2   * This file contains the handling of command.
 
   3   * It prepares command and sends it to firmware when it is ready.
 
   6 #include <net/iw_handler.h>
 
  16 static struct cmd_ctrl_node *lbs_get_cmd_ctrl_node(struct lbs_private *priv);
 
  17 static void lbs_set_cmd_ctrl_node(struct lbs_private *priv,
 
  18                     struct cmd_ctrl_node *ptempnode,
 
  23  *  @brief Checks whether a command is allowed in Power Save mode
 
  25  *  @param command the command ID
 
  26  *  @return        1 if allowed, 0 if not allowed
 
  28 static u8 is_command_allowed_in_ps(u16 cmd)
 
  40  *  @brief Updates the hardware details like MAC address and regulatory region
 
  42  *  @param priv         A pointer to struct lbs_private structure
 
  44  *  @return             0 on success, error on failure
 
  46 int lbs_update_hw_spec(struct lbs_private *priv)
 
  48         struct cmd_ds_get_hw_spec cmd;
 
  53         lbs_deb_enter(LBS_DEB_CMD);
 
  55         memset(&cmd, 0, sizeof(cmd));
 
  56         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
  57         memcpy(cmd.permanentaddr, priv->current_addr, ETH_ALEN);
 
  58         ret = lbs_cmd_with_response(priv, CMD_GET_HW_SPEC, &cmd);
 
  62         priv->fwcapinfo = le32_to_cpu(cmd.fwcapinfo);
 
  64         /* The firmware release is in an interesting format: the patch
 
  65          * level is in the most significant nibble ... so fix that: */
 
  66         priv->fwrelease = le32_to_cpu(cmd.fwrelease);
 
  67         priv->fwrelease = (priv->fwrelease << 8) |
 
  68                 (priv->fwrelease >> 24 & 0xff);
 
  70         /* Some firmware capabilities:
 
  71          * CF card    firmware 5.0.16p0:   cap 0x00000303
 
  72          * USB dongle firmware 5.110.17p2: cap 0x00000303
 
  74         printk("libertas: %s, fw %u.%u.%up%u, cap 0x%08x\n",
 
  75                 print_mac(mac, cmd.permanentaddr),
 
  76                 priv->fwrelease >> 24 & 0xff,
 
  77                 priv->fwrelease >> 16 & 0xff,
 
  78                 priv->fwrelease >>  8 & 0xff,
 
  79                 priv->fwrelease       & 0xff,
 
  81         lbs_deb_cmd("GET_HW_SPEC: hardware interface 0x%x, hardware spec 0x%04x\n",
 
  82                     cmd.hwifversion, cmd.version);
 
  84         /* Clamp region code to 8-bit since FW spec indicates that it should
 
  85          * only ever be 8-bit, even though the field size is 16-bit.  Some firmware
 
  86          * returns non-zero high 8 bits here.
 
  88         priv->regioncode = le16_to_cpu(cmd.regioncode) & 0xFF;
 
  90         for (i = 0; i < MRVDRV_MAX_REGION_CODE; i++) {
 
  91                 /* use the region code to search for the index */
 
  92                 if (priv->regioncode == lbs_region_code_to_index[i])
 
  96         /* if it's unidentified region code, use the default (USA) */
 
  97         if (i >= MRVDRV_MAX_REGION_CODE) {
 
  98                 priv->regioncode = 0x10;
 
  99                 lbs_pr_info("unidentified region code; using the default (USA)\n");
 
 102         if (priv->current_addr[0] == 0xff)
 
 103                 memmove(priv->current_addr, cmd.permanentaddr, ETH_ALEN);
 
 105         memcpy(priv->dev->dev_addr, priv->current_addr, ETH_ALEN);
 
 107                 memcpy(priv->mesh_dev->dev_addr, priv->current_addr, ETH_ALEN);
 
 109         if (lbs_set_regiontable(priv, priv->regioncode, 0)) {
 
 114         if (lbs_set_universaltable(priv, 0)) {
 
 120         lbs_deb_leave(LBS_DEB_CMD);
 
 124 int lbs_host_sleep_cfg(struct lbs_private *priv, uint32_t criteria)
 
 126         struct cmd_ds_host_sleep cmd_config;
 
 129         cmd_config.hdr.size = cpu_to_le16(sizeof(cmd_config));
 
 130         cmd_config.criteria = cpu_to_le32(criteria);
 
 131         cmd_config.gpio = priv->wol_gpio;
 
 132         cmd_config.gap = priv->wol_gap;
 
 134         ret = lbs_cmd_with_response(priv, CMD_802_11_HOST_SLEEP_CFG, &cmd_config);
 
 136                 lbs_deb_cmd("Set WOL criteria to %x\n", criteria);
 
 137                 priv->wol_criteria = criteria;
 
 139                 lbs_pr_info("HOST_SLEEP_CFG failed %d\n", ret);
 
 144 EXPORT_SYMBOL_GPL(lbs_host_sleep_cfg);
 
 146 static int lbs_cmd_802_11_ps_mode(struct lbs_private *priv,
 
 147                                    struct cmd_ds_command *cmd,
 
 150         struct cmd_ds_802_11_ps_mode *psm = &cmd->params.psmode;
 
 152         lbs_deb_enter(LBS_DEB_CMD);
 
 154         cmd->command = cpu_to_le16(CMD_802_11_PS_MODE);
 
 155         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_ps_mode) +
 
 157         psm->action = cpu_to_le16(cmd_action);
 
 158         psm->multipledtim = 0;
 
 159         switch (cmd_action) {
 
 160         case CMD_SUBCMD_ENTER_PS:
 
 161                 lbs_deb_cmd("PS command:" "SubCode- Enter PS\n");
 
 163                 psm->locallisteninterval = 0;
 
 164                 psm->nullpktinterval = 0;
 
 166                     cpu_to_le16(MRVDRV_DEFAULT_MULTIPLE_DTIM);
 
 169         case CMD_SUBCMD_EXIT_PS:
 
 170                 lbs_deb_cmd("PS command:" "SubCode- Exit PS\n");
 
 173         case CMD_SUBCMD_SLEEP_CONFIRMED:
 
 174                 lbs_deb_cmd("PS command: SubCode- sleep confirm\n");
 
 181         lbs_deb_leave(LBS_DEB_CMD);
 
 185 int lbs_cmd_802_11_inactivity_timeout(struct lbs_private *priv,
 
 186                                       uint16_t cmd_action, uint16_t *timeout)
 
 188         struct cmd_ds_802_11_inactivity_timeout cmd;
 
 191         lbs_deb_enter(LBS_DEB_CMD);
 
 193         cmd.hdr.command = cpu_to_le16(CMD_802_11_INACTIVITY_TIMEOUT);
 
 194         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 196         cmd.action = cpu_to_le16(cmd_action);
 
 198         if (cmd_action == CMD_ACT_SET)
 
 199                 cmd.timeout = cpu_to_le16(*timeout);
 
 203         ret = lbs_cmd_with_response(priv, CMD_802_11_INACTIVITY_TIMEOUT, &cmd);
 
 206                 *timeout = le16_to_cpu(cmd.timeout);
 
 208         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 212 int lbs_cmd_802_11_sleep_params(struct lbs_private *priv, uint16_t cmd_action,
 
 213                                 struct sleep_params *sp)
 
 215         struct cmd_ds_802_11_sleep_params cmd;
 
 218         lbs_deb_enter(LBS_DEB_CMD);
 
 220         if (cmd_action == CMD_ACT_GET) {
 
 221                 memset(&cmd, 0, sizeof(cmd));
 
 223                 cmd.error = cpu_to_le16(sp->sp_error);
 
 224                 cmd.offset = cpu_to_le16(sp->sp_offset);
 
 225                 cmd.stabletime = cpu_to_le16(sp->sp_stabletime);
 
 226                 cmd.calcontrol = sp->sp_calcontrol;
 
 227                 cmd.externalsleepclk = sp->sp_extsleepclk;
 
 228                 cmd.reserved = cpu_to_le16(sp->sp_reserved);
 
 230         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 231         cmd.action = cpu_to_le16(cmd_action);
 
 233         ret = lbs_cmd_with_response(priv, CMD_802_11_SLEEP_PARAMS, &cmd);
 
 236                 lbs_deb_cmd("error 0x%x, offset 0x%x, stabletime 0x%x, "
 
 237                             "calcontrol 0x%x extsleepclk 0x%x\n",
 
 238                             le16_to_cpu(cmd.error), le16_to_cpu(cmd.offset),
 
 239                             le16_to_cpu(cmd.stabletime), cmd.calcontrol,
 
 240                             cmd.externalsleepclk);
 
 242                 sp->sp_error = le16_to_cpu(cmd.error);
 
 243                 sp->sp_offset = le16_to_cpu(cmd.offset);
 
 244                 sp->sp_stabletime = le16_to_cpu(cmd.stabletime);
 
 245                 sp->sp_calcontrol = cmd.calcontrol;
 
 246                 sp->sp_extsleepclk = cmd.externalsleepclk;
 
 247                 sp->sp_reserved = le16_to_cpu(cmd.reserved);
 
 250         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 254 int lbs_cmd_802_11_set_wep(struct lbs_private *priv, uint16_t cmd_action,
 
 255                            struct assoc_request *assoc)
 
 257         struct cmd_ds_802_11_set_wep cmd;
 
 260         lbs_deb_enter(LBS_DEB_CMD);
 
 262         cmd.hdr.command = cpu_to_le16(CMD_802_11_SET_WEP);
 
 263         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 265         cmd.action = cpu_to_le16(cmd_action);
 
 267         if (cmd_action == CMD_ACT_ADD) {
 
 270                 /* default tx key index */
 
 271                 cmd.keyindex = cpu_to_le16(assoc->wep_tx_keyidx &
 
 272                                            CMD_WEP_KEY_INDEX_MASK);
 
 274                 /* Copy key types and material to host command structure */
 
 275                 for (i = 0; i < 4; i++) {
 
 276                         struct enc_key *pkey = &assoc->wep_keys[i];
 
