litmus-rt.git - The LITMUS^RT kernel.


diff --git a/net/x25/af_x25.c b/net/x25/af_x25.c index 7fa9c7ad3d3b..36e84e13c6aa 100644 --- a/net/x25/af_x25.c +++ b/net/x25/af_x25.c
@@ -47,6 +47,7 @@
47	#include <linux/netdevice.h>	47	#include <linux/netdevice.h>
48	#include <linux/if_arp.h>	48	#include <linux/if_arp.h>
49	#include <linux/skbuff.h>	49	#include <linux/skbuff.h>
		50	#include <linux/slab.h>
50	#include <net/sock.h>	51	#include <net/sock.h>
51	#include <net/tcp_states.h>	52	#include <net/tcp_states.h>
52	#include <asm/uaccess.h>	53	#include <asm/uaccess.h>
@@ -55,6 +56,7 @@
55	#include <linux/notifier.h>	56	#include <linux/notifier.h>
56	#include <linux/init.h>	57	#include <linux/init.h>
57	#include <linux/compat.h>	58	#include <linux/compat.h>
		59	#include <linux/ctype.h>
58		60
59	#include <net/x25.h>	61	#include <net/x25.h>
60	#include <net/compat.h>	62	#include <net/compat.h>
@@ -81,6 +83,41 @@ struct compat_x25_subscrip_struct {
81	};	83	};
82	#endif	84	#endif
83		85
		86
		87	int x25_parse_address_block(struct sk_buff *skb,
		88	struct x25_address *called_addr,
		89	struct x25_address *calling_addr)
		90	{
		91	unsigned char len;
		92	int needed;
		93	int rc;
		94
		95	if (skb->len < 1) {
		96	/* packet has no address block */
		97	rc = 0;
		98	goto empty;
		99	}
		100
		101	len = *skb->data;
		102	needed = 1 + (len >> 4) + (len & 0x0f);
		103
		104	if (skb->len < needed) {
		105	/* packet is too short to hold the addresses it claims
		106	to hold */
		107	rc = -1;
		108	goto empty;
		109	}
		110
		111	return x25_addr_ntoa(skb->data, called_addr, calling_addr);
		112
		113	empty:
		114	*called_addr->x25_addr = 0;
		115	*calling_addr->x25_addr = 0;
		116
		117	return rc;
		118	}
		119
		120
84	int x25_addr_ntoa(unsigned char p, struct x25_address called_addr,	121	int x25_addr_ntoa(unsigned char p, struct x25_address called_addr,
85	struct x25_address *calling_addr)	122	struct x25_address *calling_addr)
86	{	123	{
@@ -365,6 +402,7 @@ static void __x25_destroy_socket(struct sock *sk)
365	/*	402	/*
366	* Queue the unaccepted socket for death	403	* Queue the unaccepted socket for death
367	*/	404	*/
		405	skb->sk->sk_state = TCP_LISTEN;
368	sock_set_flag(skb->sk, SOCK_DEAD);	406	sock_set_flag(skb->sk, SOCK_DEAD);
369	x25_start_heartbeat(skb->sk);	407	x25_start_heartbeat(skb->sk);
370	x25_sk(skb->sk)->state = X25_STATE_0;	408	x25_sk(skb->sk)->state = X25_STATE_0;
@@ -415,6 +453,7 @@ static int x25_setsockopt(struct socket *sock, int level, int optname,
415	struct sock *sk = sock->sk;	453	struct sock *sk = sock->sk;
416	int rc = -ENOPROTOOPT;	454	int rc = -ENOPROTOOPT;
417		455
		456	lock_kernel();
418	if (level != SOL_X25 \|\| optname != X25_QBITINCL)	457	if (level != SOL_X25 \|\| optname != X25_QBITINCL)
419	goto out;	458	goto out;
420		459
@@ -429,6 +468,7 @@ static int x25_setsockopt(struct socket *sock, int level, int optname,
429	x25_sk(sk)->qbitincl = !!opt;	468	x25_sk(sk)->qbitincl = !!opt;
430	rc = 0;	469	rc = 0;
431	out:	470	out:
		471	unlock_kernel();
432	return rc;	472	return rc;
433	}	473	}
434		474
@@ -438,6 +478,7 @@ static int x25_getsockopt(struct socket *sock, int level, int optname,
438	struct sock *sk = sock->sk;	478	struct sock *sk = sock->sk;
439	int val, len, rc = -ENOPROTOOPT;	479	int val, len, rc = -ENOPROTOOPT;
440		480
		481	lock_kernel();
441	if (level != SOL_X25 \|\| optname != X25_QBITINCL)	482	if (level != SOL_X25 \|\| optname != X25_QBITINCL)
442	goto out;	483	goto out;
443		484
@@ -458,6 +499,7 @@ static int x25_getsockopt(struct socket *sock, int level, int optname,
458	val = x25_sk(sk)->qbitincl;	499	val = x25_sk(sk)->qbitincl;
459	rc = copy_to_user(optval, &val, len) ? -EFAULT : 0;	500	rc = copy_to_user(optval, &val, len) ? -EFAULT : 0;
460	out:	501	out:
		502	unlock_kernel();
461	return rc;	503	return rc;
462	}	504	}
463		505
@@ -466,12 +508,14 @@ static int x25_listen(struct socket *sock, int backlog)
466	struct sock *sk = sock->sk;	508	struct sock *sk = sock->sk;
467	int rc = -EOPNOTSUPP;	509	int rc = -EOPNOTSUPP;
468		510
		511	lock_kernel();
469	if (sk->sk_state != TCP_LISTEN) {	512	if (sk->sk_state != TCP_LISTEN) {
470	memset(&x25_sk(sk)->dest_addr, 0, X25_ADDR_LEN);	513	memset(&x25_sk(sk)->dest_addr, 0, X25_ADDR_LEN);
471	sk->sk_max_ack_backlog = backlog;	514	sk->sk_max_ack_backlog = backlog;
472	sk->sk_state = TCP_LISTEN;	515	sk->sk_state = TCP_LISTEN;
473	rc = 0;	516	rc = 0;
474	}	517	}
		518	unlock_kernel();
475		519
476	return rc;	520	return rc;
477	}	521	}
@@ -501,19 +545,25 @@ out:
501	return sk;	545	return sk;
502	}	546	}
503		547
504	static int x25_create(struct net net, struct socket sock, int protocol)	548	static int x25_create(struct net net, struct socket sock, int protocol,
		549	int kern)
505	{	550	{
506	struct sock *sk;	551	struct sock *sk;
507	struct x25_sock *x25;	552	struct x25_sock *x25;
508	int rc = -ESOCKTNOSUPPORT;	553	int rc = -EAFNOSUPPORT;
509		554
510	if (net != &init_net)	555	if (!net_eq(net, &init_net))
511	return -EAFNOSUPPORT;	556	goto out;
512		557
513	if (sock->type != SOCK_SEQPACKET \|\| protocol)	558	rc = -ESOCKTNOSUPPORT;
		559	if (sock->type != SOCK_SEQPACKET)
514	goto out;	560	goto out;
515		561
516	rc = -ENOMEM;	562	rc = -EINVAL;
		563	if (protocol)
		564	goto out;
		565
		566	rc = -ENOBUFS;
517	if ((sk = x25_alloc_socket(net)) == NULL)	567	if ((sk = x25_alloc_socket(net)) == NULL)
518	goto out;	568	goto out;
519		569
@@ -540,7 +590,8 @@ static int x25_create(struct net net, struct socket sock, int protocol)
540	x25->facilities.winsize_out = X25_DEFAULT_WINDOW_SIZE;	590	x25->facilities.winsize_out = X25_DEFAULT_WINDOW_SIZE;
541	x25->facilities.pacsize_in = X25_DEFAULT_PACKET_SIZE;	591	x25->facilities.pacsize_in = X25_DEFAULT_PACKET_SIZE;
542	x25->facilities.pacsize_out = X25_DEFAULT_PACKET_SIZE;	592	x25->facilities.pacsize_out = X25_DEFAULT_PACKET_SIZE;
543	x25->facilities.throughput = X25_DEFAULT_THROUGHPUT;	593	x25->facilities.throughput = 0; /* by default don't negotiate
		594	throughput */
544	x25->facilities.reverse = X25_DEFAULT_REVERSE;	595	x25->facilities.reverse = X25_DEFAULT_REVERSE;
545	x25->dte_facilities.calling_len = 0;	596	x25->dte_facilities.calling_len = 0;
546	x25->dte_facilities.called_len = 0;	597	x25->dte_facilities.called_len = 0;
@@ -597,6 +648,7 @@ static int x25_release(struct socket *sock)
597	struct sock *sk = sock->sk;	648	struct sock *sk = sock->sk;
598	struct x25_sock *x25;	649	struct x25_sock *x25;
599		650
		651	lock_kernel();
600	if (!sk)	652	if (!sk)
601	goto out;	653	goto out;
602		654
@@ -627,6 +679,7 @@ static int x25_release(struct socket *sock)
627		679
628	sock_orphan(sk);	680	sock_orphan(sk);
629	out:	681	out:
		682	unlock_kernel();
630	return 0;	683	return 0;
631	}	684	}
632		685
@@ -634,18 +687,31 @@ static int x25_bind(struct socket sock, struct sockaddr uaddr, int addr_len)
634	{	687	{
635	struct sock *sk = sock->sk;	688	struct sock *sk = sock->sk;
636	struct sockaddr_x25 addr = (struct sockaddr_x25 )uaddr;	689	struct sockaddr_x25 addr = (struct sockaddr_x25 )uaddr;
		690	int len, i, rc = 0;
637		691
		692	lock_kernel();
638	if (!sock_flag(sk, SOCK_ZAPPED) \|\|	693	if (!sock_flag(sk, SOCK_ZAPPED) \|\|
639	addr_len != sizeof(struct sockaddr_x25) \|\|	694	addr_len != sizeof(struct sockaddr_x25) \|\|
640	addr->sx25_family != AF_X25)	695	addr->sx25_family != AF_X25) {
641	return -EINVAL;	696	rc = -EINVAL;
		697	goto out;
		698	}
		699
		700	len = strlen(addr->sx25_addr.x25_addr);
		701	for (i = 0; i < len; i++) {
		702	if (!isdigit(addr->sx25_addr.x25_addr[i])) {
		703	rc = -EINVAL;
		704	goto out;
		705	}
		706	}
642		707
643	x25_sk(sk)->source_addr = addr->sx25_addr;	708	x25_sk(sk)->source_addr = addr->sx25_addr;
644	x25_insert_socket(sk);	709	x25_insert_socket(sk);
645	sock_reset_flag(sk, SOCK_ZAPPED);	710	sock_reset_flag(sk, SOCK_ZAPPED);
646	SOCK_DEBUG(sk, "x25_bind: socket is bound\n");	711	SOCK_DEBUG(sk, "x25_bind: socket is bound\n");
647		712	out:
648	return 0;	713	unlock_kernel();
		714	return rc;
649	}	715	}
650		716
651	static int x25_wait_for_connection_establishment(struct sock *sk)	717	static int x25_wait_for_connection_establishment(struct sock *sk)
@@ -686,6 +752,7 @@ static int x25_connect(struct socket sock, struct sockaddr uaddr,
686	struct x25_route *rt;	752	struct x25_route *rt;
687	int rc = 0;	753	int rc = 0;
688		754
		755	lock_kernel();
689	lock_sock(sk);	756	lock_sock(sk);
690	if (sk->sk_state == TCP_ESTABLISHED && sock->state == SS_CONNECTING) {	757	if (sk->sk_state == TCP_ESTABLISHED && sock->state == SS_CONNECTING) {
691	sock->state = SS_CONNECTED;	758	sock->state = SS_CONNECTED;
@@ -763,6 +830,7 @@ out_put_route:
763	x25_route_put(rt);	830	x25_route_put(rt);
764	out:	831	out:
765	release_sock(sk);	832	release_sock(sk);
		833	unlock_kernel();
766	return rc;	834	return rc;
767	}	835	}
768		836
@@ -802,6 +870,7 @@ static int x25_accept(struct socket sock, struct socket newsock, int flags)
802	struct sk_buff *skb;	870	struct sk_buff *skb;
803	int rc = -EINVAL;	871	int rc = -EINVAL;
804		872
		873	lock_kernel();
805	if (!sk \|\| sk->sk_state != TCP_LISTEN)	874	if (!sk \|\| sk->sk_state != TCP_LISTEN)
806	goto out;	875	goto out;
807		876
@@ -829,6 +898,7 @@ static int x25_accept(struct socket sock, struct socket newsock, int flags)
829	out2:	898	out2:
830	release_sock(sk);	899	release_sock(sk);
831	out:	900	out:
		901	unlock_kernel();
832	return rc;	902	return rc;
833	}	903	}
834		904
@@ -838,10 +908,14 @@ static int x25_getname(struct socket sock, struct sockaddr uaddr,
838	struct sockaddr_x25 sx25 = (struct sockaddr_x25 )uaddr;	908	struct sockaddr_x25 sx25 = (struct sockaddr_x25 )uaddr;
839	struct sock *sk = sock->sk;	909	struct sock *sk = sock->sk;
840	struct x25_sock *x25 = x25_sk(sk);	910	struct x25_sock *x25 = x25_sk(sk);
		911	int rc = 0;
841		912
		913	lock_kernel();
842	if (peer) {	914	if (peer) {
843	if (sk->sk_state != TCP_ESTABLISHED)	915	if (sk->sk_state != TCP_ESTABLISHED) {
844	return -ENOTCONN;	916	rc = -ENOTCONN;
		917	goto out;
		918	}
845	sx25->sx25_addr = x25->dest_addr;	919	sx25->sx25_addr = x25->dest_addr;
846	} else	920	} else
847	sx25->sx25_addr = x25->source_addr;	921	sx25->sx25_addr = x25->source_addr;
@@ -849,7 +923,21 @@ static int x25_getname(struct socket sock, struct sockaddr uaddr,
849	sx25->sx25_family = AF_X25;	923	sx25->sx25_family = AF_X25;
850	uaddr_len = sizeof(sx25);	924	uaddr_len = sizeof(sx25);
851		925
852	return 0;	926	out:
		927	unlock_kernel();
		928	return rc;
		929	}
		930
		931	static unsigned int x25_datagram_poll(struct file file, struct socket sock,
		932	poll_table *wait)
		933	{
		934	int rc;
		935
		936	lock_kernel();
		937	rc = datagram_poll(file, sock, wait);
		938	unlock_kernel();
		939
		940	return rc;
853	}	941	}
854		942
855	int x25_rx_call_request(struct sk_buff skb, struct x25_neigh nb,	943	int x25_rx_call_request(struct sk_buff skb, struct x25_neigh nb,
@@ -871,16 +959,26 @@ int x25_rx_call_request(struct sk_buff skb, struct x25_neigh nb,
871	/*	959	/*
872	* Extract the X.25 addresses and convert them to ASCII strings,	960	* Extract the X.25 addresses and convert them to ASCII strings,
873	* and remove them.	961	* and remove them.
		962	*
		963	* Address block is mandatory in call request packets
874	*/	964	*/
875	addr_len = x25_addr_ntoa(skb->data, &source_addr, &dest_addr);	965	addr_len = x25_parse_address_block(skb, &source_addr, &dest_addr);
		966	if (addr_len <= 0)
		967	goto out_clear_request;
876	skb_pull(skb, addr_len);	968	skb_pull(skb, addr_len);
877		969
878	/*	970	/*
879	* Get the length of the facilities, skip past them for the moment	971	* Get the length of the facilities, skip past them for the moment
880	* get the call user data because this is needed to determine	972	* get the call user data because this is needed to determine
881	* the correct listener	973	* the correct listener
		974	*
		975	* Facilities length is mandatory in call request packets
882	*/	976	*/
		977	if (skb->len < 1)
		978	goto out_clear_request;
883	len = skb->data[0] + 1;	979	len = skb->data[0] + 1;
		980	if (skb->len < len)
		981	goto out_clear_request;
884	skb_pull(skb,len);	982	skb_pull(skb,len);
885		983
886	/*	984	/*
@@ -1002,6 +1100,7 @@ static int x25_sendmsg(struct kiocb iocb, struct socket sock,
1002	size_t size;	1100	size_t size;
1003	int qbit = 0, rc = -EINVAL;	1101	int qbit = 0, rc = -EINVAL;
1004		1102
		1103	lock_kernel();
1005	if (msg->msg_flags & ~(MSG_DONTWAIT\|MSG_OOB\|MSG_EOR\|MSG_CMSG_COMPAT))	1104	if (msg->msg_flags & ~(MSG_DONTWAIT\|MSG_OOB\|MSG_EOR\|MSG_CMSG_COMPAT))
1006	goto out;	1105	goto out;
1007		1106
@@ -1166,6 +1265,7 @@ static int x25_sendmsg(struct kiocb iocb, struct socket sock,
1166	release_sock(sk);	1265	release_sock(sk);
1167	rc = len;	1266	rc = len;
1168	out:	1267	out:
		1268	unlock_kernel();
1169	return rc;	1269	return rc;
1170	out_kfree_skb:	1270	out_kfree_skb:
1171	kfree_skb(skb);	1271	kfree_skb(skb);
@@ -1186,6 +1286,7 @@ static int x25_recvmsg(struct kiocb iocb, struct socket sock,
1186	unsigned char *asmptr;	1286	unsigned char *asmptr;
1187	int rc = -ENOTCONN;	1287	int rc = -ENOTCONN;
1188		1288
		1289	lock_kernel();
1189	/*	1290	/*
1190	* This works for seqpacket too. The receiver has ordered the queue for	1291	* This works for seqpacket too. The receiver has ordered the queue for
1191	* us! We do one quick check first though	1292	* us! We do one quick check first though
@@ -1259,6 +1360,7 @@ static int x25_recvmsg(struct kiocb iocb, struct socket sock,
1259	out_free_dgram:	1360	out_free_dgram:
1260	skb_free_datagram(sk, skb);	1361	skb_free_datagram(sk, skb);
1261	out:	1362	out:
		1363	unlock_kernel();
1262	return rc;	1364	return rc;
1263	}	1365	}
1264		1366
@@ -1270,6 +1372,7 @@ static int x25_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
1270	void __user argp = (void __user )arg;	1372	void __user argp = (void __user )arg;
1271	int rc;	1373	int rc;
1272		1374
		1375	lock_kernel();
1273	switch (cmd) {	1376	switch (cmd) {
1274	case TIOCOUTQ: {	1377	case TIOCOUTQ: {
1275	int amount = sk->sk_sndbuf - sk_wmem_alloc_get(sk);	1378	int amount = sk->sk_sndbuf - sk_wmem_alloc_get(sk);
@@ -1359,11 +1462,22 @@ static int x25_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
1359	if (facilities.winsize_in < 1 \|\|	1462	if (facilities.winsize_in < 1 \|\|
1360	facilities.winsize_in > 127)	1463	facilities.winsize_in > 127)
1361	break;	1464	break;
1362	if (facilities.throughput < 0x03 \|\|	1465	if (facilities.throughput) {
1363	facilities.throughput > 0xDD)	1466	int out = facilities.throughput & 0xf0;
1364	break;	1467	int in = facilities.throughput & 0x0f;
		1468	if (!out)
		1469	facilities.throughput \|=
		1470	X25_DEFAULT_THROUGHPUT << 4;
		1471	else if (out < 0x30 \|\| out > 0xD0)
		1472	break;
		1473	if (!in)
		1474	facilities.throughput \|=
		1475	X25_DEFAULT_THROUGHPUT;
		1476	else if (in < 0x03 \|\| in > 0x0D)
		1477	break;
		1478	}
1365	if (facilities.reverse &&	1479	if (facilities.reverse &&
1366	(facilities.reverse \| 0x81)!= 0x81)	1480	(facilities.reverse & 0x81) != 0x81)
1367	break;	1481	break;
1368	x25->facilities = facilities;	1482	x25->facilities = facilities;
1369	rc = 0;	1483	rc = 0;
@@ -1430,6 +1544,17 @@ static int x25_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
1430	break;	1544	break;
1431	}	1545	}
1432		1546
		1547	case SIOCX25SCAUSEDIAG: {
		1548	struct x25_causediag causediag;
		1549	rc = -EFAULT;
		1550	if (copy_from_user(&causediag, argp, sizeof(causediag)))
		1551	break;
		1552	x25->causediag = causediag;
		1553	rc = 0;
		1554	break;
		1555
		1556	}
		1557
1433	case SIOCX25SCUDMATCHLEN: {	1558	case SIOCX25SCUDMATCHLEN: {
1434	struct x25_subaddr sub_addr;	1559	struct x25_subaddr sub_addr;
1435	rc = -EINVAL;	1560	rc = -EINVAL;
@@ -1472,11 +1597,12 @@ static int x25_ioctl(struct socket *sock, unsigned int cmd, unsigned long arg)
1472	rc = -ENOIOCTLCMD;	1597	rc = -ENOIOCTLCMD;
1473	break;	1598	break;
1474	}	1599	}
		1600	unlock_kernel();
1475		1601
1476	return rc;	1602	return rc;
1477	}	1603	}
1478		1604
