]> git.ipfire.org Git - thirdparty/linux.git/blame - drivers/net/wireless/intel/iwlwifi/mvm/mac80211.c
projects / thirdparty / linux.git / blame
? search:
summary | shortlog | log | commit | commitdiff | tree
blob | blame (incremental) | history | HEAD
device: Use overflow helpers for devm_kmalloc()
[thirdparty/linux.git] / drivers / net / wireless / intel / iwlwifi / mvm / mac80211.c
CommitLineData
8ca151b5
JB		 1/******************************************************************************
2 *
3 * This file is provided under a dual BSD/GPLv2 license. When using or
4 * redistributing this file, you may do so under either license.
5 *
6 * GPL LICENSE SUMMARY
7 *
51368bf7 8 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
26d6c16b
SS		 9 * Copyright(c) 2013 - 2015 Intel Mobile Communications GmbH
10 * Copyright(c) 2016 - 2017 Intel Deutschland GmbH
63dd5d02 11 * Copyright(c) 2018 Intel Corporation
8ca151b5
JB		 12 *
13 * This program is free software; you can redistribute it and/or modify
14 * it under the terms of version 2 of the GNU General Public License as
15 * published by the Free Software Foundation.
16 *
17 * This program is distributed in the hope that it will be useful, but
18 * WITHOUT ANY WARRANTY; without even the implied warranty of
19 * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU
20 * General Public License for more details.
21 *
22 * You should have received a copy of the GNU General Public License
23 * along with this program; if not, write to the Free Software
24 * Foundation, Inc., 51 Franklin Street, Fifth Floor, Boston, MA 02110,
25 * USA
26 *
27 * The full GNU General Public License is included in this distribution
410dc5aa 28 * in the file called COPYING.
8ca151b5
JB		 29 *
30 * Contact Information:
cb2f8277 31 * Intel Linux Wireless <linuxwifi@intel.com>
8ca151b5
JB		 32 * Intel Corporation, 5200 N.E. Elam Young Parkway, Hillsboro, OR 97124-6497
33 *
34 * BSD LICENSE
35 *
51368bf7 36 * Copyright(c) 2012 - 2014 Intel Corporation. All rights reserved.
26d6c16b
SS		 37 * Copyright(c) 2013 - 2015 Intel Mobile Communications GmbH
38 * Copyright(c) 2016 - 2017 Intel Deutschland GmbH
8ca151b5
JB		 39 * All rights reserved.
40 *
41 * Redistribution and use in source and binary forms, with or without
42 * modification, are permitted provided that the following conditions
43 * are met:
44 *
45 * * Redistributions of source code must retain the above copyright
46 * notice, this list of conditions and the following disclaimer.
47 * * Redistributions in binary form must reproduce the above copyright
48 * notice, this list of conditions and the following disclaimer in
49 * the documentation and/or other materials provided with the
50 * distribution.
51 * * Neither the name Intel Corporation nor the names of its
52 * contributors may be used to endorse or promote products derived
53 * from this software without specific prior written permission.
54 *
55 * THIS SOFTWARE IS PROVIDED BY THE COPYRIGHT HOLDERS AND CONTRIBUTORS
56 * "AS IS" AND ANY EXPRESS OR IMPLIED WARRANTIES, INCLUDING, BUT NOT
57 * LIMITED TO, THE IMPLIED WARRANTIES OF MERCHANTABILITY AND FITNESS FOR
58 * A PARTICULAR PURPOSE ARE DISCLAIMED. IN NO EVENT SHALL THE COPYRIGHT
59 * OWNER OR CONTRIBUTORS BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
60 * SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT
61 * LIMITED TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE,
62 * DATA, OR PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY
63 * THEORY OF LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT
64 * (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE
65 * OF THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
66 *
67 *****************************************************************************/
68#include <linux/kernel.h>
69#include <linux/slab.h>
70#include <linux/skbuff.h>
71#include <linux/netdevice.h>
72#include <linux/etherdevice.h>
f0c2646a 73#include <linux/ip.h>
2ee8f021 74#include <linux/if_arp.h>
2f89a5d7 75#include <linux/time.h>
8ca151b5 76#include <net/mac80211.h>
7b1dd048 77#include <net/ieee80211_radiotap.h>
f0c2646a 78#include <net/tcp.h>
8ca151b5
JB		 79
80#include "iwl-op-mode.h"
81#include "iwl-io.h"
82#include "mvm.h"
83#include "sta.h"
84#include "time-event.h"
85#include "iwl-eeprom-parse.h"
8ca151b5 86#include "iwl-phy-db.h"
507cadf2 87#include "testmode.h"
d962f9b1 88#include "fw/error-dump.h"
655e6d6d 89#include "iwl-prph.h"
88931cc9 90#include "iwl-nvm-parse.h"
8ca151b5
JB		 91
92static const struct ieee80211_iface_limit iwl_mvm_limits[] = {
93 {
94 .max = 1,
8eb38710 95 .types = BIT(NL80211_IFTYPE_STATION),
8ca151b5 96 },
3c15a0fb
JB		 97 {
98 .max = 1,
8eb38710
IP		 99 .types = BIT(NL80211_IFTYPE_AP) |
100 BIT(NL80211_IFTYPE_P2P_CLIENT) |
3c15a0fb
JB		 101 BIT(NL80211_IFTYPE_P2P_GO),
102 },
103 {
104 .max = 1,
105 .types = BIT(NL80211_IFTYPE_P2P_DEVICE),
106 },
8ca151b5
JB		 107};
108
109static const struct ieee80211_iface_combination iwl_mvm_iface_combinations[] = {
110 {
2624a5ca 111 .num_different_channels = 2,
8ca151b5
JB		 112 .max_interfaces = 3,
113 .limits = iwl_mvm_limits,
114 .n_limits = ARRAY_SIZE(iwl_mvm_limits),
115 },
116};
117
77736923 118#ifdef CONFIG_IWLWIFI_BCAST_FILTERING
2ee8f021
EP		 119/*
120 * Use the reserved field to indicate magic values.
121 * these values will only be used internally by the driver,
122 * and won't make it to the fw (reserved will be 0).
123 * BC_FILTER_MAGIC_IP - configure the val of this attribute to
124 * be the vif's ip address. in case there is not a single
125 * ip address (0, or more than 1), this attribute will
126 * be skipped.
127 * BC_FILTER_MAGIC_MAC - set the val of this attribute to
128 * the LSB bytes of the vif's mac address
129 */
130enum {
131 BC_FILTER_MAGIC_NONE = 0,
132 BC_FILTER_MAGIC_IP,
133 BC_FILTER_MAGIC_MAC,
134};
135
77736923
EP		 136static const struct iwl_fw_bcast_filter iwl_mvm_default_bcast_filters[] = {
137 {
138 /* arp */
139 .discard = 0,
140 .frame_type = BCAST_FILTER_FRAME_TYPE_ALL,
141 .attrs = {
142 {
143 /* frame type - arp, hw type - ethernet */
144 .offset_type =
145 BCAST_FILTER_OFFSET_PAYLOAD_START,
146 .offset = sizeof(rfc1042_header),
147 .val = cpu_to_be32(0x08060001),
148 .mask = cpu_to_be32(0xffffffff),
149 },
2ee8f021
EP		 150 {
151 /* arp dest ip */
152 .offset_type =
153 BCAST_FILTER_OFFSET_PAYLOAD_START,
154 .offset = sizeof(rfc1042_header) + 2 +
155 sizeof(struct arphdr) +
156 ETH_ALEN + sizeof(__be32) +
157 ETH_ALEN,
158 .mask = cpu_to_be32(0xffffffff),
159 /* mark it as special field */
160 .reserved1 = cpu_to_le16(BC_FILTER_MAGIC_IP),
161 },
162 },
163 },
164 {
165 /* dhcp offer bcast */
166 .discard = 0,
167 .frame_type = BCAST_FILTER_FRAME_TYPE_IPV4,
168 .attrs = {
169 {
170 /* udp dest port - 68 (bootp client)*/
171 .offset_type = BCAST_FILTER_OFFSET_IP_END,
172 .offset = offsetof(struct udphdr, dest),
173 .val = cpu_to_be32(0x00440000),
174 .mask = cpu_to_be32(0xffff0000),
175 },
176 {
177 /* dhcp - lsb bytes of client hw address */
178 .offset_type = BCAST_FILTER_OFFSET_IP_END,
179 .offset = 38,
180 .mask = cpu_to_be32(0xffffffff),
181 /* mark it as special field */
182 .reserved1 = cpu_to_le16(BC_FILTER_MAGIC_MAC),
183 },
77736923
EP		 184 },
185 },
186 /* last filter must be empty */
187 {},
188};
189#endif
190
7498cf4c
EP		 191void iwl_mvm_ref(struct iwl_mvm *mvm, enum iwl_mvm_ref_type ref_type)
192{
7bb426ea 193 if (!iwl_mvm_is_d0i3_supported(mvm))
7498cf4c
EP		 194 return;
195
196 IWL_DEBUG_RPM(mvm, "Take mvm reference - type %d\n", ref_type);
576eeee9
EP		 197 spin_lock_bh(&mvm->refs_lock);
198 mvm->refs[ref_type]++;
199 spin_unlock_bh(&mvm->refs_lock);
7498cf4c
EP		 200 iwl_trans_ref(mvm->trans);
201}
202
203void iwl_mvm_unref(struct iwl_mvm *mvm, enum iwl_mvm_ref_type ref_type)
204{
7bb426ea 205 if (!iwl_mvm_is_d0i3_supported(mvm))
7498cf4c
EP		 206 return;
207
208 IWL_DEBUG_RPM(mvm, "Leave mvm reference - type %d\n", ref_type);
576eeee9 209 spin_lock_bh(&mvm->refs_lock);
16c45822
SS		 210 if (WARN_ON(!mvm->refs[ref_type])) {
211 spin_unlock_bh(&mvm->refs_lock);
212 return;
213 }
214 mvm->refs[ref_type]--;
576eeee9 215 spin_unlock_bh(&mvm->refs_lock);
7498cf4c
EP		 216 iwl_trans_unref(mvm->trans);
217}
218
576eeee9
EP		 219static void iwl_mvm_unref_all_except(struct iwl_mvm *mvm,
220 enum iwl_mvm_ref_type except_ref)
7498cf4c 221{
576eeee9 222 int i, j;
7498cf4c 223
7bb426ea 224 if (!iwl_mvm_is_d0i3_supported(mvm))
7498cf4c
EP		 225 return;
226
576eeee9
EP		 227 spin_lock_bh(&mvm->refs_lock);
228 for (i = 0; i < IWL_MVM_REF_COUNT; i++) {
229 if (except_ref == i || !mvm->refs[i])
7498cf4c
EP		 230 continue;
231
576eeee9
EP		 232 IWL_DEBUG_RPM(mvm, "Cleanup: remove mvm ref type %d (%d)\n",
233 i, mvm->refs[i]);
234 for (j = 0; j < mvm->refs[i]; j++)
235 iwl_trans_unref(mvm->trans);
236 mvm->refs[i] = 0;
7498cf4c 237 }
576eeee9 238 spin_unlock_bh(&mvm->refs_lock);
7498cf4c
EP		 239}
240
f4cf8680
EP		 241bool iwl_mvm_ref_taken(struct iwl_mvm *mvm)
242{
243 int i;
244 bool taken = false;
245
246 if (!iwl_mvm_is_d0i3_supported(mvm))
247 return true;
248
249 spin_lock_bh(&mvm->refs_lock);
250 for (i = 0; i < IWL_MVM_REF_COUNT; i++) {
251 if (mvm->refs[i]) {
252 taken = true;
253 break;
254 }
255 }
256 spin_unlock_bh(&mvm->refs_lock);
257
258 return taken;
259}
260
576eeee9 261int iwl_mvm_ref_sync(struct iwl_mvm *mvm, enum iwl_mvm_ref_type ref_type)
d40fc489
GG		 262{
263 iwl_mvm_ref(mvm, ref_type);
264
265 if (!wait_event_timeout(mvm->d0i3_exit_waitq,
266 !test_bit(IWL_MVM_STATUS_IN_D0I3, &mvm->status),
267 HZ)) {
268 WARN_ON_ONCE(1);
269 iwl_mvm_unref(mvm, ref_type);
270 return -EIO;
271 }
272
273 return 0;
274}
275
fe0f2de3
IP		 276static void iwl_mvm_reset_phy_ctxts(struct iwl_mvm *mvm)
277{
278 int i;
279
280 memset(mvm->phy_ctxts, 0, sizeof(mvm->phy_ctxts));
281 for (i = 0; i < NUM_PHY_CTX; i++) {
282 mvm->phy_ctxts[i].id = i;
283 mvm->phy_ctxts[i].ref = 0;
284 }
285}
286
88931cc9 287struct ieee80211_regdomain *iwl_mvm_get_regdomain(struct wiphy *wiphy,
8ba2d7a1 288 const char *alpha2,
47c8b154
JD		 289 enum iwl_mcc_source src_id,
290 bool *changed)
88931cc9
AN		 291{
292 struct ieee80211_regdomain *regd = NULL;
293 struct ieee80211_hw *hw = wiphy_to_ieee80211_hw(wiphy);
294 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
295 struct iwl_mcc_update_resp *resp;
296
297 IWL_DEBUG_LAR(mvm, "Getting regdomain data for %s from FW\n", alpha2);
298
8ba2d7a1 299 lockdep_assert_held(&mvm->mutex);
88931cc9 300
8ba2d7a1 301 resp = iwl_mvm_update_mcc(mvm, alpha2, src_id);
88931cc9
AN		 302 if (IS_ERR_OR_NULL(resp)) {
303 IWL_DEBUG_LAR(mvm, "Could not get update from FW %d\n",
b8c474d9 304 PTR_ERR_OR_ZERO(resp));
8ba2d7a1 305 goto out;
88931cc9
AN		 306 }
307
47c8b154
JD		 308 if (changed)
309 *changed = (resp->status == MCC_RESP_NEW_CHAN_PROFILE);
310
162ee3c9 311 regd = iwl_parse_nvm_mcc_info(mvm->trans->dev, mvm->cfg,
88931cc9
AN		 312 __le32_to_cpu(resp->n_channels),
313 resp->channels,
77e30e10
HD		 314 __le16_to_cpu(resp->mcc),
315 __le16_to_cpu(resp->geo_info));
8ba2d7a1
EH		 316 /* Store the return source id */
317 src_id = resp->source_id;
88931cc9
AN		 318 kfree(resp);
319 if (IS_ERR_OR_NULL(regd)) {
320 IWL_DEBUG_LAR(mvm, "Could not get parse update from FW %d\n",
b8c474d9 321 PTR_ERR_OR_ZERO(regd));
8ba2d7a1 322 goto out;
88931cc9
AN		 323 }
324
8ba2d7a1
EH		 325 IWL_DEBUG_LAR(mvm, "setting alpha2 from FW to %s (0x%x, 0x%x) src=%d\n",
326 regd->alpha2, regd->alpha2[0], regd->alpha2[1], src_id);
88931cc9 327 mvm->lar_regdom_set = true;
8ba2d7a1 328 mvm->mcc_src = src_id;
88931cc9 329
8ba2d7a1 330out:
88931cc9
AN		 331 return regd;
332}
333
47c8b154
JD		 334void iwl_mvm_update_changed_regdom(struct iwl_mvm *mvm)
335{
336 bool changed;
337 struct ieee80211_regdomain *regd;
338
339 if (!iwl_mvm_is_lar_supported(mvm))
340 return;
341
342 regd = iwl_mvm_get_current_regdomain(mvm, &changed);
343 if (!IS_ERR_OR_NULL(regd)) {
344 /* only update the regulatory core if changed */
345 if (changed)
346 regulatory_set_wiphy_regd(mvm->hw->wiphy, regd);
347
348 kfree(regd);
349 }
350}
351
352struct ieee80211_regdomain *iwl_mvm_get_current_regdomain(struct iwl_mvm *mvm,
353 bool *changed)
8ba2d7a1
EH		 354{
355 return iwl_mvm_get_regdomain(mvm->hw->wiphy, "ZZ",
356 iwl_mvm_is_wifi_mcc_supported(mvm) ?
357 MCC_SOURCE_GET_CURRENT :
47c8b154 358 MCC_SOURCE_OLD_FW, changed);
8ba2d7a1
EH		 359}
360
361int iwl_mvm_init_fw_regd(struct iwl_mvm *mvm)
362{
363 enum iwl_mcc_source used_src;
364 struct ieee80211_regdomain *regd;
b6e160ab
AN		 365 int ret;
366 bool changed;
8ba2d7a1
EH		 367 const struct ieee80211_regdomain *r =
368 rtnl_dereference(mvm->hw->wiphy->regd);
369
370 if (!r)
b6e160ab 371 return -ENOENT;
8ba2d7a1
EH		 372
373 /* save the last source in case we overwrite it below */
374 used_src = mvm->mcc_src;
375 if (iwl_mvm_is_wifi_mcc_supported(mvm)) {
376 /* Notify the firmware we support wifi location updates */
47c8b154 377 regd = iwl_mvm_get_current_regdomain(mvm, NULL);
8ba2d7a1
EH		 378 if (!IS_ERR_OR_NULL(regd))
379 kfree(regd);
380 }
381
382 /* Now set our last stored MCC and source */
b6e160ab
AN		 383 regd = iwl_mvm_get_regdomain(mvm->hw->wiphy, r->alpha2, used_src,
384 &changed);
8ba2d7a1
EH		 385 if (IS_ERR_OR_NULL(regd))
386 return -EIO;
387
b6e160ab
AN		 388 /* update cfg80211 if the regdomain was changed */
389 if (changed)
390 ret = regulatory_set_wiphy_regd_sync_rtnl(mvm->hw->wiphy, regd);
391 else
392 ret = 0;
8ba2d7a1 393
b6e160ab
AN		 394 kfree(regd);
395 return ret;
8ba2d7a1
EH		 396}
397
8ca151b5
JB		 398int iwl_mvm_mac_setup_register(struct iwl_mvm *mvm)
399{
400 struct ieee80211_hw *hw = mvm->hw;
831e85f3 401 int num_mac, ret, i;
5f4c02e2
JB		 402 static const u32 mvm_ciphers[] = {
403 WLAN_CIPHER_SUITE_WEP40,
404 WLAN_CIPHER_SUITE_WEP104,
405 WLAN_CIPHER_SUITE_TKIP,
406 WLAN_CIPHER_SUITE_CCMP,
407 };
8ca151b5
JB		 408
409 /* Tell mac80211 our characteristics */
30686bf7
JB		 410 ieee80211_hw_set(hw, SIGNAL_DBM);
411 ieee80211_hw_set(hw, SPECTRUM_MGMT);
412 ieee80211_hw_set(hw, REPORTS_TX_ACK_STATUS);
413 ieee80211_hw_set(hw, QUEUE_CONTROL);
414 ieee80211_hw_set(hw, WANT_MONITOR_VIF);
415 ieee80211_hw_set(hw, SUPPORTS_PS);
416 ieee80211_hw_set(hw, SUPPORTS_DYNAMIC_PS);
417 ieee80211_hw_set(hw, AMPDU_AGGREGATION);
418 ieee80211_hw_set(hw, TIMING_BEACON_ONLY);
419 ieee80211_hw_set(hw, CONNECTION_MONITOR);
420 ieee80211_hw_set(hw, CHANCTX_STA_CSA);
421 ieee80211_hw_set(hw, SUPPORT_FAST_XMIT);
422 ieee80211_hw_set(hw, SUPPORTS_CLONED_SKBS);
909ddf0b 423 ieee80211_hw_set(hw, SUPPORTS_AMSDU_IN_AMPDU);
30433d3b 424 ieee80211_hw_set(hw, NEEDS_UNIQUE_STA_ADDR);
d270e7b8 425 ieee80211_hw_set(hw, DEAUTH_NEED_MGD_TX_PREP);
ecaf71de 426
4243edb4 427 if (iwl_mvm_has_tlc_offload(mvm)) {
ecaf71de
GG		 428 ieee80211_hw_set(hw, TX_AMPDU_SETUP_IN_HW);
429 ieee80211_hw_set(hw, HAS_RATE_CONTROL);
430 }
431
b915c101
SS		 432 if (iwl_mvm_has_new_rx_api(mvm))
433 ieee80211_hw_set(hw, SUPPORTS_REORDERING_BUFFER);
960f864b
JB		 434
435 if (fw_has_capa(&mvm->fw->ucode_capa,
436 IWL_UCODE_TLV_CAPA_STA_PM_NOTIF)) {
65e25482 437 ieee80211_hw_set(hw, AP_LINK_PS);
960f864b
JB		 438 } else if (WARN_ON(iwl_mvm_has_new_tx_api(mvm))) {
439 /*
440 * we absolutely need this for the new TX API since that comes
441 * with many more queues than the current code can deal with
442 * for station powersave
443 */
444 return -EINVAL;
445 }
8ca151b5 446
80938abc
JB		 447 if (mvm->trans->num_rx_queues > 1)
448 ieee80211_hw_set(hw, USES_RSS);
449
2d7cf549
JB		 450 if (mvm->trans->max_skb_frags)
451 hw->netdev_features = NETIF_F_HIGHDMA | NETIF_F_SG;
452
c8f54701 453 hw->queues = IEEE80211_MAX_QUEUES;
398e8c6c 454 hw->offchannel_tx_hw_queue = IWL_MVM_OFFCHANNEL_QUEUE;
7b1dd048
EG		 455 hw->radiotap_mcs_details |= IEEE80211_RADIOTAP_MCS_HAVE_FEC |
456 IEEE80211_RADIOTAP_MCS_HAVE_STBC;
339b3086
ES		 457 hw->radiotap_vht_details |= IEEE80211_RADIOTAP_VHT_KNOWN_STBC |
458 IEEE80211_RADIOTAP_VHT_KNOWN_BEAMFORMED;
371a17ed
JB		 459
460 hw->radiotap_timestamp.units_pos =
461 IEEE80211_RADIOTAP_TIMESTAMP_UNIT_US |
462 IEEE80211_RADIOTAP_TIMESTAMP_SPOS_PLCP_SIG_ACQ;
463 /* this is the case for CCK frames, it's better (only 8) for OFDM */
464 hw->radiotap_timestamp.accuracy = 22;
465
4243edb4 466 if (!iwl_mvm_has_tlc_offload(mvm))
9f66a397
GG		 467 hw->rate_control_algorithm = RS_NAME;
468
848955cc
JB		 469 hw->uapsd_queues = IWL_MVM_UAPSD_QUEUES;
470 hw->uapsd_max_sp_len = IWL_UAPSD_MAX_SP;
8ca151b5 471
8e160ab8 472 BUILD_BUG_ON(ARRAY_SIZE(mvm->ciphers) < ARRAY_SIZE(mvm_ciphers) + 6);
5f4c02e2
JB		 473 memcpy(mvm->ciphers, mvm_ciphers, sizeof(mvm_ciphers));
474 hw->wiphy->n_cipher_suites = ARRAY_SIZE(mvm_ciphers);
475 hw->wiphy->cipher_suites = mvm->ciphers;
476
2a53d166
AB		 477 if (iwl_mvm_has_new_rx_api(mvm)) {
478 mvm->ciphers[hw->wiphy->n_cipher_suites] =
479 WLAN_CIPHER_SUITE_GCMP;
480 hw->wiphy->n_cipher_suites++;
481 mvm->ciphers[hw->wiphy->n_cipher_suites] =
482 WLAN_CIPHER_SUITE_GCMP_256;
483 hw->wiphy->n_cipher_suites++;
484 }
485
4b87e5af
LC		 486 /* Enable 11w if software crypto is not enabled (as the
487 * firmware will interpret some mgmt packets, so enabling it
488 * with software crypto isn't safe).
8ca151b5 489 */
3b37f4c9 490 if (!iwlwifi_mod_params.swcrypto) {
30686bf7 491 ieee80211_hw_set(hw, MFP_CAPABLE);
5f4c02e2
JB		 492 mvm->ciphers[hw->wiphy->n_cipher_suites] =
493 WLAN_CIPHER_SUITE_AES_CMAC;
494 hw->wiphy->n_cipher_suites++;
8e160ab8
AB		 495 if (iwl_mvm_has_new_rx_api(mvm)) {
496 mvm->ciphers[hw->wiphy->n_cipher_suites] =
497 WLAN_CIPHER_SUITE_BIP_GMAC_128;
498 hw->wiphy->n_cipher_suites++;
499 mvm->ciphers[hw->wiphy->n_cipher_suites] =
500 WLAN_CIPHER_SUITE_BIP_GMAC_256;
501 hw->wiphy->n_cipher_suites++;
502 }
5f4c02e2
JB		 503 }
504
505 /* currently FW API supports only one optional cipher scheme */
506 if (mvm->fw->cs[0].cipher) {
24ddddf3
JB		 507 const struct iwl_fw_cipher_scheme *fwcs = &mvm->fw->cs[0];
508 struct ieee80211_cipher_scheme *cs = &mvm->cs[0];
509
5f4c02e2 510 mvm->hw->n_cipher_schemes = 1;
24ddddf3
JB		 511
512 cs->cipher = le32_to_cpu(fwcs->cipher);
513 cs->iftype = BIT(NL80211_IFTYPE_STATION);
514 cs->hdr_len = fwcs->hdr_len;
515 cs->pn_len = fwcs->pn_len;
516 cs->pn_off = fwcs->pn_off;
517 cs->key_idx_off = fwcs->key_idx_off;
518 cs->key_idx_mask = fwcs->key_idx_mask;
519 cs->key_idx_shift = fwcs->key_idx_shift;
520 cs->mic_len = fwcs->mic_len;
521
522 mvm->hw->cipher_schemes = mvm->cs;
523 mvm->ciphers[hw->wiphy->n_cipher_suites] = cs->cipher;
5f4c02e2
JB		 524 hw->wiphy->n_cipher_suites++;
525 }
8ca151b5 526
30686bf7 527 ieee80211_hw_set(hw, SINGLE_SCAN_ON_ALL_BANDS);
1f940386
LC		 528 hw->wiphy->features |=
529 NL80211_FEATURE_SCHED_SCAN_RANDOM_MAC_ADDR |
3db93420
JB		 530 NL80211_FEATURE_SCAN_RANDOM_MAC_ADDR |
531 NL80211_FEATURE_ND_RANDOM_MAC_ADDR;
fb98be5e 532
8ca151b5
JB		 533 hw->sta_data_size = sizeof(struct iwl_mvm_sta);
534 hw->vif_data_size = sizeof(struct iwl_mvm_vif);
fe0f2de3 535 hw->chanctx_data_size = sizeof(u16);
8ca151b5
JB		 536
537 hw->wiphy->interface_modes = BIT(NL80211_IFTYPE_STATION) |
3c15a0fb
JB		 538 BIT(NL80211_IFTYPE_P2P_CLIENT) |
539 BIT(NL80211_IFTYPE_AP) |
540 BIT(NL80211_IFTYPE_P2P_GO) |
c13b1725
EG		 541 BIT(NL80211_IFTYPE_P2P_DEVICE) |
542 BIT(NL80211_IFTYPE_ADHOC);
5023d966 543
a2f73b6c 544 hw->wiphy->flags |= WIPHY_FLAG_IBSS_RSN;
8ba2d7a1
EH		 545 hw->wiphy->regulatory_flags |= REGULATORY_ENABLE_RELAX_NO_IR;
546 if (iwl_mvm_is_lar_supported(mvm))
547 hw->wiphy->regulatory_flags |= REGULATORY_WIPHY_SELF_MANAGED;
548 else
549 hw->wiphy->regulatory_flags |= REGULATORY_CUSTOM_REG |
550 REGULATORY_DISABLE_BEACON_HINTS;
8ca151b5 551
4b87e5af 552 hw->wiphy->flags |= WIPHY_FLAG_AP_UAPSD;
94bbed72 553 hw->wiphy->flags |= WIPHY_FLAG_HAS_CHANNEL_SWITCH;
bd3398e2 554
8ca151b5
JB		 555 hw->wiphy->iface_combinations = iwl_mvm_iface_combinations;
556 hw->wiphy->n_iface_combinations =
557 ARRAY_SIZE(iwl_mvm_iface_combinations);
558
c451e6d4 559 hw->wiphy->max_remain_on_channel_duration = 10000;
8ca151b5 560 hw->max_listen_interval = IWL_CONN_MAX_LISTEN_INTERVAL;
f1a68542
EG		 561 /* we can compensate an offset of up to 3 channels = 15 MHz */
562 hw->wiphy->max_adj_channel_rssi_comp = 3 * 5;
8ca151b5
JB		 563
564 /* Extract MAC address */
565 memcpy(mvm->addresses[0].addr, mvm->nvm_data->hw_addr, ETH_ALEN);
566 hw->wiphy->addresses = mvm->addresses;
567 hw->wiphy->n_addresses = 1;
831e85f3
IP		 568
569 /* Extract additional MAC addresses if available */
570 num_mac = (mvm->nvm_data->n_hw_addrs > 1) ?
