1 /******************************************************************************
3 * This file is provided under a dual BSD/GPLv2 license. When using or
4 * redistributing this file, you may do so under either license.
8 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
9 * Copyright(c) 2013 - 2015 Intel Mobile Communications GmbH
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of version 2 of the GNU General Public License as
13 * published by the Free Software Foundation.
15 * This program is distributed in the hope that it will be useful, but
16 * WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 * General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, write to the Free Software
22 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110,
25 * The full GNU General Public License is included in this distribution
26 * in the file called COPYING.
28 * Contact Information:
29 * Intel Linux Wireless <ilw@linux.intel.com>
30 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
34 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
35 * Copyright(c) 2013 - 2015 Intel Mobile Communications GmbH
36 * All rights reserved.
38 * Redistribution and use in source and binary forms, with or without
39 * modification, are permitted provided that the following conditions
42 * * Redistributions of source code must retain the above copyright
43 * notice, this list of conditions and the following disclaimer.
44 * * Redistributions in binary form must reproduce the above copyright
45 * notice, this list of conditions and the following disclaimer in
46 * the documentation and/or other materials provided with the
48 * * Neither the name Intel Corporation nor the names of its
49 * contributors may be used to endorse or promote products derived
50 * from this software without specific prior written permission.
52 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
53 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
54 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
55 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
56 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
57 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
58 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
59 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
60 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
61 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
62 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
64 *****************************************************************************/
66 #include <linux/etherdevice.h>
67 #include <net/mac80211.h>
70 #include "iwl-eeprom-parse.h"
71 #include "fw-api-scan.h"
73 #define IWL_PLCP_QUIET_THRESH 1
74 #define IWL_ACTIVE_QUIET_TIME 10
75 #define IWL_DENSE_EBS_SCAN_RATIO 5
76 #define IWL_SPARSE_EBS_SCAN_RATIO 1
78 struct iwl_mvm_scan_params {
81 bool passive_fragmented;
86 } dwell[IEEE80211_NUM_BANDS];
89 enum iwl_umac_scan_uid_type {
90 IWL_UMAC_SCAN_UID_REG_SCAN = BIT(0),
91 IWL_UMAC_SCAN_UID_SCHED_SCAN = BIT(1),
92 IWL_UMAC_SCAN_UID_ALL = IWL_UMAC_SCAN_UID_REG_SCAN |
93 IWL_UMAC_SCAN_UID_SCHED_SCAN,
96 static int iwl_umac_scan_stop(struct iwl_mvm *mvm,
97 enum iwl_umac_scan_uid_type type, bool notify);
99 static u8 iwl_mvm_scan_rx_ant(struct iwl_mvm *mvm)
101 if (mvm->scan_rx_ant != ANT_NONE)
102 return mvm->scan_rx_ant;
103 return iwl_mvm_get_valid_rx_ant(mvm);
106 static inline __le16 iwl_mvm_scan_rx_chain(struct iwl_mvm *mvm)
111 rx_ant = iwl_mvm_scan_rx_ant(mvm);
112 rx_chain = rx_ant << PHY_RX_CHAIN_VALID_POS;
113 rx_chain |= rx_ant << PHY_RX_CHAIN_FORCE_MIMO_SEL_POS;
114 rx_chain |= rx_ant << PHY_RX_CHAIN_FORCE_SEL_POS;
115 rx_chain |= 0x1 << PHY_RX_CHAIN_DRIVER_FORCE_POS;
116 return cpu_to_le16(rx_chain);
119 static __le32 iwl_mvm_scan_rxon_flags(enum ieee80211_band band)
121 if (band == IEEE80211_BAND_2GHZ)
122 return cpu_to_le32(PHY_BAND_24);
124 return cpu_to_le32(PHY_BAND_5);
128 iwl_mvm_scan_rate_n_flags(struct iwl_mvm *mvm, enum ieee80211_band band,
133 mvm->scan_last_antenna_idx =
134 iwl_mvm_next_antenna(mvm, iwl_mvm_get_valid_tx_ant(mvm),
135 mvm->scan_last_antenna_idx);
136 tx_ant = BIT(mvm->scan_last_antenna_idx) << RATE_MCS_ANT_POS;
138 if (band == IEEE80211_BAND_2GHZ && !no_cck)
139 return cpu_to_le32(IWL_RATE_1M_PLCP | RATE_MCS_CCK_MSK |
142 return cpu_to_le32(IWL_RATE_6M_PLCP | tx_ant);
146 * We insert the SSIDs in an inverted order, because the FW will
147 * invert it back. The most prioritized SSID, which is first in the
148 * request list, is not copied here, but inserted directly to the probe
151 static void iwl_mvm_scan_fill_ssids(struct iwl_ssid_ie *cmd_ssid,
152 struct cfg80211_ssid *ssids,
153 int n_ssids, int first)
157 for (req_idx = n_ssids - 1, fw_idx = 0; req_idx >= first;
158 req_idx--, fw_idx++) {
159 cmd_ssid[fw_idx].id = WLAN_EID_SSID;
160 cmd_ssid[fw_idx].len = ssids[req_idx].ssid_len;
161 memcpy(cmd_ssid[fw_idx].ssid,
163 ssids[req_idx].ssid_len);
168 * If req->n_ssids > 0, it means we should do an active scan.
169 * In case of active scan w/o directed scan, we receive a zero-length SSID
170 * just to notify that this scan is active and not passive.
171 * In order to notify the FW of the number of SSIDs we wish to scan (including
172 * the zero-length one), we need to set the corresponding bits in chan->type,
173 * one for each SSID, and set the active bit (first). If the first SSID is
174 * already included in the probe template, so we need to set only
175 * req->n_ssids - 1 bits in addition to the first bit.
177 static u16 iwl_mvm_get_active_dwell(struct iwl_mvm *mvm,
178 enum ieee80211_band band, int n_ssids)
180 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_BASIC_DWELL)
182 if (band == IEEE80211_BAND_2GHZ)
183 return 20 + 3 * (n_ssids + 1);
184 return 10 + 2 * (n_ssids + 1);
187 static u16 iwl_mvm_get_passive_dwell(struct iwl_mvm *mvm,
188 enum ieee80211_band band)
190 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_BASIC_DWELL)
192 return band == IEEE80211_BAND_2GHZ ? 100 + 20 : 100 + 10;
195 static void iwl_mvm_scan_condition_iterator(void *data, u8 *mac,
196 struct ieee80211_vif *vif)
198 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
199 int *global_cnt = data;
201 if (vif->type != NL80211_IFTYPE_P2P_DEVICE && mvmvif->phy_ctxt &&
202 mvmvif->phy_ctxt->id < MAX_PHYS)
206 static void iwl_mvm_scan_calc_params(struct iwl_mvm *mvm,
207 struct ieee80211_vif *vif,
208 int n_ssids, u32 flags,
209 struct iwl_mvm_scan_params *params)
212 enum ieee80211_band band;
213 u8 frag_passive_dwell = 0;
215 ieee80211_iterate_active_interfaces_atomic(mvm->hw,
216 IEEE80211_IFACE_ITER_NORMAL,
217 iwl_mvm_scan_condition_iterator,
223 params->suspend_time = 30;
224 params->max_out_time = 120;
226 if (iwl_mvm_low_latency(mvm)) {
227 if (mvm->fw->ucode_capa.api[0] &
228 IWL_UCODE_TLV_API_FRAGMENTED_SCAN) {
229 params->suspend_time = 105;
231 * If there is more than one active interface make
232 * passive scan more fragmented.
