1 /******************************************************************************
3 * This file is provided under a dual BSD/GPLv2 license. When using or
4 * redistributing this file, you may do so under either license.
8 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
9 * Copyright(c) 2013 - 2015 Intel Mobile Communications GmbH
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of version 2 of the GNU General Public License as
13 * published by the Free Software Foundation.
15 * This program is distributed in the hope that it will be useful, but
16 * WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 * General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, write to the Free Software
22 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110,
25 * The full GNU General Public License is included in this distribution
26 * in the file called COPYING.
28 * Contact Information:
29 * Intel Linux Wireless <ilw@linux.intel.com>
30 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
34 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
35 * Copyright(c) 2013 - 2015 Intel Mobile Communications GmbH
36 * All rights reserved.
38 * Redistribution and use in source and binary forms, with or without
39 * modification, are permitted provided that the following conditions
42 * * Redistributions of source code must retain the above copyright
43 * notice, this list of conditions and the following disclaimer.
44 * * Redistributions in binary form must reproduce the above copyright
45 * notice, this list of conditions and the following disclaimer in
46 * the documentation and/or other materials provided with the
48 * * Neither the name Intel Corporation nor the names of its
49 * contributors may be used to endorse or promote products derived
50 * from this software without specific prior written permission.
52 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
53 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
54 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
55 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
56 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
57 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
58 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
59 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
60 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
61 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
62 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
64 *****************************************************************************/
66 #include <linux/etherdevice.h>
67 #include <net/mac80211.h>
70 #include "iwl-eeprom-parse.h"
71 #include "fw-api-scan.h"
73 #define IWL_PLCP_QUIET_THRESH 1
74 #define IWL_ACTIVE_QUIET_TIME 10
75 #define IWL_DENSE_EBS_SCAN_RATIO 5
76 #define IWL_SPARSE_EBS_SCAN_RATIO 1
78 struct iwl_mvm_scan_params {
81 bool passive_fragmented;
85 struct cfg80211_ssid *ssids;
86 struct ieee80211_channel **channels;
87 u16 interval; /* interval between scans (in secs) */
94 struct cfg80211_match_set *match_sets;
99 } dwell[IEEE80211_NUM_BANDS];
102 enum iwl_umac_scan_uid_type {
103 IWL_UMAC_SCAN_UID_REG_SCAN = BIT(0),
104 IWL_UMAC_SCAN_UID_SCHED_SCAN = BIT(1),
105 IWL_UMAC_SCAN_UID_ALL = IWL_UMAC_SCAN_UID_REG_SCAN |
106 IWL_UMAC_SCAN_UID_SCHED_SCAN,
109 static int iwl_umac_scan_stop(struct iwl_mvm *mvm,
110 enum iwl_umac_scan_uid_type type, bool notify);
112 static u8 iwl_mvm_scan_rx_ant(struct iwl_mvm *mvm)
114 if (mvm->scan_rx_ant != ANT_NONE)
115 return mvm->scan_rx_ant;
116 return iwl_mvm_get_valid_rx_ant(mvm);
119 static inline __le16 iwl_mvm_scan_rx_chain(struct iwl_mvm *mvm)
124 rx_ant = iwl_mvm_scan_rx_ant(mvm);
125 rx_chain = rx_ant << PHY_RX_CHAIN_VALID_POS;
126 rx_chain |= rx_ant << PHY_RX_CHAIN_FORCE_MIMO_SEL_POS;
127 rx_chain |= rx_ant << PHY_RX_CHAIN_FORCE_SEL_POS;
128 rx_chain |= 0x1 << PHY_RX_CHAIN_DRIVER_FORCE_POS;
129 return cpu_to_le16(rx_chain);
132 static __le32 iwl_mvm_scan_rxon_flags(enum ieee80211_band band)
134 if (band == IEEE80211_BAND_2GHZ)
135 return cpu_to_le32(PHY_BAND_24);
137 return cpu_to_le32(PHY_BAND_5);
141 iwl_mvm_scan_rate_n_flags(struct iwl_mvm *mvm, enum ieee80211_band band,
146 mvm->scan_last_antenna_idx =
147 iwl_mvm_next_antenna(mvm, iwl_mvm_get_valid_tx_ant(mvm),
148 mvm->scan_last_antenna_idx);
149 tx_ant = BIT(mvm->scan_last_antenna_idx) << RATE_MCS_ANT_POS;
151 if (band == IEEE80211_BAND_2GHZ && !no_cck)
152 return cpu_to_le32(IWL_RATE_1M_PLCP | RATE_MCS_CCK_MSK |
155 return cpu_to_le32(IWL_RATE_6M_PLCP | tx_ant);
159 * If req->n_ssids > 0, it means we should do an active scan.
160 * In case of active scan w/o directed scan, we receive a zero-length SSID
161 * just to notify that this scan is active and not passive.
162 * In order to notify the FW of the number of SSIDs we wish to scan (including
163 * the zero-length one), we need to set the corresponding bits in chan->type,
164 * one for each SSID, and set the active bit (first). If the first SSID is
165 * already included in the probe template, so we need to set only
166 * req->n_ssids - 1 bits in addition to the first bit.
168 static u16 iwl_mvm_get_active_dwell(struct iwl_mvm *mvm,
169 enum ieee80211_band band, int n_ssids)
171 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_BASIC_DWELL)
173 if (band == IEEE80211_BAND_2GHZ)
174 return 20 + 3 * (n_ssids + 1);
175 return 10 + 2 * (n_ssids + 1);
178 static u16 iwl_mvm_get_passive_dwell(struct iwl_mvm *mvm,
179 enum ieee80211_band band)
181 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_BASIC_DWELL)
183 return band == IEEE80211_BAND_2GHZ ? 100 + 20 : 100 + 10;
186 static void iwl_mvm_scan_condition_iterator(void *data, u8 *mac,
187 struct ieee80211_vif *vif)
189 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
190 int *global_cnt = data;
192 if (vif->type != NL80211_IFTYPE_P2P_DEVICE && mvmvif->phy_ctxt &&
193 mvmvif->phy_ctxt->id < MAX_PHYS)
197 static void iwl_mvm_scan_calc_params(struct iwl_mvm *mvm,
198 struct ieee80211_vif *vif,
199 int n_ssids, u32 flags,
200 struct iwl_mvm_scan_params *params)
203 enum ieee80211_band band;
204 u8 frag_passive_dwell = 0;
206 ieee80211_iterate_active_interfaces_atomic(mvm->hw,
207 IEEE80211_IFACE_ITER_NORMAL,
208 iwl_mvm_scan_condition_iterator,
210 params->n_ssids = n_ssids;
211 params->flags = flags;
216 params->suspend_time = 30;
217 params->max_out_time = 120;
219 if (iwl_mvm_low_latency(mvm)) {
220 if (mvm->fw->ucode_capa.api[0] &
221 IWL_UCODE_TLV_API_FRAGMENTED_SCAN) {
222 params->suspend_time = 105;
224 * If there is more than one active interface make
225 * passive scan more fragmented.
