projects / linux-2.6-block.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
mac80211_hwsim: delay hardware remain-on-channel start
[linux-2.6-block.git] / net / mac80211 / offchannel.c
CommitLineData
b203ffc3
JM		 1/*
2 * Off-channel operation helpers
3 *
4 * Copyright 2003, Jouni Malinen <jkmaline@cc.hut.fi>
5 * Copyright 2004, Instant802 Networks, Inc.
6 * Copyright 2005, Devicescape Software, Inc.
7 * Copyright 2006-2007 Jiri Benc <jbenc@suse.cz>
8 * Copyright 2007, Michael Wu <flamingice@sourmilk.net>
9 * Copyright 2009 Johannes Berg <johannes@sipsolutions.net>
10 *
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of the GNU General Public License version 2 as
13 * published by the Free Software Foundation.
14 */
bc3b2d7f 15#include <linux/export.h>
b203ffc3
JM		 16#include <net/mac80211.h>
17#include "ieee80211_i.h"
2eb278e0 18#include "driver-ops.h"
b203ffc3
JM		 19
20/*
b23b025f
BG		 21 * Tell our hardware to disable PS.
22 * Optionally inform AP that we will go to sleep so that it will buffer
23 * the frames while we are doing off-channel work. This is optional
24 * because we *may* be doing work on-operating channel, and want our
25 * hardware unconditionally awake, but still let the AP send us normal frames.
b203ffc3 26 */
559cef99 27static void ieee80211_offchannel_ps_enable(struct ieee80211_sub_if_data *sdata)
b203ffc3
JM		 28{
29 struct ieee80211_local *local = sdata->local;
4730d597 30 struct ieee80211_if_managed *ifmgd = &sdata->u.mgd;
b203ffc3
JM		 31
32 local->offchannel_ps_enabled = false;
33
34 /* FIXME: what to do when local->pspolling is true? */
35
36 del_timer_sync(&local->dynamic_ps_timer);
3bc3c0d7 37 del_timer_sync(&ifmgd->bcn_mon_timer);
4730d597
LR		 38 del_timer_sync(&ifmgd->conn_mon_timer);
39
b203ffc3
JM		 40 cancel_work_sync(&local->dynamic_ps_enable_work);
41
42 if (local->hw.conf.flags & IEEE80211_CONF_PS) {
43 local->offchannel_ps_enabled = true;
44 local->hw.conf.flags &= ~IEEE80211_CONF_PS;
45 ieee80211_hw_config(local, IEEE80211_CONF_CHANGE_PS);
46 }
47
559cef99 48 if (!local->offchannel_ps_enabled ||
30686bf7 49 !ieee80211_hw_check(&local->hw, PS_NULLFUNC_STACK))
b203ffc3
JM		 50 /*
51 * If power save was enabled, no need to send a nullfunc
52 * frame because AP knows that we are sleeping. But if the
53 * hardware is creating the nullfunc frame for power save
54 * status (ie. IEEE80211_HW_PS_NULLFUNC_STACK is not
55 * enabled) and power save was enabled, the firmware just
56 * sent a null frame with power save disabled. So we need
57 * to send a new nullfunc frame to inform the AP that we
58 * are again sleeping.
59 */
076cdcb1 60 ieee80211_send_nullfunc(local, sdata, true);
b203ffc3
JM		 61}
62
63/* inform AP that we are awake again, unless power save is enabled */
64static void ieee80211_offchannel_ps_disable(struct ieee80211_sub_if_data *sdata)
65{
66 struct ieee80211_local *local = sdata->local;
67
68 if (!local->ps_sdata)
076cdcb1 69 ieee80211_send_nullfunc(local, sdata, false);
b203ffc3
JM		 70 else if (local->offchannel_ps_enabled) {
71 /*
72 * In !IEEE80211_HW_PS_NULLFUNC_STACK case the hardware
73 * will send a nullfunc frame with the powersave bit set
74 * even though the AP already knows that we are sleeping.
75 * This could be avoided by sending a null frame with power
76 * save bit disabled before enabling the power save, but
77 * this doesn't gain anything.
78 *
79 * When IEEE80211_HW_PS_NULLFUNC_STACK is enabled, no need
80 * to send a nullfunc frame because AP already knows that
81 * we are sleeping, let's just enable power save mode in
82 * hardware.
83 */
b23b025f
BG		 84 /* TODO: Only set hardware if CONF_PS changed?
85 * TODO: Should we set offchannel_ps_enabled to false?
86 */
b203ffc3
JM		 87 local->hw.conf.flags |= IEEE80211_CONF_PS;
88 ieee80211_hw_config(local, IEEE80211_CONF_CHANGE_PS);
89 } else if (local->hw.conf.dynamic_ps_timeout > 0) {
90 /*
91 * If IEEE80211_CONF_PS was not set and the dynamic_ps_timer
92 * had been running before leaving the operating channel,
93 * restart the timer now and send a nullfunc frame to inform
94 * the AP that we are awake.