571 min(IWL_MVM_MAX_ADDRESSES, mvm->nvm_data->n_hw_addrs) : 1;
572
573 for (i = 1; i < num_mac; i++) {
574 memcpy(mvm->addresses[i].addr, mvm->addresses[i-1].addr,
8ca151b5 575 ETH_ALEN);
831e85f3 576 mvm->addresses[i].addr[5]++;
8ca151b5
JB		 577 hw->wiphy->n_addresses++;
578 }
579
fe0f2de3
IP		 580 iwl_mvm_reset_phy_ctxts(mvm);
581
999d2568 582 hw->wiphy->max_scan_ie_len = iwl_mvm_max_scan_ie_len(mvm);
20f1a5de 583
8ca151b5
JB		 584 hw->wiphy->max_scan_ssids = PROBE_OPTION_MAX;
585
c7d42480 586 BUILD_BUG_ON(IWL_MVM_SCAN_STOPPING_MASK & IWL_MVM_SCAN_MASK);
507e4cda
LC		 587 BUILD_BUG_ON(IWL_MVM_MAX_UMAC_SCANS > HWEIGHT32(IWL_MVM_SCAN_MASK) ||
588 IWL_MVM_MAX_LMAC_SCANS > HWEIGHT32(IWL_MVM_SCAN_MASK));
589
859d914c 590 if (fw_has_capa(&mvm->fw->ucode_capa, IWL_UCODE_TLV_CAPA_UMAC_SCAN))
507e4cda
LC		 591 mvm->max_scans = IWL_MVM_MAX_UMAC_SCANS;
592 else
593 mvm->max_scans = IWL_MVM_MAX_LMAC_SCANS;
594
57fbcce3
JB		 595 if (mvm->nvm_data->bands[NL80211_BAND_2GHZ].n_channels)
596 hw->wiphy->bands[NL80211_BAND_2GHZ] =
597 &mvm->nvm_data->bands[NL80211_BAND_2GHZ];
598 if (mvm->nvm_data->bands[NL80211_BAND_5GHZ].n_channels) {
599 hw->wiphy->bands[NL80211_BAND_5GHZ] =
600 &mvm->nvm_data->bands[NL80211_BAND_5GHZ];
8ca151b5 601
859d914c
JB		 602 if (fw_has_capa(&mvm->fw->ucode_capa,
603 IWL_UCODE_TLV_CAPA_BEAMFORMER) &&
604 fw_has_api(&mvm->fw->ucode_capa,
605 IWL_UCODE_TLV_API_LQ_SS_PARAMS))
57fbcce3 606 hw->wiphy->bands[NL80211_BAND_5GHZ]->vht_cap.cap |=
3d44eebf
ES		 607 IEEE80211_VHT_CAP_SU_BEAMFORMER_CAPABLE;
608 }
609
8ca151b5
JB		 610 hw->wiphy->hw_version = mvm->trans->hw_id;
611
ade50652 612 if (iwlmvm_mod_params.power_scheme != IWL_POWER_SCHEME_CAM)
8ca151b5
JB		 613 hw->wiphy->flags |= WIPHY_FLAG_PS_ON_BY_DEFAULT;
614 else
615 hw->wiphy->flags &= ~WIPHY_FLAG_PS_ON_BY_DEFAULT;
616
ca986ad9 617 hw->wiphy->max_sched_scan_reqs = 1;
9954b37c
EG		 618 hw->wiphy->max_sched_scan_ssids = PROBE_OPTION_MAX;
619 hw->wiphy->max_match_sets = IWL_SCAN_MAX_PROFILES;
620 /* we create the 802.11 header and zero length SSID IE. */
621 hw->wiphy->max_sched_scan_ie_len =
622 SCAN_OFFLOAD_PROBE_REQ_SIZE - 24 - 2;
cd55ccea
AS		 623 hw->wiphy->max_sched_scan_plans = IWL_MAX_SCHED_SCAN_PLANS;
624 hw->wiphy->max_sched_scan_plan_interval = U16_MAX;
625
626 /*
627 * the firmware uses u8 for num of iterations, but 0xff is saved for
628 * infinite loop, so the maximum number of iterations is actually 254.
629 */
630 hw->wiphy->max_sched_scan_plan_iterations = 254;
35a000b7 631
8ca151b5 632 hw->wiphy->features |= NL80211_FEATURE_P2P_GO_CTWIN |
ab480030 633 NL80211_FEATURE_LOW_PRIORITY_SCAN |
0d8614b4 634 NL80211_FEATURE_P2P_GO_OPPPS |
a904a08b 635 NL80211_FEATURE_AP_MODE_CHAN_WIDTH_CHANGE |
0d8614b4 636 NL80211_FEATURE_DYNAMIC_SMPS |
9b5452fd
EG		 637 NL80211_FEATURE_STATIC_SMPS |
638 NL80211_FEATURE_SUPPORTS_WMM_ADMISSION;
8ca151b5 639
859d914c
JB		 640 if (fw_has_capa(&mvm->fw->ucode_capa,
641 IWL_UCODE_TLV_CAPA_TXPOWER_INSERTION_SUPPORT))
f1daa00e 642 hw->wiphy->features |= NL80211_FEATURE_TX_POWER_INSERTION;
859d914c
JB		 643 if (fw_has_capa(&mvm->fw->ucode_capa,
644 IWL_UCODE_TLV_CAPA_QUIET_PERIOD_SUPPORT))
226bcd48 645 hw->wiphy->features |= NL80211_FEATURE_QUIET;
f1daa00e 646
859d914c
JB		 647 if (fw_has_capa(&mvm->fw->ucode_capa,
648 IWL_UCODE_TLV_CAPA_DS_PARAM_SET_IE_SUPPORT))
73897bd1
AO		 649 hw->wiphy->features |=
650 NL80211_FEATURE_DS_PARAM_SET_IE_IN_PROBES;
651
859d914c
JB		 652 if (fw_has_capa(&mvm->fw->ucode_capa,
653 IWL_UCODE_TLV_CAPA_WFA_TPC_REP_IE_SUPPORT))
73897bd1
AO		 654 hw->wiphy->features |= NL80211_FEATURE_WFA_TPC_IE_IN_PROBES;
655
aacf8f18
AS		 656 if (fw_has_api(&mvm->fw->ucode_capa,
657 IWL_UCODE_TLV_API_SCAN_TSF_REPORT)) {
658 wiphy_ext_feature_set(hw->wiphy,
659 NL80211_EXT_FEATURE_SCAN_START_TIME);
660 wiphy_ext_feature_set(hw->wiphy,
661 NL80211_EXT_FEATURE_BSS_PARENT_TSF);
662 wiphy_ext_feature_set(hw->wiphy,
663 NL80211_EXT_FEATURE_SET_SCAN_DWELL);
664 }
665
8f691af9
ZR		 666 if (iwl_mvm_is_oce_supported(mvm)) {
667 wiphy_ext_feature_set(hw->wiphy,
668 NL80211_EXT_FEATURE_ACCEPT_BCAST_PROBE_RESP);
669 wiphy_ext_feature_set(hw->wiphy,
670 NL80211_EXT_FEATURE_FILS_MAX_CHANNEL_TIME);
671 wiphy_ext_feature_set(hw->wiphy,
672 NL80211_EXT_FEATURE_OCE_PROBE_REQ_DEFERRAL_SUPPRESSION);
673 wiphy_ext_feature_set(hw->wiphy,
674 NL80211_EXT_FEATURE_OCE_PROBE_REQ_HIGH_TX_RATE);
675 }
676
8ca151b5
JB		 677 mvm->rts_threshold = IEEE80211_MAX_RTS_THRESHOLD;
678
679#ifdef CONFIG_PM_SLEEP
d15a747f
EP		 680 if (iwl_mvm_is_d0i3_supported(mvm) &&
681 device_can_wakeup(mvm->trans->dev)) {
682 mvm->wowlan.flags = WIPHY_WOWLAN_ANY;
683 hw->wiphy->wowlan = &mvm->wowlan;
91742449
EP		 684 }
685
eef187a7 686 if (mvm->fw->img[IWL_UCODE_WOWLAN].num_sec &&
8ca151b5
JB		 687 mvm->trans->ops->d3_suspend &&
688 mvm->trans->ops->d3_resume &&
689 device_can_wakeup(mvm->trans->dev)) {
91742449
EP		 690 mvm->wowlan.flags |= WIPHY_WOWLAN_MAGIC_PKT |
691 WIPHY_WOWLAN_DISCONNECT |
692 WIPHY_WOWLAN_EAP_IDENTITY_REQ |
693 WIPHY_WOWLAN_RFKILL_RELEASE |
694 WIPHY_WOWLAN_NET_DETECT;
3b37f4c9 695 if (!iwlwifi_mod_params.swcrypto)
964dc9e2
JB		 696 mvm->wowlan.flags |= WIPHY_WOWLAN_SUPPORTS_GTK_REKEY |
697 WIPHY_WOWLAN_GTK_REKEY_FAILURE |
698 WIPHY_WOWLAN_4WAY_HANDSHAKE;
699
700 mvm->wowlan.n_patterns = IWL_WOWLAN_MAX_PATTERNS;
701 mvm->wowlan.pattern_min_len = IWL_WOWLAN_MIN_PATTERN_LEN;
702 mvm->wowlan.pattern_max_len = IWL_WOWLAN_MAX_PATTERN_LEN;
c55385f5 703 mvm->wowlan.max_nd_match_sets = IWL_SCAN_MAX_PROFILES;
964dc9e2 704 hw->wiphy->wowlan = &mvm->wowlan;
8ca151b5
JB		 705 }
706#endif
707
77736923
EP		 708#ifdef CONFIG_IWLWIFI_BCAST_FILTERING
709 /* assign default bcast filtering configuration */
710 mvm->bcast_filters = iwl_mvm_default_bcast_filters;
711#endif
712
8ca151b5
JB		 713 ret = iwl_mvm_leds_init(mvm);
714 if (ret)
715 return ret;
716
859d914c
JB		 717 if (fw_has_capa(&mvm->fw->ucode_capa,
718 IWL_UCODE_TLV_CAPA_TDLS_SUPPORT)) {
d8f1c515
AN		 719 IWL_DEBUG_TDLS(mvm, "TDLS supported\n");
720 hw->wiphy->flags |= WIPHY_FLAG_SUPPORTS_TDLS;
7c4f0843 721 ieee80211_hw_set(hw, TDLS_WIDER_BW);
d8f1c515
AN		 722 }
723
859d914c
JB		 724 if (fw_has_capa(&mvm->fw->ucode_capa,
725 IWL_UCODE_TLV_CAPA_TDLS_CHANNEL_SWITCH)) {
1d3c3f63
AN		 726 IWL_DEBUG_TDLS(mvm, "TDLS channel switch supported\n");
727 hw->wiphy->features |= NL80211_FEATURE_TDLS_CHANNEL_SWITCH;
728 }
729
93190fb0 730 hw->netdev_features |= mvm->cfg->features;
5e6a98dc
SS		 731 if (!iwl_mvm_is_csum_supported(mvm)) {
732 hw->netdev_features &= ~(IWL_TX_CSUM_NETIF_FLAGS |
733 NETIF_F_RXCSUM);
734 /* We may support SW TX CSUM */
735 if (IWL_MVM_SW_TX_CSUM_OFFLOAD)
736 hw->netdev_features |= IWL_TX_CSUM_NETIF_FLAGS;
737 }
41837ca9 738
b7327d89
EG		 739 ret = ieee80211_register_hw(mvm->hw);
740 if (ret)
741 iwl_mvm_leds_exit(mvm);
de8ba41b 742 mvm->init_status |= IWL_MVM_INIT_STATUS_REG_HW_INIT_COMPLETE;
b7327d89 743
91b08c2d
AE		 744 if (mvm->cfg->vht_mu_mimo_supported)
745 wiphy_ext_feature_set(hw->wiphy,
746 NL80211_EXT_FEATURE_MU_MIMO_AIR_SNIFFER);
747
b7327d89 748 return ret;
8ca151b5
JB		 749}
750
b2492501
AN		 751static bool iwl_mvm_defer_tx(struct iwl_mvm *mvm,
752 struct ieee80211_sta *sta,
753 struct sk_buff *skb)
754{
755 struct iwl_mvm_sta *mvmsta;
756 bool defer = false;
757
758 /*
759 * double check the IN_D0I3 flag both before and after
760 * taking the spinlock, in order to prevent taking
761 * the spinlock when not needed.
762 */
763 if (likely(!test_bit(IWL_MVM_STATUS_IN_D0I3, &mvm->status)))
764 return false;
765
766 spin_lock(&mvm->d0i3_tx_lock);
767 /*
768 * testing the flag again ensures the skb dequeue
769 * loop (on d0i3 exit) hasn't run yet.
770 */
771 if (!test_bit(IWL_MVM_STATUS_IN_D0I3, &mvm->status))
772 goto out;
773
774 mvmsta = iwl_mvm_sta_from_mac80211(sta);
0ae98812 775 if (mvmsta->sta_id == IWL_MVM_INVALID_STA ||
b2492501
AN		 776 mvmsta->sta_id != mvm->d0i3_ap_sta_id)
777 goto out;
778
779 __skb_queue_tail(&mvm->d0i3_tx, skb);
780 ieee80211_stop_queues(mvm->hw);
781
782 /* trigger wakeup */
783 iwl_mvm_ref(mvm, IWL_MVM_REF_TX);
784 iwl_mvm_unref(mvm, IWL_MVM_REF_TX);
785
786 defer = true;
787out:
788 spin_unlock(&mvm->d0i3_tx_lock);
789 return defer;
790}
791
8ca151b5
JB		 792static void iwl_mvm_mac_tx(struct ieee80211_hw *hw,
793 struct ieee80211_tx_control *control,
794 struct sk_buff *skb)
795{
796 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3e56eadf
JB		 797 struct ieee80211_sta *sta = control->sta;
798 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
799 struct ieee80211_hdr *hdr = (void *)skb->data;
8ca151b5 800
9ee718aa
EL		 801 if (iwl_mvm_is_radio_killed(mvm)) {
802 IWL_DEBUG_DROP(mvm, "Dropping - RF/CT KILL\n");
8ca151b5
JB		 803 goto drop;
804 }
805
d20e30af 806 if (info->hw_queue == IWL_MVM_OFFCHANNEL_QUEUE &&
a6cc5163
MG		 807 !test_bit(IWL_MVM_STATUS_ROC_RUNNING, &mvm->status) &&
808 !test_bit(IWL_MVM_STATUS_ROC_AUX_RUNNING, &mvm->status))
8ca151b5
JB		 809 goto drop;
810
eb045e6e
DS		 811 /* treat non-bufferable MMPDUs on AP interfaces as broadcast */
812 if ((info->control.vif->type == NL80211_IFTYPE_AP ||
813 info->control.vif->type == NL80211_IFTYPE_ADHOC) &&
814 ieee80211_is_mgmt(hdr->frame_control) &&
815 !ieee80211_is_bufferable_mmpdu(hdr->frame_control))
3e56eadf
JB		 816 sta = NULL;
817
818 if (sta) {
b2492501
AN		 819 if (iwl_mvm_defer_tx(mvm, sta, skb))
820 return;
3e56eadf 821 if (iwl_mvm_tx_skb(mvm, skb, sta))
8ca151b5
JB		 822 goto drop;
823 return;
824 }
825
826 if (iwl_mvm_tx_skb_non_sta(mvm, skb))
827 goto drop;
828 return;
829 drop:
830 ieee80211_free_txskb(hw, skb);
831}
832
205e2210
EG		 833static inline bool iwl_enable_rx_ampdu(const struct iwl_cfg *cfg)
834{
835 if (iwlwifi_mod_params.disable_11n & IWL_DISABLE_HT_RXAGG)
836 return false;
837 return true;
838}
839
840static inline bool iwl_enable_tx_ampdu(const struct iwl_cfg *cfg)
841{
842 if (iwlwifi_mod_params.disable_11n & IWL_DISABLE_HT_TXAGG)
843 return false;
844 if (iwlwifi_mod_params.disable_11n & IWL_ENABLE_HT_TXAGG)
845 return true;
846
847 /* enabled by default */
848 return true;
849}
850
7174beb6
JB		 851#define CHECK_BA_TRIGGER(_mvm, _trig, _tid_bm, _tid, _fmt...) \
852 do { \
853 if (!(le16_to_cpu(_tid_bm) & BIT(_tid))) \
854 break; \
855 iwl_fw_dbg_collect_trig(&(_mvm)->fwrt, _trig, _fmt); \
4203263d
EG		 856 } while (0)
857
858static void
859iwl_mvm_ampdu_check_trigger(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
860 struct ieee80211_sta *sta, u16 tid, u16 rx_ba_ssn,
861 enum ieee80211_ampdu_mlme_action action)
862{
863 struct iwl_fw_dbg_trigger_tlv *trig;
864 struct iwl_fw_dbg_trigger_ba *ba_trig;
865
866 if (!iwl_fw_dbg_trigger_enabled(mvm->fw, FW_DBG_TRIGGER_BA))
867 return;
868
869 trig = iwl_fw_dbg_get_trigger(mvm->fw, FW_DBG_TRIGGER_BA);
870 ba_trig = (void *)trig->data;
871
7174beb6
JB		 872 if (!iwl_fw_dbg_trigger_check_stop(&mvm->fwrt,
873 ieee80211_vif_to_wdev(vif), trig))
4203263d
EG		 874 return;
875
876 switch (action) {
877 case IEEE80211_AMPDU_TX_OPERATIONAL: {
878 struct iwl_mvm_sta *mvmsta = iwl_mvm_sta_from_mac80211(sta);
879 struct iwl_mvm_tid_data *tid_data = &mvmsta->tid_data[tid];
880
881 CHECK_BA_TRIGGER(mvm, trig, ba_trig->tx_ba_start, tid,
882 "TX AGG START: MAC %pM tid %d ssn %d\n",
883 sta->addr, tid, tid_data->ssn);
884 break;
885 }
886 case IEEE80211_AMPDU_TX_STOP_CONT:
887 CHECK_BA_TRIGGER(mvm, trig, ba_trig->tx_ba_stop, tid,
888 "TX AGG STOP: MAC %pM tid %d\n",
889 sta->addr, tid);
890 break;
891 case IEEE80211_AMPDU_RX_START:
892 CHECK_BA_TRIGGER(mvm, trig, ba_trig->rx_ba_start, tid,
893 "RX AGG START: MAC %pM tid %d ssn %d\n",
894 sta->addr, tid, rx_ba_ssn);
895 break;
896 case IEEE80211_AMPDU_RX_STOP:
897 CHECK_BA_TRIGGER(mvm, trig, ba_trig->rx_ba_stop, tid,
898 "RX AGG STOP: MAC %pM tid %d\n",
899 sta->addr, tid);
900 break;
901 default:
902 break;
903 }
904}
905
8ca151b5
JB		 906static int iwl_mvm_mac_ampdu_action(struct ieee80211_hw *hw,
907 struct ieee80211_vif *vif,
50ea05ef 908 struct ieee80211_ampdu_params *params)
8ca151b5
JB		 909{
910 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
911 int ret;
b2492501 912 bool tx_agg_ref = false;
50ea05ef
SS		 913 struct ieee80211_sta *sta = params->sta;
914 enum ieee80211_ampdu_mlme_action action = params->action;
915 u16 tid = params->tid;
916 u16 *ssn = &params->ssn;
917 u8 buf_size = params->buf_size;
bb81bb68 918 bool amsdu = params->amsdu;
10b2b201 919 u16 timeout = params->timeout;
8ca151b5
JB		 920
921 IWL_DEBUG_HT(mvm, "A-MPDU action on addr %pM tid %d: action %d\n",
922 sta->addr, tid, action);
923
924 if (!(mvm->nvm_data->sku_cap_11n_enable))
925 return -EACCES;
926
b2492501 927 /* return from D0i3 before starting a new Tx aggregation */
9256c205
EP		 928 switch (action) {
929 case IEEE80211_AMPDU_TX_START:
930 case IEEE80211_AMPDU_TX_STOP_CONT:
931 case IEEE80211_AMPDU_TX_STOP_FLUSH:
932 case IEEE80211_AMPDU_TX_STOP_FLUSH_CONT:
933 case IEEE80211_AMPDU_TX_OPERATIONAL:
b2492501 934 /*
9256c205
EP		 935 * for tx start, wait synchronously until D0i3 exit to
936 * get the correct sequence number for the tid.
937 * additionally, some other ampdu actions use direct
938 * target access, which is not handled automatically
939 * by the trans layer (unlike commands), so wait for
940 * d0i3 exit in these cases as well.
b2492501 941 */
d40fc489
GG		 942 ret = iwl_mvm_ref_sync(mvm, IWL_MVM_REF_TX_AGG);
943 if (ret)
944 return ret;
945
946 tx_agg_ref = true;
9256c205
EP		 947 break;
948 default:
949 break;
b2492501
AN		 950 }
951
8ca151b5
JB		 952 mutex_lock(&mvm->mutex);
953
954 switch (action) {
955 case IEEE80211_AMPDU_RX_START:
205e2210 956 if (!iwl_enable_rx_ampdu(mvm->cfg)) {
8ca151b5
JB		 957 ret = -EINVAL;
958 break;
959 }
10b2b201
SS		 960 ret = iwl_mvm_sta_rx_agg(mvm, sta, tid, *ssn, true, buf_size,
961 timeout);
8ca151b5
JB		 962 break;
963 case IEEE80211_AMPDU_RX_STOP:
10b2b201
SS		 964 ret = iwl_mvm_sta_rx_agg(mvm, sta, tid, 0, false, buf_size,
965 timeout);
8ca151b5
JB		 966 break;
967 case IEEE80211_AMPDU_TX_START:
205e2210 968 if (!iwl_enable_tx_ampdu(mvm->cfg)) {
5d158efa
EG		 969 ret = -EINVAL;
970 break;
971 }
8ca151b5
JB		 972 ret = iwl_mvm_sta_tx_agg_start(mvm, vif, sta, tid, ssn);
973 break;
974 case IEEE80211_AMPDU_TX_STOP_CONT:
e3d9e7ce
EG		 975 ret = iwl_mvm_sta_tx_agg_stop(mvm, vif, sta, tid);
976 break;
8ca151b5
JB		 977 case IEEE80211_AMPDU_TX_STOP_FLUSH:
978 case IEEE80211_AMPDU_TX_STOP_FLUSH_CONT:
e3d9e7ce 979 ret = iwl_mvm_sta_tx_agg_flush(mvm, vif, sta, tid);
8ca151b5
JB		 980 break;
981 case IEEE80211_AMPDU_TX_OPERATIONAL:
bb81bb68
EG		 982 ret = iwl_mvm_sta_tx_agg_oper(mvm, vif, sta, tid,
983 buf_size, amsdu);
8ca151b5
JB		 984 break;
985 default:
986 WARN_ON_ONCE(1);
987 ret = -EINVAL;
988 break;
989 }
4203263d
EG		 990
991 if (!ret) {
992 u16 rx_ba_ssn = 0;
993
994 if (action == IEEE80211_AMPDU_RX_START)
995 rx_ba_ssn = *ssn;
996
997 iwl_mvm_ampdu_check_trigger(mvm, vif, sta, tid,
998 rx_ba_ssn, action);
999 }
8ca151b5
JB		 1000 mutex_unlock(&mvm->mutex);
1001
b2492501
AN		 1002 /*
1003 * If the tid is marked as started, we won't use it for offloaded
1004 * traffic on the next D0i3 entry. It's safe to unref.