227 frag_passive_dwell = 40;
228 params->max_out_time = frag_passive_dwell;
230 params->suspend_time = 120;
231 params->max_out_time = 120;
235 if (frag_passive_dwell && (mvm->fw->ucode_capa.api[0] &
236 IWL_UCODE_TLV_API_FRAGMENTED_SCAN)) {
238 * P2P device scan should not be fragmented to avoid negative
239 * impact on P2P device discovery. Configure max_out_time to be
240 * equal to dwell time on passive channel. Take a longest
241 * possible value, one that corresponds to 2GHz band
243 if (vif->type == NL80211_IFTYPE_P2P_DEVICE) {
245 iwl_mvm_get_passive_dwell(mvm,
246 IEEE80211_BAND_2GHZ);
247 params->max_out_time = passive_dwell;
249 params->passive_fragmented = true;
253 if ((flags & NL80211_SCAN_FLAG_LOW_PRIORITY) &&
254 (params->max_out_time > 200))
255 params->max_out_time = 200;
259 for (band = IEEE80211_BAND_2GHZ; band < IEEE80211_NUM_BANDS; band++) {
260 if (params->passive_fragmented)
261 params->dwell[band].fragmented = frag_passive_dwell;
263 params->dwell[band].passive = iwl_mvm_get_passive_dwell(mvm,
265 params->dwell[band].active = iwl_mvm_get_active_dwell(mvm, band,
270 "scan parameters: max_out_time %d, suspend_time %d, passive_fragmented %d\n",
271 params->max_out_time, params->suspend_time,
272 params->passive_fragmented);
274 "dwell[IEEE80211_BAND_2GHZ]: passive %d, active %d, fragmented %d\n",
275 params->dwell[IEEE80211_BAND_2GHZ].passive,
276 params->dwell[IEEE80211_BAND_2GHZ].active,
277 params->dwell[IEEE80211_BAND_2GHZ].fragmented);
279 "dwell[IEEE80211_BAND_5GHZ]: passive %d, active %d, fragmented %d\n",
280 params->dwell[IEEE80211_BAND_5GHZ].passive,
281 params->dwell[IEEE80211_BAND_5GHZ].active,
282 params->dwell[IEEE80211_BAND_5GHZ].fragmented);
285 static inline bool iwl_mvm_rrm_scan_needed(struct iwl_mvm *mvm)
287 /* require rrm scan whenever the fw supports it */
288 return mvm->fw->ucode_capa.capa[0] &
289 IWL_UCODE_TLV_CAPA_DS_PARAM_SET_IE_SUPPORT;
292 static int iwl_mvm_max_scan_ie_fw_cmd_room(struct iwl_mvm *mvm)
296 max_probe_len = SCAN_OFFLOAD_PROBE_REQ_SIZE;
298 /* we create the 802.11 header and SSID element */
299 max_probe_len -= 24 + 2;
301 /* DS parameter set element is added on 2.4GHZ band if required */
302 if (iwl_mvm_rrm_scan_needed(mvm))
305 return max_probe_len;
308 int iwl_mvm_max_scan_ie_len(struct iwl_mvm *mvm)
310 int max_ie_len = iwl_mvm_max_scan_ie_fw_cmd_room(mvm);
312 /* TODO: [BUG] This function should return the maximum allowed size of
313 * scan IEs, however the LMAC scan api contains both 2GHZ and 5GHZ IEs
314 * in the same command. So the correct implementation of this function
315 * is just iwl_mvm_max_scan_ie_fw_cmd_room() / 2. Currently the scan
316 * command has only 512 bytes and it would leave us with about 240
317 * bytes for scan IEs, which is clearly not enough. So meanwhile
318 * we will report an incorrect value. This may result in a failure to
319 * issue a scan in unified_scan_lmac and unified_sched_scan_lmac
320 * functions with -ENOBUFS, if a large enough probe will be provided.
325 int iwl_mvm_rx_scan_offload_iter_complete_notif(struct iwl_mvm *mvm,
326 struct iwl_rx_cmd_buffer *rxb,
327 struct iwl_device_cmd *cmd)
329 struct iwl_rx_packet *pkt = rxb_addr(rxb);
330 struct iwl_lmac_scan_complete_notif *notif = (void *)pkt->data;
333 "Scan offload iteration complete: status=0x%x scanned channels=%d\n",
334 notif->status, notif->scanned_channels);
338 int iwl_mvm_rx_scan_offload_results(struct iwl_mvm *mvm,
339 struct iwl_rx_cmd_buffer *rxb,
340 struct iwl_device_cmd *cmd)
342 IWL_DEBUG_SCAN(mvm, "Scheduled scan results\n");
343 ieee80211_sched_scan_results(mvm->hw);
348 int iwl_mvm_rx_scan_offload_complete_notif(struct iwl_mvm *mvm,
349 struct iwl_rx_cmd_buffer *rxb,
350 struct iwl_device_cmd *cmd)
352 struct iwl_rx_packet *pkt = rxb_addr(rxb);
353 struct iwl_periodic_scan_complete *scan_notif = (void *)pkt->data;
354 bool aborted = (scan_notif->status == IWL_SCAN_OFFLOAD_ABORTED);
355 bool ebs_successful = (scan_notif->ebs_status == IWL_SCAN_EBS_SUCCESS);
357 /* scan status must be locked for proper checking */
358 lockdep_assert_held(&mvm->mutex);
360 /* We first check if we were stopping a scan, in which case we
361 * just clear the stopping flag. Then we check if it was a
362 * firmware initiated stop, in which case we need to inform
364 * Note that we can have a stopping and a running scan
365 * simultaneously, but we can't have two different types of
366 * scans stopping or running at the same time (since LMAC
367 * doesn't support it).
370 if (mvm->scan_status & IWL_MVM_SCAN_STOPPING_SCHED) {
371 WARN_ON_ONCE(mvm->scan_status & IWL_MVM_SCAN_STOPPING_REGULAR);
373 IWL_DEBUG_SCAN(mvm, "Scheduled scan %s, EBS status %s\n",
374 aborted ? "aborted" : "completed",
375 ebs_successful ? "successful" : "failed");
377 mvm->scan_status &= ~IWL_MVM_SCAN_STOPPING_SCHED;
378 } else if (mvm->scan_status & IWL_MVM_SCAN_STOPPING_REGULAR) {
379 IWL_DEBUG_SCAN(mvm, "Regular scan %s, EBS status %s\n",
380 aborted ? "aborted" : "completed",
381 ebs_successful ? "successful" : "failed");
383 mvm->scan_status &= ~IWL_MVM_SCAN_STOPPING_REGULAR;
384 } else if (mvm->scan_status & IWL_MVM_SCAN_SCHED) {
385 WARN_ON_ONCE(mvm->scan_status & IWL_MVM_SCAN_REGULAR);
387 IWL_DEBUG_SCAN(mvm, "Scheduled scan %s, EBS status %s (FW)\n",
388 aborted ? "aborted" : "completed",
389 ebs_successful ? "successful" : "failed");
391 mvm->scan_status &= ~IWL_MVM_SCAN_SCHED;
392 ieee80211_sched_scan_stopped(mvm->hw);
393 } else if (mvm->scan_status & IWL_MVM_SCAN_REGULAR) {
394 IWL_DEBUG_SCAN(mvm, "Regular scan %s, EBS status %s (FW)\n",
395 aborted ? "aborted" : "completed",
396 ebs_successful ? "successful" : "failed");
398 mvm->scan_status &= ~IWL_MVM_SCAN_REGULAR;
399 ieee80211_scan_completed(mvm->hw,
400 scan_notif->status == IWL_SCAN_OFFLOAD_ABORTED);
401 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
404 mvm->last_ebs_successful = ebs_successful;
409 static int iwl_ssid_exist(u8 *ssid, u8 ssid_len, struct iwl_ssid_ie *ssid_list)
413 for (i = 0; i < PROBE_OPTION_MAX; i++) {
414 if (!ssid_list[i].len)
416 if (ssid_list[i].len == ssid_len &&
417 !memcmp(ssid_list->ssid, ssid, ssid_len))
423 /* We insert the SSIDs in an inverted order, because the FW will
426 static void iwl_scan_build_ssids(struct iwl_mvm_scan_params *params,
427 struct iwl_ssid_ie *ssids,
434 * copy SSIDs from match list.
