1 /******************************************************************************
3 * This file is provided under a dual BSD/GPLv2 license. When using or
4 * redistributing this file, you may do so under either license.
8 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
9 * Copyright(c) 2013 - 2014 Intel Mobile Communications GmbH
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of version 2 of the GNU General Public License as
13 * published by the Free Software Foundation.
15 * This program is distributed in the hope that it will be useful, but
16 * WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 * General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, write to the Free Software
22 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110,
25 * The full GNU General Public License is included in this distribution
26 * in the file called COPYING.
28 * Contact Information:
29 * Intel Linux Wireless <ilw@linux.intel.com>
30 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
34 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
35 * Copyright(c) 2013 - 2014 Intel Mobile Communications GmbH
36 * All rights reserved.
38 * Redistribution and use in source and binary forms, with or without
39 * modification, are permitted provided that the following conditions
42 * * Redistributions of source code must retain the above copyright
43 * notice, this list of conditions and the following disclaimer.
44 * * Redistributions in binary form must reproduce the above copyright
45 * notice, this list of conditions and the following disclaimer in
46 * the documentation and/or other materials provided with the
48 * * Neither the name Intel Corporation nor the names of its
49 * contributors may be used to endorse or promote products derived
50 * from this software without specific prior written permission.
52 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
53 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
54 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
55 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
56 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
57 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
58 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
59 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
60 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
61 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
62 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
64 *****************************************************************************/
66 #include <linux/etherdevice.h>
67 #include <net/mac80211.h>
70 #include "iwl-eeprom-parse.h"
71 #include "fw-api-scan.h"
73 #define IWL_PLCP_QUIET_THRESH 1
74 #define IWL_ACTIVE_QUIET_TIME 10
75 #define IWL_DENSE_EBS_SCAN_RATIO 5
76 #define IWL_SPARSE_EBS_SCAN_RATIO 1
78 struct iwl_mvm_scan_params {
81 bool passive_fragmented;
86 } dwell[IEEE80211_NUM_BANDS];
89 enum iwl_umac_scan_uid_type {
90 IWL_UMAC_SCAN_UID_REG_SCAN = BIT(0),
91 IWL_UMAC_SCAN_UID_SCHED_SCAN = BIT(1),
92 IWL_UMAC_SCAN_UID_ALL = IWL_UMAC_SCAN_UID_REG_SCAN |
93 IWL_UMAC_SCAN_UID_SCHED_SCAN,
96 static int iwl_umac_scan_stop(struct iwl_mvm *mvm,
97 enum iwl_umac_scan_uid_type type, bool notify);
99 static u8 iwl_mvm_scan_rx_ant(struct iwl_mvm *mvm)
101 if (mvm->scan_rx_ant != ANT_NONE)
102 return mvm->scan_rx_ant;
103 return iwl_mvm_get_valid_rx_ant(mvm);
106 static inline __le16 iwl_mvm_scan_rx_chain(struct iwl_mvm *mvm)
111 rx_ant = iwl_mvm_scan_rx_ant(mvm);
112 rx_chain = rx_ant << PHY_RX_CHAIN_VALID_POS;
113 rx_chain |= rx_ant << PHY_RX_CHAIN_FORCE_MIMO_SEL_POS;
114 rx_chain |= rx_ant << PHY_RX_CHAIN_FORCE_SEL_POS;
115 rx_chain |= 0x1 << PHY_RX_CHAIN_DRIVER_FORCE_POS;
116 return cpu_to_le16(rx_chain);
119 static __le32 iwl_mvm_scan_rxon_flags(enum ieee80211_band band)
121 if (band == IEEE80211_BAND_2GHZ)
122 return cpu_to_le32(PHY_BAND_24);
124 return cpu_to_le32(PHY_BAND_5);
128 iwl_mvm_scan_rate_n_flags(struct iwl_mvm *mvm, enum ieee80211_band band,
133 mvm->scan_last_antenna_idx =
134 iwl_mvm_next_antenna(mvm, iwl_mvm_get_valid_tx_ant(mvm),
135 mvm->scan_last_antenna_idx);
136 tx_ant = BIT(mvm->scan_last_antenna_idx) << RATE_MCS_ANT_POS;
138 if (band == IEEE80211_BAND_2GHZ && !no_cck)
139 return cpu_to_le32(IWL_RATE_1M_PLCP | RATE_MCS_CCK_MSK |
142 return cpu_to_le32(IWL_RATE_6M_PLCP | tx_ant);
146 * We insert the SSIDs in an inverted order, because the FW will
147 * invert it back. The most prioritized SSID, which is first in the
148 * request list, is not copied here, but inserted directly to the probe
151 static void iwl_mvm_scan_fill_ssids(struct iwl_ssid_ie *cmd_ssid,
152 struct cfg80211_ssid *ssids,
153 int n_ssids, int first)
157 for (req_idx = n_ssids - 1, fw_idx = 0; req_idx >= first;
158 req_idx--, fw_idx++) {
159 cmd_ssid[fw_idx].id = WLAN_EID_SSID;
160 cmd_ssid[fw_idx].len = ssids[req_idx].ssid_len;
161 memcpy(cmd_ssid[fw_idx].ssid,
163 ssids[req_idx].ssid_len);
168 * If req->n_ssids > 0, it means we should do an active scan.
169 * In case of active scan w/o directed scan, we receive a zero-length SSID
170 * just to notify that this scan is active and not passive.
171 * In order to notify the FW of the number of SSIDs we wish to scan (including
172 * the zero-length one), we need to set the corresponding bits in chan->type,
173 * one for each SSID, and set the active bit (first). If the first SSID is
174 * already included in the probe template, so we need to set only
175 * req->n_ssids - 1 bits in addition to the first bit.
177 static u16 iwl_mvm_get_active_dwell(struct iwl_mvm *mvm,
178 enum ieee80211_band band, int n_ssids)
180 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_BASIC_DWELL)
182 if (band == IEEE80211_BAND_2GHZ)
183 return 20 + 3 * (n_ssids + 1);
184 return 10 + 2 * (n_ssids + 1);
187 static u16 iwl_mvm_get_passive_dwell(struct iwl_mvm *mvm,
188 enum ieee80211_band band)
190 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_BASIC_DWELL)
192 return band == IEEE80211_BAND_2GHZ ? 100 + 20 : 100 + 10;
195 static void iwl_mvm_scan_condition_iterator(void *data, u8 *mac,
196 struct ieee80211_vif *vif)
198 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
199 int *global_cnt = data;
201 if (vif->type != NL80211_IFTYPE_P2P_DEVICE && mvmvif->phy_ctxt &&
202 mvmvif->phy_ctxt->id < MAX_PHYS)
206 static void iwl_mvm_scan_calc_params(struct iwl_mvm *mvm,
207 struct ieee80211_vif *vif,
208 int n_ssids, u32 flags,
209 struct iwl_mvm_scan_params *params)
212 enum ieee80211_band band;
213 u8 frag_passive_dwell = 0;
215 ieee80211_iterate_active_interfaces_atomic(mvm->hw,
216 IEEE80211_IFACE_ITER_NORMAL,
217 iwl_mvm_scan_condition_iterator,
223 params->suspend_time = 30;
224 params->max_out_time = 120;
226 if (iwl_mvm_low_latency(mvm)) {
227 if (mvm->fw->ucode_capa.api[0] &
228 IWL_UCODE_TLV_API_FRAGMENTED_SCAN) {
229 params->suspend_time = 105;
231 * If there is more than one active interface make
232 * passive scan more fragmented.
