projects / linux-2.6 / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
Merge branch 'master' of master.kernel.org:/pub/scm/linux/kernel/git/davem/net-2.6
[linux-2.6] / net / mac80211 / ht.c
CommitLineData
44d414db
JB		 1/*
2 * HT handling
3 *
4 * Copyright 2003, Jouni Malinen <jkmaline@cc.hut.fi>
bacac545
JB		 5 * Copyright 2002-2005, Instant802 Networks, Inc.
6 * Copyright 2005-2006, Devicescape Software, Inc.
44d414db
JB		 7 * Copyright 2006-2007 Jiri Benc <jbenc@suse.cz>
8 * Copyright 2007, Michael Wu <flamingice@sourmilk.net>
9 * Copyright 2007-2008, Intel Corporation
10 *
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of the GNU General Public License version 2 as
13 * published by the Free Software Foundation.
14 */
15
16#include <linux/ieee80211.h>
17#include <net/wireless.h>
18#include <net/mac80211.h>
19#include "ieee80211_i.h"
20#include "sta_info.h"
bacac545 21#include "wme.h"
44d414db 22
ae5eb026
JB		 23void ieee80211_ht_cap_ie_to_sta_ht_cap(struct ieee80211_supported_band *sband,
24 struct ieee80211_ht_cap *ht_cap_ie,
d9fe60de 25 struct ieee80211_sta_ht_cap *ht_cap)
44d414db 26{
ae5eb026
JB		 27 u8 ampdu_info, tx_mcs_set_cap;
28 int i, max_tx_streams;
44d414db 29
d9fe60de 30 BUG_ON(!ht_cap);
44d414db 31
d9fe60de 32 memset(ht_cap, 0, sizeof(*ht_cap));
44d414db 33
ae5eb026
JB		 34 if (!ht_cap_ie)
35 return;
d9fe60de 36
ae5eb026 37 ht_cap->ht_supported = true;
d9fe60de 38
ae5eb026
JB		 39 ht_cap->cap = ht_cap->cap & sband->ht_cap.cap;
40 ht_cap->cap &= ~IEEE80211_HT_CAP_SM_PS;
41 ht_cap->cap |= sband->ht_cap.cap & IEEE80211_HT_CAP_SM_PS;
d9fe60de 42
ae5eb026
JB		 43 ampdu_info = ht_cap_ie->ampdu_params_info;
44 ht_cap->ampdu_factor =
45 ampdu_info & IEEE80211_HT_AMPDU_PARM_FACTOR;
46 ht_cap->ampdu_density =
47 (ampdu_info & IEEE80211_HT_AMPDU_PARM_DENSITY) >> 2;
44d414db 48
d9fe60de
JB		 49 /* own MCS TX capabilities */
50 tx_mcs_set_cap = sband->ht_cap.mcs.tx_params;
51
d9fe60de
JB		 52 /* can we TX with MCS rates? */
53 if (!(tx_mcs_set_cap & IEEE80211_HT_MCS_TX_DEFINED))
ae5eb026 54 return;
d9fe60de
JB		 55
56 /* Counting from 0, therefore +1 */
57 if (tx_mcs_set_cap & IEEE80211_HT_MCS_TX_RX_DIFF)
58 max_tx_streams =
59 ((tx_mcs_set_cap & IEEE80211_HT_MCS_TX_MAX_STREAMS_MASK)
60 >> IEEE80211_HT_MCS_TX_MAX_STREAMS_SHIFT) + 1;
61 else
62 max_tx_streams = IEEE80211_HT_MCS_TX_MAX_STREAMS;
63
64 /*
65 * 802.11n D5.0 20.3.5 / 20.6 says:
66 * - indices 0 to 7 and 32 are single spatial stream
67 * - 8 to 31 are multiple spatial streams using equal modulation
68 * [8..15 for two streams, 16..23 for three and 24..31 for four]
69 * - remainder are multiple spatial streams using unequal modulation
70 */
71 for (i = 0; i < max_tx_streams; i++)
ae5eb026
JB		 72 ht_cap->mcs.rx_mask[i] =
73 sband->ht_cap.mcs.rx_mask[i] & ht_cap_ie->mcs.rx_mask[i];
d9fe60de
JB		 74
75 if (tx_mcs_set_cap & IEEE80211_HT_MCS_TX_UNEQUAL_MODULATION)
76 for (i = IEEE80211_HT_MCS_UNEQUAL_MODULATION_START_BYTE;
77 i < IEEE80211_HT_MCS_MASK_LEN; i++)
ae5eb026 78 ht_cap->mcs.rx_mask[i] =
d9fe60de 79 sband->ht_cap.mcs.rx_mask[i] &
ae5eb026 80 ht_cap_ie->mcs.rx_mask[i];
d9fe60de
JB		 81
82 /* handle MCS rate 32 too */
ae5eb026
JB		 83 if (sband->ht_cap.mcs.rx_mask[32/8] & ht_cap_ie->mcs.rx_mask[32/8] & 1)
84 ht_cap->mcs.rx_mask[32/8] |= 1;
85}
86
87/*
88 * ieee80211_enable_ht should be called only after the operating band
89 * has been determined as ht configuration depends on the hw's
90 * HT abilities for a specific band.
91 */
92u32 ieee80211_enable_ht(struct ieee80211_sub_if_data *sdata,
93 struct ieee80211_ht_info *hti,
94 u16 ap_ht_cap_flags)
95{
96 struct ieee80211_local *local = sdata->local;
97 struct ieee80211_supported_band *sband;
98 struct ieee80211_bss_ht_conf ht;
99 u32 changed = 0;
100 bool enable_ht = true, ht_changed;
101
102 sband = local->hw.wiphy->bands[local->hw.conf.channel->band];
103
104 memset(&ht, 0, sizeof(ht));
105
106 /* HT is not supported */
107 if (!sband->ht_cap.ht_supported)
108 enable_ht = false;
109
110 /* check that channel matches the right operating channel */
111 if (local->hw.conf.channel->center_freq !=
112 ieee80211_channel_to_frequency(hti->control_chan))
113 enable_ht = false;
114
115 /*
116 * XXX: This is totally incorrect when there are multiple virtual
117 * interfaces, needs to be fixed later.
