1 /*======================================================================
3 Aironet driver for 4500 and 4800 series cards
5 This code is released under both the GPL version 2 and BSD licenses.
6 Either license may be used. The respective licenses are found at
9 This code was developed by Benjamin Reed <breed@users.sourceforge.net>
10 including portions of which come from the Aironet PC4500
11 Developer's Reference Manual and used with permission. Copyright
12 (C) 1999 Benjamin Reed. All Rights Reserved. Permission to use
13 code in the Developer's manual was granted for this driver by
14 Aironet. Major code contributions were received from Javier Achirica
15 <achirica@users.sourceforge.net> and Jean Tourrilhes <jt@hpl.hp.com>.
16 Code was also integrated from the Cisco Aironet driver for Linux.
17 Support for MPI350 cards was added by Fabrice Bellet
18 <fabrice@bellet.info>.
20 ======================================================================*/
22 #include <linux/config.h>
23 #include <linux/init.h>
25 #include <linux/kernel.h>
26 #include <linux/module.h>
27 #include <linux/proc_fs.h>
28 #include <linux/smp_lock.h>
30 #include <linux/sched.h>
31 #include <linux/ptrace.h>
32 #include <linux/slab.h>
33 #include <linux/string.h>
34 #include <linux/timer.h>
35 #include <linux/interrupt.h>
37 #include <linux/bitops.h>
38 #include <linux/scatterlist.h>
40 #include <asm/system.h>
42 #include <linux/netdevice.h>
43 #include <linux/etherdevice.h>
44 #include <linux/skbuff.h>
45 #include <linux/if_arp.h>
46 #include <linux/ioport.h>
47 #include <linux/pci.h>
48 #include <asm/uaccess.h>
53 static struct pci_device_id card_ids[] = {
54 { 0x14b9, 1, PCI_ANY_ID, PCI_ANY_ID, },
55 { 0x14b9, 0x4500, PCI_ANY_ID, PCI_ANY_ID },
56 { 0x14b9, 0x4800, PCI_ANY_ID, PCI_ANY_ID, },
57 { 0x14b9, 0x0340, PCI_ANY_ID, PCI_ANY_ID, },
58 { 0x14b9, 0x0350, PCI_ANY_ID, PCI_ANY_ID, },
59 { 0x14b9, 0x5000, PCI_ANY_ID, PCI_ANY_ID, },
60 { 0x14b9, 0xa504, PCI_ANY_ID, PCI_ANY_ID, },
63 MODULE_DEVICE_TABLE(pci, card_ids);
65 static int airo_pci_probe(struct pci_dev *, const struct pci_device_id *);
66 static void airo_pci_remove(struct pci_dev *);
67 static int airo_pci_suspend(struct pci_dev *pdev, pm_message_t state);
68 static int airo_pci_resume(struct pci_dev *pdev);
70 static struct pci_driver airo_driver = {
73 .probe = airo_pci_probe,
74 .remove = __devexit_p(airo_pci_remove),
75 .suspend = airo_pci_suspend,
76 .resume = airo_pci_resume,
78 #endif /* CONFIG_PCI */
80 /* Include Wireless Extension definition and check version - Jean II */
81 #include <linux/wireless.h>
82 #define WIRELESS_SPY // enable iwspy support
83 #include <net/iw_handler.h> // New driver API
85 #define CISCO_EXT // enable Cisco extensions
87 #include <linux/delay.h>
90 /* Support Cisco MIC feature */
93 #if defined(MICSUPPORT) && !defined(CONFIG_CRYPTO)
94 #warning MIC support requires Crypto API
98 /* Hack to do some power saving */
101 /* As you can see this list is HUGH!
102 I really don't know what a lot of these counts are about, but they
103 are all here for completeness. If the IGNLABEL macro is put in
104 infront of the label, that statistic will not be included in the list
105 of statistics in the /proc filesystem */
107 #define IGNLABEL(comment) NULL
108 static char *statsLabels[] = {
110 IGNLABEL("RxPlcpCrcErr"),
111 IGNLABEL("RxPlcpFormatErr"),
112 IGNLABEL("RxPlcpLengthErr"),
143 "LostSync-MissedBeacons",
144 "LostSync-ArlExceeded",
146 "LostSync-Disassoced",
147 "LostSync-TsfTiming",
156 IGNLABEL("HmacTxMc"),
157 IGNLABEL("HmacTxBc"),
158 IGNLABEL("HmacTxUc"),
159 IGNLABEL("HmacTxFail"),
160 IGNLABEL("HmacRxMc"),
161 IGNLABEL("HmacRxBc"),
162 IGNLABEL("HmacRxUc"),
163 IGNLABEL("HmacRxDiscard"),
164 IGNLABEL("HmacRxAccepted"),
172 IGNLABEL("ReasonOutsideTable"),
173 IGNLABEL("ReasonStatus1"),
174 IGNLABEL("ReasonStatus2"),
175 IGNLABEL("ReasonStatus3"),
176 IGNLABEL("ReasonStatus4"),
177 IGNLABEL("ReasonStatus5"),
178 IGNLABEL("ReasonStatus6"),
179 IGNLABEL("ReasonStatus7"),
180 IGNLABEL("ReasonStatus8"),
181 IGNLABEL("ReasonStatus9"),
182 IGNLABEL("ReasonStatus10"),
183 IGNLABEL("ReasonStatus11"),
184 IGNLABEL("ReasonStatus12"),
185 IGNLABEL("ReasonStatus13"),
186 IGNLABEL("ReasonStatus14"),
187 IGNLABEL("ReasonStatus15"),
188 IGNLABEL("ReasonStatus16"),
189 IGNLABEL("ReasonStatus17"),
190 IGNLABEL("ReasonStatus18"),
191 IGNLABEL("ReasonStatus19"),
211 #define RUN_AT(x) (jiffies+(x))
215 /* These variables are for insmod, since it seems that the rates
216 can only be set in setup_card. Rates should be a comma separated
217 (no spaces) list of rates (up to 8). */
220 static int basic_rate;
221 static char *ssids[3];
227 int maxencrypt /* = 0 */; /* The highest rate that the card can encrypt at.
228 0 means no limit. For old cards this was 4 */
230 static int auto_wep /* = 0 */; /* If set, it tries to figure out the wep mode */
231 static int aux_bap /* = 0 */; /* Checks to see if the aux ports are needed to read
232 the bap, needed on some older cards and buses. */
235 static int probe = 1;
237 static int proc_uid /* = 0 */;
239 static int proc_gid /* = 0 */;
241 static int airo_perm = 0555;
243 static int proc_perm = 0644;
245 MODULE_AUTHOR("Benjamin Reed");
246 MODULE_DESCRIPTION("Support for Cisco/Aironet 802.11 wireless ethernet \
247 cards. Direct support for ISA/PCI/MPI cards and support \
248 for PCMCIA when used with airo_cs.");
249 MODULE_LICENSE("Dual BSD/GPL");
250 MODULE_SUPPORTED_DEVICE("Aironet 4500, 4800 and Cisco 340/350");
251 module_param_array(io, int, NULL, 0);
252 module_param_array(irq, int, NULL, 0);
253 module_param(basic_rate, int, 0);
254 module_param_array(rates, int, NULL, 0);
255 module_param_array(ssids, charp, NULL, 0);
256 module_param(auto_wep, int, 0);
257 MODULE_PARM_DESC(auto_wep, "If non-zero, the driver will keep looping through \
258 the authentication options until an association is made. The value of \
259 auto_wep is number of the wep keys to check. A value of 2 will try using \
260 the key at index 0 and index 1.");
261 module_param(aux_bap, int, 0);
262 MODULE_PARM_DESC(aux_bap, "If non-zero, the driver will switch into a mode \
263 than seems to work better for older cards with some older buses. Before \
264 switching it checks that the switch is needed.");
265 module_param(maxencrypt, int, 0);
266 MODULE_PARM_DESC(maxencrypt, "The maximum speed that the card can do \
267 encryption. Units are in 512kbs. Zero (default) means there is no limit. \
268 Older cards used to be limited to 2mbs (4).");
269 module_param(adhoc, int, 0);
270 MODULE_PARM_DESC(adhoc, "If non-zero, the card will start in adhoc mode.");
271 module_param(probe, int, 0);
272 MODULE_PARM_DESC(probe, "If zero, the driver won't start the card.");
274 module_param(proc_uid, int, 0);
275 MODULE_PARM_DESC(proc_uid, "The uid that the /proc files will belong to.");
276 module_param(proc_gid, int, 0);
277 MODULE_PARM_DESC(proc_gid, "The gid that the /proc files will belong to.");
278 module_param(airo_perm, int, 0);
279 MODULE_PARM_DESC(airo_perm, "The permission bits of /proc/[driver/]aironet.");
280 module_param(proc_perm, int, 0);
281 MODULE_PARM_DESC(proc_perm, "The permission bits of the files in /proc");
283 /* This is a kind of sloppy hack to get this information to OUT4500 and
284 IN4500. I would be extremely interested in the situation where this
285 doesn't work though!!! */
286 static int do8bitIO = 0;
295 #define MAC_ENABLE 0x0001
296 #define MAC_DISABLE 0x0002
297 #define CMD_LOSE_SYNC 0x0003 /* Not sure what this does... */
298 #define CMD_SOFTRESET 0x0004
299 #define HOSTSLEEP 0x0005
300 #define CMD_MAGIC_PKT 0x0006
301 #define CMD_SETWAKEMASK 0x0007
302 #define CMD_READCFG 0x0008
303 #define CMD_SETMODE 0x0009
304 #define CMD_ALLOCATETX 0x000a
305 #define CMD_TRANSMIT 0x000b
306 #define CMD_DEALLOCATETX 0x000c
308 #define CMD_WORKAROUND 0x0011
309 #define CMD_ALLOCATEAUX 0x0020
310 #define CMD_ACCESS 0x0021
311 #define CMD_PCIBAP 0x0022
312 #define CMD_PCIAUX 0x0023
313 #define CMD_ALLOCBUF 0x0028
314 #define CMD_GETTLV 0x0029
315 #define CMD_PUTTLV 0x002a
316 #define CMD_DELTLV 0x002b
317 #define CMD_FINDNEXTTLV 0x002c
318 #define CMD_PSPNODES 0x0030
319 #define CMD_SETCW 0x0031
320 #define CMD_SETPCF 0x0032
321 #define CMD_SETPHYREG 0x003e
322 #define CMD_TXTEST 0x003f
323 #define MAC_ENABLETX 0x0101
324 #define CMD_LISTBSS 0x0103
325 #define CMD_SAVECFG 0x0108
326 #define CMD_ENABLEAUX 0x0111
327 #define CMD_WRITERID 0x0121
328 #define CMD_USEPSPNODES 0x0130
329 #define MAC_ENABLERX 0x0201
332 #define ERROR_QUALIF 0x00
333 #define ERROR_ILLCMD 0x01
334 #define ERROR_ILLFMT 0x02
335 #define ERROR_INVFID 0x03
336 #define ERROR_INVRID 0x04
337 #define ERROR_LARGE 0x05
338 #define ERROR_NDISABL 0x06
339 #define ERROR_ALLOCBSY 0x07
340 #define ERROR_NORD 0x0B
341 #define ERROR_NOWR 0x0C
342 #define ERROR_INVFIDTX 0x0D
343 #define ERROR_TESTACT 0x0E
344 #define ERROR_TAGNFND 0x12
345 #define ERROR_DECODE 0x20
346 #define ERROR_DESCUNAV 0x21
347 #define ERROR_BADLEN 0x22
348 #define ERROR_MODE 0x80
349 #define ERROR_HOP 0x81
350 #define ERROR_BINTER 0x82
351 #define ERROR_RXMODE 0x83
352 #define ERROR_MACADDR 0x84
353 #define ERROR_RATES 0x85
354 #define ERROR_ORDER 0x86
355 #define ERROR_SCAN 0x87
356 #define ERROR_AUTH 0x88
357 #define ERROR_PSMODE 0x89
358 #define ERROR_RTYPE 0x8A
359 #define ERROR_DIVER 0x8B
360 #define ERROR_SSID 0x8C
361 #define ERROR_APLIST 0x8D
362 #define ERROR_AUTOWAKE 0x8E
363 #define ERROR_LEAP 0x8F
374 #define LINKSTAT 0x10
378 #define TXALLOCFID 0x22
379 #define TXCOMPLFID 0x24
394 /* Offset into aux memory for descriptors */
395 #define AUX_OFFSET 0x800
396 /* Size of allocated packets */
399 /* Size of the transmit queue */
403 #define BAP0 0 // Used for receiving packets
404 #define BAP1 2 // Used for xmiting packets and working with RIDS
407 #define COMMAND_BUSY 0x8000
409 #define BAP_BUSY 0x8000
410 #define BAP_ERR 0x4000
411 #define BAP_DONE 0x2000
413 #define PROMISC 0xffff
414 #define NOPROMISC 0x0000
417 #define EV_CLEARCOMMANDBUSY 0x4000
420 #define EV_TXEXC 0x04
421 #define EV_ALLOC 0x08
423 #define EV_AWAKE 0x100
424 #define EV_TXCPY 0x400
425 #define EV_UNKNOWN 0x800
426 #define EV_MIC 0x1000 /* Message Integrity Check Interrupt */
427 #define EV_AWAKEN 0x2000
428 #define STATUS_INTS (EV_AWAKE|EV_LINK|EV_TXEXC|EV_TX|EV_TXCPY|EV_RX|EV_MIC)
430 #ifdef CHECK_UNKNOWN_INTS
431 #define IGNORE_INTS ( EV_CMD | EV_UNKNOWN)
433 #define IGNORE_INTS (~STATUS_INTS)
440 #define RID_CAPABILITIES 0xFF00
441 #define RID_APINFO 0xFF01
442 #define RID_RADIOINFO 0xFF02
443 #define RID_UNKNOWN3 0xFF03
444 #define RID_RSSI 0xFF04
445 #define RID_CONFIG 0xFF10
446 #define RID_SSID 0xFF11
447 #define RID_APLIST 0xFF12
448 #define RID_DRVNAME 0xFF13
449 #define RID_ETHERENCAP 0xFF14
450 #define RID_WEP_TEMP 0xFF15
451 #define RID_WEP_PERM 0xFF16
452 #define RID_MODULATION 0xFF17
453 #define RID_OPTIONS 0xFF18
454 #define RID_ACTUALCONFIG 0xFF20 /*readonly*/
455 #define RID_FACTORYCONFIG 0xFF21
456 #define RID_UNKNOWN22 0xFF22
457 #define RID_LEAPUSERNAME 0xFF23
458 #define RID_LEAPPASSWORD 0xFF24
459 #define RID_STATUS 0xFF50
460 #define RID_BEACON_HST 0xFF51
461 #define RID_BUSY_HST 0xFF52
462 #define RID_RETRIES_HST 0xFF53
463 #define RID_UNKNOWN54 0xFF54
464 #define RID_UNKNOWN55 0xFF55
465 #define RID_UNKNOWN56 0xFF56
466 #define RID_MIC 0xFF57
467 #define RID_STATS16 0xFF60
468 #define RID_STATS16DELTA 0xFF61
469 #define RID_STATS16DELTACLEAR 0xFF62
470 #define RID_STATS 0xFF68
471 #define RID_STATSDELTA 0xFF69
472 #define RID_STATSDELTACLEAR 0xFF6A
473 #define RID_ECHOTEST_RID 0xFF70
474 #define RID_ECHOTEST_RESULTS 0xFF71
475 #define RID_BSSLISTFIRST 0xFF72
476 #define RID_BSSLISTNEXT 0xFF73
493 * Rids and endian-ness: The Rids will always be in cpu endian, since
494 * this all the patches from the big-endian guys end up doing that.
495 * so all rid access should use the read/writeXXXRid routines.
498 /* This is redundant for x86 archs, but it seems necessary for ARM */
501 /* This structure came from an email sent to me from an engineer at
502 aironet for inclusion into this driver */
511 /* These structures are from the Aironet's PC4500 Developers Manual */
525 #define MOD_DEFAULT 0
531 u16 len; /* sizeof(ConfigRid) */
532 u16 opmode; /* operating mode */
533 #define MODE_STA_IBSS 0
534 #define MODE_STA_ESS 1
536 #define MODE_AP_RPTR 3
537 #define MODE_ETHERNET_HOST (0<<8) /* rx payloads converted */
538 #define MODE_LLC_HOST (1<<8) /* rx payloads left as is */
539 #define MODE_AIRONET_EXTEND (1<<9) /* enable Aironet extenstions */
540 #define MODE_AP_INTERFACE (1<<10) /* enable ap interface extensions */
541 #define MODE_ANTENNA_ALIGN (1<<11) /* enable antenna alignment */
542 #define MODE_ETHER_LLC (1<<12) /* enable ethernet LLC */
543 #define MODE_LEAF_NODE (1<<13) /* enable leaf node bridge */
544 #define MODE_CF_POLLABLE (1<<14) /* enable CF pollable */
545 #define MODE_MIC (1<<15) /* enable MIC */
546 u16 rmode; /* receive mode */
547 #define RXMODE_BC_MC_ADDR 0
548 #define RXMODE_BC_ADDR 1 /* ignore multicasts */
549 #define RXMODE_ADDR 2 /* ignore multicast and broadcast */
550 #define RXMODE_RFMON 3 /* wireless monitor mode */
551 #define RXMODE_RFMON_ANYBSS 4
552 #define RXMODE_LANMON 5 /* lan style monitor -- data packets only */
553 #define RXMODE_DISABLE_802_3_HEADER (1<<8) /* disables 802.3 header on rx */
554 #define RXMODE_NORMALIZED_RSSI (1<<9) /* return normalized RSSI */
557 u8 macAddr[ETH_ALEN];
561 u16 txLifetime; /* in kusec */
562 u16 rxLifetime; /* in kusec */
565 u16 u16deviceType; /* for overriding device type */
569 /*---------- Scanning/Associating ----------*/
571 #define SCANMODE_ACTIVE 0
572 #define SCANMODE_PASSIVE 1
573 #define SCANMODE_AIROSCAN 2
574 u16 probeDelay; /* in kusec */
575 u16 probeEnergyTimeout; /* in kusec */
576 u16 probeResponseTimeout;
577 u16 beaconListenTimeout;
581 #define AUTH_OPEN 0x1
582 #define AUTH_ENCRYPT 0x101
583 #define AUTH_SHAREDKEY 0x102
584 #define AUTH_ALLOW_UNENCRYPTED 0x200
585 u16 associationTimeout;
586 u16 specifiedApTimeout;
587 u16 offlineScanInterval;
588 u16 offlineScanDuration;
590 u16 maxBeaconLostTime;
592 #define DISABLE_REFRESH 0xFFFF
594 /*---------- Power save operation ----------*/
596 #define POWERSAVE_CAM 0
597 #define POWERSAVE_PSP 1
598 #define POWERSAVE_PSPCAM 2
601 u16 fastListenInterval;
605 /*---------- Ap/Ibss config items ----------*/
614 /*---------- Radio configuration ----------*/
616 #define RADIOTYPE_DEFAULT 0
617 #define RADIOTYPE_802_11 1
618 #define RADIOTYPE_LEGACY 2
622 #define TXPOWER_DEFAULT 0
624 #define RSSI_DEFAULT 0
626 #define PREAMBLE_AUTO 0
627 #define PREAMBLE_LONG 1
628 #define PREAMBLE_SHORT 2
632 /*---------- Aironet Extensions ----------*/
638 /*---------- Aironet Extensions ----------*/
640 #define MAGIC_ACTION_STSCHG 1
641 #define MAGIC_ACTION_RESUME 2
642 #define MAGIC_IGNORE_MCAST (1<<8)
643 #define MAGIC_IGNORE_BCAST (1<<9)
644 #define MAGIC_SWITCH_TO_PSP (0<<10)
645 #define MAGIC_STAY_IN_CAM (1<<10)
659 u8 bssid[4][ETH_ALEN];
673 u16 normalizedSignalStrength;
676 u8 noisePercent; /* Noise percent in last second */
677 u8 noisedBm; /* Noise dBm in last second */
678 u8 noiseAvePercent; /* Noise percent in last minute */
679 u8 noiseAvedBm; /* Noise dBm in last minute */
680 u8 noiseMaxPercent; /* Highest noise percent in last minute */
681 u8 noiseMaxdBm; /* Highest noise dbm in last minute */
685 #define STAT_NOPACKETS 0
686 #define STAT_NOCARRIERSET 10
687 #define STAT_GOTCARRIERSET 11
688 #define STAT_WRONGSSID 20
689 #define STAT_BADCHANNEL 25
690 #define STAT_BADBITRATES 30
691 #define STAT_BADPRIVACY 35
692 #define STAT_APFOUND 40
693 #define STAT_APREJECTED 50
694 #define STAT_AUTHENTICATING 60
695 #define STAT_DEAUTHENTICATED 61
696 #define STAT_AUTHTIMEOUT 62
697 #define STAT_ASSOCIATING 70
698 #define STAT_DEASSOCIATED 71
699 #define STAT_ASSOCTIMEOUT 72
700 #define STAT_NOTAIROAP 73
701 #define STAT_ASSOCIATED 80
702 #define STAT_LEAPING 90
703 #define STAT_LEAPFAILED 91
704 #define STAT_LEAPTIMEDOUT 92
705 #define STAT_LEAPCOMPLETE 93
728 char factoryAddr[ETH_ALEN];
729 char aironetAddr[ETH_ALEN];
732 char callid[ETH_ALEN];
733 char supportedRates[8];
736 u16 txPowerLevels[8];
751 u16 index; /* First is 0 and 0xffff means end of list */
752 #define RADIO_FH 1 /* Frequency hopping radio type */
753 #define RADIO_DS 2 /* Direct sequence radio type */
754 #define RADIO_TMA 4 /* Proprietary radio used in old cards (2500) */
756 u8 bssid[ETH_ALEN]; /* Mac address of the BSS */
761 #define CAP_ESS (1<<0)
762 #define CAP_IBSS (1<<1)
763 #define CAP_PRIVACY (1<<4)
764 #define CAP_SHORTHDR (1<<5)
767 u8 rates[8]; /* Same as rates for config rid */
768 struct { /* For frequency hopping only */
822 #define TXCTL_TXOK (1<<1) /* report if tx is ok */
823 #define TXCTL_TXEX (1<<2) /* report if tx fails */
824 #define TXCTL_802_3 (0<<3) /* 802.3 packet */
825 #define TXCTL_802_11 (1<<3) /* 802.11 mac packet */
826 #define TXCTL_ETHERNET (0<<4) /* payload has ethertype */
827 #define TXCTL_LLC (1<<4) /* payload is llc */
828 #define TXCTL_RELEASE (0<<5) /* release after completion */
829 #define TXCTL_NORELEASE (1<<5) /* on completion returns to host */
831 #define BUSY_FID 0x10000
834 #define AIROMAGIC 0xa55a
835 /* Warning : SIOCDEVPRIVATE may disapear during 2.5.X - Jean II */
836 #ifdef SIOCIWFIRSTPRIV
837 #ifdef SIOCDEVPRIVATE
838 #define AIROOLDIOCTL SIOCDEVPRIVATE
839 #define AIROOLDIDIFC AIROOLDIOCTL + 1
840 #endif /* SIOCDEVPRIVATE */
841 #else /* SIOCIWFIRSTPRIV */
842 #define SIOCIWFIRSTPRIV SIOCDEVPRIVATE
843 #endif /* SIOCIWFIRSTPRIV */
844 /* This may be wrong. When using the new SIOCIWFIRSTPRIV range, we probably
845 * should use only "GET" ioctls (last bit set to 1). "SET" ioctls are root
846 * only and don't return the modified struct ifreq to the application which
847 * is usually a problem. - Jean II */
848 #define AIROIOCTL SIOCIWFIRSTPRIV
849 #define AIROIDIFC AIROIOCTL + 1
851 /* Ioctl constants to be used in airo_ioctl.command */
853 #define AIROGCAP 0 // Capability rid
854 #define AIROGCFG 1 // USED A LOT
855 #define AIROGSLIST 2 // System ID list
856 #define AIROGVLIST 3 // List of specified AP's
857 #define AIROGDRVNAM 4 // NOTUSED
858 #define AIROGEHTENC 5 // NOTUSED
859 #define AIROGWEPKTMP 6
860 #define AIROGWEPKNV 7
862 #define AIROGSTATSC32 9
863 #define AIROGSTATSD32 10
864 #define AIROGMICRID 11
865 #define AIROGMICSTATS 12
866 #define AIROGFLAGS 13
869 #define AIRORSWVERSION 17
871 /* Leave gap of 40 commands after AIROGSTATSD32 for future */
873 #define AIROPCAP AIROGSTATSD32 + 40
874 #define AIROPVLIST AIROPCAP + 1
875 #define AIROPSLIST AIROPVLIST + 1
876 #define AIROPCFG AIROPSLIST + 1
877 #define AIROPSIDS AIROPCFG + 1
878 #define AIROPAPLIST AIROPSIDS + 1
879 #define AIROPMACON AIROPAPLIST + 1 /* Enable mac */
880 #define AIROPMACOFF AIROPMACON + 1 /* Disable mac */
881 #define AIROPSTCLR AIROPMACOFF + 1
882 #define AIROPWEPKEY AIROPSTCLR + 1
883 #define AIROPWEPKEYNV AIROPWEPKEY + 1
884 #define AIROPLEAPPWD AIROPWEPKEYNV + 1
885 #define AIROPLEAPUSR AIROPLEAPPWD + 1
889 #define AIROFLSHRST AIROPWEPKEYNV + 40
890 #define AIROFLSHGCHR AIROFLSHRST + 1
891 #define AIROFLSHSTFL AIROFLSHGCHR + 1
892 #define AIROFLSHPCHR AIROFLSHSTFL + 1
893 #define AIROFLPUTBUF AIROFLSHPCHR + 1
894 #define AIRORESTART AIROFLPUTBUF + 1
896 #define FLASHSIZE 32768
897 #define AUXMEMSIZE (256 * 1024)
899 typedef struct aironet_ioctl {
900 unsigned short command; // What to do
901 unsigned short len; // Len of data
902 unsigned short ridnum; // rid number
903 unsigned char __user *data; // d-data
906 static char swversion[] = "2.1";
907 #endif /* CISCO_EXT */
909 #define NUM_MODULES 2
910 #define MIC_MSGLEN_MAX 2400
911 #define EMMH32_MSGLEN_MAX MIC_MSGLEN_MAX
915 u8 enabled; // MIC enabled or not
916 u32 rxSuccess; // successful packets received
917 u32 rxIncorrectMIC; // pkts dropped due to incorrect MIC comparison
918 u32 rxNotMICed; // pkts dropped due to not being MIC'd
919 u32 rxMICPlummed; // pkts dropped due to not having a MIC plummed
920 u32 rxWrongSequence; // pkts dropped due to sequence number violation
925 u32 coeff[((EMMH32_MSGLEN_MAX)+3)>>2];
926 u64 accum; // accumulated mic, reduced to u32 in final()
927 int position; // current position (byte offset) in message
931 } part; // saves partial message word across update() calls
935 emmh32_context seed; // Context - the seed
936 u32 rx; // Received sequence number
937 u32 tx; // Tx sequence number
938 u32 window; // Start of window
939 u8 valid; // Flag to say if context is valid or not
944 miccntx mCtx; // Multicast context
945 miccntx uCtx; // Unicast context
949 unsigned int rid: 16;
950 unsigned int len: 15;
951 unsigned int valid: 1;
952 dma_addr_t host_addr;
956 unsigned int offset: 15;
958 unsigned int len: 15;
959 unsigned int valid: 1;
960 dma_addr_t host_addr;
964 unsigned int ctl: 15;
966 unsigned int len: 15;
967 unsigned int valid: 1;
968 dma_addr_t host_addr;
972 * Host receive descriptor
975 unsigned char __iomem *card_ram_off; /* offset into card memory of the
977 RxFid rx_desc; /* card receive descriptor */
978 char *virtual_host_addr; /* virtual address of host receive
984 * Host transmit descriptor
987 unsigned char __iomem *card_ram_off; /* offset into card memory of the
989 TxFid tx_desc; /* card transmit descriptor */
990 char *virtual_host_addr; /* virtual address of host receive
996 * Host RID descriptor
999 unsigned char __iomem *card_ram_off; /* offset into card memory of the
1001 Rid rid_desc; /* card RID descriptor */
1002 char *virtual_host_addr; /* virtual address of host receive
1011 #define HOST_SET (1 << 0)
1012 #define HOST_INT_TX (1 << 1) /* Interrupt on successful TX */
1013 #define HOST_INT_TXERR (1 << 2) /* Interrupt on unseccessful TX */
1014 #define HOST_LCC_PAYLOAD (1 << 4) /* LLC payload, 0 = Ethertype */
1015 #define HOST_DONT_RLSE (1 << 5) /* Don't release buffer when done */
1016 #define HOST_DONT_RETRY (1 << 6) /* Don't retry trasmit */
1017 #define HOST_CLR_AID (1 << 7) /* clear AID failure */
1018 #define HOST_RTS (1 << 9) /* Force RTS use */
1019 #define HOST_SHORT (1 << 10) /* Do short preamble */
1046 static WifiCtlHdr wifictlhdr8023 = {
1048 .ctl = HOST_DONT_RLSE,
1052 // Frequency list (map channels to frequencies)
1053 static const long frequency_list[] = { 2412, 2417, 2422, 2427, 2432, 2437, 2442,
1054 2447, 2452, 2457, 2462, 2467, 2472, 2484 };
1056 // A few details needed for WEP (Wireless Equivalent Privacy)
1057 #define MAX_KEY_SIZE 13 // 128 (?) bits
1058 #define MIN_KEY_SIZE 5 // 40 bits RC4 - WEP
1059 typedef struct wep_key_t {
1061 u8 key[16]; /* 40-bit and 104-bit keys */
1064 /* Backward compatibility */
1065 #ifndef IW_ENCODE_NOKEY
1066 #define IW_ENCODE_NOKEY 0x0800 /* Key is write only, so not present */
1067 #define IW_ENCODE_MODE (IW_ENCODE_DISABLED | IW_ENCODE_RESTRICTED | IW_ENCODE_OPEN)
1068 #endif /* IW_ENCODE_NOKEY */
1070 /* List of Wireless Handlers (new API) */
1071 static const struct iw_handler_def airo_handler_def;
1073 static const char version[] = "airo.c 0.6 (Ben Reed & Javier Achirica)";
1077 static int get_dec_u16( char *buffer, int *start, int limit );
1078 static void OUT4500( struct airo_info *, u16 register, u16 value );
1079 static unsigned short IN4500( struct airo_info *, u16 register );
1080 static u16 setup_card(struct airo_info*, u8 *mac, int lock);
1081 static int enable_MAC( struct airo_info *ai, Resp *rsp, int lock );
1082 static void disable_MAC(struct airo_info *ai, int lock);
1083 static void enable_interrupts(struct airo_info*);
