabels[] = {
108 IGNLABEL("RxPlcpCrcErr"),
109 IGNLABEL("RxPlcpFormatErr"),
110 IGNLABEL("RxPlcpLengthErr"),
141 "LostSync-MissedBeacons",
142 "LostSync-ArlExceeded",
144 "LostSync-Disassoced",
145 "LostSync-TsfTiming",
154 IGNLABEL("HmacTxMc"),
155 IGNLABEL("HmacTxBc"),
156 IGNLABEL("HmacTxUc"),
157 IGNLABEL("HmacTxFail"),
158 IGNLABEL("HmacRxMc"),
159 IGNLABEL("HmacRxBc"),
160 IGNLABEL("HmacRxUc"),
161 IGNLABEL("HmacRxDiscard"),
162 IGNLABEL("HmacRxAccepted"),
170 IGNLABEL("ReasonOutsideTable"),
171 IGNLABEL("ReasonStatus1"),
172 IGNLABEL("ReasonStatus2"),
173 IGNLABEL("ReasonStatus3"),
174 IGNLABEL("ReasonStatus4"),
175 IGNLABEL("ReasonStatus5"),
176 IGNLABEL("ReasonStatus6"),
177 IGNLABEL("ReasonStatus7"),
178 IGNLABEL("ReasonStatus8"),
179 IGNLABEL("ReasonStatus9"),
180 IGNLABEL("ReasonStatus10"),
181 IGNLABEL("ReasonStatus11"),
182 IGNLABEL("ReasonStatus12"),
183 IGNLABEL("ReasonStatus13"),
184 IGNLABEL("ReasonStatus14"),
185 IGNLABEL("ReasonStatus15"),
186 IGNLABEL("ReasonStatus16"),
187 IGNLABEL("ReasonStatus17"),
188 IGNLABEL("ReasonStatus18"),
189 IGNLABEL("ReasonStatus19"),
209 #define RUN_AT(x) (jiffies+(x))
213 /* These variables are for insmod, since it seems that the rates
214 can only be set in setup_card. Rates should be a comma separated
215 (no spaces) list of rates (up to 8). */
218 static int basic_rate;
219 static char *ssids[3];
225 int maxencrypt /* = 0 */; /* The highest rate that the card can encrypt at.
226 0 means no limit. For old cards this was 4 */
228 static int auto_wep /* = 0 */; /* If set, it tries to figure out the wep mode */
229 static int aux_bap /* = 0 */; /* Checks to see if the aux ports are needed to read
230 the bap, needed on some older cards and buses. */
233 static int probe = 1;
235 static int proc_uid /* = 0 */;
237 static int proc_gid /* = 0 */;
239 static int airo_perm = 0555;
241 static int proc_perm = 0644;
243 MODULE_AUTHOR("Benjamin Reed");
244 MODULE_DESCRIPTION("Support for Cisco/Aironet 802.11 wireless ethernet \
245 cards. Direct support for ISA/PCI/MPI cards and support \
246 for PCMCIA when used with airo_cs.");
247 MODULE_LICENSE("Dual BSD/GPL");
248 MODULE_SUPPORTED_DEVICE("Aironet 4500, 4800 and Cisco 340/350");
249 module_param_array(io, int, NULL, 0);
250 module_param_array(irq, int, NULL, 0);
251 module_param(basic_rate, int, 0);
252 module_param_array(rates, int, NULL, 0);
253 module_param_array(ssids, charp, NULL, 0);
254 module_param(auto_wep, int, 0);
255 MODULE_PARM_DESC(auto_wep, "If non-zero, the driver will keep looping through \
256 the authentication options until an association is made. The value of \
257 auto_wep is number of the wep keys to check. A value of 2 will try using \
258 the key at index 0 and index 1.");
259 module_param(aux_bap, int, 0);
260 MODULE_PARM_DESC(aux_bap, "If non-zero, the driver will switch into a mode \
261 than seems to work better for older cards with some older buses. Before \
262 switching it checks that the switch is needed.");
263 module_param(maxencrypt, int, 0);
264 MODULE_PARM_DESC(maxencrypt, "The maximum speed that the card can do \
265 encryption. Units are in 512kbs. Zero (default) means there is no limit. \
266 Older cards used to be limited to 2mbs (4).");
267 module_param(adhoc, int, 0);
268 MODULE_PARM_DESC(adhoc, "If non-zero, the card will start in adhoc mode.");
269 module_param(probe, int, 0);
270 MODULE_PARM_DESC(probe, "If zero, the driver won't start the card.");
272 module_param(proc_uid, int, 0);
273 MODULE_PARM_DESC(proc_uid, "The uid that the /proc files will belong to.");
274 module_param(proc_gid, int, 0);
275 MODULE_PARM_DESC(proc_gid, "The gid that the /proc files will belong to.");
276 module_param(airo_perm, int, 0);
277 MODULE_PARM_DESC(airo_perm, "The permission bits of /proc/[driver/]aironet.");
278 module_param(proc_perm, int, 0);
279 MODULE_PARM_DESC(proc_perm, "The permission bits of the files in /proc");
281 /* This is a kind of sloppy hack to get this information to OUT4500 and
282 IN4500. I would be extremely interested in the situation where this
283 doesn't work though!!! */
284 static int do8bitIO = 0;
293 #define MAC_ENABLE 0x0001
294 #define MAC_DISABLE 0x0002
295 #define CMD_LOSE_SYNC 0x0003 /* Not sure what this does... */
296 #define CMD_SOFTRESET 0x0004
297 #define HOSTSLEEP 0x0005
298 #define CMD_MAGIC_PKT 0x0006
299 #define CMD_SETWAKEMASK 0x0007
300 #define CMD_READCFG 0x0008
301 #define CMD_SETMODE 0x0009
302 #define CMD_ALLOCATETX 0x000a
303 #define CMD_TRANSMIT 0x000b
304 #define CMD_DEALLOCATETX 0x000c
306 #define CMD_WORKAROUND 0x0011
307 #define CMD_ALLOCATEAUX 0x0020
308 #define CMD_ACCESS 0x0021
309 #define CMD_PCIBAP 0x0022
310 #define CMD_PCIAUX 0x0023
311 #define CMD_ALLOCBUF 0x0028
312 #define CMD_GETTLV 0x0029
313 #define CMD_PUTTLV 0x002a
314 #define CMD_DELTLV 0x002b
315 #define CMD_FINDNEXTTLV 0x002c
316 #define CMD_PSPNODES 0x0030
317 #define CMD_SETCW 0x0031
318 #define CMD_SETPCF 0x0032
319 #define CMD_SETPHYREG 0x003e
320 #define CMD_TXTEST 0x003f
321 #define MAC_ENABLETX 0x0101
322 #define CMD_LISTBSS 0x0103
323 #define CMD_SAVECFG 0x0108
324 #define CMD_ENABLEAUX 0x0111
325 #define CMD_WRITERID 0x0121
326 #define CMD_USEPSPNODES 0x0130
327 #define MAC_ENABLERX 0x0201
330 #define ERROR_QUALIF 0x00
331 #define ERROR_ILLCMD 0x01
332 #define ERROR_ILLFMT 0x02
333 #define ERROR_INVFID 0x03
334 #define ERROR_INVRID 0x04
335 #define ERROR_LARGE 0x05
336 #define ERROR_NDISABL 0x06
337 #define ERROR_ALLOCBSY 0x07
338 #define ERROR_NORD 0x0B
339 #define ERROR_NOWR 0x0C
340 #define ERROR_INVFIDTX 0x0D
341 #define ERROR_TESTACT 0x0E
342 #define ERROR_TAGNFND 0x12
343 #define ERROR_DECODE 0x20
344 #define ERROR_DESCUNAV 0x21
345 #define ERROR_BADLEN 0x22
346 #define ERROR_MODE 0x80
347 #define ERROR_HOP 0x81
348 #define ERROR_BINTER 0x82
349 #define ERROR_RXMODE 0x83
350 #define ERROR_MACADDR 0x84
351 #define ERROR_RATES 0x85
352 #define ERROR_ORDER 0x86
353 #define ERROR_SCAN 0x87
354 #define ERROR_AUTH 0x88
355 #define ERROR_PSMODE 0x89
356 #define ERROR_RTYPE 0x8A
357 #define ERROR_DIVER 0x8B
358 #define ERROR_SSID 0x8C
359 #define ERROR_APLIST 0x8D
360 #define ERROR_AUTOWAKE 0x8E
361 #define ERROR_LEAP 0x8F
372 #define LINKSTAT 0x10
376 #define TXALLOCFID 0x22
377 #define TXCOMPLFID 0x24
392 /* Offset into aux memory for descriptors */
393 #define AUX_OFFSET 0x800
394 /* Size of allocated packets */
397 /* Size of the transmit queue */
401 #define BAP0 0 // Used for receiving packets
402 #define BAP1 2 // Used for xmiting packets and working with RIDS
405 #define COMMAND_BUSY 0x8000
407 #define BAP_BUSY 0x8000
408 #define BAP_ERR 0x4000
409 #define BAP_DONE 0x2000
411 #define PROMISC 0xffff
412 #define NOPROMISC 0x0000
415 #define EV_CLEARCOMMANDBUSY 0x4000
418 #define EV_TXEXC 0x04
419 #define EV_ALLOC 0x08
421 #define EV_AWAKE 0x100
422 #define EV_TXCPY 0x400
423 #define EV_UNKNOWN 0x800
424 #define EV_MIC 0x1000 /* Message Integrity Check Interrupt */
425 #define EV_AWAKEN 0x2000
426 #define STATUS_INTS (EV_AWAKE|EV_LINK|EV_TXEXC|EV_TX|EV_TXCPY|EV_RX|EV_MIC)
428 #ifdef CHECK_UNKNOWN_INTS
429 #define IGNORE_INTS ( EV_CMD | EV_UNKNOWN)
431 #define IGNORE_INTS (~STATUS_INTS)
438 #define RID_CAPABILITIES 0xFF00
439 #define RID_APINFO 0xFF01
440 #define RID_RADIOINFO 0xFF02
441 #define RID_UNKNOWN3 0xFF03
442 #define RID_RSSI 0xFF04
443 #define RID_CONFIG 0xFF10
444 #define RID_SSID 0xFF11
445 #define RID_APLIST 0xFF12
446 #define RID_DRVNAME 0xFF13
447 #define RID_ETHERENCAP 0xFF14
448 #define RID_WEP_TEMP 0xFF15
449 #define RID_WEP_PERM 0xFF16
450 #define RID_MODULATION 0xFF17
451 #define RID_OPTIONS 0xFF18
452 #define RID_ACTUALCONFIG 0xFF20 /*readonly*/
453 #define RID_FACTORYCONFIG 0xFF21
454 #define RID_UNKNOWN22 0xFF22
455 #define RID_LEAPUSERNAME 0xFF23
456 #define RID_LEAPPASSWORD 0xFF24
457 #define RID_STATUS 0xFF50
458 #define RID_BEACON_HST 0xFF51
459 #define RID_BUSY_HST 0xFF52
460 #define RID_RETRIES_HST 0xFF53
461 #define RID_UNKNOWN54 0xFF54
462 #define RID_UNKNOWN55 0xFF55
463 #define RID_UNKNOWN56 0xFF56
464 #define RID_MIC 0xFF57
465 #define RID_STATS16 0xFF60
466 #define RID_STATS16DELTA 0xFF61
467 #define RID_STATS16DELTACLEAR 0xFF62
468 #define RID_STATS 0xFF68
469 #define RID_STATSDELTA 0xFF69
470 #define RID_STATSDELTACLEAR 0xFF6A
471 #define RID_ECHOTEST_RID 0xFF70
472 #define RID_ECHOTEST_RESULTS 0xFF71
473 #define RID_BSSLISTFIRST 0xFF72
474 #define RID_BSSLISTNEXT 0xFF73
475 #define RID_WPA_BSSLISTFIRST 0xFF74
476 #define RID_WPA_BSSLISTNEXT 0xFF75
493 * Rids and endian-ness: The Rids will always be in cpu endian, since
494 * this all the patches from the big-endian guys end up doing that.
495 * so all rid access should use the read/writeXXXRid routines.
498 /* This is redundant for x86 archs, but it seems necessary for ARM */
501 /* This structure came from an email sent to me from an engineer at
502 aironet for inclusion into this driver */
511 /* These structures are from the Aironet's PC4500 Developers Manual */
525 #define MOD_DEFAULT 0
531 u16 len; /* sizeof(ConfigRid) */
532 u16 opmode; /* operating mode */
533 #define MODE_STA_IBSS 0
534 #define MODE_STA_ESS 1
536 #define MODE_AP_RPTR 3
537 #define MODE_ETHERNET_HOST (0<<8) /* rx payloads converted */
538 #define MODE_LLC_HOST (1<<8) /* rx payloads left as is */
539 #define MODE_AIRONET_EXTEND (1<<9) /* enable Aironet extenstions */
540 #define MODE_AP_INTERFACE (1<<10) /* enable ap interface extensions */
541 #define MODE_ANTENNA_ALIGN (1<<11) /* enable antenna alignment */
542 #define MODE_ETHER_LLC (1<<12) /* enable ethernet LLC */
543 #define MODE_LEAF_NODE (1<<13) /* enable leaf node bridge */
544 #define MODE_CF_POLLABLE (1<<14) /* enable CF pollable */
545 #define MODE_MIC (1<<15) /* enable MIC */
546 u16 rmode; /* receive mode */
547 #define RXMODE_BC_MC_ADDR 0
548 #define RXMODE_BC_ADDR 1 /* ignore multicasts */
549 #define RXMODE_ADDR 2 /* ignore multicast and broadcast */
550 #define RXMODE_RFMON 3 /* wireless monitor mode */
551 #define RXMODE_RFMON_ANYBSS 4
552 #define RXMODE_LANMON 5 /* lan style monitor -- data packets only */
553 #define RXMODE_DISABLE_802_3_HEADER (1<<8) /* disables 802.3 header on rx */
554 #define RXMODE_NORMALIZED_RSSI (1<<9) /* return normalized RSSI */
557 u8 macAddr[ETH_ALEN];
561 u16 txLifetime; /* in kusec */
562 u16 rxLifetime; /* in kusec */
565 u16 u16deviceType; /* for overriding device type */
569 /*---------- Scanning/Associating ----------*/
571 #define SCANMODE_ACTIVE 0
572 #define SCANMODE_PASSIVE 1
573 #define SCANMODE_AIROSCAN 2
574 u16 probeDelay; /* in kusec */
575 u16 probeEnergyTimeout; /* in kusec */
576 u16 probeResponseTimeout;
577 u16 beaconListenTimeout;
581 #define AUTH_OPEN 0x1
582 #define AUTH_ENCRYPT 0x101
583 #define AUTH_SHAREDKEY 0x102
584 #define AUTH_ALLOW_UNENCRYPTED 0x200
585 u16 associationTimeout;
586 u16 specifiedApTimeout;
587 u16 offlineScanInterval;
588 u16 offlineScanDuration;
590 u16 maxBeaconLostTime;
592 #define DISABLE_REFRESH 0xFFFF
594 /*---------- Power save operation ----------*/
596 #define POWERSAVE_CAM 0
597 #define POWERSAVE_PSP 1
598 #define POWERSAVE_PSPCAM 2
601 u16 fastListenInterval;
605 /*---------- Ap/Ibss config items ----------*/
614 /*---------- Radio configuration ----------*/
616 #define RADIOTYPE_DEFAULT 0
617 #define RADIOTYPE_802_11 1
618 #define RADIOTYPE_LEGACY 2
622 #define TXPOWER_DEFAULT 0
624 #define RSSI_DEFAULT 0
626 #define PREAMBLE_AUTO 0
627 #define PREAMBLE_LONG 1
628 #define PREAMBLE_SHORT 2
632 /*---------- Aironet Extensions ----------*/
638 /*---------- Aironet Extensions ----------*/
640 #define MAGIC_ACTION_STSCHG 1
641 #define MAGIC_ACTION_RESUME 2
642 #define MAGIC_IGNORE_MCAST (1<<8)
643 #define MAGIC_IGNORE_BCAST (1<<9)
644 #define MAGIC_SWITCH_TO_PSP (0<<10)
645 #define MAGIC_STAY_IN_CAM (1<<10)
659 u8 bssid[4][ETH_ALEN];
673 u16 normalizedSignalStrength;
676 u8 noisePercent; /* Noise percent in last second */
677 u8 noisedBm; /* Noise dBm in last second */
678 u8 noiseAvePercent; /* Noise percent in last minute */
679 u8 noiseAvedBm; /* Noise dBm in last minute */
680 u8 noiseMaxPercent; /* Highest noise percent in last minute */
681 u8 noiseMaxdBm; /* Highest noise dbm in last minute */
685 #define STAT_NOPACKETS 0
686 #define STAT_NOCARRIERSET 10
687 #define STAT_GOTCARRIERSET 11
688 #define STAT_WRONGSSID 20
689 #define STAT_BADCHANNEL 25
690 #define STAT_BADBITRATES 30
691 #define STAT_BADPRIVACY 35
692 #define STAT_APFOUND 40
693 #define STAT_APREJECTED 50
694 #define STAT_AUTHENTICATING 60
695 #define STAT_DEAUTHENTICATED 61
696 #define STAT_AUTHTIMEOUT 62
697 #define STAT_ASSOCIATING 70
698 #define STAT_DEASSOCIATED 71
699 #define STAT_ASSOCTIMEOUT 72
700 #define STAT_NOTAIROAP 73
701 #define STAT_ASSOCIATED 80
702 #define STAT_LEAPING 90
703 #define STAT_LEAPFAILED 91
704 #define STAT_LEAPTIMEDOUT 92
705 #define STAT_LEAPCOMPLETE 93
728 char factoryAddr[ETH_ALEN];
729 char aironetAddr[ETH_ALEN];
732 char callid[ETH_ALEN];
733 char supportedRates[8];
736 u16 txPowerLevels[8];
750 /* Only present on firmware >= 5.30.17 */
753 u8 fixed[12]; /* WLAN management frame */
759 u16 index; /* First is 0 and 0xffff means end of list */
760 #define RADIO_FH 1 /* Frequency hopping radio type */
761 #define RADIO_DS 2 /* Direct sequence radio type */
762 #define RADIO_TMA 4 /* Proprietary radio used in old cards (2500) */
764 u8 bssid[ETH_ALEN]; /* Mac address of the BSS */
769 #define CAP_ESS (1<<0)
770 #define CAP_IBSS (1<<1)
771 #define CAP_PRIVACY (1<<4)
772 #define CAP_SHORTHDR (1<<5)
775 u8 rates[8]; /* Same as rates for config rid */
776 struct { /* For frequency hopping only */
786 /* Only present on firmware >= 5.30.17 */
787 BSSListRidExtra extra;
792 struct list_head list;
838 #define TXCTL_TXOK (1<<1) /* report if tx is ok */
839 #define TXCTL_TXEX (1<<2) /* report if tx fails */
840 #define TXCTL_802_3 (0<<3) /* 802.3 packet */
841 #define TXCTL_802_11 (1<<3) /* 802.11 mac packet */
842 #define TXCTL_ETHERNET (0<<4) /* payload has ethertype */
843 #define TXCTL_LLC (1<<4) /* payload is llc */
844 #define TXCTL_RELEASE (0<<5) /* release after completion */
845 #define TXCTL_NORELEASE (1<<5) /* on completion returns to host */
847 #define BUSY_FID 0x10000
850 #define AIROMAGIC 0xa55a
851 /* Warning : SIOCDEVPRIVATE may disapear during 2.5.X - Jean II */
852 #ifdef SIOCIWFIRSTPRIV
853 #ifdef SIOCDEVPRIVATE
854 #define AIROOLDIOCTL SIOCDEVPRIVATE
855 #define AIROOLDIDIFC AIROOLDIOCTL + 1
856 #endif /* SIOCDEVPRIVATE */
857 #else /* SIOCIWFIRSTPRIV */
858 #define SIOCIWFIRSTPRIV SIOCDEVPRIVATE
859 #endif /* SIOCIWFIRSTPRIV */
860 /* This may be wrong. When using the new SIOCIWFIRSTPRIV range, we probably
861 * should use only "GET" ioctls (last bit set to 1). "SET" ioctls are root
862 * only and don't return the modified struct ifreq to the application which
863 * is usually a problem. - Jean II */
864 #define AIROIOCTL SIOCIWFIRSTPRIV
865 #define AIROIDIFC AIROIOCTL + 1
867 /* Ioctl constants to be used in airo_ioctl.command */
869 #define AIROGCAP 0 // Capability rid
870 #define AIROGCFG 1 // USED A LOT
871 #define AIROGSLIST 2 // System ID list
872 #define AIROGVLIST 3 // List of specified AP's
873 #define AIROGDRVNAM 4 // NOTUSED
874 #define AIROGEHTENC 5 // NOTUSED
875 #define AIROGWEPKTMP 6
876 #define AIROGWEPKNV 7
878 #define AIROGSTATSC32 9
879 #define AIROGSTATSD32 10
880 #define AIROGMICRID 11
881 #define AIROGMICSTATS 12
882 #define AIROGFLAGS 13
885 #define AIRORSWVERSION 17
887 /* Leave gap of 40 commands after AIROGSTATSD32 for future */
889 #define AIROPCAP AIROGSTATSD32 + 40
890 #define AIROPVLIST AIROPCAP + 1
891 #define AIROPSLIST AIROPVLIST + 1
892 #define AIROPCFG AIROPSLIST + 1
893 #define AIROPSIDS AIROPCFG + 1
894 #define AIROPAPLIST AIROPSIDS + 1
895 #define AIROPMACON AIROPAPLIST + 1 /* Enable mac */
896 #define AIROPMACOFF AIROPMACON + 1 /* Disable mac */
897 #define AIROPSTCLR AIROPMACOFF + 1
898 #define AIROPWEPKEY AIROPSTCLR + 1
899 #define AIROPWEPKEYNV AIROPWEPKEY + 1
900 #define AIROPLEAPPWD AIROPWEPKEYNV + 1
901 #define AIROPLEAPUSR AIROPLEAPPWD + 1
905 #define AIROFLSHRST AIROPWEPKEYNV + 40
906 #define AIROFLSHGCHR AIROFLSHRST + 1
907 #define AIROFLSHSTFL AIROFLSHGCHR + 1
908 #define AIROFLSHPCHR AIROFLSHSTFL + 1
909 #define AIROFLPUTBUF AIROFLSHPCHR + 1
910 #define AIRORESTART AIROFLPUTBUF + 1
912 #define FLASHSIZE 32768
913 #define AUXMEMSIZE (256 * 1024)
915 typedef struct aironet_ioctl {
916 unsigned short command; // What to do
917 unsigned short len; // Len of data
918 unsigned short ridnum; // rid number
919 unsigned char __user *data; // d-data
922 static char swversion[] = "2.1";
923 #endif /* CISCO_EXT */
925 #define NUM_MODULES 2
926 #define MIC_MSGLEN_MAX 2400
927 #define EMMH32_MSGLEN_MAX MIC_MSGLEN_MAX
928 #define AIRO_DEF_MTU 2312
932 u8 enabled; // MIC enabled or not
933 u32 rxSuccess; // successful packets received
934 u32 rxIncorrectMIC; // pkts dropped due to incorrect MIC comparison
935 u32 rxNotMICed; // pkts dropped due to not being MIC'd
936 u32 rxMICPlummed; // pkts dropped due to not having a MIC plummed
937 u32 rxWrongSequence; // pkts dropped due to sequence number violation
942 u32 coeff[((EMMH32_MSGLEN_MAX)+3)>>2];
943 u64 accum; // accumulated mic, reduced to u32 in final()
944 int position; // current position (byte offset) in message
948 } part; // saves partial message word across update() calls
952 emmh32_context seed; // Context - the seed
953 u32 rx; // Received sequence number
954 u32 tx; // Tx sequence number
955 u32 window; // Start of window
956 u8 valid; // Flag to say if context is valid or not
961 miccntx mCtx; // Multicast context
962 miccntx uCtx; // Unicast context
966 unsigned int rid: 16;
967 unsigned int len: 15;
968 unsigned int valid: 1;
969 dma_addr_t host_addr;
973 unsigned int offset: 15;
975 unsigned int len: 15;
976 unsigned int valid: 1;
977 dma_addr_t host_addr;
981 unsigned int ctl: 15;
983 unsigned int len: 15;
984 unsigned int valid: 1;
985 dma_addr_t host_addr;
989 * Host receive descriptor
992 unsigned char __iomem *card_ram_off; /* offset into card memory of the
994 RxFid rx_desc; /* card receive descriptor */
995 char *virtual_host_addr; /* virtual address of host receive
1001 * Host transmit descriptor
1004 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1006 TxFid tx_desc; /* card transmit descriptor */
1007 char *virtual_host_addr; /* virtual address of host receive
1013 * Host RID descriptor
1016 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1018 Rid rid_desc; /* card RID descriptor */
1019 char *virtual_host_addr; /* virtual address of host receive
1028 #define HOST_SET (1 << 0)
1029 #define HOST_INT_TX (1 << 1) /* Interrupt on successful TX */
1030 #define HOST_INT_TXERR (1 << 2) /* Interrupt on unseccessful TX */
1031 #define HOST_LCC_PAYLOAD (1 << 4) /* LLC payload, 0 = Ethertype */
1032 #define HOST_DONT_RLSE (1 << 5) /* Don't release buffer when done */
1033 #define HOST_DONT_RETRY (1 << 6) /* Don't retry trasmit */
1034 #define HOST_CLR_AID (1 << 7) /* clear AID failure */
1035 #define HOST_RTS (1 << 9) /* Force RTS use */
1036 #define HOST_SHORT (1 << 10) /* Do short preamble */
1063 static WifiCtlHdr wifictlhdr8023 = {
1065 .ctl = HOST_DONT_RLSE,
1069 // Frequency list (map channels to frequencies)
1070 static const long frequency_list[] = { 2412, 2417, 2422, 2427, 2432, 2437, 2442,
1071 2447, 2452, 2457, 2462, 2467, 2472, 2484 };
1073 // A few details needed for WEP (Wireless Equivalent Privacy)
1074 #define MAX_KEY_SIZE 13 // 128 (?) bits
1075 #define MIN_KEY_SIZE 5 // 40 bits RC4 - WEP
1076 typedef struct wep_key_t {
1078 u8 key[16]; /* 40-bit and 104-bit keys */
1081 /* Backward compatibility */
1082 #ifndef IW_ENCODE_NOKEY
1083 #define IW_ENCODE_NOKEY 0x0800 /* Key is write only, so not present */
1084 #define IW_ENCODE_MODE (IW_ENCODE_DISABLED | IW_ENCODE_RESTRICTED | IW_ENCODE_OPEN)
1085 #endif /* IW_ENCODE_NOKEY */
1087 /* List of Wireless Handlers (new API) */
1088 static const struct iw_handler_def airo_handler_def;
1090 static const char version[] = "airo.c 0.6 (Ben Reed & Javier Achirica)";
1094 static int get_dec_u16( char *buffer, int *start, int limit );
1095 static void OUT4500( struct airo_info *, u16 register, u16 value );
1096 static unsigned short IN4500( struct airo_info *, u16 register );
1097 static u16 setup_card(struct airo_info*, u8 *mac, int lock);
1098 static int enable_MAC(struct airo_info *ai, int lock);
1099 static void disable_MAC(struct airo_info *ai, int lock);
1100 static void enable_interrupts(struct airo_info*);
1101 static void disable_interrupts(struct airo_info*);
1102 static u16 issuecommand(struct airo_info*, Cmd *pCmd, Resp *pRsp);
1103 static int bap_setup(struct airo_info*, u16 rid, u16 offset, int whichbap);
1104 static int aux_bap_read(struct airo_info*, u16 *pu16Dst, int bytelen,
1106 static int fast_bap_read(struct airo_info*, u16 *pu16Dst, int bytelen,
1108 static int bap_write(struct airo_info*, const u16 *pu16Src, int bytelen,
1110 static int PC4500_accessrid(struct airo_info*, u16 rid, u16 accmd);
1111 static int PC4500_readrid(struct airo_info*, u16 rid, void *pBuf, int len, int lock);
1112 static int PC4500_writerid(struct airo_info*, u16 rid, const void
1113 *pBuf, int len, int lock);
1114 static int do_writerid( struct airo_info*, u16 rid, const void *rid_data,
1115 int len, int dummy );
1116 static u16 transmit_allocate(struct airo_info*, int lenPayload, int raw);
1117 static int transmit_802_3_packet(struct airo_info*, int len, char *pPacket);
1118 static int transmit_802_11_packet(struct airo_info*, int len, char *pPacket);
1120 static int mpi_send_packet (struct net_device *dev);
1121 static void mpi_unmap_card(struct pci_dev *pci);
1122 static void mpi_receive_802_3(struct airo_info *ai);
1123 static void mpi_receive_802_11(struct airo_info *ai);
1124 static int waitbusy (struct airo_info *ai);
1126 static irqreturn_t airo_interrupt( int irq, void* dev_id);
1127 static int airo_thread(void *data);
1128 static void timer_func( struct net_device *dev );
1129 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd);
1130 static struct iw_statistics *airo_get_wireless_stats (struct net_device *dev);
1131 static void airo_read_wireless_stats (struct airo_info *local);
1133 static int readrids(struct net_device *dev, aironet_ioctl *comp);
1134 static int writerids(struct net_device *dev, aironet_ioctl *comp);
1135 static int flashcard(struct net_device *dev, aironet_ioctl *comp);
1136 #endif /* CISCO_EXT */
1137 static void micinit(struct airo_info *ai);
1138 static int micsetup(struct airo_info *ai);
1139 static int encapsulate(struct airo_info *ai, etherHead *pPacket, MICBuffer *buffer, int len);
1140 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *pPacket, u16 payLen);
1142 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi);
1143 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm);
1145 static void airo_networks_free(struct airo_info *ai);
1148 struct net_device_stats stats;
1149 struct net_device *dev;
1150 struct list_head dev_list;
1151 /* Note, we can have MAX_FIDS outstanding. FIDs are 16-bits, so we
1152 use the high bit to mark whether it is in use. */
1154 #define MPI_MAX_FIDS 1
1157 char keyindex; // Used with auto wep
1158 char defindex; // Used with auto wep
1159 struct proc_dir_entry *proc_entry;
1160 spinlock_t aux_lock;
1161 #define FLAG_RADIO_OFF 0 /* User disabling of MAC */
1162 #define FLAG_RADIO_DOWN 1 /* ifup/ifdown disabling of MAC */
1163 #define FLAG_RADIO_MASK 0x03
1164 #define FLAG_ENABLED 2
1165 #define FLAG_ADHOC 3 /* Needed by MIC */
1166 #define FLAG_MIC_CAPABLE 4
1167 #define FLAG_UPDATE_MULTI 5
1168 #define FLAG_UPDATE_UNI 6
1169 #define FLAG_802_11 7
1170 #define FLAG_PROMISC 8 /* IFF_PROMISC 0x100 - include/linux/if.h */
1171 #define FLAG_PENDING_XMIT 9
1172 #define FLAG_PENDING_XMIT11 10
1174 #define FLAG_REGISTERED 12
1175 #define FLAG_COMMIT 13
1176 #define FLAG_RESET 14
1177 #define FLAG_FLASHING 15
1178 #define FLAG_WPA_CAPABLE 16
1179 unsigned long flags;
1182 #define JOB_XMIT11 2
1184 #define JOB_PROMISC 4
1187 #define JOB_AUTOWEP 7
1188 #define JOB_WSTATS 8
1189 #define JOB_SCAN_RESULTS 9
1191 int (*bap_read)(struct airo_info*, u16 *pu16Dst, int bytelen,
1193 unsigned short *flash;
1195 struct task_struct *list_bss_task;
1196 struct task_struct *airo_thread_task;
1197 struct semaphore sem;
1198 wait_queue_head_t thr_wait;
1199 unsigned long expires;
1201 struct sk_buff *skb;
1204 struct net_device *wifidev;
1205 struct iw_statistics wstats; // wireless stats
1206 unsigned long scan_timeout; /* Time scan should be read */
1207 struct iw_spy_data spy_data;
1208 struct iw_public_data wireless_data;
1210 struct crypto_cipher *tfm;
1212 mic_statistics micstats;
1213 HostRxDesc rxfids[MPI_MAX_FIDS]; // rx/tx/config MPI350 descriptors
1214 HostTxDesc txfids[MPI_MAX_FIDS];
1215 HostRidDesc config_desc;
1216 unsigned long ridbus; // phys addr of config_desc
1217 struct sk_buff_head txq;// tx queue used by mpi350 code
1218 struct pci_dev *pci;
1219 unsigned char __iomem *pcimem;
1220 unsigned char __iomem *pciaux;
1221 unsigned char *shared;
1222 dma_addr_t shared_dma;
1226 #define PCI_SHARED_LEN 2*MPI_MAX_FIDS*PKTSIZE+RIDSIZE
1227 char proc_name[IFNAMSIZ];
1229 /* WPA-related stuff */
1230 unsigned int bssListFirst;
1231 unsigned int bssListNext;
1232 unsigned int bssListRidLen;
1234 struct list_head network_list;
1235 struct list_head network_free_list;
1236 BSSListElement *networks;
1239 static inline int bap_read(struct airo_info *ai, u16 *pu16Dst, int bytelen,
1241 return ai->bap_read(ai, pu16Dst, bytelen, whichbap);
1244 static int setup_proc_entry( struct net_device *dev,
1245 struct airo_info *apriv );
1246 static int takedown_proc_entry( struct net_device *dev,
1247 struct airo_info *apriv );
1249 static int cmdreset(struct airo_info *ai);
1250 static int setflashmode (struct airo_info *ai);
1251 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime);
1252 static int flashputbuf(struct airo_info *ai);
1253 static int flashrestart(struct airo_info *ai,struct net_device *dev);
1255 #define airo_print(type, name, fmt, args...) \
1256 printk(type DRV_NAME "(%s): " fmt "\n", name, ##args)
1258 #define airo_print_info(name, fmt, args...) \
1259 airo_print(KERN_INFO, name, fmt, ##args)
1261 #define airo_print_dbg(name, fmt, args...) \
1262 airo_print(KERN_DEBUG, name, fmt, ##args)
1264 #define airo_print_warn(name, fmt, args...) \
1265 airo_print(KERN_WARNING, name, fmt, ##args)
1267 #define airo_print_err(name, fmt, args...) \
1268 airo_print(KERN_ERR, name, fmt, ##args)
1271 /***********************************************************************
1273 ***********************************************************************
1276 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq);
1277 static void MoveWindow(miccntx *context, u32 micSeq);
1278 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen,
1279 struct crypto_cipher *tfm);
1280 static void emmh32_init(emmh32_context *context);
1281 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len);
1282 static void emmh32_final(emmh32_context *context, u8 digest[4]);
1283 static int flashpchar(struct airo_info *ai,int byte,int dwelltime);
1285 /* micinit - Initialize mic seed */
1287 static void micinit(struct airo_info *ai)
1291 clear_bit(JOB_MIC, &ai->jobs);
1292 PC4500_readrid(ai, RID_MIC, &mic_rid, sizeof(mic_rid), 0);
1295 ai->micstats.enabled = (mic_rid.state & 0x00FF) ? 1 : 0;
1297 if (ai->micstats.enabled) {
1298 /* Key must be valid and different */
1299 if (mic_rid.multicastValid && (!ai->mod[0].mCtx.valid ||
1300 (memcmp (ai->mod[0].mCtx.key, mic_rid.multicast,
1301 sizeof(ai->mod[0].mCtx.key)) != 0))) {
1302 /* Age current mic Context */
1303 memcpy(&ai->mod[1].mCtx,&ai->mod[0].mCtx,sizeof(miccntx));
1304 /* Initialize new context */
1305 memcpy(&ai->mod[0].mCtx.key,mic_rid.multicast,sizeof(mic_rid.multicast));
1306 ai->mod[0].mCtx.window = 33; //Window always points to the middle
1307 ai->mod[0].mCtx.rx = 0; //Rx Sequence numbers
1308 ai->mod[0].mCtx.tx = 0; //Tx sequence numbers
1309 ai->mod[0].mCtx.valid = 1; //Key is now valid
1311 /* Give key to mic seed */
1312 emmh32_setseed(&ai->mod[0].mCtx.seed,mic_rid.multicast,sizeof(mic_rid.multicast), ai->tfm);
1315 /* Key must be valid and different */
1316 if (mic_rid.unicastValid && (!ai->mod[0].uCtx.valid ||
1317 (memcmp(ai->mod[0].uCtx.key, mic_rid.unicast,
1318 sizeof(ai->mod[0].uCtx.key)) != 0))) {
1319 /* Age current mic Context */
1320 memcpy(&ai->mod[1].uCtx,&ai->mod[0].uCtx,sizeof(miccntx));
1321 /* Initialize new context */
1322 memcpy(&ai->mod[0].uCtx.key,mic_rid.unicast,sizeof(mic_rid.unicast));
1324 ai->mod[0].uCtx.window = 33; //Window always points to the middle
1325 ai->mod[0].uCtx.rx = 0; //Rx Sequence numbers
1326 ai->mod[0].uCtx.tx = 0; //Tx sequence numbers
1327 ai->mod[0].uCtx.valid = 1; //Key is now valid
1329 //Give key to mic seed
1330 emmh32_setseed(&ai->mod[0].uCtx.seed, mic_rid.unicast, sizeof(mic_rid.unicast), ai->tfm);
1333 /* So next time we have a valid key and mic is enabled, we will update
1334 * the sequence number if the key is the same as before.