95 */
076cdcb1 96 ieee80211_send_nullfunc(local, sdata, false);
b203ffc3
JM		 97 mod_timer(&local->dynamic_ps_timer, jiffies +
98 msecs_to_jiffies(local->hw.conf.dynamic_ps_timeout));
99 }
4730d597 100
3bc3c0d7 101 ieee80211_sta_reset_beacon_monitor(sdata);
4730d597 102 ieee80211_sta_reset_conn_monitor(sdata);
b203ffc3
JM		 103}
104
aacde9ee 105void ieee80211_offchannel_stop_vifs(struct ieee80211_local *local)
b203ffc3
JM		 106{
107 struct ieee80211_sub_if_data *sdata;
108
fe57d9f5
JB		 109 if (WARN_ON(local->use_chanctx))
110 return;
111
b23b025f
BG		 112 /*
113 * notify the AP about us leaving the channel and stop all
114 * STA interfaces.
115 */
6c17b77b 116
9c35d7d2
SF		 117 /*
118 * Stop queues and transmit all frames queued by the driver
119 * before sending nullfunc to enable powersave at the AP.
120 */
445ea4e8 121 ieee80211_stop_queues_by_reason(&local->hw, IEEE80211_MAX_QUEUE_MAP,
cca07b00
LC		 122 IEEE80211_QUEUE_STOP_REASON_OFFCHANNEL,
123 false);
3b24f4c6 124 ieee80211_flush_queues(local, NULL, false);
6c17b77b 125
b203ffc3
JM		 126 mutex_lock(&local->iflist_mtx);
127 list_for_each_entry(sdata, &local->interfaces, list) {
128 if (!ieee80211_sdata_running(sdata))
129 continue;
130
f142c6b9
JB		 131 if (sdata->vif.type == NL80211_IFTYPE_P2P_DEVICE)
132 continue;
133
b23b025f
BG		 134 if (sdata->vif.type != NL80211_IFTYPE_MONITOR)
135 set_bit(SDATA_STATE_OFFCHANNEL, &sdata->state);
136
137 /* Check to see if we should disable beaconing. */
d6a83228
JB		 138 if (sdata->vif.bss_conf.enable_beacon) {
139 set_bit(SDATA_STATE_OFFCHANNEL_BEACON_STOPPED,
140 &sdata->state);
141 sdata->vif.bss_conf.enable_beacon = false;
b203ffc3
JM		 142 ieee80211_bss_info_change_notify(
143 sdata, BSS_CHANGED_BEACON_ENABLED);
d6a83228 144 }
b203ffc3 145
6c17b77b
SF		 146 if (sdata->vif.type == NL80211_IFTYPE_STATION &&
147 sdata->u.mgd.associated)
148 ieee80211_offchannel_ps_enable(sdata);
b203ffc3
JM		 149 }
150 mutex_unlock(&local->iflist_mtx);
151}
152
aacde9ee 153void ieee80211_offchannel_return(struct ieee80211_local *local)
b203ffc3
JM		 154{
155 struct ieee80211_sub_if_data *sdata;
156
fe57d9f5
JB		 157 if (WARN_ON(local->use_chanctx))
158 return;
159
b203ffc3
JM		 160 mutex_lock(&local->iflist_mtx);
161 list_for_each_entry(sdata, &local->interfaces, list) {
f142c6b9
JB		 162 if (sdata->vif.type == NL80211_IFTYPE_P2P_DEVICE)
163 continue;
164
f6e8cb72
EP		 165 if (sdata->vif.type != NL80211_IFTYPE_MONITOR)
166 clear_bit(SDATA_STATE_OFFCHANNEL, &sdata->state);
167
b203ffc3
JM		 168 if (!ieee80211_sdata_running(sdata))
169 continue;
170
171 /* Tell AP we're back */
aacde9ee
SG		 172 if (sdata->vif.type == NL80211_IFTYPE_STATION &&
173 sdata->u.mgd.associated)
174 ieee80211_offchannel_ps_disable(sdata);
b203ffc3 175
d6a83228
JB		 176 if (test_and_clear_bit(SDATA_STATE_OFFCHANNEL_BEACON_STOPPED,
177 &sdata->state)) {
178 sdata->vif.bss_conf.enable_beacon = true;
b203ffc3
JM		 179 ieee80211_bss_info_change_notify(
180 sdata, BSS_CHANGED_BEACON_ENABLED);
d6a83228 181 }
b203ffc3
JM		 182 }
183 mutex_unlock(&local->iflist_mtx);
6c17b77b 184
445ea4e8 185 ieee80211_wake_queues_by_reason(&local->hw, IEEE80211_MAX_QUEUE_MAP,
cca07b00
LC		 186 IEEE80211_QUEUE_STOP_REASON_OFFCHANNEL,
187 false);
b203ffc3 188}
21f83589 189
a2fcfccb 190static void ieee80211_handle_roc_started(struct ieee80211_roc_work *roc)
2eb278e0
JB		 191{
192 if (roc->notified)
193 return;
194
195 if (roc->mgmt_tx_cookie) {
196 if (!WARN_ON(!roc->frame)) {
55de908a
JB		 197 ieee80211_tx_skb_tid_band(roc->sdata, roc->frame, 7,
198 roc->chan->band);
2eb278e0
JB		 199 roc->frame = NULL;
200 }
201 } else {
50febf6a 202 cfg80211_ready_on_channel(&roc->sdata->wdev, roc->cookie,
42d97a59
JB		 203 roc->chan, roc->req_duration,