234 frag_passive_dwell = 40;
235 params->max_out_time = frag_passive_dwell;
237 params->suspend_time = 120;
238 params->max_out_time = 120;
242 if (frag_passive_dwell && (mvm->fw->ucode_capa.api[0] &
243 IWL_UCODE_TLV_API_FRAGMENTED_SCAN)) {
245 * P2P device scan should not be fragmented to avoid negative
246 * impact on P2P device discovery. Configure max_out_time to be
247 * equal to dwell time on passive channel. Take a longest
248 * possible value, one that corresponds to 2GHz band
250 if (vif->type == NL80211_IFTYPE_P2P_DEVICE) {
252 iwl_mvm_get_passive_dwell(mvm,
253 IEEE80211_BAND_2GHZ);
254 params->max_out_time = passive_dwell;
256 params->passive_fragmented = true;
260 if (flags & NL80211_SCAN_FLAG_LOW_PRIORITY)
261 params->max_out_time = 200;
265 for (band = IEEE80211_BAND_2GHZ; band < IEEE80211_NUM_BANDS; band++) {
266 if (params->passive_fragmented)
267 params->dwell[band].fragmented = frag_passive_dwell;
269 params->dwell[band].passive = iwl_mvm_get_passive_dwell(mvm,
271 params->dwell[band].active = iwl_mvm_get_active_dwell(mvm, band,
276 static inline bool iwl_mvm_rrm_scan_needed(struct iwl_mvm *mvm)
278 /* require rrm scan whenever the fw supports it */
279 return mvm->fw->ucode_capa.capa[0] &
280 IWL_UCODE_TLV_CAPA_DS_PARAM_SET_IE_SUPPORT;
283 static int iwl_mvm_max_scan_ie_fw_cmd_room(struct iwl_mvm *mvm,
288 max_probe_len = SCAN_OFFLOAD_PROBE_REQ_SIZE;
290 /* we create the 802.11 header and SSID element */
291 max_probe_len -= 24 + 2;
293 /* DS parameter set element is added on 2.4GHZ band if required */
294 if (iwl_mvm_rrm_scan_needed(mvm))
297 return max_probe_len;
300 int iwl_mvm_max_scan_ie_len(struct iwl_mvm *mvm, bool is_sched_scan)
302 int max_ie_len = iwl_mvm_max_scan_ie_fw_cmd_room(mvm, is_sched_scan);
304 /* TODO: [BUG] This function should return the maximum allowed size of
305 * scan IEs, however the LMAC scan api contains both 2GHZ and 5GHZ IEs
306 * in the same command. So the correct implementation of this function
307 * is just iwl_mvm_max_scan_ie_fw_cmd_room() / 2. Currently the scan
308 * command has only 512 bytes and it would leave us with about 240
309 * bytes for scan IEs, which is clearly not enough. So meanwhile
310 * we will report an incorrect value. This may result in a failure to
311 * issue a scan in unified_scan_lmac and unified_sched_scan_lmac
312 * functions with -ENOBUFS, if a large enough probe will be provided.
317 int iwl_mvm_rx_scan_offload_iter_complete_notif(struct iwl_mvm *mvm,
318 struct iwl_rx_cmd_buffer *rxb,
319 struct iwl_device_cmd *cmd)
321 struct iwl_rx_packet *pkt = rxb_addr(rxb);
322 struct iwl_lmac_scan_complete_notif *notif = (void *)pkt->data;
325 "Scan offload iteration complete: status=0x%x scanned channels=%d\n",
326 notif->status, notif->scanned_channels);
330 int iwl_mvm_rx_scan_offload_results(struct iwl_mvm *mvm,
331 struct iwl_rx_cmd_buffer *rxb,
332 struct iwl_device_cmd *cmd)
334 IWL_DEBUG_SCAN(mvm, "Scheduled scan results\n");
335 ieee80211_sched_scan_results(mvm->hw);
340 int iwl_mvm_rx_scan_offload_complete_notif(struct iwl_mvm *mvm,
341 struct iwl_rx_cmd_buffer *rxb,
342 struct iwl_device_cmd *cmd)
344 struct iwl_rx_packet *pkt = rxb_addr(rxb);
345 struct iwl_periodic_scan_complete *scan_notif;
347 scan_notif = (void *)pkt->data;
349 /* scan status must be locked for proper checking */
350 lockdep_assert_held(&mvm->mutex);
353 "%s completed, status %s, EBS status %s\n",
354 mvm->scan_status == IWL_MVM_SCAN_SCHED ?
355 "Scheduled scan" : "Scan",
356 scan_notif->status == IWL_SCAN_OFFLOAD_COMPLETED ?
357 "completed" : "aborted",
358 scan_notif->ebs_status == IWL_SCAN_EBS_SUCCESS ?
359 "success" : "failed");
362 /* only call mac80211 completion if the stop was initiated by FW */
363 if (mvm->scan_status == IWL_MVM_SCAN_SCHED) {
364 mvm->scan_status = IWL_MVM_SCAN_NONE;
365 ieee80211_sched_scan_stopped(mvm->hw);
366 } else if (mvm->scan_status == IWL_MVM_SCAN_OS) {
367 mvm->scan_status = IWL_MVM_SCAN_NONE;
368 ieee80211_scan_completed(mvm->hw,
369 scan_notif->status == IWL_SCAN_OFFLOAD_ABORTED);
370 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
373 if (scan_notif->ebs_status)
374 mvm->last_ebs_successful = false;
379 static int iwl_ssid_exist(u8 *ssid, u8 ssid_len, struct iwl_ssid_ie *ssid_list)
383 for (i = 0; i < PROBE_OPTION_MAX; i++) {
384 if (!ssid_list[i].len)
386 if (ssid_list[i].len == ssid_len &&
387 !memcmp(ssid_list->ssid, ssid, ssid_len))
393 static void iwl_scan_offload_build_ssid(struct cfg80211_sched_scan_request *req,
394 struct iwl_ssid_ie *direct_scan,
395 u32 *ssid_bitmap, bool basic_ssid)
401 * copy SSIDs from match list.
