1 /******************************************************************************
3 * This file is provided under a dual BSD/GPLv2 license. When using or
4 * redistributing this file, you may do so under either license.
8 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
9 * Copyright(c) 2013 - 2014 Intel Mobile Communications GmbH
11 * This program is free software; you can redistribute it and/or modify
12 * it under the terms of version 2 of the GNU General Public License as
13 * published by the Free Software Foundation.
15 * This program is distributed in the hope that it will be useful, but
16 * WITHOUT ANY WARRANTY; without even the implied warranty of
17 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
18 * General Public License for more details.
20 * You should have received a copy of the GNU General Public License
21 * along with this program; if not, write to the Free Software
22 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110,
25 * The full GNU General Public License is included in this distribution
26 * in the file called COPYING.
28 * Contact Information:
29 * Intel Linux Wireless <ilw@linux.intel.com>
30 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
34 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
35 * Copyright(c) 2013 - 2014 Intel Mobile Communications GmbH
36 * All rights reserved.
38 * Redistribution and use in source and binary forms, with or without
39 * modification, are permitted provided that the following conditions
42 * * Redistributions of source code must retain the above copyright
43 * notice, this list of conditions and the following disclaimer.
44 * * Redistributions in binary form must reproduce the above copyright
45 * notice, this list of conditions and the following disclaimer in
46 * the documentation and/or other materials provided with the
48 * * Neither the name Intel Corporation nor the names of its
49 * contributors may be used to endorse or promote products derived
50 * from this software without specific prior written permission.
52 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
53 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
54 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
55 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
56 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
57 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
58 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
59 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
60 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
61 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
62 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
64 *****************************************************************************/
66 #include <linux/etherdevice.h>
67 #include <net/mac80211.h>
70 #include "iwl-eeprom-parse.h"
71 #include "fw-api-scan.h"
73 #define IWL_PLCP_QUIET_THRESH 1
74 #define IWL_ACTIVE_QUIET_TIME 10
76 struct iwl_mvm_scan_params {
79 bool passive_fragmented;
83 } dwell[IEEE80211_NUM_BANDS];
86 enum iwl_umac_scan_uid_type {
87 IWL_UMAC_SCAN_UID_REG_SCAN = BIT(0),
88 IWL_UMAC_SCAN_UID_SCHED_SCAN = BIT(1),
89 IWL_UMAC_SCAN_UID_ALL = IWL_UMAC_SCAN_UID_REG_SCAN |
90 IWL_UMAC_SCAN_UID_SCHED_SCAN,
93 static int iwl_umac_scan_stop(struct iwl_mvm *mvm,
94 enum iwl_umac_scan_uid_type type, bool notify);
96 static u8 iwl_mvm_scan_rx_ant(struct iwl_mvm *mvm)
98 if (mvm->scan_rx_ant != ANT_NONE)
99 return mvm->scan_rx_ant;
100 return mvm->fw->valid_rx_ant;
103 static inline __le16 iwl_mvm_scan_rx_chain(struct iwl_mvm *mvm)
108 rx_ant = iwl_mvm_scan_rx_ant(mvm);
109 rx_chain = rx_ant << PHY_RX_CHAIN_VALID_POS;
110 rx_chain |= rx_ant << PHY_RX_CHAIN_FORCE_MIMO_SEL_POS;
111 rx_chain |= rx_ant << PHY_RX_CHAIN_FORCE_SEL_POS;
112 rx_chain |= 0x1 << PHY_RX_CHAIN_DRIVER_FORCE_POS;
113 return cpu_to_le16(rx_chain);
116 static __le32 iwl_mvm_scan_rxon_flags(enum ieee80211_band band)
118 if (band == IEEE80211_BAND_2GHZ)
119 return cpu_to_le32(PHY_BAND_24);
121 return cpu_to_le32(PHY_BAND_5);
125 iwl_mvm_scan_rate_n_flags(struct iwl_mvm *mvm, enum ieee80211_band band,
130 mvm->scan_last_antenna_idx =
131 iwl_mvm_next_antenna(mvm, mvm->fw->valid_tx_ant,
132 mvm->scan_last_antenna_idx);
133 tx_ant = BIT(mvm->scan_last_antenna_idx) << RATE_MCS_ANT_POS;
135 if (band == IEEE80211_BAND_2GHZ && !no_cck)
136 return cpu_to_le32(IWL_RATE_1M_PLCP | RATE_MCS_CCK_MSK |
139 return cpu_to_le32(IWL_RATE_6M_PLCP | tx_ant);
143 * We insert the SSIDs in an inverted order, because the FW will
144 * invert it back. The most prioritized SSID, which is first in the
145 * request list, is not copied here, but inserted directly to the probe
148 static void iwl_mvm_scan_fill_ssids(struct iwl_ssid_ie *cmd_ssid,
149 struct cfg80211_ssid *ssids,
150 int n_ssids, int first)
154 for (req_idx = n_ssids - 1, fw_idx = 0; req_idx >= first;
155 req_idx--, fw_idx++) {
156 cmd_ssid[fw_idx].id = WLAN_EID_SSID;
157 cmd_ssid[fw_idx].len = ssids[req_idx].ssid_len;
158 memcpy(cmd_ssid[fw_idx].ssid,
160 ssids[req_idx].ssid_len);
165 * If req->n_ssids > 0, it means we should do an active scan.
166 * In case of active scan w/o directed scan, we receive a zero-length SSID
167 * just to notify that this scan is active and not passive.
168 * In order to notify the FW of the number of SSIDs we wish to scan (including
169 * the zero-length one), we need to set the corresponding bits in chan->type,
170 * one for each SSID, and set the active bit (first). If the first SSID is
171 * already included in the probe template, so we need to set only
172 * req->n_ssids - 1 bits in addition to the first bit.
174 static u16 iwl_mvm_get_active_dwell(struct iwl_mvm *mvm,
175 enum ieee80211_band band, int n_ssids)
177 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_BASIC_DWELL)
179 if (band == IEEE80211_BAND_2GHZ)
180 return 20 + 3 * (n_ssids + 1);
181 return 10 + 2 * (n_ssids + 1);
184 static u16 iwl_mvm_get_passive_dwell(struct iwl_mvm *mvm,
185 enum ieee80211_band band)
187 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_BASIC_DWELL)
189 return band == IEEE80211_BAND_2GHZ ? 100 + 20 : 100 + 10;
192 static void iwl_mvm_scan_fill_channels(struct iwl_scan_cmd *cmd,
193 struct cfg80211_scan_request *req,
195 struct iwl_mvm_scan_params *params)
197 struct iwl_scan_channel *chan = (struct iwl_scan_channel *)
198 (cmd->data + le16_to_cpu(cmd->tx_cmd.len));
200 int type = BIT(req->n_ssids) - 1;
201 enum ieee80211_band band = req->channels[0]->band;
204 type |= BIT(req->n_ssids);
206 for (i = 0; i < cmd->channel_count; i++) {
207 chan->channel = cpu_to_le16(req->channels[i]->hw_value);
208 chan->type = cpu_to_le32(type);
209 if (req->channels[i]->flags & IEEE80211_CHAN_NO_IR)
210 chan->type &= cpu_to_le32(~SCAN_CHANNEL_TYPE_ACTIVE);
211 chan->active_dwell = cpu_to_le16(params->dwell[band].active);
212 chan->passive_dwell = cpu_to_le16(params->dwell[band].passive);
213 chan->iteration_count = cpu_to_le16(1);
219 * Fill in probe request with the following parameters:
220 * TA is our vif HW address, which mac80211 ensures we have.
221 * Packet is broadcasted, so this is both SA and DA.
222 * The probe request IE is made out of two: first comes the most prioritized
223 * SSID if a directed scan is requested. Second comes whatever extra
224 * information was given to us as the scan request IE.