118 */
119 ht_changed = local->hw.conf.ht.enabled != enable_ht;
120 local->hw.conf.ht.enabled = enable_ht;
121 if (ht_changed)
122 ieee80211_hw_config(local, IEEE80211_CONF_CHANGE_HT);
123
124 /* disable HT */
125 if (!enable_ht)
126 return 0;
127 ht.secondary_channel_offset =
128 hti->ht_param & IEEE80211_HT_PARAM_CHA_SEC_OFFSET;
129 ht.width_40_ok =
130 !(ap_ht_cap_flags & IEEE80211_HT_CAP_40MHZ_INTOLERANT) &&
131 (sband->ht_cap.cap & IEEE80211_HT_CAP_SUP_WIDTH_20_40) &&
132 (hti->ht_param & IEEE80211_HT_PARAM_CHAN_WIDTH_ANY);
133 ht.operation_mode = le16_to_cpu(hti->operation_mode);
d9fe60de 134
d9fe60de 135 /* if bss configuration changed store the new one */
ae5eb026 136 if (memcmp(&sdata->vif.bss_conf.ht, &ht, sizeof(ht))) {
d9fe60de 137 changed |= BSS_CHANGED_HT;
ae5eb026 138 sdata->vif.bss_conf.ht = ht;
d9fe60de
JB		 139 }
140
141 return changed;
44d414db
JB		 142}
143
de1ede7a
JB		 144static void ieee80211_send_addba_request(struct ieee80211_sub_if_data *sdata,
145 const u8 *da, u16 tid,
146 u8 dialog_token, u16 start_seq_num,
147 u16 agg_size, u16 timeout)
44d414db
JB		 148{
149 struct ieee80211_local *local = sdata->local;
150 struct ieee80211_if_sta *ifsta = &sdata->u.sta;
151 struct sk_buff *skb;
152 struct ieee80211_mgmt *mgmt;
153 u16 capab;
154
155 skb = dev_alloc_skb(sizeof(*mgmt) + local->hw.extra_tx_headroom);
156
157 if (!skb) {
158 printk(KERN_ERR "%s: failed to allocate buffer "
159 "for addba request frame\n", sdata->dev->name);
160 return;
161 }
162 skb_reserve(skb, local->hw.extra_tx_headroom);
163 mgmt = (struct ieee80211_mgmt *) skb_put(skb, 24);
164 memset(mgmt, 0, 24);
165 memcpy(mgmt->da, da, ETH_ALEN);
166 memcpy(mgmt->sa, sdata->dev->dev_addr, ETH_ALEN);
05c914fe 167 if (sdata->vif.type == NL80211_IFTYPE_AP)
44d414db
JB		 168 memcpy(mgmt->bssid, sdata->dev->dev_addr, ETH_ALEN);
169 else
170 memcpy(mgmt->bssid, ifsta->bssid, ETH_ALEN);
171
172 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
173 IEEE80211_STYPE_ACTION);
174
175 skb_put(skb, 1 + sizeof(mgmt->u.action.u.addba_req));
176
177 mgmt->u.action.category = WLAN_CATEGORY_BACK;
178 mgmt->u.action.u.addba_req.action_code = WLAN_ACTION_ADDBA_REQ;
179
180 mgmt->u.action.u.addba_req.dialog_token = dialog_token;
181 capab = (u16)(1 << 1); /* bit 1 aggregation policy */
182 capab |= (u16)(tid << 2); /* bit 5:2 TID number */
183 capab |= (u16)(agg_size << 6); /* bit 15:6 max size of aggergation */
184
185 mgmt->u.action.u.addba_req.capab = cpu_to_le16(capab);
186
187 mgmt->u.action.u.addba_req.timeout = cpu_to_le16(timeout);
188 mgmt->u.action.u.addba_req.start_seq_num =
189 cpu_to_le16(start_seq_num << 4);
190
e50db65c 191 ieee80211_tx_skb(sdata, skb, 0);
44d414db
JB		 192}
193
de1ede7a
JB		 194static void ieee80211_send_addba_resp(struct ieee80211_sub_if_data *sdata, u8 *da, u16 tid,
195 u8 dialog_token, u16 status, u16 policy,
196 u16 buf_size, u16 timeout)
197{
198 struct ieee80211_if_sta *ifsta = &sdata->u.sta;
199 struct ieee80211_local *local = sdata->local;
200 struct sk_buff *skb;
201 struct ieee80211_mgmt *mgmt;
202 u16 capab;
203
204 skb = dev_alloc_skb(sizeof(*mgmt) + local->hw.extra_tx_headroom);
205
206 if (!skb) {
207 printk(KERN_DEBUG "%s: failed to allocate buffer "
208 "for addba resp frame\n", sdata->dev->name);
209 return;
210 }
211
212 skb_reserve(skb, local->hw.extra_tx_headroom);
213 mgmt = (struct ieee80211_mgmt *) skb_put(skb, 24);
214 memset(mgmt, 0, 24);
215 memcpy(mgmt->da, da, ETH_ALEN);
216 memcpy(mgmt->sa, sdata->dev->dev_addr, ETH_ALEN);
05c914fe 217 if (sdata->vif.type == NL80211_IFTYPE_AP)
de1ede7a
JB		 218 memcpy(mgmt->bssid, sdata->dev->dev_addr, ETH_ALEN);
219 else
220 memcpy(mgmt->bssid, ifsta->bssid, ETH_ALEN);
221 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
222 IEEE80211_STYPE_ACTION);
223
224 skb_put(skb, 1 + sizeof(mgmt->u.action.u.addba_resp));
225 mgmt->u.action.category = WLAN_CATEGORY_BACK;
226 mgmt->u.action.u.addba_resp.action_code = WLAN_ACTION_ADDBA_RESP;
227 mgmt->u.action.u.addba_resp.dialog_token = dialog_token;
228
229 capab = (u16)(policy << 1); /* bit 1 aggregation policy */
230 capab |= (u16)(tid << 2); /* bit 5:2 TID number */
231 capab |= (u16)(buf_size << 6); /* bit 15:6 max size of aggregation */
232
233 mgmt->u.action.u.addba_resp.capab = cpu_to_le16(capab);
234 mgmt->u.action.u.addba_resp.timeout = cpu_to_le16(timeout);
235 mgmt->u.action.u.addba_resp.status = cpu_to_le16(status);
236
e50db65c 237 ieee80211_tx_skb(sdata, skb, 0);
de1ede7a
JB		 238}
239
240static void ieee80211_send_delba(struct ieee80211_sub_if_data *sdata,
241 const u8 *da, u16 tid,
242 u16 initiator, u16 reason_code)
44d414db
JB		 243{
244 struct ieee80211_local *local = sdata->local;
245 struct ieee80211_if_sta *ifsta = &sdata->u.sta;
246 struct sk_buff *skb;
