4 * Copyright 2003, Jouni Malinen <jkmaline@cc.hut.fi>
5 * Copyright 2002-2005, Instant802 Networks, Inc.
6 * Copyright 2005-2006, Devicescape Software, Inc.
7 * Copyright 2006-2007 Jiri Benc <jbenc@suse.cz>
8 * Copyright 2007, Michael Wu <flamingice@sourmilk.net>
9 * Copyright 2007-2010, Intel Corporation
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of the GNU General Public License version 2 as
13 * published by the Free Software Foundation.
16 #include <linux/ieee80211.h>
17 #include <linux/export.h>
18 #include <net/mac80211.h>
19 #include "ieee80211_i.h"
22 static void __check_htcap_disable(struct ieee80211_sub_if_data *sdata,
23 struct ieee80211_sta_ht_cap *ht_cap,
26 __le16 le_flag = cpu_to_le16(flag);
27 if (sdata->u.mgd.ht_capa_mask.cap_info & le_flag) {
28 if (!(sdata->u.mgd.ht_capa.cap_info & le_flag))
33 void ieee80211_apply_htcap_overrides(struct ieee80211_sub_if_data *sdata,
34 struct ieee80211_sta_ht_cap *ht_cap)
36 u8 *scaps = (u8 *)(&sdata->u.mgd.ht_capa.mcs.rx_mask);
37 u8 *smask = (u8 *)(&sdata->u.mgd.ht_capa_mask.mcs.rx_mask);
40 if (sdata->vif.type != NL80211_IFTYPE_STATION) {
41 /* AP interfaces call this code when adding new stations,
42 * so just silently ignore non station interfaces.
47 /* NOTE: If you add more over-rides here, update register_hw
48 * ht_capa_mod_msk logic in main.c as well.
49 * And, if this method can ever change ht_cap.ht_supported, fix
50 * the check in ieee80211_add_ht_ie.
53 /* check for HT over-rides, MCS rates first. */
54 for (i = 0; i < IEEE80211_HT_MCS_MASK_LEN; i++) {
56 ht_cap->mcs.rx_mask[i] &= ~m; /* turn off all masked bits */
57 /* Add back rates that are supported */
58 ht_cap->mcs.rx_mask[i] |= (m & scaps[i]);
61 /* Force removal of HT-40 capabilities? */
62 __check_htcap_disable(sdata, ht_cap, IEEE80211_HT_CAP_SUP_WIDTH_20_40);
63 __check_htcap_disable(sdata, ht_cap, IEEE80211_HT_CAP_SGI_40);
65 /* Allow user to disable SGI-20 (SGI-40 is handled above) */
66 __check_htcap_disable(sdata, ht_cap, IEEE80211_HT_CAP_SGI_20);
68 /* Allow user to disable the max-AMSDU bit. */
69 __check_htcap_disable(sdata, ht_cap, IEEE80211_HT_CAP_MAX_AMSDU);
71 /* Allow user to decrease AMPDU factor */
72 if (sdata->u.mgd.ht_capa_mask.ampdu_params_info &
73 IEEE80211_HT_AMPDU_PARM_FACTOR) {
74 u8 n = sdata->u.mgd.ht_capa.ampdu_params_info
75 & IEEE80211_HT_AMPDU_PARM_FACTOR;
76 if (n < ht_cap->ampdu_factor)
77 ht_cap->ampdu_factor = n;
80 /* Allow the user to increase AMPDU density. */
81 if (sdata->u.mgd.ht_capa_mask.ampdu_params_info &
82 IEEE80211_HT_AMPDU_PARM_DENSITY) {
83 u8 n = (sdata->u.mgd.ht_capa.ampdu_params_info &
84 IEEE80211_HT_AMPDU_PARM_DENSITY)
85 >> IEEE80211_HT_AMPDU_PARM_DENSITY_SHIFT;
86 if (n > ht_cap->ampdu_density)
87 ht_cap->ampdu_density = n;
92 void ieee80211_ht_cap_ie_to_sta_ht_cap(struct ieee80211_sub_if_data *sdata,
93 struct ieee80211_supported_band *sband,
94 struct ieee80211_ht_cap *ht_cap_ie,
95 struct ieee80211_sta_ht_cap *ht_cap)
97 u8 ampdu_info, tx_mcs_set_cap;
98 int i, max_tx_streams;
102 memset(ht_cap, 0, sizeof(*ht_cap));