 280                                 cmd.keytype[i] = CMD_TYPE_WEP_40_BIT;
 
 281                                 memmove(cmd.keymaterial[i], pkey->key, pkey->len);
 
 282                                 lbs_deb_cmd("SET_WEP: add key %d (40 bit)\n", i);
 
 284                         case KEY_LEN_WEP_104:
 
 285                                 cmd.keytype[i] = CMD_TYPE_WEP_104_BIT;
 
 286                                 memmove(cmd.keymaterial[i], pkey->key, pkey->len);
 
 287                                 lbs_deb_cmd("SET_WEP: add key %d (104 bit)\n", i);
 
 292                                 lbs_deb_cmd("SET_WEP: invalid key %d, length %d\n",
 
 299         } else if (cmd_action == CMD_ACT_REMOVE) {
 
 300                 /* ACT_REMOVE clears _all_ WEP keys */
 
 302                 /* default tx key index */
 
 303                 cmd.keyindex = cpu_to_le16(priv->wep_tx_keyidx &
 
 304                                            CMD_WEP_KEY_INDEX_MASK);
 
 305                 lbs_deb_cmd("SET_WEP: remove key %d\n", priv->wep_tx_keyidx);
 
 308         ret = lbs_cmd_with_response(priv, CMD_802_11_SET_WEP, &cmd);
 
 310         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 314 int lbs_cmd_802_11_enable_rsn(struct lbs_private *priv, uint16_t cmd_action,
 
 317         struct cmd_ds_802_11_enable_rsn cmd;
 
 320         lbs_deb_enter(LBS_DEB_CMD);
 
 322         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 323         cmd.action = cpu_to_le16(cmd_action);
 
 325         if (cmd_action == CMD_ACT_SET) {
 
 327                         cmd.enable = cpu_to_le16(CMD_ENABLE_RSN);
 
 329                         cmd.enable = cpu_to_le16(CMD_DISABLE_RSN);
 
 330                 lbs_deb_cmd("ENABLE_RSN: %d\n", *enable);
 
 333         ret = lbs_cmd_with_response(priv, CMD_802_11_ENABLE_RSN, &cmd);
 
 334         if (!ret && cmd_action == CMD_ACT_GET)
 
 335                 *enable = le16_to_cpu(cmd.enable);
 
 337         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 341 static void set_one_wpa_key(struct MrvlIEtype_keyParamSet *keyparam,
 
 344         lbs_deb_enter(LBS_DEB_CMD);
 
 346         if (key->flags & KEY_INFO_WPA_ENABLED)
 
 347                 keyparam->keyinfo |= cpu_to_le16(KEY_INFO_WPA_ENABLED);
 
 348         if (key->flags & KEY_INFO_WPA_UNICAST)
 
 349                 keyparam->keyinfo |= cpu_to_le16(KEY_INFO_WPA_UNICAST);
 
 350         if (key->flags & KEY_INFO_WPA_MCAST)
 
 351                 keyparam->keyinfo |= cpu_to_le16(KEY_INFO_WPA_MCAST);
 
 353         keyparam->type = cpu_to_le16(TLV_TYPE_KEY_MATERIAL);
 
 354         keyparam->keytypeid = cpu_to_le16(key->type);
 
 355         keyparam->keylen = cpu_to_le16(key->len);
 
 356         memcpy(keyparam->key, key->key, key->len);
 
 358         /* Length field doesn't include the {type,length} header */
 
 359         keyparam->length = cpu_to_le16(sizeof(*keyparam) - 4);
 
 360         lbs_deb_leave(LBS_DEB_CMD);
 
 363 int lbs_cmd_802_11_key_material(struct lbs_private *priv, uint16_t cmd_action,
 
 364                                 struct assoc_request *assoc)
 
 366         struct cmd_ds_802_11_key_material cmd;
 
 370         lbs_deb_enter(LBS_DEB_CMD);
 
 372         cmd.action = cpu_to_le16(cmd_action);
 
 373         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 375         if (cmd_action == CMD_ACT_GET) {
 
 376                 cmd.hdr.size = cpu_to_le16(S_DS_GEN + 2);
 
 378                 memset(cmd.keyParamSet, 0, sizeof(cmd.keyParamSet));
 
 380                 if (test_bit(ASSOC_FLAG_WPA_UCAST_KEY, &assoc->flags)) {
 
 381                         set_one_wpa_key(&cmd.keyParamSet[index],
 
 382                                         &assoc->wpa_unicast_key);
 
 386                 if (test_bit(ASSOC_FLAG_WPA_MCAST_KEY, &assoc->flags)) {
 
 387                         set_one_wpa_key(&cmd.keyParamSet[index],
 
 388                                         &assoc->wpa_mcast_key);
 
 392                 /* The common header and as many keys as we included */
 
 393                 cmd.hdr.size = cpu_to_le16(offsetof(typeof(cmd),
 
 394                                                     keyParamSet[index]));
 
 396         ret = lbs_cmd_with_response(priv, CMD_802_11_KEY_MATERIAL, &cmd);
 
 397         /* Copy the returned key to driver private data */
 
 398         if (!ret && cmd_action == CMD_ACT_GET) {
 
 399                 void *buf_ptr = cmd.keyParamSet;
 
 400                 void *resp_end = &(&cmd)[1];
 
 402                 while (buf_ptr < resp_end) {
 
 403                         struct MrvlIEtype_keyParamSet *keyparam = buf_ptr;
 
 405                         uint16_t param_set_len = le16_to_cpu(keyparam->length);
 
 406                         uint16_t key_len = le16_to_cpu(keyparam->keylen);
 
 407                         uint16_t key_flags = le16_to_cpu(keyparam->keyinfo);
 
 408                         uint16_t key_type = le16_to_cpu(keyparam->keytypeid);
 
 411                         end = (void *)keyparam + sizeof(keyparam->type)
 
 412                                 + sizeof(keyparam->length) + param_set_len;
 
 414                         /* Make sure we don't access past the end of the IEs */
 
 418                         if (key_flags & KEY_INFO_WPA_UNICAST)
 
 419                                 key = &priv->wpa_unicast_key;
 
 420                         else if (key_flags & KEY_INFO_WPA_MCAST)
 
 421                                 key = &priv->wpa_mcast_key;
 
 425                         /* Copy returned key into driver */
 
 426                         memset(key, 0, sizeof(struct enc_key));
 
 427                         if (key_len > sizeof(key->key))
 
 429                         key->type = key_type;
 
 430                         key->flags = key_flags;
 
 432                         memcpy(key->key, keyparam->key, key->len);
 
 438         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 442 static int lbs_cmd_802_11_reset(struct lbs_private *priv,
 
 443                                  struct cmd_ds_command *cmd, int cmd_action)
 
 445         struct cmd_ds_802_11_reset *reset = &cmd->params.reset;
 
 447         lbs_deb_enter(LBS_DEB_CMD);
 
 449         cmd->command = cpu_to_le16(CMD_802_11_RESET);
 
 450         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_reset) + S_DS_GEN);
 
 451         reset->action = cpu_to_le16(cmd_action);
 
 453         lbs_deb_leave(LBS_DEB_CMD);
 
 457 static int lbs_cmd_802_11_get_log(struct lbs_private *priv,
 
 458                                    struct cmd_ds_command *cmd)
 
 460         lbs_deb_enter(LBS_DEB_CMD);
 
 461         cmd->command = cpu_to_le16(CMD_802_11_GET_LOG);
 
 463                 cpu_to_le16(sizeof(struct cmd_ds_802_11_get_log) + S_DS_GEN);
 
 465         lbs_deb_leave(LBS_DEB_CMD);
 
 469 static int lbs_cmd_802_11_get_stat(struct lbs_private *priv,
 
 470                                     struct cmd_ds_command *cmd)
 
 472         lbs_deb_enter(LBS_DEB_CMD);
 
 473         cmd->command = cpu_to_le16(CMD_802_11_GET_STAT);
 
 475             cpu_to_le16(sizeof(struct cmd_ds_802_11_get_stat) + S_DS_GEN);
 
 477         lbs_deb_leave(LBS_DEB_CMD);
 
 481 static int lbs_cmd_802_11_snmp_mib(struct lbs_private *priv,
 
 482                                     struct cmd_ds_command *cmd,
 
 484                                     int cmd_oid, void *pdata_buf)
 
 486         struct cmd_ds_802_11_snmp_mib *pSNMPMIB = &cmd->params.smib;
 
 489         lbs_deb_enter(LBS_DEB_CMD);
 
 491         lbs_deb_cmd("SNMP_CMD: cmd_oid = 0x%x\n", cmd_oid);
 
 493         cmd->command = cpu_to_le16(CMD_802_11_SNMP_MIB);
 
 494         cmd->size = cpu_to_le16(sizeof(*pSNMPMIB) + S_DS_GEN);
 
 497         case OID_802_11_INFRASTRUCTURE_MODE:
 
 499                 u8 mode = (u8) (size_t) pdata_buf;
 
 500                 pSNMPMIB->querytype = cpu_to_le16(CMD_ACT_SET);
 
 501                 pSNMPMIB->oid = cpu_to_le16((u16) DESIRED_BSSTYPE_I);
 
 502                 pSNMPMIB->bufsize = cpu_to_le16(sizeof(u8));
 
 503                 if (mode == IW_MODE_ADHOC) {
 
 504                         ucTemp = SNMP_MIB_VALUE_ADHOC;
 
 506                         /* Infra and Auto modes */
 
 507                         ucTemp = SNMP_MIB_VALUE_INFRA;
 
 510                 memmove(pSNMPMIB->value, &ucTemp, sizeof(u8));
 
 515         case OID_802_11D_ENABLE:
 
 519                         pSNMPMIB->oid = cpu_to_le16((u16) DOT11D_I);
 
 521                         if (cmd_action == CMD_ACT_SET) {
 
 522                                 pSNMPMIB->querytype = cpu_to_le16(CMD_ACT_SET);
 