1479	static struct net_proto_family x25_family_ops = {	1605	static const struct net_proto_family x25_family_ops = {
1480	.family = AF_X25,	1606	.family = AF_X25,
1481	.create = x25_create,	1607	.create = x25_create,
1482	.owner = THIS_MODULE,	1608	.owner = THIS_MODULE,
@@ -1542,15 +1668,19 @@ static int compat_x25_ioctl(struct socket *sock, unsigned int cmd,
1542	break;	1668	break;
1543	case SIOCGSTAMP:	1669	case SIOCGSTAMP:
1544	rc = -EINVAL;	1670	rc = -EINVAL;
		1671	lock_kernel();
1545	if (sk)	1672	if (sk)
1546	rc = compat_sock_get_timestamp(sk,	1673	rc = compat_sock_get_timestamp(sk,
1547	(struct timeval __user*)argp);	1674	(struct timeval __user*)argp);
		1675	unlock_kernel();
1548	break;	1676	break;
1549	case SIOCGSTAMPNS:	1677	case SIOCGSTAMPNS:
1550	rc = -EINVAL;	1678	rc = -EINVAL;
		1679	lock_kernel();
1551	if (sk)	1680	if (sk)
1552	rc = compat_sock_get_timestampns(sk,	1681	rc = compat_sock_get_timestampns(sk,
1553	(struct timespec __user*)argp);	1682	(struct timespec __user*)argp);
		1683	unlock_kernel();
1554	break;	1684	break;
1555	case SIOCGIFADDR:	1685	case SIOCGIFADDR:
1556	case SIOCSIFADDR:	1686	case SIOCSIFADDR:
@@ -1569,16 +1699,22 @@ static int compat_x25_ioctl(struct socket *sock, unsigned int cmd,
1569	rc = -EPERM;	1699	rc = -EPERM;
1570	if (!capable(CAP_NET_ADMIN))	1700	if (!capable(CAP_NET_ADMIN))
1571	break;	1701	break;
		1702	lock_kernel();
1572	rc = x25_route_ioctl(cmd, argp);	1703	rc = x25_route_ioctl(cmd, argp);
		1704	unlock_kernel();
1573	break;	1705	break;
1574	case SIOCX25GSUBSCRIP:	1706	case SIOCX25GSUBSCRIP:
		1707	lock_kernel();
1575	rc = compat_x25_subscr_ioctl(cmd, argp);	1708	rc = compat_x25_subscr_ioctl(cmd, argp);
		1709	unlock_kernel();
1576	break;	1710	break;
1577	case SIOCX25SSUBSCRIP:	1711	case SIOCX25SSUBSCRIP:
1578	rc = -EPERM;	1712	rc = -EPERM;
1579	if (!capable(CAP_NET_ADMIN))	1713	if (!capable(CAP_NET_ADMIN))
1580	break;	1714	break;
		1715	lock_kernel();
1581	rc = compat_x25_subscr_ioctl(cmd, argp);	1716	rc = compat_x25_subscr_ioctl(cmd, argp);
		1717	unlock_kernel();
1582	break;	1718	break;
1583	case SIOCX25GFACILITIES:	1719	case SIOCX25GFACILITIES:
1584	case SIOCX25SFACILITIES:	1720	case SIOCX25SFACILITIES:
@@ -1587,6 +1723,7 @@ static int compat_x25_ioctl(struct socket *sock, unsigned int cmd,
1587	case SIOCX25GCALLUSERDATA:	1723	case SIOCX25GCALLUSERDATA:
1588	case SIOCX25SCALLUSERDATA:	1724	case SIOCX25SCALLUSERDATA:
1589	case SIOCX25GCAUSEDIAG:	1725	case SIOCX25GCAUSEDIAG:
		1726	case SIOCX25SCAUSEDIAG:
1590	case SIOCX25SCUDMATCHLEN:	1727	case SIOCX25SCUDMATCHLEN:
1591	case SIOCX25CALLACCPTAPPRV:	1728	case SIOCX25CALLACCPTAPPRV:
1592	case SIOCX25SENDCALLACCPT:	1729	case SIOCX25SENDCALLACCPT:
@@ -1600,7 +1737,7 @@ static int compat_x25_ioctl(struct socket *sock, unsigned int cmd,
1600	}	1737	}
1601	#endif	1738	#endif
1602		1739
1603	static const struct proto_ops SOCKOPS_WRAPPED(x25_proto_ops) = {	1740	static const struct proto_ops x25_proto_ops = {
1604	.family = AF_X25,	1741	.family = AF_X25,
1605	.owner = THIS_MODULE,	1742	.owner = THIS_MODULE,
1606	.release = x25_release,	1743	.release = x25_release,
@@ -1609,7 +1746,7 @@ static const struct proto_ops SOCKOPS_WRAPPED(x25_proto_ops) = {
1609	.socketpair = sock_no_socketpair,	1746	.socketpair = sock_no_socketpair,
1610	.accept = x25_accept,	1747	.accept = x25_accept,
1611	.getname = x25_getname,	1748	.getname = x25_getname,
1612	.poll = datagram_poll,	1749	.poll = x25_datagram_poll,
1613	.ioctl = x25_ioctl,	1750	.ioctl = x25_ioctl,
1614	#ifdef CONFIG_COMPAT	1751	#ifdef CONFIG_COMPAT
1615	.compat_ioctl = compat_x25_ioctl,	1752	.compat_ioctl = compat_x25_ioctl,
@@ -1624,8 +1761,6 @@ static const struct proto_ops SOCKOPS_WRAPPED(x25_proto_ops) = {
1624	.sendpage = sock_no_sendpage,	1761	.sendpage = sock_no_sendpage,
1625	};	1762	};
1626		1763
1627	SOCKOPS_WRAP(x25_proto, AF_X25);
1628
1629	static struct packet_type x25_packet_type __read_mostly = {	1764	static struct packet_type x25_packet_type __read_mostly = {
1630	.type = cpu_to_be16(ETH_P_X25),	1765	.type = cpu_to_be16(ETH_P_X25),
1631	.func = x25_lapb_receive_frame,	1766	.func = x25_lapb_receive_frame,
@@ -1659,20 +1794,31 @@ static int __init x25_init(void)
1659	if (rc != 0)	1794	if (rc != 0)
1660	goto out;	1795	goto out;
1661		1796
1662	sock_register(&x25_family_ops);	1797	rc = sock_register(&x25_family_ops);
		1798	if (rc != 0)
		1799	goto out_proto;
1663		1800
1664	dev_add_pack(&x25_packet_type);	1801	dev_add_pack(&x25_packet_type);
1665		1802
1666	register_netdevice_notifier(&x25_dev_notifier);	1803	rc = register_netdevice_notifier(&x25_dev_notifier);
		1804	if (rc != 0)
		1805	goto out_sock;
1667		1806
1668	printk(KERN_INFO "X.25 for Linux Version 0.2\n");	1807	printk(KERN_INFO "X.25 for Linux Version 0.2\n");
1669		1808
1670	#ifdef CONFIG_SYSCTL
1671	x25_register_sysctl();	1809	x25_register_sysctl();
1672	#endif	1810	rc = x25_proc_init();
1673	x25_proc_init();	1811	if (rc != 0)
		1812	goto out_dev;
1674	out:	1813	out:
1675	return rc;	1814	return rc;
		1815	out_dev:
		1816	unregister_netdevice_notifier(&x25_dev_notifier);
		1817	out_sock:
		1818	sock_unregister(AF_X25);
		1819	out_proto:
		1820	proto_unregister(&x25_proto);
		1821	goto out;
1676	}	1822	}
1677	module_init(x25_init);	1823	module_init(x25_init);
1678		1824
@@ -1682,9 +1828,7 @@ static void __exit x25_exit(void)
1682	x25_link_free();	1828	x25_link_free();
1683	x25_route_free();	1829	x25_route_free();
1684		1830
1685	#ifdef CONFIG_SYSCTL
1686	x25_unregister_sysctl();	1831	x25_unregister_sysctl();
1687	#endif
1688		1832
1689	unregister_netdevice_notifier(&x25_dev_notifier);	1833	unregister_netdevice_notifier(&x25_dev_notifier);
1690		1834


diff --git a/net/x25/sysctl_net_x25.c b/net/x25/sysctl_net_x25.c index a5d3416522de..d2efd29f434e 100644 --- a/net/x25/sysctl_net_x25.c +++ b/net/x25/sysctl_net_x25.c
@@ -19,62 +19,51 @@ static struct ctl_table_header *x25_table_header;
19		19
20	static struct ctl_table x25_table[] = {	20	static struct ctl_table x25_table[] = {
21	{	21	{
22	.ctl_name = NET_X25_RESTART_REQUEST_TIMEOUT,
23	.procname = "restart_request_timeout",	22	.procname = "restart_request_timeout",
24	.data = &sysctl_x25_restart_request_timeout,	23	.data = &sysctl_x25_restart_request_timeout,
25	.maxlen = sizeof(int),	24	.maxlen = sizeof(int),
26	.mode = 0644,	25	.mode = 0644,
27	.proc_handler = proc_dointvec_minmax,	26	.proc_handler = proc_dointvec_minmax,
28	.strategy = sysctl_intvec,
29	.extra1 = &min_timer,	27	.extra1 = &min_timer,
30	.extra2 = &max_timer,	28	.extra2 = &max_timer,
31	},	29	},
32	{	30	{
33	.ctl_name = NET_X25_CALL_REQUEST_TIMEOUT,
34	.procname = "call_request_timeout",	31	.procname = "call_request_timeout",
35	.data = &sysctl_x25_call_request_timeout,	32	.data = &sysctl_x25_call_request_timeout,
36	.maxlen = sizeof(int),	33	.maxlen = sizeof(int),
37	.mode = 0644,	34	.mode = 0644,
38	.proc_handler = proc_dointvec_minmax,	35	.proc_handler = proc_dointvec_minmax,
39	.strategy = sysctl_intvec,
40	.extra1 = &min_timer,	36	.extra1 = &min_timer,
41	.extra2 = &max_timer,	37	.extra2 = &max_timer,
42	},	38	},
43	{	39	{
44	.ctl_name = NET_X25_RESET_REQUEST_TIMEOUT,
45	.procname = "reset_request_timeout",	40	.procname = "reset_request_timeout",
46	.data = &sysctl_x25_reset_request_timeout,	41	.data = &sysctl_x25_reset_request_timeout,
47	.maxlen = sizeof(int),	42	.maxlen = sizeof(int),
48	.mode = 0644,	43	.mode = 0644,
49	.proc_handler = proc_dointvec_minmax,	44	.proc_handler = proc_dointvec_minmax,
50	.strategy = sysctl_intvec,
51	.extra1 = &min_timer,	45	.extra1 = &min_timer,
52	.extra2 = &max_timer,	46	.extra2 = &max_timer,
53	},	47	},
54	{	48	{
55	.ctl_name = NET_X25_CLEAR_REQUEST_TIMEOUT,
56	.procname = "clear_request_timeout",	49	.procname = "clear_request_timeout",
57	.data = &sysctl_x25_clear_request_timeout,	50	.data = &sysctl_x25_clear_request_timeout,
58	.maxlen = sizeof(int),	51	.maxlen = sizeof(int),
59	.mode = 0644,	52	.mode = 0644,
60	.proc_handler = proc_dointvec_minmax,	53	.proc_handler = proc_dointvec_minmax,
61	.strategy = sysctl_intvec,
62	.extra1 = &min_timer,	54	.extra1 = &min_timer,
63	.extra2 = &max_timer,	55	.extra2 = &max_timer,
64	},	56	},
65	{	57	{
66	.ctl_name = NET_X25_ACK_HOLD_BACK_TIMEOUT,
67	.procname = "acknowledgement_hold_back_timeout",	58	.procname = "acknowledgement_hold_back_timeout",
68	.data = &sysctl_x25_ack_holdback_timeout,	59	.data = &sysctl_x25_ack_holdback_timeout,
69	.maxlen = sizeof(int),	60	.maxlen = sizeof(int),
70	.mode = 0644,	61	.mode = 0644,
71	.proc_handler = proc_dointvec_minmax,	62	.proc_handler = proc_dointvec_minmax,
72	.strategy = sysctl_intvec,
73	.extra1 = &min_timer,	63	.extra1 = &min_timer,
74	.extra2 = &max_timer,	64	.extra2 = &max_timer,
75	},	65	},
76	{	66	{
77	.ctl_name = NET_X25_FORWARD,
78	.procname = "x25_forward",	67	.procname = "x25_forward",
79	.data = &sysctl_x25_forward,	68	.data = &sysctl_x25_forward,
80	.maxlen = sizeof(int),	69	.maxlen = sizeof(int),
@@ -85,8 +74,8 @@ static struct ctl_table x25_table[] = {
85	};	74	};
86		75
87	static struct ctl_path x25_path[] = {	76	static struct ctl_path x25_path[] = {
88	{ .procname = "net", .ctl_name = CTL_NET, },	77	{ .procname = "net", },
89	{ .procname = "x25", .ctl_name = NET_X25, },	78	{ .procname = "x25", },
90	{ }	79	{ }
91	};	80	};
92		81


diff --git a/net/x25/x25_dev.c b/net/x25/x25_dev.c index 3e1efe534645..b9ef682230a0 100644 --- a/net/x25/x25_dev.c +++ b/net/x25/x25_dev.c
@@ -20,6 +20,7 @@
20	#include <linux/kernel.h>	20	#include <linux/kernel.h>
21	#include <linux/netdevice.h>	21	#include <linux/netdevice.h>
22	#include <linux/skbuff.h>	22	#include <linux/skbuff.h>
		23	#include <linux/slab.h>
23	#include <net/sock.h>	24	#include <net/sock.h>
24	#include <linux/if_arp.h>	25	#include <linux/if_arp.h>
25	#include <net/x25.h>	26	#include <net/x25.h>
@@ -53,7 +54,7 @@ static int x25_receive_data(struct sk_buff skb, struct x25_neigh nb)
53	if (!sock_owned_by_user(sk)) {	54	if (!sock_owned_by_user(sk)) {
54	queued = x25_process_rx_frame(sk, skb);	55	queued = x25_process_rx_frame(sk, skb);
55	} else {	56	} else {
56	sk_add_backlog(sk, skb);	57	queued = !sk_add_backlog(sk, skb);
57	}	58	}
58	bh_unlock_sock(sk);	59	bh_unlock_sock(sk);
59	sock_put(sk);	60	sock_put(sk);


diff --git a/net/x25/x25_facilities.c b/net/x25/x25_facilities.c index a21f6646eb3a..771bab00754b 100644 --- a/net/x25/x25_facilities.c +++ b/net/x25/x25_facilities.c
@@ -35,7 +35,7 @@ int x25_parse_facilities(struct sk_buff skb, struct x25_facilities facilities,
35	struct x25_dte_facilities dte_facs, unsigned long vc_fac_mask)	35	struct x25_dte_facilities dte_facs, unsigned long vc_fac_mask)
36	{	36	{
37	unsigned char *p = skb->data;	37	unsigned char *p = skb->data;
38	unsigned int len = *p++;	38	unsigned int len;
39		39
40	*vc_fac_mask = 0;	40	*vc_fac_mask = 0;
41		41
@@ -50,6 +50,14 @@ int x25_parse_facilities(struct sk_buff skb, struct x25_facilities facilities,
50	memset(dte_facs->called_ae, '\0', sizeof(dte_facs->called_ae));	50	memset(dte_facs->called_ae, '\0', sizeof(dte_facs->called_ae));
51	memset(dte_facs->calling_ae, '\0', sizeof(dte_facs->calling_ae));	51	memset(dte_facs->calling_ae, '\0', sizeof(dte_facs->calling_ae));
52		52
		53	if (skb->len < 1)
		54	return 0;
		55
		56	len = *p++;
		57
		58	if (len >= skb->len)
		59	return -1;
		60
53	while (len > 0) {	61	while (len > 0) {
54	switch (*p & X25_FAC_CLASS_MASK) {	62	switch (*p & X25_FAC_CLASS_MASK) {
55	case X25_FAC_CLASS_A:	63	case X25_FAC_CLASS_A:
@@ -247,6 +255,8 @@ int x25_negotiate_facilities(struct sk_buff skb, struct sock sk,
247	memcpy(new, ours, sizeof(*new));	255	memcpy(new, ours, sizeof(*new));
248		256
249	len = x25_parse_facilities(skb, &theirs, dte, &x25->vc_facil_mask);	257	len = x25_parse_facilities(skb, &theirs, dte, &x25->vc_facil_mask);
		258	if (len < 0)
		259	return len;
250		260
251	/*	261	/*
252	* They want reverse charging, we won't accept it.	262	* They want reverse charging, we won't accept it.
@@ -259,9 +269,18 @@ int x25_negotiate_facilities(struct sk_buff skb, struct sock sk,
259	new->reverse = theirs.reverse;	269	new->reverse = theirs.reverse;
260		270
261	if (theirs.throughput) {	271	if (theirs.throughput) {
262	if (theirs.throughput < ours->throughput) {	272	int theirs_in = theirs.throughput & 0x0f;
263	SOCK_DEBUG(sk, "X.25: throughput negotiated down\n");	273	int theirs_out = theirs.throughput & 0xf0;
264	new->throughput = theirs.throughput;	274	int ours_in = ours->throughput & 0x0f;
		275	int ours_out = ours->throughput & 0xf0;
		276	if (!ours_in \|\| theirs_in < ours_in) {
		277	SOCK_DEBUG(sk, "X.25: inbound throughput negotiated\n");
		278	new->throughput = (new->throughput & 0xf0) \| theirs_in;
		279	}
		280	if (!ours_out \|\| theirs_out < ours_out) {
		281	SOCK_DEBUG(sk,
		282	"X.25: outbound throughput negotiated\n");
		283	new->throughput = (new->throughput & 0x0f) \| theirs_out;
265	}	284	}
266	}	285	}
267		286


diff --git a/net/x25/x25_forward.c b/net/x25/x25_forward.c index 056a55f3a871..25a810793968 100644 --- a/net/x25/x25_forward.c +++ b/net/x25/x25_forward.c
@@ -10,6 +10,7 @@
10	*/	10	*/
11	#include <linux/if_arp.h>	11	#include <linux/if_arp.h>
12	#include <linux/init.h>	12	#include <linux/init.h>
		13	#include <linux/slab.h>
13	#include <net/x25.h>	14	#include <net/x25.h>
14		15
15	LIST_HEAD(x25_forward_list);	16	LIST_HEAD(x25_forward_list);


diff --git a/net/x25/x25_in.c b/net/x25/x25_in.c index 7d7c3abf38b5..372ac226e648 100644 --- a/net/x25/x25_in.c +++ b/net/x25/x25_in.c
@@ -23,6 +23,7 @@
23	* i-frames.	23	* i-frames.
24	*/	24	*/
25		25
		26	#include <linux/slab.h>
26	#include <linux/errno.h>	27	#include <linux/errno.h>
27	#include <linux/kernel.h>	28	#include <linux/kernel.h>
28	#include <linux/string.h>	29	#include <linux/string.h>
@@ -89,6 +90,7 @@ static int x25_queue_rx_frame(struct sock sk, struct sk_buff skb, int more)
89	static int x25_state1_machine(struct sock sk, struct sk_buff skb, int frametype)	90	static int x25_state1_machine(struct sock sk, struct sk_buff skb, int frametype)
90	{	91	{
91	struct x25_address source_addr, dest_addr;	92	struct x25_address source_addr, dest_addr;
		93	int len;
92		94
93	switch (frametype) {	95	switch (frametype) {
94	case X25_CALL_ACCEPTED: {	96	case X25_CALL_ACCEPTED: {
@@ -106,15 +108,21 @@ static int x25_state1_machine(struct sock sk, struct sk_buff skb, int frametyp
106	* Parse the data in the frame.	108	* Parse the data in the frame.
107	*/	109	*/
108	skb_pull(skb, X25_STD_MIN_LEN);	110	skb_pull(skb, X25_STD_MIN_LEN);
109	skb_pull(skb, x25_addr_ntoa(skb->data, &source_addr, &dest_addr));	111
110	skb_pull(skb,	112	len = x25_parse_address_block(skb, &source_addr,
111	x25_parse_facilities(skb, &x25->facilities,	113	&dest_addr);
		114	if (len > 0)
		115	skb_pull(skb, len);
		116
		117	len = x25_parse_facilities(skb, &x25->facilities,
112	&x25->dte_facilities,	118	&x25->dte_facilities,
113	&x25->vc_facil_mask));	119	&x25->vc_facil_mask);
		120	if (len > 0)
		121	skb_pull(skb, len);
114	/*	122	/*
115	* Copy any Call User Data.	123	* Copy any Call User Data.
116	*/	124	*/
117	if (skb->len >= 0) {	125	if (skb->len > 0) {
118	skb_copy_from_linear_data(skb,	126	skb_copy_from_linear_data(skb,
119	x25->calluserdata.cuddata,	127	x25->calluserdata.cuddata,
120	skb->len);	128	skb->len);


diff --git a/net/x25/x25_link.c b/net/x25/x25_link.c index e4e1b6e49538..73e7b954ad28 100644 --- a/net/x25/x25_link.c +++ b/net/x25/x25_link.c
@@ -24,6 +24,7 @@
24	#include <linux/kernel.h>	24	#include <linux/kernel.h>
25	#include <linux/jiffies.h>	25	#include <linux/jiffies.h>
26	#include <linux/timer.h>	26	#include <linux/timer.h>
		27	#include <linux/slab.h>
27	#include <linux/netdevice.h>	28	#include <linux/netdevice.h>
28	#include <linux/skbuff.h>	29	#include <linux/skbuff.h>
29	#include <asm/uaccess.h>	30	#include <asm/uaccess.h>


diff --git a/net/x25/x25_out.c b/net/x25/x25_out.c index 2b96b52114d6..52351a26b6fc 100644 --- a/net/x25/x25_out.c +++ b/net/x25/x25_out.c
@@ -22,6 +22,7 @@
22	* needed cleaned seq-number fields.	22	* needed cleaned seq-number fields.