104 if (!ht_cap_ie || !sband->ht_cap.ht_supported)
107 ht_cap->ht_supported = true;
110 * The bits listed in this expression should be
111 * the same for the peer and us, if the station
112 * advertises more then we can't use those thus
115 ht_cap->cap = le16_to_cpu(ht_cap_ie->cap_info) &
117 ~(IEEE80211_HT_CAP_LDPC_CODING |
118 IEEE80211_HT_CAP_SUP_WIDTH_20_40 |
119 IEEE80211_HT_CAP_GRN_FLD |
120 IEEE80211_HT_CAP_SGI_20 |
121 IEEE80211_HT_CAP_SGI_40 |
122 IEEE80211_HT_CAP_DSSSCCK40));
124 /* Unset 40 MHz if we're not using a 40 MHz channel */
125 switch (sdata->vif.bss_conf.chandef.width) {
126 case NL80211_CHAN_WIDTH_20_NOHT:
127 case NL80211_CHAN_WIDTH_20:
128 ht_cap->cap &= ~IEEE80211_HT_CAP_SGI_40;
129 ht_cap->cap &= ~IEEE80211_HT_CAP_SUP_WIDTH_20_40;
131 case NL80211_CHAN_WIDTH_40:
132 case NL80211_CHAN_WIDTH_80:
133 case NL80211_CHAN_WIDTH_80P80:
134 case NL80211_CHAN_WIDTH_160:
139 * The STBC bits are asymmetric -- if we don't have
140 * TX then mask out the peer's RX and vice versa.
142 if (!(sband->ht_cap.cap & IEEE80211_HT_CAP_TX_STBC))
143 ht_cap->cap &= ~IEEE80211_HT_CAP_RX_STBC;
144 if (!(sband->ht_cap.cap & IEEE80211_HT_CAP_RX_STBC))
145 ht_cap->cap &= ~IEEE80211_HT_CAP_TX_STBC;
147 ampdu_info = ht_cap_ie->ampdu_params_info;
148 ht_cap->ampdu_factor =
149 ampdu_info & IEEE80211_HT_AMPDU_PARM_FACTOR;
150 ht_cap->ampdu_density =
151 (ampdu_info & IEEE80211_HT_AMPDU_PARM_DENSITY) >> 2;
153 /* own MCS TX capabilities */
154 tx_mcs_set_cap = sband->ht_cap.mcs.tx_params;
156 /* Copy peer MCS TX capabilities, the driver might need them. */
157 ht_cap->mcs.tx_params = ht_cap_ie->mcs.tx_params;
159 /* can we TX with MCS rates? */
160 if (!(tx_mcs_set_cap & IEEE80211_HT_MCS_TX_DEFINED))
163 /* Counting from 0, therefore +1 */
164 if (tx_mcs_set_cap & IEEE80211_HT_MCS_TX_RX_DIFF)
166 ((tx_mcs_set_cap & IEEE80211_HT_MCS_TX_MAX_STREAMS_MASK)
167 >> IEEE80211_HT_MCS_TX_MAX_STREAMS_SHIFT) + 1;
169 max_tx_streams = IEEE80211_HT_MCS_TX_MAX_STREAMS;
172 * 802.11n-2009 20.3.5 / 20.6 says:
173 * - indices 0 to 7 and 32 are single spatial stream
174 * - 8 to 31 are multiple spatial streams using equal modulation
175 * [8..15 for two streams, 16..23 for three and 24..31 for four]
176 * - remainder are multiple spatial streams using unequal modulation
178 for (i = 0; i < max_tx_streams; i++)
179 ht_cap->mcs.rx_mask[i] =
180 sband->ht_cap.mcs.rx_mask[i] & ht_cap_ie->mcs.rx_mask[i];
182 if (tx_mcs_set_cap & IEEE80211_HT_MCS_TX_UNEQUAL_MODULATION)
183 for (i = IEEE80211_HT_MCS_UNEQUAL_MODULATION_START_BYTE;
184 i < IEEE80211_HT_MCS_MASK_LEN; i++)
185 ht_cap->mcs.rx_mask[i] =
186 sband->ht_cap.mcs.rx_mask[i] &
187 ht_cap_ie->mcs.rx_mask[i];
189 /* handle MCS rate 32 too */
190 if (sband->ht_cap.mcs.rx_mask[32/8] & ht_cap_ie->mcs.rx_mask[32/8] & 1)
191 ht_cap->mcs.rx_mask[32/8] |= 1;
194 * If user has specified capability over-rides, take care
197 ieee80211_apply_htcap_overrides(sdata, ht_cap);
200 void ieee80211_sta_tear_down_BA_sessions(struct sta_info *sta,
201 enum ieee80211_agg_stop_reason reason)
205 cancel_work_sync(&sta->ampdu_mlme.work);
