2 * This file contains the handling of command
3 * responses as well as events generated by firmware.
5 #include <linux/slab.h>
6 #include <linux/delay.h>
7 #include <linux/sched.h>
8 #include <asm/unaligned.h>
9 #include <net/cfg80211.h>
15 * @brief This function handles disconnect event. it
16 * reports disconnect to upper layer, clean tx/rx packets,
17 * reset link state etc.
19 * @param priv A pointer to struct lbs_private structure
22 void lbs_mac_event_disconnected(struct lbs_private *priv)
24 if (priv->connect_status != LBS_CONNECTED)
27 lbs_deb_enter(LBS_DEB_ASSOC);
30 * Cisco AP sends EAP failure and de-auth in less than 0.5 ms.
31 * It causes problem in the Supplicant
33 msleep_interruptible(1000);
35 if (priv->wdev->iftype == NL80211_IFTYPE_STATION)
36 lbs_send_disconnect_notification(priv);
38 /* report disconnect to upper layer */
39 netif_stop_queue(priv->dev);
40 netif_carrier_off(priv->dev);
42 /* Free Tx and Rx packets */
43 kfree_skb(priv->currenttxskb);
44 priv->currenttxskb = NULL;
45 priv->tx_pending_len = 0;
47 priv->connect_status = LBS_DISCONNECTED;
49 if (priv->psstate != PS_STATE_FULL_POWER) {
50 /* make firmware to exit PS mode */
51 lbs_deb_cmd("disconnected, so exit PS mode\n");
52 lbs_ps_wakeup(priv, 0);
54 lbs_deb_leave(LBS_DEB_ASSOC);
57 static int lbs_ret_reg_access(struct lbs_private *priv,
58 u16 type, struct cmd_ds_command *resp)
62 lbs_deb_enter(LBS_DEB_CMD);
65 case CMD_RET(CMD_MAC_REG_ACCESS):
67 struct cmd_ds_mac_reg_access *reg = &resp->params.macreg;
69 priv->offsetvalue.offset = (u32)le16_to_cpu(reg->offset);
70 priv->offsetvalue.value = le32_to_cpu(reg->value);
74 case CMD_RET(CMD_BBP_REG_ACCESS):
76 struct cmd_ds_bbp_reg_access *reg = &resp->params.bbpreg;
78 priv->offsetvalue.offset = (u32)le16_to_cpu(reg->offset);
79 priv->offsetvalue.value = reg->value;
83 case CMD_RET(CMD_RF_REG_ACCESS):
85 struct cmd_ds_rf_reg_access *reg = &resp->params.rfreg;
87 priv->offsetvalue.offset = (u32)le16_to_cpu(reg->offset);
88 priv->offsetvalue.value = reg->value;
96 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);
101 * @brief This function parses countryinfo from AP and download country info to FW
102 * @param priv pointer to struct lbs_private
103 * @param resp pointer to command response buffer
106 static int lbs_ret_802_11d_domain_info(struct cmd_ds_command *resp)
108 struct cmd_ds_802_11d_domain_info *domaininfo =
109 &resp->params.domaininforesp;
110 struct mrvl_ie_domain_param_set *domain = &domaininfo->domain;
111 u16 action = le16_to_cpu(domaininfo->action);
115 lbs_deb_enter(LBS_DEB_11D);
117 lbs_deb_hex(LBS_DEB_11D, "domain info resp", (u8 *) resp,
118 (int)le16_to_cpu(resp->size));
120 nr_triplet = (le16_to_cpu(domain->header.len) - COUNTRY_CODE_LEN) /
121 sizeof(struct ieee80211_country_ie_triplet);
123 lbs_deb_11d("domain info resp: nr_triplet %d\n", nr_triplet);
125 if (nr_triplet > MRVDRV_MAX_TRIPLET_802_11D) {
126 lbs_deb_11d("invalid number of triplets returned!!\n");
131 case CMD_ACT_SET: /*Proc set action */
137 lbs_deb_11d("invalid action:%d\n", domaininfo->action);
142 lbs_deb_leave_args(LBS_DEB_11D, "ret %d", ret);
146 static inline int handle_cmd_response(struct lbs_private *priv,
147 struct cmd_header *cmd_response)
149 struct cmd_ds_command *resp = (struct cmd_ds_command *) cmd_response;
152 uint16_t respcmd = le16_to_cpu(resp->command);
154 lbs_deb_enter(LBS_DEB_HOST);
157 case CMD_RET(CMD_MAC_REG_ACCESS):
158 case CMD_RET(CMD_BBP_REG_ACCESS):
159 case CMD_RET(CMD_RF_REG_ACCESS):
160 ret = lbs_ret_reg_access(priv, respcmd, resp);
163 case CMD_RET(CMD_802_11_SET_AFC):