1005 */
1006 if (tx_agg_ref)
1007 iwl_mvm_unref(mvm, IWL_MVM_REF_TX_AGG);
1008
8ca151b5
JB		 1009 return ret;
1010}
1011
1012static void iwl_mvm_cleanup_iterator(void *data, u8 *mac,
1013 struct ieee80211_vif *vif)
1014{
1015 struct iwl_mvm *mvm = data;
1016 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
1017
1018 mvmvif->uploaded = false;
0ae98812 1019 mvmvif->ap_sta_id = IWL_MVM_INVALID_STA;
8ca151b5 1020
8ca151b5
JB		 1021 spin_lock_bh(&mvm->time_event_lock);
1022 iwl_mvm_te_clear_data(mvm, &mvmvif->time_event_data);
1023 spin_unlock_bh(&mvm->time_event_lock);
1024
fe0f2de3 1025 mvmvif->phy_ctxt = NULL;
8a275bad 1026 memset(&mvmvif->bf_data, 0, sizeof(mvmvif->bf_data));
8ca151b5
JB		 1027}
1028
1029static void iwl_mvm_restart_cleanup(struct iwl_mvm *mvm)
1030{
58629d9d
JB		 1031 /* clear the D3 reconfig, we only need it to avoid dumping a
1032 * firmware coredump on reconfiguration, we shouldn't do that
1033 * on D3->D0 transition
1034 */
b6eaa45a 1035 if (!test_and_clear_bit(IWL_MVM_STATUS_D3_RECONFIG, &mvm->status)) {
7174beb6
JB		 1036 mvm->fwrt.dump.desc = &iwl_dump_desc_assert;
1037 iwl_fw_error_dump(&mvm->fwrt);
b6eaa45a 1038 }
1bd3cbc1 1039
744cb695
EP		 1040 /* cleanup all stale references (scan, roc), but keep the
1041 * ucode_down ref until reconfig is complete
1042 */
1043 iwl_mvm_unref_all_except(mvm, IWL_MVM_REF_UCODE_DOWN);
1044
fcb6b92a 1045 iwl_mvm_stop_device(mvm);
8ca151b5 1046
9af91f46 1047 mvm->scan_status = 0;
b1873300 1048 mvm->ps_disabled = false;
31b8b343 1049 mvm->calibrating = false;
8ca151b5
JB		 1050
1051 /* just in case one was running */
305d236e 1052 iwl_mvm_cleanup_roc_te(mvm);
8ca151b5
JB		 1053 ieee80211_remain_on_channel_expired(mvm->hw);
1054
737719fe
AN		 1055 /*
1056 * cleanup all interfaces, even inactive ones, as some might have
1057 * gone down during the HW restart
1058 */
1059 ieee80211_iterate_interfaces(mvm->hw, 0, iwl_mvm_cleanup_iterator, mvm);
8ca151b5 1060
fe0f2de3 1061 mvm->p2p_device_vif = NULL;
0ae98812 1062 mvm->d0i3_ap_sta_id = IWL_MVM_INVALID_STA;
fe0f2de3
IP		 1063
1064 iwl_mvm_reset_phy_ctxts(mvm);
9c3deeb5 1065 memset(mvm->fw_key_table, 0, sizeof(mvm->fw_key_table));
24afba76 1066 memset(mvm->sta_deferred_frames, 0, sizeof(mvm->sta_deferred_frames));
8a275bad 1067 memset(&mvm->last_bt_notif, 0, sizeof(mvm->last_bt_notif));
8a275bad 1068 memset(&mvm->last_bt_ci_cmd, 0, sizeof(mvm->last_bt_ci_cmd));
8ca151b5
JB		 1069
1070 ieee80211_wake_queues(mvm->hw);
1071
228670b2
EP		 1072 /* clear any stale d0i3 state */
1073 clear_bit(IWL_MVM_STATUS_IN_D0I3, &mvm->status);
1074
8ca151b5 1075 mvm->vif_count = 0;
113a0447 1076 mvm->rx_ba_sessions = 0;
7174beb6 1077 mvm->fwrt.dump.conf = FW_DBG_INVALID;
baf41bc3 1078 mvm->monitor_on = false;
91a8bcde
JB		 1079
1080 /* keep statistics ticking */
1081 iwl_mvm_accu_radio_stats(mvm);
8ca151b5
JB		 1082}
1083
a0a09243 1084int __iwl_mvm_mac_start(struct iwl_mvm *mvm)
8ca151b5 1085{
8ca151b5
JB		 1086 int ret;
1087
a0a09243 1088 lockdep_assert_held(&mvm->mutex);
8ca151b5 1089
bf8b286f
JB		 1090 if (test_bit(IWL_MVM_STATUS_HW_RESTART_REQUESTED, &mvm->status)) {
1091 /*
1092 * Now convert the HW_RESTART_REQUESTED flag to IN_HW_RESTART
1093 * so later code will - from now on - see that we're doing it.
1094 */
1095 set_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status);
1096 clear_bit(IWL_MVM_STATUS_HW_RESTART_REQUESTED, &mvm->status);
a42b2af3 1097 /* Clean up some internal and mac80211 state on restart */
8ca151b5 1098 iwl_mvm_restart_cleanup(mvm);
a42b2af3
LC		 1099 } else {
1100 /* Hold the reference to prevent runtime suspend while
1101 * the start procedure runs. It's a bit confusing
1102 * that the UCODE_DOWN reference is taken, but it just
1103 * means "UCODE is not UP yet". ( TODO: rename this
1104 * reference).
1105 */
1106 iwl_mvm_ref(mvm, IWL_MVM_REF_UCODE_DOWN);
1107 }
8ca151b5 1108 ret = iwl_mvm_up(mvm);
c47af22a
JB		 1109
1110 if (ret && test_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status)) {
1111 /* Something went wrong - we need to finish some cleanup
1112 * that normally iwl_mvm_mac_restart_complete() below
1113 * would do.
1114 */
1115 clear_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status);
1116 iwl_mvm_d0i3_enable_tx(mvm, NULL);
1117 }
1118
a0a09243
LC		 1119 return ret;
1120}
1121
1122static int iwl_mvm_mac_start(struct ieee80211_hw *hw)
1123{
1124 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
1125 int ret;
1126
37948fcf
EP		 1127 /* Some hw restart cleanups must not hold the mutex */
1128 if (test_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status)) {
1129 /*
1130 * Make sure we are out of d0i3. This is needed
1131 * to make sure the reference accounting is correct
1132 * (and there is no stale d0i3_exit_work).
1133 */
1134 wait_event_timeout(mvm->d0i3_exit_waitq,
1135 !test_bit(IWL_MVM_STATUS_IN_D0I3,
1136 &mvm->status),
1137 HZ);
1138 }
1139
a0a09243
LC		 1140 mutex_lock(&mvm->mutex);
1141 ret = __iwl_mvm_mac_start(mvm);
8ca151b5
JB		 1142 mutex_unlock(&mvm->mutex);
1143
1144 return ret;
1145}
1146
cf2c92d8 1147static void iwl_mvm_restart_complete(struct iwl_mvm *mvm)
8ca151b5 1148{
8ca151b5
JB		 1149 int ret;
1150
1151 mutex_lock(&mvm->mutex);
1152
1153 clear_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status);
b2492501 1154 iwl_mvm_d0i3_enable_tx(mvm, NULL);
e7afe89f 1155 ret = iwl_mvm_update_quotas(mvm, true, NULL);
8ca151b5
JB		 1156 if (ret)
1157 IWL_ERR(mvm, "Failed to update quotas after restart (%d)\n",
1158 ret);
1159
7498cf4c
EP		 1160 /* allow transport/FW low power modes */
1161 iwl_mvm_unref(mvm, IWL_MVM_REF_UCODE_DOWN);
1162
cbd2ae2d
AN		 1163 /*
1164 * If we have TDLS peers, remove them. We don't know the last seqno/PN
1165 * of packets the FW sent out, so we must reconnect.
1166 */
1167 iwl_mvm_teardown_tdls_peers(mvm);
1168
8ca151b5
JB		 1169 mutex_unlock(&mvm->mutex);
1170}
1171
088070a2
EP		 1172static void iwl_mvm_resume_complete(struct iwl_mvm *mvm)
1173{
b7282643
LC		 1174 if (iwl_mvm_is_d0i3_supported(mvm) &&
1175 iwl_mvm_enter_d0i3_on_suspend(mvm))
1176 WARN_ONCE(!wait_event_timeout(mvm->d0i3_exit_waitq,
1177 !test_bit(IWL_MVM_STATUS_IN_D0I3,
1178 &mvm->status),
1179 HZ),
1180 "D0i3 exit on resume timed out\n");
088070a2
EP		 1181}
1182
cf2c92d8
EP		 1183static void
1184iwl_mvm_mac_reconfig_complete(struct ieee80211_hw *hw,
1185 enum ieee80211_reconfig_type reconfig_type)
1186{
1187 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
1188
1189 switch (reconfig_type) {
1190 case IEEE80211_RECONFIG_TYPE_RESTART:
1191 iwl_mvm_restart_complete(mvm);
1192 break;
1193 case IEEE80211_RECONFIG_TYPE_SUSPEND:
088070a2 1194 iwl_mvm_resume_complete(mvm);
cf2c92d8
EP		 1195 break;
1196 }
1197}
1198
a0a09243 1199void __iwl_mvm_mac_stop(struct iwl_mvm *mvm)
8ca151b5 1200{
a0a09243 1201 lockdep_assert_held(&mvm->mutex);
7498cf4c 1202
91a8bcde
JB		 1203 /* firmware counters are obviously reset now, but we shouldn't
1204 * partially track so also clear the fw_reset_accu counters.
1205 */
1206 memset(&mvm->accu_radio_stats, 0, sizeof(mvm->accu_radio_stats));
1207
8ca151b5
JB		 1208 /* async_handlers_wk is now blocked */
1209
1210 /*
1211 * The work item could be running or queued if the
1212 * ROC time event stops just as we get here.
1213 */
c779273b 1214 flush_work(&mvm->roc_done_wk);
8ca151b5 1215
fcb6b92a 1216 iwl_mvm_stop_device(mvm);
8ca151b5
JB		 1217
1218 iwl_mvm_async_handlers_purge(mvm);
1219 /* async_handlers_list is empty and will stay empty: HW is stopped */
1220
1221 /* the fw is stopped, the aux sta is dead: clean up driver state */
712b24ad 1222 iwl_mvm_del_aux_sta(mvm);
8ca151b5 1223
0a79a0c0
EP		 1224 /*
1225 * Clear IN_HW_RESTART flag when stopping the hw (as restart_complete()
1226 * won't be called in this case).
8b2b9fbf
AN		 1227 * But make sure to cleanup interfaces that have gone down before/during
1228 * HW restart was requested.
0a79a0c0 1229 */
8b2b9fbf
AN		 1230 if (test_and_clear_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status))
1231 ieee80211_iterate_interfaces(mvm->hw, 0,
1232 iwl_mvm_cleanup_iterator, mvm);
0a79a0c0 1233
963221be
AB		 1234 /* We shouldn't have any UIDs still set. Loop over all the UIDs to
1235 * make sure there's nothing left there and warn if any is found.
1236 */
859d914c 1237 if (fw_has_capa(&mvm->fw->ucode_capa, IWL_UCODE_TLV_CAPA_UMAC_SCAN)) {
963221be
AB		 1238 int i;
1239
507e4cda 1240 for (i = 0; i < mvm->max_scans; i++) {
6185af2a
LC		 1241 if (WARN_ONCE(mvm->scan_uid_status[i],
1242 "UMAC scan UID %d status was not cleaned\n",
1243 i))
1244 mvm->scan_uid_status[i] = 0;
963221be
AB		 1245 }
1246 }
a0a09243 1247}
bc44886d 1248
a0a09243
LC		 1249static void iwl_mvm_mac_stop(struct ieee80211_hw *hw)
1250{
1251 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
1252
1253 flush_work(&mvm->d0i3_exit_work);
1254 flush_work(&mvm->async_handlers_wk);
24afba76 1255 flush_work(&mvm->add_stream_wk);
771147b0
JB		 1256
1257 /*
1258 * Lock and clear the firmware running bit here already, so that
1259 * new commands coming in elsewhere, e.g. from debugfs, will not
1260 * be able to proceed. This is important here because one of those
7174beb6 1261 * debugfs files causes the firmware dump to be triggered, and if we
771147b0
JB		 1262 * don't stop debugfs accesses before canceling that it could be
1263 * retriggered after we flush it but before we've cleared the bit.
1264 */
1265 clear_bit(IWL_MVM_STATUS_FIRMWARE_RUNNING, &mvm->status);
1266
7174beb6 1267 iwl_fw_cancel_dump(&mvm->fwrt);
d3a108a4 1268 cancel_delayed_work_sync(&mvm->cs_tx_unblock_dwork);
69e04642 1269 cancel_delayed_work_sync(&mvm->scan_timeout_dwork);
7174beb6 1270 iwl_fw_free_dump_desc(&mvm->fwrt);
a0a09243
LC		 1271
1272 mutex_lock(&mvm->mutex);
1273 __iwl_mvm_mac_stop(mvm);
8ca151b5
JB		 1274 mutex_unlock(&mvm->mutex);
1275
1276 /*
1277 * The worker might have been waiting for the mutex, let it run and
1278 * discover that its list is now empty.
1279 */
1280 cancel_work_sync(&mvm->async_handlers_wk);
1281}
1282
fe0f2de3
IP		 1283static struct iwl_mvm_phy_ctxt *iwl_mvm_get_free_phy_ctxt(struct iwl_mvm *mvm)
1284{
1285 u16 i;
1286
1287 lockdep_assert_held(&mvm->mutex);
1288
1289 for (i = 0; i < NUM_PHY_CTX; i++)
1290 if (!mvm->phy_ctxts[i].ref)
1291 return &mvm->phy_ctxts[i];
1292
1293 IWL_ERR(mvm, "No available PHY context\n");
1294 return NULL;
1295}
1296
d44c3fe6
AA		 1297static int iwl_mvm_set_tx_power(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
1298 s16 tx_power)
1299{
1300 struct iwl_dev_tx_power_cmd cmd = {
4b87e5af
LC		 1301 .v3.set_mode = cpu_to_le32(IWL_TX_POWER_MODE_SET_MAC),
1302 .v3.mac_context_id =
d44c3fe6 1303 cpu_to_le32(iwl_mvm_vif_from_mac80211(vif)->id),
4b87e5af 1304 .v3.pwr_restriction = cpu_to_le16(8 * tx_power),
d44c3fe6 1305 };
da03f029 1306 int len = sizeof(cmd);
d44c3fe6 1307
d44c3fe6 1308 if (tx_power == IWL_DEFAULT_MAX_TX_POWER)
4b87e5af 1309 cmd.v3.pwr_restriction = cpu_to_le16(IWL_DEV_MAX_TX_POWER);
d44c3fe6 1310
55bfa4b9
LC		 1311 if (!fw_has_capa(&mvm->fw->ucode_capa, IWL_UCODE_TLV_CAPA_TX_POWER_ACK))
1312 len = sizeof(cmd.v3);
da03f029
JB		 1313
1314 return iwl_mvm_send_cmd_pdu(mvm, REDUCE_TX_POWER_CMD, 0, len, &cmd);
d44c3fe6
AA		 1315}
1316
8ca151b5
JB		 1317static int iwl_mvm_mac_add_interface(struct ieee80211_hw *hw,
1318 struct ieee80211_vif *vif)
1319{
1320 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
1321 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
1322 int ret;
1323
aa5e1832
EG		 1324 mvmvif->mvm = mvm;
1325
d40fc489
GG		 1326 /*
1327 * make sure D0i3 exit is completed, otherwise a target access
1328 * during tx queue configuration could be done when still in
1329 * D0i3 state.
1330 */
1331 ret = iwl_mvm_ref_sync(mvm, IWL_MVM_REF_ADD_IF);
1332 if (ret)
1333 return ret;
1334
8ca151b5
JB		 1335 /*
1336 * Not much to do here. The stack will not allow interface
1337 * types or combinations that we didn't advertise, so we
1338 * don't really have to check the types.
1339 */
1340
1341 mutex_lock(&mvm->mutex);
1342
33cef925
JB		 1343 /* make sure that beacon statistics don't go backwards with FW reset */
1344 if (test_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status))
1345 mvmvif->beacon_stats.accu_num_beacons +=
1346 mvmvif->beacon_stats.num_beacons;
1347
e89044d7 1348 /* Allocate resources for the MAC context, and add it to the fw */
8ca151b5
JB		 1349 ret = iwl_mvm_mac_ctxt_init(mvm, vif);
1350 if (ret)
1351 goto out_unlock;
1352
1c2abf72 1353 /* Counting number of interfaces is needed for legacy PM */
ea183d02
IP		 1354 if (vif->type != NL80211_IFTYPE_P2P_DEVICE)
1355 mvm->vif_count++;
ea183d02 1356
8ca151b5
JB		 1357 /*
1358 * The AP binding flow can be done only after the beacon
1359 * template is configured (which happens only in the mac80211
1360 * start_ap() flow), and adding the broadcast station can happen
1361 * only after the binding.
1362 * In addition, since modifying the MAC before adding a bcast
1363 * station is not allowed by the FW, delay the adding of MAC context to
1364 * the point where we can also add the bcast station.
1365 * In short: there's not much we can do at this point, other than
1366 * allocating resources :)
1367 */
5023d966
JB		 1368 if (vif->type == NL80211_IFTYPE_AP ||
1369 vif->type == NL80211_IFTYPE_ADHOC) {
013290aa 1370 ret = iwl_mvm_alloc_bcast_sta(mvm, vif);
8ca151b5
JB		 1371 if (ret) {
1372 IWL_ERR(mvm, "Failed to allocate bcast sta\n");
1373 goto out_release;
1374 }
1375
c8f54701
JB		 1376 /*
1377 * Only queue for this station is the mcast queue,
1378 * which shouldn't be in TFD mask anyway
1379 */
1380 ret = iwl_mvm_allocate_int_sta(mvm, &mvmvif->mcast_sta,
1381 0, vif->type,
1382 IWL_STA_MULTICAST);
1383 if (ret)
1384 goto out_release;
26d6c16b 1385
77740cb4 1386 iwl_mvm_vif_dbgfs_register(mvm, vif);
8ca151b5
JB		 1387 goto out_unlock;
1388 }
1389
93190fb0
AA		 1390 mvmvif->features |= hw->netdev_features;
1391
8ca151b5
JB		 1392 ret = iwl_mvm_mac_ctxt_add(mvm, vif);
1393 if (ret)
1394 goto out_release;
1395
999609f1 1396 ret = iwl_mvm_power_update_mac(mvm);
e5e7aa8e 1397 if (ret)
fd66fc1c 1398 goto out_remove_mac;
8ca151b5 1399
7df15b1e 1400 /* beacon filtering */
a1022927 1401 ret = iwl_mvm_disable_beacon_filter(mvm, vif, 0);
bd3351ba
EP		 1402 if (ret)
1403 goto out_remove_mac;
1404
7df15b1e 1405 if (!mvm->bf_allowed_vif &&
73e5f2c5 1406 vif->type == NL80211_IFTYPE_STATION && !vif->p2p) {
7df15b1e 1407 mvm->bf_allowed_vif = mvmvif;
a20fd398
AO		 1408 vif->driver_flags |= IEEE80211_VIF_BEACON_FILTER |
1409 IEEE80211_VIF_SUPPORTS_CQM_RSSI;
7df15b1e
HG		 1410 }
1411
8ca151b5
JB		 1412 /*
1413 * P2P_DEVICE interface does not have a channel context assigned to it,
1414 * so a dedicated PHY context is allocated to it and the corresponding
1415 * MAC context is bound to it at this stage.
1416 */
1417 if (vif->type == NL80211_IFTYPE_P2P_DEVICE) {
8ca151b5 1418
fe0f2de3
IP		 1419 mvmvif->phy_ctxt = iwl_mvm_get_free_phy_ctxt(mvm);
1420 if (!mvmvif->phy_ctxt) {
1421 ret = -ENOSPC;
bd3351ba 1422 goto out_free_bf;
fe0f2de3 1423 }
8ca151b5 1424
53a9d61e 1425 iwl_mvm_phy_ctxt_ref(mvm, mvmvif->phy_ctxt);
8ca151b5
JB		 1426 ret = iwl_mvm_binding_add_vif(mvm, vif);
1427 if (ret)
53a9d61e 1428 goto out_unref_phy;
8ca151b5 1429
d197358b 1430 ret = iwl_mvm_add_p2p_bcast_sta(mvm, vif);
8ca151b5
JB		 1431 if (ret)
1432 goto out_unbind;
1433
1434 /* Save a pointer to p2p device vif, so it can later be used to
1435 * update the p2p device MAC when a GO is started/stopped */
1436 mvm->p2p_device_vif = vif;
1437 }
1438
baf41bc3
ST		 1439 if (vif->type == NL80211_IFTYPE_MONITOR)
1440 mvm->monitor_on = true;
1441
63494374 1442 iwl_mvm_vif_dbgfs_register(mvm, vif);
8ca151b5
JB		 1443 goto out_unlock;
1444
1445 out_unbind:
1446 iwl_mvm_binding_remove_vif(mvm, vif);
53a9d61e 1447 out_unref_phy:
fe0f2de3 1448 iwl_mvm_phy_ctxt_unref(mvm, mvmvif->phy_ctxt);
bd3351ba
EP		 1449 out_free_bf:
1450 if (mvm->bf_allowed_vif == mvmvif) {
1451 mvm->bf_allowed_vif = NULL;
a20fd398
AO		 1452 vif->driver_flags &= ~(IEEE80211_VIF_BEACON_FILTER |
1453 IEEE80211_VIF_SUPPORTS_CQM_RSSI);
bd3351ba 1454 }
8ca151b5
JB		 1455 out_remove_mac:
1456 mvmvif->phy_ctxt = NULL;
1457 iwl_mvm_mac_ctxt_remove(mvm, vif);
1458 out_release:
5ee2b215
AB		 1459 if (vif->type != NL80211_IFTYPE_P2P_DEVICE)
1460 mvm->vif_count--;
8ca151b5
JB		 1461 out_unlock:
1462 mutex_unlock(&mvm->mutex);
1463
d40fc489
GG		 1464 iwl_mvm_unref(mvm, IWL_MVM_REF_ADD_IF);
1465
8ca151b5
JB		 1466 return ret;
1467}
1468
38a12b5b
JB		 1469static void iwl_mvm_prepare_mac_removal(struct iwl_mvm *mvm,
1470 struct ieee80211_vif *vif)
8ca151b5 1471{
8ca151b5
JB		 1472 if (vif->type == NL80211_IFTYPE_P2P_DEVICE) {
1473 /*
1474 * Flush the ROC worker which will flush the OFFCHANNEL queue.
1475 * We assume here that all the packets sent to the OFFCHANNEL
1476 * queue are sent in ROC session.
1477 */
1478 flush_work(&mvm->roc_done_wk);
8ca151b5 1479 }
38a12b5b
JB		 1480}
1481
1482static void iwl_mvm_mac_remove_interface(struct ieee80211_hw *hw,
1483 struct ieee80211_vif *vif)
1484{
1485 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
1486 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
1487
1488 iwl_mvm_prepare_mac_removal(mvm, vif);
8ca151b5
JB		 1489
1490 mutex_lock(&mvm->mutex);
1491
7df15b1e
HG		 1492 if (mvm->bf_allowed_vif == mvmvif) {
1493 mvm->bf_allowed_vif = NULL;
a20fd398
AO		 1494 vif->driver_flags &= ~(IEEE80211_VIF_BEACON_FILTER |
1495 IEEE80211_VIF_SUPPORTS_CQM_RSSI);
7df15b1e
HG		 1496 }
1497
63494374
JB		 1498 iwl_mvm_vif_dbgfs_clean(mvm, vif);
1499
8ca151b5
JB		 1500 /*
1501 * For AP/GO interface, the tear down of the resources allocated to the
38a12b5b 1502 * interface is be handled as part of the stop_ap flow.
