2 *************************************************************************
4 * 5F., No.36, Taiyuan St., Jhubei City,
8 * (c) Copyright 2002-2007, Ralink Technology, Inc.
10 * This program is free software; you can redistribute it and/or modify *
11 * it under the terms of the GNU General Public License as published by *
12 * the Free Software Foundation; either version 2 of the License, or *
13 * (at your option) any later version. *
15 * This program is distributed in the hope that it will be useful, *
16 * but WITHOUT ANY WARRANTY; without even the implied warranty of *
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the *
18 * GNU General Public License for more details. *
20 * You should have received a copy of the GNU General Public License *
21 * along with this program; if not, write to the *
22 * Free Software Foundation, Inc., *
23 * 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. *
25 *************************************************************************
34 -------- ---------- ----------------------------------------------
35 John 2004-9-3 porting from RT2500
37 #include "../rt_config.h"
39 UCHAR CipherWpaTemplate[] = {
42 0x00, 0x50, 0xf2, 0x01, // oui
43 0x01, 0x00, // Version
44 0x00, 0x50, 0xf2, 0x02, // Multicast
45 0x01, 0x00, // Number of unicast
46 0x00, 0x50, 0xf2, 0x02, // unicast
47 0x01, 0x00, // number of authentication method
48 0x00, 0x50, 0xf2, 0x01 // authentication
51 UCHAR CipherWpa2Template[] = {
54 0x01, 0x00, // Version
55 0x00, 0x0f, 0xac, 0x02, // group cipher, TKIP
56 0x01, 0x00, // number of pairwise
57 0x00, 0x0f, 0xac, 0x02, // unicast
58 0x01, 0x00, // number of authentication method
59 0x00, 0x0f, 0xac, 0x02, // authentication
60 0x00, 0x00, // RSN capability
63 UCHAR Ccx2IeInfo[] = { 0x00, 0x40, 0x96, 0x03, 0x02};
66 ==========================================================================
68 association state machine init, including state transition and timer init
70 S - pointer to the association state machine
74 ==========================================================================
76 VOID AssocStateMachineInit(
79 OUT STATE_MACHINE_FUNC Trans[])
81 StateMachineInit(S, Trans, MAX_ASSOC_STATE, MAX_ASSOC_MSG, (STATE_MACHINE_FUNC)Drop, ASSOC_IDLE, ASSOC_MACHINE_BASE);
84 StateMachineSetAction(S, ASSOC_IDLE, MT2_MLME_ASSOC_REQ, (STATE_MACHINE_FUNC)MlmeAssocReqAction);
85 StateMachineSetAction(S, ASSOC_IDLE, MT2_MLME_REASSOC_REQ, (STATE_MACHINE_FUNC)MlmeReassocReqAction);
86 StateMachineSetAction(S, ASSOC_IDLE, MT2_MLME_DISASSOC_REQ, (STATE_MACHINE_FUNC)MlmeDisassocReqAction);
87 StateMachineSetAction(S, ASSOC_IDLE, MT2_PEER_DISASSOC_REQ, (STATE_MACHINE_FUNC)PeerDisassocAction);
90 StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_MLME_ASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenAssoc);
91 StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_MLME_REASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenReassoc);
92 StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_MLME_DISASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenDisassociate);
93 StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_PEER_DISASSOC_REQ, (STATE_MACHINE_FUNC)PeerDisassocAction);
94 StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_PEER_ASSOC_RSP, (STATE_MACHINE_FUNC)PeerAssocRspAction);
96 // Patch 3Com AP MOde:3CRWE454G72
97 // We send Assoc request frame to this AP, it always send Reassoc Rsp not Associate Rsp.
99 StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_PEER_REASSOC_RSP, (STATE_MACHINE_FUNC)PeerAssocRspAction);
100 StateMachineSetAction(S, ASSOC_WAIT_RSP, MT2_ASSOC_TIMEOUT, (STATE_MACHINE_FUNC)AssocTimeoutAction);
103 StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_MLME_ASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenAssoc);
104 StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_MLME_REASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenReassoc);
105 StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_MLME_DISASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenDisassociate);
106 StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_PEER_DISASSOC_REQ, (STATE_MACHINE_FUNC)PeerDisassocAction);
107 StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_PEER_REASSOC_RSP, (STATE_MACHINE_FUNC)PeerReassocRspAction);
109 // Patch, AP doesn't send Reassociate Rsp frame to Station.
111 StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_PEER_ASSOC_RSP, (STATE_MACHINE_FUNC)PeerReassocRspAction);
112 StateMachineSetAction(S, REASSOC_WAIT_RSP, MT2_REASSOC_TIMEOUT, (STATE_MACHINE_FUNC)ReassocTimeoutAction);
115 StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_MLME_ASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenAssoc);
116 StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_MLME_REASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenReassoc);
117 StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_MLME_DISASSOC_REQ, (STATE_MACHINE_FUNC)InvalidStateWhenDisassociate);
118 StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_PEER_DISASSOC_REQ, (STATE_MACHINE_FUNC)PeerDisassocAction);
119 StateMachineSetAction(S, DISASSOC_WAIT_RSP, MT2_DISASSOC_TIMEOUT, (STATE_MACHINE_FUNC)DisassocTimeoutAction);
121 // initialize the timer
122 RTMPInitTimer(pAd, &pAd->MlmeAux.AssocTimer, GET_TIMER_FUNCTION(AssocTimeout), pAd, FALSE);
123 RTMPInitTimer(pAd, &pAd->MlmeAux.ReassocTimer, GET_TIMER_FUNCTION(ReassocTimeout), pAd, FALSE);
124 RTMPInitTimer(pAd, &pAd->MlmeAux.DisassocTimer, GET_TIMER_FUNCTION(DisassocTimeout), pAd, FALSE);
128 ==========================================================================
130 Association timeout procedure. After association timeout, this function
131 will be called and it will put a message into the MLME queue
133 Standard timer parameters
135 IRQL = DISPATCH_LEVEL
137 ==========================================================================
139 VOID AssocTimeout(IN PVOID SystemSpecific1,
140 IN PVOID FunctionContext,
141 IN PVOID SystemSpecific2,
142 IN PVOID SystemSpecific3)
144 RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
146 // Do nothing if the driver is starting halt state.
147 // This might happen when timer already been fired before cancel timer with mlmehalt
148 if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
151 MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_ASSOC_TIMEOUT, 0, NULL);
152 RT28XX_MLME_HANDLER(pAd);
156 ==========================================================================
158 Reassociation timeout procedure. After reassociation timeout, this
159 function will be called and put a message into the MLME queue
161 Standard timer parameters
163 IRQL = DISPATCH_LEVEL
165 ==========================================================================
167 VOID ReassocTimeout(IN PVOID SystemSpecific1,
168 IN PVOID FunctionContext,
169 IN PVOID SystemSpecific2,
170 IN PVOID SystemSpecific3)
172 RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
174 // Do nothing if the driver is starting halt state.
175 // This might happen when timer already been fired before cancel timer with mlmehalt
176 if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
179 MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_REASSOC_TIMEOUT, 0, NULL);
180 RT28XX_MLME_HANDLER(pAd);
184 ==========================================================================
186 Disassociation timeout procedure. After disassociation timeout, this
187 function will be called and put a message into the MLME queue
189 Standard timer parameters
191 IRQL = DISPATCH_LEVEL
193 ==========================================================================
195 VOID DisassocTimeout(IN PVOID SystemSpecific1,
196 IN PVOID FunctionContext,
197 IN PVOID SystemSpecific2,
198 IN PVOID SystemSpecific3)
200 RTMP_ADAPTER *pAd = (RTMP_ADAPTER *)FunctionContext;
202 // Do nothing if the driver is starting halt state.