234 frag_passive_dwell = 40;
235 params->max_out_time = frag_passive_dwell;
237 params->suspend_time = 120;
238 params->max_out_time = 120;
242 if (frag_passive_dwell && (mvm->fw->ucode_capa.api[0] &
243 IWL_UCODE_TLV_API_FRAGMENTED_SCAN)) {
245 * P2P device scan should not be fragmented to avoid negative
246 * impact on P2P device discovery. Configure max_out_time to be
247 * equal to dwell time on passive channel. Take a longest
248 * possible value, one that corresponds to 2GHz band
250 if (vif->type == NL80211_IFTYPE_P2P_DEVICE) {
252 iwl_mvm_get_passive_dwell(mvm,
253 IEEE80211_BAND_2GHZ);
254 params->max_out_time = passive_dwell;
256 params->passive_fragmented = true;
260 if ((flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
261 (params->max_out_time > 200))
262 params->max_out_time = 200;
266 for (band = IEEE80211_BAND_2GHZ; band < IEEE80211_NUM_BANDS; band++) {
267 if (params->passive_fragmented)
268 params->dwell[band].fragmented = frag_passive_dwell;
270 params->dwell[band].passive = iwl_mvm_get_passive_dwell(mvm,
272 params->dwell[band].active = iwl_mvm_get_active_dwell(mvm, band,
277 "scan parameters: max_out_time %d, suspend_time %d, passive_fragmented %d\n",
278 params->max_out_time, params->suspend_time,
279 params->passive_fragmented);
281 "dwell[IEEE80211_BAND_2GHZ]: passive %d, active %d, fragmented %d\n",
282 params->dwell[IEEE80211_BAND_2GHZ].passive,
283 params->dwell[IEEE80211_BAND_2GHZ].active,
284 params->dwell[IEEE80211_BAND_2GHZ].fragmented);
286 "dwell[IEEE80211_BAND_5GHZ]: passive %d, active %d, fragmented %d\n",
287 params->dwell[IEEE80211_BAND_5GHZ].passive,
288 params->dwell[IEEE80211_BAND_5GHZ].active,
289 params->dwell[IEEE80211_BAND_5GHZ].fragmented);
292 static inline bool iwl_mvm_rrm_scan_needed(struct iwl_mvm *mvm)
294 /* require rrm scan whenever the fw supports it */
295 return mvm->fw->ucode_capa.capa[0] &
296 IWL_UCODE_TLV_CAPA_DS_PARAM_SET_IE_SUPPORT;
299 static int iwl_mvm_max_scan_ie_fw_cmd_room(struct iwl_mvm *mvm,
304 max_probe_len = SCAN_OFFLOAD_PROBE_REQ_SIZE;
306 /* we create the 802.11 header and SSID element */
307 max_probe_len -= 24 + 2;
309 /* DS parameter set element is added on 2.4GHZ band if required */
310 if (iwl_mvm_rrm_scan_needed(mvm))
313 return max_probe_len;
316 int iwl_mvm_max_scan_ie_len(struct iwl_mvm *mvm, bool is_sched_scan)
318 int max_ie_len = iwl_mvm_max_scan_ie_fw_cmd_room(mvm, is_sched_scan);
320 /* TODO: [BUG] This function should return the maximum allowed size of
321 * scan IEs, however the LMAC scan api contains both 2GHZ and 5GHZ IEs
322 * in the same command. So the correct implementation of this function
323 * is just iwl_mvm_max_scan_ie_fw_cmd_room() / 2. Currently the scan
324 * command has only 512 bytes and it would leave us with about 240
325 * bytes for scan IEs, which is clearly not enough. So meanwhile
326 * we will report an incorrect value. This may result in a failure to
327 * issue a scan in unified_scan_lmac and unified_sched_scan_lmac
328 * functions with -ENOBUFS, if a large enough probe will be provided.
333 int iwl_mvm_rx_scan_offload_iter_complete_notif(struct iwl_mvm *mvm,
334 struct iwl_rx_cmd_buffer *rxb,
335 struct iwl_device_cmd *cmd)
337 struct iwl_rx_packet *pkt = rxb_addr(rxb);
338 struct iwl_lmac_scan_complete_notif *notif = (void *)pkt->data;
341 "Scan offload iteration complete: status=0x%x scanned channels=%d\n",
342 notif->status, notif->scanned_channels);
346 int iwl_mvm_rx_scan_offload_results(struct iwl_mvm *mvm,
347 struct iwl_rx_cmd_buffer *rxb,
348 struct iwl_device_cmd *cmd)
350 IWL_DEBUG_SCAN(mvm, "Scheduled scan results\n");
351 ieee80211_sched_scan_results(mvm->hw);
356 int iwl_mvm_rx_scan_offload_complete_notif(struct iwl_mvm *mvm,
357 struct iwl_rx_cmd_buffer *rxb,
358 struct iwl_device_cmd *cmd)
360 struct iwl_rx_packet *pkt = rxb_addr(rxb);
361 struct iwl_periodic_scan_complete *scan_notif = (void *)pkt->data;
362 bool aborted = (scan_notif->status == IWL_SCAN_OFFLOAD_ABORTED);
363 bool ebs_successful = (scan_notif->ebs_status == IWL_SCAN_EBS_SUCCESS);
365 /* scan status must be locked for proper checking */
366 lockdep_assert_held(&mvm->mutex);
368 /* We first check if we were stopping a scan, in which case we
369 * just clear the stopping flag. Then we check if it was a
370 * firmware initiated stop, in which case we need to inform
372 * Note that we can have a stopping and a running scan
373 * simultaneously, but we can't have two different types of
374 * scans stopping or running at the same time (since LMAC
375 * doesn't support it).
378 if (mvm->scan_status & IWL_MVM_SCAN_STOPPING_SCHED) {
379 WARN_ON_ONCE(mvm->scan_status & IWL_MVM_SCAN_STOPPING_REGULAR);
381 IWL_DEBUG_SCAN(mvm, "Scheduled scan %s, EBS status %s\n",
382 aborted ? "aborted" : "completed",
383 ebs_successful ? "successful" : "failed");
385 mvm->scan_status &= ~IWL_MVM_SCAN_STOPPING_SCHED;
386 } else if (mvm->scan_status & IWL_MVM_SCAN_STOPPING_REGULAR) {
387 IWL_DEBUG_SCAN(mvm, "Regular scan %s, EBS status %s\n",
388 aborted ? "aborted" : "completed",
389 ebs_successful ? "successful" : "failed");
391 mvm->scan_status &= ~IWL_MVM_SCAN_STOPPING_REGULAR;
392 } else if (mvm->scan_status & IWL_MVM_SCAN_SCHED) {
393 WARN_ON_ONCE(mvm->scan_status & IWL_MVM_SCAN_REGULAR);
395 IWL_DEBUG_SCAN(mvm, "Scheduled scan %s, EBS status %s (FW)\n",
396 aborted ? "aborted" : "completed",
397 ebs_successful ? "successful" : "failed");
399 mvm->scan_status &= ~IWL_MVM_SCAN_SCHED;
400 ieee80211_sched_scan_stopped(mvm->hw);
401 } else if (mvm->scan_status & IWL_MVM_SCAN_REGULAR) {
402 IWL_DEBUG_SCAN(mvm, "Regular scan %s, EBS status %s (FW)\n",
403 aborted ? "aborted" : "completed",
404 ebs_successful ? "successful" : "failed");
406 mvm->scan_status &= ~IWL_MVM_SCAN_REGULAR;
407 ieee80211_scan_completed(mvm->hw,
408 scan_notif->status == IWL_SCAN_OFFLOAD_ABORTED);
409 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
412 mvm->last_ebs_successful = ebs_successful;
417 static int iwl_ssid_exist(u8 *ssid, u8 ssid_len, struct iwl_ssid_ie *ssid_list)
421 for (i = 0; i < PROBE_OPTION_MAX; i++) {
422 if (!ssid_list[i].len)
424 if (ssid_list[i].len == ssid_len &&
425 !memcmp(ssid_list->ssid, ssid, ssid_len))
431 static void iwl_scan_offload_build_ssid(struct cfg80211_sched_scan_request *req,
432 struct iwl_ssid_ie *direct_scan,
433 u32 *ssid_bitmap, bool basic_ssid)
439 * copy SSIDs from match list.