435 * iwl_config_sched_scan_profiles() uses the order of these ssids to
438 for (i = 0, j = params->n_match_sets - 1;
439 j >= 0 && i < PROBE_OPTION_MAX;
441 /* skip empty SSID matchsets */
442 if (!params->match_sets[j].ssid.ssid_len)
444 ssids[i].id = WLAN_EID_SSID;
445 ssids[i].len = params->match_sets[j].ssid.ssid_len;
446 memcpy(ssids[i].ssid, params->match_sets[j].ssid.ssid,
450 /* add SSIDs from scan SSID list */
452 for (j = params->n_ssids - 1;
453 j >= 0 && i < PROBE_OPTION_MAX;
455 index = iwl_ssid_exist(params->ssids[j].ssid,
456 params->ssids[j].ssid_len,
459 if (!params->ssids[j].ssid_len)
461 ssids[i].id = WLAN_EID_SSID;
462 ssids[i].len = params->ssids[j].ssid_len;
463 memcpy(ssids[i].ssid, params->ssids[j].ssid,
465 *ssid_bitmap |= BIT(i);
467 *ssid_bitmap |= BIT(index);
472 int iwl_mvm_config_sched_scan_profiles(struct iwl_mvm *mvm,
473 struct cfg80211_sched_scan_request *req)
475 struct iwl_scan_offload_profile *profile;
476 struct iwl_scan_offload_profile_cfg *profile_cfg;
477 struct iwl_scan_offload_blacklist *blacklist;
478 struct iwl_host_cmd cmd = {
479 .id = SCAN_OFFLOAD_UPDATE_PROFILES_CMD,
480 .len[1] = sizeof(*profile_cfg),
481 .dataflags[0] = IWL_HCMD_DFL_NOCOPY,
482 .dataflags[1] = IWL_HCMD_DFL_NOCOPY,
488 if (WARN_ON(req->n_match_sets > IWL_SCAN_MAX_PROFILES))
491 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_SHORT_BL)
492 blacklist_len = IWL_SCAN_SHORT_BLACKLIST_LEN;
494 blacklist_len = IWL_SCAN_MAX_BLACKLIST_LEN;
496 blacklist = kzalloc(sizeof(*blacklist) * blacklist_len, GFP_KERNEL);
500 profile_cfg = kzalloc(sizeof(*profile_cfg), GFP_KERNEL);
506 cmd.data[0] = blacklist;
507 cmd.len[0] = sizeof(*blacklist) * blacklist_len;
508 cmd.data[1] = profile_cfg;
510 /* No blacklist configuration */
512 profile_cfg->num_profiles = req->n_match_sets;
513 profile_cfg->active_clients = SCAN_CLIENT_SCHED_SCAN;
514 profile_cfg->pass_match = SCAN_CLIENT_SCHED_SCAN;
515 profile_cfg->match_notify = SCAN_CLIENT_SCHED_SCAN;
516 if (!req->n_match_sets || !req->match_sets[0].ssid.ssid_len)
517 profile_cfg->any_beacon_notify = SCAN_CLIENT_SCHED_SCAN;
519 for (i = 0; i < req->n_match_sets; i++) {
520 profile = &profile_cfg->profiles[i];
521 profile->ssid_index = i;
522 /* Support any cipher and auth algorithm */
523 profile->unicast_cipher = 0xff;
524 profile->auth_alg = 0xff;
525 profile->network_type = IWL_NETWORK_TYPE_ANY;
526 profile->band_selection = IWL_SCAN_OFFLOAD_SELECT_ANY;
527 profile->client_bitmap = SCAN_CLIENT_SCHED_SCAN;
530 IWL_DEBUG_SCAN(mvm, "Sending scheduled scan profile config\n");
532 ret = iwl_mvm_send_cmd(mvm, &cmd);
540 static bool iwl_mvm_scan_pass_all(struct iwl_mvm *mvm,
541 struct cfg80211_sched_scan_request *req)
543 if (req->n_match_sets && req->match_sets[0].ssid.ssid_len) {
545 "Sending scheduled scan with filtering, n_match_sets %d\n",
550 IWL_DEBUG_SCAN(mvm, "Sending Scheduled scan without filtering\n");
554 static int iwl_mvm_send_scan_offload_abort(struct iwl_mvm *mvm)
557 struct iwl_host_cmd cmd = {
558 .id = SCAN_OFFLOAD_ABORT_CMD,
562 /* Exit instantly with error when device is not ready
563 * to receive scan abort command or it does not perform
564 * scheduled scan currently */
565 if (!mvm->scan_status)
568 ret = iwl_mvm_send_cmd_status(mvm, &cmd, &status);
572 if (status != CAN_ABORT_STATUS) {
574 * The scan abort will return 1 for success or
575 * 2 for "failure". A failure condition can be
576 * due to simply not being in an active scan which
577 * can occur if we send the scan abort before the
578 * microcode has notified us that a scan is completed.
580 IWL_DEBUG_SCAN(mvm, "SCAN OFFLOAD ABORT ret %d.\n", status);
587 int iwl_mvm_scan_offload_stop(struct iwl_mvm *mvm, bool notify)
590 struct iwl_notification_wait wait_scan_done;
591 static const u8 scan_done_notif[] = { SCAN_OFFLOAD_COMPLETE, };
592 bool sched = !!(mvm->scan_status & IWL_MVM_SCAN_SCHED);
594 lockdep_assert_held(&mvm->mutex);
596 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
597 return iwl_umac_scan_stop(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN,
600 /* FIXME: For now we only check if no scan is set here, since
601 * we only support LMAC in this flow and it doesn't support
604 if (!mvm->scan_status)
607 if (iwl_mvm_is_radio_killed(mvm)) {
612 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_done,
614 ARRAY_SIZE(scan_done_notif),
617 ret = iwl_mvm_send_scan_offload_abort(mvm);
619 IWL_DEBUG_SCAN(mvm, "Send stop %sscan failed %d\n",
620 sched ? "offloaded " : "", ret);
621 iwl_remove_notification(&mvm->notif_wait, &wait_scan_done);
625 IWL_DEBUG_SCAN(mvm, "Successfully sent stop %sscan\n",
626 sched ? "scheduled " : "");
628 ret = iwl_wait_notification(&mvm->notif_wait, &wait_scan_done, 1 * HZ);
630 /* Clear the scan status so the next scan requests will
631 * succeed and mark the scan as stopping, so that the Rx
632 * handler doesn't do anything, as the scan was stopped from
633 * above. Since the rx handler won't do anything now, we have
634 * to release the scan reference here.
636 if (mvm->scan_status == IWL_MVM_SCAN_REGULAR)
637 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
640 mvm->scan_status &= ~IWL_MVM_SCAN_SCHED;
641 mvm->scan_status |= IWL_MVM_SCAN_STOPPING_SCHED;
643 ieee80211_sched_scan_stopped(mvm->hw);
645 mvm->scan_status &= ~IWL_MVM_SCAN_REGULAR;
646 mvm->scan_status |= IWL_MVM_SCAN_STOPPING_REGULAR;
648 ieee80211_scan_completed(mvm->hw, true);
654 static void iwl_mvm_scan_fill_tx_cmd(struct iwl_mvm *mvm,
655 struct iwl_scan_req_tx_cmd *tx_cmd,
658 tx_cmd[0].tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
660 tx_cmd[0].rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm,
663 tx_cmd[0].sta_id = mvm->aux_sta.sta_id;
665 tx_cmd[1].tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
667 tx_cmd[1].rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm,
670 tx_cmd[1].sta_id = mvm->aux_sta.sta_id;
674 iwl_mvm_lmac_scan_cfg_channels(struct iwl_mvm *mvm,
675 struct ieee80211_channel **channels,
676 int n_channels, u32 ssid_bitmap,
677 struct iwl_scan_req_lmac *cmd)
679 struct iwl_scan_channel_cfg_lmac *channel_cfg = (void *)&cmd->data;
682 for (i = 0; i < n_channels; i++) {
683 channel_cfg[i].channel_num =
684 cpu_to_le16(channels[i]->hw_value);
685 channel_cfg[i].iter_count = cpu_to_le16(1);
686 channel_cfg[i].iter_interval = 0;
687 channel_cfg[i].flags =
688 cpu_to_le32(IWL_UNIFIED_SCAN_CHANNEL_PARTIAL |
693 static u8 *iwl_mvm_copy_and_insert_ds_elem(struct iwl_mvm *mvm, const u8 *ies,
694 size_t len, u8 *const pos)
696 static const u8 before_ds_params[] = {
700 WLAN_EID_EXT_SUPP_RATES,
705 if (!iwl_mvm_rrm_scan_needed(mvm)) {
706 memcpy(newpos, ies, len);
710 offs = ieee80211_ie_split(ies, len,
712 ARRAY_SIZE(before_ds_params),
715 memcpy(newpos, ies, offs);
718 /* Add a placeholder for DS Parameter Set element */
719 *newpos++ = WLAN_EID_DS_PARAMS;
723 memcpy(newpos, ies + offs, len - offs);
724 newpos += len - offs;
730 iwl_mvm_build_scan_probe(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
731 struct ieee80211_scan_ies *ies,
732 struct iwl_scan_probe_req *preq,
733 const u8 *mac_addr, const u8 *mac_addr_mask)
735 struct ieee80211_mgmt *frame = (struct ieee80211_mgmt *)preq->buf;
739 * Unfortunately, right now the offload scan doesn't support randomising
740 * within the firmware, so until the firmware API is ready we implement
741 * it in the driver. This means that the scan iterations won't really be
742 * random, only when it's restarted, but at least that helps a bit.