226 static u16 iwl_mvm_fill_probe_req(struct ieee80211_mgmt *frame, const u8 *ta,
227 int n_ssids, const u8 *ssid, int ssid_len,
228 const u8 *band_ie, int band_ie_len,
229 const u8 *common_ie, int common_ie_len,
235 /* Make sure there is enough space for the probe request,
236 * two mandatory IEs and the data */
241 frame->frame_control = cpu_to_le16(IEEE80211_STYPE_PROBE_REQ);
242 eth_broadcast_addr(frame->da);
243 memcpy(frame->sa, ta, ETH_ALEN);
244 eth_broadcast_addr(frame->bssid);
249 /* for passive scans, no need to fill anything */
253 /* points to the payload of the request */
254 pos = &frame->u.probe_req.variable[0];
256 /* fill in our SSID IE */
257 left -= ssid_len + 2;
260 *pos++ = WLAN_EID_SSID;
262 if (ssid && ssid_len) { /* ssid_len may be == 0 even if ssid is valid */
263 memcpy(pos, ssid, ssid_len);
269 if (WARN_ON(left < band_ie_len + common_ie_len))
272 if (band_ie && band_ie_len) {
273 memcpy(pos, band_ie, band_ie_len);
278 if (common_ie && common_ie_len) {
279 memcpy(pos, common_ie, common_ie_len);
280 pos += common_ie_len;
281 len += common_ie_len;
287 static void iwl_mvm_scan_condition_iterator(void *data, u8 *mac,
288 struct ieee80211_vif *vif)
290 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
291 bool *global_bound = data;
293 if (vif->type != NL80211_IFTYPE_P2P_DEVICE && mvmvif->phy_ctxt &&
294 mvmvif->phy_ctxt->id < MAX_PHYS)
295 *global_bound = true;
298 static void iwl_mvm_scan_calc_params(struct iwl_mvm *mvm,
299 struct ieee80211_vif *vif,
300 int n_ssids, u32 flags,
301 struct iwl_mvm_scan_params *params)
303 bool global_bound = false;
304 enum ieee80211_band band;
305 u8 frag_passive_dwell = 0;
307 ieee80211_iterate_active_interfaces_atomic(mvm->hw,
308 IEEE80211_IFACE_ITER_NORMAL,
309 iwl_mvm_scan_condition_iterator,
315 params->suspend_time = 30;
316 params->max_out_time = 170;
318 if (iwl_mvm_low_latency(mvm)) {
319 if (mvm->fw->ucode_capa.api[0] &
320 IWL_UCODE_TLV_API_FRAGMENTED_SCAN) {
321 params->suspend_time = 105;
322 params->max_out_time = 70;
323 frag_passive_dwell = 20;
325 params->suspend_time = 120;
326 params->max_out_time = 120;
330 if (frag_passive_dwell && (mvm->fw->ucode_capa.api[0] &
331 IWL_UCODE_TLV_API_FRAGMENTED_SCAN)) {
333 * P2P device scan should not be fragmented to avoid negative
334 * impact on P2P device discovery. Configure max_out_time to be
335 * equal to dwell time on passive channel. Take a longest
336 * possible value, one that corresponds to 2GHz band
338 if (vif->type == NL80211_IFTYPE_P2P_DEVICE) {
340 iwl_mvm_get_passive_dwell(mvm,
341 IEEE80211_BAND_2GHZ);
342 params->max_out_time = passive_dwell;
344 params->passive_fragmented = true;
348 if (flags & NL80211_SCAN_FLAG_LOW_PRIORITY)
349 params->max_out_time = 200;
353 for (band = IEEE80211_BAND_2GHZ; band < IEEE80211_NUM_BANDS; band++) {
354 if (params->passive_fragmented)
355 params->dwell[band].passive = frag_passive_dwell;
357 params->dwell[band].passive =
358 iwl_mvm_get_passive_dwell(mvm, band);
359 params->dwell[band].active = iwl_mvm_get_active_dwell(mvm, band,
364 static inline bool iwl_mvm_rrm_scan_needed(struct iwl_mvm *mvm)
366 /* require rrm scan whenever the fw supports it */
367 return mvm->fw->ucode_capa.capa[0] &
368 IWL_UCODE_TLV_CAPA_DS_PARAM_SET_IE_SUPPORT;
371 static int iwl_mvm_max_scan_ie_fw_cmd_room(struct iwl_mvm *mvm,
376 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN)
377 max_probe_len = SCAN_OFFLOAD_PROBE_REQ_SIZE;
379 max_probe_len = mvm->fw->ucode_capa.max_probe_length;
381 /* we create the 802.11 header and SSID element */
382 max_probe_len -= 24 + 2;
384 /* basic ssid is added only for hw_scan with and old api */
385 if (!(mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_NO_BASIC_SSID) &&
386 !(mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN) &&
390 /* DS parameter set element is added on 2.4GHZ band if required */
391 if (iwl_mvm_rrm_scan_needed(mvm))
394 return max_probe_len;
397 int iwl_mvm_max_scan_ie_len(struct iwl_mvm *mvm, bool is_sched_scan)
399 int max_ie_len = iwl_mvm_max_scan_ie_fw_cmd_room(mvm, is_sched_scan);
401 if (!(mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN))
404 /* TODO: [BUG] This function should return the maximum allowed size of
405 * scan IEs, however the LMAC scan api contains both 2GHZ and 5GHZ IEs
406 * in the same command. So the correct implementation of this function
407 * is just iwl_mvm_max_scan_ie_fw_cmd_room() / 2. Currently the scan
408 * command has only 512 bytes and it would leave us with about 240
409 * bytes for scan IEs, which is clearly not enough. So meanwhile
410 * we will report an incorrect value. This may result in a failure to
411 * issue a scan in unified_scan_lmac and unified_sched_scan_lmac
412 * functions with -ENOBUFS, if a large enough probe will be provided.
417 int iwl_mvm_scan_request(struct iwl_mvm *mvm,
418 struct ieee80211_vif *vif,
419 struct cfg80211_scan_request *req)
421 struct iwl_host_cmd hcmd = {
422 .id = SCAN_REQUEST_CMD,
424 .data = { mvm->scan_cmd, },
425 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
427 struct iwl_scan_cmd *cmd = mvm->scan_cmd;
432 bool basic_ssid = !(mvm->fw->ucode_capa.flags &
433 IWL_UCODE_TLV_FLAGS_NO_BASIC_SSID);
434 struct iwl_mvm_scan_params params = {};
436 lockdep_assert_held(&mvm->mutex);
438 /* we should have failed registration if scan_cmd was NULL */
439 if (WARN_ON(mvm->scan_cmd == NULL))
442 IWL_DEBUG_SCAN(mvm, "Handling mac80211 scan request\n");
443 mvm->scan_status = IWL_MVM_SCAN_OS;
444 memset(cmd, 0, ksize(cmd));
446 cmd->channel_count = (u8)req->n_channels;
447 cmd->quiet_time = cpu_to_le16(IWL_ACTIVE_QUIET_TIME);
448 cmd->quiet_plcp_th = cpu_to_le16(IWL_PLCP_QUIET_THRESH);
449 cmd->rxchain_sel_flags = iwl_mvm_scan_rx_chain(mvm);
451 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, req->flags, ¶ms);
452 cmd->max_out_time = cpu_to_le32(params.max_out_time);
453 cmd->suspend_time = cpu_to_le32(params.suspend_time);
454 if (params.passive_fragmented)
455 cmd->scan_flags |= SCAN_FLAGS_FRAGMENTED_SCAN;
457 cmd->rxon_flags = iwl_mvm_scan_rxon_flags(req->channels[0]->band);
458 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
459 MAC_FILTER_IN_BEACON);
461 if (vif->type == NL80211_IFTYPE_P2P_DEVICE)
462 cmd->type = cpu_to_le32(SCAN_TYPE_DISCOVERY_FORCED);
464 cmd->type = cpu_to_le32(SCAN_TYPE_FORCED);
466 cmd->repeats = cpu_to_le32(1);
469 * If the user asked for passive scan, don't change to active scan if
470 * you see any activity on the channel - remain passive.
472 if (req->n_ssids > 0) {
473 cmd->passive2active = cpu_to_le16(1);
474 cmd->scan_flags |= SCAN_FLAGS_PASSIVE2ACTIVE;
476 ssid = req->ssids[0].ssid;
477 ssid_len = req->ssids[0].ssid_len;
480 cmd->passive2active = 0;
481 cmd->scan_flags &= ~SCAN_FLAGS_PASSIVE2ACTIVE;
484 iwl_mvm_scan_fill_ssids(cmd->direct_scan, req->ssids, req->n_ssids,
487 cmd->tx_cmd.tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
488 3 << TX_CMD_FLG_BT_PRIO_POS);
490 cmd->tx_cmd.sta_id = mvm->aux_sta.sta_id;
491 cmd->tx_cmd.life_time = cpu_to_le32(TX_CMD_LIFE_TIME_INFINITE);
492 cmd->tx_cmd.rate_n_flags =
493 iwl_mvm_scan_rate_n_flags(mvm, req->channels[0]->band,
497 cpu_to_le16(iwl_mvm_fill_probe_req(
498 (struct ieee80211_mgmt *)cmd->data,
500 req->n_ssids, ssid, ssid_len,
501 req->ie, req->ie_len, NULL, 0,
502 mvm->fw->ucode_capa.max_probe_length));
504 iwl_mvm_scan_fill_channels(cmd, req, basic_ssid, ¶ms);
506 cmd->len = cpu_to_le16(sizeof(struct iwl_scan_cmd) +
507 le16_to_cpu(cmd->tx_cmd.len) +
508 (cmd->channel_count * sizeof(struct iwl_scan_channel)));
509 hcmd.len[0] = le16_to_cpu(cmd->len);
511 status = SCAN_RESPONSE_OK;
512 ret = iwl_mvm_send_cmd_status(mvm, &hcmd, &status);
513 if (!ret && status == SCAN_RESPONSE_OK) {
514 IWL_DEBUG_SCAN(mvm, "Scan request was sent successfully\n");
517 * If the scan failed, it usually means that the FW was unable
518 * to allocate the time events. Warn on it, but maybe we
519 * should try to send the command again with different params.
521 IWL_ERR(mvm, "Scan failed! status 0x%x ret %d\n",
523 mvm->scan_status = IWL_MVM_SCAN_NONE;
529 int iwl_mvm_rx_scan_response(struct iwl_mvm *mvm, struct iwl_rx_cmd_buffer *rxb,
530 struct iwl_device_cmd *cmd)
532 struct iwl_rx_packet *pkt = rxb_addr(rxb);
533 struct iwl_cmd_response *resp = (void *)pkt->data;
535 IWL_DEBUG_SCAN(mvm, "Scan response received. status 0x%x\n",
536 le32_to_cpu(resp->status));
540 int iwl_mvm_rx_scan_complete(struct iwl_mvm *mvm, struct iwl_rx_cmd_buffer *rxb,
541 struct iwl_device_cmd *cmd)
543 struct iwl_rx_packet *pkt = rxb_addr(rxb);
544 struct iwl_scan_complete_notif *notif = (void *)pkt->data;
546 lockdep_assert_held(&mvm->mutex);
548 IWL_DEBUG_SCAN(mvm, "Scan complete: status=0x%x scanned channels=%d\n",
549 notif->status, notif->scanned_channels);
551 if (mvm->scan_status == IWL_MVM_SCAN_OS)
552 mvm->scan_status = IWL_MVM_SCAN_NONE;
553 ieee80211_scan_completed(mvm->hw, notif->status != SCAN_COMP_STATUS_OK);
555 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
560 int iwl_mvm_rx_scan_offload_results(struct iwl_mvm *mvm,
561 struct iwl_rx_cmd_buffer *rxb,
562 struct iwl_device_cmd *cmd)
564 struct iwl_rx_packet *pkt = rxb_addr(rxb);
566 if (!(mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) &&
567 !(mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN)) {
568 struct iwl_sched_scan_results *notif = (void *)pkt->data;
570 if (!(notif->client_bitmap & SCAN_CLIENT_SCHED_SCAN))
574 IWL_DEBUG_SCAN(mvm, "Scheduled scan results\n");
575 ieee80211_sched_scan_results(mvm->hw);
580 static bool iwl_mvm_scan_abort_notif(struct iwl_notif_wait_data *notif_wait,
581 struct iwl_rx_packet *pkt, void *data)
583 struct iwl_mvm *mvm =
584 container_of(notif_wait, struct iwl_mvm, notif_wait);
585 struct iwl_scan_complete_notif *notif;
588 switch (pkt->hdr.cmd) {
590 resp = (void *)pkt->data;
591 if (*resp == CAN_ABORT_STATUS) {
593 "Scan can be aborted, wait until completion\n");
598 * If scan cannot be aborted, it means that we had a
599 * SCAN_COMPLETE_NOTIFICATION in the pipe and it called
600 * ieee80211_scan_completed already.