1336 ai->mod[0].uCtx.valid = 0;
1337 ai->mod[0].mCtx.valid = 0;
1341 /* micsetup - Get ready for business */
1343 static int micsetup(struct airo_info *ai) {
1346 if (ai->tfm == NULL)
1347 ai->tfm = crypto_alloc_cipher("aes", 0, CRYPTO_ALG_ASYNC);
1349 if (IS_ERR(ai->tfm)) {
1350 airo_print_err(ai->dev->name, "failed to load transform for AES");
1355 for (i=0; i < NUM_MODULES; i++) {
1356 memset(&ai->mod[i].mCtx,0,sizeof(miccntx));
1357 memset(&ai->mod[i].uCtx,0,sizeof(miccntx));
1362 static char micsnap[] = {0xAA,0xAA,0x03,0x00,0x40,0x96,0x00,0x02};
1364 /*===========================================================================
1365 * Description: Mic a packet
1367 * Inputs: etherHead * pointer to an 802.3 frame
1369 * Returns: BOOLEAN if successful, otherwise false.
1370 * PacketTxLen will be updated with the mic'd packets size.
1372 * Caveats: It is assumed that the frame buffer will already
1373 * be big enough to hold the largets mic message possible.
1374 * (No memory allocation is done here).
1376 * Author: sbraneky (10/15/01)
1377 * Merciless hacks by rwilcher (1/14/02)
1380 static int encapsulate(struct airo_info *ai ,etherHead *frame, MICBuffer *mic, int payLen)
1384 // Determine correct context
1385 // If not adhoc, always use unicast key
1387 if (test_bit(FLAG_ADHOC, &ai->flags) && (frame->da[0] & 0x1))
1388 context = &ai->mod[0].mCtx;
1390 context = &ai->mod[0].uCtx;
1392 if (!context->valid)
1395 mic->typelen = htons(payLen + 16); //Length of Mic'd packet
1397 memcpy(&mic->u.snap, micsnap, sizeof(micsnap)); // Add Snap
1400 mic->seq = htonl(context->tx);
1403 emmh32_init(&context->seed); // Mic the packet
1404 emmh32_update(&context->seed,frame->da,ETH_ALEN * 2); // DA,SA
1405 emmh32_update(&context->seed,(u8*)&mic->typelen,10); // Type/Length and Snap
1406 emmh32_update(&context->seed,(u8*)&mic->seq,sizeof(mic->seq)); //SEQ
1407 emmh32_update(&context->seed,frame->da + ETH_ALEN * 2,payLen); //payload
1408 emmh32_final(&context->seed, (u8*)&mic->mic);
1410 /* New Type/length ?????????? */
1411 mic->typelen = 0; //Let NIC know it could be an oversized packet
1423 /*===========================================================================
1424 * Description: Decapsulates a MIC'd packet and returns the 802.3 packet
1425 * (removes the MIC stuff) if packet is a valid packet.
1427 * Inputs: etherHead pointer to the 802.3 packet
1429 * Returns: BOOLEAN - TRUE if packet should be dropped otherwise FALSE
1431 * Author: sbraneky (10/15/01)
1432 * Merciless hacks by rwilcher (1/14/02)
1433 *---------------------------------------------------------------------------
1436 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *eth, u16 payLen)
1442 mic_error micError = NONE;
1444 // Check if the packet is a Mic'd packet
1446 if (!ai->micstats.enabled) {
1447 //No Mic set or Mic OFF but we received a MIC'd packet.
1448 if (memcmp ((u8*)eth + 14, micsnap, sizeof(micsnap)) == 0) {
1449 ai->micstats.rxMICPlummed++;
1455 if (ntohs(mic->typelen) == 0x888E)
1458 if (memcmp (mic->u.snap, micsnap, sizeof(micsnap)) != 0) {
1459 // Mic enabled but packet isn't Mic'd
1460 ai->micstats.rxMICPlummed++;
1464 micSEQ = ntohl(mic->seq); //store SEQ as CPU order
1466 //At this point we a have a mic'd packet and mic is enabled
1467 //Now do the mic error checking.
1469 //Receive seq must be odd
1470 if ( (micSEQ & 1) == 0 ) {
1471 ai->micstats.rxWrongSequence++;
1475 for (i = 0; i < NUM_MODULES; i++) {
1476 int mcast = eth->da[0] & 1;
1477 //Determine proper context
1478 context = mcast ? &ai->mod[i].mCtx : &ai->mod[i].uCtx;
1480 //Make sure context is valid
1481 if (!context->valid) {
1483 micError = NOMICPLUMMED;
1489 mic->typelen = htons(payLen + sizeof(MICBuffer) - 2);
1491 emmh32_init(&context->seed);
1492 emmh32_update(&context->seed, eth->da, ETH_ALEN*2);
1493 emmh32_update(&context->seed, (u8 *)&mic->typelen, sizeof(mic->typelen)+sizeof(mic->u.snap));
1494 emmh32_update(&context->seed, (u8 *)&mic->seq,sizeof(mic->seq));
1495 emmh32_update(&context->seed, eth->da + ETH_ALEN*2,payLen);
1497 emmh32_final(&context->seed, digest);
1499 if (memcmp(digest, &mic->mic, 4)) { //Make sure the mics match
1502 micError = INCORRECTMIC;
1506 //Check Sequence number if mics pass
1507 if (RxSeqValid(ai, context, mcast, micSEQ) == SUCCESS) {
1508 ai->micstats.rxSuccess++;
1512 micError = SEQUENCE;
1515 // Update statistics
1517 case NOMICPLUMMED: ai->micstats.rxMICPlummed++; break;
1518 case SEQUENCE: ai->micstats.rxWrongSequence++; break;
1519 case INCORRECTMIC: ai->micstats.rxIncorrectMIC++; break;
1526 /*===========================================================================
1527 * Description: Checks the Rx Seq number to make sure it is valid
1528 * and hasn't already been received
1530 * Inputs: miccntx - mic context to check seq against
1531 * micSeq - the Mic seq number
1533 * Returns: TRUE if valid otherwise FALSE.
1535 * Author: sbraneky (10/15/01)
1536 * Merciless hacks by rwilcher (1/14/02)
1537 *---------------------------------------------------------------------------
1540 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq)
1544 //Allow for the ap being rebooted - if it is then use the next
1545 //sequence number of the current sequence number - might go backwards
1548 if (test_bit(FLAG_UPDATE_MULTI, &ai->flags)) {
1549 clear_bit (FLAG_UPDATE_MULTI, &ai->flags);
1550 context->window = (micSeq > 33) ? micSeq : 33;
1551 context->rx = 0; // Reset rx
1553 } else if (test_bit(FLAG_UPDATE_UNI, &ai->flags)) {
1554 clear_bit (FLAG_UPDATE_UNI, &ai->flags);
1555 context->window = (micSeq > 33) ? micSeq : 33; // Move window
1556 context->rx = 0; // Reset rx
1559 //Make sequence number relative to START of window
1560 seq = micSeq - (context->window - 33);
1562 //Too old of a SEQ number to check.
1567 //Window is infinite forward
1568 MoveWindow(context,micSeq);
1572 // We are in the window. Now check the context rx bit to see if it was already sent
1573 seq >>= 1; //divide by 2 because we only have odd numbers
1574 index = 1 << seq; //Get an index number
1576 if (!(context->rx & index)) {
1577 //micSEQ falls inside the window.
1578 //Add seqence number to the list of received numbers.
1579 context->rx |= index;
1581 MoveWindow(context,micSeq);
1588 static void MoveWindow(miccntx *context, u32 micSeq)
1592 //Move window if seq greater than the middle of the window
1593 if (micSeq > context->window) {
1594 shift = (micSeq - context->window) >> 1;
1598 context->rx >>= shift;
1602 context->window = micSeq; //Move window
1606 /*==============================================*/
1607 /*========== EMMH ROUTINES ====================*/
1608 /*==============================================*/
1610 /* mic accumulate */
1611 #define MIC_ACCUM(val) \
1612 context->accum += (u64)(val) * context->coeff[coeff_position++];
1614 static unsigned char aes_counter[16];
1616 /* expand the key to fill the MMH coefficient array */
1617 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen,
1618 struct crypto_cipher *tfm)
1620 /* take the keying material, expand if necessary, truncate at 16-bytes */
1621 /* run through AES counter mode to generate context->coeff[] */
1625 u8 *cipher, plain[16];
1627 crypto_cipher_setkey(tfm, pkey, 16);
1629 for (i = 0; i < ARRAY_SIZE(context->coeff); ) {
1630 aes_counter[15] = (u8)(counter >> 0);
1631 aes_counter[14] = (u8)(counter >> 8);
1632 aes_counter[13] = (u8)(counter >> 16);
1633 aes_counter[12] = (u8)(counter >> 24);
1635 memcpy (plain, aes_counter, 16);
1636 crypto_cipher_encrypt_one(tfm, plain, plain);
1638 for (j = 0; (j < 16) && (i < ARRAY_SIZE(context->coeff)); ) {
1639 context->coeff[i++] = ntohl(*(__be32 *)&cipher[j]);
1645 /* prepare for calculation of a new mic */
1646 static void emmh32_init(emmh32_context *context)
1648 /* prepare for new mic calculation */
1650 context->position = 0;
1653 /* add some bytes to the mic calculation */
1654 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len)
1656 int coeff_position, byte_position;
1658 if (len == 0) return;
1660 coeff_position = context->position >> 2;
1662 /* deal with partial 32-bit word left over from last update */
1663 byte_position = context->position & 3;
1664 if (byte_position) {
1665 /* have a partial word in part to deal with */
1667 if (len == 0) return;
1668 context->part.d8[byte_position++] = *pOctets++;
1669 context->position++;
1671 } while (byte_position < 4);
1672 MIC_ACCUM(ntohl(context->part.d32));
1675 /* deal with full 32-bit words */
1677 MIC_ACCUM(ntohl(*(__be32 *)pOctets));
1678 context->position += 4;
1683 /* deal with partial 32-bit word that will be left over from this update */
1686 context->part.d8[byte_position++] = *pOctets++;
1687 context->position++;
1692 /* mask used to zero empty bytes for final partial word */
1693 static u32 mask32[4] = { 0x00000000L, 0xFF000000L, 0xFFFF0000L, 0xFFFFFF00L };
1695 /* calculate the mic */
1696 static void emmh32_final(emmh32_context *context, u8 digest[4])
1698 int coeff_position, byte_position;
1704 coeff_position = context->position >> 2;
1706 /* deal with partial 32-bit word left over from last update */
1707 byte_position = context->position & 3;
1708 if (byte_position) {
1709 /* have a partial word in part to deal with */
1710 val = ntohl(context->part.d32);
1711 MIC_ACCUM(val & mask32[byte_position]); /* zero empty bytes */
1714 /* reduce the accumulated u64 to a 32-bit MIC */
1715 sum = context->accum;
1716 stmp = (sum & 0xffffffffLL) - ((sum >> 32) * 15);
1717 utmp = (stmp & 0xffffffffLL) - ((stmp >> 32) * 15);
1718 sum = utmp & 0xffffffffLL;
1719 if (utmp > 0x10000000fLL)
1723 digest[0] = (val>>24) & 0xFF;
1724 digest[1] = (val>>16) & 0xFF;
1725 digest[2] = (val>>8) & 0xFF;
1726 digest[3] = val & 0xFF;
1729 static int readBSSListRid(struct airo_info *ai, int first,
1736 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
1737 memset(&cmd, 0, sizeof(cmd));
1738 cmd.cmd=CMD_LISTBSS;
1739 if (down_interruptible(&ai->sem))
1740 return -ERESTARTSYS;
1741 ai->list_bss_task = current;
1742 issuecommand(ai, &cmd, &rsp);
1744 /* Let the command take effect */
1745 schedule_timeout_uninterruptible(3 * HZ);
1746 ai->list_bss_task = NULL;
1748 rc = PC4500_readrid(ai, first ? ai->bssListFirst : ai->bssListNext,
1749 list, ai->bssListRidLen, 1);
1751 list->len = le16_to_cpu(list->len);
1752 list->index = le16_to_cpu(list->index);
1753 list->radioType = le16_to_cpu(list->radioType);
1754 list->cap = le16_to_cpu(list->cap);
1755 list->beaconInterval = le16_to_cpu(list->beaconInterval);
1756 list->fh.dwell = le16_to_cpu(list->fh.dwell);
1757 list->dsChannel = le16_to_cpu(list->dsChannel);
1758 list->atimWindow = le16_to_cpu(list->atimWindow);
1759 list->dBm = le16_to_cpu(list->dBm);
1763 static int readWepKeyRid(struct airo_info*ai, WepKeyRid *wkr, int temp, int lock) {
1764 int rc = PC4500_readrid(ai, temp ? RID_WEP_TEMP : RID_WEP_PERM,
1765 wkr, sizeof(*wkr), lock);
1767 wkr->len = le16_to_cpu(wkr->len);
1768 wkr->kindex = le16_to_cpu(wkr->kindex);
1769 wkr->klen = le16_to_cpu(wkr->klen);
1772 /* In the writeXXXRid routines we copy the rids so that we don't screwup
1773 * the originals when we endian them... */
1774 static int writeWepKeyRid(struct airo_info*ai, WepKeyRid *pwkr, int perm, int lock) {
1776 WepKeyRid wkr = *pwkr;
1778 wkr.len = cpu_to_le16(wkr.len);
1779 wkr.kindex = cpu_to_le16(wkr.kindex);
1780 wkr.klen = cpu_to_le16(wkr.klen);
1781 rc = PC4500_writerid(ai, RID_WEP_TEMP, &wkr, sizeof(wkr), lock);
1782 if (rc!=SUCCESS) airo_print_err(ai->dev->name, "WEP_TEMP set %x", rc);
1784 rc = PC4500_writerid(ai, RID_WEP_PERM, &wkr, sizeof(wkr), lock);
1786 airo_print_err(ai->dev->name, "WEP_PERM set %x", rc);
1792 static int readSsidRid(struct airo_info*ai, SsidRid *ssidr)
1794 return PC4500_readrid(ai, RID_SSID, ssidr, sizeof(*ssidr), 1);
1797 static int writeSsidRid(struct airo_info*ai, SsidRid *pssidr, int lock)
1799 return PC4500_writerid(ai, RID_SSID, pssidr, sizeof(*pssidr), lock);
1802 static int readConfigRid(struct airo_info*ai, int lock) {
1810 rc = PC4500_readrid(ai, RID_ACTUALCONFIG, &cfg, sizeof(cfg), lock);
1814 for(s = &cfg.len; s <= &cfg.rtsThres; s++) *s = le16_to_cpu(*s);
1816 for(s = &cfg.shortRetryLimit; s <= &cfg.radioType; s++)
1817 *s = le16_to_cpu(*s);
1819 for(s = &cfg.txPower; s <= &cfg.radioSpecific; s++)
1820 *s = le16_to_cpu(*s);
1822 for(s = &cfg.arlThreshold; s <= &cfg._reserved4[0]; s++)
1823 *s = cpu_to_le16(*s);
1825 for(s = &cfg.autoWake; s <= &cfg.autoWake; s++)
1826 *s = cpu_to_le16(*s);
1831 static inline void checkThrottle(struct airo_info *ai) {
1833 /* Old hardware had a limit on encryption speed */
1834 if (ai->config.authType != AUTH_OPEN && maxencrypt) {
1835 for(i=0; i<8; i++) {
1836 if (ai->config.rates[i] > maxencrypt) {
1837 ai->config.rates[i] = 0;
1842 static int writeConfigRid(struct airo_info*ai, int lock) {
1846 if (!test_bit (FLAG_COMMIT, &ai->flags))
1849 clear_bit (FLAG_COMMIT, &ai->flags);
1850 clear_bit (FLAG_RESET, &ai->flags);
1854 if ((cfgr.opmode & 0xFF) == MODE_STA_IBSS)
1855 set_bit(FLAG_ADHOC, &ai->flags);
1857 clear_bit(FLAG_ADHOC, &ai->flags);
1859 for(s = &cfgr.len; s <= &cfgr.rtsThres; s++) *s = cpu_to_le16(*s);
1861 for(s = &cfgr.shortRetryLimit; s <= &cfgr.radioType; s++)
1862 *s = cpu_to_le16(*s);
1864 for(s = &cfgr.txPower; s <= &cfgr.radioSpecific; s++)
1865 *s = cpu_to_le16(*s);
1867 for(s = &cfgr.arlThreshold; s <= &cfgr._reserved4[0]; s++)
1868 *s = cpu_to_le16(*s);
1870 for(s = &cfgr.autoWake; s <= &cfgr.autoWake; s++)
1871 *s = cpu_to_le16(*s);
1873 return PC4500_writerid( ai, RID_CONFIG, &cfgr, sizeof(cfgr), lock);
1875 static int readStatusRid(struct airo_info*ai, StatusRid *statr, int lock) {
1876 int rc = PC4500_readrid(ai, RID_STATUS, statr, sizeof(*statr), lock);
1879 statr->len = le16_to_cpu(statr->len);
1880 for(s = &statr->mode; s <= &statr->SSIDlen; s++) *s = le16_to_cpu(*s);
1882 for(s = &statr->beaconPeriod; s <= &statr->shortPreamble; s++)
1883 *s = le16_to_cpu(*s);
1884 statr->load = le16_to_cpu(statr->load);
1885 statr->assocStatus = le16_to_cpu(statr->assocStatus);
1888 static int readAPListRid(struct airo_info*ai, APListRid *aplr) {
1889 int rc = PC4500_readrid(ai, RID_APLIST, aplr, sizeof(*aplr), 1);
1890 aplr->len = le16_to_cpu(aplr->len);
1893 static int writeAPListRid(struct airo_info*ai, APListRid *aplr, int lock) {
1895 aplr->len = cpu_to_le16(aplr->len);
1896 rc = PC4500_writerid(ai, RID_APLIST, aplr, sizeof(*aplr), lock);
1899 static int readCapabilityRid(struct airo_info*ai, CapabilityRid *capr, int lock) {
1900 int rc = PC4500_readrid(ai, RID_CAPABILITIES, capr, sizeof(*capr), lock);
1903 capr->len = le16_to_cpu(capr->len);
1904 capr->prodNum = le16_to_cpu(capr->prodNum);
1905 capr->radioType = le16_to_cpu(capr->radioType);
1906 capr->country = le16_to_cpu(capr->country);
1907 for(s = &capr->txPowerLevels[0]; s <= &capr->requiredHard; s++)
1908 *s = le16_to_cpu(*s);
1911 static int readStatsRid(struct airo_info*ai, StatsRid *sr, int rid, int lock) {
1912 int rc = PC4500_readrid(ai, rid, sr, sizeof(*sr), lock);
1915 sr->len = le16_to_cpu(sr->len);
1916 for(i = &sr->vals[0]; i <= &sr->vals[99]; i++) *i = le32_to_cpu(*i);
1920 static void try_auto_wep(struct airo_info *ai)
1922 if (auto_wep && !(ai->flags & FLAG_RADIO_DOWN)) {
1923 ai->expires = RUN_AT(3*HZ);
1924 wake_up_interruptible(&ai->thr_wait);
1928 static int airo_open(struct net_device *dev) {
1929 struct airo_info *ai = dev->priv;
1932 if (test_bit(FLAG_FLASHING, &ai->flags))
1935 /* Make sure the card is configured.
1936 * Wireless Extensions may postpone config changes until the card
1937 * is open (to pipeline changes and speed-up card setup). If
1938 * those changes are not yet commited, do it now - Jean II */
1939 if (test_bit(FLAG_COMMIT, &ai->flags)) {
1941 writeConfigRid(ai, 1);
1944 if (ai->wifidev != dev) {
1945 clear_bit(JOB_DIE, &ai->jobs);
1946 ai->airo_thread_task = kthread_run(airo_thread, dev, dev->name);
1947 if (IS_ERR(ai->airo_thread_task))
1948 return (int)PTR_ERR(ai->airo_thread_task);
1950 rc = request_irq(dev->irq, airo_interrupt, IRQF_SHARED,
1953 airo_print_err(dev->name,
1954 "register interrupt %d failed, rc %d",
1956 set_bit(JOB_DIE, &ai->jobs);
1957 kthread_stop(ai->airo_thread_task);
1961 /* Power on the MAC controller (which may have been disabled) */
1962 clear_bit(FLAG_RADIO_DOWN, &ai->flags);
1963 enable_interrupts(ai);
1969 netif_start_queue(dev);
1973 static int mpi_start_xmit(struct sk_buff *skb, struct net_device *dev) {
1974 int npacks, pending;
1975 unsigned long flags;
1976 struct airo_info *ai = dev->priv;
1979 airo_print_err(dev->name, "%s: skb == NULL!",__FUNCTION__);
1982 npacks = skb_queue_len (&ai->txq);
1984 if (npacks >= MAXTXQ - 1) {
1985 netif_stop_queue (dev);
1986 if (npacks > MAXTXQ) {
1987 ai->stats.tx_fifo_errors++;
1990 skb_queue_tail (&ai->txq, skb);
1994 spin_lock_irqsave(&ai->aux_lock, flags);
1995 skb_queue_tail (&ai->txq, skb);
1996 pending = test_bit(FLAG_PENDING_XMIT, &ai->flags);
1997 spin_unlock_irqrestore(&ai->aux_lock,flags);
1998 netif_wake_queue (dev);
2001 set_bit(FLAG_PENDING_XMIT, &ai->flags);
2002 mpi_send_packet (dev);
2010 * Attempt to transmit a packet. Can be called from interrupt
2011 * or transmit . return number of packets we tried to send
2014 static int mpi_send_packet (struct net_device *dev)
2016 struct sk_buff *skb;
2017 unsigned char *buffer;
2020 struct airo_info *ai = dev->priv;
2023 /* get a packet to send */
2025 if ((skb = skb_dequeue(&ai->txq)) == NULL) {
2026 airo_print_err(dev->name,
2027 "%s: Dequeue'd zero in send_packet()",
2032 /* check min length*/
2033 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2036 ai->txfids[0].tx_desc.offset = 0;
2037 ai->txfids[0].tx_desc.valid = 1;
2038 ai->txfids[0].tx_desc.eoc = 1;
2039 ai->txfids[0].tx_desc.len =len+sizeof(WifiHdr);
2042 * Magic, the cards firmware needs a length count (2 bytes) in the host buffer
2043 * right after TXFID_HDR.The TXFID_HDR contains the status short so payloadlen
2044 * is immediatly after it. ------------------------------------------------
2045 * |TXFIDHDR+STATUS|PAYLOADLEN|802.3HDR|PACKETDATA|
2046 * ------------------------------------------------
2049 memcpy((char *)ai->txfids[0].virtual_host_addr,
2050 (char *)&wifictlhdr8023, sizeof(wifictlhdr8023));
2052 payloadLen = (__le16 *)(ai->txfids[0].virtual_host_addr +
2053 sizeof(wifictlhdr8023));
2054 sendbuf = ai->txfids[0].virtual_host_addr +
2055 sizeof(wifictlhdr8023) + 2 ;
2058 * Firmware automaticly puts 802 header on so
2059 * we don't need to account for it in the length
2061 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
2062 (ntohs(((__be16 *)buffer)[6]) != 0x888E)) {
2065 if (encapsulate(ai, (etherHead *)buffer, &pMic, len - sizeof(etherHead)) != SUCCESS)
2068 *payloadLen = cpu_to_le16(len-sizeof(etherHead)+sizeof(pMic));
2069 ai->txfids[0].tx_desc.len += sizeof(pMic);
2070 /* copy data into airo dma buffer */
2071 memcpy (sendbuf, buffer, sizeof(etherHead));
2072 buffer += sizeof(etherHead);
2073 sendbuf += sizeof(etherHead);
2074 memcpy (sendbuf, &pMic, sizeof(pMic));
2075 sendbuf += sizeof(pMic);
2076 memcpy (sendbuf, buffer, len - sizeof(etherHead));
2078 *payloadLen = cpu_to_le16(len - sizeof(etherHead));
2080 dev->trans_start = jiffies;
2082 /* copy data into airo dma buffer */
2083 memcpy(sendbuf, buffer, len);
2086 memcpy_toio(ai->txfids[0].card_ram_off,
2087 &ai->txfids[0].tx_desc, sizeof(TxFid));
2089 OUT4500(ai, EVACK, 8);
2091 dev_kfree_skb_any(skb);
2095 static void get_tx_error(struct airo_info *ai, s32 fid)
2100 status = ((WifiCtlHdr *)ai->txfids[0].virtual_host_addr)->ctlhdr.status;
2102 if (bap_setup(ai, ai->fids[fid] & 0xffff, 4, BAP0) != SUCCESS)
2104 bap_read(ai, &status, 2, BAP0);
2106 if (le16_to_cpu(status) & 2) /* Too many retries */
2107 ai->stats.tx_aborted_errors++;
2108 if (le16_to_cpu(status) & 4) /* Transmit lifetime exceeded */
2109 ai->stats.tx_heartbeat_errors++;
2110 if (le16_to_cpu(status) & 8) /* Aid fail */
2112 if (le16_to_cpu(status) & 0x10) /* MAC disabled */
2113 ai->stats.tx_carrier_errors++;
2114 if (le16_to_cpu(status) & 0x20) /* Association lost */
2116 /* We produce a TXDROP event only for retry or lifetime
2117 * exceeded, because that's the only status that really mean
2118 * that this particular node went away.