 523                                 pSNMPMIB->bufsize = cpu_to_le16(sizeof(u16));
 
 524                                 ulTemp = *(u32 *)pdata_buf;
 
 525                                 *((__le16 *)(pSNMPMIB->value)) =
 
 526                                     cpu_to_le16((u16) ulTemp);
 
 531         case OID_802_11_FRAGMENTATION_THRESHOLD:
 
 535                         pSNMPMIB->oid = cpu_to_le16((u16) FRAGTHRESH_I);
 
 537                         if (cmd_action == CMD_ACT_GET) {
 
 538                                 pSNMPMIB->querytype = cpu_to_le16(CMD_ACT_GET);
 
 539                         } else if (cmd_action == CMD_ACT_SET) {
 
 540                                 pSNMPMIB->querytype = cpu_to_le16(CMD_ACT_SET);
 
 541                                 pSNMPMIB->bufsize = cpu_to_le16(sizeof(u16));
 
 542                                 ulTemp = *((u32 *) pdata_buf);
 
 543                                 *((__le16 *)(pSNMPMIB->value)) =
 
 544                                     cpu_to_le16((u16) ulTemp);
 
 551         case OID_802_11_RTS_THRESHOLD:
 
 555                         pSNMPMIB->oid = cpu_to_le16(RTSTHRESH_I);
 
 557                         if (cmd_action == CMD_ACT_GET) {
 
 558                                 pSNMPMIB->querytype = cpu_to_le16(CMD_ACT_GET);
 
 559                         } else if (cmd_action == CMD_ACT_SET) {
 
 560                                 pSNMPMIB->querytype = cpu_to_le16(CMD_ACT_SET);
 
 561                                 pSNMPMIB->bufsize = cpu_to_le16(sizeof(u16));
 
 562                                 ulTemp = *((u32 *)pdata_buf);
 
 563                                 *(__le16 *)(pSNMPMIB->value) =
 
 564                                     cpu_to_le16((u16) ulTemp);
 
 569         case OID_802_11_TX_RETRYCOUNT:
 
 570                 pSNMPMIB->oid = cpu_to_le16((u16) SHORT_RETRYLIM_I);
 
 572                 if (cmd_action == CMD_ACT_GET) {
 
 573                         pSNMPMIB->querytype = cpu_to_le16(CMD_ACT_GET);
 
 574                 } else if (cmd_action == CMD_ACT_SET) {
 
 575                         pSNMPMIB->querytype = cpu_to_le16(CMD_ACT_SET);
 
 576                         pSNMPMIB->bufsize = cpu_to_le16(sizeof(u16));
 
 577                         *((__le16 *)(pSNMPMIB->value)) =
 
 578                             cpu_to_le16((u16) priv->txretrycount);
 
 587                "SNMP_CMD: command=0x%x, size=0x%x, seqnum=0x%x, result=0x%x\n",
 
 588                le16_to_cpu(cmd->command), le16_to_cpu(cmd->size),
 
 589                le16_to_cpu(cmd->seqnum), le16_to_cpu(cmd->result));
 
 592                "SNMP_CMD: action 0x%x, oid 0x%x, oidsize 0x%x, value 0x%x\n",
 
 593                le16_to_cpu(pSNMPMIB->querytype), le16_to_cpu(pSNMPMIB->oid),
 
 594                le16_to_cpu(pSNMPMIB->bufsize),
 
 595                le16_to_cpu(*(__le16 *) pSNMPMIB->value));
 
 597         lbs_deb_leave(LBS_DEB_CMD);
 
 601 static int lbs_cmd_802_11_rf_tx_power(struct lbs_private *priv,
 
 602                                        struct cmd_ds_command *cmd,
 
 603                                        u16 cmd_action, void *pdata_buf)
 
 606         struct cmd_ds_802_11_rf_tx_power *prtp = &cmd->params.txp;
 
 608         lbs_deb_enter(LBS_DEB_CMD);
 
 611             cpu_to_le16((sizeof(struct cmd_ds_802_11_rf_tx_power)) + S_DS_GEN);
 
 612         cmd->command = cpu_to_le16(CMD_802_11_RF_TX_POWER);
 
 613         prtp->action = cpu_to_le16(cmd_action);
 
 615         lbs_deb_cmd("RF_TX_POWER_CMD: size:%d cmd:0x%x Act:%d\n",
 
 616                     le16_to_cpu(cmd->size), le16_to_cpu(cmd->command),
 
 617                     le16_to_cpu(prtp->action));
 
 619         switch (cmd_action) {
 
 620         case CMD_ACT_TX_POWER_OPT_GET:
 
 621                 prtp->action = cpu_to_le16(CMD_ACT_GET);
 
 622                 prtp->currentlevel = 0;
 
 625         case CMD_ACT_TX_POWER_OPT_SET_HIGH:
 
 626                 prtp->action = cpu_to_le16(CMD_ACT_SET);
 
 627                 prtp->currentlevel = cpu_to_le16(CMD_ACT_TX_POWER_INDEX_HIGH);
 
 630         case CMD_ACT_TX_POWER_OPT_SET_MID:
 
 631                 prtp->action = cpu_to_le16(CMD_ACT_SET);
 
 632                 prtp->currentlevel = cpu_to_le16(CMD_ACT_TX_POWER_INDEX_MID);
 
 635         case CMD_ACT_TX_POWER_OPT_SET_LOW:
 
 636                 prtp->action = cpu_to_le16(CMD_ACT_SET);
 
 637                 prtp->currentlevel = cpu_to_le16(*((u16 *) pdata_buf));
 
 641         lbs_deb_leave(LBS_DEB_CMD);
 
 645 static int lbs_cmd_802_11_monitor_mode(struct lbs_private *priv,
 
 646                                       struct cmd_ds_command *cmd,
 
 647                                       u16 cmd_action, void *pdata_buf)
 
 649         struct cmd_ds_802_11_monitor_mode *monitor = &cmd->params.monitor;
 
 651         cmd->command = cpu_to_le16(CMD_802_11_MONITOR_MODE);
 
 653             cpu_to_le16(sizeof(struct cmd_ds_802_11_monitor_mode) +
 
 656         monitor->action = cpu_to_le16(cmd_action);
 
 657         if (cmd_action == CMD_ACT_SET) {
 
 659                     cpu_to_le16((u16) (*(u32 *) pdata_buf));
 
 665 static int lbs_cmd_802_11_rate_adapt_rateset(struct lbs_private *priv,
 
 666                                               struct cmd_ds_command *cmd,
 
 669         struct cmd_ds_802_11_rate_adapt_rateset
 
 670         *rateadapt = &cmd->params.rateset;
 
 672         lbs_deb_enter(LBS_DEB_CMD);
 
 674             cpu_to_le16(sizeof(struct cmd_ds_802_11_rate_adapt_rateset)
 
 676         cmd->command = cpu_to_le16(CMD_802_11_RATE_ADAPT_RATESET);
 
 678         rateadapt->action = cpu_to_le16(cmd_action);
 
 679         rateadapt->enablehwauto = cpu_to_le16(priv->enablehwauto);
 
 680         rateadapt->bitmap = cpu_to_le16(priv->ratebitmap);
 
 682         lbs_deb_leave(LBS_DEB_CMD);
 
 687  *  @brief Get the current data rate
 
 689  *  @param priv         A pointer to struct lbs_private structure
 
 691  *  @return             The data rate on success, error on failure
 
 693 int lbs_get_data_rate(struct lbs_private *priv)
 
 695         struct cmd_ds_802_11_data_rate cmd;
 
 698         lbs_deb_enter(LBS_DEB_CMD);
 
 700         memset(&cmd, 0, sizeof(cmd));
 
 701         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 702         cmd.action = cpu_to_le16(CMD_ACT_GET_TX_RATE);
 
 704         ret = lbs_cmd_with_response(priv, CMD_802_11_DATA_RATE, &cmd);
 
 708         lbs_deb_hex(LBS_DEB_CMD, "DATA_RATE_RESP", (u8 *) &cmd, sizeof (cmd));
 
 710         ret = (int) lbs_fw_index_to_data_rate(cmd.rates[0]);
 
 711         lbs_deb_cmd("DATA_RATE: current rate 0x%02x\n", ret);
 
 714         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 719  *  @brief Set the data rate
 
 721  *  @param priv         A pointer to struct lbs_private structure
 
 722  *  @param rate         The desired data rate, or 0 to clear a locked rate
 
 724  *  @return             0 on success, error on failure
 
 726 int lbs_set_data_rate(struct lbs_private *priv, u8 rate)
 
 728         struct cmd_ds_802_11_data_rate cmd;
 
 731         lbs_deb_enter(LBS_DEB_CMD);
 
 733         memset(&cmd, 0, sizeof(cmd));
 
 734         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 737                 cmd.action = cpu_to_le16(CMD_ACT_SET_TX_FIX_RATE);
 
 738                 cmd.rates[0] = lbs_data_rate_to_fw_index(rate);
 
 739                 if (cmd.rates[0] == 0) {
 
 740                         lbs_deb_cmd("DATA_RATE: invalid requested rate of"
 
 745                 lbs_deb_cmd("DATA_RATE: set fixed 0x%02X\n", cmd.rates[0]);
 
 747                 cmd.action = cpu_to_le16(CMD_ACT_SET_TX_AUTO);
 
 748                 lbs_deb_cmd("DATA_RATE: setting auto\n");
 
 751         ret = lbs_cmd_with_response(priv, CMD_802_11_DATA_RATE, &cmd);
 
 755         lbs_deb_hex(LBS_DEB_CMD, "DATA_RATE_RESP", (u8 *) &cmd, sizeof (cmd));
 
 757         /* FIXME: get actual rates FW can do if this command actually returns
 
 758          * all data rates supported.
 