23	*/	23	*/
24		24
		25	#include <linux/slab.h>
25	#include <linux/socket.h>	26	#include <linux/socket.h>
26	#include <linux/kernel.h>	27	#include <linux/kernel.h>
27	#include <linux/string.h>	28	#include <linux/string.h>


diff --git a/net/x25/x25_proc.c b/net/x25/x25_proc.c index 0a04e62e0e18..7ff373792324 100644 --- a/net/x25/x25_proc.c +++ b/net/x25/x25_proc.c
@@ -25,49 +25,17 @@
25	#include <net/x25.h>	25	#include <net/x25.h>
26		26
27	#ifdef CONFIG_PROC_FS	27	#ifdef CONFIG_PROC_FS
28	static __inline__ struct x25_route *x25_get_route_idx(loff_t pos)
29	{
30	struct list_head *route_entry;
31	struct x25_route *rt = NULL;
32
33	list_for_each(route_entry, &x25_route_list) {
34	rt = list_entry(route_entry, struct x25_route, node);
35	if (!pos--)
36	goto found;
37	}
38	rt = NULL;
39	found:
40	return rt;
41	}
42		28
43	static void x25_seq_route_start(struct seq_file seq, loff_t *pos)	29	static void x25_seq_route_start(struct seq_file seq, loff_t *pos)
44	__acquires(x25_route_list_lock)	30	__acquires(x25_route_list_lock)
45	{	31	{
46	loff_t l = *pos;
47
48	read_lock_bh(&x25_route_list_lock);	32	read_lock_bh(&x25_route_list_lock);
49	return l ? x25_get_route_idx(--l) : SEQ_START_TOKEN;	33	return seq_list_start_head(&x25_route_list, *pos);
50	}	34	}
51		35
52	static void x25_seq_route_next(struct seq_file seq, void v, loff_t pos)	36	static void x25_seq_route_next(struct seq_file seq, void v, loff_t pos)
53	{	37	{
54	struct x25_route *rt;	38	return seq_list_next(v, &x25_route_list, pos);
55
56	++*pos;
57	if (v == SEQ_START_TOKEN) {
58	rt = NULL;
59	if (!list_empty(&x25_route_list))
60	rt = list_entry(x25_route_list.next,
61	struct x25_route, node);
62	goto out;
63	}
64	rt = v;
65	if (rt->node.next != &x25_route_list)
66	rt = list_entry(rt->node.next, struct x25_route, node);
67	else
68	rt = NULL;
69	out:
70	return rt;
71	}	39	}
72		40
73	static void x25_seq_route_stop(struct seq_file seq, void v)	41	static void x25_seq_route_stop(struct seq_file seq, void v)
@@ -78,9 +46,9 @@ static void x25_seq_route_stop(struct seq_file seq, void v)
78		46
79	static int x25_seq_route_show(struct seq_file seq, void v)	47	static int x25_seq_route_show(struct seq_file seq, void v)
80	{	48	{
81	struct x25_route *rt;	49	struct x25_route *rt = list_entry(v, struct x25_route, node);
82		50
83	if (v == SEQ_START_TOKEN) {	51	if (v == &x25_route_list) {
84	seq_puts(seq, "Address Digits Device\n");	52	seq_puts(seq, "Address Digits Device\n");
85	goto out;	53	goto out;
86	}	54	}
@@ -93,40 +61,16 @@ out:
93	return 0;	61	return 0;
94	}	62	}
95		63
96	static __inline__ struct sock *x25_get_socket_idx(loff_t pos)
97	{
98	struct sock *s;
99	struct hlist_node *node;
100
101	sk_for_each(s, node, &x25_list)
102	if (!pos--)
103	goto found;
104	s = NULL;
105	found:
106	return s;
107	}
108
109	static void x25_seq_socket_start(struct seq_file seq, loff_t *pos)	64	static void x25_seq_socket_start(struct seq_file seq, loff_t *pos)
110	__acquires(x25_list_lock)	65	__acquires(x25_list_lock)
111	{	66	{
112	loff_t l = *pos;
113
114	read_lock_bh(&x25_list_lock);	67	read_lock_bh(&x25_list_lock);
115	return l ? x25_get_socket_idx(--l) : SEQ_START_TOKEN;	68	return seq_hlist_start_head(&x25_list, *pos);
116	}	69	}
117		70
118	static void x25_seq_socket_next(struct seq_file seq, void v, loff_t pos)	71	static void x25_seq_socket_next(struct seq_file seq, void v, loff_t pos)
119	{	72	{
120	struct sock *s;	73	return seq_hlist_next(v, &x25_list, pos);
121
122	++*pos;
123	if (v == SEQ_START_TOKEN) {
124	s = sk_head(&x25_list);
125	goto out;
126	}
127	s = sk_next(v);
128	out:
129	return s;
130	}	74	}
131		75
132	static void x25_seq_socket_stop(struct seq_file seq, void v)	76	static void x25_seq_socket_stop(struct seq_file seq, void v)
@@ -148,7 +92,7 @@ static int x25_seq_socket_show(struct seq_file seq, void v)
148	goto out;	92	goto out;
149	}	93	}
150		94
151	s = v;	95	s = sk_entry(v);
152	x25 = x25_sk(s);	96	x25 = x25_sk(s);
153		97
154	if (!x25->neighbour \|\| (dev = x25->neighbour->dev) == NULL)	98	if (!x25->neighbour \|\| (dev = x25->neighbour->dev) == NULL)
@@ -170,51 +114,16 @@ out:
170	return 0;	114	return 0;
171	}	115	}
172		116
173	static __inline__ struct x25_forward *x25_get_forward_idx(loff_t pos)
174	{
175	struct x25_forward *f;
176	struct list_head *entry;
177
178	list_for_each(entry, &x25_forward_list) {
179	f = list_entry(entry, struct x25_forward, node);
180	if (!pos--)
181	goto found;
182	}
183
184	f = NULL;
185	found:
186	return f;
187	}
188
189	static void x25_seq_forward_start(struct seq_file seq, loff_t *pos)	117	static void x25_seq_forward_start(struct seq_file seq, loff_t *pos)
190	__acquires(x25_forward_list_lock)	118	__acquires(x25_forward_list_lock)
191	{	119	{
192	loff_t l = *pos;
193
194	read_lock_bh(&x25_forward_list_lock);	120	read_lock_bh(&x25_forward_list_lock);
195	return l ? x25_get_forward_idx(--l) : SEQ_START_TOKEN;	121	return seq_list_start_head(&x25_forward_list, *pos);
196	}	122	}
197		123
198	static void x25_seq_forward_next(struct seq_file seq, void v, loff_t pos)	124	static void x25_seq_forward_next(struct seq_file seq, void v, loff_t pos)
199	{	125	{
200	struct x25_forward *f;	126	return seq_list_next(v, &x25_forward_list, pos);
201
202	++*pos;
203	if (v == SEQ_START_TOKEN) {
204	f = NULL;
205	if (!list_empty(&x25_forward_list))
206	f = list_entry(x25_forward_list.next,
207	struct x25_forward, node);
208	goto out;
209	}
210	f = v;
211	if (f->node.next != &x25_forward_list)
212	f = list_entry(f->node.next, struct x25_forward, node);
213	else
214	f = NULL;
215	out:
216	return f;
217
218	}	127	}
219		128
220	static void x25_seq_forward_stop(struct seq_file seq, void v)	129	static void x25_seq_forward_stop(struct seq_file seq, void v)
@@ -225,9 +134,9 @@ static void x25_seq_forward_stop(struct seq_file seq, void v)
225		134
226	static int x25_seq_forward_show(struct seq_file seq, void v)	135	static int x25_seq_forward_show(struct seq_file seq, void v)
227	{	136	{
228	struct x25_forward *f;	137	struct x25_forward *f = list_entry(v, struct x25_forward, node);
229		138
230	if (v == SEQ_START_TOKEN) {	139	if (v == &x25_forward_list) {
231	seq_printf(seq, "lci dev1 dev2\n");	140	seq_printf(seq, "lci dev1 dev2\n");
232	goto out;	141	goto out;
233	}	142	}
@@ -236,7 +145,6 @@ static int x25_seq_forward_show(struct seq_file seq, void v)
236		145
237	seq_printf(seq, "%d %-10s %-10s\n",	146	seq_printf(seq, "%d %-10s %-10s\n",
238	f->lci, f->dev1->name, f->dev2->name);	147	f->lci, f->dev1->name, f->dev2->name);
239
240	out:	148	out:
241	return 0;	149	return 0;
242	}	150	}


diff --git a/net/x25/x25_route.c b/net/x25/x25_route.c index 2c999ccf504a..97d77c532d8c 100644 --- a/net/x25/x25_route.c +++ b/net/x25/x25_route.c
@@ -19,6 +19,7 @@
19		19
20	#include <linux/if_arp.h>	20	#include <linux/if_arp.h>
21	#include <linux/init.h>	21	#include <linux/init.h>
		22	#include <linux/slab.h>
22	#include <net/x25.h>	23	#include <net/x25.h>
23		24
24	LIST_HEAD(x25_route_list);	25	LIST_HEAD(x25_route_list);
@@ -136,8 +137,10 @@ struct net_device x25_dev_get(char devname)
136	#if defined(CONFIG_LLC) \|\| defined(CONFIG_LLC_MODULE)	137	#if defined(CONFIG_LLC) \|\| defined(CONFIG_LLC_MODULE)
137	&& dev->type != ARPHRD_ETHER	138	&& dev->type != ARPHRD_ETHER
138	#endif	139	#endif
139	)))	140	))){
140	dev_put(dev);	141	dev_put(dev);
		142	dev = NULL;
		143	}
141		144
142	return dev;	145	return dev;
143	}	146	}
@@ -190,7 +193,7 @@ int x25_route_ioctl(unsigned int cmd, void __user *arg)
190	goto out;	193	goto out;
191		194
192	rc = -EINVAL;	195	rc = -EINVAL;
193	if (rt.sigdigits < 0 \|\| rt.sigdigits > 15)	196	if (rt.sigdigits > 15)
194	goto out;	197	goto out;
195		198
196	dev = x25_dev_get(rt.device);	199	dev = x25_dev_get(rt.device);


diff --git a/net/x25/x25_subr.c b/net/x25/x25_subr.c index 511a5986af3e..dc20cf12f39b 100644 --- a/net/x25/x25_subr.c +++ b/net/x25/x25_subr.c
@@ -23,6 +23,7 @@
23	* restriction on response.	23	* restriction on response.
24	*/	24	*/
25		25
		26	#include <linux/slab.h>
26	#include <linux/kernel.h>	27	#include <linux/kernel.h>
27	#include <linux/string.h>	28	#include <linux/string.h>
28	#include <linux/skbuff.h>	29	#include <linux/skbuff.h>
@@ -225,6 +226,12 @@ void x25_write_internal(struct sock *sk, int frametype)
225	break;	226	break;
226		227
227	case X25_CLEAR_REQUEST:	228	case X25_CLEAR_REQUEST:
		229	dptr = skb_put(skb, 3);
		230	*dptr++ = frametype;
		231	*dptr++ = x25->causediag.cause;
		232	*dptr++ = x25->causediag.diagnostic;
		233	break;
		234
228	case X25_RESET_REQUEST:	235	case X25_RESET_REQUEST:
229	dptr = skb_put(skb, 3);	236	dptr = skb_put(skb, 3);
230	*dptr++ = frametype;	237	*dptr++ = frametype;

/****************************************************************************** Copyright(c) 2003 - 2006 Intel Corporation. All rights reserved. 802.11 status code portion of this file from ethereal-0.10.6: Copyright 2000, Axis Communications AB Ethereal - Network traffic analyzer By Gerald Combs <gerald@ethereal.com> Copyright 1998 Gerald Combs This program is free software; you can redistribute it and/or modify it under the terms of version 2 of the GNU General Public License as published by the Free Software Foundation. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place - Suite 330, Boston, MA 02111-1307, USA. The full GNU General Public License is included in this distribution in the file called LICENSE. Contact Information: James P. Ketrenos <ipw2100-admin@linux.intel.com> Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497 ******************************************************************************/ #include "ipw2200.h" #include <linux/version.h> #define IPW2200_VERSION "git-1.1.1" #define DRV_DESCRIPTION "Intel(R) PRO/Wireless 2200/2915 Network Driver" #define DRV_COPYRIGHT "Copyright(c) 2003-2006 Intel Corporation" #define DRV_VERSION IPW2200_VERSION #define ETH_P_80211_STATS (ETH_P_80211_RAW + 1) MODULE_DESCRIPTION(DRV_DESCRIPTION); MODULE_VERSION(DRV_VERSION); MODULE_AUTHOR(DRV_COPYRIGHT); MODULE_LICENSE("GPL"); static int cmdlog = 0; static int debug = 0; static int channel = 0; static int mode = 0; static u32 ipw_debug_level; static int associate = 1; static int auto_create = 1; static int led = 0; static int disable = 0; static int bt_coexist = 0; static int hwcrypto = 0; static int roaming = 1; static const char ipw_modes[] = { 'a', 'b', 'g', '?' }; #ifdef CONFIG_IPW_QOS static int qos_enable = 0; static int qos_burst_enable = 0; static int qos_no_ack_mask = 0; static int burst_duration_CCK = 0; static int burst_duration_OFDM = 0; static struct ieee80211_qos_parameters def_qos_parameters_OFDM = { {QOS_TX0_CW_MIN_OFDM, QOS_TX1_CW_MIN_OFDM, QOS_TX2_CW_MIN_OFDM, QOS_TX3_CW_MIN_OFDM}, {QOS_TX0_CW_MAX_OFDM, QOS_TX1_CW_MAX_OFDM, QOS_TX2_CW_MAX_OFDM, QOS_TX3_CW_MAX_OFDM}, {QOS_TX0_AIFS, QOS_TX1_AIFS, QOS_TX2_AIFS, QOS_TX3_AIFS}, {QOS_TX0_ACM, QOS_TX1_ACM, QOS_TX2_ACM, QOS_TX3_ACM}, {QOS_TX0_TXOP_LIMIT_OFDM, QOS_TX1_TXOP_LIMIT_OFDM, QOS_TX2_TXOP_LIMIT_OFDM, QOS_TX3_TXOP_LIMIT_OFDM} }; static struct ieee80211_qos_parameters def_qos_parameters_CCK = { {QOS_TX0_CW_MIN_CCK, QOS_TX1_CW_MIN_CCK, QOS_TX2_CW_MIN_CCK, QOS_TX3_CW_MIN_CCK}, {QOS_TX0_CW_MAX_CCK, QOS_TX1_CW_MAX_CCK, QOS_TX2_CW_MAX_CCK, QOS_TX3_CW_MAX_CCK}, {QOS_TX0_AIFS, QOS_TX1_AIFS, QOS_TX2_AIFS, QOS_TX3_AIFS}, {QOS_TX0_ACM, QOS_TX1_ACM, QOS_TX2_ACM, QOS_TX3_ACM}, {QOS_TX0_TXOP_LIMIT_CCK, QOS_TX1_TXOP_LIMIT_CCK, QOS_TX2_TXOP_LIMIT_CCK, QOS_TX3_TXOP_LIMIT_CCK} }; static struct ieee80211_qos_parameters def_parameters_OFDM = { {DEF_TX0_CW_MIN_OFDM, DEF_TX1_CW_MIN_OFDM, DEF_TX2_CW_MIN_OFDM, DEF_TX3_CW_MIN_OFDM}, {DEF_TX0_CW_MAX_OFDM, DEF_TX1_CW_MAX_OFDM, DEF_TX2_CW_MAX_OFDM, DEF_TX3_CW_MAX_OFDM}, {DEF_TX0_AIFS, DEF_TX1_AIFS, DEF_TX2_AIFS, DEF_TX3_AIFS}, {DEF_TX0_ACM, DEF_TX1_ACM, DEF_TX2_ACM, DEF_TX3_ACM}, {DEF_TX0_TXOP_LIMIT_OFDM, DEF_TX1_TXOP_LIMIT_OFDM, DEF_TX2_TXOP_LIMIT_OFDM, DEF_TX3_TXOP_LIMIT_OFDM} }; static struct ieee80211_qos_parameters def_parameters_CCK = { {DEF_TX0_CW_MIN_CCK, DEF_TX1_CW_MIN_CCK, DEF_TX2_CW_MIN_CCK, DEF_TX3_CW_MIN_CCK}, {DEF_TX0_CW_MAX_CCK, DEF_TX1_CW_MAX_CCK, DEF_TX2_CW_MAX_CCK, DEF_TX3_CW_MAX_CCK}, {DEF_TX0_AIFS, DEF_TX1_AIFS, DEF_TX2_AIFS, DEF_TX3_AIFS}, {DEF_TX0_ACM, DEF_TX1_ACM, DEF_TX2_ACM, DEF_TX3_ACM}, {DEF_TX0_TXOP_LIMIT_CCK, DEF_TX1_TXOP_LIMIT_CCK, DEF_TX2_TXOP_LIMIT_CCK, DEF_TX3_TXOP_LIMIT_CCK} }; static u8 qos_oui[QOS_OUI_LEN] = { 0x00, 0x50, 0xF2 }; static int from_priority_to_tx_queue[] = { IPW_TX_QUEUE_1, IPW_TX_QUEUE_2, IPW_TX_QUEUE_2, IPW_TX_QUEUE_1, IPW_TX_QUEUE_3, IPW_TX_QUEUE_3, IPW_TX_QUEUE_4, IPW_TX_QUEUE_4 }; static u32 ipw_qos_get_burst_duration(struct ipw_priv *priv); static int ipw_send_qos_params_command(struct ipw_priv *priv, struct ieee80211_qos_parameters *qos_param); static int ipw_send_qos_info_command(struct ipw_priv *priv, struct ieee80211_qos_information_element *qos_param); #endif /* CONFIG_IPW_QOS */ static struct iw_statistics *ipw_get_wireless_stats(struct net_device *dev); static void ipw_remove_current_network(struct ipw_priv *priv); static void ipw_rx(struct ipw_priv *priv); static int ipw_queue_tx_reclaim(struct ipw_priv *priv, struct clx2_tx_queue *txq, int qindex); static int ipw_queue_reset(struct ipw_priv *priv); static int ipw_queue_tx_hcmd(struct ipw_priv *priv, int hcmd, void *buf, int len, int sync); static void ipw_tx_queue_free(struct ipw_priv *); static struct ipw_rx_queue *ipw_rx_queue_alloc(struct ipw_priv *); static void ipw_rx_queue_free(struct ipw_priv *, struct ipw_rx_queue *); static void ipw_rx_queue_replenish(void *); static int ipw_up(struct ipw_priv *); static void ipw_bg_up(void *); static void ipw_down(struct ipw_priv *); static void ipw_bg_down(void *); static int ipw_config(struct ipw_priv *); static int init_supported_rates(struct ipw_priv *priv, struct ipw_supported_rates *prates); static void ipw_set_hwcrypto_keys(struct ipw_priv *); static void ipw_send_wep_keys(struct ipw_priv *, int); static int snprint_line(char *buf, size_t count, const u8 * data, u32 len, u32 ofs) { int out, i, j, l; char c; out = snprintf(buf, count, "%08X", ofs); for (l = 0, i = 0; i < 2; i++) { out += snprintf(buf + out, count - out, " "); for (j = 0; j < 8 && l < len; j++, l++) out += snprintf(buf + out, count - out, "%02X ", data[(i * 8 + j)]); for (; j < 8; j++) out += snprintf(buf + out, count - out, " "); } out += snprintf(buf + out, count - out, " "); for (l = 0, i = 0; i < 2; i++) { out += snprintf(buf + out, count - out, " "); for (j = 0; j < 8 && l < len; j++, l++) { c = data[(i * 8 + j)]; if (!isascii(c) || !isprint(c)) c = '.'; out += snprintf(buf + out, count - out, "%c", c); } for (; j < 8; j++) out += snprintf(buf + out, count - out, " "); } return out; } static void printk_buf(int level, const u8 * data, u32 len) { char line[81]; u32 ofs = 0; if (!(ipw_debug_level & level)) return; while (len) { snprint_line(line, sizeof(line), &data[ofs], min(len, 16U), ofs); printk(KERN_DEBUG "%s\n", line); ofs += 16; len -= min(len, 16U); } } static int snprintk_buf(u8 * output, size_t size, const u8 * data, size_t len) { size_t out = size; u32 ofs = 0; int total = 0; while (size && len) { out = snprint_line(output, size, &data[ofs], min_t(size_t, len, 16U), ofs); ofs += 16; output += out; size -= out; len -= min_t(size_t, len, 16U); total += out; } return total; } /* alias for 32-bit indirect read (for SRAM/reg above 4K), with debug wrapper */ static u32 _ipw_read_reg32(struct ipw_priv *priv, u32 reg); #define ipw_read_reg32(a, b) _ipw_read_reg32(a, b) /* alias for 8-bit indirect read (for SRAM/reg above 4K), with debug wrapper */ static u8 _ipw_read_reg8(struct ipw_priv *ipw, u32 reg); #define ipw_read_reg8(a, b) _ipw_read_reg8(a, b) /* 8-bit indirect write (for SRAM/reg above 4K), with debug wrapper */ static void _ipw_write_reg8(struct ipw_priv *priv, u32 reg, u8 value); static inline void ipw_write_reg8(struct ipw_priv *a, u32 b, u8 c) { IPW_DEBUG_IO("%s %d: write_indirect8(0x%08X, 0x%08X)\n", __FILE__, __LINE__, (u32) (b), (u32) (c)); _ipw_write_reg8(a, b, c); } /* 16-bit indirect write (for SRAM/reg above 4K), with debug wrapper */ static void _ipw_write_reg16(struct ipw_priv *priv, u32 reg, u16 value); static inline void ipw_write_reg16(struct ipw_priv *a, u32 b, u16 c) { IPW_DEBUG_IO("%s %d: write_indirect16(0x%08X, 0x%08X)\n", __FILE__, __LINE__, (u32) (b), (u32) (c)); _ipw_write_reg16(a, b, c); } /* 32-bit indirect write (for SRAM/reg above 4K), with debug wrapper */ static void _ipw_write_reg32(struct ipw_priv *priv, u32 reg, u32 value); static inline void ipw_write_reg32(struct ipw_priv *a, u32 b, u32 c) { IPW_DEBUG_IO("%s %d: write_indirect32(0x%08X, 0x%08X)\n", __FILE__, __LINE__, (u32) (b), (u32) (c)); _ipw_write_reg32(a, b, c); } /* 8-bit direct write (low 4K) */ #define _ipw_write8(ipw, ofs, val) writeb((val), (ipw)->hw_base + (ofs)) /* 8-bit direct write (for low 4K of SRAM/regs), with debug wrapper */ #define ipw_write8(ipw, ofs, val) \ IPW_DEBUG_IO("%s %d: write_direct8(0x%08X, 0x%08X)\n", __FILE__, __LINE__, (u32)(ofs), (u32)(val)); \ _ipw_write8(ipw, ofs, val) /* 16-bit direct write (low 4K) */ #define _ipw_write16(ipw, ofs, val) writew((val), (ipw)->hw_base + (ofs)) /* 16-bit direct write (for low 4K of SRAM/regs), with debug wrapper */ #define ipw_write16(ipw, ofs, val) \ IPW_DEBUG_IO("%s %d: write_direct16(0x%08X, 0x%08X)\n", __FILE__, __LINE__, (u32)(ofs), (u32)(val)); \ _ipw_write16(ipw, ofs, val) /* 32-bit direct write (low 4K) */ #define _ipw_write32(ipw, ofs, val) writel((val), (ipw)->hw_base + (ofs)) /* 32-bit direct write (for low 4K of SRAM/regs), with debug wrapper */ #define ipw_write32(ipw, ofs, val) \ IPW_DEBUG_IO("%s %d: write_direct32(0x%08X, 0x%08X)\n", __FILE__, __LINE__, (u32)(ofs), (u32)(val)); \ _ipw_write32(ipw, ofs, val) /* 8-bit direct read (low 4K) */ #define _ipw_read8(ipw, ofs) readb((ipw)->hw_base + (ofs)) /* 8-bit direct read (low 4K), with debug wrapper */ static inline u8 __ipw_read8(char *f, u32 l, struct ipw_priv *ipw, u32 ofs) { IPW_DEBUG_IO("%s %d: read_direct8(0x%08X)\n", f, l, (u32) (ofs)); return _ipw_read8(ipw, ofs); } /* alias to 8-bit direct read (low 4K of SRAM/regs), with debug wrapper */ #define ipw_read8(ipw, ofs) __ipw_read8(__FILE__, __LINE__, ipw, ofs) /* 16-bit direct read (low 4K) */ #define _ipw_read16(ipw, ofs) readw((ipw)->hw_base + (ofs)) /* 16-bit direct read (low 4K), with debug wrapper */ static inline u16 __ipw_read16(char *f, u32 l, struct ipw_priv *ipw, u32 ofs) { IPW_DEBUG_IO("%s %d: read_direct16(0x%08X)\n", f, l, (u32) (ofs)); return _ipw_read16(ipw, ofs); } /* alias to 16-bit direct read (low 4K of SRAM/regs), with debug wrapper */ #define ipw_read16(ipw, ofs) __ipw_read16(__FILE__, __LINE__, ipw, ofs) /* 32-bit direct read (low 4K) */ #define _ipw_read32(ipw, ofs) readl((ipw)->hw_base + (ofs)) /* 32-bit direct read (low 4K), with debug wrapper */ static inline u32 __ipw_read32(char *f, u32 l, struct ipw_priv *ipw, u32 ofs) { IPW_DEBUG_IO("%s %d: read_direct32(0x%08X)\n", f, l, (u32) (ofs)); return _ipw_read32(ipw, ofs); } /* alias to 32-bit direct read (low 4K of