8ca151b5 1503 */
5023d966
JB		 1504 if (vif->type == NL80211_IFTYPE_AP ||
1505 vif->type == NL80211_IFTYPE_ADHOC) {
507cadf2
DS		 1506#ifdef CONFIG_NL80211_TESTMODE
1507 if (vif == mvm->noa_vif) {
1508 mvm->noa_vif = NULL;
1509 mvm->noa_duration = 0;
1510 }
1511#endif
26d6c16b 1512 iwl_mvm_dealloc_int_sta(mvm, &mvmvif->mcast_sta);
013290aa 1513 iwl_mvm_dealloc_bcast_sta(mvm, vif);
8ca151b5
JB		 1514 goto out_release;
1515 }
1516
1517 if (vif->type == NL80211_IFTYPE_P2P_DEVICE) {
1518 mvm->p2p_device_vif = NULL;
d197358b 1519 iwl_mvm_rm_p2p_bcast_sta(mvm, vif);
8ca151b5 1520 iwl_mvm_binding_remove_vif(mvm, vif);
fe0f2de3 1521 iwl_mvm_phy_ctxt_unref(mvm, mvmvif->phy_ctxt);
8ca151b5
JB		 1522 mvmvif->phy_ctxt = NULL;
1523 }
1524
5ee2b215 1525 if (mvm->vif_count && vif->type != NL80211_IFTYPE_P2P_DEVICE)
8ca151b5 1526 mvm->vif_count--;
1c2abf72 1527
999609f1 1528 iwl_mvm_power_update_mac(mvm);
8ca151b5
JB		 1529 iwl_mvm_mac_ctxt_remove(mvm, vif);
1530
baf41bc3
ST		 1531 if (vif->type == NL80211_IFTYPE_MONITOR)
1532 mvm->monitor_on = false;
1533
8ca151b5 1534out_release:
8ca151b5
JB		 1535 mutex_unlock(&mvm->mutex);
1536}
1537
1538static int iwl_mvm_mac_config(struct ieee80211_hw *hw, u32 changed)
88f2fd73 1539{
8ca151b5
JB		 1540 return 0;
1541}
1542
e59647ea
EP		 1543struct iwl_mvm_mc_iter_data {
1544 struct iwl_mvm *mvm;
1545 int port_id;
1546};
1547
1548static void iwl_mvm_mc_iface_iterator(void *_data, u8 *mac,
1549 struct ieee80211_vif *vif)
1550{
1551 struct iwl_mvm_mc_iter_data *data = _data;
1552 struct iwl_mvm *mvm = data->mvm;
1553 struct iwl_mcast_filter_cmd *cmd = mvm->mcast_filter_cmd;
97bce57b
LC		 1554 struct iwl_host_cmd hcmd = {
1555 .id = MCAST_FILTER_CMD,
1556 .flags = CMD_ASYNC,
1557 .dataflags[0] = IWL_HCMD_DFL_NOCOPY,
1558 };
e59647ea
EP		 1559 int ret, len;
1560
1561 /* if we don't have free ports, mcast frames will be dropped */
1562 if (WARN_ON_ONCE(data->port_id >= MAX_PORT_ID_NUM))
1563 return;
1564
1565 if (vif->type != NL80211_IFTYPE_STATION ||
1566 !vif->bss_conf.assoc)
1567 return;
1568
1569 cmd->port_id = data->port_id++;
1570 memcpy(cmd->bssid, vif->bss_conf.bssid, ETH_ALEN);
1571 len = roundup(sizeof(*cmd) + cmd->count * ETH_ALEN, 4);
1572
97bce57b
LC		 1573 hcmd.len[0] = len;
1574 hcmd.data[0] = cmd;
1575
1576 ret = iwl_mvm_send_cmd(mvm, &hcmd);
e59647ea
EP		 1577 if (ret)
1578 IWL_ERR(mvm, "mcast filter cmd error. ret=%d\n", ret);
1579}
1580
1581static void iwl_mvm_recalc_multicast(struct iwl_mvm *mvm)
1582{
1583 struct iwl_mvm_mc_iter_data iter_data = {
1584 .mvm = mvm,
88f2fd73
MG		 1585 };
1586
e59647ea
EP		 1587 lockdep_assert_held(&mvm->mutex);
1588
1589 if (WARN_ON_ONCE(!mvm->mcast_filter_cmd))
1590 return;
1591
1c4abec0 1592 ieee80211_iterate_active_interfaces_atomic(
e59647ea
EP		 1593 mvm->hw, IEEE80211_IFACE_ITER_NORMAL,
1594 iwl_mvm_mc_iface_iterator, &iter_data);
88f2fd73
MG		 1595}
1596
e59647ea
EP		 1597static u64 iwl_mvm_prepare_multicast(struct ieee80211_hw *hw,
1598 struct netdev_hw_addr_list *mc_list)
8ca151b5 1599{
e59647ea
EP		 1600 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
1601 struct iwl_mcast_filter_cmd *cmd;
1602 struct netdev_hw_addr *addr;
f3bd58f4
MS		 1603 int addr_count;
1604 bool pass_all;
e59647ea
EP		 1605 int len;
1606
f3bd58f4
MS		 1607 addr_count = netdev_hw_addr_list_count(mc_list);
1608 pass_all = addr_count > MAX_MCAST_FILTERING_ADDRESSES ||
1609 IWL_MVM_FW_MCAST_FILTER_PASS_ALL;
1610 if (pass_all)
e59647ea 1611 addr_count = 0;
e59647ea
EP		 1612
1613 len = roundup(sizeof(*cmd) + addr_count * ETH_ALEN, 4);
1614 cmd = kzalloc(len, GFP_ATOMIC);
1615 if (!cmd)
1616 return 0;
1617
1618 if (pass_all) {
1619 cmd->pass_all = 1;
1620 return (u64)(unsigned long)cmd;
1621 }
1622
1623 netdev_hw_addr_list_for_each(addr, mc_list) {
1624 IWL_DEBUG_MAC80211(mvm, "mcast addr (%d): %pM\n",
1625 cmd->count, addr->addr);
1626 memcpy(&cmd->addr_list[cmd->count * ETH_ALEN],
1627 addr->addr, ETH_ALEN);
1628 cmd->count++;
1629 }
1630
1631 return (u64)(unsigned long)cmd;
8ca151b5
JB		 1632}
1633
1634static void iwl_mvm_configure_filter(struct ieee80211_hw *hw,
1635 unsigned int changed_flags,
1636 unsigned int *total_flags,
1637 u64 multicast)
1638{
e59647ea
EP		 1639 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
1640 struct iwl_mcast_filter_cmd *cmd = (void *)(unsigned long)multicast;
8ca151b5 1641
e59647ea 1642 mutex_lock(&mvm->mutex);
51b6b9e0 1643
e59647ea
EP		 1644 /* replace previous configuration */
1645 kfree(mvm->mcast_filter_cmd);
1646 mvm->mcast_filter_cmd = cmd;
51b6b9e0 1647
e59647ea
EP		 1648 if (!cmd)
1649 goto out;
51b6b9e0 1650
61e7d91b
LC		 1651 if (changed_flags & FIF_ALLMULTI)
1652 cmd->pass_all = !!(*total_flags & FIF_ALLMULTI);
1653
1654 if (cmd->pass_all)
1655 cmd->count = 0;
1656
e59647ea
EP		 1657 iwl_mvm_recalc_multicast(mvm);
1658out:
1659 mutex_unlock(&mvm->mutex);
1660 *total_flags = 0;
51b6b9e0
EG		 1661}
1662
effd1929
AO		 1663static void iwl_mvm_config_iface_filter(struct ieee80211_hw *hw,
1664 struct ieee80211_vif *vif,
1665 unsigned int filter_flags,
1666 unsigned int changed_flags)
1667{
1668 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
1669
1670 /* We support only filter for probe requests */
1671 if (!(changed_flags & FIF_PROBE_REQ))
1672 return;
1673
1674 /* Supported only for p2p client interfaces */
1675 if (vif->type != NL80211_IFTYPE_STATION || !vif->bss_conf.assoc ||
1676 !vif->p2p)
1677 return;
1678
1679 mutex_lock(&mvm->mutex);
1680 iwl_mvm_mac_ctxt_changed(mvm, vif, false, NULL);
1681 mutex_unlock(&mvm->mutex);
1682}
1683
c87163b9
EP		 1684#ifdef CONFIG_IWLWIFI_BCAST_FILTERING
1685struct iwl_bcast_iter_data {
1686 struct iwl_mvm *mvm;
1687 struct iwl_bcast_filter_cmd *cmd;
1688 u8 current_filter;
1689};
1690
1691static void
1692iwl_mvm_set_bcast_filter(struct ieee80211_vif *vif,
1693 const struct iwl_fw_bcast_filter *in_filter,
1694 struct iwl_fw_bcast_filter *out_filter)
1695{
1696 struct iwl_fw_bcast_filter_attr *attr;
1697 int i;
1698
1699 memcpy(out_filter, in_filter, sizeof(*out_filter));
1700
1701 for (i = 0; i < ARRAY_SIZE(out_filter->attrs); i++) {
1702 attr = &out_filter->attrs[i];
1703
1704 if (!attr->mask)
1705 break;
1706
2ee8f021
EP		 1707 switch (attr->reserved1) {
1708 case cpu_to_le16(BC_FILTER_MAGIC_IP):
1709 if (vif->bss_conf.arp_addr_cnt != 1) {
1710 attr->mask = 0;
1711 continue;
1712 }
1713
1714 attr->val = vif->bss_conf.arp_addr_list[0];
1715 break;
1716 case cpu_to_le16(BC_FILTER_MAGIC_MAC):
1717 attr->val = *(__be32 *)&vif->addr[2];
1718 break;
1719 default:
1720 break;
1721 }
1722 attr->reserved1 = 0;
c87163b9
EP		 1723 out_filter->num_attrs++;
1724 }
1725}
1726
1727static void iwl_mvm_bcast_filter_iterator(void *_data, u8 *mac,
1728 struct ieee80211_vif *vif)
1729{
1730 struct iwl_bcast_iter_data *data = _data;
1731 struct iwl_mvm *mvm = data->mvm;
1732 struct iwl_bcast_filter_cmd *cmd = data->cmd;
1733 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
1734 struct iwl_fw_bcast_mac *bcast_mac;
1735 int i;
1736
1737 if (WARN_ON(mvmvif->id >= ARRAY_SIZE(cmd->macs)))
1738 return;
1739
1740 bcast_mac = &cmd->macs[mvmvif->id];
1741
e48393e8
IP		 1742 /*
1743 * enable filtering only for associated stations, but not for P2P
1744 * Clients
1745 */
1746 if (vif->type != NL80211_IFTYPE_STATION || vif->p2p ||
1747 !vif->bss_conf.assoc)
c87163b9
EP		 1748 return;
1749
1750 bcast_mac->default_discard = 1;
1751
1752 /* copy all configured filters */
1753 for (i = 0; mvm->bcast_filters[i].attrs[0].mask; i++) {
1754 /*
1755 * Make sure we don't exceed our filters limit.
1756 * if there is still a valid filter to be configured,
1757 * be on the safe side and just allow bcast for this mac.
1758 */
1759 if (WARN_ON_ONCE(data->current_filter >=
1760 ARRAY_SIZE(cmd->filters))) {
1761 bcast_mac->default_discard = 0;
1762 bcast_mac->attached_filters = 0;
1763 break;
1764 }
1765
1766 iwl_mvm_set_bcast_filter(vif,
1767 &mvm->bcast_filters[i],
1768 &cmd->filters[data->current_filter]);
1769
1770 /* skip current filter if it contains no attributes */
1771 if (!cmd->filters[data->current_filter].num_attrs)
1772 continue;
1773
1774 /* attach the filter to current mac */
1775 bcast_mac->attached_filters |=
1776 cpu_to_le16(BIT(data->current_filter));
1777
1778 data->current_filter++;
1779 }
1780}
1781
de06a59e
EP		 1782bool iwl_mvm_bcast_filter_build_cmd(struct iwl_mvm *mvm,
1783 struct iwl_bcast_filter_cmd *cmd)
c87163b9 1784{
c87163b9
EP		 1785 struct iwl_bcast_iter_data iter_data = {
1786 .mvm = mvm,
de06a59e 1787 .cmd = cmd,
c87163b9
EP		 1788 };
1789
3b8983b1
MS		 1790 if (IWL_MVM_FW_BCAST_FILTER_PASS_ALL)
1791 return false;
1792
de06a59e
EP		 1793 memset(cmd, 0, sizeof(*cmd));
1794 cmd->max_bcast_filters = ARRAY_SIZE(cmd->filters);
1795 cmd->max_macs = ARRAY_SIZE(cmd->macs);
1796
1797#ifdef CONFIG_IWLWIFI_DEBUGFS
1798 /* use debugfs filters/macs if override is configured */
1799 if (mvm->dbgfs_bcast_filtering.override) {
1800 memcpy(cmd->filters, &mvm->dbgfs_bcast_filtering.cmd.filters,
1801 sizeof(cmd->filters));
1802 memcpy(cmd->macs, &mvm->dbgfs_bcast_filtering.cmd.macs,
1803 sizeof(cmd->macs));
1804 return true;
1805 }
1806#endif
c87163b9
EP		 1807
1808 /* if no filters are configured, do nothing */
1809 if (!mvm->bcast_filters)
de06a59e 1810 return false;
c87163b9
EP		 1811
1812 /* configure and attach these filters for each associated sta vif */
1813 ieee80211_iterate_active_interfaces(
1814 mvm->hw, IEEE80211_IFACE_ITER_NORMAL,
1815 iwl_mvm_bcast_filter_iterator, &iter_data);
1816
de06a59e
EP		 1817 return true;
1818}
34672bb3
EP		 1819
1820static int iwl_mvm_configure_bcast_filter(struct iwl_mvm *mvm)
de06a59e
EP		 1821{
1822 struct iwl_bcast_filter_cmd cmd;
1823
1824 if (!(mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_BCAST_FILTERING))
1825 return 0;
1826
1827 if (!iwl_mvm_bcast_filter_build_cmd(mvm, &cmd))
1828 return 0;
1829
a1022927 1830 return iwl_mvm_send_cmd_pdu(mvm, BCAST_FILTER_CMD, 0,
c87163b9
EP		 1831 sizeof(cmd), &cmd);
1832}
1833#else
34672bb3 1834static inline int iwl_mvm_configure_bcast_filter(struct iwl_mvm *mvm)
c87163b9
EP		 1835{
1836 return 0;
1837}
1838#endif
1839
a07a8f37
SS		 1840static int iwl_mvm_update_mu_groups(struct iwl_mvm *mvm,
1841 struct ieee80211_vif *vif)
1842{
1843 struct iwl_mu_group_mgmt_cmd cmd = {};
1844
1845 memcpy(cmd.membership_status, vif->bss_conf.mu_group.membership,
1846 WLAN_MEMBERSHIP_LEN);
1847 memcpy(cmd.user_position, vif->bss_conf.mu_group.position,
1848 WLAN_USER_POSITION_LEN);
1849
1850 return iwl_mvm_send_cmd_pdu(mvm,
1851 WIDE_ID(DATA_PATH_GROUP,
1852 UPDATE_MU_GROUPS_CMD),
1853 0, sizeof(cmd), &cmd);
1854}
1855
f92659a1
SS		 1856static void iwl_mvm_mu_mimo_iface_iterator(void *_data, u8 *mac,
1857 struct ieee80211_vif *vif)
1858{
1859 if (vif->mu_mimo_owner) {
1860 struct iwl_mu_group_mgmt_notif *notif = _data;
1861
1862 /*
1863 * MU-MIMO Group Id action frame is little endian. We treat
1864 * the data received from firmware as if it came from the
1865 * action frame, so no conversion is needed.
1866 */
1867 ieee80211_update_mu_groups(vif,
1868 (u8 *)&notif->membership_status,
1869 (u8 *)&notif->user_position);
1870 }
1871}
1872
1873void iwl_mvm_mu_mimo_grp_notif(struct iwl_mvm *mvm,
1874 struct iwl_rx_cmd_buffer *rxb)
1875{
1876 struct iwl_rx_packet *pkt = rxb_addr(rxb);
1877 struct iwl_mu_group_mgmt_notif *notif = (void *)pkt->data;
1878
1879 ieee80211_iterate_active_interfaces_atomic(
1880 mvm->hw, IEEE80211_IFACE_ITER_NORMAL,
1881 iwl_mvm_mu_mimo_iface_iterator, notif);
1882}
1883
8ca151b5
JB		 1884static void iwl_mvm_bss_info_changed_station(struct iwl_mvm *mvm,
1885 struct ieee80211_vif *vif,
1886 struct ieee80211_bss_conf *bss_conf,
1887 u32 changes)
1888{
1889 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
1890 int ret;
1891
6e97b0d2
IP		 1892 /*
1893 * Re-calculate the tsf id, as the master-slave relations depend on the
1894 * beacon interval, which was not known when the station interface was
1895 * added.
1896 */
1897 if (changes & BSS_CHANGED_ASSOC && bss_conf->assoc)
1898 iwl_mvm_mac_ctxt_recalc_tsf_id(mvm, vif);
1899
3dfd3a97
JB		 1900 /*
1901 * If we're not associated yet, take the (new) BSSID before associating
1902 * so the firmware knows. If we're already associated, then use the old
1903 * BSSID here, and we'll send a cleared one later in the CHANGED_ASSOC
1904 * branch for disassociation below.
1905 */
1906 if (changes & BSS_CHANGED_BSSID && !mvmvif->associated)
1907 memcpy(mvmvif->bssid, bss_conf->bssid, ETH_ALEN);
1908
1909 ret = iwl_mvm_mac_ctxt_changed(mvm, vif, false, mvmvif->bssid);
8ca151b5
JB		 1910 if (ret)
1911 IWL_ERR(mvm, "failed to update MAC %pM\n", vif->addr);
1912
3dfd3a97
JB		 1913 /* after sending it once, adopt mac80211 data */
1914 memcpy(mvmvif->bssid, bss_conf->bssid, ETH_ALEN);
1915 mvmvif->associated = bss_conf->assoc;
1916
8ca151b5
JB		 1917 if (changes & BSS_CHANGED_ASSOC) {
1918 if (bss_conf->assoc) {
33cef925
JB		 1919 /* clear statistics to get clean beacon counter */
1920 iwl_mvm_request_statistics(mvm, true);
1921 memset(&mvmvif->beacon_stats, 0,
1922 sizeof(mvmvif->beacon_stats));
1923
8ca151b5 1924 /* add quota for this interface */
7754ae79 1925 ret = iwl_mvm_update_quotas(mvm, true, NULL);
8ca151b5
JB		 1926 if (ret) {
1927 IWL_ERR(mvm, "failed to update quotas\n");
1928 return;
1929 }
016d27e1
JB		 1930
1931 if (test_bit(IWL_MVM_STATUS_IN_HW_RESTART,
1932 &mvm->status)) {
1933 /*
1934 * If we're restarting then the firmware will
1935 * obviously have lost synchronisation with
1936 * the AP. It will attempt to synchronise by
1937 * itself, but we can make it more reliable by
1938 * scheduling a session protection time event.
1939 *
1940 * The firmware needs to receive a beacon to
1941 * catch up with synchronisation, use 110% of
1942 * the beacon interval.
1943 *
1944 * Set a large maximum delay to allow for more
1945 * than a single interface.
1946 */
1947 u32 dur = (11 * vif->bss_conf.beacon_int) / 10;
1948 iwl_mvm_protect_session(mvm, vif, dur, dur,
d20d37bc 1949 5 * dur, false);
016d27e1 1950 }
1f3b0ff8
LE		 1951
1952 iwl_mvm_sf_update(mvm, vif, false);
175a70b7 1953 iwl_mvm_power_vif_assoc(mvm, vif);
697162a1 1954 if (vif->p2p) {
29a90a49 1955 iwl_mvm_ref(mvm, IWL_MVM_REF_P2P_CLIENT);
697162a1
EG		 1956 iwl_mvm_update_smps(mvm, vif,
1957 IWL_MVM_SMPS_REQ_PROT,
1958 IEEE80211_SMPS_DYNAMIC);
1959 }
0ae98812 1960 } else if (mvmvif->ap_sta_id != IWL_MVM_INVALID_STA) {
1f3b0ff8
LE		 1961 /*
1962 * If update fails - SF might be running in associated
1963 * mode while disassociated - which is forbidden.
1964 */
1965 WARN_ONCE(iwl_mvm_sf_update(mvm, vif, false),
1966 "Failed to update SF upon disassociation\n");
1967
6b28f978
EG		 1968 /*
1969 * If we get an assert during the connection (after the
1970 * station has been added, but before the vif is set
1971 * to associated), mac80211 will re-add the station and
1972 * then configure the vif. Since the vif is not
1973 * associated, we would remove the station here and
1974 * this would fail the recovery.
1975 */
1976 if (!test_bit(IWL_MVM_STATUS_IN_HW_RESTART,
1977 &mvm->status)) {
1978 /*
1979 * Remove AP station now that
1980 * the MAC is unassoc
1981 */
1982 ret = iwl_mvm_rm_sta_id(mvm, vif,
1983 mvmvif->ap_sta_id);
1984 if (ret)
1985 IWL_ERR(mvm,
1986 "failed to remove AP station\n");
1987
1988 if (mvm->d0i3_ap_sta_id == mvmvif->ap_sta_id)
1989 mvm->d0i3_ap_sta_id =
1990 IWL_MVM_INVALID_STA;
1991 mvmvif->ap_sta_id = IWL_MVM_INVALID_STA;
1992 }
37577fe2 1993
8ca151b5 1994 /* remove quota for this interface */
7754ae79 1995 ret = iwl_mvm_update_quotas(mvm, false, NULL);
8ca151b5
JB		 1996 if (ret)
1997 IWL_ERR(mvm, "failed to update quotas\n");
29a90a49
EP		 1998
1999 if (vif->p2p)
2000 iwl_mvm_unref(mvm, IWL_MVM_REF_P2P_CLIENT);
3dfd3a97
JB		 2001
2002 /* this will take the cleared BSSID from bss_conf */
2003 ret = iwl_mvm_mac_ctxt_changed(mvm, vif, false, NULL);
2004 if (ret)
2005 IWL_ERR(mvm,
2006 "failed to update MAC %pM (clear after unassoc)\n",
2007 vif->addr);
8ca151b5 2008 }
a20fd398 2009
a07a8f37
SS		 2010 /*
2011 * The firmware tracks the MU-MIMO group on its own.
f92659a1 2012 * However, on HW restart we should restore this data.
a07a8f37
SS		 2013 */
2014 if (test_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status) &&
f92659a1 2015 (changes & BSS_CHANGED_MU_GROUPS) && vif->mu_mimo_owner) {
a07a8f37
SS		 2016 ret = iwl_mvm_update_mu_groups(mvm, vif);
2017 if (ret)
2018 IWL_ERR(mvm,
2019 "failed to update VHT MU_MIMO groups\n");
2020 }
2021
e59647ea 2022 iwl_mvm_recalc_multicast(mvm);
34672bb3 2023 iwl_mvm_configure_bcast_filter(mvm);
e59647ea 2024
a20fd398
AO		 2025 /* reset rssi values */
2026 mvmvif->bf_data.ave_beacon_signal = 0;
2027
8e484f0b 2028 iwl_mvm_bt_coex_vif_change(mvm);
f94045ed
EG		 2029 iwl_mvm_update_smps(mvm, vif, IWL_MVM_SMPS_REQ_TT,
2030 IEEE80211_SMPS_AUTOMATIC);
355346ba
AS		 2031 if (fw_has_capa(&mvm->fw->ucode_capa,
2032 IWL_UCODE_TLV_CAPA_UMAC_SCAN))
2033 iwl_mvm_config_scan(mvm);
b45242c9
AS		 2034 }
2035
2036 if (changes & BSS_CHANGED_BEACON_INFO) {
210a544e 2037 /*
b45242c9 2038 * We received a beacon from the associated AP so
210a544e
JB		 2039 * remove the session protection.
2040 */
3edfb5f4 2041 iwl_mvm_stop_session_protection(mvm, vif);
cc87d322 2042
cc87d322
EH		 2043 iwl_mvm_sf_update(mvm, vif, false);
2044 WARN_ON(iwl_mvm_enable_beacon_filter(mvm, vif, 0));
2045 }
2046
283115fb
AA		 2047 if (changes & (BSS_CHANGED_PS | BSS_CHANGED_P2P_PS | BSS_CHANGED_QOS |
2048 /*
2049 * Send power command on every beacon change,
2050 * because we may have not enabled beacon abort yet.
2051 */
2052 BSS_CHANGED_BEACON_INFO)) {
1bc10d3b
JB		 2053 ret = iwl_mvm_power_update_mac(mvm);
2054 if (ret)
2055 IWL_ERR(mvm, "failed to update power mode\n");
2056 }
2057
88f2fd73
MG		 2058 if (changes & BSS_CHANGED_TXPOWER) {
2059 IWL_DEBUG_CALIB(mvm, "Changing TX Power to %d\n",
2060 bss_conf->txpower);
2061 iwl_mvm_set_tx_power(mvm, vif, bss_conf->txpower);
2062 }
a20fd398
AO		 2063
2064 if (changes & BSS_CHANGED_CQM) {
3c6acb61 2065 IWL_DEBUG_MAC80211(mvm, "cqm info_changed\n");
a20fd398
AO		 2066 /* reset cqm events tracking */
2067 mvmvif->bf_data.last_cqm_event = 0;
fa7b2e7f
AA		 2068 if (mvmvif->bf_data.bf_enabled) {
2069 ret = iwl_mvm_enable_beacon_filter(mvm, vif, 0);
2070 if (ret)
2071 IWL_ERR(mvm,
2072 "failed to update CQM thresholds\n");
2073 }
a20fd398 2074 }
2ee8f021
EP		 2075
2076 if (changes & BSS_CHANGED_ARP_FILTER) {
3c6acb61 2077 IWL_DEBUG_MAC80211(mvm, "arp filter changed\n");
34672bb3 2078 iwl_mvm_configure_bcast_filter(mvm);
2ee8f021 2079 }
8ca151b5
JB		 2080}
2081
5023d966
JB		 2082static int iwl_mvm_start_ap_ibss(struct ieee80211_hw *hw,
2083 struct ieee80211_vif *vif)
8ca151b5
JB		 2084{
2085 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2086 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
2087 int ret;
2088
576eeee9
EP		 2089 /*
2090 * iwl_mvm_mac_ctxt_add() might read directly from the device
2091 * (the system time), so make sure it is available.
2092 */
2093 ret = iwl_mvm_ref_sync(mvm, IWL_MVM_REF_START_AP);
2094 if (ret)
2095 return ret;
2096
8ca151b5
JB		 2097 mutex_lock(&mvm->mutex);
2098
2099 /* Send the beacon template */
2100 ret = iwl_mvm_mac_ctxt_beacon_changed(mvm, vif);
2101 if (ret)
2102 goto out_unlock;
2103
6e97b0d2
IP		 2104 /*
2105 * Re-calculate the tsf id, as the master-slave relations depend on the
2106 * beacon interval, which was not known when the AP interface was added.
2107 */
2108 if (vif->type == NL80211_IFTYPE_AP)
2109 iwl_mvm_mac_ctxt_recalc_tsf_id(mvm, vif);
2110
94939080
GG		 2111 mvmvif->ap_assoc_sta_count = 0;
2112
8ca151b5
JB		 2113 /* Add the mac context */
2114 ret = iwl_mvm_mac_ctxt_add(mvm, vif);
2115 if (ret)
2116 goto out_unlock;
2117
2118 /* Perform the binding */
2119 ret = iwl_mvm_binding_add_vif(mvm, vif);
2120 if (ret)
2121 goto out_remove;
2122
63dd5d02
SS		 2123 /*
2124 * This is not very nice, but the simplest:
2125 * For older FWs adding the mcast sta before the bcast station may
2126 * cause assert 0x2b00.
2127 * This is fixed in later FW so make the order of removal depend on
2128 * the TLV
2129 */
2130 if (fw_has_api(&mvm->fw->ucode_capa, IWL_UCODE_TLV_API_STA_TYPE)) {
2131 ret = iwl_mvm_add_mcast_sta(mvm, vif);
2132 if (ret)
2133 goto out_unbind;
2134 /*
2135 * Send the bcast station. At this stage the TBTT and DTIM time
2136 * events are added and applied to the scheduler
2137 */
2138 ret = iwl_mvm_send_add_bcast_sta(mvm, vif);
2139 if (ret) {
2140 iwl_mvm_rm_mcast_sta(mvm, vif);
2141 goto out_unbind;
2142 }
2143 } else {
2144 /*
2145 * Send the bcast station. At this stage the TBTT and DTIM time
2146 * events are added and applied to the scheduler
2147 */
75fd4fec 2148 ret = iwl_mvm_send_add_bcast_sta(mvm, vif);
63dd5d02
SS		 2149 if (ret)
2150 goto out_unbind;
75fd4fec 2151 ret = iwl_mvm_add_mcast_sta(mvm, vif);
63dd5d02
SS		 2152 if (ret) {
2153 iwl_mvm_send_rm_bcast_sta(mvm, vif);
2154 goto out_unbind;
2155 }
2156 }
26d6c16b 2157
5691e218
IP		 2158 /* must be set before quota calculations */
2159 mvmvif->ap_ibss_active = true;
2160
a11e144e 2161 /* power updated needs to be done before quotas */
999609f1 2162 iwl_mvm_power_update_mac(mvm);
a11e144e 2163
7754ae79 2164 ret = iwl_mvm_update_quotas(mvm, false, NULL);
8ca151b5 2165 if (ret)
a11e144e 2166 goto out_quota_failed;
8ca151b5 2167
5023d966 2168 /* Need to update the P2P Device MAC (only GO, IBSS is single vif) */
8ca151b5 2169 if (vif->p2p && mvm->p2p_device_vif)
3dfd3a97 2170 iwl_mvm_mac_ctxt_changed(mvm, mvm->p2p_device_vif, false, NULL);
8ca151b5 2171
29a90a49
EP		 2172 iwl_mvm_ref(mvm, IWL_MVM_REF_AP_IBSS);
2173
8e484f0b 2174 iwl_mvm_bt_coex_vif_change(mvm);
dac94da8 2175
f697267f
AN		 2176 /* we don't support TDLS during DCM */
2177 if (iwl_mvm_phy_ctx_count(mvm) > 1)
2178 iwl_mvm_teardown_tdls_peers(mvm);
2179
939e4904 2180 goto out_unlock;
8ca151b5 2181
a11e144e 2182out_quota_failed:
999609f1 2183 iwl_mvm_power_update_mac(mvm);
5691e218 2184 mvmvif->ap_ibss_active = false;
013290aa 2185 iwl_mvm_send_rm_bcast_sta(mvm, vif);
ced19f26 2186 iwl_mvm_rm_mcast_sta(mvm, vif);
8ca151b5
JB		 2187out_unbind:
2188 iwl_mvm_binding_remove_vif(mvm, vif);
2189out_remove:
2190 iwl_mvm_mac_ctxt_remove(mvm, vif);
2191out_unlock:
2192 mutex_unlock(&mvm->mutex);
576eeee9 2193 iwl_mvm_unref(mvm, IWL_MVM_REF_START_AP);
8ca151b5
JB		 2194 return ret;
2195}
2196
5023d966
JB		 2197static void iwl_mvm_stop_ap_ibss(struct ieee80211_hw *hw,
2198 struct ieee80211_vif *vif)
8ca151b5
JB		 2199{
2200 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2201 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
2202
38a12b5b
JB		 2203 iwl_mvm_prepare_mac_removal(mvm, vif);
2204
8ca151b5
JB		 2205 mutex_lock(&mvm->mutex);
2206
664322fa 2207 /* Handle AP stop while in CSA */
7f0a7c67
AO		 2208 if (rcu_access_pointer(mvm->csa_vif) == vif) {
2209 iwl_mvm_remove_time_event(mvm, mvmvif,
2210 &mvmvif->time_event_data);
664322fa 2211 RCU_INIT_POINTER(mvm->csa_vif, NULL);
e9cb0327 2212 mvmvif->csa_countdown = false;
7f0a7c67 2213 }
664322fa 2214
003e5236
AO		 2215 if (rcu_access_pointer(mvm->csa_tx_blocked_vif) == vif) {
2216 RCU_INIT_POINTER(mvm->csa_tx_blocked_vif, NULL);
2217 mvm->csa_tx_block_bcn_timeout = 0;
2218 }
2219
5023d966 2220 mvmvif->ap_ibss_active = false;
1c87bbad 2221 mvm->ap_last_beacon_gp2 = 0;
8ca151b5 2222
8e484f0b 2223 iwl_mvm_bt_coex_vif_change(mvm);
dac94da8 2224
29a90a49
EP		 2225 iwl_mvm_unref(mvm, IWL_MVM_REF_AP_IBSS);
2226
5023d966 2227 /* Need to update the P2P Device MAC (only GO, IBSS is single vif) */
8ca151b5 2228 if (vif->p2p && mvm->p2p_device_vif)
3dfd3a97 2229 iwl_mvm_mac_ctxt_changed(mvm, mvm->p2p_device_vif, false, NULL);
8ca151b5 2230
7754ae79 2231 iwl_mvm_update_quotas(mvm, false, NULL);
ced19f26
SS		 2232
2233 /*
2234 * This is not very nice, but the simplest:
2235 * For older FWs removing the mcast sta before the bcast station may
2236 * cause assert 0x2b00.