1084 static void disable_interrupts(struct airo_info*);
1085 static u16 issuecommand(struct airo_info*, Cmd *pCmd, Resp *pRsp);
1086 static int bap_setup(struct airo_info*, u16 rid, u16 offset, int whichbap);
1087 static int aux_bap_read(struct airo_info*, u16 *pu16Dst, int bytelen,
1089 static int fast_bap_read(struct airo_info*, u16 *pu16Dst, int bytelen,
1091 static int bap_write(struct airo_info*, const u16 *pu16Src, int bytelen,
1093 static int PC4500_accessrid(struct airo_info*, u16 rid, u16 accmd);
1094 static int PC4500_readrid(struct airo_info*, u16 rid, void *pBuf, int len, int lock);
1095 static int PC4500_writerid(struct airo_info*, u16 rid, const void
1096 *pBuf, int len, int lock);
1097 static int do_writerid( struct airo_info*, u16 rid, const void *rid_data,
1098 int len, int dummy );
1099 static u16 transmit_allocate(struct airo_info*, int lenPayload, int raw);
1100 static int transmit_802_3_packet(struct airo_info*, int len, char *pPacket);
1101 static int transmit_802_11_packet(struct airo_info*, int len, char *pPacket);
1103 static int mpi_send_packet (struct net_device *dev);
1104 static void mpi_unmap_card(struct pci_dev *pci);
1105 static void mpi_receive_802_3(struct airo_info *ai);
1106 static void mpi_receive_802_11(struct airo_info *ai);
1107 static int waitbusy (struct airo_info *ai);
1109 static irqreturn_t airo_interrupt( int irq, void* dev_id, struct pt_regs
1111 static int airo_thread(void *data);
1112 static void timer_func( struct net_device *dev );
1113 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd);
1114 static struct iw_statistics *airo_get_wireless_stats (struct net_device *dev);
1115 static void airo_read_wireless_stats (struct airo_info *local);
1117 static int readrids(struct net_device *dev, aironet_ioctl *comp);
1118 static int writerids(struct net_device *dev, aironet_ioctl *comp);
1119 static int flashcard(struct net_device *dev, aironet_ioctl *comp);
1120 #endif /* CISCO_EXT */
1122 static void micinit(struct airo_info *ai);
1123 static int micsetup(struct airo_info *ai);
1124 static int encapsulate(struct airo_info *ai, etherHead *pPacket, MICBuffer *buffer, int len);
1125 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *pPacket, u16 payLen);
1127 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi);
1128 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm);
1130 #include <linux/crypto.h>
1134 struct net_device_stats stats;
1135 struct net_device *dev;
1136 /* Note, we can have MAX_FIDS outstanding. FIDs are 16-bits, so we
1137 use the high bit to mark whether it is in use. */
1139 #define MPI_MAX_FIDS 1
1142 char keyindex; // Used with auto wep
1143 char defindex; // Used with auto wep
1144 struct proc_dir_entry *proc_entry;
1145 spinlock_t aux_lock;
1146 unsigned long flags;
1147 #define FLAG_PROMISC 8 /* IFF_PROMISC 0x100 - include/linux/if.h */
1148 #define FLAG_RADIO_OFF 0 /* User disabling of MAC */
1149 #define FLAG_RADIO_DOWN 1 /* ifup/ifdown disabling of MAC */
1150 #define FLAG_RADIO_MASK 0x03
1151 #define FLAG_ENABLED 2
1152 #define FLAG_ADHOC 3 /* Needed by MIC */
1153 #define FLAG_MIC_CAPABLE 4
1154 #define FLAG_UPDATE_MULTI 5
1155 #define FLAG_UPDATE_UNI 6
1156 #define FLAG_802_11 7
1157 #define FLAG_PENDING_XMIT 9
1158 #define FLAG_PENDING_XMIT11 10
1160 #define FLAG_REGISTERED 12
1161 #define FLAG_COMMIT 13
1162 #define FLAG_RESET 14
1163 #define FLAG_FLASHING 15
1164 #define JOB_MASK 0x1ff0000
1167 #define JOB_XMIT11 18
1168 #define JOB_STATS 19
1169 #define JOB_PROMISC 20
1171 #define JOB_EVENT 22
1172 #define JOB_AUTOWEP 23
1173 #define JOB_WSTATS 24
1174 int (*bap_read)(struct airo_info*, u16 *pu16Dst, int bytelen,
1176 unsigned short *flash;
1178 struct task_struct *task;
1179 struct semaphore sem;
1181 wait_queue_head_t thr_wait;
1182 struct completion thr_exited;
1183 unsigned long expires;
1185 struct sk_buff *skb;
1188 struct net_device *wifidev;
1189 struct iw_statistics wstats; // wireless stats
1190 unsigned long scan_timestamp; /* Time started to scan */
1191 struct iw_spy_data spy_data;
1192 struct iw_public_data wireless_data;
1195 struct crypto_tfm *tfm;
1197 mic_statistics micstats;
1199 HostRxDesc rxfids[MPI_MAX_FIDS]; // rx/tx/config MPI350 descriptors
1200 HostTxDesc txfids[MPI_MAX_FIDS];
1201 HostRidDesc config_desc;
1202 unsigned long ridbus; // phys addr of config_desc
1203 struct sk_buff_head txq;// tx queue used by mpi350 code
1204 struct pci_dev *pci;
1205 unsigned char __iomem *pcimem;
1206 unsigned char __iomem *pciaux;
1207 unsigned char *shared;
1208 dma_addr_t shared_dma;
1212 #define PCI_SHARED_LEN 2*MPI_MAX_FIDS*PKTSIZE+RIDSIZE
1213 char proc_name[IFNAMSIZ];
1216 static inline int bap_read(struct airo_info *ai, u16 *pu16Dst, int bytelen,
1218 return ai->bap_read(ai, pu16Dst, bytelen, whichbap);
1221 static int setup_proc_entry( struct net_device *dev,
1222 struct airo_info *apriv );
1223 static int takedown_proc_entry( struct net_device *dev,
1224 struct airo_info *apriv );
1226 static int cmdreset(struct airo_info *ai);
1227 static int setflashmode (struct airo_info *ai);
1228 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime);
1229 static int flashputbuf(struct airo_info *ai);
1230 static int flashrestart(struct airo_info *ai,struct net_device *dev);
1233 /***********************************************************************
1235 ***********************************************************************
1238 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq);
1239 static void MoveWindow(miccntx *context, u32 micSeq);
1240 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen, struct crypto_tfm *);
1241 static void emmh32_init(emmh32_context *context);
1242 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len);
1243 static void emmh32_final(emmh32_context *context, u8 digest[4]);
1244 static int flashpchar(struct airo_info *ai,int byte,int dwelltime);
1246 /* micinit - Initialize mic seed */
1248 static void micinit(struct airo_info *ai)
1252 clear_bit(JOB_MIC, &ai->flags);
1253 PC4500_readrid(ai, RID_MIC, &mic_rid, sizeof(mic_rid), 0);
1256 ai->micstats.enabled = (mic_rid.state & 0x00FF) ? 1 : 0;
1258 if (ai->micstats.enabled) {
1259 /* Key must be valid and different */
1260 if (mic_rid.multicastValid && (!ai->mod[0].mCtx.valid ||
1261 (memcmp (ai->mod[0].mCtx.key, mic_rid.multicast,
1262 sizeof(ai->mod[0].mCtx.key)) != 0))) {
1263 /* Age current mic Context */
1264 memcpy(&ai->mod[1].mCtx,&ai->mod[0].mCtx,sizeof(miccntx));
1265 /* Initialize new context */
1266 memcpy(&ai->mod[0].mCtx.key,mic_rid.multicast,sizeof(mic_rid.multicast));
1267 ai->mod[0].mCtx.window = 33; //Window always points to the middle
1268 ai->mod[0].mCtx.rx = 0; //Rx Sequence numbers
1269 ai->mod[0].mCtx.tx = 0; //Tx sequence numbers
1270 ai->mod[0].mCtx.valid = 1; //Key is now valid
1272 /* Give key to mic seed */
1273 emmh32_setseed(&ai->mod[0].mCtx.seed,mic_rid.multicast,sizeof(mic_rid.multicast), ai->tfm);
1276 /* Key must be valid and different */
1277 if (mic_rid.unicastValid && (!ai->mod[0].uCtx.valid ||
1278 (memcmp(ai->mod[0].uCtx.key, mic_rid.unicast,
1279 sizeof(ai->mod[0].uCtx.key)) != 0))) {
1280 /* Age current mic Context */
1281 memcpy(&ai->mod[1].uCtx,&ai->mod[0].uCtx,sizeof(miccntx));
1282 /* Initialize new context */
1283 memcpy(&ai->mod[0].uCtx.key,mic_rid.unicast,sizeof(mic_rid.unicast));
1285 ai->mod[0].uCtx.window = 33; //Window always points to the middle
1286 ai->mod[0].uCtx.rx = 0; //Rx Sequence numbers
1287 ai->mod[0].uCtx.tx = 0; //Tx sequence numbers
1288 ai->mod[0].uCtx.valid = 1; //Key is now valid
1290 //Give key to mic seed
1291 emmh32_setseed(&ai->mod[0].uCtx.seed, mic_rid.unicast, sizeof(mic_rid.unicast), ai->tfm);
1294 /* So next time we have a valid key and mic is enabled, we will update
1295 * the sequence number if the key is the same as before.
1297 ai->mod[0].uCtx.valid = 0;
1298 ai->mod[0].mCtx.valid = 0;
1302 /* micsetup - Get ready for business */
1304 static int micsetup(struct airo_info *ai) {
1307 if (ai->tfm == NULL)
1308 ai->tfm = crypto_alloc_tfm("aes", CRYPTO_TFM_REQ_MAY_SLEEP);
1310 if (ai->tfm == NULL) {
1311 printk(KERN_ERR "airo: failed to load transform for AES\n");
1315 for (i=0; i < NUM_MODULES; i++) {
1316 memset(&ai->mod[i].mCtx,0,sizeof(miccntx));
1317 memset(&ai->mod[i].uCtx,0,sizeof(miccntx));
1322 static char micsnap[] = {0xAA,0xAA,0x03,0x00,0x40,0x96,0x00,0x02};
1324 /*===========================================================================
1325 * Description: Mic a packet
1327 * Inputs: etherHead * pointer to an 802.3 frame
1329 * Returns: BOOLEAN if successful, otherwise false.
1330 * PacketTxLen will be updated with the mic'd packets size.
1332 * Caveats: It is assumed that the frame buffer will already
1333 * be big enough to hold the largets mic message possible.
1334 * (No memory allocation is done here).
1336 * Author: sbraneky (10/15/01)
1337 * Merciless hacks by rwilcher (1/14/02)
1340 static int encapsulate(struct airo_info *ai ,etherHead *frame, MICBuffer *mic, int payLen)
1344 // Determine correct context
1345 // If not adhoc, always use unicast key
1347 if (test_bit(FLAG_ADHOC, &ai->flags) && (frame->da[0] & 0x1))
1348 context = &ai->mod[0].mCtx;
1350 context = &ai->mod[0].uCtx;
1352 if (!context->valid)
1355 mic->typelen = htons(payLen + 16); //Length of Mic'd packet
1357 memcpy(&mic->u.snap, micsnap, sizeof(micsnap)); // Add Snap
1360 mic->seq = htonl(context->tx);
1363 emmh32_init(&context->seed); // Mic the packet
1364 emmh32_update(&context->seed,frame->da,ETH_ALEN * 2); // DA,SA
1365 emmh32_update(&context->seed,(u8*)&mic->typelen,10); // Type/Length and Snap
1366 emmh32_update(&context->seed,(u8*)&mic->seq,sizeof(mic->seq)); //SEQ
1367 emmh32_update(&context->seed,frame->da + ETH_ALEN * 2,payLen); //payload
1368 emmh32_final(&context->seed, (u8*)&mic->mic);
1370 /* New Type/length ?????????? */
1371 mic->typelen = 0; //Let NIC know it could be an oversized packet
1383 /*===========================================================================
1384 * Description: Decapsulates a MIC'd packet and returns the 802.3 packet
1385 * (removes the MIC stuff) if packet is a valid packet.
1387 * Inputs: etherHead pointer to the 802.3 packet
1389 * Returns: BOOLEAN - TRUE if packet should be dropped otherwise FALSE
1391 * Author: sbraneky (10/15/01)
1392 * Merciless hacks by rwilcher (1/14/02)
1393 *---------------------------------------------------------------------------
1396 static int decapsulate(struct airo_info *ai, MICBuffer *mic, etherHead *eth, u16 payLen)
1402 mic_error micError = NONE;
1404 // Check if the packet is a Mic'd packet
1406 if (!ai->micstats.enabled) {
1407 //No Mic set or Mic OFF but we received a MIC'd packet.
1408 if (memcmp ((u8*)eth + 14, micsnap, sizeof(micsnap)) == 0) {
1409 ai->micstats.rxMICPlummed++;
1415 if (ntohs(mic->typelen) == 0x888E)
1418 if (memcmp (mic->u.snap, micsnap, sizeof(micsnap)) != 0) {
1419 // Mic enabled but packet isn't Mic'd
1420 ai->micstats.rxMICPlummed++;
1424 micSEQ = ntohl(mic->seq); //store SEQ as CPU order
1426 //At this point we a have a mic'd packet and mic is enabled
1427 //Now do the mic error checking.
1429 //Receive seq must be odd
1430 if ( (micSEQ & 1) == 0 ) {
1431 ai->micstats.rxWrongSequence++;
1435 for (i = 0; i < NUM_MODULES; i++) {
1436 int mcast = eth->da[0] & 1;
1437 //Determine proper context
1438 context = mcast ? &ai->mod[i].mCtx : &ai->mod[i].uCtx;
1440 //Make sure context is valid
1441 if (!context->valid) {
1443 micError = NOMICPLUMMED;
1449 mic->typelen = htons(payLen + sizeof(MICBuffer) - 2);
1451 emmh32_init(&context->seed);
1452 emmh32_update(&context->seed, eth->da, ETH_ALEN*2);
1453 emmh32_update(&context->seed, (u8 *)&mic->typelen, sizeof(mic->typelen)+sizeof(mic->u.snap));
1454 emmh32_update(&context->seed, (u8 *)&mic->seq,sizeof(mic->seq));
1455 emmh32_update(&context->seed, eth->da + ETH_ALEN*2,payLen);
1457 emmh32_final(&context->seed, digest);
1459 if (memcmp(digest, &mic->mic, 4)) { //Make sure the mics match
1462 micError = INCORRECTMIC;
1466 //Check Sequence number if mics pass
1467 if (RxSeqValid(ai, context, mcast, micSEQ) == SUCCESS) {
1468 ai->micstats.rxSuccess++;
1472 micError = SEQUENCE;
1475 // Update statistics
1477 case NOMICPLUMMED: ai->micstats.rxMICPlummed++; break;
1478 case SEQUENCE: ai->micstats.rxWrongSequence++; break;
1479 case INCORRECTMIC: ai->micstats.rxIncorrectMIC++; break;
1486 /*===========================================================================
1487 * Description: Checks the Rx Seq number to make sure it is valid
1488 * and hasn't already been received
1490 * Inputs: miccntx - mic context to check seq against
1491 * micSeq - the Mic seq number
1493 * Returns: TRUE if valid otherwise FALSE.
1495 * Author: sbraneky (10/15/01)
1496 * Merciless hacks by rwilcher (1/14/02)
1497 *---------------------------------------------------------------------------
1500 static int RxSeqValid (struct airo_info *ai,miccntx *context,int mcast,u32 micSeq)
1504 //Allow for the ap being rebooted - if it is then use the next
1505 //sequence number of the current sequence number - might go backwards
1508 if (test_bit(FLAG_UPDATE_MULTI, &ai->flags)) {
1509 clear_bit (FLAG_UPDATE_MULTI, &ai->flags);
1510 context->window = (micSeq > 33) ? micSeq : 33;
1511 context->rx = 0; // Reset rx
1513 } else if (test_bit(FLAG_UPDATE_UNI, &ai->flags)) {
1514 clear_bit (FLAG_UPDATE_UNI, &ai->flags);
1515 context->window = (micSeq > 33) ? micSeq : 33; // Move window
1516 context->rx = 0; // Reset rx
1519 //Make sequence number relative to START of window
1520 seq = micSeq - (context->window - 33);
1522 //Too old of a SEQ number to check.
1527 //Window is infinite forward
1528 MoveWindow(context,micSeq);
1532 // We are in the window. Now check the context rx bit to see if it was already sent
1533 seq >>= 1; //divide by 2 because we only have odd numbers
1534 index = 1 << seq; //Get an index number
1536 if (!(context->rx & index)) {
1537 //micSEQ falls inside the window.
1538 //Add seqence number to the list of received numbers.
1539 context->rx |= index;
1541 MoveWindow(context,micSeq);
1548 static void MoveWindow(miccntx *context, u32 micSeq)
1552 //Move window if seq greater than the middle of the window
1553 if (micSeq > context->window) {
1554 shift = (micSeq - context->window) >> 1;
1558 context->rx >>= shift;
1562 context->window = micSeq; //Move window
1566 /*==============================================*/
1567 /*========== EMMH ROUTINES ====================*/
1568 /*==============================================*/
1570 /* mic accumulate */
1571 #define MIC_ACCUM(val) \
1572 context->accum += (u64)(val) * context->coeff[coeff_position++];
1574 static unsigned char aes_counter[16];
1576 /* expand the key to fill the MMH coefficient array */
1577 static void emmh32_setseed(emmh32_context *context, u8 *pkey, int keylen, struct crypto_tfm *tfm)
1579 /* take the keying material, expand if necessary, truncate at 16-bytes */
1580 /* run through AES counter mode to generate context->coeff[] */
1584 u8 *cipher, plain[16];
1585 struct scatterlist sg[1];
1587 crypto_cipher_setkey(tfm, pkey, 16);
1589 for (i = 0; i < (sizeof(context->coeff)/sizeof(context->coeff[0])); ) {
1590 aes_counter[15] = (u8)(counter >> 0);
1591 aes_counter[14] = (u8)(counter >> 8);
1592 aes_counter[13] = (u8)(counter >> 16);
1593 aes_counter[12] = (u8)(counter >> 24);
1595 memcpy (plain, aes_counter, 16);
1596 sg_set_buf(sg, plain, 16);
1597 crypto_cipher_encrypt(tfm, sg, sg, 16);
1598 cipher = kmap(sg->page) + sg->offset;
1599 for (j=0; (j<16) && (i< (sizeof(context->coeff)/sizeof(context->coeff[0]))); ) {
1600 context->coeff[i++] = ntohl(*(u32 *)&cipher[j]);
1606 /* prepare for calculation of a new mic */
1607 static void emmh32_init(emmh32_context *context)
1609 /* prepare for new mic calculation */
1611 context->position = 0;
1614 /* add some bytes to the mic calculation */
1615 static void emmh32_update(emmh32_context *context, u8 *pOctets, int len)
1617 int coeff_position, byte_position;
1619 if (len == 0) return;
1621 coeff_position = context->position >> 2;
1623 /* deal with partial 32-bit word left over from last update */
1624 byte_position = context->position & 3;
1625 if (byte_position) {
1626 /* have a partial word in part to deal with */
1628 if (len == 0) return;
1629 context->part.d8[byte_position++] = *pOctets++;
1630 context->position++;
1632 } while (byte_position < 4);
1633 MIC_ACCUM(htonl(context->part.d32));
1636 /* deal with full 32-bit words */
1638 MIC_ACCUM(htonl(*(u32 *)pOctets));
1639 context->position += 4;
1644 /* deal with partial 32-bit word that will be left over from this update */
1647 context->part.d8[byte_position++] = *pOctets++;
1648 context->position++;
1653 /* mask used to zero empty bytes for final partial word */
1654 static u32 mask32[4] = { 0x00000000L, 0xFF000000L, 0xFFFF0000L, 0xFFFFFF00L };
1656 /* calculate the mic */
1657 static void emmh32_final(emmh32_context *context, u8 digest[4])
1659 int coeff_position, byte_position;
1665 coeff_position = context->position >> 2;
1667 /* deal with partial 32-bit word left over from last update */
1668 byte_position = context->position & 3;
1669 if (byte_position) {
1670 /* have a partial word in part to deal with */
1671 val = htonl(context->part.d32);
1672 MIC_ACCUM(val & mask32[byte_position]); /* zero empty bytes */
1675 /* reduce the accumulated u64 to a 32-bit MIC */
1676 sum = context->accum;
1677 stmp = (sum & 0xffffffffLL) - ((sum >> 32) * 15);
1678 utmp = (stmp & 0xffffffffLL) - ((stmp >> 32) * 15);
1679 sum = utmp & 0xffffffffLL;
1680 if (utmp > 0x10000000fLL)
1684 digest[0] = (val>>24) & 0xFF;
1685 digest[1] = (val>>16) & 0xFF;
1686 digest[2] = (val>>8) & 0xFF;
1687 digest[3] = val & 0xFF;
1691 static int readBSSListRid(struct airo_info *ai, int first,
1698 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
1699 memset(&cmd, 0, sizeof(cmd));
1700 cmd.cmd=CMD_LISTBSS;
1701 if (down_interruptible(&ai->sem))
1702 return -ERESTARTSYS;
1703 issuecommand(ai, &cmd, &rsp);
1705 /* Let the command take effect */
1710 rc = PC4500_readrid(ai, first ? RID_BSSLISTFIRST : RID_BSSLISTNEXT,
1711 list, sizeof(*list), 1);
1713 list->len = le16_to_cpu(list->len);
1714 list->index = le16_to_cpu(list->index);
1715 list->radioType = le16_to_cpu(list->radioType);
1716 list->cap = le16_to_cpu(list->cap);
1717 list->beaconInterval = le16_to_cpu(list->beaconInterval);
1718 list->fh.dwell = le16_to_cpu(list->fh.dwell);
1719 list->dsChannel = le16_to_cpu(list->dsChannel);
1720 list->atimWindow = le16_to_cpu(list->atimWindow);
1721 list->dBm = le16_to_cpu(list->dBm);
1725 static int readWepKeyRid(struct airo_info*ai, WepKeyRid *wkr, int temp, int lock) {
1726 int rc = PC4500_readrid(ai, temp ? RID_WEP_TEMP : RID_WEP_PERM,
1727 wkr, sizeof(*wkr), lock);
1729 wkr->len = le16_to_cpu(wkr->len);
1730 wkr->kindex = le16_to_cpu(wkr->kindex);
1731 wkr->klen = le16_to_cpu(wkr->klen);
1734 /* In the writeXXXRid routines we copy the rids so that we don't screwup
1735 * the originals when we endian them... */
1736 static int writeWepKeyRid(struct airo_info*ai, WepKeyRid *pwkr, int perm, int lock) {
1738 WepKeyRid wkr = *pwkr;
1740 wkr.len = cpu_to_le16(wkr.len);
1741 wkr.kindex = cpu_to_le16(wkr.kindex);
1742 wkr.klen = cpu_to_le16(wkr.klen);
1743 rc = PC4500_writerid(ai, RID_WEP_TEMP, &wkr, sizeof(wkr), lock);
1744 if (rc!=SUCCESS) printk(KERN_ERR "airo: WEP_TEMP set %x\n", rc);
1746 rc = PC4500_writerid(ai, RID_WEP_PERM, &wkr, sizeof(wkr), lock);
1748 printk(KERN_ERR "airo: WEP_PERM set %x\n", rc);
1754 static int readSsidRid(struct airo_info*ai, SsidRid *ssidr) {
1756 int rc = PC4500_readrid(ai, RID_SSID, ssidr, sizeof(*ssidr), 1);
1758 ssidr->len = le16_to_cpu(ssidr->len);
1759 for(i = 0; i < 3; i++) {
1760 ssidr->ssids[i].len = le16_to_cpu(ssidr->ssids[i].len);
1764 static int writeSsidRid(struct airo_info*ai, SsidRid *pssidr, int lock) {
1767 SsidRid ssidr = *pssidr;
1769 ssidr.len = cpu_to_le16(ssidr.len);
1770 for(i = 0; i < 3; i++) {
1771 ssidr.ssids[i].len = cpu_to_le16(ssidr.ssids[i].len);
1773 rc = PC4500_writerid(ai, RID_SSID, &ssidr, sizeof(ssidr), lock);
1776 static int readConfigRid(struct airo_info*ai, int lock) {
1784 rc = PC4500_readrid(ai, RID_ACTUALCONFIG, &cfg, sizeof(cfg), lock);
1788 for(s = &cfg.len; s <= &cfg.rtsThres; s++) *s = le16_to_cpu(*s);
1790 for(s = &cfg.shortRetryLimit; s <= &cfg.radioType; s++)
1791 *s = le16_to_cpu(*s);
1793 for(s = &cfg.txPower; s <= &cfg.radioSpecific; s++)
1794 *s = le16_to_cpu(*s);
1796 for(s = &cfg.arlThreshold; s <= &cfg._reserved4[0]; s++)
1797 *s = cpu_to_le16(*s);
1799 for(s = &cfg.autoWake; s <= &cfg.autoWake; s++)
1800 *s = cpu_to_le16(*s);
1805 static inline void checkThrottle(struct airo_info *ai) {
1807 /* Old hardware had a limit on encryption speed */
1808 if (ai->config.authType != AUTH_OPEN && maxencrypt) {
1809 for(i=0; i<8; i++) {
1810 if (ai->config.rates[i] > maxencrypt) {
1811 ai->config.rates[i] = 0;
1816 static int writeConfigRid(struct airo_info*ai, int lock) {
1820 if (!test_bit (FLAG_COMMIT, &ai->flags))
1823 clear_bit (FLAG_COMMIT, &ai->flags);
1824 clear_bit (FLAG_RESET, &ai->flags);
1828 if ((cfgr.opmode & 0xFF) == MODE_STA_IBSS)
1829 set_bit(FLAG_ADHOC, &ai->flags);
1831 clear_bit(FLAG_ADHOC, &ai->flags);
1833 for(s = &cfgr.len; s <= &cfgr.rtsThres; s++) *s = cpu_to_le16(*s);
1835 for(s = &cfgr.shortRetryLimit; s <= &cfgr.radioType; s++)
1836 *s = cpu_to_le16(*s);
1838 for(s = &cfgr.txPower; s <= &cfgr.radioSpecific; s++)
1839 *s = cpu_to_le16(*s);
1841 for(s = &cfgr.arlThreshold; s <= &cfgr._reserved4[0]; s++)
1842 *s = cpu_to_le16(*s);
1844 for(s = &cfgr.autoWake; s <= &cfgr.autoWake; s++)
1845 *s = cpu_to_le16(*s);
1847 return PC4500_writerid( ai, RID_CONFIG, &cfgr, sizeof(cfgr), lock);
1849 static int readStatusRid(struct airo_info*ai, StatusRid *statr, int lock) {
1850 int rc = PC4500_readrid(ai, RID_STATUS, statr, sizeof(*statr), lock);
1853 statr->len = le16_to_cpu(statr->len);
1854 for(s = &statr->mode; s <= &statr->SSIDlen; s++) *s = le16_to_cpu(*s);
1856 for(s = &statr->beaconPeriod; s <= &statr->shortPreamble; s++)
1857 *s = le16_to_cpu(*s);
1858 statr->load = le16_to_cpu(statr->load);
1859 statr->assocStatus = le16_to_cpu(statr->assocStatus);
1862 static int readAPListRid(struct airo_info*ai, APListRid *aplr) {
1863 int rc = PC4500_readrid(ai, RID_APLIST, aplr, sizeof(*aplr), 1);
1864 aplr->len = le16_to_cpu(aplr->len);
1867 static int writeAPListRid(struct airo_info*ai, APListRid *aplr, int lock) {
1869 aplr->len = cpu_to_le16(aplr->len);
1870 rc = PC4500_writerid(ai, RID_APLIST, aplr, sizeof(*aplr), lock);
1873 static int readCapabilityRid(struct airo_info*ai, CapabilityRid *capr, int lock) {
1874 int rc = PC4500_readrid(ai, RID_CAPABILITIES, capr, sizeof(*capr), lock);
1877 capr->len = le16_to_cpu(capr->len);
1878 capr->prodNum = le16_to_cpu(capr->prodNum);
1879 capr->radioType = le16_to_cpu(capr->radioType);
1880 capr->country = le16_to_cpu(capr->country);
1881 for(s = &capr->txPowerLevels[0]; s <= &capr->requiredHard; s++)
1882 *s = le16_to_cpu(*s);
1885 static int readStatsRid(struct airo_info*ai, StatsRid *sr, int rid, int lock) {
1886 int rc = PC4500_readrid(ai, rid, sr, sizeof(*sr), lock);
1889 sr->len = le16_to_cpu(sr->len);
1890 for(i = &sr->vals[0]; i <= &sr->vals[99]; i++) *i = le32_to_cpu(*i);
1894 static int airo_open(struct net_device *dev) {
1895 struct airo_info *info = dev->priv;
1898 if (test_bit(FLAG_FLASHING, &info->flags))
1901 /* Make sure the card is configured.