745 get_random_mask_addr(frame->sa, mac_addr, mac_addr_mask);
747 memcpy(frame->sa, vif->addr, ETH_ALEN);
749 frame->frame_control = cpu_to_le16(IEEE80211_STYPE_PROBE_REQ);
750 eth_broadcast_addr(frame->da);
751 eth_broadcast_addr(frame->bssid);
754 pos = frame->u.probe_req.variable;
755 *pos++ = WLAN_EID_SSID;
758 preq->mac_header.offset = 0;
759 preq->mac_header.len = cpu_to_le16(24 + 2);
761 /* Insert ds parameter set element on 2.4 GHz band */
762 newpos = iwl_mvm_copy_and_insert_ds_elem(mvm,
763 ies->ies[IEEE80211_BAND_2GHZ],
764 ies->len[IEEE80211_BAND_2GHZ],
766 preq->band_data[0].offset = cpu_to_le16(pos - preq->buf);
767 preq->band_data[0].len = cpu_to_le16(newpos - pos);
770 memcpy(pos, ies->ies[IEEE80211_BAND_5GHZ],
771 ies->len[IEEE80211_BAND_5GHZ]);
772 preq->band_data[1].offset = cpu_to_le16(pos - preq->buf);
773 preq->band_data[1].len = cpu_to_le16(ies->len[IEEE80211_BAND_5GHZ]);
774 pos += ies->len[IEEE80211_BAND_5GHZ];
776 memcpy(pos, ies->common_ies, ies->common_ie_len);
777 preq->common_data.offset = cpu_to_le16(pos - preq->buf);
778 preq->common_data.len = cpu_to_le16(ies->common_ie_len);
782 iwl_mvm_build_generic_scan_cmd(struct iwl_mvm *mvm,
783 struct iwl_scan_req_lmac *cmd,
784 struct iwl_mvm_scan_params *params)
786 memset(cmd, 0, ksize(cmd));
787 cmd->active_dwell = params->dwell[IEEE80211_BAND_2GHZ].active;
788 cmd->passive_dwell = params->dwell[IEEE80211_BAND_2GHZ].passive;
789 if (params->passive_fragmented)
790 cmd->fragmented_dwell =
791 params->dwell[IEEE80211_BAND_2GHZ].fragmented;
792 cmd->rx_chain_select = iwl_mvm_scan_rx_chain(mvm);
793 cmd->max_out_time = cpu_to_le32(params->max_out_time);
794 cmd->suspend_time = cpu_to_le32(params->suspend_time);
795 cmd->scan_prio = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
796 cmd->iter_num = cpu_to_le32(1);
798 if (iwl_mvm_rrm_scan_needed(mvm))
800 cpu_to_le32(IWL_MVM_LMAC_SCAN_FLAGS_RRM_ENABLED);
803 static inline bool iwl_mvm_scan_fits(struct iwl_mvm *mvm, int n_ssids,
804 struct ieee80211_scan_ies *ies,
807 return ((n_ssids <= PROBE_OPTION_MAX) &&
808 (n_channels <= mvm->fw->ucode_capa.n_scan_channels) &
809 (ies->common_ie_len +
810 ies->len[NL80211_BAND_2GHZ] +
811 ies->len[NL80211_BAND_5GHZ] <=
812 iwl_mvm_max_scan_ie_fw_cmd_room(mvm)));
815 static int iwl_mvm_scan_lmac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
816 struct ieee80211_scan_ies *ies,
817 struct iwl_mvm_scan_params *params)
819 struct iwl_scan_req_lmac *cmd = mvm->scan_cmd;
820 struct iwl_scan_probe_req *preq;
821 u32 flags = 0, ssid_bitmap = 0;
823 lockdep_assert_held(&mvm->mutex);
825 iwl_mvm_build_generic_scan_cmd(mvm, cmd, params);
827 cmd->n_channels = (u8)params->n_channels;
829 cmd->delay = cpu_to_le32(params->delay);
831 if (params->pass_all)
832 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASS_ALL;
834 flags |= IWL_MVM_LMAC_SCAN_FLAG_MATCH;
836 if (params->n_ssids == 1 && params->ssids[0].ssid_len != 0)
837 flags |= IWL_MVM_LMAC_SCAN_FLAG_PRE_CONNECTION;
839 if (params->passive_fragmented)
840 flags |= IWL_MVM_LMAC_SCAN_FLAG_FRAGMENTED;
842 if (params->n_ssids == 0)
843 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASSIVE;
845 #ifdef CONFIG_IWLWIFI_DEBUGFS
846 /* TODO: Check if it's okay to have this in regular scans */
847 if (mvm->scan_iter_notif_enabled)
848 flags |= IWL_MVM_LMAC_SCAN_FLAG_ITER_COMPLETE;
851 cmd->scan_flags |= cpu_to_le32(flags);
853 cmd->flags = iwl_mvm_scan_rxon_flags(params->channels[0]->band);
854 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
855 MAC_FILTER_IN_BEACON);
856 iwl_mvm_scan_fill_tx_cmd(mvm, cmd->tx_cmd, params->no_cck);
857 iwl_scan_build_ssids(params, cmd->direct_scan, &ssid_bitmap);
859 /* this API uses bits 1-20 instead of 0-19 */
862 cmd->schedule[0].delay = cpu_to_le16(params->interval);
863 cmd->schedule[0].iterations = 1;
864 cmd->schedule[0].full_scan_mul = 0;
865 cmd->schedule[1].delay = cpu_to_le16(params->interval);
866 cmd->schedule[1].iterations = 0;
867 cmd->schedule[1].full_scan_mul = 0;
869 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_SINGLE_SCAN_EBS &&
870 mvm->last_ebs_successful) {
871 cmd->channel_opt[0].flags =
872 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
873 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
874 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
875 cmd->channel_opt[0].non_ebs_ratio =
876 cpu_to_le16(IWL_DENSE_EBS_SCAN_RATIO);
877 cmd->channel_opt[1].flags =
878 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
879 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
880 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
881 cmd->channel_opt[1].non_ebs_ratio =
882 cpu_to_le16(IWL_SPARSE_EBS_SCAN_RATIO);
885 iwl_mvm_lmac_scan_cfg_channels(mvm, params->channels,
886 params->n_channels, ssid_bitmap, cmd);
888 preq = (void *)(cmd->data + sizeof(struct iwl_scan_channel_cfg_lmac) *
889 mvm->fw->ucode_capa.n_scan_channels);
891 iwl_mvm_build_scan_probe(mvm, vif, ies, preq,
892 params->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
893 params->mac_addr : NULL,
894 params->mac_addr_mask);
900 iwl_mvm_sched_scan_lmac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
901 struct ieee80211_scan_ies *ies,
902 struct iwl_mvm_scan_params *params)
904 struct iwl_scan_req_lmac *cmd = mvm->scan_cmd;
905 struct iwl_scan_probe_req *preq;
906 u32 flags = 0, ssid_bitmap = 0;
908 lockdep_assert_held(&mvm->mutex);
910 iwl_mvm_build_generic_scan_cmd(mvm, cmd, params);
912 cmd->n_channels = (u8)params->n_channels;
914 cmd->delay = cpu_to_le32(params->delay);
916 if (params->pass_all)
917 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASS_ALL;
919 flags |= IWL_MVM_LMAC_SCAN_FLAG_MATCH;
921 if (params->n_ssids == 1 && params->ssids[0].ssid_len != 0)
922 flags |= IWL_MVM_LMAC_SCAN_FLAG_PRE_CONNECTION;
924 if (params->passive_fragmented)
925 flags |= IWL_MVM_LMAC_SCAN_FLAG_FRAGMENTED;
927 if (params->n_ssids == 0)
928 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASSIVE;
930 #ifdef CONFIG_IWLWIFI_DEBUGFS
931 if (mvm->scan_iter_notif_enabled)
932 flags |= IWL_MVM_LMAC_SCAN_FLAG_ITER_COMPLETE;