2119 * Other errors means that *we* screwed up. - Jean II */
2120 if ((le16_to_cpu(status) & 2) ||
2121 (le16_to_cpu(status) & 4)) {
2122 union iwreq_data wrqu;
2125 /* Faster to skip over useless data than to do
2126 * another bap_setup(). We are at offset 0x6 and
2127 * need to go to 0x18 and read 6 bytes - Jean II */
2128 bap_read(ai, (u16 *) junk, 0x18, BAP0);
2130 /* Copy 802.11 dest address.
2131 * We use the 802.11 header because the frame may
2132 * not be 802.3 or may be mangled...
2133 * In Ad-Hoc mode, it will be the node address.
2134 * In managed mode, it will be most likely the AP addr
2135 * User space will figure out how to convert it to
2136 * whatever it needs (IP address or else).
2138 memcpy(wrqu.addr.sa_data, junk + 0x12, ETH_ALEN);
2139 wrqu.addr.sa_family = ARPHRD_ETHER;
2141 /* Send event to user space */
2142 wireless_send_event(ai->dev, IWEVTXDROP, &wrqu, NULL);
2146 static void airo_end_xmit(struct net_device *dev) {
2149 struct airo_info *priv = dev->priv;
2150 struct sk_buff *skb = priv->xmit.skb;
2151 int fid = priv->xmit.fid;
2152 u32 *fids = priv->fids;
2154 clear_bit(JOB_XMIT, &priv->jobs);
2155 clear_bit(FLAG_PENDING_XMIT, &priv->flags);
2156 status = transmit_802_3_packet (priv, fids[fid], skb->data);
2160 if ( status == SUCCESS ) {
2161 dev->trans_start = jiffies;
2162 for (; i < MAX_FIDS / 2 && (priv->fids[i] & 0xffff0000); i++);
2164 priv->fids[fid] &= 0xffff;
2165 priv->stats.tx_window_errors++;
2167 if (i < MAX_FIDS / 2)
2168 netif_wake_queue(dev);
2172 static int airo_start_xmit(struct sk_buff *skb, struct net_device *dev) {
2175 struct airo_info *priv = dev->priv;
2176 u32 *fids = priv->fids;
2178 if ( skb == NULL ) {
2179 airo_print_err(dev->name, "%s: skb == NULL!", __FUNCTION__);
2183 /* Find a vacant FID */
2184 for( i = 0; i < MAX_FIDS / 2 && (fids[i] & 0xffff0000); i++ );
2185 for( j = i + 1; j < MAX_FIDS / 2 && (fids[j] & 0xffff0000); j++ );
2187 if ( j >= MAX_FIDS / 2 ) {
2188 netif_stop_queue(dev);
2190 if (i == MAX_FIDS / 2) {
2191 priv->stats.tx_fifo_errors++;
2195 /* check min length*/
2196 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2197 /* Mark fid as used & save length for later */
2198 fids[i] |= (len << 16);
2199 priv->xmit.skb = skb;
2201 if (down_trylock(&priv->sem) != 0) {
2202 set_bit(FLAG_PENDING_XMIT, &priv->flags);
2203 netif_stop_queue(dev);
2204 set_bit(JOB_XMIT, &priv->jobs);
2205 wake_up_interruptible(&priv->thr_wait);
2211 static void airo_end_xmit11(struct net_device *dev) {
2214 struct airo_info *priv = dev->priv;
2215 struct sk_buff *skb = priv->xmit11.skb;
2216 int fid = priv->xmit11.fid;
2217 u32 *fids = priv->fids;
2219 clear_bit(JOB_XMIT11, &priv->jobs);
2220 clear_bit(FLAG_PENDING_XMIT11, &priv->flags);
2221 status = transmit_802_11_packet (priv, fids[fid], skb->data);
2225 if ( status == SUCCESS ) {
2226 dev->trans_start = jiffies;
2227 for (; i < MAX_FIDS && (priv->fids[i] & 0xffff0000); i++);
2229 priv->fids[fid] &= 0xffff;
2230 priv->stats.tx_window_errors++;
2233 netif_wake_queue(dev);
2237 static int airo_start_xmit11(struct sk_buff *skb, struct net_device *dev) {
2240 struct airo_info *priv = dev->priv;
2241 u32 *fids = priv->fids;
2243 if (test_bit(FLAG_MPI, &priv->flags)) {
2244 /* Not implemented yet for MPI350 */
2245 netif_stop_queue(dev);
2249 if ( skb == NULL ) {
2250 airo_print_err(dev->name, "%s: skb == NULL!", __FUNCTION__);
2254 /* Find a vacant FID */
2255 for( i = MAX_FIDS / 2; i < MAX_FIDS && (fids[i] & 0xffff0000); i++ );
2256 for( j = i + 1; j < MAX_FIDS && (fids[j] & 0xffff0000); j++ );
2258 if ( j >= MAX_FIDS ) {
2259 netif_stop_queue(dev);
2261 if (i == MAX_FIDS) {
2262 priv->stats.tx_fifo_errors++;
2266 /* check min length*/
2267 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2268 /* Mark fid as used & save length for later */
2269 fids[i] |= (len << 16);
2270 priv->xmit11.skb = skb;
2271 priv->xmit11.fid = i;
2272 if (down_trylock(&priv->sem) != 0) {
2273 set_bit(FLAG_PENDING_XMIT11, &priv->flags);
2274 netif_stop_queue(dev);
2275 set_bit(JOB_XMIT11, &priv->jobs);
2276 wake_up_interruptible(&priv->thr_wait);
2278 airo_end_xmit11(dev);
2282 static void airo_read_stats(struct airo_info *ai) {
2284 u32 *vals = stats_rid.vals;
2286 clear_bit(JOB_STATS, &ai->jobs);
2287 if (ai->power.event) {
2291 readStatsRid(ai, &stats_rid, RID_STATS, 0);
2294 ai->stats.rx_packets = vals[43] + vals[44] + vals[45];
2295 ai->stats.tx_packets = vals[39] + vals[40] + vals[41];
2296 ai->stats.rx_bytes = vals[92];
2297 ai->stats.tx_bytes = vals[91];
2298 ai->stats.rx_errors = vals[0] + vals[2] + vals[3] + vals[4];
2299 ai->stats.tx_errors = vals[42] + ai->stats.tx_fifo_errors;
2300 ai->stats.multicast = vals[43];
2301 ai->stats.collisions = vals[89];
2303 /* detailed rx_errors: */
2304 ai->stats.rx_length_errors = vals[3];
2305 ai->stats.rx_crc_errors = vals[4];
2306 ai->stats.rx_frame_errors = vals[2];
2307 ai->stats.rx_fifo_errors = vals[0];
2310 static struct net_device_stats *airo_get_stats(struct net_device *dev)
2312 struct airo_info *local = dev->priv;
2314 if (!test_bit(JOB_STATS, &local->jobs)) {
2315 /* Get stats out of the card if available */
2316 if (down_trylock(&local->sem) != 0) {
2317 set_bit(JOB_STATS, &local->jobs);
2318 wake_up_interruptible(&local->thr_wait);
2320 airo_read_stats(local);
2323 return &local->stats;
2326 static void airo_set_promisc(struct airo_info *ai) {
2330 memset(&cmd, 0, sizeof(cmd));
2331 cmd.cmd=CMD_SETMODE;
2332 clear_bit(JOB_PROMISC, &ai->jobs);
2333 cmd.parm0=(ai->flags&IFF_PROMISC) ? PROMISC : NOPROMISC;
2334 issuecommand(ai, &cmd, &rsp);
2338 static void airo_set_multicast_list(struct net_device *dev) {
2339 struct airo_info *ai = dev->priv;
2341 if ((dev->flags ^ ai->flags) & IFF_PROMISC) {
2342 change_bit(FLAG_PROMISC, &ai->flags);
2343 if (down_trylock(&ai->sem) != 0) {
2344 set_bit(JOB_PROMISC, &ai->jobs);
2345 wake_up_interruptible(&ai->thr_wait);
2347 airo_set_promisc(ai);
2350 if ((dev->flags&IFF_ALLMULTI)||dev->mc_count>0) {
2351 /* Turn on multicast. (Should be already setup...) */
2355 static int airo_set_mac_address(struct net_device *dev, void *p)
2357 struct airo_info *ai = dev->priv;
2358 struct sockaddr *addr = p;
2360 readConfigRid(ai, 1);
2361 memcpy (ai->config.macAddr, addr->sa_data, dev->addr_len);
2362 set_bit (FLAG_COMMIT, &ai->flags);
2364 writeConfigRid (ai, 1);
2366 memcpy (ai->dev->dev_addr, addr->sa_data, dev->addr_len);
2368 memcpy (ai->wifidev->dev_addr, addr->sa_data, dev->addr_len);
2372 static int airo_change_mtu(struct net_device *dev, int new_mtu)
2374 if ((new_mtu < 68) || (new_mtu > 2400))
2380 static LIST_HEAD(airo_devices);
2382 static void add_airo_dev(struct airo_info *ai)
2384 /* Upper layers already keep track of PCI devices,
2385 * so we only need to remember our non-PCI cards. */
2387 list_add_tail(&ai->dev_list, &airo_devices);
2390 static void del_airo_dev(struct airo_info *ai)
2393 list_del(&ai->dev_list);
2396 static int airo_close(struct net_device *dev) {
2397 struct airo_info *ai = dev->priv;
2399 netif_stop_queue(dev);
2401 if (ai->wifidev != dev) {
2402 #ifdef POWER_ON_DOWN
2403 /* Shut power to the card. The idea is that the user can save
2404 * power when he doesn't need the card with "ifconfig down".
2405 * That's the method that is most friendly towards the network
2406 * stack (i.e. the network stack won't try to broadcast
2407 * anything on the interface and routes are gone. Jean II */
2408 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2411 disable_interrupts( ai );
2413 free_irq(dev->irq, dev);
2415 set_bit(JOB_DIE, &ai->jobs);
2416 kthread_stop(ai->airo_thread_task);
2421 void stop_airo_card( struct net_device *dev, int freeres )
2423 struct airo_info *ai = dev->priv;
2425 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2427 disable_interrupts(ai);
2428 takedown_proc_entry( dev, ai );
2429 if (test_bit(FLAG_REGISTERED, &ai->flags)) {
2430 unregister_netdev( dev );
2432 unregister_netdev(ai->wifidev);
2433 free_netdev(ai->wifidev);
2436 clear_bit(FLAG_REGISTERED, &ai->flags);
2439 * Clean out tx queue
2441 if (test_bit(FLAG_MPI, &ai->flags) && !skb_queue_empty(&ai->txq)) {
2442 struct sk_buff *skb = NULL;
2443 for (;(skb = skb_dequeue(&ai->txq));)
2447 airo_networks_free (ai);
2454 /* PCMCIA frees this stuff, so only for PCI and ISA */
2455 release_region( dev->base_addr, 64 );
2456 if (test_bit(FLAG_MPI, &ai->flags)) {
2458 mpi_unmap_card(ai->pci);
2460 iounmap(ai->pcimem);
2462 iounmap(ai->pciaux);
2463 pci_free_consistent(ai->pci, PCI_SHARED_LEN,
2464 ai->shared, ai->shared_dma);
2467 crypto_free_cipher(ai->tfm);
2472 EXPORT_SYMBOL(stop_airo_card);
2474 static int wll_header_parse(const struct sk_buff *skb, unsigned char *haddr)
2476 memcpy(haddr, skb_mac_header(skb) + 10, ETH_ALEN);
2480 static void mpi_unmap_card(struct pci_dev *pci)
2482 unsigned long mem_start = pci_resource_start(pci, 1);
2483 unsigned long mem_len = pci_resource_len(pci, 1);
2484 unsigned long aux_start = pci_resource_start(pci, 2);
2485 unsigned long aux_len = AUXMEMSIZE;
2487 release_mem_region(aux_start, aux_len);
2488 release_mem_region(mem_start, mem_len);
2491 /*************************************************************
2492 * This routine assumes that descriptors have been setup .
2493 * Run at insmod time or after reset when the decriptors
2494 * have been initialized . Returns 0 if all is well nz
2495 * otherwise . Does not allocate memory but sets up card
2496 * using previously allocated descriptors.
2498 static int mpi_init_descriptors (struct airo_info *ai)
2505 /* Alloc card RX descriptors */
2506 netif_stop_queue(ai->dev);
2508 memset(&rsp,0,sizeof(rsp));
2509 memset(&cmd,0,sizeof(cmd));
2511 cmd.cmd = CMD_ALLOCATEAUX;
2513 cmd.parm1 = (ai->rxfids[0].card_ram_off - ai->pciaux);
2514 cmd.parm2 = MPI_MAX_FIDS;
2515 rc=issuecommand(ai, &cmd, &rsp);
2516 if (rc != SUCCESS) {
2517 airo_print_err(ai->dev->name, "Couldn't allocate RX FID");
2521 for (i=0; i<MPI_MAX_FIDS; i++) {
2522 memcpy_toio(ai->rxfids[i].card_ram_off,
2523 &ai->rxfids[i].rx_desc, sizeof(RxFid));
2526 /* Alloc card TX descriptors */
2528 memset(&rsp,0,sizeof(rsp));
2529 memset(&cmd,0,sizeof(cmd));
2531 cmd.cmd = CMD_ALLOCATEAUX;
2533 cmd.parm1 = (ai->txfids[0].card_ram_off - ai->pciaux);
2534 cmd.parm2 = MPI_MAX_FIDS;
2536 for (i=0; i<MPI_MAX_FIDS; i++) {
2537 ai->txfids[i].tx_desc.valid = 1;
2538 memcpy_toio(ai->txfids[i].card_ram_off,
2539 &ai->txfids[i].tx_desc, sizeof(TxFid));
2541 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2543 rc=issuecommand(ai, &cmd, &rsp);
2544 if (rc != SUCCESS) {
2545 airo_print_err(ai->dev->name, "Couldn't allocate TX FID");
2549 /* Alloc card Rid descriptor */
2550 memset(&rsp,0,sizeof(rsp));
2551 memset(&cmd,0,sizeof(cmd));
2553 cmd.cmd = CMD_ALLOCATEAUX;
2555 cmd.parm1 = (ai->config_desc.card_ram_off - ai->pciaux);
2556 cmd.parm2 = 1; /* Magic number... */
2557 rc=issuecommand(ai, &cmd, &rsp);
2558 if (rc != SUCCESS) {
2559 airo_print_err(ai->dev->name, "Couldn't allocate RID");
2563 memcpy_toio(ai->config_desc.card_ram_off,
2564 &ai->config_desc.rid_desc, sizeof(Rid));
2570 * We are setting up three things here:
2571 * 1) Map AUX memory for descriptors: Rid, TxFid, or RxFid.
2572 * 2) Map PCI memory for issueing commands.
2573 * 3) Allocate memory (shared) to send and receive ethernet frames.
2575 static int mpi_map_card(struct airo_info *ai, struct pci_dev *pci)
2577 unsigned long mem_start, mem_len, aux_start, aux_len;
2580 dma_addr_t busaddroff;
2581 unsigned char *vpackoff;
2582 unsigned char __iomem *pciaddroff;
2584 mem_start = pci_resource_start(pci, 1);
2585 mem_len = pci_resource_len(pci, 1);
2586 aux_start = pci_resource_start(pci, 2);
2587 aux_len = AUXMEMSIZE;
2589 if (!request_mem_region(mem_start, mem_len, DRV_NAME)) {
2590 airo_print_err("", "Couldn't get region %x[%x]",
2591 (int)mem_start, (int)mem_len);
2594 if (!request_mem_region(aux_start, aux_len, DRV_NAME)) {
2595 airo_print_err("", "Couldn't get region %x[%x]",
2596 (int)aux_start, (int)aux_len);
2600 ai->pcimem = ioremap(mem_start, mem_len);
2602 airo_print_err("", "Couldn't map region %x[%x]",
2603 (int)mem_start, (int)mem_len);
2606 ai->pciaux = ioremap(aux_start, aux_len);
2608 airo_print_err("", "Couldn't map region %x[%x]",
2609 (int)aux_start, (int)aux_len);
2613 /* Reserve PKTSIZE for each fid and 2K for the Rids */
2614 ai->shared = pci_alloc_consistent(pci, PCI_SHARED_LEN, &ai->shared_dma);
2616 airo_print_err("", "Couldn't alloc_consistent %d",
2622 * Setup descriptor RX, TX, CONFIG
2624 busaddroff = ai->shared_dma;
2625 pciaddroff = ai->pciaux + AUX_OFFSET;
2626 vpackoff = ai->shared;
2628 /* RX descriptor setup */
2629 for(i = 0; i < MPI_MAX_FIDS; i++) {
2630 ai->rxfids[i].pending = 0;
2631 ai->rxfids[i].card_ram_off = pciaddroff;
2632 ai->rxfids[i].virtual_host_addr = vpackoff;
2633 ai->rxfids[i].rx_desc.host_addr = busaddroff;
2634 ai->rxfids[i].rx_desc.valid = 1;
2635 ai->rxfids[i].rx_desc.len = PKTSIZE;
2636 ai->rxfids[i].rx_desc.rdy = 0;
2638 pciaddroff += sizeof(RxFid);
2639 busaddroff += PKTSIZE;
2640 vpackoff += PKTSIZE;
2643 /* TX descriptor setup */
2644 for(i = 0; i < MPI_MAX_FIDS; i++) {
2645 ai->txfids[i].card_ram_off = pciaddroff;
2646 ai->txfids[i].virtual_host_addr = vpackoff;
2647 ai->txfids[i].tx_desc.valid = 1;
2648 ai->txfids[i].tx_desc.host_addr = busaddroff;
2649 memcpy(ai->txfids[i].virtual_host_addr,
2650 &wifictlhdr8023, sizeof(wifictlhdr8023));
2652 pciaddroff += sizeof(TxFid);
2653 busaddroff += PKTSIZE;
2654 vpackoff += PKTSIZE;
2656 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2658 /* Rid descriptor setup */
2659 ai->config_desc.card_ram_off = pciaddroff;
2660 ai->config_desc.virtual_host_addr = vpackoff;
2661 ai->config_desc.rid_desc.host_addr = busaddroff;
2662 ai->ridbus = busaddroff;
2663 ai->config_desc.rid_desc.rid = 0;
2664 ai->config_desc.rid_desc.len = RIDSIZE;
2665 ai->config_desc.rid_desc.valid = 1;
2666 pciaddroff += sizeof(Rid);
2667 busaddroff += RIDSIZE;
2668 vpackoff += RIDSIZE;
2670 /* Tell card about descriptors */
2671 if (mpi_init_descriptors (ai) != SUCCESS)
2676 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2678 iounmap(ai->pciaux);
2680 iounmap(ai->pcimem);
2682 release_mem_region(aux_start, aux_len);
2684 release_mem_region(mem_start, mem_len);
2689 static const struct header_ops airo_header_ops = {
2690 .parse = wll_header_parse,
2693 static void wifi_setup(struct net_device *dev)
2695 dev->header_ops = &airo_header_ops;
2696 dev->hard_start_xmit = &airo_start_xmit11;
2697 dev->get_stats = &airo_get_stats;
2698 dev->set_mac_address = &airo_set_mac_address;
2699 dev->do_ioctl = &airo_ioctl;
2700 dev->wireless_handlers = &airo_handler_def;
2701 dev->change_mtu = &airo_change_mtu;
2702 dev->open = &airo_open;
2703 dev->stop = &airo_close;
2705 dev->type = ARPHRD_IEEE80211;
2706 dev->hard_header_len = ETH_HLEN;
2707 dev->mtu = AIRO_DEF_MTU;
2708 dev->addr_len = ETH_ALEN;
2709 dev->tx_queue_len = 100;
2711 memset(dev->broadcast,0xFF, ETH_ALEN);
2713 dev->flags = IFF_BROADCAST|IFF_MULTICAST;
2716 static struct net_device *init_wifidev(struct airo_info *ai,
2717 struct net_device *ethdev)
2720 struct net_device *dev = alloc_netdev(0, "wifi%d", wifi_setup);
2723 dev->priv = ethdev->priv;
2724 dev->irq = ethdev->irq;
2725 dev->base_addr = ethdev->base_addr;
2726 dev->wireless_data = ethdev->wireless_data;
2727 memcpy(dev->dev_addr, ethdev->dev_addr, dev->addr_len);
2728 err = register_netdev(dev);
2736 static int reset_card( struct net_device *dev , int lock) {
2737 struct airo_info *ai = dev->priv;
2739 if (lock && down_interruptible(&ai->sem))
2742 OUT4500(ai,COMMAND,CMD_SOFTRESET);
2751 #define AIRO_MAX_NETWORK_COUNT 64
2752 static int airo_networks_allocate(struct airo_info *ai)
2758 kzalloc(AIRO_MAX_NETWORK_COUNT * sizeof(BSSListElement),
2760 if (!ai->networks) {
2761 airo_print_warn("", "Out of memory allocating beacons");
2768 static void airo_networks_free(struct airo_info *ai)
2770 kfree(ai->networks);
2771 ai->networks = NULL;
2774 static void airo_networks_initialize(struct airo_info *ai)
2778 INIT_LIST_HEAD(&ai->network_free_list);
2779 INIT_LIST_HEAD(&ai->network_list);
2780 for (i = 0; i < AIRO_MAX_NETWORK_COUNT; i++)
2781 list_add_tail(&ai->networks[i].list,
2782 &ai->network_free_list);
2785 static int airo_test_wpa_capable(struct airo_info *ai)
2788 CapabilityRid cap_rid;
2790 status = readCapabilityRid(ai, &cap_rid, 1);
2791 if (status != SUCCESS) return 0;
2793 /* Only firmware versions 5.30.17 or better can do WPA */
2794 if ((cap_rid.softVer > 0x530)
2795 || ((cap_rid.softVer == 0x530) && (cap_rid.softSubVer >= 17))) {
2796 airo_print_info("", "WPA is supported.");
2800 /* No WPA support */
2801 airo_print_info("", "WPA unsupported (only firmware versions 5.30.17"
2802 " and greater support WPA. Detected %s)", cap_rid.prodVer);
2806 static struct net_device *_init_airo_card( unsigned short irq, int port,
2807 int is_pcmcia, struct pci_dev *pci,
2808 struct device *dmdev )
2810 struct net_device *dev;
2811 struct airo_info *ai;
2813 DECLARE_MAC_BUF(mac);
2815 /* Create the network device object. */
2816 dev = alloc_netdev(sizeof(*ai), "", ether_setup);
2818 airo_print_err("", "Couldn't alloc_etherdev");
2824 ai->flags = 1 << FLAG_RADIO_DOWN;
2827 if (pci && (pci->device == 0x5000 || pci->device == 0xa504)) {
2828 airo_print_dbg("", "Found an MPI350 card");
2829 set_bit(FLAG_MPI, &ai->flags);
2831 spin_lock_init(&ai->aux_lock);
2832 sema_init(&ai->sem, 1);
2835 init_waitqueue_head (&ai->thr_wait);
2839 if (airo_networks_allocate (ai))
2841 airo_networks_initialize (ai);
2843 /* The Airo-specific entries in the device structure. */
2844 if (test_bit(FLAG_MPI,&ai->flags)) {
2845 skb_queue_head_init (&ai->txq);
2846 dev->hard_start_xmit = &mpi_start_xmit;
2848 dev->hard_start_xmit = &airo_start_xmit;
2849 dev->get_stats = &airo_get_stats;
2850 dev->set_multicast_list = &airo_set_multicast_list;
2851 dev->set_mac_address = &airo_set_mac_address;
2852 dev->do_ioctl = &airo_ioctl;
2853 dev->wireless_handlers = &airo_handler_def;
2854 ai->wireless_data.spy_data = &ai->spy_data;
2855 dev->wireless_data = &ai->wireless_data;
2856 dev->change_mtu = &airo_change_mtu;
2857 dev->open = &airo_open;
2858 dev->stop = &airo_close;
2860 dev->base_addr = port;
2862 SET_NETDEV_DEV(dev, dmdev);
2864 reset_card (dev, 1);
2868 if (!request_region(dev->base_addr, 64, DRV_NAME)) {
2870 airo_print_err(dev->name, "Couldn't request region");
2875 if (test_bit(FLAG_MPI,&ai->flags)) {
2876 if (mpi_map_card(ai, pci)) {
2877 airo_print_err("", "Could not map memory");
2883 if ( setup_card( ai, dev->dev_addr, 1 ) != SUCCESS ) {
2884 airo_print_err(dev->name, "MAC could not be enabled" );
2888 } else if (!test_bit(FLAG_MPI,&ai->flags)) {
2889 ai->bap_read = fast_bap_read;
2890 set_bit(FLAG_FLASHING, &ai->flags);
2893 /* Test for WPA support */
2894 if (airo_test_wpa_capable(ai)) {
2895 set_bit(FLAG_WPA_CAPABLE, &ai->flags);
2896 ai->bssListFirst = RID_WPA_BSSLISTFIRST;
2897 ai->bssListNext = RID_WPA_BSSLISTNEXT;
2898 ai->bssListRidLen = sizeof(BSSListRid);
2900 ai->bssListFirst = RID_BSSLISTFIRST;
2901 ai->bssListNext = RID_BSSLISTNEXT;
2902 ai->bssListRidLen = sizeof(BSSListRid) - sizeof(BSSListRidExtra);
2905 strcpy(dev->name, "eth%d");
2906 rc = register_netdev(dev);
2908 airo_print_err(dev->name, "Couldn't register_netdev");
2911 ai->wifidev = init_wifidev(ai, dev);
2915 set_bit(FLAG_REGISTERED,&ai->flags);
2916 airo_print_info(dev->name, "MAC enabled %s",
2917 print_mac(mac, dev->dev_addr));
2919 /* Allocate the transmit buffers */
2920 if (probe && !test_bit(FLAG_MPI,&ai->flags))
2921 for( i = 0; i < MAX_FIDS; i++ )
2922 ai->fids[i] = transmit_allocate(ai,AIRO_DEF_MTU,i>=MAX_FIDS/2);
2924 if (setup_proc_entry(dev, dev->priv) < 0)
2930 unregister_netdev(ai->wifidev);
2931 free_netdev(ai->wifidev);
2933 unregister_netdev(dev);
2935 if (test_bit(FLAG_MPI,&ai->flags) && pci) {
2936 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2937 iounmap(ai->pciaux);
2938 iounmap(ai->pcimem);
2939 mpi_unmap_card(ai->pci);
2943 release_region( dev->base_addr, 64 );
2945 airo_networks_free(ai);
2952 struct net_device *init_airo_card( unsigned short irq, int port, int is_pcmcia,
2953 struct device *dmdev)
2955 return _init_airo_card ( irq, port, is_pcmcia, NULL, dmdev);
2958 EXPORT_SYMBOL(init_airo_card);
2960 static int waitbusy (struct airo_info *ai) {
2962 while ((IN4500 (ai, COMMAND) & COMMAND_BUSY) & (delay < 10000)) {
2964 if ((++delay % 20) == 0)
2965 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
2967 return delay < 10000;
2970 int reset_airo_card( struct net_device *dev )
2973 struct airo_info *ai = dev->priv;
2974 DECLARE_MAC_BUF(mac);
2976 if (reset_card (dev, 1))
2979 if ( setup_card(ai, dev->dev_addr, 1 ) != SUCCESS ) {
2980 airo_print_err(dev->name, "MAC could not be enabled");
2983 airo_print_info(dev->name, "MAC enabled %s",
2984 print_mac(mac, dev->dev_addr));
2985 /* Allocate the transmit buffers if needed */
2986 if (!test_bit(FLAG_MPI,&ai->flags))
2987 for( i = 0; i < MAX_FIDS; i++ )
2988 ai->fids[i] = transmit_allocate (ai,AIRO_DEF_MTU,i>=MAX_FIDS/2);
2990 enable_interrupts( ai );
2991 netif_wake_queue(dev);
2995 EXPORT_SYMBOL(reset_airo_card);
2997 static void airo_send_event(struct net_device *dev) {
2998 struct airo_info *ai = dev->priv;
2999 union iwreq_data wrqu;
3000 StatusRid status_rid;
3002 clear_bit(JOB_EVENT, &ai->jobs);
3003 PC4500_readrid(ai, RID_STATUS, &status_rid, sizeof(status_rid), 0);
3005 wrqu.data.length = 0;
3006 wrqu.data.flags = 0;
3007 memcpy(wrqu.ap_addr.sa_data, status_rid.bssid[0], ETH_ALEN);
3008 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
3010 /* Send event to user space */
3011 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
3014 static void airo_process_scan_results (struct airo_info *ai) {
3015 union iwreq_data wrqu;
3018 BSSListElement * loop_net;
3019 BSSListElement * tmp_net;
3021 /* Blow away current list of scan results */
3022 list_for_each_entry_safe (loop_net, tmp_net, &ai->network_list, list) {
3023 list_move_tail (&loop_net->list, &ai->network_free_list);
3024 /* Don't blow away ->list, just BSS data */
3025 memset (loop_net, 0, sizeof (loop_net->bss));
3028 /* Try to read the first entry of the scan result */
3029 rc = PC4500_readrid(ai, ai->bssListFirst, &bss, ai->bssListRidLen, 0);
3030 if((rc) || (bss.index == 0xffff)) {
3031 /* No scan results */
3035 /* Read and parse all entries */
3037 while((!rc) && (bss.index != 0xffff)) {
3038 /* Grab a network off the free list */
3039 if (!list_empty(&ai->network_free_list)) {
3040 tmp_net = list_entry(ai->network_free_list.next,
3041 BSSListElement, list);
3042 list_del(ai->network_free_list.next);
3045 if (tmp_net != NULL) {
3046 memcpy(tmp_net, &bss, sizeof(tmp_net->bss));
3047 list_add_tail(&tmp_net->list, &ai->network_list);
3051 /* Read next entry */
3052 rc = PC4500_readrid(ai, ai->bssListNext,
3053 &bss, ai->bssListRidLen, 0);
3057 ai->scan_timeout = 0;
3058 clear_bit(JOB_SCAN_RESULTS, &ai->jobs);
3061 /* Send an empty event to user space.