203 // This might happen when timer already been fired before cancel timer with mlmehalt
204 if (RTMP_TEST_FLAG(pAd, fRTMP_ADAPTER_HALT_IN_PROGRESS | fRTMP_ADAPTER_NIC_NOT_EXIST))
207 MlmeEnqueue(pAd, ASSOC_STATE_MACHINE, MT2_DISASSOC_TIMEOUT, 0, NULL);
208 RT28XX_MLME_HANDLER(pAd);
212 ==========================================================================
214 mlme assoc req handling procedure
216 Adapter - Adapter pointer
217 Elem - MLME Queue Element
219 the station has been authenticated and the following information is stored in the config
221 -# supported rates and their length
222 -# listen interval (Adapter->StaCfg.default_listen_count)
223 -# Transmit power (Adapter->StaCfg.tx_power)
225 -# An association request frame is generated and sent to the air
226 -# Association timer starts
227 -# Association state -> ASSOC_WAIT_RSP
229 IRQL = DISPATCH_LEVEL
231 ==========================================================================
233 VOID MlmeAssocReqAction(
234 IN PRTMP_ADAPTER pAd,
235 IN MLME_QUEUE_ELEM *Elem)
238 HEADER_802_11 AssocHdr;
240 UCHAR WmeIe[9] = {IE_VENDOR_SPECIFIC, 0x07, 0x00, 0x50, 0xf2, 0x02, 0x00, 0x01, 0x00};
243 USHORT CapabilityInfo;
244 BOOLEAN TimerCancelled;
245 PUCHAR pOutBuffer = NULL;
251 UCHAR CkipNegotiationBuffer[CKIP_NEGOTIATION_LENGTH];
252 UCHAR AironetCkipIe = IE_AIRONET_CKIP;
253 UCHAR AironetCkipLen = CKIP_NEGOTIATION_LENGTH;
254 UCHAR AironetIPAddressIE = IE_AIRONET_IPADDRESS;
255 UCHAR AironetIPAddressLen = AIRONET_IPADDRESS_LENGTH;
256 UCHAR AironetIPAddressBuffer[AIRONET_IPADDRESS_LENGTH] = {0x00, 0x40, 0x96, 0x00, 0x00, 0x00, 0x00, 0x00, 0x02, 0x00};
259 // Block all authentication request durning WPA block period
260 if (pAd->StaCfg.bBlockAssoc == TRUE)
262 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Block Assoc request durning WPA block period!\n"));
263 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
264 Status = MLME_STATE_MACHINE_REJECT;
265 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
267 // check sanity first
268 else if (MlmeAssocReqSanity(pAd, Elem->Msg, Elem->MsgLen, ApAddr, &CapabilityInfo, &Timeout, &ListenIntv))
270 RTMPCancelTimer(&pAd->MlmeAux.AssocTimer, &TimerCancelled);
271 COPY_MAC_ADDR(pAd->MlmeAux.Bssid, ApAddr);
273 // Get an unused nonpaged memory
274 NStatus = MlmeAllocateMemory(pAd, &pOutBuffer);
275 if (NStatus != NDIS_STATUS_SUCCESS)
277 DBGPRINT(RT_DEBUG_TRACE,("ASSOC - MlmeAssocReqAction() allocate memory failed \n"));
278 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
279 Status = MLME_FAIL_NO_RESOURCE;
280 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
284 // Add by James 03/06/27
285 pAd->StaCfg.AssocInfo.Length = sizeof(NDIS_802_11_ASSOCIATION_INFORMATION);
286 // Association don't need to report MAC address
287 pAd->StaCfg.AssocInfo.AvailableRequestFixedIEs =
288 NDIS_802_11_AI_REQFI_CAPABILITIES | NDIS_802_11_AI_REQFI_LISTENINTERVAL;
289 pAd->StaCfg.AssocInfo.RequestFixedIEs.Capabilities = CapabilityInfo;
290 pAd->StaCfg.AssocInfo.RequestFixedIEs.ListenInterval = ListenIntv;
291 // Only reassociate need this
292 //COPY_MAC_ADDR(pAd->StaCfg.AssocInfo.RequestFixedIEs.CurrentAPAddress, ApAddr);
293 pAd->StaCfg.AssocInfo.OffsetRequestIEs = sizeof(NDIS_802_11_ASSOCIATION_INFORMATION);
295 NdisZeroMemory(pAd->StaCfg.ReqVarIEs, MAX_VIE_LEN);
298 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &SsidIe, 1);
300 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &pAd->MlmeAux.SsidLen, 1);
302 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, pAd->MlmeAux.Ssid, pAd->MlmeAux.SsidLen);
303 VarIesOffset += pAd->MlmeAux.SsidLen;
305 // Second add Supported rates
306 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &SupRateIe, 1);
308 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &pAd->MlmeAux.SupRateLen, 1);
310 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, pAd->MlmeAux.SupRate, pAd->MlmeAux.SupRateLen);
311 VarIesOffset += pAd->MlmeAux.SupRateLen;
314 if ((pAd->CommonCfg.Channel > 14) &&
315 (pAd->CommonCfg.bIEEE80211H == TRUE))
316 CapabilityInfo |= 0x0100;
318 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Send ASSOC request...\n"));
319 MgtMacHeaderInit(pAd, &AssocHdr, SUBTYPE_ASSOC_REQ, 0, ApAddr, ApAddr);
321 // Build basic frame first
322 MakeOutgoingFrame(pOutBuffer, &FrameLen,
323 sizeof(HEADER_802_11), &AssocHdr,
327 1, &pAd->MlmeAux.SsidLen,
328 pAd->MlmeAux.SsidLen, pAd->MlmeAux.Ssid,
330 1, &pAd->MlmeAux.SupRateLen,
331 pAd->MlmeAux.SupRateLen, pAd->MlmeAux.SupRate,
334 if (pAd->MlmeAux.ExtRateLen != 0)
336 MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
338 1, &pAd->MlmeAux.ExtRateLen,
339 pAd->MlmeAux.ExtRateLen, pAd->MlmeAux.ExtRate,
344 #ifdef DOT11_N_SUPPORT
346 if ((pAd->MlmeAux.HtCapabilityLen > 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
350 UCHAR BROADCOM[4] = {0x0, 0x90, 0x4c, 0x33};
351 if (pAd->StaActive.SupportedPhyInfo.bPreNHt == TRUE)
353 HtLen = SIZE_HT_CAP_IE + 4;
354 MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
358 pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
363 MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
365 1, &pAd->MlmeAux.HtCapabilityLen,
366 pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
371 #endif // DOT11_N_SUPPORT //
373 // add Ralink proprietary IE to inform AP this STA is going to use AGGREGATION or PIGGY-BACK+AGGREGATION
374 // Case I: (Aggregation + Piggy-Back)
375 // 1. user enable aggregation, AND
376 // 2. Mac support piggy-back
377 // 3. AP annouces it's PIGGY-BACK+AGGREGATION-capable in BEACON
378 // Case II: (Aggregation)
379 // 1. user enable aggregation, AND
380 // 2. AP annouces it's AGGREGATION-capable in BEACON
381 if (pAd->CommonCfg.bAggregationCapable)
383 if ((pAd->CommonCfg.bPiggyBackCapable) && ((pAd->MlmeAux.APRalinkIe & 0x00000003) == 3))
386 UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x03, 0x00, 0x00, 0x00};
387 MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
392 else if (pAd->MlmeAux.APRalinkIe & 0x00000001)
395 UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x01, 0x00, 0x00, 0x00};
396 MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
405 UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x06, 0x00, 0x00, 0x00};
406 MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
412 if (pAd->MlmeAux.APEdcaParm.bValid)
414 if (pAd->CommonCfg.bAPSDCapable && pAd->MlmeAux.APEdcaParm.bAPSDCapable)
416 QBSS_STA_INFO_PARM QosInfo;
418 NdisZeroMemory(&QosInfo, sizeof(QBSS_STA_INFO_PARM));
419 QosInfo.UAPSD_AC_BE = pAd->CommonCfg.bAPSDAC_BE;
420 QosInfo.UAPSD_AC_BK = pAd->CommonCfg.bAPSDAC_BK;
421 QosInfo.UAPSD_AC_VI = pAd->CommonCfg.bAPSDAC_VI;
422 QosInfo.UAPSD_AC_VO = pAd->CommonCfg.bAPSDAC_VO;
423 QosInfo.MaxSPLength = pAd->CommonCfg.MaxSPLength;
424 WmeIe[8] |= *(PUCHAR)&QosInfo;
428 // The Parameter Set Count is set to ¡§0¡¨ in the association request frames
429 // WmeIe[8] |= (pAd->MlmeAux.APEdcaParm.EdcaUpdateCount & 0x0f);
432 MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
439 // Let WPA(#221) Element ID on the end of this association frame.
440 // Otherwise some AP will fail on parsing Element ID and set status fail on Assoc Rsp.
441 // For example: Put Vendor Specific IE on the front of WPA IE.