247 struct ieee80211_mgmt *mgmt;
248 u16 params;
249
250 skb = dev_alloc_skb(sizeof(*mgmt) + local->hw.extra_tx_headroom);
251
252 if (!skb) {
253 printk(KERN_ERR "%s: failed to allocate buffer "
254 "for delba frame\n", sdata->dev->name);
255 return;
256 }
257
258 skb_reserve(skb, local->hw.extra_tx_headroom);
259 mgmt = (struct ieee80211_mgmt *) skb_put(skb, 24);
260 memset(mgmt, 0, 24);
261 memcpy(mgmt->da, da, ETH_ALEN);
262 memcpy(mgmt->sa, sdata->dev->dev_addr, ETH_ALEN);
05c914fe 263 if (sdata->vif.type == NL80211_IFTYPE_AP)
44d414db
JB		 264 memcpy(mgmt->bssid, sdata->dev->dev_addr, ETH_ALEN);
265 else
266 memcpy(mgmt->bssid, ifsta->bssid, ETH_ALEN);
267 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
268 IEEE80211_STYPE_ACTION);
269
270 skb_put(skb, 1 + sizeof(mgmt->u.action.u.delba));
271
272 mgmt->u.action.category = WLAN_CATEGORY_BACK;
273 mgmt->u.action.u.delba.action_code = WLAN_ACTION_DELBA;
274 params = (u16)(initiator << 11); /* bit 11 initiator */
275 params |= (u16)(tid << 12); /* bit 15:12 TID number */
276
277 mgmt->u.action.u.delba.params = cpu_to_le16(params);
278 mgmt->u.action.u.delba.reason_code = cpu_to_le16(reason_code);
279
e50db65c 280 ieee80211_tx_skb(sdata, skb, 0);
44d414db
JB		 281}
282
283void ieee80211_send_bar(struct ieee80211_sub_if_data *sdata, u8 *ra, u16 tid, u16 ssn)
284{
285 struct ieee80211_local *local = sdata->local;
286 struct sk_buff *skb;
287 struct ieee80211_bar *bar;
288 u16 bar_control = 0;
289
290 skb = dev_alloc_skb(sizeof(*bar) + local->hw.extra_tx_headroom);
291 if (!skb) {
292 printk(KERN_ERR "%s: failed to allocate buffer for "
293 "bar frame\n", sdata->dev->name);
294 return;
295 }
296 skb_reserve(skb, local->hw.extra_tx_headroom);
297 bar = (struct ieee80211_bar *)skb_put(skb, sizeof(*bar));
298 memset(bar, 0, sizeof(*bar));
299 bar->frame_control = cpu_to_le16(IEEE80211_FTYPE_CTL |
300 IEEE80211_STYPE_BACK_REQ);
301 memcpy(bar->ra, ra, ETH_ALEN);
302 memcpy(bar->ta, sdata->dev->dev_addr, ETH_ALEN);
303 bar_control |= (u16)IEEE80211_BAR_CTRL_ACK_POLICY_NORMAL;
304 bar_control |= (u16)IEEE80211_BAR_CTRL_CBMTID_COMPRESSED_BA;
305 bar_control |= (u16)(tid << 12);
306 bar->control = cpu_to_le16(bar_control);
307 bar->start_seq_num = cpu_to_le16(ssn);
308
e50db65c 309 ieee80211_tx_skb(sdata, skb, 0);
44d414db
JB		 310}
311
312void ieee80211_sta_stop_rx_ba_session(struct ieee80211_sub_if_data *sdata, u8 *ra, u16 tid,
313 u16 initiator, u16 reason)
314{
315 struct ieee80211_local *local = sdata->local;
316 struct ieee80211_hw *hw = &local->hw;
317 struct sta_info *sta;
318 int ret, i;
44d414db
JB		 319
320 rcu_read_lock();
321
322 sta = sta_info_get(local, ra);
323 if (!sta) {
324 rcu_read_unlock();
325 return;
326 }
327
328 /* check if TID is in operational state */
329 spin_lock_bh(&sta->lock);
330 if (sta->ampdu_mlme.tid_state_rx[tid]
331 != HT_AGG_STATE_OPERATIONAL) {
332 spin_unlock_bh(&sta->lock);
333 rcu_read_unlock();
334 return;
335 }
336 sta->ampdu_mlme.tid_state_rx[tid] =
337 HT_AGG_STATE_REQ_STOP_BA_MSK |
338 (initiator << HT_AGG_STATE_INITIATOR_SHIFT);
339 spin_unlock_bh(&sta->lock);
340
341 /* stop HW Rx aggregation. ampdu_action existence
342 * already verified in session init so we add the BUG_ON */
343 BUG_ON(!local->ops->ampdu_action);
344
345#ifdef CONFIG_MAC80211_HT_DEBUG
0c68ae26
JB		 346 printk(KERN_DEBUG "Rx BA session stop requested for %pM tid %u\n",
347 ra, tid);
44d414db
JB		 348#endif /* CONFIG_MAC80211_HT_DEBUG */
349
350 ret = local->ops->ampdu_action(hw, IEEE80211_AMPDU_RX_STOP,
17741cdc 351 &sta->sta, tid, NULL);
44d414db
JB		 352 if (ret)
353 printk(KERN_DEBUG "HW problem - can not stop rx "
354 "aggregation for tid %d\n", tid);
355
356 /* shutdown timer has not expired */
357 if (initiator != WLAN_BACK_TIMER)
358 del_timer_sync(&sta->ampdu_mlme.tid_rx[tid]->session_timer);
359
360 /* check if this is a self generated aggregation halt */
361 if (initiator == WLAN_BACK_RECIPIENT || initiator == WLAN_BACK_TIMER)
362 ieee80211_send_delba(sdata, ra, tid, 0, reason);
363
364 /* free the reordering buffer */
365 for (i = 0; i < sta->ampdu_mlme.tid_rx[tid]->buf_size; i++) {
366 if (sta->ampdu_mlme.tid_rx[tid]->reorder_buf[i]) {
367 /* release the reordered frames */
368 dev_kfree_skb(sta->ampdu_mlme.tid_rx[tid]->reorder_buf[i]);
369 sta->ampdu_mlme.tid_rx[tid]->stored_mpdu_num--;
370 sta->ampdu_mlme.tid_rx[tid]->reorder_buf[i] = NULL;
371 }
372 }
373 /* free resources */
374 kfree(sta->ampdu_mlme.tid_rx[tid]->reorder_buf);
375 kfree(sta->ampdu_mlme.tid_rx[tid]);
376 sta->ampdu_mlme.tid_rx[tid] = NULL;
377 sta->ampdu_mlme.tid_state_rx[tid] = HT_AGG_STATE_IDLE;
378
379 rcu_read_unlock();
380}
381
382
383/*
384 * After sending add Block Ack request we activated a timer until
385 * add Block Ack response will arrive from the recipient.