402 * iwl_config_sched_scan_profiles() uses the order of these ssids to
405 for (i = 0; i < req->n_match_sets && i < PROBE_OPTION_MAX; i++) {
406 /* skip empty SSID matchsets */
407 if (!req->match_sets[i].ssid.ssid_len)
409 direct_scan[i].id = WLAN_EID_SSID;
410 direct_scan[i].len = req->match_sets[i].ssid.ssid_len;
411 memcpy(direct_scan[i].ssid, req->match_sets[i].ssid.ssid,
415 /* add SSIDs from scan SSID list */
417 for (j = 0; j < req->n_ssids && i < PROBE_OPTION_MAX; j++) {
418 index = iwl_ssid_exist(req->ssids[j].ssid,
419 req->ssids[j].ssid_len,
422 if (!req->ssids[j].ssid_len && basic_ssid)
424 direct_scan[i].id = WLAN_EID_SSID;
425 direct_scan[i].len = req->ssids[j].ssid_len;
426 memcpy(direct_scan[i].ssid, req->ssids[j].ssid,
428 *ssid_bitmap |= BIT(i + 1);
431 *ssid_bitmap |= BIT(index + 1);
436 int iwl_mvm_config_sched_scan_profiles(struct iwl_mvm *mvm,
437 struct cfg80211_sched_scan_request *req)
439 struct iwl_scan_offload_profile *profile;
440 struct iwl_scan_offload_profile_cfg *profile_cfg;
441 struct iwl_scan_offload_blacklist *blacklist;
442 struct iwl_host_cmd cmd = {
443 .id = SCAN_OFFLOAD_UPDATE_PROFILES_CMD,
444 .len[1] = sizeof(*profile_cfg),
445 .dataflags[0] = IWL_HCMD_DFL_NOCOPY,
446 .dataflags[1] = IWL_HCMD_DFL_NOCOPY,
452 if (WARN_ON(req->n_match_sets > IWL_SCAN_MAX_PROFILES))
455 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_SHORT_BL)
456 blacklist_len = IWL_SCAN_SHORT_BLACKLIST_LEN;
458 blacklist_len = IWL_SCAN_MAX_BLACKLIST_LEN;
460 blacklist = kzalloc(sizeof(*blacklist) * blacklist_len, GFP_KERNEL);
464 profile_cfg = kzalloc(sizeof(*profile_cfg), GFP_KERNEL);
470 cmd.data[0] = blacklist;
471 cmd.len[0] = sizeof(*blacklist) * blacklist_len;
472 cmd.data[1] = profile_cfg;
474 /* No blacklist configuration */
476 profile_cfg->num_profiles = req->n_match_sets;
477 profile_cfg->active_clients = SCAN_CLIENT_SCHED_SCAN;
478 profile_cfg->pass_match = SCAN_CLIENT_SCHED_SCAN;
479 profile_cfg->match_notify = SCAN_CLIENT_SCHED_SCAN;
480 if (!req->n_match_sets || !req->match_sets[0].ssid.ssid_len)
481 profile_cfg->any_beacon_notify = SCAN_CLIENT_SCHED_SCAN;
483 for (i = 0; i < req->n_match_sets; i++) {
484 profile = &profile_cfg->profiles[i];
485 profile->ssid_index = i;
486 /* Support any cipher and auth algorithm */
487 profile->unicast_cipher = 0xff;
488 profile->auth_alg = 0xff;
489 profile->network_type = IWL_NETWORK_TYPE_ANY;
490 profile->band_selection = IWL_SCAN_OFFLOAD_SELECT_ANY;
491 profile->client_bitmap = SCAN_CLIENT_SCHED_SCAN;
494 IWL_DEBUG_SCAN(mvm, "Sending scheduled scan profile config\n");
496 ret = iwl_mvm_send_cmd(mvm, &cmd);
504 static bool iwl_mvm_scan_pass_all(struct iwl_mvm *mvm,
505 struct cfg80211_sched_scan_request *req)
507 if (req->n_match_sets && req->match_sets[0].ssid.ssid_len) {
509 "Sending scheduled scan with filtering, n_match_sets %d\n",
514 IWL_DEBUG_SCAN(mvm, "Sending Scheduled scan without filtering\n");
518 int iwl_mvm_scan_offload_start(struct iwl_mvm *mvm,
519 struct ieee80211_vif *vif,
520 struct cfg80211_sched_scan_request *req,
521 struct ieee80211_scan_ies *ies)
525 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) {
526 ret = iwl_mvm_config_sched_scan_profiles(mvm, req);
529 ret = iwl_mvm_sched_scan_umac(mvm, vif, req, ies);
531 mvm->scan_status = IWL_MVM_SCAN_SCHED;
532 ret = iwl_mvm_config_sched_scan_profiles(mvm, req);
535 ret = iwl_mvm_unified_sched_scan_lmac(mvm, vif, req, ies);
541 static int iwl_mvm_send_scan_offload_abort(struct iwl_mvm *mvm)
544 struct iwl_host_cmd cmd = {
545 .id = SCAN_OFFLOAD_ABORT_CMD,
549 /* Exit instantly with error when device is not ready
550 * to receive scan abort command or it does not perform
551 * scheduled scan currently */
552 if (mvm->scan_status == IWL_MVM_SCAN_NONE)
555 ret = iwl_mvm_send_cmd_status(mvm, &cmd, &status);
559 if (status != CAN_ABORT_STATUS) {
561 * The scan abort will return 1 for success or
562 * 2 for "failure". A failure condition can be
563 * due to simply not being in an active scan which
564 * can occur if we send the scan abort before the
565 * microcode has notified us that a scan is completed.
567 IWL_DEBUG_SCAN(mvm, "SCAN OFFLOAD ABORT ret %d.\n", status);
574 int iwl_mvm_scan_offload_stop(struct iwl_mvm *mvm, bool notify)
577 struct iwl_notification_wait wait_scan_done;
578 static const u8 scan_done_notif[] = { SCAN_OFFLOAD_COMPLETE, };
579 bool sched = mvm->scan_status == IWL_MVM_SCAN_SCHED;
581 lockdep_assert_held(&mvm->mutex);
583 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
584 return iwl_umac_scan_stop(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN,
587 if (mvm->scan_status == IWL_MVM_SCAN_NONE)
590 if (iwl_mvm_is_radio_killed(mvm)) {
595 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_done,
597 ARRAY_SIZE(scan_done_notif),
600 ret = iwl_mvm_send_scan_offload_abort(mvm);
602 IWL_DEBUG_SCAN(mvm, "Send stop %sscan failed %d\n",
603 sched ? "offloaded " : "", ret);
604 iwl_remove_notification(&mvm->notif_wait, &wait_scan_done);
608 IWL_DEBUG_SCAN(mvm, "Successfully sent stop %sscan\n",
609 sched ? "offloaded " : "");
611 ret = iwl_wait_notification(&mvm->notif_wait, &wait_scan_done, 1 * HZ);
614 * Clear the scan status so the next scan requests will succeed. This
615 * also ensures the Rx handler doesn't do anything, as the scan was
616 * stopped from above. Since the rx handler won't do anything now,
617 * we have to release the scan reference here.
619 if (mvm->scan_status == IWL_MVM_SCAN_OS)
620 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
622 mvm->scan_status = IWL_MVM_SCAN_NONE;
626 ieee80211_sched_scan_stopped(mvm->hw);
628 ieee80211_scan_completed(mvm->hw, true);
634 static void iwl_mvm_unified_scan_fill_tx_cmd(struct iwl_mvm *mvm,
635 struct iwl_scan_req_tx_cmd *tx_cmd,
638 tx_cmd[0].tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
640 tx_cmd[0].rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm,
643 tx_cmd[0].sta_id = mvm->aux_sta.sta_id;
645 tx_cmd[1].tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
647 tx_cmd[1].rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm,
650 tx_cmd[1].sta_id = mvm->aux_sta.sta_id;
654 iwl_mvm_lmac_scan_cfg_channels(struct iwl_mvm *mvm,
655 struct ieee80211_channel **channels,
656 int n_channels, u32 ssid_bitmap,
657 struct iwl_scan_req_unified_lmac *cmd)
659 struct iwl_scan_channel_cfg_lmac *channel_cfg = (void *)&cmd->data;
662 for (i = 0; i < n_channels; i++) {
663 channel_cfg[i].channel_num =
664 cpu_to_le16(channels[i]->hw_value);
665 channel_cfg[i].iter_count = cpu_to_le16(1);
666 channel_cfg[i].iter_interval = 0;
667 channel_cfg[i].flags =
668 cpu_to_le32(IWL_UNIFIED_SCAN_CHANNEL_PARTIAL |
673 static u8 *iwl_mvm_copy_and_insert_ds_elem(struct iwl_mvm *mvm, const u8 *ies,
674 size_t len, u8 *const pos)
676 static const u8 before_ds_params[] = {
680 WLAN_EID_EXT_SUPP_RATES,
685 if (!iwl_mvm_rrm_scan_needed(mvm)) {
686 memcpy(newpos, ies, len);
690 offs = ieee80211_ie_split(ies, len,
692 ARRAY_SIZE(before_ds_params),
695 memcpy(newpos, ies, offs);
698 /* Add a placeholder for DS Parameter Set element */
699 *newpos++ = WLAN_EID_DS_PARAMS;
703 memcpy(newpos, ies + offs, len - offs);
704 newpos += len - offs;
710 iwl_mvm_build_unified_scan_probe(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
711 struct ieee80211_scan_ies *ies,
712 struct iwl_scan_probe_req *preq,
713 const u8 *mac_addr, const u8 *mac_addr_mask)
715 struct ieee80211_mgmt *frame = (struct ieee80211_mgmt *)preq->buf;
719 * Unfortunately, right now the offload scan doesn't support randomising
720 * within the firmware, so until the firmware API is ready we implement
721 * it in the driver. This means that the scan iterations won't really be
722 * random, only when it's restarted, but at least that helps a bit.