 760         priv->cur_rate = lbs_fw_index_to_data_rate(cmd.rates[0]);
 
 761         lbs_deb_cmd("DATA_RATE: current rate is 0x%02x\n", priv->cur_rate);
 
 764         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 768 static int lbs_cmd_mac_multicast_adr(struct lbs_private *priv,
 
 769                                       struct cmd_ds_command *cmd,
 
 772         struct cmd_ds_mac_multicast_adr *pMCastAdr = &cmd->params.madr;
 
 774         lbs_deb_enter(LBS_DEB_CMD);
 
 775         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_mac_multicast_adr) +
 
 777         cmd->command = cpu_to_le16(CMD_MAC_MULTICAST_ADR);
 
 779         lbs_deb_cmd("MULTICAST_ADR: setting %d addresses\n", pMCastAdr->nr_of_adrs);
 
 780         pMCastAdr->action = cpu_to_le16(cmd_action);
 
 781         pMCastAdr->nr_of_adrs =
 
 782             cpu_to_le16((u16) priv->nr_of_multicastmacaddr);
 
 783         memcpy(pMCastAdr->maclist, priv->multicastlist,
 
 784                priv->nr_of_multicastmacaddr * ETH_ALEN);
 
 786         lbs_deb_leave(LBS_DEB_CMD);
 
 791  *  @brief Get the radio channel
 
 793  *  @param priv         A pointer to struct lbs_private structure
 
 795  *  @return             The channel on success, error on failure
 
 797 int lbs_get_channel(struct lbs_private *priv)
 
 799         struct cmd_ds_802_11_rf_channel cmd;
 
 802         lbs_deb_enter(LBS_DEB_CMD);
 
 804         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 805         cmd.action = cpu_to_le16(CMD_OPT_802_11_RF_CHANNEL_GET);
 
 807         ret = lbs_cmd_with_response(priv, CMD_802_11_RF_CHANNEL, &cmd);
 
 811         ret = le16_to_cpu(cmd.channel);
 
 812         lbs_deb_cmd("current radio channel is %d\n", ret);
 
 815         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 820  *  @brief Set the radio channel
 
 822  *  @param priv         A pointer to struct lbs_private structure
 
 823  *  @param channel      The desired channel, or 0 to clear a locked channel
 
 825  *  @return             0 on success, error on failure
 
 827 int lbs_set_channel(struct lbs_private *priv, u8 channel)
 
 829         struct cmd_ds_802_11_rf_channel cmd;
 
 830         u8 old_channel = priv->curbssparams.channel;
 
 833         lbs_deb_enter(LBS_DEB_CMD);
 
 835         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
 836         cmd.action = cpu_to_le16(CMD_OPT_802_11_RF_CHANNEL_SET);
 
 837         cmd.channel = cpu_to_le16(channel);
 
 839         ret = lbs_cmd_with_response(priv, CMD_802_11_RF_CHANNEL, &cmd);
 
 843         priv->curbssparams.channel = (uint8_t) le16_to_cpu(cmd.channel);
 
 844         lbs_deb_cmd("channel switch from %d to %d\n", old_channel,
 
 845                 priv->curbssparams.channel);
 
 848         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
 852 static int lbs_cmd_802_11_rssi(struct lbs_private *priv,
 
 853                                 struct cmd_ds_command *cmd)
 
 856         lbs_deb_enter(LBS_DEB_CMD);
 
 857         cmd->command = cpu_to_le16(CMD_802_11_RSSI);
 
 858         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_rssi) + S_DS_GEN);
 
 859         cmd->params.rssi.N = cpu_to_le16(DEFAULT_BCN_AVG_FACTOR);
 
 861         /* reset Beacon SNR/NF/RSSI values */
 
 862         priv->SNR[TYPE_BEACON][TYPE_NOAVG] = 0;
 
 863         priv->SNR[TYPE_BEACON][TYPE_AVG] = 0;
 
 864         priv->NF[TYPE_BEACON][TYPE_NOAVG] = 0;
 
 865         priv->NF[TYPE_BEACON][TYPE_AVG] = 0;
 
 866         priv->RSSI[TYPE_BEACON][TYPE_NOAVG] = 0;
 
 867         priv->RSSI[TYPE_BEACON][TYPE_AVG] = 0;
 
 869         lbs_deb_leave(LBS_DEB_CMD);
 
 873 static int lbs_cmd_reg_access(struct lbs_private *priv,
 
 874                                struct cmd_ds_command *cmdptr,
 
 875                                u8 cmd_action, void *pdata_buf)
 
 877         struct lbs_offset_value *offval;
 
 879         lbs_deb_enter(LBS_DEB_CMD);
 
 881         offval = (struct lbs_offset_value *)pdata_buf;
 
 883         switch (le16_to_cpu(cmdptr->command)) {
 
 884         case CMD_MAC_REG_ACCESS:
 
 886                         struct cmd_ds_mac_reg_access *macreg;
 
 889                             cpu_to_le16(sizeof (struct cmd_ds_mac_reg_access)
 
 892                             (struct cmd_ds_mac_reg_access *)&cmdptr->params.
 
 895                         macreg->action = cpu_to_le16(cmd_action);
 
 896                         macreg->offset = cpu_to_le16((u16) offval->offset);
 
 897                         macreg->value = cpu_to_le32(offval->value);
 
 902         case CMD_BBP_REG_ACCESS:
 
 904                         struct cmd_ds_bbp_reg_access *bbpreg;
 
 908                                              (struct cmd_ds_bbp_reg_access)
 
 911                             (struct cmd_ds_bbp_reg_access *)&cmdptr->params.
 
 914                         bbpreg->action = cpu_to_le16(cmd_action);
 
 915                         bbpreg->offset = cpu_to_le16((u16) offval->offset);
 
 916                         bbpreg->value = (u8) offval->value;
 
 921         case CMD_RF_REG_ACCESS:
 
 923                         struct cmd_ds_rf_reg_access *rfreg;
 
 927                                              (struct cmd_ds_rf_reg_access) +
 
 930                             (struct cmd_ds_rf_reg_access *)&cmdptr->params.
 
 933                         rfreg->action = cpu_to_le16(cmd_action);
 
 934                         rfreg->offset = cpu_to_le16((u16) offval->offset);
 
 935                         rfreg->value = (u8) offval->value;
 
 944         lbs_deb_leave(LBS_DEB_CMD);
 
 948 static int lbs_cmd_802_11_mac_address(struct lbs_private *priv,
 
 949                                        struct cmd_ds_command *cmd,
 
 953         lbs_deb_enter(LBS_DEB_CMD);
 
 954         cmd->command = cpu_to_le16(CMD_802_11_MAC_ADDRESS);
 
 955         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_mac_address) +
 
 959         cmd->params.macadd.action = cpu_to_le16(cmd_action);
 
 961         if (cmd_action == CMD_ACT_SET) {
 
 962                 memcpy(cmd->params.macadd.macadd,
 
 963                        priv->current_addr, ETH_ALEN);
 
 964                 lbs_deb_hex(LBS_DEB_CMD, "SET_CMD: MAC addr", priv->current_addr, 6);
 
 967         lbs_deb_leave(LBS_DEB_CMD);
 
 971 static int lbs_cmd_802_11_eeprom_access(struct lbs_private *priv,
 
 972                                          struct cmd_ds_command *cmd,
 
 973                                          int cmd_action, void *pdata_buf)
 
 975         struct lbs_ioctl_regrdwr *ea = pdata_buf;
 
 977         lbs_deb_enter(LBS_DEB_CMD);
 
 979         cmd->command = cpu_to_le16(CMD_802_11_EEPROM_ACCESS);
 
 980         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_eeprom_access) +
 
 984         cmd->params.rdeeprom.action = cpu_to_le16(ea->action);
 
 985         cmd->params.rdeeprom.offset = cpu_to_le16(ea->offset);
 
 986         cmd->params.rdeeprom.bytecount = cpu_to_le16(ea->NOB);
 
 987         cmd->params.rdeeprom.value = 0;
 
 989         lbs_deb_leave(LBS_DEB_CMD);
 
 993 static int lbs_cmd_bt_access(struct lbs_private *priv,
 
 994                                struct cmd_ds_command *cmd,
 
 995                                u16 cmd_action, void *pdata_buf)
 
 997         struct cmd_ds_bt_access *bt_access = &cmd->params.bt;
 
 998         lbs_deb_enter_args(LBS_DEB_CMD, "action %d", cmd_action);
 
1000         cmd->command = cpu_to_le16(CMD_BT_ACCESS);
 
1001         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_bt_access) + S_DS_GEN);
 
1003         bt_access->action = cpu_to_le16(cmd_action);
 
1005         switch (cmd_action) {
 
1006         case CMD_ACT_BT_ACCESS_ADD:
 
1007                 memcpy(bt_access->addr1, pdata_buf, 2 * ETH_ALEN);
 
1008                 lbs_deb_hex(LBS_DEB_MESH, "BT_ADD: blinded MAC addr", bt_access->addr1, 6);
 
1010         case CMD_ACT_BT_ACCESS_DEL:
 
1011                 memcpy(bt_access->addr1, pdata_buf, 1 * ETH_ALEN);
 
1012                 lbs_deb_hex(LBS_DEB_MESH, "BT_DEL: blinded MAC addr", bt_access->addr1, 6);
 
1014         case CMD_ACT_BT_ACCESS_LIST:
 
1015                 bt_access->id = cpu_to_le32(*(u32 *) pdata_buf);
 
1017         case CMD_ACT_BT_ACCESS_RESET:
 
1019         case CMD_ACT_BT_ACCESS_SET_INVERT:
 
1020                 bt_access->id = cpu_to_le32(*(u32 *) pdata_buf);
 
1022         case CMD_ACT_BT_ACCESS_GET_INVERT:
 
1027         lbs_deb_leave(LBS_DEB_CMD);
 
1031 static int lbs_cmd_fwt_access(struct lbs_private *priv,
 
1032                                struct cmd_ds_command *cmd,
 
1033                                u16 cmd_action, void *pdata_buf)
 
1035         struct cmd_ds_fwt_access *fwt_access = &cmd->params.fwt;
 