204 GFP_KERNEL);
2eb278e0
JB		 205 }
206
207 roc->notified = true;
208}
209
21f83589
JB		 210static void ieee80211_hw_roc_start(struct work_struct *work)
211{
212 struct ieee80211_local *local =
213 container_of(work, struct ieee80211_local, hw_roc_start);
2eb278e0 214 struct ieee80211_roc_work *roc, *dep, *tmp;
21f83589
JB		 215
216 mutex_lock(&local->mtx);
217
2eb278e0
JB		 218 if (list_empty(&local->roc_list))
219 goto out_unlock;
21f83589 220
2eb278e0
JB		 221 roc = list_first_entry(&local->roc_list, struct ieee80211_roc_work,
222 list);
223
224 if (!roc->started)
225 goto out_unlock;
226
227 roc->hw_begun = true;
228 roc->hw_start_time = local->hw_roc_start_time;
90fc4b3a 229
2eb278e0
JB		 230 ieee80211_handle_roc_started(roc);
231 list_for_each_entry_safe(dep, tmp, &roc->dependents, list) {
232 ieee80211_handle_roc_started(dep);
233
234 if (dep->duration > roc->duration) {
235 u32 dur = dep->duration;
236 dep->duration = dur - roc->duration;
237 roc->duration = dur;
a4ed5346 238 list_move(&dep->list, &roc->list);
2eb278e0
JB		 239 }
240 }
241 out_unlock:
21f83589
JB		 242 mutex_unlock(&local->mtx);
243}
244
245void ieee80211_ready_on_channel(struct ieee80211_hw *hw)
246{
247 struct ieee80211_local *local = hw_to_local(hw);
248
2eb278e0
JB		 249 local->hw_roc_start_time = jiffies;
250
21f83589
JB		 251 trace_api_ready_on_channel(local);
252
253 ieee80211_queue_work(hw, &local->hw_roc_start);
254}
255EXPORT_SYMBOL_GPL(ieee80211_ready_on_channel);
256
2eb278e0 257void ieee80211_start_next_roc(struct ieee80211_local *local)
21f83589 258{
2eb278e0 259 struct ieee80211_roc_work *roc;
21f83589 260
2eb278e0 261 lockdep_assert_held(&local->mtx);
21f83589 262
2eb278e0
JB		 263 if (list_empty(&local->roc_list)) {
264 ieee80211_run_deferred_scan(local);
21f83589
JB		 265 return;
266 }
267
2eb278e0
JB		 268 roc = list_first_entry(&local->roc_list, struct ieee80211_roc_work,
269 list);
71ecfa18 270
0f6b3f59
JB		 271 if (WARN_ON_ONCE(roc->started))
272 return;
273
2eb278e0
JB		 274 if (local->ops->remain_on_channel) {
275 int ret, duration = roc->duration;
71ecfa18 276
2eb278e0
JB		 277 /* XXX: duplicated, see ieee80211_start_roc_work() */
278 if (!duration)
279 duration = 10;
71ecfa18 280
49884568 281 ret = drv_remain_on_channel(local, roc->sdata, roc->chan,
d339d5ca 282 duration, roc->type);
2eb278e0
JB		 283
284 roc->started = true;
285
286 if (ret) {
287 wiphy_warn(local->hw.wiphy,
288 "failed to start next HW ROC (%d)\n", ret);
289 /*
290 * queue the work struct again to avoid recursion
291 * when multiple failures occur
292 */
293 ieee80211_remain_on_channel_expired(&local->hw);
294 }
295 } else {
296 /* delay it a bit */
297 ieee80211_queue_delayed_work(&local->hw, &roc->work,
298 round_jiffies_relative(HZ/2));
299 }
300}
301
a2fcfccb
JB		 302static void ieee80211_roc_notify_destroy(struct ieee80211_roc_work *roc,
303 bool free)
2eb278e0
JB		 304{
305 struct ieee80211_roc_work *dep, *tmp;
306
3fbd45ca
JB		 307 if (WARN_ON(roc->to_be_freed))
308 return;
309
2eb278e0
JB		 310 /* was never transmitted */
311 if (roc->frame) {
e673a659 312 cfg80211_mgmt_tx_status(&roc->sdata->wdev, roc->mgmt_tx_cookie,
2eb278e0
JB		 313 roc->frame->data, roc->frame->len,
314 false, GFP_KERNEL);
e673a659 315 ieee80211_free_txskb(&roc->sdata->local->hw, roc->frame);
71ecfa18
JB		 316 }
317
2eb278e0 318 if (!roc->mgmt_tx_cookie)
71bbc994 319 cfg80211_remain_on_channel_expired(&roc->sdata->wdev,
50febf6a 320 roc->cookie, roc->chan,
42d97a59 321 GFP_KERNEL);
21f83589 322
2eb278e0 323 list_for_each_entry_safe(dep, tmp, &roc->dependents, list)
3fbd45ca 324 ieee80211_roc_notify_destroy(dep, true);
2eb278e0 325
3fbd45ca
JB		 326 if (free)
327 kfree(roc);
328 else
329 roc->to_be_freed = true;
2eb278e0
JB		 330}
331
