2 * Copyright (c) 2015-2016 Quantenna Communications, Inc.
5 * This program is free software; you can redistribute it and/or
6 * modify it under the terms of the GNU General Public License
7 * as published by the Free Software Foundation; either version 2
8 * of the License, or (at your option) any later version.
10 * This program is distributed in the hope that it will be useful,
11 * but WITHOUT ANY WARRANTY; without even the implied warranty of
12 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the
13 * GNU General Public License for more details.
17 #include <linux/kernel.h>
18 #include <linux/module.h>
19 #include <linux/slab.h>
28 #include "qlink_util.h"
31 qtnf_event_handle_sta_assoc(struct qtnf_wmac *mac, struct qtnf_vif *vif,
32 const struct qlink_event_sta_assoc *sta_assoc,
37 struct station_info *sinfo;
42 const struct qlink_tlv_hdr *tlv;
45 if (unlikely(len < sizeof(*sta_assoc))) {
46 pr_err("VIF%u.%u: payload is too short (%u < %zu)\n",
47 mac->macid, vif->vifid, len, sizeof(*sta_assoc));
51 if (vif->wdev.iftype != NL80211_IFTYPE_AP) {
52 pr_err("VIF%u.%u: STA_ASSOC event when not in AP mode\n",
53 mac->macid, vif->vifid);
57 sinfo = kzalloc(sizeof(*sinfo), GFP_KERNEL);
61 sta_addr = sta_assoc->sta_addr;
62 frame_control = le16_to_cpu(sta_assoc->frame_control);
64 pr_debug("VIF%u.%u: MAC:%pM FC:%x\n", mac->macid, vif->vifid, sta_addr,
67 qtnf_sta_list_add(vif, sta_addr);
69 sinfo->assoc_req_ies = NULL;
70 sinfo->assoc_req_ies_len = 0;
71 sinfo->generation = vif->generation;
73 payload_len = len - sizeof(*sta_assoc);
74 tlv = (const struct qlink_tlv_hdr *)sta_assoc->ies;
76 while (payload_len >= sizeof(*tlv)) {
77 tlv_type = le16_to_cpu(tlv->type);
78 tlv_value_len = le16_to_cpu(tlv->len);
79 tlv_full_len = tlv_value_len + sizeof(struct qlink_tlv_hdr);
81 if (tlv_full_len > payload_len) {
86 if (tlv_type == QTN_TLV_ID_IE_SET) {
87 const struct qlink_tlv_ie_set *ie_set;
90 if (payload_len < sizeof(*ie_set)) {
95 ie_set = (const struct qlink_tlv_ie_set *)tlv;
96 ie_len = tlv_value_len -
97 (sizeof(*ie_set) - sizeof(ie_set->hdr));
99 if (ie_set->type == QLINK_IE_SET_ASSOC_REQ && ie_len) {
100 sinfo->assoc_req_ies = ie_set->ie_data;
101 sinfo->assoc_req_ies_len = ie_len;
105 payload_len -= tlv_full_len;
106 tlv = (struct qlink_tlv_hdr *)(tlv->val + tlv_value_len);
114 cfg80211_new_sta(vif->netdev, sta_assoc->sta_addr, sinfo,
123 qtnf_event_handle_sta_deauth(struct qtnf_wmac *mac, struct qtnf_vif *vif,
124 const struct qlink_event_sta_deauth *sta_deauth,
130 if (unlikely(len < sizeof(*sta_deauth))) {
131 pr_err("VIF%u.%u: payload is too short (%u < %zu)\n",
132 mac->macid, vif->vifid, len,
133 sizeof(struct qlink_event_sta_deauth));
137 if (vif->wdev.iftype != NL80211_IFTYPE_AP) {
138 pr_err("VIF%u.%u: STA_DEAUTH event when not in AP mode\n",
139 mac->macid, vif->vifid);
143 sta_addr = sta_deauth->sta_addr;
144 reason = le16_to_cpu(sta_deauth->reason);
146 pr_debug("VIF%u.%u: MAC:%pM reason:%x\n", mac->macid, vif->vifid,
149 if (qtnf_sta_list_del(vif, sta_addr))
150 cfg80211_del_sta(vif->netdev, sta_deauth->sta_addr,
157 qtnf_event_handle_bss_join(struct qtnf_vif *vif,