1036         lbs_deb_enter_args(LBS_DEB_CMD, "action %d", cmd_action);
 
1038         cmd->command = cpu_to_le16(CMD_FWT_ACCESS);
 
1039         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_fwt_access) + S_DS_GEN);
 
1043                 memcpy(fwt_access, pdata_buf, sizeof(*fwt_access));
 
1045                 memset(fwt_access, 0, sizeof(*fwt_access));
 
1047         fwt_access->action = cpu_to_le16(cmd_action);
 
1049         lbs_deb_leave(LBS_DEB_CMD);
 
1053 int lbs_mesh_access(struct lbs_private *priv, uint16_t cmd_action,
 
1054                     struct cmd_ds_mesh_access *cmd)
 
1058         lbs_deb_enter_args(LBS_DEB_CMD, "action %d", cmd_action);
 
1060         cmd->hdr.command = cpu_to_le16(CMD_MESH_ACCESS);
 
1061         cmd->hdr.size = cpu_to_le16(sizeof(*cmd));
 
1062         cmd->hdr.result = 0;
 
1064         cmd->action = cpu_to_le16(cmd_action);
 
1066         ret = lbs_cmd_with_response(priv, CMD_MESH_ACCESS, cmd);
 
1068         lbs_deb_leave(LBS_DEB_CMD);
 
1072 int lbs_mesh_config(struct lbs_private *priv, uint16_t enable, uint16_t chan)
 
1074         struct cmd_ds_mesh_config cmd;
 
1076         memset(&cmd, 0, sizeof(cmd));
 
1077         cmd.action = cpu_to_le16(enable);
 
1078         cmd.channel = cpu_to_le16(chan);
 
1079         cmd.type = cpu_to_le16(priv->mesh_tlv);
 
1080         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
1083                 cmd.length = cpu_to_le16(priv->mesh_ssid_len);
 
1084                 memcpy(cmd.data, priv->mesh_ssid, priv->mesh_ssid_len);
 
1086         lbs_deb_cmd("mesh config enable %d TLV %x channel %d SSID %s\n",
 
1087                     enable, priv->mesh_tlv, chan,
 
1088                     escape_essid(priv->mesh_ssid, priv->mesh_ssid_len));
 
1089         return lbs_cmd_with_response(priv, CMD_MESH_CONFIG, &cmd);
 
1092 static int lbs_cmd_bcn_ctrl(struct lbs_private * priv,
 
1093                                 struct cmd_ds_command *cmd,
 
1096         struct cmd_ds_802_11_beacon_control
 
1097                 *bcn_ctrl = &cmd->params.bcn_ctrl;
 
1099         lbs_deb_enter(LBS_DEB_CMD);
 
1101             cpu_to_le16(sizeof(struct cmd_ds_802_11_beacon_control)
 
1103         cmd->command = cpu_to_le16(CMD_802_11_BEACON_CTRL);
 
1105         bcn_ctrl->action = cpu_to_le16(cmd_action);
 
1106         bcn_ctrl->beacon_enable = cpu_to_le16(priv->beacon_enable);
 
1107         bcn_ctrl->beacon_period = cpu_to_le16(priv->beacon_period);
 
1109         lbs_deb_leave(LBS_DEB_CMD);
 
1113 static void lbs_queue_cmd(struct lbs_private *priv,
 
1114                           struct cmd_ctrl_node *cmdnode)
 
1116         unsigned long flags;
 
1119         lbs_deb_enter(LBS_DEB_HOST);
 
1122                 lbs_deb_host("QUEUE_CMD: cmdnode is NULL\n");
 
1125         if (!cmdnode->cmdbuf->size) {
 
1126                 lbs_deb_host("DNLD_CMD: cmd size is zero\n");
 
1129         cmdnode->result = 0;
 
1131         /* Exit_PS command needs to be queued in the header always. */
 
1132         if (le16_to_cpu(cmdnode->cmdbuf->command) == CMD_802_11_PS_MODE) {
 
1133                 struct cmd_ds_802_11_ps_mode *psm = (void *) &cmdnode->cmdbuf[1];
 
1135                 if (psm->action == cpu_to_le16(CMD_SUBCMD_EXIT_PS)) {
 
1136                         if (priv->psstate != PS_STATE_FULL_POWER)
 
1141         spin_lock_irqsave(&priv->driver_lock, flags);
 
1144                 list_add_tail(&cmdnode->list, &priv->cmdpendingq);
 
1146                 list_add(&cmdnode->list, &priv->cmdpendingq);
 
1148         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1150         lbs_deb_host("QUEUE_CMD: inserted command 0x%04x into cmdpendingq\n",
 
1151                      le16_to_cpu(cmdnode->cmdbuf->command));
 
1154         lbs_deb_leave(LBS_DEB_HOST);
 
1157 static void lbs_submit_command(struct lbs_private *priv,
 
1158                                struct cmd_ctrl_node *cmdnode)
 
1160         unsigned long flags;
 
1161         struct cmd_header *cmd;
 
1167         lbs_deb_enter(LBS_DEB_HOST);
 
1169         cmd = cmdnode->cmdbuf;
 
1171         spin_lock_irqsave(&priv->driver_lock, flags);
 
1172         priv->cur_cmd = cmdnode;
 
1173         priv->cur_cmd_retcode = 0;
 
1174         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1176         cmdsize = le16_to_cpu(cmd->size);
 
1177         command = le16_to_cpu(cmd->command);
 
1179         /* These commands take longer */
 
1180         if (command == CMD_802_11_SCAN || command == CMD_802_11_ASSOCIATE ||
 
1181             command == CMD_802_11_AUTHENTICATE)
 
1184         lbs_deb_cmd("DNLD_CMD: command 0x%04x, seq %d, size %d, jiffies %lu\n",
 
1185                      command, le16_to_cpu(cmd->seqnum), cmdsize, jiffies);
 
1186         lbs_deb_hex(LBS_DEB_CMD, "DNLD_CMD", (void *) cmdnode->cmdbuf, cmdsize);
 
1188         ret = priv->hw_host_to_card(priv, MVMS_CMD, (u8 *) cmd, cmdsize);
 
1191                 lbs_pr_info("DNLD_CMD: hw_host_to_card failed: %d\n", ret);
 
1192                 /* Let the timer kick in and retry, and potentially reset
 
1193                    the whole thing if the condition persists */
 
1197         /* Setup the timer after transmit command */
 
1198         mod_timer(&priv->command_timer, jiffies + timeo);
 
1200         lbs_deb_leave(LBS_DEB_HOST);
 
1203 static int lbs_cmd_mac_control(struct lbs_private *priv,
 
1204                                 struct cmd_ds_command *cmd)
 
1206         struct cmd_ds_mac_control *mac = &cmd->params.macctrl;
 
1208         lbs_deb_enter(LBS_DEB_CMD);
 
1210         cmd->command = cpu_to_le16(CMD_MAC_CONTROL);
 
1211         cmd->size = cpu_to_le16(sizeof(struct cmd_ds_mac_control) + S_DS_GEN);
 
1212         mac->action = cpu_to_le16(priv->currentpacketfilter);
 
1214         lbs_deb_cmd("MAC_CONTROL: action 0x%04x, size %d\n",
 
1215                     le16_to_cpu(mac->action), le16_to_cpu(cmd->size));
 
1217         lbs_deb_leave(LBS_DEB_CMD);
 
1222  *  This function inserts command node to cmdfreeq
 
1223  *  after cleans it. Requires priv->driver_lock held.
 
1225 static void __lbs_cleanup_and_insert_cmd(struct lbs_private *priv,
 
1226                                          struct cmd_ctrl_node *cmdnode)
 
1228         lbs_deb_enter(LBS_DEB_HOST);
 
1233         cmdnode->callback = NULL;
 
1234         cmdnode->callback_arg = 0;
 
1236         memset(cmdnode->cmdbuf, 0, LBS_CMD_BUFFER_SIZE);
 
1238         list_add_tail(&cmdnode->list, &priv->cmdfreeq);
 
1240         lbs_deb_leave(LBS_DEB_HOST);
 
1243 static void lbs_cleanup_and_insert_cmd(struct lbs_private *priv,
 
1244         struct cmd_ctrl_node *ptempcmd)
 
1246         unsigned long flags;
 
1248         spin_lock_irqsave(&priv->driver_lock, flags);
 
1249         __lbs_cleanup_and_insert_cmd(priv, ptempcmd);
 
1250         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1253 void lbs_complete_command(struct lbs_private *priv, struct cmd_ctrl_node *cmd,
 
1256         if (cmd == priv->cur_cmd)
 
1257                 priv->cur_cmd_retcode = result;
 
1259         cmd->result = result;
 
1260         cmd->cmdwaitqwoken = 1;
 
1261         wake_up_interruptible(&cmd->cmdwait_q);
 
1264                 __lbs_cleanup_and_insert_cmd(priv, cmd);
 
1265         priv->cur_cmd = NULL;
 
1268 int lbs_set_radio_control(struct lbs_private *priv)
 
1271         struct cmd_ds_802_11_radio_control cmd;
 
1273         lbs_deb_enter(LBS_DEB_CMD);
 
1275         cmd.hdr.size = cpu_to_le16(sizeof(cmd));
 
1276         cmd.action = cpu_to_le16(CMD_ACT_SET);
 
1278         switch (priv->preamble) {
 
1279         case CMD_TYPE_SHORT_PREAMBLE:
 
1280                 cmd.control = cpu_to_le16(SET_SHORT_PREAMBLE);
 
1283         case CMD_TYPE_LONG_PREAMBLE:
 
1284                 cmd.control = cpu_to_le16(SET_LONG_PREAMBLE);
 
1287         case CMD_TYPE_AUTO_PREAMBLE:
 
1289                 cmd.control = cpu_to_le16(SET_AUTO_PREAMBLE);
 
1294                 cmd.control |= cpu_to_le16(TURN_ON_RF);
 
1296                 cmd.control &= cpu_to_le16(~TURN_ON_RF);
 
1298         lbs_deb_cmd("RADIO_SET: radio %d, preamble %d\n", priv->radioon,
 
1301         ret = lbs_cmd_with_response(priv, CMD_802_11_RADIO_CONTROL, &cmd);
 
1303         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
1307 int lbs_set_mac_packet_filter(struct lbs_private *priv)
 
1311         lbs_deb_enter(LBS_DEB_CMD);
 
1313         /* Send MAC control command to station */
 
1314         ret = lbs_prepare_and_send_command(priv,
 
1315                                     CMD_MAC_CONTROL, 0, 0, 0, NULL);
 
1317         lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
 
1322  *  @brief This function prepare the command before send to firmware.
 