1902 * Wireless Extensions may postpone config changes until the card
1903 * is open (to pipeline changes and speed-up card setup). If
1904 * those changes are not yet commited, do it now - Jean II */
1905 if (test_bit (FLAG_COMMIT, &info->flags)) {
1906 disable_MAC(info, 1);
1907 writeConfigRid(info, 1);
1910 if (info->wifidev != dev) {
1911 /* Power on the MAC controller (which may have been disabled) */
1912 clear_bit(FLAG_RADIO_DOWN, &info->flags);
1913 enable_interrupts(info);
1915 enable_MAC(info, &rsp, 1);
1917 netif_start_queue(dev);
1921 static int mpi_start_xmit(struct sk_buff *skb, struct net_device *dev) {
1922 int npacks, pending;
1923 unsigned long flags;
1924 struct airo_info *ai = dev->priv;
1927 printk(KERN_ERR "airo: %s: skb==NULL\n",__FUNCTION__);
1930 npacks = skb_queue_len (&ai->txq);
1932 if (npacks >= MAXTXQ - 1) {
1933 netif_stop_queue (dev);
1934 if (npacks > MAXTXQ) {
1935 ai->stats.tx_fifo_errors++;
1938 skb_queue_tail (&ai->txq, skb);
1942 spin_lock_irqsave(&ai->aux_lock, flags);
1943 skb_queue_tail (&ai->txq, skb);
1944 pending = test_bit(FLAG_PENDING_XMIT, &ai->flags);
1945 spin_unlock_irqrestore(&ai->aux_lock,flags);
1946 netif_wake_queue (dev);
1949 set_bit(FLAG_PENDING_XMIT, &ai->flags);
1950 mpi_send_packet (dev);
1958 * Attempt to transmit a packet. Can be called from interrupt
1959 * or transmit . return number of packets we tried to send
1962 static int mpi_send_packet (struct net_device *dev)
1964 struct sk_buff *skb;
1965 unsigned char *buffer;
1966 s16 len, *payloadLen;
1967 struct airo_info *ai = dev->priv;
1970 /* get a packet to send */
1972 if ((skb = skb_dequeue(&ai->txq)) == 0) {
1974 "airo: %s: Dequeue'd zero in send_packet()\n",
1979 /* check min length*/
1980 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
1983 ai->txfids[0].tx_desc.offset = 0;
1984 ai->txfids[0].tx_desc.valid = 1;
1985 ai->txfids[0].tx_desc.eoc = 1;
1986 ai->txfids[0].tx_desc.len =len+sizeof(WifiHdr);
1989 * Magic, the cards firmware needs a length count (2 bytes) in the host buffer
1990 * right after TXFID_HDR.The TXFID_HDR contains the status short so payloadlen
1991 * is immediatly after it. ------------------------------------------------
1992 * |TXFIDHDR+STATUS|PAYLOADLEN|802.3HDR|PACKETDATA|
1993 * ------------------------------------------------
1996 memcpy((char *)ai->txfids[0].virtual_host_addr,
1997 (char *)&wifictlhdr8023, sizeof(wifictlhdr8023));
1999 payloadLen = (s16 *)(ai->txfids[0].virtual_host_addr +
2000 sizeof(wifictlhdr8023));
2001 sendbuf = ai->txfids[0].virtual_host_addr +
2002 sizeof(wifictlhdr8023) + 2 ;
2005 * Firmware automaticly puts 802 header on so
2006 * we don't need to account for it in the length
2009 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
2010 (ntohs(((u16 *)buffer)[6]) != 0x888E)) {
2013 if (encapsulate(ai, (etherHead *)buffer, &pMic, len - sizeof(etherHead)) != SUCCESS)
2016 *payloadLen = cpu_to_le16(len-sizeof(etherHead)+sizeof(pMic));
2017 ai->txfids[0].tx_desc.len += sizeof(pMic);
2018 /* copy data into airo dma buffer */
2019 memcpy (sendbuf, buffer, sizeof(etherHead));
2020 buffer += sizeof(etherHead);
2021 sendbuf += sizeof(etherHead);
2022 memcpy (sendbuf, &pMic, sizeof(pMic));
2023 sendbuf += sizeof(pMic);
2024 memcpy (sendbuf, buffer, len - sizeof(etherHead));
2028 *payloadLen = cpu_to_le16(len - sizeof(etherHead));
2030 dev->trans_start = jiffies;
2032 /* copy data into airo dma buffer */
2033 memcpy(sendbuf, buffer, len);
2036 memcpy_toio(ai->txfids[0].card_ram_off,
2037 &ai->txfids[0].tx_desc, sizeof(TxFid));
2039 OUT4500(ai, EVACK, 8);
2041 dev_kfree_skb_any(skb);
2045 static void get_tx_error(struct airo_info *ai, s32 fid)
2050 status = ((WifiCtlHdr *)ai->txfids[0].virtual_host_addr)->ctlhdr.status;
2052 if (bap_setup(ai, ai->fids[fid] & 0xffff, 4, BAP0) != SUCCESS)
2054 bap_read(ai, &status, 2, BAP0);
2056 if (le16_to_cpu(status) & 2) /* Too many retries */
2057 ai->stats.tx_aborted_errors++;
2058 if (le16_to_cpu(status) & 4) /* Transmit lifetime exceeded */
2059 ai->stats.tx_heartbeat_errors++;
2060 if (le16_to_cpu(status) & 8) /* Aid fail */
2062 if (le16_to_cpu(status) & 0x10) /* MAC disabled */
2063 ai->stats.tx_carrier_errors++;
2064 if (le16_to_cpu(status) & 0x20) /* Association lost */
2066 /* We produce a TXDROP event only for retry or lifetime
2067 * exceeded, because that's the only status that really mean
2068 * that this particular node went away.
2069 * Other errors means that *we* screwed up. - Jean II */
2070 if ((le16_to_cpu(status) & 2) ||
2071 (le16_to_cpu(status) & 4)) {
2072 union iwreq_data wrqu;
2075 /* Faster to skip over useless data than to do
2076 * another bap_setup(). We are at offset 0x6 and
2077 * need to go to 0x18 and read 6 bytes - Jean II */
2078 bap_read(ai, (u16 *) junk, 0x18, BAP0);
2080 /* Copy 802.11 dest address.
2081 * We use the 802.11 header because the frame may
2082 * not be 802.3 or may be mangled...
2083 * In Ad-Hoc mode, it will be the node address.
2084 * In managed mode, it will be most likely the AP addr
2085 * User space will figure out how to convert it to
2086 * whatever it needs (IP address or else).
2088 memcpy(wrqu.addr.sa_data, junk + 0x12, ETH_ALEN);
2089 wrqu.addr.sa_family = ARPHRD_ETHER;
2091 /* Send event to user space */
2092 wireless_send_event(ai->dev, IWEVTXDROP, &wrqu, NULL);
2096 static void airo_end_xmit(struct net_device *dev) {
2099 struct airo_info *priv = dev->priv;
2100 struct sk_buff *skb = priv->xmit.skb;
2101 int fid = priv->xmit.fid;
2102 u32 *fids = priv->fids;
2104 clear_bit(JOB_XMIT, &priv->flags);
2105 clear_bit(FLAG_PENDING_XMIT, &priv->flags);
2106 status = transmit_802_3_packet (priv, fids[fid], skb->data);
2110 if ( status == SUCCESS ) {
2111 dev->trans_start = jiffies;
2112 for (; i < MAX_FIDS / 2 && (priv->fids[i] & 0xffff0000); i++);
2114 priv->fids[fid] &= 0xffff;
2115 priv->stats.tx_window_errors++;
2117 if (i < MAX_FIDS / 2)
2118 netif_wake_queue(dev);
2122 static int airo_start_xmit(struct sk_buff *skb, struct net_device *dev) {
2125 struct airo_info *priv = dev->priv;
2126 u32 *fids = priv->fids;
2128 if ( skb == NULL ) {
2129 printk( KERN_ERR "airo: skb == NULL!!!\n" );
2133 /* Find a vacant FID */
2134 for( i = 0; i < MAX_FIDS / 2 && (fids[i] & 0xffff0000); i++ );
2135 for( j = i + 1; j < MAX_FIDS / 2 && (fids[j] & 0xffff0000); j++ );
2137 if ( j >= MAX_FIDS / 2 ) {
2138 netif_stop_queue(dev);
2140 if (i == MAX_FIDS / 2) {
2141 priv->stats.tx_fifo_errors++;
2145 /* check min length*/
2146 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2147 /* Mark fid as used & save length for later */
2148 fids[i] |= (len << 16);
2149 priv->xmit.skb = skb;
2151 if (down_trylock(&priv->sem) != 0) {
2152 set_bit(FLAG_PENDING_XMIT, &priv->flags);
2153 netif_stop_queue(dev);
2154 set_bit(JOB_XMIT, &priv->flags);
2155 wake_up_interruptible(&priv->thr_wait);
2161 static void airo_end_xmit11(struct net_device *dev) {
2164 struct airo_info *priv = dev->priv;
2165 struct sk_buff *skb = priv->xmit11.skb;
2166 int fid = priv->xmit11.fid;
2167 u32 *fids = priv->fids;
2169 clear_bit(JOB_XMIT11, &priv->flags);
2170 clear_bit(FLAG_PENDING_XMIT11, &priv->flags);
2171 status = transmit_802_11_packet (priv, fids[fid], skb->data);
2175 if ( status == SUCCESS ) {
2176 dev->trans_start = jiffies;
2177 for (; i < MAX_FIDS && (priv->fids[i] & 0xffff0000); i++);
2179 priv->fids[fid] &= 0xffff;
2180 priv->stats.tx_window_errors++;
2183 netif_wake_queue(dev);
2187 static int airo_start_xmit11(struct sk_buff *skb, struct net_device *dev) {
2190 struct airo_info *priv = dev->priv;
2191 u32 *fids = priv->fids;
2193 if (test_bit(FLAG_MPI, &priv->flags)) {
2194 /* Not implemented yet for MPI350 */
2195 netif_stop_queue(dev);
2199 if ( skb == NULL ) {
2200 printk( KERN_ERR "airo: skb == NULL!!!\n" );
2204 /* Find a vacant FID */
2205 for( i = MAX_FIDS / 2; i < MAX_FIDS && (fids[i] & 0xffff0000); i++ );
2206 for( j = i + 1; j < MAX_FIDS && (fids[j] & 0xffff0000); j++ );
2208 if ( j >= MAX_FIDS ) {
2209 netif_stop_queue(dev);
2211 if (i == MAX_FIDS) {
2212 priv->stats.tx_fifo_errors++;
2216 /* check min length*/
2217 len = ETH_ZLEN < skb->len ? skb->len : ETH_ZLEN;
2218 /* Mark fid as used & save length for later */
2219 fids[i] |= (len << 16);
2220 priv->xmit11.skb = skb;
2221 priv->xmit11.fid = i;
2222 if (down_trylock(&priv->sem) != 0) {
2223 set_bit(FLAG_PENDING_XMIT11, &priv->flags);
2224 netif_stop_queue(dev);
2225 set_bit(JOB_XMIT11, &priv->flags);
2226 wake_up_interruptible(&priv->thr_wait);
2228 airo_end_xmit11(dev);
2232 static void airo_read_stats(struct airo_info *ai) {
2234 u32 *vals = stats_rid.vals;
2236 clear_bit(JOB_STATS, &ai->flags);
2237 if (ai->power.event) {
2241 readStatsRid(ai, &stats_rid, RID_STATS, 0);
2244 ai->stats.rx_packets = vals[43] + vals[44] + vals[45];
2245 ai->stats.tx_packets = vals[39] + vals[40] + vals[41];
2246 ai->stats.rx_bytes = vals[92];
2247 ai->stats.tx_bytes = vals[91];
2248 ai->stats.rx_errors = vals[0] + vals[2] + vals[3] + vals[4];
2249 ai->stats.tx_errors = vals[42] + ai->stats.tx_fifo_errors;
2250 ai->stats.multicast = vals[43];
2251 ai->stats.collisions = vals[89];
2253 /* detailed rx_errors: */
2254 ai->stats.rx_length_errors = vals[3];
2255 ai->stats.rx_crc_errors = vals[4];
2256 ai->stats.rx_frame_errors = vals[2];
2257 ai->stats.rx_fifo_errors = vals[0];
2260 static struct net_device_stats *airo_get_stats(struct net_device *dev)
2262 struct airo_info *local = dev->priv;
2264 if (!test_bit(JOB_STATS, &local->flags)) {
2265 /* Get stats out of the card if available */
2266 if (down_trylock(&local->sem) != 0) {
2267 set_bit(JOB_STATS, &local->flags);
2268 wake_up_interruptible(&local->thr_wait);
2270 airo_read_stats(local);
2273 return &local->stats;
2276 static void airo_set_promisc(struct airo_info *ai) {
2280 memset(&cmd, 0, sizeof(cmd));
2281 cmd.cmd=CMD_SETMODE;
2282 clear_bit(JOB_PROMISC, &ai->flags);
2283 cmd.parm0=(ai->flags&IFF_PROMISC) ? PROMISC : NOPROMISC;
2284 issuecommand(ai, &cmd, &rsp);
2288 static void airo_set_multicast_list(struct net_device *dev) {
2289 struct airo_info *ai = dev->priv;
2291 if ((dev->flags ^ ai->flags) & IFF_PROMISC) {
2292 change_bit(FLAG_PROMISC, &ai->flags);
2293 if (down_trylock(&ai->sem) != 0) {
2294 set_bit(JOB_PROMISC, &ai->flags);
2295 wake_up_interruptible(&ai->thr_wait);
2297 airo_set_promisc(ai);
2300 if ((dev->flags&IFF_ALLMULTI)||dev->mc_count>0) {
2301 /* Turn on multicast. (Should be already setup...) */
2305 static int airo_set_mac_address(struct net_device *dev, void *p)
2307 struct airo_info *ai = dev->priv;
2308 struct sockaddr *addr = p;
2311 readConfigRid(ai, 1);
2312 memcpy (ai->config.macAddr, addr->sa_data, dev->addr_len);
2313 set_bit (FLAG_COMMIT, &ai->flags);
2315 writeConfigRid (ai, 1);
2316 enable_MAC(ai, &rsp, 1);
2317 memcpy (ai->dev->dev_addr, addr->sa_data, dev->addr_len);
2319 memcpy (ai->wifidev->dev_addr, addr->sa_data, dev->addr_len);
2323 static int airo_change_mtu(struct net_device *dev, int new_mtu)
2325 if ((new_mtu < 68) || (new_mtu > 2400))
2332 static int airo_close(struct net_device *dev) {
2333 struct airo_info *ai = dev->priv;
2335 netif_stop_queue(dev);
2337 if (ai->wifidev != dev) {
2338 #ifdef POWER_ON_DOWN
2339 /* Shut power to the card. The idea is that the user can save
2340 * power when he doesn't need the card with "ifconfig down".
2341 * That's the method that is most friendly towards the network
2342 * stack (i.e. the network stack won't try to broadcast
2343 * anything on the interface and routes are gone. Jean II */
2344 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2347 disable_interrupts( ai );
2352 static void del_airo_dev( struct net_device *dev );
2354 void stop_airo_card( struct net_device *dev, int freeres )
2356 struct airo_info *ai = dev->priv;
2358 set_bit(FLAG_RADIO_DOWN, &ai->flags);
2360 disable_interrupts(ai);
2361 free_irq( dev->irq, dev );
2362 takedown_proc_entry( dev, ai );
2363 if (test_bit(FLAG_REGISTERED, &ai->flags)) {
2364 unregister_netdev( dev );
2366 unregister_netdev(ai->wifidev);
2367 free_netdev(ai->wifidev);
2370 clear_bit(FLAG_REGISTERED, &ai->flags);
2372 set_bit(JOB_DIE, &ai->flags);
2373 kill_proc(ai->thr_pid, SIGTERM, 1);
2374 wait_for_completion(&ai->thr_exited);
2377 * Clean out tx queue
2379 if (test_bit(FLAG_MPI, &ai->flags) && !skb_queue_empty(&ai->txq)) {
2380 struct sk_buff *skb = NULL;
2381 for (;(skb = skb_dequeue(&ai->txq));)
2390 /* PCMCIA frees this stuff, so only for PCI and ISA */
2391 release_region( dev->base_addr, 64 );
2392 if (test_bit(FLAG_MPI, &ai->flags)) {
2394 mpi_unmap_card(ai->pci);
2396 iounmap(ai->pcimem);
2398 iounmap(ai->pciaux);
2399 pci_free_consistent(ai->pci, PCI_SHARED_LEN,
2400 ai->shared, ai->shared_dma);
2404 crypto_free_tfm(ai->tfm);
2406 del_airo_dev( dev );
2410 EXPORT_SYMBOL(stop_airo_card);
2412 static int add_airo_dev( struct net_device *dev );
2414 static int wll_header_parse(struct sk_buff *skb, unsigned char *haddr)
2416 memcpy(haddr, skb->mac.raw + 10, ETH_ALEN);
2420 static void mpi_unmap_card(struct pci_dev *pci)
2422 unsigned long mem_start = pci_resource_start(pci, 1);
2423 unsigned long mem_len = pci_resource_len(pci, 1);
2424 unsigned long aux_start = pci_resource_start(pci, 2);
2425 unsigned long aux_len = AUXMEMSIZE;
2427 release_mem_region(aux_start, aux_len);
2428 release_mem_region(mem_start, mem_len);
2431 /*************************************************************
2432 * This routine assumes that descriptors have been setup .
2433 * Run at insmod time or after reset when the decriptors
2434 * have been initialized . Returns 0 if all is well nz
2435 * otherwise . Does not allocate memory but sets up card
2436 * using previously allocated descriptors.
2438 static int mpi_init_descriptors (struct airo_info *ai)
2445 /* Alloc card RX descriptors */
2446 netif_stop_queue(ai->dev);
2448 memset(&rsp,0,sizeof(rsp));
2449 memset(&cmd,0,sizeof(cmd));
2451 cmd.cmd = CMD_ALLOCATEAUX;
2453 cmd.parm1 = (ai->rxfids[0].card_ram_off - ai->pciaux);
2454 cmd.parm2 = MPI_MAX_FIDS;
2455 rc=issuecommand(ai, &cmd, &rsp);
2456 if (rc != SUCCESS) {
2457 printk(KERN_ERR "airo: Couldn't allocate RX FID\n");
2461 for (i=0; i<MPI_MAX_FIDS; i++) {
2462 memcpy_toio(ai->rxfids[i].card_ram_off,
2463 &ai->rxfids[i].rx_desc, sizeof(RxFid));
2466 /* Alloc card TX descriptors */
2468 memset(&rsp,0,sizeof(rsp));
2469 memset(&cmd,0,sizeof(cmd));
2471 cmd.cmd = CMD_ALLOCATEAUX;
2473 cmd.parm1 = (ai->txfids[0].card_ram_off - ai->pciaux);
2474 cmd.parm2 = MPI_MAX_FIDS;
2476 for (i=0; i<MPI_MAX_FIDS; i++) {
2477 ai->txfids[i].tx_desc.valid = 1;
2478 memcpy_toio(ai->txfids[i].card_ram_off,
2479 &ai->txfids[i].tx_desc, sizeof(TxFid));
2481 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2483 rc=issuecommand(ai, &cmd, &rsp);
2484 if (rc != SUCCESS) {
2485 printk(KERN_ERR "airo: Couldn't allocate TX FID\n");
2489 /* Alloc card Rid descriptor */
2490 memset(&rsp,0,sizeof(rsp));
2491 memset(&cmd,0,sizeof(cmd));
2493 cmd.cmd = CMD_ALLOCATEAUX;
2495 cmd.parm1 = (ai->config_desc.card_ram_off - ai->pciaux);
2496 cmd.parm2 = 1; /* Magic number... */
2497 rc=issuecommand(ai, &cmd, &rsp);
2498 if (rc != SUCCESS) {
2499 printk(KERN_ERR "airo: Couldn't allocate RID\n");
2503 memcpy_toio(ai->config_desc.card_ram_off,
2504 &ai->config_desc.rid_desc, sizeof(Rid));
2510 * We are setting up three things here:
2511 * 1) Map AUX memory for descriptors: Rid, TxFid, or RxFid.
2512 * 2) Map PCI memory for issueing commands.
2513 * 3) Allocate memory (shared) to send and receive ethernet frames.
2515 static int mpi_map_card(struct airo_info *ai, struct pci_dev *pci,
2518 unsigned long mem_start, mem_len, aux_start, aux_len;
2521 dma_addr_t busaddroff;
2522 unsigned char *vpackoff;
2523 unsigned char __iomem *pciaddroff;
2525 mem_start = pci_resource_start(pci, 1);
2526 mem_len = pci_resource_len(pci, 1);
2527 aux_start = pci_resource_start(pci, 2);
2528 aux_len = AUXMEMSIZE;
2530 if (!request_mem_region(mem_start, mem_len, name)) {
2531 printk(KERN_ERR "airo: Couldn't get region %x[%x] for %s\n",
2532 (int)mem_start, (int)mem_len, name);
2535 if (!request_mem_region(aux_start, aux_len, name)) {
2536 printk(KERN_ERR "airo: Couldn't get region %x[%x] for %s\n",
2537 (int)aux_start, (int)aux_len, name);
2541 ai->pcimem = ioremap(mem_start, mem_len);
2543 printk(KERN_ERR "airo: Couldn't map region %x[%x] for %s\n",
2544 (int)mem_start, (int)mem_len, name);
2547 ai->pciaux = ioremap(aux_start, aux_len);
2549 printk(KERN_ERR "airo: Couldn't map region %x[%x] for %s\n",
2550 (int)aux_start, (int)aux_len, name);
2554 /* Reserve PKTSIZE for each fid and 2K for the Rids */
2555 ai->shared = pci_alloc_consistent(pci, PCI_SHARED_LEN, &ai->shared_dma);
2557 printk(KERN_ERR "airo: Couldn't alloc_consistent %d\n",
2563 * Setup descriptor RX, TX, CONFIG
2565 busaddroff = ai->shared_dma;
2566 pciaddroff = ai->pciaux + AUX_OFFSET;
2567 vpackoff = ai->shared;
2569 /* RX descriptor setup */
2570 for(i = 0; i < MPI_MAX_FIDS; i++) {
2571 ai->rxfids[i].pending = 0;
2572 ai->rxfids[i].card_ram_off = pciaddroff;
2573 ai->rxfids[i].virtual_host_addr = vpackoff;
2574 ai->rxfids[i].rx_desc.host_addr = busaddroff;
2575 ai->rxfids[i].rx_desc.valid = 1;
2576 ai->rxfids[i].rx_desc.len = PKTSIZE;
2577 ai->rxfids[i].rx_desc.rdy = 0;
2579 pciaddroff += sizeof(RxFid);
2580 busaddroff += PKTSIZE;
2581 vpackoff += PKTSIZE;
2584 /* TX descriptor setup */
2585 for(i = 0; i < MPI_MAX_FIDS; i++) {
2586 ai->txfids[i].card_ram_off = pciaddroff;
2587 ai->txfids[i].virtual_host_addr = vpackoff;
2588 ai->txfids[i].tx_desc.valid = 1;
2589 ai->txfids[i].tx_desc.host_addr = busaddroff;
2590 memcpy(ai->txfids[i].virtual_host_addr,
2591 &wifictlhdr8023, sizeof(wifictlhdr8023));
2593 pciaddroff += sizeof(TxFid);
2594 busaddroff += PKTSIZE;
2595 vpackoff += PKTSIZE;
2597 ai->txfids[i-1].tx_desc.eoc = 1; /* Last descriptor has EOC set */
2599 /* Rid descriptor setup */
2600 ai->config_desc.card_ram_off = pciaddroff;
2601 ai->config_desc.virtual_host_addr = vpackoff;
2602 ai->config_desc.rid_desc.host_addr = busaddroff;
2603 ai->ridbus = busaddroff;
2604 ai->config_desc.rid_desc.rid = 0;
2605 ai->config_desc.rid_desc.len = RIDSIZE;
2606 ai->config_desc.rid_desc.valid = 1;
2607 pciaddroff += sizeof(Rid);
2608 busaddroff += RIDSIZE;
2609 vpackoff += RIDSIZE;
2611 /* Tell card about descriptors */
2612 if (mpi_init_descriptors (ai) != SUCCESS)
2617 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2619 iounmap(ai->pciaux);
2621 iounmap(ai->pcimem);
2623 release_mem_region(aux_start, aux_len);
2625 release_mem_region(mem_start, mem_len);
2630 static void wifi_setup(struct net_device *dev)
2632 dev->hard_header = NULL;
2633 dev->rebuild_header = NULL;
2634 dev->hard_header_cache = NULL;
2635 dev->header_cache_update= NULL;
2637 dev->hard_header_parse = wll_header_parse;
2638 dev->hard_start_xmit = &airo_start_xmit11;
2639 dev->get_stats = &airo_get_stats;
2640 dev->set_mac_address = &airo_set_mac_address;
2641 dev->do_ioctl = &airo_ioctl;
2642 dev->wireless_handlers = &airo_handler_def;
2643 dev->change_mtu = &airo_change_mtu;
2644 dev->open = &airo_open;
2645 dev->stop = &airo_close;
2647 dev->type = ARPHRD_IEEE80211;
2648 dev->hard_header_len = ETH_HLEN;
2650 dev->addr_len = ETH_ALEN;
2651 dev->tx_queue_len = 100;
2653 memset(dev->broadcast,0xFF, ETH_ALEN);
2655 dev->flags = IFF_BROADCAST|IFF_MULTICAST;
2658 static struct net_device *init_wifidev(struct airo_info *ai,
2659 struct net_device *ethdev)
2662 struct net_device *dev = alloc_netdev(0, "wifi%d", wifi_setup);
2665 dev->priv = ethdev->priv;
2666 dev->irq = ethdev->irq;
2667 dev->base_addr = ethdev->base_addr;
2668 dev->wireless_data = ethdev->wireless_data;
2669 memcpy(dev->dev_addr, ethdev->dev_addr, dev->addr_len);
2670 err = register_netdev(dev);
2678 static int reset_card( struct net_device *dev , int lock) {
2679 struct airo_info *ai = dev->priv;
2681 if (lock && down_interruptible(&ai->sem))
2684 OUT4500(ai,COMMAND,CMD_SOFTRESET);
2693 static struct net_device *_init_airo_card( unsigned short irq, int port,
2694 int is_pcmcia, struct pci_dev *pci,
2695 struct device *dmdev )
2697 struct net_device *dev;
2698 struct airo_info *ai;
2701 /* Create the network device object. */
2702 dev = alloc_etherdev(sizeof(*ai));
2704 printk(KERN_ERR "airo: Couldn't alloc_etherdev\n");
2707 if (dev_alloc_name(dev, dev->name) < 0) {
2708 printk(KERN_ERR "airo: Couldn't get name!\n");
2715 if (pci && (pci->device == 0x5000 || pci->device == 0xa504)) {
2716 printk(KERN_DEBUG "airo: Found an MPI350 card\n");
2717 set_bit(FLAG_MPI, &ai->flags);
2720 spin_lock_init(&ai->aux_lock);
2721 sema_init(&ai->sem, 1);
2724 init_waitqueue_head (&ai->thr_wait);
2725 init_completion (&ai->thr_exited);
2726 ai->thr_pid = kernel_thread(airo_thread, dev, CLONE_FS | CLONE_FILES);
2727 if (ai->thr_pid < 0)
2732 rc = add_airo_dev( dev );
2736 /* The Airo-specific entries in the device structure. */
2737 if (test_bit(FLAG_MPI,&ai->flags)) {
2738 skb_queue_head_init (&ai->txq);
2739 dev->hard_start_xmit = &mpi_start_xmit;
2741 dev->hard_start_xmit = &airo_start_xmit;
2742 dev->get_stats = &airo_get_stats;
2743 dev->set_multicast_list = &airo_set_multicast_list;
2744 dev->set_mac_address = &airo_set_mac_address;
2745 dev->do_ioctl = &airo_ioctl;
2746 dev->wireless_handlers = &airo_handler_def;
2747 ai->wireless_data.spy_data = &ai->spy_data;
2748 dev->wireless_data = &ai->wireless_data;
2749 dev->change_mtu = &airo_change_mtu;
2750 dev->open = &airo_open;
2751 dev->stop = &airo_close;
2753 dev->base_addr = port;
2755 SET_NETDEV_DEV(dev, dmdev);
2758 if (test_bit(FLAG_MPI,&ai->flags))
2759 reset_card (dev, 1);
2761 rc = request_irq( dev->irq, airo_interrupt, SA_SHIRQ, dev->name, dev );
2763 printk(KERN_ERR "airo: register interrupt %d failed, rc %d\n", irq, rc );
2764 goto err_out_unlink;
2767 if (!request_region( dev->base_addr, 64, dev->name )) {
2769 printk(KERN_ERR "airo: Couldn't request region\n");
2774 if (test_bit(FLAG_MPI,&ai->flags)) {
2775 if (mpi_map_card(ai, pci, dev->name)) {
2776 printk(KERN_ERR "airo: Could not map memory\n");
2782 if ( setup_card( ai, dev->dev_addr, 1 ) != SUCCESS ) {
2783 printk( KERN_ERR "airo: MAC could not be enabled\n" );
2787 } else if (!test_bit(FLAG_MPI,&ai->flags)) {
2788 ai->bap_read = fast_bap_read;
2789 set_bit(FLAG_FLASHING, &ai->flags);
2792 rc = register_netdev(dev);
2794 printk(KERN_ERR "airo: Couldn't register_netdev\n");
2797 ai->wifidev = init_wifidev(ai, dev);
2799 set_bit(FLAG_REGISTERED,&ai->flags);
2800 printk( KERN_INFO "airo: MAC enabled %s %x:%x:%x:%x:%x:%x\n",
2802 dev->dev_addr[0], dev->dev_addr[1], dev->dev_addr[2],
2803 dev->dev_addr[3], dev->dev_addr[4], dev->dev_addr[5] );
2805 /* Allocate the transmit buffers */
2806 if (probe && !test_bit(FLAG_MPI,&ai->flags))
2807 for( i = 0; i < MAX_FIDS; i++ )
2808 ai->fids[i] = transmit_allocate(ai,2312,i>=MAX_FIDS/2);
2810 setup_proc_entry( dev, dev->priv ); /* XXX check for failure */
2811 netif_start_queue(dev);
2812 SET_MODULE_OWNER(dev);
2816 if (test_bit(FLAG_MPI,&ai->flags) && pci) {
2817 pci_free_consistent(pci, PCI_SHARED_LEN, ai->shared, ai->shared_dma);
2818 iounmap(ai->pciaux);
2819 iounmap(ai->pcimem);
2820 mpi_unmap_card(ai->pci);
2824 release_region( dev->base_addr, 64 );
2826 free_irq(dev->irq, dev);
2830 set_bit(JOB_DIE, &ai->flags);
2831 kill_proc(ai->thr_pid, SIGTERM, 1);
2832 wait_for_completion(&ai->thr_exited);
2838 struct net_device *init_airo_card( unsigned short irq, int port, int is_pcmcia,
2839 struct device *dmdev)
2841 return _init_airo_card ( irq, port, is_pcmcia, NULL, dmdev);
2844 EXPORT_SYMBOL(init_airo_card);
2846 static int waitbusy (struct airo_info *ai) {
2848 while ((IN4500 (ai, COMMAND) & COMMAND_BUSY) & (delay < 10000)) {
2850 if ((++delay % 20) == 0)
2851 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
2853 return delay < 10000;
2856 int reset_airo_card( struct net_device *dev )
2859 struct airo_info *ai = dev->priv;
2861 if (reset_card (dev, 1))
2864 if ( setup_card(ai, dev->dev_addr, 1 ) != SUCCESS ) {
2865 printk( KERN_ERR "airo: MAC could not be enabled\n" );
2868 printk( KERN_INFO "airo: MAC enabled %s %x:%x:%x:%x:%x:%x\n", dev->name,
2869 dev->dev_addr[0], dev->dev_addr[1], dev->dev_addr[2],
2870 dev->dev_addr[3], dev->dev_addr[4], dev->dev_addr[5]);
2871 /* Allocate the transmit buffers if needed */
2872 if (!test_bit(FLAG_MPI,&ai->flags))
2873 for( i = 0; i < MAX_FIDS; i++ )
2874 ai->fids[i] = transmit_allocate (ai,2312,i>=MAX_FIDS/2);
2876 enable_interrupts( ai );
2877 netif_wake_queue(dev);
2881 EXPORT_SYMBOL(reset_airo_card);
2883 static void airo_send_event(struct net_device *dev) {
2884 struct airo_info *ai = dev->priv;
2885 union iwreq_data wrqu;
2886 StatusRid status_rid;
2888 clear_bit(JOB_EVENT, &ai->flags);
2889 PC4500_readrid(ai, RID_STATUS, &status_rid, sizeof(status_rid), 0);
2891 wrqu.data.length = 0;
2892 wrqu.data.flags = 0;
2893 memcpy(wrqu.ap_addr.sa_data, status_rid.bssid[0], ETH_ALEN);
2894 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
2896 /* Send event to user space */
2897 wireless_send_event(dev, SIOCGIWAP, &wrqu, NULL);
2900 static int airo_thread(void *data) {
2901 struct net_device *dev = data;
2902 struct airo_info *ai = dev->priv;
2905 daemonize("%s", dev->name);
2906 allow_signal(SIGTERM);
2909 if (signal_pending(current))
2910 flush_signals(current);
2912 /* make swsusp happy with our thread */
2915 if (test_bit(JOB_DIE, &ai->flags))
2918 if (ai->flags & JOB_MASK) {
2919 locked = down_interruptible(&ai->sem);
2923 init_waitqueue_entry(&wait, current);
2924 add_wait_queue(&ai->thr_wait, &wait);
2926 set_current_state(TASK_INTERRUPTIBLE);
2927 if (ai->flags & JOB_MASK)
2930 if (time_after_eq(jiffies,ai->expires)){
2931 set_bit(JOB_AUTOWEP,&ai->flags);
2934 if (!signal_pending(current)) {
2935 schedule_timeout(ai->expires - jiffies);
2938 } else if (!signal_pending(current)) {
2944 current->state = TASK_RUNNING;
2945 remove_wait_queue(&ai->thr_wait, &wait);
2952 if (test_bit(JOB_DIE, &ai->flags)) {
2957 if (ai->power.event || test_bit(FLAG_FLASHING, &ai->flags)) {
2962 if (test_bit(JOB_XMIT, &ai->flags))
2964 else if (test_bit(JOB_XMIT11, &ai->flags))
2965 airo_end_xmit11(dev);
2966 else if (test_bit(JOB_STATS, &ai->flags))
2967 airo_read_stats(ai);
2968 else if (test_bit(JOB_WSTATS, &ai->flags))
2969 airo_read_wireless_stats(ai);
2970 else if (test_bit(JOB_PROMISC, &ai->flags))
2971 airo_set_promisc(ai);
2973 else if (test_bit(JOB_MIC, &ai->flags))
2976 else if (test_bit(JOB_EVENT, &ai->flags))
2977 airo_send_event(dev);
2978 else if (test_bit(JOB_AUTOWEP, &ai->flags))
2981 complete_and_exit (&ai->thr_exited, 0);
2984 static irqreturn_t airo_interrupt ( int irq, void* dev_id, struct pt_regs *regs) {
2985 struct net_device *dev = (struct net_device *)dev_id;
2988 struct airo_info *apriv = dev->priv;
2989 u16 savedInterrupts = 0;
2992 if (!netif_device_present(dev))
2996 status = IN4500( apriv, EVSTAT );
2997 if ( !(status & STATUS_INTS) || status == 0xffff ) break;
3001 if ( status & EV_AWAKE ) {
3002 OUT4500( apriv, EVACK, EV_AWAKE );
3003 OUT4500( apriv, EVACK, EV_AWAKE );
3006 if (!savedInterrupts) {
3007 savedInterrupts = IN4500( apriv, EVINTEN );
3008 OUT4500( apriv, EVINTEN, 0 );
3011 if ( status & EV_MIC ) {
3012 OUT4500( apriv, EVACK, EV_MIC );
3014 if (test_bit(FLAG_MIC_CAPABLE, &apriv->flags)) {
3015 set_bit(JOB_MIC, &apriv->flags);
3016 wake_up_interruptible(&apriv->thr_wait);
3020 if ( status & EV_LINK ) {
3021 union iwreq_data wrqu;
3022 /* The link status has changed, if you want to put a
3023 monitor hook in, do it here. (Remember that
3024 interrupts are still disabled!)