602 IWL_DEBUG_SCAN(mvm, "Scan cannot be aborted, exit now: %d\n",
606 case SCAN_COMPLETE_NOTIFICATION:
607 notif = (void *)pkt->data;
608 IWL_DEBUG_SCAN(mvm, "Scan aborted: status 0x%x\n",
618 static int iwl_mvm_cancel_regular_scan(struct iwl_mvm *mvm)
620 struct iwl_notification_wait wait_scan_abort;
621 static const u8 scan_abort_notif[] = { SCAN_ABORT_CMD,
622 SCAN_COMPLETE_NOTIFICATION };
625 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_abort,
627 ARRAY_SIZE(scan_abort_notif),
628 iwl_mvm_scan_abort_notif, NULL);
630 ret = iwl_mvm_send_cmd_pdu(mvm, SCAN_ABORT_CMD, 0, 0, NULL);
632 IWL_ERR(mvm, "Couldn't send SCAN_ABORT_CMD: %d\n", ret);
633 /* mac80211's state will be cleaned in the nic_restart flow */
634 goto out_remove_notif;
637 return iwl_wait_notification(&mvm->notif_wait, &wait_scan_abort, HZ);
640 iwl_remove_notification(&mvm->notif_wait, &wait_scan_abort);
644 int iwl_mvm_rx_scan_offload_complete_notif(struct iwl_mvm *mvm,
645 struct iwl_rx_cmd_buffer *rxb,
646 struct iwl_device_cmd *cmd)
648 struct iwl_rx_packet *pkt = rxb_addr(rxb);
649 u8 status, ebs_status;
651 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN) {
652 struct iwl_periodic_scan_complete *scan_notif;
654 scan_notif = (void *)pkt->data;
655 status = scan_notif->status;
656 ebs_status = scan_notif->ebs_status;
658 struct iwl_scan_offload_complete *scan_notif;
660 scan_notif = (void *)pkt->data;
661 status = scan_notif->status;
662 ebs_status = scan_notif->ebs_status;
664 /* scan status must be locked for proper checking */
665 lockdep_assert_held(&mvm->mutex);
668 "%s completed, status %s, EBS status %s\n",
669 mvm->scan_status == IWL_MVM_SCAN_SCHED ?
670 "Scheduled scan" : "Scan",
671 status == IWL_SCAN_OFFLOAD_COMPLETED ?
672 "completed" : "aborted",
673 ebs_status == IWL_SCAN_EBS_SUCCESS ?
674 "success" : "failed");
677 /* only call mac80211 completion if the stop was initiated by FW */
678 if (mvm->scan_status == IWL_MVM_SCAN_SCHED) {
679 mvm->scan_status = IWL_MVM_SCAN_NONE;
680 ieee80211_sched_scan_stopped(mvm->hw);
681 } else if (mvm->scan_status == IWL_MVM_SCAN_OS) {
682 mvm->scan_status = IWL_MVM_SCAN_NONE;
683 ieee80211_scan_completed(mvm->hw,
684 status == IWL_SCAN_OFFLOAD_ABORTED);
685 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
688 mvm->last_ebs_successful = !ebs_status;
693 static void iwl_scan_offload_build_tx_cmd(struct iwl_mvm *mvm,
694 struct ieee80211_vif *vif,
695 struct ieee80211_scan_ies *ies,
696 enum ieee80211_band band,
697 struct iwl_tx_cmd *cmd,
702 cmd->tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL);
703 cmd->life_time = cpu_to_le32(TX_CMD_LIFE_TIME_INFINITE);
704 cmd->sta_id = mvm->aux_sta.sta_id;
706 cmd->rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm, band, false);
708 cmd_len = iwl_mvm_fill_probe_req((struct ieee80211_mgmt *)data,
711 ies->ies[band], ies->len[band],
712 ies->common_ies, ies->common_ie_len,
713 SCAN_OFFLOAD_PROBE_REQ_SIZE);
714 cmd->len = cpu_to_le16(cmd_len);
717 static void iwl_build_scan_cmd(struct iwl_mvm *mvm,
718 struct ieee80211_vif *vif,
719 struct cfg80211_sched_scan_request *req,
720 struct iwl_scan_offload_cmd *scan,
721 struct iwl_mvm_scan_params *params)
723 scan->channel_count = req->n_channels;
724 scan->quiet_time = cpu_to_le16(IWL_ACTIVE_QUIET_TIME);
725 scan->quiet_plcp_th = cpu_to_le16(IWL_PLCP_QUIET_THRESH);
726 scan->good_CRC_th = IWL_GOOD_CRC_TH_DEFAULT;
727 scan->rx_chain = iwl_mvm_scan_rx_chain(mvm);
729 scan->max_out_time = cpu_to_le32(params->max_out_time);
730 scan->suspend_time = cpu_to_le32(params->suspend_time);
732 scan->filter_flags |= cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
733 MAC_FILTER_IN_BEACON);
734 scan->scan_type = cpu_to_le32(SCAN_TYPE_BACKGROUND);
735 scan->rep_count = cpu_to_le32(1);
737 if (params->passive_fragmented)
738 scan->scan_flags |= SCAN_FLAGS_FRAGMENTED_SCAN;
741 static int iwl_ssid_exist(u8 *ssid, u8 ssid_len, struct iwl_ssid_ie *ssid_list)
745 for (i = 0; i < PROBE_OPTION_MAX; i++) {
746 if (!ssid_list[i].len)
748 if (ssid_list[i].len == ssid_len &&
749 !memcmp(ssid_list->ssid, ssid, ssid_len))
755 static void iwl_scan_offload_build_ssid(struct cfg80211_sched_scan_request *req,
756 struct iwl_ssid_ie *direct_scan,
757 u32 *ssid_bitmap, bool basic_ssid)
763 * copy SSIDs from match list.
764 * iwl_config_sched_scan_profiles() uses the order of these ssids to
767 for (i = 0; i < req->n_match_sets && i < PROBE_OPTION_MAX; i++) {
768 /* skip empty SSID matchsets */
769 if (!req->match_sets[i].ssid.ssid_len)
771 direct_scan[i].id = WLAN_EID_SSID;
772 direct_scan[i].len = req->match_sets[i].ssid.ssid_len;
773 memcpy(direct_scan[i].ssid, req->match_sets[i].ssid.ssid,
777 /* add SSIDs from scan SSID list */
779 for (j = 0; j < req->n_ssids && i < PROBE_OPTION_MAX; j++) {
780 index = iwl_ssid_exist(req->ssids[j].ssid,
781 req->ssids[j].ssid_len,
784 if (!req->ssids[j].ssid_len && basic_ssid)
786 direct_scan[i].id = WLAN_EID_SSID;
787 direct_scan[i].len = req->ssids[j].ssid_len;
788 memcpy(direct_scan[i].ssid, req->ssids[j].ssid,
790 *ssid_bitmap |= BIT(i + 1);
793 *ssid_bitmap |= BIT(index + 1);
798 static void iwl_build_channel_cfg(struct iwl_mvm *mvm,
799 struct cfg80211_sched_scan_request *req,
801 enum ieee80211_band band,
804 struct iwl_mvm_scan_params *params)
806 u32 n_channels = mvm->fw->ucode_capa.n_scan_channels;
807 __le32 *type = (__le32 *)channels_buffer;
808 __le16 *channel_number = (__le16 *)(type + n_channels);
809 __le16 *iter_count = channel_number + n_channels;
810 __le32 *iter_interval = (__le32 *)(iter_count + n_channels);
811 u8 *active_dwell = (u8 *)(iter_interval + n_channels);
812 u8 *passive_dwell = active_dwell + n_channels;
815 for (i = 0; i < req->n_channels; i++) {
816 struct ieee80211_channel *chan = req->channels[i];
818 if (chan->band != band)
824 channel_number[index] = cpu_to_le16(chan->hw_value);
825 active_dwell[index] = params->dwell[band].active;
826 passive_dwell[index] = params->dwell[band].passive;
828 iter_count[index] = cpu_to_le16(1);
829 iter_interval[index] = 0;
831 if (!(chan->flags & IEEE80211_CHAN_NO_IR))
833 cpu_to_le32(IWL_SCAN_OFFLOAD_CHANNEL_ACTIVE);
835 type[index] |= cpu_to_le32(IWL_SCAN_OFFLOAD_CHANNEL_FULL |
836 IWL_SCAN_OFFLOAD_CHANNEL_PARTIAL);
838 if (chan->flags & IEEE80211_CHAN_NO_HT40)
840 cpu_to_le32(IWL_SCAN_OFFLOAD_CHANNEL_NARROW);
842 /* scan for all SSIDs from req->ssids */
843 type[index] |= cpu_to_le32(ssid_bitmap);
847 int iwl_mvm_config_sched_scan(struct iwl_mvm *mvm,
848 struct ieee80211_vif *vif,
849 struct cfg80211_sched_scan_request *req,
850 struct ieee80211_scan_ies *ies)
852 int band_2ghz = mvm->nvm_data->bands[IEEE80211_BAND_2GHZ].n_channels;
853 int band_5ghz = mvm->nvm_data->bands[IEEE80211_BAND_5GHZ].n_channels;
859 bool basic_ssid = !(mvm->fw->ucode_capa.flags &
860 IWL_UCODE_TLV_FLAGS_NO_BASIC_SSID);
862 struct iwl_scan_offload_cfg *scan_cfg;
863 struct iwl_host_cmd cmd = {
864 .id = SCAN_OFFLOAD_CONFIG_CMD,
866 struct iwl_mvm_scan_params params = {};
868 lockdep_assert_held(&mvm->mutex);
870 cmd_len = sizeof(struct iwl_scan_offload_cfg) +
871 mvm->fw->ucode_capa.n_scan_channels * IWL_SCAN_CHAN_SIZE +
872 2 * SCAN_OFFLOAD_PROBE_REQ_SIZE;