935 cmd->scan_flags |= cpu_to_le32(flags);
937 cmd->flags = iwl_mvm_scan_rxon_flags(params->channels[0]->band);
938 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
939 MAC_FILTER_IN_BEACON);
940 iwl_mvm_scan_fill_tx_cmd(mvm, cmd->tx_cmd, params->no_cck);
942 iwl_scan_build_ssids(params, cmd->direct_scan, &ssid_bitmap);
944 /* this API uses bits 1-20 instead of 0-19 */
947 cmd->schedule[0].delay = cpu_to_le16(params->interval);
948 cmd->schedule[0].iterations = IWL_FAST_SCHED_SCAN_ITERATIONS;
949 cmd->schedule[0].full_scan_mul = 1;
951 cmd->schedule[1].delay = cpu_to_le16(params->interval);
952 cmd->schedule[1].iterations = 0xff;
953 cmd->schedule[1].full_scan_mul = IWL_FULL_SCAN_MULTIPLIER;
955 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT &&
956 mvm->last_ebs_successful) {
957 cmd->channel_opt[0].flags =
958 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
959 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
960 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
961 cmd->channel_opt[0].non_ebs_ratio =
962 cpu_to_le16(IWL_DENSE_EBS_SCAN_RATIO);
963 cmd->channel_opt[1].flags =
964 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
965 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
966 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
967 cmd->channel_opt[1].non_ebs_ratio =
968 cpu_to_le16(IWL_SPARSE_EBS_SCAN_RATIO);
971 iwl_mvm_lmac_scan_cfg_channels(mvm, params->channels,
972 params->n_channels, ssid_bitmap, cmd);
974 preq = (void *)(cmd->data + sizeof(struct iwl_scan_channel_cfg_lmac) *
975 mvm->fw->ucode_capa.n_scan_channels);
977 iwl_mvm_build_scan_probe(mvm, vif, ies, preq,
978 params->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
979 params->mac_addr : NULL,
980 params->mac_addr_mask);
986 int iwl_mvm_cancel_scan(struct iwl_mvm *mvm)
988 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
989 return iwl_umac_scan_stop(mvm, IWL_UMAC_SCAN_UID_REG_SCAN,
992 if (!(mvm->scan_status & IWL_MVM_SCAN_REGULAR))
995 if (iwl_mvm_is_radio_killed(mvm)) {
996 ieee80211_scan_completed(mvm->hw, true);
997 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
998 mvm->scan_status &= ~IWL_MVM_SCAN_REGULAR;
1002 return iwl_mvm_scan_offload_stop(mvm, true);
1007 struct iwl_umac_scan_done {
1008 struct iwl_mvm *mvm;
1009 enum iwl_umac_scan_uid_type type;
1012 static int rate_to_scan_rate_flag(unsigned int rate)
1014 static const int rate_to_scan_rate[IWL_RATE_COUNT] = {
1015 [IWL_RATE_1M_INDEX] = SCAN_CONFIG_RATE_1M,
1016 [IWL_RATE_2M_INDEX] = SCAN_CONFIG_RATE_2M,
1017 [IWL_RATE_5M_INDEX] = SCAN_CONFIG_RATE_5M,
1018 [IWL_RATE_11M_INDEX] = SCAN_CONFIG_RATE_11M,
1019 [IWL_RATE_6M_INDEX] = SCAN_CONFIG_RATE_6M,
1020 [IWL_RATE_9M_INDEX] = SCAN_CONFIG_RATE_9M,
1021 [IWL_RATE_12M_INDEX] = SCAN_CONFIG_RATE_12M,
1022 [IWL_RATE_18M_INDEX] = SCAN_CONFIG_RATE_18M,
1023 [IWL_RATE_24M_INDEX] = SCAN_CONFIG_RATE_24M,
1024 [IWL_RATE_36M_INDEX] = SCAN_CONFIG_RATE_36M,
1025 [IWL_RATE_48M_INDEX] = SCAN_CONFIG_RATE_48M,
1026 [IWL_RATE_54M_INDEX] = SCAN_CONFIG_RATE_54M,
1029 return rate_to_scan_rate[rate];
1032 static __le32 iwl_mvm_scan_config_rates(struct iwl_mvm *mvm)
1034 struct ieee80211_supported_band *band;
1035 unsigned int rates = 0;
1038 band = &mvm->nvm_data->bands[IEEE80211_BAND_2GHZ];
1039 for (i = 0; i < band->n_bitrates; i++)
1040 rates |= rate_to_scan_rate_flag(band->bitrates[i].hw_value);
1041 band = &mvm->nvm_data->bands[IEEE80211_BAND_5GHZ];
1042 for (i = 0; i < band->n_bitrates; i++)
1043 rates |= rate_to_scan_rate_flag(band->bitrates[i].hw_value);
1045 /* Set both basic rates and supported rates */
1046 rates |= SCAN_CONFIG_SUPPORTED_RATE(rates);
1048 return cpu_to_le32(rates);
1051 int iwl_mvm_config_scan(struct iwl_mvm *mvm)
1054 struct iwl_scan_config *scan_config;
1055 struct ieee80211_supported_band *band;
1057 mvm->nvm_data->bands[IEEE80211_BAND_2GHZ].n_channels +
1058 mvm->nvm_data->bands[IEEE80211_BAND_5GHZ].n_channels;
1059 int ret, i, j = 0, cmd_size, data_size;
1060 struct iwl_host_cmd cmd = {
1064 if (WARN_ON(num_channels > mvm->fw->ucode_capa.n_scan_channels))
1067 cmd_size = sizeof(*scan_config) + mvm->fw->ucode_capa.n_scan_channels;
1069 scan_config = kzalloc(cmd_size, GFP_KERNEL);
1073 data_size = cmd_size - sizeof(struct iwl_mvm_umac_cmd_hdr);
1074 scan_config->hdr.size = cpu_to_le16(data_size);
1075 scan_config->flags = cpu_to_le32(SCAN_CONFIG_FLAG_ACTIVATE |
1076 SCAN_CONFIG_FLAG_ALLOW_CHUB_REQS |
1077 SCAN_CONFIG_FLAG_SET_TX_CHAINS |
1078 SCAN_CONFIG_FLAG_SET_RX_CHAINS |
1079 SCAN_CONFIG_FLAG_SET_ALL_TIMES |
1080 SCAN_CONFIG_FLAG_SET_LEGACY_RATES |
1081 SCAN_CONFIG_FLAG_SET_MAC_ADDR |
1082 SCAN_CONFIG_FLAG_SET_CHANNEL_FLAGS|
1083 SCAN_CONFIG_N_CHANNELS(num_channels));
1084 scan_config->tx_chains = cpu_to_le32(iwl_mvm_get_valid_tx_ant(mvm));
1085 scan_config->rx_chains = cpu_to_le32(iwl_mvm_scan_rx_ant(mvm));
1086 scan_config->legacy_rates = iwl_mvm_scan_config_rates(mvm);
1087 scan_config->out_of_channel_time = cpu_to_le32(170);
1088 scan_config->suspend_time = cpu_to_le32(30);
1089 scan_config->dwell_active = 20;
1090 scan_config->dwell_passive = 110;
1091 scan_config->dwell_fragmented = 20;
1093 memcpy(&scan_config->mac_addr, &mvm->addresses[0].addr, ETH_ALEN);
1095 scan_config->bcast_sta_id = mvm->aux_sta.sta_id;
1096 scan_config->channel_flags = IWL_CHANNEL_FLAG_EBS |
1097 IWL_CHANNEL_FLAG_ACCURATE_EBS |
1098 IWL_CHANNEL_FLAG_EBS_ADD |
1099 IWL_CHANNEL_FLAG_PRE_SCAN_PASSIVE2ACTIVE;
1101 band = &mvm->nvm_data->bands[IEEE80211_BAND_2GHZ];
1102 for (i = 0; i < band->n_channels; i++, j++)
1103 scan_config->channel_array[j] = band->channels[i].hw_value;
1104 band = &mvm->nvm_data->bands[IEEE80211_BAND_5GHZ];
1105 for (i = 0; i < band->n_channels; i++, j++)
1106 scan_config->channel_array[j] = band->channels[i].hw_value;
1108 cmd.data[0] = scan_config;
1109 cmd.len[0] = cmd_size;
1110 cmd.dataflags[0] = IWL_HCMD_DFL_NOCOPY;
1112 IWL_DEBUG_SCAN(mvm, "Sending UMAC scan config\n");
1114 ret = iwl_mvm_send_cmd(mvm, &cmd);
1120 static int iwl_mvm_find_scan_uid(struct iwl_mvm *mvm, u32 uid)