2237 * This is fixed in later FW (which will stop beaconing when removing
2238 * bcast station).
2239 * So make the order of removal depend on the TLV
2240 */
2241 if (!fw_has_api(&mvm->fw->ucode_capa, IWL_UCODE_TLV_API_STA_TYPE))
2242 iwl_mvm_rm_mcast_sta(mvm, vif);
013290aa 2243 iwl_mvm_send_rm_bcast_sta(mvm, vif);
ced19f26
SS		 2244 if (fw_has_api(&mvm->fw->ucode_capa, IWL_UCODE_TLV_API_STA_TYPE))
2245 iwl_mvm_rm_mcast_sta(mvm, vif);
8ca151b5 2246 iwl_mvm_binding_remove_vif(mvm, vif);
a11e144e 2247
999609f1 2248 iwl_mvm_power_update_mac(mvm);
a11e144e 2249
8ca151b5
JB		 2250 iwl_mvm_mac_ctxt_remove(mvm, vif);
2251
2252 mutex_unlock(&mvm->mutex);
2253}
2254
5023d966
JB		 2255static void
2256iwl_mvm_bss_info_changed_ap_ibss(struct iwl_mvm *mvm,
2257 struct ieee80211_vif *vif,
2258 struct ieee80211_bss_conf *bss_conf,
2259 u32 changes)
8ca151b5 2260{
be2056fc 2261 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
8a5e3660 2262
be2056fc
IP		 2263 /* Changes will be applied when the AP/IBSS is started */
2264 if (!mvmvif->ap_ibss_active)
2265 return;
2266
863230da 2267 if (changes & (BSS_CHANGED_ERP_CTS_PROT | BSS_CHANGED_HT |
f7d8b702 2268 BSS_CHANGED_BANDWIDTH | BSS_CHANGED_QOS) &&
3dfd3a97 2269 iwl_mvm_mac_ctxt_changed(mvm, vif, false, NULL))
863230da 2270 IWL_ERR(mvm, "failed to update MAC %pM\n", vif->addr);
8a5e3660 2271
8ca151b5 2272 /* Need to send a new beacon template to the FW */
863230da
JB		 2273 if (changes & BSS_CHANGED_BEACON &&
2274 iwl_mvm_mac_ctxt_beacon_changed(mvm, vif))
2275 IWL_WARN(mvm, "Failed updating beacon data\n");
79b7a69d
HD		 2276
2277 if (changes & BSS_CHANGED_TXPOWER) {
2278 IWL_DEBUG_CALIB(mvm, "Changing TX Power to %d\n",
2279 bss_conf->txpower);
2280 iwl_mvm_set_tx_power(mvm, vif, bss_conf->txpower);
2281 }
8ca151b5
JB		 2282}
2283
2284static void iwl_mvm_bss_info_changed(struct ieee80211_hw *hw,
2285 struct ieee80211_vif *vif,
2286 struct ieee80211_bss_conf *bss_conf,
2287 u32 changes)
2288{
2289 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2290
576eeee9
EP		 2291 /*
2292 * iwl_mvm_bss_info_changed_station() might call
2293 * iwl_mvm_protect_session(), which reads directly from
2294 * the device (the system time), so make sure it is available.
2295 */
2296 if (iwl_mvm_ref_sync(mvm, IWL_MVM_REF_BSS_CHANGED))
2297 return;
2298
8ca151b5
JB		 2299 mutex_lock(&mvm->mutex);
2300
723f02ed 2301 if (changes & BSS_CHANGED_IDLE && !bss_conf->idle)
c7d42480 2302 iwl_mvm_scan_stop(mvm, IWL_MVM_SCAN_SCHED, true);
723f02ed 2303
8ca151b5
JB		 2304 switch (vif->type) {
2305 case NL80211_IFTYPE_STATION:
2306 iwl_mvm_bss_info_changed_station(mvm, vif, bss_conf, changes);
2307 break;
2308 case NL80211_IFTYPE_AP:
5023d966
JB		 2309 case NL80211_IFTYPE_ADHOC:
2310 iwl_mvm_bss_info_changed_ap_ibss(mvm, vif, bss_conf, changes);
8ca151b5 2311 break;
91b08c2d
AE		 2312 case NL80211_IFTYPE_MONITOR:
2313 if (changes & BSS_CHANGED_MU_GROUPS)
2314 iwl_mvm_update_mu_groups(mvm, vif);
2315 break;
8ca151b5
JB		 2316 default:
2317 /* shouldn't happen */
2318 WARN_ON_ONCE(1);
2319 }
2320
2321 mutex_unlock(&mvm->mutex);
576eeee9 2322 iwl_mvm_unref(mvm, IWL_MVM_REF_BSS_CHANGED);
8ca151b5
JB		 2323}
2324
2325static int iwl_mvm_mac_hw_scan(struct ieee80211_hw *hw,
2326 struct ieee80211_vif *vif,
c56ef672 2327 struct ieee80211_scan_request *hw_req)
8ca151b5
JB		 2328{
2329 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2330 int ret;
2331
6749dd80
LC		 2332 if (hw_req->req.n_channels == 0 ||
2333 hw_req->req.n_channels > mvm->fw->ucode_capa.n_scan_channels)
8ca151b5
JB		 2334 return -EINVAL;
2335
2336 mutex_lock(&mvm->mutex);
6749dd80 2337 ret = iwl_mvm_reg_scan_start(mvm, vif, &hw_req->req, &hw_req->ies);
8ca151b5 2338 mutex_unlock(&mvm->mutex);
6749dd80 2339
8ca151b5
JB		 2340 return ret;
2341}
2342
2343static void iwl_mvm_mac_cancel_hw_scan(struct ieee80211_hw *hw,
2344 struct ieee80211_vif *vif)
2345{
2346 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2347
2348 mutex_lock(&mvm->mutex);
2349
e7d3abab
LC		 2350 /* Due to a race condition, it's possible that mac80211 asks
2351 * us to stop a hw_scan when it's already stopped. This can
2352 * happen, for instance, if we stopped the scan ourselves,
2353 * called ieee80211_scan_completed() and the userspace called
2354 * cancel scan scan before ieee80211_scan_work() could run.
2355 * To handle that, simply return if the scan is not running.
2356 */
262888fc 2357 if (mvm->scan_status & IWL_MVM_SCAN_REGULAR)
c7d42480 2358 iwl_mvm_scan_stop(mvm, IWL_MVM_SCAN_REGULAR, true);
8ca151b5
JB		 2359
2360 mutex_unlock(&mvm->mutex);
2361}
2362
2363static void
2364iwl_mvm_mac_allow_buffered_frames(struct ieee80211_hw *hw,
3e56eadf 2365 struct ieee80211_sta *sta, u16 tids,
8ca151b5
JB		 2366 int num_frames,
2367 enum ieee80211_frame_release_type reason,
2368 bool more_data)
2369{
2370 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
8ca151b5 2371
3e56eadf 2372 /* Called when we need to transmit (a) frame(s) from mac80211 */
8ca151b5 2373
3e56eadf
JB		 2374 iwl_mvm_sta_modify_sleep_tx_count(mvm, sta, reason, num_frames,
2375 tids, more_data, false);
2376}
2377
2378static void
2379iwl_mvm_mac_release_buffered_frames(struct ieee80211_hw *hw,
2380 struct ieee80211_sta *sta, u16 tids,
2381 int num_frames,
2382 enum ieee80211_frame_release_type reason,
2383 bool more_data)
2384{
2385 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2386
9a3fcf91 2387 /* Called when we need to transmit (a) frame(s) from agg or dqa queue */
3e56eadf
JB		 2388
2389 iwl_mvm_sta_modify_sleep_tx_count(mvm, sta, reason, num_frames,
2390 tids, more_data, true);
8ca151b5
JB		 2391}
2392
65e25482
JB		 2393static void __iwl_mvm_mac_sta_notify(struct ieee80211_hw *hw,
2394 enum sta_notify_cmd cmd,
2395 struct ieee80211_sta *sta)
8ca151b5
JB		 2396{
2397 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
5b577a90 2398 struct iwl_mvm_sta *mvmsta = iwl_mvm_sta_from_mac80211(sta);
c22b0ff5 2399 unsigned long txqs = 0, tids = 0;
3e56eadf 2400 int tid;
8ca151b5 2401
960f864b
JB		 2402 /*
2403 * If we have TVQM then we get too high queue numbers - luckily
2404 * we really shouldn't get here with that because such hardware
2405 * should have firmware supporting buffer station offload.
2406 */
2407 if (WARN_ON(iwl_mvm_has_new_tx_api(mvm)))
2408 return;
2409
c22b0ff5
EG		 2410 spin_lock_bh(&mvmsta->lock);
2411 for (tid = 0; tid < IWL_MAX_TID_COUNT; tid++) {
2412 struct iwl_mvm_tid_data *tid_data = &mvmsta->tid_data[tid];
2413
6862fcee 2414 if (tid_data->txq_id == IWL_MVM_INVALID_QUEUE)
1c17627b
SS		 2415 continue;
2416
c22b0ff5
EG		 2417 __set_bit(tid_data->txq_id, &txqs);
2418
dd32162d 2419 if (iwl_mvm_tid_queued(mvm, tid_data) == 0)
c22b0ff5
EG		 2420 continue;
2421
2422 __set_bit(tid, &tids);
2423 }
2424
8ca151b5
JB		 2425 switch (cmd) {
2426 case STA_NOTIFY_SLEEP:
c22b0ff5 2427 for_each_set_bit(tid, &tids, IWL_MAX_TID_COUNT)
3e56eadf 2428 ieee80211_sta_set_buffered(sta, tid, true);
c22b0ff5
EG		 2429
2430 if (txqs)
2431 iwl_trans_freeze_txq_timer(mvm->trans, txqs, true);
8ca151b5
JB		 2432 /*
2433 * The fw updates the STA to be asleep. Tx packets on the Tx
2434 * queues to this station will not be transmitted. The fw will
2435 * send a Tx response with TX_STATUS_FAIL_DEST_PS.
2436 */
2437 break;
2438 case STA_NOTIFY_AWAKE:
0ae98812 2439 if (WARN_ON(mvmsta->sta_id == IWL_MVM_INVALID_STA))
8ca151b5 2440 break;
c22b0ff5
EG		 2441
2442 if (txqs)
2443 iwl_trans_freeze_txq_timer(mvm->trans, txqs, false);
9cc40712 2444 iwl_mvm_sta_modify_ps_wake(mvm, sta);
8ca151b5
JB		 2445 break;
2446 default:
2447 break;
2448 }
c22b0ff5 2449 spin_unlock_bh(&mvmsta->lock);
8ca151b5
JB		 2450}
2451
65e25482
JB		 2452static void iwl_mvm_mac_sta_notify(struct ieee80211_hw *hw,
2453 struct ieee80211_vif *vif,
2454 enum sta_notify_cmd cmd,
2455 struct ieee80211_sta *sta)
2456{
2457 __iwl_mvm_mac_sta_notify(hw, cmd, sta);
2458}
2459
2460void iwl_mvm_sta_pm_notif(struct iwl_mvm *mvm, struct iwl_rx_cmd_buffer *rxb)
2461{
2462 struct iwl_rx_packet *pkt = rxb_addr(rxb);
2463 struct iwl_mvm_pm_state_notification *notif = (void *)pkt->data;
2464 struct ieee80211_sta *sta;
2465 struct iwl_mvm_sta *mvmsta;
2466 bool sleeping = (notif->type != IWL_MVM_PM_EVENT_AWAKE);
2467
2468 if (WARN_ON(notif->sta_id >= ARRAY_SIZE(mvm->fw_id_to_mac_id)))
2469 return;
2470
2471 rcu_read_lock();
a9560029 2472 sta = rcu_dereference(mvm->fw_id_to_mac_id[notif->sta_id]);
65e25482
JB		 2473 if (WARN_ON(IS_ERR_OR_NULL(sta))) {
2474 rcu_read_unlock();
2475 return;
2476 }
2477
2478 mvmsta = iwl_mvm_sta_from_mac80211(sta);
2479
2480 if (!mvmsta->vif ||
2481 mvmsta->vif->type != NL80211_IFTYPE_AP) {
2482 rcu_read_unlock();
2483 return;
2484 }
2485
2486 if (mvmsta->sleeping != sleeping) {
2487 mvmsta->sleeping = sleeping;
2488 __iwl_mvm_mac_sta_notify(mvm->hw,
2489 sleeping ? STA_NOTIFY_SLEEP : STA_NOTIFY_AWAKE,
2490 sta);
2491 ieee80211_sta_ps_transition(sta, sleeping);
2492 }
2493
2494 if (sleeping) {
2495 switch (notif->type) {
2496 case IWL_MVM_PM_EVENT_AWAKE:
2497 case IWL_MVM_PM_EVENT_ASLEEP:
2498 break;
2499 case IWL_MVM_PM_EVENT_UAPSD:
2500 ieee80211_sta_uapsd_trigger(sta, IEEE80211_NUM_TIDS);
2501 break;
2502 case IWL_MVM_PM_EVENT_PS_POLL:
2503 ieee80211_sta_pspoll(sta);
2504 break;
2505 default:
2506 break;
2507 }
2508 }
2509
2510 rcu_read_unlock();
2511}
2512
1ddbbb0c
JB		 2513static void iwl_mvm_sta_pre_rcu_remove(struct ieee80211_hw *hw,
2514 struct ieee80211_vif *vif,
2515 struct ieee80211_sta *sta)
2516{
2517 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
9d8ce6af 2518 struct iwl_mvm_sta *mvm_sta = iwl_mvm_sta_from_mac80211(sta);
1ddbbb0c
JB		 2519
2520 /*
2521 * This is called before mac80211 does RCU synchronisation,
2522 * so here we already invalidate our internal RCU-protected
2523 * station pointer. The rest of the code will thus no longer
2524 * be able to find the station this way, and we don't rely
2525 * on further RCU synchronisation after the sta_state()
2526 * callback deleted the station.
2527 */
2528 mutex_lock(&mvm->mutex);
2529 if (sta == rcu_access_pointer(mvm->fw_id_to_mac_id[mvm_sta->sta_id]))
2530 rcu_assign_pointer(mvm->fw_id_to_mac_id[mvm_sta->sta_id],
2531 ERR_PTR(-ENOENT));
94939080 2532
1ddbbb0c
JB		 2533 mutex_unlock(&mvm->mutex);
2534}
2535
bd1ba664
JB		 2536static void iwl_mvm_check_uapsd(struct iwl_mvm *mvm, struct ieee80211_vif *vif,
2537 const u8 *bssid)
2538{
2539 if (!(mvm->fw->ucode_capa.flags & IWL_UCODE_TLV_FLAGS_UAPSD_SUPPORT))
2540 return;
2541
c5241b0c 2542 if (vif->p2p && !iwl_mvm_is_p2p_scm_uapsd_supported(mvm)) {
cee5a882
AA		 2543 vif->driver_flags &= ~IEEE80211_VIF_SUPPORTS_UAPSD;
2544 return;
2545 }
2546
11dee0b4
EG		 2547 if (!vif->p2p &&
2548 (iwlwifi_mod_params.uapsd_disable & IWL_DISABLE_UAPSD_BSS)) {
bd1ba664
JB		 2549 vif->driver_flags &= ~IEEE80211_VIF_SUPPORTS_UAPSD;
2550 return;
2551 }
2552
2553 vif->driver_flags |= IEEE80211_VIF_SUPPORTS_UAPSD;
2554}
2555
1e8f1329
GBA		 2556static void
2557iwl_mvm_tdls_check_trigger(struct iwl_mvm *mvm,
2558 struct ieee80211_vif *vif, u8 *peer_addr,
2559 enum nl80211_tdls_operation action)
2560{
2561 struct iwl_fw_dbg_trigger_tlv *trig;
2562 struct iwl_fw_dbg_trigger_tdls *tdls_trig;
2563
2564 if (!iwl_fw_dbg_trigger_enabled(mvm->fw, FW_DBG_TRIGGER_TDLS))
2565 return;
2566
2567 trig = iwl_fw_dbg_get_trigger(mvm->fw, FW_DBG_TRIGGER_TDLS);
2568 tdls_trig = (void *)trig->data;
7174beb6
JB		 2569 if (!iwl_fw_dbg_trigger_check_stop(&mvm->fwrt,
2570 ieee80211_vif_to_wdev(vif), trig))
1e8f1329
GBA		 2571 return;
2572
2573 if (!(tdls_trig->action_bitmap & BIT(action)))
2574 return;
2575
2576 if (tdls_trig->peer_mode &&
2577 memcmp(tdls_trig->peer, peer_addr, ETH_ALEN) != 0)
2578 return;
2579
7174beb6
JB		 2580 iwl_fw_dbg_collect_trig(&mvm->fwrt, trig,
2581 "TDLS event occurred, peer %pM, action %d",
2582 peer_addr, action);
1e8f1329
GBA		 2583}
2584
24afba76
LK		 2585static void iwl_mvm_purge_deferred_tx_frames(struct iwl_mvm *mvm,
2586 struct iwl_mvm_sta *mvm_sta)
2587{
2588 struct iwl_mvm_tid_data *tid_data;
2589 struct sk_buff *skb;
2590 int i;
2591
2592 spin_lock_bh(&mvm_sta->lock);
2593 for (i = 0; i <= IWL_MAX_TID_COUNT; i++) {
2594 tid_data = &mvm_sta->tid_data[i];
7e39a00d
AS		 2595
2596 while ((skb = __skb_dequeue(&tid_data->deferred_tx_frames))) {
2597 struct ieee80211_tx_info *info = IEEE80211_SKB_CB(skb);
2598
2599 /*
2600 * The first deferred frame should've stopped the MAC
2601 * queues, so we should never get a second deferred
2602 * frame for the RA/TID.
2603 */
8458e48a 2604 iwl_mvm_start_mac_queues(mvm, BIT(info->hw_queue));
24afba76 2605 ieee80211_free_txskb(mvm->hw, skb);
7e39a00d 2606 }
24afba76
LK		 2607 }
2608 spin_unlock_bh(&mvm_sta->lock);
2609}
2610
8ca151b5
JB		 2611static int iwl_mvm_mac_sta_state(struct ieee80211_hw *hw,
2612 struct ieee80211_vif *vif,
2613 struct ieee80211_sta *sta,
2614 enum ieee80211_sta_state old_state,
2615 enum ieee80211_sta_state new_state)
2616{
2617 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2618 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
6ea29ce5 2619 struct iwl_mvm_sta *mvm_sta = iwl_mvm_sta_from_mac80211(sta);
8ca151b5
JB		 2620 int ret;
2621
2622 IWL_DEBUG_MAC80211(mvm, "station %pM state change %d->%d\n",
2623 sta->addr, old_state, new_state);
2624
2625 /* this would be a mac80211 bug ... but don't crash */
2626 if (WARN_ON_ONCE(!mvmvif->phy_ctxt))
2627 return -EINVAL;
2628
24afba76
LK		 2629 /*
2630 * If we are in a STA removal flow and in DQA mode:
2631 *
2632 * This is after the sync_rcu part, so the queues have already been
2633 * flushed. No more TXs on their way in mac80211's path, and no more in
2634 * the queues.
2635 * Also, we won't be getting any new TX frames for this station.
2636 * What we might have are deferred TX frames that need to be taken care
2637 * of.
2638 *
2639 * Drop any still-queued deferred-frame before removing the STA, and
2640 * make sure the worker is no longer handling frames for this STA.
2641 */
2642 if (old_state == IEEE80211_STA_NONE &&
c8f54701 2643 new_state == IEEE80211_STA_NOTEXIST) {
24afba76
LK		 2644 iwl_mvm_purge_deferred_tx_frames(mvm, mvm_sta);
2645 flush_work(&mvm->add_stream_wk);
2646
2647 /*
2648 * No need to make sure deferred TX indication is off since the
2649 * worker will already remove it if it was on
2650 */
2651 }
2652
8ca151b5 2653 mutex_lock(&mvm->mutex);
6ea29ce5
JB		 2654 /* track whether or not the station is associated */
2655 mvm_sta->associated = new_state >= IEEE80211_STA_ASSOC;
2656
8ca151b5
JB		 2657 if (old_state == IEEE80211_STA_NOTEXIST &&
2658 new_state == IEEE80211_STA_NONE) {
48bc1307
JB		 2659 /*
2660 * Firmware bug - it'll crash if the beacon interval is less
2661 * than 16. We can't avoid connecting at all, so refuse the
2662 * station state change, this will cause mac80211 to abandon
2663 * attempts to connect to this AP, and eventually wpa_s will
2664 * blacklist the AP...
2665 */
2666 if (vif->type == NL80211_IFTYPE_STATION &&
2667 vif->bss_conf.beacon_int < 16) {
2668 IWL_ERR(mvm,
2669 "AP %pM beacon interval is %d, refusing due to firmware bug!\n",
2670 sta->addr, vif->bss_conf.beacon_int);
2671 ret = -EINVAL;
2672 goto out_unlock;
2673 }
cf7b491d
AN		 2674
2675 if (sta->tdls &&
2676 (vif->p2p ||
fa3d07e4
AN		 2677 iwl_mvm_tdls_sta_count(mvm, NULL) ==
2678 IWL_MVM_TDLS_STA_COUNT ||
cf7b491d
AN		 2679 iwl_mvm_phy_ctx_count(mvm) > 1)) {
2680 IWL_DEBUG_MAC80211(mvm, "refusing TDLS sta\n");
2681 ret = -EBUSY;
2682 goto out_unlock;
2683 }
2684
8ca151b5 2685 ret = iwl_mvm_add_sta(mvm, vif, sta);
1e8f1329 2686 if (sta->tdls && ret == 0) {
fa3d07e4 2687 iwl_mvm_recalc_tdls_state(mvm, vif, true);
1e8f1329
GBA		 2688 iwl_mvm_tdls_check_trigger(mvm, vif, sta->addr,
2689 NL80211_TDLS_SETUP);
2690 }
8ca151b5
JB		 2691 } else if (old_state == IEEE80211_STA_NONE &&
2692 new_state == IEEE80211_STA_AUTH) {
e820c2da
HD		 2693 /*
2694 * EBS may be disabled due to previous failures reported by FW.
2695 * Reset EBS status here assuming environment has been changed.
2696 */
2697 mvm->last_ebs_successful = true;
bd1ba664 2698 iwl_mvm_check_uapsd(mvm, vif, sta->addr);
8ca151b5
JB		 2699 ret = 0;
2700 } else if (old_state == IEEE80211_STA_AUTH &&
2701 new_state == IEEE80211_STA_ASSOC) {
8be30c13
AB		 2702 if (vif->type == NL80211_IFTYPE_AP) {
2703 mvmvif->ap_assoc_sta_count++;
2704 iwl_mvm_mac_ctxt_changed(mvm, vif, false, NULL);
2705 }
735a0045
GM		 2706
2707 iwl_mvm_rs_rate_init(mvm, sta, mvmvif->phy_ctxt->channel->band,
2708 true);
7a453973 2709 ret = iwl_mvm_update_sta(mvm, vif, sta);
8ca151b5
JB		 2710 } else if (old_state == IEEE80211_STA_ASSOC &&
2711 new_state == IEEE80211_STA_AUTHORIZED) {
f59e0e3c
AN		 2712
2713 /* we don't support TDLS during DCM */
2714 if (iwl_mvm_phy_ctx_count(mvm) > 1)
2715 iwl_mvm_teardown_tdls_peers(mvm);
2716
1e8f1329
GBA		 2717 if (sta->tdls)
2718 iwl_mvm_tdls_check_trigger(mvm, vif, sta->addr,
2719 NL80211_TDLS_ENABLE_LINK);
2720
7df15b1e 2721 /* enable beacon filtering */
fa7b2e7f 2722 WARN_ON(iwl_mvm_enable_beacon_filter(mvm, vif, 0));
6b7a5aea
NG		 2723
2724 iwl_mvm_rs_rate_init(mvm, sta, mvmvif->phy_ctxt->channel->band,
2725 false);
2726
8ca151b5
JB		 2727 ret = 0;
2728 } else if (old_state == IEEE80211_STA_AUTHORIZED &&
2729 new_state == IEEE80211_STA_ASSOC) {
7df15b1e 2730 /* disable beacon filtering */
a1022927 2731 WARN_ON(iwl_mvm_disable_beacon_filter(mvm, vif, 0));
8ca151b5
JB		 2732 ret = 0;
2733 } else if (old_state == IEEE80211_STA_ASSOC &&
2734 new_state == IEEE80211_STA_AUTH) {
8be30c13
AB		 2735 if (vif->type == NL80211_IFTYPE_AP) {
2736 mvmvif->ap_assoc_sta_count--;
2737 iwl_mvm_mac_ctxt_changed(mvm, vif, false, NULL);
2738 }
8ca151b5
JB		 2739 ret = 0;
2740 } else if (old_state == IEEE80211_STA_AUTH &&
2741 new_state == IEEE80211_STA_NONE) {
2742 ret = 0;
2743 } else if (old_state == IEEE80211_STA_NONE &&
2744 new_state == IEEE80211_STA_NOTEXIST) {
2745 ret = iwl_mvm_rm_sta(mvm, vif, sta);
1e8f1329 2746 if (sta->tdls) {
fa3d07e4 2747 iwl_mvm_recalc_tdls_state(mvm, vif, false);
1e8f1329
GBA		 2748 iwl_mvm_tdls_check_trigger(mvm, vif, sta->addr,
2749 NL80211_TDLS_DISABLE_LINK);
2750 }
8ca151b5
JB		 2751 } else {
2752 ret = -EIO;
2753 }
48bc1307 2754 out_unlock:
8ca151b5
JB		 2755 mutex_unlock(&mvm->mutex);
2756
9c126cd6
LK		 2757 if (sta->tdls && ret == 0) {
2758 if (old_state == IEEE80211_STA_NOTEXIST &&
2759 new_state == IEEE80211_STA_NONE)
2760 ieee80211_reserve_tid(sta, IWL_MVM_TDLS_FW_TID);
2761 else if (old_state == IEEE80211_STA_NONE &&
2762 new_state == IEEE80211_STA_NOTEXIST)
2763 ieee80211_unreserve_tid(sta, IWL_MVM_TDLS_FW_TID);
2764 }
2765
8ca151b5
JB		 2766 return ret;
2767}
2768
2769static int iwl_mvm_mac_set_rts_threshold(struct ieee80211_hw *hw, u32 value)
2770{
2771 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2772
2773 mvm->rts_threshold = value;
2774
2775 return 0;
2776}
2777
1f3b0ff8
LE		 2778static void iwl_mvm_sta_rc_update(struct ieee80211_hw *hw,
2779 struct ieee80211_vif *vif,
2780 struct ieee80211_sta *sta, u32 changed)
2781{
2782 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2783
2784 if (vif->type == NL80211_IFTYPE_STATION &&
2785 changed & IEEE80211_RC_NSS_CHANGED)
2786 iwl_mvm_sf_update(mvm, vif, false);
2787}
2788
8ca151b5
JB		 2789static int iwl_mvm_mac_conf_tx(struct ieee80211_hw *hw,
2790 struct ieee80211_vif *vif, u16 ac,
2791 const struct ieee80211_tx_queue_params *params)
2792{
2793 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
2794 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
2795
2796 mvmvif->queue_params[ac] = *params;
2797
2798 /*
2799 * No need to update right away, we'll get BSS_CHANGED_QOS
2800 * The exception is P2P_DEVICE interface which needs immediate update.