158 const struct qlink_event_bss_join *join_info,
161 if (unlikely(len < sizeof(*join_info))) {
162 pr_err("VIF%u.%u: payload is too short (%u < %zu)\n",
163 vif->mac->macid, vif->vifid, len,
164 sizeof(struct qlink_event_bss_join));
168 if (vif->wdev.iftype != NL80211_IFTYPE_STATION) {
169 pr_err("VIF%u.%u: BSS_JOIN event when not in STA mode\n",
170 vif->mac->macid, vif->vifid);
174 if (vif->sta_state != QTNF_STA_CONNECTING) {
175 pr_err("VIF%u.%u: BSS_JOIN event when STA is not connecting\n",
176 vif->mac->macid, vif->vifid);
180 pr_debug("VIF%u.%u: BSSID:%pM\n", vif->mac->macid, vif->vifid,
183 cfg80211_connect_result(vif->netdev, join_info->bssid, NULL, 0, NULL,
184 0, le16_to_cpu(join_info->status), GFP_KERNEL);
186 if (le16_to_cpu(join_info->status) == WLAN_STATUS_SUCCESS) {
187 vif->sta_state = QTNF_STA_CONNECTED;
188 netif_carrier_on(vif->netdev);
190 vif->sta_state = QTNF_STA_DISCONNECTED;
197 qtnf_event_handle_bss_leave(struct qtnf_vif *vif,
198 const struct qlink_event_bss_leave *leave_info,
201 if (unlikely(len < sizeof(*leave_info))) {
202 pr_err("VIF%u.%u: payload is too short (%u < %zu)\n",
203 vif->mac->macid, vif->vifid, len,
204 sizeof(struct qlink_event_bss_leave));
208 if (vif->wdev.iftype != NL80211_IFTYPE_STATION) {
209 pr_err("VIF%u.%u: BSS_LEAVE event when not in STA mode\n",
210 vif->mac->macid, vif->vifid);
214 if (vif->sta_state != QTNF_STA_CONNECTED)
215 pr_warn("VIF%u.%u: BSS_LEAVE event when STA is not connected\n",
216 vif->mac->macid, vif->vifid);
218 pr_debug("VIF%u.%u: disconnected\n", vif->mac->macid, vif->vifid);
220 cfg80211_disconnected(vif->netdev, le16_to_cpu(leave_info->reason),
221 NULL, 0, 0, GFP_KERNEL);
223 vif->sta_state = QTNF_STA_DISCONNECTED;
224 netif_carrier_off(vif->netdev);
230 qtnf_event_handle_mgmt_received(struct qtnf_vif *vif,
231 const struct qlink_event_rxmgmt *rxmgmt,
234 const size_t min_len = sizeof(*rxmgmt) +
235 sizeof(struct ieee80211_hdr_3addr);
236 const struct ieee80211_hdr_3addr *frame = (void *)rxmgmt->frame_data;
237 const u16 frame_len = len - sizeof(*rxmgmt);
238 enum nl80211_rxmgmt_flags flags = 0;
240 if (unlikely(len < min_len)) {
241 pr_err("VIF%u.%u: payload is too short (%u < %zu)\n",
242 vif->mac->macid, vif->vifid, len, min_len);
246 if (le32_to_cpu(rxmgmt->flags) & QLINK_RXMGMT_FLAG_ANSWERED)
247 flags |= NL80211_RXMGMT_FLAG_ANSWERED;
249 pr_debug("%s LEN:%u FC:%.4X SA:%pM\n", vif->netdev->name, frame_len,
250 le16_to_cpu(frame->frame_control), frame->addr2);
252 cfg80211_rx_mgmt(&vif->wdev, le32_to_cpu(rxmgmt->freq), rxmgmt->sig_dbm,
253 rxmgmt->frame_data, frame_len, flags);
259 qtnf_event_handle_scan_results(struct qtnf_vif *vif,
260 const struct qlink_event_scan_result *sr,
263 struct cfg80211_bss *bss;
264 struct ieee80211_channel *channel;
265 struct wiphy *wiphy = priv_to_wiphy(vif->mac);
266 enum cfg80211_bss_frame_type frame_type = CFG80211_BSS_FTYPE_UNKNOWN;
271 const struct qlink_tlv_hdr *tlv;
272 const u8 *ies = NULL;
275 if (len < sizeof(*sr)) {
276 pr_err("VIF%u.%u: payload is too short\n", vif->mac->macid,
281 channel = ieee80211_get_channel(wiphy, le16_to_cpu(sr->freq));