440 * iwl_config_sched_scan_profiles() uses the order of these ssids to
443 for (i = 0; i < req->n_match_sets && i < PROBE_OPTION_MAX; i++) {
444 /* skip empty SSID matchsets */
445 if (!req->match_sets[i].ssid.ssid_len)
447 direct_scan[i].id = WLAN_EID_SSID;
448 direct_scan[i].len = req->match_sets[i].ssid.ssid_len;
449 memcpy(direct_scan[i].ssid, req->match_sets[i].ssid.ssid,
453 /* add SSIDs from scan SSID list */
455 for (j = 0; j < req->n_ssids && i < PROBE_OPTION_MAX; j++) {
456 index = iwl_ssid_exist(req->ssids[j].ssid,
457 req->ssids[j].ssid_len,
460 if (!req->ssids[j].ssid_len && basic_ssid)
462 direct_scan[i].id = WLAN_EID_SSID;
463 direct_scan[i].len = req->ssids[j].ssid_len;
464 memcpy(direct_scan[i].ssid, req->ssids[j].ssid,
466 *ssid_bitmap |= BIT(i + 1);
469 *ssid_bitmap |= BIT(index + 1);
474 int iwl_mvm_config_sched_scan_profiles(struct iwl_mvm *mvm,
475 struct cfg80211_sched_scan_request *req)
477 struct iwl_scan_offload_profile *profile;
478 struct iwl_scan_offload_profile_cfg *profile_cfg;
479 struct iwl_scan_offload_blacklist *blacklist;
480 struct iwl_host_cmd cmd = {
481 .id = SCAN_OFFLOAD_UPDATE_PROFILES_CMD,
482 .len[1] = sizeof(*profile_cfg),
483 .dataflags[0] = IWL_HCMD_DFL_NOCOPY,
484 .dataflags[1] = IWL_HCMD_DFL_NOCOPY,
490 if (WARN_ON(req->n_match_sets > IWL_SCAN_MAX_PROFILES))
493 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_SHORT_BL)
494 blacklist_len = IWL_SCAN_SHORT_BLACKLIST_LEN;
496 blacklist_len = IWL_SCAN_MAX_BLACKLIST_LEN;
498 blacklist = kzalloc(sizeof(*blacklist) * blacklist_len, GFP_KERNEL);
502 profile_cfg = kzalloc(sizeof(*profile_cfg), GFP_KERNEL);
508 cmd.data[0] = blacklist;
509 cmd.len[0] = sizeof(*blacklist) * blacklist_len;
510 cmd.data[1] = profile_cfg;
512 /* No blacklist configuration */
514 profile_cfg->num_profiles = req->n_match_sets;
515 profile_cfg->active_clients = SCAN_CLIENT_SCHED_SCAN;
516 profile_cfg->pass_match = SCAN_CLIENT_SCHED_SCAN;
517 profile_cfg->match_notify = SCAN_CLIENT_SCHED_SCAN;
518 if (!req->n_match_sets || !req->match_sets[0].ssid.ssid_len)
519 profile_cfg->any_beacon_notify = SCAN_CLIENT_SCHED_SCAN;
521 for (i = 0; i < req->n_match_sets; i++) {
522 profile = &profile_cfg->profiles[i];
523 profile->ssid_index = i;
524 /* Support any cipher and auth algorithm */
525 profile->unicast_cipher = 0xff;
526 profile->auth_alg = 0xff;
527 profile->network_type = IWL_NETWORK_TYPE_ANY;
528 profile->band_selection = IWL_SCAN_OFFLOAD_SELECT_ANY;
529 profile->client_bitmap = SCAN_CLIENT_SCHED_SCAN;
532 IWL_DEBUG_SCAN(mvm, "Sending scheduled scan profile config\n");
534 ret = iwl_mvm_send_cmd(mvm, &cmd);
542 static bool iwl_mvm_scan_pass_all(struct iwl_mvm *mvm,
543 struct cfg80211_sched_scan_request *req)
545 if (req->n_match_sets && req->match_sets[0].ssid.ssid_len) {
547 "Sending scheduled scan with filtering, n_match_sets %d\n",
552 IWL_DEBUG_SCAN(mvm, "Sending Scheduled scan without filtering\n");
556 static int iwl_mvm_send_scan_offload_abort(struct iwl_mvm *mvm)
559 struct iwl_host_cmd cmd = {
560 .id = SCAN_OFFLOAD_ABORT_CMD,
564 /* Exit instantly with error when device is not ready
565 * to receive scan abort command or it does not perform
566 * scheduled scan currently */
567 if (!mvm->scan_status)
570 ret = iwl_mvm_send_cmd_status(mvm, &cmd, &status);
574 if (status != CAN_ABORT_STATUS) {
576 * The scan abort will return 1 for success or
577 * 2 for "failure". A failure condition can be
578 * due to simply not being in an active scan which
579 * can occur if we send the scan abort before the
580 * microcode has notified us that a scan is completed.
582 IWL_DEBUG_SCAN(mvm, "SCAN OFFLOAD ABORT ret %d.\n", status);
589 int iwl_mvm_scan_offload_stop(struct iwl_mvm *mvm, bool notify)
592 struct iwl_notification_wait wait_scan_done;
593 static const u8 scan_done_notif[] = { SCAN_OFFLOAD_COMPLETE, };
594 bool sched = !!(mvm->scan_status & IWL_MVM_SCAN_SCHED);
596 lockdep_assert_held(&mvm->mutex);
598 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
599 return iwl_umac_scan_stop(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN,
602 /* FIXME: For now we only check if no scan is set here, since
603 * we only support LMAC in this flow and it doesn't support
606 if (!mvm->scan_status)
609 if (iwl_mvm_is_radio_killed(mvm)) {
614 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_done,
616 ARRAY_SIZE(scan_done_notif),
619 ret = iwl_mvm_send_scan_offload_abort(mvm);
621 IWL_DEBUG_SCAN(mvm, "Send stop %sscan failed %d\n",
622 sched ? "offloaded " : "", ret);
623 iwl_remove_notification(&mvm->notif_wait, &wait_scan_done);
627 IWL_DEBUG_SCAN(mvm, "Successfully sent stop %sscan\n",
628 sched ? "scheduled " : "");
630 ret = iwl_wait_notification(&mvm->notif_wait, &wait_scan_done, 1 * HZ);
632 /* Clear the scan status so the next scan requests will
633 * succeed and mark the scan as stopping, so that the Rx
634 * handler doesn't do anything, as the scan was stopped from
635 * above. Since the rx handler won't do anything now, we have
636 * to release the scan reference here.
638 if (mvm->scan_status == IWL_MVM_SCAN_REGULAR)
639 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
642 mvm->scan_status &= ~IWL_MVM_SCAN_SCHED;
643 mvm->scan_status |= IWL_MVM_SCAN_STOPPING_SCHED;
645 ieee80211_sched_scan_stopped(mvm->hw);
647 mvm->scan_status &= ~IWL_MVM_SCAN_REGULAR;
648 mvm->scan_status |= IWL_MVM_SCAN_STOPPING_REGULAR;
650 ieee80211_scan_completed(mvm->hw, true);
656 static void iwl_mvm_scan_fill_tx_cmd(struct iwl_mvm *mvm,
657 struct iwl_scan_req_tx_cmd *tx_cmd,
660 tx_cmd[0].tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
662 tx_cmd[0].rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm,
665 tx_cmd[0].sta_id = mvm->aux_sta.sta_id;
667 tx_cmd[1].tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
669 tx_cmd[1].rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm,
672 tx_cmd[1].sta_id = mvm->aux_sta.sta_id;
676 iwl_mvm_lmac_scan_cfg_channels(struct iwl_mvm *mvm,
677 struct ieee80211_channel **channels,
678 int n_channels, u32 ssid_bitmap,
679 struct iwl_scan_req_lmac *cmd)
681 struct iwl_scan_channel_cfg_lmac *channel_cfg = (void *)&cmd->data;
684 for (i = 0; i < n_channels; i++) {
685 channel_cfg[i].channel_num =
686 cpu_to_le16(channels[i]->hw_value);
687 channel_cfg[i].iter_count = cpu_to_le16(1);
688 channel_cfg[i].iter_interval = 0;
689 channel_cfg[i].flags =
690 cpu_to_le32(IWL_UNIFIED_SCAN_CHANNEL_PARTIAL |
695 static u8 *iwl_mvm_copy_and_insert_ds_elem(struct iwl_mvm *mvm, const u8 *ies,
696 size_t len, u8 *const pos)
698 static const u8 before_ds_params[] = {
702 WLAN_EID_EXT_SUPP_RATES,
707 if (!iwl_mvm_rrm_scan_needed(mvm)) {
708 memcpy(newpos, ies, len);
712 offs = ieee80211_ie_split(ies, len,
714 ARRAY_SIZE(before_ds_params),
717 memcpy(newpos, ies, offs);
720 /* Add a placeholder for DS Parameter Set element */
721 *newpos++ = WLAN_EID_DS_PARAMS;
725 memcpy(newpos, ies + offs, len - offs);
726 newpos += len - offs;
732 iwl_mvm_build_scan_probe(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
733 struct ieee80211_scan_ies *ies,
734 struct iwl_scan_probe_req *preq,
735 const u8 *mac_addr, const u8 *mac_addr_mask)
737 struct ieee80211_mgmt *frame = (struct ieee80211_mgmt *)preq->buf;
741 * Unfortunately, right now the offload scan doesn't support randomising
742 * within the firmware, so until the firmware API is ready we implement
743 * it in the driver. This means that the scan iterations won't really be
744 * random, only when it's restarted, but at least that helps a bit.