3062 * We don't send the received data on
3063 * the event because it would require
3064 * us to do complex transcoding, and
3065 * we want to minimise the work done in
3066 * the irq handler. Use a request to
3067 * extract the data - Jean II */
3068 wrqu.data.length = 0;
3069 wrqu.data.flags = 0;
3070 wireless_send_event(ai->dev, SIOCGIWSCAN, &wrqu, NULL);
3073 static int airo_thread(void *data) {
3074 struct net_device *dev = data;
3075 struct airo_info *ai = dev->priv;
3080 /* make swsusp happy with our thread */
3083 if (test_bit(JOB_DIE, &ai->jobs))
3087 locked = down_interruptible(&ai->sem);
3091 init_waitqueue_entry(&wait, current);
3092 add_wait_queue(&ai->thr_wait, &wait);
3094 set_current_state(TASK_INTERRUPTIBLE);
3097 if (ai->expires || ai->scan_timeout) {
3098 if (ai->scan_timeout &&
3099 time_after_eq(jiffies,ai->scan_timeout)){
3100 set_bit(JOB_SCAN_RESULTS, &ai->jobs);
3102 } else if (ai->expires &&
3103 time_after_eq(jiffies,ai->expires)){
3104 set_bit(JOB_AUTOWEP, &ai->jobs);
3107 if (!kthread_should_stop() &&
3108 !freezing(current)) {
3109 unsigned long wake_at;
3110 if (!ai->expires || !ai->scan_timeout) {
3111 wake_at = max(ai->expires,
3114 wake_at = min(ai->expires,
3117 schedule_timeout(wake_at - jiffies);
3120 } else if (!kthread_should_stop() &&
3121 !freezing(current)) {
3127 current->state = TASK_RUNNING;
3128 remove_wait_queue(&ai->thr_wait, &wait);
3135 if (test_bit(JOB_DIE, &ai->jobs)) {
3140 if (ai->power.event || test_bit(FLAG_FLASHING, &ai->flags)) {
3145 if (test_bit(JOB_XMIT, &ai->jobs))
3147 else if (test_bit(JOB_XMIT11, &ai->jobs))
3148 airo_end_xmit11(dev);
3149 else if (test_bit(JOB_STATS, &ai->jobs))
3150 airo_read_stats(ai);
3151 else if (test_bit(JOB_WSTATS, &ai->jobs))
3152 airo_read_wireless_stats(ai);
3153 else if (test_bit(JOB_PROMISC, &ai->jobs))
3154 airo_set_promisc(ai);
3155 else if (test_bit(JOB_MIC, &ai->jobs))
3157 else if (test_bit(JOB_EVENT, &ai->jobs))
3158 airo_send_event(dev);
3159 else if (test_bit(JOB_AUTOWEP, &ai->jobs))
3161 else if (test_bit(JOB_SCAN_RESULTS, &ai->jobs))
3162 airo_process_scan_results(ai);
3163 else /* Shouldn't get here, but we make sure to unlock */
3170 static int header_len(__le16 ctl)
3172 u16 fc = le16_to_cpu(ctl);
3175 if ((fc & 0xe0) == 0xc0)
3176 return 10; /* one-address control packet */
3177 return 16; /* two-address control packet */
3179 if ((fc & 0x300) == 0x300)
3180 return 30; /* WDS packet */
3185 static irqreturn_t airo_interrupt(int irq, void *dev_id)
3187 struct net_device *dev = dev_id;
3190 struct airo_info *apriv = dev->priv;
3191 u16 savedInterrupts = 0;
3194 if (!netif_device_present(dev))
3198 status = IN4500( apriv, EVSTAT );
3199 if ( !(status & STATUS_INTS) || status == 0xffff ) break;
3203 if ( status & EV_AWAKE ) {
3204 OUT4500( apriv, EVACK, EV_AWAKE );
3205 OUT4500( apriv, EVACK, EV_AWAKE );
3208 if (!savedInterrupts) {
3209 savedInterrupts = IN4500( apriv, EVINTEN );
3210 OUT4500( apriv, EVINTEN, 0 );
3213 if ( status & EV_MIC ) {
3214 OUT4500( apriv, EVACK, EV_MIC );
3215 if (test_bit(FLAG_MIC_CAPABLE, &apriv->flags)) {
3216 set_bit(JOB_MIC, &apriv->jobs);
3217 wake_up_interruptible(&apriv->thr_wait);
3220 if ( status & EV_LINK ) {
3221 union iwreq_data wrqu;
3222 int scan_forceloss = 0;
3223 /* The link status has changed, if you want to put a
3224 monitor hook in, do it here. (Remember that
3225 interrupts are still disabled!)
3227 u16 newStatus = IN4500(apriv, LINKSTAT);
3228 OUT4500( apriv, EVACK, EV_LINK);
3229 /* Here is what newStatus means: */
3230 #define NOBEACON 0x8000 /* Loss of sync - missed beacons */
3231 #define MAXRETRIES 0x8001 /* Loss of sync - max retries */
3232 #define MAXARL 0x8002 /* Loss of sync - average retry level exceeded*/
3233 #define FORCELOSS 0x8003 /* Loss of sync - host request */
3234 #define TSFSYNC 0x8004 /* Loss of sync - TSF synchronization */
3235 #define DEAUTH 0x8100 /* Deauthentication (low byte is reason code) */
3236 #define DISASS 0x8200 /* Disassociation (low byte is reason code) */
3237 #define ASSFAIL 0x8400 /* Association failure (low byte is reason
3239 #define AUTHFAIL 0x0300 /* Authentication failure (low byte is reason
3241 #define ASSOCIATED 0x0400 /* Associated */
3242 #define REASSOCIATED 0x0600 /* Reassociated? Only on firmware >= 5.30.17 */
3243 #define RC_RESERVED 0 /* Reserved return code */
3244 #define RC_NOREASON 1 /* Unspecified reason */
3245 #define RC_AUTHINV 2 /* Previous authentication invalid */
3246 #define RC_DEAUTH 3 /* Deauthenticated because sending station is
3248 #define RC_NOACT 4 /* Disassociated due to inactivity */
3249 #define RC_MAXLOAD 5 /* Disassociated because AP is unable to handle
3250 all currently associated stations */
3251 #define RC_BADCLASS2 6 /* Class 2 frame received from
3252 non-Authenticated station */
3253 #define RC_BADCLASS3 7 /* Class 3 frame received from
3254 non-Associated station */
3255 #define RC_STATLEAVE 8 /* Disassociated because sending station is
3257 #define RC_NOAUTH 9 /* Station requesting (Re)Association is not
3258 Authenticated with the responding station */
3259 if (newStatus == FORCELOSS && apriv->scan_timeout > 0)
3261 if(newStatus == ASSOCIATED || newStatus == REASSOCIATED) {
3264 if (apriv->list_bss_task)
3265 wake_up_process(apriv->list_bss_task);
3266 set_bit(FLAG_UPDATE_UNI, &apriv->flags);
3267 set_bit(FLAG_UPDATE_MULTI, &apriv->flags);
3269 if (down_trylock(&apriv->sem) != 0) {
3270 set_bit(JOB_EVENT, &apriv->jobs);
3271 wake_up_interruptible(&apriv->thr_wait);
3273 airo_send_event(dev);
3274 } else if (!scan_forceloss) {
3275 if (auto_wep && !apriv->expires) {
3276 apriv->expires = RUN_AT(3*HZ);
3277 wake_up_interruptible(&apriv->thr_wait);
3280 /* Send event to user space */
3281 memset(wrqu.ap_addr.sa_data, '\0', ETH_ALEN);
3282 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
3283 wireless_send_event(dev, SIOCGIWAP, &wrqu,NULL);
3287 /* Check to see if there is something to receive */
3288 if ( status & EV_RX ) {
3289 struct sk_buff *skb = NULL;
3290 u16 fc, len, hdrlen = 0;
3304 if (test_bit(FLAG_MPI,&apriv->flags)) {
3305 if (test_bit(FLAG_802_11, &apriv->flags))
3306 mpi_receive_802_11(apriv);
3308 mpi_receive_802_3(apriv);
3309 OUT4500(apriv, EVACK, EV_RX);
3313 fid = IN4500( apriv, RXFID );
3315 /* Get the packet length */
3316 if (test_bit(FLAG_802_11, &apriv->flags)) {
3317 bap_setup (apriv, fid, 4, BAP0);
3318 bap_read (apriv, (u16*)&hdr, sizeof(hdr), BAP0);
3319 /* Bad CRC. Ignore packet */
3320 if (le16_to_cpu(hdr.status) & 2)
3322 if (apriv->wifidev == NULL)
3325 bap_setup (apriv, fid, 0x36, BAP0);
3326 bap_read (apriv, (u16*)&hdr.len, 2, BAP0);
3328 len = le16_to_cpu(hdr.len);
3330 if (len > AIRO_DEF_MTU) {
3331 airo_print_err(apriv->dev->name, "Bad size %d", len);
3337 if (test_bit(FLAG_802_11, &apriv->flags)) {
3338 bap_read (apriv, &fc, sizeof(fc), BAP0);
3339 hdrlen = header_len(fc);
3341 hdrlen = ETH_ALEN * 2;
3343 skb = dev_alloc_skb( len + hdrlen + 2 + 2 );
3345 apriv->stats.rx_dropped++;
3348 skb_reserve(skb, 2); /* This way the IP header is aligned */
3349 buffer = (u16*)skb_put (skb, len + hdrlen);
3350 if (test_bit(FLAG_802_11, &apriv->flags)) {
3352 bap_read (apriv, buffer + 1, hdrlen - 2, BAP0);
3354 bap_read (apriv, tmpbuf, 6, BAP0);
3356 bap_read (apriv, &gap, sizeof(gap), BAP0);
3357 gap = le16_to_cpu(gap);
3360 bap_read (apriv, tmpbuf, gap, BAP0);
3362 airo_print_err(apriv->dev->name, "gaplen too "
3363 "big. Problems will follow...");
3366 bap_read (apriv, buffer + hdrlen/2, len, BAP0);
3369 bap_read (apriv, buffer, ETH_ALEN*2, BAP0);
3370 if (apriv->micstats.enabled) {
3371 bap_read (apriv,(u16*)&micbuf,sizeof(micbuf),BAP0);
3372 if (ntohs(micbuf.typelen) > 0x05DC)
3373 bap_setup (apriv, fid, 0x44, BAP0);
3375 if (len <= sizeof(micbuf))
3378 len -= sizeof(micbuf);
3379 skb_trim (skb, len + hdrlen);
3382 bap_read(apriv,buffer+ETH_ALEN,len,BAP0);
3383 if (decapsulate(apriv,&micbuf,(etherHead*)buffer,len)) {
3385 dev_kfree_skb_irq (skb);
3387 OUT4500( apriv, EVACK, EV_RX);
3392 if (apriv->spy_data.spy_number > 0) {
3394 struct iw_quality wstats;
3395 /* Prepare spy data : addr + qual */
3396 if (!test_bit(FLAG_802_11, &apriv->flags)) {
3397 sa = (char*)buffer + 6;
3398 bap_setup (apriv, fid, 8, BAP0);
3399 bap_read (apriv, (u16*)hdr.rssi, 2, BAP0);
3401 sa = (char*)buffer + 10;
3402 wstats.qual = hdr.rssi[0];
3404 wstats.level = 0x100 - apriv->rssi[hdr.rssi[1]].rssidBm;
3406 wstats.level = (hdr.rssi[1] + 321) / 2;
3407 wstats.noise = apriv->wstats.qual.noise;
3408 wstats.updated = IW_QUAL_LEVEL_UPDATED
3409 | IW_QUAL_QUAL_UPDATED
3411 /* Update spy records */
3412 wireless_spy_update(dev, sa, &wstats);
3414 #endif /* WIRELESS_SPY */
3415 OUT4500( apriv, EVACK, EV_RX);
3417 if (test_bit(FLAG_802_11, &apriv->flags)) {
3418 skb_reset_mac_header(skb);
3419 skb->pkt_type = PACKET_OTHERHOST;
3420 skb->dev = apriv->wifidev;
3421 skb->protocol = htons(ETH_P_802_2);
3423 skb->protocol = eth_type_trans(skb,dev);
3424 skb->dev->last_rx = jiffies;
3425 skb->ip_summed = CHECKSUM_NONE;
3431 /* Check to see if a packet has been transmitted */
3432 if ( status & ( EV_TX|EV_TXCPY|EV_TXEXC ) ) {
3437 if (test_bit(FLAG_MPI,&apriv->flags)) {
3438 unsigned long flags;
3440 if (status & EV_TXEXC)
3441 get_tx_error(apriv, -1);
3442 spin_lock_irqsave(&apriv->aux_lock, flags);
3443 if (!skb_queue_empty(&apriv->txq)) {
3444 spin_unlock_irqrestore(&apriv->aux_lock,flags);
3445 mpi_send_packet (dev);
3447 clear_bit(FLAG_PENDING_XMIT, &apriv->flags);
3448 spin_unlock_irqrestore(&apriv->aux_lock,flags);
3449 netif_wake_queue (dev);
3451 OUT4500( apriv, EVACK,
3452 status & (EV_TX|EV_TXCPY|EV_TXEXC));
3456 fid = IN4500(apriv, TXCOMPLFID);
3458 for( i = 0; i < MAX_FIDS; i++ ) {
3459 if ( ( apriv->fids[i] & 0xffff ) == fid ) {
3460 len = apriv->fids[i] >> 16;
3465 if (status & EV_TXEXC)
3466 get_tx_error(apriv, index);
3467 OUT4500( apriv, EVACK, status & (EV_TX | EV_TXEXC));
3468 /* Set up to be used again */
3469 apriv->fids[index] &= 0xffff;
3470 if (index < MAX_FIDS / 2) {
3471 if (!test_bit(FLAG_PENDING_XMIT, &apriv->flags))
3472 netif_wake_queue(dev);
3474 if (!test_bit(FLAG_PENDING_XMIT11, &apriv->flags))
3475 netif_wake_queue(apriv->wifidev);
3478 OUT4500( apriv, EVACK, status & (EV_TX | EV_TXCPY | EV_TXEXC));
3479 airo_print_err(apriv->dev->name, "Unallocated FID was "
3484 if ( status & ~STATUS_INTS & ~IGNORE_INTS )
3485 airo_print_warn(apriv->dev->name, "Got weird status %x",
3486 status & ~STATUS_INTS & ~IGNORE_INTS );
3489 if (savedInterrupts)
3490 OUT4500( apriv, EVINTEN, savedInterrupts );
3493 return IRQ_RETVAL(handled);
3497 * Routines to talk to the card
3501 * This was originally written for the 4500, hence the name
3502 * NOTE: If use with 8bit mode and SMP bad things will happen!
3503 * Why would some one do 8 bit IO in an SMP machine?!?
3505 static void OUT4500( struct airo_info *ai, u16 reg, u16 val ) {
3506 if (test_bit(FLAG_MPI,&ai->flags))
3509 outw( val, ai->dev->base_addr + reg );
3511 outb( val & 0xff, ai->dev->base_addr + reg );
3512 outb( val >> 8, ai->dev->base_addr + reg + 1 );
3516 static u16 IN4500( struct airo_info *ai, u16 reg ) {
3519 if (test_bit(FLAG_MPI,&ai->flags))
3522 rc = inw( ai->dev->base_addr + reg );
3524 rc = inb( ai->dev->base_addr + reg );
3525 rc += ((int)inb( ai->dev->base_addr + reg + 1 )) << 8;
3530 static int enable_MAC(struct airo_info *ai, int lock)
3536 /* FLAG_RADIO_OFF : Radio disabled via /proc or Wireless Extensions
3537 * FLAG_RADIO_DOWN : Radio disabled via "ifconfig ethX down"
3538 * Note : we could try to use !netif_running(dev) in enable_MAC()
3539 * instead of this flag, but I don't trust it *within* the
3540 * open/close functions, and testing both flags together is
3541 * "cheaper" - Jean II */
3542 if (ai->flags & FLAG_RADIO_MASK) return SUCCESS;
3544 if (lock && down_interruptible(&ai->sem))
3545 return -ERESTARTSYS;
3547 if (!test_bit(FLAG_ENABLED, &ai->flags)) {
3548 memset(&cmd, 0, sizeof(cmd));
3549 cmd.cmd = MAC_ENABLE;
3550 rc = issuecommand(ai, &cmd, &rsp);
3552 set_bit(FLAG_ENABLED, &ai->flags);
3560 airo_print_err(ai->dev->name, "Cannot enable MAC");
3561 else if ((rsp.status & 0xFF00) != 0) {
3562 airo_print_err(ai->dev->name, "Bad MAC enable reason=%x, "
3563 "rid=%x, offset=%d", rsp.rsp0, rsp.rsp1, rsp.rsp2);
3569 static void disable_MAC( struct airo_info *ai, int lock ) {
3573 if (lock && down_interruptible(&ai->sem))
3576 if (test_bit(FLAG_ENABLED, &ai->flags)) {
3577 memset(&cmd, 0, sizeof(cmd));
3578 cmd.cmd = MAC_DISABLE; // disable in case already enabled
3579 issuecommand(ai, &cmd, &rsp);
3580 clear_bit(FLAG_ENABLED, &ai->flags);
3586 static void enable_interrupts( struct airo_info *ai ) {
3587 /* Enable the interrupts */
3588 OUT4500( ai, EVINTEN, STATUS_INTS );
3591 static void disable_interrupts( struct airo_info *ai ) {
3592 OUT4500( ai, EVINTEN, 0 );
3595 static void mpi_receive_802_3(struct airo_info *ai)
3599 struct sk_buff *skb;
3604 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3605 /* Make sure we got something */
3606 if (rxd.rdy && rxd.valid == 0) {
3608 if (len < 12 || len > 2048)
3611 skb = dev_alloc_skb(len);
3613 ai->stats.rx_dropped++;
3616 buffer = skb_put(skb,len);
3617 memcpy(buffer, ai->rxfids[0].virtual_host_addr, ETH_ALEN * 2);
3618 if (ai->micstats.enabled) {
3620 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2,
3622 if (ntohs(micbuf.typelen) <= 0x05DC) {
3623 if (len <= sizeof(micbuf) + ETH_ALEN * 2)
3626 off = sizeof(micbuf);
3627 skb_trim (skb, len - off);
3630 memcpy(buffer + ETH_ALEN * 2,
3631 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2 + off,
3632 len - ETH_ALEN * 2 - off);
3633 if (decapsulate (ai, &micbuf, (etherHead*)buffer, len - off - ETH_ALEN * 2)) {
3635 dev_kfree_skb_irq (skb);
3639 if (ai->spy_data.spy_number > 0) {
3641 struct iw_quality wstats;
3642 /* Prepare spy data : addr + qual */
3643 sa = buffer + ETH_ALEN;
3644 wstats.qual = 0; /* XXX Where do I get that info from ??? */
3647 /* Update spy records */
3648 wireless_spy_update(ai->dev, sa, &wstats);
3650 #endif /* WIRELESS_SPY */
3652 skb->ip_summed = CHECKSUM_NONE;
3653 skb->protocol = eth_type_trans(skb, ai->dev);
3654 skb->dev->last_rx = jiffies;
3658 if (rxd.valid == 0) {
3662 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3666 void mpi_receive_802_11 (struct airo_info *ai)
3669 struct sk_buff *skb = NULL;
3670 u16 len, hdrlen = 0;
3683 char *ptr = ai->rxfids[0].virtual_host_addr+4;
3685 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3686 memcpy ((char *)&hdr, ptr, sizeof(hdr));
3688 /* Bad CRC. Ignore packet */
3689 if (le16_to_cpu(hdr.status) & 2)
3691 if (ai->wifidev == NULL)
3693 len = le16_to_cpu(hdr.len);
3694 if (len > AIRO_DEF_MTU) {
3695 airo_print_err(ai->dev->name, "Bad size %d", len);
3701 fc = get_unaligned((__le16 *)ptr);
3702 hdrlen = header_len(fc);
3704 skb = dev_alloc_skb( len + hdrlen + 2 );
3706 ai->stats.rx_dropped++;
3709 buffer = (u16*)skb_put (skb, len + hdrlen);
3710 memcpy ((char *)buffer, ptr, hdrlen);
3714 gap = le16_to_cpu(get_unaligned((__le16 *)ptr));
3715 ptr += sizeof(__le16);
3720 airo_print_err(ai->dev->name,
3721 "gaplen too big. Problems will follow...");
3723 memcpy ((char *)buffer + hdrlen, ptr, len);
3725 #ifdef IW_WIRELESS_SPY /* defined in iw_handler.h */
3726 if (ai->spy_data.spy_number > 0) {
3728 struct iw_quality wstats;
3729 /* Prepare spy data : addr + qual */
3730 sa = (char*)buffer + 10;
3731 wstats.qual = hdr.rssi[0];
3733 wstats.level = 0x100 - ai->rssi[hdr.rssi[1]].rssidBm;
3735 wstats.level = (hdr.rssi[1] + 321) / 2;
3736 wstats.noise = ai->wstats.qual.noise;
3737 wstats.updated = IW_QUAL_QUAL_UPDATED
3738 | IW_QUAL_LEVEL_UPDATED
3740 /* Update spy records */
3741 wireless_spy_update(ai->dev, sa, &wstats);
3743 #endif /* IW_WIRELESS_SPY */
3744 skb_reset_mac_header(skb);
3745 skb->pkt_type = PACKET_OTHERHOST;
3746 skb->dev = ai->wifidev;
3747 skb->protocol = htons(ETH_P_802_2);
3748 skb->dev->last_rx = jiffies;
3749 skb->ip_summed = CHECKSUM_NONE;
3752 if (rxd.valid == 0) {
3756 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3760 static u16 setup_card(struct airo_info *ai, u8 *mac, int lock)
3771 memset( &mySsid, 0, sizeof( mySsid ) );
3775 /* The NOP is the first step in getting the card going */
3777 cmd.parm0 = cmd.parm1 = cmd.parm2 = 0;
3778 if (lock && down_interruptible(&ai->sem))
3780 if ( issuecommand( ai, &cmd, &rsp ) != SUCCESS ) {
3785 disable_MAC( ai, 0);
3787 // Let's figure out if we need to use the AUX port
3788 if (!test_bit(FLAG_MPI,&ai->flags)) {
3789 cmd.cmd = CMD_ENABLEAUX;
3790 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
3793 airo_print_err(ai->dev->name, "Error checking for AUX port");
3796 if (!aux_bap || rsp.status & 0xff00) {
3797 ai->bap_read = fast_bap_read;
3798 airo_print_dbg(ai->dev->name, "Doing fast bap_reads");
3800 ai->bap_read = aux_bap_read;
3801 airo_print_dbg(ai->dev->name, "Doing AUX bap_reads");
3806 if (ai->config.len == 0) {
3807 tdsRssiRid rssi_rid;
3808 CapabilityRid cap_rid;
3814 // general configuration (read/modify/write)
3815 status = readConfigRid(ai, lock);
3816 if ( status != SUCCESS ) return ERROR;
3818 status = readCapabilityRid(ai, &cap_rid, lock);
3819 if ( status != SUCCESS ) return ERROR;
3821 status = PC4500_readrid(ai,RID_RSSI,&rssi_rid,sizeof(rssi_rid),lock);
3822 if ( status == SUCCESS ) {
3823 if (ai->rssi || (ai->rssi = kmalloc(512, GFP_KERNEL)) != NULL)
3824 memcpy(ai->rssi, (u8*)&rssi_rid + 2, 512); /* Skip RID length member */
3829 if (cap_rid.softCap & 8)
3830 ai->config.rmode |= RXMODE_NORMALIZED_RSSI;
3832 airo_print_warn(ai->dev->name, "unknown received signal "
3835 ai->config.opmode = adhoc ? MODE_STA_IBSS : MODE_STA_ESS;
3836 ai->config.authType = AUTH_OPEN;
3837 ai->config.modulation = MOD_CCK;
3839 if ((cap_rid.len>=sizeof(cap_rid)) &&
3840 (cap_rid.extSoftCap & cpu_to_le16(1)) &&
3841 (micsetup(ai) == SUCCESS)) {
3842 ai->config.opmode |= MODE_MIC;
3843 set_bit(FLAG_MIC_CAPABLE, &ai->flags);
3846 /* Save off the MAC */
3847 for( i = 0; i < ETH_ALEN; i++ ) {
3848 mac[i] = ai->config.macAddr[i];
3851 /* Check to see if there are any insmod configured
3855 memset(ai->config.rates,0,sizeof(ai->config.rates));
3856 for( i = 0; i < 8 && rates[i]; i++ ) {
3857 ai->config.rates[i] = rates[i];
3860 if ( basic_rate > 0 ) {
3862 for( i = 0; i < 8; i++ ) {
3863 if ( ai->config.rates[i] == basic_rate ||
3864 !ai->config.rates ) {
3865 ai->config.rates[i] = basic_rate | 0x80;
3870 set_bit (FLAG_COMMIT, &ai->flags);
3873 /* Setup the SSIDs if present */
3876 for( i = 0; i < 3 && ssids[i]; i++ ) {
3877 size_t len = strlen(ssids[i]);
3880 mySsid.ssids[i].len = cpu_to_le16(len);
3881 memcpy(mySsid.ssids[i].ssid, ssids[i], len);
3883 mySsid.len = cpu_to_le16(sizeof(mySsid));
3886 status = writeConfigRid(ai, lock);
3887 if ( status != SUCCESS ) return ERROR;
3889 /* Set up the SSID list */
3891 status = writeSsidRid(ai, &mySsid, lock);
3892 if ( status != SUCCESS ) return ERROR;
3895 status = enable_MAC(ai, lock);
3896 if (status != SUCCESS)
3899 /* Grab the initial wep key, we gotta save it for auto_wep */
3900 rc = readWepKeyRid(ai, &wkr, 1, lock);
3901 if (rc == SUCCESS) do {
3902 lastindex = wkr.kindex;
3903 if (wkr.kindex == 0xffff) {
3904 ai->defindex = wkr.mac[0];
3906 rc = readWepKeyRid(ai, &wkr, 0, lock);
3907 } while(lastindex != wkr.kindex);
3914 static u16 issuecommand(struct airo_info *ai, Cmd *pCmd, Resp *pRsp) {
3915 // Im really paranoid about letting it run forever!
3916 int max_tries = 600000;
3918 if (IN4500(ai, EVSTAT) & EV_CMD)
3919 OUT4500(ai, EVACK, EV_CMD);
3921 OUT4500(ai, PARAM0, pCmd->parm0);
3922 OUT4500(ai, PARAM1, pCmd->parm1);
3923 OUT4500(ai, PARAM2, pCmd->parm2);
3924 OUT4500(ai, COMMAND, pCmd->cmd);
3926 while (max_tries-- && (IN4500(ai, EVSTAT) & EV_CMD) == 0) {
3927 if ((IN4500(ai, COMMAND)) == pCmd->cmd)
3928 // PC4500 didn't notice command, try again
3929 OUT4500(ai, COMMAND, pCmd->cmd);
3930 if (!in_atomic() && (max_tries & 255) == 0)
3934 if ( max_tries == -1 ) {
3935 airo_print_err(ai->dev->name,
3936 "Max tries exceeded when issueing command");
3937 if (IN4500(ai, COMMAND) & COMMAND_BUSY)
3938 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3942 // command completed
3943 pRsp->status = IN4500(ai, STATUS);
3944 pRsp->rsp0 = IN4500(ai, RESP0);
3945 pRsp->rsp1 = IN4500(ai, RESP1);
3946 pRsp->rsp2 = IN4500(ai, RESP2);
3947 if ((pRsp->status & 0xff00)!=0 && pCmd->cmd != CMD_SOFTRESET)
3948 airo_print_err(ai->dev->name,
3949 "cmd:%x status:%x rsp0:%x rsp1:%x rsp2:%x",
3950 pCmd->cmd, pRsp->status, pRsp->rsp0, pRsp->rsp1,
3953 // clear stuck command busy if necessary
3954 if (IN4500(ai, COMMAND) & COMMAND_BUSY) {
3955 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3957 // acknowledge processing the status/response
3958 OUT4500(ai, EVACK, EV_CMD);
3963 /* Sets up the bap to start exchange data. whichbap should
3964 * be one of the BAP0 or BAP1 defines. Locks should be held before
3966 static int bap_setup(struct airo_info *ai, u16 rid, u16 offset, int whichbap )
3971 OUT4500(ai, SELECT0+whichbap, rid);
3972 OUT4500(ai, OFFSET0+whichbap, offset);
3974 int status = IN4500(ai, OFFSET0+whichbap);
3975 if (status & BAP_BUSY) {
3976 /* This isn't really a timeout, but its kinda
3981 } else if ( status & BAP_ERR ) {
3982 /* invalid rid or offset */
3983 airo_print_err(ai->dev->name, "BAP error %x %d",
3986 } else if (status & BAP_DONE) { // success
3989 if ( !(max_tries--) ) {
3990 airo_print_err(ai->dev->name,
3991 "BAP setup error too many retries\n");
3994 // -- PC4500 missed it, try again
3995 OUT4500(ai, SELECT0+whichbap, rid);
3996 OUT4500(ai, OFFSET0+whichbap, offset);
4001 /* should only be called by aux_bap_read. This aux function and the
4002 following use concepts not documented in the developers guide. I
4003 got them from a patch given to my by Aironet */
4004 static u16 aux_setup(struct airo_info *ai, u16 page,
4005 u16 offset, u16 *len)
4009 OUT4500(ai, AUXPAGE, page);
4010 OUT4500(ai, AUXOFF, 0);
4011 next = IN4500(ai, AUXDATA);
4012 *len = IN4500(ai, AUXDATA)&0xff;
4013 if (offset != 4) OUT4500(ai, AUXOFF, offset);
4017 /* requires call to bap_setup() first */
4018 static int aux_bap_read(struct airo_info *ai, u16 *pu16Dst,
4019 int bytelen, int whichbap)
4027 unsigned long flags;
4029 spin_lock_irqsave(&ai->aux_lock, flags);
4030 page = IN4500(ai, SWS0+whichbap);
4031 offset = IN4500(ai, SWS2+whichbap);
4032 next = aux_setup(ai, page, offset, &len);
4033 words = (bytelen+1)>>1;
4035 for (i=0; i<words;) {
4037 count = (len>>1) < (words-i) ? (len>>1) : (words-i);
4039 insw( ai->dev->base_addr+DATA0+whichbap,
4042 insb( ai->dev->base_addr+DATA0+whichbap,
4043 pu16Dst+i, count << 1 );
4046 next = aux_setup(ai, next, 4, &len);
4049 spin_unlock_irqrestore(&ai->aux_lock, flags);
4054 /* requires call to bap_setup() first */
4055 static int fast_bap_read(struct airo_info *ai, u16 *pu16Dst,
4056 int bytelen, int whichbap)
4058 bytelen = (bytelen + 1) & (~1); // round up to even value
4060 insw( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen>>1 );
4062 insb( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen );
4066 /* requires call to bap_setup() first */
4067 static int bap_write(struct airo_info *ai, const u16 *pu16Src,
4068 int bytelen, int whichbap)
4070 bytelen = (bytelen + 1) & (~1); // round up to even value
4072 outsw( ai->dev->base_addr+DATA0+whichbap,
4073 pu16Src, bytelen>>1 );
4075 outsb( ai->dev->base_addr+DATA0+whichbap, pu16Src, bytelen );
4079 static int PC4500_accessrid(struct airo_info *ai, u16 rid, u16 accmd)
4081 Cmd cmd; /* for issuing commands */
4082 Resp rsp; /* response from commands */
4085 memset(&cmd, 0, sizeof(cmd));
4088 status = issuecommand(ai, &cmd, &rsp);
4089 if (status != 0) return status;
4090 if ( (rsp.status & 0x7F00) != 0) {
4091 return (accmd << 8) + (rsp.rsp0 & 0xFF);
4096 /* Note, that we are using BAP1 which is also used by transmit, so
4097 * we must get a lock. */
4098 static int PC4500_readrid(struct airo_info *ai, u16 rid, void *pBuf, int len, int lock)
4104 if (down_interruptible(&ai->sem))
4107 if (test_bit(FLAG_MPI,&ai->flags)) {
4111 memset(&cmd, 0, sizeof(cmd));
4112 memset(&rsp, 0, sizeof(rsp));
4113 ai->config_desc.rid_desc.valid = 1;
4114 ai->config_desc.rid_desc.len = RIDSIZE;
4115 ai->config_desc.rid_desc.rid = 0;
4116 ai->config_desc.rid_desc.host_addr = ai->ridbus;
4118 cmd.cmd = CMD_ACCESS;
4121 memcpy_toio(ai->config_desc.card_ram_off,
4122 &ai->config_desc.rid_desc, sizeof(Rid));
4124 rc = issuecommand(ai, &cmd, &rsp);
4126 if (rsp.status & 0x7f00)
4129 memcpy(pBuf, ai->config_desc.virtual_host_addr, len);
4132 if ((status = PC4500_accessrid(ai, rid, CMD_ACCESS))!=SUCCESS) {
4136 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4140 // read the rid length field
4141 bap_read(ai, pBuf, 2, BAP1);
4142 // length for remaining part of rid
4143 len = min(len, (int)le16_to_cpu(*(__le16*)pBuf)) - 2;
4146 airo_print_err(ai->dev->name,
4147 "Rid %x has a length of %d which is too short",
4148 (int)rid, (int)len );
4152 // read remainder of the rid
4153 rc = bap_read(ai, ((u16*)pBuf)+1, len, BAP1);
4161 /* Note, that we are using BAP1 which is also used by transmit, so
4162 * make sure this isnt called when a transmit is happening */
4163 static int PC4500_writerid(struct airo_info *ai, u16 rid,
4164 const void *pBuf, int len, int lock)
4169 *(__le16*)pBuf = cpu_to_le16((u16)len);
4172 if (down_interruptible(&ai->sem))
4175 if (test_bit(FLAG_MPI,&ai->flags)) {
4179 if (test_bit(FLAG_ENABLED, &ai->flags) && (RID_WEP_TEMP != rid))
4180 airo_print_err(ai->dev->name,
4181 "%s: MAC should be disabled (rid=%04x)",
4183 memset(&cmd, 0, sizeof(cmd));
4184 memset(&rsp, 0, sizeof(rsp));
4186 ai->config_desc.rid_desc.valid = 1;
4187 ai->config_desc.rid_desc.len = *((u16 *)pBuf);
4188 ai->config_desc.rid_desc.rid = 0;
4190 cmd.cmd = CMD_WRITERID;
4193 memcpy_toio(ai->config_desc.card_ram_off,
4194 &ai->config_desc.rid_desc, sizeof(Rid));
4196 if (len < 4 || len > 2047) {
4197 airo_print_err(ai->dev->name, "%s: len=%d", __FUNCTION__, len);
4200 memcpy((char *)ai->config_desc.virtual_host_addr,
4203 rc = issuecommand(ai, &cmd, &rsp);
4204 if ((rc & 0xff00) != 0) {
4205 airo_print_err(ai->dev->name, "%s: Write rid Error %d",
4207 airo_print_err(ai->dev->name, "%s: Cmd=%04x",
4208 __FUNCTION__, cmd.cmd);
4211 if ((rsp.status & 0x7f00))
4215 // --- first access so that we can write the rid data
4216 if ( (status = PC4500_accessrid(ai, rid, CMD_ACCESS)) != 0) {
4220 // --- now write the rid data
4221 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4225 bap_write(ai, pBuf, len, BAP1);
4226 // ---now commit the rid data
4227 rc = PC4500_accessrid(ai, rid, 0x100|CMD_ACCESS);
4235 /* Allocates a FID to be used for transmitting packets. We only use
4237 static u16 transmit_allocate(struct airo_info *ai, int lenPayload, int raw)
4239 unsigned int loop = 3000;
4245 cmd.cmd = CMD_ALLOCATETX;
4246 cmd.parm0 = lenPayload;
4247 if (down_interruptible(&ai->sem))
4249 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
4253 if ( (rsp.status & 0xFF00) != 0) {
4257 /* wait for the allocate event/indication
4258 * It makes me kind of nervous that this can just sit here and spin,
4259 * but in practice it only loops like four times. */
4260 while (((IN4500(ai, EVSTAT) & EV_ALLOC) == 0) && --loop);
4266 // get the allocated fid and acknowledge
4267 txFid = IN4500(ai, TXALLOCFID);
4268 OUT4500(ai, EVACK, EV_ALLOC);
4270 /* The CARD is pretty cool since it converts the ethernet packet
4271 * into 802.11. Also note that we don't release the FID since we
4272 * will be using the same one over and over again. */
4273 /* We only have to setup the control once since we are not
4274 * releasing the fid. */
4276 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_11
4277 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4279 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_3
4280 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4281 if (bap_setup(ai, txFid, 0x0008, BAP1) != SUCCESS)
4284 bap_write(ai, &txControl, sizeof(txControl), BAP1);
4292 /* In general BAP1 is dedicated to transmiting packets. However,
4293 since we need a BAP when accessing RIDs, we also use BAP1 for that.