1324  *  @param priv         A pointer to struct lbs_private structure
 
1325  *  @param cmd_no       command number
 
1326  *  @param cmd_action   command action: GET or SET
 
1327  *  @param wait_option  wait option: wait response or not
 
1328  *  @param cmd_oid      cmd oid: treated as sub command
 
1329  *  @param pdata_buf    A pointer to informaion buffer
 
1332 int lbs_prepare_and_send_command(struct lbs_private *priv,
 
1335                           u16 wait_option, u32 cmd_oid, void *pdata_buf)
 
1338         struct cmd_ctrl_node *cmdnode;
 
1339         struct cmd_ds_command *cmdptr;
 
1340         unsigned long flags;
 
1342         lbs_deb_enter(LBS_DEB_HOST);
 
1345                 lbs_deb_host("PREP_CMD: priv is NULL\n");
 
1350         if (priv->surpriseremoved) {
 
1351                 lbs_deb_host("PREP_CMD: card removed\n");
 
1356         cmdnode = lbs_get_cmd_ctrl_node(priv);
 
1358         if (cmdnode == NULL) {
 
1359                 lbs_deb_host("PREP_CMD: cmdnode is NULL\n");
 
1361                 /* Wake up main thread to execute next command */
 
1362                 wake_up_interruptible(&priv->waitq);
 
1367         lbs_set_cmd_ctrl_node(priv, cmdnode, pdata_buf);
 
1369         cmdptr = (struct cmd_ds_command *)cmdnode->cmdbuf;
 
1371         lbs_deb_host("PREP_CMD: command 0x%04x\n", cmd_no);
 
1373         /* Set sequence number, command and INT option */
 
1375         cmdptr->seqnum = cpu_to_le16(priv->seqnum);
 
1377         cmdptr->command = cpu_to_le16(cmd_no);
 
1381         case CMD_802_11_PS_MODE:
 
1382                 ret = lbs_cmd_802_11_ps_mode(priv, cmdptr, cmd_action);
 
1385         case CMD_MAC_CONTROL:
 
1386                 ret = lbs_cmd_mac_control(priv, cmdptr);
 
1389         case CMD_802_11_ASSOCIATE:
 
1390         case CMD_802_11_REASSOCIATE:
 
1391                 ret = lbs_cmd_80211_associate(priv, cmdptr, pdata_buf);
 
1394         case CMD_802_11_DEAUTHENTICATE:
 
1395                 ret = lbs_cmd_80211_deauthenticate(priv, cmdptr);
 
1398         case CMD_802_11_AD_HOC_START:
 
1399                 ret = lbs_cmd_80211_ad_hoc_start(priv, cmdptr, pdata_buf);
 
1404         case CMD_802_11_RESET:
 
1405                 ret = lbs_cmd_802_11_reset(priv, cmdptr, cmd_action);
 
1408         case CMD_802_11_GET_LOG:
 
1409                 ret = lbs_cmd_802_11_get_log(priv, cmdptr);
 
1412         case CMD_802_11_AUTHENTICATE:
 
1413                 ret = lbs_cmd_80211_authenticate(priv, cmdptr, pdata_buf);
 
1416         case CMD_802_11_GET_STAT:
 
1417                 ret = lbs_cmd_802_11_get_stat(priv, cmdptr);
 
1420         case CMD_802_11_SNMP_MIB:
 
1421                 ret = lbs_cmd_802_11_snmp_mib(priv, cmdptr,
 
1422                                                cmd_action, cmd_oid, pdata_buf);
 
1425         case CMD_MAC_REG_ACCESS:
 
1426         case CMD_BBP_REG_ACCESS:
 
1427         case CMD_RF_REG_ACCESS:
 
1428                 ret = lbs_cmd_reg_access(priv, cmdptr, cmd_action, pdata_buf);
 
1431         case CMD_802_11_RF_TX_POWER:
 
1432                 ret = lbs_cmd_802_11_rf_tx_power(priv, cmdptr,
 
1433                                                   cmd_action, pdata_buf);
 
1436         case CMD_802_11_RATE_ADAPT_RATESET:
 
1437                 ret = lbs_cmd_802_11_rate_adapt_rateset(priv,
 
1438                                                          cmdptr, cmd_action);
 
1441         case CMD_MAC_MULTICAST_ADR:
 
1442                 ret = lbs_cmd_mac_multicast_adr(priv, cmdptr, cmd_action);
 
1445         case CMD_802_11_MONITOR_MODE:
 
1446                 ret = lbs_cmd_802_11_monitor_mode(priv, cmdptr,
 
1447                                           cmd_action, pdata_buf);
 
1450         case CMD_802_11_AD_HOC_JOIN:
 
1451                 ret = lbs_cmd_80211_ad_hoc_join(priv, cmdptr, pdata_buf);
 
1454         case CMD_802_11_RSSI:
 
1455                 ret = lbs_cmd_802_11_rssi(priv, cmdptr);
 
1458         case CMD_802_11_AD_HOC_STOP:
 
1459                 ret = lbs_cmd_80211_ad_hoc_stop(priv, cmdptr);
 
1462         case CMD_802_11_PAIRWISE_TSC:
 
1464         case CMD_802_11_GROUP_TSC:
 
1467         case CMD_802_11_MAC_ADDRESS:
 
1468                 ret = lbs_cmd_802_11_mac_address(priv, cmdptr, cmd_action);
 
1471         case CMD_802_11_EEPROM_ACCESS:
 
1472                 ret = lbs_cmd_802_11_eeprom_access(priv, cmdptr,
 
1473                                                     cmd_action, pdata_buf);
 
1476         case CMD_802_11_SET_AFC:
 
1477         case CMD_802_11_GET_AFC:
 
1479                 cmdptr->command = cpu_to_le16(cmd_no);
 
1480                 cmdptr->size = cpu_to_le16(sizeof(struct cmd_ds_802_11_afc) +
 
1483                 memmove(&cmdptr->params.afc,
 
1484                         pdata_buf, sizeof(struct cmd_ds_802_11_afc));
 
1489         case CMD_802_11D_DOMAIN_INFO:
 
1490                 ret = lbs_cmd_802_11d_domain_info(priv, cmdptr,
 
1491                                                    cmd_no, cmd_action);
 
1494         case CMD_802_11_TPC_CFG:
 
1495                 cmdptr->command = cpu_to_le16(CMD_802_11_TPC_CFG);
 
1497                     cpu_to_le16(sizeof(struct cmd_ds_802_11_tpc_cfg) +
 
1500                 memmove(&cmdptr->params.tpccfg,
 
1501                         pdata_buf, sizeof(struct cmd_ds_802_11_tpc_cfg));
 
1505         case CMD_802_11_LED_GPIO_CTRL:
 
1507                         struct mrvlietypes_ledgpio *gpio =
 
1508                             (struct mrvlietypes_ledgpio*)
 
1509                             cmdptr->params.ledgpio.data;
 
1511                         memmove(&cmdptr->params.ledgpio,
 
1513                                 sizeof(struct cmd_ds_802_11_led_ctrl));
 
1516                             cpu_to_le16(CMD_802_11_LED_GPIO_CTRL);
 
1518 #define ACTION_NUMLED_TLVTYPE_LEN_FIELDS_LEN 8
 
1520                             cpu_to_le16(le16_to_cpu(gpio->header.len)
 
1522                                 + ACTION_NUMLED_TLVTYPE_LEN_FIELDS_LEN);
 
1523                         gpio->header.len = gpio->header.len;
 
1529         case CMD_802_11_PWR_CFG:
 
1530                 cmdptr->command = cpu_to_le16(CMD_802_11_PWR_CFG);
 
1532                     cpu_to_le16(sizeof(struct cmd_ds_802_11_pwr_cfg) +
 
1534                 memmove(&cmdptr->params.pwrcfg, pdata_buf,
 
1535                         sizeof(struct cmd_ds_802_11_pwr_cfg));
 
1540                 ret = lbs_cmd_bt_access(priv, cmdptr, cmd_action, pdata_buf);
 
1543         case CMD_FWT_ACCESS:
 
1544                 ret = lbs_cmd_fwt_access(priv, cmdptr, cmd_action, pdata_buf);
 
1548                 cmdptr->command = cpu_to_le16(CMD_GET_TSF);
 
1549                 cmdptr->size = cpu_to_le16(sizeof(struct cmd_ds_get_tsf) +
 
1553         case CMD_802_11_BEACON_CTRL:
 
1554                 ret = lbs_cmd_bcn_ctrl(priv, cmdptr, cmd_action);
 
1557                 lbs_deb_host("PREP_CMD: unknown command 0x%04x\n", cmd_no);
 
1562         /* return error, since the command preparation failed */
 
1564                 lbs_deb_host("PREP_CMD: command preparation failed\n");
 
1565                 lbs_cleanup_and_insert_cmd(priv, cmdnode);
 
1570         cmdnode->cmdwaitqwoken = 0;
 
1572         lbs_queue_cmd(priv, cmdnode);
 
1573         wake_up_interruptible(&priv->waitq);
 
1575         if (wait_option & CMD_OPTION_WAITFORRSP) {
 
1576                 lbs_deb_host("PREP_CMD: wait for response\n");
 
1578                 wait_event_interruptible(cmdnode->cmdwait_q,
 
1579                                          cmdnode->cmdwaitqwoken);
 
1582         spin_lock_irqsave(&priv->driver_lock, flags);
 
1583         if (priv->cur_cmd_retcode) {
 
1584                 lbs_deb_host("PREP_CMD: command failed with return code %d\n",
 
1585                        priv->cur_cmd_retcode);
 
1586                 priv->cur_cmd_retcode = 0;
 
1589         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1592         lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
 
1597  *  @brief This function allocates the command buffer and link
 
1598  *  it to command free queue.
 