874 scan_cfg = kzalloc(cmd_len, GFP_KERNEL);
878 probes = scan_cfg->data +
879 mvm->fw->ucode_capa.n_scan_channels * IWL_SCAN_CHAN_SIZE;
881 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, 0, ¶ms);
882 iwl_build_scan_cmd(mvm, vif, req, &scan_cfg->scan_cmd, ¶ms);
883 scan_cfg->scan_cmd.len = cpu_to_le16(cmd_len);
885 iwl_scan_offload_build_ssid(req, scan_cfg->scan_cmd.direct_scan,
886 &ssid_bitmap, basic_ssid);
887 /* build tx frames for supported bands */
889 iwl_scan_offload_build_tx_cmd(mvm, vif, ies,
891 &scan_cfg->scan_cmd.tx_cmd[0],
893 iwl_build_channel_cfg(mvm, req, scan_cfg->data,
894 IEEE80211_BAND_2GHZ, &head,
895 ssid_bitmap, ¶ms);
898 iwl_scan_offload_build_tx_cmd(mvm, vif, ies,
900 &scan_cfg->scan_cmd.tx_cmd[1],
902 SCAN_OFFLOAD_PROBE_REQ_SIZE);
903 iwl_build_channel_cfg(mvm, req, scan_cfg->data,
904 IEEE80211_BAND_5GHZ, &head,
905 ssid_bitmap, ¶ms);
908 cmd.data[0] = scan_cfg;
909 cmd.len[0] = cmd_len;
910 cmd.dataflags[0] = IWL_HCMD_DFL_NOCOPY;
912 IWL_DEBUG_SCAN(mvm, "Sending scheduled scan config\n");
914 ret = iwl_mvm_send_cmd(mvm, &cmd);
919 int iwl_mvm_config_sched_scan_profiles(struct iwl_mvm *mvm,
920 struct cfg80211_sched_scan_request *req)
922 struct iwl_scan_offload_profile *profile;
923 struct iwl_scan_offload_profile_cfg *profile_cfg;
924 struct iwl_scan_offload_blacklist *blacklist;
925 struct iwl_host_cmd cmd = {
926 .id = SCAN_OFFLOAD_UPDATE_PROFILES_CMD,
927 .len[1] = sizeof(*profile_cfg),
928 .dataflags[0] = IWL_HCMD_DFL_NOCOPY,
929 .dataflags[1] = IWL_HCMD_DFL_NOCOPY,
935 if (WARN_ON(req->n_match_sets > IWL_SCAN_MAX_PROFILES))
938 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_SHORT_BL)
939 blacklist_len = IWL_SCAN_SHORT_BLACKLIST_LEN;
941 blacklist_len = IWL_SCAN_MAX_BLACKLIST_LEN;
943 blacklist = kzalloc(sizeof(*blacklist) * blacklist_len, GFP_KERNEL);
947 profile_cfg = kzalloc(sizeof(*profile_cfg), GFP_KERNEL);
953 cmd.data[0] = blacklist;
954 cmd.len[0] = sizeof(*blacklist) * blacklist_len;
955 cmd.data[1] = profile_cfg;
957 /* No blacklist configuration */
959 profile_cfg->num_profiles = req->n_match_sets;
960 profile_cfg->active_clients = SCAN_CLIENT_SCHED_SCAN;
961 profile_cfg->pass_match = SCAN_CLIENT_SCHED_SCAN;
962 profile_cfg->match_notify = SCAN_CLIENT_SCHED_SCAN;
963 if (!req->n_match_sets || !req->match_sets[0].ssid.ssid_len)
964 profile_cfg->any_beacon_notify = SCAN_CLIENT_SCHED_SCAN;
966 for (i = 0; i < req->n_match_sets; i++) {
967 profile = &profile_cfg->profiles[i];
968 profile->ssid_index = i;
969 /* Support any cipher and auth algorithm */
970 profile->unicast_cipher = 0xff;
971 profile->auth_alg = 0xff;
972 profile->network_type = IWL_NETWORK_TYPE_ANY;
973 profile->band_selection = IWL_SCAN_OFFLOAD_SELECT_ANY;
974 profile->client_bitmap = SCAN_CLIENT_SCHED_SCAN;
977 IWL_DEBUG_SCAN(mvm, "Sending scheduled scan profile config\n");
979 ret = iwl_mvm_send_cmd(mvm, &cmd);
987 static bool iwl_mvm_scan_pass_all(struct iwl_mvm *mvm,
988 struct cfg80211_sched_scan_request *req)
990 if (req->n_match_sets && req->match_sets[0].ssid.ssid_len) {
992 "Sending scheduled scan with filtering, n_match_sets %d\n",
997 IWL_DEBUG_SCAN(mvm, "Sending Scheduled scan without filtering\n");
1001 int iwl_mvm_sched_scan_start(struct iwl_mvm *mvm,
1002 struct cfg80211_sched_scan_request *req)
1004 struct iwl_scan_offload_req scan_req = {
1005 .watchdog = IWL_SCHED_SCAN_WATCHDOG,
1007 .schedule_line[0].iterations = IWL_FAST_SCHED_SCAN_ITERATIONS,
1008 .schedule_line[0].delay = cpu_to_le16(req->interval / 1000),
1009 .schedule_line[0].full_scan_mul = 1,
1011 .schedule_line[1].iterations = 0xff,
1012 .schedule_line[1].delay = cpu_to_le16(req->interval / 1000),
1013 .schedule_line[1].full_scan_mul = IWL_FULL_SCAN_MULTIPLIER,
1016 if (iwl_mvm_scan_pass_all(mvm, req))
1017 scan_req.flags |= cpu_to_le16(IWL_SCAN_OFFLOAD_FLAG_PASS_ALL);
1019 if (mvm->last_ebs_successful &&
1020 mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT)
1022 cpu_to_le16(IWL_SCAN_OFFLOAD_FLAG_EBS_ACCURATE_MODE);
1024 return iwl_mvm_send_cmd_pdu(mvm, SCAN_OFFLOAD_REQUEST_CMD, 0,
1025 sizeof(scan_req), &scan_req);
1028 int iwl_mvm_scan_offload_start(struct iwl_mvm *mvm,
1029 struct ieee80211_vif *vif,
1030 struct cfg80211_sched_scan_request *req,
1031 struct ieee80211_scan_ies *ies)
1035 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN) {
1036 ret = iwl_mvm_config_sched_scan_profiles(mvm, req);
1039 ret = iwl_mvm_sched_scan_umac(mvm, vif, req, ies);
1040 } else if ((mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN)) {
1041 mvm->scan_status = IWL_MVM_SCAN_SCHED;
1042 ret = iwl_mvm_config_sched_scan_profiles(mvm, req);
1045 ret = iwl_mvm_unified_sched_scan_lmac(mvm, vif, req, ies);
1047 mvm->scan_status = IWL_MVM_SCAN_SCHED;
1048 ret = iwl_mvm_config_sched_scan(mvm, vif, req, ies);
1051 ret = iwl_mvm_config_sched_scan_profiles(mvm, req);
1054 ret = iwl_mvm_sched_scan_start(mvm, req);
1060 static int iwl_mvm_send_scan_offload_abort(struct iwl_mvm *mvm)
1063 struct iwl_host_cmd cmd = {
1064 .id = SCAN_OFFLOAD_ABORT_CMD,
1068 /* Exit instantly with error when device is not ready
1069 * to receive scan abort command or it does not perform
1070 * scheduled scan currently */
1071 if (mvm->scan_status != IWL_MVM_SCAN_SCHED &&
1072 (!(mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN) ||
1073 mvm->scan_status != IWL_MVM_SCAN_OS))
1076 ret = iwl_mvm_send_cmd_status(mvm, &cmd, &status);
1080 if (status != CAN_ABORT_STATUS) {
1082 * The scan abort will return 1 for success or
1083 * 2 for "failure". A failure condition can be
1084 * due to simply not being in an active scan which
1085 * can occur if we send the scan abort before the
1086 * microcode has notified us that a scan is completed.
1088 IWL_DEBUG_SCAN(mvm, "SCAN OFFLOAD ABORT ret %d.\n", status);
1095 int iwl_mvm_scan_offload_stop(struct iwl_mvm *mvm, bool notify)
1098 struct iwl_notification_wait wait_scan_done;
1099 static const u8 scan_done_notif[] = { SCAN_OFFLOAD_COMPLETE, };
1100 bool sched = mvm->scan_status == IWL_MVM_SCAN_SCHED;
1102 lockdep_assert_held(&mvm->mutex);
1104 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
1105 return iwl_umac_scan_stop(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN,
1108 if (mvm->scan_status != IWL_MVM_SCAN_SCHED &&
1109 (!(mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN) ||
1110 mvm->scan_status != IWL_MVM_SCAN_OS)) {
1111 IWL_DEBUG_SCAN(mvm, "No scan to stop\n");
1115 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_done,
1117 ARRAY_SIZE(scan_done_notif),
1120 ret = iwl_mvm_send_scan_offload_abort(mvm);
1122 IWL_DEBUG_SCAN(mvm, "Send stop %sscan failed %d\n",
1123 sched ? "offloaded " : "", ret);
1124 iwl_remove_notification(&mvm->notif_wait, &wait_scan_done);
1128 IWL_DEBUG_SCAN(mvm, "Successfully sent stop %sscan\n",
1129 sched ? "offloaded " : "");
1131 ret = iwl_wait_notification(&mvm->notif_wait, &wait_scan_done, 1 * HZ);
1136 * Clear the scan status so the next scan requests will succeed. This
1137 * also ensures the Rx handler doesn't do anything, as the scan was
1138 * stopped from above. Since the rx handler won't do anything now,
1139 * we have to release the scan reference here.