3026 u16 newStatus = IN4500(apriv, LINKSTAT);
3027 OUT4500( apriv, EVACK, EV_LINK);
3028 /* Here is what newStatus means: */
3029 #define NOBEACON 0x8000 /* Loss of sync - missed beacons */
3030 #define MAXRETRIES 0x8001 /* Loss of sync - max retries */
3031 #define MAXARL 0x8002 /* Loss of sync - average retry level exceeded*/
3032 #define FORCELOSS 0x8003 /* Loss of sync - host request */
3033 #define TSFSYNC 0x8004 /* Loss of sync - TSF synchronization */
3034 #define DEAUTH 0x8100 /* Deauthentication (low byte is reason code) */
3035 #define DISASS 0x8200 /* Disassociation (low byte is reason code) */
3036 #define ASSFAIL 0x8400 /* Association failure (low byte is reason
3038 #define AUTHFAIL 0x0300 /* Authentication failure (low byte is reason
3040 #define ASSOCIATED 0x0400 /* Assocatied */
3041 #define RC_RESERVED 0 /* Reserved return code */
3042 #define RC_NOREASON 1 /* Unspecified reason */
3043 #define RC_AUTHINV 2 /* Previous authentication invalid */
3044 #define RC_DEAUTH 3 /* Deauthenticated because sending station is
3046 #define RC_NOACT 4 /* Disassociated due to inactivity */
3047 #define RC_MAXLOAD 5 /* Disassociated because AP is unable to handle
3048 all currently associated stations */
3049 #define RC_BADCLASS2 6 /* Class 2 frame received from
3050 non-Authenticated station */
3051 #define RC_BADCLASS3 7 /* Class 3 frame received from
3052 non-Associated station */
3053 #define RC_STATLEAVE 8 /* Disassociated because sending station is
3055 #define RC_NOAUTH 9 /* Station requesting (Re)Association is not
3056 Authenticated with the responding station */
3057 if (newStatus != ASSOCIATED) {
3058 if (auto_wep && !apriv->expires) {
3059 apriv->expires = RUN_AT(3*HZ);
3060 wake_up_interruptible(&apriv->thr_wait);
3063 struct task_struct *task = apriv->task;
3067 wake_up_process (task);
3068 set_bit(FLAG_UPDATE_UNI, &apriv->flags);
3069 set_bit(FLAG_UPDATE_MULTI, &apriv->flags);
3071 /* Question : is ASSOCIATED the only status
3072 * that is valid ? We want to catch handover
3073 * and reassociations as valid status
3075 if(newStatus == ASSOCIATED) {
3076 if (apriv->scan_timestamp) {
3077 /* Send an empty event to user space.
3078 * We don't send the received data on
3079 * the event because it would require
3080 * us to do complex transcoding, and
3081 * we want to minimise the work done in
3082 * the irq handler. Use a request to
3083 * extract the data - Jean II */
3084 wrqu.data.length = 0;
3085 wrqu.data.flags = 0;
3086 wireless_send_event(dev, SIOCGIWSCAN, &wrqu, NULL);
3087 apriv->scan_timestamp = 0;
3089 if (down_trylock(&apriv->sem) != 0) {
3090 set_bit(JOB_EVENT, &apriv->flags);
3091 wake_up_interruptible(&apriv->thr_wait);
3093 airo_send_event(dev);
3095 memset(wrqu.ap_addr.sa_data, '\0', ETH_ALEN);
3096 wrqu.ap_addr.sa_family = ARPHRD_ETHER;
3098 /* Send event to user space */
3099 wireless_send_event(dev, SIOCGIWAP, &wrqu,NULL);
3103 /* Check to see if there is something to receive */
3104 if ( status & EV_RX ) {
3105 struct sk_buff *skb = NULL;
3106 u16 fc, len, hdrlen = 0;
3120 if (test_bit(FLAG_MPI,&apriv->flags)) {
3121 if (test_bit(FLAG_802_11, &apriv->flags))
3122 mpi_receive_802_11(apriv);
3124 mpi_receive_802_3(apriv);
3125 OUT4500(apriv, EVACK, EV_RX);
3129 fid = IN4500( apriv, RXFID );
3131 /* Get the packet length */
3132 if (test_bit(FLAG_802_11, &apriv->flags)) {
3133 bap_setup (apriv, fid, 4, BAP0);
3134 bap_read (apriv, (u16*)&hdr, sizeof(hdr), BAP0);
3135 /* Bad CRC. Ignore packet */
3136 if (le16_to_cpu(hdr.status) & 2)
3138 if (apriv->wifidev == NULL)
3141 bap_setup (apriv, fid, 0x36, BAP0);
3142 bap_read (apriv, (u16*)&hdr.len, 2, BAP0);
3144 len = le16_to_cpu(hdr.len);
3147 printk( KERN_ERR "airo: Bad size %d\n", len );
3153 if (test_bit(FLAG_802_11, &apriv->flags)) {
3154 bap_read (apriv, (u16*)&fc, sizeof(fc), BAP0);
3155 fc = le16_to_cpu(fc);
3158 if ((fc & 0xe0) == 0xc0)
3164 if ((fc&0x300)==0x300){
3172 hdrlen = ETH_ALEN * 2;
3174 skb = dev_alloc_skb( len + hdrlen + 2 + 2 );
3176 apriv->stats.rx_dropped++;
3179 skb_reserve(skb, 2); /* This way the IP header is aligned */
3180 buffer = (u16*)skb_put (skb, len + hdrlen);
3181 if (test_bit(FLAG_802_11, &apriv->flags)) {
3183 bap_read (apriv, buffer + 1, hdrlen - 2, BAP0);
3185 bap_read (apriv, tmpbuf, 6, BAP0);
3187 bap_read (apriv, &gap, sizeof(gap), BAP0);
3188 gap = le16_to_cpu(gap);
3191 bap_read (apriv, tmpbuf, gap, BAP0);
3193 printk(KERN_ERR "airo: gaplen too big. Problems will follow...\n");
3195 bap_read (apriv, buffer + hdrlen/2, len, BAP0);
3200 bap_read (apriv, buffer, ETH_ALEN*2, BAP0);
3202 if (apriv->micstats.enabled) {
3203 bap_read (apriv,(u16*)&micbuf,sizeof(micbuf),BAP0);
3204 if (ntohs(micbuf.typelen) > 0x05DC)
3205 bap_setup (apriv, fid, 0x44, BAP0);
3207 if (len <= sizeof(micbuf))
3210 len -= sizeof(micbuf);
3211 skb_trim (skb, len + hdrlen);
3215 bap_read(apriv,buffer+ETH_ALEN,len,BAP0);
3217 if (decapsulate(apriv,&micbuf,(etherHead*)buffer,len)) {
3219 dev_kfree_skb_irq (skb);
3224 OUT4500( apriv, EVACK, EV_RX);
3229 if (apriv->spy_data.spy_number > 0) {
3231 struct iw_quality wstats;
3232 /* Prepare spy data : addr + qual */
3233 if (!test_bit(FLAG_802_11, &apriv->flags)) {
3234 sa = (char*)buffer + 6;
3235 bap_setup (apriv, fid, 8, BAP0);
3236 bap_read (apriv, (u16*)hdr.rssi, 2, BAP0);
3238 sa = (char*)buffer + 10;
3239 wstats.qual = hdr.rssi[0];
3241 wstats.level = 0x100 - apriv->rssi[hdr.rssi[1]].rssidBm;
3243 wstats.level = (hdr.rssi[1] + 321) / 2;
3244 wstats.noise = apriv->wstats.qual.noise;
3245 wstats.updated = IW_QUAL_LEVEL_UPDATED
3246 | IW_QUAL_QUAL_UPDATED
3248 /* Update spy records */
3249 wireless_spy_update(dev, sa, &wstats);
3251 #endif /* WIRELESS_SPY */
3252 OUT4500( apriv, EVACK, EV_RX);
3254 if (test_bit(FLAG_802_11, &apriv->flags)) {
3255 skb->mac.raw = skb->data;
3256 skb->pkt_type = PACKET_OTHERHOST;
3257 skb->dev = apriv->wifidev;
3258 skb->protocol = htons(ETH_P_802_2);
3261 skb->protocol = eth_type_trans(skb,dev);
3263 skb->dev->last_rx = jiffies;
3264 skb->ip_summed = CHECKSUM_NONE;
3270 /* Check to see if a packet has been transmitted */
3271 if ( status & ( EV_TX|EV_TXCPY|EV_TXEXC ) ) {
3276 if (test_bit(FLAG_MPI,&apriv->flags)) {
3277 unsigned long flags;
3279 if (status & EV_TXEXC)
3280 get_tx_error(apriv, -1);
3281 spin_lock_irqsave(&apriv->aux_lock, flags);
3282 if (!skb_queue_empty(&apriv->txq)) {
3283 spin_unlock_irqrestore(&apriv->aux_lock,flags);
3284 mpi_send_packet (dev);
3286 clear_bit(FLAG_PENDING_XMIT, &apriv->flags);
3287 spin_unlock_irqrestore(&apriv->aux_lock,flags);
3288 netif_wake_queue (dev);
3290 OUT4500( apriv, EVACK,
3291 status & (EV_TX|EV_TXCPY|EV_TXEXC));
3295 fid = IN4500(apriv, TXCOMPLFID);
3297 for( i = 0; i < MAX_FIDS; i++ ) {
3298 if ( ( apriv->fids[i] & 0xffff ) == fid ) {
3299 len = apriv->fids[i] >> 16;
3304 if (status & EV_TXEXC)
3305 get_tx_error(apriv, index);
3306 OUT4500( apriv, EVACK, status & (EV_TX | EV_TXEXC));
3307 /* Set up to be used again */
3308 apriv->fids[index] &= 0xffff;
3309 if (index < MAX_FIDS / 2) {
3310 if (!test_bit(FLAG_PENDING_XMIT, &apriv->flags))
3311 netif_wake_queue(dev);
3313 if (!test_bit(FLAG_PENDING_XMIT11, &apriv->flags))
3314 netif_wake_queue(apriv->wifidev);
3317 OUT4500( apriv, EVACK, status & (EV_TX | EV_TXCPY | EV_TXEXC));
3318 printk( KERN_ERR "airo: Unallocated FID was used to xmit\n" );
3322 if ( status & ~STATUS_INTS & ~IGNORE_INTS )
3323 printk( KERN_WARNING "airo: Got weird status %x\n",
3324 status & ~STATUS_INTS & ~IGNORE_INTS );
3327 if (savedInterrupts)
3328 OUT4500( apriv, EVINTEN, savedInterrupts );
3331 return IRQ_RETVAL(handled);
3335 * Routines to talk to the card
3339 * This was originally written for the 4500, hence the name
3340 * NOTE: If use with 8bit mode and SMP bad things will happen!
3341 * Why would some one do 8 bit IO in an SMP machine?!?
3343 static void OUT4500( struct airo_info *ai, u16 reg, u16 val ) {
3344 if (test_bit(FLAG_MPI,&ai->flags))
3347 outw( val, ai->dev->base_addr + reg );
3349 outb( val & 0xff, ai->dev->base_addr + reg );
3350 outb( val >> 8, ai->dev->base_addr + reg + 1 );
3354 static u16 IN4500( struct airo_info *ai, u16 reg ) {
3357 if (test_bit(FLAG_MPI,&ai->flags))
3360 rc = inw( ai->dev->base_addr + reg );
3362 rc = inb( ai->dev->base_addr + reg );
3363 rc += ((int)inb( ai->dev->base_addr + reg + 1 )) << 8;
3368 static int enable_MAC( struct airo_info *ai, Resp *rsp, int lock ) {
3372 /* FLAG_RADIO_OFF : Radio disabled via /proc or Wireless Extensions
3373 * FLAG_RADIO_DOWN : Radio disabled via "ifconfig ethX down"
3374 * Note : we could try to use !netif_running(dev) in enable_MAC()
3375 * instead of this flag, but I don't trust it *within* the
3376 * open/close functions, and testing both flags together is
3377 * "cheaper" - Jean II */
3378 if (ai->flags & FLAG_RADIO_MASK) return SUCCESS;
3380 if (lock && down_interruptible(&ai->sem))
3381 return -ERESTARTSYS;
3383 if (!test_bit(FLAG_ENABLED, &ai->flags)) {
3384 memset(&cmd, 0, sizeof(cmd));
3385 cmd.cmd = MAC_ENABLE;
3386 rc = issuecommand(ai, &cmd, rsp);
3388 set_bit(FLAG_ENABLED, &ai->flags);
3396 printk(KERN_ERR "%s: Cannot enable MAC, err=%d\n",
3401 static void disable_MAC( struct airo_info *ai, int lock ) {
3405 if (lock && down_interruptible(&ai->sem))
3408 if (test_bit(FLAG_ENABLED, &ai->flags)) {
3409 memset(&cmd, 0, sizeof(cmd));
3410 cmd.cmd = MAC_DISABLE; // disable in case already enabled
3411 issuecommand(ai, &cmd, &rsp);
3412 clear_bit(FLAG_ENABLED, &ai->flags);
3418 static void enable_interrupts( struct airo_info *ai ) {
3419 /* Enable the interrupts */
3420 OUT4500( ai, EVINTEN, STATUS_INTS );
3423 static void disable_interrupts( struct airo_info *ai ) {
3424 OUT4500( ai, EVINTEN, 0 );
3427 static void mpi_receive_802_3(struct airo_info *ai)
3431 struct sk_buff *skb;
3438 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3439 /* Make sure we got something */
3440 if (rxd.rdy && rxd.valid == 0) {
3442 if (len < 12 || len > 2048)
3445 skb = dev_alloc_skb(len);
3447 ai->stats.rx_dropped++;
3450 buffer = skb_put(skb,len);
3452 memcpy(buffer, ai->rxfids[0].virtual_host_addr, ETH_ALEN * 2);
3453 if (ai->micstats.enabled) {
3455 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2,
3457 if (ntohs(micbuf.typelen) <= 0x05DC) {
3458 if (len <= sizeof(micbuf) + ETH_ALEN * 2)
3461 off = sizeof(micbuf);
3462 skb_trim (skb, len - off);
3465 memcpy(buffer + ETH_ALEN * 2,
3466 ai->rxfids[0].virtual_host_addr + ETH_ALEN * 2 + off,
3467 len - ETH_ALEN * 2 - off);
3468 if (decapsulate (ai, &micbuf, (etherHead*)buffer, len - off - ETH_ALEN * 2)) {
3470 dev_kfree_skb_irq (skb);
3474 memcpy(buffer, ai->rxfids[0].virtual_host_addr, len);
3477 if (ai->spy_data.spy_number > 0) {
3479 struct iw_quality wstats;
3480 /* Prepare spy data : addr + qual */
3481 sa = buffer + ETH_ALEN;
3482 wstats.qual = 0; /* XXX Where do I get that info from ??? */
3485 /* Update spy records */
3486 wireless_spy_update(ai->dev, sa, &wstats);
3488 #endif /* WIRELESS_SPY */
3491 skb->ip_summed = CHECKSUM_NONE;
3492 skb->protocol = eth_type_trans(skb, ai->dev);
3493 skb->dev->last_rx = jiffies;
3497 if (rxd.valid == 0) {
3501 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3505 void mpi_receive_802_11 (struct airo_info *ai)
3508 struct sk_buff *skb = NULL;
3509 u16 fc, len, hdrlen = 0;
3521 char *ptr = ai->rxfids[0].virtual_host_addr+4;
3523 memcpy_fromio(&rxd, ai->rxfids[0].card_ram_off, sizeof(rxd));
3524 memcpy ((char *)&hdr, ptr, sizeof(hdr));
3526 /* Bad CRC. Ignore packet */
3527 if (le16_to_cpu(hdr.status) & 2)
3529 if (ai->wifidev == NULL)
3531 len = le16_to_cpu(hdr.len);
3533 printk( KERN_ERR "airo: Bad size %d\n", len );
3539 memcpy ((char *)&fc, ptr, sizeof(fc));
3540 fc = le16_to_cpu(fc);
3543 if ((fc & 0xe0) == 0xc0)
3549 if ((fc&0x300)==0x300){
3557 skb = dev_alloc_skb( len + hdrlen + 2 );
3559 ai->stats.rx_dropped++;
3562 buffer = (u16*)skb_put (skb, len + hdrlen);
3563 memcpy ((char *)buffer, ptr, hdrlen);
3567 memcpy ((char *)&gap, ptr, sizeof(gap));
3569 gap = le16_to_cpu(gap);
3575 "airo: gaplen too big. Problems will follow...\n");
3577 memcpy ((char *)buffer + hdrlen, ptr, len);
3579 #ifdef IW_WIRELESS_SPY /* defined in iw_handler.h */
3580 if (ai->spy_data.spy_number > 0) {
3582 struct iw_quality wstats;
3583 /* Prepare spy data : addr + qual */
3584 sa = (char*)buffer + 10;
3585 wstats.qual = hdr.rssi[0];
3587 wstats.level = 0x100 - ai->rssi[hdr.rssi[1]].rssidBm;
3589 wstats.level = (hdr.rssi[1] + 321) / 2;
3590 wstats.noise = ai->wstats.qual.noise;
3591 wstats.updated = IW_QUAL_QUAL_UPDATED
3592 | IW_QUAL_LEVEL_UPDATED
3594 /* Update spy records */
3595 wireless_spy_update(ai->dev, sa, &wstats);
3597 #endif /* IW_WIRELESS_SPY */
3598 skb->mac.raw = skb->data;
3599 skb->pkt_type = PACKET_OTHERHOST;
3600 skb->dev = ai->wifidev;
3601 skb->protocol = htons(ETH_P_802_2);
3602 skb->dev->last_rx = jiffies;
3603 skb->ip_summed = CHECKSUM_NONE;
3606 if (rxd.valid == 0) {
3610 memcpy_toio(ai->rxfids[0].card_ram_off, &rxd, sizeof(rxd));
3614 static u16 setup_card(struct airo_info *ai, u8 *mac, int lock)
3625 memset( &mySsid, 0, sizeof( mySsid ) );
3629 /* The NOP is the first step in getting the card going */
3631 cmd.parm0 = cmd.parm1 = cmd.parm2 = 0;
3632 if (lock && down_interruptible(&ai->sem))
3634 if ( issuecommand( ai, &cmd, &rsp ) != SUCCESS ) {
3639 disable_MAC( ai, 0);
3641 // Let's figure out if we need to use the AUX port
3642 if (!test_bit(FLAG_MPI,&ai->flags)) {
3643 cmd.cmd = CMD_ENABLEAUX;
3644 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
3647 printk(KERN_ERR "airo: Error checking for AUX port\n");
3650 if (!aux_bap || rsp.status & 0xff00) {
3651 ai->bap_read = fast_bap_read;
3652 printk(KERN_DEBUG "airo: Doing fast bap_reads\n");
3654 ai->bap_read = aux_bap_read;
3655 printk(KERN_DEBUG "airo: Doing AUX bap_reads\n");
3660 if (ai->config.len == 0) {
3661 tdsRssiRid rssi_rid;
3662 CapabilityRid cap_rid;
3668 // general configuration (read/modify/write)
3669 status = readConfigRid(ai, lock);
3670 if ( status != SUCCESS ) return ERROR;
3672 status = readCapabilityRid(ai, &cap_rid, lock);
3673 if ( status != SUCCESS ) return ERROR;
3675 status = PC4500_readrid(ai,RID_RSSI,&rssi_rid,sizeof(rssi_rid),lock);
3676 if ( status == SUCCESS ) {
3677 if (ai->rssi || (ai->rssi = kmalloc(512, GFP_KERNEL)) != NULL)
3678 memcpy(ai->rssi, (u8*)&rssi_rid + 2, 512); /* Skip RID length member */
3683 if (cap_rid.softCap & 8)
3684 ai->config.rmode |= RXMODE_NORMALIZED_RSSI;
3686 printk(KERN_WARNING "airo: unknown received signal level scale\n");
3688 ai->config.opmode = adhoc ? MODE_STA_IBSS : MODE_STA_ESS;
3689 ai->config.authType = AUTH_OPEN;
3690 ai->config.modulation = MOD_CCK;
3693 if ((cap_rid.len>=sizeof(cap_rid)) && (cap_rid.extSoftCap&1) &&
3694 (micsetup(ai) == SUCCESS)) {
3695 ai->config.opmode |= MODE_MIC;
3696 set_bit(FLAG_MIC_CAPABLE, &ai->flags);
3700 /* Save off the MAC */
3701 for( i = 0; i < ETH_ALEN; i++ ) {
3702 mac[i] = ai->config.macAddr[i];
3705 /* Check to see if there are any insmod configured
3709 memset(ai->config.rates,0,sizeof(ai->config.rates));
3710 for( i = 0; i < 8 && rates[i]; i++ ) {
3711 ai->config.rates[i] = rates[i];
3714 if ( basic_rate > 0 ) {
3716 for( i = 0; i < 8; i++ ) {
3717 if ( ai->config.rates[i] == basic_rate ||
3718 !ai->config.rates ) {
3719 ai->config.rates[i] = basic_rate | 0x80;
3724 set_bit (FLAG_COMMIT, &ai->flags);
3727 /* Setup the SSIDs if present */
3730 for( i = 0; i < 3 && ssids[i]; i++ ) {
3731 mySsid.ssids[i].len = strlen(ssids[i]);
3732 if ( mySsid.ssids[i].len > 32 )
3733 mySsid.ssids[i].len = 32;
3734 memcpy(mySsid.ssids[i].ssid, ssids[i],
3735 mySsid.ssids[i].len);
3737 mySsid.len = sizeof(mySsid);
3740 status = writeConfigRid(ai, lock);
3741 if ( status != SUCCESS ) return ERROR;
3743 /* Set up the SSID list */
3745 status = writeSsidRid(ai, &mySsid, lock);
3746 if ( status != SUCCESS ) return ERROR;
3749 status = enable_MAC(ai, &rsp, lock);
3750 if ( status != SUCCESS || (rsp.status & 0xFF00) != 0) {
3751 printk( KERN_ERR "airo: Bad MAC enable reason = %x, rid = %x, offset = %d\n", rsp.rsp0, rsp.rsp1, rsp.rsp2 );
3755 /* Grab the initial wep key, we gotta save it for auto_wep */
3756 rc = readWepKeyRid(ai, &wkr, 1, lock);
3757 if (rc == SUCCESS) do {
3758 lastindex = wkr.kindex;
3759 if (wkr.kindex == 0xffff) {
3760 ai->defindex = wkr.mac[0];
3762 rc = readWepKeyRid(ai, &wkr, 0, lock);
3763 } while(lastindex != wkr.kindex);
3766 ai->expires = RUN_AT(3*HZ);
3767 wake_up_interruptible(&ai->thr_wait);
3773 static u16 issuecommand(struct airo_info *ai, Cmd *pCmd, Resp *pRsp) {
3774 // Im really paranoid about letting it run forever!