207 for (i = 0; i < IEEE80211_NUM_TIDS; i++) {
208 __ieee80211_stop_tx_ba_session(sta, i, reason);
209 __ieee80211_stop_rx_ba_session(sta, i, WLAN_BACK_RECIPIENT,
210 WLAN_REASON_QSTA_LEAVE_QBSS,
211 reason != AGG_STOP_DESTROY_STA &&
212 reason != AGG_STOP_PEER_REQUEST);
216 void ieee80211_ba_session_work(struct work_struct *work)
218 struct sta_info *sta =
219 container_of(work, struct sta_info, ampdu_mlme.work);
220 struct tid_ampdu_tx *tid_tx;
224 * When this flag is set, new sessions should be
225 * blocked, and existing sessions will be torn
226 * down by the code that set the flag, so this
229 if (test_sta_flag(sta, WLAN_STA_BLOCK_BA))
232 mutex_lock(&sta->ampdu_mlme.mtx);
233 for (tid = 0; tid < IEEE80211_NUM_TIDS; tid++) {
234 if (test_and_clear_bit(tid, sta->ampdu_mlme.tid_rx_timer_expired))
235 ___ieee80211_stop_rx_ba_session(
236 sta, tid, WLAN_BACK_RECIPIENT,
237 WLAN_REASON_QSTA_TIMEOUT, true);
239 if (test_and_clear_bit(tid,
240 sta->ampdu_mlme.tid_rx_stop_requested))
241 ___ieee80211_stop_rx_ba_session(
242 sta, tid, WLAN_BACK_RECIPIENT,
243 WLAN_REASON_UNSPECIFIED, true);
245 tid_tx = sta->ampdu_mlme.tid_start_tx[tid];
248 * Assign it over to the normal tid_tx array
249 * where it "goes live".
251 spin_lock_bh(&sta->lock);
253 sta->ampdu_mlme.tid_start_tx[tid] = NULL;
254 /* could there be a race? */
255 if (sta->ampdu_mlme.tid_tx[tid])
258 ieee80211_assign_tid_tx(sta, tid, tid_tx);
259 spin_unlock_bh(&sta->lock);
261 ieee80211_tx_ba_session_handle_start(sta, tid);
265 tid_tx = rcu_dereference_protected_tid_tx(sta, tid);
266 if (tid_tx && test_and_clear_bit(HT_AGG_STATE_WANT_STOP,
268 ___ieee80211_stop_tx_ba_session(sta, tid,
269 AGG_STOP_LOCAL_REQUEST);
271 mutex_unlock(&sta->ampdu_mlme.mtx);
274 void ieee80211_send_delba(struct ieee80211_sub_if_data *sdata,
275 const u8 *da, u16 tid,
276 u16 initiator, u16 reason_code)
278 struct ieee80211_local *local = sdata->local;
280 struct ieee80211_mgmt *mgmt;
283 skb = dev_alloc_skb(sizeof(*mgmt) + local->hw.extra_tx_headroom);
287 skb_reserve(skb, local->hw.extra_tx_headroom);
288 mgmt = (struct ieee80211_mgmt *) skb_put(skb, 24);
290 memcpy(mgmt->da, da, ETH_ALEN);
291 memcpy(mgmt->sa, sdata->vif.addr, ETH_ALEN);
292 if (sdata->vif.type == NL80211_IFTYPE_AP ||
293 sdata->vif.type == NL80211_IFTYPE_AP_VLAN ||
294 sdata->vif.type == NL80211_IFTYPE_MESH_POINT)
295 memcpy(mgmt->bssid, sdata->vif.addr, ETH_ALEN);
296 else if (sdata->vif.type == NL80211_IFTYPE_STATION)
297 memcpy(mgmt->bssid, sdata->u.mgd.bssid, ETH_ALEN);
298 else if (sdata->vif.type == NL80211_IFTYPE_ADHOC)
299 memcpy(mgmt->bssid, sdata->u.ibss.bssid, ETH_ALEN);
301 mgmt->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
302 IEEE80211_STYPE_ACTION);
304 skb_put(skb, 1 + sizeof(mgmt->u.action.u.delba));
306 mgmt->u.action.category = WLAN_CATEGORY_BACK;
307 mgmt->u.action.u.delba.action_code = WLAN_ACTION_DELBA;
308 params = (u16)(initiator << 11); /* bit 11 initiator */
309 params |= (u16)(tid << 12); /* bit 15:12 TID number */
311 mgmt->u.action.u.delba.params = cpu_to_le16(params);