4294 Make sure the BAP1 spinlock is held when this is called. */
4295 static int transmit_802_3_packet(struct airo_info *ai, int len, char *pPacket)
4306 if (len <= ETH_ALEN * 2) {
4307 airo_print_warn(ai->dev->name, "Short packet %d", len);
4310 len -= ETH_ALEN * 2;
4312 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
4313 (ntohs(((__be16 *)pPacket)[6]) != 0x888E)) {
4314 if (encapsulate(ai,(etherHead *)pPacket,&pMic,len) != SUCCESS)
4316 miclen = sizeof(pMic);
4318 // packet is destination[6], source[6], payload[len-12]
4319 // write the payload length and dst/src/payload
4320 if (bap_setup(ai, txFid, 0x0036, BAP1) != SUCCESS) return ERROR;
4321 /* The hardware addresses aren't counted as part of the payload, so
4322 * we have to subtract the 12 bytes for the addresses off */
4323 payloadLen = cpu_to_le16(len + miclen);
4324 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4325 bap_write(ai, (const u16*)pPacket, sizeof(etherHead), BAP1);
4327 bap_write(ai, (const u16*)&pMic, miclen, BAP1);
4328 bap_write(ai, (const u16*)(pPacket + sizeof(etherHead)), len, BAP1);
4329 // issue the transmit command
4330 memset( &cmd, 0, sizeof( cmd ) );
4331 cmd.cmd = CMD_TRANSMIT;
4333 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4334 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4338 static int transmit_802_11_packet(struct airo_info *ai, int len, char *pPacket)
4340 __le16 fc, payloadLen;
4344 static u8 tail[(30-10) + 2 + 6] = {[30-10] = 6};
4345 /* padding of header to full size + le16 gaplen (6) + gaplen bytes */
4349 fc = *(__le16*)pPacket;
4350 hdrlen = header_len(fc);
4353 airo_print_warn(ai->dev->name, "Short packet %d", len);
4357 /* packet is 802.11 header + payload
4358 * write the payload length and dst/src/payload */
4359 if (bap_setup(ai, txFid, 6, BAP1) != SUCCESS) return ERROR;
4360 /* The 802.11 header aren't counted as part of the payload, so
4361 * we have to subtract the header bytes off */
4362 payloadLen = cpu_to_le16(len-hdrlen);
4363 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4364 if (bap_setup(ai, txFid, 0x0014, BAP1) != SUCCESS) return ERROR;
4365 bap_write(ai, (const u16*)pPacket, hdrlen, BAP1);
4366 bap_write(ai, (u16 *)(tail + (hdrlen - 10)), 38 - hdrlen, BAP1);
4368 bap_write(ai, (const u16*)(pPacket + hdrlen), len - hdrlen, BAP1);
4369 // issue the transmit command
4370 memset( &cmd, 0, sizeof( cmd ) );
4371 cmd.cmd = CMD_TRANSMIT;
4373 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4374 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4379 * This is the proc_fs routines. It is a bit messier than I would
4380 * like! Feel free to clean it up!
4383 static ssize_t proc_read( struct file *file,
4384 char __user *buffer,
4388 static ssize_t proc_write( struct file *file,
4389 const char __user *buffer,
4392 static int proc_close( struct inode *inode, struct file *file );
4394 static int proc_stats_open( struct inode *inode, struct file *file );
4395 static int proc_statsdelta_open( struct inode *inode, struct file *file );
4396 static int proc_status_open( struct inode *inode, struct file *file );
4397 static int proc_SSID_open( struct inode *inode, struct file *file );
4398 static int proc_APList_open( struct inode *inode, struct file *file );
4399 static int proc_BSSList_open( struct inode *inode, struct file *file );
4400 static int proc_config_open( struct inode *inode, struct file *file );
4401 static int proc_wepkey_open( struct inode *inode, struct file *file );
4403 static const struct file_operations proc_statsdelta_ops = {
4405 .open = proc_statsdelta_open,
4406 .release = proc_close
4409 static const struct file_operations proc_stats_ops = {
4411 .open = proc_stats_open,
4412 .release = proc_close
4415 static const struct file_operations proc_status_ops = {
4417 .open = proc_status_open,
4418 .release = proc_close
4421 static const struct file_operations proc_SSID_ops = {
4423 .write = proc_write,
4424 .open = proc_SSID_open,
4425 .release = proc_close
4428 static const struct file_operations proc_BSSList_ops = {
4430 .write = proc_write,
4431 .open = proc_BSSList_open,
4432 .release = proc_close
4435 static const struct file_operations proc_APList_ops = {
4437 .write = proc_write,
4438 .open = proc_APList_open,
4439 .release = proc_close
4442 static const struct file_operations proc_config_ops = {
4444 .write = proc_write,
4445 .open = proc_config_open,
4446 .release = proc_close
4449 static const struct file_operations proc_wepkey_ops = {
4451 .write = proc_write,
4452 .open = proc_wepkey_open,
4453 .release = proc_close
4456 static struct proc_dir_entry *airo_entry;
4465 void (*on_close) (struct inode *, struct file *);
4469 #define SETPROC_OPS(entry, ops) (entry)->proc_fops = &(ops)
4472 static int setup_proc_entry( struct net_device *dev,
4473 struct airo_info *apriv ) {
4474 struct proc_dir_entry *entry;
4475 /* First setup the device directory */
4476 strcpy(apriv->proc_name,dev->name);
4477 apriv->proc_entry = create_proc_entry(apriv->proc_name,
4480 if (!apriv->proc_entry)
4482 apriv->proc_entry->uid = proc_uid;
4483 apriv->proc_entry->gid = proc_gid;
4484 apriv->proc_entry->owner = THIS_MODULE;
4486 /* Setup the StatsDelta */
4487 entry = create_proc_entry("StatsDelta",
4488 S_IFREG | (S_IRUGO&proc_perm),
4491 goto fail_stats_delta;
4492 entry->uid = proc_uid;
4493 entry->gid = proc_gid;
4495 entry->owner = THIS_MODULE;
4496 SETPROC_OPS(entry, proc_statsdelta_ops);
4498 /* Setup the Stats */
4499 entry = create_proc_entry("Stats",
4500 S_IFREG | (S_IRUGO&proc_perm),
4504 entry->uid = proc_uid;
4505 entry->gid = proc_gid;
4507 entry->owner = THIS_MODULE;
4508 SETPROC_OPS(entry, proc_stats_ops);
4510 /* Setup the Status */
4511 entry = create_proc_entry("Status",
4512 S_IFREG | (S_IRUGO&proc_perm),
4516 entry->uid = proc_uid;
4517 entry->gid = proc_gid;
4519 entry->owner = THIS_MODULE;
4520 SETPROC_OPS(entry, proc_status_ops);
4522 /* Setup the Config */
4523 entry = create_proc_entry("Config",
4524 S_IFREG | proc_perm,
4528 entry->uid = proc_uid;
4529 entry->gid = proc_gid;
4531 entry->owner = THIS_MODULE;
4532 SETPROC_OPS(entry, proc_config_ops);
4534 /* Setup the SSID */
4535 entry = create_proc_entry("SSID",
4536 S_IFREG | proc_perm,
4540 entry->uid = proc_uid;
4541 entry->gid = proc_gid;
4543 entry->owner = THIS_MODULE;
4544 SETPROC_OPS(entry, proc_SSID_ops);
4546 /* Setup the APList */
4547 entry = create_proc_entry("APList",
4548 S_IFREG | proc_perm,
4552 entry->uid = proc_uid;
4553 entry->gid = proc_gid;
4555 entry->owner = THIS_MODULE;
4556 SETPROC_OPS(entry, proc_APList_ops);
4558 /* Setup the BSSList */
4559 entry = create_proc_entry("BSSList",
4560 S_IFREG | proc_perm,
4564 entry->uid = proc_uid;
4565 entry->gid = proc_gid;
4567 entry->owner = THIS_MODULE;
4568 SETPROC_OPS(entry, proc_BSSList_ops);
4570 /* Setup the WepKey */
4571 entry = create_proc_entry("WepKey",
4572 S_IFREG | proc_perm,
4576 entry->uid = proc_uid;
4577 entry->gid = proc_gid;
4579 entry->owner = THIS_MODULE;
4580 SETPROC_OPS(entry, proc_wepkey_ops);
4585 remove_proc_entry("BSSList", apriv->proc_entry);
4587 remove_proc_entry("APList", apriv->proc_entry);
4589 remove_proc_entry("SSID", apriv->proc_entry);
4591 remove_proc_entry("Config", apriv->proc_entry);
4593 remove_proc_entry("Status", apriv->proc_entry);
4595 remove_proc_entry("Stats", apriv->proc_entry);
4597 remove_proc_entry("StatsDelta", apriv->proc_entry);
4599 remove_proc_entry(apriv->proc_name, airo_entry);
4604 static int takedown_proc_entry( struct net_device *dev,
4605 struct airo_info *apriv ) {
4606 if ( !apriv->proc_entry->namelen ) return 0;
4607 remove_proc_entry("Stats",apriv->proc_entry);
4608 remove_proc_entry("StatsDelta",apriv->proc_entry);
4609 remove_proc_entry("Status",apriv->proc_entry);
4610 remove_proc_entry("Config",apriv->proc_entry);
4611 remove_proc_entry("SSID",apriv->proc_entry);
4612 remove_proc_entry("APList",apriv->proc_entry);
4613 remove_proc_entry("BSSList",apriv->proc_entry);
4614 remove_proc_entry("WepKey",apriv->proc_entry);
4615 remove_proc_entry(apriv->proc_name,airo_entry);
4620 * What we want from the proc_fs is to be able to efficiently read
4621 * and write the configuration. To do this, we want to read the
4622 * configuration when the file is opened and write it when the file is
4623 * closed. So basically we allocate a read buffer at open and fill it
4624 * with data, and allocate a write buffer and read it at close.
4628 * The read routine is generic, it relies on the preallocated rbuffer
4629 * to supply the data.
4631 static ssize_t proc_read( struct file *file,
4632 char __user *buffer,
4636 loff_t pos = *offset;
4637 struct proc_data *priv = (struct proc_data*)file->private_data;
4644 if (pos >= priv->readlen)
4646 if (len > priv->readlen - pos)
4647 len = priv->readlen - pos;
4648 if (copy_to_user(buffer, priv->rbuffer + pos, len))
4650 *offset = pos + len;
4655 * The write routine is generic, it fills in a preallocated rbuffer
4656 * to supply the data.
4658 static ssize_t proc_write( struct file *file,
4659 const char __user *buffer,
4663 loff_t pos = *offset;
4664 struct proc_data *priv = (struct proc_data*)file->private_data;
4671 if (pos >= priv->maxwritelen)
4673 if (len > priv->maxwritelen - pos)
4674 len = priv->maxwritelen - pos;
4675 if (copy_from_user(priv->wbuffer + pos, buffer, len))
4677 if ( pos + len > priv->writelen )
4678 priv->writelen = len + file->f_pos;
4679 *offset = pos + len;
4683 static int proc_status_open( struct inode *inode, struct file *file ) {
4684 struct proc_data *data;
4685 struct proc_dir_entry *dp = PDE(inode);
4686 struct net_device *dev = dp->data;
4687 struct airo_info *apriv = dev->priv;
4688 CapabilityRid cap_rid;
4689 StatusRid status_rid;
4692 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4694 data = (struct proc_data *)file->private_data;
4695 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
4696 kfree (file->private_data);
4700 readStatusRid(apriv, &status_rid, 1);
4701 readCapabilityRid(apriv, &cap_rid, 1);
4703 i = sprintf(data->rbuffer, "Status: %s%s%s%s%s%s%s%s%s\n",
4704 status_rid.mode & 1 ? "CFG ": "",
4705 status_rid.mode & 2 ? "ACT ": "",
4706 status_rid.mode & 0x10 ? "SYN ": "",
4707 status_rid.mode & 0x20 ? "LNK ": "",
4708 status_rid.mode & 0x40 ? "LEAP ": "",
4709 status_rid.mode & 0x80 ? "PRIV ": "",
4710 status_rid.mode & 0x100 ? "KEY ": "",
4711 status_rid.mode & 0x200 ? "WEP ": "",
4712 status_rid.mode & 0x8000 ? "ERR ": "");
4713 sprintf( data->rbuffer+i, "Mode: %x\n"
4714 "Signal Strength: %d\n"
4715 "Signal Quality: %d\n"
4720 "Driver Version: %s\n"
4721 "Device: %s\nManufacturer: %s\nFirmware Version: %s\n"
4722 "Radio type: %x\nCountry: %x\nHardware Version: %x\n"
4723 "Software Version: %x\nSoftware Subversion: %x\n"
4724 "Boot block version: %x\n",
4725 (int)status_rid.mode,
4726 (int)status_rid.normalizedSignalStrength,
4727 (int)status_rid.signalQuality,
4728 (int)status_rid.SSIDlen,
4731 (int)status_rid.channel,
4732 (int)status_rid.currentXmitRate/2,
4740 (int)cap_rid.softVer,
4741 (int)cap_rid.softSubVer,
4742 (int)cap_rid.bootBlockVer );
4743 data->readlen = strlen( data->rbuffer );
4747 static int proc_stats_rid_open(struct inode*, struct file*, u16);
4748 static int proc_statsdelta_open( struct inode *inode,
4749 struct file *file ) {
4750 if (file->f_mode&FMODE_WRITE) {
4751 return proc_stats_rid_open(inode, file, RID_STATSDELTACLEAR);
4753 return proc_stats_rid_open(inode, file, RID_STATSDELTA);
4756 static int proc_stats_open( struct inode *inode, struct file *file ) {
4757 return proc_stats_rid_open(inode, file, RID_STATS);
4760 static int proc_stats_rid_open( struct inode *inode,
4763 struct proc_data *data;
4764 struct proc_dir_entry *dp = PDE(inode);
4765 struct net_device *dev = dp->data;
4766 struct airo_info *apriv = dev->priv;
4769 u32 *vals = stats.vals;
4771 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4773 data = (struct proc_data *)file->private_data;
4774 if ((data->rbuffer = kmalloc( 4096, GFP_KERNEL )) == NULL) {
4775 kfree (file->private_data);
4779 readStatsRid(apriv, &stats, rid, 1);
4782 for(i=0; statsLabels[i]!=(char *)-1 &&
4783 i*4<stats.len; i++){
4784 if (!statsLabels[i]) continue;
4785 if (j+strlen(statsLabels[i])+16>4096) {
4786 airo_print_warn(apriv->dev->name,
4787 "Potentially disasterous buffer overflow averted!");
4790 j+=sprintf(data->rbuffer+j, "%s: %u\n", statsLabels[i], vals[i]);
4792 if (i*4>=stats.len){
4793 airo_print_warn(apriv->dev->name, "Got a short rid");
4799 static int get_dec_u16( char *buffer, int *start, int limit ) {
4802 for( value = 0; buffer[*start] >= '0' &&
4803 buffer[*start] <= '9' &&
4804 *start < limit; (*start)++ ) {
4807 value += buffer[*start] - '0';
4809 if ( !valid ) return -1;
4813 static int airo_config_commit(struct net_device *dev,
4814 struct iw_request_info *info, void *zwrq,
4817 static void proc_config_on_close( struct inode *inode, struct file *file ) {
4818 struct proc_data *data = file->private_data;
4819 struct proc_dir_entry *dp = PDE(inode);
4820 struct net_device *dev = dp->data;
4821 struct airo_info *ai = dev->priv;
4824 if ( !data->writelen ) return;
4826 readConfigRid(ai, 1);
4827 set_bit (FLAG_COMMIT, &ai->flags);
4829 line = data->wbuffer;
4831 /*** Mode processing */
4832 if ( !strncmp( line, "Mode: ", 6 ) ) {
4834 if ((ai->config.rmode & 0xff) >= RXMODE_RFMON)
4835 set_bit (FLAG_RESET, &ai->flags);
4836 ai->config.rmode &= 0xfe00;
4837 clear_bit (FLAG_802_11, &ai->flags);
4838 ai->config.opmode &= 0xFF00;
4839 ai->config.scanMode = SCANMODE_ACTIVE;
4840 if ( line[0] == 'a' ) {
4841 ai->config.opmode |= 0;
4843 ai->config.opmode |= 1;
4844 if ( line[0] == 'r' ) {
4845 ai->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
4846 ai->config.scanMode = SCANMODE_PASSIVE;
4847 set_bit (FLAG_802_11, &ai->flags);
4848 } else if ( line[0] == 'y' ) {
4849 ai->config.rmode |= RXMODE_RFMON_ANYBSS | RXMODE_DISABLE_802_3_HEADER;
4850 ai->config.scanMode = SCANMODE_PASSIVE;
4851 set_bit (FLAG_802_11, &ai->flags);
4852 } else if ( line[0] == 'l' )
4853 ai->config.rmode |= RXMODE_LANMON;
4855 set_bit (FLAG_COMMIT, &ai->flags);
4858 /*** Radio status */
4859 else if (!strncmp(line,"Radio: ", 7)) {
4861 if (!strncmp(line,"off",3)) {
4862 set_bit (FLAG_RADIO_OFF, &ai->flags);
4864 clear_bit (FLAG_RADIO_OFF, &ai->flags);
4867 /*** NodeName processing */
4868 else if ( !strncmp( line, "NodeName: ", 10 ) ) {
4872 memset( ai->config.nodeName, 0, 16 );
4873 /* Do the name, assume a space between the mode and node name */
4874 for( j = 0; j < 16 && line[j] != '\n'; j++ ) {
4875 ai->config.nodeName[j] = line[j];
4877 set_bit (FLAG_COMMIT, &ai->flags);
4880 /*** PowerMode processing */
4881 else if ( !strncmp( line, "PowerMode: ", 11 ) ) {
4883 if ( !strncmp( line, "PSPCAM", 6 ) ) {
4884 ai->config.powerSaveMode = POWERSAVE_PSPCAM;
4885 set_bit (FLAG_COMMIT, &ai->flags);
4886 } else if ( !strncmp( line, "PSP", 3 ) ) {
4887 ai->config.powerSaveMode = POWERSAVE_PSP;
4888 set_bit (FLAG_COMMIT, &ai->flags);
4890 ai->config.powerSaveMode = POWERSAVE_CAM;
4891 set_bit (FLAG_COMMIT, &ai->flags);
4893 } else if ( !strncmp( line, "DataRates: ", 11 ) ) {
4894 int v, i = 0, k = 0; /* i is index into line,
4895 k is index to rates */
4898 while((v = get_dec_u16(line, &i, 3))!=-1) {
4899 ai->config.rates[k++] = (u8)v;
4903 set_bit (FLAG_COMMIT, &ai->flags);
4904 } else if ( !strncmp( line, "Channel: ", 9 ) ) {
4907 v = get_dec_u16(line, &i, i+3);
4909 ai->config.channelSet = (u16)v;
4910 set_bit (FLAG_COMMIT, &ai->flags);
4912 } else if ( !strncmp( line, "XmitPower: ", 11 ) ) {
4915 v = get_dec_u16(line, &i, i+3);
4917 ai->config.txPower = (u16)v;
4918 set_bit (FLAG_COMMIT, &ai->flags);
4920 } else if ( !strncmp( line, "WEP: ", 5 ) ) {
4924 ai->config.authType = (u16)AUTH_SHAREDKEY;
4927 ai->config.authType = (u16)AUTH_ENCRYPT;
4930 ai->config.authType = (u16)AUTH_OPEN;
4933 set_bit (FLAG_COMMIT, &ai->flags);
4934 } else if ( !strncmp( line, "LongRetryLimit: ", 16 ) ) {
4938 v = get_dec_u16(line, &i, 3);
4939 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4940 ai->config.longRetryLimit = (u16)v;
4941 set_bit (FLAG_COMMIT, &ai->flags);
4942 } else if ( !strncmp( line, "ShortRetryLimit: ", 17 ) ) {
4946 v = get_dec_u16(line, &i, 3);
4947 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4948 ai->config.shortRetryLimit = (u16)v;
4949 set_bit (FLAG_COMMIT, &ai->flags);
4950 } else if ( !strncmp( line, "RTSThreshold: ", 14 ) ) {
4954 v = get_dec_u16(line, &i, 4);
4955 v = (v<0) ? 0 : ((v>AIRO_DEF_MTU) ? AIRO_DEF_MTU : v);
4956 ai->config.rtsThres = (u16)v;
4957 set_bit (FLAG_COMMIT, &ai->flags);
4958 } else if ( !strncmp( line, "TXMSDULifetime: ", 16 ) ) {
4962 v = get_dec_u16(line, &i, 5);
4964 ai->config.txLifetime = (u16)v;
4965 set_bit (FLAG_COMMIT, &ai->flags);
4966 } else if ( !strncmp( line, "RXMSDULifetime: ", 16 ) ) {
4970 v = get_dec_u16(line, &i, 5);
4972 ai->config.rxLifetime = (u16)v;
4973 set_bit (FLAG_COMMIT, &ai->flags);
4974 } else if ( !strncmp( line, "TXDiversity: ", 13 ) ) {
4975 ai->config.txDiversity =
4976 (line[13]=='l') ? 1 :
4977 ((line[13]=='r')? 2: 3);
4978 set_bit (FLAG_COMMIT, &ai->flags);
4979 } else if ( !strncmp( line, "RXDiversity: ", 13 ) ) {
4980 ai->config.rxDiversity =
4981 (line[13]=='l') ? 1 :
4982 ((line[13]=='r')? 2: 3);
4983 set_bit (FLAG_COMMIT, &ai->flags);
4984 } else if ( !strncmp( line, "FragThreshold: ", 15 ) ) {
4988 v = get_dec_u16(line, &i, 4);
4989 v = (v<256) ? 256 : ((v>AIRO_DEF_MTU) ? AIRO_DEF_MTU : v);
4990 v = v & 0xfffe; /* Make sure its even */
4991 ai->config.fragThresh = (u16)v;
4992 set_bit (FLAG_COMMIT, &ai->flags);
4993 } else if (!strncmp(line, "Modulation: ", 12)) {
4996 case 'd': ai->config.modulation=MOD_DEFAULT; set_bit(FLAG_COMMIT, &ai->flags); break;
4997 case 'c': ai->config.modulation=MOD_CCK; set_bit(FLAG_COMMIT, &ai->flags); break;
4998 case 'm': ai->config.modulation=MOD_MOK; set_bit(FLAG_COMMIT, &ai->flags); break;
4999 default: airo_print_warn(ai->dev->name, "Unknown modulation");
5001 } else if (!strncmp(line, "Preamble: ", 10)) {
5004 case 'a': ai->config.preamble=PREAMBLE_AUTO; set_bit(FLAG_COMMIT, &ai->flags); break;
5005 case 'l': ai->config.preamble=PREAMBLE_LONG; set_bit(FLAG_COMMIT, &ai->flags); break;
5006 case 's': ai->config.preamble=PREAMBLE_SHORT; set_bit(FLAG_COMMIT, &ai->flags); break;
5007 default: airo_print_warn(ai->dev->name, "Unknown preamble");
5010 airo_print_warn(ai->dev->name, "Couldn't figure out %s", line);
5012 while( line[0] && line[0] != '\n' ) line++;
5013 if ( line[0] ) line++;
5015 airo_config_commit(dev, NULL, NULL, NULL);
5018 static char *get_rmode(u16 mode) {
5020 case RXMODE_RFMON: return "rfmon";
5021 case RXMODE_RFMON_ANYBSS: return "yna (any) bss rfmon";
5022 case RXMODE_LANMON: return "lanmon";
5027 static int proc_config_open( struct inode *inode, struct file *file ) {
5028 struct proc_data *data;
5029 struct proc_dir_entry *dp = PDE(inode);
5030 struct net_device *dev = dp->data;
5031 struct airo_info *ai = dev->priv;
5034 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5036 data = (struct proc_data *)file->private_data;
5037 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
5038 kfree (file->private_data);
5041 if ((data->wbuffer = kzalloc( 2048, GFP_KERNEL )) == NULL) {
5042 kfree (data->rbuffer);
5043 kfree (file->private_data);
5046 data->maxwritelen = 2048;
5047 data->on_close = proc_config_on_close;
5049 readConfigRid(ai, 1);
5051 i = sprintf( data->rbuffer,
5056 "DataRates: %d %d %d %d %d %d %d %d\n"
5059 (ai->config.opmode & 0xFF) == 0 ? "adhoc" :
5060 (ai->config.opmode & 0xFF) == 1 ? get_rmode(ai->config.rmode):
5061 (ai->config.opmode & 0xFF) == 2 ? "AP" :
5062 (ai->config.opmode & 0xFF) == 3 ? "AP RPTR" : "Error",
5063 test_bit(FLAG_RADIO_OFF, &ai->flags) ? "off" : "on",
5064 ai->config.nodeName,
5065 ai->config.powerSaveMode == 0 ? "CAM" :
5066 ai->config.powerSaveMode == 1 ? "PSP" :
5067 ai->config.powerSaveMode == 2 ? "PSPCAM" : "Error",
5068 (int)ai->config.rates[0],
5069 (int)ai->config.rates[1],
5070 (int)ai->config.rates[2],
5071 (int)ai->config.rates[3],
5072 (int)ai->config.rates[4],
5073 (int)ai->config.rates[5],
5074 (int)ai->config.rates[6],
5075 (int)ai->config.rates[7],
5076 (int)ai->config.channelSet,
5077 (int)ai->config.txPower
5079 sprintf( data->rbuffer + i,
5080 "LongRetryLimit: %d\n"
5081 "ShortRetryLimit: %d\n"
5082 "RTSThreshold: %d\n"
5083 "TXMSDULifetime: %d\n"
5084 "RXMSDULifetime: %d\n"
5087 "FragThreshold: %d\n"
5091 (int)ai->config.longRetryLimit,
5092 (int)ai->config.shortRetryLimit,
5093 (int)ai->config.rtsThres,
5094 (int)ai->config.txLifetime,
5095 (int)ai->config.rxLifetime,
5096 ai->config.txDiversity == 1 ? "left" :
5097 ai->config.txDiversity == 2 ? "right" : "both",
5098 ai->config.rxDiversity == 1 ? "left" :
5099 ai->config.rxDiversity == 2 ? "right" : "both",
5100 (int)ai->config.fragThresh,
5101 ai->config.authType == AUTH_ENCRYPT ? "encrypt" :
5102 ai->config.authType == AUTH_SHAREDKEY ? "shared" : "open",
5103 ai->config.modulation == 0 ? "default" :
5104 ai->config.modulation == MOD_CCK ? "cck" :
5105 ai->config.modulation == MOD_MOK ? "mok" : "error",
5106 ai->config.preamble == PREAMBLE_AUTO ? "auto" :
5107 ai->config.preamble == PREAMBLE_LONG ? "long" :
5108 ai->config.preamble == PREAMBLE_SHORT ? "short" : "error"
5110 data->readlen = strlen( data->rbuffer );
5114 static void proc_SSID_on_close(struct inode *inode, struct file *file)
5116 struct proc_data *data = (struct proc_data *)file->private_data;
5117 struct proc_dir_entry *dp = PDE(inode);
5118 struct net_device *dev = dp->data;
5119 struct airo_info *ai = dev->priv;
5122 char *p = data->wbuffer;
5123 char *end = p + data->writelen;
5125 if (!data->writelen)
5128 *end = '\n'; /* sentinel; we have space for it */
5130 memset(&SSID_rid, 0, sizeof(SSID_rid));
5132 for (i = 0; i < 3 && p < end; i++) {
5134 /* copy up to 32 characters from this line */
5135 while (*p != '\n' && j < 32)
5136 SSID_rid.ssids[i].ssid[j++] = *p++;
5139 SSID_rid.ssids[i].len = cpu_to_le16(j);
5140 /* skip to the beginning of the next line */
5141 while (*p++ != '\n')
5145 SSID_rid.len = cpu_to_le16(sizeof(SSID_rid));
5147 writeSsidRid(ai, &SSID_rid, 1);
5151 static inline u8 hexVal(char c) {
5152 if (c>='0' && c<='9') return c -= '0';
5153 if (c>='a' && c<='f') return c -= 'a'-10;
5154 if (c>='A' && c<='F') return c -= 'A'-10;
5158 static void proc_APList_on_close( struct inode *inode, struct file *file ) {
5159 struct proc_data *data = (struct proc_data *)file->private_data;
5160 struct proc_dir_entry *dp = PDE(inode);
5161 struct net_device *dev = dp->data;
5162 struct airo_info *ai = dev->priv;
5163 APListRid APList_rid;
5166 if ( !data->writelen ) return;
5168 memset( &APList_rid, 0, sizeof(APList_rid) );
5169 APList_rid.len = sizeof(APList_rid);
5171 for( i = 0; i < 4 && data->writelen >= (i+1)*6*3; i++ ) {
5173 for( j = 0; j < 6*3 && data->wbuffer[j+i*6*3]; j++ ) {
5176 APList_rid.ap[i][j/3]=
5177 hexVal(data->wbuffer[j+i*6*3])<<4;
5180 APList_rid.ap[i][j/3]|=
5181 hexVal(data->wbuffer[j+i*6*3]);
5187 writeAPListRid(ai, &APList_rid, 1);
5191 /* This function wraps PC4500_writerid with a MAC disable */
5192 static int do_writerid( struct airo_info *ai, u16 rid, const void *rid_data,
5193 int len, int dummy ) {
5197 rc = PC4500_writerid(ai, rid, rid_data, len, 1);
5202 /* Returns the length of the key at the index. If index == 0xffff
5203 * the index of the transmit key is returned. If the key doesn't exist,
5204 * -1 will be returned.