3775 int max_tries = 600000;
3777 if (IN4500(ai, EVSTAT) & EV_CMD)
3778 OUT4500(ai, EVACK, EV_CMD);
3780 OUT4500(ai, PARAM0, pCmd->parm0);
3781 OUT4500(ai, PARAM1, pCmd->parm1);
3782 OUT4500(ai, PARAM2, pCmd->parm2);
3783 OUT4500(ai, COMMAND, pCmd->cmd);
3785 while (max_tries-- && (IN4500(ai, EVSTAT) & EV_CMD) == 0) {
3786 if ((IN4500(ai, COMMAND)) == pCmd->cmd)
3787 // PC4500 didn't notice command, try again
3788 OUT4500(ai, COMMAND, pCmd->cmd);
3789 if (!in_atomic() && (max_tries & 255) == 0)
3793 if ( max_tries == -1 ) {
3795 "airo: Max tries exceeded when issueing command\n" );
3796 if (IN4500(ai, COMMAND) & COMMAND_BUSY)
3797 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3801 // command completed
3802 pRsp->status = IN4500(ai, STATUS);
3803 pRsp->rsp0 = IN4500(ai, RESP0);
3804 pRsp->rsp1 = IN4500(ai, RESP1);
3805 pRsp->rsp2 = IN4500(ai, RESP2);
3806 if ((pRsp->status & 0xff00)!=0 && pCmd->cmd != CMD_SOFTRESET) {
3807 printk (KERN_ERR "airo: cmd= %x\n", pCmd->cmd);
3808 printk (KERN_ERR "airo: status= %x\n", pRsp->status);
3809 printk (KERN_ERR "airo: Rsp0= %x\n", pRsp->rsp0);
3810 printk (KERN_ERR "airo: Rsp1= %x\n", pRsp->rsp1);
3811 printk (KERN_ERR "airo: Rsp2= %x\n", pRsp->rsp2);
3814 // clear stuck command busy if necessary
3815 if (IN4500(ai, COMMAND) & COMMAND_BUSY) {
3816 OUT4500(ai, EVACK, EV_CLEARCOMMANDBUSY);
3818 // acknowledge processing the status/response
3819 OUT4500(ai, EVACK, EV_CMD);
3824 /* Sets up the bap to start exchange data. whichbap should
3825 * be one of the BAP0 or BAP1 defines. Locks should be held before
3827 static int bap_setup(struct airo_info *ai, u16 rid, u16 offset, int whichbap )
3832 OUT4500(ai, SELECT0+whichbap, rid);
3833 OUT4500(ai, OFFSET0+whichbap, offset);
3835 int status = IN4500(ai, OFFSET0+whichbap);
3836 if (status & BAP_BUSY) {
3837 /* This isn't really a timeout, but its kinda
3842 } else if ( status & BAP_ERR ) {
3843 /* invalid rid or offset */
3844 printk( KERN_ERR "airo: BAP error %x %d\n",
3847 } else if (status & BAP_DONE) { // success
3850 if ( !(max_tries--) ) {
3852 "airo: BAP setup error too many retries\n" );
3855 // -- PC4500 missed it, try again
3856 OUT4500(ai, SELECT0+whichbap, rid);
3857 OUT4500(ai, OFFSET0+whichbap, offset);
3862 /* should only be called by aux_bap_read. This aux function and the
3863 following use concepts not documented in the developers guide. I
3864 got them from a patch given to my by Aironet */
3865 static u16 aux_setup(struct airo_info *ai, u16 page,
3866 u16 offset, u16 *len)
3870 OUT4500(ai, AUXPAGE, page);
3871 OUT4500(ai, AUXOFF, 0);
3872 next = IN4500(ai, AUXDATA);
3873 *len = IN4500(ai, AUXDATA)&0xff;
3874 if (offset != 4) OUT4500(ai, AUXOFF, offset);
3878 /* requires call to bap_setup() first */
3879 static int aux_bap_read(struct airo_info *ai, u16 *pu16Dst,
3880 int bytelen, int whichbap)
3888 unsigned long flags;
3890 spin_lock_irqsave(&ai->aux_lock, flags);
3891 page = IN4500(ai, SWS0+whichbap);
3892 offset = IN4500(ai, SWS2+whichbap);
3893 next = aux_setup(ai, page, offset, &len);
3894 words = (bytelen+1)>>1;
3896 for (i=0; i<words;) {
3898 count = (len>>1) < (words-i) ? (len>>1) : (words-i);
3900 insw( ai->dev->base_addr+DATA0+whichbap,
3903 insb( ai->dev->base_addr+DATA0+whichbap,
3904 pu16Dst+i, count << 1 );
3907 next = aux_setup(ai, next, 4, &len);
3910 spin_unlock_irqrestore(&ai->aux_lock, flags);
3915 /* requires call to bap_setup() first */
3916 static int fast_bap_read(struct airo_info *ai, u16 *pu16Dst,
3917 int bytelen, int whichbap)
3919 bytelen = (bytelen + 1) & (~1); // round up to even value
3921 insw( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen>>1 );
3923 insb( ai->dev->base_addr+DATA0+whichbap, pu16Dst, bytelen );
3927 /* requires call to bap_setup() first */
3928 static int bap_write(struct airo_info *ai, const u16 *pu16Src,
3929 int bytelen, int whichbap)
3931 bytelen = (bytelen + 1) & (~1); // round up to even value
3933 outsw( ai->dev->base_addr+DATA0+whichbap,
3934 pu16Src, bytelen>>1 );
3936 outsb( ai->dev->base_addr+DATA0+whichbap, pu16Src, bytelen );
3940 static int PC4500_accessrid(struct airo_info *ai, u16 rid, u16 accmd)
3942 Cmd cmd; /* for issuing commands */
3943 Resp rsp; /* response from commands */
3946 memset(&cmd, 0, sizeof(cmd));
3949 status = issuecommand(ai, &cmd, &rsp);
3950 if (status != 0) return status;
3951 if ( (rsp.status & 0x7F00) != 0) {
3952 return (accmd << 8) + (rsp.rsp0 & 0xFF);
3957 /* Note, that we are using BAP1 which is also used by transmit, so
3958 * we must get a lock. */
3959 static int PC4500_readrid(struct airo_info *ai, u16 rid, void *pBuf, int len, int lock)
3965 if (down_interruptible(&ai->sem))
3968 if (test_bit(FLAG_MPI,&ai->flags)) {
3972 memset(&cmd, 0, sizeof(cmd));
3973 memset(&rsp, 0, sizeof(rsp));
3974 ai->config_desc.rid_desc.valid = 1;
3975 ai->config_desc.rid_desc.len = RIDSIZE;
3976 ai->config_desc.rid_desc.rid = 0;
3977 ai->config_desc.rid_desc.host_addr = ai->ridbus;
3979 cmd.cmd = CMD_ACCESS;
3982 memcpy_toio(ai->config_desc.card_ram_off,
3983 &ai->config_desc.rid_desc, sizeof(Rid));
3985 rc = issuecommand(ai, &cmd, &rsp);
3987 if (rsp.status & 0x7f00)
3990 memcpy(pBuf, ai->config_desc.virtual_host_addr, len);
3993 if ((status = PC4500_accessrid(ai, rid, CMD_ACCESS))!=SUCCESS) {
3997 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4001 // read the rid length field
4002 bap_read(ai, pBuf, 2, BAP1);
4003 // length for remaining part of rid
4004 len = min(len, (int)le16_to_cpu(*(u16*)pBuf)) - 2;
4008 "airo: Rid %x has a length of %d which is too short\n",
4009 (int)rid, (int)len );
4013 // read remainder of the rid
4014 rc = bap_read(ai, ((u16*)pBuf)+1, len, BAP1);
4022 /* Note, that we are using BAP1 which is also used by transmit, so
4023 * make sure this isnt called when a transmit is happening */
4024 static int PC4500_writerid(struct airo_info *ai, u16 rid,
4025 const void *pBuf, int len, int lock)
4030 *(u16*)pBuf = cpu_to_le16((u16)len);
4033 if (down_interruptible(&ai->sem))
4036 if (test_bit(FLAG_MPI,&ai->flags)) {
4040 if (test_bit(FLAG_ENABLED, &ai->flags))
4042 "%s: MAC should be disabled (rid=%04x)\n",
4044 memset(&cmd, 0, sizeof(cmd));
4045 memset(&rsp, 0, sizeof(rsp));
4047 ai->config_desc.rid_desc.valid = 1;
4048 ai->config_desc.rid_desc.len = *((u16 *)pBuf);
4049 ai->config_desc.rid_desc.rid = 0;
4051 cmd.cmd = CMD_WRITERID;
4054 memcpy_toio(ai->config_desc.card_ram_off,
4055 &ai->config_desc.rid_desc, sizeof(Rid));
4057 if (len < 4 || len > 2047) {
4058 printk(KERN_ERR "%s: len=%d\n",__FUNCTION__,len);
4061 memcpy((char *)ai->config_desc.virtual_host_addr,
4064 rc = issuecommand(ai, &cmd, &rsp);
4065 if ((rc & 0xff00) != 0) {
4066 printk(KERN_ERR "%s: Write rid Error %d\n",
4068 printk(KERN_ERR "%s: Cmd=%04x\n",
4069 __FUNCTION__,cmd.cmd);
4072 if ((rsp.status & 0x7f00))
4076 // --- first access so that we can write the rid data
4077 if ( (status = PC4500_accessrid(ai, rid, CMD_ACCESS)) != 0) {
4081 // --- now write the rid data
4082 if (bap_setup(ai, rid, 0, BAP1) != SUCCESS) {
4086 bap_write(ai, pBuf, len, BAP1);
4087 // ---now commit the rid data
4088 rc = PC4500_accessrid(ai, rid, 0x100|CMD_ACCESS);
4096 /* Allocates a FID to be used for transmitting packets. We only use
4098 static u16 transmit_allocate(struct airo_info *ai, int lenPayload, int raw)
4100 unsigned int loop = 3000;
4106 cmd.cmd = CMD_ALLOCATETX;
4107 cmd.parm0 = lenPayload;
4108 if (down_interruptible(&ai->sem))
4110 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) {
4114 if ( (rsp.status & 0xFF00) != 0) {
4118 /* wait for the allocate event/indication
4119 * It makes me kind of nervous that this can just sit here and spin,
4120 * but in practice it only loops like four times. */
4121 while (((IN4500(ai, EVSTAT) & EV_ALLOC) == 0) && --loop);
4127 // get the allocated fid and acknowledge
4128 txFid = IN4500(ai, TXALLOCFID);
4129 OUT4500(ai, EVACK, EV_ALLOC);
4131 /* The CARD is pretty cool since it converts the ethernet packet
4132 * into 802.11. Also note that we don't release the FID since we
4133 * will be using the same one over and over again. */
4134 /* We only have to setup the control once since we are not
4135 * releasing the fid. */
4137 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_11
4138 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4140 txControl = cpu_to_le16(TXCTL_TXOK | TXCTL_TXEX | TXCTL_802_3
4141 | TXCTL_ETHERNET | TXCTL_NORELEASE);
4142 if (bap_setup(ai, txFid, 0x0008, BAP1) != SUCCESS)
4145 bap_write(ai, &txControl, sizeof(txControl), BAP1);
4153 /* In general BAP1 is dedicated to transmiting packets. However,
4154 since we need a BAP when accessing RIDs, we also use BAP1 for that.
4155 Make sure the BAP1 spinlock is held when this is called. */
4156 static int transmit_802_3_packet(struct airo_info *ai, int len, char *pPacket)
4167 if (len <= ETH_ALEN * 2) {
4168 printk( KERN_WARNING "Short packet %d\n", len );
4171 len -= ETH_ALEN * 2;
4174 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags) && ai->micstats.enabled &&
4175 (ntohs(((u16 *)pPacket)[6]) != 0x888E)) {
4176 if (encapsulate(ai,(etherHead *)pPacket,&pMic,len) != SUCCESS)
4178 miclen = sizeof(pMic);
4182 // packet is destination[6], source[6], payload[len-12]
4183 // write the payload length and dst/src/payload
4184 if (bap_setup(ai, txFid, 0x0036, BAP1) != SUCCESS) return ERROR;
4185 /* The hardware addresses aren't counted as part of the payload, so
4186 * we have to subtract the 12 bytes for the addresses off */
4187 payloadLen = cpu_to_le16(len + miclen);
4188 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4189 bap_write(ai, (const u16*)pPacket, sizeof(etherHead), BAP1);
4191 bap_write(ai, (const u16*)&pMic, miclen, BAP1);
4192 bap_write(ai, (const u16*)(pPacket + sizeof(etherHead)), len, BAP1);
4193 // issue the transmit command
4194 memset( &cmd, 0, sizeof( cmd ) );
4195 cmd.cmd = CMD_TRANSMIT;
4197 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4198 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4202 static int transmit_802_11_packet(struct airo_info *ai, int len, char *pPacket)
4217 fc = le16_to_cpu(*(const u16*)pPacket);
4220 if ((fc & 0xe0) == 0xc0)
4226 if ((fc&0x300)==0x300){
4235 printk( KERN_WARNING "Short packet %d\n", len );
4239 /* packet is 802.11 header + payload
4240 * write the payload length and dst/src/payload */
4241 if (bap_setup(ai, txFid, 6, BAP1) != SUCCESS) return ERROR;
4242 /* The 802.11 header aren't counted as part of the payload, so
4243 * we have to subtract the header bytes off */
4244 payloadLen = cpu_to_le16(len-hdrlen);
4245 bap_write(ai, &payloadLen, sizeof(payloadLen),BAP1);
4246 if (bap_setup(ai, txFid, 0x0014, BAP1) != SUCCESS) return ERROR;
4247 bap_write(ai, (const u16*)pPacket, hdrlen, BAP1);
4248 bap_write(ai, hdrlen == 30 ?
4249 (const u16*)&gap.gaplen : (const u16*)&gap, 38 - hdrlen, BAP1);
4251 bap_write(ai, (const u16*)(pPacket + hdrlen), len - hdrlen, BAP1);
4252 // issue the transmit command
4253 memset( &cmd, 0, sizeof( cmd ) );
4254 cmd.cmd = CMD_TRANSMIT;
4256 if (issuecommand(ai, &cmd, &rsp) != SUCCESS) return ERROR;
4257 if ( (rsp.status & 0xFF00) != 0) return ERROR;
4262 * This is the proc_fs routines. It is a bit messier than I would
4263 * like! Feel free to clean it up!
4266 static ssize_t proc_read( struct file *file,
4267 char __user *buffer,
4271 static ssize_t proc_write( struct file *file,
4272 const char __user *buffer,
4275 static int proc_close( struct inode *inode, struct file *file );
4277 static int proc_stats_open( struct inode *inode, struct file *file );
4278 static int proc_statsdelta_open( struct inode *inode, struct file *file );
4279 static int proc_status_open( struct inode *inode, struct file *file );
4280 static int proc_SSID_open( struct inode *inode, struct file *file );
4281 static int proc_APList_open( struct inode *inode, struct file *file );
4282 static int proc_BSSList_open( struct inode *inode, struct file *file );
4283 static int proc_config_open( struct inode *inode, struct file *file );
4284 static int proc_wepkey_open( struct inode *inode, struct file *file );
4286 static struct file_operations proc_statsdelta_ops = {
4288 .open = proc_statsdelta_open,
4289 .release = proc_close
4292 static struct file_operations proc_stats_ops = {
4294 .open = proc_stats_open,
4295 .release = proc_close
4298 static struct file_operations proc_status_ops = {
4300 .open = proc_status_open,
4301 .release = proc_close
4304 static struct file_operations proc_SSID_ops = {
4306 .write = proc_write,
4307 .open = proc_SSID_open,
4308 .release = proc_close
4311 static struct file_operations proc_BSSList_ops = {
4313 .write = proc_write,
4314 .open = proc_BSSList_open,
4315 .release = proc_close
4318 static struct file_operations proc_APList_ops = {
4320 .write = proc_write,
4321 .open = proc_APList_open,
4322 .release = proc_close
4325 static struct file_operations proc_config_ops = {
4327 .write = proc_write,
4328 .open = proc_config_open,
4329 .release = proc_close
4332 static struct file_operations proc_wepkey_ops = {
4334 .write = proc_write,
4335 .open = proc_wepkey_open,
4336 .release = proc_close
4339 static struct proc_dir_entry *airo_entry;
4348 void (*on_close) (struct inode *, struct file *);
4352 #define SETPROC_OPS(entry, ops) (entry)->proc_fops = &(ops)
4355 static int setup_proc_entry( struct net_device *dev,
4356 struct airo_info *apriv ) {
4357 struct proc_dir_entry *entry;
4358 /* First setup the device directory */
4359 strcpy(apriv->proc_name,dev->name);
4360 apriv->proc_entry = create_proc_entry(apriv->proc_name,
4363 apriv->proc_entry->uid = proc_uid;
4364 apriv->proc_entry->gid = proc_gid;
4365 apriv->proc_entry->owner = THIS_MODULE;
4367 /* Setup the StatsDelta */
4368 entry = create_proc_entry("StatsDelta",
4369 S_IFREG | (S_IRUGO&proc_perm),
4371 entry->uid = proc_uid;
4372 entry->gid = proc_gid;
4374 entry->owner = THIS_MODULE;
4375 SETPROC_OPS(entry, proc_statsdelta_ops);
4377 /* Setup the Stats */
4378 entry = create_proc_entry("Stats",
4379 S_IFREG | (S_IRUGO&proc_perm),
4381 entry->uid = proc_uid;
4382 entry->gid = proc_gid;
4384 entry->owner = THIS_MODULE;
4385 SETPROC_OPS(entry, proc_stats_ops);
4387 /* Setup the Status */
4388 entry = create_proc_entry("Status",
4389 S_IFREG | (S_IRUGO&proc_perm),
4391 entry->uid = proc_uid;
4392 entry->gid = proc_gid;
4394 entry->owner = THIS_MODULE;
4395 SETPROC_OPS(entry, proc_status_ops);
4397 /* Setup the Config */
4398 entry = create_proc_entry("Config",
4399 S_IFREG | proc_perm,
4401 entry->uid = proc_uid;
4402 entry->gid = proc_gid;
4404 entry->owner = THIS_MODULE;
4405 SETPROC_OPS(entry, proc_config_ops);
4407 /* Setup the SSID */
4408 entry = create_proc_entry("SSID",
4409 S_IFREG | proc_perm,
4411 entry->uid = proc_uid;
4412 entry->gid = proc_gid;
4414 entry->owner = THIS_MODULE;
4415 SETPROC_OPS(entry, proc_SSID_ops);
4417 /* Setup the APList */
4418 entry = create_proc_entry("APList",
4419 S_IFREG | proc_perm,
4421 entry->uid = proc_uid;
4422 entry->gid = proc_gid;
4424 entry->owner = THIS_MODULE;
4425 SETPROC_OPS(entry, proc_APList_ops);
4427 /* Setup the BSSList */
4428 entry = create_proc_entry("BSSList",
4429 S_IFREG | proc_perm,
4431 entry->uid = proc_uid;
4432 entry->gid = proc_gid;
4434 entry->owner = THIS_MODULE;
4435 SETPROC_OPS(entry, proc_BSSList_ops);
4437 /* Setup the WepKey */
4438 entry = create_proc_entry("WepKey",
4439 S_IFREG | proc_perm,
4441 entry->uid = proc_uid;
4442 entry->gid = proc_gid;
4444 entry->owner = THIS_MODULE;
4445 SETPROC_OPS(entry, proc_wepkey_ops);
4450 static int takedown_proc_entry( struct net_device *dev,
4451 struct airo_info *apriv ) {
4452 if ( !apriv->proc_entry->namelen ) return 0;
4453 remove_proc_entry("Stats",apriv->proc_entry);
4454 remove_proc_entry("StatsDelta",apriv->proc_entry);
4455 remove_proc_entry("Status",apriv->proc_entry);
4456 remove_proc_entry("Config",apriv->proc_entry);
4457 remove_proc_entry("SSID",apriv->proc_entry);
4458 remove_proc_entry("APList",apriv->proc_entry);
4459 remove_proc_entry("BSSList",apriv->proc_entry);
4460 remove_proc_entry("WepKey",apriv->proc_entry);
4461 remove_proc_entry(apriv->proc_name,airo_entry);
4466 * What we want from the proc_fs is to be able to efficiently read
4467 * and write the configuration. To do this, we want to read the
4468 * configuration when the file is opened and write it when the file is
4469 * closed. So basically we allocate a read buffer at open and fill it
4470 * with data, and allocate a write buffer and read it at close.
4474 * The read routine is generic, it relies on the preallocated rbuffer
4475 * to supply the data.
4477 static ssize_t proc_read( struct file *file,
4478 char __user *buffer,
4482 loff_t pos = *offset;
4483 struct proc_data *priv = (struct proc_data*)file->private_data;
4490 if (pos >= priv->readlen)
4492 if (len > priv->readlen - pos)
4493 len = priv->readlen - pos;
4494 if (copy_to_user(buffer, priv->rbuffer + pos, len))
4496 *offset = pos + len;
4501 * The write routine is generic, it fills in a preallocated rbuffer
4502 * to supply the data.
4504 static ssize_t proc_write( struct file *file,
4505 const char __user *buffer,
4509 loff_t pos = *offset;
4510 struct proc_data *priv = (struct proc_data*)file->private_data;
4517 if (pos >= priv->maxwritelen)
4519 if (len > priv->maxwritelen - pos)
4520 len = priv->maxwritelen - pos;
4521 if (copy_from_user(priv->wbuffer + pos, buffer, len))
4523 if ( pos + len > priv->writelen )
4524 priv->writelen = len + file->f_pos;
4525 *offset = pos + len;
4529 static int proc_status_open( struct inode *inode, struct file *file ) {
4530 struct proc_data *data;
4531 struct proc_dir_entry *dp = PDE(inode);
4532 struct net_device *dev = dp->data;
4533 struct airo_info *apriv = dev->priv;
4534 CapabilityRid cap_rid;
4535 StatusRid status_rid;
4538 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4540 data = (struct proc_data *)file->private_data;
4541 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
4542 kfree (file->private_data);
4546 readStatusRid(apriv, &status_rid, 1);
4547 readCapabilityRid(apriv, &cap_rid, 1);
4549 i = sprintf(data->rbuffer, "Status: %s%s%s%s%s%s%s%s%s\n",
4550 status_rid.mode & 1 ? "CFG ": "",
4551 status_rid.mode & 2 ? "ACT ": "",
4552 status_rid.mode & 0x10 ? "SYN ": "",
4553 status_rid.mode & 0x20 ? "LNK ": "",
4554 status_rid.mode & 0x40 ? "LEAP ": "",
4555 status_rid.mode & 0x80 ? "PRIV ": "",
4556 status_rid.mode & 0x100 ? "KEY ": "",
4557 status_rid.mode & 0x200 ? "WEP ": "",
4558 status_rid.mode & 0x8000 ? "ERR ": "");
4559 sprintf( data->rbuffer+i, "Mode: %x\n"
4560 "Signal Strength: %d\n"
4561 "Signal Quality: %d\n"
4566 "Driver Version: %s\n"
4567 "Device: %s\nManufacturer: %s\nFirmware Version: %s\n"
4568 "Radio type: %x\nCountry: %x\nHardware Version: %x\n"
4569 "Software Version: %x\nSoftware Subversion: %x\n"
4570 "Boot block version: %x\n",
4571 (int)status_rid.mode,
4572 (int)status_rid.normalizedSignalStrength,
4573 (int)status_rid.signalQuality,
4574 (int)status_rid.SSIDlen,
4577 (int)status_rid.channel,
4578 (int)status_rid.currentXmitRate/2,
4586 (int)cap_rid.softVer,
4587 (int)cap_rid.softSubVer,
4588 (int)cap_rid.bootBlockVer );
4589 data->readlen = strlen( data->rbuffer );
4593 static int proc_stats_rid_open(struct inode*, struct file*, u16);
4594 static int proc_statsdelta_open( struct inode *inode,
4595 struct file *file ) {
4596 if (file->f_mode&FMODE_WRITE) {
4597 return proc_stats_rid_open(inode, file, RID_STATSDELTACLEAR);
4599 return proc_stats_rid_open(inode, file, RID_STATSDELTA);
4602 static int proc_stats_open( struct inode *inode, struct file *file ) {
4603 return proc_stats_rid_open(inode, file, RID_STATS);
4606 static int proc_stats_rid_open( struct inode *inode,
4609 struct proc_data *data;
4610 struct proc_dir_entry *dp = PDE(inode);
4611 struct net_device *dev = dp->data;
4612 struct airo_info *apriv = dev->priv;
4615 u32 *vals = stats.vals;
4617 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4619 data = (struct proc_data *)file->private_data;
4620 if ((data->rbuffer = kmalloc( 4096, GFP_KERNEL )) == NULL) {
4621 kfree (file->private_data);
4625 readStatsRid(apriv, &stats, rid, 1);
4628 for(i=0; statsLabels[i]!=(char *)-1 &&
4629 i*4<stats.len; i++){
4630 if (!statsLabels[i]) continue;
4631 if (j+strlen(statsLabels[i])+16>4096) {
4633 "airo: Potentially disasterous buffer overflow averted!\n");
4636 j+=sprintf(data->rbuffer+j, "%s: %u\n", statsLabels[i], vals[i]);
4638 if (i*4>=stats.len){
4640 "airo: Got a short rid\n");
4646 static int get_dec_u16( char *buffer, int *start, int limit ) {
4649 for( value = 0; buffer[*start] >= '0' &&
4650 buffer[*start] <= '9' &&
4651 *start < limit; (*start)++ ) {
4654 value += buffer[*start] - '0';
4656 if ( !valid ) return -1;
4660 static int airo_config_commit(struct net_device *dev,
4661 struct iw_request_info *info, void *zwrq,
4664 static void proc_config_on_close( struct inode *inode, struct file *file ) {
4665 struct proc_data *data = file->private_data;
4666 struct proc_dir_entry *dp = PDE(inode);
4667 struct net_device *dev = dp->data;
4668 struct airo_info *ai = dev->priv;
4671 if ( !data->writelen ) return;
4673 readConfigRid(ai, 1);
4674 set_bit (FLAG_COMMIT, &ai->flags);
4676 line = data->wbuffer;
4678 /*** Mode processing */
4679 if ( !strncmp( line, "Mode: ", 6 ) ) {
4681 if ((ai->config.rmode & 0xff) >= RXMODE_RFMON)
4682 set_bit (FLAG_RESET, &ai->flags);
4683 ai->config.rmode &= 0xfe00;
4684 clear_bit (FLAG_802_11, &ai->flags);
4685 ai->config.opmode &= 0xFF00;
4686 ai->config.scanMode = SCANMODE_ACTIVE;
4687 if ( line[0] == 'a' ) {
4688 ai->config.opmode |= 0;
4690 ai->config.opmode |= 1;
4691 if ( line[0] == 'r' ) {
4692 ai->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
4693 ai->config.scanMode = SCANMODE_PASSIVE;
4694 set_bit (FLAG_802_11, &ai->flags);
4695 } else if ( line[0] == 'y' ) {
4696 ai->config.rmode |= RXMODE_RFMON_ANYBSS | RXMODE_DISABLE_802_3_HEADER;
4697 ai->config.scanMode = SCANMODE_PASSIVE;
4698 set_bit (FLAG_802_11, &ai->flags);
4699 } else if ( line[0] == 'l' )
4700 ai->config.rmode |= RXMODE_LANMON;
4702 set_bit (FLAG_COMMIT, &ai->flags);
4705 /*** Radio status */
4706 else if (!strncmp(line,"Radio: ", 7)) {
4708 if (!strncmp(line,"off",3)) {
4709 set_bit (FLAG_RADIO_OFF, &ai->flags);
4711 clear_bit (FLAG_RADIO_OFF, &ai->flags);
4714 /*** NodeName processing */
4715 else if ( !strncmp( line, "NodeName: ", 10 ) ) {
4719 memset( ai->config.nodeName, 0, 16 );
4720 /* Do the name, assume a space between the mode and node name */
4721 for( j = 0; j < 16 && line[j] != '\n'; j++ ) {
4722 ai->config.nodeName[j] = line[j];
4724 set_bit (FLAG_COMMIT, &ai->flags);
4727 /*** PowerMode processing */
4728 else if ( !strncmp( line, "PowerMode: ", 11 ) ) {
4730 if ( !strncmp( line, "PSPCAM", 6 ) ) {
4731 ai->config.powerSaveMode = POWERSAVE_PSPCAM;
4732 set_bit (FLAG_COMMIT, &ai->flags);
4733 } else if ( !strncmp( line, "PSP", 3 ) ) {
4734 ai->config.powerSaveMode = POWERSAVE_PSP;
4735 set_bit (FLAG_COMMIT, &ai->flags);
4737 ai->config.powerSaveMode = POWERSAVE_CAM;
4738 set_bit (FLAG_COMMIT, &ai->flags);
4740 } else if ( !strncmp( line, "DataRates: ", 11 ) ) {
4741 int v, i = 0, k = 0; /* i is index into line,
4742 k is index to rates */
4745 while((v = get_dec_u16(line, &i, 3))!=-1) {
4746 ai->config.rates[k++] = (u8)v;
4750 set_bit (FLAG_COMMIT, &ai->flags);
4751 } else if ( !strncmp( line, "Channel: ", 9 ) ) {
4754 v = get_dec_u16(line, &i, i+3);
4756 ai->config.channelSet = (u16)v;
4757 set_bit (FLAG_COMMIT, &ai->flags);
4759 } else if ( !strncmp( line, "XmitPower: ", 11 ) ) {
4762 v = get_dec_u16(line, &i, i+3);
4764 ai->config.txPower = (u16)v;
4765 set_bit (FLAG_COMMIT, &ai->flags);
4767 } else if ( !strncmp( line, "WEP: ", 5 ) ) {
4771 ai->config.authType = (u16)AUTH_SHAREDKEY;
4774 ai->config.authType = (u16)AUTH_ENCRYPT;
4777 ai->config.authType = (u16)AUTH_OPEN;
4780 set_bit (FLAG_COMMIT, &ai->flags);
4781 } else if ( !strncmp( line, "LongRetryLimit: ", 16 ) ) {
4785 v = get_dec_u16(line, &i, 3);
4786 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4787 ai->config.longRetryLimit = (u16)v;
4788 set_bit (FLAG_COMMIT, &ai->flags);
4789 } else if ( !strncmp( line, "ShortRetryLimit: ", 17 ) ) {
4793 v = get_dec_u16(line, &i, 3);
4794 v = (v<0) ? 0 : ((v>255) ? 255 : v);
4795 ai->config.shortRetryLimit = (u16)v;
4796 set_bit (FLAG_COMMIT, &ai->flags);
4797 } else if ( !strncmp( line, "RTSThreshold: ", 14 ) ) {
4801 v = get_dec_u16(line, &i, 4);
4802 v = (v<0) ? 0 : ((v>2312) ? 2312 : v);
4803 ai->config.rtsThres = (u16)v;
4804 set_bit (FLAG_COMMIT, &ai->flags);
4805 } else if ( !strncmp( line, "TXMSDULifetime: ", 16 ) ) {
4809 v = get_dec_u16(line, &i, 5);
4811 ai->config.txLifetime = (u16)v;
4812 set_bit (FLAG_COMMIT, &ai->flags);
4813 } else if ( !strncmp( line, "RXMSDULifetime: ", 16 ) ) {
4817 v = get_dec_u16(line, &i, 5);
4819 ai->config.rxLifetime = (u16)v;
4820 set_bit (FLAG_COMMIT, &ai->flags);
4821 } else if ( !strncmp( line, "TXDiversity: ", 13 ) ) {
4822 ai->config.txDiversity =
4823 (line[13]=='l') ? 1 :
4824 ((line[13]=='r')? 2: 3);
4825 set_bit (FLAG_COMMIT, &ai->flags);
4826 } else if ( !strncmp( line, "RXDiversity: ", 13 ) ) {
4827 ai->config.rxDiversity =
4828 (line[13]=='l') ? 1 :
4829 ((line[13]=='r')? 2: 3);
4830 set_bit (FLAG_COMMIT, &ai->flags);
4831 } else if ( !strncmp( line, "FragThreshold: ", 15 ) ) {
4835 v = get_dec_u16(line, &i, 4);
4836 v = (v<256) ? 256 : ((v>2312) ? 2312 : v);
4837 v = v & 0xfffe; /* Make sure its even */
4838 ai->config.fragThresh = (u16)v;
4839 set_bit (FLAG_COMMIT, &ai->flags);
4840 } else if (!strncmp(line, "Modulation: ", 12)) {
4843 case 'd': ai->config.modulation=MOD_DEFAULT; set_bit(FLAG_COMMIT, &ai->flags); break;
4844 case 'c': ai->config.modulation=MOD_CCK; set_bit(FLAG_COMMIT, &ai->flags); break;
4845 case 'm': ai->config.modulation=MOD_MOK; set_bit(FLAG_COMMIT, &ai->flags); break;
4847 printk( KERN_WARNING "airo: Unknown modulation\n" );
4849 } else if (!strncmp(line, "Preamble: ", 10)) {
4852 case 'a': ai->config.preamble=PREAMBLE_AUTO; set_bit(FLAG_COMMIT, &ai->flags); break;
4853 case 'l': ai->config.preamble=PREAMBLE_LONG; set_bit(FLAG_COMMIT, &ai->flags); break;
4854 case 's': ai->config.preamble=PREAMBLE_SHORT; set_bit(FLAG_COMMIT, &ai->flags); break;
4855 default: printk(KERN_WARNING "airo: Unknown preamble\n");
4858 printk( KERN_WARNING "Couldn't figure out %s\n", line );
4860 while( line[0] && line[0] != '\n' ) line++;
4861 if ( line[0] ) line++;
4863 airo_config_commit(dev, NULL, NULL, NULL);
4866 static char *get_rmode(u16 mode) {
4868 case RXMODE_RFMON: return "rfmon";
4869 case RXMODE_RFMON_ANYBSS: return "yna (any) bss rfmon";
4870 case RXMODE_LANMON: return "lanmon";
4875 static int proc_config_open( struct inode *inode, struct file *file ) {
4876 struct proc_data *data;
4877 struct proc_dir_entry *dp = PDE(inode);
4878 struct net_device *dev = dp->data;
4879 struct airo_info *ai = dev->priv;
4882 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
4884 data = (struct proc_data *)file->private_data;
4885 if ((data->rbuffer = kmalloc( 2048, GFP_KERNEL )) == NULL) {
4886 kfree (file->private_data);
4889 if ((data->wbuffer = kzalloc( 2048, GFP_KERNEL )) == NULL) {
4890 kfree (data->rbuffer);
4891 kfree (file->private_data);
4894 data->maxwritelen = 2048;
4895 data->on_close = proc_config_on_close;
4897 readConfigRid(ai, 1);
4899 i = sprintf( data->rbuffer,
4904 "DataRates: %d %d %d %d %d %d %d %d\n"
4907 (ai->config.opmode & 0xFF) == 0 ? "adhoc" :
4908 (ai->config.opmode & 0xFF) == 1 ? get_rmode(ai->config.rmode):
4909 (ai->config.opmode & 0xFF) == 2 ? "AP" :
4910 (ai->config.opmode & 0xFF) == 3 ? "AP RPTR" : "Error",
4911 test_bit(FLAG_RADIO_OFF, &ai->flags) ? "off" : "on",
4912 ai->config.nodeName,
4913 ai->config.powerSaveMode == 0 ? "CAM" :
4914 ai->config.powerSaveMode == 1 ? "PSP" :
4915 ai->config.powerSaveMode == 2 ? "PSPCAM" : "Error",
4916 (int)ai->config.rates[0],
4917 (int)ai->config.rates[1],
4918 (int)ai->config.rates[2],
4919 (int)ai->config.rates[3],
4920 (int)ai->config.rates[4],
4921 (int)ai->config.rates[5],
4922 (int)ai->config.rates[6],
4923 (int)ai->config.rates[7],
4924 (int)ai->config.channelSet,
4925 (int)ai->config.txPower
4927 sprintf( data->rbuffer + i,
4928 "LongRetryLimit: %d\n"
4929 "ShortRetryLimit: %d\n"
4930 "RTSThreshold: %d\n"
4931 "TXMSDULifetime: %d\n"
4932 "RXMSDULifetime: %d\n"
4935 "FragThreshold: %d\n"
4939 (int)ai->config.longRetryLimit,
4940 (int)ai->config.shortRetryLimit,
4941 (int)ai->config.rtsThres,
4942 (int)ai->config.txLifetime,
4943 (int)ai->config.rxLifetime,
4944 ai->config.txDiversity == 1 ? "left" :
4945 ai->config.txDiversity == 2 ? "right" : "both",
4946 ai->config.rxDiversity == 1 ? "left" :
4947 ai->config.rxDiversity == 2 ? "right" : "both",
4948 (int)ai->config.fragThresh,
4949 ai->config.authType == AUTH_ENCRYPT ? "encrypt" :
4950 ai->config.authType == AUTH_SHAREDKEY ? "shared" : "open",
4951 ai->config.modulation == 0 ? "default" :
4952 ai->config.modulation == MOD_CCK ? "cck" :
4953 ai->config.modulation == MOD_MOK ? "mok" : "error",
4954 ai->config.preamble == PREAMBLE_AUTO ? "auto" :
4955 ai->config.preamble == PREAMBLE_LONG ? "long" :
4956 ai->config.preamble == PREAMBLE_SHORT ? "short" : "error"
4958 data->readlen = strlen( data->rbuffer );
4962 static void proc_SSID_on_close( struct inode *inode, struct file *file ) {
4963 struct proc_data *data = (struct proc_data *)file->private_data;
4964 struct proc_dir_entry *dp = PDE(inode);
4965 struct net_device *dev = dp->data;
4966 struct airo_info *ai = dev->priv;
4972 if ( !data->writelen ) return;
4974 memset( &SSID_rid, 0, sizeof( SSID_rid ) );
4976 for( i = 0; i < 3; i++ ) {
4978 for( j = 0; j+offset < data->writelen && j < 32 &&
4979 data->wbuffer[offset+j] != '\n'; j++ ) {
4980 SSID_rid.ssids[i].ssid[j] = data->wbuffer[offset+j];
4982 if ( j == 0 ) break;
4983 SSID_rid.ssids[i].len = j;
4985 while( data->wbuffer[offset] != '\n' &&
4986 offset < data->writelen ) offset++;
4990 SSID_rid.len = sizeof(SSID_rid);
4992 writeSsidRid(ai, &SSID_rid, 1);
4993 enable_MAC(ai, &rsp, 1);
4996 static inline u8 hexVal(char c) {
4997 if (c>='0' && c<='9') return c -= '0';
4998 if (c>='a' && c<='f') return c -= 'a'-10;
4999 if (c>='A' && c<='F') return c -= 'A'-10;
5003 static void proc_APList_on_close( struct inode *inode, struct file *file ) {
5004 struct proc_data *data = (struct proc_data *)file->private_data;
5005 struct proc_dir_entry *dp = PDE(inode);
5006 struct net_device *dev = dp->data;
5007 struct airo_info *ai = dev->priv;
5008 APListRid APList_rid;
5012 if ( !data->writelen ) return;
5014 memset( &APList_rid, 0, sizeof(APList_rid) );
5015 APList_rid.len = sizeof(APList_rid);
5017 for( i = 0; i < 4 && data->writelen >= (i+1)*6*3; i++ ) {
5019 for( j = 0; j < 6*3 && data->wbuffer[j+i*6*3]; j++ ) {
5022 APList_rid.ap[i][j/3]=
5023 hexVal(data->wbuffer[j+i*6*3])<<4;
5026 APList_rid.ap[i][j/3]|=
5027 hexVal(data->wbuffer[j+i*6*3]);
5033 writeAPListRid(ai, &APList_rid, 1);
5034 enable_MAC(ai, &rsp, 1);
5037 /* This function wraps PC4500_writerid with a MAC disable */
5038 static int do_writerid( struct airo_info *ai, u16 rid, const void *rid_data,
5039 int len, int dummy ) {
5044 rc = PC4500_writerid(ai, rid, rid_data, len, 1);
5045 enable_MAC(ai, &rsp, 1);
5049 /* Returns the length of the key at the index. If index == 0xffff
5050 * the index of the transmit key is returned. If the key doesn't exist,
5051 * -1 will be returned.