442 // This happens on AP (Model No:Linksys WRK54G)
444 if (((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK) ||
445 (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK) ||
446 (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA) ||
447 (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2)
451 UCHAR RSNIe = IE_WPA;
453 if ((pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK) ||
454 (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2))
459 RTMPMakeRSNIE(pAd, pAd->StaCfg.AuthMode, pAd->StaCfg.WepStatus, BSS0);
461 // Check for WPA PMK cache list
462 if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2)
465 BOOLEAN FoundPMK = FALSE;
466 // Search chched PMKID, append it if existed
467 for (idx = 0; idx < PMKID_NO; idx++)
469 if (NdisEqualMemory(ApAddr, &pAd->StaCfg.SavedPMK[idx].BSSID, 6))
479 *(PUSHORT) &pAd->StaCfg.RSN_IE[pAd->StaCfg.RSNIE_Len] = 1;
480 NdisMoveMemory(&pAd->StaCfg.RSN_IE[pAd->StaCfg.RSNIE_Len + 2], &pAd->StaCfg.SavedPMK[idx].PMKID, 16);
481 pAd->StaCfg.RSNIE_Len += 18;
486 MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
488 1, &pAd->StaCfg.RSNIE_Len,
489 pAd->StaCfg.RSNIE_Len, pAd->StaCfg.RSN_IE,
496 // Append Variable IE
497 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &RSNIe, 1);
499 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, &pAd->StaCfg.RSNIE_Len, 1);
502 NdisMoveMemory(pAd->StaCfg.ReqVarIEs + VarIesOffset, pAd->StaCfg.RSN_IE, pAd->StaCfg.RSNIE_Len);
503 VarIesOffset += pAd->StaCfg.RSNIE_Len;
505 // Set Variable IEs Length
506 pAd->StaCfg.ReqVarIELen = VarIesOffset;
509 // We have update that at PeerBeaconAtJoinRequest()
510 CkipFlag = pAd->StaCfg.CkipFlag;
513 NdisZeroMemory(CkipNegotiationBuffer, CKIP_NEGOTIATION_LENGTH);
514 CkipNegotiationBuffer[2] = 0x66;
515 // Make it try KP & MIC, since we have to follow the result from AssocRsp
516 CkipNegotiationBuffer[8] = 0x18;
517 CkipNegotiationBuffer[CKIP_NEGOTIATION_LENGTH - 1] = 0x22;
520 MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
523 AironetCkipLen, CkipNegotiationBuffer,
528 // Add CCX v2 request if CCX2 admin state is on
529 if (pAd->StaCfg.CCXControl.field.Enable == 1)
533 // Add AironetIPAddressIE for Cisco CCX 2.X
536 MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
537 1, &AironetIPAddressIE,
538 1, &AironetIPAddressLen,
539 AironetIPAddressLen, AironetIPAddressBuffer,
546 // Add by James 03/06/27
547 // Set Variable IEs Length
548 pAd->StaCfg.ReqVarIELen = VarIesOffset;
549 pAd->StaCfg.AssocInfo.RequestIELength = VarIesOffset;
551 // OffsetResponseIEs follow ReqVarIE
552 pAd->StaCfg.AssocInfo.OffsetResponseIEs = sizeof(NDIS_802_11_ASSOCIATION_INFORMATION) + pAd->StaCfg.ReqVarIELen;
557 MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
558 MlmeFreeMemory(pAd, pOutBuffer);
560 RTMPSetTimer(&pAd->MlmeAux.AssocTimer, Timeout);
561 pAd->Mlme.AssocMachine.CurrState = ASSOC_WAIT_RSP;
565 DBGPRINT(RT_DEBUG_TRACE,("ASSOC - MlmeAssocReqAction() sanity check failed. BUG!!!!!! \n"));
566 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
567 Status = MLME_INVALID_FORMAT;
568 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
574 ==========================================================================
576 mlme reassoc req handling procedure
580 -# SSID (Adapter->StaCfg.ssid[])
581 -# BSSID (AP address, Adapter->StaCfg.bssid)
582 -# Supported rates (Adapter->StaCfg.supported_rates[])
583 -# Supported rates length (Adapter->StaCfg.supported_rates_len)
584 -# Tx power (Adapter->StaCfg.tx_power)
586 IRQL = DISPATCH_LEVEL
588 ==========================================================================
590 VOID MlmeReassocReqAction(
591 IN PRTMP_ADAPTER pAd,
592 IN MLME_QUEUE_ELEM *Elem)
595 HEADER_802_11 ReassocHdr;
597 UCHAR WmeIe[9] = {IE_VENDOR_SPECIFIC, 0x07, 0x00, 0x50, 0xf2, 0x02, 0x00, 0x01, 0x00};
598 USHORT CapabilityInfo, ListenIntv;
601 BOOLEAN TimerCancelled;
604 PUCHAR pOutBuffer = NULL;
607 // Block all authentication request durning WPA block period
608 if (pAd->StaCfg.bBlockAssoc == TRUE)
610 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Block ReAssoc request durning WPA block period!\n"));
611 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
612 Status = MLME_STATE_MACHINE_REJECT;
613 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
615 // the parameters are the same as the association
616 else if(MlmeAssocReqSanity(pAd, Elem->Msg, Elem->MsgLen, ApAddr, &CapabilityInfo, &Timeout, &ListenIntv))
618 RTMPCancelTimer(&pAd->MlmeAux.ReassocTimer, &TimerCancelled);
620 NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
621 if(NStatus != NDIS_STATUS_SUCCESS)
623 DBGPRINT(RT_DEBUG_TRACE,("ASSOC - MlmeReassocReqAction() allocate memory failed \n"));
624 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
625 Status = MLME_FAIL_NO_RESOURCE;
626 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
630 COPY_MAC_ADDR(pAd->MlmeAux.Bssid, ApAddr);
632 // make frame, use bssid as the AP address??
633 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Send RE-ASSOC request...\n"));
634 MgtMacHeaderInit(pAd, &ReassocHdr, SUBTYPE_REASSOC_REQ, 0, ApAddr, ApAddr);
635 MakeOutgoingFrame(pOutBuffer, &FrameLen,
636 sizeof(HEADER_802_11), &ReassocHdr,
639 MAC_ADDR_LEN, ApAddr,
641 1, &pAd->MlmeAux.SsidLen,
642 pAd->MlmeAux.SsidLen, pAd->MlmeAux.Ssid,
644 1, &pAd->MlmeAux.SupRateLen,
645 pAd->MlmeAux.SupRateLen, pAd->MlmeAux.SupRate,
648 if (pAd->MlmeAux.ExtRateLen != 0)
650 MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
652 1, &pAd->MlmeAux.ExtRateLen,
653 pAd->MlmeAux.ExtRateLen, pAd->MlmeAux.ExtRate,
658 if (pAd->MlmeAux.APEdcaParm.bValid)
660 if (pAd->CommonCfg.bAPSDCapable && pAd->MlmeAux.APEdcaParm.bAPSDCapable)
662 QBSS_STA_INFO_PARM QosInfo;
664 NdisZeroMemory(&QosInfo, sizeof(QBSS_STA_INFO_PARM));
665 QosInfo.UAPSD_AC_BE = pAd->CommonCfg.bAPSDAC_BE;
666 QosInfo.UAPSD_AC_BK = pAd->CommonCfg.bAPSDAC_BK;
667 QosInfo.UAPSD_AC_VI = pAd->CommonCfg.bAPSDAC_VI;
668 QosInfo.UAPSD_AC_VO = pAd->CommonCfg.bAPSDAC_VO;
669 QosInfo.MaxSPLength = pAd->CommonCfg.MaxSPLength;
670 WmeIe[8] |= *(PUCHAR)&QosInfo;
673 MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
679 #ifdef DOT11_N_SUPPORT
681 if ((pAd->MlmeAux.HtCapabilityLen > 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
685 UCHAR BROADCOM[4] = {0x0, 0x90, 0x4c, 0x33};
686 if (pAd->StaActive.SupportedPhyInfo.bPreNHt == TRUE)
688 HtLen = SIZE_HT_CAP_IE + 4;
689 MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
693 pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
698 MakeOutgoingFrame(pOutBuffer + FrameLen, &TmpLen,
700 1, &pAd->MlmeAux.HtCapabilityLen,
701 pAd->MlmeAux.HtCapabilityLen, &pAd->MlmeAux.HtCapability,
706 #endif // DOT11_N_SUPPORT //
708 // add Ralink proprietary IE to inform AP this STA is going to use AGGREGATION or PIGGY-BACK+AGGREGATION
709 // Case I: (Aggregation + Piggy-Back)
710 // 1. user enable aggregation, AND
711 // 2. Mac support piggy-back
712 // 3. AP annouces it's PIGGY-BACK+AGGREGATION-capable in BEACON
713 // Case II: (Aggregation)
714 // 1. user enable aggregation, AND
715 // 2. AP annouces it's AGGREGATION-capable in BEACON
716 if (pAd->CommonCfg.bAggregationCapable)
718 if ((pAd->CommonCfg.bPiggyBackCapable) && ((pAd->MlmeAux.APRalinkIe & 0x00000003) == 3))
721 UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x03, 0x00, 0x00, 0x00};
722 MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
727 else if (pAd->MlmeAux.APRalinkIe & 0x00000001)
730 UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x01, 0x00, 0x00, 0x00};
731 MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
740 UCHAR RalinkIe[9] = {IE_VENDOR_SPECIFIC, 7, 0x00, 0x0c, 0x43, 0x04, 0x00, 0x00, 0x00};
741 MakeOutgoingFrame(pOutBuffer+FrameLen, &TmpLen,
747 // Add CCX v2 request if CCX2 admin state is on
748 if (pAd->StaCfg.CCXControl.field.Enable == 1)
753 MakeOutgoingFrame(pOutBuffer + FrameLen, &tmp,
761 MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
762 MlmeFreeMemory(pAd, pOutBuffer);
764 RTMPSetTimer(&pAd->MlmeAux.ReassocTimer, Timeout); /* in mSec */
765 pAd->Mlme.AssocMachine.CurrState = REASSOC_WAIT_RSP;
769 DBGPRINT(RT_DEBUG_TRACE,("ASSOC - MlmeReassocReqAction() sanity check failed. BUG!!!! \n"));
770 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
771 Status = MLME_INVALID_FORMAT;
772 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
777 ==========================================================================
779 Upper layer issues disassoc request
785 ==========================================================================
787 VOID MlmeDisassocReqAction(
788 IN PRTMP_ADAPTER pAd,
789 IN MLME_QUEUE_ELEM *Elem)
791 PMLME_DISASSOC_REQ_STRUCT pDisassocReq;
792 HEADER_802_11 DisassocHdr;
793 PHEADER_802_11 pDisassocHdr;
794 PUCHAR pOutBuffer = NULL;
797 BOOLEAN TimerCancelled;
802 pDisassocReq = (PMLME_DISASSOC_REQ_STRUCT)(Elem->Msg);
804 NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
805 if (NStatus != NDIS_STATUS_SUCCESS)
807 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - MlmeDisassocReqAction() allocate memory failed\n"));
808 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
809 Status = MLME_FAIL_NO_RESOURCE;
810 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_DISASSOC_CONF, 2, &Status);
816 RTMPCancelTimer(&pAd->MlmeAux.DisassocTimer, &TimerCancelled);
818 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Send DISASSOC request[BSSID::%02x:%02x:%02x:%02x:%02x:%02x (Reason=%d)\n",
819 pDisassocReq->Addr[0], pDisassocReq->Addr[1], pDisassocReq->Addr[2],
820 pDisassocReq->Addr[3], pDisassocReq->Addr[4], pDisassocReq->Addr[5], pDisassocReq->Reason));
821 MgtMacHeaderInit(pAd, &DisassocHdr, SUBTYPE_DISASSOC, 0, pDisassocReq->Addr, pDisassocReq->Addr); // patch peap ttls switching issue
822 MakeOutgoingFrame(pOutBuffer, &FrameLen,
823 sizeof(HEADER_802_11),&DisassocHdr,
824 2, &pDisassocReq->Reason,
826 MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
828 // To patch Instance and Buffalo(N) AP
829 // Driver has to send deauth to Instance AP, but Buffalo(N) needs to send disassoc to reset Authenticator's state machine
830 // Therefore, we send both of them.