a2fcfccb 332static void ieee80211_sw_roc_work(struct work_struct *work)
2eb278e0
JB		 333{
334 struct ieee80211_roc_work *roc =
335 container_of(work, struct ieee80211_roc_work, work.work);
336 struct ieee80211_sub_if_data *sdata = roc->sdata;
337 struct ieee80211_local *local = sdata->local;
b4b177a5 338 bool started, on_channel;
2eb278e0
JB		 339
340 mutex_lock(&local->mtx);
341
3fbd45ca
JB		 342 if (roc->to_be_freed)
343 goto out_unlock;
344
2eb278e0
JB		 345 if (roc->abort)
346 goto finish;
347
348 if (WARN_ON(list_empty(&local->roc_list)))
349 goto out_unlock;
350
351 if (WARN_ON(roc != list_first_entry(&local->roc_list,
352 struct ieee80211_roc_work,
353 list)))
354 goto out_unlock;
355
356 if (!roc->started) {
357 struct ieee80211_roc_work *dep;
358
b4b177a5
JB		 359 WARN_ON(local->use_chanctx);
360
361 /* If actually operating on the desired channel (with at least
362 * 20 MHz channel width) don't stop all the operations but still
363 * treat it as though the ROC operation started properly, so
364 * other ROC operations won't interfere with this one.
365 */
366 roc->on_channel = roc->chan == local->_oper_chandef.chan &&
367 local->_oper_chandef.width != NL80211_CHAN_WIDTH_5 &&
368 local->_oper_chandef.width != NL80211_CHAN_WIDTH_10;
21f83589 369
b4b177a5 370 /* start this ROC */
2eb278e0
JB		 371 ieee80211_recalc_idle(local);
372
b4b177a5
JB		 373 if (!roc->on_channel) {
374 ieee80211_offchannel_stop_vifs(local);
375
376 local->tmp_channel = roc->chan;
377 ieee80211_hw_config(local, 0);
378 }
2eb278e0
JB		 379
380 /* tell userspace or send frame */
381 ieee80211_handle_roc_started(roc);
382 list_for_each_entry(dep, &roc->dependents, list)
383 ieee80211_handle_roc_started(dep);
384
385 /* if it was pure TX, just finish right away */
386 if (!roc->duration)
387 goto finish;
388
389 roc->started = true;
390 ieee80211_queue_delayed_work(&local->hw, &roc->work,
391 msecs_to_jiffies(roc->duration));
392 } else {
393 /* finish this ROC */
394 finish:
395 list_del(&roc->list);
4b4b8229 396 started = roc->started;
b4b177a5 397 on_channel = roc->on_channel;
3fbd45ca 398 ieee80211_roc_notify_destroy(roc, !roc->abort);
2eb278e0 399
b4b177a5 400 if (started && !on_channel) {
3b24f4c6 401 ieee80211_flush_queues(local, NULL, false);
2eb278e0
JB		 402
403 local->tmp_channel = NULL;
404 ieee80211_hw_config(local, 0);
405
aacde9ee 406 ieee80211_offchannel_return(local);
2eb278e0
JB		 407 }
408
409 ieee80211_recalc_idle(local);
410
4b4b8229 411 if (started)
0f6b3f59 412 ieee80211_start_next_roc(local);
22c4ceed
JM		 413 else if (list_empty(&local->roc_list))
414 ieee80211_run_deferred_scan(local);
2eb278e0
JB		 415 }
416
417 out_unlock:
418 mutex_unlock(&local->mtx);
419}
420
421static void ieee80211_hw_roc_done(struct work_struct *work)
422{
423 struct ieee80211_local *local =
424 container_of(work, struct ieee80211_local, hw_roc_done);
425 struct ieee80211_roc_work *roc;
426
427 mutex_lock(&local->mtx);
428
429 if (list_empty(&local->roc_list))
430 goto out_unlock;
431
432 roc = list_first_entry(&local->roc_list, struct ieee80211_roc_work,
433 list);
434
435 if (!roc->started)
436 goto out_unlock;
437
438 list_del(&roc->list);
439
3fbd45ca 440 ieee80211_roc_notify_destroy(roc, true);
2eb278e0
JB		 441
442 /* if there's another roc, start it now */
443 ieee80211_start_next_roc(local);
444
2eb278e0 445 out_unlock:
21f83589
JB		 446 mutex_unlock(&local->mtx);
447}
448
449void ieee80211_remain_on_channel_expired(struct ieee80211_hw *hw)
450{
451 struct ieee80211_local *local = hw_to_local(hw);
452
453 trace_api_remain_on_channel_expired(local);
454
455 ieee80211_queue_work(hw, &local->hw_roc_done);
456}
457EXPORT_SYMBOL_GPL(ieee80211_remain_on_channel_expired);
458
a2fcfccb