5206 static int get_wep_key(struct airo_info *ai, u16 index) {
5211 rc = readWepKeyRid(ai, &wkr, 1, 1);
5212 if (rc == SUCCESS) do {
5213 lastindex = wkr.kindex;
5214 if (wkr.kindex == index) {
5215 if (index == 0xffff) {
5220 readWepKeyRid(ai, &wkr, 0, 1);
5221 } while(lastindex != wkr.kindex);
5225 static int set_wep_key(struct airo_info *ai, u16 index,
5226 const char *key, u16 keylen, int perm, int lock ) {
5227 static const unsigned char macaddr[ETH_ALEN] = { 0x01, 0, 0, 0, 0, 0 };
5230 memset(&wkr, 0, sizeof(wkr));
5232 // We are selecting which key to use
5233 wkr.len = sizeof(wkr);
5234 wkr.kindex = 0xffff;
5235 wkr.mac[0] = (char)index;
5236 if (perm) ai->defindex = (char)index;
5238 // We are actually setting the key
5239 wkr.len = sizeof(wkr);
5242 memcpy( wkr.key, key, keylen );
5243 memcpy( wkr.mac, macaddr, ETH_ALEN );
5246 if (perm) disable_MAC(ai, lock);
5247 writeWepKeyRid(ai, &wkr, perm, lock);
5248 if (perm) enable_MAC(ai, lock);
5252 static void proc_wepkey_on_close( struct inode *inode, struct file *file ) {
5253 struct proc_data *data;
5254 struct proc_dir_entry *dp = PDE(inode);
5255 struct net_device *dev = dp->data;
5256 struct airo_info *ai = dev->priv;
5262 memset(key, 0, sizeof(key));
5264 data = (struct proc_data *)file->private_data;
5265 if ( !data->writelen ) return;
5267 if (data->wbuffer[0] >= '0' && data->wbuffer[0] <= '3' &&
5268 (data->wbuffer[1] == ' ' || data->wbuffer[1] == '\n')) {
5269 index = data->wbuffer[0] - '0';
5270 if (data->wbuffer[1] == '\n') {
5271 set_wep_key(ai, index, NULL, 0, 1, 1);
5276 airo_print_err(ai->dev->name, "WepKey passed invalid key index");
5280 for( i = 0; i < 16*3 && data->wbuffer[i+j]; i++ ) {
5283 key[i/3] = hexVal(data->wbuffer[i+j])<<4;
5286 key[i/3] |= hexVal(data->wbuffer[i+j]);
5290 set_wep_key(ai, index, key, i/3, 1, 1);
5293 static int proc_wepkey_open( struct inode *inode, struct file *file ) {
5294 struct proc_data *data;
5295 struct proc_dir_entry *dp = PDE(inode);
5296 struct net_device *dev = dp->data;
5297 struct airo_info *ai = dev->priv;
5304 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5306 memset(&wkr, 0, sizeof(wkr));
5307 data = (struct proc_data *)file->private_data;
5308 if ((data->rbuffer = kzalloc( 180, GFP_KERNEL )) == NULL) {
5309 kfree (file->private_data);
5313 data->maxwritelen = 80;
5314 if ((data->wbuffer = kzalloc( 80, GFP_KERNEL )) == NULL) {
5315 kfree (data->rbuffer);
5316 kfree (file->private_data);
5319 data->on_close = proc_wepkey_on_close;
5321 ptr = data->rbuffer;
5322 strcpy(ptr, "No wep keys\n");
5323 rc = readWepKeyRid(ai, &wkr, 1, 1);
5324 if (rc == SUCCESS) do {
5325 lastindex = wkr.kindex;
5326 if (wkr.kindex == 0xffff) {
5327 j += sprintf(ptr+j, "Tx key = %d\n",
5330 j += sprintf(ptr+j, "Key %d set with length = %d\n",
5331 (int)wkr.kindex, (int)wkr.klen);
5333 readWepKeyRid(ai, &wkr, 0, 1);
5334 } while((lastindex != wkr.kindex) && (j < 180-30));
5336 data->readlen = strlen( data->rbuffer );
5340 static int proc_SSID_open(struct inode *inode, struct file *file)
5342 struct proc_data *data;
5343 struct proc_dir_entry *dp = PDE(inode);
5344 struct net_device *dev = dp->data;
5345 struct airo_info *ai = dev->priv;
5350 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5352 data = (struct proc_data *)file->private_data;
5353 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5354 kfree (file->private_data);
5358 data->maxwritelen = 33*3;
5359 /* allocate maxwritelen + 1; we'll want a sentinel */
5360 if ((data->wbuffer = kzalloc(33*3 + 1, GFP_KERNEL)) == NULL) {
5361 kfree (data->rbuffer);
5362 kfree (file->private_data);
5365 data->on_close = proc_SSID_on_close;
5367 readSsidRid(ai, &SSID_rid);
5368 ptr = data->rbuffer;
5369 for (i = 0; i < 3; i++) {
5371 size_t len = le16_to_cpu(SSID_rid.ssids[i].len);
5376 for (j = 0; j < len && SSID_rid.ssids[i].ssid[j]; j++)
5377 *ptr++ = SSID_rid.ssids[i].ssid[j];
5381 data->readlen = strlen( data->rbuffer );
5385 static int proc_APList_open( struct inode *inode, struct file *file ) {
5386 struct proc_data *data;
5387 struct proc_dir_entry *dp = PDE(inode);
5388 struct net_device *dev = dp->data;
5389 struct airo_info *ai = dev->priv;
5392 APListRid APList_rid;
5393 DECLARE_MAC_BUF(mac);
5395 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5397 data = (struct proc_data *)file->private_data;
5398 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5399 kfree (file->private_data);
5403 data->maxwritelen = 4*6*3;
5404 if ((data->wbuffer = kzalloc( data->maxwritelen, GFP_KERNEL )) == NULL) {
5405 kfree (data->rbuffer);
5406 kfree (file->private_data);
5409 data->on_close = proc_APList_on_close;
5411 readAPListRid(ai, &APList_rid);
5412 ptr = data->rbuffer;
5413 for( i = 0; i < 4; i++ ) {
5414 // We end when we find a zero MAC
5415 if ( !*(int*)APList_rid.ap[i] &&
5416 !*(int*)&APList_rid.ap[i][2]) break;
5417 ptr += sprintf(ptr, "%s\n",
5418 print_mac(mac, APList_rid.ap[i]));
5420 if (i==0) ptr += sprintf(ptr, "Not using specific APs\n");
5423 data->readlen = strlen( data->rbuffer );
5427 static int proc_BSSList_open( struct inode *inode, struct file *file ) {
5428 struct proc_data *data;
5429 struct proc_dir_entry *dp = PDE(inode);
5430 struct net_device *dev = dp->data;
5431 struct airo_info *ai = dev->priv;
5433 BSSListRid BSSList_rid;
5435 /* If doLoseSync is not 1, we won't do a Lose Sync */
5436 int doLoseSync = -1;
5437 DECLARE_MAC_BUF(mac);
5439 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5441 data = (struct proc_data *)file->private_data;
5442 if ((data->rbuffer = kmalloc( 1024, GFP_KERNEL )) == NULL) {
5443 kfree (file->private_data);
5447 data->maxwritelen = 0;
5448 data->wbuffer = NULL;
5449 data->on_close = NULL;
5451 if (file->f_mode & FMODE_WRITE) {
5452 if (!(file->f_mode & FMODE_READ)) {
5456 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
5457 memset(&cmd, 0, sizeof(cmd));
5458 cmd.cmd=CMD_LISTBSS;
5459 if (down_interruptible(&ai->sem))
5460 return -ERESTARTSYS;
5461 issuecommand(ai, &cmd, &rsp);
5468 ptr = data->rbuffer;
5469 /* There is a race condition here if there are concurrent opens.
5470 Since it is a rare condition, we'll just live with it, otherwise
5471 we have to add a spin lock... */
5472 rc = readBSSListRid(ai, doLoseSync, &BSSList_rid);
5473 while(rc == 0 && BSSList_rid.index != 0xffff) {
5474 ptr += sprintf(ptr, "%s %*s rssi = %d",
5475 print_mac(mac, BSSList_rid.bssid),
5476 (int)BSSList_rid.ssidLen,
5478 (int)BSSList_rid.dBm);
5479 ptr += sprintf(ptr, " channel = %d %s %s %s %s\n",
5480 (int)BSSList_rid.dsChannel,
5481 BSSList_rid.cap & CAP_ESS ? "ESS" : "",
5482 BSSList_rid.cap & CAP_IBSS ? "adhoc" : "",
5483 BSSList_rid.cap & CAP_PRIVACY ? "wep" : "",
5484 BSSList_rid.cap & CAP_SHORTHDR ? "shorthdr" : "");
5485 rc = readBSSListRid(ai, 0, &BSSList_rid);
5488 data->readlen = strlen( data->rbuffer );
5492 static int proc_close( struct inode *inode, struct file *file )
5494 struct proc_data *data = file->private_data;
5496 if (data->on_close != NULL)
5497 data->on_close(inode, file);
5498 kfree(data->rbuffer);
5499 kfree(data->wbuffer);
5504 /* Since the card doesn't automatically switch to the right WEP mode,
5505 we will make it do it. If the card isn't associated, every secs we
5506 will switch WEP modes to see if that will help. If the card is
5507 associated we will check every minute to see if anything has
5509 static void timer_func( struct net_device *dev ) {
5510 struct airo_info *apriv = dev->priv;
5512 /* We don't have a link so try changing the authtype */
5513 readConfigRid(apriv, 0);
5514 disable_MAC(apriv, 0);
5515 switch(apriv->config.authType) {
5517 /* So drop to OPEN */
5518 apriv->config.authType = AUTH_OPEN;
5520 case AUTH_SHAREDKEY:
5521 if (apriv->keyindex < auto_wep) {
5522 set_wep_key(apriv, apriv->keyindex, NULL, 0, 0, 0);
5523 apriv->config.authType = AUTH_SHAREDKEY;
5526 /* Drop to ENCRYPT */
5527 apriv->keyindex = 0;
5528 set_wep_key(apriv, apriv->defindex, NULL, 0, 0, 0);
5529 apriv->config.authType = AUTH_ENCRYPT;
5532 default: /* We'll escalate to SHAREDKEY */
5533 apriv->config.authType = AUTH_SHAREDKEY;
5535 set_bit (FLAG_COMMIT, &apriv->flags);
5536 writeConfigRid(apriv, 0);
5537 enable_MAC(apriv, 0);
5540 /* Schedule check to see if the change worked */
5541 clear_bit(JOB_AUTOWEP, &apriv->jobs);
5542 apriv->expires = RUN_AT(HZ*3);
5546 static int __devinit airo_pci_probe(struct pci_dev *pdev,
5547 const struct pci_device_id *pent)
5549 struct net_device *dev;
5551 if (pci_enable_device(pdev))
5553 pci_set_master(pdev);
5555 if (pdev->device == 0x5000 || pdev->device == 0xa504)
5556 dev = _init_airo_card(pdev->irq, pdev->resource[0].start, 0, pdev, &pdev->dev);
5558 dev = _init_airo_card(pdev->irq, pdev->resource[2].start, 0, pdev, &pdev->dev);
5560 pci_disable_device(pdev);
5564 pci_set_drvdata(pdev, dev);
5568 static void __devexit airo_pci_remove(struct pci_dev *pdev)
5570 struct net_device *dev = pci_get_drvdata(pdev);
5572 airo_print_info(dev->name, "Unregistering...");
5573 stop_airo_card(dev, 1);
5574 pci_disable_device(pdev);
5575 pci_set_drvdata(pdev, NULL);
5578 static int airo_pci_suspend(struct pci_dev *pdev, pm_message_t state)
5580 struct net_device *dev = pci_get_drvdata(pdev);
5581 struct airo_info *ai = dev->priv;
5585 if ((ai->APList == NULL) &&
5586 (ai->APList = kmalloc(sizeof(APListRid), GFP_KERNEL)) == NULL)
5588 if ((ai->SSID == NULL) &&
5589 (ai->SSID = kmalloc(sizeof(SsidRid), GFP_KERNEL)) == NULL)
5591 readAPListRid(ai, ai->APList);
5592 readSsidRid(ai, ai->SSID);
5593 memset(&cmd, 0, sizeof(cmd));
5594 /* the lock will be released at the end of the resume callback */
5595 if (down_interruptible(&ai->sem))
5598 netif_device_detach(dev);
5601 issuecommand(ai, &cmd, &rsp);
5603 pci_enable_wake(pdev, pci_choose_state(pdev, state), 1);
5604 pci_save_state(pdev);
5605 return pci_set_power_state(pdev, pci_choose_state(pdev, state));
5608 static int airo_pci_resume(struct pci_dev *pdev)
5610 struct net_device *dev = pci_get_drvdata(pdev);
5611 struct airo_info *ai = dev->priv;
5612 pci_power_t prev_state = pdev->current_state;
5614 pci_set_power_state(pdev, PCI_D0);
5615 pci_restore_state(pdev);
5616 pci_enable_wake(pdev, PCI_D0, 0);
5618 if (prev_state != PCI_D1) {
5620 mpi_init_descriptors(ai);
5621 setup_card(ai, dev->dev_addr, 0);
5622 clear_bit(FLAG_RADIO_OFF, &ai->flags);
5623 clear_bit(FLAG_PENDING_XMIT, &ai->flags);
5625 OUT4500(ai, EVACK, EV_AWAKEN);
5626 OUT4500(ai, EVACK, EV_AWAKEN);
5630 set_bit (FLAG_COMMIT, &ai->flags);
5634 writeSsidRid(ai, ai->SSID, 0);
5639 writeAPListRid(ai, ai->APList, 0);
5643 writeConfigRid(ai, 0);
5645 ai->power = PMSG_ON;
5646 netif_device_attach(dev);
5647 netif_wake_queue(dev);
5648 enable_interrupts(ai);
5654 static int __init airo_init_module( void )
5658 int have_isa_dev = 0;
5661 airo_entry = create_proc_entry("aironet",
5662 S_IFDIR | airo_perm,
5666 airo_entry->uid = proc_uid;
5667 airo_entry->gid = proc_gid;
5670 for( i = 0; i < 4 && io[i] && irq[i]; i++ ) {
5671 airo_print_info("", "Trying to configure ISA adapter at irq=%d "
5672 "io=0x%x", irq[i], io[i] );
5673 if (init_airo_card( irq[i], io[i], 0, NULL ))
5682 airo_print_info("", "Probing for PCI adapters");
5683 i = pci_register_driver(&airo_driver);
5684 airo_print_info("", "Finished probing for PCI adapters");
5687 remove_proc_entry("aironet", proc_root_driver);
5692 /* Always exit with success, as we are a library module
5693 * as well as a driver module
5698 static void __exit airo_cleanup_module( void )
5700 struct airo_info *ai;
5701 while(!list_empty(&airo_devices)) {
5702 ai = list_entry(airo_devices.next, struct airo_info, dev_list);
5703 airo_print_info(ai->dev->name, "Unregistering...");
5704 stop_airo_card(ai->dev, 1);
5707 pci_unregister_driver(&airo_driver);
5709 remove_proc_entry("aironet", proc_root_driver);
5713 * Initial Wireless Extension code for Aironet driver by :
5714 * Jean Tourrilhes <jt@hpl.hp.com> - HPL - 17 November 00
5715 * Conversion to new driver API by :
5716 * Jean Tourrilhes <jt@hpl.hp.com> - HPL - 26 March 02
5717 * Javier also did a good amount of work here, adding some new extensions
5718 * and fixing my code. Let's just say that without him this code just
5719 * would not work at all... - Jean II
5722 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi)
5727 return (0x100 - rssi_rid[rssi].rssidBm);
5730 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm)
5737 for( i = 0; i < 256; i++ )
5738 if (rssi_rid[i].rssidBm == dbm)
5739 return rssi_rid[i].rssipct;
5745 static int airo_get_quality (StatusRid *status_rid, CapabilityRid *cap_rid)
5749 if ((status_rid->mode & 0x3f) == 0x3f && (cap_rid->hardCap & 8)) {
5750 if (memcmp(cap_rid->prodName, "350", 3))
5751 if (status_rid->signalQuality > 0x20)
5754 quality = 0x20 - status_rid->signalQuality;
5756 if (status_rid->signalQuality > 0xb0)
5758 else if (status_rid->signalQuality < 0x10)
5761 quality = 0xb0 - status_rid->signalQuality;
5766 #define airo_get_max_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x20 : 0xa0)
5767 #define airo_get_avg_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x10 : 0x50);
5769 /*------------------------------------------------------------------*/
5771 * Wireless Handler : get protocol name
5773 static int airo_get_name(struct net_device *dev,
5774 struct iw_request_info *info,
5778 strcpy(cwrq, "IEEE 802.11-DS");
5782 /*------------------------------------------------------------------*/
5784 * Wireless Handler : set frequency
5786 static int airo_set_freq(struct net_device *dev,
5787 struct iw_request_info *info,
5788 struct iw_freq *fwrq,
5791 struct airo_info *local = dev->priv;
5792 int rc = -EINPROGRESS; /* Call commit handler */
5794 /* If setting by frequency, convert to a channel */
5795 if((fwrq->e == 1) &&
5796 (fwrq->m >= (int) 2.412e8) &&
5797 (fwrq->m <= (int) 2.487e8)) {
5798 int f = fwrq->m / 100000;
5800 while((c < 14) && (f != frequency_list[c]))
5802 /* Hack to fall through... */
5806 /* Setting by channel number */
5807 if((fwrq->m > 1000) || (fwrq->e > 0))
5810 int channel = fwrq->m;
5811 /* We should do a better check than that,
5812 * based on the card capability !!! */
5813 if((channel < 1) || (channel > 14)) {
5814 airo_print_dbg(dev->name, "New channel value of %d is invalid!",
5818 readConfigRid(local, 1);
5819 /* Yes ! We can set it !!! */
5820 local->config.channelSet = (u16) channel;
5821 set_bit (FLAG_COMMIT, &local->flags);
5827 /*------------------------------------------------------------------*/
5829 * Wireless Handler : get frequency
5831 static int airo_get_freq(struct net_device *dev,
5832 struct iw_request_info *info,
5833 struct iw_freq *fwrq,
5836 struct airo_info *local = dev->priv;
5837 StatusRid status_rid; /* Card status info */
5840 readConfigRid(local, 1);
5841 if ((local->config.opmode & 0xFF) == MODE_STA_ESS)
5842 status_rid.channel = local->config.channelSet;
5844 readStatusRid(local, &status_rid, 1);
5846 ch = (int)status_rid.channel;
5847 if((ch > 0) && (ch < 15)) {
5848 fwrq->m = frequency_list[ch - 1] * 100000;
5858 /*------------------------------------------------------------------*/
5860 * Wireless Handler : set ESSID
5862 static int airo_set_essid(struct net_device *dev,
5863 struct iw_request_info *info,
5864 struct iw_point *dwrq,
5867 struct airo_info *local = dev->priv;
5868 SsidRid SSID_rid; /* SSIDs */
5870 /* Reload the list of current SSID */
5871 readSsidRid(local, &SSID_rid);
5873 /* Check if we asked for `any' */
5874 if(dwrq->flags == 0) {
5875 /* Just send an empty SSID list */
5876 memset(&SSID_rid, 0, sizeof(SSID_rid));
5878 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
5880 /* Check the size of the string */
5881 if(dwrq->length > IW_ESSID_MAX_SIZE) {
5884 /* Check if index is valid */
5885 if((index < 0) || (index >= 4)) {
5890 memset(SSID_rid.ssids[index].ssid, 0,
5891 sizeof(SSID_rid.ssids[index].ssid));
5892 memcpy(SSID_rid.ssids[index].ssid, extra, dwrq->length);
5893 SSID_rid.ssids[index].len = cpu_to_le16(dwrq->length);
5895 SSID_rid.len = cpu_to_le16(sizeof(SSID_rid));
5896 /* Write it to the card */
5897 disable_MAC(local, 1);
5898 writeSsidRid(local, &SSID_rid, 1);
5899 enable_MAC(local, 1);
5904 /*------------------------------------------------------------------*/
5906 * Wireless Handler : get ESSID
5908 static int airo_get_essid(struct net_device *dev,
5909 struct iw_request_info *info,
5910 struct iw_point *dwrq,
5913 struct airo_info *local = dev->priv;
5914 StatusRid status_rid; /* Card status info */
5916 readStatusRid(local, &status_rid, 1);
5918 /* Note : if dwrq->flags != 0, we should
5919 * get the relevant SSID from the SSID list... */
5921 /* Get the current SSID */
5922 memcpy(extra, status_rid.SSID, status_rid.SSIDlen);
5923 /* If none, we may want to get the one that was set */
5926 dwrq->length = status_rid.SSIDlen;
5927 dwrq->flags = 1; /* active */
5932 /*------------------------------------------------------------------*/
5934 * Wireless Handler : set AP address
5936 static int airo_set_wap(struct net_device *dev,
5937 struct iw_request_info *info,
5938 struct sockaddr *awrq,
5941 struct airo_info *local = dev->priv;
5944 APListRid APList_rid;
5945 static const u8 any[ETH_ALEN] = { 0xFF, 0xFF, 0xFF, 0xFF, 0xFF, 0xFF };
5946 static const u8 off[ETH_ALEN] = { 0x00, 0x00, 0x00, 0x00, 0x00, 0x00 };
5948 if (awrq->sa_family != ARPHRD_ETHER)
5950 else if (!memcmp(any, awrq->sa_data, ETH_ALEN) ||
5951 !memcmp(off, awrq->sa_data, ETH_ALEN)) {
5952 memset(&cmd, 0, sizeof(cmd));
5953 cmd.cmd=CMD_LOSE_SYNC;
5954 if (down_interruptible(&local->sem))
5955 return -ERESTARTSYS;
5956 issuecommand(local, &cmd, &rsp);
5959 memset(&APList_rid, 0, sizeof(APList_rid));
5960 APList_rid.len = sizeof(APList_rid);
5961 memcpy(APList_rid.ap[0], awrq->sa_data, ETH_ALEN);
5962 disable_MAC(local, 1);
5963 writeAPListRid(local, &APList_rid, 1);
5964 enable_MAC(local, 1);
5969 /*------------------------------------------------------------------*/
5971 * Wireless Handler : get AP address
5973 static int airo_get_wap(struct net_device *dev,
5974 struct iw_request_info *info,
5975 struct sockaddr *awrq,
5978 struct airo_info *local = dev->priv;
5979 StatusRid status_rid; /* Card status info */
5981 readStatusRid(local, &status_rid, 1);
5983 /* Tentative. This seems to work, wow, I'm lucky !!! */
5984 memcpy(awrq->sa_data, status_rid.bssid[0], ETH_ALEN);
5985 awrq->sa_family = ARPHRD_ETHER;
5990 /*------------------------------------------------------------------*/
5992 * Wireless Handler : set Nickname
5994 static int airo_set_nick(struct net_device *dev,
5995 struct iw_request_info *info,
5996 struct iw_point *dwrq,
5999 struct airo_info *local = dev->priv;
6001 /* Check the size of the string */
6002 if(dwrq->length > 16) {
6005 readConfigRid(local, 1);
6006 memset(local->config.nodeName, 0, sizeof(local->config.nodeName));
6007 memcpy(local->config.nodeName, extra, dwrq->length);
6008 set_bit (FLAG_COMMIT, &local->flags);
6010 return -EINPROGRESS; /* Call commit handler */
6013 /*------------------------------------------------------------------*/
6015 * Wireless Handler : get Nickname
6017 static int airo_get_nick(struct net_device *dev,
6018 struct iw_request_info *info,
6019 struct iw_point *dwrq,
6022 struct airo_info *local = dev->priv;
6024 readConfigRid(local, 1);
6025 strncpy(extra, local->config.nodeName, 16);
6027 dwrq->length = strlen(extra);
6032 /*------------------------------------------------------------------*/
6034 * Wireless Handler : set Bit-Rate
6036 static int airo_set_rate(struct net_device *dev,
6037 struct iw_request_info *info,
6038 struct iw_param *vwrq,
6041 struct airo_info *local = dev->priv;
6042 CapabilityRid cap_rid; /* Card capability info */
6046 /* First : get a valid bit rate value */
6047 readCapabilityRid(local, &cap_rid, 1);
6049 /* Which type of value ? */
6050 if((vwrq->value < 8) && (vwrq->value >= 0)) {
6051 /* Setting by rate index */
6052 /* Find value in the magic rate table */
6053 brate = cap_rid.supportedRates[vwrq->value];
6055 /* Setting by frequency value */
6056 u8 normvalue = (u8) (vwrq->value/500000);
6058 /* Check if rate is valid */
6059 for(i = 0 ; i < 8 ; i++) {
6060 if(normvalue == cap_rid.supportedRates[i]) {
6066 /* -1 designed the max rate (mostly auto mode) */
6067 if(vwrq->value == -1) {
6068 /* Get the highest available rate */
6069 for(i = 0 ; i < 8 ; i++) {
6070 if(cap_rid.supportedRates[i] == 0)
6074 brate = cap_rid.supportedRates[i - 1];
6076 /* Check that it is valid */
6081 readConfigRid(local, 1);
6082 /* Now, check if we want a fixed or auto value */
6083 if(vwrq->fixed == 0) {
6084 /* Fill all the rates up to this max rate */
6085 memset(local->config.rates, 0, 8);
6086 for(i = 0 ; i < 8 ; i++) {
6087 local->config.rates[i] = cap_rid.supportedRates[i];
6088 if(local->config.rates[i] == brate)
6093 /* One rate, fixed */
6094 memset(local->config.rates, 0, 8);
6095 local->config.rates[0] = brate;
6097 set_bit (FLAG_COMMIT, &local->flags);
6099 return -EINPROGRESS; /* Call commit handler */
6102 /*------------------------------------------------------------------*/
6104 * Wireless Handler : get Bit-Rate
6106 static int airo_get_rate(struct net_device *dev,
6107 struct iw_request_info *info,
6108 struct iw_param *vwrq,
6111 struct airo_info *local = dev->priv;
6112 StatusRid status_rid; /* Card status info */
6114 readStatusRid(local, &status_rid, 1);
6116 vwrq->value = status_rid.currentXmitRate * 500000;
6117 /* If more than one rate, set auto */
6118 readConfigRid(local, 1);
6119 vwrq->fixed = (local->config.rates[1] == 0);
6124 /*------------------------------------------------------------------*/
6126 * Wireless Handler : set RTS threshold
6128 static int airo_set_rts(struct net_device *dev,
6129 struct iw_request_info *info,
6130 struct iw_param *vwrq,
6133 struct airo_info *local = dev->priv;
6134 int rthr = vwrq->value;
6137 rthr = AIRO_DEF_MTU;
6138 if((rthr < 0) || (rthr > AIRO_DEF_MTU)) {
6141 readConfigRid(local, 1);
6142 local->config.rtsThres = rthr;
6143 set_bit (FLAG_COMMIT, &local->flags);
6145 return -EINPROGRESS; /* Call commit handler */
6148 /*------------------------------------------------------------------*/
6150 * Wireless Handler : get RTS threshold
6152 static int airo_get_rts(struct net_device *dev,
6153 struct iw_request_info *info,
6154 struct iw_param *vwrq,
6157 struct airo_info *local = dev->priv;
6159 readConfigRid(local, 1);
6160 vwrq->value = local->config.rtsThres;
6161 vwrq->disabled = (vwrq->value >= AIRO_DEF_MTU);
6167 /*------------------------------------------------------------------*/
6169 * Wireless Handler : set Fragmentation threshold
6171 static int airo_set_frag(struct net_device *dev,
6172 struct iw_request_info *info,
6173 struct iw_param *vwrq,
6176 struct airo_info *local = dev->priv;
6177 int fthr = vwrq->value;
6180 fthr = AIRO_DEF_MTU;
6181 if((fthr < 256) || (fthr > AIRO_DEF_MTU)) {
6184 fthr &= ~0x1; /* Get an even value - is it really needed ??? */
6185 readConfigRid(local, 1);
6186 local->config.fragThresh = (u16)fthr;
6187 set_bit (FLAG_COMMIT, &local->flags);
6189 return -EINPROGRESS; /* Call commit handler */
6192 /*------------------------------------------------------------------*/
6194 * Wireless Handler : get Fragmentation threshold
6196 static int airo_get_frag(struct net_device *dev,
6197 struct iw_request_info *info,
6198 struct iw_param *vwrq,
6201 struct airo_info *local = dev->priv;
6203 readConfigRid(local, 1);
6204 vwrq->value = local->config.fragThresh;
6205 vwrq->disabled = (vwrq->value >= AIRO_DEF_MTU);
6211 /*------------------------------------------------------------------*/
6213 * Wireless Handler : set Mode of Operation
6215 static int airo_set_mode(struct net_device *dev,
6216 struct iw_request_info *info,
6220 struct airo_info *local = dev->priv;
6223 readConfigRid(local, 1);
6224 if ((local->config.rmode & 0xff) >= RXMODE_RFMON)
6229 local->config.opmode &= 0xFF00;
6230 local->config.opmode |= MODE_STA_IBSS;
6231 local->config.rmode &= 0xfe00;
6232 local->config.scanMode = SCANMODE_ACTIVE;
6233 clear_bit (FLAG_802_11, &local->flags);
6236 local->config.opmode &= 0xFF00;
6237 local->config.opmode |= MODE_STA_ESS;
6238 local->config.rmode &= 0xfe00;
6239 local->config.scanMode = SCANMODE_ACTIVE;
6240 clear_bit (FLAG_802_11, &local->flags);
6242 case IW_MODE_MASTER:
6243 local->config.opmode &= 0xFF00;
6244 local->config.opmode |= MODE_AP;
6245 local->config.rmode &= 0xfe00;
6246 local->config.scanMode = SCANMODE_ACTIVE;
6247 clear_bit (FLAG_802_11, &local->flags);
6249 case IW_MODE_REPEAT:
6250 local->config.opmode &= 0xFF00;
6251 local->config.opmode |= MODE_AP_RPTR;
6252 local->config.rmode &= 0xfe00;
6253 local->config.scanMode = SCANMODE_ACTIVE;
6254 clear_bit (FLAG_802_11, &local->flags);
6256 case IW_MODE_MONITOR:
6257 local->config.opmode &= 0xFF00;
6258 local->config.opmode |= MODE_STA_ESS;
6259 local->config.rmode &= 0xfe00;
6260 local->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
6261 local->config.scanMode = SCANMODE_PASSIVE;
6262 set_bit (FLAG_802_11, &local->flags);
6268 set_bit (FLAG_RESET, &local->flags);
6269 set_bit (FLAG_COMMIT, &local->flags);
6271 return -EINPROGRESS; /* Call commit handler */
6274 /*------------------------------------------------------------------*/
6276 * Wireless Handler : get Mode of Operation
6278 static int airo_get_mode(struct net_device *dev,
6279 struct iw_request_info *info,
6283 struct airo_info *local = dev->priv;
6285 readConfigRid(local, 1);
6286 /* If not managed, assume it's ad-hoc */
6287 switch (local->config.opmode & 0xFF) {
6289 *uwrq = IW_MODE_INFRA;
6292 *uwrq = IW_MODE_MASTER;
6295 *uwrq = IW_MODE_REPEAT;
6298 *uwrq = IW_MODE_ADHOC;
6304 /*------------------------------------------------------------------*/
6306 * Wireless Handler : set Encryption Key
6308 static int airo_set_encode(struct net_device *dev,
6309 struct iw_request_info *info,
6310 struct iw_point *dwrq,
6313 struct airo_info *local = dev->priv;
6314 CapabilityRid cap_rid; /* Card capability info */
6315 int perm = ( dwrq->flags & IW_ENCODE_TEMP ? 0 : 1 );
6316 u16 currentAuthType = local->config.authType;
6318 /* Is WEP supported ? */
6319 readCapabilityRid(local, &cap_rid, 1);
6320 /* Older firmware doesn't support this...