1124 for (i = 0; i < mvm->max_scans; i++)
1125 if (mvm->scan_uid[i] == uid)
1131 static int iwl_mvm_find_free_scan_uid(struct iwl_mvm *mvm)
1133 return iwl_mvm_find_scan_uid(mvm, 0);
1136 static bool iwl_mvm_find_scan_type(struct iwl_mvm *mvm,
1137 enum iwl_umac_scan_uid_type type)
1141 for (i = 0; i < mvm->max_scans; i++)
1142 if (mvm->scan_uid[i] & type)
1148 static int iwl_mvm_find_first_scan(struct iwl_mvm *mvm,
1149 enum iwl_umac_scan_uid_type type)
1153 for (i = 0; i < mvm->max_scans; i++)
1154 if (mvm->scan_uid[i] & type)
1160 static u32 iwl_generate_scan_uid(struct iwl_mvm *mvm,
1161 enum iwl_umac_scan_uid_type type)
1165 /* make sure exactly one bit is on in scan type */
1166 WARN_ON(hweight8(type) != 1);
1169 * Make sure scan uids are unique. If one scan lasts long time while
1170 * others are completing frequently, the seq number will wrap up and
1171 * we may have more than one scan with the same uid.
1174 uid = type | (mvm->scan_seq_num <<
1175 IWL_UMAC_SCAN_UID_SEQ_OFFSET);
1176 mvm->scan_seq_num++;
1177 } while (iwl_mvm_find_scan_uid(mvm, uid) < mvm->max_scans);
1179 IWL_DEBUG_SCAN(mvm, "Generated scan UID %u\n", uid);
1185 iwl_mvm_build_generic_umac_scan_cmd(struct iwl_mvm *mvm,
1186 struct iwl_scan_req_umac *cmd,
1187 struct iwl_mvm_scan_params *params)
1189 memset(cmd, 0, ksize(cmd));
1190 cmd->hdr.size = cpu_to_le16(iwl_mvm_scan_size(mvm) -
1191 sizeof(struct iwl_mvm_umac_cmd_hdr));
1192 cmd->active_dwell = params->dwell[IEEE80211_BAND_2GHZ].active;
1193 cmd->passive_dwell = params->dwell[IEEE80211_BAND_2GHZ].passive;
1194 if (params->passive_fragmented)
1195 cmd->fragmented_dwell =
1196 params->dwell[IEEE80211_BAND_2GHZ].fragmented;
1197 cmd->max_out_time = cpu_to_le32(params->max_out_time);
1198 cmd->suspend_time = cpu_to_le32(params->suspend_time);
1199 cmd->scan_priority = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1203 iwl_mvm_umac_scan_cfg_channels(struct iwl_mvm *mvm,
1204 struct ieee80211_channel **channels,
1205 int n_channels, u32 ssid_bitmap,
1206 struct iwl_scan_req_umac *cmd)
1208 struct iwl_scan_channel_cfg_umac *channel_cfg = (void *)&cmd->data;
1211 for (i = 0; i < n_channels; i++) {
1212 channel_cfg[i].flags = cpu_to_le32(ssid_bitmap);
1213 channel_cfg[i].channel_num = channels[i]->hw_value;
1214 channel_cfg[i].iter_count = 1;
1215 channel_cfg[i].iter_interval = 0;
1219 static u32 iwl_mvm_scan_umac_common_flags(struct iwl_mvm *mvm, int n_ssids,
1220 struct cfg80211_ssid *ssids,
1226 flags = IWL_UMAC_SCAN_GEN_FLAGS_PASSIVE;
1228 if (n_ssids == 1 && ssids[0].ssid_len != 0)
1229 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PRE_CONNECT;
1232 flags |= IWL_UMAC_SCAN_GEN_FLAGS_FRAGMENTED;
1234 if (iwl_mvm_rrm_scan_needed(mvm))
1235 flags |= IWL_UMAC_SCAN_GEN_FLAGS_RRM_ENABLED;
1240 static int iwl_mvm_scan_umac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1241 struct ieee80211_scan_ies *ies,
1242 struct iwl_mvm_scan_params *params)
1244 struct iwl_scan_req_umac *cmd = mvm->scan_cmd;
1245 struct iwl_scan_req_umac_tail *sec_part = (void *)&cmd->data +
1246 sizeof(struct iwl_scan_channel_cfg_umac) *
1247 mvm->fw->ucode_capa.n_scan_channels;
1249 u32 ssid_bitmap = 0;
1252 lockdep_assert_held(&mvm->mutex);
1254 uid_idx = iwl_mvm_find_free_scan_uid(mvm);
1255 if (uid_idx >= mvm->max_scans)
1258 iwl_mvm_build_generic_umac_scan_cmd(mvm, cmd, params);
1260 uid = iwl_generate_scan_uid(mvm, IWL_UMAC_SCAN_UID_REG_SCAN);
1261 mvm->scan_uid[uid_idx] = uid;
1262 cmd->uid = cpu_to_le32(uid);
1264 cmd->ooc_priority = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1266 flags = iwl_mvm_scan_umac_common_flags(mvm, params->n_ssids,
1268 params->passive_fragmented);
1270 if (params->pass_all)
1271 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PASS_ALL;
1273 flags |= IWL_UMAC_SCAN_GEN_FLAGS_MATCH;
1275 cmd->general_flags = cpu_to_le32(flags);
1277 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_SINGLE_SCAN_EBS &&
1278 mvm->last_ebs_successful)
1279 cmd->channel_flags = IWL_SCAN_CHANNEL_FLAG_EBS |
1280 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1281 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD;
1283 cmd->n_channels = params->n_channels;
1285 iwl_scan_build_ssids(params, sec_part->direct_scan, &ssid_bitmap);
1287 iwl_mvm_umac_scan_cfg_channels(mvm, params->channels,
1288 params->n_channels, ssid_bitmap, cmd);
1290 sec_part->schedule[0].iter_count = 1;
1291 sec_part->delay = 0;
1293 iwl_mvm_build_scan_probe(mvm, vif, ies, &sec_part->preq,
1294 params->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1295 params->mac_addr : NULL,
1296 params->mac_addr_mask);
1301 static int iwl_mvm_sched_scan_umac(struct iwl_mvm *mvm,
1302 struct ieee80211_vif *vif,
1303 struct ieee80211_scan_ies *ies,
1304 struct iwl_mvm_scan_params *params)
1306 struct iwl_scan_req_umac *cmd = mvm->scan_cmd;
1307 struct iwl_scan_req_umac_tail *sec_part = (void *)&cmd->data +
1308 sizeof(struct iwl_scan_channel_cfg_umac) *
1309 mvm->fw->ucode_capa.n_scan_channels;
1311 u32 ssid_bitmap = 0;
1314 lockdep_assert_held(&mvm->mutex);
1316 uid_idx = iwl_mvm_find_free_scan_uid(mvm);
1317 if (uid_idx >= mvm->max_scans)
1320 iwl_mvm_build_generic_umac_scan_cmd(mvm, cmd, params);
1322 cmd->flags = cpu_to_le32(IWL_UMAC_SCAN_FLAG_PREEMPTIVE);
1324 uid = iwl_generate_scan_uid(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN);
1325 mvm->scan_uid[uid_idx] = uid;
1326 cmd->uid = cpu_to_le32(uid);
1328 cmd->ooc_priority = cpu_to_le32(IWL_SCAN_PRIORITY_LOW);
1330 flags = iwl_mvm_scan_umac_common_flags(mvm, params->n_ssids,
1332 params->passive_fragmented);
1334 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PERIODIC;
1336 if (params->pass_all)
1337 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PASS_ALL;
1339 flags |= IWL_UMAC_SCAN_GEN_FLAGS_MATCH;
1341 cmd->general_flags = cpu_to_le32(flags);
1343 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT &&
1344 mvm->last_ebs_successful)
1345 cmd->channel_flags = IWL_SCAN_CHANNEL_FLAG_EBS |
1346 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1347 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD;