JB		 459static bool ieee80211_coalesce_started_roc(struct ieee80211_local *local,
460 struct ieee80211_roc_work *new_roc,
461 struct ieee80211_roc_work *cur_roc)
462{
463 unsigned long now = jiffies;
464 unsigned long remaining = cur_roc->hw_start_time +
465 msecs_to_jiffies(cur_roc->duration) -
466 now;
467
468 if (WARN_ON(!cur_roc->started || !cur_roc->hw_begun))
469 return false;
470
471 /* if it doesn't fit entirely, schedule a new one */
472 if (new_roc->duration > jiffies_to_msecs(remaining))
473 return false;
474
475 ieee80211_handle_roc_started(new_roc);
476
477 /* add to dependents so we send the expired event properly */
478 list_add_tail(&new_roc->list, &cur_roc->dependents);
479 return true;
480}
481
482static int ieee80211_start_roc_work(struct ieee80211_local *local,
483 struct ieee80211_sub_if_data *sdata,
484 struct ieee80211_channel *channel,
485 unsigned int duration, u64 *cookie,
486 struct sk_buff *txskb,
487 enum ieee80211_roc_type type)
488{
489 struct ieee80211_roc_work *roc, *tmp;
490 bool queued = false;
491 int ret;
492
493 lockdep_assert_held(&local->mtx);
494
495 if (local->use_chanctx && !local->ops->remain_on_channel)
496 return -EOPNOTSUPP;
497
498 roc = kzalloc(sizeof(*roc), GFP_KERNEL);
499 if (!roc)
500 return -ENOMEM;
501
502 /*
503 * If the duration is zero, then the driver
504 * wouldn't actually do anything. Set it to
505 * 10 for now.
506 *
507 * TODO: cancel the off-channel operation
508 * when we get the SKB's TX status and
509 * the wait time was zero before.
510 */
511 if (!duration)
512 duration = 10;
513
514 roc->chan = channel;
515 roc->duration = duration;
516 roc->req_duration = duration;
517 roc->frame = txskb;
518 roc->type = type;
519 roc->sdata = sdata;
520 INIT_DELAYED_WORK(&roc->work, ieee80211_sw_roc_work);
521 INIT_LIST_HEAD(&roc->dependents);
522
523 /*
524 * cookie is either the roc cookie (for normal roc)
525 * or the SKB (for mgmt TX)
526 */
527 if (!txskb) {
528 roc->cookie = ieee80211_mgmt_tx_cookie(local);
529 *cookie = roc->cookie;
530 } else {
531 roc->mgmt_tx_cookie = *cookie;
532 }
533
534 /* if there's one pending or we're scanning, queue this one */
535 if (!list_empty(&local->roc_list) ||
536 local->scanning || ieee80211_is_radar_required(local))
537 goto out_check_combine;
538
539 /* if not HW assist, just queue & schedule work */
540 if (!local->ops->remain_on_channel) {
541 ieee80211_queue_delayed_work(&local->hw, &roc->work, 0);
542 goto out_queue;
543 }
544
545 /* otherwise actually kick it off here (for error handling) */
546
547 ret = drv_remain_on_channel(local, sdata, channel, duration, type);
548 if (ret) {
549 kfree(roc);
550 return ret;
551 }
552
553 roc->started = true;
554 goto out_queue;
555
556 out_check_combine:
557 list_for_each_entry(tmp, &local->roc_list, list) {
558 if (tmp->chan != channel || tmp->sdata != sdata)
559 continue;
560
561 /*
562 * Extend this ROC if possible:
563 *
564 * If it hasn't started yet, just increase the duration
565 * and add the new one to the list of dependents.
566 * If the type of the new ROC has higher priority, modify the
567 * type of the previous one to match that of the new one.
568 */
569 if (!tmp->started) {
570 list_add_tail(&roc->list, &tmp->dependents);
571 tmp->duration = max(tmp->duration, roc->duration);
572 tmp->type = max(tmp->type, roc->type);
573 queued = true;
574 break;
575 }
576
577 /* If it has already started, it's more difficult ... */
578 if (local->ops->remain_on_channel) {
579 /*
580 * In the offloaded ROC case, if it hasn't begun, add
581 * this new one to the dependent list to be handled
582 * when the master one begins. If it has begun,
583 * check if it fits entirely within the existing one,
584 * in which case it will just be dependent as well.