747 get_random_mask_addr(frame->sa, mac_addr, mac_addr_mask);
749 memcpy(frame->sa, vif->addr, ETH_ALEN);
751 frame->frame_control = cpu_to_le16(IEEE80211_STYPE_PROBE_REQ);
752 eth_broadcast_addr(frame->da);
753 eth_broadcast_addr(frame->bssid);
756 pos = frame->u.probe_req.variable;
757 *pos++ = WLAN_EID_SSID;
760 preq->mac_header.offset = 0;
761 preq->mac_header.len = cpu_to_le16(24 + 2);
763 /* Insert ds parameter set element on 2.4 GHz band */
764 newpos = iwl_mvm_copy_and_insert_ds_elem(mvm,
765 ies->ies[IEEE80211_BAND_2GHZ],
766 ies->len[IEEE80211_BAND_2GHZ],
768 preq->band_data[0].offset = cpu_to_le16(pos - preq->buf);
769 preq->band_data[0].len = cpu_to_le16(newpos - pos);
772 memcpy(pos, ies->ies[IEEE80211_BAND_5GHZ],
773 ies->len[IEEE80211_BAND_5GHZ]);
774 preq->band_data[1].offset = cpu_to_le16(pos - preq->buf);
775 preq->band_data[1].len = cpu_to_le16(ies->len[IEEE80211_BAND_5GHZ]);
776 pos += ies->len[IEEE80211_BAND_5GHZ];
778 memcpy(pos, ies->common_ies, ies->common_ie_len);
779 preq->common_data.offset = cpu_to_le16(pos - preq->buf);
780 preq->common_data.len = cpu_to_le16(ies->common_ie_len);
784 iwl_mvm_build_generic_scan_cmd(struct iwl_mvm *mvm,
785 struct iwl_scan_req_lmac *cmd,
786 struct iwl_mvm_scan_params *params)
788 memset(cmd, 0, ksize(cmd));
789 cmd->active_dwell = params->dwell[IEEE80211_BAND_2GHZ].active;
790 cmd->passive_dwell = params->dwell[IEEE80211_BAND_2GHZ].passive;
791 if (params->passive_fragmented)
792 cmd->fragmented_dwell =
793 params->dwell[IEEE80211_BAND_2GHZ].fragmented;
794 cmd->rx_chain_select = iwl_mvm_scan_rx_chain(mvm);
795 cmd->max_out_time = cpu_to_le32(params->max_out_time);
796 cmd->suspend_time = cpu_to_le32(params->suspend_time);
797 cmd->scan_prio = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
798 cmd->iter_num = cpu_to_le32(1);
800 if (iwl_mvm_rrm_scan_needed(mvm))
802 cpu_to_le32(IWL_MVM_LMAC_SCAN_FLAGS_RRM_ENABLED);
805 static int iwl_mvm_scan_lmac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
806 struct cfg80211_scan_request *req,
807 struct ieee80211_scan_ies *ies)
809 struct iwl_host_cmd hcmd = {
810 .id = SCAN_OFFLOAD_REQUEST_CMD,
811 .len = { sizeof(struct iwl_scan_req_lmac) +
812 sizeof(struct iwl_scan_channel_cfg_lmac) *
813 mvm->fw->ucode_capa.n_scan_channels +
814 sizeof(struct iwl_scan_probe_req), },
815 .data = { mvm->scan_cmd, },
816 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
818 struct iwl_scan_req_lmac *cmd = mvm->scan_cmd;
819 struct iwl_scan_probe_req *preq;
820 struct iwl_mvm_scan_params params = {};
825 lockdep_assert_held(&mvm->mutex);
827 /* we should have failed registration if scan_cmd was NULL */
828 if (WARN_ON(mvm->scan_cmd == NULL))
831 if (req->n_ssids > PROBE_OPTION_MAX ||
832 ies->common_ie_len + ies->len[NL80211_BAND_2GHZ] +
833 ies->len[NL80211_BAND_5GHZ] >
834 iwl_mvm_max_scan_ie_fw_cmd_room(mvm, false) ||
835 req->n_channels > mvm->fw->ucode_capa.n_scan_channels)
838 mvm->scan_status |= IWL_MVM_SCAN_REGULAR;
840 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, req->flags,
843 iwl_mvm_build_generic_scan_cmd(mvm, cmd, ¶ms);
845 cmd->n_channels = (u8)req->n_channels;
847 flags = IWL_MVM_LMAC_SCAN_FLAG_PASS_ALL;
849 if (req->n_ssids == 1 && req->ssids[0].ssid_len != 0)
850 flags |= IWL_MVM_LMAC_SCAN_FLAG_PRE_CONNECTION;
852 if (params.passive_fragmented)
853 flags |= IWL_MVM_LMAC_SCAN_FLAG_FRAGMENTED;
855 if (req->n_ssids == 0)
856 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASSIVE;
858 cmd->scan_flags |= cpu_to_le32(flags);
860 cmd->flags = iwl_mvm_scan_rxon_flags(req->channels[0]->band);
861 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
862 MAC_FILTER_IN_BEACON);
863 iwl_mvm_scan_fill_tx_cmd(mvm, cmd->tx_cmd, req->no_cck);
864 iwl_mvm_scan_fill_ssids(cmd->direct_scan, req->ssids,
867 cmd->schedule[0].delay = 0;
868 cmd->schedule[0].iterations = 1;
869 cmd->schedule[0].full_scan_mul = 0;
870 cmd->schedule[1].delay = 0;
871 cmd->schedule[1].iterations = 0;
872 cmd->schedule[1].full_scan_mul = 0;
874 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_SINGLE_SCAN_EBS &&
875 mvm->last_ebs_successful) {
876 cmd->channel_opt[0].flags =
877 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
878 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
879 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
880 cmd->channel_opt[0].non_ebs_ratio =
881 cpu_to_le16(IWL_DENSE_EBS_SCAN_RATIO);
882 cmd->channel_opt[1].flags =
883 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
884 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
885 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
886 cmd->channel_opt[1].non_ebs_ratio =
887 cpu_to_le16(IWL_SPARSE_EBS_SCAN_RATIO);
890 for (i = 1; i <= req->n_ssids; i++)
891 ssid_bitmap |= BIT(i);
893 iwl_mvm_lmac_scan_cfg_channels(mvm, req->channels,
894 req->n_channels, ssid_bitmap,
897 preq = (void *)(cmd->data + sizeof(struct iwl_scan_channel_cfg_lmac) *
898 mvm->fw->ucode_capa.n_scan_channels);
900 iwl_mvm_build_scan_probe(mvm, vif, ies, preq,
901 req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
902 req->mac_addr : NULL,
905 ret = iwl_mvm_send_cmd(mvm, &hcmd);
907 IWL_DEBUG_SCAN(mvm, "Scan request was sent successfully\n");
910 * If the scan failed, it usually means that the FW was unable
911 * to allocate the time events. Warn on it, but maybe we
912 * should try to send the command again with different params.