831 pDisassocHdr = (PHEADER_802_11)pOutBuffer;
832 pDisassocHdr->FC.SubType = SUBTYPE_DEAUTH;
833 MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
835 MlmeFreeMemory(pAd, pOutBuffer);
837 pAd->StaCfg.DisassocReason = REASON_DISASSOC_STA_LEAVING;
838 COPY_MAC_ADDR(pAd->StaCfg.DisassocSta, pDisassocReq->Addr);
840 RTMPSetTimer(&pAd->MlmeAux.DisassocTimer, Timeout); /* in mSec */
841 pAd->Mlme.AssocMachine.CurrState = DISASSOC_WAIT_RSP;
843 #ifdef WPA_SUPPLICANT_SUPPORT
844 #ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
845 if (pAd->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
847 union iwreq_data wrqu;
848 //send disassociate event to wpa_supplicant
849 memset(&wrqu, 0, sizeof(wrqu));
850 wrqu.data.flags = RT_DISASSOC_EVENT_FLAG;
851 wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
853 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
854 #endif // WPA_SUPPLICANT_SUPPORT //
856 #ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
858 union iwreq_data wrqu;
859 memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
860 wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
862 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
867 ==========================================================================
869 peer sends assoc rsp back
871 Elme - MLME message containing the received frame
873 IRQL = DISPATCH_LEVEL
875 ==========================================================================
877 VOID PeerAssocRspAction(
878 IN PRTMP_ADAPTER pAd,
879 IN MLME_QUEUE_ELEM *Elem)
881 USHORT CapabilityInfo, Status, Aid;
882 UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES], SupRateLen;
883 UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES], ExtRateLen;
884 UCHAR Addr2[MAC_ADDR_LEN];
885 BOOLEAN TimerCancelled;
888 HT_CAPABILITY_IE HtCapability;
889 ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
890 UCHAR HtCapabilityLen;
892 UCHAR NewExtChannelOffset = 0xff;
894 if (PeerAssocRspSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &CapabilityInfo, &Status, &Aid, SupRate, &SupRateLen, ExtRate, &ExtRateLen,
895 &HtCapability,&AddHtInfo, &HtCapabilityLen,&AddHtInfoLen,&NewExtChannelOffset, &EdcaParm, &CkipFlag))
897 // The frame is for me ?
898 if(MAC_ADDR_EQUAL(Addr2, pAd->MlmeAux.Bssid))
900 DBGPRINT(RT_DEBUG_TRACE, ("PeerAssocRspAction():ASSOC - receive ASSOC_RSP to me (status=%d)\n", Status));
901 #ifdef DOT11_N_SUPPORT
902 DBGPRINT(RT_DEBUG_TRACE, ("PeerAssocRspAction():MacTable [%d].AMsduSize = %d. ClientStatusFlags = 0x%lx \n",Elem->Wcid, pAd->MacTab.Content[BSSID_WCID].AMsduSize, pAd->MacTab.Content[BSSID_WCID].ClientStatusFlags));
903 #endif // DOT11_N_SUPPORT //
904 RTMPCancelTimer(&pAd->MlmeAux.AssocTimer, &TimerCancelled);
905 if(Status == MLME_SUCCESS)
907 UCHAR MaxSupportedRateIn500Kbps = 0;
910 // supported rates array may not be sorted. sort it and find the maximum rate
911 for (idx=0; idx<SupRateLen; idx++)
913 if (MaxSupportedRateIn500Kbps < (SupRate[idx] & 0x7f))
914 MaxSupportedRateIn500Kbps = SupRate[idx] & 0x7f;
917 for (idx=0; idx<ExtRateLen; idx++)
919 if (MaxSupportedRateIn500Kbps < (ExtRate[idx] & 0x7f))
920 MaxSupportedRateIn500Kbps = ExtRate[idx] & 0x7f;
922 // go to procedure listed on page 376
923 AssocPostProc(pAd, Addr2, CapabilityInfo, Aid, SupRate, SupRateLen, ExtRate, ExtRateLen,
924 &EdcaParm, &HtCapability, HtCapabilityLen, &AddHtInfo);
926 StaAddMacTableEntry(pAd, &pAd->MacTab.Content[BSSID_WCID], MaxSupportedRateIn500Kbps, &HtCapability, HtCapabilityLen, CapabilityInfo);
928 pAd->StaCfg.CkipFlag = CkipFlag;
931 NdisZeroMemory(pAd->StaCfg.TxSEQ, 4);
932 NdisZeroMemory(pAd->StaCfg.RxSEQ, 4);
933 NdisZeroMemory(pAd->StaCfg.CKIPMIC, 4);
934 pAd->StaCfg.GIV[0] = RandomByte(pAd);
935 pAd->StaCfg.GIV[1] = RandomByte(pAd);
936 pAd->StaCfg.GIV[2] = RandomByte(pAd);
937 pAd->StaCfg.bCkipOn = TRUE;
938 DBGPRINT(RT_DEBUG_TRACE, ("<CCX> pAd->StaCfg.CkipFlag = 0x%02x\n", pAd->StaCfg.CkipFlag));
944 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
945 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
950 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerAssocRspAction() sanity check fail\n"));
955 ==========================================================================
957 peer sends reassoc rsp
959 Elem - MLME message cntaining the received frame
961 IRQL = DISPATCH_LEVEL
963 ==========================================================================
965 VOID PeerReassocRspAction(
966 IN PRTMP_ADAPTER pAd,
967 IN MLME_QUEUE_ELEM *Elem)
969 USHORT CapabilityInfo;
972 UCHAR SupRate[MAX_LEN_OF_SUPPORTED_RATES], SupRateLen;
973 UCHAR ExtRate[MAX_LEN_OF_SUPPORTED_RATES], ExtRateLen;
974 UCHAR Addr2[MAC_ADDR_LEN];
976 BOOLEAN TimerCancelled;
978 HT_CAPABILITY_IE HtCapability;
979 ADD_HT_INFO_IE AddHtInfo; // AP might use this additional ht info IE
980 UCHAR HtCapabilityLen;
982 UCHAR NewExtChannelOffset = 0xff;
984 if(PeerAssocRspSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &CapabilityInfo, &Status, &Aid, SupRate, &SupRateLen, ExtRate, &ExtRateLen,
985 &HtCapability, &AddHtInfo, &HtCapabilityLen, &AddHtInfoLen,&NewExtChannelOffset, &EdcaParm, &CkipFlag))
987 if(MAC_ADDR_EQUAL(Addr2, pAd->MlmeAux.Bssid)) // The frame is for me ?