585 * Otherwise, schedule it by itself.
586 */
587 if (!tmp->hw_begun) {
588 list_add_tail(&roc->list, &tmp->dependents);
589 queued = true;
590 break;
591 }
592
593 if (ieee80211_coalesce_started_roc(local, roc, tmp))
594 queued = true;
595 } else if (del_timer_sync(&tmp->work.timer)) {
596 unsigned long new_end;
597
598 /*
599 * In the software ROC case, cancel the timer, if
600 * that fails then the finish work is already
601 * queued/pending and thus we queue the new ROC
602 * normally, if that succeeds then we can extend
603 * the timer duration and TX the frame (if any.)
604 */
605
606 list_add_tail(&roc->list, &tmp->dependents);
607 queued = true;
608
609 new_end = jiffies + msecs_to_jiffies(roc->duration);
610
611 /* ok, it was started & we canceled timer */
612 if (time_after(new_end, tmp->work.timer.expires))
613 mod_timer(&tmp->work.timer, new_end);
614 else
615 add_timer(&tmp->work.timer);
616
617 ieee80211_handle_roc_started(roc);
618 }
619 break;
620 }
621
622 out_queue:
623 if (!queued)
624 list_add_tail(&roc->list, &local->roc_list);
625
626 return 0;
627}
628
629int ieee80211_remain_on_channel(struct wiphy *wiphy, struct wireless_dev *wdev,
630 struct ieee80211_channel *chan,
631 unsigned int duration, u64 *cookie)
632{
633 struct ieee80211_sub_if_data *sdata = IEEE80211_WDEV_TO_SUB_IF(wdev);
634 struct ieee80211_local *local = sdata->local;
635 int ret;
636
637 mutex_lock(&local->mtx);
638 ret = ieee80211_start_roc_work(local, sdata, chan,
639 duration, cookie, NULL,
640 IEEE80211_ROC_TYPE_NORMAL);
641 mutex_unlock(&local->mtx);
642
643 return ret;
644}
645
646static int ieee80211_cancel_roc(struct ieee80211_local *local,
647 u64 cookie, bool mgmt_tx)
648{
649 struct ieee80211_roc_work *roc, *tmp, *found = NULL;
650 int ret;
651
652 mutex_lock(&local->mtx);
653 list_for_each_entry_safe(roc, tmp, &local->roc_list, list) {
654 struct ieee80211_roc_work *dep, *tmp2;
655
656 list_for_each_entry_safe(dep, tmp2, &roc->dependents, list) {
657 if (!mgmt_tx && dep->cookie != cookie)
658 continue;
659 else if (mgmt_tx && dep->mgmt_tx_cookie != cookie)
660 continue;
661 /* found dependent item -- just remove it */
662 list_del(&dep->list);
663 mutex_unlock(&local->mtx);
664
665 ieee80211_roc_notify_destroy(dep, true);
666 return 0;
667 }
668
669 if (!mgmt_tx && roc->cookie != cookie)
670 continue;
671 else if (mgmt_tx && roc->mgmt_tx_cookie != cookie)
672 continue;
673
674 found = roc;
675 break;
676 }
677
678 if (!found) {
679 mutex_unlock(&local->mtx);
680 return -ENOENT;
681 }
682
683 /*
684 * We found the item to cancel, so do that. Note that it
685 * may have dependents, which we also cancel (and send
686 * the expired signal for.) Not doing so would be quite
687 * tricky here, but we may need to fix it later.