5053 static int get_wep_key(struct airo_info *ai, u16 index) {
5058 rc = readWepKeyRid(ai, &wkr, 1, 1);
5059 if (rc == SUCCESS) do {
5060 lastindex = wkr.kindex;
5061 if (wkr.kindex == index) {
5062 if (index == 0xffff) {
5067 readWepKeyRid(ai, &wkr, 0, 1);
5068 } while(lastindex != wkr.kindex);
5072 static int set_wep_key(struct airo_info *ai, u16 index,
5073 const char *key, u16 keylen, int perm, int lock ) {
5074 static const unsigned char macaddr[ETH_ALEN] = { 0x01, 0, 0, 0, 0, 0 };
5078 memset(&wkr, 0, sizeof(wkr));
5080 // We are selecting which key to use
5081 wkr.len = sizeof(wkr);
5082 wkr.kindex = 0xffff;
5083 wkr.mac[0] = (char)index;
5084 if (perm) printk(KERN_INFO "Setting transmit key to %d\n", index);
5085 if (perm) ai->defindex = (char)index;
5087 // We are actually setting the key
5088 wkr.len = sizeof(wkr);
5091 memcpy( wkr.key, key, keylen );
5092 memcpy( wkr.mac, macaddr, ETH_ALEN );
5093 printk(KERN_INFO "Setting key %d\n", index);
5096 disable_MAC(ai, lock);
5097 writeWepKeyRid(ai, &wkr, perm, lock);
5098 enable_MAC(ai, &rsp, lock);
5102 static void proc_wepkey_on_close( struct inode *inode, struct file *file ) {
5103 struct proc_data *data;
5104 struct proc_dir_entry *dp = PDE(inode);
5105 struct net_device *dev = dp->data;
5106 struct airo_info *ai = dev->priv;
5112 memset(key, 0, sizeof(key));
5114 data = (struct proc_data *)file->private_data;
5115 if ( !data->writelen ) return;
5117 if (data->wbuffer[0] >= '0' && data->wbuffer[0] <= '3' &&
5118 (data->wbuffer[1] == ' ' || data->wbuffer[1] == '\n')) {
5119 index = data->wbuffer[0] - '0';
5120 if (data->wbuffer[1] == '\n') {
5121 set_wep_key(ai, index, NULL, 0, 1, 1);
5126 printk(KERN_ERR "airo: WepKey passed invalid key index\n");
5130 for( i = 0; i < 16*3 && data->wbuffer[i+j]; i++ ) {
5133 key[i/3] = hexVal(data->wbuffer[i+j])<<4;
5136 key[i/3] |= hexVal(data->wbuffer[i+j]);
5140 set_wep_key(ai, index, key, i/3, 1, 1);
5143 static int proc_wepkey_open( struct inode *inode, struct file *file ) {
5144 struct proc_data *data;
5145 struct proc_dir_entry *dp = PDE(inode);
5146 struct net_device *dev = dp->data;
5147 struct airo_info *ai = dev->priv;
5154 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5156 memset(&wkr, 0, sizeof(wkr));
5157 data = (struct proc_data *)file->private_data;
5158 if ((data->rbuffer = kzalloc( 180, GFP_KERNEL )) == NULL) {
5159 kfree (file->private_data);
5163 data->maxwritelen = 80;
5164 if ((data->wbuffer = kzalloc( 80, GFP_KERNEL )) == NULL) {
5165 kfree (data->rbuffer);
5166 kfree (file->private_data);
5169 data->on_close = proc_wepkey_on_close;
5171 ptr = data->rbuffer;
5172 strcpy(ptr, "No wep keys\n");
5173 rc = readWepKeyRid(ai, &wkr, 1, 1);
5174 if (rc == SUCCESS) do {
5175 lastindex = wkr.kindex;
5176 if (wkr.kindex == 0xffff) {
5177 j += sprintf(ptr+j, "Tx key = %d\n",
5180 j += sprintf(ptr+j, "Key %d set with length = %d\n",
5181 (int)wkr.kindex, (int)wkr.klen);
5183 readWepKeyRid(ai, &wkr, 0, 1);
5184 } while((lastindex != wkr.kindex) && (j < 180-30));
5186 data->readlen = strlen( data->rbuffer );
5190 static int proc_SSID_open( struct inode *inode, struct file *file ) {
5191 struct proc_data *data;
5192 struct proc_dir_entry *dp = PDE(inode);
5193 struct net_device *dev = dp->data;
5194 struct airo_info *ai = dev->priv;
5199 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5201 data = (struct proc_data *)file->private_data;
5202 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5203 kfree (file->private_data);
5207 data->maxwritelen = 33*3;
5208 if ((data->wbuffer = kzalloc( 33*3, GFP_KERNEL )) == NULL) {
5209 kfree (data->rbuffer);
5210 kfree (file->private_data);
5213 data->on_close = proc_SSID_on_close;
5215 readSsidRid(ai, &SSID_rid);
5216 ptr = data->rbuffer;
5217 for( i = 0; i < 3; i++ ) {
5219 if ( !SSID_rid.ssids[i].len ) break;
5220 for( j = 0; j < 32 &&
5221 j < SSID_rid.ssids[i].len &&
5222 SSID_rid.ssids[i].ssid[j]; j++ ) {
5223 *ptr++ = SSID_rid.ssids[i].ssid[j];
5228 data->readlen = strlen( data->rbuffer );
5232 static int proc_APList_open( struct inode *inode, struct file *file ) {
5233 struct proc_data *data;
5234 struct proc_dir_entry *dp = PDE(inode);
5235 struct net_device *dev = dp->data;
5236 struct airo_info *ai = dev->priv;
5239 APListRid APList_rid;
5241 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5243 data = (struct proc_data *)file->private_data;
5244 if ((data->rbuffer = kmalloc( 104, GFP_KERNEL )) == NULL) {
5245 kfree (file->private_data);
5249 data->maxwritelen = 4*6*3;
5250 if ((data->wbuffer = kzalloc( data->maxwritelen, GFP_KERNEL )) == NULL) {
5251 kfree (data->rbuffer);
5252 kfree (file->private_data);
5255 data->on_close = proc_APList_on_close;
5257 readAPListRid(ai, &APList_rid);
5258 ptr = data->rbuffer;
5259 for( i = 0; i < 4; i++ ) {
5260 // We end when we find a zero MAC
5261 if ( !*(int*)APList_rid.ap[i] &&
5262 !*(int*)&APList_rid.ap[i][2]) break;
5263 ptr += sprintf(ptr, "%02x:%02x:%02x:%02x:%02x:%02x\n",
5264 (int)APList_rid.ap[i][0],
5265 (int)APList_rid.ap[i][1],
5266 (int)APList_rid.ap[i][2],
5267 (int)APList_rid.ap[i][3],
5268 (int)APList_rid.ap[i][4],
5269 (int)APList_rid.ap[i][5]);
5271 if (i==0) ptr += sprintf(ptr, "Not using specific APs\n");
5274 data->readlen = strlen( data->rbuffer );
5278 static int proc_BSSList_open( struct inode *inode, struct file *file ) {
5279 struct proc_data *data;
5280 struct proc_dir_entry *dp = PDE(inode);
5281 struct net_device *dev = dp->data;
5282 struct airo_info *ai = dev->priv;
5284 BSSListRid BSSList_rid;
5286 /* If doLoseSync is not 1, we won't do a Lose Sync */
5287 int doLoseSync = -1;
5289 if ((file->private_data = kzalloc(sizeof(struct proc_data ), GFP_KERNEL)) == NULL)
5291 data = (struct proc_data *)file->private_data;
5292 if ((data->rbuffer = kmalloc( 1024, GFP_KERNEL )) == NULL) {
5293 kfree (file->private_data);
5297 data->maxwritelen = 0;
5298 data->wbuffer = NULL;
5299 data->on_close = NULL;
5301 if (file->f_mode & FMODE_WRITE) {
5302 if (!(file->f_mode & FMODE_READ)) {
5306 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
5307 memset(&cmd, 0, sizeof(cmd));
5308 cmd.cmd=CMD_LISTBSS;
5309 if (down_interruptible(&ai->sem))
5310 return -ERESTARTSYS;
5311 issuecommand(ai, &cmd, &rsp);
5318 ptr = data->rbuffer;
5319 /* There is a race condition here if there are concurrent opens.
5320 Since it is a rare condition, we'll just live with it, otherwise
5321 we have to add a spin lock... */
5322 rc = readBSSListRid(ai, doLoseSync, &BSSList_rid);
5323 while(rc == 0 && BSSList_rid.index != 0xffff) {
5324 ptr += sprintf(ptr, "%02x:%02x:%02x:%02x:%02x:%02x %*s rssi = %d",
5325 (int)BSSList_rid.bssid[0],
5326 (int)BSSList_rid.bssid[1],
5327 (int)BSSList_rid.bssid[2],
5328 (int)BSSList_rid.bssid[3],
5329 (int)BSSList_rid.bssid[4],
5330 (int)BSSList_rid.bssid[5],
5331 (int)BSSList_rid.ssidLen,
5333 (int)BSSList_rid.dBm);
5334 ptr += sprintf(ptr, " channel = %d %s %s %s %s\n",
5335 (int)BSSList_rid.dsChannel,
5336 BSSList_rid.cap & CAP_ESS ? "ESS" : "",
5337 BSSList_rid.cap & CAP_IBSS ? "adhoc" : "",
5338 BSSList_rid.cap & CAP_PRIVACY ? "wep" : "",
5339 BSSList_rid.cap & CAP_SHORTHDR ? "shorthdr" : "");
5340 rc = readBSSListRid(ai, 0, &BSSList_rid);
5343 data->readlen = strlen( data->rbuffer );
5347 static int proc_close( struct inode *inode, struct file *file )
5349 struct proc_data *data = file->private_data;
5351 if (data->on_close != NULL)
5352 data->on_close(inode, file);
5353 kfree(data->rbuffer);
5354 kfree(data->wbuffer);
5359 static struct net_device_list {
5360 struct net_device *dev;
5361 struct net_device_list *next;
5364 /* Since the card doesn't automatically switch to the right WEP mode,
5365 we will make it do it. If the card isn't associated, every secs we
5366 will switch WEP modes to see if that will help. If the card is
5367 associated we will check every minute to see if anything has
5369 static void timer_func( struct net_device *dev ) {
5370 struct airo_info *apriv = dev->priv;
5373 /* We don't have a link so try changing the authtype */
5374 readConfigRid(apriv, 0);
5375 disable_MAC(apriv, 0);
5376 switch(apriv->config.authType) {
5378 /* So drop to OPEN */
5379 apriv->config.authType = AUTH_OPEN;
5381 case AUTH_SHAREDKEY:
5382 if (apriv->keyindex < auto_wep) {
5383 set_wep_key(apriv, apriv->keyindex, NULL, 0, 0, 0);
5384 apriv->config.authType = AUTH_SHAREDKEY;
5387 /* Drop to ENCRYPT */
5388 apriv->keyindex = 0;
5389 set_wep_key(apriv, apriv->defindex, NULL, 0, 0, 0);
5390 apriv->config.authType = AUTH_ENCRYPT;
5393 default: /* We'll escalate to SHAREDKEY */
5394 apriv->config.authType = AUTH_SHAREDKEY;
5396 set_bit (FLAG_COMMIT, &apriv->flags);
5397 writeConfigRid(apriv, 0);
5398 enable_MAC(apriv, &rsp, 0);
5401 /* Schedule check to see if the change worked */
5402 clear_bit(JOB_AUTOWEP, &apriv->flags);
5403 apriv->expires = RUN_AT(HZ*3);
5406 static int add_airo_dev( struct net_device *dev ) {
5407 struct net_device_list *node = kmalloc( sizeof( *node ), GFP_KERNEL );
5412 node->next = airo_devices;
5413 airo_devices = node;
5418 static void del_airo_dev( struct net_device *dev ) {
5419 struct net_device_list **p = &airo_devices;
5420 while( *p && ( (*p)->dev != dev ) )
5422 if ( *p && (*p)->dev == dev )
5427 static int __devinit airo_pci_probe(struct pci_dev *pdev,
5428 const struct pci_device_id *pent)
5430 struct net_device *dev;
5432 if (pci_enable_device(pdev))
5434 pci_set_master(pdev);
5436 if (pdev->device == 0x5000 || pdev->device == 0xa504)
5437 dev = _init_airo_card(pdev->irq, pdev->resource[0].start, 0, pdev, &pdev->dev);
5439 dev = _init_airo_card(pdev->irq, pdev->resource[2].start, 0, pdev, &pdev->dev);
5443 pci_set_drvdata(pdev, dev);
5447 static void __devexit airo_pci_remove(struct pci_dev *pdev)
5451 static int airo_pci_suspend(struct pci_dev *pdev, pm_message_t state)
5453 struct net_device *dev = pci_get_drvdata(pdev);
5454 struct airo_info *ai = dev->priv;
5458 if ((ai->APList == NULL) &&
5459 (ai->APList = kmalloc(sizeof(APListRid), GFP_KERNEL)) == NULL)
5461 if ((ai->SSID == NULL) &&
5462 (ai->SSID = kmalloc(sizeof(SsidRid), GFP_KERNEL)) == NULL)
5464 readAPListRid(ai, ai->APList);
5465 readSsidRid(ai, ai->SSID);
5466 memset(&cmd, 0, sizeof(cmd));
5467 /* the lock will be released at the end of the resume callback */
5468 if (down_interruptible(&ai->sem))
5471 netif_device_detach(dev);
5474 issuecommand(ai, &cmd, &rsp);
5476 pci_enable_wake(pdev, pci_choose_state(pdev, state), 1);
5477 pci_save_state(pdev);
5478 return pci_set_power_state(pdev, pci_choose_state(pdev, state));
5481 static int airo_pci_resume(struct pci_dev *pdev)
5483 struct net_device *dev = pci_get_drvdata(pdev);
5484 struct airo_info *ai = dev->priv;
5486 pci_power_t prev_state = pdev->current_state;
5488 pci_set_power_state(pdev, PCI_D0);
5489 pci_restore_state(pdev);
5490 pci_enable_wake(pdev, PCI_D0, 0);
5492 if (prev_state != PCI_D1) {
5494 mpi_init_descriptors(ai);
5495 setup_card(ai, dev->dev_addr, 0);
5496 clear_bit(FLAG_RADIO_OFF, &ai->flags);
5497 clear_bit(FLAG_PENDING_XMIT, &ai->flags);
5499 OUT4500(ai, EVACK, EV_AWAKEN);
5500 OUT4500(ai, EVACK, EV_AWAKEN);
5504 set_bit (FLAG_COMMIT, &ai->flags);
5508 writeSsidRid(ai, ai->SSID, 0);
5513 writeAPListRid(ai, ai->APList, 0);
5517 writeConfigRid(ai, 0);
5518 enable_MAC(ai, &rsp, 0);
5519 ai->power = PMSG_ON;
5520 netif_device_attach(dev);
5521 netif_wake_queue(dev);
5522 enable_interrupts(ai);
5528 static int __init airo_init_module( void )
5530 int i, have_isa_dev = 0;
5532 airo_entry = create_proc_entry("aironet",
5533 S_IFDIR | airo_perm,
5535 airo_entry->uid = proc_uid;
5536 airo_entry->gid = proc_gid;
5538 for( i = 0; i < 4 && io[i] && irq[i]; i++ ) {
5540 "airo: Trying to configure ISA adapter at irq=%d io=0x%x\n",
5542 if (init_airo_card( irq[i], io[i], 0, NULL ))
5547 printk( KERN_INFO "airo: Probing for PCI adapters\n" );
5548 pci_register_driver(&airo_driver);
5549 printk( KERN_INFO "airo: Finished probing for PCI adapters\n" );
5552 /* Always exit with success, as we are a library module
5553 * as well as a driver module
5558 static void __exit airo_cleanup_module( void )
5560 while( airo_devices ) {
5561 printk( KERN_INFO "airo: Unregistering %s\n", airo_devices->dev->name );
5562 stop_airo_card( airo_devices->dev, 1 );
5565 pci_unregister_driver(&airo_driver);
5567 remove_proc_entry("aironet", proc_root_driver);
5571 * Initial Wireless Extension code for Aironet driver by :
5572 * Jean Tourrilhes <jt@hpl.hp.com> - HPL - 17 November 00
5573 * Conversion to new driver API by :
5574 * Jean Tourrilhes <jt@hpl.hp.com> - HPL - 26 March 02
5575 * Javier also did a good amount of work here, adding some new extensions
5576 * and fixing my code. Let's just say that without him this code just
5577 * would not work at all... - Jean II
5580 static u8 airo_rssi_to_dbm (tdsRssiEntry *rssi_rid, u8 rssi)
5585 return (0x100 - rssi_rid[rssi].rssidBm);
5588 static u8 airo_dbm_to_pct (tdsRssiEntry *rssi_rid, u8 dbm)
5595 for( i = 0; i < 256; i++ )
5596 if (rssi_rid[i].rssidBm == dbm)
5597 return rssi_rid[i].rssipct;
5603 static int airo_get_quality (StatusRid *status_rid, CapabilityRid *cap_rid)
5607 if ((status_rid->mode & 0x3f) == 0x3f && (cap_rid->hardCap & 8)) {
5608 if (memcmp(cap_rid->prodName, "350", 3))
5609 if (status_rid->signalQuality > 0x20)
5612 quality = 0x20 - status_rid->signalQuality;
5614 if (status_rid->signalQuality > 0xb0)
5616 else if (status_rid->signalQuality < 0x10)
5619 quality = 0xb0 - status_rid->signalQuality;
5624 #define airo_get_max_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x20 : 0xa0)
5625 #define airo_get_avg_quality(cap_rid) (memcmp((cap_rid)->prodName, "350", 3) ? 0x10 : 0x50);
5627 /*------------------------------------------------------------------*/
5629 * Wireless Handler : get protocol name
5631 static int airo_get_name(struct net_device *dev,
5632 struct iw_request_info *info,
5636 strcpy(cwrq, "IEEE 802.11-DS");
5640 /*------------------------------------------------------------------*/
5642 * Wireless Handler : set frequency
5644 static int airo_set_freq(struct net_device *dev,
5645 struct iw_request_info *info,
5646 struct iw_freq *fwrq,
5649 struct airo_info *local = dev->priv;
5650 int rc = -EINPROGRESS; /* Call commit handler */
5652 /* If setting by frequency, convert to a channel */
5653 if((fwrq->e == 1) &&
5654 (fwrq->m >= (int) 2.412e8) &&
5655 (fwrq->m <= (int) 2.487e8)) {
5656 int f = fwrq->m / 100000;
5658 while((c < 14) && (f != frequency_list[c]))
5660 /* Hack to fall through... */
5664 /* Setting by channel number */
5665 if((fwrq->m > 1000) || (fwrq->e > 0))
5668 int channel = fwrq->m;
5669 /* We should do a better check than that,
5670 * based on the card capability !!! */
5671 if((channel < 1) || (channel > 16)) {
5672 printk(KERN_DEBUG "%s: New channel value of %d is invalid!\n", dev->name, fwrq->m);
5675 readConfigRid(local, 1);
5676 /* Yes ! We can set it !!! */
5677 local->config.channelSet = (u16)(channel - 1);
5678 set_bit (FLAG_COMMIT, &local->flags);
5684 /*------------------------------------------------------------------*/
5686 * Wireless Handler : get frequency
5688 static int airo_get_freq(struct net_device *dev,
5689 struct iw_request_info *info,
5690 struct iw_freq *fwrq,
5693 struct airo_info *local = dev->priv;
5694 StatusRid status_rid; /* Card status info */
5696 readConfigRid(local, 1);
5697 if ((local->config.opmode & 0xFF) == MODE_STA_ESS)
5698 status_rid.channel = local->config.channelSet;
5700 readStatusRid(local, &status_rid, 1);
5702 #ifdef WEXT_USECHANNELS
5703 fwrq->m = ((int)status_rid.channel) + 1;
5707 int f = (int)status_rid.channel;
5708 fwrq->m = frequency_list[f] * 100000;
5716 /*------------------------------------------------------------------*/
5718 * Wireless Handler : set ESSID
5720 static int airo_set_essid(struct net_device *dev,
5721 struct iw_request_info *info,
5722 struct iw_point *dwrq,
5725 struct airo_info *local = dev->priv;
5727 SsidRid SSID_rid; /* SSIDs */
5729 /* Reload the list of current SSID */
5730 readSsidRid(local, &SSID_rid);
5732 /* Check if we asked for `any' */
5733 if(dwrq->flags == 0) {
5734 /* Just send an empty SSID list */
5735 memset(&SSID_rid, 0, sizeof(SSID_rid));
5737 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
5739 /* Check the size of the string */
5740 if(dwrq->length > IW_ESSID_MAX_SIZE+1) {
5743 /* Check if index is valid */
5744 if((index < 0) || (index >= 4)) {
5749 memset(SSID_rid.ssids[index].ssid, 0,
5750 sizeof(SSID_rid.ssids[index].ssid));
5751 memcpy(SSID_rid.ssids[index].ssid, extra, dwrq->length);
5752 SSID_rid.ssids[index].len = dwrq->length - 1;
5754 SSID_rid.len = sizeof(SSID_rid);
5755 /* Write it to the card */
5756 disable_MAC(local, 1);
5757 writeSsidRid(local, &SSID_rid, 1);
5758 enable_MAC(local, &rsp, 1);
5763 /*------------------------------------------------------------------*/
5765 * Wireless Handler : get ESSID
5767 static int airo_get_essid(struct net_device *dev,
5768 struct iw_request_info *info,
5769 struct iw_point *dwrq,
5772 struct airo_info *local = dev->priv;
5773 StatusRid status_rid; /* Card status info */
5775 readStatusRid(local, &status_rid, 1);
5777 /* Note : if dwrq->flags != 0, we should
5778 * get the relevant SSID from the SSID list... */
5780 /* Get the current SSID */
5781 memcpy(extra, status_rid.SSID, status_rid.SSIDlen);
5782 extra[status_rid.SSIDlen] = '\0';
5783 /* If none, we may want to get the one that was set */
5786 dwrq->length = status_rid.SSIDlen + 1;
5787 dwrq->flags = 1; /* active */
5792 /*------------------------------------------------------------------*/
5794 * Wireless Handler : set AP address
5796 static int airo_set_wap(struct net_device *dev,
5797 struct iw_request_info *info,
5798 struct sockaddr *awrq,
5801 struct airo_info *local = dev->priv;
5804 APListRid APList_rid;
5805 static const unsigned char bcast[ETH_ALEN] = { 255, 255, 255, 255, 255, 255 };
5807 if (awrq->sa_family != ARPHRD_ETHER)
5809 else if (!memcmp(bcast, awrq->sa_data, ETH_ALEN)) {
5810 memset(&cmd, 0, sizeof(cmd));
5811 cmd.cmd=CMD_LOSE_SYNC;
5812 if (down_interruptible(&local->sem))
5813 return -ERESTARTSYS;
5814 issuecommand(local, &cmd, &rsp);
5817 memset(&APList_rid, 0, sizeof(APList_rid));
5818 APList_rid.len = sizeof(APList_rid);
5819 memcpy(APList_rid.ap[0], awrq->sa_data, ETH_ALEN);
5820 disable_MAC(local, 1);
5821 writeAPListRid(local, &APList_rid, 1);
5822 enable_MAC(local, &rsp, 1);
5827 /*------------------------------------------------------------------*/
5829 * Wireless Handler : get AP address
5831 static int airo_get_wap(struct net_device *dev,
5832 struct iw_request_info *info,
5833 struct sockaddr *awrq,
5836 struct airo_info *local = dev->priv;
5837 StatusRid status_rid; /* Card status info */
5839 readStatusRid(local, &status_rid, 1);
5841 /* Tentative. This seems to work, wow, I'm lucky !!! */
5842 memcpy(awrq->sa_data, status_rid.bssid[0], ETH_ALEN);
5843 awrq->sa_family = ARPHRD_ETHER;
5848 /*------------------------------------------------------------------*/
5850 * Wireless Handler : set Nickname
5852 static int airo_set_nick(struct net_device *dev,
5853 struct iw_request_info *info,
5854 struct iw_point *dwrq,
5857 struct airo_info *local = dev->priv;
5859 /* Check the size of the string */
5860 if(dwrq->length > 16 + 1) {
5863 readConfigRid(local, 1);
5864 memset(local->config.nodeName, 0, sizeof(local->config.nodeName));
5865 memcpy(local->config.nodeName, extra, dwrq->length);
5866 set_bit (FLAG_COMMIT, &local->flags);
5868 return -EINPROGRESS; /* Call commit handler */
5871 /*------------------------------------------------------------------*/
5873 * Wireless Handler : get Nickname
5875 static int airo_get_nick(struct net_device *dev,
5876 struct iw_request_info *info,
5877 struct iw_point *dwrq,
5880 struct airo_info *local = dev->priv;
5882 readConfigRid(local, 1);
5883 strncpy(extra, local->config.nodeName, 16);
5885 dwrq->length = strlen(extra) + 1;
5890 /*------------------------------------------------------------------*/
5892 * Wireless Handler : set Bit-Rate
5894 static int airo_set_rate(struct net_device *dev,
5895 struct iw_request_info *info,
5896 struct iw_param *vwrq,
5899 struct airo_info *local = dev->priv;
5900 CapabilityRid cap_rid; /* Card capability info */
5904 /* First : get a valid bit rate value */
5905 readCapabilityRid(local, &cap_rid, 1);
5907 /* Which type of value ? */
5908 if((vwrq->value < 8) && (vwrq->value >= 0)) {
5909 /* Setting by rate index */
5910 /* Find value in the magic rate table */
5911 brate = cap_rid.supportedRates[vwrq->value];
5913 /* Setting by frequency value */
5914 u8 normvalue = (u8) (vwrq->value/500000);
5916 /* Check if rate is valid */
5917 for(i = 0 ; i < 8 ; i++) {
5918 if(normvalue == cap_rid.supportedRates[i]) {
5924 /* -1 designed the max rate (mostly auto mode) */
5925 if(vwrq->value == -1) {
5926 /* Get the highest available rate */
5927 for(i = 0 ; i < 8 ; i++) {
5928 if(cap_rid.supportedRates[i] == 0)
5932 brate = cap_rid.supportedRates[i - 1];
5934 /* Check that it is valid */
5939 readConfigRid(local, 1);
5940 /* Now, check if we want a fixed or auto value */
5941 if(vwrq->fixed == 0) {
5942 /* Fill all the rates up to this max rate */
5943 memset(local->config.rates, 0, 8);
5944 for(i = 0 ; i < 8 ; i++) {
5945 local->config.rates[i] = cap_rid.supportedRates[i];
5946 if(local->config.rates[i] == brate)
5951 /* One rate, fixed */
5952 memset(local->config.rates, 0, 8);
5953 local->config.rates[0] = brate;