2801 */
2802 if (vif->type == NL80211_IFTYPE_P2P_DEVICE) {
2803 int ret;
2804
2805 mutex_lock(&mvm->mutex);
3dfd3a97 2806 ret = iwl_mvm_mac_ctxt_changed(mvm, vif, false, NULL);
8ca151b5
JB		 2807 mutex_unlock(&mvm->mutex);
2808 return ret;
2809 }
2810 return 0;
2811}
2812
2813static void iwl_mvm_mac_mgd_prepare_tx(struct ieee80211_hw *hw,
2814 struct ieee80211_vif *vif)
2815{
2816 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
7c70fee5
SS		 2817 u32 duration = IWL_MVM_TE_SESSION_PROTECTION_MAX_TIME_MS;
2818 u32 min_duration = IWL_MVM_TE_SESSION_PROTECTION_MIN_TIME_MS;
8ca151b5 2819
576eeee9
EP		 2820 /*
2821 * iwl_mvm_protect_session() reads directly from the device
2822 * (the system time), so make sure it is available.
2823 */
2824 if (iwl_mvm_ref_sync(mvm, IWL_MVM_REF_PREPARE_TX))
2825 return;
2826
8ca151b5
JB		 2827 mutex_lock(&mvm->mutex);
2828 /* Try really hard to protect the session and hear a beacon */
d20d37bc 2829 iwl_mvm_protect_session(mvm, vif, duration, min_duration, 500, false);
8ca151b5 2830 mutex_unlock(&mvm->mutex);
576eeee9
EP		 2831
2832 iwl_mvm_unref(mvm, IWL_MVM_REF_PREPARE_TX);
8ca151b5
JB		 2833}
2834
35a000b7
DS		 2835static int iwl_mvm_mac_sched_scan_start(struct ieee80211_hw *hw,
2836 struct ieee80211_vif *vif,
2837 struct cfg80211_sched_scan_request *req,
633e2713 2838 struct ieee80211_scan_ies *ies)
35a000b7
DS		 2839{
2840 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
35a000b7 2841
35a000b7 2842 int ret;
4660dfbb 2843
35a000b7
DS		 2844 mutex_lock(&mvm->mutex);
2845
1f940386 2846 if (!vif->bss_conf.idle) {
bd5e4744
DS		 2847 ret = -EBUSY;
2848 goto out;
2849 }
2850
19945dfb 2851 ret = iwl_mvm_sched_scan_start(mvm, vif, req, ies, IWL_MVM_SCAN_SCHED);
d2496221 2852
35a000b7
DS		 2853out:
2854 mutex_unlock(&mvm->mutex);
2855 return ret;
2856}
2857
37e3308c
JB		 2858static int iwl_mvm_mac_sched_scan_stop(struct ieee80211_hw *hw,
2859 struct ieee80211_vif *vif)
35a000b7
DS		 2860{
2861 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
33ea27f6 2862 int ret;
35a000b7
DS		 2863
2864 mutex_lock(&mvm->mutex);
e7d3abab
LC		 2865
2866 /* Due to a race condition, it's possible that mac80211 asks
2867 * us to stop a sched_scan when it's already stopped. This
2868 * can happen, for instance, if we stopped the scan ourselves,
2869 * called ieee80211_sched_scan_stopped() and the userspace called
2870 * stop sched scan scan before ieee80211_sched_scan_stopped_work()
2871 * could run. To handle this, simply return if the scan is
2872 * not running.
2873 */
262888fc 2874 if (!(mvm->scan_status & IWL_MVM_SCAN_SCHED)) {
e7d3abab
LC		 2875 mutex_unlock(&mvm->mutex);
2876 return 0;
2877 }
2878
c7d42480 2879 ret = iwl_mvm_scan_stop(mvm, IWL_MVM_SCAN_SCHED, false);
35a000b7 2880 mutex_unlock(&mvm->mutex);
33ea27f6 2881 iwl_mvm_wait_for_async_handlers(mvm);
37e3308c 2882
33ea27f6 2883 return ret;
35a000b7
DS		 2884}
2885
8ca151b5
JB		 2886static int iwl_mvm_mac_set_key(struct ieee80211_hw *hw,
2887 enum set_key_cmd cmd,
2888 struct ieee80211_vif *vif,
2889 struct ieee80211_sta *sta,
2890 struct ieee80211_key_conf *key)
2891{
2892 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
f5e28eac
JB		 2893 struct iwl_mvm_sta *mvmsta;
2894 struct iwl_mvm_key_pn *ptk_pn;
2895 int keyidx = key->keyidx;
8ca151b5 2896 int ret;
d6ee54a9 2897 u8 key_offset;
8ca151b5 2898
3b37f4c9 2899 if (iwlwifi_mod_params.swcrypto) {
8ca151b5
JB		 2900 IWL_DEBUG_MAC80211(mvm, "leave - hwcrypto disabled\n");
2901 return -EOPNOTSUPP;
2902 }
2903
2904 switch (key->cipher) {
2905 case WLAN_CIPHER_SUITE_TKIP:
2906 key->flags |= IEEE80211_KEY_FLAG_GENERATE_MMIC;
1ad4f639 2907 key->flags |= IEEE80211_KEY_FLAG_PUT_IV_SPACE;
8ca151b5 2908 break;
ca8c0f4b 2909 case WLAN_CIPHER_SUITE_CCMP:
2a53d166
AB		 2910 case WLAN_CIPHER_SUITE_GCMP:
2911 case WLAN_CIPHER_SUITE_GCMP_256:
85aeb58c
DS		 2912 if (!iwl_mvm_has_new_tx_api(mvm))
2913 key->flags |= IEEE80211_KEY_FLAG_PUT_IV_SPACE;
ca8c0f4b 2914 break;
8ca151b5 2915 case WLAN_CIPHER_SUITE_AES_CMAC:
8e160ab8
AB		 2916 case WLAN_CIPHER_SUITE_BIP_GMAC_128:
2917 case WLAN_CIPHER_SUITE_BIP_GMAC_256:
30686bf7 2918 WARN_ON_ONCE(!ieee80211_hw_check(hw, MFP_CAPABLE));
8ca151b5
JB		 2919 break;
2920 case WLAN_CIPHER_SUITE_WEP40:
2921 case WLAN_CIPHER_SUITE_WEP104:
ba3943b0
JB		 2922 /* For non-client mode, only use WEP keys for TX as we probably
2923 * don't have a station yet anyway and would then have to keep
2924 * track of the keys, linking them to each of the clients/peers
2925 * as they appear. For now, don't do that, for performance WEP
2926 * offload doesn't really matter much, but we need it for some
2927 * other offload features in client mode.
8ca151b5 2928 */
ba3943b0
JB		 2929 if (vif->type != NL80211_IFTYPE_STATION)
2930 return 0;
2931 break;
8ca151b5 2932 default:
e36e5433
MS		 2933 /* currently FW supports only one optional cipher scheme */
2934 if (hw->n_cipher_schemes &&
2935 hw->cipher_schemes->cipher == key->cipher)
2936 key->flags |= IEEE80211_KEY_FLAG_PUT_IV_SPACE;
2937 else
2938 return -EOPNOTSUPP;
8ca151b5
JB		 2939 }
2940
2941 mutex_lock(&mvm->mutex);
2942
2943 switch (cmd) {
2944 case SET_KEY:
5023d966
JB		 2945 if ((vif->type == NL80211_IFTYPE_ADHOC ||
2946 vif->type == NL80211_IFTYPE_AP) && !sta) {
2947 /*
2948 * GTK on AP interface is a TX-only key, return 0;
2949 * on IBSS they're per-station and because we're lazy
2950 * we don't support them for RX, so do the same.
8e160ab8 2951 * CMAC/GMAC in AP/IBSS modes must be done in software.
5023d966 2952 */
8e160ab8
AB		 2953 if (key->cipher == WLAN_CIPHER_SUITE_AES_CMAC ||
2954 key->cipher == WLAN_CIPHER_SUITE_BIP_GMAC_128 ||
2955 key->cipher == WLAN_CIPHER_SUITE_BIP_GMAC_256)
81279c49
JB		 2956 ret = -EOPNOTSUPP;
2957 else
2958 ret = 0;
85aeb58c
DS		 2959
2960 if (key->cipher != WLAN_CIPHER_SUITE_GCMP &&
2961 key->cipher != WLAN_CIPHER_SUITE_GCMP_256 &&
2962 !iwl_mvm_has_new_tx_api(mvm)) {
2963 key->hw_key_idx = STA_KEY_IDX_INVALID;
2964 break;
2965 }
6caffd4f
JB		 2966 }
2967
b546dcd6
JB		 2968 /* During FW restart, in order to restore the state as it was,
2969 * don't try to reprogram keys we previously failed for.
2970 */
2971 if (test_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status) &&
2972 key->hw_key_idx == STA_KEY_IDX_INVALID) {
2973 IWL_DEBUG_MAC80211(mvm,
2974 "skip invalid idx key programming during restart\n");
2975 ret = 0;
2976 break;
2977 }
2978
f5e28eac
JB		 2979 if (!test_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status) &&
2980 sta && iwl_mvm_has_new_rx_api(mvm) &&
2981 key->flags & IEEE80211_KEY_FLAG_PAIRWISE &&
2982 (key->cipher == WLAN_CIPHER_SUITE_CCMP ||
2a53d166
AB		 2983 key->cipher == WLAN_CIPHER_SUITE_GCMP ||
2984 key->cipher == WLAN_CIPHER_SUITE_GCMP_256)) {
f5e28eac
JB		 2985 struct ieee80211_key_seq seq;
2986 int tid, q;
2987
2988 mvmsta = iwl_mvm_sta_from_mac80211(sta);
2989 WARN_ON(rcu_access_pointer(mvmsta->ptk_pn[keyidx]));
2990 ptk_pn = kzalloc(sizeof(*ptk_pn) +
2991 mvm->trans->num_rx_queues *
2992 sizeof(ptk_pn->q[0]),
2993 GFP_KERNEL);
2994 if (!ptk_pn) {
2995 ret = -ENOMEM;
2996 break;
2997 }
2998
2999 for (tid = 0; tid < IWL_MAX_TID_COUNT; tid++) {
3000 ieee80211_get_key_rx_seq(key, tid, &seq);
3001 for (q = 0; q < mvm->trans->num_rx_queues; q++)
3002 memcpy(ptk_pn->q[q].pn[tid],
3003 seq.ccmp.pn,
3004 IEEE80211_CCMP_PN_LEN);
3005 }
3006
3007 rcu_assign_pointer(mvmsta->ptk_pn[keyidx], ptk_pn);
3008 }
3009
d6ee54a9
LC		 3010 /* in HW restart reuse the index, otherwise request a new one */
3011 if (test_bit(IWL_MVM_STATUS_IN_HW_RESTART, &mvm->status))
3012 key_offset = key->hw_key_idx;
3013 else
3014 key_offset = STA_KEY_IDX_INVALID;
3015
8ca151b5 3016 IWL_DEBUG_MAC80211(mvm, "set hwcrypto key\n");
d6ee54a9 3017 ret = iwl_mvm_set_sta_key(mvm, vif, sta, key, key_offset);
8ca151b5
JB		 3018 if (ret) {
3019 IWL_WARN(mvm, "set key failed\n");
3020 /*
3021 * can't add key for RX, but we don't need it
3022 * in the device for TX so still return 0
3023 */
6caffd4f 3024 key->hw_key_idx = STA_KEY_IDX_INVALID;
8ca151b5
JB		 3025 ret = 0;
3026 }
3027
3028 break;
3029 case DISABLE_KEY:
6caffd4f
JB		 3030 if (key->hw_key_idx == STA_KEY_IDX_INVALID) {
3031 ret = 0;
3032 break;
3033 }
3034
f5e28eac
JB		 3035 if (sta && iwl_mvm_has_new_rx_api(mvm) &&
3036 key->flags & IEEE80211_KEY_FLAG_PAIRWISE &&
3037 (key->cipher == WLAN_CIPHER_SUITE_CCMP ||
2a53d166
AB		 3038 key->cipher == WLAN_CIPHER_SUITE_GCMP ||
3039 key->cipher == WLAN_CIPHER_SUITE_GCMP_256)) {
f5e28eac
JB		 3040 mvmsta = iwl_mvm_sta_from_mac80211(sta);
3041 ptk_pn = rcu_dereference_protected(
3042 mvmsta->ptk_pn[keyidx],
3043 lockdep_is_held(&mvm->mutex));
3044 RCU_INIT_POINTER(mvmsta->ptk_pn[keyidx], NULL);
3045 if (ptk_pn)
3046 kfree_rcu(ptk_pn, rcu_head);
3047 }
3048
8ca151b5
JB		 3049 IWL_DEBUG_MAC80211(mvm, "disable hwcrypto key\n");
3050 ret = iwl_mvm_remove_sta_key(mvm, vif, sta, key);
3051 break;
3052 default:
3053 ret = -EINVAL;
3054 }
3055
3056 mutex_unlock(&mvm->mutex);
3057 return ret;
3058}
3059
3060static void iwl_mvm_mac_update_tkip_key(struct ieee80211_hw *hw,
3061 struct ieee80211_vif *vif,
3062 struct ieee80211_key_conf *keyconf,
3063 struct ieee80211_sta *sta,
3064 u32 iv32, u16 *phase1key)
3065{
3066 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3067
5023d966
JB		 3068 if (keyconf->hw_key_idx == STA_KEY_IDX_INVALID)
3069 return;
3070
8ca151b5
JB		 3071 iwl_mvm_update_tkip_key(mvm, vif, keyconf, sta, iv32, phase1key);
3072}
3073
3074
b112889c
AM		 3075static bool iwl_mvm_rx_aux_roc(struct iwl_notif_wait_data *notif_wait,
3076 struct iwl_rx_packet *pkt, void *data)
3077{
3078 struct iwl_mvm *mvm =
3079 container_of(notif_wait, struct iwl_mvm, notif_wait);
3080 struct iwl_hs20_roc_res *resp;
3081 int resp_len = iwl_rx_packet_payload_len(pkt);
3082 struct iwl_mvm_time_event_data *te_data = data;
3083
3084 if (WARN_ON(pkt->hdr.cmd != HOT_SPOT_CMD))
3085 return true;
3086
3087 if (WARN_ON_ONCE(resp_len != sizeof(*resp))) {
3088 IWL_ERR(mvm, "Invalid HOT_SPOT_CMD response\n");
3089 return true;
3090 }
3091
3092 resp = (void *)pkt->data;
3093
3094 IWL_DEBUG_TE(mvm,
3095 "Aux ROC: Recieved response from ucode: status=%d uid=%d\n",
3096 resp->status, resp->event_unique_id);
3097
3098 te_data->uid = le32_to_cpu(resp->event_unique_id);
3099 IWL_DEBUG_TE(mvm, "TIME_EVENT_CMD response - UID = 0x%x\n",
3100 te_data->uid);
3101
3102 spin_lock_bh(&mvm->time_event_lock);
3103 list_add_tail(&te_data->list, &mvm->aux_roc_te_list);
3104 spin_unlock_bh(&mvm->time_event_lock);
3105
3106 return true;
3107}
3108
dc28e12f
MG		 3109#define AUX_ROC_MIN_DURATION MSEC_TO_TU(100)
3110#define AUX_ROC_MIN_DELAY MSEC_TO_TU(200)
3111#define AUX_ROC_MAX_DELAY MSEC_TO_TU(600)
3112#define AUX_ROC_SAFETY_BUFFER MSEC_TO_TU(20)
3113#define AUX_ROC_MIN_SAFETY_BUFFER MSEC_TO_TU(10)
b112889c
AM		 3114static int iwl_mvm_send_aux_roc_cmd(struct iwl_mvm *mvm,
3115 struct ieee80211_channel *channel,
3116 struct ieee80211_vif *vif,
3117 int duration)
3118{
3119 int res, time_reg = DEVICE_SYSTEM_TIME_REG;
3120 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
3121 struct iwl_mvm_time_event_data *te_data = &mvmvif->hs_time_event_data;
6eb031d2 3122 static const u16 time_event_response[] = { HOT_SPOT_CMD };
b112889c 3123 struct iwl_notification_wait wait_time_event;
dc28e12f
MG		 3124 u32 dtim_interval = vif->bss_conf.dtim_period *
3125 vif->bss_conf.beacon_int;
3126 u32 req_dur, delay;
b112889c
AM		 3127 struct iwl_hs20_roc_req aux_roc_req = {
3128 .action = cpu_to_le32(FW_CTXT_ACTION_ADD),
3129 .id_and_color =
3130 cpu_to_le32(FW_CMD_ID_AND_COLOR(MAC_INDEX_AUX, 0)),
3131 .sta_id_and_color = cpu_to_le32(mvm->aux_sta.sta_id),
3132 /* Set the channel info data */
57fbcce3 3133 .channel_info.band = (channel->band == NL80211_BAND_2GHZ) ?
b112889c
AM		 3134 PHY_BAND_24 : PHY_BAND_5,
3135 .channel_info.channel = channel->hw_value,
3136 .channel_info.width = PHY_VHT_CHANNEL_MODE20,
3137 /* Set the time and duration */
3138 .apply_time = cpu_to_le32(iwl_read_prph(mvm->trans, time_reg)),
b112889c
AM		 3139 };
3140
dc28e12f
MG		 3141 delay = AUX_ROC_MIN_DELAY;
3142 req_dur = MSEC_TO_TU(duration);
3143
3144 /*
3145 * If we are associated we want the delay time to be at least one
3146 * dtim interval so that the FW can wait until after the DTIM and
3147 * then start the time event, this will potentially allow us to
3148 * remain off-channel for the max duration.
3149 * Since we want to use almost a whole dtim interval we would also
3150 * like the delay to be for 2-3 dtim intervals, in case there are
3151 * other time events with higher priority.
3152 */
3153 if (vif->bss_conf.assoc) {
3154 delay = min_t(u32, dtim_interval * 3, AUX_ROC_MAX_DELAY);
3155 /* We cannot remain off-channel longer than the DTIM interval */
3156 if (dtim_interval <= req_dur) {
3157 req_dur = dtim_interval - AUX_ROC_SAFETY_BUFFER;
3158 if (req_dur <= AUX_ROC_MIN_DURATION)
3159 req_dur = dtim_interval -
3160 AUX_ROC_MIN_SAFETY_BUFFER;
3161 }
3162 }
3163
3164 aux_roc_req.duration = cpu_to_le32(req_dur);
3165 aux_roc_req.apply_time_max_delay = cpu_to_le32(delay);
3166
3167 IWL_DEBUG_TE(mvm,
3168 "ROC: Requesting to remain on channel %u for %ums (requested = %ums, max_delay = %ums, dtim_interval = %ums)\n",
3169 channel->hw_value, req_dur, duration, delay,
3170 dtim_interval);
b112889c
AM		 3171 /* Set the node address */
3172 memcpy(aux_roc_req.node_addr, vif->addr, ETH_ALEN);
3173
a6cc5163
MG		 3174 lockdep_assert_held(&mvm->mutex);
3175
3176 spin_lock_bh(&mvm->time_event_lock);
3177
3178 if (WARN_ON(te_data->id == HOT_SPOT_CMD)) {
3179 spin_unlock_bh(&mvm->time_event_lock);
3180 return -EIO;
3181 }
3182
b112889c
AM		 3183 te_data->vif = vif;
3184 te_data->duration = duration;
3185 te_data->id = HOT_SPOT_CMD;
3186
b112889c
AM		 3187 spin_unlock_bh(&mvm->time_event_lock);
3188
3189 /*
3190 * Use a notification wait, which really just processes the
3191 * command response and doesn't wait for anything, in order
3192 * to be able to process the response and get the UID inside
3193 * the RX path. Using CMD_WANT_SKB doesn't work because it
3194 * stores the buffer and then wakes up this thread, by which
3195 * time another notification (that the time event started)
3196 * might already be processed unsuccessfully.
3197 */
3198 iwl_init_notification_wait(&mvm->notif_wait, &wait_time_event,
3199 time_event_response,
3200 ARRAY_SIZE(time_event_response),
3201 iwl_mvm_rx_aux_roc, te_data);
3202
3203 res = iwl_mvm_send_cmd_pdu(mvm, HOT_SPOT_CMD, 0, sizeof(aux_roc_req),
3204 &aux_roc_req);
3205
3206 if (res) {
3207 IWL_ERR(mvm, "Couldn't send HOT_SPOT_CMD: %d\n", res);
3208 iwl_remove_notification(&mvm->notif_wait, &wait_time_event);
3209 goto out_clear_te;
3210 }
3211
3212 /* No need to wait for anything, so just pass 1 (0 isn't valid) */
3213 res = iwl_wait_notification(&mvm->notif_wait, &wait_time_event, 1);
3214 /* should never fail */
3215 WARN_ON_ONCE(res);
3216
3217 if (res) {
3218 out_clear_te:
3219 spin_lock_bh(&mvm->time_event_lock);
3220 iwl_mvm_te_clear_data(mvm, te_data);
3221 spin_unlock_bh(&mvm->time_event_lock);
3222 }
3223
3224 return res;
3225}
3226
8ca151b5
JB		 3227static int iwl_mvm_roc(struct ieee80211_hw *hw,
3228 struct ieee80211_vif *vif,
3229 struct ieee80211_channel *channel,
d339d5ca
IP		 3230 int duration,
3231 enum ieee80211_roc_type type)
8ca151b5
JB		 3232{
3233 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
fe0f2de3 3234 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
8ca151b5 3235 struct cfg80211_chan_def chandef;
31d385ae
IP		 3236 struct iwl_mvm_phy_ctxt *phy_ctxt;
3237 int ret, i;
3238
3239 IWL_DEBUG_MAC80211(mvm, "enter (%d, %d, %d)\n", channel->hw_value,
3240 duration, type);
8ca151b5 3241
9834781c
JB		 3242 /*
3243 * Flush the done work, just in case it's still pending, so that
3244 * the work it does can complete and we can accept new frames.
3245 */
6ed13164
MG		 3246 flush_work(&mvm->roc_done_wk);
3247
a6cc5163
MG		 3248 mutex_lock(&mvm->mutex);
3249
b112889c
AM		 3250 switch (vif->type) {
3251 case NL80211_IFTYPE_STATION:
859d914c
JB		 3252 if (fw_has_capa(&mvm->fw->ucode_capa,
3253 IWL_UCODE_TLV_CAPA_HOTSPOT_SUPPORT)) {
5ac6c72e
LC		 3254 /* Use aux roc framework (HS20) */
3255 ret = iwl_mvm_send_aux_roc_cmd(mvm, channel,
3256 vif, duration);
3257 goto out_unlock;
3258 }
3259 IWL_ERR(mvm, "hotspot not supported\n");
3260 ret = -EINVAL;
a6cc5163 3261 goto out_unlock;
b112889c
AM		 3262 case NL80211_IFTYPE_P2P_DEVICE:
3263 /* handle below */
3264 break;
3265 default:
3266 IWL_ERR(mvm, "vif isn't P2P_DEVICE: %d\n", vif->type);
a6cc5163
MG		 3267 ret = -EINVAL;
3268 goto out_unlock;
8ca151b5
JB		 3269 }
3270
31d385ae
IP		 3271 for (i = 0; i < NUM_PHY_CTX; i++) {
3272 phy_ctxt = &mvm->phy_ctxts[i];
3273 if (phy_ctxt->ref == 0 || mvmvif->phy_ctxt == phy_ctxt)
3274 continue;
3275
3276 if (phy_ctxt->ref && channel == phy_ctxt->channel) {
3277 /*
3278 * Unbind the P2P_DEVICE from the current PHY context,
3279 * and if the PHY context is not used remove it.