725 get_random_mask_addr(frame->sa, mac_addr, mac_addr_mask);
727 memcpy(frame->sa, vif->addr, ETH_ALEN);
729 frame->frame_control = cpu_to_le16(IEEE80211_STYPE_PROBE_REQ);
730 eth_broadcast_addr(frame->da);
731 eth_broadcast_addr(frame->bssid);
734 pos = frame->u.probe_req.variable;
735 *pos++ = WLAN_EID_SSID;
738 preq->mac_header.offset = 0;
739 preq->mac_header.len = cpu_to_le16(24 + 2);
741 /* Insert ds parameter set element on 2.4 GHz band */
742 newpos = iwl_mvm_copy_and_insert_ds_elem(mvm,
743 ies->ies[IEEE80211_BAND_2GHZ],
744 ies->len[IEEE80211_BAND_2GHZ],
746 preq->band_data[0].offset = cpu_to_le16(pos - preq->buf);
747 preq->band_data[0].len = cpu_to_le16(newpos - pos);
750 memcpy(pos, ies->ies[IEEE80211_BAND_5GHZ],
751 ies->len[IEEE80211_BAND_5GHZ]);
752 preq->band_data[1].offset = cpu_to_le16(pos - preq->buf);
753 preq->band_data[1].len = cpu_to_le16(ies->len[IEEE80211_BAND_5GHZ]);
754 pos += ies->len[IEEE80211_BAND_5GHZ];
756 memcpy(pos, ies->common_ies, ies->common_ie_len);
757 preq->common_data.offset = cpu_to_le16(pos - preq->buf);
758 preq->common_data.len = cpu_to_le16(ies->common_ie_len);
762 iwl_mvm_build_generic_unified_scan_cmd(struct iwl_mvm *mvm,
763 struct iwl_scan_req_unified_lmac *cmd,
764 struct iwl_mvm_scan_params *params)
766 memset(cmd, 0, ksize(cmd));
767 cmd->active_dwell = params->dwell[IEEE80211_BAND_2GHZ].active;
768 cmd->passive_dwell = params->dwell[IEEE80211_BAND_2GHZ].passive;
769 if (params->passive_fragmented)
770 cmd->fragmented_dwell =
771 params->dwell[IEEE80211_BAND_2GHZ].fragmented;
772 cmd->rx_chain_select = iwl_mvm_scan_rx_chain(mvm);
773 cmd->max_out_time = cpu_to_le32(params->max_out_time);
774 cmd->suspend_time = cpu_to_le32(params->suspend_time);
775 cmd->scan_prio = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
776 cmd->iter_num = cpu_to_le32(1);
778 if (iwl_mvm_rrm_scan_needed(mvm))
780 cpu_to_le32(IWL_MVM_LMAC_SCAN_FLAGS_RRM_ENABLED);
783 int iwl_mvm_unified_scan_lmac(struct iwl_mvm *mvm,
784 struct ieee80211_vif *vif,
785 struct ieee80211_scan_request *req)
787 struct iwl_host_cmd hcmd = {
788 .id = SCAN_OFFLOAD_REQUEST_CMD,
789 .len = { sizeof(struct iwl_scan_req_unified_lmac) +
790 sizeof(struct iwl_scan_channel_cfg_lmac) *
791 mvm->fw->ucode_capa.n_scan_channels +
792 sizeof(struct iwl_scan_probe_req), },
793 .data = { mvm->scan_cmd, },
794 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
796 struct iwl_scan_req_unified_lmac *cmd = mvm->scan_cmd;
797 struct iwl_scan_probe_req *preq;
798 struct iwl_mvm_scan_params params = {};
803 lockdep_assert_held(&mvm->mutex);
805 /* we should have failed registration if scan_cmd was NULL */
806 if (WARN_ON(mvm->scan_cmd == NULL))
809 if (req->req.n_ssids > PROBE_OPTION_MAX ||
810 req->ies.common_ie_len + req->ies.len[NL80211_BAND_2GHZ] +
811 req->ies.len[NL80211_BAND_5GHZ] >
812 iwl_mvm_max_scan_ie_fw_cmd_room(mvm, false) ||
813 req->req.n_channels > mvm->fw->ucode_capa.n_scan_channels)
816 mvm->scan_status = IWL_MVM_SCAN_OS;
818 iwl_mvm_scan_calc_params(mvm, vif, req->req.n_ssids, req->req.flags,
821 iwl_mvm_build_generic_unified_scan_cmd(mvm, cmd, ¶ms);
823 cmd->n_channels = (u8)req->req.n_channels;
825 flags = IWL_MVM_LMAC_SCAN_FLAG_PASS_ALL;
827 if (req->req.n_ssids == 1 && req->req.ssids[0].ssid_len != 0)
828 flags |= IWL_MVM_LMAC_SCAN_FLAG_PRE_CONNECTION;
830 if (params.passive_fragmented)
831 flags |= IWL_MVM_LMAC_SCAN_FLAG_FRAGMENTED;
833 if (req->req.n_ssids == 0)
834 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASSIVE;
836 cmd->scan_flags |= cpu_to_le32(flags);
838 cmd->flags = iwl_mvm_scan_rxon_flags(req->req.channels[0]->band);
839 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
840 MAC_FILTER_IN_BEACON);
841 iwl_mvm_unified_scan_fill_tx_cmd(mvm, cmd->tx_cmd, req->req.no_cck);
842 iwl_mvm_scan_fill_ssids(cmd->direct_scan, req->req.ssids,
843 req->req.n_ssids, 0);
845 cmd->schedule[0].delay = 0;
846 cmd->schedule[0].iterations = 1;
847 cmd->schedule[0].full_scan_mul = 0;
848 cmd->schedule[1].delay = 0;
849 cmd->schedule[1].iterations = 0;
850 cmd->schedule[1].full_scan_mul = 0;
852 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_SINGLE_SCAN_EBS &&
853 mvm->last_ebs_successful) {
854 cmd->channel_opt[0].flags =
855 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
856 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
857 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
858 cmd->channel_opt[0].non_ebs_ratio =
859 cpu_to_le16(IWL_DENSE_EBS_SCAN_RATIO);
860 cmd->channel_opt[1].flags =
861 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
862 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
863 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
864 cmd->channel_opt[1].non_ebs_ratio =
865 cpu_to_le16(IWL_SPARSE_EBS_SCAN_RATIO);
868 for (i = 1; i <= req->req.n_ssids; i++)
869 ssid_bitmap |= BIT(i);
871 iwl_mvm_lmac_scan_cfg_channels(mvm, req->req.channels,
872 req->req.n_channels, ssid_bitmap,
875 preq = (void *)(cmd->data + sizeof(struct iwl_scan_channel_cfg_lmac) *
876 mvm->fw->ucode_capa.n_scan_channels);
878 iwl_mvm_build_unified_scan_probe(mvm, vif, &req->ies, preq,
879 req->req.flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
880 req->req.mac_addr : NULL,
881 req->req.mac_addr_mask);
883 ret = iwl_mvm_send_cmd(mvm, &hcmd);
885 IWL_DEBUG_SCAN(mvm, "Scan request was sent successfully\n");
888 * If the scan failed, it usually means that the FW was unable
889 * to allocate the time events. Warn on it, but maybe we
890 * should try to send the command again with different params.