914 IWL_ERR(mvm, "Scan failed! ret %d\n", ret);
915 mvm->scan_status &= ~IWL_MVM_SCAN_REGULAR;
921 static int iwl_mvm_sched_scan_lmac(struct iwl_mvm *mvm,
922 struct ieee80211_vif *vif,
923 struct cfg80211_sched_scan_request *req,
924 struct ieee80211_scan_ies *ies)
926 struct iwl_host_cmd hcmd = {
927 .id = SCAN_OFFLOAD_REQUEST_CMD,
928 .len = { sizeof(struct iwl_scan_req_lmac) +
929 sizeof(struct iwl_scan_channel_cfg_lmac) *
930 mvm->fw->ucode_capa.n_scan_channels +
931 sizeof(struct iwl_scan_probe_req), },
932 .data = { mvm->scan_cmd, },
933 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
935 struct iwl_scan_req_lmac *cmd = mvm->scan_cmd;
936 struct iwl_scan_probe_req *preq;
937 struct iwl_mvm_scan_params params = {};
939 u32 flags = 0, ssid_bitmap = 0;
941 lockdep_assert_held(&mvm->mutex);
943 /* we should have failed registration if scan_cmd was NULL */
944 if (WARN_ON(mvm->scan_cmd == NULL))
947 if (req->n_ssids > PROBE_OPTION_MAX ||
948 ies->common_ie_len + ies->len[NL80211_BAND_2GHZ] +
949 ies->len[NL80211_BAND_5GHZ] >
950 iwl_mvm_max_scan_ie_fw_cmd_room(mvm, true) ||
951 req->n_channels > mvm->fw->ucode_capa.n_scan_channels)
954 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, 0, ¶ms);
956 iwl_mvm_build_generic_scan_cmd(mvm, cmd, ¶ms);
958 cmd->n_channels = (u8)req->n_channels;
960 cmd->delay = cpu_to_le32(req->delay);
962 if (iwl_mvm_scan_pass_all(mvm, req))
963 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASS_ALL;
965 flags |= IWL_MVM_LMAC_SCAN_FLAG_MATCH;
967 if (req->n_ssids == 1 && req->ssids[0].ssid_len != 0)
968 flags |= IWL_MVM_LMAC_SCAN_FLAG_PRE_CONNECTION;
970 if (params.passive_fragmented)
971 flags |= IWL_MVM_LMAC_SCAN_FLAG_FRAGMENTED;
973 if (req->n_ssids == 0)
974 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASSIVE;
976 #ifdef CONFIG_IWLWIFI_DEBUGFS
977 if (mvm->scan_iter_notif_enabled)
978 flags |= IWL_MVM_LMAC_SCAN_FLAG_ITER_COMPLETE;
981 cmd->scan_flags |= cpu_to_le32(flags);
983 cmd->flags = iwl_mvm_scan_rxon_flags(req->channels[0]->band);
984 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
985 MAC_FILTER_IN_BEACON);
986 iwl_mvm_scan_fill_tx_cmd(mvm, cmd->tx_cmd, false);
987 iwl_scan_offload_build_ssid(req, cmd->direct_scan, &ssid_bitmap, false);
989 cmd->schedule[0].delay = cpu_to_le16(req->interval / MSEC_PER_SEC);
990 cmd->schedule[0].iterations = IWL_FAST_SCHED_SCAN_ITERATIONS;
991 cmd->schedule[0].full_scan_mul = 1;
993 cmd->schedule[1].delay = cpu_to_le16(req->interval / MSEC_PER_SEC);
994 cmd->schedule[1].iterations = 0xff;
995 cmd->schedule[1].full_scan_mul = IWL_FULL_SCAN_MULTIPLIER;
997 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT &&
998 mvm->last_ebs_successful) {
999 cmd->channel_opt[0].flags =
1000 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
1001 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1002 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
1003 cmd->channel_opt[0].non_ebs_ratio =
1004 cpu_to_le16(IWL_DENSE_EBS_SCAN_RATIO);
1005 cmd->channel_opt[1].flags =
1006 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
1007 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1008 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
1009 cmd->channel_opt[1].non_ebs_ratio =
1010 cpu_to_le16(IWL_SPARSE_EBS_SCAN_RATIO);
1013 iwl_mvm_lmac_scan_cfg_channels(mvm, req->channels, req->n_channels,
1016 preq = (void *)(cmd->data + sizeof(struct iwl_scan_channel_cfg_lmac) *
1017 mvm->fw->ucode_capa.n_scan_channels);
1019 iwl_mvm_build_scan_probe(mvm, vif, ies, preq,
1020 req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1021 req->mac_addr : NULL,
1022 req->mac_addr_mask);
1024 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1027 "Sched scan request was sent successfully\n");
1030 * If the scan failed, it usually means that the FW was unable
1031 * to allocate the time events. Warn on it, but maybe we
1032 * should try to send the command again with different params.
1034 IWL_ERR(mvm, "Sched scan failed! ret %d\n", ret);
1035 mvm->scan_status &= ~IWL_MVM_SCAN_SCHED;
1042 int iwl_mvm_cancel_scan(struct iwl_mvm *mvm)
1044 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
1045 return iwl_umac_scan_stop(mvm, IWL_UMAC_SCAN_UID_REG_SCAN,
1048 if (!(mvm->scan_status & IWL_MVM_SCAN_REGULAR))
1051 if (iwl_mvm_is_radio_killed(mvm)) {
1052 ieee80211_scan_completed(mvm->hw, true);
1053 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1054 mvm->scan_status &= ~IWL_MVM_SCAN_REGULAR;
1058 return iwl_mvm_scan_offload_stop(mvm, true);
1063 struct iwl_umac_scan_done {
1064 struct iwl_mvm *mvm;
1065 enum iwl_umac_scan_uid_type type;
1068 static int rate_to_scan_rate_flag(unsigned int rate)
1070 static const int rate_to_scan_rate[IWL_RATE_COUNT] = {
1071 [IWL_RATE_1M_INDEX] = SCAN_CONFIG_RATE_1M,
1072 [IWL_RATE_2M_INDEX] = SCAN_CONFIG_RATE_2M,
1073 [IWL_RATE_5M_INDEX] = SCAN_CONFIG_RATE_5M,
1074 [IWL_RATE_11M_INDEX] = SCAN_CONFIG_RATE_11M,
1075 [IWL_RATE_6M_INDEX] = SCAN_CONFIG_RATE_6M,
1076 [IWL_RATE_9M_INDEX] = SCAN_CONFIG_RATE_9M,
1077 [IWL_RATE_12M_INDEX] = SCAN_CONFIG_RATE_12M,
1078 [IWL_RATE_18M_INDEX] = SCAN_CONFIG_RATE_18M,
1079 [IWL_RATE_24M_INDEX] = SCAN_CONFIG_RATE_24M,
1080 [IWL_RATE_36M_INDEX] = SCAN_CONFIG_RATE_36M,
1081 [IWL_RATE_48M_INDEX] = SCAN_CONFIG_RATE_48M,
1082 [IWL_RATE_54M_INDEX] = SCAN_CONFIG_RATE_54M,
1085 return rate_to_scan_rate[rate];
1088 static __le32 iwl_mvm_scan_config_rates(struct iwl_mvm *mvm)
1090 struct ieee80211_supported_band *band;
1091 unsigned int rates = 0;
1094 band = &mvm->nvm_data->bands[IEEE80211_BAND_2GHZ];
1095 for (i = 0; i < band->n_bitrates; i++)
1096 rates |= rate_to_scan_rate_flag(band->bitrates[i].hw_value);
1097 band = &mvm->nvm_data->bands[IEEE80211_BAND_5GHZ];
1098 for (i = 0; i < band->n_bitrates; i++)
1099 rates |= rate_to_scan_rate_flag(band->bitrates[i].hw_value);
1101 /* Set both basic rates and supported rates */
1102 rates |= SCAN_CONFIG_SUPPORTED_RATE(rates);
1104 return cpu_to_le32(rates);
1107 int iwl_mvm_config_scan(struct iwl_mvm *mvm)
1110 struct iwl_scan_config *scan_config;
1111 struct ieee80211_supported_band *band;
1113 mvm->nvm_data->bands[IEEE80211_BAND_2GHZ].n_channels +
1114 mvm->nvm_data->bands[IEEE80211_BAND_5GHZ].n_channels;
1115 int ret, i, j = 0, cmd_size, data_size;
1116 struct iwl_host_cmd cmd = {
1120 if (WARN_ON(num_channels > mvm->fw->ucode_capa.n_scan_channels))
1123 cmd_size = sizeof(*scan_config) + mvm->fw->ucode_capa.n_scan_channels;
1125 scan_config = kzalloc(cmd_size, GFP_KERNEL);
1129 data_size = cmd_size - sizeof(struct iwl_mvm_umac_cmd_hdr);
1130 scan_config->hdr.size = cpu_to_le16(data_size);
1131 scan_config->flags = cpu_to_le32(SCAN_CONFIG_FLAG_ACTIVATE |
1132 SCAN_CONFIG_FLAG_ALLOW_CHUB_REQS |
1133 SCAN_CONFIG_FLAG_SET_TX_CHAINS |
1134 SCAN_CONFIG_FLAG_SET_RX_CHAINS |
1135 SCAN_CONFIG_FLAG_SET_ALL_TIMES |
1136 SCAN_CONFIG_FLAG_SET_LEGACY_RATES |
1137 SCAN_CONFIG_FLAG_SET_MAC_ADDR |
1138 SCAN_CONFIG_FLAG_SET_CHANNEL_FLAGS|