989 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - receive REASSOC_RSP to me (status=%d)\n", Status));
990 RTMPCancelTimer(&pAd->MlmeAux.ReassocTimer, &TimerCancelled);
992 if(Status == MLME_SUCCESS)
994 // go to procedure listed on page 376
995 AssocPostProc(pAd, Addr2, CapabilityInfo, Aid, SupRate, SupRateLen, ExtRate, ExtRateLen,
996 &EdcaParm, &HtCapability, HtCapabilityLen, &AddHtInfo);
998 #ifdef WPA_SUPPLICANT_SUPPORT
999 #ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
1000 if (pAd->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
1002 union iwreq_data wrqu;
1004 SendAssocIEsToWpaSupplicant(pAd);
1005 memset(&wrqu, 0, sizeof(wrqu));
1006 wrqu.data.flags = RT_ASSOC_EVENT_FLAG;
1007 wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
1009 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
1010 #endif // WPA_SUPPLICANT_SUPPORT //
1012 #ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
1014 union iwreq_data wrqu;
1015 wext_notify_event_assoc(pAd);
1017 memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
1018 memcpy(wrqu.ap_addr.sa_data, pAd->MlmeAux.Bssid, MAC_ADDR_LEN);
1019 wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
1022 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
1027 // CkipFlag is no use for reassociate
1028 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
1029 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
1035 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerReassocRspAction() sanity check fail\n"));
1041 ==========================================================================
1043 procedures on IEEE 802.11/1999 p.376
1046 IRQL = DISPATCH_LEVEL
1048 ==========================================================================
1051 IN PRTMP_ADAPTER pAd,
1053 IN USHORT CapabilityInfo,
1056 IN UCHAR SupRateLen,
1058 IN UCHAR ExtRateLen,
1059 IN PEDCA_PARM pEdcaParm,
1060 IN HT_CAPABILITY_IE *pHtCapability,
1061 IN UCHAR HtCapabilityLen,
1062 IN ADD_HT_INFO_IE *pAddHtInfo) // AP might use this additional ht info IE
1066 pAd->MlmeAux.BssType = BSS_INFRA;
1067 COPY_MAC_ADDR(pAd->MlmeAux.Bssid, pAddr2);
1068 pAd->MlmeAux.Aid = Aid;
1069 pAd->MlmeAux.CapabilityInfo = CapabilityInfo & SUPPORTED_CAPABILITY_INFO;
1070 #ifdef DOT11_N_SUPPORT
1071 // Some HT AP might lost WMM IE. We add WMM ourselves. beacuase HT requires QoS on.
1072 if ((HtCapabilityLen > 0) && (pEdcaParm->bValid == FALSE))
1074 pEdcaParm->bValid = TRUE;
1075 pEdcaParm->Aifsn[0] = 3;
1076 pEdcaParm->Aifsn[1] = 7;
1077 pEdcaParm->Aifsn[2] = 2;
1078 pEdcaParm->Aifsn[3] = 2;
1080 pEdcaParm->Cwmin[0] = 4;
1081 pEdcaParm->Cwmin[1] = 4;
1082 pEdcaParm->Cwmin[2] = 3;
1083 pEdcaParm->Cwmin[3] = 2;
1085 pEdcaParm->Cwmax[0] = 10;
1086 pEdcaParm->Cwmax[1] = 10;
1087 pEdcaParm->Cwmax[2] = 4;
1088 pEdcaParm->Cwmax[3] = 3;
1090 pEdcaParm->Txop[0] = 0;
1091 pEdcaParm->Txop[1] = 0;
1092 pEdcaParm->Txop[2] = 96;
1093 pEdcaParm->Txop[3] = 48;
1096 #endif // DOT11_N_SUPPORT //
1098 NdisMoveMemory(&pAd->MlmeAux.APEdcaParm, pEdcaParm, sizeof(EDCA_PARM));
1100 // filter out un-supported rates
1101 pAd->MlmeAux.SupRateLen = SupRateLen;
1102 NdisMoveMemory(pAd->MlmeAux.SupRate, SupRate, SupRateLen);
1103 RTMPCheckRates(pAd, pAd->MlmeAux.SupRate, &pAd->MlmeAux.SupRateLen);
1105 // filter out un-supported rates
1106 pAd->MlmeAux.ExtRateLen = ExtRateLen;
1107 NdisMoveMemory(pAd->MlmeAux.ExtRate, ExtRate, ExtRateLen);
1108 RTMPCheckRates(pAd, pAd->MlmeAux.ExtRate, &pAd->MlmeAux.ExtRateLen);
1110 #ifdef DOT11_N_SUPPORT
1111 if (HtCapabilityLen > 0)
1113 RTMPCheckHt(pAd, BSSID_WCID, pHtCapability, pAddHtInfo);
1115 DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> AP.AMsduSize = %d. ClientStatusFlags = 0x%lx \n", pAd->MacTab.Content[BSSID_WCID].AMsduSize, pAd->MacTab.Content[BSSID_WCID].ClientStatusFlags));
1117 DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> (Mmps=%d, AmsduSize=%d, )\n",
1118 pAd->MacTab.Content[BSSID_WCID].MmpsMode, pAd->MacTab.Content[BSSID_WCID].AMsduSize));
1119 #endif // DOT11_N_SUPPORT //
1121 // Set New WPA information
1122 Idx = BssTableSearch(&pAd->ScanTab, pAddr2, pAd->MlmeAux.Channel);
1123 if (Idx == BSS_NOT_FOUND)
1125 DBGPRINT_ERR(("ASSOC - Can't find BSS after receiving Assoc response\n"));
1130 pAd->MacTab.Content[BSSID_WCID].RSNIE_Len = 0;
1131 NdisZeroMemory(pAd->MacTab.Content[BSSID_WCID].RSN_IE, MAX_LEN_OF_RSNIE);
1133 // Store appropriate RSN_IE for WPA SM negotiation later
1134 if ((pAd->StaCfg.AuthMode >= Ndis802_11AuthModeWPA) && (pAd->ScanTab.BssEntry[Idx].VarIELen != 0))
1140 pVIE = pAd->ScanTab.BssEntry[Idx].VarIEs;
1141 len = pAd->ScanTab.BssEntry[Idx].VarIELen;
1145 pEid = (PEID_STRUCT) pVIE;
1147 if ((pEid->Eid == IE_WPA) && (NdisEqualMemory(pEid->Octet, WPA_OUI, 4))
1148 && (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA || pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPAPSK))
1150 NdisMoveMemory(pAd->MacTab.Content[BSSID_WCID].RSN_IE, pVIE, (pEid->Len + 2));
1151 pAd->MacTab.Content[BSSID_WCID].RSNIE_Len = (pEid->Len + 2);
1152 DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> Store RSN_IE for WPA SM negotiation \n"));
1155 else if ((pEid->Eid == IE_RSN) && (NdisEqualMemory(pEid->Octet + 2, RSN_OUI, 3))
1156 && (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2 || pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPA2PSK))
1158 NdisMoveMemory(pAd->MacTab.Content[BSSID_WCID].RSN_IE, pVIE, (pEid->Len + 2));
1159 pAd->MacTab.Content[BSSID_WCID].RSNIE_Len = (pEid->Len + 2);
1160 DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> Store RSN_IE for WPA2 SM negotiation \n"));
1163 pVIE += (pEid->Len + 2);
1164 len -= (pEid->Len + 2);
1168 if (pAd->MacTab.Content[BSSID_WCID].RSNIE_Len == 0)
1170 DBGPRINT(RT_DEBUG_TRACE, ("AssocPostProc===> no RSN_IE \n"));
1174 hex_dump("RSN_IE", pAd->MacTab.Content[BSSID_WCID].RSN_IE, pAd->MacTab.Content[BSSID_WCID].RSNIE_Len);
1180 ==========================================================================
1182 left part of IEEE 802.11/1999 p.374
1184 Elem - MLME message containing the received frame
1186 IRQL = DISPATCH_LEVEL
1188 ==========================================================================
1190 VOID PeerDisassocAction(
1191 IN PRTMP_ADAPTER pAd,
1192 IN MLME_QUEUE_ELEM *Elem)
1194 UCHAR Addr2[MAC_ADDR_LEN];
1197 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerDisassocAction()\n"));
1198 if(PeerDisassocSanity(pAd, Elem->Msg, Elem->MsgLen, Addr2, &Reason))
1200 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerDisassocAction() Reason = %d\n", Reason));
1201 if (INFRA_ON(pAd) && MAC_ADDR_EQUAL(pAd->CommonCfg.Bssid, Addr2))
1204 if (pAd->CommonCfg.bWirelessEvent)
1206 RTMPSendWirelessEvent(pAd, IW_DISASSOC_EVENT_FLAG, pAd->MacTab.Content[BSSID_WCID].Addr, BSS0, 0);
1210 // Get Current System time and Turn on AdjacentAPReport
1212 NdisGetSystemUpTime(&pAd->StaCfg.CCXAdjacentAPLinkDownTime);
1213 pAd->StaCfg.CCXAdjacentAPReportFlag = TRUE;
1214 LinkDown(pAd, TRUE);
1215 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
1217 #ifdef WPA_SUPPLICANT_SUPPORT
1218 #ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
1219 if (pAd->StaCfg.WpaSupplicantUP != WPA_SUPPLICANT_DISABLE)
1221 union iwreq_data wrqu;
1222 //send disassociate event to wpa_supplicant
1223 memset(&wrqu, 0, sizeof(wrqu));
1224 wrqu.data.flags = RT_DISASSOC_EVENT_FLAG;
1225 wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
1227 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
1228 #endif // WPA_SUPPLICANT_SUPPORT //
1230 #ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
1232 union iwreq_data wrqu;
1233 memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
1234 wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
1236 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
1241 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - PeerDisassocAction() sanity check fail\n"));
1247 ==========================================================================
1249 what the state machine will do after assoc timeout
1253 IRQL = DISPATCH_LEVEL
1255 ==========================================================================