1141 if (mvm->scan_status == IWL_MVM_SCAN_OS)
1142 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1144 mvm->scan_status = IWL_MVM_SCAN_NONE;
1148 ieee80211_sched_scan_stopped(mvm->hw);
1150 ieee80211_scan_completed(mvm->hw, true);
1156 static void iwl_mvm_unified_scan_fill_tx_cmd(struct iwl_mvm *mvm,
1157 struct iwl_scan_req_tx_cmd *tx_cmd,
1160 tx_cmd[0].tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
1162 tx_cmd[0].rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm,
1163 IEEE80211_BAND_2GHZ,
1165 tx_cmd[0].sta_id = mvm->aux_sta.sta_id;
1167 tx_cmd[1].tx_flags = cpu_to_le32(TX_CMD_FLG_SEQ_CTL |
1169 tx_cmd[1].rate_n_flags = iwl_mvm_scan_rate_n_flags(mvm,
1170 IEEE80211_BAND_5GHZ,
1172 tx_cmd[1].sta_id = mvm->aux_sta.sta_id;
1176 iwl_mvm_lmac_scan_cfg_channels(struct iwl_mvm *mvm,
1177 struct ieee80211_channel **channels,
1178 int n_channels, u32 ssid_bitmap,
1179 struct iwl_scan_req_unified_lmac *cmd)
1181 struct iwl_scan_channel_cfg_lmac *channel_cfg = (void *)&cmd->data;
1184 for (i = 0; i < n_channels; i++) {
1185 channel_cfg[i].channel_num =
1186 cpu_to_le16(channels[i]->hw_value);
1187 channel_cfg[i].iter_count = cpu_to_le16(1);
1188 channel_cfg[i].iter_interval = 0;
1189 channel_cfg[i].flags =
1190 cpu_to_le32(IWL_UNIFIED_SCAN_CHANNEL_PARTIAL |
1195 static u8 *iwl_mvm_copy_and_insert_ds_elem(struct iwl_mvm *mvm, const u8 *ies,
1196 size_t len, u8 *const pos)
1198 static const u8 before_ds_params[] = {
1200 WLAN_EID_SUPP_RATES,
1202 WLAN_EID_EXT_SUPP_RATES,
1207 if (!iwl_mvm_rrm_scan_needed(mvm)) {
1208 memcpy(newpos, ies, len);
1209 return newpos + len;
1212 offs = ieee80211_ie_split(ies, len,
1214 ARRAY_SIZE(before_ds_params),
1217 memcpy(newpos, ies, offs);
1220 /* Add a placeholder for DS Parameter Set element */
1221 *newpos++ = WLAN_EID_DS_PARAMS;
1225 memcpy(newpos, ies + offs, len - offs);
1226 newpos += len - offs;
1232 iwl_mvm_build_unified_scan_probe(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1233 struct ieee80211_scan_ies *ies,
1234 struct iwl_scan_probe_req *preq,
1235 const u8 *mac_addr, const u8 *mac_addr_mask)
1237 struct ieee80211_mgmt *frame = (struct ieee80211_mgmt *)preq->buf;
1241 * Unfortunately, right now the offload scan doesn't support randomising
1242 * within the firmware, so until the firmware API is ready we implement
1243 * it in the driver. This means that the scan iterations won't really be
1244 * random, only when it's restarted, but at least that helps a bit.
1247 get_random_mask_addr(frame->sa, mac_addr, mac_addr_mask);
1249 memcpy(frame->sa, vif->addr, ETH_ALEN);
1251 frame->frame_control = cpu_to_le16(IEEE80211_STYPE_PROBE_REQ);
1252 eth_broadcast_addr(frame->da);
1253 eth_broadcast_addr(frame->bssid);
1254 frame->seq_ctrl = 0;
1256 pos = frame->u.probe_req.variable;
1257 *pos++ = WLAN_EID_SSID;
1260 preq->mac_header.offset = 0;
1261 preq->mac_header.len = cpu_to_le16(24 + 2);
1263 /* Insert ds parameter set element on 2.4 GHz band */
1264 newpos = iwl_mvm_copy_and_insert_ds_elem(mvm,
1265 ies->ies[IEEE80211_BAND_2GHZ],
1266 ies->len[IEEE80211_BAND_2GHZ],
1268 preq->band_data[0].offset = cpu_to_le16(pos - preq->buf);
1269 preq->band_data[0].len = cpu_to_le16(newpos - pos);
1272 memcpy(pos, ies->ies[IEEE80211_BAND_5GHZ],
1273 ies->len[IEEE80211_BAND_5GHZ]);
1274 preq->band_data[1].offset = cpu_to_le16(pos - preq->buf);
1275 preq->band_data[1].len = cpu_to_le16(ies->len[IEEE80211_BAND_5GHZ]);
1276 pos += ies->len[IEEE80211_BAND_5GHZ];
1278 memcpy(pos, ies->common_ies, ies->common_ie_len);
1279 preq->common_data.offset = cpu_to_le16(pos - preq->buf);
1280 preq->common_data.len = cpu_to_le16(ies->common_ie_len);
1284 iwl_mvm_build_generic_unified_scan_cmd(struct iwl_mvm *mvm,
1285 struct iwl_scan_req_unified_lmac *cmd,
1286 struct iwl_mvm_scan_params *params)
1288 memset(cmd, 0, ksize(cmd));
1289 cmd->active_dwell = params->dwell[IEEE80211_BAND_2GHZ].active;
1290 cmd->passive_dwell = params->dwell[IEEE80211_BAND_2GHZ].passive;
1291 if (params->passive_fragmented)
1292 cmd->fragmented_dwell =
1293 params->dwell[IEEE80211_BAND_2GHZ].passive;
1294 cmd->rx_chain_select = iwl_mvm_scan_rx_chain(mvm);
1295 cmd->max_out_time = cpu_to_le32(params->max_out_time);
1296 cmd->suspend_time = cpu_to_le32(params->suspend_time);
1297 cmd->scan_prio = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1298 cmd->iter_num = cpu_to_le32(1);
1300 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT &&
1301 mvm->last_ebs_successful) {
1302 cmd->channel_opt[0].flags =
1303 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
1304 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1305 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
1306 cmd->channel_opt[1].flags =
1307 cpu_to_le16(IWL_SCAN_CHANNEL_FLAG_EBS |
1308 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1309 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD);
1312 if (iwl_mvm_rrm_scan_needed(mvm))
1314 cpu_to_le32(IWL_MVM_LMAC_SCAN_FLAGS_RRM_ENABLED);
1317 int iwl_mvm_unified_scan_lmac(struct iwl_mvm *mvm,
1318 struct ieee80211_vif *vif,
1319 struct ieee80211_scan_request *req)
1321 struct iwl_host_cmd hcmd = {
1322 .id = SCAN_OFFLOAD_REQUEST_CMD,
1323 .len = { sizeof(struct iwl_scan_req_unified_lmac) +
1324 sizeof(struct iwl_scan_channel_cfg_lmac) *
1325 mvm->fw->ucode_capa.n_scan_channels +
1326 sizeof(struct iwl_scan_probe_req), },
1327 .data = { mvm->scan_cmd, },
1328 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1330 struct iwl_scan_req_unified_lmac *cmd = mvm->scan_cmd;
1331 struct iwl_scan_probe_req *preq;
1332 struct iwl_mvm_scan_params params = {};
1334 u32 ssid_bitmap = 0;
1337 lockdep_assert_held(&mvm->mutex);
1339 /* we should have failed registration if scan_cmd was NULL */
1340 if (WARN_ON(mvm->scan_cmd == NULL))
1343 if (req->req.n_ssids > PROBE_OPTION_MAX ||
1344 req->ies.common_ie_len + req->ies.len[NL80211_BAND_2GHZ] +
1345 req->ies.len[NL80211_BAND_5GHZ] >
1346 iwl_mvm_max_scan_ie_fw_cmd_room(mvm, false) ||
1347 req->req.n_channels > mvm->fw->ucode_capa.n_scan_channels)
1350 mvm->scan_status = IWL_MVM_SCAN_OS;
1352 iwl_mvm_scan_calc_params(mvm, vif, req->req.n_ssids, req->req.flags,
1355 iwl_mvm_build_generic_unified_scan_cmd(mvm, cmd, ¶ms);
1357 cmd->n_channels = (u8)req->req.n_channels;
1359 flags = IWL_MVM_LMAC_SCAN_FLAG_PASS_ALL;
1361 if (req->req.n_ssids == 1 && req->req.ssids[0].ssid_len != 0)
1362 flags |= IWL_MVM_LMAC_SCAN_FLAG_PRE_CONNECTION;
1364 if (params.passive_fragmented)
1365 flags |= IWL_MVM_LMAC_SCAN_FLAG_FRAGMENTED;
1367 if (req->req.n_ssids == 0)
1368 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASSIVE;
1370 cmd->scan_flags |= cpu_to_le32(flags);
1372 cmd->flags = iwl_mvm_scan_rxon_flags(req->req.channels[0]->band);
1373 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
1374 MAC_FILTER_IN_BEACON);
1375 iwl_mvm_unified_scan_fill_tx_cmd(mvm, cmd->tx_cmd, req->req.no_cck);
1376 iwl_mvm_scan_fill_ssids(cmd->direct_scan, req->req.ssids,
1377 req->req.n_ssids, 0);
1379 cmd->schedule[0].delay = 0;
1380 cmd->schedule[0].iterations = 1;
1381 cmd->schedule[0].full_scan_mul = 0;
1382 cmd->schedule[1].delay = 0;
1383 cmd->schedule[1].iterations = 0;
1384 cmd->schedule[1].full_scan_mul = 0;
1386 for (i = 1; i <= req->req.n_ssids; i++)
1387 ssid_bitmap |= BIT(i);
1389 iwl_mvm_lmac_scan_cfg_channels(mvm, req->req.channels,
1390 req->req.n_channels, ssid_bitmap,
1393 preq = (void *)(cmd->data + sizeof(struct iwl_scan_channel_cfg_lmac) *
1394 mvm->fw->ucode_capa.n_scan_channels);
1396 iwl_mvm_build_unified_scan_probe(mvm, vif, &req->ies, preq,
1397 req->req.flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1398 req->req.mac_addr : NULL,
1399 req->req.mac_addr_mask);
1401 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1403 IWL_DEBUG_SCAN(mvm, "Scan request was sent successfully\n");
1406 * If the scan failed, it usually means that the FW was unable
1407 * to allocate the time events. Warn on it, but maybe we
1408 * should try to send the command again with different params.