6321 if(!(cap_rid.softCap & 2)) {
6324 readConfigRid(local, 1);
6326 /* Basic checking: do we have a key to set ?
6327 * Note : with the new API, it's impossible to get a NULL pointer.
6328 * Therefore, we need to check a key size == 0 instead.
6329 * New version of iwconfig properly set the IW_ENCODE_NOKEY flag
6330 * when no key is present (only change flags), but older versions
6331 * don't do it. - Jean II */
6332 if (dwrq->length > 0) {
6334 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6335 int current_index = get_wep_key(local, 0xffff);
6336 /* Check the size of the key */
6337 if (dwrq->length > MAX_KEY_SIZE) {
6340 /* Check the index (none -> use current) */
6341 if ((index < 0) || (index >= ((cap_rid.softCap & 0x80) ? 4:1)))
6342 index = current_index;
6343 /* Set the length */
6344 if (dwrq->length > MIN_KEY_SIZE)
6345 key.len = MAX_KEY_SIZE;
6347 if (dwrq->length > 0)
6348 key.len = MIN_KEY_SIZE;
6350 /* Disable the key */
6352 /* Check if the key is not marked as invalid */
6353 if(!(dwrq->flags & IW_ENCODE_NOKEY)) {
6355 memset(key.key, 0, MAX_KEY_SIZE);
6356 /* Copy the key in the driver */
6357 memcpy(key.key, extra, dwrq->length);
6358 /* Send the key to the card */
6359 set_wep_key(local, index, key.key, key.len, perm, 1);
6361 /* WE specify that if a valid key is set, encryption
6362 * should be enabled (user may turn it off later)
6363 * This is also how "iwconfig ethX key on" works */
6364 if((index == current_index) && (key.len > 0) &&
6365 (local->config.authType == AUTH_OPEN)) {
6366 local->config.authType = AUTH_ENCRYPT;
6369 /* Do we want to just set the transmit key index ? */
6370 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6371 if ((index >= 0) && (index < ((cap_rid.softCap & 0x80)?4:1))) {
6372 set_wep_key(local, index, NULL, 0, perm, 1);
6374 /* Don't complain if only change the mode */
6375 if (!(dwrq->flags & IW_ENCODE_MODE))
6378 /* Read the flags */
6379 if(dwrq->flags & IW_ENCODE_DISABLED)
6380 local->config.authType = AUTH_OPEN; // disable encryption
6381 if(dwrq->flags & IW_ENCODE_RESTRICTED)
6382 local->config.authType = AUTH_SHAREDKEY; // Only Both
6383 if(dwrq->flags & IW_ENCODE_OPEN)
6384 local->config.authType = AUTH_ENCRYPT; // Only Wep
6385 /* Commit the changes to flags if needed */
6386 if (local->config.authType != currentAuthType)
6387 set_bit (FLAG_COMMIT, &local->flags);
6388 return -EINPROGRESS; /* Call commit handler */
6391 /*------------------------------------------------------------------*/
6393 * Wireless Handler : get Encryption Key
6395 static int airo_get_encode(struct net_device *dev,
6396 struct iw_request_info *info,
6397 struct iw_point *dwrq,
6400 struct airo_info *local = dev->priv;
6401 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6402 CapabilityRid cap_rid; /* Card capability info */
6404 /* Is it supported ? */
6405 readCapabilityRid(local, &cap_rid, 1);
6406 if(!(cap_rid.softCap & 2)) {
6409 readConfigRid(local, 1);
6410 /* Check encryption mode */
6411 switch(local->config.authType) {
6413 dwrq->flags = IW_ENCODE_OPEN;
6415 case AUTH_SHAREDKEY:
6416 dwrq->flags = IW_ENCODE_RESTRICTED;
6420 dwrq->flags = IW_ENCODE_DISABLED;
6423 /* We can't return the key, so set the proper flag and return zero */
6424 dwrq->flags |= IW_ENCODE_NOKEY;
6425 memset(extra, 0, 16);
6427 /* Which key do we want ? -1 -> tx index */
6428 if ((index < 0) || (index >= ((cap_rid.softCap & 0x80) ? 4 : 1)))
6429 index = get_wep_key(local, 0xffff);
6430 dwrq->flags |= index + 1;
6431 /* Copy the key to the user buffer */
6432 dwrq->length = get_wep_key(local, index);
6433 if (dwrq->length > 16) {
6439 /*------------------------------------------------------------------*/
6441 * Wireless Handler : set extended Encryption parameters
6443 static int airo_set_encodeext(struct net_device *dev,
6444 struct iw_request_info *info,
6445 union iwreq_data *wrqu,
6448 struct airo_info *local = dev->priv;
6449 struct iw_point *encoding = &wrqu->encoding;
6450 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6451 CapabilityRid cap_rid; /* Card capability info */
6452 int perm = ( encoding->flags & IW_ENCODE_TEMP ? 0 : 1 );
6453 u16 currentAuthType = local->config.authType;
6454 int idx, key_len, alg = ext->alg, set_key = 1;
6457 /* Is WEP supported ? */
6458 readCapabilityRid(local, &cap_rid, 1);
6459 /* Older firmware doesn't support this...
6460 if(!(cap_rid.softCap & 2)) {
6463 readConfigRid(local, 1);
6465 /* Determine and validate the key index */
6466 idx = encoding->flags & IW_ENCODE_INDEX;
6468 if (idx < 1 || idx > ((cap_rid.softCap & 0x80) ? 4:1))
6472 idx = get_wep_key(local, 0xffff);
6474 if (encoding->flags & IW_ENCODE_DISABLED)
6475 alg = IW_ENCODE_ALG_NONE;
6477 if (ext->ext_flags & IW_ENCODE_EXT_SET_TX_KEY) {
6478 /* Only set transmit key index here, actual
6479 * key is set below if needed.
6481 set_wep_key(local, idx, NULL, 0, perm, 1);
6482 set_key = ext->key_len > 0 ? 1 : 0;
6486 /* Set the requested key first */
6487 memset(key.key, 0, MAX_KEY_SIZE);
6489 case IW_ENCODE_ALG_NONE:
6492 case IW_ENCODE_ALG_WEP:
6493 if (ext->key_len > MIN_KEY_SIZE) {
6494 key.len = MAX_KEY_SIZE;
6495 } else if (ext->key_len > 0) {
6496 key.len = MIN_KEY_SIZE;
6500 key_len = min (ext->key_len, key.len);
6501 memcpy(key.key, ext->key, key_len);
6506 /* Send the key to the card */
6507 set_wep_key(local, idx, key.key, key.len, perm, 1);
6510 /* Read the flags */
6511 if(encoding->flags & IW_ENCODE_DISABLED)
6512 local->config.authType = AUTH_OPEN; // disable encryption
6513 if(encoding->flags & IW_ENCODE_RESTRICTED)
6514 local->config.authType = AUTH_SHAREDKEY; // Only Both
6515 if(encoding->flags & IW_ENCODE_OPEN)
6516 local->config.authType = AUTH_ENCRYPT; // Only Wep
6517 /* Commit the changes to flags if needed */
6518 if (local->config.authType != currentAuthType)
6519 set_bit (FLAG_COMMIT, &local->flags);
6521 return -EINPROGRESS;
6525 /*------------------------------------------------------------------*/
6527 * Wireless Handler : get extended Encryption parameters
6529 static int airo_get_encodeext(struct net_device *dev,
6530 struct iw_request_info *info,
6531 union iwreq_data *wrqu,
6534 struct airo_info *local = dev->priv;
6535 struct iw_point *encoding = &wrqu->encoding;
6536 struct iw_encode_ext *ext = (struct iw_encode_ext *)extra;
6537 CapabilityRid cap_rid; /* Card capability info */
6538 int idx, max_key_len;
6540 /* Is it supported ? */
6541 readCapabilityRid(local, &cap_rid, 1);
6542 if(!(cap_rid.softCap & 2)) {
6545 readConfigRid(local, 1);
6547 max_key_len = encoding->length - sizeof(*ext);
6548 if (max_key_len < 0)
6551 idx = encoding->flags & IW_ENCODE_INDEX;
6553 if (idx < 1 || idx > ((cap_rid.softCap & 0x80) ? 4:1))
6557 idx = get_wep_key(local, 0xffff);
6559 encoding->flags = idx + 1;
6560 memset(ext, 0, sizeof(*ext));
6562 /* Check encryption mode */
6563 switch(local->config.authType) {
6565 encoding->flags = IW_ENCODE_ALG_WEP | IW_ENCODE_ENABLED;
6567 case AUTH_SHAREDKEY:
6568 encoding->flags = IW_ENCODE_ALG_WEP | IW_ENCODE_ENABLED;
6572 encoding->flags = IW_ENCODE_ALG_NONE | IW_ENCODE_DISABLED;
6575 /* We can't return the key, so set the proper flag and return zero */
6576 encoding->flags |= IW_ENCODE_NOKEY;
6577 memset(extra, 0, 16);
6579 /* Copy the key to the user buffer */
6580 ext->key_len = get_wep_key(local, idx);
6581 if (ext->key_len > 16) {
6589 /*------------------------------------------------------------------*/
6591 * Wireless Handler : set extended authentication parameters
6593 static int airo_set_auth(struct net_device *dev,
6594 struct iw_request_info *info,
6595 union iwreq_data *wrqu, char *extra)
6597 struct airo_info *local = dev->priv;
6598 struct iw_param *param = &wrqu->param;
6599 u16 currentAuthType = local->config.authType;
6601 switch (param->flags & IW_AUTH_INDEX) {
6602 case IW_AUTH_WPA_VERSION:
6603 case IW_AUTH_CIPHER_PAIRWISE:
6604 case IW_AUTH_CIPHER_GROUP:
6605 case IW_AUTH_KEY_MGMT:
6606 case IW_AUTH_RX_UNENCRYPTED_EAPOL:
6607 case IW_AUTH_PRIVACY_INVOKED:
6609 * airo does not use these parameters
6613 case IW_AUTH_DROP_UNENCRYPTED:
6615 /* Only change auth type if unencrypted */
6616 if (currentAuthType == AUTH_OPEN)
6617 local->config.authType = AUTH_ENCRYPT;
6619 local->config.authType = AUTH_OPEN;
6622 /* Commit the changes to flags if needed */
6623 if (local->config.authType != currentAuthType)
6624 set_bit (FLAG_COMMIT, &local->flags);
6627 case IW_AUTH_80211_AUTH_ALG: {
6628 /* FIXME: What about AUTH_OPEN? This API seems to
6629 * disallow setting our auth to AUTH_OPEN.
6631 if (param->value & IW_AUTH_ALG_SHARED_KEY) {
6632 local->config.authType = AUTH_SHAREDKEY;
6633 } else if (param->value & IW_AUTH_ALG_OPEN_SYSTEM) {
6634 local->config.authType = AUTH_ENCRYPT;
6639 /* Commit the changes to flags if needed */
6640 if (local->config.authType != currentAuthType)
6641 set_bit (FLAG_COMMIT, &local->flags);
6644 case IW_AUTH_WPA_ENABLED:
6645 /* Silently accept disable of WPA */
6646 if (param->value > 0)
6653 return -EINPROGRESS;
6657 /*------------------------------------------------------------------*/
6659 * Wireless Handler : get extended authentication parameters
6661 static int airo_get_auth(struct net_device *dev,
6662 struct iw_request_info *info,
6663 union iwreq_data *wrqu, char *extra)
6665 struct airo_info *local = dev->priv;
6666 struct iw_param *param = &wrqu->param;
6667 u16 currentAuthType = local->config.authType;
6669 switch (param->flags & IW_AUTH_INDEX) {
6670 case IW_AUTH_DROP_UNENCRYPTED:
6671 switch (currentAuthType) {
6672 case AUTH_SHAREDKEY:
6682 case IW_AUTH_80211_AUTH_ALG:
6683 switch (currentAuthType) {
6684 case AUTH_SHAREDKEY:
6685 param->value = IW_AUTH_ALG_SHARED_KEY;
6689 param->value = IW_AUTH_ALG_OPEN_SYSTEM;
6694 case IW_AUTH_WPA_ENABLED:
6705 /*------------------------------------------------------------------*/
6707 * Wireless Handler : set Tx-Power
6709 static int airo_set_txpow(struct net_device *dev,
6710 struct iw_request_info *info,
6711 struct iw_param *vwrq,
6714 struct airo_info *local = dev->priv;
6715 CapabilityRid cap_rid; /* Card capability info */
6719 readCapabilityRid(local, &cap_rid, 1);
6721 if (vwrq->disabled) {
6722 set_bit (FLAG_RADIO_OFF, &local->flags);
6723 set_bit (FLAG_COMMIT, &local->flags);
6724 return -EINPROGRESS; /* Call commit handler */
6726 if (vwrq->flags != IW_TXPOW_MWATT) {
6729 clear_bit (FLAG_RADIO_OFF, &local->flags);
6730 for (i = 0; cap_rid.txPowerLevels[i] && (i < 8); i++)
6731 if ((vwrq->value==cap_rid.txPowerLevels[i])) {
6732 readConfigRid(local, 1);
6733 local->config.txPower = vwrq->value;
6734 set_bit (FLAG_COMMIT, &local->flags);
6735 rc = -EINPROGRESS; /* Call commit handler */
6741 /*------------------------------------------------------------------*/
6743 * Wireless Handler : get Tx-Power
6745 static int airo_get_txpow(struct net_device *dev,
6746 struct iw_request_info *info,
6747 struct iw_param *vwrq,
6750 struct airo_info *local = dev->priv;
6752 readConfigRid(local, 1);
6753 vwrq->value = local->config.txPower;
6754 vwrq->fixed = 1; /* No power control */
6755 vwrq->disabled = test_bit(FLAG_RADIO_OFF, &local->flags);
6756 vwrq->flags = IW_TXPOW_MWATT;
6761 /*------------------------------------------------------------------*/
6763 * Wireless Handler : set Retry limits
6765 static int airo_set_retry(struct net_device *dev,
6766 struct iw_request_info *info,
6767 struct iw_param *vwrq,
6770 struct airo_info *local = dev->priv;
6773 if(vwrq->disabled) {
6776 readConfigRid(local, 1);
6777 if(vwrq->flags & IW_RETRY_LIMIT) {
6778 if(vwrq->flags & IW_RETRY_LONG)
6779 local->config.longRetryLimit = vwrq->value;
6780 else if (vwrq->flags & IW_RETRY_SHORT)
6781 local->config.shortRetryLimit = vwrq->value;
6783 /* No modifier : set both */
6784 local->config.longRetryLimit = vwrq->value;
6785 local->config.shortRetryLimit = vwrq->value;
6787 set_bit (FLAG_COMMIT, &local->flags);
6788 rc = -EINPROGRESS; /* Call commit handler */
6790 if(vwrq->flags & IW_RETRY_LIFETIME) {
6791 local->config.txLifetime = vwrq->value / 1024;
6792 set_bit (FLAG_COMMIT, &local->flags);
6793 rc = -EINPROGRESS; /* Call commit handler */
6798 /*------------------------------------------------------------------*/
6800 * Wireless Handler : get Retry limits
6802 static int airo_get_retry(struct net_device *dev,
6803 struct iw_request_info *info,
6804 struct iw_param *vwrq,
6807 struct airo_info *local = dev->priv;
6809 vwrq->disabled = 0; /* Can't be disabled */
6811 readConfigRid(local, 1);
6812 /* Note : by default, display the min retry number */
6813 if((vwrq->flags & IW_RETRY_TYPE) == IW_RETRY_LIFETIME) {
6814 vwrq->flags = IW_RETRY_LIFETIME;
6815 vwrq->value = (int)local->config.txLifetime * 1024;
6816 } else if((vwrq->flags & IW_RETRY_LONG)) {
6817 vwrq->flags = IW_RETRY_LIMIT | IW_RETRY_LONG;
6818 vwrq->value = (int)local->config.longRetryLimit;
6820 vwrq->flags = IW_RETRY_LIMIT;
6821 vwrq->value = (int)local->config.shortRetryLimit;
6822 if((int)local->config.shortRetryLimit != (int)local->config.longRetryLimit)
6823 vwrq->flags |= IW_RETRY_SHORT;
6829 /*------------------------------------------------------------------*/
6831 * Wireless Handler : get range info
6833 static int airo_get_range(struct net_device *dev,
6834 struct iw_request_info *info,
6835 struct iw_point *dwrq,
6838 struct airo_info *local = dev->priv;
6839 struct iw_range *range = (struct iw_range *) extra;
6840 CapabilityRid cap_rid; /* Card capability info */
6844 readCapabilityRid(local, &cap_rid, 1);
6846 dwrq->length = sizeof(struct iw_range);
6847 memset(range, 0, sizeof(*range));
6848 range->min_nwid = 0x0000;
6849 range->max_nwid = 0x0000;
6850 range->num_channels = 14;
6851 /* Should be based on cap_rid.country to give only
6852 * what the current card support */
6854 for(i = 0; i < 14; i++) {
6855 range->freq[k].i = i + 1; /* List index */
6856 range->freq[k].m = frequency_list[i] * 100000;
6857 range->freq[k++].e = 1; /* Values in table in MHz -> * 10^5 * 10 */
6859 range->num_frequency = k;
6861 range->sensitivity = 65535;
6863 /* Hum... Should put the right values there */
6865 range->max_qual.qual = 100; /* % */
6867 range->max_qual.qual = airo_get_max_quality(&cap_rid);
6868 range->max_qual.level = 0x100 - 120; /* -120 dBm */
6869 range->max_qual.noise = 0x100 - 120; /* -120 dBm */
6871 /* Experimental measurements - boundary 11/5.5 Mb/s */
6872 /* Note : with or without the (local->rssi), results
6873 * are somewhat different. - Jean II */
6875 range->avg_qual.qual = 50; /* % */
6876 range->avg_qual.level = 0x100 - 70; /* -70 dBm */
6878 range->avg_qual.qual = airo_get_avg_quality(&cap_rid);
6879 range->avg_qual.level = 0x100 - 80; /* -80 dBm */
6881 range->avg_qual.noise = 0x100 - 85; /* -85 dBm */
6883 for(i = 0 ; i < 8 ; i++) {
6884 range->bitrate[i] = cap_rid.supportedRates[i] * 500000;
6885 if(range->bitrate[i] == 0)
6888 range->num_bitrates = i;
6890 /* Set an indication of the max TCP throughput
6891 * in bit/s that we can expect using this interface.
6892 * May be use for QoS stuff... Jean II */
6894 range->throughput = 5000 * 1000;
6896 range->throughput = 1500 * 1000;
6899 range->max_rts = AIRO_DEF_MTU;
6900 range->min_frag = 256;
6901 range->max_frag = AIRO_DEF_MTU;
6903 if(cap_rid.softCap & 2) {
6905 range->encoding_size[0] = 5;
6907 if (cap_rid.softCap & 0x100) {
6908 range->encoding_size[1] = 13;
6909 range->num_encoding_sizes = 2;
6911 range->num_encoding_sizes = 1;
6912 range->max_encoding_tokens = (cap_rid.softCap & 0x80) ? 4 : 1;
6914 range->num_encoding_sizes = 0;
6915 range->max_encoding_tokens = 0;
6918 range->max_pmp = 5000000; /* 5 secs */
6920 range->max_pmt = 65535 * 1024; /* ??? */
6921 range->pmp_flags = IW_POWER_PERIOD;
6922 range->pmt_flags = IW_POWER_TIMEOUT;
6923 range->pm_capa = IW_POWER_PERIOD | IW_POWER_TIMEOUT | IW_POWER_ALL_R;
6925 /* Transmit Power - values are in mW */
6926 for(i = 0 ; i < 8 ; i++) {
6927 range->txpower[i] = cap_rid.txPowerLevels[i];
6928 if(range->txpower[i] == 0)
6931 range->num_txpower = i;
6932 range->txpower_capa = IW_TXPOW_MWATT;
6933 range->we_version_source = 19;
6934 range->we_version_compiled = WIRELESS_EXT;
6935 range->retry_capa = IW_RETRY_LIMIT | IW_RETRY_LIFETIME;
6936 range->retry_flags = IW_RETRY_LIMIT;
6937 range->r_time_flags = IW_RETRY_LIFETIME;
6938 range->min_retry = 1;
6939 range->max_retry = 65535;
6940 range->min_r_time = 1024;
6941 range->max_r_time = 65535 * 1024;
6943 /* Event capability (kernel + driver) */
6944 range->event_capa[0] = (IW_EVENT_CAPA_K_0 |
6945 IW_EVENT_CAPA_MASK(SIOCGIWTHRSPY) |
6946 IW_EVENT_CAPA_MASK(SIOCGIWAP) |
6947 IW_EVENT_CAPA_MASK(SIOCGIWSCAN));
6948 range->event_capa[1] = IW_EVENT_CAPA_K_1;
6949 range->event_capa[4] = IW_EVENT_CAPA_MASK(IWEVTXDROP);
6953 /*------------------------------------------------------------------*/
6955 * Wireless Handler : set Power Management
6957 static int airo_set_power(struct net_device *dev,
6958 struct iw_request_info *info,
6959 struct iw_param *vwrq,
6962 struct airo_info *local = dev->priv;
6964 readConfigRid(local, 1);
6965 if (vwrq->disabled) {
6966 if ((local->config.rmode & 0xFF) >= RXMODE_RFMON) {
6969 local->config.powerSaveMode = POWERSAVE_CAM;
6970 local->config.rmode &= 0xFF00;
6971 local->config.rmode |= RXMODE_BC_MC_ADDR;
6972 set_bit (FLAG_COMMIT, &local->flags);
6973 return -EINPROGRESS; /* Call commit handler */
6975 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
6976 local->config.fastListenDelay = (vwrq->value + 500) / 1024;
6977 local->config.powerSaveMode = POWERSAVE_PSPCAM;
6978 set_bit (FLAG_COMMIT, &local->flags);
6979 } else if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_PERIOD) {
6980 local->config.fastListenInterval = local->config.listenInterval = (vwrq->value + 500) / 1024;
6981 local->config.powerSaveMode = POWERSAVE_PSPCAM;
6982 set_bit (FLAG_COMMIT, &local->flags);
6984 switch (vwrq->flags & IW_POWER_MODE) {
6985 case IW_POWER_UNICAST_R:
6986 if ((local->config.rmode & 0xFF) >= RXMODE_RFMON) {
6989 local->config.rmode &= 0xFF00;
6990 local->config.rmode |= RXMODE_ADDR;
6991 set_bit (FLAG_COMMIT, &local->flags);
6993 case IW_POWER_ALL_R:
6994 if ((local->config.rmode & 0xFF) >= RXMODE_RFMON) {
6997 local->config.rmode &= 0xFF00;
6998 local->config.rmode |= RXMODE_BC_MC_ADDR;
6999 set_bit (FLAG_COMMIT, &local->flags);
7001 /* This is broken, fixme ;-) */
7006 // Note : we may want to factor local->need_commit here
7007 // Note2 : may also want to factor RXMODE_RFMON test
7008 return -EINPROGRESS; /* Call commit handler */
7011 /*------------------------------------------------------------------*/
7013 * Wireless Handler : get Power Management
7015 static int airo_get_power(struct net_device *dev,
7016 struct iw_request_info *info,
7017 struct iw_param *vwrq,
7020 struct airo_info *local = dev->priv;
7023 readConfigRid(local, 1);
7024 mode = local->config.powerSaveMode;
7025 if ((vwrq->disabled = (mode == POWERSAVE_CAM)))
7027 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
7028 vwrq->value = (int)local->config.fastListenDelay * 1024;
7029 vwrq->flags = IW_POWER_TIMEOUT;
7031 vwrq->value = (int)local->config.fastListenInterval * 1024;
7032 vwrq->flags = IW_POWER_PERIOD;
7034 if ((local->config.rmode & 0xFF) == RXMODE_ADDR)
7035 vwrq->flags |= IW_POWER_UNICAST_R;
7037 vwrq->flags |= IW_POWER_ALL_R;
7042 /*------------------------------------------------------------------*/
7044 * Wireless Handler : set Sensitivity
7046 static int airo_set_sens(struct net_device *dev,
7047 struct iw_request_info *info,
7048 struct iw_param *vwrq,
7051 struct airo_info *local = dev->priv;
7053 readConfigRid(local, 1);
7054 local->config.rssiThreshold = vwrq->disabled ? RSSI_DEFAULT : vwrq->value;
7055 set_bit (FLAG_COMMIT, &local->flags);
7057 return -EINPROGRESS; /* Call commit handler */
7060 /*------------------------------------------------------------------*/
7062 * Wireless Handler : get Sensitivity
7064 static int airo_get_sens(struct net_device *dev,
7065 struct iw_request_info *info,
7066 struct iw_param *vwrq,
7069 struct airo_info *local = dev->priv;
7071 readConfigRid(local, 1);
7072 vwrq->value = local->config.rssiThreshold;
7073 vwrq->disabled = (vwrq->value == 0);
7079 /*------------------------------------------------------------------*/
7081 * Wireless Handler : get AP List
7082 * Note : this is deprecated in favor of IWSCAN
7084 static int airo_get_aplist(struct net_device *dev,
7085 struct iw_request_info *info,
7086 struct iw_point *dwrq,
7089 struct airo_info *local = dev->priv;
7090 struct sockaddr *address = (struct sockaddr *) extra;
7091 struct iw_quality qual[IW_MAX_AP];
7094 int loseSync = capable(CAP_NET_ADMIN) ? 1: -1;
7096 for (i = 0; i < IW_MAX_AP; i++) {
7097 if (readBSSListRid(local, loseSync, &BSSList))
7100 memcpy(address[i].sa_data, BSSList.bssid, ETH_ALEN);
7101 address[i].sa_family = ARPHRD_ETHER;
7103 qual[i].level = 0x100 - BSSList.dBm;
7104 qual[i].qual = airo_dbm_to_pct( local->rssi, BSSList.dBm );
7105 qual[i].updated = IW_QUAL_QUAL_UPDATED
7106 | IW_QUAL_LEVEL_UPDATED
7109 qual[i].level = (BSSList.dBm + 321) / 2;
7111 qual[i].updated = IW_QUAL_QUAL_INVALID
7112 | IW_QUAL_LEVEL_UPDATED
7115 qual[i].noise = local->wstats.qual.noise;
7116 if (BSSList.index == 0xffff)
7120 StatusRid status_rid; /* Card status info */
7121 readStatusRid(local, &status_rid, 1);
7123 i < min(IW_MAX_AP, 4) &&
7124 (status_rid.bssid[i][0]
7125 & status_rid.bssid[i][1]
7126 & status_rid.bssid[i][2]
7127 & status_rid.bssid[i][3]
7128 & status_rid.bssid[i][4]
7129 & status_rid.bssid[i][5])!=0xff &&
7130 (status_rid.bssid[i][0]
7131 | status_rid.bssid[i][1]
7132 | status_rid.bssid[i][2]
7133 | status_rid.bssid[i][3]
7134 | status_rid.bssid[i][4]
7135 | status_rid.bssid[i][5]);
7137 memcpy(address[i].sa_data,
7138 status_rid.bssid[i], ETH_ALEN);
7139 address[i].sa_family = ARPHRD_ETHER;
7142 dwrq->flags = 1; /* Should be define'd */
7143 memcpy(extra + sizeof(struct sockaddr)*i,
7144 &qual, sizeof(struct iw_quality)*i);
7151 /*------------------------------------------------------------------*/
7153 * Wireless Handler : Initiate Scan
7155 static int airo_set_scan(struct net_device *dev,
7156 struct iw_request_info *info,
7157 struct iw_param *vwrq,
7160 struct airo_info *ai = dev->priv;
7165 /* Note : you may have realised that, as this is a SET operation,
7166 * this is privileged and therefore a normal user can't
7168 * This is not an error, while the device perform scanning,
7169 * traffic doesn't flow, so it's a perfect DoS...