283 pr_err("VIF%u.%u: channel at %u MHz not found\n",
284 vif->mac->macid, vif->vifid, le16_to_cpu(sr->freq));
288 payload_len = len - sizeof(*sr);
289 tlv = (struct qlink_tlv_hdr *)sr->payload;
291 while (payload_len >= sizeof(struct qlink_tlv_hdr)) {
292 tlv_type = le16_to_cpu(tlv->type);
293 tlv_value_len = le16_to_cpu(tlv->len);
294 tlv_full_len = tlv_value_len + sizeof(struct qlink_tlv_hdr);
296 if (tlv_full_len > payload_len)
299 if (tlv_type == QTN_TLV_ID_IE_SET) {
300 const struct qlink_tlv_ie_set *ie_set;
303 if (payload_len < sizeof(*ie_set))
306 ie_set = (const struct qlink_tlv_ie_set *)tlv;
307 ie_len = tlv_value_len -
308 (sizeof(*ie_set) - sizeof(ie_set->hdr));
310 switch (ie_set->type) {
311 case QLINK_IE_SET_BEACON_IES:
312 frame_type = CFG80211_BSS_FTYPE_BEACON;
314 case QLINK_IE_SET_PROBE_RESP_IES:
315 frame_type = CFG80211_BSS_FTYPE_PRESP;
318 frame_type = CFG80211_BSS_FTYPE_UNKNOWN;
322 ies = ie_set->ie_data;
327 payload_len -= tlv_full_len;
328 tlv = (struct qlink_tlv_hdr *)(tlv->val + tlv_value_len);
334 bss = cfg80211_inform_bss(wiphy, channel, frame_type,
335 sr->bssid, get_unaligned_le64(&sr->tsf),
336 le16_to_cpu(sr->capab),
337 le16_to_cpu(sr->bintval), ies, ies_len,
338 DBM_TO_MBM(sr->sig_dbm), GFP_KERNEL);
342 cfg80211_put_bss(wiphy, bss);
348 qtnf_event_handle_scan_complete(struct qtnf_wmac *mac,
349 const struct qlink_event_scan_complete *status,
352 if (len < sizeof(*status)) {
353 pr_err("MAC%u: payload is too short\n", mac->macid);
357 qtnf_scan_done(mac, le32_to_cpu(status->flags) & QLINK_SCAN_ABORTED);
363 qtnf_event_handle_freq_change(struct qtnf_wmac *mac,
364 const struct qlink_event_freq_change *data,
367 struct wiphy *wiphy = priv_to_wiphy(mac);
368 struct cfg80211_chan_def chandef;
369 struct qtnf_vif *vif;
372 if (len < sizeof(*data)) {
373 pr_err("MAC%u: payload is too short\n", mac->macid);
377 if (!wiphy->registered)
380 qlink_chandef_q2cfg(wiphy, &data->chan, &chandef);
382 if (!cfg80211_chandef_valid(&chandef)) {
383 pr_err("MAC%u: bad channel freq=%u cf1=%u cf2=%u bw=%u\n",
384 mac->macid, chandef.chan->center_freq,
385 chandef.center_freq1, chandef.center_freq2,
390 pr_debug("MAC%d: new channel ieee=%u freq1=%u freq2=%u bw=%u\n",
391 mac->macid, chandef.chan->hw_value, chandef.center_freq1,
392 chandef.center_freq2, chandef.width);
394 for (i = 0; i < QTNF_MAX_INTF; i++) {
395 vif = &mac->iflist[i];
396 if (vif->wdev.iftype == NL80211_IFTYPE_UNSPECIFIED)
400 mutex_lock(&vif->wdev.mtx);
401 cfg80211_ch_switch_notify(vif->netdev, &chandef);
402 mutex_unlock(&vif->wdev.mtx);
409 static int qtnf_event_handle_radar(struct qtnf_vif *vif,
410 const struct qlink_event_radar *ev,
413 struct wiphy *wiphy = priv_to_wiphy(vif->mac);
414 struct cfg80211_chan_def chandef;
416 if (len < sizeof(*ev)) {
417 pr_err("MAC%u: payload is too short\n", vif->mac->macid);
421 if (!wiphy->registered || !vif->netdev)
424 qlink_chandef_q2cfg(wiphy, &ev->chan, &chandef);
426 if (!cfg80211_chandef_valid(&chandef)) {
427 pr_err("MAC%u: bad channel f1=%u f2=%u bw=%u\n",
429 chandef.center_freq1, chandef.center_freq2,
434 pr_info("%s: radar event=%u f1=%u f2=%u bw=%u\n",
435 vif->netdev->name, ev->event,