1600  *  @param priv         A pointer to struct lbs_private structure
 
1603 int lbs_allocate_cmd_buffer(struct lbs_private *priv)
 
1608         struct cmd_ctrl_node *cmdarray;
 
1610         lbs_deb_enter(LBS_DEB_HOST);
 
1612         /* Allocate and initialize the command array */
 
1613         bufsize = sizeof(struct cmd_ctrl_node) * LBS_NUM_CMD_BUFFERS;
 
1614         if (!(cmdarray = kzalloc(bufsize, GFP_KERNEL))) {
 
1615                 lbs_deb_host("ALLOC_CMD_BUF: tempcmd_array is NULL\n");
 
1619         priv->cmd_array = cmdarray;
 
1621         /* Allocate and initialize each command buffer in the command array */
 
1622         for (i = 0; i < LBS_NUM_CMD_BUFFERS; i++) {
 
1623                 cmdarray[i].cmdbuf = kzalloc(LBS_CMD_BUFFER_SIZE, GFP_KERNEL);
 
1624                 if (!cmdarray[i].cmdbuf) {
 
1625                         lbs_deb_host("ALLOC_CMD_BUF: ptempvirtualaddr is NULL\n");
 
1631         for (i = 0; i < LBS_NUM_CMD_BUFFERS; i++) {
 
1632                 init_waitqueue_head(&cmdarray[i].cmdwait_q);
 
1633                 lbs_cleanup_and_insert_cmd(priv, &cmdarray[i]);
 
1638         lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
 
1643  *  @brief This function frees the command buffer.
 
1645  *  @param priv         A pointer to struct lbs_private structure
 
1648 int lbs_free_cmd_buffer(struct lbs_private *priv)
 
1650         struct cmd_ctrl_node *cmdarray;
 
1653         lbs_deb_enter(LBS_DEB_HOST);
 
1655         /* need to check if cmd array is allocated or not */
 
1656         if (priv->cmd_array == NULL) {
 
1657                 lbs_deb_host("FREE_CMD_BUF: cmd_array is NULL\n");
 
1661         cmdarray = priv->cmd_array;
 
1663         /* Release shared memory buffers */
 
1664         for (i = 0; i < LBS_NUM_CMD_BUFFERS; i++) {
 
1665                 if (cmdarray[i].cmdbuf) {
 
1666                         kfree(cmdarray[i].cmdbuf);
 
1667                         cmdarray[i].cmdbuf = NULL;
 
1671         /* Release cmd_ctrl_node */
 
1672         if (priv->cmd_array) {
 
1673                 kfree(priv->cmd_array);
 
1674                 priv->cmd_array = NULL;
 
1678         lbs_deb_leave(LBS_DEB_HOST);
 
1683  *  @brief This function gets a free command node if available in
 
1684  *  command free queue.
 
1686  *  @param priv         A pointer to struct lbs_private structure
 
1687  *  @return cmd_ctrl_node A pointer to cmd_ctrl_node structure or NULL
 
1689 static struct cmd_ctrl_node *lbs_get_cmd_ctrl_node(struct lbs_private *priv)
 
1691         struct cmd_ctrl_node *tempnode;
 
1692         unsigned long flags;
 
1694         lbs_deb_enter(LBS_DEB_HOST);
 
1699         spin_lock_irqsave(&priv->driver_lock, flags);
 
1701         if (!list_empty(&priv->cmdfreeq)) {
 
1702                 tempnode = list_first_entry(&priv->cmdfreeq,
 
1703                                             struct cmd_ctrl_node, list);
 
1704                 list_del(&tempnode->list);
 
1706                 lbs_deb_host("GET_CMD_NODE: cmd_ctrl_node is not available\n");
 
1710         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1712         lbs_deb_leave(LBS_DEB_HOST);
 
1717  *  @brief This function cleans command node.
 
1719  *  @param ptempnode    A pointer to cmdCtrlNode structure
 
1724  *  @brief This function initializes the command node.
 
1726  *  @param priv         A pointer to struct lbs_private structure
 
1727  *  @param ptempnode    A pointer to cmd_ctrl_node structure
 
1728  *  @param pdata_buf    A pointer to informaion buffer
 
1731 static void lbs_set_cmd_ctrl_node(struct lbs_private *priv,
 
1732                                   struct cmd_ctrl_node *ptempnode,
 
1735         lbs_deb_enter(LBS_DEB_HOST);
 
1740         ptempnode->callback = NULL;
 
1741         ptempnode->callback_arg = (unsigned long)pdata_buf;
 
1743         lbs_deb_leave(LBS_DEB_HOST);
 
1747  *  @brief This function executes next command in command
 
1748  *  pending queue. It will put fimware back to PS mode
 
1751  *  @param priv     A pointer to struct lbs_private structure
 
1754 int lbs_execute_next_command(struct lbs_private *priv)
 
1756         struct cmd_ctrl_node *cmdnode = NULL;
 
1757         struct cmd_header *cmd;
 
1758         unsigned long flags;
 
1761         /* Debug group is LBS_DEB_THREAD and not LBS_DEB_HOST, because the
 
1762          * only caller to us is lbs_thread() and we get even when a
 
1763          * data packet is received */
 
1764         lbs_deb_enter(LBS_DEB_THREAD);
 
1766         spin_lock_irqsave(&priv->driver_lock, flags);
 
1768         if (priv->cur_cmd) {
 
1769                 lbs_pr_alert( "EXEC_NEXT_CMD: already processing command!\n");
 
1770                 spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1775         if (!list_empty(&priv->cmdpendingq)) {
 
1776                 cmdnode = list_first_entry(&priv->cmdpendingq,
 
1777                                            struct cmd_ctrl_node, list);
 
1780         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1783                 cmd = cmdnode->cmdbuf;
 
1785                 if (is_command_allowed_in_ps(le16_to_cpu(cmd->command))) {
 
1786                         if ((priv->psstate == PS_STATE_SLEEP) ||
 
1787                             (priv->psstate == PS_STATE_PRE_SLEEP)) {
 
1789                                        "EXEC_NEXT_CMD: cannot send cmd 0x%04x in psstate %d\n",
 
1790                                        le16_to_cpu(cmd->command),
 
1795                         lbs_deb_host("EXEC_NEXT_CMD: OK to send command "
 
1796                                      "0x%04x in psstate %d\n",
 
1797                                      le16_to_cpu(cmd->command), priv->psstate);
 
1798                 } else if (priv->psstate != PS_STATE_FULL_POWER) {
 
1800                          * 1. Non-PS command:
 
1801                          * Queue it. set needtowakeup to TRUE if current state
 
1802                          * is SLEEP, otherwise call lbs_ps_wakeup to send Exit_PS.
 
1803                          * 2. PS command but not Exit_PS:
 
1805                          * 3. PS command Exit_PS:
 
1806                          * Set needtowakeup to TRUE if current state is SLEEP,
 
1807                          * otherwise send this command down to firmware
 
1810                         if (cmd->command != cpu_to_le16(CMD_802_11_PS_MODE)) {
 
1811                                 /*  Prepare to send Exit PS,
 
1812                                  *  this non PS command will be sent later */
 
1813                                 if ((priv->psstate == PS_STATE_SLEEP)
 
1814                                     || (priv->psstate == PS_STATE_PRE_SLEEP)
 
1816                                         /* w/ new scheme, it will not reach here.
 
1817                                            since it is blocked in main_thread. */
 
1818                                         priv->needtowakeup = 1;
 
1820                                         lbs_ps_wakeup(priv, 0);
 
1826                                  * PS command. Ignore it if it is not Exit_PS.
 
1827                                  * otherwise send it down immediately.
 
1829                                 struct cmd_ds_802_11_ps_mode *psm = (void *)&cmd[1];
 
1832                                        "EXEC_NEXT_CMD: PS cmd, action 0x%02x\n",
 
1835                                     cpu_to_le16(CMD_SUBCMD_EXIT_PS)) {
 
1837                                                "EXEC_NEXT_CMD: ignore ENTER_PS cmd\n");
 
1838                                         list_del(&cmdnode->list);
 
1839                                         spin_lock_irqsave(&priv->driver_lock, flags);
 
1840                                         lbs_complete_command(priv, cmdnode, 0);
 
1841                                         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1847                                 if ((priv->psstate == PS_STATE_SLEEP) ||
 
1848                                     (priv->psstate == PS_STATE_PRE_SLEEP)) {
 
1850                                                "EXEC_NEXT_CMD: ignore EXIT_PS cmd in sleep\n");
 
1851                                         list_del(&cmdnode->list);
 
1852                                         spin_lock_irqsave(&priv->driver_lock, flags);
 
1853                                         lbs_complete_command(priv, cmdnode, 0);
 
1854                                         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1855                                         priv->needtowakeup = 1;
 
1862                                        "EXEC_NEXT_CMD: sending EXIT_PS\n");
 
1865                 list_del(&cmdnode->list);
 
1866                 lbs_deb_host("EXEC_NEXT_CMD: sending command 0x%04x\n",
 
1867                             le16_to_cpu(cmd->command));
 
1868                 lbs_submit_command(priv, cmdnode);
 
1871                  * check if in power save mode, if yes, put the device back
 
1874                 if ((priv->psmode != LBS802_11POWERMODECAM) &&
 
1875                     (priv->psstate == PS_STATE_FULL_POWER) &&
 
1876                     ((priv->connect_status == LBS_CONNECTED) ||
 
1877                     (priv->mesh_connect_status == LBS_CONNECTED))) {
 
1878                         if (priv->secinfo.WPAenabled ||
 
1879                             priv->secinfo.WPA2enabled) {
 
1880                                 /* check for valid WPA group keys */
 
1881                                 if (priv->wpa_mcast_key.len ||
 
1882                                     priv->wpa_unicast_key.len) {
 
1884                                                "EXEC_NEXT_CMD: WPA enabled and GTK_SET"
 