1139 SCAN_CONFIG_N_CHANNELS(num_channels));
1140 scan_config->tx_chains = cpu_to_le32(iwl_mvm_get_valid_tx_ant(mvm));
1141 scan_config->rx_chains = cpu_to_le32(iwl_mvm_scan_rx_ant(mvm));
1142 scan_config->legacy_rates = iwl_mvm_scan_config_rates(mvm);
1143 scan_config->out_of_channel_time = cpu_to_le32(170);
1144 scan_config->suspend_time = cpu_to_le32(30);
1145 scan_config->dwell_active = 20;
1146 scan_config->dwell_passive = 110;
1147 scan_config->dwell_fragmented = 20;
1149 memcpy(&scan_config->mac_addr, &mvm->addresses[0].addr, ETH_ALEN);
1151 scan_config->bcast_sta_id = mvm->aux_sta.sta_id;
1152 scan_config->channel_flags = IWL_CHANNEL_FLAG_EBS |
1153 IWL_CHANNEL_FLAG_ACCURATE_EBS |
1154 IWL_CHANNEL_FLAG_EBS_ADD |
1155 IWL_CHANNEL_FLAG_PRE_SCAN_PASSIVE2ACTIVE;
1157 band = &mvm->nvm_data->bands[IEEE80211_BAND_2GHZ];
1158 for (i = 0; i < band->n_channels; i++, j++)
1159 scan_config->channel_array[j] = band->channels[i].hw_value;
1160 band = &mvm->nvm_data->bands[IEEE80211_BAND_5GHZ];
1161 for (i = 0; i < band->n_channels; i++, j++)
1162 scan_config->channel_array[j] = band->channels[i].hw_value;
1164 cmd.data[0] = scan_config;
1165 cmd.len[0] = cmd_size;
1166 cmd.dataflags[0] = IWL_HCMD_DFL_NOCOPY;
1168 IWL_DEBUG_SCAN(mvm, "Sending UMAC scan config\n");
1170 ret = iwl_mvm_send_cmd(mvm, &cmd);
1176 static int iwl_mvm_find_scan_uid(struct iwl_mvm *mvm, u32 uid)
1180 for (i = 0; i < mvm->max_scans; i++)
1181 if (mvm->scan_uid[i] == uid)
1187 static int iwl_mvm_find_free_scan_uid(struct iwl_mvm *mvm)
1189 return iwl_mvm_find_scan_uid(mvm, 0);
1192 static bool iwl_mvm_find_scan_type(struct iwl_mvm *mvm,
1193 enum iwl_umac_scan_uid_type type)
1197 for (i = 0; i < mvm->max_scans; i++)
1198 if (mvm->scan_uid[i] & type)
1204 static int iwl_mvm_find_first_scan(struct iwl_mvm *mvm,
1205 enum iwl_umac_scan_uid_type type)
1209 for (i = 0; i < mvm->max_scans; i++)
1210 if (mvm->scan_uid[i] & type)
1216 static u32 iwl_generate_scan_uid(struct iwl_mvm *mvm,
1217 enum iwl_umac_scan_uid_type type)
1221 /* make sure exactly one bit is on in scan type */
1222 WARN_ON(hweight8(type) != 1);
1225 * Make sure scan uids are unique. If one scan lasts long time while
1226 * others are completing frequently, the seq number will wrap up and
1227 * we may have more than one scan with the same uid.
1230 uid = type | (mvm->scan_seq_num <<
1231 IWL_UMAC_SCAN_UID_SEQ_OFFSET);
1232 mvm->scan_seq_num++;
1233 } while (iwl_mvm_find_scan_uid(mvm, uid) < mvm->max_scans);
1235 IWL_DEBUG_SCAN(mvm, "Generated scan UID %u\n", uid);
1241 iwl_mvm_build_generic_umac_scan_cmd(struct iwl_mvm *mvm,
1242 struct iwl_scan_req_umac *cmd,
1243 struct iwl_mvm_scan_params *params)
1245 memset(cmd, 0, ksize(cmd));
1246 cmd->hdr.size = cpu_to_le16(iwl_mvm_scan_size(mvm) -
1247 sizeof(struct iwl_mvm_umac_cmd_hdr));
1248 cmd->active_dwell = params->dwell[IEEE80211_BAND_2GHZ].active;
1249 cmd->passive_dwell = params->dwell[IEEE80211_BAND_2GHZ].passive;
1250 if (params->passive_fragmented)
1251 cmd->fragmented_dwell =
1252 params->dwell[IEEE80211_BAND_2GHZ].fragmented;
1253 cmd->max_out_time = cpu_to_le32(params->max_out_time);
1254 cmd->suspend_time = cpu_to_le32(params->suspend_time);
1255 cmd->scan_priority = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1259 iwl_mvm_umac_scan_cfg_channels(struct iwl_mvm *mvm,
1260 struct ieee80211_channel **channels,
1261 int n_channels, u32 ssid_bitmap,
1262 struct iwl_scan_req_umac *cmd)
1264 struct iwl_scan_channel_cfg_umac *channel_cfg = (void *)&cmd->data;
1267 for (i = 0; i < n_channels; i++) {
1268 channel_cfg[i].flags = cpu_to_le32(ssid_bitmap);
1269 channel_cfg[i].channel_num = channels[i]->hw_value;
1270 channel_cfg[i].iter_count = 1;
1271 channel_cfg[i].iter_interval = 0;
1275 static u32 iwl_mvm_scan_umac_common_flags(struct iwl_mvm *mvm, int n_ssids,
1276 struct cfg80211_ssid *ssids,
1282 flags = IWL_UMAC_SCAN_GEN_FLAGS_PASSIVE;
1284 if (n_ssids == 1 && ssids[0].ssid_len != 0)
1285 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PRE_CONNECT;
1288 flags |= IWL_UMAC_SCAN_GEN_FLAGS_FRAGMENTED;
1290 if (iwl_mvm_rrm_scan_needed(mvm))
1291 flags |= IWL_UMAC_SCAN_GEN_FLAGS_RRM_ENABLED;
1296 static int iwl_mvm_scan_umac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1297 struct cfg80211_scan_request *req,
1298 struct ieee80211_scan_ies *ies)
1300 struct iwl_host_cmd hcmd = {
1301 .id = SCAN_REQ_UMAC,
1302 .len = { iwl_mvm_scan_size(mvm), },
1303 .data = { mvm->scan_cmd, },
1304 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1306 struct iwl_scan_req_umac *cmd = mvm->scan_cmd;
1307 struct iwl_scan_req_umac_tail *sec_part = (void *)&cmd->data +
1308 sizeof(struct iwl_scan_channel_cfg_umac) *
1309 mvm->fw->ucode_capa.n_scan_channels;
1310 struct iwl_mvm_scan_params params = {};
1312 u32 ssid_bitmap = 0;
1313 int ret, i, uid_idx;
1315 lockdep_assert_held(&mvm->mutex);
1317 uid_idx = iwl_mvm_find_free_scan_uid(mvm);
1318 if (uid_idx >= mvm->max_scans)
1321 /* we should have failed registration if scan_cmd was NULL */
1322 if (WARN_ON(mvm->scan_cmd == NULL))
1325 if (WARN_ON(req->n_ssids > PROBE_OPTION_MAX ||
1326 ies->common_ie_len +
1327 ies->len[NL80211_BAND_2GHZ] +
1328 ies->len[NL80211_BAND_5GHZ] + 24 + 2 >
1329 SCAN_OFFLOAD_PROBE_REQ_SIZE || req->n_channels >
1330 mvm->fw->ucode_capa.n_scan_channels))
1333 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, req->flags,
1336 iwl_mvm_build_generic_umac_scan_cmd(mvm, cmd, ¶ms);
1338 uid = iwl_generate_scan_uid(mvm, IWL_UMAC_SCAN_UID_REG_SCAN);
1339 mvm->scan_uid[uid_idx] = uid;
1340 cmd->uid = cpu_to_le32(uid);
1342 cmd->ooc_priority = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1344 flags = iwl_mvm_scan_umac_common_flags(mvm, req->n_ssids,
1346 params.passive_fragmented);
1348 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PASS_ALL;
1350 cmd->general_flags = cpu_to_le32(flags);
1352 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_SINGLE_SCAN_EBS &&
1353 mvm->last_ebs_successful)
1354 cmd->channel_flags = IWL_SCAN_CHANNEL_FLAG_EBS |
1355 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1356 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD;
1358 cmd->n_channels = req->n_channels;
1360 for (i = 0; i < req->n_ssids; i++)
1361 ssid_bitmap |= BIT(i);
1363 iwl_mvm_umac_scan_cfg_channels(mvm, req->channels,
1364 req->n_channels, ssid_bitmap, cmd);
1366 sec_part->schedule[0].iter_count = 1;
1367 sec_part->delay = 0;
1369 iwl_mvm_build_scan_probe(mvm, vif, ies, &sec_part->preq,
1370 req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1371 req->mac_addr : NULL,
1372 req->mac_addr_mask);
1374 iwl_mvm_scan_fill_ssids(sec_part->direct_scan, req->ssids,
1377 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1380 "Scan request was sent successfully\n");
1383 * If the scan failed, it usually means that the FW was unable
1384 * to allocate the time events. Warn on it, but maybe we
1385 * should try to send the command again with different params.