892 IWL_ERR(mvm, "Scan failed! ret %d\n", ret);
893 mvm->scan_status = IWL_MVM_SCAN_NONE;
899 int iwl_mvm_unified_sched_scan_lmac(struct iwl_mvm *mvm,
900 struct ieee80211_vif *vif,
901 struct cfg80211_sched_scan_request *req,
902 struct ieee80211_scan_ies *ies)
904 struct iwl_host_cmd hcmd = {
905 .id = SCAN_OFFLOAD_REQUEST_CMD,
906 .len = { sizeof(struct iwl_scan_req_unified_lmac) +
907 sizeof(struct iwl_scan_channel_cfg_lmac) *
908 mvm->fw->ucode_capa.n_scan_channels +
909 sizeof(struct iwl_scan_probe_req), },
910 .data = { mvm->scan_cmd, },
911 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
913 struct iwl_scan_req_unified_lmac *cmd = mvm->scan_cmd;
914 struct iwl_scan_probe_req *preq;
915 struct iwl_mvm_scan_params params = {};
917 u32 flags = 0, ssid_bitmap = 0;
919 lockdep_assert_held(&mvm->mutex);
921 /* we should have failed registration if scan_cmd was NULL */
922 if (WARN_ON(mvm->scan_cmd == NULL))
925 if (req->n_ssids > PROBE_OPTION_MAX ||
926 ies->common_ie_len + ies->len[NL80211_BAND_2GHZ] +
927 ies->len[NL80211_BAND_5GHZ] >
928 iwl_mvm_max_scan_ie_fw_cmd_room(mvm, true) ||
929 req->n_channels > mvm->fw->ucode_capa.n_scan_channels)
932 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, 0, ¶ms);
934 iwl_mvm_build_generic_unified_scan_cmd(mvm, cmd, ¶ms);
936 cmd->n_channels = (u8)req->n_channels;
938 cmd->delay = cpu_to_le32(req->delay);
940 if (iwl_mvm_scan_pass_all(mvm, req))
941 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASS_ALL;
943 flags |= IWL_MVM_LMAC_SCAN_FLAG_MATCH;
945 if (req->n_ssids == 1 && req->ssids[0].ssid_len != 0)
946 flags |= IWL_MVM_LMAC_SCAN_FLAG_PRE_CONNECTION;
948 if (params.passive_fragmented)
949 flags |= IWL_MVM_LMAC_SCAN_FLAG_FRAGMENTED;
951 if (req->n_ssids == 0)
952 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASSIVE;
954 #ifdef CONFIG_IWLWIFI_DEBUGFS
955 if (mvm->scan_iter_notif_enabled)
956 flags |= IWL_MVM_LMAC_SCAN_FLAG_ITER_COMPLETE;
959 cmd->scan_flags |= cpu_to_le32(flags);
961 cmd->flags = iwl_mvm_scan_rxon_flags(req->channels[0]->band);
962 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
963 MAC_FILTER_IN_BEACON);
964 iwl_mvm_unified_scan_fill_tx_cmd(mvm, cmd->tx_cmd, false);
965 iwl_scan_offload_build_ssid(req, cmd->direct_scan, &ssid_bitmap, false);
967 cmd->schedule[0].delay = cpu_to_le16(req->interval / MSEC_PER_SEC);
968 cmd->schedule[0].iterations = IWL_FAST_SCHED_SCAN_ITERATIONS;
969 cmd->schedule[0].full_scan_mul = 1;
971 cmd->schedule[1].delay = cpu_to_le16(req->interval / MSEC_PER_SEC);
972 cmd->schedule[1].iterations = 0xff;
973 cmd->schedule[1].full_scan_mul = IWL_FULL_SCAN_MULTIPLIER;
975 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT &&
976 mvm->last_ebs_successful) {
977 cmd->channel_opt[0].flags =
978 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
979 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
980 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
981 cmd->channel_opt[0].non_ebs_ratio =
982 cpu_to_le16(IWL_DENSE_EBS_SCAN_RATIO);
983 cmd->channel_opt[1].flags =
984 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
985 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
986 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
987 cmd->channel_opt[1].non_ebs_ratio =
988 cpu_to_le16(IWL_SPARSE_EBS_SCAN_RATIO);
991 iwl_mvm_lmac_scan_cfg_channels(mvm, req->channels, req->n_channels,
994 preq = (void *)(cmd->data + sizeof(struct iwl_scan_channel_cfg_lmac) *
995 mvm->fw->ucode_capa.n_scan_channels);
997 iwl_mvm_build_unified_scan_probe(mvm, vif, ies, preq,
998 req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
999 req->mac_addr : NULL,
1000 req->mac_addr_mask);
1002 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1005 "Sched scan request was sent successfully\n");
1008 * If the scan failed, it usually means that the FW was unable
1009 * to allocate the time events. Warn on it, but maybe we
1010 * should try to send the command again with different params.
1012 IWL_ERR(mvm, "Sched scan failed! ret %d\n", ret);
1013 mvm->scan_status = IWL_MVM_SCAN_NONE;
1020 int iwl_mvm_cancel_scan(struct iwl_mvm *mvm)
1022 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
1023 return iwl_umac_scan_stop(mvm, IWL_UMAC_SCAN_UID_REG_SCAN,
1026 if (mvm->scan_status == IWL_MVM_SCAN_NONE)
1029 if (iwl_mvm_is_radio_killed(mvm)) {
1030 ieee80211_scan_completed(mvm->hw, true);
1031 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1032 mvm->scan_status = IWL_MVM_SCAN_NONE;
1036 return iwl_mvm_scan_offload_stop(mvm, true);
1041 struct iwl_umac_scan_done {
1042 struct iwl_mvm *mvm;
1043 enum iwl_umac_scan_uid_type type;
1046 static int rate_to_scan_rate_flag(unsigned int rate)
1048 static const int rate_to_scan_rate[IWL_RATE_COUNT] = {
1049 [IWL_RATE_1M_INDEX] = SCAN_CONFIG_RATE_1M,
1050 [IWL_RATE_2M_INDEX] = SCAN_CONFIG_RATE_2M,
1051 [IWL_RATE_5M_INDEX] = SCAN_CONFIG_RATE_5M,
1052 [IWL_RATE_11M_INDEX] = SCAN_CONFIG_RATE_11M,
1053 [IWL_RATE_6M_INDEX] = SCAN_CONFIG_RATE_6M,
1054 [IWL_RATE_9M_INDEX] = SCAN_CONFIG_RATE_9M,
1055 [IWL_RATE_12M_INDEX] = SCAN_CONFIG_RATE_12M,
1056 [IWL_RATE_18M_INDEX] = SCAN_CONFIG_RATE_18M,
1057 [IWL_RATE_24M_INDEX] = SCAN_CONFIG_RATE_24M,
1058 [IWL_RATE_36M_INDEX] = SCAN_CONFIG_RATE_36M,
1059 [IWL_RATE_48M_INDEX] = SCAN_CONFIG_RATE_48M,
1060 [IWL_RATE_54M_INDEX] = SCAN_CONFIG_RATE_54M,
1063 return rate_to_scan_rate[rate];
1066 static __le32 iwl_mvm_scan_config_rates(struct iwl_mvm *mvm)
1068 struct ieee80211_supported_band *band;
1069 unsigned int rates = 0;
1072 band = &mvm->nvm_data->bands[IEEE80211_BAND_2GHZ];
1073 for (i = 0; i < band->n_bitrates; i++)
1074 rates |= rate_to_scan_rate_flag(band->bitrates[i].hw_value);
1075 band = &mvm->nvm_data->bands[IEEE80211_BAND_5GHZ];
1076 for (i = 0; i < band->n_bitrates; i++)