1349 cmd->n_channels = params->n_channels;
1351 iwl_scan_build_ssids(params, sec_part->direct_scan, &ssid_bitmap);
1353 iwl_mvm_umac_scan_cfg_channels(mvm, params->channels,
1354 params->n_channels, ssid_bitmap, cmd);
1356 sec_part->schedule[0].interval =
1357 cpu_to_le16(params->interval / MSEC_PER_SEC);
1358 sec_part->schedule[0].iter_count = 0xff;
1360 if (params->delay > U16_MAX) {
1362 "delay value is > 16-bits, set to max possible\n");
1363 sec_part->delay = cpu_to_le16(U16_MAX);
1365 sec_part->delay = cpu_to_le16(params->delay);
1368 iwl_mvm_build_scan_probe(mvm, vif, ies, &sec_part->preq,
1369 params->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1370 params->mac_addr : NULL,
1371 params->mac_addr_mask);
1376 static int iwl_mvm_num_scans(struct iwl_mvm *mvm)
1378 return hweight32(mvm->scan_status & IWL_MVM_SCAN_MASK);
1381 static int iwl_mvm_check_running_scans(struct iwl_mvm *mvm, int type)
1383 /* This looks a bit arbitrary, but the idea is that if we run
1384 * out of possible simultaneous scans and the userspace is
1385 * trying to run a scan type that is already running, we
1386 * return -EBUSY. But if the userspace wants to start a
1387 * different type of scan, we stop the opposite type to make
1388 * space for the new request. The reason is backwards
1389 * compatibility with old wpa_supplicant that wouldn't stop a
1390 * scheduled scan before starting a normal scan.
1393 if (iwl_mvm_num_scans(mvm) < mvm->max_scans)
1396 /* Use a switch, even though this is a bitmask, so that more
1397 * than one bits set will fall in default and we will warn.
1400 case IWL_MVM_SCAN_REGULAR:
1401 if (mvm->scan_status & IWL_MVM_SCAN_REGULAR_MASK)
1403 return iwl_mvm_scan_offload_stop(mvm, true);
1404 case IWL_MVM_SCAN_SCHED:
1405 if (mvm->scan_status & IWL_MVM_SCAN_SCHED_MASK)
1407 return iwl_mvm_cancel_scan(mvm);
1408 case IWL_MVM_SCAN_NETDETECT:
1409 /* No need to stop anything for net-detect since the
1410 * firmware is restarted anyway. This way, any sched
1411 * scans that were running will be restarted when we
1423 int iwl_mvm_reg_scan_start(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1424 struct cfg80211_scan_request *req,
1425 struct ieee80211_scan_ies *ies)
1427 struct iwl_host_cmd hcmd = {
1428 .len = { iwl_mvm_scan_size(mvm), },
1429 .data = { mvm->scan_cmd, },
1430 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1432 struct iwl_mvm_scan_params params = {};
1435 lockdep_assert_held(&mvm->mutex);
1437 if (iwl_mvm_is_lar_supported(mvm) && !mvm->lar_regdom_set) {
1438 IWL_ERR(mvm, "scan while LAR regdomain is not set\n");
1442 ret = iwl_mvm_check_running_scans(mvm, IWL_MVM_SCAN_REGULAR);
1446 iwl_mvm_ref(mvm, IWL_MVM_REF_SCAN);
1448 /* we should have failed registration if scan_cmd was NULL */
1449 if (WARN_ON(!mvm->scan_cmd))
1452 if (!iwl_mvm_scan_fits(mvm, req->n_ssids, ies, req->n_channels))
1455 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, req->flags, ¶ms);
1457 params.n_channels = req->n_channels;
1459 params.interval = 0;
1460 params.ssids = req->ssids;
1461 params.channels = req->channels;
1462 params.mac_addr = req->mac_addr;
1463 params.mac_addr_mask = req->mac_addr_mask;
1464 params.no_cck = req->no_cck;
1465 params.pass_all = true;
1466 params.n_match_sets = 0;
1467 params.match_sets = NULL;
1469 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) {
1470 hcmd.id = SCAN_REQ_UMAC;
1471 ret = iwl_mvm_scan_umac(mvm, vif, ies, ¶ms);
1473 hcmd.id = SCAN_OFFLOAD_REQUEST_CMD;
1474 ret = iwl_mvm_scan_lmac(mvm, vif, ies, ¶ms);
1480 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1482 IWL_DEBUG_SCAN(mvm, "Scan request was sent successfully\n");
1483 mvm->scan_status |= IWL_MVM_SCAN_REGULAR;
1485 /* If the scan failed, it usually means that the FW was unable
1486 * to allocate the time events. Warn on it, but maybe we
1487 * should try to send the command again with different params.
1489 IWL_ERR(mvm, "Scan failed! ret %d\n", ret);
1493 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1498 int iwl_mvm_sched_scan_start(struct iwl_mvm *mvm,
1499 struct ieee80211_vif *vif,
1500 struct cfg80211_sched_scan_request *req,
1501 struct ieee80211_scan_ies *ies,
1504 struct iwl_host_cmd hcmd = {
1505 .len = { iwl_mvm_scan_size(mvm), },
1506 .data = { mvm->scan_cmd, },
1507 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1509 struct iwl_mvm_scan_params params = {};
1512 lockdep_assert_held(&mvm->mutex);
1514 if (iwl_mvm_is_lar_supported(mvm) && !mvm->lar_regdom_set) {
1515 IWL_ERR(mvm, "sched-scan while LAR regdomain is not set\n");
1519 ret = iwl_mvm_check_running_scans(mvm, type);
1523 /* we should have failed registration if scan_cmd was NULL */
1524 if (WARN_ON(!mvm->scan_cmd))
1527 if (!iwl_mvm_scan_fits(mvm, req->n_ssids, ies, req->n_channels))
1530 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, req->flags, ¶ms);
1532 params.n_channels = req->n_channels;
1533 params.delay = req->delay;
1534 params.ssids = req->ssids;
1535 params.channels = req->channels;
1536 params.mac_addr = req->mac_addr;
1537 params.mac_addr_mask = req->mac_addr_mask;
1538 params.no_cck = false;
1539 params.pass_all = iwl_mvm_scan_pass_all(mvm, req);
1540 params.n_match_sets = req->n_match_sets;
1541 params.match_sets = req->match_sets;
1543 if (req->interval > U16_MAX) {
1545 "interval value is > 16-bits, set to max possible\n");
1546 params.interval = U16_MAX;
1548 params.interval = req->interval / MSEC_PER_SEC;
1551 ret = iwl_mvm_config_sched_scan_profiles(mvm, req);
1555 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) {
1556 hcmd.id = SCAN_REQ_UMAC;
1557 ret = iwl_mvm_sched_scan_umac(mvm, vif, ies, ¶ms);
1559 hcmd.id = SCAN_OFFLOAD_REQUEST_CMD;
1560 ret = iwl_mvm_sched_scan_lmac(mvm, vif, ies, ¶ms);
1566 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1569 "Sched scan request was sent successfully\n");
1570 mvm->scan_status |= type;
1572 /* If the scan failed, it usually means that the FW was unable
1573 * to allocate the time events. Warn on it, but maybe we
1574 * should try to send the command again with different params.