3280 */
3281 ret = iwl_mvm_binding_remove_vif(mvm, vif);
3282 if (WARN(ret, "Failed unbinding P2P_DEVICE\n"))
3283 goto out_unlock;
3284
3285 iwl_mvm_phy_ctxt_unref(mvm, mvmvif->phy_ctxt);
3286
3287 /* Bind the P2P_DEVICE to the current PHY Context */
3288 mvmvif->phy_ctxt = phy_ctxt;
3289
3290 ret = iwl_mvm_binding_add_vif(mvm, vif);
3291 if (WARN(ret, "Failed binding P2P_DEVICE\n"))
3292 goto out_unlock;
3293
3294 iwl_mvm_phy_ctxt_ref(mvm, mvmvif->phy_ctxt);
3295 goto schedule_time_event;
3296 }
3297 }
3298
3299 /* Need to update the PHY context only if the ROC channel changed */
3300 if (channel == mvmvif->phy_ctxt->channel)
3301 goto schedule_time_event;
3302
8ca151b5 3303 cfg80211_chandef_create(&chandef, channel, NL80211_CHAN_NO_HT);
8ca151b5 3304
31d385ae
IP		 3305 /*
3306 * Change the PHY context configuration as it is currently referenced
3307 * only by the P2P Device MAC
3308 */
3309 if (mvmvif->phy_ctxt->ref == 1) {
3310 ret = iwl_mvm_phy_ctxt_changed(mvm, mvmvif->phy_ctxt,
3311 &chandef, 1, 1);
3312 if (ret)
3313 goto out_unlock;
3314 } else {
3315 /*
3316 * The PHY context is shared with other MACs. Need to remove the
3317 * P2P Device from the binding, allocate an new PHY context and
3318 * create a new binding
3319 */
3320 phy_ctxt = iwl_mvm_get_free_phy_ctxt(mvm);
3321 if (!phy_ctxt) {
3322 ret = -ENOSPC;
3323 goto out_unlock;
3324 }
3325
3326 ret = iwl_mvm_phy_ctxt_changed(mvm, phy_ctxt, &chandef,
3327 1, 1);
3328 if (ret) {
3329 IWL_ERR(mvm, "Failed to change PHY context\n");
3330 goto out_unlock;
3331 }
3332
3333 /* Unbind the P2P_DEVICE from the current PHY context */
3334 ret = iwl_mvm_binding_remove_vif(mvm, vif);
3335 if (WARN(ret, "Failed unbinding P2P_DEVICE\n"))
3336 goto out_unlock;
3337
3338 iwl_mvm_phy_ctxt_unref(mvm, mvmvif->phy_ctxt);
3339
3340 /* Bind the P2P_DEVICE to the new allocated PHY context */
3341 mvmvif->phy_ctxt = phy_ctxt;
3342
3343 ret = iwl_mvm_binding_add_vif(mvm, vif);
3344 if (WARN(ret, "Failed binding P2P_DEVICE\n"))
3345 goto out_unlock;
3346
3347 iwl_mvm_phy_ctxt_ref(mvm, mvmvif->phy_ctxt);
3348 }
3349
3350schedule_time_event:
8ca151b5 3351 /* Schedule the time events */
e635c797 3352 ret = iwl_mvm_start_p2p_roc(mvm, vif, duration, type);
8ca151b5 3353
31d385ae 3354out_unlock:
8ca151b5
JB		 3355 mutex_unlock(&mvm->mutex);
3356 IWL_DEBUG_MAC80211(mvm, "leave\n");
8ca151b5
JB		 3357 return ret;
3358}
3359
3360static int iwl_mvm_cancel_roc(struct ieee80211_hw *hw)
3361{
3362 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3363
3364 IWL_DEBUG_MAC80211(mvm, "enter\n");
3365
3366 mutex_lock(&mvm->mutex);
bf5da87f 3367 iwl_mvm_stop_roc(mvm);
8ca151b5
JB		 3368 mutex_unlock(&mvm->mutex);
3369
3370 IWL_DEBUG_MAC80211(mvm, "leave\n");
3371 return 0;
3372}
3373
b08c1d97
LC		 3374static int __iwl_mvm_add_chanctx(struct iwl_mvm *mvm,
3375 struct ieee80211_chanctx_conf *ctx)
8ca151b5 3376{
fe0f2de3
IP		 3377 u16 *phy_ctxt_id = (u16 *)ctx->drv_priv;
3378 struct iwl_mvm_phy_ctxt *phy_ctxt;
8ca151b5
JB		 3379 int ret;
3380
b08c1d97
LC		 3381 lockdep_assert_held(&mvm->mutex);
3382
53a9d61e 3383 IWL_DEBUG_MAC80211(mvm, "Add channel context\n");
fe0f2de3 3384
fe0f2de3
IP		 3385 phy_ctxt = iwl_mvm_get_free_phy_ctxt(mvm);
3386 if (!phy_ctxt) {
3387 ret = -ENOSPC;
3388 goto out;
3389 }
8ca151b5 3390
dcbc3e1a 3391 ret = iwl_mvm_phy_ctxt_changed(mvm, phy_ctxt, &ctx->min_def,
53a9d61e
IP		 3392 ctx->rx_chains_static,
3393 ctx->rx_chains_dynamic);
fe0f2de3
IP		 3394 if (ret) {
3395 IWL_ERR(mvm, "Failed to add PHY context\n");
3396 goto out;
3397 }
3398
53a9d61e 3399 iwl_mvm_phy_ctxt_ref(mvm, phy_ctxt);
fe0f2de3
IP		 3400 *phy_ctxt_id = phy_ctxt->id;
3401out:
b08c1d97
LC		 3402 return ret;
3403}
3404
3405static int iwl_mvm_add_chanctx(struct ieee80211_hw *hw,
3406 struct ieee80211_chanctx_conf *ctx)
3407{
3408 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3409 int ret;
3410
3411 mutex_lock(&mvm->mutex);
3412 ret = __iwl_mvm_add_chanctx(mvm, ctx);
8ca151b5 3413 mutex_unlock(&mvm->mutex);
b08c1d97 3414
8ca151b5
JB		 3415 return ret;
3416}
3417
b08c1d97
LC		 3418static void __iwl_mvm_remove_chanctx(struct iwl_mvm *mvm,
3419 struct ieee80211_chanctx_conf *ctx)
3420{
3421 u16 *phy_ctxt_id = (u16 *)ctx->drv_priv;
3422 struct iwl_mvm_phy_ctxt *phy_ctxt = &mvm->phy_ctxts[*phy_ctxt_id];
3423
3424 lockdep_assert_held(&mvm->mutex);
3425
3426 iwl_mvm_phy_ctxt_unref(mvm, phy_ctxt);
3427}
3428
8ca151b5
JB		 3429static void iwl_mvm_remove_chanctx(struct ieee80211_hw *hw,
3430 struct ieee80211_chanctx_conf *ctx)
3431{
3432 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
8ca151b5
JB		 3433
3434 mutex_lock(&mvm->mutex);
b08c1d97 3435 __iwl_mvm_remove_chanctx(mvm, ctx);
8ca151b5
JB		 3436 mutex_unlock(&mvm->mutex);
3437}
3438
3439static void iwl_mvm_change_chanctx(struct ieee80211_hw *hw,
3440 struct ieee80211_chanctx_conf *ctx,
3441 u32 changed)
3442{
3443 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
fe0f2de3
IP		 3444 u16 *phy_ctxt_id = (u16 *)ctx->drv_priv;
3445 struct iwl_mvm_phy_ctxt *phy_ctxt = &mvm->phy_ctxts[*phy_ctxt_id];
8ca151b5 3446
31d385ae
IP		 3447 if (WARN_ONCE((phy_ctxt->ref > 1) &&
3448 (changed & ~(IEEE80211_CHANCTX_CHANGE_WIDTH |
3449 IEEE80211_CHANCTX_CHANGE_RX_CHAINS |
2dceedae
AN		 3450 IEEE80211_CHANCTX_CHANGE_RADAR |
3451 IEEE80211_CHANCTX_CHANGE_MIN_WIDTH)),
31d385ae
IP		 3452 "Cannot change PHY. Ref=%d, changed=0x%X\n",
3453 phy_ctxt->ref, changed))
3454 return;
3455
8ca151b5 3456 mutex_lock(&mvm->mutex);
7a20bcce
EG		 3457
3458 /* we are only changing the min_width, may be a noop */
3459 if (changed == IEEE80211_CHANCTX_CHANGE_MIN_WIDTH) {
3460 if (phy_ctxt->width == ctx->min_def.width)
3461 goto out_unlock;
3462
3463 /* we are just toggling between 20_NOHT and 20 */
3464 if (phy_ctxt->width <= NL80211_CHAN_WIDTH_20 &&
3465 ctx->min_def.width <= NL80211_CHAN_WIDTH_20)
3466 goto out_unlock;
3467 }
3468
4d66449a 3469 iwl_mvm_bt_coex_vif_change(mvm);
dcbc3e1a 3470 iwl_mvm_phy_ctxt_changed(mvm, phy_ctxt, &ctx->min_def,
8ca151b5
JB		 3471 ctx->rx_chains_static,
3472 ctx->rx_chains_dynamic);
7a20bcce
EG		 3473
3474out_unlock:
8ca151b5
JB		 3475 mutex_unlock(&mvm->mutex);
3476}
3477
b08c1d97
LC		 3478static int __iwl_mvm_assign_vif_chanctx(struct iwl_mvm *mvm,
3479 struct ieee80211_vif *vif,
f0c97783
LC		 3480 struct ieee80211_chanctx_conf *ctx,
3481 bool switching_chanctx)
8ca151b5 3482{
fe0f2de3
IP		 3483 u16 *phy_ctxt_id = (u16 *)ctx->drv_priv;
3484 struct iwl_mvm_phy_ctxt *phy_ctxt = &mvm->phy_ctxts[*phy_ctxt_id];
8ca151b5
JB		 3485 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
3486 int ret;
3487
b08c1d97 3488 lockdep_assert_held(&mvm->mutex);
8ca151b5 3489
fe0f2de3 3490 mvmvif->phy_ctxt = phy_ctxt;
8ca151b5
JB		 3491
3492 switch (vif->type) {
3493 case NL80211_IFTYPE_AP:
4741dd04
LC		 3494 /* only needed if we're switching chanctx (i.e. during CSA) */
3495 if (switching_chanctx) {
bd3398e2
AO		 3496 mvmvif->ap_ibss_active = true;
3497 break;
3498 }
5023d966 3499 case NL80211_IFTYPE_ADHOC:
8ca151b5
JB		 3500 /*
3501 * The AP binding flow is handled as part of the start_ap flow
5023d966 3502 * (in bss_info_changed), similarly for IBSS.
8ca151b5
JB		 3503 */
3504 ret = 0;
b08c1d97 3505 goto out;
8ca151b5 3506 case NL80211_IFTYPE_STATION:
19125cb0 3507 mvmvif->csa_bcn_pending = false;
2533edce 3508 break;
8ca151b5 3509 case NL80211_IFTYPE_MONITOR:
2533edce
LC		 3510 /* always disable PS when a monitor interface is active */
3511 mvmvif->ps_disabled = true;
8ca151b5
JB		 3512 break;
3513 default:
3514 ret = -EINVAL;
b08c1d97 3515 goto out;
8ca151b5
JB		 3516 }
3517
3518 ret = iwl_mvm_binding_add_vif(mvm, vif);
3519 if (ret)
b08c1d97 3520 goto out;
8ca151b5
JB		 3521
3522 /*
92d85562
AB		 3523 * Power state must be updated before quotas,
3524 * otherwise fw will complain.
3525 */
999609f1 3526 iwl_mvm_power_update_mac(mvm);
92d85562
AB		 3527
3528 /* Setting the quota at this stage is only required for monitor
8ca151b5
JB		 3529 * interfaces. For the other types, the bss_info changed flow
3530 * will handle quota settings.
3531 */
3532 if (vif->type == NL80211_IFTYPE_MONITOR) {
1e1391ca 3533 mvmvif->monitor_active = true;
7754ae79 3534 ret = iwl_mvm_update_quotas(mvm, false, NULL);
8ca151b5
JB		 3535 if (ret)
3536 goto out_remove_binding;
0e39eb03
CRI		 3537
3538 ret = iwl_mvm_add_snif_sta(mvm, vif);
3539 if (ret)
3540 goto out_remove_binding;
3541
8ca151b5
JB		 3542 }
3543
bd3398e2 3544 /* Handle binding during CSA */
a57c688d 3545 if (vif->type == NL80211_IFTYPE_AP) {
7754ae79 3546 iwl_mvm_update_quotas(mvm, false, NULL);
3dfd3a97 3547 iwl_mvm_mac_ctxt_changed(mvm, vif, false, NULL);
bd3398e2
AO		 3548 }
3549
4741dd04 3550 if (switching_chanctx && vif->type == NL80211_IFTYPE_STATION) {
19125cb0 3551 u32 duration = 3 * vif->bss_conf.beacon_int;
686e7fe1
LC		 3552
3553 /* iwl_mvm_protect_session() reads directly from the
3554 * device (the system time), so make sure it is
3555 * available.
3556 */
3557 ret = iwl_mvm_ref_sync(mvm, IWL_MVM_REF_PROTECT_CSA);
3558 if (ret)
3559 goto out_remove_binding;
3560
3561 /* Protect the session to make sure we hear the first
3562 * beacon on the new channel.
3563 */
19125cb0 3564 mvmvif->csa_bcn_pending = true;
686e7fe1
LC		 3565 iwl_mvm_protect_session(mvm, vif, duration, duration,
3566 vif->bss_conf.beacon_int / 2,
3567 true);
3568
3569 iwl_mvm_unref(mvm, IWL_MVM_REF_PROTECT_CSA);
3570
7754ae79 3571 iwl_mvm_update_quotas(mvm, false, NULL);
0ce04ce7
LC		 3572 }
3573
b08c1d97 3574 goto out;
8ca151b5 3575
b08c1d97 3576out_remove_binding:
8ca151b5 3577 iwl_mvm_binding_remove_vif(mvm, vif);
999609f1 3578 iwl_mvm_power_update_mac(mvm);
b08c1d97 3579out:
8ca151b5
JB		 3580 if (ret)
3581 mvmvif->phy_ctxt = NULL;
3582 return ret;
3583}
b08c1d97
LC		 3584static int iwl_mvm_assign_vif_chanctx(struct ieee80211_hw *hw,
3585 struct ieee80211_vif *vif,
3586 struct ieee80211_chanctx_conf *ctx)
8ca151b5
JB		 3587{
3588 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
b08c1d97 3589 int ret;
8ca151b5
JB		 3590
3591 mutex_lock(&mvm->mutex);
f0c97783 3592 ret = __iwl_mvm_assign_vif_chanctx(mvm, vif, ctx, false);
b08c1d97
LC		 3593 mutex_unlock(&mvm->mutex);
3594
3595 return ret;
3596}
3597
3598static void __iwl_mvm_unassign_vif_chanctx(struct iwl_mvm *mvm,
3599 struct ieee80211_vif *vif,
f0c97783
LC		 3600 struct ieee80211_chanctx_conf *ctx,
3601 bool switching_chanctx)
b08c1d97
LC		 3602{
3603 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
f0c97783 3604 struct ieee80211_vif *disabled_vif = NULL;
b08c1d97
LC		 3605
3606 lockdep_assert_held(&mvm->mutex);
8ca151b5
JB		 3607
3608 iwl_mvm_remove_time_event(mvm, mvmvif, &mvmvif->time_event_data);
3609
8ca151b5 3610 switch (vif->type) {
5023d966 3611 case NL80211_IFTYPE_ADHOC:
b08c1d97 3612 goto out;
8ca151b5 3613 case NL80211_IFTYPE_MONITOR:
1e1391ca 3614 mvmvif->monitor_active = false;
2533edce 3615 mvmvif->ps_disabled = false;
0e39eb03 3616 iwl_mvm_rm_snif_sta(mvm, vif);
8ca151b5 3617 break;
bd3398e2
AO		 3618 case NL80211_IFTYPE_AP:
3619 /* This part is triggered only during CSA */
4741dd04 3620 if (!switching_chanctx || !mvmvif->ap_ibss_active)
b08c1d97 3621 goto out;
bd3398e2 3622
7ef0aab6
AO		 3623 mvmvif->csa_countdown = false;
3624
003e5236
AO		 3625 /* Set CS bit on all the stations */
3626 iwl_mvm_modify_all_sta_disable_tx(mvm, mvmvif, true);
3627
3628 /* Save blocked iface, the timeout is set on the next beacon */
3629 rcu_assign_pointer(mvm->csa_tx_blocked_vif, vif);
3630
bd3398e2 3631 mvmvif->ap_ibss_active = false;
f0c97783
LC		 3632 break;
3633 case NL80211_IFTYPE_STATION:
3634 if (!switching_chanctx)
3635 break;
3636
3637 disabled_vif = vif;
3638
3dfd3a97 3639 iwl_mvm_mac_ctxt_changed(mvm, vif, true, NULL);
f0c97783 3640 break;
8ca151b5
JB		 3641 default:
3642 break;
3643 }
3644
7754ae79 3645 iwl_mvm_update_quotas(mvm, false, disabled_vif);
1e1391ca 3646 iwl_mvm_binding_remove_vif(mvm, vif);
1c2abf72 3647
b08c1d97 3648out:
a11e144e 3649 mvmvif->phy_ctxt = NULL;
999609f1 3650 iwl_mvm_power_update_mac(mvm);
b08c1d97
LC		 3651}
3652
3653static void iwl_mvm_unassign_vif_chanctx(struct ieee80211_hw *hw,
3654 struct ieee80211_vif *vif,
3655 struct ieee80211_chanctx_conf *ctx)
3656{
3657 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3658
3659 mutex_lock(&mvm->mutex);
f0c97783 3660 __iwl_mvm_unassign_vif_chanctx(mvm, vif, ctx, false);
8ca151b5
JB		 3661 mutex_unlock(&mvm->mutex);
3662}
3663
50cc9574
LC		 3664static int
3665iwl_mvm_switch_vif_chanctx_swap(struct iwl_mvm *mvm,
3666 struct ieee80211_vif_chanctx_switch *vifs)
b08c1d97 3667{
b08c1d97
LC		 3668 int ret;
3669
b08c1d97 3670 mutex_lock(&mvm->mutex);
f0c97783 3671 __iwl_mvm_unassign_vif_chanctx(mvm, vifs[0].vif, vifs[0].old_ctx, true);
b08c1d97
LC		 3672 __iwl_mvm_remove_chanctx(mvm, vifs[0].old_ctx);
3673
3674 ret = __iwl_mvm_add_chanctx(mvm, vifs[0].new_ctx);
3675 if (ret) {
3676 IWL_ERR(mvm, "failed to add new_ctx during channel switch\n");
3677 goto out_reassign;
3678 }
3679
f0c97783
LC		 3680 ret = __iwl_mvm_assign_vif_chanctx(mvm, vifs[0].vif, vifs[0].new_ctx,
3681 true);
b08c1d97
LC		 3682 if (ret) {
3683 IWL_ERR(mvm,
3684 "failed to assign new_ctx during channel switch\n");
3685 goto out_remove;
3686 }
3687
f697267f
AN		 3688 /* we don't support TDLS during DCM - can be caused by channel switch */
3689 if (iwl_mvm_phy_ctx_count(mvm) > 1)
3690 iwl_mvm_teardown_tdls_peers(mvm);
3691
b08c1d97
LC		 3692 goto out;
3693
3694out_remove:
3695 __iwl_mvm_remove_chanctx(mvm, vifs[0].new_ctx);
3696
3697out_reassign:
6fd1fb63 3698 if (__iwl_mvm_add_chanctx(mvm, vifs[0].old_ctx)) {
b08c1d97
LC		 3699 IWL_ERR(mvm, "failed to add old_ctx back after failure.\n");
3700 goto out_restart;
3701 }
3702
6fd1fb63
LC		 3703 if (__iwl_mvm_assign_vif_chanctx(mvm, vifs[0].vif, vifs[0].old_ctx,
3704 true)) {
b08c1d97
LC		 3705 IWL_ERR(mvm, "failed to reassign old_ctx after failure.\n");
3706 goto out_restart;
3707 }
3708
3709 goto out;
3710
3711out_restart:
3712 /* things keep failing, better restart the hw */
3713 iwl_mvm_nic_restart(mvm, false);
3714
3715out:
3716 mutex_unlock(&mvm->mutex);
50cc9574
LC		 3717
3718 return ret;
3719}
3720
48a256e8
LC		 3721static int
3722iwl_mvm_switch_vif_chanctx_reassign(struct iwl_mvm *mvm,
3723 struct ieee80211_vif_chanctx_switch *vifs)
3724{
3725 int ret;
3726
3727 mutex_lock(&mvm->mutex);
3728 __iwl_mvm_unassign_vif_chanctx(mvm, vifs[0].vif, vifs[0].old_ctx, true);
3729
3730 ret = __iwl_mvm_assign_vif_chanctx(mvm, vifs[0].vif, vifs[0].new_ctx,
3731 true);
3732 if (ret) {
3733 IWL_ERR(mvm,
3734 "failed to assign new_ctx during channel switch\n");
3735 goto out_reassign;
3736 }
3737
3738 goto out;
3739
3740out_reassign:
3741 if (__iwl_mvm_assign_vif_chanctx(mvm, vifs[0].vif, vifs[0].old_ctx,
3742 true)) {
3743 IWL_ERR(mvm, "failed to reassign old_ctx after failure.\n");
3744 goto out_restart;
3745 }
3746
3747 goto out;
3748
3749out_restart:
3750 /* things keep failing, better restart the hw */
3751 iwl_mvm_nic_restart(mvm, false);
3752
3753out:
3754 mutex_unlock(&mvm->mutex);
3755
3756 return ret;
3757}
3758
50cc9574
LC		 3759static int iwl_mvm_switch_vif_chanctx(struct ieee80211_hw *hw,
3760 struct ieee80211_vif_chanctx_switch *vifs,
3761 int n_vifs,
3762 enum ieee80211_chanctx_switch_mode mode)
3763{
3764 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3765 int ret;
3766
3767 /* we only support a single-vif right now */
3768 if (n_vifs > 1)
3769 return -EOPNOTSUPP;
3770
3771 switch (mode) {
3772 case CHANCTX_SWMODE_SWAP_CONTEXTS:
3773 ret = iwl_mvm_switch_vif_chanctx_swap(mvm, vifs);
3774 break;
3775 case CHANCTX_SWMODE_REASSIGN_VIF:
48a256e8 3776 ret = iwl_mvm_switch_vif_chanctx_reassign(mvm, vifs);
50cc9574
LC		 3777 break;
3778 default:
3779 ret = -EOPNOTSUPP;
3780 break;
3781 }
3782
b08c1d97
LC		 3783 return ret;
3784}
3785
2f0282db
JB		 3786static int iwl_mvm_tx_last_beacon(struct ieee80211_hw *hw)
3787{
3788 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3789
3790 return mvm->ibss_manager;
3791}
3792
8ca151b5
JB		 3793static int iwl_mvm_set_tim(struct ieee80211_hw *hw,
3794 struct ieee80211_sta *sta,
3795 bool set)
3796{
3797 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
9d8ce6af 3798 struct iwl_mvm_sta *mvm_sta = iwl_mvm_sta_from_mac80211(sta);
8ca151b5
JB		 3799
3800 if (!mvm_sta || !mvm_sta->vif) {
3801 IWL_ERR(mvm, "Station is not associated to a vif\n");
3802 return -EINVAL;
3803 }
3804
3805 return iwl_mvm_mac_ctxt_beacon_changed(mvm, mvm_sta->vif);
3806}
3807
507cadf2
DS		 3808#ifdef CONFIG_NL80211_TESTMODE
3809static const struct nla_policy iwl_mvm_tm_policy[IWL_MVM_TM_ATTR_MAX + 1] = {
3810 [IWL_MVM_TM_ATTR_CMD] = { .type = NLA_U32 },
3811 [IWL_MVM_TM_ATTR_NOA_DURATION] = { .type = NLA_U32 },
f6c6ad42 3812 [IWL_MVM_TM_ATTR_BEACON_FILTER_STATE] = { .type = NLA_U32 },
507cadf2
DS		 3813};
3814
3815static int __iwl_mvm_mac_testmode_cmd(struct iwl_mvm *mvm,
3816 struct ieee80211_vif *vif,
3817 void *data, int len)
3818{
3819 struct nlattr *tb[IWL_MVM_TM_ATTR_MAX + 1];
3820 int err;
3821 u32 noa_duration;
3822
fceb6435
JB		 3823 err = nla_parse(tb, IWL_MVM_TM_ATTR_MAX, data, len, iwl_mvm_tm_policy,
3824 NULL);
507cadf2
DS		 3825 if (err)
3826 return err;
3827
3828 if (!tb[IWL_MVM_TM_ATTR_CMD])
3829 return -EINVAL;
3830
3831 switch (nla_get_u32(tb[IWL_MVM_TM_ATTR_CMD])) {
3832 case IWL_MVM_TM_CMD_SET_NOA:
3833 if (!vif || vif->type != NL80211_IFTYPE_AP || !vif->p2p ||
3834 !vif->bss_conf.enable_beacon ||
3835 !tb[IWL_MVM_TM_ATTR_NOA_DURATION])
3836 return -EINVAL;
3837
3838 noa_duration = nla_get_u32(tb[IWL_MVM_TM_ATTR_NOA_DURATION]);
3839 if (noa_duration >= vif->bss_conf.beacon_int)
3840 return -EINVAL;
3841
3842 mvm->noa_duration = noa_duration;
3843 mvm->noa_vif = vif;
3844
22b21041 3845 return iwl_mvm_update_quotas(mvm, true, NULL);
f6c6ad42
JB		 3846 case IWL_MVM_TM_CMD_SET_BEACON_FILTER:
3847 /* must be associated client vif - ignore authorized */
3848 if (!vif || vif->type != NL80211_IFTYPE_STATION ||
3849 !vif->bss_conf.assoc || !vif->bss_conf.dtim_period ||
3850 !tb[IWL_MVM_TM_ATTR_BEACON_FILTER_STATE])
3851 return -EINVAL;
3852
3853 if (nla_get_u32(tb[IWL_MVM_TM_ATTR_BEACON_FILTER_STATE]))
a1022927
EG		 3854 return iwl_mvm_enable_beacon_filter(mvm, vif, 0);
3855 return iwl_mvm_disable_beacon_filter(mvm, vif, 0);
507cadf2
DS		 3856 }
3857
3858 return -EOPNOTSUPP;
3859}
3860
3861static int iwl_mvm_mac_testmode_cmd(struct ieee80211_hw *hw,
3862 struct ieee80211_vif *vif,
3863 void *data, int len)
3864{
3865 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3866 int err;
3867
3868 mutex_lock(&mvm->mutex);
3869 err = __iwl_mvm_mac_testmode_cmd(mvm, vif, data, len);
3870 mutex_unlock(&mvm->mutex);
3871
3872 return err;
3873}
3874#endif
3875
622e3f9b
LC		 3876static void iwl_mvm_channel_switch(struct ieee80211_hw *hw,
3877 struct ieee80211_vif *vif,
3878 struct ieee80211_channel_switch *chsw)
3879{
3880 /* By implementing this operation, we prevent mac80211 from
3881 * starting its own channel switch timer, so that we can call
3882 * ieee80211_chswitch_done() ourselves at the right time
3883 * (which is when the absence time event starts).
3884 */
3885
3886 IWL_DEBUG_MAC80211(IWL_MAC80211_GET_MVM(hw),
3887 "dummy channel switch op\n");
3888}
3889
f028905c
LC		 3890static int iwl_mvm_pre_channel_switch(struct ieee80211_hw *hw,
3891 struct ieee80211_vif *vif,
3892 struct ieee80211_channel_switch *chsw)
bd3398e2
AO		 3893{
3894 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
664322fa 3895 struct ieee80211_vif *csa_vif;
f6c34820 3896 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
dc88b4ba 3897 u32 apply_time;
f028905c 3898 int ret;
bd3398e2
AO		 3899
3900 mutex_lock(&mvm->mutex);
664322fa 3901
81d62d5a
JB		 3902 mvmvif->csa_failed = false;
3903
6b20d774 3904 IWL_DEBUG_MAC80211(mvm, "pre CSA to freq %d\n",
f028905c 3905 chsw->chandef.center_freq1);
6b20d774 3906
7174beb6
JB		 3907 iwl_fw_dbg_trigger_simple_stop(&mvm->fwrt,
3908 ieee80211_vif_to_wdev(vif),
3909 FW_DBG_TRIGGER_CHANNEL_SWITCH);
f35d9c55 3910
6b20d774
LC		 3911 switch (vif->type) {
3912 case NL80211_IFTYPE_AP:
3913 csa_vif =
3914 rcu_dereference_protected(mvm->csa_vif,
3915 lockdep_is_held(&mvm->mutex));
3916 if (WARN_ONCE(csa_vif && csa_vif->csa_active,
3917 "Another CSA is already in progress")) {
3918 ret = -EBUSY;
3919 goto out_unlock;
3920 }
3921
d3a108a4
AO		 3922 /* we still didn't unblock tx. prevent new CS meanwhile */
3923 if (rcu_dereference_protected(mvm->csa_tx_blocked_vif,
3924 lockdep_is_held(&mvm->mutex))) {
3925 ret = -EBUSY;
3926 goto out_unlock;
3927 }
3928
6b20d774 3929 rcu_assign_pointer(mvm->csa_vif, vif);
7ef0aab6 3930
7ef0aab6
AO		 3931 if (WARN_ONCE(mvmvif->csa_countdown,
3932 "Previous CSA countdown didn't complete")) {
3933 ret = -EBUSY;
3934 goto out_unlock;
3935 }
3936
d3a108a4
AO		 3937 mvmvif->csa_target_freq = chsw->chandef.chan->center_freq;
3938
6b20d774 3939 break;
dc88b4ba 3940 case NL80211_IFTYPE_STATION:
4500e133
LC		 3941 /* Schedule the time event to a bit before beacon 1,
3942 * to make sure we're in the new channel when the
f5d8f50f
IP		 3943 * GO/AP arrives. In case count <= 1 immediately schedule the
3944 * TE (this might result with some packet loss or connection
3945 * loss).