SRAM/regs), with debug wrapper */ #define ipw_read32(ipw, ofs) __ipw_read32(__FILE__, __LINE__, ipw, ofs) /* multi-byte read (above 4K), with debug wrapper */ static void _ipw_read_indirect(struct ipw_priv *, u32, u8 *, int); static inline void __ipw_read_indirect(const char *f, int l, struct ipw_priv *a, u32 b, u8 * c, int d) { IPW_DEBUG_IO("%s %d: read_indirect(0x%08X) %d bytes\n", f, l, (u32) (b), d); _ipw_read_indirect(a, b, c, d); } /* alias to multi-byte read (SRAM/regs above 4K), with debug wrapper */ #define ipw_read_indirect(a, b, c, d) __ipw_read_indirect(__FILE__, __LINE__, a, b, c, d) /* alias to multi-byte read (SRAM/regs above 4K), with debug wrapper */ static void _ipw_write_indirect(struct ipw_priv *priv, u32 addr, u8 * data, int num); #define ipw_write_indirect(a, b, c, d) \ IPW_DEBUG_IO("%s %d: write_indirect(0x%08X) %d bytes\n", __FILE__, __LINE__, (u32)(b), d); \ _ipw_write_indirect(a, b, c, d) /* 32-bit indirect write (above 4K) */ static void _ipw_write_reg32(struct ipw_priv *priv, u32 reg, u32 value) { IPW_DEBUG_IO(" %p : reg = 0x%8X : value = 0x%8X\n", priv, reg, value); _ipw_write32(priv, IPW_INDIRECT_ADDR, reg); _ipw_write32(priv, IPW_INDIRECT_DATA, value); } /* 8-bit indirect write (above 4K) */ static void _ipw_write_reg8(struct ipw_priv *priv, u32 reg, u8 value) { u32 aligned_addr = reg & IPW_INDIRECT_ADDR_MASK; /* dword align */ u32 dif_len = reg - aligned_addr; IPW_DEBUG_IO(" reg = 0x%8X : value = 0x%8X\n", reg, value); _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr); _ipw_write8(priv, IPW_INDIRECT_DATA + dif_len, value); } /* 16-bit indirect write (above 4K) */ static void _ipw_write_reg16(struct ipw_priv *priv, u32 reg, u16 value) { u32 aligned_addr = reg & IPW_INDIRECT_ADDR_MASK; /* dword align */ u32 dif_len = (reg - aligned_addr) & (~0x1ul); IPW_DEBUG_IO(" reg = 0x%8X : value = 0x%8X\n", reg, value); _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr); _ipw_write16(priv, IPW_INDIRECT_DATA + dif_len, value); } /* 8-bit indirect read (above 4K) */ static u8 _ipw_read_reg8(struct ipw_priv *priv, u32 reg) { u32 word; _ipw_write32(priv, IPW_INDIRECT_ADDR, reg & IPW_INDIRECT_ADDR_MASK); IPW_DEBUG_IO(" reg = 0x%8X : \n", reg); word = _ipw_read32(priv, IPW_INDIRECT_DATA); return (word >> ((reg & 0x3) * 8)) & 0xff; } /* 32-bit indirect read (above 4K) */ static u32 _ipw_read_reg32(struct ipw_priv *priv, u32 reg) { u32 value; IPW_DEBUG_IO("%p : reg = 0x%08x\n", priv, reg); _ipw_write32(priv, IPW_INDIRECT_ADDR, reg); value = _ipw_read32(priv, IPW_INDIRECT_DATA); IPW_DEBUG_IO(" reg = 0x%4X : value = 0x%4x \n", reg, value); return value; } /* General purpose, no alignment requirement, iterative (multi-byte) read, */ /* for area above 1st 4K of SRAM/reg space */ static void _ipw_read_indirect(struct ipw_priv *priv, u32 addr, u8 * buf, int num) { u32 aligned_addr = addr & IPW_INDIRECT_ADDR_MASK; /* dword align */ u32 dif_len = addr - aligned_addr; u32 i; IPW_DEBUG_IO("addr = %i, buf = %p, num = %i\n", addr, buf, num); if (num <= 0) { return; } /* Read the first dword (or portion) byte by byte */ if (unlikely(dif_len)) { _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr); /* Start reading at aligned_addr + dif_len */ for (i = dif_len; ((i < 4) && (num > 0)); i++, num--) *buf++ = _ipw_read8(priv, IPW_INDIRECT_DATA + i); aligned_addr += 4; } /* Read all of the middle dwords as dwords, with auto-increment */ _ipw_write32(priv, IPW_AUTOINC_ADDR, aligned_addr); for (; num >= 4; buf += 4, aligned_addr += 4, num -= 4) *(u32 *) buf = _ipw_read32(priv, IPW_AUTOINC_DATA); /* Read the last dword (or portion) byte by byte */ if (unlikely(num)) { _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr); for (i = 0; num > 0; i++, num--) *buf++ = ipw_read8(priv, IPW_INDIRECT_DATA + i); } } /* General purpose, no alignment requirement, iterative (multi-byte) write, */ /* for area above 1st 4K of SRAM/reg space */ static void _ipw_write_indirect(struct ipw_priv *priv, u32 addr, u8 * buf, int num) { u32 aligned_addr = addr & IPW_INDIRECT_ADDR_MASK; /* dword align */ u32 dif_len = addr - aligned_addr; u32 i; IPW_DEBUG_IO("addr = %i, buf = %p, num = %i\n", addr, buf, num); if (num <= 0) { return; } /* Write the first dword (or portion) byte by byte */ if (unlikely(dif_len)) { _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr); /* Start writing at aligned_addr + dif_len */ for (i = dif_len; ((i < 4) && (num > 0)); i++, num--, buf++) _ipw_write8(priv, IPW_INDIRECT_DATA + i, *buf); aligned_addr += 4; } /* Write all of the middle dwords as dwords, with auto-increment */ _ipw_write32(priv, IPW_AUTOINC_ADDR, aligned_addr); for (; num >= 4; buf += 4, aligned_addr += 4, num -= 4) _ipw_write32(priv, IPW_AUTOINC_DATA, *(u32 *) buf); /* Write the last dword (or portion) byte by byte */ if (unlikely(num)) { _ipw_write32(priv, IPW_INDIRECT_ADDR, aligned_addr); for (i = 0; num > 0; i++, num--, buf++) _ipw_write8(priv, IPW_INDIRECT_DATA + i, *buf); } } /* General purpose, no alignment requirement, iterative (multi-byte) write, */ /* for 1st 4K of SRAM/regs space */ static void ipw_write_direct(struct ipw_priv *priv, u32 addr, void *buf, int num) { memcpy_toio((priv->hw_base + addr), buf, num); } /* Set bit(s) in low 4K of SRAM/regs */ static inline void ipw_set_bit(struct ipw_priv *priv, u32 reg, u32 mask) { ipw_write32(priv, reg, ipw_read32(priv, reg) | mask); } /* Clear bit(s) in low 4K of SRAM/regs */ static inline void ipw_clear_bit(struct ipw_priv *priv, u32 reg, u32 mask) { ipw_write32(priv, reg, ipw_read32(priv, reg) & ~mask); } static inline void ipw_enable_interrupts(struct ipw_priv *priv) { if (priv->status & STATUS_INT_ENABLED) return; priv->status |= STATUS_INT_ENABLED; ipw_write32(priv, IPW_INTA_MASK_R, IPW_INTA_MASK_ALL); } static inline void ipw_disable_interrupts(struct ipw_priv *priv) { if (!(priv->status & STATUS_INT_ENABLED)) return; priv->status &= ~STATUS_INT_ENABLED; ipw_write32(priv, IPW_INTA_MASK_R, ~IPW_INTA_MASK_ALL); } #ifdef CONFIG_IPW2200_DEBUG static char *ipw_error_desc(u32 val) { switch (val) { case IPW_FW_ERROR_OK: return "ERROR_OK"; case IPW_FW_ERROR_FAIL: return "ERROR_FAIL"; case IPW_FW_ERROR_MEMORY_UNDERFLOW: return "MEMORY_UNDERFLOW"; case IPW_FW_ERROR_MEMORY_OVERFLOW: return "MEMORY_OVERFLOW"; case IPW_FW_ERROR_BAD_PARAM: return "BAD_PARAM"; case IPW_FW_ERROR_BAD_CHECKSUM: return "BAD_CHECKSUM"; case IPW_FW_ERROR_NMI_INTERRUPT: return "NMI_INTERRUPT"; case IPW_FW_ERROR_BAD_DATABASE: return "BAD_DATABASE"; case IPW_FW_ERROR_ALLOC_FAIL: return "ALLOC_FAIL"; case IPW_FW_ERROR_DMA_UNDERRUN: return "DMA_UNDERRUN"; case IPW_FW_ERROR_DMA_STATUS: return "DMA_STATUS"; case IPW_FW_ERROR_DINO_ERROR: return "DINO_ERROR"; case IPW_FW_ERROR_EEPROM_ERROR: return "EEPROM_ERROR"; case IPW_FW_ERROR_SYSASSERT: return "SYSASSERT"; case IPW_FW_ERROR_FATAL_ERROR: return "FATAL_ERROR"; default: return "UNKNOWN_ERROR"; } } static void ipw_dump_error_log(struct ipw_priv *priv, struct ipw_fw_error *error) { u32 i; if (!error) { IPW_ERROR("Error allocating and capturing error log. " "Nothing to dump.\n"); return; } IPW_ERROR("Start IPW Error Log Dump:\n"); IPW_ERROR("Status: 0x%08X, Config: %08X\n", error->status, error->config); for (i = 0; i < error->elem_len; i++) IPW_ERROR("%s %i 0x%08x 0x%08x 0x%08x 0x%08x 0x%08x\n", ipw_error_desc(error->elem[i].desc), error->elem[i].time, error->elem[i].blink1, error->elem[i].blink2, error->elem[i].link1, error->elem[i].link2, error->elem[i].data); for (i = 0; i < error->log_len; i++) IPW_ERROR("%i\t0x%08x\t%i\n", error->log[i].time, error->log[i].data, error->log[i].event); } #endif static inline int ipw_is_init(struct ipw_priv *priv) { return (priv->status & STATUS_INIT) ? 1 : 0; } static int ipw_get_ordinal(struct ipw_priv *priv, u32 ord, void *val, u32 * len) { u32 addr, field_info, field_len, field_count, total_len; IPW_DEBUG_ORD("ordinal = %i\n", ord); if (!priv || !val || !len) { IPW_DEBUG_ORD("Invalid argument\n"); return -EINVAL; } /* verify device ordinal tables have been initialized */ if (!priv->table0_addr || !priv->table1_addr || !priv->table2_addr) { IPW_DEBUG_ORD("Access ordinals before initialization\n"); return -EINVAL; } switch (IPW_ORD_TABLE_ID_MASK & ord) { case IPW_ORD_TABLE_0_MASK: /* * TABLE 0: Direct access to a table of 32 bit values * * This is a very simple table with the data directly * read from the table */ /* remove the table id from the ordinal */ ord &= IPW_ORD_TABLE_VALUE_MASK; /* boundary check */ if (ord > priv->table0_len) { IPW_DEBUG_ORD("ordinal value (%i) longer then " "max (%i)\n", ord, priv->table0_len); return -EINVAL; } /* verify we have enough room to store the value */ if (*len < sizeof(u32)) { IPW_DEBUG_ORD("ordinal buffer length too small, " "need %zd\n", sizeof(u32)); return -EINVAL; } IPW_DEBUG_ORD("Reading TABLE0[%i] from offset 0x%08x\n", ord, priv->table0_addr + (ord << 2)); *len = sizeof(u32); ord <<= 2; *((u32 *) val) = ipw_read32(priv, priv->table0_addr + ord); break; case IPW_ORD_TABLE_1_MASK: /* * TABLE 1: Indirect access to a table of 32 bit values * * This is a fairly large table of u32 values each * representing starting addr for the data (which is * also a u32) */ /* remove the table id from the ordinal */ ord &= IPW_ORD_TABLE_VALUE_MASK; /* boundary check */ if (ord > priv->table1_len) { IPW_DEBUG_ORD("ordinal value too long\n"); return -EINVAL; } /* verify we have enough room to store the value */ if (*len < sizeof(u32)) { IPW_DEBUG_ORD("ordinal buffer length too small, " "need %zd\n", sizeof(u32)); return -EINVAL; } *((u32 *) val) = ipw_read_reg32(priv, (priv->table1_addr + (ord << 2))); *len = sizeof(u32); break; case IPW_ORD_TABLE_2_MASK: /* * TABLE 2: Indirect access to a table of variable sized values * * This table consist of six values, each containing * - dword containing the starting offset of the data * - dword containing the lengh in the first 16bits * and the count in the second 16bits */ /* remove the table id from the ordinal */ ord &= IPW_ORD_TABLE_VALUE_MASK; /* boundary check */ if (ord > priv->table2_len) { IPW_DEBUG_ORD("ordinal value too long\n"); return -EINVAL; } /* get the address of statistic */ addr = ipw_read_reg32(priv, priv->table2_addr + (ord << 3)); /* get the second DW of statistics ; * two 16-bit words - first is length, second is count */ field_info = ipw_read_reg32(priv, priv->table2_addr + (ord << 3) + sizeof(u32)); /* get each entry length */ field_len = *((u16 *) & field_info); /* get number of entries */ field_count = *(((u16 *) & field_info) + 1); /* abort if not enought memory */ total_len = field_len * field_count; if (total_len > *len) { *len = total_len; return -EINVAL; } *len = total_len; if (!total_len) return 0; IPW_DEBUG_ORD("addr = 0x%08x, total_len = %i, " "field_info = 0x%08x\n", addr, total_len, field_info); ipw_read_indirect(priv, addr, val, total_len); break; default: IPW_DEBUG_ORD("Invalid ordinal!\n"); return -EINVAL; } return 0; } static void ipw_init_ordinals(struct ipw_priv *priv) { priv->table0_addr = IPW_ORDINALS_TABLE_LOWER; priv->table0_len = ipw_read32(priv, priv->table0_addr); IPW_DEBUG_ORD("table 0 offset at 0x%08x, len = %i\n", priv->table0_addr, priv->table0_len); priv->table1_addr = ipw_read32(priv, IPW_ORDINALS_TABLE_1); priv->table1_len = ipw_read_reg32(priv, priv->table1_addr); IPW_DEBUG_ORD("table 1 offset at 0x%08x, len = %i\n", priv->table1_addr, priv->table1_len); priv->table2_addr = ipw_read32(priv, IPW_ORDINALS_TABLE_2); priv->table2_len = ipw_read_reg32(priv, priv->table2_addr); priv->table2_len &= 0x0000ffff; /* use first two bytes */ IPW_DEBUG_ORD("table 2 offset at 0x%08x, len = %i\n", priv->table2_addr, priv->table2_len); } static u32 ipw_register_toggle(u32 reg) { reg &= ~IPW_START_STANDBY; if (reg & IPW_GATE_ODMA) reg &= ~IPW_GATE_ODMA; if (reg & IPW_GATE_IDMA) reg &= ~IPW_GATE_IDMA; if (reg & IPW_GATE_ADMA) reg &= ~IPW_GATE_ADMA; return reg; } /* * LED behavior: * - On radio ON, turn on any LEDs that require to be on during start * - On initialization, start unassociated blink * - On association, disable unassociated blink * - On disassociation, start unassociated blink * - On radio OFF, turn off any LEDs started during radio on * */ #define LD_TIME_LINK_ON msecs_to_jiffies(300) #define LD_TIME_LINK_OFF msecs_to_jiffies(2700) #define LD_TIME_ACT_ON msecs_to_jiffies(250) static void ipw_led_link_on(struct ipw_priv *priv) { unsigned long flags; u32 led; /* If configured to not use LEDs, or nic_type is 1, * then we don't toggle a LINK led */ if (priv->config & CFG_NO_LED || priv->nic_type == EEPROM_NIC_TYPE_1) return; spin_lock_irqsave(&priv->lock, flags); if (!(priv->status & STATUS_RF_KILL_MASK) && !(priv->status & STATUS_LED_LINK_ON)) { IPW_DEBUG_LED("Link LED On\n"); led = ipw_read_reg32(priv, IPW_EVENT_REG); led |= priv->led_association_on; led = ipw_register_toggle(led); IPW_DEBUG_LED("Reg: 0x%08X\n", led); ipw_write_reg32(priv, IPW_EVENT_REG, led); priv->status |= STATUS_LED_LINK_ON; /* If we aren't associated, schedule turning the LED off */ if (!(priv->status & STATUS_ASSOCIATED)) queue_delayed_work(priv->workqueue, &priv->led_link_off, LD_TIME_LINK_ON); } spin_unlock_irqrestore(&priv->lock, flags); } static void ipw_bg_led_link_on(void *data) { struct ipw_priv *priv = data; mutex_lock(&priv->mutex); ipw_led_link_on(data); mutex_unlock(&priv->mutex); } static void ipw_led_link_off(struct ipw_priv *priv) { unsigned long flags; u32 led; /* If configured not to use LEDs, or nic type is 1, * then we don't goggle the LINK led. */ if (priv->config & CFG_NO_LED || priv->nic_type == EEPROM_NIC_TYPE_1) return; spin_lock_irqsave(&priv->lock, flags); if (priv->status & STATUS_LED_LINK_ON) { led = ipw_read_reg32(priv, IPW_EVENT_REG); led &= priv->led_association_off; led = ipw_register_toggle(led); IPW_DEBUG_LED("Reg: 0x%08X\n", led); ipw_write_reg32(priv, IPW_EVENT_REG, led); IPW_DEBUG_LED("Link LED Off\n"); priv->status &= ~STATUS_LED_LINK_ON; /* If we aren't associated and the radio is on, schedule * turning the LED on (blink while unassociated) */ if (!(priv->status & STATUS_RF_KILL_MASK) && !(priv->status & STATUS_ASSOCIATED)) queue_delayed_work(priv->workqueue, &priv->led_link_on, LD_TIME_LINK_OFF); } spin_unlock_irqrestore(&priv->lock, flags); } static void ipw_bg_led_link_off(void *data) { struct ipw_priv *priv = data; mutex_lock(&priv->mutex); ipw_led_link_off(data); mutex_unlock(&priv->mutex); } static void __ipw_led_activity_on(struct ipw_priv *priv) { u32 led; if (priv->config & CFG_NO_LED) return; if (priv->status & STATUS_RF_KILL_MASK) return; if (!(priv->status & STATUS_LED_ACT_ON)) { led = ipw_read_reg32(priv, IPW_EVENT_REG); led |= priv->led_activity_on; led = ipw_register_toggle(led); IPW_DEBUG_LED("Reg: 0x%08X\n", led); ipw_write_reg32(priv, IPW_EVENT_REG, led); IPW_DEBUG_LED("Activity LED On\n"); priv->status |= STATUS_LED_ACT_ON; cancel_delayed_work(&priv->led_act_off); queue_delayed_work(priv->workqueue, &priv->led_act_off, LD_TIME_ACT_ON); } else { /* Reschedule LED off for full time period */ cancel_delayed_work(&priv->led_act_off); queue_delayed_work(priv->workqueue, &priv->led_act_off, LD_TIME_ACT_ON); } } #if 0 void ipw_led_activity_on(struct ipw_priv *priv) { unsigned long flags; spin_lock_irqsave(&priv->lock, flags); __ipw_led_activity_on(priv); spin_unlock_irqrestore(&priv->lock, flags); } #endif /* 0 */ static void ipw_led_activity_off(struct ipw_priv *priv) { unsigned long flags; u32 led; if (priv->config & CFG_NO_LED) return; spin_lock_irqsave(&priv->lock, flags); if (priv->status & STATUS_LED_ACT_ON) { led = ipw_read_reg32(priv, IPW_EVENT_REG); led &= priv->led_activity_off; led = ipw_register_toggle(led); IPW_DEBUG_LED("Reg: 0x%08X\n", led); ipw_write_reg32(priv, IPW_EVENT_REG, led); IPW_DEBUG_LED("Activity LED Off\n"); priv->status &= ~STATUS_LED_ACT_ON; } spin_unlock_irqrestore(&priv->lock, flags); } static void ipw_bg_led_activity_off(void *data) { struct ipw_priv *priv = data; mutex_lock(&priv->mutex); ipw_led_activity_off(data); mutex_unlock(&priv->mutex); } static void ipw_led_band_on(struct ipw_priv *priv) { unsigned long flags; u32 led; /* Only nic type 1 supports mode LEDs */ if (priv->config & CFG_NO_LED || priv->nic_type != EEPROM_NIC_TYPE_1 || !priv->assoc_network) return; spin_lock_irqsave(&priv->lock, flags); led = ipw_read_reg32(priv, IPW_EVENT_REG); if (priv->assoc_network->mode == IEEE_A) { led |= priv->led_ofdm_on; led &= priv->led_association_off; IPW_DEBUG_LED("Mode LED On: 802.11a\n"); } else if (priv->assoc_network->mode == IEEE_G) { led |= priv->led_ofdm_on; led |= priv->led_association_on; IPW_DEBUG_LED("Mode LED On: 802.11g\n"); } else { led &= priv->led_ofdm_off; led |= priv->led_association_on; IPW_DEBUG_LED("Mode LED On: 802.11b\n"); } led = ipw_register_toggle(led); IPW_DEBUG_LED("Reg: 0x%08X\n", led); ipw_write_reg32(priv, IPW_EVENT_REG, led); spin_unlock_irqrestore(&priv->lock, flags); } static void ipw_led_band_off(struct ipw_priv *priv) { unsigned long flags; u32 led; /* Only nic type 1 supports mode LEDs */ if (priv->config & CFG_NO_LED || priv->nic_type != EEPROM_NIC_TYPE_1) return; spin_lock_irqsave(&priv->lock, flags); led = ipw_read_reg32(priv, IPW_EVENT_REG); led &= priv->led_ofdm_off; led &= priv->led_association_off; led = ipw_register_toggle(led); IPW_DEBUG_LED("Reg: 0x%08X\n", led); ipw_write_reg32(priv, IPW_EVENT_REG, led); spin_unlock_irqrestore(&priv->lock, flags); } static void ipw_led_radio_on(struct ipw_priv *priv) { ipw_led_link_on(priv); } static void ipw_led_radio_off(struct ipw_priv *priv) { ipw_led_activity_off(priv); ipw_led_link_off(priv); } static void ipw_led_link_up(struct ipw_priv *priv) { /* Set the Link Led on for all nic types */ ipw_led_link_on(priv); } static void ipw_led_link_down(struct ipw_priv *priv) { ipw_led_activity_off(priv); ipw_led_link_off(priv); if (priv->status & STATUS_RF_KILL_MASK) ipw_led_radio_off(priv); } static void ipw_led_init(struct ipw_priv *priv) { priv->nic_type = priv->eeprom[EEPROM_NIC_TYPE]; /* Set the default PINs for the link and activity leds */ priv->led_activity_on = IPW_ACTIVITY_LED; priv->led_activity_off = ~(IPW_ACTIVITY_LED); priv->led_association_on = IPW_ASSOCIATED_LED; priv->led_association_off = ~(IPW_ASSOCIATED_LED); /* Set the default PINs for the OFDM leds */ priv->led_ofdm_on = IPW_OFDM_LED; priv->led_ofdm_off = ~(IPW_OFDM_LED); switch (priv->nic_type) { case EEPROM_NIC_TYPE_1: /* In this NIC type, the LEDs are reversed.... */ priv->led_activity_on = IPW_ASSOCIATED_LED; priv->led_activity_off = ~(IPW_ASSOCIATED_LED); priv->led_association_on = IPW_ACTIVITY_LED; priv->led_association_off = ~(IPW_ACTIVITY_LED); if (!(priv->config & CFG_NO_LED)) ipw_led_band_on(priv); /* And we don't blink link LEDs for this nic, so * just return here */ return; case EEPROM_NIC_TYPE_3: case EEPROM_NIC_TYPE_2: case EEPROM_NIC_TYPE_4: case EEPROM_NIC_TYPE_0: break; default: IPW_DEBUG_INFO("Unknown NIC type from EEPROM: %d\n", priv->nic_type); priv->nic_type = EEPROM_NIC_TYPE_0; break; } if (!