688 */
689
690 if (local->ops->remain_on_channel) {
691 if (found->started) {
692 ret = drv_cancel_remain_on_channel(local);
693 if (WARN_ON_ONCE(ret)) {
694 mutex_unlock(&local->mtx);
695 return ret;
696 }
697 }
698
699 list_del(&found->list);
700
701 if (found->started)
702 ieee80211_start_next_roc(local);
703 mutex_unlock(&local->mtx);
704
705 ieee80211_roc_notify_destroy(found, true);
706 } else {
707 /* work may be pending so use it all the time */
708 found->abort = true;
709 ieee80211_queue_delayed_work(&local->hw, &found->work, 0);
710
711 mutex_unlock(&local->mtx);
712
713 /* work will clean up etc */
714 flush_delayed_work(&found->work);
715 WARN_ON(!found->to_be_freed);
716 kfree(found);
717 }
718
719 return 0;
720}
721
722int ieee80211_cancel_remain_on_channel(struct wiphy *wiphy,
723 struct wireless_dev *wdev, u64 cookie)
724{
725 struct ieee80211_sub_if_data *sdata = IEEE80211_WDEV_TO_SUB_IF(wdev);
726 struct ieee80211_local *local = sdata->local;
727
728 return ieee80211_cancel_roc(local, cookie, false);
729}
730
731int ieee80211_mgmt_tx(struct wiphy *wiphy, struct wireless_dev *wdev,
732 struct cfg80211_mgmt_tx_params *params, u64 *cookie)
733{
734 struct ieee80211_sub_if_data *sdata = IEEE80211_WDEV_TO_SUB_IF(wdev);
735 struct ieee80211_local *local = sdata->local;
5ee00dbd 736 struct sk_buff *skb;
a2fcfccb
JB		 737 struct sta_info *sta;
738 const struct ieee80211_mgmt *mgmt = (void *)params->buf;
739 bool need_offchan = false;
740 u32 flags;
741 int ret;
742 u8 *data;
743
744 if (params->dont_wait_for_ack)
745 flags = IEEE80211_TX_CTL_NO_ACK;
746 else
747 flags = IEEE80211_TX_INTFL_NL80211_FRAME_TX |
748 IEEE80211_TX_CTL_REQ_TX_STATUS;
749
750 if (params->no_cck)
751 flags |= IEEE80211_TX_CTL_NO_CCK_RATE;
752
753 switch (sdata->vif.type) {
754 case NL80211_IFTYPE_ADHOC:
755 if (!sdata->vif.bss_conf.ibss_joined)
756 need_offchan = true;
757 /* fall through */
758#ifdef CONFIG_MAC80211_MESH
759 case NL80211_IFTYPE_MESH_POINT:
760 if (ieee80211_vif_is_mesh(&sdata->vif) &&
761 !sdata->u.mesh.mesh_id_len)
762 need_offchan = true;
763 /* fall through */
764#endif
765 case NL80211_IFTYPE_AP:
766 case NL80211_IFTYPE_AP_VLAN:
767 case NL80211_IFTYPE_P2P_GO:
768 if (sdata->vif.type != NL80211_IFTYPE_ADHOC &&
769 !ieee80211_vif_is_mesh(&sdata->vif) &&
770 !rcu_access_pointer(sdata->bss->beacon))
771 need_offchan = true;
772 if (!ieee80211_is_action(mgmt->frame_control) ||
773 mgmt->u.action.category == WLAN_CATEGORY_PUBLIC ||
774 mgmt->u.action.category == WLAN_CATEGORY_SELF_PROTECTED ||
775 mgmt->u.action.category == WLAN_CATEGORY_SPECTRUM_MGMT)
776 break;
777 rcu_read_lock();
778 sta = sta_info_get(sdata, mgmt->da);
779 rcu_read_unlock();
780 if (!sta)
781 return -ENOLINK;
782 break;
783 case NL80211_IFTYPE_STATION:
784 case NL80211_IFTYPE_P2P_CLIENT:
785 sdata_lock(sdata);
786 if (!sdata->u.mgd.associated ||
787 (params->offchan && params->wait &&
788 local->ops->remain_on_channel &&
789 memcmp(sdata->u.mgd.associated->bssid,
790 mgmt->bssid, ETH_ALEN)))
791 need_offchan = true;
792 sdata_unlock(sdata);
793 break;
794 case NL80211_IFTYPE_P2P_DEVICE:
795 need_offchan = true;
796 break;
797 default:
798 return -EOPNOTSUPP;
799 }
800
801 /* configurations requiring offchan cannot work if no channel has been
802 * specified
803 */
804 if (need_offchan && !params->chan)
805 return -EINVAL;
806
807 mutex_lock(&local->mtx);
808
809 /* Check if the operating channel is the requested channel */
810 if (!need_offchan) {
811 struct ieee80211_chanctx_conf *chanctx_conf;
812
813 rcu_read_lock();
814 chanctx_conf = rcu_dereference(sdata->vif.chanctx_conf);
815
816 if (chanctx_conf) {
817 need_offchan = params->chan &&
818 (params->chan !=
819 chanctx_conf->def.chan);
820 } else if (!params->chan) {
821 ret = -EINVAL;
822 rcu_read_unlock();
823 goto out_unlock;
824 } else {
825 need_offchan = true;
826 }
827 rcu_read_unlock();
828 }
829
830 if (need_offchan && !params->offchan) {
831 ret = -EBUSY;
832 goto out_unlock;
833 }
834
835 skb = dev_alloc_skb(local->hw.extra_tx_headroom + params->len);
836 if (!skb) {
837 ret = -ENOMEM;
838 goto out_unlock;
839 }
840 skb_reserve(skb, local->hw.extra_tx_headroom);
841
842 data = skb_put(skb, params->len);
843 memcpy(data, params->buf, params->len);
844
845 /* Update CSA counters */
846 if (sdata->vif.csa_active &&
847 (sdata->vif.type == NL80211_IFTYPE_AP ||
848 sdata->vif.type == NL80211_IFTYPE_MESH_POINT ||
849 sdata->vif.type == NL80211_IFTYPE_ADHOC) &&
850 params->n_csa_offsets) {
851 int i;
852 struct beacon_data *beacon = NULL;
853
854 rcu_read_lock();
855
856 if (sdata->vif.type == NL80211_IFTYPE_AP)
857 beacon = rcu_dereference(sdata->u.ap.beacon);
858 else if (sdata->vif.type == NL80211_IFTYPE_ADHOC)
859 beacon = rcu_dereference(sdata->u.ibss.presp);
860 else if (ieee80211_vif_is_mesh(&sdata->vif))
861 beacon = rcu_dereference(sdata->u.mesh.beacon);
862
863 if (beacon)
864 for (i = 0; i < params->n_csa_offsets; i++)
865 data[params->csa_offsets[i]] =
866 beacon->csa_current_counter;
867
868 rcu_read_unlock();
869 }
870
871 IEEE80211_SKB_CB(skb)->flags = flags;
872
873 skb->dev = sdata->dev;
874
875 if (!params->dont_wait_for_ack) {
876 /* make a copy to preserve the frame contents
877 * in case of encryption.