5955 set_bit (FLAG_COMMIT, &local->flags);
5957 return -EINPROGRESS; /* Call commit handler */
5960 /*------------------------------------------------------------------*/
5962 * Wireless Handler : get Bit-Rate
5964 static int airo_get_rate(struct net_device *dev,
5965 struct iw_request_info *info,
5966 struct iw_param *vwrq,
5969 struct airo_info *local = dev->priv;
5970 StatusRid status_rid; /* Card status info */
5972 readStatusRid(local, &status_rid, 1);
5974 vwrq->value = status_rid.currentXmitRate * 500000;
5975 /* If more than one rate, set auto */
5976 readConfigRid(local, 1);
5977 vwrq->fixed = (local->config.rates[1] == 0);
5982 /*------------------------------------------------------------------*/
5984 * Wireless Handler : set RTS threshold
5986 static int airo_set_rts(struct net_device *dev,
5987 struct iw_request_info *info,
5988 struct iw_param *vwrq,
5991 struct airo_info *local = dev->priv;
5992 int rthr = vwrq->value;
5996 if((rthr < 0) || (rthr > 2312)) {
5999 readConfigRid(local, 1);
6000 local->config.rtsThres = rthr;
6001 set_bit (FLAG_COMMIT, &local->flags);
6003 return -EINPROGRESS; /* Call commit handler */
6006 /*------------------------------------------------------------------*/
6008 * Wireless Handler : get RTS threshold
6010 static int airo_get_rts(struct net_device *dev,
6011 struct iw_request_info *info,
6012 struct iw_param *vwrq,
6015 struct airo_info *local = dev->priv;
6017 readConfigRid(local, 1);
6018 vwrq->value = local->config.rtsThres;
6019 vwrq->disabled = (vwrq->value >= 2312);
6025 /*------------------------------------------------------------------*/
6027 * Wireless Handler : set Fragmentation threshold
6029 static int airo_set_frag(struct net_device *dev,
6030 struct iw_request_info *info,
6031 struct iw_param *vwrq,
6034 struct airo_info *local = dev->priv;
6035 int fthr = vwrq->value;
6039 if((fthr < 256) || (fthr > 2312)) {
6042 fthr &= ~0x1; /* Get an even value - is it really needed ??? */
6043 readConfigRid(local, 1);
6044 local->config.fragThresh = (u16)fthr;
6045 set_bit (FLAG_COMMIT, &local->flags);
6047 return -EINPROGRESS; /* Call commit handler */
6050 /*------------------------------------------------------------------*/
6052 * Wireless Handler : get Fragmentation threshold
6054 static int airo_get_frag(struct net_device *dev,
6055 struct iw_request_info *info,
6056 struct iw_param *vwrq,
6059 struct airo_info *local = dev->priv;
6061 readConfigRid(local, 1);
6062 vwrq->value = local->config.fragThresh;
6063 vwrq->disabled = (vwrq->value >= 2312);
6069 /*------------------------------------------------------------------*/
6071 * Wireless Handler : set Mode of Operation
6073 static int airo_set_mode(struct net_device *dev,
6074 struct iw_request_info *info,
6078 struct airo_info *local = dev->priv;
6081 readConfigRid(local, 1);
6082 if ((local->config.rmode & 0xff) >= RXMODE_RFMON)
6087 local->config.opmode &= 0xFF00;
6088 local->config.opmode |= MODE_STA_IBSS;
6089 local->config.rmode &= 0xfe00;
6090 local->config.scanMode = SCANMODE_ACTIVE;
6091 clear_bit (FLAG_802_11, &local->flags);
6094 local->config.opmode &= 0xFF00;
6095 local->config.opmode |= MODE_STA_ESS;
6096 local->config.rmode &= 0xfe00;
6097 local->config.scanMode = SCANMODE_ACTIVE;
6098 clear_bit (FLAG_802_11, &local->flags);
6100 case IW_MODE_MASTER:
6101 local->config.opmode &= 0xFF00;
6102 local->config.opmode |= MODE_AP;
6103 local->config.rmode &= 0xfe00;
6104 local->config.scanMode = SCANMODE_ACTIVE;
6105 clear_bit (FLAG_802_11, &local->flags);
6107 case IW_MODE_REPEAT:
6108 local->config.opmode &= 0xFF00;
6109 local->config.opmode |= MODE_AP_RPTR;
6110 local->config.rmode &= 0xfe00;
6111 local->config.scanMode = SCANMODE_ACTIVE;
6112 clear_bit (FLAG_802_11, &local->flags);
6114 case IW_MODE_MONITOR:
6115 local->config.opmode &= 0xFF00;
6116 local->config.opmode |= MODE_STA_ESS;
6117 local->config.rmode &= 0xfe00;
6118 local->config.rmode |= RXMODE_RFMON | RXMODE_DISABLE_802_3_HEADER;
6119 local->config.scanMode = SCANMODE_PASSIVE;
6120 set_bit (FLAG_802_11, &local->flags);
6126 set_bit (FLAG_RESET, &local->flags);
6127 set_bit (FLAG_COMMIT, &local->flags);
6129 return -EINPROGRESS; /* Call commit handler */
6132 /*------------------------------------------------------------------*/
6134 * Wireless Handler : get Mode of Operation
6136 static int airo_get_mode(struct net_device *dev,
6137 struct iw_request_info *info,
6141 struct airo_info *local = dev->priv;
6143 readConfigRid(local, 1);
6144 /* If not managed, assume it's ad-hoc */
6145 switch (local->config.opmode & 0xFF) {
6147 *uwrq = IW_MODE_INFRA;
6150 *uwrq = IW_MODE_MASTER;
6153 *uwrq = IW_MODE_REPEAT;
6156 *uwrq = IW_MODE_ADHOC;
6162 /*------------------------------------------------------------------*/
6164 * Wireless Handler : set Encryption Key
6166 static int airo_set_encode(struct net_device *dev,
6167 struct iw_request_info *info,
6168 struct iw_point *dwrq,
6171 struct airo_info *local = dev->priv;
6172 CapabilityRid cap_rid; /* Card capability info */
6174 /* Is WEP supported ? */
6175 readCapabilityRid(local, &cap_rid, 1);
6176 /* Older firmware doesn't support this...
6177 if(!(cap_rid.softCap & 2)) {
6180 readConfigRid(local, 1);
6182 /* Basic checking: do we have a key to set ?
6183 * Note : with the new API, it's impossible to get a NULL pointer.
6184 * Therefore, we need to check a key size == 0 instead.
6185 * New version of iwconfig properly set the IW_ENCODE_NOKEY flag
6186 * when no key is present (only change flags), but older versions
6187 * don't do it. - Jean II */
6188 if (dwrq->length > 0) {
6190 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6191 int current_index = get_wep_key(local, 0xffff);
6192 /* Check the size of the key */
6193 if (dwrq->length > MAX_KEY_SIZE) {
6196 /* Check the index (none -> use current) */
6197 if ((index < 0) || (index >= ((cap_rid.softCap & 0x80) ? 4:1)))
6198 index = current_index;
6199 /* Set the length */
6200 if (dwrq->length > MIN_KEY_SIZE)
6201 key.len = MAX_KEY_SIZE;
6203 if (dwrq->length > 0)
6204 key.len = MIN_KEY_SIZE;
6206 /* Disable the key */
6208 /* Check if the key is not marked as invalid */
6209 if(!(dwrq->flags & IW_ENCODE_NOKEY)) {
6211 memset(key.key, 0, MAX_KEY_SIZE);
6212 /* Copy the key in the driver */
6213 memcpy(key.key, extra, dwrq->length);
6214 /* Send the key to the card */
6215 set_wep_key(local, index, key.key, key.len, 1, 1);
6217 /* WE specify that if a valid key is set, encryption
6218 * should be enabled (user may turn it off later)
6219 * This is also how "iwconfig ethX key on" works */
6220 if((index == current_index) && (key.len > 0) &&
6221 (local->config.authType == AUTH_OPEN)) {
6222 local->config.authType = AUTH_ENCRYPT;
6223 set_bit (FLAG_COMMIT, &local->flags);
6226 /* Do we want to just set the transmit key index ? */
6227 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6228 if ((index >= 0) && (index < ((cap_rid.softCap & 0x80)?4:1))) {
6229 set_wep_key(local, index, NULL, 0, 1, 1);
6231 /* Don't complain if only change the mode */
6232 if(!dwrq->flags & IW_ENCODE_MODE) {
6236 /* Read the flags */
6237 if(dwrq->flags & IW_ENCODE_DISABLED)
6238 local->config.authType = AUTH_OPEN; // disable encryption
6239 if(dwrq->flags & IW_ENCODE_RESTRICTED)
6240 local->config.authType = AUTH_SHAREDKEY; // Only Both
6241 if(dwrq->flags & IW_ENCODE_OPEN)
6242 local->config.authType = AUTH_ENCRYPT; // Only Wep
6243 /* Commit the changes to flags if needed */
6244 if(dwrq->flags & IW_ENCODE_MODE)
6245 set_bit (FLAG_COMMIT, &local->flags);
6246 return -EINPROGRESS; /* Call commit handler */
6249 /*------------------------------------------------------------------*/
6251 * Wireless Handler : get Encryption Key
6253 static int airo_get_encode(struct net_device *dev,
6254 struct iw_request_info *info,
6255 struct iw_point *dwrq,
6258 struct airo_info *local = dev->priv;
6259 int index = (dwrq->flags & IW_ENCODE_INDEX) - 1;
6260 CapabilityRid cap_rid; /* Card capability info */
6262 /* Is it supported ? */
6263 readCapabilityRid(local, &cap_rid, 1);
6264 if(!(cap_rid.softCap & 2)) {
6267 readConfigRid(local, 1);
6268 /* Check encryption mode */
6269 switch(local->config.authType) {
6271 dwrq->flags = IW_ENCODE_OPEN;
6273 case AUTH_SHAREDKEY:
6274 dwrq->flags = IW_ENCODE_RESTRICTED;
6278 dwrq->flags = IW_ENCODE_DISABLED;
6281 /* We can't return the key, so set the proper flag and return zero */
6282 dwrq->flags |= IW_ENCODE_NOKEY;
6283 memset(extra, 0, 16);
6285 /* Which key do we want ? -1 -> tx index */
6286 if ((index < 0) || (index >= ((cap_rid.softCap & 0x80) ? 4 : 1)))
6287 index = get_wep_key(local, 0xffff);
6288 dwrq->flags |= index + 1;
6289 /* Copy the key to the user buffer */
6290 dwrq->length = get_wep_key(local, index);
6291 if (dwrq->length > 16) {
6297 /*------------------------------------------------------------------*/
6299 * Wireless Handler : set Tx-Power
6301 static int airo_set_txpow(struct net_device *dev,
6302 struct iw_request_info *info,
6303 struct iw_param *vwrq,
6306 struct airo_info *local = dev->priv;
6307 CapabilityRid cap_rid; /* Card capability info */
6311 readCapabilityRid(local, &cap_rid, 1);
6313 if (vwrq->disabled) {
6314 set_bit (FLAG_RADIO_OFF, &local->flags);
6315 set_bit (FLAG_COMMIT, &local->flags);
6316 return -EINPROGRESS; /* Call commit handler */
6318 if (vwrq->flags != IW_TXPOW_MWATT) {
6321 clear_bit (FLAG_RADIO_OFF, &local->flags);
6322 for (i = 0; cap_rid.txPowerLevels[i] && (i < 8); i++)
6323 if ((vwrq->value==cap_rid.txPowerLevels[i])) {
6324 readConfigRid(local, 1);
6325 local->config.txPower = vwrq->value;
6326 set_bit (FLAG_COMMIT, &local->flags);
6327 rc = -EINPROGRESS; /* Call commit handler */
6333 /*------------------------------------------------------------------*/
6335 * Wireless Handler : get Tx-Power
6337 static int airo_get_txpow(struct net_device *dev,
6338 struct iw_request_info *info,
6339 struct iw_param *vwrq,
6342 struct airo_info *local = dev->priv;
6344 readConfigRid(local, 1);
6345 vwrq->value = local->config.txPower;
6346 vwrq->fixed = 1; /* No power control */
6347 vwrq->disabled = test_bit(FLAG_RADIO_OFF, &local->flags);
6348 vwrq->flags = IW_TXPOW_MWATT;
6353 /*------------------------------------------------------------------*/
6355 * Wireless Handler : set Retry limits
6357 static int airo_set_retry(struct net_device *dev,
6358 struct iw_request_info *info,
6359 struct iw_param *vwrq,
6362 struct airo_info *local = dev->priv;
6365 if(vwrq->disabled) {
6368 readConfigRid(local, 1);
6369 if(vwrq->flags & IW_RETRY_LIMIT) {
6370 if(vwrq->flags & IW_RETRY_MAX)
6371 local->config.longRetryLimit = vwrq->value;
6372 else if (vwrq->flags & IW_RETRY_MIN)
6373 local->config.shortRetryLimit = vwrq->value;
6375 /* No modifier : set both */
6376 local->config.longRetryLimit = vwrq->value;
6377 local->config.shortRetryLimit = vwrq->value;
6379 set_bit (FLAG_COMMIT, &local->flags);
6380 rc = -EINPROGRESS; /* Call commit handler */
6382 if(vwrq->flags & IW_RETRY_LIFETIME) {
6383 local->config.txLifetime = vwrq->value / 1024;
6384 set_bit (FLAG_COMMIT, &local->flags);
6385 rc = -EINPROGRESS; /* Call commit handler */
6390 /*------------------------------------------------------------------*/
6392 * Wireless Handler : get Retry limits
6394 static int airo_get_retry(struct net_device *dev,
6395 struct iw_request_info *info,
6396 struct iw_param *vwrq,
6399 struct airo_info *local = dev->priv;
6401 vwrq->disabled = 0; /* Can't be disabled */
6403 readConfigRid(local, 1);
6404 /* Note : by default, display the min retry number */
6405 if((vwrq->flags & IW_RETRY_TYPE) == IW_RETRY_LIFETIME) {
6406 vwrq->flags = IW_RETRY_LIFETIME;
6407 vwrq->value = (int)local->config.txLifetime * 1024;
6408 } else if((vwrq->flags & IW_RETRY_MAX)) {
6409 vwrq->flags = IW_RETRY_LIMIT | IW_RETRY_MAX;
6410 vwrq->value = (int)local->config.longRetryLimit;
6412 vwrq->flags = IW_RETRY_LIMIT;
6413 vwrq->value = (int)local->config.shortRetryLimit;
6414 if((int)local->config.shortRetryLimit != (int)local->config.longRetryLimit)
6415 vwrq->flags |= IW_RETRY_MIN;
6421 /*------------------------------------------------------------------*/
6423 * Wireless Handler : get range info
6425 static int airo_get_range(struct net_device *dev,
6426 struct iw_request_info *info,
6427 struct iw_point *dwrq,
6430 struct airo_info *local = dev->priv;
6431 struct iw_range *range = (struct iw_range *) extra;
6432 CapabilityRid cap_rid; /* Card capability info */
6436 readCapabilityRid(local, &cap_rid, 1);
6438 dwrq->length = sizeof(struct iw_range);
6439 memset(range, 0, sizeof(*range));
6440 range->min_nwid = 0x0000;
6441 range->max_nwid = 0x0000;
6442 range->num_channels = 14;
6443 /* Should be based on cap_rid.country to give only
6444 * what the current card support */
6446 for(i = 0; i < 14; i++) {
6447 range->freq[k].i = i + 1; /* List index */
6448 range->freq[k].m = frequency_list[i] * 100000;
6449 range->freq[k++].e = 1; /* Values in table in MHz -> * 10^5 * 10 */
6451 range->num_frequency = k;
6453 range->sensitivity = 65535;
6455 /* Hum... Should put the right values there */
6457 range->max_qual.qual = 100; /* % */
6459 range->max_qual.qual = airo_get_max_quality(&cap_rid);
6460 range->max_qual.level = 0x100 - 120; /* -120 dBm */
6461 range->max_qual.noise = 0x100 - 120; /* -120 dBm */
6463 /* Experimental measurements - boundary 11/5.5 Mb/s */
6464 /* Note : with or without the (local->rssi), results
6465 * are somewhat different. - Jean II */
6467 range->avg_qual.qual = 50; /* % */
6468 range->avg_qual.level = 0x100 - 70; /* -70 dBm */
6470 range->avg_qual.qual = airo_get_avg_quality(&cap_rid);
6471 range->avg_qual.level = 0x100 - 80; /* -80 dBm */
6473 range->avg_qual.noise = 0x100 - 85; /* -85 dBm */
6475 for(i = 0 ; i < 8 ; i++) {
6476 range->bitrate[i] = cap_rid.supportedRates[i] * 500000;
6477 if(range->bitrate[i] == 0)
6480 range->num_bitrates = i;
6482 /* Set an indication of the max TCP throughput
6483 * in bit/s that we can expect using this interface.
6484 * May be use for QoS stuff... Jean II */
6486 range->throughput = 5000 * 1000;
6488 range->throughput = 1500 * 1000;
6491 range->max_rts = 2312;
6492 range->min_frag = 256;
6493 range->max_frag = 2312;
6495 if(cap_rid.softCap & 2) {
6497 range->encoding_size[0] = 5;
6499 if (cap_rid.softCap & 0x100) {
6500 range->encoding_size[1] = 13;
6501 range->num_encoding_sizes = 2;
6503 range->num_encoding_sizes = 1;
6504 range->max_encoding_tokens = (cap_rid.softCap & 0x80) ? 4 : 1;
6506 range->num_encoding_sizes = 0;
6507 range->max_encoding_tokens = 0;
6510 range->max_pmp = 5000000; /* 5 secs */
6512 range->max_pmt = 65535 * 1024; /* ??? */
6513 range->pmp_flags = IW_POWER_PERIOD;
6514 range->pmt_flags = IW_POWER_TIMEOUT;
6515 range->pm_capa = IW_POWER_PERIOD | IW_POWER_TIMEOUT | IW_POWER_ALL_R;
6517 /* Transmit Power - values are in mW */
6518 for(i = 0 ; i < 8 ; i++) {
6519 range->txpower[i] = cap_rid.txPowerLevels[i];
6520 if(range->txpower[i] == 0)
6523 range->num_txpower = i;
6524 range->txpower_capa = IW_TXPOW_MWATT;
6525 range->we_version_source = 12;
6526 range->we_version_compiled = WIRELESS_EXT;
6527 range->retry_capa = IW_RETRY_LIMIT | IW_RETRY_LIFETIME;
6528 range->retry_flags = IW_RETRY_LIMIT;
6529 range->r_time_flags = IW_RETRY_LIFETIME;
6530 range->min_retry = 1;
6531 range->max_retry = 65535;
6532 range->min_r_time = 1024;
6533 range->max_r_time = 65535 * 1024;
6535 /* Event capability (kernel + driver) */
6536 range->event_capa[0] = (IW_EVENT_CAPA_K_0 |
6537 IW_EVENT_CAPA_MASK(SIOCGIWTHRSPY) |
6538 IW_EVENT_CAPA_MASK(SIOCGIWAP) |
6539 IW_EVENT_CAPA_MASK(SIOCGIWSCAN));
6540 range->event_capa[1] = IW_EVENT_CAPA_K_1;
6541 range->event_capa[4] = IW_EVENT_CAPA_MASK(IWEVTXDROP);
6545 /*------------------------------------------------------------------*/
6547 * Wireless Handler : set Power Management
6549 static int airo_set_power(struct net_device *dev,
6550 struct iw_request_info *info,
6551 struct iw_param *vwrq,
6554 struct airo_info *local = dev->priv;
6556 readConfigRid(local, 1);
6557 if (vwrq->disabled) {
6558 if ((local->config.rmode & 0xFF) >= RXMODE_RFMON) {
6561 local->config.powerSaveMode = POWERSAVE_CAM;
6562 local->config.rmode &= 0xFF00;
6563 local->config.rmode |= RXMODE_BC_MC_ADDR;
6564 set_bit (FLAG_COMMIT, &local->flags);
6565 return -EINPROGRESS; /* Call commit handler */
6567 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
6568 local->config.fastListenDelay = (vwrq->value + 500) / 1024;
6569 local->config.powerSaveMode = POWERSAVE_PSPCAM;
6570 set_bit (FLAG_COMMIT, &local->flags);
6571 } else if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_PERIOD) {
6572 local->config.fastListenInterval = local->config.listenInterval = (vwrq->value + 500) / 1024;
6573 local->config.powerSaveMode = POWERSAVE_PSPCAM;
6574 set_bit (FLAG_COMMIT, &local->flags);
6576 switch (vwrq->flags & IW_POWER_MODE) {
6577 case IW_POWER_UNICAST_R:
6578 if ((local->config.rmode & 0xFF) >= RXMODE_RFMON) {
6581 local->config.rmode &= 0xFF00;
6582 local->config.rmode |= RXMODE_ADDR;
6583 set_bit (FLAG_COMMIT, &local->flags);
6585 case IW_POWER_ALL_R:
6586 if ((local->config.rmode & 0xFF) >= RXMODE_RFMON) {
6589 local->config.rmode &= 0xFF00;
6590 local->config.rmode |= RXMODE_BC_MC_ADDR;
6591 set_bit (FLAG_COMMIT, &local->flags);
6597 // Note : we may want to factor local->need_commit here
6598 // Note2 : may also want to factor RXMODE_RFMON test
6599 return -EINPROGRESS; /* Call commit handler */
6602 /*------------------------------------------------------------------*/
6604 * Wireless Handler : get Power Management
6606 static int airo_get_power(struct net_device *dev,
6607 struct iw_request_info *info,
6608 struct iw_param *vwrq,
6611 struct airo_info *local = dev->priv;
6614 readConfigRid(local, 1);
6615 mode = local->config.powerSaveMode;
6616 if ((vwrq->disabled = (mode == POWERSAVE_CAM)))
6618 if ((vwrq->flags & IW_POWER_TYPE) == IW_POWER_TIMEOUT) {
6619 vwrq->value = (int)local->config.fastListenDelay * 1024;
6620 vwrq->flags = IW_POWER_TIMEOUT;
6622 vwrq->value = (int)local->config.fastListenInterval * 1024;
6623 vwrq->flags = IW_POWER_PERIOD;
6625 if ((local->config.rmode & 0xFF) == RXMODE_ADDR)
6626 vwrq->flags |= IW_POWER_UNICAST_R;
6628 vwrq->flags |= IW_POWER_ALL_R;
6633 /*------------------------------------------------------------------*/
6635 * Wireless Handler : set Sensitivity
6637 static int airo_set_sens(struct net_device *dev,
6638 struct iw_request_info *info,
6639 struct iw_param *vwrq,
6642 struct airo_info *local = dev->priv;
6644 readConfigRid(local, 1);
6645 local->config.rssiThreshold = vwrq->disabled ? RSSI_DEFAULT : vwrq->value;
6646 set_bit (FLAG_COMMIT, &local->flags);
6648 return -EINPROGRESS; /* Call commit handler */
6651 /*------------------------------------------------------------------*/
6653 * Wireless Handler : get Sensitivity
6655 static int airo_get_sens(struct net_device *dev,
6656 struct iw_request_info *info,
6657 struct iw_param *vwrq,
6660 struct airo_info *local = dev->priv;
6662 readConfigRid(local, 1);
6663 vwrq->value = local->config.rssiThreshold;
6664 vwrq->disabled = (vwrq->value == 0);
6670 /*------------------------------------------------------------------*/
6672 * Wireless Handler : get AP List
6673 * Note : this is deprecated in favor of IWSCAN
6675 static int airo_get_aplist(struct net_device *dev,
6676 struct iw_request_info *info,
6677 struct iw_point *dwrq,
6680 struct airo_info *local = dev->priv;
6681 struct sockaddr *address = (struct sockaddr *) extra;
6682 struct iw_quality qual[IW_MAX_AP];
6685 int loseSync = capable(CAP_NET_ADMIN) ? 1: -1;
6687 for (i = 0; i < IW_MAX_AP; i++) {
6688 if (readBSSListRid(local, loseSync, &BSSList))
6691 memcpy(address[i].sa_data, BSSList.bssid, ETH_ALEN);
6692 address[i].sa_family = ARPHRD_ETHER;
6694 qual[i].level = 0x100 - BSSList.dBm;
6695 qual[i].qual = airo_dbm_to_pct( local->rssi, BSSList.dBm );
6696 qual[i].updated = IW_QUAL_QUAL_UPDATED
6697 | IW_QUAL_LEVEL_UPDATED
6700 qual[i].level = (BSSList.dBm + 321) / 2;
6702 qual[i].updated = IW_QUAL_QUAL_INVALID
6703 | IW_QUAL_LEVEL_UPDATED
6706 qual[i].noise = local->wstats.qual.noise;
6707 if (BSSList.index == 0xffff)
6711 StatusRid status_rid; /* Card status info */
6712 readStatusRid(local, &status_rid, 1);
6714 i < min(IW_MAX_AP, 4) &&
6715 (status_rid.bssid[i][0]
6716 & status_rid.bssid[i][1]
6717 & status_rid.bssid[i][2]
6718 & status_rid.bssid[i][3]
6719 & status_rid.bssid[i][4]
6720 & status_rid.bssid[i][5])!=0xff &&
6721 (status_rid.bssid[i][0]
6722 | status_rid.bssid[i][1]
6723 | status_rid.bssid[i][2]
6724 | status_rid.bssid[i][3]
6725 | status_rid.bssid[i][4]
6726 | status_rid.bssid[i][5]);
6728 memcpy(address[i].sa_data,
6729 status_rid.bssid[i], ETH_ALEN);
6730 address[i].sa_family = ARPHRD_ETHER;
6733 dwrq->flags = 1; /* Should be define'd */
6734 memcpy(extra + sizeof(struct sockaddr)*i,
6735 &qual, sizeof(struct iw_quality)*i);
6742 /*------------------------------------------------------------------*/
6744 * Wireless Handler : Initiate Scan
6746 static int airo_set_scan(struct net_device *dev,
6747 struct iw_request_info *info,
6748 struct iw_param *vwrq,
6751 struct airo_info *ai = dev->priv;
6755 /* Note : you may have realised that, as this is a SET operation,
6756 * this is privileged and therefore a normal user can't
6758 * This is not an error, while the device perform scanning,
6759 * traffic doesn't flow, so it's a perfect DoS...