1257 VOID AssocTimeoutAction(
1258 IN PRTMP_ADAPTER pAd,
1259 IN MLME_QUEUE_ELEM *Elem)
1262 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - AssocTimeoutAction\n"));
1263 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
1264 Status = MLME_REJ_TIMEOUT;
1265 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
1269 ==========================================================================
1271 what the state machine will do after reassoc timeout
1273 IRQL = DISPATCH_LEVEL
1275 ==========================================================================
1277 VOID ReassocTimeoutAction(
1278 IN PRTMP_ADAPTER pAd,
1279 IN MLME_QUEUE_ELEM *Elem)
1282 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - ReassocTimeoutAction\n"));
1283 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
1284 Status = MLME_REJ_TIMEOUT;
1285 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
1289 ==========================================================================
1291 what the state machine will do after disassoc timeout
1293 IRQL = DISPATCH_LEVEL
1295 ==========================================================================
1297 VOID DisassocTimeoutAction(
1298 IN PRTMP_ADAPTER pAd,
1299 IN MLME_QUEUE_ELEM *Elem)
1302 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - DisassocTimeoutAction\n"));
1303 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
1304 Status = MLME_SUCCESS;
1305 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_DISASSOC_CONF, 2, &Status);
1308 VOID InvalidStateWhenAssoc(
1309 IN PRTMP_ADAPTER pAd,
1310 IN MLME_QUEUE_ELEM *Elem)
1313 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - InvalidStateWhenAssoc(state=%ld), reset ASSOC state machine\n",
1314 pAd->Mlme.AssocMachine.CurrState));
1315 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
1316 Status = MLME_STATE_MACHINE_REJECT;
1317 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_ASSOC_CONF, 2, &Status);
1320 VOID InvalidStateWhenReassoc(
1321 IN PRTMP_ADAPTER pAd,
1322 IN MLME_QUEUE_ELEM *Elem)
1325 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - InvalidStateWhenReassoc(state=%ld), reset ASSOC state machine\n",
1326 pAd->Mlme.AssocMachine.CurrState));
1327 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
1328 Status = MLME_STATE_MACHINE_REJECT;
1329 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_REASSOC_CONF, 2, &Status);
1332 VOID InvalidStateWhenDisassociate(
1333 IN PRTMP_ADAPTER pAd,
1334 IN MLME_QUEUE_ELEM *Elem)
1337 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - InvalidStateWhenDisassoc(state=%ld), reset ASSOC state machine\n",
1338 pAd->Mlme.AssocMachine.CurrState));
1339 pAd->Mlme.AssocMachine.CurrState = ASSOC_IDLE;
1340 Status = MLME_STATE_MACHINE_REJECT;
1341 MlmeEnqueue(pAd, MLME_CNTL_STATE_MACHINE, MT2_DISASSOC_CONF, 2, &Status);
1345 ==========================================================================
1347 right part of IEEE 802.11/1999 page 374
1349 This event should never cause ASSOC state machine perform state
1350 transition, and has no relationship with CNTL machine. So we separate
1351 this routine as a service outside of ASSOC state transition table.
1353 IRQL = DISPATCH_LEVEL
1355 ==========================================================================
1358 IN PRTMP_ADAPTER pAd,
1361 HEADER_802_11 DisassocHdr;
1362 PHEADER_802_11 pDisassocHdr;
1363 PUCHAR pOutBuffer = NULL;
1365 NDIS_STATUS NStatus;
1366 USHORT Reason = REASON_CLS3ERR;
1368 NStatus = MlmeAllocateMemory(pAd, &pOutBuffer); //Get an unused nonpaged memory
1369 if (NStatus != NDIS_STATUS_SUCCESS)
1372 DBGPRINT(RT_DEBUG_TRACE, ("ASSOC - Class 3 Error, Send DISASSOC frame\n"));
1373 MgtMacHeaderInit(pAd, &DisassocHdr, SUBTYPE_DISASSOC, 0, pAddr, pAd->CommonCfg.Bssid); // patch peap ttls switching issue
1374 MakeOutgoingFrame(pOutBuffer, &FrameLen,
1375 sizeof(HEADER_802_11),&DisassocHdr,
1378 MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
1380 // To patch Instance and Buffalo(N) AP
1381 // Driver has to send deauth to Instance AP, but Buffalo(N) needs to send disassoc to reset Authenticator's state machine
1382 // Therefore, we send both of them.
1383 pDisassocHdr = (PHEADER_802_11)pOutBuffer;
1384 pDisassocHdr->FC.SubType = SUBTYPE_DEAUTH;
1385 MiniportMMRequest(pAd, 0, pOutBuffer, FrameLen);
1387 MlmeFreeMemory(pAd, pOutBuffer);
1389 pAd->StaCfg.DisassocReason = REASON_CLS3ERR;
1390 COPY_MAC_ADDR(pAd->StaCfg.DisassocSta, pAddr);
1394 ==========================================================================
1396 Switch between WEP and CKIP upon new association up.
1399 IRQL = DISPATCH_LEVEL
1401 ==========================================================================
1403 VOID SwitchBetweenWepAndCkip(
1404 IN PRTMP_ADAPTER pAd)
1407 SHAREDKEY_MODE_STRUC csr1;
1409 // if KP is required. change the CipherAlg in hardware shard key table from WEP
1410 // to CKIP. else remain as WEP
1411 if (pAd->StaCfg.bCkipOn && (pAd->StaCfg.CkipFlag & 0x10))
1413 // modify hardware key table so that MAC use correct algorithm to decrypt RX
1414 RTMP_IO_READ32(pAd, SHARED_KEY_MODE_BASE, &csr1.word);
1415 if (csr1.field.Bss0Key0CipherAlg == CIPHER_WEP64)
1416 csr1.field.Bss0Key0CipherAlg = CIPHER_CKIP64;
1417 else if (csr1.field.Bss0Key0CipherAlg == CIPHER_WEP128)
1418 csr1.field.Bss0Key0CipherAlg = CIPHER_CKIP128;
1420 if (csr1.field.Bss0Key1CipherAlg == CIPHER_WEP64)
1421 csr1.field.Bss0Key1CipherAlg = CIPHER_CKIP64;
1422 else if (csr1.field.Bss0Key1CipherAlg == CIPHER_WEP128)
1423 csr1.field.Bss0Key1CipherAlg = CIPHER_CKIP128;
1425 if (csr1.field.Bss0Key2CipherAlg == CIPHER_WEP64)
1426 csr1.field.Bss0Key2CipherAlg = CIPHER_CKIP64;
1427 else if (csr1.field.Bss0Key2CipherAlg == CIPHER_WEP128)
1428 csr1.field.Bss0Key2CipherAlg = CIPHER_CKIP128;
1430 if (csr1.field.Bss0Key3CipherAlg == CIPHER_WEP64)
1431 csr1.field.Bss0Key3CipherAlg = CIPHER_CKIP64;
1432 else if (csr1.field.Bss0Key3CipherAlg == CIPHER_WEP128)
1433 csr1.field.Bss0Key3CipherAlg = CIPHER_CKIP128;
1434 RTMP_IO_WRITE32(pAd, SHARED_KEY_MODE_BASE, csr1.word);
1435 DBGPRINT(RT_DEBUG_TRACE, ("SwitchBetweenWepAndCkip: modify BSS0 cipher to %s\n", CipherName[csr1.field.Bss0Key0CipherAlg]));
1437 // modify software key table so that driver can specify correct algorithm in TXD upon TX
1438 for (i=0; i<SHARE_KEY_NUM; i++)
1440 if (pAd->SharedKey[BSS0][i].CipherAlg == CIPHER_WEP64)
1441 pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_CKIP64;
1442 else if (pAd->SharedKey[BSS0][i].CipherAlg == CIPHER_WEP128)
1443 pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_CKIP128;
1447 // else if KP NOT inused. change the CipherAlg in hardware shard key table from CKIP
1451 // modify hardware key table so that MAC use correct algorithm to decrypt RX
1452 RTMP_IO_READ32(pAd, SHARED_KEY_MODE_BASE, &csr1.word);
1453 if (csr1.field.Bss0Key0CipherAlg == CIPHER_CKIP64)
1454 csr1.field.Bss0Key0CipherAlg = CIPHER_WEP64;
1455 else if (csr1.field.Bss0Key0CipherAlg == CIPHER_CKIP128)
1456 csr1.field.Bss0Key0CipherAlg = CIPHER_WEP128;
1458 if (csr1.field.Bss0Key1CipherAlg == CIPHER_CKIP64)
1459 csr1.field.Bss0Key1CipherAlg = CIPHER_WEP64;
1460 else if (csr1.field.Bss0Key1CipherAlg == CIPHER_CKIP128)
1461 csr1.field.Bss0Key1CipherAlg = CIPHER_WEP128;
1463 if (csr1.field.Bss0Key2CipherAlg == CIPHER_CKIP64)
1464 csr1.field.Bss0Key2CipherAlg = CIPHER_WEP64;
1465 else if (csr1.field.Bss0Key2CipherAlg == CIPHER_CKIP128)
1466 csr1.field.Bss0Key2CipherAlg = CIPHER_WEP128;
1468 if (csr1.field.Bss0Key3CipherAlg == CIPHER_CKIP64)
1469 csr1.field.Bss0Key3CipherAlg = CIPHER_WEP64;
1470 else if (csr1.field.Bss0Key3CipherAlg == CIPHER_CKIP128)
1471 csr1.field.Bss0Key3CipherAlg = CIPHER_WEP128;
1473 // modify software key table so that driver can specify correct algorithm in TXD upon TX
1474 for (i=0; i<SHARE_KEY_NUM; i++)
1476 if (pAd->SharedKey[BSS0][i].CipherAlg == CIPHER_CKIP64)
1477 pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_WEP64;
1478 else if (pAd->SharedKey[BSS0][i].CipherAlg == CIPHER_CKIP128)
1479 pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_WEP128;
1483 // On WPA-NONE, must update CipherAlg.