1576 IWL_ERR(mvm, "Sched scan failed! ret %d\n", ret);
1582 int iwl_mvm_rx_umac_scan_complete_notif(struct iwl_mvm *mvm,
1583 struct iwl_rx_cmd_buffer *rxb,
1584 struct iwl_device_cmd *cmd)
1586 struct iwl_rx_packet *pkt = rxb_addr(rxb);
1587 struct iwl_umac_scan_complete *notif = (void *)pkt->data;
1588 u32 uid = __le32_to_cpu(notif->uid);
1589 bool sched = !!(uid & IWL_UMAC_SCAN_UID_SCHED_SCAN);
1590 int uid_idx = iwl_mvm_find_scan_uid(mvm, uid);
1593 * Scan uid may be set to zero in case of scan abort request from above.
1595 if (uid_idx >= mvm->max_scans)
1599 "Scan completed, uid %u type %s, status %s, EBS status %s\n",
1600 uid, sched ? "sched" : "regular",
1601 notif->status == IWL_SCAN_OFFLOAD_COMPLETED ?
1602 "completed" : "aborted",
1603 notif->ebs_status == IWL_SCAN_EBS_SUCCESS ?
1604 "success" : "failed");
1606 if (notif->ebs_status)
1607 mvm->last_ebs_successful = false;
1609 mvm->scan_uid[uid_idx] = 0;
1612 ieee80211_scan_completed(mvm->hw,
1614 IWL_SCAN_OFFLOAD_ABORTED);
1615 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1616 } else if (!iwl_mvm_find_scan_type(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN)) {
1617 ieee80211_sched_scan_stopped(mvm->hw);
1619 IWL_DEBUG_SCAN(mvm, "Another sched scan is running\n");
1625 static bool iwl_scan_umac_done_check(struct iwl_notif_wait_data *notif_wait,
1626 struct iwl_rx_packet *pkt, void *data)
1628 struct iwl_umac_scan_done *scan_done = data;
1629 struct iwl_umac_scan_complete *notif = (void *)pkt->data;
1630 u32 uid = __le32_to_cpu(notif->uid);
1631 int uid_idx = iwl_mvm_find_scan_uid(scan_done->mvm, uid);
1633 if (WARN_ON(pkt->hdr.cmd != SCAN_COMPLETE_UMAC))
1636 if (uid_idx >= scan_done->mvm->max_scans)
1640 * Clear scan uid of scans that was aborted from above and completed
1641 * in FW so the RX handler does nothing. Set last_ebs_successful here if
1644 scan_done->mvm->scan_uid[uid_idx] = 0;
1646 if (notif->ebs_status)
1647 scan_done->mvm->last_ebs_successful = false;
1649 return !iwl_mvm_find_scan_type(scan_done->mvm, scan_done->type);
1652 static int iwl_umac_scan_abort_one(struct iwl_mvm *mvm, u32 uid)
1654 struct iwl_umac_scan_abort cmd = {
1655 .hdr.size = cpu_to_le16(sizeof(struct iwl_umac_scan_abort) -
1656 sizeof(struct iwl_mvm_umac_cmd_hdr)),
1657 .uid = cpu_to_le32(uid),
1660 lockdep_assert_held(&mvm->mutex);
1662 IWL_DEBUG_SCAN(mvm, "Sending scan abort, uid %u\n", uid);
1664 return iwl_mvm_send_cmd_pdu(mvm, SCAN_ABORT_UMAC, 0, sizeof(cmd), &cmd);
1667 static int iwl_umac_scan_stop(struct iwl_mvm *mvm,
1668 enum iwl_umac_scan_uid_type type, bool notify)
1670 struct iwl_notification_wait wait_scan_done;
1671 static const u8 scan_done_notif[] = { SCAN_COMPLETE_UMAC, };
1672 struct iwl_umac_scan_done scan_done = {
1678 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_done,
1680 ARRAY_SIZE(scan_done_notif),
1681 iwl_scan_umac_done_check, &scan_done);
1683 IWL_DEBUG_SCAN(mvm, "Preparing to stop scan, type %x\n", type);
1685 for (i = 0; i < mvm->max_scans; i++) {
1686 if (mvm->scan_uid[i] & type) {
1689 if (iwl_mvm_is_radio_killed(mvm) &&
1690 (type & IWL_UMAC_SCAN_UID_REG_SCAN)) {
1691 ieee80211_scan_completed(mvm->hw, true);
1692 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1696 err = iwl_umac_scan_abort_one(mvm, mvm->scan_uid[i]);
1703 IWL_DEBUG_SCAN(mvm, "Couldn't stop scan\n");
1704 iwl_remove_notification(&mvm->notif_wait, &wait_scan_done);
1708 ret = iwl_wait_notification(&mvm->notif_wait, &wait_scan_done, 1 * HZ);
1713 if (type & IWL_UMAC_SCAN_UID_SCHED_SCAN)
1714 ieee80211_sched_scan_stopped(mvm->hw);
1715 if (type & IWL_UMAC_SCAN_UID_REG_SCAN) {
1716 ieee80211_scan_completed(mvm->hw, true);
1717 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1724 int iwl_mvm_scan_size(struct iwl_mvm *mvm)
1726 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
1727 return sizeof(struct iwl_scan_req_umac) +
1728 sizeof(struct iwl_scan_channel_cfg_umac) *
1729 mvm->fw->ucode_capa.n_scan_channels +
1730 sizeof(struct iwl_scan_req_umac_tail);
1732 return sizeof(struct iwl_scan_req_lmac) +
1733 sizeof(struct iwl_scan_channel_cfg_lmac) *
1734 mvm->fw->ucode_capa.n_scan_channels +
1735 sizeof(struct iwl_scan_probe_req);
1739 * This function is used in nic restart flow, to inform mac80211 about scans
1740 * that was aborted by restart flow or by an assert.
1742 void iwl_mvm_report_scan_aborted(struct iwl_mvm *mvm)
1744 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) {
1747 uid = iwl_mvm_find_first_scan(mvm, IWL_UMAC_SCAN_UID_REG_SCAN);
1748 if (uid < mvm->max_scans) {
1749 ieee80211_scan_completed(mvm->hw, true);
1750 mvm->scan_uid[uid] = 0;
1752 uid = iwl_mvm_find_first_scan(mvm,
1753 IWL_UMAC_SCAN_UID_SCHED_SCAN);
1754 if (uid < mvm->max_scans && !mvm->restart_fw) {
1755 ieee80211_sched_scan_stopped(mvm->hw);
1756 mvm->scan_uid[uid] = 0;
1759 /* We shouldn't have any UIDs still set. Loop over all the
1760 * UIDs to make sure there's nothing left there and warn if
1763 for (i = 0; i < mvm->max_scans; i++) {
1764 if (WARN_ONCE(mvm->scan_uid[i],
1765 "UMAC scan UID %d was not cleaned\n",
1767 mvm->scan_uid[i] = 0;
1770 if (mvm->scan_status & IWL_MVM_SCAN_REGULAR)
1771 ieee80211_scan_completed(mvm->hw, true);
1773 /* Sched scan will be restarted by mac80211 in
1774 * restart_hw, so do not report if FW is about to be
1777 if ((mvm->scan_status & IWL_MVM_SCAN_SCHED) && !mvm->restart_fw)
1778 ieee80211_sched_scan_stopped(mvm->hw);
projects / linux-block.git / blob