1077 rates |= rate_to_scan_rate_flag(band->bitrates[i].hw_value);
1079 /* Set both basic rates and supported rates */
1080 rates |= SCAN_CONFIG_SUPPORTED_RATE(rates);
1082 return cpu_to_le32(rates);
1085 int iwl_mvm_config_scan(struct iwl_mvm *mvm)
1088 struct iwl_scan_config *scan_config;
1089 struct ieee80211_supported_band *band;
1091 mvm->nvm_data->bands[IEEE80211_BAND_2GHZ].n_channels +
1092 mvm->nvm_data->bands[IEEE80211_BAND_5GHZ].n_channels;
1093 int ret, i, j = 0, cmd_size, data_size;
1094 struct iwl_host_cmd cmd = {
1098 if (WARN_ON(num_channels > mvm->fw->ucode_capa.n_scan_channels))
1101 cmd_size = sizeof(*scan_config) + mvm->fw->ucode_capa.n_scan_channels;
1103 scan_config = kzalloc(cmd_size, GFP_KERNEL);
1107 data_size = cmd_size - sizeof(struct iwl_mvm_umac_cmd_hdr);
1108 scan_config->hdr.size = cpu_to_le16(data_size);
1109 scan_config->flags = cpu_to_le32(SCAN_CONFIG_FLAG_ACTIVATE |
1110 SCAN_CONFIG_FLAG_ALLOW_CHUB_REQS |
1111 SCAN_CONFIG_FLAG_SET_TX_CHAINS |
1112 SCAN_CONFIG_FLAG_SET_RX_CHAINS |
1113 SCAN_CONFIG_FLAG_SET_ALL_TIMES |
1114 SCAN_CONFIG_FLAG_SET_LEGACY_RATES |
1115 SCAN_CONFIG_FLAG_SET_MAC_ADDR |
1116 SCAN_CONFIG_FLAG_SET_CHANNEL_FLAGS|
1117 SCAN_CONFIG_N_CHANNELS(num_channels));
1118 scan_config->tx_chains = cpu_to_le32(iwl_mvm_get_valid_tx_ant(mvm));
1119 scan_config->rx_chains = cpu_to_le32(iwl_mvm_scan_rx_ant(mvm));
1120 scan_config->legacy_rates = iwl_mvm_scan_config_rates(mvm);
1121 scan_config->out_of_channel_time = cpu_to_le32(170);
1122 scan_config->suspend_time = cpu_to_le32(30);
1123 scan_config->dwell_active = 20;
1124 scan_config->dwell_passive = 110;
1125 scan_config->dwell_fragmented = 20;
1127 memcpy(&scan_config->mac_addr, &mvm->addresses[0].addr, ETH_ALEN);
1129 scan_config->bcast_sta_id = mvm->aux_sta.sta_id;
1130 scan_config->channel_flags = IWL_CHANNEL_FLAG_EBS |
1131 IWL_CHANNEL_FLAG_ACCURATE_EBS |
1132 IWL_CHANNEL_FLAG_EBS_ADD |
1133 IWL_CHANNEL_FLAG_PRE_SCAN_PASSIVE2ACTIVE;
1135 band = &mvm->nvm_data->bands[IEEE80211_BAND_2GHZ];
1136 for (i = 0; i < band->n_channels; i++, j++)
1137 scan_config->channel_array[j] = band->channels[i].hw_value;
1138 band = &mvm->nvm_data->bands[IEEE80211_BAND_5GHZ];
1139 for (i = 0; i < band->n_channels; i++, j++)
1140 scan_config->channel_array[j] = band->channels[i].hw_value;
1142 cmd.data[0] = scan_config;
1143 cmd.len[0] = cmd_size;
1144 cmd.dataflags[0] = IWL_HCMD_DFL_NOCOPY;
1146 IWL_DEBUG_SCAN(mvm, "Sending UMAC scan config\n");
1148 ret = iwl_mvm_send_cmd(mvm, &cmd);
1154 static int iwl_mvm_find_scan_uid(struct iwl_mvm *mvm, u32 uid)
1158 for (i = 0; i < IWL_MVM_MAX_SIMULTANEOUS_SCANS; i++)
1159 if (mvm->scan_uid[i] == uid)
1165 static int iwl_mvm_find_free_scan_uid(struct iwl_mvm *mvm)
1167 return iwl_mvm_find_scan_uid(mvm, 0);
1170 static bool iwl_mvm_find_scan_type(struct iwl_mvm *mvm,
1171 enum iwl_umac_scan_uid_type type)
1175 for (i = 0; i < IWL_MVM_MAX_SIMULTANEOUS_SCANS; i++)
1176 if (mvm->scan_uid[i] & type)
1182 static int iwl_mvm_find_first_scan(struct iwl_mvm *mvm,
1183 enum iwl_umac_scan_uid_type type)
1187 for (i = 0; i < IWL_MVM_MAX_SIMULTANEOUS_SCANS; i++)
1188 if (mvm->scan_uid[i] & type)
1194 static u32 iwl_generate_scan_uid(struct iwl_mvm *mvm,
1195 enum iwl_umac_scan_uid_type type)
1199 /* make sure exactly one bit is on in scan type */
1200 WARN_ON(hweight8(type) != 1);
1203 * Make sure scan uids are unique. If one scan lasts long time while
1204 * others are completing frequently, the seq number will wrap up and
1205 * we may have more than one scan with the same uid.
1208 uid = type | (mvm->scan_seq_num <<
1209 IWL_UMAC_SCAN_UID_SEQ_OFFSET);
1210 mvm->scan_seq_num++;
1211 } while (iwl_mvm_find_scan_uid(mvm, uid) <
1212 IWL_MVM_MAX_SIMULTANEOUS_SCANS);
1214 IWL_DEBUG_SCAN(mvm, "Generated scan UID %u\n", uid);
1220 iwl_mvm_build_generic_umac_scan_cmd(struct iwl_mvm *mvm,
1221 struct iwl_scan_req_umac *cmd,
1222 struct iwl_mvm_scan_params *params)
1224 memset(cmd, 0, ksize(cmd));
1225 cmd->hdr.size = cpu_to_le16(iwl_mvm_scan_size(mvm) -
1226 sizeof(struct iwl_mvm_umac_cmd_hdr));
1227 cmd->active_dwell = params->dwell[IEEE80211_BAND_2GHZ].active;
1228 cmd->passive_dwell = params->dwell[IEEE80211_BAND_2GHZ].passive;
1229 if (params->passive_fragmented)
1230 cmd->fragmented_dwell =
1231 params->dwell[IEEE80211_BAND_2GHZ].fragmented;
1232 cmd->max_out_time = cpu_to_le32(params->max_out_time);
1233 cmd->suspend_time = cpu_to_le32(params->suspend_time);
1234 cmd->scan_priority = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1238 iwl_mvm_umac_scan_cfg_channels(struct iwl_mvm *mvm,
1239 struct ieee80211_channel **channels,
1240 int n_channels, u32 ssid_bitmap,
1241 struct iwl_scan_req_umac *cmd)
1243 struct iwl_scan_channel_cfg_umac *channel_cfg = (void *)&cmd->data;
1246 for (i = 0; i < n_channels; i++) {
1247 channel_cfg[i].flags = cpu_to_le32(ssid_bitmap);
1248 channel_cfg[i].channel_num = channels[i]->hw_value;
1249 channel_cfg[i].iter_count = 1;
1250 channel_cfg[i].iter_interval = 0;
1254 static u32 iwl_mvm_scan_umac_common_flags(struct iwl_mvm *mvm, int n_ssids,
1255 struct cfg80211_ssid *ssids,
1261 flags = IWL_UMAC_SCAN_GEN_FLAGS_PASSIVE;
1263 if (n_ssids == 1 && ssids[0].ssid_len != 0)
1264 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PRE_CONNECT;
1267 flags |= IWL_UMAC_SCAN_GEN_FLAGS_FRAGMENTED;
1269 if (iwl_mvm_rrm_scan_needed(mvm))
1270 flags |= IWL_UMAC_SCAN_GEN_FLAGS_RRM_ENABLED;
1275 int iwl_mvm_scan_umac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1276 struct ieee80211_scan_request *req)
1278 struct iwl_host_cmd hcmd = {
1279 .id = SCAN_REQ_UMAC,
1280 .len = { iwl_mvm_scan_size(mvm), },
1281 .data = { mvm->scan_cmd, },
1282 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1284 struct iwl_scan_req_umac *cmd = mvm->scan_cmd;
1285 struct iwl_scan_req_umac_tail *sec_part = (void *)&cmd->data +