1410 IWL_ERR(mvm, "Scan failed! ret %d\n", ret);
1411 mvm->scan_status = IWL_MVM_SCAN_NONE;
1417 int iwl_mvm_unified_sched_scan_lmac(struct iwl_mvm *mvm,
1418 struct ieee80211_vif *vif,
1419 struct cfg80211_sched_scan_request *req,
1420 struct ieee80211_scan_ies *ies)
1422 struct iwl_host_cmd hcmd = {
1423 .id = SCAN_OFFLOAD_REQUEST_CMD,
1424 .len = { sizeof(struct iwl_scan_req_unified_lmac) +
1425 sizeof(struct iwl_scan_channel_cfg_lmac) *
1426 mvm->fw->ucode_capa.n_scan_channels +
1427 sizeof(struct iwl_scan_probe_req), },
1428 .data = { mvm->scan_cmd, },
1429 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1431 struct iwl_scan_req_unified_lmac *cmd = mvm->scan_cmd;
1432 struct iwl_scan_probe_req *preq;
1433 struct iwl_mvm_scan_params params = {};
1435 u32 flags = 0, ssid_bitmap = 0;
1437 lockdep_assert_held(&mvm->mutex);
1439 /* we should have failed registration if scan_cmd was NULL */
1440 if (WARN_ON(mvm->scan_cmd == NULL))
1443 if (req->n_ssids > PROBE_OPTION_MAX ||
1444 ies->common_ie_len + ies->len[NL80211_BAND_2GHZ] +
1445 ies->len[NL80211_BAND_5GHZ] >
1446 iwl_mvm_max_scan_ie_fw_cmd_room(mvm, true) ||
1447 req->n_channels > mvm->fw->ucode_capa.n_scan_channels)
1450 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, 0, ¶ms);
1452 iwl_mvm_build_generic_unified_scan_cmd(mvm, cmd, ¶ms);
1454 cmd->n_channels = (u8)req->n_channels;
1456 if (iwl_mvm_scan_pass_all(mvm, req))
1457 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASS_ALL;
1459 flags |= IWL_MVM_LMAC_SCAN_FLAG_MATCH;
1461 if (req->n_ssids == 1 && req->ssids[0].ssid_len != 0)
1462 flags |= IWL_MVM_LMAC_SCAN_FLAG_PRE_CONNECTION;
1464 if (params.passive_fragmented)
1465 flags |= IWL_MVM_LMAC_SCAN_FLAG_FRAGMENTED;
1467 if (req->n_ssids == 0)
1468 flags |= IWL_MVM_LMAC_SCAN_FLAG_PASSIVE;
1470 cmd->scan_flags |= cpu_to_le32(flags);
1472 cmd->flags = iwl_mvm_scan_rxon_flags(req->channels[0]->band);
1473 cmd->filter_flags = cpu_to_le32(MAC_FILTER_ACCEPT_GRP |
1474 MAC_FILTER_IN_BEACON);
1475 iwl_mvm_unified_scan_fill_tx_cmd(mvm, cmd->tx_cmd, false);
1476 iwl_scan_offload_build_ssid(req, cmd->direct_scan, &ssid_bitmap, false);
1478 cmd->schedule[0].delay = cpu_to_le16(req->interval / MSEC_PER_SEC);
1479 cmd->schedule[0].iterations = IWL_FAST_SCHED_SCAN_ITERATIONS;
1480 cmd->schedule[0].full_scan_mul = 1;
1482 cmd->schedule[1].delay = cpu_to_le16(req->interval / MSEC_PER_SEC);
1483 cmd->schedule[1].iterations = 0xff;
1484 cmd->schedule[1].full_scan_mul = IWL_FULL_SCAN_MULTIPLIER;
1486 iwl_mvm_lmac_scan_cfg_channels(mvm, req->channels, req->n_channels,
1489 preq = (void *)(cmd->data + sizeof(struct iwl_scan_channel_cfg_lmac) *
1490 mvm->fw->ucode_capa.n_scan_channels);
1492 iwl_mvm_build_unified_scan_probe(mvm, vif, ies, preq,
1493 req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1494 req->mac_addr : NULL,
1495 req->mac_addr_mask);
1497 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1500 "Sched scan request was sent successfully\n");
1503 * If the scan failed, it usually means that the FW was unable
1504 * to allocate the time events. Warn on it, but maybe we
1505 * should try to send the command again with different params.
1507 IWL_ERR(mvm, "Sched scan failed! ret %d\n", ret);
1508 mvm->scan_status = IWL_MVM_SCAN_NONE;
1515 int iwl_mvm_cancel_scan(struct iwl_mvm *mvm)
1517 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
1518 return iwl_umac_scan_stop(mvm, IWL_UMAC_SCAN_UID_REG_SCAN,
1521 if (mvm->scan_status == IWL_MVM_SCAN_NONE)
1524 if (iwl_mvm_is_radio_killed(mvm)) {
1525 ieee80211_scan_completed(mvm->hw, true);
1526 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1527 mvm->scan_status = IWL_MVM_SCAN_NONE;
1531 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN)
1532 return iwl_mvm_scan_offload_stop(mvm, true);
1533 return iwl_mvm_cancel_regular_scan(mvm);
1538 struct iwl_umac_scan_done {
1539 struct iwl_mvm *mvm;
1540 enum iwl_umac_scan_uid_type type;
1543 static int rate_to_scan_rate_flag(unsigned int rate)
1545 static const int rate_to_scan_rate[IWL_RATE_COUNT] = {
1546 [IWL_RATE_1M_INDEX] = SCAN_CONFIG_RATE_1M,
1547 [IWL_RATE_2M_INDEX] = SCAN_CONFIG_RATE_2M,
1548 [IWL_RATE_5M_INDEX] = SCAN_CONFIG_RATE_5M,
1549 [IWL_RATE_11M_INDEX] = SCAN_CONFIG_RATE_11M,
1550 [IWL_RATE_6M_INDEX] = SCAN_CONFIG_RATE_6M,
1551 [IWL_RATE_9M_INDEX] = SCAN_CONFIG_RATE_9M,
1552 [IWL_RATE_12M_INDEX] = SCAN_CONFIG_RATE_12M,
1553 [IWL_RATE_18M_INDEX] = SCAN_CONFIG_RATE_18M,
1554 [IWL_RATE_24M_INDEX] = SCAN_CONFIG_RATE_24M,
1555 [IWL_RATE_36M_INDEX] = SCAN_CONFIG_RATE_36M,
1556 [IWL_RATE_48M_INDEX] = SCAN_CONFIG_RATE_48M,
1557 [IWL_RATE_54M_INDEX] = SCAN_CONFIG_RATE_54M,
1560 return rate_to_scan_rate[rate];
1563 static __le32 iwl_mvm_scan_config_rates(struct iwl_mvm *mvm)
1565 struct ieee80211_supported_band *band;
1566 unsigned int rates = 0;
1569 band = &mvm->nvm_data->bands[IEEE80211_BAND_2GHZ];
1570 for (i = 0; i < band->n_bitrates; i++)
1571 rates |= rate_to_scan_rate_flag(band->bitrates[i].hw_value);
1572 band = &mvm->nvm_data->bands[IEEE80211_BAND_5GHZ];
1573 for (i = 0; i < band->n_bitrates; i++)
1574 rates |= rate_to_scan_rate_flag(band->bitrates[i].hw_value);
1576 /* Set both basic rates and supported rates */
1577 rates |= SCAN_CONFIG_SUPPORTED_RATE(rates);
1579 return cpu_to_le32(rates);
1582 int iwl_mvm_config_scan(struct iwl_mvm *mvm)
1585 struct iwl_scan_config *scan_config;
1586 struct ieee80211_supported_band *band;
1588 mvm->nvm_data->bands[IEEE80211_BAND_2GHZ].n_channels +
1589 mvm->nvm_data->bands[IEEE80211_BAND_5GHZ].n_channels;
1590 int ret, i, j = 0, cmd_size, data_size;
1591 struct iwl_host_cmd cmd = {
1595 if (WARN_ON(num_channels > mvm->fw->ucode_capa.n_scan_channels))
1598 cmd_size = sizeof(*scan_config) + mvm->fw->ucode_capa.n_scan_channels;
1600 scan_config = kzalloc(cmd_size, GFP_KERNEL);
1604 data_size = cmd_size - sizeof(struct iwl_mvm_umac_cmd_hdr);
1605 scan_config->hdr.size = cpu_to_le16(data_size);
1606 scan_config->flags = cpu_to_le32(SCAN_CONFIG_FLAG_ACTIVATE |
1607 SCAN_CONFIG_FLAG_ALLOW_CHUB_REQS |
1608 SCAN_CONFIG_FLAG_SET_TX_CHAINS |
1609 SCAN_CONFIG_FLAG_SET_RX_CHAINS |
1610 SCAN_CONFIG_FLAG_SET_ALL_TIMES |
1611 SCAN_CONFIG_FLAG_SET_LEGACY_RATES |
1612 SCAN_CONFIG_FLAG_SET_MAC_ADDR |
1613 SCAN_CONFIG_FLAG_SET_CHANNEL_FLAGS|
1614 SCAN_CONFIG_N_CHANNELS(num_channels));
1615 scan_config->tx_chains = cpu_to_le32(mvm->fw->valid_tx_ant);
1616 scan_config->rx_chains = cpu_to_le32(iwl_mvm_scan_rx_ant(mvm));