386 * If this timer expires sta_addba_resp_timer_expired will be executed.
387 */
de1ede7a 388static void sta_addba_resp_timer_expired(unsigned long data)
44d414db
JB		 389{
390 /* not an elegant detour, but there is no choice as the timer passes
391 * only one argument, and both sta_info and TID are needed, so init
392 * flow in sta_info_create gives the TID as data, while the timer_to_id
393 * array gives the sta through container_of */
394 u16 tid = *(u8 *)data;
395 struct sta_info *temp_sta = container_of((void *)data,
396 struct sta_info, timer_to_tid[tid]);
397
398 struct ieee80211_local *local = temp_sta->local;
399 struct ieee80211_hw *hw = &local->hw;
400 struct sta_info *sta;
401 u8 *state;
402
403 rcu_read_lock();
404
17741cdc 405 sta = sta_info_get(local, temp_sta->sta.addr);
44d414db
JB		 406 if (!sta) {
407 rcu_read_unlock();
408 return;
409 }
410
411 state = &sta->ampdu_mlme.tid_state_tx[tid];
412 /* check if the TID waits for addBA response */
413 spin_lock_bh(&sta->lock);
414 if (!(*state & HT_ADDBA_REQUESTED_MSK)) {
415 spin_unlock_bh(&sta->lock);
416 *state = HT_AGG_STATE_IDLE;
417#ifdef CONFIG_MAC80211_HT_DEBUG
418 printk(KERN_DEBUG "timer expired on tid %d but we are not "
419 "expecting addBA response there", tid);
420#endif
421 goto timer_expired_exit;
422 }
423
424#ifdef CONFIG_MAC80211_HT_DEBUG
425 printk(KERN_DEBUG "addBA response timer expired on tid %d\n", tid);
426#endif
427
428 /* go through the state check in stop_BA_session */
429 *state = HT_AGG_STATE_OPERATIONAL;
430 spin_unlock_bh(&sta->lock);
17741cdc 431 ieee80211_stop_tx_ba_session(hw, temp_sta->sta.addr, tid,
44d414db
JB		 432 WLAN_BACK_INITIATOR);
433
434timer_expired_exit:
435 rcu_read_unlock();
436}
437
438void ieee80211_sta_tear_down_BA_sessions(struct ieee80211_sub_if_data *sdata, u8 *addr)
439{
440 struct ieee80211_local *local = sdata->local;
441 int i;
442
443 for (i = 0; i < STA_TID_NUM; i++) {
444 ieee80211_stop_tx_ba_session(&local->hw, addr, i,
445 WLAN_BACK_INITIATOR);
446 ieee80211_sta_stop_rx_ba_session(sdata, addr, i,
447 WLAN_BACK_RECIPIENT,
448 WLAN_REASON_QSTA_LEAVE_QBSS);
449 }
450}
451
bacac545
JB		 452int ieee80211_start_tx_ba_session(struct ieee80211_hw *hw, u8 *ra, u16 tid)
453{
454 struct ieee80211_local *local = hw_to_local(hw);
455 struct sta_info *sta;
456 struct ieee80211_sub_if_data *sdata;
457 u16 start_seq_num;
458 u8 *state;
459 int ret;
bacac545 460
8b30b1fe 461 if ((tid >= STA_TID_NUM) || !(hw->flags & IEEE80211_HW_AMPDU_AGGREGATION))
bacac545
JB		 462 return -EINVAL;
463
464#ifdef CONFIG_MAC80211_HT_DEBUG
0c68ae26
JB		 465 printk(KERN_DEBUG "Open BA session requested for %pM tid %u\n",
466 ra, tid);
bacac545
JB		 467#endif /* CONFIG_MAC80211_HT_DEBUG */
468
469 rcu_read_lock();
470
471 sta = sta_info_get(local, ra);
472 if (!sta) {
473#ifdef CONFIG_MAC80211_HT_DEBUG
474 printk(KERN_DEBUG "Could not find the station\n");
475#endif
476 ret = -ENOENT;
477 goto exit;
478 }
479
480 spin_lock_bh(&sta->lock);
481
482 /* we have tried too many times, receiver does not want A-MPDU */
483 if (sta->ampdu_mlme.addba_req_num[tid] > HT_AGG_MAX_RETRIES) {
484 ret = -EBUSY;
485 goto err_unlock_sta;
486 }
487
488 state = &sta->ampdu_mlme.tid_state_tx[tid];
489 /* check if the TID is not in aggregation flow already */
490 if (*state != HT_AGG_STATE_IDLE) {
491#ifdef CONFIG_MAC80211_HT_DEBUG
492 printk(KERN_DEBUG "BA request denied - session is not "
493 "idle on tid %u\n", tid);
494#endif /* CONFIG_MAC80211_HT_DEBUG */
495 ret = -EAGAIN;
496 goto err_unlock_sta;
497 }
498
499 /* prepare A-MPDU MLME for Tx aggregation */
500 sta->ampdu_mlme.tid_tx[tid] =
501 kmalloc(sizeof(struct tid_ampdu_tx), GFP_ATOMIC);
502 if (!sta->ampdu_mlme.tid_tx[tid]) {
503#ifdef CONFIG_MAC80211_HT_DEBUG
504 if (net_ratelimit())
505 printk(KERN_ERR "allocate tx mlme to tid %d failed\n",
506 tid);
507#endif
508 ret = -ENOMEM;
509 goto err_unlock_sta;
510 }
511 /* Tx timer */
512 sta->ampdu_mlme.tid_tx[tid]->addba_resp_timer.function =
513 sta_addba_resp_timer_expired;
514 sta->ampdu_mlme.tid_tx[tid]->addba_resp_timer.data =
515 (unsigned long)&sta->timer_to_tid[tid];
516 init_timer(&sta->ampdu_mlme.tid_tx[tid]->addba_resp_timer);
517
8b30b1fe
S		 518 if (hw->ampdu_queues) {
519 /* create a new queue for this aggregation */
520 ret = ieee80211_ht_agg_queue_add(local, sta, tid);
bacac545 521
8b30b1fe
S		 522 /* case no queue is available to aggregation
523 * don't switch to aggregation */
524 if (ret) {
bacac545 525#ifdef CONFIG_MAC80211_HT_DEBUG
8b30b1fe
S		 526 printk(KERN_DEBUG "BA request denied - "
527 "queue unavailable for tid %d\n", tid);