6761 if (ai->flags & FLAG_RADIO_MASK) return -ENETDOWN;
6763 /* Initiate a scan command */
6764 memset(&cmd, 0, sizeof(cmd));
6765 cmd.cmd=CMD_LISTBSS;
6766 if (down_interruptible(&ai->sem))
6767 return -ERESTARTSYS;
6768 issuecommand(ai, &cmd, &rsp);
6769 ai->scan_timestamp = jiffies;
6772 /* At this point, just return to the user. */
6777 /*------------------------------------------------------------------*/
6779 * Translate scan data returned from the card to a card independent
6780 * format that the Wireless Tools will understand - Jean II
6782 static inline char *airo_translate_scan(struct net_device *dev,
6787 struct airo_info *ai = dev->priv;
6788 struct iw_event iwe; /* Temporary buffer */
6790 char * current_val; /* For rates */
6793 /* First entry *MUST* be the AP MAC address */
6794 iwe.cmd = SIOCGIWAP;
6795 iwe.u.ap_addr.sa_family = ARPHRD_ETHER;
6796 memcpy(iwe.u.ap_addr.sa_data, bss->bssid, ETH_ALEN);
6797 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_ADDR_LEN);
6799 /* Other entries will be displayed in the order we give them */
6802 iwe.u.data.length = bss->ssidLen;
6803 if(iwe.u.data.length > 32)
6804 iwe.u.data.length = 32;
6805 iwe.cmd = SIOCGIWESSID;
6806 iwe.u.data.flags = 1;
6807 current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, bss->ssid);
6810 iwe.cmd = SIOCGIWMODE;
6811 capabilities = le16_to_cpu(bss->cap);
6812 if(capabilities & (CAP_ESS | CAP_IBSS)) {
6813 if(capabilities & CAP_ESS)
6814 iwe.u.mode = IW_MODE_MASTER;
6816 iwe.u.mode = IW_MODE_ADHOC;
6817 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_UINT_LEN);
6821 iwe.cmd = SIOCGIWFREQ;
6822 iwe.u.freq.m = le16_to_cpu(bss->dsChannel);
6823 /* iwe.u.freq.m containt the channel (starting 1), our
6824 * frequency_list array start at index 0...
6826 iwe.u.freq.m = frequency_list[iwe.u.freq.m - 1] * 100000;
6828 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_FREQ_LEN);
6830 /* Add quality statistics */
6833 iwe.u.qual.level = 0x100 - bss->dBm;
6834 iwe.u.qual.qual = airo_dbm_to_pct( ai->rssi, bss->dBm );
6835 iwe.u.qual.updated = IW_QUAL_QUAL_UPDATED
6836 | IW_QUAL_LEVEL_UPDATED
6839 iwe.u.qual.level = (bss->dBm + 321) / 2;
6840 iwe.u.qual.qual = 0;
6841 iwe.u.qual.updated = IW_QUAL_QUAL_INVALID
6842 | IW_QUAL_LEVEL_UPDATED
6845 iwe.u.qual.noise = ai->wstats.qual.noise;
6846 current_ev = iwe_stream_add_event(current_ev, end_buf, &iwe, IW_EV_QUAL_LEN);
6848 /* Add encryption capability */
6849 iwe.cmd = SIOCGIWENCODE;
6850 if(capabilities & CAP_PRIVACY)
6851 iwe.u.data.flags = IW_ENCODE_ENABLED | IW_ENCODE_NOKEY;
6853 iwe.u.data.flags = IW_ENCODE_DISABLED;
6854 iwe.u.data.length = 0;
6855 current_ev = iwe_stream_add_point(current_ev, end_buf, &iwe, bss->ssid);
6857 /* Rate : stuffing multiple values in a single event require a bit
6858 * more of magic - Jean II */
6859 current_val = current_ev + IW_EV_LCP_LEN;
6861 iwe.cmd = SIOCGIWRATE;
6862 /* Those two flags are ignored... */
6863 iwe.u.bitrate.fixed = iwe.u.bitrate.disabled = 0;
6865 for(i = 0 ; i < 8 ; i++) {
6866 /* NULL terminated */
6867 if(bss->rates[i] == 0)
6869 /* Bit rate given in 500 kb/s units (+ 0x80) */
6870 iwe.u.bitrate.value = ((bss->rates[i] & 0x7f) * 500000);
6871 /* Add new value to event */
6872 current_val = iwe_stream_add_value(current_ev, current_val, end_buf, &iwe, IW_EV_PARAM_LEN);
6874 /* Check if we added any event */
6875 if((current_val - current_ev) > IW_EV_LCP_LEN)
6876 current_ev = current_val;
6878 /* The other data in the scan result are not really
6879 * interesting, so for now drop it - Jean II */
6883 /*------------------------------------------------------------------*/
6885 * Wireless Handler : Read Scan Results
6887 static int airo_get_scan(struct net_device *dev,
6888 struct iw_request_info *info,
6889 struct iw_point *dwrq,
6892 struct airo_info *ai = dev->priv;
6895 char *current_ev = extra;
6897 /* When we are associated again, the scan has surely finished.
6898 * Just in case, let's make sure enough time has elapsed since
6899 * we started the scan. - Javier */
6900 if(ai->scan_timestamp && time_before(jiffies,ai->scan_timestamp+3*HZ)) {
6901 /* Important note : we don't want to block the caller
6902 * until results are ready for various reasons.
6903 * First, managing wait queues is complex and racy
6904 * (there may be multiple simultaneous callers).
6905 * Second, we grab some rtnetlink lock before comming
6906 * here (in dev_ioctl()).
6907 * Third, the caller can wait on the Wireless Event
6911 ai->scan_timestamp = 0;
6913 /* There's only a race with proc_BSSList_open(), but its
6914 * consequences are begnign. So I don't bother fixing it - Javier */
6916 /* Try to read the first entry of the scan result */
6917 rc = PC4500_readrid(ai, RID_BSSLISTFIRST, &BSSList, sizeof(BSSList), 1);
6918 if((rc) || (BSSList.index == 0xffff)) {
6919 /* Client error, no scan results...
6920 * The caller need to restart the scan. */
6924 /* Read and parse all entries */
6925 while((!rc) && (BSSList.index != 0xffff)) {
6926 /* Translate to WE format this entry */
6927 current_ev = airo_translate_scan(dev, current_ev,
6928 extra + dwrq->length,
6931 /* Check if there is space for one more entry */
6932 if((extra + dwrq->length - current_ev) <= IW_EV_ADDR_LEN) {
6933 /* Ask user space to try again with a bigger buffer */
6937 /* Read next entry */
6938 rc = PC4500_readrid(ai, RID_BSSLISTNEXT,
6939 &BSSList, sizeof(BSSList), 1);
6941 /* Length of data */
6942 dwrq->length = (current_ev - extra);
6943 dwrq->flags = 0; /* todo */
6948 /*------------------------------------------------------------------*/
6950 * Commit handler : called after a bunch of SET operations
6952 static int airo_config_commit(struct net_device *dev,
6953 struct iw_request_info *info, /* NULL */
6954 void *zwrq, /* NULL */
6955 char *extra) /* NULL */
6957 struct airo_info *local = dev->priv;
6960 if (!test_bit (FLAG_COMMIT, &local->flags))
6963 /* Some of the "SET" function may have modified some of the
6964 * parameters. It's now time to commit them in the card */
6965 disable_MAC(local, 1);
6966 if (test_bit (FLAG_RESET, &local->flags)) {
6967 APListRid APList_rid;
6970 readAPListRid(local, &APList_rid);
6971 readSsidRid(local, &SSID_rid);
6972 if (test_bit(FLAG_MPI,&local->flags))
6973 setup_card(local, dev->dev_addr, 1 );
6975 reset_airo_card(dev);
6976 disable_MAC(local, 1);
6977 writeSsidRid(local, &SSID_rid, 1);
6978 writeAPListRid(local, &APList_rid, 1);
6980 if (down_interruptible(&local->sem))
6981 return -ERESTARTSYS;
6982 writeConfigRid(local, 0);
6983 enable_MAC(local, &rsp, 0);
6984 if (test_bit (FLAG_RESET, &local->flags))
6985 airo_set_promisc(local);
6992 /*------------------------------------------------------------------*/
6994 * Structures to export the Wireless Handlers
6997 static const struct iw_priv_args airo_private_args[] = {
6998 /*{ cmd, set_args, get_args, name } */
6999 { AIROIOCTL, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7000 IW_PRIV_TYPE_BYTE | 2047, "airoioctl" },
7001 { AIROIDIFC, IW_PRIV_TYPE_BYTE | IW_PRIV_SIZE_FIXED | sizeof (aironet_ioctl),
7002 IW_PRIV_TYPE_INT | IW_PRIV_SIZE_FIXED | 1, "airoidifc" },
7005 static const iw_handler airo_handler[] =
7007 (iw_handler) airo_config_commit, /* SIOCSIWCOMMIT */
7008 (iw_handler) airo_get_name, /* SIOCGIWNAME */
7009 (iw_handler) NULL, /* SIOCSIWNWID */
7010 (iw_handler) NULL, /* SIOCGIWNWID */
7011 (iw_handler) airo_set_freq, /* SIOCSIWFREQ */
7012 (iw_handler) airo_get_freq, /* SIOCGIWFREQ */
7013 (iw_handler) airo_set_mode, /* SIOCSIWMODE */
7014 (iw_handler) airo_get_mode, /* SIOCGIWMODE */
7015 (iw_handler) airo_set_sens, /* SIOCSIWSENS */
7016 (iw_handler) airo_get_sens, /* SIOCGIWSENS */
7017 (iw_handler) NULL, /* SIOCSIWRANGE */
7018 (iw_handler) airo_get_range, /* SIOCGIWRANGE */
7019 (iw_handler) NULL, /* SIOCSIWPRIV */
7020 (iw_handler) NULL, /* SIOCGIWPRIV */
7021 (iw_handler) NULL, /* SIOCSIWSTATS */
7022 (iw_handler) NULL, /* SIOCGIWSTATS */
7023 iw_handler_set_spy, /* SIOCSIWSPY */
7024 iw_handler_get_spy, /* SIOCGIWSPY */
7025 iw_handler_set_thrspy, /* SIOCSIWTHRSPY */
7026 iw_handler_get_thrspy, /* SIOCGIWTHRSPY */
7027 (iw_handler) airo_set_wap, /* SIOCSIWAP */
7028 (iw_handler) airo_get_wap, /* SIOCGIWAP */
7029 (iw_handler) NULL, /* -- hole -- */
7030 (iw_handler) airo_get_aplist, /* SIOCGIWAPLIST */
7031 (iw_handler) airo_set_scan, /* SIOCSIWSCAN */
7032 (iw_handler) airo_get_scan, /* SIOCGIWSCAN */
7033 (iw_handler) airo_set_essid, /* SIOCSIWESSID */
7034 (iw_handler) airo_get_essid, /* SIOCGIWESSID */
7035 (iw_handler) airo_set_nick, /* SIOCSIWNICKN */
7036 (iw_handler) airo_get_nick, /* SIOCGIWNICKN */
7037 (iw_handler) NULL, /* -- hole -- */
7038 (iw_handler) NULL, /* -- hole -- */
7039 (iw_handler) airo_set_rate, /* SIOCSIWRATE */
7040 (iw_handler) airo_get_rate, /* SIOCGIWRATE */
7041 (iw_handler) airo_set_rts, /* SIOCSIWRTS */
7042 (iw_handler) airo_get_rts, /* SIOCGIWRTS */
7043 (iw_handler) airo_set_frag, /* SIOCSIWFRAG */
7044 (iw_handler) airo_get_frag, /* SIOCGIWFRAG */
7045 (iw_handler) airo_set_txpow, /* SIOCSIWTXPOW */
7046 (iw_handler) airo_get_txpow, /* SIOCGIWTXPOW */
7047 (iw_handler) airo_set_retry, /* SIOCSIWRETRY */
7048 (iw_handler) airo_get_retry, /* SIOCGIWRETRY */
7049 (iw_handler) airo_set_encode, /* SIOCSIWENCODE */
7050 (iw_handler) airo_get_encode, /* SIOCGIWENCODE */
7051 (iw_handler) airo_set_power, /* SIOCSIWPOWER */
7052 (iw_handler) airo_get_power, /* SIOCGIWPOWER */
7055 /* Note : don't describe AIROIDIFC and AIROOLDIDIFC in here.
7056 * We want to force the use of the ioctl code, because those can't be
7057 * won't work the iw_handler code (because they simultaneously read
7058 * and write data and iw_handler can't do that).
7059 * Note that it's perfectly legal to read/write on a single ioctl command,
7060 * you just can't use iwpriv and need to force it via the ioctl handler.
7062 static const iw_handler airo_private_handler[] =
7064 NULL, /* SIOCIWFIRSTPRIV */
7067 static const struct iw_handler_def airo_handler_def =
7069 .num_standard = sizeof(airo_handler)/sizeof(iw_handler),
7070 .num_private = sizeof(airo_private_handler)/sizeof(iw_handler),
7071 .num_private_args = sizeof(airo_private_args)/sizeof(struct iw_priv_args),
7072 .standard = airo_handler,
7073 .private = airo_private_handler,
7074 .private_args = airo_private_args,
7075 .get_wireless_stats = airo_get_wireless_stats,
7079 * This defines the configuration part of the Wireless Extensions
7080 * Note : irq and spinlock protection will occur in the subroutines
7083 * o Check input value more carefully and fill correct values in range
7084 * o Test and shakeout the bugs (if any)
7088 * Javier Achirica did a great job of merging code from the unnamed CISCO
7089 * developer that added support for flashing the card.
7091 static int airo_ioctl(struct net_device *dev, struct ifreq *rq, int cmd)
7094 struct airo_info *ai = (struct airo_info *)dev->priv;
7096 if (ai->power.event)
7106 int val = AIROMAGIC;
7108 if (copy_from_user(&com,rq->ifr_data,sizeof(com)))
7110 else if (copy_to_user(com.data,(char *)&val,sizeof(val)))
7119 /* Get the command struct and hand it off for evaluation by
7120 * the proper subfunction
7124 if (copy_from_user(&com,rq->ifr_data,sizeof(com))) {
7129 /* Separate R/W functions bracket legality here
7131 if ( com.command == AIRORSWVERSION ) {
7132 if (copy_to_user(com.data, swversion, sizeof(swversion)))
7137 else if ( com.command <= AIRORRID)
7138 rc = readrids(dev,&com);
7139 else if ( com.command >= AIROPCAP && com.command <= (AIROPLEAPUSR+2) )
7140 rc = writerids(dev,&com);
7141 else if ( com.command >= AIROFLSHRST && com.command <= AIRORESTART )
7142 rc = flashcard(dev,&com);
7144 rc = -EINVAL; /* Bad command in ioctl */
7147 #endif /* CISCO_EXT */
7149 // All other calls are currently unsupported
7157 * Get the Wireless stats out of the driver
7158 * Note : irq and spinlock protection will occur in the subroutines
7161 * o Check if work in Ad-Hoc mode (otherwise, use SPY, as in wvlan_cs)
7165 static void airo_read_wireless_stats(struct airo_info *local)
7167 StatusRid status_rid;
7169 CapabilityRid cap_rid;
7170 u32 *vals = stats_rid.vals;
7172 /* Get stats out of the card */
7173 clear_bit(JOB_WSTATS, &local->flags);
7174 if (local->power.event) {
7178 readCapabilityRid(local, &cap_rid, 0);
7179 readStatusRid(local, &status_rid, 0);
7180 readStatsRid(local, &stats_rid, RID_STATS, 0);
7184 local->wstats.status = status_rid.mode;
7186 /* Signal quality and co */
7188 local->wstats.qual.level = airo_rssi_to_dbm( local->rssi, status_rid.sigQuality );
7189 /* normalizedSignalStrength appears to be a percentage */
7190 local->wstats.qual.qual = status_rid.normalizedSignalStrength;
7192 local->wstats.qual.level = (status_rid.normalizedSignalStrength + 321) / 2;
7193 local->wstats.qual.qual = airo_get_quality(&status_rid, &cap_rid);
7195 if (status_rid.len >= 124) {
7196 local->wstats.qual.noise = 0x100 - status_rid.noisedBm;
7197 local->wstats.qual.updated = IW_QUAL_ALL_UPDATED | IW_QUAL_DBM;
7199 local->wstats.qual.noise = 0;
7200 local->wstats.qual.updated = IW_QUAL_QUAL_UPDATED | IW_QUAL_LEVEL_UPDATED | IW_QUAL_NOISE_INVALID | IW_QUAL_DBM;
7203 /* Packets discarded in the wireless adapter due to wireless
7204 * specific problems */
7205 local->wstats.discard.nwid = vals[56] + vals[57] + vals[58];/* SSID Mismatch */
7206 local->wstats.discard.code = vals[6];/* RxWepErr */
7207 local->wstats.discard.fragment = vals[30];
7208 local->wstats.discard.retries = vals[10];
7209 local->wstats.discard.misc = vals[1] + vals[32];
7210 local->wstats.miss.beacon = vals[34];
7213 static struct iw_statistics *airo_get_wireless_stats(struct net_device *dev)
7215 struct airo_info *local = dev->priv;
7217 if (!test_bit(JOB_WSTATS, &local->flags)) {
7218 /* Get stats out of the card if available */
7219 if (down_trylock(&local->sem) != 0) {
7220 set_bit(JOB_WSTATS, &local->flags);
7221 wake_up_interruptible(&local->thr_wait);
7223 airo_read_wireless_stats(local);
7226 return &local->wstats;
7231 * This just translates from driver IOCTL codes to the command codes to
7232 * feed to the radio's host interface. Things can be added/deleted
7233 * as needed. This represents the READ side of control I/O to
7236 static int readrids(struct net_device *dev, aironet_ioctl *comp) {
7237 unsigned short ridcode;
7238 unsigned char *iobuf;
7240 struct airo_info *ai = dev->priv;
7243 if (test_bit(FLAG_FLASHING, &ai->flags))
7246 switch(comp->command)
7248 case AIROGCAP: ridcode = RID_CAPABILITIES; break;
7249 case AIROGCFG: ridcode = RID_CONFIG;
7250 if (test_bit(FLAG_COMMIT, &ai->flags)) {
7251 disable_MAC (ai, 1);
7252 writeConfigRid (ai, 1);
7253 enable_MAC (ai, &rsp, 1);
7256 case AIROGSLIST: ridcode = RID_SSID; break;
7257 case AIROGVLIST: ridcode = RID_APLIST; break;
7258 case AIROGDRVNAM: ridcode = RID_DRVNAME; break;
7259 case AIROGEHTENC: ridcode = RID_ETHERENCAP; break;
7260 case AIROGWEPKTMP: ridcode = RID_WEP_TEMP;
7261 /* Only super-user can read WEP keys */
7262 if (!capable(CAP_NET_ADMIN))
7265 case AIROGWEPKNV: ridcode = RID_WEP_PERM;
7266 /* Only super-user can read WEP keys */
7267 if (!capable(CAP_NET_ADMIN))
7270 case AIROGSTAT: ridcode = RID_STATUS; break;
7271 case AIROGSTATSD32: ridcode = RID_STATSDELTA; break;
7272 case AIROGSTATSC32: ridcode = RID_STATS; break;
7275 if (copy_to_user(comp->data, &ai->micstats,
7276 min((int)comp->len,(int)sizeof(ai->micstats))))
7280 case AIRORRID: ridcode = comp->ridnum; break;
7286 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7289 PC4500_readrid(ai,ridcode,iobuf,RIDSIZE, 1);
7290 /* get the count of bytes in the rid docs say 1st 2 bytes is it.
7291 * then return it to the user
7292 * 9/22/2000 Honor user given length
7296 if (copy_to_user(comp->data, iobuf, min(len, (int)RIDSIZE))) {
7305 * Danger Will Robinson write the rids here
7308 static int writerids(struct net_device *dev, aironet_ioctl *comp) {
7309 struct airo_info *ai = dev->priv;
7315 static int (* writer)(struct airo_info *, u16 rid, const void *, int, int);
7316 unsigned char *iobuf;
7318 /* Only super-user can write RIDs */
7319 if (!capable(CAP_NET_ADMIN))
7322 if (test_bit(FLAG_FLASHING, &ai->flags))
7326 writer = do_writerid;
7328 switch(comp->command)
7330 case AIROPSIDS: ridcode = RID_SSID; break;
7331 case AIROPCAP: ridcode = RID_CAPABILITIES; break;
7332 case AIROPAPLIST: ridcode = RID_APLIST; break;
7333 case AIROPCFG: ai->config.len = 0;
7334 clear_bit(FLAG_COMMIT, &ai->flags);
7335 ridcode = RID_CONFIG; break;
7336 case AIROPWEPKEYNV: ridcode = RID_WEP_PERM; break;
7337 case AIROPLEAPUSR: ridcode = RID_LEAPUSERNAME; break;
7338 case AIROPLEAPPWD: ridcode = RID_LEAPPASSWORD; break;
7339 case AIROPWEPKEY: ridcode = RID_WEP_TEMP; writer = PC4500_writerid;
7341 case AIROPLEAPUSR+1: ridcode = 0xFF2A; break;
7342 case AIROPLEAPUSR+2: ridcode = 0xFF2B; break;
7344 /* this is not really a rid but a command given to the card
7348 if (enable_MAC(ai, &rsp, 1) != 0)
7353 * Evidently this code in the airo driver does not get a symbol
7354 * as disable_MAC. it's probably so short the compiler does not gen one.
7360 /* This command merely clears the counts does not actually store any data
7361 * only reads rid. But as it changes the cards state, I put it in the
7362 * writerid routines.
7365 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7368 PC4500_readrid(ai,RID_STATSDELTACLEAR,iobuf,RIDSIZE, 1);
7371 enabled = ai->micstats.enabled;
7372 memset(&ai->micstats,0,sizeof(ai->micstats));
7373 ai->micstats.enabled = enabled;
7376 if (copy_to_user(comp->data, iobuf,
7377 min((int)comp->len, (int)RIDSIZE))) {
7385 return -EOPNOTSUPP; /* Blarg! */
7387 if(comp->len > RIDSIZE)
7390 if ((iobuf = kmalloc(RIDSIZE, GFP_KERNEL)) == NULL)
7393 if (copy_from_user(iobuf,comp->data,comp->len)) {
7398 if (comp->command == AIROPCFG) {
7399 ConfigRid *cfg = (ConfigRid *)iobuf;
7401 if (test_bit(FLAG_MIC_CAPABLE, &ai->flags))
7402 cfg->opmode |= MODE_MIC;
7404 if ((cfg->opmode & 0xFF) == MODE_STA_IBSS)
7405 set_bit (FLAG_ADHOC, &ai->flags);
7407 clear_bit (FLAG_ADHOC, &ai->flags);
7410 if((*writer)(ai, ridcode, iobuf,comp->len,1)) {
7418 /*****************************************************************************
7419 * Ancillary flash / mod functions much black magic lurkes here *
7420 *****************************************************************************
7424 * Flash command switch table
7427 static int flashcard(struct net_device *dev, aironet_ioctl *comp) {
7430 /* Only super-user can modify flash */
7431 if (!capable(CAP_NET_ADMIN))
7434 switch(comp->command)
7437 return cmdreset((struct airo_info *)dev->priv);
7440 if (!((struct airo_info *)dev->priv)->flash &&
7441 (((struct airo_info *)dev->priv)->flash = kmalloc (FLASHSIZE, GFP_KERNEL)) == NULL)
7443 return setflashmode((struct airo_info *)dev->priv);
7445 case AIROFLSHGCHR: /* Get char from aux */
7446 if(comp->len != sizeof(int))
7448 if (copy_from_user(&z,comp->data,comp->len))
7450 return flashgchar((struct airo_info *)dev->priv,z,8000);
7452 case AIROFLSHPCHR: /* Send char to card. */
7453 if(comp->len != sizeof(int))
7455 if (copy_from_user(&z,comp->data,comp->len))
7457 return flashpchar((struct airo_info *)dev->priv,z,8000);
7459 case AIROFLPUTBUF: /* Send 32k to card */
7460 if (!((struct airo_info *)dev->priv)->flash)
7462 if(comp->len > FLASHSIZE)
7464 if(copy_from_user(((struct airo_info *)dev->priv)->flash,comp->data,comp->len))
7467 flashputbuf((struct airo_info *)dev->priv);
7471 if(flashrestart((struct airo_info *)dev->priv,dev))
7478 #define FLASH_COMMAND 0x7e7e
7482 * Disable MAC and do soft reset on
7486 static int cmdreset(struct airo_info *ai) {
7490 printk(KERN_INFO "Waitbusy hang before RESET\n");
7494 OUT4500(ai,COMMAND,CMD_SOFTRESET);
7496 ssleep(1); /* WAS 600 12/7/00 */
7499 printk(KERN_INFO "Waitbusy hang AFTER RESET\n");
7506 * Put the card in legendary flash
7510 static int setflashmode (struct airo_info *ai) {
7511 set_bit (FLAG_FLASHING, &ai->flags);
7513 OUT4500(ai, SWS0, FLASH_COMMAND);
7514 OUT4500(ai, SWS1, FLASH_COMMAND);
7516 OUT4500(ai, SWS0, FLASH_COMMAND);
7517 OUT4500(ai, COMMAND,0x10);
7519 OUT4500(ai, SWS2, FLASH_COMMAND);
7520 OUT4500(ai, SWS3, FLASH_COMMAND);
7521 OUT4500(ai, COMMAND,0);
7523 msleep(500); /* 500ms delay */
7526 clear_bit (FLAG_FLASHING, &ai->flags);
7527 printk(KERN_INFO "Waitbusy hang after setflash mode\n");
7533 /* Put character to SWS0 wait for dwelltime
7537 static int flashpchar(struct airo_info *ai,int byte,int dwelltime) {
7548 /* Wait for busy bit d15 to go false indicating buffer empty */
7549 while ((IN4500 (ai, SWS0) & 0x8000) && waittime > 0) {
7554 /* timeout for busy clear wait */
7556 printk(KERN_INFO "flash putchar busywait timeout! \n");
7560 /* Port is clear now write byte and wait for it to echo back */
7562 OUT4500(ai,SWS0,byte);
7565 echo = IN4500(ai,SWS1);
7566 } while (dwelltime >= 0 && echo != byte);
7570 return (echo == byte) ? 0 : -EIO;
7574 * Get a character from the card matching matchbyte
7577 static int flashgchar(struct airo_info *ai,int matchbyte,int dwelltime){
7579 unsigned char rbyte=0;
7582 rchar = IN4500(ai,SWS1);
7584 if(dwelltime && !(0x8000 & rchar)){
7589 rbyte = 0xff & rchar;
7591 if( (rbyte == matchbyte) && (0x8000 & rchar) ){
7595 if( rbyte == 0x81 || rbyte == 0x82 || rbyte == 0x83 || rbyte == 0x1a || 0xffff == rchar)
7599 }while(dwelltime > 0);
7604 * Transfer 32k of firmware data from user buffer to our buffer and
7608 static int flashputbuf(struct airo_info *ai){
7612 if (test_bit(FLAG_MPI,&ai->flags))
7613 memcpy_toio(ai->pciaux + 0x8000, ai->flash, FLASHSIZE);
7615 OUT4500(ai,AUXPAGE,0x100);
7616 OUT4500(ai,AUXOFF,0);
7618 for(nwords=0;nwords != FLASHSIZE / 2;nwords++){
7619 OUT4500(ai,AUXDATA,ai->flash[nwords] & 0xffff);
7622 OUT4500(ai,SWS0,0x8000);
7630 static int flashrestart(struct airo_info *ai,struct net_device *dev){
7633 ssleep(1); /* Added 12/7/00 */
7634 clear_bit (FLAG_FLASHING, &ai->flags);
7635 if (test_bit(FLAG_MPI, &ai->flags)) {
7636 status = mpi_init_descriptors(ai);
7637 if (status != SUCCESS)
7640 status = setup_card(ai, dev->dev_addr, 1);
7642 if (!test_bit(FLAG_MPI,&ai->flags))
7643 for( i = 0; i < MAX_FIDS; i++ ) {
7644 ai->fids[i] = transmit_allocate
7645 ( ai, 2312, i >= MAX_FIDS / 2 );
7648 ssleep(1); /* Added 12/7/00 */
7651 #endif /* CISCO_EXT */
7654 This program is free software; you can redistribute it and/or
7655 modify it under the terms of the GNU General Public License
7656 as published by the Free Software Foundation; either version 2
7657 of the License, or (at your option) any later version.
7659 This program is distributed in the hope that it will be useful,
7660 but WITHOUT ANY WARRANTY; without even the implied warranty of
7661 MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
7662 GNU General Public License for more details.
7666 Redistribution and use in source and binary forms, with or without
7667 modification, are permitted provided that the following conditions
7670 1. Redistributions of source code must retain the above copyright
7671 notice, this list of conditions and the following disclaimer.
7672 2. Redistributions in binary form must reproduce the above copyright
7673 notice, this list of conditions and the following disclaimer in the
7674 documentation and/or other materials provided with the distribution.
7675 3. The name of the author may not be used to endorse or promote
7676 products derived from this software without specific prior written
7679 THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR
7680 IMPLIED WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED
7681 WARRANTIES OF MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE
7682 ARE DISCLAIMED. IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT,
7683 INDIRECT, INCIDENTAL, SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES
7684 (INCLUDING, BUT NOT LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR
7685 SERVICES; LOSS OF USE, DATA, OR PROFITS; OR BUSINESS INTERRUPTION)
7686 HOWEVER CAUSED AND ON ANY THEORY OF LIABILITY, WHETHER IN CONTRACT,
7687 STRICT LIABILITY, OR TORT (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING
7688 IN ANY WAY OUT OF THE USE OF THIS SOFTWARE, EVEN IF ADVISED OF THE
7689 POSSIBILITY OF SUCH DAMAGE.
7692 module_init(airo_init_module);
7693 module_exit(airo_cleanup_module);