(priv->config & CFG_NO_LED)) { if (priv->status & STATUS_ASSOCIATED) ipw_led_link_on(priv); else ipw_led_link_off(priv); } } static void ipw_led_shutdown(struct ipw_priv *priv) { ipw_led_activity_off(priv); ipw_led_link_off(priv); ipw_led_band_off(priv); cancel_delayed_work(&priv->led_link_on); cancel_delayed_work(&priv->led_link_off); cancel_delayed_work(&priv->led_act_off); } /* * The following adds a new attribute to the sysfs representation * of this device driver (i.e. a new file in /sys/bus/pci/drivers/ipw/) * used for controling the debug level. * * See the level definitions in ipw for details. */ static ssize_t show_debug_level(struct device_driver *d, char *buf) { return sprintf(buf, "0x%08X\n", ipw_debug_level); } static ssize_t store_debug_level(struct device_driver *d, const char *buf, size_t count) { char *p = (char *)buf; u32 val; if (p[1] == 'x' || p[1] == 'X' || p[0] == 'x' || p[0] == 'X') { p++; if (p[0] == 'x' || p[0] == 'X') p++; val = simple_strtoul(p, &p, 16); } else val = simple_strtoul(p, &p, 10); if (p == buf) printk(KERN_INFO DRV_NAME ": %s is not in hex or decimal form.\n", buf); else ipw_debug_level = val; return strnlen(buf, count); } static DRIVER_ATTR(debug_level, S_IWUSR | S_IRUGO, show_debug_level, store_debug_level); static inline u32 ipw_get_event_log_len(struct ipw_priv *priv) { /* length = 1st dword in log */ return ipw_read_reg32(priv, ipw_read32(priv, IPW_EVENT_LOG)); } static void ipw_capture_event_log(struct ipw_priv *priv, u32 log_len, struct ipw_event *log) { u32 base; if (log_len) { base = ipw_read32(priv, IPW_EVENT_LOG); ipw_read_indirect(priv, base + sizeof(base) + sizeof(u32), (u8 *) log, sizeof(*log) * log_len); } } static struct ipw_fw_error *ipw_alloc_error_log(struct ipw_priv *priv) { struct ipw_fw_error *error; u32 log_len = ipw_get_event_log_len(priv); u32 base = ipw_read32(priv, IPW_ERROR_LOG); u32 elem_len = ipw_read_reg32(priv, base); error = kmalloc(sizeof(*error) + sizeof(*error->elem) * elem_len + sizeof(*error->log) * log_len, GFP_ATOMIC); if (!error) { IPW_ERROR("Memory allocation for firmware error log " "failed.\n"); return NULL; } error->jiffies = jiffies; error->status = priv->status; error->config = priv->config; error->elem_len = elem_len; error->log_len = log_len; error->elem = (struct ipw_error_elem *)error->payload; error->log = (struct ipw_event *)(error->elem + elem_len); ipw_capture_event_log(priv, log_len, error->log); if (elem_len) ipw_read_indirect(priv, base + sizeof(base), (u8 *) error->elem, sizeof(*error->elem) * elem_len); return error; } static void ipw_free_error_log(struct ipw_fw_error *error) { if (error) kfree(error); } static ssize_t show_event_log(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *priv = dev_get_drvdata(d); u32 log_len = ipw_get_event_log_len(priv); struct ipw_event log[log_len]; u32 len = 0, i; ipw_capture_event_log(priv, log_len, log); len += snprintf(buf + len, PAGE_SIZE - len, "%08X", log_len); for (i = 0; i < log_len; i++) len += snprintf(buf + len, PAGE_SIZE - len, "\n%08X%08X%08X", log[i].time, log[i].event, log[i].data); len += snprintf(buf + len, PAGE_SIZE - len, "\n"); return len; } static DEVICE_ATTR(event_log, S_IRUGO, show_event_log, NULL); static ssize_t show_error(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *priv = dev_get_drvdata(d); u32 len = 0, i; if (!priv->error) return 0; len += snprintf(buf + len, PAGE_SIZE - len, "%08lX%08X%08X%08X", priv->error->jiffies, priv->error->status, priv->error->config, priv->error->elem_len); for (i = 0; i < priv->error->elem_len; i++) len += snprintf(buf + len, PAGE_SIZE - len, "\n%08X%08X%08X%08X%08X%08X%08X", priv->error->elem[i].time, priv->error->elem[i].desc, priv->error->elem[i].blink1, priv->error->elem[i].blink2, priv->error->elem[i].link1, priv->error->elem[i].link2, priv->error->elem[i].data); len += snprintf(buf + len, PAGE_SIZE - len, "\n%08X", priv->error->log_len); for (i = 0; i < priv->error->log_len; i++) len += snprintf(buf + len, PAGE_SIZE - len, "\n%08X%08X%08X", priv->error->log[i].time, priv->error->log[i].event, priv->error->log[i].data); len += snprintf(buf + len, PAGE_SIZE - len, "\n"); return len; } static ssize_t clear_error(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = dev_get_drvdata(d); if (priv->error) { ipw_free_error_log(priv->error); priv->error = NULL; } return count; } static DEVICE_ATTR(error, S_IRUGO | S_IWUSR, show_error, clear_error); static ssize_t show_cmd_log(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *priv = dev_get_drvdata(d); u32 len = 0, i; if (!priv->cmdlog) return 0; for (i = (priv->cmdlog_pos + 1) % priv->cmdlog_len; (i != priv->cmdlog_pos) && (PAGE_SIZE - len); i = (i + 1) % priv->cmdlog_len) { len += snprintf(buf + len, PAGE_SIZE - len, "\n%08lX%08X%08X%08X\n", priv->cmdlog[i].jiffies, priv->cmdlog[i].retcode, priv->cmdlog[i].cmd.cmd, priv->cmdlog[i].cmd.len); len += snprintk_buf(buf + len, PAGE_SIZE - len, (u8 *) priv->cmdlog[i].cmd.param, priv->cmdlog[i].cmd.len); len += snprintf(buf + len, PAGE_SIZE - len, "\n"); } len += snprintf(buf + len, PAGE_SIZE - len, "\n"); return len; } static DEVICE_ATTR(cmd_log, S_IRUGO, show_cmd_log, NULL); static ssize_t show_scan_age(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *priv = dev_get_drvdata(d); return sprintf(buf, "%d\n", priv->ieee->scan_age); } static ssize_t store_scan_age(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = dev_get_drvdata(d); #ifdef CONFIG_IPW2200_DEBUG struct net_device *dev = priv->net_dev; #endif char buffer[] = "00000000"; unsigned long len = (sizeof(buffer) - 1) > count ? count : sizeof(buffer) - 1; unsigned long val; char *p = buffer; IPW_DEBUG_INFO("enter\n"); strncpy(buffer, buf, len); buffer[len] = 0; if (p[1] == 'x' || p[1] == 'X' || p[0] == 'x' || p[0] == 'X') { p++; if (p[0] == 'x' || p[0] == 'X') p++; val = simple_strtoul(p, &p, 16); } else val = simple_strtoul(p, &p, 10); if (p == buffer) { IPW_DEBUG_INFO("%s: user supplied invalid value.\n", dev->name); } else { priv->ieee->scan_age = val; IPW_DEBUG_INFO("set scan_age = %u\n", priv->ieee->scan_age); } IPW_DEBUG_INFO("exit\n"); return len; } static DEVICE_ATTR(scan_age, S_IWUSR | S_IRUGO, show_scan_age, store_scan_age); static ssize_t show_led(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *priv = dev_get_drvdata(d); return sprintf(buf, "%d\n", (priv->config & CFG_NO_LED) ? 0 : 1); } static ssize_t store_led(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = dev_get_drvdata(d); IPW_DEBUG_INFO("enter\n"); if (count == 0) return 0; if (*buf == 0) { IPW_DEBUG_LED("Disabling LED control.\n"); priv->config |= CFG_NO_LED; ipw_led_shutdown(priv); } else { IPW_DEBUG_LED("Enabling LED control.\n"); priv->config &= ~CFG_NO_LED; ipw_led_init(priv); } IPW_DEBUG_INFO("exit\n"); return count; } static DEVICE_ATTR(led, S_IWUSR | S_IRUGO, show_led, store_led); static ssize_t show_status(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *p = d->driver_data; return sprintf(buf, "0x%08x\n", (int)p->status); } static DEVICE_ATTR(status, S_IRUGO, show_status, NULL); static ssize_t show_cfg(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *p = d->driver_data; return sprintf(buf, "0x%08x\n", (int)p->config); } static DEVICE_ATTR(cfg, S_IRUGO, show_cfg, NULL); static ssize_t show_nic_type(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *priv = d->driver_data; return sprintf(buf, "TYPE: %d\n", priv->nic_type); } static DEVICE_ATTR(nic_type, S_IRUGO, show_nic_type, NULL); static ssize_t show_ucode_version(struct device *d, struct device_attribute *attr, char *buf) { u32 len = sizeof(u32), tmp = 0; struct ipw_priv *p = d->driver_data; if (ipw_get_ordinal(p, IPW_ORD_STAT_UCODE_VERSION, &tmp, &len)) return 0; return sprintf(buf, "0x%08x\n", tmp); } static DEVICE_ATTR(ucode_version, S_IWUSR | S_IRUGO, show_ucode_version, NULL); static ssize_t show_rtc(struct device *d, struct device_attribute *attr, char *buf) { u32 len = sizeof(u32), tmp = 0; struct ipw_priv *p = d->driver_data; if (ipw_get_ordinal(p, IPW_ORD_STAT_RTC, &tmp, &len)) return 0; return sprintf(buf, "0x%08x\n", tmp); } static DEVICE_ATTR(rtc, S_IWUSR | S_IRUGO, show_rtc, NULL); /* * Add a device attribute to view/control the delay between eeprom * operations. */ static ssize_t show_eeprom_delay(struct device *d, struct device_attribute *attr, char *buf) { int n = ((struct ipw_priv *)d->driver_data)->eeprom_delay; return sprintf(buf, "%i\n", n); } static ssize_t store_eeprom_delay(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *p = d->driver_data; sscanf(buf, "%i", &p->eeprom_delay); return strnlen(buf, count); } static DEVICE_ATTR(eeprom_delay, S_IWUSR | S_IRUGO, show_eeprom_delay, store_eeprom_delay); static ssize_t show_command_event_reg(struct device *d, struct device_attribute *attr, char *buf) { u32 reg = 0; struct ipw_priv *p = d->driver_data; reg = ipw_read_reg32(p, IPW_INTERNAL_CMD_EVENT); return sprintf(buf, "0x%08x\n", reg); } static ssize_t store_command_event_reg(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { u32 reg; struct ipw_priv *p = d->driver_data; sscanf(buf, "%x", &reg); ipw_write_reg32(p, IPW_INTERNAL_CMD_EVENT, reg); return strnlen(buf, count); } static DEVICE_ATTR(command_event_reg, S_IWUSR | S_IRUGO, show_command_event_reg, store_command_event_reg); static ssize_t show_mem_gpio_reg(struct device *d, struct device_attribute *attr, char *buf) { u32 reg = 0; struct ipw_priv *p = d->driver_data; reg = ipw_read_reg32(p, 0x301100); return sprintf(buf, "0x%08x\n", reg); } static ssize_t store_mem_gpio_reg(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { u32 reg; struct ipw_priv *p = d->driver_data; sscanf(buf, "%x", &reg); ipw_write_reg32(p, 0x301100, reg); return strnlen(buf, count); } static DEVICE_ATTR(mem_gpio_reg, S_IWUSR | S_IRUGO, show_mem_gpio_reg, store_mem_gpio_reg); static ssize_t show_indirect_dword(struct device *d, struct device_attribute *attr, char *buf) { u32 reg = 0; struct ipw_priv *priv = d->driver_data; if (priv->status & STATUS_INDIRECT_DWORD) reg = ipw_read_reg32(priv, priv->indirect_dword); else reg = 0; return sprintf(buf, "0x%08x\n", reg); } static ssize_t store_indirect_dword(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = d->driver_data; sscanf(buf, "%x", &priv->indirect_dword); priv->status |= STATUS_INDIRECT_DWORD; return strnlen(buf, count); } static DEVICE_ATTR(indirect_dword, S_IWUSR | S_IRUGO, show_indirect_dword, store_indirect_dword); static ssize_t show_indirect_byte(struct device *d, struct device_attribute *attr, char *buf) { u8 reg = 0; struct ipw_priv *priv = d->driver_data; if (priv->status & STATUS_INDIRECT_BYTE) reg = ipw_read_reg8(priv, priv->indirect_byte); else reg = 0; return sprintf(buf, "0x%02x\n", reg); } static ssize_t store_indirect_byte(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = d->driver_data; sscanf(buf, "%x", &priv->indirect_byte); priv->status |= STATUS_INDIRECT_BYTE; return strnlen(buf, count); } static DEVICE_ATTR(indirect_byte, S_IWUSR | S_IRUGO, show_indirect_byte, store_indirect_byte); static ssize_t show_direct_dword(struct device *d, struct device_attribute *attr, char *buf) { u32 reg = 0; struct ipw_priv *priv = d->driver_data; if (priv->status & STATUS_DIRECT_DWORD) reg = ipw_read32(priv, priv->direct_dword); else reg = 0; return sprintf(buf, "0x%08x\n", reg); } static ssize_t store_direct_dword(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = d->driver_data; sscanf(buf, "%x", &priv->direct_dword); priv->status |= STATUS_DIRECT_DWORD; return strnlen(buf, count); } static DEVICE_ATTR(direct_dword, S_IWUSR | S_IRUGO, show_direct_dword, store_direct_dword); static int rf_kill_active(struct ipw_priv *priv) { if (0 == (ipw_read32(priv, 0x30) & 0x10000)) priv->status |= STATUS_RF_KILL_HW; else priv->status &= ~STATUS_RF_KILL_HW; return (priv->status & STATUS_RF_KILL_HW) ? 1 : 0; } static ssize_t show_rf_kill(struct device *d, struct device_attribute *attr, char *buf) { /* 0 - RF kill not enabled 1 - SW based RF kill active (sysfs) 2 - HW based RF kill active 3 - Both HW and SW baed RF kill active */ struct ipw_priv *priv = d->driver_data; int val = ((priv->status & STATUS_RF_KILL_SW) ? 0x1 : 0x0) | (rf_kill_active(priv) ? 0x2 : 0x0); return sprintf(buf, "%i\n", val); } static int ipw_radio_kill_sw(struct ipw_priv *priv, int disable_radio) { if ((disable_radio ? 1 : 0) == ((priv->status & STATUS_RF_KILL_SW) ? 1 : 0)) return 0; IPW_DEBUG_RF_KILL("Manual SW RF Kill set to: RADIO %s\n", disable_radio ? "OFF" : "ON"); if (disable_radio) { priv->status |= STATUS_RF_KILL_SW; if (priv->workqueue) cancel_delayed_work(&priv->request_scan); queue_work(priv->workqueue, &priv->down); } else { priv->status &= ~STATUS_RF_KILL_SW; if (rf_kill_active(priv)) { IPW_DEBUG_RF_KILL("Can not turn radio back on - " "disabled by HW switch\n"); /* Make sure the RF_KILL check timer is running */ cancel_delayed_work(&priv->rf_kill); queue_delayed_work(priv->workqueue, &priv->rf_kill, 2 * HZ); } else queue_work(priv->workqueue, &priv->up); } return 1; } static ssize_t store_rf_kill(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = d->driver_data; ipw_radio_kill_sw(priv, buf[0] == '1'); return count; } static DEVICE_ATTR(rf_kill, S_IWUSR | S_IRUGO, show_rf_kill, store_rf_kill); static ssize_t show_speed_scan(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *priv = (struct ipw_priv *)d->driver_data; int pos = 0, len = 0; if (priv->config & CFG_SPEED_SCAN) { while (priv->speed_scan[pos] != 0) len += sprintf(&buf[len], "%d ", priv->speed_scan[pos++]); return len + sprintf(&buf[len], "\n"); } return sprintf(buf, "0\n"); } static ssize_t store_speed_scan(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = (struct ipw_priv *)d->driver_data; int channel, pos = 0; const char *p = buf; /* list of space separated channels to scan, optionally ending with 0 */ while ((channel = simple_strtol(p, NULL, 0))) { if (pos == MAX_SPEED_SCAN - 1) { priv->speed_scan[pos] = 0; break; } if (ieee80211_is_valid_channel(priv->ieee, channel)) priv->speed_scan[pos++] = channel; else IPW_WARNING("Skipping invalid channel request: %d\n", channel); p = strchr(p, ' '); if (!p) break; while (*p == ' ' || *p == '\t') p++; } if (pos == 0) priv->config &= ~CFG_SPEED_SCAN; else { priv->speed_scan_pos = 0; priv->config |= CFG_SPEED_SCAN; } return count; } static DEVICE_ATTR(speed_scan, S_IWUSR | S_IRUGO, show_speed_scan, store_speed_scan); static ssize_t show_net_stats(struct device *d, struct device_attribute *attr, char *buf) { struct ipw_priv *priv = (struct ipw_priv *)d->driver_data; return sprintf(buf, "%c\n", (priv->config & CFG_NET_STATS) ? '1' : '0'); } static ssize_t store_net_stats(struct device *d, struct device_attribute *attr, const char *buf, size_t count) { struct ipw_priv *priv = (struct ipw_priv *)d->driver_data; if (buf[0] == '1') priv->config |= CFG_NET_STATS; else priv->config &= ~CFG_NET_STATS; return count; } static DEVICE_ATTR(net_stats, S_IWUSR | S_IRUGO, show_net_stats, store_net_stats); static void notify_wx_assoc_event(struct ipw_priv *priv) { union iwreq_data wrqu; wrqu.ap_addr.sa_family = ARPHRD_ETHER; if (priv->status & STATUS_ASSOCIATED) memcpy(wrqu.ap_addr.sa_data, priv->bssid, ETH_ALEN); else memset(wrqu.ap_addr.sa_data, 0, ETH_ALEN); wireless_send_event(priv->net_dev, SIOCGIWAP, &wrqu, NULL); } static void ipw_irq_tasklet(struct ipw_priv *priv) { u32 inta, inta_mask, handled = 0; unsigned long flags; int rc = 0; spin_lock_irqsave(&priv->lock, flags); inta = ipw_read32(priv, IPW_INTA_RW); inta_mask = ipw_read32(priv, IPW_INTA_MASK_R); inta &= (IPW_INTA_MASK_ALL & inta_mask); /* Add any cached INTA values that need to be handled */ inta |= priv->isr_inta; /* handle all the justifications for the interrupt */ if (inta & IPW_INTA_BIT_RX_TRANSFER) { ipw_rx(priv); handled |= IPW_INTA_BIT_RX_TRANSFER; } if (inta & IPW_INTA_BIT_TX_CMD_QUEUE) { IPW_DEBUG_HC("Command completed.\n"); rc = ipw_queue_tx_reclaim(priv, &priv->txq_cmd, -1); priv->status &= ~STATUS_HCMD_ACTIVE; wake_up_interruptible(&priv->wait_command_queue); handled |= IPW_INTA_BIT_TX_CMD_QUEUE; } if (inta & IPW_INTA_BIT_TX_QUEUE_1) { IPW_DEBUG_TX("TX_QUEUE_1\n"); rc = ipw_queue_tx_reclaim(priv, &priv->txq[0], 0); handled |= IPW_INTA_BIT_TX_QUEUE_1; } if (inta & IPW_INTA_BIT_TX_QUEUE_2) { IPW_DEBUG_TX("TX_QUEUE_2\n"); rc = ipw_queue_tx_reclaim(priv, &priv->txq[1], 1); handled |= IPW_INTA_BIT_TX_QUEUE_2; } if (inta & IPW_INTA_BIT_TX_QUEUE_3) { IPW_DEBUG_TX("TX_QUEUE_3\n"); rc = ipw_queue_tx_reclaim(priv, &priv->txq[2], 2); handled |= IPW_INTA_BIT_TX_QUEUE_3; } if (inta & IPW_INTA_BIT_TX_QUEUE_4) { IPW_DEBUG_TX("TX_QUEUE_4\n"); rc = ipw_queue_tx_reclaim(priv, &priv->txq[3], 3); handled |= IPW_INTA_BIT_TX_QUEUE_4; } if (inta & IPW_INTA_BIT_STATUS_CHANGE) { IPW_WARNING("STATUS_CHANGE\n"); handled |= IPW_INTA_BIT_STATUS_CHANGE; } if (inta & IPW_INTA_BIT_BEACON_PERIOD_EXPIRED) { IPW_WARNING("TX_PERIOD_EXPIRED\n"); handled |= IPW_INTA_BIT_BEACON_PERIOD_EXPIRED; } if (inta & IPW_INTA_BIT_SLAVE_MODE_HOST_CMD_DONE) { IPW_WARNING("HOST_CMD_DONE\n"); handled |= IPW_INTA_BIT_SLAVE_MODE_HOST_CMD_DONE; } if (inta & IPW_INTA_BIT_FW_INITIALIZATION_DONE) { IPW_WARNING("FW_INITIALIZATION_DONE\n"); handled |= IPW_INTA_BIT_FW_INITIALIZATION_DONE; } if (inta & IPW_INTA_BIT_FW_CARD_DISABLE_PHY_OFF_DONE) { IPW_WARNING("PHY_OFF_DONE\n"); handled |= IPW_INTA_BIT_FW_CARD_DISABLE_PHY_OFF_DONE; } if (inta & IPW_INTA_BIT_RF_KILL_DONE) { IPW_DEBUG_RF_KILL("RF_KILL_DONE\n"); priv->status |= STATUS_RF_KILL_HW; wake_up_interruptible(&priv->wait_command_queue); priv->status &= ~(STATUS_ASSOCIATED | STATUS_ASSOCIATING); cancel_delayed_work(&priv->request_scan); schedule_work(&priv->link_down); queue_delayed_work(priv->workqueue, &priv->rf_kill, 2 * HZ); handled |= IPW_INTA_BIT_RF_KILL_DONE; } if (inta & IPW_INTA_BIT_FATAL_ERROR) { IPW_WARNING("Firmware error detected. Restarting.\n"); if (priv->error) { IPW_DEBUG_FW("Sysfs 'error' log already exists.\n"); #ifdef CONFIG_IPW2200_DEBUG if (ipw_debug_level & IPW_DL_FW_ERRORS) { struct ipw_fw_error *error = ipw_alloc_error_log(priv); ipw_dump_error_log(priv, error); if (error) ipw_free_error_log(error); } #endif } else { priv->error = ipw_alloc_error_log(priv); if (priv->error) IPW_DEBUG_FW("Sysfs 'error' log captured.\n"); else IPW_DEBUG_FW("Error allocating sysfs 'error' " "log.