1286 sizeof(struct iwl_scan_channel_cfg_umac) *
1287 mvm->fw->ucode_capa.n_scan_channels;
1288 struct iwl_mvm_scan_params params = {};
1290 u32 ssid_bitmap = 0;
1291 int ret, i, uid_idx;
1293 lockdep_assert_held(&mvm->mutex);
1295 uid_idx = iwl_mvm_find_free_scan_uid(mvm);
1296 if (uid_idx >= IWL_MVM_MAX_SIMULTANEOUS_SCANS)
1299 /* we should have failed registration if scan_cmd was NULL */
1300 if (WARN_ON(mvm->scan_cmd == NULL))
1303 if (WARN_ON(req->req.n_ssids > PROBE_OPTION_MAX ||
1304 req->ies.common_ie_len +
1305 req->ies.len[NL80211_BAND_2GHZ] +
1306 req->ies.len[NL80211_BAND_5GHZ] + 24 + 2 >
1307 SCAN_OFFLOAD_PROBE_REQ_SIZE || req->req.n_channels >
1308 mvm->fw->ucode_capa.n_scan_channels))
1311 iwl_mvm_scan_calc_params(mvm, vif, req->req.n_ssids, req->req.flags,
1314 iwl_mvm_build_generic_umac_scan_cmd(mvm, cmd, ¶ms);
1316 uid = iwl_generate_scan_uid(mvm, IWL_UMAC_SCAN_UID_REG_SCAN);
1317 mvm->scan_uid[uid_idx] = uid;
1318 cmd->uid = cpu_to_le32(uid);
1320 cmd->ooc_priority = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1322 flags = iwl_mvm_scan_umac_common_flags(mvm, req->req.n_ssids,
1324 params.passive_fragmented);
1326 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PASS_ALL;
1328 cmd->general_flags = cpu_to_le32(flags);
1330 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_SINGLE_SCAN_EBS &&
1331 mvm->last_ebs_successful)
1332 cmd->channel_flags = IWL_SCAN_CHANNEL_FLAG_EBS |
1333 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1334 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD;
1336 cmd->n_channels = req->req.n_channels;
1338 for (i = 0; i < req->req.n_ssids; i++)
1339 ssid_bitmap |= BIT(i);
1341 iwl_mvm_umac_scan_cfg_channels(mvm, req->req.channels,
1342 req->req.n_channels, ssid_bitmap, cmd);
1344 sec_part->schedule[0].iter_count = 1;
1345 sec_part->delay = 0;
1347 iwl_mvm_build_unified_scan_probe(mvm, vif, &req->ies, &sec_part->preq,
1348 req->req.flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1349 req->req.mac_addr : NULL,
1350 req->req.mac_addr_mask);
1352 iwl_mvm_scan_fill_ssids(sec_part->direct_scan, req->req.ssids,
1353 req->req.n_ssids, 0);
1355 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1358 "Scan request was sent successfully\n");
1361 * If the scan failed, it usually means that the FW was unable
1362 * to allocate the time events. Warn on it, but maybe we
1363 * should try to send the command again with different params.
1365 IWL_ERR(mvm, "Scan failed! ret %d\n", ret);
1370 int iwl_mvm_sched_scan_umac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1371 struct cfg80211_sched_scan_request *req,
1372 struct ieee80211_scan_ies *ies)
1375 struct iwl_host_cmd hcmd = {
1376 .id = SCAN_REQ_UMAC,
1377 .len = { iwl_mvm_scan_size(mvm), },
1378 .data = { mvm->scan_cmd, },
1379 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1381 struct iwl_scan_req_umac *cmd = mvm->scan_cmd;
1382 struct iwl_scan_req_umac_tail *sec_part = (void *)&cmd->data +
1383 sizeof(struct iwl_scan_channel_cfg_umac) *
1384 mvm->fw->ucode_capa.n_scan_channels;
1385 struct iwl_mvm_scan_params params = {};
1387 u32 ssid_bitmap = 0;
1390 lockdep_assert_held(&mvm->mutex);
1392 uid_idx = iwl_mvm_find_free_scan_uid(mvm);
1393 if (uid_idx >= IWL_MVM_MAX_SIMULTANEOUS_SCANS)
1396 /* we should have failed registration if scan_cmd was NULL */
1397 if (WARN_ON(mvm->scan_cmd == NULL))
1400 if (WARN_ON(req->n_ssids > PROBE_OPTION_MAX ||
1401 ies->common_ie_len + ies->len[NL80211_BAND_2GHZ] +
1402 ies->len[NL80211_BAND_5GHZ] + 24 + 2 >
1403 SCAN_OFFLOAD_PROBE_REQ_SIZE || req->n_channels >
1404 mvm->fw->ucode_capa.n_scan_channels))
1407 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, req->flags,
1410 iwl_mvm_build_generic_umac_scan_cmd(mvm, cmd, ¶ms);
1412 cmd->flags = cpu_to_le32(IWL_UMAC_SCAN_FLAG_PREEMPTIVE);
1414 uid = iwl_generate_scan_uid(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN);
1415 mvm->scan_uid[uid_idx] = uid;
1416 cmd->uid = cpu_to_le32(uid);
1418 cmd->ooc_priority = cpu_to_le32(IWL_SCAN_PRIORITY_LOW);
1420 flags = iwl_mvm_scan_umac_common_flags(mvm, req->n_ssids, req->ssids,
1421 params.passive_fragmented);
1423 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PERIODIC;
1425 if (iwl_mvm_scan_pass_all(mvm, req))
1426 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PASS_ALL;
1428 flags |= IWL_UMAC_SCAN_GEN_FLAGS_MATCH;
1430 cmd->general_flags = cpu_to_le32(flags);
1432 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT &&
1433 mvm->last_ebs_successful)
1434 cmd->channel_flags = IWL_SCAN_CHANNEL_FLAG_EBS |
1435 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1436 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD;
1438 cmd->n_channels = req->n_channels;
1440 iwl_scan_offload_build_ssid(req, sec_part->direct_scan, &ssid_bitmap,
1443 /* This API uses bits 0-19 instead of 1-20. */
1444 ssid_bitmap = ssid_bitmap >> 1;
1446 iwl_mvm_umac_scan_cfg_channels(mvm, req->channels, req->n_channels,
1449 sec_part->schedule[0].interval =
1450 cpu_to_le16(req->interval / MSEC_PER_SEC);
1451 sec_part->schedule[0].iter_count = 0xff;
1453 if (req->delay > U16_MAX) {
1455 "delay value is > 16-bits, set to max possible\n");
1456 sec_part->delay = cpu_to_le16(U16_MAX);
1458 sec_part->delay = cpu_to_le16(req->delay);
1461 iwl_mvm_build_unified_scan_probe(mvm, vif, ies, &sec_part->preq,
1462 req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1463 req->mac_addr : NULL,
1464 req->mac_addr_mask);
1466 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1469 "Sched scan request was sent successfully\n");
1472 * If the scan failed, it usually means that the FW was unable
1473 * to allocate the time events. Warn on it, but maybe we
1474 * should try to send the command again with different params.