1885                                                " go back to PS_SLEEP");
 
1886                                         lbs_ps_sleep(priv, 0);
 
1890                                        "EXEC_NEXT_CMD: cmdpendingq empty, "
 
1891                                        "go back to PS_SLEEP");
 
1892                                 lbs_ps_sleep(priv, 0);
 
1899         lbs_deb_leave(LBS_DEB_THREAD);
 
1903 void lbs_send_iwevcustom_event(struct lbs_private *priv, s8 *str)
 
1905         union iwreq_data iwrq;
 
1908         lbs_deb_enter(LBS_DEB_WEXT);
 
1910         memset(&iwrq, 0, sizeof(union iwreq_data));
 
1911         memset(buf, 0, sizeof(buf));
 
1913         snprintf(buf, sizeof(buf) - 1, "%s", str);
 
1915         iwrq.data.length = strlen(buf) + 1 + IW_EV_LCP_LEN;
 
1917         /* Send Event to upper layer */
 
1918         lbs_deb_wext("event indication string %s\n", (char *)buf);
 
1919         lbs_deb_wext("event indication length %d\n", iwrq.data.length);
 
1920         lbs_deb_wext("sending wireless event IWEVCUSTOM for %s\n", str);
 
1922         wireless_send_event(priv->dev, IWEVCUSTOM, &iwrq, buf);
 
1924         lbs_deb_leave(LBS_DEB_WEXT);
 
1927 static int sendconfirmsleep(struct lbs_private *priv, u8 *cmdptr, u16 size)
 
1929         unsigned long flags;
 
1932         lbs_deb_enter(LBS_DEB_HOST);
 
1934         lbs_deb_host("SEND_SLEEPC_CMD: before download, cmd size %d\n",
 
1937         lbs_deb_hex(LBS_DEB_HOST, "sleep confirm command", cmdptr, size);
 
1939         ret = priv->hw_host_to_card(priv, MVMS_CMD, cmdptr, size);
 
1941         spin_lock_irqsave(&priv->driver_lock, flags);
 
1942         if (priv->intcounter || priv->currenttxskb)
 
1943                 lbs_deb_host("SEND_SLEEPC_CMD: intcounter %d, currenttxskb %p\n",
 
1944                        priv->intcounter, priv->currenttxskb);
 
1945         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1949                        "SEND_SLEEPC_CMD: Host to Card failed for Confirm Sleep\n");
 
1951                 spin_lock_irqsave(&priv->driver_lock, flags);
 
1952                 if (!priv->intcounter) {
 
1953                         priv->psstate = PS_STATE_SLEEP;
 
1955                         lbs_deb_host("SEND_SLEEPC_CMD: after sent, intcounter %d\n",
 
1958                 spin_unlock_irqrestore(&priv->driver_lock, flags);
 
1960                 lbs_deb_host("SEND_SLEEPC_CMD: sent confirm sleep\n");
 
1963         lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
 
1967 void lbs_ps_sleep(struct lbs_private *priv, int wait_option)
 
1969         lbs_deb_enter(LBS_DEB_HOST);
 
1972          * PS is currently supported only in Infrastructure mode
 
1973          * Remove this check if it is to be supported in IBSS mode also
 
1976         lbs_prepare_and_send_command(priv, CMD_802_11_PS_MODE,
 
1977                               CMD_SUBCMD_ENTER_PS, wait_option, 0, NULL);
 
1979         lbs_deb_leave(LBS_DEB_HOST);
 
1983  *  @brief This function sends Exit_PS command to firmware.
 
1985  *  @param priv         A pointer to struct lbs_private structure
 
1986  *  @param wait_option  wait response or not
 
1989 void lbs_ps_wakeup(struct lbs_private *priv, int wait_option)
 
1993         lbs_deb_enter(LBS_DEB_HOST);
 
1995         Localpsmode = cpu_to_le32(LBS802_11POWERMODECAM);
 
1997         lbs_prepare_and_send_command(priv, CMD_802_11_PS_MODE,
 
1999                               wait_option, 0, &Localpsmode);
 
2001         lbs_deb_leave(LBS_DEB_HOST);
 
2005  *  @brief This function checks condition and prepares to
 
2006  *  send sleep confirm command to firmware if ok.
 
2008  *  @param priv         A pointer to struct lbs_private structure
 
2009  *  @param psmode       Power Saving mode
 
2012 void lbs_ps_confirm_sleep(struct lbs_private *priv, u16 psmode)
 
2014         unsigned long flags =0;
 
2017         lbs_deb_enter(LBS_DEB_HOST);
 
2019         if (priv->dnld_sent) {
 
2021                 lbs_deb_host("dnld_sent was set\n");
 
2024         spin_lock_irqsave(&priv->driver_lock, flags);
 
2025         if (priv->cur_cmd) {
 
2027                 lbs_deb_host("cur_cmd was set\n");
 
2029         if (priv->intcounter > 0) {
 
2031                 lbs_deb_host("intcounter %d\n", priv->intcounter);
 
2033         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
2036                 lbs_deb_host("sending lbs_ps_confirm_sleep\n");
 
2037                 sendconfirmsleep(priv, (u8 *) & priv->lbs_ps_confirm_sleep,
 
2038                                  sizeof(struct PS_CMD_ConfirmSleep));
 
2040                 lbs_deb_host("sleep confirm has been delayed\n");
 
2043         lbs_deb_leave(LBS_DEB_HOST);
 
2048  *  @brief Simple callback that copies response back into command
 
2050  *  @param priv         A pointer to struct lbs_private structure
 
2051  *  @param extra        A pointer to the original command structure for which
 
2052  *                      'resp' is a response
 
2053  *  @param resp         A pointer to the command response
 
2055  *  @return             0 on success, error on failure
 
2057 int lbs_cmd_copyback(struct lbs_private *priv, unsigned long extra,
 
2058                      struct cmd_header *resp)
 
2060         struct cmd_header *buf = (void *)extra;
 
2063         copy_len = min(le16_to_cpu(buf->size), le16_to_cpu(resp->size));
 
2064         memcpy(buf, resp, copy_len);
 
2067 EXPORT_SYMBOL_GPL(lbs_cmd_copyback);
 
2069 struct cmd_ctrl_node *__lbs_cmd_async(struct lbs_private *priv, uint16_t command,
 
2070                                       struct cmd_header *in_cmd, int in_cmd_size,
 
2071                                       int (*callback)(struct lbs_private *, unsigned long, struct cmd_header *),
 
2072                                       unsigned long callback_arg)
 
2074         struct cmd_ctrl_node *cmdnode;
 
2076         lbs_deb_enter(LBS_DEB_HOST);
 
2078         if (priv->surpriseremoved) {
 
2079                 lbs_deb_host("PREP_CMD: card removed\n");
 
2080                 cmdnode = ERR_PTR(-ENOENT);
 
2084         cmdnode = lbs_get_cmd_ctrl_node(priv);
 
2085         if (cmdnode == NULL) {
 
2086                 lbs_deb_host("PREP_CMD: cmdnode is NULL\n");
 
2088                 /* Wake up main thread to execute next command */
 
2089                 wake_up_interruptible(&priv->waitq);
 
2090                 cmdnode = ERR_PTR(-ENOBUFS);
 
2094         cmdnode->callback = callback;
 
2095         cmdnode->callback_arg = callback_arg;
 
2097         /* Copy the incoming command to the buffer */
 
2098         memcpy(cmdnode->cmdbuf, in_cmd, in_cmd_size);
 
2100         /* Set sequence number, clean result, move to buffer */
 
2102         cmdnode->cmdbuf->command = cpu_to_le16(command);
 
2103         cmdnode->cmdbuf->size    = cpu_to_le16(in_cmd_size);
 
2104         cmdnode->cmdbuf->seqnum  = cpu_to_le16(priv->seqnum);
 
2105         cmdnode->cmdbuf->result  = 0;
 
2107         lbs_deb_host("PREP_CMD: command 0x%04x\n", command);
 
2109         /* here was the big old switch() statement, which is now obsolete,
 
2110          * because the caller of lbs_cmd() sets up all of *cmd for us. */
 
2112         cmdnode->cmdwaitqwoken = 0;
 
2113         lbs_queue_cmd(priv, cmdnode);
 
2114         wake_up_interruptible(&priv->waitq);
 
2117         lbs_deb_leave_args(LBS_DEB_HOST, "ret %p", cmdnode);
 
2121 int __lbs_cmd(struct lbs_private *priv, uint16_t command,
 
2122               struct cmd_header *in_cmd, int in_cmd_size,
 
2123               int (*callback)(struct lbs_private *, unsigned long, struct cmd_header *),
 
2124               unsigned long callback_arg)
 
2126         struct cmd_ctrl_node *cmdnode;
 
2127         unsigned long flags;
 
2130         lbs_deb_enter(LBS_DEB_HOST);
 
2132         cmdnode = __lbs_cmd_async(priv, command, in_cmd, in_cmd_size,
 
2133                                   callback, callback_arg);
 
2134         if (IS_ERR(cmdnode)) {
 
2135                 ret = PTR_ERR(cmdnode);
 
2140         wait_event_interruptible(cmdnode->cmdwait_q, cmdnode->cmdwaitqwoken);
 
2142         spin_lock_irqsave(&priv->driver_lock, flags);
 
2143         ret = cmdnode->result;
 
2145                 lbs_pr_info("PREP_CMD: command 0x%04x failed: %d\n",
 
2148         __lbs_cleanup_and_insert_cmd(priv, cmdnode);
 
2149         spin_unlock_irqrestore(&priv->driver_lock, flags);
 
2152         lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
 
2155 EXPORT_SYMBOL_GPL(__lbs_cmd);