1617 scan_config->legacy_rates = iwl_mvm_scan_config_rates(mvm);
1618 scan_config->out_of_channel_time = cpu_to_le32(170);
1619 scan_config->suspend_time = cpu_to_le32(30);
1620 scan_config->dwell_active = 20;
1621 scan_config->dwell_passive = 110;
1622 scan_config->dwell_fragmented = 20;
1624 memcpy(&scan_config->mac_addr, &mvm->addresses[0].addr, ETH_ALEN);
1626 scan_config->bcast_sta_id = mvm->aux_sta.sta_id;
1627 scan_config->channel_flags = IWL_CHANNEL_FLAG_EBS |
1628 IWL_CHANNEL_FLAG_ACCURATE_EBS |
1629 IWL_CHANNEL_FLAG_EBS_ADD |
1630 IWL_CHANNEL_FLAG_PRE_SCAN_PASSIVE2ACTIVE;
1632 band = &mvm->nvm_data->bands[IEEE80211_BAND_2GHZ];
1633 for (i = 0; i < band->n_channels; i++, j++)
1634 scan_config->channel_array[j] = band->channels[i].center_freq;
1635 band = &mvm->nvm_data->bands[IEEE80211_BAND_5GHZ];
1636 for (i = 0; i < band->n_channels; i++, j++)
1637 scan_config->channel_array[j] = band->channels[i].center_freq;
1639 cmd.data[0] = scan_config;
1640 cmd.len[0] = cmd_size;
1641 cmd.dataflags[0] = IWL_HCMD_DFL_NOCOPY;
1643 IWL_DEBUG_SCAN(mvm, "Sending UMAC scan config\n");
1645 ret = iwl_mvm_send_cmd(mvm, &cmd);
1651 static int iwl_mvm_find_scan_uid(struct iwl_mvm *mvm, u32 uid)
1655 for (i = 0; i < IWL_MVM_MAX_SIMULTANEOUS_SCANS; i++)
1656 if (mvm->scan_uid[i] == uid)
1662 static int iwl_mvm_find_free_scan_uid(struct iwl_mvm *mvm)
1664 return iwl_mvm_find_scan_uid(mvm, 0);
1667 static bool iwl_mvm_find_scan_type(struct iwl_mvm *mvm,
1668 enum iwl_umac_scan_uid_type type)
1672 for (i = 0; i < IWL_MVM_MAX_SIMULTANEOUS_SCANS; i++)
1673 if (mvm->scan_uid[i] & type)
1679 static u32 iwl_generate_scan_uid(struct iwl_mvm *mvm,
1680 enum iwl_umac_scan_uid_type type)
1684 /* make sure exactly one bit is on in scan type */
1685 WARN_ON(hweight8(type) != 1);
1688 * Make sure scan uids are unique. If one scan lasts long time while
1689 * others are completing frequently, the seq number will wrap up and
1690 * we may have more than one scan with the same uid.
1693 uid = type | (mvm->scan_seq_num <<
1694 IWL_UMAC_SCAN_UID_SEQ_OFFSET);
1695 mvm->scan_seq_num++;
1696 } while (iwl_mvm_find_scan_uid(mvm, uid) <
1697 IWL_MVM_MAX_SIMULTANEOUS_SCANS);
1699 IWL_DEBUG_SCAN(mvm, "Generated scan UID %u\n", uid);
1705 iwl_mvm_build_generic_umac_scan_cmd(struct iwl_mvm *mvm,
1706 struct iwl_scan_req_umac *cmd,
1707 struct iwl_mvm_scan_params *params)
1709 memset(cmd, 0, ksize(cmd));
1710 cmd->hdr.size = cpu_to_le16(iwl_mvm_scan_size(mvm) -
1711 sizeof(struct iwl_mvm_umac_cmd_hdr));
1712 cmd->active_dwell = params->dwell[IEEE80211_BAND_2GHZ].active;
1713 cmd->passive_dwell = params->dwell[IEEE80211_BAND_2GHZ].passive;
1714 if (params->passive_fragmented)
1715 cmd->fragmented_dwell =
1716 params->dwell[IEEE80211_BAND_2GHZ].passive;
1717 cmd->max_out_time = cpu_to_le32(params->max_out_time);
1718 cmd->suspend_time = cpu_to_le32(params->suspend_time);
1719 cmd->scan_priority = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1723 iwl_mvm_umac_scan_cfg_channels(struct iwl_mvm *mvm,
1724 struct ieee80211_channel **channels,
1725 int n_channels, u32 ssid_bitmap,
1726 struct iwl_scan_req_umac *cmd)
1728 struct iwl_scan_channel_cfg_umac *channel_cfg = (void *)&cmd->data;
1731 for (i = 0; i < n_channels; i++) {
1732 channel_cfg[i].flags = cpu_to_le32(ssid_bitmap);
1733 channel_cfg[i].channel_num = channels[i]->hw_value;
1734 channel_cfg[i].iter_count = 1;
1735 channel_cfg[i].iter_interval = 0;
1739 static u32 iwl_mvm_scan_umac_common_flags(struct iwl_mvm *mvm, int n_ssids,
1740 struct cfg80211_ssid *ssids,
1746 flags = IWL_UMAC_SCAN_GEN_FLAGS_PASSIVE;
1748 if (n_ssids == 1 && ssids[0].ssid_len != 0)
1749 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PRE_CONNECT;
1752 flags |= IWL_UMAC_SCAN_GEN_FLAGS_FRAGMENTED;
1754 if (iwl_mvm_rrm_scan_needed(mvm))
1755 flags |= IWL_UMAC_SCAN_GEN_FLAGS_RRM_ENABLED;
1760 int iwl_mvm_scan_umac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1761 struct ieee80211_scan_request *req)
1763 struct iwl_host_cmd hcmd = {
1764 .id = SCAN_REQ_UMAC,
1765 .len = { iwl_mvm_scan_size(mvm), },
1766 .data = { mvm->scan_cmd, },
1767 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1769 struct iwl_scan_req_umac *cmd = mvm->scan_cmd;
1770 struct iwl_scan_req_umac_tail *sec_part = (void *)&cmd->data +
1771 sizeof(struct iwl_scan_channel_cfg_umac) *
1772 mvm->fw->ucode_capa.n_scan_channels;
1773 struct iwl_mvm_scan_params params = {};
1775 u32 ssid_bitmap = 0;
1776 int ret, i, uid_idx;
1778 lockdep_assert_held(&mvm->mutex);
1780 uid_idx = iwl_mvm_find_free_scan_uid(mvm);
1781 if (uid_idx >= IWL_MVM_MAX_SIMULTANEOUS_SCANS)
1784 /* we should have failed registration if scan_cmd was NULL */
1785 if (WARN_ON(mvm->scan_cmd == NULL))
1788 if (WARN_ON(req->req.n_ssids > PROBE_OPTION_MAX ||
1789 req->ies.common_ie_len +
1790 req->ies.len[NL80211_BAND_2GHZ] +
1791 req->ies.len[NL80211_BAND_5GHZ] + 24 + 2 >
1792 SCAN_OFFLOAD_PROBE_REQ_SIZE || req->req.n_channels >
1793 mvm->fw->ucode_capa.n_scan_channels))
1796 iwl_mvm_scan_calc_params(mvm, vif, req->req.n_ssids, req->req.flags,
1799 iwl_mvm_build_generic_umac_scan_cmd(mvm, cmd, ¶ms);
1801 uid = iwl_generate_scan_uid(mvm, IWL_UMAC_SCAN_UID_REG_SCAN);
1802 mvm->scan_uid[uid_idx] = uid;
1803 cmd->uid = cpu_to_le32(uid);
1805 cmd->ooc_priority = cpu_to_le32(IWL_SCAN_PRIORITY_HIGH);
1807 flags = iwl_mvm_scan_umac_common_flags(mvm, req->req.n_ssids,
1809 params.passive_fragmented);
1811 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PASS_ALL;
1813 cmd->general_flags = cpu_to_le32(flags);
1814 cmd->n_channels = req->req.n_channels;
1816 for (i = 0; i < req->req.n_ssids; i++)
1817 ssid_bitmap |= BIT(i);
1819 iwl_mvm_umac_scan_cfg_channels(mvm, req->req.channels,
1820 req->req.n_channels, ssid_bitmap, cmd);
1822 sec_part->schedule[0].iter_count = 1;
1823 sec_part->delay = 0;
1825 iwl_mvm_build_unified_scan_probe(mvm, vif, &req->ies, &sec_part->preq,
1826 req->req.flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1827 req->req.mac_addr : NULL,
1828 req->req.mac_addr_mask);
1830 iwl_mvm_scan_fill_ssids(sec_part->direct_scan, req->req.ssids,
1831 req->req.n_ssids, 0);
1833 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1836 "Scan request was sent successfully\n");
1839 * If the scan failed, it usually means that the FW was unable
1840 * to allocate the time events. Warn on it, but maybe we
1841 * should try to send the command again with different params.