164 case CMD_RET(CMD_802_11_GET_AFC):
165 spin_lock_irqsave(&priv->driver_lock, flags);
166 memmove((void *)priv->cur_cmd->callback_arg, &resp->params.afc,
167 sizeof(struct cmd_ds_802_11_afc));
168 spin_unlock_irqrestore(&priv->driver_lock, flags);
172 case CMD_RET(CMD_802_11_BEACON_STOP):
175 case CMD_RET(CMD_802_11_RSSI):
176 ret = lbs_ret_802_11_rssi(priv, resp);
179 case CMD_RET(CMD_802_11D_DOMAIN_INFO):
180 ret = lbs_ret_802_11d_domain_info(resp);
183 case CMD_RET(CMD_802_11_TPC_CFG):
184 spin_lock_irqsave(&priv->driver_lock, flags);
185 memmove((void *)priv->cur_cmd->callback_arg, &resp->params.tpccfg,
186 sizeof(struct cmd_ds_802_11_tpc_cfg));
187 spin_unlock_irqrestore(&priv->driver_lock, flags);
190 case CMD_RET(CMD_BT_ACCESS):
191 spin_lock_irqsave(&priv->driver_lock, flags);
192 if (priv->cur_cmd->callback_arg)
193 memcpy((void *)priv->cur_cmd->callback_arg,
194 &resp->params.bt.addr1, 2 * ETH_ALEN);
195 spin_unlock_irqrestore(&priv->driver_lock, flags);
197 case CMD_RET(CMD_FWT_ACCESS):
198 spin_lock_irqsave(&priv->driver_lock, flags);
199 if (priv->cur_cmd->callback_arg)
200 memcpy((void *)priv->cur_cmd->callback_arg, &resp->params.fwt,
201 sizeof(resp->params.fwt));
202 spin_unlock_irqrestore(&priv->driver_lock, flags);
204 case CMD_RET(CMD_802_11_BEACON_CTRL):
205 ret = lbs_ret_802_11_bcn_ctrl(priv, resp);
209 lbs_pr_err("CMD_RESP: unknown cmd response 0x%04x\n",
210 le16_to_cpu(resp->command));
213 lbs_deb_leave(LBS_DEB_HOST);
217 int lbs_process_command_response(struct lbs_private *priv, u8 *data, u32 len)
219 uint16_t respcmd, curcmd;
220 struct cmd_header *resp;
225 lbs_deb_enter(LBS_DEB_HOST);
227 mutex_lock(&priv->lock);
228 spin_lock_irqsave(&priv->driver_lock, flags);
230 if (!priv->cur_cmd) {
231 lbs_deb_host("CMD_RESP: cur_cmd is NULL\n");
233 spin_unlock_irqrestore(&priv->driver_lock, flags);
238 curcmd = le16_to_cpu(priv->cur_cmd->cmdbuf->command);
239 respcmd = le16_to_cpu(resp->command);
240 result = le16_to_cpu(resp->result);
242 lbs_deb_cmd("CMD_RESP: response 0x%04x, seq %d, size %d\n",
243 respcmd, le16_to_cpu(resp->seqnum), len);
244 lbs_deb_hex(LBS_DEB_CMD, "CMD_RESP", (void *) resp, len);
246 if (resp->seqnum != priv->cur_cmd->cmdbuf->seqnum) {
247 lbs_pr_info("Received CMD_RESP with invalid sequence %d (expected %d)\n",
248 le16_to_cpu(resp->seqnum), le16_to_cpu(priv->cur_cmd->cmdbuf->seqnum));
249 spin_unlock_irqrestore(&priv->driver_lock, flags);
253 if (respcmd != CMD_RET(curcmd) &&
254 respcmd != CMD_RET_802_11_ASSOCIATE && curcmd != CMD_802_11_ASSOCIATE) {
255 lbs_pr_info("Invalid CMD_RESP %x to command %x!\n", respcmd, curcmd);
256 spin_unlock_irqrestore(&priv->driver_lock, flags);
261 if (resp->result == cpu_to_le16(0x0004)) {
262 /* 0x0004 means -EAGAIN. Drop the response, let it time out
263 and be resubmitted */
264 lbs_pr_info("Firmware returns DEFER to command %x. Will let it time out...\n",
265 le16_to_cpu(resp->command));
266 spin_unlock_irqrestore(&priv->driver_lock, flags);
271 /* Now we got response from FW, cancel the command timer */
272 del_timer(&priv->command_timer);
273 priv->cmd_timed_out = 0;
275 /* Store the response code to cur_cmd_retcode. */
276 priv->cur_cmd_retcode = result;
278 if (respcmd == CMD_RET(CMD_802_11_PS_MODE)) {
279 struct cmd_ds_802_11_ps_mode *psmode = (void *) &resp[1];
280 u16 action = le16_to_cpu(psmode->action);
283 "CMD_RESP: PS_MODE cmd reply result 0x%x, action 0x%x\n",
287 lbs_deb_host("CMD_RESP: PS command failed with 0x%x\n",
290 * We should not re-try enter-ps command in
291 * ad-hoc mode. It takes place in
292 * lbs_execute_next_command().