bacac545 528#endif /* CONFIG_MAC80211_HT_DEBUG */
8b30b1fe
S		 529 goto err_unlock_queue;
530 }
bacac545
JB		 531 }
532 sdata = sta->sdata;
533
534 /* Ok, the Addba frame hasn't been sent yet, but if the driver calls the
535 * call back right away, it must see that the flow has begun */
536 *state |= HT_ADDBA_REQUESTED_MSK;
537
538 /* This is slightly racy because the queue isn't stopped */
539 start_seq_num = sta->tid_seq[tid];
540
541 if (local->ops->ampdu_action)
542 ret = local->ops->ampdu_action(hw, IEEE80211_AMPDU_TX_START,
17741cdc 543 &sta->sta, tid, &start_seq_num);
bacac545
JB		 544
545 if (ret) {
546 /* No need to requeue the packets in the agg queue, since we
547 * held the tx lock: no packet could be enqueued to the newly
548 * allocated queue */
8b30b1fe
S		 549 if (hw->ampdu_queues)
550 ieee80211_ht_agg_queue_remove(local, sta, tid, 0);
bacac545
JB		 551#ifdef CONFIG_MAC80211_HT_DEBUG
552 printk(KERN_DEBUG "BA request denied - HW unavailable for"
553 " tid %d\n", tid);
554#endif /* CONFIG_MAC80211_HT_DEBUG */
555 *state = HT_AGG_STATE_IDLE;
556 goto err_unlock_queue;
557 }
558
559 /* Will put all the packets in the new SW queue */
8b30b1fe
S		 560 if (hw->ampdu_queues)
561 ieee80211_requeue(local, ieee802_1d_to_ac[tid]);
bacac545
JB		 562 spin_unlock_bh(&sta->lock);
563
564 /* send an addBA request */
565 sta->ampdu_mlme.dialog_token_allocator++;
566 sta->ampdu_mlme.tid_tx[tid]->dialog_token =
567 sta->ampdu_mlme.dialog_token_allocator;
568 sta->ampdu_mlme.tid_tx[tid]->ssn = start_seq_num;
569
570
571 ieee80211_send_addba_request(sta->sdata, ra, tid,
572 sta->ampdu_mlme.tid_tx[tid]->dialog_token,
573 sta->ampdu_mlme.tid_tx[tid]->ssn,
574 0x40, 5000);
575 /* activate the timer for the recipient's addBA response */
576 sta->ampdu_mlme.tid_tx[tid]->addba_resp_timer.expires =
577 jiffies + ADDBA_RESP_INTERVAL;
578 add_timer(&sta->ampdu_mlme.tid_tx[tid]->addba_resp_timer);
579#ifdef CONFIG_MAC80211_HT_DEBUG
580 printk(KERN_DEBUG "activated addBA response timer on tid %d\n", tid);
581#endif
582 goto exit;
583
584err_unlock_queue:
585 kfree(sta->ampdu_mlme.tid_tx[tid]);
586 sta->ampdu_mlme.tid_tx[tid] = NULL;
587 ret = -EBUSY;
588err_unlock_sta:
589 spin_unlock_bh(&sta->lock);
590exit:
591 rcu_read_unlock();
592 return ret;
593}
594EXPORT_SYMBOL(ieee80211_start_tx_ba_session);
595
596int ieee80211_stop_tx_ba_session(struct ieee80211_hw *hw,
597 u8 *ra, u16 tid,
598 enum ieee80211_back_parties initiator)
599{
600 struct ieee80211_local *local = hw_to_local(hw);
601 struct sta_info *sta;
602 u8 *state;
603 int ret = 0;
bacac545
JB		 604
605 if (tid >= STA_TID_NUM)
606 return -EINVAL;
607
608 rcu_read_lock();
609 sta = sta_info_get(local, ra);
610 if (!sta) {
611 rcu_read_unlock();
612 return -ENOENT;
613 }
614
615 /* check if the TID is in aggregation */
616 state = &sta->ampdu_mlme.tid_state_tx[tid];
617 spin_lock_bh(&sta->lock);
618
619 if (*state != HT_AGG_STATE_OPERATIONAL) {
620 ret = -ENOENT;
621 goto stop_BA_exit;
622 }
623
624#ifdef CONFIG_MAC80211_HT_DEBUG
0c68ae26
JB		 625 printk(KERN_DEBUG "Tx BA session stop requested for %pM tid %u\n",
626 ra, tid);
bacac545
JB		 627#endif /* CONFIG_MAC80211_HT_DEBUG */
628
8b30b1fe
S		 629 if (hw->ampdu_queues)
630 ieee80211_stop_queue(hw, sta->tid_to_tx_q[tid]);
bacac545
JB		 631
632 *state = HT_AGG_STATE_REQ_STOP_BA_MSK |
633 (initiator << HT_AGG_STATE_INITIATOR_SHIFT);
634
635 if (local->ops->ampdu_action)
636 ret = local->ops->ampdu_action(hw, IEEE80211_AMPDU_TX_STOP,
17741cdc 637 &sta->sta, tid, NULL);
bacac545
JB		 638
639 /* case HW denied going back to legacy */
640 if (ret) {
641 WARN_ON(ret != -EBUSY);
642 *state = HT_AGG_STATE_OPERATIONAL;
8b30b1fe
S		 643 if (hw->ampdu_queues)
644 ieee80211_wake_queue(hw, sta->tid_to_tx_q[tid]);
bacac545
JB		 645 goto stop_BA_exit;
646 }
647
648stop_BA_exit:
649 spin_unlock_bh(&sta->lock);
650 rcu_read_unlock();
651 return ret;
652}
653EXPORT_SYMBOL(ieee80211_stop_tx_ba_session);
654
655void ieee80211_start_tx_ba_cb(struct ieee80211_hw *hw, u8 *ra, u16 tid)
656{
657 struct ieee80211_local *local = hw_to_local(hw);
658 struct sta_info *sta;
659 u8 *state;
bacac545
JB		 660
661 if (tid >= STA_TID_NUM) {
662#ifdef CONFIG_MAC80211_HT_DEBUG
663 printk(KERN_DEBUG "Bad TID value: tid = %d (>= %d)\n",
664 tid, STA_TID_NUM);
665#endif
666 return;
667 }
668
669 rcu_read_lock();
670 sta = sta_info_get(local, ra);
671 if (!sta) {
672 rcu_read_unlock();
673#ifdef CONFIG_MAC80211_HT_DEBUG
0c68ae26 674 printk(KERN_DEBUG "Could not find station: %pM\n", ra);
bacac545
JB		 675#endif
676 return;
677 }
678