1476 IWL_ERR(mvm, "Sched scan failed! ret %d\n", ret);
1481 int iwl_mvm_rx_umac_scan_complete_notif(struct iwl_mvm *mvm,
1482 struct iwl_rx_cmd_buffer *rxb,
1483 struct iwl_device_cmd *cmd)
1485 struct iwl_rx_packet *pkt = rxb_addr(rxb);
1486 struct iwl_umac_scan_complete *notif = (void *)pkt->data;
1487 u32 uid = __le32_to_cpu(notif->uid);
1488 bool sched = !!(uid & IWL_UMAC_SCAN_UID_SCHED_SCAN);
1489 int uid_idx = iwl_mvm_find_scan_uid(mvm, uid);
1492 * Scan uid may be set to zero in case of scan abort request from above.
1494 if (uid_idx >= IWL_MVM_MAX_SIMULTANEOUS_SCANS)
1498 "Scan completed, uid %u type %s, status %s, EBS status %s\n",
1499 uid, sched ? "sched" : "regular",
1500 notif->status == IWL_SCAN_OFFLOAD_COMPLETED ?
1501 "completed" : "aborted",
1502 notif->ebs_status == IWL_SCAN_EBS_SUCCESS ?
1503 "success" : "failed");
1505 if (notif->ebs_status)
1506 mvm->last_ebs_successful = false;
1508 mvm->scan_uid[uid_idx] = 0;
1511 ieee80211_scan_completed(mvm->hw,
1513 IWL_SCAN_OFFLOAD_ABORTED);
1514 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1515 } else if (!iwl_mvm_find_scan_type(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN)) {
1516 ieee80211_sched_scan_stopped(mvm->hw);
1518 IWL_DEBUG_SCAN(mvm, "Another sched scan is running\n");
1524 static bool iwl_scan_umac_done_check(struct iwl_notif_wait_data *notif_wait,
1525 struct iwl_rx_packet *pkt, void *data)
1527 struct iwl_umac_scan_done *scan_done = data;
1528 struct iwl_umac_scan_complete *notif = (void *)pkt->data;
1529 u32 uid = __le32_to_cpu(notif->uid);
1530 int uid_idx = iwl_mvm_find_scan_uid(scan_done->mvm, uid);
1532 if (WARN_ON(pkt->hdr.cmd != SCAN_COMPLETE_UMAC))
1535 if (uid_idx >= IWL_MVM_MAX_SIMULTANEOUS_SCANS)
1539 * Clear scan uid of scans that was aborted from above and completed
1540 * in FW so the RX handler does nothing. Set last_ebs_successful here if
1543 scan_done->mvm->scan_uid[uid_idx] = 0;
1545 if (notif->ebs_status)
1546 scan_done->mvm->last_ebs_successful = false;
1548 return !iwl_mvm_find_scan_type(scan_done->mvm, scan_done->type);
1551 static int iwl_umac_scan_abort_one(struct iwl_mvm *mvm, u32 uid)
1553 struct iwl_umac_scan_abort cmd = {
1554 .hdr.size = cpu_to_le16(sizeof(struct iwl_umac_scan_abort) -
1555 sizeof(struct iwl_mvm_umac_cmd_hdr)),
1556 .uid = cpu_to_le32(uid),
1559 lockdep_assert_held(&mvm->mutex);
1561 IWL_DEBUG_SCAN(mvm, "Sending scan abort, uid %u\n", uid);
1563 return iwl_mvm_send_cmd_pdu(mvm, SCAN_ABORT_UMAC, 0, sizeof(cmd), &cmd);
1566 static int iwl_umac_scan_stop(struct iwl_mvm *mvm,
1567 enum iwl_umac_scan_uid_type type, bool notify)
1569 struct iwl_notification_wait wait_scan_done;
1570 static const u8 scan_done_notif[] = { SCAN_COMPLETE_UMAC, };
1571 struct iwl_umac_scan_done scan_done = {
1577 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_done,
1579 ARRAY_SIZE(scan_done_notif),
1580 iwl_scan_umac_done_check, &scan_done);
1582 IWL_DEBUG_SCAN(mvm, "Preparing to stop scan, type %x\n", type);
1584 for (i = 0; i < IWL_MVM_MAX_SIMULTANEOUS_SCANS; i++) {
1585 if (mvm->scan_uid[i] & type) {
1588 if (iwl_mvm_is_radio_killed(mvm) &&
1589 (type & IWL_UMAC_SCAN_UID_REG_SCAN)) {
1590 ieee80211_scan_completed(mvm->hw, true);
1591 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1595 err = iwl_umac_scan_abort_one(mvm, mvm->scan_uid[i]);
1602 IWL_DEBUG_SCAN(mvm, "Couldn't stop scan\n");
1603 iwl_remove_notification(&mvm->notif_wait, &wait_scan_done);
1607 ret = iwl_wait_notification(&mvm->notif_wait, &wait_scan_done, 1 * HZ);
1612 if (type & IWL_UMAC_SCAN_UID_SCHED_SCAN)
1613 ieee80211_sched_scan_stopped(mvm->hw);
1614 if (type & IWL_UMAC_SCAN_UID_REG_SCAN) {
1615 ieee80211_scan_completed(mvm->hw, true);
1616 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1623 int iwl_mvm_scan_size(struct iwl_mvm *mvm)
1625 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
1626 return sizeof(struct iwl_scan_req_umac) +
1627 sizeof(struct iwl_scan_channel_cfg_umac) *
1628 mvm->fw->ucode_capa.n_scan_channels +
1629 sizeof(struct iwl_scan_req_umac_tail);
1631 return sizeof(struct iwl_scan_req_unified_lmac) +
1632 sizeof(struct iwl_scan_channel_cfg_lmac) *
1633 mvm->fw->ucode_capa.n_scan_channels +
1634 sizeof(struct iwl_scan_probe_req);
1638 * This function is used in nic restart flow, to inform mac80211 about scans
1639 * that was aborted by restart flow or by an assert.
1641 void iwl_mvm_report_scan_aborted(struct iwl_mvm *mvm)
1643 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) {
1646 uid = iwl_mvm_find_first_scan(mvm, IWL_UMAC_SCAN_UID_REG_SCAN);
1647 if (uid < IWL_MVM_MAX_SIMULTANEOUS_SCANS) {
1648 ieee80211_scan_completed(mvm->hw, true);
1649 mvm->scan_uid[uid] = 0;
1651 uid = iwl_mvm_find_first_scan(mvm,
1652 IWL_UMAC_SCAN_UID_SCHED_SCAN);
1653 if (uid < IWL_MVM_MAX_SIMULTANEOUS_SCANS && !mvm->restart_fw) {
1654 ieee80211_sched_scan_stopped(mvm->hw);
1655 mvm->scan_uid[uid] = 0;
1658 /* We shouldn't have any UIDs still set. Loop over all the
1659 * UIDs to make sure there's nothing left there and warn if
1662 for (i = 0; i < IWL_MVM_MAX_SIMULTANEOUS_SCANS; i++) {
1663 if (WARN_ONCE(mvm->scan_uid[i],
1664 "UMAC scan UID %d was not cleaned\n",
1666 mvm->scan_uid[i] = 0;
1669 switch (mvm->scan_status) {
1670 case IWL_MVM_SCAN_NONE:
1672 case IWL_MVM_SCAN_OS:
1673 ieee80211_scan_completed(mvm->hw, true);
1675 case IWL_MVM_SCAN_SCHED:
1677 * Sched scan will be restarted by mac80211 in
1678 * restart_hw, so do not report if FW is about to be
1681 if (!mvm->restart_fw)
1682 ieee80211_sched_scan_stopped(mvm->hw);
Code Review / kvmfornfv.git / blob