1843 IWL_ERR(mvm, "Scan failed! ret %d\n", ret);
1848 int iwl_mvm_sched_scan_umac(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1849 struct cfg80211_sched_scan_request *req,
1850 struct ieee80211_scan_ies *ies)
1853 struct iwl_host_cmd hcmd = {
1854 .id = SCAN_REQ_UMAC,
1855 .len = { iwl_mvm_scan_size(mvm), },
1856 .data = { mvm->scan_cmd, },
1857 .dataflags = { IWL_HCMD_DFL_NOCOPY, },
1859 struct iwl_scan_req_umac *cmd = mvm->scan_cmd;
1860 struct iwl_scan_req_umac_tail *sec_part = (void *)&cmd->data +
1861 sizeof(struct iwl_scan_channel_cfg_umac) *
1862 mvm->fw->ucode_capa.n_scan_channels;
1863 struct iwl_mvm_scan_params params = {};
1865 u32 ssid_bitmap = 0;
1868 lockdep_assert_held(&mvm->mutex);
1870 uid_idx = iwl_mvm_find_free_scan_uid(mvm);
1871 if (uid_idx >= IWL_MVM_MAX_SIMULTANEOUS_SCANS)
1874 /* we should have failed registration if scan_cmd was NULL */
1875 if (WARN_ON(mvm->scan_cmd == NULL))
1878 if (WARN_ON(req->n_ssids > PROBE_OPTION_MAX ||
1879 ies->common_ie_len + ies->len[NL80211_BAND_2GHZ] +
1880 ies->len[NL80211_BAND_5GHZ] + 24 + 2 >
1881 SCAN_OFFLOAD_PROBE_REQ_SIZE || req->n_channels >
1882 mvm->fw->ucode_capa.n_scan_channels))
1885 iwl_mvm_scan_calc_params(mvm, vif, req->n_ssids, req->flags,
1888 iwl_mvm_build_generic_umac_scan_cmd(mvm, cmd, ¶ms);
1890 cmd->flags = cpu_to_le32(IWL_UMAC_SCAN_FLAG_PREEMPTIVE);
1892 uid = iwl_generate_scan_uid(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN);
1893 mvm->scan_uid[uid_idx] = uid;
1894 cmd->uid = cpu_to_le32(uid);
1896 cmd->ooc_priority = cpu_to_le32(IWL_SCAN_PRIORITY_LOW);
1898 flags = iwl_mvm_scan_umac_common_flags(mvm, req->n_ssids, req->ssids,
1899 params.passive_fragmented);
1901 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PERIODIC;
1903 if (iwl_mvm_scan_pass_all(mvm, req))
1904 flags |= IWL_UMAC_SCAN_GEN_FLAGS_PASS_ALL;
1906 flags |= IWL_UMAC_SCAN_GEN_FLAGS_MATCH;
1908 cmd->general_flags = cpu_to_le32(flags);
1910 if (mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_EBS_SUPPORT &&
1911 mvm->last_ebs_successful)
1912 cmd->channel_flags = IWL_SCAN_CHANNEL_FLAG_EBS |
1913 IWL_SCAN_CHANNEL_FLAG_EBS_ACCURATE |
1914 IWL_SCAN_CHANNEL_FLAG_CACHE_ADD;
1916 cmd->n_channels = req->n_channels;
1918 iwl_scan_offload_build_ssid(req, sec_part->direct_scan, &ssid_bitmap,
1921 /* This API uses bits 0-19 instead of 1-20. */
1922 ssid_bitmap = ssid_bitmap >> 1;
1924 iwl_mvm_umac_scan_cfg_channels(mvm, req->channels, req->n_channels,
1927 sec_part->schedule[0].interval =
1928 cpu_to_le16(req->interval / MSEC_PER_SEC);
1929 sec_part->schedule[0].iter_count = 0xff;
1931 sec_part->delay = 0;
1933 iwl_mvm_build_unified_scan_probe(mvm, vif, ies, &sec_part->preq,
1934 req->flags & NL80211_SCAN_FLAG_RANDOM_ADDR ?
1935 req->mac_addr : NULL,
1936 req->mac_addr_mask);
1938 ret = iwl_mvm_send_cmd(mvm, &hcmd);
1941 "Sched scan request was sent successfully\n");
1944 * If the scan failed, it usually means that the FW was unable
1945 * to allocate the time events. Warn on it, but maybe we
1946 * should try to send the command again with different params.
1948 IWL_ERR(mvm, "Sched scan failed! ret %d\n", ret);
1953 int iwl_mvm_rx_umac_scan_complete_notif(struct iwl_mvm *mvm,
1954 struct iwl_rx_cmd_buffer *rxb,
1955 struct iwl_device_cmd *cmd)
1957 struct iwl_rx_packet *pkt = rxb_addr(rxb);
1958 struct iwl_umac_scan_complete *notif = (void *)pkt->data;
1959 u32 uid = __le32_to_cpu(notif->uid);
1960 bool sched = !!(uid & IWL_UMAC_SCAN_UID_SCHED_SCAN);
1961 int uid_idx = iwl_mvm_find_scan_uid(mvm, uid);
1964 * Scan uid may be set to zero in case of scan abort request from above.
1966 if (uid_idx >= IWL_MVM_MAX_SIMULTANEOUS_SCANS)
1970 "Scan completed, uid %u type %s, status %s, EBS status %s\n",
1971 uid, sched ? "sched" : "regular",
1972 notif->status == IWL_SCAN_OFFLOAD_COMPLETED ?
1973 "completed" : "aborted",
1974 notif->ebs_status == IWL_SCAN_EBS_SUCCESS ?
1975 "success" : "failed");
1977 mvm->last_ebs_successful = !notif->ebs_status;
1978 mvm->scan_uid[uid_idx] = 0;
1981 ieee80211_scan_completed(mvm->hw,
1983 IWL_SCAN_OFFLOAD_ABORTED);
1984 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
1985 } else if (!iwl_mvm_find_scan_type(mvm, IWL_UMAC_SCAN_UID_SCHED_SCAN)) {
1986 ieee80211_sched_scan_stopped(mvm->hw);
1988 IWL_DEBUG_SCAN(mvm, "Another sched scan is running\n");
1994 static bool iwl_scan_umac_done_check(struct iwl_notif_wait_data *notif_wait,
1995 struct iwl_rx_packet *pkt, void *data)
1997 struct iwl_umac_scan_done *scan_done = data;
1998 struct iwl_umac_scan_complete *notif = (void *)pkt->data;
1999 u32 uid = __le32_to_cpu(notif->uid);
2000 int uid_idx = iwl_mvm_find_scan_uid(scan_done->mvm, uid);
2002 if (WARN_ON(pkt->hdr.cmd != SCAN_COMPLETE_UMAC))
2005 if (uid_idx >= IWL_MVM_MAX_SIMULTANEOUS_SCANS)
2009 * Clear scan uid of scans that was aborted from above and completed
2010 * in FW so the RX handler does nothing.
2012 scan_done->mvm->scan_uid[uid_idx] = 0;
2014 return !iwl_mvm_find_scan_type(scan_done->mvm, scan_done->type);
2017 static int iwl_umac_scan_abort_one(struct iwl_mvm *mvm, u32 uid)
2019 struct iwl_umac_scan_abort cmd = {
2020 .hdr.size = cpu_to_le16(sizeof(struct iwl_umac_scan_abort) -
2021 sizeof(struct iwl_mvm_umac_cmd_hdr)),
2022 .uid = cpu_to_le32(uid),
2025 lockdep_assert_held(&mvm->mutex);
2027 IWL_DEBUG_SCAN(mvm, "Sending scan abort, uid %u\n", uid);
2029 return iwl_mvm_send_cmd_pdu(mvm, SCAN_ABORT_UMAC, 0, sizeof(cmd), &cmd);
2032 static int iwl_umac_scan_stop(struct iwl_mvm *mvm,
2033 enum iwl_umac_scan_uid_type type, bool notify)
2035 struct iwl_notification_wait wait_scan_done;
2036 static const u8 scan_done_notif[] = { SCAN_COMPLETE_UMAC, };
2037 struct iwl_umac_scan_done scan_done = {
2043 iwl_init_notification_wait(&mvm->notif_wait, &wait_scan_done,
2045 ARRAY_SIZE(scan_done_notif),
2046 iwl_scan_umac_done_check, &scan_done);
2048 IWL_DEBUG_SCAN(mvm, "Preparing to stop scan, type %x\n", type);
2050 for (i = 0; i < IWL_MVM_MAX_SIMULTANEOUS_SCANS; i++) {
2051 if (mvm->scan_uid[i] & type) {
2054 if (iwl_mvm_is_radio_killed(mvm) &&
2055 (type & IWL_UMAC_SCAN_UID_REG_SCAN)) {
2056 ieee80211_scan_completed(mvm->hw, true);
2057 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
2061 err = iwl_umac_scan_abort_one(mvm, mvm->scan_uid[i]);
2068 IWL_DEBUG_SCAN(mvm, "Couldn't stop scan\n");
2069 iwl_remove_notification(&mvm->notif_wait, &wait_scan_done);
2073 ret = iwl_wait_notification(&mvm->notif_wait, &wait_scan_done, 1 * HZ);
2078 if (type & IWL_UMAC_SCAN_UID_SCHED_SCAN)
2079 ieee80211_sched_scan_stopped(mvm->hw);
2080 if (type & IWL_UMAC_SCAN_UID_REG_SCAN) {
2081 ieee80211_scan_completed(mvm->hw, true);
2082 iwl_mvm_unref(mvm, IWL_MVM_REF_SCAN);
2089 int iwl_mvm_scan_size(struct iwl_mvm *mvm)
2091 if (mvm->fw->ucode_capa.capa[0] & IWL_UCODE_TLV_CAPA_UMAC_SCAN)
2092 return sizeof(struct iwl_scan_req_umac) +
2093 sizeof(struct iwl_scan_channel_cfg_umac) *
2094 mvm->fw->ucode_capa.n_scan_channels +
2095 sizeof(struct iwl_scan_req_umac_tail);
2097 if (mvm->fw->ucode_capa.api[0] & IWL_UCODE_TLV_API_LMAC_SCAN)
2098 return sizeof(struct iwl_scan_req_unified_lmac) +
2099 sizeof(struct iwl_scan_channel_cfg_lmac) *
2100 mvm->fw->ucode_capa.n_scan_channels +
2101 sizeof(struct iwl_scan_probe_req);
2103 return sizeof(struct iwl_scan_cmd) +
2104 mvm->fw->ucode_capa.max_probe_length +
2105 mvm->fw->ucode_capa.n_scan_channels *
2106 sizeof(struct iwl_scan_channel);
projects / cascardo / linux.git / blob