679 state = &sta->ampdu_mlme.tid_state_tx[tid];
680 spin_lock_bh(&sta->lock);
681
682 if (!(*state & HT_ADDBA_REQUESTED_MSK)) {
683#ifdef CONFIG_MAC80211_HT_DEBUG
684 printk(KERN_DEBUG "addBA was not requested yet, state is %d\n",
685 *state);
686#endif
687 spin_unlock_bh(&sta->lock);
688 rcu_read_unlock();
689 return;
690 }
691
692 WARN_ON_ONCE(*state & HT_ADDBA_DRV_READY_MSK);
693
694 *state |= HT_ADDBA_DRV_READY_MSK;
695
696 if (*state == HT_AGG_STATE_OPERATIONAL) {
697#ifdef CONFIG_MAC80211_HT_DEBUG
698 printk(KERN_DEBUG "Aggregation is on for tid %d \n", tid);
699#endif
8b30b1fe
S		 700 if (hw->ampdu_queues)
701 ieee80211_wake_queue(hw, sta->tid_to_tx_q[tid]);
bacac545
JB		 702 }
703 spin_unlock_bh(&sta->lock);
704 rcu_read_unlock();
705}
706EXPORT_SYMBOL(ieee80211_start_tx_ba_cb);
707
708void ieee80211_stop_tx_ba_cb(struct ieee80211_hw *hw, u8 *ra, u8 tid)
709{
710 struct ieee80211_local *local = hw_to_local(hw);
711 struct sta_info *sta;
712 u8 *state;
713 int agg_queue;
bacac545
JB		 714
715 if (tid >= STA_TID_NUM) {
716#ifdef CONFIG_MAC80211_HT_DEBUG
717 printk(KERN_DEBUG "Bad TID value: tid = %d (>= %d)\n",
718 tid, STA_TID_NUM);
719#endif
720 return;
721 }
722
723#ifdef CONFIG_MAC80211_HT_DEBUG
0c68ae26
JB		 724 printk(KERN_DEBUG "Stopping Tx BA session for %pM tid %d\n",
725 ra, tid);
bacac545
JB		 726#endif /* CONFIG_MAC80211_HT_DEBUG */
727
728 rcu_read_lock();
729 sta = sta_info_get(local, ra);
730 if (!sta) {
731#ifdef CONFIG_MAC80211_HT_DEBUG
0c68ae26 732 printk(KERN_DEBUG "Could not find station: %pM\n", ra);
bacac545
JB		 733#endif
734 rcu_read_unlock();
735 return;
736 }
737 state = &sta->ampdu_mlme.tid_state_tx[tid];
738
739 /* NOTE: no need to use sta->lock in this state check, as
740 * ieee80211_stop_tx_ba_session will let only one stop call to
741 * pass through per sta/tid
742 */
743 if ((*state & HT_AGG_STATE_REQ_STOP_BA_MSK) == 0) {
744#ifdef CONFIG_MAC80211_HT_DEBUG
745 printk(KERN_DEBUG "unexpected callback to A-MPDU stop\n");
746#endif
747 rcu_read_unlock();
748 return;
749 }
750
751 if (*state & HT_AGG_STATE_INITIATOR_MSK)
752 ieee80211_send_delba(sta->sdata, ra, tid,
753 WLAN_BACK_INITIATOR, WLAN_REASON_QSTA_NOT_USE);
754
8b30b1fe
S		 755 if (hw->ampdu_queues) {
756 agg_queue = sta->tid_to_tx_q[tid];
757 ieee80211_ht_agg_queue_remove(local, sta, tid, 1);
758
759 /* We just requeued the all the frames that were in the
760 * removed queue, and since we might miss a softirq we do
761 * netif_schedule_queue. ieee80211_wake_queue is not used
762 * here as this queue is not necessarily stopped
763 */
764 netif_schedule_queue(netdev_get_tx_queue(local->mdev,
765 agg_queue));
766 }
bacac545
JB		 767 spin_lock_bh(&sta->lock);
768 *state = HT_AGG_STATE_IDLE;
769 sta->ampdu_mlme.addba_req_num[tid] = 0;
770 kfree(sta->ampdu_mlme.tid_tx[tid]);
771 sta->ampdu_mlme.tid_tx[tid] = NULL;
772 spin_unlock_bh(&sta->lock);
773
774 rcu_read_unlock();
775}
776EXPORT_SYMBOL(ieee80211_stop_tx_ba_cb);
777
778void ieee80211_start_tx_ba_cb_irqsafe(struct ieee80211_hw *hw,
779 const u8 *ra, u16 tid)
780{
781 struct ieee80211_local *local = hw_to_local(hw);
782 struct ieee80211_ra_tid *ra_tid;
783 struct sk_buff *skb = dev_alloc_skb(0);
784
785 if (unlikely(!skb)) {
786#ifdef CONFIG_MAC80211_HT_DEBUG
787 if (net_ratelimit())
788 printk(KERN_WARNING "%s: Not enough memory, "
789 "dropping start BA session", skb->dev->name);
790#endif
791 return;
792 }
793 ra_tid = (struct ieee80211_ra_tid *) &skb->cb;
794 memcpy(&ra_tid->ra, ra, ETH_ALEN);
795 ra_tid->tid = tid;
796
797 skb->pkt_type = IEEE80211_ADDBA_MSG;
798 skb_queue_tail(&local->skb_queue, skb);
799 tasklet_schedule(&local->tasklet);
800}
801EXPORT_SYMBOL(ieee80211_start_tx_ba_cb_irqsafe);
802
803void ieee80211_stop_tx_ba_cb_irqsafe(struct ieee80211_hw *hw,
804 const u8 *ra, u16 tid)
805{
806 struct ieee80211_local *local = hw_to_local(hw);
807 struct ieee80211_ra_tid *ra_tid;
808 struct sk_buff *skb = dev_alloc_skb(0);
809
810 if (unlikely(!skb)) {
811#ifdef CONFIG_MAC80211_HT_DEBUG
812 if (net_ratelimit())
813 printk(KERN_WARNING "%s: Not enough memory, "
814 "dropping stop BA session", skb->dev->name);
815#endif
816 return;
817 }
818 ra_tid = (struct ieee80211_ra_tid *) &skb->cb;
819 memcpy(&ra_tid->ra, ra, ETH_ALEN);
820 ra_tid->tid = tid;
821
822 skb->pkt_type = IEEE80211_DELBA_MSG;
823 skb_queue_tail(&local->skb_queue, skb);
824 tasklet_schedule(&local->tasklet);
825}
826EXPORT_SYMBOL(ieee80211_stop_tx_ba_cb_irqsafe);
de1ede7a
JB		 827
828/*
829 * After accepting the AddBA Request we activated a timer,
830 * resetting it after each frame that arrives from the originator.