878 */
5ee00dbd
JB		 879 ret = ieee80211_attach_ack_skb(local, skb, cookie, GFP_KERNEL);
880 if (ret) {
a2fcfccb
JB		 881 kfree_skb(skb);
882 goto out_unlock;
883 }
884 } else {
885 /* Assign a dummy non-zero cookie, it's not sent to
886 * userspace in this case but we rely on its value
887 * internally in the need_offchan case to distinguish
888 * mgmt-tx from remain-on-channel.
889 */
890 *cookie = 0xffffffff;
891 }
892
893 if (!need_offchan) {
894 ieee80211_tx_skb(sdata, skb);
895 ret = 0;
896 goto out_unlock;
897 }
898
899 IEEE80211_SKB_CB(skb)->flags |= IEEE80211_TX_CTL_TX_OFFCHAN |
900 IEEE80211_TX_INTFL_OFFCHAN_TX_OK;
901 if (ieee80211_hw_check(&local->hw, QUEUE_CONTROL))
902 IEEE80211_SKB_CB(skb)->hw_queue =
903 local->hw.offchannel_tx_hw_queue;
904
905 /* This will handle all kinds of coalescing and immediate TX */
906 ret = ieee80211_start_roc_work(local, sdata, params->chan,
907 params->wait, cookie, skb,
908 IEEE80211_ROC_TYPE_MGMT_TX);
909 if (ret)
910 ieee80211_free_txskb(&local->hw, skb);
911 out_unlock:
912 mutex_unlock(&local->mtx);
913 return ret;
914}
915
916int ieee80211_mgmt_tx_cancel_wait(struct wiphy *wiphy,
917 struct wireless_dev *wdev, u64 cookie)
918{
919 struct ieee80211_local *local = wiphy_priv(wiphy);
920
921 return ieee80211_cancel_roc(local, cookie, true);
922}
923
2eb278e0 924void ieee80211_roc_setup(struct ieee80211_local *local)
21f83589
JB		 925{
926 INIT_WORK(&local->hw_roc_start, ieee80211_hw_roc_start);
927 INIT_WORK(&local->hw_roc_done, ieee80211_hw_roc_done);
2eb278e0
JB		 928 INIT_LIST_HEAD(&local->roc_list);
929}
930
c8f994ee
JB		 931void ieee80211_roc_purge(struct ieee80211_local *local,
932 struct ieee80211_sub_if_data *sdata)
2eb278e0 933{
2eb278e0
JB		 934 struct ieee80211_roc_work *roc, *tmp;
935 LIST_HEAD(tmp_list);
936
937 mutex_lock(&local->mtx);
938 list_for_each_entry_safe(roc, tmp, &local->roc_list, list) {
c8f994ee 939 if (sdata && roc->sdata != sdata)
2eb278e0
JB		 940 continue;
941
942 if (roc->started && local->ops->remain_on_channel) {
943 /* can race, so ignore return value */
944 drv_cancel_remain_on_channel(local);
945 }
946
947 list_move_tail(&roc->list, &tmp_list);
948 roc->abort = true;
949 }
2eb278e0
JB		 950 mutex_unlock(&local->mtx);
951
952 list_for_each_entry_safe(roc, tmp, &tmp_list, list) {
953 if (local->ops->remain_on_channel) {
954 list_del(&roc->list);
3fbd45ca 955 ieee80211_roc_notify_destroy(roc, true);
2eb278e0
JB		 956 } else {
957 ieee80211_queue_delayed_work(&local->hw, &roc->work, 0);
958
959 /* work will clean up etc */
960 flush_delayed_work(&roc->work);
3fbd45ca
JB		 961 WARN_ON(!roc->to_be_freed);
962 kfree(roc);
2eb278e0
JB		 963 }
964 }
965
966 WARN_ON_ONCE(!list_empty(&tmp_list));
21f83589 967}
Linux 6.x block layer and io_uring tree(s)