\n"); #ifdef CONFIG_IPW2200_DEBUG if (ipw_debug_level & IPW_DL_FW_ERRORS) ipw_dump_error_log(priv, priv->error); #endif } /* XXX: If hardware encryption is for WPA/WPA2, * we have to notify the supplicant. */ if (priv->ieee->sec.encrypt) { priv->status &= ~STATUS_ASSOCIATED; notify_wx_assoc_event(priv); } /* Keep the restart process from trying to send host * commands by clearing the INIT status bit */ priv->status &= ~STATUS_INIT; /* Cancel currently queued command. */ priv->status &= ~STATUS_HCMD_ACTIVE; wake_up_interruptible(&priv->wait_command_queue); queue_work(priv->workqueue, &priv->adapter_restart); handled |= IPW_INTA_BIT_FATAL_ERROR; } if (inta & IPW_INTA_BIT_PARITY_ERROR) { IPW_ERROR("Parity error\n"); handled |= IPW_INTA_BIT_PARITY_ERROR; } if (handled != inta) { IPW_ERROR("Unhandled INTA bits 0x%08x\n", inta & ~handled); } /* enable all interrupts */ ipw_enable_interrupts(priv); spin_unlock_irqrestore(&priv->lock, flags); } #define IPW_CMD(x) case IPW_CMD_ ## x : return #x static char *get_cmd_string(u8 cmd) { switch (cmd) { IPW_CMD(HOST_COMPLETE); IPW_CMD(POWER_DOWN); IPW_CMD(SYSTEM_CONFIG); IPW_CMD(MULTICAST_ADDRESS); IPW_CMD(SSID); IPW_CMD(ADAPTER_ADDRESS); IPW_CMD(PORT_TYPE); IPW_CMD(RTS_THRESHOLD); IPW_CMD(FRAG_THRESHOLD); IPW_CMD(POWER_MODE); IPW_CMD(WEP_KEY); IPW_CMD(TGI_TX_KEY); IPW_CMD(SCAN_REQUEST); IPW_CMD(SCAN_REQUEST_EXT); IPW_CMD(ASSOCIATE); IPW_CMD(SUPPORTED_RATES); IPW_CMD(SCAN_ABORT); IPW_CMD(TX_FLUSH); IPW_CMD(QOS_PARAMETERS); IPW_CMD(DINO_CONFIG); IPW_CMD(RSN_CAPABILITIES); IPW_CMD(RX_KEY); IPW_CMD(CARD_DISABLE); IPW_CMD(SEED_NUMBER); IPW_CMD(TX_POWER); IPW_CMD(COUNTRY_INFO); IPW_CMD(AIRONET_INFO); IPW_CMD(AP_TX_POWER); IPW_CMD(CCKM_INFO); IPW_CMD(CCX_VER_INFO); IPW_CMD(SET_CALIBRATION); IPW_CMD(SENSITIVITY_CALIB); IPW_CMD(RETRY_LIMIT); IPW_CMD(IPW_PRE_POWER_DOWN); IPW_CMD(VAP_BEACON_TEMPLATE); IPW_CMD(VAP_DTIM_PERIOD); IPW_CMD(EXT_SUPPORTED_RATES); IPW_CMD(VAP_LOCAL_TX_PWR_CONSTRAINT); IPW_CMD(VAP_QUIET_INTERVALS); IPW_CMD(VAP_CHANNEL_SWITCH); IPW_CMD(VAP_MANDATORY_CHANNELS); IPW_CMD(VAP_CELL_PWR_LIMIT); IPW_CMD(VAP_CF_PARAM_SET); IPW_CMD(VAP_SET_BEACONING_STATE); IPW_CMD(MEASUREMENT); IPW_CMD(POWER_CAPABILITY); IPW_CMD(SUPPORTED_CHANNELS); IPW_CMD(TPC_REPORT); IPW_CMD(WME_INFO); IPW_CMD(PRODUCTION_COMMAND); default: return "UNKNOWN"; } } #define HOST_COMPLETE_TIMEOUT HZ static int __ipw_send_cmd(struct ipw_priv *priv, struct host_cmd *cmd) { int rc = 0; unsigned long flags; spin_lock_irqsave(&priv->lock, flags); if (priv->status & STATUS_HCMD_ACTIVE) { IPW_ERROR("Failed to send %s: Already sending a command.\n", get_cmd_string(cmd->cmd)); spin_unlock_irqrestore(&priv->lock, flags); return -EAGAIN; } priv->status |= STATUS_HCMD_ACTIVE; if (priv->cmdlog) { priv->cmdlog[priv->cmdlog_pos].jiffies = jiffies; priv->cmdlog[priv->cmdlog_pos].cmd.cmd = cmd->cmd; priv->cmdlog[priv->cmdlog_pos].cmd.len = cmd->len; memcpy(priv->cmdlog[priv->cmdlog_pos].cmd.param, cmd->param, cmd->len); priv->cmdlog[priv->cmdlog_pos].retcode = -1; } IPW_DEBUG_HC("%s command (#%d) %d bytes: 0x%08X\n", get_cmd_string(cmd->cmd), cmd->cmd, cmd->len, priv->status); #ifndef DEBUG_CMD_WEP_KEY if (cmd->cmd == IPW_CMD_WEP_KEY) IPW_DEBUG_HC("WEP_KEY command masked out for secure.\n"); else #endif printk_buf(IPW_DL_HOST_COMMAND, (u8 *) cmd->param, cmd->len); rc = ipw_queue_tx_hcmd(priv, cmd->cmd, cmd->param, cmd->len, 0); if (rc) { priv->status &= ~STATUS_HCMD_ACTIVE; IPW_ERROR("Failed to send %s: Reason %d\n", get_cmd_string(cmd->cmd), rc); spin_unlock_irqrestore(&priv->lock, flags); goto exit; } spin_unlock_irqrestore(&priv->lock, flags); rc = wait_event_interruptible_timeout(priv->wait_command_queue, !(priv-> status & STATUS_HCMD_ACTIVE), HOST_COMPLETE_TIMEOUT); if (rc == 0) { spin_lock_irqsave(&priv->lock, flags); if (priv->status & STATUS_HCMD_ACTIVE) { IPW_ERROR("Failed to send %s: Command timed out.\n", get_cmd_string(cmd->cmd)); priv->status &= ~STATUS_HCMD_ACTIVE; spin_unlock_irqrestore(&priv->lock, flags); rc = -EIO; goto exit; } spin_unlock_irqrestore(&priv->lock, flags); } else rc = 0; if (priv->status & STATUS_RF_KILL_HW) { IPW_ERROR("Failed to send %s: Aborted due to RF kill switch.\n", get_cmd_string(cmd->cmd)); rc = -EIO; goto exit; } exit: if (priv->cmdlog) { priv->cmdlog[priv->cmdlog_pos++].retcode = rc; priv->cmdlog_pos %= priv->cmdlog_len; } return rc; } static int ipw_send_cmd_simple(struct ipw_priv *priv, u8 command) { struct host_cmd cmd = { .cmd = command, }; return __ipw_send_cmd(priv, &cmd); } static int ipw_send_cmd_pdu(struct ipw_priv *priv, u8 command, u8 len, void *data) { struct host_cmd cmd = { .cmd = command, .len = len, .param = data, }; return __ipw_send_cmd(priv, &cmd); } static int ipw_send_host_complete(struct ipw_priv *priv) { if (!priv) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_simple(priv, IPW_CMD_HOST_COMPLETE); } static int ipw_send_system_config(struct ipw_priv *priv, struct ipw_sys_config *config) { if (!priv || !config) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_pdu(priv, IPW_CMD_SYSTEM_CONFIG, sizeof(*config), config); } static int ipw_send_ssid(struct ipw_priv *priv, u8 * ssid, int len) { if (!priv || !ssid) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_pdu(priv, IPW_CMD_SSID, min(len, IW_ESSID_MAX_SIZE), ssid); } static int ipw_send_adapter_address(struct ipw_priv *priv, u8 * mac) { if (!priv || !mac) { IPW_ERROR("Invalid args\n"); return -1; } IPW_DEBUG_INFO("%s: Setting MAC to " MAC_FMT "\n", priv->net_dev->name, MAC_ARG(mac)); return ipw_send_cmd_pdu(priv, IPW_CMD_ADAPTER_ADDRESS, ETH_ALEN, mac); } /* * NOTE: This must be executed from our workqueue as it results in udelay * being called which may corrupt the keyboard if executed on default * workqueue */ static void ipw_adapter_restart(void *adapter) { struct ipw_priv *priv = adapter; if (priv->status & STATUS_RF_KILL_MASK) return; ipw_down(priv); if (priv->assoc_network && (priv->assoc_network->capability & WLAN_CAPABILITY_IBSS)) ipw_remove_current_network(priv); if (ipw_up(priv)) { IPW_ERROR("Failed to up device\n"); return; } } static void ipw_bg_adapter_restart(void *data) { struct ipw_priv *priv = data; mutex_lock(&priv->mutex); ipw_adapter_restart(data); mutex_unlock(&priv->mutex); } #define IPW_SCAN_CHECK_WATCHDOG (5 * HZ) static void ipw_scan_check(void *data) { struct ipw_priv *priv = data; if (priv->status & (STATUS_SCANNING | STATUS_SCAN_ABORTING)) { IPW_DEBUG_SCAN("Scan completion watchdog resetting " "adapter after (%dms).\n", jiffies_to_msecs(IPW_SCAN_CHECK_WATCHDOG)); queue_work(priv->workqueue, &priv->adapter_restart); } } static void ipw_bg_scan_check(void *data) { struct ipw_priv *priv = data; mutex_lock(&priv->mutex); ipw_scan_check(data); mutex_unlock(&priv->mutex); } static int ipw_send_scan_request_ext(struct ipw_priv *priv, struct ipw_scan_request_ext *request) { return ipw_send_cmd_pdu(priv, IPW_CMD_SCAN_REQUEST_EXT, sizeof(*request), request); } static int ipw_send_scan_abort(struct ipw_priv *priv) { if (!priv) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_simple(priv, IPW_CMD_SCAN_ABORT); } static int ipw_set_sensitivity(struct ipw_priv *priv, u16 sens) { struct ipw_sensitivity_calib calib = { .beacon_rssi_raw = sens, }; return ipw_send_cmd_pdu(priv, IPW_CMD_SENSITIVITY_CALIB, sizeof(calib), &calib); } static int ipw_send_associate(struct ipw_priv *priv, struct ipw_associate *associate) { struct ipw_associate tmp_associate; if (!priv || !associate) { IPW_ERROR("Invalid args\n"); return -1; } memcpy(&tmp_associate, associate, sizeof(*associate)); tmp_associate.policy_support = cpu_to_le16(tmp_associate.policy_support); tmp_associate.assoc_tsf_msw = cpu_to_le32(tmp_associate.assoc_tsf_msw); tmp_associate.assoc_tsf_lsw = cpu_to_le32(tmp_associate.assoc_tsf_lsw); tmp_associate.capability = cpu_to_le16(tmp_associate.capability); tmp_associate.listen_interval = cpu_to_le16(tmp_associate.listen_interval); tmp_associate.beacon_interval = cpu_to_le16(tmp_associate.beacon_interval); tmp_associate.atim_window = cpu_to_le16(tmp_associate.atim_window); return ipw_send_cmd_pdu(priv, IPW_CMD_ASSOCIATE, sizeof(tmp_associate), &tmp_associate); } static int ipw_send_supported_rates(struct ipw_priv *priv, struct ipw_supported_rates *rates) { if (!priv || !rates) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_pdu(priv, IPW_CMD_SUPPORTED_RATES, sizeof(*rates), rates); } static int ipw_set_random_seed(struct ipw_priv *priv) { u32 val; if (!priv) { IPW_ERROR("Invalid args\n"); return -1; } get_random_bytes(&val, sizeof(val)); return ipw_send_cmd_pdu(priv, IPW_CMD_SEED_NUMBER, sizeof(val), &val); } static int ipw_send_card_disable(struct ipw_priv *priv, u32 phy_off) { if (!priv) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_pdu(priv, IPW_CMD_CARD_DISABLE, sizeof(phy_off), &phy_off); } static int ipw_send_tx_power(struct ipw_priv *priv, struct ipw_tx_power *power) { if (!priv || !power) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_pdu(priv, IPW_CMD_TX_POWER, sizeof(*power), power); } static int ipw_set_tx_power(struct ipw_priv *priv) { const struct ieee80211_geo *geo = ieee80211_get_geo(priv->ieee); struct ipw_tx_power tx_power; s8 max_power; int i; memset(&tx_power, 0, sizeof(tx_power)); /* configure device for 'G' band */ tx_power.ieee_mode = IPW_G_MODE; tx_power.num_channels = geo->bg_channels; for (i = 0; i < geo->bg_channels; i++) { max_power = geo->bg[i].max_power; tx_power.channels_tx_power[i].channel_number = geo->bg[i].channel; tx_power.channels_tx_power[i].tx_power = max_power ? min(max_power, priv->tx_power) : priv->tx_power; } if (ipw_send_tx_power(priv, &tx_power)) return -EIO; /* configure device to also handle 'B' band */ tx_power.ieee_mode = IPW_B_MODE; if (ipw_send_tx_power(priv, &tx_power)) return -EIO; /* configure device to also handle 'A' band */ if (priv->ieee->abg_true) { tx_power.ieee_mode = IPW_A_MODE; tx_power.num_channels = geo->a_channels; for (i = 0; i < tx_power.num_channels; i++) { max_power = geo->a[i].max_power; tx_power.channels_tx_power[i].channel_number = geo->a[i].channel; tx_power.channels_tx_power[i].tx_power = max_power ? min(max_power, priv->tx_power) : priv->tx_power; } if (ipw_send_tx_power(priv, &tx_power)) return -EIO; } return 0; } static int ipw_send_rts_threshold(struct ipw_priv *priv, u16 rts) { struct ipw_rts_threshold rts_threshold = { .rts_threshold = rts, }; if (!priv) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_pdu(priv, IPW_CMD_RTS_THRESHOLD, sizeof(rts_threshold), &rts_threshold); } static int ipw_send_frag_threshold(struct ipw_priv *priv, u16 frag) { struct ipw_frag_threshold frag_threshold = { .frag_threshold = frag, }; if (!priv) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_pdu(priv, IPW_CMD_FRAG_THRESHOLD, sizeof(frag_threshold), &frag_threshold); } static int ipw_send_power_mode(struct ipw_priv *priv, u32 mode) { u32 param; if (!priv) { IPW_ERROR("Invalid args\n"); return -1; } /* If on battery, set to 3, if AC set to CAM, else user * level */ switch (mode) { case IPW_POWER_BATTERY: param = IPW_POWER_INDEX_3; break; case IPW_POWER_AC: param = IPW_POWER_MODE_CAM; break; default: param = mode; break; } return ipw_send_cmd_pdu(priv, IPW_CMD_POWER_MODE, sizeof(param), &param); } static int ipw_send_retry_limit(struct ipw_priv *priv, u8 slimit, u8 llimit) { struct ipw_retry_limit retry_limit = { .short_retry_limit = slimit, .long_retry_limit = llimit }; if (!priv) { IPW_ERROR("Invalid args\n"); return -1; } return ipw_send_cmd_pdu(priv, IPW_CMD_RETRY_LIMIT, sizeof(retry_limit), &retry_limit); } /* * The IPW device contains a Microwire compatible EEPROM that stores * various data like the MAC address. Usually the firmware has exclusive * access to the eeprom, but during device initialization (before the * device driver has sent the HostComplete command to the firmware) the * device driver has read access to the EEPROM by way of indirect addressing * through a couple of memory mapped registers. * * The following is a simplified implementation for pulling data out of the * the eeprom, along with some helper functions to find information in * the per device private data's copy of the eeprom. * * NOTE: To better understand how these functions work (i.e what is a chip * select and why do have to keep driving the eeprom clock?), read * just about any data sheet for a Microwire compatible EEPROM. */ /* write a 32 bit value into the indirect accessor register */ static inline void eeprom_write_reg(struct ipw_priv *p, u32 data) { ipw_write_reg32(p, FW_MEM_REG_EEPROM_ACCESS, data); /* the eeprom requires some time to complete the operation */ udelay(p->eeprom_delay); return; } /* perform a chip select operation */ static void eeprom_cs(struct ipw_priv *priv) { eeprom_write_reg(priv, 0); eeprom_write_reg(priv, EEPROM_BIT_CS); eeprom_write_reg(priv, EEPROM_BIT_CS | EEPROM_BIT_SK); eeprom_write_reg(priv, EEPROM_BIT_CS); } /* perform a chip select operation */ static void eeprom_disable_cs(struct ipw_priv *priv) { eeprom_write_reg(priv, EEPROM_BIT_CS); eeprom_write_reg(priv, 0); eeprom_write_reg(priv, EEPROM_BIT_SK); } /* push a single bit down to the eeprom */ static inline void eeprom_write_bit(struct ipw_priv *p, u8 bit) { int d = (bit ? EEPROM_BIT_DI : 0); eeprom_write_reg(p, EEPROM_BIT_CS | d); eeprom_write_reg(p, EEPROM_BIT_CS | d | EEPROM_BIT_SK); } /* push an opcode followed by an address down to the eeprom */ static void eeprom_op(struct ipw_priv *priv, u8 op, u8 addr) { int i; eeprom_cs(priv); eeprom_write_bit(priv, 1); eeprom_write_bit(priv, op & 2); eeprom_write_bit(priv, op & 1); for (i = 7; i >= 0; i--) { eeprom_write_bit(priv, addr & (1 << i)); } } /* pull 16 bits off the eeprom, one bit at a time */ static u16 eeprom_read_u16(struct ipw_priv *priv, u8 addr) { int i; u16 r = 0; /* Send READ Opcode */ eeprom_op(priv, EEPROM_CMD_READ, addr); /* Send dummy bit */ eeprom_write_reg(priv, EEPROM_BIT_CS); /* Read the byte off the eeprom one bit at a time */ for (i = 0; i < 16; i++) { u32 data = 0; eeprom_write_reg(priv, EEPROM_BIT_CS | EEPROM_BIT_SK); eeprom_write_reg(priv, EEPROM_BIT_CS); data = ipw_read_reg32(priv, FW_MEM_REG_EEPROM_ACCESS); r = (r << 1) | ((data & EEPROM_BIT_DO) ? 1 : 0); } /* Send another dummy bit */ eeprom_write_reg(priv, 0); eeprom_disable_cs(priv); return r; } /* helper function for pulling the mac address out of the private */ /* data's copy of the eeprom data */ static void eeprom_parse_mac(struct ipw_priv *priv, u8 * mac) { memcpy(mac, &priv->eeprom[EEPROM_MAC_ADDRESS], 6); } /* * Either the device driver (i.e. the host) or the firmware can * load eeprom data into the designated region in SRAM. If neither * happens then the FW will shutdown with a fatal error. * * In order to signal the FW to load the EEPROM, the EEPROM_LOAD_DISABLE * bit needs region of shared SRAM needs to be non-zero. */ static void ipw_eeprom_init_sram(struct ipw_priv *priv) { int i; u16 *eeprom = (u16 *) priv->eeprom; IPW_DEBUG_TRACE(">>\n"); /* read entire contents of eeprom into private buffer */ for (i = 0; i < 128; i++) eeprom[i] = le16_to_cpu(eeprom_read_u16(priv, (u8) i)); /* If the data looks correct, then copy it to our private copy. Otherwise let the firmware know to perform the operation on its own. */ if (priv->eeprom[EEPROM_VERSION] != 0) { IPW_DEBUG_INFO("Writing EEPROM data into SRAM\n"); /* write the eeprom data to sram */ for (i = 0; i < IPW_EEPROM_IMAGE_SIZE; i++) ipw_write8(priv, IPW_EEPROM_DATA + i, priv->eeprom[i]); /* Do not load eeprom data on fatal error or suspend */ ipw_write32(priv, IPW_EEPROM_LOAD_DISABLE, 0); } else { IPW_DEBUG_INFO("Enabling FW initializationg of SRAM\n"); /* Load eeprom data on fatal error or suspend */ ipw_write32(priv, IPW_EEPROM_LOAD_DISABLE, 1); } IPW_DEBUG_TRACE("<<\n"); } static void ipw_zero_memory(struct ipw_priv *priv, u32 start, u32 count) { count >>= 2; if (!count) return; _ipw_write32(priv, IPW_AUTOINC_ADDR, start); while (count--) _ipw_write32(priv, IPW_AUTOINC_DATA, 0); } static inline void ipw_fw_dma_reset_command_blocks(struct ipw_priv *priv) { ipw_zero_memory(priv, IPW_SHARED_SRAM_DMA_CONTROL, CB_NUMBER_OF_ELEMENTS_SMALL * sizeof(struct command_block)); } static int ipw_fw_dma_enable(struct ipw_priv *priv) { /* start dma engine but no transfers yet */ IPW_DEBUG_FW(">> : \n"); /* Start the dma */ ipw_fw_dma_reset_command_blocks(priv); /* Write CB base address */ ipw_write_reg32(priv, IPW_DMA_I_CB_BASE, IPW_SHARED_SRAM_DMA_CONTROL); IPW_DEBUG_FW("<< : \n"); return 0; } static void ipw_fw_dma_abort(struct ipw_priv *priv) { u32 control = 0; IPW_DEBUG_FW(">> :\n"); //set the Stop and Abort bit control = DMA_CONTROL_SMALL_CB_CONST_VALUE | DMA_CB_STOP_AND_ABORT; ipw_write_reg32(priv, IPW_DMA_I_DMA_CONTROL, control); priv->sram_desc.last_cb_index = 0; IPW_DEBUG_FW("<< \n"); } static int ipw_fw_dma_write_command_block(struct ipw_priv *priv, int index, struct command_block *cb) { u32 address = IPW_SHARED_SRAM_DMA_CONTROL + (sizeof(struct command_block) * index); IPW_DEBUG_FW(">> :\n"); ipw_write_indirect(priv, address, (u8 *) cb, (int)sizeof(struct command_block)); IPW_DEBUG_FW("<< :\n"); return 0; } static int ipw_fw_dma_kick(struct ipw_priv *priv) { u32 control = 0; u32 index = 0; IPW_DEBUG_FW(">> :\n"); for (index = 0; index < priv->sram_desc.last_cb_index; index++) ipw_fw_dma_write_command_block(priv, index, &priv->sram_desc.cb_list[index]); /* Enable the DMA in the CSR register */ ipw_clear_bit(priv, IPW_RESET_REG, IPW_RESET_REG_MASTER_DISABLED | IPW_RESET_REG_STOP_MASTER); /* Set the Start bit. */ control = DMA_CONTROL_SMALL_CB_CONST_VALUE | DMA_CB_START; ipw_write_reg32(priv, IPW_DMA_I_DMA_CONTROL, control); IPW_DEBUG_FW("<< :\n"); return 0; } static void ipw_fw_dma_dump_command_block(struct ipw_priv *priv) { u32 address; u32 register_value = 0; u32 cb_fields_address = 0; IPW_DEBUG_FW(">> :\n"); address = ipw_read_reg32(priv, IPW_DMA_I_CURRENT_CB); IPW_DEBUG_FW_INFO("Current CB is 0x%x \n", address); /* Read the DMA Controlor register */ register_value = ipw_read_reg32(priv, IPW_DMA_I_DMA_CONTROL); IPW_DEBUG_FW_INFO("IPW_DMA_I_DMA_CONTROL is 0x%x \n", register_value); /* Print the CB values */ cb_fields_address = address; register_value = ipw_read_reg32(priv, cb_fields_address); IPW_DEBUG_FW_INFO("Current CB ControlField is 0x%x \n", register_value); cb_fields_address += sizeof(u32); register_value = ipw_read_reg32(priv, cb_fields_address); IPW_DEBUG_FW_INFO("Current CB Source Field is 0x%x \n", register_value); cb_fields_address += sizeof(u32); register_value = ipw_read_reg32(priv, cb_fields_address); IPW_DEBUG_FW_INFO("Current CB Destination Field is 0x%x \n", register_value); cb_fields_address += sizeof(u32); register_value = ipw_read_reg32(priv, cb_fields_address); IPW_DEBUG_FW_INFO("Current CB Status Field is 0x%x \n", register_value); IPW_DEBUG_FW(">> :\n"); } static int ipw_fw_dma_command_block_index(struct ipw_priv *priv) { u32 current_cb_address = 0; u32 current_cb_index = 0; IPW_DEBUG_FW("<< :\n"); current_cb_address = ipw_read_reg32(priv, IPW_DMA_I_CURRENT_CB); current_cb_index = (current_cb_address - IPW_SHARED_SRAM_DMA_CONTROL) / sizeof(struct command_block); IPW_DEBUG_FW_INFO("Current CB index 0x%x address = 0x%X \n", current_cb_index, current_cb_address); IPW_DEBUG_FW(">> :\n"); return current_cb_index; } static int ipw_fw_dma_add_command_block(struct ipw_priv *priv, u32 src_address, u32 dest_address, u32 length, int interrupt_enabled, int is_last) { u32 control = CB_VALID | CB_SRC_LE | CB_DEST_LE | CB_SRC_AUTOINC | CB_SRC_IO_GATED | CB_DEST_AUTOINC | CB_SRC_SIZE_LONG | CB_DEST_SIZE_LONG; struct command_block *cb; u32 last_cb_element = 0; IPW_DEBUG_FW_INFO("src_address=0x%x dest_address=0x%x length=0x%x\n", src_address, dest_address, length); if (priv->sram_desc.last_cb_index >= CB_NUMBER_OF_ELEMENTS_SMALL) return -1; last_cb_element = priv->sram_desc.last_cb_index; cb = &priv->sram_desc.cb_list[last_cb_element]; priv->sram_desc.last_cb_index++; /* Calculate the new CB control word */ if (interrupt_enabled) control |= CB_INT_ENABLED; if (is_last) control |= CB_LAST_VALID; control |= length; /* Calculate the CB Element's checksum value */ cb->status = control ^ src_address ^ dest_address; /* Copy the Source and Destination addresses */ cb->dest_addr = dest_address; cb->source_addr = src_address; /* Copy the Control Word last */ cb->control = control; return 0; } static int ipw_fw_dma_add_buffer(struct ipw_priv *priv, u32 src_phys, u32 dest_address, u32 length) { u32 bytes_left = length; u32 src_offset = 0; u32 dest_offset = 0; int status = 0; IPW_DEBUG_FW(">> \n"); IPW_DEBUG_FW_INFO("src_phys=0x%x dest_address=0x%x length=0x%x\n", src_phys, dest_address, length); while (bytes_left > CB_MAX_LENGTH) { status = ipw_fw_dma_add_command_block(priv, src_phys + src_offset, dest_address + dest_offset, CB_MAX_LENGTH, 0, 0); if (status) { IPW_DEBUG_FW_INFO(": Failed\n"); return -1; } else IPW_DEBUG_FW_INFO(": Added new cb\n"); src_offset += CB_MAX_LENGTH; dest_offset += CB_MAX_LENGTH; bytes_left -= CB_MAX_LENGTH; } /* add the buffer tail */ if (bytes_left > 0) { status = ipw_fw_dma_add_command_block(priv, src_phys + src_offset, dest_address + dest_offset, bytes_left, 0, 0); if (status) { IPW_DEBUG_FW_INFO(": Failed on the buffer tail\n"); return -1; } else IPW_DEBUG_FW_INFO (": Adding new cb - the buffer tail\n"); } IPW_DEBUG_FW("<< \n"); return 0; } static int ipw_fw_dma_wait(struct ipw_priv *priv) { u32 current_index = 0, previous_index; u32 watchdog = 0; IPW_DEBUG_FW(">> : \n"); current_index = ipw_fw_dma_command_block_index(priv); IPW_DEBUG_FW_INFO("sram_desc.last_cb_index:0x%08X\n", (int)priv->sram_desc.last_cb_index); while (current_index < priv->sram_desc.last_cb_index) { udelay(50); previous_index = current_index; current_index = ipw_fw_dma_command_block_index(priv); if (previous_index < current_index) { watchdog = 0; continue; } if (++watchdog > 400) { IPW_DEBUG_FW_INFO("Timeout\n"); ipw_fw_dma_dump_command_block(priv); ipw_fw_dma_abort(priv); return -1; } } ipw_fw_dma_abort(priv); /*Disable the DMA in the CSR register */ ipw_set_bit(priv, IPW_RESET_REG, IPW_RESET_REG_MASTER_DISABLED | IPW_RESET_REG_STOP_MASTER); IPW_DEBUG_FW("<< dmaWaitSync \n"); return 0; } static void ipw_remove_current_network(struct ipw_priv *priv) { struct list_head *element, *safe; struct ieee80211_network *network = NULL; unsigned long flags; spin_lock_irqsave(&priv->ieee->lock, flags); list_for_each_safe(element, safe, &priv->ieee->network_list) { network = list_entry(element, struct ieee80211_network, list); if (!memcmp(network->bssid, priv->bssid, ETH_ALEN)) { list_del(element); list_add_tail(&network->list, &priv->ieee->network_free_list); } } spin_unlock_irqrestore(&priv->ieee->lock, flags); } /** * Check that card is still alive. * Reads debug register from domain0. * If card is present, pre-defined value should * be found there. * * @param priv * @return 1 if card is present, 0 otherwise */ static inline int ipw_alive(struct ipw_priv *priv) { return ipw_read32(priv, 0x90) == 0xd55555d5; } /* timeout in msec, attempted in 10-msec quanta */ static int ipw_poll_bit(struct ipw_priv *priv, u32 addr, u32 mask, int timeout) { int i = 0; do { if ((ipw_read32(priv, addr) & mask) == mask) return i; mdelay(10); i += 10; } while (i < timeout); return -ETIME; } /* These functions load the firmware and micro code for the operation of * the ipw hardware. It assumes the buffer has all the bits for the * image and the caller is handling the memory allocation and clean up. */ static int ipw_stop_master(struct ipw_priv *priv) { int rc; IPW_DEBUG_TRACE(">> \n"); /* stop master. typical delay - 0 */ ipw_set_bit(priv, IPW_RESET_REG, IPW_RESET_REG_STOP_MASTER); /* timeout is in msec, polled in 10-msec quanta */ rc = ipw_poll_bit(priv, IPW_RESET_REG, IPW_RESET_REG_MASTER_DISABLED, 100); if (rc < 0) { IPW_ERROR("wait for stop master failed after 100ms\n"); return -1; } IPW_DEBUG_INFO("stop master %dms\n", rc); return rc; } static void ipw_arc_release(struct ipw_priv *priv) { IPW_DEBUG_TRACE(">> \n"); mdelay(5); ipw_clear_bit(priv, IPW_RESET_REG, CBD_RESET_REG_PRINCETON_RESET); /* no one knows timing, for safety add some delay */ mdelay(5); } struct fw_chunk { u32 address; u32 length; }; static int ipw_load_ucode(struct ipw_priv *priv, u8 * data, size_t len) { int rc = 0, i, addr; u8 cr = 0; u16 *image; image = (u16 *) data; IPW_DEBUG_TRACE(">> \n"); rc = ipw_stop_master(priv); if (rc < 0) return rc; // spin_lock_irqsave(&priv->lock, flags); for (addr = IPW_SHARED_LOWER_BOUND; addr < IPW_REGISTER_DOMAIN1_END; addr += 4) { ipw_write32(priv, addr, 0); } /* no ucode (yet) */ memset(&priv->dino_alive, 0, sizeof(priv->dino_alive)); /* destroy DMA queues */ /* reset sequence */ ipw_write_reg32(priv, IPW_MEM_HALT_AND_RESET, IPW_BIT_HALT_RESET_ON); ipw_arc_release(priv); ipw_write_reg32(priv, IPW_MEM_HALT_AND_RESET, IPW_BIT_HALT_RESET_OFF); mdelay(1); /* reset PHY */ ipw_write_reg32(priv, IPW_INTERNAL_CMD_EVENT, IPW_BASEBAND_POWER_DOWN); mdelay(1); ipw_write_reg32(priv, IPW_INTERNAL_CMD_EVENT, 0); mdelay(1); /* enable ucode store */ ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, 0x0); ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, DINO_ENABLE_CS); mdelay(1); /* write ucode */ /** * @bug * Do NOT set indirect address register once and then * store data to indirect data register in the loop. * It seems very reasonable, but in this case DINO do not * accept ucode. It is essential to set address each time. */ /* load new ipw uCode */ for (i = 0; i < len / 2; i++) ipw_write_reg16(priv, IPW_BASEBAND_CONTROL_STORE, cpu_to_le16(image[i])); /* enable DINO */ ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, 0); ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, DINO_ENABLE_SYSTEM); /* this is where the igx / win driver deveates from the VAP driver. */ /* wait for alive response */ for (i = 0; i < 100; i++) { /* poll for incoming data */ cr = ipw_read_reg8(priv, IPW_BASEBAND_CONTROL_STATUS); if (cr & DINO_RXFIFO_DATA) break; mdelay(1); } if (cr & DINO_RXFIFO_DATA) { /* alive_command_responce size is NOT multiple of 4 */ u32 response_buffer[(sizeof(priv->dino_alive) + 3) / 4]; for (i = 0; i < ARRAY_SIZE(response_buffer); i++) response_buffer[i] = le32_to_cpu(ipw_read_reg32(priv, IPW_BASEBAND_RX_FIFO_READ)); memcpy(&priv->dino_alive, response_buffer, sizeof(priv->dino_alive)); if (priv->dino_alive.alive_command == 1 && priv->dino_alive.ucode_valid == 1) { rc = 0; IPW_DEBUG_INFO ("Microcode OK, rev. %d (0x%x) dev. %d (0x%x) " "of %02d/%02d/%02d %02d:%02d\n", priv->dino_alive.software_revision, priv->dino_alive.software_revision, priv->dino_alive.device_identifier, priv->dino_alive.device_identifier, priv->dino_alive.time_stamp[0], priv->dino_alive.time_stamp[1], priv->dino_alive.time_stamp[2], priv->dino_alive.time_stamp[3], priv->dino_alive.time_stamp[4]); } else { IPW_DEBUG_INFO("Microcode is not alive\n"); rc = -EINVAL; } } else { IPW_DEBUG_INFO("No alive response from DINO\n"); rc = -ETIME; } /* disable DINO, otherwise for some reason firmware have problem getting alive resp. */ ipw_write_reg8(priv, IPW_BASEBAND_CONTROL_STATUS, 0); // spin_unlock_irqrestore(&priv->lock, flags); return rc; } static int ipw_load_firmware(struct ipw_priv *priv, u8 * data, size_t len) { int rc = -1; int offset = 0; struct fw_chunk *chunk; dma_addr_t shared_phys; u8 *shared_virt; IPW_DEBUG_TRACE("<< : \n"); shared_virt = pci_alloc_consistent(priv->pci_dev, len, &shared_phys); if (!shared_virt) return -ENOMEM; memmove(shared_virt, data, len); /* Start the Dma */ rc = ipw_fw_dma_enable(priv); if (priv->sram_desc.last_cb_index > 0) { /* the DMA is already ready this would be a bug. */ BUG(); goto out; } do { chunk = (struct fw_chunk *)(data + offset); offset += sizeof(struct fw_chunk); /* build DMA packet and queue up for sending */ /* dma to chunk->address, the chunk->length bytes from data + * offeset*/ /* Dma loading */ rc = ipw_fw_dma_add_buffer(priv, shared_phys + offset, le32_to_cpu(chunk->address), le32_to_cpu(chunk->length)); if (rc) { IPW_DEBUG_INFO("dmaAddBuffer Failed\n"); goto out; } offset += le32_to_cpu(chunk->length); } while (offset < len); /* Run the DMA and wait for the answer */ rc = ipw_fw_dma_kick(priv); if (rc) { IPW_ERROR("dmaKick Failed\n"); goto out; } rc = ipw_fw_dma_wait(priv); if (rc) { IPW_ERROR("dmaWaitSync Failed\n"); goto out; } out: pci_free_consistent(priv->pci_dev, len, shared_virt, shared_phys); return rc; } /* stop nic */ static int ipw_stop_nic(struct ipw_priv *priv) { int rc = 0; /* stop */ ipw_write32(priv, IPW_RESET_REG, IPW_RESET_REG_STOP_MASTER); rc = ipw_poll_bit(priv, IPW_RESET_REG, IPW_RESET_REG_MASTER_DISABLED, 500); if (rc < 0) { IPW_ERROR("wait for reg master disabled failed after 500ms\n"); return rc; } ipw_set_bit(priv, IPW_RESET_REG, CBD_RESET_REG_PRINCETON_RESET); return rc; } static void ipw_start_nic(struct ipw_priv *priv) { IPW_DEBUG_TRACE(">>\n"); /* prvHwStartNic release ARC */ ipw_clear_bit(priv, IPW_RESET_REG, IPW_RESET_REG_MASTER_DISABLED | IPW_RESET_REG_STOP_MASTER | CBD_RESET_REG_PRINCETON_RESET); /* enable power management */ ipw_set_bit(priv, IPW_GP_CNTRL_RW, IPW_GP_CNTRL_BIT_HOST_ALLOWS_STANDBY); IPW_DEBUG_TRACE("<<\n"); } static int ipw_init_nic(struct ipw_priv *priv) { int rc; IPW_DEBUG_TRACE(">>\n"); /* reset */ /*prvHwInitNic */ /* set "initialization complete" bit to move adapter to D0 state */ ipw_set_bit(priv, IPW_GP_CNTRL_RW, IPW_GP_CNTRL_BIT_INIT_DONE); /* low-level PLL activation */ ipw_write32(priv, IPW_READ_INT_REGISTER, IPW_BIT_INT_HOST_SRAM_READ_INT_REGISTER); /* wait for clock stabilization */ rc = ipw_poll_bit(priv, IPW_GP_CNTRL_RW, IPW_GP_CNTRL_BIT_CLOCK_READY, 250); if (rc < 0) IPW_DEBUG_INFO("FAILED wait for clock stablization\n"); /* assert SW reset */ ipw_set_bit(priv, IPW_RESET_REG, IPW_RESET_REG_SW_RESET); udelay(10); /* set "initialization complete" bit to move adapter to D0 state */ ipw_set_bit(priv, IPW_GP_CNTRL_RW, IPW_GP_CNTRL_BIT_INIT_DONE); IPW_DEBUG_TRACE(">>\n"); return 0; } /* Call this function from process context, it will sleep in request_firmware. * Probe is an ok place to call this from. */ static int ipw_reset_nic(struct ipw_priv *priv) { int rc = 0; unsigned long flags; IPW_DEBUG_TRACE(">>\n"); rc = ipw_init_nic(priv); spin_lock_irqsave(&priv->lock, flags); /* Clear the 'host command active' bit... */ priv->status &= ~STATUS_HCMD_ACTIVE; wake_up_interruptible(&priv->wait_command_queue); priv->status &= ~(STATUS_SCANNING | STATUS_SCAN_ABORTING); wake_up_interruptible(&priv->wait_state); spin_unlock_irqrestore(&priv->lock, flags); IPW_DEBUG_TRACE("<<\n"); return rc; } struct ipw_fw { u32 ver; u32 boot_size; u32 ucode_size; u32 fw_size; u8 data[0]; }; static int ipw_get_fw(struct ipw_priv *priv, const struct firmware **raw, const char *name) { struct ipw_fw *fw; int rc; /* ask firmware_class module to get the boot firmware off disk */ rc = request_firmware(raw, name, &priv->pci_dev->dev); if (rc < 0) { IPW_ERROR("%s request_firmware failed: Reason %d\n", name, rc); return rc; } if ((*raw)->size < sizeof(*fw)) { IPW_ERROR("%s is too small (%zd)\n", name, (*raw)->size); return -EINVAL; } fw = (void *)(*raw)->data; if ((*raw)->size < sizeof(*fw) + fw->boot_size + fw->ucode_size + fw->fw_size) { IPW_ERROR("%s is too small or corrupt (%zd)\n", name, (*raw)->size); return -EINVAL; } IPW_DEBUG_INFO("Read firmware '%s' image v%d.%d (%zd bytes)\n", name, le32_to_cpu(fw->ver) >> 16, le32_to_cpu(fw->ver) & 0xff, (*raw)->size - sizeof(*fw)); return 0; } #define IPW_RX_BUF_SIZE (3000) static void ipw_rx_queue_reset(struct ipw_priv *priv, struct ipw_rx_queue *rxq) { unsigned long flags; int i; spin_lock_irqsave(&rxq->lock, flags); INIT_LIST_HEAD(&rxq->rx_free); INIT_LIST_HEAD(&rxq->rx_used); /* Fill the rx_used queue with _all_ of the Rx buffers */ for (i = 0; i < RX_FREE_BUFFERS + RX_QUEUE_SIZE; i++) { /* In the reset function, these buffers may have been allocated * to an SKB, so we need to unmap and free potential storage */ if (rxq->pool[i].skb != NULL) { pci_unmap_single(priv->pci_dev, rxq->pool[i].dma_addr, IPW_RX_BUF_SIZE, PCI_DMA_FROMDEVICE); dev_kfree_skb(rxq->pool[i].skb); rxq->pool[i].skb = NULL; } list_add_tail(&rxq->pool[i].list, &rxq->rx_used); } /* Set us so that we have processed and used all buffers, but have * not restocked the Rx queue with fresh buffers */ rxq->read = rxq->write = 0; rxq->processed = RX_QUEUE_SIZE - 1; rxq->free_count = 0; spin_unlock_irqrestore(&rxq->lock, flags); } #ifdef CONFIG_PM static int fw_loaded = 0; static const struct firmware *raw = NULL; static void free_firmware(void) { if (fw_loaded) { release_firmware(raw); raw = NULL; fw_loaded = 0; } } #else #define free_firmware() do {} while (0) #endif static int ipw_load(struct ipw_priv *priv) { #ifndef CONFIG_PM const struct firmware *raw = NULL; #endif struct ipw_fw *fw; u8 *boot_img, *ucode_img, *fw_img; u8 *name = NULL; int rc = 0, retries = 3; switch (priv->ieee->iw_mode) { case IW_MODE_ADHOC: name = "ipw2200-ibss.fw"; break; #ifdef CONFIG_IPW2200_MONITOR case IW_MODE_MONITOR: name = "ipw2200-sniffer.fw"; break; #endif case IW_MODE_INFRA: name = "ipw2200-bss.fw"; break; } if (!name) { rc = -EINVAL; goto error; } #ifdef CONFIG_PM if (!fw_loaded) { #endif rc = ipw_get_fw(priv, &raw, name); if (rc < 0) goto error; #ifdef CONFIG_PM } #endif fw = (void *)raw->data; boot_img = &fw->data[0]; ucode_img = &fw->data[fw->boot_size]; fw_img = &fw->data[fw->boot_size + fw->ucode_size]; if (rc < 0) goto error; if (!priv->rxq) priv->rxq = ipw_rx_queue_alloc(priv); else ipw_rx_queue_reset(priv, priv->rxq); if (!priv->rxq) { IPW_ERROR("Unable to initialize Rx queue\n"); goto error; } retry: /* Ensure interrupts are disabled */ ipw_write32(priv, IPW_INTA_MASK_R, ~IPW_INTA_MASK_ALL); priv->status &= ~STATUS_INT_ENABLED; /* ack pending interrupts */ ipw_write32(priv, IPW_INTA_RW, IPW_INTA_MASK_ALL); ipw_stop_nic(priv); rc = ipw_reset_nic(priv); if (rc < 0) { IPW_ERROR("Unable to reset NIC\n"); goto error; } ipw_zero_memory(priv, IPW_NIC_SRAM_LOWER_BOUND, IPW_NIC_SRAM_UPPER_BOUND - IPW_NIC_SRAM_LOWER_BOUND); /* DMA the initial boot firmware into the device */ rc = ipw_load_firmware(priv, boot_img, fw->boot_size); if (rc < 0) { IPW_ERROR("Unable to load boot firmware: %d\n", rc); goto error; } /* kick start the device */ ipw_start_nic(priv); /* wait for the device to finish its initial startup sequence */ rc = ipw_poll_bit(priv, IPW_INTA_RW, IPW_INTA_BIT_FW_INITIALIZATION_DONE, 500); if (rc < 0) { IPW_ERROR("device failed to boot initial fw image\n"); goto error; } IPW_DEBUG_INFO("initial device response after %dms\n", rc); /* ack fw init done interrupt */ ipw_write32(priv, IPW_INTA_RW, IPW_INTA_BIT_FW_INITIALIZATION_DONE); /* DMA the ucode into the device */ rc = ipw_load_ucode(priv, ucode_img, fw->ucode_size); if (rc < 0) { IPW_ERROR("Unable to load ucode: %d\n", rc); goto error; } /* stop nic */ ipw_stop_nic(priv); /* DMA bss firmware into the device */ rc = ipw_load_firmware(priv, fw_img, fw->fw_size); if (rc < 0) { IPW_ERROR("Unable to load firmware: %d\n", rc); goto error; } #ifdef CONFIG_PM fw_loaded = 1; #endif ipw_write32(priv, IPW_EEPROM_LOAD_DISABLE, 0); rc = ipw_queue_reset(priv); if (rc < 0) { IPW_ERROR("Unable to initialize queues\n"); goto error; } /* Ensure interrupts are disabled */ ipw_write32(priv, IPW_INTA_MASK_R, ~IPW_INTA_MASK_ALL); /* ack pending interrupts */ ipw_write32(priv, IPW_INTA_RW, IPW_INTA_MASK_ALL); /* kick start the device */ ipw_start_nic(priv); if (ipw_read32(priv, IPW_INTA_RW) & IPW_INTA_BIT_PARITY_ERROR) { if (retries > 0) { IPW_WARNING("Parity error. Retrying init.\n"); retries--; goto retry; } IPW_ERROR("TODO: Handle parity error -- schedule restart?\n"); rc = -EIO; goto error; } /* wait for the device */ rc = ipw_poll_bit(priv, IPW_INTA_RW, IPW_INTA_BIT_FW_INITIALIZATION_DONE, 500); if (rc < 0) { IPW_ERROR("device failed to start within 500ms\n"); goto error; } IPW_DEBUG_INFO("device response after %dms\n", rc); /* ack fw init done interrupt */ ipw_write32(priv, IPW_INTA_RW, IPW_INTA_BIT_FW_INITIALIZATION_DONE); /* read eeprom data and initialize the eeprom region of sram */ priv->eeprom_delay = 1; ipw_eeprom_init_sram(priv); /* enable interrupts */ ipw_enable_interrupts(priv); /* Ensure our queue has valid packets */ ipw_rx_queue_replenish(priv); ipw_write32(priv, IPW_RX_READ_INDEX, priv->rxq->read); /* ack pending interrupts */ ipw_write32(priv, IPW_INTA_RW, IPW_INTA_MASK_ALL); #ifndef CONFIG_PM release_firmware(raw); #endif return 0; error: if (priv->rxq) { ipw_rx_queue_free(priv, priv->rxq); priv->rxq = NULL; } ipw_tx_queue_free(priv); if (raw) release_firmware(raw); #ifdef CONFIG_PM fw_loaded = 0; raw = NULL; #endif return rc; } /** * DMA services * * Theory of operation * * A queue is a circular buffers with 'Read' and 'Write' pointers. * 2 empty entries always kept in the buffer to protect from overflow. * * For Tx queue, there are low mark and high mark limits. If, after queuing * the packet for Tx, free space become < low mark, Tx queue stopped. When * reclaiming packets (on 'tx done IRQ), if free space become > high mark, * Tx queue resumed. * * The IPW operates with six queues, one receive queue in the device's * sram, one transmit queue for sending commands to the device firmware, * and four transmit queues for data. * * The four transmit queues allow for performing quality of service (qos) * transmissions as per the 802.11 protocol. Currently Linux does not * provide a mechanism to the user for utilizing prioritized queues, so * we only utilize the first data transmit queue (queue1). */ /** * Driver allocates buffers of this size for Rx */ static inline int ipw_queue_space(const struct clx2_queue *q) { int s = q->last_used - q->first_empty; if (s <= 0) s += q->n_bd; s -= 2; /* keep some reserve to not confuse empty and full situations */ if (s < 0) s = 0; return s; } static inline int ipw_queue_inc_wrap(int index, int n_bd) { return (++index == n_bd) ? 