7171 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
7173 if (down_interruptible(&ai->sem))
7174 return -ERESTARTSYS;
7176 /* If there's already a scan in progress, don't
7177 * trigger another one. */
7178 if (ai->scan_timeout > 0)
7181 /* Initiate a scan command */
7182 ai->scan_timeout = RUN_AT(3*HZ);
7183 memset(&cmd, 0, sizeof(cmd));
7184 cmd.cmd=CMD_LISTBSS;
7185 issuecommand(ai, &cmd, &rsp);
7191 wake_up_interruptible(&ai->thr_wait);
7195 /*------------------------------------------------------------------*/
7197 * Translate scan data returned from the card to a card independent
7198 * format that the Wireless Tools will understand - Jean II
7200 static inline char *airo_translate_scan(struct net_device *dev,
7205 struct airo_info *ai = dev->priv;
7206 struct iw_event iwe; /* Temporary buffer */
7208 char * current_val; /* For rates */
7213 /* First entry *MUST* be the AP MAC address */
7214 iwe.cmd = SIOCGIWAP;
7215 iwe.u.ap_addr.sa_family = ARPHRD_ETHER;
7216 memcpy(iwe.u.ap_addr.sa_data, bss->bssid, ETH_ALEN);
7217 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_ADDR_LEN);
7219 /* Other entries will be displayed in the order we give them */
7222 iwe.u.data.length = bss->ssidLen;
7223 if(iwe.u.data.length > 32)
7224 iwe.u.data.length = 32;
7225 iwe.cmd = SIOCGIWESSID;
7226 iwe.u.data.flags = 1;
7227 current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, bss->ssid);
7230 iwe.cmd = SIOCGIWMODE;
7231 capabilities = le16_to_cpu(bss->cap);
7232 if(capabilities & (CAP_ESS | CAP_IBSS)) {
7233 if(capabilities & CAP_ESS)
7234 iwe.u.mode = IW_MODE_MASTER;
7236 iwe.u.mode = IW_MODE_ADHOC;
7237 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_UINT_LEN);
7241 iwe.cmd = SIOCGIWFREQ;
7242 iwe.u.freq.m = le16_to_cpu(bss->dsChannel);
7243 /* iwe.u.freq.m containt the channel (starting 1), our
7244 * frequency_list array start at index 0...
7246 iwe.u.freq.m = frequency_list[iwe.u.freq.m - 1] * 100000;
7248 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_FREQ_LEN);
7250 dBm = le16_to_cpu(bss->dBm);
7252 /* Add quality statistics */
7255 iwe.u.qual.level = 0x100 - dBm;
7256 iwe.u.qual.qual = airo_dbm_to_pct(ai->rssi, dBm);
7257 iwe.u.qual.updated = IW_QUAL_QUAL_UPDATED
7258 | IW_QUAL_LEVEL_UPDATED
7261 iwe.u.qual.level = (dBm + 321) / 2;
7262 iwe.u.qual.qual = 0;
7263 iwe.u.qual.updated = IW_QUAL_QUAL_INVALID
7264 | IW_QUAL_LEVEL_UPDATED
7267 iwe.u.qual.noise = ai->wstats.qual.noise;
7268 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_QUAL_LEN);
7270 /* Add encryption capability */
7271 iwe.cmd = SIOCGIWENCODE;
7272 if(capabilities & CAP_PRIVACY)
7273 iwe.u.data.flags = IW_ENCODE_ENABLED | IW_ENCODE_NOKEY;
7275 iwe.u.data.flags = IW_ENCODE_DISABLED;
7276 iwe.u.data.length = 0;
7277 current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, bss->ssid);
7279 /* Rate : stuffing multiple values in a single event require a bit
7280 * more of magic - Jean II */
7281 current_val = current_ev + IW_EV_LCP_LEN;
7283 iwe.cmd = SIOCGIWRATE;
7284 /* Those two flags are ignored... */
7285 iwe.u.bitrate.fixed = iwe.u.bitrate.disabled = 0;
7287 for(i = 0 ; i < 8 ; i++) {
7288 /* NULL terminated */
7289 if(bss->rates[i] == 0)
7291 /* Bit rate given in 500 kb/s units (+ 0x80) */
7292 iwe.u.bitrate.value = ((bss->rates[i] & 0x7f) * 500000);
7293 /* Add new value to event */
7294 current_val = iwe_stream_add_value(current_ev, current_val, end_buf, &iwe, IW_EV_PARAM_LEN);
7296 /* Check if we added any event */
7297 if((current_val - current_ev) > IW_EV_LCP_LEN)
7298 current_ev = current_val;
7300 /* Beacon interval */
7301 buf = kmalloc(30, GFP_KERNEL);
7303 iwe.cmd = IWEVCUSTOM;
7304 sprintf(buf, "bcn_int=%d", bss->beaconInterval);
7305 iwe.u.data.length = strlen(buf);
7306 current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, buf);
7310 /* Put WPA/RSN Information Elements into the event stream */
7311 if (test_bit(FLAG_WPA_CAPABLE, &ai->flags)) {
7312 unsigned int num_null_ies = 0;
7313 u16 length = sizeof (bss->extra.iep);
7314 struct ieee80211_info_element *info_element =
7315 (struct ieee80211_info_element *) &bss->extra.iep;
7317 while ((length >= sizeof(*info_element)) && (num_null_ies < 2)) {
7318 if (sizeof(*info_element) + info_element->len > length) {
7319 /* Invalid element, don't continue parsing IE */
7323 switch (info_element->id) {
7324 case MFIE_TYPE_SSID:
7325 /* Two zero-length SSID elements
7326 * mean we're done parsing elements */
7327 if (!info_element->len)
7331 case MFIE_TYPE_GENERIC:
7332 if (info_element->len >= 4 &&
7333 info_element->data[0] == 0x00 &&
7334 info_element->data[1] == 0x50 &&
7335 info_element->data[2] == 0xf2 &&
7336 info_element->data[3] == 0x01) {
7337 iwe.cmd = IWEVGENIE;
7338 iwe.u.data.length = min(info_element->len + 2,
7340 current_ev = iwe_stream_add_point(current_ev, end_buf,
7341 &iwe, (char *) info_element);
7346 iwe.cmd = IWEVGENIE;
7347 iwe.u.data.length = min(info_element->len + 2,
7349 current_ev = iwe_stream_add_point(current_ev, end_buf,
7350 &iwe, (char *) info_element);
7357 length -= sizeof(*info_element) + info_element->len;
7359 (struct ieee80211_info_element *)&info_element->
7360 data[info_element->len];
7366 /*------------------------------------------------------------------*/
7368 * Wireless Handler : Read Scan Results
7370 static int airo_get_scan(struct net_device *dev,
7371 struct iw_request_info *info,
7372 struct iw_point *dwrq,
7375 struct airo_info *ai = dev->priv;
7376 BSSListElement *net;
7378 char *current_ev = extra;
7380 /* If a scan is in-progress, return -EAGAIN */
7381 if (ai->scan_timeout > 0)
7384 if (down_interruptible(&ai->sem))
7387 list_for_each_entry (net, &ai->network_list, list) {
7388 /* Translate to WE format this entry */
7389 current_ev = airo_translate_scan(dev, current_ev,
7390 extra + dwrq->length,
7393 /* Check if there is space for one more entry */
7394 if((extra + dwrq->length - current_ev) <= IW_EV_ADDR_LEN) {
7395 /* Ask user space to try again with a bigger buffer */
7401 /* Length of data */
7402 dwrq->length = (current_ev - extra);
7403 dwrq->flags = 0; /* todo */
7410 /*------------------------------------------------------------------*/
7412 * Commit handler : called after a bunch of SET operations
7414 static int airo_config_commit(struct net_device *dev,
7415 struct iw_request_info *info, /* NULL */
7416 void *zwrq, /* NULL */
7417 char *extra) /* NULL */
7419 struct airo_info *local = dev->priv;
7421 if (!test_bit (FLAG_COMMIT, &local->flags))
7424 /* Some of the "SET" function may have modified some of the
7425 * parameters. It's now time to commit them in the card */
7426 disable_MAC(local, 1);
7427 if (test_bit (FLAG_RESET, &local->flags)) {
7428 APListRid APList_rid;
7431 readAPListRid(local, &APList_rid);
7432 readSsidRid(local, &SSID_rid);
7433 if (test_bit(FLAG_MPI,&local->flags))
7434 setup_card(local, dev->dev_addr, 1 );
7436 reset_airo_card(dev);
7437 disable_MAC(local, 1);
7438 writeSsidRid(local, &SSID_rid, 1);
7439 writeAPListRid(local, &APList_rid, 1);
7441 if (down_interruptible(&local->sem))
7442 return -ERESTARTSYS;
7443 writeConfigRid(local, 0);
7444 enable_MAC(local, 0);
7445 if (test_bit (FLAG_RESET, &local->flags))
7446 airo_set_promisc(local);
7453 /*------------------------------------------------------------------*/
7455 * Structures to export the Wireless Handlers
7458 static const struct iw_priv_args airo_private_args[] = {
7459 /*{ cmd, set_args, get_args, name } */
7460 { AIROIOCTL, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7461 IW_PRIV_TYPE_BYTE | 2047, "airoioctl" },
7462 { AIROIDIFC, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7463 IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 1, "airoidifc" },
7466 static const iw_handler airo_handler[] =
7468 (iw_handler) airo_config_commit, /* SIOCSIWCOMMIT */
7469 (iw_handler) airo_get_name, /* SIOCGIWNAME */
7470 (iw_handler) NULL, /* SIOCSIWNWID */
7471 (iw_handler) NULL, /* SIOCGIWNWID */
7472 (iw_handler) airo_set_freq, /* SIOCSIWFREQ */
7473 (iw_handler) airo_get_freq, /* SIOCGIWFREQ */
7474 (iw_handler) airo_set_mode, /* SIOCSIWMODE */
7475 (iw_handler) airo_get_mode, /* SIOCGIWMODE */
7476 (iw_handler) airo_set_sens, /* SIOCSIWSENS */
7477 (iw_handler) airo_get_sens, /* SIOCGIWSENS */
7478 (iw_handler) NULL, /* SIOCSIWRANGE */
7479 (iw_handler) airo_get_range, /* SIOCGIWRANGE */
7480 (iw_handler) NULL, /* SIOCSIWPRIV */
7481 (iw_handler) NULL, /* SIOCGIWPRIV */
7482 (iw_handler) NULL, /* SIOCSIWSTATS */
7483 (iw_handler) NULL, /* SIOCGIWSTATS */
7484 iw_handler_set_spy, /* SIOCSIWSPY */
7485 iw_handler_get_spy, /* SIOCGIWSPY */
7486 iw_handler_set_thrspy, /* SIOCSIWTHRSPY */
7487 iw_handler_get_thrspy, /* SIOCGIWTHRSPY */
7488 (iw_handler) airo_set_wap, /* SIOCSIWAP */
7489 (iw_handler) airo_get_wap, /* SIOCGIWAP */
7490 (iw_handler) NULL, /* -- hole -- */
7491 (iw_handler) airo_get_aplist, /* SIOCGIWAPLIST */
7492 (iw_handler) airo_set_scan, /* SIOCSIWSCAN */
7493 (iw_handler) airo_get_scan, /* SIOCGIWSCAN */
7494 (iw_handler) airo_set_essid, /* SIOCSIWESSID */
7495 (iw_handler) airo_get_essid, /* SIOCGIWESSID */
7496 (iw_handler) airo_set_nick, /* SIOCSIWNICKN */
7497 (iw_handler) airo_get_nick, /* SIOCGIWNICKN */
7498 (iw_handler) NULL, /* -- hole -- */
7499 (iw_handler) NULL, /* -- hole -- */
7500 (iw_handler) airo_set_rate, /* SIOCSIWRATE */
7501 (iw_handler) airo_get_rate, /* SIOCGIWRATE */
7502 (iw_handler) airo_set_rts, /* SIOCSIWRTS */
7503 (iw_handler) airo_get_rts, /* SIOCGIWRTS */
7504 (iw_handler) airo_set_frag, /* SIOCSIWFRAG */
7505 (iw_handler) airo_get_frag, /* SIOCGIWFRAG */
7506 (iw_handler) airo_set_txpow, /* SIOCSIWTXPOW */
7507 (iw_handler) airo_get_txpow, /* SIOCGIWTXPOW */
7508 (iw_handler) airo_set_retry, /* SIOCSIWRETRY */
7509 (iw_handler) airo_get_retry, /* SIOCGIWRETRY */
7510 (iw_handler) airo_set_encode, /* SIOCSIWENCODE */
7511 (iw_handler) airo_get_encode, /* SIOCGIWENCODE */
7512 (iw_handler) airo_set_power, /* SIOCSIWPOWER */
7513 (iw_handler) airo_get_power, /* SIOCGIWPOWER */
7514 (iw_handler) NULL, /* -- hole -- */
7515 (iw_handler) NULL, /* -- hole -- */
7516 (iw_handler) NULL, /* SIOCSIWGENIE */
7517 (iw_handler) NULL, /* SIOCGIWGENIE */
7518 (iw_handler) airo_set_auth, /* SIOCSIWAUTH */
7519 (iw_handler) airo_get_auth, /* SIOCGIWAUTH */
7520 (iw_handler) airo_set_encodeext, /* SIOCSIWENCODEEXT */
7521 (iw_handler) airo_get_encodeext, /* SIOCGIWENCODEEXT */
7522 (iw_handler) NULL, /* SIOCSIWPMKSA */
7525 /* Note : don't describe AIROIDIFC and AIROOLDIDIFC in here.
7526 * We want to force the use of the ioctl code, because those can't be
7527 * won't work the iw_handler code (because they simultaneously read
7528 * and write data and iw_handler can't do that).
7529 * Note that it's perfectly legal to read/write on a single ioctl command,
7530 * you just can't use iwpriv and need to force it via the ioctl handler.
7532 static const iw_handler airo_private_handler[] =
7534 NULL, /* SIOCIWFIRSTPRIV */
7537 static const struct iw_handler_def airo_handler_def =
7539 .num_standard = ARRAY_SIZE(airo_handler),
7540 .num_private = ARRAY_SIZE(airo_private_handler),
7541 .num_private_args = ARRAY_SIZE(airo_private_args),
7542 .standard = airo_handler,
7543 .private = airo_private_handler,
7544 .private_args = airo_private_args,
7545 .get_wireless_stats = airo_get_wireless_stats,
7549 * This defines the configuration part of the Wireless Extensions
7550 * Note : irq and spinlock protection will occur in the subroutines
7553 * o Check input value more carefully and fill correct values in range
7554 * o Test and shakeout the bugs (if any)
7558 * Javier Achirica did a great job of merging code from the unnamed CISCO
7559 * developer that added support for flashing the card.
7561 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd)
7564 struct airo_info *ai = (struct airo_info *)dev->priv;
7566 if (ai->power.event)
7576 int val = AIROMAGIC;
7578 if (copy_from_user(&com,rq->ifr_data,sizeof(com)))
7580 else if (copy_to_user(com.data,(char *)&val,sizeof(val)))
7589 /* Get the command struct and hand it off for evaluation by
7590 * the proper subfunction
7594 if (copy_from_user(&com,rq->ifr_data,sizeof(com))) {
7599 /* Separate R/W functions bracket legality here
7601 if ( com.command == AIRORSWVERSION ) {
7602 if (copy_to_user(com.data, swversion, sizeof(swversion)))
7607 else if ( com.command <= AIRORRID)
7608 rc = readrids(dev,&com);
7609 else if ( com.command >= AIROPCAP && com.command <= (AIROPLEAPUSR+2) )
7610 rc = writerids(dev,&com);
7611 else if ( com.command >= AIROFLSHRST && com.command <= AIRORESTART )
7612 rc = flashcard(dev,&com);
7614 rc = -EINVAL; /* Bad command in ioctl */
7617 #endif /* CISCO_EXT */
7619 // All other calls are currently unsupported
7627 * Get the Wireless stats out of the driver
7628 * Note : irq and spinlock protection will occur in the subroutines
7631 * o Check if work in Ad-Hoc mode (otherwise, use SPY, as in wvlan_cs)
7635 static void airo_read_wireless_stats(struct airo_info *local)
7637 StatusRid status_rid;
7639 CapabilityRid cap_rid;
7640 u32 *vals = stats_rid.vals;
7642 /* Get stats out of the card */
7643 clear_bit(JOB_WSTATS, &local->jobs);
7644 if (local->power.event) {
7648 readCapabilityRid(local, &cap_rid, 0);
7649 readStatusRid(local, &status_rid, 0);
7650 readStatsRid(local, &stats_rid, RID_STATS, 0);
7654 local->wstats.status = status_rid.mode;
7656 /* Signal quality and co */
7658 local->wstats.qual.level = airo_rssi_to_dbm( local->rssi, status_rid.sigQuality );
7659 /* normalizedSignalStrength appears to be a percentage */
7660 local->wstats.qual.qual = status_rid.normalizedSignalStrength;
7662 local->wstats.qual.level = (status_rid.normalizedSignalStrength + 321) / 2;
7663 local->wstats.qual.qual = airo_get_quality(&status_rid, &cap_rid);
7665 if (status_rid.len >= 124) {
7666 local->wstats.qual.noise = 0x100 - status_rid.noisedBm;
7667 local->wstats.qual.updated = IW_QUAL_ALL_UPDATED | IW_QUAL_DBM;
7669 local->wstats.qual.noise = 0;
7670 local->wstats.qual.updated = IW_QUAL_QUAL_UPDATED | IW_QUAL_LEVEL_UPDATED | IW_QUAL_NOISE_INVALID | IW_QUAL_DBM;
7673 /* Packets discarded in the wireless adapter due to wireless
7674 * specific problems */
7675 local->wstats.discard.nwid = vals[56] + vals[57] + vals[58];/* SSID Mismatch */
7676 local->wstats.discard.code = vals[6];/* RxWepErr */
7677 local->wstats.discard.fragment = vals[30];
7678 local->wstats.discard.retries = vals[10];
7679 local->wstats.discard.misc = vals[1] + vals[32];
7680 local->wstats.miss.beacon = vals[34];
7683 static struct iw_statistics *airo_get_wireless_stats(struct net_device *dev)
7685 struct airo_info *local = dev->priv;
7687 if (!test_bit(JOB_WSTATS, &local->jobs)) {
7688 /* Get stats out of the card if available */
7689 if (down_trylock(&local->sem) != 0) {
7690 set_bit(JOB_WSTATS, &local->jobs);
7691 wake_up_interruptible(&local->thr_wait);
7693 airo_read_wireless_stats(local);
7696 return &local->wstats;
7701 * This just translates from driver IOCTL codes to the command codes to
7702 * feed to the radio's host interface. Things can be added/deleted
7703 * as needed. This represents the READ side of control I/O to
7706 static int readrids(struct net_device *dev, aironet_ioctl *comp) {
7707 unsigned short ridcode;
7708 unsigned char *iobuf;
7710 struct airo_info *ai = dev->priv;
7712 if (test_bit(FLAG_FLASHING, &ai->flags))
7715 switch(comp->command)
7717 case AIROGCAP: ridcode = RID_CAPABILITIES; break;
7718 case AIROGCFG: ridcode = RID_CONFIG;
7719 if (test_bit(FLAG_COMMIT, &ai->flags)) {
7720 disable_MAC (ai, 1);
7721 writeConfigRid (ai, 1);
7725 case AIROGSLIST: ridcode = RID_SSID; break;
7726 case AIROGVLIST: ridcode = RID_APLIST; break;
7727 case AIROGDRVNAM: ridcode = RID_DRVNAME; break;
7728 case AIROGEHTENC: ridcode = RID_ETHERENCAP; break;
7729 case AIROGWEPKTMP: ridcode = RID_WEP_TEMP;
7730 /* Only super-user can read WEP keys */
7731 if (!capable(CAP_NET_ADMIN))
7734 case AIROGWEPKNV: ridcode = RID_WEP_PERM;
7735 /* Only super-user can read WEP keys */
7736 if (!capable(CAP_NET_ADMIN))
7739 case AIROGSTAT: ridcode = RID_STATUS; break;
7740 case AIROGSTATSD32: ridcode = RID_STATSDELTA; break;
7741 case AIROGSTATSC32: ridcode = RID_STATS; break;
7743 if (copy_to_user(comp->data, &ai->micstats,
7744 min((int)comp->len,(int)sizeof(ai->micstats))))
7747 case AIRORRID: ridcode = comp->ridnum; break;
7753 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7756 PC4500_readrid(ai,ridcode,iobuf,RIDSIZE, 1);
7757 /* get the count of bytes in the rid docs say 1st 2 bytes is it.
7758 * then return it to the user
7759 * 9/22/2000 Honor user given length
7763 if (copy_to_user(comp->data, iobuf, min(len, (int)RIDSIZE))) {
7772 * Danger Will Robinson write the rids here
7775 static int writerids(struct net_device *dev, aironet_ioctl *comp) {
7776 struct airo_info *ai = dev->priv;
7779 static int (* writer)(struct airo_info *, u16 rid, const void *, int, int);
7780 unsigned char *iobuf;
7782 /* Only super-user can write RIDs */
7783 if (!capable(CAP_NET_ADMIN))
7786 if (test_bit(FLAG_FLASHING, &ai->flags))
7790 writer = do_writerid;
7792 switch(comp->command)
7794 case AIROPSIDS: ridcode = RID_SSID; break;
7795 case AIROPCAP: ridcode = RID_CAPABILITIES; break;
7796 case AIROPAPLIST: ridcode = RID_APLIST; break;
7797 case AIROPCFG: ai->config.len = 0;
7798 clear_bit(FLAG_COMMIT, &ai->flags);
7799 ridcode = RID_CONFIG; break;
7800 case AIROPWEPKEYNV: ridcode = RID_WEP_PERM; break;
7801 case AIROPLEAPUSR: ridcode = RID_LEAPUSERNAME; break;
7802 case AIROPLEAPPWD: ridcode = RID_LEAPPASSWORD; break;
7803 case AIROPWEPKEY: ridcode = RID_WEP_TEMP; writer = PC4500_writerid;
7805 case AIROPLEAPUSR+1: ridcode = 0xFF2A; break;
7806 case AIROPLEAPUSR+2: ridcode = 0xFF2B; break;
7808 /* this is not really a rid but a command given to the card
7812 if (enable_MAC(ai, 1) != 0)
7817 * Evidently this code in the airo driver does not get a symbol
7818 * as disable_MAC. it's probably so short the compiler does not gen one.
7824 /* This command merely clears the counts does not actually store any data
7825 * only reads rid. But as it changes the cards state, I put it in the
7826 * writerid routines.
7829 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7832 PC4500_readrid(ai,RID_STATSDELTACLEAR,iobuf,RIDSIZE, 1);
7834 enabled = ai->micstats.enabled;
7835 memset(&ai->micstats,0,sizeof(ai->micstats));
7836 ai->micstats.enabled = enabled;
7838 if (copy_to_user(comp->data, iobuf,
7839 min((int)comp->len, (int)RIDSIZE))) {
7847 return -EOPNOTSUPP; /* Blarg! */
7849 if(comp->len > RIDSIZE)
7852 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7855 if (copy_from_user(iobuf,comp->data,comp->len)) {
7860 if (comp->command == AIROPCFG) {
7861 ConfigRid *cfg = (ConfigRid *)iobuf;
7863 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags))
7864 cfg->opmode |= cpu_to_le16(MODE_MIC);
7866 if ((le16_to_cpu(cfg->opmode) & 0xFF) == MODE_STA_IBSS)
7867 set_bit (FLAG_ADHOC, &ai->flags);
7869 clear_bit (FLAG_ADHOC, &ai->flags);
7872 if((*writer)(ai, ridcode, iobuf,comp->len,1)) {
7880 /*****************************************************************************
7881 * Ancillary flash / mod functions much black magic lurkes here *
7882 *****************************************************************************
7886 * Flash command switch table
7889 static int flashcard(struct net_device *dev, aironet_ioctl *comp) {
7892 /* Only super-user can modify flash */
7893 if (!capable(CAP_NET_ADMIN))
7896 switch(comp->command)
7899 return cmdreset((struct airo_info *)dev->priv);
7902 if (!((struct airo_info *)dev->priv)->flash &&
7903 (((struct airo_info *)dev->priv)->flash = kmalloc (FLASHSIZE, GFP_KERNEL)) == NULL)
7905 return setflashmode((struct airo_info *)dev->priv);
7907 case AIROFLSHGCHR: /* Get char from aux */
7908 if(comp->len != sizeof(int))
7910 if (copy_from_user(&z,comp->data,comp->len))
7912 return flashgchar((struct airo_info *)dev->priv,z,8000);
7914 case AIROFLSHPCHR: /* Send char to card. */
7915 if(comp->len != sizeof(int))
7917 if (copy_from_user(&z,comp->data,comp->len))
7919 return flashpchar((struct airo_info *)dev->priv,z,8000);
7921 case AIROFLPUTBUF: /* Send 32k to card */
7922 if (!((struct airo_info *)dev->priv)->flash)
7924 if(comp->len > FLASHSIZE)
7926 if(copy_from_user(((struct airo_info *)dev->priv)->flash,comp->data,comp->len))
7929 flashputbuf((struct airo_info *)dev->priv);
7933 if(flashrestart((struct airo_info *)dev->priv,dev))
7940 #define FLASH_COMMAND 0x7e7e
7944 * Disable MAC and do soft reset on
7948 static int cmdreset(struct airo_info *ai) {
7952 airo_print_info(ai->dev->name, "Waitbusy hang before RESET");
7956 OUT4500(ai,COMMAND,CMD_SOFTRESET);
7958 ssleep(1); /* WAS 600 12/7/00 */
7961 airo_print_info(ai->dev->name, "Waitbusy hang AFTER RESET");
7968 * Put the card in legendary flash
7972 static int setflashmode (struct airo_info *ai) {
7973 set_bit (FLAG_FLASHING, &ai->flags);
7975 OUT4500(ai, SWS0, FLASH_COMMAND);
7976 OUT4500(ai, SWS1, FLASH_COMMAND);
7978 OUT4500(ai, SWS0, FLASH_COMMAND);
7979 OUT4500(ai, COMMAND,0x10);
7981 OUT4500(ai, SWS2, FLASH_COMMAND);
7982 OUT4500(ai, SWS3, FLASH_COMMAND);
7983 OUT4500(ai, COMMAND,0);
7985 msleep(500); /* 500ms delay */
7988 clear_bit (FLAG_FLASHING, &ai->flags);
7989 airo_print_info(ai->dev->name, "Waitbusy hang after setflash mode");
7995 /* Put character to SWS0 wait for dwelltime
7999 static int flashpchar(struct airo_info *ai,int byte,int dwelltime) {
8010 /* Wait for busy bit d15 to go false indicating buffer empty */
8011 while ((IN4500 (ai, SWS0) & 0x8000) && waittime > 0) {
8016 /* timeout for busy clear wait */
8018 airo_print_info(ai->dev->name, "flash putchar busywait timeout!");
8022 /* Port is clear now write byte and wait for it to echo back */
8024 OUT4500(ai,SWS0,byte);
8027 echo = IN4500(ai,SWS1);
8028 } while (dwelltime >= 0 && echo != byte);
8032 return (echo == byte) ? 0 : -EIO;
8036 * Get a character from the card matching matchbyte
8039 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime){
8041 unsigned char rbyte=0;
8044 rchar = IN4500(ai,SWS1);
8046 if(dwelltime && !(0x8000 & rchar)){
8051 rbyte = 0xff & rchar;
8053 if( (rbyte == matchbyte) && (0x8000 & rchar) ){
8057 if( rbyte == 0x81 || rbyte == 0x82 || rbyte == 0x83 || rbyte == 0x1a || 0xffff == rchar)
8061 }while(dwelltime > 0);
8066 * Transfer 32k of firmware data from user buffer to our buffer and
8070 static int flashputbuf(struct airo_info *ai){
8074 if (test_bit(FLAG_MPI,&ai->flags))
8075 memcpy_toio(ai->pciaux + 0x8000, ai->flash, FLASHSIZE);
8077 OUT4500(ai,AUXPAGE,0x100);
8078 OUT4500(ai,AUXOFF,0);
8080 for(nwords=0;nwords != FLASHSIZE / 2;nwords++){
8081 OUT4500(ai,AUXDATA,ai->flash[nwords] & 0xffff);
8084 OUT4500(ai,SWS0,0x8000);
8092 static int flashrestart(struct airo_info *ai,struct net_device *dev){
8095 ssleep(1); /* Added 12/7/00 */
8096 clear_bit (FLAG_FLASHING, &ai->flags);
8097 if (test_bit(FLAG_MPI, &ai->flags)) {
8098 status = mpi_init_descriptors(ai);
8099 if (status != SUCCESS)
8102 status = setup_card(ai, dev->dev_addr, 1);
8104 if (!test_bit(FLAG_MPI,&ai->flags))
8105 for( i = 0; i < MAX_FIDS; i++ ) {
8106 ai->fids[i] = transmit_allocate
8107 ( ai, AIRO_DEF_MTU, i >= MAX_FIDS / 2 );
8110 ssleep(1); /* Added 12/7/00 */
8113 #endif /* CISCO_EXT */
8116 This program is free software; you can redistribute it and/or
8117 modify it under the terms of the GNU General Public License
8118 as published by the Free Software Foundation; either version 2
8119 of the License, or (at your option) any later version.
8121 This program is distributed in the hope that it will be useful,
8122 but WITHOUT ANY WARRANTY; without even the implied warranty of
8123 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
8124 GNU General Public License for more details.
8128 Redistribution and use in source and binary forms, with or without
8129 modification, are permitted provided that the following conditions
8132 1. Redistributions of source code must retain the above copyright
8133 notice, this list of conditions and the following disclaimer.
8134 2. Redistributions in binary form must reproduce the above copyright
8135 notice, this list of conditions and the following disclaimer in the
8136 documentation and/or other materials provided with the distribution.
8137 3. The name of the author may not be used to endorse or promote
8138 products derived from this software without specific prior written
8141 THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
8142 IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
8143 WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
8144 ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
8145 INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
8146 (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
8147 SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
8148 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
8149 STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
8150 IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
8151 POSSIBILITY OF SUCH DAMAGE.
8154 module_init(airo_init_module);
8155 module_exit(airo_cleanup_module);