1484 // Because the OID_802_11_WEP_STATUS was been set after OID_802_11_ADD_KEY
1485 // and CipherAlg will be CIPHER_NONE by Windows ZeroConfig.
1486 // So we need to update CipherAlg after connect.
1488 if (pAd->StaCfg.AuthMode == Ndis802_11AuthModeWPANone)
1490 for (i = 0; i < SHARE_KEY_NUM; i++)
1492 if (pAd->SharedKey[BSS0][i].KeyLen != 0)
1494 if (pAd->StaCfg.WepStatus == Ndis802_11Encryption2Enabled)
1496 pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_TKIP;
1498 else if (pAd->StaCfg.WepStatus == Ndis802_11Encryption3Enabled)
1500 pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_AES;
1505 pAd->SharedKey[BSS0][i].CipherAlg = CIPHER_NONE;
1509 csr1.field.Bss0Key0CipherAlg = pAd->SharedKey[BSS0][0].CipherAlg;
1510 csr1.field.Bss0Key1CipherAlg = pAd->SharedKey[BSS0][1].CipherAlg;
1511 csr1.field.Bss0Key2CipherAlg = pAd->SharedKey[BSS0][2].CipherAlg;
1512 csr1.field.Bss0Key3CipherAlg = pAd->SharedKey[BSS0][3].CipherAlg;
1514 RTMP_IO_WRITE32(pAd, SHARED_KEY_MODE_BASE, csr1.word);
1515 DBGPRINT(RT_DEBUG_TRACE, ("SwitchBetweenWepAndCkip: modify BSS0 cipher to %s\n", CipherName[csr1.field.Bss0Key0CipherAlg]));
1519 #ifdef WPA_SUPPLICANT_SUPPORT
1520 #ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
1521 VOID SendAssocIEsToWpaSupplicant(
1522 IN PRTMP_ADAPTER pAd)
1524 union iwreq_data wrqu;
1525 unsigned char custom[IW_CUSTOM_MAX] = {0};
1527 if ((pAd->StaCfg.ReqVarIELen + 17) <= IW_CUSTOM_MAX)
1529 sprintf(custom, "ASSOCINFO_ReqIEs=");
1530 NdisMoveMemory(custom+17, pAd->StaCfg.ReqVarIEs, pAd->StaCfg.ReqVarIELen);
1531 memset(&wrqu, 0, sizeof(wrqu));
1532 wrqu.data.length = pAd->StaCfg.ReqVarIELen + 17;
1533 wrqu.data.flags = RT_REQIE_EVENT_FLAG;
1534 wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, custom);
1536 memset(&wrqu, 0, sizeof(wrqu));
1537 wrqu.data.flags = RT_ASSOCINFO_EVENT_FLAG;
1538 wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
1541 DBGPRINT(RT_DEBUG_TRACE, ("pAd->StaCfg.ReqVarIELen + 17 > MAX_CUSTOM_LEN\n"));
1545 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
1546 #endif // WPA_SUPPLICANT_SUPPORT //
1548 #ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
1549 int wext_notify_event_assoc(
1550 IN RTMP_ADAPTER *pAd)
1552 union iwreq_data wrqu;
1553 char custom[IW_CUSTOM_MAX] = {0};
1555 #if WIRELESS_EXT > 17
1556 if (pAd->StaCfg.ReqVarIELen <= IW_CUSTOM_MAX)
1558 wrqu.data.length = pAd->StaCfg.ReqVarIELen;
1559 memcpy(custom, pAd->StaCfg.ReqVarIEs, pAd->StaCfg.ReqVarIELen);
1560 wireless_send_event(pAd->net_dev, IWEVASSOCREQIE, &wrqu, custom);
1563 DBGPRINT(RT_DEBUG_TRACE, ("pAd->StaCfg.ReqVarIELen > MAX_CUSTOM_LEN\n"));
1565 if (((pAd->StaCfg.ReqVarIELen*2) + 17) <= IW_CUSTOM_MAX)
1568 wrqu.data.length = (pAd->StaCfg.ReqVarIELen*2) + 17;
1569 sprintf(custom, "ASSOCINFO(ReqIEs=");
1570 for (idx=0; idx<pAd->StaCfg.ReqVarIELen; idx++)
1571 sprintf(custom + strlen(custom), "%02x", pAd->StaCfg.ReqVarIEs[idx]);
1572 wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, custom);
1575 DBGPRINT(RT_DEBUG_TRACE, ("(pAd->StaCfg.ReqVarIELen*2) + 17 > MAX_CUSTOM_LEN\n"));
1581 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
1584 BOOLEAN StaAddMacTableEntry(
1585 IN PRTMP_ADAPTER pAd,
1586 IN PMAC_TABLE_ENTRY pEntry,
1587 IN UCHAR MaxSupportedRateIn500Kbps,
1588 IN HT_CAPABILITY_IE *pHtCapability,
1589 IN UCHAR HtCapabilityLen,
1590 IN USHORT CapabilityInfo)
1592 UCHAR MaxSupportedRate = RATE_11;
1595 CLIENT_STATUS_CLEAR_FLAG(pEntry, fCLIENT_STATUS_WMM_CAPABLE);
1597 switch (MaxSupportedRateIn500Kbps)
1599 case 108: MaxSupportedRate = RATE_54; break;
1600 case 96: MaxSupportedRate = RATE_48; break;
1601 case 72: MaxSupportedRate = RATE_36; break;
1602 case 48: MaxSupportedRate = RATE_24; break;
1603 case 36: MaxSupportedRate = RATE_18; break;
1604 case 24: MaxSupportedRate = RATE_12; break;
1605 case 18: MaxSupportedRate = RATE_9; break;
1606 case 12: MaxSupportedRate = RATE_6; break;
1607 case 22: MaxSupportedRate = RATE_11; break;
1608 case 11: MaxSupportedRate = RATE_5_5; break;
1609 case 4: MaxSupportedRate = RATE_2; break;
1610 case 2: MaxSupportedRate = RATE_1; break;
1611 default: MaxSupportedRate = RATE_11; break;
1614 if ((pAd->CommonCfg.PhyMode == PHY_11G) && (MaxSupportedRate < RATE_FIRST_OFDM_RATE))
1617 #ifdef DOT11_N_SUPPORT
1619 if (((pAd->CommonCfg.PhyMode == PHY_11N_2_4G) || (pAd->CommonCfg.PhyMode == PHY_11N_5G))&& (HtCapabilityLen == 0))
1621 #endif // DOT11_N_SUPPORT //
1626 NdisAcquireSpinLock(&pAd->MacTabLock);
1629 pEntry->PortSecured = WPA_802_1X_PORT_SECURED;
1630 if ((MaxSupportedRate < RATE_FIRST_OFDM_RATE) ||
1631 (pAd->CommonCfg.PhyMode == PHY_11B))
1633 pEntry->RateLen = 4;
1634 if (MaxSupportedRate >= RATE_FIRST_OFDM_RATE)
1635 MaxSupportedRate = RATE_11;
1638 pEntry->RateLen = 12;
1640 pEntry->MaxHTPhyMode.word = 0;
1641 pEntry->MinHTPhyMode.word = 0;
1642 pEntry->HTPhyMode.word = 0;
1643 pEntry->MaxSupportedRate = MaxSupportedRate;
1644 if (pEntry->MaxSupportedRate < RATE_FIRST_OFDM_RATE)
1646 pEntry->MaxHTPhyMode.field.MODE = MODE_CCK;
1647 pEntry->MaxHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
1648 pEntry->MinHTPhyMode.field.MODE = MODE_CCK;
1649 pEntry->MinHTPhyMode.field.MCS = pEntry->MaxSupportedRate;
1650 pEntry->HTPhyMode.field.MODE = MODE_CCK;
1651 pEntry->HTPhyMode.field.MCS = pEntry->MaxSupportedRate;
1655 pEntry->MaxHTPhyMode.field.MODE = MODE_OFDM;
1656 pEntry->MaxHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
1657 pEntry->MinHTPhyMode.field.MODE = MODE_OFDM;
1658 pEntry->MinHTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
1659 pEntry->HTPhyMode.field.MODE = MODE_OFDM;
1660 pEntry->HTPhyMode.field.MCS = OfdmRateToRxwiMCS[pEntry->MaxSupportedRate];
1662 pEntry->CapabilityInfo = CapabilityInfo;
1663 CLIENT_STATUS_CLEAR_FLAG(pEntry, fCLIENT_STATUS_AGGREGATION_CAPABLE);
1664 CLIENT_STATUS_CLEAR_FLAG(pEntry, fCLIENT_STATUS_PIGGYBACK_CAPABLE);
1667 #ifdef DOT11_N_SUPPORT
1668 // If this Entry supports 802.11n, upgrade to HT rate.