436 chandef.center_freq1, chandef.center_freq2,
440 case QLINK_RADAR_DETECTED:
441 cfg80211_radar_event(wiphy, &chandef, GFP_KERNEL);
443 case QLINK_RADAR_CAC_FINISHED:
444 if (!vif->wdev.cac_started)
447 cfg80211_cac_event(vif->netdev, &chandef,
448 NL80211_RADAR_CAC_FINISHED, GFP_KERNEL);
450 case QLINK_RADAR_CAC_ABORTED:
451 if (!vif->wdev.cac_started)
454 cfg80211_cac_event(vif->netdev, &chandef,
455 NL80211_RADAR_CAC_ABORTED, GFP_KERNEL);
457 case QLINK_RADAR_CAC_STARTED:
458 if (vif->wdev.cac_started)
461 if (!wiphy_ext_feature_isset(wiphy,
462 NL80211_EXT_FEATURE_DFS_OFFLOAD))
465 cfg80211_cac_event(vif->netdev, &chandef,
466 NL80211_RADAR_CAC_STARTED, GFP_KERNEL);
469 pr_warn("%s: unhandled radar event %u\n",
470 vif->netdev->name, ev->event);
477 static int qtnf_event_parse(struct qtnf_wmac *mac,
478 const struct sk_buff *event_skb)
480 const struct qlink_event *event;
481 struct qtnf_vif *vif = NULL;
486 event = (const struct qlink_event *)event_skb->data;
487 event_id = le16_to_cpu(event->event_id);
488 event_len = le16_to_cpu(event->mhdr.len);
490 if (likely(event->vifid < QTNF_MAX_INTF)) {
491 vif = &mac->iflist[event->vifid];
493 pr_err("invalid vif(%u)\n", event->vifid);
498 case QLINK_EVENT_STA_ASSOCIATED:
499 ret = qtnf_event_handle_sta_assoc(mac, vif, (const void *)event,
502 case QLINK_EVENT_STA_DEAUTH:
503 ret = qtnf_event_handle_sta_deauth(mac, vif,
507 case QLINK_EVENT_MGMT_RECEIVED:
508 ret = qtnf_event_handle_mgmt_received(vif, (const void *)event,
511 case QLINK_EVENT_SCAN_RESULTS:
512 ret = qtnf_event_handle_scan_results(vif, (const void *)event,
515 case QLINK_EVENT_SCAN_COMPLETE:
516 ret = qtnf_event_handle_scan_complete(mac, (const void *)event,
519 case QLINK_EVENT_BSS_JOIN:
520 ret = qtnf_event_handle_bss_join(vif, (const void *)event,
523 case QLINK_EVENT_BSS_LEAVE:
524 ret = qtnf_event_handle_bss_leave(vif, (const void *)event,
527 case QLINK_EVENT_FREQ_CHANGE:
528 ret = qtnf_event_handle_freq_change(mac, (const void *)event,
531 case QLINK_EVENT_RADAR:
532 ret = qtnf_event_handle_radar(vif, (const void *)event,
536 pr_warn("unknown event type: %x\n", event_id);
543 static int qtnf_event_process_skb(struct qtnf_bus *bus,
544 const struct sk_buff *skb)
546 const struct qlink_event *event;
547 struct qtnf_wmac *mac;
550 if (unlikely(!skb || skb->len < sizeof(*event))) {
551 pr_err("invalid event buffer\n");
555 event = (struct qlink_event *)skb->data;
557 mac = qtnf_core_get_mac(bus, event->macid);
559 pr_debug("new event id:%x len:%u mac:%u vif:%u\n",
560 le16_to_cpu(event->event_id), le16_to_cpu(event->mhdr.len),
561 event->macid, event->vifid);
567 res = qtnf_event_parse(mac, skb);
573 void qtnf_event_work_handler(struct work_struct *work)
575 struct qtnf_bus *bus = container_of(work, struct qtnf_bus, event_work);
576 struct sk_buff_head *event_queue = &bus->trans.event_queue;
577 struct sk_buff *current_event_skb = skb_dequeue(event_queue);
579 while (current_event_skb) {
580 qtnf_event_process_skb(bus, current_event_skb);
581 dev_kfree_skb_any(current_event_skb);
582 current_event_skb = skb_dequeue(event_queue);
projects / releases.git / blob