0 : index; } /** * Initialize common DMA queue structure * * @param q queue to init * @param count Number of BD's to allocate. Should be power of 2 * @param read_register Address for 'read' register * (not offset within BAR, full address) * @param write_register Address for 'write' register * (not offset within BAR, full address) * @param base_register Address for 'base' register * (not offset within BAR, full address) * @param size Address for 'size' register * (not offset within BAR, full address) */ static void ipw_queue_init(struct ipw_priv *priv, struct clx2_queue *q, int count, u32 read, u32 write, u32 base, u32 size) { q->n_bd = count; q->low_mark = q->n_bd / 4; if (q->low_mark < 4) q->low_mark = 4; q->high_mark = q->n_bd / 8; if (q->high_mark < 2) q->high_mark = 2; q->first_empty = q->last_used = 0; q->reg_r = read; q->reg_w = write; ipw_write32(priv, base, q->dma_addr); ipw_write32(priv, size, count); ipw_write32(priv, read, 0); ipw_write32(priv, write, 0); _ipw_read32(priv, 0x90); } static int ipw_queue_tx_init(struct ipw_priv *priv, struct clx2_tx_queue *q, int count, u32 read, u32 write, u32 base, u32 size) { struct pci_dev *dev = priv->pci_dev; q->txb = kmalloc(sizeof(q->txb[0]) * count, GFP_KERNEL); if (!q->txb) { IPW_ERROR("vmalloc for auxilary BD structures failed\n"); return -ENOMEM; } q->bd = pci_alloc_consistent(dev, sizeof(q->bd[0]) * count, &q->q.dma_addr); if (!q->bd) { IPW_ERROR("pci_alloc_consistent(%zd) failed\n", sizeof(q->bd[0]) * count); kfree(q->txb); q->txb = NULL; return -ENOMEM; } ipw_queue_init(priv, &q->q, count, read, write, base, size); return 0; } /** * Free one TFD, those at index [txq->q.last_used]. * Do NOT advance any indexes * * @param dev * @param txq */ static void ipw_queue_tx_free_tfd(struct ipw_priv *priv, struct clx2_tx_queue *txq) { struct tfd_frame *bd = &txq->bd[txq->q.last_used]; struct pci_dev *dev = priv->pci_dev; int i; /* classify bd */ if (bd->control_flags.message_type == TX_HOST_COMMAND_TYPE) /* nothing to cleanup after for host commands */ return; /* sanity check */ if (le32_to_cpu(bd->u.data.num_chunks) > NUM_TFD_CHUNKS) { IPW_ERROR("Too many chunks: %i\n", le32_to_cpu(bd->u.data.num_chunks)); /** @todo issue fatal error, it is quite serious situation */ return; } /* unmap chunks if any */ for (i = 0; i < le32_to_cpu(bd->u.data.num_chunks); i++) { pci_unmap_single(dev, le32_to_cpu(bd->u.data.chunk_ptr[i]), le16_to_cpu(bd->u.data.chunk_len[i]), PCI_DMA_TODEVICE); if (txq->txb[txq->q.last_used]) { ieee80211_txb_free(txq->txb[txq->q.last_used]); txq->txb[txq->q.last_used] = NULL; } } } /** * Deallocate DMA queue. * * Empty queue by removing and destroying all BD's. * Free all buffers. * * @param dev * @param q */ static void ipw_queue_tx_free(struct ipw_priv *priv, struct clx2_tx_queue *txq) { struct clx2_queue *q = &txq->q; struct pci_dev *dev = priv->pci_dev; if (q->n_bd == 0) return; /* first, empty all BD's */ for (; q->first_empty != q->last_used; q->last_used = ipw_queue_inc_wrap(q->last_used, q->n_bd)) { ipw_queue_tx_free_tfd(priv, txq); } /* free buffers belonging to queue itself */ pci_free_consistent(dev, sizeof(txq->bd[0]) * q->n_bd, txq->bd, q->dma_addr); kfree(txq->txb); /* 0 fill whole structure */ memset(txq, 0, sizeof(*txq)); } /** * Destroy all DMA queues and structures * * @param priv */ static void ipw_tx_queue_free(struct ipw_priv *priv) { /* Tx CMD queue */ ipw_queue_tx_free(priv, &priv->txq_cmd); /* Tx queues */ ipw_queue_tx_free(priv, &priv->txq[0]); ipw_queue_tx_free(priv, &priv->txq[1]); ipw_queue_tx_free(priv, &priv->txq[2]); ipw_queue_tx_free(priv, &priv->txq[3]); } static void ipw_create_bssid(struct ipw_priv *priv, u8 * bssid) { /* First 3 bytes are manufacturer */ bssid[0] = priv->mac_addr[0]; bssid[1] = priv->mac_addr[1]; bssid[2] = priv->mac_addr[2]; /* Last bytes are random */ get_random_bytes(&bssid[3], ETH_ALEN - 3); bssid[0] &= 0xfe; /* clear multicast bit */ bssid[0] |= 0x02; /* set local assignment bit (IEEE802) */ } static u8 ipw_add_station(struct ipw_priv *priv, u8 * bssid) { struct ipw_station_entry entry; int i; for (i = 0; i < priv->num_stations; i++) { if (!memcmp(priv->stations[i], bssid, ETH_ALEN)) { /* Another node is active in network */ priv->missed_adhoc_beacons = 0; if (!(priv->config & CFG_STATIC_CHANNEL)) /* when other nodes drop out, we drop out */ priv->config &= ~CFG_ADHOC_PERSIST; return i; } } if (i == MAX_STATIONS) return IPW_INVALID_STATION; IPW_DEBUG_SCAN("Adding AdHoc station: " MAC_FMT "\n", MAC_ARG(bssid)); entry.reserved = 0; entry.support_mode = 0; memcpy(entry.mac_addr, bssid, ETH_ALEN); memcpy(priv->stations[i], bssid, ETH_ALEN); ipw_write_direct(priv, IPW_STATION_TABLE_LOWER + i * sizeof(entry), &entry, sizeof(entry)); priv->num_stations++; return i; } static u8 ipw_find_station(struct ipw_priv *priv, u8 * bssid) { int i; for (i = 0; i < priv->num_stations; i++) if (!memcmp(priv->stations[i], bssid, ETH_ALEN)) return i; return IPW_INVALID_STATION; } static void ipw_send_disassociate(struct ipw_priv *priv, int quiet) { int err; if (priv->status & STATUS_ASSOCIATING) { IPW_DEBUG_ASSOC("Disassociating while associating.\n"); queue_work(priv->workqueue, &priv->disassociate); return; } if (!(priv->status & STATUS_ASSOCIATED)) { IPW_DEBUG_ASSOC("Disassociating while not associated.\n"); return; } IPW_DEBUG_ASSOC("Disassocation attempt from " MAC_FMT " " "on channel %d.\n", MAC_ARG(priv->assoc_request.bssid), priv->assoc_request.channel); priv->status &= ~(STATUS_ASSOCIATING | STATUS_ASSOCIATED); priv->status |= STATUS_DISASSOCIATING; if (quiet) priv->assoc_request.assoc_type = HC_DISASSOC_QUIET; else priv->assoc_request.assoc_type = HC_DISASSOCIATE; err = ipw_send_associate(priv, &priv->assoc_request); if (err) { IPW_DEBUG_HC("Attempt to send [dis]associate command " "failed.\n"); return; } } static int ipw_disassociate(void *data) { struct ipw_priv *priv = data; if (!(priv->status & (STATUS_ASSOCIATED | STATUS_ASSOCIATING))) return 0; ipw_send_disassociate(data, 0); return 1; } static void ipw_bg_disassociate(void *data) { struct ipw_priv *priv = data; mutex_lock(&priv->mutex); ipw_disassociate(data); mutex_unlock(&priv->mutex); } static void ipw_system_config(void *data) { struct ipw_priv *priv = data; ipw_send_system_config(priv, &priv->sys_config); } struct ipw_status_code { u16 status; const char *reason; }; static const struct ipw_status_code ipw_status_codes[] = { {0x00, "Successful"}, {0x01, "Unspecified failure"}, {0x0A, "Cannot support all requested capabilities in the " "Capability information field"}, {0x0B, "Reassociation denied due to inability to confirm that " "association exists"}, {0x0C, "Association denied due to reason outside the scope of this " "standard"}, {0x0D, "Responding station does not support the specified authentication " "algorithm"}, {0x0E, "Received an Authentication frame with authentication sequence " "transaction sequence number out of expected sequence"}, {0x0F, "Authentication rejected because of challenge failure"}, {0x10, "Authentication rejected due to timeout waiting for next " "frame in sequence"}, {0x11, "Association denied because AP is unable to handle additional " "associated stations"}, {0x12, "Association denied due to requesting station not supporting all " "of the datarates in the BSSBasicServiceSet Parameter"}, {0x13, "Association denied due to requesting station not supporting " "short preamble operation"}, {0x14, "Association denied due to requesting station not supporting " "PBCC encoding"}, {0x15, "Association denied due to requesting station not supporting " "channel agility"}, {0x19, "Association denied due to requesting station not supporting " "short slot operation"}, {0x1A, "Association denied due to requesting station not supporting " "DSSS-OFDM operation"}, {0x28, "Invalid Information Element"}, {0x29, "Group Cipher is not valid"}, {0x2A, "Pairwise Cipher is not valid"}, {0x2B, "AKMP is not valid"}, {0x2C, "Unsupported RSN IE version"}, {0x2D, "Invalid RSN IE Capabilities"}, {0x2E, "Cipher suite is rejected per security policy"}, }; #ifdef CONFIG_IPW2200_DEBUG static const char *ipw_get_status_code(u16 status) { int i; for (i = 0; i < ARRAY_SIZE(ipw_status_codes); i++) if (ipw_status_codes[i].status == (status & 0xff)) return ipw_status_codes[i].reason; return "Unknown status value."; } #endif static void inline average_init(struct average *avg) { memset(avg, 0, sizeof(*avg)); } static void average_add(struct average *avg, s16 val) { avg->sum -= avg->entries[avg->pos]; avg->sum += val; avg->entries[avg->pos++] = val; if (unlikely(avg->pos == AVG_ENTRIES)) { avg->init = 1; avg->pos = 0; } } static s16 average_value(struct average *avg) { if (!unlikely(avg->init)) { if (avg->pos) return avg->sum / avg->pos; return 0; } return avg->sum / AVG_ENTRIES; } static void ipw_reset_stats(struct ipw_priv *priv) { u32 len = sizeof(u32); priv->quality = 0; average_init(&priv->average_missed_beacons); average_init(&priv->average_rssi); average_init(&priv->average_noise); priv->last_rate = 0; priv->last_missed_beacons = 0; priv->last_rx_packets = 0; priv->last_tx_packets = 0; priv->last_tx_failures = 0; /* Firmware managed, reset only when NIC is restarted, so we have to * normalize on the current value */ ipw_get_ordinal(priv, IPW_ORD_STAT_RX_ERR_CRC, &priv->last_rx_err, &len); ipw_get_ordinal(priv, IPW_ORD_STAT_TX_FAILURE, &priv->last_tx_failures, &len); /* Driver managed, reset with each association */ priv->missed_adhoc_beacons = 0; priv->missed_beacons = 0; priv->tx_packets = 0; priv->rx_packets = 0; } static u32 ipw_get_max_rate(struct ipw_priv *priv) { u32 i = 0x80000000; u32 mask = priv->rates_mask; /* If currently associated in B mode, restrict the maximum * rate match to B rates */ if (priv->assoc_request.ieee_mode == IPW_B_MODE) mask &= IEEE80211_CCK_RATES_MASK; /* TODO: Verify that the rate is supported by the current rates * list. */ while (i && !(mask & i)) i >>= 1; switch (i) { case IEEE80211_CCK_RATE_1MB_MASK: return 1000000; case IEEE80211_CCK_RATE_2MB_MASK: return 2000000; case IEEE80211_CCK_RATE_5MB_MASK: return 5500000; case IEEE80211_OFDM_RATE_6MB_MASK: return 6000000; case IEEE80211_OFDM_RATE_9MB_MASK: return 9000000; case IEEE80211_CCK_RATE_11MB_MASK: return 11000000; case IEEE80211_OFDM_RATE_12MB_MASK: return 12000000; case IEEE80211_OFDM_RATE_18MB_MASK: return 18000000; case IEEE80211_OFDM_RATE_24MB_MASK: return 24000000; case IEEE80211_OFDM_RATE_36MB_MASK: return 36000000; case IEEE80211_OFDM_RATE_48MB_MASK: return 48000000; case IEEE80211_OFDM_RATE_54MB_MASK: return 54000000; } if (priv->ieee->mode == IEEE_B) return 11000000; else return 54000000; } static u32 ipw_get_current_rate(struct ipw_priv *priv) { u32 rate, len = sizeof(rate); int err; if (!(priv->status & STATUS_ASSOCIATED)) return 0; if (priv->tx_packets > IPW_REAL_RATE_RX_PACKET_THRESHOLD) { err = ipw_get_ordinal(priv, IPW_ORD_STAT_TX_CURR_RATE, &rate, &len); if (err) { IPW_DEBUG_INFO("failed querying ordinals.\n"); return 0; } } else return ipw_get_max_rate(priv); switch (rate) { case IPW_TX_RATE_1MB: return 1000000; case IPW_TX_RATE_2MB: return 2000000; case IPW_TX_RATE_5MB: return 5500000; case IPW_TX_RATE_6MB: return 6000000; case IPW_TX_RATE_9MB: return 9000000; case IPW_TX_RATE_11MB: return 11000000; case IPW_TX_RATE_12MB: return 12000000; case IPW_TX_RATE_18MB: return 18000000; case IPW_TX_RATE_24MB: return 24000000; case IPW_TX_RATE_36MB: return 36000000; case IPW_TX_RATE_48MB: return 48000000; case IPW_TX_RATE_54MB: return 54000000; } return 0; } #define IPW_STATS_INTERVAL (2 * HZ) static void ipw_gather_stats(struct ipw_priv *priv) { u32 rx_err, rx_err_delta, rx_packets_delta; u32 tx_failures, tx_failures_delta, tx_packets_delta; u32 missed_beacons_percent, missed_beacons_delta; u32 quality = 0; u32 len = sizeof(u32); s16 rssi; u32 beacon_quality, signal_quality, tx_quality, rx_quality, rate_quality; u32 max_rate; if (!(priv->status & STATUS_ASSOCIATED)) { priv->quality = 0; return; } /* Update the statistics */ ipw_get_ordinal(priv, IPW_ORD_STAT_MISSED_BEACONS, &priv->missed_beacons, &len); missed_beacons_delta = priv->missed_beacons - priv->last_missed_beacons; priv->last_missed_beacons = priv->missed_beacons; if (priv->assoc_request.beacon_interval) { missed_beacons_percent = missed_beacons_delta * (HZ * priv->assoc_request.beacon_interval) / (IPW_STATS_INTERVAL * 10); } else { missed_beacons_percent = 0; } average_add(&priv->average_missed_beacons, missed_beacons_percent); ipw_get_ordinal(priv, IPW_ORD_STAT_RX_ERR_CRC, &rx_err, &len); rx_err_delta = rx_err - priv->last_rx_err; priv->last_rx_err = rx_err; ipw_get_ordinal(priv, IPW_ORD_STAT_TX_FAILURE, &tx_failures, &len); tx_failures_delta = tx_failures - priv->last_tx_failures; priv->last_tx_failures = tx_failures; rx_packets_delta = priv->rx_packets - priv->last_rx_packets; priv->last_rx_packets = priv->rx_packets; tx_packets_delta = priv->tx_packets - priv->last_tx_packets; priv->last_tx_packets = priv->tx_packets; /* Calculate quality based on the following: * * Missed beacon: 100% = 0, 0% = 70% missed * Rate: 60% = 1Mbs, 100% = Max * Rx and Tx errors represent a straight % of total Rx/Tx * RSSI: 100% = > -50, 0% = < -80 * Rx errors: 100% = 0, 0% = 50% missed * * The lowest computed quality is used. * */ #define BEACON_THRESHOLD 5 beacon_quality = 100 - missed_beacons_percent; if (beacon_quality < BEACON_THRESHOLD) beacon_quality = 0; else beacon_quality = (beacon_quality - BEACON_THRESHOLD) * 100 / (100 - BEACON_THRESHOLD); IPW_DEBUG_STATS("Missed beacon: %3d%% (%d%%)\n", beacon_quality, missed_beacons_percent); priv->last_rate = ipw_get_current_rate(priv); max_rate = ipw_get_max_rate(priv); rate_quality = priv->last_rate * 40 / max_rate + 60; IPW_DEBUG_STATS("Rate quality : %3d%% (%dMbs)\n", rate_quality, priv->last_rate / 1000000); if (rx_packets_delta > 100 && rx_packets_delta + rx_err_delta) rx_quality = 100 - (rx_err_delta * 100) / (rx_packets_delta + rx_err_delta); else rx_quality = 100; IPW_DEBUG_STATS("Rx quality : %3d%% (%u errors, %u packets)\n", rx_quality, rx_err_delta, rx_packets_delta); if (tx_packets_delta > 100 && tx_packets_delta + tx_failures_delta) tx_quality = 100 - (tx_failures_delta * 100) / (tx_packets_delta + tx_failures_delta); else tx_quality = 100; IPW_DEBUG_STATS("Tx quality : %3d%% (%u errors, %u packets)\n", tx_quality, tx_failures_delta, tx_packets_delta); rssi = average_value(&priv->average_rssi); signal_quality = (100 * (priv->ieee->perfect_rssi - priv->ieee->worst_rssi) * (priv->ieee->perfect_rssi - priv->ieee->worst_rssi) - (priv->ieee->perfect_rssi - rssi) * (15 * (priv->ieee->perfect_rssi - priv->ieee->worst_rssi) + 62 * (priv->ieee->perfect_rssi - rssi))) / ((priv->ieee->perfect_rssi - priv->ieee->worst_rssi) * (priv->ieee->perfect_rssi - priv->ieee->worst_rssi)); if (signal_quality > 100) signal_quality = 100; else if (signal_quality < 1) signal_quality = 0; IPW_DEBUG_STATS("Signal level : %3d%% (%d dBm)\n", signal_quality, rssi); quality = min(beacon_quality, min(rate_quality, min(tx_quality, min(rx_quality, signal_quality)))); if (quality == beacon_quality) IPW_DEBUG_STATS("Quality (%d%%): Clamped to missed beacons.\n", quality); if (quality == rate_quality) IPW_DEBUG_STATS("Quality (%d%%): Clamped to rate quality.\n", quality); if (quality == tx_quality) IPW_DEBUG_STATS("Quality (%d%%): Clamped to Tx quality.\n", quality); if (quality == rx_quality) IPW_DEBUG_STATS("Quality (%d%%): Clamped to Rx quality.\n", quality); if (quality == signal_quality) IPW_DEBUG_STATS("Quality (%d%%): Clamped to signal quality.\n", quality); priv->quality = quality; queue_delayed_work(priv->workqueue, &priv->gather_stats, IPW_STATS_INTERVAL); } static void ipw_bg_gather_stats(void *data) { struct ipw_priv *priv = data; mutex_lock(&priv->mutex); ipw_gather_stats(data); mutex_unlock(&priv->mutex); } /* Missed beacon behavior: * 1st missed -> roaming_threshold, just wait, don't do any scan/roam. * roaming_threshold -> disassociate_threshold, scan and roam for better signal. * Above disassociate threshold, give up and stop scanning. * Roaming is disabled if disassociate_threshold <= roaming_threshold */ static void ipw_handle_missed_beacon(struct ipw_priv *priv, int missed_count) { priv->notif_missed_beacons = missed_count; if (missed_count > priv->disassociate_threshold && priv->status & STATUS_ASSOCIATED) { /* If associated and we've hit the missed * beacon threshold, disassociate, turn * off roaming, and abort any active scans */ IPW_DEBUG(IPW_DL_INFO | IPW_DL_NOTIF | IPW_DL_STATE | IPW_DL_ASSOC, "Missed beacon: %d - disassociate\n", missed_count); priv->status &= ~STATUS_ROAMING; if (priv->status & STATUS_SCANNING) { IPW_DEBUG(IPW_DL_INFO | IPW_DL_NOTIF | IPW_DL_STATE, "Aborting scan with missed beacon.\n"); queue_work(priv->workqueue, &priv->abort_scan); } queue_work(priv->workqueue, &priv->disassociate); return; } if (priv->status & STATUS_ROAMING) { /* If we are currently roaming, then just * print a debug statement... */ IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE, "Missed beacon: %d - roam in progress\n", missed_count); return; } if (roaming && (missed_count > priv->roaming_threshold && missed_count <= priv->disassociate_threshold)) { /* If we are not already roaming, set the ROAM * bit in the status and kick off a scan. * This can happen several times before we reach * disassociate_threshold. */ IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE, "Missed beacon: %d - initiate " "roaming\n", missed_count); if (!(priv->status & STATUS_ROAMING)) { priv->status |= STATUS_ROAMING; if (!(priv->status & STATUS_SCANNING)) queue_work(priv->workqueue, &priv->request_scan); } return; } if (priv->status & STATUS_SCANNING) { /* Stop scan to keep fw from getting * stuck (only if we aren't roaming -- * otherwise we'll never scan more than 2 or 3 * channels..) */ IPW_DEBUG(IPW_DL_INFO | IPW_DL_NOTIF | IPW_DL_STATE, "Aborting scan with missed beacon.\n"); queue_work(priv->workqueue, &priv->abort_scan); } IPW_DEBUG_NOTIF("Missed beacon: %d\n", missed_count); } /** * Handle host notification packet. * Called from interrupt routine */ static void ipw_rx_notification(struct ipw_priv *priv, struct ipw_rx_notification *notif) { notif->size = le16_to_cpu(notif->size); IPW_DEBUG_NOTIF("type = %i (%d bytes)\n", notif->subtype, notif->size); switch (notif->subtype) { case HOST_NOTIFICATION_STATUS_ASSOCIATED:{ struct notif_association *assoc = &notif->u.assoc; switch (assoc->state) { case CMAS_ASSOCIATED:{ IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE | IPW_DL_ASSOC, "associated: '%s' " MAC_FMT " \n", escape_essid(priv->essid, priv->essid_len), MAC_ARG(priv->bssid)); switch (priv->ieee->iw_mode) { case IW_MODE_INFRA: memcpy(priv->ieee->bssid, priv->bssid, ETH_ALEN); break; case IW_MODE_ADHOC: memcpy(priv->ieee->bssid, priv->bssid, ETH_ALEN); /* clear out the station table */ priv->num_stations = 0; IPW_DEBUG_ASSOC ("queueing adhoc check\n"); queue_delayed_work(priv-> workqueue, &priv-> adhoc_check, priv-> assoc_request. beacon_interval); break; } priv->status &= ~STATUS_ASSOCIATING; priv->status |= STATUS_ASSOCIATED; queue_work(priv->workqueue, &priv->system_config); #ifdef CONFIG_IPW_QOS #define IPW_GET_PACKET_STYPE(x) WLAN_FC_GET_STYPE( \ le16_to_cpu(((struct ieee80211_hdr *)(x))->frame_ctl)) if ((priv->status & STATUS_AUTH) && (IPW_GET_PACKET_STYPE(&notif->u.raw) == IEEE80211_STYPE_ASSOC_RESP)) { if ((sizeof (struct ieee80211_assoc_response) <= notif->size) && (notif->size <= 2314)) { struct ieee80211_rx_stats stats = { .len = notif-> size - 1, }; IPW_DEBUG_QOS ("QoS Associate " "size %d\n", notif->size); ieee80211_rx_mgt(priv-> ieee, (struct ieee80211_hdr_4addr *) &notif->u.raw, &stats); } } #endif schedule_work(&priv->link_up); break; } case CMAS_AUTHENTICATED:{ if (priv-> status & (STATUS_ASSOCIATED | STATUS_AUTH)) { #ifdef CONFIG_IPW2200_DEBUG struct notif_authenticate *auth = &notif->u.auth; IPW_DEBUG(IPW_DL_NOTIF | IPW_DL_STATE | IPW_DL_ASSOC, "deauthenticated: '%s' " MAC_FMT


context:
space:
mode: