Accueil Explorer Aide
S'inscrire Connexion
phyus
/
linux-vybrid_public
8
0
Fork 0
Fichiers Tickets 0 Pull Requests 0 Wiki
Aborescence: b73bb5f13b
Branches Tags
linux-vybrid_pu...
/
drivers
/
net
/
wireless
/
iwlegacy
/
iwl-scan.c

iwl-scan.c 14 KB
Historique Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505506507508509510511512513514515516517518519520521522523524525526527528529530531532533534535536537538539540541542543544545546547548549 
  1. /******************************************************************************
    2. 

  2.  *
    3. 

  3.  * GPL LICENSE SUMMARY
    4. 

  4.  *
    5. 

  5.  * Copyright(c) 2008 - 2011 Intel Corporation. All rights reserved.
    6. 

  6.  *
    7. 

  7.  * This program is free software; you can redistribute it and/or modify
    8. 

  8.  * it under the terms of version 2 of the GNU General Public License as
    9. 

  9.  * published by the Free Software Foundation.
    10. 

  10.  *
    11. 

  11.  * This program is distributed in the hope that it will be useful, but
    12. 

  12.  * WITHOUT ANY WARRANTY; without even the implied warranty of
    13. 

  13.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the GNU
    14. 

  14.  * General Public License for more details.
    15. 

  15.  *
    16. 

  16.  * You should have received a copy of the GNU General Public License
    17. 

  17.  * along with this program; if not, write to the Free Software
    18. 

  18.  * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110,
    19. 

  19.  * USA
    20. 

  20.  *
    21. 

  21.  * The full GNU General Public License is included in this distribution
    22. 

  22.  * in the file called LICENSE.GPL.
    23. 

  23.  *
    24. 

  24.  * Contact Information:
    25. 

  25.  *  Intel Linux Wireless <ilw@linux.intel.com>
    26. 

  26.  * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
    27. 

  27.  *****************************************************************************/
    28. 

  28. #include <linux/slab.h>
    29. 

  29. #include <linux/types.h>
    30. 

  30. #include <linux/etherdevice.h>
    31. 

  31. #include <net/mac80211.h>
    32. 

  32. 

  33. #include "iwl-eeprom.h"
    34. 

  34. #include "iwl-dev.h"
    35. 

  35. #include "iwl-core.h"
    36. 

  36. #include "iwl-sta.h"
    37. 

  37. #include "iwl-io.h"
    38. 

  38. #include "iwl-helpers.h"
    39. 

  39. 

  40. /* For active scan, listen ACTIVE_DWELL_TIME (msec) on each channel after
    41. 

  41.  * sending probe req.  This should be set long enough to hear probe responses
    42. 

  42.  * from more than one AP.  */
    43. 

  43. #define IL_ACTIVE_DWELL_TIME_24    (30)       /* all times in msec */
    44. 

  44. #define IL_ACTIVE_DWELL_TIME_52    (20)
    45. 

  45. 

  46. #define IL_ACTIVE_DWELL_FACTOR_24GHZ (3)
    47. 

  47. #define IL_ACTIVE_DWELL_FACTOR_52GHZ (2)
    48. 

  48. 

  49. /* For passive scan, listen PASSIVE_DWELL_TIME (msec) on each channel.
    50. 

  50.  * Must be set longer than active dwell time.
    51. 

  51.  * For the most reliable scan, set > AP beacon interval (typically 100msec). */
    52. 

  52. #define IL_PASSIVE_DWELL_TIME_24   (20)       /* all times in msec */
    53. 

  53. #define IL_PASSIVE_DWELL_TIME_52   (10)
    54. 

  54. #define IL_PASSIVE_DWELL_BASE      (100)
    55. 

  55. #define IL_CHANNEL_TUNE_TIME       5
    56. 

  56. 

  57. static int il_send_scan_abort(struct il_priv *il)
    58. 

  58. {
    59. 

  59. 	int ret;
    60. 

  60. 	struct il_rx_pkt *pkt;
    61. 

  61. 	struct il_host_cmd cmd = {
    62. 

  62. 		.id = REPLY_SCAN_ABORT_CMD,
    63. 

  63. 		.flags = CMD_WANT_SKB,
    64. 

  64. 	};
    65. 

  65. 

  66. 	/* Exit instantly with error when device is not ready
    67. 

  67. 	 * to receive scan abort command or it does not perform
    68. 

  68. 	 * hardware scan currently */
    69. 

  69. 	if (!test_bit(STATUS_READY, &il->status) ||
    70. 

  70. 	    !test_bit(STATUS_GEO_CONFIGURED, &il->status) ||
    71. 

  71. 	    !test_bit(STATUS_SCAN_HW, &il->status) ||
    72. 

  72. 	    test_bit(STATUS_FW_ERROR, &il->status) ||
    73. 

  73. 	    test_bit(STATUS_EXIT_PENDING, &il->status))
    74. 

  74. 		return -EIO;
    75. 

  75. 

  76. 	ret = il_send_cmd_sync(il, &cmd);
    77. 

  77. 	if (ret)
    78. 

  78. 		return ret;
    79. 

  79. 

  80. 	pkt = (struct il_rx_pkt *)cmd.reply_page;
    81. 

  81. 	if (pkt->u.status != CAN_ABORT_STATUS) {
    82. 

  82. 		/* The scan abort will return 1 for success or
    83. 

  83. 		 * 2 for "failure".  A failure condition can be
    84. 

  84. 		 * due to simply not being in an active scan which
    85. 

  85. 		 * can occur if we send the scan abort before we
    86. 

  86. 		 * the microcode has notified us that a scan is
    87. 

  87. 		 * completed. */
    88. 

  88. 		D_SCAN("SCAN_ABORT ret %d.\n", pkt->u.status);
    89. 

  89. 		ret = -EIO;
    90. 

  90. 	}
    91. 

  91. 

  92. 	il_free_pages(il, cmd.reply_page);
    93. 

  93. 	return ret;
    94. 

  94. }
    95. 

  95. 

  96. static void il_complete_scan(struct il_priv *il, bool aborted)
    97. 

  97. {
    98. 

  98. 	/* check if scan was requested from mac80211 */
    99. 

  99. 	if (il->scan_request) {
    100. 

  100. 		D_SCAN("Complete scan in mac80211\n");
    101. 

  101. 		ieee80211_scan_completed(il->hw, aborted);
    102. 

  102. 	}
    103. 

  103. 

  104. 	il->scan_vif = NULL;
    105. 

  105. 	il->scan_request = NULL;
    106. 

  106. }
    107. 

  107. 

  108. void il_force_scan_end(struct il_priv *il)
    109. 

  109. {
    110. 

  110. 	lockdep_assert_held(&il->mutex);
    111. 

  111. 

  112. 	if (!test_bit(STATUS_SCANNING, &il->status)) {
    113. 

  113. 		D_SCAN("Forcing scan end while not scanning\n");
    114. 

  114. 		return;
    115. 

  115. 	}
    116. 

  116. 

  117. 	D_SCAN("Forcing scan end\n");
    118. 

  118. 	clear_bit(STATUS_SCANNING, &il->status);
    119. 

  119. 	clear_bit(STATUS_SCAN_HW, &il->status);
    120. 

  120. 	clear_bit(STATUS_SCAN_ABORTING, &il->status);
    121. 

  121. 	il_complete_scan(il, true);
    122. 

  122. }
    123. 

  123. 

  124. static void il_do_scan_abort(struct il_priv *il)
    125. 

  125. {
    126. 

  126. 	int ret;
    127. 

  127. 

  128. 	lockdep_assert_held(&il->mutex);
    129. 

  129. 

  130. 	if (!test_bit(STATUS_SCANNING, &il->status)) {
    131. 

  131. 		D_SCAN("Not performing scan to abort\n");
    132. 

  132. 		return;
    133. 

  133. 	}
    134. 

  134. 

  135. 	if (test_and_set_bit(STATUS_SCAN_ABORTING, &il->status)) {
    136. 

  136. 		D_SCAN("Scan abort in progress\n");
    137. 

  137. 		return;
    138. 

  138. 	}
    139. 

  139. 

  140. 	ret = il_send_scan_abort(il);
    141. 

  141. 	if (ret) {
    142. 

  142. 		D_SCAN("Send scan abort failed %d\n", ret);
    143. 

  143. 		il_force_scan_end(il);
    144. 

  144. 	} else
    145. 

  145. 		D_SCAN("Successfully send scan abort\n");
    146. 

  146. }
    147. 

  147. 

  148. /**
    149. 

  149.  * il_scan_cancel - Cancel any currently executing HW scan
    150. 

  150.  */
    151. 

  151. int il_scan_cancel(struct il_priv *il)
    152. 

  152. {
    153. 

  153. 	D_SCAN("Queuing abort scan\n");
    154. 

  154. 	queue_work(il->workqueue, &il->abort_scan);
    155. 

  155. 	return 0;
    156. 

  156. }
    157. 

  157. EXPORT_SYMBOL(il_scan_cancel);
    158. 

  158. 

  159. /**
    160. 

  160.  * il_scan_cancel_timeout - Cancel any currently executing HW scan
    161. 

  161.  * @ms: amount of time to wait (in milliseconds) for scan to abort
    162. 

  162.  *
    163. 

  163.  */
    164. 

  164. int il_scan_cancel_timeout(struct il_priv *il, unsigned long ms)
    165. 

  165. {
    166. 

  166. 	unsigned long timeout = jiffies + msecs_to_jiffies(ms);
    167. 

  167. 

  168. 	lockdep_assert_held(&il->mutex);
    169. 

  169. 

  170. 	D_SCAN("Scan cancel timeout\n");
    171. 

  171. 

  172. 	il_do_scan_abort(il);
    173. 

  173. 

  174. 	while (time_before_eq(jiffies, timeout)) {
    175. 

  175. 		if (!test_bit(STATUS_SCAN_HW, &il->status))
    176. 

  176. 			break;
    177. 

  177. 		msleep(20);
    178. 

  178. 	}
    179. 

  179. 

  180. 	return test_bit(STATUS_SCAN_HW, &il->status);
    181. 

  181. }
    182. 

  182. EXPORT_SYMBOL(il_scan_cancel_timeout);
    183. 

  183. 

  184. /* Service response to REPLY_SCAN_CMD (0x80) */
    185. 

  185. static void il_rx_reply_scan(struct il_priv *il,
    186. 

  186. 			      struct il_rx_buf *rxb)
    187. 

  187. {
    188. 

  188. #ifdef CONFIG_IWLEGACY_DEBUG
    189. 

  189. 	struct il_rx_pkt *pkt = rxb_addr(rxb);
    190. 

  190. 	struct il_scanreq_notification *notif =
    191. 

  191. 	    (struct il_scanreq_notification *)pkt->u.raw;
    192. 

  192. 

  193. 	D_SCAN("Scan request status = 0x%x\n", notif->status);
    194. 

  194. #endif
    195. 

  195. }
    196. 

  196. 

  197. /* Service SCAN_START_NOTIFICATION (0x82) */
    198. 

  198. static void il_rx_scan_start_notif(struct il_priv *il,
    199. 

  199. 				    struct il_rx_buf *rxb)
    200. 

  200. {
    201. 

  201. 	struct il_rx_pkt *pkt = rxb_addr(rxb);
    202. 

  202. 	struct il_scanstart_notification *notif =
    203. 

  203. 	    (struct il_scanstart_notification *)pkt->u.raw;
    204. 

  204. 	il->scan_start_tsf = le32_to_cpu(notif->tsf_low);
    205. 

  205. 	D_SCAN("Scan start: "
    206. 

  206. 		       "%d [802.11%s] "
    207. 

  207. 		       "(TSF: 0x%08X:%08X) - %d (beacon timer %u)\n",
    208. 

  208. 		       notif->channel,
    209. 

  209. 		       notif->band ? "bg" : "a",
    210. 

  210. 		       le32_to_cpu(notif->tsf_high),
    211. 

  211. 		       le32_to_cpu(notif->tsf_low),
    212. 

  212. 		       notif->status, notif->beacon_timer);
    213. 

  213. }
    214. 

  214. 

  215. /* Service SCAN_RESULTS_NOTIFICATION (0x83) */
    216. 

  216. static void il_rx_scan_results_notif(struct il_priv *il,
    217. 

  217. 				      struct il_rx_buf *rxb)
    218. 

  218. {
    219. 

  219. #ifdef CONFIG_IWLEGACY_DEBUG
    220. 

  220. 	struct il_rx_pkt *pkt = rxb_addr(rxb);
    221. 

  221. 	struct il_scanresults_notification *notif =
    222. 

  222. 	    (struct il_scanresults_notification *)pkt->u.raw;
    223. 

  223. 

  224. 	D_SCAN("Scan ch.res: "
    225. 

  225. 		       "%d [802.11%s] "
    226. 

  226. 		       "(TSF: 0x%08X:%08X) - %d "
    227. 

  227. 		       "elapsed=%lu usec\n",
    228. 

  228. 		       notif->channel,
    229. 

  229. 		       notif->band ? "bg" : "a",
    230. 

  230. 		       le32_to_cpu(notif->tsf_high),
    231. 

  231. 		       le32_to_cpu(notif->tsf_low),
    232. 

  232. 		       le32_to_cpu(notif->statistics[0]),
    233. 

  233. 		       le32_to_cpu(notif->tsf_low) - il->scan_start_tsf);
    234. 

  234. #endif
    235. 

  235. }
    236. 

  236. 

  237. /* Service SCAN_COMPLETE_NOTIFICATION (0x84) */
    238. 

  238. static void il_rx_scan_complete_notif(struct il_priv *il,
    239. 

  239. 				       struct il_rx_buf *rxb)
    240. 

  240. {
    241. 

  241. 

  242. #ifdef CONFIG_IWLEGACY_DEBUG
    243. 

  243. 	struct il_rx_pkt *pkt = rxb_addr(rxb);
    244. 

  244. 	struct il_scancomplete_notification *scan_notif = (void *)pkt->u.raw;
    245. 

  245. #endif
    246. 

  246. 

  247. 	D_SCAN(
    248. 

  248. 			"Scan complete: %d channels (TSF 0x%08X:%08X) - %d\n",
    249. 

  249. 		       scan_notif->scanned_channels,
    250. 

  250. 		       scan_notif->tsf_low,
    251. 

  251. 		       scan_notif->tsf_high, scan_notif->status);
    252. 

  252. 

  253. 	/* The HW is no longer scanning */
    254. 

  254. 	clear_bit(STATUS_SCAN_HW, &il->status);
    255. 

  255. 

  256. 	D_SCAN("Scan on %sGHz took %dms\n",
    257. 

  257. 		       (il->scan_band == IEEE80211_BAND_2GHZ) ? "2.4" : "5.2",
    258. 

  258. 		       jiffies_to_msecs(jiffies - il->scan_start));
    259. 

  259. 

  260. 	queue_work(il->workqueue, &il->scan_completed);
    261. 

  261. }
    262. 

  262. 

  263. void il_setup_rx_scan_handlers(struct il_priv *il)
    264. 

  264. {
    265. 

  265. 	/* scan handlers */
    266. 

  266. 	il->rx_handlers[REPLY_SCAN_CMD] = il_rx_reply_scan;
    267. 

  267. 	il->rx_handlers[SCAN_START_NOTIFICATION] =
    268. 

  268. 					il_rx_scan_start_notif;
    269. 

  269. 	il->rx_handlers[SCAN_RESULTS_NOTIFICATION] =
    270. 

  270. 					il_rx_scan_results_notif;
    271. 

  271. 	il->rx_handlers[SCAN_COMPLETE_NOTIFICATION] =
    272. 

  272. 					il_rx_scan_complete_notif;
    273. 

  273. }
    274. 

  274. EXPORT_SYMBOL(il_setup_rx_scan_handlers);
    275. 

  275. 

  276. inline u16 il_get_active_dwell_time(struct il_priv *il,
    277. 

  277. 				     enum ieee80211_band band,
    278. 

  278. 				     u8 n_probes)
    279. 

  279. {
    280. 

  280. 	if (band == IEEE80211_BAND_5GHZ)
    281. 

  281. 		return IL_ACTIVE_DWELL_TIME_52 +
    282. 

  282. 			IL_ACTIVE_DWELL_FACTOR_52GHZ * (n_probes + 1);
    283. 

  283. 	else
    284. 

  284. 		return IL_ACTIVE_DWELL_TIME_24 +
    285. 

  285. 			IL_ACTIVE_DWELL_FACTOR_24GHZ * (n_probes + 1);
    286. 

  286. }
    287. 

  287. EXPORT_SYMBOL(il_get_active_dwell_time);
    288. 

  288. 

  289. u16 il_get_passive_dwell_time(struct il_priv *il,
    290. 

  290. 			       enum ieee80211_band band,
    291. 

  291. 			       struct ieee80211_vif *vif)
    292. 

  292. {
    293. 

  293. 	struct il_rxon_context *ctx;
    294. 

  294. 	u16 passive = (band == IEEE80211_BAND_2GHZ) ?
    295. 

  295. 	    IL_PASSIVE_DWELL_BASE + IL_PASSIVE_DWELL_TIME_24 :
    296. 

  296. 	    IL_PASSIVE_DWELL_BASE + IL_PASSIVE_DWELL_TIME_52;
    297. 

  297. 

  298. 	if (il_is_any_associated(il)) {
    299. 

  299. 		/*
    300. 

  300. 		 * If we're associated, we clamp the maximum passive
    301. 

  301. 		 * dwell time to be 98% of the smallest beacon interval
    302. 

  302. 		 * (minus 2 * channel tune time)
    303. 

  303. 		 */
    304. 

  304. 		for_each_context(il, ctx) {
    305. 

  305. 			u16 value;
    306. 

  306. 

  307. 			if (!il_is_associated_ctx(ctx))
    308. 

  308. 				continue;
    309. 

  309. 			value = ctx->vif ? ctx->vif->bss_conf.beacon_int : 0;
    310. 

  310. 			if (value > IL_PASSIVE_DWELL_BASE || !value)
    311. 

  311. 				value = IL_PASSIVE_DWELL_BASE;
    312. 

  312. 			value = (value * 98) / 100 - IL_CHANNEL_TUNE_TIME * 2;
    313. 

  313. 			passive = min(value, passive);
    314. 

  314. 		}
    315. 

  315. 	}
    316. 

  316. 

  317. 	return passive;
    318. 

  318. }
    319. 

  319. EXPORT_SYMBOL(il_get_passive_dwell_time);
    320. 

  320. 

  321. void il_init_scan_params(struct il_priv *il)
    322. 

  322. {
    323. 

  323. 	u8 ant_idx = fls(il->hw_params.valid_tx_ant) - 1;
    324. 

  324. 	if (!il->scan_tx_ant[IEEE80211_BAND_5GHZ])
    325. 

  325. 		il->scan_tx_ant[IEEE80211_BAND_5GHZ] = ant_idx;
    326. 

  326. 	if (!il->scan_tx_ant[IEEE80211_BAND_2GHZ])
    327. 

  327. 		il->scan_tx_ant[IEEE80211_BAND_2GHZ] = ant_idx;
    328. 

  328. }
    329. 

  329. EXPORT_SYMBOL(il_init_scan_params);
    330. 

  330. 

  331. static int il_scan_initiate(struct il_priv *il,
    332. 

  332. 				    struct ieee80211_vif *vif)
    333. 

  333. {
    334. 

  334. 	int ret;
    335. 

  335. 

  336. 	lockdep_assert_held(&il->mutex);
    337. 

  337. 

  338. 	if (WARN_ON(!il->cfg->ops->utils->request_scan))
    339. 

  339. 		return -EOPNOTSUPP;
    340. 

  340. 

  341. 	cancel_delayed_work(&il->scan_check);
    342. 

  342. 

  343. 	if (!il_is_ready_rf(il)) {
    344. 

  344. 		IL_WARN("Request scan called when driver not ready.\n");
    345. 

  345. 		return -EIO;
    346. 

  346. 	}
    347. 

  347. 

  348. 	if (test_bit(STATUS_SCAN_HW, &il->status)) {
    349. 

  349. 		D_SCAN(
    350. 

  350. 			"Multiple concurrent scan requests in parallel.\n");
    351. 

  351. 		return -EBUSY;
    352. 

  352. 	}
    353. 

  353. 

  354. 	if (test_bit(STATUS_SCAN_ABORTING, &il->status)) {
    355. 

  355. 		D_SCAN("Scan request while abort pending.\n");
    356. 

  356. 		return -EBUSY;
    357. 

  357. 	}
    358. 

  358. 

  359. 	D_SCAN("Starting scan...\n");
    360. 

  360. 

  361. 	set_bit(STATUS_SCANNING, &il->status);
    362. 

  362. 	il->scan_start = jiffies;
    363. 

  363. 

  364. 	ret = il->cfg->ops->utils->request_scan(il, vif);
    365. 

  365. 	if (ret) {
    366. 

  366. 		clear_bit(STATUS_SCANNING, &il->status);
    367. 

  367. 		return ret;
    368. 

  368. 	}
    369. 

  369. 

  370. 	queue_delayed_work(il->workqueue, &il->scan_check,
    371. 

  371. 			   IL_SCAN_CHECK_WATCHDOG);
    372. 

  372. 

  373. 	return 0;
    374. 

  374. }
    375. 

  375. 

  376. int il_mac_hw_scan(struct ieee80211_hw *hw,
    377. 

  377. 		    struct ieee80211_vif *vif,
    378. 

  378. 		    struct cfg80211_scan_request *req)
    379. 

  379. {
    380. 

  380. 	struct il_priv *il = hw->priv;
    381. 

  381. 	int ret;
    382. 

  382. 

  383. 	D_MAC80211("enter\n");
    384. 

  384. 

  385. 	if (req->n_channels == 0)
    386. 

  386. 		return -EINVAL;
    387. 

  387. 

  388. 	mutex_lock(&il->mutex);
    389. 

  389. 

  390. 	if (test_bit(STATUS_SCANNING, &il->status)) {
    391. 

  391. 		D_SCAN("Scan already in progress.\n");
    392. 

  392. 		ret = -EAGAIN;
    393. 

  393. 		goto out_unlock;
    394. 

  394. 	}
    395. 

  395. 

  396. 	/* mac80211 will only ask for one band at a time */
    397. 

  397. 	il->scan_request = req;
    398. 

  398. 	il->scan_vif = vif;
    399. 

  399. 	il->scan_band = req->channels[0]->band;
    400. 

  400. 

  401. 	ret = il_scan_initiate(il, vif);
    402. 

  402. 

  403. 	D_MAC80211("leave\n");
    404. 

  404. 

  405. out_unlock:
    406. 

  406. 	mutex_unlock(&il->mutex);
    407. 

  407. 

  408. 	return ret;
    409. 

  409. }
    410. 

  410. EXPORT_SYMBOL(il_mac_hw_scan);
    411. 

  411. 

  412. static void il_bg_scan_check(struct work_struct *data)
    413. 

  413. {
    414. 

  414. 	struct il_priv *il =
    415. 

  415. 	    container_of(data, struct il_priv, scan_check.work);
    416. 

  416. 

  417. 	D_SCAN("Scan check work\n");
    418. 

  418. 

  419. 	/* Since we are here firmware does not finish scan and
    420. 

  420. 	 * most likely is in bad shape, so we don't bother to
    421. 

  421. 	 * send abort command, just force scan complete to mac80211 */
    422. 

  422. 	mutex_lock(&il->mutex);
    423. 

  423. 	il_force_scan_end(il);
    424. 

  424. 	mutex_unlock(&il->mutex);
    425. 

  425. }
    426. 

  426. 

  427. /**
    428. 

  428.  * il_fill_probe_req - fill in all required fields and IE for probe request
    429. 

  429.  */
    430. 

  430. 

  431. u16
    432. 

  432. il_fill_probe_req(struct il_priv *il, struct ieee80211_mgmt *frame,
    433. 

  433. 		       const u8 *ta, const u8 *ies, int ie_len, int left)
    434. 

  434. {
    435. 

  435. 	int len = 0;
    436. 

  436. 	u8 *pos = NULL;
    437. 

  437. 

  438. 	/* Make sure there is enough space for the probe request,
    439. 

  439. 	 * two mandatory IEs and the data */
    440. 

  440. 	left -= 24;
    441. 

  441. 	if (left < 0)
    442. 

  442. 		return 0;
    443. 

  443. 

  444. 	frame->frame_control = cpu_to_le16(IEEE80211_STYPE_PROBE_REQ);
    445. 

  445. 	memcpy(frame->da, il_bcast_addr, ETH_ALEN);
    446. 

  446. 	memcpy(frame->sa, ta, ETH_ALEN);
    447. 

  447. 	memcpy(frame->bssid, il_bcast_addr, ETH_ALEN);
    448. 

  448. 	frame->seq_ctrl = 0;
    449. 

  449. 

  450. 	len += 24;
    451. 

  451. 

  452. 	/* ...next IE... */
    453. 

  453. 	pos = &frame->u.probe_req.variable[0];
    454. 

  454. 

  455. 	/* fill in our indirect SSID IE */
    456. 

  456. 	left -= 2;
    457. 

  457. 	if (left < 0)
    458. 

  458. 		return 0;
    459. 

  459. 	*pos++ = WLAN_EID_SSID;
    460. 

  460. 	*pos++ = 0;
    461. 

  461. 

  462. 	len += 2;
    463. 

  463. 

  464. 	if (WARN_ON(left < ie_len))
    465. 

  465. 		return len;
    466. 

  466. 

  467. 	if (ies && ie_len) {
    468. 

  468. 		memcpy(pos, ies, ie_len);
    469. 

  469. 		len += ie_len;
    470. 

  470. 	}
    471. 

  471. 

  472. 	return (u16)len;
    473. 

  473. }
    474. 

  474. EXPORT_SYMBOL(il_fill_probe_req);
    475. 

  475. 

  476. static void il_bg_abort_scan(struct work_struct *work)
    477. 

  477. {
    478. 

  478. 	struct il_priv *il = container_of(work, struct il_priv, abort_scan);
    479. 

  479. 

  480. 	D_SCAN("Abort scan work\n");
    481. 

  481. 

  482. 	/* We keep scan_check work queued in case when firmware will not
    483. 

  483. 	 * report back scan completed notification */
    484. 

  484. 	mutex_lock(&il->mutex);
    485. 

  485. 	il_scan_cancel_timeout(il, 200);
    486. 

  486. 	mutex_unlock(&il->mutex);
    487. 

  487. }
    488. 

  488. 

  489. static void il_bg_scan_completed(struct work_struct *work)
    490. 

  490. {
    491. 

  491. 	struct il_priv *il =
    492. 

  492. 	    container_of(work, struct il_priv, scan_completed);
    493. 

  493. 	bool aborted;
    494. 

  494. 

  495. 	D_SCAN("Completed scan.\n");
    496. 

  496. 

  497. 	cancel_delayed_work(&il->scan_check);
    498. 

  498. 

  499. 	mutex_lock(&il->mutex);
    500. 

  500. 

  501. 	aborted = test_and_clear_bit(STATUS_SCAN_ABORTING, &il->status);
    502. 

  502. 	if (aborted)
    503. 

  503. 		D_SCAN("Aborted scan completed.\n");
    504. 

  504. 

  505. 	if (!test_and_clear_bit(STATUS_SCANNING, &il->status)) {
    506. 

  506. 		D_SCAN("Scan already completed.\n");
    507. 

  507. 		goto out_settings;
    508. 

  508. 	}
    509. 

  509. 

  510. 	il_complete_scan(il, aborted);
    511. 

  511. 

  512. out_settings:
    513. 

  513. 	/* Can we still talk to firmware ? */
    514. 

  514. 	if (!il_is_ready_rf(il))
    515. 

  515. 		goto out;
    516. 

  516. 

  517. 	/*
    518. 

  518. 	 * We do not commit power settings while scan is pending,
    519. 

  519. 	 * do it now if the settings changed.
    520. 

  520. 	 */
    521. 

  521. 	il_power_set_mode(il, &il->power_data.sleep_cmd_next, false);
    522. 

  522. 	il_set_tx_power(il, il->tx_power_next, false);
    523. 

  523. 

  524. 	il->cfg->ops->utils->post_scan(il);
    525. 

  525. 

  526. out:
    527. 

  527. 	mutex_unlock(&il->mutex);
    528. 

  528. }
    529. 

  529. 

  530. void il_setup_scan_deferred_work(struct il_priv *il)
    531. 

  531. {
    532. 

  532. 	INIT_WORK(&il->scan_completed, il_bg_scan_completed);
    533. 

  533. 	INIT_WORK(&il->abort_scan, il_bg_abort_scan);
    534. 

  534. 	INIT_DELAYED_WORK(&il->scan_check, il_bg_scan_check);
    535. 

  535. }
    536. 

  536. EXPORT_SYMBOL(il_setup_scan_deferred_work);
    537. 

  537. 

  538. void il_cancel_scan_deferred_work(struct il_priv *il)
    539. 

  539. {
    540. 

  540. 	cancel_work_sync(&il->abort_scan);
    541. 

  541. 	cancel_work_sync(&il->scan_completed);
    542. 

  542. 

  543. 	if (cancel_delayed_work_sync(&il->scan_check)) {
    544. 

  544. 		mutex_lock(&il->mutex);
    545. 

  545. 		il_force_scan_end(il);
    546. 

  546. 		mutex_unlock(&il->mutex);
    547. 

  547. 	}
    548. 

  548. }
    549. 

  549. EXPORT_SYMBOL(il_cancel_scan_deferred_work);
    550.