1387 IWL_ERR(mvm, "Scan failed! ret %d\n", ret);
1392 static int iwl_mvm_sched_scan_umac(struct iwl_mvm *mvm,
1393 struct ieee80211_vif *vif,
1394 struct cfg80211_sched_scan_request *req,
1395 struct ieee80211_scan_ies *ies)
1398 struct iwl_host_cmd hcmd = {
1399 .id = SCAN_REQ_UMAC,
1400 .len = { iwl_mvm_scan_size(mvm), },
1401 .data = { mvm->scan_cmd, },
1402 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1404 struct iwl_scan_req_umac *cmd = mvm->scan_cmd;
1405 struct iwl_scan_req_umac_tail *sec_part = (void *)&cmd->data +
1406 sizeof(struct iwl_scan_channel_cfg_umac) *
1407 mvm->fw->ucode_capa.n_scan_channels;
1408 struct iwl_mvm_scan_params params = {};
1410 u32 ssid_bitmap = 0;
1413 lockdep_assert_held(&mvm->mutex);
1415 uid_idx = iwl_mvm_find_free_scan_uid(mvm);
1416 if (uid_idx >= mvm->max_scans)
1419 /* we should have failed registration if scan_cmd was NULL */
1420 if (WARN_ON(mvm->scan_cmd == NULL))
1423 if (WARN_ON(req->n_ssids > PROBE_OPTION_MAX ||
1424 ies->common_ie_len + ies->len[NL80211_BAND_2GHZ] +
1425 ies->len[NL80211_BAND_5GHZ] + 24 + 2 >
1426 SCAN_OFFLOAD_PROBE_REQ_SIZE || req->n_channels >
1427 mvm->fw->ucode_capa.n_scan_channels))
1430 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, req->flags,
1433 iwl_mvm_build_generic_umac_scan_cmd(mvm, cmd, ¶ms);
1435 cmd->flags = cpu_to_le32(IWL_UMAC_SCAN_FLAG_PREEMPTIVE);
1437 uid = iwl_generate_scan_uid(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN);
1438 mvm->scan_uid[uid_idx] = uid;
1439 cmd->uid = cpu_to_le32(uid);
1441 cmd->ooc_priority = cpu_to_le32(IWL_SCAN_PRIORITY_LOW);
1443 flags = iwl_mvm_scan_umac_common_flags(mvm, req->n_ssids, req->ssids,
1444 params.passive_fragmented);
1446 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PERIODIC;
1448 if (iwl_mvm_scan_pass_all(mvm, req))
1449 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PASS_ALL;
1451 flags |= IWL_UMAC_SCAN_GEN_FLAGS_MATCH;
1453 cmd->general_flags = cpu_to_le32(flags);
1455 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT &&
1456 mvm->last_ebs_successful)
1457 cmd->channel_flags = IWL_SCAN_CHANNEL_FLAG_EBS |
1458 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1459 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD;
1461 cmd->n_channels = req->n_channels;
1463 iwl_scan_offload_build_ssid(req, sec_part->direct_scan, &ssid_bitmap,
1466 /* This API uses bits 0-19 instead of 1-20. */
1467 ssid_bitmap = ssid_bitmap >> 1;
1469 iwl_mvm_umac_scan_cfg_channels(mvm, req->channels, req->n_channels,
1472 sec_part->schedule[0].interval =
1473 cpu_to_le16(req->interval / MSEC_PER_SEC);
1474 sec_part->schedule[0].iter_count = 0xff;
1476 if (req->delay > U16_MAX) {
1478 "delay value is > 16-bits, set to max possible\n");
1479 sec_part->delay = cpu_to_le16(U16_MAX);
1481 sec_part->delay = cpu_to_le16(req->delay);
1484 iwl_mvm_build_scan_probe(mvm, vif, ies, &sec_part->preq,
1485 req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1486 req->mac_addr : NULL,
1487 req->mac_addr_mask);
1489 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1492 "Sched scan request was sent successfully\n");
1495 * If the scan failed, it usually means that the FW was unable
1496 * to allocate the time events. Warn on it, but maybe we
1497 * should try to send the command again with different params.
1499 IWL_ERR(mvm, "Sched scan failed! ret %d\n", ret);
1504 static int iwl_mvm_num_scans(struct iwl_mvm *mvm)
1506 return hweight32(mvm->scan_status & IWL_MVM_SCAN_MASK);
1509 static int iwl_mvm_check_running_scans(struct iwl_mvm *mvm, int type)
1511 /* This looks a bit arbitrary, but the idea is that if we run
1512 * out of possible simultaneous scans and the userspace is
1513 * trying to run a scan type that is already running, we
1514 * return -EBUSY. But if the userspace wants to start a
1515 * different type of scan, we stop the opposite type to make
1516 * space for the new request. The reason is backwards
1517 * compatibility with old wpa_supplicant that wouldn't stop a
1518 * scheduled scan before starting a normal scan.
1521 if (iwl_mvm_num_scans(mvm) < mvm->max_scans)
1524 /* Use a switch, even though this is a bitmask, so that more
1525 * than one bits set will fall in default and we will warn.