312 mgmt->u.action.u.delba.reason_code = cpu_to_le16(reason_code);
314 ieee80211_tx_skb_tid(sdata, skb, tid);
317 void ieee80211_process_delba(struct ieee80211_sub_if_data *sdata,
318 struct sta_info *sta,
319 struct ieee80211_mgmt *mgmt, size_t len)
324 params = le16_to_cpu(mgmt->u.action.u.delba.params);
325 tid = (params & IEEE80211_DELBA_PARAM_TID_MASK) >> 12;
326 initiator = (params & IEEE80211_DELBA_PARAM_INITIATOR_MASK) >> 11;
328 ht_dbg_ratelimited(sdata, "delba from %pM (%s) tid %d reason code %d\n",
329 mgmt->sa, initiator ? "initiator" : "recipient",
331 le16_to_cpu(mgmt->u.action.u.delba.reason_code));
333 if (initiator == WLAN_BACK_INITIATOR)
334 __ieee80211_stop_rx_ba_session(sta, tid, WLAN_BACK_INITIATOR, 0,
337 __ieee80211_stop_tx_ba_session(sta, tid, AGG_STOP_PEER_REQUEST);
340 int ieee80211_send_smps_action(struct ieee80211_sub_if_data *sdata,
341 enum ieee80211_smps_mode smps, const u8 *da,
344 struct ieee80211_local *local = sdata->local;
346 struct ieee80211_mgmt *action_frame;
348 /* 27 = header + category + action + smps mode */
349 skb = dev_alloc_skb(27 + local->hw.extra_tx_headroom);
353 skb_reserve(skb, local->hw.extra_tx_headroom);
354 action_frame = (void *)skb_put(skb, 27);
355 memcpy(action_frame->da, da, ETH_ALEN);
356 memcpy(action_frame->sa, sdata->dev->dev_addr, ETH_ALEN);
357 memcpy(action_frame->bssid, bssid, ETH_ALEN);
358 action_frame->frame_control = cpu_to_le16(IEEE80211_FTYPE_MGMT |
359 IEEE80211_STYPE_ACTION);
360 action_frame->u.action.category = WLAN_CATEGORY_HT;
361 action_frame->u.action.u.ht_smps.action = WLAN_HT_ACTION_SMPS;
363 case IEEE80211_SMPS_AUTOMATIC:
364 case IEEE80211_SMPS_NUM_MODES:
366 case IEEE80211_SMPS_OFF:
367 action_frame->u.action.u.ht_smps.smps_control =
368 WLAN_HT_SMPS_CONTROL_DISABLED;
370 case IEEE80211_SMPS_STATIC:
371 action_frame->u.action.u.ht_smps.smps_control =
372 WLAN_HT_SMPS_CONTROL_STATIC;
374 case IEEE80211_SMPS_DYNAMIC:
375 action_frame->u.action.u.ht_smps.smps_control =
376 WLAN_HT_SMPS_CONTROL_DYNAMIC;
380 /* we'll do more on status of this frame */
381 IEEE80211_SKB_CB(skb)->flags |= IEEE80211_TX_CTL_REQ_TX_STATUS;
382 ieee80211_tx_skb(sdata, skb);
387 void ieee80211_request_smps_work(struct work_struct *work)
389 struct ieee80211_sub_if_data *sdata =
390 container_of(work, struct ieee80211_sub_if_data,
391 u.mgd.request_smps_work);
393 mutex_lock(&sdata->u.mgd.mtx);
394 __ieee80211_request_smps(sdata, sdata->u.mgd.driver_smps_mode);
395 mutex_unlock(&sdata->u.mgd.mtx);
398 void ieee80211_request_smps(struct ieee80211_vif *vif,
399 enum ieee80211_smps_mode smps_mode)
401 struct ieee80211_sub_if_data *sdata = vif_to_sdata(vif);
403 if (WARN_ON(vif->type != NL80211_IFTYPE_STATION))
406 if (WARN_ON(smps_mode == IEEE80211_SMPS_OFF))
407 smps_mode = IEEE80211_SMPS_AUTOMATIC;
409 if (sdata->u.mgd.driver_smps_mode == smps_mode)
412 sdata->u.mgd.driver_smps_mode = smps_mode;
414 ieee80211_queue_work(&sdata->local->hw,
415 &sdata->u.mgd.request_smps_work);
417 /* this might change ... don't want non-open drivers using it */
418 EXPORT_SYMBOL_GPL(ieee80211_request_smps);