1669 if ((HtCapabilityLen != 0) && (pAd->CommonCfg.PhyMode >= PHY_11ABGN_MIXED))
1671 UCHAR j, bitmask; //k,bitmask;
1675 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_WMM_CAPABLE);
1676 if ((pHtCapability->HtCapInfo.GF) && (pAd->CommonCfg.DesiredHtPhy.GF))
1678 pEntry->MaxHTPhyMode.field.MODE = MODE_HTGREENFIELD;
1682 pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
1683 pAd->MacTab.fAnyStationNonGF = TRUE;
1684 pAd->CommonCfg.AddHTInfo.AddHtInfo2.NonGfPresent = 1;
1687 if ((pHtCapability->HtCapInfo.ChannelWidth) && (pAd->CommonCfg.DesiredHtPhy.ChannelWidth))
1689 pEntry->MaxHTPhyMode.field.BW= BW_40;
1690 pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor40)&(pHtCapability->HtCapInfo.ShortGIfor40));
1694 pEntry->MaxHTPhyMode.field.BW = BW_20;
1695 pEntry->MaxHTPhyMode.field.ShortGI = ((pAd->CommonCfg.DesiredHtPhy.ShortGIfor20)&(pHtCapability->HtCapInfo.ShortGIfor20));
1696 pAd->MacTab.fAnyStation20Only = TRUE;
1700 if (pAd->MACVersion >= RALINK_2883_VERSION && pAd->MACVersion < RALINK_3070_VERSION)
1701 pEntry->MaxHTPhyMode.field.TxBF = pAd->CommonCfg.RegTransmitSetting.field.TxBF;
1703 // find max fixed rate
1704 for (i=23; i>=0; i--) // 3*3
1707 bitmask = (1<<(i-(j*8)));
1708 if ((pAd->StaCfg.DesiredHtPhyInfo.MCSSet[j] & bitmask) && (pHtCapability->MCSSet[j] & bitmask))
1710 pEntry->MaxHTPhyMode.field.MCS = i;
1718 if (pAd->StaCfg.DesiredTransmitSetting.field.MCS != MCS_AUTO)
1720 if (pAd->StaCfg.DesiredTransmitSetting.field.MCS == 32)
1722 // Fix MCS as HT Duplicated Mode
1723 pEntry->MaxHTPhyMode.field.BW = 1;
1724 pEntry->MaxHTPhyMode.field.MODE = MODE_HTMIX;
1725 pEntry->MaxHTPhyMode.field.STBC = 0;
1726 pEntry->MaxHTPhyMode.field.ShortGI = 0;
1727 pEntry->MaxHTPhyMode.field.MCS = 32;
1729 else if (pEntry->MaxHTPhyMode.field.MCS > pAd->StaCfg.HTPhyMode.field.MCS)
1731 // STA supports fixed MCS
1732 pEntry->MaxHTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
1736 pEntry->MaxHTPhyMode.field.STBC = (pHtCapability->HtCapInfo.RxSTBC & (pAd->CommonCfg.DesiredHtPhy.TxSTBC));
1737 pEntry->MpduDensity = pHtCapability->HtCapParm.MpduDensity;
1738 pEntry->MaxRAmpduFactor = pHtCapability->HtCapParm.MaxRAmpduFactor;
1739 pEntry->MmpsMode = (UCHAR)pHtCapability->HtCapInfo.MimoPs;
1740 pEntry->AMsduSize = (UCHAR)pHtCapability->HtCapInfo.AMsduSize;
1741 pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
1743 if (pAd->CommonCfg.DesiredHtPhy.AmsduEnable && (pAd->CommonCfg.REGBACapability.field.AutoBA == FALSE))
1744 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_AMSDU_INUSED);
1745 if (pHtCapability->HtCapInfo.ShortGIfor20)
1746 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI20_CAPABLE);
1747 if (pHtCapability->HtCapInfo.ShortGIfor40)
1748 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_SGI40_CAPABLE);
1749 if (pHtCapability->HtCapInfo.TxSTBC)
1750 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_TxSTBC_CAPABLE);
1751 if (pHtCapability->HtCapInfo.RxSTBC)
1752 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RxSTBC_CAPABLE);
1753 if (pHtCapability->ExtHtCapInfo.PlusHTC)
1754 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_HTC_CAPABLE);
1755 if (pAd->CommonCfg.bRdg && pHtCapability->ExtHtCapInfo.RDGSupport)
1756 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_RDG_CAPABLE);
1757 if (pHtCapability->ExtHtCapInfo.MCSFeedback == 0x03)
1758 CLIENT_STATUS_SET_FLAG(pEntry, fCLIENT_STATUS_MCSFEEDBACK_CAPABLE);
1762 pAd->MacTab.fAnyStationIsLegacy = TRUE;
1765 NdisMoveMemory(&pEntry->HTCapability, pHtCapability, sizeof(HT_CAPABILITY_IE));
1766 #endif // DOT11_N_SUPPORT //
1768 pEntry->HTPhyMode.word = pEntry->MaxHTPhyMode.word;
1769 pEntry->CurrTxRate = pEntry->MaxSupportedRate;
1771 // Set asic auto fall back
1772 if (pAd->StaCfg.bAutoTxRateSwitch == TRUE)
1775 UCHAR TableSize = 0;
1777 MlmeSelectTxRateTable(pAd, pEntry, &pTable, &TableSize, &pEntry->CurrTxRateIndex);
1778 pEntry->bAutoTxRateSwitch = TRUE;
1782 pEntry->HTPhyMode.field.MODE = pAd->StaCfg.HTPhyMode.field.MODE;
1783 pEntry->HTPhyMode.field.MCS = pAd->StaCfg.HTPhyMode.field.MCS;
1784 pEntry->bAutoTxRateSwitch = FALSE;
1786 // If the legacy mode is set, overwrite the transmit setting of this entry.
1787 RTMPUpdateLegacyTxSetting((UCHAR)pAd->StaCfg.DesiredTransmitSetting.field.FixedTxMode, pEntry);
1790 pEntry->PortSecured = WPA_802_1X_PORT_SECURED;
1791 pEntry->Sst = SST_ASSOC;
1792 pEntry->AuthState = AS_AUTH_OPEN;
1793 pEntry->AuthMode = pAd->StaCfg.AuthMode;
1794 pEntry->WepStatus = pAd->StaCfg.WepStatus;
1796 NdisReleaseSpinLock(&pAd->MacTabLock);
1798 #ifdef WPA_SUPPLICANT_SUPPORT
1799 #ifndef NATIVE_WPA_SUPPLICANT_SUPPORT
1800 if (pAd->StaCfg.WpaSupplicantUP)
1802 union iwreq_data wrqu;
1804 SendAssocIEsToWpaSupplicant(pAd);
1805 memset(&wrqu, 0, sizeof(wrqu));
1806 wrqu.data.flags = RT_ASSOC_EVENT_FLAG;
1807 wireless_send_event(pAd->net_dev, IWEVCUSTOM, &wrqu, NULL);
1809 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //
1810 #endif // WPA_SUPPLICANT_SUPPORT //
1812 #ifdef NATIVE_WPA_SUPPLICANT_SUPPORT
1814 union iwreq_data wrqu;
1815 wext_notify_event_assoc(pAd);
1817 memset(wrqu.ap_addr.sa_data, 0, MAC_ADDR_LEN);
1818 memcpy(wrqu.ap_addr.sa_data, pAd->MlmeAux.Bssid, MAC_ADDR_LEN);
1819 wireless_send_event(pAd->net_dev, SIOCGIWAP, &wrqu, NULL);
1822 #endif // NATIVE_WPA_SUPPLICANT_SUPPORT //