1528 case IWL_MVM_SCAN_REGULAR:
1529 if (mvm->scan_status & IWL_MVM_SCAN_REGULAR_MASK)
1531 return iwl_mvm_scan_offload_stop(mvm, true);
1532 case IWL_MVM_SCAN_SCHED:
1533 if (mvm->scan_status & IWL_MVM_SCAN_SCHED_MASK)
1535 return iwl_mvm_cancel_scan(mvm);
1536 case IWL_MVM_SCAN_NETDETECT:
1537 /* No need to stop anything for net-detect since the
1538 * firmware is restarted anyway. This way, any sched
1539 * scans that were running will be restarted when we
1551 int iwl_mvm_reg_scan_start(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1552 struct cfg80211_scan_request *req,
1553 struct ieee80211_scan_ies *ies)
1557 lockdep_assert_held(&mvm->mutex);
1559 if (iwl_mvm_is_lar_supported(mvm) && !mvm->lar_regdom_set) {
1560 IWL_ERR(mvm, "scan while LAR regdomain is not set\n");
1564 ret = iwl_mvm_check_running_scans(mvm, IWL_MVM_SCAN_REGULAR);
1568 iwl_mvm_ref(mvm, IWL_MVM_REF_SCAN);
1570 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
1571 ret = iwl_mvm_scan_umac(mvm, vif, req, ies);
1573 ret = iwl_mvm_scan_lmac(mvm, vif, req, ies);
1576 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1581 int iwl_mvm_sched_scan_start(struct iwl_mvm *mvm,
1582 struct ieee80211_vif *vif,
1583 struct cfg80211_sched_scan_request *req,
1584 struct ieee80211_scan_ies *ies,
1589 lockdep_assert_held(&mvm->mutex);
1591 if (iwl_mvm_is_lar_supported(mvm) && !mvm->lar_regdom_set) {
1592 IWL_ERR(mvm, "sched-scan while LAR regdomain is not set\n");
1596 ret = iwl_mvm_check_running_scans(mvm, type);
1600 ret = iwl_mvm_config_sched_scan_profiles(mvm, req);
1604 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) {
1605 ret = iwl_mvm_sched_scan_umac(mvm, vif, req, ies);
1607 ret = iwl_mvm_sched_scan_lmac(mvm, vif, req, ies);
1609 mvm->scan_status |= IWL_MVM_SCAN_SCHED;
1615 int iwl_mvm_rx_umac_scan_complete_notif(struct iwl_mvm *mvm,
1616 struct iwl_rx_cmd_buffer *rxb,
1617 struct iwl_device_cmd *cmd)
1619 struct iwl_rx_packet *pkt = rxb_addr(rxb);
1620 struct iwl_umac_scan_complete *notif = (void *)pkt->data;
1621 u32 uid = __le32_to_cpu(notif->uid);
1622 bool sched = !!(uid & IWL_UMAC_SCAN_UID_SCHED_SCAN);
1623 int uid_idx = iwl_mvm_find_scan_uid(mvm, uid);
1626 * Scan uid may be set to zero in case of scan abort request from above.
1628 if (uid_idx >= mvm->max_scans)
1632 "Scan completed, uid %u type %s, status %s, EBS status %s\n",
1633 uid, sched ? "sched" : "regular",
1634 notif->status == IWL_SCAN_OFFLOAD_COMPLETED ?
1635 "completed" : "aborted",
1636 notif->ebs_status == IWL_SCAN_EBS_SUCCESS ?
1637 "success" : "failed");
1639 if (notif->ebs_status)
1640 mvm->last_ebs_successful = false;
1642 mvm->scan_uid[uid_idx] = 0;
1645 ieee80211_scan_completed(mvm->hw,
1647 IWL_SCAN_OFFLOAD_ABORTED);
1648 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1649 } else if (!iwl_mvm_find_scan_type(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN)) {
1650 ieee80211_sched_scan_stopped(mvm->hw);
1652 IWL_DEBUG_SCAN(mvm, "Another sched scan is running\n");
1658 static bool iwl_scan_umac_done_check(struct iwl_notif_wait_data *notif_wait,
1659 struct iwl_rx_packet *pkt, void *data)
1661 struct iwl_umac_scan_done *scan_done = data;
1662 struct iwl_umac_scan_complete *notif = (void *)pkt->data;
1663 u32 uid = __le32_to_cpu(notif->uid);
1664 int uid_idx = iwl_mvm_find_scan_uid(scan_done->mvm, uid);
1666 if (WARN_ON(pkt->hdr.cmd != SCAN_COMPLETE_UMAC))
1669 if (uid_idx >= scan_done->mvm->max_scans)
1673 * Clear scan uid of scans that was aborted from above and completed
1674 * in FW so the RX handler does nothing. Set last_ebs_successful here if
1677 scan_done->mvm->scan_uid[uid_idx] = 0;
1679 if (notif->ebs_status)
1680 scan_done->mvm->last_ebs_successful = false;
1682 return !iwl_mvm_find_scan_type(scan_done->mvm, scan_done->type);
1685 static int iwl_umac_scan_abort_one(struct iwl_mvm *mvm, u32 uid)
1687 struct iwl_umac_scan_abort cmd = {
1688 .hdr.size = cpu_to_le16(sizeof(struct iwl_umac_scan_abort) -
1689 sizeof(struct iwl_mvm_umac_cmd_hdr)),
1690 .uid = cpu_to_le32(uid),
1693 lockdep_assert_held(&mvm->mutex);
1695 IWL_DEBUG_SCAN(mvm, "Sending scan abort, uid %u\n", uid);
1697 return iwl_mvm_send_cmd_pdu(mvm, SCAN_ABORT_UMAC, 0, sizeof(cmd), &cmd);
1700 static int iwl_umac_scan_stop(struct iwl_mvm *mvm,
1701 enum iwl_umac_scan_uid_type type, bool notify)
1703 struct iwl_notification_wait wait_scan_done;
1704 static const u8 scan_done_notif[] = { SCAN_COMPLETE_UMAC, };
1705 struct iwl_umac_scan_done scan_done = {
1711 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_done,
1713 ARRAY_SIZE(scan_done_notif),
1714 iwl_scan_umac_done_check, &scan_done);
1716 IWL_DEBUG_SCAN(mvm, "Preparing to stop scan, type %x\n", type);
1718 for (i = 0; i < mvm->max_scans; i++) {
1719 if (mvm->scan_uid[i] & type) {
1722 if (iwl_mvm_is_radio_killed(mvm) &&
1723 (type & IWL_UMAC_SCAN_UID_REG_SCAN)) {
1724 ieee80211_scan_completed(mvm->hw, true);
1725 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1729 err = iwl_umac_scan_abort_one(mvm, mvm->scan_uid[i]);
1736 IWL_DEBUG_SCAN(mvm, "Couldn't stop scan\n");
1737 iwl_remove_notification(&mvm->notif_wait, &wait_scan_done);
1741 ret = iwl_wait_notification(&mvm->notif_wait, &wait_scan_done, 1 * HZ);
1746 if (type & IWL_UMAC_SCAN_UID_SCHED_SCAN)
1747 ieee80211_sched_scan_stopped(mvm->hw);
1748 if (type & IWL_UMAC_SCAN_UID_REG_SCAN) {
1749 ieee80211_scan_completed(mvm->hw, true);
1750 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1757 int iwl_mvm_scan_size(struct iwl_mvm *mvm)
1759 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
1760 return sizeof(struct iwl_scan_req_umac) +
1761 sizeof(struct iwl_scan_channel_cfg_umac) *
1762 mvm->fw->ucode_capa.n_scan_channels +
1763 sizeof(struct iwl_scan_req_umac_tail);
1765 return sizeof(struct iwl_scan_req_lmac) +
1766 sizeof(struct iwl_scan_channel_cfg_lmac) *
1767 mvm->fw->ucode_capa.n_scan_channels +
1768 sizeof(struct iwl_scan_probe_req);
1772 * This function is used in nic restart flow, to inform mac80211 about scans
1773 * that was aborted by restart flow or by an assert.
1775 void iwl_mvm_report_scan_aborted(struct iwl_mvm *mvm)
1777 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) {
1780 uid = iwl_mvm_find_first_scan(mvm, IWL_UMAC_SCAN_UID_REG_SCAN);
1781 if (uid < mvm->max_scans) {
1782 ieee80211_scan_completed(mvm->hw, true);
1783 mvm->scan_uid[uid] = 0;
1785 uid = iwl_mvm_find_first_scan(mvm,
1786 IWL_UMAC_SCAN_UID_SCHED_SCAN);
1787 if (uid < mvm->max_scans && !mvm->restart_fw) {
1788 ieee80211_sched_scan_stopped(mvm->hw);
1789 mvm->scan_uid[uid] = 0;
1792 /* We shouldn't have any UIDs still set. Loop over all the
1793 * UIDs to make sure there's nothing left there and warn if
1796 for (i = 0; i < mvm->max_scans; i++) {
1797 if (WARN_ONCE(mvm->scan_uid[i],
1798 "UMAC scan UID %d was not cleaned\n",
1800 mvm->scan_uid[i] = 0;
1803 if (mvm->scan_status & IWL_MVM_SCAN_REGULAR)
1804 ieee80211_scan_completed(mvm->hw, true);
1806 /* Sched scan will be restarted by mac80211 in
1807 * restart_hw, so do not report if FW is about to be
1810 if ((mvm->scan_status & IWL_MVM_SCAN_SCHED) && !mvm->restart_fw)
1811 ieee80211_sched_scan_stopped(mvm->hw);
projects / firefly-linux-kernel-4.4.55.git / blob