831 * if this timer expires ieee80211_sta_stop_rx_ba_session will be executed.
832 */
833static void sta_rx_agg_session_timer_expired(unsigned long data)
834{
835 /* not an elegant detour, but there is no choice as the timer passes
836 * only one argument, and various sta_info are needed here, so init
837 * flow in sta_info_create gives the TID as data, while the timer_to_id
838 * array gives the sta through container_of */
839 u8 *ptid = (u8 *)data;
840 u8 *timer_to_id = ptid - *ptid;
841 struct sta_info *sta = container_of(timer_to_id, struct sta_info,
842 timer_to_tid[0]);
843
844#ifdef CONFIG_MAC80211_HT_DEBUG
845 printk(KERN_DEBUG "rx session timer expired on tid %d\n", (u16)*ptid);
846#endif
17741cdc 847 ieee80211_sta_stop_rx_ba_session(sta->sdata, sta->sta.addr,
de1ede7a
JB		 848 (u16)*ptid, WLAN_BACK_TIMER,
849 WLAN_REASON_QSTA_TIMEOUT);
850}
851
852void ieee80211_process_addba_request(struct ieee80211_local *local,
853 struct sta_info *sta,
854 struct ieee80211_mgmt *mgmt,
855 size_t len)
856{
857 struct ieee80211_hw *hw = &local->hw;
858 struct ieee80211_conf *conf = &hw->conf;
859 struct tid_ampdu_rx *tid_agg_rx;
860 u16 capab, tid, timeout, ba_policy, buf_size, start_seq_num, status;
861 u8 dialog_token;
862 int ret = -EOPNOTSUPP;
de1ede7a
JB		 863
864 /* extract session parameters from addba request frame */
865 dialog_token = mgmt->u.action.u.addba_req.dialog_token;
866 timeout = le16_to_cpu(mgmt->u.action.u.addba_req.timeout);
867 start_seq_num =
868 le16_to_cpu(mgmt->u.action.u.addba_req.start_seq_num) >> 4;
869
870 capab = le16_to_cpu(mgmt->u.action.u.addba_req.capab);
871 ba_policy = (capab & IEEE80211_ADDBA_PARAM_POLICY_MASK) >> 1;
872 tid = (capab & IEEE80211_ADDBA_PARAM_TID_MASK) >> 2;
873 buf_size = (capab & IEEE80211_ADDBA_PARAM_BUF_SIZE_MASK) >> 6;
874
875 status = WLAN_STATUS_REQUEST_DECLINED;
876
877 /* sanity check for incoming parameters:
878 * check if configuration can support the BA policy
879 * and if buffer size does not exceeds max value */
ae5eb026 880 /* XXX: check own ht delayed BA capability?? */
de1ede7a 881 if (((ba_policy != 1)
ae5eb026 882 && (!(sta->sta.ht_cap.cap & IEEE80211_HT_CAP_DELAY_BA)))
de1ede7a
JB		 883 || (buf_size > IEEE80211_MAX_AMPDU_BUF)) {
884 status = WLAN_STATUS_INVALID_QOS_PARAM;
885#ifdef CONFIG_MAC80211_HT_DEBUG
886 if (net_ratelimit())
887 printk(KERN_DEBUG "AddBA Req with bad params from "
0c68ae26
JB		 888 "%pM on tid %u. policy %d, buffer size %d\n",
889 mgmt->sa, tid, ba_policy,
de1ede7a
JB		 890 buf_size);
891#endif /* CONFIG_MAC80211_HT_DEBUG */
892 goto end_no_lock;
893 }
894 /* determine default buffer size */
895 if (buf_size == 0) {
896 struct ieee80211_supported_band *sband;
897
898 sband = local->hw.wiphy->bands[conf->channel->band];
899 buf_size = IEEE80211_MIN_AMPDU_BUF;
d9fe60de 900 buf_size = buf_size << sband->ht_cap.ampdu_factor;
de1ede7a
JB		 901 }
902
903
904 /* examine state machine */
905 spin_lock_bh(&sta->lock);
906
907 if (sta->ampdu_mlme.tid_state_rx[tid] != HT_AGG_STATE_IDLE) {
908#ifdef CONFIG_MAC80211_HT_DEBUG
909 if (net_ratelimit())
910 printk(KERN_DEBUG "unexpected AddBA Req from "
0c68ae26
JB		 911 "%pM on tid %u\n",
912 mgmt->sa, tid);
de1ede7a
JB		 913#endif /* CONFIG_MAC80211_HT_DEBUG */
914 goto end;
915 }
916
917 /* prepare A-MPDU MLME for Rx aggregation */
918 sta->ampdu_mlme.tid_rx[tid] =
919 kmalloc(sizeof(struct tid_ampdu_rx), GFP_ATOMIC);
920 if (!sta->ampdu_mlme.tid_rx[tid]) {
921#ifdef CONFIG_MAC80211_HT_DEBUG
922 if (net_ratelimit())
923 printk(KERN_ERR "allocate rx mlme to tid %d failed\n",
924 tid);
925#endif
926 goto end;
927 }
928 /* rx timer */
929 sta->ampdu_mlme.tid_rx[tid]->session_timer.function =
930 sta_rx_agg_session_timer_expired;
931 sta->ampdu_mlme.tid_rx[tid]->session_timer.data =
932 (unsigned long)&sta->timer_to_tid[tid];
933 init_timer(&sta->ampdu_mlme.tid_rx[tid]->session_timer);
934
935 tid_agg_rx = sta->ampdu_mlme.tid_rx[tid];
936
937 /* prepare reordering buffer */
938 tid_agg_rx->reorder_buf =
939 kmalloc(buf_size * sizeof(struct sk_buff *), GFP_ATOMIC);
940 if (!tid_agg_rx->reorder_buf) {
941#ifdef CONFIG_MAC80211_HT_DEBUG
942 if (net_ratelimit())
943 printk(KERN_ERR "can not allocate reordering buffer "
944 "to tid %d\n", tid);
945#endif
946 kfree(sta->ampdu_mlme.tid_rx[tid]);
947 goto end;
948 }
949 memset(tid_agg_rx->reorder_buf, 0,
950 buf_size * sizeof(struct sk_buff *));
951
952 if (local->ops->ampdu_action)