294 if (priv->wdev->iftype == NL80211_IFTYPE_MONITOR &&
295 action == CMD_SUBCMD_ENTER_PS)
296 priv->psmode = LBS802_11POWERMODECAM;
297 } else if (action == CMD_SUBCMD_ENTER_PS) {
298 priv->needtowakeup = 0;
299 priv->psstate = PS_STATE_AWAKE;
301 lbs_deb_host("CMD_RESP: ENTER_PS command response\n");
302 if (priv->connect_status != LBS_CONNECTED) {
304 * When Deauth Event received before Enter_PS command
305 * response, We need to wake up the firmware.
308 "disconnected, invoking lbs_ps_wakeup\n");
310 spin_unlock_irqrestore(&priv->driver_lock, flags);
311 mutex_unlock(&priv->lock);
312 lbs_ps_wakeup(priv, 0);
313 mutex_lock(&priv->lock);
314 spin_lock_irqsave(&priv->driver_lock, flags);
316 } else if (action == CMD_SUBCMD_EXIT_PS) {
317 priv->needtowakeup = 0;
318 priv->psstate = PS_STATE_FULL_POWER;
319 lbs_deb_host("CMD_RESP: EXIT_PS command response\n");
321 lbs_deb_host("CMD_RESP: PS action 0x%X\n", action);
324 lbs_complete_command(priv, priv->cur_cmd, result);
325 spin_unlock_irqrestore(&priv->driver_lock, flags);
331 /* If the command is not successful, cleanup and return failure */
332 if ((result != 0 || !(respcmd & 0x8000))) {
333 lbs_deb_host("CMD_RESP: error 0x%04x in command reply 0x%04x\n",
336 * Handling errors here
339 case CMD_RET(CMD_GET_HW_SPEC):
340 case CMD_RET(CMD_802_11_RESET):
341 lbs_deb_host("CMD_RESP: reset failed\n");
345 lbs_complete_command(priv, priv->cur_cmd, result);
346 spin_unlock_irqrestore(&priv->driver_lock, flags);
352 spin_unlock_irqrestore(&priv->driver_lock, flags);
354 if (priv->cur_cmd && priv->cur_cmd->callback) {
355 ret = priv->cur_cmd->callback(priv, priv->cur_cmd->callback_arg,
358 ret = handle_cmd_response(priv, resp);
360 spin_lock_irqsave(&priv->driver_lock, flags);
363 /* Clean up and Put current command back to cmdfreeq */
364 lbs_complete_command(priv, priv->cur_cmd, result);
366 spin_unlock_irqrestore(&priv->driver_lock, flags);
369 mutex_unlock(&priv->lock);
370 lbs_deb_leave_args(LBS_DEB_HOST, "ret %d", ret);
374 int lbs_process_event(struct lbs_private *priv, u32 event)
377 struct cmd_header cmd;
379 lbs_deb_enter(LBS_DEB_CMD);
382 case MACREG_INT_CODE_LINK_SENSED:
383 lbs_deb_cmd("EVENT: link sensed\n");
386 case MACREG_INT_CODE_DEAUTHENTICATED:
387 lbs_deb_cmd("EVENT: deauthenticated\n");
388 lbs_mac_event_disconnected(priv);
391 case MACREG_INT_CODE_DISASSOCIATED:
392 lbs_deb_cmd("EVENT: disassociated\n");
393 lbs_mac_event_disconnected(priv);
396 case MACREG_INT_CODE_LINK_LOST_NO_SCAN:
397 lbs_deb_cmd("EVENT: link lost\n");