4500e133 3946 */
f5d8f50f
IP		 3947 if (chsw->count <= 1)
3948 apply_time = 0;
3949 else
3950 apply_time = chsw->device_timestamp +
3951 ((vif->bss_conf.beacon_int * (chsw->count - 1) -
3952 IWL_MVM_CHANNEL_SWITCH_TIME_CLIENT) * 1024);
dc88b4ba
LC		 3953
3954 if (chsw->block_tx)
3955 iwl_mvm_csa_client_absent(mvm, vif);
3956
4500e133 3957 iwl_mvm_schedule_csa_period(mvm, vif, vif->bss_conf.beacon_int,
dc88b4ba 3958 apply_time);
c6e0a3e0
LC		 3959 if (mvmvif->bf_data.bf_enabled) {
3960 ret = iwl_mvm_disable_beacon_filter(mvm, vif, 0);
3961 if (ret)
3962 goto out_unlock;
3963 }
3964
dc88b4ba 3965 break;
6b20d774
LC		 3966 default:
3967 break;
3968 }
bd3398e2 3969
f6c34820
LC		 3970 mvmvif->ps_disabled = true;
3971
3972 ret = iwl_mvm_power_update_ps(mvm);
3973 if (ret)
3974 goto out_unlock;
f028905c 3975
e198f5e7
AN		 3976 /* we won't be on this channel any longer */
3977 iwl_mvm_teardown_tdls_peers(mvm);
3978
bd3398e2
AO		 3979out_unlock:
3980 mutex_unlock(&mvm->mutex);
f028905c
LC		 3981
3982 return ret;
bd3398e2
AO		 3983}
3984
f6c34820
LC		 3985static int iwl_mvm_post_channel_switch(struct ieee80211_hw *hw,
3986 struct ieee80211_vif *vif)
3987{
3988 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
3989 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
3990 int ret;
3991
3992 mutex_lock(&mvm->mutex);
3993
81d62d5a
JB		 3994 if (mvmvif->csa_failed) {
3995 mvmvif->csa_failed = false;
3996 ret = -EIO;
3997 goto out_unlock;
3998 }
3999
a57c688d
LC		 4000 if (vif->type == NL80211_IFTYPE_STATION) {
4001 struct iwl_mvm_sta *mvmsta;
4002
19125cb0 4003 mvmvif->csa_bcn_pending = false;
a57c688d
LC		 4004 mvmsta = iwl_mvm_sta_from_staid_protected(mvm,
4005 mvmvif->ap_sta_id);
4006
4007 if (WARN_ON(!mvmsta)) {
4008 ret = -EIO;
4009 goto out_unlock;
4010 }
4011
4012 iwl_mvm_sta_modify_disable_tx(mvm, mvmsta, false);
4013
4014 iwl_mvm_mac_ctxt_changed(mvm, vif, false, NULL);
c6e0a3e0
LC		 4015
4016 ret = iwl_mvm_enable_beacon_filter(mvm, vif, 0);
4017 if (ret)
4018 goto out_unlock;
686e7fe1
LC		 4019
4020 iwl_mvm_stop_session_protection(mvm, vif);
a57c688d
LC		 4021 }
4022
f6c34820
LC		 4023 mvmvif->ps_disabled = false;
4024
4025 ret = iwl_mvm_power_update_ps(mvm);
4026
a57c688d 4027out_unlock:
f6c34820
LC		 4028 mutex_unlock(&mvm->mutex);
4029
4030 return ret;
4031}
4032
6110d9e5
DS		 4033static void iwl_mvm_flush_no_vif(struct iwl_mvm *mvm, u32 queues, bool drop)
4034{
435d0827
SS		 4035 int i;
4036
06195639 4037 if (!iwl_mvm_has_new_tx_api(mvm)) {
309c4848
LC		 4038 if (drop) {
4039 mutex_lock(&mvm->mutex);
6110d9e5 4040 iwl_mvm_flush_tx_path(mvm,
435d0827 4041 iwl_mvm_flushable_queues(mvm) & queues, 0);
309c4848
LC		 4042 mutex_unlock(&mvm->mutex);
4043 } else {
06195639 4044 iwl_trans_wait_tx_queues_empty(mvm->trans, queues);
309c4848 4045 }
435d0827
SS		 4046 return;
4047 }
6110d9e5 4048
435d0827
SS		 4049 mutex_lock(&mvm->mutex);
4050 for (i = 0; i < ARRAY_SIZE(mvm->fw_id_to_mac_id); i++) {
4051 struct ieee80211_sta *sta;
6110d9e5 4052
435d0827
SS		 4053 sta = rcu_dereference_protected(mvm->fw_id_to_mac_id[i],
4054 lockdep_is_held(&mvm->mutex));
4055 if (IS_ERR_OR_NULL(sta))
4056 continue;
6110d9e5 4057
06195639
SS		 4058 if (drop)
4059 iwl_mvm_flush_sta_tids(mvm, i, 0xFF, 0);
4060 else
4061 iwl_mvm_wait_sta_queues_empty(mvm,
4062 iwl_mvm_sta_from_mac80211(sta));
6110d9e5 4063 }
435d0827 4064 mutex_unlock(&mvm->mutex);
6110d9e5
DS		 4065}
4066
c5b0e7c0
EG		 4067static void iwl_mvm_mac_flush(struct ieee80211_hw *hw,
4068 struct ieee80211_vif *vif, u32 queues, bool drop)
4069{
4070 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
4071 struct iwl_mvm_vif *mvmvif;
4072 struct iwl_mvm_sta *mvmsta;
a0f6bf2a
AN		 4073 struct ieee80211_sta *sta;
4074 int i;
4075 u32 msk = 0;
c5b0e7c0 4076
6110d9e5
DS		 4077 if (!vif) {
4078 iwl_mvm_flush_no_vif(mvm, queues, drop);
4079 return;
4080 }
4081
4082 if (vif->type != NL80211_IFTYPE_STATION)
c5b0e7c0
EG		 4083 return;
4084
24afba76 4085 /* Make sure we're done with the deferred traffic before flushing */
c8f54701 4086 flush_work(&mvm->add_stream_wk);
24afba76 4087
c5b0e7c0
EG		 4088 mutex_lock(&mvm->mutex);
4089 mvmvif = iwl_mvm_vif_from_mac80211(vif);
c5b0e7c0 4090
a0f6bf2a 4091 /* flush the AP-station and all TDLS peers */
0ae98812 4092 for (i = 0; i < ARRAY_SIZE(mvm->fw_id_to_mac_id); i++) {
a0f6bf2a
AN		 4093 sta = rcu_dereference_protected(mvm->fw_id_to_mac_id[i],
4094 lockdep_is_held(&mvm->mutex));
4095 if (IS_ERR_OR_NULL(sta))
4096 continue;
4097
4098 mvmsta = iwl_mvm_sta_from_mac80211(sta);
4099 if (mvmsta->vif != vif)
4100 continue;
4101
4102 /* make sure only TDLS peers or the AP are flushed */
4103 WARN_ON(i != mvmvif->ap_sta_id && !sta->tdls);
4104
d49394a1
SS		 4105 if (drop) {
4106 if (iwl_mvm_flush_sta(mvm, mvmsta, false, 0))
4107 IWL_ERR(mvm, "flush request fail\n");
4108 } else {
4109 msk |= mvmsta->tfd_queue_msk;
d6d517b7
SS		 4110 if (iwl_mvm_has_new_tx_api(mvm))
4111 iwl_mvm_wait_sta_queues_empty(mvm, mvmsta);
d49394a1 4112 }
480acbce 4113 }
c5b0e7c0 4114
d49394a1 4115 mutex_unlock(&mvm->mutex);
4e6c48e0 4116
d49394a1
SS		 4117 /* this can take a while, and we may need/want other operations
4118 * to succeed while doing this, so do it without the mutex held
4119 */
d6d517b7 4120 if (!drop && !iwl_mvm_has_new_tx_api(mvm))
a1a57877 4121 iwl_trans_wait_tx_queues_empty(mvm->trans, msk);
c5b0e7c0
EG		 4122}
4123
91a8bcde
JB		 4124static int iwl_mvm_mac_get_survey(struct ieee80211_hw *hw, int idx,
4125 struct survey_info *survey)
4126{
4127 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
4128 int ret;
4129
4130 memset(survey, 0, sizeof(*survey));
4131
4132 /* only support global statistics right now */
4133 if (idx != 0)
4134 return -ENOENT;
4135
280a3efa
JB		 4136 if (!fw_has_capa(&mvm->fw->ucode_capa,
4137 IWL_UCODE_TLV_CAPA_RADIO_BEACON_STATS))
91a8bcde
JB		 4138 return -ENOENT;
4139
4140 mutex_lock(&mvm->mutex);
4141
aab6930d 4142 if (iwl_mvm_firmware_running(mvm)) {
33cef925 4143 ret = iwl_mvm_request_statistics(mvm, false);
91a8bcde
JB		 4144 if (ret)
4145 goto out;
4146 }
4147
4148 survey->filled = SURVEY_INFO_TIME |
4149 SURVEY_INFO_TIME_RX |
4150 SURVEY_INFO_TIME_TX |
4151 SURVEY_INFO_TIME_SCAN;
4152 survey->time = mvm->accu_radio_stats.on_time_rf +
4153 mvm->radio_stats.on_time_rf;
4154 do_div(survey->time, USEC_PER_MSEC);
4155
4156 survey->time_rx = mvm->accu_radio_stats.rx_time +
4157 mvm->radio_stats.rx_time;
4158 do_div(survey->time_rx, USEC_PER_MSEC);
4159
4160 survey->time_tx = mvm->accu_radio_stats.tx_time +
4161 mvm->radio_stats.tx_time;
4162 do_div(survey->time_tx, USEC_PER_MSEC);
4163
4164 survey->time_scan = mvm->accu_radio_stats.on_time_scan +
4165 mvm->radio_stats.on_time_scan;
4166 do_div(survey->time_scan, USEC_PER_MSEC);
4167
10a7c028 4168 ret = 0;
91a8bcde
JB		 4169 out:
4170 mutex_unlock(&mvm->mutex);
4171 return ret;
4172}
4173
33cef925
JB		 4174static void iwl_mvm_mac_sta_statistics(struct ieee80211_hw *hw,
4175 struct ieee80211_vif *vif,
4176 struct ieee80211_sta *sta,
4177 struct station_info *sinfo)
4178{
4179 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
4180 struct iwl_mvm_vif *mvmvif = iwl_mvm_vif_from_mac80211(vif);
4181 struct iwl_mvm_sta *mvmsta = iwl_mvm_sta_from_mac80211(sta);
4182
988b5968
SS		 4183 if (mvmsta->avg_energy) {
4184 sinfo->signal_avg = mvmsta->avg_energy;
4185 sinfo->filled |= BIT(NL80211_STA_INFO_SIGNAL_AVG);
4186 }
4187
280a3efa
JB		 4188 if (!fw_has_capa(&mvm->fw->ucode_capa,
4189 IWL_UCODE_TLV_CAPA_RADIO_BEACON_STATS))
33cef925
JB		 4190 return;
4191
4192 /* if beacon filtering isn't on mac80211 does it anyway */
4193 if (!(vif->driver_flags & IEEE80211_VIF_BEACON_FILTER))
4194 return;
4195
4196 if (!vif->bss_conf.assoc)
4197 return;
4198
4199 mutex_lock(&mvm->mutex);
4200
4201 if (mvmvif->ap_sta_id != mvmsta->sta_id)
4202 goto unlock;
4203
4204 if (iwl_mvm_request_statistics(mvm, false))
4205 goto unlock;
4206
4207 sinfo->rx_beacon = mvmvif->beacon_stats.num_beacons +
4208 mvmvif->beacon_stats.accu_num_beacons;
4209 sinfo->filled |= BIT(NL80211_STA_INFO_BEACON_RX);
4210 if (mvmvif->beacon_stats.avg_signal) {
4211 /* firmware only reports a value after RXing a few beacons */
4212 sinfo->rx_beacon_signal_avg = mvmvif->beacon_stats.avg_signal;
4213 sinfo->filled |= BIT(NL80211_STA_INFO_BEACON_SIGNAL_AVG);
4214 }
4215 unlock:
4216 mutex_unlock(&mvm->mutex);
4217}
4218
4203263d
EG		 4219static void iwl_mvm_event_mlme_callback(struct iwl_mvm *mvm,
4220 struct ieee80211_vif *vif,
4221 const struct ieee80211_event *event)
d42f5350 4222{
7174beb6
JB		 4223#define CHECK_MLME_TRIGGER(_cnt, _fmt...) \
4224 do { \
4225 if ((trig_mlme->_cnt) && --(trig_mlme->_cnt)) \
4226 break; \
4227 iwl_fw_dbg_collect_trig(&(mvm)->fwrt, trig, _fmt); \
d42f5350
EG		 4228 } while (0)
4229
d42f5350
EG		 4230 struct iwl_fw_dbg_trigger_tlv *trig;
4231 struct iwl_fw_dbg_trigger_mlme *trig_mlme;
d42f5350
EG		 4232
4233 if (!iwl_fw_dbg_trigger_enabled(mvm->fw, FW_DBG_TRIGGER_MLME))
4234 return;
4235
d42f5350
EG		 4236 trig = iwl_fw_dbg_get_trigger(mvm->fw, FW_DBG_TRIGGER_MLME);
4237 trig_mlme = (void *)trig->data;
7174beb6
JB		 4238 if (!iwl_fw_dbg_trigger_check_stop(&mvm->fwrt,
4239 ieee80211_vif_to_wdev(vif), trig))
d42f5350
EG		 4240 return;
4241
d42f5350
EG		 4242 if (event->u.mlme.data == ASSOC_EVENT) {
4243 if (event->u.mlme.status == MLME_DENIED)
4c324a51 4244 CHECK_MLME_TRIGGER(stop_assoc_denied,
d42f5350
EG		 4245 "DENIED ASSOC: reason %d",
4246 event->u.mlme.reason);
4247 else if (event->u.mlme.status == MLME_TIMEOUT)
4c324a51 4248 CHECK_MLME_TRIGGER(stop_assoc_timeout,
d42f5350
EG		 4249 "ASSOC TIMEOUT");
4250 } else if (event->u.mlme.data == AUTH_EVENT) {
4251 if (event->u.mlme.status == MLME_DENIED)
4c324a51 4252 CHECK_MLME_TRIGGER(stop_auth_denied,
d42f5350
EG		 4253 "DENIED AUTH: reason %d",
4254 event->u.mlme.reason);
4255 else if (event->u.mlme.status == MLME_TIMEOUT)
4c324a51 4256 CHECK_MLME_TRIGGER(stop_auth_timeout,
d42f5350
EG		 4257 "AUTH TIMEOUT");
4258 } else if (event->u.mlme.data == DEAUTH_RX_EVENT) {
4c324a51 4259 CHECK_MLME_TRIGGER(stop_rx_deauth,
d42f5350
EG		 4260 "DEAUTH RX %d", event->u.mlme.reason);
4261 } else if (event->u.mlme.data == DEAUTH_TX_EVENT) {
4c324a51 4262 CHECK_MLME_TRIGGER(stop_tx_deauth,
d42f5350
EG		 4263 "DEAUTH TX %d", event->u.mlme.reason);
4264 }
4265#undef CHECK_MLME_TRIGGER
4266}
4267
4203263d
EG		 4268static void iwl_mvm_event_bar_rx_callback(struct iwl_mvm *mvm,
4269 struct ieee80211_vif *vif,
4270 const struct ieee80211_event *event)
4271{
4272 struct iwl_fw_dbg_trigger_tlv *trig;
4273 struct iwl_fw_dbg_trigger_ba *ba_trig;
4274
4275 if (!iwl_fw_dbg_trigger_enabled(mvm->fw, FW_DBG_TRIGGER_BA))
4276 return;
4277
4278 trig = iwl_fw_dbg_get_trigger(mvm->fw, FW_DBG_TRIGGER_BA);
4279 ba_trig = (void *)trig->data;
7174beb6
JB		 4280 if (!iwl_fw_dbg_trigger_check_stop(&mvm->fwrt,
4281 ieee80211_vif_to_wdev(vif), trig))
4203263d
EG		 4282 return;
4283
4284 if (!(le16_to_cpu(ba_trig->rx_bar) & BIT(event->u.ba.tid)))
4285 return;
4286
7174beb6
JB		 4287 iwl_fw_dbg_collect_trig(&mvm->fwrt, trig,
4288 "BAR received from %pM, tid %d, ssn %d",
4289 event->u.ba.sta->addr, event->u.ba.tid,
4290 event->u.ba.ssn);
4203263d
EG		 4291}
4292
4203263d
EG		 4293static void iwl_mvm_mac_event_callback(struct ieee80211_hw *hw,
4294 struct ieee80211_vif *vif,
4295 const struct ieee80211_event *event)
4296{
4297 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
4298
4299 switch (event->type) {
4300 case MLME_EVENT:
4301 iwl_mvm_event_mlme_callback(mvm, vif, event);
4302 break;
4303 case BAR_RX_EVENT:
4304 iwl_mvm_event_bar_rx_callback(mvm, vif, event);
4305 break;
4306 case BA_FRAME_TIMEOUT:
528a542a
EG		 4307 iwl_mvm_event_frame_timeout_callback(mvm, vif, event->u.ba.sta,
4308 event->u.ba.tid);
4203263d
EG		 4309 break;
4310 default:
4311 break;
4312 }
4313}
4314
d0ff5d22
SS		 4315void iwl_mvm_sync_rx_queues_internal(struct iwl_mvm *mvm,
4316 struct iwl_mvm_internal_rxq_notif *notif,
4317 u32 size)
0636b938 4318{
0636b938
SS		 4319 u32 qmask = BIT(mvm->trans->num_rx_queues) - 1;
4320 int ret;
4321
4322 lockdep_assert_held(&mvm->mutex);
4323
cb8550e1 4324 if (!iwl_mvm_has_new_rx_api(mvm))
0636b938
SS		 4325 return;
4326
d0ff5d22
SS		 4327 notif->cookie = mvm->queue_sync_cookie;
4328
4329 if (notif->sync)
4330 atomic_set(&mvm->queue_sync_counter,
4331 mvm->trans->num_rx_queues);
0636b938 4332
cb8550e1 4333 /* TODO - remove this when we have RXQ config API */
2f7a3863 4334 if (mvm->trans->cfg->device_family == IWL_DEVICE_FAMILY_22000) {
cb8550e1
SS		 4335 qmask = BIT(0);
4336 if (notif->sync)
4337 atomic_set(&mvm->queue_sync_counter, 1);
4338 }
4339
d0ff5d22 4340 ret = iwl_mvm_notify_rx_queue(mvm, qmask, (u8 *)notif, size);
0636b938
SS		 4341 if (ret) {
4342 IWL_ERR(mvm, "Failed to trigger RX queues sync (%d)\n", ret);
4343 goto out;
4344 }
d0ff5d22 4345
6ad04359 4346 if (notif->sync) {
3a732c65 4347 ret = wait_event_timeout(mvm->rx_sync_waitq,
6ad04359
JB		 4348 atomic_read(&mvm->queue_sync_counter) == 0 ||
4349 iwl_mvm_is_radio_killed(mvm),
d0ff5d22 4350 HZ);
6ad04359
JB		 4351 WARN_ON_ONCE(!ret && !iwl_mvm_is_radio_killed(mvm));
4352 }
0636b938
SS		 4353
4354out:
4355 atomic_set(&mvm->queue_sync_counter, 0);
4356 mvm->queue_sync_cookie++;
4357}
4358
4359static void iwl_mvm_sync_rx_queues(struct ieee80211_hw *hw)
4360{
4361 struct iwl_mvm *mvm = IWL_MAC80211_GET_MVM(hw);
d0ff5d22
SS		 4362 struct iwl_mvm_internal_rxq_notif data = {
4363 .type = IWL_MVM_RXQ_EMPTY,
4364 .sync = 1,
4365 };
0636b938
SS		 4366
4367 mutex_lock(&mvm->mutex);
d0ff5d22 4368 iwl_mvm_sync_rx_queues_internal(mvm, &data, sizeof(data));
0636b938
SS		 4369 mutex_unlock(&mvm->mutex);
4370}
4371
e5209263 4372const struct ieee80211_ops iwl_mvm_hw_ops = {
8ca151b5
JB		 4373 .tx = iwl_mvm_mac_tx,
4374 .ampdu_action = iwl_mvm_mac_ampdu_action,
4375 .start = iwl_mvm_mac_start,
cf2c92d8 4376 .reconfig_complete = iwl_mvm_mac_reconfig_complete,
8ca151b5
JB		 4377 .stop = iwl_mvm_mac_stop,
4378 .add_interface = iwl_mvm_mac_add_interface,
4379 .remove_interface = iwl_mvm_mac_remove_interface,
4380 .config = iwl_mvm_mac_config,
e59647ea 4381 .prepare_multicast = iwl_mvm_prepare_multicast,
8ca151b5 4382 .configure_filter = iwl_mvm_configure_filter,
effd1929 4383 .config_iface_filter = iwl_mvm_config_iface_filter,
8ca151b5
JB		 4384 .bss_info_changed = iwl_mvm_bss_info_changed,
4385 .hw_scan = iwl_mvm_mac_hw_scan,
4386 .cancel_hw_scan = iwl_mvm_mac_cancel_hw_scan,
1ddbbb0c 4387 .sta_pre_rcu_remove = iwl_mvm_sta_pre_rcu_remove,
8ca151b5
JB		 4388 .sta_state = iwl_mvm_mac_sta_state,
4389 .sta_notify = iwl_mvm_mac_sta_notify,
4390 .allow_buffered_frames = iwl_mvm_mac_allow_buffered_frames,
3e56eadf 4391 .release_buffered_frames = iwl_mvm_mac_release_buffered_frames,
8ca151b5 4392 .set_rts_threshold = iwl_mvm_mac_set_rts_threshold,
1f3b0ff8 4393 .sta_rc_update = iwl_mvm_sta_rc_update,
8ca151b5
JB		 4394 .conf_tx = iwl_mvm_mac_conf_tx,
4395 .mgd_prepare_tx = iwl_mvm_mac_mgd_prepare_tx,
07ecd897 4396 .mgd_protect_tdls_discover = iwl_mvm_mac_mgd_protect_tdls_discover,
c5b0e7c0 4397 .flush = iwl_mvm_mac_flush,
35a000b7
DS		 4398 .sched_scan_start = iwl_mvm_mac_sched_scan_start,
4399 .sched_scan_stop = iwl_mvm_mac_sched_scan_stop,
8ca151b5
JB		 4400 .set_key = iwl_mvm_mac_set_key,
4401 .update_tkip_key = iwl_mvm_mac_update_tkip_key,
4402 .remain_on_channel = iwl_mvm_roc,
4403 .cancel_remain_on_channel = iwl_mvm_cancel_roc,
8ca151b5
JB		 4404 .add_chanctx = iwl_mvm_add_chanctx,
4405 .remove_chanctx = iwl_mvm_remove_chanctx,
4406 .change_chanctx = iwl_mvm_change_chanctx,
4407 .assign_vif_chanctx = iwl_mvm_assign_vif_chanctx,
4408 .unassign_vif_chanctx = iwl_mvm_unassign_vif_chanctx,
b08c1d97 4409 .switch_vif_chanctx = iwl_mvm_switch_vif_chanctx,
8ca151b5 4410
5023d966
JB		 4411 .start_ap = iwl_mvm_start_ap_ibss,
4412 .stop_ap = iwl_mvm_stop_ap_ibss,
4413 .join_ibss = iwl_mvm_start_ap_ibss,
4414 .leave_ibss = iwl_mvm_stop_ap_ibss,
8ca151b5 4415
2f0282db
JB		 4416 .tx_last_beacon = iwl_mvm_tx_last_beacon,
4417
8ca151b5
JB		 4418 .set_tim = iwl_mvm_set_tim,
4419
622e3f9b 4420 .channel_switch = iwl_mvm_channel_switch,
f028905c 4421 .pre_channel_switch = iwl_mvm_pre_channel_switch,
f6c34820 4422 .post_channel_switch = iwl_mvm_post_channel_switch,
bd3398e2 4423
1d3c3f63
AN		 4424 .tdls_channel_switch = iwl_mvm_tdls_channel_switch,
4425 .tdls_cancel_channel_switch = iwl_mvm_tdls_cancel_channel_switch,
4426 .tdls_recv_channel_switch = iwl_mvm_tdls_recv_channel_switch,
4427
d42f5350
EG		 4428 .event_callback = iwl_mvm_mac_event_callback,
4429
0636b938
SS		 4430 .sync_rx_queues = iwl_mvm_sync_rx_queues,
4431
507cadf2
DS		 4432 CFG80211_TESTMODE_CMD(iwl_mvm_mac_testmode_cmd)
4433
8ca151b5
JB		 4434#ifdef CONFIG_PM_SLEEP
4435 /* look at d3.c */
4436 .suspend = iwl_mvm_suspend,
4437 .resume = iwl_mvm_resume,
4438 .set_wakeup = iwl_mvm_set_wakeup,
4439 .set_rekey_data = iwl_mvm_set_rekey_data,
4440#if IS_ENABLED(CONFIG_IPV6)
4441 .ipv6_addr_change = iwl_mvm_ipv6_addr_change,
4442#endif
4443 .set_default_unicast_key = iwl_mvm_set_default_unicast_key,
4444#endif
91a8bcde 4445 .get_survey = iwl_mvm_mac_get_survey,
33cef925 4446 .sta_statistics = iwl_mvm_mac_sta_statistics,
177a11cf
GG		 4447#ifdef CONFIG_IWLWIFI_DEBUGFS
4448 .sta_add_debugfs = iwl_mvm_sta_add_debugfs,
4449#endif
8ca151b5 4450};
A mirror of Linus' kernel repository