953 ret = local->ops->ampdu_action(hw, IEEE80211_AMPDU_RX_START,
17741cdc 954 &sta->sta, tid, &start_seq_num);
de1ede7a
JB		 955#ifdef CONFIG_MAC80211_HT_DEBUG
956 printk(KERN_DEBUG "Rx A-MPDU request on tid %d result %d\n", tid, ret);
957#endif /* CONFIG_MAC80211_HT_DEBUG */
958
959 if (ret) {
960 kfree(tid_agg_rx->reorder_buf);
961 kfree(tid_agg_rx);
962 sta->ampdu_mlme.tid_rx[tid] = NULL;
963 goto end;
964 }
965
966 /* change state and send addba resp */
967 sta->ampdu_mlme.tid_state_rx[tid] = HT_AGG_STATE_OPERATIONAL;
968 tid_agg_rx->dialog_token = dialog_token;
969 tid_agg_rx->ssn = start_seq_num;
970 tid_agg_rx->head_seq_num = start_seq_num;
971 tid_agg_rx->buf_size = buf_size;
972 tid_agg_rx->timeout = timeout;
973 tid_agg_rx->stored_mpdu_num = 0;
974 status = WLAN_STATUS_SUCCESS;
975end:
976 spin_unlock_bh(&sta->lock);
977
978end_no_lock:
17741cdc 979 ieee80211_send_addba_resp(sta->sdata, sta->sta.addr, tid,
de1ede7a
JB		 980 dialog_token, status, 1, buf_size, timeout);
981}
982
983void ieee80211_process_addba_resp(struct ieee80211_local *local,
984 struct sta_info *sta,
985 struct ieee80211_mgmt *mgmt,
986 size_t len)
987{
988 struct ieee80211_hw *hw = &local->hw;
989 u16 capab;
8469cdef 990 u16 tid, start_seq_num;
de1ede7a
JB		 991 u8 *state;
992
993 capab = le16_to_cpu(mgmt->u.action.u.addba_resp.capab);
994 tid = (capab & IEEE80211_ADDBA_PARAM_TID_MASK) >> 2;
995
996 state = &sta->ampdu_mlme.tid_state_tx[tid];
997
998 spin_lock_bh(&sta->lock);
999
1000 if (!(*state & HT_ADDBA_REQUESTED_MSK)) {
1001 spin_unlock_bh(&sta->lock);
1002 return;
1003 }
1004
1005 if (mgmt->u.action.u.addba_resp.dialog_token !=
1006 sta->ampdu_mlme.tid_tx[tid]->dialog_token) {
1007 spin_unlock_bh(&sta->lock);
1008#ifdef CONFIG_MAC80211_HT_DEBUG
1009 printk(KERN_DEBUG "wrong addBA response token, tid %d\n", tid);
1010#endif /* CONFIG_MAC80211_HT_DEBUG */
1011 return;
1012 }
1013
1014 del_timer_sync(&sta->ampdu_mlme.tid_tx[tid]->addba_resp_timer);
1015#ifdef CONFIG_MAC80211_HT_DEBUG
1016 printk(KERN_DEBUG "switched off addBA timer for tid %d \n", tid);
1017#endif /* CONFIG_MAC80211_HT_DEBUG */
1018 if (le16_to_cpu(mgmt->u.action.u.addba_resp.status)
1019 == WLAN_STATUS_SUCCESS) {
1020 *state |= HT_ADDBA_RECEIVED_MSK;
1021 sta->ampdu_mlme.addba_req_num[tid] = 0;
1022
8b30b1fe
S		 1023 if (*state == HT_AGG_STATE_OPERATIONAL &&
1024 local->hw.ampdu_queues)
de1ede7a
JB		 1025 ieee80211_wake_queue(hw, sta->tid_to_tx_q[tid]);
1026
8469cdef
S		 1027 if (local->ops->ampdu_action) {
1028 (void)local->ops->ampdu_action(hw,
1029 IEEE80211_AMPDU_TX_RESUME,
1030 &sta->sta, tid, &start_seq_num);
1031 }
1032#ifdef CONFIG_MAC80211_HT_DEBUG
1033 printk(KERN_DEBUG "Resuming TX aggregation for tid %d\n", tid);
1034#endif /* CONFIG_MAC80211_HT_DEBUG */
de1ede7a
JB		 1035 spin_unlock_bh(&sta->lock);
1036 } else {
1037 sta->ampdu_mlme.addba_req_num[tid]++;
1038 /* this will allow the state check in stop_BA_session */
1039 *state = HT_AGG_STATE_OPERATIONAL;
1040 spin_unlock_bh(&sta->lock);
17741cdc 1041 ieee80211_stop_tx_ba_session(hw, sta->sta.addr, tid,
de1ede7a
JB		 1042 WLAN_BACK_INITIATOR);
1043 }
1044}
1045
1046void ieee80211_process_delba(struct ieee80211_sub_if_data *sdata,
1047 struct sta_info *sta,
1048 struct ieee80211_mgmt *mgmt, size_t len)
1049{
1050 struct ieee80211_local *local = sdata->local;
1051 u16 tid, params;
1052 u16 initiator;
de1ede7a
JB		 1053
1054 params = le16_to_cpu(mgmt->u.action.u.delba.params);
1055 tid = (params & IEEE80211_DELBA_PARAM_TID_MASK) >> 12;
1056 initiator = (params & IEEE80211_DELBA_PARAM_INITIATOR_MASK) >> 11;
1057
1058#ifdef CONFIG_MAC80211_HT_DEBUG
1059 if (net_ratelimit())
0c68ae26
JB		 1060 printk(KERN_DEBUG "delba from %pM (%s) tid %d reason code %d\n",
1061 mgmt->sa, initiator ? "initiator" : "recipient", tid,
de1ede7a
JB		 1062 mgmt->u.action.u.delba.reason_code);
1063#endif /* CONFIG_MAC80211_HT_DEBUG */
1064
1065 if (initiator == WLAN_BACK_INITIATOR)
17741cdc 1066 ieee80211_sta_stop_rx_ba_session(sdata, sta->sta.addr, tid,
de1ede7a
JB		 1067 WLAN_BACK_INITIATOR, 0);
1068 else { /* WLAN_BACK_RECIPIENT */
1069 spin_lock_bh(&sta->lock);
1070 sta->ampdu_mlme.tid_state_tx[tid] =
1071 HT_AGG_STATE_OPERATIONAL;
1072 spin_unlock_bh(&sta->lock);
17741cdc 1073 ieee80211_stop_tx_ba_session(&local->hw, sta->sta.addr, tid,
de1ede7a
JB		 1074 WLAN_BACK_RECIPIENT);
1075 }
1076}
Making Linux better for my computers