398 lbs_mac_event_disconnected(priv);
401 case MACREG_INT_CODE_PS_SLEEP:
402 lbs_deb_cmd("EVENT: ps sleep\n");
404 /* handle unexpected PS SLEEP event */
405 if (priv->psstate == PS_STATE_FULL_POWER) {
407 "EVENT: in FULL POWER mode, ignoreing PS_SLEEP\n");
410 priv->psstate = PS_STATE_PRE_SLEEP;
412 lbs_ps_confirm_sleep(priv);
416 case MACREG_INT_CODE_HOST_AWAKE:
417 lbs_deb_cmd("EVENT: host awake\n");
418 if (priv->reset_deep_sleep_wakeup)
419 priv->reset_deep_sleep_wakeup(priv);
420 priv->is_deep_sleep = 0;
421 lbs_cmd_async(priv, CMD_802_11_WAKEUP_CONFIRM, &cmd,
423 priv->is_host_sleep_activated = 0;
424 wake_up_interruptible(&priv->host_sleep_q);
427 case MACREG_INT_CODE_DEEP_SLEEP_AWAKE:
428 if (priv->reset_deep_sleep_wakeup)
429 priv->reset_deep_sleep_wakeup(priv);
430 lbs_deb_cmd("EVENT: ds awake\n");
431 priv->is_deep_sleep = 0;
432 priv->wakeup_dev_required = 0;
433 wake_up_interruptible(&priv->ds_awake_q);
436 case MACREG_INT_CODE_PS_AWAKE:
437 lbs_deb_cmd("EVENT: ps awake\n");
438 /* handle unexpected PS AWAKE event */
439 if (priv->psstate == PS_STATE_FULL_POWER) {
441 "EVENT: In FULL POWER mode - ignore PS AWAKE\n");
445 priv->psstate = PS_STATE_AWAKE;
447 if (priv->needtowakeup) {
449 * wait for the command processing to finish
450 * before resuming sending
451 * priv->needtowakeup will be set to FALSE
454 lbs_deb_cmd("waking up ...\n");
455 lbs_ps_wakeup(priv, 0);
459 case MACREG_INT_CODE_MIC_ERR_UNICAST:
460 lbs_deb_cmd("EVENT: UNICAST MIC ERROR\n");
461 lbs_send_mic_failureevent(priv, event);
464 case MACREG_INT_CODE_MIC_ERR_MULTICAST:
465 lbs_deb_cmd("EVENT: MULTICAST MIC ERROR\n");
466 lbs_send_mic_failureevent(priv, event);
469 case MACREG_INT_CODE_MIB_CHANGED:
470 lbs_deb_cmd("EVENT: MIB CHANGED\n");
472 case MACREG_INT_CODE_INIT_DONE:
473 lbs_deb_cmd("EVENT: INIT DONE\n");
475 case MACREG_INT_CODE_ADHOC_BCN_LOST:
476 lbs_deb_cmd("EVENT: ADHOC beacon lost\n");
478 case MACREG_INT_CODE_RSSI_LOW:
479 lbs_pr_alert("EVENT: rssi low\n");
481 case MACREG_INT_CODE_SNR_LOW:
482 lbs_pr_alert("EVENT: snr low\n");
484 case MACREG_INT_CODE_MAX_FAIL:
485 lbs_pr_alert("EVENT: max fail\n");
487 case MACREG_INT_CODE_RSSI_HIGH:
488 lbs_pr_alert("EVENT: rssi high\n");
490 case MACREG_INT_CODE_SNR_HIGH:
491 lbs_pr_alert("EVENT: snr high\n");
494 case MACREG_INT_CODE_MESH_AUTO_STARTED:
495 /* Ignore spurious autostart events */
496 lbs_pr_info("EVENT: MESH_AUTO_STARTED (ignoring)\n");
500 lbs_pr_alert("EVENT: unknown event id %d\n", event);
504 lbs_deb_leave_args(LBS_DEB_CMD, "ret %d", ret);